From b8aff967a8060a3920931e5df785c0585f4fab3b Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Sat, 6 Jun 2026 09:38:19 -0400
Subject: [PATCH 01/30] Add multi-region scanning support with parallel
 execution
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Enable security assessments to scan multiple AWS regions in parallel
using a Step Functions Map state. Each region gets its own Lambda
invocation for Bedrock, SageMaker, and AgentCore assessments,
providing linear performance scaling regardless of region count.

Configuration:
- Add TargetRegions CloudFormation parameter to all deployment templates
  (empty = single region, comma-separated list, or 'all')
- Add ResolveRegions Lambda to resolve target regions for Map state
- Use ItemSelector on Map state to inject region into each iteration

Assessment changes:
- Add Region field to all finding schemas and CSV reports
- Refactor all assessment Lambdas to accept region from event payload
  and create boto3 clients with explicit region_name
- Add graceful service-unavailability handling (N/A finding when
  a service is not available in a region)
- Include region in S3 report filenames for per-region CSV outputs

Report changes:
- Add Region column, filter dropdown, and Risk by Region section
  to HTML report template
- Update consolidate_html_reports.py to pass region data through

Infrastructure:
- Restructure Step Functions state machine with Map state
- Fail CodeBuild when Step Function execution fails (previously
  only logged a warning)

Documentation:
- Streamline README (603 → 208 lines) by moving cleanup and
  troubleshooting content to dedicated docs
- Add docs/CLEANUP.md with step-by-step removal instructions
- Add upgrade guide and stack identification to Troubleshooting
- Update Developer Guide with region-aware patterns
- Correct check count from 52 to 51 (13 Bedrock + 25 SageMaker + 13 AgentCore)
---
 README.md                                     | 505 ++--------
 .../security/agentcore_assessments/app.py     | 110 ++-
 .../security/agentcore_assessments/schema.py  |   8 +-
 .../security/bedrock_assessments/app.py       | 192 +++-
 .../security/bedrock_assessments/schema.py    |   8 +-
 .../generate_consolidated_report/app.py       |   5 +
 .../report_template.py                        | 153 ++-
 .../generate_consolidated_report/schema.py    |  19 +-
 .../functions/security/resolve_regions/app.py |  61 ++
 .../security/sagemaker_assessments/app.py     | 308 ++++--
 .../security/sagemaker_assessments/schema.py  |   8 +-
 .../statemachine/assessments.asl.json         | 233 +++--
 .../template-multi-account.yaml               |  34 +-
 aiml-security-assessment/template.yaml        |  38 +-
 buildspec.yml                                 |  30 +-
 consolidate_html_reports.py                   |   6 +
 deployment/2-aiml-security-codebuild.yaml     |  12 +
 deployment/aiml-security-single-account.yaml  |  12 +
 docs/CLEANUP.md                               | 105 +++
 docs/DEVELOPER_GUIDE.md                       | 111 ++-
 docs/TROUBLESHOOTING.md                       |  32 +
 ...curity_assessment_multi_region_sample.html | 873 ++++++++++++++++++
 22 files changed, 2117 insertions(+), 746 deletions(-)
 create mode 100644 aiml-security-assessment/functions/security/resolve_regions/app.py
 create mode 100644 docs/CLEANUP.md
 create mode 100644 sample-reports/security_assessment_multi_region_sample.html

diff --git a/README.md b/README.md
index 78173da..e4da99d 100644
--- a/README.md
+++ b/README.md
@@ -4,7 +4,7 @@
 
 **Open-source automated security scanner for Amazon Bedrock, Amazon SageMaker AI, and Amazon Bedrock AgentCore** — Built on [AWS Well-Architected Framework (Generative AI Lens)](https://docs.aws.amazon.com/wellarchitected/latest/generative-ai-lens/generative-ai-lens.html)
 
-Cloud security automation with **[52 security checks](docs/SECURITY_CHECKS.md)** for your generative AI and machine learning workloads. Identify IAM misconfigurations, encryption gaps, network isolation issues, and compliance violations with interactive HTML reports and actionable remediation guidance.
+Cloud security automation with **[51 security checks](docs/SECURITY_CHECKS.md)** for your generative AI and machine learning workloads. Identify IAM misconfigurations, encryption gaps, network isolation issues, and compliance violations with interactive HTML reports and actionable remediation guidance.
 
 ---
 
@@ -35,83 +35,17 @@ The framework generates professional, interactive security assessment reports wi
 
 ### Key Features
 
-- **Executive Summary** with severity counts and service breakdown
-- **Priority Recommendations** highlighting critical issues requiring immediate attention
-- **[52 Security Checks](docs/SECURITY_CHECKS.md)** across Amazon Bedrock, Amazon SageMaker AI, and Amazon Bedrock AgentCore
-- **Interactive Filtering** by account, service, severity, and status
-- **Light/Dark Mode Toggle** with persistent user preference
-- **Text Search** across all findings with real-time results
-- **Direct AWS Documentation Links** for each finding with remediation guidance
-- **Multi-Account Support** with consolidated reporting across your organization
-- **Fully Automated** deployment and execution through AWS CloudFormation and AWS CodeBuild
-
----
-
-## Table of Contents
-
-- [What It Does](#what-it-does)
-- [Why Use This Framework?](#why-use-this-framework)
-- [Scope and Limitations](#scope-and-limitations)
-- [Quick Start](#quick-start)
-- [Architecture](#architecture)
-- [Prerequisites](#prerequisites)
-- [Single-Account Deployment](#single-account-deployment)
-- [Multi-Account Deployment](#multi-account-deployment)
-- [How It Works](#how-it-works)
-- [Permissions Required](#permissions-required)
-- [Viewing Assessment Results](#viewing-assessment-results)
-- [Customization](#customization)
-- [Cleanup](#cleanup)
-- [Documentation](#documentation)
-- [Contributing](#contributing)
-- [Security](#security)
-- [License](#license)
-
----
-
-## What It Does
-
-This serverless assessment framework automatically evaluates your AI/ML workloads against AWS security best practices. It uses AWS serverless services to gather data from the control plane and generate reports containing the status of various security checks, severity levels, and recommended actions.
-
-Designed for workloads using [Amazon Bedrock](https://aws.amazon.com/bedrock/), [Amazon Bedrock AgentCore](https://aws.github.io/bedrock-agentcore-starter-toolkit/), or [Amazon SageMaker AI](https://aws.amazon.com/sagemaker/ai/).
-
-### Why Use This Framework?
-
-| Challenge | How This Framework Helps |
-|-----------|-------------------------|
-| **Manual security audits are time-consuming** | Fully automated scanning with one-click CloudFormation deployment |
-| **Inconsistent security checks across teams** | Standardized 52-check assessment based on AWS Well-Architected best practices |
-| **Difficulty tracking AI/ML security posture** | Interactive HTML dashboards with severity breakdown and per-account visibility |
-| **Multi-account complexity** | Consolidated reporting across AWS Organizations with cross-account role assumption |
-| **Compliance and audit support** | Exportable reports to supplement your compliance program, with remediation guidance linked to AWS documentation |
-| **Generative AI security gaps** | Purpose-built checks for LLM guardrails, model access controls, and prompt injection prevention |
+- **[51 Security Checks](docs/SECURITY_CHECKS.md)** across Amazon Bedrock, Amazon SageMaker AI, and Amazon Bedrock AgentCore
+- **Multi-Region Support** — parallel scanning across AWS regions with per-region risk breakdown
+- **Multi-Account Support** — consolidated reporting across AWS Organizations
+- **Interactive Filtering** by account, region, service, severity, and status
+- **Light/Dark Mode** with persistent user preference
+- **Fully Automated** — one-click CloudFormation deployment and execution
 
 **Services Covered:**
-- **[Amazon Bedrock](docs/SECURITY_CHECKS.md#amazon-bedrock-security-checks-14)** (14 checks) - Guardrails, encryption, Amazon VPC endpoints, AWS IAM permissions, model invocation logging
-- **[Amazon SageMaker AI](docs/SECURITY_CHECKS.md#amazon-sagemaker-ai-security-checks-25)** (25 checks) - AWS Security Hub controls (SageMaker.1-5), encryption, network isolation, AWS IAM, MLOps
-- **[Amazon Bedrock AgentCore](docs/SECURITY_CHECKS.md#amazon-bedrock-agentcore-security-checks-13)** (13 checks) - Amazon VPC configuration, encryption, observability, resource policies
-
-**Deployment Options:**
-- **Single-Account**: Assess security in one AWS account
-- **Multi-Account**: Scan entire AWS Organizations with consolidated reporting
-
-**How It Works:**
-1. Deploy through AWS CloudFormation (one-click deployment)
-2. Framework automatically scans your AI/ML resources
-3. Generates interactive HTML reports stored in your Amazon S3 bucket
-4. All data stays in your AWS account - no external dependencies
-
----
-
-## Scope and Limitations
-
-This tool operates within the [AWS Shared Responsibility Model](https://aws.amazon.com/compliance/shared-responsibility-model/). It assesses **your configuration responsibilities** (IAM policies, encryption settings, network isolation, logging) for AI/ML services. It does not assess AWS-managed infrastructure, physical security, or the underlying service platform.
-
-**Point-in-time assessment.** Each run captures your security posture at the moment of execution. Resource configurations can change immediately after an assessment completes. Run assessments regularly and after significant changes to maintain visibility.
-
-**No guarantee of security or compliance.** This framework identifies common misconfigurations based on AWS best practices and the AWS Well-Architected Framework. It does not cover all possible security risks, does not replace formal compliance audits (SOC 2, HIPAA, and similar), and does not guarantee that your workloads are secure. Use the results as one input into your broader security program.
-
-**52 checks across three services.** The assessment covers Amazon Bedrock, Amazon SageMaker AI, and Amazon Bedrock AgentCore. Other AI/ML services (Amazon Comprehend, Amazon Rekognition, Amazon Textract, and others) are not currently assessed.
+- **[Amazon Bedrock](docs/SECURITY_CHECKS.md#amazon-bedrock-security-checks-13)** (13 checks) — Guardrails, encryption, VPC endpoints, IAM, model invocation logging
+- **[Amazon SageMaker AI](docs/SECURITY_CHECKS.md#amazon-sagemaker-ai-security-checks-25)** (25 checks) — Security Hub controls, encryption, network isolation, IAM, MLOps
+- **[Amazon Bedrock AgentCore](docs/SECURITY_CHECKS.md#amazon-bedrock-agentcore-security-checks-13)** (13 checks) — VPC configuration, encryption, observability, resource policies
 
 ---
 
@@ -126,371 +60,113 @@ This tool operates within the [AWS Shared Responsibility Model](https://aws.amaz
 
 ## Prerequisites
 
-- Python 3.12+ - [Install Python](https://www.python.org/downloads/)
-- AWS SAM CLI - [Install the AWS SAM CLI](https://docs.aws.amazon.com/serverless-application-model/latest/developerguide/serverless-sam-cli-install.html)
-- Docker (optional) - [Install Docker community edition](https://hub.docker.com/search/?type=edition&offering=community) - Only required for local development and testing, not for AWS deployment
+- Python 3.12+ — [Install Python](https://www.python.org/downloads/)
+- AWS SAM CLI — [Install the AWS SAM CLI](https://docs.aws.amazon.com/serverless-application-model/latest/developerguide/serverless-sam-cli-install.html)
+- Docker (optional) — [Install Docker](https://hub.docker.com/search/?type=edition&offering=community) — Only required for local development
+
+---
 
 ## Single-Account Deployment
 
-1. Download the [aiml-security-single-account.yaml](deployment/aiml-security-single-account.yaml) AWS CloudFormation template.
+1. Download the [aiml-security-single-account.yaml](deployment/aiml-security-single-account.yaml) CloudFormation template.
 2. **[Deploy to AWS CloudFormation](https://console.aws.amazon.com/cloudformation/home#/stacks/create/template?stackName=aiml-security-single-account)**
-3. Upload the AWS CloudFormation template from step 1.
-4. Provide a stack name and optionally specify your email address to receive notifications.
-5. Leave all other parameters at their default values.
-6. Navigate to the next page, read and acknowledge the notice, and click **Next**.
-7. Review the information and click **Submit**.
-8. Wait for the AWS CloudFormation stack to complete.
-9. Once complete, AWS CodeBuild automatically deploys the assessment stack and runs the assessment.
-10. To view results:
-    - Navigate to the AWS CloudFormation console
-    - Open the stack you deployed (for example, `aiml-security-single-account` or your custom name)
-    - Go to the **Outputs** tab
-    - Copy the `AssessmentBucket` value
-    - Navigate to that Amazon S3 bucket and open the `{account_id}/security_assessment_*.html` file
-
-### Understanding Stack Names
-
-> **Important**: The deployment creates **TWO** AWS CloudFormation stacks. Only one contains your results!
+3. Upload the template and provide a stack name.
+4. Optionally specify your email address to receive notifications.
+5. **(Optional) Multi-Region**: Set `TargetRegions` to scan multiple regions:
+   - Leave empty to scan only the deployment region (default)
+   - Comma-separated list (for example, `us-east-1,us-west-2,eu-west-1`)
+   - `all` to scan all regions where the services are available
+6. Acknowledge IAM capabilities and click **Submit**.
+7. Once complete, CodeBuild automatically runs the assessment.
+8. View results: go to the stack **Outputs** tab → copy `AssessmentBucket` → open the HTML report in that S3 bucket.
+
+> **Tip**: The deployment creates two stacks. Your results are in the stack *you named*, not the auto-generated `aiml-sec-*` stack. See [Troubleshooting](docs/TROUBLESHOOTING.md#8-confused-by-multiple-cloudformation-stacks) for details.
 
-<table>
-<tr>
-<th>Stack Type</th>
-<th>How to Identify</th>
-<th>What It Contains</th>
-<th>What to Do</th>
-</tr>
-<tr>
-<td><strong>Infrastructure Stack</strong><br/><em>(This is the one you need)</em></td>
-<td>
-The name <strong>you chose</strong><br/>
-Examples:<br/>
-  - <code>my-aiml-assessment</code><br/>
-  - <code>aiml-security-prod</code><br/>
-  - <code>aiml-security-single-account</code>
-</td>
-<td>
-AWS CodeBuild project<br/>
-Amazon S3 bucket for results<br/>
-AWS IAM roles<br/>
-<strong>The "AssessmentBucket" output</strong>
-</td>
-<td>
-<strong>Use this stack to view results!</strong><br/><br/>
-1. Open this stack in console<br/>
-2. Go to <strong>Outputs</strong> tab<br/>
-3. Copy <code>AssessmentBucket</code> value
-</td>
-</tr>
-<tr>
-<td><strong>Assessment Stack</strong><br/><em>(Auto-generated - ignore this)</em></td>
-<td>
-Auto-generated name:<br/>
-Single-account: <code>aiml-sec-{account_id}</code><br/>
-Multi-account: <code>aiml-security-{account_id}</code> per member account, plus <code>aiml-security-mgmt</code> for the management account<br/>
-Examples:<br/>
-<code>aiml-sec-123456789012</code> (single)<br/>
-<code>aiml-security-123456789012</code> (multi)
-</td>
-<td>
-AWS Lambda functions<br/>
-AWS Step Functions<br/>
-Internal resources<br/>
-<em>No outputs you need</em>
-</td>
-<td>
-<strong>Don't use this stack!</strong><br/><br/>
-It's for internal operations only.<br/>
-Created automatically by AWS CodeBuild.
-</td>
-</tr>
-</table>
-
-**Quick Check**: If you see a stack name starting with `aiml-sec-` or `aiml-security-` followed by numbers (or `aiml-security-mgmt`), that's an **auto-generated assessment stack**. Look for the stack name you originally chose during deployment.
+---
 
 ## Multi-Account Deployment
 
-### Prerequisites
-
-- AWS Organizations setup with management account access or delegated administrator privileges.
+### Step 1: Deploy Member Roles
 
-The deployment follows a two-step approach:
+Deploy [1-aiml-security-member-roles.yaml](deployment/1-aiml-security-member-roles.yaml) to all target accounts using CloudFormation StackSets with service-managed permissions.
 
-### Step 1: Deploy Member Roles (AWS CloudFormation StackSets)
-
-Deploy [1-aiml-security-member-roles.yaml](deployment/1-aiml-security-member-roles.yaml) to all target accounts using AWS CloudFormation StackSets with service-managed permissions.
-
-#### AWS Console Deployment
-
-1. Navigate to **AWS CloudFormation** > **StackSets** in the management account
-2. Click **Create StackSet**
-3. Select **Upload a template file** and upload [1-aiml-security-member-roles.yaml](deployment/1-aiml-security-member-roles.yaml)
-4. Enter a StackSet name (for example, `aiml-security-member-roles`)
-5. Set the `ManagementAccountID` parameter to your management account ID
-6. Under **Permissions**, select **Service-managed permissions**
-7. Under **Deployment targets**, select the Organizational Units (OUs) containing your target accounts
-8. Select **us-east-1** (or your target region) under **Specify regions**
-9. Review and click **Submit**
-
-This uses AWS Organizations to deploy the member role to all accounts in the selected OUs. New accounts added to those OUs will automatically receive the role.
+1. Navigate to **CloudFormation** > **StackSets** in the management account
+2. Upload the template and set `ManagementAccountID` to your management account
+3. Select **Service-managed permissions** and target your OUs
+4. Select your target region and submit
 
 ### Step 2: Deploy Central Infrastructure
 
-Deploy [2-aiml-security-codebuild.yaml](deployment/2-aiml-security-codebuild.yaml) in your central management account or delegated administrator member account.
-
-#### AWS Console Deployment
-
-1. Navigate to [AWS CloudFormation](https://console.aws.amazon.com/cloudformation/home#/stacks/create/template?stackName=aiml-security-multi-account)
-2. Select **Upload a template file** and upload the [2-aiml-security-codebuild.yaml](deployment/2-aiml-security-codebuild.yaml) file.
-3. Set the `MultiAccountScan` parameter to `true`.
-4. Optionally, provide your email address in the `EmailAddress` parameter for completion notifications.
-5. Leave the remaining parameters at their default values.
-6. Navigate to the next page, read and acknowledge the notice, and click **Next**.
-7. Review the information and click **Submit**.
-8. Stack creation automatically triggers AWS CodeBuild, which deploys the assessment to each account and runs it.
-
-## How It Works
-
-### Single-Account Mode (`MultiAccountScan=false`)
-
-- Creates a local `AIMLSecurityMemberRole`
-- Runs the assessment in the same account
-- Uses a local Amazon S3 bucket for results
-
-### Multi-Account Mode (`MultiAccountScan=true`)
-
-- Lists all active accounts in AWS Organizations
-- Assumes the `AIMLSecurityMemberRole` in each target account
-- Deploys selected assessment modules in each account with a shared Amazon S3 bucket
-- Executes AWS Step Functions for each deployed module in each account
-- Consolidates results by assessment type in a central Amazon S3 bucket
-
-### Assessment Execution Process
-
-#### Automatic Trigger
-
-- The AWS CodeBuild project starts automatically after central stack creation
-- An AWS Lambda trigger function initiates the assessment workflow
+Deploy [2-aiml-security-codebuild.yaml](deployment/2-aiml-security-codebuild.yaml) in your management account.
 
-#### Multi-Account Orchestration
+1. Upload the template and set `MultiAccountScan` to `true`
+2. Optionally set `TargetRegions` for multi-region scanning
+3. Optionally provide an email address for notifications
+4. Acknowledge IAM capabilities and submit
+5. Stack creation automatically triggers the assessment across all accounts
 
-1. **Account Discovery**: AWS CodeBuild queries AWS Organizations for active accounts
-2. **Role Assumption**: Assumes `AIMLSecurityMemberRole` in each target account
-3. **Module Deployment**: Deploys the AI/ML assessment module:
-   - Amazon Bedrock Assessment AWS Lambda
-   - Amazon SageMaker AI Assessment AWS Lambda
-   - Amazon Bedrock AgentCore Assessment AWS Lambda
-   - AWS IAM Permission Caching AWS Lambda
-   - Consolidated Report Generation AWS Lambda
-4. **Assessment Execution**: AWS Step Functions orchestrate parallel AWS Lambda execution
-5. **Results Collection**: Individual AWS Lambda functions store results in local Amazon S3 buckets
-6. **Consolidation**: AWS CodeBuild collects and consolidates results from all accounts
-7. **Reporting**: Generates multi-account HTML and CSV reports
-8. **Notification**: Sends completion notification through Amazon SNS (if configured)
-
-## Permissions Required
-
-### Central Account Role (`MultiAccountCodeBuildRole`)
-
-- Assumes roles in member accounts
-- Lists AWS Organizations accounts
-- Deploys AWS CloudFormation/AWS SAM applications
-- Executes AWS Step Functions
-- Writes to the Amazon S3 bucket
-
-### Member Account Role (`AIMLSecurityMemberRole`)
-
-- Read-only access to AI/ML services (Amazon Bedrock, Amazon SageMaker AI, Amazon Bedrock AgentCore)
-- AWS IAM read permissions for security assessment
-- AWS CloudTrail, Amazon GuardDuty, and AWS Lambda read permissions
-- Amazon VPC and Amazon EC2 read permissions
-- Amazon ECR, Amazon CloudWatch Logs, and AWS X-Ray read permissions (for Amazon Bedrock AgentCore)
+---
 
-## Monitoring and Results
+## Multi-Region Scanning
 
-- **Amazon S3 Bucket**: Central storage for all assessment results
-- **Amazon CloudWatch Logs**: AWS CodeBuild execution logs
-- **Amazon SNS Notifications**: Email alerts on completion/failure
-- **Amazon EventBridge Rules**: Automated workflow triggers
+Both deployment modes support scanning multiple AWS regions in parallel via the `TargetRegions` parameter:
 
-## Viewing Assessment Results
+| Value | Behavior |
+|-------|----------|
+| Empty (default) | Scans deployment region only — fully backward compatible |
+| Comma-separated (for example, `us-east-1,us-west-2`) | Scans those regions in parallel |
+| `all` | Discovers and scans all regions where assessed services are available |
 
-You can check the AWS CodeBuild console to confirm the assessment completed successfully before accessing the results.
+Scanning uses a Step Functions Map state, so multiple regions execute in parallel with no additional time cost. Services unavailable in a region produce an informational N/A finding.
 
-### Accessing Results
+The HTML report includes a Region column, filter dropdown, and "Risk by Region" summary.
 
-1. **Find the Amazon S3 Bucket Name**:
-   - Navigate to **AWS CloudFormation** > **Stacks** in the AWS Console
-   - For single-account deployments using the standalone template (`aiml-security-single-account.yaml`), select the stack you deployed (for example, `aiml-security-single-account`) and find the `AssessmentBucket` output. Results are synced to this bucket under the `{account_id}/` prefix.
-   - For multi-account deployments, select the `aiml-security-multi-account` stack created in [Step 2: Deploy Central Infrastructure](#step-2-deploy-central-infrastructure) and find the `AssessmentBucket` output
-   - Go to the **Outputs** tab
-   - Copy the Amazon S3 bucket name
+> **Upgrading an existing deployment?** See [Troubleshooting](docs/TROUBLESHOOTING.md#9-upgrading-an-existing-deployment-to-multi-region) — it's a simple stack parameter update with no teardown.
 
-   > **Note**: The deployment creates multiple Amazon S3 buckets. Only use the bucket from the `AssessmentBucket` output above. Other buckets (such as `aiml-sec-*-aimlassessmentbucket-*` from nested stacks or `aws-sam-cli-managed-*` for deployment artifacts) are for internal use and can be ignored.
+---
 
-2. **Navigate to the Amazon S3 Bucket**:
-   - Go to **Amazon S3** in the AWS Console
-   - Search for and open your assessment bucket
-   - For single-account deployments, open the `security_assessment_XXXXX.html` report
-   - For multi-account deployments, follow the [Report Structure](#report-structure) guidance below
+## How It Works
 
-### Report Structure
+1. **Deploy** — CloudFormation creates CodeBuild, S3, IAM roles, and a Lambda trigger
+2. **CodeBuild runs** — builds and deploys the SAM assessment stack (per account in multi-account mode)
+3. **Step Functions execute** — orchestrates: S3 cleanup → IAM permission caching → resolve regions → Map state fans out per-region assessments (Bedrock, SageMaker, AgentCore in parallel) → generate consolidated report
+4. **Results** — HTML and CSV reports are stored in your S3 bucket
 
-#### Consolidated Reports
+For detailed architecture, execution flow, and extension guidance, see the [Developer Guide](docs/DEVELOPER_GUIDE.md).
 
-- **Location**: `consolidated-reports/` folder in the bucket
-- **Content**: Multi-account HTML report combining all account assessments
-- **File Format**: `multi_account_report_YYYYMMDD_HHMMSS.html`
-- **Features**:
-  - Executive summary with metrics (Total, High, Medium, Low severity counts)
-  - Service breakdown (Amazon Bedrock, Amazon SageMaker AI, Amazon Bedrock AgentCore)
-  - Priority recommendations
-  - Light/dark mode toggle (persists through localStorage)
-  - Dropdown filters for Account ID, Severity, Status
-  - Text search filter for findings
-  - "View Docs" buttons for reference links
+---
 
-#### Individual Account Reports
+## Viewing Results
 
-- **Location**: Folders named with account IDs (for example, `123456789012/`)
-- **Content**: Account-specific CSV and HTML files for AI/ML assessments
-- **Files Include**:
-  - `bedrock_security_report_{execution_id}.csv` - Amazon Bedrock security assessment results
-  - `sagemaker_security_report_{execution_id}.csv` - Amazon SageMaker AI security assessment results
-  - `agentcore_security_report_{execution_id}.csv` - Amazon Bedrock AgentCore security assessment results
-  - `permissions_cache_{execution_id}.json` - IAM permissions cache
-  - `security_assessment_{timestamp}_{execution_id}.html` - Consolidated HTML report (same features as multi-account report)
+1. Open your **infrastructure stack** in CloudFormation → **Outputs** tab → copy `AssessmentBucket`
+2. Navigate to that S3 bucket
+3. Open the `security_assessment_*.html` file (single-account) or check `consolidated-reports/` (multi-account)
 
 ### Understanding Results
 
-| Severity | Description |
-|----------|-------------|
-| **High** | Critical security issues requiring immediate attention |
-| **Medium** | Important security improvements recommended |
-| **Low** | Minor optimizations suggested |
-| **Informational** | Advisory information, no action required |
-| **N/A** | Check not applicable (no resources to assess) |
-
-| Status | Description |
-|--------|-------------|
-| **Failed** | Security issue identified that requires remediation |
-| **Passed** | Checked resources met the assessed best practice at time of scan |
-| **N/A** | No resources exist to check (for example, no notebooks, no guardrails configured) |
-
-## Customization
-
-### Adding New Accounts
-
-#### Option A: AWS Console
-
-1. Navigate to **AWS CloudFormation** > **StackSets**
-2. Select `aiml-security-member-roles` AWS CloudFormation StackSet
-3. Click **Add stacks to StackSet**
-4. Choose deployment targets:
-   - **Deploy to accounts**: Enter specific account IDs
-   - **Regions**: Select target regions
-5. Review and click **Submit**
-
-### Modifying Assessment Scope
-
-To add or remove service permissions, edit the member role permissions in `1-aiml-security-member-roles.yaml`.
-
-### Concurrent Scanning
-
-Adjust the `ConcurrentAccountScans` parameter based on your organization size and cost considerations.
-
-## Cleanup
+| Severity | Meaning |
+|----------|---------|
+| **High** | Critical — immediate action required |
+| **Medium** | Important — should be addressed |
+| **Low** | Minor — best practice optimization |
+| **Informational** | Advisory — no action required |
 
-### Single-Account Cleanup
+| Status | Meaning |
+|--------|---------|
+| **Failed** | Security issue identified |
+| **Passed** | Resource meets best practice |
+| **N/A** | No resources to assess or service not available in region |
 
-To remove all resources deployed for single-account assessment:
-
-1. **Delete the AWS SAM-deployed assessment stack**:
-   - Navigate to **AWS CloudFormation** > **Stacks**
-   - Select the `aiml-sec-{account_id}` stack (for example, `aiml-sec-123456789012`)
-   - Click **Delete**
-   - Wait for stack deletion to complete
-
-2. **Delete the AWS CodeBuild infrastructure stack**:
-   - Select the `aiml-security-single-account` stack (or your custom stack name)
-   - Click **Delete**
-   - Wait for stack deletion to complete
-
-3. **Clean up Amazon S3 buckets** (if stack deletion fails due to non-empty buckets):
-   ```bash
-   # Empty the assessment bucket
-   aws s3 rm s3://<assessment-bucket-name> --recursive
-
-   # If versioning is enabled, delete version markers
-   aws s3api delete-objects --bucket <bucket-name> --delete \
-     "$(aws s3api list-object-versions --bucket <bucket-name> \
-     --query '{Objects: Versions[].{Key:Key,VersionId:VersionId}}')"
-
-   # Delete the bucket
-   aws s3 rb s3://<bucket-name>
-   ```
-
-### Multi-Account Cleanup
-
-To remove all resources deployed for multi-account assessment:
-
-1. **Delete AWS SAM-deployed stacks in each member account**:
-   - For each account that was scanned, navigate to **AWS CloudFormation** > **Stacks**
-   - Select the `aiml-security-{account_id}` stack (for example, `aiml-security-123456789012`)
-   - For the management account, select `aiml-security-mgmt`
-   - Click **Delete**
-   - Alternatively, use the AWS CLI to delete across accounts:
-     ```bash
-     # Assume role in member account and delete stack
-     aws cloudformation delete-stack --stack-name aiml-security-<account_id> \
-       --region <region>
-     ```
-
-2. **Delete the central AWS CodeBuild infrastructure stack**:
-   - In the management account, navigate to **AWS CloudFormation** > **Stacks**
-   - Select the `aiml-security-multi-account` stack
-   - Click **Delete**
-   - Wait for stack deletion to complete
-
-3. **Delete the AWS CloudFormation StackSet member roles**:
-   - Navigate to **AWS CloudFormation** > **StackSets**
-   - Select the `aiml-security-member-roles` AWS CloudFormation StackSet
-   - Click **Actions** > **Delete stacks from StackSet**
-   - Select all deployment targets (OUs or accounts)
-   - Wait for stack instances to be deleted
-   - Once all stack instances are removed, delete the AWS CloudFormation StackSet itself
-
-4. **Clean up Amazon S3 buckets** (if stack deletion fails due to non-empty buckets):
-   ```bash
-   # List and identify assessment buckets
-   aws s3 ls | grep aiml-security
-
-   # Empty each bucket
-   aws s3 rm s3://<bucket-name> --recursive
-
-   # Delete version markers if versioning was enabled
-   aws s3api delete-objects --bucket <bucket-name> --delete \
-     "$(aws s3api list-object-versions --bucket <bucket-name> \
-     --query '{Objects: Versions[].{Key:Key,VersionId:VersionId}}')"
-
-   # Delete the bucket
-   aws s3 rb s3://<bucket-name>
-   ```
-
-### Cleanup Order
-
-For a clean removal, delete resources in this order:
-
-1. **Assessment stacks** (auto-created by SAM):
-   - Single-account: `aiml-sec-{account_id}` (for example, `aiml-sec-123456789012`)
-   - Multi-account: `aiml-security-{account_id}` per member account, plus `aiml-security-mgmt` for management account
-
-2. **Infrastructure stack** (the stack you deployed manually):
-   - Single-account: Your chosen stack name (for example, `my-aiml-assessment`)
-   - Multi-account: `aiml-security-multi-account` or your chosen name
+---
 
-3. AWS CloudFormation StackSet member roles (multi-account only)
+## Customization
 
-4. Any remaining Amazon S3 buckets manually
+| Task | How |
+|------|-----|
+| Add new accounts | Add to StackSet deployment targets |
+| Modify permissions scope | Edit `1-aiml-security-member-roles.yaml` |
+| Adjust concurrency | Change `ConcurrentAccountScans` parameter |
+| Add new service checks | See [Developer Guide](docs/DEVELOPER_GUIDE.md#adding-new-aiml-service-assessments) |
 
 ---
 
@@ -498,9 +174,10 @@ For a clean removal, delete resources in this order:
 
 | Document | Description |
 |----------|-------------|
-| [Security Checks Reference](docs/SECURITY_CHECKS.md) | Complete reference for all 52 security checks with severity levels |
-| [Troubleshooting Guide](docs/TROUBLESHOOTING.md) | Common issues, debugging tips, and FAQ |
-| [Developer Guide](docs/DEVELOPER_GUIDE.md) | Architecture details, adding custom checks, and contributing |
+| [Security Checks Reference](docs/SECURITY_CHECKS.md) | Complete reference for all 52 security checks |
+| [Troubleshooting Guide](docs/TROUBLESHOOTING.md) | Common issues, stack identification, upgrade guide, debugging |
+| [Developer Guide](docs/DEVELOPER_GUIDE.md) | Architecture details, adding custom checks, contributing |
+| [Cleanup Guide](docs/CLEANUP.md) | Step-by-step resource removal instructions |
 
 ---
 
@@ -510,17 +187,17 @@ GitHub Actions workflows run automatically on pull requests and pushes to `main`
 
 | Workflow | Trigger | What It Checks |
 |----------|---------|----------------|
-| **Python Code Quality** | PR | Runs `ruff check` and `ruff format --check` on changed Python files |
+| **Python Code Quality** | PR | `ruff check` and `ruff format --check` on changed Python files |
 | **CloudFormation Lint** | PR | Validates deployment and SAM templates with `cfn-lint` |
-| **SAM Validate & Build** | PR | Runs `sam validate --lint` and `sam build` on SAM templates |
-| **ASH Security Scan** | PR | Scans changed files for secrets, dependency vulnerabilities, and IaC misconfigurations |
-| **ASH Full Repository Scan** | Push to main, monthly | Full repository security scan with results uploaded as artifacts |
+| **SAM Validate & Build** | PR | `sam validate --lint` and `sam build` on SAM templates |
+| **ASH Security Scan** | PR | Scans for secrets, dependency vulnerabilities, and IaC misconfigurations |
+| **ASH Full Repository Scan** | Push to main, monthly | Full repository security scan |
 
 ---
 
 ## Contributing
 
-We welcome community contributions! Please see [Developer Guide](docs/DEVELOPER_GUIDE.md) for guidelines.
+We welcome community contributions! See the [Developer Guide](docs/DEVELOPER_GUIDE.md) for guidelines.
 
 ## Security
 
diff --git a/aiml-security-assessment/functions/security/agentcore_assessments/app.py b/aiml-security-assessment/functions/security/agentcore_assessments/app.py
index b06b88f..23f427f 100644
--- a/aiml-security-assessment/functions/security/agentcore_assessments/app.py
+++ b/aiml-security-assessment/functions/security/agentcore_assessments/app.py
@@ -15,7 +15,7 @@
 from datetime import datetime, timezone
 from typing import Dict, List, Any
 from botocore.config import Config
-from botocore.exceptions import ClientError
+from botocore.exceptions import ClientError, EndpointConnectionError
 
 from schema import create_finding, SeverityEnum, StatusEnum
 
@@ -26,22 +26,17 @@
 # Configure boto3 with adaptive retry mode
 boto3_config = Config(retries=dict(max_attempts=10, mode="adaptive"))
 
-# Initialize AWS clients
+# Initialize S3 client (always uses Lambda's region for bucket operations)
 s3_client = boto3.client("s3", config=boto3_config)
-iam_client = boto3.client("iam", config=boto3_config)
-ec2_client = boto3.client("ec2", config=boto3_config)
-ecr_client = boto3.client("ecr", config=boto3_config)
-logs_client = boto3.client("logs", config=boto3_config)
-xray_client = boto3.client("xray", config=boto3_config)
-cloudwatch_client = boto3.client("cloudwatch", config=boto3_config)
-
-# Initialize AgentCore client
-try:
-    agentcore_client = boto3.client("bedrock-agentcore-control", config=boto3_config)
-    logger.info("Successfully initialized bedrock-agentcore-control client")
-except Exception as e:
-    logger.warning(f"Failed to initialize bedrock-agentcore-control client: {e}")
-    agentcore_client = None
+
+# Regional clients — initialized in lambda_handler with target region
+iam_client = None
+ec2_client = None
+ecr_client = None
+logs_client = None
+xray_client = None
+cloudwatch_client = None
+agentcore_client = None
 
 # Environment variables
 BUCKET_NAME = os.environ.get("AIML_ASSESSMENT_BUCKET_NAME")
@@ -137,6 +132,7 @@ def generate_csv_report(findings: List[Dict[str, Any]]) -> str:
                 "Reference",
                 "Severity",
                 "Status",
+                "Region",
             ],
         )
         writer.writeheader()
@@ -153,6 +149,7 @@ def generate_csv_report(findings: List[Dict[str, Any]]) -> str:
             "Reference",
             "Severity",
             "Status",
+            "Region",
         ],
     )
     writer.writeheader()
@@ -166,7 +163,7 @@ def generate_csv_report(findings: List[Dict[str, Any]]) -> str:
     return csv_content
 
 
-def write_to_s3(execution_id: str, csv_content: str, bucket_name: str) -> str:
+def write_to_s3(execution_id: str, csv_content: str, bucket_name: str, region: str = "") -> str:
     """
     Upload CSV report to S3.
 
@@ -174,6 +171,7 @@ def write_to_s3(execution_id: str, csv_content: str, bucket_name: str) -> str:
         execution_id: Unique execution identifier
         csv_content: CSV content to upload
         bucket_name: S3 bucket name
+        region: AWS region identifier for the report filename
 
     Returns:
         S3 URL of uploaded file
@@ -182,7 +180,10 @@ def write_to_s3(execution_id: str, csv_content: str, bucket_name: str) -> str:
         Exception: If upload fails
     """
     try:
-        key = f"agentcore_security_report_{execution_id}.csv"
+        if region:
+            key = f"agentcore_security_report_{execution_id}_{region}.csv"
+        else:
+            key = f"agentcore_security_report_{execution_id}.csv"
 
         s3_client.put_object(
             Bucket=bucket_name,
@@ -2243,16 +2244,76 @@ def lambda_handler(event, context):
     Lambda handler for AgentCore security assessment.
 
     Args:
-        event: Lambda event containing execution_id
+        event: Lambda event containing execution_id and Region
         context: Lambda context
 
     Returns:
         Response with status and S3 URL
     """
-    global start_time
+    global start_time, iam_client, ec2_client, ecr_client, logs_client
+    global xray_client, cloudwatch_client, agentcore_client
     start_time = time.time()
 
     try:
+        # Extract target region from Step Functions Map state
+        region = event.get("Region", os.environ.get("AWS_REGION", "us-east-1"))
+        logger.info(f"Scanning region: {region}")
+
+        # Initialize regional clients
+        iam_client = boto3.client("iam", config=boto3_config)
+        ec2_client = boto3.client("ec2", config=boto3_config, region_name=region)
+        ecr_client = boto3.client("ecr", config=boto3_config, region_name=region)
+        logs_client = boto3.client("logs", config=boto3_config, region_name=region)
+        xray_client = boto3.client("xray", config=boto3_config, region_name=region)
+        cloudwatch_client = boto3.client("cloudwatch", config=boto3_config, region_name=region)
+
+        try:
+            agentcore_client = boto3.client("bedrock-agentcore-control", config=boto3_config, region_name=region)
+            # Test service availability with a lightweight call
+            agentcore_client.list_agent_runtimes(maxResults=1)
+            logger.info("Successfully initialized bedrock-agentcore-control client")
+        except EndpointConnectionError:
+            logger.info(f"AgentCore service not available in region {region}, skipping")
+            agentcore_client = None
+        except ClientError as e:
+            if "Could not connect" in str(e):
+                logger.info(f"AgentCore service not available in region {region}, skipping")
+                agentcore_client = None
+            else:
+                # Service is available but returned an API error (e.g., access denied) — proceed
+                logger.info("AgentCore client initialized (API accessible)")
+        except Exception as e:
+            if "Could not connect to the endpoint URL" in str(e):
+                logger.info(f"AgentCore service not available in region {region}, skipping")
+                agentcore_client = None
+            else:
+                logger.warning(f"Failed to initialize bedrock-agentcore-control client: {e}")
+                agentcore_client = None
+
+        # If AgentCore not available, produce a single N/A report and exit early
+        if agentcore_client is None:
+            execution_id = event.get("Execution", {}).get("Name", "unknown")
+            na_findings = [
+                create_finding(
+                    check_id="AC-00",
+                    finding_name="AgentCore Service Availability",
+                    finding_details=f"Amazon Bedrock AgentCore is not available in region {region}. No checks performed.",
+                    resolution="No action required. AgentCore is not deployed in this region.",
+                    reference="https://aws.github.io/bedrock-agentcore-starter-toolkit/",
+                    severity=SeverityEnum.INFORMATIONAL,
+                    status=StatusEnum.NA,
+                    region=region,
+                )
+            ]
+            for finding in na_findings:
+                finding["Region"] = region
+            csv_content = generate_csv_report(na_findings)
+            s3_url = write_to_s3(execution_id, csv_content, BUCKET_NAME, region=region)
+            return {
+                "statusCode": 200,
+                "body": json.dumps({"message": f"AgentCore not available in {region}", "s3_url": s3_url}),
+            }
+
         # Extract execution ID
         execution_id = event.get("Execution", {}).get("Name", "unknown")
         logger.info(
@@ -2310,7 +2371,6 @@ def lambda_handler(event, context):
 
             except Exception as e:
                 logger.error(f"Error in check '{check_name}': {e}")
-                # Add error finding
                 all_findings.append(
                     create_finding(
                         check_id="AC-00",
@@ -2320,15 +2380,21 @@ def lambda_handler(event, context):
                         reference="https://aws.github.io/bedrock-agentcore-starter-toolkit/",
                         severity=SeverityEnum.HIGH,
                         status=StatusEnum.FAILED,
+                        region=region,
                     )
                 )
 
+        # Inject region into all findings that don't have it set
+        for finding in all_findings:
+            if not finding.get("Region"):
+                finding["Region"] = region
+
         # Generate CSV report
         logger.info(f"Generating CSV report with {len(all_findings)} total findings")
         csv_content = generate_csv_report(all_findings)
 
         # Upload to S3
-        s3_url = write_to_s3(execution_id, csv_content, BUCKET_NAME)
+        s3_url = write_to_s3(execution_id, csv_content, BUCKET_NAME, region=region)
 
         # Calculate execution metrics
         total_duration = time.time() - start_time
diff --git a/aiml-security-assessment/functions/security/agentcore_assessments/schema.py b/aiml-security-assessment/functions/security/agentcore_assessments/schema.py
index 229c163..56f63b5 100644
--- a/aiml-security-assessment/functions/security/agentcore_assessments/schema.py
+++ b/aiml-security-assessment/functions/security/agentcore_assessments/schema.py
@@ -24,6 +24,7 @@ class Finding(BaseModel):
     Reference: str = Field(..., description="Documentation reference URL")
     Severity: SeverityEnum = Field(..., description="Severity level of the finding")
     Status: StatusEnum = Field(..., description="Current status of the finding")
+    Region: str = Field(default="", description="AWS region where the finding was identified")
 
     @validator('Check_ID')
     def validate_check_id(cls, v):
@@ -61,7 +62,8 @@ def create_finding(
     resolution: str,
     reference: str,
     severity: SeverityEnum,
-    status: StatusEnum
+    status: StatusEnum,
+    region: str = ""
 ) -> Dict[str, Any]:
     """
     Create a validated finding object
@@ -74,6 +76,7 @@ def create_finding(
         reference: Documentation URL
         severity: Severity level
         status: Current status
+        region: AWS region where the finding was identified
 
     Returns:
         Dict[str, Any]: Validated finding as dictionary
@@ -88,6 +91,7 @@ def create_finding(
         Resolution=resolution,
         Reference=reference,
         Severity=severity,
-        Status=status
+        Status=status,
+        Region=region
     )
     return dict(finding.model_dump())  # Convert to regular dictionary
diff --git a/aiml-security-assessment/functions/security/bedrock_assessments/app.py b/aiml-security-assessment/functions/security/bedrock_assessments/app.py
index 2f62915..c59fda7 100644
--- a/aiml-security-assessment/functions/security/bedrock_assessments/app.py
+++ b/aiml-security-assessment/functions/security/bedrock_assessments/app.py
@@ -7,7 +7,7 @@
 from typing import Dict, List, Any, Optional
 from io import StringIO
 from botocore.config import Config
-from botocore.exceptions import ClientError
+from botocore.exceptions import ClientError, EndpointConnectionError
 import random
 import json
 from schema import create_finding
@@ -79,7 +79,7 @@ def get_permissions_cache(execution_id: str) -> Optional[Dict[str, Any]]:
         return None
 
 
-def check_marketplace_subscription_access(permission_cache) -> Dict[str, Any]:
+def check_marketplace_subscription_access(permission_cache, region: str = "") -> Dict[str, Any]:
     logger.debug("Starting check for overly permissive Marketplace subscription access")
     try:
         findings = {
@@ -165,6 +165,7 @@ def check_policy_for_subscription_access(policy_doc: Any) -> bool:
                         reference="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace",
                         severity="High",
                         status="Failed",
+                        region=region,
                     )
                 )
         else:
@@ -180,6 +181,7 @@ def check_policy_for_subscription_access(policy_doc: Any) -> bool:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace",
                     severity="Medium",
                     status="Passed",
+                    region=region,
                 )
             )
 
@@ -202,6 +204,7 @@ def check_policy_for_subscription_access(policy_doc: Any) -> bool:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ],
         }
@@ -443,7 +446,7 @@ def check_stale_bedrock_access(permission_cache) -> Dict[str, Any]:
         }
 
 
-def check_bedrock_full_access_roles(permission_cache) -> Dict[str, Any]:
+def check_bedrock_full_access_roles(permission_cache, region: str = "") -> Dict[str, Any]:
     """
     Check for roles with AmazonBedrockFullAccess policy using cached permissions
     """
@@ -478,6 +481,7 @@ def check_bedrock_full_access_roles(permission_cache) -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-all\nhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             )
     else:
@@ -491,6 +495,7 @@ def check_bedrock_full_access_roles(permission_cache) -> Dict[str, Any]:
                 reference="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-all\nhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html",
                 severity="High",
                 status="Passed",
+                region=region,
             )
         )
 
@@ -535,13 +540,13 @@ def get_role_usage(role_name: str) -> str:
     return result
 
 
-def check_bedrock_vpc_endpoints() -> Dict[str, bool]:
+def check_bedrock_vpc_endpoints(region: str = "") -> Dict[str, bool]:
     """
     Check if any VPC has Bedrock VPC endpoints
     """
     logger.debug("Checking for Bedrock VPC endpoints")
     try:
-        ec2_client = boto3.client("ec2", config=boto3_config)
+        ec2_client = boto3.client("ec2", config=boto3_config, region_name=region)
 
         bedrock_endpoints = [
             "com.amazonaws.region.bedrock",
@@ -551,8 +556,7 @@ def check_bedrock_vpc_endpoints() -> Dict[str, bool]:
         ]
 
         # Get current region
-        session = boto3.session.Session()
-        current_region = session.region_name
+        current_region = region
         logger.debug(f"Current region: {current_region}")
 
         # Get list of all VPCs
@@ -661,7 +665,7 @@ def handle_aws_throttling(func, *args, **kwargs):
                 raise
 
 
-def check_bedrock_access_and_vpc_endpoints(permission_cache) -> Dict[str, Any]:
+def check_bedrock_access_and_vpc_endpoints(permission_cache, region: str = "") -> Dict[str, Any]:
     logger.debug("Starting check for Bedrock access and VPC endpoints")
     try:
         findings = {
@@ -686,7 +690,7 @@ def check_bedrock_access_and_vpc_endpoints(permission_cache) -> Dict[str, Any]:
                     break
 
         if bedrock_access_found:
-            vpc_endpoint_check = check_bedrock_vpc_endpoints()
+            vpc_endpoint_check = check_bedrock_vpc_endpoints(region=region)
 
             if not vpc_endpoint_check["has_endpoints"]:
                 findings["status"] = "WARN"
@@ -708,6 +712,7 @@ def check_bedrock_access_and_vpc_endpoints(permission_cache) -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
             else:
@@ -728,6 +733,7 @@ def check_bedrock_access_and_vpc_endpoints(permission_cache) -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html",
                         severity="High",
                         status="Passed",
+                        region=region,
                     )
                 )
         else:
@@ -752,12 +758,13 @@ def check_bedrock_access_and_vpc_endpoints(permission_cache) -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ],
         }
 
 
-def check_bedrock_guardrails() -> Dict[str, Any]:
+def check_bedrock_guardrails(region: str = "") -> Dict[str, Any]:
     """
     Check if Amazon Bedrock Guardrails are configured and being used
     """
@@ -770,7 +777,7 @@ def check_bedrock_guardrails() -> Dict[str, Any]:
             "csv_data": [],
         }
 
-        bedrock_client = boto3.client("bedrock", config=boto3_config)
+        bedrock_client = boto3.client("bedrock", config=boto3_config, region_name=region)
 
         try:
             # List all guardrails
@@ -792,6 +799,7 @@ def check_bedrock_guardrails() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html",
                         severity="High",
                         status="Passed",
+                        region=region,
                     )
                 )
             else:
@@ -806,6 +814,7 @@ def check_bedrock_guardrails() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
 
@@ -821,6 +830,7 @@ def check_bedrock_guardrails() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             )
 
@@ -841,12 +851,13 @@ def check_bedrock_guardrails() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ],
         }
 
 
-def check_bedrock_logging_configuration() -> Dict[str, Any]:
+def check_bedrock_logging_configuration(region: str = "") -> Dict[str, Any]:
     """
     Check if model invocation logging is enabled for Amazon Bedrock
     """
@@ -859,7 +870,7 @@ def check_bedrock_logging_configuration() -> Dict[str, Any]:
             "csv_data": [],
         }
 
-        bedrock_client = boto3.client("bedrock", config=boto3_config)
+        bedrock_client = boto3.client("bedrock", config=boto3_config, region_name=region)
 
         try:
             # Get current logging configuration
@@ -895,6 +906,7 @@ def check_bedrock_logging_configuration() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html",
                         severity="Medium",
                         status="Passed",
+                        region=region,
                     )
                 )
             else:
@@ -909,6 +921,7 @@ def check_bedrock_logging_configuration() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
 
@@ -924,6 +937,7 @@ def check_bedrock_logging_configuration() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html",
                     severity="Medium",
                     status="Failed",
+                    region=region,
                 )
             )
 
@@ -946,12 +960,13 @@ def check_bedrock_logging_configuration() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ],
         }
 
 
-def check_bedrock_cloudtrail_logging() -> Dict[str, Any]:
+def check_bedrock_cloudtrail_logging(region: str = "") -> Dict[str, Any]:
     """
     Check if CloudTrail is configured to log Amazon Bedrock API calls
     """
@@ -964,7 +979,7 @@ def check_bedrock_cloudtrail_logging() -> Dict[str, Any]:
             "csv_data": [],
         }
 
-        cloudtrail_client = boto3.client("cloudtrail", config=boto3_config)
+        cloudtrail_client = boto3.client("cloudtrail", config=boto3_config, region_name=region)
 
         try:
             # Get all trails
@@ -1034,6 +1049,7 @@ def check_bedrock_cloudtrail_logging() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html",
                         severity="Medium",
                         status="Passed",
+                        region=region,
                     )
                 )
             else:
@@ -1052,6 +1068,7 @@ def check_bedrock_cloudtrail_logging() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html",
                         severity="High",
                         status="Failed",
+                        region=region,
                     )
                 )
 
@@ -1067,6 +1084,7 @@ def check_bedrock_cloudtrail_logging() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             )
 
@@ -1089,12 +1107,13 @@ def check_bedrock_cloudtrail_logging() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ],
         }
 
 
-def check_bedrock_prompt_management() -> Dict[str, Any]:
+def check_bedrock_prompt_management(region: str = "") -> Dict[str, Any]:
     """
     Check if Amazon Bedrock Prompt Management feature is being used
     """
@@ -1107,7 +1126,7 @@ def check_bedrock_prompt_management() -> Dict[str, Any]:
             "csv_data": [],
         }
 
-        bedrock_client = boto3.client("bedrock-agent", config=boto3_config)
+        bedrock_client = boto3.client("bedrock-agent", config=boto3_config, region_name=region)
 
         try:
             # List all prompts
@@ -1131,6 +1150,7 @@ def check_bedrock_prompt_management() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html",
                         severity="Low",
                         status="Passed",
+                        region=region,
                     )
                 )
 
@@ -1159,6 +1179,7 @@ def check_bedrock_prompt_management() -> Dict[str, Any]:
                             reference="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html",
                             severity="Low",
                             status="Failed",
+                            region=region,
                         )
                     )
             else:
@@ -1177,6 +1198,7 @@ def check_bedrock_prompt_management() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
 
@@ -1192,6 +1214,7 @@ def check_bedrock_prompt_management() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             )
 
@@ -1214,12 +1237,13 @@ def check_bedrock_prompt_management() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ],
         }
 
 
-def check_bedrock_knowledge_base_encryption() -> Dict[str, Any]:
+def check_bedrock_knowledge_base_encryption(region: str = "") -> Dict[str, Any]:
     """
     Check if Amazon Bedrock Knowledge Bases have proper encryption configured
     including customer-managed KMS keys for data at rest
@@ -1233,7 +1257,7 @@ def check_bedrock_knowledge_base_encryption() -> Dict[str, Any]:
             "csv_data": [],
         }
 
-        bedrock_agent_client = boto3.client("bedrock-agent", config=boto3_config)
+        bedrock_agent_client = boto3.client("bedrock-agent", config=boto3_config, region_name=region)
 
         try:
             # List all knowledge bases
@@ -1253,6 +1277,7 @@ def check_bedrock_knowledge_base_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
                 return findings
@@ -1299,6 +1324,7 @@ def check_bedrock_knowledge_base_encryption() -> Dict[str, Any]:
                             reference="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html",
                             severity="Informational",
                             status="N/A",
+                            region=region,
                         )
                     )
             else:
@@ -1311,6 +1337,7 @@ def check_bedrock_knowledge_base_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html",
                         severity="High",
                         status="Passed",
+                        region=region,
                     )
                 )
 
@@ -1328,6 +1355,7 @@ def check_bedrock_knowledge_base_encryption() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             )
 
@@ -1350,12 +1378,13 @@ def check_bedrock_knowledge_base_encryption() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ],
         }
 
 
-def check_bedrock_guardrail_iam_enforcement(permission_cache) -> Dict[str, Any]:
+def check_bedrock_guardrail_iam_enforcement(permission_cache, region: str = "") -> Dict[str, Any]:
     """
     Check if IAM policies enforce the use of specific guardrails via
     the bedrock:GuardrailIdentifier condition key
@@ -1369,7 +1398,7 @@ def check_bedrock_guardrail_iam_enforcement(permission_cache) -> Dict[str, Any]:
             "csv_data": [],
         }
 
-        bedrock_client = boto3.client("bedrock", config=boto3_config)
+        bedrock_client = boto3.client("bedrock", config=boto3_config, region_name=region)
 
         # First check if any guardrails exist
         try:
@@ -1386,6 +1415,7 @@ def check_bedrock_guardrail_iam_enforcement(permission_cache) -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
                 return findings
@@ -1485,6 +1515,7 @@ def check_bedrock_guardrail_iam_enforcement(permission_cache) -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             )
         else:
@@ -1499,6 +1530,7 @@ def check_bedrock_guardrail_iam_enforcement(permission_cache) -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
             else:
@@ -1512,6 +1544,7 @@ def check_bedrock_guardrail_iam_enforcement(permission_cache) -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html",
                         severity="Medium",
                         status="Passed",
+                        region=region,
                     )
                 )
 
@@ -1534,12 +1567,13 @@ def check_bedrock_guardrail_iam_enforcement(permission_cache) -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ],
         }
 
 
-def check_bedrock_custom_model_encryption() -> Dict[str, Any]:
+def check_bedrock_custom_model_encryption(region: str = "") -> Dict[str, Any]:
     """
     Check if custom/fine-tuned Bedrock models have proper encryption configured
     """
@@ -1552,7 +1586,7 @@ def check_bedrock_custom_model_encryption() -> Dict[str, Any]:
             "csv_data": [],
         }
 
-        bedrock_client = boto3.client("bedrock", config=boto3_config)
+        bedrock_client = boto3.client("bedrock", config=boto3_config, region_name=region)
 
         try:
             # List custom models
@@ -1572,6 +1606,7 @@ def check_bedrock_custom_model_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
                 return findings
@@ -1639,6 +1674,7 @@ def check_bedrock_custom_model_encryption() -> Dict[str, Any]:
                             reference="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html",
                             severity="Medium",
                             status="Failed",
+                            region=region,
                         )
                     )
             else:
@@ -1651,6 +1687,7 @@ def check_bedrock_custom_model_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html",
                         severity="High",
                         status="Passed",
+                        region=region,
                     )
                 )
 
@@ -1665,6 +1702,7 @@ def check_bedrock_custom_model_encryption() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/model-customization-iam-role.html",
                     severity="Low",
                     status="N/A",
+                    region=region,
                 )
             )
 
@@ -1687,12 +1725,13 @@ def check_bedrock_custom_model_encryption() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ],
         }
 
 
-def check_bedrock_invocation_log_encryption() -> Dict[str, Any]:
+def check_bedrock_invocation_log_encryption(region: str = "") -> Dict[str, Any]:
     """
     Check if S3 buckets used for model invocation logging have proper encryption
     """
@@ -1705,8 +1744,8 @@ def check_bedrock_invocation_log_encryption() -> Dict[str, Any]:
             "csv_data": [],
         }
 
-        bedrock_client = boto3.client("bedrock", config=boto3_config)
-        s3_client = boto3.client("s3", config=boto3_config)
+        bedrock_client = boto3.client("bedrock", config=boto3_config, region_name=region)
+        s3_client = boto3.client("s3", config=boto3_config, region_name=region)
 
         try:
             # Get logging configuration
@@ -1725,6 +1764,7 @@ def check_bedrock_invocation_log_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
                 return findings
@@ -1768,6 +1808,7 @@ def check_bedrock_invocation_log_encryption() -> Dict[str, Any]:
                             reference="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html",
                             severity="Medium",
                             status="Passed",
+                            region=region,
                         )
                     )
                 else:
@@ -1781,6 +1822,7 @@ def check_bedrock_invocation_log_encryption() -> Dict[str, Any]:
                             reference="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html",
                             severity="Medium",
                             status="Failed",
+                            region=region,
                         )
                     )
 
@@ -1799,6 +1841,7 @@ def check_bedrock_invocation_log_encryption() -> Dict[str, Any]:
                             reference="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html",
                             severity="High",
                             status="Failed",
+                            region=region,
                         )
                     )
                 elif e.response["Error"]["Code"] == "AccessDenied":
@@ -1811,6 +1854,7 @@ def check_bedrock_invocation_log_encryption() -> Dict[str, Any]:
                             reference="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html",
                             severity="Medium",
                             status="Failed",
+                            region=region,
                         )
                     )
                 else:
@@ -1826,6 +1870,7 @@ def check_bedrock_invocation_log_encryption() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html",
                     severity="Informational",
                     status="N/A",
+                    region=region,
                 )
             )
 
@@ -1848,12 +1893,13 @@ def check_bedrock_invocation_log_encryption() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ],
         }
 
 
-def check_bedrock_flows_guardrails() -> Dict[str, Any]:
+def check_bedrock_flows_guardrails(region: str = "") -> Dict[str, Any]:
     """
     Check if Bedrock Flows have guardrails configured on prompt and knowledge base nodes
     """
@@ -1866,7 +1912,7 @@ def check_bedrock_flows_guardrails() -> Dict[str, Any]:
             "csv_data": [],
         }
 
-        bedrock_agent_client = boto3.client("bedrock-agent", config=boto3_config)
+        bedrock_agent_client = boto3.client("bedrock-agent", config=boto3_config, region_name=region)
 
         try:
             # List all flows
@@ -1886,6 +1932,7 @@ def check_bedrock_flows_guardrails() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
                 return findings
@@ -1970,6 +2017,7 @@ def check_bedrock_flows_guardrails() -> Dict[str, Any]:
                             reference="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html",
                             severity="High",
                             status="Failed",
+                            region=region,
                         )
                     )
             else:
@@ -1984,6 +2032,7 @@ def check_bedrock_flows_guardrails() -> Dict[str, Any]:
                             reference="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html",
                             severity="Medium",
                             status="Passed",
+                            region=region,
                         )
                     )
                 else:
@@ -1997,6 +2046,7 @@ def check_bedrock_flows_guardrails() -> Dict[str, Any]:
                             reference="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html",
                             severity="Informational",
                             status="N/A",
+                            region=region,
                         )
                     )
 
@@ -2011,6 +2061,7 @@ def check_bedrock_flows_guardrails() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html",
                     severity="Low",
                     status="N/A",
+                    region=region,
                 )
             )
 
@@ -2033,12 +2084,13 @@ def check_bedrock_flows_guardrails() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ],
         }
 
 
-def check_bedrock_agent_roles(permission_cache) -> Dict[str, Any]:
+def check_bedrock_agent_roles(permission_cache, region: str = "") -> Dict[str, Any]:
     """
     Check IAM roles associated with Bedrock agents for least privilege access
     """
@@ -2051,7 +2103,7 @@ def check_bedrock_agent_roles(permission_cache) -> Dict[str, Any]:
             "csv_data": [],
         }
 
-        bedrock_client = boto3.client("bedrock-agent", config=boto3_config)
+        bedrock_client = boto3.client("bedrock-agent", config=boto3_config, region_name=region)
 
         try:
             # Get all Bedrock agents
@@ -2069,6 +2121,7 @@ def check_bedrock_agent_roles(permission_cache) -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
                 return findings
@@ -2169,6 +2222,7 @@ def check_bedrock_agent_roles(permission_cache) -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/wellarchitected/latest/generative-ai-lens/gensec05-bp01.html",
                         severity="High",
                         status="Failed",
+                        region=region,
                     )
                 )
             else:
@@ -2184,6 +2238,7 @@ def check_bedrock_agent_roles(permission_cache) -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/wellarchitected/latest/generative-ai-lens/gensec05-bp01.html",
                         severity="Medium",
                         status="Passed",
+                        region=region,
                     )
                 )
 
@@ -2199,6 +2254,7 @@ def check_bedrock_agent_roles(permission_cache) -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/wellarchitected/latest/generative-ai-lens/gensec05-bp01.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             )
 
@@ -2219,6 +2275,7 @@ def check_bedrock_agent_roles(permission_cache) -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ],
         }
@@ -2238,6 +2295,7 @@ def generate_csv_report(findings: List[Dict[str, Any]]) -> str:
         "Reference",
         "Severity",
         "Status",
+        "Region",
     ]
     writer = csv.DictWriter(csv_buffer, fieldnames=fieldnames)
 
@@ -2254,14 +2312,17 @@ def get_current_utc_date():
     return datetime.now(timezone.utc).strftime("%Y/%m/%d")
 
 
-def write_to_s3(execution_id, csv_content: str, bucket_name: str) -> str:
+def write_to_s3(execution_id, csv_content: str, bucket_name: str, region: str = "") -> str:
     """
     Write CSV report to S3 bucket
     """
     logger.debug(f"Writing CSV report to S3 bucket: {bucket_name}")
     try:
         s3_client = boto3.client("s3", config=boto3_config)
-        file_name = f"bedrock_security_report_{execution_id}.csv"
+        if region:
+            file_name = f"bedrock_security_report_{execution_id}_{region}.csv"
+        else:
+            file_name = f"bedrock_security_report_{execution_id}.csv"
 
         s3_client.put_object(
             Bucket=bucket_name, Key=file_name, Body=csv_content, ContentType="text/csv"
@@ -2283,6 +2344,41 @@ def lambda_handler(event, context):
     all_findings = []
 
     try:
+        # Extract target region from Step Functions Map state
+        region = event.get("Region", os.environ.get("AWS_REGION", "us-east-1"))
+        logger.info(f"Scanning region: {region}")
+
+        # Verify Bedrock is available in this region
+        try:
+            test_client = boto3.client("bedrock", config=boto3_config, region_name=region)
+            test_client.get_model_invocation_logging_configuration()
+        except (EndpointConnectionError, Exception) as e:
+            error_msg = str(e)
+            if "Could not connect to the endpoint URL" in error_msg or "EndpointConnectionError" in type(e).__name__:
+                logger.info(f"Bedrock service not available in region {region}, skipping")
+                all_findings.append({
+                    "check_name": "Bedrock Service Availability",
+                    "status": "N/A",
+                    "details": f"Bedrock is not available in region {region}",
+                    "csv_data": [
+                        create_finding(
+                            check_id="BR-00",
+                            finding_name="Bedrock Service Availability",
+                            finding_details=f"Amazon Bedrock is not available in region {region}. No checks performed.",
+                            resolution="No action required. Bedrock is not deployed in this region.",
+                            reference="https://docs.aws.amazon.com/bedrock/latest/userguide/bedrock-regions.html",
+                            severity="Informational",
+                            status="N/A",
+                            region=region,
+                        )
+                    ],
+                })
+                execution_id = event["Execution"]["Name"]
+                csv_content = generate_csv_report(all_findings)
+                bucket_name = os.environ.get("AIML_ASSESSMENT_BUCKET_NAME")
+                s3_url = write_to_s3(execution_id, csv_content, bucket_name, region=region)
+                return {"statusCode": 200, "body": {"message": f"Bedrock not available in {region}", "report_url": s3_url}}
+
         # Initialize permission cache
         logger.info("Initializing IAM permission cache")
         execution_id = event["Execution"]["Name"]
@@ -2296,65 +2392,61 @@ def lambda_handler(event, context):
 
         # Run all checks using the cached permissions
         logger.info("Running AmazonBedrockFullAccess check")
-        bedrock_full_access_findings = check_bedrock_full_access_roles(permission_cache)
+        bedrock_full_access_findings = check_bedrock_full_access_roles(permission_cache, region=region)
         all_findings.append(bedrock_full_access_findings)
 
         logger.info("Running Bedrock access and VPC endpoints check")
         bedrock_access_vpc_findings = check_bedrock_access_and_vpc_endpoints(
-            permission_cache
+            permission_cache, region=region
         )
         all_findings.append(bedrock_access_vpc_findings)
 
-        # logger.info("Running stale access check")
-        # stale_access_findings = check_stale_bedrock_access(permission_cache)
-        # all_findings.append(stale_access_findings)
-
         logger.info("Running marketplace subscription access check")
         marketplace_access_findings = check_marketplace_subscription_access(
-            permission_cache
+            permission_cache, region=region
         )
         all_findings.append(marketplace_access_findings)
 
         logger.info("Running Bedrock logging findings check")
-        bedrock_logging_findings = check_bedrock_logging_configuration()
+        bedrock_logging_findings = check_bedrock_logging_configuration(region=region)
         all_findings.append(bedrock_logging_findings)
 
         logger.info("Running Bedrock Guardrails check")
-        bedrock_guardrails_findings = check_bedrock_guardrails()
+        bedrock_guardrails_findings = check_bedrock_guardrails(region=region)
         all_findings.append(bedrock_guardrails_findings)
 
         logger.info("Running Bedrock CloudTrail logging check")
-        bedrock_cloudtrail_findings = check_bedrock_cloudtrail_logging()
+        bedrock_cloudtrail_findings = check_bedrock_cloudtrail_logging(region=region)
         all_findings.append(bedrock_cloudtrail_findings)
 
         logger.info("Running Bedrock Prompt Management check")
-        bedrock_prompt_management_findings = check_bedrock_prompt_management()
+        bedrock_prompt_management_findings = check_bedrock_prompt_management(region=region)
         all_findings.append(bedrock_prompt_management_findings)
 
         logger.info("Running Bedrock agent IAM roles check")
-        bedrock_agent_roles_findings = check_bedrock_agent_roles(permission_cache)
+        bedrock_agent_roles_findings = check_bedrock_agent_roles(permission_cache, region=region)
         all_findings.append(bedrock_agent_roles_findings)
 
         logger.info("Running Bedrock Knowledge Base encryption check")
-        kb_encryption_findings = check_bedrock_knowledge_base_encryption()
+        kb_encryption_findings = check_bedrock_knowledge_base_encryption(region=region)
         all_findings.append(kb_encryption_findings)
 
         logger.info("Running Bedrock Guardrail IAM enforcement check")
         guardrail_iam_findings = check_bedrock_guardrail_iam_enforcement(
-            permission_cache
+            permission_cache, region=region
         )
         all_findings.append(guardrail_iam_findings)
 
         logger.info("Running Bedrock custom model encryption check")
-        custom_model_encryption_findings = check_bedrock_custom_model_encryption()
+        custom_model_encryption_findings = check_bedrock_custom_model_encryption(region=region)
         all_findings.append(custom_model_encryption_findings)
 
         logger.info("Running Bedrock invocation log encryption check")
-        invocation_log_encryption_findings = check_bedrock_invocation_log_encryption()
+        invocation_log_encryption_findings = check_bedrock_invocation_log_encryption(region=region)
         all_findings.append(invocation_log_encryption_findings)
 
         logger.info("Running Bedrock Flows guardrails check")
-        flows_guardrails_findings = check_bedrock_flows_guardrails()
+        flows_guardrails_findings = check_bedrock_flows_guardrails(region=region)
         all_findings.append(flows_guardrails_findings)
 
         # Generate and upload report
@@ -2368,7 +2460,7 @@ def lambda_handler(event, context):
             )
 
         logger.info("Writing report to S3")
-        s3_url = write_to_s3(execution_id, csv_content, bucket_name)
+        s3_url = write_to_s3(execution_id, csv_content, bucket_name, region=region)
 
         return {
             "statusCode": 200,
diff --git a/aiml-security-assessment/functions/security/bedrock_assessments/schema.py b/aiml-security-assessment/functions/security/bedrock_assessments/schema.py
index d2a713a..6b48996 100644
--- a/aiml-security-assessment/functions/security/bedrock_assessments/schema.py
+++ b/aiml-security-assessment/functions/security/bedrock_assessments/schema.py
@@ -24,6 +24,7 @@ class Finding(BaseModel):
     Reference: str = Field(..., description="Documentation reference URL")
     Severity: SeverityEnum = Field(..., description="Severity level of the finding")
     Status: StatusEnum = Field(..., description="Current status of the finding")
+    Region: str = Field(default="", description="AWS region where the finding was identified")
 
     @validator('Check_ID')
     def validate_check_id(cls, v):
@@ -61,7 +62,8 @@ def create_finding(
     resolution: str,
     reference: str,
     severity: SeverityEnum,
-    status: StatusEnum
+    status: StatusEnum,
+    region: str = ""
 ) -> Dict[str, Any]:
     """
     Create a validated finding object
@@ -74,6 +76,7 @@ def create_finding(
         reference: Documentation URL
         severity: Severity level
         status: Current status
+        region: AWS region where the finding was identified
 
     Returns:
         Dict[str, Any]: Validated finding as dictionary
@@ -88,6 +91,7 @@ def create_finding(
         Resolution=resolution,
         Reference=reference,
         Severity=severity,
-        Status=status
+        Status=status,
+        Region=region
     )
     return dict(finding.model_dump())  # Convert to regular dictionary
\ No newline at end of file
diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/app.py b/aiml-security-assessment/functions/security/generate_consolidated_report/app.py
index 7626a42..555c491 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/app.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/app.py
@@ -198,6 +198,7 @@ def generate_html_report(assessment_results: Dict[str, Any]) -> str:
         "agentcore": {"passed": 0, "failed": 0, "na": 0},
     }
     service_findings = {"bedrock": [], "sagemaker": [], "agentcore": []}
+    regions = set()
 
     for service in ["bedrock", "sagemaker", "agentcore"]:
         if service in assessment_results:
@@ -213,6 +214,9 @@ def generate_html_report(assessment_results: Dict[str, Any]) -> str:
                         service_stats[service]["failed"] += 1
                     elif status == "n/a":
                         service_stats[service]["na"] += 1
+                    region = finding.get("Region", "")
+                    if region:
+                        regions.add(region)
 
     account_id = assessment_results.get("account_id", "Unknown")
     timestamp = assessment_results.get(
@@ -227,6 +231,7 @@ def generate_html_report(assessment_results: Dict[str, Any]) -> str:
             mode="single",
             account_id=account_id,
             timestamp=timestamp,
+            regions=sorted(regions) if regions else None,
         )
     except Exception as e:
         logger.error(f"Error generating HTML report: {str(e)}", exc_info=True)
diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py b/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
index 7f705df..8e79d07 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
@@ -33,6 +33,7 @@ def generate_table_rows(findings: List[Dict], include_data_attrs: bool = True) -
         )
         service = finding.get("_service", "bedrock")
         account_id = finding.get("account_id", finding.get("Account_ID", ""))
+        region = finding.get("region", finding.get("Region", ""))
         check_id = finding.get("check_id", finding.get("Check_ID", ""))
         finding_name = finding.get("finding", finding.get("Finding", ""))
         details = finding.get("details", finding.get("Finding_Details", ""))
@@ -45,7 +46,7 @@ def generate_table_rows(findings: List[Dict], include_data_attrs: bool = True) -
             ref_html = '<span style="color: var(--text-3);">-</span>'
 
         data_attrs = (
-            f'data-service="{service}" data-severity="{severity}" data-status="{status}" data-account="{account_id}"'
+            f'data-service="{service}" data-severity="{severity}" data-status="{status}" data-account="{account_id}" data-region="{region}"'
             if include_data_attrs
             else ""
         )
@@ -57,6 +58,7 @@ def generate_table_rows(findings: List[Dict], include_data_attrs: bool = True) -
 
         row = f"""<tr {data_attrs}>
             <td><code>{account_id}</code></td>
+            <td><code>{region}</code></td>
             <td><code>{check_id}</code></td>
             <td class="col-domain">{finding_name}</td>
             <td class="finding-details">{details}</td>
@@ -70,7 +72,7 @@ def generate_table_rows(findings: List[Dict], include_data_attrs: bool = True) -
     return (
         "\n".join(rows)
         if rows
-        else '<tr><td colspan="8" style="text-align: center; padding: 40px; color: var(--text-3);">No findings to display</td></tr>'
+        else '<tr><td colspan="9" style="text-align: center; padding: 40px; color: var(--text-3);">No findings to display</td></tr>'
     )
 
 
@@ -180,15 +182,16 @@ def get_html_template() -> str:
         .alert-domain {{ font-weight: 600; font-size: 14px; white-space: nowrap; overflow: hidden; text-overflow: ellipsis; }}
         .alert-category {{ font-size: 12px; color: var(--text-2); margin-top: 2px; }}
         .table-wrap {{ overflow-x: auto; max-height: 900px; overflow-y: auto; }}
-        table {{ width: 100%; border-collapse: collapse; font-size: 13px; table-layout: fixed; min-width: 900px; }}
-        table th:nth-child(1) {{ width: 11%; }}
-        table th:nth-child(2) {{ width: 7%; }}
-        table th:nth-child(3) {{ width: 13%; }}
-        table th:nth-child(4) {{ width: 20%; }}
-        table th:nth-child(5) {{ width: 20%; }}
-        table th:nth-child(6) {{ width: 7%; }}
-        table th:nth-child(7) {{ width: 10%; }}
-        table th:nth-child(8) {{ width: 10%; }}
+        table {{ width: 100%; border-collapse: collapse; font-size: 13px; table-layout: fixed; min-width: 1000px; }}
+        table th:nth-child(1) {{ width: 10%; }}
+        table th:nth-child(2) {{ width: 9%; }}
+        table th:nth-child(3) {{ width: 6%; }}
+        table th:nth-child(4) {{ width: 12%; }}
+        table th:nth-child(5) {{ width: 18%; }}
+        table th:nth-child(6) {{ width: 18%; }}
+        table th:nth-child(7) {{ width: 6%; }}
+        table th:nth-child(8) {{ width: 9%; }}
+        table th:nth-child(9) {{ width: 9%; }}
         th {{ text-align: left; padding: 14px 16px; font-weight: 700; font-size: 11px; text-transform: uppercase; letter-spacing: 0.5px; color: var(--text); background: var(--surface-2); border-bottom: 3px solid var(--accent); white-space: nowrap; position: sticky; top: 0; }}
         th.sortable {{ cursor: pointer; user-select: none; transition: background 0.15s; }}
         th.sortable:hover {{ background: var(--border); }}
@@ -298,7 +301,7 @@ def get_html_template() -> str:
                     </div>
                 </div>
                 <div class="metrics">
-                    <div class="metric"><div class="metric-label">Security Checks</div><div class="metric-value">{security_checks}</div><div class="metric-sub">Evaluated per account</div></div>
+                    <div class="metric"><div class="metric-label">Security Checks</div><div class="metric-value">{security_checks}</div><div class="metric-sub">{security_checks_sub}</div></div>
                     <div class="metric"><div class="metric-label">Total Findings</div><div class="metric-value">{total_findings}</div><div class="metric-sub">{findings_sub}</div></div>
                     <div class="metric danger"><div class="metric-label">Actionable Findings</div><div class="metric-value">{actionable_findings}</div><div class="metric-sub">High, Medium, and Low severity</div></div>
                     <div class="metric danger"><div class="metric-label">High Severity</div><div class="metric-value">{high_passed}/{high_count}</div><div class="metric-sub">{high_pass_rate}% passed · Immediate action required</div></div>
@@ -326,12 +329,13 @@ def get_html_template() -> str:
                 <div class="filter-bar">
                     <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="searchInput"></div>
                     {account_filter}
+                    {region_filter}
                     <div class="filter-group"><label>Service</label><select id="serviceFilter"><option value="">All Services</option><option value="bedrock">Bedrock</option><option value="sagemaker">SageMaker</option><option value="agentcore">AgentCore</option></select></div>
                     <div class="filter-group"><label>Severity</label><select id="severityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
                     <div class="filter-group"><label>Status</label><select id="statusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
                     <button class="btn btn-reset" id="resetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
                 </div>
-                <div class="card"><div class="table-wrap"><table id="findingsTable"><thead><tr><th class="sortable" data-sort="account">Account ID</th><th class="sortable" data-sort="checkId">Check ID</th><th class="sortable" data-sort="finding">Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th class="sortable" data-sort="severity">Severity</th><th class="sortable" data-sort="status">Status</th></tr></thead><tbody>{all_rows}</tbody></table></div></div>
+                <div class="card"><div class="table-wrap"><table id="findingsTable"><thead><tr><th class="sortable" data-sort="account">Account ID</th><th class="sortable" data-sort="region">Region</th><th class="sortable" data-sort="checkId">Check ID</th><th class="sortable" data-sort="finding">Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th class="sortable" data-sort="severity">Severity</th><th class="sortable" data-sort="status">Status</th></tr></thead><tbody>{all_rows}</tbody></table></div></div>
             </section>
             <section id="risk" class="section">
                 <div class="section-title"><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><polyline points="22 12 18 12 15 21 9 3 6 12 2 12"/></svg>Risk Distribution</div>
@@ -343,6 +347,7 @@ def get_html_template() -> str:
                     <div class="metric"><div class="metric-label">Overall</div><div class="metric-value">{pass_rate}%</div><div class="metric-sub">{passed_count} of {actionable_findings} actionable checks</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: {pass_rate}%; height: 100%; background: var(--text-3);"></div></div></div>
                 </div>
                 {account_risk_section}
+                {region_risk_section}
                 <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-bottom: 12px; text-transform: uppercase; letter-spacing: 0.5px;">Findings by Service</h4>
                 <div class="metrics">
                     <div class="metric"><div class="metric-label"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"/></svg></span> Bedrock</div><div class="metric-value">{bedrock_total}</div><div class="metric-sub">{bedrock_failed} Failed · {bedrock_passed} Passed</div></div>
@@ -355,33 +360,36 @@ def get_html_template() -> str:
                 <div class="filter-bar">
                     <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="bedrockSearchInput"></div>
                     {bedrock_account_filter}
+                    {bedrock_region_filter}
                     <div class="filter-group"><label>Severity</label><select id="bedrockSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
                     <div class="filter-group"><label>Status</label><select id="bedrockStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
                     <button class="btn btn-reset" id="bedrockResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
                 </div>
-                <div class="card"><div class="table-wrap"><table id="bedrockTable"><thead><tr><th>Account ID</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody>{bedrock_rows}</tbody></table></div></div>
+                <div class="card"><div class="table-wrap"><table id="bedrockTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody>{bedrock_rows}</tbody></table></div></div>
             </section>
             <section id="sagemaker" class="section">
                 <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"/></svg></span>Amazon SageMaker Findings</div>
                 <div class="filter-bar">
                     <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="sagemakerSearchInput"></div>
                     {sagemaker_account_filter}
+                    {sagemaker_region_filter}
                     <div class="filter-group"><label>Severity</label><select id="sagemakerSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
                     <div class="filter-group"><label>Status</label><select id="sagemakerStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
                     <button class="btn btn-reset" id="sagemakerResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
                 </div>
-                <div class="card"><div class="table-wrap"><table id="sagemakerTable"><thead><tr><th>Account ID</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody>{sagemaker_rows}</tbody></table></div></div>
+                <div class="card"><div class="table-wrap"><table id="sagemakerTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody>{sagemaker_rows}</tbody></table></div></div>
             </section>
             <section id="agentcore" class="section">
                 <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"/></svg></span>Amazon Bedrock AgentCore Findings</div>
                 <div class="filter-bar">
                     <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="agentcoreSearchInput"></div>
                     {agentcore_account_filter}
+                    {agentcore_region_filter}
                     <div class="filter-group"><label>Severity</label><select id="agentcoreSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
                     <div class="filter-group"><label>Status</label><select id="agentcoreStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
                     <button class="btn btn-reset" id="agentcoreResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
                 </div>
-                <div class="card"><div class="table-wrap"><table id="agentcoreTable"><thead><tr><th>Account ID</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody>{agentcore_rows}</tbody></table></div></div>
+                <div class="card"><div class="table-wrap"><table id="agentcoreTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody>{agentcore_rows}</tbody></table></div></div>
             </section>
             <section id="methodology" class="section">
                 <div class="section-title"><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><circle cx="12" cy="12" r="10"/><path d="M9.09 9a3 3 0 0 1 5.83 1c0 2-3 3-3 3"/><line x1="12" y1="17" x2="12.01" y2="17"/></svg>Assessment Methodology</div>
@@ -417,6 +425,7 @@ def get_html_template() -> str:
         function applyFilters() {{
             const searchText = document.getElementById('searchInput').value.toLowerCase();
             const accountFilter = document.getElementById('accountFilter')?.value.toLowerCase() || '';
+            const regionFilter = document.getElementById('regionFilter')?.value.toLowerCase() || '';
             const serviceFilter = document.getElementById('serviceFilter').value.toLowerCase();
             const severityFilter = document.getElementById('severityFilter').value.toLowerCase();
             const statusFilter = document.getElementById('statusFilter').value.toLowerCase();
@@ -424,12 +433,14 @@ def get_html_template() -> str:
             rows.forEach(row => {{
                 const rowText = row.textContent.toLowerCase();
                 const rowAccount = row.dataset.account || '';
+                const rowRegion = row.dataset.region || '';
                 const rowService = row.dataset.service || '';
                 const rowSeverity = row.dataset.severity || '';
                 const rowStatus = row.dataset.status || '';
                 let show = true;
                 if (searchText && !rowText.includes(searchText)) show = false;
                 if (accountFilter && rowAccount !== accountFilter) show = false;
+                if (regionFilter && rowRegion.toLowerCase() !== regionFilter) show = false;
                 if (serviceFilter && rowService !== serviceFilter) show = false;
                 if (severityFilter && rowSeverity !== severityFilter) show = false;
                 if (statusFilter && rowStatus !== statusFilter) show = false;
@@ -439,6 +450,7 @@ def get_html_template() -> str:
         document.getElementById('resetFilters').addEventListener('click', function() {{
             document.getElementById('searchInput').value = '';
             if (document.getElementById('accountFilter')) document.getElementById('accountFilter').value = '';
+            if (document.getElementById('regionFilter')) document.getElementById('regionFilter').value = '';
             document.getElementById('serviceFilter').value = '';
             document.getElementById('severityFilter').value = '';
             document.getElementById('statusFilter').value = '';
@@ -446,6 +458,7 @@ def get_html_template() -> str:
         }});
         document.getElementById('searchInput').addEventListener('input', applyFilters);
         if (document.getElementById('accountFilter')) document.getElementById('accountFilter').addEventListener('change', applyFilters);
+        if (document.getElementById('regionFilter')) document.getElementById('regionFilter').addEventListener('change', applyFilters);
         document.getElementById('serviceFilter').addEventListener('change', applyFilters);
         document.getElementById('severityFilter').addEventListener('change', applyFilters);
         document.getElementById('statusFilter').addEventListener('change', applyFilters);
@@ -486,9 +499,13 @@ def get_html_template() -> str:
                             aVal = a.dataset.account || '';
                             bVal = b.dataset.account || '';
                             break;
+                        case 'region':
+                            aVal = a.dataset.region || '';
+                            bVal = b.dataset.region || '';
+                            break;
                         case 'checkId':
-                            aVal = a.querySelector('td:nth-child(2) code')?.textContent || '';
-                            bVal = b.querySelector('td:nth-child(2) code')?.textContent || '';
+                            aVal = a.querySelector('td:nth-child(3) code')?.textContent || '';
+                            bVal = b.querySelector('td:nth-child(3) code')?.textContent || '';
                             break;
                         case 'finding':
                             aVal = a.querySelector('.col-domain')?.textContent.toLowerCase() || '';
@@ -511,28 +528,32 @@ def get_html_template() -> str:
             }});
         }});
         // Service-specific filter functions
-        function createServiceFilter(tableId, searchId, accountId, severityId, statusId, resetId) {{
+        function createServiceFilter(tableId, searchId, accountId, regionId, severityId, statusId, resetId) {{
             const table = document.getElementById(tableId);
             if (!table) return;
             const searchInput = document.getElementById(searchId);
             const accountFilter = document.getElementById(accountId);
+            const regionFilter = document.getElementById(regionId);
             const severityFilter = document.getElementById(severityId);
             const statusFilter = document.getElementById(statusId);
             const resetBtn = document.getElementById(resetId);
             function applyServiceFilters() {{
                 const searchText = searchInput?.value.toLowerCase() || '';
                 const accountValue = accountFilter?.value.toLowerCase() || '';
+                const regionValue = regionFilter?.value.toLowerCase() || '';
                 const severityValue = severityFilter?.value.toLowerCase() || '';
                 const statusValue = statusFilter?.value.toLowerCase() || '';
                 const rows = table.querySelectorAll('tbody tr');
                 rows.forEach(row => {{
                     const rowText = row.textContent.toLowerCase();
                     const rowAccount = row.dataset.account || '';
+                    const rowRegion = row.dataset.region || '';
                     const rowSeverity = row.dataset.severity || '';
                     const rowStatus = row.dataset.status || '';
                     let show = true;
                     if (searchText && !rowText.includes(searchText)) show = false;
                     if (accountValue && rowAccount !== accountValue) show = false;
+                    if (regionValue && rowRegion.toLowerCase() !== regionValue) show = false;
                     if (severityValue && rowSeverity !== severityValue) show = false;
                     if (statusValue && rowStatus !== statusValue) show = false;
                     row.style.display = show ? '' : 'none';
@@ -540,19 +561,21 @@ def get_html_template() -> str:
             }}
             searchInput?.addEventListener('input', applyServiceFilters);
             accountFilter?.addEventListener('change', applyServiceFilters);
+            regionFilter?.addEventListener('change', applyServiceFilters);
             severityFilter?.addEventListener('change', applyServiceFilters);
             statusFilter?.addEventListener('change', applyServiceFilters);
             resetBtn?.addEventListener('click', function() {{
                 if (searchInput) searchInput.value = '';
                 if (accountFilter) accountFilter.value = '';
+                if (regionFilter) regionFilter.value = '';
                 if (severityFilter) severityFilter.value = '';
                 if (statusFilter) statusFilter.value = '';
                 applyServiceFilters();
             }});
         }}
-        createServiceFilter('bedrockTable', 'bedrockSearchInput', 'bedrockAccountFilter', 'bedrockSeverityFilter', 'bedrockStatusFilter', 'bedrockResetFilters');
-        createServiceFilter('sagemakerTable', 'sagemakerSearchInput', 'sagemakerAccountFilter', 'sagemakerSeverityFilter', 'sagemakerStatusFilter', 'sagemakerResetFilters');
-        createServiceFilter('agentcoreTable', 'agentcoreSearchInput', 'agentcoreAccountFilter', 'agentcoreSeverityFilter', 'agentcoreStatusFilter', 'agentcoreResetFilters');
+        createServiceFilter('bedrockTable', 'bedrockSearchInput', 'bedrockAccountFilter', 'bedrockRegionFilter', 'bedrockSeverityFilter', 'bedrockStatusFilter', 'bedrockResetFilters');
+        createServiceFilter('sagemakerTable', 'sagemakerSearchInput', 'sagemakerAccountFilter', 'sagemakerRegionFilter', 'sagemakerSeverityFilter', 'sagemakerStatusFilter', 'sagemakerResetFilters');
+        createServiceFilter('agentcoreTable', 'agentcoreSearchInput', 'agentcoreAccountFilter', 'agentcoreRegionFilter', 'agentcoreSeverityFilter', 'agentcoreStatusFilter', 'agentcoreResetFilters');
 
         // Apply initial filters for main table
         applyFilters();
@@ -569,6 +592,7 @@ def generate_html_report(
     account_id: Optional[str] = None,
     account_ids: Optional[List[str]] = None,
     timestamp: Optional[str] = None,
+    regions: list = None,
 ) -> str:
     """
     Generate HTML report from findings data.
@@ -581,6 +605,7 @@ def generate_html_report(
         account_id: Account ID (for single-account mode)
         account_ids: List of account IDs (for multi-account mode)
         timestamp: Optional timestamp string
+        regions: Optional list of region strings for multi-region filtering
 
     Returns:
         Complete HTML report string
@@ -716,14 +741,38 @@ def generate_html_report(
         service_findings.get("agentcore", []), include_data_attrs=True
     )
 
+    # Build region filter HTML (shared across modes, only shown when multiple regions)
+    if regions and len(regions) > 1:
+        region_options = "".join(
+            [
+                f'<option value="{r}">{r}</option>'
+                for r in sorted(regions)
+            ]
+        )
+        region_filter = f'<div class="filter-group"><label for="regionFilter">Region</label><select id="regionFilter" onchange="applyFilters()"><option value="">All Regions</option>{region_options}</select></div>'
+        bedrock_region_filter = f'<div class="filter-group"><label for="bedrockRegionFilter">Region</label><select id="bedrockRegionFilter"><option value="">All Regions</option>{region_options}</select></div>'
+        sagemaker_region_filter = f'<div class="filter-group"><label for="sagemakerRegionFilter">Region</label><select id="sagemakerRegionFilter"><option value="">All Regions</option>{region_options}</select></div>'
+        agentcore_region_filter = f'<div class="filter-group"><label for="agentcoreRegionFilter">Region</label><select id="agentcoreRegionFilter"><option value="">All Regions</option>{region_options}</select></div>'
+    else:
+        region_filter = ""
+        bedrock_region_filter = ""
+        sagemaker_region_filter = ""
+        agentcore_region_filter = ""
+
     # Mode-specific content
     num_accounts = len(account_ids) if account_ids else 1
+    num_regions = len(regions) if regions else 1
     if mode == "multi":
         title = "Multi-Account AI/ML Security Assessment Report"
         sidebar_subtitle = "Multi-Account Assessment"
         account_info = f"Accounts: {num_accounts}"
         header_account_info = f"{num_accounts} Accounts"
-        findings_sub = f"Across {num_accounts} accounts"
+        if num_regions > 1:
+            findings_sub = f"Across {num_accounts} accounts · {num_regions} regions"
+            security_checks_sub = f"Evaluated across {num_regions} regions"
+        else:
+            findings_sub = f"Across {num_accounts} accounts"
+            security_checks_sub = "Evaluated per account"
         account_options = "".join(
             [
                 f'<option value="{acc}">{acc}</option>'
@@ -782,14 +831,62 @@ def generate_html_report(
         title = "AI/ML Security Assessment Report"
         sidebar_subtitle = "Assessment Report"
         account_info = f"Account: {account_id or 'Unknown'}"
-        header_account_info = f"Account: {account_id or 'Unknown'}"
-        findings_sub = "Across 1 account"
+        if num_regions > 1:
+            header_account_info = f"Account: {account_id or 'Unknown'} · {num_regions} Regions"
+            findings_sub = f"Across {num_regions} regions"
+            security_checks_sub = f"Evaluated across {num_regions} regions"
+        else:
+            header_account_info = f"Account: {account_id or 'Unknown'}"
+            findings_sub = "Across 1 account"
+            security_checks_sub = "Evaluated per account"
         account_filter = ""
         bedrock_account_filter = ""
         sagemaker_account_filter = ""
         agentcore_account_filter = ""
         account_risk_section = ""
 
+    # Build region risk section (shown when multiple regions)
+    if regions and len(regions) > 1:
+        region_metrics_html = ""
+        for reg in sorted(regions):
+            reg_findings = [
+                f for f in all_findings
+                if f.get("region", f.get("Region", "")) == reg
+            ]
+            reg_high = sum(
+                1 for f in reg_findings
+                if f.get("severity", f.get("Severity", "")).lower() == "high"
+                and f.get("status", f.get("Status", "")).lower() == "failed"
+            )
+            reg_medium = sum(
+                1 for f in reg_findings
+                if f.get("severity", f.get("Severity", "")).lower() == "medium"
+                and f.get("status", f.get("Status", "")).lower() == "failed"
+            )
+            reg_low = sum(
+                1 for f in reg_findings
+                if f.get("severity", f.get("Severity", "")).lower() == "low"
+                and f.get("status", f.get("Status", "")).lower() == "failed"
+            )
+            reg_total_failed = reg_high + reg_medium + reg_low
+
+            if reg_high > 0:
+                risk_class = "danger"
+                border_color = "var(--danger)"
+            elif reg_medium > 0:
+                risk_class = "warning"
+                border_color = "var(--warning)"
+            else:
+                risk_class = ""
+                border_color = "var(--success)"
+
+            region_metrics_html += f"""<div class="metric {risk_class}" style="border-left: 3px solid {border_color};"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">{reg}</div><div class="metric-value">{reg_total_failed}</div><div class="metric-sub"><span style="color: var(--danger);">{reg_high} High</span> · <span style="color: var(--warning);">{reg_medium} Med</span> · <span style="color: var(--accent);">{reg_low} Low</span></div></div>"""
+
+        region_risk_section = f"""<h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-bottom: 12px; text-transform: uppercase; letter-spacing: 0.5px;">Risk by Region</h4>
+                <div class="metrics" style="margin-bottom: 32px;">{region_metrics_html}</div>"""
+    else:
+        region_risk_section = ""
+
     # Fill template
     html_template = get_html_template()
 
@@ -799,9 +896,11 @@ def generate_html_report(
         account_info=account_info,
         header_account_info=header_account_info,
         account_filter=account_filter,
+        region_filter=region_filter,
         timestamp=timestamp,
         date_display=date_display,
         security_checks=security_checks,
+        security_checks_sub=security_checks_sub,
         total_findings=total_findings,
         findings_sub=findings_sub,
         actionable_findings=actionable_findings,
@@ -840,5 +939,9 @@ def generate_html_report(
         bedrock_account_filter=bedrock_account_filter,
         sagemaker_account_filter=sagemaker_account_filter,
         agentcore_account_filter=agentcore_account_filter,
+        bedrock_region_filter=bedrock_region_filter,
+        sagemaker_region_filter=sagemaker_region_filter,
+        agentcore_region_filter=agentcore_region_filter,
         account_risk_section=account_risk_section,
+        region_risk_section=region_risk_section,
     )
diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/schema.py b/aiml-security-assessment/functions/security/generate_consolidated_report/schema.py
index d745e06..19aec8f 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/schema.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/schema.py
@@ -22,6 +22,7 @@ class Finding(BaseModel):
     Reference: str = Field(..., description="Documentation reference URL")
     Severity: SeverityEnum = Field(..., description="Severity level of the finding")
     Status: StatusEnum = Field(..., description="Current status of the finding")
+    Region: str = Field(default="", description="AWS region where the finding was identified")
 
     @validator('Reference')
     def validate_reference_url(cls, v):
@@ -42,18 +43,18 @@ def validate_status(cls, v):
             raise ValueError('Status must be one of the allowed values')
         return v
 
-# Example usage:
 def create_finding(
     finding_name: str,
     finding_details: str,
     resolution: str,
     reference: str,
     severity: SeverityEnum,
-    status: StatusEnum
-) -> Finding:
+    status: StatusEnum,
+    region: str = ""
+) -> dict:
     """
     Create a validated finding object
-    
+
     Args:
         finding_name: Name of the finding
         finding_details: Detailed description
@@ -61,10 +62,11 @@ def create_finding(
         reference: Documentation URL
         severity: Severity level
         status: Current status
-    
+        region: AWS region where the finding was identified
+
     Returns:
-        Finding: Validated finding object
-    
+        Dict: Validated finding as dictionary
+
     Raises:
         ValidationError: If any field fails validation
     """
@@ -74,6 +76,7 @@ def create_finding(
         Resolution=resolution,
         Reference=reference,
         Severity=severity,
-        Status=status
+        Status=status,
+        Region=region
     )
     return dict(finding.model_dump())  # Convert to regular dictionary
\ No newline at end of file
diff --git a/aiml-security-assessment/functions/security/resolve_regions/app.py b/aiml-security-assessment/functions/security/resolve_regions/app.py
new file mode 100644
index 0000000..ba65b78
--- /dev/null
+++ b/aiml-security-assessment/functions/security/resolve_regions/app.py
@@ -0,0 +1,61 @@
+"""
+Resolve Target Regions Lambda Function
+
+Resolves the list of AWS regions to scan based on the TARGET_REGIONS
+environment variable. Returns a list for the Step Functions Map state
+to iterate over.
+"""
+
+import os
+import logging
+import boto3
+
+logger = logging.getLogger()
+logger.setLevel(logging.INFO)
+
+BEDROCK_SERVICE = "bedrock"
+SAGEMAKER_SERVICE = "sagemaker"
+AGENTCORE_SERVICE = "bedrock-agent"
+
+SERVICES = [BEDROCK_SERVICE, SAGEMAKER_SERVICE, AGENTCORE_SERVICE]
+
+
+def get_available_regions():
+    """Get the union of all regions where assessed services are available."""
+    session = boto3.Session()
+    all_regions = set()
+    for service in SERVICES:
+        try:
+            regions = session.get_available_regions(service)
+            all_regions.update(regions)
+        except Exception as e:
+            logger.warning(f"Could not get regions for {service}: {e}")
+    return sorted(all_regions)
+
+
+def resolve_regions():
+    """Resolve target regions from environment variable."""
+    target_regions = os.environ.get("TARGET_REGIONS", "").strip()
+    current_region = os.environ.get("AWS_REGION", os.environ.get("AWS_DEFAULT_REGION", "us-east-1"))
+
+    if not target_regions:
+        return [current_region]
+
+    if target_regions.lower() == "all":
+        regions = get_available_regions()
+        if not regions:
+            logger.warning("No regions discovered, falling back to current region")
+            return [current_region]
+        return regions
+
+    return [r.strip() for r in target_regions.split(",") if r.strip()]
+
+
+def lambda_handler(event, context):
+    """Main Lambda handler. Returns region list for Map state."""
+    logger.info(f"Event: {event}")
+
+    regions = resolve_regions()
+    logger.info(f"Resolved {len(regions)} target regions: {regions}")
+
+    return {"regions": regions}
diff --git a/aiml-security-assessment/functions/security/sagemaker_assessments/app.py b/aiml-security-assessment/functions/security/sagemaker_assessments/app.py
index 9e52720..fec78d9 100644
--- a/aiml-security-assessment/functions/security/sagemaker_assessments/app.py
+++ b/aiml-security-assessment/functions/security/sagemaker_assessments/app.py
@@ -7,7 +7,7 @@
 from typing import Dict, List, Any, Optional
 from io import StringIO
 from botocore.config import Config
-from botocore.exceptions import ClientError
+from botocore.exceptions import ClientError, EndpointConnectionError
 import random
 import json
 
@@ -80,7 +80,7 @@ def get_permissions_cache(execution_id: str) -> Optional[Dict[str, Any]]:
         return None
 
 
-def check_sagemaker_internet_access() -> Dict[str, Any]:
+def check_sagemaker_internet_access(region: str = "") -> Dict[str, Any]:
     """
     Check if SageMaker notebook instances and domains have direct internet access
     """
@@ -93,7 +93,7 @@ def check_sagemaker_internet_access() -> Dict[str, Any]:
         total_resources_checked = 0
 
         # Create SageMaker client
-        sagemaker_client = boto3.client("sagemaker")
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
 
         # Check Notebook Instances
         try:
@@ -167,6 +167,7 @@ def check_sagemaker_internet_access() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html",
                         severity="High",
                         status="Failed",
+                        region=region,
                     )
                 )
 
@@ -181,6 +182,7 @@ def check_sagemaker_internet_access() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html",
                         severity="High",
                         status="Failed",
+                        region=region,
                     )
                 )
         else:
@@ -197,6 +199,7 @@ def check_sagemaker_internet_access() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html",
                         severity="High",
                         status="Passed",
+                        region=region,
                     )
                 )
             else:
@@ -209,6 +212,7 @@ def check_sagemaker_internet_access() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
 
@@ -228,12 +232,13 @@ def check_sagemaker_internet_access() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ]
         }
 
 
-def check_guardduty_enabled() -> Dict[str, Any]:
+def check_guardduty_enabled(region: str = "") -> Dict[str, Any]:
     """
     Check if GuardDuty is enabled in the account to monitor SageMaker security issues
 
@@ -248,7 +253,7 @@ def check_guardduty_enabled() -> Dict[str, Any]:
     }
 
     try:
-        guardduty_client = boto3.client("guardduty")
+        guardduty_client = boto3.client("guardduty", config=boto3_config, region_name=region)
 
         # Get list of detectors in the current region
         detectors = guardduty_client.list_detectors()
@@ -263,6 +268,7 @@ def check_guardduty_enabled() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             )
         else:
@@ -275,6 +281,7 @@ def check_guardduty_enabled() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html",
                     severity="Medium",
                     status="Passed",
+                    region=region,
                 )
             )
     except ClientError as e:
@@ -289,6 +296,7 @@ def check_guardduty_enabled() -> Dict[str, Any]:
                 reference="https://docs.aws.amazon.com/guardduty/latest/ug/security-iam.html",
                 severity="High",
                 status="Failed",
+                region=region,
             )
         )
     except Exception as e:
@@ -301,13 +309,14 @@ def check_guardduty_enabled() -> Dict[str, Any]:
                 reference="https://docs.aws.amazon.com/guardduty/latest/ug/what-is-guardduty.html",
                 severity="High",
                 status="Failed",
+                region=region,
             )
         )
 
     return findings
 
 
-def check_sagemaker_iam_permissions(permission_cache) -> Dict[str, Any]:
+def check_sagemaker_iam_permissions(permission_cache, region: str = "") -> Dict[str, Any]:
     """
     Check SageMaker IAM permissions, SSO configuration, and stale access
     """
@@ -325,7 +334,7 @@ def check_sagemaker_iam_permissions(permission_cache) -> Dict[str, Any]:
 
         # Check for stale access
         stale_users = []
-        iam_client = boto3.client("iam")
+        iam_client = boto3.client("iam", config=boto3_config, region_name=region)
         two_months_ago = datetime.now(timezone.utc) - timedelta(days=60)
 
         # Check users' last access to SageMaker
@@ -373,7 +382,7 @@ def check_sagemaker_iam_permissions(permission_cache) -> Dict[str, Any]:
         # Check SSO configuration
         domains_without_sso = []
         try:
-            sagemaker_client = boto3.client("sagemaker")
+            sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
             paginator = sagemaker_client.get_paginator("list_domains")
 
             for page in paginator.paginate():
@@ -442,6 +451,7 @@ def check_sagemaker_iam_permissions(permission_cache) -> Dict[str, Any]:
                             reference="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html",
                             severity="High",
                             status="Failed",
+                            region=region,
                         )
                     )
 
@@ -457,6 +467,7 @@ def check_sagemaker_iam_permissions(permission_cache) -> Dict[str, Any]:
                             reference="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html",
                             severity="Medium",
                             status="Failed",
+                            region=region,
                         )
                     )
 
@@ -478,6 +489,7 @@ def check_sagemaker_iam_permissions(permission_cache) -> Dict[str, Any]:
                             reference="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/",
                             severity="Medium",
                             status="Failed",
+                            region=region,
                         )
                     )
         else:
@@ -490,6 +502,7 @@ def check_sagemaker_iam_permissions(permission_cache) -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html",
                     severity="High",
                     status="Passed",
+                    region=region,
                 )
             )
 
@@ -546,7 +559,7 @@ def get_account_id() -> str:
         raise
 
 
-def check_sagemaker_data_protection() -> Dict[str, Any]:
+def check_sagemaker_data_protection(region: str = "") -> Dict[str, Any]:
     """
     Check SageMaker data protection configurations including encryption at rest and in transit
     """
@@ -554,7 +567,7 @@ def check_sagemaker_data_protection() -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker")
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
 
         # Track resources with encryption issues
         resources_with_aws_managed_keys = []
@@ -705,6 +718,7 @@ def check_sagemaker_data_protection() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/key-management.html",
                         severity="High",
                         status="Failed",
+                        region=region,
                     )
                 )
 
@@ -719,6 +733,7 @@ def check_sagemaker_data_protection() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/key-management.html",
                         severity="Low",
                         status="Failed",
+                        region=region,
                     )
                 )
 
@@ -733,6 +748,7 @@ def check_sagemaker_data_protection() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/encryption-in-transit.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
 
@@ -747,6 +763,7 @@ def check_sagemaker_data_protection() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html",
                         severity="High",
                         status="Passed",
+                        region=region,
                     )
                 )
             else:
@@ -759,6 +776,7 @@ def check_sagemaker_data_protection() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
 
@@ -778,12 +796,13 @@ def check_sagemaker_data_protection() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ]
         }
 
 
-def check_sagemaker_mlops_utilization(permission_cache) -> Dict[str, Any]:
+def check_sagemaker_mlops_utilization(permission_cache, region: str = "") -> Dict[str, Any]:
     """
     Check if SageMaker MLOps features (Model Registry, Feature Store, and Pipelines)
     are being utilized properly
@@ -792,7 +811,7 @@ def check_sagemaker_mlops_utilization(permission_cache) -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config)
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
         issues_found = []
 
         # Check Model Registry Usage
@@ -948,6 +967,7 @@ def check_sagemaker_mlops_utilization(permission_cache) -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html",
                         severity=issue["severity"],
                         status=issue["status"],
+                        region=region,
                     )
                 )
         else:
@@ -961,6 +981,7 @@ def check_sagemaker_mlops_utilization(permission_cache) -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html",
                     severity="Low",
                     status="Passed",
+                    region=region,
                 )
             )
 
@@ -1001,7 +1022,7 @@ def get_resolution_for_component(component: str) -> str:
     )
 
 
-def check_sagemaker_clarify_usage(permission_cache) -> Dict[str, Any]:
+def check_sagemaker_clarify_usage(permission_cache, region: str = "") -> Dict[str, Any]:
     """
     Check if SageMaker Clarify is being used for bias detection and model explainability
     """
@@ -1009,7 +1030,7 @@ def check_sagemaker_clarify_usage(permission_cache) -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config)
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
         issues_found = []
 
         try:
@@ -1075,6 +1096,7 @@ def check_sagemaker_clarify_usage(permission_cache) -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html",
                         severity=issue["severity"],
                         status=issue["status"],
+                        region=region,
                     )
                 )
         else:
@@ -1088,6 +1110,7 @@ def check_sagemaker_clarify_usage(permission_cache) -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html",
                     severity="Low",
                     status="Passed",
+                    region=region,
                 )
             )
 
@@ -1103,7 +1126,7 @@ def check_sagemaker_clarify_usage(permission_cache) -> Dict[str, Any]:
         }
 
 
-def check_sagemaker_model_monitor_usage(permission_cache) -> Dict[str, Any]:
+def check_sagemaker_model_monitor_usage(permission_cache, region: str = "") -> Dict[str, Any]:
     """
     Check if SageMaker Model Monitor is configured and actively monitoring models
     """
@@ -1111,7 +1134,7 @@ def check_sagemaker_model_monitor_usage(permission_cache) -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config)
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
         issues_found = []
 
         try:
@@ -1170,6 +1193,7 @@ def check_sagemaker_model_monitor_usage(permission_cache) -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html",
                         severity=issue["severity"],
                         status=issue["status"],
+                        region=region,
                     )
                 )
         else:
@@ -1182,6 +1206,7 @@ def check_sagemaker_model_monitor_usage(permission_cache) -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html",
                     severity="Medium",
                     status="Passed",
+                    region=region,
                 )
             )
 
@@ -1199,7 +1224,7 @@ def check_sagemaker_model_monitor_usage(permission_cache) -> Dict[str, Any]:
         }
 
 
-def check_sagemaker_notebook_root_access() -> Dict[str, Any]:
+def check_sagemaker_notebook_root_access(region: str = "") -> Dict[str, Any]:
     """
     Check if SageMaker notebook instances have root access disabled.
     Root access enables privilege escalation and should be disabled for security.
@@ -1209,7 +1234,7 @@ def check_sagemaker_notebook_root_access() -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config)
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
 
         notebooks_with_root = []
         notebooks_without_root = []
@@ -1252,6 +1277,7 @@ def check_sagemaker_notebook_root_access() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html",
                         severity="High",
                         status="Failed",
+                        region=region,
                     )
                 )
         else:
@@ -1266,6 +1292,7 @@ def check_sagemaker_notebook_root_access() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html",
                         severity="High",
                         status="Passed",
+                        region=region,
                     )
                 )
             else:
@@ -1279,6 +1306,7 @@ def check_sagemaker_notebook_root_access() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
 
@@ -1298,12 +1326,13 @@ def check_sagemaker_notebook_root_access() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ]
         }
 
 
-def check_sagemaker_notebook_vpc_deployment() -> Dict[str, Any]:
+def check_sagemaker_notebook_vpc_deployment(region: str = "") -> Dict[str, Any]:
     """
     Check if SageMaker notebook instances are deployed within a custom VPC.
     Notebooks outside VPC use shared infrastructure with less isolation.
@@ -1313,7 +1342,7 @@ def check_sagemaker_notebook_vpc_deployment() -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config)
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
 
         notebooks_without_vpc = []
         notebooks_with_vpc = []
@@ -1362,6 +1391,7 @@ def check_sagemaker_notebook_vpc_deployment() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html",
                         severity="High",
                         status="Failed",
+                        region=region,
                     )
                 )
         else:
@@ -1376,6 +1406,7 @@ def check_sagemaker_notebook_vpc_deployment() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html",
                         severity="High",
                         status="Passed",
+                        region=region,
                     )
                 )
             else:
@@ -1389,6 +1420,7 @@ def check_sagemaker_notebook_vpc_deployment() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
 
@@ -1408,12 +1440,13 @@ def check_sagemaker_notebook_vpc_deployment() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ]
         }
 
 
-def check_sagemaker_model_network_isolation() -> Dict[str, Any]:
+def check_sagemaker_model_network_isolation(region: str = "") -> Dict[str, Any]:
     """
     Check if SageMaker hosted models have network isolation enabled.
     Without isolation, model containers can make outbound calls and exfiltrate data.
@@ -1423,7 +1456,7 @@ def check_sagemaker_model_network_isolation() -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config)
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
 
         models_without_isolation = []
         models_with_isolation = []
@@ -1475,6 +1508,7 @@ def check_sagemaker_model_network_isolation() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html",
                         severity="High",
                         status="Failed",
+                        region=region,
                     )
                 )
 
@@ -1488,6 +1522,7 @@ def check_sagemaker_model_network_isolation() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html",
                         severity="High",
                         status="Failed",
+                        region=region,
                     )
                 )
         else:
@@ -1502,6 +1537,7 @@ def check_sagemaker_model_network_isolation() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html",
                         severity="Medium",
                         status="Passed",
+                        region=region,
                     )
                 )
             else:
@@ -1515,6 +1551,7 @@ def check_sagemaker_model_network_isolation() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
 
@@ -1534,12 +1571,13 @@ def check_sagemaker_model_network_isolation() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ]
         }
 
 
-def check_sagemaker_endpoint_instance_count() -> Dict[str, Any]:
+def check_sagemaker_endpoint_instance_count(region: str = "") -> Dict[str, Any]:
     """
     Check if SageMaker endpoints have more than one instance for availability.
     Single instance creates availability risk and single point of compromise.
@@ -1549,7 +1587,7 @@ def check_sagemaker_endpoint_instance_count() -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config)
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
 
         endpoints_single_instance = []
         endpoints_multi_instance = []
@@ -1613,6 +1651,7 @@ def check_sagemaker_endpoint_instance_count() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
         else:
@@ -1627,6 +1666,7 @@ def check_sagemaker_endpoint_instance_count() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html",
                         severity="Medium",
                         status="Passed",
+                        region=region,
                     )
                 )
             else:
@@ -1640,6 +1680,7 @@ def check_sagemaker_endpoint_instance_count() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
 
@@ -1659,12 +1700,13 @@ def check_sagemaker_endpoint_instance_count() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ]
         }
 
 
-def check_sagemaker_monitoring_network_isolation() -> Dict[str, Any]:
+def check_sagemaker_monitoring_network_isolation(region: str = "") -> Dict[str, Any]:
     """
     Check if SageMaker monitoring schedules have network isolation enabled.
     Aligns with AWS Security Hub control SageMaker.14
@@ -1673,7 +1715,7 @@ def check_sagemaker_monitoring_network_isolation() -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config)
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
 
         schedules_without_isolation = []
         schedules_with_isolation = []
@@ -1730,6 +1772,7 @@ def check_sagemaker_monitoring_network_isolation() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
         else:
@@ -1744,6 +1787,7 @@ def check_sagemaker_monitoring_network_isolation() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html",
                         severity="Medium",
                         status="Passed",
+                        region=region,
                     )
                 )
             else:
@@ -1757,6 +1801,7 @@ def check_sagemaker_monitoring_network_isolation() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
 
@@ -1777,12 +1822,13 @@ def check_sagemaker_monitoring_network_isolation() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ]
         }
 
 
-def check_sagemaker_model_container_repository() -> Dict[str, Any]:
+def check_sagemaker_model_container_repository(region: str = "") -> Dict[str, Any]:
     """
     Check if SageMaker models pull container images from private ECR in VPC.
     Using Platform mode exposes supply chain risks.
@@ -1792,7 +1838,7 @@ def check_sagemaker_model_container_repository() -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config)
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
 
         models_platform_mode = []
         models_vpc_mode = []
@@ -1873,6 +1919,7 @@ def check_sagemaker_model_container_repository() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
 
@@ -1886,6 +1933,7 @@ def check_sagemaker_model_container_repository() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
         else:
@@ -1900,6 +1948,7 @@ def check_sagemaker_model_container_repository() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html",
                         severity="Medium",
                         status="Passed",
+                        region=region,
                     )
                 )
             else:
@@ -1913,6 +1962,7 @@ def check_sagemaker_model_container_repository() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
 
@@ -1933,12 +1983,13 @@ def check_sagemaker_model_container_repository() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ]
         }
 
 
-def check_sagemaker_feature_store_encryption() -> Dict[str, Any]:
+def check_sagemaker_feature_store_encryption(region: str = "") -> Dict[str, Any]:
     """
     Check if SageMaker Feature Store offline stores have KMS encryption.
     Aligns with AWS Security Hub control SageMaker.17
@@ -1947,7 +1998,7 @@ def check_sagemaker_feature_store_encryption() -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config)
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
 
         feature_groups_without_encryption = []
         feature_groups_with_encryption = []
@@ -2004,6 +2055,7 @@ def check_sagemaker_feature_store_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
         else:
@@ -2017,6 +2069,7 @@ def check_sagemaker_feature_store_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html",
                         severity="High",
                         status="Passed",
+                        region=region,
                     )
                 )
             else:
@@ -2030,6 +2083,7 @@ def check_sagemaker_feature_store_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
 
@@ -2050,12 +2104,13 @@ def check_sagemaker_feature_store_encryption() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ]
         }
 
 
-def check_sagemaker_data_quality_encryption() -> Dict[str, Any]:
+def check_sagemaker_data_quality_encryption(region: str = "") -> Dict[str, Any]:
     """
     Check if SageMaker data quality job definitions have inter-container traffic encryption.
     Aligns with AWS Security Hub control SageMaker.9
@@ -2064,7 +2119,7 @@ def check_sagemaker_data_quality_encryption() -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config)
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
 
         jobs_without_encryption = []
         jobs_with_encryption = []
@@ -2114,6 +2169,7 @@ def check_sagemaker_data_quality_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
         else:
@@ -2128,6 +2184,7 @@ def check_sagemaker_data_quality_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html",
                         severity="Medium",
                         status="Passed",
+                        region=region,
                     )
                 )
             else:
@@ -2141,6 +2198,7 @@ def check_sagemaker_data_quality_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
 
@@ -2160,12 +2218,13 @@ def check_sagemaker_data_quality_encryption() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ]
         }
 
 
-def check_sagemaker_processing_job_encryption() -> Dict[str, Any]:
+def check_sagemaker_processing_job_encryption(region: str = "") -> Dict[str, Any]:
     """
     Check if SageMaker processing jobs have volume encryption enabled.
     Aligns with AWS Security Hub control SageMaker.10
@@ -2174,7 +2233,7 @@ def check_sagemaker_processing_job_encryption() -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config)
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
 
         jobs_without_encryption = []
         jobs_with_encryption = []
@@ -2226,6 +2285,7 @@ def check_sagemaker_processing_job_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
 
@@ -2239,6 +2299,7 @@ def check_sagemaker_processing_job_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
         else:
@@ -2253,6 +2314,7 @@ def check_sagemaker_processing_job_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html",
                         severity="Medium",
                         status="Passed",
+                        region=region,
                     )
                 )
             else:
@@ -2266,6 +2328,7 @@ def check_sagemaker_processing_job_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
 
@@ -2286,12 +2349,13 @@ def check_sagemaker_processing_job_encryption() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ]
         }
 
 
-def check_sagemaker_transform_job_encryption() -> Dict[str, Any]:
+def check_sagemaker_transform_job_encryption(region: str = "") -> Dict[str, Any]:
     """
     Check if SageMaker transform jobs have volume encryption enabled.
     Aligns with AWS Security Hub control SageMaker.11
@@ -2300,7 +2364,7 @@ def check_sagemaker_transform_job_encryption() -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config)
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
 
         jobs_without_encryption = []
         jobs_with_encryption = []
@@ -2349,6 +2413,7 @@ def check_sagemaker_transform_job_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
 
@@ -2362,6 +2427,7 @@ def check_sagemaker_transform_job_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
         else:
@@ -2376,6 +2442,7 @@ def check_sagemaker_transform_job_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html",
                         severity="Medium",
                         status="Passed",
+                        region=region,
                     )
                 )
             else:
@@ -2389,6 +2456,7 @@ def check_sagemaker_transform_job_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
 
@@ -2409,12 +2477,13 @@ def check_sagemaker_transform_job_encryption() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ]
         }
 
 
-def check_sagemaker_hyperparameter_tuning_encryption() -> Dict[str, Any]:
+def check_sagemaker_hyperparameter_tuning_encryption(region: str = "") -> Dict[str, Any]:
     """
     Check if SageMaker hyperparameter tuning jobs have volume encryption enabled.
     Aligns with AWS Security Hub control SageMaker.12
@@ -2423,7 +2492,7 @@ def check_sagemaker_hyperparameter_tuning_encryption() -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config)
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
 
         jobs_without_encryption = []
         jobs_with_encryption = []
@@ -2479,6 +2548,7 @@ def check_sagemaker_hyperparameter_tuning_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
 
@@ -2492,6 +2562,7 @@ def check_sagemaker_hyperparameter_tuning_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
         else:
@@ -2506,6 +2577,7 @@ def check_sagemaker_hyperparameter_tuning_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html",
                         severity="Medium",
                         status="Passed",
+                        region=region,
                     )
                 )
             else:
@@ -2519,6 +2591,7 @@ def check_sagemaker_hyperparameter_tuning_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
 
@@ -2539,12 +2612,13 @@ def check_sagemaker_hyperparameter_tuning_encryption() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ]
         }
 
 
-def check_sagemaker_compilation_job_encryption() -> Dict[str, Any]:
+def check_sagemaker_compilation_job_encryption(region: str = "") -> Dict[str, Any]:
     """
     Check if SageMaker compilation jobs have volume encryption enabled.
     Aligns with AWS Security Hub control SageMaker.13
@@ -2553,7 +2627,7 @@ def check_sagemaker_compilation_job_encryption() -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config)
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
 
         jobs_without_encryption = []
         jobs_with_encryption = []
@@ -2600,6 +2674,7 @@ def check_sagemaker_compilation_job_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
 
@@ -2613,6 +2688,7 @@ def check_sagemaker_compilation_job_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
         else:
@@ -2627,6 +2703,7 @@ def check_sagemaker_compilation_job_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html",
                         severity="Medium",
                         status="Passed",
+                        region=region,
                     )
                 )
             else:
@@ -2640,6 +2717,7 @@ def check_sagemaker_compilation_job_encryption() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
 
@@ -2660,12 +2738,13 @@ def check_sagemaker_compilation_job_encryption() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ]
         }
 
 
-def check_sagemaker_automl_network_isolation() -> Dict[str, Any]:
+def check_sagemaker_automl_network_isolation(region: str = "") -> Dict[str, Any]:
     """
     Check if SageMaker AutoML (Autopilot) jobs have network isolation enabled.
     Aligns with AWS Security Hub control SageMaker.15
@@ -2674,7 +2753,7 @@ def check_sagemaker_automl_network_isolation() -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config)
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
 
         jobs_without_isolation = []
         jobs_with_isolation = []
@@ -2725,6 +2804,7 @@ def check_sagemaker_automl_network_isolation() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
 
@@ -2738,6 +2818,7 @@ def check_sagemaker_automl_network_isolation() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
         else:
@@ -2752,6 +2833,7 @@ def check_sagemaker_automl_network_isolation() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html",
                         severity="Medium",
                         status="Passed",
+                        region=region,
                     )
                 )
             else:
@@ -2765,6 +2847,7 @@ def check_sagemaker_automl_network_isolation() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
 
@@ -2785,6 +2868,7 @@ def check_sagemaker_automl_network_isolation() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ]
         }
@@ -2795,7 +2879,7 @@ def check_sagemaker_automl_network_isolation() -> Dict[str, Any]:
 # ============================================================================
 
 
-def check_model_approval_workflow() -> Dict[str, Any]:
+def check_model_approval_workflow(region: str = "") -> Dict[str, Any]:
     """
     Check if Model Registry has proper approval workflows configured.
     Validates that models go through approval process before production deployment.
@@ -2804,7 +2888,7 @@ def check_model_approval_workflow() -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config)
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
 
         issues_found = []
         groups_checked = 0
@@ -2889,6 +2973,7 @@ def check_model_approval_workflow() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html",
                     severity="Informational",
                     status="N/A",
+                    region=region,
                 )
             )
         elif issues_found:
@@ -2902,6 +2987,7 @@ def check_model_approval_workflow() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html",
                         severity=issue["severity"],
                         status="Failed",
+                        region=region,
                     )
                 )
         else:
@@ -2914,6 +3000,7 @@ def check_model_approval_workflow() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html",
                     severity="Medium",
                     status="Passed",
+                    region=region,
                 )
             )
 
@@ -2931,12 +3018,13 @@ def check_model_approval_workflow() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ]
         }
 
 
-def check_model_drift_detection() -> Dict[str, Any]:
+def check_model_drift_detection(region: str = "") -> Dict[str, Any]:
     """
     Check if Model Monitor is configured for drift detection with proper baselines.
     Validates that models have data quality and model quality monitoring configured.
@@ -2945,7 +3033,7 @@ def check_model_drift_detection() -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config)
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
 
         endpoints_without_monitoring = []
         endpoints_with_monitoring = []
@@ -3038,6 +3126,7 @@ def check_model_drift_detection() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
 
@@ -3051,6 +3140,7 @@ def check_model_drift_detection() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
 
@@ -3065,6 +3155,7 @@ def check_model_drift_detection() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html",
                         severity="Low",
                         status="Failed",
+                        region=region,
                     )
                 )
 
@@ -3079,6 +3170,7 @@ def check_model_drift_detection() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html",
                         severity="Medium",
                         status="Passed",
+                        region=region,
                     )
                 )
             else:
@@ -3091,6 +3183,7 @@ def check_model_drift_detection() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html",
                         severity="Medium",
                         status="Passed",
+                        region=region,
                     )
                 )
 
@@ -3108,12 +3201,13 @@ def check_model_drift_detection() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ]
         }
 
 
-def check_ab_testing_shadow_deployment() -> Dict[str, Any]:
+def check_ab_testing_shadow_deployment(region: str = "") -> Dict[str, Any]:
     """
     Check if endpoints are configured with proper A/B testing or shadow deployment patterns.
     Validates production variant configurations for safe model deployment.
@@ -3122,7 +3216,7 @@ def check_ab_testing_shadow_deployment() -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config)
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
 
         single_variant_endpoints = []
         multi_variant_endpoints = []
@@ -3200,6 +3294,7 @@ def check_ab_testing_shadow_deployment() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html",
                     severity="Low",
                     status="Passed",
+                    region=region,
                 )
             )
         else:
@@ -3214,6 +3309,7 @@ def check_ab_testing_shadow_deployment() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-shadow-deployment.html",
                         severity="Low",
                         status="Passed",
+                        region=region,
                     )
                 )
 
@@ -3228,6 +3324,7 @@ def check_ab_testing_shadow_deployment() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html",
                         severity="Low",
                         status="Passed",
+                        region=region,
                     )
                 )
 
@@ -3242,6 +3339,7 @@ def check_ab_testing_shadow_deployment() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
             elif not shadow_endpoints and not multi_variant_endpoints:
@@ -3254,6 +3352,7 @@ def check_ab_testing_shadow_deployment() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html",
                         severity="Informational",
                         status="N/A",
+                        region=region,
                     )
                 )
             else:
@@ -3266,6 +3365,7 @@ def check_ab_testing_shadow_deployment() -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html",
                         severity="Low",
                         status="Passed",
+                        region=region,
                     )
                 )
 
@@ -3285,12 +3385,13 @@ def check_ab_testing_shadow_deployment() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ]
         }
 
 
-def check_ml_lineage_tracking() -> Dict[str, Any]:
+def check_ml_lineage_tracking(region: str = "") -> Dict[str, Any]:
     """
     Check if ML Lineage Tracking is being used to track model artifacts and experiments.
     Validates that experiments, trials, and artifact associations are configured.
@@ -3299,7 +3400,7 @@ def check_ml_lineage_tracking() -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config)
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
 
         experiments_found = False
         trials_found = False
@@ -3388,6 +3489,7 @@ def check_ml_lineage_tracking() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html",
                     severity="Informational",
                     status="N/A",
+                    region=region,
                 )
             )
         elif not trials_found:
@@ -3400,6 +3502,7 @@ def check_ml_lineage_tracking() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html",
                     severity="Low",
                     status="Failed",
+                    region=region,
                 )
             )
         else:
@@ -3412,6 +3515,7 @@ def check_ml_lineage_tracking() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html",
                     severity="Low",
                     status="Passed",
+                    region=region,
                 )
             )
 
@@ -3426,6 +3530,7 @@ def check_ml_lineage_tracking() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/lineage-tracking.html",
                     severity="Informational",
                     status="N/A",
+                    region=region,
                 )
             )
 
@@ -3443,12 +3548,13 @@ def check_ml_lineage_tracking() -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ]
         }
 
 
-def check_model_registry_usage(permission_cache) -> Dict[str, Any]:
+def check_model_registry_usage(permission_cache, region: str = "") -> Dict[str, Any]:
     """
     Check if Amazon Model Registry is being used effectively for model management
     """
@@ -3456,7 +3562,7 @@ def check_model_registry_usage(permission_cache) -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config)
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
         issues_found = []
 
         try:
@@ -3546,6 +3652,7 @@ def check_model_registry_usage(permission_cache) -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html",
                         severity=issue["severity"],
                         status=issue["status"],
+                        region=region,
                     )
                 )
         else:
@@ -3558,6 +3665,7 @@ def check_model_registry_usage(permission_cache) -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html",
                     severity="Medium",
                     status="Passed",
+                    region=region,
                 )
             )
 
@@ -3646,6 +3754,7 @@ def generate_csv_report(findings: List[Dict[str, Any]]) -> str:
         "Reference",
         "Severity",
         "Status",
+        "Region",
     ]
     writer = csv.DictWriter(csv_buffer, fieldnames=fieldnames)
 
@@ -3662,7 +3771,7 @@ def get_current_utc_date():
     return datetime.now(timezone.utc).strftime("%Y/%m/%d")
 
 
-def write_to_s3(execution_id, csv_content: str, bucket_name: str) -> Dict[str, str]:
+def write_to_s3(execution_id, csv_content: str, bucket_name: str, region: str = "") -> Dict[str, str]:
     """
     Write CSV reports to S3 bucket
     """
@@ -3670,8 +3779,10 @@ def write_to_s3(execution_id, csv_content: str, bucket_name: str) -> Dict[str, s
     try:
         s3_client = boto3.client("s3", config=boto3_config)
 
-        # Upload CSV file
-        csv_file_name = f"sagemaker_security_report_{execution_id}.csv"
+        if region:
+            csv_file_name = f"sagemaker_security_report_{execution_id}_{region}.csv"
+        else:
+            csv_file_name = f"sagemaker_security_report_{execution_id}.csv"
         s3_client.put_object(
             Bucket=bucket_name,
             Key=csv_file_name,
@@ -3695,6 +3806,41 @@ def lambda_handler(event, context):
     all_findings = []
 
     try:
+        # Extract target region from Step Functions Map state
+        region = event.get("Region", os.environ.get("AWS_REGION", "us-east-1"))
+        logger.info(f"Scanning region: {region}")
+
+        # Verify SageMaker is available in this region
+        try:
+            test_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+            test_client.list_notebook_instances(MaxResults=1)
+        except (EndpointConnectionError, Exception) as e:
+            error_msg = str(e)
+            if "Could not connect to the endpoint URL" in error_msg or "EndpointConnectionError" in type(e).__name__:
+                logger.info(f"SageMaker service not available in region {region}, skipping")
+                all_findings.append({
+                    "check_name": "SageMaker Service Availability",
+                    "status": "N/A",
+                    "details": f"SageMaker is not available in region {region}",
+                    "csv_data": [
+                        create_finding(
+                            check_id="SM-00",
+                            finding_name="SageMaker Service Availability",
+                            finding_details=f"Amazon SageMaker is not available in region {region}. No checks performed.",
+                            resolution="No action required. SageMaker is not deployed in this region.",
+                            reference="https://docs.aws.amazon.com/general/latest/gr/sagemaker.html",
+                            severity="Informational",
+                            status="N/A",
+                            region=region,
+                        )
+                    ],
+                })
+                execution_id = event["Execution"]["Name"]
+                csv_content = generate_csv_report(all_findings)
+                bucket_name = os.environ.get("AIML_ASSESSMENT_BUCKET_NAME")
+                s3_url = write_to_s3(execution_id, csv_content, bucket_name, region=region)
+                return {"statusCode": 200, "body": {"message": f"SageMaker not available in {region}", "report_url": s3_url}}
+
         # Initialize permission cache
         logger.info("Initializing IAM permission cache")
         execution_id = event["Execution"]["Name"]
@@ -3707,113 +3853,113 @@ def lambda_handler(event, context):
             permission_cache = {"role_permissions": {}, "user_permissions": {}}
 
         logger.info("Running SageMaker internet access check")
-        sagemaker_internet_access_findings = check_sagemaker_internet_access()
+        sagemaker_internet_access_findings = check_sagemaker_internet_access(region=region)
         all_findings.append(sagemaker_internet_access_findings)
 
         logger.info("Running SageMaker IAM permissions check")
-        sagemaker_iam_findings = check_sagemaker_iam_permissions(permission_cache)
+        sagemaker_iam_findings = check_sagemaker_iam_permissions(permission_cache, region=region)
         all_findings.append(sagemaker_iam_findings)
 
         logger.info("Running SageMaker data protection check")
-        sagemaker_data_protection_findings = check_sagemaker_data_protection()
+        sagemaker_data_protection_findings = check_sagemaker_data_protection(region=region)
         all_findings.append(sagemaker_data_protection_findings)
 
         logger.info("Running GuardDuty SageMaker monitoring check")
-        guardduty_findings = check_guardduty_enabled()
+        guardduty_findings = check_guardduty_enabled(region=region)
         all_findings.append(guardduty_findings)
 
         logger.info("Running SageMaker MLOps features utilization check")
-        mlops_findings = check_sagemaker_mlops_utilization(permission_cache)
+        mlops_findings = check_sagemaker_mlops_utilization(permission_cache, region=region)
         all_findings.append(mlops_findings)
 
         logger.info("Running SageMaker Clarify usage check")
-        clarify_findings = check_sagemaker_clarify_usage(permission_cache)
+        clarify_findings = check_sagemaker_clarify_usage(permission_cache, region=region)
         all_findings.append(clarify_findings)
 
         logger.info("Running SageMaker Model Monitor usage check")
-        monitor_findings = check_sagemaker_model_monitor_usage(permission_cache)
+        monitor_findings = check_sagemaker_model_monitor_usage(permission_cache, region=region)
         all_findings.append(monitor_findings)
 
         logger.info("Running Model Registry usage check")
-        registry_findings = check_model_registry_usage(permission_cache)
+        registry_findings = check_model_registry_usage(permission_cache, region=region)
         all_findings.append(registry_findings)
 
         logger.info("Running SageMaker notebook root access check")
-        notebook_root_findings = check_sagemaker_notebook_root_access()
+        notebook_root_findings = check_sagemaker_notebook_root_access(region=region)
         all_findings.append(notebook_root_findings)
 
         logger.info("Running SageMaker notebook VPC deployment check")
-        notebook_vpc_findings = check_sagemaker_notebook_vpc_deployment()
+        notebook_vpc_findings = check_sagemaker_notebook_vpc_deployment(region=region)
         all_findings.append(notebook_vpc_findings)
 
         logger.info("Running SageMaker model network isolation check")
-        model_isolation_findings = check_sagemaker_model_network_isolation()
+        model_isolation_findings = check_sagemaker_model_network_isolation(region=region)
         all_findings.append(model_isolation_findings)
 
         logger.info("Running SageMaker endpoint instance count check")
-        endpoint_instance_findings = check_sagemaker_endpoint_instance_count()
+        endpoint_instance_findings = check_sagemaker_endpoint_instance_count(region=region)
         all_findings.append(endpoint_instance_findings)
 
         logger.info("Running SageMaker monitoring network isolation check")
-        monitoring_isolation_findings = check_sagemaker_monitoring_network_isolation()
+        monitoring_isolation_findings = check_sagemaker_monitoring_network_isolation(region=region)
         all_findings.append(monitoring_isolation_findings)
 
         logger.info("Running SageMaker model container repository check")
-        model_repository_findings = check_sagemaker_model_container_repository()
+        model_repository_findings = check_sagemaker_model_container_repository(region=region)
         all_findings.append(model_repository_findings)
 
         logger.info("Running SageMaker Feature Store encryption check")
-        feature_store_encryption_findings = check_sagemaker_feature_store_encryption()
+        feature_store_encryption_findings = check_sagemaker_feature_store_encryption(region=region)
         all_findings.append(feature_store_encryption_findings)
 
         logger.info("Running SageMaker data quality job encryption check")
-        data_quality_encryption_findings = check_sagemaker_data_quality_encryption()
+        data_quality_encryption_findings = check_sagemaker_data_quality_encryption(region=region)
         all_findings.append(data_quality_encryption_findings)
 
         # Additional AWS Security Hub Controls
         logger.info("Running SageMaker processing job encryption check (SageMaker.10)")
-        processing_job_encryption_findings = check_sagemaker_processing_job_encryption()
+        processing_job_encryption_findings = check_sagemaker_processing_job_encryption(region=region)
         all_findings.append(processing_job_encryption_findings)
 
         logger.info("Running SageMaker transform job encryption check (SageMaker.11)")
-        transform_job_encryption_findings = check_sagemaker_transform_job_encryption()
+        transform_job_encryption_findings = check_sagemaker_transform_job_encryption(region=region)
         all_findings.append(transform_job_encryption_findings)
 
         logger.info(
             "Running SageMaker hyperparameter tuning job encryption check (SageMaker.12)"
         )
         hyperparameter_tuning_encryption_findings = (
-            check_sagemaker_hyperparameter_tuning_encryption()
+            check_sagemaker_hyperparameter_tuning_encryption(region=region)
         )
         all_findings.append(hyperparameter_tuning_encryption_findings)
 
         logger.info("Running SageMaker compilation job encryption check (SageMaker.13)")
         compilation_job_encryption_findings = (
-            check_sagemaker_compilation_job_encryption()
+            check_sagemaker_compilation_job_encryption(region=region)
         )
         all_findings.append(compilation_job_encryption_findings)
 
         logger.info(
             "Running SageMaker AutoML job network isolation check (SageMaker.15)"
         )
-        automl_network_isolation_findings = check_sagemaker_automl_network_isolation()
+        automl_network_isolation_findings = check_sagemaker_automl_network_isolation(region=region)
         all_findings.append(automl_network_isolation_findings)
 
         # Model Governance Checks
         logger.info("Running model approval workflow check")
-        model_approval_workflow_findings = check_model_approval_workflow()
+        model_approval_workflow_findings = check_model_approval_workflow(region=region)
         all_findings.append(model_approval_workflow_findings)
 
         logger.info("Running model drift detection check")
-        model_drift_detection_findings = check_model_drift_detection()
+        model_drift_detection_findings = check_model_drift_detection(region=region)
         all_findings.append(model_drift_detection_findings)
 
         logger.info("Running A/B testing and shadow deployment check")
-        ab_testing_findings = check_ab_testing_shadow_deployment()
+        ab_testing_findings = check_ab_testing_shadow_deployment(region=region)
         all_findings.append(ab_testing_findings)
 
         logger.info("Running ML lineage tracking check")
-        ml_lineage_tracking_findings = check_ml_lineage_tracking()
+        ml_lineage_tracking_findings = check_ml_lineage_tracking(region=region)
         all_findings.append(ml_lineage_tracking_findings)
 
         # Generate and upload report
@@ -3827,7 +3973,7 @@ def lambda_handler(event, context):
             )
 
         logger.info("Writing reports to S3")
-        s3_url = write_to_s3(execution_id, csv_content, bucket_name)
+        s3_url = write_to_s3(execution_id, csv_content, bucket_name, region=region)
 
         return {
             "statusCode": 200,
diff --git a/aiml-security-assessment/functions/security/sagemaker_assessments/schema.py b/aiml-security-assessment/functions/security/sagemaker_assessments/schema.py
index bb7a07f..c767db7 100644
--- a/aiml-security-assessment/functions/security/sagemaker_assessments/schema.py
+++ b/aiml-security-assessment/functions/security/sagemaker_assessments/schema.py
@@ -27,6 +27,7 @@ class Finding(BaseModel):
     Reference: str = Field(..., description="Documentation reference URL")
     Severity: SeverityEnum = Field(..., description="Severity level of the finding")
     Status: StatusEnum = Field(..., description="Current status of the finding")
+    Region: str = Field(default="", description="AWS region where the finding was identified")
 
     @validator('Check_ID')
     def validate_check_id(cls, v):
@@ -64,7 +65,8 @@ def create_finding(
     resolution: str,
     reference: str,
     severity: SeverityEnum,
-    status: StatusEnum
+    status: StatusEnum,
+    region: str = ""
 ) -> Dict[str, Any]:
     """
     Create a validated finding object
@@ -77,6 +79,7 @@ def create_finding(
         reference: Documentation URL
         severity: Severity level
         status: Current status
+        region: AWS region where the finding was identified
 
     Returns:
         Dict[str, Any]: Validated finding as dictionary
@@ -91,6 +94,7 @@ def create_finding(
         Resolution=resolution,
         Reference=reference,
         Severity=severity,
-        Status=status
+        Status=status,
+        Region=region
     )
     return dict(finding.model_dump())  # Convert to regular dictionary
\ No newline at end of file
diff --git a/aiml-security-assessment/statemachine/assessments.asl.json b/aiml-security-assessment/statemachine/assessments.asl.json
index 81a48d8..f85a7c0 100644
--- a/aiml-security-assessment/statemachine/assessments.asl.json
+++ b/aiml-security-assessment/statemachine/assessments.asl.json
@@ -1,5 +1,5 @@
 {
-    "Comment": "A state machine that performs AI/ML security assessments.",
+    "Comment": "A state machine that performs AI/ML security assessments across multiple regions.",
     "StartAt": "Cleanup S3 Bucket",
     "States": {
         "Cleanup S3 Bucket": {
@@ -54,105 +54,158 @@
                 }
             ],
             "ResultPath": null,
-            "Next": "Run Security Assessments"
+            "Next": "Resolve Target Regions"
         },
-        "Run Security Assessments": {
-            "Type": "Parallel",
-            "Branches": [
+        "Resolve Target Regions": {
+            "Type": "Task",
+            "Resource": "arn:aws:states:::lambda:invoke",
+            "Parameters": {
+                "FunctionName": "${ResolveRegionsFunction}",
+                "Payload": {
+                    "Execution.$": "$$.Execution",
+                    "StateMachine.$": "$$.StateMachine"
+                }
+            },
+            "Retry": [
                 {
-                    "StartAt": "Bedrock Security Assessment",
-                    "States": {
-                        "Bedrock Security Assessment": {
-                            "Type": "Task",
-                            "Resource": "arn:aws:states:::lambda:invoke",
-                            "Parameters": {
-                                "FunctionName": "${BedrockSecurityAssessmentFunction}",
-                                "Payload": {
-                                    "Execution.$": "$$.Execution",
-                                    "StateMachine.$": "$$.StateMachine"
-                                }
-                            },
-                            "Retry": [
-                                {
-                                    "ErrorEquals": [
-                                        "Lambda.ServiceException",
-                                        "Lambda.AWSLambdaException",
-                                        "Lambda.SdkClientException",
-                                        "Lambda.TooManyRequestsException"
-                                    ],
-                                    "IntervalSeconds": 1,
-                                    "MaxAttempts": 3,
-                                    "BackoffRate": 2,
-                                    "JitterStrategy": "FULL"
-                                }
-                            ],
-                            "End": true
-                        }
-                    }
+                    "ErrorEquals": [
+                        "Lambda.ServiceException",
+                        "Lambda.AWSLambdaException",
+                        "Lambda.SdkClientException",
+                        "Lambda.TooManyRequestsException"
+                    ],
+                    "IntervalSeconds": 1,
+                    "MaxAttempts": 3,
+                    "BackoffRate": 2,
+                    "JitterStrategy": "FULL"
+                }
+            ],
+            "ResultPath": "$.ResolvedRegions",
+            "ResultSelector": {
+                "regions.$": "$.Payload.regions"
+            },
+            "Next": "Scan Regions"
+        },
+        "Scan Regions": {
+            "Type": "Map",
+            "ItemsPath": "$.ResolvedRegions.regions",
+            "ItemSelector": {
+                "Region.$": "$$.Map.Item.Value",
+                "Execution.$": "$$.Execution",
+                "StateMachine.$": "$$.StateMachine"
+            },
+            "MaxConcurrency": 0,
+            "ItemProcessor": {
+                "ProcessorConfig": {
+                    "Mode": "INLINE"
                 },
-                {
-                    "StartAt": "Sagemaker Security Assessment",
-                    "States": {
-                        "Sagemaker Security Assessment": {
-                            "Type": "Task",
-                            "Resource": "arn:aws:states:::lambda:invoke",
-                            "Parameters": {
-                                "FunctionName": "${SagemakerSecurityAssessmentFunction}",
-                                "Payload": {
-                                    "Execution.$": "$$.Execution",
-                                    "StateMachine.$": "$$.StateMachine"
+                "StartAt": "Run Security Assessments",
+                "States": {
+                    "Run Security Assessments": {
+                        "Type": "Parallel",
+                        "Branches": [
+                            {
+                                "StartAt": "Bedrock Security Assessment",
+                                "States": {
+                                    "Bedrock Security Assessment": {
+                                        "Type": "Task",
+                                        "Resource": "arn:aws:states:::lambda:invoke",
+                                        "Parameters": {
+                                            "FunctionName": "${BedrockSecurityAssessmentFunction}",
+                                            "Payload": {
+                                                "Execution.$": "$.Execution",
+                                                "StateMachine.$": "$.StateMachine",
+                                                "Region.$": "$.Region"
+                                            }
+                                        },
+                                        "Retry": [
+                                            {
+                                                "ErrorEquals": [
+                                                    "Lambda.ServiceException",
+                                                    "Lambda.AWSLambdaException",
+                                                    "Lambda.SdkClientException",
+                                                    "Lambda.TooManyRequestsException"
+                                                ],
+                                                "IntervalSeconds": 1,
+                                                "MaxAttempts": 3,
+                                                "BackoffRate": 2,
+                                                "JitterStrategy": "FULL"
+                                            }
+                                        ],
+                                        "End": true
+                                    }
                                 }
                             },
-                            "Retry": [
-                                {
-                                    "ErrorEquals": [
-                                        "Lambda.ServiceException",
-                                        "Lambda.AWSLambdaException",
-                                        "Lambda.SdkClientException",
-                                        "Lambda.TooManyRequestsException"
-                                    ],
-                                    "IntervalSeconds": 1,
-                                    "MaxAttempts": 3,
-                                    "BackoffRate": 2,
-                                    "JitterStrategy": "FULL"
-                                }
-                            ],
-                            "End": true
-                        }
-                    }
-                },
-                {
-                    "StartAt": "AgentCore Security Assessment",
-                    "States": {
-                        "AgentCore Security Assessment": {
-                            "Type": "Task",
-                            "Resource": "arn:aws:states:::lambda:invoke",
-                            "Parameters": {
-                                "FunctionName": "${AgentCoreSecurityAssessmentFunction}",
-                                "Payload": {
-                                    "Execution.$": "$$.Execution",
-                                    "StateMachine.$": "$$.StateMachine"
+                            {
+                                "StartAt": "Sagemaker Security Assessment",
+                                "States": {
+                                    "Sagemaker Security Assessment": {
+                                        "Type": "Task",
+                                        "Resource": "arn:aws:states:::lambda:invoke",
+                                        "Parameters": {
+                                            "FunctionName": "${SagemakerSecurityAssessmentFunction}",
+                                            "Payload": {
+                                                "Execution.$": "$.Execution",
+                                                "StateMachine.$": "$.StateMachine",
+                                                "Region.$": "$.Region"
+                                            }
+                                        },
+                                        "Retry": [
+                                            {
+                                                "ErrorEquals": [
+                                                    "Lambda.ServiceException",
+                                                    "Lambda.AWSLambdaException",
+                                                    "Lambda.SdkClientException",
+                                                    "Lambda.TooManyRequestsException"
+                                                ],
+                                                "IntervalSeconds": 1,
+                                                "MaxAttempts": 3,
+                                                "BackoffRate": 2,
+                                                "JitterStrategy": "FULL"
+                                            }
+                                        ],
+                                        "End": true
+                                    }
                                 }
                             },
-                            "Retry": [
-                                {
-                                    "ErrorEquals": [
-                                        "Lambda.ServiceException",
-                                        "Lambda.AWSLambdaException",
-                                        "Lambda.SdkClientException",
-                                        "Lambda.TooManyRequestsException"
-                                    ],
-                                    "IntervalSeconds": 1,
-                                    "MaxAttempts": 3,
-                                    "BackoffRate": 2,
-                                    "JitterStrategy": "FULL"
+                            {
+                                "StartAt": "AgentCore Security Assessment",
+                                "States": {
+                                    "AgentCore Security Assessment": {
+                                        "Type": "Task",
+                                        "Resource": "arn:aws:states:::lambda:invoke",
+                                        "Parameters": {
+                                            "FunctionName": "${AgentCoreSecurityAssessmentFunction}",
+                                            "Payload": {
+                                                "Execution.$": "$.Execution",
+                                                "StateMachine.$": "$.StateMachine",
+                                                "Region.$": "$.Region"
+                                            }
+                                        },
+                                        "Retry": [
+                                            {
+                                                "ErrorEquals": [
+                                                    "Lambda.ServiceException",
+                                                    "Lambda.AWSLambdaException",
+                                                    "Lambda.SdkClientException",
+                                                    "Lambda.TooManyRequestsException"
+                                                ],
+                                                "IntervalSeconds": 1,
+                                                "MaxAttempts": 3,
+                                                "BackoffRate": 2,
+                                                "JitterStrategy": "FULL"
+                                            }
+                                        ],
+                                        "End": true
+                                    }
                                 }
-                            ],
-                            "End": true
-                        }
+                            }
+                        ],
+                        "End": true
                     }
                 }
-            ],
+            },
+            "ResultPath": null,
             "Next": "Generate Consolidated Report"
         },
         "Generate Consolidated Report": {
diff --git a/aiml-security-assessment/template-multi-account.yaml b/aiml-security-assessment/template-multi-account.yaml
index a16af9d..2188736 100644
--- a/aiml-security-assessment/template-multi-account.yaml
+++ b/aiml-security-assessment/template-multi-account.yaml
@@ -5,6 +5,15 @@ Description: >
 
   Multi-account SAM Template for aiml-security-assessment
 
+Parameters:
+  TargetRegions:
+    Type: String
+    Default: ""
+    Description: >
+      Comma-separated list of AWS regions to scan (e.g., us-east-1,us-west-2,eu-west-1).
+      Use 'all' to scan all regions where the service is available.
+      Leave empty to scan only the deployment region.
+
 Resources:
   AIMLAssessmentStateMachine:
     Type: AWS::Serverless::StateMachine
@@ -13,6 +22,7 @@ Resources:
       DefinitionSubstitutions:
         CleanupBucketFunction: !GetAtt CleanupBucketFunction.Arn
         IAMPermissionCachingFunction: !GetAtt IAMPermissionCachingFunction.Arn
+        ResolveRegionsFunction: !GetAtt ResolveRegionsFunction.Arn
         BedrockSecurityAssessmentFunction: !GetAtt BedrockSecurityAssessmentFunction.Arn
         SagemakerSecurityAssessmentFunction: !GetAtt SagemakerSecurityAssessmentFunction.Arn
         AgentCoreSecurityAssessmentFunction: !GetAtt AgentCoreSecurityAssessmentFunction.Arn
@@ -21,10 +31,12 @@ Resources:
       Policies:
         - LambdaInvokePolicy:
             FunctionName: !Ref CleanupBucketFunction
-        - LambdaInvokePolicy:
-            FunctionName: !Ref BedrockSecurityAssessmentFunction
         - LambdaInvokePolicy:
             FunctionName: !Ref IAMPermissionCachingFunction
+        - LambdaInvokePolicy:
+            FunctionName: !Ref ResolveRegionsFunction
+        - LambdaInvokePolicy:
+            FunctionName: !Ref BedrockSecurityAssessmentFunction
         - LambdaInvokePolicy:
             FunctionName: !Ref SagemakerSecurityAssessmentFunction
         - LambdaInvokePolicy:
@@ -34,6 +46,21 @@ Resources:
         - S3CrudPolicy:
             BucketName: !Ref AIMLAssessmentBucket
 
+  ResolveRegionsFunction:
+    Type: AWS::Serverless::Function
+    Properties:
+      FunctionName: !Sub 'aiml-security-ResolveRegions'
+      CodeUri: functions/security/resolve_regions/
+      Handler: app.lambda_handler
+      Runtime: python3.12
+      Architectures:
+        - x86_64
+      Timeout: 60
+      MemorySize: 256
+      Environment:
+        Variables:
+          TARGET_REGIONS: !Ref TargetRegions
+
   CleanupBucketFunction:
     Type: AWS::Serverless::Function
     Properties:
@@ -120,6 +147,7 @@ Resources:
       Environment:
         Variables:
           AIML_ASSESSMENT_BUCKET_NAME: !Ref AIMLAssessmentBucket
+          TARGET_REGIONS: !Ref TargetRegions
       Policies:
         - S3CrudPolicy:
             BucketName: !Ref AIMLAssessmentBucket
@@ -212,6 +240,7 @@ Resources:
       Environment:
         Variables:
           AIML_ASSESSMENT_BUCKET_NAME: !Ref AIMLAssessmentBucket
+          TARGET_REGIONS: !Ref TargetRegions
       Policies:
         - S3CrudPolicy:
             BucketName: !Ref AIMLAssessmentBucket
@@ -305,6 +334,7 @@ Resources:
       Environment:
         Variables:
           AIML_ASSESSMENT_BUCKET_NAME: !Ref AIMLAssessmentBucket
+          TARGET_REGIONS: !Ref TargetRegions
       Policies:
         - S3CrudPolicy:
             BucketName: !Ref AIMLAssessmentBucket
diff --git a/aiml-security-assessment/template.yaml b/aiml-security-assessment/template.yaml
index 0cb74e5..c9d7e7e 100644
--- a/aiml-security-assessment/template.yaml
+++ b/aiml-security-assessment/template.yaml
@@ -5,6 +5,15 @@ Description: >
 
   SAM Template for aiml-security-assessment
 
+Parameters:
+  TargetRegions:
+    Type: String
+    Default: ""
+    Description: >
+      Comma-separated list of AWS regions to scan (e.g., us-east-1,us-west-2,eu-west-1).
+      Use 'all' to scan all regions where the service is available.
+      Leave empty to scan only the deployment region.
+
 Resources:
   AIMLAssessmentStateMachine:
     Type: AWS::Serverless::StateMachine # More info about State Machine Resource: https://docs.aws.amazon.com/serverless-application-model/latest/developerguide/sam-resource-statemachine.html
@@ -13,29 +22,45 @@ Resources:
       DefinitionSubstitutions:
         CleanupBucketFunction: !GetAtt CleanupBucketFunction.Arn
         IAMPermissionCachingFunction: !GetAtt IAMPermissionCachingFunction.Arn
+        ResolveRegionsFunction: !GetAtt ResolveRegionsFunction.Arn
         BedrockSecurityAssessmentFunction: !GetAtt BedrockSecurityAssessmentFunction.Arn
         SagemakerSecurityAssessmentFunction: !GetAtt SagemakerSecurityAssessmentFunction.Arn
         AgentCoreSecurityAssessmentFunction: !GetAtt AgentCoreSecurityAssessmentFunction.Arn
         GenerateConsolidatedReportFunction: !GetAtt GenerateConsolidatedReportFunction.Arn
         AIMLAssessmentBucketName: !Ref AIMLAssessmentBucket
       Policies:
-        # Find out more about SAM policy templates: https://docs.aws.amazon.com/serverless-application-model/latest/developerguide/serverless-policy-templates.html
         - LambdaInvokePolicy:
             FunctionName: !Ref CleanupBucketFunction
-        - LambdaInvokePolicy:
-            FunctionName: !Ref BedrockSecurityAssessmentFunction
         - LambdaInvokePolicy:
             FunctionName: !Ref IAMPermissionCachingFunction
+        - LambdaInvokePolicy:
+            FunctionName: !Ref ResolveRegionsFunction
+        - LambdaInvokePolicy:
+            FunctionName: !Ref BedrockSecurityAssessmentFunction
         - LambdaInvokePolicy:
             FunctionName: !Ref SagemakerSecurityAssessmentFunction
         - LambdaInvokePolicy:
             FunctionName: !Ref AgentCoreSecurityAssessmentFunction
         - LambdaInvokePolicy:
             FunctionName: !Ref GenerateConsolidatedReportFunction
-        #Add S3 Read Write policy
         - S3CrudPolicy:
             BucketName: !Ref AIMLAssessmentBucket
 
+  ResolveRegionsFunction:
+    Type: AWS::Serverless::Function
+    Properties:
+      FunctionName: !Sub 'aiml-security-${AWS::StackName}-ResolveRegions'
+      CodeUri: functions/security/resolve_regions/
+      Handler: app.lambda_handler
+      Runtime: python3.12
+      Architectures:
+        - x86_64
+      Timeout: 60
+      MemorySize: 256
+      Environment:
+        Variables:
+          TARGET_REGIONS: !Ref TargetRegions
+
   CleanupBucketFunction:
     Type: AWS::Serverless::Function
     Properties:
@@ -115,12 +140,12 @@ Resources:
       Runtime: python3.12
       Architectures:
         - x86_64
-      # Add S3 Read Write policy
       Timeout: 600 # 10 minutes
       MemorySize: 1024
       Environment:
         Variables:
           AIML_ASSESSMENT_BUCKET_NAME: !Ref AIMLAssessmentBucket
+          TARGET_REGIONS: !Ref TargetRegions
       Policies:
         - S3CrudPolicy:
             BucketName: !Ref AIMLAssessmentBucket
@@ -206,12 +231,12 @@ Resources:
       Runtime: python3.12
       Architectures:
         - x86_64
-      # Add S3 Read Write policy
       Timeout: 600 # 10 minutes
       MemorySize: 1024
       Environment:
         Variables:
           AIML_ASSESSMENT_BUCKET_NAME: !Ref AIMLAssessmentBucket
+          TARGET_REGIONS: !Ref TargetRegions
       Policies:
         - S3CrudPolicy:
             BucketName: !Ref AIMLAssessmentBucket
@@ -305,6 +330,7 @@ Resources:
       Environment:
         Variables:
           AIML_ASSESSMENT_BUCKET_NAME: !Ref AIMLAssessmentBucket
+          TARGET_REGIONS: !Ref TargetRegions
       Policies:
         - S3CrudPolicy:
             BucketName: !Ref AIMLAssessmentBucket
diff --git a/buildspec.yml b/buildspec.yml
index d4a5a4d..9c9bd7a 100644
--- a/buildspec.yml
+++ b/buildspec.yml
@@ -115,7 +115,7 @@ phases:
             fi
 
             echo "Deploying to account $accountId"
-            if ! sam deploy --template-file .aws-sam/build/template.yaml --stack-name aiml-security-$accountId --capabilities CAPABILITY_IAM --no-confirm-changeset --no-fail-on-empty-changeset --resolve-s3 --region $AWS_DEFAULT_REGION; then
+            if ! sam deploy --template-file .aws-sam/build/template.yaml --stack-name aiml-security-$accountId --capabilities CAPABILITY_IAM --no-confirm-changeset --no-fail-on-empty-changeset --resolve-s3 --region $AWS_DEFAULT_REGION --parameter-overrides TargetRegions="${TARGET_REGIONS:-}"; then
               echo "ERROR: Deploy failed for account $accountId"
               failed_accounts+=($accountId)
               unset AWS_ACCESS_KEY_ID AWS_SECRET_ACCESS_KEY AWS_SESSION_TOKEN
@@ -146,7 +146,7 @@ phases:
             aws cloudformation delete-stack --stack-name aws-sam-cli-managed-default
             aws cloudformation wait stack-delete-complete --stack-name aws-sam-cli-managed-default 2>/dev/null || true
           fi
-          if ! sam deploy --template-file .aws-sam/build/template.yaml --stack-name aiml-security-mgmt --capabilities CAPABILITY_IAM --no-confirm-changeset --no-fail-on-empty-changeset --resolve-s3 --region $AWS_DEFAULT_REGION; then
+          if ! sam deploy --template-file .aws-sam/build/template.yaml --stack-name aiml-security-mgmt --capabilities CAPABILITY_IAM --no-confirm-changeset --no-fail-on-empty-changeset --resolve-s3 --region $AWS_DEFAULT_REGION --parameter-overrides TargetRegions="${TARGET_REGIONS:-}"; then
             echo "ERROR: Deploy failed for management account"
             failed_accounts+=($AWS_ACCOUNT_ID)
           else
@@ -171,7 +171,7 @@ phases:
         else
           echo "Single account deployment"
           STACK_NAME="aiml-sec-${AWS_ACCOUNT_ID}"
-          if ! sam deploy --template-file .aws-sam/build/template.yaml --stack-name $STACK_NAME --capabilities CAPABILITY_IAM --no-confirm-changeset --no-fail-on-empty-changeset --resolve-s3; then
+          if ! sam deploy --template-file .aws-sam/build/template.yaml --stack-name $STACK_NAME --capabilities CAPABILITY_IAM --no-confirm-changeset --no-fail-on-empty-changeset --resolve-s3 --parameter-overrides TargetRegions="${TARGET_REGIONS:-}"; then
             echo "ERROR: SAM deploy failed for single account"
             exit 1
           fi
@@ -215,6 +215,7 @@ phases:
 
           # Track failures
           upload_failed=false
+          sf_failed=false
           failed_accounts=()
 
           # Clean up any existing account-files directory to ensure fresh start
@@ -264,7 +265,8 @@ phases:
                   if [[ $STATUS == "SUCCEEDED" || $STATUS == "FAILED" || $STATUS == "TIMED_OUT" || $STATUS == "ABORTED" ]]; then
                     echo "Step Function for account $accountId completed with status: $STATUS"
                     if [[ $STATUS == "FAILED" || $STATUS == "TIMED_OUT" || $STATUS == "ABORTED" ]]; then
-                      echo "WARNING: Step Function did not succeed for account $accountId"
+                      echo "ERROR: Step Function did not succeed for account $accountId (status: $STATUS)"
+                      sf_failed=true
                     fi
                     break
                   fi
@@ -349,6 +351,11 @@ phases:
             exit 1
           fi
 
+          if [[ $sf_failed == true ]]; then
+            echo "ERROR: One or more Step Function executions failed. Check Step Functions console for details."
+            exit 1
+          fi
+
           echo "==========================================="
           echo "Multi-account assessment completed successfully!"
           echo "==========================================="
@@ -361,6 +368,7 @@ phases:
           # Single account post-build: wait for Step Function and report status
           echo "Single account post-build processing"
           STACK_NAME="aiml-sec-${AWS_ACCOUNT_ID}"
+          sf_failed=false
 
           # Read the execution ARN saved from build phase
           if [[ -f /tmp/single_account_execution_arn.txt ]]; then
@@ -374,7 +382,8 @@ phases:
                 if [[ $STATUS == "SUCCEEDED" || $STATUS == "FAILED" || $STATUS == "TIMED_OUT" || $STATUS == "ABORTED" ]]; then
                   echo "Step Function completed with status: $STATUS"
                   if [[ $STATUS != "SUCCEEDED" ]]; then
-                    echo "WARNING: Step Function did not succeed"
+                    echo "ERROR: Step Function execution failed with status: $STATUS"
+                    sf_failed=true
                   fi
                   break
                 fi
@@ -383,11 +392,13 @@ phases:
                 elapsed=$((elapsed + 30))
               done
               if [[ $elapsed -ge $timeout ]]; then
-                echo "WARNING: Timeout waiting for Step Function completion"
+                echo "ERROR: Timeout waiting for Step Function completion"
+                sf_failed=true
               fi
             fi
           else
-            echo "WARNING: No execution ARN file found from build phase"
+            echo "ERROR: No execution ARN file found from build phase"
+            sf_failed=true
           fi
 
           # Get assessment bucket and sync results to BUCKET_REPORT for consistency
@@ -411,6 +422,11 @@ phases:
           else
             echo "WARNING: Could not determine assessment bucket from stack outputs"
           fi
+
+          if [[ $sf_failed == true ]]; then
+            echo "ERROR: Assessment failed. Check Step Functions execution logs for details."
+            exit 1
+          fi
         fi
       - |
         echo "==========================================="
diff --git a/consolidate_html_reports.py b/consolidate_html_reports.py
index 3b214d9..23d63a0 100644
--- a/consolidate_html_reports.py
+++ b/consolidate_html_reports.py
@@ -56,6 +56,7 @@ def consolidate_html_reports():
 
     all_findings = []
     account_ids = set()
+    regions = set()
     service_stats = {
         "bedrock": {"passed": 0, "failed": 0, "na": 0},
         "sagemaker": {"passed": 0, "failed": 0, "na": 0},
@@ -83,6 +84,9 @@ def consolidate_html_reports():
                         reader = csv.DictReader(f)
                         for row in reader:
                             # Map CSV columns to finding structure
+                            region = row.get("Region", "")
+                            if region:
+                                regions.add(region)
                             finding = {
                                 "account_id": account_id,
                                 "check_id": row.get("Check_ID", ""),
@@ -92,6 +96,7 @@ def consolidate_html_reports():
                                 "reference": row.get("Reference", ""),
                                 "severity": row.get("Severity", "N/A"),
                                 "status": row.get("Status", ""),
+                                "region": region,
                             }
 
                             # Determine service from Check_ID prefix
@@ -151,6 +156,7 @@ def consolidate_html_reports():
             mode="multi",
             account_ids=list(account_ids),
             timestamp=timestamp_display,
+            regions=sorted(regions) if regions else None,
         )
 
         timestamp_file = datetime.now().strftime("%Y%m%d_%H%M%S")
diff --git a/deployment/2-aiml-security-codebuild.yaml b/deployment/2-aiml-security-codebuild.yaml
index e9793a1..eb05737 100644
--- a/deployment/2-aiml-security-codebuild.yaml
+++ b/deployment/2-aiml-security-codebuild.yaml
@@ -9,6 +9,7 @@ Metadata:
         Parameters:
           - MultiAccountScan
           - MultiAccountListOverride
+          - TargetRegions
           - EmailAddress
       - Label:
           default: Advanced Options
@@ -70,6 +71,14 @@ Parameters:
       - "Twelve"
     Default: "Three"
 
+  TargetRegions:
+    Type: String
+    Description: >
+      Comma-separated list of AWS regions to scan (e.g., us-east-1,us-west-2,eu-west-1).
+      Use 'all' to scan all regions where the service is available.
+      Leave empty to scan only the deployment region.
+    Default: ""
+
   CodeBuildTimeout:
     Description: "Set the timeout for the CodeBuild job. The default is 300 minutes
       (5 hours)."
@@ -515,6 +524,9 @@ Resources:
                 "ParallelAccounts",
               ]
             Type: PLAINTEXT
+          - Name: TARGET_REGIONS
+            Value: !Ref TargetRegions
+            Type: PLAINTEXT
       Description: Run AIML Security multi-account assessment
       ServiceRole: !GetAtt MultiAccountCodeBuildRole.Arn
       TimeoutInMinutes: !Ref CodeBuildTimeout
diff --git a/deployment/aiml-security-single-account.yaml b/deployment/aiml-security-single-account.yaml
index ad42582..95280cc 100644
--- a/deployment/aiml-security-single-account.yaml
+++ b/deployment/aiml-security-single-account.yaml
@@ -8,6 +8,7 @@ Metadata:
           default: Assessment Options
         Parameters:
           - EmailAddress
+          - TargetRegions
       - Label:
           default: Advanced Options
         Parameters:
@@ -35,6 +36,14 @@ Parameters:
     AllowedPattern: ^$|^[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}$
     ConstraintDescription: Must be a valid email address or leave empty
 
+  TargetRegions:
+    Type: String
+    Description: >
+      Comma-separated list of AWS regions to scan (e.g., us-east-1,us-west-2,eu-west-1).
+      Use 'all' to scan all regions where the service is available.
+      Leave empty to scan only the deployment region.
+    Default: ""
+
   CodeBuildTimeout:
     Description: "Timeout for the CodeBuild job in minutes"
     Type: Number
@@ -425,6 +434,9 @@ Resources:
           - Name: AWS_ACCOUNT_ID
             Value: !Sub ${AWS::AccountId}
             Type: PLAINTEXT
+          - Name: TARGET_REGIONS
+            Value: !Ref TargetRegions
+            Type: PLAINTEXT
       Description: Run AIML Security single-account assessment
       ServiceRole: !GetAtt CodeBuildRole.Arn
       TimeoutInMinutes: !Ref CodeBuildTimeout
diff --git a/docs/CLEANUP.md b/docs/CLEANUP.md
new file mode 100644
index 0000000..0f929dc
--- /dev/null
+++ b/docs/CLEANUP.md
@@ -0,0 +1,105 @@
+# Cleanup Guide
+
+This guide provides step-by-step instructions for removing all resources deployed by the AI/ML Security Assessment framework.
+
+## Cleanup Order
+
+For a clean removal, delete resources in this order:
+
+1. **Assessment stacks** (auto-created by SAM)
+2. **Infrastructure stack** (the stack you deployed manually)
+3. AWS CloudFormation StackSet member roles (multi-account only)
+4. Any remaining Amazon S3 buckets manually
+
+---
+
+## Single-Account Cleanup
+
+To remove all resources deployed for single-account assessment:
+
+1. **Delete the AWS SAM-deployed assessment stack**:
+   - Navigate to **AWS CloudFormation** > **Stacks**
+   - Select the `aiml-sec-{account_id}` stack (for example, `aiml-sec-123456789012`)
+   - Click **Delete**
+   - Wait for stack deletion to complete
+
+2. **Delete the AWS CodeBuild infrastructure stack**:
+   - Select the `aiml-security-single-account` stack (or your custom stack name)
+   - Click **Delete**
+   - Wait for stack deletion to complete
+
+3. **Clean up Amazon S3 buckets** (if stack deletion fails due to non-empty buckets):
+   ```bash
+   # Empty the assessment bucket
+   aws s3 rm s3://<assessment-bucket-name> --recursive
+
+   # If versioning is enabled, delete version markers
+   aws s3api delete-objects --bucket <bucket-name> --delete \
+     "$(aws s3api list-object-versions --bucket <bucket-name> \
+     --query '{Objects: Versions[].{Key:Key,VersionId:VersionId}}')"
+
+   # Delete the bucket
+   aws s3 rb s3://<bucket-name>
+   ```
+
+---
+
+## Multi-Account Cleanup
+
+To remove all resources deployed for multi-account assessment:
+
+1. **Delete AWS SAM-deployed stacks in each member account**:
+   - For each account that was scanned, navigate to **AWS CloudFormation** > **Stacks**
+   - Select the `aiml-security-{account_id}` stack (for example, `aiml-security-123456789012`)
+   - For the management account, select `aiml-security-mgmt`
+   - Click **Delete**
+   - Alternatively, use the AWS CLI to delete across accounts:
+     ```bash
+     # Assume role in member account and delete stack
+     aws cloudformation delete-stack --stack-name aiml-security-<account_id> \
+       --region <region>
+     ```
+
+2. **Delete the central AWS CodeBuild infrastructure stack**:
+   - In the management account, navigate to **AWS CloudFormation** > **Stacks**
+   - Select the `aiml-security-multi-account` stack
+   - Click **Delete**
+   - Wait for stack deletion to complete
+
+3. **Delete the AWS CloudFormation StackSet member roles**:
+   - Navigate to **AWS CloudFormation** > **StackSets**
+   - Select the `aiml-security-member-roles` AWS CloudFormation StackSet
+   - Click **Actions** > **Delete stacks from StackSet**
+   - Select all deployment targets (OUs or accounts)
+   - Wait for stack instances to be deleted
+   - Once all stack instances are removed, delete the AWS CloudFormation StackSet itself
+
+4. **Clean up Amazon S3 buckets** (if stack deletion fails due to non-empty buckets):
+   ```bash
+   # List and identify assessment buckets
+   aws s3 ls | grep aiml-security
+
+   # Empty each bucket
+   aws s3 rm s3://<bucket-name> --recursive
+
+   # Delete version markers if versioning was enabled
+   aws s3api delete-objects --bucket <bucket-name> --delete \
+     "$(aws s3api list-object-versions --bucket <bucket-name> \
+     --query '{Objects: Versions[].{Key:Key,VersionId:VersionId}}')"
+
+   # Delete the bucket
+   aws s3 rb s3://<bucket-name>
+   ```
+
+---
+
+## Identifying Stack Types
+
+The deployment creates multiple AWS CloudFormation stacks. Here's how to identify them:
+
+| Stack Type | How to Identify | Action |
+|------------|-----------------|--------|
+| **Infrastructure Stack** (yours) | The name you chose (for example, `aiml-security-single-account`) | Delete second |
+| **Assessment Stack** (auto-generated) | `aiml-sec-{account_id}` (single) or `aiml-security-{account_id}` (multi) | Delete first |
+
+**Quick Check**: If you see a stack name starting with `aiml-sec-` or `aiml-security-` followed by numbers (or `aiml-security-mgmt`), that's an auto-generated assessment stack.
diff --git a/docs/DEVELOPER_GUIDE.md b/docs/DEVELOPER_GUIDE.md
index 1dab9ef..24c3d42 100644
--- a/docs/DEVELOPER_GUIDE.md
+++ b/docs/DEVELOPER_GUIDE.md
@@ -44,7 +44,7 @@
 
 ## Architecture Overview
 
-The AI/ML Security Assessment Framework is a serverless, multi-account security assessment solution for AWS AI/ML workloads. It performs 52 security checks across Amazon Bedrock, Amazon SageMaker AI, and Amazon Bedrock AgentCore, generating interactive HTML reports with findings and remediation guidance.
+The AI/ML Security Assessment Framework is a serverless, multi-account security assessment solution for AWS AI/ML workloads. It performs 51 security checks across Amazon Bedrock, Amazon SageMaker AI, and Amazon Bedrock AgentCore, generating interactive HTML reports with findings and remediation guidance.
 
 ### Security Design Principles
 
@@ -101,6 +101,7 @@ sample-aiml-security-assessment/
 │   │   ├── agentcore_assessments/    # AgentCore security checks (13)
 │   │   ├── iam_permission_caching/   # AWS IAM permissions cache
 │   │   ├── cleanup_bucket/           # Amazon S3 cleanup
+│   │   ├── resolve_regions/          # Multi-region resolution Lambda
 │   │   └── generate_consolidated_report/  # HTML/CSV report generation
 │   ├── statemachine/                 # AWS Step Functions definition
 │   ├── images/                       # SAM application images
@@ -120,6 +121,7 @@ sample-aiml-security-assessment/
 │   ├── scripts/                      # Screenshot capture scripts
 │   ├── *.html                        # Sample HTML reports
 │   └── *.png                         # Report screenshots
+├── tests/                            # Unit tests for assessment functions
 ├── buildspec.yml                     # AWS CodeBuild orchestration
 ├── buildspec-modular-example.yml     # Modular buildspec example
 └── consolidate_html_reports.py       # Multi-account report consolidation
@@ -148,30 +150,44 @@ sample-aiml-security-assessment/
 ```json
 {
   "Comment": "AI/ML Assessment Module",
-  "StartAt": "Cleanup Amazon S3 Bucket",
+  "StartAt": "Cleanup S3 Bucket",
   "States": {
-    "Cleanup Amazon S3 Bucket": {
+    "Cleanup S3 Bucket": {
       "Type": "Task",
-      "Resource": "arn:aws:states:::lambda:invoke",
-      "Next": "AWS IAM Permission Caching"
+      "Next": "IAM Permission Caching"
     },
-    "AWS IAM Permission Caching": {
+    "IAM Permission Caching": {
       "Type": "Task",
-      "Resource": "arn:aws:states:::lambda:invoke",
-      "Next": "Parallel Service Assessments"
+      "Next": "Resolve Target Regions"
     },
-    "Parallel Service Assessments": {
-      "Type": "Parallel",
-      "Branches": [
-        {"StartAt": "Amazon Bedrock Assessment", "States": {...}},
-        {"StartAt": "Amazon SageMaker AI Assessment", "States": {...}},
-        {"StartAt": "Amazon Bedrock AgentCore Assessment", "States": {...}}
-      ],
+    "Resolve Target Regions": {
+      "Type": "Task",
+      "Comment": "Resolves target regions from TARGET_REGIONS env var",
+      "Next": "Scan Regions"
+    },
+    "Scan Regions": {
+      "Type": "Map",
+      "ItemsPath": "$.ResolvedRegions.regions",
+      "MaxConcurrency": 0,
+      "ItemProcessor": {
+        "ProcessorConfig": {"Mode": "INLINE"},
+        "StartAt": "Run Security Assessments",
+        "States": {
+          "Run Security Assessments": {
+            "Type": "Parallel",
+            "Branches": [
+              {"StartAt": "Bedrock Security Assessment", "States": {...}},
+              {"StartAt": "Sagemaker Security Assessment", "States": {...}},
+              {"StartAt": "AgentCore Security Assessment", "States": {...}}
+            ],
+            "End": true
+          }
+        }
+      },
       "Next": "Generate Consolidated Report"
     },
     "Generate Consolidated Report": {
       "Type": "Task",
-      "Resource": "arn:aws:states:::lambda:invoke",
       "End": true
     }
   }
@@ -180,22 +196,25 @@ sample-aiml-security-assessment/
 
 ## Assessment Structure
 
-The framework includes **52 security checks** across three AI/ML services. For the complete list of checks with descriptions, see the [Security Checks Reference](SECURITY_CHECKS.md).
+The framework includes **51 security checks** across three AI/ML services. For the complete list of checks with descriptions, see the [Security Checks Reference](SECURITY_CHECKS.md).
 
 ### AWS Lambda Functions
 
 Each assessment AWS Lambda function:
-1. Receives execution context from AWS Step Functions
-2. Reads cached AWS IAM permissions from Amazon S3
-3. Performs security checks against AWS APIs
-4. Generates CSV report with findings
-5. Uploads results to Amazon S3
-6. Returns findings summary to AWS Step Functions
+1. Receives execution context and target region from AWS Step Functions (via the Map state)
+2. Verifies the service is available in the target region (returns N/A finding if not)
+3. Reads cached AWS IAM permissions from Amazon S3
+4. Creates regional boto3 clients with explicit `region_name` parameter
+5. Performs security checks against AWS APIs in the target region
+6. Generates CSV report with findings (includes `Region` column)
+7. Uploads results to Amazon S3 with region-suffixed filename
+8. Returns findings summary to AWS Step Functions
 
 **Additional Functions:**
-- **AWS IAM Permission Caching**: Pre-fetches AWS IAM policies to optimize assessment
+- **AWS IAM Permission Caching**: Pre-fetches AWS IAM policies to optimize assessment (global, runs once)
 - **Cleanup Bucket**: Removes old assessment data
-- **Generate Consolidated Report**: Creates HTML report from CSV findings
+- **Resolve Regions**: Resolves target regions from `TargetRegions` parameter for the Map state
+- **Generate Consolidated Report**: Creates HTML report from CSV findings with region filtering
 
 ## Adding New AI/ML Service Assessments
 
@@ -214,26 +233,44 @@ cd aiml-security-assessment/functions/security/comprehend_assessments
 ```python
 # app.py
 import boto3
+import os
 import json
+from botocore.config import Config
+from botocore.exceptions import ClientError, EndpointConnectionError
 from schema import create_finding
 
+boto3_config = Config(retries=dict(max_attempts=10, mode="adaptive"))
+
 
 def lambda_handler(event, context):
     """Main assessment handler for new service"""
     all_findings = []
 
+    # Extract target region from Step Functions Map state
+    region = event.get("Region", os.environ.get("AWS_REGION", "us-east-1"))
+
+    # Verify service availability in this region
+    try:
+        test_client = boto3.client("comprehend", config=boto3_config, region_name=region)
+        test_client.list_endpoints(MaxResults=1)
+    except (EndpointConnectionError, Exception) as e:
+        if "Could not connect to the endpoint URL" in str(e):
+            # Service not available — return N/A finding
+            ...
+            return {"statusCode": 200, "body": {"message": f"Service not available in {region}"}}
+
     # Get cached permissions
     execution_id = event["Execution"]["Name"]
     permission_cache = get_permissions_cache(execution_id)
 
-    # Run assessment checks
-    findings = check_new_service_security(permission_cache)
+    # Run assessment checks (pass region to each)
+    findings = check_new_service_security(permission_cache, region=region)
     all_findings.append(findings)
 
-    # Generate and upload report
+    # Generate and upload report (include region in S3 key)
     csv_content = generate_csv_report(all_findings)
     bucket_name = os.environ.get("AIML_ASSESSMENT_BUCKET_NAME")
-    s3_url = write_to_s3(execution_id, csv_content, bucket_name)
+    s3_url = write_to_s3(execution_id, csv_content, bucket_name, region=region)
 
     return {
         "statusCode": 200,
@@ -245,7 +282,7 @@ def lambda_handler(event, context):
     }
 
 
-def check_new_service_security(permission_cache):
+def check_new_service_security(permission_cache, region: str = ""):
     """Implement your security checks here"""
     findings = {
         "check_name": "New Service Security Check",
@@ -254,9 +291,11 @@ def check_new_service_security(permission_cache):
         "csv_data": [],
     }
 
+    # Create regional client
+    client = boto3.client("comprehend", config=boto3_config, region_name=region)
+
     # Your assessment logic here
-    # Use permission_cache to check IAM permissions
-    # Use AWS SDK to check service configurations
+    # Pass region= to all create_finding() calls
 
     return findings
 ```
@@ -279,7 +318,6 @@ class SeverityEnum(str, Enum):
     MEDIUM = "Medium"
     LOW = "Low"
     INFORMATIONAL = "Informational"
-    NA = "N/A"
 
 
 class StatusEnum(str, Enum):
@@ -289,7 +327,7 @@ class StatusEnum(str, Enum):
 
 
 def create_finding(
-    check_id, finding_name, finding_details, resolution, reference, severity, status
+    check_id, finding_name, finding_details, resolution, reference, severity, status, region=""
 ):
     """Create standardized finding format
 
@@ -301,6 +339,7 @@ def create_finding(
         reference: Documentation URL
         severity: SeverityEnum value
         status: StatusEnum value (Failed, Passed, or N/A)
+        region: AWS region where the finding was identified
     """
     return {
         "Check_ID": check_id,
@@ -310,6 +349,7 @@ def create_finding(
         "Reference": reference,
         "Severity": severity,
         "Status": status,
+        "Region": region,
     }
 ```
 
@@ -330,6 +370,7 @@ Add your new function to `aiml-security-assessment/template.yaml`:
       Environment:
         Variables:
           AIML_ASSESSMENT_BUCKET_NAME: !Ref AIMLAssessmentBucket
+          TARGET_REGIONS: !Ref TargetRegions
       Policies:
         - S3CrudPolicy:
             BucketName: !Ref AIMLAssessmentBucket
@@ -490,7 +531,7 @@ For detailed troubleshooting guidance, common issues, and debugging tips, see th
 ## Development Roadmap
 
 ### Current Status
-- **AI/ML Assessment**: 52 security checks across three services (see [Security Checks Reference](SECURITY_CHECKS.md))
+- **AI/ML Assessment**: 51 security checks across three services (see [Security Checks Reference](SECURITY_CHECKS.md))
 
 ### Potential Additions
 - **Amazon Comprehend**: Data privacy, access controls, entity recognition security
diff --git a/docs/TROUBLESHOOTING.md b/docs/TROUBLESHOOTING.md
index 02251d5..486bd58 100644
--- a/docs/TROUBLESHOOTING.md
+++ b/docs/TROUBLESHOOTING.md
@@ -110,6 +110,38 @@ aws s3 rb s3://<bucket-name>
 3. **Wrong prefix**: Look under `{account_id}/` for single-account, `consolidated-reports/` for multi-account
 4. **Permissions**: Check CloudWatch Logs for Lambda execution errors
 
+### 8. Confused by Multiple CloudFormation Stacks
+
+**Symptoms:** You see multiple stacks and aren't sure which one has your results.
+
+**Explanation:** The deployment creates TWO stacks. Only the infrastructure stack has the `AssessmentBucket` output.
+
+| Stack Type | How to Identify | What to Do |
+|------------|-----------------|------------|
+| **Infrastructure Stack** (yours) | The name you chose (for example, `aiml-security-single-account`) | Use this — go to Outputs tab, copy `AssessmentBucket` |
+| **Assessment Stack** (auto-generated) | `aiml-sec-{account_id}` (single) or `aiml-security-{account_id}` (multi) | Ignore — internal operations only |
+
+**Quick Check**: If a stack name starts with `aiml-sec-` or `aiml-security-` followed by numbers (or `aiml-security-mgmt`), it's auto-generated. Look for the name you chose during deployment.
+
+### 9. Upgrading an Existing Deployment to Multi-Region
+
+**Symptoms:** You have an existing single-region deployment and want to enable multi-region scanning.
+
+**Solution:** Update your existing CloudFormation stack — no teardown required.
+
+1. Navigate to **AWS CloudFormation** > **Stacks**
+2. Select your infrastructure stack (for example, `aiml-security-single-account` or `aiml-security-multi-account`)
+3. Click **Update** > **Use current template**
+4. Set the `TargetRegions` parameter (for example, `us-east-1,us-west-2,eu-west-1` or `all`)
+5. Click through to **Submit**
+6. The next assessment run will scan the specified regions in parallel
+
+**What happens during the upgrade:**
+- CloudFormation updates the `TARGET_REGIONS` environment variable on the existing Lambdas (the `ResolveRegionsFunction`, state machine, and assessment Lambdas already exist in all deployments — when `TargetRegions` is empty they simply scan a single region)
+- No new resources are created — the value of the environment variable changes from empty to your specified regions
+- No data is lost — the S3 bucket retains all previous reports
+- Fully backward compatible — leaving `TargetRegions` empty preserves single-region behavior
+
 ---
 
 ## Debugging
diff --git a/sample-reports/security_assessment_multi_region_sample.html b/sample-reports/security_assessment_multi_region_sample.html
new file mode 100644
index 0000000..e20cccd
--- /dev/null
+++ b/sample-reports/security_assessment_multi_region_sample.html
@@ -0,0 +1,873 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>AI/ML Security Assessment Report</title>
+    <link href="https://fonts.googleapis.com/css2?family=DM+Sans:wght@400;500;600;700&family=JetBrains+Mono:wght@400;500&display=swap" rel="stylesheet">
+    <style>
+        :root {
+            --bg: #f8fafc;
+            --surface: #fff;
+            --surface-2: #f1f5f9;
+            --border: #cbd5e1;
+            --text: #0f172a;
+            --text-2: #64748b;
+            --text-3: #94a3b8;
+            --accent: #6366f1;
+            --accent-soft: #eef2ff;
+            --success: #10b981;
+            --success-soft: #ecfdf5;
+            --warning: #f59e0b;
+            --warning-soft: #fffbeb;
+            --danger: #ef4444;
+            --danger-soft: #fef2f2;
+        }
+        [data-theme="dark"] {
+            --bg: #0f172a;
+            --surface: #1e293b;
+            --surface-2: #334155;
+            --border: #64748b;
+            --text: #f1f5f9;
+            --text-2: #94a3b8;
+            --text-3: #64748b;
+            --accent: #818cf8;
+            --accent-soft: rgba(129, 140, 248, 0.15);
+            --success: #4ade80;
+            --success-soft: rgba(74, 222, 128, 0.15);
+            --warning: #fbbf24;
+            --warning-soft: rgba(251, 191, 36, 0.15);
+            --danger: #f87171;
+            --danger-soft: rgba(248, 113, 113, 0.15);
+        }
+        * { box-sizing: border-box; margin: 0; padding: 0; }
+        body { font-family: 'DM Sans', system-ui, sans-serif; font-size: 14px; line-height: 1.6; color: var(--text); background: var(--bg); -webkit-font-smoothing: antialiased; }
+        .layout { display: grid; grid-template-columns: 280px 1fr; min-height: 100vh; }
+        .sidebar { background: var(--surface); border-right: 1px solid var(--border); padding: 24px 0; position: sticky; top: 0; height: 100vh; overflow-y: auto; display: flex; flex-direction: column; }
+        .sidebar-header { padding: 0 20px 24px; border-bottom: 1px solid var(--border); margin-bottom: 16px; }
+        .sidebar-header h1 { font-size: 18px; font-weight: 700; color: var(--text); margin-bottom: 4px; }
+        .sidebar-header p { font-size: 12px; color: var(--text-3); }
+        .theme-toggle { display: flex; align-items: center; gap: 8px; margin: 16px 20px; padding: 10px 14px; background: var(--surface-2); border: 1px solid var(--border); border-radius: 8px; cursor: pointer; font-size: 13px; font-weight: 500; color: var(--text); transition: all 0.15s; }
+        .theme-toggle:hover { border-color: var(--accent); background: var(--accent-soft); }
+        .theme-toggle svg { width: 18px; height: 18px; }
+        .theme-toggle .sun-icon { display: none; }
+        .theme-toggle .moon-icon { display: block; }
+        [data-theme="dark"] .theme-toggle .sun-icon { display: block; }
+        [data-theme="dark"] .theme-toggle .moon-icon { display: none; }
+        .nav-section { padding: 0 16px; margin-bottom: 24px; }
+        .nav-section h3 { font-size: 11px; font-weight: 600; color: var(--text-3); text-transform: uppercase; letter-spacing: 0.5px; padding: 0 8px; margin-bottom: 8px; }
+        .nav-item { display: flex; align-items: center; gap: 10px; padding: 10px 12px; border-radius: 8px; color: var(--text-2); font-size: 14px; font-weight: 500; cursor: pointer; transition: all 0.15s; text-decoration: none; }
+        .nav-item:hover { background: var(--surface-2); color: var(--text); }
+        .nav-item.active { background: var(--accent-soft); color: var(--accent); }
+        .nav-item svg { width: 18px; height: 18px; opacity: 0.7; flex-shrink: 0; }
+        .service-icon { display: inline-flex; align-items: center; justify-content: center; width: 24px; height: 24px; border-radius: 6px; flex-shrink: 0; overflow: hidden; }
+        .service-icon svg { width: 100%; height: 100%; border-radius: 6px; }
+        .section-title .service-icon { width: 32px; height: 32px; }
+        .section-title .service-icon svg { border-radius: 8px; }
+        .nav-item .count { margin-left: auto; font-size: 12px; font-weight: 600; background: var(--surface-2); padding: 2px 8px; border-radius: 10px; }
+        .nav-item.active .count { background: var(--accent); color: #fff; }
+        .sidebar-footer { margin-top: auto; padding: 16px 20px; border-top: 1px solid var(--border); font-size: 12px; color: var(--text-3); }
+        .sidebar-footer a { color: var(--accent); text-decoration: none; }
+        .main { padding: 32px 40px; max-width: 1400px; }
+        .page-header { margin-bottom: 32px; }
+        .page-header h2 { font-size: 24px; font-weight: 700; margin-bottom: 8px; }
+        .page-header-meta { display: flex; gap: 24px; font-size: 13px; color: var(--text-2); }
+        .page-header-meta span { display: flex; align-items: center; gap: 6px; }
+        .metrics { display: grid; grid-template-columns: repeat(6, 1fr); gap: 16px; margin-bottom: 32px; }
+        .metric { background: var(--surface); border: 2px solid var(--border); border-radius: 12px; padding: 20px; box-shadow: 0 1px 3px rgba(0,0,0,0.08); }
+        .metric-label { font-size: 13px; color: var(--text-2); margin-bottom: 8px; display: flex; align-items: center; gap: 6px; }
+        .metric-value { font-size: 28px; font-weight: 700; color: var(--text); }
+        .metric-sub { font-size: 12px; color: var(--text-3); margin-top: 4px; }
+        .metric.highlight { background: linear-gradient(135deg, var(--success-soft) 0%, rgba(16, 185, 129, 0.2) 100%); border-color: var(--success); }
+        .metric.highlight .metric-value { color: var(--success); }
+        .metric.danger .metric-value { color: var(--danger); }
+        .metric.warning .metric-value { color: var(--warning); }
+        .card { background: var(--surface); border: 2px solid var(--border); border-radius: 12px; margin-bottom: 24px; box-shadow: 0 1px 3px rgba(0,0,0,0.08); }
+        .card-header { padding: 16px 20px; border-bottom: 2px solid var(--border); display: flex; justify-content: space-between; align-items: center; background: var(--surface-2); }
+        .card-header h3 { font-size: 15px; font-weight: 600; display: flex; align-items: center; gap: 10px; }
+        .card-body { padding: 20px; }
+        .alerts { display: grid; grid-template-columns: repeat(auto-fill, minmax(280px, 1fr)); gap: 12px; }
+        .alert-item { display: flex; align-items: center; gap: 12px; padding: 12px 16px; border-radius: 8px; background: var(--surface-2); cursor: pointer; transition: all 0.15s; }
+        .alert-item:hover { background: var(--border); }
+        .alert-item.critical { background: var(--danger-soft); border-left: 3px solid var(--danger); }
+        .alert-item.warning { background: var(--warning-soft); border-left: 3px solid var(--warning); }
+        .alert-count { font-size: 20px; font-weight: 700; min-width: 32px; text-align: center; }
+        .alert-item.critical .alert-count { color: var(--danger); }
+        .alert-item.warning .alert-count { color: var(--warning); }
+        .alert-info { flex: 1; min-width: 0; }
+        .alert-domain { font-weight: 600; font-size: 14px; white-space: nowrap; overflow: hidden; text-overflow: ellipsis; }
+        .alert-category { font-size: 12px; color: var(--text-2); margin-top: 2px; }
+        .table-wrap { overflow-x: auto; max-height: 900px; overflow-y: auto; }
+        table { width: 100%; border-collapse: collapse; font-size: 13px; table-layout: fixed; min-width: 1000px; }
+        table th:nth-child(1) { width: 10%; }
+        table th:nth-child(2) { width: 9%; }
+        table th:nth-child(3) { width: 6%; }
+        table th:nth-child(4) { width: 12%; }
+        table th:nth-child(5) { width: 18%; }
+        table th:nth-child(6) { width: 18%; }
+        table th:nth-child(7) { width: 6%; }
+        table th:nth-child(8) { width: 9%; }
+        table th:nth-child(9) { width: 9%; }
+        th { text-align: left; padding: 14px 16px; font-weight: 700; font-size: 11px; text-transform: uppercase; letter-spacing: 0.5px; color: var(--text); background: var(--surface-2); border-bottom: 3px solid var(--accent); white-space: nowrap; position: sticky; top: 0; }
+        th.sortable { cursor: pointer; user-select: none; transition: background 0.15s; }
+        th.sortable:hover { background: var(--border); }
+        th.sortable::after { content: ''; display: inline-block; width: 0; height: 0; margin-left: 6px; vertical-align: middle; border-left: 4px solid transparent; border-right: 4px solid transparent; border-top: 4px solid var(--text-3); opacity: 0.5; }
+        th.sortable.asc::after { border-top: none; border-bottom: 4px solid var(--accent); opacity: 1; }
+        th.sortable.desc::after { border-top: 4px solid var(--accent); opacity: 1; }
+        th:nth-last-child(-n+3), td:nth-last-child(-n+3) { text-align: center; }
+        td { padding: 14px 16px; border-bottom: 1px solid var(--border); vertical-align: top; line-height: 1.5; word-wrap: break-word; overflow-wrap: break-word; }
+        tr:hover td { background: var(--surface-2); }
+        .col-domain { font-weight: 500; color: var(--text); }
+        .status { display: inline-block; padding: 4px 8px; border-radius: 4px; font-size: 11px; font-weight: 500; font-family: 'JetBrains Mono', monospace; }
+        .status.success { background: var(--success-soft); color: var(--success); }
+        .status.error { background: var(--danger-soft); color: var(--danger); }
+        .status.warning { background: var(--warning-soft); color: var(--warning); }
+        .severity { display: inline-flex; align-items: center; padding: 4px 10px; border-radius: 4px; font-size: 11px; font-weight: 600; text-transform: uppercase; }
+        .severity.high { background: var(--danger-soft); color: var(--danger); }
+        .severity.medium { background: var(--warning-soft); color: var(--warning); }
+        .severity.low { background: var(--accent-soft); color: var(--accent); }
+        .severity.na { background: var(--surface-2); color: var(--text-3); }
+        .filter-bar { display: flex; gap: 16px; margin-bottom: 20px; flex-wrap: wrap; align-items: flex-end; }
+        .filter-group { display: flex; flex-direction: column; gap: 4px; }
+        .filter-group label { font-size: 11px; font-weight: 600; color: var(--text-3); text-transform: uppercase; letter-spacing: 0.3px; }
+        .filter-group input, .filter-group select { padding: 8px 12px; border: 1px solid var(--border); border-radius: 6px; font-size: 13px; font-family: inherit; background: var(--surface); color: var(--text); min-width: 160px; transition: border-color 0.15s; }
+        .filter-group input:focus, .filter-group select:focus { outline: none; border-color: var(--accent); }
+        .btn { display: inline-flex; align-items: center; gap: 6px; padding: 8px 16px; border-radius: 6px; font-size: 13px; font-weight: 500; font-family: inherit; cursor: pointer; transition: all 0.15s; border: none; }
+        .btn svg { width: 16px; height: 16px; }
+        .btn-reset { background: var(--surface); color: var(--text-2); border: 1px solid var(--border); padding: 8px 14px; }
+        .btn-reset:hover { background: var(--danger-soft); color: var(--danger); border-color: var(--danger); }
+        .section { scroll-margin-top: 20px; margin-bottom: 40px; }
+        .section-title { font-size: 18px; font-weight: 700; margin-bottom: 20px; padding-bottom: 12px; border-bottom: 3px solid var(--accent); display: flex; align-items: center; gap: 12px; }
+        code { font-family: 'JetBrains Mono', monospace; font-size: 12px; background: var(--surface-2); padding: 2px 6px; border-radius: 4px; white-space: nowrap; }
+        .reference-cell { text-align: center; }
+        .reference-btn { display: inline-flex; align-items: center; justify-content: center; width: 28px; height: 28px; background: var(--accent-soft); color: var(--accent); text-decoration: none; border-radius: 6px; border: 1px solid var(--border); transition: all 0.15s; }
+        .reference-btn:hover { background: var(--accent); color: white; border-color: var(--accent); }
+        .reference-btn svg { width: 14px; height: 14px; }
+        .finding-details { color: var(--text-2); font-size: 12px; line-height: 1.6; word-break: break-word; overflow-wrap: break-word; hyphens: auto; }
+        .resolution-text { color: var(--text-2); font-size: 12px; line-height: 1.6; word-break: break-word; overflow-wrap: break-word; hyphens: auto; }
+        @media (max-width: 1024px) { .layout { grid-template-columns: 1fr; } .sidebar { display: none; } .metrics { grid-template-columns: repeat(2, 1fr); } }
+        @media (max-width: 640px) { .metrics { grid-template-columns: 1fr; } .main { padding: 20px; } }
+        .page-footer { padding: 16px 40px; border-top: 1px solid var(--border); font-size: 10px; line-height: 1.6; color: var(--text-3); text-align: center; background: var(--surface); }
+        .page-footer a { color: var(--accent); text-decoration: none; }
+    </style>
+</head>
+<body>
+    <div class="layout">
+        <aside class="sidebar">
+            <div class="sidebar-header">
+                <h1>AI/ML Security</h1>
+                <p>Assessment Report</p>
+            </div>
+            <button class="theme-toggle" id="themeToggle" aria-label="Toggle dark mode">
+                <svg class="moon-icon" xmlns="http://www.w3.org/2000/svg" width="16" height="16" fill="currentColor" viewBox="0 0 16 16"><path d="M6 .278a.768.768 0 0 1 .08.858 7.208 7.208 0 0 0-.878 3.46c0 4.021 3.278 7.277 7.318 7.277.527 0 1.04-.055 1.533-.16a.787.787 0 0 1 .81.316.733.733 0 0 1-.031.893A8.349 8.349 0 0 1 8.344 16C3.734 16 0 12.286 0 7.71 0 4.266 2.114 1.312 5.124.06A.752.752 0 0 1 6 .278z"/></svg>
+                <svg class="sun-icon" xmlns="http://www.w3.org/2000/svg" width="16" height="16" fill="currentColor" viewBox="0 0 16 16"><path d="M8 11a3 3 0 1 1 0-6 3 3 0 0 1 0 6zm0 1a4 4 0 1 0 0-8 4 4 0 0 0 0 8zM8 0a.5.5 0 0 1 .5.5v2a.5.5 0 0 1-1 0v-2A.5.5 0 0 1 8 0zm0 13a.5.5 0 0 1 .5.5v2a.5.5 0 0 1-1 0v-2A.5.5 0 0 1 8 13zm8-5a.5.5 0 0 1-.5.5h-2a.5.5 0 0 1 0-1h2a.5.5 0 0 1 .5.5zM3 8a.5.5 0 0 1-.5.5h-2a.5.5 0 0 1 0-1h2A.5.5 0 0 1 3 8zm10.657-5.657a.5.5 0 0 1 0 .707l-1.414 1.415a.5.5 0 1 1-.707-.708l1.414-1.414a.5.5 0 0 1 .707 0zm-9.193 9.193a.5.5 0 0 1 0 .707L3.05 13.657a.5.5 0 0 1-.707-.707l1.414-1.414a.5.5 0 0 1 .707 0zm9.193 2.121a.5.5 0 0 1-.707 0l-1.414-1.414a.5.5 0 0 1 .707-.707l1.414 1.414a.5.5 0 0 1 0 .707zM4.464 4.465a.5.5 0 0 1-.707 0L2.343 3.05a.5.5 0 1 1 .707-.707l1.414 1.414a.5.5 0 0 1 0 .708z"/></svg>
+                <span class="theme-label">Dark Mode</span>
+            </button>
+            <nav class="nav-section">
+                <h3>Navigation</h3>
+                <a href="#overview" class="nav-item active">
+                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><rect x="3" y="3" width="7" height="7"/><rect x="14" y="3" width="7" height="7"/><rect x="3" y="14" width="7" height="7"/><rect x="14" y="14" width="7" height="7"/></svg>
+                    Overview
+                </a>
+                <a href="#findings" class="nav-item">
+                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M12 22s8-4 8-10V5l-8-3-8 3v7c0 6 8 10 8 10z"/></svg>
+                    Security Findings
+                    <span class="count">16</span>
+                </a>
+                <a href="#risk" class="nav-item">
+                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><polyline points="22 12 18 12 15 21 9 3 6 12 2 12"/></svg>
+                    Risk Distribution
+                </a>
+                <a href="#methodology" class="nav-item">
+                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><circle cx="12" cy="12" r="10"/><path d="M9.09 9a3 3 0 0 1 5.83 1c0 2-3 3-3 3"/><line x1="12" y1="17" x2="12.01" y2="17"/></svg>
+                    Methodology
+                </a>
+            </nav>
+            <nav class="nav-section">
+                <h3>By Service</h3>
+                <a href="#bedrock" class="nav-item">
+                    <span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"/></svg></span>
+                    Bedrock
+                    <span class="count">7</span>
+                </a>
+                <a href="#sagemaker" class="nav-item">
+                    <span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"/></svg></span>
+                    SageMaker
+                    <span class="count">5</span>
+                </a>
+                <a href="#agentcore" class="nav-item">
+                    <span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"/></svg></span>
+                    AgentCore
+                    <span class="count">4</span>
+                </a>
+            </nav>
+            <div class="sidebar-footer">
+                <p>Generated: June 06, 2026</p>
+                <p>Account: 123456789012</p>
+                <p style="margin-top: 8px;"><a href="https://github.com/aws-samples/sample-aiml-security-assessment">GitHub Repository</a></p>
+            </div>
+        </aside>
+        <main class="main">
+            <section id="overview" class="section">
+                <div class="page-header">
+                    <h2>Security Assessment Overview</h2>
+                    <div class="page-header-meta">
+                        <span><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><rect x="3" y="4" width="18" height="18" rx="2" ry="2"/><line x1="16" y1="2" x2="16" y2="6"/><line x1="8" y1="2" x2="8" y2="6"/><line x1="3" y1="10" x2="21" y2="10"/></svg>June 06, 2026 14:30:00 UTC</span>
+                        <span><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M20 21v-2a4 4 0 0 0-4-4H8a4 4 0 0 0-4 4v2"/><circle cx="12" cy="7" r="4"/></svg>Account: 123456789012 · 3 Regions</span>
+                    </div>
+                </div>
+                <div class="metrics">
+                    <div class="metric"><div class="metric-label">Security Checks</div><div class="metric-value">9</div><div class="metric-sub">Evaluated across 3 regions</div></div>
+                    <div class="metric"><div class="metric-label">Total Findings</div><div class="metric-value">16</div><div class="metric-sub">Across 3 regions</div></div>
+                    <div class="metric danger"><div class="metric-label">Actionable Findings</div><div class="metric-value">11</div><div class="metric-sub">High, Medium, and Low severity</div></div>
+                    <div class="metric danger"><div class="metric-label">High Severity</div><div class="metric-value">4/9</div><div class="metric-sub">44.4% passed · Immediate action required</div></div>
+                    <div class="metric warning"><div class="metric-label">Medium Severity</div><div class="metric-value">0/2</div><div class="metric-sub">0.0% passed · Should be addressed</div></div>
+                    <div class="metric highlight"><div class="metric-label">Low Severity</div><div class="metric-value">0/0</div><div class="metric-sub">0% passed · Best practices</div></div>
+                </div>
+                <div class="card"><div class="card-header"><h3>Priority Recommendations</h3></div><div class="card-body"><div class="alerts"><div class="alert-item critical">
+            <div class="alert-count">2</div>
+            <div class="alert-info">
+                <div class="alert-domain">Bedrock Full Access Roles</div>
+                <div class="alert-category">Bedrock</div>
+            </div>
+        </div><div class="alert-item critical">
+            <div class="alert-count">1</div>
+            <div class="alert-info">
+                <div class="alert-domain">Bedrock Logging Configuration</div>
+                <div class="alert-category">Bedrock</div>
+            </div>
+        </div><div class="alert-item critical">
+            <div class="alert-count">1</div>
+            <div class="alert-info">
+                <div class="alert-domain">SageMaker Direct Internet Access</div>
+                <div class="alert-category">SageMaker</div>
+            </div>
+        </div><div class="alert-item warning">
+            <div class="alert-count">1</div>
+            <div class="alert-info">
+                <div class="alert-domain">Bedrock Guardrails Check</div>
+                <div class="alert-category">Bedrock</div>
+            </div>
+        </div></div></div></div>
+                <div class="card">
+                    <div class="card-header"><h3>Severity Legend</h3><a href="#methodology" style="font-size: 12px; color: var(--accent); text-decoration: none;">View full methodology</a></div>
+                    <div class="card-body" style="padding: 0;">
+                        <table style="min-width: 100%; table-layout: fixed;">
+                            <thead><tr><th style="width: 12%;">Severity</th><th style="width: 44%;">Meaning</th><th style="width: 44%;">Recommended Action</th></tr></thead>
+                            <tbody>
+                                <tr><td style="text-align: center;"><span class="severity high">High</span></td><td class="finding-details">Direct security risk - IAM/access control gaps, missing audit trails, guardrail bypasses that could lead to unauthorized access or data exposure</td><td class="resolution-text">Remediate within <strong>7 days</strong></td></tr>
+                                <tr><td style="text-align: center;"><span class="severity medium">Medium</span></td><td class="finding-details">Defense-in-depth gaps - encryption, logging, or configuration issues that reduce security posture</td><td class="resolution-text">Remediate within <strong>30 days</strong></td></tr>
+                                <tr><td style="text-align: center;"><span class="severity low">Low</span></td><td class="finding-details">Best practice deviations - optimization opportunities that improve security hygiene</td><td class="resolution-text">Remediate within <strong>90 days</strong></td></tr>
+                                <tr><td style="text-align: center;"><span class="severity na">Informational</span></td><td class="finding-details">No resources found or advisory recommendations - check does not apply or suggests optional improvements</td><td class="resolution-text">No action required</td></tr>
+                            </tbody>
+                        </table>
+                    </div>
+                </div>
+            </section>
+            <section id="findings" class="section">
+                <div class="section-title"><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M12 22s8-4 8-10V5l-8-3-8 3v7c0 6 8 10 8 10z"/></svg>All Security Findings</div>
+                <div class="filter-bar">
+                    <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="searchInput"></div>
+                    
+                    <div class="filter-group"><label for="regionFilter">Region</label><select id="regionFilter" onchange="applyFilters()"><option value="">All Regions</option><option value="eu-central-1">eu-central-1</option><option value="us-east-1">us-east-1</option><option value="us-west-2">us-west-2</option></select></div>
+                    <div class="filter-group"><label>Service</label><select id="serviceFilter"><option value="">All Services</option><option value="bedrock">Bedrock</option><option value="sagemaker">SageMaker</option><option value="agentcore">AgentCore</option></select></div>
+                    <div class="filter-group"><label>Severity</label><select id="severityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
+                    <div class="filter-group"><label>Status</label><select id="statusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
+                    <button class="btn btn-reset" id="resetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
+                </div>
+                <div class="card"><div class="table-wrap"><table id="findingsTable"><thead><tr><th class="sortable" data-sort="account">Account ID</th><th class="sortable" data-sort="region">Region</th><th class="sortable" data-sort="checkId">Check ID</th><th class="sortable" data-sort="finding">Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th class="sortable" data-sort="severity">Severity</th><th class="sortable" data-sort="status">Status</th></tr></thead><tbody><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="123456789012" data-region="us-east-1">
+            <td><code>123456789012</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-01</code></td>
+            <td class="col-domain">Bedrock Full Access Roles</td>
+            <td class="finding-details">Found 2 roles with AmazonBedrockFullAccess policy attached: BedrockAdmin, MLEngineer</td>
+            <td class="resolution-text">Review and restrict to least privilege access.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="123456789012" data-region="us-east-1">
+            <td><code>123456789012</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">Amazon Bedrock Guardrails are properly configured with 3 guardrails</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="123456789012" data-region="us-east-1">
+            <td><code>123456789012</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Logging Configuration</td>
+            <td class="finding-details">Model invocation logging is enabled</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="123456789012" data-region="us-west-2">
+            <td><code>123456789012</code></td>
+            <td><code>us-west-2</code></td>
+            <td><code>BR-01</code></td>
+            <td class="col-domain">Bedrock Full Access Roles</td>
+            <td class="finding-details">Found 2 roles with AmazonBedrockFullAccess policy attached</td>
+            <td class="resolution-text">Review and restrict to least privilege access.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="123456789012" data-region="us-west-2">
+            <td><code>123456789012</code></td>
+            <td><code>us-west-2</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No Bedrock Guardrails configured in this region.</td>
+            <td class="resolution-text">Configure Bedrock Guardrails.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="123456789012" data-region="us-west-2">
+            <td><code>123456789012</code></td>
+            <td><code>us-west-2</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Logging Configuration</td>
+            <td class="finding-details">Model invocation logging is not enabled</td>
+            <td class="resolution-text">Enable model invocation logging.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="123456789012" data-region="eu-central-1">
+            <td><code>123456789012</code></td>
+            <td><code>eu-central-1</code></td>
+            <td><code>BR-00</code></td>
+            <td class="col-domain">Bedrock Service Availability</td>
+            <td class="finding-details">Amazon Bedrock is not available in region eu-central-1.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/bedrock-regions.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="123456789012" data-region="us-east-1">
+            <td><code>123456789012</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-01</code></td>
+            <td class="col-domain">SageMaker Direct Internet Access</td>
+            <td class="finding-details">Found 1 notebook with direct internet access: ml-notebook-dev</td>
+            <td class="resolution-text">Disable direct internet access.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="123456789012" data-region="us-east-1">
+            <td><code>123456789012</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-03</code></td>
+            <td class="col-domain">SageMaker Data Encryption</td>
+            <td class="finding-details">All training jobs use KMS encryption</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/encryption-at-rest.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="passed" data-account="123456789012" data-region="us-west-2">
+            <td><code>123456789012</code></td>
+            <td><code>us-west-2</code></td>
+            <td><code>SM-01</code></td>
+            <td class="col-domain">SageMaker Direct Internet Access</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="123456789012" data-region="us-west-2">
+            <td><code>123456789012</code></td>
+            <td><code>us-west-2</code></td>
+            <td><code>SM-03</code></td>
+            <td class="col-domain">SageMaker Data Encryption</td>
+            <td class="finding-details">Found 2 training jobs without KMS encryption</td>
+            <td class="resolution-text">Configure KMS keys.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/encryption-at-rest.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="passed" data-account="123456789012" data-region="eu-central-1">
+            <td><code>123456789012</code></td>
+            <td><code>eu-central-1</code></td>
+            <td><code>SM-01</code></td>
+            <td class="col-domain">SageMaker Direct Internet Access</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="123456789012" data-region="us-east-1">
+            <td><code>123456789012</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration</td>
+            <td class="finding-details">All runtimes deployed in private subnets</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="123456789012" data-region="us-east-1">
+            <td><code>123456789012</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-03</code></td>
+            <td class="col-domain">AgentCore Encryption</td>
+            <td class="finding-details">ECR repositories lack KMS encryption</td>
+            <td class="resolution-text">Enable KMS encryption for ECR.</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="123456789012" data-region="us-west-2">
+            <td><code>123456789012</code></td>
+            <td><code>us-west-2</code></td>
+            <td><code>AC-00</code></td>
+            <td class="col-domain">AgentCore Service Availability</td>
+            <td class="finding-details">AgentCore not available in us-west-2.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="123456789012" data-region="eu-central-1">
+            <td><code>123456789012</code></td>
+            <td><code>eu-central-1</code></td>
+            <td><code>AC-00</code></td>
+            <td class="col-domain">AgentCore Service Availability</td>
+            <td class="finding-details">AgentCore not available in eu-central-1.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr></tbody></table></div></div>
+            </section>
+            <section id="risk" class="section">
+                <div class="section-title"><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><polyline points="22 12 18 12 15 21 9 3 6 12 2 12"/></svg>Risk Distribution</div>
+                <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-bottom: 12px; text-transform: uppercase; letter-spacing: 0.5px;">Pass Rate by Severity</h4>
+                <div class="metrics" style="margin-bottom: 32px;">
+                    <div class="metric danger"><div class="metric-label"><span class="severity high" style="padding: 2px 6px; font-size: 10px;">HIGH</span></div><div class="metric-value">44.4%</div><div class="metric-sub">4 of 9 checks passed</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 44.4%; height: 100%; background: var(--danger);"></div></div></div>
+                    <div class="metric warning"><div class="metric-label"><span class="severity medium" style="padding: 2px 6px; font-size: 10px;">MEDIUM</span></div><div class="metric-value">0.0%</div><div class="metric-sub">0 of 2 checks passed</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 0.0%; height: 100%; background: var(--warning);"></div></div></div>
+                    <div class="metric" style="border-color: var(--accent);"><div class="metric-label"><span class="severity low" style="padding: 2px 6px; font-size: 10px;">LOW</span></div><div class="metric-value" style="color: var(--accent);">0%</div><div class="metric-sub">0 of 0 checks passed</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 0%; height: 100%; background: var(--accent);"></div></div></div>
+                    <div class="metric"><div class="metric-label">Overall</div><div class="metric-value">36.4%</div><div class="metric-sub">4 of 11 actionable checks</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 36.4%; height: 100%; background: var(--text-3);"></div></div></div>
+                </div>
+                
+                <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-bottom: 12px; text-transform: uppercase; letter-spacing: 0.5px;">Risk by Region</h4>
+                <div class="metrics" style="margin-bottom: 32px;"><div class="metric " style="border-left: 3px solid var(--success);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">eu-central-1</div><div class="metric-value">0</div><div class="metric-sub"><span style="color: var(--danger);">0 High</span> · <span style="color: var(--warning);">0 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div><div class="metric danger" style="border-left: 3px solid var(--danger);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">us-east-1</div><div class="metric-value">3</div><div class="metric-sub"><span style="color: var(--danger);">2 High</span> · <span style="color: var(--warning);">1 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div><div class="metric danger" style="border-left: 3px solid var(--danger);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">us-west-2</div><div class="metric-value">4</div><div class="metric-sub"><span style="color: var(--danger);">3 High</span> · <span style="color: var(--warning);">1 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div></div>
+                <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-bottom: 12px; text-transform: uppercase; letter-spacing: 0.5px;">Findings by Service</h4>
+                <div class="metrics">
+                    <div class="metric"><div class="metric-label"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"/></svg></span> Bedrock</div><div class="metric-value">7</div><div class="metric-sub">4 Failed · 2 Passed</div></div>
+                    <div class="metric"><div class="metric-label"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"/></svg></span> SageMaker</div><div class="metric-value">5</div><div class="metric-sub">2 Failed · 3 Passed</div></div>
+                    <div class="metric"><div class="metric-label"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"/></svg></span> AgentCore</div><div class="metric-value">4</div><div class="metric-sub">1 Failed · 1 Passed</div></div>
+                </div>
+            </section>
+            <section id="bedrock" class="section">
+                <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"/></svg></span>Amazon Bedrock Findings</div>
+                <div class="filter-bar">
+                    <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="bedrockSearchInput"></div>
+                    
+                    <div class="filter-group"><label for="bedrockRegionFilter">Region</label><select id="bedrockRegionFilter"><option value="">All Regions</option><option value="eu-central-1">eu-central-1</option><option value="us-east-1">us-east-1</option><option value="us-west-2">us-west-2</option></select></div>
+                    <div class="filter-group"><label>Severity</label><select id="bedrockSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
+                    <div class="filter-group"><label>Status</label><select id="bedrockStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
+                    <button class="btn btn-reset" id="bedrockResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
+                </div>
+                <div class="card"><div class="table-wrap"><table id="bedrockTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="123456789012" data-region="us-east-1">
+            <td><code>123456789012</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-01</code></td>
+            <td class="col-domain">Bedrock Full Access Roles</td>
+            <td class="finding-details">Found 2 roles with AmazonBedrockFullAccess policy attached: BedrockAdmin, MLEngineer</td>
+            <td class="resolution-text">Review and restrict to least privilege access.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="123456789012" data-region="us-east-1">
+            <td><code>123456789012</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">Amazon Bedrock Guardrails are properly configured with 3 guardrails</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="123456789012" data-region="us-east-1">
+            <td><code>123456789012</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Logging Configuration</td>
+            <td class="finding-details">Model invocation logging is enabled</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="123456789012" data-region="us-west-2">
+            <td><code>123456789012</code></td>
+            <td><code>us-west-2</code></td>
+            <td><code>BR-01</code></td>
+            <td class="col-domain">Bedrock Full Access Roles</td>
+            <td class="finding-details">Found 2 roles with AmazonBedrockFullAccess policy attached</td>
+            <td class="resolution-text">Review and restrict to least privilege access.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="123456789012" data-region="us-west-2">
+            <td><code>123456789012</code></td>
+            <td><code>us-west-2</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No Bedrock Guardrails configured in this region.</td>
+            <td class="resolution-text">Configure Bedrock Guardrails.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="123456789012" data-region="us-west-2">
+            <td><code>123456789012</code></td>
+            <td><code>us-west-2</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Logging Configuration</td>
+            <td class="finding-details">Model invocation logging is not enabled</td>
+            <td class="resolution-text">Enable model invocation logging.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="123456789012" data-region="eu-central-1">
+            <td><code>123456789012</code></td>
+            <td><code>eu-central-1</code></td>
+            <td><code>BR-00</code></td>
+            <td class="col-domain">Bedrock Service Availability</td>
+            <td class="finding-details">Amazon Bedrock is not available in region eu-central-1.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/bedrock-regions.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr></tbody></table></div></div>
+            </section>
+            <section id="sagemaker" class="section">
+                <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"/></svg></span>Amazon SageMaker Findings</div>
+                <div class="filter-bar">
+                    <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="sagemakerSearchInput"></div>
+                    
+                    <div class="filter-group"><label for="sagemakerRegionFilter">Region</label><select id="sagemakerRegionFilter"><option value="">All Regions</option><option value="eu-central-1">eu-central-1</option><option value="us-east-1">us-east-1</option><option value="us-west-2">us-west-2</option></select></div>
+                    <div class="filter-group"><label>Severity</label><select id="sagemakerSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
+                    <div class="filter-group"><label>Status</label><select id="sagemakerStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
+                    <button class="btn btn-reset" id="sagemakerResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
+                </div>
+                <div class="card"><div class="table-wrap"><table id="sagemakerTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="123456789012" data-region="us-east-1">
+            <td><code>123456789012</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-01</code></td>
+            <td class="col-domain">SageMaker Direct Internet Access</td>
+            <td class="finding-details">Found 1 notebook with direct internet access: ml-notebook-dev</td>
+            <td class="resolution-text">Disable direct internet access.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="123456789012" data-region="us-east-1">
+            <td><code>123456789012</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-03</code></td>
+            <td class="col-domain">SageMaker Data Encryption</td>
+            <td class="finding-details">All training jobs use KMS encryption</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/encryption-at-rest.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="passed" data-account="123456789012" data-region="us-west-2">
+            <td><code>123456789012</code></td>
+            <td><code>us-west-2</code></td>
+            <td><code>SM-01</code></td>
+            <td class="col-domain">SageMaker Direct Internet Access</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="123456789012" data-region="us-west-2">
+            <td><code>123456789012</code></td>
+            <td><code>us-west-2</code></td>
+            <td><code>SM-03</code></td>
+            <td class="col-domain">SageMaker Data Encryption</td>
+            <td class="finding-details">Found 2 training jobs without KMS encryption</td>
+            <td class="resolution-text">Configure KMS keys.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/encryption-at-rest.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="passed" data-account="123456789012" data-region="eu-central-1">
+            <td><code>123456789012</code></td>
+            <td><code>eu-central-1</code></td>
+            <td><code>SM-01</code></td>
+            <td class="col-domain">SageMaker Direct Internet Access</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr></tbody></table></div></div>
+            </section>
+            <section id="agentcore" class="section">
+                <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"/></svg></span>Amazon Bedrock AgentCore Findings</div>
+                <div class="filter-bar">
+                    <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="agentcoreSearchInput"></div>
+                    
+                    <div class="filter-group"><label for="agentcoreRegionFilter">Region</label><select id="agentcoreRegionFilter"><option value="">All Regions</option><option value="eu-central-1">eu-central-1</option><option value="us-east-1">us-east-1</option><option value="us-west-2">us-west-2</option></select></div>
+                    <div class="filter-group"><label>Severity</label><select id="agentcoreSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
+                    <div class="filter-group"><label>Status</label><select id="agentcoreStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
+                    <button class="btn btn-reset" id="agentcoreResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
+                </div>
+                <div class="card"><div class="table-wrap"><table id="agentcoreTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="agentcore" data-severity="high" data-status="passed" data-account="123456789012" data-region="us-east-1">
+            <td><code>123456789012</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration</td>
+            <td class="finding-details">All runtimes deployed in private subnets</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="123456789012" data-region="us-east-1">
+            <td><code>123456789012</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-03</code></td>
+            <td class="col-domain">AgentCore Encryption</td>
+            <td class="finding-details">ECR repositories lack KMS encryption</td>
+            <td class="resolution-text">Enable KMS encryption for ECR.</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="123456789012" data-region="us-west-2">
+            <td><code>123456789012</code></td>
+            <td><code>us-west-2</code></td>
+            <td><code>AC-00</code></td>
+            <td class="col-domain">AgentCore Service Availability</td>
+            <td class="finding-details">AgentCore not available in us-west-2.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="123456789012" data-region="eu-central-1">
+            <td><code>123456789012</code></td>
+            <td><code>eu-central-1</code></td>
+            <td><code>AC-00</code></td>
+            <td class="col-domain">AgentCore Service Availability</td>
+            <td class="finding-details">AgentCore not available in eu-central-1.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr></tbody></table></div></div>
+            </section>
+            <section id="methodology" class="section">
+                <div class="section-title"><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><circle cx="12" cy="12" r="10"/><path d="M9.09 9a3 3 0 0 1 5.83 1c0 2-3 3-3 3"/><line x1="12" y1="17" x2="12.01" y2="17"/></svg>Assessment Methodology</div>
+                <div class="card"><div class="card-header" style="padding: 12px 16px;"><h3 style="font-size: 14px;">Severity Levels &amp; Status Values</h3></div><div class="card-body" style="padding: 12px 16px;"><table style="width: 100%; font-size: 12px;"><tbody><tr><td style="padding: 4px 12px 4px 0; width: 100px;"><span class="severity high">High</span></td><td style="padding: 4px 0; color: var(--text-2); width: 45%;">Direct security risk</td><td style="padding: 4px 12px 4px 24px; width: 60px;"><span class="status error">Failed</span></td><td style="padding: 4px 0; color: var(--text-2);">Remediation needed</td></tr><tr><td style="padding: 4px 12px 4px 0;"><span class="severity medium">Medium</span></td><td style="padding: 4px 0; color: var(--text-2);">Defense-in-depth gap</td><td style="padding: 4px 12px 4px 24px;"><span class="status success">Passed</span></td><td style="padding: 4px 0; color: var(--text-2);">Meets requirements</td></tr><tr><td style="padding: 4px 12px 4px 0;"><span class="severity low">Low</span></td><td style="padding: 4px 0; color: var(--text-2);">Best practice</td><td style="padding: 4px 12px 4px 24px;"><span class="status warning">N/A</span></td><td style="padding: 4px 0; color: var(--text-2);">Not applicable</td></tr><tr><td style="padding: 4px 12px 4px 0;"><span class="severity na">Informational</span></td><td style="padding: 4px 0; color: var(--text-2);">No action required</td><td></td><td></td></tr></tbody></table></div></div>
+                <div class="card"><div class="card-header" style="padding: 12px 16px;"><h3 style="font-size: 14px;">Remediation Guidance</h3></div><div class="card-body" style="padding: 12px 16px;"><table style="width: 100%; font-size: 12px;"><tbody><tr><td style="padding: 4px 12px 4px 0; width: 80px;"><span class="severity high">High</span></td><td style="padding: 4px 0; color: var(--text-2); width: 60px;">7 days</td><td style="padding: 4px 0; color: var(--text-2);">Address immediately; block deployment if unresolved</td></tr><tr><td style="padding: 4px 12px 4px 0;"><span class="severity medium">Medium</span></td><td style="padding: 4px 0; color: var(--text-2);">30 days</td><td style="padding: 4px 0; color: var(--text-2);">Schedule in next sprint; may require change window</td></tr><tr><td style="padding: 4px 12px 4px 0;"><span class="severity low">Low</span></td><td style="padding: 4px 0; color: var(--text-2);">90 days</td><td style="padding: 4px 0; color: var(--text-2);">Include in backlog; address during regular maintenance</td></tr></tbody></table></div></div>
+                <div class="card"><div class="card-header" style="padding: 12px 16px;"><h3 style="font-size: 14px;">Assessment Notes</h3></div><div class="card-body" style="padding: 12px 16px; font-size: 12px; color: var(--text-2); line-height: 1.6;"><strong style="color: var(--text);">Point-in-time:</strong> Security posture changes as resources are modified. <strong style="color: var(--text);">Scope limited:</strong> Passed checks verify tested controls only. <strong style="color: var(--text);">Context matters:</strong> Adjust severity for compliance requirements and environment type.</div></div>
+                <div class="card"><div class="card-header"><h3>Assessment Scope</h3></div><div class="card-body"><div style="display: flex; gap: 12px; flex-wrap: wrap; margin-bottom: 12px;"><div style="display: flex; align-items: center; gap: 8px; padding: 8px 12px; background: var(--surface-2); border-radius: 6px;"><span class="service-icon" style="width: 20px; height: 20px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"/></svg></span><span style="font-size: 13px; font-weight: 500;">Amazon Bedrock</span></div><div style="display: flex; align-items: center; gap: 8px; padding: 8px 12px; background: var(--surface-2); border-radius: 6px;"><span class="service-icon" style="width: 20px; height: 20px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"/></svg></span><span style="font-size: 13px; font-weight: 500;">Amazon SageMaker</span></div><div style="display: flex; align-items: center; gap: 8px; padding: 8px 12px; background: var(--surface-2); border-radius: 6px;"><span class="service-icon" style="width: 20px; height: 20px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"/></svg></span><span style="font-size: 13px; font-weight: 500;">Amazon Bedrock AgentCore</span></div></div><p style="color: var(--text-3); font-size: 12px;">Based on AWS Well-Architected Framework (Generative AI Lens) and service-specific security documentation.</p></div></div>
+            </section>
+        </main>
+    </div>
+    <footer class="page-footer">Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. Licensed under MIT-0. This report is provided as-is for informational purposes only and does not constitute professional security advice, compliance certification, or audit evidence. You are responsible for validating findings and determining applicability to your environment. See the <a href="https://aws.amazon.com/agreement/">AWS Customer Agreement</a> for terms of use.</footer>
+    <script>
+        const themeToggle = document.getElementById('themeToggle');
+        const themeLabel = themeToggle.querySelector('.theme-label');
+        const html = document.documentElement;
+        const savedTheme = localStorage.getItem('theme') || 'light';
+        if (savedTheme === 'dark') { html.setAttribute('data-theme', 'dark'); themeLabel.textContent = 'Light Mode'; }
+        themeToggle.addEventListener('click', function() {
+            const currentTheme = html.getAttribute('data-theme');
+            if (currentTheme === 'dark') { html.removeAttribute('data-theme'); localStorage.setItem('theme', 'light'); themeLabel.textContent = 'Dark Mode'; }
+            else { html.setAttribute('data-theme', 'dark'); localStorage.setItem('theme', 'dark'); themeLabel.textContent = 'Light Mode'; }
+        });
+        document.querySelectorAll('.nav-item').forEach(item => {
+            item.addEventListener('click', function(e) {
+                e.preventDefault();
+                const targetId = this.getAttribute('href');
+                const targetSection = document.querySelector(targetId);
+                document.querySelectorAll('.nav-item').forEach(nav => nav.classList.remove('active'));
+                this.classList.add('active');
+                if (targetSection) { targetSection.scrollIntoView({ behavior: 'smooth' }); }
+            });
+        });
+        function applyFilters() {
+            const searchText = document.getElementById('searchInput').value.toLowerCase();
+            const accountFilter = document.getElementById('accountFilter')?.value.toLowerCase() || '';
+            const regionFilter = document.getElementById('regionFilter')?.value.toLowerCase() || '';
+            const serviceFilter = document.getElementById('serviceFilter').value.toLowerCase();
+            const severityFilter = document.getElementById('severityFilter').value.toLowerCase();
+            const statusFilter = document.getElementById('statusFilter').value.toLowerCase();
+            const rows = document.querySelectorAll('#findingsTable tbody tr');
+            rows.forEach(row => {
+                const rowText = row.textContent.toLowerCase();
+                const rowAccount = row.dataset.account || '';
+                const rowRegion = row.dataset.region || '';
+                const rowService = row.dataset.service || '';
+                const rowSeverity = row.dataset.severity || '';
+                const rowStatus = row.dataset.status || '';
+                let show = true;
+                if (searchText && !rowText.includes(searchText)) show = false;
+                if (accountFilter && rowAccount !== accountFilter) show = false;
+                if (regionFilter && rowRegion.toLowerCase() !== regionFilter) show = false;
+                if (serviceFilter && rowService !== serviceFilter) show = false;
+                if (severityFilter && rowSeverity !== severityFilter) show = false;
+                if (statusFilter && rowStatus !== statusFilter) show = false;
+                row.style.display = show ? '' : 'none';
+            });
+        }
+        document.getElementById('resetFilters').addEventListener('click', function() {
+            document.getElementById('searchInput').value = '';
+            if (document.getElementById('accountFilter')) document.getElementById('accountFilter').value = '';
+            if (document.getElementById('regionFilter')) document.getElementById('regionFilter').value = '';
+            document.getElementById('serviceFilter').value = '';
+            document.getElementById('severityFilter').value = '';
+            document.getElementById('statusFilter').value = '';
+            applyFilters();
+        });
+        document.getElementById('searchInput').addEventListener('input', applyFilters);
+        if (document.getElementById('accountFilter')) document.getElementById('accountFilter').addEventListener('change', applyFilters);
+        if (document.getElementById('regionFilter')) document.getElementById('regionFilter').addEventListener('change', applyFilters);
+        document.getElementById('serviceFilter').addEventListener('change', applyFilters);
+        document.getElementById('severityFilter').addEventListener('change', applyFilters);
+        document.getElementById('statusFilter').addEventListener('change', applyFilters);
+        window.addEventListener('scroll', () => {
+            const sections = document.querySelectorAll('.section');
+            let current = '';
+            sections.forEach(section => {
+                const sectionTop = section.offsetTop;
+                if (window.pageYOffset >= sectionTop - 100) { current = section.getAttribute('id'); }
+            });
+            document.querySelectorAll('.nav-item').forEach(item => {
+                item.classList.remove('active');
+                if (item.getAttribute('href') === '#' + current) { item.classList.add('active'); }
+            });
+        });
+        const severityOrder = { 'high': 0, 'medium': 1, 'low': 2, 'na': 3 };
+        const statusOrder = { 'failed': 0, 'passed': 1 };
+        let currentSort = { column: null, direction: 'asc' };
+        document.querySelectorAll('#findingsTable th.sortable').forEach(th => {
+            th.addEventListener('click', function() {
+                const sortKey = this.dataset.sort;
+                const tbody = document.querySelector('#findingsTable tbody');
+                const rows = Array.from(tbody.querySelectorAll('tr'));
+                if (currentSort.column === sortKey) {
+                    currentSort.direction = currentSort.direction === 'asc' ? 'desc' : 'asc';
+                } else {
+                    currentSort.column = sortKey;
+                    currentSort.direction = 'asc';
+                }
+                document.querySelectorAll('#findingsTable th.sortable').forEach(h => {
+                    h.classList.remove('asc', 'desc');
+                });
+                this.classList.add(currentSort.direction);
+                rows.sort((a, b) => {
+                    let aVal, bVal;
+                    switch (sortKey) {
+                        case 'account':
+                            aVal = a.dataset.account || '';
+                            bVal = b.dataset.account || '';
+                            break;
+                        case 'region':
+                            aVal = a.dataset.region || '';
+                            bVal = b.dataset.region || '';
+                            break;
+                        case 'checkId':
+                            aVal = a.querySelector('td:nth-child(3) code')?.textContent || '';
+                            bVal = b.querySelector('td:nth-child(3) code')?.textContent || '';
+                            break;
+                        case 'finding':
+                            aVal = a.querySelector('.col-domain')?.textContent.toLowerCase() || '';
+                            bVal = b.querySelector('.col-domain')?.textContent.toLowerCase() || '';
+                            break;
+                        case 'severity':
+                            aVal = severityOrder[a.dataset.severity] ?? 99;
+                            bVal = severityOrder[b.dataset.severity] ?? 99;
+                            break;
+                        case 'status':
+                            aVal = statusOrder[a.dataset.status] ?? 99;
+                            bVal = statusOrder[b.dataset.status] ?? 99;
+                            break;
+                    }
+                    if (aVal < bVal) return currentSort.direction === 'asc' ? -1 : 1;
+                    if (aVal > bVal) return currentSort.direction === 'asc' ? 1 : -1;
+                    return 0;
+                });
+                rows.forEach(row => tbody.appendChild(row));
+            });
+        });
+        // Service-specific filter functions
+        function createServiceFilter(tableId, searchId, accountId, regionId, severityId, statusId, resetId) {
+            const table = document.getElementById(tableId);
+            if (!table) return;
+            const searchInput = document.getElementById(searchId);
+            const accountFilter = document.getElementById(accountId);
+            const regionFilter = document.getElementById(regionId);
+            const severityFilter = document.getElementById(severityId);
+            const statusFilter = document.getElementById(statusId);
+            const resetBtn = document.getElementById(resetId);
+            function applyServiceFilters() {
+                const searchText = searchInput?.value.toLowerCase() || '';
+                const accountValue = accountFilter?.value.toLowerCase() || '';
+                const regionValue = regionFilter?.value.toLowerCase() || '';
+                const severityValue = severityFilter?.value.toLowerCase() || '';
+                const statusValue = statusFilter?.value.toLowerCase() || '';
+                const rows = table.querySelectorAll('tbody tr');
+                rows.forEach(row => {
+                    const rowText = row.textContent.toLowerCase();
+                    const rowAccount = row.dataset.account || '';
+                    const rowRegion = row.dataset.region || '';
+                    const rowSeverity = row.dataset.severity || '';
+                    const rowStatus = row.dataset.status || '';
+                    let show = true;
+                    if (searchText && !rowText.includes(searchText)) show = false;
+                    if (accountValue && rowAccount !== accountValue) show = false;
+                    if (regionValue && rowRegion.toLowerCase() !== regionValue) show = false;
+                    if (severityValue && rowSeverity !== severityValue) show = false;
+                    if (statusValue && rowStatus !== statusValue) show = false;
+                    row.style.display = show ? '' : 'none';
+                });
+            }
+            searchInput?.addEventListener('input', applyServiceFilters);
+            accountFilter?.addEventListener('change', applyServiceFilters);
+            regionFilter?.addEventListener('change', applyServiceFilters);
+            severityFilter?.addEventListener('change', applyServiceFilters);
+            statusFilter?.addEventListener('change', applyServiceFilters);
+            resetBtn?.addEventListener('click', function() {
+                if (searchInput) searchInput.value = '';
+                if (accountFilter) accountFilter.value = '';
+                if (regionFilter) regionFilter.value = '';
+                if (severityFilter) severityFilter.value = '';
+                if (statusFilter) statusFilter.value = '';
+                applyServiceFilters();
+            });
+        }
+        createServiceFilter('bedrockTable', 'bedrockSearchInput', 'bedrockAccountFilter', 'bedrockRegionFilter', 'bedrockSeverityFilter', 'bedrockStatusFilter', 'bedrockResetFilters');
+        createServiceFilter('sagemakerTable', 'sagemakerSearchInput', 'sagemakerAccountFilter', 'sagemakerRegionFilter', 'sagemakerSeverityFilter', 'sagemakerStatusFilter', 'sagemakerResetFilters');
+        createServiceFilter('agentcoreTable', 'agentcoreSearchInput', 'agentcoreAccountFilter', 'agentcoreRegionFilter', 'agentcoreSeverityFilter', 'agentcoreStatusFilter', 'agentcoreResetFilters');
+
+        // Apply initial filters for main table
+        applyFilters();
+    </script>
+</body>
+</html>
\ No newline at end of file

From 64eb8fcfdd481644cdf67aa1a951a55162155dec Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Fri, 12 Jun 2026 18:27:05 -0400
Subject: [PATCH 02/30] Add .ash/ to .gitignore

---
 .gitignore | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/.gitignore b/.gitignore
index 219bbc1..42e7880 100644
--- a/.gitignore
+++ b/.gitignore
@@ -39,4 +39,5 @@ samples/
 # Test output
 **/test_reports/
 
-.ruff_cache/
\ No newline at end of file
+.ruff_cache/
+.ash/
\ No newline at end of file

From c7bd20303ec62f77fabad25d63239cbb7ce65246 Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Sun, 14 Jun 2026 11:26:19 -0400
Subject: [PATCH 03/30] Deduplicate global findings and gate regional
 availability in multi-region scans

Refine multi-region scanning so global/IAM-only checks (e.g. AC-02/AC-03,
BR-01/BR-03) run once on the primary region and are tagged with a "Global"
region label, avoiding duplicate findings across scanned regions. Regional
assessments now probe availability and skip opt-in/disabled regions and
APIs unsupported in a region, tagging remaining findings with their region.

Add test coverage for the consolidated report, report filenames, SageMaker
template permissions, and the per-service multi-region check behavior.
---
 README.md                                     |  29 +-
 .../security/agentcore_assessments/app.py     | 157 ++++++---
 .../security/agentcore_assessments/schema.py  |  17 +-
 .../security/bedrock_assessments/app.py       | 186 +++++++----
 .../security/bedrock_assessments/schema.py    |  19 +-
 .../generate_consolidated_report/app.py       |  73 +++--
 .../functions/security/resolve_regions/app.py |   2 +-
 .../security/sagemaker_assessments/app.py     | 303 +++++++++++-------
 .../security/sagemaker_assessments/schema.py  |  22 +-
 .../statemachine/assessments.asl.json         |  12 +-
 .../template-multi-account.yaml               |  38 ++-
 aiml-security-assessment/template.yaml        |  24 ++
 consolidate_html_reports.py                   |  15 +-
 docs/DEVELOPER_GUIDE.md                       |   8 +-
 docs/SECURITY_CHECKS.md                       |  15 +-
 docs/TROUBLESHOOTING.md                       |  12 +-
 tests/conftest.py                             |   6 +
 tests/test_agentcore_checks.py                | 162 +++++++++-
 tests/test_bedrock_checks.py                  | 247 ++++++++++++++
 tests/test_consolidated_report.py             | 207 ++++++++++++
 tests/test_report_filenames.py                |  48 +++
 tests/test_sagemaker_checks.py                | 203 ++++++++++++
 tests/test_sagemaker_template_permissions.py  |  38 +++
 tests/test_schema.py                          |   1 +
 24 files changed, 1554 insertions(+), 290 deletions(-)
 create mode 100644 tests/test_consolidated_report.py
 create mode 100644 tests/test_report_filenames.py
 create mode 100644 tests/test_sagemaker_template_permissions.py

diff --git a/README.md b/README.md
index e4da99d..60ea7f3 100644
--- a/README.md
+++ b/README.md
@@ -4,7 +4,7 @@
 
 **Open-source automated security scanner for Amazon Bedrock, Amazon SageMaker AI, and Amazon Bedrock AgentCore** — Built on [AWS Well-Architected Framework (Generative AI Lens)](https://docs.aws.amazon.com/wellarchitected/latest/generative-ai-lens/generative-ai-lens.html)
 
-Cloud security automation with **[51 security checks](docs/SECURITY_CHECKS.md)** for your generative AI and machine learning workloads. Identify IAM misconfigurations, encryption gaps, network isolation issues, and compliance violations with interactive HTML reports and actionable remediation guidance.
+Cloud security automation with **[52 security checks](docs/SECURITY_CHECKS.md)** for your generative AI and machine learning workloads. Identify IAM misconfigurations, encryption gaps, network isolation issues, and compliance violations with interactive HTML reports and actionable remediation guidance.
 
 ---
 
@@ -35,7 +35,7 @@ The framework generates professional, interactive security assessment reports wi
 
 ### Key Features
 
-- **[51 Security Checks](docs/SECURITY_CHECKS.md)** across Amazon Bedrock, Amazon SageMaker AI, and Amazon Bedrock AgentCore
+- **[52 Security Checks](docs/SECURITY_CHECKS.md)** across Amazon Bedrock, Amazon SageMaker AI, and Amazon Bedrock AgentCore
 - **Multi-Region Support** — parallel scanning across AWS regions with per-region risk breakdown
 - **Multi-Account Support** — consolidated reporting across AWS Organizations
 - **Interactive Filtering** by account, region, service, severity, and status
@@ -43,7 +43,7 @@ The framework generates professional, interactive security assessment reports wi
 - **Fully Automated** — one-click CloudFormation deployment and execution
 
 **Services Covered:**
-- **[Amazon Bedrock](docs/SECURITY_CHECKS.md#amazon-bedrock-security-checks-13)** (13 checks) — Guardrails, encryption, VPC endpoints, IAM, model invocation logging
+- **[Amazon Bedrock](docs/SECURITY_CHECKS.md#amazon-bedrock-security-checks-14)** (14 checks) — Guardrails, encryption, VPC endpoints, IAM, model invocation logging
 - **[Amazon SageMaker AI](docs/SECURITY_CHECKS.md#amazon-sagemaker-ai-security-checks-25)** (25 checks) — Security Hub controls, encryption, network isolation, IAM, MLOps
 - **[Amazon Bedrock AgentCore](docs/SECURITY_CHECKS.md#amazon-bedrock-agentcore-security-checks-13)** (13 checks) — VPC configuration, encryption, observability, resource policies
 
@@ -78,7 +78,7 @@ The framework generates professional, interactive security assessment reports wi
    - `all` to scan all regions where the services are available
 6. Acknowledge IAM capabilities and click **Submit**.
 7. Once complete, CodeBuild automatically runs the assessment.
-8. View results: go to the stack **Outputs** tab → copy `AssessmentBucket` → open the HTML report in that S3 bucket.
+8. View results: go to the stack **Outputs** tab → copy `AssessmentBucket` → open the report under the `/{account_id}/` prefix in that S3 bucket.
 
 > **Tip**: The deployment creates two stacks. Your results are in the stack *you named*, not the auto-generated `aiml-sec-*` stack. See [Troubleshooting](docs/TROUBLESHOOTING.md#8-confused-by-multiple-cloudformation-stacks) for details.
 
@@ -140,7 +140,8 @@ For detailed architecture, execution flow, and extension guidance, see the [Deve
 
 1. Open your **infrastructure stack** in CloudFormation → **Outputs** tab → copy `AssessmentBucket`
 2. Navigate to that S3 bucket
-3. Open the `security_assessment_*.html` file (single-account) or check `consolidated-reports/` (multi-account)
+3. For single-account, open `{account_id}/security_assessment_single_account_*.html`
+4. For multi-account, open `consolidated-reports/security_assessment_multi_account_*.html`
 
 ### Understanding Results
 
@@ -170,6 +171,24 @@ For detailed architecture, execution flow, and extension guidance, see the [Deve
 
 ---
 
+## Permissions Required
+
+The deployment uses multiple IAM roles with different trust and permission boundaries. They are not all read-only.
+
+- **`CodeBuildRole` / `MultiAccountCodeBuildRole`**: orchestration roles used by the infrastructure stack to clone the repo, build SAM, deploy/update the assessment stack, and start Step Functions executions. These roles require infrastructure-management permissions such as CloudFormation, Lambda, IAM, Step Functions, and S3 actions.
+- **`AIMLSecurityMemberRole`**: role assumed in the target account during single-account and multi-account runs. In the multi-account flow this role is also **not read-only**. It needs both service-read permissions for the checks and deployment permissions so CodeBuild can create or update the per-account SAM assessment stack.
+- **SAM-created Lambda execution roles**: runtime roles for the assessment functions. These are the closest thing to read-only assessment roles. They primarily use `List*`, `Describe*`, and `Get*` access against Bedrock, SageMaker, AgentCore, IAM analysis APIs, and supporting read APIs, plus S3 access to write reports and read the cached IAM permissions file.
+
+If you need to reduce scope, review the role policies in:
+
+- [deployment/aiml-security-single-account.yaml](/Users/akothurk/Documents/Code/Github/aws-samples/sample-aiml-security-assessment/deployment/aiml-security-single-account.yaml)
+- [deployment/1-aiml-security-member-roles.yaml](/Users/akothurk/Documents/Code/Github/aws-samples/sample-aiml-security-assessment/deployment/1-aiml-security-member-roles.yaml)
+- [deployment/2-aiml-security-codebuild.yaml](/Users/akothurk/Documents/Code/Github/aws-samples/sample-aiml-security-assessment/deployment/2-aiml-security-codebuild.yaml)
+- [aiml-security-assessment/template.yaml](/Users/akothurk/Documents/Code/Github/aws-samples/sample-aiml-security-assessment/aiml-security-assessment/template.yaml)
+- [aiml-security-assessment/template-multi-account.yaml](/Users/akothurk/Documents/Code/Github/aws-samples/sample-aiml-security-assessment/aiml-security-assessment/template-multi-account.yaml)
+
+---
+
 ## Documentation
 
 | Document | Description |
diff --git a/aiml-security-assessment/functions/security/agentcore_assessments/app.py b/aiml-security-assessment/functions/security/agentcore_assessments/app.py
index 23f427f..14ed84c 100644
--- a/aiml-security-assessment/functions/security/agentcore_assessments/app.py
+++ b/aiml-security-assessment/functions/security/agentcore_assessments/app.py
@@ -41,6 +41,22 @@
 # Environment variables
 BUCKET_NAME = os.environ.get("AIML_ASSESSMENT_BUCKET_NAME")
 
+# IAM is a global service. Findings derived purely from the IAM permission cache
+# (e.g. AC-02, AC-03) are identical across regions, so they are produced only on
+# the primary region (Map index 0) and tagged with this region label to avoid
+# duplicate findings when scanning multiple regions.
+GLOBAL_REGION_LABEL = "Global"
+
+# Error codes returned when a region exists but is not enabled/usable for the
+# account (opt-in regions, disabled regions). The availability probe treats
+# these the same as an endpoint connection failure.
+REGION_UNAVAILABLE_ERROR_CODES = {
+    "UnrecognizedClientException",
+    "InvalidClientTokenId",
+    "AuthFailure",
+    "OptInRequired",
+}
+
 # Execution tracking
 start_time = None
 
@@ -2257,9 +2273,13 @@ def lambda_handler(event, context):
     try:
         # Extract target region from Step Functions Map state
         region = event.get("Region", os.environ.get("AWS_REGION", "us-east-1"))
-        logger.info(f"Scanning region: {region}")
+        # IAM is global: only the primary region (Map index 0) runs IAM-only checks.
+        is_primary_region = int(event.get("RegionIndex", 0)) == 0
+        logger.info(f"Scanning region: {region} (primary={is_primary_region})")
+
+        execution_id = event.get("Execution", {}).get("Name", "unknown")
 
-        # Initialize regional clients
+        # Initialize regional clients (iam is global, the rest are region-scoped)
         iam_client = boto3.client("iam", config=boto3_config)
         ec2_client = boto3.client("ec2", config=boto3_config, region_name=region)
         ecr_client = boto3.client("ecr", config=boto3_config, region_name=region)
@@ -2267,33 +2287,95 @@ def lambda_handler(event, context):
         xray_client = boto3.client("xray", config=boto3_config, region_name=region)
         cloudwatch_client = boto3.client("cloudwatch", config=boto3_config, region_name=region)
 
+        # Collect all findings
+        all_findings = []
+
+        # Retrieve permission cache (shared/global IAM data)
+        try:
+            permission_cache = get_permissions_cache(execution_id)
+        except Exception as e:
+            logger.warning(f"Failed to retrieve permission cache: {e}")
+            permission_cache = {"role_permissions": [], "user_permissions": []}
+
+        # Run global IAM-only checks once (on the primary region) so the same role
+        # violations are not reported once per scanned region. These run before the
+        # regional availability gate so they are still emitted even if AgentCore is
+        # not available in the primary region.
+        if is_primary_region:
+            global_checks = [
+                ("IAM Full Access", lambda: check_agentcore_full_access_roles(permission_cache)),
+                ("Stale Access", lambda: check_stale_agentcore_access(permission_cache)),
+                # AC-09 inspects a global IAM service-linked role, so it is also
+                # run once on the primary region rather than per scanned region.
+                ("Service-Linked Role", check_agentcore_service_linked_role),
+            ]
+            for check_name, check_func in global_checks:
+                try:
+                    logger.info(f"Running global check: {check_name}")
+                    global_findings = check_func()
+                    for finding in global_findings:
+                        finding["Region"] = GLOBAL_REGION_LABEL
+                    all_findings.extend(global_findings)
+                except Exception as e:
+                    logger.error(f"Error in global check '{check_name}': {e}")
+                    all_findings.append(
+                        create_finding(
+                            check_id="AC-00",
+                            finding_name=f"AgentCore {check_name} Check Error",
+                            finding_details=f"Error during {check_name} check: {str(e)}",
+                            resolution="Investigate error and retry assessment",
+                            reference="https://aws.github.io/bedrock-agentcore-starter-toolkit/",
+                            severity=SeverityEnum.HIGH,
+                            status=StatusEnum.FAILED,
+                            region=GLOBAL_REGION_LABEL,
+                        )
+                    )
+
+        # Reset per-invocation so a warm container cannot leak a previous
+        # region's client if creation below fails.
+        agentcore_client = None
         try:
             agentcore_client = boto3.client("bedrock-agentcore-control", config=boto3_config, region_name=region)
-            # Test service availability with a lightweight call
-            agentcore_client.list_agent_runtimes(maxResults=1)
-            logger.info("Successfully initialized bedrock-agentcore-control client")
-        except EndpointConnectionError:
-            logger.info(f"AgentCore service not available in region {region}, skipping")
-            agentcore_client = None
-        except ClientError as e:
-            if "Could not connect" in str(e):
-                logger.info(f"AgentCore service not available in region {region}, skipping")
-                agentcore_client = None
-            else:
-                # Service is available but returned an API error (e.g., access denied) — proceed
-                logger.info("AgentCore client initialized (API accessible)")
         except Exception as e:
-            if "Could not connect to the endpoint URL" in str(e):
+            # The client could not even be constructed (e.g. the SDK in this
+            # runtime does not know the service). This is the one case where the
+            # region genuinely cannot be assessed.
+            logger.warning(f"Failed to initialize bedrock-agentcore-control client: {e}")
+            agentcore_client = None
+
+        if agentcore_client is not None:
+            # Test service availability with a lightweight call
+            try:
+                agentcore_client.list_agent_runtimes(maxResults=1)
+                logger.info("Successfully initialized bedrock-agentcore-control client")
+            except EndpointConnectionError:
                 logger.info(f"AgentCore service not available in region {region}, skipping")
                 agentcore_client = None
-            else:
-                logger.warning(f"Failed to initialize bedrock-agentcore-control client: {e}")
-                agentcore_client = None
+            except ClientError as e:
+                error_code = e.response.get("Error", {}).get("Code", "")
+                if error_code in REGION_UNAVAILABLE_ERROR_CODES:
+                    logger.info(f"AgentCore not accessible in region {region} ({error_code}), skipping")
+                    agentcore_client = None
+                else:
+                    # Service is reachable but returned another API error (e.g. access
+                    # denied) — proceed; individual checks handle their own errors.
+                    logger.info(f"AgentCore client initialized (probe returned {error_code})")
+            except Exception as e:
+                # An unexpected probe failure (e.g. a boto3/botocore SDK param or
+                # operation mismatch such as ParamValidationError/AttributeError)
+                # says nothing about regional availability. Treating it as "not
+                # available" would silently skip every AgentCore check and emit a
+                # false N/A report, so keep the client and let the individual
+                # checks surface their own errors instead.
+                logger.warning(
+                    f"AgentCore availability probe raised an unexpected error, "
+                    f"proceeding with checks: {e}"
+                )
 
-        # If AgentCore not available, produce a single N/A report and exit early
+        # If AgentCore not available, produce an N/A report (plus any global IAM
+        # findings already collected on the primary region) and exit early
         if agentcore_client is None:
-            execution_id = event.get("Execution", {}).get("Name", "unknown")
-            na_findings = [
+            all_findings.append(
                 create_finding(
                     check_id="AC-00",
                     finding_name="AgentCore Service Availability",
@@ -2304,47 +2386,32 @@ def lambda_handler(event, context):
                     status=StatusEnum.NA,
                     region=region,
                 )
-            ]
-            for finding in na_findings:
-                finding["Region"] = region
-            csv_content = generate_csv_report(na_findings)
+            )
+            for finding in all_findings:
+                if not finding.get("Region"):
+                    finding["Region"] = region
+            csv_content = generate_csv_report(all_findings)
             s3_url = write_to_s3(execution_id, csv_content, BUCKET_NAME, region=region)
             return {
                 "statusCode": 200,
                 "body": json.dumps({"message": f"AgentCore not available in {region}", "s3_url": s3_url}),
             }
 
-        # Extract execution ID
-        execution_id = event.get("Execution", {}).get("Name", "unknown")
         logger.info(
             f"Starting AgentCore security assessment for execution: {execution_id}"
         )
 
-        # Retrieve permission cache
-        try:
-            permission_cache = get_permissions_cache(execution_id)
-        except Exception as e:
-            logger.warning(f"Failed to retrieve permission cache: {e}")
-            permission_cache = {"role_permissions": [], "user_permissions": []}
-
-        # Collect all findings
-        all_findings = []
-
-        # Execute all assessment checks
+        # Execute regional assessment checks (IAM-only checks AC-02/AC-03 and the
+        # global service-linked role check AC-09 are run separately, once, on the
+        # primary region above)
         checks = [
             ("VPC Configuration", check_agentcore_vpc_configuration),
-            (
-                "IAM Full Access",
-                lambda: check_agentcore_full_access_roles(permission_cache),
-            ),
-            ("Stale Access", lambda: check_stale_agentcore_access(permission_cache)),
             ("Observability", check_agentcore_observability),
             ("Encryption", check_agentcore_encryption),
             ("Browser Tool Recording", check_browser_tool_recording),
             ("Memory Configuration", check_agentcore_memory_configuration),
             ("Gateway Configuration", check_agentcore_gateway_configuration),
             ("VPC Endpoints", check_agentcore_vpc_endpoints),
-            ("Service-Linked Role", check_agentcore_service_linked_role),
             ("Resource-Based Policies", check_agentcore_resource_based_policies),
             ("Policy Engine Encryption", check_agentcore_policy_engine_encryption),
             ("Gateway Encryption", check_agentcore_gateway_encryption),
diff --git a/aiml-security-assessment/functions/security/agentcore_assessments/schema.py b/aiml-security-assessment/functions/security/agentcore_assessments/schema.py
index 56f63b5..c2c4938 100644
--- a/aiml-security-assessment/functions/security/agentcore_assessments/schema.py
+++ b/aiml-security-assessment/functions/security/agentcore_assessments/schema.py
@@ -1,7 +1,6 @@
 from enum import Enum
-from typing import Dict, List, Any
-from pydantic import BaseModel, Field, HttpUrl, validator
-from datetime import datetime
+from typing import Any, Dict
+from pydantic import BaseModel, Field, field_validator
 import re
 
 class SeverityEnum(str, Enum):
@@ -26,7 +25,8 @@ class Finding(BaseModel):
     Status: StatusEnum = Field(..., description="Current status of the finding")
     Region: str = Field(default="", description="AWS region where the finding was identified")
 
-    @validator('Check_ID')
+    @field_validator("Check_ID")
+    @classmethod
     def validate_check_id(cls, v):
         """Validate that Check_ID follows the pattern XX-NN (e.g., SM-01, BR-14, AC-05)"""
         pattern = r'^[A-Z]{2,3}-\d{2}$'
@@ -34,21 +34,24 @@ def validate_check_id(cls, v):
             raise ValueError('Check_ID must follow pattern XX-NN (e.g., SM-01, BR-14, AC-05)')
         return v
 
-    @validator('Reference')
+    @field_validator("Reference")
+    @classmethod
     def validate_reference_url(cls, v):
         """Validate that reference URL starts with https://"""
         if not str(v).startswith('https://'):
             raise ValueError('Reference URL must start with https://')
         return v
 
-    @validator('Severity')
+    @field_validator("Severity")
+    @classmethod
     def validate_severity(cls, v):
         """Validate that severity is one of the allowed values"""
         if v not in SeverityEnum.__members__.values():
             raise ValueError('Severity must be one of the allowed values')
         return v
 
-    @validator('Status')
+    @field_validator("Status")
+    @classmethod
     def validate_status(cls, v):
         """Validate that status is one of the allowed values"""
         if v not in StatusEnum.__members__.values():
diff --git a/aiml-security-assessment/functions/security/bedrock_assessments/app.py b/aiml-security-assessment/functions/security/bedrock_assessments/app.py
index c59fda7..98db843 100644
--- a/aiml-security-assessment/functions/security/bedrock_assessments/app.py
+++ b/aiml-security-assessment/functions/security/bedrock_assessments/app.py
@@ -25,6 +25,41 @@
 logger = logging.getLogger()
 logger.setLevel(logging.ERROR)
 
+# IAM is a global service. Findings derived purely from the IAM permission cache
+# (e.g. BR-01, BR-03) are identical across regions, so they are produced only on
+# the primary region (Map index 0) and tagged with this region label to avoid
+# duplicate findings when scanning multiple regions.
+GLOBAL_REGION_LABEL = "Global"
+
+# Error codes returned when a region exists but is not enabled/usable for the
+# account (opt-in regions, disabled regions). The availability probe treats
+# these the same as an endpoint connection failure.
+REGION_UNAVAILABLE_ERROR_CODES = {
+    "UnrecognizedClientException",
+    "InvalidClientTokenId",
+    "AuthFailure",
+    "OptInRequired",
+}
+
+
+def describe_api_error(error: Exception, api_label: str, region: str = "") -> str:
+    """
+    Build a report-friendly description for an API error raised by a regional
+    check.
+
+    Some regions don't support a given Bedrock API. boto3 surfaces this as
+    "Unknown operation ..." (ValidationException) or UnknownOperationException.
+    For those, return a clean "<api_label> not available in <region>" message
+    instead of leaking the raw boto3 exception text into the report. Any other
+    error keeps its raw text so genuine problems (e.g. permissions) stay
+    diagnosable.
+    """
+    error_text = str(error)
+    if "UnknownOperation" in error_text or "Unknown operation" in error_text:
+        location = region if region else "this region"
+        return f"{api_label} not available in {location}"
+    return f"Unable to check {api_label}: {error_text}"
+
 
 def get_permissions_cache(execution_id: str) -> Optional[Dict[str, Any]]:
     """
@@ -268,7 +303,14 @@ def has_bedrock_access(iam_client, principal_name: str, principal_type: str) ->
         return False
 
 
-def check_stale_bedrock_access(permission_cache) -> Dict[str, Any]:
+def check_stale_bedrock_access(permission_cache, region: str = "") -> Dict[str, Any]:
+    """
+    Check for stale Bedrock access using IAM service-last-accessed data.
+
+    This check is derived purely from IAM (a global service) and the cached
+    permissions, so it produces identical results in every region. The handler
+    runs it once, on the primary region, tagged with GLOBAL_REGION_LABEL.
+    """
     logger.debug("Starting check for stale Bedrock access")
     try:
         findings = {
@@ -308,6 +350,7 @@ def check_stale_bedrock_access(permission_cache) -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html",
                     severity="Informational",
                     status="N/A",
+                    region=region,
                 )
             )
             return findings
@@ -394,6 +437,7 @@ def check_stale_bedrock_access(permission_cache) -> Dict[str, Any]:
                         reference="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html",
                         severity="Medium",
                         status="Failed",
+                        region=region,
                     )
                 )
 
@@ -421,6 +465,7 @@ def check_stale_bedrock_access(permission_cache) -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html",
                     severity="Medium",
                     status="Passed",
+                    region=region,
                 )
             )
 
@@ -441,6 +486,7 @@ def check_stale_bedrock_access(permission_cache) -> Dict[str, Any]:
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html",
                     severity="High",
                     status="Failed",
+                    region=region,
                 )
             ],
         }
@@ -1202,18 +1248,22 @@ def check_bedrock_prompt_management(region: str = "") -> Dict[str, Any]:
                     )
                 )
 
-        except bedrock_client.exceptions.ValidationException as e:
-            findings["status"] = "ERROR"
-            findings["details"] = f"Error checking Prompt Management: {str(e)}"
+        except Exception as e:
+            # An API error (e.g. InternalServerErrorException after retries,
+            # throttling, or a permissions issue) is not a security failure.
+            # Surface it as N/A rather than Failed, matching the BR-11 pattern.
+            logger.warning(f"Error listing prompts: {str(e)}")
             findings["csv_data"].append(
                 create_finding(
                     check_id="BR-07",
                     finding_name="Bedrock Prompt Management Check",
-                    finding_details=f"Error checking Bedrock Prompt Management configuration: {str(e)}",
-                    resolution="Verify your AWS credentials and permissions to access Bedrock Prompt Management.",
+                    finding_details=describe_api_error(
+                        e, "Bedrock Prompt Management API", region
+                    ),
+                    resolution="Verify your AWS credentials and permissions to access Bedrock Prompt Management, then retry the assessment.",
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html",
-                    severity="High",
-                    status="Failed",
+                    severity="Low",
+                    status="N/A",
                     region=region,
                 )
             )
@@ -1697,7 +1747,7 @@ def check_bedrock_custom_model_encryption(region: str = "") -> Dict[str, Any]:
                 create_finding(
                     check_id="BR-11",
                     finding_name="Bedrock Custom Model Encryption Check",
-                    finding_details=f"Unable to list custom models: {str(e)}",
+                    finding_details=describe_api_error(e, "Custom model API", region),
                     resolution="Verify permissions to access Bedrock custom models",
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/model-customization-iam-role.html",
                     severity="Low",
@@ -2056,7 +2106,7 @@ def check_bedrock_flows_guardrails(region: str = "") -> Dict[str, Any]:
                 create_finding(
                     check_id="BR-13",
                     finding_name="Bedrock Flows Guardrails Check",
-                    finding_details=f"Unable to check flows: {str(e)}",
+                    finding_details=describe_api_error(e, "Bedrock Flows API", region),
                     resolution="Verify permissions to access Bedrock Flows",
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html",
                     severity="Low",
@@ -2346,42 +2396,14 @@ def lambda_handler(event, context):
     try:
         # Extract target region from Step Functions Map state
         region = event.get("Region", os.environ.get("AWS_REGION", "us-east-1"))
-        logger.info(f"Scanning region: {region}")
+        # IAM is global: only the primary region (Map index 0) runs IAM-only checks.
+        is_primary_region = int(event.get("RegionIndex", 0)) == 0
+        logger.info(f"Scanning region: {region} (primary={is_primary_region})")
 
-        # Verify Bedrock is available in this region
-        try:
-            test_client = boto3.client("bedrock", config=boto3_config, region_name=region)
-            test_client.get_model_invocation_logging_configuration()
-        except (EndpointConnectionError, Exception) as e:
-            error_msg = str(e)
-            if "Could not connect to the endpoint URL" in error_msg or "EndpointConnectionError" in type(e).__name__:
-                logger.info(f"Bedrock service not available in region {region}, skipping")
-                all_findings.append({
-                    "check_name": "Bedrock Service Availability",
-                    "status": "N/A",
-                    "details": f"Bedrock is not available in region {region}",
-                    "csv_data": [
-                        create_finding(
-                            check_id="BR-00",
-                            finding_name="Bedrock Service Availability",
-                            finding_details=f"Amazon Bedrock is not available in region {region}. No checks performed.",
-                            resolution="No action required. Bedrock is not deployed in this region.",
-                            reference="https://docs.aws.amazon.com/bedrock/latest/userguide/bedrock-regions.html",
-                            severity="Informational",
-                            status="N/A",
-                            region=region,
-                        )
-                    ],
-                })
-                execution_id = event["Execution"]["Name"]
-                csv_content = generate_csv_report(all_findings)
-                bucket_name = os.environ.get("AIML_ASSESSMENT_BUCKET_NAME")
-                s3_url = write_to_s3(execution_id, csv_content, bucket_name, region=region)
-                return {"statusCode": 200, "body": {"message": f"Bedrock not available in {region}", "report_url": s3_url}}
-
-        # Initialize permission cache
-        logger.info("Initializing IAM permission cache")
         execution_id = event["Execution"]["Name"]
+
+        # Initialize permission cache (shared/global IAM data)
+        logger.info("Initializing IAM permission cache")
         permission_cache = get_permissions_cache(execution_id)
 
         if not permission_cache:
@@ -2390,23 +2412,79 @@ def lambda_handler(event, context):
             )
             permission_cache = {"role_permissions": {}, "user_permissions": {}}
 
-        # Run all checks using the cached permissions
-        logger.info("Running AmazonBedrockFullAccess check")
-        bedrock_full_access_findings = check_bedrock_full_access_roles(permission_cache, region=region)
-        all_findings.append(bedrock_full_access_findings)
+        # Run global IAM-only checks once (on the primary region) so the same role
+        # violations are not reported once per scanned region. These run before the
+        # regional availability gate so they are still emitted even if Bedrock is
+        # not available in the primary region.
+        if is_primary_region:
+            logger.info("Running global AmazonBedrockFullAccess check (BR-01)")
+            all_findings.append(
+                check_bedrock_full_access_roles(permission_cache, region=GLOBAL_REGION_LABEL)
+            )
+
+            logger.info("Running global marketplace subscription access check (BR-03)")
+            all_findings.append(
+                check_marketplace_subscription_access(permission_cache, region=GLOBAL_REGION_LABEL)
+            )
+
+            logger.info("Running global stale Bedrock access check (BR-14)")
+            all_findings.append(
+                check_stale_bedrock_access(permission_cache, region=GLOBAL_REGION_LABEL)
+            )
 
+        # Verify Bedrock is available in this region. A ValidationException here
+        # (logging simply not configured) still means the service is reachable,
+        # so only an endpoint connection failure or a region-not-enabled error
+        # should short-circuit the assessment.
+        bedrock_unavailable = False
+        unavailable_detail = ""
+        try:
+            test_client = boto3.client("bedrock", config=boto3_config, region_name=region)
+            test_client.get_model_invocation_logging_configuration()
+        except EndpointConnectionError:
+            bedrock_unavailable = True
+            unavailable_detail = f"Amazon Bedrock is not available in region {region}. No checks performed."
+        except ClientError as e:
+            error_code = e.response.get("Error", {}).get("Code", "")
+            if error_code in REGION_UNAVAILABLE_ERROR_CODES:
+                bedrock_unavailable = True
+                unavailable_detail = f"Amazon Bedrock is not available or not enabled in region {region} ({error_code}). No checks performed."
+            else:
+                # Service is reachable (e.g. ValidationException, AccessDenied) —
+                # proceed; individual checks handle their own errors.
+                logger.info(f"Bedrock availability probe returned {error_code}; proceeding with checks")
+
+        if bedrock_unavailable:
+            logger.info(f"Bedrock service not available in region {region}, skipping")
+            all_findings.append({
+                "check_name": "Bedrock Service Availability",
+                "status": "N/A",
+                "details": f"Bedrock is not available in region {region}",
+                "csv_data": [
+                    create_finding(
+                        check_id="BR-00",
+                        finding_name="Bedrock Service Availability",
+                        finding_details=unavailable_detail,
+                        resolution="No action required. Bedrock is not deployed in this region.",
+                        reference="https://docs.aws.amazon.com/bedrock/latest/userguide/bedrock-regions.html",
+                        severity="Informational",
+                        status="N/A",
+                        region=region,
+                    )
+                ],
+            })
+            csv_content = generate_csv_report(all_findings)
+            bucket_name = os.environ.get("AIML_ASSESSMENT_BUCKET_NAME")
+            s3_url = write_to_s3(execution_id, csv_content, bucket_name, region=region)
+            return {"statusCode": 200, "body": {"message": f"Bedrock not available in {region}", "report_url": s3_url}}
+
+        # Run regional checks using the cached permissions
         logger.info("Running Bedrock access and VPC endpoints check")
         bedrock_access_vpc_findings = check_bedrock_access_and_vpc_endpoints(
             permission_cache, region=region
         )
         all_findings.append(bedrock_access_vpc_findings)
 
-        logger.info("Running marketplace subscription access check")
-        marketplace_access_findings = check_marketplace_subscription_access(
-            permission_cache, region=region
-        )
-        all_findings.append(marketplace_access_findings)
-
         logger.info("Running Bedrock logging findings check")
         bedrock_logging_findings = check_bedrock_logging_configuration(region=region)
         all_findings.append(bedrock_logging_findings)
diff --git a/aiml-security-assessment/functions/security/bedrock_assessments/schema.py b/aiml-security-assessment/functions/security/bedrock_assessments/schema.py
index 6b48996..c2c4938 100644
--- a/aiml-security-assessment/functions/security/bedrock_assessments/schema.py
+++ b/aiml-security-assessment/functions/security/bedrock_assessments/schema.py
@@ -1,7 +1,6 @@
 from enum import Enum
-from typing import Dict, List, Any
-from pydantic import BaseModel, Field, HttpUrl, validator
-from datetime import datetime
+from typing import Any, Dict
+from pydantic import BaseModel, Field, field_validator
 import re
 
 class SeverityEnum(str, Enum):
@@ -26,7 +25,8 @@ class Finding(BaseModel):
     Status: StatusEnum = Field(..., description="Current status of the finding")
     Region: str = Field(default="", description="AWS region where the finding was identified")
 
-    @validator('Check_ID')
+    @field_validator("Check_ID")
+    @classmethod
     def validate_check_id(cls, v):
         """Validate that Check_ID follows the pattern XX-NN (e.g., SM-01, BR-14, AC-05)"""
         pattern = r'^[A-Z]{2,3}-\d{2}$'
@@ -34,21 +34,24 @@ def validate_check_id(cls, v):
             raise ValueError('Check_ID must follow pattern XX-NN (e.g., SM-01, BR-14, AC-05)')
         return v
 
-    @validator('Reference')
+    @field_validator("Reference")
+    @classmethod
     def validate_reference_url(cls, v):
         """Validate that reference URL starts with https://"""
         if not str(v).startswith('https://'):
             raise ValueError('Reference URL must start with https://')
         return v
 
-    @validator('Severity')
+    @field_validator("Severity")
+    @classmethod
     def validate_severity(cls, v):
         """Validate that severity is one of the allowed values"""
         if v not in SeverityEnum.__members__.values():
             raise ValueError('Severity must be one of the allowed values')
         return v
 
-    @validator('Status')
+    @field_validator("Status")
+    @classmethod
     def validate_status(cls, v):
         """Validate that status is one of the allowed values"""
         if v not in StatusEnum.__members__.values():
@@ -94,4 +97,4 @@ def create_finding(
         Status=status,
         Region=region
     )
-    return dict(finding.model_dump())  # Convert to regular dictionary
\ No newline at end of file
+    return dict(finding.model_dump())  # Convert to regular dictionary
diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/app.py b/aiml-security-assessment/functions/security/generate_consolidated_report/app.py
index 555c491..4f74d81 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/app.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/app.py
@@ -10,6 +10,13 @@
 
 from report_template import generate_html_report as generate_report_from_template
 
+# Sentinel region label used by the per-service assessments to tag findings that
+# are derived purely from global (IAM) data and run once per execution rather
+# than per region (e.g. BR-01, SM-02, AC-09). It is NOT a real AWS region, so it
+# must be excluded when counting scanned regions for the report's multi-region
+# UI (region filter, "Risk by Region", region count).
+GLOBAL_REGION_LABEL = "Global"
+
 boto3_config = Config(
     retries=dict(
         max_attempts=10,  # Maximum number of retries
@@ -56,30 +63,25 @@ def get_assessment_results(execution_id: str, account_id: str = None) -> Dict[st
     try:
         s3_client = boto3.client("s3", config=boto3_config)
 
-        # List all CSV files with execution ID in filename (bucket root)
+        # List all CSV files with execution ID in filename (bucket root).
+        # Use a paginator: a multi-region scan produces one file per service per
+        # region, so a single list_objects_v2 call (capped at 1000 keys) could
+        # silently truncate and drop regions for large scans.
         s3_bucket = os.environ.get("AIML_ASSESSMENT_BUCKET_NAME")
-        response = s3_client.list_objects_v2(
-            Bucket=s3_bucket, Prefix=f"bedrock_security_report_{execution_id}"
-        )
+        paginator = s3_client.get_paginator("list_objects_v2")
 
-        # Also check for SageMaker reports
-        sagemaker_response = s3_client.list_objects_v2(
-            Bucket=s3_bucket, Prefix=f"sagemaker_security_report_{execution_id}"
-        )
-
-        # Also check for AgentCore reports
-        agentcore_response = s3_client.list_objects_v2(
-            Bucket=s3_bucket, Prefix=f"agentcore_security_report_{execution_id}"
-        )
+        # One prefix per service; each matches every region's report file.
+        prefixes = [
+            f"bedrock_security_report_{execution_id}",
+            f"sagemaker_security_report_{execution_id}",
+            f"agentcore_security_report_{execution_id}",
+        ]
 
-        # Combine all responses
         all_objects = []
-        if "Contents" in response:
-            all_objects.extend(response["Contents"])
-        if "Contents" in sagemaker_response:
-            all_objects.extend(sagemaker_response["Contents"])
-        if "Contents" in agentcore_response:
-            all_objects.extend(agentcore_response["Contents"])
+        for prefix in prefixes:
+            for page in paginator.paginate(Bucket=s3_bucket, Prefix=prefix):
+                all_objects.extend(page.get("Contents", []))
+
         if not all_objects:
             logger.warning(f"No assessment files found for execution {execution_id}")
             return {}
@@ -200,10 +202,30 @@ def generate_html_report(assessment_results: Dict[str, Any]) -> str:
     service_findings = {"bedrock": [], "sagemaker": [], "agentcore": []}
     regions = set()
 
+    # Global/IAM findings (Region == "Global", e.g. BR-01, SM-02, AC-09) are
+    # produced once per run by the primary-region Lambda and should land in a
+    # single CSV. Dedup defensively here so the totals and per-region tiles stay
+    # correct even if the same finding ever appears in more than one region's
+    # file (e.g. RegionIndex missing from the event, or a future per-region
+    # write of a global check). The key uniquely identifies a finding within an
+    # account; account is included so a future multi-account merge is unaffected.
+    seen_findings = set()
+
     for service in ["bedrock", "sagemaker", "agentcore"]:
         if service in assessment_results:
             for report_type, findings in assessment_results[service].items():
                 for finding in findings:
+                    dedup_key = (
+                        finding.get("Account_ID", ""),
+                        service,
+                        finding.get("Check_ID", ""),
+                        finding.get("Region", ""),
+                        finding.get("Finding_Details", ""),
+                    )
+                    if dedup_key in seen_findings:
+                        continue
+                    seen_findings.add(dedup_key)
+
                     finding["_service"] = service
                     all_findings.append(finding)
                     service_findings[service].append(finding)
@@ -215,7 +237,9 @@ def generate_html_report(assessment_results: Dict[str, Any]) -> str:
                     elif status == "n/a":
                         service_stats[service]["na"] += 1
                     region = finding.get("Region", "")
-                    if region:
+                    # "Global" tags IAM-only findings; it is not a scanned region
+                    # and must not inflate the region count / multi-region UI.
+                    if region and region != GLOBAL_REGION_LABEL:
                         regions.add(region)
 
     account_id = assessment_results.get("account_id", "Unknown")
@@ -242,6 +266,11 @@ def get_current_utc_date():
     return datetime.now(timezone.utc).strftime("%Y/%m/%d")
 
 
+def build_single_account_report_key(timestamp: str) -> str:
+    """Build the single-account HTML report object key."""
+    return f"security_assessment_single_account_{timestamp}.html"
+
+
 def write_html_to_s3(
     html_content: str, s3_bucket: str, execution_id: str, account_id: str = None
 ) -> Optional[str]:
@@ -261,7 +290,7 @@ def write_html_to_s3(
 
         # Generate the S3 key for local bucket (no account folder needed)
         timestamp = datetime.now(timezone.utc).strftime("%Y%m%d_%H%M%S")
-        s3_key = f"security_assessment_{timestamp}_{execution_id}.html"
+        s3_key = build_single_account_report_key(timestamp)
 
         # Upload the HTML file
         s3_client.put_object(
diff --git a/aiml-security-assessment/functions/security/resolve_regions/app.py b/aiml-security-assessment/functions/security/resolve_regions/app.py
index ba65b78..ccd3eb2 100644
--- a/aiml-security-assessment/functions/security/resolve_regions/app.py
+++ b/aiml-security-assessment/functions/security/resolve_regions/app.py
@@ -15,7 +15,7 @@
 
 BEDROCK_SERVICE = "bedrock"
 SAGEMAKER_SERVICE = "sagemaker"
-AGENTCORE_SERVICE = "bedrock-agent"
+AGENTCORE_SERVICE = "bedrock-agentcore-control"
 
 SERVICES = [BEDROCK_SERVICE, SAGEMAKER_SERVICE, AGENTCORE_SERVICE]
 
diff --git a/aiml-security-assessment/functions/security/sagemaker_assessments/app.py b/aiml-security-assessment/functions/security/sagemaker_assessments/app.py
index fec78d9..e78fe5a 100644
--- a/aiml-security-assessment/functions/security/sagemaker_assessments/app.py
+++ b/aiml-security-assessment/functions/security/sagemaker_assessments/app.py
@@ -26,6 +26,23 @@
 logger = logging.getLogger()
 logger.setLevel(logging.ERROR)
 
+# IAM is a global service. Findings derived purely from the IAM permission cache
+# (e.g. the SM-02 full-access and stale-access checks) are identical across
+# regions, so they are produced only on the primary region (Map index 0) and
+# tagged with this region label to avoid duplicate findings when scanning
+# multiple regions.
+GLOBAL_REGION_LABEL = "Global"
+
+# Error codes returned when a region exists but is not enabled/usable for the
+# account (opt-in regions, disabled regions). The availability probe treats
+# these the same as an endpoint connection failure.
+REGION_UNAVAILABLE_ERROR_CODES = {
+    "UnrecognizedClientException",
+    "InvalidClientTokenId",
+    "AuthFailure",
+    "OptInRequired",
+}
+
 
 def get_permissions_cache(execution_id: str) -> Optional[Dict[str, Any]]:
     """
@@ -318,7 +335,13 @@ def check_guardduty_enabled(region: str = "") -> Dict[str, Any]:
 
 def check_sagemaker_iam_permissions(permission_cache, region: str = "") -> Dict[str, Any]:
     """
-    Check SageMaker IAM permissions, SSO configuration, and stale access
+    Check SageMaker IAM permissions and stale access.
+
+    These checks are derived purely from IAM (a global service) and the cached
+    permissions, so they produce identical results in every region. The handler
+    runs this check once, on the primary region, tagged with GLOBAL_REGION_LABEL.
+    Regional SSO/domain configuration is checked separately by
+    check_sagemaker_sso_configuration.
     """
     logger.debug("Starting check for SageMaker IAM permissions")
     try:
@@ -332,9 +355,10 @@ def check_sagemaker_iam_permissions(permission_cache, region: str = "") -> Dict[
                     roles_with_full_access.append(role_name)
                     break
 
-        # Check for stale access
+        # Check for stale access. IAM is a global service, so the client is not
+        # region-scoped (region is used only for finding tags).
         stale_users = []
-        iam_client = boto3.client("iam", config=boto3_config, region_name=region)
+        iam_client = boto3.client("iam", config=boto3_config)
         two_months_ago = datetime.now(timezone.utc) - timedelta(days=60)
 
         # Check users' last access to SageMaker
@@ -379,66 +403,8 @@ def check_sagemaker_iam_permissions(permission_cache, region: str = "") -> Dict[
                         f"Error checking last access for user {user_name}: {str(e)}"
                     )
 
-        # Check SSO configuration
-        domains_without_sso = []
-        try:
-            sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
-            paginator = sagemaker_client.get_paginator("list_domains")
-
-            for page in paginator.paginate():
-                for domain in page["Domains"]:
-                    domain_id = domain["DomainId"]
-                    try:
-                        domain_details = sagemaker_client.describe_domain(
-                            DomainId=domain_id
-                        )
-
-                        # Check authentication mode
-                        auth_mode = domain_details.get("AuthMode", "")
-                        if auth_mode != "SSO":
-                            domains_without_sso.append(
-                                {
-                                    "domain_id": domain_id,
-                                    "domain_name": domain_details.get(
-                                        "DomainName", "N/A"
-                                    ),
-                                    "auth_mode": auth_mode,
-                                }
-                            )
-
-                        # Check if SSO is properly configured with Identity Center
-                        if auth_mode == "SSO":
-                            try:
-                                # Check Identity Center configuration
-                                identity_store_id = domain_details.get(
-                                    "IdentityStoreId"
-                                )
-
-                                if not identity_store_id:
-                                    domains_without_sso.append(
-                                        {
-                                            "domain_id": domain_id,
-                                            "domain_name": domain_details.get(
-                                                "DomainName", "N/A"
-                                            ),
-                                            "auth_mode": "SSO (Incomplete Configuration)",
-                                        }
-                                    )
-                            except Exception as sso_error:
-                                logger.error(
-                                    f"Error checking SSO configuration for domain {domain_id}: {str(sso_error)}"
-                                )
-
-                    except Exception as domain_error:
-                        logger.error(
-                            f"Error checking domain {domain_id}: {str(domain_error)}"
-                        )
-
-        except Exception as e:
-            logger.error(f"Error checking SSO configuration: {str(e)}")
-
         # Generate findings
-        if roles_with_full_access or stale_users or domains_without_sso:
+        if roles_with_full_access or stale_users:
             # Findings for full access roles
             if roles_with_full_access:
                 for role_name in roles_with_full_access:
@@ -470,34 +436,12 @@ def check_sagemaker_iam_permissions(permission_cache, region: str = "") -> Dict[
                             region=region,
                         )
                     )
-
-            # Findings for SSO
-            if domains_without_sso:
-                for domain in domains_without_sso:
-                    findings["csv_data"].append(
-                        create_finding(
-                            check_id="SM-02",
-                            finding_name="SSO Not Properly Configured",
-                            finding_details=(
-                                f"SageMaker domain '{domain['domain_id']}' ({domain['domain_name']}) "
-                                f"is using authentication mode: {domain['auth_mode']}"
-                            ),
-                            resolution=(
-                                "Enable and properly configure AWS IAM Identity Center (successor to AWS SSO) "
-                                "for centralized access management. Ensure Identity Store ID is configured."
-                            ),
-                            reference="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/",
-                            severity="Medium",
-                            status="Failed",
-                            region=region,
-                        )
-                    )
         else:
             findings["csv_data"].append(
                 create_finding(
                     check_id="SM-02",
                     finding_name="SageMaker IAM Permissions Check",
-                    finding_details="No issues found with IAM permissions, SSO is enabled, and no stale access detected",
+                    finding_details="No issues found with IAM permissions and no stale access detected",
                     resolution="No action required",
                     reference="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html",
                     severity="High",
@@ -520,6 +464,109 @@ def check_sagemaker_iam_permissions(permission_cache, region: str = "") -> Dict[
         }
 
 
+def check_sagemaker_sso_configuration(region: str = "") -> Dict[str, Any]:
+    """
+    Check SageMaker domain SSO / IAM Identity Center configuration.
+
+    SageMaker domains are regional resources, so this check runs once per
+    scanned region (unlike the IAM-global checks in
+    check_sagemaker_iam_permissions).
+    """
+    logger.debug("Starting check for SageMaker SSO configuration")
+    try:
+        findings = {"csv_data": []}
+
+        domains_without_sso = []
+        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        paginator = sagemaker_client.get_paginator("list_domains")
+
+        for page in paginator.paginate():
+            for domain in page["Domains"]:
+                domain_id = domain["DomainId"]
+                try:
+                    domain_details = sagemaker_client.describe_domain(
+                        DomainId=domain_id
+                    )
+
+                    # Check authentication mode
+                    auth_mode = domain_details.get("AuthMode", "")
+                    if auth_mode != "SSO":
+                        domains_without_sso.append(
+                            {
+                                "domain_id": domain_id,
+                                "domain_name": domain_details.get("DomainName", "N/A"),
+                                "auth_mode": auth_mode,
+                            }
+                        )
+
+                    # Check if SSO is properly configured with Identity Center
+                    if auth_mode == "SSO":
+                        identity_store_id = domain_details.get("IdentityStoreId")
+
+                        if not identity_store_id:
+                            domains_without_sso.append(
+                                {
+                                    "domain_id": domain_id,
+                                    "domain_name": domain_details.get(
+                                        "DomainName", "N/A"
+                                    ),
+                                    "auth_mode": "SSO (Incomplete Configuration)",
+                                }
+                            )
+
+                except Exception as domain_error:
+                    logger.error(
+                        f"Error checking domain {domain_id}: {str(domain_error)}"
+                    )
+
+        if domains_without_sso:
+            for domain in domains_without_sso:
+                findings["csv_data"].append(
+                    create_finding(
+                        check_id="SM-02",
+                        finding_name="SSO Not Properly Configured",
+                        finding_details=(
+                            f"SageMaker domain '{domain['domain_id']}' ({domain['domain_name']}) "
+                            f"is using authentication mode: {domain['auth_mode']}"
+                        ),
+                        resolution=(
+                            "Enable and properly configure AWS IAM Identity Center (successor to AWS SSO) "
+                            "for centralized access management. Ensure Identity Store ID is configured."
+                        ),
+                        reference="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/",
+                        severity="Medium",
+                        status="Failed",
+                        region=region,
+                    )
+                )
+        else:
+            findings["csv_data"].append(
+                create_finding(
+                    check_id="SM-02",
+                    finding_name="SageMaker SSO Configuration Check",
+                    finding_details="No SageMaker domains found, or all domains use SSO with IAM Identity Center configured",
+                    resolution="No action required",
+                    reference="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/",
+                    severity="Medium",
+                    status="Passed",
+                    region=region,
+                )
+            )
+
+        return findings
+
+    except Exception as e:
+        logger.error(
+            f"Error in check_sagemaker_sso_configuration: {str(e)}", exc_info=True
+        )
+        return {
+            "check_name": "SageMaker SSO Configuration Check",
+            "status": "ERROR",
+            "details": f"Error during check: {str(e)}",
+            "csv_data": [],
+        }
+
+
 def has_sagemaker_permissions(policy_doc: Dict) -> bool:
     """
     Check if a policy document contains SageMaker permissions
@@ -3808,16 +3855,67 @@ def lambda_handler(event, context):
     try:
         # Extract target region from Step Functions Map state
         region = event.get("Region", os.environ.get("AWS_REGION", "us-east-1"))
-        logger.info(f"Scanning region: {region}")
+        # IAM is global: only the primary region (Map index 0) runs IAM-only checks.
+        is_primary_region = int(event.get("RegionIndex", 0)) == 0
+        logger.info(f"Scanning region: {region} (primary={is_primary_region})")
+
+        execution_id = event["Execution"]["Name"]
+
+        # Initialize permission cache (shared/global IAM data)
+        logger.info("Initializing IAM permission cache")
+        permission_cache = get_permissions_cache(execution_id)
+
+        if not permission_cache:
+            logger.error(
+                "Permission cache not found - IAM permission caching may have failed"
+            )
+            permission_cache = {"role_permissions": {}, "user_permissions": {}}
+
+        # Run global IAM-only checks once (on the primary region) so the same role
+        # and stale-access violations are not reported once per scanned region.
+        # These run before the regional availability gate so they are still emitted
+        # even if SageMaker is not available in the primary region.
+        if is_primary_region:
+            logger.info("Running global SageMaker IAM permissions check (SM-02)")
+            sagemaker_iam_findings = check_sagemaker_iam_permissions(
+                permission_cache, region=GLOBAL_REGION_LABEL
+            )
+            all_findings.append(sagemaker_iam_findings)
 
         # Verify SageMaker is available in this region
         try:
             test_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
             test_client.list_notebook_instances(MaxResults=1)
-        except (EndpointConnectionError, Exception) as e:
-            error_msg = str(e)
-            if "Could not connect to the endpoint URL" in error_msg or "EndpointConnectionError" in type(e).__name__:
-                logger.info(f"SageMaker service not available in region {region}, skipping")
+        except EndpointConnectionError:
+            logger.info(f"SageMaker service not available in region {region}, skipping")
+            all_findings.append({
+                "check_name": "SageMaker Service Availability",
+                "status": "N/A",
+                "details": f"SageMaker is not available in region {region}",
+                "csv_data": [
+                    create_finding(
+                        check_id="SM-00",
+                        finding_name="SageMaker Service Availability",
+                        finding_details=f"Amazon SageMaker is not available in region {region}. No checks performed.",
+                        resolution="No action required. SageMaker is not deployed in this region.",
+                        reference="https://docs.aws.amazon.com/general/latest/gr/sagemaker.html",
+                        severity="Informational",
+                        status="N/A",
+                        region=region,
+                    )
+                ],
+            })
+            csv_content = generate_csv_report(all_findings)
+            bucket_name = os.environ.get("AIML_ASSESSMENT_BUCKET_NAME")
+            s3_url = write_to_s3(execution_id, csv_content, bucket_name, region=region)
+            return {"statusCode": 200, "body": {"message": f"SageMaker not available in {region}", "report_url": s3_url}}
+        except ClientError as e:
+            # A region that exists but is not enabled for the account surfaces as
+            # an auth/opt-in error rather than a connection failure. Treat it the
+            # same as "not available" instead of running every check against it.
+            error_code = e.response.get("Error", {}).get("Code", "")
+            if error_code in REGION_UNAVAILABLE_ERROR_CODES:
+                logger.info(f"SageMaker not accessible in region {region} ({error_code}), skipping")
                 all_findings.append({
                     "check_name": "SageMaker Service Availability",
                     "status": "N/A",
@@ -3826,8 +3924,8 @@ def lambda_handler(event, context):
                         create_finding(
                             check_id="SM-00",
                             finding_name="SageMaker Service Availability",
-                            finding_details=f"Amazon SageMaker is not available in region {region}. No checks performed.",
-                            resolution="No action required. SageMaker is not deployed in this region.",
+                            finding_details=f"Amazon SageMaker is not available or not enabled in region {region} ({error_code}). No checks performed.",
+                            resolution="No action required if the region is intentionally disabled. Otherwise enable the region for this account.",
                             reference="https://docs.aws.amazon.com/general/latest/gr/sagemaker.html",
                             severity="Informational",
                             status="N/A",
@@ -3835,30 +3933,21 @@ def lambda_handler(event, context):
                         )
                     ],
                 })
-                execution_id = event["Execution"]["Name"]
                 csv_content = generate_csv_report(all_findings)
                 bucket_name = os.environ.get("AIML_ASSESSMENT_BUCKET_NAME")
                 s3_url = write_to_s3(execution_id, csv_content, bucket_name, region=region)
                 return {"statusCode": 200, "body": {"message": f"SageMaker not available in {region}", "report_url": s3_url}}
-
-        # Initialize permission cache
-        logger.info("Initializing IAM permission cache")
-        execution_id = event["Execution"]["Name"]
-        permission_cache = get_permissions_cache(execution_id)
-
-        if not permission_cache:
-            logger.error(
-                "Permission cache not found - IAM permission caching may have failed"
-            )
-            permission_cache = {"role_permissions": {}, "user_permissions": {}}
+            # Service is reachable but returned another API error (e.g. AccessDenied)
+            # — proceed; individual checks handle their own errors.
+            logger.info(f"SageMaker availability probe returned {error_code}; proceeding with checks")
 
         logger.info("Running SageMaker internet access check")
         sagemaker_internet_access_findings = check_sagemaker_internet_access(region=region)
         all_findings.append(sagemaker_internet_access_findings)
 
-        logger.info("Running SageMaker IAM permissions check")
-        sagemaker_iam_findings = check_sagemaker_iam_permissions(permission_cache, region=region)
-        all_findings.append(sagemaker_iam_findings)
+        logger.info("Running SageMaker SSO configuration check")
+        sagemaker_sso_findings = check_sagemaker_sso_configuration(region=region)
+        all_findings.append(sagemaker_sso_findings)
 
         logger.info("Running SageMaker data protection check")
         sagemaker_data_protection_findings = check_sagemaker_data_protection(region=region)
diff --git a/aiml-security-assessment/functions/security/sagemaker_assessments/schema.py b/aiml-security-assessment/functions/security/sagemaker_assessments/schema.py
index c767db7..c2c4938 100644
--- a/aiml-security-assessment/functions/security/sagemaker_assessments/schema.py
+++ b/aiml-security-assessment/functions/security/sagemaker_assessments/schema.py
@@ -1,12 +1,8 @@
 from enum import Enum
-from typing import Dict, List, Any
-from pydantic import BaseModel, Field, HttpUrl, validator
-from datetime import datetime
+from typing import Any, Dict
+from pydantic import BaseModel, Field, field_validator
 import re
 
-class Config:
-    strict = True  # Enables strict type checking
-
 class SeverityEnum(str, Enum):
     HIGH = "High"
     MEDIUM = "Medium"
@@ -29,7 +25,8 @@ class Finding(BaseModel):
     Status: StatusEnum = Field(..., description="Current status of the finding")
     Region: str = Field(default="", description="AWS region where the finding was identified")
 
-    @validator('Check_ID')
+    @field_validator("Check_ID")
+    @classmethod
     def validate_check_id(cls, v):
         """Validate that Check_ID follows the pattern XX-NN (e.g., SM-01, BR-14, AC-05)"""
         pattern = r'^[A-Z]{2,3}-\d{2}$'
@@ -37,21 +34,24 @@ def validate_check_id(cls, v):
             raise ValueError('Check_ID must follow pattern XX-NN (e.g., SM-01, BR-14, AC-05)')
         return v
 
-    @validator('Reference')
+    @field_validator("Reference")
+    @classmethod
     def validate_reference_url(cls, v):
         """Validate that reference URL starts with https://"""
         if not str(v).startswith('https://'):
             raise ValueError('Reference URL must start with https://')
         return v
 
-    @validator('Severity')
+    @field_validator("Severity")
+    @classmethod
     def validate_severity(cls, v):
         """Validate that severity is one of the allowed values"""
         if v not in SeverityEnum.__members__.values():
             raise ValueError('Severity must be one of the allowed values')
         return v
 
-    @validator('Status')
+    @field_validator("Status")
+    @classmethod
     def validate_status(cls, v):
         """Validate that status is one of the allowed values"""
         if v not in StatusEnum.__members__.values():
@@ -97,4 +97,4 @@ def create_finding(
         Status=status,
         Region=region
     )
-    return dict(finding.model_dump())  # Convert to regular dictionary
\ No newline at end of file
+    return dict(finding.model_dump())  # Convert to regular dictionary
diff --git a/aiml-security-assessment/statemachine/assessments.asl.json b/aiml-security-assessment/statemachine/assessments.asl.json
index f85a7c0..001de8f 100644
--- a/aiml-security-assessment/statemachine/assessments.asl.json
+++ b/aiml-security-assessment/statemachine/assessments.asl.json
@@ -91,10 +91,11 @@
             "ItemsPath": "$.ResolvedRegions.regions",
             "ItemSelector": {
                 "Region.$": "$$.Map.Item.Value",
+                "RegionIndex.$": "$$.Map.Item.Index",
                 "Execution.$": "$$.Execution",
                 "StateMachine.$": "$$.StateMachine"
             },
-            "MaxConcurrency": 0,
+            "MaxConcurrency": ${MaxRegionConcurrency},
             "ItemProcessor": {
                 "ProcessorConfig": {
                     "Mode": "INLINE"
@@ -115,7 +116,8 @@
                                             "Payload": {
                                                 "Execution.$": "$.Execution",
                                                 "StateMachine.$": "$.StateMachine",
-                                                "Region.$": "$.Region"
+                                                "Region.$": "$.Region",
+                                                "RegionIndex.$": "$.RegionIndex"
                                             }
                                         },
                                         "Retry": [
@@ -147,7 +149,8 @@
                                             "Payload": {
                                                 "Execution.$": "$.Execution",
                                                 "StateMachine.$": "$.StateMachine",
-                                                "Region.$": "$.Region"
+                                                "Region.$": "$.Region",
+                                                "RegionIndex.$": "$.RegionIndex"
                                             }
                                         },
                                         "Retry": [
@@ -179,7 +182,8 @@
                                             "Payload": {
                                                 "Execution.$": "$.Execution",
                                                 "StateMachine.$": "$.StateMachine",
-                                                "Region.$": "$.Region"
+                                                "Region.$": "$.Region",
+                                                "RegionIndex.$": "$.RegionIndex"
                                             }
                                         },
                                         "Retry": [
diff --git a/aiml-security-assessment/template-multi-account.yaml b/aiml-security-assessment/template-multi-account.yaml
index 2188736..bd82963 100644
--- a/aiml-security-assessment/template-multi-account.yaml
+++ b/aiml-security-assessment/template-multi-account.yaml
@@ -13,6 +13,15 @@ Parameters:
       Comma-separated list of AWS regions to scan (e.g., us-east-1,us-west-2,eu-west-1).
       Use 'all' to scan all regions where the service is available.
       Leave empty to scan only the deployment region.
+  MaxRegionConcurrency:
+    Type: Number
+    Default: 5
+    MinValue: 1
+    MaxValue: 40
+    Description: >
+      Maximum number of regions scanned in parallel by the Map state. Lower
+      values reduce concurrent Lambda usage; higher values speed up large
+      multi-region scans. Set to 1 for fully sequential scanning.
 
 Resources:
   AIMLAssessmentStateMachine:
@@ -28,6 +37,7 @@ Resources:
         AgentCoreSecurityAssessmentFunction: !GetAtt AgentCoreSecurityAssessmentFunction.Arn
         GenerateConsolidatedReportFunction: !GetAtt GenerateConsolidatedReportFunction.Arn
         AIMLAssessmentBucketName: !Ref AIMLAssessmentBucket
+        MaxRegionConcurrency: !Ref MaxRegionConcurrency
       Policies:
         - LambdaInvokePolicy:
             FunctionName: !Ref CleanupBucketFunction
@@ -49,7 +59,7 @@ Resources:
   ResolveRegionsFunction:
     Type: AWS::Serverless::Function
     Properties:
-      FunctionName: !Sub 'aiml-security-ResolveRegions'
+      FunctionName: !Sub 'aiml-security-${AWS::StackName}-ResolveRegions'
       CodeUri: functions/security/resolve_regions/
       Handler: app.lambda_handler
       Runtime: python3.12
@@ -64,7 +74,7 @@ Resources:
   CleanupBucketFunction:
     Type: AWS::Serverless::Function
     Properties:
-      FunctionName: !Sub 'aiml-security-CleanupBucket'
+      FunctionName: !Sub 'aiml-security-${AWS::StackName}-CleanupBucket'
       CodeUri: functions/security/cleanup_bucket/
       Handler: app.lambda_handler
       Runtime: python3.12
@@ -82,7 +92,7 @@ Resources:
   IAMPermissionCachingFunction:
     Type: AWS::Serverless::Function
     Properties:
-      FunctionName: !Sub 'aiml-security-IAMPermissionCaching'
+      FunctionName: !Sub 'aiml-security-${AWS::StackName}-IAMPermissionCaching'
       CodeUri: functions/security/iam_permission_caching/
       Handler: app.lambda_handler
       Runtime: python3.12
@@ -118,7 +128,7 @@ Resources:
   GenerateConsolidatedReportFunction:
     Type: AWS::Serverless::Function
     Properties:
-      FunctionName: !Sub 'aiml-security-GenerateReport'
+      FunctionName: !Sub 'aiml-security-${AWS::StackName}-GenerateReport'
       CodeUri: functions/security/generate_consolidated_report/
       Handler: app.lambda_handler
       Runtime: python3.12
@@ -136,7 +146,7 @@ Resources:
   BedrockSecurityAssessmentFunction:
     Type: AWS::Serverless::Function
     Properties:
-      FunctionName: !Sub 'aiml-security-BedrockAssessment'
+      FunctionName: !Sub 'aiml-security-${AWS::StackName}-BedrockAssessment'
       CodeUri: functions/security/bedrock_assessments/
       Handler: app.lambda_handler
       Runtime: python3.12
@@ -229,7 +239,7 @@ Resources:
   SagemakerSecurityAssessmentFunction:
     Type: AWS::Serverless::Function
     Properties:
-      FunctionName: !Sub 'aiml-security-SagemakerAssessment'
+      FunctionName: !Sub 'aiml-security-${AWS::StackName}-SagemakerAssessment'
       CodeUri: functions/security/sagemaker_assessments/
       Handler: app.lambda_handler
       Runtime: python3.12
@@ -281,6 +291,7 @@ Resources:
                 - kms:ListAliases
                 - sagemaker:ListModelPackageGroups
                 - sagemaker:ListModelPackages
+                - sagemaker:DescribeModelPackage
                 - sagemaker:ListFeatureGroups
                 - sagemaker:DescribeFeatureGroup
                 - sagemaker:ListPipelines
@@ -295,6 +306,19 @@ Resources:
                 - sagemaker:DescribeEndpoint
                 - sagemaker:ListDataQualityJobDefinitions
                 - sagemaker:DescribeDataQualityJobDefinition
+                - sagemaker:ListTransformJobs
+                - sagemaker:DescribeTransformJob
+                - sagemaker:ListHyperParameterTuningJobs
+                - sagemaker:DescribeHyperParameterTuningJob
+                - sagemaker:ListCompilationJobs
+                - sagemaker:DescribeCompilationJob
+                - sagemaker:ListAutoMLJobs
+                - sagemaker:DescribeAutoMLJob
+                - sagemaker:ListExperiments
+                - sagemaker:DescribeExperiment
+                - sagemaker:ListTrials
+                - sagemaker:DescribeTrial
+                - sagemaker:ListAssociations
               Resource: '*'
         - Statement:
             - Sid: GuardDutyPermissions
@@ -323,7 +347,7 @@ Resources:
   AgentCoreSecurityAssessmentFunction:
     Type: AWS::Serverless::Function
     Properties:
-      FunctionName: !Sub 'aiml-security-AgentCoreAssessment'
+      FunctionName: !Sub 'aiml-security-${AWS::StackName}-AgentCoreAssessment'
       CodeUri: functions/security/agentcore_assessments/
       Handler: app.lambda_handler
       Runtime: python3.12
diff --git a/aiml-security-assessment/template.yaml b/aiml-security-assessment/template.yaml
index c9d7e7e..a055de6 100644
--- a/aiml-security-assessment/template.yaml
+++ b/aiml-security-assessment/template.yaml
@@ -13,6 +13,15 @@ Parameters:
       Comma-separated list of AWS regions to scan (e.g., us-east-1,us-west-2,eu-west-1).
       Use 'all' to scan all regions where the service is available.
       Leave empty to scan only the deployment region.
+  MaxRegionConcurrency:
+    Type: Number
+    Default: 5
+    MinValue: 1
+    MaxValue: 40
+    Description: >
+      Maximum number of regions scanned in parallel by the Map state. Lower
+      values reduce concurrent Lambda usage; higher values speed up large
+      multi-region scans. Set to 1 for fully sequential scanning.
 
 Resources:
   AIMLAssessmentStateMachine:
@@ -28,6 +37,7 @@ Resources:
         AgentCoreSecurityAssessmentFunction: !GetAtt AgentCoreSecurityAssessmentFunction.Arn
         GenerateConsolidatedReportFunction: !GetAtt GenerateConsolidatedReportFunction.Arn
         AIMLAssessmentBucketName: !Ref AIMLAssessmentBucket
+        MaxRegionConcurrency: !Ref MaxRegionConcurrency
       Policies:
         - LambdaInvokePolicy:
             FunctionName: !Ref CleanupBucketFunction
@@ -277,6 +287,7 @@ Resources:
                 - kms:ListAliases
                 - sagemaker:ListModelPackageGroups
                 - sagemaker:ListModelPackages
+                - sagemaker:DescribeModelPackage
                 - sagemaker:ListFeatureGroups
                 - sagemaker:DescribeFeatureGroup
                 - sagemaker:ListPipelines
@@ -291,6 +302,19 @@ Resources:
                 - sagemaker:DescribeEndpoint
                 - sagemaker:ListDataQualityJobDefinitions
                 - sagemaker:DescribeDataQualityJobDefinition
+                - sagemaker:ListTransformJobs
+                - sagemaker:DescribeTransformJob
+                - sagemaker:ListHyperParameterTuningJobs
+                - sagemaker:DescribeHyperParameterTuningJob
+                - sagemaker:ListCompilationJobs
+                - sagemaker:DescribeCompilationJob
+                - sagemaker:ListAutoMLJobs
+                - sagemaker:DescribeAutoMLJob
+                - sagemaker:ListExperiments
+                - sagemaker:DescribeExperiment
+                - sagemaker:ListTrials
+                - sagemaker:DescribeTrial
+                - sagemaker:ListAssociations
               Resource: '*'
         - Statement:
             - Sid: GuardDutyPermissions
diff --git a/consolidate_html_reports.py b/consolidate_html_reports.py
index 23d63a0..6a2d3b2 100644
--- a/consolidate_html_reports.py
+++ b/consolidate_html_reports.py
@@ -33,6 +33,16 @@
 
 from report_template import generate_html_report
 
+# Sentinel region label used by the per-service assessments to tag IAM-only
+# findings that run once per execution rather than per region. It is not a real
+# AWS region and must be excluded when counting scanned regions.
+GLOBAL_REGION_LABEL = "Global"
+
+
+def build_multi_account_report_key(timestamp: str) -> str:
+    """Build the consolidated multi-account HTML report object key."""
+    return f"consolidated-reports/security_assessment_multi_account_{timestamp}.html"
+
 
 def consolidate_html_reports():
     """
@@ -85,7 +95,8 @@ def consolidate_html_reports():
                         for row in reader:
                             # Map CSV columns to finding structure
                             region = row.get("Region", "")
-                            if region:
+                            # "Global" tags IAM-only findings; not a scanned region.
+                            if region and region != GLOBAL_REGION_LABEL:
                                 regions.add(region)
                             finding = {
                                 "account_id": account_id,
@@ -160,7 +171,7 @@ def consolidate_html_reports():
         )
 
         timestamp_file = datetime.now().strftime("%Y%m%d_%H%M%S")
-        s3_key = f"consolidated-reports/multi_account_report_{timestamp_file}.html"
+        s3_key = build_multi_account_report_key(timestamp_file)
 
         try:
             s3.put_object(
diff --git a/docs/DEVELOPER_GUIDE.md b/docs/DEVELOPER_GUIDE.md
index 24c3d42..6f9414e 100644
--- a/docs/DEVELOPER_GUIDE.md
+++ b/docs/DEVELOPER_GUIDE.md
@@ -44,7 +44,7 @@
 
 ## Architecture Overview
 
-The AI/ML Security Assessment Framework is a serverless, multi-account security assessment solution for AWS AI/ML workloads. It performs 51 security checks across Amazon Bedrock, Amazon SageMaker AI, and Amazon Bedrock AgentCore, generating interactive HTML reports with findings and remediation guidance.
+The AI/ML Security Assessment Framework is a serverless, multi-account security assessment solution for AWS AI/ML workloads. It performs 52 security checks across Amazon Bedrock, Amazon SageMaker AI, and Amazon Bedrock AgentCore, generating interactive HTML reports with findings and remediation guidance.
 
 ### Security Design Principles
 
@@ -168,7 +168,7 @@ sample-aiml-security-assessment/
     "Scan Regions": {
       "Type": "Map",
       "ItemsPath": "$.ResolvedRegions.regions",
-      "MaxConcurrency": 0,
+      "MaxConcurrency": "${MaxRegionConcurrency}",
       "ItemProcessor": {
         "ProcessorConfig": {"Mode": "INLINE"},
         "StartAt": "Run Security Assessments",
@@ -196,7 +196,7 @@ sample-aiml-security-assessment/
 
 ## Assessment Structure
 
-The framework includes **51 security checks** across three AI/ML services. For the complete list of checks with descriptions, see the [Security Checks Reference](SECURITY_CHECKS.md).
+The framework includes **52 security checks** across three AI/ML services. For the complete list of checks with descriptions, see the [Security Checks Reference](SECURITY_CHECKS.md).
 
 ### AWS Lambda Functions
 
@@ -531,7 +531,7 @@ For detailed troubleshooting guidance, common issues, and debugging tips, see th
 ## Development Roadmap
 
 ### Current Status
-- **AI/ML Assessment**: 51 security checks across three services (see [Security Checks Reference](SECURITY_CHECKS.md))
+- **AI/ML Assessment**: 52 security checks across three services (see [Security Checks Reference](SECURITY_CHECKS.md))
 
 ### Potential Additions
 - **Amazon Comprehend**: Data privacy, access controls, entity recognition security
diff --git a/docs/SECURITY_CHECKS.md b/docs/SECURITY_CHECKS.md
index ae1a624..323831f 100644
--- a/docs/SECURITY_CHECKS.md
+++ b/docs/SECURITY_CHECKS.md
@@ -1,6 +1,6 @@
 # Security Checks Reference
 
-This document provides a comprehensive reference for all 51 security checks performed by the AI/ML Security Assessment framework.
+This document provides a comprehensive reference for all 52 security checks performed by the AI/ML Security Assessment framework.
 
 ## Table of Contents
 
@@ -9,7 +9,7 @@ This document provides a comprehensive reference for all 51 security checks perf
 - [Severity Levels](#severity-levels)
 - [Status Values](#status-values)
 - [Amazon SageMaker AI Security Checks (25)](#amazon-sagemaker-ai-security-checks-25)
-- [Amazon Bedrock Security Checks (13)](#amazon-bedrock-security-checks-13)
+- [Amazon Bedrock Security Checks (14)](#amazon-bedrock-security-checks-14)
 - [Amazon Bedrock AgentCore Security Checks (13)](#amazon-bedrock-agentcore-security-checks-13)
 
 ---
@@ -21,7 +21,7 @@ The framework evaluates your AI/ML workloads against AWS security best practices
 | Service | Number of Checks | Focus Areas |
 |---------|------------------|-------------|
 | Amazon SageMaker AI | 25 | Security Hub controls, encryption, network isolation, IAM, MLOps |
-| Amazon Bedrock | 13 | Guardrails, encryption, VPC endpoints, IAM permissions, logging |
+| Amazon Bedrock | 14 | Guardrails, encryption, VPC endpoints, IAM permissions, logging |
 | Amazon Bedrock AgentCore | 13 | VPC configuration, encryption, observability, resource policies |
 
 ---
@@ -33,7 +33,7 @@ Each security check has a unique identifier with a service prefix:
 | Prefix | Service | Example |
 |--------|---------|---------|
 | **SM-XX** | Amazon SageMaker | SM-01, SM-25 |
-| **BR-XX** | Amazon Bedrock | BR-01, BR-13 |
+| **BR-XX** | Amazon Bedrock | BR-01, BR-14 |
 | **AC-XX** | Amazon Bedrock AgentCore | AC-01, AC-13 |
 
 ---
@@ -195,7 +195,7 @@ Each security check has a unique identifier with a service prefix:
 
 ---
 
-## Amazon Bedrock Security Checks (13)
+## Amazon Bedrock Security Checks (14)
 
 ### BR-01: AWS IAM Least Privilege
 
@@ -262,6 +262,11 @@ Each security check has a unique identifier with a service prefix:
 - **Severity:** Medium
 - **Description:** Validates Bedrock Flows have guardrails attached.
 
+### BR-14: Stale Bedrock Access
+
+- **Severity:** Medium
+- **Description:** Detects principals with Bedrock permissions that have not used the service recently, using IAM service-last-accessed data. As an IAM-global check, it runs once per execution and is tagged with the `Global` region in multi-region scans.
+
 ---
 
 ## Amazon Bedrock AgentCore Security Checks (13)
diff --git a/docs/TROUBLESHOOTING.md b/docs/TROUBLESHOOTING.md
index 486bd58..21ba9ff 100644
--- a/docs/TROUBLESHOOTING.md
+++ b/docs/TROUBLESHOOTING.md
@@ -335,14 +335,14 @@ A: All assessment data remains **entirely within your AWS account**:
 - Logs in **your Amazon CloudWatch Logs** (configurable retention)
 - No data is sent to external services or third parties
 
-**Q: What IAM permissions does the assessment role need?**
+**Q: What IAM permissions does the framework need?**
 
-A: The framework uses **read-only permissions** only:
-- AI/ML services: `List*`, `Describe*`, `Get*` actions
-- AWS IAM: Read permissions for policy analysis
-- Supporting services: AWS CloudTrail, Amazon GuardDuty, Amazon VPC (read-only)
+A: The framework uses multiple roles, and only the Lambda runtime roles are close to read-only:
+- **CodeBuild orchestration roles** (`CodeBuildRole`, `MultiAccountCodeBuildRole`) need deployment permissions to build SAM, create or update stacks, and start Step Functions executions.
+- **`AIMLSecurityMemberRole`** in the target account is also not read-only in the multi-account flow, because it must allow the central CodeBuild project to deploy or update the per-account SAM stack before the assessment runs.
+- **Assessment Lambda execution roles** are primarily read-oriented. They use AI/ML service `List*`, `Describe*`, and `Get*` APIs plus supporting read APIs, and S3 access to read the IAM cache and write reports.
 
-See the main [README](../README.md#permissions-required) for the complete permission list.
+See [README - Permissions Required](../README.md#permissions-required) for the role breakdown and the template files that define each policy.
 
 **Q: Is this assessment sufficient for compliance requirements (SOC 2, HIPAA, and similar)?**
 
diff --git a/tests/conftest.py b/tests/conftest.py
index b459b03..a08be64 100644
--- a/tests/conftest.py
+++ b/tests/conftest.py
@@ -266,6 +266,10 @@ def assert_finding_schema(finding):
         "Reference",
         "Severity",
         "Status",
+        # Region is part of the multi-region finding schema. Every finding
+        # produced via create_finding() must carry it (may be an empty string
+        # when a check is invoked without a region).
+        "Region",
     }
     assert required_keys.issubset(finding.keys()), (
         f"Missing keys: {required_keys - finding.keys()}"
@@ -273,3 +277,5 @@ def assert_finding_schema(finding):
     assert finding["Severity"] in ("High", "Medium", "Low", "Informational")
     assert finding["Status"] in ("Failed", "Passed", "N/A")
     assert finding["Reference"].startswith("https://")
+    # Region must be a string (default "" when unset).
+    assert isinstance(finding["Region"], str)
diff --git a/tests/test_agentcore_checks.py b/tests/test_agentcore_checks.py
index 547588e..0cce9b8 100644
--- a/tests/test_agentcore_checks.py
+++ b/tests/test_agentcore_checks.py
@@ -17,8 +17,8 @@
 import sys
 import os
 import importlib.util
-from unittest.mock import patch
-from botocore.exceptions import ClientError
+from unittest.mock import patch, MagicMock
+from botocore.exceptions import ClientError, EndpointConnectionError
 
 sys.path.insert(0, "aiml-security-assessment/functions/security/agentcore_assessments")
 sys.path.insert(0, os.path.join(os.path.dirname(__file__)))
@@ -599,3 +599,161 @@ def test_ac13_schema_valid(self):
         result = agentcore_app.check_agentcore_gateway_configuration()
         for f in extract_csv_data(result):
             assert_finding_schema(f)
+
+
+# ===================================================================
+# lambda_handler: multi-region gating and availability probe
+# ===================================================================
+def _agentcore_event(region="us-east-1", region_index=0):
+    return {
+        "Region": region,
+        "RegionIndex": region_index,
+        "Execution": {"Name": "test-execution-1"},
+        "StateMachine": {"Name": "test-sm"},
+    }
+
+
+def _valid_slr_role():
+    """A valid service-linked-role get_role response so AC-09 passes cleanly."""
+    return {
+        "Role": {
+            "RoleName": "AWSServiceRoleForBedrockAgentCoreNetwork",
+            "AssumeRolePolicyDocument": {
+                "Statement": [
+                    {
+                        "Effect": "Allow",
+                        "Principal": {"Service": "agentcore.bedrock.amazonaws.com"},
+                        "Action": "sts:AssumeRole",
+                    }
+                ]
+            },
+        }
+    }
+
+
+class TestAgentCoreHandlerMultiRegion:
+    """lambda_handler primary-region gating (AC-02/AC-03/AC-09) + availability probe (AC-00)."""
+
+    def _run_handler(self, agentcore_side_effect, event):
+        """Run the handler with a per-service boto3.client dispatch. The
+        bedrock-agentcore-control probe (list_agent_runtimes) uses
+        agentcore_side_effect to simulate availability; iam is given a valid SLR
+        response. Returns (response, findings) where findings is the flat list
+        passed to generate_csv_report."""
+        captured = {}
+
+        def fake_csv(findings):
+            captured["findings"] = findings
+            return "csv"
+
+        iam_mock = MagicMock()
+        iam_mock.get_role.return_value = _valid_slr_role()
+        iam_mock.exceptions.NoSuchEntityException = type(
+            "NoSuchEntityException", (Exception,), {}
+        )
+
+        sts_mock = MagicMock()
+        sts_mock.get_caller_identity.return_value = {"Account": "123456789012"}
+
+        agentcore_mock = MagicMock()
+        agentcore_mock.list_agent_runtimes.side_effect = agentcore_side_effect
+
+        def client_dispatch(service, *args, **kwargs):
+            if service == "iam":
+                return iam_mock
+            if service == "sts":
+                return sts_mock
+            if service == "bedrock-agentcore-control":
+                return agentcore_mock
+            return MagicMock()
+
+        with patch("agentcore_app.boto3.client", side_effect=client_dispatch), \
+                patch.object(agentcore_app, "get_permissions_cache", return_value={
+                    "role_permissions": {}, "user_permissions": {}
+                }), \
+                patch.object(agentcore_app, "generate_csv_report", side_effect=fake_csv), \
+                patch.object(agentcore_app, "write_to_s3", return_value="s3://b/r.csv"):
+            resp = agentcore_app.lambda_handler(event, None)
+
+        return resp, captured.get("findings", [])
+
+    def test_primary_region_emits_global_iam_checks_tagged_global(self):
+        # On the primary region, AC-02, AC-03 and AC-09 (all IAM-global) must be
+        # emitted and tagged "Global", even when AgentCore is unavailable.
+        resp, findings = self._run_handler(
+            EndpointConnectionError(endpoint_url="https://agentcore.invalid"),
+            _agentcore_event(region="ap-south-2", region_index=0),
+        )
+        assert resp["statusCode"] == 200
+
+        check_ids = {f["Check_ID"] for f in findings}
+        assert "AC-02" in check_ids
+        assert "AC-03" in check_ids
+        assert "AC-09" in check_ids
+        for f in findings:
+            if f["Check_ID"] in ("AC-02", "AC-03", "AC-09"):
+                assert f["Region"] == "Global"
+        # The availability finding is tagged with the scanned region.
+        ac00 = [f for f in findings if f["Check_ID"] == "AC-00"]
+        assert ac00 and ac00[0]["Region"] == "ap-south-2"
+
+    def test_non_primary_region_skips_global_iam_checks(self):
+        # On a non-primary region the IAM-global checks must NOT run.
+        resp, findings = self._run_handler(
+            EndpointConnectionError(endpoint_url="https://agentcore.invalid"),
+            _agentcore_event(region="eu-west-1", region_index=3),
+        )
+        assert resp["statusCode"] == 200
+
+        check_ids = {f["Check_ID"] for f in findings}
+        assert "AC-02" not in check_ids
+        assert "AC-03" not in check_ids
+        assert "AC-09" not in check_ids
+        assert check_ids == {"AC-00"}
+
+    def test_optin_region_error_treated_as_unavailable(self):
+        # A region-not-enabled ClientError code makes agentcore_client None, so
+        # the handler emits the AC-00 availability finding and exits early.
+        resp, findings = self._run_handler(
+            _make_client_error("UnrecognizedClientException"),
+            _agentcore_event(region="me-south-1", region_index=1),
+        )
+        assert resp["statusCode"] == 200
+        ac00 = [f for f in findings if f["Check_ID"] == "AC-00"]
+        assert ac00 and ac00[0]["Status"] == "N/A"
+
+    def test_access_denied_probe_proceeds_with_checks(self):
+        # AccessDenied is NOT a region-unavailable code: the service is reachable,
+        # so the handler proceeds and runs regional checks (no AC-00 emitted).
+        resp, findings = self._run_handler(
+            _make_client_error("AccessDeniedException"),
+            _agentcore_event(region="us-east-1", region_index=0),
+        )
+        assert resp["statusCode"] == 200
+        check_ids = {f["Check_ID"] for f in findings}
+        assert "AC-00" not in check_ids
+        # Regional checks ran (e.g. AC-01 VPC, AC-04 observability present).
+        assert len(check_ids) > 3
+
+    def test_unexpected_probe_error_proceeds_with_checks(self):
+        # An unexpected, non-ClientError probe failure (e.g. a boto3/botocore SDK
+        # param/operation mismatch surfacing as ParamValidationError) says nothing
+        # about regional availability. The handler must NOT treat it as
+        # unavailable (which would emit a false AC-00 N/A and skip every check);
+        # it should proceed and run the regional checks.
+        try:
+            from botocore.exceptions import ParamValidationError
+
+            probe_error = ParamValidationError(report="maxResults is not a valid parameter")
+        except Exception:
+            probe_error = TypeError("unexpected SDK signature")
+
+        resp, findings = self._run_handler(
+            probe_error,
+            _agentcore_event(region="us-east-1", region_index=0),
+        )
+        assert resp["statusCode"] == 200
+        check_ids = {f["Check_ID"] for f in findings}
+        # No false "not available" finding, and the regional checks executed.
+        assert "AC-00" not in check_ids
+        assert len(check_ids) > 3
diff --git a/tests/test_bedrock_checks.py b/tests/test_bedrock_checks.py
index c201d22..0c5a592 100644
--- a/tests/test_bedrock_checks.py
+++ b/tests/test_bedrock_checks.py
@@ -13,6 +13,7 @@
 import os
 import importlib.util
 from unittest.mock import patch, MagicMock
+from botocore.exceptions import EndpointConnectionError, ClientError
 
 # Add tests dir so we can import helpers
 sys.path.insert(0, os.path.join(os.path.dirname(__file__)))
@@ -431,6 +432,22 @@ def test_br07_exception_returns_error_finding(self, mock_client):
         assert len(findings) >= 1
         assert findings[0]["Status"] == "Failed"
 
+    @patch("boto3.client")
+    def test_br07_list_prompts_api_error_returns_na(self, mock_client):
+        # An API error (e.g. InternalServerErrorException after retries) is not a
+        # security failure; it should surface as N/A, not Failed (matches BR-11).
+        check = bedrock_app.check_bedrock_prompt_management
+        mock_agent = MagicMock()
+        mock_client.return_value = mock_agent
+        mock_agent.list_prompts.side_effect = Exception(
+            "InternalServerErrorException"
+        )
+        result = check()
+        findings = extract_csv_data(result)
+        assert len(findings) >= 1
+        assert findings[0]["Status"] == "N/A"
+        assert findings[0]["Check_ID"] == "BR-07"
+
     @patch("boto3.client")
     def test_br07_schema_valid(self, mock_client):
         check = bedrock_app.check_bedrock_prompt_management
@@ -699,6 +716,40 @@ def test_br11_schema_valid(self, mock_client):
         for f in extract_csv_data(result):
             assert_finding_schema(f)
 
+    @patch("boto3.client")
+    def test_br11_unknown_operation_returns_clean_message(self, mock_client):
+        # Regions without the custom model API surface "Unknown operation
+        # ListCustomModels" / UnknownOperationException; report a clean message
+        # instead of leaking the raw boto3 exception text.
+        check = bedrock_app.check_bedrock_custom_model_encryption
+        mock_bedrock = MagicMock()
+        mock_client.return_value = mock_bedrock
+        mock_bedrock.get_paginator.side_effect = Exception(
+            "ValidationException: Unknown operation ListCustomModels"
+        )
+        result = check(region="us-west-1")
+        findings = extract_csv_data(result)
+        assert len(findings) >= 1
+        assert findings[0]["Status"] == "N/A"
+        assert (
+            findings[0]["Finding_Details"]
+            == "Custom model API not available in us-west-1"
+        )
+
+    @patch("boto3.client")
+    def test_br11_other_list_error_preserves_raw_message(self, mock_client):
+        # Genuine errors (e.g. permissions) keep the raw text so they stay
+        # diagnosable.
+        check = bedrock_app.check_bedrock_custom_model_encryption
+        mock_bedrock = MagicMock()
+        mock_client.return_value = mock_bedrock
+        mock_bedrock.get_paginator.side_effect = Exception("AccessDeniedException")
+        result = check(region="us-east-1")
+        findings = extract_csv_data(result)
+        assert len(findings) >= 1
+        assert findings[0]["Status"] == "N/A"
+        assert "AccessDeniedException" in findings[0]["Finding_Details"]
+
 
 # ===================================================================
 # BR-12: check_bedrock_invocation_log_encryption
@@ -908,3 +959,199 @@ def test_br13_schema_valid(self, mock_client):
         result = check()
         for f in extract_csv_data(result):
             assert_finding_schema(f)
+
+    @patch("boto3.client")
+    def test_br13_unknown_operation_returns_clean_message(self, mock_client):
+        # Regions without the Flows API surface an "Unknown operation" error;
+        # report a clean message instead of leaking the raw boto3 text.
+        check = bedrock_app.check_bedrock_flows_guardrails
+        mock_agent = MagicMock()
+        mock_client.return_value = mock_agent
+        mock_agent.get_paginator.side_effect = Exception(
+            "UnknownOperationException"
+        )
+        result = check(region="us-west-1")
+        findings = extract_csv_data(result)
+        assert len(findings) >= 1
+        assert findings[0]["Status"] == "N/A"
+        assert (
+            findings[0]["Finding_Details"]
+            == "Bedrock Flows API not available in us-west-1"
+        )
+
+
+# ===================================================================
+# describe_api_error helper
+# ===================================================================
+class TestDescribeApiError:
+    """Shared helper that maps region-unavailability errors to clean text."""
+
+    def test_unknown_operation_phrase_returns_clean_message(self):
+        msg = bedrock_app.describe_api_error(
+            Exception("ValidationException: Unknown operation ListPrompts"),
+            "Bedrock Prompt Management API",
+            "us-east-2",
+        )
+        assert msg == "Bedrock Prompt Management API not available in us-east-2"
+
+    def test_unknown_operation_exception_returns_clean_message(self):
+        msg = bedrock_app.describe_api_error(
+            Exception("UnknownOperationException"), "Custom model API", "us-west-1"
+        )
+        assert msg == "Custom model API not available in us-west-1"
+
+    def test_missing_region_falls_back_to_generic_location(self):
+        msg = bedrock_app.describe_api_error(
+            Exception("Unknown operation Foo"), "Custom model API"
+        )
+        assert msg == "Custom model API not available in this region"
+
+    def test_other_error_preserves_raw_text(self):
+        msg = bedrock_app.describe_api_error(
+            Exception("AccessDeniedException"), "Custom model API", "us-east-1"
+        )
+        assert msg == "Unable to check Custom model API: AccessDeniedException"
+
+
+# ===================================================================
+# lambda_handler: multi-region gating and availability probe
+# ===================================================================
+def _make_client_error(code, message="error"):
+    return ClientError({"Error": {"Code": code, "Message": message}}, "operation")
+
+
+def _bedrock_event(region="us-east-1", region_index=0):
+    return {
+        "Region": region,
+        "RegionIndex": region_index,
+        "Execution": {"Name": "test-execution-1"},
+        "StateMachine": {"Name": "test-sm"},
+    }
+
+
+class TestBedrockHandlerMultiRegion:
+    """lambda_handler primary-region gating + availability probe (BR-00/BR-01/BR-03)."""
+
+    def _run_handler_unavailable(self, mock_client, event):
+        """Drive the handler down the 'Bedrock unavailable' early-return path and
+        return the findings captured via generate_csv_report. The availability
+        probe raises EndpointConnectionError so no regional checks run."""
+        captured = {}
+
+        def fake_csv(findings):
+            captured["findings"] = findings
+            return "csv"
+
+        test_client = MagicMock()
+        test_client.get_model_invocation_logging_configuration.side_effect = (
+            EndpointConnectionError(endpoint_url="https://bedrock.invalid")
+        )
+        mock_client.return_value = test_client
+
+        with patch.object(bedrock_app, "get_permissions_cache", return_value={
+            "role_permissions": {}, "user_permissions": {}
+        }), patch.object(bedrock_app, "generate_csv_report", side_effect=fake_csv), \
+                patch.object(bedrock_app, "write_to_s3", return_value="s3://bucket/report.csv"):
+            resp = bedrock_app.lambda_handler(event, None)
+
+        return resp, captured.get("findings", [])
+
+    @patch("bedrock_app.boto3.client")
+    def test_primary_region_emits_global_iam_checks_tagged_global(self, mock_client):
+        # On the primary region, BR-01 and BR-03 (IAM-global) must be emitted and
+        # tagged "Global", even when Bedrock itself is unavailable in the region.
+        resp, findings = self._run_handler_unavailable(
+            mock_client, _bedrock_event(region="ap-south-2", region_index=0)
+        )
+        assert resp["statusCode"] == 200
+
+        rows = [r for f in findings for r in f.get("csv_data", [])]
+        check_ids = {r["Check_ID"] for r in rows}
+        assert "BR-01" in check_ids
+        assert "BR-03" in check_ids
+        # Every global IAM finding is tagged Global, not the scanned region.
+        for r in rows:
+            if r["Check_ID"] in ("BR-01", "BR-03"):
+                assert r["Region"] == "Global"
+        # The availability finding itself is tagged with the scanned region.
+        br00 = [r for r in rows if r["Check_ID"] == "BR-00"]
+        assert br00 and br00[0]["Region"] == "ap-south-2"
+
+    @patch("bedrock_app.boto3.client")
+    def test_non_primary_region_skips_global_iam_checks(self, mock_client):
+        # On a non-primary region (index > 0), the IAM-global checks must NOT run,
+        # so they are not duplicated once per scanned region.
+        resp, findings = self._run_handler_unavailable(
+            mock_client, _bedrock_event(region="eu-west-1", region_index=1)
+        )
+        assert resp["statusCode"] == 200
+
+        rows = [r for f in findings for r in f.get("csv_data", [])]
+        check_ids = {r["Check_ID"] for r in rows}
+        assert "BR-01" not in check_ids
+        assert "BR-03" not in check_ids
+        # Only the BR-00 availability finding should be present.
+        assert check_ids == {"BR-00"}
+
+    @patch("bedrock_app.boto3.client")
+    def test_optin_region_error_treated_as_unavailable(self, mock_client):
+        # A region-not-enabled error code (e.g. UnrecognizedClientException) is
+        # treated like an endpoint failure: emit a single BR-00 N/A finding.
+        captured = {}
+
+        def fake_csv(findings):
+            captured["findings"] = findings
+            return "csv"
+
+        test_client = MagicMock()
+        test_client.get_model_invocation_logging_configuration.side_effect = (
+            _make_client_error("UnrecognizedClientException")
+        )
+        mock_client.return_value = test_client
+
+        with patch.object(bedrock_app, "get_permissions_cache", return_value={
+            "role_permissions": {}, "user_permissions": {}
+        }), patch.object(bedrock_app, "generate_csv_report", side_effect=fake_csv), \
+                patch.object(bedrock_app, "write_to_s3", return_value="s3://b/r.csv"):
+            resp = bedrock_app.lambda_handler(
+                _bedrock_event(region="me-south-1", region_index=1), None
+            )
+
+        assert resp["statusCode"] == 200
+        rows = [r for f in captured["findings"] for r in f.get("csv_data", [])]
+        br00 = [r for r in rows if r["Check_ID"] == "BR-00"]
+        assert br00 and br00[0]["Status"] == "N/A"
+        assert "me-south-1" in br00[0]["Finding_Details"]
+
+    @patch("bedrock_app.boto3.client")
+    def test_validation_exception_proceeds_with_checks(self, mock_client):
+        # A ValidationException from the probe means logging simply isn't
+        # configured — the service IS reachable, so the handler must NOT short
+        # circuit; it should run the regional checks (no BR-00 finding emitted).
+        captured = {}
+
+        def fake_csv(findings):
+            captured["findings"] = findings
+            return "csv"
+
+        test_client = MagicMock()
+        test_client.get_model_invocation_logging_configuration.side_effect = (
+            _make_client_error("ValidationException")
+        )
+        mock_client.return_value = test_client
+
+        with patch.object(bedrock_app, "get_permissions_cache", return_value={
+            "role_permissions": {}, "user_permissions": {}
+        }), patch.object(bedrock_app, "generate_csv_report", side_effect=fake_csv), \
+                patch.object(bedrock_app, "write_to_s3", return_value="s3://b/r.csv"):
+            resp = bedrock_app.lambda_handler(
+                _bedrock_event(region="us-east-1", region_index=0), None
+            )
+
+        assert resp["statusCode"] == 200
+        rows = [r for f in captured["findings"] for r in f.get("csv_data", [])]
+        check_ids = {r["Check_ID"] for r in rows}
+        # Service reachable => no availability (BR-00) finding, and regional
+        # checks ran (e.g. BR-04 logging, BR-05 guardrails are present).
+        assert "BR-00" not in check_ids
+        assert len(check_ids) > 3
diff --git a/tests/test_consolidated_report.py b/tests/test_consolidated_report.py
new file mode 100644
index 0000000..16c8ac3
--- /dev/null
+++ b/tests/test_consolidated_report.py
@@ -0,0 +1,207 @@
+"""
+Tests for the consolidated report generator's finding aggregation.
+
+Focus: multi-region dedup. Global/IAM findings (Region == "Global") are
+produced once per run by the primary-region Lambda, but the consolidator must
+not double-count a finding even if it ever lands in more than one region's CSV
+(e.g. RegionIndex missing from the event). Regional findings that differ only
+by Region must NOT be collapsed.
+"""
+
+import sys
+import os
+import importlib.util
+
+# The consolidator imports `report_template` as a top-level module, so its
+# directory must be on sys.path before app.py is loaded.
+_report_dir = os.path.abspath(
+    os.path.join(
+        os.path.dirname(__file__),
+        "..",
+        "aiml-security-assessment/functions/security/generate_consolidated_report",
+    )
+)
+if _report_dir not in sys.path:
+    sys.path.insert(0, _report_dir)
+
+_spec = importlib.util.spec_from_file_location(
+    "consolidated_report_app", os.path.join(_report_dir, "app.py")
+)
+consolidated_app = importlib.util.module_from_spec(_spec)
+sys.modules["consolidated_report_app"] = consolidated_app
+_spec.loader.exec_module(consolidated_app)
+
+
+def _finding(check_id, region, status="Failed", details=None, name="Test Finding"):
+    """Build a CSV-style finding row as parsed from a per-region report."""
+    return {
+        "Check_ID": check_id,
+        "Finding": name,
+        "Finding_Details": details if details is not None else f"{check_id} details",
+        "Resolution": "Do the thing",
+        "Reference": "https://docs.aws.amazon.com/",
+        "Severity": "High",
+        "Status": status,
+        "Region": region,
+    }
+
+
+def _build_results(bedrock_reports):
+    """Wrap per-file finding lists into the assessment_results structure."""
+    return {
+        "execution_id": "exec-123",
+        "account_id": "111122223333",
+        "bedrock": bedrock_reports,
+        "sagemaker": {},
+        "agentcore": {},
+    }
+
+
+class TestGlobalFindingDedup:
+    """A duplicated global finding across region files is counted once."""
+
+    def test_global_finding_in_multiple_region_files_counted_once(self, monkeypatch):
+        captured = {}
+
+        def fake_template(**kwargs):
+            captured.update(kwargs)
+            return "<html></html>"
+
+        monkeypatch.setattr(consolidated_app, "generate_report_from_template", fake_template)
+
+        # Same global BR-01 finding written into two different region files.
+        results = _build_results(
+            {
+                "bedrock_security_report_exec-123_us-east-1": [
+                    _finding("BR-01", "Global"),
+                ],
+                "bedrock_security_report_exec-123_us-west-2": [
+                    _finding("BR-01", "Global"),
+                ],
+            }
+        )
+
+        consolidated_app.generate_html_report(results)
+
+        all_findings = captured["all_findings"]
+        br01 = [f for f in all_findings if f["Check_ID"] == "BR-01"]
+        assert len(br01) == 1, "Duplicated global finding should be deduped to one"
+        assert captured["service_stats"]["bedrock"]["failed"] == 1
+
+    def test_regional_findings_differing_by_region_are_kept(self, monkeypatch):
+        captured = {}
+        monkeypatch.setattr(
+            consolidated_app,
+            "generate_report_from_template",
+            lambda **kwargs: captured.update(kwargs) or "<html></html>",
+        )
+
+        # Same check id but genuinely per-region findings -> must both survive.
+        results = _build_results(
+            {
+                "bedrock_security_report_exec-123_us-east-1": [
+                    _finding("BR-05", "us-east-1"),
+                ],
+                "bedrock_security_report_exec-123_us-west-2": [
+                    _finding("BR-05", "us-west-2"),
+                ],
+            }
+        )
+
+        consolidated_app.generate_html_report(results)
+
+        br05 = [f for f in captured["all_findings"] if f["Check_ID"] == "BR-05"]
+        assert len(br05) == 2, "Distinct regional findings must not be collapsed"
+        assert captured["service_stats"]["bedrock"]["failed"] == 2
+        assert set(captured["regions"]) == {"us-east-1", "us-west-2"}
+
+    def test_distinct_findings_same_region_are_kept(self, monkeypatch):
+        captured = {}
+        monkeypatch.setattr(
+            consolidated_app,
+            "generate_report_from_template",
+            lambda **kwargs: captured.update(kwargs) or "<html></html>",
+        )
+
+        # Same check id and region but different details (e.g. two flagged roles).
+        results = _build_results(
+            {
+                "bedrock_security_report_exec-123_us-east-1": [
+                    _finding("BR-01", "Global", details="Role A is over-permissive"),
+                    _finding("BR-01", "Global", details="Role B is over-permissive"),
+                ],
+            }
+        )
+
+        consolidated_app.generate_html_report(results)
+
+        br01 = [f for f in captured["all_findings"] if f["Check_ID"] == "BR-01"]
+        assert len(br01) == 2, "Findings differing by detail must be kept"
+
+
+class TestRegionCounting:
+    """The "Global" sentinel (IAM-only findings) must not be counted as a
+    scanned region — otherwise a default single-region scan renders as
+    multi-region (region filter, "Risk by Region", "N Regions" header)."""
+
+    def _capture(self, monkeypatch):
+        captured = {}
+        monkeypatch.setattr(
+            consolidated_app,
+            "generate_report_from_template",
+            lambda **kwargs: captured.update(kwargs) or "<html></html>",
+        )
+        return captured
+
+    def test_global_only_does_not_count_as_region(self, monkeypatch):
+        # Default single-region scan: one real region plus the IAM-global finding.
+        captured = self._capture(monkeypatch)
+        results = _build_results(
+            {
+                "bedrock_security_report_exec-123_us-east-1": [
+                    _finding("BR-01", "Global"),
+                    _finding("BR-05", "us-east-1", status="Passed"),
+                ],
+            }
+        )
+
+        consolidated_app.generate_html_report(results)
+
+        # Only the real region is counted; "Global" is excluded.
+        assert captured["regions"] == ["us-east-1"]
+        assert "Global" not in captured["regions"]
+
+    def test_genuine_multi_region_still_counted(self, monkeypatch):
+        # Two real regions plus a global finding -> still multi-region.
+        captured = self._capture(monkeypatch)
+        results = _build_results(
+            {
+                "bedrock_security_report_exec-123_us-east-1": [
+                    _finding("BR-01", "Global"),
+                    _finding("BR-05", "us-east-1", status="Passed"),
+                ],
+                "bedrock_security_report_exec-123_us-west-2": [
+                    _finding("BR-05", "us-west-2", status="Passed"),
+                ],
+            }
+        )
+
+        consolidated_app.generate_html_report(results)
+
+        assert set(captured["regions"]) == {"us-east-1", "us-west-2"}
+
+    def test_global_only_yields_no_regions(self, monkeypatch):
+        # Every region unavailable: only global findings exist. regions -> None
+        # so the report shows no multi-region UI rather than a "Global" region.
+        captured = self._capture(monkeypatch)
+        results = _build_results(
+            {
+                "bedrock_security_report_exec-123_us-east-1": [
+                    _finding("BR-01", "Global"),
+                ],
+            }
+        )
+
+        consolidated_app.generate_html_report(results)
+
+        assert captured["regions"] is None
diff --git a/tests/test_report_filenames.py b/tests/test_report_filenames.py
new file mode 100644
index 0000000..e98f770
--- /dev/null
+++ b/tests/test_report_filenames.py
@@ -0,0 +1,48 @@
+import importlib.util
+import os
+import sys
+
+
+REPO_ROOT = os.path.abspath(os.path.join(os.path.dirname(__file__), ".."))
+REPORT_APP_DIR = os.path.join(
+    REPO_ROOT,
+    "aiml-security-assessment",
+    "functions",
+    "security",
+    "generate_consolidated_report",
+)
+
+if REPORT_APP_DIR not in sys.path:
+    sys.path.insert(0, REPORT_APP_DIR)
+
+
+def _load_module(name: str, path: str):
+    spec = importlib.util.spec_from_file_location(name, path)
+    module = importlib.util.module_from_spec(spec)
+    sys.modules[name] = module
+    spec.loader.exec_module(module)
+    return module
+
+
+single_report_app = _load_module(
+    "single_report_app",
+    os.path.join(REPORT_APP_DIR, "app.py"),
+)
+multi_report_app = _load_module(
+    "multi_report_app",
+    os.path.join(REPO_ROOT, "consolidate_html_reports.py"),
+)
+
+
+def test_single_account_report_filename_does_not_include_execution_id():
+    key = single_report_app.build_single_account_report_key("20260614_120000")
+    assert key == "security_assessment_single_account_20260614_120000.html"
+    assert "exec" not in key
+
+
+def test_multi_account_report_filename_uses_consistent_prefix():
+    key = multi_report_app.build_multi_account_report_key("20260614_120000")
+    assert (
+        key
+        == "consolidated-reports/security_assessment_multi_account_20260614_120000.html"
+    )
diff --git a/tests/test_sagemaker_checks.py b/tests/test_sagemaker_checks.py
index f226273..923428a 100644
--- a/tests/test_sagemaker_checks.py
+++ b/tests/test_sagemaker_checks.py
@@ -13,6 +13,7 @@
 import os
 import importlib.util
 from unittest.mock import patch, MagicMock
+from botocore.exceptions import EndpointConnectionError, ClientError
 
 sys.path.insert(0, os.path.join(os.path.dirname(__file__)))
 from conftest import extract_csv_data, assert_finding_schema
@@ -163,6 +164,71 @@ def test_sm02_schema_valid(self, empty_permission_cache):
         for f in extract_csv_data(result):
             assert_finding_schema(f)
 
+    def test_sm02_iam_check_does_not_query_domains(
+        self, permission_cache_sagemaker_full_access
+    ):
+        # The IAM-global SM-02 check must NOT call regional SageMaker domain APIs;
+        # domain/SSO inspection lives in check_sagemaker_sso_configuration so it is
+        # not duplicated per region. Only IAM findings should be produced here.
+        check = sagemaker_app.check_sagemaker_iam_permissions
+        result = check(permission_cache_sagemaker_full_access, region="Global")
+        findings = extract_csv_data(result)
+        # No SSO finding should be emitted from the IAM-global check
+        assert all("SSO" not in f["Finding"] for f in findings)
+
+
+# ===================================================================
+# SM-02b: check_sagemaker_sso_configuration (regional)
+# ===================================================================
+class TestSM02SSOConfiguration:
+    """SM-02: Regional SageMaker domain SSO configuration check."""
+
+    @patch("sagemaker_app.boto3.client")
+    def test_sso_no_domains_returns_passed(self, mock_client):
+        check = sagemaker_app.check_sagemaker_sso_configuration
+        mock_sm = MagicMock()
+        mock_client.return_value = mock_sm
+        mock_paginator = MagicMock()
+        mock_paginator.paginate.return_value = [{"Domains": []}]
+        mock_sm.get_paginator.return_value = mock_paginator
+        result = check(region="us-east-1")
+        findings = extract_csv_data(result)
+        assert len(findings) >= 1
+        assert findings[0]["Check_ID"] == "SM-02"
+        assert findings[0]["Status"] == "Passed"
+
+    @patch("sagemaker_app.boto3.client")
+    def test_sso_non_sso_domain_returns_failed(self, mock_client):
+        check = sagemaker_app.check_sagemaker_sso_configuration
+        mock_sm = MagicMock()
+        mock_client.return_value = mock_sm
+        mock_paginator = MagicMock()
+        mock_paginator.paginate.return_value = [
+            {"Domains": [{"DomainId": "d-123"}]}
+        ]
+        mock_sm.get_paginator.return_value = mock_paginator
+        mock_sm.describe_domain.return_value = {
+            "DomainName": "test-domain",
+            "AuthMode": "IAM",
+        }
+        result = check(region="us-east-1")
+        findings = extract_csv_data(result)
+        assert len(findings) >= 1
+        assert findings[0]["Status"] == "Failed"
+        assert "SSO" in findings[0]["Finding"]
+
+    @patch("sagemaker_app.boto3.client")
+    def test_sso_schema_valid(self, mock_client):
+        check = sagemaker_app.check_sagemaker_sso_configuration
+        mock_sm = MagicMock()
+        mock_client.return_value = mock_sm
+        mock_paginator = MagicMock()
+        mock_paginator.paginate.return_value = [{"Domains": []}]
+        mock_sm.get_paginator.return_value = mock_paginator
+        result = check(region="us-east-1")
+        for f in extract_csv_data(result):
+            assert_finding_schema(f)
+
 
 # ===================================================================
 # SM-03: check_sagemaker_data_protection
@@ -1325,3 +1391,140 @@ def test_sm25_schema_valid(self, mock_client):
         result = check()
         for f in extract_csv_data(result):
             assert_finding_schema(f)
+
+
+# ===================================================================
+# lambda_handler: multi-region gating and availability probe
+# ===================================================================
+def _make_client_error(code, message="error"):
+    return ClientError({"Error": {"Code": code, "Message": message}}, "operation")
+
+
+def _sagemaker_event(region="us-east-1", region_index=0):
+    return {
+        "Region": region,
+        "RegionIndex": region_index,
+        "Execution": {"Name": "test-execution-1"},
+        "StateMachine": {"Name": "test-sm"},
+    }
+
+
+class TestSageMakerHandlerMultiRegion:
+    """lambda_handler primary-region gating (SM-02) + availability probe (SM-00)."""
+
+    def _run_handler_unavailable(self, mock_client, event):
+        """Drive the handler down the 'SageMaker unavailable' early-return path.
+        The availability probe raises EndpointConnectionError so no regional
+        checks run; only global IAM checks (if primary) plus SM-00 are emitted."""
+        captured = {}
+
+        def fake_csv(findings):
+            captured["findings"] = findings
+            return "csv"
+
+        test_client = MagicMock()
+        test_client.list_notebook_instances.side_effect = EndpointConnectionError(
+            endpoint_url="https://sagemaker.invalid"
+        )
+        mock_client.return_value = test_client
+
+        with patch.object(sagemaker_app, "get_permissions_cache", return_value={
+            "role_permissions": {}, "user_permissions": {}
+        }), patch.object(sagemaker_app, "generate_csv_report", side_effect=fake_csv), \
+                patch.object(sagemaker_app, "write_to_s3", return_value="s3://b/r.csv"):
+            resp = sagemaker_app.lambda_handler(event, None)
+
+        return resp, captured.get("findings", [])
+
+    @patch("sagemaker_app.boto3.client")
+    def test_primary_region_emits_global_iam_check_tagged_global(self, mock_client):
+        # On the primary region, the IAM-global SM-02 check must be emitted and
+        # tagged "Global", even when SageMaker is unavailable in the region.
+        resp, findings = self._run_handler_unavailable(
+            mock_client, _sagemaker_event(region="ap-south-2", region_index=0)
+        )
+        assert resp["statusCode"] == 200
+
+        rows = [r for f in findings for r in f.get("csv_data", [])]
+        sm02 = [r for r in rows if r["Check_ID"] == "SM-02"]
+        assert sm02, "SM-02 IAM-global finding should be present on primary region"
+        for r in sm02:
+            assert r["Region"] == "Global"
+        # The availability finding is tagged with the scanned region.
+        sm00 = [r for r in rows if r["Check_ID"] == "SM-00"]
+        assert sm00 and sm00[0]["Region"] == "ap-south-2"
+
+    @patch("sagemaker_app.boto3.client")
+    def test_non_primary_region_skips_global_iam_check(self, mock_client):
+        # On a non-primary region the IAM-global SM-02 check must NOT run.
+        resp, findings = self._run_handler_unavailable(
+            mock_client, _sagemaker_event(region="eu-west-1", region_index=2)
+        )
+        assert resp["statusCode"] == 200
+
+        rows = [r for f in findings for r in f.get("csv_data", [])]
+        check_ids = {r["Check_ID"] for r in rows}
+        assert "SM-02" not in check_ids
+        assert check_ids == {"SM-00"}
+
+    @patch("sagemaker_app.boto3.client")
+    def test_optin_region_error_treated_as_unavailable(self, mock_client):
+        # A region-not-enabled error code is treated like an endpoint failure:
+        # emit a single SM-00 N/A finding (no regional checks).
+        captured = {}
+
+        def fake_csv(findings):
+            captured["findings"] = findings
+            return "csv"
+
+        test_client = MagicMock()
+        test_client.list_notebook_instances.side_effect = _make_client_error(
+            "OptInRequired"
+        )
+        mock_client.return_value = test_client
+
+        with patch.object(sagemaker_app, "get_permissions_cache", return_value={
+            "role_permissions": {}, "user_permissions": {}
+        }), patch.object(sagemaker_app, "generate_csv_report", side_effect=fake_csv), \
+                patch.object(sagemaker_app, "write_to_s3", return_value="s3://b/r.csv"):
+            resp = sagemaker_app.lambda_handler(
+                _sagemaker_event(region="ap-east-1", region_index=1), None
+            )
+
+        assert resp["statusCode"] == 200
+        rows = [r for f in captured["findings"] for r in f.get("csv_data", [])]
+        sm00 = [r for r in rows if r["Check_ID"] == "SM-00"]
+        assert sm00 and sm00[0]["Status"] == "N/A"
+        assert "ap-east-1" in sm00[0]["Finding_Details"]
+
+    @patch("sagemaker_app.boto3.client")
+    def test_access_denied_probe_proceeds_with_checks(self, mock_client):
+        # AccessDenied is NOT in REGION_UNAVAILABLE_ERROR_CODES: the service is
+        # reachable, so the handler must proceed and run regional checks rather
+        # than short-circuiting with SM-00.
+        captured = {}
+
+        def fake_csv(findings):
+            captured["findings"] = findings
+            return "csv"
+
+        test_client = MagicMock()
+        test_client.list_notebook_instances.side_effect = _make_client_error(
+            "AccessDeniedException"
+        )
+        mock_client.return_value = test_client
+
+        with patch.object(sagemaker_app, "get_permissions_cache", return_value={
+            "role_permissions": {}, "user_permissions": {}
+        }), patch.object(sagemaker_app, "generate_csv_report", side_effect=fake_csv), \
+                patch.object(sagemaker_app, "write_to_s3", return_value="s3://b/r.csv"):
+            resp = sagemaker_app.lambda_handler(
+                _sagemaker_event(region="us-east-1", region_index=0), None
+            )
+
+        assert resp["statusCode"] == 200
+        rows = [r for f in captured["findings"] for r in f.get("csv_data", [])]
+        check_ids = {r["Check_ID"] for r in rows}
+        # Reachable => no SM-00, and many regional checks ran.
+        assert "SM-00" not in check_ids
+        assert len(check_ids) > 3
diff --git a/tests/test_sagemaker_template_permissions.py b/tests/test_sagemaker_template_permissions.py
new file mode 100644
index 0000000..381b6cf
--- /dev/null
+++ b/tests/test_sagemaker_template_permissions.py
@@ -0,0 +1,38 @@
+from pathlib import Path
+
+
+REPO_ROOT = Path(__file__).resolve().parent.parent
+TEMPLATE_PATHS = [
+    REPO_ROOT / "aiml-security-assessment" / "template.yaml",
+    REPO_ROOT / "aiml-security-assessment" / "template-multi-account.yaml",
+]
+
+# These actions back the SageMaker checks that the assessment Lambda actually runs
+# for transform jobs, tuning jobs, compilation jobs, AutoML, and lineage tracking.
+REQUIRED_SAGEMAKER_ACTIONS = [
+    "sagemaker:ListTransformJobs",
+    "sagemaker:DescribeTransformJob",
+    "sagemaker:ListHyperParameterTuningJobs",
+    "sagemaker:DescribeHyperParameterTuningJob",
+    "sagemaker:ListCompilationJobs",
+    "sagemaker:DescribeCompilationJob",
+    "sagemaker:ListAutoMLJobs",
+    "sagemaker:DescribeAutoMLJob",
+    "sagemaker:ListExperiments",
+    "sagemaker:DescribeExperiment",
+    "sagemaker:ListTrials",
+    "sagemaker:DescribeTrial",
+    "sagemaker:ListAssociations",
+]
+
+
+def test_sagemaker_lambda_templates_include_required_actions():
+    for template_path in TEMPLATE_PATHS:
+        template_text = template_path.read_text(encoding="utf-8")
+        missing_actions = [
+            action for action in REQUIRED_SAGEMAKER_ACTIONS if action not in template_text
+        ]
+        assert not missing_actions, (
+            f"{template_path.name} is missing SageMaker Lambda permissions: "
+            f"{', '.join(missing_actions)}"
+        )
diff --git a/tests/test_schema.py b/tests/test_schema.py
index 55cb3a0..585d036 100644
--- a/tests/test_schema.py
+++ b/tests/test_schema.py
@@ -55,6 +55,7 @@ def test_valid_finding_has_all_keys(self):
             "Reference",
             "Severity",
             "Status",
+            "Region",
         }
         assert set(result.keys()) == expected_keys
 

From 9fa7d18df2a082a63a313b163c60c8d23eb4695e Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Sun, 14 Jun 2026 11:42:56 -0400
Subject: [PATCH 04/30] Upgrade CodeBuild image to Amazon Linux 2023 standard
 6.0

Update .gitignore to exclude .codex/ and .pytest_cache/.
---
 .gitignore                                   | 4 +++-
 deployment/2-aiml-security-codebuild.yaml    | 2 +-
 deployment/aiml-security-single-account.yaml | 2 +-
 3 files changed, 5 insertions(+), 3 deletions(-)

diff --git a/.gitignore b/.gitignore
index 42e7880..d6df932 100644
--- a/.gitignore
+++ b/.gitignore
@@ -2,6 +2,7 @@
 .kiro/
 .vscode/
 .claude/
+.codex/
 .mcp.json
 
 # AWS SAM build artifacts
@@ -12,6 +13,7 @@ __pycache__/
 *.py[cod]
 *$py.class
 *.pyc
+.pytest_cache/
 
 # OS files
 .DS_Store
@@ -40,4 +42,4 @@ samples/
 **/test_reports/
 
 .ruff_cache/
-.ash/
\ No newline at end of file
+.ash/
diff --git a/deployment/2-aiml-security-codebuild.yaml b/deployment/2-aiml-security-codebuild.yaml
index eb05737..862e6fe 100644
--- a/deployment/2-aiml-security-codebuild.yaml
+++ b/deployment/2-aiml-security-codebuild.yaml
@@ -489,7 +489,7 @@ Resources:
             !Ref ConcurrentAccountScans,
             "CodeBuildComputeType",
           ]
-        Image: "aws/codebuild/amazonlinux2-x86_64-standard:4.0"
+        Image: "aws/codebuild/amazonlinux-x86_64-standard:6.0"
         Type: "LINUX_CONTAINER"
         EnvironmentVariables:
           - Name: BUCKET_REPORT
diff --git a/deployment/aiml-security-single-account.yaml b/deployment/aiml-security-single-account.yaml
index 95280cc..86c0981 100644
--- a/deployment/aiml-security-single-account.yaml
+++ b/deployment/aiml-security-single-account.yaml
@@ -410,7 +410,7 @@ Resources:
       Name: AIMLSecurityCodeBuild
       Environment:
         ComputeType: BUILD_GENERAL1_SMALL
-        Image: "aws/codebuild/amazonlinux2-x86_64-standard:4.0"
+        Image: "aws/codebuild/amazonlinux-x86_64-standard:6.0"
         Type: "LINUX_CONTAINER"
         EnvironmentVariables:
           - Name: BUCKET_REPORT

From 8debcf07fb36f5517648c031d9ff382c40cb2be8 Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Sun, 14 Jun 2026 12:24:45 -0400
Subject: [PATCH 05/30] Derive Step Function poll timeout from CodeBuild
 timeout

The post-build poll loop used a hardcoded 600s (10 min) wait for the
Step Function, which is too short for all-region scans and caused false
build failures when the assessment outlived the poll window. Derive the
poll timeout from the CodeBuild timeout (passed through as the
CODEBUILD_TIMEOUT_MINUTES env var) minus a buffer for build/deploy and
report processing, with a floor guard and an SF_POLL_TIMEOUT override.
---
 buildspec.yml                                | 21 ++++++++++++++++++--
 deployment/2-aiml-security-codebuild.yaml    |  3 +++
 deployment/aiml-security-single-account.yaml |  3 +++
 3 files changed, 25 insertions(+), 2 deletions(-)

diff --git a/buildspec.yml b/buildspec.yml
index 9c9bd7a..7b213d2 100644
--- a/buildspec.yml
+++ b/buildspec.yml
@@ -201,6 +201,23 @@ phases:
 
         echo "Assessment completed. Results in S3:$BUCKET_REPORT"
 
+        # Derive how long to wait for Step Function completion from the overall
+        # CodeBuild timeout, reserving a buffer for the build/deploy work that runs
+        # before this loop and the report processing that runs after it. An explicit
+        # SF_POLL_TIMEOUT override always wins; a floor guards against tiny/negative
+        # values when CODEBUILD_TIMEOUT_MINUTES is small.
+        SF_POLL_BUFFER_SECONDS=${SF_POLL_BUFFER_SECONDS:-600}
+        SF_POLL_FLOOR_SECONDS=${SF_POLL_FLOOR_SECONDS:-300}
+        if [[ -n "$SF_POLL_TIMEOUT" ]]; then
+          sf_poll_timeout=$SF_POLL_TIMEOUT
+        else
+          sf_poll_timeout=$(( ${CODEBUILD_TIMEOUT_MINUTES:-60} * 60 - SF_POLL_BUFFER_SECONDS ))
+          if [[ $sf_poll_timeout -lt $SF_POLL_FLOOR_SECONDS ]]; then
+            sf_poll_timeout=$SF_POLL_FLOOR_SECONDS
+          fi
+        fi
+        echo "Step Function poll timeout set to ${sf_poll_timeout}s (CodeBuild timeout: ${CODEBUILD_TIMEOUT_MINUTES:-60}m, buffer: ${SF_POLL_BUFFER_SECONDS}s, floor: ${SF_POLL_FLOOR_SECONDS}s)"
+
         if [[ $MULTI_ACCOUNT_SCAN = 'true' ]]; then
           echo "Getting list of accounts for post-build processing"
           if [[ $MULTI_ACCOUNT_LIST_OVERRIDE != '' ]]; then
@@ -258,7 +275,7 @@ phases:
               EXECUTION_ARN=$(cat /tmp/execution_arns/$accountId.txt)
               echo "Waiting for Step Function execution in account $accountId: $EXECUTION_ARN"
               if [[ $EXECUTION_ARN != "" && $EXECUTION_ARN != "None" ]]; then
-                timeout=${SF_POLL_TIMEOUT:-600}
+                timeout=$sf_poll_timeout
                 elapsed=0
                 while [[ $elapsed -lt $timeout ]]; do
                   STATUS=$(aws stepfunctions describe-execution --execution-arn $EXECUTION_ARN --query 'status' --output text 2>/dev/null)
@@ -375,7 +392,7 @@ phases:
             EXECUTION_ARN=$(cat /tmp/single_account_execution_arn.txt)
             echo "Waiting for Step Function execution: $EXECUTION_ARN"
             if [[ $EXECUTION_ARN != "" && $EXECUTION_ARN != "None" ]]; then
-              timeout=${SF_POLL_TIMEOUT:-600}
+              timeout=$sf_poll_timeout
               elapsed=0
               while [[ $elapsed -lt $timeout ]]; do
                 STATUS=$(aws stepfunctions describe-execution --execution-arn $EXECUTION_ARN --query 'status' --output text 2>/dev/null)
diff --git a/deployment/2-aiml-security-codebuild.yaml b/deployment/2-aiml-security-codebuild.yaml
index 862e6fe..1cc1fc1 100644
--- a/deployment/2-aiml-security-codebuild.yaml
+++ b/deployment/2-aiml-security-codebuild.yaml
@@ -527,6 +527,9 @@ Resources:
           - Name: TARGET_REGIONS
             Value: !Ref TargetRegions
             Type: PLAINTEXT
+          - Name: CODEBUILD_TIMEOUT_MINUTES
+            Value: !Ref CodeBuildTimeout
+            Type: PLAINTEXT
       Description: Run AIML Security multi-account assessment
       ServiceRole: !GetAtt MultiAccountCodeBuildRole.Arn
       TimeoutInMinutes: !Ref CodeBuildTimeout
diff --git a/deployment/aiml-security-single-account.yaml b/deployment/aiml-security-single-account.yaml
index 86c0981..64e5c03 100644
--- a/deployment/aiml-security-single-account.yaml
+++ b/deployment/aiml-security-single-account.yaml
@@ -437,6 +437,9 @@ Resources:
           - Name: TARGET_REGIONS
             Value: !Ref TargetRegions
             Type: PLAINTEXT
+          - Name: CODEBUILD_TIMEOUT_MINUTES
+            Value: !Ref CodeBuildTimeout
+            Type: PLAINTEXT
       Description: Run AIML Security single-account assessment
       ServiceRole: !GetAtt CodeBuildRole.Arn
       TimeoutInMinutes: !Ref CodeBuildTimeout

From ce24543deff5540c82f46aba7234eec52aa768c8 Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Sun, 14 Jun 2026 12:24:51 -0400
Subject: [PATCH 06/30] Remove unused imports and fix f-string flagged by ruff

Clear all 25 ruff findings (F401 unused imports, F811 duplicate import,
F541 extraneous f-string prefix) across the Python sources.
---
 .../security/generate_consolidated_report/schema.py    |  4 +---
 .../test_generate_report.py                            |  1 -
 .../functions/security/iam_permission_caching/app.py   | 10 +---------
 .../security/iam_permission_caching/schema.py          |  4 +---
 sample-reports/scripts/capture_screenshots.py          |  3 +--
 5 files changed, 4 insertions(+), 18 deletions(-)

diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/schema.py b/aiml-security-assessment/functions/security/generate_consolidated_report/schema.py
index 19aec8f..6234877 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/schema.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/schema.py
@@ -1,7 +1,5 @@
 from enum import Enum
-from typing import Dict, List, Any
-from pydantic import BaseModel, Field, HttpUrl, validator
-from datetime import datetime
+from pydantic import BaseModel, Field, validator
 
 class SeverityEnum(str, Enum):
     HIGH = "High"
diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py b/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py
index a155817..879b807 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py
@@ -1,7 +1,6 @@
 # test_generate_report.py
 import unittest
 import os
-import webbrowser
 from app import generate_html_report
 from report_template import generate_html_report as generate_report_direct
 
diff --git a/aiml-security-assessment/functions/security/iam_permission_caching/app.py b/aiml-security-assessment/functions/security/iam_permission_caching/app.py
index 742da9f..8c1cde5 100644
--- a/aiml-security-assessment/functions/security/iam_permission_caching/app.py
+++ b/aiml-security-assessment/functions/security/iam_permission_caching/app.py
@@ -1,18 +1,10 @@
 import boto3
-import csv
 import os
 import logging
-from datetime import datetime, timedelta, timezone
-import time
-from typing import Dict, List, Any, Optional
-from io import StringIO
-import asyncio
+from datetime import datetime, timezone
 import json
 from botocore.config import Config
-from botocore.exceptions import ClientError
-import random
 
-from datetime import datetime
 
 def get_current_utc_date():
     return datetime.now(timezone.utc).strftime("%Y/%m/%d")
diff --git a/aiml-security-assessment/functions/security/iam_permission_caching/schema.py b/aiml-security-assessment/functions/security/iam_permission_caching/schema.py
index d745e06..6515a38 100644
--- a/aiml-security-assessment/functions/security/iam_permission_caching/schema.py
+++ b/aiml-security-assessment/functions/security/iam_permission_caching/schema.py
@@ -1,7 +1,5 @@
 from enum import Enum
-from typing import Dict, List, Any
-from pydantic import BaseModel, Field, HttpUrl, validator
-from datetime import datetime
+from pydantic import BaseModel, Field, validator
 
 class SeverityEnum(str, Enum):
     HIGH = "High"
diff --git a/sample-reports/scripts/capture_screenshots.py b/sample-reports/scripts/capture_screenshots.py
index 1f2555b..7e5b080 100755
--- a/sample-reports/scripts/capture_screenshots.py
+++ b/sample-reports/scripts/capture_screenshots.py
@@ -18,7 +18,6 @@
     python sample-reports/scripts/capture_screenshots.py
 """
 
-import os
 import sys
 from pathlib import Path
 from playwright.sync_api import sync_playwright
@@ -225,7 +224,7 @@ def main():
             print("  3. Commit the screenshots to the repository")
 
     except ImportError as e:
-        print(f"\nERROR: Required library not installed")
+        print("\nERROR: Required library not installed")
         print(f"   {e}")
         print("\nPlease install required dependencies:")
         print("   source .venv/bin/activate")

From eceaa2f9ed993a2836431e5b73c87c50708ec899 Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Sun, 14 Jun 2026 13:19:01 -0400
Subject: [PATCH 07/30] Add Global region option to HTML report filters

Global/IAM findings (Region == "Global") appear in the report tables but
were absent from the Region filter dropdowns because "Global" is
intentionally excluded from the region count/tiles. Surface a "Global"
filter option when such findings exist, and show the dropdown whenever
there is more than one distinct filterable value (regions + Global),
without inflating the region count.
---
 .../report_template.py                          | 17 ++++++++++++++---
 1 file changed, 14 insertions(+), 3 deletions(-)

diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py b/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
index 8e79d07..8054183 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
@@ -741,14 +741,25 @@ def generate_html_report(
         service_findings.get("agentcore", []), include_data_attrs=True
     )
 
-    # Build region filter HTML (shared across modes, only shown when multiple regions)
-    if regions and len(regions) > 1:
+    # Build region filter HTML (shared across modes, only shown when multiple regions).
+    # "Global" tags IAM-only findings and is intentionally excluded from `regions`
+    # (it must not inflate the region count / tiles), but those findings still appear
+    # in the tables, so surface a "Global" filter option when any are present.
+    has_global = any(
+        (f.get("region") or f.get("Region")) == "Global" for f in all_findings
+    )
+    # Show the filter when there is more than one distinct value to choose from:
+    # multiple scanned regions, or a single scanned region alongside Global findings.
+    num_real_regions = len(regions) if regions else 0
+    if num_real_regions + (1 if has_global else 0) > 1:
         region_options = "".join(
             [
                 f'<option value="{r}">{r}</option>'
-                for r in sorted(regions)
+                for r in sorted(regions or [])
             ]
         )
+        if has_global:
+            region_options += '<option value="Global">Global</option>'
         region_filter = f'<div class="filter-group"><label for="regionFilter">Region</label><select id="regionFilter" onchange="applyFilters()"><option value="">All Regions</option>{region_options}</select></div>'
         bedrock_region_filter = f'<div class="filter-group"><label for="bedrockRegionFilter">Region</label><select id="bedrockRegionFilter"><option value="">All Regions</option>{region_options}</select></div>'
         sagemaker_region_filter = f'<div class="filter-group"><label for="sagemakerRegionFilter">Region</label><select id="sagemakerRegionFilter"><option value="">All Regions</option>{region_options}</select></div>'

From 84c543b89de9cbb9b2ac0c8ec49c2af50c60b8be Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Sun, 14 Jun 2026 15:16:25 -0400
Subject: [PATCH 08/30] Gate regional Bedrock/AgentCore findings on resource
 footprint

Probe regional Bedrock list APIs (guardrails, prompts, agents, knowledge
bases, flows, custom models) and AgentCore runtimes before emitting
findings. When no resources exist in a region, report BR-02, BR-05, and
AC-08 as N/A/Informational instead of WARN/Failed, avoiding false
positives in regions with no AI/ML footprint.
---
 .../security/agentcore_assessments/app.py     |  31 +++
 .../security/bedrock_assessments/app.py       | 181 ++++++++++++++++--
 tests/test_agentcore_checks.py                |   2 +
 tests/test_bedrock_checks.py                  |  56 +++++-
 4 files changed, 251 insertions(+), 19 deletions(-)

diff --git a/aiml-security-assessment/functions/security/agentcore_assessments/app.py b/aiml-security-assessment/functions/security/agentcore_assessments/app.py
index 14ed84c..1793a40 100644
--- a/aiml-security-assessment/functions/security/agentcore_assessments/app.py
+++ b/aiml-security-assessment/functions/security/agentcore_assessments/app.py
@@ -1458,9 +1458,40 @@ def check_agentcore_vpc_endpoints() -> List[Dict[str, Any]]:
     """
     findings = []
 
+    if agentcore_client is None:
+        findings.append(
+            create_finding(
+                check_id="AC-08",
+                finding_name="AgentCore VPC Endpoints Check",
+                finding_details="AgentCore client not available in this region",
+                resolution="Deploy in a region where Amazon Bedrock AgentCore is available",
+                reference="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html",
+                severity=SeverityEnum.INFORMATIONAL,
+                status=StatusEnum.NA,
+            )
+        )
+        return findings
+
     try:
         logger.info("Checking for AgentCore VPC endpoints")
 
+        runtimes_response = agentcore_client.list_agent_runtimes()
+        runtimes = runtimes_response.get("agentRuntimes", [])
+
+        if not runtimes:
+            findings.append(
+                create_finding(
+                    check_id="AC-08",
+                    finding_name="AgentCore VPC Endpoints Check",
+                    finding_details="No AgentCore resources found",
+                    resolution="No action required",
+                    reference="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html",
+                    severity=SeverityEnum.INFORMATIONAL,
+                    status=StatusEnum.NA,
+                )
+            )
+            return findings
+
         # Get all VPCs
         vpcs_response = ec2_client.describe_vpcs()
         vpcs = vpcs_response.get("Vpcs", [])
diff --git a/aiml-security-assessment/functions/security/bedrock_assessments/app.py b/aiml-security-assessment/functions/security/bedrock_assessments/app.py
index 98db843..c47a746 100644
--- a/aiml-security-assessment/functions/security/bedrock_assessments/app.py
+++ b/aiml-security-assessment/functions/security/bedrock_assessments/app.py
@@ -41,6 +41,12 @@
     "OptInRequired",
 }
 
+ACCESS_DENIED_ERROR_CODES = {
+    "AccessDenied",
+    "AccessDeniedException",
+    "UnauthorizedOperation",
+}
+
 
 def describe_api_error(error: Exception, api_label: str, region: str = "") -> str:
     """
@@ -61,6 +67,120 @@ def describe_api_error(error: Exception, api_label: str, region: str = "") -> st
     return f"Unable to check {api_label}: {error_text}"
 
 
+def _probe_bedrock_resource_list(probe_label: str, probe_func) -> Optional[bool]:
+    """
+    Probe a Bedrock list API and report whether it found any regional resources.
+
+    Returns:
+        True if the API found at least one resource
+        False if the API was successfully queried and returned no resources
+        None if the result is inconclusive (for example, AccessDenied)
+    """
+    try:
+        return bool(probe_func())
+    except EndpointConnectionError:
+        raise
+    except ClientError as e:
+        code = e.response.get("Error", {}).get("Code", "")
+        error_text = str(e)
+
+        if code in REGION_UNAVAILABLE_ERROR_CODES:
+            raise
+
+        if code in ACCESS_DENIED_ERROR_CODES:
+            logger.warning(
+                f"Unable to determine regional Bedrock footprint from {probe_label}: {code}"
+            )
+            return None
+
+        if code == "ValidationException" or "UnknownOperation" in error_text or "Unknown operation" in error_text:
+            logger.info(f"{probe_label} API not available in this region")
+            return False
+
+        logger.warning(
+            f"Unexpected error probing {probe_label} for regional Bedrock footprint: {error_text}"
+        )
+        return None
+    except Exception as e:
+        error_text = str(e)
+        if "UnknownOperation" in error_text or "Unknown operation" in error_text:
+            logger.info(f"{probe_label} API not available in this region")
+            return False
+
+        logger.warning(
+            f"Unexpected error probing {probe_label} for regional Bedrock footprint: {error_text}"
+        )
+        return None
+
+
+def _first_page_items(paginator, result_key: str) -> List[Dict[str, Any]]:
+    """Return at most the first page of items from a paginator-based Bedrock list API."""
+    for page in paginator.paginate(PaginationConfig={"MaxItems": 1, "PageSize": 1}):
+        return page.get(result_key, [])
+    return []
+
+
+def detect_bedrock_regional_footprint(region: str = "") -> Optional[bool]:
+    """
+    Detect whether a region has Bedrock-managed resources that justify regional findings.
+
+    Returns:
+        True if Bedrock-managed resources exist in the region
+        False if supported APIs were probed and no resources were found
+        None if the footprint could not be determined confidently
+    """
+    bedrock_client = boto3.client("bedrock", config=boto3_config, region_name=region)
+    bedrock_agent_client = boto3.client(
+        "bedrock-agent", config=boto3_config, region_name=region
+    )
+
+    probes = [
+        (
+            "Bedrock Guardrails",
+            lambda: bedrock_client.list_guardrails().get("guardrails", []),
+        ),
+        (
+            "Bedrock Prompts",
+            lambda: bedrock_agent_client.list_prompts().get("promptSummaries", []),
+        ),
+        (
+            "Bedrock Agents",
+            lambda: bedrock_agent_client.list_agents().get("agents", []),
+        ),
+        (
+            "Bedrock Knowledge Bases",
+            lambda: _first_page_items(
+                bedrock_agent_client.get_paginator("list_knowledge_bases"),
+                "knowledgeBaseSummaries",
+            ),
+        ),
+        (
+            "Bedrock Flows",
+            lambda: _first_page_items(
+                bedrock_agent_client.get_paginator("list_flows"),
+                "flowSummaries",
+            ),
+        ),
+        (
+            "Bedrock Custom Models",
+            lambda: _first_page_items(
+                bedrock_client.get_paginator("list_custom_models"),
+                "modelSummaries",
+            ),
+        ),
+    ]
+
+    indeterminate = False
+    for probe_label, probe_func in probes:
+        probe_result = _probe_bedrock_resource_list(probe_label, probe_func)
+        if probe_result is True:
+            return True
+        if probe_result is None:
+            indeterminate = True
+
+    return None if indeterminate else False
+
+
 def get_permissions_cache(execution_id: str) -> Optional[Dict[str, Any]]:
     """
     Retrieve and parse the permissions cache JSON file from S3
@@ -736,6 +856,24 @@ def check_bedrock_access_and_vpc_endpoints(permission_cache, region: str = "") -
                     break
 
         if bedrock_access_found:
+            bedrock_footprint_found = detect_bedrock_regional_footprint(region=region)
+
+            if bedrock_footprint_found is False:
+                findings["details"] = "No regional Bedrock resources found"
+                findings["csv_data"].append(
+                    create_finding(
+                        check_id="BR-02",
+                        finding_name="Amazon Bedrock private connectivity check",
+                        finding_details="No regional Bedrock resources found to assess private connectivity",
+                        resolution="No action required",
+                        reference="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html",
+                        severity="Informational",
+                        status="N/A",
+                        region=region,
+                    )
+                )
+                return findings
+
             vpc_endpoint_check = check_bedrock_vpc_endpoints(region=region)
 
             if not vpc_endpoint_check["has_endpoints"]:
@@ -849,20 +987,37 @@ def check_bedrock_guardrails(region: str = "") -> Dict[str, Any]:
                     )
                 )
             else:
-                findings["status"] = "WARN"
-                findings["details"] = "No Bedrock guardrails configured"
-                findings["csv_data"].append(
-                    create_finding(
-                        check_id="BR-05",
-                        finding_name="Bedrock Guardrails Check",
-                        finding_details="No Amazon Bedrock Guardrails are configured. This may expose your application to potential risks such as harmful content, sensitive information disclosure, or hallucinations.",
-                        resolution="Configure Bedrock Guardrails to implement safeguards such as:\n- Content filters to block harmful content\n- Denied topics to prevent undesirable discussions\n- Sensitive information filters to protect PII\n- Contextual grounding checks to prevent hallucinations",
-                        reference="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html",
-                        severity="Medium",
-                        status="Failed",
-                        region=region,
+                bedrock_footprint_found = detect_bedrock_regional_footprint(region=region)
+
+                if bedrock_footprint_found is False:
+                    findings["details"] = "No regional Bedrock resources found"
+                    findings["csv_data"].append(
+                        create_finding(
+                            check_id="BR-05",
+                            finding_name="Bedrock Guardrails Check",
+                            finding_details="No regional Bedrock resources found to protect with guardrails",
+                            resolution="No action required",
+                            reference="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html",
+                            severity="Informational",
+                            status="N/A",
+                            region=region,
+                        )
+                    )
+                else:
+                    findings["status"] = "WARN"
+                    findings["details"] = "No Bedrock guardrails configured"
+                    findings["csv_data"].append(
+                        create_finding(
+                            check_id="BR-05",
+                            finding_name="Bedrock Guardrails Check",
+                            finding_details="No Amazon Bedrock Guardrails are configured. This may expose your application to potential risks such as harmful content, sensitive information disclosure, or hallucinations.",
+                            resolution="Configure Bedrock Guardrails to implement safeguards such as:\n- Content filters to block harmful content\n- Denied topics to prevent undesirable discussions\n- Sensitive information filters to protect PII\n- Contextual grounding checks to prevent hallucinations",
+                            reference="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html",
+                            severity="Medium",
+                            status="Failed",
+                            region=region,
+                        )
                     )
-                )
 
         except bedrock_client.exceptions.ValidationException as e:
             findings["status"] = "ERROR"
diff --git a/tests/test_agentcore_checks.py b/tests/test_agentcore_checks.py
index 0cce9b8..24d8f2c 100644
--- a/tests/test_agentcore_checks.py
+++ b/tests/test_agentcore_checks.py
@@ -372,6 +372,8 @@ def test_ac08_no_runtimes_returns_na(self, mock_ac, mock_ec2):
         result = agentcore_app.check_agentcore_vpc_endpoints()
         findings = extract_csv_data(result)
         assert len(findings) >= 1
+        assert findings[0]["Status"] == "N/A"
+        assert findings[0]["Finding_Details"] == "No AgentCore resources found"
 
     @patch("agentcore_app.agentcore_client")
     def test_ac08_exception_returns_error_finding(self, mock_ac):
diff --git a/tests/test_bedrock_checks.py b/tests/test_bedrock_checks.py
index 0c5a592..947586e 100644
--- a/tests/test_bedrock_checks.py
+++ b/tests/test_bedrock_checks.py
@@ -92,8 +92,9 @@ def test_br02_no_bedrock_access_returns_no_findings(self, empty_permission_cache
         assert "csv_data" in result
 
     @patch("bedrock_app.check_bedrock_vpc_endpoints")
+    @patch("bedrock_app.detect_bedrock_regional_footprint", return_value=True)
     def test_br02_bedrock_access_with_endpoints_returns_passed(
-        self, mock_vpc, permission_cache_compliant
+        self, mock_footprint, mock_vpc, permission_cache_compliant
     ):
         check = bedrock_app.check_bedrock_access_and_vpc_endpoints
         mock_vpc.return_value = {
@@ -113,8 +114,9 @@ def test_br02_bedrock_access_with_endpoints_returns_passed(
         assert findings[0]["Check_ID"] == "BR-02"
 
     @patch("bedrock_app.check_bedrock_vpc_endpoints")
+    @patch("bedrock_app.detect_bedrock_regional_footprint", return_value=True)
     def test_br02_bedrock_access_no_endpoints_returns_failed(
-        self, mock_vpc, permission_cache_compliant
+        self, mock_footprint, mock_vpc, permission_cache_compliant
     ):
         check = bedrock_app.check_bedrock_access_and_vpc_endpoints
         mock_vpc.return_value = {
@@ -129,8 +131,24 @@ def test_br02_bedrock_access_no_endpoints_returns_failed(
         assert findings[0]["Severity"] == "Medium"
 
     @patch("bedrock_app.check_bedrock_vpc_endpoints")
+    @patch("bedrock_app.detect_bedrock_regional_footprint", return_value=False)
+    def test_br02_no_regional_footprint_returns_na(
+        self, mock_footprint, mock_vpc, permission_cache_compliant
+    ):
+        check = bedrock_app.check_bedrock_access_and_vpc_endpoints
+        result = check(permission_cache_compliant, region="eu-west-3")
+        findings = extract_csv_data(result)
+        assert len(findings) >= 1
+        assert findings[0]["Status"] == "N/A"
+        assert findings[0]["Finding_Details"] == (
+            "No regional Bedrock resources found to assess private connectivity"
+        )
+        mock_vpc.assert_not_called()
+
+    @patch("bedrock_app.check_bedrock_vpc_endpoints")
+    @patch("bedrock_app.detect_bedrock_regional_footprint", return_value=True)
     def test_br02_exception_returns_error_finding(
-        self, mock_vpc, permission_cache_compliant
+        self, mock_footprint, mock_vpc, permission_cache_compliant
     ):
         check = bedrock_app.check_bedrock_access_and_vpc_endpoints
         mock_vpc.side_effect = Exception("VPC check failed")
@@ -141,7 +159,10 @@ def test_br02_exception_returns_error_finding(
         assert "Error" in findings[0]["Finding_Details"]
 
     @patch("bedrock_app.check_bedrock_vpc_endpoints")
-    def test_br02_schema_valid(self, mock_vpc, permission_cache_compliant):
+    @patch("bedrock_app.detect_bedrock_regional_footprint", return_value=True)
+    def test_br02_schema_valid(
+        self, mock_footprint, mock_vpc, permission_cache_compliant
+    ):
         check = bedrock_app.check_bedrock_access_and_vpc_endpoints
         mock_vpc.return_value = {
             "has_endpoints": True,
@@ -279,12 +300,32 @@ def test_br05_no_guardrails_returns_failed(self, mock_client):
         mock_bedrock = MagicMock()
         mock_client.return_value = mock_bedrock
         mock_bedrock.list_guardrails.return_value = {"guardrails": []}
-        result = check()
+        with patch(
+            "bedrock_app.detect_bedrock_regional_footprint", return_value=True
+        ):
+            result = check()
         findings = extract_csv_data(result)
         assert len(findings) >= 1
         assert findings[0]["Status"] == "Failed"
         assert findings[0]["Severity"] == "Medium"
 
+    @patch("boto3.client")
+    def test_br05_no_guardrails_and_no_regional_footprint_returns_na(self, mock_client):
+        check = bedrock_app.check_bedrock_guardrails
+        mock_bedrock = MagicMock()
+        mock_client.return_value = mock_bedrock
+        mock_bedrock.list_guardrails.return_value = {"guardrails": []}
+        with patch(
+            "bedrock_app.detect_bedrock_regional_footprint", return_value=False
+        ):
+            result = check(region="eu-west-3")
+        findings = extract_csv_data(result)
+        assert len(findings) >= 1
+        assert findings[0]["Status"] == "N/A"
+        assert findings[0]["Finding_Details"] == (
+            "No regional Bedrock resources found to protect with guardrails"
+        )
+
     @patch("boto3.client")
     def test_br05_exception_returns_error_finding(self, mock_client):
         check = bedrock_app.check_bedrock_guardrails
@@ -300,7 +341,10 @@ def test_br05_schema_valid(self, mock_client):
         mock_bedrock = MagicMock()
         mock_client.return_value = mock_bedrock
         mock_bedrock.list_guardrails.return_value = {"guardrails": []}
-        result = check()
+        with patch(
+            "bedrock_app.detect_bedrock_regional_footprint", return_value=True
+        ):
+            result = check()
         for f in extract_csv_data(result):
             assert_finding_schema(f)
 

From 23804041db73c1f0bbfa726775d9848b81550331 Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Sun, 14 Jun 2026 15:45:53 -0400
Subject: [PATCH 09/30] Prevent TargetRegions whitespace from truncating
 multi-region scans
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

The CodeBuild env var TARGET_REGIONS allowed spaces after commas (e.g.
"us-east-1, us-east-2"). 'sam deploy --parameter-overrides' re-splits its
argument on spaces, so only the first chunk ("us-east-1,") reached the
stack and every other region was silently dropped — the cause of build
#14 scanning a single region.

- buildspec.yml: strip all whitespace from TARGET_REGIONS before deploy
  and validate the result, failing fast on invalid characters.
- Add AllowedPattern/ConstraintDescription to the TargetRegions parameter
  in all four templates as defense-in-depth at the CloudFormation layer.
---
 .../template-multi-account.yaml                    |  4 ++++
 aiml-security-assessment/template.yaml             |  4 ++++
 buildspec.yml                                      | 14 ++++++++++++++
 deployment/2-aiml-security-codebuild.yaml          |  4 ++++
 deployment/aiml-security-single-account.yaml       |  4 ++++
 5 files changed, 30 insertions(+)

diff --git a/aiml-security-assessment/template-multi-account.yaml b/aiml-security-assessment/template-multi-account.yaml
index bd82963..450eda6 100644
--- a/aiml-security-assessment/template-multi-account.yaml
+++ b/aiml-security-assessment/template-multi-account.yaml
@@ -9,6 +9,10 @@ Parameters:
   TargetRegions:
     Type: String
     Default: ""
+    AllowedPattern: "^[a-zA-Z0-9,-]*$"
+    ConstraintDescription: >
+      TargetRegions must be a comma-separated list of region names with no spaces
+      (e.g., us-east-1,us-west-2,eu-west-1), 'all', or empty.
     Description: >
       Comma-separated list of AWS regions to scan (e.g., us-east-1,us-west-2,eu-west-1).
       Use 'all' to scan all regions where the service is available.
diff --git a/aiml-security-assessment/template.yaml b/aiml-security-assessment/template.yaml
index a055de6..6372750 100644
--- a/aiml-security-assessment/template.yaml
+++ b/aiml-security-assessment/template.yaml
@@ -9,6 +9,10 @@ Parameters:
   TargetRegions:
     Type: String
     Default: ""
+    AllowedPattern: "^[a-zA-Z0-9,-]*$"
+    ConstraintDescription: >
+      TargetRegions must be a comma-separated list of region names with no spaces
+      (e.g., us-east-1,us-west-2,eu-west-1), 'all', or empty.
     Description: >
       Comma-separated list of AWS regions to scan (e.g., us-east-1,us-west-2,eu-west-1).
       Use 'all' to scan all regions where the service is available.
diff --git a/buildspec.yml b/buildspec.yml
index 7b213d2..8b3cf39 100644
--- a/buildspec.yml
+++ b/buildspec.yml
@@ -40,6 +40,20 @@ phases:
           echo "ERROR: Missing required environment variables: ${missing_vars[*]}"
           exit 1
         fi
+      - |
+        # Normalize TARGET_REGIONS: strip all whitespace so the comma-separated
+        # value survives 'sam deploy --parameter-overrides', which re-splits its
+        # argument on spaces and would otherwise drop every region after the first.
+        TARGET_REGIONS=$(echo "${TARGET_REGIONS:-}" | tr -d '[:space:]')
+        export TARGET_REGIONS
+
+        # Validate the normalized value matches the CloudFormation AllowedPattern.
+        if [[ -n "$TARGET_REGIONS" && ! "$TARGET_REGIONS" =~ ^[a-zA-Z0-9,-]+$ ]]; then
+          echo "ERROR: TARGET_REGIONS contains invalid characters: '$TARGET_REGIONS'"
+          echo "Expected a comma-separated list of region names (e.g., us-east-1,us-west-2), 'all', or empty."
+          exit 1
+        fi
+        echo "Using TARGET_REGIONS: '${TARGET_REGIONS:-<deployment region only>}'"
       - echo "Multi-account scan is $MULTI_ACCOUNT_SCAN"
       - cd aiml-security-assessment
       - ls -la
diff --git a/deployment/2-aiml-security-codebuild.yaml b/deployment/2-aiml-security-codebuild.yaml
index 1cc1fc1..3ac5c69 100644
--- a/deployment/2-aiml-security-codebuild.yaml
+++ b/deployment/2-aiml-security-codebuild.yaml
@@ -73,6 +73,10 @@ Parameters:
 
   TargetRegions:
     Type: String
+    AllowedPattern: "^[a-zA-Z0-9,-]*$"
+    ConstraintDescription: >
+      TargetRegions must be a comma-separated list of region names with no spaces
+      (e.g., us-east-1,us-west-2,eu-west-1), 'all', or empty.
     Description: >
       Comma-separated list of AWS regions to scan (e.g., us-east-1,us-west-2,eu-west-1).
       Use 'all' to scan all regions where the service is available.
diff --git a/deployment/aiml-security-single-account.yaml b/deployment/aiml-security-single-account.yaml
index 64e5c03..4d5e732 100644
--- a/deployment/aiml-security-single-account.yaml
+++ b/deployment/aiml-security-single-account.yaml
@@ -38,6 +38,10 @@ Parameters:
 
   TargetRegions:
     Type: String
+    AllowedPattern: "^[a-zA-Z0-9,-]*$"
+    ConstraintDescription: >
+      TargetRegions must be a comma-separated list of region names with no spaces
+      (e.g., us-east-1,us-west-2,eu-west-1), 'all', or empty.
     Description: >
       Comma-separated list of AWS regions to scan (e.g., us-east-1,us-west-2,eu-west-1).
       Use 'all' to scan all regions where the service is available.

From 6eb00aa1b0c7b8da3b19117dbe513a019f28c4a9 Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Sun, 14 Jun 2026 16:18:26 -0400
Subject: [PATCH 10/30] Extend regional footprint gating to BR-04, BR-06, and
 BR-09

Gate model invocation logging (BR-04) and Bedrock CloudTrail coverage
(BR-06) on the regional Bedrock footprint, reporting N/A when no
resources exist instead of Failed. Return False from
detect_bedrock_regional_footprint when any probe succeeds with no
resources, so a single accessible empty API is enough to conclude the
region is empty. For BR-09, treat Knowledge Base API errors (including
AccessDenied) as N/A rather than a High/Failed finding.
---
 .../security/bedrock_assessments/app.py       | 58 +++++++++++--
 tests/test_bedrock_checks.py                  | 81 +++++++++++++++++--
 2 files changed, 124 insertions(+), 15 deletions(-)

diff --git a/aiml-security-assessment/functions/security/bedrock_assessments/app.py b/aiml-security-assessment/functions/security/bedrock_assessments/app.py
index c47a746..367f8fa 100644
--- a/aiml-security-assessment/functions/security/bedrock_assessments/app.py
+++ b/aiml-security-assessment/functions/security/bedrock_assessments/app.py
@@ -171,13 +171,19 @@ def detect_bedrock_regional_footprint(region: str = "") -> Optional[bool]:
     ]
 
     indeterminate = False
+    successful_empty_probe = False
     for probe_label, probe_func in probes:
         probe_result = _probe_bedrock_resource_list(probe_label, probe_func)
         if probe_result is True:
             return True
+        if probe_result is False:
+            successful_empty_probe = True
         if probe_result is None:
             indeterminate = True
 
+    if successful_empty_probe:
+        return False
+
     return None if indeterminate else False
 
 
@@ -1071,6 +1077,23 @@ def check_bedrock_logging_configuration(region: str = "") -> Dict[str, Any]:
             "csv_data": [],
         }
 
+        bedrock_footprint_found = detect_bedrock_regional_footprint(region=region)
+        if bedrock_footprint_found is False:
+            findings["details"] = "No regional Bedrock resources found"
+            findings["csv_data"].append(
+                create_finding(
+                    check_id="BR-04",
+                    finding_name="Bedrock Model Invocation Logging Check",
+                    finding_details="No regional Bedrock resources found to monitor with invocation logging",
+                    resolution="No action required",
+                    reference="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html",
+                    severity="Informational",
+                    status="N/A",
+                    region=region,
+                )
+            )
+            return findings
+
         bedrock_client = boto3.client("bedrock", config=boto3_config, region_name=region)
 
         try:
@@ -1180,6 +1203,23 @@ def check_bedrock_cloudtrail_logging(region: str = "") -> Dict[str, Any]:
             "csv_data": [],
         }
 
+        bedrock_footprint_found = detect_bedrock_regional_footprint(region=region)
+        if bedrock_footprint_found is False:
+            findings["details"] = "No regional Bedrock resources found"
+            findings["csv_data"].append(
+                create_finding(
+                    check_id="BR-06",
+                    finding_name="Bedrock CloudTrail Logging Check",
+                    finding_details="No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage",
+                    resolution="No action required",
+                    reference="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html",
+                    severity="Informational",
+                    status="N/A",
+                    region=region,
+                )
+            )
+            return findings
+
         cloudtrail_client = boto3.client("cloudtrail", config=boto3_config, region_name=region)
 
         try:
@@ -1546,20 +1586,22 @@ def check_bedrock_knowledge_base_encryption(region: str = "") -> Dict[str, Any]:
                     )
                 )
 
-        except bedrock_agent_client.exceptions.ValidationException as e:
-            findings["status"] = "ERROR"
-            findings["details"] = (
-                f"Error validating Knowledge Base configuration: {str(e)}"
+        except Exception as e:
+            findings["status"] = "WARN"
+            findings["details"] = describe_api_error(
+                e, "Bedrock Knowledge Base API", region
             )
             findings["csv_data"].append(
                 create_finding(
                     check_id="BR-09",
                     finding_name="Bedrock Knowledge Base Encryption Check",
-                    finding_details=f"Error checking Knowledge Base encryption: {str(e)}",
-                    resolution="Verify your AWS credentials and permissions to access Bedrock Knowledge Bases",
+                    finding_details=describe_api_error(
+                        e, "Bedrock Knowledge Base API", region
+                    ),
+                    resolution="Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.",
                     reference="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html",
-                    severity="High",
-                    status="Failed",
+                    severity="Informational",
+                    status="N/A",
                     region=region,
                 )
             )
diff --git a/tests/test_bedrock_checks.py b/tests/test_bedrock_checks.py
index 947586e..0a4df33 100644
--- a/tests/test_bedrock_checks.py
+++ b/tests/test_bedrock_checks.py
@@ -219,7 +219,10 @@ class TestBR04LoggingConfiguration:
     """BR-04: Check model invocation logging."""
 
     @patch("boto3.client")
-    def test_br04_logging_enabled_s3_returns_passed(self, mock_client):
+    @patch("bedrock_app.detect_bedrock_regional_footprint", return_value=True)
+    def test_br04_logging_enabled_s3_returns_passed(
+        self, mock_footprint, mock_client
+    ):
         check = bedrock_app.check_bedrock_logging_configuration
         mock_bedrock = MagicMock()
         mock_client.return_value = mock_bedrock
@@ -236,7 +239,10 @@ def test_br04_logging_enabled_s3_returns_passed(self, mock_client):
         assert findings[0]["Check_ID"] == "BR-04"
 
     @patch("boto3.client")
-    def test_br04_logging_disabled_returns_failed(self, mock_client):
+    @patch("bedrock_app.detect_bedrock_regional_footprint", return_value=True)
+    def test_br04_logging_disabled_returns_failed(
+        self, mock_footprint, mock_client
+    ):
         check = bedrock_app.check_bedrock_logging_configuration
         mock_bedrock = MagicMock()
         mock_client.return_value = mock_bedrock
@@ -249,6 +255,21 @@ def test_br04_logging_disabled_returns_failed(self, mock_client):
         assert findings[0]["Status"] == "Failed"
         assert findings[0]["Severity"] == "Medium"
 
+    @patch("boto3.client")
+    @patch("bedrock_app.detect_bedrock_regional_footprint", return_value=False)
+    def test_br04_no_regional_footprint_returns_na(
+        self, mock_footprint, mock_client
+    ):
+        check = bedrock_app.check_bedrock_logging_configuration
+        result = check(region="eu-west-1")
+        findings = extract_csv_data(result)
+        assert len(findings) >= 1
+        assert findings[0]["Status"] == "N/A"
+        assert findings[0]["Finding_Details"] == (
+            "No regional Bedrock resources found to monitor with invocation logging"
+        )
+        mock_client.assert_not_called()
+
     @patch("boto3.client")
     def test_br04_exception_returns_error_finding(self, mock_client):
         check = bedrock_app.check_bedrock_logging_configuration
@@ -259,7 +280,8 @@ def test_br04_exception_returns_error_finding(self, mock_client):
         assert findings[0]["Status"] == "Failed"
 
     @patch("boto3.client")
-    def test_br04_schema_valid(self, mock_client):
+    @patch("bedrock_app.detect_bedrock_regional_footprint", return_value=True)
+    def test_br04_schema_valid(self, mock_footprint, mock_client):
         check = bedrock_app.check_bedrock_logging_configuration
         mock_bedrock = MagicMock()
         mock_client.return_value = mock_bedrock
@@ -356,7 +378,10 @@ class TestBR06CloudTrailLogging:
     """BR-06: Check CloudTrail logging for Bedrock."""
 
     @patch("boto3.client")
-    def test_br06_trail_is_logging_returns_passed(self, mock_client):
+    @patch("bedrock_app.detect_bedrock_regional_footprint", return_value=True)
+    def test_br06_trail_is_logging_returns_passed(
+        self, mock_footprint, mock_client
+    ):
         check = bedrock_app.check_bedrock_cloudtrail_logging
         mock_ct = MagicMock()
         mock_client.return_value = mock_ct
@@ -383,7 +408,8 @@ def test_br06_trail_is_logging_returns_passed(self, mock_client):
         assert findings[0]["Check_ID"] == "BR-06"
 
     @patch("boto3.client")
-    def test_br06_no_trails_returns_failed(self, mock_client):
+    @patch("bedrock_app.detect_bedrock_regional_footprint", return_value=True)
+    def test_br06_no_trails_returns_failed(self, mock_footprint, mock_client):
         check = bedrock_app.check_bedrock_cloudtrail_logging
         mock_ct = MagicMock()
         mock_client.return_value = mock_ct
@@ -395,7 +421,10 @@ def test_br06_no_trails_returns_failed(self, mock_client):
         assert findings[0]["Severity"] == "High"
 
     @patch("boto3.client")
-    def test_br06_trail_not_logging_returns_failed(self, mock_client):
+    @patch("bedrock_app.detect_bedrock_regional_footprint", return_value=True)
+    def test_br06_trail_not_logging_returns_failed(
+        self, mock_footprint, mock_client
+    ):
         check = bedrock_app.check_bedrock_cloudtrail_logging
         mock_ct = MagicMock()
         mock_client.return_value = mock_ct
@@ -413,6 +442,21 @@ def test_br06_trail_not_logging_returns_failed(self, mock_client):
         assert len(findings) >= 1
         assert findings[0]["Status"] == "Failed"
 
+    @patch("boto3.client")
+    @patch("bedrock_app.detect_bedrock_regional_footprint", return_value=False)
+    def test_br06_no_regional_footprint_returns_na(
+        self, mock_footprint, mock_client
+    ):
+        check = bedrock_app.check_bedrock_cloudtrail_logging
+        result = check(region="eu-west-1")
+        findings = extract_csv_data(result)
+        assert len(findings) >= 1
+        assert findings[0]["Status"] == "N/A"
+        assert findings[0]["Finding_Details"] == (
+            "No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage"
+        )
+        mock_client.assert_not_called()
+
     @patch("boto3.client")
     def test_br06_exception_returns_error_finding(self, mock_client):
         check = bedrock_app.check_bedrock_cloudtrail_logging
@@ -423,7 +467,8 @@ def test_br06_exception_returns_error_finding(self, mock_client):
         assert findings[0]["Status"] == "Failed"
 
     @patch("boto3.client")
-    def test_br06_schema_valid(self, mock_client):
+    @patch("bedrock_app.detect_bedrock_regional_footprint", return_value=True)
+    def test_br06_schema_valid(self, mock_footprint, mock_client):
         check = bedrock_app.check_bedrock_cloudtrail_logging
         mock_ct = MagicMock()
         mock_client.return_value = mock_ct
@@ -599,6 +644,28 @@ def test_br09_kb_exists_returns_findings(self, mock_client):
         assert len(findings) >= 1
         assert findings[0]["Check_ID"] == "BR-09"
 
+    @patch("boto3.client")
+    def test_br09_access_denied_returns_na(self, mock_client):
+        check = bedrock_app.check_bedrock_knowledge_base_encryption
+        mock_agent = MagicMock()
+        mock_client.return_value = mock_agent
+        paginator = MagicMock()
+        mock_agent.get_paginator.return_value = paginator
+        paginator.paginate.side_effect = ClientError(
+            {
+                "Error": {
+                    "Code": "AccessDeniedException",
+                    "Message": "missing permission",
+                }
+            },
+            "ListKnowledgeBases",
+        )
+        result = check(region="eu-west-1")
+        findings = extract_csv_data(result)
+        assert len(findings) >= 1
+        assert findings[0]["Status"] == "N/A"
+        assert "Bedrock Knowledge Base API" in findings[0]["Finding_Details"]
+
     @patch("boto3.client")
     def test_br09_exception_returns_error_finding(self, mock_client):
         check = bedrock_app.check_bedrock_knowledge_base_encryption

From 1fa8bb107ec01252c1d2285c9a4dd157bdda859b Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Sun, 14 Jun 2026 17:03:35 -0400
Subject: [PATCH 11/30] Rename CODEBUILD_TIMEOUT_MINUTES to avoid reserved
 CodeBuild prefix

CodeBuild reserves the CODEBUILD_ prefix for its own built-in environment
variables and rejects user-defined variables that use it, causing
UpdateProject to fail with InvalidInputException and the stack to enter
UPDATE_FAILED. Rename the variable to BUILD_TIMEOUT_MINUTES in both
CodeBuild project templates and update the consuming buildspec logic.
---
 buildspec.yml                                | 6 +++---
 deployment/2-aiml-security-codebuild.yaml    | 2 +-
 deployment/aiml-security-single-account.yaml | 2 +-
 3 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/buildspec.yml b/buildspec.yml
index 8b3cf39..a34fc23 100644
--- a/buildspec.yml
+++ b/buildspec.yml
@@ -219,18 +219,18 @@ phases:
         # CodeBuild timeout, reserving a buffer for the build/deploy work that runs
         # before this loop and the report processing that runs after it. An explicit
         # SF_POLL_TIMEOUT override always wins; a floor guards against tiny/negative
-        # values when CODEBUILD_TIMEOUT_MINUTES is small.
+        # values when BUILD_TIMEOUT_MINUTES is small.
         SF_POLL_BUFFER_SECONDS=${SF_POLL_BUFFER_SECONDS:-600}
         SF_POLL_FLOOR_SECONDS=${SF_POLL_FLOOR_SECONDS:-300}
         if [[ -n "$SF_POLL_TIMEOUT" ]]; then
           sf_poll_timeout=$SF_POLL_TIMEOUT
         else
-          sf_poll_timeout=$(( ${CODEBUILD_TIMEOUT_MINUTES:-60} * 60 - SF_POLL_BUFFER_SECONDS ))
+          sf_poll_timeout=$(( ${BUILD_TIMEOUT_MINUTES:-60} * 60 - SF_POLL_BUFFER_SECONDS ))
           if [[ $sf_poll_timeout -lt $SF_POLL_FLOOR_SECONDS ]]; then
             sf_poll_timeout=$SF_POLL_FLOOR_SECONDS
           fi
         fi
-        echo "Step Function poll timeout set to ${sf_poll_timeout}s (CodeBuild timeout: ${CODEBUILD_TIMEOUT_MINUTES:-60}m, buffer: ${SF_POLL_BUFFER_SECONDS}s, floor: ${SF_POLL_FLOOR_SECONDS}s)"
+        echo "Step Function poll timeout set to ${sf_poll_timeout}s (CodeBuild timeout: ${BUILD_TIMEOUT_MINUTES:-60}m, buffer: ${SF_POLL_BUFFER_SECONDS}s, floor: ${SF_POLL_FLOOR_SECONDS}s)"
 
         if [[ $MULTI_ACCOUNT_SCAN = 'true' ]]; then
           echo "Getting list of accounts for post-build processing"
diff --git a/deployment/2-aiml-security-codebuild.yaml b/deployment/2-aiml-security-codebuild.yaml
index 3ac5c69..4e4620a 100644
--- a/deployment/2-aiml-security-codebuild.yaml
+++ b/deployment/2-aiml-security-codebuild.yaml
@@ -531,7 +531,7 @@ Resources:
           - Name: TARGET_REGIONS
             Value: !Ref TargetRegions
             Type: PLAINTEXT
-          - Name: CODEBUILD_TIMEOUT_MINUTES
+          - Name: BUILD_TIMEOUT_MINUTES
             Value: !Ref CodeBuildTimeout
             Type: PLAINTEXT
       Description: Run AIML Security multi-account assessment
diff --git a/deployment/aiml-security-single-account.yaml b/deployment/aiml-security-single-account.yaml
index 4d5e732..98984da 100644
--- a/deployment/aiml-security-single-account.yaml
+++ b/deployment/aiml-security-single-account.yaml
@@ -441,7 +441,7 @@ Resources:
           - Name: TARGET_REGIONS
             Value: !Ref TargetRegions
             Type: PLAINTEXT
-          - Name: CODEBUILD_TIMEOUT_MINUTES
+          - Name: BUILD_TIMEOUT_MINUTES
             Value: !Ref CodeBuildTimeout
             Type: PLAINTEXT
       Description: Run AIML Security single-account assessment

From 4c7231f37becd3dbdf4edef681b8e3255c156054 Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Fri, 19 Jun 2026 18:38:06 -0400
Subject: [PATCH 12/30] Add FinServ region scope to reports

---
 .../security/finserv_assessments/app.py       | 39 ++++++++++++++++
 .../security/finserv_assessments/schema.py    |  3 ++
 .../security/finserv_tests/test_checks.py     | 45 +++++++++++++++++++
 .../security/finserv_tests/test_schema.py     | 13 ++++++
 .../generate_consolidated_report/app.py       |  2 +-
 .../report_template.py                        | 20 ++++++++-
 .../test_generate_report.py                   |  4 ++
 .../statemachine/assessments.asl.json         |  3 +-
 aiml-security-assessment/template.yaml        |  2 +
 consolidate_html_reports.py                   |  2 +-
 10 files changed, 129 insertions(+), 4 deletions(-)

diff --git a/aiml-security-assessment/functions/security/finserv_assessments/app.py b/aiml-security-assessment/functions/security/finserv_assessments/app.py
index bdc5e1b..72c85c4 100644
--- a/aiml-security-assessment/functions/security/finserv_assessments/app.py
+++ b/aiml-security-assessment/functions/security/finserv_assessments/app.py
@@ -6070,6 +6070,7 @@ def generate_csv_report(findings: List[Dict[str, Any]]) -> str:
         "Reference",
         "Severity",
         "Status",
+        "Region",
         "Compliance_Frameworks",
     ]
     writer = csv.DictWriter(csv_buffer, fieldnames=fieldnames)
@@ -6080,6 +6081,42 @@ def generate_csv_report(findings: List[Dict[str, Any]]) -> str:
     return csv_buffer.getvalue()
 
 
+def _normalized_target_regions(value: str) -> List[str]:
+    """Parse the CloudFormation TargetRegions parameter value."""
+    value = (value or "").strip()
+    if not value or value.lower() == "all":
+        return []
+    return [region.strip() for region in value.split(",") if region.strip()]
+
+
+def _get_region_scope(event: Dict[str, Any]) -> str:
+    """Return the configured FinServ region scope without assuming a fixed region."""
+    target_regions = event.get("TargetRegions")
+    if isinstance(target_regions, list):
+        regions = [str(region).strip() for region in target_regions if str(region).strip()]
+        if regions:
+            return ", ".join(regions)
+
+    regions = _normalized_target_regions(os.environ.get("TARGET_REGIONS", ""))
+    if regions:
+        return ", ".join(regions)
+
+    return (
+        event.get("Region")
+        or os.environ.get("AWS_REGION")
+        or os.environ.get("AWS_DEFAULT_REGION")
+        or ""
+    )
+
+
+def _stamp_region(findings: List[Dict[str, Any]], region: str) -> None:
+    """Populate missing CSV Region values so reports show FinServ scope."""
+    for finding in findings:
+        for row in finding.get("csv_data", []):
+            if not row.get("Region"):
+                row["Region"] = region
+
+
 def write_to_s3(execution_id: str, csv_content: str, bucket_name: str) -> str:
     """Write CSV report to S3 bucket."""
     s3_client = boto3.client("s3", config=boto3_config)
@@ -6406,6 +6443,7 @@ def lambda_handler(event, context):
     """
     logger.info("Starting FinServ GenAI security assessment")
     all_findings = []
+    region_scope = _get_region_scope(event)
 
     execution_id = event.get("Execution", {}).get("Name", "local-test")
     permission_cache = get_permissions_cache(execution_id) or {
@@ -6437,6 +6475,7 @@ def lambda_handler(event, context):
         all_findings.append(result)
 
     # Generate and upload report
+    _stamp_region(all_findings, region_scope)
     csv_content = generate_csv_report(all_findings)
     bucket_name = os.environ.get("AIML_ASSESSMENT_BUCKET_NAME")
     if not bucket_name:
diff --git a/aiml-security-assessment/functions/security/finserv_assessments/schema.py b/aiml-security-assessment/functions/security/finserv_assessments/schema.py
index 657ad66..d55425e 100644
--- a/aiml-security-assessment/functions/security/finserv_assessments/schema.py
+++ b/aiml-security-assessment/functions/security/finserv_assessments/schema.py
@@ -40,6 +40,7 @@ class Finding(BaseModel):
     Reference: str = Field(..., description="Documentation reference URL")
     Severity: SeverityEnum = Field(..., description="Severity level of the finding")
     Status: StatusEnum = Field(..., description="Current status of the finding")
+    Region: str = Field(default="", description="AWS region where the finding was identified")
     Compliance_Frameworks: str = Field(
         default="",
         description=(
@@ -76,6 +77,7 @@ def create_finding(
     reference: str,
     severity: SeverityEnum,
     status: StatusEnum,
+    region: str = "",
     compliance_frameworks: Optional[str] = "",
 ) -> Dict[str, Any]:
     """Create a validated finding dict.
@@ -94,6 +96,7 @@ def create_finding(
         Reference=reference,
         Severity=severity,
         Status=status,
+        Region=region,
         Compliance_Frameworks=compliance_frameworks or "",
     )
     return dict(finding.model_dump())
diff --git a/aiml-security-assessment/functions/security/finserv_tests/test_checks.py b/aiml-security-assessment/functions/security/finserv_tests/test_checks.py
index f456443..0371153 100644
--- a/aiml-security-assessment/functions/security/finserv_tests/test_checks.py
+++ b/aiml-security-assessment/functions/security/finserv_tests/test_checks.py
@@ -3506,6 +3506,7 @@ def test_empty_findings_produces_header_only(self):
         lines = csv_content.strip().split("\n")
         assert len(lines) == 1  # header only
         assert "Check_ID" in lines[0]
+        assert "Region" in lines[0]
 
     def test_findings_produce_csv_rows(self):
         findings = [
@@ -3530,6 +3531,50 @@ def test_findings_produce_csv_rows(self):
         assert len(lines) == 2  # header + 1 data row
         assert "FS-01" in lines[1]
 
+    def test_region_scope_uses_configured_target_regions_from_event(self):
+        event = {"Region": "fallback-region", "TargetRegions": ["region-a", "region-b"]}
+
+        assert app._get_region_scope(event) == "region-a, region-b"
+
+    def test_region_scope_uses_target_regions_env_when_event_list_absent(self, monkeypatch):
+        monkeypatch.setenv("TARGET_REGIONS", "region-a,region-b")
+
+        assert app._get_region_scope({"Region": "fallback-region"}) == "region-a, region-b"
+
+    def test_stamp_region_populates_missing_csv_regions(self):
+        findings = [
+            {
+                "check_name": "Test",
+                "status": "PASS",
+                "csv_data": [
+                    {
+                        "Check_ID": "FS-01",
+                        "Finding": "Test Finding",
+                        "Finding_Details": "Details",
+                        "Resolution": "Fix",
+                        "Reference": "https://example.com",
+                        "Severity": "High",
+                        "Status": "Passed",
+                    },
+                    {
+                        "Check_ID": "FS-02",
+                        "Finding": "Already Scoped",
+                        "Finding_Details": "Details",
+                        "Resolution": "Fix",
+                        "Reference": "https://example.com",
+                        "Severity": "Medium",
+                        "Status": "Failed",
+                        "Region": "Global",
+                    },
+                ],
+            }
+        ]
+
+        app._stamp_region(findings, "region-a, region-b")
+
+        assert findings[0]["csv_data"][0]["Region"] == "region-a, region-b"
+        assert findings[0]["csv_data"][1]["Region"] == "Global"
+
     def test_multiple_findings_multiple_rows(self):
         findings = [
             {
diff --git a/aiml-security-assessment/functions/security/finserv_tests/test_schema.py b/aiml-security-assessment/functions/security/finserv_tests/test_schema.py
index 5daead5..cee18d1 100644
--- a/aiml-security-assessment/functions/security/finserv_tests/test_schema.py
+++ b/aiml-security-assessment/functions/security/finserv_tests/test_schema.py
@@ -90,10 +90,23 @@ def test_output_has_all_csv_fields(self):
             "Reference",
             "Severity",
             "Status",
+            "Region",
             "Compliance_Frameworks",
         }
         assert set(result.keys()) == expected_keys
 
+    def test_region_defaults_to_empty_string(self):
+        result = create_finding(
+            check_id="FS-42",
+            finding_name="Name",
+            finding_details="Details",
+            resolution="Resolution",
+            reference="https://example.com",
+            severity="High",
+            status="Failed",
+        )
+        assert result["Region"] == ""
+
     @pytest.mark.parametrize(
         "check_id",
         ["FS-01", "FS-69", "BR-14", "SM-07", "AC-05"],
diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/app.py b/aiml-security-assessment/functions/security/generate_consolidated_report/app.py
index dbf6c52..f20fc9c 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/app.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/app.py
@@ -246,7 +246,7 @@ def generate_html_report(assessment_results: Dict[str, Any]) -> str:
                     region = finding.get("Region", "")
                     # "Global" tags IAM-only findings; it is not a scanned region
                     # and must not inflate the region count / multi-region UI.
-                    if region and region != GLOBAL_REGION_LABEL:
+                    if region and region != GLOBAL_REGION_LABEL and "," not in region:
                         regions.add(region)
 
     account_id = assessment_results.get("account_id", "Unknown")
diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py b/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
index c6be6ea..7d0ce52 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
@@ -936,6 +936,23 @@ def generate_html_report(
     finserv_failed = service_stats.get("finserv", {}).get("failed", 0)
     finserv_passed = service_stats.get("finserv", {}).get("passed", 0)
     if finserv_total > 0:
+        finserv_regions = sorted(
+            {
+                f.get("region", f.get("Region", ""))
+                for f in service_findings.get("finserv", [])
+                if f.get("region", f.get("Region", ""))
+            }
+        )
+        finserv_region_options = "".join(
+            [f'<option value="{r}">{r}</option>' for r in finserv_regions]
+        )
+        finserv_region_filter = (
+            '<div class="filter-group"><label>Region</label>'
+            '<select id="finservRegionFilter">'
+            f'<option value="">All Regions</option>{finserv_region_options}</select></div>'
+            if finserv_regions
+            else ""
+        )
         finserv_nav = (
             '<a href="#finserv" class="nav-item">'
             + FINSERV_ICON
@@ -954,10 +971,11 @@ def generate_html_report(
             '<div class="section-title">'
             + FINSERV_ICON
             + "Financial Services GenAI Risk Findings</div>"
-            '<div class="muted" style="margin:-6px 0 10px;font-size:13px;">Scope: this assessment evaluates the deployment Region once per execution. Severities follow a documented Likelihood &times; Impact methodology (see docs).</div>'
+            '<div class="muted" style="margin:-6px 0 10px;font-size:13px;">Scope: this assessment records the configured CloudFormation TargetRegions for this execution. Severities follow a documented Likelihood &times; Impact methodology (see docs).</div>'
             '<div class="filter-bar">'
             '<div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="finservSearchInput"></div>'
             + finserv_account_filter
+            + finserv_region_filter
             + '<div class="filter-group"><label>Severity</label><select id="finservSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>'
             '<div class="filter-group"><label>Status</label><select id="finservStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>'
             '<button class="btn btn-reset" id="finservResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>'
diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py b/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py
index 01baaa1..f1868c5 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py
@@ -276,6 +276,7 @@ def test_finserv_renders_when_present(self):
                     "Reference": "https://docs.aws.amazon.com/waf/latest/developerguide/waf-chapter.html",
                     "Severity": "Medium",
                     "Status": "Failed",
+                    "Region": "region-a, region-b",
                 },
                 {
                     "Account_ID": "123456789012",
@@ -286,6 +287,7 @@ def test_finserv_renders_when_present(self):
                     "Reference": "https://docs.aws.amazon.com/macie/latest/user/what-is-macie.html",
                     "Severity": "High",
                     "Status": "Passed",
+                    "Region": "region-a, region-b",
                 },
             ]
         }
@@ -295,6 +297,8 @@ def test_finserv_renders_when_present(self):
         self.assertIn('<option value="finserv">', html)
         self.assertIn("FS-01", html)
         self.assertIn('data-service="finserv"', html)
+        self.assertIn('id="finservRegionFilter"', html)
+        self.assertIn('<option value="region-a, region-b">region-a, region-b</option>', html)
 
     def test_finserv_omitted_when_absent(self):
         """REQ-1/REQ-7: with no FinServ data the FinServ section is omitted cleanly."""
diff --git a/aiml-security-assessment/statemachine/assessments.asl.json b/aiml-security-assessment/statemachine/assessments.asl.json
index 8d59f40..849e6b2 100644
--- a/aiml-security-assessment/statemachine/assessments.asl.json
+++ b/aiml-security-assessment/statemachine/assessments.asl.json
@@ -300,7 +300,8 @@
                                                 "Execution.$": "$.Execution",
                                                 "StateMachine.$": "$.StateMachine",
                                                 "Region.$": "$.Region",
-                                                "RegionIndex.$": "$.RegionIndex"
+                                                "RegionIndex.$": "$.RegionIndex",
+                                                "TargetRegions.$": "$.OriginalInput.ResolvedRegions.regions"
                                             }
                                         },
                                         "Retry": [
diff --git a/aiml-security-assessment/template.yaml b/aiml-security-assessment/template.yaml
index 4aa2119..7089c28 100644
--- a/aiml-security-assessment/template.yaml
+++ b/aiml-security-assessment/template.yaml
@@ -145,6 +145,7 @@ Resources:
       Environment:
         Variables:
           AIML_ASSESSMENT_BUCKET_NAME: !Ref AIMLAssessmentBucket
+          TARGET_REGIONS: !Ref TargetRegions
       Policies:
         - S3CrudPolicy:
             BucketName: !Ref AIMLAssessmentBucket
@@ -451,6 +452,7 @@ Resources:
       Environment:
         Variables:
           AIML_ASSESSMENT_BUCKET_NAME: !Ref AIMLAssessmentBucket
+          TARGET_REGIONS: !Ref TargetRegions
       Policies:
         - S3CrudPolicy:
             BucketName: !Ref AIMLAssessmentBucket
diff --git a/consolidate_html_reports.py b/consolidate_html_reports.py
index fd22eb9..1b21607 100644
--- a/consolidate_html_reports.py
+++ b/consolidate_html_reports.py
@@ -110,7 +110,7 @@ def consolidate_html_reports():
                             # Map CSV columns to finding structure
                             region = row.get("Region", "")
                             # "Global" tags IAM-only findings; not a scanned region.
-                            if region and region != GLOBAL_REGION_LABEL:
+                            if region and region != GLOBAL_REGION_LABEL and "," not in region:
                                 regions.add(region)
                             finding = {
                                 "account_id": account_id,

From a9c3ffc6c34cb2b6f47ff79f1b9bec9adf54bf6e Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Fri, 19 Jun 2026 18:51:59 -0400
Subject: [PATCH 13/30] Split FinServ region filter values

---
 .../security/finserv_assessments/app.py       | 34 +++++++++++++------
 .../security/finserv_tests/test_checks.py     | 19 ++++++-----
 .../report_template.py                        |  2 +-
 .../test_generate_report.py                   |  7 ++--
 4 files changed, 39 insertions(+), 23 deletions(-)

diff --git a/aiml-security-assessment/functions/security/finserv_assessments/app.py b/aiml-security-assessment/functions/security/finserv_assessments/app.py
index 72c85c4..6658748 100644
--- a/aiml-security-assessment/functions/security/finserv_assessments/app.py
+++ b/aiml-security-assessment/functions/security/finserv_assessments/app.py
@@ -6089,32 +6089,44 @@ def _normalized_target_regions(value: str) -> List[str]:
     return [region.strip() for region in value.split(",") if region.strip()]
 
 
-def _get_region_scope(event: Dict[str, Any]) -> str:
-    """Return the configured FinServ region scope without assuming a fixed region."""
+def _get_region_scopes(event: Dict[str, Any]) -> List[str]:
+    """Return resolved target regions without assuming a fixed deployment region."""
     target_regions = event.get("TargetRegions")
     if isinstance(target_regions, list):
         regions = [str(region).strip() for region in target_regions if str(region).strip()]
         if regions:
-            return ", ".join(regions)
+            return regions
 
     regions = _normalized_target_regions(os.environ.get("TARGET_REGIONS", ""))
     if regions:
-        return ", ".join(regions)
+        return regions
 
-    return (
+    fallback_region = (
         event.get("Region")
         or os.environ.get("AWS_REGION")
         or os.environ.get("AWS_DEFAULT_REGION")
         or ""
     )
+    return [fallback_region] if fallback_region else []
 
 
-def _stamp_region(findings: List[Dict[str, Any]], region: str) -> None:
-    """Populate missing CSV Region values so reports show FinServ scope."""
+def _stamp_regions(findings: List[Dict[str, Any]], regions: List[str]) -> None:
+    """Expand missing CSV Region values so each target region is filterable."""
+    regions = [region for region in regions if region]
+    if not regions:
+        return
+
     for finding in findings:
+        expanded_rows = []
         for row in finding.get("csv_data", []):
-            if not row.get("Region"):
-                row["Region"] = region
+            if row.get("Region"):
+                expanded_rows.append(row)
+                continue
+            for region in regions:
+                regional_row = dict(row)
+                regional_row["Region"] = region
+                expanded_rows.append(regional_row)
+        finding["csv_data"] = expanded_rows
 
 
 def write_to_s3(execution_id: str, csv_content: str, bucket_name: str) -> str:
@@ -6443,7 +6455,7 @@ def lambda_handler(event, context):
     """
     logger.info("Starting FinServ GenAI security assessment")
     all_findings = []
-    region_scope = _get_region_scope(event)
+    region_scopes = _get_region_scopes(event)
 
     execution_id = event.get("Execution", {}).get("Name", "local-test")
     permission_cache = get_permissions_cache(execution_id) or {
@@ -6475,7 +6487,7 @@ def lambda_handler(event, context):
         all_findings.append(result)
 
     # Generate and upload report
-    _stamp_region(all_findings, region_scope)
+    _stamp_regions(all_findings, region_scopes)
     csv_content = generate_csv_report(all_findings)
     bucket_name = os.environ.get("AIML_ASSESSMENT_BUCKET_NAME")
     if not bucket_name:
diff --git a/aiml-security-assessment/functions/security/finserv_tests/test_checks.py b/aiml-security-assessment/functions/security/finserv_tests/test_checks.py
index 0371153..566736c 100644
--- a/aiml-security-assessment/functions/security/finserv_tests/test_checks.py
+++ b/aiml-security-assessment/functions/security/finserv_tests/test_checks.py
@@ -3531,17 +3531,20 @@ def test_findings_produce_csv_rows(self):
         assert len(lines) == 2  # header + 1 data row
         assert "FS-01" in lines[1]
 
-    def test_region_scope_uses_configured_target_regions_from_event(self):
+    def test_region_scopes_use_configured_target_regions_from_event(self):
         event = {"Region": "fallback-region", "TargetRegions": ["region-a", "region-b"]}
 
-        assert app._get_region_scope(event) == "region-a, region-b"
+        assert app._get_region_scopes(event) == ["region-a", "region-b"]
 
-    def test_region_scope_uses_target_regions_env_when_event_list_absent(self, monkeypatch):
+    def test_region_scopes_use_target_regions_env_when_event_list_absent(self, monkeypatch):
         monkeypatch.setenv("TARGET_REGIONS", "region-a,region-b")
 
-        assert app._get_region_scope({"Region": "fallback-region"}) == "region-a, region-b"
+        assert app._get_region_scopes({"Region": "fallback-region"}) == [
+            "region-a",
+            "region-b",
+        ]
 
-    def test_stamp_region_populates_missing_csv_regions(self):
+    def test_stamp_regions_expands_missing_csv_regions(self):
         findings = [
             {
                 "check_name": "Test",
@@ -3570,10 +3573,10 @@ def test_stamp_region_populates_missing_csv_regions(self):
             }
         ]
 
-        app._stamp_region(findings, "region-a, region-b")
+        app._stamp_regions(findings, ["region-a", "region-b"])
 
-        assert findings[0]["csv_data"][0]["Region"] == "region-a, region-b"
-        assert findings[0]["csv_data"][1]["Region"] == "Global"
+        regions = [row["Region"] for row in findings[0]["csv_data"]]
+        assert regions == ["region-a", "region-b", "Global"]
 
     def test_multiple_findings_multiple_rows(self):
         findings = [
diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py b/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
index 7d0ce52..edec76b 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
@@ -971,7 +971,7 @@ def generate_html_report(
             '<div class="section-title">'
             + FINSERV_ICON
             + "Financial Services GenAI Risk Findings</div>"
-            '<div class="muted" style="margin:-6px 0 10px;font-size:13px;">Scope: this assessment records the configured CloudFormation TargetRegions for this execution. Severities follow a documented Likelihood &times; Impact methodology (see docs).</div>'
+            '<div class="muted" style="margin:-6px 0 10px;font-size:13px;">Scope: this assessment records findings against each resolved CloudFormation TargetRegions entry. Severities follow a documented Likelihood &times; Impact methodology (see docs).</div>'
             '<div class="filter-bar">'
             '<div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="finservSearchInput"></div>'
             + finserv_account_filter
diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py b/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py
index f1868c5..62f8199 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py
@@ -276,7 +276,7 @@ def test_finserv_renders_when_present(self):
                     "Reference": "https://docs.aws.amazon.com/waf/latest/developerguide/waf-chapter.html",
                     "Severity": "Medium",
                     "Status": "Failed",
-                    "Region": "region-a, region-b",
+                    "Region": "region-a",
                 },
                 {
                     "Account_ID": "123456789012",
@@ -287,7 +287,7 @@ def test_finserv_renders_when_present(self):
                     "Reference": "https://docs.aws.amazon.com/macie/latest/user/what-is-macie.html",
                     "Severity": "High",
                     "Status": "Passed",
-                    "Region": "region-a, region-b",
+                    "Region": "region-b",
                 },
             ]
         }
@@ -298,7 +298,8 @@ def test_finserv_renders_when_present(self):
         self.assertIn("FS-01", html)
         self.assertIn('data-service="finserv"', html)
         self.assertIn('id="finservRegionFilter"', html)
-        self.assertIn('<option value="region-a, region-b">region-a, region-b</option>', html)
+        self.assertIn('<option value="region-a">region-a</option>', html)
+        self.assertIn('<option value="region-b">region-b</option>', html)
 
     def test_finserv_omitted_when_absent(self):
         """REQ-1/REQ-7: with no FinServ data the FinServ section is omitted cleanly."""

From b58d653a582a2972b8e26cfa02d75830cf7f5add Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Fri, 19 Jun 2026 19:03:08 -0400
Subject: [PATCH 14/30] Show FinServ in assessment scope

---
 .../report_template.py                         | 18 +++++++++++++++++-
 .../test_generate_report.py                    |  2 ++
 2 files changed, 19 insertions(+), 1 deletion(-)

diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py b/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
index edec76b..2bd0413 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
@@ -966,6 +966,12 @@ def generate_html_report(
             + f' FinServ</div><div class="metric-value">{finserv_total}</div>'
             + f'<div class="metric-sub">{finserv_failed} Failed \u00b7 {finserv_passed} Passed</div></div>'
         )
+        finserv_scope_chip = (
+            '<div data-scope-service="finserv" style="display: flex; align-items: center; gap: 8px; '
+            'padding: 8px 12px; background: var(--surface-2); border-radius: 6px;">'
+            + FINSERV_ICON_SMALL
+            + '<span style="font-size: 13px; font-weight: 500;">Financial Services GenAI Risk</span></div>'
+        )
         finserv_section = (
             '<section id="finserv" class="section">'
             '<div class="section-title">'
@@ -989,12 +995,13 @@ def generate_html_report(
         finserv_nav = ""
         finserv_filter_option = ""
         finserv_service_card = ""
+        finserv_scope_chip = ""
         finserv_section = ""
 
     # Fill template
     html_template = get_html_template()
 
-    return html_template.format(
+    rendered_html = html_template.format(
         title=title,
         sidebar_subtitle=sidebar_subtitle,
         account_info=account_info,
@@ -1053,3 +1060,12 @@ def generate_html_report(
         account_risk_section=account_risk_section,
         region_risk_section=region_risk_section,
     )
+    if finserv_scope_chip:
+        rendered_html = rendered_html.replace(
+            '<span style="font-size: 13px; font-weight: 500;">Amazon Bedrock AgentCore</span></div></div><p style=',
+            '<span style="font-size: 13px; font-weight: 500;">Amazon Bedrock AgentCore</span></div>'
+            + finserv_scope_chip
+            + '</div><p style=',
+            1,
+        )
+    return rendered_html
diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py b/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py
index 62f8199..6fe21ce 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py
@@ -300,12 +300,14 @@ def test_finserv_renders_when_present(self):
         self.assertIn('id="finservRegionFilter"', html)
         self.assertIn('<option value="region-a">region-a</option>', html)
         self.assertIn('<option value="region-b">region-b</option>', html)
+        self.assertIn('data-scope-service="finserv"', html)
 
     def test_finserv_omitted_when_absent(self):
         """REQ-1/REQ-7: with no FinServ data the FinServ section is omitted cleanly."""
         html = generate_html_report(self.test_assessment_results)
         self.assertNotIn('id="finserv"', html)
         self.assertNotIn('<option value="finserv">', html)
+        self.assertNotIn('data-scope-service="finserv"', html)
         # Other services still render (regression check).
         self.assertIn('id="bedrock"', html)
 

From a2c504a1fdb75ca695a36b30d0075d5d5b474abb Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Fri, 19 Jun 2026 19:09:38 -0400
Subject: [PATCH 15/30] Add FinServ guide references to report

---
 .../report_template.py                        | 19 ++++++++++++++++++-
 .../test_generate_report.py                   |  2 ++
 2 files changed, 20 insertions(+), 1 deletion(-)

diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py b/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
index 2bd0413..3b51af3 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
@@ -23,6 +23,10 @@
     '<path fill="#FFF" d="M40 14 L66 26 L66 31 L14 31 L14 26 Z '
     'M20 35 h6 v23 h-6 z M37 35 h6 v23 h-6 z M54 35 h6 v23 h-6 z M14 62 h52 v5 h-52 z"/></svg></span>'
 )
+FINSERV_GUIDE_URL = (
+    "https://d1.awsstatic.com/onedam/marketing-channels/website/public/"
+    "global-FinServ-ComplianceGuide-GenAIRisks-public.pdf"
+)
 
 
 def generate_table_rows(findings: List[Dict], include_data_attrs: bool = True) -> str:
@@ -972,12 +976,18 @@ def generate_html_report(
             + FINSERV_ICON_SMALL
             + '<span style="font-size: 13px; font-weight: 500;">Financial Services GenAI Risk</span></div>'
         )
+        finserv_scope_source = (
+            f' Includes Financial Services GenAI Risk checks derived from the '
+            f'<a href="{FINSERV_GUIDE_URL}" target="_blank">AWS guide for Financial Services risk management of the use of Generative AI</a>.'
+        )
         finserv_section = (
             '<section id="finserv" class="section">'
             '<div class="section-title">'
             + FINSERV_ICON
             + "Financial Services GenAI Risk Findings</div>"
-            '<div class="muted" style="margin:-6px 0 10px;font-size:13px;">Scope: this assessment records findings against each resolved CloudFormation TargetRegions entry. Severities follow a documented Likelihood &times; Impact methodology (see docs).</div>'
+            '<div class="muted" style="margin:-6px 0 10px;font-size:13px;">Scope: this assessment records findings against each resolved CloudFormation TargetRegions entry. These checks are derived from the '
+            f'<a href="{FINSERV_GUIDE_URL}" target="_blank">AWS guide for Financial Services risk management of the use of Generative AI</a>. '
+            'Severities follow a documented Likelihood &times; Impact methodology (see docs).</div>'
             '<div class="filter-bar">'
             '<div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="finservSearchInput"></div>'
             + finserv_account_filter
@@ -996,6 +1006,7 @@ def generate_html_report(
         finserv_filter_option = ""
         finserv_service_card = ""
         finserv_scope_chip = ""
+        finserv_scope_source = ""
         finserv_section = ""
 
     # Fill template
@@ -1068,4 +1079,10 @@ def generate_html_report(
             + '</div><p style=',
             1,
         )
+        rendered_html = rendered_html.replace(
+            "Based on AWS Well-Architected Framework (Generative AI Lens) and service-specific security documentation.",
+            "Based on AWS Well-Architected Framework (Generative AI Lens) and service-specific security documentation."
+            + finserv_scope_source,
+            1,
+        )
     return rendered_html
diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py b/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py
index 6fe21ce..2e52482 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py
@@ -301,6 +301,7 @@ def test_finserv_renders_when_present(self):
         self.assertIn('<option value="region-a">region-a</option>', html)
         self.assertIn('<option value="region-b">region-b</option>', html)
         self.assertIn('data-scope-service="finserv"', html)
+        self.assertIn("global-FinServ-ComplianceGuide-GenAIRisks-public.pdf", html)
 
     def test_finserv_omitted_when_absent(self):
         """REQ-1/REQ-7: with no FinServ data the FinServ section is omitted cleanly."""
@@ -308,6 +309,7 @@ def test_finserv_omitted_when_absent(self):
         self.assertNotIn('id="finserv"', html)
         self.assertNotIn('<option value="finserv">', html)
         self.assertNotIn('data-scope-service="finserv"', html)
+        self.assertNotIn("global-FinServ-ComplianceGuide-GenAIRisks-public.pdf", html)
         # Other services still render (regression check).
         self.assertIn('id="bedrock"', html)
 

From b38eac9493a3bbafcdd163312e629b8ea3586bbe Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Fri, 19 Jun 2026 19:57:21 -0400
Subject: [PATCH 16/30] Improve FinServ regional handling and report UI

---
 .../security/finserv_assessments/app.py       | 209 +++++++++++++++++-
 .../security/finserv_tests/test_checks.py     | 165 +++++++++++++-
 .../finserv_tests/test_lambda_handler.py      |  50 +++++
 .../report_template.py                        |  60 +++--
 .../test_generate_report.py                   |  37 ++++
 5 files changed, 489 insertions(+), 32 deletions(-)

diff --git a/aiml-security-assessment/functions/security/finserv_assessments/app.py b/aiml-security-assessment/functions/security/finserv_assessments/app.py
index 6658748..9e0b2ac 100644
--- a/aiml-security-assessment/functions/security/finserv_assessments/app.py
+++ b/aiml-security-assessment/functions/security/finserv_assessments/app.py
@@ -63,7 +63,11 @@
 from typing import Any, Dict, List, Optional
 
 from botocore.config import Config
-from botocore.exceptions import ClientError, ParamValidationError
+from botocore.exceptions import (
+    ClientError,
+    EndpointConnectionError,
+    ParamValidationError,
+)
 
 from schema import create_finding
 
@@ -243,6 +247,10 @@ def _is_missing_bucket_error(err: "ClientError") -> bool:
 # could not run (e.g., missing IAM permission). They are visible in the report
 # (Status="N/A") so a failed/permission-denied check does not silently vanish.
 COULD_NOT_ASSESS_PREFIX = "COULD NOT ASSESS: "
+FINSERV_GUIDE_URL = (
+    "https://d1.awsstatic.com/onedam/marketing-channels/website/public/"
+    "global-FinServ-ComplianceGuide-GenAIRisks-public.pdf"
+)
 
 # ---------------------------------------------------------------------------
 # ResourceInventory data model and helpers (REQ-3, REQ-4.1, REQ-6.4)
@@ -735,6 +743,23 @@ def _could_not_assess_row(check_id: str, check_name: str, err: Any) -> Dict[str,
     )
 
 
+def _no_regional_genai_resources_row(region: str) -> Dict[str, Any]:
+    """Visible N/A row used when a target region has no GenAI resource footprint."""
+    return create_finding(
+        check_id="FS-00",
+        finding_name="FinServ Regional Scope Not Applicable",
+        finding_details=(
+            f"No regional Bedrock, AgentCore, or SageMaker resources were found in {region}; "
+            "FinServ GenAI risk checks were not applied to this region."
+        ),
+        resolution="No action required unless GenAI workloads are expected in this region.",
+        reference=FINSERV_GUIDE_URL,
+        severity="Informational",
+        status="N/A",
+        region=region,
+    )
+
+
 # ===========================================================================
 # CATEGORY 1: UNBOUNDED CONSUMPTION (FS-01 to FS-06)
 # Risk: GenAI workloads can be exploited to exhaust compute/cost budgets
@@ -6093,7 +6118,9 @@ def _get_region_scopes(event: Dict[str, Any]) -> List[str]:
     """Return resolved target regions without assuming a fixed deployment region."""
     target_regions = event.get("TargetRegions")
     if isinstance(target_regions, list):
-        regions = [str(region).strip() for region in target_regions if str(region).strip()]
+        regions = [
+            str(region).strip() for region in target_regions if str(region).strip()
+        ]
         if regions:
             return regions
 
@@ -6101,15 +6128,141 @@ def _get_region_scopes(event: Dict[str, Any]) -> List[str]:
     if regions:
         return regions
 
-    fallback_region = (
-        event.get("Region")
-        or os.environ.get("AWS_REGION")
-        or os.environ.get("AWS_DEFAULT_REGION")
-        or ""
-    )
+    fallback_region = event.get("Region") or ""
     return [fallback_region] if fallback_region else []
 
 
+def _probe_regional_resource_list(probe_label: str, probe_func) -> Optional[bool]:
+    """Return True for resources, False for a successful empty list, None if unknown."""
+    try:
+        result = probe_func()
+        return bool(result) if isinstance(result, list) else None
+    except (EndpointConnectionError, ParamValidationError):
+        logger.info("%s API is not available in this region", probe_label)
+        return False
+    except ClientError as e:
+        error_code = e.response.get("Error", {}).get("Code", "")
+        if _is_access_error(e):
+            logger.warning(
+                "Unable to determine FinServ regional footprint from %s: %s",
+                probe_label,
+                error_code,
+            )
+            return None
+        if error_code in {
+            "UnknownOperationException",
+            "ValidationException",
+            "ResourceNotFoundException",
+            "OptInRequired",
+            "UnauthorizedOperation",
+        }:
+            logger.info(
+                "%s API is not available in this region: %s", probe_label, error_code
+            )
+            return False
+        logger.warning(
+            "Unexpected error probing %s for FinServ regional footprint: %s",
+            probe_label,
+            error_code or str(e),
+        )
+        return None
+    except Exception as e:
+        error_text = str(e)
+        if "Unknown operation" in error_text or "UnknownOperation" in error_text:
+            logger.info("%s API is not available in this region", probe_label)
+            return False
+        logger.warning(
+            "Unexpected error probing %s for FinServ regional footprint: %s",
+            probe_label,
+            error_text,
+        )
+        return None
+
+
+def detect_finserv_regional_footprint(region: str) -> Optional[bool]:
+    """
+    Detect whether a target region has GenAI resources that justify regional
+    FinServ findings.
+
+    Returns:
+        True when Bedrock, AgentCore, or SageMaker resources exist
+        False when supported probes succeed and return no resources
+        None when permissions/API errors prevent a confident decision
+    """
+    bedrock = boto3.client("bedrock", config=boto3_config, region_name=region)
+    bedrock_agent = boto3.client(
+        "bedrock-agent", config=boto3_config, region_name=region
+    )
+    agentcore = boto3.client(
+        "bedrock-agentcore-control", config=boto3_config, region_name=region
+    )
+    sagemaker = boto3.client("sagemaker", config=boto3_config, region_name=region)
+
+    probes = [
+        ("Bedrock Guardrails", lambda: bedrock.list_guardrails().get("guardrails", [])),
+        (
+            "Bedrock Agents",
+            lambda: bedrock_agent.list_agents().get("agentSummaries", []),
+        ),
+        (
+            "Bedrock Knowledge Bases",
+            lambda: bedrock_agent.list_knowledge_bases().get(
+                "knowledgeBaseSummaries", []
+            ),
+        ),
+        (
+            "AgentCore Runtimes",
+            lambda: agentcore.list_agent_runtimes().get("agentRuntimes", []),
+        ),
+        (
+            "SageMaker Endpoints",
+            lambda: sagemaker.list_endpoints(MaxResults=1).get("Endpoints", []),
+        ),
+        (
+            "SageMaker Models",
+            lambda: sagemaker.list_models(MaxResults=1).get("Models", []),
+        ),
+        (
+            "SageMaker Feature Groups",
+            lambda: sagemaker.list_feature_groups(MaxResults=1).get(
+                "FeatureGroupSummaries", []
+            ),
+        ),
+    ]
+
+    indeterminate = False
+    successful_empty_probe = False
+    for probe_label, probe_func in probes:
+        probe_result = _probe_regional_resource_list(probe_label, probe_func)
+        if probe_result is True:
+            return True
+        if probe_result is False:
+            successful_empty_probe = True
+        if probe_result is None:
+            indeterminate = True
+
+    if successful_empty_probe:
+        return False
+    return None if indeterminate else False
+
+
+def _partition_regions_by_finserv_footprint(
+    regions: List[str],
+) -> "tuple[List[str], List[str]]":
+    """Split target regions into regions to assess and regions that are N/A."""
+    assessable_regions = []
+    empty_regions = []
+    for region in regions:
+        footprint_found = detect_finserv_regional_footprint(region)
+        if footprint_found is False:
+            empty_regions.append(region)
+        else:
+            # Unknown footprint keeps the region in scope so access/API problems do
+            # not hide potentially real risks.
+            assessable_regions.append(region)
+    return assessable_regions, empty_regions
+
+
 def _stamp_regions(findings: List[Dict[str, Any]], regions: List[str]) -> None:
     """Expand missing CSV Region values so each target region is filterable."""
     regions = [region for region in regions if region]
@@ -6129,6 +6282,40 @@ def _stamp_regions(findings: List[Dict[str, Any]], regions: List[str]) -> None:
         finding["csv_data"] = expanded_rows
 
 
+def _append_no_resource_region_findings(
+    findings: List[Dict[str, Any]], regions: List[str]
+) -> None:
+    """Append one informational N/A finding for each region without GenAI resources."""
+    if not regions:
+        return
+    findings.append(
+        {
+            "check_name": "FinServ Regional Resource Scope",
+            "status": "PASS",
+            "details": "No regional GenAI resources found",
+            "csv_data": [
+                _no_regional_genai_resources_row(region) for region in regions if region
+            ],
+        }
+    )
+
+
+def _apply_region_scope(findings: List[Dict[str, Any]], regions: List[str]) -> None:
+    """Scope FinServ rows to target regions with resources and emit N/A rows for empty regions."""
+    if not regions:
+        return
+
+    assessable_regions, empty_regions = _partition_regions_by_finserv_footprint(regions)
+    if assessable_regions:
+        _stamp_regions(findings, assessable_regions)
+    else:
+        for finding in findings:
+            finding["csv_data"] = [
+                row for row in finding.get("csv_data", []) if row.get("Region")
+            ]
+    _append_no_resource_region_findings(findings, empty_regions)
+
+
 def write_to_s3(execution_id: str, csv_content: str, bucket_name: str) -> str:
     """Write CSV report to S3 bucket."""
     s3_client = boto3.client("s3", config=boto3_config)
@@ -6486,8 +6673,10 @@ def lambda_handler(event, context):
             )
         all_findings.append(result)
 
-    # Generate and upload report
-    _stamp_regions(all_findings, region_scopes)
+    # Generate and upload report. Only duplicate regional FinServ rows into
+    # target regions where a GenAI footprint is present; empty regions receive a
+    # visible N/A row instead of false failed controls.
+    _apply_region_scope(all_findings, region_scopes)
     csv_content = generate_csv_report(all_findings)
     bucket_name = os.environ.get("AIML_ASSESSMENT_BUCKET_NAME")
     if not bucket_name:
diff --git a/aiml-security-assessment/functions/security/finserv_tests/test_checks.py b/aiml-security-assessment/functions/security/finserv_tests/test_checks.py
index 566736c..0f6c7a4 100644
--- a/aiml-security-assessment/functions/security/finserv_tests/test_checks.py
+++ b/aiml-security-assessment/functions/security/finserv_tests/test_checks.py
@@ -3498,6 +3498,101 @@ def test_no_exact_pins_on_aws_sdk(self):
         )
 
 
+class TestFinservRegionalFootprint:
+    """Regional footprint gating used to avoid false FinServ failures."""
+
+    @staticmethod
+    def _client_factory(clients):
+        def factory(service_name, **kwargs):
+            return clients[service_name]
+
+        return factory
+
+    @patch("app.boto3.client")
+    def test_detect_returns_true_when_any_genai_resource_exists(self, mock_client):
+        bedrock = MagicMock()
+        bedrock.list_guardrails.return_value = {"guardrails": [{"id": "gr-1"}]}
+        clients = {
+            "bedrock": bedrock,
+            "bedrock-agent": MagicMock(),
+            "bedrock-agentcore-control": MagicMock(),
+            "sagemaker": MagicMock(),
+        }
+        mock_client.side_effect = self._client_factory(clients)
+
+        assert app.detect_finserv_regional_footprint("us-east-1") is True
+        mock_client.assert_any_call(
+            "bedrock", config=app.boto3_config, region_name="us-east-1"
+        )
+
+    @patch("app.boto3.client")
+    def test_detect_returns_false_when_all_supported_probes_are_empty(
+        self, mock_client
+    ):
+        bedrock = MagicMock()
+        bedrock.list_guardrails.return_value = {"guardrails": []}
+        bedrock_agent = MagicMock()
+        bedrock_agent.list_agents.return_value = {"agentSummaries": []}
+        bedrock_agent.list_knowledge_bases.return_value = {"knowledgeBaseSummaries": []}
+        agentcore = MagicMock()
+        agentcore.list_agent_runtimes.return_value = {"agentRuntimes": []}
+        sagemaker = MagicMock()
+        sagemaker.list_endpoints.return_value = {"Endpoints": []}
+        sagemaker.list_models.return_value = {"Models": []}
+        sagemaker.list_feature_groups.return_value = {"FeatureGroupSummaries": []}
+        mock_client.side_effect = self._client_factory(
+            {
+                "bedrock": bedrock,
+                "bedrock-agent": bedrock_agent,
+                "bedrock-agentcore-control": agentcore,
+                "sagemaker": sagemaker,
+            }
+        )
+
+        assert app.detect_finserv_regional_footprint("us-west-2") is False
+
+    @patch("app.boto3.client")
+    def test_detect_returns_none_when_footprint_is_indeterminate(self, mock_client):
+        bedrock = MagicMock()
+        bedrock.list_guardrails.side_effect = _client_error("AccessDeniedException")
+        bedrock_agent = MagicMock()
+        bedrock_agent.list_agents.side_effect = _client_error("AccessDeniedException")
+        bedrock_agent.list_knowledge_bases.side_effect = _client_error(
+            "AccessDeniedException"
+        )
+        agentcore = MagicMock()
+        agentcore.list_agent_runtimes.side_effect = _client_error(
+            "AccessDeniedException"
+        )
+        sagemaker = MagicMock()
+        sagemaker.list_endpoints.side_effect = _client_error("AccessDeniedException")
+        sagemaker.list_models.side_effect = _client_error("AccessDeniedException")
+        sagemaker.list_feature_groups.side_effect = _client_error(
+            "AccessDeniedException"
+        )
+        mock_client.side_effect = self._client_factory(
+            {
+                "bedrock": bedrock,
+                "bedrock-agent": bedrock_agent,
+                "bedrock-agentcore-control": agentcore,
+                "sagemaker": sagemaker,
+            }
+        )
+
+        assert app.detect_finserv_regional_footprint("eu-west-1") is None
+
+    @patch("app.detect_finserv_regional_footprint")
+    def test_partition_keeps_indeterminate_regions_in_scope(self, mock_detect):
+        mock_detect.side_effect = [None, False, True]
+
+        assessable, empty = app._partition_regions_by_finserv_footprint(
+            ["unknown-region", "empty-region", "active-region"]
+        )
+
+        assert assessable == ["unknown-region", "active-region"]
+        assert empty == ["empty-region"]
+
+
 class TestGenerateCsvReport:
     """Test CSV report generation."""
 
@@ -3536,7 +3631,9 @@ def test_region_scopes_use_configured_target_regions_from_event(self):
 
         assert app._get_region_scopes(event) == ["region-a", "region-b"]
 
-    def test_region_scopes_use_target_regions_env_when_event_list_absent(self, monkeypatch):
+    def test_region_scopes_use_target_regions_env_when_event_list_absent(
+        self, monkeypatch
+    ):
         monkeypatch.setenv("TARGET_REGIONS", "region-a,region-b")
 
         assert app._get_region_scopes({"Region": "fallback-region"}) == [
@@ -3578,6 +3675,72 @@ def test_stamp_regions_expands_missing_csv_regions(self):
         regions = [row["Region"] for row in findings[0]["csv_data"]]
         assert regions == ["region-a", "region-b", "Global"]
 
+    def test_apply_region_scope_does_not_copy_failures_to_empty_regions(self):
+        findings = [
+            {
+                "check_name": "Test",
+                "status": "WARN",
+                "csv_data": [
+                    {
+                        "Check_ID": "FS-01",
+                        "Finding": "Test Failed Finding",
+                        "Finding_Details": "Details",
+                        "Resolution": "Fix",
+                        "Reference": "https://example.com",
+                        "Severity": "High",
+                        "Status": "Failed",
+                    }
+                ],
+            }
+        ]
+
+        with patch(
+            "app._partition_regions_by_finserv_footprint",
+            return_value=(["region-with-resources"], ["region-without-resources"]),
+        ):
+            app._apply_region_scope(
+                findings, ["region-with-resources", "region-without-resources"]
+            )
+
+        rows = [row for finding in findings for row in finding["csv_data"]]
+        failed_rows = [row for row in rows if row["Status"] == "Failed"]
+        na_rows = [row for row in rows if row["Status"] == "N/A"]
+
+        assert [row["Region"] for row in failed_rows] == ["region-with-resources"]
+        assert [row["Region"] for row in na_rows] == ["region-without-resources"]
+        assert na_rows[0]["Check_ID"] == "FS-00"
+
+    def test_apply_region_scope_suppresses_unscoped_rows_when_all_regions_empty(self):
+        findings = [
+            {
+                "check_name": "Test",
+                "status": "WARN",
+                "csv_data": [
+                    {
+                        "Check_ID": "FS-01",
+                        "Finding": "Test Failed Finding",
+                        "Finding_Details": "Details",
+                        "Resolution": "Fix",
+                        "Reference": "https://example.com",
+                        "Severity": "High",
+                        "Status": "Failed",
+                    }
+                ],
+            }
+        ]
+
+        with patch(
+            "app._partition_regions_by_finserv_footprint",
+            return_value=([], ["region-a", "region-b"]),
+        ):
+            app._apply_region_scope(findings, ["region-a", "region-b"])
+
+        rows = [row for finding in findings for row in finding["csv_data"]]
+
+        assert {row["Region"] for row in rows} == {"region-a", "region-b"}
+        assert {row["Status"] for row in rows} == {"N/A"}
+        assert {row["Check_ID"] for row in rows} == {"FS-00"}
+
     def test_multiple_findings_multiple_rows(self):
         findings = [
             {
diff --git a/aiml-security-assessment/functions/security/finserv_tests/test_lambda_handler.py b/aiml-security-assessment/functions/security/finserv_tests/test_lambda_handler.py
index af6be0d..c286c38 100644
--- a/aiml-security-assessment/functions/security/finserv_tests/test_lambda_handler.py
+++ b/aiml-security-assessment/functions/security/finserv_tests/test_lambda_handler.py
@@ -280,6 +280,56 @@ def test_handler_passes_inventory_to_build_finserv_checks(
             "lambda_handler must never pass None as the inventory argument"
         )
 
+    @patch("app.write_to_s3")
+    @patch("app.get_permissions_cache")
+    @patch("app._apply_region_scope")
+    @patch("app.build_finserv_checks")
+    @patch("app.collect_resource_inventory")
+    def test_handler_scopes_findings_with_target_regions_from_event(
+        self,
+        mock_collect,
+        mock_build,
+        mock_apply_scope,
+        mock_cache,
+        mock_s3,
+    ):
+        """lambda_handler uses the state-machine TargetRegions list for report scoping."""
+        mock_collect.return_value = object()
+        mock_build.return_value = [
+            (
+                "FS-01",
+                lambda: {
+                    "check_name": "Scoped Check",
+                    "status": "WARN",
+                    "csv_data": [
+                        {
+                            "Check_ID": "FS-01",
+                            "Finding": "Scoped Finding",
+                            "Finding_Details": "Details",
+                            "Resolution": "Fix",
+                            "Reference": "https://example.com",
+                            "Severity": "High",
+                            "Status": "Failed",
+                        }
+                    ],
+                },
+            )
+        ]
+        mock_cache.return_value = {"role_permissions": {}, "user_permissions": {}}
+        mock_s3.return_value = "https://bucket.s3.amazonaws.com/report.csv"
+        event = {
+            "Execution": {"Name": "exec-target-regions"},
+            "Region": "fallback-region",
+            "TargetRegions": ["region-a", "region-b"],
+        }
+
+        app.lambda_handler(event, None)
+
+        mock_apply_scope.assert_called_once()
+        findings_arg, regions_arg = mock_apply_scope.call_args.args
+        assert regions_arg == ["region-a", "region-b"]
+        assert findings_arg[0]["check_name"] == "Scoped Check"
+
 
 class TestWriteToS3:
     """Test the write_to_s3 helper."""
diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py b/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
index 3b51af3..5cc094f 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
@@ -169,6 +169,11 @@ def get_html_template() -> str:
         .section-title .service-icon svg {{ border-radius: 8px; }}
         .nav-item .count {{ margin-left: auto; font-size: 12px; font-weight: 600; background: var(--surface-2); padding: 2px 8px; border-radius: 10px; }}
         .nav-item.active .count {{ background: var(--accent); color: #fff; }}
+        .nav-section.industry-nav {{ border-top: 1px solid var(--border); padding-top: 16px; margin-top: -8px; }}
+        .industry-nav .nav-item {{ background: var(--accent-soft); color: var(--text); box-shadow: inset 3px 0 0 var(--accent); }}
+        .industry-nav .nav-item:hover {{ background: var(--accent-soft); color: var(--accent); }}
+        .industry-nav .nav-item.active {{ background: var(--accent-soft); color: var(--accent); }}
+        .industry-nav .nav-item .count {{ background: var(--accent); color: #fff; }}
         .sidebar-footer {{ margin-top: auto; padding: 16px 20px; border-top: 1px solid var(--border); font-size: 12px; color: var(--text-3); }}
         .sidebar-footer a {{ color: var(--accent); text-decoration: none; }}
         .main {{ padding: 32px 40px; max-width: 1400px; }}
@@ -185,6 +190,11 @@ def get_html_template() -> str:
         .metric.highlight .metric-value {{ color: var(--success); }}
         .metric.danger .metric-value {{ color: var(--danger); }}
         .metric.warning .metric-value {{ color: var(--warning); }}
+        .scope-industry {{ margin-top: 12px; padding-top: 12px; border-top: 1px solid var(--border); }}
+        .scope-industry-label {{ font-size: 11px; font-weight: 600; color: var(--text-3); text-transform: uppercase; letter-spacing: 0.5px; margin-bottom: 8px; }}
+        .scope-chip-row {{ display: flex; gap: 12px; flex-wrap: wrap; }}
+        .scope-chip {{ display: flex; align-items: center; gap: 8px; padding: 8px 12px; background: var(--surface-2); border-radius: 6px; }}
+        .scope-chip.industry-chip {{ background: var(--accent-soft); border: 1px solid var(--accent); }}
         .card {{ background: var(--surface); border: 2px solid var(--border); border-radius: 12px; margin-bottom: 24px; box-shadow: 0 1px 3px rgba(0,0,0,0.08); }}
         .card-header {{ padding: 16px 20px; border-bottom: 2px solid var(--border); display: flex; justify-content: space-between; align-items: center; background: var(--surface-2); }}
         .card-header h3 {{ font-size: 15px; font-weight: 600; display: flex; align-items: center; gap: 10px; }}
@@ -300,14 +310,14 @@ def get_html_template() -> str:
                 </a>
                 <a href="#agentcore" class="nav-item">
                     <span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"/></svg></span>
-                    AgentCore
-                    <span class="count">{agentcore_total}</span>
-                </a>
-                {finserv_nav}
-            </nav>
-            <div class="sidebar-footer">
-                <p>Generated: {date_display}</p>
-                <p>{account_info}</p>
+	                    AgentCore
+	                    <span class="count">{agentcore_total}</span>
+	                </a>
+	            </nav>
+	            {industry_nav}
+	            <div class="sidebar-footer">
+	                <p>Generated: {date_display}</p>
+	                <p>{account_info}</p>
                 <p style="margin-top: 8px;"><a href="https://github.com/aws-samples/sample-aiml-security-assessment">GitHub Repository</a></p>
             </div>
         </aside>
@@ -350,7 +360,7 @@ def get_html_template() -> str:
                     <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="searchInput"></div>
                     {account_filter}
                     {region_filter}
-                    <div class="filter-group"><label>Service</label><select id="serviceFilter"><option value="">All Services</option><option value="bedrock">Bedrock</option><option value="sagemaker">SageMaker</option><option value="agentcore">AgentCore</option>{finserv_filter_option}</select></div>
+                    <div class="filter-group"><label>Assessment Area</label><select id="serviceFilter"><option value="">All Assessment Areas</option><option value="bedrock">Bedrock</option><option value="sagemaker">SageMaker</option><option value="agentcore">AgentCore</option>{finserv_filter_option}</select></div>
                     <div class="filter-group"><label>Severity</label><select id="severityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
                     <div class="filter-group"><label>Status</label><select id="statusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
                     <button class="btn btn-reset" id="resetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
@@ -930,7 +940,7 @@ def generate_html_report(
     else:
         region_risk_section = ""
 
-    # FinServ (FS-*) — first-class service, rendered only when findings exist
+    # FinServ (FS-*) — first-class industry assessment, rendered only when findings exist
     # (so non-FinServ accounts and EnableFinServAssessment=false deploys stay clean).
     finserv_total = (
         service_stats.get("finserv", {}).get("passed", 0)
@@ -958,23 +968,29 @@ def generate_html_report(
             else ""
         )
         finserv_nav = (
-            '<a href="#finserv" class="nav-item">'
+            '<a href="#finserv" class="nav-item industry-item">'
             + FINSERV_ICON
             + " Financial Services"
             + f'<span class="count">{finserv_total}</span></a>'
         )
+        industry_nav = (
+            '<nav class="nav-section industry-nav"><h3>By Industry</h3>'
+            + finserv_nav
+            + "</nav>"
+        )
         finserv_filter_option = '<option value="finserv">Financial Services</option>'
         finserv_service_card = (
             '<div class="metric"><div class="metric-label">'
             + FINSERV_ICON_SMALL
-            + f' FinServ</div><div class="metric-value">{finserv_total}</div>'
+            + f' Financial Services Risk</div><div class="metric-value">{finserv_total}</div>'
             + f'<div class="metric-sub">{finserv_failed} Failed \u00b7 {finserv_passed} Passed</div></div>'
         )
-        finserv_scope_chip = (
-            '<div data-scope-service="finserv" style="display: flex; align-items: center; gap: 8px; '
-            'padding: 8px 12px; background: var(--surface-2); border-radius: 6px;">'
+        finserv_scope_industry_block = (
+            '<div class="scope-industry" data-scope-service="finserv">'
+            '<div class="scope-industry-label">Industry</div>'
+            '<div class="scope-chip-row"><div class="scope-chip industry-chip">'
             + FINSERV_ICON_SMALL
-            + '<span style="font-size: 13px; font-weight: 500;">Financial Services GenAI Risk</span></div>'
+            + '<span style="font-size: 13px; font-weight: 500;">Financial Services GenAI Risk</span></div></div></div>'
         )
         finserv_scope_source = (
             f' Includes Financial Services GenAI Risk checks derived from the '
@@ -1003,9 +1019,10 @@ def generate_html_report(
         )
     else:
         finserv_nav = ""
+        industry_nav = ""
         finserv_filter_option = ""
         finserv_service_card = ""
-        finserv_scope_chip = ""
+        finserv_scope_industry_block = ""
         finserv_scope_source = ""
         finserv_section = ""
 
@@ -1064,19 +1081,20 @@ def generate_html_report(
         bedrock_region_filter=bedrock_region_filter,
         sagemaker_region_filter=sagemaker_region_filter,
         agentcore_region_filter=agentcore_region_filter,
-        finserv_nav=finserv_nav,
+        industry_nav=industry_nav,
         finserv_filter_option=finserv_filter_option,
         finserv_service_card=finserv_service_card,
         finserv_section=finserv_section,
         account_risk_section=account_risk_section,
         region_risk_section=region_risk_section,
     )
-    if finserv_scope_chip:
+    if finserv_scope_industry_block:
         rendered_html = rendered_html.replace(
             '<span style="font-size: 13px; font-weight: 500;">Amazon Bedrock AgentCore</span></div></div><p style=',
             '<span style="font-size: 13px; font-weight: 500;">Amazon Bedrock AgentCore</span></div>'
-            + finserv_scope_chip
-            + '</div><p style=',
+            + "</div>"
+            + finserv_scope_industry_block
+            + '<p style=',
             1,
         )
         rendered_html = rendered_html.replace(
diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py b/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py
index 2e52482..b4ee3c6 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py
@@ -139,6 +139,8 @@ def test_generate_viewable_report(self):
             self.assertIn("sidebar", content)
             self.assertIn("service-icon", content)
             self.assertIn("theme-toggle", content)
+            self.assertIn("Assessment Area", content)
+            self.assertIn("All Assessment Areas", content)
 
             # Verify new features from consolidation
             self.assertIn("Methodology", content)
@@ -182,16 +184,29 @@ def test_generate_multi_account_report(self):
                 "status": "Passed",
                 "_service": "agentcore",
             },
+            {
+                "account_id": "444455556666",
+                "check_id": "FS-01",
+                "finding": "FinServ Regional Scope Not Applicable",
+                "details": "No regional AI/ML resources found.",
+                "resolution": "No action required.",
+                "reference": "https://example.com",
+                "severity": "Informational",
+                "status": "N/A",
+                "_service": "finserv",
+            },
         ]
         service_findings = {
             "bedrock": [all_findings[0]],
             "sagemaker": [all_findings[1]],
             "agentcore": [all_findings[2]],
+            "finserv": [all_findings[3]],
         }
         service_stats = {
             "bedrock": {"passed": 0, "failed": 1},
             "sagemaker": {"passed": 0, "failed": 1},
             "agentcore": {"passed": 1, "failed": 0},
+            "finserv": {"passed": 0, "failed": 0, "na": 1},
         }
 
         html_content = generate_report_direct(
@@ -218,6 +233,14 @@ def test_generate_multi_account_report(self):
             self.assertIn("accountFilter", content)
             self.assertIn("111122223333", content)
             self.assertIn("444455556666", content)
+            self.assertIn("<h3>By Industry</h3>", content)
+            self.assertIn('class="nav-section industry-nav"', content)
+            self.assertIn("Financial Services Risk", content)
+            self.assertIn('class="scope-industry"', content)
+            by_service_nav = content.split("<h3>By Service</h3>", 1)[1].split(
+                "<h3>By Industry</h3>", 1
+            )[0]
+            self.assertNotIn("Financial Services", by_service_nav)
 
     def test_missing_data_fields(self):
         """Test handling of assessment results with missing fields"""
@@ -301,14 +324,28 @@ def test_finserv_renders_when_present(self):
         self.assertIn('<option value="region-a">region-a</option>', html)
         self.assertIn('<option value="region-b">region-b</option>', html)
         self.assertIn('data-scope-service="finserv"', html)
+        self.assertIn('class="scope-industry"', html)
+        self.assertIn('class="scope-chip industry-chip"', html)
+        self.assertIn('class="nav-section industry-nav"', html)
+        self.assertIn("Financial Services Risk", html)
+        self.assertIn("Assessment Area", html)
+        self.assertIn("All Assessment Areas", html)
         self.assertIn("global-FinServ-ComplianceGuide-GenAIRisks-public.pdf", html)
+        self.assertIn("<h3>By Industry</h3>", html)
+        by_service_nav = html.split("<h3>By Service</h3>", 1)[1].split(
+            "<h3>By Industry</h3>", 1
+        )[0]
+        self.assertNotIn("Financial Services", by_service_nav)
 
     def test_finserv_omitted_when_absent(self):
         """REQ-1/REQ-7: with no FinServ data the FinServ section is omitted cleanly."""
         html = generate_html_report(self.test_assessment_results)
         self.assertNotIn('id="finserv"', html)
+        self.assertNotIn("<h3>By Industry</h3>", html)
         self.assertNotIn('<option value="finserv">', html)
         self.assertNotIn('data-scope-service="finserv"', html)
+        self.assertNotIn('class="scope-industry"', html)
+        self.assertNotIn("Financial Services Risk", html)
         self.assertNotIn("global-FinServ-ComplianceGuide-GenAIRisks-public.pdf", html)
         # Other services still render (regression check).
         self.assertIn('id="bedrock"', html)

From a003928409890e1867c59495b603f3446a77e235 Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Fri, 19 Jun 2026 21:24:40 -0400
Subject: [PATCH 17/30] Update report scope references

---
 .../report_template.py                        | 30 +++++++++++++------
 .../test_generate_report.py                   | 16 +++++++++-
 2 files changed, 36 insertions(+), 10 deletions(-)

diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py b/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
index 5cc094f..fa8523a 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
@@ -23,9 +23,13 @@
     '<path fill="#FFF" d="M40 14 L66 26 L66 31 L14 31 L14 26 Z '
     'M20 35 h6 v23 h-6 z M37 35 h6 v23 h-6 z M54 35 h6 v23 h-6 z M14 62 h52 v5 h-52 z"/></svg></span>'
 )
+GENAI_LENS_URL = (
+    "https://docs.aws.amazon.com/wellarchitected/latest/generative-ai-lens/"
+    "generative-ai-lens.html"
+)
 FINSERV_GUIDE_URL = (
-    "https://d1.awsstatic.com/onedam/marketing-channels/website/public/"
-    "global-FinServ-ComplianceGuide-GenAIRisks-public.pdf"
+    "https://aws.amazon.com/blogs/security/"
+    "introducing-the-updated-aws-user-guide-to-governance-risk-and-compliance-for-responsible-ai-adoption/"
 )
 
 
@@ -993,16 +997,16 @@ def generate_html_report(
             + '<span style="font-size: 13px; font-weight: 500;">Financial Services GenAI Risk</span></div></div></div>'
         )
         finserv_scope_source = (
-            f' Includes Financial Services GenAI Risk checks derived from the '
-            f'<a href="{FINSERV_GUIDE_URL}" target="_blank">AWS guide for Financial Services risk management of the use of Generative AI</a>.'
+            f' Financial Services GenAI Risk checks are based on '
+            f'<a href="{FINSERV_GUIDE_URL}" target="_blank">the AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption</a>.'
         )
         finserv_section = (
             '<section id="finserv" class="section">'
             '<div class="section-title">'
             + FINSERV_ICON
             + "Financial Services GenAI Risk Findings</div>"
-            '<div class="muted" style="margin:-6px 0 10px;font-size:13px;">Scope: this assessment records findings against each resolved CloudFormation TargetRegions entry. These checks are derived from the '
-            f'<a href="{FINSERV_GUIDE_URL}" target="_blank">AWS guide for Financial Services risk management of the use of Generative AI</a>. '
+            '<div class="muted" style="margin:-6px 0 10px;font-size:13px;">Scope: this assessment records findings against each resolved CloudFormation TargetRegions entry. These checks are based on '
+            f'<a href="{FINSERV_GUIDE_URL}" target="_blank">the AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption</a>. '
             'Severities follow a documented Likelihood &times; Impact methodology (see docs).</div>'
             '<div class="filter-bar">'
             '<div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="finservSearchInput"></div>'
@@ -1088,6 +1092,15 @@ def generate_html_report(
         account_risk_section=account_risk_section,
         region_risk_section=region_risk_section,
     )
+    base_scope_source = (
+        f"Bedrock, SageMaker, and AgentCore checks are based on the "
+        f'<a href="{GENAI_LENS_URL}" target="_blank">AWS Well-Architected Framework Generative AI Lens</a>.'
+    )
+    rendered_html = rendered_html.replace(
+        "Based on AWS Well-Architected Framework (Generative AI Lens) and service-specific security documentation.",
+        base_scope_source,
+        1,
+    )
     if finserv_scope_industry_block:
         rendered_html = rendered_html.replace(
             '<span style="font-size: 13px; font-weight: 500;">Amazon Bedrock AgentCore</span></div></div><p style=',
@@ -1098,9 +1111,8 @@ def generate_html_report(
             1,
         )
         rendered_html = rendered_html.replace(
-            "Based on AWS Well-Architected Framework (Generative AI Lens) and service-specific security documentation.",
-            "Based on AWS Well-Architected Framework (Generative AI Lens) and service-specific security documentation."
-            + finserv_scope_source,
+            base_scope_source,
+            base_scope_source + finserv_scope_source,
             1,
         )
     return rendered_html
diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py b/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py
index b4ee3c6..34b97ff 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/test_generate_report.py
@@ -330,7 +330,14 @@ def test_finserv_renders_when_present(self):
         self.assertIn("Financial Services Risk", html)
         self.assertIn("Assessment Area", html)
         self.assertIn("All Assessment Areas", html)
-        self.assertIn("global-FinServ-ComplianceGuide-GenAIRisks-public.pdf", html)
+        self.assertIn(
+            "wellarchitected/latest/generative-ai-lens/generative-ai-lens.html", html
+        )
+        self.assertIn(
+            "introducing-the-updated-aws-user-guide-to-governance-risk-and-compliance-for-responsible-ai-adoption",
+            html,
+        )
+        self.assertNotIn("global-FinServ-ComplianceGuide-GenAIRisks-public.pdf", html)
         self.assertIn("<h3>By Industry</h3>", html)
         by_service_nav = html.split("<h3>By Service</h3>", 1)[1].split(
             "<h3>By Industry</h3>", 1
@@ -346,6 +353,13 @@ def test_finserv_omitted_when_absent(self):
         self.assertNotIn('data-scope-service="finserv"', html)
         self.assertNotIn('class="scope-industry"', html)
         self.assertNotIn("Financial Services Risk", html)
+        self.assertIn(
+            "wellarchitected/latest/generative-ai-lens/generative-ai-lens.html", html
+        )
+        self.assertNotIn(
+            "introducing-the-updated-aws-user-guide-to-governance-risk-and-compliance-for-responsible-ai-adoption",
+            html,
+        )
         self.assertNotIn("global-FinServ-ComplianceGuide-GenAIRisks-public.pdf", html)
         # Other services still render (regression check).
         self.assertIn('id="bedrock"', html)

From 0d435af5cbbb5e84c1f1757447ef2abdac85471d Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Fri, 19 Jun 2026 21:40:31 -0400
Subject: [PATCH 18/30] Improve CloudFormation parameter validation

---
 .../template-multi-account.yaml               | 22 ++++++-
 aiml-security-assessment/template.yaml        | 22 ++++++-
 deployment/1-aiml-security-member-roles.yaml  | 18 ++++--
 deployment/2-aiml-security-codebuild.yaml     | 61 ++++++++++++++++---
 deployment/aiml-security-single-account.yaml  | 35 +++++++++--
 5 files changed, 132 insertions(+), 26 deletions(-)

diff --git a/aiml-security-assessment/template-multi-account.yaml b/aiml-security-assessment/template-multi-account.yaml
index fd64477..77b8235 100644
--- a/aiml-security-assessment/template-multi-account.yaml
+++ b/aiml-security-assessment/template-multi-account.yaml
@@ -5,14 +5,29 @@ Description: >
 
   Multi-account SAM Template for aiml-security-assessment
 
+Metadata:
+  AWS::CloudFormation::Interface:
+    ParameterGroups:
+      - Label:
+          default: Assessment Options
+        Parameters:
+          - TargetRegions
+          - MaxRegionConcurrency
+    ParameterLabels:
+      TargetRegions:
+        default: AWS regions to scan
+      MaxRegionConcurrency:
+        default: Regional scan concurrency
+
 Parameters:
   TargetRegions:
     Type: String
     Default: ""
-    AllowedPattern: "^[a-zA-Z0-9,-]*$"
+    AllowedPattern: "^$|^all$|^[a-z]{2}(-gov)?-[a-z]+-[0-9](,[a-z]{2}(-gov)?-[a-z]+-[0-9])*$"
     ConstraintDescription: >
-      TargetRegions must be a comma-separated list of region names with no spaces
-      (e.g., us-east-1,us-west-2,eu-west-1), 'all', or empty.
+      TargetRegions must be empty, 'all', or a comma-separated list of AWS
+      region names with no spaces or trailing commas (for example,
+      us-east-1,us-west-2,eu-west-1).
     Description: >
       Comma-separated list of AWS regions to scan (e.g., us-east-1,us-west-2,eu-west-1).
       Use 'all' to scan all regions where the service is available.
@@ -26,6 +41,7 @@ Parameters:
       Maximum number of regions scanned in parallel by the Map state. Lower
       values reduce concurrent Lambda usage; higher values speed up large
       multi-region scans. Set to 1 for fully sequential scanning.
+    ConstraintDescription: Must be between 1 and 40.
 
 Resources:
   AIMLAssessmentStateMachine:
diff --git a/aiml-security-assessment/template.yaml b/aiml-security-assessment/template.yaml
index 7089c28..e878a8c 100644
--- a/aiml-security-assessment/template.yaml
+++ b/aiml-security-assessment/template.yaml
@@ -5,14 +5,29 @@ Description: >
 
   SAM Template for aiml-security-assessment
 
+Metadata:
+  AWS::CloudFormation::Interface:
+    ParameterGroups:
+      - Label:
+          default: Assessment Options
+        Parameters:
+          - TargetRegions
+          - MaxRegionConcurrency
+    ParameterLabels:
+      TargetRegions:
+        default: AWS regions to scan
+      MaxRegionConcurrency:
+        default: Regional scan concurrency
+
 Parameters:
   TargetRegions:
     Type: String
     Default: ""
-    AllowedPattern: "^[a-zA-Z0-9,-]*$"
+    AllowedPattern: "^$|^all$|^[a-z]{2}(-gov)?-[a-z]+-[0-9](,[a-z]{2}(-gov)?-[a-z]+-[0-9])*$"
     ConstraintDescription: >
-      TargetRegions must be a comma-separated list of region names with no spaces
-      (e.g., us-east-1,us-west-2,eu-west-1), 'all', or empty.
+      TargetRegions must be empty, 'all', or a comma-separated list of AWS
+      region names with no spaces or trailing commas (for example,
+      us-east-1,us-west-2,eu-west-1).
     Description: >
       Comma-separated list of AWS regions to scan (e.g., us-east-1,us-west-2,eu-west-1).
       Use 'all' to scan all regions where the service is available.
@@ -26,6 +41,7 @@ Parameters:
       Maximum number of regions scanned in parallel by the Map state. Lower
       values reduce concurrent Lambda usage; higher values speed up large
       multi-region scans. Set to 1 for fully sequential scanning.
+    ConstraintDescription: Must be between 1 and 40.
 
 Resources:
   AIMLAssessmentStateMachine:
diff --git a/deployment/1-aiml-security-member-roles.yaml b/deployment/1-aiml-security-member-roles.yaml
index 656a324..c1db7c5 100644
--- a/deployment/1-aiml-security-member-roles.yaml
+++ b/deployment/1-aiml-security-member-roles.yaml
@@ -1,13 +1,23 @@
 AWSTemplateFormatVersion: 2010-09-09
 Description: This template deploys the roles needed for the AIML Security Assessment to run in each member account.
 
+Metadata:
+  AWS::CloudFormation::Interface:
+    ParameterGroups:
+      - Label:
+          default: Trust Configuration
+        Parameters:
+          - ManagementAccountID
+    ParameterLabels:
+      ManagementAccountID:
+        default: Management account ID
+
 Parameters:
   ManagementAccountID:
-    Description: "Specifies the account ID where AIML Security Assessment will run from."
+    Description: "The 12-digit AWS account ID where the multi-account AIML Security Assessment CodeBuild project runs."
     Type: String
-    Default: "012345678910"
-    AllowedPattern: \d{12}
-    ConstraintDescription: Enter the 12 digit account ID with no spaces.
+    AllowedPattern: "^\\d{12}$"
+    ConstraintDescription: Enter a 12-digit AWS account ID with no spaces.
 
 Resources:
   MemberRole:
diff --git a/deployment/2-aiml-security-codebuild.yaml b/deployment/2-aiml-security-codebuild.yaml
index 4ec3eb3..b45b8e1 100644
--- a/deployment/2-aiml-security-codebuild.yaml
+++ b/deployment/2-aiml-security-codebuild.yaml
@@ -10,6 +10,7 @@ Metadata:
           - MultiAccountScan
           - MultiAccountListOverride
           - TargetRegions
+          - EnableFinServAssessment
           - EmailAddress
       - Label:
           default: Advanced Options
@@ -19,6 +20,27 @@ Metadata:
           - MemberRoleName
           - GitHubRepoUrl
           - GitHubBranch
+    ParameterLabels:
+      MultiAccountScan:
+        default: Scan all AWS Organizations accounts
+      MultiAccountListOverride:
+        default: Account IDs to scan
+      TargetRegions:
+        default: AWS regions to scan
+      EnableFinServAssessment:
+        default: Financial Services GenAI risk checks
+      EmailAddress:
+        default: Notification email address
+      ConcurrentAccountScans:
+        default: Concurrent account scans
+      CodeBuildTimeout:
+        default: CodeBuild timeout in minutes
+      MemberRoleName:
+        default: Member account role name
+      GitHubRepoUrl:
+        default: GitHub repository URL
+      GitHubBranch:
+        default: GitHub branch
 
 Parameters:
   GitHubRepoUrl:
@@ -31,13 +53,19 @@ Parameters:
 
   GitHubBranch:
     Type: String
-    Description: GitHub branch to build from
+    Description: GitHub branch, tag, or commit to build from.
     Default: main
+    AllowedPattern: "^\\S{1,255}$"
+    ConstraintDescription: Must be 1-255 characters with no whitespace.
 
   MemberRoleName:
-    Description: "The role that the assessment should assume to perform the assessment."
+    Description: >
+      Name of the IAM role the assessment assumes in each member account. Provide
+      only the role name; the role must exist under the /service-role/ path.
     Type: String
     Default: AIMLSecurityMemberRole
+    AllowedPattern: "^[\\w+=,.@-]{1,64}$"
+    ConstraintDescription: Must be a valid IAM role name, not an ARN or path.
 
   MultiAccountScan:
     Description: "Set this to true if you want to scan all accounts in your organization."
@@ -48,10 +76,14 @@ Parameters:
     Default: "false"
 
   MultiAccountListOverride:
-    Description: "Specify a space delimited list of accounts to scan. Leaving this
-      blank will scan all accounts in your organization."
+    Description: >
+      Optional space-delimited list of 12-digit AWS account IDs to scan. Leave
+      blank to scan all active accounts in your organization when
+      MultiAccountScan is true.
     Type: String
     Default: ""
+    AllowedPattern: "^$|^\\d{12}( \\d{12})*$"
+    ConstraintDescription: Must be empty or a space-delimited list of 12-digit AWS account IDs.
 
   EmailAddress:
     Description: "Specify an address if you want to receive an email when the
@@ -70,13 +102,15 @@ Parameters:
       - "Six"
       - "Twelve"
     Default: "Three"
+    ConstraintDescription: Must be one of Three, Six, or Twelve.
 
   TargetRegions:
     Type: String
-    AllowedPattern: "^[a-zA-Z0-9,-]*$"
+    AllowedPattern: "^$|^all$|^[a-z]{2}(-gov)?-[a-z]+-[0-9](,[a-z]{2}(-gov)?-[a-z]+-[0-9])*$"
     ConstraintDescription: >
-      TargetRegions must be a comma-separated list of region names with no spaces
-      (e.g., us-east-1,us-west-2,eu-west-1), 'all', or empty.
+      TargetRegions must be empty, 'all', or a comma-separated list of AWS
+      region names with no spaces or trailing commas (for example,
+      us-east-1,us-west-2,eu-west-1).
     Description: >
       Comma-separated list of AWS regions to scan (e.g., us-east-1,us-west-2,eu-west-1).
       Use 'all' to scan all regions where the service is available.
@@ -84,15 +118,22 @@ Parameters:
     Default: ""
 
   CodeBuildTimeout:
-    Description: "Set the timeout for the CodeBuild job. The default is 300 minutes
-      (5 hours)."
+    Description: >
+      Timeout for the CodeBuild assessment job, in minutes. The default is 300
+      minutes (5 hours); increase this value for large organizations or
+      all-region scans.
     Type: Number
     MinValue: 5
     MaxValue: 2160
     Default: 300
+    ConstraintDescription: Must be between 5 and 2160 minutes.
 
   EnableFinServAssessment:
-    Description: "Run the Financial Services GenAI risk checks (FS-01..FS-69) in every scanned account. Enable only if you must adhere to FinServ compliance; the FinServ findings add a dedicated report section and increase report size."
+    Description: >
+      Run the Financial Services GenAI risk checks (FS-01 through FS-69) in every
+      scanned account. Enable this only when you need the additional industry
+      risk assessment; the findings add a dedicated report section and increase
+      report size.
     Type: String
     AllowedValues: ["true", "false"]
     Default: "false"
diff --git a/deployment/aiml-security-single-account.yaml b/deployment/aiml-security-single-account.yaml
index ef2470b..52da9d8 100644
--- a/deployment/aiml-security-single-account.yaml
+++ b/deployment/aiml-security-single-account.yaml
@@ -9,12 +9,26 @@ Metadata:
         Parameters:
           - EmailAddress
           - TargetRegions
+          - EnableFinServAssessment
       - Label:
           default: Advanced Options
         Parameters:
           - CodeBuildTimeout
           - GitHubRepoUrl
           - GitHubBranch
+    ParameterLabels:
+      EmailAddress:
+        default: Notification email address
+      TargetRegions:
+        default: AWS regions to scan
+      EnableFinServAssessment:
+        default: Financial Services GenAI risk checks
+      CodeBuildTimeout:
+        default: CodeBuild timeout in minutes
+      GitHubRepoUrl:
+        default: GitHub repository URL
+      GitHubBranch:
+        default: GitHub branch
 
 Parameters:
   GitHubRepoUrl:
@@ -26,8 +40,10 @@ Parameters:
 
   GitHubBranch:
     Type: String
-    Description: GitHub branch to build from
+    Description: GitHub branch, tag, or commit to build from.
     Default: main
+    AllowedPattern: "^\\S{1,255}$"
+    ConstraintDescription: Must be 1-255 characters with no whitespace.
 
   EmailAddress:
     Description: "Email address to receive assessment completion notifications (optional)"
@@ -38,10 +54,11 @@ Parameters:
 
   TargetRegions:
     Type: String
-    AllowedPattern: "^[a-zA-Z0-9,-]*$"
+    AllowedPattern: "^$|^all$|^[a-z]{2}(-gov)?-[a-z]+-[0-9](,[a-z]{2}(-gov)?-[a-z]+-[0-9])*$"
     ConstraintDescription: >
-      TargetRegions must be a comma-separated list of region names with no spaces
-      (e.g., us-east-1,us-west-2,eu-west-1), 'all', or empty.
+      TargetRegions must be empty, 'all', or a comma-separated list of AWS
+      region names with no spaces or trailing commas (for example,
+      us-east-1,us-west-2,eu-west-1).
     Description: >
       Comma-separated list of AWS regions to scan (e.g., us-east-1,us-west-2,eu-west-1).
       Use 'all' to scan all regions where the service is available.
@@ -49,14 +66,20 @@ Parameters:
     Default: ""
 
   CodeBuildTimeout:
-    Description: "Timeout for the CodeBuild job in minutes"
+    Description: >
+      Timeout for the CodeBuild assessment job, in minutes. Increase this value
+      for large multi-region scans.
     Type: Number
     MinValue: 5
     MaxValue: 480
     Default: 60
+    ConstraintDescription: Must be between 5 and 480 minutes.
 
   EnableFinServAssessment:
-    Description: "Run the Financial Services GenAI risk checks (FS-01..FS-69). Enable only if you must adhere to FinServ compliance; the FinServ findings add a dedicated report section."
+    Description: >
+      Run the Financial Services GenAI risk checks (FS-01 through FS-69). Enable
+      this only when you need the additional industry risk assessment; the
+      findings add a dedicated report section.
     Type: String
     AllowedValues: ["true", "false"]
     Default: "false"

From 8f29016ad2f04fe033dccbb6f7febae98b0f5269 Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Fri, 19 Jun 2026 22:45:12 -0400
Subject: [PATCH 19/30] Consolidate FinServ documentation and reports

---
 .ash/.ash.yaml                                |   235 -
 .ash/.gitignore                               |     2 -
 .github/workflows/python-tests.yml            |     6 +-
 README.md                                     |    24 +-
 .../security/bedrock_assessments/app.py       |     4 +-
 .../security/finserv_assessments/app.py       |     4 +-
 .../security/sagemaker_assessments/app.py     |     6 +-
 buildspec-modular-example.yml                 |   189 -
 docs/AIMLSecurityAssessment-MappingsTable.csv |    16 -
 docs/DEVELOPER_GUIDE.md                       |     9 +-
 docs/SECURITY_CHECKS.md                       |    19 +-
 docs/SECURITY_CHECKS_FINSERV.md               |  1213 +
 docs/SECURITY_CHECKS_FINSERV_COMMON.md        |   179 -
 ...ITY_CHECKS_FINSERV_PART1_INFRA_CONTROLS.md |   400 -
 ...FINSERV_PART2_GUARDRAILS_CONTENT_SAFETY.md |   317 -
 ...CHECKS_FINSERV_PART3_APP_LAYER_AND_GAPS.md |   368 -
 ...ITY_CHECKS_FINSERV_SEVERITY_METHODOLOGY.md |     6 +-
 ...CURITY_CHECKS_FINSERV_SEVERITY_REGISTER.md |     2 +-
 docs/TROUBLESHOOTING.md                       |     2 +-
 sample-reports/dashboard-overview-dark.png    |   Bin 218117 -> 146347 bytes
 sample-reports/dashboard-overview-light.png   |   Bin 227602 -> 147899 bytes
 sample-reports/findings-table.png             |   Bin 269993 -> 186723 bytes
 .../finserv_security_report_phase3.csv        |   190 -
 sample-reports/multi-account-summary.png      |   Bin 144900 -> 145026 bytes
 .../security_assessment_multi_account.html    | 18521 ++++++++++++----
 ...curity_assessment_multi_region_sample.html |   873 -
 .../security_assessment_single_account.html   |  6232 +++---
 .../test_consolidate_finserv.py               |    11 +-
 28 files changed, 18525 insertions(+), 10303 deletions(-)
 delete mode 100644 .ash/.ash.yaml
 delete mode 100644 .ash/.gitignore
 delete mode 100644 buildspec-modular-example.yml
 delete mode 100644 docs/AIMLSecurityAssessment-MappingsTable.csv
 create mode 100644 docs/SECURITY_CHECKS_FINSERV.md
 delete mode 100644 docs/SECURITY_CHECKS_FINSERV_COMMON.md
 delete mode 100644 docs/SECURITY_CHECKS_FINSERV_PART1_INFRA_CONTROLS.md
 delete mode 100644 docs/SECURITY_CHECKS_FINSERV_PART2_GUARDRAILS_CONTENT_SAFETY.md
 delete mode 100644 docs/SECURITY_CHECKS_FINSERV_PART3_APP_LAYER_AND_GAPS.md
 delete mode 100644 sample-reports/finserv_security_report_phase3.csv
 delete mode 100644 sample-reports/security_assessment_multi_region_sample.html
 rename test_consolidate_finserv.py => tests/test_consolidate_finserv.py (87%)

diff --git a/.ash/.ash.yaml b/.ash/.ash.yaml
deleted file mode 100644
index 791bba4..0000000
--- a/.ash/.ash.yaml
+++ /dev/null
@@ -1,235 +0,0 @@
-# yaml-language-server: $schema=https://raw.githubusercontent.com/awslabs/automated-security-helper/refs/heads/main/automated_security_helper/schemas/AshConfig.json
-project_name: sample-aiml-security-assessment
-global_settings:
-  severity_threshold: MEDIUM
-  ignore_paths:
-    # SAM build cache — transitively scanned pydantic/bs4/botocore deps
-    # produce thousands of non-actionable Bandit findings in third-party code.
-    # CI scans only changed files, so it never touches .aws-sam/ either.
-    - path: "aiml-security-assessment/.aws-sam/**"
-      reason: "SAM build cache; contains third-party deps, not project source"
-    - path: "**/.aws-sam/**"
-      reason: "SAM build cache at any depth (deps/, build/, etc.)"
-    # Pre-existing static HTML sample reports; the embedded base64 SVG logos
-    # are flagged as high-entropy strings by detect-secrets.
-    - path: "sample-reports/**"
-      reason: "Static HTML sample outputs with embedded base64 SVG icons (upstream)"
-    # ASH's own output directory.
-    - path: ".ash/ash_output/**"
-      reason: "ASH output directory; scanning it creates recursion"
-  suppressions:
-    # The 4 Checkov rules below flag every assessment Lambda in the upstream
-    # repo for: no VPC (CKV_AWS_117), no DLQ (CKV_AWS_116), no per-function
-    # concurrency cap (CKV_AWS_115), and no KMS-encrypted env vars
-    # (CKV_AWS_173). This matches the architecture choices made for all 6
-    # pre-existing Lambdas (BedrockSecurity, SagemakerSecurity,
-    # AgentCoreSecurity, GenerateConsolidatedReport, IAMPermissionCaching,
-    # CleanupBucket) and applied consistently to the new
-    # FinServSecurityAssessmentFunction. The assessment framework runs on an
-    # internal schedule with short-lived invocations and reads config from a
-    # non-sensitive bucket-name env var; hardening these four items for every
-    # Lambda in the stack is a framework-wide change that should be proposed
-    # in a separate PR.
-    - rule_id: "CKV_AWS_117"
-      path: "aiml-security-assessment/template.yaml"
-      reason: "Upstream convention: assessment Lambdas are non-VPC (applies to all 7 Lambdas)"
-    - rule_id: "CKV_AWS_117"
-      path: "aiml-security-assessment/template-multi-account.yaml"
-      reason: "Upstream convention: assessment Lambdas are non-VPC (applies to all 7 Lambdas)"
-    - rule_id: "CKV_AWS_116"
-      path: "aiml-security-assessment/template.yaml"
-      reason: "Upstream convention: assessment Lambdas have no DLQ (applies to all 7 Lambdas)"
-    - rule_id: "CKV_AWS_116"
-      path: "aiml-security-assessment/template-multi-account.yaml"
-      reason: "Upstream convention: assessment Lambdas have no DLQ (applies to all 7 Lambdas)"
-    - rule_id: "CKV_AWS_115"
-      path: "aiml-security-assessment/template.yaml"
-      reason: "Upstream convention: no per-function concurrency cap (applies to all 7 Lambdas)"
-    - rule_id: "CKV_AWS_115"
-      path: "aiml-security-assessment/template-multi-account.yaml"
-      reason: "Upstream convention: no per-function concurrency cap (applies to all 7 Lambdas)"
-    - rule_id: "CKV_AWS_173"
-      path: "aiml-security-assessment/template.yaml"
-      reason: "Upstream convention: env var is a non-sensitive bucket-name reference"
-    - rule_id: "CKV_AWS_173"
-      path: "aiml-security-assessment/template-multi-account.yaml"
-      reason: "Upstream convention: env var is a non-sensitive bucket-name reference"
-
-    # cdk-nag AwsSolutions-IAM5 flags any IAM statement with Resource: "*".
-    # The FinServ IAM statement I added to 1-aiml-security-member-roles.yaml
-    # uses the same pattern as every pre-existing Sid in that policy. The
-    # wildcard is required for list/describe operations that are not
-    # ARN-scopable (e.g., ListBuckets, ListTrails, ListRules, ListPolicies).
-    # If upstream tightens IAM across all assessment statements, the FinServ
-    # Sid should be tightened in the same PR.
-    - rule_id: "AwsSolutions-IAM5"
-      path: "deployment/1-aiml-security-member-roles.yaml"
-      reason: "Read-only list/describe actions that cannot be ARN-scoped (upstream convention)"
-    - rule_id: "AwsSolutions-IAM5"
-      path: "deployment/aiml-security-single-account.yaml"
-      reason: "Read-only list/describe actions that cannot be ARN-scoped (upstream convention)"
-    - rule_id: "CKV_AWS_173"
-      path: "aiml-security-assessment/template-multi-account.yaml"
-      reason: "Upstream convention: env var is a bucket name reference, not sensitive (same as BR/SM/AC)"
-fail_on_findings: true
-ash_plugin_modules: []
-external_reports_to_include: []
-converters:
-  archive:
-    enabled: true
-    options: {}
-  jupyter:
-    enabled: true
-    options:
-      tool_version: '>=7.16.0,<8.0.0'
-      install_timeout: 300
-scanners:
-  bandit:
-    enabled: true
-    options:
-      severity_threshold: null
-      config_file: null
-      confidence_level: all
-      ignore_nosec: false
-      excluded_paths: []
-      additional_formats: []
-      tool_version: '>=1.7.0,<2.0.0'
-      install_timeout: 300
-  cdk-nag:
-    enabled: true
-    options:
-      severity_threshold: null
-      nag_packs:
-        AwsSolutionsChecks: true
-        HIPAASecurityChecks: false
-        NIST80053R4Checks: false
-        NIST80053R5Checks: false
-        PCIDSS321Checks: false
-  cfn-nag:
-    enabled: true
-    options:
-      severity_threshold: null
-  checkov:
-    enabled: true
-    options:
-      severity_threshold: null
-      config_file: null
-      skip_path: []
-      additional_formats:
-      - cyclonedx_json
-      offline: false
-      frameworks:
-      - all
-      skip_frameworks: []
-      tool_version: null
-      install_timeout: 300
-  detect-secrets:
-    enabled: true
-    options:
-      severity_threshold: null
-      baseline_file: null
-      scan_settings:
-        version: null
-        generated_at: null
-        plugins_used: []
-        filters_used: []
-        results: {}
-  grype:
-    enabled: true
-    options:
-      severity_threshold: null
-      config_file: null
-      offline: false
-  npm-audit:
-    enabled: true
-    options:
-      severity_threshold: null
-      offline: false
-  opengrep:
-    enabled: true
-    options:
-      severity_threshold: null
-      config: auto
-      exclude:
-      - '*-converted.py'
-      - '*_report_result.txt'
-      exclude_rule: []
-      severity: []
-      metrics: auto
-      offline: false
-      patterns: []
-      version: v1.15.1
-  semgrep:
-    enabled: true
-    options:
-      severity_threshold: null
-      config: auto
-      exclude:
-      - '*-converted.py'
-      - '*_report_result.txt'
-      exclude_rule: []
-      severity: []
-      metrics: auto
-      offline: false
-      tool_version: null
-      install_timeout: 300
-  syft:
-    enabled: true
-    options:
-      severity_threshold: null
-      config_file: null
-      exclude: []
-      additional_outputs:
-      - syft-table
-reporters:
-  csv:
-    enabled: true
-    options: {}
-  cyclonedx:
-    enabled: true
-    options: {}
-  html:
-    enabled: true
-    options: {}
-  flat-json:
-    enabled: true
-    options:
-      include_scanner_metrics: true
-      include_summary_metrics: true
-      include_metadata: true
-  gitlab-sast:
-    enabled: true
-    options: {}
-  junitxml:
-    enabled: true
-    options:
-      respect_severity_threshold: true
-  markdown:
-    enabled: true
-    options:
-      include_summary: true
-      include_findings_table: false
-      include_detailed_findings: true
-      max_detailed_findings: 20
-      top_hotspots_limit: 10
-      use_collapsible_details: true
-  ocsf:
-    enabled: true
-    options: {}
-  sarif:
-    enabled: true
-    options: {}
-  spdx:
-    enabled: false
-    options: {}
-  text:
-    enabled: true
-    options:
-      include_summary: true
-      include_findings_table: false
-      include_detailed_findings: false
-      max_detailed_findings: 20
-      top_hotspots_limit: 20
-  yaml:
-    enabled: false
-    options: {}
diff --git a/.ash/.gitignore b/.ash/.gitignore
deleted file mode 100644
index d831134..0000000
--- a/.ash/.gitignore
+++ /dev/null
@@ -1,2 +0,0 @@
-# ASH default output directory (and variants)
-ash_output*
diff --git a/.github/workflows/python-tests.yml b/.github/workflows/python-tests.yml
index d0d65f4..b5288fc 100644
--- a/.github/workflows/python-tests.yml
+++ b/.github/workflows/python-tests.yml
@@ -7,7 +7,7 @@ on:
       - "aiml-security-assessment/functions/security/**"
       - "tests/**"
       - "consolidate_html_reports.py"
-      - "test_consolidate_finserv.py"
+      - "tests/test_consolidate_finserv.py"
       - ".github/workflows/python-tests.yml"
   pull_request:
     branches: [main]
@@ -15,7 +15,7 @@ on:
       - "aiml-security-assessment/functions/security/**"
       - "tests/**"
       - "consolidate_html_reports.py"
-      - "test_consolidate_finserv.py"
+      - "tests/test_consolidate_finserv.py"
       - ".github/workflows/python-tests.yml"
 
 jobs:
@@ -81,7 +81,7 @@ jobs:
           AWS_ACCESS_KEY_ID: testing
           AWS_SECRET_ACCESS_KEY: testing  # pragma: allowlist secret
         run: |
-          python -m pytest test_consolidate_finserv.py -v --tb=short
+          python -m pytest tests/test_consolidate_finserv.py -v --tb=short
           cd aiml-security-assessment/functions/security/generate_consolidated_report
           python -m pytest test_generate_report.py -v --tb=short
 
diff --git a/README.md b/README.md
index 21832ef..6d1cb4c 100644
--- a/README.md
+++ b/README.md
@@ -2,9 +2,9 @@
 
 [![License: MIT-0](https://img.shields.io/badge/License-MIT--0-yellow.svg)](https://opensource.org/licenses/MIT-0) [![Python 3.12+](https://img.shields.io/badge/Python-3.12+-blue.svg)](https://www.python.org/downloads/) [![AWS SAM](https://img.shields.io/badge/AWS-SAM-orange.svg)](https://aws.amazon.com/serverless/sam/) [![Serverless](https://img.shields.io/badge/Architecture-Serverless-green.svg)](https://aws.amazon.com/serverless/)
 
-**Open-source automated security scanner for Amazon Bedrock, Amazon SageMaker AI, Amazon Bedrock AgentCore, and Financial Services GenAI Risk** — Built on [AWS Well-Architected Framework (Generative AI Lens)](https://docs.aws.amazon.com/wellarchitected/latest/generative-ai-lens/generative-ai-lens.html)
+**Open-source automated security scanner for Amazon Bedrock, Amazon SageMaker AI, Amazon Bedrock AgentCore, and Financial Services GenAI Risk** — Built on the [AWS Well-Architected Framework (Generative AI Lens)](https://docs.aws.amazon.com/wellarchitected/latest/generative-ai-lens/generative-ai-lens.html) and optional Financial Services GenAI risk guidance.
 
-Cloud security automation with **[116 security checks](docs/SECURITY_CHECKS.md)** for your generative AI and machine learning workloads. Identify IAM misconfigurations, encryption gaps, network isolation issues, and compliance violations with interactive HTML reports and actionable remediation guidance.
+Cloud security automation with **[116 security checks](docs/SECURITY_CHECKS.md)** for your generative AI and machine learning workloads. Identify IAM misconfigurations, encryption gaps, network isolation issues, and potential governance or compliance gaps with interactive HTML reports and actionable remediation guidance.
 
 ---
 
@@ -81,7 +81,7 @@ Designed for workloads using [Amazon Bedrock](https://aws.amazon.com/bedrock/),
 | Challenge | How This Framework Helps |
 |-----------|-------------------------|
 | **Manual security audits are time-consuming** | Fully automated scanning with one-click CloudFormation deployment |
-| **Inconsistent security checks across teams** | Standardized 116-check assessment based on AWS Well-Architected best practices and AWS FinServ GenAI Risk guidance |
+| **Inconsistent security checks across teams** | Standardized 116-check assessment based on AWS Well-Architected best practices and AWS Responsible AI governance, risk, and compliance guidance |
 | **Difficulty tracking AI/ML security posture** | Interactive HTML dashboards with severity breakdown and per-account visibility |
 | **Multi-account complexity** | Consolidated reporting across AWS Organizations with cross-account role assumption |
 | **Compliance and audit support** | Exportable reports to supplement your compliance program, with remediation guidance linked to AWS documentation |
@@ -91,7 +91,7 @@ Designed for workloads using [Amazon Bedrock](https://aws.amazon.com/bedrock/),
 - **[Amazon Bedrock](docs/SECURITY_CHECKS.md#amazon-bedrock-security-checks-14)** (14 checks) - Guardrails, encryption, Amazon VPC endpoints, AWS IAM permissions, model invocation logging
 - **[Amazon SageMaker AI](docs/SECURITY_CHECKS.md#amazon-sagemaker-ai-security-checks-25)** (25 checks) - AWS Security Hub controls (SageMaker.1-5), encryption, network isolation, AWS IAM, MLOps
 - **[Amazon Bedrock AgentCore](docs/SECURITY_CHECKS.md#amazon-bedrock-agentcore-security-checks-13)** (13 checks) - Amazon VPC configuration, encryption, observability, resource policies
-- **[Financial Services GenAI Risk](docs/SECURITY_CHECKS.md#financial-services-genai-risk-checks-64-additional-5-upstream-extensions)** (64 checks) - Unbounded consumption, excessive agency, supply chain, training data poisoning, hallucination, prompt injection, PII disclosure, and 8 more FinServ-specific risk categories derived from the [AWS FinServ GenAI Risk Guide](https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf)
+- **[Financial Services GenAI Risk](docs/SECURITY_CHECKS.md#financial-services-genai-risk-checks-64-additional-5-upstream-extensions)** (64 checks) - Unbounded consumption, excessive agency, supply chain, training data poisoning, hallucination, prompt injection, PII disclosure, and 8 more FinServ-specific risk categories derived from the [AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption](https://aws.amazon.com/blogs/security/introducing-the-updated-aws-user-guide-to-governance-risk-and-compliance-for-responsible-ai-adoption/)
 
 **Deployment Options:**
 - **Single-Account**: Assess security in one AWS account
@@ -203,8 +203,8 @@ The HTML report includes a Region column, filter dropdown, and "Risk by Region"
 ### Optional: Financial Services GenAI Risk Checks (`EnableFinServAssessment`)
 
 The 64 Financial Services (FS-XX) GenAI risk checks are **opt-in** and default to `false`. Set the
-`EnableFinServAssessment` deployment parameter to `true` only if you must adhere to FinServ
-compliance. When enabled, the FinServ assessment Lambda runs and its findings appear in a dedicated
+`EnableFinServAssessment` deployment parameter to `true` when you want the additional Financial
+Services GenAI risk assessment. When enabled, the FinServ assessment Lambda runs and its findings appear in a dedicated
 **Financial Services** section of the HTML report. When left `false`, no FinServ findings are
 produced and the report omits the FinServ section entirely. The toggle is threaded into the Step
 Functions execution input (`enableFinServ`); the FinServ Lambda is always deployed but is invoked
@@ -214,7 +214,7 @@ only when the flag is `true`.
 
 #### Scope and limitations
 
-- **FinServ deployment Region.** Core Bedrock, SageMaker, and AgentCore checks support multi-region scanning. The optional FinServ assessment runs once in the deployment Region to avoid duplicate advisory findings across regional fan-out.
+- **FinServ Region scope.** Core Bedrock, SageMaker, AgentCore, and optional FinServ checks use the resolved `TargetRegions` from the deployment parameters. FinServ findings are emitted with Region values so they appear alongside the same regional filter and per-region report views as the core service checks.
 - **Heuristic and advisory checks.** Some controls cannot be verified through an API (application-layer controls, dataset contents, resource associations); these are reported as `ADVISORY`/`N/A` and require manual review. See [How finding severities are determined](#how-finding-severities-are-determined).
 - **Permissions.** A check that lacks an IAM permission is reported as `COULD NOT ASSESS` (not a failure). Re-deploy the member role after any IAM template change so newer actions take effect.
 
@@ -385,13 +385,10 @@ If you need to reduce scope, review the role policies in:
 | Document | Description |
 |----------|-------------|
 | [Security Checks Reference](docs/SECURITY_CHECKS.md) | Complete reference for all 116 security checks with severity levels |
-| [FinServ GenAI Risk Checks — Common](docs/SECURITY_CHECKS_FINSERV_COMMON.md) | Shared introduction, severity rubric, upstream-overlap table, and compliance framework mapping for FS-01..69 |
-| [FinServ Part 1 — Infrastructure Controls](docs/SECURITY_CHECKS_FINSERV_PART1_INFRA_CONTROLS.md) | FS-01..26: Unbounded consumption, excessive agency, supply chain, training data poisoning, vector & embedding weaknesses |
-| [FinServ Part 2 — Guardrails & Content Safety](docs/SECURITY_CHECKS_FINSERV_PART2_GUARDRAILS_CONTENT_SAFETY.md) | FS-27..46: Non-compliant output, misinformation, abusive/harmful output, biased output, PII disclosure |
-| [FinServ Part 3 — App Layer & Gaps](docs/SECURITY_CHECKS_FINSERV_PART3_APP_LAYER_AND_GAPS.md) | FS-47..69: Hallucination, prompt injection, improper output handling, off-topic output, out-of-date training data, cross-category gap checks |
+| [FinServ GenAI Risk Checks](docs/SECURITY_CHECKS_FINSERV.md) | Complete FS-01..69 reference: shared introduction, severity rubric, upstream-overlap table, compliance framework mapping, and all check definitions (Part 1 infrastructure controls, Part 2 guardrails & content safety, Part 3 app-layer controls & gaps) |
 | [FinServ Severity Methodology](docs/SECURITY_CHECKS_FINSERV_SEVERITY_METHODOLOGY.md) | Likelihood × Impact → ASFF severity model, disposition rules, and research basis for FS check severities |
 | [FinServ Severity Register](docs/SECURITY_CHECKS_FINSERV_SEVERITY_REGISTER.md) | Authoritative per-finding severity assignments (the single source of truth enforced by the drift-guard test) |
-| [FinServ Compliance Mappings](docs/AIMLSecurityAssessment-MappingsTable.csv) | Machine-readable mapping of FS checks to SR 11-7, FFIEC CAT, NYDFS 500.06, PCI-DSS, DORA, MAS TRM, ISO 27001, OWASP LLM Top 10 |
+| [FinServ Compliance Mappings](docs/SECURITY_CHECKS_FINSERV.md#compliance-framework-mapping) | Preliminary mapping of FS checks to SR 11-7, FFIEC CAT, NYDFS 500, PCI-DSS, DORA, MAS TRM, ISO 27001, ECOA, and OWASP LLM Top 10 |
 | [Troubleshooting Guide](docs/TROUBLESHOOTING.md) | Common issues, stack identification, upgrade guide, debugging |
 | [Developer Guide](docs/DEVELOPER_GUIDE.md) | Architecture details, adding custom checks, and contributing |
 | [Cleanup Guide](docs/CLEANUP.md) | Step-by-step resource removal instructions |
@@ -400,11 +397,12 @@ If you need to reduce scope, review the role policies in:
 
 ## CI/CD
 
-GitHub Actions workflows run automatically on pull requests and pushes to `main`:
+GitHub Actions workflows run automatically on pull requests and selected pushes:
 
 | Workflow | Trigger | What It Checks |
 |----------|---------|----------------|
 | **Python Code Quality** | PR | `ruff check` and `ruff format --check` on changed Python files |
+| **AI/ML Security Assessment Tests** | PR, push to `main`/`develop` | Runs the `pytest` suite (assessment functions and report pipeline) on Python 3.11 and 3.12 |
 | **CloudFormation Lint** | PR | Validates deployment and SAM templates with `cfn-lint` |
 | **SAM Validate & Build** | PR | `sam validate --lint` and `sam build` on SAM templates |
 | **ASH Security Scan** | PR | Scans for secrets, dependency vulnerabilities, and IaC misconfigurations |
diff --git a/aiml-security-assessment/functions/security/bedrock_assessments/app.py b/aiml-security-assessment/functions/security/bedrock_assessments/app.py
index d202d28..70e3430 100644
--- a/aiml-security-assessment/functions/security/bedrock_assessments/app.py
+++ b/aiml-security-assessment/functions/security/bedrock_assessments/app.py
@@ -1072,7 +1072,7 @@ def check_bedrock_logging_configuration(region: str = "") -> Dict[str, Any]:
     # logging is enabled, the FinServ guide (PDF §1.2.1, §1.2.6, §1.2.7)
     # expects the log output to include guardrailTrace with action,
     # inputAssessments, and outputAssessments to support SR 11-7 audit trails
-    # and NYDFS 500.06 retention. See docs/SECURITY_CHECKS_FINSERV_PART3_APP_LAYER_AND_GAPS.md
+    # and NYDFS 500.06 retention. See docs/SECURITY_CHECKS_FINSERV.md
     # (FS-64 → BR-04 extension note) for the detection / remediation language.
     logger.debug("Starting check for Bedrock model invocation logging configuration")
     try:
@@ -1204,7 +1204,7 @@ def check_bedrock_cloudtrail_logging(region: str = "") -> Dict[str, Any]:
     # Bedrock API calls, the FinServ guide (PDF §1.2.15) expects an advanced
     # event selector for AWS::Bedrock::KnowledgeBase so Retrieve and
     # RetrieveAndGenerate data events are captured (NOT logged by default).
-    # See docs/SECURITY_CHECKS_FINSERV_PART1_INFRA_CONTROLS.md (FS-23 → BR-06
+    # See docs/SECURITY_CHECKS_FINSERV.md (FS-23 → BR-06
     # extension note) for the detection / remediation language.
     logger.debug("Starting check for Bedrock CloudTrail logging configuration")
     try:
diff --git a/aiml-security-assessment/functions/security/finserv_assessments/app.py b/aiml-security-assessment/functions/security/finserv_assessments/app.py
index 9e0b2ac..557c809 100644
--- a/aiml-security-assessment/functions/security/finserv_assessments/app.py
+++ b/aiml-security-assessment/functions/security/finserv_assessments/app.py
@@ -2126,7 +2126,7 @@ def check_ecr_image_scanning() -> Dict[str, Any]:
 #
 # NOTE: FS-17 (Model Monitor Data Quality → SM-07), FS-18 (Model Drift Detection → SM-23),
 # and FS-19 (Model Registry Approval → SM-22) are merged into upstream checks.
-# See extension notes in SECURITY_CHECKS_FINSERV_PART1_INFRA_CONTROLS.md.
+# See extension notes in SECURITY_CHECKS_FINSERV.md.
 # ===========================================================================
 
 
@@ -5424,7 +5424,7 @@ def check_foundation_model_lifecycle_policy() -> Dict[str, Any]:
 # Mitigations explicitly in the AWS FinServ Guide not covered by FS-01..63
 # or the existing BR/SM/AC checks.
 # NOTE: FS-64 (Guardrail Trace Logging) is merged into upstream BR-04.
-# See extension note in SECURITY_CHECKS_FINSERV_PART3_APP_LAYER_AND_GAPS.md.
+# See extension note in SECURITY_CHECKS_FINSERV.md.
 # ===========================================================================
 
 
diff --git a/aiml-security-assessment/functions/security/sagemaker_assessments/app.py b/aiml-security-assessment/functions/security/sagemaker_assessments/app.py
index f045e54..68dc586 100644
--- a/aiml-security-assessment/functions/security/sagemaker_assessments/app.py
+++ b/aiml-security-assessment/functions/security/sagemaker_assessments/app.py
@@ -1181,7 +1181,7 @@ def check_sagemaker_model_monitor_usage(permission_cache, region: str = "") -> D
     # Monitor data-quality baselines to be refreshed on a regulator-aligned cadence
     # (SR 11-7 ongoing monitoring) and for the baseline statistics to be emitted to
     # CloudWatch under namespace /aws/sagemaker/Endpoints/data-metric with
-    # emit_metrics=Enabled. See docs/SECURITY_CHECKS_FINSERV_PART1_INFRA_CONTROLS.md
+    # emit_metrics=Enabled. See docs/SECURITY_CHECKS_FINSERV.md
     # (FS-17 → SM-07 extension note).
     logger.debug("Starting check for SageMaker Model Monitor usage")
     try:
@@ -2940,7 +2940,7 @@ def check_model_approval_workflow(region: str = "") -> Dict[str, Any]:
     # FinServ extension (FS-19): The FinServ guide (PDF §1.2.14) expects model
     # package groups to enforce ModelApprovalStatus=PendingManualApproval by default
     # and to flag model packages that are auto-approved as their latest version.
-    # See docs/SECURITY_CHECKS_FINSERV_PART1_INFRA_CONTROLS.md (FS-19 → SM-22
+    # See docs/SECURITY_CHECKS_FINSERV.md (FS-19 → SM-22
     # extension note) for the detection refinement.
     logger.debug("Starting check for model approval workflow")
     try:
@@ -3090,7 +3090,7 @@ def check_model_drift_detection(region: str = "") -> Dict[str, Any]:
     # FinServ extension (FS-18): In addition to ModelQuality drift monitoring, the
     # FinServ guide (PDF §1.2.14) calls out low-entropy classification monitoring
     # as an early-warning indicator of training-data poisoning. See
-    # docs/SECURITY_CHECKS_FINSERV_PART1_INFRA_CONTROLS.md (FS-18 → SM-23
+    # docs/SECURITY_CHECKS_FINSERV.md (FS-18 → SM-23
     # extension note) for the remediation step to add.
     logger.debug("Starting check for model drift detection")
     try:
diff --git a/buildspec-modular-example.yml b/buildspec-modular-example.yml
deleted file mode 100644
index 2e64946..0000000
--- a/buildspec-modular-example.yml
+++ /dev/null
@@ -1,189 +0,0 @@
-version: 0.2
-# AIML Security Modular Assessment Buildspec Example
-# This shows how to configure selective deployment of assessment modules
-
-phases:
-  install:
-    runtime-versions:
-      python: 3.12
-    commands:
-      - pip install -q --upgrade pip
-      - pip install -q --upgrade aws-sam-cli
-
-  build:
-    commands:
-      - echo "Starting AIML Security Modular Assessment"
-      - echo "Multi-account scan is $MULTI_ACCOUNT_SCAN"
-
-      # Assessment module configuration
-      - export DEPLOY_AIML_ASSESSMENT=${DEPLOY_AIML_ASSESSMENT:-true}
-      - export DEPLOY_SECURITY_ASSESSMENT=${DEPLOY_SECURITY_ASSESSMENT:-false}
-      - export DEPLOY_RESILIENCE_ASSESSMENT=${DEPLOY_RESILIENCE_ASSESSMENT:-false}
-      - export DEPLOY_COST_ASSESSMENT=${DEPLOY_COST_ASSESSMENT:-false}
-
-      - echo "Assessment modules to deploy:"
-      - echo "  AI/ML: $DEPLOY_AIML_ASSESSMENT"
-      - echo "  Security: $DEPLOY_SECURITY_ASSESSMENT"
-      - echo "  Resilience: $DEPLOY_RESILIENCE_ASSESSMENT"
-      - echo "  Cost: $DEPLOY_COST_ASSESSMENT"
-
-      # Get account list for multi-account deployment
-      - |-
-        if [[ $MULTI_ACCOUNT_SCAN = 'true' ]]; then
-          echo "Getting list of accounts to scan"
-          if [[ $MULTI_ACCOUNT_LIST_OVERRIDE != '' ]]; then
-            account_list=$MULTI_ACCOUNT_LIST_OVERRIDE
-          else
-            account_list=$(aws organizations list-accounts --query 'Accounts[?Status==`ACTIVE`].Id' --output text)
-          fi
-          echo "Will scan accounts: $account_list"
-
-          # Deploy to each member account
-          for accountId in $account_list; do
-            echo "Processing account $accountId"
-            if [[ $accountId == $AWS_ACCOUNT_ID ]]; then
-              echo "Skipping management account $accountId - will be handled separately"
-              continue
-            fi
-
-            # Assume role in target account
-            aws sts assume-role --role-arn arn:$AWS_PARTITION:iam::$accountId:role/service-role/$MEMBER_ROLE --role-session-name AIMLSecurityAssessment > /tmp/creds.json || continue
-            export AWS_ACCESS_KEY_ID=$(cat /tmp/creds.json | jq -r '.Credentials.AccessKeyId')
-            export AWS_SECRET_ACCESS_KEY=$(cat /tmp/creds.json | jq -r '.Credentials.SecretAccessKey')
-            export AWS_SESSION_TOKEN=$(cat /tmp/creds.json | jq -r '.Credentials.SessionToken')
-
-            echo "Deploying assessment modules to account $accountId"
-
-            # Deploy AI/ML Assessment
-            if [[ $DEPLOY_AIML_ASSESSMENT = 'true' ]]; then
-              echo "Deploying AI/ML Assessment to $accountId"
-              cd aiml-security-assessment
-              sam build --use-container --template template.yaml
-              sam deploy --template-file .aws-sam/build/template.yaml \
-                --stack-name aiml-security-$accountId \
-                --capabilities CAPABILITY_IAM \
-                --no-confirm-changeset \
-                --resolve-s3 \
-                --parameter-overrides BucketName=$BUCKET_REPORT \
-                --region $AWS_DEFAULT_REGION || echo "AI/ML deploy failed for $accountId"
-
-              # Start AI/ML assessment
-              STATE_MACHINE_ARN=$(aws cloudformation describe-stacks --stack-name aiml-security-$accountId --query 'Stacks[0].Outputs[?OutputKey==`AIMLAssessmentStateMachineArn`].OutputValue' --output text 2>/dev/null)
-              if [[ $STATE_MACHINE_ARN != "" ]]; then
-                aws stepfunctions start-execution --state-machine-arn $STATE_MACHINE_ARN --input "{\"accountId\":\"$accountId\"}" --query 'executionArn' --output text
-                echo "Started AI/ML assessment for $accountId"
-              fi
-              cd ..
-            fi
-
-            # Deploy Security Assessment
-            if [[ $DEPLOY_SECURITY_ASSESSMENT = 'true' ]]; then
-              echo "Deploying Security Assessment to $accountId"
-              cd security-assessment
-              sam build --use-container --template template.yaml
-              sam deploy --template-file .aws-sam/build/template.yaml \
-                --stack-name security-$accountId \
-                --capabilities CAPABILITY_IAM \
-                --no-confirm-changeset \
-                --resolve-s3 \
-                --parameter-overrides BucketName=$BUCKET_REPORT \
-                --region $AWS_DEFAULT_REGION || echo "Security deploy failed for $accountId"
-
-              # Start Security assessment
-              STATE_MACHINE_ARN=$(aws cloudformation describe-stacks --stack-name security-$accountId --query 'Stacks[0].Outputs[?OutputKey==`SecurityAssessmentStateMachineArn`].OutputValue' --output text 2>/dev/null)
-              if [[ $STATE_MACHINE_ARN != "" ]]; then
-                aws stepfunctions start-execution --state-machine-arn $STATE_MACHINE_ARN --input "{\"accountId\":\"$accountId\"}" --query 'executionArn' --output text
-                echo "Started Security assessment for $accountId"
-              fi
-              cd ..
-            fi
-
-            # Deploy Resilience Assessment
-            if [[ $DEPLOY_RESILIENCE_ASSESSMENT = 'true' ]]; then
-              echo "Deploying Resilience Assessment to $accountId"
-              cd resilience-assessment
-              sam build --use-container --template template.yaml
-              sam deploy --template-file .aws-sam/build/template.yaml \
-                --stack-name resilience-$accountId \
-                --capabilities CAPABILITY_IAM \
-                --no-confirm-changeset \
-                --resolve-s3 \
-                --parameter-overrides BucketName=$BUCKET_REPORT \
-                --region $AWS_DEFAULT_REGION || echo "Resilience deploy failed for $accountId"
-
-              # Start Resilience assessment
-              STATE_MACHINE_ARN=$(aws cloudformation describe-stacks --stack-name resilience-$accountId --query 'Stacks[0].Outputs[?OutputKey==`ResilienceAssessmentStateMachineArn`].OutputValue' --output text 2>/dev/null)
-              if [[ $STATE_MACHINE_ARN != "" ]]; then
-                aws stepfunctions start-execution --state-machine-arn $STATE_MACHINE_ARN --input "{\"accountId\":\"$accountId\"}" --query 'executionArn' --output text
-                echo "Started Resilience assessment for $accountId"
-              fi
-              cd ..
-            fi
-
-            # Deploy Cost Assessment
-            if [[ $DEPLOY_COST_ASSESSMENT = 'true' ]]; then
-              echo "Deploying Cost Assessment to $accountId"
-              cd cost-assessment
-              sam build --use-container --template template.yaml
-              sam deploy --template-file .aws-sam/build/template.yaml \
-                --stack-name cost-$accountId \
-                --capabilities CAPABILITY_IAM \
-                --no-confirm-changeset \
-                --resolve-s3 \
-                --parameter-overrides BucketName=$BUCKET_REPORT \
-                --region $AWS_DEFAULT_REGION || echo "Cost deploy failed for $accountId"
-
-              # Start Cost assessment
-              STATE_MACHINE_ARN=$(aws cloudformation describe-stacks --stack-name cost-$accountId --query 'Stacks[0].Outputs[?OutputKey==`CostAssessmentStateMachineArn`].OutputValue' --output text 2>/dev/null)
-              if [[ $STATE_MACHINE_ARN != "" ]]; then
-                aws stepfunctions start-execution --state-machine-arn $STATE_MACHINE_ARN --input "{\"accountId\":\"$accountId\"}" --query 'executionArn' --output text
-                echo "Started Cost assessment for $accountId"
-              fi
-              cd ..
-            fi
-
-            # Clear credentials
-            unset AWS_ACCESS_KEY_ID AWS_SECRET_ACCESS_KEY AWS_SESSION_TOKEN
-          done
-
-          # Deploy to management account
-          echo "Deploying to management account $AWS_ACCOUNT_ID"
-          # Similar deployment logic for management account...
-
-        else
-          echo "Single account deployment"
-          # Deploy selected modules to current account
-          if [[ $DEPLOY_AIML_ASSESSMENT = 'true' ]]; then
-            cd aiml-security-assessment
-            sam build --use-container
-            sam deploy --template-file .aws-sam/build/template.yaml \
-              --stack-name aiml-security \
-              --capabilities CAPABILITY_IAM \
-              --no-confirm-changeset \
-              --s3-bucket $BUCKET_REPORT \
-              --parameter-overrides BucketName=$BUCKET_REPORT
-            cd ..
-          fi
-          # Add similar blocks for other assessment types...
-        fi
-
-  post_build:
-    commands:
-      - echo "Assessment completed. Results in S3:$BUCKET_REPORT"
-      - echo "Generating consolidated multi-module report"
-
-      # Consolidate results from all deployed modules
-      - |-
-        if [[ $MULTI_ACCOUNT_SCAN = 'true' ]]; then
-          pip3 install -q beautifulsoup4
-
-          # Wait for all assessments to complete and collect results
-          # This would include logic to:
-          # 1. Wait for Step Functions to complete
-          # 2. Collect results from each module type
-          # 3. Generate consolidated report across all assessment types
-          # 4. Upload to central S3 bucket organized by assessment type
-
-          python3 consolidate_multi_module_reports.py
-        fi
-      - echo "Multi-module assessment and consolidation completed"
diff --git a/docs/AIMLSecurityAssessment-MappingsTable.csv b/docs/AIMLSecurityAssessment-MappingsTable.csv
deleted file mode 100644
index 9f16695..0000000
--- a/docs/AIMLSecurityAssessment-MappingsTable.csv
+++ /dev/null
@@ -1,16 +0,0 @@
-Risk Category,Gap Count,Key Missing Focus Areas
-Unbounded Consumption,7,"WAF/Shield, rate limiting, token quotas, cost monitoring, input body-size limits"
-Excessive Agency,6,"Action boundaries, AgentCore Policy, transaction limits, rate alarms, financial transaction value thresholds, end-user identity propagation"
-Supply Chain Vulnerabilities,5,"SCPs, model inventory, onboarding governance, adversarial evaluation, TPRM monitoring"
-Training Data & Model Poisoning,5,"Model Monitor, data drift, Model Registry, Feature Store rollback, training data audit trail"
-Vector & Embedding Weaknesses,6,"KB least privilege, CloudTrail logging, metadata filtering, multi-tenancy, S3 event notifications"
-Non-Compliant Output,5,"Automated Reasoning, RAG controls, human-in-the-loop, compliance-driven guardrails, guardrail trace logging"
-Misinformation,4,"KB data quality, source attribution, integrity monitoring with event notifications, sync cadence"
-Abusive or Harmful Output,4,"FMEval, user reporting, allowlists, AI Service Cards"
-Biased Output,4,"SageMaker Clarify, Bedrock Evaluations with cadence, bias datasets, AI Service Cards"
-Sensitive Information Disclosure,5,"CloudWatch log masking, Macie, PII pre-processing pipeline, data classification, end-user identity propagation"
-Hallucination,4,"Contextual grounding, Automated Reasoning, disclaimers, RAG"
-Prompt Injection,5,"Input sanitization, prompt input validation function, parameterized queries, pen testing, SDK currency"
-Improper Output Handling,4,"Output validation, sanitization, encoding, XSS prevention"
-Off-Topic & Inappropriate Output,2,"Contextual grounding, topic allowlists"
-Out-of-Date Training Data,3,"KB sync cadence, data currency disclaimers, FM version updates and TPRM"
diff --git a/docs/DEVELOPER_GUIDE.md b/docs/DEVELOPER_GUIDE.md
index 6f9414e..0c270de 100644
--- a/docs/DEVELOPER_GUIDE.md
+++ b/docs/DEVELOPER_GUIDE.md
@@ -44,7 +44,7 @@
 
 ## Architecture Overview
 
-The AI/ML Security Assessment Framework is a serverless, multi-account security assessment solution for AWS AI/ML workloads. It performs 52 security checks across Amazon Bedrock, Amazon SageMaker AI, and Amazon Bedrock AgentCore, generating interactive HTML reports with findings and remediation guidance.
+The AI/ML Security Assessment Framework is a serverless, multi-account security assessment solution for AWS AI/ML workloads. It performs 52 core security checks across Amazon Bedrock, Amazon SageMaker AI, and Amazon Bedrock AgentCore, with an optional 64-check Financial Services GenAI risk assessment, generating interactive HTML reports with findings and remediation guidance.
 
 ### Security Design Principles
 
@@ -123,7 +123,6 @@ sample-aiml-security-assessment/
 │   └── *.png                         # Report screenshots
 ├── tests/                            # Unit tests for assessment functions
 ├── buildspec.yml                     # AWS CodeBuild orchestration
-├── buildspec-modular-example.yml     # Modular buildspec example
 └── consolidate_html_reports.py       # Multi-account report consolidation
 ```
 
@@ -196,7 +195,7 @@ sample-aiml-security-assessment/
 
 ## Assessment Structure
 
-The framework includes **52 security checks** across three AI/ML services. For the complete list of checks with descriptions, see the [Security Checks Reference](SECURITY_CHECKS.md).
+The framework includes **52 core security checks** across three AI/ML services, plus **64 optional Financial Services GenAI risk checks** when `EnableFinServAssessment` is enabled. For the complete list of checks with descriptions, see the [Security Checks Reference](SECURITY_CHECKS.md).
 
 ### AWS Lambda Functions
 
@@ -531,7 +530,7 @@ For detailed troubleshooting guidance, common issues, and debugging tips, see th
 ## Development Roadmap
 
 ### Current Status
-- **AI/ML Assessment**: 52 security checks across three services (see [Security Checks Reference](SECURITY_CHECKS.md))
+- **AI/ML Assessment**: 52 core checks across three services, plus 64 optional Financial Services GenAI risk checks (see [Security Checks Reference](SECURITY_CHECKS.md))
 
 ### Potential Additions
 - **Amazon Comprehend**: Data privacy, access controls, entity recognition security
@@ -756,4 +755,4 @@ sam build --template template.yaml
 
 ---
 
-This developer guide provides the foundation for extending the AI/ML Security Assessment Framework. As you add new AI/ML services and security checks, please update this documentation to help future contributors understand and build upon your work.
\ No newline at end of file
+This developer guide provides the foundation for extending the AI/ML Security Assessment Framework. As you add new AI/ML services and security checks, please update this documentation to help future contributors understand and build upon your work.
diff --git a/docs/SECURITY_CHECKS.md b/docs/SECURITY_CHECKS.md
index eeaf317..fc732bf 100644
--- a/docs/SECURITY_CHECKS.md
+++ b/docs/SECURITY_CHECKS.md
@@ -353,26 +353,25 @@ Each security check has a unique identifier with a service prefix:
 ## Financial Services GenAI Risk Checks (64 additional, 5 upstream extensions)
 
 These 64 standalone checks (FS-XX) extend the framework with Financial Services
-regulatory controls derived from the
-[AWS guide for Financial Services risk management of the use of Generative AI (March 2026)](https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf).
+risk-management controls derived from the
+[AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption](https://aws.amazon.com/blogs/security/introducing-the-updated-aws-user-guide-to-governance-risk-and-compliance-for-responsible-ai-adoption/).
 An additional 5 FS checks are contributed as extensions to existing SM-07,
 SM-22, SM-23, BR-04, and BR-06 (see in-file extension notes).
 
-The full catalog is split across three companion files for readability:
+The full catalog is in **[`SECURITY_CHECKS_FINSERV.md`](./SECURITY_CHECKS_FINSERV.md)**,
+organized into three parts:
 
-- **[`SECURITY_CHECKS_FINSERV_COMMON.md`](./SECURITY_CHECKS_FINSERV_COMMON.md)** — shared
-  intro, severity rubric, validation note, upstream-overlap table, compliance framework
-  mapping.
-- **[`SECURITY_CHECKS_FINSERV_PART1_INFRA_CONTROLS.md`](./SECURITY_CHECKS_FINSERV_PART1_INFRA_CONTROLS.md)** — FS-01 to FS-26
+- **Part 1 — Infrastructure & Resource Controls** — FS-01 to FS-26
   (Unbounded Consumption, Excessive Agency, Supply Chain, Training Poisoning, Vector
   Weaknesses).
-- **[`SECURITY_CHECKS_FINSERV_PART2_GUARDRAILS_CONTENT_SAFETY.md`](./SECURITY_CHECKS_FINSERV_PART2_GUARDRAILS_CONTENT_SAFETY.md)** — FS-27 to FS-46
+- **Part 2 — Guardrails & Content Safety** — FS-27 to FS-46
   (Non-Compliant Output, Misinformation, Abusive/Harmful Output, Biased Output,
   Sensitive Information Disclosure).
-- **[`SECURITY_CHECKS_FINSERV_PART3_APP_LAYER_AND_GAPS.md`](./SECURITY_CHECKS_FINSERV_PART3_APP_LAYER_AND_GAPS.md)** — FS-47 to FS-69
+- **Part 3 — Application-Layer Controls & Material Gaps** — FS-47 to FS-69
   (Hallucination, Prompt Injection, Improper Output Handling, Off-Topic Output,
   Out-of-Date Training Data, and 6 cross-category material gap checks).
 
-Compliance framework mapping table is in `SECURITY_CHECKS_FINSERV_COMMON.md`
+The same document includes the shared intro, severity rubric, validation note,
+upstream-overlap table, and the compliance framework mapping table
 (SR 11-7, FFIEC CAT, NYDFS 500.06, PCI-DSS 12.3.2, DORA Art.6, MAS TRM 9,
 ISO 27001 A.12, ECOA, OWASP LLM Top 10).
diff --git a/docs/SECURITY_CHECKS_FINSERV.md b/docs/SECURITY_CHECKS_FINSERV.md
new file mode 100644
index 0000000..0227eea
--- /dev/null
+++ b/docs/SECURITY_CHECKS_FINSERV.md
@@ -0,0 +1,1213 @@
+# FinServ GenAI Risk Checks (FS-01 to FS-69)
+
+This document is the complete reference for the Financial Services (FS-XX) GenAI security
+checks derived from the [AWS User Guide to Governance, Risk, and Compliance for Responsible AI
+Adoption](https://aws.amazon.com/blogs/security/introducing-the-updated-aws-user-guide-to-governance-risk-and-compliance-for-responsible-ai-adoption/)
+(referred to throughout as "the Responsible AI GRC guide"). It combines the shared reference material
+(severity rubric, guide traceability, upstream-overlap table, compliance mapping) with the full
+set of check definitions, organised into three parts:
+
+- **Part 1 — Infrastructure & Resource Controls (FS-01 to FS-26):** unbounded consumption,
+  excessive agency, supply chain, training-data poisoning, vector & embedding weaknesses.
+- **Part 2 — Guardrails & Content Safety (FS-27 to FS-46):** non-compliant output,
+  misinformation, abusive/harmful output, biased output, sensitive information disclosure.
+- **Part 3 — Application-Layer Controls & Material Gaps (FS-47 to FS-69):** hallucination,
+  prompt injection, improper output handling, off-topic output, out-of-date training data,
+  cross-category gap checks.
+
+Of the 69 FS numbers, **64 ship as standalone checks**; 5 (FS-17, FS-18, FS-19, FS-23, FS-64)
+are merged into upstream SM/BR checks and appear here as upstream-extension notes. See
+[Relationship to upstream SM/BR/AC checks](#relationship-to-upstream-smbrac-checks) for the
+consolidation table.
+
+Each check includes how it is **detected** (the AWS API calls or configuration inspected) and
+how a failure is **remediated** (the specific AWS actions to take). Severities follow a
+documented Likelihood × Impact methodology — see the
+[FinServ Severity Methodology](./SECURITY_CHECKS_FINSERV_SEVERITY_METHODOLOGY.md), with
+authoritative per-finding assignments in the
+[FinServ Severity Register](./SECURITY_CHECKS_FINSERV_SEVERITY_REGISTER.md).
+
+## Table of Contents
+
+**Shared reference**
+
+- [About the source](#about-the-source)
+- [Guide traceability](#guide-traceability)
+- [Severity rubric](#severity-rubric)
+- [Validation note](#validation-note)
+- [Contribution workflow](#contribution-workflow)
+- [Relationship to upstream SM/BR/AC checks](#relationship-to-upstream-smbrac-checks)
+- [Compliance Framework Mapping](#compliance-framework-mapping)
+
+**Checks**
+
+- [Part 1 — Infrastructure & Resource Controls (FS-01 to FS-26)](#part-1--infrastructure--resource-controls-fs-01-to-fs-26)
+- [Part 2 — Guardrails & Content Safety (FS-27 to FS-46)](#part-2--guardrails--content-safety-fs-27-to-fs-46)
+- [Part 3 — Application-Layer Controls & Material Gaps (FS-47 to FS-69)](#part-3--application-layer-controls--material-gaps-fs-47-to-fs-69)
+
+---
+
+## About the source
+
+The 69 FS checks are derived from the [AWS User Guide to Governance, Risk, and Compliance for
+Responsible AI Adoption](https://aws.amazon.com/blogs/security/introducing-the-updated-aws-user-guide-to-governance-risk-and-compliance-for-responsible-ai-adoption/)
+(referred to throughout as "the Responsible AI GRC guide").
+
+Each check includes how it is **detected** (the AWS API calls or configuration inspected)
+and how a failure is **remediated** (the specific AWS actions to take).
+
+## Guide traceability
+
+The Responsible AI GRC guide organizes AI-specific risks into **15 categories** (§1.2.1 through
+§1.2.15). Every check below is tagged with one of:
+
+- **[Guide §x.y.z]** — mitigation is explicitly listed in that guide section's "Mitigations or controls"
+  table or "Practical guidance" callout.
+- **[Guide §x.y.z, extension]** — mitigation is consistent with the guide's risk description but is
+  not verbatim in the guide; included because it is a widely-accepted AWS best practice for the
+  same risk. These are labelled so reviewers know the provenance.
+
+## Severity rubric
+
+Severities follow a documented **Likelihood × Impact** methodology mapped to the AWS Security Hub
+ASFF label set (`Informational | Low | Medium | High`; `Critical` is reserved, not used this
+round). The full methodology, the 3×3 scoring matrix, the N/A **disposition rules**, and the
+authoritative per-finding assignments are in
+[`SECURITY_CHECKS_FINSERV_SEVERITY_METHODOLOGY.md`](./SECURITY_CHECKS_FINSERV_SEVERITY_METHODOLOGY.md)
+and [`SECURITY_CHECKS_FINSERV_SEVERITY_REGISTER.md`](./SECURITY_CHECKS_FINSERV_SEVERITY_REGISTER.md).
+
+| Severity | Criteria (ASFF-aligned) |
+|---|---|
+| **High** | Control whose absence can lead to direct regulatory breach, data exposure, large-scale financial loss, or full bypass of safety guardrails. |
+| **Medium** | Control whose absence materially increases the likelihood or impact of a risk category but does not by itself produce a breach. |
+| **Low** | Control that reduces residual risk or supports audit/observability but has alternative or compensating controls. |
+| **Informational** | No actionable issue is asserted. Used for three dispositions: (1) **NOT_APPLICABLE** — the control's resource type is absent (e.g., no Knowledge Bases, no guardrails); (2) **ADVISORY** — the control cannot be verified via AWS APIs and requires human review (finding name prefixed `ADVISORY:`); (3) checks awaiting manual verification. |
+
+> **Disposition rules (how a finding's severity is set):** severity is a property of the *control*
+> (its Likelihood × Impact), applied to that control's `Passed` and `Failed` rows alike. The `N/A`
+> family is fixed by disposition: **NOT_APPLICABLE → Informational**, **ADVISORY → Informational**,
+> **COULD_NOT_ASSESS** (access denied / unsupported region) **→ Low**. The legacy "Advisory" tier in
+> earlier revisions of this document is reconciled to the **Informational** label + `N/A` status +
+> `ADVISORY:` name prefix.
+
+## Validation note
+
+Detection and remediation guidance in this document was systematically validated against the
+Responsible AI GRC guide, current AWS documentation, API references, and AWS announcements as
+of April 2026. IAM action names were verified against the AWS Service Authorization Reference
+for [Amazon Bedrock](https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonbedrock.html),
+[Amazon Bedrock AgentCore](https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonbedrockagentcore.html),
+and [Amazon OpenSearch Serverless](https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonopensearchserverless.html)
+(note: the OpenSearch Serverless IAM prefix is `aoss:`, not `opensearchserverless:` — the latter
+is the boto3 client name).
+CloudWatch metric namespaces were verified against the service-specific monitoring docs (Bedrock,
+Bedrock Agents, Bedrock Guardrails, SageMaker Model Monitor, SageMaker Clarify). CloudTrail
+event-type classification (management vs data) for Bedrock API operations was verified against the
+[Bedrock CloudTrail integration guide](https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html).
+Cost Anomaly Detection monitor-type values were verified against the
+[AnomalyMonitor API reference](https://docs.aws.amazon.com/aws-cost-management/latest/APIReference/API_AnomalyMonitor.html).
+Where AWS does not prescribe a specific value (e.g., grounding thresholds), this is explicitly
+called out as an assessment recommendation rather than an AWS requirement. AWS regional
+availability of new features (Automated Reasoning, AgentCore Policy, AWS Security Agent,
+cross-account guardrails) evolves rapidly — region lists in Parts 1-3 reflect the state at the
+cited announcement date and should be re-verified before audit reliance.
+
+## Contribution workflow
+
+The FS checks are contributed via a pull request from a personal GitHub fork of
+`aws-samples/sample-aiml-security-assessment`. For the contribution process — feature-request
+GitHub issue, fork + feature branch, Conventional Commits, PR, and reviewer assignment — see
+[`CONTRIBUTING.md`](../CONTRIBUTING.md) and the [Developer Guide](./DEVELOPER_GUIDE.md).
+
+Key quality gates before opening the PR:
+
+1. `ruff check` and `ruff format --check` pass on `functions/security/finserv_assessments/`.
+2. `cfn-lint` and `sam validate --lint` pass on the SAM templates.
+3. [ASH v3](https://awslabs.github.io/automated-security-helper/) scan
+   (`ash --source-dir . --fail-on-findings --config-overrides
+   'global_settings.severity_threshold=MEDIUM'`) reports zero Critical / High findings,
+   or suppressions are documented in the ASH configuration used for the scan.
+4. Amazon Code Defender (`git defender scan`) reports no secrets in the staged diff.
+
+Because `aws-samples` is an OSPO-managed organization, pushes to your personal fork of
+`aws-samples/*` are auto-allowed by Code Defender — a Git Defender exception ticket is
+**not expected** for this contribution.
+
+## Relationship to upstream SM/BR/AC checks
+
+The upstream [sample-aiml-security-assessment](https://github.com/aws-samples/sample-aiml-security-assessment)
+framework already provides 52 core security checks (SM-01 to SM-25, BR-01 to BR-14, AC-01 to AC-13).
+The 69 FS checks in this document are **additive**: they enhance the upstream with FinServ-specific
+detection and remediation guidance drawn from the Responsible AI GRC guide. A few FS
+checks overlap with upstream checks — in those cases, the FS check adds FinServ-specific depth
+(e.g., protected-attribute facets, regulatory cadence requirements, denied-topic content for
+financial advice). The table below surfaces each overlap with a systematic recommendation based
+on five factors: (1) whether the detection target is the same AWS resource/configuration, (2)
+whether the FS check adds FinServ-specific regulatory specificity, (3) severity differentiation,
+(4) whether a customer would remediate them differently, and (5) guide-traceability value.
+
+**Recommendation values:**
+
+- **Extend upstream** — merge FS detection/remediation detail into the upstream check; do not ship FS as a standalone entry in the final report. Best when both checks target the same resource and the FS content is an enhancement.
+- **Keep separate** — ship as a standalone FS check alongside the upstream check. Best when the FS check targets a different AWS resource, has materially different severity, or encodes a FinServ-specific regulatory requirement that would be diluted by merging.
+
+| FS check | Upstream check | Overlap analysis | Recommendation |
+|---|---|---|---|
+| FS-17 (Model Monitor Data Quality) | SM-07 (Model Monitor) | Same resource (`sagemaker:ListMonitoringSchedules`); FS-17 adds training-data-drift-specific guidance, exact CloudWatch namespace (`/aws/sagemaker/Endpoints/data-metric`), and `emit_metrics` requirement. | **Extend SM-07** — add FS-17's detection detail (namespace, `emit_metrics`) as a refinement of the existing check |
+| FS-18 (Model Drift Detection) | SM-23 (Model Drift Detection) | Same name, same resource, same detection logic (`MonitoringType=ModelQuality`). FS-18 adds Guide §1.2.14 low-entropy classification monitoring as an early-warning poisoning indicator. | **Extend SM-23** — add low-entropy monitoring as a new remediation step on SM-23; do not ship FS-18 separately |
+| FS-19 (Model Registry Approval) | SM-08 (Model Registry) / SM-22 (Model Approval Workflow) | SM-22 is conceptually identical. FS-19 specifies exact `ModelApprovalStatus=PendingManualApproval` default and flags auto-approved latest versions. | **Extend SM-22** — add FS-19's detection specificity (flag auto-approved latest versions) to SM-22; do not ship FS-19 separately |
+| FS-20 (Feature Store Rollback) | SM-15 (Feature Store Encryption) | Different security properties on the same resource: SM-15 checks encryption; FS-20 checks `OfflineStoreConfig` presence for point-in-time rollback. | **Keep separate** — different security property; no true overlap |
+| FS-39 (SageMaker Clarify Bias) | SM-06 (Clarify Usage) | Same resource family but SM-06 is Severity Low and generic ("validates Clarify for bias detection"); FS-39 is Severity High with specific `MonitoringType=ModelBias`, protected-attribute facets (age/gender/race/geography), and specific bias metrics (DPL, DI, DPPL) for FinServ decision models. | **Keep separate** — severity, detection specificity, and FinServ regulatory context (ECOA/Fair Housing) warrant a standalone check |
+| FS-41 (SageMaker Clarify Explainability) | SM-06 (Clarify Usage) | Same as FS-39 but for `MonitoringType=ModelExplainability`. FS-41 is Severity High with SHAP analysis for adverse-action-notice use cases. | **Keep separate** — severity and adverse-action-notice regulatory context justify a standalone check |
+| FS-22 (KB IAM Least Privilege) | BR-01 (IAM Least Privilege) | BR-01 detects the managed policy `AmazonBedrockFullAccess` on any role. FS-22 inspects role policy documents for wildcard `bedrock:*` affecting KB actions and requires ARN-scoped resource restrictions. | **Keep separate** — different detection logic (managed-policy attachment vs policy-document statement analysis); FS-22 fills a detection gap BR-01 does not cover |
+| FS-23 (KB CloudTrail Logging) | BR-06 (CloudTrail Logging) | BR-06 verifies CloudTrail is logging Bedrock API calls generally. FS-23 specifically requires an advanced event selector for `AWS::Bedrock::KnowledgeBase` to capture `Retrieve`/`RetrieveAndGenerate` data events (NOT logged by default). | **Extend BR-06** — add FS-23's data-event-selector requirement as a refinement of the same CloudTrail check |
+| FS-25 (OpenSearch Serverless Encryption) | BR-09 (Knowledge Base Encryption) | Different AWS resources: BR-09 checks the Bedrock KB's `kmsKeyArn`; FS-25 checks the underlying AOSS collection's encryption policy (`aoss:ListSecurityPolicies(type=encryption)`). A KB can be CMK-encrypted while its vector store is not. | **Keep separate** — different AWS resources with independent encryption configurations; both needed for defense-in-depth |
+| FS-26 (KB VPC Access) | BR-02 (VPC Endpoint Configuration) | BR-02 checks Bedrock VPC endpoints exist. FS-26 checks the AOSS collection's network policy for `AllowFromPublic=true` (whether the vector store itself is internet-reachable). | **Keep separate** — orthogonal controls: Bedrock VPC endpoint vs vector-store network policy |
+| FS-27 (Automated Reasoning / Contextual Grounding) | BR-05 (Guardrail Configuration) | BR-05 verifies a guardrail exists and is enforced. FS-27 checks for `automatedReasoningPolicy` or `contextualGroundingPolicy` with specific threshold (≥ 0.7). | **Keep separate** — policy-level guardrail content BR-05 does not evaluate |
+| FS-28 (Financial Denied Topics) | BR-05 | BR-05 is existence; FS-28 inspects `topicPolicy.topics` for FinServ-specific denied topics (investment advice, tax advice, guaranteed returns). | **Keep separate** — FinServ denied-topic content is a regulatory-specific requirement not representable as a generic extension |
+| FS-36 (Guardrail Content Filters) | BR-05 | FS-36 inspects `contentPolicy.filters` for HATE/VIOLENCE/SEXUAL/INSULTS/MISCONDUCT/PROMPT_ATTACK with strength ≥ MEDIUM. | **Keep separate** — policy-level detection BR-05 does not cover |
+| FS-38 (Word Filters and Allowlists) | BR-05 | FS-38 inspects `wordPolicy.words` and `managedWordLists` for FinServ business-term allowlist guidance. | **Keep separate** — advisory business-term allowlist has no upstream equivalent |
+| FS-45 (Guardrail PII Filters) | BR-05 | FS-45 inspects `sensitiveInformationPolicy.piiEntities` for 12 specific PII types critical to FinServ (SSN, bank account, SWIFT code, etc.) with `inputAction=BLOCK`/`outputAction=ANONYMIZE`. | **Keep separate** — FinServ-specific PII entity list is a distinct regulatory requirement |
+| FS-47 (Grounding Threshold) | BR-05 | FS-47 checks `contextualGroundingPolicy.filters` for `GROUNDING` filter with threshold ≥ 0.7. | **Keep separate** — threshold-value check BR-05 does not perform |
+| FS-50 (Relevance Grounding Filters) | BR-05 | Same as FS-47 but for `RELEVANCE` filter type. | **Keep separate** — distinct filter type |
+| FS-51 (Prompt Attack Filters) | BR-05 | FS-51 checks `PROMPT_ATTACK` filter in Standard tier with input-tagging requirement and `inputStrength=HIGH`. | **Keep separate** — Standard-tier cross-region-inference opt-in and input-tagging nuance warrant standalone guidance |
+| FS-59 (Guardrail Topic Allowlist) | BR-05 | FS-59 checks `topicPolicy.topics` exist to block off-topic conversations (politics, entertainment, medical advice). | **Keep separate** — off-topic content restrictions are distinct from FS-28's regulated-advice restrictions; different guide section (§1.2.2 vs §1.2.1) |
+| FS-64 (Guardrail Trace Logging) | BR-04 (Model Invocation Logging) | BR-04 verifies invocation logging is enabled. FS-64 additionally verifies the log output captures `guardrailTrace` with `action`/`inputAssessments`/`outputAssessments` and adds NYDFS/SR 11-7 retention guidance. | **Extend BR-04** — add guardrail-trace verification as a refinement of the same invocation-logging check; retention guidance can be a remediation note |
+
+### Summary of consolidation recommendations
+
+- **Extend upstream (5 FS checks merged into 5 upstream checks):** FS-17 → SM-07; FS-18 → SM-23; FS-19 → SM-22; FS-23 → BR-06; FS-64 → BR-04. These checks are replaced by upstream-extension notes in Parts 1 and 3 and are removed from `finserv_assessments/app.py`.
+- **Keep separate (64 FS checks):** All other FS checks ship as standalone entries. This includes FS-20, FS-22, FS-25, FS-26, FS-39, FS-41, all Guardrail-policy-level checks (FS-27, FS-28, FS-36, FS-38, FS-45, FS-47, FS-50, FS-51, FS-59), and all FS checks that have no upstream overlap at all.
+
+After consolidation the combined framework contains **52 upstream + 64 FS = 116 distinct checks** (down from 52 + 69 = 121 before merging). The consolidation reduces duplication without losing FinServ-specific regulatory depth.
+
+
+---
+
+## Compliance Framework Mapping
+
+> **Disclaimer:** The mappings below are **preliminary and illustrative**, provided by the
+> authors of this assessment to help FSI teams start conversations with their MRM/compliance
+> colleagues. They are **not** authoritative AWS compliance guidance and they have **not** been
+> reviewed by AWS Security Assurance Services, external auditors, or the regulators whose
+> frameworks are named. Each firm should have its own MRM, Legal, and Compliance teams
+> validate these mappings against the firm's specific interpretation of each framework before
+> relying on them as audit evidence.
+
+Each FS check maps to one or more FinServ regulatory frameworks (preliminary mapping):
+
+| Framework | Description | Relevant Checks |
+|-----------|-------------|-----------------|
+| SR 11-7 | Federal Reserve Model Risk Management Guidance | FS-07, FS-10, FS-12 to FS-16, FS-20, FS-21, FS-27 to FS-33, FS-34, FS-39 to FS-42, FS-66, FS-67 |
+| FFIEC CAT | Cybersecurity Assessment Tool | All FS checks |
+| NYDFS 500 | NY Cybersecurity Regulation | FS-22, FS-43 to FS-46, FS-51 to FS-54, FS-66 |
+| PCI-DSS | Payment Card Industry Data Security Standard | FS-22, FS-25, FS-26, FS-43 to FS-46, FS-53, FS-56, FS-67, FS-68 |
+| DORA | EU Digital Operational Resilience Act | FS-01 to FS-06, FS-08, FS-11, FS-54, FS-65, FS-68 |
+| MAS TRM 9 | Monetary Authority of Singapore Technology Risk Management | FS-07 to FS-11, FS-15, FS-27 to FS-30, FS-32, FS-37, FS-39 to FS-42, FS-66, FS-67 |
+| ISO 27001 | Information Security Management | FS-13, FS-14, FS-16, FS-21, FS-33, FS-46, FS-52, FS-63, FS-65 |
+| ECOA/Fair Housing | Equal Credit Opportunity Act (US) | FS-39 to FS-42 (advisory — applicability depends on whether the model is used for ECOA-covered credit decisions; confirm with your compliance team) |
+| OWASP LLM Top 10 | OWASP LLM Application Security | FS-51 to FS-58, FS-68, FS-69 |
+
+> **FS-34 note:** FS-34 (TPRM for FM Providers) is listed above under SR 11-7. Although the
+> check appears in the Misinformation section of Part 2 for numbering continuity, its
+> primary guide source is §1.2.12 Supply Chain, which is the lens MRM and TPRM teams will
+> evaluate it through.
+
+---
+
+## Part 1 — Infrastructure & Resource Controls (FS-01 to FS-26)
+
+> **Guide risk categories:** Unbounded Consumption (FS-01..06, §1.2.11), Excessive Agency (FS-07..11, §1.2.9), Supply Chain Vulnerabilities (FS-12..16, §1.2.12), Training Data & Model Poisoning (FS-17..21, §1.2.14), Vector & Embedding Weaknesses (FS-22..26, §1.2.15). FS-17, FS-18, FS-19, and FS-23 are merged into upstream checks — see the extension notes in each section.
+
+### Unbounded Consumption (FS-01 to FS-06)
+
+> **Guide source:** §1.2.11 Unbounded consumption. Guide-listed mitigations: (a) AWS WAF and Shield
+> Advanced for LLM APIs; (b) maximum input length limits; (c) rate limits/quotas on APIs
+> accessing LLMs; (d) cost-and-usage tracking for generative AI. Practical guidance in the guide
+> also calls out `max_tokens` optimisation and CloudWatch metrics for token usage.
+
+#### FS-01 — WAF and Shield Protection
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium (WAF) / Low (Shield Advanced) |
+| Guide ref | [Guide §1.2.11] — "Protect your LLM APIs and Amazon Bedrock-hosted LLMs by using AWS WAF and AWS Shield Advanced." Also covers: "To protect your API endpoints, set maximum length limits for input requests when you use large language models (LLMs) directly or through Amazon Bedrock." |
+| Description | Verifies AWS WAF Web ACLs and Shield Advanced protect GenAI API endpoints, and verifies the Web ACL enforces both rate-based limits and body-size (input-length) constraints. |
+| Detection | Calls `shield:DescribeSubscription` to check Shield Advanced is active. Calls `wafv2:ListWebACLs(Scope=REGIONAL)` in each region where GenAI API endpoints run to verify at least one regional Web ACL exists (covers API Gateway, ALB, AppSync). **Additionally** calls `wafv2:ListWebACLs(Scope=CLOUDFRONT)` in `us-east-1` to detect Web ACLs protecting CloudFront distributions fronting GenAI workloads — CLOUDFRONT-scope Web ACLs must be created and queried in `us-east-1` per the [WAF resources documentation](https://docs.aws.amazon.com/waf/latest/developerguide/how-aws-waf-works-resources.html). For each Web ACL found, calls `wafv2:GetWebACL` and inspects the `Rules` array for: (a) at least one `RateBasedStatement` (rate limiting) and (b) at least one `SizeConstraintStatement` with `FieldToMatch=Body` or `FieldToMatch=JsonBody` (input-size limit — this implements Guide §1.2.11 mitigation "set maximum length limits for input requests when you use large language models (LLMs) directly or through Amazon Bedrock"). Flags accounts with no Web ACL in either scope, a Web ACL with no rate-based rule, a Web ACL with no body size-constraint rule, or where Shield Advanced is inactive. |
+| Remediation | 1. Subscribe to AWS Shield Advanced via the Shield console. 2. Create a WAF Web ACL with both (a) a rate-based rule (e.g., 1 000 req / 5 min per IP) and (b) a `SizeConstraintStatement` that blocks requests where `FieldToMatch=Body` (or `JsonBody` for JSON APIs) exceeds your LLM's expected maximum input size — for example, `ComparisonOperator=GT, Size=100000` (100 KB) — use `Scope=REGIONAL` for API Gateway/ALB/AppSync resources, or `Scope=CLOUDFRONT` (created in `us-east-1`) for CloudFront distributions fronting Bedrock. The body size-constraint rule directly implements the Guide §1.2.11 mitigation "set maximum length limits for input requests when you use large language models (LLMs) directly or through Amazon Bedrock" and prevents large-prompt token-exhaustion attacks before they reach Bedrock. 3. Associate the ACL with the fronting resource (API Gateway stage, ALB, or CloudFront distribution). 4. Add AWS Managed Rules (e.g., `AWSManagedRulesCommonRuleSet`, which includes additional size checks). 5. For CloudFront-fronted workloads, register the distribution with Shield Advanced via `shield:CreateProtection` to unlock automatic application-layer DDoS mitigation. 6. For API Gateway REST APIs, also note the service's own payload-size quota: the default is 10 MB per request (see [API Gateway quotas](https://docs.aws.amazon.com/apigateway/latest/developerguide/api-gateway-execution-service-limits-table.html)); use a request validator or Lambda authorizer for sub-10 MB limits where WAF size constraints are unsuitable. |
+| Reference | [Shield Advanced](https://docs.aws.amazon.com/waf/latest/developerguide/shield-chapter.html), [WAF](https://docs.aws.amazon.com/waf/latest/developerguide/waf-chapter.html), [WAF Size Constraint Rule](https://docs.aws.amazon.com/waf/latest/developerguide/waf-rule-statement-type-size-constraint-match.html), [API Gateway Quotas](https://docs.aws.amazon.com/apigateway/latest/developerguide/api-gateway-execution-service-limits-table.html) |
+
+#### FS-02 — API Gateway Rate Limiting
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.11] — "protect your API endpoints by implementing rate limits and quotas for APIs that access large language models (LLMs)". |
+| Description | Checks API Gateway usage plans enforce throttling on GenAI endpoints. |
+| Detection | Calls `apigateway:GetUsagePlans` and inspects each plan's `throttle.rateLimit` and `throttle.burstLimit`. Flags plans where either is zero or absent. |
+| Remediation | 1. Create or update usage plans with `rateLimit` and `burstLimit` values appropriate for your traffic. 2. Associate plans with API stages serving Bedrock. 3. Issue per-consumer API keys with individual quotas. |
+| Reference | [API Gateway Throttling](https://docs.aws.amazon.com/apigateway/latest/developerguide/api-gateway-request-throttling.html) |
+
+#### FS-03 — Bedrock Token Quota Review
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.11, extension] — guide practical guidance notes "Bedrock has default quota on model inference based on token usage" and recommends optimising `max_tokens`. Quota review as an operational control is an extension aligned with this guidance. |
+| Description | Verifies Bedrock TPM/RPM quotas have been reviewed and set appropriately. |
+| Detection | Calls `service-quotas:ListServiceQuotas(ServiceCode=bedrock)` for applied quotas and `ListAWSDefaultServiceQuotas` for defaults, then compares each adjustable quota's `Value` against the default `Value`. Flags accounts where every quota equals the service default (indicating no quota review or increase has been requested). |
+| Remediation | 1. Review current quotas in the Service Quotas console. 2. Request increases aligned with expected peak load via `service-quotas:RequestServiceQuotaIncrease`. 3. Implement client-side token counting and pre-flight quota checks. 4. Use Bedrock cross-region inference profiles to distribute load — note that cross-region inference routes requests across destination regions automatically with no additional cost, but requires the invoked model to be available in the destination regions defined in the inference profile. |
+| Reference | [Bedrock Quotas](https://docs.aws.amazon.com/bedrock/latest/userguide/quotas.html) |
+
+#### FS-04 — Cost Anomaly Detection
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.11] — "Track, allocate, and manage your costs and usage for generative AI." |
+| Description | Checks AWS Cost Anomaly Detection monitors cover Bedrock/SageMaker. |
+| Detection | Calls `ce:GetAnomalyMonitors` and inspects each monitor. AWS Cost Anomaly Detection supports exactly two `MonitorType` values per the [AnomalyMonitor API](https://docs.aws.amazon.com/aws-cost-management/latest/APIReference/API_AnomalyMonitor.html): `DIMENSIONAL` (AWS-managed, where `MonitorDimension` is one of `SERVICE`, `LINKED_ACCOUNT`, `TAG`, or `COST_CATEGORY`) and `CUSTOM` (customer-managed, scoped via `MonitorSpecification` to specific values). For `DIMENSIONAL` monitors, checks `MonitorDimension=SERVICE` (the AWS-managed "AWS services" monitor that automatically covers all services including Bedrock and SageMaker — the recommended default). For `CUSTOM` monitors, inspects `MonitorSpecification` for references to Bedrock or SageMaker. Flags accounts with no monitors, or with only narrowly-scoped monitors that would not detect Bedrock cost anomalies (e.g., `DIMENSIONAL` with `MonitorDimension=LINKED_ACCOUNT` only). |
+| Remediation | 1. Create an AWS-managed `DIMENSIONAL` monitor with `MonitorDimension=SERVICE` for comprehensive coverage across all AWS services (the recommended default — in the console this appears as "AWS services" under "Managed by AWS"). For narrower scope, add a `CUSTOM` monitor using `MonitorSpecification` with a `Dimensions` expression scoped to specific service values (e.g., `{"Dimensions": {"Key": "SERVICE", "Values": ["Amazon Bedrock", "Amazon SageMaker"]}}`) — note that for `CUSTOM` monitors you use `MonitorSpecification`, not `MonitorDimension`. 2. Configure alert subscriptions (SNS/email) for anomalies above threshold. 3. Set daily spend budgets with AWS Budgets as a secondary control. 4. Enable Bedrock IAM principal cost allocation: tag IAM users/roles with team or cost-center attributes, activate them as cost allocation tags in the Billing and Cost Management console, and include caller identity data in CUR 2.0 exports for per-user/per-team Bedrock spend attribution. |
+| Reference | [Cost Anomaly Detection](https://docs.aws.amazon.com/cost-management/latest/userguide/getting-started-ad.html), [Bedrock IAM Cost Allocation](https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/iam-principal-cost-allocation.html) |
+
+#### FS-05 — CloudWatch Token Usage Alarms
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.11] — guide practical guidance cites CloudWatch metrics for token usage; alarms operationalise that guidance. |
+| Description | Verifies CloudWatch alarms exist for Bedrock throttling and token metrics. |
+| Detection | Paginates `cloudwatch:DescribeAlarms(AlarmTypes=MetricAlarm)` and filters for alarms in the `AWS/Bedrock` namespace or with "bedrock" in the alarm name. Separately counts throttle-specific alarms. |
+| Remediation | 1. Create alarms for `AWS/Bedrock InvocationThrottles` (threshold > 0). 2. Create alarms for `AWS/Bedrock EstimatedTPMQuotaUsage` to track approach to token quota limits, and separately on `InputTokenCount` + `OutputTokenCount` (sum via CloudWatch metric math) for absolute token consumption. Note: `TokensProcessed` is not a valid Bedrock metric — the correct runtime metrics are `InputTokenCount`, `OutputTokenCount`, `InvocationThrottles`, `EstimatedTPMQuotaUsage`, `Invocations`, `InvocationLatency`, `TimeToFirstToken`. 3. Publish custom application-level token counters via Embedded Metric Format (EMF) if you need per-tenant or per-feature attribution. 4. Attach SNS actions to all alarms. |
+| Reference | [Bedrock CloudWatch Metrics](https://docs.aws.amazon.com/bedrock/latest/userguide/monitoring.html) |
+
+#### FS-06 — AWS Budgets AI/ML Spend
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.11] — "Track, allocate, and manage your costs and usage for generative AI." |
+| Description | Checks AWS Budgets are configured with alerts for AI/ML service spend. |
+| Detection | Calls `budgets:DescribeBudgets` and inspects each budget's `FilterExpression` (the current field) and `CostFilters` (deprecated but may still be populated on older budgets) for references to "bedrock" or "sagemaker". Note: `CostFilters` is marked deprecated in the AWS Budgets API — new budgets use `FilterExpression` with an `Expression` object; the detection should check both fields to cover both old and new budgets. |
+| Remediation | 1. Create cost budgets for Bedrock and SageMaker with 80 %/100 % alert thresholds. 2. Add SNS notifications to on-call channels. 3. Consider budget actions to apply IAM deny policies when thresholds are breached. 4. Enable Bedrock IAM principal cost allocation to attribute inference costs to specific IAM users/roles via Cost Explorer and CUR 2.0 — tag IAM principals with team or cost-center attributes and activate them as cost allocation tags. |
+| Reference | [AWS Budgets](https://docs.aws.amazon.com/cost-management/latest/userguide/budgets-managing-costs.html), [Bedrock IAM Cost Allocation](https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/iam-principal-cost-allocation.html) |
+
+### Excessive Agency (FS-07 to FS-11)
+
+> **Guide source:** §1.2.9 Excessive agency. Guide-listed mitigations: (a) Amazon Bedrock AgentCore
+> for managing complex tasks; (b) least-privilege permissions on plugins; (c) human-in-the-loop
+> output validation; (d) explicit action boundaries in agent configuration (AgentCore Policy);
+> (e) audit logging of agent actions with reasoning chain (AgentCore Observability);
+> (f) transaction-value thresholds on agent tool calls; (g) monitoring agent call rates with
+> alarms (AgentCore Evaluations). Mitigation (e) is covered by the expanded FS-08 check, which
+> now verifies both AgentCore Policy Engine and AgentCore Observability are configured.
+
+#### FS-07 — Agent Action Boundaries
+
+| Field | Detail |
+|-------|--------|
+| Severity | High |
+| Guide ref | [Guide §1.2.9] — "grant only the minimum permissions required"; "Define and enforce explicit action boundaries in the agent configuration". |
+| Description | Verifies Bedrock agent execution roles have no wildcard sensitive actions (iam:\*, s3:\*, ec2:\*, lambda:\*, \*). |
+| Detection | Calls `ListAgents` and `GetAgent` (via the `bedrock-agent` boto3 client; IAM actions are `bedrock:ListAgents` and `bedrock:GetAgent`) to retrieve each agent's `agentResourceRoleArn`. Resolves the role name and inspects attached and inline policy documents from the permissions cache for wildcard Allow statements. |
+| Remediation | 1. Replace wildcard actions with the specific actions the agent needs. 2. Apply IAM permission boundaries to agent execution roles. 3. Use resource-level conditions to restrict to specific ARNs. 4. Implement human-in-the-loop approval for high-impact actions. 5. For agents deployed in a VPC, use **AWS Network Firewall** with domain-based filtering to control which external domains agents can reach — this provides a network-layer boundary that limits agent tool access to approved endpoints regardless of IAM permissions. |
+| Reference | [Bedrock Agent Permissions](https://docs.aws.amazon.com/bedrock/latest/userguide/agents-permissions.html), [Control Agent Domain Access](https://aws.amazon.com/blogs/machine-learning/control-which-domains-your-ai-agents-can-access/) |
+
+#### FS-08 — AgentCore Policy Engine and Observability
+
+| Field | Detail |
+|-------|--------|
+| Severity | High |
+| Guide ref | [Guide §1.2.9] — "Use Amazon Bedrock AgentCore to manage complex tasks and connect securely"; "Define and enforce explicit action boundaries"; **"Implement audit logging of all actions taken by AI agents, including the reasoning chain that led to each action."** (The audit-logging mitigation's guide reference is "Observe your agent applications on Amazon Bedrock AgentCore Observability.") |
+| Description | Checks AgentCore Gateways have a Policy Engine attached to authorize agent-to-tool interactions, verifies AgentCore Runtimes have an inbound authorizer configured, and verifies AgentCore Observability is enabled so agent reasoning chains and tool calls are auditable. |
+| Detection | (a) Calls `ListGateways` and `GetGateway` (via the `bedrock-agentcore-control` boto3 client; IAM actions are `bedrock-agentcore:ListGateways` and `bedrock-agentcore:GetGateway`); inspects `policyEngineConfiguration.arn` and `policyEngineConfiguration.mode` (must be `ENFORCE` for production). (b) Calls `ListAgentRuntimes` (IAM action `bedrock-agentcore:ListAgentRuntimes`) and inspects each runtime's `authorizerConfiguration.customJWTAuthorizer` for inbound auth. (c) Verifies **AgentCore Observability** is enabled by (i) checking that CloudWatch Transaction Search is on via `xray:GetTraceSegmentDestination` (destination should be `CloudWatchLogs`) and that the X-Ray → CloudWatch Logs resource policy is in place via `logs:GetResourcePolicy`, and (ii) calling `logs:DescribeDeliveries` / `logs:DescribeDeliverySources` for AgentCore resource sources (runtime, memory, gateway, built-in tools, identity) — flags runtimes/gateways with no log delivery configured. For memory resources, additionally checks that tracing was enabled at memory creation time. Flags gateways without a Policy Engine in `ENFORCE` mode, runtimes without an authorizer, or accounts where Transaction Search is not enabled or no delivery exists for AgentCore resources. |
+| Remediation | 1. Configure a Policy Engine: create via `CreatePolicyEngine` (IAM action `bedrock-agentcore:CreatePolicyEngine`), then author Cedar policies using one of three methods: (a) write Cedar directly for fine-grained control via `CreatePolicy` (IAM action `bedrock-agentcore:CreatePolicy`), (b) use the form-based console UI, or (c) generate Cedar from natural language descriptions (natural-language-to-Cedar is a documented capability in the GA announcement; verify the exact IAM action name against the current [AgentCore Service Authorization Reference](https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonbedrockagentcore.html) before writing IAM policies for it). Policy in AgentCore went GA on March 3, 2026 in thirteen AWS regions (US East N. Virginia, US East Ohio, US West Oregon, Asia Pacific Mumbai/Seoul/Singapore/Sydney/Tokyo, Europe Frankfurt/Ireland/London/Paris/Stockholm) — verify current regional availability on the [launch announcement](https://aws.amazon.com/about-aws/whats-new/2026/03/policy-amazon-bedrock-agentcore-generally-available/) before audit reliance. 2. Attach the Policy Engine to each Gateway by specifying the Policy Engine ARN in the `policyEngineConfiguration` field during `CreateGateway`, or attach later via `UpdateGateway`. 3. Start in `LOG_ONLY` mode — the policy engine evaluates actions and logs whether they would be allowed or denied without enforcing the decision — then switch to `ENFORCE` mode once confident. 4. Configure a JWT inbound authorizer on each Runtime with discovery URL, allowed audiences, and allowed clients. 5. **Enable AgentCore Observability** so agent reasoning chains are captured (directly addresses the Guide §1.2.9 audit-logging mitigation): (a) one-time enable CloudWatch Transaction Search — console path **CloudWatch → Application Signals (APM) → Transaction search → Enable Transaction Search**, or CLI: `aws xray update-trace-segment-destination --destination CloudWatchLogs` plus a `logs:PutResourcePolicy` granting `xray.amazonaws.com` permission to `logs:PutLogEvents` on `aws/spans:*` and `/aws/application-signals/data:*`; (b) configure log delivery for AgentCore runtime, memory, gateway, built-in tools, and identity resources via `logs:PutDeliverySource` + `logs:PutDeliveryDestination` + `logs:CreateDelivery` (CloudWatch Logs / S3 / Firehose destinations supported; note the write APIs use `Put*` for source and destination but `Create*` for the delivery pairing); (c) enable tracing at memory creation. For traditional Bedrock Agents (non-AgentCore), set `enableTrace=true` on `InvokeAgent` calls to receive the reasoning-chain trace in the response. |
+| Reference | [Policy in AgentCore](https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy.html), [Inbound JWT Authorizer](https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/inbound-jwt-authorizer.html), [AgentCore Observability Configuration](https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/observability-configure.html), [Bedrock Agent Trace View](https://docs.aws.amazon.com/bedrock/latest/userguide/trace-view.html) |
+
+#### FS-09 — Agent Transaction Limits
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.9, extension] — Lambda reserved concurrency is not named in the guide, but it directly implements the guide mitigation "Monitor agent call rates and alarm upon exceeding defined thresholds" by capping execution parallelism. |
+| Description | Verifies agent Lambda functions have reserved concurrency limits to cap execution parallelism. |
+| Detection | Calls `lambda:ListFunctions` and filters for functions with agent-related naming patterns. For each, calls `lambda:GetFunctionConcurrency` and flags functions with no reserved concurrency set. |
+| Remediation | 1. Set reserved concurrency on each agent action-group Lambda (e.g., 10–50 depending on expected load). 2. Add CloudWatch alarms for `Throttles` metric on these functions. 3. Consider Step Functions execution limits as an additional control. |
+| Reference | [Lambda Reserved Concurrency](https://docs.aws.amazon.com/lambda/latest/dg/configuration-concurrency.html) |
+
+#### FS-10 — Human-in-the-Loop Approval
+
+| Field | Detail |
+|-------|--------|
+| Severity | High |
+| Guide ref | [Guide §1.2.9, §1.2.1, §1.2.2, §1.2.3, §1.2.7, §1.2.10] — "For internal AI systems, validate outputs with human review before business use (human-in-the-loop)." HITL is referenced in six separate guide risk sections. |
+| Description | Checks Step Functions workflows have human approval steps for high-risk agent actions. |
+| Detection | Calls `stepfunctions:ListStateMachines` and filters for agent/GenAI-related names. Retrieves each definition via `stepfunctions:DescribeStateMachine` and parses the ASL JSON for task states with `.waitForTaskToken` or callback patterns indicating human approval gates. |
+| Remediation | 1. Add a callback-pattern task state in your Step Functions workflow before any high-risk action (financial transactions, data modifications, external communications). 2. Route the approval token to a human reviewer via SNS/SQS/Slack. 3. Set a `HeartbeatSeconds` timeout so stale approvals expire. 4. Enable **user confirmation on Bedrock Agent action groups** for inline approval — when configured, the agent returns a confirmation prompt in the `returnControl.invocationInputs` field of the `InvokeAgent` response (alongside `invocationType` and a unique `invocationId`); the client displays the prompt, collects confirm/deny, and returns the user's decision via `sessionState.returnControlInvocationResults` (with `confirmationState` on each `apiResult`/`functionResult`) in the next `InvokeAgent` request (there is no standalone `GetUserConfirmation` API). |
+| Reference | [Step Functions Callback Pattern](https://docs.aws.amazon.com/step-functions/latest/dg/connect-to-resource.html#connect-wait-token), [Bedrock Agent User Confirmation](https://docs.aws.amazon.com/bedrock/latest/userguide/agents-userconfirmation.html) |
+
+#### FS-11 — Agent Rate Alarms
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.9] — "Monitor agent call rates and alarm upon exceeding defined thresholds." |
+| Description | Verifies CloudWatch alarms exist for agent invocation rates. |
+| Detection | Paginates `cloudwatch:DescribeAlarms` and filters for alarms referencing "agent" in the alarm name or targeting `AWS/Bedrock/Agents` agent-related metrics (such as `InvocationCount` or `InvocationThrottles` with the `Operation, AgentAliasArn, ModelId` dimension combination). |
+| Remediation | 1. Create CloudWatch alarms on the `AWS/Bedrock/Agents` namespace for `InvocationCount` and `InvocationThrottles`. Per AWS docs, the available dimensions are: `Operation` alone; `Operation, ModelId`; or `Operation, AgentAliasArn, ModelId` — use the `Operation, AgentAliasArn, ModelId` combination to scope alarms to a specific agent alias. 2. Set thresholds based on expected peak agent call rates, established via CloudWatch metric math on historical `InvocationCount` data. 3. Attach SNS actions for on-call notification. 4. Use **AgentCore Evaluations** (GA March 2026, available in 9 AWS regions — verify current regional availability on the [GA announcement](https://aws.amazon.com/about-aws/whats-new/2026/03/agentcore-evaluations-generally-available/)) to monitor agent *quality* alongside rate-based alarms: online evaluation continuously scores production traffic against 13 built-in evaluators (response quality, safety, task completion, tool usage), and on-demand evaluation supports regression testing. |
+| Reference | [Bedrock Agents CloudWatch Metrics](https://docs.aws.amazon.com/bedrock/latest/userguide/monitoring-agents-cw-metrics.html), [AgentCore Evaluation Types](https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/evaluations-types.html) |
+
+### Supply Chain Vulnerabilities (FS-12 to FS-16)
+
+> **Guide source:** §1.2.12 Supply chain vulnerabilities. Guide-listed mitigations:
+> (a) control access to serverless and marketplace models (IAM policies, SCPs);
+> (b) model onboarding process — EULA review, procurement, security/compliance review,
+> MRM assessment, documentation, stakeholder approvals;
+> (c) update TPRM to continuously monitor model providers — vendor security advisories,
+> deprecation notices, T&C changes;
+> (d) maintain a model inventory recording provenance, version, license terms, and risk
+> assessment status;
+> (e) use Bedrock Evaluations against attack test cases (practical guidance);
+> (f) allow-list approved models via SCP (practical guidance).
+
+#### FS-12 — SCP Model Access Restrictions
+
+| Field | Detail |
+|-------|--------|
+| Severity | High |
+| Guide ref | [Guide §1.2.12 — Practical guidance] — "Implement an allow-list of models using a Service Control Policy (SCP) for your AWS organization." |
+| Description | Checks SCPs restrict Bedrock model access to approved models only. |
+| Detection | Calls `organizations:ListPolicies(Filter=SERVICE_CONTROL_POLICY)` and inspects each SCP document for Deny statements on `bedrock:InvokeModel*` with `StringNotEquals` conditions on `bedrock:ModelId`. Flags if no SCP restricts model access. |
+| Remediation | 1. Create an SCP that denies `bedrock:InvokeModel*` except for an explicit allowlist of approved model ARNs. 2. Attach the SCP to the OU containing GenAI workload accounts. 3. For multi-account guardrail enforcement, use the Bedrock cross-account safeguards feature (GA April 3, 2026, available in all AWS commercial and GovCloud regions where Bedrock Guardrails is supported): enable the Amazon Bedrock policy type in AWS Organizations, create a guardrail in the management account, create a versioned guardrail, optionally attach a resource-based policy granting `bedrock:ApplyGuardrail` to member accounts for cross-account access, then create and attach an AWS Organizations Bedrock policy referencing the guardrail ARN and version to the target OUs or accounts. This automatically enforces content filters, denied topics, word filters, sensitive information filters, and contextual grounding checks across all member accounts for every model invocation — no application code changes required. **Important limitation:** Automated Reasoning checks are **not supported** with cross-account safeguards — omit Automated Reasoning policies from any guardrail used for org-level enforcement. If you rely on AR (see FS-27), you must configure AR guardrails separately at the application or account level. 4. Test with both allowed and denied model IDs. |
+| Reference | [Managing Access in AWS Organizations](https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scps.html), [Bedrock Cross-Account Guardrails](https://aws.amazon.com/blogs/aws/amazon-bedrock-guardrails-supports-cross-account-safeguards-with-centralized-control-and-management/) |
+
+#### FS-13 — Model Inventory Tagging
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.12] — "Maintain a model inventory that records the provenance, version, license terms, and risk assessment status of all models in use across the organization." |
+| Description | Verifies models are tagged with provenance metadata (source, version, approval-date). |
+| Detection | Calls `bedrock:ListFoundationModels` and `bedrock:ListCustomModels`. For custom models, calls `bedrock:ListTagsForResource` and checks for required tag keys: `model-source`, `model-version`, `approval-date`, `risk-tier`. |
+| Remediation | 1. Define a mandatory tagging policy for all AI/ML models. 2. Tag each custom model with provenance metadata. 3. Create an AWS Config rule (`required-tags`) to enforce the tagging policy. 4. For foundation models, maintain an external inventory spreadsheet or CMDB entry. |
+| Reference | [Bedrock Tagging](https://docs.aws.amazon.com/bedrock/latest/userguide/tagging.html) |
+
+#### FS-14 — Model Onboarding Governance
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.12] — "To onboard a model, follow these steps: Review EULA, Complete procurement, Follow security and compliance procedures, Assess MRM requirements, Document findings, Get necessary approvals from stakeholders." |
+| Description | Checks AWS Config rules enforce model onboarding governance (EULA review, MRM assessment, stakeholder approval). |
+| Detection | Calls `config:DescribeConfigRules` and searches for rules targeting `AWS::Bedrock::*` resources or custom rules with "model" or "onboarding" in the name. |
+| Remediation | 1. Create a custom AWS Config rule that checks new Bedrock custom models have required tags (approval-date, risk-tier, eula-reviewed). 2. Document the model onboarding process: EULA review → procurement → security/compliance review → MRM assessment → stakeholder sign-off. 3. Store approval artifacts in a versioned S3 bucket. |
+| Reference | [AWS Config Custom Rules](https://docs.aws.amazon.com/config/latest/developerguide/evaluate-config_develop-rules.html) |
+
+#### FS-15 — Adversarial Model Evaluation
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.12 — Practical guidance] — "Amazon Bedrock Evaluations can help to evaluate models against specific types of attacks by automating your test cases, scoring, reporting and to enable comparison of different models." |
+| Description | Verifies Bedrock evaluation jobs include adversarial test datasets. |
+| Detection | Calls `bedrock:ListEvaluationJobs` and inspects each job's configuration for evaluation datasets. Flags if no evaluation jobs exist or if none reference adversarial/red-team test data. |
+| Remediation | 1. Create a Bedrock model evaluation job with adversarial prompt datasets (prompt injection attempts, jailbreak sequences, harmful content probes). 2. Include both automated metrics and human evaluation. 3. Run evaluations before production deployment and after model updates. 4. Store results for audit. |
+| Reference | [Bedrock Model Evaluation](https://docs.aws.amazon.com/bedrock/latest/userguide/evaluation.html) |
+
+#### FS-16 — ECR Image Scanning
+
+| Field | Detail |
+|-------|--------|
+| Severity | High |
+| Guide ref | [Guide §1.2.12, extension] — ECR image scanning is not named in the guide, but directly mitigates the guide's listed risk "Third-party package vulnerabilities" in LLM supply chains. Included for completeness of the supply-chain risk category. |
+| Description | Checks ECR repositories have scan-on-push enabled for supply chain security of model containers. |
+| Detection | Calls `ecr:DescribeRepositories` and for each repository checks `imageScanningConfiguration.scanOnPush`. Also checks whether Amazon Inspector ECR scanning is enabled via `inspector2:BatchGetAccountStatus`. Flags repositories relying solely on basic scanning or with no scanning configured. |
+| Remediation | 1. Enable **enhanced scanning** via Amazon Inspector (the current best practice) — Inspector provides continuous vulnerability monitoring, re-scanning images automatically when new CVEs are published, and covers both OS and programming language package vulnerabilities. This requires two steps: (a) enable Inspector ECR scanning at the account level — `aws inspector2 enable --account-ids <account-id> --resource-types ECR`; (b) set the ECR registry scanning configuration to enhanced mode — `aws ecr put-registry-scanning-configuration --scan-type ENHANCED --rules '[{"scanFrequency":"CONTINUOUS_SCAN","repositoryFilters":[{"filter":"*","filterType":"WILDCARD"}]}]'`. **Important limitations:** (i) When enhanced scanning is first enabled, Amazon Inspector only discovers images pushed within the **last 14 days** — older images receive `SCAN_ELIGIBILITY_EXPIRED` status and must be re-pushed to be scanned. (ii) After the initial scan, scan duration is controlled by the ECR re-scan duration setting in the Amazon Inspector console (defaults to `LIFETIME`); if you shorten this duration, images whose last scan exceeds the new window also move to `SCAN_ELIGIBILITY_EXPIRED`. (iii) Enhanced scanning incurs Amazon Inspector charges (no additional ECR cost). (iv) Repositories not matching a scan filter will have `Off` scan frequency and won't be scanned. 2. If enhanced scanning is not available in your region, enable basic scan-on-push as a fallback: `aws ecr put-image-scanning-configuration --repository-name <name> --image-scanning-configuration scanOnPush=true`. 3. Create EventBridge rules to alert on CRITICAL/HIGH findings from Inspector. 4. Integrate findings into your vulnerability management workflow. |
+| Reference | [ECR Enhanced Scanning](https://docs.aws.amazon.com/AmazonECR/latest/userguide/image-scanning-enhanced.html), [Amazon Inspector ECR Scanning](https://docs.aws.amazon.com/inspector/latest/user/scanning-ecr.html) |
+
+### Training Data & Model Poisoning (FS-17 to FS-21)
+
+> **Guide source:** §1.2.14 Training data and model poisoning. Guide-listed mitigations:
+> (a) protect training datasets via data protection best practices;
+> (b) use trusted data sources with audit controls tracking changes (who/when);
+> (c) monitor training data for pattern/distribution changes (data drift);
+> (d) compare retrained model performance against baseline before production;
+> (e) rollback plan using versioned training data and models (Feature Store);
+> (f) monitor low-entropy classification with thresholds and alerts;
+> (g) AI Service Cards for evaluating third-party model testing procedures.
+
+#### FS-17 — Model Monitor Data Quality → *Merged into upstream SM-07*
+
+> **Upstream extension note (do not ship as a standalone check):** The detection and remediation
+> content from FS-17 should be added as a refinement of the existing **SM-07 (Model Monitor)**
+> check in the upstream `aws-samples/sample-aiml-security-assessment` repo.
+>
+> **What to add to SM-07:**
+>
+> - Filter `ListMonitoringSchedules` results for `MonitoringType=DataQuality` (not just any schedule). Note the format difference: `ListMonitoringSchedules`/`MonitoringScheduleSummary` returns `MonitoringType` in PascalCase (`DataQuality`, `ModelQuality`, `ModelBias`, `ModelExplainability`); `DescribeMonitoringSchedule` returns the same type in SCREAMING_SNAKE_CASE (`DATA_QUALITY`, `MODEL_QUALITY`, `MODEL_BIAS`, `MODEL_EXPLAINABILITY`) — the detection should normalise both forms.
+> - Require `emit_metrics` to be enabled on the monitoring schedule.
+> - Verify CloudWatch alarms exist on the `feature_baseline_drift_<feature_name>` metrics published
+>   to namespace `/aws/sagemaker/Endpoints/data-metric` (real-time endpoints, dimensions
+>   `EndpointName` + `ScheduleName`) or `/aws/sagemaker/ModelMonitoring/data-metric` (batch
+>   transform, dimension `MonitoringSchedule`).
+> - Guide traceability: [Guide §1.2.14] — "Monitor your training data for pattern and distribution
+>   changes to detect data drift"; "Amazon SageMaker Model Monitor – Data quality."
+>
+> **Reference:** [SageMaker Model Monitor Data Quality](https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html)
+
+#### FS-18 — Model Drift Detection → *Merged into upstream SM-23*
+
+> **Upstream extension note (do not ship as a standalone check):** The detection and remediation
+> content from FS-18 should be added as a refinement of the existing **SM-23 (Model Drift
+> Detection)** check in the upstream repo.
+>
+> **What to add to SM-23:**
+> - Filter `ListMonitoringSchedules` results for `MonitoringType=ModelQuality`.
+> - Add a new remediation step for **low-entropy classification monitoring** (Guide §1.2.14
+>   mitigation): publish custom CloudWatch metrics tracking prediction confidence distributions,
+>   set threshold boundaries for unexpected low-confidence/high-confidence clusters, and alert
+>   when the retrained model produces unexpected classification patterns — this can indicate
+>   training data poisoning before accuracy metrics degrade.
+> - Guide traceability: [Guide §1.2.14] — "Before deploying to production, compare your retrained
+>   model's performance against previous iterations using historical test data as a baseline."
+>
+> **Reference:** [SageMaker Model Monitor Model Quality](https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-model-quality.html)
+
+#### FS-19 — Model Registry Approval → *Merged into upstream SM-22*
+
+> **Upstream extension note (do not ship as a standalone check):** The detection and remediation
+> content from FS-19 should be added as a refinement of the existing **SM-22 (Model Approval
+> Workflow)** check in the upstream repo.
+>
+> **What to add to SM-22:**
+> - Explicitly check that `ModelApprovalStatus=PendingManualApproval` is the default for new
+>   model package versions (not `Approved`).
+> - Flag any model package group where the latest version has `ModelApprovalStatus=Approved`
+>   without evidence of a manual approval step (i.e., auto-approved at creation time).
+> - Guide traceability: [Guide §1.2.14] — cites "Amazon SageMaker AI – Model Registration and
+>   Deployment with Model Registry" as a reference for staged deployment with rollback.
+>
+> **Reference:** [SageMaker Model Registry](https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html)
+
+#### FS-20 — Feature Store Rollback
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.14] — "Create a rollback plan by using versioned training data and models. This ensures that you can revert to a stable, working model if failures occur." References "Amazon SageMaker AI Feature Store". |
+| Description | Checks SageMaker Feature Store has offline store for rollback capability. |
+| Detection | Calls `sagemaker:ListFeatureGroups` to enumerate all groups, then `sagemaker:DescribeFeatureGroup` for each to inspect `OfflineStoreConfig`. Flags feature groups where `OfflineStoreConfig` is absent (online-only groups with no offline store for rollback). |
+| Remediation | 1. Enable the offline store on each feature group: specify an S3 URI and data catalog in `OfflineStoreConfig`. 2. The offline store provides a versioned, immutable history of feature values for point-in-time rollback. 3. Test rollback by querying the offline store with a historical timestamp. |
+| Reference | [SageMaker Feature Store](https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store.html) |
+
+#### FS-21 — Training Data S3 Versioning and Audit Trail
+
+| Field | Detail |
+|-------|--------|
+| Severity | High |
+| Guide ref | [Guide §1.2.14] — "Use trusted data sources for your training data. Implement audit controls that let you track and review changes, including who made them and when they occurred." |
+| Description | Verifies S3 buckets used for training data have versioning enabled so poisoned datasets can be rolled back. Recommends CloudTrail data-event logging as remediation to record who modified training data and when. |
+| Detection | Identifies training-data S3 buckets by naming convention (`train`/`dataset`/`model`/`sagemaker`/`bedrock`). Calls `s3:GetBucketVersioning` to verify `Status=Enabled`. (CloudTrail data-event logging is recommended in remediation but is not asserted by this check — verifying it is covered by the upstream BR-06 CloudTrail control and the FS-23 extension.) |
+| Remediation | 1. Enable versioning: `aws s3api put-bucket-versioning --bucket <name> --versioning-configuration Status=Enabled`. 2. Enable CloudTrail S3 data events for the training-data buckets to capture PutObject/DeleteObject with caller identity. 3. Enable MFA Delete for critical training datasets. 4. Apply S3 Object Lock for immutable baselines. |
+| Reference | [S3 Versioning](https://docs.aws.amazon.com/AmazonS3/latest/userguide/Versioning.html), [CloudTrail Data Events](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html) |
+
+### Vector & Embedding Weaknesses (FS-22 to FS-26)
+
+> **Guide source:** §1.2.15 Vector and embedding weaknesses. Guide-listed mitigations:
+> (a) apply least privilege to vector and embedding database access;
+> (b) validate knowledge base data sources;
+> (c) add data only from trusted sources to knowledge bases;
+> (d) monitor and log all activities in knowledge base control plane (CloudTrail);
+> (e) enable encryption at rest and in transit for vector and embedding databases;
+> (f) implement document/record-level access controls via KB metadata filtering for
+> multi-tenancy.
+
+#### FS-22 — Knowledge Base IAM Least Privilege
+
+| Field | Detail |
+|-------|--------|
+| Severity | High |
+| Guide ref | [Guide §1.2.15] — "Apply the principle of least privilege to control access to your vector and embedding database. Only grant users and services the minimum permissions they need to perform their tasks." |
+| Description | Checks IAM roles accessing Knowledge Bases have no wildcard `bedrock:*` permissions covering KB actions. |
+| Detection | Inspects the permissions cache for all IAM roles. Flags any role with an Allow statement granting `bedrock:*` without resource-level restrictions, or broad `bedrock:` actions covering KB operations without a specific knowledge-base ARN. Note: Bedrock agent and KB operations use the single IAM service prefix `bedrock:` (not `bedrock-agent:`) — the `bedrock-agent` token refers to the boto3 SDK client name, not the IAM action prefix. |
+| Remediation | 1. Replace wildcard `bedrock:*` with specific KB actions: `bedrock:Retrieve`, `bedrock:RetrieveAndGenerate`, `bedrock:GetKnowledgeBase` (these are the actual IAM action names — verify via the AWS Service Authorization Reference for Amazon Bedrock). 2. Scope the resource ARN to specific Knowledge Base IDs (e.g., `arn:aws:bedrock:<region>:<account>:knowledge-base/<kb-id>`). 3. Apply IAM permission boundaries to limit blast radius. |
+| Reference | [Bedrock Knowledge Base Permissions](https://docs.aws.amazon.com/bedrock/latest/userguide/kb-permissions.html) |
+
+#### FS-23 — Knowledge Base CloudTrail Logging → *Merged into upstream BR-06*
+
+> **Upstream extension note (do not ship as a standalone check):** The detection and remediation
+> content from FS-23 should be added as a refinement of the existing **BR-06 (CloudTrail
+> Logging)** check in the upstream repo.
+>
+> **What to add to BR-06:**
+> - After verifying that a CloudTrail trail is active and logging Bedrock management events,
+>   additionally check for an **advanced event selector** with
+>   `resources.type = AWS::Bedrock::KnowledgeBase` to capture `Retrieve` and
+>   `RetrieveAndGenerate` data events (these are NOT logged by default — they require an
+>   explicit advanced event selector).
+> - Note: `InvokeAgent` / `InvokeInlineAgent` are also data events requiring
+>   `resources.type = AWS::Bedrock::AgentAlias` or `AWS::Bedrock::InlineAgent` respectively.
+>   Data events incur additional CloudTrail charges and can produce high volumes under load.
+> - Guide traceability: [Guide §1.2.15] — "Monitor and log all activities in knowledge base
+>   control plane" with reference "Monitor Amazon Bedrock API calls using CloudTrail."
+>
+> **Reference:** [CloudTrail Bedrock Logging](https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html)
+
+#### FS-24 — Knowledge Base Metadata Filtering
+
+| Field | Detail |
+|-------|--------|
+| Severity | Informational |
+| Guide ref | [Guide §1.2.15] — "Implement access controls at the document or record level within knowledge bases where different users or applications should only have access to specific subsets of data. Use Amazon Bedrock Knowledge Bases metadata filtering to enforce data segmentation." |
+| Description | Advisory: verifies KB metadata fields support tenant-level filtering for multi-tenancy. |
+| Detection | Calls `ListKnowledgeBases` and `GetKnowledgeBase` (via the `bedrock-agent` boto3 client; IAM actions are `bedrock:ListKnowledgeBases` and `bedrock:GetKnowledgeBase`). Inspects the storage configuration for metadata field definitions. Flags KBs with no metadata fields defined (no tenant isolation possible). |
+| Remediation | 1. Define metadata fields on your KB data sources (e.g., `tenant_id`, `department`, `classification`). 2. Populate metadata during document ingestion. 3. Use the `filter` parameter in Retrieve/RetrieveAndGenerate API calls to enforce tenant-scoped queries. 4. Test that cross-tenant data leakage is prevented. |
+| Reference | [Bedrock KB Metadata Filtering](https://docs.aws.amazon.com/bedrock/latest/userguide/kb-test-config.html) |
+
+#### FS-25 — OpenSearch Serverless Encryption
+
+| Field | Detail |
+|-------|--------|
+| Severity | High |
+| Guide ref | [Guide §1.2.15] — "Enable encryption at rest and in transit for vector and embedding databases." |
+| Description | Checks OpenSearch Serverless collections used by KBs have CMK encryption policies. |
+| Detection | Calls `opensearchserverless:ListCollections` (IAM action `aoss:ListCollections`) and for each calls `opensearchserverless:ListSecurityPolicies(type=encryption)` (IAM action `aoss:ListSecurityPolicies`). Inspects each encryption policy's document for `AWSOwnedKey=true` or missing `KmsARN`. Note: the encryption **policy JSON document** uses PascalCase field names — `AWSOwnedKey` and `KmsARN` — while the direct API `EncryptionConfig` struct uses camelCase (`aWSOwnedKey`, `kmsKeyArn`); detection should inspect the policy document form returned by `GetSecurityPolicy`/`ListSecurityPolicies`. Flags collections using AWS-owned keys instead of customer-managed KMS keys. Note: the boto3 client name is `opensearchserverless`, but IAM actions use the service prefix `aoss:` (not `opensearchserverless:`). Note also: encryption in transit is automatic (TLS 1.2, AES-256) for all OpenSearch Serverless traffic and is not configurable — this check focuses on encryption at rest. |
+| Remediation | 1. Create an encryption security policy specifying a customer-managed KMS key: set `AWSOwnedKey=false` and provide `KmsARN` with the ARN of your KMS key. 2. Apply the policy to the collection by matching the collection name or prefix pattern in the policy `Rules`. 3. Ensure the KMS key policy grants the OpenSearch Serverless service principal `kms:Decrypt` and `kms:GenerateDataKey`. Note: if you provide a KMS key directly in the `CreateCollection` request, it takes precedence over any matching security policies. |
+| Reference | [OpenSearch Serverless Encryption](https://docs.aws.amazon.com/opensearch-service/latest/developerguide/serverless-encryption.html) |
+
+#### FS-26 — Knowledge Base VPC Access
+
+| Field | Detail |
+|-------|--------|
+| Severity | High |
+| Guide ref | [Guide §1.2.15, extension] — network isolation is not verbatim in the guide but directly implements "Apply the principle of least privilege to control access to your vector and embedding database" at the network layer. |
+| Description | Verifies OpenSearch Serverless collections have VPC-only network policies (no public access). |
+| Detection | Calls `opensearchserverless:ListSecurityPolicies(type=network)` (IAM action `aoss:ListSecurityPolicies` — the service prefix for OpenSearch Serverless is `aoss`, not `opensearchserverless`) and inspects each policy rule for `AllowFromPublic=true`. Flags collections accessible from the public internet. Note: a policy with `AllowFromPublic=false` may still grant private access to Bedrock via `SourceServices: ["bedrock.amazonaws.com"]` or to specific VPC endpoints via `SourceVPCEs` — these are the recommended private-access patterns and are not flagged. |
+| Remediation | 1. Create a network security policy that restricts access to specific VPC endpoints only via `SourceVPCEs`, or grants private AWS service access (e.g., Bedrock) via `SourceServices: ["bedrock.amazonaws.com"]`. Per AWS docs, private access to AWS services applies only to the collection's OpenSearch endpoint, not to the OpenSearch Dashboards endpoint. 2. Create an OpenSearch Serverless VPC endpoint in your VPC if VPC-private access is required. 3. Remove any policy rules with `AllowFromPublic=true`. 4. Test connectivity from within the VPC. |
+| Reference | [OpenSearch Serverless Network Access](https://docs.aws.amazon.com/opensearch-service/latest/developerguide/serverless-network.html) |
+
+---
+
+## Part 2 — Guardrails & Content Safety (FS-27 to FS-46)
+
+> **Guide risk categories:** Non-Compliant Output (FS-27..30, §1.2.1), Misinformation (FS-31..34, §1.2.3; FS-34 sources from §1.2.12 — see note), Abusive or Harmful Output (FS-35..38, §1.2.4), Biased Output (FS-39..42, §1.2.5), Sensitive Information Disclosure (FS-43..46, §1.2.6).
+
+### Non-Compliant Output (FS-27 to FS-30)
+
+> **Guide source:** §1.2.1 Non-compliant output. Guide-listed mitigations:
+> (a) prompt engineering to guide the model and prevent unwanted responses;
+> (b) content filters and denied topics in Bedrock Guardrails;
+> (c) RAG with Bedrock Knowledge Bases;
+> (d) Automated Reasoning checks in Bedrock Guardrails;
+> (e) human-in-the-loop validation for internal AI systems;
+> (f) audit logs of AI-generated outputs and guardrails applied for regulatory reporting.
+
+#### FS-27 — Automated Reasoning Checks
+
+| Field | Detail |
+|-------|--------|
+| Severity | High (contextual grounding) / Medium (Automated Reasoning) |
+| Guide ref | [Guide §1.2.1, §1.2.7] — "Automated Reasoning checks in Amazon Bedrock Guardrails uses automated reasoning to verify that natural language content complies with your defined policies. This mathematical verification helps ensure that your content strictly follows your guardrails." |
+| Description | Verifies Bedrock Guardrails have Automated Reasoning checks or contextual grounding enabled. |
+| Detection | Calls `bedrock:ListGuardrails` and `bedrock:GetGuardrail` for each. Inspects the response fields `contextualGroundingPolicy` and `automatedReasoningPolicy`. Flags guardrails with neither enabled. |
+| Remediation | 1. Enable contextual grounding filters (type `GROUNDING`) with a threshold ≥ 0.7 — these filters CAN block content that fails grounding checks. Note: valid threshold values are 0 to 0.99; a threshold of 1.0 is invalid and will block all content. **Important use-case limitation:** Contextual grounding checks support summarization, paraphrasing, and question answering use cases only — **Conversational QA / Chatbot use cases are not supported**. If your FinServ application is a conversational chatbot, contextual grounding cannot be used for hallucination detection; use Automated Reasoning checks or human-in-the-loop validation instead. 2. If available in your region, additionally enable Automated Reasoning checks by creating an Automated Reasoning policy and attaching it to the guardrail. **Cross-Region inference is REQUIRED for AR:** Guardrails that use Automated Reasoning checks require a cross-Region inference profile — set `crossRegionConfig.guardrailProfileIdentifier` to a profile matching your Region (for example, `us.guardrail.v1:0` for US Regions or `eu.guardrail.v1:0` for EU Regions). Omitting this parameter returns `ValidationException`. As of April 2026, AR is generally available in US East (N. Virginia), US East (Ohio), US West (Oregon), EU (Frankfurt), EU (Ireland), and EU (Paris) — verify current regional availability on the [AR documentation page](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-automated-reasoning-checks.html) before audit reliance, as AWS regularly expands coverage. Attach the **versioned** policy ARN (for example, `...:1`) — the unversioned ARN returns an error. You can attach a maximum of 2 AR policies per guardrail. Important: Automated Reasoning operates in **detect mode only** — it returns findings and feedback but does NOT block content. AR finding types (per the AWS user guide) are: `VALID` (response is consistent with policy), `INVALID` (response contradicts policy rules), `SATISFIABLE` (response could be true or false depending on unstated conditions), `IMPOSSIBLE` (premises are contradictory), `TRANSLATION_AMBIGUOUS` (natural language could not be reliably translated to formal logic), `TOO_COMPLEX` (policy complexity exceeded processing limits), and `NO_TRANSLATIONS` (some or all input was not translated into logic due to irrelevance or lack of matching policy variables). Note: in the `AutomatedReasoningCheckFinding` runtime response, these appear as a **union** with lowercase camelCase keys (`valid`, `invalid`, `satisfiable`, `impossible`, `translationAmbiguous`, `tooComplex`, `noTranslations`) — exactly one key is present per finding. Per AWS docs, AR also **does not protect against prompt injection attacks**, **cannot detect off-topic responses**, **does not support streaming APIs**, and **supports English (US) only** — use content filters, topic policies, and other guardrail components alongside AR. **Critical limitation for cross-account enforcement:** AR policies are NOT supported with Bedrock Guardrails cross-account safeguards (org-level or account-level enforcement) — including an AR policy in a guardrail used for enforcement will cause runtime failures. If you rely on AR, configure it at the application or account level separately. Your application must inspect the AR findings via the `ApplyGuardrail` (or `Converse` / `InvokeModel` / `InvokeAgent` / `RetrieveAndGenerate`) API response and decide whether to serve the response, rewrite it using AR feedback, ask the user for clarification, or fall back to a default behavior. 3. For `INVALID` responses, implement an iterative rewriting loop that feeds AR feedback (contradicting rules) back to the LLM to self-correct. 4. Build an audit trail of all AR validation iterations — log `supportingRules` and `claimsTrueScenario` for `VALID` findings as mathematically verifiable compliance evidence. |
+| Reference | [Automated Reasoning in Bedrock Guardrails](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-automated-reasoning-checks.html), [AR Checks Concepts (Validation Results Reference)](https://docs.aws.amazon.com/bedrock/latest/userguide/automated-reasoning-checks-concepts.html), [Integrate AR Checks in Your Application](https://docs.aws.amazon.com/bedrock/latest/userguide/integrate-automated-reasoning-checks.html), [Deploy Automated Reasoning Policy](https://docs.aws.amazon.com/bedrock/latest/userguide/deploy-automated-reasoning-policy.html) |
+
+#### FS-28 — Financial Denied Topics
+
+| Field | Detail |
+|-------|--------|
+| Severity | High |
+| Guide ref | [Guide §1.2.1] — "Configure content filters and guardrails to restrict model responses to approved topics" with reference "Amazon Bedrock User Guide – Guardrails – Denied topics". |
+| Description | Checks guardrails have denied topics for regulated financial advice. |
+| Detection | Calls `bedrock:GetGuardrail` and inspects `topicPolicy.topics` for entries with `type=DENY`. Flags guardrails with no denied topics or with no topics related to financial advice, investment recommendations, or tax guidance. |
+| Remediation | 1. Add denied topics to the guardrail following the AWS best-practice golden rules: (a) **Be crisp and precise** — e.g., "Investment advice is inquiries, guidance, or recommendations about the management or allocation of funds or assets with the goal of generating returns or achieving specific financial objectives" rather than vague "Investment advice". (b) **Define, don't instruct** — write "All content associated with specific investment recommendations" not "Block all investment advice". (c) **Stay positive** — never define topics negatively (e.g., avoid "All content except general financial education"). (d) **Focus on themes, not words** — denied topics capture subjects contextually; use word filters for specific names or entities. (e) **Provide sample phrases** — add up to 5 representative inputs per topic (each up to 100 characters). 2. **Quantity and character limits:** A guardrail can contain a maximum of **30 denied topics**. In Classic tier, topic definitions are limited to 200 characters; in Standard tier, up to 1,000 characters — use Standard tier for complex financial topic definitions. 3. Recommended denied topics for FinServ: "specific investment recommendations", "tax advice", "specific financial product recommendations", "guaranteed returns or performance claims". 4. For multi-account enforcement, use Bedrock cross-account safeguards to apply denied topics from a management-account guardrail across all member accounts automatically. When configuring account-level or org-level enforcement, set **both** `selectiveContentGuarding.messages` AND `selectiveContentGuarding.system` to `COMPREHENSIVE` to ensure guardrails evaluate all user messages AND system prompts regardless of input tags — use `SELECTIVE` only when you trust callers to correctly tag content. Setting only `messages` to COMPREHENSIVE leaves system prompts potentially unguarded. 5. Enforce guardrails via IAM policy conditions (`bedrock:GuardrailIdentifier`) to prevent any Bedrock inference call without a guardrail attached. 6. Test with prompts that attempt to elicit regulated financial advice. |
+| Reference | [Bedrock Guardrails Denied Topics](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-denied-topics.html), [Safeguard Tiers for Guardrails](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-tiers.html), [Cross-Account Safeguards with Enforcements](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-enforcements.html), [Guardrails Best Practices](https://aws.amazon.com/blogs/machine-learning/build-safe-generative-ai-applications-like-a-pro-best-practices-with-amazon-bedrock-guardrails/) |
+
+#### FS-29 — Compliance Disclaimer
+
+| Field | Detail |
+|-------|--------|
+| Severity | Informational |
+| Guide ref | [Guide §1.2.1, extension] — disclaimers are not verbatim in §1.2.1 but the guide references "Implement response disclaimers in customer-facing applications" under §1.2.7 Hallucination, which is conceptually the same control applied here for non-compliant financial-advice output. |
+| Description | Advisory: verifies application adds required regulatory disclaimers to AI-generated outputs. |
+| Detection | Advisory check — cannot be fully automated. Inspects application Lambda function environment variables or configuration for disclaimer-related settings (e.g., `DISCLAIMER_ENABLED`, `COMPLIANCE_FOOTER`). |
+| Remediation | 1. Add a standard regulatory disclaimer to all customer-facing AI-generated responses (e.g., "This information is generated by AI and does not constitute financial advice. Please consult a qualified financial advisor."). 2. Make the disclaimer text configurable via environment variable or parameter store. 3. Ensure disclaimers are not removable by prompt manipulation. |
+| Reference | [AWS Well-Architected GenAI Lens — Guardrails](https://docs.aws.amazon.com/wellarchitected/latest/generative-ai-lens/gensec02-bp01.html) |
+
+#### FS-30 — Compliance Evaluation Datasets
+
+| Field | Detail |
+|-------|--------|
+| Severity | Informational |
+| Guide ref | [Guide §1.2.1, extension] — the Guide §1.2.12 practical guidance mentions "Amazon Bedrock Evaluations can help to evaluate models against specific types of attacks"; this check extends that concept to compliance-specific evaluation for FS-regulated outputs. |
+| Description | Checks Bedrock evaluation jobs use compliance-specific test datasets. |
+| Detection | Calls `bedrock:ListEvaluationJobs` to enumerate existing jobs, then calls `bedrock:GetEvaluationJob` for each to inspect the full `evaluationConfig` including dataset configuration. Flags if no evaluation jobs exist or if none reference compliance/regulatory test data. Note: `ListEvaluationJobs` returns only job summaries — dataset configuration details require `GetEvaluationJob`. |
+| Remediation | 1. Create a compliance-specific evaluation dataset containing: prompts requesting regulated financial advice, prompts testing disclaimer presence, prompts testing denied-topic enforcement. 2. Run Bedrock evaluation jobs with this dataset before each production deployment. 3. Set pass/fail thresholds and gate deployments on results. |
+| Reference | [Bedrock Model Evaluation](https://docs.aws.amazon.com/bedrock/latest/userguide/evaluation.html) |
+
+### Misinformation (FS-31 to FS-33)
+
+> **Guide source:** §1.2.3 Misinformation through inadvertent or malicious action. Guide-listed mitigations:
+> (a) prompt engineering;
+> (b) verify knowledge base data sources are up-to-date, accurate, reliable, and complete;
+> (c) human-in-the-loop validation for internal AI systems;
+> (d) source attribution in RAG responses for end users to verify provenance;
+> (e) integrity monitoring on knowledge base data sources — e.g., S3 event notifications to
+> track document changes.
+
+#### FS-31 — Knowledge Base Data Source Sync
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.3, §1.2.10] — "Verify that your knowledge base data sources are up-to-date, accurate, reliable, and complete"; "Sync your data with your Amazon Bedrock knowledge base". |
+| Description | Verifies KB data sources have been synced within 7 days. |
+| Detection | Calls `ListDataSources` then `ListIngestionJobs` for each data source (via the `bedrock-agent` boto3 client; IAM actions are `bedrock:ListDataSources` and `bedrock:ListIngestionJobs`). Checks the most recent successful ingestion job's `updatedAt` timestamp. Flags data sources not synced within 7 days. |
+| Remediation | 1. Create an EventBridge scheduled rule to trigger KB data source sync at least weekly. 2. Use `StartIngestionJob` (IAM action `bedrock:StartIngestionJob`) as the rule target. 3. Add CloudWatch alarms for failed ingestion jobs. 4. For rapidly changing data, increase sync frequency. |
+| Reference | [Bedrock KB Data Source Sync](https://docs.aws.amazon.com/bedrock/latest/userguide/kb-data-source-sync-ingest.html) |
+
+#### FS-32 — Source Attribution
+
+| Field | Detail |
+|-------|--------|
+| Severity | Informational |
+| Guide ref | [Guide §1.2.3, §1.2.10] — "Use source attribution in RAG-based response for end users to verify provenance of information" (§1.2.3); "Use source attribution in RAG-based response for end users to verify currency of information" (§1.2.10). |
+| Description | Advisory: verifies application implements source citations in RAG responses. |
+| Detection | Advisory check — inspects application code or configuration for use of the `citations` field in `RetrieveAndGenerate` API responses. Checks Lambda environment variables for attribution-related settings. |
+| Remediation | 1. Use the `RetrieveAndGenerate` API (IAM action `bedrock:RetrieveAndGenerate`) which returns `citations` with source document references. Each citation contains `retrievedReferences` — an array where each reference has a `content` object (the cited text), a `location` object (data source type and URI — for S3 sources, `location.type=S3` and `location.s3Location.uri` contains the S3 URI), and optional `metadata` (a string-to-JSON map with any custom metadata attributes stored on the chunk, which can hold document title and other fields). Note: there is no fixed `title` field in the API — if you need to display document titles to end users, store them as a metadata attribute during KB ingestion and retrieve them via `retrievedReferences[].metadata`. 2. Display source citations to end users alongside AI-generated responses. 3. Include the data source location (URI or other location identifier depending on source type: S3, Web, Confluence, SharePoint, Salesforce, Kendra, SQL, or Custom) and the cited text excerpt (from `content`). 4. If document titles are required, ensure they are populated in KB metadata and propagated to your UI. 5. Allow users to click through to the original source document where possible. |
+| Reference | [Bedrock RetrieveAndGenerate API](https://docs.aws.amazon.com/bedrock/latest/APIReference/API_agent-runtime_RetrieveAndGenerate.html) |
+
+#### FS-33 — Knowledge Base Integrity Monitoring
+
+| Field | Detail |
+|-------|--------|
+| Severity | High (deleted bucket) / Medium (versioning) |
+| Guide ref | [Guide §1.2.3] — "Use integrity monitoring on knowledge base data sources to detect unauthorized modifications. Track changes to documents used in knowledge bases." References "For example on S3 data sources use Amazon S3 event notification to track changes to documents." |
+| Description | Checks KB data source S3 buckets have versioning enabled and S3 event notifications (EventBridge or SNS) configured to detect unauthorized document modifications in real time. |
+| Detection | Identifies KB data-source S3 buckets via `GetDataSource` (via the `bedrock-agent` boto3 client; IAM action `bedrock:GetDataSource`). Calls `s3:GetBucketVersioning` to verify `Status=Enabled`. Calls `s3:GetBucketNotificationConfiguration` and checks for `EventBridgeConfiguration`, `TopicConfigurations`, `QueueConfigurations`, or `LambdaFunctionConfigurations`. Flags buckets missing either control. |
+| Remediation | 1. Enable versioning: `aws s3api put-bucket-versioning --bucket <name> --versioning-configuration Status=Enabled`. 2. Enable EventBridge notifications on the bucket: `aws s3api put-bucket-notification-configuration --bucket <name> --notification-configuration '{"EventBridgeConfiguration":{}}'`. Once enabled, S3 automatically sends **all** bucket events to EventBridge — you do not select specific event types at the bucket level. 3. Create an EventBridge rule that matches S3 events for this bucket — use the `detail-type` field values `Object Created` and `Object Deleted` (these are the EventBridge event type names; note: `s3:ObjectCreated:*` and `s3:ObjectRemoved:*` are the legacy SNS/SQS/Lambda notification event type names and are NOT used in EventBridge rules). Route matched events to an SNS topic or Lambda function for alerting. 4. Integrate alerts into your security incident response workflow. |
+| Reference | [S3 EventBridge Integration](https://docs.aws.amazon.com/AmazonS3/latest/userguide/EventBridge.html) |
+
+> **Note:** FS-34 (Third-Party Risk Management for FM Providers) is kept adjacent to Misinformation
+> in this file for continuity with the prior draft numbering, but its guide source is §1.2.12
+> Supply Chain Vulnerabilities. Treat FS-34 as a Supply Chain check for compliance-framework
+> mapping purposes.
+
+#### FS-34 — Third-Party Risk Management (TPRM) for Foundation Model Providers
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.12] — *"Update existing third-party risk management processes to continuously monitor model providers and third-party dependencies, including tracking vendor security advisories, model deprecation notices, and change to terms and conditions."* (Note: moved from the Misinformation section in the prior draft; the guide places TPRM under Supply Chain.) |
+| Description | Verifies a documented third-party risk management (TPRM) process exists to monitor FM providers for security advisories, model deprecation notices, and T&C changes; also flags legacy FMs currently in use. |
+| Detection | Calls `bedrock:ListFoundationModels`, then `bedrock:GetFoundationModel` for each in-use model; inspects `modelLifecycle.status` and flags models with status `LEGACY`. Note: the `FoundationModelLifecycle.status` API field has only **two** valid values — `ACTIVE` and `LEGACY`. There is no `EOL` status value in the API; models that have passed their EOL date are removed from the service entirely and API calls referencing them will fail. The user-facing lifecycle page describes three conceptual states (Active, Legacy, EOL) but the API only exposes two. Advisory component checks for evidence of a TPRM process — e.g., an AWS Config rule or a tag on Bedrock resources indicating periodic review (`tprm-last-reviewed=<ISO-date>`). |
+| Remediation | 1. Establish a documented TPRM process: at least quarterly review of each in-use FM provider's security advisories, model lifecycle announcements, and T&C changes. 2. Assign an owner for the TPRM process and record review evidence in your MRM system. 3. Subscribe to AWS Bedrock model lifecycle notifications. 4. Migrate workloads from `LEGACY` models to active versions before their published EOL date — note that for models with EOL dates after February 1, 2026, there is a "public extended access" period where Legacy models remain usable but at higher pricing set by the model provider. 5. For third-party models procured via AWS Marketplace or consumed directly, evaluate the provider's own testing procedures — AWS AI Service Cards provide this transparency for Amazon-trained models. |
+| Reference | [Bedrock Model Lifecycle](https://docs.aws.amazon.com/bedrock/latest/userguide/model-lifecycle.html), [Access Amazon Bedrock foundation models](https://docs.aws.amazon.com/bedrock/latest/userguide/model-access.html) |
+
+### Abusive or Harmful Output (FS-35 to FS-38)
+
+> **Guide source:** §1.2.4 Model output is abusive or harmful. Guide-listed mitigations:
+> (a) AWS AI Service Cards to understand how Amazon addresses toxicity per model;
+> (b) Amazon Bedrock Guardrails to detect and filter harmful content;
+> (c) FMEval to evaluate for inappropriate content (sexual, profanity, hate, aggression,
+> insults, flirtation, identity attacks, threats);
+> (d) user reporting mechanism so end users can flag abusive outputs, reviewed within a
+> defined process;
+> (e) Practical guidance: create allowlists for approved business terminology to reduce
+> false positives on brand, product, industry, and technical vocabulary.
+
+#### FS-35 — FMEval Harmful Content
+
+| Field | Detail |
+|-------|--------|
+| Severity | Informational |
+| Guide ref | [Guide §1.2.4] — "Foundation Model Evaluations (FMEval) evaluates your model to detect inappropriate content, including sexual references, profanity, hate speech, aggression, insults, flirtation, identity-based attacks, and threats." |
+| Description | Checks Bedrock evaluation jobs test for harmful/toxic content. |
+| Detection | Calls `bedrock:ListEvaluationJobs` to enumerate existing jobs, then calls `bedrock:GetEvaluationJob` for each to inspect the full `evaluationConfig`. The correct metric name depends on the evaluation job type: (a) For **automated model evaluation jobs** (pre-computed metrics), the toxicity metric is `"Builtin.Toxicity"` — the only valid harmful-content metric for this job type. (b) For **judge-based model evaluation jobs** (LLM-as-judge), the harmful content metrics are `"Builtin.Harmfulness"` and `"Builtin.Stereotyping"`. (c) For **knowledge base (RAG) evaluation jobs**, `"Builtin.Harmfulness"` and `"Builtin.Stereotyping"` are also valid. Flags if no evaluation jobs exist or none include a harmful-content metric (`Builtin.Toxicity` for automated, `Builtin.Harmfulness` for judge-based/RAG). Note: `ListEvaluationJobs` returns only job summaries — dataset configuration details require `GetEvaluationJob`. |
+| Remediation | 1. For **automated model evaluation** (fastest, no judge model required): create a Bedrock evaluation job with `"Builtin.Toxicity"` in the `metricNames` array. Valid task types are `Summarization`, `Classification`, `QuestionAndAnswer`, `Generation`, and `Custom`. 2. For **judge-based model evaluation** (more nuanced, requires a judge model): create a Bedrock evaluation job with `"Builtin.Harmfulness"` and/or `"Builtin.Stereotyping"` in the `metricNames` array — these metrics are only valid for judge-based and RAG evaluation jobs, not automated model evaluation jobs. 3. Include test prompts designed to elicit harmful content. 4. Set pass/fail thresholds based on the scores returned. 5. Run evaluations before production deployment and after model updates. 6. For more granular toxicity scoring (the 7-category UnitaryAI Detoxify-unbiased scores: `toxicity`, `severe_toxicity`, `obscene`, `threat`, `insult`, `sexual_explicit`, `identity_attack` — or the Toxigen-roberta binary classifier), use SageMaker FMEval via SageMaker Studio or the `fmeval` Python library as a complementary evaluation path. |
+| Reference | [Bedrock Model Evaluation Metrics](https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation-metrics.html), [SageMaker FMEval Toxicity](https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-toxicity-evaluation.html) |
+
+#### FS-36 — Guardrail Content Filters
+
+| Field | Detail |
+|-------|--------|
+| Severity | High |
+| Guide ref | [Guide §1.2.4] — "Use Amazon Bedrock's guardrails to detect and filter harmful content." |
+| Description | Verifies guardrails have content filters for hate, violence, sexual, and other harmful content. |
+| Detection | Calls `bedrock:GetGuardrail` and inspects `contentPolicy.filters`. Flags guardrails missing filters for HATE, VIOLENCE, SEXUAL, INSULTS, or MISCONDUCT categories. Also checks that `inputStrength` and `outputStrength` are at least `MEDIUM`. |
+| Remediation | 1. Update the guardrail to include content filters for all harmful categories: HATE, VIOLENCE, SEXUAL, INSULTS, MISCONDUCT. 2. Select the **Standard tier** (not Classic) for content filters — it offers better accuracy, broader language support (extensive multilingual support vs. English/French/Spanish only in Classic), prompt leakage detection, and extends protection to harmful content within code elements. Standard tier requires cross-Region inference to be enabled on the guardrail (configurable at creation or by modifying an existing guardrail). 3. Start with **HIGH** filter strength for customer-facing applications; evaluate false-positive rates on representative sample traffic and lower to MEDIUM only if necessary. 4. Apply filters to both INPUT and OUTPUT. 5. Before enabling blocking in production, use **detect mode** (`action=NONE`) to test guardrail behavior on live traffic — review trace output to validate decisions, then switch to `action=BLOCK` once confident. 6. Enforce guardrails organization-wide via IAM policy-based enforcement: add an IAM condition key (`bedrock:GuardrailIdentifier`) to deny any `InvokeModel`/`Converse` call that does not include a guardrail. For account-level or org-level enforcement configurations, set **both** `selectiveContentGuarding.messages` AND `selectiveContentGuarding.system` to `COMPREHENSIVE` to ensure guardrails evaluate all user messages AND system prompts regardless of input tags (use `SELECTIVE` only when you trust callers to correctly tag content). Setting only `messages` to COMPREHENSIVE leaves system prompts potentially unguarded. |
+| Reference | [Bedrock Guardrails Content Filters](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-content-filters.html), [Safeguard Tiers for Guardrails](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-tiers.html), [Cross-Account Safeguards with Enforcements](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-enforcements.html), [Guardrails Best Practices](https://aws.amazon.com/blogs/machine-learning/build-safe-generative-ai-applications-like-a-pro-best-practices-with-amazon-bedrock-guardrails/), [IAM Guardrail Enforcement](https://aws.amazon.com/blogs/machine-learning/amazon-bedrock-guardrails-announces-iam-policy-based-enforcement-to-deliver-safe-ai-interactions/) |
+
+#### FS-37 — User Feedback Mechanism
+
+| Field | Detail |
+|-------|--------|
+| Severity | Informational |
+| Guide ref | [Guide §1.2.4] — "Implement a user reporting mechanism that allows end users to flag abusive or harmful outputs. Reported incidents [are] reviewed within a defined process to refine content filters." |
+| Description | Advisory: verifies application has a user reporting mechanism for harmful outputs. |
+| Detection | Advisory check — inspects application configuration for feedback-related settings (e.g., `FEEDBACK_ENABLED`, `REPORT_ABUSE_ENDPOINT`). Checks for Lambda functions with "feedback" or "report" in the name. |
+| Remediation | 1. Implement a "Report this response" button in the application UI. 2. Route reported responses to an SQS queue or DynamoDB table for review. 3. Define an SLA for reviewing reported content (e.g., 24 hours). 4. Use reported incidents to refine guardrail content filters and word lists. 5. Log all reports with Bedrock invocation logging correlation IDs. |
+| Reference | [Bedrock Model Invocation Logging](https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html) |
+
+#### FS-38 — Guardrail Word Filters and Business Term Allowlists
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.4 — Practical guidance] — "Create allowlists for business terms that include approved terminology for: brand names, product names, industry terms, and technical vocabulary. Also test filter settings to verify that your content filters allow necessary business communications and generate accurate alerts. Monitor and adjust regularly your filtering system to reduce false positives." |
+| Description | Checks guardrails have word/phrase block filters configured and that approved business terminology allowlists are defined to prevent false positives on legitimate financial services vocabulary. |
+| Detection | Calls `bedrock:GetGuardrail` and inspects `wordPolicy`. Flags guardrails with no custom `words` array (blocked phrases). Also checks `managedWordLists` for the AWS-managed `PROFANITY` list. Note: a guardrail with only the profanity filter and no custom FinServ-specific blocked terms should still be flagged as incomplete for financial services use cases. |
+| Remediation | 1. Add blocked words/phrases to the guardrail word filter (profanity, slurs, competitor names if applicable). Each custom word/phrase entry has a maximum length of **100 characters** per the API (`GuardrailWordConfig.text`); the console UI additionally limits entries to **up to three words** per phrase. You can add up to **10,000 items** to the custom word filter. 2. Enable the AWS-managed profanity filter (`managedWordListsConfig` with `type=PROFANITY`) as a baseline. 3. Create an allowlist of approved business terminology: brand names, product names, industry terms, technical vocabulary — document this separately as the guardrail word filter only blocks, it does not allowlist. Test filter settings to verify legitimate business communications are not blocked. 4. Monitor and adjust regularly to reduce false positives. |
+| Reference | [Bedrock Guardrails Word Filters](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-word-filters.html) |
+
+### Biased Output (FS-39 to FS-42)
+
+> **Guide source:** §1.2.5 Model output is biased. Guide-listed mitigations:
+> (a) AWS AI Service Cards to understand how providers address fairness/bias per model;
+> (b) prompt engineering;
+> (c) Amazon Bedrock Guardrails;
+> (d) Bedrock Evaluations to measure bias;
+> (e) Amazon SageMaker Clarify for bias detection, transparency, and prediction explanation
+> on fine-tuned and self-trained models;
+> (f) develop and maintain a bias testing dataset with representative cases across
+> demographic groups, geographic regions, and sensitive attributes — run periodically and
+> after each model update.
+
+#### FS-39 — SageMaker Clarify Bias
+
+| Field | Detail |
+|-------|--------|
+| Severity | High |
+| Guide ref | [Guide §1.2.5] — "Use Amazon SageMaker Clarify to detect bias, increase transparency, and explain predictions for your fine-tuned and self-trained AI models." |
+| Description | Verifies Clarify model bias monitoring is configured for financial decision models. |
+| Detection | Calls `sagemaker:ListMonitoringSchedules` with the `MonitoringTypeEquals=ModelBias` filter parameter (the `MonitoringType` field on the `MonitoringScheduleSummary` response has one of four values: `DataQuality`, `ModelQuality`, `ModelBias`, `ModelExplainability`). Flags if no bias monitoring schedules exist. Cross-references with endpoints tagged `use-case=financial-decision` or similar. Clarify bias monitoring publishes metrics to the `aws/sagemaker/Endpoints/bias-metrics` namespace for real-time endpoints (and `aws/sagemaker/ModelMonitoring/bias-metrics` for batch transform jobs) with `Endpoint`, `MonitoringSchedule`, `BiasStage`, `Label`, `LabelValue`, `Facet`, and `FacetValue` dimensions. |
+| Remediation | 1. Create a SageMaker Clarify bias monitoring schedule for each financial decision model endpoint. 2. Specify facets (protected attributes: age, gender, race, geography) and bias metrics (DPL, DI, DPPL). 3. Provide a baseline bias report from training data. 4. Configure CloudWatch alarms on bias metric violations on the `aws/sagemaker/Endpoints/bias-metrics` namespace. Note: `publish_cloudwatch_metrics` is enabled by default — do NOT set it to `Disabled` in the model bias job definition's `Environment` map, as that would stop metrics from being published to CloudWatch. |
+| Reference | [SageMaker Clarify Bias Detection](https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-detect-post-training-bias.html) |
+
+#### FS-40 — Bedrock Bias Evaluation Datasets and Cadence
+
+| Field | Detail |
+|-------|--------|
+| Severity | Informational |
+| Guide ref | [Guide §1.2.5] — "Develop and maintain a bias testing dataset that includes representative test cases across demographic groups, geographic regions, and other sensitive attributes relevant to your use case. Run these test cases periodically and after model updates." |
+| Description | Checks evaluation jobs include demographic fairness test cases across protected groups and verifies evaluations are run on a defined periodic schedule and after each model update. |
+| Detection | Calls `bedrock:ListEvaluationJobs` to enumerate existing jobs, then calls `bedrock:GetEvaluationJob` for each to inspect the full `evaluationConfig` including dataset configuration for demographic diversity test cases. Checks the `creationTime` of the most recent evaluation job and flags if it is older than 90 days or if no evaluation was run after the most recent model deployment. Note: `ListEvaluationJobs` returns only job summaries — dataset configuration details require `GetEvaluationJob`. |
+| Remediation | 1. Create a bias evaluation dataset with representative test cases across demographic groups, geographic regions, and other sensitive attributes. 2. Schedule evaluation jobs to run at least quarterly via EventBridge. 3. Trigger an evaluation job automatically after each model update in your CI/CD pipeline. 4. Store results for audit and trend analysis. |
+| Reference | [Bedrock Model Evaluation](https://docs.aws.amazon.com/bedrock/latest/userguide/evaluation.html) |
+
+#### FS-41 — SageMaker Clarify Explainability
+
+| Field | Detail |
+|-------|--------|
+| Severity | High |
+| Guide ref | [Guide §1.2.5, extension] — Guide §1.2.5 recommends "Amazon SageMaker Clarify to detect bias, increase transparency, and explain predictions". ECOA/Fair Housing adverse-action-notice use case is an FS-specific extension of Clarify explainability not named verbatim in the guide. |
+| Description | Verifies Clarify explainability monitoring for adverse action notices (commonly cited under ECOA for credit decisions; this is an FS industry-practice extension, not a guide-prescribed control). |
+| Detection | Calls `sagemaker:ListMonitoringSchedules` with the `MonitoringTypeEquals=ModelExplainability` filter parameter. Flags if no explainability monitoring schedules exist for financial decision model endpoints. Clarify explainability monitoring publishes metrics to the `aws/sagemaker/Endpoints/explainability-metrics` namespace for real-time endpoints (and `aws/sagemaker/ModelMonitoring/explainability-metrics` for batch transform jobs) with `Endpoint`, `MonitoringSchedule`, `ExplainabilityMethod` (value: `KernelShap`), `Label`, and `ValueType` (values: `GlobalShapValues` or `ExpectedValue`) dimensions. |
+| Remediation | 1. Create a SageMaker Clarify explainability monitoring schedule using SHAP analysis. 2. Configure feature attribution baselines. 3. Use explainability outputs to generate adverse action notices (top contributing factors for negative decisions) where your firm's use case and regulatory interpretation require them. 4. Retain explainability reports for regulatory audit. |
+| Reference | [SageMaker Clarify Explainability](https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-model-explainability.html) |
+
+#### FS-42 — AI Service Cards
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.4, §1.2.5, §1.2.14] — "Amazon provides AI Service Cards for models that are pre-trained for AWS services like Amazon Bedrock and Amazon Q. These cards help you understand how Amazon addresses toxicity in each model." Referenced in three separate guide risk sections. |
+| Description | Checks SageMaker Model Cards document intended use and bias evaluations. |
+| Detection | Calls `sagemaker:ListModelCards`. For each card, calls `sagemaker:DescribeModelCard` and inspects the content JSON for `intended_uses`, `business_details`, and `evaluation_details` sections. Flags cards missing these sections. |
+| Remediation | 1. Create a SageMaker Model Card for each production model. 2. Document: intended use cases, out-of-scope uses, training data description, bias evaluation results, performance metrics. 3. Review and update cards after each model retrain. 4. For Bedrock foundation models, reference the AWS AI Service Cards published by Amazon. |
+| Reference | [SageMaker Model Cards](https://docs.aws.amazon.com/sagemaker/latest/dg/model-cards.html), [AWS AI Service Cards](https://aws.amazon.com/ai/responsible-ai/resources/) |
+
+### Sensitive Information Disclosure (FS-43 to FS-46)
+
+> **Guide source:** §1.2.6 Sensitive information disclosure. Guide-listed mitigations:
+> (a) Bedrock Guardrails sensitive information filters for PII, PHI;
+> (b) data classification scanning and access controls on AI data sources;
+> (c) strict IAM access controls for Bedrock API;
+> (d) mask sensitive information in CloudWatch Logs and custom application logging;
+> (e) protect training and fine-tuning data via data protection best practices;
+> (f) monitor PII in training/fine-tuning/RAG data with Amazon Macie;
+> (g) remove, mask, or tokenize PII before use in training, fine-tuning, or RAG;
+> (h) Practical guidance: least privilege for agent identities; user-authorized communications
+> to tool services; propagate end-user identities so tool services can validate them without
+> revealing them to unauthorized third parties.
+
+#### FS-43 — CloudWatch Log PII Masking
+
+| Field | Detail |
+|-------|--------|
+| Severity | High |
+| Guide ref | [Guide §1.2.6] — "If you implement model invocation logging for the LLM or custom logging logic in your application, make sure to mask sensitive information in your log data." References "Amazon CloudWatch – Help protect sensitive log data with masking". |
+| Description | Checks CloudWatch Logs data protection policies mask PII in Bedrock invocation logs. |
+| Detection | Identifies CloudWatch log groups used by Bedrock invocation logging (from `bedrock:GetModelInvocationLoggingConfiguration`). Calls `logs:GetDataProtectionPolicy` for each log group. Flags log groups with no data protection policy or policies missing PII identifiers. Note: model invocation logging only captures calls made through the `bedrock-runtime` endpoint (`Converse`, `ConverseStream`, `InvokeModel`, `InvokeModelWithResponseStream`); calls through other endpoints such as the Responses API (`bedrock-mantle` endpoint) are not captured. |
+| Remediation | 1. Create a CloudWatch Logs data protection policy on each Bedrock log group. 2. Include managed data identifiers using their exact ARN-based IDs — country-code suffixes are **required** in the ARN for most identifiers (the data-types table uses the short name such as `Ssn`, but the ARN must include the country code): `Ssn-US` (US Social Security Number; `Ssn-ES` for Spain — there is no bare `Ssn` ARN), `CreditCardNumber` (no suffix), `CreditCardSecurityCode` (no suffix), `EmailAddress` (no suffix), `Address` (no suffix), `PhoneNumber-US`, `BankAccountNumber-US`, `DriversLicense-US`, `PassportNumber-US`, `IndividualTaxIdentificationNumber-US`. 3. Add a `Deidentify` operation statement (no hyphen — this is the exact JSON key required in the policy document, even though AWS prose documentation uses "De-identify") to mask sensitive data, and a separate `Audit` statement to emit findings to CloudWatch. The `Deidentify` operation must contain an empty `"MaskConfig": {}` object. 4. **Retroactive masking scope:** A **log group-level** data protection policy only masks data ingested **after** the policy is applied — historical log events are not retroactively masked. However, an **account-level** data protection policy applies to both existing log groups and log groups created in the future. For maximum coverage, consider creating an account-level policy in addition to log group-level policies. Apply policies at log group creation time or as early as possible. 5. Test by sending a log entry containing sample PII and verifying it is masked in subsequent reads. |
+| Reference | [CloudWatch Logs Data Protection](https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/mask-sensitive-log-data.html), [PII Data Identifier ARNs](https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/protect-sensitive-log-data-types-pii.html), [Financial Data Identifier ARNs](https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/protect-sensitive-log-data-types-financial.html) |
+
+#### FS-44 — Amazon Macie PII Scanning and Pre-Processing
+
+| Field | Detail |
+|-------|--------|
+| Severity | High |
+| Guide ref | [Guide §1.2.6] — "Monitor personally identifiable information (PII) in your data when you train models, fine-tune them, or use retrieval-augmented generation (RAG)" and "Remove, mask, or tokenize personally identifiable information (PII) or sensitive data before you use it for training, fine-tuning, or retrieval-augmented generation (RAG)." |
+| Description | Verifies Macie is enabled and scanning AI/ML data buckets, and checks that a PII pre-processing step (tokenization, masking, or removal) exists in training and RAG ingestion pipelines before data reaches the model. |
+| Detection | Calls `macie2:GetMacieSession` to verify Macie is enabled. Calls `macie2:GetAutomatedDiscoveryConfiguration` to check whether automated sensitive data discovery is enabled (preferred over manual classification jobs — automated discovery evaluates S3 buckets daily without explicit job creation). Also calls `macie2:ListClassificationJobs` to check for any additional targeted jobs covering S3 buckets tagged for AI/ML use. Additionally inspects SageMaker Processing jobs or Glue jobs for PII-related naming patterns indicating a pre-processing pipeline. |
+| Remediation | 1. Enable Amazon Macie in the account. 2. **Preferred:** Enable Macie **Automated Sensitive Data Discovery** (via `macie2:UpdateAutomatedDiscoveryConfiguration` set to `ENABLED`) — this continuously evaluates ALL S3 buckets in the account or organization daily, selects representative objects, and produces sensitive-data findings without requiring manual job creation. 3. For higher-priority AI/ML buckets where you need full-depth scans, supplement with targeted classification jobs (`macie2:CreateClassificationJob`) scheduled at least weekly. 4. Implement a PII pre-processing step in your data pipeline (SageMaker Processing job, Glue job, or Lambda) that tokenizes, masks, or removes PII before data is used for training or RAG ingestion. 5. Use Amazon Comprehend `DetectPiiEntities` or Macie findings to identify PII locations and feed them into the pre-processing step. 6. Route Macie findings to EventBridge and then to your SIEM or ticketing system for timely investigation. |
+| Reference | [Amazon Macie](https://docs.aws.amazon.com/macie/latest/user/what-is-macie.html), [Macie Automated Sensitive Data Discovery](https://docs.aws.amazon.com/macie/latest/user/discovery-asdd.html), [Amazon Comprehend PII Detection](https://docs.aws.amazon.com/comprehend/latest/dg/pii.html) |
+
+#### FS-45 — Guardrail PII Filters
+
+| Field | Detail |
+|-------|--------|
+| Severity | High |
+| Guide ref | [Guide §1.2.6] — "Use Amazon Bedrock Guardrails to detect and filter structured sensitive information in model inputs and outputs, such as personally identifiable information (PII), protected health information (PHI)." |
+| Description | Checks guardrails have PII entity filters for SSN, credit card, and account numbers. |
+| Detection | Calls `bedrock:GetGuardrail` and inspects `sensitiveInformationPolicy.piiEntities`. Flags guardrails missing filters for critical PII types: `US_SOCIAL_SECURITY_NUMBER`, `CREDIT_DEBIT_CARD_NUMBER`, `CREDIT_DEBIT_CARD_CVV`, `CREDIT_DEBIT_CARD_EXPIRY`, `US_BANK_ACCOUNT_NUMBER`, `US_BANK_ROUTING_NUMBER`, `PIN`, `SWIFT_CODE`, `INTERNATIONAL_BANK_ACCOUNT_NUMBER`, `US_INDIVIDUAL_TAX_IDENTIFICATION_NUMBER`, `EMAIL`, `PHONE`. |
+| Remediation | 1. Update the guardrail to add PII entity filters for all relevant types. 2. Configure separate input and output actions using the `inputAction` and `outputAction` fields: set `outputAction=ANONYMIZE` (replace with placeholder such as `{US_SOCIAL_SECURITY_NUMBER}`) so PII in model responses is masked before reaching the user; set `inputAction=BLOCK` for PII types that should never be submitted (e.g., SSN, credit card numbers). 3. Use `inputEnabled` and `outputEnabled` to selectively enable evaluation per direction — disable evaluation on a direction you don't need to reduce cost and latency. 4. **PHI coverage nuance:** The Bedrock Guardrails sensitive information filter has only limited built-in PHI entities — specifically `CA_HEALTH_NUMBER` (Canada) and `UK_NATIONAL_HEALTH_SERVICE_NUMBER` (UK). For US HIPAA PHI (for example, Medical Record Numbers, Health Plan Beneficiary Numbers, Medicare Beneficiary Identifiers), there is no built-in entity type — use `regexesConfig` (custom regex patterns) on the guardrail to detect these patterns, complemented by downstream CloudWatch Logs data protection policies (see FS-43) which have PHI identifiers under the HIPAA category. 5. **Critical limitation — tool_use outputs:** The sensitive information filter does NOT detect PII when models respond with `tool_use` (function call) output parameters via supported APIs. For FinServ agentic applications where models invoke tools and return structured function-call responses, implement application-layer PII scanning on tool outputs before they are processed or displayed. 6. **Critical limitation — invocation logs:** Guardrail PII masking applies only to content sent to and returned from the inference model. It does NOT apply to model invocation logs — the `input` field in CloudWatch Logs always contains the original, unmasked request regardless of guardrail intervention. Use CloudWatch Logs data protection policies (see FS-43) to mask PII in logs separately. Similarly, the `match` field in guardrail trace output contains the original PII value, not the masked output. 7. Test with sample inputs containing each PII type and verify both input blocking and output anonymization work as expected. |
+| Reference | [Bedrock Guardrails Sensitive Information Filters](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-sensitive-filters.html) |
+
+#### FS-46 — Data Classification Tagging
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.6] — "Implement data classification scanning and access controls on the data sources connected to your AI system to prevent disclosure of company-confidential or proprietary information." |
+| Description | Verifies AI/ML S3 buckets are tagged with data classification labels. |
+| Detection | Lists S3 buckets and filters for AI/ML-related names or tags. Calls `s3:GetBucketTagging` for each and checks for a `data-classification` tag with values like `public`, `internal`, `confidential`, `restricted`. Flags buckets missing the tag. |
+| Remediation | 1. Define a data classification taxonomy (e.g., Public, Internal, Confidential, Restricted). 2. Tag all AI/ML S3 buckets with `data-classification=<level>`. 3. **Detective enforcement:** Create an AWS Config managed rule (`required-tags`, checks up to six tag keys at a time) to identify buckets missing the tag and trigger remediation via a custom SSM automation document (note: the AWS-managed `AWS-SetRequiredTags` automation document does NOT work as a remediation with this rule — you must author a custom Systems Manager automation document). 4. **Preventive enforcement:** Use AWS Organizations **Tag Policies** to require the `data-classification` tag key with allowed values (Public, Internal, Confidential, Restricted) across accounts — Tag Policies are preventive and complement the detective Config rule. 5. Use tag-based IAM policies (via condition keys `aws:ResourceTag/data-classification`) to restrict S3 access based on classification level. 6. Pair with Macie classification jobs (see FS-44) so that buckets automatically classified as containing sensitive data are flagged if their `data-classification` tag is missing or inconsistent with the Macie findings. |
+| Reference | [AWS Tagging Best Practices](https://docs.aws.amazon.com/tag-editor/latest/userguide/tagging.html), [AWS Config required-tags Rule](https://docs.aws.amazon.com/config/latest/developerguide/required-tags.html), [AWS Organizations Tag Policies](https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_tag-policies.html) |
+
+---
+
+## Part 3 — Application-Layer Controls & Material Gaps (FS-47 to FS-69)
+
+> **Guide risk categories:** Hallucination (FS-47..50, §1.2.7), Prompt Injection (FS-51..54, §1.2.8), Improper Output Handling (FS-55..58, §1.2.13), Off-Topic & Inappropriate Output (FS-59..60, §1.2.2), Out-of-Date Training Data (FS-61..63, §1.2.10), Additional Controls — Material Gaps (FS-64..69). FS-64 is merged into upstream BR-04 — see the extension note in the Material Gaps section.
+
+### Hallucination (FS-47 to FS-50)
+
+> **Guide source:** §1.2.7 Hallucination. Guide-listed mitigations:
+> (a) prompt engineering;
+> (b) RAG with Bedrock Knowledge Bases;
+> (c) detect hallucinations in RAG and agent-based systems;
+> (d) HITL validation for internal AI systems;
+> (e) Automated Reasoning checks in Bedrock Guardrails;
+> (f) Bedrock Guardrails contextual grounding checks with reference source and query;
+> (g) response disclaimers in customer-facing applications informing users that AI responses
+> should be verified for critical decisions.
+
+#### FS-47 — Guardrail Grounding Threshold
+
+| Field | Detail |
+|-------|--------|
+| Severity | High |
+| Guide ref | [Guide §1.2.7] — "You can use Amazon Bedrock Guardrails to detect and filter hallucinations in model responses by performing contextual grounding checks when you provide a reference source and query." |
+| Description | Verifies guardrail grounding thresholds are set appropriately for financial use cases (this assessment recommends ≥ 0.7; AWS does not prescribe a specific minimum, but the valid range is 0 to 0.99). Note: contextual grounding checks are not supported for conversational chatbot use cases — only for summarization, paraphrasing, and Q&A. |
+| Detection | Calls `bedrock:GetGuardrail` and inspects `contextualGroundingPolicy.filters` for the `GROUNDING` filter type. Checks that the `threshold` value is ≥ 0.7. Flags guardrails with lower thresholds or no grounding filter. |
+| Remediation | 1. Update the guardrail to set the grounding filter threshold to at least 0.7 (this assessment recommends 0.8 for financial services to reduce hallucination risk — note: AWS does not prescribe a specific minimum, but the valid range is **0 to 0.99**; a value of 1.0 is explicitly invalid and will block all content per AWS documentation). 2. Enable the grounding filter for both the `GROUNDING` and `RELEVANCE` types. 3. Test with prompts that should and should not be grounded in the reference source — tune the threshold based on your false-positive/false-negative tolerance. 4. Monitor grounding filter invocation rates via CloudWatch using the `AWS/Bedrock/Guardrails` namespace. **Important limitation:** Contextual grounding checks support only summarization, paraphrasing, and question-answering use cases — **Conversational QA / Chatbot use cases are explicitly not supported** per AWS documentation. For FinServ chatbot deployments, use denied topics and content filters (FS-28, FS-36, FS-59) as the primary hallucination-mitigation controls instead. |
+| Reference | [Bedrock Guardrails Contextual Grounding](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-contextual-grounding-check.html) |
+
+#### FS-48 — RAG Knowledge Base
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.1, §1.2.7, §1.2.10] — "Use Retrieval-Augmented Generation (RAG) to enhance your model responses with information from trusted knowledge bases." Referenced in three separate guide risk sections. |
+| Description | Checks active Knowledge Bases are configured for RAG grounding. |
+| Detection | Calls `ListKnowledgeBases` (via the `bedrock-agent` boto3 client; IAM action `bedrock:ListKnowledgeBases`) and checks that at least one KB exists with `status=ACTIVE`. Flags accounts with no active KBs when Bedrock models are in use (indicating responses are ungrounded). |
+| Remediation | 1. Create a Bedrock Knowledge Base with your authoritative data sources. 2. Configure the KB with an appropriate embedding model and vector store. 3. Use `RetrieveAndGenerate` API instead of direct `InvokeModel` for customer-facing use cases. 4. Sync data sources on a regular schedule. |
+| Reference | [Bedrock Knowledge Bases](https://docs.aws.amazon.com/bedrock/latest/userguide/knowledge-base.html) |
+
+#### FS-49 — Hallucination Disclaimer
+
+| Field | Detail |
+|-------|--------|
+| Severity | Informational |
+| Guide ref | [Guide §1.2.7] — "Implement response disclaimers in customer-facing applications, to inform end users that AI-generated responses should be verified for critical decisions." References "AWS Well-Architected Framework Generative AI Lens - Implement guardrails to mitigate harmful or incorrect model responses". |
+| Description | Advisory: verifies application adds hallucination disclaimers to AI-generated outputs. |
+| Detection | Advisory check — inspects application Lambda environment variables for disclaimer-related settings. Checks for post-processing Lambda functions that append disclaimers. |
+| Remediation | 1. Add a standard disclaimer to all AI-generated responses: "This response is generated by AI and may contain inaccuracies. Please verify critical information independently." 2. Make the disclaimer configurable and non-removable by prompt manipulation. 3. For financial decisions, add: "This does not constitute financial advice." |
+| Reference | [AWS Well-Architected GenAI Lens](https://docs.aws.amazon.com/wellarchitected/latest/generative-ai-lens/gensec02-bp01.html) |
+
+#### FS-50 — Relevance Grounding Filters
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.2, §1.2.7] — "Use Amazon Bedrock Guardrails to detect and filter hallucinations in model responses by performing contextual grounding checks." Contextual grounding covers both `GROUNDING` and `RELEVANCE` filter sub-types. |
+| Description | Checks guardrails have relevance grounding filters to prevent off-topic responses. |
+| Detection | Calls `bedrock:GetGuardrail` and inspects `contextualGroundingPolicy.filters` for the `RELEVANCE` filter type. Flags guardrails with no relevance filter configured. |
+| Remediation | 1. Update the guardrail to enable the `RELEVANCE` contextual grounding filter. 2. Set the threshold to at least 0.7 (valid range is **0 to 0.99**; a value of 1.0 is explicitly invalid per AWS documentation). 3. This ensures responses are relevant to the user's query and the provided reference source, filtering out off-topic hallucinations. **Important limitation:** Contextual grounding checks (both `GROUNDING` and `RELEVANCE`) support only summarization, paraphrasing, and question-answering use cases — **Conversational QA / Chatbot use cases are explicitly not supported** per AWS documentation. For FinServ chatbot deployments, use denied topics (FS-59) as the primary off-topic control. |
+| Reference | [Bedrock Guardrails Contextual Grounding](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-contextual-grounding-check.html) |
+
+### Prompt Injection (FS-51 to FS-54)
+
+> **Guide source:** §1.2.8 Prompt injection. Guide-listed mitigations:
+> (a) prompt engineering best practices to avoid prompt injection;
+> (b) input validation — sanitize user input, remove special characters or use escape sequences,
+> match expected format;
+> (c) secure coding practices — parameterized queries, avoid string concatenation, minimal
+> privileges;
+> (d) security testing — regular testing for prompt injection and vulnerabilities, pentest,
+> static code analysis, DAST;
+> (e) stay updated — keep Bedrock SDK, libraries, and dependencies current;
+> (f) Bedrock Guardrails to detect and block user inputs attempting to override system
+> instructions through prompt attacks.
+
+#### FS-51 — Prompt Attack Filters
+
+| Field | Detail |
+|-------|--------|
+| Severity | High |
+| Guide ref | [Guide §1.2.8] — "Use Amazon Bedrock Guardrails to detect and block user inputs that attempt to override system instructions through prompt attacks." |
+| Description | Verifies guardrails have PROMPT_ATTACK content filters enabled and are configured correctly for the Standard tier. |
+| Detection | Calls `bedrock:GetGuardrail` and inspects `contentPolicy.filters` for a filter with `type=PROMPT_ATTACK`. Flags guardrails where this filter is absent, has `inputStrength` set to `NONE` or `LOW` (note: PROMPT_ATTACK only applies to inputs — there is no `outputStrength` for this filter type), or where `contentPolicy.tier.tierName=CLASSIC` (the PROMPT_ATTACK filter in Classic tier detects jailbreaks and prompt injection; in Standard tier it additionally detects **prompt leakage** — attempts to extract system prompts or developer instructions). |
+| Remediation | 1. Ensure the guardrail is configured with the **Standard** content filters tier — prompt leakage detection (extracting system prompts/developer instructions) is available only in Standard tier; jailbreak and prompt injection detection are available in both tiers. Standard tier requires cross-Region inference to be enabled on the guardrail. You can configure Standard tier on a **new or existing guardrail**: for an existing guardrail, modify it via `UpdateGuardrail` (set `tierConfig.tierName=STANDARD` in `contentPolicyConfig` and add a `crossRegionConfig.guardrailProfileIdentifier`), or use the console by editing the guardrail and selecting Standard tier with cross-Region inference. 2. Add a `PROMPT_ATTACK` content filter with `inputStrength=HIGH`. 3. **Wrap user input in guardrail input tags when using `InvokeModel` or `InvokeModelResponseStream`** — for these APIs, PROMPT_ATTACK only evaluates content enclosed in input tags (e.g., `<amazon-bedrock-guardrails-guardContent_xyz>user text</amazon-bedrock-guardrails-guardContent_xyz>` — the reserved prefix is `amazon-bedrock-guardrails-guardContent` and the suffix should be a unique random string per request to prevent an attacker from closing the tag and appending malicious content). Untagged content is not evaluated for PROMPT_ATTACK when using these APIs. **Note:** When using the `Converse` API, use the `guardContent` field (`GuardrailConverseContentBlock`) in user messages to scope PROMPT_ATTACK evaluation to specific content — this is the Converse API equivalent of input tags. Without `guardContent`, the guardrail evaluates ALL message content (the entire messages array). Using `guardContent` in user messages ensures only user-provided content is evaluated for prompt attacks, while system prompts and conversation history are excluded. If no `guardContent` blocks are present in messages, the guardrail evaluates everything in the messages array. 4. Test with known prompt injection patterns (role-play attacks, instruction override, delimiter injection). 5. Monitor filter invocation rates via CloudWatch guardrail metrics (`InvocationsIntervened` in the `AWS/Bedrock/Guardrails` namespace, filtered by `GuardrailPolicyType=ContentPolicy`) for trending attack patterns. |
+| Reference | [Bedrock Guardrails Prompt Attack](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-prompt-attack.html), [Safeguard tiers for guardrails](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-tiers.html), [Securing Amazon Bedrock Agents against indirect prompt injections](https://aws.amazon.com/blogs/machine-learning/securing-amazon-bedrock-agents-a-guide-to-safeguarding-against-indirect-prompt-injections/) |
+
+#### FS-52 — Bedrock SDK Version Currency
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.8] — "Stay Updated – Keep your Amazon Bedrock SDK, libraries, and dependencies current to receive the latest security patches and updates." |
+| Description | Checks Bedrock Lambda functions use current (non-deprecated) runtimes and SDK versions. |
+| Detection | Calls `lambda:ListFunctions` and filters for functions with Bedrock-related names or environment variables referencing Bedrock. Checks each function's `Runtime` against the list of deprecated Lambda runtimes. |
+| Remediation | 1. Update Lambda functions to use a currently supported runtime — as of April 2026, recommended runtimes are `python3.13` or `python3.14` for Python (both deprecation date June 30, 2029; `python3.12` remains supported through Oct 31, 2028), and `nodejs22.x` or `nodejs24.x` for Node.js (`nodejs20.x` reaches deprecation on April 30, 2026 and should not be used for new deployments). 2. Update the Bedrock SDK (boto3/botocore) to the latest version in your requirements.txt or package.json. 3. Test after upgrading to verify no breaking changes. 4. Subscribe to AWS Lambda runtime deprecation notifications via EventBridge or SNS (Lambda also surfaces runtime deprecation notices via AWS Health Dashboard and Trusted Advisor). |
+| Reference | [Lambda Runtime Deprecation Policy](https://docs.aws.amazon.com/lambda/latest/dg/lambda-runtimes.html) |
+
+#### FS-53 — WAF Injection Protection Rules
+
+| Field | Detail |
+|-------|--------|
+| Severity | High |
+| Guide ref | [Guide §1.2.8, extension] — WAF SQLi and known-bad-inputs rule groups are not named in the guide, but implement the guide mitigation "Secure Coding Practices – use parameterized queries, avoid string concatenation for input, grant minimal access privileges" at the network edge for web-facing GenAI endpoints. |
+| Description | Verifies WAF ACLs include SQL injection (`AWSManagedRulesSQLiRuleSet`) and known-bad-inputs (`AWSManagedRulesKnownBadInputsRuleSet`) managed rule groups for GenAI endpoints. |
+| Detection | Calls `wafv2:ListWebACLs(Scope=REGIONAL)` and for each calls `wafv2:GetWebACL`. Inspects the rules list for `AWSManagedRulesSQLiRuleSet` and `AWSManagedRulesKnownBadInputsRuleSet`. Flags ACLs missing either rule group. |
+| Remediation | 1. Add `AWSManagedRulesSQLiRuleSet` to your WAF Web ACL (contains SQLi detection rules for body, URI path, cookie, and query-string components). 2. Add `AWSManagedRulesKnownBadInputsRuleSet` for known Remote Command Execution (RCE) and vulnerability-discovery patterns (e.g., Log4j, Spring Core deserialization, path traversal) — note this rule group does NOT cover XSS; XSS is in `AWSManagedRulesCommonRuleSet` (see FS-56). 3. Set both rule groups to COUNT mode initially, review logs for false positives, then switch to BLOCK. 4. Create custom rules for GenAI-specific injection patterns if needed. |
+| Reference | [AWS WAF Managed Rules](https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-list.html) |
+
+#### FS-54 — Penetration Testing Evidence
+
+| Field | Detail |
+|-------|--------|
+| Severity | Informational |
+| Guide ref | [Guide §1.2.8] — "Security Testing – Test your applications regularly for prompt injection and other security vulnerabilities. Use penetration testing, static code analysis, and dynamic application security testing (DAST)." |
+| Description | Advisory: verifies GenAI applications have been penetration tested for prompt injection and other AI-specific vulnerabilities. |
+| Detection | Advisory check — inspects resource tags for `last-pentest-date` or checks for a documented penetration testing schedule. Cannot be fully automated. |
+| Remediation | 1. Conduct penetration testing of your GenAI application at least annually and before major releases. 2. Include AI-specific test cases: prompt injection, jailbreak attempts, data extraction, system prompt leakage. 3. Use tools like Garak, PyRIT, manual red-teaming, or the **AWS Security Agent**. As of the March 2026 GA announcement, Security Agent runs from 6 AWS regions (N. Virginia, Oregon, Ireland, Frankfurt, Sydney, Tokyo) but can test targets across AWS, Azure, GCP, and on-premises environments. For multi-account FinServ deployments, Security Agent supports penetration testing on VPC resources **shared across AWS accounts in the same AWS Organization** via AWS Resource Access Manager (RAM) — enable this by launching Security Agent from a central security account and sharing VPC resources from sub-accounts via RAM. **Verify current region coverage on the [AWS Security Agent page](https://aws.amazon.com/security-agent/) before citing**, as AWS has been expanding regional availability and feature set rapidly. 4. Document findings and track remediation. 5. Tag resources with `last-pentest-date` for audit trail. |
+| Reference | [AWS Penetration Testing Policy](https://aws.amazon.com/security/penetration-testing/), [AWS Security Agent GA](https://aws.amazon.com/about-aws/whats-new/2026/03/aws-security-agent-ondemand-penetration/) |
+
+### Improper Output Handling (FS-55 to FS-58)
+
+> **Guide source:** §1.2.13 Improper output handling. Guide-listed mitigations:
+> (a) implement output validation rules against expected response format (e.g., JSON schema,
+> SQL schema);
+> (b) apply context-specific output sanitization — HTML encoding for web apps, SQL
+> parameterization for database queries, command escaping for system integrations;
+> (c) Practical guidance: treat model output as untrusted user input; use Bedrock Agents
+> action-group Lambda to implement output encoding so output text is non-executable by
+> JavaScript or Markdown.
+
+#### FS-55 — Output Validation Lambda
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.13] — "Implement output validation rules specific to the expected response format. For example, if the AI system is expected to return structured data (JSON, SQL), validate the output against the expected schema before processing." |
+| Description | Checks for Lambda functions implementing output validation/sanitization before AI responses reach downstream consumers. |
+| Detection | Calls `lambda:ListFunctions` and searches for functions with naming patterns indicating output validation (e.g., "output-valid", "sanitiz", "post-process", "response-filter"). Flags if no such functions exist. |
+| Remediation | 1. Implement a post-processing Lambda that validates AI model output before it reaches the end user or downstream system. 2. Validate output against expected schema (JSON schema validation for structured responses). 3. Strip or escape any executable content (HTML tags, JavaScript, SQL fragments). 4. Log rejected outputs for security monitoring. |
+| Reference | [AWS Well-Architected Security Pillar — Application Security](https://docs.aws.amazon.com/wellarchitected/latest/security-pillar/application-security.html), [Bedrock Prompt Injection Security](https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-injection.html), [Well-Architected FSI Lens — FSISEC14 Monitor AI system outputs for security issues](https://docs.aws.amazon.com/wellarchitected/latest/financial-services-industry-lens/fsisec14.html) |
+
+#### FS-56 — XSS Prevention WAF
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.13, extension] — WAF XSS rule groups are not named in the guide, but implement the guide mitigation "Apply context-specific output sanitization ... apply HTML encoding for web applications" at the network edge. |
+| Description | Verifies WAF ACLs include XSS prevention rules to protect against AI-generated outputs containing malicious scripts. |
+| Detection | Calls `wafv2:GetWebACL` for each regional ACL and inspects rules for `AWSManagedRulesCommonRuleSet` (which includes the four `CrossSiteScripting_*` rules covering request body, query arguments, cookies, and URI path) or custom rules using `XssMatchStatement` on request components. Flags ACLs missing XSS protection. |
+| Remediation | 1. Add `AWSManagedRulesCommonRuleSet` to your WAF Web ACL (includes `CrossSiteScripting_COOKIE`, `CrossSiteScripting_QUERYARGUMENTS`, `CrossSiteScripting_BODY`, and `CrossSiteScripting_URIPATH` rules — all four inspect **inbound request** components). 2. `XssMatchStatement` and the CRS XSS rules inspect **request** components only (body, query string, URI path, cookies, headers). WAF does NOT inspect arbitrary response bodies for XSS — response inspection (`ResponseInspection`) is available only in `AWSManagedRulesATPRuleSet`/`AWSManagedRulesACFPRuleSet` for CloudFront-protected ACLs and only scans for configured success/failure strings. 3. To protect against XSS in **AI-generated output**, enforce output encoding at the application layer (see FS-57) — rendering raw model output in a browser without encoding is the root cause that WAF cannot mitigate after the fact. 4. Apply output encoding in your application layer as defense-in-depth. |
+| Reference | [AWS WAF XSS Protection](https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-baseline.html) |
+
+#### FS-57 — Output Encoding
+
+| Field | Detail |
+|-------|--------|
+| Severity | Informational |
+| Guide ref | [Guide §1.2.13] — "Apply context-specific output sanitization based on the downstream consumer. For example, apply HTML encoding for web applications, SQL parameterization for database queries, and command escaping for system integrations." Practical guidance: "Use Amazon Bedrock Agents to securely integrate with AWS native and third-party services and implement output encoding in the action group Lambda function under an Amazon Bedrock Agent. Encoding all output text presented to end-users makes it automatically non-executable by JavaScript or Markdown." |
+| Description | Advisory: verifies application encodes GenAI outputs appropriately for the rendering context (HTML, JSON, SQL). |
+| Detection | Advisory check — inspects application Lambda functions for encoding libraries or patterns (e.g., `html.escape`, `json.dumps`, `markupsafe`). Checks environment variables for encoding-related configuration. |
+| Remediation | 1. Treat all model output as untrusted user input. 2. Apply context-specific encoding: HTML encoding for web display, SQL parameterization for database queries, command escaping for system integrations. 3. Use Bedrock Agents action-group Lambda functions to implement output encoding — encoding all output text makes it non-executable by JavaScript or Markdown renderers. 4. Never render raw model output in a web page without encoding. |
+| Reference | [OWASP Output Encoding](https://cheatsheetseries.owasp.org/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.html) |
+
+#### FS-58 — Output Schema Validation
+
+| Field | Detail |
+|-------|--------|
+| Severity | Informational |
+| Guide ref | [Guide §1.2.13] — "Implement output validation rules specific to the expected response format. For example, if the AI system is expected to return structured data (JSON, SQL), validate the output against the expected schema before processing." |
+| Description | Checks for structured output validation in GenAI pipelines (JSON schema, XML schema, or custom validators). |
+| Detection | Inspects Step Functions state machine definitions for states that perform schema validation (e.g., `Choice` states with JSON path conditions, Lambda states with "schema" or "validate" in the name). Does not rely on API Gateway response models as a validation signal because those are used for SDK generation, not runtime validation. |
+| Remediation | 1. Define a JSON schema for expected AI output format. 2. Add a validation step in your pipeline (Lambda function or Step Functions Choice state) that rejects non-conforming outputs **before** returning the response to clients — this is the runtime enforcement point. 3. Note: API Gateway *response models* in REST APIs are used for SDK generation (user-defined data types) and documentation — they do NOT perform runtime validation of response payloads. API Gateway *request validators* only validate inbound requests against request models. To validate AI output at runtime, implement the check in Lambda/Step Functions before the response reaches API Gateway. 4. Return a safe fallback response when validation fails. 5. Log rejected outputs (without leaking sensitive content) for security monitoring. |
+| Reference | [API Gateway Request and Response Validation](https://docs.aws.amazon.com/apigateway/latest/developerguide/api-gateway-method-request-validation.html) |
+
+### Off-Topic & Inappropriate Output (FS-59 to FS-60)
+
+> **Guide source:** §1.2.2 Off-topic and inappropriate output. Guide-listed mitigations:
+> (a) prompt engineering with an allowlist of approved topics aligned with business purpose;
+> (b) content filters and denied topics in Bedrock Guardrails;
+> (c) Bedrock Guardrails contextual grounding check with reference source and query;
+> (d) HITL validation for internal AI systems.
+
+#### FS-59 — Guardrail Topic Allowlist
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.2] — "Configure content filters and guardrails to restrict model responses to approved topics." The check name uses "allowlist" loosely — implementation uses denied-topic lists to block out-of-scope content. |
+| Description | Verifies guardrails restrict GenAI to on-topic financial services responses via denied topics. |
+| Detection | Calls `bedrock:GetGuardrail` and inspects `topicPolicy.topics`. Checks that denied topics exist to block off-topic conversations (e.g., politics, entertainment, medical advice). Flags guardrails with no topic restrictions. |
+| Remediation | 1. Define denied topics that are outside your business scope (e.g., "medical advice", "legal advice", "political opinions", "entertainment recommendations"). 2. Add these as denied topics in the guardrail with clear descriptions and sample phrases. 3. Test with off-topic prompts to verify they are blocked. 4. Use the system prompt to positively scope the assistant's role. |
+| Reference | [Bedrock Guardrails Topic Policies](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-denied-topics.html) |
+
+#### FS-60 — Contextual Grounding for Off-Topic
+
+| Field | Detail |
+|-------|--------|
+| Severity | Informational |
+| Guide ref | [Guide §1.2.2] — "Use prompt engineering techniques to guide the model toward appropriate topics and prevent unwanted responses. Include an allowlist of approved topics aligned with the business purpose." Use of Bedrock Prompt Management for system prompt versioning is an implementation choice. |
+| Description | Advisory: verifies system prompts explicitly scope the assistant's role to prevent off-topic responses. |
+| Detection | Advisory check — inspects Bedrock Prompt Management templates (via `ListPrompts` on the `bedrock-agent` boto3 client; IAM action `bedrock:ListPrompts`) for system prompt content that defines the assistant's role, scope, and boundaries. Flags if no prompt templates exist. |
+| Remediation | 1. Define a clear system prompt that states: the assistant's role, allowed topics, prohibited topics, and response format. 2. Use Bedrock Prompt Management to version and manage system prompts. 3. Include explicit instructions like "You are a financial services assistant. Only answer questions related to [specific topics]. Decline all other requests politely." 4. Test with boundary-case prompts. |
+| Reference | [Bedrock Prompt Management](https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html) |
+
+### Out-of-Date Training Data (FS-61 to FS-63)
+
+> **Guide source:** §1.2.10 Out-of-date training data. Guide-listed mitigations:
+> (a) RAG with Bedrock Knowledge Bases;
+> (b) keep knowledge bases up to date (sync data sources);
+> (c) HITL validation for internal AI systems;
+> (d) data currency disclaimers in AI system responses; source attribution via
+> RetrieveAndGenerate API for users to verify currency.
+
+#### FS-61 — Knowledge Base Sync Schedule
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.10] — "Keep your knowledge bases up to date." Automated scheduling via EventBridge operationalises this mitigation. |
+| Description | Checks EventBridge Scheduler or EventBridge rules automate KB data source sync on a regular schedule. |
+| Detection | Calls `events:ListRules` and searches for rules with targets that invoke `StartIngestionJob` (IAM action `bedrock:StartIngestionJob`) or Lambda functions that trigger KB sync. Also checks AWS Scheduler (`scheduler:ListSchedules`) for schedules targeting KB sync. Flags if no scheduled sync mechanism exists. |
+| Remediation | 1. Use **EventBridge Scheduler** (the current recommended approach — EventBridge scheduled rules are a legacy feature) to create a recurring schedule that triggers KB data source sync: create a schedule with a rate expression (e.g., `rate(1 day)`) or cron expression (e.g., `cron(0 2 * * ? *)`) targeting a Lambda function. 2. The Lambda function calls `StartIngestionJob` (IAM action `bedrock:StartIngestionJob`) for each data source. 3. Add error handling and CloudWatch alarms for failed syncs. |
+| Reference | [EventBridge Scheduler](https://docs.aws.amazon.com/scheduler/latest/UserGuide/what-is-scheduler.html), [EventBridge Scheduled Rules (legacy)](https://docs.aws.amazon.com/eventbridge/latest/userguide/eb-create-rule-schedule.html) |
+
+#### FS-62 — Data Currency Disclaimer
+
+| Field | Detail |
+|-------|--------|
+| Severity | Informational |
+| Guide ref | [Guide §1.2.10] — "Include data currency disclaimers in AI system responses where appropriate. Use source attribution in RAG-based response for end users to verify currency of information." |
+| Description | Advisory: verifies application adds data currency disclaimers to AI-generated outputs. |
+| Detection | Advisory check — inspects application configuration for data-currency disclaimer settings. Checks system prompts for instructions to include data freshness information. |
+| Remediation | 1. Add a data currency disclaimer to responses: "This information is based on data available as of [date]. It may not reflect the most recent changes." 2. Use the `RetrieveAndGenerate` API's source attribution to display document dates. 3. Configure the system prompt to instruct the model to caveat time-sensitive information. |
+| Reference | [Bedrock RetrieveAndGenerate API](https://docs.aws.amazon.com/bedrock/latest/APIReference/API_agent-runtime_RetrieveAndGenerate.html) |
+
+#### FS-63 — Foundation Model Lifecycle Policy
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.10, extension] — FM currency is conceptually related to "out-of-date training data" but the specific Bedrock lifecycle-status check is not named in the guide. The guide's "1.1.6 Monitor and improve" general guidance says "Update your foundation models when new versions become available" — this FS check operationalises that guidance. See also FS-34 (TPRM) which the guide places under §1.2.12. |
+| Description | Checks for a model lifecycle management process and Config rules to ensure models are updated when new versions are available. |
+| Detection | Calls `config:DescribeConfigRules` and searches for rules targeting Bedrock resources. Calls `bedrock:GetFoundationModel` for each model in use and inspects `modelLifecycle.status`. Flags models with status `LEGACY` (note: the Bedrock API exposes only two lifecycle status values — `ACTIVE` and `LEGACY`; models past their `endOfLifeTime` are removed from the service entirely and return a ResourceNotFound error, so any model still reachable via the API that is not `ACTIVE` will be `LEGACY`). |
+| Remediation | 1. Create an AWS Config custom rule that flags Bedrock models with `modelLifecycle.status=LEGACY`. 2. Establish a model lifecycle policy: evaluate new model versions within 30 days of release, test in staging, migrate production within 90 days (and before the `endOfLifeTime` published in the Bedrock model lifecycle page). 3. Subscribe to AWS Bedrock model lifecycle notifications. 4. Document the policy and assign an owner. 5. **Budget planning for FinServ:** For models with EOL dates after February 1, 2026, after a minimum of 3 months in Legacy state a model enters a **public extended access period** during which the model provider may set higher pricing. The `publicExtendedAccessTime` timestamp in the `FoundationModelLifecycle` response indicates when this phase begins. Include this phase in contract-and-budget review so FinServ cost governance teams are aware of potential price changes before migrating off Legacy models. |
+| Reference | [Bedrock Model Lifecycle](https://docs.aws.amazon.com/bedrock/latest/userguide/model-lifecycle.html) |
+
+### Additional Controls — Material Gaps (FS-64 to FS-69)
+
+These checks address mitigations explicitly called out in the Responsible AI GRC guide that were
+not covered by the original checks in the upstream AIML Security Assessment (BR/SM/AC).
+FS-64 is merged into upstream BR-04 (see extension note below); FS-65 to FS-69 ship as
+standalone checks.
+
+#### FS-64 — Guardrail Trace Logging → *Merged into upstream BR-04*
+
+> **Upstream extension note (do not ship as a standalone check):** The detection and remediation
+> content from FS-64 should be added as a refinement of the existing **BR-04 (Model Invocation
+> Logging)** check in the upstream repo.
+>
+> **What to add to BR-04:**
+> - After verifying that `bedrock:GetModelInvocationLoggingConfiguration` shows logging is
+>   enabled, additionally verify the log output captures **guardrail trace data**: when
+>   guardrails are applied during inference, the invocation log contains a `guardrailTrace`
+>   object with `action` (values: `INTERVENED` or `NONE`), `inputAssessments`, and
+>   `outputAssessments` arrays detailing which policies were evaluated and their results.
+> - **Important logging coverage gap:** Model invocation logging only captures calls made through the `bedrock-runtime` endpoint (`Converse`, `ConverseStream`, `InvokeModel`, `InvokeModelWithResponseStream`). Calls made through the `bedrock-mantle` endpoint (e.g., the Responses API) are **not currently captured** by invocation logging. If your application uses the Responses API, implement application-level logging as a compensating control.
+> - Add a remediation note on **retention requirements**: NYDFS 23 NYCRR 500.06 explicitly
+>   requires cybersecurity records for ≥ 5 years; SR 11-7 does not prescribe a specific period
+>   but requires documentation be maintained for the duration of model use plus a reasonable
+>   period thereafter (commonly met with 5–7 year retention per firm policy). Consult your
+>   compliance and records-management team for exact requirements.
+> - Suggest creating CloudWatch Metrics filters to track guardrail intervention rates (filter
+>   on `guardrailTrace.action = INTERVENED`) and applying CloudWatch Logs data protection
+>   policies to mask PII in traces.
+> - Guide traceability: [Guide §1.2.1] — "Maintain audit logs of AI-generated outputs and the
+>   guardrails applied to support regulatory reporting and post-incident analysis." Also
+>   §1.2.9 — "Implement audit logging of all actions taken by AI agents."
+>
+> **Reference:** [Bedrock Model Invocation Logging](https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html)
+
+#### FS-65 — KB Data Source S3 Event Notifications
+
+| Field | Detail |
+|-------|--------|
+| Severity | High (deleted bucket) / Medium (notifications) |
+| Guide ref | [Guide §1.2.3] — "Use integrity monitoring on knowledge base data sources to detect unauthorized modifications... For example on S3 data sources use Amazon S3 event notification to track changes to documents." **Note:** This check overlaps with FS-33; FS-33 verifies notifications are *enabled* on the bucket, while FS-65 verifies that notifications are *routed to an alerting destination* (SNS/Lambda/EventBridge rule with a target). In the final PR to aws-samples these two checks may be consolidated into a single check at the reviewer's discretion. |
+| Description | Checks that S3 event notifications on KB data-source buckets are routed to an alerting destination (EventBridge rule with SNS/Lambda target, or direct SNS/SQS/Lambda notification) — not just enabled with no consumer. |
+| Detection | Identifies KB data-source S3 buckets via `ListDataSources` and `GetDataSource` (via the `bedrock-agent` boto3 client; IAM actions `bedrock:ListDataSources` and `bedrock:GetDataSource`). For each bucket, calls `s3:GetBucketNotificationConfiguration` and checks for the presence of `EventBridgeConfiguration`, `TopicConfigurations`, `QueueConfigurations`, or `LambdaFunctionConfigurations`. Flags buckets with no notifications configured. |
+| Remediation | 1. Enable EventBridge notifications on each KB data-source bucket: `aws s3api put-bucket-notification-configuration --bucket <name> --notification-configuration '{"EventBridgeConfiguration":{}}'`. 2. Create an EventBridge rule matching S3 event detail types `"Object Created"` and `"Object Deleted"` for the bucket (note: when S3 sends events to **EventBridge**, the event detail types are `Object Created`/`Object Deleted`; the `s3:ObjectCreated:*` and `s3:ObjectRemoved:*` wildcard names are used only for **direct** SNS/SQS/Lambda notification configurations, not for EventBridge rule patterns). 3. Route events to an SNS topic or Lambda function for alerting. 4. Integrate alerts into your security incident response workflow. |
+| Reference | [S3 EventBridge Integration](https://docs.aws.amazon.com/AmazonS3/latest/userguide/EventBridge.html) |
+
+#### FS-66 — AgentCore End-User Identity Propagation
+
+| Field | Detail |
+|-------|--------|
+| Severity | High |
+| Guide ref | [Guide §1.2.6 — Practical guidance] — "1. Implement least privilege for identities associated with agents and tool services. 2. Where supported by the tool service ensure that communications to tool services or agents are authorized by the end user. 3. Customers building their own tool services should consider propagating end-user identities separately; ensuring these identities can be validated and are not revealed to unauthorized third parties." |
+| Description | Verifies AgentCore runtimes are configured to propagate end-user identities to downstream tool services, ensuring tool calls are authorized by the originating user and not solely by the agent execution role. |
+| Detection | Calls `ListAgentRuntimes` (via the `bedrock-agentcore-control` boto3 client; IAM action `bedrock-agentcore:ListAgentRuntimes`) and inspects each runtime's `authorizerConfiguration.customJWTAuthorizer` for a `discoveryUrl` and allowed audiences/clients/scopes. Flags runtimes with no JWT authorizer (meaning inbound calls carry no verifiable end-user identity), and advises configuring outbound OAuth for downstream tool services. |
+| Remediation | 1. Configure a custom JWT inbound authorizer on each AgentCore runtime: specify `discoveryUrl`, `allowedAudience`, `allowedClients`, and optional required custom claims. 2. Propagate the end-user's identity via the `X-Amzn-Bedrock-AgentCore-Runtime-User-Id` header and JWT token in the `Authorization` header when calling downstream tool services. **Important:** Invoking `InvokeAgentRuntime` with the `X-Amzn-Bedrock-AgentCore-Runtime-User-Id` header requires the distinct IAM action `bedrock-agentcore:InvokeAgentRuntimeForUser` in addition to `bedrock-agentcore:InvokeAgentRuntime`. Only trusted principals should hold this permission — scope it to specific runtime resources with IAM resource conditions, never via wildcard. For runtimes that do not need user-id delegation, explicitly **deny** `bedrock-agentcore:InvokeAgentRuntimeForUser` to prevent the header from being accepted. Additionally, derive the user-id from the authenticated principal's context (IAM caller identity or JWT claims) rather than from arbitrary client-supplied values to prevent user impersonation, and log the relationship between the authenticated IAM principal (via CloudTrail's SigV4 context) and the `user-id` value passed. 3. Configure outbound OAuth 2.0 for agents accessing third-party resources on behalf of the user. 4. Ensure tool services validate the propagated JWT before executing actions. 5. Implement agent identity segregation: assign distinct identities to each sub-agent in multi-agent workflows so actions are separately attributable. 6. Apply a maker-checker pattern for critical financial actions — require a second agent or human to verify before execution. 7. Do not log or expose propagated identity tokens to unauthorized third parties. |
+| Reference | [Configure Inbound JWT Authorizer](https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/inbound-jwt-authorizer.html), [Inbound and Outbound Auth](https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/runtime-oauth.html) |
+
+#### FS-67 — Agent Financial Transaction Value Thresholds
+
+| Field | Detail |
+|-------|--------|
+| Severity | High |
+| Guide ref | [Guide §1.2.9] — "Enforce transaction value thresholds and action boundaries on agent tool calls (for example to cap financial transaction amounts)." |
+| Description | Checks AgentCore Policy Engine (attached to Gateways) or action-group Lambda functions enforce maximum transaction-value limits (e.g., cap on financial amounts an agent can initiate) to prevent runaway or unauthorized high-value transactions. |
+| Detection | (a) Calls `ListGateways` (via the `bedrock-agentcore-control` boto3 client; IAM action `bedrock-agentcore:ListGateways`) and for each inspects attached Policy Engine Cedar policies for transaction-value constraints (policies referencing amount, limit, or threshold context attributes). (b) Calls `lambda:ListFunctions` and filters for agent action-group Lambda functions. Inspects each function's environment variables for threshold-related keys (e.g., `MAX_TRANSACTION_AMOUNT`, `TRANSACTION_LIMIT`). Flags gateways and functions with no threshold configuration. |
+| Remediation | 1. Add transaction-value threshold environment variables to each agent action-group Lambda (e.g., `MAX_TRANSACTION_AMOUNT=10000`). 2. Implement threshold enforcement logic in the Lambda handler that rejects or escalates transactions exceeding the limit. 3. Author Cedar policies in the AgentCore Policy Engine that evaluate tool-call context attributes (amount, currency, tool) and deny calls exceeding defined limits. 4. Route transactions exceeding thresholds to a human-in-the-loop approval step via Step Functions callback pattern. |
+| Reference | [Policy in AgentCore](https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy.html), [AgentCore Example Policies](https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/example-policies.html) |
+
+#### FS-68 — API Gateway Request Body Size Limits
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.11] — "To protect your API endpoints, set maximum length limits for input requests when you use large language models (LLMs) directly or through Amazon Bedrock." |
+| Description | Verifies API Gateway REST/HTTP APIs fronting GenAI endpoints have WAF `SizeConstraintStatement` rules enforcing a maximum request body size, optionally paired with an API Gateway request-body JSON schema that bounds individual field lengths — to prevent token-exhaustion attacks via oversized prompts. |
+| Detection | Calls `apigateway:GetRestApis` and for each calls `apigateway:GetRequestValidators` to check for validators (validators enforce parameter-existence and request-body JSON schema conformance — not total body size). Calls `wafv2:GetWebACL` for associated ACLs and inspects rules for `SizeConstraintStatement` targeting the request body. Flags APIs with no WAF `SizeConstraintStatement` on body, since that is the only AWS-native mechanism that enforces a custom maximum body size in front of API Gateway. |
+| Remediation | 1. **Primary control — WAF `SizeConstraintStatement`:** Add a WAF `SizeConstraintStatement` rule on your regional Web ACL that blocks requests whose body size exceeds your maximum allowed prompt length (e.g., 32 KB). Verify that the Web ACL's `AssociationConfig.RequestBody.DefaultSizeInspectionLimit` is set high enough (16 KB default; can be increased to 32/48/64 KB) so WAF can actually inspect bodies at the size you are enforcing against — if the inspection limit is lower than the `SizeConstraintStatement` threshold, oversized requests fall through to oversize handling instead of the rule. This is the only AWS-native way to enforce a custom maximum body size before requests reach API Gateway. 2. **Secondary control — API Gateway request validation:** Add an API Gateway request validator with a request-body model (JSON schema). Request validators do **not** enforce total body size, but a JSON schema can constrain individual string fields with `maxLength` and arrays with `maxItems`, which indirectly bounds payload content. Note API Gateway REST APIs also enforce a service-level hard limit of 10 MB per request (6 MB when integrated with Lambda) that you cannot lower. 3. Set the `max_tokens` parameter in Bedrock API calls to cap output length. 4. Implement client-side token counting before submitting requests. |
+| Reference | [WAF Size Constraint](https://docs.aws.amazon.com/waf/latest/developerguide/waf-rule-statement-type-size-constraint-match.html), [WAF Body Inspection Size Limit](https://docs.aws.amazon.com/waf/latest/developerguide/web-acl-setting-body-inspection-limit.html), [API Gateway Request Validation](https://docs.aws.amazon.com/apigateway/latest/developerguide/api-gateway-method-request-validation.html) |
+
+#### FS-69 — Prompt Input Validation Function
+
+| Field | Detail |
+|-------|--------|
+| Severity | Medium |
+| Guide ref | [Guide §1.2.8] — "Input Validation – Before you send user input to Amazon Bedrock or the tokenizer, validate and sanitize it by removing special characters or using escape sequences. Make sure the input matches your expected format." |
+| Description | Checks for a Lambda function or API Gateway request validator that sanitizes user prompt input (strips special characters, enforces expected format, rejects oversized inputs) before forwarding to Bedrock, complementing WAF-level controls. |
+| Detection | Calls `lambda:ListFunctions` and searches for functions with input-validation naming patterns (e.g., "sanitiz", "validat", "input-filter", "prompt-guard", "preprocess"). Flags if no such functions exist. |
+| Remediation | 1. Implement a Lambda authorizer or pre-processing function that: strips or escapes special characters from user input; validates input against an expected format (e.g., regex allowlist); rejects inputs exceeding maximum token/character limits; logs rejected inputs for security monitoring. 2. Use parameterized prompt templates (Bedrock Prompt Management) instead of string concatenation. 3. Apply Bedrock Guardrails PROMPT_ATTACK filter as a complementary control. 4. Integrate the validation function as an API Gateway Lambda authorizer or Step Functions pre-processing step. 5. Implement schema validation for all tool interactions — validate both inputs to and outputs from tools against defined JSON schemas per AWS Prescriptive Guidance for tool integration security. 6. Enforce TLS for all remote tool communications. |
+| Reference | [Bedrock Prompt Injection Security](https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-injection.html), [Security Best Practices for Tool Integration](https://docs.aws.amazon.com/prescriptive-guidance/latest/agentic-ai-frameworks/security-best-practices-for-tool-integration.html) |
diff --git a/docs/SECURITY_CHECKS_FINSERV_COMMON.md b/docs/SECURITY_CHECKS_FINSERV_COMMON.md
deleted file mode 100644
index 79c1bb7..0000000
--- a/docs/SECURITY_CHECKS_FINSERV_COMMON.md
+++ /dev/null
@@ -1,179 +0,0 @@
-# FinServ GenAI Risk Checks — Common Reference
-
-This file contains shared reference material used by all three parts of the FinServ GenAI
-security checks. It is not a checks file itself — the 64 standalone checks are split across Parts 1-3
-(5 additional FS checks are merged into upstream SM/BR checks — see the consolidation table below):
-
-- `SECURITY_CHECKS_FINSERV_PART1_INFRA_CONTROLS.md` — FS-01 to FS-26 (Unbounded, Excessive Agency, Supply Chain, Training Poisoning, Vector Weaknesses); FS-17, FS-18, FS-19, FS-23 merged into upstream
-- `SECURITY_CHECKS_FINSERV_PART2_GUARDRAILS_CONTENT_SAFETY.md` — FS-27 to FS-46 (Non-Compliant, Misinformation, Abusive, Biased, Sensitive Info)
-- `SECURITY_CHECKS_FINSERV_PART3_APP_LAYER_AND_GAPS.md` — FS-47 to FS-69 (Hallucination, Prompt Injection, Output Handling, Off-Topic, Stale Data, Material Gaps); FS-64 merged into upstream
-
-Together, Parts 1-3 plus this common file replace the earlier single-file `SECURITY_CHECKS_FINSERV_ADDITION.md`.
-
-## About the source
-
-The 69 FS checks are derived from the [AWS guide for Financial Services risk management of the
-use of Generative AI (March 2026)](https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf)
-(referred to throughout as "the FinServ Guide").
-
-Each check includes how it is **detected** (the AWS API calls or configuration inspected)
-and how a failure is **remediated** (the specific AWS actions to take).
-
-## PDF traceability
-
-The FinServ Guide organises AI-specific risks into **15 categories** (§1.2.1 through §1.2.15
-in the PDF). Every check below is tagged with one of:
-
-- **[PDF §x.y.z]** — mitigation is explicitly listed in that PDF section's "Mitigations or controls"
-  table or "Practical guidance" callout.
-- **[PDF §x.y.z, extension]** — mitigation is consistent with the PDF's risk description but is
-  not verbatim in the PDF; included because it is a widely-accepted AWS best practice for the
-  same risk. These are labelled so reviewers know the provenance.
-
-## Severity rubric
-
-Severities follow a documented **Likelihood × Impact** methodology mapped to the AWS Security Hub
-ASFF label set (`Informational | Low | Medium | High`; `Critical` is reserved, not used this
-round). The full methodology, the 3×3 scoring matrix, the N/A **disposition rules**, and the
-authoritative per-finding assignments are in
-[`SECURITY_CHECKS_FINSERV_SEVERITY_METHODOLOGY.md`](./SECURITY_CHECKS_FINSERV_SEVERITY_METHODOLOGY.md)
-and [`SECURITY_CHECKS_FINSERV_SEVERITY_REGISTER.md`](./SECURITY_CHECKS_FINSERV_SEVERITY_REGISTER.md).
-
-| Severity | Criteria (ASFF-aligned) |
-|---|---|
-| **High** | Control whose absence can lead to direct regulatory breach, data exposure, large-scale financial loss, or full bypass of safety guardrails. |
-| **Medium** | Control whose absence materially increases the likelihood or impact of a risk category but does not by itself produce a breach. |
-| **Low** | Control that reduces residual risk or supports audit/observability but has alternative or compensating controls. |
-| **Informational** | No actionable issue is asserted. Used for three dispositions: (1) **NOT_APPLICABLE** — the control's resource type is absent (e.g., no Knowledge Bases, no guardrails); (2) **ADVISORY** — the control cannot be verified via AWS APIs and requires human review (finding name prefixed `ADVISORY:`); (3) checks awaiting manual verification. |
-
-> **Disposition rules (how a finding's severity is set):** severity is a property of the *control*
-> (its Likelihood × Impact), applied to that control's `Passed` and `Failed` rows alike. The `N/A`
-> family is fixed by disposition: **NOT_APPLICABLE → Informational**, **ADVISORY → Informational**,
-> **COULD_NOT_ASSESS** (access denied / unsupported region) **→ Low**. The legacy "Advisory" tier in
-> earlier revisions of this document is reconciled to the **Informational** label + `N/A` status +
-> `ADVISORY:` name prefix.
-
-## Validation note
-
-Detection and remediation guidance in this document was systematically validated against the
-FinServ Guide (March 2026), current AWS documentation, API references, and AWS announcements as
-of April 2026. IAM action names were verified against the AWS Service Authorization Reference
-for [Amazon Bedrock](https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonbedrock.html),
-[Amazon Bedrock AgentCore](https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonbedrockagentcore.html),
-and [Amazon OpenSearch Serverless](https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonopensearchserverless.html)
-(note: the OpenSearch Serverless IAM prefix is `aoss:`, not `opensearchserverless:` — the latter
-is the boto3 client name).
-CloudWatch metric namespaces were verified against the service-specific monitoring docs (Bedrock,
-Bedrock Agents, Bedrock Guardrails, SageMaker Model Monitor, SageMaker Clarify). CloudTrail
-event-type classification (management vs data) for Bedrock API operations was verified against the
-[Bedrock CloudTrail integration guide](https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html).
-Cost Anomaly Detection monitor-type values were verified against the
-[AnomalyMonitor API reference](https://docs.aws.amazon.com/aws-cost-management/latest/APIReference/API_AnomalyMonitor.html).
-Where AWS does not prescribe a specific value (e.g., grounding thresholds), this is explicitly
-called out as an assessment recommendation rather than an AWS requirement. AWS regional
-availability of new features (Automated Reasoning, AgentCore Policy, AWS Security Agent,
-cross-account guardrails) evolves rapidly — region lists in Parts 1-3 reflect the state at the
-cited announcement date and should be re-verified before audit reliance.
-
-## Contribution workflow
-
-The FS checks are contributed upstream as a single pull request via a personal GitHub fork
-of `aws-samples/sample-aiml-security-assessment`. The full 9-step process — feature-request
-GitHub issue, fork + feature branch, local ASH security scan, Conventional Commits, PR,
-GitHub Actions verification, reviewer assignment, and (only if needed) Git Defender
-exception — lives in [`GIT_WORKFLOW.md`](./GIT_WORKFLOW.md) at the repository root. A
-condensed version is in the `Git Workflow` section of [`IMPLEMENTATION_PLAN.md`](./IMPLEMENTATION_PLAN.md).
-
-Key quality gates before opening the PR (see `GIT_WORKFLOW.md` Step 5):
-
-1. `ruff check` and `ruff format --check` pass on `functions/security/finserv_assessments/`.
-2. `cfn-lint` and `sam validate --lint` pass on the SAM templates.
-3. [ASH v3](https://awslabs.github.io/automated-security-helper/) scan
-   (`ash --source-dir . --fail-on-findings --config-overrides
-   'global_settings.severity_threshold=MEDIUM'`) reports zero Critical / High findings,
-   or suppressions are documented in `.ash/.ash.yaml`.
-4. Amazon Code Defender (`git defender scan`) reports no secrets in the staged diff.
-
-Because `aws-samples` is an OSPO-managed organization, pushes to your personal fork of
-`aws-samples/*` are auto-allowed by Code Defender — a Git Defender exception ticket is
-**not expected** for this contribution.
-
-## Relationship to upstream SM/BR/AC checks
-
-The upstream [sample-aiml-security-assessment](https://github.com/aws-samples/sample-aiml-security-assessment)
-framework already provides 52 security checks (SM-01 to SM-25, BR-01 to BR-14, AC-01 to AC-13).
-The 69 FS checks in this document are **additive**: they enhance the upstream with FinServ-specific
-detection and remediation guidance drawn from the AWS FinServ GenAI Guide (March 2026). A few FS
-checks overlap with upstream checks — in those cases, the FS check adds FinServ-specific depth
-(e.g., protected-attribute facets, regulatory cadence requirements, denied-topic content for
-financial advice). The table below surfaces each overlap with a systematic recommendation based
-on five factors: (1) whether the detection target is the same AWS resource/configuration, (2)
-whether the FS check adds FinServ-specific regulatory specificity, (3) severity differentiation,
-(4) whether a customer would remediate them differently, and (5) PDF-traceability value.
-
-**Recommendation values:**
-
-- **Extend upstream** — merge FS detection/remediation detail into the upstream check; do not ship FS as a standalone entry in the final report. Best when both checks target the same resource and the FS content is an enhancement.
-- **Keep separate** — ship as a standalone FS check alongside the upstream check. Best when the FS check targets a different AWS resource, has materially different severity, or encodes a FinServ-specific regulatory requirement that would be diluted by merging.
-
-| FS check | Upstream check | Overlap analysis | Recommendation |
-|---|---|---|---|
-| FS-17 (Model Monitor Data Quality) | SM-07 (Model Monitor) | Same resource (`sagemaker:ListMonitoringSchedules`); FS-17 adds training-data-drift-specific guidance, exact CloudWatch namespace (`/aws/sagemaker/Endpoints/data-metric`), and `emit_metrics` requirement. | **Extend SM-07** — add FS-17's detection detail (namespace, `emit_metrics`) as a refinement of the existing check |
-| FS-18 (Model Drift Detection) | SM-23 (Model Drift Detection) | Same name, same resource, same detection logic (`MonitoringType=ModelQuality`). FS-18 adds PDF §1.2.14 low-entropy classification monitoring as an early-warning poisoning indicator. | **Extend SM-23** — add low-entropy monitoring as a new remediation step on SM-23; do not ship FS-18 separately |
-| FS-19 (Model Registry Approval) | SM-08 (Model Registry) / SM-22 (Model Approval Workflow) | SM-22 is conceptually identical. FS-19 specifies exact `ModelApprovalStatus=PendingManualApproval` default and flags auto-approved latest versions. | **Extend SM-22** — add FS-19's detection specificity (flag auto-approved latest versions) to SM-22; do not ship FS-19 separately |
-| FS-20 (Feature Store Rollback) | SM-15 (Feature Store Encryption) | Different security properties on the same resource: SM-15 checks encryption; FS-20 checks `OfflineStoreConfig` presence for point-in-time rollback. | **Keep separate** — different security property; no true overlap |
-| FS-39 (SageMaker Clarify Bias) | SM-06 (Clarify Usage) | Same resource family but SM-06 is Severity Low and generic ("validates Clarify for bias detection"); FS-39 is Severity High with specific `MonitoringType=ModelBias`, protected-attribute facets (age/gender/race/geography), and specific bias metrics (DPL, DI, DPPL) for FinServ decision models. | **Keep separate** — severity, detection specificity, and FinServ regulatory context (ECOA/Fair Housing) warrant a standalone check |
-| FS-41 (SageMaker Clarify Explainability) | SM-06 (Clarify Usage) | Same as FS-39 but for `MonitoringType=ModelExplainability`. FS-41 is Severity High with SHAP analysis for adverse-action-notice use cases. | **Keep separate** — severity and adverse-action-notice regulatory context justify a standalone check |
-| FS-22 (KB IAM Least Privilege) | BR-01 (IAM Least Privilege) | BR-01 detects the managed policy `AmazonBedrockFullAccess` on any role. FS-22 inspects role policy documents for wildcard `bedrock:*` affecting KB actions and requires ARN-scoped resource restrictions. | **Keep separate** — different detection logic (managed-policy attachment vs policy-document statement analysis); FS-22 fills a detection gap BR-01 does not cover |
-| FS-23 (KB CloudTrail Logging) | BR-06 (CloudTrail Logging) | BR-06 verifies CloudTrail is logging Bedrock API calls generally. FS-23 specifically requires an advanced event selector for `AWS::Bedrock::KnowledgeBase` to capture `Retrieve`/`RetrieveAndGenerate` data events (NOT logged by default). | **Extend BR-06** — add FS-23's data-event-selector requirement as a refinement of the same CloudTrail check |
-| FS-25 (OpenSearch Serverless Encryption) | BR-09 (Knowledge Base Encryption) | Different AWS resources: BR-09 checks the Bedrock KB's `kmsKeyArn`; FS-25 checks the underlying AOSS collection's encryption policy (`aoss:ListSecurityPolicies(type=encryption)`). A KB can be CMK-encrypted while its vector store is not. | **Keep separate** — different AWS resources with independent encryption configurations; both needed for defense-in-depth |
-| FS-26 (KB VPC Access) | BR-02 (VPC Endpoint Configuration) | BR-02 checks Bedrock VPC endpoints exist. FS-26 checks the AOSS collection's network policy for `AllowFromPublic=true` (whether the vector store itself is internet-reachable). | **Keep separate** — orthogonal controls: Bedrock VPC endpoint vs vector-store network policy |
-| FS-27 (Automated Reasoning / Contextual Grounding) | BR-05 (Guardrail Configuration) | BR-05 verifies a guardrail exists and is enforced. FS-27 checks for `automatedReasoningPolicy` or `contextualGroundingPolicy` with specific threshold (≥ 0.7). | **Keep separate** — policy-level guardrail content BR-05 does not evaluate |
-| FS-28 (Financial Denied Topics) | BR-05 | BR-05 is existence; FS-28 inspects `topicPolicy.topics` for FinServ-specific denied topics (investment advice, tax advice, guaranteed returns). | **Keep separate** — FinServ denied-topic content is a regulatory-specific requirement not representable as a generic extension |
-| FS-36 (Guardrail Content Filters) | BR-05 | FS-36 inspects `contentPolicy.filters` for HATE/VIOLENCE/SEXUAL/INSULTS/MISCONDUCT/PROMPT_ATTACK with strength ≥ MEDIUM. | **Keep separate** — policy-level detection BR-05 does not cover |
-| FS-38 (Word Filters and Allowlists) | BR-05 | FS-38 inspects `wordPolicy.words` and `managedWordLists` for FinServ business-term allowlist guidance. | **Keep separate** — advisory business-term allowlist has no upstream equivalent |
-| FS-45 (Guardrail PII Filters) | BR-05 | FS-45 inspects `sensitiveInformationPolicy.piiEntities` for 12 specific PII types critical to FinServ (SSN, bank account, SWIFT code, etc.) with `inputAction=BLOCK`/`outputAction=ANONYMIZE`. | **Keep separate** — FinServ-specific PII entity list is a distinct regulatory requirement |
-| FS-47 (Grounding Threshold) | BR-05 | FS-47 checks `contextualGroundingPolicy.filters` for `GROUNDING` filter with threshold ≥ 0.7. | **Keep separate** — threshold-value check BR-05 does not perform |
-| FS-50 (Relevance Grounding Filters) | BR-05 | Same as FS-47 but for `RELEVANCE` filter type. | **Keep separate** — distinct filter type |
-| FS-51 (Prompt Attack Filters) | BR-05 | FS-51 checks `PROMPT_ATTACK` filter in Standard tier with input-tagging requirement and `inputStrength=HIGH`. | **Keep separate** — Standard-tier cross-region-inference opt-in and input-tagging nuance warrant standalone guidance |
-| FS-59 (Guardrail Topic Allowlist) | BR-05 | FS-59 checks `topicPolicy.topics` exist to block off-topic conversations (politics, entertainment, medical advice). | **Keep separate** — off-topic content restrictions are distinct from FS-28's regulated-advice restrictions; different PDF section (§1.2.2 vs §1.2.1) |
-| FS-64 (Guardrail Trace Logging) | BR-04 (Model Invocation Logging) | BR-04 verifies invocation logging is enabled. FS-64 additionally verifies the log output captures `guardrailTrace` with `action`/`inputAssessments`/`outputAssessments` and adds NYDFS/SR 11-7 retention guidance. | **Extend BR-04** — add guardrail-trace verification as a refinement of the same invocation-logging check; retention guidance can be a remediation note |
-
-### Summary of consolidation recommendations
-
-- **Extend upstream (5 FS checks merged into 5 upstream checks):** FS-17 → SM-07; FS-18 → SM-23; FS-19 → SM-22; FS-23 → BR-06; FS-64 → BR-04. These checks are replaced by upstream-extension notes in Parts 1 and 3 and are removed from `finserv_assessments/app.py`.
-- **Keep separate (64 FS checks):** All other FS checks ship as standalone entries. This includes FS-20, FS-22, FS-25, FS-26, FS-39, FS-41, all Guardrail-policy-level checks (FS-27, FS-28, FS-36, FS-38, FS-45, FS-47, FS-50, FS-51, FS-59), and all FS checks that have no upstream overlap at all.
-
-After consolidation the combined framework contains **52 upstream + 64 FS = 116 distinct checks** (down from 52 + 69 = 121 before merging). The consolidation reduces duplication without losing FinServ-specific regulatory depth.
-
-
----
-
-## Compliance Framework Mapping
-
-> **Disclaimer:** The mappings below are **preliminary and illustrative**, provided by the
-> authors of this assessment to help FSI teams start conversations with their MRM/compliance
-> colleagues. They are **not** authoritative AWS compliance guidance and they have **not** been
-> reviewed by AWS Security Assurance Services, external auditors, or the regulators whose
-> frameworks are named. Each firm should have its own MRM, Legal, and Compliance teams
-> validate these mappings against the firm's specific interpretation of each framework before
-> relying on them as audit evidence.
-
-Each FS check maps to one or more FinServ regulatory frameworks (preliminary mapping):
-
-| Framework | Description | Relevant Checks |
-|-----------|-------------|-----------------|
-| SR 11-7 | Federal Reserve Model Risk Management Guidance | FS-07, FS-10, FS-12 to FS-16, FS-20, FS-21, FS-27 to FS-33, FS-34, FS-39 to FS-42, FS-66, FS-67 |
-| FFIEC CAT | Cybersecurity Assessment Tool | All FS checks |
-| NYDFS 500 | NY Cybersecurity Regulation | FS-22, FS-43 to FS-46, FS-51 to FS-54, FS-66 |
-| PCI-DSS | Payment Card Industry Data Security Standard | FS-22, FS-25, FS-26, FS-43 to FS-46, FS-53, FS-56, FS-67, FS-68 |
-| DORA | EU Digital Operational Resilience Act | FS-01 to FS-06, FS-08, FS-11, FS-54, FS-65, FS-68 |
-| MAS TRM 9 | Monetary Authority of Singapore Technology Risk Management | FS-07 to FS-11, FS-15, FS-27 to FS-30, FS-32, FS-37, FS-39 to FS-42, FS-66, FS-67 |
-| ISO 27001 | Information Security Management | FS-13, FS-14, FS-16, FS-21, FS-33, FS-46, FS-52, FS-63, FS-65 |
-| ECOA/Fair Housing | Equal Credit Opportunity Act (US) | FS-39 to FS-42 (advisory — applicability depends on whether the model is used for ECOA-covered credit decisions; confirm with your compliance team) |
-| OWASP LLM Top 10 | OWASP LLM Application Security | FS-51 to FS-58, FS-68, FS-69 |
-
-> **FS-34 note:** FS-34 (TPRM for FM Providers) is listed above under SR 11-7. Although the
-> check appears in the Misinformation section of Part 2 for numbering continuity, its
-> primary PDF source is §1.2.12 Supply Chain, which is the lens MRM and TPRM teams will
-> evaluate it through.
diff --git a/docs/SECURITY_CHECKS_FINSERV_PART1_INFRA_CONTROLS.md b/docs/SECURITY_CHECKS_FINSERV_PART1_INFRA_CONTROLS.md
deleted file mode 100644
index 1cdf554..0000000
--- a/docs/SECURITY_CHECKS_FINSERV_PART1_INFRA_CONTROLS.md
+++ /dev/null
@@ -1,400 +0,0 @@
-# FinServ GenAI Risk Checks — Part 1: Infrastructure & Resource Controls (FS-01 to FS-26)
-
-This is **Part 1 of 3** of the FinServ GenAI security checks derived from the
-[AWS guide for Financial Services risk management of the use of Generative AI (March 2026)](https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf)
-(referred to throughout as "the FinServ Guide").
-
-This part covers **22 standalone checks** across 5 PDF risk categories (FS-17, FS-18, FS-19, and FS-23 are merged into upstream checks — see extension notes in each section):
-
-- **Unbounded Consumption** (FS-01 to FS-06) — §1.2.11
-- **Excessive Agency** (FS-07 to FS-11) — §1.2.9
-- **Supply Chain Vulnerabilities** (FS-12 to FS-16) — §1.2.12
-- **Training Data & Model Poisoning** (FS-17 to FS-21) — §1.2.14 — *FS-17, FS-18, FS-19 merged into upstream*
-- **Vector & Embedding Weaknesses** (FS-22 to FS-26) — §1.2.15 — *FS-23 merged into upstream*
-
-**Companion files:**
-
-- `SECURITY_CHECKS_FINSERV_PART2_GUARDRAILS_CONTENT_SAFETY.md` — FS-27 to FS-46 (Non-Compliant, Misinformation, Abusive, Biased, Sensitive Info)
-- `SECURITY_CHECKS_FINSERV_PART3_APP_LAYER_AND_GAPS.md` — FS-47 to FS-69 (Hallucination, Prompt Injection, Output Handling, Off-Topic, Stale Data, Material Gaps)
-- `SECURITY_CHECKS_FINSERV_COMMON.md` — shared intro, severity rubric, validation note, upstream-overlap table
-
-Each check includes how it is **detected** (the AWS API calls or configuration inspected)
-and how a failure is **remediated** (the specific AWS actions to take).
-
-See `SECURITY_CHECKS_FINSERV_COMMON.md` for:
-
-- PDF traceability conventions (`[PDF §x.y.z]` vs `[PDF §x.y.z, extension]`)
-- Severity rubric (High / Medium / Low / Informational) — see SECURITY_CHECKS_FINSERV_SEVERITY_METHODOLOGY.md
-- Validation note and AWS service authorization references
-- Relationship to upstream SM/BR/AC checks and consolidation recommendations
-
----
-
-## FinServ GenAI Risk Checks — Part 1 content
-
-### Unbounded Consumption (FS-01 to FS-06)
-
-> **PDF source:** §1.2.11 Unbounded consumption. PDF-listed mitigations: (a) AWS WAF and Shield
-> Advanced for LLM APIs; (b) maximum input length limits; (c) rate limits/quotas on APIs
-> accessing LLMs; (d) cost-and-usage tracking for generative AI. Practical guidance in the PDF
-> also calls out `max_tokens` optimisation and CloudWatch metrics for token usage.
-
-#### FS-01 — WAF and Shield Protection
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium (WAF) / Low (Shield Advanced) |
-| PDF ref | [PDF §1.2.11] — "Protect your LLM APIs and Amazon Bedrock-hosted LLMs by using AWS WAF and AWS Shield Advanced." Also covers: "To protect your API endpoints, set maximum length limits for input requests when you use large language models (LLMs) directly or through Amazon Bedrock." |
-| Description | Verifies AWS WAF Web ACLs and Shield Advanced protect GenAI API endpoints, and verifies the Web ACL enforces both rate-based limits and body-size (input-length) constraints. |
-| Detection | Calls `shield:DescribeSubscription` to check Shield Advanced is active. Calls `wafv2:ListWebACLs(Scope=REGIONAL)` in each region where GenAI API endpoints run to verify at least one regional Web ACL exists (covers API Gateway, ALB, AppSync). **Additionally** calls `wafv2:ListWebACLs(Scope=CLOUDFRONT)` in `us-east-1` to detect Web ACLs protecting CloudFront distributions fronting GenAI workloads — CLOUDFRONT-scope Web ACLs must be created and queried in `us-east-1` per the [WAF resources documentation](https://docs.aws.amazon.com/waf/latest/developerguide/how-aws-waf-works-resources.html). For each Web ACL found, calls `wafv2:GetWebACL` and inspects the `Rules` array for: (a) at least one `RateBasedStatement` (rate limiting) and (b) at least one `SizeConstraintStatement` with `FieldToMatch=Body` or `FieldToMatch=JsonBody` (input-size limit — this implements PDF §1.2.11 mitigation "set maximum length limits for input requests when you use large language models (LLMs) directly or through Amazon Bedrock"). Flags accounts with no Web ACL in either scope, a Web ACL with no rate-based rule, a Web ACL with no body size-constraint rule, or where Shield Advanced is inactive. |
-| Remediation | 1. Subscribe to AWS Shield Advanced via the Shield console. 2. Create a WAF Web ACL with both (a) a rate-based rule (e.g., 1 000 req / 5 min per IP) and (b) a `SizeConstraintStatement` that blocks requests where `FieldToMatch=Body` (or `JsonBody` for JSON APIs) exceeds your LLM's expected maximum input size — for example, `ComparisonOperator=GT, Size=100000` (100 KB) — use `Scope=REGIONAL` for API Gateway/ALB/AppSync resources, or `Scope=CLOUDFRONT` (created in `us-east-1`) for CloudFront distributions fronting Bedrock. The body size-constraint rule directly implements the PDF §1.2.11 mitigation "set maximum length limits for input requests when you use large language models (LLMs) directly or through Amazon Bedrock" and prevents large-prompt token-exhaustion attacks before they reach Bedrock. 3. Associate the ACL with the fronting resource (API Gateway stage, ALB, or CloudFront distribution). 4. Add AWS Managed Rules (e.g., `AWSManagedRulesCommonRuleSet`, which includes additional size checks). 5. For CloudFront-fronted workloads, register the distribution with Shield Advanced via `shield:CreateProtection` to unlock automatic application-layer DDoS mitigation. 6. For API Gateway REST APIs, also note the service's own payload-size quota: the default is 10 MB per request (see [API Gateway quotas](https://docs.aws.amazon.com/apigateway/latest/developerguide/api-gateway-execution-service-limits-table.html)); use a request validator or Lambda authorizer for sub-10 MB limits where WAF size constraints are unsuitable. |
-| Reference | [Shield Advanced](https://docs.aws.amazon.com/waf/latest/developerguide/shield-chapter.html), [WAF](https://docs.aws.amazon.com/waf/latest/developerguide/waf-chapter.html), [WAF Size Constraint Rule](https://docs.aws.amazon.com/waf/latest/developerguide/waf-rule-statement-type-size-constraint-match.html), [API Gateway Quotas](https://docs.aws.amazon.com/apigateway/latest/developerguide/api-gateway-execution-service-limits-table.html) |
-
-#### FS-02 — API Gateway Rate Limiting
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.11] — "protect your API endpoints by implementing rate limits and quotas for APIs that access large language models (LLMs)". |
-| Description | Checks API Gateway usage plans enforce throttling on GenAI endpoints. |
-| Detection | Calls `apigateway:GetUsagePlans` and inspects each plan's `throttle.rateLimit` and `throttle.burstLimit`. Flags plans where either is zero or absent. |
-| Remediation | 1. Create or update usage plans with `rateLimit` and `burstLimit` values appropriate for your traffic. 2. Associate plans with API stages serving Bedrock. 3. Issue per-consumer API keys with individual quotas. |
-| Reference | [API Gateway Throttling](https://docs.aws.amazon.com/apigateway/latest/developerguide/api-gateway-request-throttling.html) |
-
-#### FS-03 — Bedrock Token Quota Review
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.11, extension] — PDF practical guidance notes "Bedrock has default quota on model inference based on token usage" and recommends optimising `max_tokens`. Quota review as an operational control is an extension aligned with this guidance. |
-| Description | Verifies Bedrock TPM/RPM quotas have been reviewed and set appropriately. |
-| Detection | Calls `service-quotas:ListServiceQuotas(ServiceCode=bedrock)` for applied quotas and `ListAWSDefaultServiceQuotas` for defaults, then compares each adjustable quota's `Value` against the default `Value`. Flags accounts where every quota equals the service default (indicating no quota review or increase has been requested). |
-| Remediation | 1. Review current quotas in the Service Quotas console. 2. Request increases aligned with expected peak load via `service-quotas:RequestServiceQuotaIncrease`. 3. Implement client-side token counting and pre-flight quota checks. 4. Use Bedrock cross-region inference profiles to distribute load — note that cross-region inference routes requests across destination regions automatically with no additional cost, but requires the invoked model to be available in the destination regions defined in the inference profile. |
-| Reference | [Bedrock Quotas](https://docs.aws.amazon.com/bedrock/latest/userguide/quotas.html) |
-
-#### FS-04 — Cost Anomaly Detection
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.11] — "Track, allocate, and manage your costs and usage for generative AI." |
-| Description | Checks AWS Cost Anomaly Detection monitors cover Bedrock/SageMaker. |
-| Detection | Calls `ce:GetAnomalyMonitors` and inspects each monitor. AWS Cost Anomaly Detection supports exactly two `MonitorType` values per the [AnomalyMonitor API](https://docs.aws.amazon.com/aws-cost-management/latest/APIReference/API_AnomalyMonitor.html): `DIMENSIONAL` (AWS-managed, where `MonitorDimension` is one of `SERVICE`, `LINKED_ACCOUNT`, `TAG`, or `COST_CATEGORY`) and `CUSTOM` (customer-managed, scoped via `MonitorSpecification` to specific values). For `DIMENSIONAL` monitors, checks `MonitorDimension=SERVICE` (the AWS-managed "AWS services" monitor that automatically covers all services including Bedrock and SageMaker — the recommended default). For `CUSTOM` monitors, inspects `MonitorSpecification` for references to Bedrock or SageMaker. Flags accounts with no monitors, or with only narrowly-scoped monitors that would not detect Bedrock cost anomalies (e.g., `DIMENSIONAL` with `MonitorDimension=LINKED_ACCOUNT` only). |
-| Remediation | 1. Create an AWS-managed `DIMENSIONAL` monitor with `MonitorDimension=SERVICE` for comprehensive coverage across all AWS services (the recommended default — in the console this appears as "AWS services" under "Managed by AWS"). For narrower scope, add a `CUSTOM` monitor using `MonitorSpecification` with a `Dimensions` expression scoped to specific service values (e.g., `{"Dimensions": {"Key": "SERVICE", "Values": ["Amazon Bedrock", "Amazon SageMaker"]}}`) — note that for `CUSTOM` monitors you use `MonitorSpecification`, not `MonitorDimension`. 2. Configure alert subscriptions (SNS/email) for anomalies above threshold. 3. Set daily spend budgets with AWS Budgets as a secondary control. 4. Enable Bedrock IAM principal cost allocation: tag IAM users/roles with team or cost-center attributes, activate them as cost allocation tags in the Billing and Cost Management console, and include caller identity data in CUR 2.0 exports for per-user/per-team Bedrock spend attribution. |
-| Reference | [Cost Anomaly Detection](https://docs.aws.amazon.com/cost-management/latest/userguide/getting-started-ad.html), [Bedrock IAM Cost Allocation](https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/iam-principal-cost-allocation.html) |
-
-#### FS-05 — CloudWatch Token Usage Alarms
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.11] — PDF practical guidance cites CloudWatch metrics for token usage; alarms operationalise that guidance. |
-| Description | Verifies CloudWatch alarms exist for Bedrock throttling and token metrics. |
-| Detection | Paginates `cloudwatch:DescribeAlarms(AlarmTypes=MetricAlarm)` and filters for alarms in the `AWS/Bedrock` namespace or with "bedrock" in the alarm name. Separately counts throttle-specific alarms. |
-| Remediation | 1. Create alarms for `AWS/Bedrock InvocationThrottles` (threshold > 0). 2. Create alarms for `AWS/Bedrock EstimatedTPMQuotaUsage` to track approach to token quota limits, and separately on `InputTokenCount` + `OutputTokenCount` (sum via CloudWatch metric math) for absolute token consumption. Note: `TokensProcessed` is not a valid Bedrock metric — the correct runtime metrics are `InputTokenCount`, `OutputTokenCount`, `InvocationThrottles`, `EstimatedTPMQuotaUsage`, `Invocations`, `InvocationLatency`, `TimeToFirstToken`. 3. Publish custom application-level token counters via Embedded Metric Format (EMF) if you need per-tenant or per-feature attribution. 4. Attach SNS actions to all alarms. |
-| Reference | [Bedrock CloudWatch Metrics](https://docs.aws.amazon.com/bedrock/latest/userguide/monitoring.html) |
-
-#### FS-06 — AWS Budgets AI/ML Spend
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.11] — "Track, allocate, and manage your costs and usage for generative AI." |
-| Description | Checks AWS Budgets are configured with alerts for AI/ML service spend. |
-| Detection | Calls `budgets:DescribeBudgets` and inspects each budget's `FilterExpression` (the current field) and `CostFilters` (deprecated but may still be populated on older budgets) for references to "bedrock" or "sagemaker". Note: `CostFilters` is marked deprecated in the AWS Budgets API — new budgets use `FilterExpression` with an `Expression` object; the detection should check both fields to cover both old and new budgets. |
-| Remediation | 1. Create cost budgets for Bedrock and SageMaker with 80 %/100 % alert thresholds. 2. Add SNS notifications to on-call channels. 3. Consider budget actions to apply IAM deny policies when thresholds are breached. 4. Enable Bedrock IAM principal cost allocation to attribute inference costs to specific IAM users/roles via Cost Explorer and CUR 2.0 — tag IAM principals with team or cost-center attributes and activate them as cost allocation tags. |
-| Reference | [AWS Budgets](https://docs.aws.amazon.com/cost-management/latest/userguide/budgets-managing-costs.html), [Bedrock IAM Cost Allocation](https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/iam-principal-cost-allocation.html) |
-
-### Excessive Agency (FS-07 to FS-11)
-
-> **PDF source:** §1.2.9 Excessive agency. PDF-listed mitigations: (a) Amazon Bedrock AgentCore
-> for managing complex tasks; (b) least-privilege permissions on plugins; (c) human-in-the-loop
-> output validation; (d) explicit action boundaries in agent configuration (AgentCore Policy);
-> (e) audit logging of agent actions with reasoning chain (AgentCore Observability);
-> (f) transaction-value thresholds on agent tool calls; (g) monitoring agent call rates with
-> alarms (AgentCore Evaluations). Mitigation (e) is covered by the expanded FS-08 check, which
-> now verifies both AgentCore Policy Engine and AgentCore Observability are configured.
-
-#### FS-07 — Agent Action Boundaries
-
-| Field | Detail |
-|-------|--------|
-| Severity | High |
-| PDF ref | [PDF §1.2.9] — "grant only the minimum permissions required"; "Define and enforce explicit action boundaries in the agent configuration". |
-| Description | Verifies Bedrock agent execution roles have no wildcard sensitive actions (iam:\*, s3:\*, ec2:\*, lambda:\*, \*). |
-| Detection | Calls `ListAgents` and `GetAgent` (via the `bedrock-agent` boto3 client; IAM actions are `bedrock:ListAgents` and `bedrock:GetAgent`) to retrieve each agent's `agentResourceRoleArn`. Resolves the role name and inspects attached and inline policy documents from the permissions cache for wildcard Allow statements. |
-| Remediation | 1. Replace wildcard actions with the specific actions the agent needs. 2. Apply IAM permission boundaries to agent execution roles. 3. Use resource-level conditions to restrict to specific ARNs. 4. Implement human-in-the-loop approval for high-impact actions. 5. For agents deployed in a VPC, use **AWS Network Firewall** with domain-based filtering to control which external domains agents can reach — this provides a network-layer boundary that limits agent tool access to approved endpoints regardless of IAM permissions. |
-| Reference | [Bedrock Agent Permissions](https://docs.aws.amazon.com/bedrock/latest/userguide/agents-permissions.html), [Control Agent Domain Access](https://aws.amazon.com/blogs/machine-learning/control-which-domains-your-ai-agents-can-access/) |
-
-#### FS-08 — AgentCore Policy Engine and Observability
-
-| Field | Detail |
-|-------|--------|
-| Severity | High |
-| PDF ref | [PDF §1.2.9] — "Use Amazon Bedrock AgentCore to manage complex tasks and connect securely"; "Define and enforce explicit action boundaries"; **"Implement audit logging of all actions taken by AI agents, including the reasoning chain that led to each action."** (The audit-logging mitigation's PDF reference is "Observe your agent applications on Amazon Bedrock AgentCore Observability.") |
-| Description | Checks AgentCore Gateways have a Policy Engine attached to authorize agent-to-tool interactions, verifies AgentCore Runtimes have an inbound authorizer configured, and verifies AgentCore Observability is enabled so agent reasoning chains and tool calls are auditable. |
-| Detection | (a) Calls `ListGateways` and `GetGateway` (via the `bedrock-agentcore-control` boto3 client; IAM actions are `bedrock-agentcore:ListGateways` and `bedrock-agentcore:GetGateway`); inspects `policyEngineConfiguration.arn` and `policyEngineConfiguration.mode` (must be `ENFORCE` for production). (b) Calls `ListAgentRuntimes` (IAM action `bedrock-agentcore:ListAgentRuntimes`) and inspects each runtime's `authorizerConfiguration.customJWTAuthorizer` for inbound auth. (c) Verifies **AgentCore Observability** is enabled by (i) checking that CloudWatch Transaction Search is on via `xray:GetTraceSegmentDestination` (destination should be `CloudWatchLogs`) and that the X-Ray → CloudWatch Logs resource policy is in place via `logs:GetResourcePolicy`, and (ii) calling `logs:DescribeDeliveries` / `logs:DescribeDeliverySources` for AgentCore resource sources (runtime, memory, gateway, built-in tools, identity) — flags runtimes/gateways with no log delivery configured. For memory resources, additionally checks that tracing was enabled at memory creation time. Flags gateways without a Policy Engine in `ENFORCE` mode, runtimes without an authorizer, or accounts where Transaction Search is not enabled or no delivery exists for AgentCore resources. |
-| Remediation | 1. Configure a Policy Engine: create via `CreatePolicyEngine` (IAM action `bedrock-agentcore:CreatePolicyEngine`), then author Cedar policies using one of three methods: (a) write Cedar directly for fine-grained control via `CreatePolicy` (IAM action `bedrock-agentcore:CreatePolicy`), (b) use the form-based console UI, or (c) generate Cedar from natural language descriptions (natural-language-to-Cedar is a documented capability in the GA announcement; verify the exact IAM action name against the current [AgentCore Service Authorization Reference](https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonbedrockagentcore.html) before writing IAM policies for it). Policy in AgentCore went GA on March 3, 2026 in thirteen AWS regions (US East N. Virginia, US East Ohio, US West Oregon, Asia Pacific Mumbai/Seoul/Singapore/Sydney/Tokyo, Europe Frankfurt/Ireland/London/Paris/Stockholm) — verify current regional availability on the [launch announcement](https://aws.amazon.com/about-aws/whats-new/2026/03/policy-amazon-bedrock-agentcore-generally-available/) before audit reliance. 2. Attach the Policy Engine to each Gateway by specifying the Policy Engine ARN in the `policyEngineConfiguration` field during `CreateGateway`, or attach later via `UpdateGateway`. 3. Start in `LOG_ONLY` mode — the policy engine evaluates actions and logs whether they would be allowed or denied without enforcing the decision — then switch to `ENFORCE` mode once confident. 4. Configure a JWT inbound authorizer on each Runtime with discovery URL, allowed audiences, and allowed clients. 5. **Enable AgentCore Observability** so agent reasoning chains are captured (directly addresses the PDF §1.2.9 audit-logging mitigation): (a) one-time enable CloudWatch Transaction Search — console path **CloudWatch → Application Signals (APM) → Transaction search → Enable Transaction Search**, or CLI: `aws xray update-trace-segment-destination --destination CloudWatchLogs` plus a `logs:PutResourcePolicy` granting `xray.amazonaws.com` permission to `logs:PutLogEvents` on `aws/spans:*` and `/aws/application-signals/data:*`; (b) configure log delivery for AgentCore runtime, memory, gateway, built-in tools, and identity resources via `logs:PutDeliverySource` + `logs:PutDeliveryDestination` + `logs:CreateDelivery` (CloudWatch Logs / S3 / Firehose destinations supported; note the write APIs use `Put*` for source and destination but `Create*` for the delivery pairing); (c) enable tracing at memory creation. For traditional Bedrock Agents (non-AgentCore), set `enableTrace=true` on `InvokeAgent` calls to receive the reasoning-chain trace in the response. |
-| Reference | [Policy in AgentCore](https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy.html), [Inbound JWT Authorizer](https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/inbound-jwt-authorizer.html), [AgentCore Observability Configuration](https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/observability-configure.html), [Bedrock Agent Trace View](https://docs.aws.amazon.com/bedrock/latest/userguide/trace-view.html) |
-
-#### FS-09 — Agent Transaction Limits
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.9, extension] — Lambda reserved concurrency is not named in the PDF, but it directly implements the PDF mitigation "Monitor agent call rates and alarm upon exceeding defined thresholds" by capping execution parallelism. |
-| Description | Verifies agent Lambda functions have reserved concurrency limits to cap execution parallelism. |
-| Detection | Calls `lambda:ListFunctions` and filters for functions with agent-related naming patterns. For each, calls `lambda:GetFunctionConcurrency` and flags functions with no reserved concurrency set. |
-| Remediation | 1. Set reserved concurrency on each agent action-group Lambda (e.g., 10–50 depending on expected load). 2. Add CloudWatch alarms for `Throttles` metric on these functions. 3. Consider Step Functions execution limits as an additional control. |
-| Reference | [Lambda Reserved Concurrency](https://docs.aws.amazon.com/lambda/latest/dg/configuration-concurrency.html) |
-
-#### FS-10 — Human-in-the-Loop Approval
-
-| Field | Detail |
-|-------|--------|
-| Severity | High |
-| PDF ref | [PDF §1.2.9, §1.2.1, §1.2.2, §1.2.3, §1.2.7, §1.2.10] — "For internal AI systems, validate outputs with human review before business use (human-in-the-loop)." HITL is referenced in six separate PDF risk sections. |
-| Description | Checks Step Functions workflows have human approval steps for high-risk agent actions. |
-| Detection | Calls `stepfunctions:ListStateMachines` and filters for agent/GenAI-related names. Retrieves each definition via `stepfunctions:DescribeStateMachine` and parses the ASL JSON for task states with `.waitForTaskToken` or callback patterns indicating human approval gates. |
-| Remediation | 1. Add a callback-pattern task state in your Step Functions workflow before any high-risk action (financial transactions, data modifications, external communications). 2. Route the approval token to a human reviewer via SNS/SQS/Slack. 3. Set a `HeartbeatSeconds` timeout so stale approvals expire. 4. Enable **user confirmation on Bedrock Agent action groups** for inline approval — when configured, the agent returns a confirmation prompt in the `returnControl.invocationInputs` field of the `InvokeAgent` response (alongside `invocationType` and a unique `invocationId`); the client displays the prompt, collects confirm/deny, and returns the user's decision via `sessionState.returnControlInvocationResults` (with `confirmationState` on each `apiResult`/`functionResult`) in the next `InvokeAgent` request (there is no standalone `GetUserConfirmation` API). |
-| Reference | [Step Functions Callback Pattern](https://docs.aws.amazon.com/step-functions/latest/dg/connect-to-resource.html#connect-wait-token), [Bedrock Agent User Confirmation](https://docs.aws.amazon.com/bedrock/latest/userguide/agents-userconfirmation.html) |
-
-#### FS-11 — Agent Rate Alarms
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.9] — "Monitor agent call rates and alarm upon exceeding defined thresholds." |
-| Description | Verifies CloudWatch alarms exist for agent invocation rates. |
-| Detection | Paginates `cloudwatch:DescribeAlarms` and filters for alarms referencing "agent" in the alarm name or targeting `AWS/Bedrock/Agents` agent-related metrics (such as `InvocationCount` or `InvocationThrottles` with the `Operation, AgentAliasArn, ModelId` dimension combination). |
-| Remediation | 1. Create CloudWatch alarms on the `AWS/Bedrock/Agents` namespace for `InvocationCount` and `InvocationThrottles`. Per AWS docs, the available dimensions are: `Operation` alone; `Operation, ModelId`; or `Operation, AgentAliasArn, ModelId` — use the `Operation, AgentAliasArn, ModelId` combination to scope alarms to a specific agent alias. 2. Set thresholds based on expected peak agent call rates, established via CloudWatch metric math on historical `InvocationCount` data. 3. Attach SNS actions for on-call notification. 4. Use **AgentCore Evaluations** (GA March 2026, available in 9 AWS regions — verify current regional availability on the [GA announcement](https://aws.amazon.com/about-aws/whats-new/2026/03/agentcore-evaluations-generally-available/)) to monitor agent *quality* alongside rate-based alarms: online evaluation continuously scores production traffic against 13 built-in evaluators (response quality, safety, task completion, tool usage), and on-demand evaluation supports regression testing. |
-| Reference | [Bedrock Agents CloudWatch Metrics](https://docs.aws.amazon.com/bedrock/latest/userguide/monitoring-agents-cw-metrics.html), [AgentCore Evaluation Types](https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/evaluations-types.html) |
-
-### Supply Chain Vulnerabilities (FS-12 to FS-16)
-
-> **PDF source:** §1.2.12 Supply chain vulnerabilities. PDF-listed mitigations:
-> (a) control access to serverless and marketplace models (IAM policies, SCPs);
-> (b) model onboarding process — EULA review, procurement, security/compliance review,
-> MRM assessment, documentation, stakeholder approvals;
-> (c) update TPRM to continuously monitor model providers — vendor security advisories,
-> deprecation notices, T&C changes;
-> (d) maintain a model inventory recording provenance, version, license terms, and risk
-> assessment status;
-> (e) use Bedrock Evaluations against attack test cases (practical guidance);
-> (f) allow-list approved models via SCP (practical guidance).
-
-#### FS-12 — SCP Model Access Restrictions
-
-| Field | Detail |
-|-------|--------|
-| Severity | High |
-| PDF ref | [PDF §1.2.12 — Practical guidance] — "Implement an allow-list of models using a Service Control Policy (SCP) for your AWS organization." |
-| Description | Checks SCPs restrict Bedrock model access to approved models only. |
-| Detection | Calls `organizations:ListPolicies(Filter=SERVICE_CONTROL_POLICY)` and inspects each SCP document for Deny statements on `bedrock:InvokeModel*` with `StringNotEquals` conditions on `bedrock:ModelId`. Flags if no SCP restricts model access. |
-| Remediation | 1. Create an SCP that denies `bedrock:InvokeModel*` except for an explicit allowlist of approved model ARNs. 2. Attach the SCP to the OU containing GenAI workload accounts. 3. For multi-account guardrail enforcement, use the Bedrock cross-account safeguards feature (GA April 3, 2026, available in all AWS commercial and GovCloud regions where Bedrock Guardrails is supported): enable the Amazon Bedrock policy type in AWS Organizations, create a guardrail in the management account, create a versioned guardrail, optionally attach a resource-based policy granting `bedrock:ApplyGuardrail` to member accounts for cross-account access, then create and attach an AWS Organizations Bedrock policy referencing the guardrail ARN and version to the target OUs or accounts. This automatically enforces content filters, denied topics, word filters, sensitive information filters, and contextual grounding checks across all member accounts for every model invocation — no application code changes required. **Important limitation:** Automated Reasoning checks are **not supported** with cross-account safeguards — omit Automated Reasoning policies from any guardrail used for org-level enforcement. If you rely on AR (see FS-27), you must configure AR guardrails separately at the application or account level. 4. Test with both allowed and denied model IDs. |
-| Reference | [Managing Access in AWS Organizations](https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scps.html), [Bedrock Cross-Account Guardrails](https://aws.amazon.com/blogs/aws/amazon-bedrock-guardrails-supports-cross-account-safeguards-with-centralized-control-and-management/) |
-
-#### FS-13 — Model Inventory Tagging
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.12] — "Maintain a model inventory that records the provenance, version, license terms, and risk assessment status of all models in use across the organization." |
-| Description | Verifies models are tagged with provenance metadata (source, version, approval-date). |
-| Detection | Calls `bedrock:ListFoundationModels` and `bedrock:ListCustomModels`. For custom models, calls `bedrock:ListTagsForResource` and checks for required tag keys: `model-source`, `model-version`, `approval-date`, `risk-tier`. |
-| Remediation | 1. Define a mandatory tagging policy for all AI/ML models. 2. Tag each custom model with provenance metadata. 3. Create an AWS Config rule (`required-tags`) to enforce the tagging policy. 4. For foundation models, maintain an external inventory spreadsheet or CMDB entry. |
-| Reference | [Bedrock Tagging](https://docs.aws.amazon.com/bedrock/latest/userguide/tagging.html) |
-
-#### FS-14 — Model Onboarding Governance
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.12] — "To onboard a model, follow these steps: Review EULA, Complete procurement, Follow security and compliance procedures, Assess MRM requirements, Document findings, Get necessary approvals from stakeholders." |
-| Description | Checks AWS Config rules enforce model onboarding governance (EULA review, MRM assessment, stakeholder approval). |
-| Detection | Calls `config:DescribeConfigRules` and searches for rules targeting `AWS::Bedrock::*` resources or custom rules with "model" or "onboarding" in the name. |
-| Remediation | 1. Create a custom AWS Config rule that checks new Bedrock custom models have required tags (approval-date, risk-tier, eula-reviewed). 2. Document the model onboarding process: EULA review → procurement → security/compliance review → MRM assessment → stakeholder sign-off. 3. Store approval artifacts in a versioned S3 bucket. |
-| Reference | [AWS Config Custom Rules](https://docs.aws.amazon.com/config/latest/developerguide/evaluate-config_develop-rules.html) |
-
-#### FS-15 — Adversarial Model Evaluation
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.12 — Practical guidance] — "Amazon Bedrock Evaluations can help to evaluate models against specific types of attacks by automating your test cases, scoring, reporting and to enable comparison of different models." |
-| Description | Verifies Bedrock evaluation jobs include adversarial test datasets. |
-| Detection | Calls `bedrock:ListEvaluationJobs` and inspects each job's configuration for evaluation datasets. Flags if no evaluation jobs exist or if none reference adversarial/red-team test data. |
-| Remediation | 1. Create a Bedrock model evaluation job with adversarial prompt datasets (prompt injection attempts, jailbreak sequences, harmful content probes). 2. Include both automated metrics and human evaluation. 3. Run evaluations before production deployment and after model updates. 4. Store results for audit. |
-| Reference | [Bedrock Model Evaluation](https://docs.aws.amazon.com/bedrock/latest/userguide/evaluation.html) |
-
-#### FS-16 — ECR Image Scanning
-
-| Field | Detail |
-|-------|--------|
-| Severity | High |
-| PDF ref | [PDF §1.2.12, extension] — ECR image scanning is not named in the PDF, but directly mitigates the PDF's listed risk "Third-party package vulnerabilities" in LLM supply chains. Included for completeness of the supply-chain risk category. |
-| Description | Checks ECR repositories have scan-on-push enabled for supply chain security of model containers. |
-| Detection | Calls `ecr:DescribeRepositories` and for each repository checks `imageScanningConfiguration.scanOnPush`. Also checks whether Amazon Inspector ECR scanning is enabled via `inspector2:BatchGetAccountStatus`. Flags repositories relying solely on basic scanning or with no scanning configured. |
-| Remediation | 1. Enable **enhanced scanning** via Amazon Inspector (the current best practice) — Inspector provides continuous vulnerability monitoring, re-scanning images automatically when new CVEs are published, and covers both OS and programming language package vulnerabilities. This requires two steps: (a) enable Inspector ECR scanning at the account level — `aws inspector2 enable --account-ids <account-id> --resource-types ECR`; (b) set the ECR registry scanning configuration to enhanced mode — `aws ecr put-registry-scanning-configuration --scan-type ENHANCED --rules '[{"scanFrequency":"CONTINUOUS_SCAN","repositoryFilters":[{"filter":"*","filterType":"WILDCARD"}]}]'`. **Important limitations:** (i) When enhanced scanning is first enabled, Amazon Inspector only discovers images pushed within the **last 14 days** — older images receive `SCAN_ELIGIBILITY_EXPIRED` status and must be re-pushed to be scanned. (ii) After the initial scan, scan duration is controlled by the ECR re-scan duration setting in the Amazon Inspector console (defaults to `LIFETIME`); if you shorten this duration, images whose last scan exceeds the new window also move to `SCAN_ELIGIBILITY_EXPIRED`. (iii) Enhanced scanning incurs Amazon Inspector charges (no additional ECR cost). (iv) Repositories not matching a scan filter will have `Off` scan frequency and won't be scanned. 2. If enhanced scanning is not available in your region, enable basic scan-on-push as a fallback: `aws ecr put-image-scanning-configuration --repository-name <name> --image-scanning-configuration scanOnPush=true`. 3. Create EventBridge rules to alert on CRITICAL/HIGH findings from Inspector. 4. Integrate findings into your vulnerability management workflow. |
-| Reference | [ECR Enhanced Scanning](https://docs.aws.amazon.com/AmazonECR/latest/userguide/image-scanning-enhanced.html), [Amazon Inspector ECR Scanning](https://docs.aws.amazon.com/inspector/latest/user/scanning-ecr.html) |
-
-### Training Data & Model Poisoning (FS-17 to FS-21)
-
-> **PDF source:** §1.2.14 Training data and model poisoning. PDF-listed mitigations:
-> (a) protect training datasets via data protection best practices;
-> (b) use trusted data sources with audit controls tracking changes (who/when);
-> (c) monitor training data for pattern/distribution changes (data drift);
-> (d) compare retrained model performance against baseline before production;
-> (e) rollback plan using versioned training data and models (Feature Store);
-> (f) monitor low-entropy classification with thresholds and alerts;
-> (g) AI Service Cards for evaluating third-party model testing procedures.
-
-#### FS-17 — Model Monitor Data Quality → *Merged into upstream SM-07*
-
-> **Upstream extension note (do not ship as a standalone check):** The detection and remediation
-> content from FS-17 should be added as a refinement of the existing **SM-07 (Model Monitor)**
-> check in the upstream `aws-samples/sample-aiml-security-assessment` repo.
->
-> **What to add to SM-07:**
->
-> - Filter `ListMonitoringSchedules` results for `MonitoringType=DataQuality` (not just any schedule). Note the format difference: `ListMonitoringSchedules`/`MonitoringScheduleSummary` returns `MonitoringType` in PascalCase (`DataQuality`, `ModelQuality`, `ModelBias`, `ModelExplainability`); `DescribeMonitoringSchedule` returns the same type in SCREAMING_SNAKE_CASE (`DATA_QUALITY`, `MODEL_QUALITY`, `MODEL_BIAS`, `MODEL_EXPLAINABILITY`) — the detection should normalise both forms.
-> - Require `emit_metrics` to be enabled on the monitoring schedule.
-> - Verify CloudWatch alarms exist on the `feature_baseline_drift_<feature_name>` metrics published
->   to namespace `/aws/sagemaker/Endpoints/data-metric` (real-time endpoints, dimensions
->   `EndpointName` + `ScheduleName`) or `/aws/sagemaker/ModelMonitoring/data-metric` (batch
->   transform, dimension `MonitoringSchedule`).
-> - PDF traceability: [PDF §1.2.14] — "Monitor your training data for pattern and distribution
->   changes to detect data drift"; "Amazon SageMaker Model Monitor – Data quality."
->
-> **Reference:** [SageMaker Model Monitor Data Quality](https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html)
-
-#### FS-18 — Model Drift Detection → *Merged into upstream SM-23*
-
-> **Upstream extension note (do not ship as a standalone check):** The detection and remediation
-> content from FS-18 should be added as a refinement of the existing **SM-23 (Model Drift
-> Detection)** check in the upstream repo.
->
-> **What to add to SM-23:**
-> - Filter `ListMonitoringSchedules` results for `MonitoringType=ModelQuality`.
-> - Add a new remediation step for **low-entropy classification monitoring** (PDF §1.2.14
->   mitigation): publish custom CloudWatch metrics tracking prediction confidence distributions,
->   set threshold boundaries for unexpected low-confidence/high-confidence clusters, and alert
->   when the retrained model produces unexpected classification patterns — this can indicate
->   training data poisoning before accuracy metrics degrade.
-> - PDF traceability: [PDF §1.2.14] — "Before deploying to production, compare your retrained
->   model's performance against previous iterations using historical test data as a baseline."
->
-> **Reference:** [SageMaker Model Monitor Model Quality](https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-model-quality.html)
-
-#### FS-19 — Model Registry Approval → *Merged into upstream SM-22*
-
-> **Upstream extension note (do not ship as a standalone check):** The detection and remediation
-> content from FS-19 should be added as a refinement of the existing **SM-22 (Model Approval
-> Workflow)** check in the upstream repo.
->
-> **What to add to SM-22:**
-> - Explicitly check that `ModelApprovalStatus=PendingManualApproval` is the default for new
->   model package versions (not `Approved`).
-> - Flag any model package group where the latest version has `ModelApprovalStatus=Approved`
->   without evidence of a manual approval step (i.e., auto-approved at creation time).
-> - PDF traceability: [PDF §1.2.14] — cites "Amazon SageMaker AI – Model Registration and
->   Deployment with Model Registry" as a reference for staged deployment with rollback.
->
-> **Reference:** [SageMaker Model Registry](https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html)
-
-#### FS-20 — Feature Store Rollback
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.14] — "Create a rollback plan by using versioned training data and models. This ensures that you can revert to a stable, working model if failures occur." References "Amazon SageMaker AI Feature Store". |
-| Description | Checks SageMaker Feature Store has offline store for rollback capability. |
-| Detection | Calls `sagemaker:ListFeatureGroups` to enumerate all groups, then `sagemaker:DescribeFeatureGroup` for each to inspect `OfflineStoreConfig`. Flags feature groups where `OfflineStoreConfig` is absent (online-only groups with no offline store for rollback). |
-| Remediation | 1. Enable the offline store on each feature group: specify an S3 URI and data catalog in `OfflineStoreConfig`. 2. The offline store provides a versioned, immutable history of feature values for point-in-time rollback. 3. Test rollback by querying the offline store with a historical timestamp. |
-| Reference | [SageMaker Feature Store](https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store.html) |
-
-#### FS-21 — Training Data S3 Versioning and Audit Trail
-
-| Field | Detail |
-|-------|--------|
-| Severity | High |
-| PDF ref | [PDF §1.2.14] — "Use trusted data sources for your training data. Implement audit controls that let you track and review changes, including who made them and when they occurred." |
-| Description | Verifies S3 buckets used for training data have versioning enabled so poisoned datasets can be rolled back. Recommends CloudTrail data-event logging as remediation to record who modified training data and when. |
-| Detection | Identifies training-data S3 buckets by naming convention (`train`/`dataset`/`model`/`sagemaker`/`bedrock`). Calls `s3:GetBucketVersioning` to verify `Status=Enabled`. (CloudTrail data-event logging is recommended in remediation but is not asserted by this check — verifying it is covered by the upstream BR-06 CloudTrail control and the FS-23 extension.) |
-| Remediation | 1. Enable versioning: `aws s3api put-bucket-versioning --bucket <name> --versioning-configuration Status=Enabled`. 2. Enable CloudTrail S3 data events for the training-data buckets to capture PutObject/DeleteObject with caller identity. 3. Enable MFA Delete for critical training datasets. 4. Apply S3 Object Lock for immutable baselines. |
-| Reference | [S3 Versioning](https://docs.aws.amazon.com/AmazonS3/latest/userguide/Versioning.html), [CloudTrail Data Events](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html) |
-
-### Vector & Embedding Weaknesses (FS-22 to FS-26)
-
-> **PDF source:** §1.2.15 Vector and embedding weaknesses. PDF-listed mitigations:
-> (a) apply least privilege to vector and embedding database access;
-> (b) validate knowledge base data sources;
-> (c) add data only from trusted sources to knowledge bases;
-> (d) monitor and log all activities in knowledge base control plane (CloudTrail);
-> (e) enable encryption at rest and in transit for vector and embedding databases;
-> (f) implement document/record-level access controls via KB metadata filtering for
-> multi-tenancy.
-
-#### FS-22 — Knowledge Base IAM Least Privilege
-
-| Field | Detail |
-|-------|--------|
-| Severity | High |
-| PDF ref | [PDF §1.2.15] — "Apply the principle of least privilege to control access to your vector and embedding database. Only grant users and services the minimum permissions they need to perform their tasks." |
-| Description | Checks IAM roles accessing Knowledge Bases have no wildcard `bedrock:*` permissions covering KB actions. |
-| Detection | Inspects the permissions cache for all IAM roles. Flags any role with an Allow statement granting `bedrock:*` without resource-level restrictions, or broad `bedrock:` actions covering KB operations without a specific knowledge-base ARN. Note: Bedrock agent and KB operations use the single IAM service prefix `bedrock:` (not `bedrock-agent:`) — the `bedrock-agent` token refers to the boto3 SDK client name, not the IAM action prefix. |
-| Remediation | 1. Replace wildcard `bedrock:*` with specific KB actions: `bedrock:Retrieve`, `bedrock:RetrieveAndGenerate`, `bedrock:GetKnowledgeBase` (these are the actual IAM action names — verify via the AWS Service Authorization Reference for Amazon Bedrock). 2. Scope the resource ARN to specific Knowledge Base IDs (e.g., `arn:aws:bedrock:<region>:<account>:knowledge-base/<kb-id>`). 3. Apply IAM permission boundaries to limit blast radius. |
-| Reference | [Bedrock Knowledge Base Permissions](https://docs.aws.amazon.com/bedrock/latest/userguide/kb-permissions.html) |
-
-#### FS-23 — Knowledge Base CloudTrail Logging → *Merged into upstream BR-06*
-
-> **Upstream extension note (do not ship as a standalone check):** The detection and remediation
-> content from FS-23 should be added as a refinement of the existing **BR-06 (CloudTrail
-> Logging)** check in the upstream repo.
->
-> **What to add to BR-06:**
-> - After verifying that a CloudTrail trail is active and logging Bedrock management events,
->   additionally check for an **advanced event selector** with
->   `resources.type = AWS::Bedrock::KnowledgeBase` to capture `Retrieve` and
->   `RetrieveAndGenerate` data events (these are NOT logged by default — they require an
->   explicit advanced event selector).
-> - Note: `InvokeAgent` / `InvokeInlineAgent` are also data events requiring
->   `resources.type = AWS::Bedrock::AgentAlias` or `AWS::Bedrock::InlineAgent` respectively.
->   Data events incur additional CloudTrail charges and can produce high volumes under load.
-> - PDF traceability: [PDF §1.2.15] — "Monitor and log all activities in knowledge base
->   control plane" with reference "Monitor Amazon Bedrock API calls using CloudTrail."
->
-> **Reference:** [CloudTrail Bedrock Logging](https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html)
-
-#### FS-24 — Knowledge Base Metadata Filtering
-
-| Field | Detail |
-|-------|--------|
-| Severity | Informational |
-| PDF ref | [PDF §1.2.15] — "Implement access controls at the document or record level within knowledge bases where different users or applications should only have access to specific subsets of data. Use Amazon Bedrock Knowledge Bases metadata filtering to enforce data segmentation." |
-| Description | Advisory: verifies KB metadata fields support tenant-level filtering for multi-tenancy. |
-| Detection | Calls `ListKnowledgeBases` and `GetKnowledgeBase` (via the `bedrock-agent` boto3 client; IAM actions are `bedrock:ListKnowledgeBases` and `bedrock:GetKnowledgeBase`). Inspects the storage configuration for metadata field definitions. Flags KBs with no metadata fields defined (no tenant isolation possible). |
-| Remediation | 1. Define metadata fields on your KB data sources (e.g., `tenant_id`, `department`, `classification`). 2. Populate metadata during document ingestion. 3. Use the `filter` parameter in Retrieve/RetrieveAndGenerate API calls to enforce tenant-scoped queries. 4. Test that cross-tenant data leakage is prevented. |
-| Reference | [Bedrock KB Metadata Filtering](https://docs.aws.amazon.com/bedrock/latest/userguide/kb-test-config.html) |
-
-#### FS-25 — OpenSearch Serverless Encryption
-
-| Field | Detail |
-|-------|--------|
-| Severity | High |
-| PDF ref | [PDF §1.2.15] — "Enable encryption at rest and in transit for vector and embedding databases." |
-| Description | Checks OpenSearch Serverless collections used by KBs have CMK encryption policies. |
-| Detection | Calls `opensearchserverless:ListCollections` (IAM action `aoss:ListCollections`) and for each calls `opensearchserverless:ListSecurityPolicies(type=encryption)` (IAM action `aoss:ListSecurityPolicies`). Inspects each encryption policy's document for `AWSOwnedKey=true` or missing `KmsARN`. Note: the encryption **policy JSON document** uses PascalCase field names — `AWSOwnedKey` and `KmsARN` — while the direct API `EncryptionConfig` struct uses camelCase (`aWSOwnedKey`, `kmsKeyArn`); detection should inspect the policy document form returned by `GetSecurityPolicy`/`ListSecurityPolicies`. Flags collections using AWS-owned keys instead of customer-managed KMS keys. Note: the boto3 client name is `opensearchserverless`, but IAM actions use the service prefix `aoss:` (not `opensearchserverless:`). Note also: encryption in transit is automatic (TLS 1.2, AES-256) for all OpenSearch Serverless traffic and is not configurable — this check focuses on encryption at rest. |
-| Remediation | 1. Create an encryption security policy specifying a customer-managed KMS key: set `AWSOwnedKey=false` and provide `KmsARN` with the ARN of your KMS key. 2. Apply the policy to the collection by matching the collection name or prefix pattern in the policy `Rules`. 3. Ensure the KMS key policy grants the OpenSearch Serverless service principal `kms:Decrypt` and `kms:GenerateDataKey`. Note: if you provide a KMS key directly in the `CreateCollection` request, it takes precedence over any matching security policies. |
-| Reference | [OpenSearch Serverless Encryption](https://docs.aws.amazon.com/opensearch-service/latest/developerguide/serverless-encryption.html) |
-
-#### FS-26 — Knowledge Base VPC Access
-
-| Field | Detail |
-|-------|--------|
-| Severity | High |
-| PDF ref | [PDF §1.2.15, extension] — network isolation is not verbatim in the PDF but directly implements "Apply the principle of least privilege to control access to your vector and embedding database" at the network layer. |
-| Description | Verifies OpenSearch Serverless collections have VPC-only network policies (no public access). |
-| Detection | Calls `opensearchserverless:ListSecurityPolicies(type=network)` (IAM action `aoss:ListSecurityPolicies` — the service prefix for OpenSearch Serverless is `aoss`, not `opensearchserverless`) and inspects each policy rule for `AllowFromPublic=true`. Flags collections accessible from the public internet. Note: a policy with `AllowFromPublic=false` may still grant private access to Bedrock via `SourceServices: ["bedrock.amazonaws.com"]` or to specific VPC endpoints via `SourceVPCEs` — these are the recommended private-access patterns and are not flagged. |
-| Remediation | 1. Create a network security policy that restricts access to specific VPC endpoints only via `SourceVPCEs`, or grants private AWS service access (e.g., Bedrock) via `SourceServices: ["bedrock.amazonaws.com"]`. Per AWS docs, private access to AWS services applies only to the collection's OpenSearch endpoint, not to the OpenSearch Dashboards endpoint. 2. Create an OpenSearch Serverless VPC endpoint in your VPC if VPC-private access is required. 3. Remove any policy rules with `AllowFromPublic=true`. 4. Test connectivity from within the VPC. |
-| Reference | [OpenSearch Serverless Network Access](https://docs.aws.amazon.com/opensearch-service/latest/developerguide/serverless-network.html) |
diff --git a/docs/SECURITY_CHECKS_FINSERV_PART2_GUARDRAILS_CONTENT_SAFETY.md b/docs/SECURITY_CHECKS_FINSERV_PART2_GUARDRAILS_CONTENT_SAFETY.md
deleted file mode 100644
index 4582827..0000000
--- a/docs/SECURITY_CHECKS_FINSERV_PART2_GUARDRAILS_CONTENT_SAFETY.md
+++ /dev/null
@@ -1,317 +0,0 @@
-# FinServ GenAI Risk Checks — Part 2: Guardrails & Content Safety (FS-27 to FS-46)
-
-This is **Part 2 of 3** of the FinServ GenAI security checks derived from the
-[AWS guide for Financial Services risk management of the use of Generative AI (March 2026)](https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf)
-(referred to throughout as "the FinServ Guide").
-
-This part covers **20 checks** across 5 PDF risk categories:
-
-- **Non-Compliant Output** (FS-27 to FS-30) — §1.2.1
-- **Misinformation** (FS-31 to FS-34) — §1.2.3 (FS-34 sources from §1.2.12 — see note)
-- **Abusive or Harmful Output** (FS-35 to FS-38) — §1.2.4
-- **Biased Output** (FS-39 to FS-42) — §1.2.5
-- **Sensitive Information Disclosure** (FS-43 to FS-46) — §1.2.6
-
-**Companion files:**
-
-- `SECURITY_CHECKS_FINSERV_PART1_INFRA_CONTROLS.md` — FS-01 to FS-26 (Unbounded, Excessive Agency, Supply Chain, Training Poisoning, Vector Weaknesses)
-- `SECURITY_CHECKS_FINSERV_PART3_APP_LAYER_AND_GAPS.md` — FS-47 to FS-69 (Hallucination, Prompt Injection, Output Handling, Off-Topic, Stale Data, Material Gaps)
-- `SECURITY_CHECKS_FINSERV_COMMON.md` — shared intro, severity rubric, validation note, upstream-overlap table
-
-Each check includes how it is **detected** (the AWS API calls or configuration inspected)
-and how a failure is **remediated** (the specific AWS actions to take).
-
-See `SECURITY_CHECKS_FINSERV_COMMON.md` for:
-
-- PDF traceability conventions (`[PDF §x.y.z]` vs `[PDF §x.y.z, extension]`)
-- Severity rubric (High / Medium / Low / Informational) — see SECURITY_CHECKS_FINSERV_SEVERITY_METHODOLOGY.md
-- Validation note and AWS service authorization references
-- Relationship to upstream SM/BR/AC checks and consolidation recommendations
-
----
-
-## FinServ GenAI Risk Checks — Part 2 content
-
-### Non-Compliant Output (FS-27 to FS-30)
-
-> **PDF source:** §1.2.1 Non-compliant output. PDF-listed mitigations:
-> (a) prompt engineering to guide the model and prevent unwanted responses;
-> (b) content filters and denied topics in Bedrock Guardrails;
-> (c) RAG with Bedrock Knowledge Bases;
-> (d) Automated Reasoning checks in Bedrock Guardrails;
-> (e) human-in-the-loop validation for internal AI systems;
-> (f) audit logs of AI-generated outputs and guardrails applied for regulatory reporting.
-
-#### FS-27 — Automated Reasoning Checks
-
-| Field | Detail |
-|-------|--------|
-| Severity | High (contextual grounding) / Medium (Automated Reasoning) |
-| PDF ref | [PDF §1.2.1, §1.2.7] — "Automated Reasoning checks in Amazon Bedrock Guardrails uses automated reasoning to verify that natural language content complies with your defined policies. This mathematical verification helps ensure that your content strictly follows your guardrails." |
-| Description | Verifies Bedrock Guardrails have Automated Reasoning checks or contextual grounding enabled. |
-| Detection | Calls `bedrock:ListGuardrails` and `bedrock:GetGuardrail` for each. Inspects the response fields `contextualGroundingPolicy` and `automatedReasoningPolicy`. Flags guardrails with neither enabled. |
-| Remediation | 1. Enable contextual grounding filters (type `GROUNDING`) with a threshold ≥ 0.7 — these filters CAN block content that fails grounding checks. Note: valid threshold values are 0 to 0.99; a threshold of 1.0 is invalid and will block all content. **Important use-case limitation:** Contextual grounding checks support summarization, paraphrasing, and question answering use cases only — **Conversational QA / Chatbot use cases are not supported**. If your FinServ application is a conversational chatbot, contextual grounding cannot be used for hallucination detection; use Automated Reasoning checks or human-in-the-loop validation instead. 2. If available in your region, additionally enable Automated Reasoning checks by creating an Automated Reasoning policy and attaching it to the guardrail. **Cross-Region inference is REQUIRED for AR:** Guardrails that use Automated Reasoning checks require a cross-Region inference profile — set `crossRegionConfig.guardrailProfileIdentifier` to a profile matching your Region (for example, `us.guardrail.v1:0` for US Regions or `eu.guardrail.v1:0` for EU Regions). Omitting this parameter returns `ValidationException`. As of April 2026, AR is generally available in US East (N. Virginia), US East (Ohio), US West (Oregon), EU (Frankfurt), EU (Ireland), and EU (Paris) — verify current regional availability on the [AR documentation page](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-automated-reasoning-checks.html) before audit reliance, as AWS regularly expands coverage. Attach the **versioned** policy ARN (for example, `...:1`) — the unversioned ARN returns an error. You can attach a maximum of 2 AR policies per guardrail. Important: Automated Reasoning operates in **detect mode only** — it returns findings and feedback but does NOT block content. AR finding types (per the user guide) are: `VALID` (response is consistent with policy), `INVALID` (response contradicts policy rules), `SATISFIABLE` (response could be true or false depending on unstated conditions), `IMPOSSIBLE` (premises are contradictory), `TRANSLATION_AMBIGUOUS` (natural language could not be reliably translated to formal logic), `TOO_COMPLEX` (policy complexity exceeded processing limits), and `NO_TRANSLATIONS` (some or all input was not translated into logic due to irrelevance or lack of matching policy variables). Note: in the `AutomatedReasoningCheckFinding` runtime response, these appear as a **union** with lowercase camelCase keys (`valid`, `invalid`, `satisfiable`, `impossible`, `translationAmbiguous`, `tooComplex`, `noTranslations`) — exactly one key is present per finding. Per AWS docs, AR also **does not protect against prompt injection attacks**, **cannot detect off-topic responses**, **does not support streaming APIs**, and **supports English (US) only** — use content filters, topic policies, and other guardrail components alongside AR. **Critical limitation for cross-account enforcement:** AR policies are NOT supported with Bedrock Guardrails cross-account safeguards (org-level or account-level enforcement) — including an AR policy in a guardrail used for enforcement will cause runtime failures. If you rely on AR, configure it at the application or account level separately. Your application must inspect the AR findings via the `ApplyGuardrail` (or `Converse` / `InvokeModel` / `InvokeAgent` / `RetrieveAndGenerate`) API response and decide whether to serve the response, rewrite it using AR feedback, ask the user for clarification, or fall back to a default behavior. 3. For `INVALID` responses, implement an iterative rewriting loop that feeds AR feedback (contradicting rules) back to the LLM to self-correct. 4. Build an audit trail of all AR validation iterations — log `supportingRules` and `claimsTrueScenario` for `VALID` findings as mathematically verifiable compliance evidence. |
-| Reference | [Automated Reasoning in Bedrock Guardrails](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-automated-reasoning-checks.html), [AR Checks Concepts (Validation Results Reference)](https://docs.aws.amazon.com/bedrock/latest/userguide/automated-reasoning-checks-concepts.html), [Integrate AR Checks in Your Application](https://docs.aws.amazon.com/bedrock/latest/userguide/integrate-automated-reasoning-checks.html), [Deploy Automated Reasoning Policy](https://docs.aws.amazon.com/bedrock/latest/userguide/deploy-automated-reasoning-policy.html) |
-
-#### FS-28 — Financial Denied Topics
-
-| Field | Detail |
-|-------|--------|
-| Severity | High |
-| PDF ref | [PDF §1.2.1] — "Configure content filters and guardrails to restrict model responses to approved topics" with reference "Amazon Bedrock User Guide – Guardrails – Denied topics". |
-| Description | Checks guardrails have denied topics for regulated financial advice. |
-| Detection | Calls `bedrock:GetGuardrail` and inspects `topicPolicy.topics` for entries with `type=DENY`. Flags guardrails with no denied topics or with no topics related to financial advice, investment recommendations, or tax guidance. |
-| Remediation | 1. Add denied topics to the guardrail following the AWS best-practice golden rules: (a) **Be crisp and precise** — e.g., "Investment advice is inquiries, guidance, or recommendations about the management or allocation of funds or assets with the goal of generating returns or achieving specific financial objectives" rather than vague "Investment advice". (b) **Define, don't instruct** — write "All content associated with specific investment recommendations" not "Block all investment advice". (c) **Stay positive** — never define topics negatively (e.g., avoid "All content except general financial education"). (d) **Focus on themes, not words** — denied topics capture subjects contextually; use word filters for specific names or entities. (e) **Provide sample phrases** — add up to 5 representative inputs per topic (each up to 100 characters). 2. **Quantity and character limits:** A guardrail can contain a maximum of **30 denied topics**. In Classic tier, topic definitions are limited to 200 characters; in Standard tier, up to 1,000 characters — use Standard tier for complex financial topic definitions. 3. Recommended denied topics for FinServ: "specific investment recommendations", "tax advice", "specific financial product recommendations", "guaranteed returns or performance claims". 4. For multi-account enforcement, use Bedrock cross-account safeguards to apply denied topics from a management-account guardrail across all member accounts automatically. When configuring account-level or org-level enforcement, set **both** `selectiveContentGuarding.messages` AND `selectiveContentGuarding.system` to `COMPREHENSIVE` to ensure guardrails evaluate all user messages AND system prompts regardless of input tags — use `SELECTIVE` only when you trust callers to correctly tag content. Setting only `messages` to COMPREHENSIVE leaves system prompts potentially unguarded. 5. Enforce guardrails via IAM policy conditions (`bedrock:GuardrailIdentifier`) to prevent any Bedrock inference call without a guardrail attached. 6. Test with prompts that attempt to elicit regulated financial advice. |
-| Reference | [Bedrock Guardrails Denied Topics](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-denied-topics.html), [Safeguard Tiers for Guardrails](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-tiers.html), [Cross-Account Safeguards with Enforcements](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-enforcements.html), [Guardrails Best Practices](https://aws.amazon.com/blogs/machine-learning/build-safe-generative-ai-applications-like-a-pro-best-practices-with-amazon-bedrock-guardrails/) |
-
-#### FS-29 — Compliance Disclaimer
-
-| Field | Detail |
-|-------|--------|
-| Severity | Informational |
-| PDF ref | [PDF §1.2.1, extension] — disclaimers are not verbatim in §1.2.1 but the PDF references "Implement response disclaimers in customer-facing applications" under §1.2.7 Hallucination, which is conceptually the same control applied here for non-compliant financial-advice output. |
-| Description | Advisory: verifies application adds required regulatory disclaimers to AI-generated outputs. |
-| Detection | Advisory check — cannot be fully automated. Inspects application Lambda function environment variables or configuration for disclaimer-related settings (e.g., `DISCLAIMER_ENABLED`, `COMPLIANCE_FOOTER`). |
-| Remediation | 1. Add a standard regulatory disclaimer to all customer-facing AI-generated responses (e.g., "This information is generated by AI and does not constitute financial advice. Please consult a qualified financial advisor."). 2. Make the disclaimer text configurable via environment variable or parameter store. 3. Ensure disclaimers are not removable by prompt manipulation. |
-| Reference | [AWS Well-Architected GenAI Lens — Guardrails](https://docs.aws.amazon.com/wellarchitected/latest/generative-ai-lens/gensec02-bp01.html) |
-
-#### FS-30 — Compliance Evaluation Datasets
-
-| Field | Detail |
-|-------|--------|
-| Severity | Informational |
-| PDF ref | [PDF §1.2.1, extension] — the PDF §1.2.12 practical guidance mentions "Amazon Bedrock Evaluations can help to evaluate models against specific types of attacks"; this check extends that concept to compliance-specific evaluation for FS-regulated outputs. |
-| Description | Checks Bedrock evaluation jobs use compliance-specific test datasets. |
-| Detection | Calls `bedrock:ListEvaluationJobs` to enumerate existing jobs, then calls `bedrock:GetEvaluationJob` for each to inspect the full `evaluationConfig` including dataset configuration. Flags if no evaluation jobs exist or if none reference compliance/regulatory test data. Note: `ListEvaluationJobs` returns only job summaries — dataset configuration details require `GetEvaluationJob`. |
-| Remediation | 1. Create a compliance-specific evaluation dataset containing: prompts requesting regulated financial advice, prompts testing disclaimer presence, prompts testing denied-topic enforcement. 2. Run Bedrock evaluation jobs with this dataset before each production deployment. 3. Set pass/fail thresholds and gate deployments on results. |
-| Reference | [Bedrock Model Evaluation](https://docs.aws.amazon.com/bedrock/latest/userguide/evaluation.html) |
-
-### Misinformation (FS-31 to FS-33)
-
-> **PDF source:** §1.2.3 Misinformation through inadvertent or malicious action. PDF-listed mitigations:
-> (a) prompt engineering;
-> (b) verify knowledge base data sources are up-to-date, accurate, reliable, and complete;
-> (c) human-in-the-loop validation for internal AI systems;
-> (d) source attribution in RAG responses for end users to verify provenance;
-> (e) integrity monitoring on knowledge base data sources — e.g., S3 event notifications to
-> track document changes.
-
-#### FS-31 — Knowledge Base Data Source Sync
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.3, §1.2.10] — "Verify that your knowledge base data sources are up-to-date, accurate, reliable, and complete"; "Sync your data with your Amazon Bedrock knowledge base". |
-| Description | Verifies KB data sources have been synced within 7 days. |
-| Detection | Calls `ListDataSources` then `ListIngestionJobs` for each data source (via the `bedrock-agent` boto3 client; IAM actions are `bedrock:ListDataSources` and `bedrock:ListIngestionJobs`). Checks the most recent successful ingestion job's `updatedAt` timestamp. Flags data sources not synced within 7 days. |
-| Remediation | 1. Create an EventBridge scheduled rule to trigger KB data source sync at least weekly. 2. Use `StartIngestionJob` (IAM action `bedrock:StartIngestionJob`) as the rule target. 3. Add CloudWatch alarms for failed ingestion jobs. 4. For rapidly changing data, increase sync frequency. |
-| Reference | [Bedrock KB Data Source Sync](https://docs.aws.amazon.com/bedrock/latest/userguide/kb-data-source-sync-ingest.html) |
-
-#### FS-32 — Source Attribution
-
-| Field | Detail |
-|-------|--------|
-| Severity | Informational |
-| PDF ref | [PDF §1.2.3, §1.2.10] — "Use source attribution in RAG-based response for end users to verify provenance of information" (§1.2.3); "Use source attribution in RAG-based response for end users to verify currency of information" (§1.2.10). |
-| Description | Advisory: verifies application implements source citations in RAG responses. |
-| Detection | Advisory check — inspects application code or configuration for use of the `citations` field in `RetrieveAndGenerate` API responses. Checks Lambda environment variables for attribution-related settings. |
-| Remediation | 1. Use the `RetrieveAndGenerate` API (IAM action `bedrock:RetrieveAndGenerate`) which returns `citations` with source document references. Each citation contains `retrievedReferences` — an array where each reference has a `content` object (the cited text), a `location` object (data source type and URI — for S3 sources, `location.type=S3` and `location.s3Location.uri` contains the S3 URI), and optional `metadata` (a string-to-JSON map with any custom metadata attributes stored on the chunk, which can hold document title and other fields). Note: there is no fixed `title` field in the API — if you need to display document titles to end users, store them as a metadata attribute during KB ingestion and retrieve them via `retrievedReferences[].metadata`. 2. Display source citations to end users alongside AI-generated responses. 3. Include the data source location (URI or other location identifier depending on source type: S3, Web, Confluence, SharePoint, Salesforce, Kendra, SQL, or Custom) and the cited text excerpt (from `content`). 4. If document titles are required, ensure they are populated in KB metadata and propagated to your UI. 5. Allow users to click through to the original source document where possible. |
-| Reference | [Bedrock RetrieveAndGenerate API](https://docs.aws.amazon.com/bedrock/latest/APIReference/API_agent-runtime_RetrieveAndGenerate.html) |
-
-#### FS-33 — Knowledge Base Integrity Monitoring
-
-| Field | Detail |
-|-------|--------|
-| Severity | High (deleted bucket) / Medium (versioning) |
-| PDF ref | [PDF §1.2.3] — "Use integrity monitoring on knowledge base data sources to detect unauthorized modifications. Track changes to documents used in knowledge bases." References "For example on S3 data sources use Amazon S3 event notification to track changes to documents." |
-| Description | Checks KB data source S3 buckets have versioning enabled and S3 event notifications (EventBridge or SNS) configured to detect unauthorized document modifications in real time. |
-| Detection | Identifies KB data-source S3 buckets via `GetDataSource` (via the `bedrock-agent` boto3 client; IAM action `bedrock:GetDataSource`). Calls `s3:GetBucketVersioning` to verify `Status=Enabled`. Calls `s3:GetBucketNotificationConfiguration` and checks for `EventBridgeConfiguration`, `TopicConfigurations`, `QueueConfigurations`, or `LambdaFunctionConfigurations`. Flags buckets missing either control. |
-| Remediation | 1. Enable versioning: `aws s3api put-bucket-versioning --bucket <name> --versioning-configuration Status=Enabled`. 2. Enable EventBridge notifications on the bucket: `aws s3api put-bucket-notification-configuration --bucket <name> --notification-configuration '{"EventBridgeConfiguration":{}}'`. Once enabled, S3 automatically sends **all** bucket events to EventBridge — you do not select specific event types at the bucket level. 3. Create an EventBridge rule that matches S3 events for this bucket — use the `detail-type` field values `Object Created` and `Object Deleted` (these are the EventBridge event type names; note: `s3:ObjectCreated:*` and `s3:ObjectRemoved:*` are the legacy SNS/SQS/Lambda notification event type names and are NOT used in EventBridge rules). Route matched events to an SNS topic or Lambda function for alerting. 4. Integrate alerts into your security incident response workflow. |
-| Reference | [S3 EventBridge Integration](https://docs.aws.amazon.com/AmazonS3/latest/userguide/EventBridge.html) |
-
-> **Note:** FS-34 (Third-Party Risk Management for FM Providers) is kept adjacent to Misinformation
-> in this file for continuity with the prior draft numbering, but its PDF source is §1.2.12
-> Supply Chain Vulnerabilities. Treat FS-34 as a Supply Chain check for compliance-framework
-> mapping purposes.
-
-#### FS-34 — Third-Party Risk Management (TPRM) for Foundation Model Providers
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.12] — *"Update existing third-party risk management processes to continuously monitor model providers and third-party dependencies, including tracking vendor security advisories, model deprecation notices, and change to terms and conditions."* (Note: moved from the Misinformation section in the prior draft; the PDF places TPRM under Supply Chain.) |
-| Description | Verifies a documented third-party risk management (TPRM) process exists to monitor FM providers for security advisories, model deprecation notices, and T&C changes; also flags legacy FMs currently in use. |
-| Detection | Calls `bedrock:ListFoundationModels`, then `bedrock:GetFoundationModel` for each in-use model; inspects `modelLifecycle.status` and flags models with status `LEGACY`. Note: the `FoundationModelLifecycle.status` API field has only **two** valid values — `ACTIVE` and `LEGACY`. There is no `EOL` status value in the API; models that have passed their EOL date are removed from the service entirely and API calls referencing them will fail. The user-facing lifecycle page describes three conceptual states (Active, Legacy, EOL) but the API only exposes two. Advisory component checks for evidence of a TPRM process — e.g., an AWS Config rule or a tag on Bedrock resources indicating periodic review (`tprm-last-reviewed=<ISO-date>`). |
-| Remediation | 1. Establish a documented TPRM process: at least quarterly review of each in-use FM provider's security advisories, model lifecycle announcements, and T&C changes. 2. Assign an owner for the TPRM process and record review evidence in your MRM system. 3. Subscribe to AWS Bedrock model lifecycle notifications. 4. Migrate workloads from `LEGACY` models to active versions before their published EOL date — note that for models with EOL dates after February 1, 2026, there is a "public extended access" period where Legacy models remain usable but at higher pricing set by the model provider. 5. For third-party models procured via AWS Marketplace or consumed directly, evaluate the provider's own testing procedures — AWS AI Service Cards provide this transparency for Amazon-trained models. |
-| Reference | [Bedrock Model Lifecycle](https://docs.aws.amazon.com/bedrock/latest/userguide/model-lifecycle.html), [Access Amazon Bedrock foundation models](https://docs.aws.amazon.com/bedrock/latest/userguide/model-access.html) |
-
-### Abusive or Harmful Output (FS-35 to FS-38)
-
-> **PDF source:** §1.2.4 Model output is abusive or harmful. PDF-listed mitigations:
-> (a) AWS AI Service Cards to understand how Amazon addresses toxicity per model;
-> (b) Amazon Bedrock Guardrails to detect and filter harmful content;
-> (c) FMEval to evaluate for inappropriate content (sexual, profanity, hate, aggression,
-> insults, flirtation, identity attacks, threats);
-> (d) user reporting mechanism so end users can flag abusive outputs, reviewed within a
-> defined process;
-> (e) Practical guidance: create allowlists for approved business terminology to reduce
-> false positives on brand, product, industry, and technical vocabulary.
-
-#### FS-35 — FMEval Harmful Content
-
-| Field | Detail |
-|-------|--------|
-| Severity | Informational |
-| PDF ref | [PDF §1.2.4] — "Foundation Model Evaluations (FMEval) evaluates your model to detect inappropriate content, including sexual references, profanity, hate speech, aggression, insults, flirtation, identity-based attacks, and threats." |
-| Description | Checks Bedrock evaluation jobs test for harmful/toxic content. |
-| Detection | Calls `bedrock:ListEvaluationJobs` to enumerate existing jobs, then calls `bedrock:GetEvaluationJob` for each to inspect the full `evaluationConfig`. The correct metric name depends on the evaluation job type: (a) For **automated model evaluation jobs** (pre-computed metrics), the toxicity metric is `"Builtin.Toxicity"` — the only valid harmful-content metric for this job type. (b) For **judge-based model evaluation jobs** (LLM-as-judge), the harmful content metrics are `"Builtin.Harmfulness"` and `"Builtin.Stereotyping"`. (c) For **knowledge base (RAG) evaluation jobs**, `"Builtin.Harmfulness"` and `"Builtin.Stereotyping"` are also valid. Flags if no evaluation jobs exist or none include a harmful-content metric (`Builtin.Toxicity` for automated, `Builtin.Harmfulness` for judge-based/RAG). Note: `ListEvaluationJobs` returns only job summaries — dataset configuration details require `GetEvaluationJob`. |
-| Remediation | 1. For **automated model evaluation** (fastest, no judge model required): create a Bedrock evaluation job with `"Builtin.Toxicity"` in the `metricNames` array. Valid task types are `Summarization`, `Classification`, `QuestionAndAnswer`, `Generation`, and `Custom`. 2. For **judge-based model evaluation** (more nuanced, requires a judge model): create a Bedrock evaluation job with `"Builtin.Harmfulness"` and/or `"Builtin.Stereotyping"` in the `metricNames` array — these metrics are only valid for judge-based and RAG evaluation jobs, not automated model evaluation jobs. 3. Include test prompts designed to elicit harmful content. 4. Set pass/fail thresholds based on the scores returned. 5. Run evaluations before production deployment and after model updates. 6. For more granular toxicity scoring (the 7-category UnitaryAI Detoxify-unbiased scores: `toxicity`, `severe_toxicity`, `obscene`, `threat`, `insult`, `sexual_explicit`, `identity_attack` — or the Toxigen-roberta binary classifier), use SageMaker FMEval via SageMaker Studio or the `fmeval` Python library as a complementary evaluation path. |
-| Reference | [Bedrock Model Evaluation Metrics](https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation-metrics.html), [SageMaker FMEval Toxicity](https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-toxicity-evaluation.html) |
-
-#### FS-36 — Guardrail Content Filters
-
-| Field | Detail |
-|-------|--------|
-| Severity | High |
-| PDF ref | [PDF §1.2.4] — "Use Amazon Bedrock's guardrails to detect and filter harmful content." |
-| Description | Verifies guardrails have content filters for hate, violence, sexual, and other harmful content. |
-| Detection | Calls `bedrock:GetGuardrail` and inspects `contentPolicy.filters`. Flags guardrails missing filters for HATE, VIOLENCE, SEXUAL, INSULTS, or MISCONDUCT categories. Also checks that `inputStrength` and `outputStrength` are at least `MEDIUM`. |
-| Remediation | 1. Update the guardrail to include content filters for all harmful categories: HATE, VIOLENCE, SEXUAL, INSULTS, MISCONDUCT. 2. Select the **Standard tier** (not Classic) for content filters — it offers better accuracy, broader language support (extensive multilingual support vs. English/French/Spanish only in Classic), prompt leakage detection, and extends protection to harmful content within code elements. Standard tier requires cross-Region inference to be enabled on the guardrail (configurable at creation or by modifying an existing guardrail). 3. Start with **HIGH** filter strength for customer-facing applications; evaluate false-positive rates on representative sample traffic and lower to MEDIUM only if necessary. 4. Apply filters to both INPUT and OUTPUT. 5. Before enabling blocking in production, use **detect mode** (`action=NONE`) to test guardrail behavior on live traffic — review trace output to validate decisions, then switch to `action=BLOCK` once confident. 6. Enforce guardrails organization-wide via IAM policy-based enforcement: add an IAM condition key (`bedrock:GuardrailIdentifier`) to deny any `InvokeModel`/`Converse` call that does not include a guardrail. For account-level or org-level enforcement configurations, set **both** `selectiveContentGuarding.messages` AND `selectiveContentGuarding.system` to `COMPREHENSIVE` to ensure guardrails evaluate all user messages AND system prompts regardless of input tags (use `SELECTIVE` only when you trust callers to correctly tag content). Setting only `messages` to COMPREHENSIVE leaves system prompts potentially unguarded. |
-| Reference | [Bedrock Guardrails Content Filters](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-content-filters.html), [Safeguard Tiers for Guardrails](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-tiers.html), [Cross-Account Safeguards with Enforcements](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-enforcements.html), [Guardrails Best Practices](https://aws.amazon.com/blogs/machine-learning/build-safe-generative-ai-applications-like-a-pro-best-practices-with-amazon-bedrock-guardrails/), [IAM Guardrail Enforcement](https://aws.amazon.com/blogs/machine-learning/amazon-bedrock-guardrails-announces-iam-policy-based-enforcement-to-deliver-safe-ai-interactions/) |
-
-#### FS-37 — User Feedback Mechanism
-
-| Field | Detail |
-|-------|--------|
-| Severity | Informational |
-| PDF ref | [PDF §1.2.4] — "Implement a user reporting mechanism that allows end users to flag abusive or harmful outputs. Reported incidents [are] reviewed within a defined process to refine content filters." |
-| Description | Advisory: verifies application has a user reporting mechanism for harmful outputs. |
-| Detection | Advisory check — inspects application configuration for feedback-related settings (e.g., `FEEDBACK_ENABLED`, `REPORT_ABUSE_ENDPOINT`). Checks for Lambda functions with "feedback" or "report" in the name. |
-| Remediation | 1. Implement a "Report this response" button in the application UI. 2. Route reported responses to an SQS queue or DynamoDB table for review. 3. Define an SLA for reviewing reported content (e.g., 24 hours). 4. Use reported incidents to refine guardrail content filters and word lists. 5. Log all reports with Bedrock invocation logging correlation IDs. |
-| Reference | [Bedrock Model Invocation Logging](https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html) |
-
-#### FS-38 — Guardrail Word Filters and Business Term Allowlists
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.4 — Practical guidance] — "Create allowlists for business terms that include approved terminology for: brand names, product names, industry terms, and technical vocabulary. Also test filter settings to verify that your content filters allow necessary business communications and generate accurate alerts. Monitor and adjust regularly your filtering system to reduce false positives." |
-| Description | Checks guardrails have word/phrase block filters configured and that approved business terminology allowlists are defined to prevent false positives on legitimate financial services vocabulary. |
-| Detection | Calls `bedrock:GetGuardrail` and inspects `wordPolicy`. Flags guardrails with no custom `words` array (blocked phrases). Also checks `managedWordLists` for the AWS-managed `PROFANITY` list. Note: a guardrail with only the profanity filter and no custom FinServ-specific blocked terms should still be flagged as incomplete for financial services use cases. |
-| Remediation | 1. Add blocked words/phrases to the guardrail word filter (profanity, slurs, competitor names if applicable). Each custom word/phrase entry has a maximum length of **100 characters** per the API (`GuardrailWordConfig.text`); the console UI additionally limits entries to **up to three words** per phrase. You can add up to **10,000 items** to the custom word filter. 2. Enable the AWS-managed profanity filter (`managedWordListsConfig` with `type=PROFANITY`) as a baseline. 3. Create an allowlist of approved business terminology: brand names, product names, industry terms, technical vocabulary — document this separately as the guardrail word filter only blocks, it does not allowlist. Test filter settings to verify legitimate business communications are not blocked. 4. Monitor and adjust regularly to reduce false positives. |
-| Reference | [Bedrock Guardrails Word Filters](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-word-filters.html) |
-
-### Biased Output (FS-39 to FS-42)
-
-> **PDF source:** §1.2.5 Model output is biased. PDF-listed mitigations:
-> (a) AWS AI Service Cards to understand how providers address fairness/bias per model;
-> (b) prompt engineering;
-> (c) Amazon Bedrock Guardrails;
-> (d) Bedrock Evaluations to measure bias;
-> (e) Amazon SageMaker Clarify for bias detection, transparency, and prediction explanation
-> on fine-tuned and self-trained models;
-> (f) develop and maintain a bias testing dataset with representative cases across
-> demographic groups, geographic regions, and sensitive attributes — run periodically and
-> after each model update.
-
-#### FS-39 — SageMaker Clarify Bias
-
-| Field | Detail |
-|-------|--------|
-| Severity | High |
-| PDF ref | [PDF §1.2.5] — "Use Amazon SageMaker Clarify to detect bias, increase transparency, and explain predictions for your fine-tuned and self-trained AI models." |
-| Description | Verifies Clarify model bias monitoring is configured for financial decision models. |
-| Detection | Calls `sagemaker:ListMonitoringSchedules` with the `MonitoringTypeEquals=ModelBias` filter parameter (the `MonitoringType` field on the `MonitoringScheduleSummary` response has one of four values: `DataQuality`, `ModelQuality`, `ModelBias`, `ModelExplainability`). Flags if no bias monitoring schedules exist. Cross-references with endpoints tagged `use-case=financial-decision` or similar. Clarify bias monitoring publishes metrics to the `aws/sagemaker/Endpoints/bias-metrics` namespace for real-time endpoints (and `aws/sagemaker/ModelMonitoring/bias-metrics` for batch transform jobs) with `Endpoint`, `MonitoringSchedule`, `BiasStage`, `Label`, `LabelValue`, `Facet`, and `FacetValue` dimensions. |
-| Remediation | 1. Create a SageMaker Clarify bias monitoring schedule for each financial decision model endpoint. 2. Specify facets (protected attributes: age, gender, race, geography) and bias metrics (DPL, DI, DPPL). 3. Provide a baseline bias report from training data. 4. Configure CloudWatch alarms on bias metric violations on the `aws/sagemaker/Endpoints/bias-metrics` namespace. Note: `publish_cloudwatch_metrics` is enabled by default — do NOT set it to `Disabled` in the model bias job definition's `Environment` map, as that would stop metrics from being published to CloudWatch. |
-| Reference | [SageMaker Clarify Bias Detection](https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-detect-post-training-bias.html) |
-
-#### FS-40 — Bedrock Bias Evaluation Datasets and Cadence
-
-| Field | Detail |
-|-------|--------|
-| Severity | Informational |
-| PDF ref | [PDF §1.2.5] — "Develop and maintain a bias testing dataset that includes representative test cases across demographic groups, geographic regions, and other sensitive attributes relevant to your use case. Run these test cases periodically and after model updates." |
-| Description | Checks evaluation jobs include demographic fairness test cases across protected groups and verifies evaluations are run on a defined periodic schedule and after each model update. |
-| Detection | Calls `bedrock:ListEvaluationJobs` to enumerate existing jobs, then calls `bedrock:GetEvaluationJob` for each to inspect the full `evaluationConfig` including dataset configuration for demographic diversity test cases. Checks the `creationTime` of the most recent evaluation job and flags if it is older than 90 days or if no evaluation was run after the most recent model deployment. Note: `ListEvaluationJobs` returns only job summaries — dataset configuration details require `GetEvaluationJob`. |
-| Remediation | 1. Create a bias evaluation dataset with representative test cases across demographic groups, geographic regions, and other sensitive attributes. 2. Schedule evaluation jobs to run at least quarterly via EventBridge. 3. Trigger an evaluation job automatically after each model update in your CI/CD pipeline. 4. Store results for audit and trend analysis. |
-| Reference | [Bedrock Model Evaluation](https://docs.aws.amazon.com/bedrock/latest/userguide/evaluation.html) |
-
-#### FS-41 — SageMaker Clarify Explainability
-
-| Field | Detail |
-|-------|--------|
-| Severity | High |
-| PDF ref | [PDF §1.2.5, extension] — PDF §1.2.5 recommends "Amazon SageMaker Clarify to detect bias, increase transparency, and explain predictions". ECOA/Fair Housing adverse-action-notice use case is an FS-specific extension of Clarify explainability not named verbatim in the PDF. |
-| Description | Verifies Clarify explainability monitoring for adverse action notices (commonly cited under ECOA for credit decisions; this is an FS industry-practice extension, not a PDF-prescribed control). |
-| Detection | Calls `sagemaker:ListMonitoringSchedules` with the `MonitoringTypeEquals=ModelExplainability` filter parameter. Flags if no explainability monitoring schedules exist for financial decision model endpoints. Clarify explainability monitoring publishes metrics to the `aws/sagemaker/Endpoints/explainability-metrics` namespace for real-time endpoints (and `aws/sagemaker/ModelMonitoring/explainability-metrics` for batch transform jobs) with `Endpoint`, `MonitoringSchedule`, `ExplainabilityMethod` (value: `KernelShap`), `Label`, and `ValueType` (values: `GlobalShapValues` or `ExpectedValue`) dimensions. |
-| Remediation | 1. Create a SageMaker Clarify explainability monitoring schedule using SHAP analysis. 2. Configure feature attribution baselines. 3. Use explainability outputs to generate adverse action notices (top contributing factors for negative decisions) where your firm's use case and regulatory interpretation require them. 4. Retain explainability reports for regulatory audit. |
-| Reference | [SageMaker Clarify Explainability](https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-model-explainability.html) |
-
-#### FS-42 — AI Service Cards
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.4, §1.2.5, §1.2.14] — "Amazon provides AI Service Cards for models that are pre-trained for AWS services like Amazon Bedrock and Amazon Q. These cards help you understand how Amazon addresses toxicity in each model." Referenced in three separate PDF risk sections. |
-| Description | Checks SageMaker Model Cards document intended use and bias evaluations. |
-| Detection | Calls `sagemaker:ListModelCards`. For each card, calls `sagemaker:DescribeModelCard` and inspects the content JSON for `intended_uses`, `business_details`, and `evaluation_details` sections. Flags cards missing these sections. |
-| Remediation | 1. Create a SageMaker Model Card for each production model. 2. Document: intended use cases, out-of-scope uses, training data description, bias evaluation results, performance metrics. 3. Review and update cards after each model retrain. 4. For Bedrock foundation models, reference the AWS AI Service Cards published by Amazon. |
-| Reference | [SageMaker Model Cards](https://docs.aws.amazon.com/sagemaker/latest/dg/model-cards.html), [AWS AI Service Cards](https://aws.amazon.com/ai/responsible-ai/resources/) |
-
-### Sensitive Information Disclosure (FS-43 to FS-46)
-
-> **PDF source:** §1.2.6 Sensitive information disclosure. PDF-listed mitigations:
-> (a) Bedrock Guardrails sensitive information filters for PII, PHI;
-> (b) data classification scanning and access controls on AI data sources;
-> (c) strict IAM access controls for Bedrock API;
-> (d) mask sensitive information in CloudWatch Logs and custom application logging;
-> (e) protect training and fine-tuning data via data protection best practices;
-> (f) monitor PII in training/fine-tuning/RAG data with Amazon Macie;
-> (g) remove, mask, or tokenize PII before use in training, fine-tuning, or RAG;
-> (h) Practical guidance: least privilege for agent identities; user-authorized communications
-> to tool services; propagate end-user identities so tool services can validate them without
-> revealing them to unauthorized third parties.
-
-#### FS-43 — CloudWatch Log PII Masking
-
-| Field | Detail |
-|-------|--------|
-| Severity | High |
-| PDF ref | [PDF §1.2.6] — "If you implement model invocation logging for the LLM or custom logging logic in your application, make sure to mask sensitive information in your log data." References "Amazon CloudWatch – Help protect sensitive log data with masking". |
-| Description | Checks CloudWatch Logs data protection policies mask PII in Bedrock invocation logs. |
-| Detection | Identifies CloudWatch log groups used by Bedrock invocation logging (from `bedrock:GetModelInvocationLoggingConfiguration`). Calls `logs:GetDataProtectionPolicy` for each log group. Flags log groups with no data protection policy or policies missing PII identifiers. Note: model invocation logging only captures calls made through the `bedrock-runtime` endpoint (`Converse`, `ConverseStream`, `InvokeModel`, `InvokeModelWithResponseStream`); calls through other endpoints such as the Responses API (`bedrock-mantle` endpoint) are not captured. |
-| Remediation | 1. Create a CloudWatch Logs data protection policy on each Bedrock log group. 2. Include managed data identifiers using their exact ARN-based IDs — country-code suffixes are **required** in the ARN for most identifiers (the data-types table uses the short name such as `Ssn`, but the ARN must include the country code): `Ssn-US` (US Social Security Number; `Ssn-ES` for Spain — there is no bare `Ssn` ARN), `CreditCardNumber` (no suffix), `CreditCardSecurityCode` (no suffix), `EmailAddress` (no suffix), `Address` (no suffix), `PhoneNumber-US`, `BankAccountNumber-US`, `DriversLicense-US`, `PassportNumber-US`, `IndividualTaxIdentificationNumber-US`. 3. Add a `Deidentify` operation statement (no hyphen — this is the exact JSON key required in the policy document, even though AWS prose documentation uses "De-identify") to mask sensitive data, and a separate `Audit` statement to emit findings to CloudWatch. The `Deidentify` operation must contain an empty `"MaskConfig": {}` object. 4. **Retroactive masking scope:** A **log group-level** data protection policy only masks data ingested **after** the policy is applied — historical log events are not retroactively masked. However, an **account-level** data protection policy applies to both existing log groups and log groups created in the future. For maximum coverage, consider creating an account-level policy in addition to log group-level policies. Apply policies at log group creation time or as early as possible. 5. Test by sending a log entry containing sample PII and verifying it is masked in subsequent reads. |
-| Reference | [CloudWatch Logs Data Protection](https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/mask-sensitive-log-data.html), [PII Data Identifier ARNs](https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/protect-sensitive-log-data-types-pii.html), [Financial Data Identifier ARNs](https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/protect-sensitive-log-data-types-financial.html) |
-
-#### FS-44 — Amazon Macie PII Scanning and Pre-Processing
-
-| Field | Detail |
-|-------|--------|
-| Severity | High |
-| PDF ref | [PDF §1.2.6] — "Monitor personally identifiable information (PII) in your data when you train models, fine-tune them, or use retrieval-augmented generation (RAG)" and "Remove, mask, or tokenize personally identifiable information (PII) or sensitive data before you use it for training, fine-tuning, or retrieval-augmented generation (RAG)." |
-| Description | Verifies Macie is enabled and scanning AI/ML data buckets, and checks that a PII pre-processing step (tokenization, masking, or removal) exists in training and RAG ingestion pipelines before data reaches the model. |
-| Detection | Calls `macie2:GetMacieSession` to verify Macie is enabled. Calls `macie2:GetAutomatedDiscoveryConfiguration` to check whether automated sensitive data discovery is enabled (preferred over manual classification jobs — automated discovery evaluates S3 buckets daily without explicit job creation). Also calls `macie2:ListClassificationJobs` to check for any additional targeted jobs covering S3 buckets tagged for AI/ML use. Additionally inspects SageMaker Processing jobs or Glue jobs for PII-related naming patterns indicating a pre-processing pipeline. |
-| Remediation | 1. Enable Amazon Macie in the account. 2. **Preferred:** Enable Macie **Automated Sensitive Data Discovery** (via `macie2:UpdateAutomatedDiscoveryConfiguration` set to `ENABLED`) — this continuously evaluates ALL S3 buckets in the account or organization daily, selects representative objects, and produces sensitive-data findings without requiring manual job creation. 3. For higher-priority AI/ML buckets where you need full-depth scans, supplement with targeted classification jobs (`macie2:CreateClassificationJob`) scheduled at least weekly. 4. Implement a PII pre-processing step in your data pipeline (SageMaker Processing job, Glue job, or Lambda) that tokenizes, masks, or removes PII before data is used for training or RAG ingestion. 5. Use Amazon Comprehend `DetectPiiEntities` or Macie findings to identify PII locations and feed them into the pre-processing step. 6. Route Macie findings to EventBridge and then to your SIEM or ticketing system for timely investigation. |
-| Reference | [Amazon Macie](https://docs.aws.amazon.com/macie/latest/user/what-is-macie.html), [Macie Automated Sensitive Data Discovery](https://docs.aws.amazon.com/macie/latest/user/discovery-asdd.html), [Amazon Comprehend PII Detection](https://docs.aws.amazon.com/comprehend/latest/dg/pii.html) |
-
-#### FS-45 — Guardrail PII Filters
-
-| Field | Detail |
-|-------|--------|
-| Severity | High |
-| PDF ref | [PDF §1.2.6] — "Use Amazon Bedrock Guardrails to detect and filter structured sensitive information in model inputs and outputs, such as personally identifiable information (PII), protected health information (PHI)." |
-| Description | Checks guardrails have PII entity filters for SSN, credit card, and account numbers. |
-| Detection | Calls `bedrock:GetGuardrail` and inspects `sensitiveInformationPolicy.piiEntities`. Flags guardrails missing filters for critical PII types: `US_SOCIAL_SECURITY_NUMBER`, `CREDIT_DEBIT_CARD_NUMBER`, `CREDIT_DEBIT_CARD_CVV`, `CREDIT_DEBIT_CARD_EXPIRY`, `US_BANK_ACCOUNT_NUMBER`, `US_BANK_ROUTING_NUMBER`, `PIN`, `SWIFT_CODE`, `INTERNATIONAL_BANK_ACCOUNT_NUMBER`, `US_INDIVIDUAL_TAX_IDENTIFICATION_NUMBER`, `EMAIL`, `PHONE`. |
-| Remediation | 1. Update the guardrail to add PII entity filters for all relevant types. 2. Configure separate input and output actions using the `inputAction` and `outputAction` fields: set `outputAction=ANONYMIZE` (replace with placeholder such as `{US_SOCIAL_SECURITY_NUMBER}`) so PII in model responses is masked before reaching the user; set `inputAction=BLOCK` for PII types that should never be submitted (e.g., SSN, credit card numbers). 3. Use `inputEnabled` and `outputEnabled` to selectively enable evaluation per direction — disable evaluation on a direction you don't need to reduce cost and latency. 4. **PHI coverage nuance:** The Bedrock Guardrails sensitive information filter has only limited built-in PHI entities — specifically `CA_HEALTH_NUMBER` (Canada) and `UK_NATIONAL_HEALTH_SERVICE_NUMBER` (UK). For US HIPAA PHI (for example, Medical Record Numbers, Health Plan Beneficiary Numbers, Medicare Beneficiary Identifiers), there is no built-in entity type — use `regexesConfig` (custom regex patterns) on the guardrail to detect these patterns, complemented by downstream CloudWatch Logs data protection policies (see FS-43) which have PHI identifiers under the HIPAA category. 5. **Critical limitation — tool_use outputs:** The sensitive information filter does NOT detect PII when models respond with `tool_use` (function call) output parameters via supported APIs. For FinServ agentic applications where models invoke tools and return structured function-call responses, implement application-layer PII scanning on tool outputs before they are processed or displayed. 6. **Critical limitation — invocation logs:** Guardrail PII masking applies only to content sent to and returned from the inference model. It does NOT apply to model invocation logs — the `input` field in CloudWatch Logs always contains the original, unmasked request regardless of guardrail intervention. Use CloudWatch Logs data protection policies (see FS-43) to mask PII in logs separately. Similarly, the `match` field in guardrail trace output contains the original PII value, not the masked output. 7. Test with sample inputs containing each PII type and verify both input blocking and output anonymization work as expected. |
-| Reference | [Bedrock Guardrails Sensitive Information Filters](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-sensitive-filters.html) |
-
-#### FS-46 — Data Classification Tagging
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.6] — "Implement data classification scanning and access controls on the data sources connected to your AI system to prevent disclosure of company-confidential or proprietary information." |
-| Description | Verifies AI/ML S3 buckets are tagged with data classification labels. |
-| Detection | Lists S3 buckets and filters for AI/ML-related names or tags. Calls `s3:GetBucketTagging` for each and checks for a `data-classification` tag with values like `public`, `internal`, `confidential`, `restricted`. Flags buckets missing the tag. |
-| Remediation | 1. Define a data classification taxonomy (e.g., Public, Internal, Confidential, Restricted). 2. Tag all AI/ML S3 buckets with `data-classification=<level>`. 3. **Detective enforcement:** Create an AWS Config managed rule (`required-tags`, checks up to six tag keys at a time) to identify buckets missing the tag and trigger remediation via a custom SSM automation document (note: the AWS-managed `AWS-SetRequiredTags` automation document does NOT work as a remediation with this rule — you must author a custom Systems Manager automation document). 4. **Preventive enforcement:** Use AWS Organizations **Tag Policies** to require the `data-classification` tag key with allowed values (Public, Internal, Confidential, Restricted) across accounts — Tag Policies are preventive and complement the detective Config rule. 5. Use tag-based IAM policies (via condition keys `aws:ResourceTag/data-classification`) to restrict S3 access based on classification level. 6. Pair with Macie classification jobs (see FS-44) so that buckets automatically classified as containing sensitive data are flagged if their `data-classification` tag is missing or inconsistent with the Macie findings. |
-| Reference | [AWS Tagging Best Practices](https://docs.aws.amazon.com/tag-editor/latest/userguide/tagging.html), [AWS Config required-tags Rule](https://docs.aws.amazon.com/config/latest/developerguide/required-tags.html), [AWS Organizations Tag Policies](https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_tag-policies.html) |
diff --git a/docs/SECURITY_CHECKS_FINSERV_PART3_APP_LAYER_AND_GAPS.md b/docs/SECURITY_CHECKS_FINSERV_PART3_APP_LAYER_AND_GAPS.md
deleted file mode 100644
index a0e2a44..0000000
--- a/docs/SECURITY_CHECKS_FINSERV_PART3_APP_LAYER_AND_GAPS.md
+++ /dev/null
@@ -1,368 +0,0 @@
-# FinServ GenAI Risk Checks — Part 3: Application-Layer Controls & Material Gaps (FS-47 to FS-69)
-
-This is **Part 3 of 3** of the FinServ GenAI security checks derived from the
-[AWS guide for Financial Services risk management of the use of Generative AI (March 2026)](https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf)
-(referred to throughout as "the FinServ Guide").
-
-This part covers **22 standalone checks** across 6 PDF risk categories (FS-64 is merged into upstream BR-04 — see extension note in the Material Gaps section):
-
-- **Hallucination** (FS-47 to FS-50) — §1.2.7
-- **Prompt Injection** (FS-51 to FS-54) — §1.2.8
-- **Improper Output Handling** (FS-55 to FS-58) — §1.2.13
-- **Off-Topic & Inappropriate Output** (FS-59 to FS-60) — §1.2.2
-- **Out-of-Date Training Data** (FS-61 to FS-63) — §1.2.10
-- **Additional Controls — Material Gaps** (FS-64 to FS-69) — cross-cutting checks addressing PDF-listed mitigations not covered elsewhere; *FS-64 merged into upstream*
-
-**Companion files:**
-
-- `SECURITY_CHECKS_FINSERV_PART1_INFRA_CONTROLS.md` — FS-01 to FS-26 (Unbounded, Excessive Agency, Supply Chain, Training Poisoning, Vector Weaknesses)
-- `SECURITY_CHECKS_FINSERV_PART2_GUARDRAILS_CONTENT_SAFETY.md` — FS-27 to FS-46 (Non-Compliant, Misinformation, Abusive, Biased, Sensitive Info)
-- `SECURITY_CHECKS_FINSERV_COMMON.md` — shared intro, severity rubric, validation note, upstream-overlap table
-
-Each check includes how it is **detected** (the AWS API calls or configuration inspected)
-and how a failure is **remediated** (the specific AWS actions to take).
-
-See `SECURITY_CHECKS_FINSERV_COMMON.md` for:
-
-- PDF traceability conventions (`[PDF §x.y.z]` vs `[PDF §x.y.z, extension]`)
-- Severity rubric (High / Medium / Low / Informational) — see SECURITY_CHECKS_FINSERV_SEVERITY_METHODOLOGY.md
-- Validation note and AWS service authorization references
-- Relationship to upstream SM/BR/AC checks and consolidation recommendations
-
----
-
-## FinServ GenAI Risk Checks — Part 3 content
-
-### Hallucination (FS-47 to FS-50)
-
-> **PDF source:** §1.2.7 Hallucination. PDF-listed mitigations:
-> (a) prompt engineering;
-> (b) RAG with Bedrock Knowledge Bases;
-> (c) detect hallucinations in RAG and agent-based systems;
-> (d) HITL validation for internal AI systems;
-> (e) Automated Reasoning checks in Bedrock Guardrails;
-> (f) Bedrock Guardrails contextual grounding checks with reference source and query;
-> (g) response disclaimers in customer-facing applications informing users that AI responses
-> should be verified for critical decisions.
-
-#### FS-47 — Guardrail Grounding Threshold
-
-| Field | Detail |
-|-------|--------|
-| Severity | High |
-| PDF ref | [PDF §1.2.7] — "You can use Amazon Bedrock Guardrails to detect and filter hallucinations in model responses by performing contextual grounding checks when you provide a reference source and query." |
-| Description | Verifies guardrail grounding thresholds are set appropriately for financial use cases (this assessment recommends ≥ 0.7; AWS does not prescribe a specific minimum, but the valid range is 0 to 0.99). Note: contextual grounding checks are not supported for conversational chatbot use cases — only for summarization, paraphrasing, and Q&A. |
-| Detection | Calls `bedrock:GetGuardrail` and inspects `contextualGroundingPolicy.filters` for the `GROUNDING` filter type. Checks that the `threshold` value is ≥ 0.7. Flags guardrails with lower thresholds or no grounding filter. |
-| Remediation | 1. Update the guardrail to set the grounding filter threshold to at least 0.7 (this assessment recommends 0.8 for financial services to reduce hallucination risk — note: AWS does not prescribe a specific minimum, but the valid range is **0 to 0.99**; a value of 1.0 is explicitly invalid and will block all content per AWS documentation). 2. Enable the grounding filter for both the `GROUNDING` and `RELEVANCE` types. 3. Test with prompts that should and should not be grounded in the reference source — tune the threshold based on your false-positive/false-negative tolerance. 4. Monitor grounding filter invocation rates via CloudWatch using the `AWS/Bedrock/Guardrails` namespace. **Important limitation:** Contextual grounding checks support only summarization, paraphrasing, and question-answering use cases — **Conversational QA / Chatbot use cases are explicitly not supported** per AWS documentation. For FinServ chatbot deployments, use denied topics and content filters (FS-28, FS-36, FS-59) as the primary hallucination-mitigation controls instead. |
-| Reference | [Bedrock Guardrails Contextual Grounding](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-contextual-grounding-check.html) |
-
-#### FS-48 — RAG Knowledge Base
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.1, §1.2.7, §1.2.10] — "Use Retrieval-Augmented Generation (RAG) to enhance your model responses with information from trusted knowledge bases." Referenced in three separate PDF risk sections. |
-| Description | Checks active Knowledge Bases are configured for RAG grounding. |
-| Detection | Calls `ListKnowledgeBases` (via the `bedrock-agent` boto3 client; IAM action `bedrock:ListKnowledgeBases`) and checks that at least one KB exists with `status=ACTIVE`. Flags accounts with no active KBs when Bedrock models are in use (indicating responses are ungrounded). |
-| Remediation | 1. Create a Bedrock Knowledge Base with your authoritative data sources. 2. Configure the KB with an appropriate embedding model and vector store. 3. Use `RetrieveAndGenerate` API instead of direct `InvokeModel` for customer-facing use cases. 4. Sync data sources on a regular schedule. |
-| Reference | [Bedrock Knowledge Bases](https://docs.aws.amazon.com/bedrock/latest/userguide/knowledge-base.html) |
-
-#### FS-49 — Hallucination Disclaimer
-
-| Field | Detail |
-|-------|--------|
-| Severity | Informational |
-| PDF ref | [PDF §1.2.7] — "Implement response disclaimers in customer-facing applications, to inform end users that AI-generated responses should be verified for critical decisions." References "AWS Well-Architected Framework Generative AI Lens - Implement guardrails to mitigate harmful or incorrect model responses". |
-| Description | Advisory: verifies application adds hallucination disclaimers to AI-generated outputs. |
-| Detection | Advisory check — inspects application Lambda environment variables for disclaimer-related settings. Checks for post-processing Lambda functions that append disclaimers. |
-| Remediation | 1. Add a standard disclaimer to all AI-generated responses: "This response is generated by AI and may contain inaccuracies. Please verify critical information independently." 2. Make the disclaimer configurable and non-removable by prompt manipulation. 3. For financial decisions, add: "This does not constitute financial advice." |
-| Reference | [AWS Well-Architected GenAI Lens](https://docs.aws.amazon.com/wellarchitected/latest/generative-ai-lens/gensec02-bp01.html) |
-
-#### FS-50 — Relevance Grounding Filters
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.2, §1.2.7] — "Use Amazon Bedrock Guardrails to detect and filter hallucinations in model responses by performing contextual grounding checks." Contextual grounding covers both `GROUNDING` and `RELEVANCE` filter sub-types. |
-| Description | Checks guardrails have relevance grounding filters to prevent off-topic responses. |
-| Detection | Calls `bedrock:GetGuardrail` and inspects `contextualGroundingPolicy.filters` for the `RELEVANCE` filter type. Flags guardrails with no relevance filter configured. |
-| Remediation | 1. Update the guardrail to enable the `RELEVANCE` contextual grounding filter. 2. Set the threshold to at least 0.7 (valid range is **0 to 0.99**; a value of 1.0 is explicitly invalid per AWS documentation). 3. This ensures responses are relevant to the user's query and the provided reference source, filtering out off-topic hallucinations. **Important limitation:** Contextual grounding checks (both `GROUNDING` and `RELEVANCE`) support only summarization, paraphrasing, and question-answering use cases — **Conversational QA / Chatbot use cases are explicitly not supported** per AWS documentation. For FinServ chatbot deployments, use denied topics (FS-59) as the primary off-topic control. |
-| Reference | [Bedrock Guardrails Contextual Grounding](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-contextual-grounding-check.html) |
-
-### Prompt Injection (FS-51 to FS-54)
-
-> **PDF source:** §1.2.8 Prompt injection. PDF-listed mitigations:
-> (a) prompt engineering best practices to avoid prompt injection;
-> (b) input validation — sanitize user input, remove special characters or use escape sequences,
-> match expected format;
-> (c) secure coding practices — parameterized queries, avoid string concatenation, minimal
-> privileges;
-> (d) security testing — regular testing for prompt injection and vulnerabilities, pentest,
-> static code analysis, DAST;
-> (e) stay updated — keep Bedrock SDK, libraries, and dependencies current;
-> (f) Bedrock Guardrails to detect and block user inputs attempting to override system
-> instructions through prompt attacks.
-
-#### FS-51 — Prompt Attack Filters
-
-| Field | Detail |
-|-------|--------|
-| Severity | High |
-| PDF ref | [PDF §1.2.8] — "Use Amazon Bedrock Guardrails to detect and block user inputs that attempt to override system instructions through prompt attacks." |
-| Description | Verifies guardrails have PROMPT_ATTACK content filters enabled and are configured correctly for the Standard tier. |
-| Detection | Calls `bedrock:GetGuardrail` and inspects `contentPolicy.filters` for a filter with `type=PROMPT_ATTACK`. Flags guardrails where this filter is absent, has `inputStrength` set to `NONE` or `LOW` (note: PROMPT_ATTACK only applies to inputs — there is no `outputStrength` for this filter type), or where `contentPolicy.tier.tierName=CLASSIC` (the PROMPT_ATTACK filter in Classic tier detects jailbreaks and prompt injection; in Standard tier it additionally detects **prompt leakage** — attempts to extract system prompts or developer instructions). |
-| Remediation | 1. Ensure the guardrail is configured with the **Standard** content filters tier — prompt leakage detection (extracting system prompts/developer instructions) is available only in Standard tier; jailbreak and prompt injection detection are available in both tiers. Standard tier requires cross-Region inference to be enabled on the guardrail. You can configure Standard tier on a **new or existing guardrail**: for an existing guardrail, modify it via `UpdateGuardrail` (set `tierConfig.tierName=STANDARD` in `contentPolicyConfig` and add a `crossRegionConfig.guardrailProfileIdentifier`), or use the console by editing the guardrail and selecting Standard tier with cross-Region inference. 2. Add a `PROMPT_ATTACK` content filter with `inputStrength=HIGH`. 3. **Wrap user input in guardrail input tags when using `InvokeModel` or `InvokeModelResponseStream`** — for these APIs, PROMPT_ATTACK only evaluates content enclosed in input tags (e.g., `<amazon-bedrock-guardrails-guardContent_xyz>user text</amazon-bedrock-guardrails-guardContent_xyz>` — the reserved prefix is `amazon-bedrock-guardrails-guardContent` and the suffix should be a unique random string per request to prevent an attacker from closing the tag and appending malicious content). Untagged content is not evaluated for PROMPT_ATTACK when using these APIs. **Note:** When using the `Converse` API, use the `guardContent` field (`GuardrailConverseContentBlock`) in user messages to scope PROMPT_ATTACK evaluation to specific content — this is the Converse API equivalent of input tags. Without `guardContent`, the guardrail evaluates ALL message content (the entire messages array). Using `guardContent` in user messages ensures only user-provided content is evaluated for prompt attacks, while system prompts and conversation history are excluded. If no `guardContent` blocks are present in messages, the guardrail evaluates everything in the messages array. 4. Test with known prompt injection patterns (role-play attacks, instruction override, delimiter injection). 5. Monitor filter invocation rates via CloudWatch guardrail metrics (`InvocationsIntervened` in the `AWS/Bedrock/Guardrails` namespace, filtered by `GuardrailPolicyType=ContentPolicy`) for trending attack patterns. |
-| Reference | [Bedrock Guardrails Prompt Attack](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-prompt-attack.html), [Safeguard tiers for guardrails](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-tiers.html), [Securing Amazon Bedrock Agents against indirect prompt injections](https://aws.amazon.com/blogs/machine-learning/securing-amazon-bedrock-agents-a-guide-to-safeguarding-against-indirect-prompt-injections/) |
-
-#### FS-52 — Bedrock SDK Version Currency
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.8] — "Stay Updated – Keep your Amazon Bedrock SDK, libraries, and dependencies current to receive the latest security patches and updates." |
-| Description | Checks Bedrock Lambda functions use current (non-deprecated) runtimes and SDK versions. |
-| Detection | Calls `lambda:ListFunctions` and filters for functions with Bedrock-related names or environment variables referencing Bedrock. Checks each function's `Runtime` against the list of deprecated Lambda runtimes. |
-| Remediation | 1. Update Lambda functions to use a currently supported runtime — as of April 2026, recommended runtimes are `python3.13` or `python3.14` for Python (both deprecation date June 30, 2029; `python3.12` remains supported through Oct 31, 2028), and `nodejs22.x` or `nodejs24.x` for Node.js (`nodejs20.x` reaches deprecation on April 30, 2026 and should not be used for new deployments). 2. Update the Bedrock SDK (boto3/botocore) to the latest version in your requirements.txt or package.json. 3. Test after upgrading to verify no breaking changes. 4. Subscribe to AWS Lambda runtime deprecation notifications via EventBridge or SNS (Lambda also surfaces runtime deprecation notices via AWS Health Dashboard and Trusted Advisor). |
-| Reference | [Lambda Runtime Deprecation Policy](https://docs.aws.amazon.com/lambda/latest/dg/lambda-runtimes.html) |
-
-#### FS-53 — WAF Injection Protection Rules
-
-| Field | Detail |
-|-------|--------|
-| Severity | High |
-| PDF ref | [PDF §1.2.8, extension] — WAF SQLi and known-bad-inputs rule groups are not named in the PDF, but implement the PDF mitigation "Secure Coding Practices – use parameterized queries, avoid string concatenation for input, grant minimal access privileges" at the network edge for web-facing GenAI endpoints. |
-| Description | Verifies WAF ACLs include SQL injection (`AWSManagedRulesSQLiRuleSet`) and known-bad-inputs (`AWSManagedRulesKnownBadInputsRuleSet`) managed rule groups for GenAI endpoints. |
-| Detection | Calls `wafv2:ListWebACLs(Scope=REGIONAL)` and for each calls `wafv2:GetWebACL`. Inspects the rules list for `AWSManagedRulesSQLiRuleSet` and `AWSManagedRulesKnownBadInputsRuleSet`. Flags ACLs missing either rule group. |
-| Remediation | 1. Add `AWSManagedRulesSQLiRuleSet` to your WAF Web ACL (contains SQLi detection rules for body, URI path, cookie, and query-string components). 2. Add `AWSManagedRulesKnownBadInputsRuleSet` for known Remote Command Execution (RCE) and vulnerability-discovery patterns (e.g., Log4j, Spring Core deserialization, path traversal) — note this rule group does NOT cover XSS; XSS is in `AWSManagedRulesCommonRuleSet` (see FS-56). 3. Set both rule groups to COUNT mode initially, review logs for false positives, then switch to BLOCK. 4. Create custom rules for GenAI-specific injection patterns if needed. |
-| Reference | [AWS WAF Managed Rules](https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-list.html) |
-
-#### FS-54 — Penetration Testing Evidence
-
-| Field | Detail |
-|-------|--------|
-| Severity | Informational |
-| PDF ref | [PDF §1.2.8] — "Security Testing – Test your applications regularly for prompt injection and other security vulnerabilities. Use penetration testing, static code analysis, and dynamic application security testing (DAST)." |
-| Description | Advisory: verifies GenAI applications have been penetration tested for prompt injection and other AI-specific vulnerabilities. |
-| Detection | Advisory check — inspects resource tags for `last-pentest-date` or checks for a documented penetration testing schedule. Cannot be fully automated. |
-| Remediation | 1. Conduct penetration testing of your GenAI application at least annually and before major releases. 2. Include AI-specific test cases: prompt injection, jailbreak attempts, data extraction, system prompt leakage. 3. Use tools like Garak, PyRIT, manual red-teaming, or the **AWS Security Agent**. As of the March 2026 GA announcement, Security Agent runs from 6 AWS regions (N. Virginia, Oregon, Ireland, Frankfurt, Sydney, Tokyo) but can test targets across AWS, Azure, GCP, and on-premises environments. For multi-account FinServ deployments, Security Agent supports penetration testing on VPC resources **shared across AWS accounts in the same AWS Organization** via AWS Resource Access Manager (RAM) — enable this by launching Security Agent from a central security account and sharing VPC resources from sub-accounts via RAM. **Verify current region coverage on the [AWS Security Agent page](https://aws.amazon.com/security-agent/) before citing**, as AWS has been expanding regional availability and feature set rapidly. 4. Document findings and track remediation. 5. Tag resources with `last-pentest-date` for audit trail. |
-| Reference | [AWS Penetration Testing Policy](https://aws.amazon.com/security/penetration-testing/), [AWS Security Agent GA](https://aws.amazon.com/about-aws/whats-new/2026/03/aws-security-agent-ondemand-penetration/) |
-
-### Improper Output Handling (FS-55 to FS-58)
-
-> **PDF source:** §1.2.13 Improper output handling. PDF-listed mitigations:
-> (a) implement output validation rules against expected response format (e.g., JSON schema,
-> SQL schema);
-> (b) apply context-specific output sanitization — HTML encoding for web apps, SQL
-> parameterization for database queries, command escaping for system integrations;
-> (c) Practical guidance: treat model output as untrusted user input; use Bedrock Agents
-> action-group Lambda to implement output encoding so output text is non-executable by
-> JavaScript or Markdown.
-
-#### FS-55 — Output Validation Lambda
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.13] — "Implement output validation rules specific to the expected response format. For example, if the AI system is expected to return structured data (JSON, SQL), validate the output against the expected schema before processing." |
-| Description | Checks for Lambda functions implementing output validation/sanitization before AI responses reach downstream consumers. |
-| Detection | Calls `lambda:ListFunctions` and searches for functions with naming patterns indicating output validation (e.g., "output-valid", "sanitiz", "post-process", "response-filter"). Flags if no such functions exist. |
-| Remediation | 1. Implement a post-processing Lambda that validates AI model output before it reaches the end user or downstream system. 2. Validate output against expected schema (JSON schema validation for structured responses). 3. Strip or escape any executable content (HTML tags, JavaScript, SQL fragments). 4. Log rejected outputs for security monitoring. |
-| Reference | [AWS Well-Architected Security Pillar — Application Security](https://docs.aws.amazon.com/wellarchitected/latest/security-pillar/application-security.html), [Bedrock Prompt Injection Security](https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-injection.html), [Well-Architected FSI Lens — FSISEC14 Monitor AI system outputs for security issues](https://docs.aws.amazon.com/wellarchitected/latest/financial-services-industry-lens/fsisec14.html) |
-
-#### FS-56 — XSS Prevention WAF
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.13, extension] — WAF XSS rule groups are not named in the PDF, but implement the PDF mitigation "Apply context-specific output sanitization ... apply HTML encoding for web applications" at the network edge. |
-| Description | Verifies WAF ACLs include XSS prevention rules to protect against AI-generated outputs containing malicious scripts. |
-| Detection | Calls `wafv2:GetWebACL` for each regional ACL and inspects rules for `AWSManagedRulesCommonRuleSet` (which includes the four `CrossSiteScripting_*` rules covering request body, query arguments, cookies, and URI path) or custom rules using `XssMatchStatement` on request components. Flags ACLs missing XSS protection. |
-| Remediation | 1. Add `AWSManagedRulesCommonRuleSet` to your WAF Web ACL (includes `CrossSiteScripting_COOKIE`, `CrossSiteScripting_QUERYARGUMENTS`, `CrossSiteScripting_BODY`, and `CrossSiteScripting_URIPATH` rules — all four inspect **inbound request** components). 2. `XssMatchStatement` and the CRS XSS rules inspect **request** components only (body, query string, URI path, cookies, headers). WAF does NOT inspect arbitrary response bodies for XSS — response inspection (`ResponseInspection`) is available only in `AWSManagedRulesATPRuleSet`/`AWSManagedRulesACFPRuleSet` for CloudFront-protected ACLs and only scans for configured success/failure strings. 3. To protect against XSS in **AI-generated output**, enforce output encoding at the application layer (see FS-57) — rendering raw model output in a browser without encoding is the root cause that WAF cannot mitigate after the fact. 4. Apply output encoding in your application layer as defense-in-depth. |
-| Reference | [AWS WAF XSS Protection](https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-baseline.html) |
-
-#### FS-57 — Output Encoding
-
-| Field | Detail |
-|-------|--------|
-| Severity | Informational |
-| PDF ref | [PDF §1.2.13] — "Apply context-specific output sanitization based on the downstream consumer. For example, apply HTML encoding for web applications, SQL parameterization for database queries, and command escaping for system integrations." Practical guidance: "Use Amazon Bedrock Agents to securely integrate with AWS native and third-party services and implement output encoding in the action group Lambda function under an Amazon Bedrock Agent. Encoding all output text presented to end-users makes it automatically non-executable by JavaScript or Markdown." |
-| Description | Advisory: verifies application encodes GenAI outputs appropriately for the rendering context (HTML, JSON, SQL). |
-| Detection | Advisory check — inspects application Lambda functions for encoding libraries or patterns (e.g., `html.escape`, `json.dumps`, `markupsafe`). Checks environment variables for encoding-related configuration. |
-| Remediation | 1. Treat all model output as untrusted user input. 2. Apply context-specific encoding: HTML encoding for web display, SQL parameterization for database queries, command escaping for system integrations. 3. Use Bedrock Agents action-group Lambda functions to implement output encoding — encoding all output text makes it non-executable by JavaScript or Markdown renderers. 4. Never render raw model output in a web page without encoding. |
-| Reference | [OWASP Output Encoding](https://cheatsheetseries.owasp.org/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.html) |
-
-#### FS-58 — Output Schema Validation
-
-| Field | Detail |
-|-------|--------|
-| Severity | Informational |
-| PDF ref | [PDF §1.2.13] — "Implement output validation rules specific to the expected response format. For example, if the AI system is expected to return structured data (JSON, SQL), validate the output against the expected schema before processing." |
-| Description | Checks for structured output validation in GenAI pipelines (JSON schema, XML schema, or custom validators). |
-| Detection | Inspects Step Functions state machine definitions for states that perform schema validation (e.g., `Choice` states with JSON path conditions, Lambda states with "schema" or "validate" in the name). Does not rely on API Gateway response models as a validation signal because those are used for SDK generation, not runtime validation. |
-| Remediation | 1. Define a JSON schema for expected AI output format. 2. Add a validation step in your pipeline (Lambda function or Step Functions Choice state) that rejects non-conforming outputs **before** returning the response to clients — this is the runtime enforcement point. 3. Note: API Gateway *response models* in REST APIs are used for SDK generation (user-defined data types) and documentation — they do NOT perform runtime validation of response payloads. API Gateway *request validators* only validate inbound requests against request models. To validate AI output at runtime, implement the check in Lambda/Step Functions before the response reaches API Gateway. 4. Return a safe fallback response when validation fails. 5. Log rejected outputs (without leaking sensitive content) for security monitoring. |
-| Reference | [API Gateway Request and Response Validation](https://docs.aws.amazon.com/apigateway/latest/developerguide/api-gateway-method-request-validation.html) |
-
-### Off-Topic & Inappropriate Output (FS-59 to FS-60)
-
-> **PDF source:** §1.2.2 Off-topic and inappropriate output. PDF-listed mitigations:
-> (a) prompt engineering with an allowlist of approved topics aligned with business purpose;
-> (b) content filters and denied topics in Bedrock Guardrails;
-> (c) Bedrock Guardrails contextual grounding check with reference source and query;
-> (d) HITL validation for internal AI systems.
-
-#### FS-59 — Guardrail Topic Allowlist
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.2] — "Configure content filters and guardrails to restrict model responses to approved topics." The check name uses "allowlist" loosely — implementation uses denied-topic lists to block out-of-scope content. |
-| Description | Verifies guardrails restrict GenAI to on-topic financial services responses via denied topics. |
-| Detection | Calls `bedrock:GetGuardrail` and inspects `topicPolicy.topics`. Checks that denied topics exist to block off-topic conversations (e.g., politics, entertainment, medical advice). Flags guardrails with no topic restrictions. |
-| Remediation | 1. Define denied topics that are outside your business scope (e.g., "medical advice", "legal advice", "political opinions", "entertainment recommendations"). 2. Add these as denied topics in the guardrail with clear descriptions and sample phrases. 3. Test with off-topic prompts to verify they are blocked. 4. Use the system prompt to positively scope the assistant's role. |
-| Reference | [Bedrock Guardrails Topic Policies](https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-denied-topics.html) |
-
-#### FS-60 — Contextual Grounding for Off-Topic
-
-| Field | Detail |
-|-------|--------|
-| Severity | Informational |
-| PDF ref | [PDF §1.2.2] — "Use prompt engineering techniques to guide the model toward appropriate topics and prevent unwanted responses. Include an allowlist of approved topics aligned with the business purpose." Use of Bedrock Prompt Management for system prompt versioning is an implementation choice. |
-| Description | Advisory: verifies system prompts explicitly scope the assistant's role to prevent off-topic responses. |
-| Detection | Advisory check — inspects Bedrock Prompt Management templates (via `ListPrompts` on the `bedrock-agent` boto3 client; IAM action `bedrock:ListPrompts`) for system prompt content that defines the assistant's role, scope, and boundaries. Flags if no prompt templates exist. |
-| Remediation | 1. Define a clear system prompt that states: the assistant's role, allowed topics, prohibited topics, and response format. 2. Use Bedrock Prompt Management to version and manage system prompts. 3. Include explicit instructions like "You are a financial services assistant. Only answer questions related to [specific topics]. Decline all other requests politely." 4. Test with boundary-case prompts. |
-| Reference | [Bedrock Prompt Management](https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html) |
-
-### Out-of-Date Training Data (FS-61 to FS-63)
-
-> **PDF source:** §1.2.10 Out-of-date training data. PDF-listed mitigations:
-> (a) RAG with Bedrock Knowledge Bases;
-> (b) keep knowledge bases up to date (sync data sources);
-> (c) HITL validation for internal AI systems;
-> (d) data currency disclaimers in AI system responses; source attribution via
-> RetrieveAndGenerate API for users to verify currency.
-
-#### FS-61 — Knowledge Base Sync Schedule
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.10] — "Keep your knowledge bases up to date." Automated scheduling via EventBridge operationalises this mitigation. |
-| Description | Checks EventBridge Scheduler or EventBridge rules automate KB data source sync on a regular schedule. |
-| Detection | Calls `events:ListRules` and searches for rules with targets that invoke `StartIngestionJob` (IAM action `bedrock:StartIngestionJob`) or Lambda functions that trigger KB sync. Also checks AWS Scheduler (`scheduler:ListSchedules`) for schedules targeting KB sync. Flags if no scheduled sync mechanism exists. |
-| Remediation | 1. Use **EventBridge Scheduler** (the current recommended approach — EventBridge scheduled rules are a legacy feature) to create a recurring schedule that triggers KB data source sync: create a schedule with a rate expression (e.g., `rate(1 day)`) or cron expression (e.g., `cron(0 2 * * ? *)`) targeting a Lambda function. 2. The Lambda function calls `StartIngestionJob` (IAM action `bedrock:StartIngestionJob`) for each data source. 3. Add error handling and CloudWatch alarms for failed syncs. |
-| Reference | [EventBridge Scheduler](https://docs.aws.amazon.com/scheduler/latest/UserGuide/what-is-scheduler.html), [EventBridge Scheduled Rules (legacy)](https://docs.aws.amazon.com/eventbridge/latest/userguide/eb-create-rule-schedule.html) |
-
-#### FS-62 — Data Currency Disclaimer
-
-| Field | Detail |
-|-------|--------|
-| Severity | Informational |
-| PDF ref | [PDF §1.2.10] — "Include data currency disclaimers in AI system responses where appropriate. Use source attribution in RAG-based response for end users to verify currency of information." |
-| Description | Advisory: verifies application adds data currency disclaimers to AI-generated outputs. |
-| Detection | Advisory check — inspects application configuration for data-currency disclaimer settings. Checks system prompts for instructions to include data freshness information. |
-| Remediation | 1. Add a data currency disclaimer to responses: "This information is based on data available as of [date]. It may not reflect the most recent changes." 2. Use the `RetrieveAndGenerate` API's source attribution to display document dates. 3. Configure the system prompt to instruct the model to caveat time-sensitive information. |
-| Reference | [Bedrock RetrieveAndGenerate API](https://docs.aws.amazon.com/bedrock/latest/APIReference/API_agent-runtime_RetrieveAndGenerate.html) |
-
-#### FS-63 — Foundation Model Lifecycle Policy
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.10, extension] — FM currency is conceptually related to "out-of-date training data" but the specific Bedrock lifecycle-status check is not named in the PDF. The PDF's "1.1.6 Monitor and improve" general guidance says "Update your foundation models when new versions become available" — this FS check operationalises that guidance. See also FS-34 (TPRM) which the PDF places under §1.2.12. |
-| Description | Checks for a model lifecycle management process and Config rules to ensure models are updated when new versions are available. |
-| Detection | Calls `config:DescribeConfigRules` and searches for rules targeting Bedrock resources. Calls `bedrock:GetFoundationModel` for each model in use and inspects `modelLifecycle.status`. Flags models with status `LEGACY` (note: the Bedrock API exposes only two lifecycle status values — `ACTIVE` and `LEGACY`; models past their `endOfLifeTime` are removed from the service entirely and return a ResourceNotFound error, so any model still reachable via the API that is not `ACTIVE` will be `LEGACY`). |
-| Remediation | 1. Create an AWS Config custom rule that flags Bedrock models with `modelLifecycle.status=LEGACY`. 2. Establish a model lifecycle policy: evaluate new model versions within 30 days of release, test in staging, migrate production within 90 days (and before the `endOfLifeTime` published in the Bedrock model lifecycle page). 3. Subscribe to AWS Bedrock model lifecycle notifications. 4. Document the policy and assign an owner. 5. **Budget planning for FinServ:** For models with EOL dates after February 1, 2026, after a minimum of 3 months in Legacy state a model enters a **public extended access period** during which the model provider may set higher pricing. The `publicExtendedAccessTime` timestamp in the `FoundationModelLifecycle` response indicates when this phase begins. Include this phase in contract-and-budget review so FinServ cost governance teams are aware of potential price changes before migrating off Legacy models. |
-| Reference | [Bedrock Model Lifecycle](https://docs.aws.amazon.com/bedrock/latest/userguide/model-lifecycle.html) |
-
-### Additional Controls — Material Gaps (FS-64 to FS-69)
-
-These checks address mitigations explicitly called out in the AWS FinServ Guide that were
-not covered by the original checks in the upstream AIML Security Assessment (BR/SM/AC).
-FS-64 is merged into upstream BR-04 (see extension note below); FS-65 to FS-69 ship as
-standalone checks.
-
-#### FS-64 — Guardrail Trace Logging → *Merged into upstream BR-04*
-
-> **Upstream extension note (do not ship as a standalone check):** The detection and remediation
-> content from FS-64 should be added as a refinement of the existing **BR-04 (Model Invocation
-> Logging)** check in the upstream repo.
->
-> **What to add to BR-04:**
-> - After verifying that `bedrock:GetModelInvocationLoggingConfiguration` shows logging is
->   enabled, additionally verify the log output captures **guardrail trace data**: when
->   guardrails are applied during inference, the invocation log contains a `guardrailTrace`
->   object with `action` (values: `INTERVENED` or `NONE`), `inputAssessments`, and
->   `outputAssessments` arrays detailing which policies were evaluated and their results.
-> - **Important logging coverage gap:** Model invocation logging only captures calls made through the `bedrock-runtime` endpoint (`Converse`, `ConverseStream`, `InvokeModel`, `InvokeModelWithResponseStream`). Calls made through the `bedrock-mantle` endpoint (e.g., the Responses API) are **not currently captured** by invocation logging. If your application uses the Responses API, implement application-level logging as a compensating control.
-> - Add a remediation note on **retention requirements**: NYDFS 23 NYCRR 500.06 explicitly
->   requires cybersecurity records for ≥ 5 years; SR 11-7 does not prescribe a specific period
->   but requires documentation be maintained for the duration of model use plus a reasonable
->   period thereafter (commonly met with 5–7 year retention per firm policy). Consult your
->   compliance and records-management team for exact requirements.
-> - Suggest creating CloudWatch Metrics filters to track guardrail intervention rates (filter
->   on `guardrailTrace.action = INTERVENED`) and applying CloudWatch Logs data protection
->   policies to mask PII in traces.
-> - PDF traceability: [PDF §1.2.1] — "Maintain audit logs of AI-generated outputs and the
->   guardrails applied to support regulatory reporting and post-incident analysis." Also
->   §1.2.9 — "Implement audit logging of all actions taken by AI agents."
->
-> **Reference:** [Bedrock Model Invocation Logging](https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html)
-
-#### FS-65 — KB Data Source S3 Event Notifications
-
-| Field | Detail |
-|-------|--------|
-| Severity | High (deleted bucket) / Medium (notifications) |
-| PDF ref | [PDF §1.2.3] — "Use integrity monitoring on knowledge base data sources to detect unauthorized modifications... For example on S3 data sources use Amazon S3 event notification to track changes to documents." **Note:** This check overlaps with FS-33; FS-33 verifies notifications are *enabled* on the bucket, while FS-65 verifies that notifications are *routed to an alerting destination* (SNS/Lambda/EventBridge rule with a target). In the final PR to aws-samples these two checks may be consolidated into a single check at the reviewer's discretion. |
-| Description | Checks that S3 event notifications on KB data-source buckets are routed to an alerting destination (EventBridge rule with SNS/Lambda target, or direct SNS/SQS/Lambda notification) — not just enabled with no consumer. |
-| Detection | Identifies KB data-source S3 buckets via `ListDataSources` and `GetDataSource` (via the `bedrock-agent` boto3 client; IAM actions `bedrock:ListDataSources` and `bedrock:GetDataSource`). For each bucket, calls `s3:GetBucketNotificationConfiguration` and checks for the presence of `EventBridgeConfiguration`, `TopicConfigurations`, `QueueConfigurations`, or `LambdaFunctionConfigurations`. Flags buckets with no notifications configured. |
-| Remediation | 1. Enable EventBridge notifications on each KB data-source bucket: `aws s3api put-bucket-notification-configuration --bucket <name> --notification-configuration '{"EventBridgeConfiguration":{}}'`. 2. Create an EventBridge rule matching S3 event detail types `"Object Created"` and `"Object Deleted"` for the bucket (note: when S3 sends events to **EventBridge**, the event detail types are `Object Created`/`Object Deleted`; the `s3:ObjectCreated:*` and `s3:ObjectRemoved:*` wildcard names are used only for **direct** SNS/SQS/Lambda notification configurations, not for EventBridge rule patterns). 3. Route events to an SNS topic or Lambda function for alerting. 4. Integrate alerts into your security incident response workflow. |
-| Reference | [S3 EventBridge Integration](https://docs.aws.amazon.com/AmazonS3/latest/userguide/EventBridge.html) |
-
-#### FS-66 — AgentCore End-User Identity Propagation
-
-| Field | Detail |
-|-------|--------|
-| Severity | High |
-| PDF ref | [PDF §1.2.6 — Practical guidance] — "1. Implement least privilege for identities associated with agents and tool services. 2. Where supported by the tool service ensure that communications to tool services or agents are authorized by the end user. 3. Customers building their own tool services should consider propagating end-user identities separately; ensuring these identities can be validated and are not revealed to unauthorized third parties." |
-| Description | Verifies AgentCore runtimes are configured to propagate end-user identities to downstream tool services, ensuring tool calls are authorized by the originating user and not solely by the agent execution role. |
-| Detection | Calls `ListAgentRuntimes` (via the `bedrock-agentcore-control` boto3 client; IAM action `bedrock-agentcore:ListAgentRuntimes`) and inspects each runtime's `authorizerConfiguration.customJWTAuthorizer` for a `discoveryUrl` and allowed audiences/clients/scopes. Flags runtimes with no JWT authorizer (meaning inbound calls carry no verifiable end-user identity), and advises configuring outbound OAuth for downstream tool services. |
-| Remediation | 1. Configure a custom JWT inbound authorizer on each AgentCore runtime: specify `discoveryUrl`, `allowedAudience`, `allowedClients`, and optional required custom claims. 2. Propagate the end-user's identity via the `X-Amzn-Bedrock-AgentCore-Runtime-User-Id` header and JWT token in the `Authorization` header when calling downstream tool services. **Important:** Invoking `InvokeAgentRuntime` with the `X-Amzn-Bedrock-AgentCore-Runtime-User-Id` header requires the distinct IAM action `bedrock-agentcore:InvokeAgentRuntimeForUser` in addition to `bedrock-agentcore:InvokeAgentRuntime`. Only trusted principals should hold this permission — scope it to specific runtime resources with IAM resource conditions, never via wildcard. For runtimes that do not need user-id delegation, explicitly **deny** `bedrock-agentcore:InvokeAgentRuntimeForUser` to prevent the header from being accepted. Additionally, derive the user-id from the authenticated principal's context (IAM caller identity or JWT claims) rather than from arbitrary client-supplied values to prevent user impersonation, and log the relationship between the authenticated IAM principal (via CloudTrail's SigV4 context) and the `user-id` value passed. 3. Configure outbound OAuth 2.0 for agents accessing third-party resources on behalf of the user. 4. Ensure tool services validate the propagated JWT before executing actions. 5. Implement agent identity segregation: assign distinct identities to each sub-agent in multi-agent workflows so actions are separately attributable. 6. Apply a maker-checker pattern for critical financial actions — require a second agent or human to verify before execution. 7. Do not log or expose propagated identity tokens to unauthorized third parties. |
-| Reference | [Configure Inbound JWT Authorizer](https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/inbound-jwt-authorizer.html), [Inbound and Outbound Auth](https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/runtime-oauth.html) |
-
-#### FS-67 — Agent Financial Transaction Value Thresholds
-
-| Field | Detail |
-|-------|--------|
-| Severity | High |
-| PDF ref | [PDF §1.2.9] — "Enforce transaction value thresholds and action boundaries on agent tool calls (for example to cap financial transaction amounts)." |
-| Description | Checks AgentCore Policy Engine (attached to Gateways) or action-group Lambda functions enforce maximum transaction-value limits (e.g., cap on financial amounts an agent can initiate) to prevent runaway or unauthorized high-value transactions. |
-| Detection | (a) Calls `ListGateways` (via the `bedrock-agentcore-control` boto3 client; IAM action `bedrock-agentcore:ListGateways`) and for each inspects attached Policy Engine Cedar policies for transaction-value constraints (policies referencing amount, limit, or threshold context attributes). (b) Calls `lambda:ListFunctions` and filters for agent action-group Lambda functions. Inspects each function's environment variables for threshold-related keys (e.g., `MAX_TRANSACTION_AMOUNT`, `TRANSACTION_LIMIT`). Flags gateways and functions with no threshold configuration. |
-| Remediation | 1. Add transaction-value threshold environment variables to each agent action-group Lambda (e.g., `MAX_TRANSACTION_AMOUNT=10000`). 2. Implement threshold enforcement logic in the Lambda handler that rejects or escalates transactions exceeding the limit. 3. Author Cedar policies in the AgentCore Policy Engine that evaluate tool-call context attributes (amount, currency, tool) and deny calls exceeding defined limits. 4. Route transactions exceeding thresholds to a human-in-the-loop approval step via Step Functions callback pattern. |
-| Reference | [Policy in AgentCore](https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy.html), [AgentCore Example Policies](https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/example-policies.html) |
-
-#### FS-68 — API Gateway Request Body Size Limits
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.11] — "To protect your API endpoints, set maximum length limits for input requests when you use large language models (LLMs) directly or through Amazon Bedrock." |
-| Description | Verifies API Gateway REST/HTTP APIs fronting GenAI endpoints have WAF `SizeConstraintStatement` rules enforcing a maximum request body size, optionally paired with an API Gateway request-body JSON schema that bounds individual field lengths — to prevent token-exhaustion attacks via oversized prompts. |
-| Detection | Calls `apigateway:GetRestApis` and for each calls `apigateway:GetRequestValidators` to check for validators (validators enforce parameter-existence and request-body JSON schema conformance — not total body size). Calls `wafv2:GetWebACL` for associated ACLs and inspects rules for `SizeConstraintStatement` targeting the request body. Flags APIs with no WAF `SizeConstraintStatement` on body, since that is the only AWS-native mechanism that enforces a custom maximum body size in front of API Gateway. |
-| Remediation | 1. **Primary control — WAF `SizeConstraintStatement`:** Add a WAF `SizeConstraintStatement` rule on your regional Web ACL that blocks requests whose body size exceeds your maximum allowed prompt length (e.g., 32 KB). Verify that the Web ACL's `AssociationConfig.RequestBody.DefaultSizeInspectionLimit` is set high enough (16 KB default; can be increased to 32/48/64 KB) so WAF can actually inspect bodies at the size you are enforcing against — if the inspection limit is lower than the `SizeConstraintStatement` threshold, oversized requests fall through to oversize handling instead of the rule. This is the only AWS-native way to enforce a custom maximum body size before requests reach API Gateway. 2. **Secondary control — API Gateway request validation:** Add an API Gateway request validator with a request-body model (JSON schema). Request validators do **not** enforce total body size, but a JSON schema can constrain individual string fields with `maxLength` and arrays with `maxItems`, which indirectly bounds payload content. Note API Gateway REST APIs also enforce a service-level hard limit of 10 MB per request (6 MB when integrated with Lambda) that you cannot lower. 3. Set the `max_tokens` parameter in Bedrock API calls to cap output length. 4. Implement client-side token counting before submitting requests. |
-| Reference | [WAF Size Constraint](https://docs.aws.amazon.com/waf/latest/developerguide/waf-rule-statement-type-size-constraint-match.html), [WAF Body Inspection Size Limit](https://docs.aws.amazon.com/waf/latest/developerguide/web-acl-setting-body-inspection-limit.html), [API Gateway Request Validation](https://docs.aws.amazon.com/apigateway/latest/developerguide/api-gateway-method-request-validation.html) |
-
-#### FS-69 — Prompt Input Validation Function
-
-| Field | Detail |
-|-------|--------|
-| Severity | Medium |
-| PDF ref | [PDF §1.2.8] — "Input Validation – Before you send user input to Amazon Bedrock or the tokenizer, validate and sanitize it by removing special characters or using escape sequences. Make sure the input matches your expected format." |
-| Description | Checks for a Lambda function or API Gateway request validator that sanitizes user prompt input (strips special characters, enforces expected format, rejects oversized inputs) before forwarding to Bedrock, complementing WAF-level controls. |
-| Detection | Calls `lambda:ListFunctions` and searches for functions with input-validation naming patterns (e.g., "sanitiz", "validat", "input-filter", "prompt-guard", "preprocess"). Flags if no such functions exist. |
-| Remediation | 1. Implement a Lambda authorizer or pre-processing function that: strips or escapes special characters from user input; validates input against an expected format (e.g., regex allowlist); rejects inputs exceeding maximum token/character limits; logs rejected inputs for security monitoring. 2. Use parameterized prompt templates (Bedrock Prompt Management) instead of string concatenation. 3. Apply Bedrock Guardrails PROMPT_ATTACK filter as a complementary control. 4. Integrate the validation function as an API Gateway Lambda authorizer or Step Functions pre-processing step. 5. Implement schema validation for all tool interactions — validate both inputs to and outputs from tools against defined JSON schemas per AWS Prescriptive Guidance for tool integration security. 6. Enforce TLS for all remote tool communications. |
-| Reference | [Bedrock Prompt Injection Security](https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-injection.html), [Security Best Practices for Tool Integration](https://docs.aws.amazon.com/prescriptive-guidance/latest/agentic-ai-frameworks/security-best-practices-for-tool-integration.html) |
-
----
-
-*See `SECURITY_CHECKS_FINSERV_COMMON.md` for the Compliance Framework Mapping table that applies to all 69 FS checks.*
diff --git a/docs/SECURITY_CHECKS_FINSERV_SEVERITY_METHODOLOGY.md b/docs/SECURITY_CHECKS_FINSERV_SEVERITY_METHODOLOGY.md
index c28fc8e..6787733 100644
--- a/docs/SECURITY_CHECKS_FINSERV_SEVERITY_METHODOLOGY.md
+++ b/docs/SECURITY_CHECKS_FINSERV_SEVERITY_METHODOLOGY.md
@@ -3,7 +3,7 @@
 **Status:** Proposed (Round 3). This document is the authoritative reference for how every
 FinServ (`FS-`) check is assigned a severity. It answers reviewer Finding 6 ("How are the priorities of the findings determined?") with a concrete reproducible, industry- and AWS-aligned formula — not per-check intuition.
 
-> Scope note: today the FinServ checks and the upstream Bedrock/SageMaker/AgentCore checks all use ad-hoc severities with **no documente methodology** (verified by inspection — the upstream `app.py` files hardcode `severity="High"|"Medium"|...` with no rationale and no rubric doc). This methodology is introduced for the FinServ checks first and is written so it can later be adopted tool-wide.
+> Scope note: today the FinServ checks and the upstream Bedrock/SageMaker/AgentCore checks all use ad-hoc severities with **no documented methodology** (verified by inspection — the upstream `app.py` files hardcode `severity="High"|"Medium"|...` with no rationale and no rubric doc). This methodology is introduced for the FinServ checks first and is written so it can later be adopted tool-wide.
 
 ---
 
@@ -146,8 +146,8 @@ The authoritative per-finding assignments are in
 1. **Per-finding severity register.** A machine-checkable register (`severity-register.csv` or a `SEVERITY_REGISTER` dict in `app.py`) lists every `FS-` finding-name with its `I`, `L`, resulting label, and a one-line justification. This is the single source of truth.
    *(FS-01 emits four finding-names under one Check_ID; the register is keyed by finding-name so Shield=Low and WAF=Medium can coexist under FS-01.)*
 2. **Code matches register.** Every `create_finding(... severity=...)` must equal the register's label for that finding. A unit test enforces this (prevents future drift) — a strong guard for a public tool.
-3. **Docs match register.** The severity columns in `SECURITY_CHECKS_FINSERV_PART1/2/3.md` and the
-   `Severity rubric` section of `SECURITY_CHECKS_FINSERV_COMMON.md` are regenerated/checked against
+3. **Docs match register.** The per-check severity columns and the `Severity rubric` section in
+   `SECURITY_CHECKS_FINSERV.md` are regenerated/checked against
    the register. The "Advisory" tier in the existing rubric is reconciled (Advisory = the Informational disposition for non-verifiable controls).
 4. **Methodology surfaced to users.** A condensed version of §2–§3 is added to the README and
    linked from the FinServ report section so the methodology travels with the artifact (directly answering the reviewer).
diff --git a/docs/SECURITY_CHECKS_FINSERV_SEVERITY_REGISTER.md b/docs/SECURITY_CHECKS_FINSERV_SEVERITY_REGISTER.md
index c1d9374..50d49f6 100644
--- a/docs/SECURITY_CHECKS_FINSERV_SEVERITY_REGISTER.md
+++ b/docs/SECURITY_CHECKS_FINSERV_SEVERITY_REGISTER.md
@@ -1,7 +1,7 @@
 # FinServ Severity Register (authoritative)
 
 This register is the **single source of truth** for the severity of every FinServ finding. It is
-derived by applying [`severity-methodology.md`](./severity-methodology.md) (Likelihood × Impact →
+derived by applying [`SECURITY_CHECKS_FINSERV_SEVERITY_METHODOLOGY.md`](./SECURITY_CHECKS_FINSERV_SEVERITY_METHODOLOGY.md) (Likelihood × Impact →
 ASFF label; §3.4 disposition rules; §3.5 family bands) to the **164 `create_finding` rows / 65
 check IDs** extracted from `finserv_assessments/app.py`.
 
diff --git a/docs/TROUBLESHOOTING.md b/docs/TROUBLESHOOTING.md
index 21ba9ff..488e7ce 100644
--- a/docs/TROUBLESHOOTING.md
+++ b/docs/TROUBLESHOOTING.md
@@ -265,7 +265,7 @@ A: Minimal ongoing costs:
 
 **Q: Can I customize which security checks are included?**
 
-A: Currently, all 52 checks run by default to provide comprehensive coverage. You can filter results in the generated HTML reports by severity, status, or service. Future versions may support selective check execution.
+A: Currently, all 52 core checks run by default to provide comprehensive coverage. If `EnableFinServAssessment` is enabled, the 64 optional Financial Services GenAI risk checks also run. You can filter results in the generated HTML reports by severity, status, service, industry, or region. Future versions may support selective check execution.
 
 **Q: Can I add custom security checks?**
 
diff --git a/sample-reports/dashboard-overview-dark.png b/sample-reports/dashboard-overview-dark.png
index bf06768a7b1d937ecdd2490891795f12eb2f8d59..fb2fe7147f7f5a2dc11b7613be35212c3aeeb65a 100644
GIT binary patch
literal 146347
zcmb5V1yCH{_BGms00|I6NN^1h2yQ`whXe@j?hxGF83F+kG(d0<I=I8&PH+ZycXwxa
zo!`CpFIDe*^}V8Ns;4<MefpfW_u6~y-9O}I#h;-Qp#uQ$Oyct=MF2oa2LNP>Cy&4@
zn!gpj0VDvB`1C>9ZDw!Y*=<&J5;&rA-0KK$@0TI!V&~vkov`no<<4>K$0T*$?d|WE
zHZU;}>t@@%{TRMN(5AJ0mn!IEV=NlGZaK{>c&Xhs0C`36?Z#lI@Y=J+rft<1Tja^>
zZ`dNP*vQY3{&fm|2arkrx%$tCFA^3w;NRa{0JQ&{{$Gy5*7rsJdx!t;-}+ypp0Kuj
z{eQjV|9RA7f+gYqn)3g=<Nx}t|266nrX9t9=JkI$3JI0xzvlIS{;mHx>VGX#onG0&
zUOOM})a|uLG||AiWzA9Nf6sa@1Svd7l}V$@(7-}-146iD=i>D9bGD4kfNML3Fm}gq
z9&5HFZrV@3`4|6LPd`4sPo3SfRBtXsB=-XPOtDxKq#He<^{R|I=`~&*M{j{zdxqGX
z!%;aw>7wgxG+QFUZzU0G4*l1^rZCthWp|1p=X0&8d#~gAuD2j1I?ZltV{p>RL2_P4
ztIeI5kb^4>R_~o}Va+}j*F)r8p+v#|^WMZu@d8Hd<E7>0By5a09$bQ*eWT9+o4N4u
zddrQoAI!|M9vI}1FSsADy%*YLnjzefK_^F~=Je7mD0CX$ia3u;b3dN$KG?&M*IP_i
z&R;_p_5S#>s$;hAej>)GrkG^)xOVEpi~r#5iUpZuG*{-a?*`sepg&O%MhjtgP^Shy
zYi3LIn0vUgCG?AvX%^Ra3=FvMtl4`nG%is*EKxuJx7B&MO=cgnxiQgA7F}fDb*at8
zX`Z(I_-|~{8xaZbgqQ?EG*{NlSe8yvyaX>~{|gj|J|dE3gVw=tEc%$6`ZUDdq85t`
zflyTUYVVhm;)h_OG@O@7d5X|yhbi2iGlvkHqWt0v#O>Bc27=J0AS1^90cfB|1^`rP
z-XEapdEJg40_h5tTjMmL#P6L)u9iPi<?rs;ECkP2ZQ2>DR2{g8MUe1<>mAunC4m#A
z$nJCPt)#2_+IjN19^?xh4w-<D$zsOpSd{3g$zX~=ktn76MRpC6e&-0vXl`gTE@_SX
z?Sg5lHn)9S-h=1;N5xE^)tF6SY5%hMEfd4Te(q383JFx`!LfaksLEt^(ED2S&0*s)
z4q&y=wAq%uJJyJaYSjKbE%CUYS+DW>GFE3Q=0B@%;G5ZOB9rt4V6%VPEt~AVpMCyF
z5OOyanLDWcjXA^;i=5~wFA9%YSeT4)jLKJk@5v&ai|a`tWZz8x`{V>Aq@|mIEd{C@
z#R5uRt|ll{l)C(CX<luA-wKOdV3g9_I<j)7n8R~pZAj27#A0?z9p&m-BCE^TOm}K-
zU!-gbJ7QOEF*~S7I)TSzFVEn)0OC=M*9($0Q%j?l#A%;whv7Yfl>D_#O_4Vx7119*
zxv_o_{_<(7^z||zjID2D@Ztp-CcsaI2Kf0u`i3{7F0KBV0!S8gJ>Cl_n3ynh<;M5>
zFpL!bqWyQ?$KzAmq*8LKf5YGr$?p+4Mm)!vU&nym#+^!nw9mO%rHurZlHVh=kWYAk
z-Mwn%a${1>0g|uisi}t652U4KPN``tRZTHfCuze)7sYJF2gD>^w&EKc&4%lpQ+&BY
z&&x1;of*eBK+9zJuD`1uiZ91z3IAP3NSgP#k&cdkT<&bpVH5hkin7q{k&GY3NQJ|K
z`$I??WPXf3#sQWb@o>p|#y)F2_46oaBes8!KS5ilXMIzT8~!zeocr$l{IZ#bI_FW#
zfp-uR1^+v<pAodqhjSWA07Y{;4-NB+TekmLRSO_46h?w)Y)&^~_70y}2gSEylLfiu
z&+^Allm?R!6yS~V`kOcFftRW8U15d4LF^Z6G<M8LHrOpl15=gGu8<4I-SB%UHK7;y
zX_$bCNkewXCfUNnP%RskFyF<OCqV<ubabBg`w=TE(XM-fmBzPZ00Gy#WFjIClQmYX
zBqsA1!P`5npokR2eMylX<aQS{%(@#?E#f5I{hmPqv~D?_+Ar&?XGeJR^~LkUVqPwL
zytVGL3!#PD0FT$1lU5QY5X+p141j=Kxq<_wn=LQ)I{rfj!@y%6lYw|lfKcN-dqVOM
zcSwj7D!`S*>3nj<jIbE{4*E!Uj)|>Ciz<)ZaBra03O;8#Q3AT2>~&nzA)W2b;*AYl
zL2zp@;)LoBhwa0}+6^k2?@zq>w1|Nxm}h8!n%X7=ac3}_lU8GW<9^W(Resw#+5Hmm
z^SeW$U|^`pDGr~RY5LeruJr(kD0*m4oS8{IM3#tJyg$o@ms9DO*+eGuI3fYyG}|_l
zWKwwo^Bo+{rU?K0A><**B;d*>jM5?rr#CO|Gj!YPz4uu@(;cSkH~0nfB`0|WbkTgz
zCgt}kheA8GTlC8Hxd5x#GPz7R<{!tw9;U0MRa-&Cia4-TI<5Q^Q;V2kM>it?<vgO(
z5cgH=t5>mhFm0f;3<p`*$Ws6-8cjJDhd#tOt3$$ChcqSxuH|__f(l?bw)R6`ZuTdl
z1GGch={ZFo{<F$JNazI`r+i!9pYPb>Xt%+=^zHS5SWivM;^|{}d1+e5(xkGjJ)e_!
zTg^)XW)>ELc2{2@7pEWtXf!%RYG)8|8Wd|61HKGuwrxo)k9?#3Nr9|f)1V;K`QUKK
z-L_h&&1+5p21@>^n#RYdKy58gz~gJ=mZ~K9fDF_5xlA<|mrv8e8Tvx%LEx;yTNRzd
ze6f#yF2!@Q%eiNT$yvY7hL?Onb~spBc?@`7kav=W{)fmvJaF)s$fP|6%(pcnsdC^C
zU2-~~=J||v9%n*0Ev~SE&k{0|N!_1@E_Be=&{2TB1=lQFjpvobHAaAM-!gv<LIE%2
zDd1=#lW`#VSrXYdYs?8Cz#-)I+52oU@Jz_d<)Gsrt@+`XCKDSS3ZSi%LhkMM<^%S|
zBSh|DGorKGw)uSKlpTr*oSa}FQBd;p@V|QkbcGXfd90NR?pYYvKOK+fHcf0yDM}!W
zXtKOqXde^AejFK_kdhetLxA9G>)j_3tlNcoNJhZ*SkG#wYV4IF<(9a`>!g9M8sHy0
z*GCl}`q3Fn6)1|-Ql_-|O7cx(Lvhpc&iSm7*t4Yf-Xn`zE`*5X@5>5ewBJ$g;Uwn_
z6UCcJ3F}0!R>$7pJY`9HpI-l^JuL~U4lvO$)4k!O;`#HCF)kI$m|P_PmXS#mz)t%a
z6%~sFm=5VRy|Z4qDx-qjT&zZwI}kH4aB!rGWx7AC+U7AO*Sqa^Ku<Yx<vc*@C-Zhg
ziRd$~&;XA5Y#-!@?oX<;z<=Q!U27q3A`_#k3xAJH!!v5cIr(ViM(8>5kMumR6DD<i
zHda}D($o63E8=wB?Hgla-T-^ELEFT6{@LnhbE6RffsauiUme#b?<L=jRfg{KUC>hJ
z%zYec>zcWlS<m!pN>GF*^E#UA#@XH>Z60!O6|gMk&h+${+cw_PT@-jeiR(+?H0mwS
zKD|eE*U|`)h$<|G%1Fx2HW@8u_i=xY>iF-4#m|u;8!}{*h~jre<S*!e&yNHM>DiLo
zK5wko)=t*eNd}g>_Ib8GG=_pORE55(yX%?h?Nz)?BaADk374kPyX=tiydZ@ZST3Co
zfJ^D@{0uE3*=uE54eF5w1|AQ(5Bi6#Mx0eu#e=e-7w~I~>Q3{CNge%0-BW|Oysjp_
z?PJJi>_@TUD#$55@Rw_vhiy_+wf#`qgj`#{jEQbrceo(qx!K+nI$O@`T@Mydbz>8J
z-O1W0nxTvUi3u=^tRxfiCaY)peRbnODo}fVEUxyP6vu{nsY1OFfGmO@eSaEe5BHnC
z9DYgo-r`A`Eh=EemDHR4`^arBh5@fcyDUEc>Xb#J(oFWV9dK@YU5=tUVYsL1`YkDm
z;oL#|ThQ5&9O~_LGGEo@t*sCl8-K9J@)N((nu-)&_q&Z|$U@C+$-<zsb4?@4KZYqU
zhi!w%M63pBSASXHD`_4c8)J9r_4}GnJi`DQyA@YO!|&cPbml?XfvDJx96Tik9zI^P
z&m(5;FZ?Lx=Cyl!8Gg-=&uq<Z`LCi?*VgeK&N&{9vOwAnJmcbdEfEVvNe4^uzoxWI
zt*os9;S71P?yhL+Pom#O{F7o!JXX2};yqVBCt_UDM(jJex)$UWCh|dKRGgnxc@0yP
zoaSC43rlKl6uxIbgaw(f62Q6TlpN_55SPpNNr>ry`P=3ilk*WdL9dqp;?8nbJk4u#
z|K`Q=YrblPSSQNcFqr{uEOA#aJ!6&gxob=Mg8W1HzY*p4kp9PvJd^|v1*kDxIsEK|
z4AiBJS5+1^?Be#))3=^6mIjEvc^FBRBj6qxA15qrcsuffghYSVN26(DIoEa}IGgg(
zt?Rut9Uf9kCEd$|7$7K1h1aBw-_|zb?v8Sv4duec<>BIE1fhTkcO4QCvN6;JbdxS`
z4Tr?dwrL-=U#7{!pMfFk>JagePHj|TVyj8TZ_4(K{=_<qbwj|ewC468DMGc_eTSL6
zz;K7@Un%6$0j6C8Vz3(%^&?cN0{MJ6F(w3w;x*eFd^D3xmrQYU%V{pIck@;ymeJAC
z50gTCInqQJK(&il)M<jWiCt-PMYNHMij1LRzGU`J9dpZ4tAAl3Q(qtbDLOjw4sk05
zL$Jjd_q)7t3lEs@(B|nikS<T3n3#y<+p4dwrLoPtd^+Ie-MDUj5?V;&M`2Z1l$1ox
zH8J6Qeohn?IMbH?fo$d_UbKXes*E*Lnk~%|hBOLueUsYIN<f9M)~wsZh^XVVmCNVP
z=@Aj8Ha1A{c~?ujyQ|B~np#S6DM@;2TDDG{k;9Y}EkiS1`Gu8~418+z)*MyH{;2Nm
zwXpoL{Hdu9=6sgte^!IP;gMkB14Kl`D)hKX16WV7z%?5fV(I<U3->M@{wXY&MoykK
z))_j6x8c{)(#lmmF+B~Np1u}y4fNot^K^5oy}5lRDKYStsbH%zC;NN5VSRmFWwRgu
z&bn&eFPShIG4gx3xa#O`^JQzCR?U9K40^x`h*)B7qcMx~8O}aHf9y}jXs#@e`^}^A
zfxPj=#H3f~*}4j}SV_nLdO!mdmc409*qDh9*c1<f51>=)HlWC8$fgbqPte3vN`_r1
zJ~P{~*nPJ6NZ^pxkU?rkAyF$4+S8Ud-P;*E<B`o2g_j^LD@4jrRvUEqFL?mdF8&jw
zRitr+`w!pnVo8xqwdLXqexmOa6ExYop;$lABYup_Hr}<%LGF%5$!VB3HXCkwIl{3n
zh6Ud^YI}`r>fQY`WMzp6fGvd#A-KI~9^*-Q7Ry7GJuk`cFY5KS*WAe>i1EE+Er#N&
z_?f6e5U075C7uTf-N4dG%&sMwPi$RzqtgL4K%HySpIYy*pJ-gtP`jYWICHeSNT|22
zt`V{=6PEO@Bt8AAhjyar>Mr^W^&ai{Z&mq%@l^lcU^ss`d(Z7WnO`NR*XW|;y4j34
z@t@|%1%#cX+g6MtgyU8p<w%psRn=H6?CYCyo39W6>hB;I_<9dt2n?^*GHdV#(?rQ%
zW-G!>A0nR%-DtX&)0)zD>-pSh*93q1=)F4Bj5y!an?2(qz`?niragR&hLwXTP%Ri8
zVdu7)vEMrS0ok?}x;`p`Ip!j_%s3Buc*2?yJE#1q)iw&?Bu-hHR8(|M;kP9$I_znQ
zk>Z(fYMN}pn>8tq<5zwZ3qGgWDh&8fue>ZIbgb{siQ%@*4=@{kKcCu|f;7W&bv+*h
z^ZaG7RIjev_I~XZ^-ePcaWima5P3#ktXbwZ9^47oo!{)MSf)N&jZvypF>%>{|4E$N
zsS(84*RTFmR3b?F$15;eIXw!AlcQE9=D~2_2uv@%A65_RcGGy9`lfqc0D`wGL3)sf
zTo7V6=7J|z7}M`j$QvJKz8z;GwU{0aKQ!L=wxLvjv^WsIUXVKMT`MQ#kyN)kvTkWP
zDPVeqx8*K$eHZO&Dh=kFdfumfa?Ms*c+BzKr%5G(=`+MW51Xefl`$DPGK3Gafh9;3
zLd|A(Yu9d+qJP6t{YZr~z24p)VqTMtVKxrA<hGOFdF@3>_Gd#4vs|`rtLON0+9~zw
z5RlFmz0Q%mp{RgY({wz%y~g&MNx!sY!T2E-;*%g?iS8}>3}D2w>?}vQb+N6iF54Nh
zsejK`1hJU!CU5u<mbsm@75^<OOF93(!>GXNu)Mk~kxP`gVye>JbaFO<&6}OG>op&r
z5EaAb5nO5P#QoHSpt!;EmRt&dXjFj4ipz8SL{!M<fv~Zo2fjR&VeP@m4n}W>P4|$9
zVy&ksxi-@mLo8=13;=6F|IeQ-ht1cYON94Y1ew?8YjhEd^(7<lX8-{&^<Bhb^Zd!B
zT!9)>#wIaHM<CNAA+A2u<f8yy7u$St{MCWsHu6E<2XouA+_u<HnJ~$15O;)-yPGPT
zMMp<x#O~$c+`P{11X4qzz}8uqR9rEk4hSx7n1>WGI{`-&#S<Xi|51gBG+gIBKVy8b
zjoG_I{~+133#N~@UnVaWp<AfNi(ieDjjl>R^SVC<ct|eRdR8lUN%*mJWRFL!g<y8e
z!50dFV#5Vtq#VgM5yX5Vn*kH3QG<F7!KMm-Q*8rKCUjE!^QU+ED5<&wnm~BCO-tV7
zay_+-tQE_cD5aM^LL);0rVNKllWu6wQ`8^kEYrMhtW8vz0rg<fzs#!V{o?WQ(4vr1
zvu90J4;C5k@wVw=3LhkZ$Z+Z4;NpDq@Z-ZqmG|oSW}Obxn>R+?2gqgiKZXS{O~Erh
z7xJlbK~K0XaZROOL)gjr`R|9HL?(}bb=;U-S-q_rg}k(3q@^QxG+=kJ_lBOft#jIb
z?fYww$%HYs$euMhp@*Bb?T`hxQ!0y=`AWJ~wA*X>0+}SPRCK`DbhAXe!e?V|o%mrv
zcK&?tMw}2+%u~Rq+ggiDUP-mPgQnqlL!71gWMRC3TO#TUD**`2)-8qhhp=vxlw&OC
zs`F;6tJ_<0NJ%j~T<OWv6LJodPg+S<eG~J47s1EpMHN3Iqgm@+czhpmi9oZ%v<UFC
z50}{I{<e%(_hvtWX-rJS519*b+_-G7Tj!Q4S+sCAH27Qy!TX-mU(?K($>$hGyCro-
zTL1i2%rC`<f!^LsT^prV4Dq0F_gbYHZnG@>?3_^~l>DGWp}a7jt84e$E4LBL!9-}7
zt9J7X85QdNYpuYGz0nB8?bnsN+%`&DMyv#*xpHGa1Vgbk<B^3OL)Q8eLiEcIoFi^}
z0zxLC<)q6mGNfsuZ)V|CLGan91bb2uM?~!Jk}b3w+@1~n{%g*l{NjgQC*^g0KJ*@T
zUD9xe$%({qPVC^Oew0)q^sq5Yo+jw|L)URVSad9AXfes9=>Z-$);2JEF<0j?(yM7@
z%tR*OL2$lW-MpBd@v#lbm%1lT&-?J|M+I;+o2I1;S%;aX`aA|`Ldn<lZ70*r=|B!0
zB1Z5!t$i^z=G0*a&S;aHye{t6t1M$hMFWw9-HpeIZGE!p+j^omL!^51vSP$1ihdvJ
zz`T&gr|P^*Y&5Vx%7$Y(y;?njj{?K=F{#aV&KHGrK&d{0aUQ4W^=l;M%*x8Uv+WSc
zY<AE=FwhPSP7nc_vwaNT9-}CRU3IKkPTC>~TX;+iB(X8#y#(C&nN?mHb)88lf1SGe
zwx(h^snmXXLCRBSz8Vot6K=ptP+=;Uf$-8NkIPY}C-=ESp~u*W(|eE&t^b^Bbho(s
zz~{1u3EVZ=?<PchLJ1_(A1HVcqPT~TeK&R8R>u-TKy7O-JF{DkT&RH*2z(Z1=TthG
zWFeWYD1ca#8atl5y1XE7y8qI8mjGa6FXcW{yN96wTz7YGV&d%Y#oo<Jg_T!T{q7F^
z^(&DPD<wrKU5TYDKc||DrG%A^j`Q8S?~*I&XpRHPYzY>7wnMP3Yb{hKu>+8*z0S{B
zpxcB+QL6b}-L37klS0SXpuEfGK6}yVaZN=lo4RXwWb*u0LdM!!Qqltq&_KO|fQRS(
zd#1N75$JAjsB^vrp}c&|W^z`F92Bk<kMZc<8!26M#DkB9OfKUe4E2M>fq4PYA+VX;
zC3mN~ZEwLxixl_Qi^IasZHb#edmwAnRCaqi{^w6W5e}~GJq8wfddYIovk<d~uiU={
zf+$mhZRDHomut2;;$+fbRvUY`iqJ}-+q>?rqD7wvEgzpq<(Ua*%-<M9VH<~#N(pp~
z&4KcAJmi+G$o9GUc|e#Z`f$oQeV3^}O(^=tTab>fs#cv3Wh63_cH2^F{sqZX2|DHW
z?(Wkz7_x2C@yZk%)hI`~Y-*F;$r;KG5nqP)QvXTz>GS=?yZ+ILZ-J;O&2BN8Vd3nb
z!~zw<{QOpy(t#V?ALc{qglzA27TvTpJv{IPy2P2)Ix6*c!N^+y{>)6yG@S^6n0Z0?
zS1Y0TRd*xiG32hztixrPHz@pczukCaODtqiZv-p+==dUi#M&byUkL*w#{>f!lz}3F
zBQ(HiUf$#Lla#6#WO&lXx|NdIp!~bFuO)W*dP3mjZk=Ir*J5|OwDYUK__hMQ^6=Mo
z137bYQRgFhwN)jL1-ZeRTqF5R<*rb8xWx6@=^>P0rM8R;6g?<IB{yLn`*?VFV*hYB
zDw@caO(xuIFuC4oWA07lu;IW?HcRu>tB_7Z_5|Cei@Q`%*=*_S)3M4<ky|ccS>X1e
z8~1t7%_y1Fnwqcl?iKJ$(%8e~!gue;eDwWwW4R}onx#Q{6{**bYc187?h)OKYRr01
zW<o=i0v(&SG~Pi}Z%Kw&O$XoQ53HK`6NzA)(kXS33wR{n*t)nNg2*BF7fCE^3DT}=
zap!XUm53ifuh7@Sl4^tydwd>Pk)(W=&qL62tMOit;k+O_xnUTd8uPkan;vSu`@!5o
zhzk{%3BeoGt+cCNZgTgi`%%OQW;JLR_8CTAO2r3|XeIWp2;yfz!Za)e4L!TYRNBn{
z$%_{TXN|X)ch<jIP{;)x6j@S#-!681Q?85u9y1litTpQxgG>7K(}xfKEILg#PE||k
zt!JL!2H*2K?2UQaHusxUfE?uJ>AAL!I}#bLlv~-FuG?tLo2q75zT7~qq2W$vp3wT$
zKS6rq4EnO>a7sKvj*gBgcT<QxfAfCruCsup@rW8%=f-Gt0-hO!ENpE(zrS_0wN=Yz
zBo<02fC&UThsw1+`lnXd1{MalieKYs0v`ZhX_`!*ENcs!Yxj1&^Jg+?kP|LIeOCSY
z+TGN6-QLNEy4jv1kf^vs+*TS1_=);b#pP?yfs^F&v71hz_Jn)zu%Km(r0d??!<o`9
zpufNK#`A(KmDl-^^Q6#&lalT`9v=N+3YNOA4i+IVo7%w@l!|Qt4Y0cNyoHY9$FgX#
znw%Yhl^?v2&gIhX2x0+;j?y4<_k)?RSs+~zn(DqB7M4`aqVdkO<LLFm0vVuBhf}QC
zWHz&Q{4$rx!piIsz@_9_o2W(YgxyMEBZ_skI`YcFee=V|#EbW;d`xQQXQ!4tB(VlQ
zL1gW0R36WB;d!^$Bb#fu@5Z<l*}j7`BZI>8JJ76T^CgbbmUc$qO;<=<iChXl*<X?O
zWOWGQ5-Mk2G7PV&k%s;V_dZ%;%a`0LOo;y1Ccuf84f8hdso%dZ%E_6Sm@qN>!jopp
z^^TqdVAg>l0r)I>ApL&}3v-tDUHtiWf2#rmzhsr})!(w<-#X|#6XNC+EnmH>%m}15
zgtNyrXUcmeo#d4A@)Pz72V!EdXcbV>e6FCNAc3FMNJz@<d7%tE!9pL_u`%f)#>pP&
zk&_w9E3y39vvy{ZN%=7<deq71{pI1xYh{6^rfe3*XMJBRkO`Aq1rS>nTuIhOM)%!^
zi;Ckaw&LBn&ay&CRNKTA_1<S?Mq*RyT9Xsw+q$hj_xph*&GQsXr{WPrH-lO%u=;v?
zp1tc+Q~9r`Hx9h7*-!v0Yb%rf__K*!mZNJEF0P4a+R%B|rMJLbxJ<mD^CQ6PWV?pX
zm3+@d4t2-=mgUBU-`l;}@H`rME_b&5N$5eBJbg?rRky4_rOSJO|N3f%nA^}P0@?UH
z|BVujxheg0{X_hL4jLB8C@PPMEX-k_hEp*6cX=?@^w|#6=nGm!!o#T`tTd0^FnkTh
ziSGsqV0wCX^@=yuP_hIJS)?Z8m=a9s@QO5G@qO!Cs5}dvo47zczq^;Z88(oWWkO(*
z_)ke0Y2xoL&~46c29gLFR30!!ogH~rX_68bkQT^2pMfmHy0<y^t*jAu_w`IkJ~QRp
zxv%%Blztnn<cWd$nab0sazsy1jWxn}c0&(=IQ8T`_?enPTFLG{!sBrh$d)PoN$eXa
z>@&U{mR(!kUuQ0V$6jOwib;_d)FD4F@_L2l2eA6Suy0mHNKBVIbE{~5LvULj^oEab
zSg3h|@vkh|B3S<@j??o(2Q;%sMon3)XPYAGCT)Lmk54tZBUjC=Nf;re=Ty6Z0p=O&
zw+~G-<6DXN&xI=en9W<iunXO9G3~6YH(K;GAJ?*CJ6_6nGLn$)#W8KaJz@7!r>@$B
zJY4&Krrula)5-IOop020?hG|oSAEt*@*OaFs9P@h@ls4l?Hr(}WYsIPY85}U%=8He
z=nTSgrFXVJXp8CUq5+P``L_a0t2kgJ{9cOON|~Fs2{z*s;|eb)*c1BY1U*8C(xT$y
zC5M!ZB!_N)9DFG&xm&DAPkD1m1Arb6FYcFu+&A7&_;z0Ce?@SB1FYS<MuXL@=Hr>u
z#~<P`uIgQE_#HP4ZG2kw_0rx~R86kcWUg+v1<$(fC9&FoT%*}w7Y^1hv!x~(nV3w6
zQdbT(&;b|><@jmOurB*jTc_nq+E7$qFfnuMI_rVKuD>GryzGhyydYHBKEVSE3S*zB
zGsUs$-S;~(+H;dh_i5$GCTn^l^}m!)IYm)F_0zAIhEK|6n|_hVwl0_`K6J{cw=b}9
z_bWdMR+=BbA`r5nRyk0BD*K$zmju3{=dzs^HAZ99=GiQf;R7hR1h==(BY+ltJ#wxP
z@9UjsmX-zMma&SvdW}9w#n#6i@tk0K9!KtTz0abd0sH#ZhbqvL;e&3YM~Fo-zcT_#
zO9lpQ$KWzAH4V_prdY;Q$|kU<CbElV$TyuX;EyFD-`3uXN3C7#dqQ<??nYh3!$^qY
zey;4UzPDYF-l_8j^Cl;h;RQ))Y3sBK8dkOq5n0_2UWUD<X%Jhd^_8gd8nDRKeJF?o
zL=LZ{HTy*Mtg+eu*m&dvqMX!5>FuwfhNB$a1eE|0_qz@a3*LB%m)*jf7U_-NeP<nr
zkKK8fuW-LU^7Wq2wmr*FlXw1zi~c64J?A&U4+-d5ZB}1gNr^_|FF~43dq4I6P9l2-
znB3Nm@qMlilrjQf0WjebR09W#E)JH44-c2%rh%M%A-Cw=`-L5R9$t$z`J3XM#F+=r
zeMntJ0)H7|y%}+3GdHF1_=9vBFVYN#79cEQ*voh5E%tC3w}?n(H!lndA_jP-W(CeW
zG=ZO$l8}2N4o*%JAx_Sky%|R{P%!}XO}autpKvBCaR_kSP6}}eonL8MNd97)y>Q{<
zzz`5zKZ!{Sgg>*GP^WKsLBcaNImy7s_pp+^+bx%x#A(DH-Q%^fEuKf{NCzgM^_OHh
zGZ5PuHkbbItv-UWhVWeS#_almS@<ys*{#>KeQH85&s%cPX9^0Y4hh}X9#ma=9zqnf
z6(#Ro^~qg@y%6Japv=+!yhxut;dFB#S;#iW=G#hvt<UyptnGZbjO;)<yM19{XM16%
zwYAQ`q~q4n(<-t1b<;xy$GH=?IkwEe51WtE&W9RIDm^-zkh{08ZJ?JJI%QSQLAy*5
z@PxudMLK=AUULomXGjR_(T?37xH!#$y2^Iy$3^GklXK33st;u|GraTgFMoqP5#Nu>
z*dlgnp^7kG2z&;lu<?lrxKQclCcgDz734a&8&n{j)dXGk`lEOCV0OnuDHCu?a{>FE
zyR(EoXxp>8N!bX2>yr(p`n=bGQ{giBEE;7uJ=I)<jipV+1_O1bt1HoYbhHvt(tUqC
z_I}_;xTJo{6w-y9whswD2=dZoz(fr#Qfj9@iD=oXG&#C*SG1!u^@BDlE>~^nlrmNO
zsZM{b?YaU<xJb1GvN8T#@FqVmFP`kr-<<BftNBEOic?tNNpP<_#-!CEtRyEVv+DyW
zypa>vFzcOvJLpJ$|Na`>nZLr`NwDP2Z|>J@#;s97u6r}jN!NwYuI$k|JjuPTL6xGj
zgXZn48K%jxF`KLVG>~bw&+Bx}BP*Hpj;E^kJ(Wf)wwPS^!L()6l<C29bg*mCoC?In
zqSxi_*>oTHoS~NqS6OXshBwU~+r*&xI7!h&@5<JBAyzmW%S&?3O4BOQjEi?rIfZj&
z>Am?`ben7{P3ZqR#$kalyHoN2aik2ye<~wUDfXo`j?T`5gM-;DUD8e0Pbr5N)pF!P
zx9Z{zZC|w)nA7Pr>?<$t9VvGR+jdv!?{`D^d!M2Qhthnyn{_$7iY5v#vmDBpT)0|V
z^Z|?8i<6VNWl(5(dTj`@nWfR{_O_<BwwRo}MQ~C<NVfW~goOEXm3v<yn}=h!IRMfe
z98BL%CyFq_L~ZYZFZA?$$WV@rQ&FA7{PJQTwb>Y<0s`zG5d9PH%p!%OsoE_qt%_Hv
zh~^Gy$EGHPbwB=#u_v!vh)5c71;6k}MExkMIV>}k!?wcHf+}w@k#XAKwCYC@Jp;xj
zl#PwE+Jqm}yA3PGEpVZ&m<HcayD}pRQLRyectUOd)hG5?-9PjBlvQ}koXFc(W$JsL
zyFD19v8@J?VuzC7o9ypTU|Ym-D32VU%N-&?ww6jiXAI-ql8Yd>EeyI0?m>qurVakx
zPUA~RA~yY=cU)N&Y}n#M>poGmuHxdBvwhA&9-yuJGf789!^Y`pgeeyfYsW}$J~Ts+
zic^Eel8WGyuzY+`qmiT1M;EcWtn41U9|;L9v$mzuAZuP)Sz5~kN4T6GIXKu`T3buV
zevj$<0xaz;ukRd4V9P5it84#61DgDiiHUaR_#2qMwe19-oQ+XiYSsIuvvLJ-IP`b?
zZfhuyqHNCvRRoYsm>55aT}~{(d-_9%HZk@{QncO-xKB@?JC6gvW40-wKZ9_I*U`9Z
z>+*83Gf1Y~&tcMCs}4nlRw&DO^w}p9RZ>$JFLrW+CYf_{vY425eO&(W(%{DEqXsF2
z%MPl<tjENxW62JV;b6t>uCL-du3Bh1_?1AgTlEQ;Uq7LIXQ3{m(pe?7Nwl;3F*6X!
zH>EL?Fb%RlGMyjnkk*P2i(@7D=AX&Ysz2A@kx^9SJe6lJjknu19)k0ugN5QTut%Cq
zlA^t0yZHG>grkE?MU^W6q$VV!LF8psJ@$%-V^z7r2aChb&#z$`OfoV*j^WCfk3y+)
zOZQ1rl8A^y515h$&dJ`XXDBW-cxBYG3Q_Zq^h*nOviD!z%}%nIX64?Xpnx#g=fl?4
z($V-8my{4o86)YyJ{q-ZRE9x02H9lR*0>+$C?NMRnKv48RzSx67cd{kw;G_wwXdF{
zJUc&s?EeHS>`TRa$!xzK{TGj0H|!FVh-~$mF@=ek*=kDV>0*qtI|2EhajPo_23?yR
z35+x$o%*a&At4s|1wf14Qvi4ho8Ha}WTd0FvvcU_kyeBLdJ}MMpwN!g0-xsO<B*}T
zjP98UMt9gJO}5OZM@s+QPzWnS0`lqm0x0`}%W)E<b5skmif}SNe*Wx-{e!VjGFUPM
zgYlb4dm{>v(7;4Xl|qr8|6AM2*l2T0{a4!V+KR_&FG_$mb6ijG=_zTlHaKOZ^!)O|
z$~^2DTJK*~RT9}adwx&O)1VT<|3*H+(iR;bEp4`>v9%EzU{Te(0Ebo9rWX})vhY!P
z{dp22si3VcuNZGz`$?Y}l-x=A+=;44QCnG8G3a}x7>f$UBhnbn%?Aet^Wyq2<G@sN
zLM&zztl_HsS*MS|0W`JVXk(!Pdn6>*`=o2=ga9@*d}Ksg;4$eRvzSVGb5fl@1A{;N
zj1{Q5Ug54G`NA7fd}B9E{Du({QjXD6y}|A4NKesW$(nD?&0T8FZES1wgFgP_Xuywy
zE+D8r2tT^h#oiSS00FzVqN=G40G$EXqA1s~hW2J1KR0r6asqi9-#8=`=H%1AzQ|cX
z9gTj;t`u#xPufNqq|5K=H}=y*3h<@oQyk_@PYc)8Q;SZC6ni7HMd=w`yFe3DT`d`m
zaU#&*r5L>ucEGeakleQpe^@_ub4ZYe{sMR2uQi=4yl=H<X6B|8`9E{R_It=dMT;=)
z`ohkV#+N`s9!)~-c-;S#11YV2eR_rulTa{`;(Jb4VC)7SbDU9aRyGVSLj5W}3E4M6
znDxsQ0mYMMUwv{tNSK(Cjz$Ljr!-BUokWf2xV+lt%7H}H{Ublp6djo&sPZ3}iHS}>
zprxs<zq!=0ehiuj@comaloSJ?Up5`iY~x(zoE2zgRp{z`nvNrotTVs6YY`g5qH@&V
zU;6Mb?1P@!uA760Bw5?3&oPQxLrKN>a7$TJTmNv0-(l}lj3iVMx?^GSE=$w)hh~wa
zOen?=f_z12t+tJ-1^dr020pT89m5%1)r@%c4OySFm5G>_9cpzBRdj7s?aVrk;4hz`
zzP658`;wicsWdXjXlqF<<nCeOA*mvou#D~yP*_*qKi|&B$1z}Mi<Dkh=P<kkpoa7q
zI7$Vh=V>S_;uw9T3goS;EmQB$4-O74SER~_UJ-d%l6RF$+agvg#i#s-TELI{Pqo((
zH#J-X`la#G*^1MhIDoz*4?4`R_zM!i$fZ@Jx{I~Nsy)Jl>i+>7vr3b*R8G>>R%ebs
zK*Yeq0w-iZ)!9c8XfZ5PvA}hTB=<YOS27(~tapA%hW77U_<7c#isOF{0||rLp!PBF
zD_9n+`mkc+5ioDZie)1CpOD;}*4E^>M9_N&|EH<xb!{#($)$j~Wr$d2*MBv6KLI<F
z4|L9*tK6{vd*Gz0!hf}KVgIk5=>OHn{Qtit`+v5I4-16Sl{>d*`pQGxZn0$LWE)oN
zm$&yD&8CCDO%ZtXWXcK5PsuM%4G-@x;yhknTKddNfDY3>WadNjj1kFJE%2;u3QHly
zPFH^GSw3W9ViK#WIx?Z!UJtsbuPxdW6I{N0EUes{_Iw8H3G^|+b(4yWCXPHF#2_pl
ze=vJTlo?@ZV345<^`+hpsCK#FPu0*$8rv#9L3yOb$7i1OYwTxTU#F@no=8Te%1r0z
z+HwDs6<1>oK=CTLLv^BPM0K9Dw6rumjTGE5`k48qM4dgZp!TY&Dof6bN6#q8BDlTA
zwiH&oP=W$Af;&`jaRWWgPB=n4*G>mw&^rZ=?EAh<^YLso>gF8a#A|JxtHemkM18?8
zVflcK6)x)#Af3rIqJy%r0c0)foH>vU^@E-KmoFp$nOh8ln<7ab9-e$oq8P>L_RYSH
zQc}{CU+CF3rUw@SHit`p49nKo6Cy{!uAHt_dzkjf)XTje=|6{W>UcA49si<eUQ6BW
z33grXkD`uKe3tW*V*}QB;HYPEaYt0(vto2yw4>Rgu2LixE&k;A^AgLv5_}EK*tnR3
zg(j6EMNq=FUlk80r8PG%tE^;XqMNR8te2+WH}qy9Pn$l)r^j_*U`Q$~3`MSYwR}gz
zq9hs{E2UakURDJ*61ZtsV3^8vcYhkq2+L+rOVUzjO~8a{ml>~;GchscRF4*<q}90n
z$o>=6V>mrMtM)4fN!Z3^A|aZ#0quG)l{*d88WIYtxwcyyJ$t33KE=jH=gK_C!dR?v
z6t{4QTK*`Pz~wl%CL!c=Z>(bc2H@f0EplIjS98%t_fS5WYOpu@=$&$aJJTR4<<};%
zn_mF3!iCLZY9v^c^Kxwc7{PC1^IG}sE3g(jO5Qv<K0)y8lK<hP;QAWIS7Vh^%%vt+
zIoR7(mkphsnQ$2j-+!M#IM%ttVB0*at|xb|;w&?MA(NC>4OJT*vjJ-mkREp1v=1Yy
zKeE*u?$cyM15h5s&}g2lz;n~=9UN@T&2yMJ{o6$#_s2nGh-+|RbEVU+2TaMi$GGR9
zmlPob8xHP8QL)S-#HVqL$HaS!@_H=Q<&wb>LOyHqldep9jbi#X#V@~>&mP^^3=9n9
z=q|p<1obq&rfk^s0{pnY=VeW?&iFhMxn46US+7iG_}3Kcaa4KDWl8uTkj`{s4Ub_;
zw6@xfBb{2~LKJ2TQJrDuVH<dOD!A+Q)wbD`GCKT=c^U1d18I613I|I|Zl^Qj9JF#y
zo^C1ga}&j$m9T6Lv)6@%c~cidiyp^?Rp1i7e$~6ij^P-BC(##qe;eXCss<t%BbNF0
zG%k&Sq4yXW1@!v=2*k4J5hNDI*7rkckUCEf*+gFJRj{|qRiGM?fMF_&kB>W`*Feqh
z@Tb$!G}Ojmx>x1ab-%xF;59*L_k<8B2~I2lIro>V?-^8LcgLp@Vb7jnqB?HO!JZ48
zOr;U~z|F?QCh;|b!8YbH$JveY6+=G?Rl!PTetLFhULxr`!-u0)Ihu}6n>%M@V0&rn
z4E$PICCM?OM2NW&T=o1-SGVY5EfQcvBb&@_H1SoSURvN@cmFON!iD4;Q#HWB(%7&Z
zbXfTs$8^)UK=p8;iHU`l7!YZvniM?QIuv?%BHY#8HO0qE=&dcsV!J2|nU9CxbxIZM
zz?@EZR6wQByQ?2|TK#a!?QN_7`FlbAEk1cuiSpa~M~^mGbQ6ya=mF_O_M-CNCrc4R
zK+D;*BdttQwdpNadyrOxm$A7y+x=qMOPcB`iRK$OWWenfQ?toqKbIU4F=n>6w|DC3
z$Ypz{bU0M+#woLZF{V*5Z8gE21`)A%N2aTLipO%jJzLTPS*Eo?6BnnY-K@x!)#Y`?
z0=nc<`HgQdwfJrmck)xuAM!?4R))XlNo@`;Krfe;T3VKVmZoSS*s8!Tm_7~d3$-+#
zLglw^UWktof?VDgb4uOePWF>}&DLArSKjln=-t|hx(DRO#la^hSt#`X97PiQT*=PN
z(6e$wR<=zYE7&b9D<j#PVEPNcMFXy{Js{aNcW1{&xe?_47Y*@hi$2^`Ohq9z`F|7}
z^tVTZAotlh`N2Dlr+CZ@HJ0M|a*}Uf$)s^?#vL{n6&2&fYc-r~XxX!|iBWmf;W2Bt
z++3AiO%eD}q<UQhlpg(wpXENEcyGTZ?_og?yucy57&eN4T(mx5a!5*>$9xv_*t7<4
zgk=6Q;@>xd4p{lnZp))a8j|<G14QNS!ubUQi&EG~l%XdYS|&u6l^|D+WT<Zd2~f<0
zLi6#oG?d~xy0J*Jn3p(-&dWZc=|K*?(Zqv-gV8g0gT4irWaa$A#ea#33Waa!&Jv#-
zov8jXR%1@iMQCX#_#pbX{}_A(F-V${!b5_EJ5NCnT7b{&RF<-E;N`B7uq-A*MY(GD
z8*H%vsNZxvySRM*1ii^;-QlCRf1N-G;@C7btlpbXkSmagsa$`%JVlF(MXw@uAzb@)
zZj?A6oH_CKl>-pZ>mA$DcDJ-J50#LBO3b{&M$)5*GY?uI5peTe@Dpy~PW&olu~*9l
zeJ8-l$x5w$tM2eVCAb7`_DT{3*Q2zoqTnsV>G635c*4k%S)x<VLm}o$3<QP|T#t8?
zgITnHD`WrA!|^W5LpBy;`731My&|nKT$8zdEv1~H(pMp#I7@c+jz+BUwBckLl~ynt
zUn4u=rLE(aVDMhS!BMPT_gUxb?9{YO5@%ogd_h+2*2KW>G$G-P8N5Tn;6)@q84Cl)
zYDeTp$$*iCR)dX(>m;9tFinHAspH4~wI16m-+Gk5gpJ?Z3-vixUP%dG1H{%{V|wc8
zOYu;`zGXXIxAm%yt1B>?Bdpj&9F60j4cfux(o0Jt7TlA1`F=`dgTBUVCjeiLly9U{
zr%ukXBfbpIU5xw_bg~BR;;DSjA~Q3+`m9=Sq7Iwxv@eJ788tl4N8X5=nl@&dTD-^I
zU|^uL&MP4%!8Y3|0<&%n1qE4BE#Px#i1$WzTm;FK9Jc<B1SdDQ_uav4I_Z6f0c(P!
z@ug9S&&>uy{)ea*Zu~!MI+$8iqe_Z+Oj-tXc$2DXXaNCXL>v<{Gc-ahmsc77%9QH*
zc7MJ>m6-a$KSnSuR*H(2CFi@@d$?cBS%g@|d<I+bIRqi+?Gf6%5Sy7o4LrQItZ!E@
z#j%v8<uGCy%gU<<`UV8O@3u($U;h<=u>Zc*CftcKqNKFd`e?!5>-qk?3@d@l#f3^t
zN-=8z0|N<3N^f5;<|G<mNn9Uza})Et<dkrYA+FC>w_Z~3)z>oeeFi?;hWy`#a~%?Z
zzLBMtmJWyYM&axBpqH2?CLS{&eM{dH%m$@!mvhL<J}oP&lcF!6Cm|s{R}F!=S5$sV
z`p9MrU)f6Hrtjsm-oIM*4~b=Vb#O6ooT8LEZc3R2U!>qjX<vo!e!?UqA|V1fq{4O+
zYrZ*!%Q5znLN7q1%yJjc-)Q}v)!H9D$d%8}G@-_$iSyl%*b?=|gUG-eR5{y{`+8TA
zTj9X;VOCoFxWxRONTV*3tn6fdhpb&>L#LVm%19CB%j44|LC<hsTU|{}2mQ%GkCYeO
z$aymK*%#WB=I{wSBvzG<$CxABIIF9{7#L4b+s6kQvud9Ja{>Y&9_mbQt53>D@(kKz
z3)QQZZx63F?t;iYPi|sDZe0(Y>>c&$9L9$heMaZz-kGd){5(1W&9!ePi(|82tJ-3q
zS_Z<QVMR<l8{QHf@ZP@_05CG_uJRPbpOf*p@BO*@5v^9}y_Ga17zXnW>G=Y4uO%0-
z6Q+qPo8BW<E7@xFd-m*^)7lfj!qP$mGj>Xn@s(y`T}YEA=p!+)p78sul|m=+0joW$
z1jdO`mL@Ax+eLXb*ORHpy?$xl>P|rHY=9V~iLZka0%CDBLCRgp?|m9}Yb=c21EMoI
zBD$k{Ks{-7w@;t-8)b&D{=#{*!{r$Xm&321xXVc7+r*^AbVr-G=nzXEoA3pMy1Ke_
zGS|H6PdytK6G=lw{1-zYaZ6^8%<K?>QIb;b&{UPPl#$ZvR@uu5{+p}7!{#b%bo>%^
z*!Jb3g+;!a(A{TmoqaG~0a_LoQhW3t`N9z``m8$hbAg!TO~$KYQVa#_1(UzxVrja%
z2ec}A-muZ#Obi@H)5s+AdOsAWTz&Ne-TL3ovN63@0|W5TDT$7n@+KT(dr8B^&AG9@
zadhRymBbVy>2zpqZ9UF}o?b5qsB385Vv%`mbR6qwRjbc}CUp6|QU%BJwmK$EM&9oG
zpcu719RA1=!@S@)OiN?h&BK$s<{jj`r&}7&vUMaIG_v`6qk8!Mndzpp_|oovs4^w4
zoBCD}7`}*ewoztYZTMNnv1}LV(^aovFxDpX(j>ikg)U0j*A<A`Scf|xBlAYIlTylF
z`12EI&f>;Lg+)lHRMd?9?R`=;3us_ns@!2b!`pL~7hh}r^g3465SkU!zI^0n0;V?C
zFc>gQV_olZyb@-q2KL4VoDMagSZJT^Z*0UeV||CuSC?0tu*ZK447<9|CC^se-YQ!q
zbKlvv6}*k7MiUHc{@u`^LYdI0zdTT&mcY0%{DMj=F^PeJJ{^sd@1saN<o+5B_$>SV
zc|`DUEb~ue!yxn&=TCOBrK&iqOicLo7F(UGIJrx7kbUR&3auZkR_xvbtWHx$-h8f#
z)0DTD2R?_Ha?<B7B@I3Zo<GuQvh!JsFY|KzsyqV52nuh1IRS4sCS)41CMID1NI$L1
zxtd_2_^xoIa04pwoNQ_(6s6Fnrtz3@LxzH~m$alaH8l-c9YaF;J-y=)n=5Etd2iRC
z&E7YO=KC`N0_8_sbtE$wmv&Rh$%WGN4Td{KnkpKRDJj=e978nS-CDt&E?D7Fv3LR6
z2BwPx(NR@ZD!*dT`v*R@Q$^$8IJL($ArOxEjCWU!uIDZiP*pWGRWQ}J)e|DtBKA0Y
zW_`2wew9Yn#on=?pkVf{`w;k|t~?flfzLos4=lA!k4AnBoSK@}&<qCsXh;Y;($dAi
zE_e;TE%i$2{%en6ija3c3<ib4=%_fy$L9su1jBp2XlnjQknWmRq6M{<D~Z23++PsC
z1A@`f&wSoZa5(Hu*>JC{?s6NR#S8f$zV_0`RaQ<-O{xBJRi3XXtCEua%vvW1{8<N`
zks>|1ypoFZ`bvOr`p>D^8bVCeq=5;Tp((PkjPrPUtIx1G-t+pz9Sg8w@QXCfYR7Ur
zK>cT(HiG0YZ9PS8-*UNWIIXiN$hWrI-_mP<F1E{rMPO@b$fR=J4?PpwWuyXpDZany
zQ`=u?;^gKFLHA?Su9LRS0-ViLl2V-SPqHT;E`1EGtW>fu*i+Fb*1nh&t2e50x3C#q
zfC!PMcl#iO2lU7DvCs;f_Cr^dW2WPDJvlf8ilAi*HT}V#MiiBmmsWPj$X{CT_{Psz
z!=wkf@ss&IzTJGiAGvn?C?4wM;LOCpOm?(TApfW4p~Ad#CJ2vF2OVG<7?^#S9*cg2
z?t}2Z-gra{_G8nUR!It2t>vu-Jueui7dPDutyK2l%-`SIE7TH+q8I5|2Ni7Vt#$hB
z^5W_Vc#j4>XM&K(xnjQEN3DXfxjAk6ZIj>xaJ?+G_~zeeGf%d){jScJd>x%s7lO5d
zNy@g8CWJ^wSe~616&FVJ;XZ}4jTJ;Eq{gNsEOYau7w6b)_l|dCk*AC4%A3oMafLCX
zrMzIPvC+0%bdR=G0jBDW#O1-{Ajs2LwDX!H_u+7$CMhYY&aG(-Qb5lD9woYUXHz$(
zzXP9576m0H{}g^sI`Sr361p^&Wj>nQA8)LFum+m_`veV+&B5p%<Cqv+une$)_k#1w
zTvpHiytKJFUGZC%imDngmduAjgGtzxOYopjgm9yM{_JIQPR>kw9|mx7F!OhZ)E3=K
z@_(=FL0|G7D*XqFV``w263e|#M+pcNaaHPP)@?GJ6@rX56RWBIy1lv?iR%Ehl#~>K
z`|-uCn+YziGgK8x+~^*_cV=hjG=;$*5H@zd?x0hGkrX!wM9h2sv^92r4=AguzWqgC
zx0I$?WQhG3=^N-mtvAn=m4CTEKgp*0^!S6@H6}YQYcL6~vX$}q4BsJKDiyLm-nTip
z*kB)H+QmdaHu350pFXWhD?<O)tj)*-0muhc6B^FRAKI@=N=jY^e;QYbi4Z(L8!Xbw
zd&<+>*XQQN!4)JUQ!d3y&@LW<>RYx-JN*0-6i1paZ!EzWsK!=1Hx}&cdB?@6F+0V@
z$tCuTI5sUwO;1f~zH>EEp<*GCmjX<n#a!!)t5q}P-#TsN%NM9f`yJbgZlPlcJ{;XI
zAXGYjW`NAe_nCHWIW09&QBTd%W+Bqo$i@av6Fo6G4s&<&9lYxx3KL_FtC6HOWZ1oE
z`tZGD<z_~cCdBw3y}wEm1psA2B_*m#HU8~=pNR?Oig-p-waM}*oVprNKmd)M`M~dD
zt#Bq$vu-!h$D6@vGem_>1(T+|eROoX(|DgMV*5baO#KRE)G+3U`%Q8vc4}PB(ANt%
zo=$_xG|AwSukWvpPdjU?d~SBm#wwFT+>{pI1LU2q+urlKi&MYa>1OAR%doezOJ;Q@
zB8BI@WguSLMe9Q41%uiYKF6KuIK<(~bcIaVGnJT_xWP2J(2((@L$Pe-L9K?`swz%e
zhFy`(w#u9vWHScepB@ztpA(a6?#^jLI?*GD$_)qF)0!R*nj=^Kkv{(>V;--m`Mq{R
zr?n7>f`-a(x^6ceKb+<GHMEtLmE~LTpWv0K6B2ue<SUvx-CxCT<?6XjPY)Co)=u^J
zTdhsm+rw*Q1PtvJ3=|BO=Q=|o_7-X5`jGwn+9@fa<}xRaj=#`5L3+!yU7&bk*!Bym
zkwB;;%{@Dt!tHc>69&p4V4Iuc?u|2zKb!rIQ<!E-GC@gAVqAorjLJAnDR(es=X*uN
z@xlY*dewCYf3+(x@O8V`T!T+oD@EWlat%f8LU^9_-X4#Y3z*1#q9hbDS2XY`R?KiZ
zJ*q4(2j7dPkx(pBh)Ci2nxFNTAx}mWvqdBx#%D|J$emuv5FD)T);RW=0OhPgLJoh1
zquNAZA_w@`6tB?1!Vgl*%mgzJqu1sJ1Qf~QhA8+vJuR}t@X<Q9Y#3hcWL;hTP|7`+
zt%@Eq14E8@Mi&k9ZQskr^kMn54?e0B6W?TUkR+ncot@unB$(6n<RE^sV7om(xj(zV
z+<NzIW@qLo@AWp6j?f&sN+T^RBlG_-_7zZ3ZvWat2nMA{r-Gn#cL+#HN;e2dH#1Ta
z(n^DXfOHNGl0!?0bR#ezQbS8Oe4BI5z4!d@T6e8)maIj*zVCi_{Pr)N=h+GJxu9al
zOznA+@7VmKe;`f7J~$v-{f%^eQqoVtL9rIg^NEjpd*KHMchvJXrx8K)Jz#t08=C|l
zP|>0#y?Xy1-XmXgbR^as@Y~cB;Z7WzU;)yv>%V`3bY~|r;G_Al%Ieq$v#`XH6U#*!
zrHBaN&$yDXWqs^@>rC<ncnR8UZ^tS*56`-05u9(o<y2Lf!*j;lhOM2Rw~G5-y?QkV
zzh=>|M${Gf{RrTwri27Xk*9tkP?04=xEC=IeO&vx5>20!{HcSVq%T?c`p<iBLvc6)
zF>U?TBA@;VSciA}ST8Uzq9|wQmD~$zETYrXeV?n!crvw_yuc&VQ;l|XSzcc+4i9%G
zWTX}>7iSjr28|+n_RJ+{wtLdC>q~vhyW_1fGH$eAznVpH4`ICHyun}5$+qx;v)JAZ
z7&zC*N5cAi4lHaepbnMB>n0Z0qftFc{}<}@CJb}C$uo__7ZKg<oR+1@P2l0@vp-pA
z*c*v$KR+HwYf+^o;2;g}3qOdHje1+*BjtU$y``^RY@`s|x=_AoW`=r*k&U-GE$F)&
zn>gnlN1qALe0_XWg1hwu=jwF-_)XD7WV%RDkIAQmPn$n$U>R@co+cIBpXVuYuk=&!
zJ3l~sp)220YM*i_vx3nYUcaB^I2&3IQ+E`Sue@vltI!tgU4#rOPe@<DG@tO!Y=G6n
zin-F@X4l}k=0El0tlI5rlEMBBhfYI{1E_y(&eyyCOy+gG+QEp|8=rpsvmW+!+n7wz
zP+m<znOd~b>E|Bs4Von%X)|f)Uro!6Lq&Yo0rFJA*n71}Oa30HSbp`U(ERo_>?S}%
z`!#hF7_xXRBCp}&Ht;IgetL`g8V-ilW{3Q!#eiCo#*@xYMACgl2JXj9HsAj&fJ6<y
zW+5LvOCv3NnOXF$=W3=GOKaRG=n`u08gq3n4(_q{EOX^bI=k;s=SsfP*8ghRU9)UE
zQJ}#T8;H{9FL;-bjeW#w)Vx>icAc*UPfkhUyFSH+eegMHZI<p$P)Xq}s)q}nP1rM0
z^?Yjl^5u1QGQfkkhpi3(`#fk=j_QpP8!}v&s4iMr@dvcs1QP<L-1YU`Fz9ApSOW+e
z`&n5=)YMR0pFO?d`4``=n;5j8l435N#7J!sIl<2G;VDKY?*v2IBS^UpqKtjk7xZD>
z3BCy>M#5%C2Gx47^DbP^@L)KjriQB1+QrYq!Ir1-HGA%jDU)SnRMA-qxoY;O8-vol
zS_8@A>HQWYORK5ku*$GQc4L9-4(>sa|6>#5ld-eE{AOFm{LqCVuE}lnZG;RJ4V5TJ
z2Z0E=@-vGtc1X%(>3YA&n<{bAdCuIu)>1>}39&II>xy!MG$Ci4YzmM@7()8}Zyd>3
zHb_Mg%S~0=D~L~Wc7_i+#?_D+Sf|i)@F&*P9C2u-m~glolp5VqvZBE+dnBJLIh-B<
zY67cHb>wPhh%=1gxGfOX<jBxXCP_*j<CEd!k)^BP%B>xk3mW)KK$Qn}t`<JCFeG+!
z7o)YAaNI%{<9%j<j~`lroS5+Y<s@jYw$?HXGxprVwN8PK?zAxDP$#x8lzQ#Sb8~;)
zX}QSqEo;6?Q-33INL;DILL8RMFW_&&(RX5jOqfDxYIB~UkaOevlasTvl8>!VwVRng
z`xJrL07j=I>Y+v~`C7r%wd}2*BOCCXgJZfK-louEqPw1bW-+Wr<P=1|)V{C(!PxV%
zL}kt^gqmOs=F8D3`Sg<<z4=Zz8_2szqUKv$rThr|9V~V?J6rd(KIE)o49iD!p`H-l
z`0hS3{GJW_fUns*ogg|LsW@Rlz<@fDijYCtY@Vr?MpGCl!LFTb;-^vL*)rLDo`*A?
zXq+`O(<2nuYJfNVBH?$=iF;5*x8~C&`Q6>eF>kIJGsevhLg5-r?M1q3*=y?1?4rri
zFx;by3WU4&buLO~(os`=ID#!r!!es;EYFhynK7acjgl|Q8Sm^*?J-C5i%6A9(O^ns
z_MD;tZlpsO3Jau=Fa=)Rdc;Gkmz->fM6UUVn%MCvDJT@hW=V=@p-R84ls{o*VE_Ik
zmKZNFO!f|LM%e1$js4A?oTtBSWoI?jxEp08?RWzb`0GxskC?6*Ncd}I(+mc;_S96_
z60Z->%dWd9)BmY<1L(wig7p@VrUpGb+1Vf8X7X9iYVs3tB942I++W@UU=H0l5LnTA
zB}`0DTmP#Diq69IKSk32kZ?k%>wwa0clLiNV%^U4BH!rSm2!Vb;D6Ph<&TYaGh(0t
zkdT7^(T)0djr2cm_kUMX|1GZd|96$-za_Z-{lx!Jm->&Z9{s!e`tK+H-&g&IxYoa)
z_#gNBkE{MeHtXL{{J*dIk52kOg}M$LO%@(KM~O+r(o+YXV@ME8$rBtA1g2uXW|Wwc
z8VdL+fAdal7&Ox+6;q|u)B~m4#FF=;1}(q-bT{87dYN0PG|gn~z{bkP#LA)pkH@%5
zl7KznZf@<JRC)Svx4)k?P!caB44cO5cA89ioC#x_vVSV(Wuj={Gn1c+F4fc<rYjb0
zHJoO<yFU)nGGhxL@~Y{6$T?E8-a37tl(N2k$Mr^^;17{xfq33Pa*NwWUc)0q+j7z=
zc91*no>|2%;qSTYB~_;V%CB5%aSvTipL?4`(?6@KIyg8w+}*dV{OlfG5%S9#Q~1u?
z2b=U$@<YD!QaV~9le|}W_ZmNoY(6>`fu$7gnHcp<;AjS1ID|Um==cTnECmO$)PBV;
zui4|{CR}8W*jBc;$A!V_H8she^$3rVFJIpOm67!;lC8A8D}1qB5Ta_RJ3Ko!b@Okw
zAi8%K)}rlHXOKCh_VmFWX;WcrS%~V>hqa{!g)Hn_mIhze>8a-eg2O4L32-0<rG-}3
zHg+~0%KoC5Ds)rw|8&$<1NCF-t)=5OrvyJ-NJNF^$i>RUMP7}+#hdIew6_7SnN}`#
ztj5dZ9wyqEy_F*dL58csrDi^#Jo@V#rRa>W+J?1j`ZhFve#-U`^nz8ZVx=8Dw{x@K
z^==-NLeoOETjxXd$mWj@DMqQZ^08(;ocj-wyzZQ)Nftd7hN!;$^mAv<u1?pvTU`)~
zp><(P)cOE*tswt%W<>4hlnzTG{{kEhnObKMqqAwjR(|h}q4VK1zem00&LIT*@YMnZ
z0Vy#r4kV`}_ESe)UKiH8k{wt=f|kTW%)4d?1R%xw`hTGIv9ZSGFVOt~<_z*&!Bt&P
zP14nsj(W+fDFib_Hfi@1LO|oq%+KAFE}FB*^VnWVKD2Z6_TNMK=iVLiKaO<D%$JR6
z_!tn6>Z)JeFRUZC-_W5wM~63k!;Zy77F|XbynpM(FpYSH^8h7kkIxPrpFrwgY8FJ)
z7%$X{L(njP)?#zOJ{?@CotID77-0sM`bxyo%cDxip3!F7*S6pYZHZB04+-}{Otx*;
z_6?p+CSXH6=DV~vd+NV(;^lpxC`nKGbC|lY%zHIkf4si2udiP;ZWBI`)sU#inkZMe
zL2;LhD>5*cg^slE?5xqpVRXjL$<yUGRk%Z)ho@`==`BdE^sPG;wQub0PbBBD%`0mv
zV@>%&=pN_-XiN<c|0`ocuk-hrTl7YAui9nNpL^Pvdb(s8u(i{@Gd_rZjF-s#P*+H(
zLG@JNa^ul~^%8NK%yzzVmS}`P15U@^Gyg);e_rNnPRcH?0pC;fF2rUae#w_CzaZYW
zY`nU5+Wo!q+>2Gpk4JpapIE80xB<lx%C%T`a0A!$)yi;%PRUI+C%#L)-6VjZZTTux
z&$Qo9b(o<UmP?t&9_r~Gk_m!3W;W=XCDAfyO|Cdt8GC}<r?QcEMc|t@&f^Dq5l(i@
z4lygd$Tm`0ps-|Q6xZ0;g+v@O0}iQZeiaV`y}6)#AvyWoonb&Px-Ffsm_GpV%ldZF
zS7lx-i+ij&uA^iRdy>+AU-zTotmwzPduM#;TD5Txm&_O5H>G>ZDG?#1M6h#i*7<*}
zABk%jd@!GbE_kRRg(^hxSMf51@>YX*Lvyhj4eFa2`=L?F6<FDi&;m5D&1$#s<v%xX
zJ$wUEJ0^x^Q6NS9di2kd-kM9H=3=qzQ{VGaIfop*rk8Q$hdRL0)mHglFHQWp4fTNv
zxdou6q|~JOx+cp5DP0|7`Y|WhxjPFPI#cgDah&P8ne~0XZbxAu+>ni@qf-@*9Hhlw
zZUdiM%bg(6H8m^dIlu3D8vp1~w2ga-M*EbfvDUQ^woMOA)p71-AJ4PDj4_fm6|*J!
zSMB{p(T>YqT1d2JO@e(drX)o_EgH@=J!!{7=(;Mjs%?rDRg1gfP=#L$u}|5wa+|er
zm49vtRrI33nZ~N87%Lz{kq%0z(m96LtRXWaAyk@cV-tgmR)dp6{YXf_EUsq`K8#0>
zZYz=`baQt5-R(O8HOkboUJd46HH~?=kXdScM8GKIn7Q>nIf6ydgTHxUSd{h28x^_l
zAHATf^&)9uDcJI{^1H+25m?4bb>iKcaP<df^0CmvKfj#>ns(?d*c_<o;qsADoyso8
zBL(AdD$&3&(VN}IEi3L9$%6~N5uya5LC;2R_@jHia*yN5Y32PtqC?Q=<)gQ%`QT7Y
z&o8%7OSaH)hbV)pRR`5wbh-}&8Qc!i6ag77#B%=R+*vad7Lm{@2}{ZdK4J_gG%s68
z6jJR7J-z$Qyg}4W>U>s$q6`gHaBznzhHA(<4g$4*mHLX2>L=w^_xsK7H(ikt(hL28
zq&-j<E%@>D%wDZli3%;kAobjpOFp(H&QMnpBqWM1?>bFQW69Bvp9ISuS0yC86mEdj
z@sIKwh>G0tw<<1kwC?)ReEhX5_zc)Se_8|4Mo;Sdjyv?!m=Zh_{3e>i*x4cOruY(I
zOG-u2p9EpHL_o)-?DFgGV?OG!`9#dKVa^QgxD^^X8xe_kfT*V!(ww1nlPaUP@an|1
zPeXq#;ubLE80QI0xtZm2Mq7*n7k(kpavy40{@Mdn3iUV=k`3d3Zb=aKI%QyZ$Ub13
zbr`M`P4(*Y0Jzt%gE;z7@;H5u{o~u;EGlPGU;ajE`?XI`=T}sa&Tpa8CWcha&A3t2
zNRM@9IWsfS=1BZ+wRg{mx|RLQLufbYZwuc+gm{MbzaW8F_1llFI1JU&k5BYWLIRRZ
zGu4r}>a|<iJ9#er&)JQ$T^n4tv4*9$vEYei!-8(@zqG`o+LucBBA>6?qUIh5?cUz{
z@+{C{JNPxVZ2kjs@6v|hwDGLO1~ilP1lsqXmUz(p`suanNVo<1`Z@&YSP+vv%Ssj&
zzrmbiEh$FJxYME{0!b!cM|)0R^X*^ltMv?Rodj6buN0Y+Fn*y`=g-B}uZy>_4sy0-
zRz>hoTy9b=+rfN^m{)NK3gqN8M{M`-v-CF^>kfVn4Wh}TK9r#en+#_}Ep$33GSaBI
zPKye(jLcFz{7&zvGu`k`)4#kVg0~NV!-Uiq4Sdsu<u?(IP=@jQl~$v5?ei+uzHS9K
zGeY8`?2)*Y>@fcCVv|TKV|WM{nX(BP-wg)>PZ&RnL+#w^p*<FMTrYz0FZvWluG)L-
zg=WS?kjU*ZH@$Jj{&`HCXpS`8*ezgF16Up}Brb=Z8-~!j!*l!%2h{j4(oh72jExh)
z3*!xk=xZ17T${8{N2IFx2#Oc0N%rwDE{KT}DL%jiERT>eCl0jk-;!(!;qF`9hy*_0
z&13|RfjS;UQ%@p?KDZrJZ3i!ems90(++O4rkV_>e#L6~PoIuig8N0Qc<3>7w_NRh}
z^TYT}Xu*pPaB_a(?tFp7H4C|lOeNcX=hr?lF+DLsuJYiYhyrSiEgecdh8!ZR$Wk{B
zK*=L<vlzkHSlUAi8zkOpgE`%cJkbWN2ls_)2V}c8%dGM}zg~BUHk?2X!KEc<cSBcw
zsQ|{I;+SFyEtNrYqF_8Vua|mrV{OSiDj)JsRDuvEppT}ir<i_<bx^mBC1?WUmuo^$
zm^*GbJU0eSPTz2VL^r`3Bv8u^2esQ+P<^-Trjo?AT@y?J5oD_G*>-=Zldoq_MO<QJ
zYU7J*ekQIz`Hu4kPOh64Eo2?2m<9Caq`AFEF%pksg5WLW56I{rCLf!NcbYDMzXdcR
zp(HK>o5OVN-i@9-tGFrs<f2?(+Gzh61pgJ>5cp$@1xQ&QggD?vHjg7|BPNij?~}Bl
z)DuV!G0T@N;N@Ls8W0qJ*e8*+!Y=%+9BvpHGYASQ+3alE9~gwc>O4iSzOwWCobL7}
zBoIRgi0%vUFj-k?sG7S&AUYqUjo)32bf;hYENYof&MdeHf}dlv10v@3_>H~CW_mlv
zjGGS6%;wV0j)O7Jn@`uXJ@0vYi!`5{<Q~s^=(#O?es%xm7XBV_o_mU{eYe054?_C8
zT*>}IGDxD(Cf^_<20SQ53mabZxV4v01p6Ryhsth#kZPHbVc&50+_+T(`V|Z-RNXCr
z63k4hYPk$Bo@HP#&$`j5KU<r!8-3_uXQGoo+3wY*YsU!t*o)SR?0?25cIcaaf!O}w
z_ECZ9ym2?E*LZy^{RG#AME_&!cOE%bEz``zd<7qgXVvB-feV`B0+&R8x9he9J2#l9
z>zSg6Tw6s{)%(r5n#rODi73TPTMx+VoDy~0?3uUSqzRF)NQLZ~EMKHdnhfQ+l{8$g
zt-12gZBy=KbYDTMgk{>GRcqrj$NAaz7XqXrZbFtXX7cupsq27)@{lOr_h>jQUK0ky
zL=&rO(ENe~uaoi<TF!nWj>RtO#r3b&Quuw5b&R5P>?|ES6|k^IQA5Ysm-O!&-38Ci
z`d>go!*9Evo>ucs{HCaV0Ms?g+M3gBwFh{)7roCrnb}*es<-nrY{vU308bA;7oBni
z{p)kzGX3G6jJP3Audcdillj@%-#flPlM{{aLiSe`4Jw@qlgN%wdYBKA=Zx6cMQh(i
zM|o*#B6obZGLQbD=mh?f==lX%JSESY;Q;I5c^NQ;V2FMuf^`AbLsi*WJAxuZ+cvue
z#vhtChD7na$A$Ad+@dbFHoe653c7XfbG@&{1jNi(AFScG*wK&^EiEojq_YYO&+NKW
zQrPb1(}?(<>TMRn96=#x@UzhL?3c2Lm*L^==a)3;-luWjL;Z9|yYnnpwx->f1bH`7
z@xw8-28_eg1RO}msfC5syGrQe)oyJqi_Cc}_IxFADD^yv_|o`$r}>>yD?h~pvV#+Z
zwD=`ru~WO{Ha?YNNzdwj^Yz|gU`P0qqASPl?Zus@>bcQ&G8LzP437JdjZ^fQYu-WL
zHWq0~0~!^KKLc3b0~;qCV5jJK1#V}R0kiB|zb%uvpA(&GYkyF%9sHI6PvRSfdVtwL
z-)@vxl?gKW)U?8>Jl*o89?;JmGt4YeN{db4o*GnVAuiSDz8(%C?n@GEc8ub+lPiBQ
zUE_A0bQYW^&c7AcLv&y$eEfxl4c^zw-b9qTw6b2HW&7}M(97JImv4e+J}Af$>fJ6V
z%u;8-6?a=8_MYss&UWn1`O@H2)SS6CDeku4-xrLJpDN&ErD(8Tf?E0=`@`^D`IT)X
zHJJo@{q-Ng2j4ep2?-x?=c!OdFbe!*|3u_?1%O8Yl`%gk-wuwc#D_k^`R0y`r<UIp
z*j8M{04!`1Sgn;<vbA8a!IqVgf}r3a0JCECGwDFmNC<*rs}@s)gI6F>5{>u#Ly%zl
zShP(<mlIWlUb_hwOW*0(65Uw(!TYeUh87lR<Di}>STB8GI9`3Ik)133V|5=f7bzoU
z)J)Fpd{I7qCgbLof6@{DVKG?MO;GS>YJ*dp4Rd^9c;7oOii)DJ_GR0Ov2RObl!Xf@
z6FP!F*H>Foo?ol0aozp@p@jghH>w#=dLCHD<}E2C?qW6Lb^@5VvKH98>Ep<uqPF2z
zZi{HeZ57^=&Ine5KiVaqJ5314mAdyWIg^^3w|%dg%Ib3V%KEX-_jTl-{fuM4n{-I%
z9HTmtwDEN77&MObIqZau^B!uKc2q|RphF5At&XhIUnI2AzH3AtQ3@Eo(v@O|x;kf&
z<3_LoxdjESE1E-N<_bB6#Kk*!e`l>Q@%6A|-N1xG14d^Z7<MmxH;gki@MYkJ;raLW
zMtiOczE^V#;L&u;UK9|C<`v-L+P`=AN1BJrE!Y8E>U#5x=vmLt`qL+(^O3o^L(@NE
z&ln#jkM^1^j<QG-gXLaTP9RccQ<_9p8x~O|zbu*QH%BOX=R*=Ynj_fQSJ~!941Esu
zX1~9FZIs4_Dbbh48QE!?XSp<A7tdpA6<QRAk<y<m>dI1W0ag51J>@cSP@w@e+fS#F
z4LtqVyO?5O->e(!s%;rr*d2TGoO1+)28-GAjeqY>YkCwWH%=8|8w)jtq!sFCzlT4~
z!c@ceJF4Ym(brKFNSf0;p?_2Px$hV4{50b1Sp2eoLdIZp@jj*ayGtRYvT~2n^|x*f
z{am${%a-&s{g%C+?gWFDBvmb~T-5?ad-^AI$4U8GUj*u2cU>IH%!SZ<?7H-QzyBJ(
zR*&da`O>_;ws3LmNW)hvH=R>CId@f43Zz|@t=Lr(#eGiGU&0YS%<uKSRu&!wsQ7v>
z2Zd1kn#bssh`rt0tERZ~-!n{9AiOVqBpY~8uKYN*_NYlD<npf{4uDap+z#%U0shW&
z;7Vaa4gX_91I`v|#Q`-ZW`!1c$1J3Ae<dzVtMS0s@f{)2ebm-+*02?uVMIiP3Sn4K
zLygbj0%MC&Gx6l1%=Gk9HbW_|L9^4T0)X?eV)<1^0TLJhhYW4gtZ$@1Oxi|B)_8qS
zy-BJDb%kBqMn%|U-Gpn+Vpmx`-rM*dk526POuwvdIrI6tP3&`RTNV_Qk(rrfbTTQ9
z&F3g=*R@z9my_;$$zT0vZ+xm(+pMG`>nxZ-q&l;KAfT<hqS`)QPETL|Iya=evS!6e
zAfAZGTU@_F*R%p=uf!{=qxkf}ht3HA9=`m^=}0sG@gvt-%TdP;#yhce362Ac;e;M@
z@0sL)xHvsHz&GS20-7avnr=RKV{t_1>jr@a0Q@>|`U=XKAX8YAhqwl{x{&(T#%iUP
z<jh~kZ?&{tc?b$JRTo|ho2*mWPwgr$?Dpv><|#XB_nO-~Y*QZ|!eSE=(l#;TI`{VX
zRa6wnrt;s?9N@|qy*PFa>0Xr2RVyVc+u--Y9~?2Q;Dzw;j3HBLUKgD6<HcEbagT1%
zKV(b1ha)*RF^W&MBhgIsCRYs(ZJqa~<kPmZN2+S)t6nh&^wR{6O0(OlfDz~5=2mC=
z#1w((MNp(}7#w750}xNe{h2X7AP9bU#JuT4^CZ&A?WowX(AL44IvPQN2;#Z=3XG*7
z9dJ-HvbBK$=>C)W2x#X_Z8-W)PEDahDt4{ck~|>Kl}ty5hAz&8=e>{G?p5OZG*iXR
zuF6{5IC!i^bh~W}>gs5Sz4;wlIDJ+XK3h6(XJ6U;rBH*Z+5sA1H1#-!yfl0m7wWcm
zv<uLfTJ}oSQ$Gsx@>agLT{7jmw9-7`VfiNcRK&$e9OBgPp7Cf|lud??SYIVYaP-G?
z9)S2feGvbUBvsT^ZH~be`W6pAYSYrs3;;<jRZ@XEIZ58YX8?{%QcS3hPy$6q$V1{K
z<9g^Y>c``l0yw<L)zHc5vj)>}(*P9aYFzGaZD^0%v;=gj(Otu=xh)({0M#O)@a`R4
zdj|)234CJ98YRB6xmmfM3G0rcmRFEp_f$g0LDC1)#cT&6OHynLi_Ti`^X7(wsRlnu
zD<tlpzN<Iz;?>mDgq?L%0Bm7CJp)5W_mMeGUtMF8>q=gJF3zTU!(^FZy3ax`P0QuS
z$cSk{fj<3m)UmOTi?j2_S^wOY?)1nHo86IRKw9EUX<sQn-ugMNW9)nUE-;hY1+*Js
zI)2sEu<ug27K9m4@fK-@i+gzfc4u?pEra40=w1gWgmlVn9uP+SrM_+0*luo7{a#!w
zHLl0RxYYOG#&bJ=?K#MGW4=}0%uY8o`5%<NS$^{t{Nez_6p1kYE?gQKVuDvQs*5Iz
zq;U^iPbZ{fHx-b$BT!@nJUgEur?We+10<-4b@_OB-vZzGpcI%*AfW5`cOaAjf}!uq
ziw4vg5LtWsMTIh-q=Xn*cHLSFG1QWJM^|ps!E~a%_oY3-bUyEC%VZ0gIGfExc!loI
zpn1osJT>@k9L6KMbZ(rkK0(*x?P(+3R}vhgpq3jJ8vd~v=Gsbw`hEHp>a{ub0S4pU
zt>6?5cL0_A_38Ltcux<6KCUyF%f4&OnmdYG$d7&AcX8;d3CQ*kiywSn)aSb#A3x@P
zZvp@=*9XYSChySTGob)hZM*M1Yf_IKkZHkJX7AhDmUDC8OSB=e1fVMDYVd;)$7aN$
z^d!s>;m*d$tl-v@&~m-rPCXZ-vc>i(F%DVFFKqw2qo?P?oiWDA&{x?&iOkbvu(V-`
z4(IUW%Mx-?i!Tm-bWa6346KHSRDCVM>N&!DlzE@R7nz~@qyGc|e?3Il`5P)5-$BwF
zw(*Wn+ks&FzM#5d-|d-t9BGx6C!Au5ccU>0j%x7kzkem}cnXw0J|`uKR=o38meBIh
ztiJ-e&FG3*+^m$#Q?p4LjZbX`CRbA<j4g8~xx=%#?TbU5B^8#Iria^myoyM2!2{%u
zl<e{t_S4pw6yxF+Y?e#!p`y3LtJqxcSOTN3R>OleipCAtNFabtcuex3#m}$cQG17}
zv-7LrAnts4@hjpKQR^Q(?Cg#oa-N8?va+r4L5dBJQSZII3YP3aMK1LFBU!xd<Ac4U
zgT2zSG73J^rHb|tJ3D(&Q7JWU5^-EGbyHD^S0f{)_PE+i8v66+plWQ^ZmYVZfOFBD
zi>zAr<#Q(|hqrHSDvvznOVm<@VI#=Vu+FhGp~sIyUf@zF$1ZJAOvc4MKy3lUvPp%G
zpsp?n`<LtoD<#Dx-AbRAe*e}pGD;vINlBkv(;%cIUs+uATKa>=%)GJ2ZK?aQ<m26Y
zY{mj^=~sax#();M$fyk1@FgYi56v(-cK+^uq}g=1t^wO>On16XL78}+FMeWg3J)x~
zwl=CtDVdanVlrg|&C4r<bCGd#rfGDvcc#6!Nb~WBP|7T=B1eN38Do(sa_+ZI&uK&Y
z<y91djwE<87w&7QPzc&6y1K@tgoM-{XLNOSaWh6~Yig=_iNU&9DD?HYxw)%f8X6fP
zTxW>&g}vSlXU>ZcpPynooLi2rhfM0;4gyd`DB@)3HC=IW$-O-n$9V*RBNVwkc*@l0
zds5MTyg9`X{}N!dI(pQb8oigebZuTffc4lE;(uN@0SJF-g#^KdIxP@cA)KoV%2ge;
zBhqLPeBLX?Up9*yXTN~IcXrKEbJ~QLq<ZV>uI;vm6d2$G$`5$aI)R3<iSapvPyChC
zI^3FP>076Q<6Iq|!?zdjTOZSj9)7FmJ{Z8f6{2^$pA5&sUa9}kR=bjmt4rxKDJkVF
zgT2Db(5R?}LH3+A{swq0Bjj_6K8tSiNZT;HGV21B8Nj8hzuKoul<%Ff+rKf1S_ZH>
zvo0m5%iGez;zpk>7l1kWa(Zu6Ep~5z58~HmQmogoJ@mc_bV;zGX@=N0)v~e4iNY}^
zurC9M)|l>_B@`#%u{>7jWou3XEDm|~JP&sdK!|ogHkKZ5$GyyDXvuXyhsa}Lg;dql
zq=`8zK79yi6v3Sqj2&Hb%`hqUy>CEB&W_<}rV`WT;VO+{s)`QF#1CHlouBn30PR13
zL&%^6n2r=+c8I`|8}coSa(Fq#*q(7xLx@>*i3z>EP=D^*RG$Hy&luj!)byIq=dQo{
z_aH5GCi5~Ru(MZdbGAkruG-q97my7?yKrg#*77qfCxI_;v%GV6oY<Z>J!BvFf0ub7
zJcG_csKmUYF<oACd~Xv&yWYGE!yK9H9h@B9ISI;!*7(0HG36p-Ay&xzq%bqxJb%F2
zl)o4pfq#H&&iOORgUqrl{Y{0=2C;bM)(|nEvqHWNbos2KtY`4-7o6R>yZZmQ?8nMI
zspzS2wsyvB-P7%Ld@@IVUr?<?Ye%fcb~~q@>=f{3O(y~cMc6Daf8=kFZ#aM}xXt?}
zr1ar(@1L7A+YA)?;$38`eveqTJ;>h1@>9ONA0ViHrs@`exd`LmP9~=e7oHnlb_p^l
zZFLorbYtppzWlN5agSIfU2vwe#7y#y8~$L08RHjW*j|~qkFA}ZL7kmo^}DNYor(-*
z`*{(JQ8f2(?*V4XJ&2YTAGGd$y9Iz}Ls}P{FEIjUXJ=KYh4l;#J6HDsXa@4@;^*j_
zCr{+>+`&HDW&_k4Hnwnbu1{zBd?AGQdFlD{NAdF`BO}LP@a^O9##uX?=)!>PY&pAn
z*r>5KTUt7ocV2Eh5e&J3TB`Euu4xi>3oR+`R{4Snv3PeC`=$u6JFZR+SL;5bz$TxZ
zqCYfquzLtr`DT!7{y5Y4*cvzY=&0}cayQ7NzcTB7O~Ps3waTvBTv=ZJD+*T}iSY1V
z*{oMq9#~$^wNy#hc=`#nQ_O3H9-^2g6wzsFf3Y~(j(vnrBPdfFK=x4Q^^CB<tLwnW
z_p4v9)MN>%sX9H4>Yh0`rkN}=O5(IlkTbsnp_7T&-NzSsi~2R8<XiF6&iDGcP;cV8
zHE?wRB5ief$qwAKawOK{9*H`0pMISHGxK7tu}`D-zGsm}rQ5MGq?M%U`W@EkgoZXR
z&)BksB{n9O`n^;`!~DT7-iy=mEk5(Az*yOCzk^8b&_f`6e0(@qgpd_hoep!Z+KbE8
z1*!7@f2pisyp60I!$X*_D6jnT?6Ni;EZ!A19Xm6#89~JBr3=W}2Qw{b2oSOb6zUIk
z2Go$y4lP1Pl?JEnz62!-UB!t&`M5QO$jaDQao-uI!;wyTb<3fYtTgg~9w(>^9xncT
zt=D8GhSw$5IX2cU48L?=zj>2u!x{eT(;2LIfO}dw-0Z`_S5cX7y8_5D_dl(33)wQS
zEXU3R5|3$B9BJ0mYiscjvql}?synJcNO|9Gjx#6nU0>$QNC9@IrsG#m&f0*0c4Bt@
zg;knXyR!7h1h-e%0fgnt$@!poF8vcWovIg4A7~~dV&4j}7GDu*x{WnFGHX|*fHNjb
zx?TcU58>q8k%*7Dc=w8mN?5@Tbe7W77!(GS<7)a-@Mvaf9+0y=)LU;pN1P-)xKH+T
zf&qCl6MQlIB`7RW29FHkwHgU9==c<ZFLyACN^AIpg>8{$Dv{K}X@y6o>+iBOp3?U#
z`2<uGGMr&!y^>NUW-%HW8#|cXX)zS=vH<31Y?3i%%4TnD4H(5l_OyIAot^fos;Z9Z
zu8HyS)M*nPofr17Ls4?16;0wWC;!K7P=`BYE3MwodEPDZY+6vAcu?nuX~os->CAg|
zFR6?6;E<@|f)dirtwD2+JGAInw{-QVr+!WmKF8TRu(v9mOcl?qX=dOS-+;%fsE~^F
z{D>90AA^YoERpM5r#Vlj-lKN?lFo@ZStTtdqW)M0-*m|O2h8&zjd3ls*2<r~6i<}I
z9WR#;;z#M|WO0wk712XkODw`ul44SPw$B9pX<tajkcDXLz4F}KlMhm>-<TR8OpGGY
zPMFgB=_%l)S`l90_kA6~B!tKWP1zTDmO3-N2<O(n3m3M0dEQ2cGri@S7maYuvyzg1
z(fx}?trjU3Qu_9Jq)!7KYIx446@#+Hes+JROVnLb7NsozGJL*rjXhVA)3NRMxb0-p
zy*@Nr4uO-Seu{D4ajvAzv+-VHVo7FO+k2Tq<KtUnyJjPxZjii=aeiC_yCUl!+RY9D
zoDP`yhbOG8FM}#el%}VqGSrwx)zmgOsfvq>;n=Lq&m3&*#*qH4vsq!8lQz{Wzw5u+
z+m96Yg(oL7$pZYvZM-|eZbwjCTU#l!_Cw~x3k-h<P&RGI%w%KZ19)%};w75d+QjzZ
ztKX|DD`K#-aBnX+wU!y~B%I9LCvk0co~I+HM}V!JU-XcD=j;qo_t~l*s0bydL=#Yu
zQf8?Y>LsVh$J*K1W%xW*Pz)FMUawPw+u6r|dPq`VSC>4UQD1*LwYv!S6>Ijvnh)X8
zW;6U$+cPq%w!X1WMM;H5OV4uwXc?NC@v&Mx_1yWn_A*Q~@d*zt-&j=1=K|sap{`!?
z?kNjH?~iFAUQT(qYKOG!{w?%)wIKF0zuR~5<W-c={0^!fuCG&p^S7h`nKkV0J##MI
zgOU{fQp4rlI!{J4&wGF`P?U1MM%WDk{|y_Pfpk%-2jp|oG#uk?fNbYl$-Qh}IreF3
zvkxjXorQd2wu&u!g(d-Pj9aM$9z_1m?l?F<A|gWmj<fQ>0OZ&5)~Kqn8!!_!eAe>L
z!%C?*c&GxAAB}HMD*>TIOD{Gqbr}UTk&lj!JUj%Iz$YTYx<?+sh=5)gLtMW_SjX?K
zv$Kd6`)HopS^iXd+Na?2`HY0%q2#S7A@o#+xikO*A<@@0nwuT_L`t)|w3Ji(^J8UY
zi_djQPM!PMXXmIg-(UpK;la@}X4am80ky*Tq@=Ysxw&aZVgOd1HaEw@M*+FOKnDm=
z#P);B>)TRIn$hX`s!zf1fQbx^F>^3zLKh17h0~H0`XXU~trU=FtsQI%i%LX2HlKze
zM=uWe;F~LlK<;S-@SH)=0eZBWhaZeB5eboypx{QyyY&;Gu6-2N`5O=s-*pw&V+On~
z+|S9&JHf`RNmm5Vj+1_@pipsgR?U1jH>;|c{*l;(I7h*yu#V(QHB)axS!aVLe08;K
z`HxZeB0@7pBLC(iFI>UfhP{yy%GG>0>kha3S!WGIBGZIf>}^ZnMPlB|FWjF88ZZ<U
z7P-J&c)7U=|J(vWDem5%C+`oSyFXZe*tTd*4#c?}%w~G$AAOYm&8StHF6==K6uIaF
zZ@u^e<Zm9^mpIzgK{rgx9dASEEg7&+ZH(($CEoYw$|p!FROFuQZ7IBr&nn0g;CsR_
z#2-4nds0;wSQU5{tXHVacqc;x4$i&cq1T<)m}jvbE*N))JI6@GJSV`ReH@VOz&OXJ
z`Bzo%Cd9p|_f@Wfdf!UqBh(n7`%vBo>Dx$6atexpbYa)E->15+t13xi`@gP4LDEQ~
zEwf!V0?XczB3JdPDVHwn5SDxd-3GIz^j<yKSBu7xpITlqJ%m5&$-IA`WH2=%l+@*F
z^H~#-O(C<rot+ZV)MSaGuC{*f>b@Xlq$<5$jVX~RL^W5<S%6a5D<pY6^34BD?h~jm
z0R2x-CnJ){&nUJ4oIlNTB`7(0y(p2Ln1sj_f7r}&CquuuA`ih}^PQu8e2V2Lxq8D7
z&;x>kg394NOUGA$lF-!f_A^5JIK|k|kTsqCmrMO)g;%gAsnb&AtaRGi`uDcXQUJo|
z-TMq>rjpV^O0IYAHZE#9=H}A6WQTOOn^8kMd+vY~>{|I1?8O)XAURj<=2Te7QtRsU
zy=R+LS;caXVn_Qe9t>7}AfKIwn4Xq7Zzy_AgUSk6dmH@Y2UEI40O~qfNc^eLHKpg`
z8Br5CW$Kxxp?$ZYEG+~A2mr_zU)KlZErWe^jJ0JA0~6yDl)s4ZGSj6>aELU$Q>GL~
zhj`QrR&dr@_NNY-R&b4umKroejupr%%tG)-q-ChSd;uN`X6o1d@McjoKQZyiaa&_=
z(Yv`9fNNLlXcR>*WY?CJEAD+9QIcwCqFVk{*`T^GOLBzi89VdgF4?D))UB;WueEO;
z>VJnDG_!SY-~3*BMl2bIm`>i?<5FO@^{io`n^)8+Mj-S&S7P$=WReUf_V-jYvH@X`
zEphZ3Fu(b^7b)%}laM45licfLO(@f&x-Uro<XM~5YESP#nvi!MP>!R2$h7ovy^skc
z{UkF{yZLFH7w&~6@b}ag1cxVQmVGDh`0=Cif`gd|ElKMvZJj<RbLTGlBlhX3w?IuO
zmY&Kkb$#8Iha9&$2az}3^&_~)WQAn8zQO(W39*NCy+=?z@b(o46qm{c$9dyTR2{SG
zip%SYzZ;k|zg>`$3J9S$rw?U$VY^b6Ypk35vUA0$@?NEd(r1tzd&EW3L$voJ`K36!
zaZEkxC-2~>N?A>2@W&L5NzKv0`+j3x7}H;06;MXhjZLjiiVdzNc_2J_dB(NJwD5G0
zxJbb_IJQm)ncKnJBF_wwHD!@EC&$j#XDu(pywZ5%Uagl3<U7nJ4Au#cR}MGU;HeDU
zl{M8wxBFnL_RHmhYH$s>#$8PRt}ZMHK@I+=TaXBZ?EDYHMN{n(@4C8j0tk+5uXcj=
z$tm`1Gc4{Z&-Tq5QHzTXGg&-zzb=zMjgpyGaWCEMkRv0rIc|5hmVTpCaZBuhzJh7G
z?sW_UW>>JZ3`1AveavB|n9cdGah>M3f&&Ni>rPg8TIv_aW495ZI#K}*`HYvw3Ndf8
zEABc0Vz#jJffHb=Li$o$3I_2lPndd__xRu%^p!b_ERr#~3pkPV);TqjASy24G`qaO
zuqkAUq8536iF(iODSnEL1&+XsqeERx0NUx?)DSHJ)FARMCOSCuXg#Z<0^X)J=8O*T
zV}N1{-yn{t;3CTt`mAb6mynPplWIJsluC2<^HB;pIZ|XcV%yKiq2@J?vfUeA*CT^^
zN$16BBBsi&6{p|X*?_|YL>5*Dj7iCfPk)U;Io^3C3#}ly-Pnx3S{xtQYjA!#nfkm-
z$oSz!R$g$|Qcj0@chq_bAfs^!(5jZaN=&rQPvaebf_0PLlJGIw2CU$&@RT~+bK<7$
z*C+iQU0qr^`;m*g;3$GYlRY%Tc{L$l8LR2}OnOuz0V$UqW&mx$H%cI0({}*%!alDf
zja!Waj9YPE--_>Cth{6Z2y^qfx;V5nTaDXp&;<^UgR-)dTtQTnqk-K))8#ribEn;E
zTPFV_#gNCqr{EPKh0G_SDj#*|9TIqocnfE<K;)dSs~5_>&s}K497LSeHh1OGSr0Hs
z^wD(RWbfnrmYId!$gz%8j#6$?63N%*+K>1i+1n(bS}H-5j3$O=de7O#f(vbEYD#B*
z?9b>54GM3xxi?29`_WoK#9I^G!*|url(F<rfP?10S?<Rnj^8rVGb|)6aSlo=8KBIv
z`Yxgw06zMW9L`0;LRj0#M@#^LYfySyr301LwfG@t<P7_04JZi#ahAP52k7>KtrD7=
z%aG{AI4WM~(~$mK5PX#~Sd?gw2?tO(i+?F?<&Ft6O%=4Ijt|sTS6?O}kR!lMX}@#l
z&c;=?-iWEKrHZdF(6cBiEd0Xh6**koyVQZ{@ApAHPYvT&(BomiHnJ@$8e@th>|9-5
z3AefqvIL&TsO12b-#34Bc1IeJZd$)L^rLzM6|+^z_w!1$K_-HHb$JU^OViy~1T9Il
z<MlLkqPs0Bl5iNBl@1;f5!WH=)di10R5=v-efEnT#L7M%oDUfz_u|cnOFfu)co2}m
znG+MkXuuczscY7)lF>B-qO_TxKP3j&Utk6WrU`hS0I3c}70T?pV+&z;7@WR8+Pu9~
z(nTaLXZDV}{92!51;nJp5%EGvC&Oi70r9qzuRM^RjPH+(*KB8|rymF7<em+N4x70^
z8Ptca&rA^k(l78be>?%)eC&|mW!PNk@V=Bd5%E$3!sDj7@{j3eYUfKp<eT`A1nk*o
zK>Dah{=?X}?**Aa^a>~lfvs?QT8}#M9=;+ONqenj?ZcOXXdTfD)AU>*Tuf4&7#q{j
z`Mk5dWp8hL53;gCtWxZoKrR;>AHTM~PE1ZLVa#}3qj0be)<^$x7)k7d-%wXpC2wwc
zNr}B}93B;C?3o1@NSU>l93JW4CG9;74J9{y^bida*XeTnr=YL^m9?Lfn}>;sd5U)g
zN=CQ*Ky%Rj$l1D0I6xG7|KWq_H!rdm+dst;P;lFw$YsiXO7)H+@!(XmZ3otsLl=PT
zuw<1C4O5Ekt)`qF_{np~;!`EYr^};%(vA-c(h3m4UM5*3eE#s$5(v(ol|8L(Is+)O
zoaPD#tM43{_0hC`ou<HIYicB7p#8k1YZe@t`}-LP-qN|P*~XQBDB|tm?jGNf>z99o
zR!Ct3`A*P6@ZcsJ_ql<Ig|<=D6Mc&e7qe=Rmf1S)kAOkN_gLksQ29tQD$Z#&tE8Aj
ziK=c-AqQawYpTx(iXp?ln%pjji&yE2i<esPqe&#}rJ-S|&Zd@bl0Ty<I4`N{prEMN
z+a$eNg9+JUIax*aRgM<q7uC%cho#QZXnCLL(${z%^yC8xnz$YzpCy7rjA@Wv14iy4
z884>aQ)cFfsIXgpfK9?`RP)WTyhZI%RM>|*cpED-QZ8!0K`d_Mxm+#U@K)8>*kQg=
z3`BW=G04GZJ^Q}Ni$Nvj3KgdUcx1V1@#!h9MXnyMqWLPRpSc~|;#9;{I5OZByWcYd
zAVWi{ZkvDF>hBR3Y64bRM_?V;zLB2-fm6+{Q)NCGS;81aom%S@Q&p`=TV4m<rA$5f
zXay>S-BFauqHbvLS6>BZfpZT3c+8c=BF1*K(4EG@$~N8Nb{rqJO2TdkvI;L^qrZIN
zDL;4GK7i})6N_BVhP{lhY%Wb}7TDC2kZ6|4CgXi;U}#^G9p?&ync;TqaVDZ>)TP9w
ze{y<aHaAC(B$NIA!4ZhGi0(?;()cI>B69pkkc3v3=EqS%ADhe*6|NmLEPo0dMdC1B
zKo%Q@iav~xF)Iw{?3O9>u}am;wQ!x9EHlVd6G4cHA6!#8|DK8gQaQ2ofDm75gy4B|
z7M^zT+VtIQRnpgQj~|y57h|G_#dSw5tu6yiEde1x(Zd5*U>@KaM$PUEXlrtLb7{z{
zh4<bKK-{GK>L*9NBpT%WcoU0uV`F{bix5zB=Bj@AjH9;BWzE#vn+j6!=|^MZtVFX<
z2;SzFej;jImejvFco@Wr2gJ!|7L{(3ksz5UjZ5~!oMTi?oe9Unacisgp;W!#PatcS
z95PugKT{{-;NzhD?wtWiYJN_g94$v#QBf|F8d|j1Tl@3|li}~f+5LSdx*%a<4L20|
zG8gg;@+m%kVtis{W%<B-BENwG?XswW)Ark!XJ%E5Q-M`=8x`6$G}Dz%XCs-JbUG{+
z63$mi%=x!z<%S+65P!bc7yt6sooM|}6zenz#$Qwb^!HV4u|ErlPKMt^Da_;m*`j<}
zVTLEfastk49sbt$(tS^){UrdKd{ewS9Z|*3#>}&N&xXQQPcQinB$mFGX0FEl?01D!
zck=EDnFrakq@Jx|LZP#aezHe*tm3Mr^E*VU-+90C7>>*q_M`pC{L*IKwlb`;`VkJ@
zets(iKsx}01H;n@z%N%F2%xxlTg)&<;iQ!70<mjn_Y)~hiKUgac0x{nuM@^>xJ~@y
zXV&`ZwH&aCiza>k%i}i%Xy0>fX~2Qh-S}+~^UBZgv6qM}3egmj^g&17g593wy-zQL
zj0Vb|(^~Nw;#S#$6reg>17uV~wi$LZRtz`p5T|sSmoH(NIeXRJe_tP@G3}}C9S5YP
z#UPtM_edZT2fs$mT7^G6YJN_;wI^-KL5l9`>e)4f)@@!PV5h9Fui_<br4yK6JDGWT
z4)HVLp!WU^2cFFck<s=yl1rnVM+i$&T{qqjusG29xd?0wOhq@2Z$OygvGv;4X=Zxg
zt(6fzcwV<5YHihcw!syfcZ7-dDZS12Xx5agtbAhAuT!EsGshB)YiC<O<6OnUdiXXi
z(BEfNYu-g(W=*BD4Yx;eh{WNHiDY-RBz@i;1C?&1shMbI_4UrKmUYpb)7LaNYU)A7
zT#chg!47O3zDqrazIG?|tBfNJB_ZL>fOz~nA&sY?;kBvE)WA5u&}2M^OYgFiCR6;&
zl69TA6i>pHcVQEJ@?JKWL>v%eAgfcpe3uNWzUu$W*#lezS4*CjQXgk#!6Y6m_E`z(
z7q98bxh!dTtz(;=4&z5mW2>KMdn<+PBx6A)gLl?nGrn)I41K9K5*Z!6>>d=pZJqh3
zH!jZYmveN_^g$NIm}Ts+BZf<T-ye#1=`H+D^^F<7q66!6P|d$Q*qb+sJ~3s_^Lf_A
zXvz0BT?_ZLC{H89N{6kknt<k5fo7qRAsRRcikX?BkRxa4n}7R)n)>Rmuq&D`uRXt3
zDk8t`Vdn{x{*;Dhhk-3wUhhfr9P|-fWBqqwY6Qra$<*=}e)@qH<uH3m7G&5c>g6)P
zKiv<KJek<1Bi`E&L_ykv<GJ`B(rb$mhK<LF;dIAmo;%L%rb41SBA{|K&xP6kIJ=UI
zdpj7_^?dx-5WL|v3j$51(2;=3gED8^>h?OhQE7A$4^tuTi~J%tv)ZAx*M8A*Pw4M#
z9Wqqi!DWiqD~+zk??pk2N_Zq<HK;=rC-O9&-N`8XBW#lgI5q24hYs2PAvw!=wLLRf
z09t{fBy9h?vJq$m7F4zD;=trD)Fc5>gp9}XkHmIa5!a0scK2`6$5}CS=`HTNgxT@8
zhkd)cCxJ#;wm9!K!FuNGtevpexuz|(MTO2tO^pJ{z~s6jcEFJDX2)<l$b?ggxqQ;g
zh8GqKxb9&#i|*9dGWrB&`ie5Nnz*}rrV2T4UfouO@q@f3DRyd252*Hv1f?yrtK#SN
zmjGr2AVzV_<+=4c`67ClhkG<RM;LB@o9RFQeoA)`GdzG8fg_v6sp=nKc@P4$F>=+J
zRODFMerqw=hGHJOa(}q)*z#4+U`wk>c`&~35#S2#Vg_#4qhyo^lD>WGb$_~DT=glZ
z>JvSHqqm$`<PICOc%GhVzMIT$kc4TDmu~6r3e1i=s$ATbx^B}qn^|euNwiV|0A|!1
zduSE>vvfW=;X%Ae)nw<`iY;^iNjt+F|8~iifMMpj_MIowQap&QqrO{0YD2>eu*W1q
zbYfNA?=h$9+{|QW^Rp+gIG+RH-wos-Z4%&*UvmOb8a*uihp3p6ox?U+giM9gLf6tK
z(b$9^!NHH~Dch%RZ-aC;3#%v#%chj1mI2~ISK{iH2*clC%S&uB%Dfxwls+__hSTJb
z0lLqNsNbq#2#R@!+rDf#dz1xY)(WmZBx=zaWrmD6XAHoo@}Nw-d#@}gu=vj(N(!Q7
zGYf{UV|M=rXsDyNp`nAO=Ct^=VtdT9zaP=&%lF}~HPe3qj!_0~?Ju^2eM)fE0gQeY
zbEtO`#0%PP*`p<VHre`a0T4nMKNKtBpaCG*SRbIilnqY;$WA?lXmLZPaD9n#IVug`
z3F0S{{Zg@mN8umrq@+m}mMlOiLkCh&H%P-nhHXXQWhHeFzp`Bv2j+&}xE-1z7HkMW
z@`f(ym_Se9AG9flZa_A`Q~qycEdh`Ug-AA}Q*|;O*x28|&4&TwU}ztF0XhT}iHlhJ
zPBr+;<QE0*-!Q_!p_Z`b;_X?6wJ?W5B=rZ{nX)3-bdG~Q#m>-*EoA6EL26A5HUk9p
zGkc~R`aB>0s@gg5sD@8cqV_{1pM2DlOxrMmtt9dxPUgE%Ce_UOylf1F{ZP{r6yMO|
zi`yJ_w&}b>vcV1%m<dAPh=!;cN2qaA_5FuF<WynHRQ1B7c&O~rIRY^LX$`^b4zGYv
zgbG^wI>7q<4t79BMCyZ{{XPc}Q{a^WF#QF<#SJMTac>w18Lo;rtBPx&>mGO-x?zNm
zA+1`TaQ@HTM4pmSYA6Tt#rSh1Hw?$X(Wp+zsdyPsv$&}>bF7Du7uu)fsjmE04N`!H
zgPLVH*b|uE=Y_iRXQ*!nD>wW_39#Z85US*pLjur-`nC+e2PKpz1VwrwwO%vRy=R3X
zc(xUp5uyx&Tz5h$*I}~SEKzhSY>I!s(mWX@65tgN0UEst0E4~Z;H$I&tqA}(0Vg2(
zvbX_F6z~I%8o|`TQ&0gIzdpJE-v1u!HjJ3I;g~WBf}5$7*v$!`vtX_RZ~P<?T-rs2
z<H`@Yd3!9tKKL2a_Ws}hGrH|{&i@Z!9$_XW1d71b+rbXoGWdXO0UA8ibnE7ry}w5W
zO0!Y<FD?rJV1D-V1#|tlnlF6G8JdiFLuPpn@Tjfke}SC=2Zj{9bHfeqA=vz{qk8_n
z6S4&X-WPCDGQjlx-VCleHvj|^@H#_9)x+~(d{w}W25$oM*$BYj@EZVp3S=ve2{=LS
zpSIMMaSK3gouGfkPu<VQkQ{0O0kq(7-hd0xBhR(}8(odX*$S43coc>$AddeR8-gL=
zuMlS6>bB(01VCn29>e$*Cw>j(QGG5241&T2H1O_z?+Y5xgt|MN20n>_Cf=}mZb%V2
z|C(AEf5D!GxOj!YhSKo&SY8y}fU3aw0F1C8pd(Ra_<~<-uR9O`7_{F_&FXa)0I-6u
zoAadp?paKHBP`i&%_^gkh`Dj3ALtQ3u}P#K_?{NPs?Pwb_Xfec=>b*(WkMRD!~j~%
zP~<zHF^cv-!-IM3j3uiLAPIv>BV~YMG<yWlUKhQ<BrW0v*Hb{6z<k31{mi4~958gc
z7`cjfL%9E^L$?=k@J4hFBiLN{|2F{j1wUv%=!;BYz8v*tnZNO;0OyT03}{A+wHe%@
zxBfNLMO1kOGJ0om0hl#I-3<L|>%YlP)(<|tzv)?Eo#H?%$9|!{biW2TgH1DlMpGBS
z{MSupyU8eXjBxSn4g2P9X2;FTyMn9SZmiwkOeU~e&_v4`(7@6K@Hh<6A$1D2PXEO{
zM{bGTJ-AJD2a+M3s|yppjPwnWam!rJ&ME4ahab68u-+@&eTltYgM){t3F^@wN|NrJ
zDv7yI2Hl2Om9>6|tQnvMhdHN7Mjf_|8Ea8JD`?P~JG>eaB$r8abGEg!Wzfps*Seir
zZ+7NN`IqA+mF&Y5IM5_2gtrw#g5w1J&|?lCXCf`1dL%&*D3jgx73Zd-hmcWH1g=yi
z{W^*e0d>u&VO;aEV!5Q2FmlNHlNYaX3Gr{wMvzg0l_BJy1YZ1a<`dqlz>-#^KSEt^
z)=mek6Ad>E1bBOlS8f>4$PWu&o_QBENJy4}X<rMbC_qhb+5c|t`9+}nF(iUKF(y_+
z4IF1cEIAy?Nm%+toHefc6*CSVj`RMXkIf#r70q+ugEZW)ZNRY^hp_RnCbYKK==Wat
zMKDtv1pt}<Qe!cE2o4q<t-#oHS6cfr5Lirze+ZJ{Ls8$C|8yy*=^1O2xSb0@bZ!UH
zbt#S^bARlOECo)<kFMrC=>)oAX#bC{w*ZPOTG~Yif;$8WPOuO>xVuY2aCdii1`-^C
zTYvz;-JQYRCAbdm?#|oi-2dJuRj+D_ni{6op4Hu}ZFTntKoMYJ;aXc+!NX0>EW~ES
zEv?KTfq>P0pPvCRjG2EcXdrtsefvzIdFITnX)JF?ID~tqG~wDvJm)JE_hTW`Cg0eY
zz4L7BAFp81AA$M6jp6m^bzPYaw+Ve|$wkqczioLr0n=|Q3yXKu4;vQHcb(@(alkmN
zlUvN?rELShMo|x0O&LQ8PZ`I_bpUBeEs1lenDBG)0k^||taiTVpEE0}@?h-b-7d->
zmAoCg1u|Cgc^vinWmbtL{9p~oZKupz=i{L{@Hj(dJOl8+Z%uGtru0b|w-I&HAm>fI
z<#wN=;`0jT7&xQ!f|zo8@l}CI9TjsNgcYpa+D!|K{VJWcn^o*-`N&c6_x;HW2*_mT
zJ~atdgQ?gxi{II}b&_~v%IwW|6WKAP)Ah#I-7hrENfZ-fZe5+20>$GqS`uXbW`4*+
za?%KCVPJwcb^gMT9YC5sBFkWuzO;^H;1vd88&t&GFR_k$Z$)!FV{EQ~!CeUZUi_~C
zAxVfAir|O==)@EMC$(%O1+j~;{EwKy(OI$Y%X4Y-D{0V$4;qTY9DqX!;=9TQ$^JAe
zVygcX;hkERr{>XsdnLjU*_8~-5|^4DoYPRw*`XD`ypX6=YOivz>-3@FKsS8+<W@I6
zS{FI66?u}7_@5qG=&1|0tqu9S>hir%Y(_1+!j6q=osSdAX(1X0`CGu@p`4eGk~p{i
z-uix-(jY0R9`Vu9a^AoG5O1GPpXfV*6Vn!`Vy_;u1^^hL?_G@ji{HvGR|du!y!~BI
z-t7lkTo3hqEG+Vst<3DkHZF0Uwd7q!`q&3x46pA$d-0~?nb91M^AeFTvsmvJ6%_RE
zr)zK$ML|-&^-jip;jXA_kSj8jGjzN!KhoesnWea<AjHROFx~jWtls4P(qI$-G~yJK
zw?3hyuR76Q++F>EuO%i<&-6Pu$xCz<sJcV<7tWexAW+QWi|YaMS}Mh$0Sbqh3LlL8
z;$kiC&WqmM(kz`fq!$B%PXmKtSfIfnCeP;sjl)CY^8je%2hbTpQ>AllVG7Sxvv?UJ
zh@!mt=3=2tJD7`5Wz>jiTB{sYC$jWQr;~8C=@<W~>nL2EefRi_hGdXqRoQO&j97iR
zL%)fwr0bKmULhznw(t4Ns83!L4FEX)i+@NT4Fr)dfyy)Vvbf*jXQ!HvT%mWJk~S~9
zQ>w+5T6eKNw5PW=HlWTDbxR0{by>X$In$J@(Dlx0*B>+^e1k;Gzw_X~`9sGm8&7_W
zZQnLJ-yvdbEu=SFW7(wOVFWC(D5F$Nb9Rb*+H4e3iF?f(_^##mfBP_j7)}(+J_c?<
z(d{TKY%xviUI#|RMpR|o!l{H7K9-M{?1T_S0Y-kEY6i?CTXHhEYRINbPG;+18yNqy
z;CNz7E$Xu3KTWF5#6Vd5|M7?ZV?A9<>Zh6kr|e|*$qFA&Rz*cbDQp8kzSKcTNKJ?{
zKiigQ`v>s;79)D*s<ENktVUBc9$wMV-pI}d$RF$Ir~o5jQLbE!9afb}XRlGBqnZ2Q
zy_Bs=19RWs$T0wE2W45<V)atsjg*BMsH)L}`h$eEm@P0Vq7<l{<rQVNadC9dKTWEa
z)gp<86cS{5PX-Rnj^#J{Uk-{h2)&%6ukK3?XlTk$^&4~$3UR<<9{Y7JkGxbu+ZStJ
zVw!6UzE4GgF>rkMZU|g+0eAf4ewJ`YV`FV!4|u`|`&|D1uNrMP{tvOPQzMvLT`saB
z#8j%7S|5o3dsp#!Sc_#S6+-IcfkRn27dY;d6@!h+<j8|Uf7W+!%M`lai0(-{>WvY$
z=kXaKzQEY-9-kz)D-+qrr>$Zs_UH?vU6Xe^e-+<TRGK;O@4zre2v*J=NpZUh$FCX8
zUH0OJ>%R`}?h)PO5c5@I-rKrexv*=W_x)@)b9DV;fdbsvoc{Sd3A_WrD4f4`I08E@
zJd*wv_a@z=r7jS-K_r3|#5$N}$hHp(<=X5t_Us@rcQ6jz&CChF40S5=LJ;RcTXuC7
zX+&>nlqhufS?Mwy$Hj5oQ~2n%%xB_qz58t{l|6Ve{gWiI{NZnQNn(VL$ZgqNd0!a|
zrUlqC_7cA=U`;kt-<hFDk6tGhZR8%4X5^KZw~PP~MK-_`R)%3j#9-~^h1oe(HTA>?
zcsL!cWuU%vfxl&Dc7`qqWnW-dvRD}yaDfen6r4=SzyJc^mw-`qAlCOt62?x}$|QkZ
zuCDG(%%f-SP~Za>mE4eH9tbDr3{b783P8SC6cmO?q7_$^_10o~gPI|HDp5bX<Kt_b
zd+`4KtL5_xI)9iDxM6*P2K6RV4NRZ}<Fgkik{lnQg9OMtZXzTbbG9xP){bBip3tLE
zxZND|!548`g;8sLrmPlYzsp`+2gh@X68dBG8%)V&lk4O#N%-Ot{~Ycdv|DyDBKq)y
z&K*4fH1Z7(;n!&C*EO~kIhhx83=m4xu9(}_Vo8X|NB`v9dchdL@W8GyN*{HgGQj+m
zE#}iyH?daPvSljg0j_+$m&h$|d)l56Gprs9z%N1Dh?7c8cIq$C<EtBTif`3@@e?A9
z;gI2rnI5-hNScmCcb9})wU<BpZRLwHZzS(7O;pY`P?@<oMKSf12f2`x>%j|vejix6
zwJ7`6pj>sIqIU=_e%Q>8vd2|p|3>TRLazzKJe(TmEM1KN>PP&npU(1N7&Ce9FmP|f
zLi104k#md`o~PZrXz^=N+h)YL5qZp3{cu=#*JWzl()0*}3k`q8B@Nq2{u!PBgQJ1n
zre<3Z4~d;SSGbK`b}9~iI^IVUHe`^du-@aI*AIoR&J;8NUOe;w@ISSQrH<@1;TFSk
zkBiE!64MIq4?~vKd|BdVWe}tBFhNbXzDIEwY6B<-fW!2FnpfoKi&FeiNBOYm89q{k
zVHKULUt=Cxf#VrjCT+<*Si7ea<ya)3pT`fhLIJ9%m-Ii~#s6<-xF!Xtn1v9LES+(%
zdAXZEu6Ir*_G)^64D70Maa2%@P$^ZbpH;&cXRhZ|lMBviZ|LtD%Fk|}8}Ita&eR+^
z=G;UQCqs=JPKYKYsf7&U;p1zp<7jM<qh}ayLwLA&*i|mhgT#K6-8U<9W#-h@P*Ky<
zBgDedR?!RoL~-2-&$GnN1N3DbT_o(a==t|n$vh4`+wtG}U!1V0`aF%l?0q}M4i5sc
zQnURUGyj}KFVK1ydYGmyFCV9mGZ3Zoh1<UGgP#9k;)QE~$voM~eSsuuUA{gC(HMh+
zujh+7#|^ZWpz?I>5~!bs3CNDi_N+VO-Lm5ci}`=~a;NJ?1tKXg;@AJ)=x-W(d)Xr;
z0nanMgj-pN`(ZU&Fhy`+D#V(cv2?b4<;Q9IS4xdi3w_0c5Ju9{vWetD{i|v7ndk;Q
zLIfVEqig0>Q0V)Z+7&gQKIJJ|15c_pwQ__2of{^^VViH!DCX>hAlB6`6aWn=h(cor
zN!ZTxV}97f`L|7}&+kDPlIeB=m1~#2JrvTMAV#98+c9hxJ~C0K+V5U<dzQK*`!Z0Z
z8znUNxm{Q2xOwHvkaE5`sI$wGy}87yixpTpRU)x*Q<*46+s;@?TK8r-cbC7?8nNn6
z*q+lO`gAugsMD-R#-J})m8{)*5`q>D#3-!l4&7|6R0Hg9p}qYJ*74Lwl^Qe9BBXm)
zxO&|W)+%nTgH_2vtTSoa*_@TKG~bm+n5g);e&3lWi@V~9V%^L$99C!``0@SGW=5$m
z7Ere|UW<*^CVmrLMbCIJZYhOiyP&-R-GVK(rJa5p67V3oNR<3?ra%P5NqL|uQHxPs
zbGvGYeRqi;s1Jj%{Z;@K(XrImdeqgsnPQ>!w1xvt6IY}iaC0eQr|4#_{L@|$oxB5t
zin_5)=n@)3h6sutA74GyG%*RB{1-oDI)yDE&v3NcFSY6h44V!Tlb5z25P-=>j7TM%
z7+3d^j7!Q`P7o&K6;Q5F8pHz{x!V2iM7^7Jvw2)z*=BdI#*R;p&(GJ6BIM<S-yRDe
z<mVOBs_TH#h&}%%_Z{PtU}>}2;F0;_hOA2N*}-w9zq!QcZ^vyGo>Yr&6%cp$ZHZXJ
z@l@OXao%s4aZ+B1OhYxUzJI76mIf}C+J&MAzBk0=QZs1gTFNG<?2!zbk7HAVaDGUP
z7d_=-p@hRNu1+i7dS`)4xKTy2t88*hZo3=X;aNF3i8YXcO1eQawqvga>$RL$#|3hX
zZ;;kA#!nUH?=U8Q@gI(=F&Ox>orjlDhHU!VZnd+===Uv$8h_DYdVdwTO%upzKL`sF
z)~V}VCPW;H^HpPH!)Z2h>7Dm468lt;D?IbIasEdqHeKNC;%#hu^I>Q9>e+I8GRy?k
zv4|I2>mHJV=j$41vH11virBfGiJ%7&Bk%Er)Jl=AYXTLGM|&8D>g3464EWC8z&uW%
zodeJsR#-sC7YqB*^T7OH!1IP$@nqjSOv065#DT|lVpuz|GW3$$XGaPWjG#7z`Qh@N
zCTNhw@F~00dn9Tz6q!VkaBs)3k?qZ&`x~{;>fXJLl7?OcJMNTCH)R2pQdwe!tJMJ9
z$|%UqDn;|Xy~t@hactS@V3)_cnn!!nn{}CsRf=jPB->iH>Y&bZ5$G$`z?O~N@UVuu
z?K?qkm;j^2K<RJz`1t9+B1dQekO&Qvqv#zo6>mJv#u2mHv}K4#6viz)>}$;>eZBUU
z69goZ{}0r8Laed!^%H1@yAeMn>6_v&0RM7?R$Ng}T>36^C>)y^r?|q#P%F+zl*RWe
z#X31T;mTC=^p+^G|2B3`jQ|lP8eCwli+8daP?u9$%J8dT=OX-bhj8p`yzt|6$BrQF
z^k=4U+6{ia(_n=~=E1of2Sd;I;OY}Qri_y*nY%miy|OOzU4Q!C0|Rt$L1I`Qw(GA_
zcZ6U^z31a4g=z6=DoaEOSnAJ_t_}_EgN!5xz4zkb?~D5?lSXt}|Eibr<<v@|nqF7e
z-VNC|rc*=kjM4RO#5DN^oKgM0ciVtRe{0%hw|~}`*QZ}!oO~h#t`jZae+*npRUOI9
zJm^gu;D34ZQfKzP*0kZ^*}N5>P%!>!qMQGArQoW)%%4#=7C<5Lk%XKeM8Y>BBJ9Uu
z_xZX2P1Ti*g6248#6@h^Zb^|T0D7R$PSfXLyw5;j@*`*=?~lVYZf*p<hd?a`#n4%w
z)5YUw(E5I3|2*c)<BsQxhTOStM1BI-Z&65Go|eqCoN1!>wl<6TDp=EjyygTm#S6-I
z!~+-c>o`krOUSkn7(UUYH@;Xr)Dl7~loMy5Gz0Zv&}Nz2(_<q7_^;UC=g4EK&xMzg
z9EEN^`fcNMrKLUB#9}`4g|UZ^^ftBlB4<+>M90kF!FR0gavhohECq;4kt$KBiCa_~
z3Ic3nrGb^z(TdMH5|(3G+3i}>;Z2K5X2ahsmd}-mG8Y5laAf(<iIxE-?&@#dp;>P`
zEMRrog#HsN`<0d}AOCv-`H@|>Mim{EhfE7HVOK+zw>_ONpAj#SE{9^kAmf}&^0({R
z`$tbM6%@H(Uk#6$TyJ~u)YgSDdG{Pk$-naN&%TP`^yZS!Ekg~r@@qQUf5QbIbX<Nj
zx4gtn%?Onra+^GSZg<?a)ka?UTCYo58s#L4)fYSM8cOfo$hC6|6OdStNk7N+*$gM5
z#mGgskvE7BdwXNxKsE@6NWO=g)@mcy7c9p?mz<K=+RqmEqBuovQV|^y_))HCmq$2}
z7ssiF>EdZDR_Mzo@6vCVJ9kYFCA}TbiBEU>s?5t)Aj?uD@U`Rh5=WUuK}xkIqwRPg
zRpc2$%9zJHxTPQoR{9F9zhSMSD$kijQe^0c<@%g`e%v|W_n_hNB30gPlqOmY6E!iU
z0h(U2DNZ<CMK78O8ZJvngDa*lHwf;P%8FBkYXj2N72?Njs0T$~_<bf-gBV&x-XI>(
z)82Bq%Mgweud+p@vNcsx>Co}YzQO+Fjgz+hx|aUZCOfoTJN>?PdMfKiEL+K70-Ykr
zOmpq0tFh|`P``9MnAVy1q`Oh*ZqBA#8tV0u@40;BbhpwZhK+)Rw8|aiAcwTl;*R`H
zWROZyQj&wIv^x8iyW?3n7;}ol&k$Nc{yN|BI$Ze%KFj#=i^ajt`u+v_BnQq6;ST?$
z|1?1Rdd<=i;rC>ztXkxAJoBafrC-NFLtTB|Zz!(kX$#NG{^r(*+}=t^x56h|OyhGx
z5u94G{vU(K@Gcaa*SfodlAL?Y%e~Rkg@onb!q(-7GjvC|IM{d@ks(xZP~x;y#e@?i
zbRK48G#)u>MpB=XU(0u@)wdqn^r(GP2D-x9T1X&aeb%?zb+pGOTRd~PkAYeI2knAm
z{S4g^gs0P=a607h_k!W^Xbd&%WXMpBb+JA;mLYqzP|-gk1!r5(UX&b|?e4XgJcLdx
zb2^{87QU&5R$8PnDLG&KNn9hmjeINX--5rJ45Ugh7hM;`zG{%MC-_4@pHYEJAiEWZ
z1kwcCtT|7`=17B*H%HoG157&Qnnuaqx2WK?OykAZp=+}c)mY)L!9$~PF{A5!x!KNo
zAlnephHAutmwWm=T+L>AN?nN$t0Gv`73*Q_LSF>Agz$vLtvC*aAKMHpKJaag<U1ck
z?@AfDZV9(v7yxI9<<VF3bsc*rm)uK8NW1-N^V^&sxSi{4-v0y@OU3v3X}&$suPOgC
zZmpfQq(I9CrZhO;WAiR_Zw}e{fa7L(AM^5!vt!gq*xsgO=O2C&BiX9v`6JZD>%1^k
z%upINhg~*sUijc^kT6G1uW6GQ{p(TmlBX-x_|u4+|EktE6Ywzp#tpx53X6AD=01w=
ziGPJq?Z~n!kuSLNPN&0|f96ls5Z0I2Pv2HX$?X(Z9CS&>KX+cpe``L9$c2d{*NyvN
zE9=3dG0^9KYa*%ZT2;!78)M((yFFr{q4kG@jAbD)$b=M%KDZ8O$a$<fttd_X(g;MV
z?jPsd26y8xPmU`dR6;!(_10G3uWf6+2XL}NU1BGlKp)Gb@?@3_O*b7*M_&hIY6jq_
z8_)VZ-Z@{at~=kYh8?PNtwTfsdrIwPx4jR+E{zulpf@Q7-&JDkFf&Ft9TsEyujdNC
zb;bC-R$J)*&WL=RQPoiMUH6;VZR+~wze(kP8QPH_Yf>_w8zw>dx_&j4{ZE)xK%gdC
z6i0E||Dmv>kRi-k`t7LijqAe~ZX=zK1;xVlr4KugZpWSe%(T$+U@Bo<4wDW+<wW_u
zx7ON=aLxP;3EaT!<=M+$@W!05ev=0|0%<uUU6Z_5haS5r2*;-~j3RHY;kW*M%7(F_
zBr#c!Cuelx)e4C{Og}o_{%p-c>tALkc-?11L55RlzneW_soO-3N7*<Xv<$Mqd3|rC
z6HS|$r2cmilsm{BPojHS;O@AKdKBcl={GaK8q_N~ZfV_OY&&shexcHDbq}BUK_cGH
zQkN$|VHK}pItQUdJkc?kA_{#Xn>Q+;&M61Qee9sCD@#w2Cee~z0{2946-IpbyNmsR
zD)ep|S?h%R5EDBbJMkRSBN)+VF|4C-4a2CL@Xk2ZDryNV+3*3z0IJV(MSm#pdnBni
ztwuDN6`a!}3+sCmiFBRQL5rDWBuGCy)m`HL7-+%)qXX`^4PF|XUb_C(JorBkJG9+S
zJ6!pbtu#LQ2;W;hj(jRG2OrFXbt+=#XH_$Vyy_YX;*ItTGkHG8$$)nlIwDt}iY_uO
zvXn}be4ik~ng;C`#0IZ@f{>Q`+s^et;n%DAYRpDH7Q%9IcaI;x?UaVsG_?QXf1ytX
zxW?u|H<}WzSg6m;i!&nOIb>OnSS`@Swdc@(<3-t^OS_gG-_}?cK$$1T{7^dHvU5b$
zb}K>Koej&0_w?ml**TymLs!gm<>29Xta?Y}TKe@<#N}&AZL~(1Z&mC187;o9rn4u*
z`LLZ8g#>_v<Nke#Wamsj*+Ug^<nkS89W_As1G+nINq0G3_HSPkzpaU-?n$U`|JS|}
z&X<1wlCfxN-u|aMFJYH|Jrk_b1PA_pDndqieT>KDn7$jxjoJwGgwH#LB;wxc4t=RJ
z{S>LKTwME*IL#$y;x={+b*kh<29)R|HWX|sixDABf(ryimI)NyPdsiK*V4EXt?W&k
z1Zj3CcqDW3QWJFvvtiUba;w$KQeAA$4bOo$*bWQV!^h^n+&E5%GIKVza~|SFtAkS>
zfn`UKF1ykHdakzIm>6)P4b1*8cW?10*};-M&(C6JX1r$~(=K>1AXm@%Hoi{=9k(aK
zZ(C47w@p^iA0GE}pg*}=`R`zE=O_KJrAX~^28UKRd%N0d=+g;{A6)?&8xzypp#~UA
zj$}w~@3t%O%KJ_A%WIU@H1{os+DJa={3r^K<uFAsbvM=N4jpuV`v>{Sahd9u@v~*u
zWxb#xWdzRm83#@c@cpCAb2e4=bD~lZ#9HxDa&=vC_~*0#W8o%%1MF#HWmdWNJXAsn
zie*=*m2<c03tnxf@dR9ijgFkm#e-!i?!tF6?Hi?++GF8X+OrJojF;S^hLK|h8D5M=
zxFC3?xiwE6$#a{Iy0pTu*Y4*=76$zeDn&5L-7>l3W%&WkVW5BU4MNfHn~?p-y!$7E
zhJPG!vg`AiF8({j`@Jyfck5v+>`#iOx2s|GKS1}2nVs<|Sv~3csdlezg7G-KphUki
ztA~u>Fz#Ll#j*rh`CLj;=`6e&ABFprR&YY7L%M#3-D}3`KV{&n{$)-Nc7DC&;CX;$
z*<o&e+;D#P6n@<C!UTp9C_gDM*(3Y+O~uQV`(036;o+Y<5(RKOgwLZK{8(Nsq;=Tc
z*Qxq80)1>sa;?wFU$=J*S#6Ntg=D{7`oHN5v{c(R_->?tdu;2C$?YYnaX;f$KMQ}q
z{Kk!7us#r(yf0cPlP;I}>WnVl(a5OXd6qoJyD4#U$0Y%D`ia60!R`_>jHfs3C)TJj
zSrqqT@#+5EB=#%)DorOlZ*qySDYidrNY~bW%%np}p-hdx@o_;6Z8ZG#xI=B?O{*)~
zfNAN9I5_L6uyu_v?srt;z~LYYYCG8~HoDtGprf5}`Mb8luD25dogob=lQIJz>08Xo
zeA+@){GhFkn5>o9{#;@K5A%hMzWs@wjM)#-p<`Z-dDh%K{}E@L?+Tf}r@|HmzOW|#
z{fZJ~D>TyFxBr|>TVt)J&=H%MRpUJ{ihNk8WSlk?_MtpzE(}?I;F%VLgsk0~j2ezU
zY@>EJ=n=TR34v*TvKOgwr$Pjb+aV-wHqgWmicS#@2B|tyAYF>YjhK=@O!_?B&Ricq
zL~5vHPA;t=RjVfM`;};W?cSVSoz(7C=51%6FER_z&`2)y#NcK<E+Br?Mqqe;A#YDS
zv62gZetTX#BVXwVeN*W$ybm^b_Qyw)I__i|4)1R5I4ap&_Ge?ei`qu1bmBw=CCafW
z2<sOyCQeRi^)~K(Z?6`7P!@j}Fy_nHt3<>2G(fex(k>2f4Z`}K__deF7Y1ahEQ3lj
z^(!!PPE{OEctEkKHA;>UL}#fz&U)&o3`cE%HB*IHt$(Z@_H(Gm=P-xu&#RXEq9|f_
zc<R6Q5DGk0upTi`Og|Eup8F$2N5xi7Ky2`RMtjHWFF`QE<8q3rfuCaPYaP9wF)puw
zYO;2N5vXVsQ`%ot+VDLYN%3Q_YDc&NAI42ZcZ)&fZr!-Qi|av>RyIOcM<P#Y7;1h+
z+`hM4nTYKIxqDQ(m{^Ah2fy1*H9C-V+y7_dBGwfMO<ed}BoeRmH}8m(&4zofk|04v
zxJ;{(dgRqH^^U1FT3qRcdKz`EJoTrVDi)kqlcSFSx$o-%%gg0n$Ms0oo3Q`m6VP_v
zEln=$rdl5T8o(taG{$Y)pjOCG!n{^rOZ5tux%x#I9@I3=9VGa?ucV>jXZU8{{xZH8
zIbx1#$}F$@cvAUhBG59$&H7wC@q!}7ZD_NXcOT>)^ZD-S=@O?lY`Jtiah?rMNS`p{
zj`;!Bfw|n!-(EiG#(-R&>pcy~=Q4L5J9mCUnj5rU#GL)s@w?deym2pOYxA##TwQml
zr5F$n^{ZW|*prj}49zkOdtS9TdApQ+>hPU<4P~JYuA|NwB==n))Uf_T`b(;Psr08)
zS6^RT83M`M)#rKP*KT_9Riu!0kM`Wr538U6GybFs^zhuc;AQ&Uj~{9S`}h0%ht|8|
z0?(xCPS|NFF}!?Gwwmc%qs6D<d61i=G;*$dL+F-sP%s8!nQ+ih{kVM#f(%(59I&O~
zb_qel>Rku}C(V!cBHd@~;$w-5_x6reMo@Ikd5?EoyO1uk+tu~>rEnSmvjxtpvz3fp
zE>@=3|7P#)Z2DWK@}QY>>haLPx91D;XO`D&N1o@)BZmQl%iB~`U-5j^=Of`4GjTuk
zELTTE=qdEAoTV?z{Y47X{Vca<z`)bLHDgTQ6`FZ^2Hwir1T&{p=)OfkU*CA5N9K2t
z-;9tm%lpE5*vZpHPG?JA>)IM5C}BZ_iheC6`?*QM7s`LV9ZHIxiZ`Eg7Gg@E(=4Gp
z$KxkM%Oj;5G8~-i1UB-*YHE4LmY~V-MPY|ZJ0%G}tcs;Su<xRa&dQjuNEAjyU;?s;
z7;k@{^^-TK`<0Z0P54_W%e+-Xz%g8Wfo-;KAN+nRf^>2shMTi3V>d4<IzL5w&(t7+
zI1+<ipA(`zv*#SLQkVy9MPusk=egFg*jJ#w<~Jh~%@49E1BeE%A&)0uryp#8E&(K^
z-`Y6@#`W4?8{olDFBr`{IPX1zUe5@QOBQAix><JxyLNF&K69$bSZ5^K+MSQ`wifJT
z+79E}-4HBG!YgA0$XKnas0GJJvzxw{I~XpGFyL;Z6G`DKYE|87g^8q#AURDewS7qq
zDWR#njkGIMM}rIdP48V&a$enw;KeEJJcj#Klbr@Xfx_xU^MAc3>I(OE|Jm8Wep-n=
zp)Y$KSY?hPA~%-ksY>&CmvT@iTwO-CPE?5(UiqldG1a;NDMgl3B?p^CsNwQ2B4I%h
z1rn^V-$N9p|G8jmpOlSCPuAPT+5J112&J;WNKo#MtDfu)iMEN#m%YeOF{GRI#N~?U
z!r%+xWA{Q$#&{W=jx1ovBF!oEhpi6>(T&SD!T!d9{zCh^>q24ak0~!#8gD<1EPq%G
zv~%k}+CQ@U-zR9ip2xhQ__&R%RKq^s1ie=BA3gjeIAdY(^w;XD5ssZ;<B&vN5l@+`
zB0!g*gz9u2RxKyPSHAVZvscc240^VgpLO8Y(0&H46V-YMqMt>`@yrG-tt~Ps^@VA+
zNNc%C9)!10{p)hmu*6hm&Kgu-?B$cVag$NLvPo6Gy^*GMy+Y}IpIWa~Az2+y_dNuE
z04KiCDYybRFKWMh=FN}FXvZawlc+^oJHH>z_7TDVMr+>Zmii|J8?x`s-U%V}aou5u
zWieIh_v6)@`s;~>x>XvebMLE<|7p-bm7M&CuZ3UH#7h$%3+Hz{TMe&JqILbaDVo6%
z8-3wR1_#tYm(A)0+v-KldP&yznxL<`HpvEAF%zA$87=qTK3O!2obQo7MzTcD_i=lc
zDR`7IRvlU-a5r5)KCeF5i!iqn>jJsVaBDW;z{i%g6U*uo6JM=T$hH$B!w&?KnHH^!
zV8QL~5(wQi8_cl~ZQArw#<8|s?D7-5UKqqjc#Mx92tT@X@CdS#8|11p1W!eAukqdG
zL+|~o9mq+Au3s&--mUkYStL6saWMU|r&tcxP-HOJC-gx1gMrdV353nxq;~(=^q&5s
z<Kvi;JwBpMUnK9%T<L$_IA4K&W$c}<{VWzVg|0#O+^mz^sF7R$_0~!)XW_otw83I|
z_YQy5;4~dY0w>=qXex@vU_F6bdfH8VP<&+8>Ei94!0lO~la1n+{crW6Z!dal5&Yg^
zYX4+3+#Kx$gM${&Cx$9-WrSX41=1sXf6dBDf`L$fKg(?G$wIpf8`UFwJ#6Ao^si!o
zX`57k{z-||CW}L;K)4NhDK=^#_7#+bvrXWAmd^k>kM9Us$5h7e`~ma(1{?V;|F}BQ
z@0SP`Z!R;}!?rc<?}C=1H2Lv8WajMylptNm%Rg60ew<0=e1nV5`$;1^WiQb~@rQy0
zX6VF{1Cfo<q?vW-gyTf2JC#!n_;x+<6xV;X?YY9lsQ)H=$2C;g$Ijba2nV9F&0}v5
z-e7n;!tA(A_g}v&T%$O=3Hj!`>;HN;p+9{@5PZahzufUU(CEMA@ye5U>=|Qg@*xEL
z(Ok{OgC}@VVKBGHtM-LzUV1!LgK5YqLbh;^!A}J`NDaMD{L6Rj!6pc^X#PB%xRK)X
z$zk!&sgf}t_C}M9`aq%muQgm%XF;6OtZt_jvviXvyLRImzuVmfrgRlg4bo_dHQgG&
z&HlmGftc0ydLDl2hihTWwF81aaWo)!>g;Hv@w@$2ca<!mxuH~>HLnHg3^uxGi>hti
z`*!8;t|H)20FVEXHP7O8M{!a5RnA7Y%TUl(y$dEb;Y?~Szioi+@o8S&XY|Kxo{mb)
z8t2Pwd%lLb2@1RzgO-*ehuYYh4R(tIlA`E|M_EsYzaNcXAZi7`Z>A2e#`d!iR&Hw9
z%4#hrdbT^2G!(t2;tZkj3*h)2Lq6&{f0p;86X0RJ4x>QoEf@EHi+RNX0duG1UBr1v
z$g+OB`v};y_8vH2v3&mwK-QvjD5f*v8->9wn*Z@W>>->F72B}IM0Vo&a{~Eh%x!N%
ztG8y*B!~g(Gj90)`6`%7%0T37jIZZ;w!PTkB)uE#ljrH;wKKMZ2dl)8qB=}n`eVIy
z-T^&NotKx0ef@)z=Ume5il!6zxL+naj436Yld%>DX}rm=^n)q1X5|kS^bZz*Xlhg>
zN1$Ez#brbmPt7y>7^&a3yJ^J4wqNmO3RBJhT6~uFwyR0Z|KNxSq%=ZVz9X8F^^2+M
z;3=Rpgq<k2){I#tBeBliwjxXSsi)LK@wLw``rY>*6518N;JRTVxeaggXD*f8@OwWk
z-@-6Z&!b>B_@P#W3wNLgRcTk3DHGlX2XbZk4-v0sNkqlhdDBn~qH9%x<(4c6<|4yq
z>4w&JDca0YQdZa(5A&#(4zdLE!NYu<D*uEv>PTa1&%ZDNs6|Mym>POXI)Z-0-r+q5
zEl#Bb5DZZ)vIJqv%jIhFSWa_Z6?=n*O<FwV@A<m0Q?S*|7<oG)j=TX{Uza0N&CJbt
zk8F1=M~&+I^-VpXEV99?;(DY6Th&d{whJCqMDXDn2p?rn0{RH*?l-ZquvDFQkb19F
zD6_*%CWoKwsm(8A(*|Kk;OxMVu`HxM+qM7yxB!R{y6*OR*1McEU@+2fswoL2t8vGa
z;F7cl@u|9lsWz0TanKM1HjrrdDUp6s42p~Dw!?r3#y)%&XPZ>Qp&yDImSiy&eZOFg
z63y`<MtdR^Vn(YdT0m1Nq*PDP8_`<f-0s*AC6)&M=#{#2aCE>~!^Cb{P}YIDcpFM}
zbgi}v*4e7vYrqs!l#X|&I+d@vfh8e9#0i(9R>u*^$FEV#MpFF35%3#t=pDEade$i<
ziUlW%<$2C&rm<<C`<|J_9VtHAD%kth-{#@=C!W7WaCz=}z;QdVmLQL@n>ZXe`NGUN
zlRP8!3KJ`Y=qVxn`B-opg?8*v)G#w{Wqg|hCe@EyL@AZC&3u^Fmz!sy>I?x$Ex-Wg
zW1a2EK5tIpWARdyDd_+{nxj%s+|bqMw7xUC8ohB~%9Hw+vfiTx$tEm!fHX)y1w@jc
zyJ#4T1IxmvrK1>)>){sCP@>1~?aQ*IW#(zI#F~_P`OlV$pc0Hu+d_}_d7h4CJCHap
z@-;VTR2dn`!BSLccc2OT9=tj=fb3E8vaV85MgE`d{^xa?^7B9WO3i5x@xQAwSF2d+
z?24lcwSc|DJ?UQs{M`RBg2?Fd745{-rDsy{^Zot4+%jL=i7{gk5$nTc|H_p0I(({O
z!VXWu72VVOpM`(;RIaZV9)my!LxhCM)cDz9jqe|@yS+Rgp9QkzunHXW8n>okjEIBe
z<7cA#NGaB6L9pbL`|<A^;G212p;4Z2K}aOB@bY4CafzOzusrec);-9^UvxQ?6B@QD
z?8LF=<9l<(x{<zfph_)7Gku)G2bXyIM8flE#-aIfV=c5d(^FQ%KEeF2ZHk`0w7Hi6
zs&S_UxSRx%*nrJ(C6$g3?l18B|IGmbj6zDWYA3ehi{9SBM|D)<Si+@RCX5h+NBj?C
zfLCYRoC8ul@em(|XtcN(ByNRvh%Y*b>!WOCTzLj%e?XJ|yPQL`Z1=$T*4)NUNbz&g
zRvbYmnjwlD?y-6E6v%BMN)T++TWU(G&r4BF=~l{3Qn8IVCs7i_a3~luvrdk(fN7lj
zWk|T3psDkBHK5L2Y~oTWh?~oZP42s;$}d|B%j=Z?*&$Zbo%VrkJMjvzqs?}lX25}o
znEww8V|9JGDLkO)GIRFZ>kt?%KkgcD$Fj5kM)cG-$hNZZh+QDWn(~QOo^I^_#l3AX
zO|j|uI)!O1u%6%Ts?4+v^^?6L@$D+b-GawEWj7K)dVRJbag+8UCGJ!Q)3CN(Y}NlI
z$$tq0OWZ&>cGy)7*bUjsRhfVGrst~xJ{u62pJ;K{X`j>2SJw@D+KH=x|J#mw1dbd-
z;<VX=fuw~@n)|zkABg{(zQAJtxugd2bWPOIs2c&E_#2`jy8sAqisk@E4A=@qeFl=Z
z=>@R*2}G3b!5-ko(Y-yjD+$H*dO-O>*N^|jsQ>(}^1_V1NAubOo(tHr_?*=y9l)gZ
z0gqqxpvpEHn)L`Yy;+sHTmmk!5Qc!ya-#!%WI_n(fmrVU(0BqR`dT7N@xi_mAPZJM
z>A!kn5I~jypJO2Sb6%ks(kH&__Mn>jdbc#V54m97=K)Tbcs~7n(TIvVGZW@Jk?%$}
z!;flDKYOYJpkDuH;f2iqo@tTzGX$*xk3a}PJ8}0)EOlGIxgR$mt0aEhgMj3&04I;4
z_AJCPbr%v>uod9u%T0zrIsjn1SkCO=B_aNMM+k~-C)=$w4gkQ>{%7%q%AZslYN<%-
zd5!EWTdzb%4GCMMQ!DsJ{BiIJmIGO2%UKfq+DtUXOy^57rny+6lA7R&+D2Y1FyF?j
z;}E%VdAoKaInNJ%*${ojH{B^N>dQb8EQ|0PS&o5EaoO)K6mslNyPO^_q37sHEv;=Q
z;ukmX-U)|Eb6}7@{_A-bH2q*jx7~Mz{Xd6>0%;}qXW(+(8Nwn!=sZumm2!aIeZXDE
z-D-g8i4+EKLT5dwO8;A&5DPhzQqBSr9%S+R{d4SuW?EWyC*j@Q>h&$YeO$G50s?}5
zTsX*U9gRMx%|L|YTiWsF<0&Whzc>Fwk%5QJ^8K6vN<H$y(Y&Vll6G=oW#Rl_!)R=3
z&8v{<GCA{;w3hr{O~1v29eGe%G-n-g@kkSJMf!j(k}!31n>2}t`6?&gW8(fK=Kprr
zx|T#*K5@2qb#-?}8Ynt3I5_ecobD;~e?Jj&yAGrS0;wPDL5&S(2rH;ibSzbK#mdwg
zWGFfY*D(a<=+V9t;AGQiJ8>}(!j`xPnpPyh+5oy+7<O5yD?8%h*RUDihIg|VqG^xL
z(eb0EzWx~h*>m=^6)520f#K@WMmpxjJV8&G>+#a>5s8XQxGUlRL0)3`0l$k?nR&)m
z)OO;}WF$5Z_NHs09)L)fB1*ToQ$-?5O98&!+aMQ)BN8BAGjk-+-Z^>(j9=01qte`-
zjLFrD2UkgWi2YIq_LiPCt+w-vF8<wjz`!gEpMlVcjF)M{!RfWv?9KSE)iOq0F*kSq
z6I<1w&R4&;9^(wd4_bPw7dnE_eak0cqK3`YmBu|2xzICSshhLuc46Vym#&!^{@Pjs
z7z*Kz?B<<jSi827HV%FtFY80Q<fIIq2S}SBlr3EvG+3<CL5}9lta~pHqGN$BuRM>Y
zdc4wg2Vb~`*vfCC<S(E6d`fouq(LV@hDi`EK%JFRkm|^ThN+lzCXEteB$hoXxQHt`
zO{u<pmEHUg@<Wpv*=0kC^|x%2tn7|+<A_(5#}B$hxs>S(RuYd8BQ5pqn-(WSQ{FD~
zr|9=$afvovX%qe;xq6i0K~!CapqSkko{dVM-p>&cjwFsNJ=dbnz)(!zZAfd!@cm_|
zsjoet9p`{D7+gikZlfOq5~_J!|7__<hBqOimT3}{*nla>PF12#6opi00wM-ELm-&1
z+TMnI#FnLu3lsh@2<X)9`s)AaCqVF}NTu-sJ`oHxpgA%!VP0{n1U0RigFbw?7ajKQ
zfL5O(Bn>OaY1-F+%`0ov{A7LfwW`e4%d4pLD3?#Kc2NKp#92S!*FGyUS?_U1P`9*{
znd#u9TU32;U@`!{DsKb}<6aJLx0vfij#&Nv?Kx6i;?bOJV-s@)gHhj7lb2^=x@`ga
ztBM~ffdZPeEQuz07~bAq4tys(%2IS@>kk7eC|JV?ea_EcHNTPpgWJ?~P(dh?aU=Dr
z+Dj)_ysRxh1fHj3s0ztEAbJ;^jTQRC7mtlT&}<umiHCRXe^_jS%obKyDo9s-5Kga~
z{@fz2$>S8)xy<XQ8EeK_I)UAteYdem=y9{71#h=!dKaEYXCM#lv-Rj|^*5p&SyYoA
zM<D}SEhFgoDTztR8f!o`K*#G{toXp!)n+$AFl}+ML*8d^XWzW+{JyP=uit(ZbV$%A
zxScHdJUsIs*)P_#a&WQHp?xP6e7GN->0P<re)QmFto3=@aB*mR1SG<)y&|uywQ{dN
zmsh65`pD*x2pG=fH#LiDasObgXCm(;`<Y;)Ti4Uv*>}+tcihUu)wOtrD0-_^|7^jr
zV|izjXCHuJV*MpUeQ?yaapgTiUozvhwDG!z_ykjGLo7hn2zDp>hIDruWT3aKq_2gC
z29J#B;cb84I>l-xtL5cp*K-(QXIfR6Q&P~B_bcaM=;C{+mu!WS>*<Qm&gLQ_@!8-G
zL#0y5GQ>Tk+o)R8R(BF8g|gp$r4L=M1>_Osun_R=#Yg4RN_B=&8K5l}EyC-$gbk2v
zo!rrP(O36vF9{yH`UJwI4i(l+^GTAFy1!9l#$wXS`aL~^j6S@okqmgfthEpE+gGON
zFZ$U%z3T#H7aav^Aa{=Mu8uU&yj(tq_;D-W5P9rCrZm^~FIx(urWYTjyTh_p?(#;C
z5MXgXq9*rcr)IDCaZ8lZeL#_NaZz?9Sxi|3Jg+QLMJbnbLzx-S`W5fLpH%K*VVY$%
z%Qsxhu5LFUYrQ0>m6H=)*P1R^7#T`S_&je8g)1t?VLI14F~4TLQt27hPEDeMy8iAx
z2Y0MDA%R9mGlhNkN1U~OESnTp2yHulQ2zN@O$~9?{_6go7*zGQBek-;w3wHT^X4`u
zyRpWY9F&;o%EY*W6TVGDv-<vhB?12F2eSTad{a~`G`I?Vo-5|oIJxp-2g}oDFSil5
z?<Q9mTblsXAD~sFqlL{iXM9#Fr0xD}6X1IboNmU~c(8YV)Sw$FwPw!pVZcREo1L5I
z<ixyQYZ<X4!rukP*xvW~dwe*CAi9jlUk(Ed^|Y;Ptw}TgAaJUK(X1fkSU6y<k5f@r
z?x1ROS)s>AjuE<zvQyE92n&8YjEH(;s<OEgdWtCTxZ?t8s46eDJ$2rU>`5Abk(_R8
ztVl^zOH9%jQ;3?M;aq8o_&9PxfvPCH!H{^k`LBk7U|fPSZaA%_C1f{SlbQhwNi$gy
zjR7_w;&6#!Z$c(7zF|B={YqJUI(q0LE>vzTE-LwUJbcP1(kr|m)h{$UHANBQiQd))
zGa5*S{l|-@Sab?3uzLBYYb8p^qPhTWf$mnV5;emIF)+|AL*38CCYnWfCRG>n)T}0M
z{-8^Wp`>0aJ!OkbI=C#{lP)xxyhW_KyIkYLRMh=F7Fq7PYTFw|9U&NtWDhAm?az2P
zd^Y4MN~E`ETBSAx{5G)@sc0Yw0ko#6`wG?}4{UblvY^Aef$B2A(qKbe+@@N7PkD$p
zZBr>i(%oamqO|oG2wh34kfBjUaKW8iH|uotw&g_vu{H7Y_H~VgyXE_PmE%X1<!xO_
zNvSf_@hKWi3g2NsiuzH|GuLJX5G%W1d+t>*pf=T2k5Lf>BO@EHu8v>~?=rLQo^mNQ
zW9Dg-b}#JG?b2fGL7nkdoku#wWqcfbkIH5{KdP(emEA>hi{~uqzh%4z_BurcfjTXl
zrq^y^!l^6s@@#xJIk6d77*6!{$&%$}X-&w1aRucvd*f{??@d}=#WYmQ#;3nVW29)P
zY0PtBQA9pA9}HFBC(Nd`)<l$S{NR7idcq`yINcai<4kQ^rF*!_<gt~Sc~w<PryEQz
z&Gkh{AjbUplb)eHGhuawdPJ0N%GT^P#KX2SA;|+ODk>>1D#^FBcBk)gsHLnnm6lGS
z{dVNcgYe|jM#c@YtXq2Q$8Xj(Vk0V`l@jkV{4QIp$rv}Z?eze!!IFs=Nj-K#>b2w>
z>gQ(b8Jp6pF*l<&KZp4InmTkrlkjmXjpwCWmQxaGY%*>zw`i1}nJFvtgN^0d$E0DC
zpF00$YI2M6Mz@^CCca*EKu#C^J&j$Pn#)b>&4-(cSW3$(N-FX#`CfYxWf%|k*YcH0
z7)M5O#r=TsHGYcEimS|f`Lz!H_3ayu$`kVWmn{Y6rHi`I1>d7bnyiWCm8EP3=3DPp
zpzw?<GL@Wcteh05Sb-XcHzRtedc%=URa2LZj{^uzAp@9X&B|)3x|^;%k3RMYfj>BJ
zv3}fuV{V@O`XvQHR(3~pjLdl9eIP?lmKcnicOq6^W_sc-Jh()JhXC#fyM1qsZAn>i
z1`+vAl0?#M{YZZ=cU?|PLrzHu*5t(4<rKG=jEaqqk!(10FP(@y@+DEbll*S@a7iXe
z=Xch|Csj9e#h125qI8d@)r!j!qGDApeomu$#(H;G`QG@&)Z$-!*kW-7$+w&FY#mT;
zULj+Bwu?Z2Yva1&`V6zhgCXQsCTe9X7n@M2^s}l;MixTyoi2(b23W8G@Jo4c*;vvk
zfl9ALb=B2&_uv%g|CD1M3~l~%7V7+%Bx}a@aB`HAduJsj?qt=>)zN8QKe&yOW}Zl2
zzkE_sQqE0?4&#65uqsIdz>omLPYIF}oAsiLFPzfdc(>ewl=AA!<uz0{t15rRph5oJ
zUUPzCFVgavCTC~4M{px(wkW~Sv-n@1o|RZxXP_f7_$kxb42;pjP;33<p=}g(IM9Zp
zCT+q9E=mWqa(u)>k}?~YZaniPw2*cnO=nq4z0Q>FR}|X$z?T<{Pv3MVSLV7VM>o3#
zDn;cD#OdO}Q;Yi=nUNBfX$S$1Jgz%pVp9b(mMui-ea08ZGra;V5Q@C!{PL<ij`gcC
z1x3bGG|+bE)cXr)k+!>Q+Aq}Z_XpxULel~~KxNg&ZOe)f_W%qG<$L)Z<%gZu$miV1
z<UTe%NzqLEsa7Q|Rlnvl02_IeXMD#g`smZJ8=g8O35ybM1Q+LFr(NFHJfh2(ZeDGl
zgU_K;BZui@kn(V1dq8DvyN#uJnB3JW-F%XKpK`Or_W}kNPm)}h++8(x&?jtp2yx4m
znl@y4jeYItvV~3z=(Wb%OR3<o6KC&nzoVD@u6LtH^N`Olo|K*X5#p1Cm7{W`U823M
z+&pF7#J)H%!0+nSk{p2_tWa&K1s9znVS4i3NL!xb!}()d5T!3kacMh*x?^GM3S$C2
zU1N;I5k3FrW(WPpUw>Eds39kb<!YtMkt)-$A>IAgiPTYj;;Fo}6<_Y4OsXos(jqjp
z=YThEL6@&hVDCrW=WG&gJd_7@b#v>ZXcgS_-zQa<hb7|XF4wn`l^qyC^h~R2dVZGR
zQ)_A*XC5?=<HJ9oJmyg2-ru3^fuDWa!X#WQ+{Y|>YuB7vO^uY1*_t36*Tp48#l7=@
zm60W;zwxU7=<NvbOEE#mw_c6Q$~ry@`Sk3BPiP@)&p!(yBH9=jT*xZ%STqLl!wOUq
zmCHBYhD=dFj?E;1h(71i<nLfW^z!FsIP0$0THUXf`r>O)?7&9PI~+YSX3iTdtU*da
zl&g@t3593_p*wsSWesSZb*<vJXx@`senIYJ1%zUSxuq%IFMO^q!(Jg~#OceRzg0zb
zEe%Fh9ecMoBP}_UsfM)z{7VqMuX}y$4oocROMD(u3DPZhqhG)2wYf&;6tz6kf(*5s
z6#Z0qa0tno-ifrhpSkdnq)fEcnsT_FElvRbAY(<jLyOnWrjoydi9B(3(KTnRHi!01
zYp%&#+<QR%JNX^wzLWg!_3)s6bs0aUq^gbZ-AKMvmA1qE;kkFg@+ummS_T%x)|`{=
zHE_NCyRS8mfxe>HZvU*!@9A;JSI<b&jR`a}%e|<f&XVQBkAs||rf#8|kf~bZGV$YQ
zcXy%!Vgx08OHR&aeD*6pIIFTapOmM``}O#E##3kDYqi9%(`2&?bbH}^_R6A_Y-01d
z%*-p?{6n}zKjPUxj~KH)H}tVvyye-*J+W*<laXlMTPzrgCEpCLj)1p9Wvlyo<LcjL
zT7a1;!<RQrVQFO-m?S_6K3xIwyg1>ixkC`Aho45@p=<RF%LN3x<|D%lR%tK+@e#v#
zrG002(x0mP@&R@V&R3#cuP`%}&fwv_6ETrbS77b{$Tn!`Z=z!Jtk6g9p-zn-E>Vq!
zlqL)~F#lTmcf0t3`Z|X>E)KWj6?V4C`FWSxf(p@W)%-JMHMb1i>{joM<NZkyV3Q$6
z_gw~R(~~|&OM@Z?D)Q;7^zX#@JWkx2Gc+c$v}Pt|xf_Ir#U*GH8r@F*ZCf#v*m#@?
zD<EZCYBR<ok)r5+O%W^JUPcLKlVsR)=fjgTWBmXqeG(pTG0M2#DGFwIYPBj`2Mz=N
zDetn^0Xptl6!N!t$mU=Envd(w0Zfwn!HSN&l(?UZd_N~)rIvDWS*}kb*#2=TxOPLS
zs;-sIjC>|dAR_1dxN3?~Yy%m(cg06KrJz>c&{>_PwaUuJF<I~9VCT2hJE&yha@4!8
zv@1%d!Ev_#;qa`@>E@>@y@Rb4V!$sC9wxht1d|?MjvE~#y?O~J;e4Kf>)gxmh$%|7
z1idahH~ZqhwZ+z4@d_o{3{&gFM+Yd$;ZeDbb=>eyD*&UEpx5CGHubD3E(eYm2qstz
z+do`_*344soVb&3>#7S#C;~ZWU3MCvuAB#yq`Pz36a@eM4_T;Og{h?!W4tHqX_I!>
zj#J4tJ@~dFnL&>%WzwVPz=>{0E};)=gR;;=*u0L&45$kGt&uYA$E_J+S7D7D^zLlM
z+rrz)`r8#*swRR+%Mpase(z`=%BrmhA@abc$bZOZ3x6(8cOYWypG#AR%~RE(PZ@-^
zJ`{9Wug?$m)|~dA{z&~%+h(DaW>;yq$Mcmo?!<15-|ml)%M*b8QN~yyH)kW#PA?3k
z0V!3Tz_PMnCuzOVFue3KdC;WRGBU~C_zC+K>K5=gSqU6u2CE9&_DPS8InQs>cKq2z
z?Zx262~Hk%SHErZmU*caf4Kh?>soV@wE{KLf+u_=sL#S{e&Uw>*#2~P<*Ps(gW@%n
zEp9;1uu7wWo2+px?0h}{L#eF|x}AlE=0!kY-_X!5U0R-z+6DrFJ9<os4i6uj<kXns
zEZt9@N2e#A@p@#~?fuPfbHu*SOg;RZnoPGx%`s@wSDKuhJP!&>Izma$@;h}PCeGR=
zXCpd0UbqlSxBGYI(Xu+ioKl>>!<$=8P^mna9ALiRzf1buQ8P>rVkN{!jf{98m%plm
zPc~Cw#X4?wTHJAce0klW$)){PJI?jFrSfh!eh3RA6g|@0Et87`<H5Jxk!RZpBG&b{
zqNw+8mX2QaL+e`j)CM5fAUdYX-yewG%PKqtGqYdUT=81K_SVk6)FjAEhkL5l=vX-n
zjQU)uj3WgBP+=}MO9Q=)tb?1TPg0@Br3}u&Kh1w1gijf=RuyHrK>iTf!6<$S!cwPp
z<~yEe$wFNJH=p;q+vy~fHF4sMzaK%?MXav({UTzPC|n|0F|v<l3M6eMxpUr`5dgI?
zsJ^{hF_oCw;uPd;uw_Gd_anY0BD~rtW%~5SQz{fuZiE38U{0sbh$2myEB=D;;@i*p
z8BY9T%5+x^WfGs;`WFs%$GwKJ7Lss@hzNOU>BqpX0Iwm_`roLo!N%d#I2bykBd-D9
zgoPP!<byPJenAjH%!SictY>##H?`Bx{1uQ;q-+^rlD3&5=^G2#$EaMT(iDZrE)hec
z|BJ7;fU3G{x4t(aAl=<5jYvs%x1=-*NO!k%HwcJGOGtM&0s<o4-Q6wU!uxr?^FHT2
z=N)6~U<_jCf30g>bI#x86AU>Hjtk6|42HjlTAKe!Js7T~0h=mU3!j`UkE1>T$<43z
z(I78;L0^ndMsj-7jM}$5|MR_yJ%KMR!T#Qb2Y>WL621Stl{N0>);vqWkg?0OCa9B9
z?{-1gpvP3bXnaShR+~A%Ti}nMuk*yFOA~g**3TjN>t_8b_kJS-l_Cz=y!fotus9>%
z_PX~R`~yO#SfU_o{CGgr1><U?--3-A6fQR?QSt&Ck($i1EfhzJ3Y*fNd>K!W5aC)o
z4j+OG_VNtx;<hUdYrU@feGZ9Ngw}#WsTiwgo@*Jl>@2v+iSL`Ee{qPtLY5dsI&<uL
zaCJM1Nqk!E8du|K5=P(ap2K@#y`$QxI2vB?thwRk7qSYqqVtN=Qq|WM5K5U5?QAt}
zaaaL35j-_Q1vYd$USjuIXxcX{bLZWkyq$aYPLMB`SeVO}d49Nsh>cZ;;yk<mqcg?g
zu3H*u`J0t@&u3#VEse3*GRX3$T>f6l$Q$gMqhA#yBnv00D?i8Ur}k>!CX+BSGUNeZ
z2nx#l$(`3F&ffjGlfC&3FW%urFCD)$8mfq%YSyEPJijn3;<Na)&W^_)%&4$1&=1hp
z0X`U1rUWW4utU=mp#6l<(JPF7V3-)ecVAjVqm%!MHTWsbgL+GQ*zA55b#fCnxjUJa
zDv~Fk7iS4^6A<m>9w$0RRY1G@xF``})X}W`RtvFRfv7-gGZ-|MCOL{VKJY+ubg^-W
zjh#o@=euU7z(gB#{W^~{N;Y^CZ@_Mrre{Cf>~r*MU)kJ;o<cdzz@i)<?<dlqSlbUS
z(_3e~9xw<Lh+(VJeHg*Uu!T&*Do*A;=H@=yg|+W{Opt=bAj<iS2kD1b@DGy3_U<MP
zJY}Jj92DZ+p~N<Ksf$(Z_BL&F*r=XfHgzLOp#nW?%CR4iR^N0we>5o(WyZUp*#H3(
zP2JMGv#rPG?*|V}F20gX8Xo+Nre{BdAJM#81L0SG{tVjP?c$n?Tqxa|(rvlDy1Vo_
zIo}cbYCgH6+vs&-`%y%x_n>KE(Ddwsk&&G5Qp8S7+EC7v?Y*VvT}Wf2ATDZ%sp)W3
zbZfUzb^WxCf$ywgr0h9Luzpg}xM6*OCjEOkbVS%S!sUATM08n(q<)-moOBvYRCwq=
z!JDQ0);>JMMp`ZlYL|v=i75pOql-gOQWyi7UI~a0hoH*r%EsnKT0(RRj;t3!syoCH
zJ{d4RzV}jZSD1E}N3pQ8UPtG=2+#izBunyWO^1n^Zp@8!@*7z;X?DX2!H3j|L7ic+
z(%ix;*K@>Q`30L0UruJmrN;uj<!|x#9W#X|GxXcDRc*N?#wtQr(kSuaMTB*Oc|)wQ
zorU8T4Z0Y}K|H9dV`%!SUnXxD1i$;G;GVSwDn-ZC*1D1jJtPhplM<04!@=xWsxB^A
z=vSttME3R^F5IcA^$E76;MGNRV^)Yetgo+CSh8)LdE5(<NsK*fqzvgQWn}mw=YrN>
z?+ICU;d_Tig2#w!GH=Fjn_FBmrXWcn^UR!;fxhNb$|(|}fWA^-1jKJ-Z-a^ibo^RK
z<Fr11x7{iz0CQxCk>M6>Qp%5IjqJlpzkRy;O+{?aOJW=r7-4r37&NaJev`-zv1?km
z-+u;~w@J}r>d$3B0mT<pk}TCqC_tm)bN!j!zH8Jg(Gq{fP|$^u>B^UJ>E(ZaFiJ>4
zjMw%H9a>IKGKqGizP`PjGCZ5I0+F6QbsmckT|Y)Atz<2se?wFuM2%r;7ZJtP=4i(E
z$4>d1nhRGOJtb1-kHfChXVtTjz*H(yHo8eB=mXvq`RJJG`_^+#?NV)q0%2wH=E-B-
zCcELIE3A)Zp(wF8flAVzTf?b^_K&kcu?U5>R$w)qaa=AR+)*y%1EV!QsrJzOjDY@M
zXI88{?Vwx8tMR3=>YSV`_mKX2HbLIct+Z<rbePY}9+Joi>ai4yQMNAJg5eM4BT<eP
zUB8u7TG;#GLgvG&ViRy8B#fWip@%NuHGGa{&|8=lXgIv~vO|of1}*;eCMbF!(C|iI
z2Z9MT{kb*d-%_(<8Ri93SeM`7V~C9!v2+UQQ6w}qt4sv<ZN<x2=6p$m<ypqY3>w^u
zoRX(!WpMS-vj}Qz%%#PQ#{VAN-y@TC6x_8DYDuzhBjx`VNf;qEp-FKxFxn0yEgL_4
zlyzvUxEd5&n@)2fTaphxOJ2XzFxr-i6X`8wEi7a$vCMElNn518WicPnbyxxHueyR$
z#Z&qy5}nVL-iV5>7><aeJ?4s8!&}H%Mrs6zQ@cAHVV!&noI1LI;}>(Jf}cZ$?dmY^
zI?pvqqiz-*+skd21eX0&cIu)va{T3Kh+@IY?u0J{5=K3;r6c3}v4{OKfXs`Rrf%aj
zsV(n?26g;%F$%NcdzIV4k<7=cL{6cbempFpqwO;0?J^l^cb_(~Pm7h!{4c!5{QZy6
zkiE!QRemI!_P_sygEN>^M3dv6xda`1cGL_7xfuG6EhCLjxx&UOvXx-!J`?mdhn~K;
z-s1$6egjiD6WleqRzk~XQ8CEFv~+cMUiuZ{og?}$M0>c?>)Uo_-PZ;r>IP*-&kO0k
zJoED#Ve}%*`nK&w?*g-O<=%rCRxY15xDN!mnVp7Ia|M0<tziMwriE5x1p}Ch{m9GG
z1y`G;<+8-+3H2~FxEQS-LF-l);-_|=$b8H@i^%N4Ks=l!zI$6*BbLb<!3wPbGUW>K
z)vKH9*VZFZjL3uF99vuMdO2So-%9&u5}YQo3}frW?RobpHRNA(7RdK)O`MSV1o*cH
z)h$VrvM;;5b~zMSKJ!3<dvG|7F(+_U`dWt_`E%bhbp1#8#P8Y3hQ}ZFWqo|VJozTa
zFjhu9EG5XA4=2=h&Z46ib*AEzus2WQD6;6tfH~&X$!kXsH%iRs5#p=Y&ndi_poHJI
z7-Xisos&oMc(_M~><hT5l{>SzuU~g#+OOVIC3jNkURQlBpMI|;t#*za0>u+EmpA!A
z(+bz8g;$9&l#O>o)}+~sw$EQOhm)0#Uv@8DC!el2TvnD&QYtwG+4GXjNFv*ioP66Z
zti4ztybSF6QuPSj^GkfZ(*=wShqE<T`#NR$W&LhLr=Bg8D;E+>iY>pNu{BmeP4cYN
z)w+U&_{>gW&0SSVwuMPgZ@4%k*WUE8u-?0>+OKRIKgom+utc>a*RSpviuZmW*;#1}
z0v#upUE9)AQ(a-<=epZK+RRSad4%GZTEl}fukfG*X=)qmqejO&UNXCvOh1d&cYD?o
zo<F90ux%HZ)A}S(B};qhv*N8#68EuLy}*|DZF270>e7&)$>|f%=Ysfkttk&AB1?o&
z8nwz6YZP+ML=xlKd+HJ9P41Q->kPlK(9@@TR1N7XOr$pte=a3T46&nD0zW2y&z}i-
zI%x2_xhtK0VT4KPiu+Mf`tD6Iy%CO9m^9{9dTe-)ej6IXzRjZZ;jnv3pTwJS$B;#s
zcKh~=$g4|*3!E*SBg>h)(+N#T{g;z3(`nwU2HrDx$0+h>@+^vo$m(HJM@gYH_Dd*X
z(($Vu7zoeE=^g0^wU?)u=7tCxOeZ;r5a9Hi{&=XO!EjrDO4I%HQ*#Ua#j4dxor7dI
zK^fHt>@4`cV9+U&!m70m9{^{X)yJAT8iI)0I^P$6er?u%e%V+77bmTZzfe!))rx}}
z(MCB(l3<ket)5B9z)YVD%1@eUb1YXonVE%NDOuxn5<`+S6X*a`hSw)@pd%dPorZrh
z6JcA%lgqo888NL%OjK9q7^0i!I@*Rn(tC8(^#+Bqz`jj`6_{lnp6woGB4NVG`k@*)
z8BB1z99nCIr&=rx2H@?d57-+%YBtK|IarHy?1rmrsx_NE8i|I2+HuD&yeIpd^JA5i
zc&RdOQsS{AT}J5-^SZ8_q)b%{cBae4=E)_;s<y4o3AwFs*@1e5EiJtb$27m#g*()u
zu~R84Tt|0xPG4b0MoTLVB*?yym#)rNq-Ozgy%K+X7`>yE0i#c6WXT2>7pG}Kk)_i_
z1>H`upe48Db4>KXqOUZqCU#O{A?GY8OAQ);jOfIZvM~6A5L~g+SBDR`GpXsCEQ^gE
z_9*Jl6kh%2I3oekEtz8X)VdR_ZiSK!b<T>fVxBVE&+t|>G_8{+obQ>*mi*oarGYMt
zGAu+^meJu2nV)E(qQ+o^fIc_m+c;qjt>wU%u?mI+MovOz2pbcTkeJ}dK+&xHWG-v}
z=op*CWc9bqgAg`>*NdRvn%R|Pp&+9j<YN<@PtYJrfC#4$ffU7T?R8&W*+|=Ie**PY
z)qI`3!QP$%BaXU|4!(w$b@XN<Nh5-D%{jNQrlqxl1~ZH)Ju(hKYE1q%?dKFzaYJs&
zM<eY;8?o=BtK1KVa5BAEg67so#@a6BWptzqv9c!F)o*~D#aVOlW-aIBnmUY^n_5Mi
zsAULf7WO<ERB_U`B&dVo(L$HlgW=7jF%!*9xM5>c@0+)+&Kb!Nt|#1Q?>~0dn@7lf
zRhDb${a!kIO~eqc3>HwX;#BnG`h}ZDQT?(aX_pf>o<1`T;C`EPrAoU)SIR~R5=9zB
zvUbh@Sk2tpYA)!{?mhAd1XD5298RMgVhAdXoH!CmuYw7Jjj-9(Uto{3vQ|$yA8Wtl
zG~pz+8)O`8&d<p&nSB4s-AkXvLvjVy2W#}k>kGS5@i;VkvMFOk(a&PjVB;5}o)3bM
zZ}f!}fsokRv`Z3o<~Y0V4=){v``G0@74D*oChd5vszG}7-G|<0i&Cbdb$Bmr5qC2^
zx;}f;JBOgscoXgDwd#A%xKDV&?XFb$W?`mR$8<6nj0}UU&Tjj}eKQM}r=1R>2om3N
zNTk+PB?@cTKlEXQXIm+zcWt0oQIb=mpAJ&9v!rRpm#$5JJ%U?W>_v=Lzk~j1puo7Z
z3xRmg0+SN-mr0Cukq#gvMSqEWbl=;}Gh_qX3<1VodD&^(N0#9cm!sETN7r95z0+14
z0INvASOQi^bfyDe2BXF+-?a}_X~h=1mt=w>2%sNkT!;<PMGaZn6Y#n1A6@aMS<5z3
zX?y&2V#fm;2-<wmemnhPK!TJ~d@A_$P@B9>Xg2<Q;!Z}oeqbpGNO@T{TLLZ#AVk7J
z|B((PBHC5DaaytaR<`A#GgYe0_9J|H)E}y>Z|%%IB76{)RDb~SnOIirgjKZNN+M@x
z6!Q6k&C$I2o272{NcVmqF7T@g4FLEAVieuyOZD)4Y*}aDqoLA_JK4d3=UFA28}(4K
zpZ`9jQeY{t*X`cAIKP;O^{ZIv0H;TvOiiXF#YkimU6|)IaVj~?JWlsc<l6=GjlM&K
z6+qN!ayj_^tq3QACOGJI%p49f?1wZP3u`)IU~O=6Yp=9=>v_dq*-J|K+L&W|k1(x=
zy-+mEVOkUJ&Vya>dv&%dHKtNjOs>$nmfni*7B)NQ>&e9i$Hx_{KuXd&OJgg12%M*_
z>mguHXo$Q#@0_>#!bKKuQOT5~u150u#;twt6#)wS%<V^}JlTcclRj^hL!De4jHRUN
zrVijBXTN_FR^9&jlFrBL8r(^dY?O@bk*a(1Big_93z2n3Q|Ai$U^p(`=CyK9yuAub
z3K@?BKW3OX<-D>%%*Y-yeesL3Z;kE;zo(DeqlYs>Vlp@DLr3<Awp&Qr`b%wXNXSSi
zU~w;QqcfTqi;5OlQj|g4cW^L2cvB-hOQJ+eh`UQuMW!tp^vr>ip{Y)|kF7*R2oDi%
zY^r3MX=kbgC*9e{Ww(6=%ij<}`MLjFpDpivk`qVQ^S129{N~Ep0~b;r%oddf_X}fd
zv4oK=xz{Rc6XU7K5m0R-xX5Z#oK8oJedYW6=i(OA_Rc|MDl2xMgz|EiR$v4Cf#&WV
z5_8u~szJRvXr5Qn?=}kM7v;0zX{&F&H&1{V^dZfq=`+$<)y$XIc3T=ikEPj2LKb5s
zi0bWm2KhuxV6nHTr>A*zb^Fuwjq3eX7I7v44zXyI<n3*>iBq%y+rrcW7!M&3BSndk
zx#a114F^x$*OBcm!V;G`?aq$*T#BdEY`=EusPIKe2}5D4+g9hYlY#46Y2R8IVMG5B
zj$D<qiSw4{FqGXJq=b-JG?@1BRW(^=t(=Ma92a<nQDY5$>rY&BL&SXwL}rQyygO*u
z`!)r0TX4&?cyyPw`+UioKYs0hHfKRcR%BA#x1Mq3Z#3n?M|?|?+>m#Zus|0OM-H{S
z`2$5X)MSF!<TLMt_ir*}2jV)z$v(NB{BsyQM>>p`*<*Z4Fc5_|petZuPlzy&-{St&
z*+5SwLybCBFU{Fg&!()n<m>(U@S6@hHf+>X&7Tl9%g+ZE+eNI!LQ}4SEvL+W<-p;-
zW;xa2UT$AKkSs>z;V-KmU10d$vx?$K2jX_0y5)QPy{zr-<|kx6MCjr*#O*98vzgD9
z0apfE#J6`0S3*Ttnz|vJuB%cvaE%$WGUFq#Ec7?hVN1N>D69K<Ey*#I+Z?#&XEI~O
z8kQm=<4YBsAMkO1{+zQ=2jSUDM@9{q@1{HC`VaRbj9)CVDAUm}c^J|U3eRWB=M@x~
zVKDxF%g|{?C<yz{&4Zsm3wZr(UyBPH@g%3ZC|{8&IWh(nN*Lf|3Tqx_^Qs#5^(7~#
zyFvm(90QL(yY25pm@Od(i4wzmq7tX2r>@Es=l`m)T$(=qT3!OTuCWn<&ak1@RcXaT
z9G#oj)HkA-W%!~mM_c<19x`lX1pOEcC1%8fpaILuaN>BFlzVLXQ=2W{KuRll$mNhG
zP#L>rGcQo+s|+h^SqT^c-xc7!gJ#kk4fbr*kf2oA9ZPooD$=60CKNas7P|X-qOM?;
zTZrBMcmkl{p1}i#PHtqKyep45H6{(;LVlS{<F=KD^xxmEl)+9YYXHVH*;X71<R*=n
zg|m}}1`LPmStN+vUeMID=VZ^ZP_-;mt-z{~9{|as=f!@WC#5QmOoZ@kZ0n$TlVYtH
z*6ev2B#;VYWzRykXu@GAqo0qd3r-BG0~Jc)MVcvee`!B*mn7wi9W|!wgW>jcns_`s
zMuinQzVwU)1{G@HJ^6ld{oJ$u>(oFJY`$}3BIF?QI3;Kf2^DM-#Ak1^@m<RXWwc4J
z58pxT%pW6OqsB|k2Ed5K!Xq55!>3lYv;U-Y_!Q@`b48|0jXA(hx3csC^Lg$9TE{F1
z!2h_G>{#cPHK@A8jXjTCCGL|XA9CgLjyhg^(FdkiARK9X>)YDP0Nfa8tvut^lZ>d5
zzNGqcM@qSuDd5$b{rl7;L4+YmhPtvof-V<P0GEq!A(W*12O*Ww8?ypf(z-cQZAG$A
zP;IPzbF~K?cP(<28PZcc`owiEU%fJ5(*7v-?n&Q{v0En$)<3#=t$g|8Q*}7?D&=V5
zZHiU29GPwEp<R9Tm=7q4#9VX4D6d|r<~L<Hd+cWsW)j1v1JiVrYxg-)I|d6rYA-`o
zx1+uvIs$CKbJpjAv6LS|D6_QE?b@F^BL>DwQxi|oBdo%VeiCNGmOlA{U=JJ)o&L%_
zkSsgpua<t(gy^Ldu+SaC^8r+U+yk<N`QgM>U%9R(nXnhqU5|9y2gVA&Ais_jhFsVC
z!j(m79gZwq+wk)vqCQ1VfNff@#eqJp)Y8i6!>o+~31R#00$Su8cNsXHV&kO1-7jYS
z(XZok^jlkD%4PUzC0dI}TK5W5q>qDoBfA{GSLFm9U<C8i=z+a8cAA)vwq4p>?4CX_
zV7%b06{r6|OFY1}Ui#<mYe=U({e?*OC`w9S>Mtj|k7<Rv&A2ipBnjHo#*CkTAtwfW
zDxuV%pcxI;8cGB-8e{MHZ@EMd`xT9~qoI-|xVHRU37a(-M_AL%N0PteyBHXr{OAsk
zY%IHD>`3Tt=!mFCAJQaHKh6tHmZM0LYD<Q|m1B|eJiXQvtkkSi($@W7EkmWaL6qcH
z0n(RBf?J+Gb@@elE|XK$E|53+^Q{rdfn@E*TW3{Z;*DEtdiQ^rtY<b?qMQySJsz<A
zAyhRA>`Vz?I%zDqv%{Exh5wr(g>|Zl1{pJByjJ|aoIe5#CK*Q-V5YT5I`FACQAE;H
zTXMTiNLIQ8AXF1ks{<$dl#GlXG=eiR{a_$^(EHzi-w%tmN=h{sit_J4j{oJ<Z~bHk
zffxU(@Z%SpNWP>6(drDAt^*&20z{;QVw5&^GTQz9X+?Y>yp-zq*lXlWVGBNt^H7rx
zbdi6jRxgFKnYXc|cgdt*(5lXUq#=_DtGPiyCDVcWF&*t=%JSzXOxYk|(*+BK-2P)O
zIm_ZJbGi8Kitkv<2tlLL&u5005v2ZcTgTq1&?e7?0?+@b&6B4aPy;&bWoA+0XK_JH
z`b1i!^gj|Lhpj{e&cq-K;D=lk)or$9ffy~#6KbINo+yBd_+Rez<v(tA-ARNM?oDh#
zR4pVis0ef9y79R#Ooy?h3y`N^MJ+|vCi=Ak^*JH5lxjzO?g#E{BlPIp+*!MiTJoYD
zag~u9oz!(>)kGf=RKouTF)*$DerBS_?+wJ~I-7%h#XkKTzWmuxpG)|oj*1nC6#2H#
zawQh5{~eBIH0(#4efWR*=o`pLiBr9~>p_lz;wOsC@Be`s@?VJ&)alQ_+rGy+>9VxU
zGyRd2IIetYtG$d4dTwlMsl(`@Tvw5pgE>yR0wi%}L_;MogH0;PY6XzHWb;npeY*1;
zUS}bYM$a2*$6X7~zYV3qOvcF@slt(+X!7{e-%ND;&BN~f=>j>uF>-wf2sC^-3f9eE
ze)kNdRR};z!kHL+G2a4m3G%H(?KI$nyM*FDCCQW<SM~R8p%}MEht?ShfPp|mnc;gQ
zqEGuA68#Zw4|<42>Y*{Q)@yo72(7$!+E3Iib^GC3nU$AU*~mh=-=1^HB9#)I;c>d)
z&I;VI6(&*x7$fNLMl+tIe(2G~dY)(-8yjm`BN^H8m5sN(o~<*xv%#yCr`0(l`-{HU
z3-?Y0t}vuB&-$KnIIA`Gb>JhBeiZx(qi-(6g_uQo&*Aic3jwrmf)E66E0NArKtSKd
z+siwWPsJbGx%%Z-?tMb$OnOUyV03lff459|dh9cz$d?zu@q2m@(5GY^!mldDpK)2L
z$B?wS*qURftH*nnKV;F7<3~=980`tNFqRWCEAcH{fd^xrief*LR)^AUffBv867C67
zTZO#QY6ranV4?V)K>5oCIBH?o-K|U3nofSX*|DWZx86KNEC1>Xe~;ax${~h9*jDvp
zlJftExk>x+$IF5-rutLkR-Ea3MCrDAZR=<5={kH)Jw5s{t`=V1rY~XqB#W(W4q~NE
zDC2(YfF3qVh*(zVYW!#x6y(Lf3~{sdUo+G2pZR6St5#@HY8C-S@-wQG@5qoL8#$&N
zZ=)-HBE#V6>9(@L3+zseQ1ZF-!~`+_Qt5<Dq1U{~kOj}n^b`do$ErX|Pc-5d`wh{1
zpV0s2;&Orf+QggW<m!L#a29X>zFtU4M_Emki`_27x4+aIKIGQ(!N*`=hjHUxLrr({
z>h9-Yz5skQ8?xu|kNza}^rbx%SQsS7SEDkvSBDKdG9lhLXk_zc20L;l4nc1-QZ$tf
z_4Ek|_HFm}HMTZ%l2d@)&~NR3_rHNZ;S-o^Q1G87H;T*jhNYudEW6Jo(%#NS$PL{4
zEUjOMy7!N_cxGx8C%7_-bu8D&ZL!<Dik4=Y86C~*A8RCz?)al$);DB8ut%h`?hw@f
zVY$q^)1H&vuHfC)V&REV-5?FFOxhgZY4r_|P(c|tw*l)XaEAsQ)m$~TRZM&WuPfMu
z0^Y$ucti<xW@Tju1xTmHuj_{zKOcmac{^1<YiztVO%<(puZz8Voc?wWNlx}&aB2Kn
z%S$-C2QyXvONxQr#j19g_$+W*<V?(JT2Tc&2xf9WL?#Zt4v(;#ae?_2Ah!KCCdf1I
z{@%%^I;T{uI~<QWBH+yfMl>Vq3#<qlhp=Yh?|gG-(OT4pHuI@vzh@UNzf_RcjSNAh
zlnvV!TBu9ozzwecn12Crtv<sSt158GsO2qjr9A{k0X}~2{nL8tlIomRDuWE$3Z34~
zJ`x)~C`ud|zFpqai5sqv@3xgAdsoo0dQl5KH#Eh=N&cxK1#_(+ukhcpTARG|<rqs*
z;<@zjeJCtxVOSGY=+Sav*;W}4cqJZ8ggZ9PXCk$1*b<0N639cy7fV1|RbW17?*LX9
z&bQV&eZza2EZ5D8!x?wMw>EqS(Jdj-pr!COIRz0hf*O+mvK=07X+Z=$Ll~&=z~K)6
z5$a)|V=x>Xmir{(3g~*%T&uZj_kq{td$Db0S;^%>>*%lMoRZ44HYEx4_f7FW4q99U
z;C-Nz3Xw3bc$<^=!otW#Bk#9(r_oB8K#&BDYU=*)hB|N+foAmKd^2rQ|64v@_@nvD
zo93t?KEm`l+CE9%rmIL4H1I18qV$+@Ui!A6Tb?+kIdG%Egeye}!XzBOJUy3Ia)50=
zunWvLn*`2Vc%EGLhPN3ZqbT)lf=H{4x10Wab+o;~yr4nvcD~*{eY|~a=s8syK49@M
zA1Thj%);2_{SdB2xiec+R#NHk^@<BP|C+9}hXz>+s2+GXuI_*@spjoZDj4rHFKaoS
zsqhJC$UO$UU(qgagQ)vOr*^97XpQAjPnB&nDvHy=BDcWn&1yafc^8-W;<ez>ha;EQ
zBrq*?gAB#MueR9ip+cGD;&Mblxa~Ntxl5R~x0~K8863EV2zk%`T4EHE3ryx!?&kH6
zibnP_S6?2$i2@}^6xhv*^0TfcIrBs(Djdrun%6Hp?A#I)lSf7r44T{&6Uq*z8}@ED
z&h%r<a-^gflAN86NJ;h$D&8_$S}+vtfmZ<PYek*{ZOT%!LmW=n+-%btOl5v+e>s~F
zzg-CW?*`AM&i!*kUnO@5=dDBUDb@@*A*v0BXhI^=AGJi^mP0`dSu<SW=kD4Ksuwo-
z;rkBz&!R>9-;VZ4nhwxld3X8dEcoE^Z?z@IwMO~dIDE~rQ`WvV85MLLG;=x>7u8#6
zjvXR-Z<!d+eA#RPS40VqHS@&xp(F*EF)?l_Thb#zAMfk8FEHVj*HvFje1KHi_6a5o
zjq{D_yj8BPvfr9ntb#Q(*!yGN<uoF$<g9YhI{9GcIg*T*I6z%lXVan`Z_t>Nf3dqf
zF?~qqp#FPqC)0bu=SL%~h!;ia!jJiAvy<*uPUJFX7-;>%``$qZLrg|;PiT-zYr_ww
z%fr^dS&JD4>gwp|bNB$Lv-p0Cmw4NVJ(x1o#I>JN9-uOPd^D(&5eg_llN;+@7fZpy
z-bo}XT4J*1@t&SyfsxVT(b=w9fw~0><QH;JxWtO|d#7(pUo-n`q++cFRb=>HUwiA5
zf0kyNv_QhWs4}idq)e1d&!k){Fb_7x56{Ni+zP%sg82P+Pft7`wbr~vbP9qfYpFF`
zaX^G`pY{OUwl<fhjCTLNgVQ^&Vn(j72$@C78Y(qxLJ@t3K2?ntI_w1VEK`;CqeoW+
zxSK7cb^YaERku!*v_3sqd$=NIj0`H6So!t=g0~hYUA<7%jQ`hvcv5m7-`Z5Y1x>Mg
zsK?!+p#v9sHH)$-EYuKhu$He4aJj8+Z{^eWNp;5k%JxwN<}`}N&Q+6y{z@yv>xXw#
z0hbd=iS{_Y-*vOT5}0}zbKoO0?LL`hBz4+_IJjSdP|naMO^COIds%`>?F*kaZXaTW
z;GXQ&$|2&6|1hWs+Hw%8zSVy@J+*h?MqJGJCgI%)vzx$S*eJ!_Zn$V6^0R;lq_ZqT
zJ5!5~CfbGa$v%<;8^q5be;0MCguhiW2&zK-DjG&{w!-_4S_OQXD!;LJ+6%X@Iiigq
zPk-hjXS4o9m_dXn@zGJP$|493K|Rp`^nn$)a)j{lKkXXWmqNrrTE}krw9(tgcH9wL
zm_DJ3gO5uH7x~$ieAT<#ml$0|8@q-t*xESokm33+uqcDor8hWwfPDnRVwhu&Z!!Jw
z-x$fK)qMT1DNd!Y0t6F54?IB5Mr=Oi{oYgHbq4PGUjNS)ZJZWmvUK!kFaG3DQa8<{
zZ6i{nPX47oR?7Fn!?#TH1IyHl)IgWM;%hL~q0Aw$8TbgWXfQ$h^`DGRULLL$WL9eb
zeAgAwK_1?Q{+=)4WZkezi^F}k8G0eUqrH+6SjkvfeO+i}Moc)iIcM*?`jnbJgY*eT
z`Vt8BF)|bn7F%Xxpo?OKzXe_*TpZT)$RLTlfCm8rC4<hhIYRt%$Gi=kXd_R1^O*~|
zt&`~mTYekOec6@driBw1AFI^?GlFAAfzs;)J>v@MHUDVwPQ?%^AGrgk*|W2R&Gszi
zZ|}B93)KjpOLZH+>?)^!jY<F?V<;<0!te2slB3TaTVfRZyK-R$D&M0aH8GcolCW~o
zIEz{K_1D22wIa1-6RgLbY{rFAB${|9Vv<Y#?=G*TqzWBMOA&A9p&)-v5}-#=`<v7k
zI+FtyxJ?+^gk8_ivF<amvvS$pZwcu89MyUkgvkq8tajORaD}h2A>~cP_og2^gkKP=
zN}E8I&v|kfo-ZS0Dem)1VDWZJd<f5`mt~%s)+=uIp&$-p`h*v6QP9hc@>S!*KB=ef
zYvXbzOi^rh2_yZLgu6_6WaJ8Y+b<)UmSl5h^<&m#Ux-egdG(W-Fh_L}W(v?9^v?1|
z?}Nar<mNzq`jqAS+emzXwOJR@w=@>Af(!U#NN%@sz^y8JV3PvMBpAW6DZ^i^bW6QA
z-cOSC5^*R^eD{ckc>!1E)STlQVpk=na}@JIh5&b|;RqFi)mG6Qfg-9#F^!VW*Z#3+
z)Qbr5lG?Arg{pI!*8OJGHuY_;PUT9PYV%<CnyJ%Ax%OJ43aILLx85{)^JWk=OilJ>
z_1p$Ewv3Q>{{|up#rzM_Wvy{C9<O-|&N)phd{6HbQ=Zt4exZjVSV-JD-TP+64Ra)*
zN#83~@YIZdcw?DvE>f163FX%UACu3YW}n_!47T23B2AV?J;m^RC4mzr2&|XBhO%F>
zvRZB2=0DQD#<#)!P(J?^Eol)Z#q%U_%9ES>bRJ%xGEM4z#|nIKZW2;>g)MPn%(6n%
z6O*yD^@^4GVzDvpl$PEsmv}@4oO1lJ&4!4*xK*uqbB)8sh)@D6B7baMK?zf1M&J0w
zFAOyeFTFlG=P?iWIsD}bX~#P*M<&Xgc!Nz67WmE`85Z^nhG3g!cW8Ff8=kKSJ@%i4
zmbtYRG($>h`(Wx9!@lq(xXRYh+`YYQaX8qJe$QMM_4z-;;X{A`(5U}T;3`TD6ltCj
z8Y&{-5|rfSDHzjN)fnz80A^<D1V$ihjuRe$3|W~je^(O>Vukk44fTopAqx|eA;RdB
zJ2bK>+-=d0<#>Ax)-#04gMK#$t%^?(vT`s!LU>`*CCT9fgfVkHG)iZ{8~`e7aC)ii
z#}BjP7y{n|{`>HJsIT?8CGJx2k5xBdaML?SA~NS8x7&eQ+c>+xHOlPiuouf$bDEku
zv%D9dGAlXD-YE7J$(N3QsD`wcTghlk3>1qSSM=?{L6Y9)Onxx7kMa{|&~rUz<4{oH
z$TUz^(H>HIRiYsWWKe}ykgv?YoR4Nx1WVnBU7F-em)~&asW#MpHFWL??|VsP;jF*P
zldL&gvZ+8!l0KoUs?kx-1o_74ZV{C%G*Dd3)oR7oC(?V{0Um<t_jpEZ2zk=r)xHpP
zU~Xod1HY8XJc_uo5KSQhBA%_7><~6fo~f+0I|+CmUrS3S58p=F5hGaSvjyfO9GrMQ
zk4=jw^pV!mV8)TaK^}s(Yi!Pb_<jc^4I09B7#NJ<Bge1()Km0mH0d`OP<b$@cx&#k
z6<#rx;?#(KkEKU|N>y{IK0}cDnp2vSSDCa%8G#GaXV1|?JtgCx$V+d20R9{0)ZJw#
zj0vrKH7UQMYMCGFCLMrqFPKnNhe=tI+DTK>P?Pd9Prlg&neH1&7X~z1^Dx8H`Y!Wp
z$+O9FYB9X%ZH1Px)~B<2y$)f&{GI$s7wABoFyM@Jvt}MSUl-Rgo634uz{9e7=5gy`
zV>)*_eY_kUZPPZwm<*g7!R5sm@6$&c9Bn@#ogL_CvYPR~1`>-Q`G+c|Gof#A&_2a9
zHG)?_hXFE*Cz2C#7vZ@h*du#PUo!1pk@1qEhWN$$f6=*rr64IbH7t-a67!zVyT7WN
z2f_blCKX0XF%9<u?BWpMs+*Xft+41y-AZm&gc1g4UXlzxF(6a1$-%YAm&y~WC1COK
zHn!MsLq4S>lkc9tocq0~t^US$Z6GLeE>O!O!pCM4#DAdLmNuN+_-!CsHQE<dukKJu
zP+;%l5V*O<GwpSugn5ANy<u^(h7lXNlG4S=uzgSD)o975$cU)#)`8jLCDKCNLwNEt
z+oReQ+FND?sKkO82yo<`sga;96VOt}=X%7<T>KT^!^nn9DLwP_FiZKv@$f-(h9?jr
zwU|hW_Ti(SN?Nz*fm$Lz#OU!``tsVNVC7vXh|AW%jzEmPE)VweCH&UpZ)%8vFf7>5
zffZEgfOiA!nixntdvN5qO(wH!-X(kAgz%SnN_{J1rljPF^1+YPl$VfwB3<9Q%Cg(O
zJ-!ea@`UbyNc{M9j-I*hX1RaaI_ce^EZrG?M|+20hlRA}sdKq^iYURsXO@N%{88n#
zwCP`5%pSmeg3jD?XBqyI3VOhPss(AwlZDVaGA9fi@+9Vv<ECJ8*RHh@{>K1YZ<56W
z1RnTy@9Q_2Fn-(yH_zwarFcFGC|eyxX}lF$?1H?o5ck=S`IDEHDZ`=`^tgx!VS!zH
zHrmvf@X-G7WU~vER49<v$Dv0EIW_#vk~ax8LNxl1Ld7?wbRpRI$tWRR{gu9*mHUnK
z)SY9Rha4P7$L<2R4Fts0IvX7EC&E>fDr~XVf#`8s`&T!U*S{>0NyD>0q{$HY5cjoF
zf0{#$sFj5thasaTu*Ko>aH@=gPd4dVv3ozX&Z$9-cn#AT^92-Y55zT_<z9h`R3T-+
zc+V|(dMgRi$#Q-LmqOl`lLWpz?Y}sLNHGPmKhj7bh*beo?>2XbeW1xFWuC-DqIeTB
z{IusmV)S=ZxMAKtWD+#`48}9cJU{K@m@eKNCLHw={_Po8thkO?yB{~jz_jN*ux|25
zvq?M?iM^9!!;f4N0|#M#Yk%D=?696EJtCz9<WbjPY0;10Il+jKk~j#x&P4|TsXR)(
z?q&#hDS)Z^&07r{UETJz8i}$uVM&$>R1JPhb(hwcgaLGzVYz5RqU1p9U^VE>Nv8Vu
zvkx(3!`B{3qr*qYMNT?@rFyva%^G*XuSwJHFOh<}5MGETCQwww--Rl<4?`!oAyjBR
zWL;Z;LYJcv14J8`WoFs25k=<TQ6@jEpk2R!7A1-jX2V~h?EeR=!cui4X)%NyU$j7;
z`j7Wdnjhl@=nohTB?8<<C(S>&US>I37>O}ZC?G4$9Tbbfv`o_>e6*rVl%4o_{{HZl
z`cuo5i&2=i@b+1#CUcmkrox21Fb7?yp+2%?=f_40T?;<kQF43Rh;^59@2Z+tM=&WR
z!+uO2fShBTN=q<DG-i`KC8KT7C$gGKFT<&@x=5xibSIfIbBp*Fn=Te*uVSm)J+A@)
z&veDbwG->IEKhR5JRX$PKakt3GVvv~OyR2bo~bi?6n{kuKp1y(>8&B6u0e@C{siev
ziH^FFMYyM3bqLv(7c9)^aHZ<EeD@CYGhLUWB6(45o<K9;;z<cO3Ks70heCz*uQ_ES
zz!)s23^p=P8{VLavwMLL^urEia&(023bcQ*cVJ1w85oF87SMO8AipmNXOguaXdNb)
z5U%`nY?s(sj|z_@)1s;F9Q2l=JP+#6FfXeiP!NcWxQJSuh-(12n|_GI7=tq@Bc}Cz
zP~<1mZgMC;L-OVFGAkCCf49}q>kCMUiH;XSrzml@c~ptH<5RRvFYNoCcyEL34T;uF
zjd8y$+X?lFUV|dSbO~jJeaMwcp${q@OnPx@>Ge1y0t^%3w|62VlqV6v{DIQczni@l
zXtRl8H+3^o%CO|}rt_X&PjG`q8xIg;8;v$~N0<xy0gYgc62=9E-c2PO`wlY-72%vv
zbV$@IICC6VTvFPLKC;M8Mvz=QwyslC4yT%;kv5Mc{k+dxxL*8U7$iPI9Vii$PvU%k
zQf2saMPNmOa*JrFM}@ouBfbuOZ;9L(?7s7t>(07%sfLfA6^2m8sQQUf<3@BF-`h}G
zQY8;0J_V`{)#F5yc$JuvjQXAcWKTDKL$qj=YnvwlAr)^AJZ-QF{>K;_t);(+8tL69
zg$Yi34iI0rn>vo@#7R-mP({C0o}Pve6s^W%f;dgo?M*{Z(6i`><tt*D5qT8`bvrWo
z(*P);&7!~e^>laj3=Du&l<R3dpLZl#`UQ{Zbm7N-hrN<F_vE*PN~5JHl(xHI0Uq+A
z1@yyT008o#<|avf0w+nmB=q9$;SClRL|H{$UG*&?GVH~f<C$X>S2_-<eu$jPvLJTZ
z;<o8?37Kxp%#lI+dGFc05cnkC7%PpY3dt?>aMi*y4Qt%y>ZgbDBN?Q#0vqgJ)Q=9d
zif5@cen#CFhV_U4_QbG(fhC{>^3~Ao{{^{~{+=qT3a$mm4D9L9BT3QF_<*(Ga?=4q
z@bL#|UGZNJbDZrJu8$q3;fO4q%q+WGre-Pfw5>UJcZb+Gcu$G;@kxM2VBNmpF4gNd
zH_+bf?(ZuqDmG8k(;d(BzEh~1^Cn}>H122pvs-pC-{}75Cttc-gQDj3c-6@Bsrt{u
zWRJ&peTtvw8_bS`yf17Y^bMlZ8CY0u)<?WA_a6V0p*B6(xa_Qi7|les67}@-SX&=#
z;NY<Sner8QY`u~*d9H*~HFJL|CsbTg!t1sjtHy9~)2vyho0^dkB=19vJZN+8gYYCn
z#fF3iC*#KS@d><a?C?Z3z53I&wdjGvhc2=V1>i#C3jnNDQnt2CHx@`;)Q&i(QX^XH
zvgy4XKS3~aP8i13&91;+%bmX<U6xSU8cp>j3u`WOnyg$>Xg-~no}ikjVx;vu4l!of
zv}uigtDE2_-n{i>`CgiYI1^hEUI%%~{)wcu)GdJa*KpZ9;PzjO{=#!Hs^qo1^tkc3
z*!FOB2l`|NU%sTSKJvTY+LujvUYzz28w^)k*~{$AxGuWz9NedU6@ozC<xl|w!qs*!
zVN*2;3~{QSM7qvfz@#Bt_BtEle!)P9&u@Ra9zH~i8K(G|XLM;v=;h1N$w`;>>6Z_k
zqCD6G_1^y|!oY4_UWUg9C1Qxg$iuY@Kw?1N19<S`O&qXpJyE&h0jz(sNd#o!etcV7
z<~juW3c!b@gE9he&@#Q7Jnh6OR}3$2-h-V_ytBcVtjN-$RIh=bi~T2A&z8_J#dog9
zR?~W2jKEjn;StQHXOeYnuQ<&ss9Of!bEHM~dREHKp{XQ8`WmXthzQfc&p?s;bf29e
zVIyu_U*ivgR@@RP840LskRp(nzkhc~onI+83+D~<TJ9}Idb-}5)2094*Z=|ukR0B~
zdFuQ451LPn46Sc$#Gs;8J0GTHraJIwKz*%lj>iex%%=k!mwTT~dzCh`#}yEN+pLXl
zNTpxPZv8I`!0?FtiEE6)_k$oB8lOyC3om3e*pKZn8g}isi?}<pQ2-*nUZg!83y$C$
z0)Rj^X8+!xbg#+Yx0$Q*&ZaxwLKxqArj$14N_G@9T%Ci0?lafk<$#eLzQkx6HLfn;
zwy}lBlo~lzrk|Rgu`*S6_~B@Ov2bkX{Ol|sz#Howa8T@b(>I9z*_9Jo%XHlDmT3^Z
z0bes0e{);yFYvugcocNMJ&~rq?>h3nN)WngSp1?xB^HqRXMc+`jX$HbJiF4u?Sr9>
z&1GRhrsu^*X0I4djKB$?Gx%(n329#i?0-0#ukpO%Zu>*Vq2PO4l__*LtfRNk#K6FK
z;Bwb<24-Jo??y%sA6}N0-rqwfjPmf<(fx7o0s7CK%h5u?7|za?+0~&Cc~ZYwLBXQi
zMUpZPETpH0hE7ok1X&V8X&{C#)0f;1l6sy!EIz>VHo1g%ug;|I$Zd_x92BF?shD!9
z;?*`Z%$QcC4gp3IA@Q<ia&q#`gP>V5vW{f;YTmP_i+R!HML70$IDQ(zZrj?`4N#B#
z1B$msEUIT~qccD}_V~^_gYW9?_s!7`ABEQ1nwCM+3W%Q?Z5}?uW;G3n8bio&BW?_S
zymycgJBtQ94xIFwZ}ru=)y-SCIC0YRv!e$W^+R&`y~$jux;|$E5*pMtmPfrX{^ZAg
zIK;6tu2d?iIDlf8ezAaV!R>IqKn^xiJAj4sd#a91(w;VV7_O}*s2z`}i+OIql6r!?
zWzV7<`ZMx;V?Ix+cUtlC_FgmdUGd!)a?{Gw=*uA@$yg{*6dGNcI}14S>1%Gj_eX1K
zPq75_3b)&at^9mipW}z4w4uQx_dfx=dK3^qyh@TKSt`-Z8vn+5A5<l*dEJWU^#RCd
zQ*%g=*?X@-HC$Aw;SBe=4F?t$md|`=m)+g<_VyT%%YD9fTaoV?t}d=hN{abMjwT8U
z-tVv;W3m8vPL}4aHPqt<%ded;K9?;C32Q<(CujnsS7%3$<!TITLZb;I{Kc6WccW<f
zpTDHJ-G`a260N(2wSD6T1NCaFTTf<-HCgqntZabpjBkK*(M9%9-_v}bVe7ND8D$AM
z?kxuGzu?N#@HILmgI2c{&&Lbv23?=~@pot|6#3?a4#SY5!tW$xWO$`&mK;MvLt<iG
zy2<Snz6gK)3GOLI|Bn`Xk}ORZ8x~d9A3xjv4<HchIKO{BJ`Fk<$gr{l482kzUV>#^
z6};T9wAFOsAfV|O;N7Ah(^t{R&KZUXYCHHp5u6AQd=#Zq(&kv`YPM0e?k%DmyyU+u
z5jc@f2z*p^&<Q9$GT~F&y~4TmLl;>@G+<W$6}+96=wkJo><VfHQ~T9N6DuX-gTMlM
z;kW-TZ#rNEW#h4V!*P~3;%Db)2en$|o5||MiNkHBJjn}5&Ys|kb~{k`YIY?<$A*vd
zKgUZ2Jm>g$(Z~d59q%qv>lR^`8(j}biTBgfKEwK1YO+jmbJXsCctsG^1oWT%qc-~s
zL<l|}-q4_2HZd%83Tp<iImq9zD=I16KKO(z2nygt8PC`IT=W-YzAn??+rQNFylnVf
zIy$;?{=KHgH4u7~IwR=DUEhe}{fBbjuSckmYwuPi-@~&W8k$#QZvbrp8TH(N#}^KQ
zd*Ok>$m_N5797x5&ic6C=Pzt%FJhqg=8cN}b4Xe<f0&xb-6l%<kjGBv4N$+p1#ZXl
zlMNZz)^~3jX2^Vwn(i}oQW_gQMB@qz#g%2KaWnbt9h^-}zP6E-kv$c0r^+j5o?R>G
zkkJ1>6?f-6uyqmG1vDUxHa%C~gPWV62CK;fhtsIeRZKmV3ZZ2fNGC?Y7)7#lJp$hG
zow5Fr3qK+#TW15P%s@yBOiKe@a;Sa)VFdj(06^71i@pHhNl@kI3i=P-*~Hd>*=Mgn
z;RBeAxeMfTive9*XT=k{HJKnFa!^bpoe08lc*7Yjc86AGSHpB)JWTCXgap}D)pT{i
zO=k+-H%*>_Di9kN2MvXKvk~mmmh}tW+PYdlOq3*p;bMsSDlA798Sz+MoSgMq-Qps|
ze`j9qj`*alcEo+`X(qPT`q|79fSx^ugN%S&9Vsc+JH?w3?WV34G4s1Q2LWQGk?uX=
zvwqzV%)Ph4y@qTbIPf8cHZGe{Q~EoL4SUC<?|}Nkn8KRhV_%CIHKgEJ<p|YAX8bX_
zkIeJ4Q7ZSM8<p!jyuUV>MUvGznU1eQ_z1dgcPJ}4Ac|Yj?yS$0+&e!{Y4tNxjtRGb
zk)y%RDQd`ql#IXu;kWH`i4SR6FBmYxjweozUjW$edPjwRMk30c&HAo;1;tX-Pg3Hm
zao2ZIy!3#iIepw@I~_m;7*7}$TD9hWT|3n&Nhy70jH#4JiGb%fGO|%w6aTyNs`Us)
z=+DYka!NAfYgyeEC?63K5&P<mB4$7t;dS#n$gNO?1#^YRrpI(*eS@Y}Sp)YRo(Z>V
zX{-3#x5%<7i<%W>EyKt(cU$*S#m{y;UU!=pFd@-_A1R^({_qL7=8Vf~zpI)(J##+c
zym|Ia`w)jcl2jBUWpHMEzGU*7rZpq0&t1A;CLRRvx%SW13~Xbxm|nZB{}>x-HS=%?
z_uXEhAV%Ga&&wX$Ijy<jE?x5b<g#|sm-*`h2Oi7k6zOhI@*SLjizRZdPwsC~!v9Me
ze#>cAZeSoP0tq|I<&ck!|JRmN$-ug7lw?z*#XGIq+>%angJ+PGL3L&2_xkKFk#iUs
z^tnuG%z?-Xpku*zo>0K8x?p6$$+D~YHxdFy>=DC*Xvp-<-_LY_+@wuxHE0}O(*AE;
zVwCs>MMSG^S1Jne{tkOFtyd-}pbvzxgu;@w=4TDCu3x9HL>Y>Ussyqc^Wh-pj<28b
zB&W!841M;w?}ygQ5~o~fam|!wN=wgx^IOU4$nd<J9G{e-jvqeEFu1)~Vxnh+@$2w!
z9WFf#&Zi9%|2_Wuwj##&EmIQ2Z}fv&;RN5+eiCD%=jGuP4$ej;Ofi>^gu1hddW~r5
z^3?oJ!w{6~@~@RYt@^(5vUW;fr{CV*J)CWjD^%s?tRv?4;<%bRobxR&X};gxkegyL
zXmr@={QVoVt+h34#j));0vw|{4BI!HI=W)XlO&@#b&1l`NKixQX|3p)na6gVm<GS_
zI^VX8v>kzeWwo`3HnlN-&q@zDZC5T5>IaJfQfMSXEygu&^QFo!#+Mu&rM8BFr~K%(
z-TN8rmhKTHrHwsAG*Z4A$D@us&WK+M3elt3HIK((Fj7jgxxZ-=pq|Y8c(^IV{0^r-
z`uj9Atzer-MV3Vvc>ve;e`DKr8za63m3G(&)A{m`e!#8mait=)4x1<euv!>numD9I
zNpi?mW(e?nM(z8kzcjgM&c+1yd-Kt_BKLcXqlnOvOA~qB(q-GjP?^Bp;*~cj(+bQ7
zcAQ!-2jq~>&LDON12l13_xqkpbV;%;`bR`%t(|3U_6H!|93ylSsmoILX=rP>x#ru{
znLa6JO%0tAm|C`5(I0lQI9DedE;qH{Z>h;Dbob@T`#OiL$zx++18EBax*K3l<3amM
zPMz&yeVv}`!>&n~n#1{YSYM{s?1sY^&#mutneM0#%&5Lw+b3A?s3emkBY1dtclUqD
zydRqe<>X+zU4isWcKrhhc?h(Z>lWP>Qe@VS4WEa6grwr+Vy(Tys(`jlVWpWE$jC_j
zbNkb2c<!$$ab2(Hz(r5+QSpAnZ^?CS0N^devXpfP8jY)T1s}Nv!-33Zq*7Qd4+qgN
zy8~X3>!g#Em?&{atC6;|M!QW8yDi|v2vlDAw2>-=?ww=D12_<-1$4(+-~?~?ObUdD
z{!I|3VEXYt5QN`h{nG`iBUnNSy|J+a6<`2WnBYt+Z4Ome0637+DSl~nT4`pB1!yxg
zGQQ#RpTSnZ7+t({Gg3B&Oobz-+iw(yWVX~`cNr;KX!km!^CE>+zuxQQqb`eU(*l@>
zcdGPwH>7DmgMD&`m2jV0*xz=Y@Thcs+ICmm<`)?Fe#i3ha)iEVeEc`BAlGWSS^0N%
zeB3v+y^edm7dqUfFv2|8n1W!bLVD!)-OM;M8-AfKThR5q{o-mtW+w0NU31x&*{$3Y
zEG9aQ_`^gXAuZi(PC)^+AjbFh6(}P-50Ww^DC1lgy&itf*)m{*Uq3+~;D(U9W#Zt9
zJPn9?V!V5e;=!>`>ZgJM<<RII#X=w3yY@OTrcm1jKqG38=Mc0({+@r(J)+<LY@G2s
z>U}tw1>kf^RfCR8W~@CY9vj^zhJ=2l&pstZ`N;;_Z**K&&)=zro%hxhzaHQw-;uhG
zWjrgcPuzw>D3KY{g!|}Y<n#_pZEAcM5y@7+&EruKIz3c8P>iBMcX(^`7-wz4rr_7=
z;7+;FXJ8pefW5zBjiAOxhC4K;{fDM&XArq7z?J?CV8jiH7<lSANTekDqMrCz|0|OD
zzf?D8P!_<n5`F#!h=hR$y0k9f0=%rhI-F~>y!tYm_LiJlso1$mFQqg?r(&k|T+``l
z(fjtseJqV2>qt<b&L$~I)8{0`7m!P(^Bf-T_b-YyjrO{oNiLI`y+|6SmXM>@h%b{u
zxGDplUSDbA5N~xYG;qk7R#aD;EY8Hdnq98n_lVlJ1{~UOQh%K?McHhW3i*V{gNquX
zolMJzG<s@68JTTP;~M9+w9uNnmBnq&_*pLrt#~y6^z-Jeyy)UWvxBsUPuxxtmDN@6
zf3UKF^BY}R8I8-b>XEHQXMH@U%Q_aL^KfeTy!3GCJFxDMr)q6bBM>MF*xsUjJ3uSH
zs@M4(ZTBK@3g=%oT6Z=81OFfAME?&BwzVb^u&~8~mePD#qSYf9C@kIyc9cIesphCW
zO8J2p)A6@5M`BI3q;;NqmsKNcn>>nHYAV>yO0px3pQGEwyvqO9{vzn>qX_o%HUGWS
z_Sek$uIs4PNI|L;5bd+z;bD$SL%4j3<8+Tb1v>l;3MWIwjqCZ|pl$6AaK$1~JXM+C
z(~KKqlRF_l6L<s%|Aha3dapt2R~Kj~<KSie$HDC%1xVz9FJAN5AXw&?tTc%L&>WOZ
zD^W}~0Gzj*stdWKCuM(#lkN`hiIndCC2u3cvLf7021JPtL+VI#`hV^U?AmfTN#HZ5
z%Fi=-x}Y^Ex2ku(pw*-(%R)+w76g|3MvS}thFcp1AwDn&<$aWgtx@L4UKcFZzg}?v
z?}r^7G*e3bU?{@|@Oz-+uJ8We9*_>}d4Mhk<EyyVnxI|+P_+XX2Jk|g{170iYvh^!
zKI^{^2!h}xoFk_=9qhI)y3LId13~wvDm0YAv=)IwwEJiW=9cEXCX6*ANZ+QbYj9&D
z&;Pz0KL;E5|1tO0QBi(h-|#33Dk7nPw1R|4cY{bMDIwi0-5nw#AW|YAISA6-Idn>Q
zGjw+k1H*gp8^7QEto1zizwfMBI%~M*I_EmE_da`n_GfR8<Kb;Ti|;KhFZ8*!d8=#9
zlvZohSw;{SAo$NhlNtAJgq+-MaU=?|4i!;c*P!gUk0<tK!3$6Gp;e^V_j_odvgY-`
zgLlV?apXT-phntoENd|EK&-y11ZBv9@1$V`nCaRDMM=mufH5w-0nC>8F#xT9)z5wn
zZ1{UnUY0w!zDgboG=F&K&6q{_Cmm4#G0=(<mk40jpP5YFw86Zt=tR$nXN5z@^W<H7
zBlUZ3JU)LhE?Gx;11n!=w86>!KADB5So&O&idr9l*Lcv0R6VB1GuBnu_9j;F+k%MU
zP=xif5gFWP?P96Va8zx<HBa(qT=&RH|GOV^+Iw?q&Hs1ua{<SO)@EXmr0@i|&>BoY
z<pofk68H@Q>r??(y!#*7`q#LGeZ#n3!%O5Kf|ngi^{&P)3@|TDV!a;u7qPqz9C1Ji
z#e)@V1jiB`^y2OZ88!cmiLYe8pP}IYlcOB?_g>#ou(zGY8I@6QcJZ@pa6$V9Dg(P;
z^N8P?VEt1O>F*oP;r82tssY!9lfozEZV48jSvLSk`jgl{;uCl^@c16!xZ48u>&E4U
znutIKTN2>yxaQsm6zLYAj(qj51mz@v&V$I%`90kG=m0uFV5n>9ah3`wN%Re4LwH`>
zeww@U(l-1F&+Bju0a4M}Cy+vOh3Y@d+7hB_;W^-DpjhF5Giqa0*!=}|n)<qn-U3YE
z4iMQWGr0#6FM_=1#LQVCp9G$|ikMtaQaIz+zRequG^r5nqHREy1W1aj?LcFqIHb?+
zJis%u2nqi%f&nQuUk0#r+c1zDAQMXRY{Ftu2W<Swbx<wp7?k?}k3CsOV#EllV*}3n
z81Qi61Hf=|2$B#q8j*tB(Ww0Z90)JDzIYkm24xLvq2s7bWqJ^w&YOGk()JU0Hqczh
zDDl&zH~f%}Y-JEN096inK{^ePI+Y>+j{r>r`ZdYC4oTKzh)f-c9a%uF#$8B$=euh+
zZn1uJ2s-3#*1q>m@(8$0v@AM!rcj()7<WJV-I~y#YVmdmQnh`y$q5z-n=AOhGYD=5
zsw~_9^Y<ax^n31V&C|WfKz|N<u$r_yxxdYDbAhRB{R2Wlzg`@gAgwxoF?@{fMuRsf
zw|PB}k0amXLL9}Z*{VoA3`wXWJDtQ^A%#XPmZ09qqo@v}dt05`UzC}c>FAqqKZ3_6
z-+IzWf>%q@+4fuZA!KQr>H8z;+oB(@PvYt|pokwjsMyc}P9$}I4(YhqWVZW-ZRwue
z9bm)@fyspj9BZI<LdtFwa8t9wB)&PL-ND6|E}P+lsKNA`AQ&H?khCq^G7y0>MJ_v&
zrwtZtPfzcPz8>500(FZB2(_5nY0!f@3p@H9S9f5anqC%@N!}3$4i%7?UHO6PR^!W$
z0);O>azAtBE=I3&Tm6mokTHd%Zd&&7>p{D4P!!_-mOJo&>_j#YP0Myh<GCsF*bHG$
z%a~$0_O<Rd;dNoFiE-o4S68DW(ts>AOBpbN=vP=u6KhW4OMwLRYPaK*<jP5O^v-RI
znC72_idp8CZP%TAEnOp;1=61@^5_3-5NylvIjp<0A-RI0>8J~naf;}7^z=fL-@%Oi
zSM7H67~r4;o8irfb$GXvq8=3h0z8#^5K7Vn^0&^c!$EuuRH%@UzzzjV@67m^Hf{<3
zOCd7{f|i?$<Mj?>sfKD0T<umB$p&$J0CHC#(*+y-!a5_hHd`Vx1OLr4t{mPsh|iYB
zW^wP|Z)WCZ-}nH0uK*_0qs{oquZ3cdcPnSSV#@SWsmlS?(s|mUO4q?m7>+=Q<?2v}
zzlQ@c7;ZnXLT5uP4L*HJxKZEu&NfAKA`|yL^~uW@pQ<WB{?rAJf!(c+;gxS`kFSO1
zT^RZsYg6ryPwH^Ste;gpCFgho0&RgS^&;+DPZqyPTVZ-~2R49e4eE(v3zy-0lTY4Q
zQCiY6z6{5V9L5gfqE6cs8dJ2dCWT0VGSn6wpFw~XR7<hcXwlczzI%2FV7TUG>7}_%
z`W1&Gli`dZT=jZ=s8^GoWRN4RdOmK!svv29+we~xe=ZENY3mnB#Mc{?d=h=SwPeLA
zdJmF(+BOoKwO>Q})Rnk#2*?!DXF!x8`9uYjPLf|_&gfDWDBzPa9(VIznCMFFNXXzq
zf}DY(#;YUQ@BaSF`SSro5yKCeZ6HmrQ)9xbV7{R@=3Z;?Z#dkzxf=%3D`SR3$uL3f
z9jM%oXAgakmWaOnlr_l4!a1{UIg!j9dwnwVcDG|{zourG(G9|KJXX<D&@I#eQY6Dc
z!tU9KczDhHzG>1`V?`ZGWL9Hu>W-?GhV$I`^JwE64a@fV<GDFp!6OED&%9i}mfyq6
z;s7weffb7~guOo=<fCsx)Zs4JT>F?S5(NZJFBRWu)}Qv{iqb&}3-WXG$5pIGqwq-{
zd}Cx6eWn<~rK_2&WO49a3LkRormqEI?~nVzr$(P1#e65@@&0Bk?n*o%mk}ZI#CH3F
zC=wUr?twKHUhUJyng~wGz!kkWhZGbBM)x7E_nB5ZvJG2SNOkUxd%oYei}RYP(g@*i
zTNRC>T*Tx`o>9|mkMO!1^jJ2%o%^Vcm+>Lr1N{{_4HK!)-s5|CJa2rJCvp`kma;TB
z1_2@EE$zl4cvY?YOzHZ|kAG%ga^v<Z`lwxA*UHLVQtaO+4W*T~hrg){#=K%;?#(|@
z$T~FNAlZo5c>lSLe0GDOw-0bHPplr!Hsex8{dS??QC8IPov9IIVOq1%hI!h^Qvp5p
z*Y2EN2GXf>!^a}b+2^kF?n#4l4-X=P8%;V1gM6j|NGnSOMDq7-G>D^rYxM%2m9Jcu
zvXl`U%7qIMpxs9YTo_&JT17u%WF-!Z->fxwamRf5{t`555g(^4RVI_AoIOm5``}w1
zhv>9iMo+ON+vD8mWh95_9>>QF-0P(W`f;ZUP9-*?ojLn1b2@^VQK|5@qRx=7<z3OF
zw+&nSMAP|CH#fG8C3gjDo`Q|=QSSp)-Y+g&qWF%{4@RiP9cKK$wDO;=3jP85nf&0T
zeT-hh{g>tPBje+oe!mi}_EL(DnI4^9@cH`Pk_2k!y6tPF8j7>@l;T+-^-a<;r(^b^
zNVOODUV;J&?dKU!jigE6{+Ehs#Qi9s=y!|!03!L$DWrXyEB34F8SYX9U+W)*`4sG>
zYh4DKpC!w5nHMy&cS};y)bO>Q`qz-WuGNlZ`#nZ=uM0`|OS9(I2Q>!$-4qG%UtPRc
z>if9#_mE^dKqof?JGi$=_P6<Y{qtJnb9&=td_XFo|D!48TUt$rBH}DV_?6Nl$SuD{
z>d5!D$u@59??OTod8!=xW_`{#;ODTqugn+ym=q;HVsw3umz^rMoU87m`{~=+Sv$x1
zWTxk%UQr;{u<K7}*0VZ$wofF5QO`vc;OA{VfZ4!%jf&#3{%X%fF2Haov2Z6q{2!z3
zC637Lc0rJ9vHZR)wHY`!GPib$l|e)_PsO4yFCKW{-;HoGdoC#Xi;F{8xcKZBe@E5C
z?h)b>YBEG8X>!X-7>XM&V+da~q5J|60nuMSgBU^HHu*u3{H2zYtW~+B4ZPY7xe_9~
zt0`?Ug%m!UKZCkl>HmXP0mk0j#v%m}=ewcjZ7r9j7!{)msvX#ImnnY@4)#O4g!DTc
zjxt|P#(-#ZOiZ+lL~5sN#Yq~CpD&yZQtIL?c--x9&D69O*uGe0yTg#X9;&3FK@<JD
zSWw@{b<f&aCLUVQIYe`EsN<>jkM)jo>&AUs%Rqp*z>n|QJZ4y11?3@vzew%8VT=;#
zudl97QO<_wNqVg2&(zc-j;|me;wGz8+vT$lIX?UQ$Bz~C_VnJ<O?yiZN20KM`+9W*
z>Q%Z8l6U2#H$$Vztbhw1xO{iL;21vVkre7ZCS?+bElPbr5>4ig{`5tG=%_J1zP!*S
zgSY~%yrA>i-hj)jJMgfbuJ?JPfDfd+yliBI^P(Akd7RY_eIhdJzR2ml=<na!Cvd8x
ztsmj$mbE(CvtOhDF*66@uBGuY)HW2c%E84+A>@7m95&2-0Hv@Ir=il~eR8O)RWyM@
zO2P@f)kHhyQ`<qv`xo29M;)L2X`=X^dytybouTzFM~5XIrxfA8mr90|Y--P?=t!I9
zL;qd0ko3$3^vx!6LGK0NV~eY;y?rSFVTg_X=&M&7{Y8dm6>58Q7L>gahh>%UGj^10
z`!?T9clUkB>omN)atOpM&U+UrlnI3*Pq^z$SmUAYCxRT!cY>>G_lo4t1d?9FFy$f%
zB>aB<D*ftHa5FLVr#i%SA<LBR%Xx1_-GIa9N@sggKR&@k?x-|jFIvN1e?t|!jb^vB
z$ZKD@(<6snYLR@c>IS<6sVv3pk$pyCM0ZKEpPw*d9$Uq7^t5*O(&-or#9pQEIaZ%J
zwBWt*m6N=4G+kZABD`x?)tBgoYzxV0!p4MvNzoeX)mCNJJ)a2kX<<3Sgr5CUOuGq*
z)fyNcoE{%MZ?h=SfjJfxRW0`y8S;$&XCZ@)ln#U^;gLIJt}<|-5L8_n@Yp117ynI9
z58RIghX<d_ozKqpF9RMte<TIr@j2<<)2rW8_>z8C_R&4+pP3G(vsL!%qR&V_|G@8P
z7e+X|cu@|$I188`|INAQI*ph0ERBb~nT4`QjXo+g^uBCpSO68M0xiHVcpE|!8RYVG
z`4zoV<U<>yeGU*T>K1{MLHajWK{}!~zl*G_oY7QB>ungUidsHLwt@#gNQ{4SO4kcP
zEp)q0PwgyC7b#_^)U_QCJahWvF+K;2B2Nk{lMC{*vgit0ivF__^gb9iclY#y_pe+n
zwI2n!`AqcmY_VULm+@b4O--H<tOIwgm2KfwN6|wkr(=-UmL>o|M&3s-!cz(XQ1;uC
zX$})`=~OxHleXId6p}VIuJo+i=CM`^3FK|^3y%2cN~8L4RqvA_u;Xg4&?wUB+|A7w
zx;1SoXLi0ab2BiBIFsPc4^8s%4M8KNpH4I_7<@?q5rhlqyzRJo(IY~_Lmv>q5_tj{
zcpRDLCW#yB^q-B-BEFndXryt^U(^^s%Jcm-9zddE?hrxhjI3hcWw~GD0r&kb*=kTU
zwS10p0r(i7<Cxvr<8#!j0Q1caL_nLQM7~zt-qzvnDrP}$h(;=??J~^VO?&)Eob^7a
ztW|Jv3BQ06UTwzXM@1nYklus{-T8+1Ezk%%bqP~Z;odz*f)XOgg*OGnjKl5X9FU7%
z@RHho`i-++sKEdUhf?^^bPk#Ku!`R&oVT^5`d8b0xDkrH(JoFvNbvi2*NdE-8zREO
z^;O%TA_KpRyYueEi>Tk9Hka?UuGZ}dgD^V;;vA5;`0df-m|iF}?#J1jq)_^(*<eN1
zTYAUpCLqnw0v^=w?aRl-#JD<OHTF7Cpw`-<?kl`SYM_|K$3~p`W05Cw&NcCxnjoGe
zmg_o`C=4JTag%&y8nCOm`SZ5)`NkUntA<6|PR8RXmZvf{I#T9BV+5#h%WG?EKc}bH
z)_Tr61Mc^u;iY}048YJnY~C}}CnQP7#>y3HNc^wg;D(Gs6&z$$<z(l?$7v!4>Ema6
zLvmF4YJgl4wnc66??-Xv9G9u;@Od8`?MG%%;^yzl?RGnU1LVC0wMX+|-V4plo)`S^
z^Ut)rHAYvB%}8u==c)t=zj--%pu@(Rf4-Iaut*ESeeAn#y9J(zu^W0XuLBeJuKEGO
z2}sN{TH(tH!urF!)~(Lx0)#*w?7(&-U#Bs}Y);2kASO$lYpz|>WP;u)u#zDIE?oha
zouCZpJXDyELs=JoHtjJB(!1)A+gFdQH~usP<Zncn_eXuA;E9V=!upzGgI3m%f2FCw
z$7}O=cLRyLQMC$hXX)1Sq0oJL?4A6U-iv(Ki~cL%prxF@163~OrTg;j#do;?K`)px
zeb35f1Xf(SIOYC~Sa5jF(%+VK=;eoh?tC-s^_P1s#maL`2TJyh%Z{@dz!V28+BHGe
z5Rf_YCd_(olbaZ1k=gQm9l-h@yF%N<PG2WYaX#T+lqdM}c=e4?>LJB1ymbG#&#o7w
z<<Cd>K*n`+A3bsw{I5S0I{lZQ4P5vE*t`Eu^Glp-3-q6k{x5&LqxWCr7~mGysM~+H
z!vFh^H~-r`hI3255EI8JzR`}<`Q|^3@810MS6^&>L`m*9t0=3+yi<Pu&OAt_t(f8D
z{y&$Ue$r!EJFe7z(B5=0-LwVhZaxLjbpJu(T0NY>k^aSKMOKC-dp}s$>Yu0F5oG8p
zHV=`?d!Cm$UFC8$d^X;pr`xdW^Voot2U9ehQQm7a)OBjx3H#_&5Bkp&9qhb)2gk9I
ze}H`>?knY;n`@Q-KCGNP<a$Umu>WZxT+->=^)X^%5|Ht2-TLQia`Z>^_{krEGj3ej
z$Wc<2+xhlCkAaP5l{ka_w&l9x6HS5Cg9pFO|0Sh(NsdmRZ6Qv{`qyuhJyTPv&!1-T
z{JT^|?__1>yS=6S!{%bSd}fCApK;`Q1FWcP2xw|gyWBsn(WUv9i5a*5xQG<gKDYkY
z_rCg%|K|$OB#uj`7}l)!h`|4n0yH3`Qmgm%vyYNwFL#I^)Ik1TIpG2J*`npfAN)#p
z#uXIQsUy1(_Sk@AczUO5B6c7GH{s{sPW9{caTD9^!z+g9Eq>cVk&F`cyx?HWoEI-3
z$(>y<==#gb%QitIN2_Mz6uHmx&*=a8l_~fY0o42A?q_}LnOat1{)f8t$xx6V9XHvV
zpO``JbCAfb>vL)daGfk1i-!m<*lke-yrP!X!+eFA(;fI9aM<5AwQC_wDu`;O5dpX*
zd@hwlF{m`Z?q~kbh?Mt`AMvr?t36{xpVwz$wCz~l7ei1tIEHXSd7S4Q5Mo=A(AoYv
zG6BymB`5+>g8=*v)b$r>1&`M5?QYimj~=r$D5z^IX=%7;RJ3n9-w^TkZdB@nWt4cB
znyQ{g$_vM5jNJS%wY{;q4WiOHx!JwO@#3wmSRt}lva(H4J&cUNAQBgEwWwD~9l5p<
zaipnTJN{$LfE^b>b&Q4O4HZs`RaDa|H7J3d4ED`>A7b5ntEAdj0F6%s`S{0JA-vYn
zi<N!>p`zcU7CMOEP}(U=z4Ofvr%@vy{LkKp2=dr}%6vx*^JYSwcJ%jm^y5HWy>xO~
z6|Xg(8L($_Yj1v7QdBUubOcp*%JP5OnH!Ko;xse>Pd-)itK(xVJBzQW?Q+8-W75Bh
z{Sj3Trf|FQZ4l&#m$@)Qz<>!8-j%F7>?t^u2Q+ztwtIz&KNAvTy|+hVL>qB{9a<cj
zL6MW0{pAx?3A>W%tQ-HM`v-lyYg^X48^8OQ0qEKf%>@q{9o{S%#?8U?#<=)447E_j
z&K1vT+*e{%URk-+vfl0_?vGb=3&LP>NKybBEOQ_v45~dp=sO!**>v3XLZKDZAAD;p
z417iKpGTjYQLxQamJ*FvPD>l+PR&e@9{pBa+}bMs@`GV)3Z1`bL{~IOo6g9f!6pm(
z!t;QfkBwEx1jllF-4s65KkT@&U7>TnOHo2OfJuS;_4-*{T-;;QHM9=^(38Y}=*;r?
z7Q|l)a8w+h#1{aZRDS-?`SGGi5Oxy-N-+|gLqMMn_-$b7@3fIW!#uwiz^4W#E|=K*
zHcVH&kNgNh!{j~-v1jo@h$9DJDFUCux~VV<x49o2`yv6-uX1XFOIl$#K=|A)*bTuC
zzi8_r8H3D)sOoYNVF8#P|0F-406&Y_ohS)=dn=XXKXUpYADxGi6axZ6w#G0q`k8@I
zYc^t<w)TY=%|CG<fJ3K^IZ;?uSy@XJ-akH^p!?Q#|AH4sISpLsy+1uc9ocEXs>|ac
zk*4xa`Q22mN@U|52$;MfrO1m=g-`D5w8A<+pu3weK|#)UDxmNhK7LenQ_~e{0NWG*
zMrqo0z1A}T;@w}|AJPx==$jL{@;@{Myn-NX4X<?e_fd*?U78BJOstqCB_bc*T=hOk
zr6|nJEXoqE?3>`q>Ffd~0012n#`VN7C4`AlQWo)$J_rl@nwy`$Gh0Ie0ZsvF&8a++
zF}uQl(g1)osf~Y5&y*1yY-=9!x!?{-`=YZhkISfm4nh9#(y~85k`2W!w#m{gj<0nz
zHcOhtkrR;@|A@)Swm1v8hZzi+1M|Lk;(EsUAV4Wg(PTPwXg!e77LYfjr5QusYH2MT
zyC**IID$pXK;9~A8R+PYuHQpHcVA@YCdOj*i1<HE;f(KEos|>5bwbGO%Z~j>G%rE0
zXB+kU%~&9icDssvU4FZbqTtout!Wtl<2wLrx2Pvhj-H+Kn{vM6;^V%y$J1|3q0#7Z
z=|~Jo?jw59j?n1OxBcEbjre*6{w0ur3&*8$1V3IPG6p3g<%kA3I5<#IRpBZ<21hk7
zAX?@q_u#_kzP7LtbMy}YhSyqo2}-13yt)xM;eq4(_EYd32I0yx0tP^FLm%lTNDk@f
z>%)MQxWz8=#E(Qn3jp<RlCVLU+L>va5HT>0+uJ3+xiB1p6a_6NQzeHIjZ~eoyxOyE
zn{!Vc6g3)}%L6jOYSSy<(9ry(sS4Lb%#YL9-scPTbolmlFf%P;=nurHjW^s(L(V5%
zi{^5y9tod+y@VjFTf@F(?-P7P_}h3;kL6Jy(e#q2w(N4f*RlMWGaYGCtY+m9_r)&!
zLWkwd%!?m27E_<8NI#2gA{_N5?qZ{icJfHc_%6slb+v`<v)J3v5#zJzv-sn0dMk*M
zvc0LjK}umEoxC1RT*Sr2$D7*oOD$)gxd1~!AC%YOWNYeV<lVe`SUWpEyVt=!EjTRP
zt6JF4NJ2C*UlzZ9hW=p$p9JFQv<ngy)D62z9N6UouCe_&BP)ai_=1RT2Le!-!|3LR
zpN+nu`8)ZEHQ(u-lpMMmn-wT<3fkEPIo&RX*NYGCm1!IvmGt3$k@*_3T0G%}#Ey=-
zy4spC_Eb`(z}WMdR&sGM|Gu!pHBDCD_-X%Z)e8~_mjJ6Xy-JIs=s|*wogG<{Qvqg0
zDU38Ubj$DX)8^o#m01UQIcw3~0!e|s)})XyK@yh}N2?lj>96R9_KJ%2C^TMD>jQr=
ztt?y3&gI`_n-!Pkb{?-@4edR>th?Cb^w6BjaZ$?RtU0BC7oB!srIDyo&=K4{wZ3#i
z6eGA5Mw(KJd!|ly_+6)aCD=U9y$b3p@oaPh$m@J&XY+)ov^JWe<8?g`ESpfxtY$<I
z@B%fwE1xber;*R<pkZJI@j5H#sW?@Jy?sW^V)ptS;CmKFghbmUemgX;L0vcu4rc|&
zFfA7H7N@6g`&f>ymx>LK_uD?5_bd?d!oVUs8SvQE%27*{K(?o2J<O2NKJTy(o>0`$
zskZ533Z9S=TkUH-xP9@nS>h|1@XIXa1Oacyi<Ztj+L?WTE*x6v)oocRB-z-ku$f?p
z<kXQbBFcLHDj@7Ji<zyPdTdTkjtXGOadMbi%6${G>T$9j9}}Ni$FYDu$EA?{odh*5
zE4InC>uG@a_CB&r;`9!`H`~sJVEv`rWlv(trEhupV0^y0+{=N!`m2{>@Qc#<FnB%j
za6yLJGv(|(qN;B*x+GQN`L0O6f_{eU!TIoE(L_r|hE&k{BGYbBky(e~1!L8MI)!fi
z&cJ|#A1gw1(23w|B4F30@=|mGff<zNV7q};P3B{5Tr#dDB%gOKU1)zX9<kUSszw0~
z<@M%Uah*~sGL>&n614J~9v-elRg`%O!Ohr+t|om@!$FG~atYzDsqa;N?D!TPXP;H!
zuYVe9#Xu0;wfvqV#-?-<n$~Q9y#M&Ex`MuTd337*W9?O=4h%^)4X@_QEr1F``{em3
z!nz*q{QA0e0S3X{qx#_hwr*}+cpQ<B5Mm(h@BmY~?gDiRJf`n5hG4ZD4>x=LFpiQu
z;ep}FADU7Isb~$bDQqrDo$TjI-xy}d6TcFp`g|022b-7BhgInL@_Ks=O@@(Iy-Div
zUVnH)289m`6KcVRq(V0*$)tpr>V?gCa@|gTubV%$SgCFAu<xaNbq#NZ>5BD~8;f9$
z6Psbt>$8TYSXe5Ry5;CZ<uAW>IRL{c6D+grwA@r8RAlp+Duflikq~>>9`b|l{Smit
zzAlfcy;{XwT-<qqk4DB@I#q#MI-dT5%3q#6=T_^nRotbtxVI6=?nK@!$<zMymFQ0`
z!*DKZ?l>8-qoYOX87)#DwGu>800BD2IsT(4)LvKHMap3L=nsAegRsE<xbx4lK3nPa
zy}7JDCrb*==zP4Bg!nO5Gj30IF2o5U5tlJJ+KGvQYeT0xteV}-^@zJ+?b^q`AFeJi
zqujIJtoFqT80pz?6J`u|PYb({b$9$O8Qnu<P^j0tnI_loX3nD#-T%VtfQo^m3dt9C
zRt}a7rA2R|Wm{}6;C<sp6(Kh|e}M!;2qZHYOW`RcOvmM@-*@Bp?^!P-76~tXipTei
z81Rx8Ga3$zNcA{g*Hl-q+uD11iFM*sPc9L;|HW}p;(eKhVS5Rh+9P|!@*Dn1)>xVC
zp^(kzqedKG#3+ki%ZO<)g>@}wE631kZqHQsDCoa5G(=-ksx(xSSxNSW1!fjzeh<8P
z;q@77>k_5e7vO|xP^>1lw7R&yxUE0qw$>nIQ+FX|o9v@ul3x*n43-yWL)0mZX7KU$
zCy!Y;@=>xq4xvxe$QfH*!oPcVz4*o_Ce^T^eEN>b&_4g~U*)pt3GRA`ecr$VY<2f2
z-7g|qyP~_fh(lH%Dy612!F@In$s)p(3wBkzwW#i|&li{O89RZh0q+;#9*4Y40k6b7
z$xmV2(0D$(ues_v+DgLu-GyPQ_0OWd1a<VP5U;HsHfl24@=hOo$%gpsR_MBI9G>bv
z4E}UmJZ*-mI?sFiy@l}iP54mP(01ww^GRr^0Q9>#TO2`m?7_lN-l17#4WFd=Cs@S>
zuV15@>e%BM!L1o?=<=bP*wW(mexqg|_6|HJH$|#osQ#qsDuHx+ig<n=V@0skC{(9F
z*o|g(sM%@c1;CRB;6zAeam9Cw{TeWPCso#JId8}7>n+sVo7ar4Dp0xxek9eB(w*>8
zNRSGyd+hl-To`vBaUmiMZ70{@ac^n(n4-w9Id!{)rZ0i7*L_$rNB2H97O(w+rJ>TH
zAEs$21?MA*KjJ&t1Hh?piSB>?_36+!EzKK+5~}lVd^!{OI%9;3W7ssQ*G$uGDancT
zd1v#G2jVyFuz8ut6ME(sygoY#$IrQ4u(9R)7)iz!iT(K-W&wD3460xJL%-2iF^fm=
z1^2w@Mw;+sjrDZ3$IvJ&PCDm7nVaK;CqPOs#B%3YY*<>Q340-WQ>9mTg-H!Bb5Lau
zrhS%-^xq&{pfG$wpZ(xnpAze7*wxyX00LQ3ZqH_lnpT5>!lz!CU!<q_gi6QQ>9=}f
zpg4CCGgP8gq`filD{Gd=Gg^tJGDI$XOm-t4x_AoxI`tIwYJx83pIn4c&S!JpU^cg>
zJ(e~p#&8FQgA7-C;&@D2k}oCY9*_((Q!-R;XZbs%GikDUH2s*@EZ;3jda*A$8NciG
zQf#+wf9pftz<VNI`TC3eRs%QZ<>H`4iBISl3DU3YP=bWLN%T=t<ZcTiO$%(BNvWT)
zwJMBF-NZR@?Rd7dJ;E#}>Y#zMy2o1evw}A-YS~K;343Dcaf5{}-9wztzrI<N6goUp
zOw8vbEUzfzb)!MS<b7C(LrnXqz4k^i(U2!HecfK?%Px8TwWyudQDY@b%N8rEwS_Gn
zi^;R;ixgTN*C{;~iO>F?h=EOPrZ~i4JVnKd7Q<-q6)aadTlCe<y33<HZ<xC!+-qEd
z-p<8IuJ8Ay-8N0+gn;)^KS9+^DA~0jsZ_oBAg6kg*dqEV0mv5!mP!+=(R?2DrH90u
z@QWB;kgT*rWciGjp0@V(7}V#yLR%DK-9vaIetBiXvPf-^&7s)-;FOdnALfY3s7g1M
zJLP=*^nr7^HB;~Yo9Cm)Dsl14cL|4Rz7mnIty+<>*yo|~JFcy*V-WPl3Fr^6Sb4OE
zlC~_`yX*>1&L@HP`xZ|^cjUx$ug;J=my$tr9M3)kqMz;_4-R$Z)vO<#?-f3wyoZTN
znbO?eS4#bS^wne%pZ!AaaeFFlFPKPvN`@aySi!t8wgcx+I0Y?4;A>|sM!~J3Vp&AI
zKu_$QIND$W%J07Za0t2|tH<Q6&7^WJManOCu$byg9e1+EN7p|wr<<H?&NNRA39|DG
zbF}E@4UqHL51tSEQqfX)n7!1r@H}e`dxd_aBjA#qm#0jJgA);xL89F*S|a9n(CxN)
zlVe@I3KSsLpZPdB8Y?B&sYw4$?0ceSrg9dnb~-RqJijvh+dz(FOS*3T>&kFvA=b3*
zWwh(rn0|3X5{YyxJsTOO9~nV22LU>C>E@<HP#d*y%ZJ(NOxepzDPT&R@&@jE&gyc;
z(RR_F$%kkKtX)~>dqqP-v|(fd$)}%+sFv)Pi$c?Rs8d>k*P-6WU4<{b;GT$}j>7On
zk1)IlH3rHQ3H6eLLCN=5KOd(Kh>77vga;~<^$fotxEJ&~$HMFGs4u(KF)ih$tPpP2
zum+_f-AD|9<sc4ja8LD5!90uo@(~vPiYNRP$>}=>k2(BPI4|Bk=NzRA2)yO#tCLaD
zMlEK<6@SbJa~j6Rg<Vb#`JErjyy?r&&RX8DJQ`~)T#w5+xi_U_V?q9F#DR==OS<6o
z&)SQSU!!K@TccOcb-WK3^<SN1tvwXXwCM{n3}{aX)x8|xK0CV}Cx{b*mj{xJS;)db
zX3d<F8Qm47|I>Fgi*lSnC2U7uB9)c4pzshasDtnD0kqGi-fp#yiXhk+@e1?83kHf2
zj3A^+GZyh)fFz9v8y4Gz;gL!rVi~>9JP(J?ZM-$ErrNfjuTRkSCDEpQ-SVW|Ai{qc
zL$l?Hh+Te#aq<)hWC6;Jk<{a?*#TU!@3Dz4@fvI|DjLi<^5Ml@8l4X_7L^7|9GE%B
z%9fT0Cnlw+nniPkfwUhVe?27;cYkAyol_7Q8w0;w>eB6{O)nLGo576}F;@^`Y3vmO
zV=4<ON%gC!0O_tpWv|-HDyw+pA9JVFrkp2+)h8n79*R?gZk(3YA^!}8W5Mwp;D|Fi
zMWqI>%3tkm6ZW=HpKRkV?{1c@HWZZ?F(%UGWO6<J>W6;hK3T{CB;16<8!=@C^+?;N
zWxBiMCM9ltzKe-5dPQoeal5(L_86ug?90u4-VAh1UERG<R^!}8BL?PzI1X<ywTfhJ
zIFgb!tha@xH=cLD$QW~L+wzgrNCMHrTb?Kv3ohJ&*zsR(?6iUx4O$rdntlUjiGfFE
zGFw*W`IiBP=f~^&^BaVxTl^~vTP!}k-vKGnrp0c{tY16wIMf|ELW@nxD=zl14a;V;
z=jW&yBSA1UYz&-g{5?^A!KP)xg_)I>z`|e_E)iho_nBEq+=kLK<-LB>N6uDw`l3%r
z<*hQG{`4J!$SRAgfnJN0Q8RKMBL#45!?xhkWH6ERsA;2#Rmo|__+v)h5#)i)<)3V}
zZG$tx_WDZo!cXy+H|qFLNKpq!c)_Yj>cAPw6mZj3$PjZkP1-bVoXYYC(SZ$HUA|+3
z$!mY{Rc4gUd|ZT^(DXWiJv*$AI$Z|Jv*MpYzVGOQJc=(fUHBH5Sy!|^p$Z2`I&B`8
zjRRxM-@kKaFVCi;3962>R&|h|tg&NncTn((TwZp**M3OYq)Iq!xtIEx&)x(!<&CQ<
zS_%yw7jr3%(HA*Fms6<=50$R<h(t!bu*bm`(ZdrmzKH0ES23SUJuesCnPLvxg2RMS
zYYV#EmNwrwE66Gh`{qklzj=BItoA0jiVI@~w;pV0LX*D8KITXs1N~8BSfSOuv|kvm
z>a`f8RINQ)X_rV{4<V%RIZUH{L_e~D%_?;JdbOcmJ)ZsP*MARk)iNG5RGxQr`~W&^
zP=uqt!k{i8)=7wmnjx@tcFeReyI5V$^>pk!>NJG<Y&T;*U*}f68Q*GOSdo*rt7m6?
z1KMZ68b$9U>7aP$u}r#RRyBLivYu(qpqX{)t{+(cT3NN{bTpCc8w<nFEb4-KA6XJ~
zwMk5lKdbqfYWWL~Ci1z3b)zZ8b*J)iW^$Nut+XpX2ige^HRFEHgf#g4W_-ilLOFlN
z`l^dQ+lFuE31w>MuzvMRF;!-VDT%bv>CP2%%dx%%D0lIMWqx)(49xz3qhDYl-=7m5
z4!8+KtLxW36<F5!UXlZku3LhLtbsV4OIB%jt?KOgGipH+*+1(D^63K_WJgh*7h!hm
z&vj4k0}t9?FVTj7K8f7n`TIM_of{bce0)0h&!_*tT)9WlF7XgDy`AE5EKc=T=Ya9}
zPcN@OUId43!TlxveD%R+1}uf^o%HwXKhK79^T9t~{x8q=zg@YOkI6G`$%VUEUaw3u
zNcz`ZKja5_<=iVSD%<2X`*B>Pkw^c6iQ&cbdv|wtwzk~C0WG+-Y4I@NK1F<Nl9smm
ztn>G`&q6mwR4F3>ZNayNk4?3tln2My_a0!`Ol3S_&Y%;{FooU-?PU`CHS(T#bEAY^
z(bW?bj%ygXuoy?Ynd|Xc`~>ICuOPb&uS-9H+FC<-GFnQm_=f}&&9ehRJqFyIoZs;Y
zxrWE^6f}KRf>wKf#}V7U{CfoYVWhTdtw{pu+-tDf%W8j@f}AWSrjEm-13RbF?0km9
zeavCA;gNUv+o#y~A8>9Qw?Ei+a<<zfpQ$OYmdXl$2u=zzf&9iZ?M7_s6w2?uuPz&X
zq5jrE4!iWL#$Phw?26Nxp2@p`;n!$u=fvF6gOc`t{B=#}@&|*n{h*tl-0C6)&Oqwe
zM5JU0IvVb~=$K{W3{4k~$03!(|Cu;kA}k3%9r*Y-&TFyzgBE4@#?*B;e2<+*l4gY_
zh~66&mBQf$tn3pE=&a`1^cxlyGA2q>?C5^;Uz&PoQgt${2H!6;vi*E5CN>hae4}xu
zm|d~cz|PjuplE_~Bx)NQIIo>gLW^j_09KCjcaMx}*7uvfBKj;i5v`Wh=YMt{=#0pz
zYXk16;AB%FI2o=Qo0@YHQ_?^0I6XSq9<fQ5%gD>mtu(kAOljJIo!=+p%rDPQsmv5f
zRZ*{SKwRt$!1BTzO4yw=LYz_)VSX)bqqDQmX<vi{nrFXw)kL{XMjB7Np*<}?vbl+c
z?u9%^Q`Gc(X(P)W*kQ>UgHKp4XtBFyBp5tk^jk{0ZRGE<5&2>CJrFDc@W^rT@za8^
z>(#h^H2G!FfP|zb<wAh63m@6F+*6bh3MOW9lJ|&0K<gQSl7%UjgS2$XF%&U~gRiNH
z+!^qy_7{(iCQylv!HalVU}K)?;&f`nLe!g|&pEQJ`rW2n?eYE3t%G(}$L_G>M_*P<
zwC?@ghfg1xv(t-<i*uhHi++6j%-PmFv8kjk|8pSdRQ@cyc}Vjao@#VdOM6nO8iO3u
z&M@DwxUPn>-sRZn^VIzGjisVjQdJ4<%Vkk-wcpKeEvzgpwHdK&n&%7n*QUkxth~1R
zl~)kmcyx^Y?X^{|F#R&)sM7Zs{6)pT+kbM4RK=1hpli|1^_(SE#!u&TjFx{*a(-uh
zh_RMGz8Uw9I0Hc!-y{FP$M@0Wn~P9}rJA!*jmh5@ZgRUY*NKSaWl3@dciww|S&);%
z8k?U$r<|tD!8I&-vSwwvOZO<~6=gLN{nmSqjnTm$x#cA|e!e+>%gzrh;Pi?`%=IOZ
z!`w;V+uHC|GyF5UI#FkYAmGSkZ?xnZQ&AmNRxM?u;J4orGp~?g(B65bh&#?W+%8PV
z%^ngcLu2Tr9g<TcX)U1<kntL3E0pWeM-D?4t8JO68%k`5FQx^F3)a?x_ua0Rn}0p>
z^zya3Lmf*MPFO}x7_n+vZ@w@tQd4!=hn%gp$t9FqT^6{U{UQkV?_e|SWTWIO_92}8
zqbMO~%+sW}1EWqBfseoP3(0-F)HS=Ay8mG50l_a4NaCjci=>U6a7rZ=Gsh5jPaVjP
z0Zs6PUio7Ng0#k8CDRvhZ1*#w^wWW7ge6@h>LK?ChzaI)P$n#z_h~*izLsK?Hf>q6
zgj}nc4@`mWdb#%<p}X4$Qto#7ihk%fDyNDb%Mb*gi5YO^wCb62P1_oE8fqpb{8D2P
zJ6v#oZ%vIMd#@kAj_AjIg2*#cJj}0*^d=?5S=5kgLA<6|{pORd#O+E<*8-C#Gmtg&
z$1R1+h5if@uwJvuoqW=t<ev+o%UpSgb#-j~9MO_3yx9X8M3ahidO3dlFvEd7$xXQl
z(Qbam?IBzwV$EXm`<)rq2d1Ddqo8r_y^P6DuToS#O;uc!!e`-65XTuCbgm#*f>N}<
z8Ygz2{6cZyK$Rl+4vXgE8(P29gsob_X8c-CMm=hNfSz*FDan-0@Vk&m49Wy2mY0Ej
z^2Q&1>Ud*ln(W7YbX?;XEIhYAR6B<`K3}cov+G{V&}SnO`~EJp@j2wQf!hxPl<)O(
zCg-!>2snNjIs0K0vNkzBHs(h)oa!W@7>hT<4cYOvLBB7C2Dw&T+8^uH`rT;_S$=W?
z&s$%Mo%Yo_vZfrJR95QZ8^jjdlU?sQJ_KwJNI&&!-aMa51tMHq$Xiui{*!8Vqt}{9
zrwFM4T|CH+f0^L`I^=(|1D^axSzg-}f4x57*#7<LPv8IgeBI>Vuj?!4tlLdW(#jPd
z1UT^Di<y)HRXBZCTMrPPS$W?Z^`=9c#0>^yNm~tA5uPYPZ(P(^exwHhv@d3Id^#Pw
zgN!Ft4HWOA);^x8@-N7@;C=*Y5Ilb&7zcsu=s+(osBygxP9)zgM{TEmc?ZoU`0@$v
zd1kEea=?jTq{OCgOjzx>)dNZ<?6@_mqWI*I<#fsN*-t~=+S3Uua|}Y4inJHew_Pv?
z%}Uohv+BJoRB}d~i?2SW1!wfdqxustEG*1ztYpvcuOZJdY^*hE?7DX2t=AgD>aV(c
zh78wpsfo*0psIeY26cxBq`-}<Ll<F2=I2Ox?a~{KH=5hOZq2^<Jv&=hTx$UD^)i)D
zsAC`Ngc)ueO*DTFb9Q!SeExj0%B#!&*CDs#*+=oN^u7dSKbnJuMb4G;YD023{tIY{
z5LdiRRFtu)T;gk~uk}CKXRqc`Bh$NUedfQWr+@ZA9jMk{Rf$o0t@&2@)T~l<LDvWf
zs$9mPth5iVGG<@$^9R_S%5IR447In{*Zth-&RX<vu^HQR;y&82)_(;=*|qJ|VAZO}
z@=^37c$+ZC4S6Fo_fu2dC2srQ+V}rBrQr+Zx;mIM>_Qzo&)M@rFZa|Pch@2%4S#=;
zrj?05`dw3Sr5Tl#pZ!~|kG`X)W?)qMjg*|c+>m)`#V_IkFAwpf!29>^67zZ=`D~;d
z@13}=24e&7AjoZ8HCaUu@UN}hNLzO>om=$8l!fx1{*+Y79@%IPIB|1zudmzi+Y6-I
zR9f7LFShF<&kEUQ6i9si3~)INm=6PfAE3f7G46XU=3ygGNY3CkbVXu(-c7^F$>DF5
z(yub;+ZOj{K~Tg$I3}oda4Gn1Z!Z%zgEp$ED`&?D3akteLxMogRDr-g2!nHtDUShn
zLTduZrcNXpTv(Y$={|mo^N5(TtZbst<dUM^h9(8O4w326M;D>?OEG)L)0kfBg^uS1
zBHj$<Bz)<OnZs(oMF*RGtEtWI*}dl^j4}sDSgPjaSyvzYm@Y48gp$9Tzu3~k#=&+q
z1%aUF)lV44{>!>|?#JZGW1A{4RPBJ7j5O@57YRMx6sBXRiV93f)c(a)F4LBGwJEnX
zp@cl$d6Kdhn29Zfs<yd$d3SXYwTQ*(+HnWOlhuAukm9Y(ufJ1QKv86ke~IctNB``3
zwY`dQvR&$JD|C5~;eCm59JrI{$%?BA%;P8EoX(U}o<7<-V%*lG4);31!o?yHZ0c#w
zOV6GhnF(PEQTb8gI$JnEWw~u79W2F_uMKr(4GGk7N8*P_IP55IEd)^TIBglJ+r80@
zP2DA7H$-)(Vm#QLE{<%}W6-M3>`V3z4Go<jQjZ_CrlY6Zm@PqmF;&4E2v=yPbQjx!
zSM8oP8bU9RTKE0hwFI;<ut{>?(%~)Q`5^W42Fz+xn(9z>(pRUpZ!4boYegiu>i2L9
zZyuwA;%MU7xoV?=d|x`gJ&vg~MJ7#Vn^SHS-rU9<&gKMe@6BdC7NGn|`s&)|ZHMVO
zabc&+7{wA3?KVDUGlzaQLgtxyS4PL}qZEG4uaZ0#Z_85@TqH~jb6b~i1&cKJm@TKm
z&QF1lzcYw%?DD84McjJEXXo+|<37>a+*){o>wX8SndtetDz~AO;sJYsP>ogd=npDd
z6Q&=W23whB@VqJ?1R7I5liLLE6gMi?o%MKQbgJF~9?2}cy}WolePEi)?1n<aJjVt%
zG=oMZl_ADLMq>mV8gqZ92KZb}RCJ+E!!yEMyq#yqD7@5lH6>MLZw}hnUbR#nR;f=&
zs|rlRRKtdU8JUyW!|kYaH%D+4^j`PZB3A<>K5=q!v_XTWjy5GWPlygpLK8W3%&Fc;
z%T1N*Tj=ZDz&+lY^4O=6o}Qk$XMc#jEoemMG1w-|(=gLzcxV%!yZ-rj<MQHC{u1rN
zYTGj2xJRtzNgG-iBN>-_<$xYf@oq;smd_l!cWS8yXME58(E-zQCMnq}7MoG8(Xe^x
zg8UtFd|5FH?}Ly|BaQtv14?2J*YVt{U;%+z^X!~3@`(zU(~}%bQZ9q;Gr&1}emnXR
z;TF7Nb8G!!Vgf8pTtdw1I&*{zo5_Qr*n<N%EsdrCfzXUnd@062U@>rseY(m0nm&q#
zCW$?s(JIo;^JKZt<J6KcsO2Gz?B!DPh<fb%8#i7a5(+*hCZ6b5^I<v}j+TuXYN$Hg
zrC>1&^n)25w6;(MoSOd1=+|BS;krIDqQ!K2=`tJMNnDV*kvXtvBr6N|x?IoDy<o8)
zt~{>48gw2;>muJIABkj$ZuxX3SaX$|msKppY1Xlaq>(wqzSG^)Dd2Iwv~P$p)wbTP
zY3pNVW@Kpi>Y{2Wp6g=roHdr$X6vj|F-ulM<Dgua>k+{cUPMlO`<Hg;gL@D1^77sU
z3Qv`n;74|nve>FgxPRfi_7M!69TQSKc+B(5>n*RrQl+{B!Q}Y3R&DrRk1ECH@wr^~
zJ~j!k$M3vS23qm!$ApU(hr3`SF0O60=&=BKKJ^xEYXpxdCtG1is?b|c84m8WsJ|4a
z!^=B&EsG3h$E~WYIiV1kL%d^tj{jvcF0T9%iM4ZehAAIS5Vdt~NQis6i-;;A=z+Nk
zy+7O~(Vm%^MO+A~Vpp_%Zu?Yui!wVaKZqY+Q$eFwkFC}dMkstBBBIw2%E&Jj+?C!N
zd$P63tObsrAFk#rpp})p1xUnc<xtVXbXj-T<y5hj#X}XJebn9nRc~8@kk{652U0@#
z^xR<-HBP3I>=o;e@V{$!_mu?J<@-bCV2V2U?7+)3WpyM&rH30&4R6Kv`uzHPuWgkV
zx~}xhv_4m%uvzcA0-r*9I*uQKCX8|XCJW<a@mCj%6+O)oSh{C(qMN-hk`V9|<6!CF
zFD_Oyz#?B8Ih`#msi>(Ya`Q}zDX0*mr=cX#<frg~#=zaEsi+O%CxX{^_1ZH5gv}#)
zl45d9z2rJcqYi>6TURT>l>kX^Ha4p5{Svk7iAu@{%P14M61g(f^<YAESB*!SR-Xa}
z=n%sEx@YKE6y3{q@?;^rPDiB^mgKz7pPW2sLp<|TR~L6n&P!aj$+m&C(R7wrsl^~r
zgBOs)QYo~G7^oO8Yx?Sr_YOP{(lTOY(t&_FhK)ICYy-)VrA!BPUtd4TlNFn35)Gtd
z=S;n98~;(V>7%ZyJrP%OpG>fOXv(5*RGTl)yOZkll)N7Ux=&JOItC>USqUx}s|BUF
z0K~7~ybR##0~M8+hLu%u6%3lHD#s(m9^p<brm3pFSUQ0EoMo4npGPdqKOo}T_%bN*
zmGpG$umGI%y)T#f6XlQ>!8Z3vIll6(aSht+Tp(kFj_SwYp7o`_Tz7Yb^WL{^oC@s@
znKmS8PlZwlju*g_M|Qp142lBHmX(;h<6z0v)%Ih(Ry#XMhHY}mqY*AL%r;Q}VDbc3
z3mtK{SjFe32Pf*6s8yl58~iR83Mz`Fw)@5Hs8h$yjDvks0!DQe4aHK6)zOAz>w>!d
zq{Ku)ZSvYSukD^wzgJD87Z=+j+}qYW<TIjFy$M1QG4bydbhs>Aew5EY&4FKeo&{c`
z8xn+^JeSt?`(S(3$A)Z<XPJaL8m%TJ<(EZCtp>u!TU{{sQz}XTqX1nuvDvNMsel%j
z46ZP`&dp0gpQMlvc#(UWiAzZQc7c0u%+Dj1hL}M(o6>!yO4ZW~t^Vqyq~*}=kWh%n
zY)^L*SY`50aMV1ewNOcYecD$@=I5PxGu)(Pi5Wc!9!DK@A3sjxrnWI^UA(0oISar7
z=eSSgq*gMNNxf4#tJ`L!SI9Tn6SDVo)X@rZgVF})LwvaiD9K~mSM0}0nc{njQ0C)z
zO8{Zr;}8iyg@Unlr^kgJ%;S59)w7q#?gU|WcEPTp_QNUpy7~Pot3H!7Qy6k%<J0(|
z=uZ$j5W3tbi4dfeCl!(tGYC3Ev?uj+cGINPp&{`UT*CrcAGXo7(t02Cwi5)4KY8>u
zk%x(Er8~*0CMYvKd!+{(PRwE1e<JIHs(Qb9<Tiv^e8`onZj<=*+qH8**ZV*mCMPe(
zT;T1r7uYE5vz$DTIYr;Rcvz1*%SoyInEsiDD}Ka91WxXi5=2+)VWej}C$D>1c-ki@
z_B|<q01tO#Y3tWpy8L&(Cya&XY45x+P7*l`e|IBFOc)bjhFzg>A2npfcKOMa?t^V!
z5iwKwB*gjHZkrr&3^b88`r087+$mM_!~N>WUxuJ7uIp<ehtQ7W^y;pcgji9AK|m<+
z%Fgmri*MQkU*{EYRTGSRxK)#ur^4#%QjYUGKD5a_CUl`cIXo4jP6=L(tW!HY4lGI?
zy_!B(-PEnuC2^sT4ipd&6s2ma)Cw)b>|W*{ETY1<7hk9nOC9);l)$C8mb@#Bl*<{>
zDT!D<uz*$LE=mMZFE9(AY0Wao2lDUEZ*#gg{V0Q9GDHXF39jb6$WHRude0SLSfqA#
z^F~1PN+GXQ)k4>)uwn5;b-mnk0}C5TF~**r#M<ZYmf!8x9hA2kbawtmtWC)`)dbKc
zzJgwmL`J*sM;HSZ9}O1Avknv*`q;2C>~bY|**Fd3boXF?AM4&ux!06LY;I8CcPT``
zZh=&tZBpRipyE09W73(DzF4L9sTeM|jjwHOpP}AoaRBV&K7Uv+20&4)K*dJ6`Nm@e
z0Kdy8ru-dXo0jtBaf<ApVqfgU_bn{SJ;aUgiDkF36VZEZEWREXvB>nSwLs?>4|jXA
zXt~Q~)E#-IgF5cC)IfC@q>0LjoickVQ%2MsEIg!c6&HJkbFV!Vda)U|OLV_&d_Qv0
zK;8${=`qU6_9`I6{&cUnj)Nfh`1j`SCrL5b$#3>5UUk)qLC{Lzno&0{B_EN4<G?p#
z+z3IoL8T@t_gm<nFOHgHMtd37-*-Npp-f27+So8pmq}!d<gDA@C~=2*!;{FAGWw#V
ztb)v1GWQLNmb&`jF%_lH62gx6j)(-En<jPZU>B@exvo3w%a#wuh-<&JD$+#ib7?y7
zPL^A&szmNHLv=OzJt)nsqn!>2*kilj6$sKsa&AwR7!HkI>d!|cD*JUUqar^8|IRH^
zF);%4EJ_&1yv~?U;DC-nX-ua3*<H3S@%82Vn6qS0Xd<bL%9icjxNYwQ_ZSwrwa@~@
zO@^5@SG=rQXMSF0G9B20<8Kx{PPX4^t2-Sv%)eo$sSwN=Fx$~Z&0*%~7_j|l(F1Jw
zgVmw$gL5a`HD^thDhI?$O{d5sLCn?L7j+-qaIfR1Ao93;Cs`$H1}2dIE^@kC%L2qH
z-V-WeJRn)3*n*>&Po(_Wo^dQiM1@U`PyFaH0kO=)=Ts~pHg3=6kXw_cBO?p@Atk0i
z(_Bz;6DV--4wVaKt~)-+y<LL0*lU_*JQy`pj5-!#sXDg#MeR?0uoC@YPJ~k9s>_`m
zDtwAU0IUD4?7QQ0-O)rL=il7@&{mUW?Q9)c<Ks~$&B@<Y)kIe(42fofs&YD-SC9M}
z^{k-Mni`U8kCq9+k@NfHILENAj%!ov2z83&Gh9aRGjGZR>?6WEw?T#;kK3~qjSx~|
zBIi6+LYzk;ViaD;_ef&Cn(CG$ff~D>&vudRA;iKO1C+w0r*ofmN4w&TDDvHXdKcVs
zgnjywxu3PPUF|JnGZuH*Nq9Sx<08<{q8>$SZ7vh8;H%l(3_c8=WW%jgIEY@+9rHY$
zn%tEPsoU)|)p0jML;}Qi_ef0{M+Jiho5^w{^PX$1^y%!k7ba{c$CyjDJi-^nMOLXf
z78n!_ULG!Lt8=zaPDs>h$dx8y8o67$LV+VA_JZ7J#W$@>Q@Gx|EG7m!zQ=?ucKv;p
z)hm|blA$RK(paMPQ4l-2dGjN{69YRkrFMD?oc)kz=j^cn)DRUjbk16kl|Nl=tgU%B
zG_)7Ifn0SjYNm-3biu{NBI2{(3y;XR-Vx(47#{z6^t~ZjkMeh?HEcv)w(3Wm{lMfS
z)Qy)}&)<wTJ^{}5zC0495thI}q4OhTy{C+pmSJDQ^jek4v=?yh*U3MPq2Q}DZLZb@
z2QpfUy5oky_9VBRcU<v_@sWt;3f)HpI!Vzy!op()MP~??6Y+s@HJcFHuORu@EsOJE
zl?tb&)%Mk!Yk$Sf2b7e?%)(aTQ$1ukcTbCLC%*kMs1-cr5z>9~ZBosnbWk>*sj<Yt
zQITH5kr->T#A2$@`SOFlA6UskUaN){TmvgrV^Gtg3G6=Y$?<-k_bW@1P|w`$=XpE7
zQ3k@^h|3>$4U>Eh{bN*wbXBxe6jZE>)XHrpPmp2txVS*HNmCO?#RYbou;a2$_^c}~
z5w7(avE|7lFfecw+}?{L$p9rMo7K({-21|5jDo+z0AYnh=L(P&8%_KFXnX6ZDBE{!
zSRWNsLTMyrkS^&4m67gdDCzDTQstpbx&)*<hi*i=ySux)-b?*`d++tG{jKk>Zx+ji
zFx+$9=Y7Q)$8nsJ^>y|6=S>240uP(t=ZJMCD*ot=oCG^e;^8K5vVM9x=Ljd!tY^A9
zG`rT<RT-9<`f+h@(K0bXNS8cnYD%#}U54{DS5r-0VMHKeWQ>wVz~9e&*Zl6n{Wxad
zbB`3e_^6dC*?BSN*l4+1q8pT|ePy;^V&)W-Io&s8e54rjrz*4*zS_>sRsm?tF+^!n
z_jLR8Ra$Kf*t2OEOe;t7CTBV~eL@LM>aUMb4#-otx=j6p0RdT#D)g5|UKlUj0ViWM
zjK4<ktzMXL8U@5ZII>lrqdT5BF>$HC?Y6`c5t!EvGH4*~NC=PAP?XhBQ$8G8?niKc
z4_g)%IJqESHNXLx0OLI1;Z}6&C$YG~ZZ_@49Ngk0*Ic#T7fA6Bc8;<Lx3>I2?L&L3
z&L{Ss(#ZDq%y+)KTVfu*jT6{vyR-4dTOzu~)mf{?u?PA~xBTu1v2kZ`d-cNQu(}<=
zGVFGH(|EU6Nhgj_rH{f{1$xbwMkHqH4T@F+PV!%_u6VptTl@Qy{b;)+{5OJCk|i2q
z-$DQR@~t1QW3?Aj66^QRBd@8Dqw^Q0+J0J|)%!AVH52=O0dS;^`M<5Jzm=p^_z0)*
z>MR94TeJi$BHT~*_<xj@P4M)8w6Hj}GV^pkT&;}0-;djGxLXMj_YtuNwRq^tHsOG!
zc*wQK&0hCWDJBHq===J+D?+ZHK7A@CRXs4Fsx7Crwzp?;D?pa2L*AAh8Ib<#BH(DK
zV{h;UeSG1dv7aa;sx)?IZH-byWc|X<=x(B}ueH^oIW+^Z&L}P>-PI+@s@?-YQHA0e
z0XuWc-ZAqo8-wlI9*h2tG{trKW%>(0ba*SRa;U9t7X*uUN}ge572dAa0tm^=uulCe
zGZC563P;~jS!!&~S=rwpVlTfA>P2n3S^R|s<)UG1>I7b<_k=5y9R-GTWzN2PYJ6X0
zZRwPc^jPBL33<7h?Franr}Il~>#BZoX`}NE3X0K6cX!JKcq-!xA~HbMwM11?#;X6v
zzyf#Rnxj^TR-Ws5)F{a0w&sS;dEAv45fTzGQEJ4pn8Eaf^rVz}!C_JB?R&TXWi`qm
zO1%2R81?pWV}Fk~LIE=(kCxWIW4ix3%1K+0(2gfty<@_ExpaudEHC%Tu5#Wg%46ut
z%FYTY{#%bOcMeC6F%lw^PLp!>@)z{lU4{q;m)j-Zm<_fXg?3#@;o)-H0cAsB+p8g*
z7e#K1{=JPBEE{MF>yn)KsNmf5r)HvZ+WBQem*mPv!3_UdCT18>eajO_mjs^~9F!}N
zmq}#pHRnj?a|!puWz-yUl5H#!xJgYdn=xm56)YSvm_AI~mmEwAK<b(fnqqQ?>2V4l
zT7*bF7fQC_W;}e|I0Z&%;xH?#l>o4IMS=(?W#?t(U;=t~^!3u7TN7e6bEgWzW8-5C
ziMQ{jqw(fl3>J#NoS~y9vK^Ic&Bn#D0{pe}WunTt`SkAUw!=NSgbXq7<)v%#8R3Z4
z<uF}^#l`ZDKkL}EW`VNN{-^WPqIrr$i5Z}Y<1i8=eI0Y(8gJ06?S9d!z$AFvTuIuV
z7%;kR51eY0eG&{Op2E6xN$Xvu;C<}|HVExad6qVOrE^ufuP-mj^A<$U1KA_V`FBsX
znN;qOblGt6@X!eOc0fcV+7SB^cW!oY@N(eG?3ht^m$<+2WDDKUu)>R-X_^HTzmDPI
zKtB?VGgaTb-S0u%M@>VkF9ffk^13%o%|h+-oU3{Lf?O^uO*pkrkbO;sgO?AVxL=_c
zBkU$T9g#s+h=P-2tVs2;2P`^(7Lp)^rHpSX^VLA-hQcGAEe{65#4{kQto8Sw$=)~5
z7M=!3C-QN4{EUpzc6A*ODFBF5fae#m;}On~#~8f4m<UU28y!`S!N!x0XQ5-Gzd3AY
z)V>5^p|k6CulB_|1wHp`xR}53MMnwrq@(n5RH<P84Hi|uYQs`a!!0s}HkY=#`Ykx!
zV1ktAg6YFs;N!%h?IC-f7lTwl_B?6=L6zou7RLo|qarP!Ol8f|Ym<q+Ix@>U-?<v@
zo?gF0j!6#SKD*4?KO=nWd>N1h0?$Q|6N?d`gaL@m7;o~1eT`M))r2uyd@p6<UYGWn
zz~#a2x!~Q_?28629J{*QTnHrf`kPLgsaanC_mIt%f<|Tb$mf?*pm+lEy{{odm)x55
zgCf+4TNvLcte%HY^qxHr$)O9h$|r*ehAHZ?j2Vxr;Qf@QYv;AM(k+eE^*_PIrH&Rw
zb19hA7oMII(?BXfJtA6o9c4QKeZz^rOt`AOs<L6#ubt^+IXSs_M%sAev5F$oaNK%r
z8s)O<WJcoYVX(f+#=+Kb+_m+h;mUZlJx?2Ud4pWkcs@ecKXbp~<tEUW(y*AQGH;23
z*Koa)kU>XMb03E6*Fj+YU68OJ?;sg|%AGdoyy!O6Zlw*shi@78G?6_5^#?AStMrv$
zD{06fs6;$|ev0CwW-<*oCwcva&Sy3eli$N5>r8fC%v2(!Y2U>NZ{)k&owg^b9qyR*
zW63GOSJj#7)Kt_(ppEwz37)b|7oF$9_^h_=(Yr+GwVIqyk2AG7={+_)zQ_*9s@$LY
zYEx2ay-p=<ypVo_%Xiy_0E*Ec$8NwfgQ@(uxF~p`+;A`wbjf=8kB6ml-}=7i7zfkZ
zd_B|jI)CvyYD}<x-A|kG#t<5VF1wG=Ay*f>FOuC3H)#-AN0&E8Lq|?p@aq8LLW(!}
z3AHip$%K`+8NH#cs3gqJ7qN@H73Ph~zq7ms83rD8TVB^Of){HdRtZ6w2xcRXn<G~U
zPucm8+L-l7wPA4n=8bPw-ZaoK(Z%>RIPW8XMXzqwnWQL>t6A64_Zp5kE`Fux>6Zj0
z@>$N^9&;0g2&c_f8?^hdZ}WI+78dpuT3Qk@j*s^CcDDMrtX5UmnzB0`&OcC<?EWTu
zoBwc1mT7rVaSxgIO=a;xzkr8G)^N}(PMxkYHG<%)Uxz}1w+BkwtuO7;MeO&J>aWjt
z1uvQ!5)(LYaq+QBk8<#&D2IWxDZCC{*?q3T0xOxR%IYV!naQ@t_2w3ET!lkOK>q_S
z#H5CjT8UZv*!-A>)o#$imV^xd^^IA7;{|14Ygc#g)yc9`K52I7oago=o)#(hRl^}x
z=9<3I-sI_eqzQt@jT>IAw%>R>B@~+Pc6K?=MsNy{n~j&br-7@>FO&=1j=WzX){ZZ~
z&V0}B7j$oAC@!8V(<!J7o&VX|9Zx_QLNqtek+rr!Ms8<UI<@b%cH-|#s>yA7a)HQ_
zsXH4|kP$rJ0(BOUk&9eOm)ahOxk~O#o>IkhC$m_r`N=Kk=FxIk-Rvs%$U(sAe0|}i
zbS`+YkznPi&l1;{6mofZ-S58v_C}EOQpoI0;&%$uDw;0cJg=Lfhq$a4s3e0;!)fmR
ztDkrPis$8K0-ctvnAl?Ocycno(_yR)7ErR7G#9{gS{v7HKrp_uV;IkE`?J(%f`0=A
zEa53q%W0C1sTHIY=6#Ulx402uS>K3rXv!@$Fz`<`-{)4oJ8E1Y;iKHnS&2}&J0n+^
zBo(jU<@}_<h@plYc_+k2GH=dIc;cd=bpH)}n1gj)3Y@dh_kB?WJI7o6N{_L@609r>
z_51BaD+);WcZzPmjgC7_PEF~#i-v-tCHtv@0<zG~i`PSfGs5<*XD7I;$2lLJxJ-55
z;`cH3vBc$Dd_}D}^w^gtOvr3AlP+d@`MiQ;%Hw9BglX<tl0FLm6sh1W{yZ5{;@7{<
z$zd-W|E`G&(yMe{=&Am2n;`p_KJBW?+@pz!$=oPffHXP<TE*>cXH0ggWgeVIRq{C}
zTf6kQ3U4sF6IREEjX}|b&wcL1ca2X~Mcv5AY97AITZL?h0Gct^-1L@FX6&|9MSWv^
z$_4V8%n39Ro%YtY=J{4{@4+$YmF6X%Gh)I^SPk-2Ky3lID8BVb*=c>oV+d8`r)6kZ
zRdN(tjiDc(H|CWK;Gbr;>|XGpzZmCdQC`)ZhTW@^SeLnP5fgnUAl$yMNZHvXc5u;L
z=j?~BY;257Ojz6XGGae}B{?>lwQ%VCA?1QcWv{rrT!k8T$HUX&GFuAzT-If*Dtk&k
z9^(!w^yupAo8x)XHp;G;7o~C|-3p=*t6w;zSS8S|Pv1T;?%$L;+1p#1npU~g@Ad(Y
z+H|JDXNy35YZ4#=tGqcypk)rT1dz7fs>>@p7wa+^PQUDg5i+4U*#f!CK#Rf&1v3tg
z&9a^ltuq{Nd*j917p1Y15S9c6DXCz1HTM&EHK*bz&9D(caGU0I<?XQwzw6vrpQ{?+
zOfJUX`EqIOl@A4X?9IBKH`Ey~-Q8YqnVL;|5V09sTZ?w&C{P7HN8zQ7ZeO$wCZ1hx
z-W`~h)|KMy<E${J&8z%o5SOeTS->?UJR=3^k<Z?@CQ(#ZkhssEzdoH$)+T1w_+0}K
z$<&at3l{9wmU$96PK}5NYWnn6BT@Hdm{!)lb#149L!bR}z**yO3?*>zc11aPOje||
zH0?y#nG<?X%N<7KsD3mScuD7N^F6G-(%AheRZ~5^bMGhc{;I-$xx!<MkYEb{^Fg6~
zd$J%U<t~#hP1)%tI17lt*KF6L0@PKZ&1}47yHxGkl%0x0tffYtk0GMEp~0(YzCulr
zw{d5C%ha-L&8aE{_|kic2D(hhuP7th^dmPNmNnduaC$%Hj@^ISvX3{1D>TSE+O^hH
z)fgJ-<Kp31SJ(acX31*UJ6XTnKl9zZuE^>9W9OpQHcgHq45l0(Ha0chR0GY3s;%{{
z3@xf2o<yD`dQ9ZRvhb3y*D%7np(D?n4d36`PR$~+AlC20o3Fe?K&#nPL<=XYEJ<nh
z7mQuTe+&RMKG)JOEFe@Rbrnq`qX<?N&&Munh@Edl36UYTD~GHwOAnm>sd&?ET|<)`
zn$Q9_me<ty58G!$hQ*r5!jzSj0$Ks^RZULI@+|@5>D)Rh0UtFDjZIV2m&BNS3LMx)
z-$m(<t?sY6XX>dI>aHm&rnL*AjKMI3br+u(y4MKfbeZFAa>AW#8TA16z}((r0gUQt
zorhLnWIw>jV%IRJKb5>fg>B&#awdE<?@Nhq%)gJHP*g~%rf9r_1%VF4@+vYfWQy({
zA;X=WyY!{vHaGE@-pFqcICX*;q~6^P)kVk!CO+L<e|=_WW7FH&Ny1|ewRBY0*m?Ek
z9hdD1J`*V^qEka&!+GhVM8fmN2$g_`o|;RQ8g$&i26eUxkI2Uu{uJRktcFohk>9y-
zyy$ie8O0gbVKQRrL!!vYl!2YPrHZtpclE9#1ZWtio5La*^6TrXjwIIh@+>m~I`TUI
zDq@?E@0d`LrH&Y`K2aO5TdwynA=FGz&fC?8VE)F-e6FQgz+c{qDEd|s*E6zqwZ{?S
z0ZBm1Ahs`h8a9D3_*&!za?-;2QqS{Vv=g<{lOv9ZxR$l6%j*QmwqM7G(3PDf7PGyZ
zmGpGhEZrG?e%}|QQcz$B+v=I>V?4~kK_TBDN<Bc+1qImWD98Sy)R@=ENYz!<Mn;A}
zQOUMy29AOUt|fGRUZT1ame$^r#OrzNa|(?<#G*uc;!DKuCYzynx;5>z6*Sp+cjPrV
zz;hcV`zF5fQ&@fu&EAfQh88DWu9T;NUX7k3p_h@4f!m2u`c1fGJRdh3-^~a4@Vq=T
zS?hy2epkyH{i=d1UeR?pw>oLES!833rfKO9rQc=%*!SmL_)xogp(VmRg@o<;kC-n~
zs&;8y3ttbNG39l-Jg2BWqHIQ+`zmf>J|jg!k2~GjnNgGb)0pk0oU{IUw4s{r2R@8d
zLxb8{S19zOX5F`q-R<>_72qdmSF&+p$-&h&mt_QIm9dli?=5=!pTkiwE|DMeaPxZJ
z_o|GMmJ^)*ye74Gw6Totgw%)-&s4VaFlN?d(z4NO(1){ecKeCGe#xkD^I3AN%&a|G
zrQZ(y{#&R1Oqq?>sf~n$or6-8mlt_pFA1BosEu67pz$}+H>gO@9{<A_lh<y`asTQR
zCiLaQGTFlOiTsD?LzOM=+P&1wu$Q)f?!HNr9cmz<W*J?_Jk=+bIgUf!C0y%Fn#Vw%
z>gH{(U?P3Z&;M9AcyK^}U{>~0?UhA~48BA(BcY(p(OH4IhK5F>rUss1RS=`hFAE3+
z&j>GASnoHC)c7sih-MPDX3979WmJf*gTt^fn}r}~yYVtCFpn^%9mMbD?Ccg4=~-GN
z>r1QKE$fG&r2PNdFFS&hC`Cu7_2Wkd1_mf#I0qwnrPX^W0;XBUm-k=BX0Oh6+ZV0n
z!y^WD?=f8S2+x%{!&_PUyWu&F>Sc-gg)zfzr95S*f9`HZ>LGIAduSwmUTB$3k6ec>
zHVXvvt=fCc+9v|D`Pa@U8MSmM*hsg*nS`DOIXQ)AFP^?mZSz5bOqJT)u6}tY2}$*7
zL;CXWHKxBJEe-~AtfVV4az?HLG-%Qu{xGEN&+lG7XE$ZX;O63bDd+B<$WByJjzBQt
zwSRhB=YB&#uvHK^4dA<UN&#ZShUSySdjbC3pDll6`S`c$${}}eZVJ^n*g2hxa*<l;
z>20s=k&xnz&kVWUTris^3PrNoZxr|R^em;OnneYzW$>0WZj0jaBFP0SC)224VKC#X
zcWr0Fxu%Y}<Tz4;jUj*Tx+?IW5OVg6VZMJ_EQofiZ%)?69M(jtou_S`cU`Tk4*o6j
zIcJUUwbK7Z6U<o=kR?lBR_O#{S*<w%oyEmTH8p5tL=?Nx-A^s|E5pnz?%FEpMCR=e
zKQF5$STkB%pL^?eov2ZT5VI4UdLg}7KD;ExRhNh5f9nRlBV3j?FgSdHsNagu)zwry
zLExl@>Ni3273z!+gF{0@mG__hI<mDr?h1FC5Lwcb6BE7hwV#%2w5MwVn$VaDP>GR<
zpwWN=jz-Agb`+UIiQwj>;$&j#*DZ;RiiRbx9XUfs24v@LgT41kgm)5KKJ^?~qeear
zjEWawTGO6tTX_2ln$D@`_7^WaW5LhmsDz8^aFi`e*T<pgEkW$V4JXN`VN~uE3?*r3
z%1Wqx=ayQL|Bj4KfsUS&ozipRM+)Hfm#fmVs42iqw{o!B{j%%o?C<9^g+zh~*bToA
z>Pt#U3y_kEKw$-j)6r5`lrm~Z3-U-_VR2ze5mBAGP6JPQg3m&w2q~rGYEHsdaS<8d
z0`p0lxQIAE$Nd|-pTB61@fdVUCZlk0uFrOcOzui0n^JCF*L$?tjOKm@Z+j}_6;p4b
zvA#ls5+lo?ot{qL&j4H*s<6;C38%74;@)_<*<GQ2l@Mb`<QL48WYq)bAMJesE|B=`
zRr<wZf9h&A|Fb`+;opbtYe;Y>6k6z(QYm|+sgvuFR*u~MNyLdPkb#q+p<jj_Cdq@i
z^bx<?X*n-CRg`vAmUfI5r3YxYU1UnOk?{ic>%e!f*%G99W>+zov-Cm$H-E0--^|Rm
z)5e0;<4fU)oLlX?V5H?FO<sVV^lce6Ww)5-ylJSgAo{h2*0?-XW8%}eZ8UfnTw6}j
z!cbOJV^f?qBGi$*wD-1kHpRj<>4ST^vd@18tR4tAk|x(LF)Q2hVyECBvgGvFoNg1_
zdx$lAdnp;+rC&8@zw81smFQWT1I8oc@QD0TQ(mI+Pb_g$S%lUoo2OIL%+bG$*)|+t
zZ2QCtd93-8j9i-I`D_&)ND1~nSPrFlLjl-ro^Tdy^cbqrlKRaSIKbaSn$=MUT171q
zW9j>(?s!^t#mtEZeZYDeId!ov)~Ag~%-(G$f-hsv7r!eh7&3nPayp-;%b1_jYw*W7
zxNnXKF~i|e?}goJ5jD{{dW3_$E(?BTt|+2)XedbQkyHGTz6VuS5IwHb!+!meku6Ib
z%T_#pN(S{p<7j3-d`ZKPT9z&|YN?H+J8L_uyI8m+l}_WmiR0vNC;BEYe;%ee2R^if
zMFp{MN%>C89l0Y^SYjn3I)51=61MWf`*xT&is)wd1Wm^-V~H80I9WxiM0Gixdv3g@
z8`^kL0G~h;xLr!@Inz&wo~JENe^n$+v2Sn^b<;cL;?#ceg)6f#|2T}ME|;>7-+rGl
zU00E21v96&fL1o+TSBlf8~v>WR*166X=RRiqOhIwEDW-A;7o4VA2T|xyt1Cs`Ebw1
z2;EANjq|Nqe$pc<;S-WLBBuuypvDN0zLp`ci-d{y99rAt%Wu5C|7tiZv_VsP(lxgF
zQIS%J>bKEiOh#z~TOrY+AS*AZVXvI?ZJRkMJCAk4-qibRr#=QoL}vhrz)*{zEJch_
zQfL7U0~sU*O2BWPp5~jCUzk~1+~lG-@@?@{De4X*j3DFa=OK9rNmAG&B#E6}GjR#V
zBrZd?4Szo-%u^zPuE7>WLn<E~Swluj!)|)WUXso&Qrqsd!7SE;JB1#~h|~-@`tr&<
zeC$EN*JYeu&Ga3T9sNO-mZ+%vcrT}XTXomdlQJaSnISHr`8m`<JNzt$^F@?tDeFJ{
zr3)KM+j2*aMe=WX@lk~p?+=q2bj0C$9)@lPV$#!MaJRuGW;>>~y~gUK*I;_RyD#VF
ziiLT-Mbx!qVaA(I4Fya4$xFn+dXV8o!zLr8J~f^!Ha=QeQS2k+vl~BE>7#44Ki7JG
z3QZxu_~*Tn4H?EqG(w${fyLlP1FFP*ewVs;5S_QLyeMTNy7hfIZ(xye7~Ix=r`BIo
zhx9rQww6+7P{cm?+b_6B9EV4s7v1;jzda!qY<3}JH6A)yyYgw-_5|kL<y~v&)>e==
zxj)2WU6LlBeQ;4^<9KX$j{eM_U<Z##^IP0IXp)D{++COvx`m(MVV0F>S*;T%<mdox
zcg$UODMvF4{bp|w3lcq{ZZvFtih6Xi9qsH=DV;{dXXzoKFq<OS$jH=1z-B1m+fAOj
z=icu3hNIo-{(G1`#AN~6@NVYn`b7l0@lM^*PgKAcc<?~eG+a(c_=%8b1o=O)1of|L
zG5674hE1AVhOx7cjnc*&z=EfYS+v?|5tPBO0^?}*vGMYbczRsc_!0?ZBJ=(qpZc3V
zoqzt38BY+=3<m$DnI=nmgDpNc^=r+Myo!}JAu<(5LIjDcc%Hn{%4+1g=AE6{M-NLK
zSU_oY=d9q5((E6lKn6}un-AVIIULxsEJjQ;$!Dqj;k$GiO`l}9c+mQRGw@jskfh?m
zT-Njz7_Q<U-mF(SBROAryIgvkjo20_e}oErk;{1|q8MPPCZyzX#VvC$3pqmD3X8Tb
z%W3$K@r@#Bu6512z}Jpz=9rn+ln&)1CNFM644hdwO9^jXOSX)StNIEv%u3dND9)Xr
zye_3;XXemCBdN*d(>_^*0ov#jwP(&?#XrcVW5DWut4>r&6$|A{tgP>w9yGo`r$aAJ
zz^*Gr(ozFmv0Dfqc?NS!!U~YO#~wHouZ1u!cD&zSCL1=q6cJX!!F>u%6_X$}nf2<F
z?NkT!5xd$Hie9u+#?&$RS6Dnj!3%SuMA+7Lekg-s;0MYG9<G2lLuY#Ov?wsD3+wY^
zQ1ry{j@^H>&`8aH7@J!C#joZgnm>uP_Km*<NyF@n`v-dh3Jf(rvY1iKu#vu;>Kyj8
z5mQB2`OuYWLAbiB;p9YZhk=7dYemPF`Hp5hK`y<11@1>^aJd2WO^E}xxH$!=W^s6i
zoB?XyhUr6J9El7pLlqQ6-r&Fk>)O%is44DRY@_t;@_7Enn*k4Q94Z;62GJ3Z%czR>
zXbA}}lPK|q3tMcuml7k-pF}jT99~)w#z{s`np38h)|sRG;<4*PyK=CM;h*pK#y=RO
zcvdDs6;+hJ$6G5Z-^bjg5JY`v`qlyP0bw*i!!@AjNw7HC%kpd3OL17d=_!mouvO<R
zKA^_<;m1%0$kW9ivn(NnBoQOdRU)1Z!vL>AcKj9KiC9zFIP(=XEkygcASOpNwD)HV
z5>7)5E_&dYytQjrJpPG^UJ1MyHWzO50|$8$*?H9G&(TXl-r2l(%JK@0z*|FE#cX*)
ze|bR^s`2I1%o6g1Mu@}xFFoHx{(AQo$iT&e`$27+So-9qy<VwusG_z4=0HJ=gKOyB
zvisN6{2UQ$sONTDQ*nbzzX^j`KBmO(ZsLr;=$jHdn{%^l8rB3Usne*jnSY!0(QB>z
z>(go-?tku}^h%x9`$!5e|GABAKnk^1KYaYvMj{#$Bd{}<mXTgmf-Lny=o(o%9us>s
zkO?zNKa)-$Foc{wS<TyE1@Z7Fv@>+~Mo;i+$SJxTz~6VZ4j$uem%}I{;D+Pq5Eg=y
zl559vLcz`-!z{5qWr(aGm)nd<EmWIpr_k^9@8(7(6umr5AKa4(wK1^8Nt$zHW#n*d
z_E<u?#06%ZCW4q*N%WZ2j@GVD(wBkwfNjnG!6w$4fCa}Z{a|*fQyi5@J+_VIklR70
z3sf(y_SI*MzxGsU^r6_EOZ{Kc)?JW=nelt3y1us6Johh1JN>pY;ZB}KkMewfzC!l*
z0-Iq*-5+>w{N%Hz?#?fh>9KnkUl{<u_oKIqrYBD&zjm6n=Y}s|S2P5GjePaW9v=+}
zsJD*4gJusKPlak#U#W++tiLK#DV%Kqh^D!x*5fpC_qPTb7n<A8U#HF4Z|E`s2nws8
z0o$EHE)!*7i*5<(RUgc!9dD~_i>?v3iVyG<H_x9nX&&{;h6=*}X)37WhNKp3kG*6D
zXtO^|3qhlSO&$%`i~SIUJ-+^LCeuHX!sLTd2)$S-B*dnba%SUiVz3v9T`G8vFV_~p
zef@d;U%Z;XKm2cA>x2L1?Ea5;LjQ~2`+sqDF7QUpPREcT94G}32g>8<qqnbM#yVvl
z3<o{NY@ZA7dq2P6`OAI6w8b{veuPJY{QHfYJ>w3f5t@@%77M0kAJQJ$-&!G&PXX*P
zpfA}!nY4I_oE-R@xOB3%z11A1*=%_WD=z;r_@L&F)9cF@K+gR`U23WbaH$7^T5=qa
zGNgBShLnLr&YGUtvjkKFg#LbjWHw;=K=US{SyyiBH^T_r+2_I^iUrrSjp2U6)e|KL
zgy`?aNAo!eii(7U#fYy1-2u9sI75$_nTPa;gePmZsxX!%@`K;E{0{F>!p0#}!=Ody
zg=6u1GqAvkzUxL4T7CKuoE-X`wQG{&11M+MFFn|(nMW1&(eQG8_=h$1PBVL%r<XV8
zR6%DH>pck>=0k$VKj=!nWlVm`AKI`i9_P{PYd;et!4P0qd$sf>=+O^457z8gN>WuA
zV6;B&>Jps(&OBDGiIr)CT1V$fCh`Ye1kMIh^ik+ms5hsLI!iWiKwRuyES)66%|kqq
z0$kPRPizEe!T`_JUNy9xicl5kEaFn0=WFdv>ev56%9G4Rf9G@@P;BTmsavcXi4@VN
zONO-EhNt|=txUr9O_X3kD6FX@lCzWmM^%zw!BQJzO!qA_xGnkap;xc|)eiq{6ODCZ
z8ZX5#t$6FAZNXp0Ow3afiu^Z^<5p8oY?0P1ks%OW7Bx(Db;cN{`fJ1lA8vw(8)RtP
z0nk1Xujq)iVj>L<#1WXg4<5uc;s$WjwBpwxf!TO|_7cZ{sgY2eb87fsR~pyL#rlVk
zrQ;`#A=2Z?mKtBWS0}l74j<z?{t1NsxS_FfKgW@(ZzC|v-dhSkBem-1521P~ZoV4}
ze9r9$KLLR2@bQN-s=rfR$FB=*@RHl1s=m=nozzu@(#s~bBB=8d2qxd8>Xm0q9%Z7V
z=wwAL6W16qt4WqXUGl`SB+`-U$IO4a`2M}dzn_;~HfMH=CYGqerH`Lt+g0VUF8dpY
z$z*%eYp+vb4Wjlp=}0GSi<gd2F5`In?M;35>eWH0nHMMr((SDMrlLt1fu>4)Nm^O8
zrthAs6pas;U)yvL5aOdsX8$Ew0{^-&uv6N;HQM)ve7=kC{F`U`X}gAZ{%#I2&Xc5n
z4!0L?wWWEd;bg>XPsxQt4i8TaO1Pq;R+-yFvK4dHPien@|GuBV29)c8&iCfobOr~<
zuwhRwJ(HlvPDgnNF_*JyrDcks`#oA=aYD<YZ4vvvu(7JDy**oK`}k&AXD7|1S{!s`
zcbC<A;PsbxKSoUfL?kLQ(q54=v}Kh5O?Cg}A8UZAFq1AGEN{huC1=GOBi^eWZQ{&V
z>>Ee#Hr6|$zqGQsM?wP93S@x>8-8*iLcUyW-?y6N=kQ(LTHD*$_#W>jms6v$4ltxO
zHP!P!-#p<7D6As3tSl+nocDZp)EZa~uWo+-{`UI3C^sJv$;pL-L?tA;`};%v{P0=K
zRpB4KJB@dWRsSEt;J;$RR_Mu{n8g#&6Hu4(eMf%*B!D=#Ko$@Mn?)ePL8z4lA5~kh
zF;L9EdQz>LdooL!2;pQ6vL#jJQAQ<d?#QU-*K&|3Vd!bGYO&AmZfmu0lMY9Me|AcW
zR+=&=8yhBYPeIdYF+4{7^enolfPk*&9Dxj&0hZaSe`g4wgKcOq@vbL1GQyuv27Jyo
zOq2e(Mv_Z27B7W0dlL}Z8|<=M6HX7w9m^&`+wrJrfT$_UjPpx*38&fEI#%4p#v~jc
zUhk`>A>#(JJ8u*(SnB*E02)qgZG;K+N=ZR~t)sL_#cu5GlD~Wo#?>IezPjZ7>v4%F
zpZSQf6{)t@du>Hk=dEAN5uN%B9Gq0Vv^DFOb|qtsgn;HYWa4n@;9xOo?chYpY+Du)
z7%0!!-__$68fc*{20l+`2%Ezf;dG9k*1WN}IqJFa8c1Zt<<qe8-!6GWAzQPR$$^1p
z($Z%GI^?zp#FB3RLXEy1H?gG(HMWU~iI5L^L4N+xfwhc;1ZW-wWMslDXPakdg|dce
zv5yF8asS!~=qm8&bT6J3JIrZBBPw$@B!#@YK3$Z&4er)gG6Bh4eXzFNxXbp9@vI=U
z^5t%EF*DPBqie!<Z60SQIZaIq8KHb*o(rFHf~C~k1Db_=Kc4R3*zI(XCV+xsQ1vmc
z-1fI<8c2#UNaxg6SRv+cva-@a9-A8l_poXP)S42xUo8XGE|aa33WYa`p`7?9K;rTZ
zqy&nIfrCTpG-ho=DIt(7=(&gqm*|d0+wN;`e?h=UpX!QTzOBb%vW3d&6q@Gy0&KQM
zcrj{r>*M2N7L#QH{QM3Z2VwlKry!OU-66$iGyj$SeJ4M4>4Qcj^jE{$HwvG`0tVl1
zL`lh_HQcenahD3Myrg`0tU%q+aICy$qFBwmjNz}5{s~DKZ0Wmv*k}!5QSX2nLbfO!
zoO!CKVme_8-&5FMNhsMqj4<e5#R}`v|1^L`ZyOdBc6R(?9(!dK>KN*>QgR<m#2VuF
z9(q|_oiKi@C9jw+Pdh9hZeea=zPsbs(b~%oP%W96JWQNfxuxO#>zimiOr+W(R9WP{
zFF3mOfuI`D_CtQ+dvNKtO>^Sn?xtZLx{>rDrFj1Hdx9t)FzdRVrX|-3cc;-wr;22$
z#RH#jZ=1Qh-A*k9gQ6Z-(w38DS~;@+omH><P}tGi)z{q};um0wB3@xJY0r2jDW!zN
z*d^_J?d%G7C7o%s+E1EAKHEP&Iy*Z&%#hg54I*MLRil)Uk*GDA@&ev>ei8Bb@AKlp
zgPYoXPD&)NFMfmUzS(cOO~-MKgr~XD9FD>X?d2+@{iWF5DCrcpzD+0|!{<IiV6U((
zx>w!96P>YE^AvN3sr00igZu;bxc3_T!S-3LriO}Zcl2u$OoKG#5>+CzukWB46s?2&
zt~o&ZJ$Pia_jG470=lxbBo0Nv6&z5`1PzNzN-VCKSATi~wZdS0evT^j%4Odd<-uBH
z5HD#`d~81WmVKg@5eoqYrpfe58V3hQMMXspP3KWG?l!<UsTkpnx4vLZ>t+>?Wel$S
zMz_Ln!FR)uqiD)TKuDP2mz`76Y0M)21``4{9liD-1G@=Oma#M&b^W58wq|YqMn0kK
zibsRwk2wyQfW!e1x{`C4<mM_f#KL$bxt5GF3{E0evidH?qi1^_ytL1!&bVbYu^}a%
z156N6Q>P!f7d#S<cIUA??rR}}_t|*`6saRCf#6)RvA6Hb$bS}*sjM7HI&n>o;qCKL
zGHHxwB^_)!d=T5Fg=W(z)BPmP-@y8jfr(FV3C3<N64|Rk=FS{f#A=|r)>So>B|gZ;
zs4pm)D<`LfjQ^IY{?S*Vmef?&!rM*X%uHd(Z*<{QlBtQMfbB+85BG5%E!~iUf?sw?
z$``*1a}7^;)vpY6Hp7Tlq&{bolvshIKuG`;Ud=gpd3b7m6u%x2{MM^GK00m#uPf1O
zpPZUX5^xXbUq8I$i-HvloAT0E1hOjzN>YYRiN5)dFZ=oKR8SO4&MqR~42h^0DRIj9
z`{t{a4y*&Uoi}O>5zVSQgpS!Y>9>~NUD2?Dsc}yFlAO%RAGLiyw@uAd>CZMwmP3hn
zvK6TzHBReCRT&f?p}!W3;d~?sEfpo@0CeT&;0fx9I^@D@>uUf>!d}_2WoBA1-7PL|
z58J(X79rjCec`YQungJpQ9aFJ^LHAXn>mG+h4AWXT*PHShW>AM7PUSd?COO0lbI1!
zgr*0RL_lB&F*ny<!!y(Jnzw>XRCH#2H{SJEC%uv~c8)fQJbGi^{~pK6mkEI$IW3>l
zDhfHs$jE4Eb6pi9wTfgUC9?~14o{DrY;7T_a%sZqPJyAJ{e4|K#S@HUvJRt4NdgV>
zgoGNbe`eCV`!6I!4(v*r70B&{U0+kANy=eL;rWi?wc6F<cOq~t;6805S`zt&VFd9f
zQ?fZiE)p$qSK>8cf=5=Wm5xIrn}Bx_+p0^89pH6+t{fSKF<8>#+a?o#({s#Z<}ekj
zC$gWw73W7w*Og#U`s3S6^qA$9m7lA2p+pnOabbmn+4mE5HcKlxbjku^zZW6kELSgS
z0PA$5c&Ut&@sg8Mb2&FJT^Ar{W@N%dB+JC48jQ`%I31>X1UamznV4o9oyG?+(u9Lw
z8L_<@4v*+>Z(n2`I7~2OdwIy~M$1ah&q|)i^wOA}pa%QRElk6Hw$+h_ojnR5DV8X)
z14d0L3jfLwT&O&SLPYTJAi1~ahSB=YzUVcp-ediw6L%tJ-@_&pu^1gXA~|7|sCH-h
z!?{9l9OI7Kq%ycIuFC`mOpYC9?-3K`4?~L-HEo>QzfFmbiboCVm)#M)#O4EI1vos(
ztYM77?2_e2|9E*^?QK^)a{i~G)p$_b2`{`G`N-KET_r;i_()(=%9C@dU&OShqsm&G
zo|qgiARQP?A2+drm*`OePVU_}?+i3XIiLh^_2x!rg;Kt?CkL0rGE_PLd87-{R49^d
zpPR{lVVZ!Rm~mLX1rb3N+DG9vZM3vwyd|&w888gG2tU$GbNUlwB<AL+s)RdaXa3^Z
z6#n+>3?|_^G=Hx)=d1)s9Jp`^3H2JC+2BrH9xg5z)zr&p-noq=8N<d_5D<ALN;}<d
zB4Ol2K2Il19NsRkbmQ_LG_E4vY->D28@e)Ru6jvo#uEPq)5N;+sRs9-(OIuQ@f8lB
zkWXul#r9mA7w7czGgw}6??xF#;!@*^L2gtuQDSskbW46o7FgfJd7>c{g`(Y|!y++y
z#8Un<iAog%U+IUr!1O_k2fbvua;&;LirFZ{3L}t0uWcT07IFTAObE_5*DzZ<Vv1AP
zdQa)4)sOYuYBcMoc?nxLK~e07Rpn<-_oAbskM`Lkr8B;{UR_KANx93L%(kn9zUO~K
z4oiB4PbEU+HLlke7=zWrQ~=#|*ZO(60##1#1Z@DRN~0vKU7zvbSrp+3Cc26q8zx3_
zt1=-P5w4vpJZUeNSH?r9;7!Uw^muUh>eS?99=oZxMu^#=U<eboSbC-5m85swN7w0}
z`JM)T&u<-mh|3x~+b7=v;il|i1;*dHOSgZF)ns9?zkolPh8N288W6|&fl$(I;3m>+
zrkL=hcex5O5h(wRFG;F2$eOTG2O~kki@6~jS;BdH#V_AWkM6#@{!vs=(CqE3GLWkT
zh<Eg1EO9-arAztpWaDP+nl(B2my>bg)php+7;ayR`#(1W)gvjiQ=s#oVa!YrTowIy
zK8^kR)I3BKf)fZumj<wQ5>TbvSe8l3&M7R*B)m7AwG>JDE=*BWtn8%J_8z*sjOso3
zqpB?zw=NY{q2VQgY)?@BJ}YWs!WMp$z@<?%+?9~PfNQ5>L5k#MlY@nvR#SR2P`F!<
zjB0y)Vtaf5zJ8wm)eWgsQi7WdRjU>#4@X<xsLyh4fbQ*dV)QIkqP@D!QbgT~rf;5o
ztdec&GUur5h>w-Tjp<%Ja5iU*>D6`O*~}L!8h-^u9GgFJINbK3?6RT<3p=d+!k{uz
zp;F;=6`}Hn{=|FEO~hFEpXw_GDpI|0fif+2sn1pXR&LuBY`eFkG0AdZ7ljMt0$b+v
zBmA<CE5_lx1iKWT+EJ8Git@jxjQx_|v>tq*`N}S~3>K^$=)vz9VFN14no{nw88)i1
zR)59UEDwoA+XZiG!SieQ+!By6^bC>bJvmwhnAlCZCA)edjULml*Z-LOv-)?78>dvX
znnxg6a^uR}KJSV4cVgZgyMDWW3c{d^fWJSe+GZa7E86y_Ui0VA!9V|Nw&%ZvS^mE?
zT>k%kr*-A0`LQ9X|6-=b+_)>n|Iftsu9}~-21!D<j$M^G2dLRNlp-ee+3<se)0(r#
zw@-MG;$Qr=6NpPs{@+s+K2P@1Ut%!F(fb!L#B|rr-Kv?B1on~(U~Hc9e6&MMntxyg
zRW9&)30&|WJF8h}wzbuI?2B5sjOyWvL6yiCZeK)ATlD8vRB0JwjMg{O70W=;!8L1;
z9yi_V&tF<ofiQ%T#2TOC#w>&I5z)++L;ODmcIy<zUNeuYN6o##jI0m(ovJY3Om=*r
zBW|&?@@v3k<Xp6@+0d@e&7Hr_?TtKPgKP)r@Wt@wkv1^^*O$#SN}jQZny!GFhB+Sf
zB-x+aQlcs4*sjJUEmW3gl>D{C9QK=%gk2mW1r^+R)nPc<PMNI+|2aKnAWgKWm6D0B
z|HzN=c&W9*M9YJVuLFL2ckju}(FtSz2J|zwMCiVHdUWL_4(CUEla-!2T9%H&xmsD*
zO!}bcuwY$jb)WWcui6q}+o!j-I8yDV5(R`RkA-igniegYJ~Y`B0XhpNVXaxPB+yYt
zMH<#;yK`XmYFWfby^_BAo#nVwAkMaoYAQacXr~RP<==%clKnAQ6|37nUQ;A^`UZ~W
zpIh{)Oz-tLbA(_LLgm6ZuPdrIKk(@2>9IPr<%ch&0>6C&UCOmHXm1j5kNRg@6!M0#
z@o-w(6P5B5t4ghK&|{_-^Ha?^%nrWk2+Ym>`UG0Sw0`GG88!B!&J_vm=-4Ad7XkA7
zLELKE+T(I@eCRP|Z1_)EE&mMV!A#P0gy&&sR}ZfpK|!a!<_@AVF_7@y))s@h;uNbK
zUFag^+?e^=kP_u-;Ktt8+8n|ud3uDwb7iCC5fYk7qru69jhAn*ENv8XduTK+p05bB
zPrW#{dv(dQL22T92q7yUWN3K!_#lk@`fN8!JbjQq)xTr1HN&W13oks}(fl5f@ln9}
zV1bYUck^$c(=_W5VN3N7x<DX>ehErsuZXGm>=Rvqz|pf2XO($>%R3IDy>>Yv1$_t7
zk7yR%yoK7%`uf5!P=I}gj$TiE>SW^pSWgy$!uFwCgNXCH`r1$ufp1Z9ARm+h{4*XN
zAWwSQlp$GZuBy^52Gx?@JKOaH%43}b3Hf2KFxb2GJuRo>6B9>=hIHR<Y)-++e21S1
zQEv(+`QrRB+Cub8iHwocXnzaVUUJzcT~_?E5he{Qj=+iUE$ju`jWq|4%VF%vt-3Fl
z5i=;H_M|uPxmMk%8=o#Gr}N@UrwN1|uQoMmXi!g=WR@d8@738hRoK+i$NxkOzKLMJ
zZ8$TE=)`_CO3sq&>*b|qA$59bX9K)KC>wk#sO!j<P<`4`XAvmmvabTk0WRD?hx;L4
z3yWQl2&=DiFJ&2CUe*<=@y5Yj!CP6aNX&lC<aD2;DW0)31SfZap4(d6=N9Bte{*gq
zex2+GL=fA8lZ%bU`v8V5zBg0wegdTJe1i#gcbCoHZUE4!Od=QHN*=(C>lv$w&sPVH
z*`Xs@GTPdL+G&Fz<sl7qsn;qRM@D+$?c*bsF*KYdJ!@QI&q<ZG$e#)Tp*FpLY}VAs
z2%+V<>&fvn`_Z+#+sxcHN~KNK9nNV<+bd?8tAu|dh?}|DV+gTbdxm%IO<KUfFQ?Kl
zBKT9E*)z<OIivcnt=0<4J~BQ&I%b%Wb$M|W@GD$mmT`tk3Mj?Um>l~6w?2xV!)!Y`
zm@*>ARq+HUk_?42Sx(oLG!$B{?Z5#(9}3h(c%3h-5tDVU*A=NZb&KS}0L&IIxfVec
z0wlA$x&pvAtLy6+VE_)N1bWhrcJzocG0>2u`gQDq5Qc`Hdg88qZ7P1tgmwMm$zx26
zm~K0J+av)yM@<VUQ(Kmp?nJ~VjL`1ca`)-D2xcJC9+4^C?z?D<*}O&XvV3>}G)7*b
z3M9+yx)=cgJ|wSZyr-6h6SWwjOa~`tt)Lh2@7Mhkt%f^d>8uHyf6$QzHTGY=_!8?^
z2cUh6t6xYya2UDUC?nph<j7ev_Qoyj3C@k~`xuf@KyU+b2ymmr!i1qup1^@NHa*|Z
ztH`{B1o<3M2`S6$B3{?EG9bxr$_~Yz&2thKHr09mUP3~`O(XvU*^7F6Q9Fg<oY-Y0
zr6?+CqG3}ut+_d9bn4H45~ZoEOlWB7jq{6)N>uqkuM1`EJn_N$E07dS7Q|Br4hrp>
zGh9t9l!SjeDVX1NYsFvh63(q9&=4XmErL#J9^DCq7$f?Ufl#N3XDxanm+RR{vU(+L
zWI%)ab)`j5U)M~%nUSI4TGPWv6Xxi%gpa1du~55G^Y)K9tT_SrU8}+4eoT_6^7h4)
zdY3I?C3w(Lnx($*ogBwh>$R#y9Q*YrP1xfRb7pn=U$0r_KVdz7jCA<qAAjgn<^2Q5
z(xEfRY)~W#ia>EzGyb`&YHsmSQc*tL9B(Ww{b~FbWJ>W=RKVB$=kD%_r%yg?d-+_A
z-I3!Ws!K}bCKy9Z0OW6LYfD4pd(o*DPi>W<VS2emPEO7<v&w&s3_g0Fe#r}@!(dRo
zc{i;9a&K*I%6SFNBB@v{zM<bb<K-0;7;q)rEi~WBzQ*_n73Sfs{m$hP<Od+$vHUJi
z|NX~%=G{3|V9Ph}?_qqWz)9l`=N>s-TPW7pf`tEH2tXx*RkqO2{88SLy7UKVx8>An
z%2}C&B*{aGeq81i_4SW1I#(Gg93A@@86C>YVZlDFhNoMzGPnbZ3QF*+6)`iP5m{}}
zu?z=1hYSODE?mUq)r8w-vr^H|p*yP;oYmFY4?@d*NfrtALiAxhah0!W$jBJj)y77Q
z_ZJ2#5MEwF?zgKpoEBNe#^!JF(abz<`grz{Kn@nc<>G}-iUgv}k|`<SX<@4YUvH7I
z(a}wN9&OJ?fJTJK=PAz3&4Fkgbo3=lN#RM9CR5SK`yH28oS|32{ygx7#+J6eq?(mC
zX(DFgS@6fg6FfZDmpL(O<M^992JNfcJ(*}3lM1tsCM4J5Q%_tH*Mw2<o_gQieepfp
zmy(c5kszifQNPp&0N0wSG|-%eJe8G74+e|h-rCAvR`8>yV@;E3yaO{G>=|S!I(qFg
zAOP3=sHR3mWol`9baZ%nc4%R0ESno?B-85b0`E<#T)3&O%H0yjGm4qJy+Ww&<OkV9
zx+G-?x$KRVJ{p*qh>02-zxy<B$6s5>h{#WeW{rj<zunaDc}5b-t23nN)qK#Nd3y0y
z^%a^A`lApOF)>J(@y^AeeoC8<&qWm%gqD%f(cXS*xJb~qSD7}FnJPpZrk&xXTdOK$
zv-hQ$>+edy(?LvXI^slWMm-Tq<f9!4K%gn<$X|!`&0XgON{>VpJq-#cJmDZB3GA%$
z2RQx@EkAqp`+7S~1nJ&8DjOQBUUV+Ehhr|e-`*gj5~Rv@B_?X-($YDaUkl}pwzVg&
z9yx;z3-9S;Aarx^<u);k5R{V{9fu+}?bevM@bK_luhO-O?(MoWfzAplA+tOr3RBMD
zV{204bTB13Mq+5_@&Q*`TM*7u@8{K^9gYwvuBgQ1{BIeKW~!9nPUF{GpM)_%5Pi~t
z!I1!D_0VF5o(Hyuf3p@~X8zK>yjeEYNcW#ax@8Rdy|TN}+d3iS*`p8J>o3gj^+0L{
zLaWl9W|8<}EK-%T@M+Lh;cIqLbF;G8qH?zU;kBxS!j|xi7g5+aNdm8gfG*3*V*8!b
z%0hF`$w&nrW3*q?^HxE(49pzGyitOatGr}Pe+t^w`IvsJ0|sFfq%2U0Tb>W`kYXsM
zte1A}4kYHanW{K#9BO>qnQhP)ZUBvRBYQah7q5G>4fK{N{uZ$JZd{)J_NhF>q=J>*
zi!-5Ji;fW*4K}?h9DpAD!;{b7tKKWkK}|MH_LnZpJprfc9UNpEo>$kkfX7xy^*gm7
z9B996>Qa9e{ep^_0Id>$nEt#z-+!HEfqGLY#O**W1lKwUk$Gzb=L?*wVHmF~E;HUP
z^PpT(IdH+3Cemq!l?AT9OXuMnc;jJWfvno0$2>dz8>{F^9v)^ZxizB-Ram@%vC7{I
z1E2QRSxIWk@uBZe;|sq1RN!XM^R8$J{TIk?$LjZ`v+0@c52vln&CQ+Nv=oHW9KNFd
zs5K$ONfRfF5w)-sGokgKG5^K>_oBZ6bf5os0NvU)%?hc?F958SWN?nzSB8~$0dXS=
zAP90PgG5JzV_UE6b@m@M?#D!&|K_kiW$iBN<MN|U*{sn;ku#-H2z<iy`G1YASz&)@
z0>3M`GmmwIy(v3-f7Ztx#r+3(r3%Dyan-OQI+tv#iAX|wS7GZR8D@n~%s}N<xL(@o
zZ7eg}v%l7UX?^nu713(r`c>@LFnoHujyU)%ys=0;;;YJ76P=lEPI2zj0VQT%vAj`Z
z=Ar+@p&RH(M9TD0(y^KhJ%z$Te~<MCO}i~ntiNXYTc>CI+^WyRGcn)EIyF7z<BQ}_
z9}T*{Y>^D2sr(L@n}}cIR^K0gfPOF%Xk4EEH%_ubb>}@`-jn+>)RadxZnCsOoNyzi
z;oi?ckUZlB{m`7Nk~DL^&ZO>nZ@NF0ob0ya!4c?y+*f;b3ba=*dP%}k#z-&Sl0JL3
zn61{`ZYfZmSy<N~1|`?ETnsO_#*^9{e%EE+RqnhHMG^8cs+`Bf=3<AK`^#>y=nv51
z2A<12f3eL`<kU~KyZe>bO_|zyYj|4>@_d_Pe6spl(362EB)0jJHqWV4^knV&GNi<8
z9fuOc>eeq@99M+^*NK}j=H#-nQCU&>w_`aO&h4~N=Za1Qdg?U%$R4>`jv=i-?9IwM
zaQtnjCLG$lzUu08v&Pnz0&Rm)?(&+mg)kAROwTe=?=(HA=~aC0)&=h|%;n6vr>zZd
zpJp~VBIutcPi=ceRf)ixS(yg%RJ&)Lz#O?UMSFsGHJ6Ub=Ld(wzM;vP-Q>#Yw%*UJ
z0Qd?B#ivwf`1zTq3osnX1FggvRr7{??&RL3^ZoOo$toqFrNbrsFH=P&N_gk<A=dFY
z$*Z}+`#|1%0SpI}_~v!q^z?g4=%8FEE)J<l7@oSs-ry~UI$?5(*E}sFzm^=v_AWm?
z`!3$Lf)H{evFjf3R=#$pn|Es0xKo+zhN5h7QK3M+$hm=AgT?#7l+>k1Dk@@WCL7b&
zuaJE$>!Eb0!l#>vBA};1zBRrMS69EEnpzn-0rDWMUa^ZhC^H(@8z&5xPp)&#F!QsH
zkBOJJS>rnwu(5Z|@*X7{5x(+htQP{+WHIG4!|K#JceLHzS_hOQG7Q&|(X0%k8%s75
z|Bi7Z`_K1}!v_5QRsy=}zRvcAgwdD?s=YWoukF_#i-{%?X#&dm6p30)QKCEM7W%ym
zpna;s8voSYq>k6MG(Io=8|oj$RXeJZJI!fXzjOzw_8T<h<Zk=g=V9lsI88S|d#5pr
zDfpR2xFW5G^<s|}KZKj;taYU4cb5ZWb4Y3ysrJ_5+R@;;;O%}`D`Ovece0E7<<JxU
zv=(iTV=N;oU(kbWpl?i=9{2X-v^F@nv~uo#3$*GQ+&bxRJo_?fUV;AU@?=&8h8>`y
z>~5P_w7nHy8SJfgxe-3cPhM?a5gc5Wovx9gEO`0T6!QG&JdW2+K6Ecds+ZxJe@>&t
zj3rxKew34)&5cg)8fef2I*Y2vDqgiP5gs$0@;^g+_Wggh5o^Qwy;iKdm6Y15YtPD&
zi1zkw^Jx1q0MkOZgb;)IRlY!d5<Lxnbo>>f^4t&nhtK`Yp`j_PzjE9(L1XsHx>{El
zDS_S)Z=J+sv#|mvA)#`1Sg*-Dl2pIct)xSW+B&tdXK!%Q4_RP-ZnnVF?Poh*lGOa1
z4BQp1Hui`=qH}NfI_JvAKB{zUi`GEDaDR9^=jLZU!x5$#*_Ve{OqBPZ-qO0BUL?n~
ze=7}8&`CM|_rp4CiPbZ2>3SD|!a)uWPQ03$GxURG>%}EbmwE`FTZ!z3Boq}1A+w*g
zwKXh1JPv*jmbi(T@rM}7iw&IH#*?7=1bz7IS0mwbXSTziF_<MrpPGJM9FsD~%`6Jd
zSAV-HfN4(iyFE)b${S_JV!m-}{|*+4j^FbKGZ`U?LCeQgf}Xc~w<v~H)jV`jv>EcF
z(HM1iKbI{T8I6`OXJ@}Bdmb%<{z|k_wB;~XUE})-F)^wj;<fGFxTL7|b(?wD<w>#g
zU|MQMI$9c1UegW{t43<vK);UJ(P|O>4cELRLY89A<bEm$9$x#q|3lbYK*iB?U86$;
z5(p67Avghoy9Nm^3GNWw-EBw+0YdQL79hC0TX1)m!QEjPY?#}5p1j}t{rCQB-Cn&|
zFm!iKRoAIHb!wlzMJX^+>^PFt<hZf4hw$T60G8Am0Y57*byrw9pjfA)%x)}$7>f!x
zO#OVI%v)Lt2zn%Bc-c;!ej<qBjG3$q?Ssr7v}Xcap<8=b<NE|Y($eY5a@<6UXxj>2
zXL~cnz01@5j8um$>Z1V7R%2t&?(xTy)*I%GQGoZ(Arf=N+uspkV1}peo%T>e@UXLK
z85#B`zhiZ#(2`fKd%48$-E_m%=(p~4sldkK`yVSmnHiP_*Fq%4cY1o5eVU9!MrTZ?
zW@hu|=aFS{M4aC>^cOn_zR$K(V=PiHv@WULqqA1maFWX`wzM4jQG+`>lfzYq%iVvT
zOzdK3>nm6sqoeA;K{Az$99P(*BX0IiFP2#|Gru@LqOJl;OQk&8QD9|L)0j)AZSQpU
z(WA~Es3<$1phZe?!~2|4c}4wB^NV7v7b$Q0h8Ht=83qQF8P%t+t|;x?T%00GOIoy4
zQ+~}3PICHtI6m7b4^k=cFfoZxQGcWP14zuh@ZzD1Z7rl5@ALy<@$-LWikr4}6aKd=
z%-pxu<mUR%$IQc66DvGdsyTOJMDEN>#4~BKwg&O1W_XJ|x6yOthS$pL9<HY0XcmWp
zuIru(wvl~fl#hJ?S+J>&5gsb$>-(Uoc>EhbldnN;Xt&#WZh-g;WfuSBiEgXy+Gz(I
z&{h$XRG_PB%{=So6|uIBsVRGFAa*v%+U8?)x3JLoHP6t0w$W)Py>mkvGflwh@{hO<
zm(~5Vz>fNp_d{;2`8Lz3ogZNbICw5}5815#R8$u9J|qR3r=gsH?%|bMf!cW=P8mLa
z0@iqwgOH&0b-SCcd%UI^4nTjjQUmLYKe`Lug{zN350<IhM+G?r!Q-g~*cH2zWwVE(
zq!N;`J(0fKXE_3C<g<SQOzm%esi~8M6O$A~&KuK&X#+17Q7pN>woAxkJ~cbl81qd2
zm1ChpUv(XtIa?w$JW0+hJk}&}<!7nGP-{?)O2K|H=F|XjTw`rb;XX0B=EBD~wf#mW
zx%c^nx?w6ab8^jILV{FbN|2@7;;i4JPNZ0}wCVg_i}^JOw<?WAaY>beIz6WbGTd*@
z1zk;V1S+CEYZwLqkhG~rfi(@bazhqZ^`dP>UwHre+}w3PUYw+whCd^tvDL>jF^95`
z9w)1~z=Z!+(zHSgXnLp1uK5Re*3NJ$m+gB)O^e>%bpOtdk(uuP=nz2IC)7<jTxn<j
zaC3X#myze=mI(}#Y|dk6B|8x13Wx#s8XJe^>&k$z&<|&s_}Vi<B#nWLfiK9qf7l?l
zU?rNrNM>UU)so|*CyS)N)FlX}bfcm_7sAJ3vaxSSHxVrGa#Ku`%64-uw_qb=rkh+@
z(V&Y}J&=k0k9JrjpdDtj1&D57rF~PZ7O786o-gyjbWny39o~<<1lLIUtoF$ssG>xq
z`W|LJtp_A!Kp^{uZv!sJ_HbtN4ZLOE5Sb#o!V-DmjO&DoA-z&AHY2LA?t<cPsth*1
zS(=v6^YwM=Sw@I0k0W16SZ(FJxD9J)+ugeb*PDv@%R2S_;wJ#W`qKMpShodx!;C$h
zP%E(2BPmI2hZAX2^i%FYyqvT&F{E06D8oWNA$Vx6W>k<1_`_k*zZN4rSJoj4?P)|H
za%<^qKPSiRfhz|<oyS6h+}S}nG}CipJOKNmt_E6Vp~VlQ>J(pE)^qiS7jW)qioi6q
z-?_;|wS`q>Yf&}+NGK{stgo{k&$-OmaxkgyUw8fJJAEmro01uLo6o&ae~l(dgB1!u
zGz#V$!FG1=2;pGP%8LahO<jm5+-<R9hYd?Hh0lB98cVX;1rmMW_hGh_AL~fexza-I
zdIr*V>jJMEiNIKdkyaivV}&hH#H8t#1ENOBjmV9p-<S%x4gaAMr=mhK{5iY#27fRI
zK``v?3i;FC_2`9#>&tp~^$oD1X2#X1!NFhHtQCD}zz~@r_SnGWrD|CMC*ceFybwC=
zRwa59mnT>59mB)3r02zI8nUzoLg{2!UfwTmgKLh;<$#?#hA)qLZFb0d%(Xw&!5nR(
z0OH8zR`#%veUd6Tyhj^$1|{k=t_;b~$&qAsuBkbrr^+1b@1RtmYq}5fFj0*N)&*ne
z0y$|cEkovkQj0Ii8_OFS_>Px+@=PGb#oufe8=BW$NAslz8BN~cbN<0GFO?t#zrWs+
zF0<Ide>j=v4ehf8=v{ccd>SjXiYw0<bL8{^Ir5`Xl49P|$G1|tL-7l@$W#LOID)Q5
z834t~_iwxI%yddclQ<vT4LSfZEu}PJ3ZDlmEU)^e>l;sPY2Rw)T)|(ndpDokx;8B~
zSf^&VzZ3Cy0St`W1ZF$<20LN<zqSDw3153c2!{*m{yy<2t)7C?U?q86obFhiCJd_U
zUekvsi97SAZ)Jpz_ryUdIo6Qtr-Q4hmW;Os3)Z`Tw9oM5m{I<$WgNq-+!S@vzIPZ|
zaiMDpnXwhJ=042j&Eg;jCim7Uj_O%Za$<4wY|GF9Lb1^y#3U}=#vWDOuEU1X=mVdB
zw@?TB<-gb9<}tUjx7LVgD^by&@9zsixrg`Y5`Y^Pf;LZlU^;tS{9lIGH8ttgG`g`r
zh;<zA=1WV3Uk}+%)b+`m4F^e@a#>@u`r<8{G<5vjc9z^rYAc#@Gmh4^X&+D2S95ml
zTdjM6j2GDPP5J&yNMYgV-R<`m2Rxb#t{lm(1gfod7*?-YMR9QXYKjkOJ|<~_>V2lC
zrhzx~<?EAH=zuDqRr=_0b9PfO9&Un$`YiT%s|5Rnxsvb27Cm4omk|-9!p38O9c;v^
zgzWmNd=oFw;j>_j?H6+An9*4PG}LZ5=|y2(684K%i3+(lRR9CaI&GwohcNeR=GS4z
z<X5+7kvrQ2fc9(vK#z9;h$T{ZIf`H%EiG!p!pEsmUdLHmqYvWc8RL|yUjXh9pkhjs
z6*KW|f4?!;-NfLEB4TeguQ#~JaH;AfF|4Zdo?lgNfU%e}z}5JqV*~Cj-2&f_1qLpv
ztmhkFbxX<C|JYKyC>8<2;Ep0(3YtkBY0#K4`i&osoxn7Guw^G`YHDW*^YjZgOBcG3
zTii%(7QH}&y<}IQ(|14Cpi(I;G*N1KD@hR3*1{NC-%QJGVz;<)m?|nzprUvbl)QkZ
znebjeMN2<LMpD4f<q+8Vs~t0)(&5CSs?-`HQ1v%rZ+JnsXsK35Hcc}a&JTT*Ks`=^
z>uObrZ4(rlU%%<-)Q^QBZOX>LTJlIxMC5F;u@RRF^?CZ*4(Gyx<dwTvxZ?Z_783w$
zT4lNVeLx}7<gDE$BK-BmVaen{Y|P}!-KF$_swliMNsP;WDk}3auqe9Kzl*rPJ}^H}
zMGichn!f<%TH7Doh6=;BVe$YKSKv;%=k9n8nwEmO*E{GUg};eD-Iasi#YQ7Ry0__R
zzzUN8$_&8j=6)o~<Iy7-7Gylq<>3tEnvUkUtHuNJYxNq#m}J5?UFWotT>eAvL$zpD
zFE(&gS3GxIvin_GC~pEs{XLC3zVD>__Sy0P<=*dxWgu!7&O%>j__vs!-CJE)DDxyM
zfNdcJSj2}XJK+caIEN!P6tqjEv9bume3d)g4d>+{Z;k`OeV?p)ciH$_AVkEqAjLbo
zg6hQ|*k4_RUR)>wA@;q7XuhwnL(>EON$j{L1l{BO3zpGr+~5qv{vU-m`wkDJz_s<w
zxv@D@F1Ine(eC+*%uIm)V};U-Dl?#Si;EXAi7@(#aagq<N6%}&++x05o5HmAEm@bq
zUHfb(h2Ja4mgf#o4$M_1zuQDBDtWB1J3*Sm7%o*by*w70N=CLRw-rwQ55n8Aw>)tv
zARyGe7Rfv|vsNUh_#PL_X)eot**wqU-d$b^>wl!*I*i!<h>!(5gx9E9@0T`gy4mS>
zqQ~W`*vORJ?9?Q4ABn`yH^bUPQ&@oS0w9g3&d*#&`<bc}hs7x~LUeG!{mmo*?XXi;
z<5wxYcYnJ3si8T?!Ns`;z?~YDZx7&k2!VX1u}u38B&?4efMwZ#bay<IJltIiH1ORX
zr`Hr}H?H6#y{b(^85}4Y15!1B;~!lX_xFWrWzA4oC)w^d%vFFI;5fbE0T$8z+Hv8y
z<vD7Yyd2Z`)PFDMDabDd&W5dSfbQkj=H;(V*Xn;ZGu~?c{y#!M|J(u)jR79h-{Vhl
z{~rHW0K@;fk~dh`eVwcN-z@_mpJ#eb`szfS33%-?&;Lb6{6lj8|9;s2pHka@i~aw*
z(*6;NBFM2W?0A|W{NGXly6wMT{txpu=#*8iH7Y>r-;WyWd=j#O$?)IfA9=pNzy9Au
z=Kk9Ze-cyvbJL>;-S5NZIP9m$e;a8DZLY5H6^U+>f8bYbilXVl%JtusF<DWk$0H-9
z7Ruy6D!h;gxbL(gX|ErE_Si{74>{i!eXub5rGq)Dr2K}JiH<6C%Dg=aD=(5_#+p03
zN7=kWi>^v`o+^Qx8+X$TV2Y*M=XKOFG4T_##|N~5m#|FeQzHc@scdk+b$w{Lm7`IK
z9oJIPd!Lv<9W4i_UCg)Ea;xK6^~(z1y>N7Or=%)Tn$*(FNQ?fx?HK%>Fg7Jg<AZ@5
zKt10i$S2U7E~12wR{HP8G6=MPjufnZ*l*$;xH7m{rt1l7Ox|DrETqgzq3Kb!KfpoJ
z_BLEfUtfK^f9+G|M>jWafs*ZSM}V#yI<yA6fQyYrfhL}gKJB15YW01#0r+stz=EI-
z&{MN1D#CSsHxvz*<N~PCe&46=4>-rp+b%a0W(l#<t1?GRUhN)HOqIOi1<1swcwgmb
zHGl8i^7Onh&B>$s8+Qi%^sx^4Hg3eV3k?rPmju-14yylEm$Sv_om|Yze^qx;{&s!>
z8-E<We}vqkl&vv6t(K>+;OguI5W=M48doF&SlK{ApmlmNk5n1)B=G?jV!$sq1t{Nv
ztx#JIZ4aK5@7`&(1(^mbR5;%xCDrtzdN<JYmX>^dA6FAA-aXL$?FnyT;(r9@8l^KH
zgneLxgCkScT#{-kQLMP%yrCrdlU7AcOah`p^i0b$D;?d#a2-JgJZE5ky{2OCSJXt7
zI7YCb>r{Pt2m?#xtk<vKTNg)%WX<qLhev6|2L~ZCWs@55aZiH2_}tv$;ca4P-u(+r
z0D+cuk)%~k^!@A<U0h<D@(5Cf>8R2S05Jz!6BErJ8L+yKpA3oy2mAN&$-9AMlM1vz
zLQ{4RjR?IJQlEWK1Et)OGzmmU=R0F3dcnno1&_$%$v4cE)z#&d%~OpP^{+B|cMhP9
zZHlIU>lx5!(EdSHTU%Qr#+y=%0b7u-L5p{0b{fD|*$qQ~0GyXu8m~V$27TyNO<Di|
zDGkj*AzZ}V8KYJ9J7-V-py@*T{y(yEX{n|ETTISwYOm%TNawYC)A)x-=+7}GOz2qN
zK*|!iv$of1%7N~^Y?#qpS{~5xv-nc2LUO^MI=B}nl-8cyAR6dgg+*#|v;c5|I8ASf
zEG;!i-07`jh)&LgRgL84{~;}Ru>V@VOvFUi=~GG*f#IwA^M7OP0C|y*174h1rxaGS
zR0+$_sGY54eM89G9JL>~_)ne$RogvBKe5-RtF3J;e8oDbW2-G2{YMCLKB3?EHQxDV
z*G!IjB}WXk&m|GN`DZ{36p$AzD6Nl(pvU{PEbez7=*&6ksQ7QqKud0ah~AFRHQSA<
zw4}1nz5zU>i>5qoBDyH;Z`j?}tL+ZJEuHkhz#$pWFCUNf;XLR`^PhZ4U^XcOhPs51
z+EQJKE~BNh4_HG@tpMA6(Ih&M?HMk^3$kYlmHaLR3g8h(q5wujSAu)5ALBgH5Ig`>
zk<ck7c>gB)eE{0?U4uW<5bSdY+(-E0nnPE&K(F+Edk6YwwYxi)?xwK4HRQVRd8-oz
z2Da{gj9KbgQC&RI=rrhHXugHp3h&U&XufkE%|ES8(*#s{_UgN8!{0c+vz8jMfD}g$
z#)a)D`WUSZeTXF(P4|bG4C2?8_2i1ej)fh4;mR3@E8zRZj9HxVjY#HnS4iJGOyR|`
zxi59k8*5E`W~|(9y)Z=z)C!ArTkm(FfZjB{p<Y^g(&C!*(CzgNz((ybRL<Ipup50a
znR)Z4B**b$-WB-zVFL|SGOx=zHRcF~Ak-i5er!h@A-pGgZC)1icQ429=l@WI?;q`H
z=<6m#{kUCbB|%4~UZDonKQ4wS0X=o^0xhiV#!A9p%*oWVFM*<UrB?Za?2SZZn}Vcq
z^l4HYCiFWh4(c_a1KxB+9x4nTZ;T9X8jKyJ2ziDE4BCKK0tEPJndsX}?!$FG%Czf-
z8!bl3u`-%3CV(LGj)5P<JL`LK^B>{$+hQ%|h2|?Xqzqo~ffx+1V9a1#?^Q7qpzjO#
zH|7A<35Km<lOL>u`=GX_C7w>(Maf|Np_6?FJ0>*0Ghwp!L&^B|HbI)Q!hGY!+hE1&
zhaF|%CA|fNh<l0qToZJMDJJY}k^%@9XF++{58|J?<Sy}g=La|0*!gt=O9P4-`^wgD
zHZ2T#SpmR&zbl#!69v3kcZ2cBHhcfgPhO*?dhS4=T%!n3(L;$i62&!HRxD7<5b$|8
zlP16<nexz|R|0lj@HY>4PmlJXGi1&eVIp_l;ZP?xyB4UJ!N-1H(b5Y?w;M=yn5IbO
zCa@D?BX}~NIQL_U*})-FGeh@m3)W^~w!_UmNRncT5}B6HW<Pf;>W)4BrJ@r?CiKbm
z@oxGaJG<Zc95lrP`vb5J1kO7P!TS&=zC+4?eCrRL$kk6tHI$hRV`AcS)CvUoO@i;3
zlLg)O*5?;JC>}lzONknm<%C%<{n)QLIFo+^TH;r3KCKOx^hIPPowS?{9nvzDkch(f
z6PiC8Q%&qa0d{H*h~I{`gK}L4czI%KiNj=|J|W%D_KbRzhj)<d@JPf9W)`P%(LdX^
z3;jx@+T(XRbD`W)-<bbvNoQ&*)TH*lK{;mz=x*AvrF=e;T8^*~dn+P@!%1srO5?<r
zPi_0t@p_w|olchPKO+UQv&<2uV0`)lLQ(-hPW?a9(&m?w(%|mq9`2PX1~QL6JrU<^
zA(&(*gsn8a(XO0sx`aE4J(K0h{Q~j=E2j%>@5j50^22slG<Q-LpMkocy71fLpG7H`
zHwaQaJVSe~rz7Mr`;dLLbABv}$SYz3_f&6+BG%GG;X8MlCtr<hm4Z*l2^NFD0((bm
zB(tTf7hZ<8^Hx=LK=6gaLAgXJftxAKGO4#e*zo=e^4jz~g+xQpsR03P%RmZHDyze!
zKbrHob~n@4a%^u*NO0sUZfk41`9vS|5}EI%_$UKMsO04uDK-Y;4kBV&ktDF3#wvOi
zQk~N>SedIv*QWj<mR;CwapW<G&BnV>yr9v)D&|@ZkW(#t;jvAqF*CzEJHu-+tOSF>
zDjqCd)p!ILsgcj2P)zOG<%)y%1{zXMVzop8l5{{Y_Q~KgxMcoR^1C2@U_WotvYIIY
zpHbcVz;K1sz*tokyPoulK-b;g(=8}3_%6zku-L$@*6HXQOyt%(m0Cd0!s)|GC?`Rv
zf!eGCP%yVkgDo@JmzP4_q5akeDM;-Q@VQMH^M>;=mzXd-aAw%(eSm|l>vaa=pmRc=
z7xc5D!OzLbAfQZnE8o`K`&)3+;sB(XniT(W`_aI{N$V{nwfOsJ>+SK#FlLe-AM3%L
zpY(6>N3qz(Au_>kHun<~zxNlUkkeZ8*)$7Os*1n*&n=N*ed%21F2Xl#bT0xM^=<1h
z79Jq2>h0A;BF^%Hg81V>!NYqmbrzcnZAi+N>J{mt@$t>U&|#Krb=#+)N^`{n3fz@O
z{j?<ZxMz;vV=*P)N*Ab1TB_ZdAhl=xPR*tt1vj`6M9Z6^dcg<fMd9ayRHwo-vXoz3
z9AAA&*O!X5x+{(OQs1YqD>`?&?~Iyce3L{4q!%F`22URDSla+DK-!AU!=NHS@Z3MP
z1?iQE)Id%V?;En&z`*;^IN+UwE#~=0=lO--ICZbzRIsmY)!ER;q*IOqk?S0Jf^F6}
z=^mF|UKOVQyt`BpkI;To+|3aT)YG)&7^9mY$5eUSk>bm*xwSFb7S%w`)KI}p-4uoY
zt)iH{xv%XeU*yZH10a*_G&Rj$a~dfi1r0o1nN^<{@)IN~0wF?sM)^d!$id26$5?FS
z&}+UbS!dx*%g~Az0(<<$$Z#qK=wqfB=)LZ&g0BDvBi#9*bRZcS6oQI*OhHJMMIzar
zl~cpXC^R>5OD62(FY82}Cgo!_|9N{RVmsdb;0Y<elL+@~5w1Q_Q4jpEVIh}?N@(7d
zhcw9X{Ia_=z10wIyUeF(?`L9T=@?)ZI=nZRZ)a&fw)fx<gY!w!#afIiFtw;?cyHxK
z)>)W(o?hRuwaTuf3#C^<lhwJ=X|P`lae03Jk11urgOy4U^CzRJZ7~^~cN?&Wt}W+~
zt*no-5+*jlsX3Y^mabU_nX#-UnpCCkln{D)Y$0FP(UKuJ)ir>wSORMmr1yF_s}o(U
zcYmj7H<<uAOg8d%KNL~O8@J?QbcehZeI4^*zMqpIfn~_B#rUIzCZr|>&k@4<tu}!$
zcz8fYxxuLjduThk@#`T!XYp*CZ_E8ejqb^Vt#FzW#X-o`f!1gQpedG>Ep9O?ql*|&
z;Uy5ke<{9O;AH}rKWT+0r=TG)!TzI_<yCo+mdL@uw4k^5<PwyEp7-p8;idzAgRgNp
z*n3}obm(`opg-=ZVKP@xTxb}*GT-o?KN=}*on`{K+7rR&m+$)Xhi+Bxny5i+i3%rv
zr)Ivkrv6ul>=~1NG_m7cGkbHdMh0{5q>O#5i_qE*HPlsIQgpKWljB7EMZS+(ay<gY
zDO3#5qJjv+zlLVuiW9EBeI~5yDYWzSsmrkWMR110T^ZtTsdM=a599ai{H#X*L65sy
z-@22oq_8gR8Y!2OV&j?1YHiL58tUx0X=ptB#fxX5adp0RK;<$ka*X<KS6amYVVMhB
z^bPlQOH1n#8_SMklHELW*ryG90HI~^>v+MV%eM7o`Quf>-1mZh8tlDk^{~jJI{{jD
zkuk7yJN$8n$h|E|#)+O@l<)|a-OL^ZVN5@sWJbipr%dp}B%<2Q)uiFom(@Lt4_;my
zWs&KPMjR<_UwvGpNJZ7<sy|8Q1?I-PgJeRQCQ*iiMtzRr%p@<S$ELOc2{ys`JA1H7
z-dI$-cM*k=q;dcJL{S+2CI-fHR{aL6SP&5ButAIiYt}~|b^7j{ehUyXES&|w?cr;+
zg3B?+J&IV_!6qP^pIBiB8aol2B4^yv#~Y=XfQ2Cu4TQLx6(ya&pbhKStA3TBKo=Q{
ziCMpljUg{36^mo?MqUNmB%DrFRlfI$GAd;||DTzHI9%tV=QhE5KUw6?8fAQN{9OKX
z`!KB#SIBi!O-XFX`_wlrw-ktTrcdqAp&O<d7yAl++ra_9#}e_pVu{1sEx}677d=H4
z<7?b*iZ}{!{kA-ce6K!_p=E=Ob}t(S*D}QbYmj>PRR?Se4mC4V;!GJXL!28T1#}v>
z!e&KHhvn+h*A1A7Zq8GdPnvJ``J}52cTUf$isJEPrOo2F(XINQClRSu=)DwIhO`Fu
zqB)zhre?Ij@34(SA)B%~B^V%A0exvr2MZ6#QDI{pPwS9*Rd8@O8k)=R&d)Fkfu|sX
zvK75r1_S~=*aSHe0UXYF{83IKMf#ISY2UUJOC6Qp5zEq~D-NkGj%M>&_dVOSpTshU
zr7=z-o<R=h64<G`_w1FmK(C@@toqN6kL{~+>F<=T9yX6@UR~u$Fn>qI#Hw%Vc^6DD
zGPrQQEOJmiZdH9b^%`#)n&H=i1B$^h=4o#9mD6*5=eDeMbNaRkM&aiNXH3%jpkaVV
zL|*AEyOwEUF-05>6}bA(u)|WK1WQ2N?j|^tz|XVW7=IL&)tyu*NN|ffjNCW#8$qeK
zKnzS}@%?xsN=sEank6tCa_s9p#6uHYkQr%pDk<zh<BgY<)!GR?>FV2E`hzya30m-=
z9ZN;>?e^<4_LRC~YpbL3@4Wp(iRKp=Z4$jBLuqN`E_J%`5<CaKHFlWca)W7t7dd8V
zfT;n(hx#qe&jz1TUjA@%hb}kkzf)*YV6IR=7Hig=Hsyfti9*1zquH63<}dxGQ&ZgV
zS%g0w5!q8vf!b9Q7=Gfh;tM5kXqC%}B1vBKN9?pMUVh!(Kh~|j9j=G~IB{p&pvoAc
z&Ym8UW0r1+yYU%du5&1vMI2=KQxg%{S=uA&5HN5Z)5);3xr;y-1aO&N8Q|RQX+n<p
z9Z8Qf)RPtHz&FEb=4~x4Ho!Y9o}V0GvgsKJ4s|8@^*;Y;Llr*$c1Tx@ABwX76%-@I
zjWiusTp7Ke)mdQsk$5C^-cQfbt2d`pJ|>S66Iv?CL5u@~{y%U$+_wj|<WdaIo@Hh*
zi$Js)<4jTlUV8TcA|P~ur7AXuqFE{hYN*=T)9|i~wNHS8S<cBDah_b7oJZ})c7{k%
z#XI|t4m&=*^p4j?Jo)reJR3Gz6bzUhU2H$sj4F_w#YV_RLH;6}<e6j4hc7S1pHcqv
z!xP!Z(bKypD0t_>GZtNH`7Jm|PvlkH)t;;KkjAARTT(bcgJL>Ca!DNcA&}_v-}_Eg
z(Hx^>FQ=-}qoV<q>xM#WO_vMyA-T&X%2)<d#-{;d*)Fa+4H{u-MOc4J@)t+K@Te;v
z;zz6>3Oxsnq&`gcS)y!HdzVHBbQ$rfS}D}17;})YN&M%l`J=ixe)(dGGajCt+(Nkg
zmh}Z{l2UdRJH>x5K*C@x`_h*m1bRiZXK5?+oj=5Y24FBu`cj7fKlM9%O!_gi!Ia}U
zNJn?X=!(*Ft*3B|NN)(`ZyS6j5NTgqCziRVOu#g{$|N|Ad1Zo$@%Nv%&!6z6rul`4
z{;D(>61iN@d~ccf{BO%WVf76N^!LD*$`%Wo4>k~@!G6k#^lzhnS<O4e$NQf~&a@c7
z6kG;9PF;T07moWIspGMx#%CE@dpwCId{Zs9zt8*f^0UROcCqsyH42sWF5cCE0152t
zj%tyMBXWkvY$j(voqA)Ugj#@Y%D`(DBo<#VewZ?|W|6d%bfc7%V0TPJW(Om{2ZQ~$
z=19nV<R3somsIaW7ivX*Nq$ROd7e=2Ii|%&DrUV;=K*_v7pcWefIrynqw)y!0<-Q%
zoL{NhH@4pYG_NB@L~!?$6>4eTX9m9r=}yZ%qa=_%RaI6YIzPI0er@uxbiV>Wc{0?c
zAn~^b?V#RH=im@05i@~k>}_`7OjP<Mz4H9F9~E^#LDoPzo1MO1B)msK*6R%e15Opj
z-_`;J=L_KyJaepHnvW&rOd<cFK>a|(8NA{yZ|EULPr|{!B+I(gjxFv8>BEh@u8)f>
z|LD6k03f?_R6@K${(j#8q=-<Fpcp;7c!h62rOd~gCG0Q>QWemYa-qB=#B$Kb!^n$i
zLi>kNq&)HkDxx{k$4-&&a^Cal)hgtA3aILf4C5f!qf}IRRjj^Oh?ujzEh5W)W%+&T
z2l@`{J-w1a*ni8BUL}wYAN_bL)JuZK`TDy6a0*x!ij*9c@+kQ3WPmTra2dP3`yIfD
zl}g%%L4q9?t*ctS-22SYV<`GykEn*T%BAST)xo<#Fh318#A9HET-3+J%vAEHcqx#2
zW__XQgD$mULe~>IC{hjUY(Y^1-`~JkP0ifg(1~qU!oL^%xKv|ILslU=6wEpxb9~wD
zNbseh5m}bTj@4iUNFa%@Bl@=&>`KpaUay6bu7>pczIE;VeDW@0#8gNvfLe%ab#uPR
zjMs))UX2kN6vpeOv#c6o4{FaQ3lpaVKdiO6LSNj^B7B9dVtPjn4fndt5HKHIa!z*V
zAnQes;4(<D{|8n)%~_-1LAb9>Ri0{O26web%Jy(3OJ9y(r8@5nxj`QY<!@)qq!4O%
z^2<o>d8O!R)^e2@jLF68ktPg=sF8&${yCND@5qm|GASQQOPe8xgS#4N322pf-e%-*
zsuvTWNsm9GWpy-j^Kc<uCB#k=y;tF-;(i>Ufws!ELaw8GRw(`7E+`RunGAZx5?mUS
ztn08F8Wc_B3bL&C+_AWd;v!CwE)>b}p^{Eb;50eQI-E5?@DhhNLc<W(tFdI=XxlVh
zUolaG+peugYe=R+Z*x=(belX!4%O%}@+unO6cn}xM`XknexSaj6ay|%P6i`qGsVf!
z*aSJ&1YHU=(30Lwo2QMsvG^~gGS;$u@Cn?`I(*|fr71_wye-D_E9yt22-tWXh3`4p
z($P}IUX9tF)tQim{X4fw`V6orAD05nAwuMqh1W;NTjzda`o#Yn48FIYtx&Zn#ny$7
z8bV4+9F`m5tC|@PUWkq=X=S}90U_n>HD$QHQo*inn0k%QKE1~#T>};DnPtT~FL8(_
zW<_1^r{er*^Fp_Z;&%v!M@_4=c?WHH!7XLr_m{=$8nf(=NOj08-L}72$_?OtOF^?j
ze1LZzuX(|yHMQsB{~D>kEC18()6Xq*GX{D*)UJ%n=cD=Bm-*UUgQA_e6C0I8k+nOk
zKl_O$aY7M7OZrFwy&K5aN{>JsNw}+`dy#F6j$78<6c6_uyZMI*_#S~!Iu5A0*8S}F
zQ*8?W%8fM0JppJB-iENhhh9`#+@E=nlr87qLQfER+1W4%;>dzhtaYaMQ9#?n7J-OJ
zI{11r7;$E3NJA^tayOD(F|j22Y6*Ng)YPVR(INU^)p4(Ykz&TNyw`Xh46z?dOuv5U
z6?}lQQdDVu$9y;w#7KEZa|k4iL_aAv^9fZc*aH}4hubbzCdZ80tgHaBumhy_+1aq2
zA<D`v#KVpUYS6g{_`Z$0m$g*4s@ziyAM_>Y8nNNfW^V@wq%60Q3w!N_qYvT}SUi5K
zXFHdYqTzcp{K@cs+rhW>Lbt5!i^Ulp<7Z%KWD5{SdWDoA;ax5K>hBBz%-d%svgz1(
zt6=)BQ)n&rT6vdw5KdkhIlloaNG|C1U=$%t#eCW`yg#UEpTX}_(&RA~I>_(5zTSp7
zQ>37XTw9B-m@#Z*xVtWpha3w%0=c2vy|G(n#-F@pFy+`QDnStt@K(3x2JmK{1-=?m
z=Y0MCCxJ)Ok%l^Isn8yqLI11UZ?F}J|N5mFJ&Pc(AUqQMkl#>)0}_EW-vPyQ&{D3O
zd%XeaH5i=LA#RfA?)%Qrz=%-~daviVDDS-ZIR%<-ZT5AFVHpX+5(12Ok%$Fbo)q8{
z@4K%+N)zZ6ug`6J!0w$eJ!o|)sB*V&^|KczEG{*7(h9V?wP)~Q{xk)G2<-SN>cPF%
zW495$*fX>@b>A?RER}5#smc3yAo&=uaZ_Ofc|G_FEm%OnCscGnz#G&)-Ax2yz#YhV
zxXw*sa!@P$IavT&?b>>YgmDM$H&u}dfmFmMytxxH)G>F#jqN`?dUL%4DW#8=k<00s
z5A8G(c_lSAHE}cB28Kq$>fqZ6We;Z=JWI@F&<p6J0MUE<&c6H?$3rZX_|J};UFvF&
zR}K?-?Po%|sQKsj7ClHu`jcxfj!$vIPRj%0ugC|Rtct9YLqvaz-%EUk1JXyz@!a9a
z)SxBCvbz&lEi>c5Lb<z>17vK*L0&1n^|pEH(<Sb=6PokVKyT3QKKF2{oYQ&~P4=~b
z*54lT8`O)|Wy&$ndfzE(mtSCYGYAnu2{<ga0^fF$Y!o|iBsDdm_|kc4#Y;*f7jZ9K
zMHmcXD`VC{nya=Q5Esxj69Uj`U7Jn{C$C>I%^UsHD#wS^=>sruqniM{HHP!1f%EY_
zeT~P}qjm>>MC7+ZDPu*Rl!9?fD=tP5K$UnvLni9P&+6mt;*wXz3A^57;tAe8+z$(F
zg-NMH`VC51nhTS2OOO3Q*EdaI+W5&mE{@PApksR$vpQ=`a{iMpv$k93GYbEvvxRW$
zB!x2tyc{WNGY+q-K{IC;&u9FvBPPa8<dVe4Ek73TewCu`wjuvJ@EFK!W^7w=61ido
zcbkqqe(XC_%Hq9x+pBC~zy`i5CX!WBO69Lo74<?yD(Q{*37SqIwa+I><fu$cuDeuD
z^v>(LDPC;$8?@ce52lmblOLBd#c#e=-@pA@8;zwsU$S6$Z|nAc)s$EB!2w+34vB#A
z*~WLK0kI#e%E%qSbeo+^j7=rYFZT9aW&<Dl&9>?t9u9?nd*P1&`x8(QV1O)GmqNnO
zbz5m>`$J>-XwO%VVVW$1C;@wu*sY7_bzQHct!p%x$&o<vCy^GtyOwpGTW*TE2U|T$
z3j3oo<1J4%mr<aYP5<#o#RG)-(xp%Q%8y`e^Nv^738*=@oyzX_54;DxhG1ZHXU5;)
zZPPngUtgM^MvPksG6#x0(_elJITEOKT8`o6WjQ&ZShzjv&@?3Hv<D*GH;bapu%bFc
z12v&pTOJSBs}^`s8&;X#O=pJ4bsgA$qevM6(586%pnxw%Px|o~kps=!Vjmtd7vs=n
zRkK7MZ1doG+%<0y=R25?h3fU1nlONEWG_couvHWlgr^>kc&HmS1l#Q`I+RWvpa(~!
zLs~D`K%~O{><o_Qq7Sz=#NmY+Hi)waUgw7MBs9nGu3lc<3#_~;Yg11<_f#H-J!gbI
zz6zKX`fKGaQ8NC~lN8p0(1THI@Zmh?wyt<?%u2cTxn)^si~YkTijWI-|752k2i5c*
zxv_wpCPBKX>Ci_EF5>CsVKW&%TQ8=8>(o?!^K9A7YCnd&Nh>`JpVY^SsbOIkyZKA4
zf?u0b2J_X-*$7JrR2WP>cnLCP&R@7gKmq-&s(Ffj8%|e_N4I$`!m||h$qF-Qm^XC4
zgcs|CwwBmZhC$nAWyL4~s?zf1Z~nTz9aU$^bIXgZkARgsjVF?~Bf~H@M*p;cClbh(
z{54CkJq|RWBJh=5)n>522q`JC|6EBArU0<L@JVdE3r3f~e@vS>xkuYb&#C(bzKi#}
z+_TF+bKH^``&-7myjgjhv1@hkD9o>VIA>zz)5GH2`hTX5)t7OhB5D%!D92Cue&<f;
z(<{5?Vmg)eW3Li^Qeq}I9X6VZkMoO<gIb_&WgY;)^m>0dPWFf3`TylMKPUd2+#e-#
z?|108MSb!l4CRwP>-YVAebwAz?>Y3MB9DGkzr;`fS@m4w$AwM?7S7&lnIJW;HIl1o
z3H2G+92A`E>Rx&eKbf7~|G{f-Yi}nUqzx=T|G5k3&*T~uOP8Ms8OJC->XPN(4##Qn
zSTY}x5g-TEyzVCv5~AucRAsPjcG}<!H-Ey3{-1@xW75d>7rDCIWrVAT$YS=tUSd2W
zuMfqRG<GQ>T&Q`~`B`j3^>whkJYrzWy8-RD@RN_n$7`e`X#%-w7-5o%ot=uES#%A?
zFE3F4*Ar#YD*f}jjtO^BvfjU7#0^X%%Spr&rNR#y%Kl(Q^E0YX8L=x>CF_7(u=0~9
zxt#gmT0D9Igv?(GsknB=iXpIY-cm-trZM8!mCzyU0is)f>iH<u)ODRJ`NKLUU2O25
z6`^?*7U#!xPcFvXC;t}zWYi=;f@8vK$LaIVKWj$hYz*KEOH=IJO(0LK{ssQUja*eq
z${l7kz*cy)d3e8(M)aEAfjm^<VNY)y7qxqM8J;AE9VfMM<~e$})#>I8h>d~TJ=}8M
zGblHc0n#7}+mZ9H*a#IwAX}Lehb*V%t=8!sazSGze(X`eW>arxt&(yrQgy??Gv!)5
zs%RPV^mM&aoOr%J%V2gY`!*N6GdTO*SXi&=lnI?s*T%~zHrmMT8bt?N-wlfcp4PL0
z1!%*~h5qtV$QF^yHVu8A@GaT%q#@&qjP1}<eLan~#t6A=tU6;?V!()usF|ra{BFNX
z%cz^GxqdvO8We4zzq!B4Ky*(|4p!257(67qk=WMiRQhgZnK2dDCexf=a-^i6WGZ8-
zGXSufwe_4)wOeYc>~pj*y83ey1ChvAZr0wWt}j5$h7AK2l_z{e5AUCT<d6P7RNVe^
zm4Y1szkh6QG3=Mm#j4xz&14!?I4};iCCXs&vM0CBzjX~-$J6{UliI*9s%M)#Vp^;P
zA9$>rCw(VQnuoOMTpz#1qe;{;ff`QjFSqW1xG^k7prLu(ONk4lo$cR-zgEpNo)%|)
zASFc)52mIfc+W8PbCq9FQJNiPJgn;lU7A7YO+b1?OOuCOmoa0|KEca!&-npB!UqE#
zom|kDu>HR8?(+ORU4+x*q%=+Wh*?TnY6Z~?3FV@v%}JDf?|!sTeX@pvO@t>5=%tY3
z33Iug49guKe{Nrmim26)pSgMZ#MRwZOXC?T>anej&q~pJHr_y0HUL|wZS?-kB)YwI
z!6$;a&OR&q9LyL(aVAMVf01Z@`FZ{VjuEOgWXiEa@J2yak*Uf5NZK|nU1rh7FT^cn
z<$ATHP5Bodv9zXiFMt^cZIk%@JKMxqng+X=e>abOHA=3jsL-8`u61auzPF3Hpkz5L
zDa3$KCw$2EHxS(wTK@3i>s77B4$16#o&vwyy61ki6>39PYpwTHYC}tlu+wu@T<4pD
z4Qcq}&$$++r#CEiZxk(*(zuAjK`%3+5`V;?(x})es?XOHeG=>7_j<~VZ?pVWv2I|X
zu!!+^*(&E(j#65#3S*gJ%hJ>w2qZ-ApyYnM+20EHYXKe;C6@zg-*T*SzM#9ig}S=w
zH+gH*kjlv^u@eGxh+C49ul#z3BxvtCv$N_+Su%QI=+EZPhIt1Kbf8DPhIz^vNr^GW
zJYot8hiiefoSf$R4ZdEM<rE-G*V{_GqE<-7vL)Ngy$X>gG>eg!K0n_x%zNEreq0ND
z3?~>#!+RdgyazzK(?qDVO-~Hc4DL?76j0H_=Gr_o&(?DYMl))d?QHW?c<dT!+oR(}
zvNLNVx*K3AT5sQ<HdN(-UQx2YcC!{pk}NDNu6N(U9{1qoWD*1z0Zk=U{ELcn3apBQ
zu5N6>$s4Klo#K@EBg2CiP$&f{DIfT1s9dIRr|H+|5aI5Dyu9+PB^LlPJ2*I~d5x>-
z!7JZk2R{$%_xA^?)YRDEQ4J7vIvE!?r^O_ua<~y^jG_d5jCPzIAtSC~bg_4rH2oo-
zS+D1vS(B4A>XF25<L;pBar-?<r=+&>UgM@D1!!Y|VOB=`XF>}LI-}_VnbQm8pMfjW
z+2!ft=xFG|BV;hh=6Gpe)6%ghQQ=cC&X+|E0`~a(H}y!Wz{fVGJ6fIuWn-0Zd3hEt
zs+~ZhIMNU)MxK#aMM45^Y<JAy7Pop_0;@s!uP>c$$(n57m{HT{_n!B=nd8w|!EqFz
z`^S&+M*AF{Tx{%Z*&u$Y3_8`D&U-hfAu<Oq>TtKNpRRGvd)O<bb4Je2uecxXegr6-
z`LX2B0r}}Fm!0vwOMq{RDM60xihi^|g@BkGU<U&ItjhKqg$Wwyw>b?aWZ*EF?ra0_
zC+MZ?d`1BjuLU~Dn(EbD+|UpUzeh&7)lE)0ESp#Dja)Fqy|Svs$06b6_G={ix$b^*
zlwyYTNi6yUKvP3bC8DUL$VrGEx3zU09zdQUmA!Xp2|GP?oqH54{jT9uzXccv0aLE7
zNf+^=0{gH1>Tk6xc>~-@*LX;q`%6hy0T`SCnuIN005FxLFfuTLj*bbi!fLYUe`$iJ
zgv^ABXU=hj@+36N@R_zLKLYf<m<^h3dfh>Z>Fj_4*Iw6nC+PiqE!Tr>MdUzod~&B7
z<2`xSG9csSfX8<K=t$V@o&n^klw56TjvU<irpZ0X(jim>$QoDx6KG-Z3J7or2sp!Z
z9d6%(+hk~}M}*f~KTBmpD&=U>div6NSs56#3RIR`)iu1Dg#2!YLh|$deB5QFrIC#K
z&*SK-yb#AHu`#OHsuMCGs9VhpI<xpGGv)`RfPn!!YHBjjOCs&vb>c6;Ao4;g)*w&S
zNTfaTf&=$w8$+z65OK5&!|5dzxt=yN9f*%#aI}BG-odWH3oZ~jI+~PV=zV;6Rbn_v
zG^CxR4SGpR953LukQoC<xjMu^N5g!Mc5<-S;=UE*XjyIwS;^i0>Z5E=sswao!CE_E
z|I7F08azRAw6Xo~!V+q0xEvl1W7AjCv%2L&QGTt{4oXT$7=q8VEu`<7Z-PMW#z4Bt
z)iOq%T5A{@h>fVYVA7mWp(nOCGNz9PFfmYmar5%TlAfWaYNf+Th}IGWLP0`-;vqO6
zA=4GV`*nC;`|2e&`N+-%FZk9;RiblfJ}ExVOUPjDa}WV*s?V=o<m=np@b4k-epBX%
zi&(`(nt3@mu!bto30yWdG@uDRdGkgwUO7pD4$^J*vkYQ0@oSIM{0IVvdn~qvhK65Y
zK6?}ZGy^bK-p!P;#u+50a7OO(+qR8;6j{vJ)}j~D$c&Qt6(pY!`X!516j5COj9W2g
zFOUNjD1*NQH8eIkK+e@wB_tj`8{dgnu<%)sJBXcS>GC?*&fh1Al?@t}w|_itXhNIF
z%{hVl_s*2Hf&w~eQGTF$smK);72VAY8>R}oaeyBlt?vSl2DmN+Yr!s;ryZNs1(J0;
zR+APOmoT7>O=8Ch6QXukS-yxzeE&wJ+6REYd|h2#r<2`W1?&bBQo4<uG~CHSV?-~E
z$?@;>=UFRSeK~f9TGYHB?#Ljw*SFH$U60;sxZ8ulCp#H_0KW(?-x&C4-|XPW=GG`d
z=$8!e{YM*l&T;ysk6Sxu*J$4e)R$VJ!wH6#HOYyIo`W(>sBy-zYZ|;tCiqW+#I>7U
zZ=gj9z-z$@RZz+hnY@)`uDm#BjZcR>497=}u_>3yUhyZf(S{y$-Q9+bDv^ukPVUQH
z9U)=&d!M6Oq;sZ;d3ff+497RuyXCvF&*E7{ib_jU`I#mGr^fTcT;BY?_s%=XcPGnm
z_;@FZs><YVYAPR}CW+49$L<aEv~+pywKW@>l-^W{3g(`G=!9WLCw^kTkzz*l2Sd$^
zqnWbhrKdK$w$}Fc3$0KlO@i6ip|YTt<XA*_L@ls8GHE%CuCDIjFJF<`4~uPE!vOl=
z+H?^o-<f5Ng$V&51qc`%I{mN#VYbL#>fFX>n32y=F*4sX&~Whc(YShQ$&iW{O_Pdv
zwp((<A1?Yp&(lujoaGiW;dc=f{9Gm)bdc%k2~_@jmhzpgqob`YJGjI%(37VqJ41sO
z6?4WFmNSR^@mnqz&eYjiI=VV9ko}YlS|iIGG%bRg+NpV1K3yjR1rqHZxZymjbUvps
zcG9%)0j%&-2c;ItxC_oITZ$qr%1Uw3G7yH?HizqKX^Cu8f8Oyi{ia<M_j*$z5l>m;
z7tWoUR4Nl(Nx4D+>7?(H5Ttd?bS=Q2s<qo`e9uki2=*R&uo?%4qkrFU3fYp*?KMR`
zRw&+*%S#^!33D}WYxm00D6A)4END(9K45Z4i2NQRA>MgVSaj>{v&pg7eX$cF-J3Xf
z9Y!#U8TN&mdYu{tbGKS2&45X>&&@kcl4_=qJ03n}>584yWnA?|LSnJj|EYOZ6Tstc
zSyaTxP3#8vEDCgCy*o_}XuB_ZrkN6^tkvDryP-@8y-CaO1q4)p;p(j+q@{@~N2NrA
zNnI{f(w2?b+NSU~bympp(e?E_wIvpcgTv#TSh;LYLR`k0#=`Zf3PFiiR<1q2a|TB<
z1UdQGKrnR7Tza}Ztp~v537HD8K8#D|#pU+&gydTuMB1;^^KknigMQ`YB_zZpDZ&I`
zw<ySN9&V2kxf!A9`Ve%?Ff~Rq7nkhFNK8;yPj`lpzglJ#40=T>P#)P~DxkN^mT{y!
zxfY5;ivKMoMKFA%-nrn179SOs@)Z;XL>y<}ef3?XfVs&j{GiLMJdr2JSl^M7@?*)c
zA|OA@7`J~}5bKYG^x`X!_VEaFH2s(*RFavLc;C`t!?6K0w!G|ize|}THxGdTVYesg
z>7cjS<4UB$90D91a}e;_VN&At6VT7`0tNg*BQ79UG^@68zzNOv^I#4EuCte!7k|Rw
z8)2|PK@_A_dwc81tR)#<+5_>D@B?-%Gi3Otrsh_+j?h8m1_m|i(>gV|&4<V-z=m%<
z(%W}l^IKs#$bqemjlTyceTtFpDL<|Oin-`eH`JW<^`HxmhCfJ?7Zf%PIj{27_B$Tm
z0Ys#LMybByFil23Mx=c9#2j<HT*382lif^atPkzh-u%+kPnCi~M*CQqx31^TeQQZN
z6VxxC?Q$)2Us&MDy;Jq`Q<X@Ab03^$5eC~WhlKI&qAP|&yDn*wK7GPIJKfz4Noi_=
zzOze8dY1V-x$Wn5oLd<Xm4V1~trvb<#LzVY?Vg<2S=+u03r-;+`GNXQQGIK-Pe#J8
z1n`tVlJ9yA>K!#0<1jEVekAB)hK0~Hz9JKJ))Ej97=w5~&uLRO7XI45j;os+fU0%o
z*Gtn_oL|}Iwu%W3PI%8}YLyMZ7bL0Z9snOLG>ErUpNNbMa8f9CPcAM`o7)=7;VdAO
zSSOl2x5lrHI`w6F>YvArmL7&ReLRkYoDM_GybK*6(Sfvp&m!Qv3IYMs7z_%<2>ZhB
z<OKQ!^vc+NEmifcF1JSkSfSS{dqJ!sa7)LZ6bCe)cZ@?&J4|Qv+s>S%cXCe4y;fG7
z9z}+HdO&UPHBwv1o?XL5-n}v6AW@VG?El3}T<sm0Ecu(+YhlT93h@oyR@K_yaI%y=
zIsOLKpJJ_PO{40!<!yo4Q%Ddiepq|0ZZF$X6082p3^rQI*LzBxikT|;YM+8v&)=;r
zJ9aXRD^6vOk4H1*5a6@w7ED{)CqNqgs)m-AJ4Iiu4%a~_HGW3D_H9K=878VFCLLdz
z;#2w@+}*j65iQO_K}z@x^?CG*u-9q>Z@~~P3y+h~>e3lt9r{(#;oH|BO_q2@TxZZT
zjORHj`B$Nov9D)XJ>I{LGZ}6apnbj9*MW@)c$KD<lA7#(JY+S<u(h3=3(Vd?k3{;^
z0jMWjz}jZ%+1c3gvs=(XYI4(nx6tbEkKFPJXs#JGr+Ov2s(I(G))jJ)V?7(Az>LVh
zMho$>#`BybkTZJUSFWCC{KtJdB_zTcG*ek$o3~`^GvmMrGa=ile9h;9i8($tw)`^C
zN|M=$z%zfEF$Efwm8qTNqPM)nfLoXVqXFy_BoOW{c4llrK5EJ4$VZACSfIi<%@{|!
zCGk6R{un5{pxV`-;~oIV05e|1g@w}M2?c1=ndpp*g(x~-O|C>k;(oXlj4FJmAKrF>
z)t|-?VCu<7!-Wg_5*WztbXGTDFWKFLT4HX}psUVcW4I`j^Ink-CrB>y0~zF11KN|{
z9X^W~XhD(g{ko{YETxowC|LG$%#=s9&opPiNm0cAa%?HJ`TG!mI21}yETyx|^m@(6
zQ_|GOCJby;t_BRt;U?Xdr0IJt-zZ-`D^ZeTz(s!IY*(s%7q*Usq$ll`U0BHBV9+sK
zc~EioJg#mqR2IF2)q251c`U@=n#HggSmSAw8n_f43Ixor@sfeG%+mnfSZZny1Ub?3
zXQ;>lW2dK4<!m`IyA$%n_|F@Zl;~nVc-3Kq9hQ3E(T$rwz4KcUWtF-!H5BEDY64#V
z`dUB$kXf_1JkS5o|Lw$}3cF&?+mRL|blMc4lqW4E#mmFB>nf0PWv9g)Bbx&nTbVI-
zV;&#+KGe|QWs3R~q-Bc_Qd8G3HQPZ(Mv<0!S65dHbhR3tX)VKy)a3ZY)QQDO07}hX
zBNsG{EzFA)AqY{Cn3j;3P7HmPDb1<ho*lJ{nD*Eo0)bArp)~b;6%3mhMgc&l?|Vq^
z=b-*B&eG&~{C(ILSh%P5n`)<PGvJ={wav#v8nyiowtvZrpy9tECnk&<G_xxyxpO~h
z1~UYU#&%cwH)M}n0`zwA2Df_j7I)R**|~*O0(ADk^40B*hwplM#T^sKg4nE}wop!g
zhJnds(7f4+fTMu8W@ab$fVj<}OP=y?zwF}aosm>;$DUi1m%IrYE=1Q*R}XEK5B^of
z<(_N92eat6cmAW8FHl=uD{w*BG1#(iZ#M&BNJB(P+PDBPM&m<)8g{5Dpe{m)3gY`S
zpCPqxa~&x!sr*1~SZaNb>&!p9X8@*PnU$r%MGCNb6lC1*o-?eJnrg~H6fRYBQn)d+
zQR020o}=P*H6^=_FA6M)fh?TvBVACr_ppGmB66%)&il|NYx;;-@z?anRURkz5&fn)
zIeCCb1ZlYtyra>kU*x(Hv^n(Pei%9Om|mRZ<mF`*p{yt?ySt9=<oQ(o`F9rCVjB_u
z^8&5~Rxn%;<fwIn=S(yn{`7cgsl%^YensUaz>4^Ry#jEL^@^sEk%Na)xfj=Nm-W*O
z9Ui{-?(B>($;c`;xo=etqYCTm^Eces%s50v$YD|lz3nPdFvkh(pfQ%}dd(-KdT`li
z=6vi&ziXOdeivqZA6rvGg31qiaRrN&F%?CCSXoa1X9v^{%%FZWxS63OWMpw6-CMka
zDtStR-q$|?Z}eo{nkS{$x~Bg@r^)f*&<Nb-)+wJo{>E+Yq0nQFCZbI_MOig3N3~!I
zm?J8*nqN@@Z{Y`o+2<{ZGfb&p$Ub}jy_y1ZnphoC#v>4FklyN=EL|*M>XE&5Tv2EQ
ztg(Z?XzyU>UcQ66`uo<_92`5QBmK@!Zo(ehT%g3EZIfWkbWsmFE@s=A)Z(NnbF2$|
z$|s`_F9CE-a($a5%02A@f_40%?RlM_55R0boi+AyJlx8D<mrmNh{CPuRa%C~3dY(0
zL)=?ORn=~BqZ>gKkdTxXL|QsGrAW8rrjhRMR>VyRNH>T`Nq2)tNOwp}cXxUp^gZXi
zan87R-0_X^jo}{(%e7bS_00LJNx^j~?f3;PNr(d~Ku^uY!*RGA!n)$Iv$h=?6iT7<
zi3s3r+}xOu8YmwQ_Ris2dt7vU6i^DAM-Pt2-*HY}S1ZtYP8oiFaUmjnKd~7f1Kr)#
z9kgeNklB%=j1db7!~OmrAHFmXO>09Sj9eaDZ)F{!vXo@UXm=lqC4lAnoevXHdC-bw
z_2btSqxd_Lf`G9-Ix5HM2;y~cFz)T-c!2&SBt$GdP%Is%D~z0Peuo?jhX6Bd|2is8
z3C#SNYK%SIxg2M|AAS;|m{U-Ii-DmMHT&j*CPl$wxTTpN-W)9@4(XPmW@n=hy4!N^
z@Z{TL845Cj*g~zPt)(s7v}Vr=p`Kzn5(o)?XMewMa4-YwCV+1CFz>EzY^CU>!KM{m
zKy2jw^!LJFzoNU>Yf(EX(5jF7`62Q(PFGlMs2w?R#$>tcCqS8PY$ypuQWILDaI5%C
zsP+yP0EBz%mLCU^lac}Aea0WPHG`{%;<QpXJsjbkuy2Wpi7tzJ9o)J$OyiYf#x+XN
z5V15x!@(DjIJU=uB9uU&**QBsjz>x?-GUFs!{?be5ehYb)99V!$r+~4S4Dd&Wy>Lp
z0x5!RrZyfh1-Hh8hB`Z!;dp5xow!Kp);Wrbx}AaEXZ!M)xN9-<k-ns!0v5y-+@RX(
zFsIDXH_!c;3akYMBN2R?^xIn6pi-q<qI<p`Jr^5dYAeYucq(ctxQw&~xjEEdU*8qD
zAH7s5+)P;|Cx@Z=<Bs*r&@`UUiBu9hHw`^?uPMjz$&vcHE$Dr>@aD25%NiE9PR#17
zr7|eP+h4tU=2b5s<)756Cv$vMj&e+hj$GQ&GH072f!``GNrWF5kn(mE%E!k;BKLA{
zKJI&!o4*USF^B+`p;pQo%2A=;aOpJXSRc)#c6kNYVxp<>cmo%|Tz6><3wXD_y*{|%
zh>MD60a~PjJ3v_@pwOBv{1Hr;@DmOs@*oS5lyS#`g9uSiS;pK4Dxkm?)@J>T1W|)>
z9*QRU8g!IIBc~7O^<$!AY@d0<%{Nn$z)J<BcNXS($rcWUw^Qk3ZGwjQU>{9a{Ukvr
zOD!j=Mg9Y2ngYnzIXh<VOBNjet{`tYGcZboPgd;QyaCNu%^Grcc3gF;Nry`X;XfHL
zFDGF-+04N)j+8VR1Wlz9tWF~RMP&Qp;DLz~RNKSCLhEaktj(1cMJzWb2Ug+W18E1P
zg^w8wGpFOsAgNi59t_P60g;)O_|iT;G~bJ(rmIxzOmlpmK1^=P&iM?6R<+ps>G<gV
zOi{_z#lyrD8pf={MSV=gn0NTK{`#^f<S18H+h_R@r3>3n=jU|A6E0%#3U!?FdS<Dz
zwDq`4_5Ad7F#cUd44<}h7|E1wovE3l3}c|owx!L+&JM9fn%8gC1Oo!C_Y+3&jkxka
z#mBYa)SwP_J8wZ*TU~|W;KK+yy}0)Tv;jD$>+Mu8mQE4b;o;)7V|$R<_V!K7A_&6v
zB-1S%Bj<&&u~9bI9ZBgtn_F$a3xVw$ics3wIcZ)@P}7HS@$}2rtu0K&D;=PsF4<Q{
zmO89evqL`NG3U>eoE?Z)>1;YL>7l$k!Qjb}pzZGLz{5bVuB!T87c7!Hq8bxhsNVP@
zLorD7<G{d+n{~v)y{6M9CSSesS^kT7+03_ZCjbd>2VX=@P2ApmBH@TwQqS7L%4wc=
zl13+ARlDB)EZS+qNRckMRnS$h@Jlm0A9tU-+R+i`+7Nq^YwxXBdbWB$fNveS{(9cu
z;kIaN&d}fzo4Tgv0nEf)Hg|*!TEyH~B#}GBw)zgd{nfZ#fY?<Bci{mM3GQ9~Q7hME
z;S7x96Ln+Byxbf)0BWeH1nNeuqA1eh_4J^3(3t`3yx8UydDR){nbA;#NAqSSC?X$6
z%mrtxApBTuLTn9=1z*<}W`~_Y_8<*<LzaXqaP$V#(Ad~ocf`3H(BL63t-ZayeeBh5
zJzICQZjnf|Zca1kVMj6(>B%o3(3i@)^+WS?g42cjWH&pzXm_`BvQk@nDu8S5xTl1!
zqho`+;f1EQkwCz{@%T~uYFxr+DN3>N!6{{J^>9`Oc6N(xaNG90AHPWvjL=<l?7sbm
zOkD2SUdonc%Koz+V|HJ+aRy-686Jor-<Sefu@77#22Qfx<W=d&Bk{1^u5)SjT+z+Z
z-ezb&a@2Oo%`uIbl+q1T>m&-0BjG1964zK9Pa8PVa1WCSI}>;4a|@5UYwIb*xlVwW
zkG{W$?BM*FgW1(XmJ+1vCk7&C<I=xxGIsS}$nv6(7RxZ_I9b9@?5V)aV}Z#e?$zAG
zSIQa?{92gD+*orB;9oAAG-7hUR*qG4E}W-=MqR1}HQq;3E^0Ke`dpO^)$u7iP_*T%
znhZVrJ|}!}vp(#}gE|S~+p5o(G%}y|8PBh^XqJ6ygP^FcWZqfR0u3UQ${XCIhjlVa
zg&o*4r-7USScNAVC7WG+LK%am#--!SjNeH@H8R)|ds0$#B<XU#g_5{0E^0V)_F}{9
z>gpVpmux2Y@gV(chuq%Ry({ECdJen_X39j-){z+o%HH5~6a}j1mSm{AOxZ%oQ9&=l
z$dwqk@|c%XHeGdW6!sP+a^`xe7R0wv46qxuevY-7X0)(sI5^ga4pjt@rsP<umX6a$
zPrUefvd0v($7F>(WXcBPR(;k)QM{*wu|4a@jlFtjX*bc@6MX1B+(b1O;0*Vh(G&0~
zI$AQDrjqka?R!WMrqn70rdgeE5^>b@BoPf|_Qi#>UIfbvmS8L^f>y#W?dv$V_dcdL
zq{w4Z4MH`jl)8-N0SIDm4z;%#44$_egLf|~G~3hO$DX<OxARzIv;~@v3%!5v4w*&H
z)FHj8skyXS6YJvJv>lo6x4DH43l2hZ`kKA=Z|)^>Bz%;y9hTnMj_;N8onNDE9h|*n
zAD_z#BLyz`gVS%(ou2^CDm;hfFB8AGFyvUN`F`Be*_FYje}gpXdb(Oo*7zXALXDiJ
z`na?sl(UiXyR6ZA_rlrPodA)q9g$bV=H+7P<<fOcf~q`X*Kw(vAgHl2*-it})e$No
zR#THVn`^F0y9n^5C$b^Ez^lYAZ|`zTxODv4eLnu7Kn@JdI@-3}W{pWhsw_FL?sMP%
zHxnW7Mh$d#MBk=u=*T+<w@~uw2NvKug6mo&o#mDOEKMPk>amNHGfbR2;6)M;bNfD5
z#u65iZH6{C4m;K3@vlYFrQx!zMVKCT7U7mI`OmGdJ0A_UuCOk(knG=u^ri~11KL+k
z=hZ;Ajd^w<nE}Tu)m#fRYwsU3B45e3tfr(g_P@*spae>iV5m`&%^Xc1+nrPMUrcCN
zIe7FHB%2KlHb0`oLp=*L5T^>&d3+)Bk}dubwxpT~pN`R8fv~BmX+Az^oBL00;hRId
zMe^|$^90aV7=%kcrOYAUS)yaUys0^Fh<@7uR6U>&?=O|HViOu`%%uGNV~8%!zcj+Y
zm3HGd`a^SorRR%C@rEp9FP>0MzvVvD@1FyGHZV?wugV(Bp!^|wVfg~&`vsCm$TBGI
zGW=v=9fpER;wCI{o(;iA*uV7v?c#G#-s10@CKY$5Zj({%KcB?}Q)$S;PE5ti`sP-~
z*mbIIcK_=WsfDdL(9N8PB0EgEu4qwM5@d-Y%_MR?y4AWrX1#0D2M_Z6&TrZrKD{n!
z=jtf*(|26mAwTwws7R)K>R!9JWO4!-A*sQIUiaK}T-cJTxNe0#9{i|3Z1sNli!*=G
zFlWaL5^rx_#wn9eQ9$XRmP!Pw58=CH>}_dW>n!B`&*`*^b~~4X5xu<RU*?*O*2vm;
z?#|4n&Zdv4s*R|s85nuTNE3o1KF>+pMe>eAyDJd-qbT5fy_0;Ye_$^V(my&Fkl{<#
zxykE5$Y?w|mBc$<9qH+be11`;@dR=zbF5uv=+?H$o05`ZWtDFn323p!<-SyIpI1Il
zeI;m>>7tLNK_t<`Y`td#fG#R1C`cyV0`BWBCyg>kH)GX`+Ary~xkIKL8lerYYxdv@
z_<s5Ez3LR8aC7&==`+m5+Vb*}__?`HDn^YVKWvkO@R?E)`Iu>W$||!o(+9p=8hJtY
zPy%oJiz-DZnL4`b+Vmy+D`A86EMh1Vq!Ixn6w=Pj7|~^j>VFHOzkmZc%!><m@H9Tw
z-z$<>>|R*vWA5xtTp`DL7~6Hq!~}rJnCGr;@*p=DFoKZxaS;i+RS)SNM~hHm9-i>Z
zfU~}Xgx}5F+1@>Wa7KllJz}nJ1kqzt2X$Oe$2cz~o8phPk<p2-OST6DjP1S2V9&H9
zM2b04qcp25OAKm-;gT6>u}p~xg4%`L_s}tTWF!^sgWy@*dpWhWde(9}Y9?7d14@IL
z=osku_{=h?;V-!e@0?#C02i)_k<khsu9&E}1qadIE(;`2tKL|IQK!tYdO%OF1V(43
zG&!j;X7!!pF<tzreC|-t8)34rSY23Da^%X!#@Otb^l-tR!vhF5b|gNdRzw6eS}g12
z*bxyDD3SmwY-S&C3DY>$EYODD@cAovOmT^kD_a5}${dTc|2hCCuSRcV<ZI^LQ_om%
zSD?wou50@-G1U2D2I}K4=OzpVAsy7Iq@y@RL{E&oP>oC7&ZKiEHGncnz>brXW4JFt
z;M-jEM$z@@`5Ci%1)G%y)URW6Z5wc{0EAL@1DW|+&ejb&S&t$+MpsPxH%bA$aj*jS
z7w<GG85p>4`2;-V0$-c&LxxpUAOH};{_*RrAVf=JvNGj%8_?I94W}|}j7%DJQJ|=&
zjcS#S)opZlJIEprZ(lrIV@G&M#h=u-Vsm}C04lWjQg%|NxxF*qgMI0~<mrYZ3#cD2
z13MZdQ#O^if41?gG)z{^Kuh@J(Li4kl$Y|pE~9|U>KAW)$%(Q<3pM7Q(_><Jo5DCS
zl&rlgl^GjF=;vwkXpFHw$(t)xmj;pN%{Q&Qa>>sxDbrxl05Bs23!5m0i}Px?39;72
zoA|+lq__xFh^JtxaQaNLl3(kbEh8UAcn2uGf*#L5(e+dX5QBs2GEAM|pS%-z7Q?>j
zD%54qALrXNTmqb~rKLr42UMqjW|c&-1IujJ*uoVKmsV1_I5`-#N<gX`tZ;{AiK(D~
z&TQy-XWZ$$WsldP)Q!KPIjZP8$?-HHWi|)>Y-{WCYKu6i6hY`dpZ8+_JN0-^H8n__
z08Q}De2LeFnu&aBXJ^Mz0!JXvYF>Aqg&I?NW%(dr5OpE|8@)AIy0JRfOoHJ8qoVvL
z-AfbEtP@Eso62edxa!8qYgrk~B%h~PknYaz`MtBrN^h^6!>?0GZdw?zB9wT{>eNI;
z=YR)<@=dJtFe5?W;z<%C^=b$tcnI;r7^oO1XqZCYhXINOML{AwOj?QEm3<}`gViqF
z#xAJP<bwKqFm6W%(%zmlG&pR^@qk39+F&Ggv+fd9yOlnrkEuAihb*w)OIUAj$2@`_
zB(2@6>ESi*?cqw4)a3H9TbPJ;yX_ywzH<*O7Dzld{a;#EdQMteT7z7gvKFI&c!mNJ
znGP^>{CMRB$PMKBw1P}ypr3$zcwy#<>?fR|s-}_zbsnCJc;CNUv;G-i$kj6LdzaNk
zyLbOiyqxzdu4OmrMM-8ndZe!}>1Ac5D<1}<GS4eKINZPG8?;~2MIeoi?B(R-ADhJ;
zC{r;TgoQ)wvp0VR<Rpe7o{K*al2y?l1I2cL;>JONe@ag`=}QU<3?UZcM!JQNELQ7!
zohO`Q`neD+=EN2~*{k2t2zsS52Ai5*?U!u4ydRFCM2w9;Gd%1{17}W(?JyeUV@>SA
z4vaf(6lQV(8sq^&HKyp#BcInl2i*^JEh+pdg1V<V&Ka*fF*?D<!}4Qpjc0bVvV<2}
zybDam>FJNaTOaYtD}^itf`x<QGXMR)zt+syq>_#*J|UrOp4-+sK;p%srJM?%ii>BY
zrw2-Q;NevQwr~3um<*a<aMO7jjTNxPGm@qL{6aFCJ?!D^#m&zM-l{!4A%cQ}5G-N>
zpZ(Jp{=#6l4y#`Tkt5fZnLe;TP%G4;++RPB?vkM%n!8V<==7wG{uVR@$PhsBQQPEd
zL$pwgI!1l)N~EM?#ZKzm9Nko%-E`lqkhj#wtgNxES^?(G!l`0x`9HBxkM#Fo<?ZJr
z&0in&CG+N}=4xmr)I#|H2vd|J^6$sPB+1mYegC8%Sb(3iaC{eXE7_@gEgU&6LlGHG
z{}{qCJaR5`JYBRVI{=pGRz-hd>&6!ChXL|&5$~fMS3LZMGZb=SrKDHzx_^#OHiFS4
zJU+{18u>&ttRO@G)IfxCZ+907f*oISTppr~3cQ&wvT=!`KM(Pytc(7jsPcSadi4n%
zatkx8D^_YJDMw<J2@CSR%_}6}DJ`zXH61Q0;w{oXbV4FBGHm=zW$eb4$hV@x@Ej+C
zyMQE!$$y*gyuFIcA9w}BX58I<_;&rBJZ1P)&zF~6@GX|dIC+@*d%MYAL9L7!iOo)I
ze(G*6Sa1m{84Q_P2d3uc<HS3+?|8U-Bv07mLZ+q#z^Xgrc|kh=2sQreO08{G(w+k>
zL%Am@d2M6Gq@VbKjIot09(==)E%6DWWI&TRknuEs^-!s-&bbeH{rdS<7*F_TKJWYQ
z-US%h$9uIB=h|+u&zjcQ>@V1vmp98qhKB0Y+Gl*Qeb&(+uv}YP(r6!ooZfuy0JKZh
zyl#Z?4j}Z2IZ235bwIN>yvqqJ?uj$LQuF~32%m<e$TQ{hvuT|thB=P7iBh1P{8c?3
z<}KLn2<Sk0dFdAInQeBm<Gw%9^)47ONA!Dc+?#+7`7fY4{0iG&%Xw}pzGP!8?}Ry4
z@^2V*tsS;O&Bd-UK*{Isftm$qHP{)k70t?Yug_f;EOXy?#mmGj-H#BaAPy1p*Xmv3
z2^6KAf0AM!Px1xKVS%}fE!ro`sA8tt$0u1tQ;-x4!QdO)>vg}e;iFyri(&djHlV^^
z4D~_P%JL8gn~MmCAE6p#Oj(w>c{{(y27z3JAHO;gIkdboQZoiYP}wRRL;xxvLPwte
zz!tx`ogh}^wZia-kGaushfF^cuUcz#bfU)QL~g?g=(xW1&As^~g8g3b?1vY`LChH6
zUwAZIMVTIyN9yLS$@9j=+p<(*X%9lE;o?ZXcT}~zhFJ{oUX2?%D(hgNp1g{7zQk*T
z`nP9ik1l5dmXb1RVYic$=p6>m?DWXl(Q==wr}uW<>!{%}u$m-xgL%k+BFtm(TOt`T
zj~2_P4uWV(fIIZ7fw?Qd{PClKIwKdvRes-&;4U)q1uqFrv_{5=If4X=i%Cx$JGaSl
zo{Zl>|KN91js#PVnyZME?d|N<2lOGxknk4+4h{zpy`CC$ARGfew4CCmeP63I)!ZaE
z{s*Of{2{^_?Vr*iEJjihM(*@*O(!R3YO0wv{s@3g&~c(eYVz@^si|E6%kK+g#JGn_
zLDuf~TsYr_l7z_7&goz;UZ(CH7d4l2UKyZLS~ZR2lx32dhn-!VMZdLShZES4r%Fb8
zS{@s4Jm{vzVNGoN1q|oLR&qmtK=T>_!K;4SR`(=`Rq6VRXJi2U>ej7*u??|luf&|A
z0aB1hb>-!Sf}#}gP#B<k+XbP;s=Y~xN@|({92}+{GMMu6+}th@00%dexuXZlc<W&}
z@Mz^YB7FfWR3I4%;P?Zj{)pJ6R<M7(PX=%!SJ#?aG=M-D7fu%i%4PBL&x?F!n%Y3!
z^QEj}ZePl_B{gnv5)4zx{nk+iRDbl*H9k9Jp!Ndt*x~{$cpwm_2>GmN;|D(>CEeOI
zH7WfLVWEscLcWdQ3(v}`O|11wL-T+Bf^|S7tq^uplABA+6%86D$W8AK+}51j+;xYY
zMD;p-AJ{QsqfAE<0KK_5T*kS<9r0yqbYi{50ok{Ncr1wE$r0w=PwWpkTaXZ(rE6-T
zV3e`0`UOBuAB9W8F-ai44kmIv475>QOLD!v87sZtN$NkBP}11wNOca|G@eZeTHUBB
z>pXkTL+GOw8L>k`LqkhP{szB_V~|07L7CT=s9R;dKnxg0rf4$8@jH+uBkq`dt#a=n
zVvUfB>YRad6s3RSakbxszWx(g1K7To`9GjSjSKDR2DgooF)q&GkrY0M&xSu!Uf*uj
z2#M*?2bv;bsQYZcubm=z4lHb}LZstL*78#s7WXsXA`7P4_&CBn`0Q<c2Ieyc?Dia?
z_0?&`4Hctv=J${vF$umDp+rFoyX8As*-38`OD>?SSY{fin!99MZ6cq{k|=}OJ@>hD
zQaUF85X>iMC$xI<B!&Z*S%ZiaN18H{Z*mflE|3p~vngNaMTtTZM5tp^grx5k772kT
zqhM(jn%vuPS8JL?Xoin*s+d0CNsv#gNzs`r>uI{8iAm3Ntp$zm*<qjo8a~s^;K<r;
z=WPi5Xk|URt1wTKIZ{fU@wf@m1L4PC0M0}|Rs}d_3@)=yL|jzooUKJJ!((jLUk^$O
zGgV{z+OIY>>Gk|CONd`Wk1^z+L~RuDOHTS@80u;oE<Urll{J7V42r*Vl^U?bGp2WB
zH~P#VAP1ZE69){S8a$y0mjD=-v5h5$c)sHO=l96)0igF{Z9#s<&c+B8uU)U7coRS3
zo_qa~Fn(gbYDl#_S7N?m4*7S{RH^icS09Hg$fGoF(6St59DbvV`8e0kZ}KR9t;1$z
zVG3CHkd?B=;&)P|^<RItthlNUOKsKybB|Tyw}nXjn)=P1xDo+mI6v-v`AF{5x?J5|
zGFTO6UKyrV)5}cR#ZIR<SL{F_cFNZckfsb@m3iwmIz4-r#R;0c7LG~^n)OaPT4Y~f
zcR7EdgA*)pgJWcMT@!Ykn^>V;e51H{41hpyn^AdH%&rgI-;o&GG{;RL3vcj4$sfh(
zv3&i&4S7KQUgMx8ofxPR=IO|V9xn*>hx)}8&JFPJpX{-Vq$%@k#<PV(*KAjCa%ymx
z0gAni$gqW|7N_TL7bkb&Z=9>H@kE*oM#w>gUJ-Kh1zx$qTMo5WH`WMSPaZvdqsH`~
zI(cP$Yd;bA_UEE+02+kjKS49UT^)bmFTWs}-{=h3BO=Ma{)+YgZ7X44gn#7*fKR!B
zcmB15Kkw`R$5s?y{%xfG>v0M9(a{?t2=~<{z1HtW`VB+<!hR05_?*g+{uM`nB(z1Y
zYZrj}pX2#;wf@-tf1cc5Fs%Q%)&J28mBOyved|rXNYN@a*`!E%0v*+0X{tv0cpmrr
zPxK`k@RwS@5Bm4}8UhKn-d~K5<8WpANDKjvoH&l%#dw$_4nFzsQ~h;AZb8T<-_ZSG
z5dU>s`Z$S3-qHCW@11%wjjgSbboKOHg;zcfzwyTyB-4d`Gi2M7@+?^rwk2?V-@ZsL
zKq!v`28a>3LLeb>cTN#JGWN8!>2N#Kt-6+M3G>MFdzEN$xm{f98n8+@>~QIi*2<hP
zFq`y?larFkv!a2NgabM~w;#x%q(wu6Dc?t4)+BQG7uc8ZNRVYoh=U1!vEg&R;zT?P
ztK18T&K(0S=*OW43wc5e>=twL8IfLIslpQg8v^8(c*X$Po?Ao*toS?{J{{Dgud!Xj
z##VaE@AaP4O*MYw#F41R0?R{db!{_whCBZjTFA!X#D-0#tn?jUBL>ySRMdjwSDIs!
z01G;k@or(@Fz8KMTr4BcHQxi1E`nnPH&yQn$W|Zh&$?fz71m!b1LKTNohx1972;^~
zSN~uw?ddj~jg<CsJ+Hg;A;#6{cY_0DQUw<VG*IY6RLe})_;#+hlU;mjfoekfL(52y
z)ml*O%=L&3fcy&ym^C|AYTuPc4wsn~7R*Xy4HeB({PI>M&_+vL9TB8@U$ti4Io?*x
zRbfyqB+Hr<21D-vY)eGEo+|wH55Ek$`_)i)$k*Fw0(Esos^53__nBY{hmT^q*cAoH
z1Q6@%;mCKw$mkJ#>ph%RRa7r+kB$$*gaC)?S$0Lj=Xu(hF$hlgs$Y}hP(-Ui`FzPF
z)$?qe229MGx%^08neRb4_WFn-B0>>6B9g2zIxZmvNa($n4?6&^aQoJ?<s?hU5BsVv
z)jWF_0uaIY`S4O5ROlHDI{IwtupF!(ngHIuD_}<ylDT=#$y_K2>N|kz0j83HkA{j-
z3rb&apHl{m2Rco+<e3ZAMjJq2ulM;PD_Iyf4WG-t;p}z8411QGM8@E5HZ2o;W0?ua
zcOMWDLA6SB^HuGt<qm>_Zr=*4s2DBHk~1yWfJn$l0#}C!WjKhF>9U!zjU$7G6mMpz
z%z7V`H%~*S-pBy#ZsqM;I0J4FLoAa<%*7of*}nE42ig-F3Ba6T#zAD#7thD?ot#{#
zb*QU0t9IiuUP&>>ac^*`!TTB@iNj{)v!3;YkT{vqh$RMKUnt|^PUUg_Zpo#I`KseD
zc8ZhU9UiSLx7!CaXEOLG{y-r}L`sMf7BtU$prxhtmGWat^G9$HPEHkwzJ;ki&f5UV
z(^1ksQV5GWUIOjeKm9C^tsno*+(T&}(YJ7cjHJcmLCr?Ld^+&F#X3@H=$_bf6U~cv
z>ZKkYHA5!dfb0Ntey7d!y?dy=9SnNKFyMZuQBfU*>B>g|KI`}(F`jjDq^CZ;eyckW
z2U_o(*Yd8_8xz9vn3dOPokK7c6VgmMSCGu7Eafk29lJR#O=XbxXktes=e?gcW@fdU
zTSLP&P)V%xr2tjWnP==8VJVakYHZv+aW>7hwwi5ZM6Np<Pgn{Zb40{M1v)j^1K9`<
zy`}UO?dkoc@(c5+KPLeoWqEI9d71S=w-Yhf{aUEQx*_1{;LUU}h0Ud<9>d~AdpB7X
zBM%E{P-)|Q3&qN<FLAyKwP{4bKrfA&7zI3Rp#j%Xh3P;<SH?=~{7dY3ev{s*qITL0
zVef^Bk<2z^2&~$@Ct5ngp~N9hX1Sa}?K6F6K0B4u1c$%Y3tdesU7@YmMFRZk26ZkT
zFbWc=;$)~dmP0I#k3g=J;vm2gmFS|!3U#O>o)zV2)Ynh96bxpWtR77a(a0ShIwJV?
z8P0-Ex0heX#AC8J9e#CrnP2(2poZXy2KZngi(OgnWoUFuPiyEEe0*1cPAt8+JcsqB
zIWcx~Z)1#CPIw>30j1=1)SHd^6cty+6A1InHoSp*PFs;6fgN-xfgQN08Q|-bSok$i
z3+;HeD+UP|w^$jmIXStCc#{BaF6e%`3-TLIs8Zk1NrLK<3L{+5%UEA3XdH=^wHTCi
z5MM$Gbq5DZ1O1lfW;n*C5`A=xs{U__TA(ByAQ5_G(P_fS?^K=OsjF#ED$hQ|Mlo}&
z8L$L~1qc=v$!7P$)^vG#eLhfU5~;k{)BpM93w5rpEO^{Er?i9`eXp+t%hzXIyd+?!
z@8SvNdh5U!8AlwGA-WSF!9#@al4q?EAzbj%`HWaVRu}5lMnp#v5aBbCl0IovA63u|
zcEbBrproa;g-fi?t)W2T9ZGwQ2V;74r>dNdbe^R}mL4og6TCxS07B&g?P?G+7>v(s
zWnngRIZh)`F91v}w;+*C3BZijSm?4bmgofS$>UXruvndUzq-EeN%gX1BU-@5MtI0i
z$wtrSzH`DC8buNi7>tR6j`&T$MzUbr+F)xmZCrialOT2nIA*-&PxHp(Z7XLzdh0F+
z9ZV{1t`d6ndON#sLH;Z1oyzNEFGAS>bKmZNb=6V<sJB88>9sIv!(U&oKR=%z7X4p5
z6~1+sXO!W);3aKoW!B5gSVE<fKVW?}U%J1a=-=8Z5;pZWsC2Let-V339oJq07MELl
zar{IV0Q`&0wAAy=t<o`pZ{Idt&zJUw9=jc&1-8f}b2aO+rSN-~RaWwGFuv=W!;Vjm
zOPUxTmCJk&{20Iy0MsYTK<v<ArUX#6b9eVb?P@9#BF6E`%AD#ZMW$Z<nb-58mDV%g
zOU~H+bYdIz5Fk7<-7u2vrfKc>Tu;2fb*%6{x(y*=;{Bl9zU43(aStx;ScP+;t^pzq
zsj-6^E-!}w<nJ#X!}{PJn?DII2{u?#E?4hoXuV7x{^%cU6El6foZF*}%Ino81G$TW
zE}fX*efs0oG+!h7y?b&pl1?yfINaZ8tPuV1BzkjFv&5!QF^3X41H9OePfonA$HjrB
z9e5JQ3Uo3D)_VB`VIe^@;q9Xt%SEB%!<xXr<S&KbJMK^dDhU8@I~^b9<RxhpN=8Dy
zw2p8-wweH=W#v+N1Wl~D`qphlTHvkv(7e=R=~GWZf3bQ#)l|R^kc`S>z#|0>mP4&H
z!^j1q;-h7|>7If&0_4ZyBEQ+-Coq_-rXsWELw10xqt@RoHr@<q1ZrdI@#<p*TIMzu
z<?<+8JFAj{-S0bCi|qiKV8GcG{^A8lD+Nxxu+Y!~jnYuLEUPp7QWzs}z!7f*({V6T
za#~I7J%T&$Tyjxy4EyisU#Xmav1pn*VS_mh-38KIh>(y^L8QZt2<-IiPWvKT7X>|o
zO(h36nCu<3Imt(fkN8wXdAJBxca+-$6z9MUJevOosBe~&s$-@4d>R)t$#s8b$H6w5
zZ+uylF9GX_Uf5{H6%X8}_W+=Y33<qd4mtO@2%wA4BVL{tl?Db!|F0BespO=@cU<la
zfc90GGCYw8$l_iD`4Hk$UERXM)JC9Uf{2KS0C{tAGO6935_TpP7uWEH;{;%icw*3B
z0-E@63dZ`}>$q=zd_bcs!c_NaTqt;!NdfX@PbjGG`fSDrVyu5v>Vv=IuC|}GR6_R(
zs-N3f&*)*&@cJ2h@>MAh?`iLhv8aXo)y6Jj*e&Me0KCUz9VifRfPX`Z7un)rY+z0j
z9%}VJyeuv&S@tiioT9a;YrQsNZt$S~Rb}d6BNn2*Bz_>6xea+SP)xv-6fKnjmcAvU
zv1Tw;36QL`th}xJsXb+e$F)ulE|og7BR%L4ef@<{QeH+<Qqt9(TK6;TVk-$#S8XR1
zU7Ij1>U!5}Eto4(aos<dj6X9F$>$Rj4Jl;B62mav6}O-Lc&~2!qkd8upFda0QX=dv
zX#UmYkr*egRPbJx-$yk~nPX&(n`;>URvZ-XQU;|k`i%LDor?P>;d&#phDmuv%mjcT
zS<5i#qmAwa$WE1<7IN^vk$X^sj;P>`6>3q7kpXX`R9`ab>IVBSFGu(QD_9U7(B8)c
z4=UKV7@yr?`)Yf;p3hJJQWO1o97p$jEsC)<C+t92?kG$V8ykCcVrqDB_>&?KLqXRF
zu)gTAkWd@vbuQat{=+e2u*5Z$I68J5fZ=k>IdXkq^&POS1~L+b2hd!cBSMnJgxs?~
z<(5wCaZE{@o5G}(95kg%6?6Dqj=P`wkV8biwQ1Mc%2AO-godUFIM6R|*H_6paT49L
zkJri?lBCiH7Nq`JGf)1yI`iDm<>s<(<LF$800(UAq?OL$%`-SYiuo@*31g#*vn+LV
zMR~<NjC(*}8N#YmVs%B5)fTENWX1svl+iC%|C*L&rP+8Z*IMCNC0IBkiPuXiO?isG
zwn@JPX2}&TCE%*3t7PE!%qBZGCw`ILEe}<)%K6CNK`C7-!`?NcrKL^1ATK+P=aO19
z>>;Psdgq9R_m#ZQ?%n~P!+Hy>r(_%{R+^c1aldolo+(z-{kl$(q7m3Px+X31m@|Q<
za`0dUr~?4yL=#F@VRlLG`sCeFz0B(RCYA9Dkh@m7&VlKVz^-z74uH_9S_B395%Y4z
zj3|i~5ky*ibTySI0BlWGTDy;j%vxp_60hz61`9ZX0t$_Z`PI~rBXh<!OqHRKqH&VQ
zj_iS{>MTmAfjzHfuJL$}$^K%{{yrcR8-Q*2t?0+v6}ej1xv3OwJ~>jMiQ!=uw-WL|
znSz`GuK0JL!g9IAO8EkO4<aMkZ&cZ&V6}1TGOm9X#)*%B@#5KC0r{7q@#|<#F2>F7
zbkD7>281x|nMO6OF(e@U%oIP(gG+r)637ZJ`bJ7-eY$ctKL{+p(Bb!N=-S<7iQNF{
z!QAyn2epk(kr{(8Hb(x$f~4ZI`LD)344-n_zaQM%vT5;Ocpg-AOkkx|q7Qs{-wZ~D
z1i^qC2#i07chsew@~(7*HoJQfg)}+Yv&FxQAzv32o|`6czB`YTNkuhHs4N3?^0V(n
zpFfZ3fxmr=MD{wZ$vbfhD|ly0J4Awtj4Wl89L3)c2rRbppIpCc0xX*AB6T?3pN$~*
z@6;q>L$EL~WRDMS`+~WNJv|*=fINli`pjLbZwQ1%;$d`UU_NDv#O6*H^Lxe=X$K>D
z^~C_@x`ULMNVLQ65e$EVmiw9hU>R?Uv6hTDRl)6|SK)TKR7O=I{Fjf#pdqkry16+5
zZXEe<H_S!LcOn1K(mQFUrmD*%YTVqY{_9Hul2q8d-B$ERGp!arB5=N9irrnR^^}aA
zh%e0sh9ZoSU5?P?D+}E>U!Tp}`030l=!#zwxt(qA0$l-My|83MK!q>C!}9=#z$bT8
zOxZHe*3>pBcd%x7b0f~nJkWZ^n1vx)N_sy6acEmdHlntJ*w}%Drmw*}RLS65VJhG+
z)ufmibt)8dN2Zt>oi2>WZ{~n?20R5Cp$MrA(1P*v^Z$k4TRMI6eRp>kMuz|~F(JEg
zX;cZXz8o1F;TRrUTI#d0%vQ@)HsI<4o}K!K|MBb?7k@j~w+9Ry!45~DREA<sRbhoi
zIS`WGhJ$+B&RL|nSHIYc`XX7t0m@3}FO}}@?tXM~q`{q4q5Ha-QW|{C9V`V&t0zY#
z-@=~@Ki}e>ZM^V6_A55;0dje_8_%yYC2&Rc@|(mf1Kj}`IRw0njzGx@Dl=?9-x}z|
z^zB>oPvw-b)$-iI2yGw^1Z`5fVl=9oriBFz_6CUTf!pe=Gz;Ow$B+E9R8=57K&Q|q
zuTaQiooW>J24Hag4hA9!4c2XC3ezF@?nPOGk73+A_B$^W((m{$H^2?kQAF5+B*b!d
z($1;~2|k%pgS4EVw9F5%0~c3z<S#SxU*rk_c4>p6e00%XUDINtVVZ9zHE?>wl54zx
zE^>S3j5M-CN?IOR(HlKhT!4z2pf{CtbEmS}D6cTLSm&$W)Wy=QcO@X4TMAe8uAoq&
zWT`alzM2^FEj;^ie+LuBh4}mw$j;U0oyA3wdqEXIjJ8evg^S$1rpDg>U@UL;A!#(3
zpsR0OPs4{I({IN%fElF^IquT^X`O@!T%F$aXY6FDseFYGA9HR^M0YJ1`ujHn*MtLm
z{5viS`bGOLKay}>v2+wjx2gru;Qra~G1cKr4W4;95*mL+K~<|4ol7Dn<Xsn+zg;l$
z-Osn4<*PyuTyu52RdSS51e_uQVB;&tSFMI+JNtT#I2VjHJF8kW;R=S4qN9>V>OF77
z(-cF1!hmVTKB<NBez<G3j9gSOc;d4wvrMe5bv%Xjb#+fb$%X({yrS(GBEP1xOK%Iw
zL6}o_idg=~fmIP`U}<EBq06zcr|tgcM%L90N!WqIG}d9r7BXTT^*09+a4ZmRRE>&C
zYB~PXE8}q)l^D`iT!0Iya$myscKZ13lL9S}T186}I2^2~Ma?Eilv<wA7n}Q#c(QgZ
zu`$7=IRF>kT7#b2UjAd(<LtUHzc-+rwp_!gf8)Zvc3~ka04~b4r$33-$-f-?q4}T$
zR%huimd@**4U{ez7>96wIO3PxqPq}E%Jcx7uz=7K#=6KSY=jUPGzE4Y7ZH^dm1KXt
z8K1J<o43iI+7TJJG!l&m<T(DKtzwbI1)0de>DOARSy@$6+u9~CDJ4hvU^ADI`I}TQ
zNJa%Y{b7ms(9ce-+N9Z4AVqA?y)pt>S?qVp*U^SJe6;8<78J+l%`ncjIF1K|>+Xg5
zL=m7QHpfRsKZ)()o0tTq5(OSyJRI36<NRNYSK?9U*R*GUW#?E)nrHs(;@GormUmI}
z{F*#w*c+dC@Ch139MX2(&;UFi^Ql1A>telDQ=9(LAb{Y9sF-M9PtT(manWzs=?(xE
zszO6T^t)<t2xkxD4sU*<Q}gj--DRznri=GQhy)K3#F6Mfv?li2_T=mOdg`-N8S0rO
zLOkNJk?~gjVxQ~YT1I?LD0E_cpf_dr;oO~=;MTtzY%pfa)U;Jz6n&^F$egf0kfK&%
zbc;($7@ZzR`R&^=Ik`85cb`!7ohJ$k8u#jveLQZPD={nUvu2TF78(W*TU))A%E=0=
zt4{3I;=Zjt-YFE|c(3UKiisP4%s_s^zx**|7I5w9WMIl_nZ!Z7<rh#H4@w8X#GWB=
zv9g|}&1ipJ*jrv+Cgp|g_lzY<A8$RTo(1LvG=6>_EgDEbgU?gGsd(#tJJQm^%9f?~
z?^*n_=|Lh6pbe?xxGv7uirRu&=f8Zwf`E|bCW<tJk-qmuy8s3T!3_XU0N=DBla`kw
zHI2_BBc<{O&C4O5-qdcjAyy`wM!)V)Ut8boUn_eV9v-GTPU6k#1P*QXYB?byN+#_+
z`MQSdj}v<^6t|3!y%q`uX(y%ZUSe;(ax-4!y7peu*utq}!7a@CBo`7CijIOtyh;x7
z9gSITdUd_V&c<eJ(woB04Wzdq2_|dgK|ICWdyV`Q)<=&(W{rWfu>_1~>dfj3A;i$0
z4!*It<YdDr<Dr?WMeRV~TE@kR<5f~p;xKc4WCLSVRWrE*QD{Fch5nAIPT8#PoVe~a
z_5MixNb#hU*^Rh#$BB2FJgp2v0YUHS{6n&56p6CSG`3L$6a`Jj`ID!}fk@^Vp9>35
zBsvi0)lYVtB0%l}cBCRNiM5qeM#h-H)E0vWkkt%)e5{cl)4T*;U0?azn0bM#FhNa$
zHnt1E@jzvV;G3()M1YH*uih9gOf5~-Od#DSl;gnbzWWrU^?*K9nW(<x<J8z#*y)p+
zf{Nql^1?MID0aN#>6hf$pNWaYI_^dxI)x_vgm7u8fS0%`(RjRW2a1ZB*h-^e=?x9k
zUhZ#k`qUp{ff|`az*FIGUX5B(KTS<dfY_Tl5(Re@)OiKF26qCQR#&}JhdR0hwh6`(
z%UzOeb@|8nw7iuod@^2{Rpc5jmQEesk+ISTC23bsQ@V*7`urJt+le=(s;Va6%L*r2
zjF@DVW+s*b8`X$yEz#!Z{?u9|>6Xik*uc<`ijMcelG+&1Y_i4Ixs06{WVl(+)CKKp
zN@Z*zRx}H6aB@*mQJZvk%paV(*I&0cMTFlk_OcF3l@4{LRNot1f08KF7%K|Z?zk4X
zjTTf+^dz#C-)sJjqvP;P<6BQ{TwGf7H32t~t4If|eXP6J6C+&*%LE0Jr*At9qogzL
zNFU4Ak$`IAPc{~;Lh1q2VE`z)Sq%}-&&_QYV4O`05{!-|H$#_;X2^J}8cp{GSF2p1
z$um>^FkQZZN|YP7^0`?f5~Q=sno+ab{3?^XjL6DC>Ct_w;=)wLHB*>t%LIDi28eHv
zn;f^(<t!@D5Ef6n@hJb5#IG1P&#P1on|)1jcxoLzEg_vas;n#2WIUc38FfW4R1REF
zXu(_!XAXWk%(xiihl)w<<t*1H_AY7!v0aZ-E^GPt)GeK3wSCj8bL<8N@oX+P34oO5
zfG6Hz?kg{i$xI%vg9O!nfB%obba-I<LetfS{Q+8p;*f-~qKnB&V7ho7j#>Z4$<DY+
z(FYzHW?kw?uF)}Z5mAJvPEJO^#|)6g3`KP{P10DF+uO$sbd4%p9=%h5C%4Ut9W`=s
z2{U3)!x;)49#J+B6_vm9w{&^=vk%6lgkS15qmLlA>!ux;UR97+FE1s<4l+%3uKJf;
z(3Tt)%J4|bW~~>l`iRU<SeE?Krxtv0e_lOY(Lx{c_NwBm%+``U_wh)+J}$AeeRJs}
zUUlI^b2g8AA#xiBf-kE=kY%oO_QmKj{as|8+yEMOhY?#mG}$`IIvZ4@8H%!>JivUm
zlI;blj29hGDRj`zTZSzAiStYXsKjOgBi@yL0SJAN9swXLM*NHLxAXrtcI-7@1gS8C
zH6QfLB1r@xQk9$R-ck{<u`3`j>H%Y>YJT~4Gl)lmSyo8pTvBwlzHZVF<-CmyvPs}A
zZSuTTKA2Nms`aKFB_Qu6N-7;xk#?E&Wxc4#!K}R$5DCEiH*Re((^SC$B&()61x!&0
zzH96ztPkD+(MDMGB#ZG+qRC`%ZD}$-k@4BzC2@kqxsvL!#I?ZAJvifqZ?koL@Ttn#
z{I7<V4+EwF^hhi-7*^}w5pnW{HoB>Y9^HeL=A>d+Fb4OiPL@NCk0OOL2D6ptk;rqt
zmcFA-pLy|qTT+|u?p42TEJh*Q1~YY6D^TBAO~k`%@TpJhFL6N`j2bV@G0oN0WBg!+
zq3t>a0a8U$ppjk?Z|FYWsRDXFK%60+G#Zmh7*97>K3H}0;kk9g(cgNg?#^@TS2yY6
ztZm#eyqFvdtH6BXXsaI|@N-)b?pqm5L80)|xq)(2-seY~7qd(D_9v#4OpLujxa=T7
zhWTfx84hnJntb}eJD*yvrdrx)MKgyi{eEKafK}vh<HS{DNL-IG9P>>Wbl`(}+I#RA
zmyTNko2ZFN%HlT1d*u42Il*%CkRC^fap~E>M`9eh*o!c}%*ElHm^INIX40z`K;P<-
z{lt=?UYI{~z?t<^rbb6cbFp_`KF|iW!M)%&3ya6FO&5K(L>sMIR0BtFKYAyHoF2S;
z3lFh|_-ZjZEbm=jB7!Hv=P6jAD(cj~eDL{#@$IvL!Q=0j5@9FDM?)_|RQSvhKy^8w
z=eh`v*_6Zl>XAUM%%#+`Rrqy{qigiIZkL!Jh@WjkD)cv@s(HqtdOU!xe|D<NdVF#Z
z@<D;#@+0xBSK?3g6r5CUe?NNJvWg6hBCoOB<(z`DgMUtrc%K#G)B2SE=&g4hZLGcp
zt}I9g{?yE-_?-DDj4x^3V;k*dolC$$VHa+yWmLi|<x$~_MI;bM{;V&jAthztVixV7
z=y-D?p6iJKKc!;Yd%&-Wu(buVi;K62r6Z(_%o2k{KK=IYY4}TRX@>)x#<iVI)6~;*
zz&^!8IR$76znBhla}KMismSqHew*!J7tK*7`(8^!!5Y{+C)Lti+b}6O`lbQs5=cOk
z2O?-JazC>$VBLt=L8<xWKtN;(?!K5FFJm0h`_%oi2yImHH{q^xN<r^B8;0dBW_HN)
z_K)EH-!kMsTrU66IP{}^HRUqs{A2#Z4He(-AZzpR<==ktnG$T{&S7o6jk|upn!)`m
z+Y)AYBc1rAInYryCv}sM8eL6IyiYDxs-6y~pi|FpR>in#M<rmgcXIMziXggA7_AEv
zx$Mzn1+=^p4{dC7tJJSq6<@|$DBt{`YvW;o`Su6r|B6XWIIXp9`pOW?jB$8$)qh93
zaxDaN=7P^y@J2L1M($6u+pP6;)eZ?R3NGX|Ej%<-9?7>NMvU?Hn-n@gM1hs<ah4qL
zsm?@FmveCLxm|*nM|lMY4ntjuvzNAZNQdG6-q90U#?JPng~e_FAaOsq2l+vcrCjvE
z6sQ5!)W&*4ol8~v=urJ55`}zbE^h;^9q`#^D2JANgKp{B%YmpxT%u&4Bu0b)myLbA
zOqv4Zsio&@pQn00x;p?86Keseb1WEdNF5v<!Bq~#<$$O42D^FHRBX35I4}Tmw<;<)
z?xRS^$sX+P6OlY9qB2`r=d_Qv+#AFjGVWeH&<1Ar03^VGGSD(6M8`kg-CbQ@<w$tP
z7068}`xh_C%xKMVx$I3y#<cOu@`e*MUdB9GxY(74kDHm>#~bGQNsAg}2Q+oQy&=6V
zfGbWxO$Fg806%y{ZiD;i9_s&A^i!tnjf8(YdG_s_w>7)k5MQw@zJpUePS!htBF@Wu
zz*p0t?!1s#$fZQLcu2?&0_0aft^%`wi!%r|Tf4WM*Uh+*41WVZIJ@jg^`08;XK`>|
zhHcz|zXj2d&e?`PUkThqYk}ZOz(uYonYy@JgK4E0a6|~O8I-b>0<LU$W>m_AB`GNx
z;YW8)<Rk38)<Flr0`6>Wf!w%SzV~mUesMz9$y9))0C2^(Fw$%5NqiGBA7@oA2+x5l
z$P}BdaWm*z?z`u%ef|3Oap0IaCmfTECE?xUi({R7&-)ToKnT)ho$S`@h&)a0|2OiE
zB3$Fw_vx43L0Dc##!_qT%mLs8;En;7aA@_gc=R3$x`mm!wS^hT_gU#pAza--^!=w~
ze?!((nJBsGgF+4fsIx*zNiDAa5n?rAhwb?<VY`t!WppUfJ+XLYC>tf$-w^D{lf)|L
zv;C*Ksg90^r{R8}2nIfp|AJRrV%u;f0xjI$&6JpM+_(PXKr0ABt-#X{+<iz$$S=Kq
zB_jVIxe-tGV>W3&#L^+5yauNt<!`^qDexzR%#!SPK2Prn2grQ^2m<0>AFvUpb~F%k
z)zcB->r}%&E3}gqFz;e%HPF`K<Ub&d1|rGGA9Hhadwtn|&TomKpaL#`mtNrv#WhDL
zS=i3@90gHLB+9>Vz3(*MuhpeKz5hdZea>6_UW8IQBONw-qtW_9=j46Yz8VmNL86r4
zRZlB}j|RDij2PTXsR|Z;kxGmVtzP{SMq=z&_x>%gCfS}c<w)UoUfk@!X_|WpJTsoB
zjX!Ox8ibilW+vGKe~G98lEF(73xwtI+ei=Jwe9tp7B!}dP+pwfadmSe=XL$!eH&xU
z%oT<N0h@Ff(yO3?Pja#^$@}7DAJJiW99TIMI1YX#3q*anBM`{g+RQEvrN4Q(RJy9q
ze$xfSIM4Xk%kpL=625!&p@xqyQb{qeF^lT460IQw>py*HXy9YPt@Z79L4g@V4{ped
zGTS{x$m*{UjI=>hkjZ$Hg3;%`;;_8jofK`xLZm?iWZ*a<VlGwQY9=Pa^T~pwgr#he
zibIg6jQDqu{XzCX6UaIu{mD3N9?c$Ra%SSBBHHwNz9zxEG~Gp%CS!(gHZAR$-%S7X
z2x!H@s372fVx0Og29k*`TEOe8v_qsD`4;3anGJs0w&JuTK|z7YATXpvf26Cg>%!$`
z8A1B)2aJ?h?%P_m?!1jfrVEKepsfc^Sk}_FV(AUuN1YalGvIuIAQ~hdK~}f63#yzf
zj&dzj=rcMDfv5t24=zrlBclx^$DH+Y;*^mX<W+^=M8-obT7zTG?;s5lz5@>M5V0-W
zs|_{gl_i3Pl5MbIp(0(NHNoFBw|19-J-PG@_WR2jpJc9%6AKYO6l6lZ#Kcsh7r4dH
zk4|h{ub!k2WRGoNZcd^@1pXNpz_JIiy;#my)14evQ1jUC&Iu;y#lywRl9P_@GPJVl
zIlcq+Ec)cS7t!)b83V4VsZAFiP~32{+_t}7B;X}=KuG%*uB1?BauJi|sZct8PfzE#
z(;dPClz-9)X(s6Y0Kd&{F-1e84?%s(wtB?HpxI_Lb>U7O9w!r{k#Aq+@Jo-%h~x0C
zTre6`wGR%FH~bm7H1ib&HrM`LOov^G+caEtS?OA-epa~$)drr&DPtDcy?hOJ?|Cb^
zq~5aW7Ual|;Wft?3a*<c(LIwa6ry)hQRp2t)}sGwmeOhmI}r(g^JEJVBdDPudR&R$
zf<WDNb<o&+gf52oUAA!V?f^POLN3`Is8#G#fh^b={F`Nx#_95h|F|WY&uxgU<L}V(
zq+bt#@Phsy2Hx6cc@U9yXyEwmm*e&qx&X{kCT{>l2l9|$sn|;JU;p!e3qNnPc)t~c
z|9%_%{`db>J^tU&Mm`$8k$K+!U66s}6Bx_R3XRcYdU(j=eMn33mhO*ID<DYSxBmd6
zIqK$SfYUnd_<0_DGw}0Y=lGWaV1L$@{`L+3vDu&1tbb9U{$;CQI>vupyZ^bbzijoF
zYxm2k{KqG*@;+~61Y;VhQKLKbc)~lB*#h@D!Yn`x9JQY+12+)|4E6UZ{ZetR4iMj`
zkL+>&`2s_h`b9e~YIKi6&Rg^c3x61|flV7+BYJ2v%8>8x5BPOAQ+CAO$h2~R0YP1Q
ztmHmIRM?UacjHdam5D;WEeMQrrUqLs*48M}Mv)hPO5rq!-ofG3MfIOwzJ^^5lU3KH
zhzsRJiVEGosaNTvPZ#J&y1XgEz8SE^hdJcGFjHoW=U2Tr`_e;r?=3uw#;@s1r|-?=
zGt{McZ-9Qsa}ZsL^OiLy#p^lCdTIi<OVPM{Ti5OSyCHW2Uz?r2N^$bJlK)u;#Qq!H
z^~E5poXxlg;h}&?`ZxXS{=Ns`AmwTu3L{xf<m~My7Iq?k2bi~vfq<A!X2t{w)Ni^6
z-@Mp--dJii*hd3N7B~y<)y|(qiLls0rzM}ogU8_=px^FIzn$7>3p%{%_3*9@Hxu6R
zVtd3in)#ccclV7IVjUlg<_(*k_{8UwKYbe~@R_t0*Vo%z?9{K;Yl^=j$bb5(Nj~3@
z$;i&YLVG$ugpZ$CZ@ILtdy`djdSpYuq;8C&s9;uh`SrHV)x6qH-9@5`#VAN(c~^>~
z`_or#%qD4bB@7R<2~Fq@eEeS1%lkSrk-i`bNP=p9G}FCa?u0`h-!W5_d*H<h!m~8`
z=#s2buOuh75_=mhx)Jk~?-JL(ANo7IuigDp4BvK68WEKfLHO%wZX>~8v>Rdva`cZ4
z%}iXzO-4vA#=Q{<jbulWK&{TJD48<k0#1-v7X{k~@7tB>Giv5zWS~JKq-iU`QW@9h
z!SV>c9fk!U6TZLysggmn$W9wRW1aokJjn0FjII0h36~wEvq1Z{FNmc=j7#;#2Nrhl
zN1n=mq44aHdzt0s<w6*B%3PnYq(IakvFbwhvPA`#VV(^-Ix|Bi#+%dS2Z5GH3QI?I
zrAeFVOBBL5l`9vd*u`-jhP})h!0oN-d^LgTUNsONe)4ngq_|*-MsY45bMMQ}9ts!Z
z0Rb+^+#q8b2dh_Ui32KX@bS(xIwUxT@!$xp%Dq|{1aVVmF=>?@0+qwj$;r!l;XXc8
z`5z}dlj7gxUlxx?FLBpQXkNJ2oO)gxHu^SY*;^SJE;&||%h(#Zyvoukj138WR~qW0
zAfYQC3tDB$js@u6YvJYs-G=_j5y?!&`Z_O>=Y9p&+xG|dqALqr%D6BOkC6Pu`d1y-
z0v7Eml1Z>6G87rCb#~U)cM~|`MW`7T6*0!>=&92#mq!XhM_&X|u`xAN<_3#=Mg8e_
z7b7^ku;B6q1}SOkU5M3_5TW@s_6NOv!gQwPB?NgoAhi3m<x?Ve0Z5n71GNS*ejp&j
zK<AX47@H_0#K^D66bZ~Tkf(}L8UVi?U@ayp*Wl-``<t0R#_O%P=<Pdjpf6Y=!1sUi
zw$splZT0S74D48_@c(yT`r42QbykLK0tYV_Q$b}VH#Jk}H<$Y;aL7ZD^9IN|DSOlq
zxt)zI3is2=EW$kKha29SA&#7o^bsj3KsA_az40Kf{5sw*UpUL96c+0G=rRY2XcVtU
zCnV6bBqHd64iP^XD6N12zoN4ImalAymE!6)Q&AqF&|~lcw7gdI!L2u*b$jZE4_UYb
z!L+v5AhQ6Z@B2OLTY^5(sNrX4nAH9;Fg*f9y)-(W$M84-6DGgb?u0~kATEvw>jQyr
zs=1^L#6a=8vACI}#v){JOoHvJQ>a<zxpWv$2>Eo~paTKn>W(nlckhByxEpPy6!)V(
zEoR46fdUC!{OCwvNqR_6tx6FqO|=jcl`aB2gw?zU%iTTBc6MeKR^_~fAa@=(3_<6G
zL`J4fnk*J+mn8K#wgaD8o7Jif45-M+Ep4{s;+sND-2wX(&teC^nVFt0zswi`o~irc
z;XoQ)F2(7!{QqptwQ1J-S)iTk&Bnl!|MjN74%t)T=@YXjBf~>)I`C{0fv4HQKY=IF
z2|s_mLFgA^cYmciI|uMafuEnd@7%ewI4P;eZL*JAZ%@}XX&&I|bKU+P5@NikQ-T;i
z%zU#u<K(BFo5jF$gKpo7VrF7myIo33YRj7m8v1O_6Q@po{`6_=mJH7d7ngAN-&<Z9
zKNlATp1oXJvgLKjF3z}xW~{(-7G{{`Rz<&_YYn{1A{=;vyfjZ+p`KN{`aHBV9QJ%r
z_x)5Dp)^e>Co}WZX?+<nuDyHqt}Ry9P`Pr~*}%e}K%FCW3-H`6EfKCgtq%P<hL%f#
z`@GkNN%OFowJQr$Y%wvvSyKpH_r0i9^7*dfh@YK*fqTTJ%(1$fVN&Hk3%JTC<$`3`
zzCT{2p{;+-`+OH0nwY#m8-Q5Er~+J3uxa~p_vKgF+FO7pJ*--}%4GIg&^p-3dsGh#
zJrXeUjjV84;<a)X@GvB8b>KAL-nCnAUfQtY>MG#m)QKgRTD_<H`p#c>UAm2pea)xN
zDd7hD*DZT??X2{pM8Wy*rDUa}fhQ`Q1*VCUyDJ~x0-nOFv~a`Tt){72vw*jn?o-um
zcH0c>Y0Qq7kQH8i_2r*Gf23c%c2h|TH{ZU<)%)3#Cv9!69Y+s?$1I)#k9OI5HI(7N
zvx2y~Qrp>Q-@Si*_T1_7+8R9l9amm|J*=b{c5D6>_{j|Ze+9q%XEuHrHfK)6%qRvR
N@O1TaS?83{1OTE@pt1k}

literal 218117
zcmc$`cUV(P*FG#rM?gV(SE}?*=m>(+i_)7CLhmJX1O!wN5D*B}LJ{c%LT@6yL_kXD
zJyJst5Xvu}r=9P8e9rmv<GONX*n4L7o;5RT?sc!V@=8xfos5Km<l41sWRD)I8eF?Z
z0KRtZdN>gQ_R8JzBfV?aa8w;tRP-LHsIcjIxq}>C?5<toc^i_bt%>{ec2urNC(oPr
zsR9-cq8>P~>bXAV!KHns!Kx=5Ul2akKcITVYF6tuCg`AFM`8w}xOYbEdR@wHl)1E;
zqQL_|fs}8uAop)-Ft8KSE1CiY^0Jtj&l8>I?k;k-F)7bhJm!C=q47fZLg7eO+}OQ)
zwl%c%N>=_f!tP~DUp#$ZwKC%^o$cwq)$5DOhVhgNUiFhpRB7G<Ee;^j^%uKuJX-Zf
z4!%-+U9^a?-dfNIfS=U0H!J9U1{tejfH4oN9=<RYRfVLwT@L9;K#BeInVwatyrq<6
zf40Qacl$+J(KBIX6X~ycTXEBS@SUlge4E7^a(l2^1X-FXowR#UhxyIm$l`$f%roOp
zX0y(&>URZpO2bi;o;k+tiX?A>x&w*;I?J~kSQZ;D$t!eB_cCvr7-Pk1WM}dSq^*7J
z9=1$$4JXF&8XmTUgZ(gIKUnD}MPDPtep6yUs_$|Cb(aAA{`$Yl*Ta8RR5nz3^a%TH
zXzOKX=jQF;?xSn}@eQ`C3CG7KJ|@~)GPdrnf=_|&&+G*KT|Is^xhCf?gDtw+`8;Lw
zcXe^|mhqRr^G6LCZ28w^p*w7URPk|^zhk1U$EM=$WydBdC@d&^M}dTmjZMxA2$C^S
zRr_ai?0@oi9DIB{WQ2skV6Y%qOwirSUPuH000;?-3W<seU~33?2e|n>^%rpSzWa|(
z{?(7Fowu!*qlb^9yBpiDexE*b_w|v#bLZEC{{8ol_q6kO{Lhozy#F~Y>;Q#+-4PNI
z6c+k--`J*dzpl#YIr`hVn5sIuV#R}fhJrLeO74&P|8?g-PyAC$lmE07k(7}5bJIWF
z`oB$|c-wiYxVvJX>7($UsrhH)Ki~XkLph;eL;sT~{vqc-u3`nPKq4pf?@3c2xoxcp
zyLL_K+9Orv$No55v-mc*jnR_3Dju31WH%!k8)d6a95qP=s`Gbt?!RgH-s0>2A%#I;
z$6#jGGO`gr4DKxj7H#b9qPhdWXze}8hRkn`pfZ!a-3k^+j>?D_@p+WO@rbG&=AU#W
z(4{`V8$g7;f<vPB9QXG7YyY>%@tBS61L3~(|G53{M&T*6HXhuog8^!PQ!~*9hX72e
z)qS1!e?Ie%PL=vdh3k^{*W~X0-&gwgGyn0<4=b)k$`ThWhyUj7|6G-A6`yYAQGj>O
z+ux1zPc=DAp0{V?jqWM^-AMLvZ|vkX0pJh+m+=1CDJ6f~f=<M`Kil7pBmgTKgSjmG
zy#JbpKfNBdNKAv3b-RyT;@^xUuL&y}UiTp}gWt~WzdH@b`z31|8J52riGdYXG$~R@
z`oEjJh+nc6W~TVNk?;y(Mbnpg5chYJ*N&AnM|wQr-;Lz|?`5cYK}aKD#&KlLQU2Gn
z6Yfu(m$9I;tah||6b|qA)>Wh_XM8x6eX!Dd*LU+r%KmDf#@YZR`QY)RIrONm!W~1d
z^Sf7!=Wa>pLGr&Ae_bH1Y0}aUyS|hpkt=d=L*U9D5_lG8I#iW?dfeYWQs;Rc5O|ng
z?GjXK=~`eZQ<JtC==bhHY+A<ZYAi@&jX&pkpX>FVwETXf!0m)67erOxVecnSVc~Lw
z-$ZjlUqn>wV3U04$jbWuikJ|@*Yn~@jRt3c{dXl^b6A{rPZTNbfPC}$hPl_;fT?|m
zQ#LW#o<$>uWgiLW9xHw#lGfxmO8^KydFa#}Y(@Lmn<5l1iNm|lyW7ud7Q8Vz?hFtl
zm2i42)>vv$BiXkz+h|E;$81#XG(14OrP`>1Yb5ESXB>KYNy=T}y}rabsySX_nr|Be
z6J6;p*V5y~u`K+_?%s3}9(*yFu>Z~QZFs5ElY9NNSD3c*A91@n!?8=f|63RS+Aj~Q
zl}7Nu;+tKwQ`JuF2&g@{{I#b7c*nv(Q2g5#)XDe9f=>6bD@PE_MgQ#Qc#UR??<-5s
z(KpQ;>O)Lk$6KZWE0y;7p~<k3CSTf9-^tv9&DYfZnozDcltCFlMFoDB^5ElDaFyri
z8c>l|_wRHhF-HSGV}vMOGQoCd+I)(#dlN^!*J?`YU}n!sk=Vf5WayJ}vj@1ia-IcG
zipNzE^6qnTBL%*s5MjqJP=T-(Hp___Q=QikEr{qNDgnkA$*^`x$mP6?SlIaqaR91A
zmy?I*`;2+}ef+^dOmWnlGxwmCQ=X~f;v!PZu|7=g&ATTGrVpRoGaec7p3umilE_!x
zdsY?N!36<0mz|6H)LGPfb^4%(%&+G^_IRX>s8)6lbI@h4MWgtbr)pFC(}Xlzr%_^?
zG3STxJTv9&qPHgNHQgGIK*Yqn0?mQwv_{mHP|pye*1a_~Kgg7z<uL9?xpDV8>Qy&O
zN+ZExGKIp~z>GJvAm{m5vTiE}=9tyvI0&^pkq7Kussf`F0yYrFSw~qP{!*hZY!GqC
z)Q#4E;&w)^^csq~eFfInpxzif=q_2GDYDFpl*O(&32=haxA4fACJsLodGf*n<w&zR
zZTW%@@}<iM!$KX+9J%`D_(wl+aru8zwC7FLe9^4=^3HB>>Zm{#?@3PB`Vo&M*kQs<
z!5>9N1#I6Vy2;+=wJnjoG8Dv;I_5kMvAyTm1xL>ZJDtI@-{Ucb3X>0w!UJ%*sr%EC
zNvQiEY;R{NMkzU8Lu>}~HPf=kB)%9Y4?wOD&?!;ONGV~rnj_4vH|fFsz7$CeApt>#
z?}ra|gT9DJ6`w2)@i^n^fPTsPt2rD{y<>8;=+e9hh{g7B0kD*lDro+6eD80zp|LUB
zupMG|pVf6}2H$IM=>bH<JKod{(Nsjh=#_pt8H(7m{>bQ#jL8k91`dh4&ghZQ@Gtm8
z*-%WiP0V|ab9N4-IEraW5xLyBItn^PmVemaC)Fj5kZ#FeOB{~SVgxd4XUJ)r)uOnz
zWsVb14`?AbSmWFyU5VmtSd{PLwX+1TIM%~3+M+&_tZNp+CHk{e3mQH0;%<+v$IE8f
z%A5Df<S<{01LKqR8v^#;Nv*t5M#*l@2e?;QfNd2`n}Cq>LipAI1PWq|kcF|w5>LcS
zdX9)UW*GkUDPQ(c>0^X!kD78S$y6L9hY}=qM+5S7CSzP+*+_DbK=Rk1zjl&}hA!Ri
z&EkYwjOIrIj1h^VT+?<FW%5<Qry5YfqR<aoh}KVCkbV1~RGi4b`AI{CGn>SLEXnZ{
zSt#<0aUl#iTKPP&Qf#*dywdab6W77dQm~?ABb(CW7K_ikP@}wuPoX>g<*icrlYTo>
zt{NXNj?fS3W!;i)3tIH}F{0LwnHyJjFs#X~YH>-P%iNp(%8UAEN(7HhCKc>M(o;>R
zn*xfn6hhR7vSqnP3*h3@3{p-uxCSN;A8{nA<%7Ov-Qa*mwEnf~t8>DAb*~=;_47C~
zuXRgX>U`Z-Y1^Hhx&EWFlz2dz?<1srQY`9DSA{A4puem%@JITdmp964q}iF4Ui1(w
zFg%Vp6c60OvoFbTXwdn7FU2}2V1ey)9y#A5kuCdETB0W3YIdsNkg<z0aOFdg_AZ{O
z)L5~x2vW(fzvos**1?Cz8LkpFD@+>A2vC31)6<cB&HbrN6hfOgN6@mtLeQcvabek$
zO=H8i8J0|M{P|1jm<j*@)cl~GB{!>e8vB=MDZE%H@$-UCA$d-cOWhmAP>e|5thoEQ
zsuyy|u1e*jOPtBm?&*4;y`&P$TK1_~qf#@z9-ShKqKMP=FUtrvbAtBl6(>S+rj*=J
zdQhlde5v`wkmzo{{lNN^^D9X_u-9teYF6mxxa*J{=w_XA+op?u9T5I@7U6dp{53)t
zCYLe#)_HB_^q?&N#o*AWffv!hYCkOp&mc|Ngk|1K?o5ZJydvVw6m|W-#Bzx%xWwc;
zY>l5D7bOkhv(r7x6i`l;50Z2oZHS7ammPL{Em~^YoMBq)c|b#@_p(am+w0+s=7Zfx
zbkFAX+_YyI?A1O94dtTBueVGUFXLn3XTLOEA^K=7QN-+?>ujKI1+iVfo<gbh{2V0%
z!<~SG6-i9V@K!2|%rQk3XeaE1S8Pqs2U)Dwk_BzZVo4~Wo1TI>I(BhQRoP{h%vbcT
zf2!`M!O+|@`OcEWVHk(M;zlRr*!P3ptK&#stBX9sz=0<ODfDwqA?M()L1A9pb2Q_n
ze-_lc@OWr$wrun6w#<=F=!TRV-{P(17M~qD$m}xHLPjM-wrA*75xde0m+X5CkMA=|
z1X^e{%1%c_;0~V1VFAfr#@b+JH==upP0801UN+J?Ke)fq4}Z9B&<>)i0_i;)iWhpp
zPg_mRXPoJX1r&B|+qLNd=U>bV3(n6w($)x-D+Dseys?Kn^dhIxjW(_`a=cQ-{B-40
z?P|92_3RNJ^IDYf^v$;W^fHIDpOxhu$Eu1<bJMLC8S<)1At2;?cd&}1WObm~>zy5(
zi^21}-qC@SzuAosnSV{R&qy2IRD5<L5ObVu1&-883m~P*^yS&3wq(O+gaUi-JSl!G
zi7B;c?$WxrAenB|r4g_KN#@Fe6^54E#GOoZLmAI3Q*zH_;^W;_daIvyT!|JJ8<q0g
zs$U3RX*1s?UDHaXm<v%!-1a*BDRL@xr{YCiDk_Zb*|ECO@VCmae%6lAMAlZ!44!`l
z4nmr)8`)`00C8L&X%`LIcYui4RR^EUF|JK&XV$(ZqZ2Tx_*T+U{tKnVuIao(wVeI{
z@&XtsrJ=sle)cXojP5@jcZwezaOt>frj{jMCnSg1F+R^|OLB>)updcNk|c988Zk&X
zt-1YF&5=URqc)EIC}swX%BEjU4alWex;AeIq%<x!dP3q17*6j?FQAQ=3)t_Gb#LXm
zd&zKbyZSNzFYEXJnrrmBY|8D~84_O}y`t=l8xOl0d}XxV3V{v=0%P7En)sAHi}H#X
zadqG`?qZs0SNK#d&Ny{Q4_*0DWC&6y3JW>ztlj^r>E849uDbRFKFP{Nl_LP(7FWQu
z%EE0!R!P!XxC_>Ph0$m^*$5JAA=gSYeL-p8aYe^YA%9j){L^N>*Ra6(Ia1pc3Tk#B
zNxIE%(gr-x%8;`>oA+#`|3rwn5c7(=ae4$6&`0)G)d#Ou1&g0}Lt4L6@pmW?yVeyV
ztphD#uG3F<2;pmet9&|OqWjueOn?@0TriPNr9N9T5gtB4FJpN#kFEL@Z?UmJ3h}a9
z&j=^fu7yB9?EI3{alBeTuzrjO9UhjM6S{w^sK7K1u5gh4__LlupMtS1zJ{}4mZBw%
zKo<KntVC3Cw!zX{LNE%crGg6)v!@BxiKf8lkC&U@5wq7y96lqYCq-(f)fChAb+fi`
z);LdSseo^{YId?Z%=~Cf!-`FFF3|h^Wu?~IiEmr;Z;Y9T2e^<3z8|r{jk#ZIy`e4X
z{(Gm~t5|3@Qu4&!&`%&rh`no+{hFadbxD?Vz(|Ub3P@Lr3?W$WjZCVj2+`5wZn*GX
z8(@DxLYr#Yh(4L6FxAeF(CnKF!Pqjz@-$p7SCN}OJlR~+OcM;)jz@+gBaVlHB3CEo
zFAt}N@JZ_M&8kuNmep@~muu7<yyG)YDQ`VjO_WELFJg8VyK{Su87dyo_Z<FsO)JC&
zz073u=MB}592+$AOT3Pu$S_xpUS+PG-<a81)@@02!SO+I+!CujLh+Svm^kem&kq2+
zFwE$BV^4)_VvaSj7?(y}g#harNa66_g6#Pz_CV~;4PHdI)(kVJ(TuZK9IY>a2lL&g
z>P%()>IDTXB+GxpVT5zs?n!zP(%D$dFjkylYgBHUcF#JGMIl&qmuez9$@Sz_Y4+IO
z%S37_LzQDV?ByQ#*_6<S>BRhHH>r7_X7O=KKUcF_;bM`?@77@nKB%t&BzdOcSisq@
zXx73L16oAD?E3u%pG|W`k<g0LgAq_WvG4@@oWRHAtTOyz=cfs?5|&zMC&zvqumT&i
zEG&(fiVG0VJi`<`RqMVyV-G9gMdwEE%r;0PYs3aKBvT_YBm$)GM2?gp#V?3B4#i?n
z>lM~vH}RZj$-;swgTU!8qEkJMmMQ310)JZd=7;(0b!DOeo1+~ACwo+@Q5JywXPqQm
z(^B#?RH*R(KHS4ki1TI`n;goDL4zBh?Y<|KX~5Vuk1~z>;ey#yvdeg`b5+_op~rRr
z@MSP%PPnE1!UpjnYQCGV;$V^r-rMumHk<UGVM9tV=BUu%!^gtMrs$oCg2n}MH@~%#
z`nB%*y<#~kCX4$UYH?xFCA>iD4<EigP7}-q{w(h(->2R`EYe=s<7U|>+1i?^H=koV
zY#D&aS`TFb?mmd6eyhVg)vGC_aM$#1L`siFri^d&Kz6Ng&8$vDIUxevdT|MkNI?FM
z)XED9FJ_ntSgQ{=W6;u~hgR!CV5o&g*3h>z^<KTl%(69jvwrm+>}!-hju^LqBYN%k
z8mk&Z0(Wh@nJ3!`fFsT5_CnF0gT@1)tM^qngoX8VvZNQ8Vj$6E8;{%t%uQN?KeI*J
z^e)+f<Vxz#o}IqTEs?(wJoi~Y#M`BVz;|^iO0&wPQ^T|}_?=d|cxSQr(ou7R=5iO=
zAOP)HK&J7n-W+QQ=DE*jW<4oyl6g3k18}|!yxM7W^B!--?5G>mIN8--p0OCzXxP=G
zFS~uRN@KZV+jkCo3$1$sE^-tvRz4ZPw1BYdFbbxVh^&c)ou9+Yz)jfp{?EG<lO4db
zYKW+gSlCP{u$OXw^3z+)d6B6uDXoAfigG)6qHIEXQ=|ZKxGuJeuxFLp40J#grANqi
zzNUW1Scc+#ckdl-+`QjPkBDh)Xrw~&s;Ci^;iL0}&khfngi57BJ_(nYLvt$BtkEs9
z9*)JvA7xdsMwQXQoI#<HcCRs8Zi!{14h_Evzc*4)_{vHRd^5)oL++Zdk^kD@%j1fz
zAMgnod3cKBRqy^P-zQnsr9ju7AG;yr;mXP*#rDRI!&Q(h1z)p*jeyW|$IrYEQsvdj
z>(M*Y`L9CDaIYWqJ-Zl)|AB1qS>JakzpH?bb#@ya7b}?CTkh6Q#J6qp8CRrn7|9FI
zqG)B~GcHesD`2KhLvQn%Nsq&sA`*usg46W6;F7_|sCv{b!~z4O+f~c;{r<%H0m1U-
zvk1tYNaQ63CE3o5=k<2bcDnT{e!T5FZlgm1T~M(-+-;}<Ja_uN_fAKhWpfZZB~>7k
zR3Wkvye*j<gHKA^D|(^R$QY60-g=Y)C7CBZmmRK!lZ{wFM-{F%WG|%F@~{@rCn%hd
zHRN6$A$Sw)%vxj$%`o-dn)IYU9LJ2Pb&FPaKaFcivkvG8c}eWzJB}RPp3*6}&8a|3
zN+UR&+bL?T*oqtq=sN09J{h9M!bB!T=VJ?c38$=4V}XmiS?2D|2-DE*BXE<3q{3Ox
z1!V~*a5y-@mwf5QZ_f7KJ04FWW&Lk;r^?`g26NJ61YZ~{hXZd)`yGBBb?!~-9I!@X
zT9mRyeH#|Kts6IoF87y6b%R{h96y`8H9sO}k>hA~ZxHC~zq~KwHi7C0+q*{{MZO{R
z+4f9Xc)49YM-+#l<g;NRjDSBd-IY<w?KR~LvEY+FM0_>@S)lIF#ufF13w{vOxNeS|
zw!+ocUHinNrT{NZE@u1wX1Gx6IhTD$NAviiiMaVa*Nd|^Yn@;|GKSmZ`@RnC3_W{f
zJJpV}BgMJxGF^`>%-}n3IT2jz5^xWE@WxoVYhPzn)b^W^C(Z(_r^AHq#9aXI+O9W@
z>6MW(@owC31x3BD@EnOuZ{$#^5W@PMo26_cSPEih0!|?4VhP!z4*_gnplmMAe1Sdi
z`G@3WiIYYx7N$q_U3jZ3{=3BOzSGfcUqjHdyt;D7iM9!@L<Crr(dQC$b)mbm=^j=c
z^HbV&uTgT|{>}4tWNrvg6iI;9(5GcCZ3d^d@}{P<vuRPMZ|(+Gk=8KwpA(n@D=)Y_
z1@~EK@!01jIrIgF;wRFr;l}BzIkznV@|*Y8cunl#)|l~4CDH-LpG>yp#D-}5A#0C9
z+iuCEyFq@)3h+GZ7WJg3<j)(pa>CvAw56{?B}s~hb1H-#i^JdInjKRJ6cgA4N6Jdg
zeK!m|{OJU9pN4f1Z!MfChF(3me_tch^&|>@T_M3?J`@dYIyxo<v9yX30*@Oe#)>EU
zvag>xx524y@EYa4beXE|bk60BP3zlLRFe*|S!*ZUN&5I8Hr=<C3=Q0TJks{zLLnCr
z(#2O7d7}=laG|Fu3_IE=bZeGjSZUD2lEC*a+**x?*3qn`b;qtKS{yzwb|i&<Lje`2
zpCVMiwE;vrb=)i%H4A>IBR~<ehN_3WIe+kf!RhVyN=c-6903VizxZUOdsOL)VQ;-3
z`0FdW9a``IprUXV&QI-a^OQV;D60*U!WCCt<UJM=2SzD%dzh3|7Hoeeq6Vz@r?Yoy
zFa3wNS+3)S`6kd-!WPR>F_(ummReQ35qdogFH4_p3Cu*g6RY7ps9>QF=1G$TZQ&L2
zrRYP2ytg&bZO1)YdujN#=<e$KQTrLnhQp>&&wtPiQr<UxD2}Jm;H=kHyE<~Cqr8P_
z3(s$N|6<}pD`}31#*+{1db=s9sH*MDAVO&@8i1edC9lF;FRAf3zTf0HyKEHVz|xRG
zFL^JHE~Ij?ctNhV-kY|MojHM+Oz6Af#bJo!TuG((4N(PQP;!lRlLMq4M#d;9(=CUd
zp&DtiTscuAu9rl<kU40_L~7Y|gPA0nPOeryfq#`5aXE5tgu>~jTW)@iLtRYSijWOt
zPRP-w+&_?K#npw&U3^B!3+4jAtvjcIzMBoS+BB~xNOJLkpC_Y{Pc)(ByY%#h@Oc<$
zFw-Bf;5|`dO4VrE6-V#BcCc}Aaky-(V?%hsZ&{_4NbJBU`h~^M4j*ykC$kVAs$<h#
zX5Q%6d;sZgSQE&Y(gvBe1OvD$BB^b=R6%3@+ds|xoxdxUw+(^F*aXaBUwbKC-qXLZ
z4iT9o{yLZ=HV<ehh>s$=KFu&z?ruML+x7rqRA%w{z`Y%dMu9mX;i}*80Eu3|JW^Q_
za8(=<3(j!Q<-(o}iOnqNa``c9@GcAe-h`fMjaN8isgu7i_EZu$--H?393q9IYF<43
z#O0cYDg|p?sFl`eO$2&B#OlV?)0aulO!o5NlWcHju1Aq-rFm{0MiC=w*wwQhLKss!
zO)1k^(}bC`S^trrR_!#~xw%@|2ro6SeKf{Ewwj-21ujno3CLs|!J5WC>%U#5vg=QM
z!XObBycnybW;l4e(sf|+m7ipnBL!L8WHf(%w%Hts>wZd)R=QhR$W}{f4HJ#V(uZu-
zN5yVZeVW(jQxs}%?0PjHXXp%xZGPq)altt3BKO-=bbG{P%1nx36Hcajx}cj8lsw#^
z>4k*3)VB9Z(3g}Tf4ADhM#J2v&h(d!+)&(!y+w>WLM880{LwSUs^@M^^{w@=p$Q8i
z+wKPqKATg$I|bd}uBNggeF+d$So<OM-jmJ#PYH^fcy$#mk;fNNsh3|YYwN{bX4F6f
z>8nhypBp(inA!u_(VI*qVnip*avpkRV@Ul^MpVl|Kc0N42$>!Sq3c4|28I+`U(@UX
z6P_MnDNgZ<sxf;CROgWbqW!_0c=dYaX}$Ox2rbxR<IkZ8hJ4692VI5BMCd%$u&mj#
zlB#b3hdItyX3FjTAU*a7xR2&zT(VsI?#6E^V{&;GlxGoUtLQjV(i}$zm~!#5rs%6d
zR2EhYGfO{+elKfdhw;_jqu&Wx_61SnI-(sPb&+QWX_Pa%y%U_6V=L6j5uG-xb>fmb
z+y@djM9Q8FeDYy7^CQC@f5}5=Z}hV~n(R(1M#A}VO|dq?*oO}FEW4q9I}rb)v=YyM
zIqF(P;8-i$!Y+K7JKkA%P0+LTTXoutw6mTCWzf(TglhEyJ?A4TRH0isC6S$0>R*30
zKFvC%GI(u=C&Z4i?+e1H)=fZ`?~_`BRDSC2#3fJE;V8V7q)KLYpIUK;_IybBReC!e
zw{^%x^W^*9_0dAA;mn?W>S8-A4Wh%kLpvnlJf0{QaFFhLvU!2!Ljjmh@lkEfOhmMo
z6|5e)H!{ooyiMVBUmY|79L&+SRwbNPS*=|R)4&|h4!}##nr<!ZGEtef2vobgJP6+7
z4?Ju_06_b<;l6B|*KMaKqxTkFi1|twKey-Yz7)|Ej@H652ZLqGWdpf)qDVDbUM}2}
zR45LabPl@e&>g%yc?W-DCMY<u#zZG_5FcOuqK&gl_dcMs(`>w760b~;U}vQ_xxi;3
zhBX8v1#!e8)B*7i=*=;RpxnoHPCQw77Qj~Y(+s_6y%$o{4hwc(!K)f?uvT?oDNnlP
zMOlkn)2(#H*23G<&j#x%P0dZ_KL!9{TACAbqGgiqa}kz#R?R)AV|CUrx2|<j#={B4
zt2jwhOTT)Z*$lsN=hs`Jc+|J}XRuBdf(~-Xwxlc(>B)`yNG<_Oh}?3Q_Uk0-RbO1o
z&xP&Jrgtr~q#eIl{-E^8T+Kv<dZlhU(6BI+b%F+-)(4WoPZVmL$8O?z4;QRU>o^b{
zv;B-Tf~xt7b(a6UboG_=ivEq62E0}G#de3IpSki6E`FFOOWO1P*-`8C`I8W=!Syia
z*mZz37!N!{wptS5vv3-;bCB}(%O@deSC!M61c^@_v-@j%c#;+5wvKG0$dpuZ?=+@N
zMfY&bO|gWM_!TE;@&`G}Dlp4%`{?kDP}^*Hj@{WvAZjk8a?S{Arwp*6{L~pAx9`8E
zF4kHX%ak8B%%!e!bx{GxVR;3=>wU3rSTVIFCiPQI!qzaC{BtSqcw*4xg-CX3<Tq=u
zB^XM=c`UrvXA#21cO;!+X5I`c4FVVC3subK7YRF@zvD}5KK4wwFsSttNX8MjACj}*
zqLaHiJt*wQ6(ECIXg(9rXUrN+jfZA;qNlbz{Ti^|QCa7LMnBZsu93C@_a9ysJ0R$%
zEg5qK!4GI>O#5wmc1B4TuX0NNnGv*_J#!bW44wY?kSTovWVu^cI*3+Ce;}A(*K~Jc
zYf{orw(rhI_V=$VZH41$7$RheqCeL6e?*jIZ<+N~dfDl+-N3N*mp@fOQF>};s)5SK
zN}p(|#q9!DZNjF7VHCLUTU?7%X}<Z(jn!~4n0Ytn*!3Gff|bmfdVRX1@$HlaWmWbm
zAL+6g=!)cNe~+aQ5Q7Hl*C$|uV<RqfibSPGgBt}*mXQQGlrAw6cL{ME<DR~-p@>kx
zg8kHtvXUG?@2-1%v!u>%SfH0yZJ1KfA;v=h3+%&v?pC;B$WK>Bg$615oW@3I-_iM>
zrz%Kk#Ag8pLq29vYfx=torhl@G<noqo3*6p_R9`>?Lvi@v=!^^GQF0pyfCK-SfgM*
zj3Z4>2}$^|b(e95*IKz7hu28;7$y5YJcnz@QLVd@BU9FyknpZ^-^Iu@fnP;waeU)4
z`Od<r{N)PiJ{D!u+u}Xlt)f@-ib>y#EYQt#BuKBd`)Cz#<jQMUP;Jx1CJuc5-i0yr
zd*Zu8tWP$>g^J&}oW|6Rq<^--uj`w8u~|)09KBRKQ-Uq#s1dOh3#SzoayiEDOL<z7
zi&muD!V6dma&4jY1Vk@Hqa<r98*^XGl{Y4gW|S^ZD~kFjRc$Bq_$cQRmAw;STmp{U
zWV;^-fc<wDl<jGO{gVqiSUj&~THl{mPPFFA$f%!Gs*%5MHIG#s8tcfSlv#nk>erzx
zADv??kmy+jHMm`*Y^j-e+LhyRc2F=M@afZ;tVy#Pr#WQ&`h2k$!$7<JZCf|?gMzRt
zg#t{*Er={#CZX$P#Dgl2Jy9s@vHR!c9e&dWt$XUgQ1(cYb{5IsIMfV`e#MO(ts$`U
z_?Y8)S_alw7f}p4-g;+j6*^uo(=@5-VUL=-7?K$X-tVQg>Nim`6_rixbQ{Fddwq>J
z%-V7BKQd8Gzt&3P?Gwbo(VuvL;Ds2ujO_)?An*lzzMm3P6>1E=)WQL(#AV(LdL${P
z76-ar$7n@^amHef;eFjP;OZBNAwjxN!1k{Xye!dWW+P>99*<qi8q90&M-F9AXO@&W
zH&_WFtAnSC3=8wngSDE_f;V~g3C{WYp9pk#C43kt4b0|(&}4>P+h|3#hm#7ZtxuCV
zrz0=Zc8J`X_BYs0x6!S6X&{msmtobuG$CY4jEdfRPNVz8J`mq0E0uQe;v0I3=><pD
zqn{UCi=5wzil6Wq_YO)Oc^#LQ=To>M#O?E)3#?{)l*n@4V8mXylrzivLD=3ftCO?~
zV*sMlN0<bf0=xbhGE<jn@#(JFnJWUO@0Br2(`pIXZ19bAOCqE3kpUQ%^p;juK8)IK
zX@~wCsx-b{b~5yyc{1#K$~_-cnkKXmYZm&71`4VJ^Vpx;iY<LHE`C-Oy`he$f*dpl
z_E8E>4AiN;*>LtKY|$DMbscv)-GAq01f|AK-+xZ}e-<B_{t8+e&$Rz^4d1|o&A7~B
zzk4?~tF`HB_Y>T1KgChM40p9@M!<f^0_55G`rQa}ZF5krtAf77RMFFsN7tyyUj*vh
z`Fa(&<&XMwHWwTT!Vl<zr5CPdB%XS%KU<-@W9Osims07KkY?EMc;!TNt~q~Tgoo_Q
z<Q8s<t*qx#-f{!5*XuwO0ONBUsSAJKl-<beVF$Dc@e{aMVQD3RDD2Q4OcDx}wO$^p
zAJ}$jkBm5=XJwV99C{_Hzke6iIpyJB?mQYW^&X^1^(5<=30SHm<aD>ODj8|hHCFbp
zk4pXKRht_|&!v7>Bd~q~lWAR;KSEF%WKFP6esW&pICh^U=rB~di)u=OVJ7f0YC?+(
zFLl}5byBg&{25BBsJz=cY?)gt)z~^j--WjmnG<qfb5`K?yqC9hOANtY;#+&{xh>Z|
zDY_HQwx~ie>uki{*k>u~UP55#(qT{5O~YsOqvXCG)kIPX83dq7Bb0VVwvmo{Jjz8@
zqiO*(nwb=#TK17S55jI`DlVN@2d&0*X~cFUBA0Ys>Kjv~P{>l=!J3dbvg>wxc3^`p
z^F<3n(!3v4`8yM0A2(;X!0@u^kGQ+=+qaY)KX<6dXNY(RllNh*OJ3@GDQFp~DtVTs
zE5UMKqLuegw@9ZGqlTMIZLu8EPv^s)dAotniYxPBp<-d431t0;<p|ft(lBf8?~%To
z8n@Go2^54vFf%rxLph{UjczZcxoHx$zt27)FY)*gArtz@9cpcG)v!Qv?}IyD>PKg~
zgX{D%4%%bw^2g*|!ml*F(|{^4!~8zqeEnoeE5({k2`tZCAU*qmpFuSAdrr^}@hK8z
zJqTwk52&)%qamR;5o+Eq@V)^OHq!VE62YF^4-j(Ik%SZwPgSluf-LykyN!tGIDr&B
z==SlnTO}0qIyB~dzcgUYf2U{v>(Ryjfz(jF+s1aUa68g{>*Uq`s#K1M<#%PJf@{5B
za_e7MWKKkJ4Bx-MBUM=#ziB@d!h$#X3ynibaN5dS&%WVtY$5O3mt}dmrs?bty$>G>
zO+Q_m&TUGqwCVoQ9vn+Es8v9{_LhAa6VT<a1Do~g*VcL7TgG^@?>&TE9KyNS-tgC+
zwcTL*?$E!=uIVtg(KAq!F5`O@G*)jIWT-IQ99C{Mo3(kqvJ9Td^oh$m9om-%&$_Mc
z$s@j)2074)k&ty=xV<^ACE}c&{M`-?zybX$jxn#It@UoVG-teCg!4>#E3h}o4#c0u
zHaPXU)GpB_l}yleFvE9<j*<r>zT65JX?P-bfP2*sS4>^Zm<`uTy2%W-ZDYRR$ZY|t
zG0M7q<i&|TWmk#TZ1gJ~OsDZDe$)09YyNX)##4{f8_GgiFxfx0(hwQ?5z$rlJICYZ
z<$bQTNAJiOrJVJOUeWV)HOm*Rfw!lY$Htt?6@;$N#k!gXW-HpMR=$$c+1j^9bdIP(
zNl2)F*o>A+L6&dsLWDi5j9G^TY@VM8o_$5Y=*8^&Pf2OFK2G@T|8Oj5Vlcw;GO7$4
z3p+f_HG!*USlU%~pryuF$scIWMzuMT-|yx8?a1b?1#+|B;V^;Hc(p$!!&ZU*JSVuA
zUU756{l{}_e8+Nl5A0QP0mAfjC&qeZotssppU(L+*5NLyE>`lLw#)vDUS$&k7IuY`
zyna10TgERzqUdpD1m1?d^IK5dZJtEy9R`ogQK>U!faE#H%2ZZ-k_T4{I&;#n`$!BK
zl%wq4?2cRF&*DI5Z2!$#W%VV2N39E@zz(-qc3vQ8YyPfUZ%WbV_D8YVYDcKc<a4<4
z1K#pw_+<1AhI#&6c9j^-X}?mfc^;J13ew$f=HwA23yWa33@jPuY7Xgm8zo`y_BDce
zS%OG<_nkc_)=!2Fq#z6eEDhc9GCG6Mm(O<u9b)vWfS$Yt)fL!y9rgAL)J%=$hBKr=
z;S5o;98Pu>^1@gM3W9r!LTn<i5h20}H-u7rIwpaB7)Jr+dV~Je|Djv{9WaYsXrJ|$
zIUYmxS^O8=sNT2tYp2kDO>pn9{-C(uV>sm0RNaaS?*{hhT4&xMiz|If_zdhf0vW`*
zBRXm4J&f3I?tNF$?M<@|cCjkBqvVO%u9cn^@wO1VwNsDMFO-{bBD<%JrCeov95%ON
z(mtOk`}Nh%U$}I+cuH~&510wujjqz`;kjS@VRdQuVC_BnXcf&>4z+2z^~=z}VLguu
zb18k7%1wHM#K$jFj&p+)+~|q*I}FjWnZ(4grt4(LjbY6LdI9nDvxYkh2bVEd-ni=S
zt(dpxx{)$GQc-CqsFs5U!1x7eculLiDkv&=ud_Bui09!>OFvagy-xS{_Jqd82WWY;
z!crD;8WlEfV5U7NE!gAczj)dMe=EPUyLfjWfwV?Ec+^t^Amm=u!m1dN!UXs)6_did
z<=ubn^sK+#K)XA-k_<=u`~)^1eN~!2qsJz6Ch2wPAHa1d@hRHF{`;gak(b<l&*=WC
zJu3tSZ4FZ-XgPxsGfgcoiOJ{XlHpx$*-x`<4hdIno@-M$z3MQ>%yMGA!cboMmo~@A
zx^lPez(B4GnJsYnk>3_mu%ByYxgE+y<-O0_RBP2oYSX*fK50<sCLsU6gY4K&@o|%`
zZp&T&h2V?%p0^fU?JmRfPy*mS>}JCcbKP-6!mV${CGYogTlZ{(XK3w$-+7-+oL=7v
z)N8?9(i*Z5Um&7y+-jn0Ei<+Tgf7)#Lsole>X0q!TCXZqVkl&%;~n+vyW&hoHoHO#
zveIXtD~)s{DBQL6X`(<&+=*S7!?050g(ZDrf9QF2J)wV}y7CJD@`TtB-)cuvO)Pb3
zq``M{X)D@hERG(UZ8uM!vhY=!7iReha)ZtpUnqSqZY~t5f~d4jGvp%2u*W__R8fy$
z3PMGJKi!Y@AO(@F;O#l{M96akkDchsw>QNbFQd&r;eDP9#9XIZ_(}?<Lqub``}cG#
z0|VaRzt{&&_%#m4O)oQUeHF|7Y+K{A9@q?eBT#F}c`}tn{trcvZrF|dr3kRjr<Jq0
z3w%>KqAzEXDNj0}Eyy|b)hJqP-w5{>%+r7pU4U|M?OSCk%gnrR<6sJX(VNOL(;f=J
zJ8nDP>M74(&2pEGikO{!pVecbq*vQ>oCZ4(n6@_lB4FQbXK1gvHG*S$q44HA3G$aE
zyo$)VXw*2afcsB3EMD*u$`Fa4;WJ4ZENu_?FHo=4M*<`%(?e<W<s|*Wej~9;vB#En
z=P#c+?)xR?W5Z!pkJoM1r(v$K6V|y{fNg#+MTjp*T=;owN`f<=v81Y?<26DdYg=cY
z!539eiPW~n(-1`Gd8(u&H<Fe(UuzU-L4e4i*$6FSaO8A#k!{w9F_Bx1!x*QAO@D}%
z*O2WwBXBuutkM;R!3#Rit~IIrXrQHO<T?v8{N>MdmnuIZ;(zkRL|=GUE+<B|4O#Qa
znLQW8`_uy?Og8i(&(gx|ewl#aMHe{t#f*C}{3$wNTg)DPASGZ{^76KjkygYHM&%m$
zMsz_BQbfGEgjo8{bFZBlKv)`hY=TzM;Nfdp0jCyL&x<DOqu4e4-*90!i`$-%?W_#E
zn{HB)^Pa*86?u;NSDL)n(+31QD5^=tAF0)0H%8(<t|I`O>R{%Gj^nYNz;szrrc0Hl
za&6wD_LZZbRyhADCLnfPW4V&@-{i?Z;P^wFaJ)3T4$aw-4>>sC*$D{1o2DJM)Xu&$
zHatWtXm<bgZ3@ZhD$pPoXa5Ts%+va~<6H?%Bm3-D$WpuA0N^^VC}w)~OBuRZDvUOH
z3e_?1%k3A!GI*Qkah}Pu#>G9X<3W@dI2@Kh*nIk04zsmv6`nnq3G1OyB!5%@tup_w
z)$vbF(3Yzd5h?rgW;^Y?QJu-FmrwTkVZBKb#dvAFNFVU!Il#2RrhxoT=$t9ioj~~`
z)={Mq{`JB6w%3yh%v@$`?4xb;BC3I^Q9;)V5B!=N#>k?JLz0(xtt&xUuh2Omb0scS
z#TL8xeuHYTsVoLYY?}9VW8Q0?AjFc&mDmA(99{#jo^fjQ_EL3cx%H=(f3%g%O1vI~
zPWSE6QReC&a?Q*N@md++l-QJbTY{*1)Umb=?8sR4S~}4$n$N4@&k!3#2sJ=l5Z(`u
znE-a94NnZ3fR2FbuyQElnSgOo1KwJ{5YGiH;Nl)2WJIjx{$)gz_L_d#Ou)dAyIHM)
z;D*gt2O?4G(H2pBU{WOJD-g4G1PakY8+<8A<sI4gJSDlEVi8cibJZfhCT)?6YGzhs
z08})rn}l`xu-4bKl00!H>6^?R!I_pSvt&npg_A_6Q5TPoVEEW*#pz&n7ft}0VX2*R
zt$K|v0xomOGLZ=+noc0n7-nHNn0L>Sz;q7kUA%>;*B0JU&sGz#L&pnHe!N(0+B6nQ
zuA=^uZXb63^Ok9=Q&GI4=kN?kRrzk*)5@T3BSdYt80=xq6xqu6@DL})FPv!HYE)?z
z7){P=QIfaL$Hvwshw1b#ES#LYGoFJb^4LJ(yHNXl?P+ID;~k4CDVK7lu?6zqg<t&<
z<>zsPNBOQkk`_(0Hkrx?wj%ys<-(nyP5`a~_J6^N=%F)6<u}#R`^pl@8=>l)DwGt9
zg!d-}h^>69ybJQiQb4nf4`i+D96SNR9=XKd@d#Ga2Bs7ly0(hUio@4QaXwx=ZN$SN
zm}Mh6d;G;p-Op{7Cl)y*tem~ifOlVIO}{cJf8eOZOw@XRRfvaEGfiUpSwmV0gM+f3
z?Piy6mDipH)rrzV|9mrq+_Lq2me5bx#y){SW9>@n5$fQ53J>+Ocz$XFtD#)dv{Nze
z{!}vOEYW~EMZ6H0s~LCy8vF-lkT>7gT0E?qjqXL;?Fc@;!?RmH?Mka8pa>139)S_p
zLY?fyDYDGWwt=q*!$GL35)oPc*lQ<9^Oz=W&lGj+V12|sEjEg<={|^3>()aR52D;C
z6-)=PJN1p%%6FWDEkmd8{@(h(Jc!>+Z7}iKResxn1b$2WUCh7X)_!GrB?jZZBH3Y5
zsI$hEI0<*TDUSExI3_?;VkxM%=Uj=s78@J|8MuYsBjUHQpusxVn5S>PPy+S6>rY$#
z47y2uZ;QT>vk<g`2P99loR-R5Aj8$)G!lG!jcf<2IKJV%h-Xpw+3P>tMpX6qyB>=R
za$MW%cz~BG9noSJc{|Rww?c*RxX+O+G)vxl3RuKu6G1cD3}HS@YsIwr0pV=Y5in;A
z4OMl!+_?R)$g3)c-5Ur)zO;c3r}ltbyZ57S_DyepXEVamIfIg6-8Lc5FM)%pvp^)j
zwX}KR;u@WH$6NVESZ{tT?Hk{^Io7Sjb)UzPqC{LD*!?5p`0=U}d27IEznbGL+Ud%;
z&30e*>%2T+><1-6*5meNa0+<NoByS6|45SyPshJw==5w(XsXosFkeno=(WRhd`=jN
zBh6sdDKzUwk^_ZCn+7oK{kL>iOov~l=u@J5D`W%Q4>a(c0hKn~=Af&&*(6QP^e9Xm
z{!_8nUTb}yrgf%ws&7nk7N#)4vgH};$-+qvsneoI9AHo9l24yaoaA=-uu7BIP2T4-
zGK_rfrFz|oNP4ls&*A2m;MI+hiU&btsZ3(ZOn5pG)mn@Z5Ag5eTK0gd5QdlWfD+D8
z8`DC4(qyt1HfaJyey97?^-Q<?>p!lJ&nTz!84G6e^IF)mlkF@ZgCFSX5#jLSHMywR
zbW0A{4<#W4y)^!d`uTIVpb`^4CG|`@;MlPqsxju&4-la6+n>~LH<8<kws|h_F8Zj4
z{FQr$iNML8E6<1M19nop?Sb`VP#kmIY^2DY;7C3k9LQ=F!QGp5y>I)IU7umT`LaLv
z6g-bh=8SYjRN1F_FxwLd@a}Z_tQ_zaVCvrIZ`@2Vt8|D5j+QXs)$4hYnaU8cL0mYR
z{ZdqltqMO3jQ-kFEK>BM=2B%xfaDW-0(88n8=W;zF6akV2TTLmOs9F6A3&FSK3p)Y
zOc!yEAFD&(761M$`PbElB;l&>>^ktX0KOx5@_pDN1j5qz(Sk}8xKGQ&kAs8574!|1
ze6sVB(weT8fOB$bDpBOc0)eR3E)~qVv6th%W6dbT&)yQweqr((W>(Azg-;J)1^m;M
zpJKF#Ma*^h>$I?zq&|ELe7MWbY|H(_La1w-*R&yvHz4|rXEW{S+f8E^G|gy;e;4@|
zca2>3Y5eeHEgXmzihY$YbBhTNbo2cFE^qSXeC6F3?EnDdOhkY~=NA!{NUhwF57gSM
zyUI$W$aq~9$GW6^l{n^jl`tZi&heXVeMJcUJ$Y-F3oqIKah(1k0ycRP4jFGk9-@*I
zL38DJC#>85!wUvn!Z&7q!mBMVj^gtdiQ$o6PDhzFA~>1L-SH<oOEp=tx>i&~GK)~w
z2&PWWsB}?JXJh`6l8-V5WnN@t0S*CBU%nc=X*)p3{tM9Ol4P@^%#7!_5nM!+AEMSL
zMSnIvJ@5n3+YR|S(2G~s&BY=RNB!uzn|PH1g6Qx)S0^bKxAU7E({-RI!1>E~aO925
z#Qk?#3pXG#bn}E*!rJ+>U*wvMS$tvM)Y%hFTe-D5g+|K!KIwKki@Q6_2pvyXp4HTT
zJFrGKt68hJb4d)Vte2j~I{~3L=DsQTV%(Ybw>On%eiLH&pDmH7j4z6B{29#2xg#GN
zkHMzMbeiZ!ZIJ=rbJ%tGixCB?PMo`T_%0B(v(3{?1ntQSR-#iMh`klGYFd~sJuy#U
zzHmLLWnrO<<Pm{iL%(8633AEdp=BO?{q0P3l+&0K`Y(9h8%*PeMM1y8oBv>B-NHF~
zXFS0_-4z7GnVB-v-$%51V@S7b!osFKm@msX%g{?f@|R}^v+#K@pK#`_P4^J3>2u~~
zc*nfNgIX3e{d^nw*`pF&pNX%&e-(fqe#n*hQv^K1NQ8>{OGSxAY@lBp@xka~&2JdT
z{|}|iime!|RQI=es8DQTYtiZY?$p2b<)3xYpYY)G1Z+hGHjBT@LoG7JIw*de`}n*5
z)sV4LZ&QEX&dhpK@bB_afBee%bqbYf`kg!E&o8}jw{0Pwf{6BioYDW1j*=5iPf~_Z
z{Dd0zCD@Aazl@g%d|2h{J9!({i%kd9Mnl91AEvQL^$fY116Qj!ABAWftB2oU*DG@J
zCFV75pV?d^+XVJ^9nmkf1SJ1%kPA*ke;9OqW6~n<N7zXV38&d^>^r&DVQ}$grQcdf
z2E5H{$M^X4XpP%+wK7-Ssc}5BJmvD`PxSezx7XU?IuFKfD9g0s;$--f*WO4c&omYE
z4jY?Ngl5{iQEuIy#SX&kvVB^94jhOmpx=*6a3T?_7kF=3Xy~vg3S!Vvz3=$ut{i(Z
z1Ts_Z85$i&ZO0#n+RC!vR2$gcUmaQ1#G*~XdVdj6vRt5ipqSUjH)3x_X$9-ch~rc_
z!)8_VMUZ=(MPJU{nD?#88@`t_^*v;_ykV%_T@OIW1~6rNhx%2$pj_=aK1tu(j+l=p
z*ceWecvjha#)ntC^{>h-$L+lyC)5aNrj{7U<dtN#dRQHABR&<-ZWY|lg}F@YXVkcH
zn;$hs(tMe(0f-g!4LBxK`Uv=g@>TAye%rIH3UfEfI^!{G%41USU-%;PZT)^d)$era
zLtHH3%7JsI5xZy&YL#ltd^utXxGyg*jCu9H#EH91%?vb_Hz2iZd%o7omtwF#(D9Go
z0)TS5Opq5%)D``3AJHm^W89wO>^sN0qVA|uFsJ0Up33#XGJH2Rk#5Z^F+z%CX`?|O
zU37nv;CY<Q2IMlyd#Uad;P)<G$E+rNP|UDtmyj<@lMA@s+#vWK6NW}~d+oL<lppOx
z$&fKTA`Jnw26g-KT2!YK)WrAAw_e<#m2h}&ly9cJJ_Ajg+Dct&Z?AIL;XhcKJH9o&
z*ORj0X=@G0o5;ZWCwf!mGtWg<x*a0zA>z_cT0OlTXDee}%o@!uFGi{4_$~744jVC{
zA&9V<oN>IDEm!BZ_J9WZ!wJkd&e@D6#J)utbLdK>CGIk(kt&!al-wPEIO~#{ywreA
zq7p#M?WY9quJwB@Hg%8ZxU@wk^yylMfyU?kH<>{aCHor()yiGi_12e&Y89V0tJ%!U
zU8eD}xw0ZwViU2(p+7?J7AFZ9R(RZ^nuG{%xSPWKKh(F#95HGjcP9Ebs5P~P`{(Q}
z3Wz8r+{QKhP&0z~)u>3!ai3x<#h6y3W++8B((idFYhfJg-PpCk{YGo2$>(kEg>DnQ
z)vs(h&$kdiJRUU>{6;~KyvHgd$K4NmNxVwf;B+?gr4$gb#2jiM=~(}{i0UJO>v(gO
zK_YSZR*c4&^TT*1fUSHl#IR6eI=`CuCDROwS<Z2y$hoAO8yHhIag@qQii9kX;F8zQ
z9wY|zw%QD7ogT%MH#hJXb5_YXb&V{l5H^iB(k8MGUuLlEZx^zrv)!j5<GJC#;Hmto
zRO0Lz3q2q^@Gwa+<`Nj8SbwngE{HW$1Li)*5#)zTnT&_OldbjH9y3?F!ForwdW+f2
zyr#V$Lu`BLY5f|~+M*jqb_q;-qDi|c*0bo+9Z>6z;19bzONI`~8$xwLiuCHg5Np&=
zNI8tm0FAdPViho-{9oA=85Nh6?DKXTSNju_4Ow!BQD8cQ{U`%1cbs4K%i#j7$wJ{<
zW?JQ?sBN%p|M3ZSVjgW1yjh)wD|q25VpU!*S?wH`b;x-OL0kNkr6JI)&O_gug>kYS
zckR{;ma+D4ijd7$>3h_yroGzVj>@=E$q#|{XxGm2zAK*i0bdqvMH_zd3jySrVzYWD
zw2#`evG6J1XqF(Sgo^-tu3+f)o3n)N*9rFQc+m)}e6xwaJ#M&H;5saVO>TY!bDQHi
zVi4aWd7ScNi!J4v%373bc=+jI`B9LD$HSMGHKBDSCQV9fLs@QpK1VxJN-bBx6^1$_
z;jc&RRO|*`DsC-;GNgp{#OyVC-4#QeQ}tzBFSqDN>K-sEdvw><xJ>B7MV<&+AIAx-
zG&1)SIlQ^RfVm$&_i`k9jKA7%??=IFY(<WmcgK}A3Ez4v!I!3y?<Aq+!3|qh;d?A;
zS95bxS(s!(&UJ}y6ztO~tkb{GNt*9i44Z4uo(Wh1s=k8#jF$~LOX&r9xs&##S-YC`
z>sp6!P0R+z1|>t(A=S=hjrv>(j77=~qDh?2M)tYhW*@iHLF$$-d3;m9Z+gjSeT4+R
z$#8t`6?ZW3{b+oU5jgdtvLMe~gAlBfeVkIoXZA5~i{b!S^ps`LO^np@<Vmw1v#GRw
zDmF0pAR;NcMOky+ZI`Kd)5NUfFlZPFYs~X_`^*aBL}y<d4vM7ae{6E>NHhCw_{yPe
z)Ntr#{tPxxn1fRzEp=HvzPE%v8B4@StljSPF)t?1&R6X<;PMa;8wwkOah+wWu=$K1
z_JZd5O`(oP<H`HmR|?_?W3<9q^+1NqBgO7*@oO2Dtz!LlYd>Bk@#(TqC3Y%<XAUYr
zk^*nnler&0bO@k2yfHwVmyagz=MW&RH`ZkPUFf9}P8jZ6cb1Fo_M=~i>qz)Djo2pv
z&7dq4aBQE`a|#?qa7V@&P+gSVC6f=^aH=5WY)O=OX5O(Ta2RzEYA8c$+dU(*V1=l+
z%_PpSkPcJsds4!~I38$q&v;_%`n(q9p`ntsPVNtphcn7NO?iT!^CyDM>tDa)R3Ea)
z*shoXCr^lWrJFVeMnMG=2omq#@9)jJk`pQwp@~D)NybnxQv&fnbOttAiS1y_$UZ(E
zxA#!)=J^`ymXf#6JVAINF#6uuhYTWXdW3(rjaJ}~ilt5tX#{6pQ=iPS1cC9acbDCI
znjn~Y@m2^wStjhqwV|iW@eA>d?2(`q>sCN9b_?qeJ`#_7j@$Qsdw4&*#dYr-&{Avw
zq+dOkEHUSl|9|YgWl&u0wl10gfe;*myE`4+A-FpU4k5Th;|{?cg1bW?0fM``YjB6A
z@y4Oi+ga<Js(q`zz4rNW|J<tctE)!$?3#1d^A35&c%RpPzpxlhSWJ5HD``W2DK3*{
zUy^j2R3|w@zK4Ep@1qVUEN|)eYehz`$XohU%Jr(&X#STjCHLVRXD)z5Ra$g($nXK&
zNJ(V6%Ir$aos!A@>IyUnkymC-bl2z<ys8x$PkQN1Q(v(19DsBZu)xSMImk1-X-X_%
zFfjJ*;!RU^9IB|3{>|wU>yq<c{4XMcdZisz?Dt73VG-{>{DkBFtt}@C>3n*u*hNGA
ze)Mpam`${~+F+LWc-K#VvF}_pG)3OQVe-y+tkjVAHnB78rQpH#&vBvGOq-H-r;hba
zR@Ogch4IxeDU{*G$y|38SUQGD@p{kfj*3)+o~<G<b~wmndq&wRbi&QoI4WR_18skI
zE<heCpKNw<mtfdUdV42KKo1TuAAHaHxu@-MzzCvM`FRw9P;~&cxTk<wG(}J)FN@!K
z`Kac1G>7>R$#0Y0FG!{*WAm?1Oh%T^4`uPE2GM*SQl*G!_<m1nn4^m&*IG<?oJ2Yo
z=w~`ao!<FCQDkvh%eZ}K_@Jg^#MniEmZ~G?pLI=B)21AEH(L(;jpjn{Szr=HHeI0L
zjxRDgKi73Dk1|!(d3DG-20vBm_L|DE{K0mcuJ6iwocXPT0#zH7lvj*`xYF+F^Wg=4
z3kXo88%ka5_<nK6PW_yeVkemHR5AtGhC0_DFZOxl!sVv&WLG68biS0BJ@P1|*MN!!
zm3+Bvj+&68B^Qj9(Dr^A95605xcvbh_>P`%m|S>VE>-CkHn9A$siu96b-dEyT1$jz
zxmntl5-rH0fH%gyW<UQOwt*WeinGYR!sXavn?S!9KKA2}7rN;$$|juD(2w}va_^Sv
z{IZjNYWADnXLmYwlf?e|5KSE%U|>E@G+K4rVKIn~GZe{~hMVf_O#V-yyb~764_*i_
z(HY~n-ms0D;b3;92|8I3I3o@A)w3FWP!Z5y=|yn2p0B7PMEO~WniQ*;if1Pv+X45+
z1vTxmgk+^9Jett7hHLgh$zxcrOy1QOt8HKy4rtVSZX!eLu>SFu33-f|hCyx*{aEvd
zx>AkVDBIDMl)FB04N_$%^fTIF@bGcCx&|L!I!*|eM&Ftv+F&fHQx&%V;7&i!h|N-s
z(-53EkL0LZ_73i9dKqmc+fkHbQjCN|iaadiEQ*eu-hR-pH6Nw3YjsKX55u@7UbU`T
z!5@2`L_lk^r^!J%Z?0s<^6jOTj~coQuUWTvBLY9PI#RWy+p!}AJ<ceAF|gT*j5{*v
zxqVp#gnT+R=ImyBQy3#;m4*$POrI<8>>TO6Z%EXOrCEm)m{Z>~=r3jwy_Pe*q@V~=
z%*$SB^fFLitjsni%(c<W89xm;Cg+-LkZ`L{ClmG=N>aJhCG3S0d1%NMaP9E{pVW9q
zPF`*F`lakutfZe;IkwkYC{Cl&O}e(+f`tAl%l-`;MAk<B*IXfu>MMXr0y3sPo#f&E
z$6JP-UHg(__1tHU(_B%rr{zy2Buh#H6R~z4$ZZz4%E%R}!!U9q&%|4DA$C9D+>`6~
zw_k)0+f9}c*g(nAqNUI-F$FZLEs&!=ObbDA!H{>9-&ai3c<${=a(aP7w9dA@RMZha
zhSvZ~_kCKd=r2IuEd<S(ys|q&VPMq8j0I(=h_8I%t5Ju^ZB)i<ta#d5{u;x=k_<{s
zg;2kjVnXUSv^DWdCVFn;_J?jy<Jju<)v*>F>P(+1><#C5r>lLZYBJ8<IOMEY$3trL
zX@e9L8j0<BcG@Xy`i!DZT2=?Mrzuup(lldfA5Lqmhdu{xsgdr`H-uV5{wfE8n5B?U
z=NwiQ8&6`e$HFTn`)mOf-Q0C}b}KRmh-O1m=1RHPW|^J1GO;9czi1pBOdCzzl0Q0=
z>*>_?Ont68Gd=y%;UfEkVkmNRB7r(=j89VAK`)l1nX8Maavh1bsm`5W1Oc(?2m8o1
z?n1TODyyofhK#H5a<W1ytxQhV#NIKHqLSiDi&fAjz05?Gy3rugq4UZb$K8pRlDW#)
zdr<X1RHsEofdN<EHf@}L*CHc*z;QM#0p_6{`(WAH3e!2#f#a~4cM?<1=t74>@_2n>
z|1*^}!Tdh;;mteTNFIsT4^$t1+h5CDRRpzBe+kC6SJG=pq^+#}j9J$eb>{k$YH+$6
z#RMT1^J92reP>B)%EP;)>X&D$Z)_!sNjGr~I!1gJ)6dp_Y%Eh0l9*UQ%%9JR;Au;C
z)YwpV?lk9tpDjH+*ENv}WsrZ}ahZN`Ib9zmiQD;*BG1lhWHD+-I-~Bs(rC|NaJt@X
z@O-<Td9hYXE+86q14$h=k+E*BMBXF(^1z$xw`prsZ(1FzQa2Z!@J(4cXA0<@$t&k^
zr!!mHX;f{H`oI^>UT5{BD>kp16JF!?mdj;^-MGOfG*a+k#5W7_=&wO1d)Yu*_h|I#
zvh7UYX1)wyCtzUmjj-c^et`o{uo1P1ez^;MLPuAjoO|Kp&Sh2SPgq>SWN5I_;hIcL
z_@p{$E#8}^!r<9tW^$E_AFaY^Jl0vGJ2+G$>W>apW74do8aiD1vHtdvau&Iw9Pt&z
z^Ga@~!DRHanB)6&drLmBgi2?g2@x)L?oaIEZ?u|0mgbq}&^c8T!OGcu38XO#%v`&=
z7PQPXD}6tMnK5Rc)F@nll^e#)x#tITO!?E0Tw$A2+}Cvf$eLg#zT$NMI<xh!FP+|N
zR|E#~khbn`9;?;9SCzI2jpcWCei7srq|@)=Qm|-^rQfzEu79r=x9)4!VSYmKcC$)p
z27hVcwq1$L=THjggKoV`wMGgm0IFBluPwN)BWN}fD*y9l!Sch-6T=!FfRN?-8pOM-
z0chW{-S`EVeIdC|MCOYoI}byww4bYisrP(*Pk}S|%sg19PpoS@n2UnJo304Ub6`Rg
z?tjLD^=qWy1qpCyMeL?mb#$42{t&vjQUFRDMN`l2k+ZhC$p?L~e0#C@5rab*Q`Wgr
z;l73>kVqdR19EeTKcTS4tdn)_4QpkWhz0qt8b}I~ued_Vg2#T?c&}63ik|=K7{cHM
z^<gd&mYE>;*V`?yo6to+%PhOKe6Ef1QZPp&%bBar4ShO`*}+=qz^*k)uQ5|fnW_@?
zAvNKJAz=X_!0)L$aTsTI0@ju1l^KjAa(pS=BLs~k>vd|(Dyoj%@|g-zF7j<R8nyA{
zUu{s110_CBM$)3xljy!~cJ1;lIi{?cjn@fNxAYizdF0U)a66$~I0O?{PwHsU+mxi!
z^9f$u8tc+kw8pN@$*@^7_NVJAW8PR2f3Es&Es!$_uObB4DpeWn@vLpHq%3*k)2W7i
zM)XATC7L37Fa+E7R_L*)89b(&<1{Af|G|cyPSXA#dc7b2@~+?)R;s|iv|1m<RDrJ+
zq3Bm_RPUl#B?Is4c_*P7X~xt&$f4J|OB5rNTRMnHZb`L;H8TaN*9iQ;V@kLg@)8f}
zNb0@+D$o$>BsF2>_$sh)Q5R=CNi6g=hZgqi83(CJN8fv&iv`hBVgKiE!0p|0%R!tA
z_biClT|NuxfT)}jYsW&!*iWA~@6y?0j`_rqn{&Ime1HcRw55th;`g%q>_bD{cZ$`?
z2DOAD4xJaaSulFIn&PQ#i+`}b?Tc+Tbr5R{ge-Ox#$SC|&D$4QxwEHYAU5cA?)+tj
z2rz6RSlc65pd^SQ_x4Yl%wKTg$?zxtdK^yt55(b6JlxpoaC}@guTo$%ZG8M&H}TjA
zC0u}0p?7oice9v`dafm8Cs_3*RI1`-QPSsPkIL0)IND6xuw<JZd==y^BQ5on*syDd
zzP|p>aDkSzmbP+Ipu}71X84b-V1u1P$}II}@_UifsHoFci^i2`w$|gEdl<)@+vkIa
zB@0AK{4m)StM`urE`2mzW7%mgO|a%#xEe);>8WPfXN~w6oZQeErK5Qo5en>7=ahGh
zKg|YehIv>gL4HfbsU|x$821~k-tJj7KHD?oxBso0S7jy4LsV9ZPAbFr%YawkxWYR5
zED<f@Mi1hRfnPS(n~pPR9*&oDgqARFw!gRfdz1aszJq_&|A9$ZFp)*GEKj_5s+&wG
z6xxa3UuXXGX%!Owr)1;rCGoLu;AYO-&*%Ruz5BoU+yBBze{8{l{qvfz`a0%+_gDYE
z>OhAA1yS<vaLs@IM_FPx9djkZM4rkdt-r*rz-z=XjWz16H~%f$PWUmvY>A^wVvqG7
zDwh9p%kh2)FdawH$?xvs|Dodmn+`$5ggp|xkm)+rf4<iP7=507b;;sM{|`a_zqB+=
zU%~j6|9gY~@G}4J8~g`)?yn@)|Ha@xpygky?Eep|xTYvqZ!7z+2MEvocq$aA{>zk+
zQMKvEF50{A$4kxwRq&@ufn0Qsr>i>ro{vo={7pu%<_vAAN_G>IdlzK=lQCGX>iers
zcP-?c((yC6$5XSrxL2<$VJ7c?nWo^%K;EgfE{2SA<wXd87+IPn;Aw3FNeJ(o&-P|J
zyF#e9fL=$){2j-6B=-(+S!<pg{SE>ejv-!J>W{yKC}IAc4dH*O0x3A(e#0NdE!Rxl
zE*76zt-t)n7@q{^?QWN<bo9AYJ3efqy~xMwn7QKJnRn{vT#_om3Y4?f)cIVBDp8oN
z_1`vDl%lI!bg}H2#!m@7r1HgPJcfdAuvr})FW8o#mo4wnE@<Q&>D|}c)Tx?&?J{f2
z0(Xa!E#JDq{4<R{h0tR(iJ*^ckDEi{EPW#H*DSms!EUorxfp>MlFcV?_jH!fMEcm_
z<}*hNVGD+MvNtv0Axcm9%XHiNf_~~3^7Wr7tnq6r4Kzorm#wM4+Kz>AQDAo)NsbO+
zHTZkCmE-^iHkhsT-?p`P`r{CTYJ0Qd$5~g>m0r%?-NhMrpx32Sv*R3?RDo&+#nF=P
zDPmUBy{$lSdDbjaJNB63YshTALG0+9Vfc-`K*K1OMs}JxV2+Lce9kTRw-sG|gb+t!
zPgAN%it;wGT;%DobDb|ghS1j#Hlt|_NxIhc`eU8A$tVj!5#F3NpVX84Ax06EC2m1h
zm1c@zt<w1S);c|gfwq4BWyi$r<2uR{>5@q9u-Ta89w~((EZ_8FPkt{R{;E`8jR3gn
zw=lWA*~^R1K@~{1VZ-w=HYWU3TbZ-Ej-~p=*6P)|tj@h}504jX0$*nbi~5nJ54<^h
zdCj0v`5m_VeSn+UbTpKE7^wAlN{hlQs1yYExL({HHlU!455rn<)ZkF2EX;QLZ`&mt
zBeb3QPu2IN=GGQ=303;zNhP2myuhA8YYgfB=UN~BuLH-VAiK88dZa!cZqlZk#?f_+
ztM5sy4L>7C-Mod*QA+M^Y`r6lGYAYfX8WC%5T%YkEtySj<!mOjLz<L@b4gZAfJ#mw
za<es7dGvRoK;?Lg!N#9v3-M@jv!1B!rsyo%+kXfe2Aj&PPwu~S>$$<Et_rjGedXB<
z+6Z=@S79x7n$A}pVRs^AA}$}_y=S6=F}|s=k;LzyJ~MIVkv-R+--{tdr|)&(KiSN4
zuGugB)`hi(y8LUu6Qw^DGroS*bJ8AMZ}!+~gEkg?N%;D0tP^K2mhQk8hM1zPW0sh|
za2g<|0EmwNg}gaADL@EjYyG!P>0Qy>ZKZZ2CbDl+1N(BZ*^isYYB{#->q|qv4#?yV
zX4da+cw(HI(KM=SDh`}p^DmOw(nXeO(dfqxDJL4dPm3XQBK2PqG)%YqSi`ZgeBd*m
z7gq-6cv{!l=)DeC@;l91MMgBW(!j-9U)dJf292!&>tqm?Bh(3;=~Z-X(p1psJyf)2
zH&0*0RqdNK?suQ-$RVi27SMW!eZ{Uu5r<?|Yycfj(74r&W;EpQ)?|uvIC>S5R2b2j
zF^oeagF&w76DA^Dl)Q;P0JU6ft7!H@aO-i&!h)5jUDN@;^oTbZb%nHV4*eGZS)!>l
zLNMeYQwz$4{Y6f1*odAy&R@Jl4E9AS!fdDiwq3&wL)&`^1pkQI8lz$^^7DC?da}m?
zKYNJTj~Fd6el`v=a8pwHAeGu)Y96w*QM=COt)i5hqdYFxo=QDoHF;uj$j|NPeG|tQ
z<T*(0G@RpUdkbYB<U69e|KM%B(Zsr9D7<ibI4!<hyKL4u8*Vagb)5<|A}Qq?sQqbi
zsLO-sM)<%d>J>I2G{0i@qT!5QOYY+M8_egjt24iWl`SxulTFnqINAg&sJ{}rLv&($
z=Z>SFjurdnESA`$MY**s1<q}64Mplf!TJKO-3T7<xMoG0a$EG+$V4H|Jw<w`va(tP
zCP>AL1dDRvWO4bhLGn%SNC<OBBVnyU!o?>cs~(2_fiC5N$M<KICU{-9a2pt0lehg(
z?gH%ONB+#6-p_VTA#h)xz55`fqR8)MJzqcb0{*2u|1n@g*bn{hK=tr-JF~AIt}`b?
zzuT7?<wVKAImAS6lajmQmsS$?e#FN~3v2YL>vfG<6G@{SPZp2Zm^5pPX;x~z{$Fuv
z%Vv{|zjvEM@07-icd&&93o%yP7ix40e{S>E3wu@a7ii3~-#a~RKCc}ajJmbozLz;V
z-}8Si-OHKM>hsGn6J}{K`{nFM6&q1wyC9S8#YTQ4Eb2y>?Ik?ApCT+MbBbRbZ89F0
zKMN%&iDi$S-Z`n!=_B$F%TzX48Rv-QZQqoyI{@}M2(JCyh?2N}`grMMB;=ieEBD9@
z6Dq{+HXA1pl=ERdj)mz_)4h(42!Ys1+YXU1s4?}e3Jfe7!zzXX{NEcGK1OHla<)6}
zfa-5TBGhkT>k%u51H#VzcRdp2zN=z{*;@Z?t4F4}zGbsG_{g}LpVX`rU5!KQDXu}N
zsQ%{WqiztiTYhZN_fT%E>p6#<{%3Ekm{#k&AU;;YQ~oGjW?y;%v5K3Nekos7&TAab
zegI2hdKsj~z@fxV<v8Z)1gKxKIM|+R!M|-Sv@%xT3<H)0k(2UTKMC04u$gy_`fIC2
z`JiMgNj2HZ71H>zMauZ=oNL2TH(y1Ktc}_=w|yNRQmL#lZU^PlRuU)nn}UM$43TlK
zNAbqxu=I=w@N%Kvjcx3zeM&|8jY+E0FPW9}(`TEXOOX(i4&LEE*zZ?|OX2IO+v8wG
zC#+a{v49A_I%bHyI@bkdIZx;?1O#JZiw6u32Xudlj_F?7o7nQP*jRG6*m#0WSUiAz
z(7$l-q?tyerA5DbEsp(;!6Ipv$-?U8`jh+kRU0qh<W%D8C)SgnWv7RShYlqhV@DZ>
z10MZN!ccWw*MoJ1mYBvu3^G2)3$ZW4JP47JuXZE~->x>54QJBw+(ZVi^(g}pY*({)
z@dI36nkc`RK$^rH&~kU*E-nfV1700HJBj5r3>t(nt`(DqFZ0)BgSGE0OsEcDKeFR>
zPY&;6q;Co*%QLp^(f`n*ipdl4z)Zzpl8NwPRmoRh0STh{p!yQ}W1?Ip0b&cxv$8@q
zxkbtUeEwtz4Ul(*ItoBlm!}>B79P{2KlNqh$>U+js^#PjCCZB!dHCG<@N2GXFiLtN
zLYT|!%KOe)h#9Y?Kge<A3=}G-LHN`_qFnT1z7-5AP!}e=$Y0D_B61k^8{|@uCa1#X
z0&{Cnp6*08ol?d*&B3!Sdsh+xT<AwAR@dK`L#WXjn_axJ;<@9Y5E?)kPyU*eUcmlB
z0Sx#=TF%*7mrMjl4}cSpb{U&PK>m|2U{f%9NCf9f`mdi^&lvqj6X9!8Y5{ZWnT2^1
z0r_jvTAo%*MC5`l83Ht{vy4eiCdWR6=dI3*o?t9OWkQ53MLeknhBMFzzF5B(J(!zM
zL*GV<tdQ;q^MLAybcDxA!b!SMflBjztj~g%EVW_+<BM>}1Ogy*@Kdwmh{g|1DFYG5
zK`Hfxyegzo$p}G<sbZh$_dGoxWk3v@+(ry8R94M9X_FA`^ZK?rZH7TMBj{I#g?JH;
zEq_6C2OMDm`?;*;A~b7_^aBnA)YlT5!Qug(t$GditaLhcTga|3kr|x#u;=EmKRZtJ
z>0w;ACid<(G5bz0499b-e6P^;ick43T9mu=YX919{%u2lJGa+lvp&fRsCQqQ;0y1O
zQILE{W5^Zb22$mitB`GhOP^846?9Y!<zCV6ozrH}sBd!Cc#KcV<YR{Zep8_BsgfR^
ztgjCuMI81(OX|4~h;*U^^iPKYLIV`0#${BEgmt^GRhM4BqL&zYK$iw#<vPQ?`b?25
zjf<q!IJX?wb`)B^We-!j;2+yr#wkq~br=yGY4K?WC~rL-?6H0Ra2Bt@hakLV@FJYS
zvU$f+zNFt_(X0nm9EjOhEwqWtfGPX_=2C*8!x4^Zs>w;C`d$7|3hV_@h{6ddyR7b}
zP8gL7Xj=GLF>@m*8zQ(w@28a^W0y;~&P%5L;YK(V_}9<oiaP(JiR0fWE2=_U;Z8UV
zWA==FlX#kCdP=HL?YRz?O@F{dPF5^V`yeCyDPeptV>kTGCp@9O2U@8)a?|sS+#*K;
z3Z!RD8BWjKNe*OwP_ff37QaT8DFr1r%2_!zMo7$h;Hwx*={tlsy=EN}xK4xEP+c;O
z(#c$OaN`%@!}ns&vLi=2LDVu21}v_je7<i)r&B*j(XX1dSTcy*Ku3OR8yjBJl<iQ}
z=eP=AeFWyb%9b}f5NDfq+QFS;Dx0sdt+x(j<ot`AF3b=A;p1+TA|T!OIZ@c{OFh_Z
zPgFo!Bp8k<S>0pU9hVkJ)os%eg(OCUs4jAt5e>=;En>`|Z;>oyu0n_Wto>6terTm0
zC7xl7hHphIo~%-=uXRydmV?KtB@z?)W@_gpDYd2JTUOK*;`l9^X^LQP(>D!lRgzFB
zY*pz<exHx?5I*bAkz$rDo<_J=U(v}NLn`$uPT=s(a-7J{bZChkh$d1iInB`hA07hs
zfPvQ3UES}TxDW^?ku(b!(p1!kF+EeOe7*~;Wzpy3lQ3?T?fB{y5M9rBP7_E1@9=0Q
z;Fgfd1ipz*6P`1Od0J_5GbxYQ<ks9tk~dd`yH~XCCB(f*spDN1#3HtR$rGBB^6wIi
zS$MQ%vU8-p!hJ~!qZ+&{)gn4qW?+l+SR4}&idz@#c+1oiKMSwI>0vforp+L)@988|
zBsp`-zs;#wW_J_pe3}<jD1%mY;+G-vfACBhR9%$Fp9aqYDWY5sdxV-OjZS}P#`n@x
zK^3viDO`oF+a$&B!cmi$0o=jv4M_uq^<9!yYrcF6eMA!s*<Rz70K=eNsE8%MW0z=m
zuLfwA(OO(YREqOkVyd&yg?>8%pr#`l<-6GkxMadMsZ|t|&)~#1>p@R4>PhAbQt1Nk
z2x%^dkN9SeNk}DS543J;Psp{FETL<ysrh`HRB3+ii~0<u8<CF9bVi!y51(P=5nHG7
zij*4N{U341fCKl|CSLTJA)%!Ub<WveO*1TRacGzOyTk<+dHyt(c)s*ky2z3#{0vk?
zq3=_QhL<7bG)0tEKJ4!~^0Ri@xhuzR$F25&AnL;vNh}vo9t#^tZp1Uf2P7;-_(B<x
zb*A18qW|l-mc$pn6iuBM4DsTTDD0%S@k+<Y=ND*PoWHLBCGi8(!kY*ZxdYrX<~#~$
zy8!;OU?i8)(LUu0&*1PS;RU1LJ6{e~jRMbBJtu>LJ3n+IUnP?JG!}*DcwHY(r&~l9
z?u}=Jlo#yG4#XDBSLjLkRKgF{TmRwEa&oCQeOG5UtGi4-)#+f4#ce&OI&yz|l>O;5
zL!q&R7XDMM>04Ov3!wb+-+pvGL<XQ3e<TP(iF?b)G3zm|qKf4rKtnF1oeC+SNCJG5
zw}ZtdL5)1lyC7|%DkzlEdH`9Chz(bw{?pvl4l0xNZtw6}eqBEFbrqC7rab%}7R>>H
z?3nnzIosMyA#FHkr8G5C6AACFnoIY!k}yU|ARNhHp<$$c<AnFF;+}&MOfUKT$cHvk
zo+G6i)!L>8%@=Zq-aSCJjq@J~!!qM3pv@-Fx8{@SD(>qKd3+vRR5FFm9JgzMIB#px
zm2-W<x$IZNpO0EMir5SUN+O?T7dm90?r-E-Q8+uH7)AwtzB3?YLiVJN^FM&#?dkKp
zz^9@o|EGDa0wLivE~mC6-@BS9uAi1Lsd(qImGEq#zrOxIyEG3Ytjz#~m?71}9#WrG
zI5<3-M=|tO_HBxuq3Eo(1=3_@BZO;;F1igMH-j}$Prddnldn2|WwGxSt4!M-eo>|C
zg3yP{mi}KfRf|y-4Bw)0oHU{D-|5^UWjg88T%+-M)*Zj+*Ml>>L{VQvg(poe3|R2V
zp9(1g#hMtdab+YFb)-zbj{+@%n2k_DL|qX!I~uXUU}_Zu&n|kUGS^D63L6$NV}jz#
zS#lp0D(Cg|%Sy|)qyql8*AUDsvHJ8%=%R)7FZ-zgzu>po`c~k|HU0I_`x<9Um|RW5
zVzY%x!FXn)bQ|ga0G<HKv%rr5;28rSaYd)#_bRpYaUUpSv%V$0;mSa`{}2ZVBvq5j
zP3X7r6DddhP5WPCd-~JZw(p!=61n?|m4-+jU-13m^t;Ni5%gDl1mYs%i>Weg6aYFi
zpRRXBGe2$?{;<}&QB;Aanad-Un<l@Isflk3!Og#hT<D|%Zu=SAG!u`0d<zWA>Y?06
zhTKD@O<xaMsEyA9LC$I$F~EeK!_{f!gLOd*-+iWW>~~?4Y2?v)D;>`#l74m{wD(RH
z8aEVB@K}r0sKcf!a@)kHJWD$H6JyT_{h-MU2lc$`DJ9CJ&hLCdqq+I$Co9+^FJPI@
zqHg$y*+GY<&<q|cMbWz|huMWrXgf=7EQyG?LmPMEL^_aeZ7W-FJd+o;8WE?7In8Nz
zvBsT;L%@-&3aM2^xsTiEy4Aq?A$_NVH!kC0fUSm%DOh1BqE-bv=-?_D;G2PX1(C>H
zG`?EdSi@h+#^f6KkD>N&l**tAK!!3L9Q)WuB0G<j*wovuGtL6vN)P@hQ<QuX!>fYI
zy$gE{+=MuCCEh~6no*PrX(%Od_FHY+PHWS+>Z-ysCId?l3uK!wkl%&k-l2c$BURY7
z@l^CJJaysgd~>8$`qoxl-EfkKgnt?G)oN9+loLXKk6p4K+^Xnwyg3DCuKF6{`6sa`
zHfqjm{(1_2*b~krVXjQoqrIo*`%VK(=FK~WYD#(f@xY+A>B7)Nwv`fB>mWDCatKka
zNr}XR+ZFlCP2APRPlu_P##QMRX7{NOa)HbYUI#L6POELc`y2O86{F|nMyunr1efzS
z;HjQ|g#(x>ZeBBltq9@+K}xXQ>%IiEOKX%WM%PRVT)H@6cApm_KiofF^4b@IjeL^r
z?l@RYz!P!L4}vvDm?QR2yVqBjMr%?=Po@5)?4{9D)^opfH14Ng9+}58IO8f?4=%4B
z!pI8!p{1Rr9qr!I9B%);PyJv1_G1NQz|zrv9LDaV#s{mmU4_7?EZMUR$hH{lkR>ik
zO1y(P?m!i-Q!bj!d7%U>IW0rdbuEjZ2AO|mi||6YdWqO(c!HU7<(n&aEi^t3z7zsM
zvp>Sc)?XL_ExvE~@e4FWR-1==TSIla7?By!dwoDrc`Q_NM>1_>cV8z9aEoRv;e5+Z
zektt*p<I&Yj=5rg6<-orcL&GvIor3ya_J&X5F13YR-_se9_|}u*t%W}<nm<PoUF-U
zh~ChAsxblIw36k)L~Cd@pSI%s3%DT_iLx2I8yQmVUT%ejGI2AMDT2UVhLe>>QA%=-
z+Vymq3f+dH=O-_P8&3`TS!aMUiqw7qO393#Lnk$Kr4f>6wB|?7ZL^$27fsHrCdz3(
zk<ZINgT&L7Uvx0WIWYXi<5)!nSxOV@tR)~DHYD*s`Qaa~2$*95zav<f2*o;JQG<$=
zPemNSr`|JrJcK$Iq|JjHBi3;ikL#(DJefBpz@Kl}xJ%K=XUP4-?tdp@G2yrKvb95l
zFI0?&d}=cAWQT=xkJY2_>y<3SHhw(GJlX`l{jjuU==|{@slN?J{%;sR1MRo(MCDPT
z@(Z7F1!?hQNA?%=CF2iD$kX`dCTl4Ir%@GbvVAvF&4M`T6&<C6rx}dX$qJR5z{>k)
zYUzhFFg^O29@^1@!!UHxl%aHnAPgRdHN5K9+hg28g(S7j&BbbytBbk=l6Gf0yOqy!
zzI^3-r0b%VhdNGND!j2&FukY6E$6#4<LWY#!JD~S8Qut{8S}mNR#}WPo74$xW0wa&
zVuFNTL;sC*&;J2Zm9XMf-$K7ArO$zyiWl@H;=3eUR7E~+O3}rk4&QPqyh0CD&0`R;
zU0kBdUG1=yD@4_ZsbNSdK>Uu7&_oT5-gL|gm+Q>-__pv!<J#KsrHp&=dsGX$tde&3
zOW=<ZSZ*bzMz1&mE{%+u*A($*b-+WB0)EgSWMJMFI?NI9+F~#|0|t0;4W7tx_SAwb
zH>!NWs^%gb@-d@g+{B;alP0CIHJ3y-++mUqw?b)u(iOv07y@bpA+D}7hoLop_;UpP
zDYJQ9)ivvlgAnI(Z>y0t{;&%R8rz=_0@^N!e4ij9GI|ZRI5KEASI9V2q4$?L{27OT
ze#*e#U+0U8+|$@CHp$)0PIK^ibDb<!YZS!%rpXLtY_M4fMJM6=K_!j$KVnfBp)W44
z_G)R4-%V0>d9E=09v)<dm_y6{I<83bvJjP(;iGFDX$85R9Q@j2YQIg#lt)XhPKuVH
zH66{`m|t2Pk!;$-b+#M{f61b-s|z4opX>B(BW^~*&!API?*f7(;Cp;6tqy|n@qwpL
z!pe;=lICeO9=QoSZStC!hcaJJDZ)H_n(uh1`M03ahsdfT0!GVm`g6?DyU7>~nRIuE
zIv^n*7$irJQK^8K5r0zyK&|Y><|1;TTTSpgQ<&y=#&V+#@zdYjQq5%kxOuL{mAPem
z2IYrY6rRftnwCali4rzPbJ`OUx~k2*mP%DT$v5XF|8Y<MtT?~jcV5rMTD3(b?KgDU
zPWNSVjVgd?S6Hl5hj-&()vwdM0jGbkkCr^+vR#a4192!hv<qi$jy3N;miefCR)tA+
z?7Mf~tLfY@%<#kz{SQg2T=c8G4)!3l$hfTcZx}EbwFiSn63#Mm!wUG7)r3h(A0rgw
zt9+c^6YUgXF;&vS!WYpe8%<>x`NR!%Y`Oa{<Wuzj2jo+C2q;!2c2r9wO1@Z|j-y-=
z3F5u0Y%cm6Y0}Q<rQx{va-=p+`T;`m6-hZaL;C2k6Y`>0Fzk7WKaJmcQNaK?OQ602
zygd8f&w%YqCf9+~?E=1t6?&Zszqxetx%|7o-uGCDi23{N+PCbMX96Rs)xore8Ft$T
zrPHnY^qj&^#|qnv-51ua?vN7S2aGAv=TZNehLhy0ZRRS4r7Hg$QQKK8ucsJ7wd<J7
zhAH=#qrt2C6%mC-nDE^({8egcPU%7u#{ZGO<rAQMSNIl#R+M3+8ywr`h+8KVRlus8
z0clbfjf#-n0!`hKm+VjDkr2nqtW?MKENy$H#YQ|8FrY+a6%wTvCh(0EDp~c)Z1ctb
zymzBAEXtBkxNW13XIlP{0(u6*FY~yVzJaTjpVs9H;i5;J{1fFlj?YxAJaPWaiDi|@
zfHh#FVLVSohF8TZ;4C6aKFOr56XMY|Cw<0dWIVRZEn1@5<N8WJeb&kKbk%3p)df~t
z71oNlB=b3Kj;WQRuPI<x!-FSP{LTz?GAiE7O!~RSe{`sH86Om(mV%uQh;u(Y`Pe>n
ze|<Dt*x8xgaIS78t7Y_Jm4AOey0KajR_8UY+j4xUqFOi*11lgroCj?0&tx3bQv4n-
zS3oM9es{A*NBKTtA0ZC@?xOXU(^*WO&GjFiPIE-3+A)L_V=}o)gxkQAFOU1FYUj*V
z9b$J92r6bEWw2C?{K<bVJN~A3x{|P6J!=R8b>?HfV6bP$3Q}OWSVFBNT`#`^j7BqJ
zXHwZwBS);3qAG1GRqWGc3x)4>dh<i^sxT$hS@KZc7X%+E@uP~&Rhbq{pjwKZBo*-c
z=Dnc+SvoGs|0~xv_m<M;P??BhGB?b!$RIysBi}wWogJl4T<}qCATf|?6;E=1y4?rL
zp$l>8jV4#I;WCfhI<2OdX$;1mmIkqXg>v&bespEz8Qv*g+C=zPSlTc<VbFSz+v!AX
z;C>Bqxo@hz8n5z?;Bi=zN5N-fEN7Gi&CQeXhEt8W9RI*#2r{A9TJG=-)8B6%Vcme`
zy(2*%dqZP>=*1b%HNJebUZ-k4Hu2O|ToAagn=P||h#Z9c8M9j}VZA2iOVd5SNHMlv
z{>85(WMiH7iFpt-qsKgu{v8MLb#!gR$#Us4x4r&qO?khYc~82=52?}5I@=!3%;TYS
zN}1R<<AO)}hKKc^fUBmA!wJ)cTI57Rwna%dhqH0gF{G&yGc{;|J7FIOl?_ahw=%TP
z{0ugl2iR?^hJ8z2GkJ72;O~9a61_P(1eJ3=Qa<X<LJ~8w$bWioQv}$cO=hN-z1hHU
z+7M$h6LLM74+@PT$u469#8uCfZoKLdE?3(b@H87$voy&k`H?Z<^LD?MEM-7N0S26W
z9=o-u9xG7D#Y7emo!f3%vCkSf$uOsE-W&r`l#H&zf=lBYG;J&8LjYiLi*tGo-2*i*
z2B{{6EHBMj@2Z-$BKF^<LNtRU>Rp)bn@GgtNB4X?a3Xdc;|^ByInj;<la}kP0L7JW
z)V^UT7gWnKeFnw|Y2IU|-X1LF4xp1m?Dl-1lSD$}uyvLlNwm<SLF-k7zxkAVQLw_e
z&7qaAO~j~C-2B6arqwAKsfI5$Iugpak__I%`IBvx1*$hc^PEIq7}m;RaV613zUUuH
zb5BWzTsBFaQpkfLdp`8QZA<*EE3tQlE<Gm6KUpI|3(s468-<LClN86UwH^n+`vU-k
zf=`2m@Na;K#|S(X_MVnXHBxGIJI<2`Lsy4YvIp6X8%4ZE{<KE*HA(f`!+E~mx8bL-
z6KbaOD0{8$>+pa6!K1@s>%8~sk%Z2(X1-1IIGV4_2j_Twd+-d;IEzcykj|B^>Qong
zYK~?~UDrR+c}Btstlpsu=fs`wopug}>>y!~#ZM^a-e9vDv{6_L%99fJ%EaV@M)78I
z)>^RzGP$hedHoKZ>ufA8`XhBX*Yl(x6U98o1a^xI-c)S)G)S{$&RU04WjL&cAL25&
z9SrU0)zGg~?B321ypAr6TX#WG@;=w`ve?s;IwJmH$-r&77%(^_RCf7qq(%Q2_65&i
z7!9gjEA0x(ifMPA3U_Edr}uc*q~I!Ko(B({X-JROBG3_AU-+uqX41KTrTz;&7v>aN
zBatkwYl(}jn;YV)WS7n^g3v<q?l$+xLq0=}v=0Zi%WY1=f55)REA^0%lh4=4y3IaT
zYS%Ur49+Y`UZPcK#EOH%Aps&s<D2K#13v*~uFuDpY}*@pz55oTcay(rzH%rNa>njW
zrYk+%LVivQ7p6664h+;#8Q0BY{`f`*-So68;frRd9UCpV{$ABqm}V76&CUf^7)ckM
zKBlKkQkc4Nm+2iynz*ah7s?Ple(SY^ig&G8T_@$d9`y9hrcAAOpw0yBb~x3+X}8{z
z^L*d4<FbE7Isf@riDL5<6N$+MIY$l<0lnbshbN5XUvkb+woQqx$uA_Is|>`5d8%YS
zqy9`9Y<rIg8UYtzkM~?;B!!{LVqJr)G0BPPk_%5G=%v_Rjk|-{CnkG)F=;9wO#~v7
zC~TNJov1ERn+B6y-(<>W5q;GrgXSIg9WT;fgIT6#n8=MoIJ0zQj^^ov?I%cM#uyto
zK`v)3dexC<7Q=t5_CR&aG~j8-)t*h&RGYiGJa?PjLv^O8!e}bnHu*}Xg4!pOB`w1{
zy`n-|86s2yt|C|yOFD*V)=bM+lMd6+AN0mEuV<wI-^dBg7<((k;u*W%1Sz!Z{NpQ}
zkvoZ&<MN~Z_CL%~IbSM=7iEu*Adu#4bW)+TPgi}^{zD@_l|wTT+;O)4lsUMf1_CKQ
zxZE+;`L28>>ZyAVR)#H`-Qw4-r*k1k55*R_BN>iJdt1WIbl}amowlF#Ht4yldk=H&
z-X_@yZLz+{X-pPwZ1@V=ZL~-Q?29_S&GzmtzG^jk3XUZeyy*x?<j1pq@O$oX=^=uC
zr21grlYWKQ*@SO+M1b#jJomZ0!dqIz+m;0^F*s5l^J=fc>|)slQ)FW1Eeh`Np23@#
z#qb~Hv+r`OVJ#ajQqUVDfdfd*s!O|oMp7&}cLLK=+2sP592{|PGWT0d;(n-@cP6~s
z#B%<Tx4C?INaJc7`8*q8I^BmW&&O~iME%sVt`uDm4v%GL!$$#%AvJaj5sr5|{Z)jf
zH}8!S4_OX;M*||I|8$L6{HT=?=xFf@U#SHgyZzQb#2UBUNBJG2a!$C342<X%D^^zp
zAd#0{gXGq;jk#hujo#t9{!%<cTZs+8bVWDhA_5hv6UB{Pl<e%S4*y|YbEns81`+>t
zRgMJ|Q{}Fi`(bRh%k4JwYnLlVQ^uaXy*m8HGw&k`x`T$kOF?RSL9|+3xj~`mrPC&Z
z8Y?#^P`e?ts~Kk%4bY9<T)TyXz{yp_RcV+%`S4e4Z}d*ecJpib`>Foa*%T#WD~gvN
zA6>?MJ0EaghB|`hI~p_2cHEgd<>s5LaPD_4IwS$Lv!z%vm{-IfVBGTdwCu**B><1~
z5<C`p;W$<6Zqxz(?5G**d`yAy<ay9sYKb7j9*j(y9dz}-wEz@kl=v=L%8fc-k7sfw
znk)KqGfgZwNWx`zkG8mO$(F8>Km%k;#~Ri0E%(DU2wJghZ>e2=9TH@7U;FsY)^*lZ
zdr<!NVLz8(wq8Y7wnjiiBNZ!DA(g3EsVj^*TA29>5T@TL7ZnuZ92}7ML-FeSQOy;a
z%5A&e_Qr0#Eg{GMUT(R$utu7oXZT^)1S5hhdI5GB)-q(VnzQquEqMJ)>2GOxO1QIV
zISph7$|{}uET%@gsO5o`2U3r=wy_N~0$z(;cS_dXp}bj-f~~ISCoYS5R9!y**rA<@
zJ;pW?eIv3X8L0Oru3JDhKS<wedkcxL$Fh`Vh0kilbFSbM^RkYP96<P`&IckHvlK|F
ziU8Lny19ORCviKQOx_&0?7lC%@)!&#2jBY*)`wSz-nZXh6(d1f6Cn!lg-3daZl~fn
z^eP~RMSCBIHTha|#kf<nkO8%Pr_~N$8NwGk54k~CpDLe(Y!0FmA~)jOIYzL-N7$Lv
zg=-|$yqSegsVrIKk?&o9-R}0I?9C2MmyTT6HEC`4M=6m!1<0aELMbTWoDRd-zS9~q
zH#!tUAvBQDt=r*22dI$0f1BbCo#OZ6>bw`FJ=Ym52eZQVlJSgl&R$gO{)8r*&z14u
zIK;NP_%)d*0bg?2{4>8m^e<)Wv-HXlr>spFTeL-v*q$>>;Oa!TqE!_`Zzyz5mP9h2
zR2Z04IJfgaW%zZu%}OFzqtYn|<O^uMFT8qa_3L#oCdc($Tnb4I>21f`z}McxHzAws
zt~#%!&v8hY$#HdMaoL~aKk{3T$~D4LieirnhGfL~J>q$t9*EAu4i%@F6oENUtS(60
zHKc-)kE?g+Y^&`Tr6F5SIa&rV20m$r(C&gCJo{=sXycOy51NL@WYg|Q+)z}I&F2bC
zES3<y(8BqbF#!5OErp*(j@x~D4G^JV-|O0S^zLiOo5xVS76!q{_O$9O8%1<7o^Sp^
zXhjw|J}ev$t0;hE@CuA{Xs9O12VRgib-f$2ZGAuP#5roztF{@k>rIxpp$^zw+ify$
zY6eady^9nt;2cyb7Hjh%N>S8*T7Tzde9!5UR`qmQsxNOdUr``6y5_u6pX&Q<-QW?u
zy|wS@bIX0fk=6aNRh?g<_w!6s^yiA@Dd~t<Cjc{v2r!KddIYbjR^>PMlM+63wv1Z2
z^fT)UkeGQNx{y-<-v;dC#{m?PwlZbogrg0#gLkxiL!a-r3+r4T@QB8)l~E3b2d{r`
zOO~P=?5{@PPk;XuWx4u;b02izzXOUTRvWy@-Va&G$v<Liji3&{Yurc&&xYrl9K@-t
zEAZ-ja<&fvk9aF^T7Ubjnt=_JZiT%BNtJx3#WAmZU#W?Re$uZixPaPJyNUQ(QhmQ{
zJB$Fl_0K6pq1og9t^gnb)w03c)2L+=C+u+<c{Gp=cwi`P$z}}!Eoy3FQ3Uol>xAg9
zUs*OEGU5o^d!Oze#vNDpKAdX*dmcej=2c=jzW$A|Kr$&isi*ootBsEK$0<MUSoYUZ
zNEd@I9-_kco4!C)9hzP03-GlSV9KBq%3onnn^CzL!6AgnwMh%eIG1!z>sq+A5iuFY
zQ(SMmnYp|=gLjW2SRW7%9*-=J@|-!WI_6rEyIq6Y==Lj^fB9PK@FK>s1aG`gJ~rB5
zOvTTcPoCxhbSUmCPCNEH0pS;*Dq`0|rUIWGCrK}QJs<mqFLp@ap!aAi05JLe@1x3%
zM@70awx+9I9h=X+PF#C+$XCBu-ngr#1op0rx^Fxyh}TKVJR4)6vJ%2k!ljL608gPD
zJg3hmlV<$g%$3bKq**Z<gNSrFn{__-lX278KEn1p;evc3QAz|=Te<VS#Qk@aaltlZ
zIF)Itz4a^6^gwpMgb!uj=eXqgQf&w;*`4={DqU=OYR73a2(6j-Pw!!8$EjquxFtJ1
zzEVjVPZLq13#JSTmJ{F$Cxbq%T@8_+CiBWyXK6@D30J?FcAxd&*t#)#6m=Si6*Z~h
zF`2_;AbNd#RP7Hjj9Bfyj@&0zf_7|F7onvD=njn1ZLinmLXx+xD_m1Ag^w$ZUb4*F
z&Y7~^r_JV?6?oNh9Y}CFW1S$rTMquk-jF*{sG2W3pe!SWt>uwPz+>~(${n*86l!6~
zA;aQww9ctC2Lj!pPkD0${}vsd!YZ`<6ItvsN!pndVb0geWzb`S<FPtw1`vLz6Vk9G
zw7m2EHVh4HYa`9F@%Mc+UeC3WbOH43?lf`I4HrR$JD+G@nkv6qV5|6XSu-5|&MIG%
zkuVk29<*C=#VmbGLVaKQaFR#A<<a8`oCYmSwF>Q>?(Szu9V7HfIx@tidTy#V-`>0=
z7Gs~Ygg)q)FZTe1kAJL6FRY#+>#$)e+){0Y(77`05%GGs35`tlwcp>w&20;soMe0g
z0$Q)iZTio{+2c~(*dEU6+cdvwB=o0E`po~Sj=%X86>)R+@Pj!{FIw37SaNDbj2kO$
zl$k4<M3|>M#_1bKB!Rp{f9Dkk4qY~EoJRN}%zKxYvhvUUwd?lc$xF$D^_E$oV=g%f
zHHKWy8`y^GYA=izx^F?`0NqXZ6@$*_bblU2|5#S8lymiumFy84-#ye+2kC8z_&f+I
z44YR6YO>N3Zzb%B@6P;z<Xa~0qUT(jQn965y}-TTLDC^mYlIg_Lg2iv_J>NG-&Lsv
zSrHOhr$kD3$Nn+1<Oz>k$<-dmP^0xyhCsuSB>X)(UI+V&;o*8QJ)p5c%p;4vE(!rW
zdB<)sGlz_?I%)6gQCUPux=VYDL9z${3AbFAFyeT;Nj#XG$;Nn6&k{(@a>h;lG-d5}
zg-RZ5VO;&)%T4MD@py4bUby9^q_)uOMFt6-G*3Y-?)-;Q6)asH>O3OiEq-VwSI}Zj
z!3S1z5o-!x%)!^$t(bd(V!#L07ON<oj)$lRy!!W%^N6?P(wPmm@u^>mU7y1lV!IvT
zT>bgZpyJ7Z(0k{Bf^yZ#`ilghohosZhmjVng%2Y%si|TS+sC0lWZwXLdd;gxemYx_
z<j%yj&B^rxN08o+NQF&mh!lMIHYx<5OFrL$jb9{HSCuUPE8o|ZdX-r3Ay`f?NLbnY
zjN@`?(K&`w+lHK@qTRB0t!0?hxOYx{SFun!9P}Zwntq~f$stMu2}dq%$P2dW)!R44
zjIN8++Gs->{jT#R%+4I+8mYyq@sSzkfdeZ>FcKE8dfgZ4EN(64YwEm4WMd0g!N*JB
zG~ujKq8!Km0CB#@3JRl9r}vp@Pb}$*727T8sE%>_4HBfCy1EYcw-`;o$uZ_E@6U5;
zIPbJCmzz%yH`TqzuMafXR#;wkCBJNLZUOC#;~4afYS%N^9wc2))+GkS_ZGYQa7dB}
zFbKj%Q&?zhxeRRY$5K0_jqaBl3q;oxg=<ApM!SJL1bPImFfQ^vmXEvbMoapFelD$p
z5t~s>c($qn$4{9@c0+$6hsQ#PG=vScW`lwgiU2u%J|FiBvM-hv%P5ogVRC-IOl4sD
zL?0NDN@shZ&a^cQ>b6Ls9~0hw5r3EXTUH^hr#Vlw@4~m!<k*<%Zjs&HVZ>JX5V%_&
z`$mz#SeyvU0hS#UejPX;<26ccm)n%=R=3V>b&aAM)f6=>*q<*<ZBvUG;*)$f{&jVE
ztDKC&NW!`0-i7JMPRY7O7V$vZVey-noC^2DbSwn5O*3%FU=?-}6<1<s<3+KKJ~`k!
z1rTmJ%=hsYx!~Jx#dX96Vuui_44$^!6<;p$a(X{PL&>y}>C7$i8%qTR$DXhLByGXL
zyilj?&1bw4J0D2*%1hJd_4Ml$A^#FP^f;%7#h}~KQ6$F(pT`uyP>x=Bk{A=0J>JDA
zN)u1Q2eGw4Bk``MpB4Z=vR(E#_E2AD<0BZ`fP8DCR4jB<savg>gH?|KkBE_sPp_G(
zCXv_j_RHgDOOK(3EbQ#kW{1ffh7nZHkb&-x9b`t{P<~JQ-dheT_p9}Y`{E*M8T3(i
zVX6Q;K-Qr568Em`0`D$JoX?x6Rs&~ZdQ8)j1x%cH$BK+(-5D4p$y(sSW2a4jo91&p
zhe$jcDM?!NX&=Y`EK7n%s$mo<nR<&`6ysV|>N?Afh~o=Q`^Da6oiCVYx%UB0^!8Ar
z&1Z>%4C(Rvk@x6g^Nhms!CIl{_#W*afrb;7&Y%|81F0jP%H&V5V-CMd7qRG6$7eI%
zUN#vcfjzaR!48k_vU#D{ZZmvH$MMh9mJ{F7>x^f0osRRK4A&miO>#1|hwZ-l6`)n^
z!^H&MqvgL*0FRu<zt(jiU09in&A`_eZosXPi6zU|+VE4O>c?UYrs1g$T!in4q((Y_
z^x6GD?o4=vZu;~#;kD?GI2)AsZz`(0lp2>IgJF}Y5+LDZ@g$40j_=DQ@+6Zr3F;eZ
zJQ;BX%G#&@uesE63vF(u+@ei=Um4Q4EZ8^|R<e9x^aa1AsY^P#a+BH8$efCX&EKh<
zj}_Db#N>3DXJKgO>}5e_iNEIv{7kpQUKJpoeT)t!ufL~=D_)$hFv$LmoG98~@+5Sw
zDc_^6OzkO0V!O)!<qXqsIby+CNp1zony8=nCZCT)X6wTF;ZDi^OF+bq&y)S&)4+_g
zanCxM>|z=bdKL;>yLv&G_~0K!!<<rNQAY#sopFxp7}&-er`>NI+(d`9JBj##bxv=P
zWc8lKVu!cKg30@|%YX3#ECOwKQ=RE*b1picpmC;O6+Jx(KGWrSLkGj?qHz^r98bg#
z`38Vu@?&V7GDR?yZ@^t{5iu**gPFX+#Q9#>+fC*ZMHD%Ltab_7XkWI-IZLc0pAl6C
zCRAg@UAbrxU0D|alQ2LS5mRZt!9cM4^)0s|jfoHF!4H6tF*i<tA_xzrJp>cU^hcXS
zGb?F#yiXh=@V|$9J%Sk%$y+AscZ9F0SzwNtpTzuht%4z=FepYxl53p(o0M?yF$l}S
zYR4}kRn+BI0XkjVWw9!LhYHtsI0d%KiSQw`Y(Y2j@vy@PqtNy}j?~}nXB=((S=pFd
z*g4*^U(&nJ*1y@vBnr)*E5LgoQ?Pcw4o;;#3zIXEv@{wSeX}u~02eYaj_qgIn?p;W
z=QzJji&(c1J4j3gOJD%fR^QgPe4COi41_RxbV4lQ+CFdxWY>g$tv7u;_x`oM-X*l3
zgykgy|6y}?EP8pE7yT?cw7AXPHZJ$}ckq{c4*8G@;USYxIEHCmqC#LwsatGM4gKP;
z84fJ?M6gB4|Cq#15+WGpuYjIx_AS3zRd{Go8}Xeh*Fk+K1!56uxifi2m5<mVj6tLS
za&*pNWv5$TOnSUHZH`X1IH<;h^uyrDjU>4?0p!`n?I7jL|IK1Ru&Q>pxLxx2YJWNL
zbA<t&E|x{06V6Qi(ZW;<8YDuZ$Y}D}Wg;DaX4eTk!eL2`81sEYm)aA9OzC$g_ws5@
z0v^EVBm4tuVIx?n^!eBk+Kb~}qx}Z-GYl9l!z1w_h*ee`s@jCw;<+O2#O8Xm95gs*
z=*GsKf6Mc0OGM#Q87ZS?|C=ADWrak)>xkw&Yfa0zx41hgU_Bw8k$?4s4!szFvA4Mq
zO7_^aJsx&UWB(6hZy6M4+iVL5LV^XiK#<_>&frdP3vR*PeXtN5hTy^7gS)#2cX#(e
z2mL0`K6{^2U)6b^^B1P3=C1qdUVU}1wOZS-cp!pz08dOWAL-J+IO;d`QDdU_E<U6W
zR;|x}7y?sis&J_2U}`rr^G{3WLPY9~Z29%6kT9{sBp$!ob{WN!L*JD2Jq(CsN|TFH
zH%a#~N`{{QAOvv?r8Op+1cL_^D~*^_M)N(2^~1Il`&y;frM+T)Nssn^ZhvIluD}IV
zK9!s>$|v40WHB7fQQfz|=YDZ-GZQ$f#>#@a0)Q{XSSy!kWbPnk<`+U|JNf<bR2d-M
zebe+wa>S^6c>y|rlXzo)(Xhkv#8THw%zobQ{qBdUCKHN1hEVULpJ6x7qp+UusFYYt
z>p-KOv;5v(*#Yw9b~|!M7YP+Zp{iAPV_+Qi$b@0eN5tdK5Lw^P-Kc(=Sj4g&dY+>w
z*UJV^G#Lmqb;@x<hv=OqsF?Z|6F&sDDuoEr0MKgQbxY>hR3&nCOmC|VSqb!r14hpO
z*3a5MTYz#bfkU-aNkP_6k~lW;qlo+WA}HTBT>j%L=QFCX5UWg<mo^wPZ&pUf(;&uf
z)mvg8{_&JF=j&Zq<)ekG(zD^*Vzp@;fAp62z%xv-ck~(?zM55Z<p-u5%<FfE;!$0b
z9Fcc~mLucALH#H@mt-)|i<0|bYU@5B=Fz4^k&uwK_ej-t%OPP0{O*}vOZdYJ4GvnI
z5HE&@`x(Hchgy(vGC$ozi-YHum5Bp~0Nw-g{*KfK5uRCcX8$rdk;UxOWlai|Ub#Hv
zXzE+PQ~N)aa2SR%(kk!pO;h0uL&1V(`5Aukr<;qD@0Q0iP4-NkE4;%$S%!#4^JU*<
zV$dqVXh<Dpf3NVkUQk|YGp9BPEK3F>+cK<$CMgBR84rwou{7UZ+MUVuCb3$t$Fha$
z`IgGH`eo~G3N!Q`CfF+)t#Ls_6#3-Akp-r$3`@Rl*rcSeMbF)ftxq}zG2O(1I`#Gi
z$<FIP!542+a2b+i_Z6B$?@qPoF(d%)r$2GKy?#bC4-M$?HJR&IiBP>5r^1nI4rmRk
z6BA6}lDQcke>c5q`ZH_HD$S=trcMal#k7Vmvx1)uKlt(Z;q^B?NMM2J!imVyN9t0J
z0m_%#3*?K0)3k#H5kWmC1l+KhPOHFml0=^!E_!J^8HR<Y&S~Be@O9#;7<Ulc!6?&n
zLHpNOZ(t%dB6VczLOMx(r?>vpj78m!`J3@`82kC(v{GPWCK`6>b9j_~Jd9^8917m&
z3BH2ozeN%z7_=8#zb_sis{WY3FB8##cexSy1G=fwU9t+%o?;swZcbtD2Y1s&J;m*+
z=HnWj7OdEaX!uWWhS`898&*irj}VU&AElG%2xvI1i4u9@WBgu@oJm|yYlk>DC<F9m
zi4n1^p#c?5Wdn|gYKigRUbr+LWTiS_2`joY8mdJT^T+6{b07YtYHEP^=DQ<hs!6#H
z{k;h&D)=ezjkn3>D6QQ0pvP6|AT~ckV|SkT%3gTPoIP}W<@6tvzY5a415TO(s+{`s
zXk)hDufuD`5ycH293SC~T;A)XoBbYxk`dB)GzC9+iyx9unN<~j%JD*i7Nsi4_V>XG
zQbAa*Rcgtgcj6yETs_Vd$uVjF;SqFw64!c<vJK>ys@!~s?E0fbpU3;c3HEls3r$fx
z_Zu1V<8C~CmuFoBQFY@$_Gp28>SXcuN?Z91*Z!XrQmhBn1+!KyU&M0*GW#Ge2{#f(
zoJq9uCo8uU!@~ku2!U{IS5T{v$rbLUxQnGg>BfTwrT!m${u#!B(4?erd~S#4NCJR<
zhOOhenD)SUj)xY!_b#bX^(SvOw}S<(dr^|)JLf^;acN+OT*gB-O-a^IVtQ`4a1lf1
z^^Q4kT?A`TK3pyWzCqIjPp329nZP|`khKe}Q10#*O$iuTOY-4Q%%5l01ZZA0nK-Cc
z?T7ldgeBsO$~TmX^viv%+M`S*wgP1!lM-gjrrjCIaDBg9#^Zo{BD<MN*ydNlIr?o#
zR)g~$474NI#xU}X25s?FAOYFi!s785esd5YWbV?*5+02t9;|-y3!mGH%+^o}nd(ua
zTxU#~Q)~xf<-Lnr1j5voJev2;I*H14CX)ADPYv*SKfM%Xr(pgL5Gskb?Ss5n{9~rf
zS@B_zk{hfUERRzglP<kbXb$a;S&{+_Hq1JOin(WI->yg9JvHIp<T01q#=yxvq0#Q#
zoh*w%_iMrYP=3iVJqJ&@^zhPIa4_m}X;?KmB|6fj@gKqQ!>u;arc+^mG1m9otFrFp
zB;+c0IxzS}a^YCd&c}@wuZ#6Xxn~wEFV!lh&XUloa&N*o(3D8V_|4>VAyB+e)Q@;Z
zbSHtjuc9;|%MYH4Sf_5&HCI*#x9A6z+zj-3X@&9M!T5&QA=6_A&E<ts1D#9`-7zpq
zr%=&5#;>v&K0pI9D#;@u*f)lpN0g9o-O$0$G~jU7S>=2qW&dqo@ok1bFOB!v#;KW{
zztK<?y$2iaB>TNcWx{$l1D6PH+zR*VgT$hy*1VP!kAUw^$ISyhullBKRbhsQS{i_)
zWA|!``2^X&h$1RyNNW*q=a@SY(eo%Q#1r#DlrJgQ-XYNMsxHYi6Nbl&!)OX6b;ZDG
zSIR>%wyYKLPPBO=mfn)%+)}NNtGkQceoPLB+X?{z*1_<buAXxb^=`l?q5djD{2ZsB
zYy<uLYsUrd9WU31%s%S3l$|?83QV$p!}Z%;lX*s-^H_&wB1La3ktSaiUz~#nfCQv`
zvL9$#nBfU_Y(AVeh$lAW-yA)RUVYNi3P!?09tVF)N{+)aJu5GMeM9aqt;$1&5k)}7
zP@^@3rR+iO2V=jMar{W+ns{}0Z@8v<I^C*)!}T3C?s3d7evEG)*j}Mei#2V3(YDz(
zTPj*LvkkpvlC{6;`AwIBxvrUr-TgeDqKlgy3<jpM3abOLNBlPQOJbOdajZzMn4gG(
zhMZT{FBn)-?`C*iSAN8DZs&)DkTlAUy-Umi-t_HbVueCu8h;AS=H1HMm+OmjQ$MM&
zHSOA;23`xD%=6g$Jct00PnN#t3w~IUV86Y5k4ShDS%$~Xol`}CO}1mrHwb11di$@v
zKVATpHtT%_U#b@@dERp}t6}Es*;0e(Bp>hGgZ<S%kDm9x0ghm`v)8xEI#8bA%zN0Y
zwPaf6VMF`I+IV}yR`AyP0ohAN$1buTbE$xw-wma2fUS56!J5vcI*6<zz_f#Gyh0Xt
zY~Oqurnoxa1eai>FLFo%d2dSU9{-bfrWIX5#&Ci1rxD8{paWR<$GZ-eVE2BH7d}wq
zoAaF5OK&02;D&VO2Ys`SrkuUpyWEiII3YrEBhc1>`;*@_ICXsLow=T5gZ_Eq^-8rZ
z)-#0n&ISo<O{XJ#soqM;ek_BEYLk1TOYD&n{C?MH3U4(d{T8p;VmRSCD7BrcBfs*A
zCXI%Dua#*__AA52?#9x@jfQXd(Pg#0R5Wp7n=c3qB?97teR;4J4zG8v9@2Cr7DftP
zCELtBqqB0QJp4?mP%9lfc&o*1v4%;qobkr;im{mEeZ0<mcHFesZ0_1u|MuFgCVx}f
zPE&?pC9Lu)wFpzDyqjsjR2FX>^ecQLTbqA5#Uj3uDXk>139ZC2;!CAtktOj9O4iM3
zbp(#QkX-bhi}rK$uJm#TzhlQv$&JBe<rBo@R#{`5le@;YPOFcNhZDb5R9_CaEA$*m
z<oI@d*cx-xnsfXs3o7j(6#6?zlet>=jJtIbm$EGw+SmJ{C_o^zGFxz_J=w<{5mEl~
zt0?7mC9W=qO&*c>&Bj8PxGfvUoXmCzOOE@-n=i7ORJ6dBucj<85!|BPyOXuQKZd)x
z@}ds9AFstRZ8UJ7zl@G!L7H5$edG?Z4YD(I!O4)I2b4cfMzO`Ro~=Y6c-qwXui{pj
z-*m|ZZU&#vZjz2TE(N37fCZb{L!54G1MmAkn@soHw{uz5e2``RR&#SiCEl~i_$B?r
zfJaB#-P6PAxZlSpyeA7$gP!N#CCeGJrFw8j!;PwH&<>9|NT@8AV|_tAnF9)+W9Aw~
zSoZec7W<%nvq7#_Ub??+o0bk2nj#q3!y1NTCPEZ_UbvvMJE4i-8zwIdh#Sc}B*zkK
zV>AIVxP_mag@dvznjo~pVQZoON!L=3t$WVR(yM^ybkIc}wtkwl>?{#?GXs=B)|I?Y
zy*>7;*BjY&2ak|gmVFYe@EPuCYvFAxq#q^+{UWvG*E%aFK3<T5b9R;PYJI5=+U=4i
zlgpe{VQYQ=YM$kMs0h2zZG&3Rmkbky*;oM9Jn{?b)yRimPVPhU^W=%J)AxNU`*j=7
zexAI`xUB}`AiV^;$mS-XI@33K0`6@e`}=$m7p0Mitarzj^d;OImtZj-ysMZ9A<2lv
zO%C@-00R!0-U50b<<|<Hgqd{lJ9Uj43k$zu0;D_cyRfbL+Geg&AWG4F$@hohzzpAY
z&#9@>xJ8)3jv;G+I=vG-R<90MS)pC)*sT|dw%&4Z@?X_h5fL1VLc<lCPTlE3G12i+
zFm5YjbcZe?_cl-=l4AhXWwWc}SI8^y)M~L2G0tLvHuo^fl9`eiwU$3B$F?;=Z&j^m
z9l|m+YgRt=pbJj)1C#wc*G44y8K6|odheT~fi-}7(hIj1l%!7?*ZAx6@nmU(IA-uV
z=^*#O*rVrH#kKl>UV4XIJUD7qZt*9x8R32n{Y?JI=nv0bL8iHSUAL2EsHua2pw_ME
z;;1sl!f)coJe!qDCguF*d#d=4&Z6Z0+zH;dha;(((TP{lltP!!9S&=01dCB^oZ$Q;
zP-@D`>-8gC+_1S^%CIaJYQX?;vruO8S2KiooB-hV8)f^xf|SSzQCn<+ky+c8<{QI`
zs9jO>(_V&wHp-Ndy|-qjQ-s)8^TPmp|M7|Mu|?CR`a!u4v0xGp#CUX%37+aNxj8?M
ziFWXwQHhZf?VPQ|3xO;hubujb6=3vB7-rfTK=OjH2J>Fu5E%yGcbAkGg2NDM)h%5H
znv?gw>)Aw5k}n`I#d&6|rS<7kr6Setm1>{VF<oZIR~s{mLTY^+97n-judp3xAFfNn
zrf*(WjZmLyC75F%O1A03hBvYcQAr;}h8*-Zn8{Sh)W?#kY6U|4W_Ei#SMub*Gs?rZ
zP_9;cjA)_y+Yl@P*8_+1Mf_p!FKw|bE_8q6!tix|z2=FwKCMrD@&oW#Fg%tSd%JU$
z#7&fc&xbd{Z>_f2vyNl#>JXSUlb+yt&9`f@&|H*8i10ZDb{!^k$$A*0Pjd}r<U*4V
zdQtnHWO}?*1`l20keDQwMn3L$ZcefE81=yFONxkL1s#Joc&|UAwAYy<%#guyC0b+r
zxf8*m+KX8+2X54Czj=o<$UxJn;n<{hbHnNf68lq#4CSC16gd}MWK%@#3{7;JB1UDn
zyKW^Cq7Bhx+X_`NLx!noJ`U~{ZXp=P`~o|^_Y1wl(QbB%(ZK{I$-HxMu%r1=^hPR5
zE$(O-Pt3;|qk34X%@tmWxPW2Jyhs^etpblV_J$^t6!(U9_|BHfQ!v*HHg6?;a{>G@
z?4JK9AvYbWCCsGNzyos1Lg0c>E<OFp2QC-YX5%BiE;qdm#BIIey7|NrIgd;vv+OAp
zz1rfoAjrSVr&=(NPJ<cH-)hHsyU=CU8@j+cpb*nJ>&U7X(F$^(ZZ=0qn?Zn{?vSqx
zdO#Ip!*p&q1v5DGt_HK&@Hl+fV{iXAX+)c`KoRA1fVg<?*1LKWU^<{`E;|kt=F<qt
zZ`Ct0=9L{Tv$}2R4^e}IB2B6M)J$NuPZ@>FYkrtAGzPy)ew3DA(5;lrtA|>}(G|9S
zO(JI5rd5QltbYe0tc7aTNmR?<VazZI&#nxoC;aI6LorDoi)bry-ums-y<EUG=cx!V
z_W3l}jkzbHE7<wn4U?(Ld`+V+!&N^eA)EF_(FTSIZKi_WI9W}TJatlDcqjm%gj#&?
zTcXt@n1tAWP_F=}JmX4qv~`6=SMj_}!0T>^N(OBydqg+i9E@zPKNrcwnbq0nTXI0J
zojDjh4u&MBhUV71w+pmO2w2cR{$I)XMR5ogJ3%~e8bgNh@`zCqN{M;;#PbZT)<%l2
zWbPNZvu#T&L?2?$<Q;qi7E(L;*}DNH7<?%e{5Hbjp7SO5ysb#I?u+_M#kX2=dD*cv
zgxpJ9*W!C6xa)5520uekicV_Ds=q+sW{EAD;$Yu+#eZqzGT0j<{0J2Sv(BiOppS<y
z9i+k^k5_C}0J%(!ViXGrigP<9`6KtRA+3ZubK?X6cSE9EaOHu2bq2Mn-TzgX`M*R&
zosLp(V)*#<GEWIN5gn6P&Dc%Z^!^I@jjDQ28ZQJh!)Q#~Fg?lAYQ!0bbJ!-Mwe`m^
zCMlNU(P&UN-xLwwRFMfz^)yjrF`P&vRe)j!*#!J?r1O<eD@t{&PKEVHZ^L`5wpkMx
z+TU<E$&ROjLDfu&A!3S5$a6`f>}#=T!-=`278;@8@>gO#rlEikGwY^*It7y%d@rq%
ztu6jdXbK8^%Kg#Wj%V?cf~vOv_C)`Xp*q<web4k5x_eszN=NKDz}@NMv#LOdgS5$&
zVCIM})cPUyU052ef{Hb^Om^4dn2b@bJ9Z~7M{dk#Rtc&k2&&}{2;5XWz2Ew!=-k6K
zoP}D(Q{!ZX2&zacW>@0G&6=7NrsCUVVh-;G|BsfvzQ_wmD|Q?}o6Luzt#d=q9REmn
z?_~5Hs;!K4f+0xvv(1yM)la_ue^P_<1-~I<{s~r={;}Ilt_T*m;l~=PK$OtS<N4ON
zsF||&BOymVK6tJww4PKAqIRSvOt1C>8@=E%g+!$o)$_Hm_2ByZ_qv04v=ATSHT+&!
z1sP$-k9$zzs40eww$Rp1C!RNM8PwGP>p<4l+?I_*_t*KoNx4(yo7W%VtRPva*ddD{
zW*9zwtH+5dVuhBvxnTM4)bals8PNX)@cj@b4C~rNPIJ1%TtknKs8kCDsi3hKoN)k*
z<m&J~#pF1ZbV+E!5oBvp?f6U&@8|2%?1HQ)6huno@AtA{Wypbqg^9tsmhb5VOGNHg
zCiSH-lr2(U$<|z{gYFU~-_slTm%wN<!&mej&ZLWILPM)h#S)ZYWs(4PYM<1ELm;8{
zP(vC?aOYT39e7*FPY4J@AXYDh{7C{NI~T4Xr277g@|Fee2muz85>r0-N`!x;tY%e0
z<vqm|mVZy&_Ae=SM0W76B<85*WT3fr(LkxAmO@qPmHSaX0qW*w=|W$84lboMI^LpV
ze+xrfC0tjUpb*j&rT@|;MgMPIl9!-b%$5F*KxQLxZx{7E%rO|)HS&G==U$_urR0CH
zSfa%6`^9m;Z^j4C+fc`=GHBc!v=$Td+E)&}je{B*<SwNRmtySZ?yb<0)E6xN`+EuU
zmxL}@=l2RuhG70}df%`boE44{jqXgsy&AO(fc}UCl9I?4nQ*zfZUF~!&EhBOGZ&J8
zyI9yCcEGBR*p<?95T1lP$QpucIL{m)<`?2)1<y`lJFfxOL!M_L&&z*nh4{_&(T4ZY
zqnYv6%_yk(@1zy|!7<OMFcM^`R@8q5GEN$B2BRv1B1VBpSS3Kx;d?KLOIF?FQf~de
z!l{vE%6~jye-B^LG=lUF>K#kOgFZRQ^l{V6XWT?u144;Wo~Fdkze3=$l2$NG!V!4W
z1^j==#(6~&7>H5d$5YdQ^J2&Gh)DzuP!sOdkd!mJ9=}+n(mC>vNPcO<ki(2Byez`n
z11P9L&_-pH4Csed1=GWW$c~2-6jdCInzm!M!3pCzDzrb9+iA2vk_q@Bsm~m;5ozuy
zB>QvL{YNeQ-;_JU3AZ))0abMa`?5WE*t=dlCx%W!1vSCnIMA5RL{N{Msdh3nr1)1S
zb9nX7L0;$yCkV*pUlI@ZG}7CN)*#(wT9yUO3Pyx+sA0|uxT;Bw4N}{Ssb$24prn0d
zsCu8}DJW70uYH#H#-BJ}rD8PcFj<8#o;kQ0>FZZgV(hv}ZnU{f16FFNUrvD%EX1Y6
z`^dtx_mMcuv#C6dw`vJ{O@sCm>%PKb7H8kTKMW%r#TSYc{{29UdL8pNXXSp8Bg-am
z29lg^@avk<#y5taeaUInP<04AL_y9(0_x7Qg?>~jl|C&)^`aH%EF-K17pj@uCp$o1
z^Zl)6fEs~1q3)`RH9Xj=UgHPlRSp7l6wN%wK8og%gyz_=uK>h10k7eA>-EN3I}J}T
z&1^^J9KQg)U3kgiiBrmUhvx}g{SWl{yokxy^g3;7l2q3+*X7tJ2Ars%#0f0D>3;<e
zVItAb;eRf%t}*-lU%Fs^in>Op^C-bGVPv%LN5k#5s_Dl!M-L`%QPfGssJZTBR}PI&
z^x$%k1HXUYWLt-cT2U6{c75n&CcPo5P{7!uphaV^?Z{U#&(hEg?M!4j^t|@Ggt&eG
z>wdCE8@}7qzc3~KSYAkMi2K2R7>+5z-HXW1@zXG}sq1%UJgE5t-Y^$-me-3qQ(<xy
zzA10Dfcr3PDJ|!J&ciTbS!bmF(kOC~fn*Z=prE^%D>;e|Ds0!7tx%kKH_MbhzDZ1-
zgW4@su%`Gjbjv1PREfoGC@jHCCR9o<E%5>TqUcG39w|nbEaHp0#`y;)J=TAV<&Q=?
z!Z2BEt#9vf0P`(_wg_Dm)kM<L*pi80Bg^{bknXM_%nKrpF<}z)aEWM<B}4;uhmG}9
zjJR@mn2f6j)7idTm;AfVQ5L}>FF06Nywxo>ml#a>CuxApj<ozpvY>G=Oqd*d<VS0R
zFr+meIe$ets+U%}4so4d?XzWG^mcdq7h1n~v(LI1ol<dUO}T9#vMkNd2a;!R$WRiL
z6EM!%oi45X=SI4$9r>cjogMa!9IMn)jPnV!@>?~w4JC3hSaLEv)sU|K3qD3@(FUSg
z+7~2oqh_qyOB9vbGSd0+5;&ni^7|si>ED3_6&6!|%dE}y768917!r4c1fvKtCSIkK
zOExBJ<tS0zSKj$iQPF#d+ZT(&3pc@K9;jI8>y&|lUHAp{i0?B2kX$)L#bYcS^XP{R
z<Vo#vGG%zbqR;30UdjmyA<7v082dVe9$Tk|=^1#5H@kWN+|35YFrYlhd#o*`VAhx*
zL!R9Y&Sk`1>=AVVywA-cphWu2yd}a1{|s6Z6?4OaWGg#cRp+xAuAGALe@BsUVeH~S
zd~fK)*ZXAfk06w0t4jqTP3iw1si|N#sdA5eS*|Wt!JM(6pwr^fK@9K(T~MU!vye~}
zU~i{4yEDYGotxZJVdul93Wk5KWC`Ma`j__grB|0DuR}tCiL6$_ev)z;wDWgtW4Rgg
z_doy+6i?=@Ch<de^7wKLMdw3~wQM{i#ew?lZzBCcE!aeku8v%m!B97WPpxT6yU5D*
zQzOTSsshU9lXeA7R<ig-yzawqN{ateS^rOAlf^`aE^)SVsLSJn#=48Fn&2>;zMX@O
zQm(&}1J1Cbi5MGWXCA|WCZo}4TE(*(&&o>l(M2Op@}mNP60U4{cKI!Uy29zi1_5Qt
z&f<=(_2W^xbfE&qvGLm(^0(ebgi9kac|0^wJZa95Fni4CXKICZ<&>||F>K!N^U1E5
zPy7a4zY#xU+l|O6KUSicl<+L#CW}>F!w(3bRMtZK)1>;<L%s<LBLCSo!xbKyhl=#0
zzl6y-jsy&`8S<AgkHLneh3Y7XD}=sD!pZwB-U<h@`T>$$p^5&5nfD8C4)XuInEWjg
z_%@QHEtK0W!k3`PGMNiXl`9dL0BS@W@7}3-oaz(U^8B?YV#Vgl;S~rN29)fp|A_%n
zT-E808#9Gd&gMlBFNB)AN*^t&(1WL+=4+-k+ZCZ{7)@u|=3ky5SU4S;hF8MOx;!5~
z)$C3(cu<Y6y0bq6J5BG;iQYS=y{F5i34A~gr&-5|_&rEZqC_a_b5oT18*ku^wF46(
z&Bz6n3D^;ye0c@tw=i9lm7m`Kfht=LSYsyocN5AL!C;W6Zo172hxug+^df?MQ7$5)
z>M`#Z&4jntDOOXb3(?L+MPHSb8n^Bp@f0U%O#{C?nWb(zT?0*3(7YEzp(pEo87*{p
z`Jc*SXgandg`O<w`?reI><PsVFaKC$d=L{=fV|203np(7p{qLG!#{_`f8m{eOwj#b
z))<4R|KQ0@)VFqnBLI?lNJu#Q27_ZOmh&0vse9E7=jS6NKPajM^*i|PLDcm7kggOw
z8A!MiPXH&9(dp0mDuo)>mh{8OyX{Ery1)LKwk<39A3-#lE`WO+LermjN2HGvlpBiw
z^#Pz|ml%Q}m=J6KA*6isV{!A$tmN~Nm6A1^Ww1K5JBpw#n9z(WLjDJ-_*)iaxKOzm
z^Z><>;$!;HeEo;u+BfGvwC4VwOeEA%aW^uRSo<9j^{=qvDODhis^$E9`S@n4v@T(S
ziZ>s@reAQIRH+Q*%l<tOP++1a24|W7SUMa2P~?n|bBw_XkfcGS9!(gRZBiO0nw3ub
zuI9aw8iGU-_N4s2b>|4aaq7blde}>b6euD1v<~evW?4?U5LmThB#y>LT2Ys&<h?~3
zVJmLoG!L5;xl4Hd6e0cWAl>dZ$QhL&%3ql{p&PhM6m>guDNOedd;lq;OQxZPv|5EZ
zXAcy9j(sdXYcLs?V2!1}M<GyxT3xu@Ph_)+;*^$0-`@Wr;RW)H)sp{jaN#*a_$z2f
zU4Di%X2P>~qSH{rMjfe7Y#Kjs>GSHat^O7NkbR!`<#$ZN?{*^2(r3d0S0q^B7Z}z_
zE@k~*vgbiO#JVWg3>Vv=MMf;=E!VR;zae#4o_O-$ZytA^G`0DctCe~iEi!(pW>yS+
z0$0`jr^Ax4_Z8C8*8%mv!U$oZ#!E6s)ccFVjwL%;<!@Eu>cnXIN@)KIb!QOcz>wmt
zT+W1XgOSue(U`OhH1(ZUyt5JdTQdreRaL3Zy$5LicK`Nsn=6l3Fq9d-UKc4%;^+Z^
z;X1Ji{2Ms>^)Z1t#p?~3=fE*BpO-$g%C39wBP_5hc7!c;WW3V`)Fs0=eJR4(S9pH7
zvD})8uoxZAul0g#4VvtfX@Z$-bsMOLtvlnG%;lPd?=8m#Xt6=Dh^k|SjGyKwt0k_;
z7pt%eCb9z`EniL=q?a|H&Y%)Rqx3-z%caO*5TPuicAZ)K_uKPjG332Jc|P9mQhW{*
z?i)%+lPyAwdORVvo{Ga>cb~-D?wQ$bS6c&c$I@j^`CM`~a|fn%Dg>qA(FoC5Yq@(H
z;F(v}1X?T+mut-Lm}uwuuFTp*0QL3>{0m%WPbOZEH+YNfZONnf_R!=<;sEz>eJHX1
zFi?>=6XAXC_p_jlPry8#G!T9YPsop+({6<)w(0fGFE7c!lX2@G-8Lbt&*ODL1QUOB
z@CRb?o?z6Rv2?&>e^jc)VKq*z2~@j!tUAu7_mxd|-oTwxUclSwYnv3wBUHWLuwMg?
zxxC5*W)g5(#cL-fLgpfqT^`TR<ms#Vp}ve#S$aM1uW#A~ie<O&Q~a#=nI2|SP&{ob
z6x!ZD>1@V=P7lCir<R%#dozj4Ywp)Hj7v3{xM!=figs%XHSVWF%jGyw6U%o2*^DWZ
zwrwp~gv2RlS`A_POYLG>DKqt)J|$8~q0F}%s{-DKA@uVF;jiaEeP=TKM#yp4=LYKR
zWHQfZ8D-~NSG^Bk%f8r)K~;jRezx<VnF>oRtN9{QA|9{EIbt4ZW(T3k^|BC~0<B9n
zZC|+l8}ep1Q5<;!T?ry>FdWJFGNZO4ho9}c(cQyxskN;nR3siNZBAD{$?MMqb8X=d
zu4GGfnHHD9NH64Go}`lz$SdOC+KF9vZv8xR6$mj`pTnIoSNS*%%C4&+`~tVn)HTaC
zlRpj~*h>y#S=BkR*p=DaXYDsF>mldr6a2*O<D;b;?S;p+D{%-gFXf4)0|uhM;0H*{
z6|$3C_mHCsACpZz2ku_GrL89DeCx%vSS?3=WG!BoHnh-fYe;PsEEUt4&xr8rk3jEc
zZm*eUyi8g;mF!53Joq|pc5iBJANsTOL8xAVv$R{9=i=Y`H*<lkYNM(q33n*8A|&1M
zeUBdm?PJ-XU`?)B=?}*Lw$&-}Ok)sl3I<A&E2c`1;DZ=LP?j>~j&LM*hvDN(k=s-9
zf#18|GgGTUL}zX!2m!iiW<|t(k}2vnv%zpTIJwC5%9_V=flD(BHRo@Z+D)-e*KmY1
z&5q6|ijj$SNsJxlYOSV0Zl?=l)Oq3cwrhi^IPKOyozFPzrs7i?EM$)7eh;dV0tI}3
z5qS+4=a_e;HAqOEzXV$LE=*hYmyRP>-~im*&=QCM?$K$0zq27IZBrSlySLbwQ0--{
zgRUy$+acoB*07u*mO5qlwm+`y>s*A^z<nJ*ZE>4AeJ~hvzv(n_q0C|ZFp}mjUit}o
z84BPF7rwL8JB&o!{&KXsp5e`^PQ1>}?YCuoP3d;Ru@P3vBJkQhLTWt#&6b@AX|LJN
z2SP8;Iy1GjuiB_8NlfX8esR?4BHU{ZjL+k*FF#)H2e$*nUwYQsyr<?n9`e<sMnBoN
zr)xK{0$dByT+OVs%Kr=xuRu}cNVENK{&jF`;kwQYd{FYva6p+JgB@?5EuN1zh<Q1j
zfZ=E&(%%bLWq)C0t#?I+w6t4OJJLOW8};G~H}Fb?{`k;0y1WgyCv>3n_k?Y@1?CN3
zgBe`6s(7nxOU3nB<y5S7bJYVMTr3A}C&kB>0ddT#{jq07q~qU#?uH~s%aP`x>?+x;
zOHoAq4bg;h&um9ro9Ex563XFq>Sp%>KmF=(qLyX0+E3O9GlH-UX?hatt*zmhJs^1G
zG!AkvwMi*zbUlIgaKYCWuUgK5iH|D@2lEYtx%#JZw{@11E?%#6FXYXZn3K;HSkD8-
zI4&&XYEwmPCnf~g>&L#gaso%ItjS3>l-vWVX<9*g%jm0+MPm+{9-$9~Q!_^DPg2(q
z=hA~^G>r){dz1Nb6$^Y<f`I!kE~{$oEb545`}c`rODa9Li+3Q=&vW+rnG&$+n2yR4
zWeSJFWs=PS?k5+ld}^LQQ*JC2$|Oxb^oyc6K+b}I6}wauNKd#^DL^=R`tzH<==^fw
zh^n2G>D?>m%arKs_md3zS6XkPit)%uT*JS4+FR!tKt9lo!vFOF#B;_@9vx2Cjcrz_
zT5RXvyFsW^i52S598{o4U=DXesi;TC$({V3lC35`3>^f~OLEZBjKE}ISTk<+vv~Ac
zlxUy@(g}2ReMd-7KbcW3M5frZQ4T@9huQ$Jdkk1C<KBiB<Z+$yDMcifSx&ZUG1P?B
z+pqo^sIk=8<+7Tp^;CO{N^zj~bOxAd*7MFNa<uP0Uv7~i{F1O-AIgv>=fJY-Bo}mQ
zYufb14h=(aVl~?tTs{vqi#-zZ5H|_@Yn&&%Dv>3hx?`g1>b;aJ#oc@iGMHFjzina|
zP;hnC77)u~BEMMF5t0#ldbz761SI>|{fQG_ha~xB*#n>J|Ky}SxxYX@6@${#a2m5*
z8GZ0}tb2w(1Z+nMvuEf&6DuyfSoL;7zf5qsL<bFn&pnfkVx%f=@vFcK%wy0RkYpFp
zsP)o*2))P};o4^E*V!k|`1Yj+cvC*Nwdi)TZ%l;RSG?WS1`i(q*;9l7$WhjBz};2A
zq*x8~x7?uDU3UaNPN}B@OmLxyI70xd>3iBTuQn-U5VN@;W4SpaDDL-g#2V%_#E|i4
zQZU+=a=9vw7XHN;tMnjy88kFyZ@D}8X_1|26X(mJUPGmP8q{l+=Qpvj4m%MbnXW2t
z#m`_rO+VSRKa(F}BaHqo)0<co{+kHFnn}sK><01ciz*HSk<rI0jj6(C>szJS$+VhF
zy2MOT*9mOUD#@J^C?b!AB^I7fAx3<pGADHY>3jTWFpRXyx-zsY+Wb>(&GFCvK>s{=
z>RUEp3)C7dTeoK!!Lpc?pTzSB+V!|H9;UlMD{)eyMI0ty<2<+7H!f%L0;?)h-10WL
ztbM{B;w6rX=cY73sW8$R!5xjWNNj%_G6C*8H?y=J1mW;#&W-6SjHWbXW%#@wthNnZ
z>0&br^%c2BO$59xTj}@Yog1~EEJ3L#_M_3pM0wmG6a@ZEWXw<;;9---B9wMm=**t+
zn_zM4b;*ayTBo*hEN9lr)0NZTKHd$fI5291OHr=%q0<4ZMEm7oP;nqU&)D4G3G0j&
z+){nlee`r7nt&wKha!?)1(e93l{naT5{rCj(0=1;HOGMO^AnxzuU8-$9Lra`=a~U=
zV)*FSL*{DTrRJMYMT!*}E<HCSGUBtV7n9KwK4?!dbIzXaE|7e@$$Lj*@|a}y^=wr|
zBBIMC)Fm?>_sYnvquI+E5$(31h@?DIoeWY3Q8Jb^YIi^WTA>@8BmH=~xxu5kz?b#N
zkK*Jy{miyRn_9nx>{djl-5st4Iz$Cx23FNu)l#3(%^;4p+EcUqi;w6dP@U%y60C-c
zmEtR3B{!*d*+Q+&x^J_!?SpJ=Hi)#fcligG<B#zd!pEf#=1nYZE#3x$RG`NTHml6j
zJ|iSS(&2p${hYF2*QYOSn6d)jGSdM~BsCt3ePe{A-pI_H^8-@XhAV#F!uDQK9cWxc
zK)>5H#sV}dRd;k@j<G0nDr&&FU)y(mZQ)uU#dlHrp{X4$mEn~nD41mWFJa_ByJuS`
zvhxTMGAjbO<}qCfmjPLvS{vhct~Tlt`_U8+y*rIWJoZeVbR?oX(r3t{E~E}tw5pOV
zNM5gXhh<w<FJr&#6!bJ>rL(fwS^KfLZ2WoH9UUlAeM%56^=JrKZ;Q;|rz_G~rgIa-
zNXHjP@$s_45#UWtvKo0EOkMs=4-qE!Z_-U}?WYVHQ7^s@$A7v*eT!ESz<`jiL_$yn
z>8qQ`@?<d-=X=bZ_7o`2F(Rx`a@`0$xD8+&Q|!76GxOPc9B)tH&m1{DNgHt<^+xrU
zO|#<^vME0O1)6D;1-=5j4lD?}Fp!3;j`6(qR2<bVm0bH~zgSY{zE!{Q@{p6@zJfNT
zcHmn_LU;zcq`lbKmj2rdpk1g;3rZud-eti(MN(e7`OJ<<J@W0eXe%FBrVJl?mLJzN
z0AeTP^5*q}X_3xiu-;t~6}kcL=4h*qBuK3~6==Jj5pE%lQbM_6mCA)O9P$O5M2l6h
z(FAGS4u7r#YYJ_>p>~pFvH6QU-^`!A=_yIZa&!?tQIVh|`tt0~uv5gsgNquBPOX|~
z0Iq#1Hr7QVfx%G66-w8msWvFFfq@*4FKUKK>l=tj)~IBqJ~=5)hjyfmaWj<kul2i<
zI|c%|`-Q;m`s?F%Y?4Xq=7TjEl-ja#*D3bHN1Q5si1p>KBi3i+0Ovx5O`266-B;AL
zhP?ryM|Fw@t62iCpu0M+i-7e@eg3zU9fGglh**IZ`uhs0b7iKyT<X_zky_Wiaf&#*
zE0%Ga2W@vRAqS%kQ%Mf0&ypwsXqd2gR~g*d#``zJdbJMYg3bBnY~KZH6lcra`2bd;
z17oBaJ8iaI;NEsJzs)u`vkO6?SI(je{=3{$=DR}$zqRV9+p8BsXnE4?-x<{km(1tJ
z65}-fAYY9pzo!ypWUvoz=ennlCnjKLAO&}NWzZ_fki$|ROS<LRj9kJ}mArfc<PbQT
zps4I_l3yE)tmjJgQ!U4IM@EO8nDDjufb)y}v|D2{mZ}9}fnLXMUS=!OR{M7^UDZ(r
zo2+QOvcbZ(<POsm>836zug{Z6&E6@QLp#40OX*G4(*Z)CMvNA#&7$ZmGTl>LtVfuM
zE3u@fKdiZK1RKn3o4)9cRm<aW_!I-64kgBq7ZI|&#N<-9kvF5;0uDd-es>wzq?!}}
zKhsgm-L>I5?^m7*cznW?cOcYztnoS-bmDcm;2&tAS$Pej>n0XYsbr2`%J!60#DrVG
z@GnKZ+D07qEC#+owrWOnh?ya%eW^;A_;|^ONHWEh3sBmR@RC}(Wm=W-);Kqcn%Jdq
zT&UG?E}7@as90@r!o&MIQ9sXpxyG9c=9;dQCqDwBhEzjbBIm!XaM=o!?Een&u8n`>
z8*W)^e6i|?$ZzMilJq@lCK>tB?@-?UAzza2ul;EuUt)A>cg&tQEpN}*%hNvlC#6CW
zYhEU?@V_JH>_OVhtjOw%rea+-AWUi6wifODh$p@o0R^xfsj{+_*3EfN1)wQu+tWPD
z5qsAjAVwjl=Y5TFdp)#2`Rg)nx6wGsE(Rgd%zCyN#nlA<gMUyBwMKWfl_sWql2%VU
z_q2g;a9=5c0u==hXk+FOdR3PH<<u_zw$5fX@wg95luWaCfEct8bNd}-?0DY36GNKO
zQgN7A47#4l1b{kmF}WQvVMhjyk_!=u&yg#Ob=K}fp!CZ1<GHdzMW2U}>t~Xuc+`vF
zs(&JcC}6G4YvPZVb4~|5F_1#`;-ey5M{<=AYFZ&=YQ7yTVYNIb&p@;@RC@k0aJQ;z
z-2SDVf!)dc@pk70UZRKvLu})1z?(Fx*LD|9AFH)*OG@3#;QTo;HHBXp%k|`&3zO9Y
z+_t$5?hnb-V<&^&QHE&5(DSD!X2>Y?X^q1j10Xv$5kQE+m46M<b<0b`<gs1bJou$S
zzpYLusz=V_q&WS=uaHa68_N_4_h4UN#}-X4?fPAR%(Vy3TXX<**o}nui;%%+%L4r2
zchu8`<R3CP(C<Gb^_R6Wyg2L5c)Nf`{mAES>iACmy|0?I3mPGXLvQOSDiM$C#oaL;
z9oc|_#c6FHY0~2*)}+X(PH**<Z0Ik@L?|7>EPXk^8fTI|VoMMORJbR8u-O3pIB0H*
zRNBvzx;*e{f;7)bQjr+$dS1OsEoKO0L!<ImD)PF~&A$Yr`Ak_4pK_urWc1;^kp)8&
z{20+#Qax5Ya!|D8yzHZj#I}cm_cXip;e{Ot73^e*-7hU@a<Aw)c}hQct~|MkjkA?*
zr1T#0lZ-xU{)s<6g2M7SbpEZuiB|1*HG*08w7iWpVyOhhDVKk`ddgdka1{{5Va#IS
z3atk5)tYpX8*LuX*cPuC*jcHfK$pVJXzm*_eIi2^*NLX(5<~lOXZH8}g-R3rG#=@;
z2h_Z?w#UippsSA-dMT#}H~1{Qj6?k+wNP1rS(*E57f0yby;gf@(zk7R-5EglB>#dC
zJfdv%>2gb|nS!5|$H_Z5YBcbC`5wR;5pks7D6Ec@yni^>*#d23T%8DzLXiIhEOBKX
zfrXr!rvvqf2xtxy{@4`9m3-W-eUmCg^cMIk@HCit;OBSEzBDjm@z+Np;0fXB>D6wW
zc|#WdL#P3LFORqP-bvbx0>Jfyo@XDWGQ{4#BlT;AXS8HA0mkkwz+yXHl&+?Y?Qn&5
zuSNKn0J`Hr4X(0viW`Cgx%&cy$>zIh=C+LY-z+0)!2%BcUh)%8G?{K?*^;`7B!DGR
zgS)_nOawDtuhY*>2>Psc1gCe+oUGr3txE?tXPWZJ*M@y<{UY(PF3GwhovT%9PUtqm
z98~D+vYyFhpKI58r<V=qP1PXJ=i*mK<%2&9j~~H&NvvaZJ$64==EPTkRA;*zEKC54
z;-PStiq@|XX$wUDZcNT@B+BxXAF_=C_*QJb_Z9sGDgTdv-P%OcQDnH$3~Kn^!(jS{
zDh6C;MZcS^36-2o{`6XF0)W>Xd~`)c^)?-&QD!EKEyB?ch#S!9Gr9rge|2LU8(SrR
zUT9wdTQ1X!EzdoQ>jY%oFW9X4;Td+HFeY$)wjaODZW_B7GJ1a_-4cr;J5o&e{dr(F
zYMC<|wBL6(XbcaU>M#6iCQ*<_aPZ;cdE$i!Nds;m^nR|9iyJ{O_PcHSvS`A%3~Ap`
z+@P>OErhp-KI(XPgS@Vte`p}l8ZA6O2b6%gX0(ifo)*?$4P}o&$A8$ezh&m1A<!nm
z^x1>cZjAP*qOHRJG;s51)dS~tx~mJTp_MCeF~_sU^7@`V7uCfu1c{J%xuHLMZ6WSG
zYD)bn;EN!Ye!bnAuwL^`PT3j^HtisfKi2;0qWz?y+gTcyV@W(QPh~Xjn5Rx6u!rKy
z-V5Kr0!AR^bjdcf+;@Ts`iD-Vva7JrU3U_bQeVeDbguy{ElHS#8k`PckAxZ<!?HPu
z63w9vMQScs+dz_><$C*li>~*73+<^{4Lt=-?J`<GJ-6+eTt)jWmB2+vh-Kffx)#yH
zZO02Wqd`o1CZz@b-(rOWmK%6YkmB&rDE)G1o>4eFyfN>lCi){^zvF8B6@8aMr#<$p
z@wh#dc@LVeyRJ}|pr5t84*OJ5NGkSTrNzzGa=HFX3iqqtLyuVW)HSymcJ7=BRMYi7
zK#I#Yo1`2V4N9<3c0DE<{v~h}vw4CzI;cBb>>l<A8`ONVfX*|Cevb=Ks|r!DrD90p
zDe`Qc-?jn8dNP{NDAb5gH{C8nB-b-$5{dYw;TI8aDr7Z=99c;Opk|l1gsyl6ySxv;
z`27!G&xJnnx+|Hxl<w`VAa>Pk6OcO`AWY`6dvsR{cY`fYw>r7BYZ7wb@(dTobF>RR
zzn-+gXHm+ibL-o0rE*_U?WgsO{W&{1vq5EOG5Klu1{+-|mMoO!JB%O(B?1{4**(ky
zo;bG1wV2ZaPYa-?rX|jKjJI{@@Y%0J)wQ|w(QVy({Z9*);%KY)gBp+e&9Rz~LOR`D
z;=YQ^!P_J;diLMFkEad>_c+V7YOW8}yr*_cp&aAgQDXwJ>}xYEwaZt|M`igss!eV#
zQKbIXKfPQ?o;V31D$*{DYxJF$sVlIXpEt=bC$2yb`7U5$)p|c`Mw>S*v7dz^@~|II
z<>aD-2P$ord0SJ}Xcc=vweozQDV0-1Q&vJX6kPOjo`G&J4mALuk7z-1hRHlM2I+Lf
z+A5Hv{5-98&uqgf8=RdoJgYvMyqTtvDQmb-`|_SfLCg$$juHYgf`rIkHZGMDMTcSp
zw6-Oa<noEF_sZ>d!^mjKaZefZ0xnNMh%RrHv`YFo^dP^yy29>jb0%6i`rNZ|&z(7s
z8dM_zEAD$SnLzI8esbH8m0Y1`ear@w47R6;w^1YzC+kXcv{!I;5r~T+<aVYN-qf<5
z%41-nM)EE5)Bwp-b~U12m4}hjpSOua4FQ)NqPyEo*n~-b+bZ_*7t;bhbPRdJum}>S
z_4bP%`rc0-VYh$f?@0jIm0Yp6Nv4k{>%f&&=Q|<-N|%|Um^01_-vsYPS%U-LV|U+m
zfh(I^eDmP+54!yyVTmNO6wlYrp8f8LY3D2K4Y=R-$8Yw8P&)ZO)P$^%_+5}AW(wVp
za(ArB|6)<d;q|@0kP@8Sq{Q7e?;<^c0Vl3|1bWW{))R}Z27ij2z3i{i`;oksjyL)}
zH`tp^MX|y$nZwPI9B0+jx$FT)Yz1S=&R;~{n(!7pIjKFf6n}G2qM`RS9y3NXW3-+@
zZ(Kn?u<23Ipz&YhL~SXN+H_7G=Imw9&0p5c8+6`J^esEX3qez$czNDCwR48&e|o?7
z0RY5vw$H4tB&xPQS*DgD#=hN<Av@_rZ$v=g=plwo&YKkS12+rRSiYk9T}-)gW0y))
zJ=MmX+F^dhoK1LVx#0P{-_lrrLeGN1V=d=&FlRi1zPd~uRmR^vr*<a5{IxGvaoqb<
zEs+l7xx3=#K3=OfNA<Dh=u(a@(X2{?AGUENFucvb;K=t@HHvQbi^r@N5baW179!#v
z<uaN(W&Rp7d$FYDBy7T-x_}RB`~6Pue6VMKAy`aV(CnM9VjsG{*wmg;+se=VJZtPJ
zYxDU#u6NNt<(x5%;lEJ^1QTG8r=54)w(#AwT?Z3?QPM}9CdpI_Lc_N>Fd9^5J&|tB
z^Ab}utp~Cm#$l^gsSpYv1*d;Tfm{P;bK1psA#)x|GnD-lQ7VFBi@`q?i@<e7A(9^i
zX$H(n)ADM5YqVtB4o)a3AzAcWai}&<Co8a?xp<ZG(Ok?F#}P3&8ZC~iX)&F3Q|MSi
zCv}Ze=%L)oeq(L!#ucm`AGWpbPp1(GnMW2{+#?>l*Zr2-w$sncST1xepX+Z4V3V+5
z1z5N55}5sDB;pd8bT$PaE){!p%seGhBqKj@_qW|}`{`-jk*q&~yxk^ae^lIk*3YS8
z{vcOnwEuxC{wz^d(C<w@4Qge_?agaZ1JZ~&g03opLq*g&5x2Hr{laA!<LKE)O<}W;
zew&Ed=~bK+!CGl%ilFjY{>QYhzYE3CVD0wox}eRQY6J&^w9Cd!4*n>CQsN#=D^sJd
znTZr(k_k^fvqb0BXo~omJ6b;1jgR0taGP^n<YZUp3c%^Ec>0W^j*rr4Iqdf)wLyE{
zFNsgE>A}Ki7E>>mjHgWc3bt!0RCni!7pH0htruSQ6JgG${fzf`>y}RIJ-%GL1G7A-
zEyUjU7Detd^#-l^tMVUn^3!x0vsc(@M%6uC)+62S!sZKZt`45p54IHI&kK}jd%u<Q
z!Ci+J<q>SRoS@+G&)sXQWrHCp&74h>IQoENQL3E)BgshmF4bI5aci^jH1cCK>cjY7
zUiWZBf)by7cbFBN<n^W>J@(Ny>YOQ>2a{=$4oiorE!dKDbA?acX)7R@IwCYl7e$ex
zvkyvWH}8~C-z6Ia4sI$s{@kIFfqY9z$pJQlwT?bTo8?JMqbv!?N0;1$Z1Pj>vF#q`
zv>#*V?H5KOsVNKY`jG$nNw|y3L8{c2RqGG_;+zjiz0n>VOSA(2LlkI~M28lsIY#E2
z-R7&G)~->x??8{MdgGo|-uo@<`}KA=kC7O$iHZ7W_JTJ_)xc#=*cjJo^hOheKPkLD
zK8F#Rt|ZTc@T*xOZ;_WTvxOjH9&a9>-`t)o?h9VI8_@jGpm!3k-AB!Qw_Jbj(D52V
z;?l5s!|zW2a<A)gJxR^>ZS57R$Db}x80*D1hGt1(7^aqMzXp@Ll}7wE7@^i(ue-rh
z=M^mXm4kNYD>-g_Sy@IQC+zo`CmiN<X^elH&$uvac;|$vW71|;oE1a`0~vr3kQ$TJ
zOFb)j@BMJ=btB~She}<(GV*MlGv86>kzYx!m?N3}*{RI}y)kY!2pkA71a9pYpH9!t
ziVt1eQHi-b?q;w2&L`sbrz`B;4IWS3xSd@bd!$eu?1XFKR;C#HAX^J(7y2G|$kT3Y
zr|eB_Zd*^L1MWRK`y><Q!_&gXGr-w0>%2*8RG52d=}haXi?ln)fmWB(p+UDb5QOSE
zW-)JU(VTV=qYh0y1h-4sgphOEWDglGu8W2Ko=_BsaCdfLfIa@|GD@>GPmL^(JE1;6
zXo2Duqdr=`B$dh)(*Dr=%=(V9b*D5$Dh>`yadGDtb?QZY@}@wkY|*>&?>|&hwDRHT
z7$vm@)cj+e+RcXpM{e{WUyiIX|7cN5>=gBiUm~8D#`z+c3~S_*NiPiq*9b^(a8StH
z@q-`!FdV$bD_Z#1iNIA*B15aPzeJz?K;a7gQM*Twi`iC6-LZJ`h$#g=h>&-S*w-XO
zr^zbnv46h(q>%#aZNi`NraPvA{2T`8`+;tLo|v24TYH4}Bm4dyg?Q(zQ=hxxPuoyk
z{Vhh|5wju5@0RoC)wTzX^%J+V?s<0vX1~RV)v|__yx)%tP{)HiTg=ITKrBsBtE;^-
zl`Wq5KON8I>+UUghGpUC2PoHPcfOrIFEyDi4eJ?a@2*QUTL1Vw#br*~{M}^mS#)Fi
zQ^T+dr+omJ2URSGG7YsGu<t`Z-(vr#iD_)>Hg#U%J(}?c7_y5a46zkyj}|LUkD}30
zfaY1<Gzl?hZtj!pGRR6fdz%&4_i^F+<>>*mYNyPkSRjlTclVxPttMofVdgg?H6!6&
zK-FWDNccOk4JZlX`|>`CU(M<&FD2(M2im&%XCJ(V!m{@F!24zSa<sI4ZI*_EdYQ3F
z2ezCJ=T(Qvb-|`ppZ&JeGa>^!Cm}t_AR_`ZDSbesUNvQE#-3cXzPD7%r+2wOgA2KM
z?iP-gb~%I&k<A)f#$UWza+PI!3|`#h9t%VGsH8>++QQL0Z9fy!9;j?(WAfwC-5Xvj
zZcXb*zmeI4v*0%+4+5dd3p5*&q#@#O)caVc&lH0&JeSP*845^iGx?4|_5xeWANhqo
z;}rj<P`V)ZL*&lWd<*PK7h2g-XegdX)#;gFEqT5%1!(gPSB!r6zO*<7$07cG9}b!I
z3ya{E4}Z<$^-tZ-$FoP5+B7}WHqrRI=W*{XamJf>*i?P85QSXgf0#_h-62<{tzK_D
zwI{XxY_oQ~+J}o0XIyrD3Trw}tj=mp*<Hx+1Tp~1C1L+%lSm-!kF=81zQxJu-Rylw
ze77MM-Dm*W{r?F2%CNY)W=mWG1PBn^gS)%C1eXvTf(3Vn;O-uvad!yr9wamx+}#=)
zYn<u#yD~HPnLGE_d0Nhov(MgDwN_QF(xvq-QwCU%<RV}Qu_Lge2Wfuk*&h}2XUD#Z
z3w%pwj=In4eJ%F|`9tJ|MQmSzc|DsiA7fe3p;a92ftMSbN#?K5&;4>-oXMerm>Vy?
z<mFk{H^+0J)y)Tokv1-iccN7PY-Di;xV)8mJYUBg4@VN7$++V*#*zdxs$tAK5+~>n
z!?%4K*#^;{rHIpIMW~I7iJ($~><B-d^SX)#Z0T-U*(9wke|;jJ%Qz7Be6<_rZ-2{d
zLG#`7^O1Vk5Si5cc(?mP5COUzB1ETV&9Gv6SM;-cw5D`FPKwBJ9_vUM;jxt;lGd8*
z>N--Q!FLv9itM}Rq}S{-SX33<f{WPG{iEdPntt9Y==Esd=yVLPKonec4%$fIZa1HK
zkI*z)%#$PY7jMDQczNzH7YN~O{wCM$(N;{nI>2jlfAq%P&L&16V;wwWiwSFh)b+tD
zjX@jh$YL9B>*p-?Nl87z;570`8yUPQHpcevN_f!a)k}H*VWRQ#bl)KTY<g6M^WhRL
zfd>}dLsk}2F3Gt_&jLml&3aRsk&sYt>+-5kuz};vw2nBsg=D<y-OED2qLROqMwWKM
z(gA<{6@8>>gkPktQPaXfcRhFDCt*BdDt}D)MCD;)m`d7PDsE4#Ocoh~s5(V$QK=cE
z?THG2)t`)aTK$OJn-tqA>A1MlfNu<SD0e?-h)E~g=Bz_M_x#IdiT~ITa*pIPPS`zP
zg1!ww<RI5Cjr-Te_bz5@1@roj-KbAy?(R3W*`oH9F&P@!f)<5O33Y)bg;xPDj}|){
z;1<4izL&>3MUuEqdwV&~<L1n9D~ZQ#^{VO;Vz@;{IOElxi5I5Va8uqlc6vXE_;#nr
zirotccKIoF;+Nh(ohZz3b;JVm!$yv({kDf-Mk66+kt)?+NVxYFGu;b#Ka*FV$}ZT6
zzV-MF{<16C>fp1`4Ytbi_MA-e3+(z{<m>b%(TeALl*8{k#S_uZlqH`~ps}k0oS&ZP
zs!AZGYcN6KMu%n1zGLfkXKfmt(%`r2J&rM4dyU6HL|eTtL2md)h0ftWSg8r`eENrE
ze=Ydd=5DF2>0^u>3D7|#%@SR%H$b)1ypu=mZ`XUT^R8nf=B9hb+(S_PTA?fXvt`QD
z$S%H=c0~=ZPdl~vEl-FBFljOKy2MCh5n#CfJ402iLGrj+3S2#yO(1Ssj|~XVW<9Tk
zwEZofoVksV3@BeIF;HZPFrBZW^HmDATAw1fbFqq-#X*-8B_i3$@4DkFC@B2uw?ZLb
zVz*%=>8!Te5%m0%t#C!0CGS!qV2f*kvevxoLht*4k`Lo7&xVo(ZV5CtbM4vv`E}cQ
z@H)Ct!7p4c8W(Ce=1y*eX%^`49z3*$B91<Z3eYo@<EI~J8dZ$jV)5*%g#6%Xfci40
zTWY6?HRAQUXN{A%>$yC!y@30oJUkD-k(-LF`*mOTKNG>w&ErM@%W8Wc-`Xv}(2D=G
z=Lc4L%ee&iZ|7`>`JSSaaxR@OwKGl8juy$rxfNYv8#3LTEKGnC3eYSixX?-X`~0{3
zFQAsiZta&Ix{`vln;MvTDVKHqqeYXH)YebAAJMyHGonOmgXVPTg3l8Xi)IxS{KCJ;
z$-y80NySLy^U?Bl@w9erAM!3_-X+X7ebwBZYQdo+&5&S5gYWe8e6GT?Mj%=mKAiK-
z@jViTm74Ppd88X|4_%v!U}`?_?BmDv1?LVnZO_1a0O|UcCCaGTk(g`)@xpT(0>bQ*
z#2i1T_zI<~2oZVz#npa}V6)AjS>it5ePcU~D*|f?x0s&t^MKd`Ci6WAJj<tVOm%)S
z>(|gM`wYH5+#zeB9#41<*+x9wbREjrc-Q*fcN*Kfh#BOx$gNu3tjJPu)b=q-+y(%2
zW1?CmE`PpT#8U8yl97$WBA<=uw$3^I%Xj<NZqP_5B7-#Xnfpl10MHWaFs$KFAqP=E
zYu&wmIAQo1<l{L4$y(XG?KG_)0w1n5aIu5z)R8l>fEp{WW|c3Ph~LHp6C$)y1kou&
z<OfyV$LACE%CC6Jaiho6E+wLWNeo5!iHh0_0Gai_vf*)HQQaeD^%PN+zKdlJ6-MnE
z_f;HxUq_9o;Vmlma=Sm5vO{G2rN*f4Ywlq)Y)@-cu_Wr(4^g7^_ReZXHaUOCMlIKl
zzlnd&f$k0iA(WgxIZ%x8O;_<C-?~>fRL*yQWry8vN$sq`)stjjr`jNQ8w#+|gC4Q?
z-Hz&aMR`OxLW~Eg6GTAibze&CB#ke-4rxb)`D03c-kq&yM4h4^K-C=@6Lgef_#T}^
z%s~~+-)~o9??Gxl-6v^m6GJs$EP%o26i{9OHt4jTWS-Aa88Wks=9rry+&oVznxf6R
z$yeX&yRqda1<U9Y*oaU5@^5=->+_etiBE^t`HS!47@8%!nDqmCbH7>${e0c^N9G*K
z)kP=Wd$m|)Z596dE?$#yLyY5V_Pb}eo06Y16-DRu&*9>+eYj^eDhau!Nyw9sk38+0
zAqBfP%luYgFot<<C-q9670$s8E{lz9U5=L{iQ;Mi#R5t^+0hydGg_JH*hdk@(q3<4
zU)r~4_s<|_g5vLpjPh@Lc;_HKfK*8-Cihtv7|n1k#VNhs1Z599Um~O+)(4S4AVrCh
z<da__3P3$d0!DdpV}0#1BOZ-Vc=<KYwxo7RQ!bWK?V0I3jOOo-)3=xHp(ZJGcm*mZ
zdzYdBZ<h~)A-Q5pXHz6&s<dXO1eKb@{f8C~dA&XiHsO&fS6~nA@PV$|LPluoQgIV~
zop3|l*PI=_+yfjk7OR)-(DGwy`&8cA(C^&R@@hQ}L@@GKzD6RR&)(mNo4|lYo$no2
z9Jj$ZVALg|ywdqaShnn%8FADCe4+*RpYfMOI$@~)DrMd}k^V8h$D-fT&SC!S7D(jW
z^SZ#+4%PgwTTd=wGH7*JUyF0K>=X-l^IcD*Jl3lFoZZ?+2k<*NK^XS2K;b3`;!-<v
z!K}jX*$OHyW%CC&fw=NsklX88E|!i*5{P$=?w^s@RyQ6;K4D@Wh;VE+2oHv15U)qP
zo|(HCoF9TZ9bDPGUSAZ_$zSddK{KNOtk-+zUUc+~AG-jty8AGECE-P`*YUTPoTnw@
zmpET2C|iR{@~=&vmUg!G?tcc|tsc-ePMM+pe0%;INcXQnnc~rXAMD0OFZxV94`J%m
zcVCI$xP2?1es}zdS3GcN1A<7Gfd1B3ZNISMU+qW9S_xCw{t2Ld$mNrd6giS%V7TMH
zI%uAEJ0lGcaDPxLvib6nP>(=P>LjmvBY&*K4L4ow>D-w*<%UNtp)+tJoTmiKEM&&h
z<J`43$V25F4$VF5%lwT3NXnMC!)m*KkY;~F#341C>>OTtc&@C0Edx<19~;F0b8u3u
z`^8{He!%C|wa3*{7Af0ro%oKo{ZBu~lP^>qT*1}Jn3Of`F1PIGTF3enM$r4myRm?W
zChiQ^r-qKBoj*2{XTNPD8kAax7>BsY6WaKu^+AJwu)}&^OoviQT(pN0x=Ytzu4<MW
zji2>!?k;RRfmucdiS6V@dK-WpjgP*~lukx~_l0Vzb-6bvM?VO`$zb-&VzL5zriR6-
zXn1)^syEFBV{v`D(uv!aJmFIn2eF^vd-+P4hn^;+j-ExCl+YntE6ovt9iTQlS<p65
z-Ahe^BA5D9Mlp025kDDSP?B@`mJ|XD54r%fe=gEV;qJj@`D&OOI*2zcBq0y6r_5%8
zLH{YGjEX{0SG16x_1~x_bt}p`u*JL-bvRk76_>Wktlr<MKYw|@S<`3cRICWsVI?Hs
z4}Cya6j{tP<^pje>85;#BEUr$xV6^Z-Mr`6-O}@%Bp|!@EQ0!phRp<iB<pIi6A8c5
zboX1rD>@se=>0#?yzhbHvNaGQ<9W)$N9TL+tL4s_{5b^@MW0)cn&Erzl>Kye*pn%J
zvC*{nvKSc1w>|M5I*lru0|e#x8|&8&-?o)N@v9EbQV~8GuRZ?y>!YtbQdD>7=?%vp
z|72Qz%EKmq{Y^&_r~Z$b%O?l|I&OeKM+qf71G>k`%-FYa0$giZu4`+{fz!h@o+g{|
zz3X4}ZAdd3%%!%z%Wbikhj)su&+glNB(ZZ<-Ko=QV{P43v5Pd-i~rW!%w=6)g|a*A
z(BK@Q#Pl(3cQ%IHsA<gK;*NWfg?Ws>p=8<rJp7o`;qRfi!9wrF+WE)+CEI>1YXrEw
z$7ZNsIei${uL>OXe|(zq2gw=bj=tCg9H)EmS>-rVvYoezwi>?Dm&hMS=;oyCuTqT$
zdG+RU9p>m8?Q26?o|=^UMfA!Rr($aBxX<brE_@_zUtQP$3>PdXQ5Q`wM#LyygNRR+
zi%Kk&ZPuduBIkdj{XZI`quJuN^xKZc$Pp4)ez8hIR-Fi)UjQAI@<w=jRYU`1C{sMp
zW@mbnAuHQPLIIo<RVoX-ljjpC7;wKf&n>z}u0KXGzJE`rKA0#`P3o@3M*jzh#8K`C
z)P7cU!L9P+`21O2)bN4%Hm#8u^@B!;hwfa__ZL%`A7~E>WKiabzF)TC8wO*h^h0XK
z02PJ6I4MH^S8=vX;W{uL?vAh%;Go!(R|#nOpNv9O-(bR|t7E{#MVrVHg!;W9$1Q{7
z(sGM^r|)3)#&$VL%fE<+gue8e)it)>yU(C3D|}rP28~xI!Xe$amF)F#ZCl1GPaT9f
z?mGW<$2OUmbe+gaVkofL_1$<1lB8CbF^yqIs5M1sbDJl|uXE{ieL7PE6Q7Bo3ZB*%
zJl3&(Rd2A<Pwsz@9%PFJ>(kY3x>v6ZJO!_q2I<wz5UFkb1J^hug`%<&d|z`X7TZ!X
zVXz|#J)iitOCX2rNYD_UC`|ktj>rY07enuztKr(>p?XjjMjFQy>5rPLIAd#<w})@M
zJiMUl{;vF#3XlM`8@q7OhF2XUjsNWCD+LpiCWTo&&p#$>5XD5A*5XFs+&g}bAn%o?
zYh*E>+DNqD{W$B9dfK+keprGn*=0X4KNau3)ZsI<2-8ik#r$;jIWy__KE*HSeVa|>
zsffVsl>qU1^Wa_d5@)4-qTAhyF2&2YoGW+DmN<-St#~S<-7pQ>kW%0Ges>#-)+Gg6
zCM97mXS->25rv^Q*q@%Sh54fvZ&DZUQ^Ol4#{&_yGz#xSAv^x7&apchJ%V@=v!Z!*
znV1*~SKgwP(nLhy1*SM6x<B?y351?RNHzcXy&zk}AeoqqXbnj3+a{!8evWn$eJmi6
zOu%KH<NVgqFJd>@?w>QeHGsX;?VCWL^R^vh>>QK9>`Le2YnWu*=+^#pCFcL9dppk2
zbG7BX?NZTJek(xKG2rx~jm>}Gcx~2#X{|zYCRHhQA0TEhd(O9c#|qgROjt;?9D~OA
z;t1tu{=;(<Yfz`*zBVmFerLi4=pAWPuJg7GE0X(x2qnwqvAv!$v1_wzS;E-K$%MMf
zPEebufVnKAsz%&{$5Kz2?Ybhn7v4U{`|u)>8{K|2PZa646Y*`=0&#o@te6OGR)6vW
zn#Q^hZ9hAZ-E|8%F|V@v>{KuBueIWHw`T-Y#`xOt;6*I6Gks03SxL6*ed+R8oM5A;
zgadq8-2;5dPP53NoX$e|^h(qpHgJ892LL*~Wn2<rGJ2y~LtsVLrVmZ2E9s|g>9X^Z
z!I(QTybP~A31{aWZmOHUa=cExx!ifc3w<8O!{(+_<eL?N+}~Qu7Pt$D%c*RW51MST
zaQm3OV+}*7Obw!<J9zr4Dc?5JDUhUx5s27Lg>k@4+9`||=3!RMyCTDEoVr&;n}n%x
z`8jH3+>DpiLOWw9d1|TPxR`PjIOAMJSWDCgVK!`|@*&@iL(_Hl%QF>tsqaYkCN#AF
zCIMeX3d;(<DI<SGJGQ*oU~w3^v8g3IO}&tKhW3T5kL4t{ekALKAO{*S#r%Vuh2ac{
zz)&3C_&lTOu(rg}i2V0}MSuO^k3JK6%_01f*xSS+>DviLnQESg0dIWZny2mfo`S=D
zJ!O12c}vX1AoSqXenjYL@z2;bmXng3AnltCC;!qcQMvs}xo8T+@RMz?VZS^3ArUbl
z@Xvo~5H=8ZWkt5x8szZars$jmcrcVW)Q|n(<2dHXjiw8BP7`tyeP4l#4ld?Dvl}3)
zn4T!WAeOd6o9Sj~xQ~tidYjOaSR=fB0S?eY#LyTj#xO1})_!fDJ8aI-wjy08j0-zw
z`ZBjToG-@6i89x6>Rtlhs>Z+<e!-5L4{0KKkJXb4!7z1%@q>br{+qYoC+6mmRocTG
zUn}sd*eP*Dg!cl=RUm8IAM8bY#%{ARS;s~SM|nvU$8AJySZC8;W_GhIUHKJ8(J{uK
zPTYXG@#@Awiq#TD9W+*J1k#bZSU8ehS3hfb*)*EHB>nBEc<ZG*iw?D~eX;deJ=5~*
zg4r4sMfbVpeQ%sDNbVXUuez?gzIPmA(}8JlXFhOZRO^UySyt=}CZji(0~azkuQ@?(
z$FqaCM>DI?;eD|d5mQRi=04^cP*yb`F39z8%B1BUb&^8tolMyu>l&DHSZt`yoU1B}
zUny+z=VB;EN~IJ}XvZMt8#C4e#E=FaOcJ)5?K3`fF1hRbhxaW+_ff9tCXfsJHG2Rb
zEl><TqM#2LB@g=E$*(k?!Nm$iC0_IMhx63vm>T>MLxbKB+NV;@+I*c~30DQN^Vn-1
z%vlijtW;{$`X|~`+x|1Hexg*;E3hw!dv_W2V?Y?%fy;n<S`J`25}`D-JSV9x9c?8~
z@%oG(o|ewdCuS_~-7<`i#*L!9qjX<v+73drmHrkg9zOIlRIsbLFjG-!3Hd-XT=<pB
zX!*LR$BN89`m+xs-ob;SxPRxDR!lOOeVcMq!gW`=Z5~l6e_fj1Atp8|=`H|W{|^oY
znPh`8C<$TgqNc$f2+NQ+tyXrCp2O#J6S@6a=6fziK55J3&Drwi?NL^(@zM|8EP1F&
zI+8}P{&7BAlyDl~t4X)IHkLx5@b&*8b&?Mgl=bl9u`=1F0h1y_2#1dtq&IV-WiVhr
zd>5lpqiu#VAN8Y^)=M9uc?p33fvFj%gs;)M<z2LLGEnn&vO+;hslv)JE71o;vichj
zCpcKdKI<U;S6}FSG?K+mH$yPSO#vyM&#q?avJIqhU4b+r`JO^aCYlDO(N^95M>^9s
zPkUx5OIbm<NO^{$JC<TsN}pooV1(Pp=xc_H3ZDaLOrn{MzY<xkz{CIh5-T?va!@8*
zC*bFZqmY%XjzLKl8Z@wz?}w_bS{d!q5UU~xN^~x3U!+*<_Vq9yR{0(g^$&86`2mB`
z^x3e(%rV*@zks)D07~KgD{b|kms)OwofnUCExmv!Vb5Cbwd(G0acZnKQBF|x$OnhD
z!O>t!rw0mgM1lEjz@@ww4FEi&tbh(@lFC*pA%Ge3gFsucoB*!t(;@<f=R}*RLYmxS
ztIWA#;UKJST*%cz#bced!hThTq;W_Z<ruzK+HMW5Jf5u#$1Q+@p8oIq4@9*;RGsg*
z$<pNAf2w-@BIyEPC2;Bw%7+tarT8EGTxJ@^gD)f#ewTTrSGmxDnOfwh><{0Z<pbcB
zgLag=oM`&l_spe|`Xm8brqlPhW$mv^h_3Zpog>JEESGF171%4n`-Y`|K%Af2n-2P2
zIV4&;{_h1q4`M<HvOF_yy}!h^IVU@#@w}g0W-8wQt1Pv3BDKZs&}+r_5FpY<rNd(6
z@83*j7=`lb#Gcz|VSOcmIj`NPzq~+hCk?2^IjNglStfVgX9QZJ?dp_lj>tI2FX_BO
z#rUIH6loQL&2Sucb*rX*RrVqiQ_`W9rjumKBrIr+Z9-q*t%|j;)L3TLHBX|-M$n=w
zb<&;!lL=G$qETsa)in}Q$P`>B%aB*lkArO1#UcIhmHSWKUp(WD#VT#uKdMwa@MbmV
zbqQCBiSdXWseOslPHH1hYjF=X6K&MKXG<D(aRTtP3s`LkDAOT_H^=5J$UvIDjmrPp
zL=UZG5bbt8-Cq;7&8BqvOnF(#rlDPaGGJSI`gfTL4wkWt@M?av6g-YxS<76Ri>&JS
zj$=<vXUNu1(OHfiO?vp|9<=N55COOW%g=pOh#RM0u>8~|rk1W$tH2eUs$p~u{%EoN
z&S*DDqDG;)96$8{)Bf`wQ(lpVKW>>H$88UjLKEfM;e^H}gJ_VS-}ouE5?-iNK)X}!
zo>mWQ^alw$7RESBj1}~fm11Z>{8g>ONZ#9Mm#O?B-Gl8*8H|<>V4;c8-ax~<jC|f=
z?RcihvrN|x4r*<;W~us~9*3edGg`29I{(FM|9eXAzg+t8!eQ_rqU9<=+8)$^=-YW8
zwLWU~SrKha(%T_*fG7<*16%cydgh+ygw1aZjV6g|nz1t9llv=r(i6pEdSkv4JA@y@
zMION;iDfI)agg@Jx_OQ5Ve6hgZ&jR4>etFc1^aifXDMHlf5q+jcMW77@`#q;26Li1
z=>e1~74W5e29%!E(Qi3KbnQ_u{;2k3bl_{yU|_tnF5gq5TqQ!@KP{y+=XX5OOUv2(
z;z38g2z}0#n)Z|`9_N3E*$V9Xr$>!E*s6bK;Qp6={_kz=K}^`NjHCYLmpS6e<x{|H
zAB%1RBnpMJyYZ^zo?v|2;1<TxmA~=ox4P;Iq)g`=CVDGu2#FN(=t8L0k)aY4yT{mI
zQL^DAvCdHy0Okl5cd}A#lvgufz6<b)48g5PcHgJ8n)mB}<fvd3y&Ul*v!z7$2Onze
z!V_k$wPkNVS$AA*|N4ePb7E7akQ8)J`{3dy>ja<K5i4ZaF`rfg`-dwD`Z&|{2xmPG
zxQ(=n|NYZckp@ZU#>H0(u0gUG(8F+(P9mv}$F1lIQBVM+C+$Uk0vKuEUE%Qdh4#bp
zyHsm|*HUrHigOzk^Nie;`Ywo=m@G+<8?}EWPKvpE6{kj!-%lUFRAxgy{QC8`uuJWx
zd3vb;EE!~mQF&;5?M=p0Xkg=djq#!9Ymo8;PJc9}66bs|rBpK8s4qj@!}%;h1N5l<
zcZ>g@(gOdmTG7tonOFR8851GjZUIo`7RuWl`Xn=RMR-Z<Ixt7t&LsJ3Dt;Cvb+@@6
zY0%#-f6KjFNviQdexnCL`bPQbE7Uq<N`d<7umW@Lke<}Lnm;2cF}ospaoX`LTVe&X
z1V9U~IH1}d{ob6)!%b?&_r8xB;~%_(-X-LHPmOZ!xRRuSJ?5a%A8Jw=vGq};X_OE<
zNS>oG`CR?~IUxU*$kru?J1P1B04EBbSK>w`gDQM>=8IwZ*LTCH2vQ+A_%)+8QrxnP
zmJH8$e5s`<K6}>FBA&@>^5dyGJ*k|0k`z0oR9zz(Y7Dq(OxrjOlp+(pn^ZagpZt5k
z{EiGsXoXeU6-~X2QzMp(F3iDhiio?5@7eUnLV$oIrR0!x*A?No(WRe_J75v%-iQuk
zEOq_^gA6Bp*s#RIhf09fSJr)h*!{GTLZPRnSfSjw@-eRe<}m#4_faYHWBeM+iN4Y;
zE*iRQv-vp@g~q8jG+Gcd^%Cf;JVov6T4%*(N~pn!sd)TZT;kWWv(^KgRPsfHmA^tX
z+DAA=><9{-|CzMyu1cCWWw&rQA2pQ!q2hg7*$DPcXdLQCA|8Kf7WB_bUvu_(1cypV
zCoGu~*pQ^5;uU?VKn;7ECvk!C(Rn_#>?{CZoT{c@j4jxxrH+LK`#+o;tuR*lHKIUy
zG*a%(v(37Z19iZkwmB57&!zwK8)Jd15EK@XwCXQEj2L3dEBKaKCx|Bn(^xz|QMV^0
zj1r>T_++jl4gVujBGt!ZUalldV}qQbt`WZEl3(kRGB_PJoaD2xaPqgn#EEn^TL1CL
z>wzRTUdCcF;R?c#<7#SE8FAb?KWTO4%LV#<E?oDIS476LBHU(665hP3`_SHx?iD+G
zsqpaNu$Q@Dy>X_Y-EBm5I4Q|N34sgE+3S+7^vf$Eu&pnM8%{gL2FjKF7t{Q2JMTZf
z?9+~c!P`L$j7`25?~m~e8<Fc8DVxWSYm6?Z0w5ucSkdo(a*f0Xh*287Ps7yukOkP4
zqO{L`2Nu4fm6W0u=S;%~Gvkc<sz`^C$Bj*^F-B?jWGbT3)T!!<Dvb>v1FT{bbbEpo
z3+NNB+-Fv>jvuOijPtRCF&uD>nuKDeDnpMbAtRv_wO+h1<(Njh4iw>ML}#uaVwOlt
z7X=U<v~!u=ke1ksx_DI;-yREfa0BCO5;98l{z;7ePtR5&4nv0OrkH=%k@&r%?4+QG
zjBk9dER=FT>=qy<5nB9oG@n9sNy#T~Bb7KJ*m&Gg7SEP2ucn)<^w7a@D*odXDPctu
z|9#X)2#$c_^+V`oHu%?A@lXjj*NKUeKk&W^K-XNsHvee^*&glFC(^|m3Ss=bfyl<5
zqOeo|ADjdX?>1$6&;nPtmhe@iSHW4@CQb#>!Uw2C=Hv<%J@fnV#m`bBPDYxlOyqf&
z1yuXmeg^JV<b0EDgW>T+u2!bLx-3taQEW<^Efz+m0x|zJ&iH@$r8YN|$Yjz-SM>tV
zOsGTpqD58GeN|apx5dPLvl7@6Twp%`1h`KoWg}gX#pu!bBh~O#8hh(_jPl)^$%5L3
zW-97&)J#z@GGqB@S<yZ&IWux_>1EH<4~Kbrd!_vG??q`B+$XSL-ve=a4B>L7?UHSV
zI<y1t@f^|OdGg~2#-gtpb7`16oS`55t4{KN)3+7HrdDmuU1tO2_U3WYE84HK!ihYW
z*2>7<PKy_6{72htxQufzh4Tx_&M(tHIe<ue^GNb8Br;gn4U{fSK}SiXFmG!Q(Z|1B
zs7?32JCGgyt$T1N8{?Mvj}82PZ|DExlYt#VSD>Pqv6@gwnOZ;<^*g+ySS?^;D(45A
z{w66A&s4TDBfw%~Q`cel4E!i1{Y6T5yOfCFNl8x-V*^rJysUTmQbMqgOXL7Kc-*#S
zr3;$CO$d$Y%7loZ!*JmR!j}J>pO{%=)b=jG(zQOD_A0QJ`j=~4SeWz+36+!Kc}hEm
zt-KQccfVE_48cD3o=5*Wus9dF8BXj;G;_q6_426dG-uWQ_m-T0*!_HEFjv5J?R>Ly
zmc{s4+w<%Q)M$p0K+fsba=I=!9xH?)x5D^8xWu3lD)Id`B*uE`eF1dd8-RQ){W!h`
z{a<x0#lv!G$;MJ9V_6%g$dId(v7~8=`j2^9Ij2TDNl8Py6b-Zm*c)Hfm79aUlPY+T
zs2QOIBgX?19sv(c;tdL_GClxEGdlyC$@oJ&V;vcP)F=jqTXj()mCQS63d+Xa2atS{
z61_wlDtuu+cOQ-34)=g2{}383=*PF$RUwxaIr5;DKq3Mh*Hw%Bz;T3&A+qwp-i7)|
z+kB0X-MX@KKOWK^g8aARA;Eu*RG{n6?YY?0pUhiZ(4Ft=yvW1R=uk=-HpSoMcI$0?
zTZ;y_|E&k}-z-Tj3_|{ZO6s;XE8f$9ZzX`A$L5IP_KaB-8-3iDH4f6HRje=>*GrKf
zI@={-o`M9$&kSM3vAFw646f7&R7j-TJUyX`1?2{)d65{$dZM?J;DeAyZ){}KU`GQ_
zI0Py^Jw%|SbJrDMwq7bb-3WO+1_KR@TDL=KY-ciVRn8|C#UBOf;_ZX96b2EZ+8|^7
z5jS;K>j|wyj!#$eHWq()M|2{;vnxpKw&t|^KEtdE?_^9<X=Kl)&aF&^)I(M5q4jb}
zfN~i+lZJI-VEwu)p%XR5crRV_Nfp#_8n}K7;#y<Lgy=^7R?svCg(u{k9*EpnnMGv_
zzoa<~mFpX}I&`lA3}e>EON>>&ZFp}+tWVjiN{*nUwhyy-J!^tGmg_uyJ=vVAbp4o;
zyszyqoat1_WOI$3xh&s)o-S}ouZ*Ct``$RuS@n!y5PHC`tQ~mR`Ontqzldpg9AG%Q
ztam_MVgQfG+tBpb;^&`NXb!Jks%^WYcZHw-fTo^aNhX$GI#-*`3-%hw|Ht>miUeoI
z928)vb%w`He^_t{d5EqcfHPwX_6o2*WzgceASz339+7xBNwtp(xgye6Tt@#ydmN<t
zEh-JJLc83@%L|D4TLTz>GOXdoP0onNy_{)M06uEuiTzeC!Lw{to7Jshz(D~GW)HO=
zm={id1n~E+<fJ|p36rOxv#7e>M{;gt#MaRs%+F=!@D3>me;A@qyA=O2r5h<1bn}de
znY-s#>Sxw{6=%ETI2b4NAmVW)QjrD#8js8=SuNg$MPbWc=kh!EkqXvt+@ABP6uu|@
zayX*u6GWgNPrgd+Tr{$_|DJRu632Dwa~3#;y|inx#^}M`^Ko9C&wGW*z_kvR{ewS|
z_o|`e**+Kcam0HEx6}HFDTUvTLR|}SM82M8P&C$5N6fop*}AvP7V`}F179r4`T4Wq
zdR%MIM04L#ljVM3JDJGWlBv79rY|k$fff&K3|vNGey@^*yw9}E$Gig=L@v3j9ml57
z7DVaAGWTLzp<jC6Rule5e~OO=>!Zs4n=JrJqL;*e^K-8RkTGCLN(t22%jJBBwo?Yv
zZ&I!xJ8n>%HZd4u-uhpLld-Aom%9}x7*e(bV`BfpW#23JaY0y;zR*u(F;;FW0~_&s
z-DyEldJ#&hCQAyuR*}LCB9DXouPee65%(M6X|+Mt#ZodNjx!1|)l9a-)3nEX%@Xg~
zzE2^R)hgaJ_bxq1I)DDb=~GXsH@_H-b7}GJPl&Eo*>|U~350c6o)QLR^F-aHcP3`h
z(6pn@me)3K&z6CtHmf?BF<|qN&4gdHU=IP$yHsL9zxdT(ucKye$8(;k`t4`LZJ8ak
z;kma}y-bbPFdetGn31i(8ET<VAe5tE@4O)nHuOUeJ72h~3)dQdxtId0qj~`lNi2_0
zs~F8OSoJL^Wo?U+YrPBk4KqDapH9KB^ET9KCT6&;$q~p2hF0|n61^;+AiW2GJTCl3
zFo@3LgkF$U!jXYwp3DTLX3NleU;;Q@UO0GUOxGufX&`$KDVqcVyERJe_S0Is>mjSe
zxlReRgotXo$cl?LHfN~D-v)GEg|BzI3~g3>3kq4EX&D6F9BXQ4|E((F8(IIHIltG7
zT4~vX5(R#$+YmJfwOlZi0Uj7#K3}jdEgJsjG}1=73^<u-qN62y#ABW+bFFmiAllIO
z|N68o;C2;!$xn_h)D$b4;U#(>SMPXHt8^DPo%Pc3!2<l?b8vHf{oN;n)$q~}w5^g`
z-Nl#X(d_4G_*+Ddqyw^bed>j@+w+11wG9bo=!X8vNeo&c6}+!UE6v%q=Zl-9YrU<K
ziqtC_>SK6>1>-Ji^mjHS*i!G^OP~QFLzqXp-t^&DElzA=OWC8TmxY441t4R|q<D#M
zYwh~_F;|&-cU>Q`-BJ$oX1APYbuoefk?M<ZqucSy-c+v0=)sd9PBgsEh~js38@tp5
z3@dTx<9hZqv1Ae%CSzrPVDf=P8!%(`Z~7}}J}U(@RIxi9P6w@L|2oCTSgC~x4<nAp
zky!0#h`YQ@kX|iOG6OAWFR4e7k9R?qsQ);P#sIYSLk#1OR-<?~RpoPV^q_LDruHC>
z{$5&{nO6&bc6yq9S4B!c7boE0hQq{v%Kc&^SqW^{3hD-PiXxR73j2Cod`%_rwB9R-
zc%PwNlvIXBhFdhcfrgp8t<k0ru`IYj*VvuvH#0ui{tqpH7h9S1Pg@Zay}82PzcGTC
zeZXo58|zAxtydw<#&4(^c4wi;CRjeTB$%YmMFeF&yb#xj?WDny73(3J?*kKLvV|D7
zy%)8;59i6AeSHjx-OBOjqfo%j$^zFac8C}sqV6A9&%=}<x_fuMdn!CIDc}kn8Tup&
zuzD;!X-ib!rR`W>ZT+iNji&$*bcMEMyi)7lL^!GUvT}nY*}JDZYW(mJ*j+jfgEBhK
z^?BRet5|`Moh?&pc5ic}5wbEcz;WcskEScORqJ?uKYN}uI;wzLuG2pIuW?V@uXG;V
zAi~AXSjZ|U+V&oVY_tRLyQhQd-12xp8~VKc3(P(_tR<RKa~yz9cy|Ct@&p2wUD@3B
z>DiF$i_Ru1pk;J?HupkYF8hMW6^@t$Q_7c+sLjCJyMplFF+YW!F4g=-Z(MED*=ox(
z%+st6#ZFX64qFq$m<VBs936UgMd_ndJHisgGTp);!$;03(%x(E;XT>}F)ocNqRKfw
zxx}L1bNu*hS9Z$CM)^Rd)#x*rRSJ{ol;=KOnwaE*6na0|r*gR<Dy?Q?bGq|9+&<5r
z2oo+g)P)~3pUCIZMQa@X=IF0K%LNk288@2yvo`11dhXJyxJO`u>I8aPIcyIBwGvVh
zLK}Qmz?`7kiip)lXO@v%;uJ-%&A2?_&!7bVPET5}aDIauC#V88BwP~TUD0bpZZ!Uv
zLeF;5h@>OJ3l6Bk0>~;q#S(`(XSsg#k;UsQxCfOht{r9aVa?UB!!7MlB~Y1t?-RXB
z_)eS2A#bnZAAXZg_gz6xlRRVRGOiAF`{(}0vdOj$=&e?G+B}6UcxeVn*weAQz4Wi%
z^233!d0zLSZkDF`J-H7!MrOIhe0Is%{60VRTV8Ei4}bKwTK~!t@vc2x?xq7}*E(EJ
zxjUSK;*4N6jHr<koN;7T+^vAQX^wTnrytuiyC5Hqd$L}>KDHC$9RBW1glvvu#H<HV
zBY#@_U0}X;DN$sIe`JPVlZ83>+a~H_VQt4!rE5l{*#*$c<{bFs5T34C1kBeuRrbm=
z_)||kEXAw(C1MfH`*?g&iV_w&=P+;Uj%;Pu12ou))wRQ7hUPVrK*+oCnUo6$iBq(-
z17<?gVFL8o;o89u{$Q#Os?*^&5D`$0QB8bvMjdoY``g5Lzy>&DLXv7USFAOuB&Vh^
zCqm9xd<pFu<ij8w^qx~-^D)99Yv!WQi(K3(z)<kpB32-R*6P8trK_8RnC&`!&Qe*%
zTI?r;2^3Cr19HL^?v9djFLMYrzmV^?$Nmf_)z5R{oAi%3U1=^OF!KO;z2l;t`f)+2
z7f-sr-<Fe&pj^My210J!j7u-0WO%>l>7Wmz#}`d$c{#o8uw3}YHkC|bOFEiR1`i_D
zCm)?4X~Ny>vBx)`fg$i*5+#a%f2Pke(b{}NcJhdsxtGrN`ke~+9ttF(%<kn44yLgV
zdFS)*rCuxDs~{(vnRdbNe9COV>!rFk@pcH3cm=BN_C#&cpYE^HsDBb%8MOtPULUhB
zoRITL#KJI_m{^?tGF~8ZfedV{Kszm-%T3p8ieVw9B;y2%U~Jhz6|2ygg@`HZs<E~f
ztW075mZFBjw>}Al(T7?>u7F1U`yr_vJ$8a|Ya$!KPl!pf940?kz(XNo*vKMOS+L`_
zDkEkl6$y?96dQK7-q~WTV{Uj3Y?c(T^m-hNI6bM2(>o2Ws8zn%$uBgH+vTpE>b?#*
z8|#un$8K`$FzjiK@6&Ilk0lV9x;<G~6+x7O?RE`ECqFJVrCR4=Z;=u@vrhFt7?WH3
z-GD<92i2$B^6zojpJf`a*PMUz*$FqD#lm1jGf|_F^#iPXt%{gUj`@P;sexApeh5cs
z8rxW~-KF#wrYKm(*hC1KZ1krK@X~2F-mj%LZLKD1{4Qtgj(88|K-vTVrL(G|(Sc9j
zlFw@OVOxm(lOgd{^UYb@&9TF4quf@B%fM$M9t@;tJqIW!;ZF?5&3!Ok-{f$r$U%g0
zCbVS8XBzKob}VIvOT^>W<@=6P7BhPbI%yr$a<R<3Ulx~ru48Ysvr>eovSI@hNw*)Y
ztNK1F!HXPt)+e!JLqNa71He5(P3!>&mm=#>!FBLkev*nuN<Zw&L(XH$V*xhB3EkPd
zPw)yeAwJ#`ZXKv}4xS7AnjjT|MGh|}3N*5?;gJo$&bc&$F(v<L0C8AfU)si5FEu<(
zOxdU67)XKy+p4ovJfvcp{X+yWo#wlU7W(1&`2@^eM-n|pp&vHK0=cUwl?P*mR=)D=
z(dY3U%_}atG}Cw6$i}xz-Tf8tv(`+`Mal?Ra<t+>=O=2LTo(A^8WGo}ch~5B0`5)!
z1TvSB!hnF58;|=FN%5(KgQoyBwUGtT1XSqL`X#pOaCDdLsALVR6ejtN{c6ht_OfwA
z)aQCZ&(mlqQ``C57tYx@AGDNU1(_-vzH~F$WCY)A2Z(ate}RI@pb7k-jm!r=RQT&*
z)jvu^3MH)FX#8rq!v5(+l0R7wvKQ+{`~kVzOYr2IT#jAZNY9KWpj;s0TfLv#HN45d
z-ZA?luetYVx5I6t45yIARE_6u`-~Ls?;P!sWs6D^5E}lq6f$O8Gt)=9Xp1QWA|dDK
zN$Dav2|WTX(`fW>j~E0;kGJHX++95CSvxg#kTY5cdCh*Io0UgqL$)w4LAPx7H8ET@
z5eXzrY{Tn9EgcxPI`SWojZ%KhQ7}t66HQRqZPbsPqw>?--jY)&JysjGf6|K%Z;O}m
z&E`0bW4%4QAe?L==Kj`pDrQ~p$J`JsTI0XorZC5$=^&c=sVDcQmLQnWjd@hhT<bT!
zX{9}%j}7*g9Op$I_B}sny{v9h`0qz`4j#Csl+FRJAJO#~r#c<AZKV!f=SE(5c75%6
zCpyeV^jz5$DBEXarL3RZMq20q2;7#+-5{hzeA!P^w0jYE5>ufgFb;6Fxdqg+W6hu0
z5XUEx8JE01PuO{<Zg(4V<0S5PnD*)48I=2Uo0sl>nLMyRUYDy~<>}fOY^1b!DWsd3
zDT+YE|ND6#-m2(|Y`1&LH#K_jqsh2$JOoax>j8cDdjD@H`45(JJz>?m#W48OdZ%*=
zr*#b1^>hqd4uw;ST3h-NCrmJ*@7^V4tg&bRZ&b{d%bdd(0oN%OmxP&#AAq_;mkoZI
z-|Bal>gLb_W!Ul%@E`WV@A9DB_dRbrq6U}=VGC^=3#Vbx?S^f24*-+ZWx5U9Gqek|
z9y+=BEDExErVQrl_A`TK-@Ge`8STBbFp%Fh8TgY_|HTs_Enc&(lkB3IvhR)pVDZ$v
zN?IrbjQZR2LTY7lO*qDmc<WT!E_`^&-1%_lD<hx>Y(G&mXLi+w4xb~WRT8o{>ZLVb
zD+o5db%})^Y<jya2;t1im;Zt(JUBs%?>5LY?2IL{<8{IL>&79?mYEEAuzx~u@+m!M
z=P6W)rPjC`{b`U)`P=l;Jn?SruDpI6m|7&PvRg^uV^P_=)&7#-_pc>88Aj56x-NFV
zOMdcJ>oIIFS4ZytP?)ofMxL$B)ekwL-&}e0-k2ldvRfZ|@hKY<$^n+6YFhs0ii4~v
zdYR^k_|kfNx)Ac*r2zYON8`u&(|H_z%-CU~e?vdKHZbcw957cJ#mc=UrNC&+t3<h6
zSv(XIIVhLf;d=)UWWeC$zCy_TCacp68?xtLFj4CqE8zd}PIDyloE}hN)E|>(;dJ3L
zIo1cJzrgGPj!V|~)}B4`=Q-OqpEh%W1jfZYetiZx-er7Y%Yo$kb=ti7Hs4^g-IEcB
zVL9I3FF4Au>iwp<@T&V@9{%0jFs&*T0%6}$xnT4`)keFiB#L;pgKVq|amw;P-1TuK
z?jF@#y6Bo4@_6e?5n=G6U&WB$qAM^^Cj~_ZDgdvD$ma}^J=)GY`8oyW95V{%bFayW
zd9fZtX~YgsrDDZ|AkY$0By?A~cyf;r<oE8K+uN=?H>mBcyypg|pmuQBmH%iXH$r_)
zw{LUwqzJO7V$X}c@32srW8NzW23=-yu;RH42>2L+z(g#7P{mK`=o$fj`IJU2f;!88
zX#I(Z!x|S|iEjO<pe-R`*T2<5VEo?K`=}4w;fnsqam(Ee#+@~y6)Pismv6~^mqQ1{
zg=Hj5XDa@c_So>!P!RPYLW*{^*JjbD6)~{7wq4GV&wovM5vnsPB!}6CN1UFId8sJA
z`t<8pM}@gn`(Gpf?$-DldQl~;aDEIumCED~%DU9^+tkSG3O6xG&E|9zXv3rExskmM
zUu?z|I$H)%M(#zw#C;#RU#`WEwYML|EU=Gp{?6eM+FvWzN(KU*k~>ZCvbrF@zs@E~
zvxdL=RUfqQZV%B5fW)pdl#I?}^E+{`YRey?0oyxB@sOc6HRBB91?*Ugq$7bz^1@Ul
zJ14YLlakTwa@@OZ;RHiYa?x*c`LMIi={!EMhVf-8)_1kq__|jC+vo9Y1N<vn^t#zA
zl3X>GCU&#kzb9MpT6YMo%rg($0m^MTVRr3ZfMLipQ`rQUFfV?l(7iY7%~>?{z)6d`
z9AZF0zN;HSv%_DxeUFY#C#5dfzaB2)59+!Y^byGynJ~x`rC#4EXiBD8YQtT<k79#K
z*SA1zgPZwi0fqG$FtG3KDo|#`M5hHz%7UZd#gR1L!wGyTlgu1J3do<iWOqNnXoRY>
z9VhnF<m~k6z4?*OAbK<7)<5$bv0qpf8kBwrHw6!jt`ic(9<B7^DN?lTcbp!Y-OV}d
zy$IZa1wT2wPEG`IX1x2-`(41&SCsi(1!#LP_}JOxITJNSreerru3X9jQ>s~TNrzQQ
zhUQY!nhCknnZlC$qX-%hDL@#5Ob|{9A3cc~r)&y0j8CMfy#8QRc$N8f-6_UzvWX?9
z{WBr~d46LoEUqI|eeI4M>Hf=3@<;S%`NJ&*c(GIg_ykIa!+}xq56Tt!Ccn)YlkQx{
zu(#aBLrBv^pW6xx<ly7dxzC(DIDy7u1dQPc#a4B_vOdkfBDa5GC{5Lqqz!dhr8E1%
znMX)C%rBu*MROHAG~5pjihUepj-yBKlC^pEdIy=OGHBJ3R5#7V<Yu4!F_G}v33xK&
zz`gp(_Razr_I*((kHMfN1c`NOy41ylGrh{J{BNDZ7vrDNrWjg)3XLF$VBO1YmF{m5
z1w^>F`-ac4_kP<N;s!*eMkK$;igc0Tx<GAY{?DVnO7J4^T3{YRE`SZpR`<ZE8~TQ}
zPYs7y+^d$B>j5VnkJCq2kst_b9F-rP^_B=3lSXBC_V;e6i?|dicri6h4u_z^#{mo+
zA~w8<7i(O&-{lVKf}Z697)QwcE#(iA^BR4P_piN2tZ+6%v>2;q{bz5osFD=f8IuLB
zJBtd=1o|7^<%JC;Ug(IzmkXQcYb1{ca-F&1o}*0wInaP_9okBi^g`)7LqT3+R7PA+
z5D-Ik;v(DJMc0Ll1IQ4FC(~$ITsFnNCa1+pKJtwM;2V!45EPD7+?a1pZ-hgV;j96l
z;k4Hl6SOO*V&-#|lo#2M%t<)DK?%(Wngq|!S^+}4^32U-bqxY9r)4tv_XYJBBa9UF
zd8=LLtTsOZagC}v?Dn2V1Kv^3s`Fuu)T5yVO!hSt#TGalI}KoBR2#I!0Xa8%(fvF>
z2yK*+cslLiUeuM%s1S9~4jc_RQ36X2j5eIs^)_K=DV{2#VK6+ob*{Qc4=L!Lr@ivY
zXuv{c@>m!ZU`UQ=udkUmUATFhN;@<0#Tf6Js~@HddJF1B%J+g55#960qocN#mD?3P
z2+1f^*5Bz^2xKGGJ`^X*jq#jr5IyEa67hkYROwnjX?NM`vZn1L(w4$jyD)=Pb3^So
z&Hg9p@k7s}D;d?X&<1{yz)1`JhnFd5w75-9hId)~1u>23qA$h2DgWl2IkO-@OAexS
zWdsn3l8qD|qLW&c^H)ulqP$BdJcYw)xPQn843P?XE61Yj>HFLSZEu&?!DCxpsuV(0
zxoA%&gwVa0TG9dR^Z@jSFKDmiV&2kwi3PFS>{J-!?6ai7>P2+uAGpn?=j7m+%zw|Y
zws}PK{TRe6APa&0PA6<^soF8-KD<Yw!k)u!)~F9#G_o5L$a+r5w|43{f|+-wQmBf_
z_Q(+{G5rufBrOyQ>mSi)!i_Rgjog5{X3l;U8>)_c0Xy$Hn3}!bBh|UyRU#GvK1$3M
zKvkM7Kws?>gpjT6lNnxV-dsl#qwnHB{kdUgIpD^}kn`6^YLl=Yop){;Qj-$S6fJ&3
zA!wBCEYk&g#w@Zr?aC^<z(1mYkhfl1?s5(By<g62dx^LknC6+v?eqTn3rR_Jz=YTF
zcyPxaQ37{g3i}pAWiD(~m1lg2-_W}t`NvIWGRw{~FSMWnHf^3>bo(WUEzT_t^H);w
z_DHTQuW0%o|L*{wojETBkO!CLOC^C4t!iMHP<>#W{{7zO7WJN6&bs~PV;g~;M_(om
zTT_eIwwT#is<y)v%Y_@z`;`uy2sj1kT?!;+W2^P|x!bSe7}0*q2;-_RXU&8ttfd&P
zkwW~i-sL5TH>~1}FZ80~r-#6Kl?ery^%BIylV68icl)My)ULNFuQqbdeEdhiJ_9BQ
zRkJjvAY|nItNQj(-?G7@sX_?~avl0j`E~>+UIVv})5kAL#res~+5!Aa`#&`Pu7?+<
zJ&{kNg$0rS^$WT*4`m(X_LwFPa&Hu6T;!)X5YHrEu$v2d@f~6cQgXg*55<O;(MDjs
z9qF)MDv*eL$MU|fYC(dM+ieDBFyH{*ssv1(Nv<$jAY5t|behZMl>Z0Q?EU4kE+cTt
zOxA{tKE1>3oXSYy3`eY*zcVu=>lHqNzt)q*-%Lmy@KUT%tg|(`x=}v~XVFL^MK<@<
zh52QNqHh^GNbibh%X>GX0m(=xo6m`A7&}WqiCR^#s@pI&u<L+7B^gPEF(ZLohzbdv
z(HfaDJ}8=D1DNw?Qtz=#hX>#rrlue(U{G6R4S#Cs*QMD%C=x^#coY#u$;n$CDgK-)
zf?sKPq2+PD8glBN*Bfz6SWYIr@L1xWt}con$znx1XDfbz=v|wSh1W@ff|KXtL|-+!
zQ>TnzEnN`I^t#)bPk%|Y-x(&W(sOYnlQEU++9*xA3C~S-l{+@};T9pl@qEZPEL;yM
z;IegKF#du8V*yI~_`g+5Qgyhl(t5MaPQ*d(Jd~@qx*IVe>TL7~wqa0fJaN9%p}rAv
zV^;{#god9qQ6uN>ed!nSKDdpq1o|w-ap@v-_jba;Rxl!1k6XEuhjbhVovDD>h&%I^
zlCYTQzTY#u`@$qFdanw^gZ{4k+g5`=ceKgwH+J~1#^my)zdlxb6_>*$%c5;m3BTn~
zaDPzLitmlzH5`xP<Tg4fCa6)Z@G2a9O1b!!6v9EiI?(qLNH8j*WWA?8Y_}{FI&Kqh
zC{Pgv`Os}~&uT_6&_MY(^4Qk9ude*HP%=|d2We`}iuitGU#QwzdEyWcZ>YM=!`gF|
zBF6sk%PzvVtK12}wjsu}SE75+w_IVl8@Hk)r4f2-p$qc6RxW@NG$hYI=lx0y8*m*v
z8jYGW--qgYi$oNB^hbi4A}<$e^O=EXwd>E#tquzxyr-^uw)n7gne%nu(Y>D>+ECrA
z_|5Xp0%Fj7T2!>V@_o_PYTfnbQa=_IojdqX$1yMXJ$cZfA<4br$e2#fQopC^#ov4V
znO@|q7Wjvw?WH7fHo7-bCoPb1t&cj(<??{VJ^$-r`|RUAsU)UXyw&|nzh|pTbUE$C
zclneCWY)Q#sTqxXXxuyASra8>*5OtjLy#fYRGe@AMBk;>Y>trH-rnb(`b_}}rgXot
zcPqpSiEt>$jZ|zs)FIz#m1Qs@UXt5TAwQq|Q8Ki>2yhq;Sj$+7hzO5s*4N!8I^RD~
zZXb5`=EVia!GU8*etS6$#y3;t0hr5xIk<Xj@Yb(aa%=t6(=R46<=yO)zgq4&*hb^m
z8#2^dS=ZNJ2YuJMs-7X1o&i=o?qRJ;s(O|V{Vr#@k^2WekiBoZN0J^=z3{@kcE%Xg
z%7G6?_CdNIh!A$)jTFk8lbw9=Qw0-0Dl0CVhsVoxuNQiy-#z&7LHZj#xVA*N@kVkA
z*r!SG{n1>}L$Gb<R17Z4;@gYZ!|jIyghP<k_=YYH9ct-xGPXG~O!VQ42oiuMcKsKl
zuIE<Mvgmu*hd{InZlP@&Dn;EM!Ox*yK^1CvM&eS$e&&g_T_oSUY;04fRtS>4fQmRY
zMh_$yc2e?!?oE_CY_-$Wm*2gwW)dWpr%Aacwg8JQ@c3%qZxi$fOO|^e#&rordzl+T
zs=zm9m3Mf2-C(MqQ$yT<=iZCRwzKVM8skw*A7h|wu&+n|rqzyhR~BSCum4L(4B1<B
zmtVkZ$mX9^0Y4{mQ(vyE*nbsa$M?-z9ZZO`8gt-j=a~L}Vc@^~UyQwFP+Z-*EgU3B
za0u=mJi(pd8a%iLch|;U8+Uhi*FXsF?oQ*-xI@0qyYD%BpHuf%eO2?vs?}YqYRx&<
zn2(L|%$k_DdSP+}7Gng$;rVnP%aXGcM3o#&D2}1-kY$m+Ba*^-Paneb(0!JDKs~Jc
zg)*MBfT;GG@;i*s*CU`F&WmKd0%)+=8a<|2y&|xUu7$Cd>4tr){=FBLqrqg%kBN}I
z9x}C5r`)kAT-mxT?&LGO_8Uo3gSfl!4<CG9<_Zjq1W|MXB5$=@y)f_sO=3%9ciQ)m
zH!=+TydExBfHmrN8aD@t4aXj@mRra^%xC%j_sU2kY}NtOp(I8vJ8#?dk{Jd>AW3SJ
zFjaX6NQ+$SnOtRdK*Ayh{DMw%xc>;#gnXf+-#|V$1SPd<)d0)46U~G7pM?%x@MA1r
zBTkrjO*=R)T89|Ik8XD$_P8D~!qmI;<rBE|_GkYTRcGL&gOAtoRo0k2CTWPyiUJG@
z7J>XWJ`rHZ+zWrb%e!JNP_<gop&1vv<}{t1`Y&WmYVyC#Cwq6x_NVhQ;c^D&v6f1m
zWaQkNDXt%3^2?|9;Y@Wq*OD+f9_4b2ty+yMPCI1C+^mrVw-+A$2Q(>eHo+9SDN<F`
zn=^dyP}yKevZ&Q8$E&gYD}kQrn!S@Ley<nQg#Dsb#E5Zs3LGi{O$eo4U-{CWQ%?4$
zObt;{gqoUN4PJ}2-xfPr@hOBqozf&sFuNfAFN&@bpYLvZQsb~3oX529Pz|3Ksx>I!
zjOEF4<ASo0dDFIN7?X<qjSS@ZcV1&jkq%ZrrsU0JZb)YiDKgoQ<?31f4ox6rw|6YP
z3wFr#D<n_A1-)EDVde8$=xpF`LNz^Adw&_ZT$Ok%FdH9t+n`PG9I39sV<C`K?+xR1
z9CPRIuz1-dyH5a~a0||ZMF~zH*F|>o7*Re@!l1ytFnI3opTvOM>i+?~<3%gkl65Ec
zu}Y1A@zYDMt$U`yyFq)qt4B!CGR3iSYcuc#6}TDb1&55BaJ_S_c-D%)dphR!^~Od=
zm3bh`$R0?GcNjkQQ$^(!kTyw^wWLXPU>Q;HM-nSpr$WMHm?JGfCW-swvraw}qKBaL
zg=X*0mk+zY5Wj3)XkcE9nsfvEwtCG@r4<Q8#5(811JRKwX@S&6>^McZ!&^QVaG-{?
zeDrqF335C~JW(Di&SykSovY|g^=H&`*F}Z26V7v;gAhZ~Y{QG=<u<#FLzY4Z){VeL
zH2#1k91kwP8KhEmw&aLVC9_`$jN(G>RGsbyFMj?<+{l#3CoR>kvxAe4_iOe-$r^ln
z3wGLpFMxGs#xIK>z-g<d8%z>eOdVW9Z$eC6Puv80=iTJ<V0(%mEbdg7VD9G%0a5s)
zu0Aq{6~ighDEwkz+R;5DFUdwQd6xGD;G8i&{&ey*oU6^@f>rCMH};c|$Xl@iB0t<+
zsO(W5-rbSrUa|1G7+&z9aHHwT2aBJ^duUfdmR=cNiBz;_s61C*I?5l!;`zZ&d)3V8
zwp6qVSgRTnySx%1RHUdkUTOv1etM{te%N#|BbwXd2q=qs<6XP=6|R&&;T7h`Txe!w
zLq}6|rE--%*)6r9dx)D%j<kn~)8YJ;9aZOr&NLiFv!T!8=}{?SxF_8@6=LS<O@Y0i
zk=EDATMRpptnAi&5COGUAj52B{qkq&Lg3B?#Va}=O~U1*G(@z1Boy$z^0)9Q<I35A
zA1Rw*%E|Gb>RIl%F*kTs<xQN&7+tLYQZ&kI;y}kv4{WudgFz8t_i}&((!=#X!?k8|
zPq>!Y82U74MX;l8?7ZTHkz$9RGMJH_I3h6inF#XYFwbbW8AZ3#IH`n-25w2578FSE
z_)MYnV}5%1db221W8CGtA;dbw{Pl#YI_+U)UjP8Thy)`<)6al>Pm!XP>atsP(eoJh
z$@Afhe37H?Sbh$t74TEH`9nC&Y9iOp1&nYth?^2PnvL|m#%;)M0Mp4~%PBCT)be%5
zDO3gy<*HJt7$(v2xHk`mg6ZUYke?i$Uwr~#YC15%Kg8dias}y#c@xE}W`-|J#{AqH
zBUB#n=h7!U>h%Ed^S4c8%;@<mx5AsoMw~hB=1*RK3LhZoI^}Xc8!OacN-21c;M0ml
zY4M^WLvm-{eO+*5=)07fBIU<{)h?w#FkANXD%iW55ltfa^Pupe;jk9-v?R!0X{#gj
z8FOGjb6Fq0{>pHsak*Xr*~EzzllC(apQBhO`jyA<!JtVei9!}Pc|vUK;1Fh%riI)N
zUozngn<^mGUZ3IZ^0600%%isliv+~ZNx#ok#K837-VUhWMP~`c9=u+@c$oCnAg7#|
zE!~}PXLea|`&#hi&M{mBmATjq1ev=R4&rnP8BzOc<~&w8BLE6!Mx*@i>1a{<2Ve)B
z<OT$allfm^H6L9I4a4p|^mSIn-JF;I?d^`#xtpyy-PmrsQT?QQl-s%vm(9FvD;OY#
zqP|yoA(0!rxCOc_OA0c)eClUuNw1*q8vtvOH1NYrUIME!5}dN=oRioxE1CaT)NcR5
zBmkFDj@Vj0JbDmc0nYdy(a|W5sD|A3*YMqNe7kB{p;6e!7T`Bn1`QRr0dbA`IZ(<W
zHpjr{8U~uzoS=!MBl^3CvI3t?;$t=RGRH#@=7+$Y?%zvxJEa!qN8ejnl)7<g-bk%i
zX-QbU0SzRaB*JvZ)**3}kNaY*0vhtY8o!IiL(oXxYiiWNzFhbhyy)?M@*&9PmtA1`
zxc=Lo(S_4&h3P!b%qOTj+r_G-G7+=|*Np1A_^ne3nTvM%zS$`BH<r{&#trflCHJSP
zDT)Izg27jh+C)MTBFXG*ZZv^sN_W0q!ViC_&@tcTdmAjS1d^Y>i_(YDh9}ofa3`78
zHrw1@C;yr3R6jVSQb7{PrHtnOD(A#T3kd~;8xo1QU>4ER$SVNTl-TAZXW7nz&A%g}
zz=Jv!rf1WC<X!f&`+ugxJ6?>47vwn4z0=~rRlILzy51Vmc`TuboWV=c(Mg{!{io_m
zoeWw>BA_8=CykHjlj6~+FfI06=4FEK{!!%!l;I<`9i*oW+{6lKkO}_KYZ;l4hc^&;
zmj^4=e^kUC5f$|Y-`srXjh!e~1!Ek<H21Er3%&e(HSxq1azWk3MO<?rYhR@n@%-MG
zXpP#gQ#AOY_F~@I*2eToqbR|v-F+OqUT%iRPo_ZEeuHQjUpRUsyRK)SG?bB|AKX?l
z&%e7=4tW(o?}dJ)rhLGJBN#eH`BHqFT;~-n>PH&T=~MPQ|5v#0Xe|!cqyYSqs`Vv7
z5oYo|!s7M;+=2LZPj}an5xj?k!e?-4T|#`!!(~FrXtyAH@`c_$gsqSS_x-#`_>D|(
z#R7T8Utb3vTSfKVVP&_EMttC?yo2to*Czn8YR85qmzguoJ$3S1sz0?5Uiob#8_J`c
zL5?PiS>yuN1Npf3dvj-#Qru8aW9{q;EGTBB0TXj)0dHMknVOwP^n60f{Tr<N&=r2o
zMiza?N=F$bSg4!Nc^RAj$$ah5eCygD{G5Lvw%ny(fy$i3X}V@SJaA8oGDVC6!4&pP
z2XKHbH?C?sooUG>k)lEfaKY?x5)G<*w)Gx4<sE4A7y|#?SNKG;55Ib(;rJyxX?MuL
z9G!#@f`x`I?7%i>I+z*(Ao)=dHhj0bywR&K^Zj6t^hZ@6<+MsH`kfd4eSrKRq(Q?X
z{ReIOhO*S{))YhTyS~0Nvb<Abk)m_wQ(8%*k0^bajd}N|NvEeUFsqZ^2izW^U>P9T
znP~V`>FFz-9uD_;=f}K%Id1lJPrjh}W#+|HV1xPC)|Dl@MB;m&z>BQG9)Qh$bPKhS
z9P|9>vu5-az0t2de2otdx~zH8i?o}8o#4ZHt&bz;ZI+9Yl7mh2)r%AD2ZzBzhyY~=
zxsk7x9^m7`q5N(uq8#`q5-PnuN#M7EzrgaiMuguDvjpdZrHVv37=>#@lq2nhb99|x
z11Z_@nnClS&71_ZX|1PNrF#acDmUUixtH%*DG_{3Wf7$g2o~jkI0H2Iz?eq-z73fE
z@hKU8waKo-E8%S8XCKNbmsm2>F4sy>oXWO${d=$=fu?7>QlMl3(A8~EgYd4Eha4~v
zOUh}`ns|U|jk$ynG+a<(bX0eH<n4jFDSUB}2X%m)tbNTybNQ$lqQ@(`z1-LM=6$ig
zxJD1yx$y3PPJezsUEvM8l5dE4j32;iW-zwwWI(I?69jO=L;i{-DG#@Le%Dv}n|kWu
zjo*>ziMY{-3|XSGq|MCkw3khNk0cl#bu&2759WD50O0({b@k}WeySJ}N}$@FuiCM2
z{&aIp`#{Vq6SZPE*W1Nq4ZU&%UPbIHk;+M5>1ZXS*+dRhj^qn|1-8Cq?)mG;kNoI(
z#HGJU{Q3a*QISeYE7$lhnMQFq?B$Dz?w-nsRZ;9;mPARYj)j9h{od9157qb@DgiOB
zph6WcKFt>({quzRcbm|b!#t&b>Tav0U~St@-sC#k@G0+m4Yp>iGi_QO&LXJL?z^@n
zx%KURq!F?h5{=_vJm2eZnN@p9sQ`U?t_uuc7bv<>*f`sWknizwe@XY<F%fP<v1yy~
z+w`vdWT+z@pG)J~>f5L(X@|19QNe*9*HL+;VPxtThQWs3C@rj^N;;&wm)WYEBDn}M
zTwPXx8=<f0OJV#2VujaHNtboCw}3{i<*3x`)<~w_ig&!JUv4(>W}P}9p`SI~2x}^>
z+h_VvIWUlH4KLIj2F}zz$E5y4_h~();1BXm;m!<k%bNGkIc&l;D$%4I{^IZTS~KEb
z{Xzy_9t(b?kdCgwW-elzJ#Rz+5=O}N)T4Ig3cR*fmgDcw;i<wsTqw2mSUS}Q6|!k$
zsLqLh`SX|=0*Tm|AI*2+b-m6kiB(N)dc3`MtL}q9rJfPAvCO-Lk5Uk;Ms*-b7p(Iu
zb~2f8AJVd%W#i`!``^rh?rKYfVaOypy^V{eD4hl<^j-i(Z7nF{b}mvBJ1*HdiL%yY
zmsjVR_IGXXi3{NdPy4b%Q?&~D0Kh|hf{<2!|J}L3d2h4R?!K4uyqk*ThOdrj4!F!v
zaY1SNJNOloD@>*pf9c^hJk*y+a?}BWS8-o(d!tu*G<Wafd>DHK2)Qxx8TSV1*)dfC
z@)t(Qlb^G)CJu0-%{#$NIy$h2mt_ronrum_UR>rxv>5h(s6wVS>Qw_h#b+t~j3o7b
z>QF?;3Vs28AUoGBGEz(4<zP4cwPzf|GvMGgbV-^*zKd7?NwJs5_`w`MMd`ZE^D$qH
zeBjH+O~NbG<z{L+y*t$HPl+2#E!$mVtn8o4%t!`9*rwiAjVCjiSx0jwap3N3M#fIM
z0+1XwwDaBN7~V7YDl~m@>Y6N?ctUN3UH`dLzIPq7Y4lRPwSl7p<p<{Q`I+>d*-W}$
z5KIV6dtmOsUaaR=dDOi+4UkhJh)f6E21rsRyMOQ>eVypMRFl&=*-17i3e8t^o&4S*
z$je)8l2PHk>oOoP=yu9}dgSu#q(`=C#-4lGH3V+f@}EpQsUEz3x2p-q3>bW4o8wym
zwFV_{ehLJ0cjLM!CnJo!+Sf0BYuRMjAY97;W>+Eeo3YDX>#%*cp*Ge>5~eBJ!IGt|
zpvmUTyZ+{dEZZJ4Ra3|RO+^%{d{~snZp+S%u%*U<ORj5v-QyMJhm>|qmwjs|{;Y-E
zmZK%tcq>eT;)K7@QMN7{DQhhY3o_HL;puWW?f}V}dIcww0~_u7-at$bJ;g(db01rN
zqFKgD+D{iUeiyB^V{h3aen=(cA{-aI%XPPxDK>a?3PwvugxlUdhmg}e@pM*{<IjgV
zCxTU<Q@+N*XaZJL*%|=_ev><cHdf{;34EO^n|;_r4uiezH!iDYW?a$9UQRs4kcnUn
z%P4Lx2cc{j8x3Am@L<tNj>BSfiBCynW9aMt>&SXa3Z>1{!v%9tof*rq>C|<it188^
z;bu};y)5OHxELDc-7Zy>GGKawiH}PvuS$cWx=EcOIRt5uk3XEVX7ioW!S4&Flc<h0
z#KfZymB}_*zg4#6bNGUbPMh2L%+^EigwF2re66v*$$AhFB>o1Fd}k}PH}i<DkroZH
z-*CPPV~^iSxIVh3%L$v`>AoxEk@lq7xQ|jwCy6H%NtaM)OLJ40pIUK~n|GFlaHjkj
zu>6rYYB#PsQ`*43&nGE%2bb}HOO`JAmHQ!uZoqP50t@0q{vIpse866yVS#xFx$XlG
zAerSVzo*`TKuGGrFdl78^1XXgS}RtGUTDlo!j*8J=je*Anq>C`zk-Q~4^GDZ^m4I-
zKKnPb-cO_|)qP{ao`RpV2P&^M2|mSG=-ti#y6!f8cx!n}qRhNLS%B0m3^zp!Q)3%7
z1x&6|ec1NWW3Es#j@`bMTozw6WejA4;z>|RDs<5D8sk)jSU^8FUZZL?NMb7PD<0Bf
zQ{oQj*v_50xc5MKIpSNEZQva}hXs0+8eW(b858D)UtNdg!Qm>9G_iItu1FK>{LIM4
zH%H$&_djK8^#^{%>IFBzg5C(iQQTmydmknI=!!e}1^y=UrUS96dUesKd3UhM1k&bi
zTOEbjpp)`90kGsqxoh-PMsmY)+nW6{Kt{mbd~GPS-VI@}c&(tsnGs&|vO@~wIv|i&
zPaw^5(>4c5;zgetF)gdlbPXn<KQO7P53M`BOvDKs9y7(raJw?L>udN5{1Y8M^;UCb
zsh_AnNwUatn5?rUaCLS;8mZ#4Kh?P-)~;Hwd$HWia1i7fcm)0K%LhAo<m|3t3$)Ph
z>Ewq^w1dxm_EL)Aul4UK6@6HWWjsL@v)Ax`fTPTiFQJ<^k3CL3UGC<wVWQ{FiG`+&
z8LrTyh19)nl!hQa?()EctkJ$ppX7V`peupjyhluIriZZiW5=|{kDkZ6URi=!Kit8O
zCj)>%DjSim_4d23D|CO_P5IEJS|!nF`G@p?m>F-*ef3Uewbar|Tk+0jvNI7^xPx?L
z{U5EqZW;E2&3vq`bqXIxRwODTHrD%Z7lGpo>2~5k$!m9#cr~?)qsO^xdK(m4dJ6z~
z&XLcGy$#t9+dt)8Ap)M0zWEr|;s+ri9_P-sY~RxV<tm^-dr2qaOYP{%2s)%h8@)PI
zU0qQ`L}25)rjB`?y_bkBHQ%q*>N0ULhW+^2B!t+MiLjEb%3N{WJ)~aPMYEIT`zu$B
z#qC<MXBkGU72)&2JeHRpu$x{q&M>sCT-Uemqfh1{>*;5qRmHQnay5NTty`b(1b|)F
z6k-)qqLE|Z_0nZi_`9xQ^QrAy1rydJ&PyLslT!NyMzdL0wNC&ph&6ifTyx5!s6Ys~
z9pF7P<aAJa`>$;_HuYcIEZOHhSuDV`p}!NC5A(Q7Vq^n;K1#~Ogd4Hs6h+U5aS{Js
zOtO||vlI78r+i)^yMa4#9`~Sb*Ae!Z^Hfoc1mK?R#-51pdgVBBo&&K}m!B);a84>+
zUsWp@HaA$aT}XvoeRgLoHzVd(h+B%%qquX3c3+YWslnI0gV@-PHB$&rH10NSCC6<l
zdl;Apqs!3toA2IzZ<h45+mO$fO)>toc^RX}TbOT6+b^^YW5R1<!5_01jyFubcEenz
zSbuQ!`^e1D7^4pr2_D41O2)__MmBjuDTV~zeLPDQM4EA?3t|5WTQKmfF%<A6{A^JR
zGk1!zOp=wA;~m~1PczgX_Jz?=kjR%_by*0HIF`bTx~K$|%<!7*(>Gcc3EJ>QX9dvu
zZ+Db5IGm4Cp1Jr9s(?}otC?8xVfEhUu)WS>L`2oyTi6n>!`KfCZy=9oyLS+2S(vXJ
ze<}YEp`dRFQv!nbS&keolTSY&aVf~%sduog{38K_KKtp0l{|q(NzOuTTHmYwRtGwk
zt8FllXTeoXDEjCkdN*<E0T76OlZ3C~LX=A&Pa}do&F<jl)@HgTCzHVbbSDl1=1|bb
zp$}58q*i<3kDm}Hn(21C=L#EO>i?p}R+*m2N9-52If1*f>JF2U{e%XM;k|W1LJOEF
zeTl6;eN@_H%Rd>V6~I0s&_^w`gB^YH3xU(zTW$N8ap6y|FO{Y*6YMw=i9izsq1;Qz
zLi?gOlFN8o6X?eYv%#hR^n-}Pm-e|yP7p>*|47M0AaW<c-|H;u9H32HrjsARvH*$8
zjaYeMM-)b4j<q@|88plMLziuJ#3*%Jm`z$0wQBq4gZit|vUO^7emfnP3kY{E90O&x
zSYthnwn0P)MRWCF-D7h4w4VNv2-_huxL@n<UA8PkgYpaw`lIaUc}JmFq-2;4r<7At
zsa_Je_#h*59WsY6(^MdG6@Eo5&RUenQZyEg9_DF0SJ<tp4Ac`a3mlB4G5H-bR7kKr
z3u(4=T$I<kR26WjGl(%df@zQ_X-uQ%p<r=wIS|W8YEAyx_2EX05%u?7(GFW;*Y@MI
zsk<KG79a<r0q`GW{q*}v>Hj7aVr`Hns;02BNWqgnNxmZ_g2+%C_<igA*X#ZVL-v2u
zr`3_5cVsd71yn6qWb3JkgOs&r62cD2YA)2edB6X`#xC@_RnEg7O57`e)5HIO#qge@
zT=91ABAfJ6bvE&QWLd-}u4q@KnjEoXPfpKh+`;TX(ggvN$wh(JI{UlWz57njn}=&S
z=f1~r<tq8vq?j_?%&<ug#Yt_QUvAV)aUgH`W@Q+s5WT_@6bH;0*e^2F{OBpy*gFo{
zv)7VnIX^a#7Dl1tK~IW;?C-<^I6oQM+hZW}RaP_aPViJ-FTN-IE3bv@UjYxbvG{kv
zdj6mC5&l53uVADa-ANTGjH-?S22%4<u|)6~t?(FeSv`p)`@7OmNf(0hYs*)%afZi0
z`zne)850L&?0aNtRRNyH%q!|;l`ndhK*^Zj^K?`p*_I0B5c*mjjd@|oVFUpemB=Hq
z3E|w5aJd)LF*#-++6b0wQo)i`*7tPvE?=$BvL50OjuZlA5#J1?CIZcn+;iB5aZzWk
zOOG_mu`Rk2(Xi>JLlDsRDezr2ba8D&IXv&i!YzlBP5(xh$)H{J_5Eqb)Bp0r{_ia4
z9%>1{a@XV43Z>(gwCud71QBvQ_qQN-9#z39MT{<{7ehG<xT{VGiGPPGJ24bu=Z0VZ
z|77qZ{r_d}&+JejAK{9SXMk>5!YuL1Mu`vR$_lChF@h*oLH{W8MaH}XTm6>+<Ny6d
zzDlB_OTK?8?GwSjWlfX$?)IvBKR3<k5L_!~0a0*ajD8n`5|_|!Pj$IXHVEMC82%O(
zDHU6trWDGB_Tav7^sJvD0{ej@{E}P>dt;Cxs(mo-Dk(8okp_x+w4wx9OzU+BRY5Cu
zo5gWg-dytC96cR$4G>fvYKE{(+bxDtuZNUyvwvSpd^OzkdK2r!L9>zCLGlpDS%Cow
zL)aeIrx;Ou3y*^?_-?JzJ7ozr)smA76L$X6f340)V9$|?r1kY|B(VLv`Tu*Zl4ATG
zXo3VZRV`}D&qp>qL?z1)t7Gop(8?O0WU%K%zIEa3=V>tIBV63<p$GfcT7Cl4jRgH|
zYcOlj<5g(R(@zTr1M<$YT#+IyvO!eUv}wG`k`N%PZzMQDIQRmg=vzAtK@JH;6E?4?
z>>Aec*LjFQIa?-)QhrSrYD823--uM(2SI_KM;>Am_P^XW@b$+I2q?aZ>6J<0=`(l;
z=wqv1bA&83F%nh?dR*o5c|U0wX&L?%U)#zj?|FXs9S(zAC0H@^A77jQwYVRtc3=qd
zJ*oBq!|xG%=tXX52$9(S6&|^LNAYmX_1@y_z>||p-vLh}ki{1k!cKGS(tb|nbneL|
zU+QbOo!2hQoRIs=4m=UEw>OJm*IXonzWJVO+Zq34NQiwcC_p@bILRu9d^EQesRZIL
ztsz5*3O<POrp^;q0u3$B6%C^t2_fHGd}Oh?_F7rc>U5@?<w{0S_Ey2lF8y-$#|+H>
zZkHE$Ekvb+5Kq<v=ZbmS<yIG#SSl~uT=@fgHQs2@RY&>Mna>rI_78V>Rx6e3kHK&o
zO~{Y8GSZ9`bn!pHUFztkWFMfegf=@{z#GKpsPO2aB3=yJcjL*+%bOjcFmAT4C-IW^
zSA}>srp~2V34uh-mR<NM++38RXZ$>=V&;xhCBtl#?Q0`9MagYu^wy%A1da_~=Bm??
zu|JdX-pfTK4yG8%xy{ZEENl!bwXG1w-?CPfspWh&DeA}RO;C$0&4iUAvw=mg3p_{-
zhn4dCKO-H+e{78LNXWj_*wi?^O&7^iDir83-s`*~1syH%Zt@%W4JPn%d+BhVg#sS?
z+e^OS*|`e0)Kz+3U`6;QMS2M=uNzaWo;MO!Jsz)RCy7&RQf>Da`uh6Skys2PLL+ma
z2QkLiT<8E|ogNVlSI{<*3Kzb2WkOCy6z-6Zt;l%&CSv+Dcj9y4dyxFym5%_NR5344
z9P6s_aL<M)b%D#+zM6ba(+qAY8a3?#lUp6bG!K<RP6{6nZwyQC*B7%ky34{(%Sn=;
z6^d%>a_a#-Z?U`RAWN2DCmr>Krk)Y3y;9^wzGcUXsV95XFWFIbO6SMBduoLAXvW}Q
zCsnuA{L<&z2GQ$Hi<9f&VI=zBwCYpcY{!jS5wa^Q?`CKUsysQZs`B@RmjYm=ayJlk
z+LY<OCz%AWxz_emU?Il7`#*yn7aAKIRPPFk?^&yUF914C`_bn9rlUB3gh}Ra4vn9d
zHdFG4jK|TS=6fa`Gv*6>%bd=ct!<_S%ijmg1;3-fV&v}yTRY|=#A}mC<|SYqXrSKj
z5c5-?j}e>K={;f2uMQ(RHQw=QpYN&7)I5{%xZD-$RF@}4jC{~+Gb!VU_Por1H~CVJ
zwF_BcGY=alLWQK2G+tYKWK6%QlU7#V;8mXG(Lgqr7dH1yWPOAHE$HPkH;_DV<O{<Z
zi&-))A57=+qIqqN5*yVgBwAY9Azdoq32s~$s(f|wvk@%F|5TR>ZvtiaAny5uCqcw<
z%sa*h^%qv<&l6q`)7q~(Y6IdsPaP<8V$f7y|2@8?e0@eGHW?bKi=VCT;!$(8T_*#X
z6q$aefc3mPit)uBG1Qe4^x4a81jjN2hQ!20lQN>waJbGOFE<!PChG9pDZQ`ro~i}=
zk>AA>%RhZPWKb_RzHa}{>M@|B*>y^c&u*RQJUv7_x1BKqe|H+&%R3M<g=a(~pW@xo
zJkpPJ5a{3`3_YIqZsQsT4lSj!viW$4pPH}5I(B4al#?28=XsyPX|pmkY$R#CnSC~+
z))MxsAw<f*tid*!SbM>0wPHqP)n>DE;%OWIxMosI+dF#_B23oNVxyXs)cj55KHFQ)
zw}qsu%J$Fs8Ns8zH{ecbw<NW%RQ)HEa-k9FQin?ItLh)&KIi8KA|98W)YIj*ejgTt
zDG?^{Mn%n$V69on8!8?dp&Cnz4eoV^bCSR+SB4F-Goa!vFl03Owt{`8*vWvaIX1us
zBBHx^-evrlzi1Pg)Y~U1n^L`A)YvGN^Lpm^c4{#jxT*P&<$suiHHZcu$*MMtiz(&*
z^^dS<kz|ce^RdU(lA*V+O@rRjjCH9G$^Oan>&|0?<9XD5wiA8F(R0IQ4|xDWyZ6&e
zYtVu7uSOony)8lS7_=lC!bS7VouHi1a6z~2PGVliOy@B$W6CWOy1VN|5qu#*PVdHR
z;gw@B(Z<igwEj%kW4WFmSf_Hy?)0^_r1J9e*)hbtn({cL2|fbwGHRyHncOa_t|Tiz
zMnPG8u1VRtU6cOjS%8uJrW)Cf<~G(&`>4I<lTRrl%p(ilgnK(hNUlM0DZq8(uQhoq
z#a)?gij1pwCuUi^PQ_8Fbei~@tPV@gJYJ4JiTJzKO{20Iz&2ikg6fX-j>Z~)rsEg$
z5)u>j63?EwM*HiXnnN}@etv~3pRl%Zy1MzY?BX7&Gd)QymKt*?B+m<SO}-ih)n9Mn
z@OZx^zP(-SpXiXr1;6bPS^sJp#8pPa4F+N$?+%|MXDzY0>a?YF*m{P(J`<K++SCKU
z(FWA=sJF;kp1AWIVkrQDEJ#24!|lmmZi3VaNwpjBlhVQZtB~mc5Krk1&c038+r5ht
zc7%HmJz|-jQqdxB0Vtbqwzg;ph>-p-g#H&)r!zuvyQ06pc-!G}>23M66acqcXxQs=
zy^>V#(g#1&VqeQNl&sTf5IJTKM^0{+F*`xT7ygv1Tg<F=dpN65n;R9(QrOJHlWb&o
zc2kycJhx1@%2lPJi))S1ru&Sl7V{oN)KzRWXnz6XC7Wt@Av`LPPtDTi8aW1mmwv%C
z<BI-*W+md(=BiANhET}#4w&1~*B6PtXfM<xk3@XXZ1@q!!<S3T#<%*ktw~h8Dz?p|
z)!-G!e4~eBO&A>Hs@rj&=yXg5`CnbMnY>0tv`=rdygk3oeBIVu|8?|xGyam34gDXJ
zHbSr7enFcUQymWD&vyW5An}dluK+HbUR}!~vjpSE=8!Yg)jR+Co`8`aa>^o?iiP_9
z*M3LyO%i-T(|m(%!bo1q0r~n(+=}EbrXp(UnKo@VE?6hb(zvg-gI>d<V2TrUmIf9&
zGRu!ZtU}>FNloCv!BqEpJ81h|!X*Tu0+C6+NZg$-m4ipA?>r!G2TN1^<gZNEGh>K2
zisSYgzVw|(>Y)>EP6IZ`<mxTH<rE3))%irZFfm*Bl@(U70zk7YG0~7zL#4<D^_$*6
zN#{?@gi?rzx-F~T%N69L0(iKZYCD};FL%fbE;Y+t@wwty=Y?#ZaCekv@VZRs@l!Hz
zGR-vIsU3IXGtx%H49%d}jSjO7nz;L}+bXW^8@Hq=1=0+48+Gixjz@Bc9MmsFf5})l
z*T{1Wwq9z|Ld~8+P$%Z);~O0CTQ>@oTSx*oP5+k`z!&+^t8d_;x*btgd186IpSr8A
ztoinpr-Gf|)GP`WfN$%XOS8|)%7$p(%nYORz!u{a-U7Ir8Am&r0r<dD^BRr=3C_8V
z;XI-dZyUAaJ+eX7rsDL|kp$2R*0G^K<Oq+b9AiPNCYO9IHE=wJSSl+3A=3^$$$fNs
zb<p(fVexG>kva|SWEH&L%iT0<W3Z2E*buLvm#}cxh%2$sVtFGCuiH#S%E<rN|GAG?
zJ<yffQ38dV4=$Sq1JKvK-W}G$kIKX1Jg)9PCFb2DOT}q{a7g8!_*|}1{iPP*Q6hk(
zO?GTX(>$5gI&Bo{x9}JO55gZ}rp0mXFqnG8AayEGos)G4QRa!G$Cdt0SaD2J_Q^zR
zEh-mlNqY2OXk#MDN@wh7c02OFfB(LpTZj54>vLeM>~+<esYH8b@(TAyFS@!npCglA
zYAW;q0Rt-RmlM*8&wVMfJaOZoySciKGelCyx+F}Bgg-&b9-4TqL-y>(T71s0<prat
zS^^4n9ZM4J=$C6-(^)a{on>M6;C@h|4mU0FHLrBXU7MQkLl23Q9<e~<B%a6UXAaap
zI4Uw+b_#fT6|vG}%e@s3m*0)EVXB49>z?MSD{AX^oof^jF#}S>jY)UZ3r(}hlm+m-
zYt<YSz6V&BW03x4hmC3Zz%YMOH_^;I@oR_#I{6i<D@75cIl)qcz4;&8lRjL`RvhSu
zOyMn&CL)th&bKtXkOB}{+UK_Kp5Cb0OSHJMEK(NB)XM<lQ0HNAb<>KxO1K1wh>7=;
zNy@0)vZ)I+v7kqfU??z$myvk&q%DfqeX-M4+4-sUV-7?7hv>p(7yAnF!>^J_KFz-b
zy<BzMc8<h(Ld-Xt0~@DVcu$3zwVACFPcewCX0w}Sv~sQ{h>;2pPZ1-b%cly^?nsvD
z*4g9X3DBogmT6R;O=apNPJ8_K*a2-B!p^94I^f|?mm^s^OfB+xobvK?Tw<vXbKViO
z9n!7O7WHP?w=wa$ZJ;O23G&|wx*n>wDBinMX!XUZYkW?$$|OUa=;?shmyNjdV!4wV
zYW4L)u#Y`R7vSNtOv?C8GppG|Hi1c1_TPrhUn6G<7SVvP*<Vz0S&g+MQhvy19TP>H
z!w^9AqKZ84Yitz&GsNSt<=)G6f^iuru6KYgvjERqYa&;UXk>6g&4^<Z^-2)^cQax^
ziJgBm-;2~fbkQy(hlZCYPT>y?J-D$qxpWk3PddUeWj6H3pNJ!h?iBvjBx`?R&`YoM
zL8!u`UHoISW8W_><&3DPT)S1GCP*f3>0GRRHz}03J8WurY$Q3neLP9_;S~lRuY3KB
zyRE$)c=W_(rwM!UM$9kQVsbnu{>oZ)qy1_#@8P~d(RcACvKJ-mZfE!`M8%(Cl6Qa!
zUcPV&2sUQ?)RB04{dxM}9Lgo}2j8!<hJ)2+d;7v4fR+{hKtsYTrZMT<X4sb=gr9^v
zIJKQwp63&D4!iBd8#1FTX?-7At5+>P0wY6fZKPcc2*ve3@ZL@xrU^HHBaj(SE5ALP
zlXfaw`%|fckD7IzvgQ$eSViXvO|O6ZRHj0gIgyh21w*^q1-vFp%)5b$%Q}`eJ7B%+
zW}Je2A|zuP(;+>Pl$qcy=~jj%)ndXnD!|+>oXVnI+{dFQf9DuF?dseRE|JpVxvDkp
zAC_Pw%aK9x_4to}<#Ft1{^Km{VJ8i6R(K*~i@(Sj|1#m^*T<CPUem%vr=NMgn>xn8
zju`(_24~0I4VQa~DnpIVjIY1b4vfcNpZCv8DDmQ&5}t0f({`t#ZOdow;vZO=8d0SC
z|I-SFT#twM1Us4CdPSLdo=Y}omHD5gT-a>SmdKkoP6&@09XMUS@T}?~YWEvVV{ZmY
z$SlyRN%Akh8lkx0QL5Y<58^Gi>%uj+8A6JqgTK;7*ZUj6PZHoHZ1dAikrvj^D6b}?
zPtss!Bfa!!CNL%)<zr8P5aaK9ANj+m{IH6vkMbqP$>O2nKGY$$*Kzyw*4Qigq1Q<z
z=0Qs6wh3p;s2J0Y;$8wlk@+~I)41A}ZB^@;%u$nK&}EoC3ua-aeRo0bIVkvf+5#58
zo>4d9LY=002>ZZhfSS;37His6j1||<t}n*_vJsv8n~SPA0^qetfZ3nFs~sknxp>1F
z+2qSXo>mK~a;j@VKWB0-_{_1~&jV|DL!q66kLwbb6vqU@Ht9ZXS@6#z&cQ8!laFm$
zRWB6<MHySI5)Mqv=GDkp^ivNH&#*9YQ{FaIa|lwBKbzPhFT%2BN-uj35Mvs9RX5wt
zOAK~U9L!s&RAY$paeR=96ySJU5uotkJl8YQ|9!Yz6k`kG6i==M%x20IGbV@j?Ltt)
zjt5yqe*a5frjfCejo9&abKPC{XhA!^UbruO?s749hA4bIgIhiJKxb|dm*s~x&fnf2
zR@4*bn|3y9?9XjKo>PwOj(!PA&01N&$4h>F6yFb)kow|rQIg7VuT^xCv|3*j$#@(8
zU;g4>$Faxd>$^W>1U$C&Jc_mMk^QA=RhN?tbxeky_Y948BccNve>AKej}mSFu)9B`
zlBL6gmLzC2Nf){FfHsBp#lqa=%H|J;h|Scht(l8dQ)`Hg!{$avqZ(uVPD@?td&|5k
zI#k|ID2?y+=C-5K^t|Dh66+45oCJTFEpy`>$m41^5>J$h9IxB?WvK)+tyNQJ1?vf<
zP<2$bd<sFxhM-!yj2QM!Kvla2kkri<ogU*hwnDqC*C7hlOsyR8r|i=WsrfjDA-kL}
zTH~V4iHr<$YWIXLQYG_GC-tLTR8ksDsib!s3hw7yOa9jbT`5zftE6{lLQAT7%r9x7
z_q@$W&Xel;f1)bIc4?mY<?h<Fx!qgEhjgdSaB}LJW6NZ-n>^qEC)Yy|fRuUXi+DU3
z!_-PC$%=16j*oJYEl(W^?0yg9vf9h}^tiAxvB~3|x1^4zT>iAR6@-;nng5Ye7JU9X
zA8HsloOaz$U^1&R*+0#~WUl%19LD5yYgo~abz<-+cGspUj9JftfsU@jK$`@|`PhQ<
zz~zvNZE)RswLa@RU%T6J(ZQp8PEHsB!Gc@jxUXW)Hja4EnQG+CDd{bRCh2d$SMRf{
z!-edR1^rQ|O-_!nt5Gk{xo6hEc_%j1g~!`$YdBFT<a=fAK^G29q)PtVH8yOc0tJ*d
z`WQ>~Zy_J>(6azE;(zx~@$)QO!<tKz&RICUlOxrlrG~|seb&Us#|SxI$vj(3GN}I;
z{-)CJkR&yvNQ7LH#nB8LTn~~_I8!L$@0WRCRm|3{ulgeoOrC`WG8Yt<I8iqJHhuy!
z7~<2PU{Q8;GWlJ9<Jhmd9Fk=$RyX3<My>O44j%PVV48QsUaZ}os(hN=U!z!xfYYYn
zJ)oIrv8*xklgsi*5XUo6!Z(q!56I?r)u5ToG~2vr5&83e^IWKOl{-3z6^nsPIZug0
zo8!Zl7S_!UQOu=^>GBUkoa`1mEi22ILvYX<(1R0A42PJ{>+8y+yq4IeAwv^ggKd3-
z^I9{oY^lNOL;^n#cwpiElrf8NaA|PDSV)|)I2x;D<PuR;g)DzG#AQ{5s4qoE4#h89
zFrd(MonH$g&t^$+wOK87Q8D&p0k`p&nVplx!y{sphu*#lI;>bnqW83Ye^3_7zt_v3
z>@&{kaMufoCSeH<3|(Fb4NDHhqMtWI2kK;s1~cuYN^NN&XvhU1$z3?XN(Ln)=u%0>
z8clwA-aPSRS|Ovv&f%k*m6&WA%DkpFGx?cqv-|xC<plxRYk^p>P2V&s%`68XsX*NL
zhH%+xf7A&vu0?53attHiu-ie0#p|T*w@;p8&nPTJl*ICTBmP)`7oX#V>B-V)z`{@|
z)UJv7&*=rXlQ$G)m)nTUj>6_cP5uPQG4>MrX3y1nv#c~-ue-v#G&1`u<Hm_t-OyY9
zR)(bJTC|EflN7VAdjbad1UGaq*;o7wxJHNi$RR`u+aDB80iFzt*$Ya~lEdW->WAkE
z307m?&jGHz;s%B{$N|qMi+nso-r8GVgt1<qe-kav8#7&if2xC5f*qYh32fj)W6Ic;
z=Om05nWd}0CugSlS8A=vb+OWlAJkRp{CS$tzQt!9j@H?1FN=Yd+Tx}C40wa~IBTQL
zIA^>~c_b$F{(Y+5egP`BqGh7=rxANM$uVO!`8M)=Qo`JPxm<z7ac9vBn?CClDw=8Y
z^E&l8*q6WeNF~GW&tg#w;lf*8i0_)kua>t^Ad%JTL96FJRqO}<{j1aM7c_3!T1AYE
z3&tLQe><eX;tMBCZFu~Hhq?W<=n_gj&HPQQJ0>e#?mo_l0$TZmd2kn&b12gi^MNJG
z>d1Ry5!?m!=l)$7*Y8PjZ1N)O?#p4Y>7xy}8$L`p>h<@@0x3^vVF#Q^L3iPTqF4e7
z;Ui!4@_Fx(2LNiybqO}<T>ej<=cY_ulV2-+ZmQ5@4Y2h_FEqdF4v4sM1AB+J7gQuC
z;?LkYN5x$V8)wd@E|zhsW9C1=So0~ozWBk==!tw(G+8s7)_;k)Ubgh)2tWhQy3-YW
zYd#Lz<y^@Z15KZatY==Cb4-sXKq1`rvEQgm`)v--J92ey3U+&Pi)Wr7?7P>qF{-(O
zE}giB_Y(*GqS_`e500dc`Rf$44$rvH!ZWO|z~ep=9U^Y8G!o}?EDDyC{{u!&lE3l~
zqS8bL=dUnhLM9yM1gE$bghD~+YO}dlo|@3(B1x9!1U>m{zTy%$cHJo+LCPj)S<Lgt
zDAsGXRP&TKQ!~{`MwD*ldZIL0vLBy1Z8MSMKa=Nxo3Lvk^M;>(=mDWDVqnfw1K@VG
z2b3|T<le~#N;!&L5upa!J33k)Ve>@^?r2=Xs03`thcG+!81#0g<BB#}dQcO+r0=!`
zQO;W(2)G^Q<YwG9?5_+YKMA;)!VvLs`UW{`ba5q&?q3LpXD9`%VHeQFC#Xz}=PL>+
zxMJ|tnVq&?kvR^MvTLE1U86*#Vzph3MJM+Od~<0+^k6b5lAYR`{PjZYO4>L!(nO)<
zdOyj6wyxl&zYEI#(eYZY!12sA*M&0Xrx7T3cVNba|GqoZlEm?p`}Sz;Xib_{_n78C
zrxFTNiV!N3%l>7Ed=*G(6R7wFG4^X0<|l?ODnd1;3iT{iiGLi3sSDUzsq><TI1=Vx
zlpg0ek2NDtSrvs>BPLG2T0zcSB6A}A9|G%MaVAn>+jv|>UNbXu+a94r#*K`#;=oIn
z68ENurt$puXSZv3@?jIA6DSq-j;g4HnGG;)305QXyeB0rPeNn%p82UeaJhoESA4wh
z>Gs@1gRpt$h0pb=lDpD}UL75;*2a6+!C^#fU$|<qE6}-J75!w)e808PO)X5vS?XDM
z>OtNSP2JMQ5Vrp2>x`TL?8og%gc5nlUmH0OaHy!Rzc-fT{%z(?%^+@lcBO#?y!XZ5
zZD!w2kXz`v&T9R0VnJfyakqAi?tszF<mb>t*f^eWWA*czEOpgmH8Y3BiPwJDgJ7v-
zzW1LeJfJfjlu+?MO2iW`ByscjoR2fs?}7IY*Dx-1^rw(*Fx34Msy@H$gwnhxEa2fO
z(t)&;o=bh+hds+AO5Hg@+}rx~{h`g5H1Ls|$FMqLisPNe>sz}N5t}^Ni0qj-i>P!O
z37{P`KY*H0Uit1d%>pg;$hd}G4RxP*9;wKXshFOL#reGOJp@%hLTfJDP?vbyt`PAW
z0__P*%3u(MxTTsJ_X3D5iER6<{^K<MU;BU-YSIp~a^gf$V+c5;?qW!K$;jNxf>AcV
zATQ4&Y4?q{_UID%^Kz2*`GE7SUS6|o_td%7y|xi@OKc1UZArYg6Y<2QeSHd_oGI`d
zRr}ifBJ7a(ajWZJmnG9~R5OnMehqu$wDTEmP^=OewRN(3Ey1R>RF=WvtIEV{$eVYh
z*or&I-<tE#zB-F=!^O>UW^G;4tT}<>9-QI!CvT1tH?B$Q=j`T4GwKbzi`gmFh`07k
z(sWw_bNw7(9c##9Qy2}#X7kf^Pyu8DvbWF&XW}EHf55;~|Iau5Z<EB_1J)X44X68y
z8>1g3<Y0(Hnr^DAN*J<@UMCcL#n;-x-%2VyrQpd_?;F+w?jI-Cy4oW{TyY-9rZw$Z
zuGjsi&&wJ9!)gfz64gtW_Ksa35_Iqw(RTu@=>j&zlh5!%ZuMZiGTRXKopbekBHlQi
zF33LEf6vr4tuoX^?hb!eF&y_y*cNlR#c^|PMZq(G-k`F2{6`SA>%zp>C(a`eLs^a_
zvuqcVJyJTSlU}td;C5?wW{TZWp`GQVqo?tA#xj>1ly|qCXcL21Nc~XrKY~#I5s;mc
z?pauHd51f!w94PuuGf&J@rXu?Od`V^--q+kv^HF=IbL7FI3rlNb`uPeDwO;!>lf^^
zq^fd$<WQBVMyq}P$Vjo0Nt9H9LPI+t@ILM->=%{k0D*Bms_JfMzG<$g2dgK=eCjhw
zfa|<*4VfdUZs6h7(zCve!DMEbFeGD>hjrJnw<m=PkGt_6C@XgN#LZLLZ&3m66wcza
zKSn10A_L*?n_e%qc}J$$U0*$A6Wzvr<wY=H;5<;34t-lW4r2PAl(d##)x5Qo{qJnx
zf2RfiUgXNd>Rd!c?jbmy@|gYs$gVEsGi6(A7v)JCN3ZEKEC#gZ5&g}cneIHn*9!qz
z28q>9lo{?#k15=B&Tj{tp)vEO?Gex7KF0CCldr~c*rl-F*(aetynEu&9K6JCf8N`J
zXxHbnl@_DEy`sQ5JH|dYyU(hAm63{Ol_VHI*c<Xjkv#0l!x}P2by*-S%(AwmsAo`!
zw@RWmGbO7?HaJ#0EIj0&8DWSS$}ZMeKB@uppG{<Ggvwu*Q8>tF<@HG}d&PFtXDuEc
z4o}&XU-7vlUmr|xgo_d&wcjVk84V22h$GoRb$8ntRCYh%)hPTFfdq)Dv^lF2nr)nn
z2Tnceea2;YoZ7ivTXE=iqq2&V4OGNEG*#Fl@BTaQ_rET5%wVkz1^1GAMVcYZ$!~L6
zZGk3s+EI(Rqedp`dQ6g5KkGp9)#Q)}l@Fq^e&n+8@vEyIkLix4-s;+1DJC~^0BjKy
zLKl#sK&3S+p^FGeIEjzRlz}E2spI`QN-x)&OcEthbK9rQQ^6I^y&-0E_BL#<92Rlp
z*YGf+Bd-7MlelqBU_u4x4NusE41kLm;?(!xvG+#LeTEnB{o}k_a{tKP+{vvODCA1k
zakaG8B&(9Gc7U4ioC!0S$$Q+2Xg3HaiMm48=4uaDrSW82Rgy7Voweq*3Qb4Et+Cm;
zQN{1M7t82%Mhy`|maDp*R}Zya2Mj^vTK58zMnOBl*E3bQ9XH3b3Y>Nt43N-i6G^e%
zACbq4*BI3kH({4Qo4&7Ke+*VEd=3r}77ZEh=@lJsn<eK`KO<#^zXRtvNiLg|H6R_V
z7sjtNT2Q8?r75c=`;;JA2iRbn6qTh8aQ^$e`Hw8)-<yiG(9JZqNZW_NV7pGwHbnB}
zB$~0hsEQ=vE*3t4>=Y5JacvACw>Y9^jhfdiA_pI;!|K2#d-<wiUM##_0Hnh=rE#7e
z0Regcp8O4c#rHwZ8s<Ux9r69rt5yvDTKv~F`?`7t$#eX}G3R<K42F)Y-)-u<(dXX?
z+Fv!rY%}b%?FnHt5g9IWbyz6w(Lk3bHGv&9y!mwY^>%)y$(h3bxwsn{c(`imj^`5#
zmw@mDEKs#>`c)&ZTW5nyL_DvRP9f?QJ^{J%BJ8020kbZsO#f|+NGgoK?eXsYRUUve
zk=EyKx4pb;-zUtcH%7MW=`Mxm+BVK6gKJ^9ZTE)J>y?_vW2Y4h6aoGeLCj*VI2frS
zP79(Hda)%2==-j-Hq={Xek9`M8p~$ze!6SW|5{X(V!RwL?)b7aUD~Z#esT@~HyoBm
zpDcdxiG4Z*7@v=~h&2gRppK;E_;Qvrs`=SCpZ`|Qllz}x(EnZt#Tr;=(1y4>)#Nnl
z=ziS1OUogt3EGFgvh-7211M5D8aMr$mfp%0E8JPe<_s$my8Fb6Q=Au@&o&3AHFR9>
zpLSMwcoHit_MIKYAuyL@sk59!JCfxj%6IbTbKemnO{7CYDz3Bh2jwA3uTE)0^Fp$F
z7R*t-Z+kvGJRaw8r9OYUE(6se)=cTYtQq*i;<b<FC#g~#`jPXNay{Q&Zn&%TVs5&M
z=i3ql8!D{Mmpf`s*Ska`<ULW*tjX_IA}6I6ZQlnVe88n<a~ZIXEF2!0NQQa78)98&
zuFB7+P~<)f;bB#zR9|sBBpZw&iR-ufNsc>_lW;EJIn3m?Ucj4^^uxuS3<Y0Mxp=%&
zDf_8k0dxf#z3M4|&{2t3seU@);zI-#J8w?ysJK{I%-I}{k@4AV;~_feyE*aR0N1oY
z(_@qdP;g03ql2R6R6)s_=VB<xCYqPm^`^Ed#+%3Y&e}k-l{x!cN3&hSBbm(c+%Q)C
zTVRsoMNfC`YHPTP^GWMve8Q|eF)}GEsP!;4g~e_2K9<q*<U5boh2L1)Bd0})k}^d3
zDVc88OuA?S(7;>6S*4G4b0TCAE0@WtyX?j_0J!Pyakzg`Q5fov#HDI6${x$|?YKFd
zmmJ}kF&=ClueW?uz8-;-Nk0^qkT8u-j-Ii3Xum%sxBK~+o|u?86qVLsGEhkfa#Q%j
zTMiDAPJkq;Re!jcw%Ax{e_+;b=Qc;1;3(1%;Ak=v_;($}|H9L`biZo<4ulvnvtwA0
zZ4x0W)(hznZ~2J-eXj?3JV+1ztb{m=_T4}RN#}0`HR5td#~1#ch^yl)qAWn*4-6qP
zL(0~pwx_AujUqI%CA{%rI?%>k-q0g0CTM_aZelnaqZFa~2eVFa&htIf;nrSITg|F}
zn3It1KOtXhiC_vB)ub{d6}jjHNKU}OHl&<p;??Q4`nxqyFL!$+>lEbJpW$xr`?}+7
zQg+6YR6Tv71P+H(5-f#Hvl?EpTP$`5S}-d~LKAUM)WHmn?;Ww33@(h<d-emMX@A=w
z31VtE^krrkk3?zixB4|eO$(8FA7VA5s7siJIL|bAv95@{7%nf{RE>GSUtjSd5plP*
z5u2QqW4G7(D*duSJzr%AMLlo0<gC=Kn#js>yqSWU^*`IwA>ejT<yBm%fYgF8$nc=W
zgvw`so1F(*YqmUjXJGB0S`WCoJK46+6UkbsF>%o>C67~c4}1ngYJnJzr^wZx?npmD
z7<<!B?rKNLMn(Ij{#YnwvXDlj2Lktq`BG}k`V>julZr`swOTGWY{QBJD35Mava#%Y
z1n}85oIKOwX<p(-lCA9-nYHVeC|tJi_#Gc&B@P;s)bh^Oc*|hyFQ&HZE&KmJ_TDnA
zs&4xmMnXgd1XQGvZj|0MN~d&(0@5ICU=vazA|Tz3bZubMn?}03J2%~(&*Gf_egDsS
zujBD~zrNRdUF*Yg?I~-`ImZ}tjNfm}G1;yKRu@ld{3@*CnSqM%VU)gD_l0PK#;)`v
zTgqvEL}iBlD_r_7_Z;ZRRqlahVwa5v)gD%GAmDTOr2&`tLMjBYQ`s32pVZE%YZwTj
zI-k6Le)EFCc|~5HdW^I#(9}vmc9c=*bc3>(F?jg}{;?l84`T$qn7gJ2<ytjxT`DP_
zqNL9PU;hO2;iR*j=@WJyDq1oQBVv{T)-Z1|9RglXxJ$iidiBU;X|1EJasP2xVUOAI
z9F1P>42u4vN#|m{GOV%9vW~J2H{GhoJ7x!gQp(TwRnpBozbRdwY_fKJaU~1U1S6*U
z))$qF-8N|^O05IML<|;O2TO^JR*I>SY3~o712n-^oG;p=ZJub88s2ZCW-0-Ehlst#
zYc{u0oeuRj(Ois2m#qAFBtI7}C>~~|n6UEcn_foAeZ=1gA{C@VxsQpFs{g4LGIr8H
zzjEPw7z?%u;_X7aa5P7it@(NwH0!?fERPpB-kj;I9c55C?c*n!fpNd^9>1f`LxsHX
zg<Q*-Qa#f1VZ;|-@}xSh&V!Y?Yc&Q&Mu%?ZgILxZzsLRTE=4|5-v^eKJ0lsK6$u*l
zz3saaA@S@F#s~-qR*_t8Yg_Er8U!yf_~!dF;aMn`0_b{PNfloo6uqYu@8oiz)2qd`
zU6f7YdV7*rQYcB8^FcX^7n8BG%eYG1{&-_X!vDCo#_?FX5ib2N0p{Q9%s+4Xvr&hm
z!|3c9;hIXlu;LxUCEQ21EW~KxDxmLM!p@Q>odeT}Js(DFjnsp5nA@CQjIq(WiZ_cd
zivBnZJSs_<?l_Ke6~;}3EfHYFUpsQ)Ok>)-8R^-R?nkCq+*w`PNVH7+pqJ7?B;cb%
zG-*`=D|6!n*?CZ&DoX4T{TlE-IJ5il@?%!H!~Ji@9yk9JUog#G03M#j4rW;S*k&u-
zn~or%Lb<;->xhh}otO?-d1+Bb*7vpwJ>Dbs$sZawufaC**Nuc{&go|!y2K3KlYhiR
ztn<ZtZ3I8*H4IYiUch4(1f4dIceI{kC^;rhdMuEaVKqfOC2c*iSP`B}&&n7*C_^n0
z-`Uwb<@n5}cNMfQ;c4I9$Bn@175f!seiD++WyuPWrId3yUME@$s^tM^juZ3Iv9hwV
zw`n9<&wcy)fRu+R!4TcpcX+}}l8lPyYZ1vzX)HLsB1sDTZqsploX}FrB(NYnIu^Vt
z?HWkYG$DC;vW4~0huxvd{OiyonOV%vU-(udaFigPG?S%oWo#~6PVn_nzU3B#JJEF3
zCs)1je^K6lGx5USIQ?iYqSQ_-K4&1U^n?%bAKnW^=ur7G?^(dZbxY!m6*SY`B;o6i
zx@NoiFJTSX+DbhF0tID58%ABKx;iGlj1@Xo*)LDK{Yzy!x&fGG)JrKTnHz7~_LGQ0
zIw81Tq`x3;>zU|In#B`cQrFu&%&l0w*X<pOAp2kL(Fw#IGnbRLe(ic>w60He7=>&)
zOm+-p3KOR)c#0i5VUYyxMcahLG)uH{kp*ZoRu-IeqF=Fk-S!93rk-zIotL<<1S1et
zxc&uuL}Dhht_)R7R4vx9XSvc&a90EuT(PfseagcVgwlCL{9F{1T86CVHp%+b;gx21
z3XA2?Gq9Yis*^#@;dch_^2+Q%=x|tuhIsGmuY#YjR#ulq9s0Tt%I(2EJQb!P)>7ZL
z=ZdJOFu|)GM65zK@}y&{F6|ztM>gru;+RzJ;~CgIsq<=%zEmV{1&w@C?(QM<%jH(N
zQqv{2B2X{LYK$(KL<<{1F-R>?fymUhu6V#E`t9}aOl*j78cx5e71Jk5G?UHd_HuN!
z=@A=U9q2^$&qqfEx^xgc$7>W#);AXAw!S`4_mX8eH+!EkT3Ms4RjJ0rkUxWIVET8|
zrUa~7|G-LHyJ_O>pURioK*avwnY)`P7LcdZygJG_T$hPOxW3G}{|p4+&$_c5+jY)3
zJOw&_>r~yghNsLF)d%EbESaq~!8igF!*K+SujJjn=mao>*ikggc&PMZ!&46>84LL-
zs`Uz{JKSd*Om@;a?a;LydtwCCD;5~;V*6Tx%mq$~zAX4*Qt%{*`};%N_3ue0C<v@s
z@^QAu=SjMJmYc7~?)#1{6}i+jz5@;hDQtj!0l)tiOql0ZzW&_&*(i0rGCt@h&NE4p
z!vm(mu15(BERh@M48B-f(f3e%$GP;XA=YEi9-aJX3)NfDs%urHq|4D32_3rc&P!0X
z<UVq!h>!PuqBgv?;JCvF14=9t-uZ^}wO(WiE8tto;0~bFY5@_VH~aMxs(ehE1XetX
zNktvv0{aEsj6;0+P)o~6-FghSxcHBQ)YyiP!!a-yH5ERAJd@C6Gb7EFmCgn@_`LXZ
z_EEhFvBD}R9-!PK>{)iGeJ;+Lnmr^y>Z;bOd;GMLPSypS`xDh_U$*9y9_+y_=pk{3
zmgcBuTbyNlZ(Ow=-V=0XUXceU$@vMp2|}V3qNP3}%ELyewONu2zB83?`nwLNR)^!Q
znnFAJx<d_tXgowa>s>vnUCL--a1>=I=+kh+cNMU5R_FYy2e=Wg=3&cgPpuI~tiDV4
z>zIxsH2G*Z2cePZ#aytDz;r2sJ}y}euEwr(^di}ma}sV@3_r&3{uUmNw_JV`Z~}<Q
z$-@L4=F_$ZohTF4lCKhoTKgzZm4WJ#4<H^hnEsKv@W3yWOHEw|^75SOlrz_z8_Q7G
zJX}g$IuG1NFq5HOL72$*R^mtTs>WWS)vpty?=CTrE|OIyI$md;g9E+}Ozv5x@q+CL
zYrOjs_Y-Kwb1}DVPrAo3!i|qA{SKP@+|zLcOh({Ea+%#R)ZdrkpKcQLmb%01ik+JX
z1Cl(OjHjFFm2!DY94<K$Se2(#be0ogY<g+j<<^r1p`!g>-!slDSYJ8RUvA@-scIum
zzLUp-5H#RlB>n6L-}0J%rdh+()Le4pdAaj-shh-uqFjYeYz1W2LhLsNTQvBL$1}HJ
zeeNBrb#~{tUMQGkY&?)`5LFGjPN^J)D~=bJ4na-5WljWx1dr`r9;yjKM~!x&`qA8v
z4VNXk!<Bh2w_=Aw8phpp6Mjq*K_wCa;P99U9=GIQ@HGnOR9@e&-#$I~_RWGT8vn==
zy7h&)V>_m>H*u+_)tXQmIZy<t4+A$T-a_v4NkJs}WyMqE&pTS3iL3nagn*#PZ3p!y
zMZNLt)02S@C738vyi4xW?U+3b1O5UQ%AtK?=Ou;EXiW(2sz&HoXUc3e6i;t{<h#@B
z#ZHZ}GBghh-_<0Yx7<WS--a5kUOdjqSVQo0^d93BKT$J#$aEq~Tm1ppub-9FhK}s(
z8Muy+59&=+jX{~@10}fL=VhnFp)KH7GJI&xF+H>$_<Vgqn+T}P%-p#B*ofNlROWcC
zzcM)V60u`=JU#PDA=!cBZNg1M8cO)9j0Ry3cgJvDW9EY*L-d&h0M4Hl3O(_*`zf+F
zoz9ps0{1p0;bH!UMMm8sCWb-6|7k0wr_8eBq&P{!Zu1Lvm(|4*ZUS$g;3bi3Q;Oxn
zCMyv2O+&2&Q{_`+wRt?QGZ5V{?~4jW55$b!q1B`On;I7D+M{XZ@{t!Cb8efevFy8Q
zaKw$T)lavsZw{-E-{|J9xBv8BHTq(hlg5%-yWe>@>QE>S(SdKv2QUf8f0MRQhrW^+
z2jV*8gVNY?-Ep9_LdK{0dEQtg+UAn_^Nh!%R%7$ao`#RH4d>i_PLK>`YJ3W7sY+IR
zq7_}D9uwmNk)E1F`yy}PSbyTDaz!;Y$HDjNPz{<A>jYXbV$Qr?y^}-BsDsZ&^C>oO
zt96#IzA2(FvBZ>Y*k-bFw$~@l^$_}`N93qiyKwA9Pvq7#wes*AefiB@FCf)D16;AQ
zv6cbO@~Ok**?x*K4-)wW21EV&X3KDmZto;S_n#6%*<ezbGlMfZ1lXR5f7%{t)Qv+p
zUqylB0WH4dO|!M#s&}e^+zgo9DR0wyK*(RDXm2N4E&Lief10vo8Gu)r=lMXHnwH#S
z{7O6Y>Jtzo9uNm!pUiv>8Vv5xkFUP7{H{Rx740`hJ0K1a+i>c|Duvj|!F^ka`Ghk*
zdU~C|Ca;cYu30_=lca%p8fx5Uk*u@-4MVU_sh-1`kQ?rsX`sn95Y{15;k~rztQB+;
zqP%IN9_um+oQLNIB?;$+U%#)tT$pK-zepfo0Bnx=h)Fxuc=RZT;R(O?nm){4krN%e
z+%o>PYe5u#hkwSdUJ1$gDx*Fn*%P;L(?>L-dgKT9arpOfH(;LnYHDuUgf+2GtnBDT
z=A14TBjMcC&rd=pU#6~{)@Pd_LBos#=KRK}p~m9}kA$o*;Z<0p&=lW9l2V7mi-uU+
zLo3Jx0iV$M0_1qYzh<T=QBTY{Hfdj3b!>sKMn9^~20$xf1}neQG+kyF>^?i{89el-
zFcGCDD_>r8&iQ_rBsaS`X>QV|PhKc+x?DytWwD#*Sid@b@sh}R#Pt#0jh<v4fr>nG
zk0(+pT~=?LO%#jsA$8+!#2%SVSv+!b?d1N4%_!-+xvo7-fEeP<myC@=JeMj|kUyVj
zZ6qRUh{A>4gdm`6JL5sTiiwC(4`)A>r_sJ@@Uj<O?v1$>;c05MWrBWNPYtg7osnO~
ztq11Qr_v=%7Zr4OjD_*(TJr*g5ow2RaMdynGp6H8w>=6kXhnyp>T(6a!qx^XDjpt*
z#M5N8MHN1iAqPd1Tx(=ISw3`-j&&KT>Vsi$)@$da3><5`dZD4=0_P)4dI2Yq!htOJ
z@QbLy<oQys!;h_7@WpcdrtC^_f{l%05^er2TR{vU?{9frgiJJm%5JOj!YK&YXV9ZQ
z*5Yym!Eo90=CJL2eBO={JRYTMp<ZY&N66vpy`n|J_v(cXt!yj}w%`SQtVf&gvX=x|
z#rCEe)QL5wF#g3P7i}BX*0)2dk?lSptSVfuRZ>(;DmFyt;w&|6n`z5Tiq_#_mB8NS
zX1~NH93Ae-aHHxsMV&tMLZJ2al+g&fj!B1HYa`zigfK6#fP>^hk&<gOozzX0Wyk>~
zqn<YIh2`L6?;;A08qnxnHbdk}`rN8EgA3ZVzrG#RiRY6DEDMN|i_L=s%z0UsO$ycM
z>_+<(uTdXLcKZN2q+++dF!g<Ow8^OU0L*PdtKO%IcH^Ck3Lp8pfigiP_@%i+3ao5&
zvi=DJJeQI(8(!u;hCxzGMw^xJ7VSvX4u5#Q6NP{m8k-#dbYo{Z9hB|TVTNJn8t-)6
zIveL>Y&F5FWo=v>m64EFd!|s!5S7<CPE38hLuQ(`<lG1jFBr}=jMkfzjXo%vZ9+el
ziMB>77l`gvAmK~fo)p`n0+)Y1)(IY~y*wGSn)Npt_%(JMKe%2!f!T<Km1^Y@^(4Xa
zdn&K{RyI&dT(lx}YV=7Hcl!(Vk<hTnZIbUJ<S3c1+NrO<xv8oeKV;slkh=AHYkbPJ
zo1bzqqN6`qqrZ!P{FwPl1c0R#7>;Y5MJO+007eAZuyV{CQRnkE-vG!3zc5DmeA(&h
zP60Isx0n=im5!Gi<IaP}*mi-^6lZrn)r~+38gn=>Gf~cSpv_k5kOIWc;LYLS=4|6&
zfk%OgZY2}`X@ZQP;??1+t@y@z&TG~hZHY)-D&I(7qr&OSVgX{*wN(d*NhuH9CFt0M
ziimW{*Er8CAHSqsQ?0A!y`^KNQl|s2qy8|5g}z+Sv_2%6dA_ka)J3S)<+io8{k7Bd
zQR4ge6S`v&X*N6{c!9G<v~EQhX~jvD9t1zG^qOc_W(EFm7gGzmU53vQ14hsM)o2(*
zBA}m@Xx-t%?g*UY;jmp|x=I*C3Zjz0CL3n%w12(LEBRdmWP6oOJYFFYL;^~%JCXv&
z@+Q!owS@od&C3kwl$J@aIZ{fC89Ykl^A{6RVc9HERdbZ8I^Cj7bYPU^bs}8Z{v{Gm
zckilE$aLJa#CmA*G~?`RlAKRH=Zt=xLs@*Eo^A(B{}Fiuq5y5$NFFAI3)mAXn@54>
z_kfWt^NjDN=K>+Gf8Jr}Q<FT;VOwV_$yyHFWl*J#w8KGfHG~PyV&7O1u%JU<+(7|w
z)#_<cE4}coNin;lJ(u$)G`2;ick0pnRnfF9rtI2p0p@tQNO7~LvKdZ5V2<c$q<RzX
zEhv{nFtDPQ$y(Mep!}ZbVl*T^@FzgXWqaNmfSV|#^Vbm@R>fy>m7f4m^~h``zzr~8
zw1w;DsFTff4*5SIYb21mp_`pnIY^NTp1P1+psh*tcDz2+0#!@*ag@KTwYA!F`E2$M
zfwfi6JU*P`J)IzM%tMe%;q{FI34ug9+3L9008`eogZ<3ZwMzK7Fx_bL?)r8*mfdB3
z;@NsC;!R`Y5ErckiyjZH>c$Tv3a=<hBv)2!LN12y;}bb18QXKUC>|ANxxqrbz@Rms
zK0_oVASG8Xf7XyeUZ-d<VbwLtiAD_rY;|-3wuKZq2`b?Ryt;Dfhvdk!j${>b=cOuX
z$FXvyVudjcmUY5MH;M$@5lxY_9VAc3ghGzrRKu5%xi{D$Rj+?MTKr_(aX3y2;B1h%
z8QFwsPdNJ!<~o3<1~d;~eJlqo1ew;ep#H`SGja=j<-F~D{*dd6z;J-L^`qVz$FI}x
zwN%&Nh4VUI`AMws7-sF^z0ElFeQ4E=A~eAyku<9sY{8USJ}HwY_?E^8p%1<H2+&Ae
zyoM7?&^9>3Ve>wyj^R~vZy*CaWkAnZMAJ~GJE>k+&vmDx^+nZ*;RZUo`@}KHE6G;b
z1kxiR+pUlU7T)*TWz>9mjB5>#a7|lL_k4k3&Y#z(q1EEW$Cw|#d{2B!XyqrQcva8;
zrOKjiz68?qAScBc576<NT{5Um-JOolxk_}!a|7;h&*ja)#i~@w>*Q)uGD5nyH<lle
zc80^!>>Ow4r*ff-M`c^@?3uep_VMT3D!xp{<qN88e~iorb<6&oJ#|JEyhp3vmB>3{
zA;?B6v9iH5a7)qTQp}EuLp}RYBVFuO5%h;om#S@v%*)GruS6;K`E~iMf~cn%e@gLz
zMs$23r_6cE<@PUz6%S|~BdtqZ?@Qyrz*iZyA2n+WVW??N_yBE#^ivYq;bq7Omju8A
zQBzW~TLqEw*fTJ)PHDaXxHX5@C9{_tj0mich4pUxn>BBJgV>ywP1i>t!nN!_-{6|c
zqXv;q(pFbkk8ZQ~Wt|3N0li+g644%#1(yA|d&&YBRKV)Pdhf;aaN#(Ny$Kn1gIroK
z9#p~$c+&*mwIE2TY6kZl`8{!o29VGx;FVf|)zO%26Dfnvk`4)^77go7eDYWi$dDZl
z5-tJnj2{ixE?wKmCy~}(N+Z7PgvCd*PE3HxP#Q+5`nw-QL`Qc5`P3^%9e8#+eXapK
z4zF-NUs5Of_381hD?x^+0o$=YOQhxK2FN$WZBD<pVExXD*zaO8SG!|yL?W={lM1*`
zLTfN)(ytqW!g8imUWYau%g!IHv(XP6X7)lE!;}NCeG_<N9ID1NfI~uebozE*^#-C2
z%BDE;LXcWccbwE48O>uPQ;eVN1>KauC+CPT4<*n6i@(3K$b^S8503u+xJ!z>77&$;
zXx6fDVG6(<!VP^7!blGWH1P<Q@ex;2JO!2{5c<RDBP{5SiZ4(=t_rcTn3yHa_~83f
zH<^7UUy_`~t05Xsr`byF*5~udMlwAo7ZGyf(sLb-5Wol$KH%^*%SHVn!BS~TE_1%c
z`NR}!NCg8mSm)D#aMZzs1$jSlCOz&0(u(<1ul!~3m~aY6R+;(<zg?r4x27~g-uvgO
zFu<V71$*AgR4jO$atS;w{f<f)0jyp3TY4HL8vw9iiO36;&=+{py3ngA<=IC%he8FU
zF`Z3w@`HoM2Qf;m*O7QUewz>TzgZ&ksB6<^@{oY?f6ImbPxxS|6SDnI=~)HRy?=uY
z|5H;ATA(RMR<)S+?{YToQX2koY4P9Vg=k%Adm{b)=yx}9ctF#*p_x?ZZ%OCBAZg|#
zq(naE8)jjoKQ`_01Df`%TMwxHX|%kaD|q%MKEHiVj`YW-tD->DRr?B4#@~`@|1*lh
z0kpyh`2decPyW+L{@YLsgDHTf;41CX$lqj%{57hQDJ^&@;H;K<v<H7b`rS<m2nT2i
znqi)l{tb`(*QiqUFJkn=hZg6MQU8AQyPN)m2SC$=o#$4+OHle>8Qi~<!F`*1$bUcj
z-3?&%{$GeI=EgJu?+29tbooDv0o5mFRKj8SP=<xqyzjqk$^V@&N~Tz&5{|=%<X+S&
zR}i)6{ZY=SkdQG~r-4iu7Ts!2!t?i(5?#$X>`H_l%Q3ct6}O%dlbMs*DXt2!e7BBf
z;h~}C(Gin(u<8BBgdeQ<AnOcxGz!t(-Q5uvnUi$7<ypLfQ@;g^|B@sp)D0k2`>VMV
zAD0e(GH-0U!*-tFML%u2`fi;_+u)##-Qu{SX8AG+$St?M^YWOCE^+uA<~ZV?qMI7f
zG4!$XC(7lqiGC`Li1XZy&%wea8OE}||3i@bQ4uld^Se>EBBfjgMreWdDJh%N_=9tU
z6+5`o!smX$0pRdmycPR>dQh$lZpJ87y9+q<7w`+Xif#H>)-$ovHNiGfBvV{nD_zle
z4l-Iv;X}O?`6s(G)QH}svhuPrfpw&Os^4U`{Vg2X>|XcnckIIfdZ4|3A+6iC=!4lc
zFGLurH-TH<t<j*tkKOo!$$37sZN=ku^HNDqjmD<-<U^uJ#-QyTQq+Ohc1PZ<&!$Do
z#=e$$h>jH%?QyD2&&V9fOf)v3z);n{`VGY0QQkuo#tXUIxLAL-?va_xmf^U~x7?W!
zZykAv=tJvGoSaM=6t?{Lo%a7hAl_LZV=hkHY8P)$my10q3on39u&C=rm6*sAp)RYB
z?C;+tmFT%$bkxo8ai$vA*>`tEtLr<pPLeNvY|VFm-UGhbBG9b0i`|-qF|#x~S4_W5
zbdZ6oCwquLdG?ewaf~i{k)qGcVY&Yv$bIYk^yPdS+s7*^&Duo)0=CcTvhmJo{Ko;w
zS}JnZz?oo~P>Djpjn52artzv>(Q)9lG;9y0;^JZ>fCL-VClO^8JWM~@n&~4J55TXp
z28$f^$@B?Op9&mF1x#v|m^&M&xo7p-P3fLWj#<y3l{4vISU0Q=D7eXw7P#w|TWi^D
zH!km7l7@-d)G`nd#M-4<llXEd9Qr9|c9qoMh;dFS3IQ1%1UyDDr8aXSSeq{xqnWW<
zW59=2g9W;L6ZMb^&;$dgziA0?1&|HlUGRJ6@h=<XK-Eufvg0&W<gA_6*y#OqHWM0D
zJ~j@0Yb{{`R-}9v@+5TdHEUnNRGEbhR^Z|yg~JIybDKR;8K0niA?Q=S$Qqi-WP?cA
z@-{afuj88@ZyC!hNBKl?fC|*mbad2SPnVBYgKEV-Zo?}Vb_JkCqo&CbHs=djFsg2y
z&QI+&=IGp929WbrjBa#fRL)S_rbimDJl4(}<y3_=n}G9qB9#OQ{Q}4B37XxT%L4rp
zX`to;BgE~@y<@L$VSN}L01DB$1gamz=*Grs+N~bZ2Rwf>v!lyrG{oCSfM>xMBU}5v
z{4US~DF0OXbY%Et8rh>GM?euBh-wxn+hQ<{H)?)4zcp?9vn)c8%>t&q*qcG0p5%Bl
zPlQZs@?~S&^l%xT)EGSfgamgKdH)dqQ^aFp{$Z_OKfkbB^d_)GrH0ey9=8&(LAA?9
z*CH|Pw%T9v>7#20>oUM!j67H528g+E{3Lg!W8&ak88M!WP<}LCHOtQS_M!)wr*qnt
zh>LkkG9Kyq{+wZU7lW~Ucm<s=MK#u`{?!Q)XA;`i2LuVH-u4I0ufa7(>r-<SX1}UF
z6xz1-&g$|RPhx^CAB*z0&?FqPzdx`as((ZICB)#CR`42~&2(+gU=z+YiKRXGUa&GN
z`Ft_C9jR8x;MbqWfg9Njyz><Q8Cow151mdkR`*xp*|;7sszZt0Fl7DP<|H3d3LXvv
z%S%G^si+p2aklL*;z!eIQ=!{aB{GS4t`0Kg+W=lf%0b3uSNfwj!9Y8PL>2v=u2Q-9
zRK$ie9}EKv`v;%ZD)IVEMY8zfR=6%-d7K=~%FwtwFVo)Ob~dGB!TWM$V<fM$EJYk4
z-%sBmhG3aN9T4o_#HEN}S>v+(WaMnkAIfgx-vjgJT3IoE-V%|e-SB&^@GtW}oG5&e
zz_*crA+h>Z?rR$Ql#BCJS>n+lh1IT@*Vn1hRYFAF)lLp=e%IUNs~=X*YKo+`qhB2&
zqa!<P+|PyBJ`Zcq6TgyNopH(PP5_tiA8saVmts$T+~E3{5zW%k{(8xB3MjL!JT)xW
zS2Iy-;W}+ySbLT)R`qxgZ1Jz$Xi_D~)tdxr73EwdM5v5<set=@2u4^1yAJv2Dh1_`
z>y(PBSgWwdj|p+gFr8m93#jOL|5D85-+Z9I`WDhqhVwnYSwB8W>)25dWNlHtS8i3N
z6p{YA*9*Rxba`jRM#?$ga$7Px!c*Uj0@XXuI>t&qkvd<Mu-Tu{@x8roHUHJcX5fwU
z8mzC~3Nl04m$Q`3h2_6qvMN25Kn${5BOex{=7UJ|%{IO`Yjoy56*`Fd5&Me16F$Vd
z72-D-qO&%T7cAD9qB{0vXLVep`6=#dV2OuL=k{9S+hwEZ3NsSB`|vkCFeo9<Q~TYF
z0Y3En`#91hhlj>XRoHKsou6iE9{*JfKnhtdUiflaXMG?qS-i|48jDc%TS>+p(DmDk
zoWSehOwPtHc!`pZ{hJ^%0Xk}Y7AlLRs48*W9RnI`3oag~koo!SzEa2-7N3PlZW2j}
z;pRuaE}DEYlcwpqdCG$w?ZS?o#Hn;}biwK#J<AC(xvBO~`4C(IZ<7TJ)(+ntw|943
zTV50^W}aWwjy8|*B*HP`WSdVi`NrotPO0&dOXAdOw&Roj)jMX4SmBfCLJc{OWDsc(
z&zHT{HGQ6Uz=_D@Wi!vMtE^8QSEM6BcGfZAaGfd@3JEt_<<Je1SEkvIiJXO>1ai2I
z1}dH;^0`iyD|;Jm{qg|=-pN4rMQ2xZAc2#C1z+hs6Q01L5n?<H4hLi)ubNa)9Do2V
zH!=qWfA5cb(TJ1F)Kkr7r1)MxCgGGHn?3E?*^Vb1?iex!G#*^UNkn0+BP!)KN5&)f
ze2suVtxc}fYUJ0&>DDyMCdUVplNxQKS!PJPv4cjwW|_`A(s;m4v9ikQjbWDHP+E~}
zzlUed2e=t{w$^>HGzlPo6Jj*8aoQyJWitSuHD<_kwC0@6e9LKy3v&se2W|U5LMOT1
zRs-$&uCcpVZxIqA&J6fn4gq}KnDXgEEm_Mz>ef(+2aDzywN3r|-dye78i~$MX=5N8
zX%OJTg_$)z7um)BAmtNDOWui2zCLpmNv!s4+Kl4cjf%I?H<%iG8Hb2OBu5=?Kmiac
zQ!-_@;icloL^TN(_x~zR^I918JEL#+mIi;;u48^R1qhUMalQw}jS{3q&O6gPR&uK}
zGa;aIi7vA-Jr=XC@`ltuf?pNn=H^z?7(9ZHA6hJO{ZRgHN}j;_l(lTgc41m7vpN%|
z7|guVIpUrfC1G%Kg?2CrR^SToYXbr~p8<}r-wSt&Caz=!ILpCM$rgw2xRzSmYV~W0
zA>j}VMO((9t5g&~{%OH=DT12PcYJ{5h+6oL%EtP*lq0%^#2><#W0@4iyTp7RbcJjA
zfXO@kB7cKqvi0h}`P0I0aU@UUjM8`^{tAgIh~AEGA3AJ-|EfjhmB$9`2YwC$%g6nf
z?$|zXvItw}dzJ;fT6i)>yO^_=c_kZg5;3Jx+<b!u^K9O~#p;0lR@s3!@!ZRo`e4PT
zn=_Eew;uQ6AG?=5+f~;Gs>wwDvyJ?xu@v^k+Z&}B!mE7?U<-5dSdu`cgb<)o*ye0V
zlP%NlRp%b=E97;Z_;j$Z4I8kFXfxWAw*`E7P&jvP`|&?`w|{wIa#5a8xlGzm5<sL@
zT#@(<7}a5PudS`}<DcJn|4aWQQ`Arg;apM(d8joS(Qi|f{$2otmvDi&)%F~0|KGas
z&tM_@82}xa`ve635s#2evAv6NE3ZJje~R3Je)$8~LD{dC*8egb|MOFS<z3{eb3>f?
zdm;JD)|-m~;DOe{2g5&i%v9$NX<_jQlK+Fy1D{cLhaNyb!GK+Ge-GksZa7$g@gj^C
zlA!%l3`Xvybq61)RgTB}xnqRUz<33AC8zyg%q|qb50n{oEdP<*e*88?S3c<KQ0S`c
z^VW@Pf#yR0OYddZ+XD!j!{C|4s2JKh?H=rMCp6gotiXbFO(xkx=VrC=MnkK@+M%Z^
z`>&Dxe~Mp<Gfumy-s<2#cEy?UqTa0U-Y8keyrzD&cCaEn0ka5Z(yMyoez_%Mcf2u@
z!g7*os8{fVh#d%f3)^jy++UVgso5pZ3K(z2;1qu__RuW*SbJQ%-WnSgKP95)ZuL_|
zRdqx<+2U&64bp`#co~DoEM#|7X*pG=?0(>(&<Qi7P1~SL7oUd(3z26SuN-V07N!rs
zWMq`tsdPvJ4q?}OUSC16#%}gYV?Aa}vADP-Bfpf14uSTYDQq~tgQzxdNx|QM2{)tJ
z>)zFi>d}TspMEJ|Ga2Ooe?QtD(!M#K^N9Ggyws-9se9_K1aO{s<x*vfiDJ7QVW+df
zgU91(*plzx>pO!NaOt58a;mD+j*sRvDP*FdVL!Sb6L5aco<96JWz;$>b<l69A5wzo
zZQE}8bwSzBk_G*|f-S_z=a{?nYIz#)wLDT4`JkIyHF-jha()M^r2M>7x&CGl>0K2D
z34?`d8RN}zU9LiIe3mE^_iH@(c`MO!_1rDY9v~d==17{$YL;dSvK{41R;fM;onsQZ
z9kE%_zuDg`HlC6{?>%+5bmKEm?=cJ(qzk7F3{NPZD0bNvcRt8LEboOHstK8_ayV}-
zVRsJIyGq^1q>G40^oHG@?cRpV5SHz)D+p5c)$aM%R4==oH$raoT#k3%ySZO^-_pjH
zZ-qDzadlB*yNeoZhAUk6ZtNZO)Zh3YZBA*|U8sA|W+^0Nb~fQxpOU_-?SigBE26XU
z^5VN|-uufAx8v|cg{=10iR@G@eIyXH59wL=iJt41OyyMb#pih`c+)Ro+*&I2MKX<~
z`lPcj`3!2Q!oo7cV^KBjeA&ZhclKnWdN(ET{7R;<+Wfp%$nEW9MOUbe$EnZ?qyA0)
z<9CRW#f;r9h{xWXUEde&m7nN>`2$K6thEPGSBo84&}74tDTH2xV6981Zbe`8BYc@3
z=YHX02O~l^H9rWsL>;#$Sa0)Pu*r@!(!j+apW~Bvq>vfgfYQO4fh4yZ)$?PUWNb^)
zcjF2Ox56J}LgEN};hXDAA&iY_v8*fp#^)A>;=vL5`Hv^+41=%cg*-l%lk+05Z|9Xq
zON%`8&nJTG8S7maIGxwaDwe0_E-Xam`aUlxK<gq2k?xmp#N{jO>J`5qQghyq<Tg5v
z!&K8x>6JLu(<!k|`>aIy{o&Cy{OX$XV213bBEo_LM=6*T?Z7wrR)7Fx_gy7IfAqBX
z`T32<O|T9VJ<O%<cUF!=@Xom1lJ+Ctt!m$e_t)9&R<}Uwlko6mM^jc!f><`EcR!a+
zk6Lsgz0oq%(Zly_#n?C>-d`~dhzJdRId{>T+;wJ~w%os9Xt#5PrkT=<YdLdr&Uy<^
zsQ;wM>)2f;h`k=m?6bi^$G{LZT9q>Qx}r7`0okD1vyRYXh|E(}7iANZKB}szkuA@`
z!&uTCxlI7mR=h=z&6CeYLC2!D-)gSrq|S)Wf6<GYo)g~I#a(~%3<TLp06lFDB7LcR
zbd@Z0wK2w-YUW#Z{>wy&{&ep0W#X<T$!-zvx7G)fZtDtlfPU;mnJLre1{G=@4U9so
zjn?MxvAw@CH5<w-1IeZsdGc}}jKuD9dz?!ULhZyVD7(VYI-g<%`QeFoHNKUw3QBgr
zdO1;RQ_rLi<25*GsD;QR9WXMoM*q5T>&{VC(P6SGnKIY(vAta#tD{K1@h*(3<?QL0
z2|yQesj%N3)MU|R2u~7tw0xL+{*_6qYPvkX%PgMqcCSZ>+hi22*2DYZWtY&+w!UQi
z4=%3zdJTK%bJtOTfs)~}p8U8Qu-=J`pcB|z+tpUVN`OeJ7pP3sLbGcu?cUc5uJUt;
z=nEc>zdcxMI-NMNLdPPFirrX_6|_qIe9ovp1U+&@-)$-1;Hfd&kp;P}<}a_8TSKO~
z6h>_(nF?$73u>`FuC8rle6hBdkGb)sqUF!+E}`IzEZ)y`=`O$ZljH7tjmkAW))Ki}
zZO72P1}J@F4bc$;349)}W1gnIygAXHi>%%S7N2e3ku+}WTIV3pizpUt`e6PWG%#BO
z#!!WV!g-9i;a6pJ2POWCv*=|2brYW*mW=zv0JoQ_+oSaW5UDBd^unw2xejdiqk6le
zGmJp_30iOT=hAg7Ym{;-2#kcc<AcnRU)SQ-t4OBu36!DdE`j&oTx^iJ_a>+%pZ`kk
z7`r)1UIFW0JQ9$}R=Sxl3Dy(<HhzrX3lDa?dh~Hl|GMWk+|r?!TnQb6cRuD~kjz8w
zW>2A>CD{F<%TAHfvhEDt#_3PrHaSoImV{EsW07F#FtGksozd5D?NsnqHNfD!@YeZP
zXKS7^Q^Nea%W+zvLd*K>pdj7B3>n&q`rD$<Z`z#CV5~q@FlJ0eU!`hdoBX)dWqXtC
z!=0O8k6wGq)ca<W%YIRmVHjZjYU}Xn!-lNoSzke@d;~NMYO+>23<uYJP6_3_J+Qeo
z>kaR7J7+y|&yQfy613kF)~vS;xM~@@9f)gk_Hn&z)eg`(CHFPN2uj4GRp<cV43wec
z=(%^Tyra>#^QT`ND}_<}qU#R04?6m;LO&mB&%vtJm1#7CvU7S950)d<@h8i_^zYjU
zo%vagfTKR0VE+z(5FR3LXiv<vB{K!qU}1KeJ^C43tGp!mkUk}SkuJgDrcEs#XIic6
zY1iNiV_N4g<mU&W?x(2;@=s&fn`-7w9R8FEv(BdiAg43QO1g~AmMY_^5D}Cw+ru<+
zFHElIWhH@A>c^W7Dy`Ac5m*#K1-W>u5<=%byrR9P9J1(Bt(#jDhl91+>X%*xKe}bT
z(jK`@PtR&pN=kRt9C{QP6A`OCi)Q3-p&ILDoGf*&7TZtpu-zxnObsgFv#AEwx-EQB
zBw!<GhbyDnPd{siikSm%Uo3R(F{^z_AKn~qiiBD1IxQCclV0x0)Kl}Xysx9qT?~fm
zuF*$+vW*h!$HrQjCxj1SYIk0>#~BmSABDQ^gbbv8!zd3Y${tXatRI9PPftjX2kkbw
zd<>O|LDb*2DFEOTtq^Np>c@BewXR-PwuniZE?=yJSxOrQL!Pq`wE`^*tg=QF^l`UO
z*O1*=+DmL=4%>-NY$o0Zrw=>C!g^|Lzio}JC6AEh2fHX}QU2bv^WK^E>*xIdL+7<B
zZ;)#(@{KGVcgAu19A7{B_Ikx8EfY;bviR$vN=OhH>%+LjVXLv+0v*_P`<FMh*;4A2
zR%b5zu8gSKQF2K<y}g~W9Jcw)H<YQgn!KO(LWp^sn#)Ouej<jLw2CQs)H6MV`gX3a
zf)2=Tcf?}8IxO(Vxx2Y)4(#LUafIeUuox`+zS&<jW2hUS!wi!ib6LAqNIUfNNOU|i
z_EynTd=JuN$m2(se>bmhz{eF`VEPnW$=Ro(mY^U}UMGu<w)8D;;S>UHKU!}+R2BH_
zc$D2eB#0Pf4bq$MrXRDK|FzzDxii|HiKdj&3#+2B<n&#pC{G}LC845FNIIh%YQ2vS
zBS365B#m0}$77QSGJJP;k?mVLUt)D@y_nA@kMQYx_b_4~D5d-#{o@qH2OO1PTH36{
z<x&fiaOM#k{OAi4ZjR0^5Z#^sIgH}val4>kl~?HB70ry?3?ea4BMc&@5=|f$bm=bO
zGgpx%3j7RmXItEZ`SaGz6GvUU%=Sb`Eu~AGT9>a(DfiWAq?K39YMLXC45|yVlFnG+
z?^}%m?beOtGsCm^tGR6^SmrLWc2$RbF7U*%@@q;?{Gt<r<ayZXB6v5QStV&5@?hU&
zdy|a7(k)4gL!?BO_k6APLnbS1Y^DZuRcOfvF<n@C@BD6q{N0Tc6N%uY5LeC%TH+Z)
zObaKFbEn}j{hZ-y97HLLi1;h*@#mjkSafx42d~uYo#pjhR^(!NjlWnmLY5K;TpauL
z+pk^jKS@yjEfEo@kRsAM-RL#o?Hd^4Tro?}Jy$1u2X|f16B=iO(ZSq;xLW@RlglWJ
z+z>1i<%ZE)1JJRJ#qmZ{KFDsF2yA>ejBo1W>CSZl-Ac`dbYxjiS6|>piD(+6YBQFR
z?52NPEeP7DBnO;d9zLe$(bjA0d?vC>oU-Inj@{e3J_s*K;03oPy!d1U90(is+EAP>
zm|>z8;fZP6R4UcD>tgx-H1GBrTL61inGm|X{^GTLh=B!LI@8RkRWTW+s<Kh2Lv|a!
zi9#_bgKb(+U<lppre;FqaF6q$MDPo9hd%z>T&6LrnIc^+k+EJ8R~;2q=TPyT{Pb*T
z{qYQK=*ylML8%G@3*)iti=!yP3$SG0M$UJ?=f(GJ^)8OLnYnx8UXl!Bl)X!InY;4c
zZBK3K+Rjg#6>x37D|YoavG;E`UajOIC+&&7x>cQ(Qp(3uog~Z4eul+1r}DZFj>^BT
z0~;hCx*SCS^oQi!4T@1yoT^<_<@@@dGcWo<G<R~^jO%1FpmaWd4e4sL4=4zNlW^q1
zWS>vJ)<0BoUWnxW5I;s&I8~(CmrEZ}f4y1Q&REDCfv@k@b-|=}QTKT<^b*bFyg{?X
zI1gei7x?h{zJlO&&F8fO?d6?nYdldW;kIyvdh+_)v!;VYk1HZ)NQWIk{t`<ixXx<n
z7+9IQ*UMab?gzZMIH|bND&HMv=FV$Mvq?@mNV}c2j7tpixIE!@n5tM|)9gceb4_GZ
zOO${To*Q^P&^r-sDxdRXf3#X=c>#SV6noCCI&lHKu9PGDLa4R3()Rk4gvTg4Simls
zT*>ULNQBM#z)9We+$R8kM5J8*J~l%{{pE%F3J_yNaBgymmo<)>F{&4an-N+aZrix^
zP;^))dZdAj-P2B)M!ufT&Uq{;th5g-9W)mvbDB)2V;F9^Rk|UPR7Q$OeiLv4sYQ1?
ze1Z}QN)UcYb<Df0+Drgi9C_^u>B<SG-9jIudrLBz!hFFof;vSbn^b`AZ!((a*CY`b
zdV_L5Bb}X{y~}cK7*w|Hprq6(4tQ08@<{SwLbsDbohOOaD?!>eVV6gbqYMe}9UcSz
z2RLYWv;kjV(=_0kC%`z!I&TFx)u8B8aH&d~BS6q@<SKRIj1=!BQkR#Fx9yy!LXw;g
z2>86SDtHZV)&i0NkhD^BUi6~P<GgNNlw)XajX$dX*6YWRDQN;?5b)AJ?+Upy>_Rn+
ztx}dcvfOFmB;b{Oh0n4NA6<6F+ptD?+*FWd7^%B)=b8aCgRVArf!OU52~3FnsVMU)
z?DHj`&<|cPB2lbsxr}?Z>;aMJ>lMUG$53Cbj@)%$vXfT1<<v`n?+wRk@>R)ebG!P+
z=5BM&K)`NZ`MNdAUFc?=b!CKmHfK~&@m??2Mepg23?*c;BiUo+(Lt8Sl{3h7=gZYV
zvfEpRHzq{X8+~@a)0uBC`*Zt3q{_4>WCmC)OSn#>_`1zX7Hh?nGUo&(HU`TYx~d%j
z;=FvEQ*Uy0x&4PGSgf9gDPYz`&P||<ebY-qh<b+e;aW%Xt*C!MD)#ob8+1}PolVz{
zJILDZq}%K%wHyzT>DqV2jUSW$WbK<ceyxoHDD>_5!0ED5M@#y(h4T5HVLhuDZE%-%
z;ppcRG2iK+gENzQDw~?CnyqQl1@-v-@hH@dfQGH}N6Tf1q<mI~<3b6K;OYGV3EAD%
z<Gf9Mk2sEx6+KbiTm*Ko^yN5-hUdCx4jb-SAF4}$`U@xlROegKH?oxcj{1i$-lOR{
z$iNOa9ygr7-B*g|vZB)O^OACOeAIgg!~m8CV15BiO|_u}B^b3rpF&m2)EKp0rm?Z{
zgql6)40tau_n>@QhQr#zVPhGwqNSpm%9Rtb^dsZopi3zgvGiNQZ8)f5ZGU$EQK7&k
z<Du(t0i*{y^c>D^y7p<x-)iVvnU^8@YIlslnETx}mPdjI!t+~Rhv-%?Hz13Z3-HCX
zq6d~})HWx}v?1Uvl{`tMe!Yqx@!%oo-~>dR+N_h|ZkDsvkyngYju*$h6hG1MwDq>_
z)JxoK`p$8+VWk3x#=yMy<r8@m`(fTLJTze-$NtQ-BVcn{dtjn@oH7GIt9ZQrX^4J}
z^GrG15PjR+ZYu?oBI5~$BNT&oZ5*!Vzoqb>0mSu}A?56lPv5Y5#~YtpvcR(wpUL2B
z;t&gb57LAU2b79vABoJ(@Rh@@%R1YFlBv3$Ge>kv_f2^B0z}I9Jj3>)P#_0E)M4H}
zJk1xYvvWlz{Y)kFDHbskckd|{QF7LKGyTxYg#Il>zZdhsPR(W7pj3q!pW||f*ffw-
zsOjc7ReqaXd*~Uk;k0=6j@k18*HcE-t=iLBPDMkGa#7{sr<~?LVAKN~%5n-EeyvZB
z3+Y>DU0F4rJfd@i^`}4havLi!YfDUwZkOd*zfW1XJyo%LIlDbIGZFi96*`sYD!Cxi
zU3B=f6sUCQ=DfAFog)^HrP4AL9p?1PhL(&yN-0Ai`~A>!m4eS`{vY#R!umnK_P@*e
z!H-&IrX%0<l)RySHe@<BDmU!K9O7s*CCWX~nPW1SWri&jUXta|ZTzuP<4q#JZA1`p
zyL*v?@=BBY6C|%1k(2~q^tM93%w+r<sQ?~5EL2osq~BcR9=JvRD?ybUc#jhHEYyb-
z;STHxH<uO|jPHIa-_99yB`U2Cwu9^nmP3_6&+HSt1=~V{Jv?tzTpdN0^`YYTSH9DQ
z@Sd){#i_6vI_V+GmK;bOKJ2(>PGEaUlgLk+eZb?o`V=Su`7Sv*ztnOnv^NPOlf6-d
zK~28Pkz~Zy)@P_z!6SqCA%AJ|7oOnU&PZ*W>vQO&V``kG?$gfmBz|`l`Y#E(I!A4~
z{%|E$wet45nJMm}vb^Y#WAm}0*iY*~$=eti)_t$$H@W#HXuLHZth#kC#7U}7sJPY6
zc%Cyfvmhwiza1Vx<684|&iz%2Rm`efr100K&f>=J-+R)Yj4F72;7WMgDtmE0Mhz6S
z$VBQ(hIlJ^BR%l^k5|KzOans{Un(6A98B9vr3o9yX$i8Oez8s5@%AYvD0Df(DC1R*
zVjd}4GEb)bv(1EM*N&$yCmbU=bCSur*R4HkZ^l8BHSUp<kf7k;7Xnc=Zh3>Yj@bAv
zs~nuxqy8**grJXf9~RQK8FyC2S2S!X78MKlor^yhwH&k%=SkqVQ3$d`O+t1=J_z99
z;mM6yjJ#C5vYe~YOT=>&{CXeLRS(*goI7F>hSH{|0sD;60jKzYsZy`V?vOP3ey>gE
z;@}x$xCY^M?Gblf^x;N#%o?344KtDR{a@k{%8R`c`TnVC6zdmdj9R!%BEOTIzn&jF
zxR<A~6I0D?+eh;n(u_8_9!}d$-3J6J64)h?($01!(Pk8!<|D?ZAH1ko1|Mf2GYT-M
zo_wH|fE?EwPhlDLu?#i0#Dd_q*KvYUJcSmW`AWw22)z%RFXUKs`=MR0>B9p9F?9{p
zt>UIXRG7jbJErj}RkE6niH>gz$3s!Ve8WrFpD}NwD`Y|M1mT;~PF7J%FWUCgx*O1S
zRsMIhur$M$jwtGi+xQjsCh}+*GTxX^kna803(%qlhR(z@p2U{G5^!Ag>!zt^6_&UV
ziRmDM0LP#x-+f!~R47ix`a#AcVw0?-;>QPc2r1eiQYlCrorY*wSXhKZsK%oX4_G!%
zh4HFrzBUKE&mT`t6h!6Kh51ZMYtI7o(I$&MLRwya7pvow_8>J;^P{kuvZWI&0!(Ok
zhJvg#l{S&Knhwac#YikD&0SZ`8YsH?VfTAWkj8oCbBJLEQ3T&Q`FoV#X!ifkkJpb$
z<VR0sr*m3bXMYZo8Xxa;{3v;brtpyh(GCYWbbO47*4QmIAB&}${Xu6Tx?uRCN#f}%
z+%6ghiZ3TS)0sl5`RdJ`E$_B0w;ywt=->yCDiZr02d@t1+vjoy69)wOD<PukH*@lB
zjne4a@EKOMfJ*$MEfqL2DTHO4VToR068YerS-E!zzUrqk>i5CxWt9>m=A)x+B)Bcn
zu<yt6!hu@$v^3u+V#a!i#sb3)i2l$gVRGyzcV=rkx;YmoL$qVim~A?fPMBkppvgN-
ztv3`5rZiDN2j7SSZ~3{Dzt$m3MHAe7ougXe<?pMUI8z~T+v)TSEHNk{Hk;{cDMI-$
zn9aD$I7;lB+gO3l;vq%0ZkDx5-3RJim6rHO*+j{wuRf53$2dj*>h*coM8nK8H>m<s
zdbTlnh*91x1tx%;3`-ds5B-!;$RG~4FWcZ8ZhOL3mkmEs*EF-=Shh7E$V53N;`xz8
z${RKf8V!XdfE?b~nhs<NRGXFL=kYIDy#HgD=NmCJ<luO}9zKUP<aDS}_yjzCt^G!d
z(rkqo#LZ1%-6QH89`eM7t<X>cYtT!8FEZ7*{k!6Dv6aMRy(@a+L*7glW|k?etr;n5
znaIqY+Dnr>9zQ?7qupYmNTqDZt;jH7i2Z|tQlE9<hp%>8UFUj4sw!0X&SbZRqtG2~
znHg)Q>&}axacWf`*p%PUzeTw()V8uAoFz}3u^m5VAvMTc67IefcdL@bJx+*N-WLvI
zqk|_$sj3*I&rV9_JCTzkA^-QwIowmudG6x=+p8$%bXUKy;ZkF5e?y-hSi@U;c7CwB
z{s$PPKZ&g(jjdC2=gNEOfmHcU%!EpdE?G+}tK-ht?jVzL1)X0RpWIvb!KJ0Rr{YYG
zkD-pGhLgqb7JfxIofh~nrEPba$7;GL#;N8h`a*xcSr=#UxHad@QLfNCLi{?f*^LvF
zfo(`hNo7(8xR35OJ$zs!mSXHnTIzDXt4Zx#+IGf0Ubf4g`?xK5%cIn|apb=kNKztX
z&J7Ng(<+w<n{=H(&9h!8E?9ywjm}I|Q@Prm(tNOnvzoSA8W&}?H}OSe^TdQ0oD@&p
z@&oLU?kS&ANM)r4v^|!EGcR5iJ8qmlN=VaB<2)w38UtfBES)b&^Wy87Q|{uD3}zfh
z)+5B*cG$c34EjHDeG)(!>RV3dXY^w>A2N=1Z*L@{X}Nyu0{m?#p5M!3fGn$tHI^7(
zn;)FyNk8Lhl?|LU9>RH&A^)oS4e(`|OeTYgo`J-8XBPVu2T-j*-R{WuGO1Jc3A%%R
zd^~cN<81U-lg}or4H<P;Dn*|BR~rjhV6PgPhK)`VxP#(kf`Eh4HLFrO-7|VE6&%0d
z0Og(j1D2#Oifk}`UcmE^AJ~_*k$h?a4+KY;wT@%_L6*o3Y>~0W;D#C-XHInXkDU!j
z{$x{-Q0?9{aMAjOKL2w|;rRhvPdmiGLEC?u|Nj|satTzR0u2re72s|BY1xsGLF!DD
z=ps``|8rYn98Wu1iOP@{fBs%l=6iGyQf3dG|C><|1wMgz;mwCXeeAs_PNk?@WZNsY
z4tGtRcu>uU&CWite9imMe$zjlDbGlZ2D`RS&rpHixL5z;b7_PjF+rH5@SMGn9xQ7j
zPjO#Gn{<8q0{rWDZ+Oat%*=OGw1L@Z*Ou!P3i@rszyE+n6jB6V)QaEq9~DHnAs3iP
z7=xY>)}MqA2|0=yX(h<mnS%SzqgccMOisQ(e(Y~O&cFNXX^bHZH`GjO$Ncl0=Sw4X
zlH>tZ4gb5*z5CTb6ZzeaMii|b${(ffULGL$|Nqebe|BgMY$mosi0;&eKMD0J;CaUT
z6`7%L+M&yqHWCtsJN!ui+XRS=bDXeJr<=5-)X%l_r_xo)9|nq3NlWSEjqU@|M2(z{
z4n=)F@deOYBIMD0^t>o)mjbzmP`;0Edws0vUTwM8EqwU`{LC+i8W!fa82&wV$%=km
z@1`Kj0DgE@Q&Fi5s0|}d%$lm#joG`zMW=oa4nb0X5=L9`a^UT7+Ia(uw=DUdCrpdN
zJ6KWiOWrQ8PW$eI?mn9scsm)Ei4Gd7F!?TSk(vMx9O0(LN$<0WYel!rD*_9L=--QY
zj7sW?jO8fW@(?c)BJ&c0xC(5ttG&4DxtDQgdcDvo_MAPr9q3o&0}8$#-dbQspvxoQ
z{U9Nd@}k0Y+tPAPoI*jf(<g<r8;w8VAu{=%Bt{D9=kzmMTc8!caD&qEyn55Fa>eAS
z*#Z`kRuMDy^b7xgxIhzB^IFS-6Ngmodux_SA#GuecC^6)PoAO!Uwr!{Bz7Zp9LMVe
z?JYld#8co=pl5ikRRNRJJM2tYGvNbI;TtMXmscKw+!2JR!VPw)cG}qfEkSgSqABCB
zX|RYqFhJPBp2|Nj&qu$YcP9FtCe2F&&(OYmHb=csoP9eJs<AD6XYI)AaYG2=vA94s
zxV)2-sifV7*d!~!A|)v?FS038iazwd`9APEL7Kgk<CNxc=bwr4FiJJPf2`{5g{aM6
z+8PCKM+`x`9f&d7uXcCl%M%Ub@evcWZ`-t+<eFFQA8!%DrCSX-q*-{n>wlpwCXg-R
z^$ZxH&(iZE8^B8r*PFy)fD^?=y+?jLKmXj!>;EwJ7C>!w?YeNCmLkO+iaQi9?(XhT
z+@ZKbDaGB3Q#^Q(;82PO2o6Pqy9NmwPTueP_kZ@BvuE!!lgVTzljq4=&sz7o<+`qW
zDB;I;xA>%z_!s)O-+o&t7U(6V26&(TbDMTUsgQphuHUd%S$N*SfYKqXe+(fxR>&X6
zuoO*k;h&o3a+ohZCT1X?#psACiWSnL`4GM$FD7?9$tYd+CA8|}`R7ml&UzL7S&z&6
za4YvBufr1@V)V~tKbm5d>lN2^b^HX@{Kvoi9r99cM@tQJCzWstIl?U~<np?JO^Yx5
zbKf^1C;$}ZG$m&JFNC<lcHDKy<)29Lu5J((K(BVP)h-+U;(s*iLJ;Js;+vB%a`HbO
z&L5#zL(^a~e}8{BmeifQJ@x4(@2?;I?*sM%PSrzuul^ff^q)aLd&MI2dlj31VPQeN
z0c3ooPYZ3AZFUKp-Y*bSkXND0|CXgyXi2o#?T%AYTwLyPmDO1K<3<k^Rj5Ez)evY=
zq9QhSx202<y66da?ojZi7f^7TcbfU06N5LOTxqoyl8Z}5Bz{7xsCgw2cR7f?vAGBC
zclWsc!(R^s{-UcEoQ!kG*mpd04J2k%q%z&SSr5FsfFJ)A^Txr}$|_WWXf;_2yScHI
zf{Kc$_GmH$InHYqAr(S*F<+3I`CkM0Z{AtNep7+Ts!0o_-gWzB8m%a*;pIPzj&70G
zWe=MSOPtnPED}m%HI--7S4d-&E&TLO#7j+(XJx9Pkf5~%zsw@yx^9X#B%orB2Kvpw
z!{^j1ux)6GZy#K8ad+JESMbhLANh;OlNH56&TXc|3{%hOsCX@KzTx`3UWjJ6=3c5`
z7%G8TN!)v6jeO;HF}%8(?Db4VEw3u+f-L+Ls%w=L7=q$uH#}tId-)Fd;(vA_T0eeK
z-;QTcn|b=lP@y)QeMCm8J=ynX+fDDScKMMcGEyy8SPkmv5F0=xIu?;yz@{Lm#HFie
zzqv7U<EWpJmy4uUpZS@*SH1*>(FwqK(^!ntqg&e;w;^$dx~YF;Yq0$3!xd7QdQr1+
z+dQc+I-)ZehNBq>1R8Bf$`W)kaAJy?x}I;X?a9eUMcL=K!hSN*U;mHG`J0%^TRp8-
zO<*(y9^*lu4xh6}1fGyCI*S8aSXeTO;mJ(Zyj1@rmIJva6)K_Yh)%65^Y-fT_1GC2
zn81cWw_<O*Y<y#*l?z-U(;ceYhi(|9L2l0&O^OAq!-^pXt|kT6$F}s}CnqCYj)}4b
z<Q5l8b(+hL^iD*}U0an24ftC8kFhk;)mQjk2qvqi)T#Th5|^Nh&v8Plp!s>Q8B1QJ
zOO`-Fm6^c7tYc<l)>3CJd%kum=|`?sTUA+o8&(Vju!<vg+``626&ZmKA9*y@s>fUd
z1|9dX4bi3RG-RcgD;Vb;9f8!&TShAiUmtQU0Crq#j{JFvedwI@J79~G0Mh>l=l<wJ
zUAdcVDjzanq@gW&({6e(&+Kh!x^-+=uLks)iH;JDj}K#rueO)??&<0ZZiwM?4W&DG
zJ)!HXY$&91nanIGqI3Hw(0A^OjEw;*y*uFk>?whgQv8tuVowrvMod-E!7rAT_LZn8
zy4J3j8H`aYBT;hv$gNRnG-`)0x&uz}vt#*hw%h;r)kob|j_#hI$>G9hNl*RJ?J3B|
z<pFp8t{#2lbf;6<f3if(OdCyR2*G7C($h!K5O3}NJ`c#riP?XO35)x+Y@ut<p`N6$
zK%+p{yD2d52rsW!)y`Gq^_sR;pmKqJY^@276Cm{;%&ZQJPBv{?)B*);d(<qCrVVN#
z{vs_s@<2_LDX352Lnq|@Y0;>yuw)n3L|1K4emG?L{edaHB_i)Juec`AZ(H{j1K(R*
zxfi#;$UPW!lxC+vAS4eA^FBnc5aV#6n_c<wD?U<opnPM*Yu7}W{JL5w^-%j7R@gNz
zq&yxQaQ({&lfXCNt(>Xe0ULk>^}AkSoRt#>gpI9&)v(!B(vy+h)U?UCE7@~tVy>$;
zBD32p@Kondu5}=SgU4<KW`_TK{zb@O-nTx<VEc)$70_~kwm!G>s)6w!GH$OlDci+)
ziG*~D(g^w+w@+0NNbY=0L@v^FL6fdoIYi8Rkl>`c$4;@`NLE#z*xvrf3WEl6yP8>=
z9p$t0-hJ}}ITo_pTKRw5;9pJ$85=KZQf2vJReE7;d4iSKF%F>Yb=~12Bk8tb9U*;r
z4Rb0o(fWjk%K2Y+%1h<NK<~o+SEpR5N9luSq*edya<L%VvvW*S_fEnBcErk$c3gbF
z_;i+sxNB!90GdCIXBsR@{P4%!V|&V~%}0c#tjtC*@B&l~P%gV}ygS9yZ+n-9X7$_r
zHl4@g;p@lFTi9n$bYw;|>tS_irr3(>&S!^Z5oG2Ls&xYV;BQ6IoDYCymN8I@gz!H&
zFv-_kW0G76U6BZ><;%Lcp&EC6O#)S|h>hSsiZjABF9*p7qOV!F+UMw9x>XJ5s>hE$
zT!)C2z9KL4Q+qkl<zREbQ^2mhE^ZX%l=(AJZi&~qkfQ4*Ys12#$r97aE=oYDOAs+z
zscx31gin&)2Tpj7OX40ehqyNlzn?g0WMof39ta7=f^4XT1FTt-C)I*`os84dWYZAA
z7Jv4!oHOe-i+YaR6{49AV+RA^CHvj_1v?k%JcLi=>(vyVpV{v(n=6^l8LXyxBDd!x
z(KhUFLr^fRv)%}be=K_?)pG_WsnxW|<F>FV%jWZ=yc7!Ly_fU~3}Px<5LWZ+b-6#J
zmYv>D>Dh+?v`SC|n{2xl`RWv1;?b*O`m@=RCc|kL^<?y||8gV3ZQrFoz(^kNifTF*
zyGGO5YHBLRI@}hZ$RjKW_HLr-7kikoW%Fg}(nKf9Wl>UXypI00-K>1vie-AR$*RrG
zXp@^lAfeCNhsVn?_yU5QXbxUe(?6VW&x?miRw`^zif<GIzN%IICVDj$fjMD?*eZB_
zdGwQDKeTzZG}jPha27puV1{!BJ1-jVzLhq<p3MlKx>Z}b+3aPDXsY3J>|;0({1PeR
zzdvu>iYsHtTU}%o6Kr*=j5$~9?#d_=8qqE0fVj^_N?ccuL#LQo4L~Jx#{!dCX~C86
z9?~JEBjbbfNYtJE-eQ`!5(&2L{upaJ{9xpGT5qx5HLkVzGlCGOF4B!Y(_+dInh1Pp
zIm#n)qQX1f@AlHFomdSghGYycI~}?nDA+iQHnPOmJ8eu&DH8AHXp}~o+u|`YTAh7<
z>t@c<ZY_vB`3!0K-6qJX)Om>%bhbH^BL0=zV6c5v8kbv)dzyy_p4ODi{{^7vP#lMo
zD9zVcSAQNqC6(#m&B_AVtB3|(JyNS5ZSe&u;y=j9Vv_yZIB}kN9A4$VEWvW*_s{07
zGI*48mc~`mpp!)U6Mw$q9DYo6dXb<g{I}>7*+=b0m*Gb5L*N|*1$PXm^?<irHSo=K
z8F<x%+qqA1!8$zyJ4oO#5IZc;Idu$jq+DQfaCG}dnS{~d3F)H{IX47N4+!yBa}Q#p
z&r`Uwniw&9T?*Fg>E9imdh9>E4vhXB@1A80&@aR1$M-5`Uw!%jtv-^F6li#5lFJ!I
z%;TaU8ic@mO(v*PA`G60%#fWtYNeR2GZ6}*nJsBsh-FDF&>VLrN);sYH8n{ew+Z~|
zjD2{U=&r-+d>C)wXkKW5e!$e9sLgJ>Ju1zpQT~<k`avV2?Q&myHAsXT;hPI%qR$Ya
zAXZTIKFF+e5m%{+XndU@b_mM#IpP%eCAXgiS%hew*s3}XQ@r2TTN7u3kY~4D1tf<H
z-BZDlQh`Vz#las<LZ~oUL&B;$r3AUwg4L+?kUKj7h{xa^JN#uS@tbt2U^tP1n=zxh
zTkT$>UQ%B)%D>&MM47cA#7lcg>*pB^+R1su*Jy?cIup#^9gh!s`&^NmIkTlB1nlQu
z5X1)XQ-#1coF6B4_YtH^RaD1Iz!-_~AA1SI;E|L8&89`3{d?7&DfilV^U4vD%ah_}
zxi?ec3FPuk2lE!q*&vV0H8X>o6`|-@xrQ~z6~If+gUPs#mK6HX+u)~L(M2Gm`+Ji8
zJq$vTpS)E@k|V*UIW=elB%OH&$Yu|s@=t8WD#4FQ={n4n9#f`-aMacekFvPRIoGU`
zVsx05_Q@p9fV$WiF?Tx2*WqFLnL=YjVs3K=!<Gkm65U!_5(Iqz!6kE2{|*+K5EoMt
zkLly}md9!3yJg+k-yZ7A_gs^2u-?0OwCtJ$MG<p5NO4SZa0j385y3uq`;5mDs?7R+
zP^+OvP2@-!n4I$@u{-}R&D7aylSQey>T3BU{>TC^kCgL+UnG<VY@^;4cWFP)R!O_=
zQ*rIUPZuRGx*t?r6Q#gTZ!jULForRFV}d<+KK@y84AS2Z)1DU*2B2boLdkzyX!U@m
zO8Rbwg3ko2f2x${FxI>B_(({0otbOjVYX87`r6CmNbO_b(}FItmz#g3kN<R^cWFJ(
zOt8?JaTsy4qe=t4s>O8?Ll|o|l<+YN(N=q2@N@aTPrcUKKOKOutlA=aksv9|z&4WS
ze=A)R+Pi-o<#J%t<<Q+*dNeT5ZSV|P7?H<;<|$Z>q$%>X&~eT5)*6>3ly(>887@I`
zTTV_#oa2S}54I~C!>bv1-b(<QrOg`8?r&!{hehlQoWC@S2)*Py6kut9uC}L?P62S}
z87dFs{2qCD7;X;gcK261{V^|1cpR3#)0glwl+54krvQj9K9zKwOjM_IiKN9e9WQe%
z%?owFzjd+k2r(Y7>Z%c8V%pCF$-;63B!k%z`SnvtcM4TCQkLO9&GdfLTO1a%UNIo2
za(5T<4_ELK_Xl*7C#ZcVUJ<~C5?mKT9e!RAgu`T9ik2%J7~ahYg^B5ugEhN!^#c>M
zs2&(UygJ}6A9S^?od9nKSKjjvI-%TFqs)}6s5s72gUMXIY164@9p=sXc&?9<s3W@`
z_qf_}i4&UTlBga`y828wiCtIRB6fhZYrl8HHH4ViOUCG_@FjX>JH@WDxYh6nQM`^z
zUPH&`n{l+L5Y(rz1k->bZ%mi*`NOff@BylOlsH0_v86^DU2kuzK*R{2=!CqEnibu^
zabFcU<=S7#0mar+-P%`?gq>?x#W-uhSN|C2y@)A@{8pV1lS0C&<&jxOG(1`Rp1-*}
z&^1D6BTfB4f5ct1S4U?msLk)To=L*VSr<LX?3MOqMIX72^H<@vbOgfU-FWRb5hycK
zZ`NUsZK@_kL{4n%0O{7FwC{GOS0lcsS2u=0bA(f>d3C2mjl838UTc*ENxlJe$$41P
z94~jIA%1oz(tN#$fI_6(RYD_5>aCq;OJ9;LcV}CE_p6*E+ndktnr3!p_P?FzV?3R(
z2dOab>gUlo-CP}B?#sHQWHhs*2VT?iWCrxMX$Pz}`xQC~dX%iHVyt;-`?h%<*9!!X
z1qTB*r)>iNKp*Pw8W+Kh!xr*%)ry2M>(sL9)dJ{4@ta8~<ot5)gAwr-1yCLN!Pvmi
zirI2y(*U8EJPP6X<rT##x-Nw2$kQ6(9ua-H?JWxV;vhIz(w>Wn>HDhhlRM&Adj=z=
zIYIP_;&ZC~Ood_wyKylxBAjZ|wlkpu>sBd^qXp(w%vUM@vQeF`FKH7gO&1?z>nvC8
zE^DoVYGQ&6&abbF#2?!j1|Cr`is;4++|e#MJzzc`Sq<wWRdSWG3wCvzh_5UT3!in>
zA{DBD?)P+e7xVd?O-%Ov;Fjm(Xk~E@x>K-{efmdv{XW#gKez6U!B7>pQ@N{lXp_Zz
z)(y9)4H^GZ2OWfD8k4{JrZubG+$CSRQv^h-!AscBY37s3sYKu%Msa@dLl&~832+9A
zZ|+<kU0Cb|J03UsKH96K+;Vw&x|hLs0!kLU@tAZ9Yj=^9+@RY$uhYL^XrDPvy4Dpj
zw>os;rN1|$$uONn{Lf8|{=tkqzpTM$_Ori`x*GqKQTO4dyZfznEb*iZ<NM(ne^%PT
zFBJR<8ZOu}nHwBj`H1gwI%=<m^MWM@Utmtdp#d@*{O`^4zE$7S$RSmS{*~`5eJ3ZY
z`sSfu^!AE*-e+frBdtX%bBg;S1)lc)yLRwn(VN<S&j_^osL0bNzSYbg*U=Y$AGg(E
z>*CJpuZW_zD08cU)2m<RvnO%=?pQEOm!`Gyu&B8>`WH6{4SzHqPDPalb7!NL+)X&m
zwc&M&JSvl`eJw&4QqwNBRnO{^h{mJ%4=sR~C&)d@IcicJBeC7Yh_g?O`3ceBqaVH*
zE{Jqr00JfLye>tzLOx#@4D?O&ghJSI1jplk-CuGu8!mcIqAzDMH*=pc-)ot9%bGA5
zW<IjQSL^g~nvCNGt3<RP_Xe&SiJ;;06tIoA@kO6<j9rbsluQ{^jKc*2A&$wAh9O&>
zDUZNHdS=xPtt{7RI`<-|bbeT0TK4t2qdoW~Sr5GmY_y@B#;zER^AolCN#+3;7f_?r
zQU743fqB?6>X-ynuEi+^L(Jz_#@`%lKh;y6ykK_ETk|I>jc-1fNH-xA3`ap9pJazV
zl;=Ig@}DMc(M}b}<79ohV0E)RT*MneY&?=bu#FZ*Ycq|klg6~}GSrBbp104%qbMXa
zypYEg99wEGC3>id`Hb(THM(V7GX@^qd<YsC9GIMq$(ULDro%Q|<{9BtWg8Q2PCuy1
zc$%v=aVSn?i}U{aQ4oHBC%CBj^J%u3yZ-58$={?v*wSTHYH3GWAm`dnPq#8w6ecBV
z;;R}9gmH(F{#b0@=kx<!`+|4^=97vbNejC8qC$uY_&^ooXJs$v{qf3nkD2>CbLL$x
z7N0vNQ?;O%8Z>dtVcwN2FxSA_KEqDOaNeabzN!OzJAw|zx&$&y0o{rz9<TPJm+Gm@
zld%bvIH!7RvOJgKV53T5h(G^U9vNUtSI1eSm8sE~M9+uo&0Lcg$1p0bB>Wy|l6GpS
zq=n|B-<?!(b2kwI4g5uiKjgd9C7b+4<I`KYY{{zTe2RO{sCzEoX6YX4V-Y8};Z*o)
z2_37!nRhVP@d_xExc>E0_R*qF3ectV*CKsVGxba>=ehXe4{`w1SDmf<3L&U~)#g6U
zo7ds0#Q05CRVkZ=()W0|F)jI&_G0VjoWb0YNOKsm(Mp$VOi+Fm+Qzj;FhV8YjJCYx
z3(Fw<(|t@r+N^Qgj}EhC6>eSfW4P^KjKnsEGV>a?F}tATE*|C}X)l)*m3tp5WgL)1
z#&sm!&f<9M<1rHXOK4@>kcr2kNPvI@{;0Tw*iZoAGF8M-L;wc!vtwI?E))Q&P-3#3
z*PeHo0RNnYUB_h~)NwVtj5W2#U10U6H2NC1lH)QS?#pwDBEH$zX}FQhuQWR^Z}_<|
zpa-4vJ8#k#8QY+paX@Qy8sh6mSK9qio<Lr8cozCzW7?XkC2EvG-Ap>AU8=&8B?=k8
zG<(FiHg{DuZGwKY4Vx58qQHUmpEB=6g@0I{nHD>T4sbh9aXYiqPDFR7pPlxl%XAAQ
z9n8#M*{J4yR*1M2x~1^Bd6vek8`9VLB_M!h;o?V%oukzXP*D{XLqKLQp1jbjO6n&9
zLK+y{ss-SzP_h_M(NT!Kuc{;bbfa&-)D_dUtY4kFenybotptVwt%?+w;7Fk!`T&>b
zjR)P^xD*76?Cyxd-yf2q1YE{$zGXGrEAIYvGDeLUB@{Hv5-5FS+yT3iWzG_I>6R5j
zJW{KFNQKvPN-j6|17*vdvges!Lt?!}*Im?TJ(ok%tm}<)H%nZg9U;yu9rCK87o_Oc
zBUBde%1vTSvOh^H%RSooE?O%0dK9Vwmg+d-e9pB60uN}IGaS=4Y}eMXm@==GwlimI
zmcGR|a7uKjq;0h+f!UA2DfIDxE4r$iNvXMQp9$b^mV8(94dW}veoY-CqZ|W*{+K>k
zCg*10RgM=BcJOL<x(q5td<A}WjJ=<}(=yb4cYQQo&daR5#UHJ4#HiyJ^+y%QOg%yW
zG6-geiXqaY(C>C&T&1;ONXr5L$MV0N@79FgMlO0D4Zz*?7`?KZon^UhjlWwah~<Hn
zhgVrY;{B`i{JV(i3=Tp+nA)&;OxK(3;D{q}b+tFmFcD58snKo4q9Y4@*YVgtE;@k|
znny+S>~JXbVS{R?X#aEyx%6hwF}rSa6jIsJ*1h^3GmEhRD+OIykGFh=eM1F>L)B;5
zLW(}0X6>|0`yYIhE$HO<OFKC8EbG>SNugFu%xo|0wG?g6*VSvP+-M2h1b&F*T&tu9
z4ffy3S(h%sM(K%YK5hT8StT$9^vJ14vOK_pNkwZI9|sj84m|B`^iPUVJh%!hWwsYI
z%gW!BWr%+U7Ghz&$HY3PcV?O5Ajn_w2b~u3b6Ep=IbYt#=}!ZAG0(^Zzy3gx7ASu(
z*(EaK6g0*)b_s@sh*aJw6T?{U+`w-8yS3fA_b4KKu{I!#=`s$u($%{-oz?pTO`bI>
zGB5R`(ZDAhRQ^DNlKRa|{)RH8vbw|zp^>9-RQoR5ZB7ulqB8#e;>a|~s{0YJT11u&
zVtD;`rTv|K@RM2S4H2{yP^+xQ<vIV*@I7b;BQdLU#Mzt^$2Wbky^<{WWH{vDZV?37
z)oTbM!*fvpQ#S-i|AFKdSvwg3n{*c2{j*nalzb3Yoy@wv!AoApLp9mNjN7Jheoez6
zc;W*uRTi&+qoS`Gy#XKRLq&qR4nhbABr4U*FtlM6Rl#bUFPA>gg&_)h6mDh@xdR_a
zJT}hM@h%)s<8#4G>OmI~@ck-r+Sb0B+nvqvnM@TGHtWMr$JhhioisJ4_3pyQ4>@cr
zim8@|GX{<3!)~4jc~0%+ODUbRaMdo+a4H=R&K8516_nTH0!rHabE^GJX)`Q$I#owJ
z^bLP!@e)G!ta^hh_bL-aW?f9pXkjzJHpt`8sLk1r73{&ypqeEy6%`eu+PPnz%sTrP
zo5Qh}Qh9;=R--;v(v;57u6uV%Og~H|n|=Em7E5gDgs#B9cN;Xy6nyf5@3)t@j!KfW
zw7Y<g#;LP#TTDzQNmPuGR*HbCR4VgHmZu`BBE8}Iuxi%yDQ(bR5(s)K`Y3@V^r=SQ
zD~&;0fzjA1vG(iapP4Er<|~m-jstBTTQ<*;d(*PcdDwmODM&B-q1`g`JALROOfcm-
zT1f^gY7O)|MA%>ZUZWvA3A8i$GGZZXFH525aiKksuNejNj0WBKhy}=mUkR$<8EeKV
zA<NSCZFC@<mtG9oEMee7+iuXOV3=<Tzh`M;yHaH^TpX7ACA{Rt)E}ic=`hEx-;`eh
zfgHO)^A96!gJjcLZj74}uIp#J7&4B@j)t4Fx}%pG!w#8&Fz6YS*qLvBOMk0*Y_*F4
z*w3219MkwT9`U2X35Y*Z(VeJ0kn873ow3nxyK}?0zqZ=Rv|sF9%1m48SYVui*Ex8q
zcgRcDN|7mXzaSua$7{YY*=8)OQ$?zbvMDt9JYRSdz3KGAg@B<l7g!X*{2pKZKq=T8
z<5nA8O^1AazIHN}adT!ZkP7a9eX^jEAHZ*l{)fUW3^FB(zjuM(AK}w*;|OWDpVB+_
zLtkJj!+2~s!pwSl%wSrnCgGbY=wyhvK3Oak^<MSPp9WG#42^ZZV!d&H&0|0HT?bLr
zU@}e5sh2r6M^h-Li!9q71>EkV;JRI>DonN-QsgmgsMN-h%OLd=)peBegCAowL>yP^
zvgo^b%&nB9@l1EKTie>kKc^>n0fYsclhS40Jl%gaJw{{JFI5dvK3{3}7eqEtFglp(
z#2njwN0+NVNdp{O&AV$8@ft4%G^A?BrI)b?gVT$e^#J(b?R(p~8J7De$TEVIZ%03Q
zmo9~>`_2r@^K?2t$nd5JiO-YBy;*#}JUAN|bBW@!Jr#EGaQyz)ougTiys*yVaG+7Q
zmo(#gz2Cq^*JF-=#|b35f`sOf3g+0)WKRyg=mtbHUMX7=_;!!pXVIILG<$FimS|>}
z9Au7Vi9}r=FZ@c?I1PMga%*kg%b@t{MkiyeiyN*<7puO61g00fbLo<d%i=AoyP!O1
zdEmHWoBa|~Pz7d5mqut;GAmZSzCd;t?)@WC?i=H^+|5?aGI>eRqfq(}1`PMT7ZUV<
z1SwcX{4P5k)p@Cm1p1dt!Xezd5$tvYEqtj<g!vV1J-^F*&g4j9ut#vQGRf$<gi5ej
zauu=cQjgY&ayL|Z^sZsQljsT`KJeSF$!x5x1}d~}Zk`Tujldb^^^gE(=KlENICEW8
z98*&2%Kfbs_MI~pWqQBBEyB+C2_EladHdRAti2VMql$z+5s=|orGEcg5&_{hG764*
zPmSrNN@HHL9DHOn6j!1LvaC?Jzaa;wUKBK&=KsN`JZ04MUdaEDFIE=n5ogo;-v8FG
z@{LzY`q*CyyEXx2`S@Ma<<&)zEqUVy{@=Iu&Jh@=3$-v!l$(TCas&&_7R?6W{FMhG
zv^2q;JizEDu+m&z4CgvBP{FdFXnfZxvZ*|qnGqu8%S#~9o7&!@V4^(~MgoDbLBNX&
zFo71Ed}5`Wy`@$Uz2$b``z|M;5o1USB%sNFXNK0)-ys<>#W_^N*n266uG42VS~`1(
zcKu=8ZJLp`DYrDQsJS*lf$D)9Yx~y&0i$+Xu>tsFlUZz+<UIzHw-34=;2NH<ST4fs
zTfEuq;9#(;kQ*s_8~=M#4U>+J7O+c2CaBz3p;Gmn=XSF!Y(e8B(lc+=F(YK5K5u)7
z`HD|Fm6Zj(zizd5%UGWbT!AqS;Xxc*!TlC*`HewG6EcjC{j|A#cqt`%6d=d>be#v)
zva?B8s<^hR?*dTQyJUI)w~mnRUng6&0?3B8qK$p4)$yBcn1W!?^^Bd9HmfSRs=KmV
z)(GV}{SRPEDHlGG2i&?OH&xa>ffmZ`x=R<jzhSL{(`!R{!ex~l+Cn`;#~<l1cTVle
z<zR*V1MTML9l3aGkvc2k$c2rhtxx`Qp`KqQcQrhYb9#@Ue(lW`tfI6l$nfvYnMC88
z;a3snLT7W|rX%HYaI249zre|7F;X83zhc21vu^5V>*e6|e!v&%^D>SLU2%)MW5*)B
z&;$lGT7*R_DxTKwBLVcohW0-ALYvb3fI9s-#jSFr=TZSy?{KHoySxum#$-$eG=aj%
zR#B5izStV{{6t8z-4vHm({DU|jKm8lHah{(ktMb5H@;V<%v#2@<0?|PB8AII0^&yC
zOncFL-P*iEC<2k&p7ws%_vv1l@uDP-{_z_PVjxEZzZh3^1Eg$Zs8BWF<akW$*}{lL
zo2^vrW?A``-iCg*_U51ybGF^GW~I}+z2?b`$pt`Bl8^19rrRtpFxFIFRb)($`%yxy
z3frLha1`}8MnRqNzUKUQ=h1x<%2q#>Y)T@R9n^`ajv&L4;12}Q%jaUGJ0cMuHVcFG
ze=_!uLOC8uzuJP9)h?PAm!}xm2TL)|zyUqrroTObZ9zG;rrMr2YtM7dHFz<|{}!bR
ziX8EdskP#edKi_&eW49Y?Fp?-ON%7ojB3^V*(u5GI1@Y2&5?UATB5(um>3Y?`FL6O
z2Ce9xx6O#jfB(Q#Hjh*TknGIzWjB88PBF5wq3cLtOiwDaBq}4J*4~g*q|x*$-?F<U
zJf$n0-B2vb=R6PqWijNiqXLsy`0j?XmosqXoE=<P-#_WzWJa6IN~Myzjqx4}GBdNX
zLXn+0tSkOb#=Ah<#QSM0^cEELlhZ9@0C>UssWuCN0|qAbGlbrU=dZM@bu`KBCo6Id
z{J5UPtSuS-ajmHWHO!dZ@@=rlHsGZKhDE;jH<RjKyYy}xM;#`U?gBT(i@F2UkL~6M
z#+<s=t?@%<p>WTI4QZMu$_46Y+bY+eDgW(Di_yI*o-P?y@zMsZL1{1hewU@Xm8qE-
z_s&ej{X{DtIg%s#h+FwueJ>IKq?3<odoJZ<Xt=6Krk8pw5s(+@@rq}1u3u<zE<JAU
z*lFLS@b>RJB+$xtC(LF)rP;<|A=6032Z470lfvYY)Hiz5De7q*-pH9EpW-iXcen#)
zW$7EsV4$_10RUKjVH_<KRV7zkfY{q>-l7VDJEl$y+vCv^BWdVp>JwmJo7lJp*u#yt
z^ff8Lxyb?$^e@VN!MDPo!buuR5tC|x(j8h7&dND8WWxzfaIRBTEWei?pP-I)+{ow|
zGUteta5KNIG|61OPiFPM5&lqFELTL7g*|OCrC7`8?Yyy5#n}D<%bSU_7k*GOa<^dz
zXBFHMZXc>KSBknZdvaPGFU6>QL|QyFg_uYlF&*;<wh?z6J_d7fTBClAgIDd;+<6Q6
z+Q{Ss-#a0UtF@*Xr~#hWZOO2Aet<YMP(W9|y7T;mo4l_RK&H`vxFqQ?--A^JHnUwG
zWaG@7^6l-pmb{{`u>NUO4dp7Y?W4_+E9?>36i}jF6Gi&6M<%L*qGgK1rj}EJ(^I)j
z-JTZP@id7Gd*kszAqw?r_LUe;T8<4K^wvO1*Y(CW?gq>K1J+O%b!)qALxA-PaiDj9
zn}#(R2@?!0U;38>29sd#X}uW&nTQCt1Dbq#JG8c_<26qI)Sv8gG$a4u+`KtV8mBed
z#SaaZ-Uj<mVd=aeHk=qL#=|=9O!8Fc{Ol%@Wjk17(pBiP8F{Y{eAbFnovmI~lBOpF
zGsYvROZGN$Bt2fN7Y=okHR^6UozqtydS}rb*6gynvCz{d&w*UxqgA=KHA2`is(meN
z8iHK67Y1}}p^cW|o@GZ|t8-IUHh|U`+>(x8<|fPM(GDg+w4sVe$0#VGkRoWq%Z{O&
z!U>?>P<lWVnReGlV4|b2<LYR<8n#I{>oB9%8iWf^$gg(*upZ83cl5t(hgbB-`HEtk
z_hnCT*=QNKA3LWIm6Ct(?w;Z$;2X)5S6T9mGHM22;CK&Xt195QlCc)*7uenZ6Pg^<
z(}pR1VK!~VW_`Hm_IOR;Z5;k`ZsTrL4~^9gJ)y}aCQf&tbC?6brv9P*%e0X(aVZv`
z?Iyj7rmGD;Fak|kYMrt0DhYkQ$%5(mlRWR<^fK49SE4(}MZY$cw7x6o3ia+}w_kz3
z!ExBdD5LE9NfS>y*&4_2NN$t~IFa%$k7^%mHG`r4jwViAR68hvD*PBrT~5w)X;R#K
ztP$!cGjOmqBl^$Q3%6hmg7qjhIUgjL5z)jw#7j4N0ji)}>OuT;^%hHXCCf=SpBIaN
z<}UG7SS<JsF#YPGh&!LH%xFcg)_m)1(5;{>(Aj&^71vKn;7jqN<QF!~B)KM^8I@ld
zZSdoX6(>36zEY>+4!G)^d%k-P{M||h33Rr!{4V_O#4M(m*fLY3EyZqw(7mov^kb(_
z=ITn?tHKO@5m%u1U-Wr?D^E&iqwnzt)~qp#uif2vZyFUg#?x8o^@ymbxWc3*eDE9e
zN{v1f$fWtEm$oEe!Hqfpe)@^`nLuJZWv4=Ns{3r_L;Nm`vuS@O594UD=nb7^ur-yq
z;puWz>2_73?NoiM8}(GF<{*n;PWbIl=H_B_%Xvz4Q>Q;6)+E!Dp#oNseYh39Y+@a^
zLHL<!azAoV)iV}5yo4Vwue|M7AP^ID@_~UmsFm!Bn544T73gP>_MnwlDc3!B{MG<S
zZisQEisoG-*^mw$mGIq_y5ey{t4&48h&^MRUuG-wHV(9(^Vxw$tnw=Vx5Abp9MkI!
z4P~6DVfU*k+Ph@q?nsZ_XNT;a2qtD<gYtqc&clvRd<y+MG5B9~-zaM)bDhRI+=}dR
z{@4_Wx@i!kJ??ZGnv-kt^*VdPf6TK2ZG5lB8Jypn=#0q{Za3dI-Jcp!^6iDhw;p@Y
zTTrWhU?{&Tc!2a_1EnK)FL%F7du(q=&x$v#+hww9ZW`J){NCK$NZZcsQ%wwc3xHe6
zG|_S1n^fTrqLBkqXE{kaqz_mESmVw)S-7>1kscS9i0o2O;-TGcmZ5^uo2V4J+>P<o
zN40#TDxAPu5?T(f8q>}SC_A%;s;J=3>nzTDr@SP?pS;xu87DWri)v8tgga?bS#(eH
zl(@czeC(&O{t8#$#?!c&kSw{6+ei=*?Bg9TBHi*)cnXqqTK~(lsMYCMh~)y~xwqFk
zSDMB0@VC1{Us1sKVJ>vb_lD{xLxOZ{*8TSWhzuxWrM5f`M@u82p@z$ll7sxy{HdZA
zX&c0GfzH{VCkYfWWDPRHd7T`ImPoMKCS6sGPRoBw?qt%Cx9Dyp#5lsM;&PJ*aQFSx
z$vS9{t9a@S^-;`a1J;MvJBV8h|I0QR97%0<xV1SU6QS}!*ze_WnW*wR9=i}TY>q%0
zr>oLx!>=6!Jo=#g{_WzSP{ef!8uqwM)v>qZVwL$u$G~}dF*+LuZGV_MRr_DV%ii(E
zvv%KyRiEiy(Lhx)y>~VWt<+8zt*7IY(1djbuf>({{kVBamBTv@lOPcfUOgKgXhX1R
zyxm4cFm$Zx5bXkYM8S;p#FvN9r*Nohx-LXRB^MQSik@#C!6i~7ip8ApL#z@+HtQK|
z`dPLAYf_xs_DH1<d-d(lUvBjDuaD+7<)h=afAX+ntczdJ;PuLGB-&EpOKx}_i7=z@
zcJRd=PBli^P?mX~R&@vS2)JI>3H0Y1n?~8P&CJNKJ;@0Ul<2wEZ+h$BdD@KUXy8)>
zH?-Fw;UC&3HT^3yeV`V><tJ6ob?wk<iSP0IcWpfO^IV3guE>-(ZO~DhA`b8eR*8XJ
z<cWzSBu{7l8g^ZTBweS|3g;7w)%4%+wSQDTzxvalI{Ch60BD65jB<UlaU)#1WQOe^
zvpgH6opNbhIa^+`ybx~MSqPg2C(ptTwqwA@c`X(x{+~TzucAhTvE0Y?Mw-<sG?YL*
zhqYrQa|a`Ao6I#e&bU}fi0tyI>~*(mrMh?$L)obI&seT0blBkWX>9WvB*E6Nd_=3-
zAQaggIPNr3I*UOzgY{Os^-IR9jlA)R$J|yY#Z=+$t>@b+LB1LcNFepIw?99w4K#e=
zj*?Swn6bOBYCRf8%t~86tJKfNw>PfBkt&v4iL*iJ;&*t%dT#+dKttbM024rRb#({?
z`CPQwEa<u(@vDsxwWvde2``<pQ#K<KCXod#Ej3Nxb)tBaICVJl`wVKwTgrO7D+A)&
z1KX_8`SdU2V}{K%nVC1YRgFD-@&qGsqe#?AWY^slJu#0N%lMj59%MVNm;*nvA5OG;
zL3>|-2Y1B&DbSFqHLz<{w!Gn{w7eoG>wV%cU=@y*+<{ch$vQ4$42ZpmkBc)SuonbK
zCe#Qe`oswiQPOn%DQOUKI-=PYk*$)l=c^ig4l1j_@Ss<zY_&~!z;LxOd?V182C02w
zwUB-XWR8v5XR|uVELC)@qdb+jB7f$|s1s`g<JAG@kX7v^5{Y3UQv-}`!V5887e@x_
z0k#e1v@z>NCTb@dG+l8F-86bFk!ZXzj(V->cper$rDr6hRlYH9hwzy*8{1*_?#WtF
zh^}4iQ)G4_7JGt1v*C-}7`NdZQc(}BPU@HWBozYca9^2SF^oFq+}d0B?)7IWZ3A}J
zx1`%PjOTB+I+NgY6SUcVws+U?*B(Dt(1Sidl3fQL$v__v?}vZ)`)igmdx_TdYkt7Q
z=n$0WBTQT1A)gOKaxajC0Aw2qZ_!C4+Q1It?cNGO$d1Lk^wp$G5wUtkv{2(DJ#P~*
zn(u(vS*=w{xAPtZ>Z07Lz8bF}=$B0hLaK~5ef7%<R@{-Y-pH=(RoXuPIM0=qagNYA
zg2-(labG(Edhp{ECxBspmi(Kl48&db(bP!pPeMG3YFg&TKJ?NSscGx_1Ds5~{eftX
zD8^s%9$FsZ4^0*e`p#btQ8L%gc8-V|eOF|zsub!R<cainXknd6pNZlOxi?Rb2(LQ)
z(f2A3cJLH4+>LD!{>b>}VkR3!o<7b`dA42Bgiu^nXeFO6fvD2xUYN`6^Ht!Eo!`aw
zJeMb<O@(8^A>xlv`Oe5oBdfm^2S!FOa(AD@w(c2q1}RT#8ujnc$)u$9LzvTjI9tu1
zxr{jO_L2t6H-y_kT=%6IS)xM>9K$N3^gcb@JqjgXuYd2(D8FGce;p73byD7HXFe9O
zn~###CuNS<CS%-I&yu+$OYPY(6CNx~zKN$gT+o2%^+`xnr9D=lsEu4ZrFlYdLf;V5
zYc6Fr;f$rxPsfsfDQj)xrq|cm{L4eT;FPSy#G#cMIRbqB#G-wyqJCmI8wBced6JB;
z-aj}|G3|N+LOeO(6nz_N%NM*G0#<)Un{7w3(3y0s@VpinoxPf_O;k>Fr>x6Xa<%i8
z76iq0YupD_vqy2-)74s|^Jemmm1AC)(CIfFHgYd&2$9Nl(mVg?d<?urxTsk;yX#i>
zoNNExV4?FI5MB%=2BH|Y@t5TiB<-wlIF*IXTT+>AmR4&SrHK;kr!FtjW;Hv?DrYs*
zp?JMSe8eX5%?@~cS?+(@<=EsC_XaJ9&6sywL{z4qaiPnTdbUc_G}sY(LgtZ!M?YU{
zT=INeNEY7rA}(z&G(27lX!rtsIelLh+@mlq^0?61mT-{G?f5s=$cJhbQk|XpLZQkJ
z3H|y`*Dz&wI|cRqp1_Pw!V%7vgIO}XX<ArxG{?fklsv*?#JDfr3T^dwY0xFeu-#Bl
z@rftpNr!~x{aRHOs$MiS<g3=*jk#~AIjV46F1EXzPll%XLxPS@oHpCi_F)9H)61$h
z(-~0qLiJh|E!QM&D@9~=k#akm<6aYqFl1#WKG3{HO`B=E+;pST0EtWH>z1+H>>EA;
zcJhEULjD3j?dxASt|ekMI*q&$fPe*jLDZ&xX=!8+%3Jacq2aNX8N1}%ZgQqpVSw&u
zwLdrOb1#ktYMus^vs6Y1o(6C}FsonaIPHHL^lS^fFE!J_>~O9b9el~pOWwVydLfvX
z<EDB=@&?vULPDS@8Yrr3tZUA7<+s6@#qEsC-16P-tbu(JClF;Kn-pcw<Ld`>VqT3_
z`W()6Je`7lIt<aTAs6dWcGTZ*>&_TB|HbTryju1JL2j7xX1-OkOC|dzw%-4WxTj1J
zr^MRti)k7)B^C3YHGL`%#MbkN#4aGWpPb)eXY*{=@5hL}h6RfKIZX16%p9mjchAeT
z>;_GGm8pDD_N~jd@C1d_VTyetg|A1hn)D40*+_fxI;_4QVsyfwK#HFfjQ^xMhJQMQ
zigtd?#+69$)WIN`gD1}%8g4p@NGu)qO+aCTYK4^Wq}cK2Wkx=oz7`^+e2H!W&61ne
z4>4D%*F5=@C(RoAH1$EmPmgazA$?<jGTb;puH%g+Y<P5`;^ksKinb+w3R-Ny{W*aG
zka{<OJ20Kt(Q&dSu3ji>Fgo&i)vHOVDwCa2pA6Py15L3wdt9%R4!4wR9&atn^rT3n
zd%SJcflHh6kP%+j;%(6XviD-=fEct<T5YoVMgcGlQj`rs38Hn$>j4ZGQUp^qC!f%S
z2KUM?xxVC0xA8<23;ap8?w_)9e5Vy_S?bbWldDB-`Y`+iITuxue@7m0z*QIA)@z=W
zLbe^R=Q6ehcVX!c9*^^ldKtFJL_qCseKyKpf~}b0)P}B(cCrEKY?0)LghZhm*Dus1
z1iFUNoS;h6<Rx}?c8Z*Ykv25#ZVJ`CmZ$#aceXwonmu2m>G>Gr$WISe#=2D=5u1N#
zh3->C_f26lE8SB3<^b+oxENcDI8a50!qS*4?zreUvx2gpV(JH`<FgI2kj6e2UVt?A
z`RhUIee^5a;*Rk^D+W$3V_b9Wkw1E^)cbR_Mq{C1CtG36(jBQ-)|?uXwq!fR!kA_%
zheoj1!Gba4KGlNL0Srpup4V-Y*+2N;lyO?3M+Jt<7#Vav%_()JCAXd?>Fs}|Eqmj<
zEum4n@YUFU&@(R*ZEdM;O3bK5ObO>h38ar{8^G91L|A5$eB;f3I)xP1TjmVqyo=@1
z_qF+hODt*;U4NOTr%A;*Y`N3dtf%gtLjQGH<N0wr{8)KfB&!-X8|k;GN2{{7|5GWX
zL(Ev|8l4}>IQ7?WU)~0Q29%xr<?ihU4pUk?uikXR1`ffw1xg~m87OB``W376tXwA1
zhI4D1^s`b)qg{tER>WPAsvURxJf3&-RFHA&5j&6F&_|L-d+UFIYek|Q8O%EeQ#qE<
zHVgl><<F2<J&|02o|h3<2Nj=%{*6Ew&%7m9)ytAg(f`Flh5w5)M0!z2kk?5YiVB=?
zo-PTkkZgAPD;4|zt5nFI7G1FOwn?)&i~4w%TAdSKxBcX>JV#K{sZ@No9#eZ&W;I(g
zO|M{#b(p`uxh<S0HKjw4bUKKv8c*v76$<}EWr>KvhDhPGLCa)T+i-l9@&p3EsB!Fk
z>OP`#nQ08WL*lJ-d3z)Uz1dH3wk3LHl=tVVNfu8W*$E&|@${lPg-PsP3LNU{m-n?7
zd(wHA1@ag8PBZo+bI0-s2iW4C*)ku$Bv)x{k?T?YvA#}CIRdtzdAVJ7>TasZ2UJna
zpDtn0+v+|*qQ0dnby&)7p}~OqB=PG6Xg<<}l1Xb?ca&X6aqeFv*Z{5=KrESD{#k99
zQ4Q2MG`knYlu=6-Dk8UQPQ)W{B!CRl+9b86PI`3Lebve;!r5(?F`n#lKf+}?ah-jl
z^1&$?TE*}qXstzd0NeMTckI!USJ~etzU?~o9ed?HhYA5$M_d+ztl-ypXK|N23jDOx
zrF*os-Wi3tJKU92;I`)2lFupYr~g2*^Q}g1dwba%Va4_JdE3p!H13P)b8fFcT7I`p
z!)-1b{qMOQ?noY#m9hzc8TTU74%Y6g*~9Rg!VS6<imesA^mJ@>2ofM5AmYj-EC{oj
z?G_ma#_x3SNkZ}KGC)NK6iWbe{t8gxWxl7AGzvKh&LMEH>DX3twYkf=Z$Lv8{q`Rc
zEAJ}<uRZa~3>)ERXL3l*o(2cgm9?vD^!-QZ4#=pddWuD<jr4QY(ve$0kRqS1Uz$x~
zD<N8d5bCyy*LybS7VOrSNHviBbzIl!wXLH<0WTtqtOZJ-qTXo|#JlO7k@F>6a<$|r
zdIw3q&Dil#>b-a^J36T=5mry!+~|ouac`7&O6qLvI!|9%@=ZCxyx0BbwQ9NXAl0e&
zn<m!V^Q4P)_DyDP+XiDZT*?`rvPm@9&QBeVM5K`gf3kj~{?{YbN~elbtr-k}REuzt
zkfw`jpw@U23eBeeda7|!599g869;oB2v!jGYv`!Euig6!ZsWXkW~5k^pU|FN<cK6(
zzST|d&V10pOlQ)}%2~iZ1&1lpg-$ATvU6?q^H^I`u@TUchoi-BODWBo?ZA8{4l_rZ
z3rGnZdWIr%&~Jv|GRyW^0_>HiNi+H3PA}Y-Fk{?<04TYck0?RfLxX@w3F?<Ju0q3u
zQQh)cEM3GZqNa1LL6g_|4vfxIVD0kXFFpA<11Yvh*iQT{!-2nsq{6#|hGps29|lqJ
zv0O<6z1I`$B_K8pBA=9MjP8e&tj55UD?Oyna-D~xr!LO0WcZxMHiveAyC(o};npr%
zdF}2Tbg#h%7?cK(jJ=#2pc?P5mU_oyHZn1m>e`m$Sb3e5iIC8_joNPQC<@0vHMpx<
z^fVyeENNl(-1YDHijWAuZYk#ZCwz9!33hIFH^2-JN-ylTyoXoSs!f`*c$R2Cn`~i&
z1Af*BX!%p5yA8Im%>DK9Vw7=p?D;~7LrXuO1kVrF0h@Es?{4!}UoI7!THI9gjZP0|
zp2noXv#6kFdOC+7q4lv$r1smwi=ot(I%d#~4`K`^m5q{S_2g8_b+qaPyO{(ZcLdZb
zHQ7;I5-<89Q*&<6fzxj%BwIsJV5}z~y?K3#lz^WNhmlnqPHcj7!E~*)O|$n*M>u-n
z!^<GAF%<p0b~9vcXh20;hutD3i0F5H-4}t>un;Q2e-snycta56CALzx^#`1M{NM5g
zz2nhr91ZU8Fq4C=bNN^))WwEkJ5jKD6WRe6agV@k1^6epP1!Q00l8glR3)yaIaB<1
z2Ian$@o(#rd!xge%ljZ*E(TSU*VE*A09zJ)Va?6Pg#})1wqv7xwGo!Js=np(Do9|W
z1;1}RwyxCj;O(263zmfxuyNWsPn;my4k&IsI0vMTSt@*d)De+hgW_U@Nq?K4_Op`O
za^NvEvbF7xRvxCGu;wjZ<6|i<xBg05fJ^<q*5A3mgR@|zn^63qK?~kAvlnPNy112q
zO_Q{}!fEe7V!DGlg_;k|KQg9sWS%i|Nq-LCwHDv)u5ox|i0@&w^D>%Do+W(>JHl#D
zky>uKK?ZpBQ`8U>>8EuorrQjuuHtNZ(@GXPo+Mt|IO7Vs5h<n*Y5~V)OG+Ul$B3#f
zlGfW}#nxi-@y{!Yy5_!Y>CWTZ*SW(-!ow=<kQuHIsxPyeLq?~5Iy@0kjI$&RT0y6k
zPp2=OJiYx>+Ebj_9P#We9tBR#U}K}i)b#V?$M^Xu4n(D63b$1I<`i{L?5G&-zBalG
zW_qhtbNz}@JhX!2fAxUW+r#^OL!<=mgRDKjjWQejOyd$Vmq1d!7mDOaZgd8HnA<<a
za51J3x3KqsrZ_(8y~7yYy##~jT0>t->BK^Qhki(0xWF;-345$*)&$~M{@$(?&8Q~<
zR)cv4Lbsyar{2nyef$wB;iBIjGWT$iPduR@7~PbEE%qNYaJ9s@++SjFurkjdtp4JG
z7AN(8A16fr3MFlqG-`^%OUTz$7sz~hI3?R-ySiMvKhgC_THY2Oy+X}#cI^aB+m=d`
zRaY^>d4=|_z}QA^bFw<aecIUnk%Q#UO?Yxj_auc(h)}c*MdMq|1M-kOCu0&DZzzDG
zrV74(e7A`}G9*z+L&}RSvpjiYy}ml)zkREh{H=v+sl~6Fwn54S@JeDl=a-8J0!@fT
z>e*F6m>3nwKg4+XHF~dR&|b9O_SumQhKM5r#*u(biX7<YFs7UBxJdHThYv&SuO@0n
zNK~1aR>Q69lc3jY9qQz%g=-)5KtAd{twhW6A@s=7Sx9gnQiSJO$ak49JtdVMP?)p8
zdt$m}OysOTr~Bqt_e|7i87V06P5*`N=Xh~zjj`dV1A@(=4VK*voIT>f&Sbs!|04S{
zM7|1Iq{5GVeGd7m`Y+05;0wEHzxrSdjep}Agd|=JM3a#)zq0iI(Hx=p4}B1M(Q=eA
zDv1}!`wzy7h5ZS$Yg46-pLXc25seZN4StsrLf+v0toi+m1d<T6XtK)~ie}ws@b@o1
z{(kkPHFW;JqI<&_pN~s~?MZesX)X7d^snFkz!NMp--PY26#V^nM*rXM3rO)56)$;8
zvVURl{)M<e9;*L-ZBf3!TQJ|1d}7+#Su4O5%+KvsB5{%4`h{J{@Sm?SM}-t{X&Rz3
z{VxPu>ad^JQc3Rx2D7_0H5XZ4_tW7EW;;s)EohgA{*!tTj1(#C0$ZjQ5BV>6w7<EZ
z=WF%H$1r$(KI;>t+_iJjirvTg`k%EL3w|RNe#(9eYb<~GzXl>EPOCNxU>Ji{OF*jr
zVzqklCCwiL0^c=zG?Nk&s3ITW)NwCTz2QHG{Y|Wg5;-Y7zUeJE|JR5@UZ@n9W@`BL
z$1hjdtV?hM6~fTGAD7Y&k;RgN?_~dbTGYP2{fnPt*pvIeulxVs;Q#m_)<genB=`GM
ztZM}F_pfurY9$9@S7hlGYMIW)T~dsUa278LXDcB_UZ(HZI2$bK^qfe2jiL5eYM9mm
zyyYldoIT_p7#LnzhlOK>?c}yI8qGwV(9)hi^>t`6;Ly4<At`>mydLx$=~1|U(UB}*
z({~>Cath8VrZK9t!kv59P482a9b1E3&o#Cg*<|kefw$@JQIX0$i9F8_nZ1orakQCL
z;mqknZ8UW8i$-fQx)Zd8gg2<XA#d9+-aQ}uBR$ju{IIYjm{{!uiQCc8(AZn;q)|}l
z7@^p?32>WduokDCaKC)z=^+2kh;M08ZR_d~x5Wy*e^6@oCjAg}s<4!fka-8>7oDH!
zui&*)vB5kpA|V*hR`~w-&x9s2Blm}U7$!Y(v*12^K`YFxLFPQTqNqd@ArUVGq)W!A
zzE8m3sN#y$E3p=?n5-wOzB6N^g(}v{!Ce04JP`Ai;6Vd&X!TVog6p>tdS`h~`lY?d
z-Hx0@j1cnP(h5s?Z{OH~fpjVt<C3Cw9kqwt@}rzQHszI_PP=>XZTd06yo01o!f9c4
z#>GVJHxKVPq%2~{GIm{_TLj8|ss??5Q4P2}RicWpp5IrxY)ig1zw+TL=l`PYt;3>f
zyY^uv6hsiDL_!1wX(gpgq(i!fZiZ&4AsmpF7LXXaV}PL>1f(P!y1Prd;kUh??|Gki
zZ{Oqi{+VNMX4rdQYhP=vbDe8l>%tNMqlNoFP$8g?zpuRhBu<S;EWC&!`c@)@PsJ1b
z@a3#OYABLm^cmIN53g;_{pED!UQ8VFYn4OpKd_jTfvi8%W3Yeu`!U^|fp;y$cTxk8
z5+Zuk2I3HYmt5K{jh|t?VCi<{MhX4{yXj~&o{}<|yL)qEVVFU_t77(vD|NU7!=xSm
z=xR#EeRrRz%y?yh$d%srvco^$EQXaxsacS6vhK=|6m#r%`wuy6O~u-!4TV#u{P8!Q
zbkXtb2m$Y(_B^Aa)QW_!7MJDxL*HsOe9l;RaCCUd4~429OqaRcbm0U2z~-rRVrCki
zyiaMmdodJJN0j@tcrpf>fOOuPH07&vXPF5btCeC}Q;EHL%K5SrFbT`MI~Pvd+m!jo
zAD<IFb&I?r=gLL5)+nv7!dV985~vmE#n6jQpjL)ji5hrzC`u-A^Blt_1<;40BH(ET
z{d+>U9AA`EV!Luh2`8H`>{7Hm#(v?C{?+n?29TCE1}*zt-~~%!0L>us@K2pGYy-Ar
zy&O-~9hp^MK&Aq&$hk8gj93Ln@qqX!--*_@Yp*sXK2goJF=y0Dk4E0$J;F&Bo3@KS
zlyKgu=X1XGe&A2RD@E#yHsXCwNZ=jIh%qdeJI$aKb%@>kUP3oyW5``~KhsKHCz`hY
zbIi%|LYQ?8<yUVbUBi@*V`;K%e08RR5_1o7m5G@Oxh)9RjGVcaIpO0?(v?hJTRaP%
zHhIq3j6ERKu20;0i67AS<u3jpmK3Ga;U=&&T^TebApxJsd%x7btlkr2J5wXo=~BGx
zUDjV$rW<RutP{GG|4oA7Y~Jje7sX~fVvPaEnN;+y)cM(J)4MS`a<~j?WKcUQX(J5W
zSyx`i=7YQfL~13Ur#w<;VyzLx8c3zq$?0Dc=g^H*JM&<%xLwUA+Z1QPjRO?$JVK=3
zOWbsgigJ71n=qAGMIFKfU)leG$7mW=<L(Evy`iRV$}LVGf71Zz)+ds}$9EgYXzxqY
z(Nc6g{AJQ1YolH|Y|3K+ReJ*-r)U%%({o<>#yeSKAtW(Vqj1c3qSV<w;NCY%xp5ZW
zS8+UmshW{Y&s!QT`DrFKCZ;gyqS>aqgs4^Kx#C=bYMD0fWc>l#<n`%eMy)0q_mP4U
zRA{smqS0<-&U0Jw<b!V1eSE6|<H=`Z(WYP2KFsG-Ds5XRm0|!$8SCz_A4zMF9N=RB
z{}^22bbX~|g{l{hJuOi{ok~k9n8kzZg3UW*p^?zqg9_sbn#ujK)E7N*%0)j2@<(!L
z>(%NdlWO2@7cHy@h^ff?JdhpH2*xJWbSvD+!@XOJ+XA1iYCT$8HuXW3kQ$d*Pzy1Q
zrHYmEn=}%C%xtZL@d@5v?=t9|-G-hveHW-3m=*SX`%FBF>?EvSSk(N{?uQU~hJXV?
zVT#o`npkOygpGRQ<bw?5;ui5jl`V_QN);ThNYC&q?(b<%<%E{;)qzPRWm-nVphMQH
zV0-RkKh;cjo>X&<cfGgslFTa`?Hk-NuCYAZUZKseG1k%rKeNc;<IO2m*O%zEP*v){
zVGpI_P>{^8PkKBnIV?0+kKH}gavyj@EatvvS3q}Y9!rF2RDNe<`|w!pphWVLhb3Fk
zn)INoN42$Dp^kn@JA+w=7?Rxrx&>NAg+Js5dNL7~hCAl!5yzOk19o064B%t!?LMCR
z5KbgW(G09Cc87m-?D&otq6!G|l|<aX3k#G_(=JyRpha>8-#R7u=Lf&C0Pk$CPnU^P
z&@!ed?9E9ardz9B?X%d43-b~pdD!3@9B~TU<2~iP=PD+d{Q733@X6{JFCxjpyJ#Ep
zsk6;VMznV2I5n^MD$Vb^yItnX#xAXFphHzfrpNQJsP3F4*@9}bh{YL#H(j=Km|fbv
zDE`6`%<=%N%nqgz2JHIPyZOPoSmzbF*XP4F?<fPpGQJC5L~FJMy+iu<?fQ_Ye1ks;
zS<@6C7%Pbkg-Qz<iJLM)hl1fcZ^JDpW|};twT|;*&LVR4@4$IWb!u-K3Ee~cpYe;C
zGP+v_y1S>cCJVeLp74--$Lv4d`z6y}ozpTpIk|nGg0vu5%rR`sFnw7Y`NidH<FoM(
zwCdZ*ycMYk_@fV(vKj{&)@%KaItLj@ZsCp{jR;0dLUp#X;~I*XDwe;7@en(Rocmlq
z+X~%uCzsNRaaF+uZ0fYTECgyk>*7X)3e@WB2FXAj;e;e|JX-s-aRQ>3-0K$|`SgX}
z`%%S=E{ZY-f(Lm@u?qKX*T&6w)UIEt^HaqZ6bzd(VGeF&PHiYG%ZG$D$=~N@P1hM?
zv+6K-8O6^O>%kNXulb5~?Og=G9ioS5>JGg*i_0e8B#C%wS_u{|Zjmf9R1@?W+2`}~
zbd@$&k_S~2Nu%~0LN}#Vy}&w3AkDnq{<BTJ-lU^PZ+UrJj6NbaAzf$3sB1g}<Hh&>
zHlkXp#XSMJ#hSSG#PQngM<b;~PdmoNa?T0SEw0(-qRMr!9T#p<-DB;oKchlOm=q*H
zp(?u0+J4G>UDDW=tn9nFFJgXRjJ!Jt!4XKaaWv+NPOjZ0jv`BP_;7jLIV|@9zQ$8o
zLRarEyKpsMrxbz31Xw;2pnce&@9QX_s!pWo1+~nV^1##l+aA7pQ~rXfbS5T9+`18a
z6<G1508=SnXTSq~eihDodnbcXGM$t-R!AP*{+l;FEK%UzWy*7X7IhvMrS|S%M6zJ^
zOSN9vT;IGA74hM$)PtLmb@pe9W`*gT3r_^VwX~gpThv@w{;@MqF~6Ef>^2zAa-lLk
zK?7p`-utVahTy*BeXcjsvT45A*5sQ1hz#$3px)E26zQ0b0(DFa=4p+kR~UAaF8>(i
zJ!tm2E%VUB6Il45`;`>3+64Y#bL~CC)|8~q_VhHg14S=n5h2vrenzko6%@mCnxL4q
z5{o}T^5sBS&5C<B<DvuG;msuL@AlRY@b4DBa%Eql9pz0_?);J+UZt;N7N@9idQ8sw
zxd+KxLl;b8_dHp?))hP>#e>iva#?fR*x6Fl6Y^G9+daFuucYN7im{>){%n9&P*nGU
zlw9((jA6gzmE2sTwb1(@T}6cTxOC6Xv4arS@+XmpuA_VOxupl+)wE{b&0uM8(1jfa
zMFcCXJpxUey(QwdaVPPi4|zaLY`UQqtM<GqC`RC2dvxyW%Xhh3b;d>~wrvVC9WR5r
z98O|(l{1Ly$Jc-CLvPeBe*xX&?qC#202=>~s0G#_CBp2iD;sB4_yoQZs;QM~f@57a
zO8|6UDqEgC=p3+GRM_E$yOo3`Hm0;+CmDe|2)!-?WSHW3x&@v~E?=B0J>VzE8_?L{
zyrA{VkD9)TdGhwL&l+{7CFhsu6{a#wC9cU1Rxd&$<Gf_WkIF|DmIxr{#`N4g&wGuk
z0@5wEQpdx1#h1G>aahl7-Tm8H-GNaM1_jsjUoV>M9+Ip{2YevvK#W)2^00{uVLMF6
zvuqa3m0WaOd^Nq8xrjX*mkM`^;||swed!Zb!yi@DzUsXn)@uc*XqDQVZzi3=UR!Pl
zrj`XWMf{Z0NV)9RXTTkN#i>te2YC(Bwbr^AjEaqm+JAl#&M9(nv}f>Aeq;LCjN_NS
z_nFMK{`H<C<F}iSmq*V`qVBp~`<J4j<zrA#;Fxx2SXFLvx}9}Bye%9n%I<eE?G2b!
z6q2}3@ea6nL?O1r2T2#xdgyIU%HaxPp^T$8utdY#CK)VLKu4AVJ8Mr>Gpvrv+q#jg
zoV|@5$xa?O%KcDHuXbO5I!C&Q0$Y`d($n~M?Yn8c`##zlD0Ryksy;owFCvOw=kP}E
zWz1KhSx=B9*3{(q2QR#!LMMXU-W9w@>{8UaWj9e@MgEG&OGyB)KS~qo2~6MvMi^9D
zTD3&QHJoc9pUsFj<?59TDFL)<QXwc*Erc>5Sw*H+eW-Q;SI{Gpm`RWqVPsP<+ki`a
z`fG5_;ZXUBT0Tgzl03V3eJqWvb6y%p0r8S(3_Oxpt$rSQ$t_;yYM*ApItOZMs(8k9
zZ+Jc#^@5Jwmo*hzdDjynLl1-xZ1&_Miaa7c(j8p($E!9&3f}-$0Vp_mPQ72-P{6a`
zT?TiIA|Z75>vT-cGvQ@}<g^c3j^9`!=C&tnw4X>9CDZh0%$GgiOYB4bxLzG`N_I7d
zAcn1HJ>ldU{rOI|dUz|w@)OEGqb~cV*=(mG3NSc_*GLJyVidMPg+)P(Wm|8t0BhDt
z^Gk}^^<8jg#|%Mo#_}8WBhAN7oJj_qS&4?d>|gy@xa~&5uMbHwKDogsGTD;AV?`<v
z(-Wk7w-fb`&fXSS!`dW~1*TfNz#b4#yPA)!M|jc}*vkYc=q&9qfwDf<ClRcdM@A2y
z$i0~laj<iYPXhO<*&^$h8=ZDNMwzrmP(9k0KIg?QE<i(P{yA1_%l>4j%8}8cGF<A-
zanPOu&6e!kUB7I}J@3bbq|9T*y!`JXZ3;D-VRFqUbXv$?P8*q|&&hdg=oAG{=%-$Y
z2Smi-C9V+W=FdZqeV0)khbw1gnYKyS>lw{?C!16HPd7Y?@;%lr*#&n~X6mn|&`CXx
zcA2iZ8n1>T%z9x&`tOA7`Fpv<sl`-oWtpHcF)!r<seZ|LdV<I}O}?6BU4D;28URbe
z!W(XPrydul{seXl>G=o~H|bu)oMr70iib=axf;DhTVpUtFe2Qmkv!n4|H1Bp3a5%<
zn}f>I7YXi|&1t2(DxIXh9l`ZCoZuussvlst0$&|dTF3Q{lkYjZTI@~$3ctXD3G;DG
z-5Cyt6gqplkT32CRik{xx$o7*f`YA`b&M0-)*4wgecn~?FtUHn#w9g!bqa4dF{2#v
zN=<q_w)5i=2EIsIG@9ol^~aGj1R~T~m<NtXlac91&bx_)ppPA^>J<wkaRUh}{k`6b
z<Q^RmzIJW%c!HS3=xyP-7w|2*L)AJ?)blBDUe%7Zx{Tm8bUfsGS3|PggKp*=*DIUH
zYIAOxNl1I63iIY|a)YeTz~@N8i)yc*Mm%T}VS+KuF3p;8gE08iF#<C8O9BQN8%Sj`
zwykT!Oo-+|#Ad1Wnj9ThTg9RY(qB^^EKR^hwBFyji_uRI6q3(Eh`3yxXb$B{D?f_S
z=)VC8+_G#4Z!)@y8+{G0K{|Bk#(!|SvJcrFFMao2uDSEnb$@ikb{Fo1XK&WgAJ+S_
zDFtue<=W3yezVnNqQL1)bE4AS-`0Bj!jMNWhe~D?;@`}(v$v>rXx<Z)uO9{UGPGD-
z7OiFz#uuSJ!u+NUp<1u^%6Tx5{Zoej;Xiu;%m<|VYab$=(KuY0zb=`sWAxV=^WPg~
z8Xim_HMC=9v4xavA?jBYD0SHNXT5hMu!qXLlDMs(6Xq(o-i<poZ(KOBEZ&&rKr~AP
zYU<E3T%Jgk2wlHuvh{5^S!{mELEDCDkR#Wu?P9fgk}|`e9fKEdHbERme6%h6EG8f<
zsjFDOR)hVhpSsZL%A%l1`zHJ0GeL!Wcx2C+;#nM8U*h18ps;SX*o2t0_`ciM<H1cX
zxOikxqw>*38*6aRmf<>ie)nU4pV}5wJA+1z;e?*&>NCVHvBn&ADzM}ftlL~Q?qq7(
zho4vC6rq~+kepXry8`^OeAZKbv%RxdZETtvXVt496?+c!#4i9Z9x>z5Wz8nY=I-vE
z&F!@<b$o*^=z(%h;5b}SzH}Dl*}TmhLe%#`3>T&gu9v`vU&~#;$$`pteN)Wjh1@=w
zAy+I*Q8!X}%qOzB*N)cBCULo%Uf86!k=C%wak%UP-wPf0sRz^XrWp8dnM#>5w+%%G
zMn~ty&Zr(Pzj8>}Ykh1v{!t{1a31>0b2j=lT$rX6*Cvkewf?6uWfRpR@{m5L%|KkR
z@x-jlP(*C2N=e-CHPlqHMIdzdl>eG?&v|yD_6ca^!By#=e(!u)I)X`=##xUVNAClE
z4G|{eg<#DRoB8c+;#vKo-FQ6_WoSzI9<;-IjP<~^%zI$s6y)B##mpheW_uB+iz9&N
zLwet;^mEHO&bEMV<(#R@&Tvn1wVvbcZHmu8$Q;Ld0>55Be-ULctHn~|2^#+>3(gV7
zJ?92yDri+;wcUQM(uFq8dWF@Ddeiw#YR!Cjqfl1<;-T<$SMyR!I_(QBKW>t@Wk?Ro
z!s+Xl>g-H~ystoPc|`WQYsa{i8fP7NeeZ4Sx5)jK>urQ_@Vsg*QdsKhyI6Y7jzh9p
zGdoAM4A%RhRFUDJy4qTgdk?8rS8vaMHCEe{gC{CPnbTC74Ku~G#N`vY;`251nDm*?
zKDUI&)VX<UzSp?lm}D~&V#<oOA&+52#;<3Y?(}|Qtx5sz#)}ZgQo_f22@`;?71c!R
zr!5tvCXnaW>`08AZ<2zxpf(d?C(khNV&LZm1GZ?i-PK>{`A3lvY@&66piWtEKOHuk
zHn^rrbO;gmnNTvjYF0JDd-2ou&t`x0(97%H9|8ifEheNc>eNol27jDEHfRTnTImBU
zx=G_;2Z}(OgCM-I@2~AGJ~q${Yms2ZKbj9ecW-^l_Hn5ZuY$!EZd2_APO7$>7h2J(
zGWZ;;W!C_1waG6g9fEHDvZ|hTk7&3-l{<>D#pzUiCdMgpdnu*@<aniV?eYjE5M!zi
zCB?eH)(^L{f~X8N>ykRCP?|WJd$wrXcUD>RlAKUzM|f-wA&lpz;ncQ<26+gJ!_I_i
z_fTT&{{H2j+sKTQm;AHl)$da;uT>Lqh=?b<LL*7n(+{`D*BC6f%v@PFauuWt`ZZAc
zfrg>O3o~E@e0;KUhMW9-r0*RxEb5Q{{P=|Yh?{>h5vnMyJ97~o6Pqqha2}A0x8jts
z_s?Io_~Ylr&4<UkFJam<D;bjsRLzDop2UUHsM3`#Rhl}@Z1Z#6tu8MAk$g#Y)#SW4
zGS&w(-r7dHWWY^xGc68B2Omyqe*c7<?Q-F~uuvM(RCNtL<0*Of?!qE;wERwZ7_Mj4
z404ZqpugYo@M8S6ZN1A2_rQ7Hc1$B<<LsFJ&I-}M2^<Pro7w3IlQc63WMfu5e8V1-
z2@=$7Nc+CN#ULn^eMS<n@%SSD{Fqj%x9kk3hW&Gx)JoW}wEM1T9Ci)c<a-krHm&4P
zx3)_6H6utvU^Sv3g@y1NsV=tb#M}GM(L02l;g)HgJY>L{Pnpg&2%*3A>cG$8HdK+j
z?CpZhT+ZE+YjQM_a0;R2Nn2Ef|F-<>PL(Ff`x%d8lbKCo+o>q=`vaD_uFWu8sj4rH
z-L}tqm)&min|mvHW>{l#Knx`UrxjVbsSn;h4oznqY}9ym%3Hc{*6<kN6xlu+9<#!y
zsNxc5m%QeUe!qS`v+wqu=s(BxuMz%#M<Thoc((g!yd(|h`z_f1cxGGMh7e{a`d=S(
zuf_N^=KcF>hjKvoPuGWhB9ofGyUf+j#ABAbw|VqMuQOB?r{MXGmMi+yp0@7Q@wyhx
zj`oqyG_^@a45g1xcAa&{%g%iAsLF4TUJIC<eBl=u5#0}hN|lqanD!i5JF|CF2<~!M
z&*k85Wfh<FZjR&I({?IEI>h9VSaHzvbYk8SLM==(=W(8gknPqgz0@0i1#5YTh~_gB
zFM@1L&fs>&!M$7*9#6RrkMFZDAoF+2Em9+FFD4#7yc0WY<{qwtYAX8A_xf++$D)L#
zneRUF$Fyl!7-5cFGTm|$rNp_=eBBvRTrR0bj1#1p;Bd{d3zU8HJD#O^{_0O!H0>Ps
z<l`>8o;S=i*=}cGl{Gq#mOz>=c~lQD_GL)rY3N_zJ)r?=BAr`P`ksC*GepTSIjuF&
z$Ai3M<&yb8G_<tGHG#|5T6SICgiYA=gkuQD&YdB<NWiD5gU>3@Q@xk>Gz_M4oe?Ru
z&-&vw02hcJ7#>Ni&x$ww!x8s!S8p#QK|dRk4~@_>(&8iMD%GrDPQ0!COeXvxXP{;j
z_t?Dc0RmKBU{UF$H|4<aPaXW9dHhesC2bbbEbK?eDY)Rov3=s95JNJ!AHs6Kzswj$
z$#%yC((_>VQ)Ah%bwN+6^;V>20$;i@46jqYVtktar0eH)QV3Cf&@(c!6<?m0JLcjY
zZ?@H?`O+(e80pj(H;0RzbGL?r<C$^Kv`94FWiIk#_?}yuxfiHw!GFf&^d={;X=p*!
zW+QKW1a|7Cbjxwp`VpvAo(QsSJG;#g$c-rp@Sb2w#N)9J+%XjbYb~b+?qBl!?x3Z=
z01jU@>KqZ@#qfQu^mDJ3(ubG-^r(IA+!lfNzS)BCw?Sux!2=6V>VF{M+6jlFvKeg-
zYUh?1UYb=If+t7_*vp`$Q%@(d6L76#q!}hAS)}CSWlhOKUUlDKlv4u%y~v_u)B_kC
z<t%2MgsE9z6jY&-i|U~qFI!S`HK4DUCH4sYU-JBipmhb%M%bB?9JG`=(RlPkaxG5!
zJH&eusHvk9Qs^A^u}9t;c4q#|c>dRs?o%|;?rCgU1s3%I03@LC>y>t*3C+F+M-*Mj
zZGX^a$lpPo7?Punuta7iXlo^Gj5uoYhf_u<H==bXnD<?_kLAz$IdT5R*CCjWhXa)1
zRYl^z1U2LErvRM&1p~k**{-2YG#^D?WAv{<?N6i11vjRuHUr7|rubxm5s3W4bX2^5
z`$Wy_)4a(pc$x{7V_4?J@^pS5jlV;k)plj|%i<^!5B8KkG685M%0S1>YT?z}-!sVk
ze9pnw1^+3l`h4h;C5nzaXWXXf9bk0C<f&x?Pm3%Tprsi`!;*JkiOj$ol=pUBCr86l
z4Qx60e8f8Yl+K1+?TRja^X;?n-xgO@mAc$>C`F@UB5m}M%xZX+sq}ab%I`JFaK42B
zJ@ZCdSMcXF-@&(NY77Rj_@fF!HTL_82F>7bN^2hRwUu<;Coqi@%7bTTCnWOMz0AL*
zoc_w5v1GB8vgy9~K0IdtaMjUw=KNlEmr~uuU?qkfo>O@`{G0&8OFq+eIpuq*zg5Iw
zRfnl)nKuuKtx)(8PM4LBZNrgh0>q+@HpRfc$)LPYkudzy=R*n<g3N%k1h)S=alh}u
zoMwEf!#_$TUIrSkc9ne}AW(k#aqC^`*}SPaXuN!R9gEtY0V{cU`f&TOYkC3tOZm*%
zJ{${p^PZ3Np6+p&2Ll;IoaDXJ`PFM0MX%NRCzI8<t?+1nU=Ic~F3|itv#%zB2CE9i
zb+|eL6hyk03c}9H-%he*G*z>t#C8t(KKGRoR+%Jq&1TYE@jK`RY^!o$D6FkWBkp-1
zIXGT0(Kdd2G&OKi?P4WkIh7vz!bV$PrA`Gb3~c?kG)liWuDyNIQ*^aBF1?}3ug=%e
zVZ~vHWDR?Mz_`@i1W4@~Z6mQPCJ}mbivT9p^&XkzyF0J~;(2JPm7paq@V*t(kaK>a
z&K6bueG+^;L(L&=-#%R;#rHTwA_!`RF;V4h%Tkf|B$3v+>eI(6*WpE*kCS;_(V+R_
z72T*8*hBY!L$aE2jHX7*`YURF$z9u#ADFIKzjVQSuh;xqI+zSxEvSm$8Fa=hKnG*y
z$$n3<k9)03(9U%>VCGbcsChlQ8FMl`SYndcO;Vz^b_ulp7+7Ckc+r?4h=Gq4{?T-s
z0(Svg>BqwitfI063<-Xo1DelxnWS0KICb0O#g&lnVOF}g>-Yf7na5sUC6&^iwVcT1
zkWiN}=(LXC6IJvz2mWW{H)=d`4Y~nPV=1QZvEW%3)X?!fbAdg>sY#c&baPMPQ5DV(
z?Z=jE+O$*N9_c>G2`IBb7CQe)IHs`E8tPovJ_nc$*f`_Ugu*j*TaQWRhY3XHl}UlH
zLHQQL{sxP><&--0w>X9|!FVapnigjy6+W&h-wFWV4ST`{2iT9A9ITtT1b=JVzj?O*
zK{5aM8@?~UC)S_81}rW9W9k}0F*_2F#Q$|6tleK^|8?pAJQb7rIIn=!sO9`ysQ>xZ
zznxOow3+{3x53AHe%F`(`H|UAwg2NPA|L1Re#_>Mw-KTKgn_mDX)sAbgW%6Ux&z$G
z^WOh)mH!Y9ECk2I+`JZ^VQj?M!~y*;^Zh@k#6-Uk5*}l8Of}Hj0>WtqQo>jud{@Op
zDNs0pB1&}FR25;~wEy(P|KXxVu&~|6Xd10!TG#nn;RbmqIy9`|C$QnR`yl<NoVMD=
z7w;th{%PkIiT`m|KZhI)SKoA*BtTs`FuuJ5%7d3KP!;ah`>5yE@7LBb{~f;n&og7`
zg3*5dd}B05Q(R*m;}ORG#D8AlwW=lHP^~_TcuY!5Pm~WG=h}24xN`KJG5%iitU|CV
zxaSzP%E|WQdTz2JF?)JVWCh?XxkOq>N#?378@ECwe&|%#YM@_8kp5vDMuer-5qhKj
zRq|W?$$Iw6u2{Re;8d#q`*$%O;H<lvzt>JI(m&4DnJcqqLlf}#ck};yXB<mZ+7b?e
zRsciVNzB5aM=XUCEO_5Ll=S>86``&?n6uzc`I4De&16Y0s-oy{G8K-WrvS_Qsu}z_
zBrYgO3j0yX<hZ4`chmC9ij1v7)v}4H`kJNxS=kXeXOYOs_B87UzFE_;l<VnuFuV>M
z3B4rg?q95b**<4b7x8zG)PhM^%IgAt#m#1Hz7@c=t8MZXXB&g9j<8`~p~hv>mv2T#
z^}z_HKj&+rDuxcy<!-h-Rp|C-z*#d};FFW;uiS;VG-;Q<l0la|2`UCjvJVZtpigRf
zm-eB%*YN2Jw#c0%p10+*=mE8CI+x!BYkVRo1U;2d3RLuiD(uuce-QU)5ofv2?PJCC
zxKDYG??b>brrYE4t4)y#ztH$yismt0wYl@04LbSOiE$qDhO`ULGNusZ5ulYhKwi*s
zBeXA#U@0|c82Q8m>7pqrBOcq4f?orA+8%h42}njzMEB1?w|;?lu0>NK1=;w*|4uA-
z&`4FOO$S(|QM@h+8%ki-@CDf^Y^zjX!s+0mmzZsQYVMt&kLIU_0TzXhT2BS^VK@Zi
z*xQAqsx&QxdCEOVOgB!y&hPcQ<=`^!1w?!f%aoLOSZOEyFsW>M*1snBe;#FHn`{Ni
zSki}Y1&Q2WZfP>X-Ao?d3cpBYL#j+7)T&tCw!-i3$nF?aU&yyp=}mZUM?!73!0w~r
z@9c(Z2l$4QnC1Cg1+DS(%<ckM4F{omn2tl)e__wZ7V&)YLH?H$v1UUEUP`I&Yw0oS
z2;7k>FDHgM-fXT8?!Px$HJ>n<vohn!cXC<Iyj4Rbm3;YaQ<9D9>{^ow`HviRsI<-#
zpjBg4vpDPH)=;;SP;O(JK)9qmy;xvL0YE$_3pj{5I*VN>vD!>RB5U~ekqiztuTtN4
zozAR|=QDI%e7oW&cIRne)4@F$w|%;v{-5&rmlYy@{7YZ`h)vbvv_}<B#y&R-PYb`(
zmrt1LZL59<I|MBh6H=5ivX3SLn_{Y?(5bJIOJ)a6Le{ewJ_yZ!@q(J{CZ8_1?;8`_
z>^5vZBIi=S_lO+W(fU$z6rt^{K>j<zyXzO&yO!!n9c-<UTHd%G(hsVa1r|<W?GpLt
ze;@nsrp)MYR<){q!&8uqY(qKCsg;PO(rP5St4pf8r-!j_BYA9;bW24+eU*1g^Fv}w
z0^7{y?Ji5P3RwIPjzxwzZ**S4K#`e0*TSH)N=GTT<`{OVZZd(!4=l2Z9=kcTlOB;C
zCfpo}4_3+TjUAhP!FF@m9m1)$Q3phG0`xV;q$@0?;@B*(uDo@2esF7hO5>%>+ztB5
zJnWkNH1pBb<@m*}AXHXP?(_0Sq*ZS`Yt+tERm~2`AlVy_WPm;Uj`;%E$lhe%*WJ;;
zC&cG=k)%iw!!;zvkn->CF}1w|wyL##C%a>j=KF9=*AOO>@%)~7g~PaFQ%MvFujl$l
z{^_#JeD<}O1XP{_VcCzMp<KoK=l$R1zB03Lk*_-6SW3@Uimwh_4}zSl;o!H`3m#>S
zrdw5xoX0_)Z*DmfoX^#eCavZ-I0x|hlgQcYds2Sy!(N&yBAKs^VE1D1NclP@9UM?a
z60*FJ$bsf2@ioNFN{c@g3DJ|+?;bzi?EaZ4X|l11iG;45v@qV77EbvLzCJ(7oIvaV
zOX9lc7c!^MDSm#8GsW3?OZawuGP8QhY>mfi`UTI=At;CbVReVtIR*_4O>fa#%bpe1
zuV3LHw<j&D7i8<g_N7Ijav7H$sp#E{l;4Cep5>ia^7OOF7R4d6zU85aH7O5|x`$&n
zZCsaIJ3M*}$6r@ARPu343I5(Q0si*|2BR=Sl~-ZNmrpMzTyUyw)LoQ9=LAidn>mSe
zzKl5~+E--dZBe14{jJc(WMlk2;Q$#MO0-@eeB~s4Rn`(7+gnoCj|pwkJWD9jZ&a>x
z-eLeIv-1>ls1d+thhPS)v*|Nlo@~cS4<Wu>JpC0Ma$;&%VLPSwn>!Du6lBB^PG#aI
zN;bVWQLdqo@)jYQQ;aH9^s$Qt^m=Qw=*!iW=dDMQN+)~xw&o!xR!mIH(uIMz8!-#_
z^z>OTYy1dPlQWDmDRix8%Qo6#XUca#I4XwkXnL5b1ae*N#iG)FA>^`1gll9I4{X0n
zY7;%Sg8ynD5*$~1*mUpl(2ydr70``|%JCh#&lXorjLSh*k!IDq+0^4W6Z6Xe{qj4@
zi<pO?9EHhlLZsau)oGJ|?3;(W?iZ?gv<-iRP*~D1tM2KtmM~14A~zU?oe(8k<PxSA
znjgQ!+8Xb(1x4XxmZ6fypQibmIU%OAnj&q!Z+Ur}K8FBYM-~|&{R<$yK$-C&hK^OX
zQ?J5mNMV!5;#K*qoAk-{>`K)XrYla9o9X-@L39H&H;JQjbZ3~lf98>=4xh_zj?;S4
zK|yx_q|h|+UNrN1bmjyF_VH#gW&lawWrfn<TAtpS&&s(^cU0T`nWp=XvbuI$y~NAC
zwJmc7&3vE$qwESxV&n9)Sh}dRZ8Y82e2?0$){mc_)}6>$({2`}-2h0h?XlW`2BWnG
z$xAuxlotADP5Rrqd~sow!lottZJc7-)s|am0$UJ7_LBMP$H~Ut(<V;KNxAZ#O$&Qu
zAb9fYE6lrhTjq}w<Nk<3t?EQ7F<cwuDB04M(%oQGfPv4fVWwoO@0`lb7>MICJlp{;
zsXOVizK(Q!|Cx%7k`EG9t>@lq`eVG*+y-F3`1)SZRaK4STjvhwO4$w9<S&yhTa(Bm
zZwI^0S(~6t+SYfvdVZ%?%r6ND2%d8bXd9Fnjv$?Hh<aaWmrU>pdYq2cYARoeQk3j6
z^f8BwK1}jP50nDoV!W`(35(6kdsPzB+f)nC#UK*YCb8`G7E9YJIy!amSKbm%y9t?1
z3lYXrO?%j5T^O(%pwS~GdLcbw;~9{M{miBss#eF9jK=}_V|1Gmy4T3=_~UIExLExD
zqptoP=~=6kKgxyG0cJ%O*N4VKGQRK2Yi0|hV6*NV)!9e7fRk{$)niu%Td$Fx-8AkS
z6FxnOvAtPZhjFMpX_fqJ(XU%}=OLeyI7dKI1H-%uMawIzHER@JK+)uwLEi+gI+`Cd
z_fZ^iZ*&>X;cVM#Eg%iFP|$Yu!z4Yg`$4$rBbgfd@qL7vopJRRzt&burfIpKMc`7p
z%9V$OFmZp5@4IgzUhdxEE2G}vJzjon>Lqe7%7z}NorqPgjMr`ZTA%aQNg7ofNwTiw
zebO}HDF<5tj8rU-KD68Pi+qxhIE{0V$b&x^ejqRyiLNE=0^g-z();xtjbEbNsUa;Q
zexI<$M<UMHy0d$Q0}-Rfm)qUHGj&z3J=lRXVjf3{m1{q>j$A9&xTR%)dQI@+KIMx0
zp4egBL04OC)CSj5>I%U$Z!of<7<Bhipx~#IC1v}iZXG9I(R;RE^0vJ6jYIK6Dj}Hw
z>yya7wQ|VN_YAcx*XFy?83|%`%{S3gqkxm)F;_C^I8w=7KF_^j9h-HoPeNahT}yFs
zs;3zIOwoIyb<!br8)-oD7VA+7aSeYjsZvY8aW5}Nb2y|8%}@PXn-}a`%7s?ByQ}ia
z&WK!z9O)gPb+I4k$Us(Kv-lrb>Y577f|pL6K`cs3f&z{>zld<R$GO>RmQ0V_j+ri!
z6QXw6X};@o_u+P$Ijw2N^#+v@f~c3f(*17SUHBjyt4ITnQ*zB$gx^>5Cy)$3`zDOZ
zgm~uMBQ$@}mjVqi^~!BL>fCLZV{*(>Zyfjh<{(bH7^CH;^`)r|)`1V72*_1|XVXYe
zyvW30$Kc)6fUv|M+%mJaZcMzg)sgbgG&sy&M>qUN6XG!?Ul&rUZ6;n+a^-O;4AiEd
zl*`xSId%#@>RR8AX#lw+&|p_GKYYqf58uP>@|&Eue#)XdV6(fe+n?%Dji)YpnC(sd
z`e2-GTF8w`Go;;^Ew3KGW0(KZ#NItuB|*sD=GW)H$Iw8qclei(kdTIllsMCxk)0`x
z$5b&IoqEt-y_^W3r}IF$c@t|)u0D&((E>5fX2bDl;jZsRR9m3Q$iYjLYYV>D!#EHh
zTYp^GR<_#Ii5}$qsBMDvFxOuXEQ}x{me%3v1<jqsh1;wa8Xc~UPrvdD42v!!%&n1o
zNRHM&$$$WBR!{cr8xM5EvXS=1Fd>>m14HXo!0VL~heEM&#Zx32Y6?J`!`jK_4Q(I5
zq$3x5I}UzsYbBC#DtK5%cB6?*Role*r}`*w-xLW5!x|cN<KYk?=-zCt_)|`c7wCZx
zV?^2I93371f>8&b?DVosWl4JT%9bE`E!{@70$N&H$oX<bT@pph&T^p-e;@Jy7?IT*
zR;muapMw2Cb*7tS`t?!r_XcJPoJ}_vd7(+~Ecfp;0R8KA<Kxh{Ql2;xklN~2SJ$if
z1gC>#hwjnP6$#m5?aJu}J`y=><~L<!d^`%m6XnoAiqW*lScITQ?{aTRw1&Rh`!Pza
zqFtmJI|qlZQubiLp_^f6Rg?C|RnL%})Iu0~QgxtmB^rQtA8X{=W<Raub+#Hq6i?{V
zhk8ZWycHy$WfSKZ>`_4}!oMUJ{Wwr9M)GCS%g6I_=p&FP7Fd6RI%(kFE_uIh0Ta^j
zF)Y5-xCH%~`ds1Gj?RQR`Av}pHC?GZ&PO6rj51!uN!Lwgzksmeh2bh$Rp-wYDCR@}
zw-Qb1xwEz3r>f5~<##caF+DB$QO0)S#S-)wXpYw(<8(tyzPh2yuUDnupa*2xjUo<+
z$fJwv(D_$3NFjfedVyZrq%S{7L)phL(!qUSp4oD^wgF}DY}puBdc*Z(DBvj`SpwcG
zxu2ggnD60Kcvdl2y7kcl+5?lETxng;Z<yPy6XH7hul^OR{MS)@fCvyb8FuIY4)1w=
zXRmlk=F5y=lzS68Rbv2){-c;}H?R^k(}AR^0?U12iPoG6Ty^8pq?Qc)RhTWF+tL0V
zG^l50niG2L|DSoze~XsvEwM0O*3golh7b`>?@O_CEt&qpFk8bg+joNuxX&g#_A{ze
z+oxl&4=L7)>*w8xz;tO4(tU*<{->+~wNfKmEB5YRG&d2$`fNsf`99JOjS1tP2ih34
z*HHStgo241oBR8;_gI?tD;51=ga93o&+EqM$Q~zeCSDd*rb58AN%Oai5)fVoirD+|
zn`KV$8(yetf6S%%M8fPyCQ3XJT!*C^^AS^Pn}C>*DeA+|#{>jgE5Gr_zcC&|2@X&G
zK41lS!$dlKfV=R9Ni9-gPkCu(NfsKd%`-d-NHXpWa32CwKL9A}7GG8jJ*$iQcej6-
z7qCGREIs>9r?Rvk|3d)(5p9a3IifAZPQe@hh#LO7OMwc&L_(~bnE&+Xzf}h)Lc(xm
z#O~VtuSxVDry`IC7(V^*O#$-o-#nA52sNvaUSg#MEiO4vEFbpq3qHOaG^olS7*AFS
zSn@WrG{1wc@}p;8&>6a;Q{vQj9%8r_z?0EwKDPLil%^@<+BRlOY`KuuF;P7GdzBWG
zqn5FIY&V{j0CnD&&`>_vj?U`aD&*=Cx2JCx;&dhj%99k+Ac6h<E&_=jn%km(@}!JR
zgJ}*NWq}$e+vBS&_f`^kU46gFWd6s9|I5FK*aI{wMrW-0|0Qu)8W#RE_5-FcAh#s{
z7+|^nq@p4aY>dmq7p?G34|-laG%Q_e7}~~g@hK)Bci`WX&oJ2!Ew1uNYKvS2dwPos
zPQd?hiBcmJK$bw`ZTa;FUVlGVV6yL85Ym&C-3G+I{H@X1Ab_&Ji-w6RGEI6q_^9p=
zsuG|0ac|PZ9{HPdv`VGxCxyw%rHL-(#E+9X)&0Gcln60=-EE@h73AFlH_*|rFeF9%
z7Wc7_eTTS<|D=)GSOCY`Dm_i$%b(p+jt%56^r`vy=#CV9IsP!3NJ6aDN@;)=KXpiJ
z`}+s^Ye@DCIQY}GU*^2}DgS;d{iPma3V?caHJUm<`9FTdY6@`U@dxz-wSP}l|20oU
zy0G72G<NRuCAj~SQ)T@B&8a&4QB7e_U;MT(ZeQ8*h8iWZ6~_LK9nHuve!<P!)Pv3k
z^QtuX@a10kHUZ$Ke)|jsZqWe|+CPO}Fj-M*w^n!@ZdO_}4Bo=iGKsQ}l3Gk@8DXZi
zZ^blP+LV$5>sFq$p$P)HTV*C1F+YLag5z<Dhkp{={I>_HJ2f9>Yu}AV`x?R<G&+P_
z3+J-NkF$%NTWQEw!+b?>32N|xo2gW%MIXcd>|-{tFz9PI(!7FwNrr3d#M!E6QhWsL
zeN|r#W*(j@;pbtaaTDo4%(sbLXGiaE;rz~;{q5A5N8w}jl!AX#iC4^##-@j5;x~bf
zRn!s1Op0YyZE<w5xmHpm!Jj`zpVdKD#(%0ZyfV;BS8_W9hr<(<i`afNtEkN4Ui_;N
z=07zDLxcKND}1pIJi)7{lq;6N*TLmNwe=X_(fIe=TXxRJpZP$kSX6D}0YXS7RNdx<
z!ww^_*F{BhSzMj%_&Pu?xyzQhs~#L2m~7>|)A}_*ADxu6RMIKd_c$md7_z5f>Oq{d
z=jyEb#l+N<cuEd{T`$<#k?lJ${t5HWi!U*;WHpIE9p2xL{SGWt={MpqBmD{o$~!O+
zhrU9yb!&7p%=++4tJqT4jae18Xmgp*dUxzl6}1$6HO(@UEOxXk+SRddme^wCgSW0)
z;p#S%JpdudT<>Zd&!gu7EDsQ7?9-`;c8HgcA>)~*v1_{WbWh6F<HC9OULxMTy|nc8
z#zcL|(T=bZ&=Q)>N%*3rSrI4}&eA!hdfE_-0vBf@4Q6$v`Q1@A)gSw@aL+2OX5JTt
z{rK@vtHB_J0*C_Unrkq(2m!g8Xa@e5IsWG<&<(9}lN-EmADgN?;I!63Hj>du(JjOF
zrO~)#XTkJXlM>22**w(Ou_UNd+PUfe61*g2S2jIBn4|lgd=wF<O+dh>C{y%eZ}Nl1
zoVQ;<&u@b1d7C5vYza`x=xpMWpW}cwhV>pKL{B*kLvR|L_a-_qgMqNkVQO>4j(TkF
zM6L0ykJ$ULq^x5)+3SF?<r=)QxYz^+amnzg8}z_B=FbYCI%%N(XZMUSN6z)K`S5#h
zbeszc6No;A>FC2LV_9cBWDa)W(Fsuto0`q<t?PlCM$z>p%5E-*vuc`>cgiKx%s`K$
zCLJIqlb^RZGqd8h6(^X&k~m|48lgJLDLl%T^z>7>m#a^gC9^TCwq9G1xG@y#avwjy
z9jt)t6=IUOg6CEXbgD)N7idizy{R-xbm?p+E60iuqexoI!l~KZxjUAHTdQ6dWkvec
z@BO0svcz*)k?zJumVrYzpJc1<`4*H{><mgobD!Tl%kN)OU)F>}j~qrGQN9v<s~*K2
zI*R+~QA`|5qO2#JFFGX(A<jfn>|m%jHo8|gcXJ?#Dm6rxo~~K>=A02gRVnJ{;W)!J
zl#OUI?}jqn*va4uvef<W^wr1<CHkhyem{^#N$rL0IAXJnZg`6svQ-uH`3Mz5v^lax
zlY8j&^47TugH;3K6JlNBqU&THnG~Zwz3Ny}sK)eulV?4Lr#4;?BD+L~ew=s?bFB7y
z&ctmwilUqa39~F|ADka?TzR?_tP90u8{egXjw4Sedj}aNQ$~_1X@8ECuSIVX&y-}1
zkvz;Vx%)M%ILYL4lm)=&5n`mPz@Dv4nOv`&t~3jnZylomhEu`gn39_NOA;~pfz_tk
zSlw}Nljf@_Zo4nfpO%uncB`4Py-REDQ*=)YZxeI59a5NOyoO-+JaVfRbYH`ph-nyN
zDFIdLy4aqA+N;wiPhRdhikH=fnR{<fM!gsiJa*;vST5D!&@F!(V3F3%?iuG@Ci0Za
zmPP~QT8{Ht%byRj$R#o;>T$BcMm}2X0)xK=xvoHXq@A5Bn9r^VdGkdxe^-w7=~M|h
z5v4HF8l(mzLoj`2eOz;ZDmq5hN|ktoqcS=y_-T!_pyRv1O&!{>W5Ht~JMKNyUyNut
z=EKvSnan-NXP~+;JNDoxzv6mA-2wKh4|!2y=P57bv1aOiUfa16OPUh-$h`4|e)Ae0
z?y9=Akx3c6Bnh9*3wj#a)aY?meY!gWGLuWC=}Y83DJfhRi|?m2ZKdZ}dDMI<A>ms5
z=9rud{OZ(eM?K-Kw`$l1A?5!<a<Hc~X*?ey;71k1!FDQn;y-^Ln|>Q!<Km@$pUC};
zF)Rs>wW6^=ufjr5p+r%b`sbUbt)cA7sr;$FXr=1L!pAkblR|6t#g^sI6Ke)ro1x_-
zv_~F?nzvhrprBw&YQc+X4aCeP?nS!ZREZj*jue`mrteiD5>Ct}wbbZsvSRM7!?tb=
zX`qf|(Si5ebJ?Z_)t@?&F}eJlUacqNvdyTl9qKpzK7Jx}eLvWA;m1#$eRXbxK5ezv
z&ejdD8d!*;&`vy;a(u78jbDsy^JEO1s@5A{<F(y+Z^jO&rrU+QdzXcSuQlI^v`FN%
zTR=K66Lzs%EOPdKN5aCbQe~K2TAOau43Qok%D)#{Xh0&&j>fM<DY<aEe0kNGbpQrT
zKQeh6eCqM**N2OjDzawH*LD3fF-$t#h_Q8ZT35v7u`WX^>DhAIDVJa7d@}loyp+9o
znLGKmljTd%v1emN#WVFTbz^Y=x1ogzf}B;!CswLNrtXa%X0Boh*w1M!PZqMpYwdZz
zNcC(I`NoyTV~ToPyOU#`6?fBo*{(wBV$p$qAFrEu%sX4@&N*^Fb7iwIrzgT^pP$!$
zkW>W0n{o6v8T8-y^c=`OkUni8qsv7_UsGCTw1&~%*Vy7(WtOLL8)|MUAl)3<%b^wa
zdIgOUF5b*x8qphCZCkOh%19O{%T(SebsE9K5UeqtsrVR1%%-%|=)yE`^{Z;4T(E&!
zY2F)l+*=QxAOz^%m@F1@kjRR&UP=yfL&=`6A`usAHbu^D#mp4%y<mqz6S+L0tN$2Y
z3@##_C_X{~o3Na0ti?^aZqt-iTGyu!PCvMIIGdkvew{SbxvG#4;_t^DTOHX?VQDcY
zy~*tTTK`umvQ)VShi8M4c=g0<TbF&GwuD$om54KR{;D2!XHW5N`4g8RNO4xUnXgiT
zWLiy2IOT*8A@}_V4I~mdZM0MK7D$ay@tP%H{-8n)i~w}8f7O158P;ct-Fp6|XNt|#
z34BK>vB%`x^@dICr~$kv^Er;{8PDR+RBzq|%7R}oX&|CV^}Tdl==Wk>Y;<~kZkPFy
z?prSIM*|U;ia*$W?;UNiL|kn+Ow`%bYgYY`ACr%Vp<hVL^mr#!+Xpw?j6xCKgf@p!
z`q!$X^tRD`Q_;(#<R!5q){j@t<Mmu8xX8I}Vui2gVh*-$Z(v7TLqj`<gXpJSAlF&u
zN4F=62Zj1qK&gOy)a`lSv+K_0mG6ZsNNnR}{eebieb3r&%}otB+3@nQ?|BR2%bR2>
z+2WT~2P-Hwc4&X+!FAy7*b4E%a5-DOm1(8Z9H_dx^f~&<BcJoY=`<m~`$w_Ho#DN6
zsh$dP`Q;khjdf<<Ip@lnbQzxY!PjgSfzqh|hDC2B=S6yq8WC3z+{K37IkVQ3W%#q2
zu^qntNZ%n|kIWN_(>j~L4G%$gq~4)mG41O<7g)llPYNi+kQ&luB^3mx@@jgXt3YQx
zzl!b(@;F-;?m=}3j~GPl1$Y$>H=Z`48qTpAPxz&t@{qqMjJpAHzdo9|6z72^CKS#)
zN4uBu^6HvtnP{<gb)W8qd2ChS8v}DNuK!#}Ih;a|X{x&M<){K!myi;)$uUuPE-~if
z=Jv^X&%IiY@L3k^<DGaL9lg;FNp9J(6n&?yr`(&gVTlhTxtMO|HzkKdMwdT5voaEO
zl{XoGwWV>}=OeVkr<*^dE;mdNOtUP~Lu0e0RvmG@K74FuIpNW;yqX*h=bt?;srDbA
zly`m_U4LYD*6(5C6%U>{dPa$DsgcfSIuaUGRD78311h;bjUs&dna|PQ-%N}vvRFs&
z=Xw9L*w|ig`Ux#bP||2TGibK{a>*(DLyX23p?($O<7uRQLlK2F(&AUnx?#gMe9>1#
zVk_>r4l;G}n3#A4O~7^LHgdd;HN$o1rz{O;;dj=SHK5icYZRNA`)8vDvutMwZWLrw
zH4zG)X%LNL(RwxcQA7R!ot^2y!2se^152|M{1gYpX)*lDpxEvwtC{wE7rPxz|HB>U
z3unD_50Wfo5p@ZX1t)Lmc&*m{h4ldUi|LEXLbSp%&$}4x&R@C7&H9+$lr^m!scg(L
zo?e}hm-Hl+G%l}#61lwsyh%J$+r(ns97Hi2e#Arf>N@(Wjp1c`FpW7k$=U09LZ7+a
z^Gy~b(V)qT+v6%5ev|3(sDpJoZ^W%ghwMR0BVUoRAa2%Y67to)5U=}kDR18=S`C_A
zhJ#RfAJE;8s)gg<WCrxEvP^M~R3XUmc2~E|Yc4({GK}XN^OLdHG<)u)+pVAQU5tF$
z3kWDbW=Z6M95Y9LEo`-Bnn+xUkBVY|p6<k-o$;}|{IJh29MDV1YKw)e52|z9ob(Z|
z6tnF)S+0R?ocBhhy|Y_$o}*t{wg`%U4}Z!ycV2Qi?aqn&gdI`j@}sMNKX9&5zs_}M
zdwa6dnpXI%|M~_od7^)_c)6>Yd#JFb1g2eSz1%ynGr#-4wdxh4{nZ(F<IU4d+O4xy
z`QQ+lLF-pGoUa$_6F6zaO6IKYw1(hnjEV))>(p-ZAk9{uWqWlNf=X#wY^sH(h@MwY
zbA<-rLM=a<q)pKy6s$=xupe%Z2NaX1#EU--8gDwr^||wsuMT!ksvl2+gbYr-@Klw-
zE}xhx`>^IwTw9=e&o_4uuLcF24gUG(TGbb9NbvqZwpvoKM~pkpm~OnStCVK36r6hz
zinPAuN9E3mdxYhOgQt!%D0nMmT)<G3(@Wvo^du{4D=11%3%M?t*cC}#JS7jAO5C`J
zE2du$QjO?2$Zn3l=do)u3EHjFO6v}&)M;8aJihR&u;K5ROG(K)dUiz%N1FICUtNh#
zG}}cTjm&@e)I{npLw4+OR5#EkVX{{5HARk6n2QO@b8AdV-9wX*?{9cCYIaDHdE~Z&
z^M!b`4bz)|YI{kCx)TTGro{`CKZn~)HSp;PLJ<Xq6JRNBrjn*#Y`069r{=Yg9Z0kX
zQy^#Pw}7{y;U``qn{>lYPUAIU7j3;=WzR?ASoP+qLRb4n9?h~hzSTbSZKzh19v~^*
z59u2)CKCbHgdeHbnkVh8rQC0#-G>k!^)5!@h;UhMUZ(akzOyz+vu*Ua@g|-;{}GDL
z2PExJ$0<bhQkyk@CA?SAAklzBMqb%3wqrMb^*Ir=OKV%v;&nf$f$jp4-;MEL4~w~}
znGC9mg%y9|NbX+3R7=Fu=f4)MIgXz#3^`tN4VjK^-Ntp^Ug^|sToh(`H)8nQCURNR
zxK4XCg2yW)nof@Qx+1)9bk665uRwb(78wa|H7sA}iIA{r7t9HNKoy$vRO?IP77Pz@
zldx$mOg5huR!jR`V6&Eg4^Sz0iLTm1)q2^E?fI48MoyJ^pC<|Ts_}Tr-yEFgUVHr_
z@xEL)MoLAPu5_E<(9T`luuUKMO2|$}I$mF%xRkK059b?0rRAoXJHs^urb>#Os{A~6
z!jq1jK(bVqo#l>~phrEQ$pMruRfm^+{vpMs;bO{lH%_PN;G-^ds}U(tp2jR<qV++&
z$)!`C)&Arvw4@iedWK%3KvC1}Yc&&4fBl~{0`<q1S~L%p+tx2^SqXR&X4#g9&piZP
zvh{kq1#=OYZ(UwAX7gA+i#}4hG#NldfZ{?&Dh+2Ax2i^3lyu+)hB0(x?OR0T1j;4e
zq?C)`HeMTe|G>|!)?BW8QB3EFWU6W}ua~KC`-?{95@MnY?lJ;N2f4JPBcevuS`|VX
z&rFR80X`k>ruj{+*In%9MI|n*E*xdYY^C~=cqORw*_i3ty}9OgVZ|s+yC3b71ImCS
z(sv4Q5#rYP8E(UI958o%@s^suY9RXc^?(c|u7H1_L>Gc`&r<n)KzQkKt%*4m(2|m`
zZf7<^d21tVC@k@0?9go%9%xFXl@sI2)ipczUH)Ee4p=W+S1|ne<**D;5%91hK<o1N
zq8v{!oaZVL)2U&s3Vb)Uhoo0;W4yMoKlCvB{mVxe&vbZf?45qO!BT-V8$|s7vG?9V
zQ8in;I1-gCAgClolH?#DaS$bEBxfY&oMA=~K|nys86@YNa}bb><Qyb344D~VV7S}&
zob&s>@0|0#=l9R8x^?ST?V{K<o7v6k)vLSLdY-4vm%s>tjUuSy&v1y*l+4mxBQu-I
zJ01Q6#b!AmZ(aD@d3bY=(lLh8aRM*s>eX{)S<!v@B&dMZC;G`##US&(;puOwWer<W
z!)$xSw0jl~;55~BM(e$04}n{`bc+jm`=y*h&+Hu68JdHOw|Pd{v;$PsMa3J!dqCZD
zW5jyVd}6V}^*07h*eyN%=Q>kde)Ht>*H5_Qi$51_+bPXA>9mhQZRSlOh~=}r1!cnB
z?bGkhMoxXf_o&2dN^0z;q@K-3ydbEm*QU`fB5c*tEmX*mvrVvPz+*G0lWRNe4l!T*
zm3tNCl6ZEoWYBhbUOoWjM7_O20C94<Hs+8vy*uPBUv*B**)$qJXX(?==ATTCyL_x)
z$zvr>yW)D=b}*;6QY@{75MqbLF0|VwL~`uB>--f7n{Tp*n}%3ivR!vkv>cbS^>wv;
zG-}fQfPEDyTwz3uSmK9#b@UfZW>(J?*<RH7Al=yL&2vg^#NwK6@vIFsy^mYJ4m&!|
z$6I`-<PpgR;-%6nr)fh2`wnmP&lvqcoen5K(zFZ_SeLCg-oH7;|Fk{}!<`+o<0ngr
z%Nq{f9eWoZuIXIP{sgGZdYbP863*H3QNr~6)1I$AZT5U9s0vpK5(WtczXb#b`J}lU
zXbF1ISI)u%E633v8dk1;CHT1&ckM^X$D+XN_KRMwI?!&G=TM(*f|(J%AF;PAw(RNw
zpQHTXS``HqnQXhC%eMaf*^;N?;-2o4LXT8VJQgJkS@OwaIb-7<o=+`n+t&+xFV&F>
z*m3n`H9lXHHO%MK8XNOl_M+pw;q!Z6pF!!xzNHNgRjnPe&60-oFi~%$>s9m)j@=s?
zuQcZ@ApOkYwlg_JP+w=jOB+UxmxxcrBLPaRe4H!7Tz<3thyc^wwfh^p&QT*?-S-~b
z<oI|hf}9rQbg|3ardGdu{bJ$QZYKfD0c7>ElMbKc0>{C5n`r;zoH;gsKuWa99U5v*
zG<T$5T^qr@&NK)x&ze1yp<k5r1Q-Tdl>JQkboBrp)^?<*^PZbPRFwJYY^8Gg5f(<6
zaJo6A{|n#v-;8CS^WDR%M*js1MRR0M!(K^o=6ixo3XNVrSq8qOD#!BQDWX2VeO7-Y
z(InoDw0VEmC2DlMiXq(mH~-9G+>Ao8?pqDHA3PL%=W@&Kd7%N6H1`T?x@6%AykhMf
z+gfE~i_$`dmf+-i14%Rx;pz9fTG~%Xd%gEFu`edMV+ss%VwOCTpWT@TY2QfaJ-;z*
zb1B7pT<ZWET=cyzZ^v6)Vy}0c(VZ?^*ol7|brmSJt<GZF15mIT&Uc(4PW|Vv5jqVQ
z*MY*z-f?atYin!CmD<XYRI=_#vW5skYB6L~NhxbFwIj$^N!S}s3njI&X3(FAW8az9
z56P`Io%3weg73CSlKr!10>!cycT%={f?pSx2P8IJX!@MGA9p?++?h)enIZ7itZ6k3
z5s*oNPq^VmTFo_}tcRugCkusqY#8Nm=3+0(v!=rR4W8ul5w8JA0hY<42O4&*17$U6
zW7hs`>9_W<?YULuHIKoBePbO3AY(y~vjAdjN+0Z~+$<@1CS)(^f7~U(PZ6ob!*`dI
z+TR1D=U86-!k4KcR+Cdez~ID%=LKFt?O<xv4ap1SkE(AaWL8{*Rf%?D>Agabu_iu<
zEA%x?8VITAs%$^j37W|pmgCvS-p2K80cTq~Zw^YH_RwhBdDQ`lB=gIJ@N12Qnr5kq
zi4hAT>KVKv$Ck5HY^|(CYM7wl9I8q4uo8rtzMUtpv!C0cS(Zy#upDW2Z1it+hugjG
zYP}pdEi<6BfhAg4k_~rM2+wb~2*2f23vTwAoBMd%ceR=(fRS>>smIkvL*7xPKuakW
zrpAZfc!f$3XyDy$b>+nbaI#MUWNh<OIM4V5o;!<tb>kNJEC4_mN2)G=yDd?U-6O3S
z>X0Hhr;RVM69oT4?-^@GLlZ}nee+5^2Za&C5FXDKV_rP{qeLs?KBXF)(l$cK?K?$<
z*YT!+IXqPv&z<XbNM8qjyOqT-Xuh{`>~K-r*4i{kGK_l?cwah_%Kh|U(Xa33BfOr%
zV;@_{QrSFA;KkyUmZEca4*|`XR^8sB_;RYm1N&xRX>i!!k0g{Cj33Ua1B1*{@9FDi
zvQ)%QDH$(C$HNvQX@%E<8>_{mTI<FuP;*9)<>nL4|8@F*Zw@`%cWpQ9GsqLLq=5MI
zX>8kCPdFs!*htBMU!}Y4yQP`gaM76``UyI}YmWRip;Rq1?oPO2>cCv5WZ>wb!yvi6
z@LX1Seew>qqRp4({dR+2HUcx=slsvUwJy-}#~wu%q_y^t+>z|lJd3qA@`z=`zya)V
zkL*b^gLJi9i{PgLp)bQG6LmM6(LPoY8&C+WM)4E?BJb8%Lq1|_Pw#w^#A>o{YHxgN
z?R(Z_Ye3;9SOTO#<73R{Qpdinpv&u=M|-w$`eXa)?a%Q9@9kDN0IOHHfHRkQsM3^6
zwy%9afePCz+IV*2p26kgz?X2L3T;MZ4g5axSqtxYyfcaQoqI8xy$grYzwx8O?iW?_
zKB^wIgxi`m8(UjDSTm>XpB!G%_>!?tmtlp5VSAuM=jyV6QWA`TU9T4>AT8Q$#L+(z
z+gQ%Gd|;xel}QpqH~^`mQr;3k4GljJRr5!`|MmV!h9yl51axVss3q!K|3>{y&KsLm
zCcg8;$mhu%va-$k`N;x~jL&fhoBEy((^WoQoKH_8?PXybdpg$Tp4hkG*tTqb2a7PY
z&b#=KmQy%yM#^tVXgpupQ}H;$8J2*MHcUTEAWqR@s_=T<G2HMj3{QdmC9i<8aoPz-
z!gi{F!~FgT!k1`idyBd1>E1!p>6SzYv$F6<59YO=k)<p7S7te%9|<lRnT`kj{2LGS
zpQg!xXiUO=q(lg&?Ng-u!{}kS{IY1DdHm<3qaZ>{cr5*k9hMM64o^j0@gIRW<QqT_
z{+Rt@1#Df{S;$UJrN<Slr!1mBryVKpPD338!G3z&wM7<Fz30j{7OI>AYzv9^qMF|;
z%@>-@c*zaWQMf(gI<qvVu|pgXxud?3J<7EQ-b6&;lQ!Mh<1dTb{9-ja&0V2a!ADIh
z0+}-Ssp?7810W&{4}ii5>;*i2f!yg!9Q&{MATt|SD>CfM0fR;LuG`I3yu0>k&280f
z0wHFIGQ=oV=S-lv$yDi#Ea3r20DF}>I}fC#w-qTsl_JomBs(Wefo?YwN$-7rnV)OW
zH^T7&c!Rl+$pn8ykWZ)yMV1y-bsip2@w67QkcimHJO2o9LV>K1`1U}f-7jtLtx!;-
zIo_huLjgJ7s;tc$B9J@ve48tfvS`y~jHJ!I_1Yc?R$MS!+*#wvggAQtD%|ebf>l;Y
zgcuM0_z`Pc-l*^5R#wWHQ04}O^+6q5nYx4VW2GTTS8v2k6ockM`*9O1123!e7JG}4
zQ39x=+Q&Xi9|C*uSf)`@Xva@9>h@I7lZx{3L6F6rC7%htgY!Ta{QhYT3?7KzM!SLk
zVP7DYycs;ibx>rx@Ak3<f3or8&?t@O7Pw7?F#<&C_PjjJb3Z!WvQ@Z`KoAi_>-SbF
z@*#Z$C4Vd-Y$0Af?cc=|qbH)Gl49VMgtaxJLOfYLLqVik`8|8>TjhHTN1r3x$W*Pw
zD2r=sE^pIIi{<6pfs#&i1N>OxT-l1ta+wLSBLk{6aAI~^595SvLLN2j1K$!tRLb_k
zOn*Fn23=sV$lNj?{YSqb!(hU7R7zCu*00K^LoF_9)t2PLzCVU7O`*W<dT?PQoqez$
z#Q8PZPX9JGh(Rp-yxU-`*GNaY8rZFuI}`|c;uBo&&!ZwC)oF*nyjOn0xRYyCyvT}`
z#Tp9r&vk34p5-gSVs4P+O;`RnU?XWy!IVZ)8k)j@;`J&B<oJ~Nl1S|XMIgy<?r>Zn
z|F%-q#&9`+O482E&zcjO_TU;&r6wGvA;TPC{gU0iJ~fUXkvQ9MazGO61F(p%B-JnE
zIhb*>e!60UZ}XX6q;Sj-<a_j$&NRd3gfM@lIF81*gDz8j?YrNLUZ;TiN5N<8k9cho
z6&meYmXp4)bG8Y+HS|3-fTWO*>15rZ#zSuuSMH#aC-(xjuVRdz%RV3c*3*R-#q{bN
z5<u7IvI118WHiB(D;Cap@>(SxuVPXDzJs;A90(lGmTzlii9)K;i2WFYWSE*}p;mbr
z{-fD)mD)7nm~&ca)#zMsOfw<{^hNbqu$*sNg4I;=xyz1I5#GT@M!y3a5K0IQyTY-;
z69#xkTj^$YE|rpAD0%EJvO~Q0pI>frwi$KNl>D2;Hw%Yxz?X?TonON0Rjz2_&)*vK
zRE5j2Fc2tf>H8P!sohis=dwPYeO~6Tr={O&N3eJ{^Ipm43LILx^oD1`{Y{!^Ml+*b
zdfLd6L!7@aXaedcEpJoTTTWy<<(<j7QpnQ$nD!agTV(uvmH@q;WQYkK(yR4H=pK?d
z!H2}|jrec4fqunruo!?FGpInAoaOBDSZ)nc>|dDEXn(-`tyrTWufHz;k=-@pw7~fE
zu*Q06oM6f_;A?d7ez8Vz{EJC%A3MUd=)G9?3!i)L3|b+Y)lXMg^z3NLJHXeY%I(lV
zd1Vw7baG<rs8#1(50Tv#vAH0&p2*AfYcsA~e!50EbH-Y~^u!Z#PJX#Sdh2ngs)I0g
zQpq^2D!$uowz=up+2z;9M<gV#M6BxH;Y%`YFxiBe>O6SUR(5hI4M%MGScG16*-FZ5
ze%YSiopP)Y-T;(mNED4u2#w4~0j~Sk8n$~2v2<8Vda<)V!?4{;zE$LW!1RzKGw=RL
zQn5N<okq*V&tW*hQEd5`wfTwTZ>XE=x8?J$zS_&LY?L`A@8-Be2sJofkMS556?p}u
zt-Zz>IG<5S=)^!abxbHw_m&jNS#SHTEY(AgT(qpGM}(~B3%;K1%xS2>Y2EH*Wc6{D
zre(Ry``CAH-Jg9f8}e`BNJkHY@##rUhLERQa_WA#sZjhXrsqCyg>$(!TTu;~vZNRb
zIa?L~^ShI8?%-9;J_9rm=(4liuLpmy5S`6_^h&8_5Ma`Csp7Gv!|=yd4ZuE!$||_k
zwD2NLz2Ttpt6(3zlSVe(Dg_jD0TjoYrx?x8uJ@zA=Iu#WxT96?2r}9uY$*B3>4eC?
z0gQ`(!o%cj$adxUpBTKTGysDaD3na_=2d1Mp7z+s4tYgL!j6$@00MNazOTB(;Ji*=
z`3Kqh-#{l=e&hNgXNd3y*c79={8j#GpZZU?EKDk*q(SOsQTq}9Kqvf5dgu2CPEr78
zmlo?^_ZI)P6aL@8+5M;G!+*d1e}v}$ZjFEH)&H}M^8_6o@S9aN;+-kSqg<!t)Mx)@
zEC5cXkB)A3ppWjzlmF>2e32pwElHSS)VDtg(7bq#9%>t(P!*^6ue*{zz5>vM!t|wo
z%Hvsd(3-{Ym)^Sr07?UuhVJ~6DgVc9KoRMahPUqVH9>#Tz`K|R077ppRPe8!d7|PD
zysu~^I{tsW;Gg<5AQM0Y-V@@+`8VVIzy7Z1HzIIKXPo5UoAqzwnb-|L1ioV0Li-a-
z{li?ui-kh+x)T32tpD}5Kn`&yrk(Fp|N6;)wTZYu2zZ}{rR;BMl0P+s_!t&|Pfbh2
z_={)I&^4IEo$~kCtO2a$e|y0{ndEL0T4!1&sVmxFJR_dD2jF4V(-_#F{&}0w&|gsi
ziVAM;2><GtyXtAc`--Y_{(n0aptNxp4==_-F-1l}!EK6P!S-*KiGACFtY@an(iB8w
zKK^?TPO1kK6v$XF7MK(+*^XtVe}8i-U{xryxu{KZ=)%8Q-iut%H@*`fFZbkEw2+<>
zIbfK(&H?wkvHM3M*Y<^^T6(y+xErTfMn4W|Zc;WjHsn&vQh1>~t|LxY?nYlff5!LT
zKDXSQJtqBK4rmhcFgbwDq<;m-bB$|t<q1u<{V~=jLm(7=nsBWra%*GbM;)wr<0lC8
zRM?ZD*_~+lmalPbp4EJQs$Sm5Cs+iYzaq0DCOWb^ipSah{1%MT@J8*n%K`E{i}2dp
zXn@-)AJZGLF$ExOMz`4GSFTaFBXdy?00W2@;C+6~{RWH}q#ZnYV7uW9x{SMZyFx%2
zZV@3y{dvO+8&D$Dk5Z!Rk#iQ*FD=NIOS}Xx&Q0HytEQm_moUGpOS;R=L)5;JBVJwm
z5~dSEpp8jqZq8xhEd-)ob&f=K9-<ao>x489+HQSOGv+YU2Zv3k7L7o?UABO-{5E)_
zzXTx`+n3>|d2+tO@DE;>dWQJwAztoH1o>=s(xKlI$PKc6v1n(9`SP3-`~(Au_$oti
zL?!GY0lxWRWY$yUjxyMH9K$(mm)EVcVgzUvRVEXfmvi0i6iCXSa+2WoOGFGLUWt04
z|Ay%14Zq#uFHkU|ew_$>WvkQV=iZ3oXNP*mi>K7oygl%`_1<LHX*a1BcCdzk78<=F
zE4rKdH@?27)3B3H>5Ks+EqL$H(;1JnHzGC!vV~l-+24RJuD}d|5<cwk^pduHQ-l5N
zdWlwae>o<ry;&#sqz%-5JF$*xBcc^j0pF%%^w&d<Kvg!wR}y`{08xpcc)**-eA;)|
zfiT>KPJXx2h~zDt_6w-xEYIz5Ue=+_B)G(&UUeDl8EIq@jv8+S_K3IcK&Bi;0@fvm
zG)m+d@+(z?9}fn62+1`K@fgnpi+Y=G*+C5Sm>nSH5;l9>rMKxX9H-Uu6d!R$UGFiu
zOr#-vQ}9F~LXKbU=BpH&-1eSeTp{9#KuJt}d<`{X&M_O?+k@@tzLMaZ70?&ib?JU-
z*X==e0Ye!47J*kzZWBTQcu+?VBbS#7$a*%jEr&*QOUeG^d*#7gAUt66;yC7N>9P?r
zmEQUswRv>p^hnsJ!Pg!#xzH16chg41R;pL~1$o%|_IG6sLo1<4e_Cw)EYYZSUCPsB
z`;ubi%i3#fD`Q9#m8>XBd5c)_WZm39W+n|zmGt(X%gN^f&4r_p2Ur4jmwH5t?A>P)
zw@euvW2=(U%{qr)jczBGh^-*JbymyjU{rR<Vg#M?Et0{y2qJIjeQADz*SdBT0zxW&
z>yY#Yw;zLNl6b63Kn<pl406x6ndjv-?TUj}X+3ZRIKgJ3DHk6|-!*yc(j!EUL<Rje
z3hX^{YfQDVs;g62Lx`y9f0w?S9E;c{DBa~)NP8pC9QT%rn@jZCf8I8+9Rh{_zA0)x
zzfaX*+iB!MZ7W4jTv!W;JhNJS1b}>o*@n5_eL|cC%t{hx5!nmCl5h83js3*H(nnFm
z>Bp1H>z)G>9bOzF>gPd~9M0Jy$CIZYr|0mR7Zw7AKj6S)5Mmc^g7NpEdqYNN=HHqa
zV2*K-G{PL58I4|+p5z96{#Anwf^H2?v?XOr{q~zz#pO<&)Ofh|^7FgXb3{-eF37qd
z*=HJ?zvL;W&{uB{O|4G7f>8gVCKj$?Jbv->WM1zuj9}2YXEL-WJ<mXd`2e}df;e1|
z-<v9C_4u~A-0Toz@*10bVDI>G4StHGeEi@^9D`BN(Vov}F3c6!6A#{LWj6NwVqsy?
zn1Z*Tr98Mb+_LnKYEFO+8T06h)veEgxj>VIas6KJjB`M;H(orThh((G*nDvtb?f`4
z+BtaO_omvmEP1QS>W_-nU>&SXNlGfOxxd18n~)=gp<?*t8f<!A-sVzt4GXngRQwdf
z_?gfyYs|$OlA_x)4z{d>1+>dYP>E@yv>cUMP|3R|fTn-Na9ON7{%DzZHRH+TI^>IQ
zn~!a1XWH!S!<#g__swgY1FVdLL6y${T=R*SZ#$xPY^8W_Mw$5-Azps?z#C#S6B(C*
zI?_8CLx9&{BfP*+#zbGE=oECq{XI??o>o{MiV5ZfP*D<Yt15nL)8I9jW^fQ=ifGb`
za&SRtIXFk9lr;}Hno_{`B~r0GOYk2}u3*`c@Wn7z#MVHJ)2_}*UYzEa0%-2$Z_DWQ
z8fKTzTbZq26$7~>UeB3?B`l@ih(`{OJI$=FRm+t&<~hqr)}E&GALFueO}ej8hptG&
z^0!PQM&>PsY!y$rjQmdx68KEZ!^!b759I})fKVs_hBl?NtQ4T)FfSHQJ^9U_lHyA}
zM49dx-FK9z*LB8dzbj{(p`Gs^0%gEzAYku4Gt99@_<Rfh(D9990gNL}xCzj-f0xw$
z0RX(k_iHWxLKm*9lCI}C$Rp&eFokaIj;(4oc|!NoTWL3MZnk1Z$v>G>&P6=eWcx5T
zsC_(tk}i*2sHs`eX}Q73pnwi@Nb}h?r9{5JuPrAmWh^@ArBmrrN_nRnjKfm)nTlWA
zaWT}TeTE&VZ?dfm>N|$jsL>q$nrE{&kX)vvM7029d=4%x-4sCIB4F&dR+H`_MXMxQ
zfV_4`@Iqx}sL=$TcLb$CZ25|7NXyy2>AUB!fF4G*{cr773*EiE@UY>*YO^`HM=vs?
zzE730xB7a-NQNh*@k&d`0%~ROkd79jl~~VZuW5pM_>NKfQ9i=Aukgodn1(Ii%eVrV
zhtuxCGO^?X>kq#<FyaOG{PN}!VDokHaM=6~Rs^>LbL@5CwX0G$BRjlp6gC&UU87d4
z$)5DmA(rxrM{|2hcCkVdfZceE(D!**!hrAv$#w8+@k8h#(k8&pta1x|y?OPf8FI>=
z&G5Y`MT@p8&fDw;`2Pof?|krkRPj?KA%rC*mYT|5^G_zm4VADV^cRVc^`K|G)nj@1
zt)1Or_IPYSe=y#<wQ0ZaLq)=}=0N-#o~x;W0rv6mdTZ<UYRtO(4XIzhGE{PN2NdVj
zn35G0a1Lc@mO6!gViRjHJ%!Es1p(Rby@<q=8rapiGzN?2z&eaYb5&Y$IU`9Z7AY;H
zezlbBZ6;u&25d-v5i_F}c7DAS7(oXXPz?o`Y!O0gkWjy^ORbHJ(UzTF5LkDji+yQf
ztK@h9o!SCc2@!#|vYpv2*x|40Ii#*J4y96Xao1~A*4)GZIj<1NDHDbEV?fKbRL|%o
zw9hu1ZWJDVjh3e1hstt2)Ge10p8U;|l923R+`Uoz0I<qEbMdJcR|p7PX0#l{@{#fG
zr>z;+d#UFbSLYrS>e#!p#{lnlbwx~nd%4m?7-JBS<k>h>7GquU-GMrs&%bwG!GL0M
zB-D)l%<ki>h*@(Wthj<Zc08C_d=5hXtk*vRRS^7xL6hl&IdCd4KS~4MNHv*jv7^Gf
zV$*M#bf0!WZ$XslneU!VRhjL|2@s8%llICiH66ceZ`a<<KK-FxIh53)w!GqKml1V-
zI0F%b`&Obw0Cm$tU<w&W@z-84+>EH{>jAjvujK5>1HOk4H7i%0z9SaBI;9LlQM1wI
z8;3Xej;#ngk8CM?XF#<4RM4?jyTfw0i2!8+lRJeUs*hl$Fcr2OM)6&4_oYXti#84T
zdoCG{JW~OL=>U-hFU7+rH-9L^9Nnw=8Cq%Nzealkpfwx54b4LhRy-&?T~690-jwRr
zIqj~*qdP=(#5yCfM46cSa^L0Wri~l%kmA8?Ipr2sszRbY_M`JrH(AYkg$?0fw_j*)
zg`pco(2<5FG*UkJ9aD(OD}<Ts%hGaS&EGi&$h3aBKjc4bUQDMHuvsmdyMSpPc&{Q|
zCa71w2p^y{znvdQc0_qvK<GWzvgmSi{4Msrw|S^`FmBeGDCQ~A<ahhQV<e5(%4JUf
z=>FetU?KTED6-uNsSiEFfK_4hvjr|w+Zp@G6vZ+Z*H!JYt$dK5N?Dq7BNYfdK6Pnz
zAX2H?14e>CF1O3dDI$ibj8+6%`QDEc{{#|M^rt~+p--}Y2yUl#-dV3}PJ7+FWPOz)
zaJqz8ZV})uZ$~aKCbdnNIMgrMQ{v!1w2QXyc;EjMGscztQ!0H>5Pi_ubUPuk!hO~k
zO7*28^2~@|XnWtF*<-34;4~L$*iMZu`^k=vn*Bh1kf!<ZitC0_KZtwtk-M-Mc>k^r
z9F~mptCG+wLa~&~!Jj;}{z`3B(N_X|dw82=x+Yv@cF6)&JJp#N?QjU=D7ao~zp0Mw
zerwj5ATO`)c+-(C_62mai7^3sP0PN%h*evrIb-+rD+#_MYnd_VH9Kv?)C~l+vH~@f
z{@A%3xF+)+ljY?d-2?R_^miw~jZ6of)5XrcYG*hrrwFUE0*x)apc6NfNG!=7i#r3r
zM3G%rn~hH<Y>u>QXzmQzuT)B76Yj7dHR@@5&ERg`o;5Awy6s;)=T&{_Fv+z}ds$P4
zpZ^8z9&lkQqYZd4&v7$*#z-|eA3EM%(%$6X9<HF2wCWvVfHdW!gm`HH&7Yyy?p%Cq
z5EbF~a~fx${dQY;T*;s+h)!w7kH<EBvP9>tfHn=&M0&c}vSjhJoqG7V^6SuK6Ir0~
ze_R8J?`Iwo$Wh8?re3UPfVe=nQIJc4%NfX(Z?zSMA)Ui=3&ZUV<hs8BEcxDGPXgI~
zi_F+yuRXiSC|YdrMU+v!bW;Z-Z*MyH+iiNR{jn$7E4#Xo-%ls@`aPEV@?_;qp-!Qr
z#=UtB9fhNT>zYQm{$&_NpRbl^SNuDE71a2?U!vB)rB-82TDhI^t=fT_f4aKUi3*vG
zfkSgw9y5@jvuW3;gKxrTa`h4-Ey@?iy+Fj)&v7K!Y2V<4vwNXm_UM(zk_aoupxq0?
z2>8Tk@3XAOLrvIk{uuZtSx5ppvl;sZ@Z?y?S=6rFdS!c+Z$f3qQA=@_lH71%s}fSM
zfP<N=Qd#w-&qo#<#^68fk~x0=y@u6#FTv)(lx^fdj$DF?#izepjD<S@SoFzCw0bpq
z?S|<zti?`Yhn^3&`6`9Wq;{Pq3I`Z_H5<YFf;ZQPK1$23hA@s5ri>OHrd(EkPn3vv
z4zy}~+bjNv`gbqK3fw7)5A+uJ`1kJyGoyP>riG*kH`1~wws8J_<oDIlegD0!Km)-k
z3ENI)ECKL>5Fe&^<$~`I(=l0a?i@6}6&(25_~Z`BUta}um<5Z4bXdc7(SQ5iKmVyt
zh^~I19_eDn@i#a5i=Rbz@343l$-LrCp%+L0>nrX9TAXlPHdPYde`x8G02Yb&18FR3
zV?&JpFv6cTR($h`_@>e(v-DQr->vwkjm-=r&UDESBYROT`yX0LuOfI?<^P%We}`G$
zXhqs_QT%q4RYl{W@1w04M{Ix9$FcVVPPf5YQrv>luLr3uIYi|CQ{RcBKZph#?Ln1x
zBJ+Q8v^ykDjN<inBl=#km@=8s_Y;x*V{-A&EJFU=mol?R9*WqgH8MuT3vY%cd<6o}
z-^b~n{USa`0{ESsHxK`RZVs~+F!Ewq4W*R+^S@~>4-As3&HmXx_4t2;d6`W8dw@Te
zc|8*RPmKkl5<4)W2jZDbpZ%wZ@+8280T_IZzsxuOdgTB9RHY6GKhO2jKS%tzZU52U
zfjFQ8|1ULez)n>}WaZaCoaLGrvq(}(&d;r8GA#1qsRQkas4HGLLv@7;ZdjN^TRg>|
zdX_klnjTCmGQ>!PkUR;fU_$Fra*0T+P~As+8LJ}0JFfKf&pYpK1e)cP#Cp%zAKkKc
zx8og?K11pRP1#VA!=HF)z!4MB(H99%U4Qpv&%K~<R{s2VxZ5?tn<0IF>VB)vK)~I0
zR@oB$`y-iD_ufcJ$qY_g1EL``z8rB_VT{9Sxl$3y=J(@3k;a1jN)B{<wo@lYTB_~e
zdwXQxeF%QQ=WP;GMqWCvo@@zKO{bi^1h~FhKU{3bD!yj6y{2J^`es%Jeup7ju+pJV
zlJVuqy?f`c8(SoTYF+UdUcsAGvZV;DQ^zNdPX^BRUs{Z<88>XqK}9w5fn$h;sRrUh
zfVR;@idRp@lRThi=!93(9&mITnL{8rhMVU~)$K_1a@MF7XJ_{u|NJtwa>I*r&Vdg&
z>-0eA0BjN|Oqu?7QwQL_GQN&2Jb^o+Qd-W7Azx-7D9WVkv#1>R1rJn>M!Ams75+oI
zsp6R<TGnvR()pSg?1;w+lIrF((un1ooL6ekNF8-@d9@>Nu!+uBkgB}!UQU$Z-ed&l
zeZ~B;rA@8dBV`imRhLTJsO2p$1%+CYwd3r=j;C9xH*fOGM00h*<KeG0PLSEtQK8C8
zF`wkBK#4bv_iA}wSj}oTo$pZYnMX1B0b3%5T<ao$<{M?zu7YwnVRp|3beoFQ9c{B5
zVy0h>3%NTtD}EGp*d~{wgSkI_$}NjcNWJFeZSLcd%JT^ed&xJ>kCBFd^izHb1>4Kq
zIiam{n(jAj%K~J8CmzwiZ)51icSP+$cyAe%{grI`uE@o&i3J~vg2N^!E9EL~>~bna
z7TzF{!WGmApZvKM|4x_hbgXB)7`Lt0Tbyzcbd@Hr0Y+#v+>vFgD_M=V0}b%gs0i^3
zhsmQ^;$x}5hnk~qQtf7!B&zv#X+T(+K3A6ak*G-+K&J2i`5I@#Ln(47=@^{EROPPg
zE9l8+P^RCavgHi22{IbZSdYpo8P_qSy17SiBER5~MlUR^SAl*#`}H-dI4nGD7{L#l
zAMEt^z3wxqoXWp7zIBAkSC!?hR5?eSR}X;WHEs&<(O{#B1($-ZdqJy4k`%r)l#G1w
zWVQT4&ifUnRkXPdb_*@b+#^L!T>5(w-U*Tsx_r4I94}^TO`*?LaF0`kycJGP96&Dm
zpZ|z?VkyS~i$epkHdDoe9Z#QO;l@iE4PCwJ3>qKh80G(oLJ{UtLlQlWln&VEn!G<`
z_~yXpeBqSLmzP*5(`$*}b48RKFdIlS{DA&m+-Kqv%Y2Ibx|l`R&)TGi<)T+vt?jiP
znFGay4mh^OcXmrtZW6|daJHf9{7#lLur#ShThE&Imm3v<lPFkL{P>JGQb)g-WcNNY
zf2FxaFjwPHtN+q-+Ux}ji*9h_V^(&(+PDSp#w!0oDbnpP_f3b2+_b?tb#@Hl6#lB{
z_++>@I7A5^)IzdfS*SfA?TWXTj19)2JZ>A>*0HH{6g)g;K>g-3I_~`!wm;<_-2aec
zc=M)TMj6nmjF)LsvH%!X5@iOhbkc+eyolY!(vZn94X}(dCpG38c=)Z};8K=wmD2%R
z(!~aE)q3-AbRGiGDqu~MZ%<|#ZN13z<GbZ;bZ1@oKIJ&Zb?Se6a5(G;9R*0+alA~*
za`lG(XKhGx<g_9<^6o^PzqI+w@A#jU(_S({HQ8gDKQd$l<PGa4p0Qt^;648_TAu~p
zQ7$P7@-5^Wz#<p%*d(NDbz5t3+gU6Pa>*|&t7>yQZka4}T|sA7V^<`hq~ATpQ!`j%
zB%tIoOt#fo9vSBQFq9nvPkGT42U61AoPC)as^9LRF%523C^Kv{E9(v$7+LbMnWN}G
zpk6S$T~6EbayRG~vsrxOJ~63q7-yPjUJy7|+?I%Uc=Mc3R5wbsyiC7|Ic2&mmNkL%
z5_%nZ$S>R8*}aiBeOxMZ9ElW~GR?o5q&j!$FfODtQig6?>)gP`)dopP83E<d=)B>#
zn<qWtE_>fqLnBI`rA(LeTuS;;*Oma9s+&ihtySJPkDqgJkWV(7h7j!*O@bebX^z5X
zEM0O1w|hrNn2&__jD>3-H@fDF&(}epSSn>i+v`maCLSv%@`zM8CU|c-r=2fmwq=4p
zKNMEoo0jJi(PGzQn-i$6X?vMqQpFOd3gDAC$)M?89t(AcIYUbQTLiX4Z%7V4n6{ob
zma10g^?N29h;Bl$GUOdb*i+$ni^&lWc@0To9uGu7XE3cBd^W2liwyMgL~c@tF5Q|y
zZ1W9*ym={pbg<V_pEdBBf?YPg)IFLP(|)&E2@tZzAv;c?)BFdU87MUirQ71gRy`{$
zye5Yln;6EMTK^)0;<{Af6pj@Rr0znA$nMYl_Bx!8RhHWxkkpG`z2$G7gwQ$+y$KW5
zX~-RA$$sbWSU>G^To1ZYS_MS^Qzl&3$m?4<UYg~8|3=QPm*V+AeWJMz!sP1-8*`)Y
zKl-_Dwrt6JZIa;!XWB|CQ_YT_-X6&tK3J>`(Qo%r<S)C?<S=|`+0~TWUmD>o9QmV!
ze`MD{Ll+rkn}PZnuJ#&=wMVhsUqJhXzljU|klMdM(bwtvlXBxuJlxXAYwG)l3%HH{
ze5HGJXdep4-hpZJem0)Sn1$WXZ30+m|A*JjpKSBR5LqRYmbi!hcgcYhzblkSc1~>)
zY^I8=^|)k{bL+<H_5)J~Uz&o34}nl(qJZZAwx)Sh<Te^a;o$$W1t1M)+rN_c=Va>l
zfN7aq7$%rJ>r1i~DAUQk8OPWXzB;|BiK5cVkE9az(dGwEbDpP9waY%FViO9i9mzW{
zR`j~AjM6$1j^+PZ+$yF2g}!zgHfNa`>A#h<vXgB9fZRW;9&vb~HU&0Mb!cT14qAth
zl>W#L4=NZ-&h3}A@j`je{*i%k@F-oQ^Lp~^ivP6mbSbSF-A|B;)m)sc*Ualq(wB^{
zyc$X=Mf^%?#+(VRs`{dqjaEON?vxWu9Y0#uxzsHSK^#t@ma*3#yXU~S38`m`O|up6
z+O&vda-M(OqVO;Mc9kxp9)(k1Rc(fVm%13QIFLp{faL)TPQZ_WuLOVJVP?KScYI;Z
zM(fV9n{J{1E|3j6B}vC1Ve>{R>F^oJ-evY4tx=yoZ?m4S&TQ+4>pFM5!oo02nT#fP
zg^M>DjM~v9F=?O5_4G^JKV@vbd9praU6@V!Gch)xgR`39c>c0nPvF(o-uIoJ(`~b{
z3e`Z_(>dC9rWI(;&xU^GLS({Y#tUK%VvTacw-%6-^b*51;C!Rig-5uV6HHNqfc(9A
zlF}A7E;cxE5~a?hunmES<`mLl%H6|PU=-n2WJ**X_)N4MH<-XVFdM3zJjm@VX3<3|
zWx^|8J~%o$b!T1Ml`y7bs;K9}@k6L9YlKtMSfxBst%MG{e7nAJ*W~2AT4r}W@<b)(
z<gx<vEJ-Losv-0Jz{|HTJa|li%&2T}%?q8DBiFgYm`LLAX9pnt2XsawNCk_Q+sN+)
zfxNXnH!ts#BQ@}+?hR-RQX~}J6~8dXJV;Zb0kK%t`cX0oXfRI6>wBz81Ut7|BHEW;
z-8j=O`mRLdP|z3RmD<jf$^2YuE_x4T!xDOQ6S`#@!NM*Tm0`x#K|E4=tr{7V?xz{|
z{!#L6`wp5*1`7k&ESB8K9Lu~bi_^l^dnhK|ADME8^A~i=^8LnQ6T`&H<%dT*hy#I#
zA;WJ1-uiPh*+W{!F+76`5Hduu&ZK<)nl}ROh6vG11?WZpy7Ul>#v4j)kP};lm`TNF
z+0jG(GG1IXg+<ekw$?oF&M==(_TMPyx7%XRh$0EO2JrQ9Q2j-#SMR3#cpOLY*B_Ty
zpOQ1mO$s-3>sFe5O)|3@uSrU>>W~!xZ%HJ8esceO4AB$J1z10!Guxhv-}5(9$|(|&
zo|FCeirchD39<s;S<b-id2U7_U#fSRa^>p{w+J1q-=}ow*82M@uBAH>++#T2k3um@
z_DB|8?3$GIeHSI`t>Ax?GEw1NrAq%z2}`aVjG-=AZ6xN0Xx|7@A|#*`UB(Pm|EOJ3
zs@UDxAmkoFh!ZB?Q1k|QRyqBVa;BWJr}ja8T;F<;_-o`xr)rQ-dC)r?lMjWIKU@#N
zAIxf%7Dp3Nkt_+}5o$OyudTy8=u{Rju!5^^;qSJ3x>)@+AEnLkNKgicvU55FjDECS
ztZOnJ4Vgf|shbB{<}!W=%zGd-d%$7S2<SY2Pw&+E;oBfl!###cfiO{{rUg85p3Gq(
z7pwBm6DPf0SmiGoTVoa@eOrqIt#7~Gz41Zm_qY2mOqSzqAF#gR>U^oCHEbGfKiSZ~
z)w&Z0$8xny_99+U!eM=)5Gzqx{bohuZg^{X=7uy)%e*8T`KR&i9ukEbsoiEamEc8R
zBFNR6kw#^WtU=ZJJ^ZefKf+-qAROePL(wDNa^>VjR5OEGDtaJq)|r|l^(rQQ`sZ0G
ze~Hewa15!Gm%rS&?=OBd;U2WJhmHkP_Iyc~gkaokpBL@FqD8X@yTjJ?-kn#!wkB<z
zw`Dc-Gi-K|T<EhX68ZVHwC!~4P{Dq#7c(Fb1CQs(p>lb}0rv9BDQUjGBkPNN0>_V4
z-%F|F54$*X6K1!OFHF|($eYCPlQN6e5JmKGdE%ZZCW0|S;_vc!{34YKsC8W+&#vjC
zqhnL*>MGZrU#{2mtR#*#E#fHo(d69C*3m6Ywpi)J2E8JfxRsYtV7o5>0k)e#0s+X@
z)}s-ex5|HHAXIuWA47AdKy_9umTp<6w1gR7Rx(Duz$<Gv4wLg^kJBD5brW~wxTNcv
zeBTRe6z?pmE=`$E(zwtrjMVt9eTiR8P@>kHg_|JNuQ+60dbSwMH|S3M)s)d@d-zKG
z1ovd<4RZ;Pabch@7B1sdwtMv5lyD2nmDomJ(BzcyoW(mq7MAf6i#{9v5>4BJ5A;Ef
z>GJ~$;@v0ATBSnM<+>)C6Ii{lGh|{@hOj66bLB~8hBOL&!h8SdPTIb`ZJ^2c3r@}z
z{PF!6ofS_9<cM}|$6hCg3YE#nr<(M?7G2Ul)i-+tz9R@L$_?MTEPWuSUp`Qi6Wou2
zO!q?JTuLjz62+LY@ms8*>s64>lr~)|2eU{)F^sDcrxT4Zo{veH>iK<q%2ZP|3iQE1
zKGt^b{SnJljZOK;B$*z;`je=cP)&uZcUhdu3uxL~Y;RdBWZ3l-UL2@|vos*zOO7rZ
ztQ4QeIv!DF;|ghW7`u=acT<4HNb9*b57mu^WEW^>&L-t2Lx*IlPiO}y8koQDy;jK5
z4eaC?Z}OZ`l2yUO%IPiyKWS+dGpQ9Kld$A#bqcKk57$dQ`gr0=ia+*NuQop7G5P4!
z<!4?OZLRNm=z|Y8s7J9ijk@;GG)d$4)mQ}-oIb31UX|3TZ{mNC$Z$_vU@BQY(tpZs
zsYI;>XBz6DWmP<G=?-I1;nJa@)Y2<8d=uBEH$+d+g_(k_J>OA<KY9|-+KkVu9~ByG
zT2vA60Asw`nw>4FB53v1=13TW(Lft;{;N0>PiBSfY{MBsK2Z1Om50O1yS*2C0-EHu
zUt@`xQ^&yH{O|g;-RDYd3aBHRe!V?vnb?x5S+7Gd3295f92}*QW**v~iHjF2(GJFw
zR-nh~9!BZMlGlq;8?Mwl7+RJ%aTp0XYDRUBlN=VTOB2ZzfkQG|#me0Kb-5#iu!<F1
zUaNo{wwHMZ-2NUyUf<h;m$8)INGE@t7XFBJwOeeYt!;cyQ!<-fr~sz^bBWGB>U#>J
zK+mAdEIU+s{q+JZb7I9po=6##7dV%)i9_Z>Vg!oh68q%A&Bc+wqRrqi&jZ8h`1P}D
z-wk)r6o?&buh8NLO_@Z^**vax+dfxV1$&*ZInm&;SJk8i<nmuV51GoMfz5?xOHX!H
z#H-c_0J`W(G{Wz$HY*eY7PxJRgtW(LwX_O$-hN|Wsj$dZ<-vj9X_-Im_+urN%--os
zy<1l9JJr!8@EZB_2>m@ue?6A0+GzkcT)EyuM4J8f=V*(+@Qn8C<V-{A_fpyoGV(s-
z!XQuX*b5ok%#QG`v@YS^q6c_TV{d!<E(EwUusZ4%-i~QXq1`1>F^2D)HjO1#VbR-w
zhKKg#VSQ#hF01oVTdt;z_QmN4?QO_ngU4{t8ZEH(A9(fNVU9&wkmrx=uF4iBBfrcS
z{j}JN`WVXy;kp~4r>WWPI0bylvEB3rNlfqW`;c^O2x@kjFa7X)lIqVxO1cOf*Ac&M
z<kL+{SnNIF&L_-f%5{vD`<Wq81Xqg7xa0d30KsrzJb)i8nvkJs`$q%}+Jca^pvO56
z4#<8%XJ%w)k;kT)0kTKN^vb1vfe*9^Iz{g=mh0`c@%2Sr=*zq`Ad(D-F|KIREY+{r
zd(3)nY*1mouFI?Q`KWuUwbLLisM#HwH?cX;60iF~0iMylf#ji9@xJ$v&n}h?Cgkz8
zCNj;v=V?i{u2@AAkz5e%bI*oN>-@DyYO#xsAmggC@$W&xn45RB6wck_48P?)!ezyW
zw+w&;8w-=()a1{&gkzdNMG?>(6blq6$0Hl;g*s@3Y+721HX*y$-ljhTWx@4V@1ojk
z&a}%ume}%WSOW>I0#<U)#HxzLUnXCC^E1T<LAp#KrDF^r*m+@kuSpc;jHv{j;b1q+
zyFjxwm?b6aGtZB(%jw~iUaWiI?q9gmtj`sb<%7z~qBNwmIF0H8<Bh}P;@sDvDXtFJ
z*Az{Dl{4#fX>M(LPJOf_xP-BunH^a3nQPfOqa7wLx^ZnOGv%ruo$^@B(gwMXe44}g
zL^!>cpH!??*FRS&F@E<$mg{H0RGX6}PR~>QxL8K_byB%liZ07NxydRL-z7AG9HMDQ
z?s?7WGHPhSQ0<DaHW+RzVPer<R&%yls1eH0>Et`vqKBx0SlHauVTOgiSbB@^ayIt#
z5syoalA1ktyq1cK?mGyLGybSd3kx%6LDzh#$m0CN`gOxYmImxIo7+;iCjTuf<ekp%
zPZ@EtvubC~h~4|cK!&9x+;cYf(nYVkaj(TSHJk4;C~^gQP?X`Z3*<FmZ%&FYAyk0X
zeOCe+`Dx}2Adb+iT4H)1_j@r>$mwNM$6)lk>X%(J8REXdE5!RZ_XH~9C77g;Z>A>A
z=`p9rbedMXNSJri;3RmtifpB=bq60ut9SDm1RFzjh%s#sC14+3jDLKlJsIpT_u(s*
zy%Br=PZU85?aNR-(2wVAk>_f*9%nOz`*XVwG4cAw@;*Gmbl`ynw!ZW&a*wLj#@Mbn
zx)%t3xfm)@iIL#^FgsPuyQ?LHzephX)obY=leF!2vC=B5<$AS?pgivTM@09&h-;HN
zIplT;$t#Hbk>!6+8SpaA_`NT`yzb;#<5m@T0klwrOnY54RtcXAozPH5Ryig?5HtB<
zA~OvE!N=}!Q$GC7V`8f*A;qQp27JY}Eo}I>ZXV6zOih+W%@6#rarMbMH1M$B6O$$o
zu4X>radE6oJnXw^*UrVSmr~)%d7&7`y~l#4i7qgub_e-w7BNs!HZamf?;(p9Xhn^m
z{J`h2(dS{TM<pT>Bzi($J@BoJzkV$uXE=(x;c}6QW4^!%4`0h>DjF;aK*dEl2?WIX
z9c@SWN1$VoQ&vwJXfQ`lmt{W>8AOm73QV$KvvQhHW8vMESJ6}n<8z#noA*3m8EiMS
zN;`pc(IVuQC^3274bf|qQN@<K_0X0)s_+aYlTN(nS$`5Dd2i8p4oi*$pS*Gx5g^+9
z`9b21NZae@=tkSjS`FPPJm-Smx18+)=KJbKC88`&>||(VyQ;ab?KK|HV&TTvDO#$$
zE2a%tyB{K2p6K*m;>AMV8GZ{kh9mx%$yY4sU773+v(0s12cLrCCT4pgOUSjr=^_Cw
z?<+Um@3aK5kK!ja1>#lkU$tE5tPSpw4hS_278Q!kA&DLrmF+MV59TWyOc3w;SB_JZ
zRj_sP8cl3P_XrW16Kg);R2O(VOHmTfqGafEy1n&c?>Sqa3VEVRVE6-D^k;hPbu<Nd
zQNM5}vmIVo$J>wz%RFOj=XQ?HL!Gp4m<)`CCsBl}j8m}GtNeoh3b-Ob@Dqzv*E^Ue
z9ad~~HshRQjM6R+Xa_oZ6qXi8R-ZpQmWx>szGwgW?ZWzbSyyZ8Jj8cC@a7=SgEjK5
zeFBg=<&`gWi|cRo7HeP*`}8R~CATJA<!pYXc($BLrNR-TBsg=UGPWY%8l!y85tt>y
zl+lp2nVboQ{;my`OQq9v4{?AQF>v@nEMbMiT!AkwHtrR#M>+bAa91+Dii9<(ylpwm
zIpb}QM*>Z&d#CK@COVYV5+g;TCyst;r@=lELxqaHlOyf3{Nsn?A3t(C@4=~Vs6U$n
zN4z6r!rLC}V|Qa<EXsDf!zMsJoe;5`GiTFW{2nE_Q}x<kV!QRay(qC+M*_U|4s6`^
zK?;s5#Ne597w7L~zkEmj7Qw;>?;3CeT;GU4jfYlYrg2rHrZml?Qoir8*l6#G+w9_=
zb2fRN-O3jp=zWWDy*KY&_bYs+;rXUKTFeM+stO|pMXBDYl5G5rjCH2MTbNOf`<swO
z7n!@(sw;bJnI?z!y$ILDMep77jFjQw`;KKzU4{9Y1WJLjN*6x8L65Q39u9TZ-@2#m
z^rC&AH^L<KoE4`jULMKIm$zMd+pBi;L~#}aJut2-k+>JvQk%4P^1)4K*ju3}YC$W_
z`c48&?D}uGeyXPBPnesH-9LmLeex|{C#KNnE}7AA)E1p7)EiZ~)9(=U4=sRfPy7|B
zBnj0ZMWth+gS-lo@+nc;d3gA0vi;bYsteO?q;rG?2nVuV@9Gk9a;LA8SDp!nTQ(KY
z!YzBRtfHkaCiy|{(zKmMTi?X|CFTH~-D5&%7{0-SISrf;=C_lSlNgh-Ki+qCyE9lO
zt8S%=cue9esbV{v_vo7;*W=TnTII>1tCR7iidH#Hs!Ph4Wi~aEo40%FplhacJk18v
z@@Mj$6Q!248Y+e-L}4%!*ox=jVv%ovNG|08T!l4Hl|etO(*=hW#Qi?R{4Jhh{St%h
zOnU2Qbo}$;6o=S!XLwEMd<3mh*Dx)azxmU|mx&h}FHYII_ON5HnDstsJq~OX(66WG
zlj9cKt6Uj%T1qJpUs3|LCw^mM=7r-FfufRZQYseYP)-Gu__&bU3wMH*HC$p?rUpgw
zuA!8y&G8m}FS<Ot7}ui%`rIjk*k=R8YaRH=J}ZgTtP@(-bsVe*=^%O8&35s2FYeQK
z_vNl6)`Dw3lGKZG1_1avl-g>PD4|NPM>t8tL1!0QgX9~73QYUhDY!8P6jLL|^yho6
z<iF2=MdR}j)-><N`e89W6}31<L+ifUyfVfswhQ!iIW2*3FCz)-NS_zr0p2_Uj#7i~
zIUM?B-_m-0J9h=|cs7Xi7!utLf#doXss54Xy0f4530_?cw|`>j-(c+eSqyJcvTKhl
z5WJFUl0EFnJZVB5B=%sQOgs6dEVF%<mM`@~0dm}j2(zXFOxyz3M?&y1QS?*yN=ot=
zEIDSF*J|yz>w|3HkxtXj^uzi_Ll46V-Pfg=j8>E@@(Aae>h9$X;s!9*!a*xC{u7So
ze7-W(47V(i{UNEF>daGDn$*eyJmmTNK1l-wj7swJB--oO==8*J%&cxPoT0y!+r`H)
zc@D`2AgL#??tt)K21Xg-+A-(oYHzIQJl}nBm+*su25R42BR_-7nd#xpWDh0EaK~r6
zo+GIV#Rxd7>~#Msc&{!(4USpi3}E$lS2qHi@^mWqi%DY43_XL8xuMF66QQ*SB!#3!
zAyZK`=Jpj*22m!&$Md78kp|j@R@W3r*Y!>(hQ%*}>3c>aDF(mD6EmUXtqBe-MKNhY
zf<ZSLPWZS%=0@yazS>~D*KkezG~eKmTgeqjyAMbu|Cro1oa}F7?*Dmj!m%yY@z+O3
z=!@DjuN&CP&gyzRq1Z@VL&gkIzT3N_<Q&as+Lbq4=th&Cwae{S)8&|D5nP>3cE^Dv
zswQ9H!!xJmd#9X(lI)}nC*Ilt?!=4-s&yU#@=u+5i-emy&Z+o&#Tp>hHx-x54b~GR
z$94-<h6djixgBU$<1r{lbbo1}<jF^3ev&c`R;Zc|2f_C?<s<NLnA0lqhgltO#ua*v
z8vXj)J;$HBBSP+&-F9|=rn`?U?O;#P17<1{f1g|&BxS_7-)EHs--@G4k6kSbC!0o$
z>R)%S-HK@8T(dFQ$Up_;@t_4AI{D)UEo=0Q?fS{&%21`*XOT-yQG{e%Uv8Q`er#B#
z&j4GqBCBR|MrGKs2_%)m&{yw~WJ*)yjpP%DYbS@3Ny~`1@TD-kK3b^?I<l}DYmm1_
zoXT8LVgyMIDRKD=Ojk~YhsNzsnXgyzz&AzaC$VK5wR#*+X@VA-ZJS#zdO6*AFZHv>
zYJT+vos#=|Fo~X*c*9qHh&4@#6-JE9)4%TVaLdJEdmXH5Dsg&?ub$G9(mP&XADUko
z-Cn%Miyq&@POly*YVlWGU}(4zE);`73ngac7cXAj7XhD4@Z2nc#GD!_csa?x<#3WY
z$QUy_gT6dn2!Iw*K{iW`C})g92oI)OJqVGbG{SBw>~uIkbTwiZuwYnZK32XeCB?N4
zU8PZfjPw2b_xGAv65+JFlF7zvr(KkeDV~qW)fz&z=ADPdmRRj_bUz(TBVa%sDDIQR
zO4%VpB{;g}B(JWqD5wW4j66$2qlk8Z(b3ITn#btq|5Qa-b<<%ryT{&O7i+QcjXvgA
z3z4MLhpU&PR^@z=eAfW>gjfu7j3^Z-UVrxGFBj9V5Dcuc>Z=<**~cqSk~DPkuhU0-
z3h1cvOVGV1iWrCXnjZlffZ?|E0RQ(Y3vcQxC5@B036FKy3<UClGgWT3r^RsU*1@A#
z0rx>&hZgL*kF=(Z4|CP$s!U2N?>d(G3h~>evia7g9WHrhR@O<U!=W^8)NX77m%EJM
znL)Uj$*YHO^}wkuS&cLCiu|XG8H7~)YUz+m#fgOZe1|pTPD!8&Um$`>mt3>E%SHCT
z7(45*tk&%BE8QK^igZdS9im8gcSuO*Lx;3<cXxMpgEZ3JA>Cc?emrw##xrMr^Iq5f
z<0;s8tb6Z!ul4z^Rltp>Ckb5A`a|1RWOhToyzhfwK5d-;&{af~cp~Sn%dk*3#%6SZ
zRu1GakTto9qRS@7I-G$iu-=+{xS~`{Tey)h#*8ofoGL%A&==@r8}&5GW2dOq`ijVS
zI%c`nf;?5Li4KubBica$;r?@AjsZ!EJG-^OZQks)#e7yjqBBaY^r6cPhs5L6YfAlE
zNhg@sxi)8B@I7zz`JY9u#35PZ*J%q{hI3qL*FHnQM~X@6qLoy3(>}ty3oxZcQI2G<
zCqHiJX_z_~Pm#>p6HK<eyB|jt+b3VKE1tJfR@7dbH~L^#YvT5EJyX8iZtFZBBT@JB
zri(3W92cL3=H`*2Vj2I}ix5nLqOo2*2klwsNn9?r(({)nxz2N?_P6GxB$C@!bWwHb
zO<&)7S6fVUQKq6_*Y#%klFyv=pC+3Vb@D1$B16>5%g8W=IKprEZLj$#Ek~d}-D)Ya
z>Yw^6RDUCgB=NwA^KCmbZ!OQLsxF!HL3|O#R|K`nx#4B+W<lWrQObhD&FK@Wkn6Fg
z(2F)zdpcb&IloR*yf4NTdWWT3>0B+3qzG|S{bgKn?x(0BRSpFC3j<9$0ST?Lg|K1i
zb(BE@x6I_PD-VD(Vx_%0d(nsd66>qLLE(+fIUqYY;vNlg_(#y}ysp{a)9mR-3yd0D
z(^$y1%#(dEBIwyuS=meJra6WQ!CXV`HzCryf-BYc5`cMYLNzT>r*Cu>yS6*Ol`TF=
zF4EsW@tdP)sGh!LC)skQI=JraBI$qoWdsqC#O3N0%6a^o5JbX(RoBUEHO9{(Zr3Yr
z8qY4YwIEZlPbb$V%*1g;@$q7ygkQ2k#Buq!u(&JcYd#YQoW)Iu;X?foJPjs!__1GF
zN^4x)=c?Y^R~c1s&r|hnIJnzM!Vjd<d`*|t|6wAqU~;_q7VbD;d~Rh4J|j{WcD1R*
zDxlYGP?U1vE%FO)0iZ7PnQ#D6mqykU#5JyDMADdijk&58X<wX!t=#_0G^Lxy=x7T|
z73nqJDb!m3kEOS|8i7)!=THQGJiIQoyFx2gcSq7|JvlqlKeaor>wxkN1_n8*vIo^d
zS6_8|-7xfJ<*^9)>f}8^>MDp)jOO~Ac1=~R8+jwwQBekCDjGnE3%JW1)kf?3J@4xA
zkJTX5QcmADnxMG=$kgm;SEFsO=Fo=}k9%ofLxr7Pvi3K?2FLhT0G>otIk#z5IZYO}
z*J-y!KDpsCs=9&FGqJ9kN7KmK*>^EyeaZYNS$qCT8=GrOlL5glsq-xFsWG4wg`KhL
zxL-?K!?w`_SE<&-Aqf~}Zg_`gIf1@#wL8x%;~zxZm;J=8N{#Ci|1pD_2lZ;HJO242
zg|zcq20wn-6HIe1p_n^R16%s&$Y=ESG=}xeN@T~%aHH1S<=PAv6z!^qQTX9v&rFAY
z2rJob|Ae|4`l?XN5bJFl7sK^xRd?kjoVLDdmFh>mJ%e!t8JENuL#6H_zDw>-(sc7?
z2T)~t$(<)5>*v-NbxKHrM&A^Yl%w&!K%dXB5OyG&?AUy37B1t%rU)-+XgeUKC{Ln`
zqI;*{ucEPt`BE#DpsuStaMqqary+L_-`T;9@(+&7qd@YRx#f>iz0|^jX{fE%42-l*
zNkMwNoIo&5R{-as3qrSU|D0`v-QH&Ei|(OKIonAk_KF<axks89^|>;cw%nOC6hW>Z
zjRE$y*WEKe{GrdtsfGOv_nFslP?buu3c4|%&RP-y?T4?Ydv-eJD>{!9e<Ea-ufDp5
zQ32zn5X-MOImBu6{{bhi3IRCEF)d3@-2cM;(hx8KJQ4wyxAK4fTQoO-A%t&b{v7a6
zf*t7n-yQ{Tz+AHBD$5>tp1t_Zb*yF#$N<W%W;EXNzfo>wV9IR<_Z176a+`$L!@=>T
z_q3FBo)IwY_-|+INC8+y9W8J0eiWecq^0G_w$BcQ*;U$K7XJgpqvC^jYdjIwLoG3I
z4g=bqitd6z9$+0N;jF0Gn8;Eon8=f<9IU{?l#@WC+~oCuK_(C}RbP03y#Mr92vi}A
z-xhn2rBWRHMRdrsD6&{YgpcR$2w;bgG86`|X>AKzWwyAaoJtpZG>w^)#eXLn4uo0x
z(3A?_9c&ob#i-Xita{jB@9+avd$T3gH8=obNkmb_dUvTYb$_WvVK{|DfkGuDI5-mh
zGsSlxR7@RtP4j__$N4H&4hS%Zd);wYVlrI(V8P`64~&`t>P!7Pgs<PfkCnjdQO@FK
zR&is(IYB=DFInhD^r$yZk4emO`%yx-1+q!2vLuDF@o!3j9{u~FFZ4BrOTRaQ=?_%$
z*Y(qfVzfw*c85*-Ti0a%>)sIJ8011FVJoY0d8I3}&QHOyTlA{^2Mg+8Mv9Q9YI!4D
zwc40jcc08CW=?>iP;j_Dh$Y04kXbjV%5+gN!H6)QUafCUP)k@|zN&{y(!Dk&DM{`0
zp=QW>|F|8t#A23HVqGe_nl?7k1~~#>wDo=G#vZgywoxU{Scx2N-$)}pP)9W)=v=PC
zu@k>OKAIY+lR9SDrVaQK6Wv0iI$^K+w=PV?Q*yxgg?f#01+zsQyO2~I05<JM;#V7s
zJf(M%tBzluO1V?B<UUQNraT&NPW%BoL~I7)_5~A657uw>BVU0*o+EcvMfXN|gwwMJ
zBU*+A+TwXoSnI=%J@cx6J{W_t-dS_JIicl?ez9rTcd$Ts<FX~RWq76Onr%~?BAXQx
z+h}hZ`QU7?+AhAtWp_ve){4u;*NX@|z!*;gcun*)K-cI+Z(Z$14^Xi8H%L9b2QuSk
z<Zx&xmMZJMSR*@J%r`;x_xG1ExYG|j{mAnzD1do$GDCr&(`>w9(t3441ygJOk|?`$
zDj5v2<zx2hEf(lo*B+NN{1h9zWdg%MVYIOf39Nd{gUr)2PZRkBj325QSVbk7R^JtC
zP%ANLjj_r{ZfiPe*c~n8oS;Tqv?MSBw9Gu?+p8DMx<zT4gdAB@oT`U0bxf88q2@Zp
zbwyHaD0zXdFh~(THijZHR^jK0EqV6y?@D7ur1%O!cVQI=l;!2+zI!<!T4bdz#6X6L
zVk&(X<<#P%cSUb&KM)=AIn-6{jf(6El<z;fB|gs6R0EqlYAHTS8{TB|j@6OC(pGvK
zgKIZf=0;22&g%Vp^kc-|F>3y7Qh>%4RY)2{`qvlinBNL988dq%A|&>d`u6ci;4X)O
zY({DD3nd>6sig%wD34lSo5))+Io*@_Px-rl4-5Z1w4F=xs9<NhNT%U@&eRI|#E)*N
zs-bT-U!@sCulYq1m6%C2nt;iv^-96&EEqs2Zh=sxM{L5Ix5iVaB!04aiU-PPT$~iD
zs<mc@QAm}1w~6ucM*u*_5j#;<PL|6W$!Oq8ceXW%R<~+A*W|;Yq_!9@D7bXAJ2i2g
znelm}PO|NFu<+h~=u%{(J>r9vzGka=6i+OJ23i&oL^d?mhh;N$!{JTZ+#l<?aW;x`
z!-Wufz7<}cSq8;(P9)2>)LDpEZLKW1l0f}y%q`9=OoT#!WQ@ty8U}+GV%CucTk1e6
z_aKEI_w}jx&??&i>SLA5*L;gCt>5c*bG-Nzfmu*Q@Xo0T9)^4(4qoc}B|U+D3{C0j
znT`HTv$biaC>51m4Bfpt&R}x>-3@CjN&%r468^h>stp78`xKW}P-Rf!ebga|d?%Hy
zZ{g|DfMaUBOAl4=1diF@TWKIwdy7QQ(+#TiyN4{>ol9+}*RNmeosRQG1hM2^+_vU%
zRX;GF^cg}2d=PG8E&-!B1*Ge1H#S>w7nHICmH^<J)5JSvV(|s<{f(YK0c7s&Pn@ZM
zfm_@4XG+e{_J_ih#qJI%ZDu3G2U`_0b5;=cR<tp65hI4KWD*JQA{nmwQ3lh$syD6J
z#Pb>E&_K&&t4S@}K(YBrB<A+#s!E>m-F+OB_xFA9CRH%PB2elTjkpOal$$P{M$p@e
z*}_0ShW(d`{kkY-lUllWspVI64}#zRdCb7GDw!li_J-ssbm7$}M}97{(Kdo?hq}O5
zXldiza_Ld&tB-ztfw7xtL(e+c^L9DGgn2mYj@}6zbEXo}_JJ@7=@3ZmfD(;IHc?D4
zVKQoUKVkr?=T#pRth98{Yyz}wL}3ggEGvrmw-4GxmB(lC5y`G{<^?{(-H6*+0FgZ+
ztYhWDN?L4xxUif@x2;$MW_8V%hoc`FTVrpH!y!Dn#{i;6-pWdp-pG8wN#EnHvjNij
zU{{}`&LVW9KwmcPrQ5wp(%8p!leGRAWC}QnJNvvf=qaJ;QjO^5#ulYQ%G8bw{lppy
zLM#atwh{tz#3HUFz3vD`{pG`CS?MqfEC9pIjnf90(Z2k3p<rhCK`=5vCtz6tR8y#s
zIC9m9H!!{r#C3bMT`kE!2RQ44O{$9~oe-xufNPPwSR%zI6`%W#HN+d05(FfZR#N4q
zuAWIn6Z{`l=1lz`FyjxTT$(?6L>Nq89#w^G;tki@TI7%|-oZg+&rC_|LE-SlR17t6
zzo!p<$yIB?bb$$a%W~GB)wkNyme1SZQ+=rK+F;do1G-H*|H;y(EZ)8bKN3XVII*^M
zTTPpz-a3AtM)yj3%Y%ciy~4tvU~-s~C&pm-eLHq>e?@|^jIR^7{g$6KE!TX~*)8Vx
zLE0hBlViev8No06xW-6Rt2w6U$^o{`e{PmMDZ(;hUYRN6Yg60m78DBh@az$ar*$4E
zJam1eZgQR$U;B{$tPr`5u`xRURV)qdOW4Hs+nrl~6Q&c?Y=3gga2Q;}^Z*Sjh;FPk
zANfK>4Gq^|Aow>#E>QeIcT#nGS3gy)Li*@=tyRp%PabU^sQlQlpY{j7%hLG#IvAzq
zJue+=kE9M0A)mXyF+$zTEuGkfHm`jd_pKKISzS%F^`SPgp>XI_*j!3BjtQC;p%5UH
zwYqzzWc1~-RGqJ*_)jkO3L(0-Wl^RDW?=+hknui0Sq{ZCJt=hxPLLHV4oPv}LB>RJ
z4=b^)w)Bi1SFQdDlzyt9A<YP`9*qe$364N2S%E<&A$NsAi5xFL^Hk%edb1B9n7&Co
z!kLl}dZjt5*<iW)Trd$ECKa^)w)skZPo<Zoba{Kdrwzg635lWz7q$x|r*TO%U19vA
zpqhpgbtaQhMv<zs;pAfI25M;gaIpBX>^s*kHk2qcReg%{3Fs{8V6i^aJCOHD@VVB0
zf8W>`p(VBZU&MIw7+~pLgs0xSe@>QgTi~<H0gnv*%tH_c)$1PdF_A4VUTAOC8f^<y
z>JVvr%^PC{8NDd(nI~un=z!dh*H|y=a4<*X9BPUPbSEeAFDv1(yuC7dFzUDvKRM-b
zvFz(G->tXiUx<1j0U@b?3qIj+Rj;m@wXR2I)Yr4d8j$wNG5kBw<ia(oN^SaTM$EDr
ztL?h5ikvZEa2<$Q>KA=3`aETLS)BMOU-zMeXeD8Q69syDMnr1ok&y)&@CgPlidj4^
zBn=OH>ZYe)Pq=gpX{I+|4Ga%P%y6pu;=1InGSiciie91hvmhB3-0_qlMSXz1gnw*j
zHopGpKUO%xU;U_RQIx$k^!U+umze1R7Fi({6gjy#pG(frn%|!?w`)AekSC<AmY`SY
zGXgo?bEAIg$aLK6T*?cBt;k3d40)OBsk=R#Ebw4jsP8c0PD?dQmtSnu1Uk#PF*+^1
zJ66Uh+_pr5@F7wE-i|;8Xd;5*uf5BU>#ZIN8a@S0RrtS&k+2+x*`uVSrXP}=K7R4n
zg@tKJ{L0(CB@Xi6pC<@Bf+}-^#TfRtpBn-D$17z#vzE@c@-dRPo%$-G<68!(SU*Ip
z>fAgD*y_?d$XMt&%9Mf<H@22e)yP)nkQOtufO6tns{4-P=_dB=E#w{$V!oetWswjd
z7AT8dx7%KZw5FqZb|Xij3#$dj6i;%+jX06ZX=t}+6Rs61mA0q~EiCW#DlbhG=0<J~
z9}e%cdC@k!Ga|Z2Al{F*-W<!uU|8H=Jy<S(68E5~FY67`U>=j&TM}#z2BD2j1Dn@&
zO)j*3vGHOh5|9s${;+*(EnDD&lZziT@(aU!Qdmz{+oGma38`sUXU=PEZlKa0%iYvV
zb*EeSb_*)!v^OvKHt`~Hv>cP)ZHG}%edrO7BlSnd7xh%N4Nkt!vJ$jE*u~Bq^_Lce
zj6%jtO)@xy1V|`rFKC%GfQD9(e#}?p4g1tb9T7Jnon}cVu~LK5&$>5f(2yIU5Tl8N
zR@%%PgEJ-ShYRbC$8MWNI8&>p$f!jMln*>n3tv?S;yf<u3ac|fHLrFSSPwD234$o<
zIMB3>;rWZK;=^*UQ@@Dqq^Y-5-epQy>g(7h{_lV&X-78b=a=1z8}#GcDppviZK;2s
zP#|b2D)6#SKRlYOauDWUHXyG6p~RpOMKu3zppvo4fFc61+`fO!2d1}%eowzja^voD
zf#dabiTcTB)n?s%ai?7sqf$|#{a65QaLd<h&UtEj82I4@8?^Zz*nppIHqAoBYG9_s
zQItOHPvg^d>>t={or~O&Z`~<K%o|l3IBpJU;p6H|xiO$ZA+eXaPou=&51uu+i#RV%
zZ^y`dRC#Y_I!hLr;x=Wfhw9UnjmTT8#~#{usp$&)oq+GjIsS2)Pc@d^O?NrIIB~kK
z3IGTwrdKn}cQPD9bRbbLiMZthCWaPi`5vM<e0ZF<2Cv&Jg{2YWl$LI@WxlI}9siWW
z#EZ4r=`<OdPqP*qlB-0R??w?|!*wjunj32d0xj+ZPA|ByP-4`Ztwr7yl7mAV^7;Z%
z8+l^~iHzHc<9D|1sa>}sz94TJ-LmCj-o?*wo~H@d6RZkYpjcrAVxlRYZ)Le?8|FVW
z950Hs@Yrmnx#`rJ+LR5lO&lff`U(s51{AYDM)`NDYu`aC*=fHM-JAJVjyajEmhRGc
zP8$hJ72X6j^=XFIFss2kP*#6ok~TK@j&0J!k(ocq<KjoK(#pdkJ6WO0hdMTOKs-b}
zU0IN|$7Pu}n+s<Jr0RUd*mPM#<B|dGEN(XKYWLE)Iwhk?>w!82Qeh=oBGxQ%>aL|w
zAXn^4^VS8_z4hVK4x|q$);qO{4A>E32NEt9X$^>_x6|woR$`TM%EW&WQ05W-a!==f
zc>U{f-CI)oI8Wqs$a6Mb>$<LF)IS{TnLe!1*<9-dDJ}hypwe(ZuZ!`_=wT?+^$#h@
zQG9cA+4*=>7GcG;jcR*@NGG5Ttp{K9@lARtya{9bN4_XH>2KbocGDIf(;S<V2$*q_
zdv)`aWA;MPy87g0Yi&!sl2)E7GU*j%R<;eL<-#%qp^f-cBHGcL8wSW%J$(DUm{d80
z@~<H69qs((1F@(qA;uBKQh}#AKIz>3Y1L&CpL8`Mx?qpyBr!yjY|K=1!hM~hqZt-h
z(bR$1VUzeC?l!p9Fcf9(_p{hk=2xc$uRW|*YSp+UbsU5Kwfz9!+R|L$wGXjQhwfDx
zmdb5M(9?5#W4O{WK0Ewt?ZMeVcmxpX!J4NxMX_maLs&u4kZHT32SL#wd)C9~6!Eww
zb#MXQ#QoLH?arJLdR{82fPkcE!FFaF+2NU^?W~!0$K_@*8jGU6g;V(K#K<*dQ7*<|
z#inc9z<J`HgT{aLruC{b3wtD7Ek40^0Xe*0h^Rbw^7iqKQBBDv<-b<_uPv1WdYUz5
zQ-5GS`JXPbKcx40+E6VCd_t$EVyc}AWn|18|L)KLdu)Qh3iu-ac%pxG68x7Qy<#uf
z*tSoW!tDQQGpA6bh1|~}{%>jjumACe6mVX>z{ZLE|4>NFAC{r~^HJfyzTkfW?q?7}
zpvYhP`FE|Mu~&xu*OukajpkoJc^L!<>oGt1bZ7l#-}85kh~_GS{L2Xb&0DljV5eYa
zhpz0uyPf`e;(s)#pJ?j$Df_#wV8FcwHeuc}I!yV0bH3l*RAl^{D0_cCbp2f?{$V=a
z=zu@6Bd;t@{`aZ>yVj&x`+@%30RG$O9pAv7M|ov&n%~Xy?^+{W-^uychX3Yn`=g^e
zA763?jrISUoVE{`fY5#HgVq4z|242_q=1p+l19Uf12RNubEtPk>gwiJEV}<!H_I@o
zj=HyO2Mlt5>5cx!AWOG{#p~^e-}?TtIR0+#xPW2aXT47T{bKWPqxMh30CKs|*wZ*X
zXL9@>=Lg138!YurhH3r(5c@-eeaO&^FDXL*cN6vj%Pk*YvH!ou>W@z5tpGpGUxDu0
z_?J8M@8%h7fnSpWyRgFthjIVclw&6WKgDkP8pr*=n@|S0>3b!;mj5qf_+y;YJi#7)
zPh7M}q5s_kJ7B5J7#(x{ZyT1kg!qBY?J7<T{;9kp#AH==iIQ5DV)YtLH)-ul0rQP-
zSXherrYx2JwcpY-z?_Q;c7Y|uWXC{W6<x|~%}Lo^<*M|-0tJbUg<v=u2Rf>IK;8X!
z#sz#x4y21Hf&u@zv<G~fZf*f0p8N%V+x>sD3@9M?17#STJNSEkXj17(^>U7MN=Ql?
z?*DM^|D)B?(O`3r7E5*fGxmc9|4~p-3{a>?OypU8Q;Lx~zV$~YOLy~P4s3eg`3Zvn
zSIOW+1-<&q<R?JGS(JM3f&^teRX{G0@RqTbYcfyf1AZ<meeE^6mCE#ywS+02pk}23
zJ>bg;p2$~IB7OZjOMkD5<b0Mo)alP~M9{Zr3)T~O_=qs+Ru>Bl-Tlo;Nx!%tYgA2Q
zQ0W5Z5CM1!j36BBDc^nh@<QI5SKR2~TTh<^lv!~kxACpXWJvVSxEHy3LrmxP85x=C
zBV5V+Pk9omLb-C_j!XN%TaF~ts9z6q{+f6G$=7e(`sGE;W>o_Ym!dlweXMWRpgF4C
zLkanu*r{H0_6EfQuKa-#A~i1rttAiDYBP&d>xa2$=6VG{(7rj*w{E?$(&86_8d-C|
z1)^^MvKBeMk<9nlh(&8JdV>bHv6QCsd1tITS1(C~F_wUWjH2)Bt4{r;eW`wOw~wk*
z7mW)Ts-Mt5JipDv)ryp(3=x|O7SAuiBmo@D;b(Y;WQ<34c#GX!2`~k9C74P|l7wf~
z{+lwP4OfShjkOlhm4=dzlv}Xu^92%I_3_E%O6QBuj3TGn#U;&DS}C$7psbO0)?^`K
z1-Uf(>1n!l+8U;tm9$*7j$BPg1bn`>eFVnS0psUbaV!!slPJRB!Vex?QZh<5p-Z<`
zjmyKORYwiS<SvLZ-(Xq2$<yxlS33P?uIMwNa4x+U1l;m1%MF6VNxV1DBK!`#bdug0
z-(%&gjMsi!H@!7dX>mwjXh}9XL|4i!5qDX`YZvh8=n&v=yw59At`H6g3?vc$u;S4I
z=_`6LR}J{}AU$%g6Tuqt-{W%9Z{dqH>IbQ8%M$2*Q`={wVns~K>YQYZY~D^5VnZy|
z4DHc=<lOhqlPSzOAMKkD$aq$nTg>c^y5Y7p0pH$g855w~IuL1ipj>2K3|3vAEgK96
zT|F$5^v3#%1d|KWx6o}$I!<JkZjU$;syOC3S4o;MZp*(irnV=h!DyxmTkq_Vi!Mbh
za&{;MJQ6|u$pz}varPLNFD=iH--E%UEpgdSJ;&Sn)bG)>u^S!rl_=>X%jw#8Z#HjQ
z>XIX0U%GvyI;ztix1dxlR(%_v7LW+&-1-Z!1GCd(gpS-Gp#wSJm1>#Mg$os~<+^#n
zRJdIrJcvhxBsca=(&7e3^bzC!x*717L1pYtNIgz#L$dsGya9e!i&@1G5~u6QgUh=9
zJ?BIe4e<#>Nn-j^wJ4LO3*%Uma~(`a1BOMFXayY|Y`d-CJ?o28a%viyh@wFPz@`<d
z`Cq(pw!cxlc?*c+dn8?CZ;|n7tU&7zg|h(hg6yw!#a%pK6A2En)K~7T;naZRQT8j+
zMgW0H6Pgl6rjcxSGbY$KGQt8$uwZe1-8WV(L^7o6t=?ogtXCeg1Qa8r)cg6pJR)g9
zemI4P-lqZohlJDlPN@}Jj2P~)7$Xt)`<n^C6##z1ZcqxGWKH=IZ7FCTTe$a)43F)`
z2oH#$bxr!SU=FO<9Q5nkAS;T7{y4WkoRXvW4q!!XncN4SLlw`^^Bo-oZjE?>t3f1y
z#!p1cH;KDGl7mj9)i`YrjoA%>D3FmrQ)G&hB9NYf9;lP$+bGw8M4(Uy`Z*?XYJCPZ
zC0kbFsqkUh<3p8ciu9(8d$S>ZwJ3*KhNT#)<Qga2($*T<BR@R5%ODgUlU)WN=+5z)
z-m|8?%kh71^erUh-R2?yigpsk=%Ce|ec=5Rl1z3GE#{_~qTc8vsB265L|OVMA8^r1
zEtje!RuSm?BOg;JJ1wnEeICdhAa`W0-e}OVwY3mInfsv32|9RXUuB-gz-86jFT8Qr
z#Zy?drCKUet8M1RY4d4duS8YWaZ(}jSuEeTRzT%xZMjU0*+K7?WIEpxIaQe}&hx#|
zRgFVjelO~C!Xv~PUGR@>GjD6Nxu$G+C3}nF`6{*x>ZscTMGN(aBfk9@^FT2%5H-8O
zSS068*{pl;1@s7CR41fgFf%Ra1ZiPXArDPlZw0T{+ZGw*s5_}pyUohmlER%ig3_@z
z+t=hKQBiH)e7?n~H*z&Eo}@_#)_|*CC%pwBdW4q%ep(fkc+UovOeYDv!ke!?xO5&#
zDcQiqvp)?zGnlI>M5AHgagl5CLNk)NR0uQG<&(LAf#`6t={U?QSIDZNjsU|d73iCr
zl3tl%%M0CVndHU`w5V67P*x_D1tu-MMvs0Wgobp8OeeN1v;*p&AKr7t<$$pJi}gSX
zUhth!IYZ(^-Mhy+nZ5ApGf5K-fmg7*yLncT60V17k#de(^({pg5AQ=R?Pl`L9joaz
z4{YCXzX_izJbE_Hpms63=Z1so;$&sx{Itp$<u&g5AwO5S+pJn=q~*9^qBu4!M*g6h
zCwR=>sHNmSg$DLwQM)g4<gsfaP(67t3w-ZFhCn7DC$R6J3?*X1`}BlS5*Zj6AhA4G
ztYvo5dOYm57QdY>(THNr@Otrl{L>dL`g##Lj%*xqK|$U?n_7FsD7>HBp)Ue?#SyC|
z>*;}{E~C7|GUZn~0<KzhizAu^FA5i?cwgNjSf*bN0!-#34_7d>IORbtn^_7?Y!!*|
z#p|RctFkJgR#U*;X|NzCv1~Hs+>zo|%3H!CVYM40StZqY&?sS$-sPx2SGfH0{qn{2
zj}HmMWJH-kqizqpvlUjwS*hHw4p@;LYB}i<I=NoBPCs%|baK67%1{5w(UIZ4+#Fk4
zI_Z9FxgNh75t6I@%DY?woF}5piIiUp_oxssdO5LluDPd{BG)vX+s72LX3(Jbm8<V1
z&nRU!Fi26T&j*tQ2JiEE8};cIY;ueInR&tcqU+~y=O*+OyH9j6O1?3y+vWx4r&jl=
zDd$A)CRs;pAu3O9+-<SiclG2?%5<%FR^>>djj4D^Pv>S@+|>nlYj`>~Hw3vc+uv-2
zotNJpweB<u4H;jpx3OhGugYSG5^tB1ggk>`0@><fd->FHp5#=v8a>d&^Q=Qw9zj!l
zesyLrGTQfD?R2tfM6VG=wW;G%??(c1G)3g$$DbCmSqM1d0s?P5{GU(fjz7_W18S6*
zTnQf3_qtLJx(PBAL)R-B^)5FVGR*OT>W|uGaDtdnku^l14)=9nL*agiWR&40zR)WH
zY>c4IcO?r6YC@Nv0%hd2EeOR{8lFRz{98nGPrEjrgQ&2dunxwPzz2x(Wr-FUjAc7B
zdXR4K-Pn+8!3F?&X(=U%TMBh6beMUY=p7V&KX{o9Hfi8`!Z4&(6LDk18{Lh_JI(H#
zcju#wiG<+45oK`NT@<Rnl!RBHZe$2E#=a9noMf{eY?I#qGP%ny!{D;_D8A2)imvPm
z3Cie8vH2;EE0Y*FN{?l#IE#eGs|tJfR{xUns1G1`^=I;|WJ^;lNJ1Tw%Zk7eO*c*r
zh9o`{#l()>I`RWf+cA$z>N89ot56PnyUmJj<}cS&>r);6Tv!s)U*Er>4(NLXRPK@S
zsz+(+9bL3tg(V5k-rt`DkU-v~XZ9e_ZM7Batn0B@Swug5`+*sx76RzsY3FN9N1fjB
z8!y;wqMJTk7O-jdU5VCqZ#MCEvMjmxiqp)j7ZjSoV5QF2nntN;C#2GL%2Ok@lc6hS
zWT1?svdCe7$p>8XT?ZUPgG~%TMdq0KU0Ils;o0*@3Kw;CqB9lz-nnusjO>vra$c=V
zrY*`{gFiD5)IV@#F4#E5gplx(&A%&VGlLkjyfROhQH}xec%HI}?omPojA_i*_MP)R
zwQt~wVwJAv5lj}`ocdTg^b{G677pzK*#V4Nb6d|~XUm*?O2~*!4?jOu8Z8<}+P_iG
zVbG&9Dtvs98MZMHk4@M`fiWY>((oIWO&b}bROOp;X_QaR7wPdy#1x`saN(S!udT_h
zvYQKp-F+3+CRVk8JD6;Ax#Ed|ux7_+Gj`b<oH%_qve%M6A?Hlsd%oW6c{L!JJmEz<
zrVJwaa^UCf%CNh$7Fc+NLorj)2F7F*zCD{8{1hxVsGBu*JNZ*?)s=PK%YGw(Au9ed
zQVEEC9&N6-J}@3sD#TWyw0NXUH|l?HzIyxzT3~DOBL=mu85Ohtu4B*bGNZ`~P_puW
zF-Lh{?(Kt${Prl!VD72au6w&;c2}sbd0l&`(xIJjT<B+p=qswhmzU?x7giE0&hE^h
zALG7nX~~7KB`rtZeZ-Z|%aH(wh6KpSC=#ShWC(hMlx$aDEFl9U+ry&hVqoP#V-%Ka
z)8GIdC^<T;=K1)Lrt?~&vDL({)WWNU0SYm7*XTxo14=|;6Q%!7;FGUaEUZb!x=`r%
z7?4Sph%sVi-Z0b#SZZ2EX6X)v71L*!@yEmHK2*w4sKV`4Xwc5uow@z0Gf-#oao`^A
zsTH}!N0TBAbl5z}`CN%!;E_?GtLp5+;z$U8qt-dF_Mx9xT~TfOtB@@mGX#vYDb&gl
z2P2!3?%o7b0Cdq~=dM*9^9%qJnSVJ{GxEgNP<BN&f#08nB==TRCVTWPY2vfn2;11z
zI{@hCpor(a=^q0^LYN5RbgLH^;z<fFglbSYcMI2E%3kg-ltdoYLLZ{x7YIPEGRYt+
zVNUUxr1@U&TMNL_#4U8JAS@^Deuego4xFmK?(+U3;JW<GWc!kS%dL))BCgmF4%3#)
zR^TkB<lYZ74yeXy1MfurG?wouW-K2YCHAs_Ft`E4y<~cKKED$8Emnpw<mF6Tzg<z4
zFE$zlEM&HiIdQ87<#nZP8$w|LkukkTv}2eU?#MvLh+zVD0NVv2jIVP37k@b?%i-W!
zQ1XTU<cZy<Dc9n&>#l;6V3XEK_-pmgj@E+Mmch2&spNN;E~SN-HsTK+*piVs`CIa|
z&E}m6n_GlfZf5{u;t1`yMW{$>uHYs;s?Gc`vkEzu5nVd0Bftl!@uPC#i`?H?D6fZZ
zkG3ot90##4)U7udsG<TnKy-_A%IpVj0UqJ@+vFWuZG*8S%t<e;o3a8SSCv+L7J)gC
z_-KsT$I#_LYT#Y9g2`;&&T~0sEkfQEbM!sM*5=({rPJoI;Jva2%oq`6D|{*-_#dy(
zyt8|YGID*ZK&y9k#fwNFK4>~_xZQ(X-BO=F((4QA85;=bq$bHhLPT&K39ET~X$U**
zXjQd#al24|z;#BLNo3<3^QI5XGL?&3skW=)m-^)kDf18!<Qg>G#&sU?VeO#-l2pfY
z<4RrmSKj`lRjy^KAJj0Y93Hj9Az>UCl_8+n<I;<{auCY8oDWdu2En-k4k(Lqtj#y$
z{By_HNtfChHm7Q$rX<yjY;V0uUtAnFv;=B%0K6WqwdS%JTJ0Tl&w9_$-orL%x$PR#
zeSR<hfsjsl=uT;w(cx*$k;CmgEo;e{FLQ{y<VcMWoJv@p9>TJm+ipy*M|Hir_G$RM
zogro5cwfm2Z7y(;t2RH|wq@2C(^YJr$BUPJ=|CEWziEk{z6zPy^~J%RPH1Q5+_F`K
z^b)S-Rb_8*w-K_OOFy9l!dD+F%xZ2QvYi&b7Xvfh2Sk2M{q)sY%?^)AjzSYsq7_<O
zPlr>z7qDfn9%DvexMsMaO*{7TiC$kaiDvWF&odPW6H4Kvkk0)vVO&U^RJkCzGQ*Mk
z5rYM;0|H#VJbSOJ$NSWZ{XOU{;`q7k4uLmtMcyyVqI|%T##{cMu_{LV^_`R3&QBM7
z`t=NonLt;)8J{mllpjm*$^GH?vJ8E;6_%->znrb&y)VLu^8%WCe7pU<TZ*c>MHRK}
z{<EXhz%YI1*BgsUft$UMft#tV#~{)J9j^yo8QeaG*6p`?GdzVU+NJt+y&s-Mx=w=L
zvcG%NYkXK!Fj0oZ$+WAQo^Uv{PWD3F$){Qh?t_eXpD5gA#aHYBut*(7&e{Gj41nzt
zMBa;UG+$O~-C6imy=RhR<87}KE0ffgGeWY1*t|TriyW=BvDkUm!zSIaYu2bRtePBF
z1muX4Nt;>!-sIN#gc<36&F0`x!{Ms{l2%ml>=O{HFkcvDUDA>;B&v1SjZ}k!8Mll_
z!#<Fso9P6SCgKUkg6P!P-qk|U-fBOO7|W{v_!E-2aHrnsrUEo4uBpnmzhkv-=2OiJ
zTgX+QTJ54Jzz&n0xJXV+;mh>h<uRMBNNiBF(>D3Kdc$t`q20LTG*qUWum~Yd+Y@30
zL%c>nn(|G&X{vB<7sNu$Dxtb3QLP!ivr?x3ydHdiTDdAqG{pr5hFH{Fm}_a_E|W#i
zy2;70wd!H#ZW863@3c`aVaB&Ef}cL^SS+^@_nI#@8AZik6H}RAa2*q0I$^%>d#F`v
zKu0MNT_9_5b5-!Y?MK&1L;4EwEF!JR-q8H*@(HCJWsoJK*utq!vi&X6U}kcr+;!XM
zvZ;!!D#Jbm+-nv5QuRcP!KE$ep3hIsyD8ABsUDphRSjJ8O>V(5-|C5KwFs^k3y0=%
z0&amV%s}B>izcW0lCuB%)fYh<OD#uRh$A5RDyj6qOQ-MO$_w-)qXZP#wRQVNsP}DA
zofl7y)wHSM1Zy?+52_v<R<5qSp)#pzLo!{CNA}zlmG{Pf-O>+Q6q7VlFP(O=QMN;f
zIkO5oga(Gq)CTX61Cf5w)S+#~`)Z%4y?msHCROz=0<wE_i4}>>A9m?L$N`VBlOwcK
zf<pEPhmG$q>p!0bKP@cL|6CR{Awcf_M*cJQt+27)!@0ZfX^UlJDqn@OR@xg8anmn!
ztDmb|-KEcX>`o&agbi9RIV#1M$5gv89f}`n7o*8<cYlNrk7r4`sylOE9$CWQd#Lsc
z<TFcRTR1S%Jy^FejGkWTm@HL}_Pl)&%3roJ!~oixV&N<1IUZH&B1Kf@|1cVhmvaPi
zp#DnBEp|-&i9>zTHP+Hyc|n)yMH2%*kXP$-6YaS|tm!o@VlHxnC1ME(%-XMtwAD`{
zj5NKO{N+5&hX0bPZeSV`W~C7zU!TeAAP35JSM(<QJ_<jPcPE;{et_Ddch*xOi>sW>
z$YG(&zO_spL(gf*RWRQ9Ik}!%AZ1sBE_nU*hCt5unc?o!NBnR$KR%bFriy*|Dp?cs
z{noGW7W?6zt}j>Sidf;vi+F&%H-0AG^u`|HW2}?c5j~<6iJW=$8F!~`n~G^|z;1Gd
z`&j)=Yq>x5<192n&Rl_bIpXC`IaJ~7%BSbfnd~B_`w!T5)fb%N{d_?3bEnBVueROy
z-xg_d{2F{ZH4!WM9usFnVVsw>OYy}P#@2hdEOqSxCRR~CBo(?r3*)jqKEH&m=)sZ@
z5{A&56q0w5Y3ErsP8U**hGN|3iq)#ymwwS73sgnvwVJ+@yk0QZk-`yA`jBQ>3Df_`
zkD^rpdK1KBP1oLr8&F`Xz~26LHZwr!-ZB+x8ZV|TIsR>4@2;}=7R7{xHXR;Xj*N8$
zZ{S>--%HJl9$NfT+t?m*E<^;0<t{H!=oba3&lx{+RQD!AnxE)a>pRMY&>2I%)e7&)
z1r2431O>|C>xenWp!J9l`^3t*u>1DqJ67^BMKT`ehq?yf3_eU;uwTlQZDT5i#W+-}
zNE^7FO>(clLoPvCb$)tiy<g%hH|*BoeSKI<OCADy|ANUNqGkX#xKL7guj%@BzM%P1
z0tN=^;(lime7AEx`93@-8z^tK&UkH(iYthYF4K@Jb8Hq*z*c&dI`2AEaDuj*k68sr
zundHl6Ya1^Ud^%X^9X?jUrtaJ6(xzyc;Pm6lzRovTpfZ5O09FMme@%2z%%--Y#Ehz
zM6YU<r;m^%2C&^daPv6n2tdcFEC%uY5Zj$YIsl2=zSSRHP)3LLy?R19CE7+M>A+Rq
zZ|f(SdQ^_H6u&CjD|S9)wfHed=hpTZ4rH$D=SZ8{c3>obYn<h5wZwdPFl!N=yiTAr
zQJ=f<ei_e&eqhcG(igw*Cwbr&9@{98`^D^bSdp+-q21f{{rKF?!k&t=bcZn<L-y)a
zW&Wkq-Hsd2XA1G~oukLThNx6vap-*FpLUS@BThww=z)DV5$eK)zHh@)BUVnge5XCU
z;*%%iQvRd`LVf#m;0bra`J}y19=fpuQFh@+3U#=e0C@auE?!ojeEEsVNB()Uw1V_&
z-vN+q>u3KSlL0DB7b2#6T~s@bqp+C5J;2V+xuD)-iYnh#&zLrbmSA~}ttK^CewBra
zyqund#!`&c(MD+Z#(wvvyZ_)6txgrv3oOn)A3ARlxw<!9=l^tT#KPb6!1Prxp?x5t
zgvUAFUlysRVP|W0<$2#gv)QG%2lH$B*-8_?b3FDg(@&uivRwJ@W@2RmBS??(?GV|Y
z5GB~uomJLih}o8=K<#cFYj6y2!WfR*x}L#!0q{@^zF>puy7m!;I-o3w)qJX-#hN<k
z_$-7XDz*3;>ZX%Mu<?Aqxc4owoI4kY1q8R<T-T`}Oh9z61~5-gznCYS50}o$%daP0
z@nHa`(-FDmNhdVkf>#?e!sD3V9x)em!LxF`tKnj1^L{ziDV_;Y)2L;wCJ=9&RH@T?
zG%T=w?3OEcb_@i%WslP|wNYu|6x}_UipJYe2wrz$&twW45w3<n9qLH4m8C{LsGu~J
zPFL#DHSA8ZU@~}2^B|PA)g2R<Qt)yNRe_|H1;PpQOQ-?G6Mj*TPX(H(4*GP31U?GE
ziE$;&&kf``8>(eV;!cWLLGn3NKn=LnCP4k7{h?Cc1EL!x1#`V)dnqd(x3{gXc`jyb
z&WMqCXNOYU89MuQir0x;3X@sG^aI5BRuA$)^L*pjLCZI;C@1_loK995F1dFcB{5|)
zrUd4c;fw%<!aqq-W;Woovy_`!zDrf;Rz2Sc-TT$3>d#yNW+>{Z7yRxL%gsL%bxTDl
z;Wu4Z?f7yXScX%W`y+##U6J-Nzdgd;76QwQYk22&EChRF+vF*?be09{a5GKaV{%Mi
zf!709J)(n$sR#4tl@5}kQ1sc%9+fnMR-HB$#|#PVotq>Olvq~<IF8~Y?LsZ&>7+i1
z1l8O@%F9+Sq$yWMi-Jimb?Og5D?=Ec&SMQwg`>1u7@8W2KjVVCaE(EgIva7k*&g*P
z#-@x}mt~VCWV^amS3(Lo_f7jKNy#r}P&UV@_%^ikND3~NTkTY7+MwI|yu(Z94Dt2G
z@S<-1dL;rIZaXPlgw66<@J+Kiw&aspL_?5V_E>@!dWIT}w3{{rfbwJ94~$O^ywEOE
zzKnMFA)qs~Go7ace2xh+Em#GJ)Yp!75z-xVrM*zp?>5YrMQ969Y~SnzevW&oemMz&
zmrpxgzDpcwMKE2=iX(WrH?Ye^!J$NVBl{^Nv8X>Au2KngfmG$}^D$~lnmLlD<6f)*
z23F#bs&l|g<YS@74igI#)y&{jb5nK{k9ltZm+V8dXrf=vLxib)o&!&K47*vbw~D)a
zSkfFL)l#HZul|t7XC!c-)I9=LR4X_gOj>VFLAG=)f^SYMQ|}+V3-iG8c8UH*u`F{q
zcjYV84*qJ^c7r{j2<1g}>O=Bu8Zqxu`RStBCKb%3h_T8uM8-zI^PKP^t`kHOW$p}m
zV_F{$w_)Cj0y+05RR+^x`Km%*i8F@6GLuP@tup!Xkc7v}sT<XVeBZ*;!^O)t*w!LJ
z|8yc$6K!A@!P&Ge8{xkDb;@ExEaoLIf?yNy1V`L7rZM-hdI)((0yu;P6+V3w35h}6
z<<cviQsCw)eLSDuviEIxnyWEtzIiNj7hSLWJV23&bO`8frut}86p=JXFm^F1c$cnk
zmIuyTW9Y7gRyU(8sFc&LyC|lBK*Jo0Abbi_?fSR%FkTxYW5=`G`BoX)0kxci^0iCj
zO3D1YuJQt?pL`B+j)!Gek&8qb*u7v_uj1L19w72JBeJ{iB3t{SaNGfbd?%=qsPx+M
zrO^KRI=Q(SB1LBtcv0TjZrbWTkU4Hjm~|=``99bc!LtI7a5+Ez>F*hDtJ<Hh21?SW
zP&HPY+AY|W+U$?M-^s=-G*O~QMH&VtA5;iygI+X&HE$}*(=9yI*qJH~2`a*2B`UQ?
zRBw|2pu&T3d#0H0Gd8(Sp!sJfOBw=>S`LehZ+_r4jOw+mpx+L2m`ScKdNK9*oEbuT
zB`l{mtrNbc+I)En577HD?G0~G4rgAL72MnH#BMb@=I&g<ONmFWetvYnT;k#lS?|B%
z5&lTQAEqs-4bh%tGmIrdE?S|dQb8_u+OJbuYJb(^e%a#8cT{;~v#fTss4-BZH(LRL
z4g5+zjVb`kW|-qE)NA24p4$8l+e%*e?-Is&yq*hZEr++o@03g|7nGEg$Zb!Ux-P}$
z4{R?sXpPd?EZv}TQ`6n;vP9yPppP^PfO?Y>@Rhl1^gC56%XAZ3*xC_Z+}Qq{;E022
zB3-FpVCGW0dbLQv9n#EKPD#Dwo<`{D^P^Ub4>e^Q7jPE&3cbwvJd&=yHh#PtOitn9
z1f*%Ns;|%se+qO@#*wFlG8l0m!_wIt>jtStePJ2t3n>aDp8T*uvaR&J=!x=E&K2%W
z<DIS7piB7EsbtW-7f{wK=HTg({gc}}1wHFjgd2;aMNJ>gtp1e1Zfu2NeF~-TSk)`O
z-9t~xWEG-UKi@A{HPdY5FT+OhJl*+WM-=xEJx%*HRA}PfwN1`>Hz7D)*D}dw+}&!o
zreNRcZX8UKS~TV9BnIC1vVGoY+Pb=Aq}kZv>-z4W@%=j?b(35>mWsG<0lde@>auSW
zPwt?OIc6Q*Wpi`m&{?VdY8x?n`C|-QMkv~w^71cK?KDnQ7)hAvGmKwu#u#nMmqd7C
zr8ko#AWLu-5<BK?G*b^iB(Li#Jqcjp)J@tVj86QHpfj~w;ly(|$s<m$PwaBA`>wu>
zcOcwaR~j|CH<Lc(%5z*U5xAq=TKAT3yWbEv?$kc%72%Asu0(XwuhzXLGSp~T=W^dZ
z-zVppj6jYY2oK<LRYtrRZBDE)S2vtvp-U!K+#F8Tyfqx>O*{7hc`lY3410zC{CHzE
zo3Z*DyVVYJ=WX2pk<k*IA9j7Z`o;VA1esT;hi3_*>>=+ScFzUV56Kfz`cZr;V<)_0
zxg^9((nf5qYBhV&mrFyDCJkq~+hJ(~J1>e?OO|u|?&viaR~#-=b=c=@_bKa~cyV2B
zcPzQvx*96V9aqO0`3%|l%r(tW9Gy1zuzTYT^Nzk?-nt*pj@7urE@qmRG+o5<`63L1
z^ZAi!!(Cs5hm)Q<*IWl@n%z#iYF=*|jt5<`j2Ws|?PQipijBNk2bFHWRxer{-L|S@
zq8{@^R4lbjpLs1=;Y8`M;h#&caTV*b$LJmwD5#*-v<?c#c`OoZ{!$u!0_^!ZFxwWW
z_4+z$yO1_Igz^>PfO=DixRAeYZ4Z=Xx)wqA2Xu9Mh{b3g0$b6kODSbeAjcp&X=tRb
z6fdsoManKJ@3a|s@~5mRzNb852TeC1)`$ObIDc%bwV6PAzpk^>$*_PX@bXJSv4w^6
zDoW4tMbKC0j31>Alkg_vCr%>mj^eyaVkb@~0(fNsEluigV_re^6SUgA%D5(O$Y9u|
zkV>Wh;M;kjQe=LgtVidV6uuBZw9V1_%T&<8rcyz0b-VeT%~3hM&bhZHO}Ce5X$0YA
zl0Y%1zMpd`;LxqBym~m0Y*oIx*cnZ)JSSoA+BckJZmgz(X+@G8);-gtvSrY$OJiKY
zvsPi_SZZeRmXb(Sf0&cVnqFb3m9n!>Ldc$Z|1y&>f9vtRJ(;HCOF|)nQcl<Kqvnmw
znfID+SM>*s`O?3@E0~wAf7_lGy1h_IKP}(1bi1XlDexZW9j$#r>iiLp({g8ZF+j;3
zI=@bAnBsQB(RpKa#)+HfH+tjLZMB8B%Qfe%arTUj=K%&KdQ*!L9y{t+wTqX+ZGf4<
zAe?m{&8|)J&FeAoo*{0#9sXeo<H<@@I}Y6+v|PytHNDD6LqCSaELYNCjROhs@dk|d
zh3X8tYwfA*!WeP5y;aZAMB-lnb*IwY&;d#JLjh`xFBCo&P-bl5VK-pHdiyZ8i_33<
zOapI1Jen)^L21o77wr*=-oArH_nWiWv%BWDVhyT+@Prts!h?i88ZNlY#C9<a_WHz4
z_*i?h)ZP}c6Jz8}H)@#Ji3wIIA1Sj~$Q|<BtT=x-K7HA&o1C8@9TE!D$3S?*+%{&q
zOu?L}sHnVwX5H=lZ>`SNiE~Z9-w<tZA#bgk0%w_xF!Jo7m{s+5G~vm6u)j3Z5+Z*5
zg?LFDLY1)>=@(8FOmLJQ24xZ`O{uKLGr_Y8KvXRlc}Mq)k%Bqbo{wqQPTfRz`>Z*8
z>(ycWK*6gsLHK^c>(-Kxg`rdVT*7MfDY5$J4B;i#MZwlDgCk6)jcKXtb3_U5eK6|M
zX*lf}Ci1_9I{t0L7&P*Bb#s@n!=S+@10D}CA<9s?H66f(DRSPgT;?E3tUEbIgO~CD
zeT=372-bL7VW`hP5Ul@-gJFCz2EaTc<F~_m|C5pZG7A3b=wxpPu$o!zAg0ZGSTDtp
zoL%+MaL^$E7v|p{tV{qP$6AiCy$KMrtaK2#0!Ph@Wegd<+2mgM5PG)%1yu9+1Qy_b
zQp#?6`D@%)4D!GGBQlL)6)RZ|)!DsC``eTK@!<jmn)@AX>mQ`ygb;+Zc~ZT1#1BC=
z*CLV_e=yd#OY4!9rPsH|#$RKquA~+C-TFVV#E&9?fLq4%GwW|H%o~A<kd4s)ek^lQ
z|Ba5|Kl;oc1!%}I$=N^s#(H|pk&fougq$BvYn5mMcOY1l@C=*n&AUylfgL$YahxF*
zX8pA)74QX{n%hQIkzR|&$8aRhrno|FAS&L5EK@Ls<7x;ukeq_z6Y*oaTtrj^4WHX;
zY=v!KZbV!hS#qOY^rl!V>q&)LZMe)jMPF{<QZ)Y~WL8F#xYPOJYxjG;CpBH&&-xKt
z@#D?8>J1L>6<uq^C6n1T)nW&2|H+j8^Mx@#(D}Dtd-Hy?G-(2;HO#eap;B(@W{}w9
zZNFHB#fV)z=*dMy_zOjOITQ2IDv5A=dFJUYZEK`!qkVr8EJ>unP(plB`V5dOr@86&
zs5N^1#!tU3O~-okl>Ekawb42=>m$znroKWyVWhVKd_+_d2A#ROdQ(<bPW-aRz4L&G
z!ctSojgq|l_d1brC>@-p%L-G~T2+G~XW@v52+xz7KkLu^v-QGhhv52W_WSWHzfBMn
zyn3S|9l?|fBU?%A_mJYm?2S2vKJ#%!X0<9=XsIF^%c<S^J)m;JyLzY1h${2>;VvHt
zDtewt)1expMSPX&HG<5fdIcvrzJblD;zU_ZP4vOuy@4AWL;b4|Gwb5(0{Af&wh?92
zX!S-4ArvBMvGj3cj)@<%oT1<w;P1!62MF5%J5(JO+TRT9nDp7Sp=7=7swa(|>UZSo
z8mrXCJRO!w)%>?oEp5p2b$#P{T{9xq^3iV!m0SvAxNwt21kWEDRBx0;#6@GUKs%RR
z<0G>lA`)U4Zv0ST+|T|Z_6CETi(uyYaE8V3w^PGm2+M8y%gK(9$&1*iloXOn89Pnd
zz&UTq@_Tr>I`S$XD~U)-ME_W)=s%x5)BDkA!5+!HJTNdY8Lg&!%&uPU*f&Hly}31%
zc)FGPq|Mvhal-!BUIXVw1N58?tHbKQfw*Z19)mb4W6g#ZHbt(z!x7Post6-VF~BMz
zQz^D@u-nrat~OhKuUc*X+E6N$`EYKF`#MiguO=*FO?RD_{vE@cu2#3=k5@Ay@2t?#
zr+CfgL2pFU;^JQP4eeQsAzq+fF0>Q#dHDrnc>C<t;$1B=7FW!B|6^11`_=R+?(3Cx
zv$Hyy!SDF5MEo=LqRq=4+Q^(Cto^V`@x|hHW7yLhA(HQ`3MJz4976q~Vw-y-eBluh
zCR^%{KRQo;Mve$uonZS12D6yYSwdJ{?a#g9b2=1MIXw~Ju;SJVA?AI_=lB?Fpp^_f
z4kuh|KD8~*C;1UayFtQ=nYuLXPd2-iF{1vRfx~y%?sKr-9~OYLBx3+>IgJ?O1)o_7
zok~?2aZFK#aKo;{<vrz4XtWsa^s;q@-X9BDB86Y_DrL-lRQg75m1~!?IDVl4B&N-?
zj-xyZyc&0%QJ!WM6ORID!euLlcke#+4_M^-u=e*4WHlA-hm@tG#2xErCwy|u8~+;s
z7|rw9mgFljoEGxiF&xs5LnuG2a}Dla05Imi0qn-n&n_EIBBTR|ynRTiqI6-mlLCnD
zFGV4@1w=rdexhD~Q;^Fz7T~<A2O{%-yG-*}!xIkh(d9~|<k@k50&bXpIld%-Z&(Qz
z!-fA$1q1vdPY9}CbRa8>waibFhXyC`SM{OaFLP4xT~p)M<;uT(`n!?*^Q%{2K?no_
z>TfOkeWm|n;q$wKtIfF<<Hh_+dh_pN@}I8-fYM`>P*}u&>;(SOvESZ$+=447-Kw(C
z;r_>B`;T^bgR4!#QE~sV>-jHT`lD|b;39Sx)dtE8e;wD~PXBAv;obvHK$CX(v&!gy
z_UE6U?9u`V`>x4QnfgD6@V~wQ>?xY-Roe0YqwOt&;_A}1;e_A>N$}tyxJz&kkl+y9
zEx1eL5<ED;-Q9z`OK^90Xj~iT-8>^_X3orcroO7LiXXeWH@nwfdarw3g7)VxHu-Ek
zI60H3TmSc8`i~dH&_EG{1lCCY{KfLio_PypA3Og|fbcK#d4vEwPz2xa9iRT=`~1DW
zWwoC%^4ezpTmMD-qCu~J!r%C#u*UY#Ju*oPyQP8H|3?dsvOb4@totd-QczN1ZT&gH
zNsAxPz5i*x{f7Yw)DzghZAr^qy4D;dUp5%?Ps8=!)?(%}S4&|Q=Z|3O-`?@}55fLG
z8-hAh>i?WDC7=LQb|4}i>3=bnfK|jc&$5n1`On+%M-Wf~IbHn^e|~E|-g7TPcHI6i
zIB0Uu<T7gWkpH70{?^{0Pr&f_UrXLUH^E;kjF=iIfv{ib&%amTf4oSyd=7Hh7ZYgy
ze0T_p042yTXL|eRw@xBI4^V$@yFc9!5PRjrcYVeT{%cvm1YWashLQ2J8tWTTV9mK?
z7;3s^dUi{V*t3eH;m-ey&x1w+Y#4>%gW8{8Hk}V0;I(|L1~n@md?$&Pp`_`T1P;so
z_pI}mPxASI@)nMSF#Ykr%WuASOMi;;SK0ROiQoE9uV9?~yfP$T_7?%;&sYx{+(=U+
zJ2i$jfDh(!`WK?-KQz<PN8qQ9KH6;mJunzug||OgR0QJCW3~Fqg{qjUi;MgT8ELVf
z0MuTA+oS5VFh!0)_($%rT1|g!aqL{R(){c!&fYYsvYwuvDcw*{Y=k!Nl!JTSoPnW%
zn39qNWbNI9<sd{Mv`rYNzUF$%{#dmLvb1Cw{AOL3@wpQ6XP}ce=59x={9SXa%vR*k
z$fK`AWrX}32|KULoJDiHx}B};Qj?S4+nm}A8|$|2T<lWu+THmh_dc_Rq=JFLAXU`j
zT>aNsO4bazLajPd`{BVe?vG^Hqp~Lj|HDn0LH{7<l!u%Rw(&{%Pe;X{>%$C_R*tx^
zs6=FQB@6zDYBat6C`5DwfZq;R$pPEpx6z27x*JBd78FaaS1A6$tXhmhypLb;K-102
zsnq%|BJMG=FEa6!-d=XQcf}(B+m>&r9}{J&NUQP^gU*+2Yey2N0~*bbm?49Qr1cN5
zbv}MTlBE|ngK0^Ac)vk;W$Atq0?OWsKVQvyi>~fk)=<5KMcRzw|Hn>?AFA>=jluJL
z|LI%L8votY$^fdzMRC>f>>NYCChrdZi0Hi4Ew8+p+N||RwA==TOW1J=&`YEBC+oz{
zDqA09&Ng;DN%-$jpNIhuw$it}&CdQjkCQT6_1gEJo!8<#8CZ7sFi!P+0qd83U#f}1
z>|Ubh8eA<ACCB@pz6t+nwSQ~iY<}R$P^kTEv;A{gbW_W#Z#y+~x_T~YgqcCnqyebE
zFZaooy^hXs9dY?IuZJ~<e;M`>aoc`5!Iqw{vZNrG?ARIgY9=?%KJCa+CmNm+O)1fC
z&J>LUc73#zy|JPDl3Zln-Dku5Ws{Ucx9{pdTc##+#4`Bh$xP+{7<L_4;xkhtI`W=U
zN_ZGIk%UAitu$XBZtt{|9gE-!ZOJWIFewoJC3+h}ySChmd*1K_D*8Dbw>)e;ekP1l
zemqReDK2JB+%%<=&VI;UVX4mbE9hhC=Hv^k!f!si?K_dvC)4iT1O&N&NHyU1EP{OY
z$)E{ms%ICaP3}mGwwj^QK#+m<o{`z!f@efB4G&$?bV(p9-XCq{MGd{4SZn?it{C<g
zF(BbD>3|QEt@TJ4{HGbI@>F*y8ryJ!Wo>qty3h6G<ZNYA$#0{WvokY=p88EcYC7t%
zTWL5Dtslb*zp#95dwx3rNYzLcSS>eEm4L`R_e#EUI<MDpPIKlp4kn+chrDB#8=v9@
zcBKJBr^40N@gE_A2^^r<&At8`B$1uXvmA-D+3?h#Ay}$lTVfea+%A}jUn>54Nb(B~
z1O~gmnV6k#%}r)nd~%(I#U&(i<ah9KIUO?X<sErgSP!N4mGH3D?Fik3$t6=r05yqN
zKs@SqwOKbgXPrbm)6UBTR*Trp{OX>$iM*kDSp$K0aSU3~fYL=slAr8pME=a>{Mo{Y
z(k(N)*>Y#Yt)+i9yG-1*uc7U!(9dKB9y4#9>f4Yz!iYy7e{pBk`ea@^akUy#I>^#f
zc}tsBZQt)sekXCnk<?g85Zy;nZ9>$;6*DdT&tWO)i$t;_oyKBfQa`=*Kj$cG0eS=m
z4Y^Tt?r^VTQ`Ffd8c_&*P9rFlsHD?)M<^*Ht32MI>diSEOp4^1)vFcZ)mPqTx@`1-
zqKM8!o4h`W8t>w8mLzArsVj?T-rzfrTgXcjYu(kz5bG~HdH^46hvJ=WvM_u}sQC#;
z=q%)Nbwo;mcxC_|tT#1bQ&z5Xh$MxBNH{wusA|rsm81_RbD0#60(C~^;~xh9NP=Hl
z?>eH9a6YQftfp*~iM(yrC@m!wbtA)5a>V;JN9M`P_UHhYioS(fX1{;PA_nrq#LgHp
zVJN;+x+LkYEe|8>J<Z?mBypVKeC|oS1c-71iVutE85}NCQAAk+1kw?JDXJNFA_M1=
zUCypshQ<^d@~J*QWUcoD6_cuR9G`J9*!rQK%j>0xt}Do-!t>ZN;ptl5wqmtzvCd;D
zoBg5XE=QqkXFMm^`}*|sH23hkk%(W-o_J0~b1j!W*zNNjK95^=O|^hK@t7<GCd~Dc
zg2M;~lGr%-yHZsz^ED2uB)L>t4ropeg@`NNB12<BGSZ}S+k`tI>yq<J%+So%eSPJ2
zDkx9?yp2Lha=~?MnLXd^0#`*)LqUNOb<nfJS4>=*EsFOCoG261FBc+S;;bqn2{9?u
z)KAS0qpnti*Hn=UwPgoO)uf}Se#R2UGuE%1GIn_)KU%&F02i)x&O2D7vCA!h?ygcc
zuTQh)wO5$elAqE&g`9gNlTGLM0ylc0A#b{hP!2dH)sQD1aUouZ{2kTEMhhLYoo99{
zGjwV-<6H-3w{DwoacuCFW_MUDhV4u=q&*?*?qH2(88~FzQph@{#qrLdI}tXvSqmxc
zVl6TeuQUqLtdWw{NGc>kG9G_7t`XSHA0d@@^_wkV>0i#V;yy&zATJ_e2L)|{W7?d0
z%1Z9KE4Q})P%TghctI=6<k1xmxR7xYe9lZ8=C_q)Y&ii#iq756_8aeeDu+EPxkeOP
z?`iQUD?F~Fuob*2hC-;)iQ6lW(!+d6aC{a=MfA!ePhE0XHDQj4XC%ZgQuM-{l}&O-
zJnjxEHqb*J9&R1f$=y&0nEFFzR$TW#W{vjoyZjF6wt2XN95L_oNGE6N-w;%6-)%*D
zUPoL^Gwa;zV#9JybaKFK1dQDh`rTSgHH5O7P1E9F9TQYuy6Y`&nv54Y^1FxEo2EWF
z_2PW=h&)(o{uJY8u>G+4coV*VH%`YA3rr-DVK&?S*6vDr_{!-cH|n*PT$S4Zq1sFB
z!}ogm9|`=;NJkB3BTCI!42fcYiHjF`q4X&pWcK*4Zz6E3EV)(4rJtU@fe+&BZSM_m
znT}d_v+Z=!etLC!(El*YQBLdq*3+a6icx7(wr&i|+H46}9uI7l#Pdy)`YzydzAY;F
zJ+L=}^z;6vf%;svT~Ynn#dgAWx9(Js)wlM2&vER**X<w3zRmt%Dx|EZE^E0^R|S9o
z{^9Se!Wdj2QuP@Os%i9Y%52JN{PE~9Pi==&fcW|(vvFn9V_sagaHn+2$KK>nnICb4
zg>CHv^ZR8@-?Y5Z99B|O&URLwisalRzxts;x0LVjUB@SL$))Q8)}xnXW=Ea;j8T~x
z{oe!oIZ~3Zf_EI7$tU_fPlOQJ-+e|Uik@M$l6<Y_J%+d_zbbN^1;PHkL*%Jbr`Lgl
ze)^kKK1Lgjvi)S-Lo0?To+IEboHxSnD*~>8JF8}LqNa1eKyJD~A`E}A@$<8w+L`7_
zT-;EQv=I*_?}=@b)0k_;Nea7S#>5om$B0}5SMfRe>j9!14T>GW;KW<r@T^uouJo)2
z@W}SFdYY1K5pDDwbyDObW0e@aIt!xJZV)DyPAHg}Sl--FhIoMdf9v>j2`5oaB1C)!
zh-lC9h-D9_E0YFlnVVM#*9^S_?BsVOEAHohTKfarRwXUpKh?weA;lvTeUy%+yHU{c
zyd<NdDPu%$<p^*Hz6y5Alg4M+%g%#~J~rk)uL{*2e_>$>D8?~=ULe*QC!y5$KYDq7
zWyY{Ce9x!3$2o=X__U!c;}HS{iZ>!Ze=3CZw(u?(#MXSGj3xFsm{1rS<z-jK^1Mzp
zUoKYy^1_49F&P7vr}27TZjMB9jRnn1?K6aJigk!=oFh^5Q|$BMHg1vltAV*?^^Ezv
zO1`Eeq;IQJX|olpED8xWO>wuSE9Kj+)#WaVk@E5eZL7K*w9R)HaY==vFN>^NA2nj=
z?JoJgoJjTxk9#IVFybAL=LRTISDY>(YQ1y@)5!q_Kn8p80fEd6i5K=IaJqW~t_<I7
zu6=w@021nrg}Iz}Y(q<dSIc$pct3&aT%7|*yGn#FE|g-QK5X_uq3^W75q?Cxnt8f#
z<t!4{rCk1m5RIkIRvf4N^iW%<!(|?=4ZoudXB?-Jai380W-)yB)oXF4FLgC*=IYWO
zM|bavQZrO4T~!2cydP2f>twyVVUNL;MjP{rqH+PQjBOMQIQZgE@-Q%>fj)selCN8?
z`dgFiT_JeJ7{~Aj=D{1}QY>rOyUjr&(3J`#(b?{BUC)ym%g-CY=ja8(WQ0I)aqKO=
z_$bqc^NL3+*9b*f3(ca_^qiH_P69Y44ITOR0XRCcms4#suvI4byrBslMDiuBbV;$^
zHn*Q;?m_a`Uc0UFX{O^Kj?s7eLemL0#-pkYbl>y+1q-fic?yfu5b@Dp@1a321)Bv{
z$KUB;3+nP{<|EaeB%4puGCs1tydbKy7KvfCm<NrDi1iM2&?cdDtk$zAYeopM6+bM8
zOfi*qUL*FmU~!fD+QN@3#t7gTtvk<X_Uf0@bJcmK72h1G@6CSvjJ+_#x_13+-_-fR
z`VP5RH#RNjFX^^?GAJq&3uwgTNHZgYL&%c^1)p|INC-YI<E9aLKxW5MWNM(GozDAm
z0|z34a&ocrLCbA7!{DO^+e_b4%N7+0GCgKwzZc}DpZCG#K$w|`aB^MO7AzTOxin;I
zTzu;fI87BP!$Mfvq4~7bPM~ZhDGvDDj-~ACRYbxRA8N&|3cJOP2Y!(@R1gL|=VW_w
z1mltk-xkp<lc=bME4s~0>Oq}N84;POFVnJHEi*>#ISG2Vjl(e100<{$nlnes6<Te#
z3fTq6;)MGvY9DQ$*8PtON{>-FMI$6h?8Qt)h_x2W#Mlg2djmSeFUZB%!Qajes-4=z
z&kxnvsA^M1RYBHIN9phL)ggqpdNsZHs9mq`T>)9F&hwzs53O#e-p*dW)hJrT1L6aN
z!p8Yi&hd4cWj9)N)><(**anCF$M($Z?D4EhWkj>Jy(;XwIXuO0h-IZ$w=iQhexEO~
zKNY(Rw!Qm+quQziqQLlgH6lIA)hPhjHZJ7kHUo}ZLJp>UoV+g3K2B5abq+pLVe0H<
z?1wL+YFD9Xn2W)_`>%@_kqoo7+YpoAUfha?5He^p+{~8y$INnDHJOqRGX1hv(1bTM
zs%6?4wUk;IbJ{Arun{*5R^l3aTNJfz779Yr$Oq)I`cxX{tO2JrrbC;%*deZ$5f(>p
zT!%gUizpaGf1nn9q-3^Us$&qh_oKk5h_F6jFVi-gCyj5LLLygcgXekw6A&RwQ0&@8
z)ghZ1tL{~(yV?V36I+!%cB#^rF=sKf^ZMK!ey0{tr*ecp8n9AqhgT~9LfxWfPHxmR
zZnM30kFxb@9%sIvNmI<7_9;SR{3_t?wUQ$)of@={)m+surHx!{bx}){Wg$+5t<DJj
zOYZ32GGOOguFd7RXLu`2$#U`#A-yW_3pyB61AF{?V=`MId`-Vd5-MNDiG+lV-<wn$
z^j9#vU1ccgO`o3RvLB$8elk3sxN{b4g$gHI4B#%iYx^M44yCvG>*()2+&OS&DcrPx
zI=Srl52sy`u_9!{d{Ei?dYXUm!9U>K%GLd@&lyR3k+#46NJ&lm`f6a<S6B7+;jBz5
zW!>WwZ_QN9h*HzMOPv!NAOCaOE}aYdwn&fQuBNR4dO8Gfy<i#HvwrZ%{@c9aj6CI>
z>$0^YiMkR_#I09+GZvTS8Q^ECPOzgt2AztHbI08c%o#h3x!sj88`3<rYBiP?GKx1B
z;Dr<~oi*foZMtq<5mYnW5J4tU|Li=Yc$pA{Vx5e4&`8_K<4SZT^7guKm$6$W{aBG!
zJetq!SN+zuLzB+H$4}j~@N*3|KJ||(24mvA*-oW`IvFtScBsb~IIgqI-%%HJTJOuA
z%G?T&B%VnF$Z-M!DT~$vBaweO5u1GLHLRJp8{CFG*Yv0jvgKy{T|C;?C|GzRCT2mm
zGkiGSm&wuh`=IdEwmuihloZ9xNP%;G!z)Uzbo9@>_AwEV4-#~kQGJsvP_uSBJ}{oh
zv553>hKuYnbo|Q^D5e(U5}23{KDWNY)j^{%#}Su>y9pc?H9Y6+o-{_%sgq*uF<dqY
zM3TM7NaQFbI+?hZ>EqPeKUUS+sbr<w)F|mn>g5(!bKu5>DCSf4R^v5A0*<xTu}6+w
zQuYkK87A~;?)(ZC!S?1q{TkeQ8ubeCZSl6xSC|UV5kg#clR}%`7qx0Dp0%tvBOdMj
z{B;lD(O<!ql!RF`sihFZwxuLwbTA7|QH*&r&MXb=4g(n49*Nhmn|kmBub<28)a${u
zT!=8KbA8L{ZacIvdd@rxhF=#KNH<~KBa@+NRh8(#ydU?yL!ya?KF%ycF5%c8RE0PN
zLeMGSn`>cm^||hEAG)oD4GroAe0hNm%Q9Kr3&val1SUEB+58mqW$)Vv)a&klvMQ;s
zyCg&PB=lbo7Rb*(#lmQ63wpi4wm>NSuE1ce_(6l$nMvsV(LICa=)GdSY_|BA^+5>$
zc=0Rf36ES~K*zPlgL0U9(|VUl{?Jz)xvs+`TUvMB_JNnYggk#sMMBd+y%6LhhCS&H
z>h3Gipm6HPw?OS@GD;k7__Xxx8?4gp`;mQi%ky(H377`dx6z7+lS}De{F28o+hw=g
z-onpZ6kpXVrE3IS5-nbHY$Y*Z;bAk7PFf7eDQcxZd|KOAhD$I7IrNROXSG^i;SOIc
zt)zr3?ku*hK{0+_!pa<s@4B-+?L8uHU+Ipa=V1Ef-~9r}kNLwa(sy)k($(dS*_XGf
z2V4xhgu`hR%|WLZJ0M|^=~NsB=A|K}3K6B0i3`zW%)5LzHFxuP&SVRK;04596<q>B
zWx^>m1{E3)P1CJ=vg1{=)(Ayw3(}Fs(gxy=6PB||;6(yBE=_8{BlR~wwa=uxS^Ftl
z&+XRrug)G*jAQcNaH8t=4v!A^6igoWb^T8=QU2fs3!b~cQy1I*I6xOeN8cn!1aOlt
z%4wu8_tqE_;f?qP8ZafJqDsHE;kRREh6?6CSoU{P(rrR8)1v7V4T(v0c30GmvP8uV
zrVF7M#!O`rCr}~N|2YF&t><?zS3N|#i_2-)w0hh`|4pR;2}_4S0?4l#$3qK2)R52B
zR80TKXL-Ft`(ClVe)AyMjS@-CQ#q6!pP|H=hd8|}ER`V*eKm;?DGXA!Qw<}$|Elbc
zIvFFBhMP08=94y)4jnR&1Fxg^#+3jtyMZMKw`zOjK|x_bOYq&a)p3GLT#IxJ7HC@U
zc2=R?B>f;CsL98R+a916`E>YUn(8=UqNY^(t}`0oxj+>HG0`RsPkkd&XifO-sI~H|
zDDdb9@$kOBe_4(}+dkNh3cV6I!#O!CN-jE>OQja-&@>%OwpW8<Vqy|3=oJOGCJ;Is
zf4t12({k-G@0rK^A}p)KW)gciI-`h)6^8vyy74M+<~0=#FF!;LtrFFnk_OLRQ#T)d
zgLHLO$XcV-4LRr&<l_5VSca?k5dUnG6wR^b_+qE2W?rJg;e&c(KDdIF+X1j8G9oRF
z$^(2i$~<PY>g)h~X=X>@+J32{#ei}LW$xnMAIo7KfBLQ+A{Z}<_-DCe50XcC{Zc6-
zQ}n7eRitdeZ)E?HHSE^A_ZpsG$;>_{6yZBQ#53!cPTyJHZ2HuOPA$muyUS4+;Xi!!
z-K&ed1R~_B7=`AiQqv{hNNbC|ww9%sX%Fy%y8Hbn`l3uIJg!bKZL+`^at<%K@9GZG
zoe7-_1i7+frpT(n_B4`uuG&2XF&m{Q14k20k2b}0mMs}_DVV~MbT^s>zB;KZo#!(h
zM|I>qI$wQ-%~#IlQvv_g{wVnueb+a#{?`M92XqdbvO1VGQX9FZ>SJXsH#_|CGOj#}
zMpZ!Sa^U<qLHeQ_rPvF#pt>hq`#NW?6=p-L)nkPh_9}CC#!*){e8p)x!7%%I`<}eF
zc4wmb`}+f>F2ZY?R4BzOoicIC<W=yLMDhqm8RHmXuMiw9pOXwWqwY(%)T|8(DOA8k
zI{oO3xMYgjXeO*g^v$ao+u5wKBMYPRmaq6YuUN|z&Q??4HaN_fmNb`2QO0;Z$^}rS
zXMq$Lv+LE|b-6+>p+|l5tI~j93>45xpRAt}bNXAQO`Ew)@4r<>>`kpa5#hx=b6Su?
z1lj_`UeT}yOZ){db_cz#s4HI>%PmdC;1gVo7#NOp9m%g<C!w6+IN@balyyzTQ>my{
zb&!LYW@$=-#vtOi{K~|r;eMF|K?mkqcIgXVQ6>pYgDFa>%fTbflFMe{RG+<_Wk}1H
zRrX>kl%gbjN$|cxI%h!O{Gd{;a&eMRnCI#{N>Y~cM2p|$a<)p!xf?M3bh6Xw4_XZv
z<*{uZXl&u<J4m4t9CdZxRTeAlO=z8TcwI%WJx=dSXFjOi0N{L`Eyo#4-oc;44MfuW
z;!n#Q-{U5{8eVdc<Nhin>aPG&)ztdIa;%bxYy$@*7(BbzPy+<#k@@Hm@w+2qZU>;G
z{jU<pl1&XTG*>##ep83>vt9m8)(P0s>5Brm8JnCL{k)Q2xFK2y*ej`@H8FPwIN7?o
zLHZ-Hd<|!B7!H)~!OKO%=8Iqt!&*xkXLs1$R9S81K*W~#MZXw0j;%|A{KU2wBl|Pr
zAH<aPGY>4=H<`i~Ts|jt_S9uy*dNsmudIRl!rv^8%&~>LCs#}=5|ZDO>K@a+YT39=
ziPgkb%zz6<oFvf5<XEWUE}gMzz1nlszP_XwZdx>ONVW3}XsnPZEdSofaec~OdPj}P
zH6_-YQo3^N^(g??kDc5)T}3$Ut$0T@*+l^WsbZ(^UG;wrwNER_touX<e=A#eBFMji
zQMJbj?j+jL&444TJj8wg6KgLGAx}Tz+`Vm=+CI1=VtT+CFBMy`UYVI)Ks=fl-NDaS
z7~~ir>T^8t5}~5y{?&>JUCJ~9CWL|TUjMKx=N&x=#-c81Yqp)#pqb~wdehc`YH5A{
zVcyBZ<m?YoCZNlhSBNahg(>9ld>HpwN$|gG)Ly}~<k^>`88<4__87i6Avi{n-MrZ2
z9}P(<D<b1hH35V%m}4c6POc9<a(xlyqx7vOxSvk*?B%*%88&@18~$_~hF{bl7fP;L
z7v8fD9kPG7r{#j4I~cLuF#GyWpkb?64fN@!&x1{Q*<LanA;OXJk8+1M$i>!`Af7!p
z<u>P{)pz{P4XXLj*qIT!x23RTI(UkVxQ=C}b849z%Foo6PBK{#>xy-m57}REi1{R5
z64+s2LeyrE9=#I9EmZDCg6h(c@KU!#fFyVa(Gi^8i_YadC(i!kQBpHLc~Vg{&K~AK
za;fvZHiZV%UGii(Wytb(_%_9{5zljNslYXIq{qTmt+RrgP_d2BedVI3W22!i&w|u|
z5#!%)K)Nh;!><g>2qnWx)E-0UR-ktrc0EYt^G1G_&{YnJ&T?!=KQub-Aq{77$tAqE
z?yR}af~4g6tgQJP-NhoGP1?1NN*$FYVA@`NxH`W%=tTW?o9xUirWvnm>oFIX1{Wi&
zWpMJGnPSs+6Uy*w{+>IWm?s{AQ`vExFP&a!*$KaBqSG3ac7G5jN+q9<4s5?lP?IM;
zQ4i)U*dhXQBq`_W4YCI1wO5v0xA!&=6wlWUI|Z4($2IJDJmNWDqCV-NCXF1vL%rcU
z7izPR_iE@<Z#5N(Va)JoQ$xaQ)fd9Re(8r6CPHcr=O?xDsx(V)@DY0!uQy10$#p6r
zRDEe=Evr}DMbw|?Mp9>msq1O?p>|M<R|WU>Ah?ySh<0tGS!9b(+&bZx(G1GXm>olZ
zWH`1`g2wlcZ97En#1r=Kaqy<&_K@yo(meGRMb-#^D0Be%bka!)%e0o<p{#m3`DIF$
z5BRR=zfV!m5;7pxvCDZxp5+3NKsAGC8239==A<!ovNBTf*)osAiQ|@&eVOEhhJgc~
zoyQiBA;g4I5DZO46ijc(!dtvtuDw}~pKf|qsYJYYnKr!vEf{yCes5cAd{0iYP~&K2
zIp=xd(qBBSM~N^imRK{AK*PLV<a$q+r&B?zeOwQu)_PQgd%AlPYP=XdK;@qxux3*g
z)%TmuhqVe~VeUu=-xQ_hMf308O>@T=+g>3Lo54c}BpIm!n>&it-%C=i-%Kh~AaLhP
zG^Q-DNm!-0RX$X(NG;OXO}gZ#QK#vH-n46JGKC{FTEDeuvfex6c~0f1K;b}8l#~rr
zqF*3^zudax&FoJU9SgPYv8RG^l~argm4U%|;25H4cXz=ej)&h#=zM5@8d7cfYwf@&
z-zbPz8859ow!LvAVl69_MxHXN<!)Qz+{5<*xpIV`O@FD6#c=;lE<x?`VEW+@ihd&5
z;5)>}K-=Ar*0U!hO|Q5Tacao6u;uBQw`|n2?BgFY+H{+*UY*t6ZN-5~<5H*5nQA+2
z3fKD!RWq-YbDI}B7$cqd&Vj1g>N~O@^gC*=_%Pl8C22C&NeP{LV6O=dYP&YEGw92N
z0mZmqyMfv`T_2;!7Xc7SXMj~3$#{}uNZrMA{y7DWVH~pz$;YNti#Nxo9Uu4OQR{xs
z$bfy$kr8mXOZF<@QIcXY*x)eeNf$OPurGlN?LMXS8+}wxT62EXWcRq$XyrJkQK6bP
z?KDDIt&fT5*;fCS_ZM#_NmAk$GbRpihnzV%P}rfJ=4=qP*e*P?Fl-5l*i90p{jrmz
zT3%scD3%N*>mEAlx05!^_(@y(zbz*3GW}fZ6w~g19u#n{HDk6hFVkw)hUii(;5$zH
z&ZdFguD7>~p7yN}!mw^khU+-Hg31mPB_$eMROd&`;>Uoq&N=$`1$WjUr3qWkjjSVa
z39IEX(KoQMa^>I7-j)Z|Xjvp?04tDOSVM;QS8$ZyG5kDzF;TLcMMK8yf?WpRk_FXx
z4G}e+>tISQZ<tK$T}KhWO%J=tb(N=)%A~#<&uzfyLx?tK%AW8Ufh&OXz4cRjpE`NR
zN3wqPMoPVdTKixRqwvu})rNsYBj01848<D7GlP6O(*h63N+N=*F1G#S=&V5eM6xi~
zmY_g=2+Jo;R9q%e2dfoRa)dF+qp&iYXT>go{t_1TgYjLH@rEDutMKQ81A!0F@An{`
zIU6&MH=#xr4O8y9x6jm%?TH7;K=M#)8yy(b8OK@vk$qJpY%}X%JWHM*XL?ND%5}2(
zTwP*H3@^iZPOIn@`lD+f&)}9wYxBi_oqG84tMJGH$crQTXRWPRS_Ss4_|1HSj4f%p
zR|dAv0pKVaJYa7sd1AEHnDa!8ZQq(wf~Ot1*b-huHvD=C0(f6#9!=>#l}1H-iJjt+
zVNY#+^^!)!#Op>`PvdPIqI4WiL%J@hH93odPKFkeLR)W|v1x*@zu+C-9CR#0P<CvS
zjS3lN%)sF0AS!*Wb&58#-(WpV<uUVuOw8HYK8Rpb7gA!gZPe;Y<zT&>OjFe2-Ls!F
zv8|dSqr!d@h+S(9+Kw{>jX1}=+`9&DX<<|GE23yUyQyBXK9KXst6TV*ZSlvF%PqCz
z48-Q+O%LN`iOPO?fV<&)son&`Iv@={RezjiB4OG3n9=X++83OsO#nUYcf{W`jug{+
z9)I4Fnsb-0n+A8_j2YUtw79tk!3CJfD(Xy-Vz7SN^{Jh$R*6dms5RwTiJr4M`6AMI
zmbAop!#T#M_c;MXjPLd3_QBfZ`cl(FA0>(YR<+go=y~O58#3lg8HqMt|NIsXseiE_
z!;$A;0VgoM$%9rXbZ<2g<!G&(Xgv{g#h(^wIlQBpROBn4|1<U66(BYg+;Qn3d`WMA
zHsgCJXaK7m34aB5ZPHRH!bm5Wp{9OWSE2x@8ik*Nbp>D0pk`bmT)zJ#6q@v6pU>^#
zmZ^h!+z=tK2U+7f8fRS#y^T*}#!3Ub&Li6iy={AL_H#*t_?M*jv=im6FRxxA=J<Al
z&$q#0r)N3AZo?|Ze-)`UmW9@#3f|f3&O8^410jQ<R8-y?e*-}D6ThjW;{d;8Ao%ub
zLk2B~l6c*INoP|cobKJ%OXxt?S(*uXqx3U2S_>%+{?jDF%j>N?UkbFoWj2oj0V>}I
zhbHKv{t-<775-itzQ5tG1vJsW=g?juJ!|N(B18R>+F<^#2o)Rv)M|nQ{8L%*Pq`Pu
z&$kLwC&v9Rd%5S)@Q;6^{~w<^T89uFt7T=4J&QK5xJq2v_D@g!hhGSd1i(I_6>83M
zz#USdZJ~H^c#CB0UCitpziAo&0~Aak3(y3Y&MH>Y!T=@>c~V&|2l=4j5%Evu{(`u2
zO3?}b8!-F#pOkfnI-Lsd!1+soE`Pp=CL@~}p6bo~CHbGq2z*}s1t1$#!$<w~eDhy%
zmH!B0ZCfH2*cx6UAG~-T7612NI@UADGMF&|c#nU4#=pB>v;bgtixwS{X@B<A@6e_{
zfm;3lrMO+;X>7GvQTkv1kIMS{SB_Bv_rR)rY<MgAtakebP`j;rqfE~b`k&t*efil-
z$wmDm?Z0@z{M#xK10aLk2`BJ>UVD@3&#=jbLft>`d;fQ<tV%!Ebf53%KWRPSDbK~V
z&0AJNM*2@$(|_-H0#J@`f3%*Xg+I5nzy_ekJiplEC>KNa^XYF|08Q`z2d4F}SVAxI
z=a(f{J!~?5YwQB8M6bDcL7%AnhfU?*EBv1>WGSGJuJr6042q&m4RZhKtA8le|9p-{
z06+&bH+udHOgZpq0CS9fFc|%xTk>ypoJk6dRr^Jp{{m4C_652v$U7zBzX0OeKLc^Y
z@bv!+Aa2St5LddKMgBk6?%%MRKf-_#jM?bZ{`su{^$qAz2o8q-1rT@a8Hmee86xt}
zv+KWW29OZY%v|lml7BvX5OV<~5bh2A^<VT;Y52(?+dNgh$gZxg$v&9H63K~imJdu+
zdzNI{S@s*~Z%sql!9&Mf4`+zj?DX`~Z{H?P?W*A>{8{^^Q+r((@)tph>}s_DZWsj>
z0|Ppx6MZr_4cwJ^-1zu7n9M#-$Po}59!{l=0I(xU+yP;ljS^$^EVe*?cBSqiAS80O
zPGzn}_mW@@@C!3jIasVX3bPx-{}CJ>*YYZWW?wiEuuAp5|73f1Ef+O;@=G2%2!{qR
zocyZbBzko)YmT~fI@cnvyf>TExY%T)nMg)9(2}CQIqr8(o~*3}zlx1*Fo4G>{B?Xh
zC$mXoqBUb{_5)CmR>C7nR@4Xq-VbQlX~bew1>?o4dc3p*!J8th+e3g(wA!!enB_CX
zj*b5rBmdH3vJ42qC5v9`9~z~&=NcYe+o5rbSzWe~BU0UA`%@2-z}?+KHZNg5v-YQa
zVMte?fKfN7j>_J|sMoTk!=Y29aG79H`(4jM;nQn+o1<RFXM5Riz}aLH_kq=n{L^Qt
zXbJ4#Y?W{emFi;gGXQTo02r1Q;@dq6ICBF^$w|{56gjmQ@6>9iZuc4Rlo{CD@6Qm4
z*kww!8GdRmumve7e32gE*&D4-!so4<QHA!P@Dde#5tOo>pc=ZamN+jWfE&;{FdzQ4
zePYryZRRg&!+&{0AhbymnCwpp<5F!kTY$})ed%3M!OU6b7+|m9_i_=WxSP!v{bI@P
zPV78HQc*}F!pC&#m58jN5{=13X_i{`V&p*$!KU6AC(Ef-3@M$Op+wwKJ(!+WHHI{A
zbM#SDR7_`s<WR|CegM3s{Y6|nQBFKNmpv|Wy{N(y;y~5nq6!;|V}wEc%0G;4nyxpT
zFdC=YaBr+Jt;&2#R9rl0>$g|4;aAix87Z?;gF_nYUWaXaFOHPK9J3qUP`wg0wB={Z
zQ&ud=&!~q;gqB%YQXE=uc;356mD_`95x>xRBeFj6CR#Pb7POi#I4zvPO$z|dv1~#3
zpY0WMtK&k8T0REoz}SgS7$+=EQ#vNEweePpNN|?BCY@Wy9P89+k9_*|s@`ocbIsz_
z%@!uT<$eu;!2?7>Dusksg96yS(!5kTkbTGYa#Hu#)eJzB{o73QFBis?(3$ggaCiA#
z`$V*&$xx2w<-={8{1`ldI(`(=&Pc!i)JkFIdSqK7G?a)KP4%tURA27Lm4uT+E(fNa
z^!VMJX?|IFbJa#6OyRz9RZP(%Cp_h%oS^Lqs=R<?UU#AC5)JB|;nY|{Q+KGj7L(BE
zLa1*u)5u?~56U^G0R`{C(7=z=)V<;Ok;@MOILd~UX3O6*!2XBD#oCvl)PX@{G>xHw
zKA!UqyXK1#FsOAc$(+s_6$>EvBOjj&wW4wGV4t_nZvdAS`E%}Tjin0Ng5uAKLJ+st
z+oEg0j!XeSd9vtcjEYYmmyg;Y(t?O(!&Ir{9EHl!Y>{YVrLpi89i6w1<l9%+Co8r)
zZaP-2DD8rVVLSo`1{mm-+B?4@_Sedx8~rwZ@EH#gf(ng!q513MeWC#Y+dbDN=D&}g
zfY1;v#ug3{=U@Vg3<cV?NPtuCDa2bS28HPtQ;#X^G)XVYF*YT~`Z`pP(9C2%tP*Ff
zf~w7J7gN@*fSRlmfNr%Y{+9mx_ly%AK@b+@r*z47K6<nRbh|=gZB20WJ2KR>@6knM
zZ^V_AluWPO+nMTqau;JUmAkZiaCH}2o0gVNeEm9MGk>7#Q<2K!A)L-3hmL1=znV%=
zp?rS&HhL>DmPUR6#bm6aTF!8(!I>8aMu|t3LlDraI9j0BZqTVC5y)t;tnB}wK~q-;
z6BRz)-;+wCNEYP!^=)eg2RDdk1s3TJ0g!!Rf;J=hlI=`V%x#%Ty)nuM0On(d3hNd!
zE$>z<3Zrsm{z^~qx)pe#|8rQgaZf130aDB{XE6_EVPRaZGfLoM?&wGcI00N?zK=nS
zVhy9dw#Nv<3!?ADQ^?53#2QgjOfk(HuLwXH^5WGK=BYnPO7M@dr=-(=ivEZ-BJGxA
zpr=t<$!om)jZFW(_)zFCY=MD!>DawLHuojy#*`Zb5Wg9vdQyUc#`7JkXWFz3G4<9k
zvf=@&L{qa3M>HAGN0~ikhr0^zSX9ykOqgx&t5&r&+?o=u;gq_5LBRkbwBPdIr)&0>
zwsTk)#VQq)3p&+$XXPAWvZ!d5hbA*>`iI~jbDo6Ce350h2z+NK#CS*x8o`nkR$O9$
zyMd18zJ`635tQytX}vk@nUQW<R60v+aoK%&5xAiUwKi{ehZ6Z_BR7#><*G}8Iy`;x
z7b30OdaZgohR{t)<S1<)WpHwDIriIVZEI)jz;wcMK)2wbu?80MI*7GQ*2bclaJh9s
z1-E@l>oMb@@SxrT0aL90S$zPAhuYHG4(@ga0LF1W>1c54<4AIHtB?59t0<$vSiw)9
zzv$_GokDj!of%!r%K4O6>c|B5ls#cjG8~Nyxq%z6^a%)$G$&A(JL2{FvhW3x+B{Wq
zYSI1eQvnO@JubJ6c!@W`M-M%PL(KjquTTCnrmCjgOp{FDTP^V_o?`>tV~`f4fiPWz
zh{ycf2{SrqZ1D#Z`qBJ(p^+ugWhoPJJW=Z(!w8-S61=i_nruE%(|mtI!LZ08fDCHd
zfK^c6sQS`-c65L99L%4h|1cdPP&sUa!Mg$h0;)~FTBvy3$5q?}e)%A{Q?jfESqwD9
zILi78bxWYZVR6f%_(s*$aqKNw{Wy>f#!=}Im}4{#xyxbFaetMAR_w%9s%6QSV$wO^
zTTt9l50<`e%fY+C_QpgnR;5o~!BChbZkC=6{xa8wOwd2Za(qR63kYvVMno86Xa|Z>
z*@~2P)2)U&S$7&@%FLGadVF@GEH9rK*{)ux&kDFlhByH>q;VUcQIu@Pu*9^qY%*}X
z6%-a75R|pF3`=>xkvK*C(L%(gP%1+Um5xN5<?Qz?EMUoZx?NWd@cO5pj|(u5>qVVF
z9~-k}uv_FSp>gg?(RY6)QBZ_!Nv!RC&tcy`C?ze6dOe?yw1bk;_?u*jH2SL}^bv^n
zL(Yc*G{p+5xw>Hu)<wV8^IIAa+;`4ri2^aGhKcWz@ywsX@VRuZj7pK<Lk*fbZPYZY
z2)D%mCX9f_IUt0?R4Acj7CXG;lIU)_`W88seO4assCRgOnO!#5zJJeTF-CCim9i!f
zAtcy|^%X>>{xn(4C$Ty>g_6Lk`_#$Dq}j0Zj)pjUfw{3n?aZF7KVUPuiu!bY13mjw
z9R9{xiR4l_Xtdc7ke$FafEl*{R_?x5fOme+Y7<qBAE!X#cXkEl9;M7I-Mbm4ENTey
zsrbNB6w^SppK-J{30jyM=qXVN0&F&{k**58ia5F~a${LF8!nk+*|CF%3$`NF7z&_Z
zm89yzY!!!zhYTCO)~S#1D6VU;ic@6=>Jv<Xw}s>~h%G5!=3zB}Pn#N|UyWEc#0{-I
zG<qv>&6>f{ucsSVMo#l|st~qIrKp$hpj}B(bGZC=@1G3R*7C4HpE`uaFr1x$yF(S+
zgYk=*0WJOHL}kT+GCsCeS4qn;O8fpEvy|l6KV7>}LXh7W|C>@nU-3YNa3uR+U&cv^
zmF-g9da+f`83U@)!gi6Z2XK5@;W!hvTB&oLZ&RU2;g_CoRXQ?{Yey6vIAQpX{o4-G
z2>2Y)@^eu?041I(%nlC0<rgWDyi2^0T;xRk-BrMn(@c-g;c=huT$80u#G)G{nZ_%l
zd=Wb8tG9VkfKD#hdcV#87<~lis6i+Fie4gb#j$k`?>LeVX@~DV{sS5LfFvD_5?z|?
zOr}abkNedFv-u`YWqHQxtX$ORV)}#lVk}B|!{IT-!}{ArTErvy8S2JrF|)z0f^8QW
ze10tZ4b%7g{4)2~obJQ5(S*$|Nqz*s2Z|P{3JREkGd6>rtA$e4wA;O4fLh}~@VN^x
zZ)nn?{kb#r<Yj+6CebSpcTw-r_sy?jFcDJj%p`4<YI#N7<dpHH_ob1AoOhb0ZNtE8
z175?9Zzd(Bis4&CV=x2;<A8!h2tK!51L)WUYy&vfw{u*3H{ftOcn?n2eVSyZB>N}=
z!R2}Pn#FYSgI%f2lc1rSKi6`NvyWs7=S)|#to^dDU!?W!k1^ZpRS$h+hnsZ~mYUOz
zK*b-%ui||rzt*a-X*;S@^Vo@Q^Dt@y4)$2IGd|(GCLA0K?{8sG6x2=XJs;6+MSGc7
z105JQTHvyu(lfZisN*VQO3j$Ud|<Fj$;zGtCQ65uj|g@Z(<ooezdK9(2qBrM0T?Pj
zc{Hn0XzDbUYEOL|ZvE~wG(Nj7*}Zw)E0aLKHQ!54vl38sKq-G3Q}i`^1OLZNvtAj3
z($JIzsj4YLII~oIp)0njI&T(a_Tyn5<5*<U%!uS|t<{R$RgoU{nt6&B5^dGVGbyEQ
ze)*{2hgtYcxAH^`1?@~Z+KzdS_wTaOArYkwq5=K!D%Hp=NH@U8k(!$TNzRM)9^w>@
zOuJ^qUFp_+E>os|4K9YX4|1YXp9dNadK~Po>6CH=@aZ39n~aOD;D&7wj`5*@9Kpg~
zM;p%Viwwr70jNhT5E;e_50hMdV+}}j0wjSMP@#$U)A&5ufWJPKYBOA<p;F9-^sqmv
znv0KZe{Xs0*;TpTyHwQTvUM3_Gk^5V4s3Y^J1|_5R79IBG{5__&2teSGR-z$>JHbZ
ztfljImz{jqRo1m$hK|SXq8ZWRvaqFWmMstx3rF;jae>Dn4C!ymIi@y}w4sv;p?hC%
z^`>wCoi)9}O4tSfB_v2?atg0_FnALD1Pvghz4gfponcK}cUg2IG+G^&E?``#@8Y#w
zJc0fgq1G5O<5>IlkaRn~PwW5z47q=Cen;pe>>o}@L3e>`L;F;|%DG<(M++a4z1(RN
zIOeXCH{u~6YC?o+g>5`h=eW&(TIIZbIp%?U`L!5yd2!wv0a%YFnL)rS=1VS@>{^Gw
z0zB+5A^0e#PWP8IFiYuTje!rY=ix&01e({@7k2m3<JpG3`zvtx;x!{btHm_W1d+a^
zi{=W<@cz2-kD2&2%TUK;1Ei0`HCr~VPsFKq=4p|!)S95DV?adYHiS3t7-{*KbJ#{L
ze<yQB1>4yrbjv0TNL`Lv!vnsZdfPG?yk!P~{d9Q!*6XuxD%l6inWDa3&r&hFjK9um
z`d;x8ifm~4Fe%&hxP@6rvl1DfZ<><8dQnEF-tK-^5SP_0xhIL56CAdBP~aUQ$M}W6
zAWEvUM>=+GV^Xj8V|}0<@1+QVIQeg{r3Et5q8OVs|Ee_<lzwDNzN^DUYF<{_#YRCf
zZ(e6sL39T7A(@3;Bzq1{_p^B1kWP^#b!klekEMMPR)Fqvh<6_@Z0YPc=qXK>e$Jdj
zQd)o9%=e5io97(Zbx|iX_DyOnHDhclD^6bEv34~5o?|_rSlp=|$MmY3KAqTxeL8sj
z<l*cW?5dz$C_m+bFoRg@7SB_sj=q28axDgA*99P2?)E~ZMO4&_9NU*f#po6Y?U}V-
zmA^DkxsyUGMLfVFmz~Y1V{R&?3mi`6wW=|oMDi8p9~MTj$5)kmH<{n_HBhL9NiVN=
z6M5Hhz~wZ^>-_q$k)kkmfDw(^YjdpLw>QQe-!cT3X5FYifU+-5Q&LTISc3GzR<R&8
zZ_6StDp$$;n(eSK7H-R7JMiSHVR1TEx`u5j_arc|Oq07N5kVVr*&*}P6yT{tzNGEB
z<>-xF$%)EmNY1&WduqPNt@ES!#v{S)@$`L3Cr-+yivnZ)?QNO|gAr&9mRys>+Gw&s
zLfLs^ivM><?NcH8ko%Ap^V*qDwMlY~8I6kh8|Asj346UFSIbh`#}nSUCf$->q8-^A
zMz^kj$_ZGDNwX>iZvKfQWwASZ&U;1+i;|l$Frb--SoYd{u3Ss&0kQ%Xp3}u;G>#vl
zzrJbro>8>1QRKT>wU{e+h^bd%kp9JW6C1nCgM+QjC}`2EpTH%Sl5vOGRASKXdj`-a
zrBtd+>V~*ouG5=x4>G>@%fU!dwhOb9m&|xPr8E^tX54#!MS7ctW)&?<F*UUhkZ7_;
zCfe${a$kv{VW1tiUM9Mo4Da{&p_7l0IJ?8aEAh~~L6EDzx@g~`whXODH&`A1bX{0N
zZ%O09#W8Ca!kL~yV@NH>+Aq5N^;fzJh`GK<4vRRfkxut3F4mBP4BP?8J8;5|BwEAY
zNHn(TuBXWMb`!ylw;6Qy2=Hx;8}9}D!|>@2LG7sDIyU#XIMZm69&amX@6PPJ-e>q-
zajwmi%&WyETl&wvGvI?{d=7oTS`COy<Ins${4us6bz6rbY43SHWmNH{>`kv7NDdk7
zvQ?|S$IHItd)}ywMm*2PY(9xIS8J4ae*<}<4!Amw5t}edy8nZsQgm6Q^cy>vpS3p`
z1S^6;{tjzb{Ao)f?spdzi=yuAvTtWKWH%;{XC>0WMN?l9!SwEHSp(afqEl3-!6^?|
zMC=Q0K;nKB;gJZ(;C-ZEQgc4!)%-24;$%h>8c$sAP$Er{l3SL+Q<U`8HyjweVS{fq
zjEF7BW-W2G*5QkF<WUNH2N(y+tTwl_H`@c<j+FLqEQJiN*&pxW=ISgJbM&|(ytQ4g
zXlBaa=u2v!fhAgFVg_0w*Rr52dR2kO**H?vhJzfvnPj?+fbn#mQ#t0I@QXwVx;K#E
zi<!}O7whk*`Syd_n8eG2bcAx_sqmra57y4rXNT9{*#aF-!j_FBT2*K_$Ymzn#flpA
ziih3zLCBQBjaI!(c}~@hAC@{R6KeEnjPq*Jj@hlt>2vo>-NUae=HZZWc!a+yzJWF=
z&_|;+RB5?DIuH5ojTB{L9EVo612>+=V^QN)JOXo3jc{uYE<6s;0F#Wnp!UL8;<Vl#
zkUAfiw0`-lSpIsH?;YYH5U<m)D^U5l@GIU(CurT^BhIusU$T1~c7I>vf6ncpdAALh
zs6*@Pa>F{pBFqqRc3w?8PA74-bhGR&l=08l9BFKTdaMSmYkRndZR>mIa8_KKpP+lM
z8p=`hU1<xw-tv*~op>BVQaAAP>eGU)d3QceU*ZjLm;J@dllbI{kSxGWkqw{QwoT<{
zn;x`fXEKzsiM5aaOEM)ibs&M5&Vzv84*rE)6gxLzE3PcHjvAFZ+^oNNinjLKi`P&F
zn^G^GL&&*UpwFAX*xXM5x5|CPv~nIxHzn#rdAw@t86Hc9m!g$4XBB(-*LLSYkCiL{
z>REoPT5tdBp`fTlI*A{@d<K5T<jCE}n$U8%6jS?6o$>kG;`OCc`rX96W$rpGqZ=E`
z!=SPvVHihW!DUM?#n8&)qx0u^87T*sLtlh+UO0arw9~utVH5*F$NOD>>V0SJ9UXhX
zcbGLyyV(Zrt`E={jOAQBHV66An`DVnh1_83Cw;EfDsM6GbH6;Pv@tbIir@RjThs==
zebZt!m3cC=t39Sn*PW*@Q6p#vf&O<y-cFRBg_dY5Um=rRrC8s0t%OuL-V<Vo)nTbf
zcVwcqu6d*P7N_&XO$BxCS&pZ6Qk3HP=zkG4l+ZS)LzonP^zvQ@0MYVWf()7|ZVN(m
zl_E6mHC=@j`XwY@ibL*~WZBh68?x#2DT~iEi^?Fv-b#QodK>ytiSW7^upqpdD|=j~
z^e=}Z95FK23%hlJ4Dplx=s`HB$2RdGkK9Nb+Mh{`vEuLz?7igrsjgt6T5;V8A(LC+
z%+8~xO`oNzcNi+}IVwVTw*b9_B^P9JPKYhF5GJ|<=;cgnOHa_LX<LTXTv(3RF?dm<
zYv0aqKN>PS1C*482FnWPtDJrJmvc=dval)xI)3$vh@2A#iywP|@|faPtS^*p`Ds6B
z%Blv(gf==Z*0|X8_<;rjj+;$Tbc<ghQ5RnXd@WTU(W=lL5@-1t_CnTIR}bBGx6MO8
z#}C^fP)@@9PzC_+(AW*%gk#Gz{mAs7-+g$k+IYsTNmhoXp9DoSkYa(bgIZX$RN63J
z`9(D&g>bPpuOA0imw5Nnbjj^-h|LLJ)DhlCqAHf(S9D4C-NrJNF0G9<uj;71FHs-)
zoc2G~dz?2=%Xie?r7VEb1go*;$}9*G{VbB$;(1UBW+^s6nG1-~)NzyZh~9li&5e%n
zQ@OyjDNj=wAms{RSr*T=el^q?&;M3Vb2ksx#i%6hm11sXD(%3jDXuE+pPh&G7nxu1
ze28j`L4VW%#ZF`esPUw*3Ia0G7~f!n6T?y(60dd?XV^5|GDmth>oG&d+PkUBgF3$<
zU{FS+EU*{7KMtwc`L2gOeKg&nmsfi4w+`psciY)d6w4C<u(kRz6paNlCUVRiIWv_E
zZazaH#VZ-BgJQGlsXcp&Dvr;?`QU3Xqke1<sh~BNL~ZGOP4~Q0v@wh!@Hm_+(~!;7
zEe<w9FFrikA=3f`CXqlP4WemVSWU`;ocde&VWgw%YF;tevw{x!Q>f(I>1}|T-aNi~
z^Vxz9_iPptG@v8)h9}@f9X4sR)kEn^6V5w_dk66khr_spE5B4=+>@Hw*-ckqx9Fj#
zdEu%ob$=qLR^Q|8<;BW4q{#zQBSxqSvCkdu!%$qI{jc@XfG_*J_;G-?0nBk)_53k1
zA>TNUomI>_!LdX0K8>F2{cSCv29RK#af??s1Q0UYUtj+r<yDB5&loI7=)B(BqyGIo
zTHABeW2B8^7P0s`xC|@Fj}K?UDHNBH!jZj)y9WPif^+!F^~p;F722H^dM0|tig<8$
z=ooyz;YNQO3VP@{o9YYK1rD^{@q1k-YQ2Yj(n7akv&hryB@Eu2D40D(A{y>S?cc?q
zq;KjfnLS0sK0K8T3X{GapD)!{USc6(hA73Og$l3IBZ?O#0%=aa{?4OTbTIxiY6u!$
zN6{K7<x6Y&_F@L~0}aNObRU54)PxpHaQ_0=ygQ<Bll6eF!L1jG(C_f2KpIU$abNh0
zH=(1n{~8Xt&#!*?D2oWCl7)Dg9e(Rz@4h&1{eUT#_Z0c|wKm1oqXwWp)r=@vG)jzQ
zsNfHE2URq(OnbhpHj4#|?IAp+YojfihK$FOuU0Zf+f%KqE&QemJYvI+>OybWF)&n0
z_{^5wHoo?2(G-)e7XGHfzGT-3Z_sW)+iocJul25TYInY}dYmR?wm@QFn|*qTnAw|l
zTVQiu>3%NC;-$WH?~S1B@#|>*ghjqY_n?cwL;ok#BjeA+Ohi7)%Hnk7ogzKBGpQ}=
zi#Pfd1@F(l7i*oCn7Fc;=gYL(2FM@j@aP`1H>GzFNPA10f68!%yUQ#D=?;tw?RVm0
z?X42_6}tucs*^CZ>!B8ZJqCC`M;6$m)^RpR=50eF{%UO+4c6Q;i|k4#ZvJ}tn!VC4
z`5h{<zAlEYr-S3nR?T(8<P^rrbtp8$HNN_HkOR4az`boh94yKB->=Dz0?j46)~)V0
z1&I6__|k(&idX+%dsqF}*0$_hN(z)hp;&?9TC~L-sz|YeI}`{~oZt{Br9g3ar?`92
zV1-a1xCD212~dK(^t|_u+;{H%3toQMpPgjyJ$ucXwPt3mnePNfAEC479ddvqzI!vS
zMIA&NvwPIV(sU#wzDJp9Vz3rd7GH;(0Je~lOdmfK8+LbGT`Stm;@T=2u$aNtV{PZx
z)6oHadlD38bbLo|2r_*`4tzV)@dXlxPVhMwCdF=B<3`ucvk~*kD|qF42|oE8xOo2{
zM2QUGv+^ESy-aw9B3v61c7ac(su8UI1H+#%#}8c<Mg>Sc+amRNEV?F%>+5IJx-oGH
z?)$_+7h&fQY7E(9oQ-Kx%Zu38lrgxDk{``RYriC~Mv`M5Sq*xx>6AYxKraaO@lGqH
z3%je3q_g|U0a7BaA9jgHUsfH>Ww?2N0~_)4Z4<<^Yv2S|3`lfcO+aa@0b-b`8tfU4
zCUnN5n7H};rQ*~-z?47ug-|Xjb=RReb5j*(yb5s}1D?0R9^i^)i9k=veIHuy!ABhU
zT4lvQmISavR*d)|>z;G@>Lk{-K{@jbOUunlLz*U`M2c7Gn#%ibNI^ln3rK?f&tGAn
zQlm_tpdU}VYtc|4;P$uoGM6T48WwmD6<>Vll?RjAFy&r02hdXuR@$4~=iZJwt;|Yq
z${GQMS6_EK(ZSB*LQ-Gl?zr~<)H|ivp@%ML&2xj((Wo})NQ93ivz8t`A8&&{EP-_N
z%Md^Or+b%@bug$V#;bn8!d}YW(cr2mYtIQ*@2Gzt+`=*9Oz`kU3^4`P1p8!}L8;m<
zrZM72*y`%oqA6(cp<WH+=659z`*NbEuvNxbhQ!FOH?(?6b7Mi4@|mJ6guG*LLSp$u
z3u)mcYS^Vr-4+ULycjOtF}u(9n?b#vAK<I{P=;EFLcLk1x1|Q*syyWbD%QqBEJ3@(
z0vvw2z0grLXs7=;U9G8qG28P%sipgUZ23mVG^iH;n7$(7?~IwC+;U!gJ*JZ3xCJVw
zamlk_Ux0M|RfRcDNq-5Wn&RyA!oVOq8F!(7LcDkdfi_8i$Qm_~d90^JzFm<OlUE}k
zriX^(qIf?nx(KB#uLgN^GFCc6xo@QIjf$g`Q!8P`RGsCmaB^VhE@ssDd2bJef3}r%
zzVQm&Hl9MV3II%ysOxDJ3wsV+3%{9*ZRgxUCj?oz8FAC^YTs+fCYn<Y(2^~6+A;A#
zXWY(cwQm9ocd|ac*GDI_dK~ffkJuV2B^ywNyW^C+TMT$~ja7#1FPtGdF>tWI`l`dQ
zJ6+eMWzo?2;RXK4_ZuOCZx$0FN5x966tzb)2L`^`UGJ}^v6tav;=U4U319LRNfTS7
z)4gvt)MHda*depZT@u8m1JD-=EZ5~~`}fxH53csqCkLKu))=~>@wT0)(WvCa4+qXd
z?<8`-a;h_o4rs(epoY-Xa3chS&<6HQ@%;r!-&nM?zTJn`G^Pv=r~AAM?SOcK#D`Tx
z*PFPd7q#ZCjxTYVR%0IZ^VYd$csFW}tsM6r+z1<oAd|;5VFUVM##lC(a_qZge&`e@
zq4GyC6{L5Iqj2WcXHWT1PNObjq5MHW;OFm8$9&LhOjeF~J+R_A^@0@PjgyY8j<b#i
zP~(A$=Sm}?Wt-#Z1CAeyB4ZDx6{;HD{EQsFE}WPQmQj6{)RI(8myiw!ds0kl%5JUF
zJ}9#-{+LU7R!4SR;`Af%8ex(p@ojIRqc%a={pj~lB`pkH^#(uivB&wI-6M6YW`1C|
z9$0D0MvvaaI_#P~m%f`r?vR2PlgwiB*p0>QE*<nDZ0q@e)7i||eWy9SwDYIt6W%6s
z_9pJ;BENvhhH7xs^bO`}w8y5#O_powNJQ(OG|L255f@eC0=v;}iz~q=Pu`OGEd+TC
zp=+|U$wG1+I@3?GKHb;Iaf<Ct|J`d?89gMPPiUT=eP%br5A5|k%6s{OkaE_`_{2OX
z=rnV+p`bPGv#i-_1dd=1ZkJMkj+2^n<o%oHOPj=~na1t*1{M7eA=k4yW{}~aqnQ|L
zp}-$<S0u$MxYtZ&G`-ZlHW>C{fb&<0yI3dmX?HqT1!wo9rnduTDh8@33l_rNHz4%R
zfct=;xmEy?DdG-s@$QSDuVF=f&c}OS8eKcT5HsU;uDSk3A|>3&Mg#1eXH_0@m-W7(
zo2&7TP2%%^1w6Zs*rX=!4EvlbrBAs0bflf}A{4bhDNZt-=pwe!E)8dV&deE6uohko
zc3)f5w5|6p{`59UG3S*d>XiRyGL6Kok%>C11qW)N@lp6B(%6|nV6ToFg4l!}_9uPq
z22{-YGGQ`vWcB<QZmf%ES>&@oU^@#^ns3`w<n6?EVx8?UTDbBOJ`l9Aec8I$MZ~qL
zte6vKkHDT7WFi@nC?GXd#x%CeUc_w@Rh_i6J`D4aZh8&=HrIYDgqZ^Cbi50DVR?J1
z<YPMxF$6b8m&avzp9dS>_qO@oINqXWSsQenZ{0$#pf#I0=z?2MYC$8Sc5ZN&Z1xsB
zW<z)O_?W1*@hpUFd)7ToFA(tTk{<gqji&Xmuj1Ue{peda6$1x1?c5l00*yKhKVSLz
zvr$?tBl9!Xx#U?*mE+4f!Lp0>_a-(7yCG#yp$i-?`*VRe=RN4hvme^ob(M>w;;i~F
ze&nS-v0Cx&0Kv7D1i<Bk_DCSd#n|-yUK_~bJPaIB_vx~4^m_Mn`E&cBSB>*0a8Z@o
zPoRDk-O$j|UDD0`W2Xa&)3q$dSuo{3#j9M)h@Z8hCB%Wz_rVWKP8$oEQsQiM1-5U#
z5sigSv7T^zn&D@+Pr`<jBM$P)sbO*_Dfl6x<r~uRWy~<B<CC2>dOW%OCu<KJCSNlm
zsc{m}c~5|JhvW^~z1PDNw3Fp=o7st`pxfko;Xc{F#vhq9>DBKMSgr(Zi8P)y$VqdK
z^ly>dr_!4+?yU|^Ru?q%(POtj)m(-87q4w1T=(mrPu^{PLDg;Zqwra~IG<>tbVywz
z>#&^jJjnW~7usI!3|mXvIu!k-G?}IP((?3gn?2BqOoaIp&ZiZTD0EzTMv}cFyXlAV
z!1ioabP$RHIz+$z!xy1BQ+n!U$Y>Ci{GyOT8zCuI4gobO-_|z9c1;-pY+g)5#R=nK
zFh;#nX9kIUfpk%1x9KFFK4(fvF)T~IDmr`3AN8!hrUNsAq~x-@cP4co!s2K@p!3{m
zYhv{N`1QT%VnAEa;z8aG!1=hLOvmSNn1+IQF+`j-ukiR@ibm(i5*peUM@Qu1=remV
zw}dvM>i97r_$8|r^wzepke8LA;;8zFw{(vz=29qtOrZ5jpiCP`{08iNfF+;)Q`>HL
zs6}0;5Y?U`cKbePxJ5*9`};2bT*f^NK?xAGhgwCUONkC98u0gvkwSnc4$)17#LrMR
zv9f}WX9Hi5O^T_wFv~EVXK?W5ix$nYLe$ut+0vVOJ_j0;!Pvs>Wfnyivq6${e%s}m
zudXs#ItOLC*J)yxoir(AW+fe1Fd5T)MaKcpRh+c%@KN=PMl8)WZ>FzJ3g@7<?X!#<
zc==lVei+8WqT&u#y?z%ao5Aqw2BWT)oi0$*dP;8bOoscCox%%TCm&qvn|&6nv)zff
zLle^m#SUpUR^H>EKL%^4Hhs{T<(TKl_JHQ|!jXfi)}N2Mc}#cKkuSS)4Mjuw4rDri
z&Y?rg=Ho@ZZ7?Tf(3O)T^V3oOwk6&QE_(=_Tp^U}0Z%Z`E*bI&3%4k>^V%2w=^ht}
ziF}L6BWB5?VyjlStbz90Idd9s+R=^vQLwTZg@0!ix8$R(`Cf9G;6QW+Sf7cc#{_G5
z7P@ZMQ6Mw+*={@aixV0jxePJ~m68WxOf=k1?*z-H<GmV{*LR?I-1e8!LA_Pw5`yOr
z>1@u29N*JLgM#jc;J2RbYL+o<_gdw#aY#pGm=ePg3rr*C-#AkY!7sP?(A$OX`x~uM
znzx7C>QAy2U;H@xl~FY~+}X%NsMoCXGUFkTZ~M;N0FMnB!u-LY9mh?_7xHOr;{2If
zyIN20sf#n-Xw<|3g|$eQ#Pu}Q8L(H~svu(<`QbOL64lbwk<07d&hzmw!}La?7P<w_
zYZcBpYQB7j10xz9R^Lk4P_P{|GSK^w0Z6dv)sjy0RWC2(T{?Ps#p$5!@#un2rCXHj
zsQ#m<2~Qy|#OrP8L1=;VWArBLe$*F_&w$~GbkE_MlNgT{4YV~|pv#RjY0$j<-(cNZ
z7;dC?L)WK`JIlCV4Sh^k5Q9i7jRM_CR2a-3ovAg(>1wp|$=)Pjn)(27>;}FJ+j@f+
z2}c-|e#tM$6`ReV7ALmH4LdD5Nnhz-uq&ao<v5TJTtNG$$pXLU8U-YNw3t?QL!y;z
z6yXy|1^rBpB9TgB?S4;UIdc_rbTJ##I>)W$rfAC$4cC3umAK!2ZBIC^C6`5t7ZoRo
zlB@3fHMTy)jNzdYS$ksDgwB|t@R!cG``Vd*a7i>)6oJK(FKzb?Q`q$^HmPK*ApY)?
zNNSBqy~I_Q^|%60vQsrz&P0NCYC*(CK1lJAvun+7=K_|N$DA5uis(4D1pLMaIJQ&a
zR#5u}|7QH%Im=#bCiw$zKW7Z&m;D_=L@YT9V#J-UKO;C-M?GRcQ1$x7mmTq}VwK8s
ze7)~k&54mP#-}51FVOYfo}74H?WfOZvdl-zr{WgvZpBS5)R+0~2z;$nQNABIhGZmG
zt2dA@N^{=rypv#KL>Qze<jNdvgeM^HOzgNH@}13#6=RO$Ud$I?xZ<3{)$w~Zc3epI
zFxA4%JKZ+Jf)-TsF)a91tni4KwZX+Hn_%xJ*`aO4S$cR|@K&3I*2Nx+!B13IyKp`w
zm#bENIol-kZZE{*djw0Yx7J)Z*_Ay8E`B}y!Nvr;nuzxm9BFx@rM?|+;odkJbPAbl
zdCUdXq<ldtCh{x{Djxf(RkP(YE^*^NN<dBIEYVPZ=K1)~?{ag>`$V0&OOw)XQu5%V
zA^Zb@R)Yp>9S$671^8CF)Tk{@LvLj0PWz3=z*z*iH1pyY@_6?)!1L`?)l$0KO+sr_
zf;UR3o9%vtjC`59tn<EZtJR?#4eWYazrgcByo^0B7Ely(0$jnPf3@V<jZqc2KU(X&
zA_9U}Y<p?NiTZeKWfVWhz&h1cel84%7u9+~P*m<Z`8o$l9gKTcqKjVNUb*Dr;-Yi%
zZhYRRT|VHr?8$enTX43ln9%ww5ID0Dof#Ej<WE6!dkb-8X;atVxC@iqdu8#G-59G<
zhSudd!cEW(Pw}Z}Wg4GtvVf&XT3yTlBRt1aL_hDn*$6N>&$7BEC`KrVXyto*JMNQy
zD7SIc7lIH*0lFdl>G1>6Wr_6fqoc2J#k6lbWe%X8gW~723o+D6=S>U3XAQK6=F3L6
zt><31$OFU7bFJIGYkmCF+la|{o9f$hPKK7N(`R@+WNs;^yzZMm8y7Ak{t}Wq_>0xe
zw+>qG?)Zu_7)>gcmU!;5%vJ4S6$_f~Ka6MGqy2OT;~qi5gxWz)&I_)@5lvnJv19<a
zJ3OPnq|>|s_lW>ZV`@uf0r2!zfCJPWP+IvR>#EwkL@{mNna_a51hRr6YeE>muG98t
z)ZC?)@f#pCC6e=Kr?S(nkS?|&>$cJJ!hJI3&$tr^aKRuERcuHP0a%wHhF(=tY!)_A
zBPyK*)bvu!7_<zVt#emn)hfBmV~MF<v|rDkL|r}Ee5GDMeFl4<`M3mbG-J!OX)K8=
z&JA@3Z|yyCAw1CtU#c~aXsMkVk4V|LI9h-}*5+@%;;FSlR<Me8TDcIjs^Zmmug`IT
z!io9lt$){6A&LSxlZfEZEa1IU$FZ}oz<C2#qEE%iPPuso)pqVHyH@rVwe!;bJ#$87
z<xxls*C{EYQlwq)YUa=o|4aupiR;`T=}ToLia4<InK`|jO{ujx*x6`+cq8lPMa@_v
z+6~H$%0U$;l`Hp8wmB^}k>?sdc7ADolV+JPBS}|Z?|ke1%s?8j3h7RTH6g`f4X$PU
z50l*AHrP@!PwowjW<A^keTH|{$ntu6+?Vz6w5u3oX#q5OK=HGn`|WxqhE!C(w{}}o
z8|f}BX|D%8ZU#}8?nmW)JQ&!t1VvJ;2hwNhq`Ts*h+9qZ1)pma$*%ZB>wGB}*5xhC
ziUCold~0_&eN2r)X;02%NMjN_nZhvL58a*2sFpU8LZ4c6!#UBSf!&ml=Gla*N!WJv
zs-5Hi=yM0rm1@sMbK0L~UzNwrpwt$iZat9|Ze36J00aAB>8F%@W@fHMf>f84ZVPx%
z?Gg=&ZRyH$$5v{1$+Q$<UnVZ8${0$$XZx^{QrDyDWoG#aP4Aw7nr+Oy+o&$BC2NGj
z4E8T!^kXneI*A8}sNKzL-(o7I{UjxX9oayHUycEmx^ow^Lyb08G`FL0r+pvsAm4k0
z4BY}TU!Am>z|VIuAku9-j%Bs_cy7;eKYw|Qs7&kpc|I}Fxh}d{s%K+OjCwHXs2&)T
z`-=|tLpxtIrA}1;ra1bGpf6>$)+0#zs39i7FFOBxFv5I5Fx${YHWwgO^+Vv<?=Sps
z4sB@!U#T}=o~(1mhn84RH7-H!*?g2aQ<7JVa-+gM(O|yCAB)1I$`Engrw<AZjo#d}
zK*unDPGyx~6X^kEZkN3Nw{L;|BjAmZR6A9lkt}u0Hgi#pY*nWNm;d)1V)B?|iOj`t
zh3O<g*UH!o3AzNX^wB#?Ijh_{%$8f)j=9^*k<HKfg708-zHXa8-@T6D@d9)l-IgsC
z%MKF$L&I$Y+dh33-AXdaU6+fisjHFcMjSboUB#9U7H%c+2%E=ib%%^Ud&Uu2H=zLm
zcf>v=7yJ<X#?rpv_)1$?U1ycYh{J+M+^#GK7#bJ9&Ri&@%9g;D3PSZ8Hogj{5ocAH
zY-GlU!wp%<1~u#JPRQohJ_{1n&VBtVBdqJ9GN73n)xV3wW3z5e7OL&CAUD+n{zj={
zGm#3Qh?N`l7JP3xOjuY5EkV7NsXN<RZg9lYs6`EQlD=bMvihtTh`Wn82@l5?Znn$k
zR3VTu`hv^1l~a%D8gTx|w<Uo1AA30<=2wf8D25vB>t+G6j*chb_Oy%NaBQ)wml?2f
zvY?82ii2_F4WL|^j2Q`1gs_W6#C>@Y{gz#;n3^=6A4zfLcQY)6D?ruXEh&HE#`p5K
zY)&X^vR67daLKGJb#JB}&(8{0Ivkbh<JO0c7)1j-x%7qD)sulHpjC7^n})VX05H$O
zki)(PbkfB24Tho2k8-g<9r5T7W|gg1@d=E120BE1d;IRbiHTo-qPS936-(m@r>Oce
z#>+XjW6Zml?^2~ab&H{PdQooR4B8&vW&`g&L}gp}e>XX^6=RD$$u@SLJ%Jku!8!X^
zL0gOmTvDMEd%_*2xZehzH_68f;e~4{!+5Mlc&cVo`Nk)2dpO4%EZ?y(Hw*wnsaSyd
z;eG0O@miI%N@{AMb~E01y9j_FN~HWQO&@;MqN3rNSC{32w}vDWe<!lN%3g%OV03;y
zF3e==)x^049=-OvD6qDrZ6ouHU<(t~<jzl;!S&rA6oM~%<s$mH@E$OIWFCBqE4C#(
zHm-rv1d^j0nE45SMX~eo%T)y7#WJWDoA&uKAa5{vPeStX?AFb<3X3hrXJRU}3YX+5
z=y~C<L-hFtM%1+pkBN0%UvQ;$3c33UqvAbU6PS`CJWNi;$@R6Tjqayh18y&!N{%Oe
z-A8ioLDdp=k(-H61m#nJ<8ECTZ*itISi5`%Fm=O&!ynYoB*id2&gyLCZ1RcgH*}1+
z?>hoUVgOvMO+xTR$+B)abn{zU6h0!kz?6@<)cv&nlsexi_6kpw*;JF&Ob=jlt)Fbc
z8Ddr&z71qA{+FS6pKa)%Kdo|wB?P$6H|7c)SNmAO;Mrj+tg5qH<+@DtxDg2tP_AB-
z9j&$EB2Y7&A=#~Lu-)xjU#a{s&C#<0hnu{v{JDQNY9nBpqS;J0)x41<F)b$Q4?xXE
z+M2)=VjDu@e}tbe;3QVA)LOn|?%O@$cHt6`CII{~6&kHR;4pBBz&}7Rqc;nqa$OgS
zPh^7S(~}v<wY7hNgBK2`e5Tg<`Q_d;8tE<8;vFjI$0(!SzL@1u)~5|lEe_2hE;I)B
zK`$UJWTbc7JR_khh6T7Z0#xzZ{kl7HXM`RvzCW$CXYQf8n%f%}+o_z4w+yTP3)dxA
zmt>MiU{|@@A|Vx5&AV{o-Gm>bd3|&2)R8%>rq6^87<K18Vc>cE+Kh>W)z}xui@h)=
z&nwKd(W+Mh&8R%HazO*hz@PiP$0buB=dym)DsbOB_{Z|74M`-qpx#zBcQYek8y#%w
zlEg1+7;j~`dvaYk^4Q&{Q+Im;oc>;v`cE$WJ}J}k`Fg))u{OY=G~3f^HxSeehodWq
z??#Fme;#mGRn=cxZ$tCFL_Rf|p?ZVUp^uaxSx6WL(BvrK^}KmZE@_!OWA-{nA(^L>
zb4E{iibCo*K%v^2hB6x-47|_8lwZFFh1PzY2m|6yRhG!7Mdk0AHW?|ZuK~`n%7AN#
zGo0x`sh12XN}W{^JXKZtlrA^g6i<#X*ENpu{_L*rIN!TqO`rVJ>hab@J@>t)4hK@I
z*3Bj3f#<W_4I=p~N<N2FQ&mS)?u${<X-ZD=HT^?Nv%3L#G~VZ}IrSA%=@*9}F7|mg
z#&E@v23insZ>PNXMqCtVHvjZT21I$H%w64J)P+SMoeejEV{|Y-O+{V%*{EZqgyamA
z)Z!VpXl_Ovtfz=YqpuE5xf++yn*TC6wrnwG0;e{ERLo<WfhM79lx1!00IbV~tUg(x
z@#x0?CTKb(yt?(gckQ_M_Bz7J$)%^+KV+_sU-Gt+ZwF7m)qQURjk?XXadKG1vNqXz
zRoGmzLHX@9qf(l{==d7t--h}psawoTlG#dk5QogD%@baDNkfUxA<#@Ivinj*7@Vz4
z%Arr^DtTCd`z2M(dki_W-fcOw*S8OTv+sTQVnIY#sO)YwV~ePL!+!NeI+p%oPYMJU
z@TM<asLLiLN>H=8pJq}j(vDw~YYH!RUn|}clv||Y=(y4I*v4nL3bnd=WMW%TtChxU
zAvb`A4pkmp=lE7|(etvBZZp2jO(uSG(jT-okZG=;&hX11`Q0iB)$>(>M;4Ys>D3ds
zg5jO2PP-Lm*@CiLN5*h7*+YPR*>>1_PZw+FByMy-scR>(`E~`&V5-$Kf8UU)w3L$v
zY?i(|(KtSyFsBR?g*2D%IO>l_XMf|d>E?i>77EhyTQ=45k6$*pG^TPqi?3b-a*diz
zo^eKlTGG|=b2ChwE|v=lWD?>`wRZ(D=d`XxX$1r(sLC&Uf$%qM#G(n`09bn6(KegC
zJqM8!b)@I#uhg7sntXeCzV3R>d!J~k=%}ntFaF<-unh&d;G#0vB{|Q=t5aD;c6FU!
z9xPXLQ_8{D3y-)p%4;sZn)SVD41Hpka!sdIVHb#6Dc4<;Vb^+Yo{yhFTIzaPyS2J@
zv({F|d83rOdFZ`x;zA{{x42)*#S8n)7w=zfzT+uaYvNO3yKq{EpZg&zGbIF0UgJ6A
z$s<=CRbneG4THyN`TZ}aX`g2Ul68~4HWmsq$aIk>r6j1Q9|v2E?>@Oz(beZPQBhsf
zdz+*?S8|uGJSP{})1It9uS&IDs-xnZM$%X0zFL`oT5VH<d;FAJWPL&@QApd&vO9uo
zC}@~6$=LbAr2Nas;8=~5?EAsUh1+kECoUjuApy0NxZ*H8C=z`FoX29Tvl(q_9hc9}
z*Ov@&)@q>A6@0;=OUp4q_lG?E5(>Hpr|k7a#xrF)gKgoEa@0Kt@1f9)_&w2ii8BOm
z#Y!tDqKay;71KIjn(Fq_RvR*NX#b~{xr=$9KC<BTQ&hrmP*8H5>PBlXL@!^Ee9EPq
zk(nvDwAxtkX_~OJN}#|%l;x;-Potm#XosCUHQ`;_sQFGFa^KwtI&N8aof|^7YA$(s
zqtFz{^TzRw`D8^;9cXE|bDv$DL6zG3^mUcfREsTFRtkj~;9rKJ48}D@JZDaP;g>&{
zk8ajoKsVajS(>n3af4UM_VqjZ#!AKY4W>GRcHg{}4#MMY{-wo7oeiEnlVCm};~cjB
z>4FZUaxP})>ziLk%F1s)pkM3ni9=CuC!fG(%FCrG2i(Rshbe@%lWBN?@<k=yXYL6}
z3zJX*wVA|FCrwUHhEDjn2}swVtdWsyAR`W2{1MuD`F-5|&q3-I5FiH1ztuNU`ipTW
zk%&P8G-q^Ggo@Q{I|xdydfJtaH@KGp#HK#q^JG%sHIO(7)bISJ9-A?|^jQ$Kt&u9s
z83EoTpK1c7*rfqy(V*`7>9=DCRxV2U1AgB?b0y$8h<L33S)GgfP8fgH@sE7xp4ult
zV{~y4XzNWLUBbOu=ZiLP?Lu-9tWjRzLfPKP{4iI>&#MeMw2Dv0@ll`GX<{C-{Z}sm
z`!`zS<$k6)7(1?mbkQ#{IxpAZ+?i;83?&eWU5**N4&PabM_P44GEN`<(iKK;aO6`Y
zRM$E6(B+uVc+qLT&L_vGPhSZUd`0W4m0ZY&h<ke`JIl)}&I3J^po>!tZp0;`UdYnM
z(gB18DBfu0q^Ezi(NdGO(s(ml(Vte(!z#W&di#;%&pGWEZ)s%iHo1HR&RIzkp2LP|
zGnkS@{T|AJ{=)n(Y(v?1W0c=Zn+IAvkS`bqBkxlnDg$(qQ^0%vjYIsf^{{Dya<hsC
ze!DSKoImv3?+Q7S`|f8^Fis`apFjJ)BxV%_si4!KMZa>65dXcK+hmAn>v=~E90th#
zxMMN=0YXmz-weKf=gy-P**7oMCa25hhb8Ro{~`%!x6pTqlR&t+N$KEUY_z|5jJ{D!
zQugMiE%T|If2aJ{0f7AwgnsSLD?kqFFMRl`IR3i&c@-x1erU;LO7+`+?-BZb;6l?&
zZ2ja!^GAdJ@73?(@3f~yAw58K|A}5d0DJ%830dU+-+S<Hx3u*<Ml-O=z;1xlmyl&>
zc6N0@m`lR@dzvUq=--<7M{6L4ZB3+G`YBI?sR?GuAE-~ix#L?wSWsT-0+yAdCK3Q=
zGyILhA5S@KCpj#8>oLh3xGaywRL{#s_nMyJTN9F-o?eAn9;&qKz$)iq2L0aks5PWk
zdxiA9wcfFE<Pb9kHYPzmIxAQ=C0<ydO+(}FbLyY8{MZ-uLr%*S@NIYWOYvBbqgxk8
zk56F+ae>q*&7YegR=_SlABGo|-}L(&j-H|aJwJ8N_LOiqz89UGz9Sk)^60u$KIJIq
zpaF7tlrRxUe3b~<td33=7@gtVT;b)u(n-Jmo-z$vs4vIT@Yd&`b!L&9PbKrZ-nVpQ
zx$JyFcp-)R=Bu8V?!KbKZoMo8ftf|!qthMukAHk&`#`|*@^V+%TOEf<W+cU$a;!I&
ztK)_kcTAoH#{u-GyY_kULY!giWvG)&U7tStO$V}iOQ*K^BxMlo$)tHoSZ@18$4gkT
z4$$QYEKER~Z>sZwd&y*LA5C&OTF=?(_5=}e0(KWwdSb1E{GRy=_ffMJk9_TkElSE`
zKx_GWlX>#3ghu!<=m^W-$Ho83-II9?RWm1jKQT>jo!#kG<+y#5!nuy$98WS5I1j+;
z9A8axOG{<X_OCR5^xb|((oNH^7Dn92OhC`FIdsm<dAvu!(c<1op(*wd>$!{Z$neu1
zqFcHq$aOW}SOy50uyCH>*m!DVXwUe<J-bBb6e~JWNRe&8Iv(6~qi|22>g9~Bjb&`~
z@+5GLXyJ6cT53FWHbN%wettL&%0HI+Hf%<~{O0}0@H|_R$;QqkMq#tPvWwkqBexO1
zZHFUV@v?@IS-~DW-E?C3eHxOrxz2f$Di3!bL*{GE)VP$+q7E0{FD+@B2HWDAMkm~6
zulDQgJseEcL)&9sgOg-Y*hpQjy**A97Y{#1CZ*`to~?Uzu&&&m&WPKl=IS%h$nfy`
z#1Yz1=ir!s#^fJ}Jhw>>NfaC#|5&lX$M>gP{_U(S^Fe3^-*`f;s*09<%U+i3+?M8g
zIN-4{vUpui7D5DR3ji=QFTU#7EEDF!-$T`<N;av6KfUzbMO?W;!H;9Q-+OeY+8WXe
zHu8N`^MEvXS%;?;Yzi&hG=L<yJYBsy0esOgc@o_2FDg9M>$1qWm9iqdFahUoqT`!O
z?jLnwhB3_z8BV@WXP!`|Fjm*XiC_znf|Fh<$thO+yj$;WC2=>kDz*;WZ{rqjwwWv~
z3(tY~fDx_lyUn=c7oa!KrYiQ8OnYn8(fOiVXCafI;NajWDdw1bar#j+2_{_uueSow
zYXI8v<ES?C>EAO4CrRvBK11B<PeHfJbC0jQZO(t2n?U-#uw52c(FKi|AGj=|t;~AE
zsA442(d||-|An|~*?o^Z`adl^wBGp(7at~n(g)R8MQH5m<mksVd;jzv3SU}KZsl=(
zXQjM8J^mibkwlDFvdVoGT0ZCJ30>>ktc;7l9x0q+q)K)enV;V+HV5s?4~0_S8f$ZB
z#YbmP^0zs4sB<H3skBSTUr9f@e!jRLl5kyUMy5a7;8MjX46L#qy%R)&Tkw?KZ7PAv
zDf>dxW69MYU0J!uMp6^1FrewAPb^V^N;&Qiv9mB!j5VX1V<G|St}ZvUl+F8!-##0J
zUgX{XX3QvJ7K{6;t1Dm5q|;r{DXn<*oHH^AkQ`3sp}oD+xQ;FCwTR;4-E>>xo=XSj
zPgu3$Hv(~)r>r95qgXVH9*iFuB#f`RVv`a|wc%LY;mcO-Rf_wlEMnkzLe?la^?j8X
zy_CQKS5Of8$5{u>$m_=y!Y<aV0(R+XE7Fe|t)d9IxI4i+noZ!nvGT=m013yvE_MZl
zS`m(E)c)3pC$u2xnP8PwvxqM>r<=p}_eR?kiJOs2+d)5Z%Yx!V8`}a&_Mjg`UW1-o
zdW~9(Ja&#|WoVZ2Ll?u~l%|H0`;DtE<hkSmYx#ngF6HN<0f0aq{sJBmhZ0-@eghh=
z0XE%=yuw1AK#Ls;dM-|JC2HMkeX>uLEAFpbep299M5gk*4c;+C+Ejw7vL>5HMoOY2
zT8*!3G8Gk&II@GOoT7EJJ;BGt-SimP7GJLlHzcOu?eo?xg0r@iZvV1o^oJassv5=5
z>)9Hj4XTkr(pNL38SQC(wzf$nyKhAv!SA-5wCMCIw&dT<;3Gp+TF15hd<P-Tt@;Vd
zHhG5{U=$IVhgjo&d(7iCX!8?2-yXOR`a9xDXt#2(uR{ZGUs_YA)=d;UmKit2lD1|=
zh<fZVr=w^(s~nA;+-j^ei)%`8qazddW?($w)(D{;KO|}hdOJZk24&C|shOTTzl{?u
zgHM4#4IhlJDdX%JEX-iG*3E7wT$7Wrmi8Mr(l@^qvEe!mWL$H#jadN&XrFfgW>YN9
z^9R}(ctoDbnhm6HtS^x-aimK8b=>@+!m%GJx2<1DWPx`1HkGaSgMBoo2kz+NK|ME3
zGM%mRRfEHu>EFluv;!*<d7Fut+I7o)j_a$JpH85B{Nwf33AXUlqZ}x-1DL0k*~6p7
zLD}8f--CwRusDPT$oBR5v;&f_AXqwOMPk_}d$AYmRSj;o83wChMS5rIr=p5CpOyN?
zwv;Yh(n_?&1q37GX0JAKFC8oKIVYFH`Q5i)FT>eQK`RIX2OAp&k+B)M$#8%>+aOJ3
zF&>#d4LHoeaMRLp=}ICg_XPXx+pflj0LP8yMar|%4d~fb(S7e}r^Kc!Kr4DVa{*V)
z-x-^Bkvr3_=nVRCMIRlUsvyvM5<qN~Y^uKI4&OC#6Yyb+|7Q!3w&Iii`;ww&S^>-y
zeG{>I&tg6uBN)9Xgs#G*Wg9(h@3}P}@~5@Z%cfuS^og_%kl;C*{?JbIThAO2Co0ey
zg7IiYJA0>}FI*dEvI&-ox@<~2-uC)LrzR=M+901b=sB0@rUmn+tQ|e_SpdX;EQ>`0
z-7IX@wLn<VbCA@`bt7due1L(;Ia%zw((r5E>?VPEu7|BYXclo}?vzg1cN#<)S41wy
zUxjQbZ#3hSa#~${WIC?8FtQP4dr@nX0$s1uA9<LTMB!E?>@QLa522{RiLD(S&B?J3
z%Lz?lF3v!?Yl?~-L?HRKo=t`pz7@%c6g*d|XtYMJB@+#~YNh$HWb<~kEX9*j#f@Y$
z4E-rWe?Nn;W(vmaQ13T!)|*2RZzPMQ<x?BJzk9arT3JHgXI+`qYps|J4IV$(wLU1;
zf$Y7g3=(;$_Zs3nPeh3iU%$XvL(EI~QZq1o)2|B!&by(P6D3{lroDozR6Wd^n0RNW
z3X!Jd8t{>{GjTd)g&TjwOZ>4qUI|NQJ`<zo;mP?hVK#`Ol9lO+MjH?CR@r#Mdd^=S
zllUrnUw$u0&j&?0)U-Hs7CG^6x>_EfCk4A)*R8jq+H+kGpL~rwh7c3Tir2;4)oN-%
zF9N6Ffdz)z!fQu|he`RcM|F*0XL!VjEu96|ioR_mU*$&H9vG`_-+i&%xu8*R>S7>6
zmly53*8_cb>>44rE$8u`z4(7oVt?h|Czj`ni{X<)SVu<|?T_XvJ}!CK!tigkSS&<X
z_PnRwElq1)`u|M@{`Kx(TWwPIEMHBm-Y<SYeBO1`6&%;dXfB1V82uZ1zaC}30iZwd
zBHO(C&ojjT5RfXsz;t~Tmrebjt|GXPzNlmIZ6@x2p!ezjAN7mv|Ie%6<rpmtw~suZ
Xd_GcXKpEaae`Mb(zA1ZU^!dL49N1p)

diff --git a/sample-reports/dashboard-overview-light.png b/sample-reports/dashboard-overview-light.png
index 028b824d3ce683393a5f2ffcfb9f68c7d7f7e5f9..2231d796b44497b3ec3736b6ef55dde9a984b820 100644
GIT binary patch
literal 147899
zcma%i1yodB+x8&@q*VlwQbbAt0qI6Uy1QGtbAUk+DFG?zF6r(VkP;ZWySrg%82<A-
z@B6&p_pSAR|N7T*&6*iEXZAV!-q(HI*LCk;MR`d)?C0130N_b|6jKI(2k8KS_5uqP
z{6;%d*#|%Y04XsMRgamyc~@PcZ8G4<g44)-+b;WqsIW*!$H77P=|R(J!>aqfYZ}Rd
z=fw2<d{6-O$5&V%x!&UFu)~DDQJCW>9esziPzm||oSsgYPH;DOPxV>Yd`%yM`c;um
zSB?eu*tPA>k5Clr<yS&cf=8I{DF1p3eg@FU|Ni#x7e5qyaKOJmw*r{|y#4<iMQG@U
z_SY}`zpwQ_Mq#~c{rrFZ#s7U2`m-hB|4jM6|Kk6+*8doVitF&=pLzX%jzYoU{?EMr
z_iO$4QUBv1c_|-L9_)l3#N_6hIbaPOWuP4y{?`;JyK%$Qpf`|>rcK!8`6Sdi=RrUx
z2Zw9KACwnTC-AFK5@uQ@qJaKK|2)kvfn-Y`2jS%|xHT@g=lJ0&`Ko()^dXsP*Q=#a
z7k$?g!~@{jn9xt;X(bCZchlQyn(Vr;E+JK1Xm^XWEfuC?Xd_uuR$sq9O|sy45r)6Z
zG4|${f`iy?uh4`50<Fw>FvBsLB#d0>Vk+2qiu}<(3-3{f5?;)AK1xtfXswVU^)>uV
zp{J)G(@zBLdW*l>XR_^fHh}jD>}ok;z-IYZ@F|zw^gO-o$?<trRTVum1LWq8Meq{Q
z7zhFO_G~=(Q-xb=tIIR<OwH$=j(4_K##LyoyD&ojdC+Yz;-z$YtL_psz|f8sMZGM`
zhi;Gt@DqEx^Ykf(7X??#{Wi;ajE?7n#tX{&L#8G#ruCUKRY0@)B((4$rjvat1&22w
zP;_m*+8*`_5fR!m*z_aK^JS(amOxI~uR1AO>!_YGSL%O4;m96?n_0g_-z6`mZ{7ED
z;SJz$bkq|rh9{rW0suZYVy9Q$cNScB^D4T^UAI^B3WdBXIhidjpM75tVWaqUuNL1P
zS7zg24pJ@-tUD!4<C6>4uT67#H(u;=d5mDDc|-E*R4sVA<&z=iSF^~BJG9>zaIH&G
z33KMtF}UX-0TrJ`|2JEBO!d7Dm7v=|70=)Z6nQ);)ZRUCb-NooLOVTs2z@l;{O4>f
ziA$M17w+vfg2<`G2>}dO5P1t;_s(8OM-^f`@H&IYEYgH}@DEAB3n4$y#Rn9Q?*xyg
zJqJHt2;BwmKl>+^mgpH%YHc@tfi1FG=b1HD`}@OC+JwEKNR?>X?_b?Qty2Y)umFFI
zE%l+YiV6pJ*Oth{<93!p*e${qpl?uV@SGKFVDIZ0eRxqGaJQ1l#01~nAxniE&qqa_
zB#d_J#3yORCzWqbSNJTBY%XL|X{f8^&B6H{F4rQP$%=}Zwu2kb$@R++PtB1&m=RP0
zj^{%Mt}Z9yBWE!uAq9fXS@EPHA=2Q&m}hN6lod6-k54#4G9N!KO_r&{1&GAQC%JT+
zyzv0jekQ<yV_V`wR!r)>^avgh|IY1lO6db5W8ujOj#L!60ClSG`B(xDqQqk}Y_pu=
z)xQ@W6~44ZlcQX3eP{$c<1&x`Xv%A<XaGz#oH947mb_jpDzpduE<Zb74+`Gzp#qv0
zgXbZ=jKHPix>c<7Q_AOKr3$4tvmXW1?q~WGPCc5gzjbjf+`(D07iCJJ9*sx%WsLEH
z7b6hho!i(Cw8jbF<DS`?nhBozD})#TZe!1#dM=a~RghMeMd-=-?qIMub-nKKUg+W6
z=uh1Sr#s!>W;o832O`Ma++5zlmYa=}hpXS%BZQEP)~v&i&_&)R3Q+*e26FO!e{$32
zt87_-%WIci2<!&^pEU*n53r_*nVIqW@<JlwJEoswRv>C?u*$=If=+1*Dv!EG4_D_&
zsM~G4kzI*A6Vr)-ua1tAR<-XcKA?%*`#oT@S&?%(K)JZU$BPOiCg~vcYpX5Nh6BS>
zGt&foPnwkT5eSEy-P+P?M7VZ?$Aq)OAf_MtCUe2K6~OJblB}E`6C|#4e`Py?cvuR%
zh38Q<FVrfq@aZItRD?igqB?QR*K$+%piUNseh~vI3QUO{noo|k8a&QV2jK)b57GU!
zM(N@c6M@#9Y8@b5X~tz~=pmrVZU3Cp_@C|j3kQ|lr9wjUV|spmewEY&T@4-ZOSNGB
zW~T6=*NQ6Yv*$tqU8~2bdb|VxQoHhMbP#G~8QIv#6G6sa6`k~)XbJLZ@cOGt<HkUu
z7~xmt{N%>1oTw2eAYJCi0yF({R=b0xNOp{f<Z`ncec)46&j_0n@M2pV8~Ex%;NVi0
z6~_rZkMZF{F4V5t(@EYyX1)_FLZ%I;Bi%H$;}ufhJqBv*7U^uG_UEBhIpTK4)XA)_
z<o|8{l_=q~2{zp&{=kpqsDqvP(eXwL;VHoI>BhTX8A@Jf+Stzs9Dvs3gy^?S@Eo}c
z5GFAFEYcFYOE6|g+dlgW`JN7QrNJ-(=^VCW<HtZutj5UT#5mW`eT;N$L~UL~t%ZyX
z4xp;4j^<Y#Yj%S}rxmNH#u$sl#Xqkxj@%ODgbd%30z>q+GcCKV8@3P>!;#C#pTrwe
zLH}fci~$U8d~#mPz5EWD$&iDX=iWPeS29-BiGAzmp`o1TPQjX0!lU=UM@EbXih@(7
z2e=k>jJBWI98xaK&50_Ia%KzNrT?lU0=&Lrq6x$5wm_VAL7s(RWBLUh9RNRmMz-T_
zL_r%JW(V$O-405Ni!lKmGHc*tb3#wid-j{3$e&o~?mhEM4%~2VhQ00O3=ySA8Nkt<
z0(6)|nq;68$?y*sP}D%@t~r<@0G5r~)*nnJK&SI9wk+KDc!6&>dC8c5zk(D~9A#bj
zn>{!w@HOAt&)k^_yu&y<L<6t`PND~)s*JIKFr5e>EL%zm46(D}0s{thPDg*FfKQf@
z3aM8vhL^4Rm1!9kp$Fq=fE@{u&&6sQjTGm5=`>&D{_DY(<DI0mAhBG4kZ=hN2quZ%
zQc?;h=X2icsK1#~HAu5V_(M4l8JQWtB;=>o<iCIcVBtLc{vE50_`9&Z_g@fjX$STB
zu$u8I4@|emikUaG(Hw7xr1>BGogjh0;QhLSf<zSyW}tOUDl0$~g?)Zu!0jl#rCT9&
zw&t`obdY5Nx|}~sf{Rax<JHU~Pcc0+MuUTUWNT3aLcyV7afarCmn$g+j$udV`S-0y
zPWxUvEU?l$$entIqHvyG2O=bB?-44nDnT&cvb(gLm1i*kS!kcn$*gFouMc<;L<PGF
z(*GSF=}#y3tlng@EkfP<9!!ggI%_TjG42Z<slJEpfr!QOUBhTuPVYT(uaDYX8gwQ+
zZ-?v%o(F5v*hV#<!dMos7UK*`J>ooBo^;_uH~m?*Sz2()n&^$eeSCw=Q|sXxvCB29
z`Lm8}S$O&Kv$KUlcnB8c`+~T*nOdpftE40y5B`PitXUtQW@LYLo|$PgqW6BQ+sLTR
zpxA?8cHAU8N4({tbyzOR-OPM*<aG(fo^5-3!(a-B*-)#XtT}lq>c1!|DLKae3?%+Q
zg4Jz|FePuRTy=!4VwBz4CAAl(_c3B{Mji$KeBQV8mjion-Q6^}D%1C-iN5r>k$(_N
zCDk|^^3~PVKYJ3bt#@s0i!J2R%B=es8y4u&1`Qf_8a*p%`KD%xiHNzlYA-z?2h-=1
zKQ3Ej2O}4u+Q*2f=@Mr7uo2o=X)}9^n>&qrh}H00uWt-bBw=SWY+folYbRHgdEPz-
zTpx3DX))bOL${x1+?NE1w(YVApaJHOk7I(f%C4xj&D9T%SlOZX&UZO)CKFBBs<l&6
z6PnFtQy;1jk5oHRk!-T)=JG}6s}@9CJdWS)?`PWOw9%<Gnr%VrrktCpwVQQ+#gT%%
z7|cykQ{$Mbq70d>#o2E6dCgGo&muJlKj89MIb~^aUS3f%2TH*V{i<7jFcD@mm;GS<
zsanJt!@mj(-Y@Bz;;i=+P-OG=c&%W0)jL?MZ%g6Mw}t4D3hW%^^@9x?#ICDIWI%m=
zY-~U|DK>T}4|#ZD=qnMz^huE=b^XtQjk|i*wyi#Af<apXCvGCcD-YOP^pBZ27bQE!
z5x)ryNIX1zlto{yz9}p~@f+Nfyx0)|9Km_!h|3R_nVhCM`gjQtLn@SJh=jbYL_{K^
zv+go{$P$i&D=O^H$oNqJ(JyG>R14QH)Qi;%+adV*zib-ukZb;2KR^AB+ge0i%=Fv0
z+>ioq_4qfl?wj2vuS#iND<mANvcD;@HL|1CppRDp0CI{w{QcRjy|ttGe+Lp4r3*>y
zjq_hDd~1<wBSVY}SSm3f6%d%4NoxbQPs-yA*+*f_?ni$Z8h~!my|gdy?Xt6nhw*@^
zie)aZ<c*>t9TU32(!xSaKYvMiL1q+u_TbBr`n&r2tA&NsJ;4WN>rV;1#w`YDE3(Ld
zGLXIDI`9+aTsYN{J<l0rhK7dQIdCV(8EEp-wAg?8_(M6r!HL83qUF`@{j@|x^x0gf
zz5Qa<&ZEOZ<2|B(RZmBsFu0MoXEITl=-z?{caZ9ni)w&yzEV=LQCw;W+B@wWC(J%Y
zNHGrpQ0U=n91BVTUt)lfk@3tRM>*dvJC|gU!P%iI42xj779yyws%~bwraC#%z|D8<
z;aXW<K9cac=f1YQX6<;UgmHvcOC=f?_=?(+lk))hHNI1@qkSGjoA8$X&18qzGx9Bk
zC{r`Fu=)T`@U=MXX<T1U+>ey#ylESbN@h&RENy};V=OE5%fgF^eSVyVv#5(<0`tN6
zD$iNUSZUW+ubKF6ex{{yJ<GrRkq{dVZTzz^FflmTH!#t)WaD~<XKASwt2SOzBL5ks
zWuHi9ptm8`K=IG&iPzZ<xT+|tv9!Ffg@$X4hR4O#u@BM)HRxk{7`Xa+8Jn90zM$Pr
z?>6|Z<`(7iFftaUd>O(E8yQO?jg1{gK?)*$7p^^R;XCmgk#QP7QWKs$f1DjHrJ<u!
zs>o=+$c!pita$B!bLnlu;0i0%Hqg|R6+-T1ago52@DuTUz<BLE+wNR<nkbq@1s;-=
zkn?*xA^x<vuv-gQzlBdf$Oh6&O7u$<M`R2m+I=QfBrHl%g+-QAz<BXry_uMpC>*l_
z2!mx^uPNDzW7=Qt+1Mf!K8M#v@9b!MF%fT=)6$B1Wh&<v<rn8sB_&D8%E`sosuXYc
zIZsypt5h!w#op1*w@mmTIf&{9!n;Fn$8g;Tpz#*~v=+dSo)`WsTip=1qTubPj+1dV
z3pJakEKo+KLc`t`#CKfC#eUpx(JzQYJp<2uf3!e_cmBlA^>dagT`kC7Hrgiz_4S>j
zr5qpDE|-g6wxPiLG`z1yFNBIw{ZQ^qYHcp@04L|u8(eZsAY&daf?}q^t3Q{eMN3OV
z<Nmfn{IKOp)J)Cwf)Z_eQlGnda(4E#&tBd4^v>RpUag?&1<$ea$Yl?XaC9?UI!t|j
zrBeYWI=L5gKw9p;`TSF@f$+x;VP2f2wPD*dpX1fzC!2ubm2>E#r%AnU(DGTW&~%Hl
zP^AKxOArjJg2*LTFX7kP!zm*<gDpQ@1OgI_&CHH}JBOxuTBQ!4meS?5oNsi4PYSMs
zvrTz9wlW<}_uWf)SFd63Y#u^@*4kD5#`*L_=<XKNd@W@w_0b!s_VSkD#RTLHr|q;{
z1dlkOn3%_(nQ@`54wa8lw@1<TlXsPJwAOZE4%3=v`%mt!=nl(PAHjEOY_)Tg84Y~z
z&~o?d>v>9V9mPw3Q6kb-=~zBC#biVMuFr!PT0CQsE+Ls-onhH%<m|a&_sHFdR>jS%
z@+X@H&2DJGH~ejw@0kLTxcC{RZyrd%^nJDyCiQ*4HMjnWH|l(C1{@tEvGBuel)4p2
zH*8CE?y_K|lRAe`-;*&<fF9m_ePVq-+p-G)9p~XQ)vg?n)1OSxP+zMhKf$EQ`vNGo
zOH;~Q&6Ab3b~==$Fpaq8+utJ-Op6US0U8T=R6-Z<FBc2G!M;t0t>xglpaS~(l))C~
z%Vy+%)hK@A62mYC8t(M>Liz879%hjRF>!K+T=jd;6y;Ds&-K6%ciUL3@Hxa`fpyOn
z3_l8~++>kUsYjT5<qp{1f1e)Q6L5&B&&stY;j&xcuscD`HGtnSG^w1d4nkYb7O)$r
z`tP<WC`c(MQhaZB3tac|7z+ysD0p&64Lr?n`gk0Uo>9ynou1+2Bhud4(Fpi#mY`j~
zT#_0kwx6yEY*tWZ9RDWAm+Fa>Gw)4V88OPrtIWa$6m@j&+qxHTk(*valnrLrdlvDH
z>bzDCuU_xhlPpXy5YATb=G+}dmoDBPy*aP@9ao~OQ+C-&>YS!mYeYsdpKgB>U6Kda
zDocK7I`qWA=QL|kz1T#dsH9}R`QoTbO9m{Y5gN5Vo5%+W%^h|Saq-uu#LYj_3_PHC
zFSxkUq!xpyrY4v8b(!OWy;FF7KGR5jc|mI#^8S#|Ax6M?<cx^7L4>e_ra!i3H4k@x
z=4?!AG;U}ZZ)U8=WE&Htq*DSJYfhb!CV3pE-#@zrUe;Ulkv?98xiS^K7~ZZ7P8aYc
z-CtRs@cf3m6R4r|SD|GDN_vQoSojD7<Q(;eBr*+p*Qk*e`KoJRrpcA-rYqJBF_l2V
zA+#y~TxcgE)}Z-*pbx}FKv6?O$gE2RK2IVQRk^{O1-;;8ee~Cu=30a2Y;{z6B<bnt
zTb&w<hj8=B@p0&NXM}qS(|a0+iSNMzui8aM@hrf1mFBX^96r<n>(e>K!4LBWb^pM7
z&GhR$`|P}4SXj^nM!v!j>AudBea1x&d?TRvXmPp7z${niAigOWy+9|Lv2<b3!td<8
zIcd<O;NHmXjZpP6=M<RDXs6p=PQLSQu0@{Slz-4k)qbDkyAzmpZ~BEOK>YQnxu9G(
zs+aiL<#p%<^zwYw*T-b*s11xocL`_rnd)7$wY9bBDNQD*-SHb1L0kLD8HJbY=3Udy
zByzG}PdDWu_bGABP5i>qB4s|Cz8lqGfzU3L<c8`e+zR!b&g6h1kM>495u#ug9n`6t
z6LzqjrKF5&{L}^~ScGy^L0){4;5LtP!RWq7;xNf<%>5GyOXKpXTgB`o<#%|Uvko`8
zyM5*M22~D<*Wlb6^RT!rv}jLfdb&2A=VD(dw}*6FT!Uu+lA-+)WYaEQSXuVERayQN
zKAHrSylo+Zx}Rb=QT!6b_>F%JtIxE#Jr?@K(GeXJBg*9)k~xqH`(xKEOHe8kSHgNj
zUYhwARYomp`%LI1)^vC6WI$EQ(sG@@CC_k5c2d2YPgQz}EPQ$xLB8O&TID<H7Da<%
zc>Fsd&3Ed$@BX*v=quxI6JulJV`C`-(BJ_Ng+X|WOU@bbR-U~O1)n)Rzz-sY0_^g*
zJMA9b?+M*tT+B~*b4_gKxSN$z8QO5N<+Z&RL|C{3?A}|g%O5aH^eclYS;wY_muFdo
z3<uwNtr>E0ZDwXZ1};}i@eq|n;>C+q(WyoY$@zN~FRrJQz6Y;L{3Rhif4&Gk{G9bS
zd2$P$AmbXzsJ0L2`?GwEijv06ucV}e2Rx39&%c!x3i^(<y;#Zxd_~7Z1n=i7=WiQj
zZ)ZNk#HYx5Vnhx3YBzt$r$=RU9phNJ!NTXeLN2ZZIj71nSg78$y#bbvIdAWr#Ucm+
z%@!LaLro!Ciq$}SK}sPvZVJ)o?@S+4@HZr+c6PufO6(~HHfqyg<Q&wLfCMfXw;jC9
zD9Zx1wX<(BM5b3anZh;vat7v`eX%(zvmtnMtHb9;1^6XdYROVzH`qT)i5uo(PPELy
zQ2R6z1g7@6uu0$Zi?c5^W2uao5FG=9(xbA29xgl7)&(?4gEPoCJI)(|8Vv5-PfpCd
zzP+CUR2wi`&aO|v8tZX+e91AZ<?mmh5cHwc4moF;=pk*5{IjL>A%5rCHSd%>Iaou9
z`rBt`bM%<zbFq7U4b09p8$l@zqI@}7l84%w;2f+%7iRe>W+YIVn%Fg4h3sz;*$@L$
zbjyI<Y-LMklc414G|<uH8|zcjf&wdICLhnypYw1VjS^aa+QZeAb!!BSEPvavy!hfM
zI9NmE26Lfo$Ph#{$bOE6Jo&WO%AbkVz}leB%mJIzN}0`OWN)RQ;Cu(Q(hY0Sc@~Xq
z)bI0@o5BJsU`hA)`j;=%03r4RXLETw=tDj?%5<u)fvy(_mprNnDlXBy3+%A)2g25@
zk>ylA*ZcXS59j?+B_hcA!FbxBOiHi?XZEUl0157&$!L50;6us5E-}*h_T};ZI|(aZ
zXE87Fnu+W>hvOZ8O_nT(191BI$rGch4gJZHkuTwP03br>vzocxy}ezWPn|Gbj~Avq
zG&XNo(<EN9HPNq^_XNGljO?mBOWYr`)|`B8t{0@77mf&~{{95PSJw$dLlaa5F&tlP
ztQ~*kM@z7e(+iIZ1q?KSRB!u7zd#Bbt}}bjw`v&f^Jf+o*6m-JazA;c)9A})W<7PP
zUpX39Nj$A>Mlw*?(|vfq{VX`H1f?~Bz1T;20dn)&Ywct-j|FHQFYIwyEJWUU2?ags
z|6A_?*g?-DrET3w5{yOTsn&+;Z?H)_<j$<YxD|&~6u8svuE!kFMb<VpCat<uJhrRv
zNp-R23BDj7=sOea4W^2`SaK)8-ipGb6tppnduy?Q2sVJ;So?g)(k;1!%>Vq0e^8PV
z0kq%A@`W}+!)+VS+1*b-HTcWK3YOCl5jBrDVhmlb=~e6EX8VP~9mtWSqTarJi(Iee
zfZf)78{F(Z+dgY+EFBUc0SpI<dPrCdW-AY|d}fnf1k5_)gh1grjFba0U#oA5?Vw-p
z<xd*rMpk%%`AP^@*3dA~)m30U*@uODWOPqT2})Tmr~vx)%_sL`EaR?GOIx}`CQvDj
z-XOD+kz$DMvd-Z|x310kb3`~1L|N@l(W;Xc?K~@^tim34W@_|U2kVQ2Q<Zg?Q5eNB
zQqrJMwE$i;mz>ORV8D_K?ftcU?DB3aRX(AHUQ_HBvX166vIS(oAb+HhqU3im2JuPu
zo`_2$Z)!nlAA_5BMjnG8<mS530A*<<C)*-!fY14W8km~Vz6cNh9vsdOIao<J4JH!T
z8>6wn>q7n8wEGP@bX&tp8jAqY1Avy6)@2<_2In;Hr;wS6?b(bD6`HWCtF5`4T{^5(
zbo~64r_CY#-7-H)YiEy=1$JOvAU{j2@~*pw+kwBJ2FWJ#G}`0xPX~JpLdCjxfc1oZ
z0;{dJj^}WII|ECi_o{igIquAEPricC1;(?2p*D1GU}^icvm`!MljG?C`{rX18Vbj)
za+E!HTz+4D?IW8k-XkHw1H1+AL0TYC?Q#Co7V_kA>0E;=8L&h4oXcj$@p3BPna)i|
zM+enU*;x!uvofUE{+ebhlTNQu|C=KHSa4+ZxAH1U`SoKL%r|Cqy6^m-><*ElszY7T
z17~|a9B!`Knwg1ozhKsDHh<gdc(rpj@k2U7kyhhRR~MtNA-UeFGYI)Cu(Fu#wBKXs
z%`la&{*Udc{Fd+aUb}$*bGjjG2C|35cQZ>-q~K;*Hk#kJu?3kTi(dT#P4sXx9MlIt
z5Q^Ql)>UpYtE-KJkjHkVB|H5uoAfVNk+P*8=jUiGtBE9m-r4RX+@%2>t@u|N&Cnv(
z(BkCC?__4R%Y726cX|(TL&Ab*8t>_W?Cjjiygt+Zxc5C2FXz!f<wy=J%R2R?8iqfd
zRyHB6T}uV$!WS0VYN0gZ&y$UoZ%JXua`_x(HMQ}#nzz&fx014@Sm*K87^JrXy4~CC
zB%tFF|2!E{e3MivaIs-MD3xStF{pRD6m5@<9TFqG4#MJ%rI#}xtSY9dD)tPB(NLw}
z_SnlBY_Ybp%P%P4@mhg{HP9AQwh1d$)BVmKY4kzEYrX1)fzV*fefY}SCzx}ef!=KP
z!y$6J6XvXV9Q4~`6Up0VH+JCmWH+&H>eIPzda+jR`c^qRVihd^D$)|!EO9B8rfTn}
z{E+1?_e6A(kX)+2pv%^gI(7M*faC3-2*Eq~Vs(R$P1>Npwv*-*_qm*RK_2T%5Y?Fb
z>BPLN>zVb0ZO*D98s<5Q-zAFU{mqs&!0m)URIjQ2rJarpz8Co~cB1*MqZWw)Sy{Ux
zEAsnoDR%+E4;(GjAh_NL^aX%L<Pje`V5Q}`-XzW<n|2CE@C?2aP%$>9-p1ro9-UV5
z1DS17s`J3_b=kR>^nW6J9oD8Sy)H4l&`N0Lx1uh#_SdC^{xrKLZL_s*?5({MQDLWE
zH^;a$9G;g5RLfVDO^dm5&Ks^4kB3SU*cfA5u~qt<ToL$xlP7)e(i^u}gboC2zIVDz
z_pHqGGyfPqp)--7FkCr&F$jwBIGclpY!vZEeDR4SP-Jx^sfJpPa`X8_H$q;&(yq^6
z(|+^8gUf^@DImS7$ar-_503cS@doj8Q2%JohX8<opN(>15{Jg?Qw;KRXiyUm-`EbT
zuu$;%*5u?=Lms6xoPcHMmXLtJe8RAi<p<1*+NyV$e&36d?V*<x+NTT>tXk|BF1>TH
z%_;kSpnykw*2R}Lbf*Gl`O8Ze>-zw3bL_E^r$Nu2+!13S!X5x1%5ia7T!#&PCLkAj
z@OMo|N{*Ew*<1D!P4Ma#^Dn=IR$dECBQL1Z>=Lx<LCe+-Pfbj6$lVcm=e`jGQa#Y2
z1kL5AaX&i=_H;BB%PbC;zx?I{mR3iZ7^!1Y*;@zcd==+{qc>5O!17Aa;V3>W&3&gI
z9-TMfZ{GSSw@Lh?!%{#;A>bgm>|_cr3tp8Zj*BVxr%36@UI+2`NZ-E^^Ffdp?JQ@p
z@!%<9q<&BMduZh=$mKJC`Bdrj?)ar+5BrwuWZ&SB2dBBC(<rkwhdK=&_y8zv+-%3e
zwseehq&d<J4tEM>ICg74RhS#c-`s;W8=Bub3+!UTdhh}I<w8?J&-d{Wn7y@A|F1_M
ze6L*PK+!@%ec;!zbJurrYU0pvasfF4()P_$*yWn7*FcG${iY*#vL_fVNr+xDs#HEG
z10&n}H+1%35sL7+DI$Hs#Kd%9zbx>(k-eJz%kP_;D-UsruPtC{g<)~-;C^S^3F-R@
zdjNn+)HF`&6YK}gnO^UEOhMgz3q^4&<?3cIZ8t{iDfR;s34*LQHRM8$;ZnPXgQLeP
z7`&>u9=Ja8U}z9mS*O%wt?qx7pI<q>lFo?=Hx~OE`0g$W120IY(f3WI0*1*w(SOx|
z$ET<Iu<JaFIM_73Z4_sZ%eC%TH-cM}bq#ph2aF4ytJM&TRA@9!&sQ9ccpU?vthVxQ
zIVmC@`vJPh?OpeUGYL~3y9ho7PbX1Ly5#QV?WlXaP#lYn%i3iEs5qmf7d1JpA6lab
zzkSRE@e&kxZ%(JB9Y2^X_<4W`bYMVL;{*K|g?bG{5rDX!9&+-&1#D*PBYfXE2p9Rf
zp#4QE<T1IGN7>jbozQN5RxrE5D0w{Y+g53$ke8=vh@krP9_j>EGyXe|o=mO0L4B~6
zEG{gBuBIr6G&YJH#?$Ba^@R6B<&#@}6%^2Naosmk-5Z*(o?g8X^c`()4?|X3PtLwx
z@Hq|0rJdg4NctExSHHP5Ab_d$DC9@2J`~v!M?TwV@##XC_eoxE?g2<>a}z&*#!cim
zB8qGGygDP;Vzpa$>a71NvquVw$m)0Jt{$51ca!od{D}-wGHEO*GY{1He0yCwz<!Z_
z8e?7zG0BOp2nrO6t;Df5H&jsccRbt*s@&AMXifj@6Q2j(Bdh<-%#3zm;Dgn(Cx7ok
zJyk-{h?tBI*Hm+rFMSo0i;FqRPHrtgvDA6iicg2^9KPC(Z*bS`e(b-p#f$;GcoZrT
z79`|o`bMt~MH6OUdUqNKZU!06_O`?%sRa+$>GS?Vu_B1Pj?QlXuDXQyS5_`a+h^pi
z`aQSrTu_Nu#G=pHa-)6ovw8O4vecZM3WL8W;XemkX1B`D@WNb#@PT+kQ$C3JnS-k%
zYX7q;1jV)i40<zsuWz!b93qz6{tcJg%Yj`bt8Kh<duRc=0Z)c6Tyb)$E3hOqn)IdZ
zedf8lYj(FmI<M444#?xf<?O{Ge%v)q3?y(onCbO)JN9bq2#HwqI^2%~Yxbp6oj4l{
z>(e=Qob!F%tkIo=;Q9p9&6;u0M%tz%YJFSp^Q0?`+tXuqC4ij?-Y?vEIAYBr<h*iJ
zqn}ul0S!th|NNOFe)leg&E3q(ip?CM=yuPRQc>FFQkF6_<)g5IS@TpsY<DztI_(&3
zB|eq=Z!bv!ccnxi`H|>;W1{}EmEDsd8(Aq!Pa`EqKN!I%Q|GfN8v9&}1T1v0V3~o9
zTiV(6u+SG3=exT)y12S-JZHgYjOGBHtSb*!_ISeMbh-G7qu-r{z&n$f%R?A)OQf_!
zX(lEi*2K(cd3}9&0RL_2uiieEBL{agJGn3hdisL=VjOJ5<e-9Q`tE+y#>UU2?SujO
zaOQz<g4#O}Xjh_6R-%+Y`yH<Atr^<SB7xTz*{gYQwDC5#FMr#MVC&b=D#g;}U_)f0
zpv#)e^>Oek9S}a31pm&lqF7}Z-OV%ZY{4H0voIw1_3cx$=>tT~sK?|!BP|AbIHX2|
zhCCalIwh{18xFXHwL?W2mX5i}QIlSX>a9em?QUZ>XT4%=_;<ILAzt`Ry++&{>)j+q
zYqB-$@zt}9H-%*3sa*Wu*W)jLO|M?dlRi>WVUd%E&94^<x(ViF=2Fg5iRxv72@o_k
zhRTPH{%unGfi~Ve<J;X0^HTM~(~w@YW}PQz_NGL-GJ_-uSk#S>D-Z7H$s<!^-sjR1
zTH+~LDP}PJ&*sJ|QQ7i((tRuiWwopkVMn#qY@=x-FKk=llTDaen-la*jm&wQ3_PUG
zjm-7SbLu@b7vBZ{K?m$iiRa+V+4NY)&IC9J!0&7JTRKQ#4E)Q^jD$TwAhP*OsC1#c
zo~(7`8?FOBD&i&5z1@QQ3DEm!th9Bt&1x&|XP~!^;pF;g##7r@#PqsZ)MqZ)2Jp-N
z^|dgeK49Hg#mLm1#ois$9Bst;Fi0+-!rar*Q*OVWHp7q0R`qR-=vQ9LvzdOxk1EhY
zbf=&o{%hl7y+n_1Gg2JbXQLvJw0G}Lp3OlJX;t1jNgrez4f}h!D}3x#&X>Alppl~B
z_i0Wlyeo3_q1b04NNvFfYD0R-o|{#6pPjk6H-Y!>5Rypaj3Yfx!{g&pR4-PwKO_z&
zLLV0@Yn-0?HwnNG9mSu~2E3etR+@`t-<wu$GqHgmz1okX*dP~2WL()6j-IyazQNHc
zYN|oCDb>?|kOEBtxFpNbZ(?e(dns&~@a&3pOPZph-YlJ3goWYY9dUahCH$*M0cPDk
zs~?;Sq>o0q7?<|e5hpud=4kwSdtT_SyR+;=BeG+BzwI>_9c;c}xh{ZqDyT&_c;1zg
zO(5sw@l^kQ4qpikF#=h^ho)x|9i8%8N~!y?a^gC+N``O_EknBY8a9M1l;IV`8A}u@
zE!V6{zl3>JhbnAZrlEbFaxIY{oughbW)+2d?t11@jt1N@0K&j9-&{odOVQgoXPjQI
ziz5<jj|}7irn~`~-`?%W)JG_Ld49swd;Zo}wPi&~Ndmy77cbA0HsBW#Xd>?F;}=&c
zX7hX1k*U8Eqw$9#k(%1<v!(UNd%Nm-lfPiqzzgDp4v9+?ztTVxDbN1m-zStJsamzt
z=HItpu|1U*qc!@RT3_2oZlgUpJ74M=B*`3SP0LySp2X;h*ss&?c&Ptwp!*F-O0E;d
zJoISF904_u(>m}`H{R4I$jF-f_P$7weT;qi5_w>RLV2xXwUgbs&H=R-dQjYcsDw9S
zes4FB^R$}GEv>RVN-XdyL|hcS?-!4fhSqtQ;NrBREsCvZ0FJYxb0{isa;Untm`|91
z1^A(smB$PfmW`mZ6~Q}e4^^w~TQb|dJE)^mB$)#+y$I2t&1nN=)odpE#@1%~+FG+?
zZ!uBDazRh3I%iEnLS)yAiDqi)Z~OsYG9+1BBcrs^6$?h3LV)yo@kqyA{FH3M=Sz>C
zFDa>OxnJs5G*{P0H^&YTm4Dniu;DXT%pO3+JUdu`X(%qFgnY0lVM%>HxJ<~a0{98!
z1|u(N2hP>YBatp6=(7TNTE=#?6>KDd7#_L`Fo8OSptj;-`xp+6zR$66YR;#L*bk&*
zwR31ab@74sJ!_B49}1w6bj$u5{$74v8ZK-bo*FAsj>e%Qc)q~m?EyRLR9Pi^o|Kfh
z?kWD1FG4?;zIS+Fq-&%|t7It6*uqv{ZB|of5gl+1s{o%!B#|r9YNK<FoH=fFe?yq?
zt7!g6n$u*llVg>9A9E&E8Z0p(LBrTaUgf31%-G04rs&<g{nMW^W=t5hp!Hg?)5o|A
zq>E?3>(uskKD93shS&Vu<`D<dX?qZJd?n!%7#j0a2L=E1?z}|5m&cF<0l}UNlQ!T>
z`%8YkeJ7k=Fp9y8+RnwjSUN@bE=h`JifbQE_`T^Eh<GUAveBT}YH#)PV)yBvmqAA_
z20vItfpGRzTJ1+fVepSqp&YG}Ptd|l(WVHxY&$`R&#KYt#4B441}4rknh8=Jw1u^4
zJ7iCncDJ*I{QszK?JqmL%1T$rh9M_V{qhR$0(PevV;kzlAFUk9M`W_SXGRQ7uYK3)
zl#ZS0o*#xKRU)JOz2^sXrDfz{0%l^kAlCgmI(|iCg=A6=WvW>z7pvnuxOK|~gq=fw
zkBPOWj$|sH)af>a29`5WXf`HNe;zzsIVPIYfv`9JDyT6Mc5wic(b}o&b?=|2jDl%}
zi~bk_o+Y^?-!2=LeE;bs_VBiLsH*+MEJ;U`A@l%n$s_{|GbvD5xpUC0H-Do&d#en!
z4zs1yyC(V<+Jf^s(!}IW_4v6#%^c@{gYwVUVDBA&i!Oz&1Kocbevj%RGXIrj|HkS6
z-oOlw{?D+#&6a=e_kZoh{vVyu|9w<O_p=Ls0>Rd1KShfe)d{|-cp*gppPt4_qwdJ~
zAVc$B0;pYOc~x0?!%a;jjheE)cvMWVVr#0rlA^j&=jN#gzn$a;rr$}(^N`H1sJ@al
zS`%~1DzhL8><Fn%z5p9ls3WCF?7aO|Cq^=V^u@x3qG+zXDer7tZT&^_$Fx3%>WZLr
zt~=nC)MhAkZJu(Yw-uE)ft^EIFF7lwM{+kR3Z9qeGe|-{k8_-z;mJKNXUNcs$?$ot
zQJ@N+Koz!au4<^!f6KXErmwa*)X~HjE6rp`fn_3DnbQBWFLqsx<8kD#6ujN04dSbW
zj<x8AQj^M+*1OMBC~RG8$|x9PwP(htiB72QZ~~-@nHfqac=Wqctv<z6|EZo~OzU2C
z2yzQ&ky7q7Q==6{iL*95<oIZY?uS%?yJ%JFPQ0}!jeLQXYVK>2$0)A!dR>hiU$S-6
z{pgO7sCT6T44XkaI0a9)8so^A*r%ncC=M>JH)~F>17F~_T%0Qr(JaEttIOYcB>vT8
zx^*n7NE84;$rz~n7aJ^_(AQIeSza6$>4?*aKf-8fR3XRjUhKB*x_sG1P4S@9tZ?G6
zvb^F~vAv6PxxqVI8Xt(~?cBJ^!%29@O2f5;yGEd=isTSiYuCnLi&~ZIAw!0rftn7<
z-lXkBc7|@rFxj`nhAvkf0u9y4k7Aj`_1>o5hw*<5X{*ZJ`Z6%`W#tOw(7#x0$d$b#
zA=4QUu)U=sJD(VrinVgp5|2%aMg!0<8zLx(;}TTr_FEaEXvP_<|BRV-b+l13hjX}w
zVTS8{l<rC7as_=2gFCfDfkX!cV!hTNes#|f2XL2u12w3XG_}f9E@VhgP2pRZ=!)_Q
ztO0L$H-8$xW+Eqc{4_5d3-1KOPa=P>wi@z0TMiY)AYWCW)-ba<CAQ6BFobII#;cw=
zmFHW_tZucDftp-OK)sfyS^ur&EB`xz?WFOG7ELn~GZ9#C+kn+}vLnL8L~?Y>JesE3
zak6|*CjbnN+!CYXJyyX~g6zm>nzPQqd!jhCL>V!J&XI$o_t`Wl#rI$2Jg%0D<v3I=
z4MSZsD@G~)*f|9`;$Rnu6<t-i<z{(R(d>l!21hlX(lSc41YY`LdU>9&W_7XB%p5US
zQGu_|^jjR~;PO?-_3yLj%~Gv+8R=feZrpwL7d4m=G`0#HU#&{#-uTaVkU+AemYbpa
zq=c)YBdzvdZOxdS;x*0%x!H>|O*eJ1Ii6WnJ=4Q(Z3rb7)5?^KB!}0oH!Y(j@@}1G
zv1rDS?-a!Dlk<?qUx<q{NdM~<49n=stbLWr?wt+=*p;n}kN=n${ih$C2{Ij{T?8lR
zb%8ZAFJgTz`*-3}6E}8D1F0;)!enSQJg^bS=$^^h-Hzor>)TLhQd9KaTI(bsRzOk5
z=>BuLpieoF<VFE=VX`&#w)dCOY+OG|?rFdEnH#6MYA>*r%AXz<KpixY=YjI9ujh=~
z7Qx4@oVwfCVa2njD^U!(%-u`39Ikj|Zsc0rCNX(QPo$Kgc607mUS5a44h+{wZVZqM
z(}j{tICpeU&>i!toYoUls8yneUf5SB>NXz>t9l5-;@<(>Ue_lJS(}@(l;(T;i=$ma
z9FVtws`|JOvhUkuT9On?Mp?FZ|4;wZyfEA&S4_XY9#UB8>}l`FHbD4<R99Es%%Pd*
zN}P-Rr06X?o*~IS?HLgXYncK%u*c_Sw3$(f*!eU$>SRX}>vKM#f{Jo)F0qh1-@OfV
zw>=?AA-B~};r4%FIN4T-sX#N3Ca8Q*vT-&WQP;@(P9;30nelOgca!Nuz;uHc*?iS%
zVb8Me#JwIn?yGOtM=U$0CCc|#EFSVW>F2249gYX+;?vRH4{YesEqEE7`(Fk())iIM
z6*-M9Ewp1wptUZm#Nm@Gye%zqtE$~ryipi9a&c}*PG&V$gtzlzs<7MX$@J^9S${7l
zov`Q2RAdzL_K5`Za#ZzgjoZb+2MfCIdy@kyEN?COB5`DT?`J$($9tGB&MEx6FTmTn
zlF2V+Nn&`E#QD)|@xGj6XtKR+Aknu*iE*~+;%h`+;Xt8FZUoh^`)yE*tUerEAkybs
z^8@+XDwAc7o8=@wWgVT$GU%s#w)TF`({0F8EDR(S6vrJ1x}5iKn)6KQaJ}ypyu2<2
zlZyW%ff}eAB^B3OW?Hs*ntXfTS#J)WEQM0V6i?c)9V+6z4@#=a(i6QLjp|KzRq5^9
zFE<_!Pad*B(s`u+DxClFFn)cI?kk*6*+=u92meXpO<)_{-cHLP&<HdFM^3E#Su~>8
zrZOCnf(JnBx&!%MQK9t?@M76%Cq@ZvJDY$xj@=B=>MnGjRo67qIXtj*JE>gp!QY#I
zK6#9$XWe1y;{4j_G!(=?BQ&pJXanzb*!M%9m)qu_eq5xCVAqRIv(SFe^vnK}k?7fA
zx;mdifgo|>;CTby5a{FymmalN!Ee_PbC-1=$*gf`Ly@zKwH*?!dC<n69DVoGp5DiB
zC8#ZL>s!eepLVa?)(J%gsep4zxlf;L5(O+jnFbk{22p)t+X<j8rZCD4BSSC3e=GWd
z^pfsLR7WoDOOXYx5hv}*&P~>G4CXk(qbu?+Xux`GwcWruDbIuTSPo`+x0ZSBL%rGQ
zml#}0nM-pyWNA(1@qNp`#<T6YCfyAZZ~UG+=rt1o#*lAA?(yYHFEPXECdN42Xj&r;
zRHdWFzDD|R?Q!?wJ7i}s@_Gv97gf+smCi2tD#_z>x@_jpOAf3*jqzyUIS<1>q#O!M
zz527=r%_@7cHoL2=V>E$SO||~dJAg~g_^yGO})N7*(`~o;mC##`qMowX6ko739&O@
zpVicoO(Q%!*mFR@W7$bcYUzonps*SXO~1nEyOIwUi$0E&&ak<;%(|b6XJ<Eq!=9MN
zkv)4oA7I+`mbXE^Oioz}<@U9MG`fdm6w-uWL5Mv#31j_W^4eIXI`Ms6&;ry`5W-?R
z=W64y_$M<;I;Gjdh8NInj@;hZF|;;GNQ|`DQ|)io+uJjhIn?>$mnwh?yYy_Yay+IH
zCxxh}6GxRU7+@4rs1aF3t>GLXU$3Q*Yzz@#eGzp3+O<K0Mg4Zl;_m!abu}LT`GgdM
zR^F2m4fV+@uX=e(fgkedjlS%gL&2eVBea$(mDM?(5rnXZudYij9owBlX@_~luJ=V4
zt@W#Y7t203pOXtNzOW6!#);>y5E5xk8R?bdi_n-DyMi=^Q7v4&+#vj$EdF)$?mG47
zlZAQA_bCr5?4AxJz7vy+%2^+m59ci6!*p;eV_+zDa(5d_qXK#htw89#pDN>GuN_jQ
z-<ss}jz6C200a2^H%jYt+xgb^8-x?MInK#>(j0ii<)SiB7T9U=S<g-Od~BN9!h*xG
zMi!nWMJdmBgb6l_3UKfc>9|ov>^@!DF&#`b>fJ&itD$=HwnULZt@<p?ITshx?}d;;
zy>1WOnU#Tw;dNm_jXoWn*<j?U7Eb^w3bgHeq*s!L=fOzWWLiqXPoJcODVTc%9$)xv
zjc-I)j;EdPF_=fTZkA7aXRPzJ0$#6&yK&|*>k{B0Qr{OqZ}>Wv%qKbCCt_V~^E`my
zr`Xz9ox8Xu3s}Y%_oLNA**Tt~3X7|S1tdHJOCKwg)-kc6$VvT{pTlqXhi2OYX!4tW
zKW1^a0RA-lSge+qfO)~iy&UGSzR_SCXkfspGBbADmzd(eLcJ+Z>f2amvp?~{o?mFT
zR}?gm*0ag9LM_7BI9R7WkKj8@m}#l(^7+bY>f<6hxgXf2lz^cjdOpZ;*BGmRSHzY(
z7}79K%FCnifO3IG&{+U`-7HO3<z&&ZbF2()2;4j}>xxEZdcWws?pT-r1%%15iAm0n
zVFI0VOdwV&vz^d}KR4XF9I*&fE=I0wLP5N<wRua6e@IgFa4{JcBdVmjxK$R`7+&d~
zQodaU(!OrI2<v-QSH~(Q=3*PW$Wd2THfJ1q?49S&$&wOhp(^#Yhsm(`DCe62gyZoZ
zIX!P};jg;igR^oLkR7r_{N#^tI1?7)%oH^M<5lV=^TLlH+5P<@@ER8sGMZqXj;)^#
zK9vG<_}z7d)>+sHNF9Y>pQ4&m#tY7FY>Jt>aDyNCjf8+FJ<tLF{m-f@wV~2aO0oq7
z?7ijm?iQ2q8+d0WFR<n+HciET+3S{;y~<;u;E(*6#`hmoS1DP9dmii`&ZOl@x-T{|
zZ%$3WQQt5JVO*|)I98kKk>yjOm>^lQ95(+`G+{M4J&E&u*7g<R{%3khYBx9E1k8;`
zr&3=&Rjcl?tcT0MJ93+|8f20Z!<d>18kp(s!|M|++b4-ZaTCly^Hrx)O_r~4ne*7m
z27gE=z0RFs50$fj8nXo_o_|I7-sj76v;Jd8C0=&bNlwmQQ|tg`aG5wb$0xYJ!gY77
zxa?iDi?e${arDB+M)Ae4+69yu%_tgIrq`$HzK&v_X77@ebF>@Jj^M{1#B#OQh0H2`
z?j&Lacc_*qa@PLoV=UN)h^jnkTWV2qfkwZ)gOpqv`PitI)hA@9P#8N@7Fz9$Td^%W
z_4X+!kc7%ABsX5K8q5lMxIPLTJ+r*ElRtkPxjoUGhuQJ1P;JLKPNlzJjCrQ*)jQ>>
z6>Y1DHwp^i36?UyzDf2iJug-UA7PsafXW?sHpkLC&{a_{o|>v+Xkjg`k&A^m)nv2y
zE}8)<lZ9L$oszH!g(tp8R1-ig-;KzB5}eoFLVFK_HyC8kbJ*B}|Hx85#=4XR=$Uz|
z?l2?>zfO&1mrG3ysL1-Q-mb?S9kjT#5&3sd4lm?3<StKbzhS5CXl&%pHCr#8_S#y{
zQAr`U>3d@pp4xn}!_F>T`narZJDowJNRa`}M_{{%+Jvclx{dkI<Z0t#twaFk*cb<R
zPD!RC7xlBSw*DwG>2X409q%mH`yOUG3$bqx%G%>BwXSq7Qg2u0EnKfdk34iOFv+T=
zQxbF(mDKtWEk=91-sfO~3g}$toFE=#ju$5Eh~3@(aDC?DScT>ndECrGo1>-*Hl1;R
zBAkaOH=6Kb{7^^s`xK{|t{MMC8cDnZTeFwt6+gaWcrG%(4Lf-BOFh4E_xX6X7vhIt
zKa<lf&0nocf1OO;K}{_Q2O(rOVR`K;yOEjZRo;?~@kyUd9*Uo)sWI)NSdH-pp4rM?
z@(GD=51u7c0kU#m4@&S|h+2Ev%s;_W!N@Ha_&^_}%&2DTz9;<@;GWURt2}wM6~H&6
zGuo$AI36u=mdE#2mVEgB)PVDs)X0+40c3TWe80G_(CSMDne_&*$=$00>m34e8Smr#
zd^p}Sy}SgPeAiigmUuz7p-F%IFE(?YvUz!ck2S^CCM!Mj$^KI)V&{?Yq7Mo{QS|Wq
z^wxUR*Ub++u2U)En+hkGk(Js?2^>JjbRpxbB50PP@@dS4q}NvGkT$|Y0ut(y0#({l
zPU1i6nDBK>nI|P;C7Lq*HA|==6)QdMvXhmOV?th%N?fge#t)dsdHi_Nx&4eQIRNh$
z12J{`BT4|smuR(Q94*xxEuY4H0P&5@69G`h>F8>c60fzxiHY~nfX<v)ICuoA0n5xe
zG_xT$HGz5Q)W()6ROXF1byms?@;#gQ-+0E6!BtY`w2!J`DdFepPscgZWAoB~+1ogk
zRkA+9{w~mo?l@r3a9otT^{s7ncg@h6daYXwV;IzMh6)>@wP5Y#R-<lRLz&3ym0oX-
zvt3i5T!<%ck=)==Y~b>2{`V}8+Cx;3;Q9)1(7}F<bq>3MWivsGzO5y5BpDQz-h<-k
zRu*<hb_NzgBqiAuyBQJz572MiM@zrGBu*Hrq~K1iyZH3Qw?5kF4)WmA>wwoof}Usy
z^ZmX2bj~iRq`bid;>GIZ7*_-LY^=rvNWZ|DH^j$u;j`6@Qf@JXC+@qKRSxvS&;T&u
z&bn^xH5%M*uYBS%|5)U^^6;N9Y_L%OX};HJ{O-p}B%V8&vD@8wyNr2+nJ<@{V^x1I
zlc`<s?(^)Nr{e?RHC>yvg+&Es#DCV0KSrSgm=Nof-WLdXpuE0K<ePZV=Xb{03TWh>
zIlki0U80KX&iRN<-`-ab3!9vMHe1w0O)DxErFvfc8^wnjcOW@FMqOp{2pI=uQ&GRI
zGuragzcc;~9`{<HEWVIwnb+mA5h_rRhI6y&T%=&1?@C0t8dDQZX={yfz2}*pMP6>6
z2e3;FqdC-ZPxmD15MjR-IL}L@8Psn=0q6$w%+xRDW*2?#k55KIc3Osw5JVusmXWC}
z*x|L7sl?Gx_Gzr2o~{XB7#YbV#75uW`vF$LZT&TsH7lncsFZ20!u2#)>EGr~j$N+y
zigPZm3p%VVUHU%PXeV7Q&-;LB4AdFm9oJp7<@v$Iv7Y)y3}sz(v{>Q!!NSyR#U;gg
zfrIJv1vMqZ12bSc;NYnJHD=}YV{B)}>y3<auEtoiU0!o>wQ>$~oyx}Y&PRowUZ$!V
zHZG1wSPvx9GVf)jdn#(HjU_JL`Fih9y?n_WArrM$e7lkv6|y*SXk;&|EPcM!){G|)
zUEj8JX?jan8ni7sK9J9-L9fDo3d+0Np$gjOEz!+*B2^c@AZ(3ueB8FGKu2MguQ>~o
z<873&crmq7(d$pg%=QS6M6&UFGU{E*TQ&|5yuODVHm~I2y}}UJ(Mjavo5Cd<deb2J
zW59#Uo6`O?b=5eM{?DYzW%{RmH8MK_L?!RG42_gld}vyVkVw9=p0xD6^D1(1(eqj)
zoBJO&ngMY*lh{~zwHY@+vAMkRN0ywuXmAj^k8p8E9J|DFa+J=xao1R2>E(<p-LgIs
zF}STbc2mmFONuV4Uw8Rky^vT=bLQ#E?e6Tp&~(!QQg2$(wy>(XH$4fZLVRd|ck>)N
zDzaXN>slf(lExL3Aq?;B_Hnr&rDUb0_Oh1&*?&==>oa^hsgu@YG5o+MPj^b$b<T^a
zG5L0t{7t4Ef4U3an@oQR9>8})M*)SJO_n@F#J))6*i~Qt{9JOKuDqvsm~M`XyW6`b
zNt8T3J+(=p!mThhMO`(W!{wbn%Y@|2j(dAg8_bP<$EtE!V1D)+Y}(0FFfg5nb>QK6
zRcm+*A4V7PfYj+Wc~vGgMk~Jf*at5xjT_;LURQI~P^tI{e{Nz$4R29X)mGZy-Je0?
zv(`=PGSe~gFAepCR_5WZI&sI9<Q1wip1)((`;xgd)4vB#{!)<0Ylx|URaRYtdvc0P
zaL&P56;PGW^Cs`8vNn#*66?I?XI%7Xd*jVlbWbWipV$0T8gJR^RkX`@((de8(w;1>
zmfw4<q>M;w(D7+G_i@2&6NGHPCRO@e2$#0!F*7F%Cbqu}Ppvlw9b#(}ktiamC<e<~
zYSBB8YF64k?GkefJpZ;#7^gAD7{iE?MrREg&~LL|X~DyeFPDA(4|{JJRb|(94R1n9
zQc%z>pn!lPozmT%(kRj`DJ>}=ARrA=0@7W3lOiD9%_gKajdX4J7T0w@_w&9#zCYjZ
zZwwj3vFkj~RmXA6HRoKDb|RIw*OFk;RfcbtTq-L*<otokw*(~+(e482>jo*TXb0P}
zFQyiyAz0^0a*_b>b1+{Ms&mXPiW7pPil@EHQ$w9^=7n(3@s;y$1fBm%zk3ZKHM3mT
zyuW`Al6zVl8jfFO0Dy4X?*j?zPRnzBXapj3P%7kXc3O`I<j9-{c~O)ub^Bkmq?N_w
zFG>JD#4Tsk=r%fg=GXx$vNkjXcsvdt18;Y~vQga0_5g3ipn%V50qNL-&F6E)J~E^b
zleM#_JQHgtZW9+vF9LV6veeAWL&pHVaol(Hcb<v`O?Y>fC`~)gnh?81<95*BBJo0k
z@mj7nwU0p()KX@LlA0Wu+df`5_pIkr&S3KZklaX~c`QvJs);@dfG$@c=eU~}Y0$Ls
zgg8@`(Ud0O@|e)UqRE+_XtsLmtZU&~i8v@e_dH;O*3Rzb#)4}`s)*C^T41P(p?Z-V
z5pUO>QE9jFPADD6ePM2|z9<ZfsPqPL^{=5t?b#1=Ts+q>TES~zesoHOq7(BU-$ADC
z=dXX(haV3C(CB%%OJ!X;uN@{N4W2f_7|)y}{9d-@+jtGZo_DkSOP;6WE7==4$U;1D
zJ2zg3AM13k2A1Cg2w93#rouRv+vOP=Cfd<gxtt4!DW{|K`+higys0uyx36$rl)8o`
zJRN2}Tp?JsljS6>?>Cst$in=^1#as!jMlI07&p`Zd}Y7hpyIa+n1e3-66E}zYX{9a
zxCVq>qy1s1QQm?)7GnjKMo;IyA>mH>ar)eMpny)Pf`x+24&ZQNGh=g1g5|ZfOTF<>
zB~0`ze-YCwlPrG+2Mcb$nNQ=XMEebb0si$yPhEt2tDOQT?1Zl7$&2a@N^^m;#yKfc
z|7c?w8{GT5!QsOM^H@+G>{yhYeSoK?GPIm`m$hSe@J;F2A>0q*c)z`+hM`pmeOKxS
z7+8F^EL8^i0&jRh*yzA*@x&#Y`ZI7AHcKJUe58N9-E|C905sj*IoLz@9cyNZ+N!lo
zM_1pQ{TWYHY^j2OD+HO1QPcV2ZlFbjpz;EeEiXExf_HU!gWucaNT<dAUWAgK9vO&@
zNfoxAmkvD!`=BkpmoYn+Dok20s8td{+tzX34510NT-t4wqYbmiw1G~`@UGK-vQnhE
z`9UMpxgjm-cP3c=l#S~1v}3>q1jeQ0=g*Um45v)I*koJR`@eD79(Mwc?hmmUE?*C0
zVWJk*+c8W;oi%#?;HgX5zdKrj#WgoIP9l((DX(C0hZMB&+!0DjIN3P`lLYF?lJ92P
zH0`+MdRFn$@lrB3h`?Uyk!;-Q&Nm(-7M**Kf4)A(4$tPVe5_lQ*8Vif+c%xOaQt0d
zaq#Y!pA$4Xs$?C?1AD(WHD9<oM;NqV1?eftr>1O(u?y5o9Py@}C&Q#lhn{mzYYAVt
zMNW;aGz7;@(b}_h{aGIuNYT@q_p=h7bMTbaaIU&e7&Q}frGEk32;@sfUx_Qla_IIN
zD%j3xXt39xz=g-#mKD^7p4eq$=WM*+Nh<{Rp8WdVJ|)y!gY3?6r21V>Tqjo4D^S2_
zkY@R=RQS-zar1O1`Ba)8imA9Wz|v$~l~ADz*QgHo;3m<uX}J)E#^e+3xKFz|d-rbB
zDk{t?S!tXa85)jfyQ|W_3}`kzWL#K6P4^RUK@N|Z{@H$RtMhK~m7BG`o8v1QjV$FP
zf0Q^&Vh%MB#FA!-uG<&V7A^m+$8rd3Fo<eHN(%@``c>)cw5<wfBC#N#_>c_7M#}Ia
zO-b%ksp?F6EZk+lVXI%oI;F_y8f{4h@bM`L!t!RSrm8intas|~GaL`m;m8veE$6V`
zQvy6^c{u1V`}de(Vyv4+IZzi4La&TZ9eH&TJ(||skgr-3;fhL%_}n6aJ8cvS&bZRN
zw>yiiEH7}fSl+y0$!e*DZi!{81EBN~yg^{8Sv;C7UfzzL$5V$j<`dbB>FSd)Ie<j(
z2|BLjI9%s3me+FSV}I>H-0o7Mxv7cawB-y-J!>gn$sZTEk7p)uh=X~x8bL4giCy@A
zwwG_~BNP7|rXORQvr@TaRx5Pt{<md;&L_!R2;hHir&KVq!GKytXO8H9UZu(T&;P)O
z{;&PZ&|r7&CgM}{+y1%zeh?($GY#hJcmLgSH6g$M?;HR8`v31w^`Cb7|KLyce{DPe
zUoKX#M?}CLOobvm+l4B#>#i6vKT&zi6WgaaP~4x=0p-D&H+r;aVAC4&W@iXXO6>*r
z^b<RK+t^;M7d0t#a#wvGwvK$5(Y+-59_DXJ?}p(f_CCeQwh`e(N@uGUT0`Hx&($l?
ze6D59&2!K8smH@M>3~Q~C@#;vqrKWMSn=M*W}U;EY5J8Z@1;!R^uh#goSv>7P~KTH
zqA6Oc^)=l_e`X+-$QyepZPJRLr40LbdzDd=mkdu!E4{k5;^E*H!_w9rvDYc7Q+g@5
zXN{#7t(lDS6WKp(EDP;yJ9z?_F<EJ+WN)8|4w+T`r81#2-kqhCwP9Yo(2+r8SMgQj
zs{xW;1Ji9Kx@hswIlbtQtz%yn0a6kZC}3W2hsit=O7SoNB}8kVCi0!duolCj1d-#A
z+P<fivz(a_>hM!;a=~xOCp`B*DPnq4kw;%Hix;T(>X9k+<LO3ZmsTWS-|y%c7%_M|
z(p}GokhR`4%hftQBD)(_FhvH%ttD>!Y(o2=X1UPO{~c49w$6DfKaL0aRCl~<zeGV-
zv1h+z$x1xRi3YhNN{lHLgV~nF82be0M2P7QnHVvd9LZyJMhHZ`3OztVl}?HnQ%((2
zY)HYnX(>0!%=+87F})OU5sI}dyOW8Gq~XJqitQ8B+=}};V6#!9(WlNW#3vg|hoihT
z!Zk=Dxy8Y)KYPKFX~(R&W%DYnRw(CGPkHu{{;Bh<&GT3Z$0Q-qo35ugvGYZAQjXQ9
z%u-H#dS3qM;g$%-fNaJmII%QE@s*!Dd+@EK@~RJPm4qQlPIs6vx;kdh1dlYMN^u=E
zC%F+UB^4F1IOl>{z*Xzd@m-;8P3sziQgucxE!RjYWuDrEKV3qtVt$&MV_e!3@@S&J
z*FQAOge%?gD5iEFG5;{1{vueN075u%PoJsk^19X1j;<y$o?9KlcK-n0F!f2XJjUcM
zyZ1wq{f7BcxBreh-=|`R^Wwftup_m3Ip8H#bH?NGE-3e|&tTu&!6<Kj%B3?*5IZZ3
z)3S@!Khs!(eF+_w7P?lmy^mRq$f%pYsj@%Ya70rjlY)p@mC054PMlOXX>&3RKhUs5
zr8W_JdQ~UN4fon21kJtlFz||nGQH}Qt!U^|lI~QUCavSTea>;!XY{1~Xktg?MZMXg
zT@}Y|gBdVgCu-T02qnnfGpBqWr+~Ido6#0w=qWr$fqhHxK(5fdu!a_Gr3xC_Dgh)u
zqibpL_e&hAC8OZSXc-pPG=P-#Rf`v0^^fwxTKvC6kY7k?B_E9sO0<wET{-W$ognYx
zl0!P;{SR*1=JNODZo+>qzgG;tx@24)n~*JpqP4bn&x}rE`AK^P=zY?g$hNiC-fu97
zQ?4cMH~Te-pkk#}SuqP5Ts5H;1M5K>E8Ur$WJ|CulZp@1Iu1n985hOu(ir+XJl$gW
z0gH)+gd+~39;+?u^*JFKvMC%@OuzK88<BbRo_DHjyyv^gx7F&k*rA4dijP}Oc0=e}
zhZC5@YS!%iwRf>(yu4=6@q;RMvbcKf`VotkO$qT=!zX%COYVibtfA>vfNJ50&rDkF
z%v*iJ41w?^Cq=vB6l?Ty=Emn+9|$Uypm&@QRUBAaU_2goRRaG82(>+~bGo7$roLyx
zK1vYhrAIgk&Ot(pb&WKQupuWC=2XfP(V8TtnCYcTc2?%{7UA+{@55w&uRHB6Gu?s5
z@XhKjM)_3gefnhoG}3TPe4pb0(^&f773HZfwEK(pfGh$Z;%wmMO~LlMb=AsDomj5{
z7gMZ@9tRcqW|e%1HEW%gai|-?=IB@Id|KL#c#<?nP-3y+5tvnv8%LHEZ;@4H1VNc`
zq$;!sqzjomQ8z_8Qp`~C*Jd5s&I*rsmSmNTOxJA_Wap2D{u-J<m-_gncgto~H^&xS
z{c&Lrl@0m3eqNu~<Y>waTlRA-C2dG7Pw!W=`m5wRanTlcUh+Q}pbLP_=>GvYPXqsJ
zyfXvHkHYv7Y*aHeEER(%mf=fk;Qd<Sph!$1{z%N0FN<{~fy^sg0nU&`d+T$Ug9v|%
zD3h<)#ws~7k3>}z!lWSXysj*!zjtqEjzD{mEY`#`4>^B`5w{2N6ncZ-n1B!n-bfa&
zJvnCE*VE>~CMA2y-DEfu#_@#?7pqEBHWq?WmdiEHfI~kRFcMa1*+hO~KNMBV=Hq}g
z9QYL?yT+`ZazwBuJDg14D`c7;WDeO^T59mJql=dJ&#5lVQjn*3azs3>mmIG(A(Dqi
z7_9!xP8;H%Si~F}C=xH2T>m&KF@hPw)w3d>yJ^&-&Un8h^4Dzt13#5O1{Xn*f8v{G
z{l8BdbD}T%L18(o@Fn_U=x&ZugZGZ&$65hDr4uw<QDku@v#%K1xSp1#Mp3|bFBMhH
zw%t3~qjloE?tyPDxGXy~7{lKddZ^n?Q_oOxy1eIQ+$qe?)LQ*&_(!~KFDy^-xd5xg
zq4M)4oZ$JB^3%YRd;TMZ(_)pTqF?82x@#LL)-ox2z29_&=;gc+RfW*7?9tvl1!@YK
z9KHFY*I0b-`td&cM>7ZpbTv9WMa5k4<vENgq@sz^+<Qw>#sGExw3VvIPeqcyUTkA+
zNB3HbOdqF~*p_Zeb_m0o?kpHnU-pvuov{`@MDjH(=ry19s=Z|_8vapZCYV9^lL$zl
zD=#CPx_eI39KlII<oI@`ORbEEdybtqY5E+2xtHi(lPb(r6#umUsT{ih*v@l|l(#uw
zKMucP%<Cx_o+CgR#7;C}+qv@kbGJsEOl)cz20J?E@0t^WN8mqv^UTSGrF9sfdF7tO
zo{hM{g1QmtRD<}0R&kFZba~=}Q7YGUcp6V3Ts$>%TMqOfPzRgb6`PVJ1{s2*{_pF}
zmk^vf#}O*_pphc@u-;CkL<2N44&EkiJ=uY|+yJG^)%Yzg;2t<OfEa=<Ncu^>W{ZW3
zL2PVXY58E_$?&Qbd@Ri@EJJBrHtnm|>{UHodG!JxZj)Da{Th$nQ~kQ+5ocr&Hu6Z5
z{?{BXgizaDDB<B_5cX+*W_M9W_i7b%cX0(ulxkuCPq_o?^Jz@T3f^(kwK+&*ZW|g*
zm^ZXyM0LU6<$5<VPLH?jTMf7DRXexri7AWVXr0cyIJ7mKFxW1ZS>`U5tBNb{Z)MQv
zh`Gpt3B=HXmniYmd)N?Jn-_jBZ`HU&yq#i+GPxqQLvczk?{OG%?d8NIg(*2wzrEY`
z;GfLNGxK)Pg6PKoJ4z21(o~F~QbZ6SB@qOL&aS*aPB!gTL1&2O?_#B!4_CmTnHlim
z`?pseLu4ivQ-)jhf5PQ<M~5Wqoxe7}6*K}wfL>kb98-|R>$g+=y5h6O8Poq>to+}L
zS!Hl9j5#6*MobWq6S9)n;3A+MGuvHxkDPg3Ug)}H?_yDu!O^6*?2&8s<y!{jT|x~R
zFz6U+9IX1A_LkIT6YX*;b)=slqH;pjnCGE~x;6Hw1mx6GPUpa{UQF?!Fnq!}T#vbm
z|IIzAq92IY#8(ahLB77b1gTA?@pmovz)e|1Bph4=TWPoiE;g6DizPS&gThSnzRV<(
zk=-`1%SFkYF@m68A3<PlI3pB7H4wkFz(P`}UNC>T7~#ibj}2jEC2HjV4-a$5kCy9a
zl(8e%IBzu=BJ<<UIBubLGyNAKK6Qgp^r~e3CrQu0e}sF2;MCoiFhrU2o!MGcL~dhZ
z>^tp~nTR|a3u4SrpLP|iJm;fq<_lL|96}k+*S1?c8}`x4wKzq)SfPumGchDlc~sa<
zL^UVOcQ8Z4l2lzXo@8?y=9TP*#E=;2oifX?KDv|Q8bf!^i2v-`0h{l^OW(hJ)0h{3
zSHev9AItok`)A!qJ1)=P_VE&WIt;3by=7nBtPL)~)b3v&4TBCDAqWr@nBWD<$61-Q
zpns&T-t1tbU{FaL$L|Oj6jOj&@-W-$2YeVtL@<tE`(kxKjq7N8W&tHdK>V{Lu-(k9
zWTG?jr~y(0)EbMTBKD!7E-~FHgU0n-F8h$c!C1NvS1Y<2q;bto?Asgb_gF|Ue|1Q^
zzq=27$ME(KD{5-mY##onq^rn*mNeWOL%iqZ@)5#cu_xZ1BZ#_|rI7}!Bv@~>S>*J0
zv2sUMg3y}`a8YxS6EAUNK@?C;c})o44N-OpOotDrFty>Sl-pQXay(~jUmm9D0p@`I
zbl~1iqVsznMTZO(DExd(E}wsZV}nngPD7*O?VnTJ_$M&B<?VHKIU8@>CxNQg4wa^r
zot@_oBJ}lA6cl>wc5Itbn>oKfl}9z!Ru)?S)nL6p2Qz0I_^!%GE^>TNj5v`rnr~`$
zn6#Jag~gyxo<8sCXqP*9$i3#4KPY!2N-j1+)_4D@$3ELvkAH?V!JwV*d0Q8go<lM<
z+ymcDUXS%7o;*j0KhOiq6mkOb<nudq)l=|Ry#j)uY3{+!x94P#H{Zd``2k1UiAw&t
z`>lNp0m0C>Dc;2zPGNrgW4AMBae;{g<}|7tEZ%)(Wlz6x#nEE$_xc(E1-@o6?@@g~
zY^x%2si)*>r(;*1pFf)=(UmN6O3k;ng7hb+|4;QC;KicUGZsIz0UP0w4$~(4$iZhG
zZf-z?V%KOrOL`tu!LH%Y!DfzE&1o(_YeNv7EWQz`CcZI=VB<H(^Y`s1<Ub57fM><!
zihulw60HDZZbyiIH0Uk(U`3ZA8iHK|e^<z|SHjAxM0vhHj(U;L`2^kanTw{|($5Bi
z-O#<3VVcA}5f8FkA^3vFR!)*IZGiZNVv?YU5G@oUe0`J}--1F2*spAV=$$ewoB!a~
z(OcGBre5HZ@XB*#2!$QZ?zcPbZrS(aX<r7=)H^gDt9cBH0hE>B;|x>iFObm7X^@9V
z6M9@W4Qk4B3sscX`kpK71xXQXQ}Q0H$NR<5h3WAAr#Y_HIrw&sKo_l2g3(m(1$u*B
z<F$~iOPAt?30Ox#Pilh2W2gWwW|5<+DYI$s|FJOp>&HGqrCqEJ%~#xd?h;Jyf#`0l
zV}#>~C$rL<P2e}=Ik9&9p0&oLrgmKezvg+EE8Iqh<k7t}=Pe$H_aUMuTOilVy-dW(
zHoqo*HPQG66JmBh9w@y}P^U&do*M>kF0?{ITY)!C1IrsH6AyXbiEj3Pt~|hlFaj4|
z9UbaN_Y_66balC%2Sy1APZ$X8j2j&X4#*c^-_rDem#fQk5p75pwMb+7lTSah1&;by
z8xNGL6l?uXMHYNf!%>Epyms^dZG<5|`B@a307qt+B+`rvxo&T1zw=z;oE!|{&#T7B
zs5<eDm00kys@;bNSkAn%==iHymS8}nz_T8*>)1qUZq4$r@qgAv5SY-=lGz9vH5uIN
zpSOwVC<jv;F-OqUND<DF0M9}x-!P#O>N-aZd<Cvqt~)Q%9`D##+n|{&H9i#azN~0U
zXNCZ?L~YATsSpAxHXt9)lSj&A`1<@E8F#huWuG#ZrinS)o4s6YBZZXvEeu!WgmS7-
z3OR*zEjJ(iREO$sZD@3zhKEm8+Bt~-G((GS@mPB4B`^!TClc%la?Murl^Fz^T$+<#
zKSu5em>tyj&z>xf6a0%fVct}b5rS2**h#MDJ#Tg8(^ilFMi-Ez<AS%`A9AjO1-I33
z(;gX>oXv@cD}_b@M#jS*@GKp}c#xH#@w@WQ>`mqvf*_^LuI(N;vZ-=pjO!?S6o3Ov
z;D9M~^<5pO{Q6(x)3}f^>w^+^;hkY7-;3gW;OR@>JrTI}=g+TiH*epnJ2_cd$u(5m
ziF(NWdH1l=ec_Fpe@=OMy@e!&^S<ZFwwktfLZUG-)kMmlH&#|l>+5$Qz%mLL1bbcg
z1M^NIY9Sv4jQNH3(|i9j@o(n7RFDz3HWy8nz|lZL;*>Z?uxb1QF7^nlIj5Q+oVp+g
zPV6(=1=EW`G_^qxl;Bm~L_$Jy0!s$ICOkNg%{Kxjy6)Wv5eo8UhAJDBq__};#HK%g
zHa)f%CpZ~SfEQE1cUh$Z!je<C-PWcqCw<dF=gpXPO`92E_+IL_7}x8c&mfr?54eCC
z@X_bTYlEr0oUjitc*84;cWZ2vj=N;>=>8><+)`@#JSZpjrJ;@>2^m5=!<G~B#_az9
zgV$C32H;*nl7lor5LlM&VpW5Q2Qs>$*-?<=c;-~QD1nJf3Ua&CEbY}8_$0!lCGiH7
z3Oa+bs4%OCx}4^$K>XX%Vm2{0k*K2yTsqTVrIsH}Pl`(fU>!wc_;-fn{oZHO*H4wU
z8U@Z3Up?<gTHUKa#wTW!6qKF=uOTc8;s{9$>|agiC;6sb_>*|v_@9`bGv_FL$@~7@
zP`2?Nbe4&pzp%3K0{M3o0*s)p>67sxf<lNZRFfadCtY!(So1}O?#V^Z!gVLpqyI$6
z>#7E5h>aG-Lry6Ww1<~q(67G66oo|~#Dg4C6(m%xhMkI8{A%tPyWp{r;~;l5;@MfX
zr}!}~)&|xacDEz8z|pu;1X9G~YQcsFctM=P`kpBmZ$9L7SzHWrXgaidC;59*#P554
z%SBHWu*PfOj~VS$P7*Rd+K-Lp;GZ*L3;H|F;NW+OkT<=rA`|^c@AYdg&py=?NmkbA
zz2<9ViMvQ-I2DKc@L^eVrLC;DpF3|Nb&K)e0eFVg(c?z5Eqngu!1kr9D-=0ztVWJ$
z=<x>cj3SNa>Z-+GSja!nE-`u^!ekQhL_i&^yIoIQz>*@L|0P%%<Y^!p{`olZ4?0i{
z9(C~>Sa0ojJ5eBE-33{|JYRE4)9Dx5$LTMeJ-M5P21hHF4_RL~Uj6EJ?)<j;*8{kC
zd=O+oStz=U^|A^RoQm{uXz6MxO+F09=8ommQqu*7t3`%QA%z8{H5D}z$qlu6%5)EK
zgV7s*2nAF+Bud?Ba9@+e`RjU~SO?r%a@CU!U*CbGPkW^3DJ6W>Nlp!8?)yb#8QA;6
z8i)y1c)Ko*0>rakmK8cXRj)eg4c2eYgaFRt6A@sFKNWeT5B8-2H743uqAA4)2jaV1
z>n)rC8pkH`yV#2y*%B2z;S44Y?uM4!Rq}*`b3w4dYaTA2YaeT+mGvM(Y32QD$!tfK
z*gU0yt<jqT|3PQh$}MjNFK?mZ2S2qJhUj9F-oHxoI%f;EDVWX@GxBa)>Vxfno^bH!
zlr`(O)|&O-HJ}399Q}RFF6C8~m26u>9r6XRgcM3rlCc_x9VZ7mpv74;f4c^a(^KN%
zu1ivoRH{rkQ8|e+$bF9Y5A||>VpEJx<|d!zB~ek#P{y4HYp?|gzyhI@3zMQm4aq6@
z9v?XJkVe3+wt?!k=Y`GVonj@b*3)yD{rAH)%)gd@PC~xizj<#{{BhLNLfLv=q|GW)
ztUMbx1*)Y~8dTg6+_jE-=DlN0MpiT+HES~~eQ#;V^edbD#!(#E;Y`AV53a6(ku?or
zVXC~q;Eqo2-fe=tkT9Axsu3bIP?Wce)wZ;<@S?VYoww=>v1i$;<+0*$IL8;V?x%cx
zRGBx+mYYsPmtTCSRn*8rb84^|Ge6ZTk}BDLiYIrjV>kOW;iI6A89Gmd33n#UP1I-)
za>^#vMi&*^E~2!hGu$#33T_5jR#5lh-H7l=gGo)DxY%S71j0bzRo?+dr2SBlV|m?Z
z#*f>*AtoDz&$O8`qoCurYAK!Es!M)=fl+D5@AX-=b?=}it?4TeRqY?mRX~R5Y?d5x
zG)UiI8|xeC!tF0(D#IV?Lwf=J#E-QunG`ERivGi$XZfUY0uL9bns55H<s_&gAYJX1
zzL&!@FzH-9Lp`I_-EH7D<x52>bHaIsDu&h0Pt0Ve=RPxN0O_Imf`$3&ebm9JJ>bxp
z_kizjKKj1p{up)9WWoPBLSX5AVSH|KQ5+>aH_LCjWcFFcO{G&?HA#h9+s<HjGY%I|
z_w~FdGSb2Vu-sgIp`X)-F9-&cGPL)szw(4B>h0yt8EmgBJ*>66*{J{a6yx#;`J0D}
zw^zqOnBw2zRgtG&WQ;nSq!#v!3X6R3An~TwcY%CQ5V*AFqX02nXXBu7hWcja4L!+o
zGWiDa2Jc}yZ2cmcby|E^Rc)i;)1q3|R1smpsnFyf^xe@d#tsgq=YL|mDO+&*Qu*;A
zu#@dspR=oTrUK;?9;s*dF-*NaLnrcW7KAU~562K`c+kA({ZZ@qv2Bh31aIgBRn!(a
z71>-#Nzq-DUI`3Jrs0n934{ker=y-@8{JyB1hd@nrtCm$!l-u(lN$ga5GCQKZDa#g
z9DioEvHSAblEM<nwHmt^-JN4sbp<9|kQ9|KM1X}Wo7-g69zhV04$t~9EHw5{B51d@
zI11hZ$O$SfCKPE*;5aoseO+}u`LHTs-gW=$a89Ui#UG)@3EHE~0=f6cYZ9!?$=e%i
z;8{T<3;I0$Fy;TvusOTH6pJnEk74M*t5;LMx};p#V1N7f^g9V6A|mnVam2GU0Wbb4
zBfaZeiVzmjLW}A2)n5ppOP&s&+5qCcve&}k_e#)sH|;Wmh^-fZC4Q9n_`!+~HEm>t
z{-cXTAnw{)+x?pK)ol`jeMw`&LV`N_dk`vI_;~i~FovhgshP@$)8JR&z=!BXeJ{*l
z?8~`@?tv-To=Xdo?IO<R=I<|NFBN8EzP}{rI1;Bpy{p?oDa3&5#})dk$g0LQ@`NXW
z=yaQjkwwJ)`RXVyc`DAGNcCx%g_64jN1JQAW5IjrO>L*BHy21wkWAkqX(6I-*2$~q
zYoQ<y**u}KDsmQclnq~DYk&?Vz|{;4KI~Yp9kMEMvy;f@RxbEXuWs$FZJIBnFbyxw
z5zy1MmcrXK?;9TVdGKpUOpG0@_ZXHn353!egNRaX{mBtWoA)m0e*Oli%eT9Ze4>w{
z#9Usw2X+@^O|_S^z2g2J1L$Z6Z>b`mbhV^ot}gA?x=&v4&R?8Og>hn8lvh`JY#o#5
zsZd56;}BnvJK_X%t#Z}<M)U7oYOJr{A&&)=r>?<gTAJg4^WRTFtzr?`bHAtGOL@Mp
zuZ}BGQU;T77m5qX@NV&)4*2VG;N~`;4&-D)LhjrB#aBRtM(CyuD0@Hyr0JxqW!U60
zS1#OAIve-R@Cot0G6Ve}1-akJpGf2<(KVyDgE5#Dzk`fk?)<4a+BeA%7J`rZ;hi<=
zl49pukh66Js?ZyVc&_1z5d*T=X#`<zS&vsVy+OmRB{;3PH$(KU3PWF_)|jn`BmJpc
zMIwCEe~K#WqtUjZ)AjpJu#PF1N3xU^8`kZ}O1T<lMqjQBqcVPHsPdOpXM0{=b2ii|
z7(BKMAwu4Nv;tVV^<W(X3QaHL61VCqBObrTV%=t|)3C8V!LTV86WeGn7&Rj!%YrL%
zE+T?ql%V^kqBqA9e{>h6P(82nVdE(>7)ZO`H*mmYo)nzd3p@YCLX4bH!cFX~zPT2$
zJ)<3*n0Y&}l10Trc$84K;CrNOrR5xv*1H6lzAe|=M?e`Oh)n;kUQjmw+w<~VH{-fK
zE3b5TX5_ORIcNoWD=8&e|H=K2O=*<2E-dI^<)rq7p8y(j|1)60-|%6t8{BC{f!yBj
z#U%_cH2(@7lj4tnC4OD)X|cQWme=A^?JxVsW-5MT8UiEgnL4-Gm`}USAU=zf%)hF4
zSougwem8>28`kjh8@v3w7nuIpu|0;Ng9w=6_B#j87s4SQo}woB9{))MVu?qOtCm}*
zFFNy(R3A0E@V~dLZNG|jT-xlP@q8|&7IiXV8hR3jcRcH~X#1yzE9~`{2)(Up*N8Ng
zabLIn_7SE(3~R%^s21c6uFmcT95&UG?|O{TGrH_1@Vj|E9UaU))#N$`0@n}l6cC2n
zU4)UxJ8KtRAwEsCffDFV5YZBPovW+Cs>4ow-J}iPu+j@KcYk%yhYT(Q{aF<LaSo~9
z38ljJXpxtetB=5fA_)1ZZW)Tb1LUbGQJ<qHUS0M*qX8~1fV_nhAgd_PoA_x>`5|D8
zmhU0&1gpO)SNZknV^j4kg-WhAQ~V3ktX4&ui_NC|NJAA(`Q!B#TkrFN=jQiFe9XX7
zGRCBkKQdW#ls5ao{0~}F`(;NETB}NtJK+Yo>)DYRRpRAb0PYc1;#aK-5k>6NNI{Q3
ze-u=dvL>g77%!K~cFIIJB^XykqC%6pSuJ}JLp>poWdQzlDZV+N{Q7?UBL?oPY2e)R
zvz*G;=Q4DCZLYyd$ZKTGBm6r{nu;7ex$bNOmrT^WbEmj3z=`yNqipri!@34oF>65H
zhHWr8^o<q!^Eq8v>uoZ}hvVZPP;k)b<!Y8)n=Yi?p_P2A@#Ir%?B;SP>wqp_p>7_Z
z_oDcGiGcaN(cea5BtjTC0aMkxjxHHremMilq{Ym3)}?#;U7UlJyJy&L8S!<D+P*D_
ziHU3-+tZ-YZcg&gkZ^SLl<&-`lhohfmR!cIHlVP?0yU@B-?1{d7!m+OZU};(vO+rH
z8wu!=0sz`ZOrlpAg_}^X-blu%g_M-^8y7W;_<D4Gwj#wu7lt@C80e7a*9)`XR{yz&
zp%#j%{=)=8*EK3BPVE;!w6m8|5?Xb*%QiadjORuv%<KGTG1^EUNUQ!XZ&DtimdmzI
zfOGq)QJR3mW_cC4M(pT&w9M*C>D-M<mPDo(Hk(MgoruX1Krkj(gzm1rTVRX_d{#7*
zi+VA@6uyuO1@WPKc65573-#;VCS~%4N?OZ<JOrr#U|u6S#MZr}Uw`36$ki+=e=u`J
zz*+l}1q*LP1fl`Q9=)~Ml>8t<-dLCaI5(gEcClLU!-71@t=!YLyL)u}`tL;SS^e)8
zUTUCI<mhem<+K1I-_cG&vi%QGH>$0NyEm%>3Ojbpr&LO<(&!-^+|8G!UjEUS>kh0B
z*%{4`6C~>J<QwPG&6OzL(yXu=^I5G0c|fMBFTt@e7iTrWDuWNb7Jo^(VPGIq?)1#M
z_aOZMe+!bS`r}2R9#s8jd}`%d!cCK)!}ib=H&9`Zk72Z4FNf*GawhgYLhaslCX-)X
zT~RcjMJ9lpy&Bb;JS4goZLE)+?LV$__1bu-U5X$j`ExoBS0SRF>YY<O`uRr=;*Z^Q
z2wK@N-Ij8@7)0R)59ai5NpXG_JGHbqp}%}DI%&vdW?OhD0mEUP1_F7udTZ2a{6_P|
zu@~zANICn0i>zb@jqLIXC~QphPtrC=IajK96OW?suU!%IK-PZZ_NY-9`Qt~S=_9(P
zH{g*fAG|`1tu^K6MLj&5k8u7fKR)4;pQKL+IBY5luLa*oE=0mr*dnqQ9u?#r+*KGf
zQq*m>905y+VN;CMUN#eNWofQ?%Sqo6`1G&U_tJ#nVfcR)2A|8y_xs*-d>9;ny6^vz
zx{&nX`2KDs*L;ohX6$>4PbE}92+d?~IOuQtpX<{DLBh7_%Jr`UZ$nQa<m=xbUW(Ki
zH^k(s7j1+AT69bCG$P;Ply&~Yi&CB6J=|V}Hc&ytV^+Fcc4}ubDP8@Phqm_&k4Zvy
z$CI)uK&TsPG0cE}-F)Y;v$HgJ%^MeQbISO&r!FG{1+wsUmRvwUC?9NgYtBuBeR)Ze
z3Ys;0NVLp&Vw>NWWdlTp2ZN7Yk>7W*6RHB0qIa9Ay{pV8mkxnMbH_j>NW8fwS6AJd
zN2nc0tbt||QvQC&-iGNAbS{_ATxNTI*^qGt@b0*tb`^Xv=6CSpx({p1JL$s3`8i8j
z&j8a1=HEEO$2(M`NGv3NbKA;G|M{fnWCHH(`%{nmj+CI$g<314z4S`y>~!aPZa>e-
z7%XOwj%M+41D-tLepUx7Y%cze2dS*W0~7u^#JrD8K%mz@)4t`pdihrc)40}gpZoGC
zLs<fuPM<#C`+<NZt@z_ELc>3I&mScGsje3EY_fXZKp4dXjFFes?kaS1_U7Y5$1i_2
zeBJItkEOFIf)ee(iKm+MugZ-es>TfQz4uvIcxXG1Nbo*zuHi#@V0A^I5>jS%V!qEQ
z+3Ve&A?Djs7#24hHSk<cF$98xm8&yfqbz^azOhdF_MA?jE?|U;Gni}4AvYa>th9yI
zl;rXbjqx`I{()=j>&G48r_P+L<ZFh5gAJZbb8V4Ze(8cvpEpnsN+oa*8NTdq_L|uy
zB^l3L5#I)VFY=qSa3L)8xdhY{JDcwq?j?VwoXO8C1-27;d8O<OdjpNn+kuh_sOozk
zd~UHBF6-cwxpP)uB@$NhvM)&dqol31h3QkWeN)=NyAi#;FKi%-;_4}7iACvd^wvHS
zaSf911k>XMT>C`Brnor92FJTgGk@Hk45XaSE<8V{Xlr5m%GYCVb?YI-k#nmyFx}PL
zAgCaWZEC?8<aO_Z1B_(djD|zfyNq6Qg<T_zO4N16fy(C?aIW(sDTA0L7yAFn^&~E&
zl2dRb&|w5f%5O<u>52DCO8RgDOf5{sZd4~&>0Lm^gO0ZFQ*nE5Cn41@KYcS0PMDr^
zW7v|M<Ms7bS{UtRm=ryr<SU;{0FEF8h=j@bpSS-s5H$5}Or9ER#g0t0(M)PdmgIV?
z>Y}COlcSlZS<u5|^T#t7C-|z(DF!es{Ri6v=bzn+8+l6;0C~bs!>Hy=lnexwi_I}&
z%~U|M5A@SfRCDkKsZwVWlLS?b$)t35i}|rP56s_M$jm-m#!iQS9Z`m|O|$|Ie+16o
z`w@y4N89t9eK#Y=_(KE0BvBYy?;@0L^@aI;@IV#H^yi%6_KxjK>?6WKCdNDdAoG$D
z*oq0v2AW?#2VS>(Xyq3eQP7F59`QfR8zVVz6(ccR2-*EaccT5un%eTJifz*Iro7UR
z?N7&E)QD#l7Z+63Ra~4MOKB&>GUUY=D9WoS%9~z;Q?l?)^BExcpLd4)5#60V-lDc1
zzFGFX7OX_;(Z<He_0`%_*`Kpa+QW5uyqt$Vf`*<!X9wqvKiK>nRMvrvXjmvfo%3)7
z?-|5EZU9O7aLzXlc_l*u(?Ou%xR_VH-O2Lto2_BLfL>X5r>m7Wt}x|7zfJ*Y8Ldps
zcDGHcOlEN6<q>VJa=-F&uul^{DTNXur|E1S-lsOTv)Wx>UEA9Ma>+Fn%4U~=sh&+3
zQH$Z_X@Z1xEZ2m`Tbe*t<H7F^!ew+8$5Hr&g#~3l3MmD+v>8{tykPjB2rN=`Z<5LZ
zYdY%0?)cJ0Sh3-;GI)VAj2Bs*!%6P&>on4%SORKing_O>GV#GiGaO^`5oc~~?O!+F
zje0p$f1l(Dp*F2d7rkLWafA}(<KkU1ZCR+9lG1^&Py74IyC1U;9PVFUG+0L`qc78+
zWC#j1*XAuvX1MLnJLxH@(McJq^iZ+$YunOSR`O8u(QTUdFr$C^;<!-#)f<+tsAuhK
zS+8QJWU8bj(IO@kMDI=R9{M9GGnLnVSRXpgnJM$VB{Dsi{u?@aR_mNNCT7>jOy8XN
z&s9g7?5i@vZaN(CTy<l3%KiJKW7_UHC8qKq;qf=54E&(h1$LjL6aC}0Zfoywj#zkG
z&olOVX^%?y53rdn=En12w2L4GWD*%rBHO7CwxBZp5S$w(w}Gu<@ZEwK?`+(a;6?n*
z@O(<I9l>Y*DZLuw-~DY9;a#h>E!J6I76drX6#qn8nPPuatmkp|ZXCe3A8_kf9q+{3
z7I^iVQ%6n4E44FkZS8@SozHSzi-T$2;W==qky4Yp18>fZwwP_@1%)6e+xY})6P_9I
znXc6O<QreExa%;$aod;Cz2_=|kweqTK;;iU_wnOL2TiaS5Q;9(NIZ6{O-+G1d`tkK
zz}xDl({<dOGG1HK1;q_gMjDf{H!r3ATA?qgHY^?5kL(^qDE_PGL`*OJ-eB_abQ5uX
zI^By%zNY95oR=d|*OiwxdR?xfF3%$uYj&TzZtv>{82^KK&GHCcBw6i{gAOP-`lQ-B
zx=V|*Lv}ysEnv-9ne3*7ph0$72zf`Gv+Ve=+9$C!NK4pBfIQgFLL*t9#9U$bt2V4c
zyT`XU&Udi7Z(CpLDA@9FUPGw;YMd@PCAr1%0tW(|U#RAI4+bN#zshS3?)!()UI?@A
ztQ1V=B-7-a2j{kwEMU(}f51{vftZvIg8PV6;y^tEAOS75RP<vqpQG(@5RR{}+s%OT
zgw=5HcN0Q;YQBBE?We)^&XPARN;`U2n0MrmKKhYKv7E~|n3+VTA;0VqUWKJbn}1BU
zc9s;QqcI>@Ey;}WFJ!!I%vVVCZ6czGoPK(TR<M!Y4fd81urcTNvEIV&M>QG%HJ$NI
z?W*R_V__i)e4cOnCVRjPWP)3^$OfvYhzY_x5O&raj{r52#*Ovjw#jS^b@u%E)u432
zOCZl5m>H1}C^@d^L$DdRV*tK`qh65+1=v86D=e;_nHY%8Kex8tv((U1%U6BjjhZ{O
zzps$XL2ax<?ROgJH5huluf_P4P`S3`bp1$3P!+N`-QQi6s^KFs3LD2}F|MDc<;cu3
zg4rKGHSg1)%9xy+`$LUv_B(xLl~Y`*{DSy^GR?M<6YtSxs<v-k{6no@1En=;(^kT@
z$Q=gA@7hnIHe}f{nyqCE4v9QHcn1p1%>8MG+x%c=arZfwx$=I3gYqKBm6wZB{|Ib4
zT&OVwWXj$Hb_H3X^jq4)1wmUbW*$`00#A6Z_LxH<tw1-a>5Y%tdXV$IxUjh*Ovv6Q
zLfndl1ozHWNGH7j^e*6**+H~x%A;)CTZM&$Z$6l2Mhk>Kaq;ZM0G#pBacFWo_R+i2
zDzkWQ0itjEg3e?pc<I1Z9zA-+@0Cci(UKa6{GDRv_jl!!M9lh`0pE4c`gW~cUYyn-
zkHzi`iK8>KV)1?Rmo8V{bxD2(lq$ZbZ5-w%dcU^&j?&QA1`AU>QFxAIcZzta4fuTC
zmA5cJuA1L0_>>I{sXYjnq93n0Rx}7y7H-+PyCIN^>LLa3!FyoE#P5X<Srpq7yqJ{b
z560ulMH4cl1a~q`9{G=|5SNpx(HCA=T4GVh#B`VQqFL%jwRW_%aO!SBNu3$Dvgu@~
zGLNhPv=^*qYbqyjlTimvWy0F{aaV979NZ+IAC9C(6?d=pw4rEZ@WV@g6keLPH&-R9
zUkh+k9;pnv4VVpmo;zRd=`Rx&iew47x4`fgKrSFrcjHL_Q#?b&wSE9d@!CM8aV}Vz
z=(ROe)tMrh=pB@GN&E;|1ESi1goUw}IlmXI&4C_xUyT>DQdO=!Kov8A!ret#F5q0F
zPV?F0SI)t7&tYt#xeebfUW>kQItM|&^O1_=r@e8gt`_%k6Kw!eA*iILBfKtwqPWO&
zlJe~vdcwO0&5qp6ub5B&mf079O;9($UXb$#fTz;Ur-_#s<+VIzWj5~uXkA?+*B;zM
z%h=o50tYO-^-1Sqt51!~arJ59qD9r#l`+MciAMj3brcS!DX8~-12K8Sg1ftGsI6!B
z_9yRsTymC&X7*MSJl|iUkxAXb^2%H2D=LWz3Au#$=hh_0*GxOJs?Z)?m^s#`)hgmC
zDQWB=M3a*vd{7AWIOi%(JkJwCYe0ay-Q1r9BqX0nzzyTPlQb25;yGLUfNGZIg&<4l
z#?~id!P?-z9tHz`Cp!YKrfv%qvjwdFFBMd!Q4r9YK34|!P|Q!6FHdfob#t`ifP0EK
z+D%^v^hjuFL7&K2ZU7SkR&@Yh(aC`>4eBkRJpa+Gq1Wwwk8eiTtDf(wX|=p9dZ&5#
zDV>zvytDem%lti4-fh0MHQTQ5EYJ)4m8P3Bsl1h0P>G{G`8{}OZtkll_Y8H%vO@*R
zRHX0a6QQV-z?xRQHx>N#vtYa)sx#kjWu9g2&;#IDc)78=&!VQ#QG%6+yF;%|TnR=v
z!@7@t_yRm-E#U!77+o&5k7yZy<j*(iGK*x4rd*MaQ4ay?>ziMFk6)XChW)wS_1IE`
zMN|r}8HHgcA(7|0VSUO;-<%WBljYttUH(i11_Z#zpb<V8<}3$n9AFQ<uMeg9%k<Z2
zS`DIp(U9^(WlQK!sa5dzc1>*~ceu&{stM4u5!c{BWBKudFq8d@Avtif!01%B?jMs!
zC()`a_=PLNe!-rFli?R@GB?b@g;D75+4*;{=4;1&Zz{=+3nb7GCcVZmGXQe}&Ow3)
z`H^E$I^;KU|JD>G&|3&3XYxITkjz@6i-~Y87n#^k#0zOx0v7iiK&=aFp?6ZDeuKPL
zd^}#}r$`|%IWomd3U)-ordEc!70B+;$?fntYWrE8UNGOmU-e8A^ef3LMT3yZYf0Oq
z9h!BUEN@Ug^xp84R+o2kk$htK69a<m5wPYyM-}ei>e$yVbS4pL%w!6agen^rmf9gn
z{#@2~@#04^TQ}~8TqiwFags*DEd{)oG-BA;pT=KXdtSU#7yZH@rDkt`Qo~I!ts87K
zKLA-=-SPf2b>G2wasvNOzg<IQ<azF|>I;~3061@2%Gao(3NTpD&b`uJr7OxXDpR(=
z+$SG;dWpBA)E(w}WP6El53wL#*f!w-W6%aVxk5SX<&^gB$;#*H>;_!R%jo`+G_iHR
zx2&NXssvJMLZ$(%X>c{;g%#?RX)tAnO5tKIfR}jtC$N`eH>Mv>M|Jw<t&$Sv`-X6a
zKYxNLgqrop<YU4XMJ`YJpJf9*Q0c61&=Z`Rl<Jz=%uwT<(JC)3C6t$O=>xp;7xA9J
z7wIS(pH+nWxbD~sI9^B-FRm^LvejZk6dwvLhPKo)<eI1AVE%O?SudMgos}>s`?4^x
z<FlJiZRBZ<hdMSpYc&Fyfr9(uWZU}RZ~AO+MoUTe{B94Q1@JZ~(Lp^@Q*|{R7gBs-
zaRbe`R#y93QnRX2B{PZ<!;;Lsc}n1QE=VONdNcoKm&ML%1&C}FETVNA+)e@3$ehIU
z2S6|VblCua?asO23@iJzWNFc4+4)-wO62$|?LqKc%bRa59bPd7-K|qp)ZXyUh2EX>
zU{Z$2&C_;c0bqTEgMM*@w=rXv#O<_S=ttOiF<gc&JlHnCUuxP*bZ|(AGv##@5Etm`
z`zARfaVu6g2aqeNjs_T6ia-)?L8P#<v<d7L^UT*eBr(Uwc)SnVJ%P52ad9wN@GA=}
z%a0_p#cNn6X?Z;sNbWMrx~kbR+RhwfJ0HFFHux2ualQ1n{(bO!fH|3n48o15`Te9{
zrV0N6F&QVo(n?K{f~4-vdPP*Dqv+oLu|QOM^A`gnE&YWlF2Buv(0pP(o-5=D&F34`
z^z^q<Oe@Wn8(9esH_!Rw;6di3vo4WKqsud1n8VM*2>N@NOO_5oUVpx1T+er`|J{V9
z(nlc`+(khK{S?gzIIDe2=iR+d`6c87LXRzeGnJU<23u!ya$~*6!QR$sI-j3Xu6CCs
z=7)NIB+-?(%7S{Us%%p>Y`2Q~h9p7>9O^2L-UQrF>P9`T8s{E8N(B}e8{wLmVvW`B
zdK|V+cSRBy<GE#m&W1k{nSv4rtrb9t-ShNZLq)VX!fiQ*v-7IEoq(0YW|{|4^*T)x
zaAAx2M)mOike|t~x$~S_d*N>$Pqj+ay*|M4sYxUjn!G$4xa7=$Q3?d4U~y$;mlv>M
zSKg%A6Mxacl$1^pzgZg^j+naNAdKW>2SQB7ri2A*zg;aADFKj4FIgpx-+!KpNTrM3
zsw%Q1IJqHderEbm#(viOYOZ?=z<~gTL9{m}$4Do=piuPq`Ad`HKIKu@pn#AdW&Qva
zu(*nVH<hI4MrS}17ug<?>;OjKR0A~Sqw`+YE>_dKoyKTD-lYhW1I(hfo^6k*{$fru
z<p`!tP3xW>@z3OMkIo7U67f79Tfi^N@Z7kY*nUl}8qeFt(gCMVw>S48l6PFinji(m
zx~<E&nBF@zsvxPp%ZYFXUYF!}XZ#=H0hV^*>^78#U^w%pGL(A!IVzoSgg!a>Z$M6_
zJ_LxC;#@{JETbVKF~MWpvS6afY^H*PSj8dx&ULGY=V^qtuM>Ii`4B_`7nvXFnvyjs
z#SXTBVc;dY5ssHDpQS2~uSLO)-0pz#R@sm8@>s`u-xQ6HcH+N#(I^;zjdF5$+Sffh
zHdoA9Z6N?oa|fn;rK?1s=m2NDb93pYD17D?yiK4A9V}x%DK$_I;CUbC7#kaKB=1_q
zgT2Z>b2aY9X%ZsObQt61wYp|cmgi-6Jw4r4Qp!{dj#71fOaXr5GMVk3Zgr3H9H*U0
zZqnz5{i^@F+yroA4o1&uk8oMj$GdzCIH4{VwJwc+0b>G0bm6y1K#AD%Ii9p|VBR<j
zK2o!JN=4p`<=-d93I(fVrL_by5>Op?v$;=C$S!F^7KtnAlSLU<9B~N6RP87gs*QRJ
z;ll}+tw0w=mmA6aHVij()YDIyRb!Y&C+-Q?QWb|1vM{Z9CyO!Q$vdTfZ?x#HWfHsi
zm$Cs8$g$s+hUi;0m7QzGesd?=3K|<1l4S6KU~NFPPRV?{W2TPvRzlB}xAisHR}TLU
z_{G(gQh=#keo_M1cL9rRKDKY~{g=G3k91LUs;mL|_b-8WN3V+t<N2rc7JY#o)E!Ub
zyL^v-F4m#N6sX=nuYCL*zHs-F#*JVdZ=kt{T}X6+qh`TwBZ2QMa#8$c|Fh`JJ-Qoo
zXHK<CcLD>J(Cd#VG?M)fr!LrxBoP2fdi2N)9FRCUHIiLk%h44`NOZ*@P@m7b3UH$+
zNnX&am}0MWWoN8BI!lSt-@Rd3n^(w?0jL_o9wF*k<@d&!&Y3hr?#$jCX!J#wDm>pp
zrt};uH5nMv&^|-$!R1``0VQC%BqGLv{%wq$z;NV%x5DtNuH%S}+m4gWJ57A*aq#o_
zx9W||Q`qqNU?6-PG1QO9tlko^6jG=`WJE~j84!xGJ;Wp%=NZ7U=_8Ye&pbyfvEkz6
zHH&(gTkx@m9B(EY`t_sbT`4t8i0W6_cjDB#J6^u&fP|&oj3L$<udspEhDh4%h3#oF
z5q<m**AM?>i(TDaLZfpG^hl2=g1}9+Llv;kN=jb{)*5PpHXiNB`<^{9J&(s)k95*B
zP}^F4dpI=MepA0vJqPZ0VC+ibN8rzZrU>~L!Z)kbx$4X$smfG{g~fd)9Fzb6ks3Y>
zb_X)BIyF27mWZ$7LjG)=Po;l5BMG76;+D&^Sop?kHbuH`#0Yo>fK<iy1)jxe9==wC
zi5zPfy4?*^f&gmoRM|7R*e873P+xh@bW@WcJ-26f1HcKA?N+^JZ1qC?t6Etl19w6f
zfuOfhzayu!vt~7xf|@gUk&T2j?<Hf$03!2teL8KQuPbR_1|&z>@Wr7^G0>2OfG-P(
z|2TP!p}tMyT@GaTp?BGV)9z{w3n9g_XmoPyft~<U1@}pX=hWMr0MncRCy`7)w8Zv@
zyv2j{Z+skeGG#udRy7Uqk$89tyX7<Z24(pzjd@s{+j^+qyLcTF1bDS3W?bdVbP!4X
z1-z0?BC=f4Ft#K(+KiAHe#es}TO7|NyJ1Xi9?Uyfd*`l2YUT5HxBOVzbn9JSYM@o4
z0E3qS$PPRwEGGw$K)CSa$l8tKLw*Vp>+cj1sg1?6rT3rGX3coC?>)_6B|G3x(hVmT
z{LHQa@||FHL#^4V{*H-G@t{l0e+h_Zi3fao5hj-JG5JcysdvA@fe^~xkxLf~@Yw?a
z`_q2$6(Gs#Rnf_c3(Sn9u(km;N`!qmc**(M)N)(ppF1gvcsm{ufZkW4-?0R-;=_7V
zzl-$-5WRCLBZkZ1S-46RgNV!-P*as3h*4caupzJYKQZ@9<=(E^{j1}6@hQJF$p2BI
z0<9?t?oBZN>;KTt4ZokDUV(4_-(2$*a#he}fM<te61gv4?r=r`U_e4uOA8B2W}UiS
zAmyFm=BQ@UwQQmQfCVx5Y-{VpqawIib=1h);@yy}If9-cPw=Ho;I_F{C|rt02w4O%
ztm)aelK)&dNL0kV9n673)Eq(m0t^ZP1k<bxc-!2Rd--mN+inPWT(aCmh3s^=m=%y6
zX;C!*iNeJP_ESA~3_$3VsB)n8HIsNr9{n#x5F8wc^L}nL>A9U6IPU8CDWD2k1J2|4
zgFpzFl4PngIj~wl-@(_spNs#_O|`GS)V&0r6%RV&^XAM)81yJMs~zl%%CqiC*z6&i
zc0<~B+WspV&tl+%iE*5cNCVZ=cp+D8>JYdIFurHX?0Sd&YrV1YUcb6)N84x_j5!6`
zVzKJomKWNNmlr>NwqX?pKHy!_bBsLbFzI;Y0uacKx3>y4GF3e-aZ!iH*WuQNrZz0N
z6pxJ3QF>sX!yj;hIKv5YH<&Q_T@BcQa{gbsClc3{wE?;<rU7JPvf_0hf9X_gsDnWr
z69I`8#a+!w&M42YkX7=JS}4Sb^`87K=W`4UCS%Kvkm@aa%b(9XZ>gbOidmTwK;~1n
z+u2S<|KQeH@?XmDBHH94(gS>-(H(;k1CVEwcclTPf7SjA|2ZKR$0HD+B7xBI<K##K
znPO>>@>Rfy7wa}cH1q?b_RA1-dZAo!abi6~g{gD$?`^&`U|2JzZ-1`!DdO(D%On%X
zrl%86$&9xBzy9Xm&d8#o#u5Gl;147)$cgKBK=f0WZwkaGMQSc`|K;T>?|dc%(kJmU
z^RA`|gyjyNgo*#Zhf;%k7aRsh<N)dq5FKQ~3c>w1g1>6;@T>O7$h!9nuDpxafENnn
zEkiqIqei<SA5$pp8lYn!0sI2C$;&T){_l?s#eMe4C{Bfosq+^=z`$N)0T36q9w24|
zn!qE@-~g{eI2x=0daK2N?ZKcXK$&G`*#x+@#35VuY%+NNM{|Zz%XT<|nQGhjl?9{%
zAU6|3XdnnGM?vHBy602@6%_a{{+iDmc(ufX6bp#B{_P7Cw)kT#fTpE`IaQ+rhVs8m
zaU@p+Xe|g3yOe_8as$Gtrgw;$hm?T7)blWlU)Md5M$U4_;{VY2W8Or*&AIr0m0DRw
zfAZV|%CAds9kmc^i)uTj+lHe6cdIrtI}0kk9*=(*X??)_=HF3*dD8&Iewoi<|3ZKM
zplu}F`^Ye~7<RLO?4~6i{1)1&p?e^Qs(TJ|LoO|t5a2grgJd!-@c#D++uC~(nb*NE
z=yx#r9D(xc2avXzbO`DF%O<}qEXQ-ft1?gAG5)tnum2ye-U2GhuxTG(LIjaeN?B66
zL4;MhJES`VX<52cQW~VBySsbolI~o(yF31m@Atjm`JMkcDx7uqd7i!Rxo57Kxn?G1
zCjfY;|38ttf%2dB&<o3y2IM>CKlMot<|g)lmc(}D;BG8G>Y<42`w2{~`QP=$iUVXp
zsuj3}3UKDvfxlV*cG@ua--i*d)&3KQ^<HwWINbQhl^%-&HV!BjGXvy`N7DiFubajH
zp2_8`{*T^{|3mS|#sZcuC%!3z!}!$;fFF+pD9|Gyl;i*iU>jiS0hJi`uaXClQb22d
z#jU#je=a0x{7G#M0iZ3v{zqLdI6|4*1?umTn#SgU!Ytrdlyg4dd!U@6DucWKPcM->
zkK&1O)b;;c?*C{zRp6!ovE2+GSPz7|2C$BTlkWk*e0S|{tYQC0gO6nw;;nB4`$ajO
zvaGKr{13mH#HR8XreyLR1R}?mhCSkwTsfIupeh<YmJHscc>efk%KPmo<bFe;?2FWI
z<aTnPk{>&9oG1p$^7f8Ims|fo$Q8|}^Qd@CHNuw|Zd$?#On8}7zSQk`<9ZQyd!&$c
z@HjV83yTxpxf&P^Cy2!D{<ckL3b62Le*-NAiU!aH71~yJt}fFx?;`+mzUhLdR2?&#
zBtWxG@e-^s6h4?CEHWEcy%KRc&;n4&Ak1jH7Q4q*>kl9eVrbkfC`d$3Im(5%?oc(R
zFiN`M%zEuX-T%zuaOHua)5|4;8i+tQ9(VfoNbfPNH>~o^tq?(|mZ<Dji{vN2;s{@m
z0hk#3pG05v{zs>ZXu-qSRb1v|r!F4&K7c!cWSCkCSsMTbI<q>l=Y^N|06IFb(%wtc
zK4U;(9B&BlZ_JU!0>Bvj1>g^mFu(!z0jk#L2jJc`^uAfeh0xwr=|@+TfSV>H0VCPY
zY2P3_nhSQEq;dA-hGb9nCew~lU0?voWmqMK+i+M|gsq*qr8*6c)$}w(mXIVRCN4ff
zi^oD+5A?NQDvu?HAWoU1j`pB<$k$yP7~H~U5d-v>Ub30*Zg+i%Oa*;aS*YJ^dvQe#
z%rnB=2Vd>?WceBjyYr@i(n}Q_w-jA9jF==9fSDj3A07`a89`)pOvj40N0U)4mL-EA
zvM=k7QpW9zXpg6eeox$`I`TT#BjJw5z%*2yM(4Pvi|WvW2@@P(&b^Mb9A1dXn^m~m
z#SWjdesWO=&e0T&JTN+O9%DgDn!%e4_Ppl>vcCJVcGMz%bSD(mcTp9wq%YrKzj+6Y
z<CC0GQi2-Sf93{eg^2-GJO`u}Q0n%_2j^vd?WSBQX(bb*g0u66t1E3Uuhdq4ergmM
z*#+1e73ELQ=knrl##|<t-z-AhE`u_^(&FF%6;6A_j1C&_XC|Vzk4Ml^S1u3c<Yt9p
ze+!92K;Fw$c|YHm>cx|Ci7Yh;Pfwk?yVnZ}Hm~UGN}wJc_x^4ajcrv*sSEot_|k~t
z+n#{>i}U6@8y%E7w@b4R16s!~>Y07LN1vFKbh8@m{EC~URCRMUIEWS`N<HMmg^7Bp
z2WQXv#wYd)Exu1VRB|P(B-#Av_)^PTA8zAkL`L#qCvg!Y<pEKuE;ko2Lb+uxT`FpK
zT!key4MiQ5VxvcSW(Q$S{)T!CSnR2hpB86)(`omFED;{_QobIrR2XeTDOHzYV_)N_
znMTYCZQmxoO!#6CsXDfpknLIpBKcHbkOMO>Y$btONz)HVMAQZyel)a>09rHKmijv1
z04|yP;QAjRZn~)<u%C&s0sX4a2o!7k#Sa5&&iybtx;@I77if>wBJw>`Pl38FeNd!r
zWSGUFwyu&D=gX}627b&K0_N}Rv*5p3o$d|>ZZGBatRgvkuaBVLsD~No`R%^Ir~eL)
z4gXFh-*!w0^48PVotR`KNP1<-NEMQYiRgXVG;;Oo^7Ptv%euPMLU!nkx3_e5L0yIj
ze`wSCH#_v0H|mp_b9HRPA58ufndUFRRF|KvXz9<{RcP@uKW3+gU;DnioWipHG2gg-
z8^5eppgb5eSv^?u{G+b2a<<abs4U-lu|ggg8T=k7j)V3d2?MhVQ-xlB9{*UmVD;sb
zv^2V-_j=K>=lw-U+8=)O5UIB;I!NAapfuivr^>oc@O&?hB<J%(mHRTRb|EbI)znau
zEvU4v?tAyEj=zNtJpm})?Y_hs+13xv%qX8z$&`hCFIuiAcXu_zHqMMd*stFMl`D8F
zgu}Bcx-Iipn;i5~772=G6XK)=rFvFL4V8)se^5a_Q52#q%^)I~d5>lxeFvt%-pDD-
zmoetdfr+@6C9*te8b0-U-mLD=nasTC*@`$T?=q((2(9Xfh{ZV;&666~^io=hLC9=+
z=ZI<3O^I}PXamX(;JNFH@3OBpijjO6emzEQL$I)v)i$8^0GytV%#-^4z;k`EwT5e4
zk;4==vlp_8i7av8iT2)v2A3VOip!8Vny;EY89&AnRC8g<T?tAvNn6zX{Z}*nLem2c
zbR+$r_jW?2fWql&YOQK5Ctv+-UsGLsETC@cobewb_Zq}KOpdxQ1i%P<^dIkVis~ng
z)gN^&i*xq)@yk4dSmgrc@5iXES}%+!B@w*S;_Y<5eQ8MwmMX%Ps)@*>xTgZrq?zM;
ztB)PL+6Rn7qHo&aJy^T_+ch2sM$61-7$@bdIGc;iIaok>1Q3=&#^xbWqg|;oK>@is
z2;T?HYb0rDNul)E$N%!vaG|=WGKeY{Ep3ic@Qx?BSdNMJ8VLjDG^+7dJy<&0XB|G2
zl#p_}tnS(o*!1!te5`_orG9RGj_gmWJ2c7!r_{fo*7IDaaJ2VjqF{IGs&D9~GOAx7
z<)>Gfcu88G1=fU+)Im9z_2g7kRz2_Jmlu?kKQZeKheJ)_QzYEf9@jdoik^Bdn^OA_
zH3%f!S9k$uXlT4{*;pJ>9p`eQKVg#gGh>AAB3}%$rxhM*1iZ}5-tgQPA&a0Ay}Cb`
zVmN46D($|oEhj5A@Kf+$Ct&&&3#?G)QI5tdd$Uj7(O$TTxCq$#n0|&6^>z=SwBQU~
z;Gc&LI1xMb-a;j=yIY>XyY|5$)wa;HY1;;67O>9;)DIQ8-jl^F)AKDg3J8~HLmme^
zC|YsVwo8{Kc)`?)G@gP$l`cprD(0hdl`sTlOcf~>Kr}g3HKX_$te=j8p8n9G+y#BL
z%vv@FB3r)?0C+FP0tC4__Rx`B4Rd+804&vRWPK6#YS!aGN=`5#C*c<_@4aI|UQtR}
z;Kba(d;c7jRAxsQN%(e|F>d@+{g=7X0-{_YgnNLLc<D|Of5fh+G4WMV0Uad7Hv+T+
z0__nR;Z0%q-uo3we&lZb#4~zcx}d77Vr6AHJSB39hDdbCI8d~=%YUm4)gEc<G%0m!
z;9kjj`S=q4*8;;Ds1bEMx1UJM5Lb7)N(&p$9f95X-?BHFM7&q(ot~aP2BudSyW)eY
ztNXkj4dLD}wt6d4rx~k79<SBl3KOJ<<~;fL78?O-EgmxncQz8`{Ezz288}5V&<s-P
zuFQri>g&Dtsj(gwhXIFFIh*!M504`lq%F_%N4LF<u&892XP~1++xn@Y!Hvg#VO14g
zp1ji36i6U0mQF6^ty}^k$S)y5zYp6mL{Ya<gyRzk^h-orTzs)kJ~YnbzHe=9y6l^=
zvCmH=m-hC*3~IRBBf`=^n!Hq3WqZT=@xlI>mVu$)2hsOYDe?I!sg&mxh=_ooeWe|+
zY$~>uYa5c4#jimzCd0J%SDV+pp1l#06kphUiyL#zDB;ejIG<I2?(G5N#xSK+5kY%v
zhQUS0=ms!0>=jzRrTMqT!l)Cq$LD8N()nA#(|JU9Cylbmu!P2)$h)i3X$!gW=Np6&
zZ>y!o<loWX=NhI7&@G*pCR|9e^5f`L+WCOXrb~dn=DH6ZKOvroIQJd3m;`U>-T`hE
zs;>itc?SMPC1u8ygY5I8WeduJYaWLxQR!f53<N>I#;$Yq?7-#dO=GMS-JXzahOq*+
z;ig>KnWAj_?w-5x&&MAvYnIL9V1{tz&1&ZIoK<VlEA2Xx!%4We<NuUn@4@z=Kqfc+
zb;*n=z<>t)kiAsEtvdPs;&WGS$1G~AT|9e0mw&Ctu0qlID+ZKnwAJ&5Bj(z<+Z;eZ
z0ZM_IcoHxikr{IunA!H|S~HU%I}J=?G0QK80x%3=i5V0bt!HjYUh$FO-uW{%e6YwO
zQX_GB^R2LT^|?7n;`f^MJZ3;(l_f;&UWs6WN1GLl|LBB7RMz@1I4PNR%=KKrPVk5H
zJWcoG{dvT4CMo~<<f8Y<Phgxi$eMYzQYZr#^`_n}?R7Y&;}nMjmn6|C(mF87^?kC}
zOlqf$w_$%r!i8@QxRyPwz(Uo7+xe^B-AF}N0OmVRQD!wz+n4oI+>1UyswS_DR^U#z
z9(N$nYeLF*pUY1hw*Tm&*n9h~uaLPuI`|G`6c*yr$W<?Cye9rzy7)6SS*&9_>G_fX
zZWP3Cie0Bwx200_M=X<cMgLlUwdyV}5)bd}@m`CCuC{iILCr@38PrU|i!2<-$*748
zbRDD}PVENu8vZPX$;G8uhKbDjCB0ri5(0x(Tu0IyS**VBBo>Y!f>ef41UH`lIQ!+|
zNRdqa$&*|*Wtb9F)y*)U(2U=GXY%m}sr3!0?L2{wze(N0f*k}BEgZmUDDBilA`%Tu
zh)4ghwElt-s#Clz($FZXQ;r1^U{Z@uU2P0&%R;%H7R>>iI|0Da6SN*yT{fon#N+w6
zG#vP$UjY-L^YGDF$KvspGNaZT)7o?@V8#0FK5$w15HZsYwLNpE%QRx^YeKe@=Ytlf
zWFocLCy&BHyX0iMVRk7BvluF^{>n}7Fv~V?$pL1@gUSQugJYv_@kU4ohy%Z~5Wp|7
z<$nLr_|h9?EEa7yTw&*=0>6&fD=j@LB^e5(v@o`Zk$R--z#WRVrVq6o<oUP1u+4$W
zX_&p7+@AtHFm(SMxG)=aAHcvOZ{MdsI;i9CG`(3<=CWGGsE>z%ziZ^=g9L1#g>%_W
z)-9ro<8#~{wu{_(Ru4Pf6e%qfB|5$&aY)|HgW2IrQNyq|soPbGz79AxW5!qmVX~Sa
zGTtv&KMNJjSl4VV7rLr1#aT#PE=OO0uq&0Jr=}!^B=6JkF_}alDB?8hhJ)iHKeUxT
zbFsn4zx=|%w$=MqwGbE}-VzNvj=!4w;(69Am7`n`Ll}0)!gu@4rb#Tz(|%cQwFZ9l
z?p>F*FO|Hb>Ydlaz8Z6?YgNJ4cYEcoMW=^Vc|B}hN*XGjYPY77J7bUNYh#5!G-41?
zdO4Z6G8&NKR4?W{xTUIfEGb3Fc^f0eMJ3wc*;1d<Kav+6-7*l6nyOX1?!Jz3LZ>qo
z!Q(^R<c`momF2FN#www_P!|%w2uhzP@2B25Od0YPE>Mn%m1GA{gDo&5>RiZPSlP}r
z%}ck!ILu&(kc?7$3%xRb1x4<LLWAKc4I6$^nrk0ac-D$DBr-R>>>q6f0!5#tQ}TDG
zxu!GTF_1T|K8_HzR{hbd1j<h8?gF9|qaI@}XoD9cBwicMpZsnYI#b%(X%fsXATSt;
z35n*V4^~i+3E;HVlBs2x@r_A*J6^LS9wT?}r@Tw{VAW*#qtEOOUpYCw4o`GQbc=zn
zmO*7(UMnqU*Dbg@3@M5_cW|xgO*)*6ENo@4-$~f?{nkN~pv12uiu7yzji%KQXx|-F
zz<C*C%}(RzrW&>5LZgA1V07GYyWgK*DM^1pZHLBse9o{UD@q6j8#l+(M$VnxOd`9|
zn$N>W5ZT{i`S1uX+g#)Qd4m$MsnKZ&ry1M(Y7i?I8xjc1N)OL$8mY~Hzho!{$>J|m
z0iB+K<7s|q*hy|#T`P59bh747E^k07GM4c%R4%JfGr?=kphcmq{R`^P`#$fi-s_$G
z!J%R6CSE2>VoOUMI=Y~4e;3V?!I@RJ<tLMN!;dkkd}TFZW9jnp((Ok&d&;Gy>fU+>
zQ+xA8Q%ksW^6nRA0pI+%*A4HT(64(df9tQN(q3us@Tv4IvOS)~uNJzUDJd<PgeNC!
z`9qSAe08TH45sM0IPka~ZyA3W7*ce69yp_*c*-$zbj-KI(mEW{_!<-YQ<E55_5A5$
zT6%Het9kjyNu|BK)Q(g=DFs%GG%w1o7c+k|)~AEZ=8o#{M7^l2+A>BbY@ROErP4BK
z?|zt~gFvD5rV2DY;?1X+OP%s{V{8mmgwdM)y^gC?Ni0u^WS)m8XoVwEWZ7b9BTBeT
z?oVNVBP0r=Z!R&JQ<F|U`?b7!UE%5R6M`Z*EPFGwH7%ZtlbUB5yxpHR<No=p;o4Ax
zHIC<^Apz$WcwNXH;$xnR8ikm?yP}PicAdBE)L9lw)()fOk*7`k-Q|cHwQ(tNjj?Se
zMCorVTn(<Ct*gs|duv$aI#W;#u(Z7~;w)wyZq%H?1j*Iqndtx6&b75_QRn@h+f!qY
zxn)dAA1h-lrLA=x`NQ*-sDfKv>1S8i(IL(Z4<iBbH+7BVxoKWX5t+;nugxTvM1IG1
zCzKKK@N==@fQ=G2i>nEzo?fb^H7k3qz@?ET+^cV+h>QGx1;u10$83cogbe+(!$!Q;
z^OS-*_KbKv23kG!KF=R6m4Rd@k_zd)E?S@ClI{0pZnomC_?xe`PNTQ|o)@1_<g{~_
z>K=AXTJbvZM?7}WYzzph5`6xoRwTDNW4I^2@g>1YiWgSEE6r%X-7C^R-?NEHf{efd
z?{^doPM<n*ms&}itZ&z?ouP}?4+kb>!vy<2DM|IY)CM(w-&xNdYTH#^tH#D{VML~I
zbvxJtR!&1TH$OjePb88G`-ReN+Qw}^3fDKKw$P7rJ9?ky5o7t9lfV~SwX8u}-l~!v
z*xU&*DV2fiu2}b3G-FSnVIM5hw&x+<)}WP!Q_{l1W2HtB&`PgW`OuOCGqHwH!uiQ>
zCXsfwq+>DbA>4K+-`~z+H|HA8Wsbft^AkvJWJfsA_e&@r^?#J=>8+qs{z4%V^Ka~W
zM_L#F67qY+!Z<Rc5#TxDHuSgA--+bc@K0=-kVwY2m7rw|_3~pBw51t6cK^X4C!~&h
z=n48M{3PYDr3}}t7m)~!?Ty#vH!m_fOPAq!+vBe{2Z4yWu|S~)olFyF?D0JAR}WVe
zo9V(e#$!vlg4rgc7xKRrhRi3WK<cd@ut1!}f0sd?cpfs@3a&fyJT*G=D<)}|r0^e;
zhhF*^z2|<|{@Iub7wMpr*<q<<@5uY$aLnWE<<ZHzsj^3tuR|e9CM?j!(;Mm5+ty19
zwZBK6S+%R^dUx|Xvwr$->AtEep6ESa$<NkZ(>x*xTQxg~I6vMz@v^Zg)GcoIjVT$3
zref@?8j>=bEe2vXEV+h&iExF%pmf)r42@7x|81J>wC96oLC-_YgMOpXN4Mp5LU2PW
ziB}L#;`HOt@+ckM>Rui)*g7;kcuqz}DtLR6?jFlaf|{nq_vEk+L7)ccIw!5y@v%bM
z_|jtdQtvu|v|xSao}t55PQEjO3L)HcmoSPHMi!^~O_Ai!!Wim;$EcHjKzRHwzCo8n
z9jng~UdW5l+Q;O*41qiKHC=2%jJga`T#jL`y$sGR_#I5{kYB~e0bO|=VBA%g)ZF|T
zls#Q={=VJtuM7;(jez2A=jn^g;{a^9^~phvSy|_4<1c0ZcPeN+HAudfWf+r}+<8o}
zQ4|nQ)Ymg>_n*bbVgld2@hPa$FW~7&E$sL!O@c=y$0(w15e{Wah<G8-Ap%M<*zkHK
zR_8R~NP&4_^Dcb64Mkj)<=GE$9*>L553M12OJC`YV4<8zKvjf7<7P<O^9KLp<Mwy{
z&_%3=2Q?O(<e8Hl_OzQ(CVu{pTmX;p$?}w7k;UVbeKxSXIt8(}fm714QL*5;*Q+_l
z-M7Ux_Bz2npVS4JAZNfm^5W8lnE3aB@8?cPtE7ps&<$dR@(;$8)FUfF+M0EaukR{b
zp1AyWGU4Lk*zwZOv1Oo6{WKO&-1qlz0vK{J9;p7PE?JyJZHrf29QOprAvIU;jN<qF
zdGpKU_4J_A_tp~VU3{P84PBrQGzq7!mb7PlQoBfR*LJ!}3jcc9r9DdP;ZITZYY<Lq
zd5W5?pSUv3ntp0NMga^Za)9_l15FlGE6YLIT}_mInSSw7UnX1xV-<eAr<|5_%@_CM
zmmHRD7IqC~7PEztzVGs&*U8U6i(0qPuZq0CSe{t1mNCkP4TfRh3=Snk4hr-$c%&&r
z$ODqE;Q?`%BH}x7kBjOD2piH6(HEdv%L4Oy&xeQpnURzmJCDnXgJSzrc7w+dtutTJ
z$2<14=f9!d!5(g;26fz?=S?$yGexR#rTMfC-IZ}h{7<_q7!jdC2vOCOlm|UV{=J6x
zY0oyWla7NlTawRYTXgx3$34)d)-_@Zis>?sA-gS^6Gc<w01LAyCTwX+1k91!^S1N!
z83uZWDJ=fMjm;qW*;J)GBK}9ZtCP1u*6$|4&selppMpt0A93BX_3rO$=kZgC08Q3J
zR<b62m%TgpS)~#x=?u4+B04WgFSVZ`V^zWpAJnb)U>8^h_7oerMh?vtKlfdUS!RT&
zh<wTgGvTNg*_4^#pocrev?OX#RC)i?J=^m|NMgiO{r+3h${rZ&YF)i9K@{~|{4a8X
z4>e^c95*Z_y<X!U{duh*g=;~?4@kBSifF$Y$az*DVedo=;U`<J-hb*oRM1~`+dSMO
zqA4nRzq2H#Y$Ka2gM*}CVr7%LlkpfE5kbg}<H)yAf%?7Hr+PH{&)CQfGsPMzaj^*~
zAkC63@bhxK$i44IwjclFY95}2Q%I~5-|eZ1kP{1ipT}(-f3<pv?9ibViF;X1N%VR>
zQW>e^Yzj-u2~zcH{qjv`k(G?B8v#k0=hO6ASeg4F|A@{>oP>Hq<^@2pE33eY=PEp0
zNLbYV$ky)Q)D%HPuF5d`V|e*Fb$r+FW5vh)g(K*+8l7;B2e;8D0|>KK^$7onyzHs4
zu(nnbV7JKpNC_)F_O*JRpR988`&#3g9cA5z<F@iZpd57Ty$tq`q0gtJ%GGs80o#M`
z7wTYC8?E)2q|=@kS?M!|bu6BL2C?$ZYW6qm+T47W6iaXD`CVhHE)hVig!;{Vu3c<h
z@=LFou)&W0yzn)y%jS9%C96BS91Pm6zS@>P&WBO%!4DxSIbOn|_z3$e0V6Kv&)~(0
zl?0oV+iK26pO3~XR9XVzQtvzv5}J+!PJT2%O4CQ*L5?bG7HF2<nOB!HqwhaSUQ-cg
zJ(%uEnPp{mnuhby3mU%uF;gZrOB}DJA4=>r$9;ffg$dDAkB@bDF5a$8Rp5=U>;MO$
z>aiPz1I|r53~W1(@xf`a90pbfP_1nf3{2km4(KF~YI}S$<Mm`)U-xlbiJg6%tH~7@
z{$8VV#U2&41?R4NRrY)ol6Jdc(&~PavJSGo=?gNX8J3d%`QiHKS<J)D_R^jQU{xY`
zE8SGFq@Ju`4`Bql7xccr->&Q34PkvE<ZxV943v|@m+mY~bMCmi_8PgqM)F=KX#IM;
z@KTd$@WV3bEB_ts)#{mEFFsz7Bt;>-spR<ttF5xF@{06%_Qsb~!1SkjqH3}F8+9cL
zGI4?Dh-X^Btr2K2i@wVU)V69S{}WM3OdLF}cyN`&#yL(p&0`;P$kT?Ey3uPPNZj33
ztgQM#L0mU|s#)PwL*0+PdKWRo%kNLxy2^7#TTk6(P%R@i>L<Jy-?}#8yJ31w{L){S
zv7>|Xhdqfq2o<XsuJc&7$JE-j&+&XB7I};^IOZg*$u4?h-8h|G8iK8P|JAnJ#9Z&#
z2H-_rbB}nC6^Qia`;A~UGU{NKam%YHi~XYdrN<DJ5poe1Ky~uNwp(wqWoiEpqWAM5
z*R``ylwbkoNduX{gn_-`Phf+}m3EswAo^oB&>L;#qsQaKKbbyceM}P9o9Hrfvc4>N
z`qri*Hv}<(nN#LZcV($By-G&84%+U6vwBBrYn;%^_^(!Jy8o7uMc1sjJh42<g+eL2
zdY^7%(`dSS4M>?KljT10F+U(h(3s*C&Nocx9aq(;Y(+U4_jpVev6@Ip0R#Fz4CsF|
zthjk8nSP_8pqfj|aL%l{FrO_f@!Fcz-#?}uo3+~DapHy1r;i#Mg5oh^pZaFs>H1J1
z6IV&qY%PC^NS@$@<hs>rwVaRGFKVt3b<N{wo=oWh2A?gc>M^$iE5(6i2}$l)|0}MS
zoW^McIZ}<%YcE>c)HhjRn1Y(5xJxe{zaw55E@OJI6ad8%hMatF46y|iIH!5{YQyS_
zDda*z)=_V2UiWLBQ=9_PG9vP@I0c&_FUL%2o}Yz%p9-Ej`l~wS2J#m;531|Y<lPZo
zBSvO(N`ZgWh7Dx`o}YtUO7wBS$_|3v6`YJx<oeC18(?;@iyHslLfeXAU`mlDgx{|z
z1zx=LA-l#7nYs$mYoTmrrtO=nveO#HI)k{QWCHD~46?JzJMJrZx$7QR>z--gqJ55U
zb`HU9B(SoZRrwY^^w*s{&tq5t_p=wFn}%t33pjbh=+6mJac6g=Uce6@;(C!&?Z)r-
zTM+-5`PLisOB{KLWg~ZUfZ`JvDD33a^2k}=5_d^hjM*e(^KdtFRJZh27wq+5NKHc{
zaft*3K0%BF@^Y{CUYBP1%E<H)T7y9O%JyO?%Tq5vUB*a(NQlv@&U&JF<cL1;`e-YO
zfEKzJLMx)PL}c}pC570lYQOpzq~#t##{;omY?5|Y`N|{oYUVLuf0D-A?yegAoLwAA
zr!_ocFY$Le(TGq{^hTK6@8v5mrT~|I9wWdZvWQufYO*oT+#kSLT7&5gFFmZrylRDc
zM}E@rn_cm?GsdGtzYj(sBGjztNM^ho{>-~{ixqZ^ss)RwIqjrlctCg=EH!nrkAKZ=
zqM8`pB87qYi8y&*u=$q4a~Y#m^+OxC@3okisnpvAa*?&D_5l^m*fHqW)&KL#=BmL@
z9!BnxAUq;epGBomlt*-yr(N*!-4X<L*%IM(CoRMo+y}NIO*lh?NCmfSCKwuKhM^p@
zcQv4^QB&t;Hzo6Kv+UM64!t^9y$|fkt&PrOK`kR)x))G1Xg=uW;&LOIy$^i{S8u62
zfY<4D?VvE8CgXaQuP-*F8{nrV5}wv%*1r?_VXR{X+x5^74p)UP{(5X+jOuCNF&RP0
zDFQmNF0o<bP;8}^e|yyxY)axH@}u43?E8vs+<7wBCcmpDp{`F3tCVtSG^ri2+q}bp
z+4U_8iX5)vwSViShs;p+(N#Zfp=f(IBMMP!;<G*Rb0pA?i%waEKQaso0+mQdjs@HZ
zv#vkPI_M?J@Q6Y51z&}aCeqnmz$GR`gO5o_ttb>lk=mvT_)g)$zbL<PzuY*>zV3H)
z5D88+MoyDoh1*N|()4iOw7p`P$$e}cSNRkDz!jpujDdOvCsSMw6F3z6bsP}dYmz?v
z!F?!(Y-G$D1}58XA|HeL-9aM(peC^7)Jd>LCh!dp4_WZ&O9X%80u8&9$3?W)`TWm1
z6Gm0w5ascc-W}+9O~pUS@L%5W*~E)qxo~W=<L_t5dt|~Y{IS<gox{_3uDe;hbRK5o
zWcSP6j!8Y&?3O{^^1RQ*2PSeUE%hEF6D5`@9bQMXwWn(Qk5<7xQDbbo{EY2YU8+<X
z8ukX6PVW`fOrD3G`ub2o-kqyl)&dXk)bNn3Xdmf~digZ!_4N*mOJS^^h&4F_IGX_&
z2D^IOAuNrUL}aQApvWM!d#^`=W%%K}j)%X@Pxa`a{vixYrOOrHm=UhYCx8))NrZi-
zS09eKFw;7`bU`RjuUeA1R-RA87(`Dm6MVhvv+t5*`9N1sgWxU0(KzfGr``;~6m8F=
zvlIfXnP@Ojac|cs2N0DW%V1c$0Hp5E<`p3V8v1*mfCLiGyMI?`FE<?x=pjUO$IHwd
z@mw)F8*f2PgOT58vUiusq8286P&JM%t~keFqa!RU-kP6mn@L;(+iJL^)}5v<U+Z`|
zv?bxEWV7X(QJ{_}foAev7AN<bv_&!B>7!b1?PPVK6y?2yE!qBPGs>a;`<F`(KzH-$
zb?qWGY$}HM{`ljX<j7r>tibszsP#dfmRa3AQ#CF~_)rl1R+F77eJS{>9tsdd@$>Mt
z$dy>4BIi(|Y{dGop7kLp&#x!jhl2V)MvHfKE|27KvrI2FwE`q?IFu{@xXGWdER{;b
zI1rq6TQtH`XY0?Ob{mp*-_`CEj=mN?pCk*e<;DNT`9+60Z-UCx_<Fcx*Q|fG<r-~$
zJ-Y0nzbTxFd2pdzcWZn4eaPi0mS^JnXPbcv9Fu|RKIabJ>kOKw>(=KNZVvqd6Z6|?
zbpZD35dMANa=m!mA}%WSd)KTWQFxkn@-mPAmP8VFFOZ}Ird?}DNiO&}D$J}`J#e~C
z%I$fEL;q1xM(9)(b*X9QetuPdf4@c8@Y0;^^ILDRtj7(S!{ui_5NL$k^TDt;!t1p;
zNBx7-2YPC;>lyVVvt8tlSNublM2H=T-uG+qi}6oCKW1Y~$3OcJjw>7K{l<5{+@*V)
zFOg8Vk-ERU!KI57^tQ|4EUPkb+Oyn$oC={tx#Tu?f3nx#`K8t~QtfJB44;3woOQTF
zk8Wt?1L=wDP!jfGK<Kep`E_1?0NE!|4?ep`eoh#L`^8X34<wK<OQlh=&Nu$x$==q#
z-nEr=mw?*pmlV3@0z2+w!{DXfDaXyU^}1H4Ee3V${eG*2J0#!b4(hy)2pB`uBKS#y
z6JwW?aDKwu9w*<#DW^^~1e&i+<TpjHW*B9#(tVHwBd?Q^4?-!dT4^!F>ft12_UloB
zBoBMbUb>CaP`RzsPL}Pho1!6k*%1kVRL<AD@6`H0a&`FFS>|<J_!-1^iRN;PGGa5n
zgHl->N2OIq_;jh4Lyh{~R*?`s`qZuGH~ni9y0oFG+067~Nk&xkn>@2&wb$cJVuT0d
zii;-jCUcDEr{mza$AnXM>nJx+;mTXOrN};*$6c8xhrkU*7*s?Y+<Kn!6^>nLnt@YS
z=+t~rw?y_sz+N~$f6fE@6B{frmd<mM;ryH8#wD(wU3;_i6ko>NC3Sw*V<D17#HU8V
z-r`9<TYQVIjuhH=(l^+LC~r835pLgfXu3LSFJS>i_pJ04DK>RFgrPT0$wMPlYF}5T
zq<+0Hi2juON!D)%>4Pfk9A47><60m_=tpf|y}$D}Q89Rm5hE+_kZ(L74*(`FNm!fG
z6VP9Jm7vl@u9P-a1}8(9$B-oT=^F6G=3||p`b>Z#R1H>K#<+b=!Po5Ax%@E#0TWQK
zytgiM;#iNX!t(raNzrsEO;sN!JkP71Zx2~o^QO#w9Q*&u;5hb6$j3q>!h)X03HTld
z(%iKQlnr{9Xq<Uc^&al9IxMRCX@`u3j!1DWW)fk~9->B6cyHdE<VVHj-v3qeNfsy1
z=3<-=S;8{qyC8q$e`Z%wL?jHmD9}*Qg+2^Bb!pOr+H^1D^S_pAa!4orwOn`&I8!o`
zl97cH4c~lETc5Sev3(iQ{!GFXQ><7E+#bkLK>DA8f3uig>!pW2>8aNL#97gjf>#P0
zxUVzLKW_gira{Vl7vmF7uM+2}P<72K6#-MI!<qXNcr2zb;{6r3hVJ8f9YfmuyVy55
zuV}eab3*P^S4**I?o-5j7q6)IX`MI0yMh|vr9?VpPEn(W#)pD1h4)eI7-F96UfY4c
z8SuB71o01=$n)T2w!IkpO@jW{a5AS+C!}l`_;)>;KOH@)592EX!%VN67Ar*WZu6o7
z%dfP5)-v74WR&rN^*Z>-!K<V-(^vUJNJ!fgir>jPn>O$}H!=DQ{dLaAMJ>e-9|o0#
zFK5FB-f>ZMo>)DjfWF(u>>nV91%!v;9exoS^E$McHM<7?4Fku5A&4XA9v<3W{Fa;(
zl9GagY?1G*S?A{JVy<Za4umZ~GQTI?4h*>2HRJl=BPW?5Lw#^al{8wdkW&5z)F;Eh
zKOqPnr!|bL&Xg)gqZMVBT=<@(Sn^nFepp9fjTyry+OjzV0v$<uHlxIdaaB@Y5Mit5
zFYGV@N_%>CiKD7Mcz9gwsr&~&_Q#Ft>iOQ9>W{jH5|_8o6TeYlvQG9bol4Yhrm9b_
z>F%pE&<0`VbDcA(sDdx1bd#ZwFvHqZ0B+eaN`@I*Bl(6Qhzf97*p(11Vj|lT>7I7P
z(p7zEaEaBky5g@tD6zljn36eFV{J%Dq?`P~p@jO?UVjMJ3zy=?-85J~K^<98|8z=a
zPQAuhw@KuWY!aljyHpsv>pmYBT=Xlf+f%^!)G}jYe22AL_U0#or}gN4exq^eH3dCa
zVo-R`&0S@pq)bC79b~a76X7Ls)vHM-rgm98Ng8Okg^fukxP2Z2(eL+`D{$`oyb-bA
z9$*Nff+$TxPYEgf>h)0%b^ly!<<Zi*I*8bM{}p&m^$VIS@J8q@M~_Gtn}8nxav0ly
zJkgg~ZbKkSMV=Vtw%YV29}X%w7F&S{!0&f@4pBa<V=j`cIIlRXzxI0VGic}dA^;@-
zCH5`ujQ~)o=|dKRG*a@a>jP?nIoTBgqiN+vrP9u=DWogXTThQH2#VZ1aE{9~^Z}v3
zCu=drR5`!pFXr1FJ9={}=MM^`|IJl==<maJhdhW={&e`}*M};5i^1A#q~2_Uu?uVG
zFv_0Cpig%6#h3103U@>@o`Bw5<57r<s7kN#Zi})F;*+dc*SGEV9Me_C&}bkszGQsK
zjAg2vE;>c-13V!kqB5BC7c@&o48;-k?W-K=>4R3X=3ET3S#s&@Uw_@*A+)W>0eX7a
zJ0b7ux3GSRSo2)3kBcMFl2HofV4T1s?J80GKcHR0(|z0_WE(%oi;qz@r=<MO;biUi
zcNV$W=5qfJWc=r3#Q+h+sCqx-8z>`5O{Wkd5fPT^%M%_?$*4`=2@Dea3r+n|X97WN
zK;a$I(^3Zn1+@c$AZ(PIB~<~|4|=SpErYMPq+(vdBhLfU&0G$}^o@f-!eh4q>SIp6
zue4X)YA8R>W9a=~a90=)<NN|nCf(s=$Yuu7Z&y)XBngF*4Pb}Atb5sn@b6B*pB1Qc
z2#N)SjP<&UW|T}o;@vVv1BatG*uM<KfH#SVZDtU>>_qVuNJz%2J{k#atv9VsX?R!j
z?Eip){rtwDi{ZxsERE#*O$b#$cvMuYS)7tj2@`b;8kt`HR}tO1oX9wrtUT0#hzRBQ
zf9{Bld=!ThXr&_mrb7uklJre}z)24uSuzA!K%xcjBnX&i_97ZcOGKW=Ms^YU0Jei9
zzj>L!7deFq`Lm6b5Oro8a(-Jh+7J%80cD`XH5HG%VEU8KwK=WN9cMlY6Y|z25X0;1
z$v|ZZdP4U15-5bD!fHEU(u{3C`E4i$zyv-2eUJ@k&*u#f$O`^{T;Mm62|_-Xm;eq$
zJd?vm;0^@xqCgBJ>dOLv{y$a(=)=W-Ir{byLx8QO+HP8%&;tU(|8)jfzBl+Ei@n>P
z6fIk6TdsSfz7+&$*MCO=aMSP(#b!BbWn{5Yw;A3P!%?RRoYm%$g(@|jcWsbrzzB&i
z){0{2dkB6h1Nqp-UtS@_<KOWQ14L3*XP|w1e8?&2em79mdtjR=kADMbDBCJ%@Dj~d
z2SXAbb>rQ}*cd^Dzq0b>0r~-$H2c4c{N3{n=9m)_Af3nw-HYxJfgY6$%p2%Q-D(qg
zHPJx|o5?apkg?w)`#*OFMZyCj@oOCo?FzoqS)h#X<?Xuy!O=LXF$5;K{pW%W=m~V+
z07(bZ2NJT_K_j9oNDmJlkiHIg2r8PAp~^5fg+LR+84N7Qp=1mkf>j`(y>Jdk9fkUR
zNjm}T4U9^<Ecn&`t_ZLwZ9Ikf0Pv#7mNU<{{YC<O(1ij09Pa(%9*X@QaE0rQm|<Y-
zB`4ojUm&apgMr&;UI1+V|6ZWa)<0g$aAd&Acd_<3fbwXS>6dE~3_NLh4~?W+Z4w01
zSU2ne`2M&g|Idd|7mZ$srvs6YCsxRE*jGp}_ga%6w9}~*On`be{HN*|<tuqA@p0=h
z3LX$P@%$oL?&u3Re17JTxb&AmY~;UpZ+j>{LIhS!9bi<54&mB@Vc>FBz<WG}dq=uf
zRGC7)^Kd`-ytGAM#^3`^{bK4d3aM@rg54>gE$&ojJ*@&0)|hL!Klfo_q7Z2J4=I5J
zEYQK#ylhdDGF@NM|L;bOYA*uiV{L%TXj}@Wmr{ftqxjiW0-?@sFQK=<3Auy*dS*Fp
z5=0|K1J2(^fbekyl(|7@zbs<}pNa8qxI^?+mocQ4oREMo=_@fDrwNo(9rZZKo01`c
zgzA7sH9&~_zj}Z#KlklMli*l2i&=Nm&h?Z`hO^L)_aLrUiH0D9pwcI_LGz3p25YWz
zF*Jlk{4B76v(K+0*R&&HRkMzPd{L1SWFVcq=JE_%vE(Ad@q24g{P!mBtlb>7!YkjJ
z!^k~>?q}4CIS;B;{CPJ<FF20Wle;Os2=1CCyQv<zvB*oKzl?dHz_#<W(IB7j&cNig
zD_%Da1Ce#L)@qim<Frl$LJUSsalm%|&m%|XBxbF}BK=EQ3e|v@Ae(^3PUHN>34C85
z;D7iDNV8;Y3cz~-H6=KYu@?>;p!qOXKtcdj3{sAC6jtu)yMcbK1oALUIA*DDYP9i)
zoER4M149UOEDsk~K=Fxxzi-n|mnqT3I-OcSpRurmIrFc0i`(C${qG}SZ`8(sfiNbJ
z$WU(*RC1TtR48x?P@8-6)mP*KeqsT6_`-y2%Jq51SK{Nxu0ix5HnDU^Um9Fl$ycLy
z?p!XC7z7D>tUv$Pj`>sn%ewzJzJr(vc8?rK24LV2dLkyDdeiFuPkk0Ff#|Wh)z8kW
zb+uI{@YB-^VJwTmHy2~q$z{!J^=|a<N-%4!)Z%05Z1{x!yR!`~@5I%Y!y-AnOuHk2
z1rX_RqM!`%12oEiv>Twb%^`q$`<;gmX+*UL;09#=2?26lw@?Z5-2W%qG2`(sD{KML
zw=spRczm^fjp_QRNkfekszpP6^P>7{D`^;}dt~QjDe)^0L4QihNYwu<kG~>CBD2m)
zZ8?X3wLQf=Iq1I+CAd=SA+`+=Q+_8@VlRh*;4hg<2MGY$%S#5rt-~h4I6ol%;@G*}
zRIyV7J{I>D-fJS?92bQQ@*D2oIb7Esnv*w@N5*y+>*N)dUj0}u<@5NfqqcoJ&^nH;
zR#g$jdsBN}<yA0an%^0i5*Ak6DfY1{!2`>TB8wJu^LR}Bem8VNlv&rF|J3j3guHjU
zWG}X;*&s~sVKFteo#!U~?tZzhq)btzQ~^;yjmGKVPf=4~Sdg)5i6V41-*$HO+0)eH
zLctQsER6cF;$^AHbXg$34@%GNv0JO(KlifKf0z6>a<l&?hGV=q?^v_k(RSYWlPTVy
z!JEVe-eSe}ucrM-*JOq>ot5;PDGlFT)Q5L%!Izo`v)2esoucg3VpJ4<8_u5d1`!{@
zM~;#mL39@O**0w2PVq?&4ZPGy;k>sjxr*(6O}~ibeU4sKxj*TCtKohhFkPtP%yE3<
z#~<GW>OIAk9Shkd;k_<vUg)I9dv&^Kb$%=5crE&o@88nziLn72jnH8u(mt9212YcL
z;f8wY1s$Vcr>>)QjskvI_&VOts^Fb}79ZKgWN^+2DIa?zyx|u5nHZXwt8BhWd;(7g
zT(->rQJBC*&PSn<n}jQULrSO|O4%Z!W1w;qtMWAecISPTlM~eAa$zyC6Eu@-c7ow1
zV#mHAmFCO1s*<pQAtS$cKz@Dya#EUw%hjzxoOFT~cd{R+H0@#XuA7ChM)MER_QJw!
z{b$z+F$aUU#5lrw%{%yrM30Z|cI@|UzUH8J#H&P{h@eN02Nut73*~|>ZV|anA-v9`
zXdp0W;Us-wMSFD8fW4DlOA8SwH2k!J&EA98f_3yATmb+1Y#s7aPBigiEw0y5)qK)U
zYQS}UCpM3?aNKOW&~^>YrfKdACno4Px#4srpz@EzI`1)6$dJp;qyyGKgLZ1>VvGY`
z!}aRdRp%$QvJ`ctI30yQr=BErjj(eu;drquWJG`#6Uw>^t!l45%E-NX0&cT5^Ne}6
z1~$2ZYS9f-s_oBfgzKqAxjngtNS2i_j-bJfdiFlMpWOvsSv49BnDtjAsS-%2)wc3l
zn;S_^2WM(wiN*)=T5p`?@zoo$X<x%KPPc}CwrHs?rulBT3aecXVdjkA>t77Q!aDXt
zAeswJfwYN=tb=>w#l@4(yM@PH-FH!^W{H`vU5B<fM5By(K}27)_D{<l^DM5n@Wfhj
zVKr9HKg{p%e!JbjRGo233~M~|u}{W6I`GreS=LydFH)sL&>x8d-s(g=w)o|%&T_&#
zaD{`VjisHu);0Ektp$VaM6>~Qp5<{e?6loO<(hMeExznwHhZ(hu7=*fW6K)vJB>=*
zCgaMjIdg<b$anXEJE(Uu=TFRhO(`^T#3uOEH0$ULd##~-gH+aq^K7Gq&O|h4aAq}^
zih@hySTWuOt}Ns};EtM>@LfRvu)K^+&|5oR9+KM9MhoL{F@+ehJbHR*$e$Xyy#2dw
z#~djH5T1qIyTrnV@i$5Oa#CTx0mxAf1H(|ooDWg{LAZ31>>?uxi_vVOUdbwHz{#ka
zusiCLEzw01a28sN&iwf5t?6AH47`MMS+5cB%`_l2;ur-vxun?97nB$}Z26N-7}TbZ
z3e)evFA9^F$y8EG*t0lV)GiqkOH7<KNgd-luzqaZ?j#+{&1MCaJC$uUE!Q~Omv?u+
z0*#s%$a{&gbdk|BsI)%hco-y$h$_vLHm<Mlgob*rbk$fK<<q*J;{#1Mlxf{u>lxG*
z0nrW)#)UwgLFpMknV3{&iL)zG!{&<3Ex)m~ywG@SI{DXxWa)&D$kg6_OHp>8f?JiP
zftkyxgpP&1B9pbV)3(*^(Oyth(T|eSK5cY@-<WexvngO{1k`&Ib7?F+5=aWqR-`Y5
z*z1&<!5a!5I2RZP<(T`VdRU(BJHsz?>RMr@=Er(UiA+6W`&w>r#*i70em2Vr-tr1Y
zUOKVHQz^^)li5inEEPJuL4YngWT;j{=wR@}@8l>WdIraU!V$`tMO#?owgWK6QWvY1
zj;w8nu19NQWr>l(4m}t`*o*eLNtPS%-QLB)7(dx}kS0}EJ7VzNpNIuySP(X`%v2xd
zpNUmgo2!V~77rXEcsFhxnUF4-)-;8u7Rky7H(0kAS&Cw|;Nr&TF>@5_Ma4%E?SE@f
z!_twE4-bpr?5rG-kGg?ke=!nIFYRnfIiaNEbxpU@9))UiFXO+rR98rl9kcg3zL`2_
zQdtOAHaD{Hc%Jlg=nOaT_o*HHT$*gDS`e$i)=_4ZeJ7+PQVq-e7?Qj5v~+4gpgC>H
zM0k`YB@-ky5?)qxluTGh8xsoOlaU%a<JP!&fh91s1^~BtjJN6V`dC1V0(iIY9!jem
z?0|*)Mo1k?%cFKmf4YlGTxy-k77)5{tLEuw-AMi5(V^adh>lYP@I!nVM?m5h=x*zc
zG^SbUaMU5K0`&~-hBJKrz1-Z7xGy{&wcXvl#VX3uCU*1xydwnBGsIf89=adc9ER<a
z)Fjd~D>ypYfll@qFk4tYzI`JpD}QQ`l-cotMeiG@(o7+Ip{~eE`})TmAyLx1cPl6_
zZ;!o}>7n0DUx9*yV~=6`iK)~W7^zHJlbA0HT6g>VRn$we^ReNQQB?gIN;3=tw#d68
z;>UfXJIYgko0FJYrY=+bA_1Mrku$dz7$}xUIDglbHmu8Qzj~?@`zqi)Q3{twL%V@p
zE|r*789nj4)Xz2*OS@;y7t?cRKA~%iF-z^I12vWt_-?A^i-779YHp})$SZ9KT)zR>
zg&8!)cJ<+U^<O@5;SrlHR=~P`Od_<k^=;&UOO){495vmIG{VJ7ejJii&ZXcNWm!3|
zC3t`jFlPz|FpxT<E5>p$ie6<>yas)pnAL%g7EI);#(v+-rs;#enQLhfYK|>u>|Kl>
zFP<)KpURmdD20ru6Z@>hVcTA5+PPgv&gC<($Pjos0h-x%D!5rG9{d-59KA9cI2;y9
zt~`u1Ppn2&P2tHU34bbcsd|4DFe=jFWoUKziiy8Vb^C$tTmwrbJKPDKvN;vA&{P}*
zo;rfBz9)Ys6*fLP$8GR&hkn3L5hu%k)n-d7t9#47fj5f!@ea>LDkn3`#M#a$qg)x2
zi}%}!jNAg3Yd{u7SQA7IPy-sn*a<0n0hleS0Nqvu^@~G8MvKYp?ionH+~6XY!yhy{
zyX4i7D_iirRu!M7Tl_EQ?}WE%6O%QyJOrT6sb!XX{c`7C!WM~*R<#${h&e81oBq21
zzkXwIswX`4TZ>#(F5|+r(w?6++#;#bERnfi`h|B8-Tvl$Ej)=~SjQs#)Bb*<n{jct
z3YCVLBwH`bV)YkoJpcEVTyIvfE#bmkC9XOyP-F9C)*C=%hP5q$Z&oB-=`XDQW0+ly
z@TC~_dZw(RWrs)KWT;M_0!QsN10Fy;CF&gQ06AZ@a|l&R#>|yh(pKfz37}d7A2JJh
z9D6x~+O(ZZQ|*9pg%L(WBO*IA%gYGiGYbN2@h5xWfA$>OBP>hc!uUmoJ?2)2gu%hA
z%5g5+exvuOBhfhVd)#i~Yniet4CjU)!ZNf#0#~V1+@C#jYAtPh@a<;=@VyWG%2erU
z%UIrsNh|whR9T5UxC6Tu)6I<h8TU22rH#z6`laUON?&&8X53>V@n>5XS+lFTB3aCM
zZf+*ei9MlJt^mH(3oQBM#>tg$4IKyH1%2@w{kJ7|WKCdtE{VD7aY&#XpW9IiaQ9*7
z`b50N{DItc;o4xOkG&v@+mX4F)=0T-k*><`*c5zuRF~Vs^EE4F8WxTXBT6Znana9w
zCf9J(NhtC?)bx_RMUa9q_0X{nzNg*PAaDYgkP9Q+BL<VENXi5q9g=7PFJ|bYl2cbP
zGeB(8op|VbKmv1z(4;Ai20A_UG@2YStjn;7h@t#Xf5$TD!q-dKF>A!;)F+bEl4Wl9
zGJ;+G+F@vc@XhK5lzZye)RwA(1~Sd>LCF9avZk~Et*E`2K_ek!stEPx-CpTfyP1+7
za~);3>GT<oS^XFX=V!~%(aqT0ccFyAnLT30T!|>es%qN5zmzeCeKSqnrV(RGkwxMR
zVc?_s9r*<a!P>Kh`Y2c^`@IB_@t76t6N8hd_c-3)o+{W-3rXnps>?5wOO;3rgoQ|l
z7dK6^aX@SI4i#w=RFckpw51>ZQG>7qr-T9l&!z{ef2*o6SEWYrpw+}owq9ggqUdfB
zE^GEFGO<IudF4u?gW8e10JhgZZ0uL0t&s5ndC$tVROh@{yFi(ij5!s>dz(Mwc~31&
z@3HWdL67a}aG7wX<T^F<LLnjd+oie6C5OB;x`k6@Y>}@aj?JlzBPT`m`BWKU>x0qy
z@<Ry%==blPUlM!cRM&m1dg}SK^osV5wj2<i4##F4@(|Kg8j5xHj@E+rO(&6KOYDrz
z3*%p~2`t}2tM6+|+}&s9x59rewcAAYb(<7po`6l%(GXH;fbPRuI*E@_;*e86?Gg+5
z&@gSCL}IYfVv~`mqw7O;x96IH$JE~kn(JbxhPm^pA<*a&yL$`l{Ac0#BUbUz9yp<5
z)>rQG#y?5nO~5wE0-zI|F5Celd3uzP7@Qf3b)++L{t(;f2n>GUnSyYe1uWH;{=v3A
z`R-uvcPe}jG0LMN;!!xfDt8Rr2MR`Tnx>(8dbUTJ>;tD6T0WSE_AYWdP-j4BE&key
zcpN+;4cI((;_OPY&6%MAr6?Ue=Tl7Vs`t@u(`7|{ybcXxN7e{!lc9(14(EI02NxT&
z!%I<ncf&6saR8s#LH=1?RtW;qF0hCIW_R9<$-b7Isk`cjqJ@<-yBwI0w9O_~CZ`uC
zr2ee9O3gUjmwwGPlu#4~nq<ea($+|JIdD&zIzsk#l7p+OMcp5Cf?spVO6r=s+7>T#
zY93&MB6)e^2kdG}dC57~eD49TqPt;lt09?O2y}<idmqsJEJkhYE@=(T8(=CXW#rth
z!m?Ua)X3I<M{a6b!yVY03m}|QR_@!rhD7VI_>COS+G{r+BG9LrYd|;cdW`P_-of;6
zySQWVQcXc~MOJH-6EbL6*CMfYmK1=A(ne$c`%Ej+j@YG5@Lk9H#kDs4T$UoZOF`~o
zJBAUU=(P(hy|ypHN-RPgtxEG@b8LKOXuLV#FrDa$T9Yfw+2-7nS%0p&Ks=P^%Yb2z
z1yxHOE%z(UiO{Kb9NU}8OVsG6xj+c+R`xF%r0W8oPR|Q%_)6b*9lMdV2<<JGwQpaV
zCa5^Xf<A!(RNt{5L>Cen`SzkzwS>N3{;^YQyV%i0%vM`iYx(cn1n>HR%?8DVTt#~R
zi@u&pp9=~T3qK2DS5mWM;?#;+{$?*FN6n6Ia7m@s_hSuq)!ry}j+|Swk%NVFMf$|~
zmp;SaOznd=KPQuJfo0<5Zp2zRIsZ~NPyK&<y>(QTUDq$XK|nwW2|+@-Q@Xpmk(O?d
z?k?%>?gjyo4(X8YmhNr@Jj?rjp7Wk_zA?Tr_V5p32iLXNT66wt^7FjGvW{D^yiDur
zF0RrmKm6FibozLmRF-(JpJ(-bN*(8WC4;xY+~T|P&7*qq4+*GOfesf+-OZS81oL%O
zb+$%Eo?_0@d$PMpdiP*GeYQm_rTod^RJuOB9ehqz?&u+Fc$-B><6Obe<eKj^Wbo1#
ztPJq^z?aZkQ|I%8efQZN3sg$V&8cxcXTiaDttk0MaYSSd0Lj^5k}(Y-ueB$cx2zT<
zKG<N(a4ki|8*?TP=g*Y(I5qw#sMp94`qar~&7Q(CNpc{oxfH?7M-`V>Qg^x%Asyk!
z#RDPb8m0Y4JJR@R#Y%h=lK+W~?_*pVzPd~Ol)eL$KzBWTn`E7xsfM;t&xmCvhA0w>
z442gj5=v4Jndo=cs~4REzY3;ybpHt0dD<IkdGRYGj2u|CuEuL+Xg5`kZ|*GG+@K3(
zINy%YWKwC^9Xextc+ES_Omw|M2t(dao98V2h}$1xBKERq(e}oJ$I8(k0itPhgO)?x
zfK{~9!=`g;H?L!ZwKT)iXdrCkEo$NMMA(19SxBYXMqNi)`dJn3A5e`N6HR-KJ;yAf
zBY4;z`7<f`WEcMruWo|;NRyt1oz=xDg2|}p^N#1l%Bm=Q+-*=_K5pzfXNB~?zg@*)
z)ug0Teb0SxaJ&s#A;6<5G&TLiwdDwgyH9<0(a+EI{Io_(@3yP_u}zGVt&hNSSmR>}
zWAIj2LNZNDbK_L;iZi#l<!1XmLy|IuPM4Ob=+JFc<K!fEfL~Z>?xw;1X1|VTFXfuR
zr_hfrHM`~MK|a^kZNQP4HNU`3OG^l9jj4FUdW#tnl!~Y@Ml;s3pVN)G6Qx>JAuiTs
z19IW&j53017vp;gN`u%}I6?lPoM5FkR$nvIceV$;jbgP%2eJH@ViuRzpy9wGFl57Z
zTAE7^6ni&xF*TdCON}X`FL$wb_gY@UbWH-7XH29r<jPmSmJt&5(Hyb7`-ZEwL(wAw
zD!AqMRkb|g`D$->i$v0{L3v8sk4`9;%*{4*wY7T9A{u0a&_;&qm?lxz-r|$6dH35o
z#_=YSykGpo>&*D9@kL&k_8vd$L#Zn+Cj;%RlMzh%hTA3!CtzpNY*ov*IKcz^94@*!
z3$9c8EC!p)Yk0%%{flvyw!+#HMs5vfX;kV&Ca$hMM>ny);sEjL5U<a|8WsjD-Q&l+
z-RW}}7SluE%1rm{W%+$b@9t%E1Usc%IVk<=xtAw<R2HUQ_)^y8GIB5EOeO3TzY=fV
zen-qBZ;{q)iPQEcP~Zj3PU>y}1-QN&%PJ7!$M?hMk9{*iT$RnOgx%X0U+h8%r!9=t
zEIf6jQHTnf+d+D?WLcrZR}0nluP|kl61Io$&`jd+RSQk>>G}F-6VpfJ?Bt|W0*P2Z
zaPjqJ#Ny#%S<6L4N`yt@UBg-ykWz^7e$7=WSM2Q<Nr`;;poeNCsu-+T{l=LfGX<36
z?mSjALp+&kndw<E>9L>rqfzS=8$6_YZ?4Irk1JG4G3ayx<dU^2m86QbA~nrj+zG1i
z<QmAwQ58KKSQw6*`q@qwRdjXM6m?@x^qc%*C9_bTM--~3zGP;{XAv%&37wMA4!eDf
z+PnunjJ0Jr6rp4I5pQ{&3n>j9A3KR+v1+wmtSNk`7XhDBo2?o2Ziw3(o2~{<?d!@m
zV|`juv`yk{H`nf$Hx;;<DHCO?A7cBS*Aa*=uzS)bGXhiK>lAMVRLzw=_#p#)>tAVi
z9h;nRW(>J$U|n*@>2ldKwY;}MyNvk5F&5l3lp~FPyGH^PJs#)hqDEgm)i`4&v#B@(
zGy{@8auXnp_WA^@fB|yx*jO66DHF4-j^Vhsm3_Nyk)guA&Mzc#s0C&85w4ETPEVcP
zRH(^_T2oN+R6fWh_ix@%CL)?!s~1YG+cyOTH0xAI6<%$toeB6U6@n@OqR>igczIHL
z<X@1K?sZQ_1@=ngA$m@AB1M>KO;vC6GNnoh&@oFy;hkhd`%WLtA9Wc8#YxIUr=@;#
z;2Cq^>A%1uqDuWBin$NtyXhLW4KHBt?x-jV2Z=x$AuSXY@55%*G`5i(8t5d2L?Fxc
zlZo~ei<GhqWo#JL%TYxhaa2Sdnrd;PoK~+3!H>np`VCI_l}_ZoQx42h90%4##!S7W
zG6klZ&^NI)eS?ax`rkkYUb{vBH+lM{S=#KL3d=}IJ!0Dj2`CD#V*irAnn9$ALDumU
z(s?qN@c={Qp1$$y=T}d$E*U<aBl->K@u5SbYDZoYh6%0-YE`N_Ehf^E#%S@ax$(Pv
zWq-P*Z$LvmREvr(%l}6*lPyA2N9J{AX7{%SI}~18W>_OrW_kWfUdQ?S*>t&JzxqR!
zCC_^E@G#)!Zwe1<%hdQ-fc@SM>up}}I}Mx?RVl?6v_m4CSwBDG$4|``G)ffuL)9O2
zT_=GrB&=}DvX!9oB;9+3gfOt7ZDQFVUa(b?&)0hxEG~}Ey3`fE^yKfY!{g^O)@bND
zTq~U_6K-pF6Vmnmjn{w9B5TJpR=a#xKt?`vC{(7x*z_*6>u>-*ps^w>>MYs(OBiE>
ztR|C^!Cc~QyVGNuW+Cl}JPm^c`@3&~T0-uUHD#ohn4L=$W$9dSVGhbC<$_9Uleqem
z2pyJ@@|xtPR@8;il;ihR6)DUNk3-bX?R)g^F!iysYf+&shaIBzN`B8+QYfM2vsKbh
zmn4GvF)AwyBOW}`V_iYT30nJcXfX-wngt!?;@?3pD0*`ZSj?_9S^Lj*p7LvAi>lfc
ziF^c`w~%>xA*e`d#3Sy-Q%H~o9^t^;Qib>lUv8^}no18!UaBI~&&wrqOe}PdY%~dd
zIp#w~<D3~MpOOE7e)Z*QTY(}CiOd7#AbWG2Z2@TcutQ)7xw<~pbDO83k-h&ATg3T{
zAT*SICUl|6fa|PCgL#@&m0H7z@!Hy@5hm8N^Vf&{OnUZVy9u=PtrQ96v0w8~oI+-4
zajRxb%9~)Py<|q$p+_0EL)2Sci<ntI^^Er}DpX$_i0J)Ob+(@Mqvj=hLYw!Ny<@>S
z*W5h-%b@b<zh1r+r!YPxxlff0Ac^nrd6ID~(6@H0(k(__K|9GJ3wz~{OmX(Z3)c~c
zwv372h{7`~#&Gvg4b$|UV_oH>n-D!n&r(#i2R6)!H+@s+k<rIxugf+_b;&Em3RS30
zDv&Fe(MO}oCa02d>9uVKW#zRym>9qYCL5x^x6pB+HHSIHg3ontrKeZxExLLrUd{6D
z8gsV@k)80g!eE+P+a|pm7UN5ME@&ju`fM75iU;ZXc6p=iBwE>owJAynkKs_wV^tw-
zl1oz`s4G(q8k(=+>cz@08a1+Zq0Dk+LskkeVO<=>D%%W2%tn7#%@i`1^rlgP*kt#7
z6ZfInr4N0KD%u7jV!C-fgU}Hsl_h43DNf3pYJ>u=jjpYJyRJV75_TmFEUvavwjW#A
zkxXQr^_9NKCB~q!vYKEvh?vW=h39uzR&+S@(D)DrZn_>utYGJ&TNYu<YL=b`kLE0V
zEe}+iRH}r@FL<TyPGD<6|NYh_vX@-MRr~1P<*?^udQVlejj4{X=EfjIs8nJ!OmZ|L
zQSE1t)}75ype1cYe$`>c%W;B+aDL@LF!KhQnYqU*X}_g{c4ukr1MK#9&que+{ugo-
zvB5%oe_-E5cXr%`|B76DWRIVwDKH4KcTd~9P7s=OxW7l-7bI9Lb~DR{vsE03Bd6fa
z&3AFNUrcXstE+zr;k&t03-bq^6VEw=4hEu_XQNA#hQ2B@6W_}8#GjwtxGGYjx1IC7
zsEI|o#kw8D3<GA}IaBjT^to1~{g-kL6nj6m_nMmfT`D7^7+pV}m@*JxI=>M*{iPap
z*5w|0{-j_#Zf=E~d<T`jf|+Rq;|q#=@BkZ%%joi#a3-=o(O{c5GnC?^vtjgmc8cWT
zBX)X7a19~H1X&7<j$W44Yti|n>6@<SYz!iYu-noCyT9p6M%E`SSutS6+D!huu*{$z
ztAB_>$Fe=~`6Rpd*5^}Uy?mt-d;lZ)(4J$nTb6_>_D0P&oJ7sSyLt2_|C6#<lcyi(
zGwzjK49rxN2pTt6fr%d#P=4A658z1xi@I0Sd1An>EL`Run0od~AYL#X71!>-zPsJJ
zykIGQgScF6TblPiu;*peCT#4NtHaY_Ipd7>l%ScDxT;QLy<z(s3uRps19NX2NUQT*
zo=<;g2c_#X0%z)P3!MD}+>v1!3>tStSey~^m9u$Adryozd#;|L9{`%``8IQWj`b2B
zCw)jF6mzN7war-8T+U<c4D=%l=I3BL+4|gEc<yK(vV>3Hrbg#MkZb;zbfHTW#rGl!
zk=OaNrOYkVFtAp4)zH|Ey^^9w%KI4Tb79aXR$11lx?a%ty*+RqzIYg%)J<-(>xF5v
z?LW?QQrC7qBM2&GQP4Mt7pu;&4)d%Rkc#mB9_RzO*j6D}gJ1<M2x_UlH4R#Id<da1
zAwUy+E9YGNd#m@MO-mi#rKYRGNReqLTZXbazbs_CCj>8j#dzG(EG*A_Xxn6l8W!^L
z1&Yh?x!c$V&V>^%P|~<|O<~9i9aQdJTa@>%JJ*3}S*{KiT{y`p&;lSWb<oaICPTx_
z+<w`D#oX_U2Pdyhv;re6q=?)KoV7yfc>T^SNLBMOS}ui#Gr>G!f_hvFDY40WGg4=P
zd7ax=cgsRQj?c_kq@rTd=eX2uN7+-I-lKSIRN{8kgsGcgB*m}imM%&krxTQY!frMb
z)zo(b3G|L5g*S94swMSh85>(aA4O_Rz+49>>f|Yso9N-~bCdi#40?-5B^+Etr7F=r
zY&zwet%#37aixo@2a!^)9+?G3z2v5SqcV$!)y_C0T*?V@Y$23iP5#QFtVR+#4>28C
zll8-fs=dvzo?+jGzvtV+So04mu=TTYG<=&N#fWn%!#HS#{KbZFpq7*!EL77*TQhCf
zv~S$Y<N-<G@4ETsgaRj1ME*2iAlhj6-4Xdq=&fcX2*yB#zHZO{_06JiW(Px^n=bRk
z`y_O=;bMAV36m0Xtdwuom|I47<Tuoa+UEH2N63nqlc=o8K|o^k6d#Y@u@)rYhlVoA
zjm*Oo9!AVe@UvuL<4#O)+y5Fc7LpLM5^)TiSho+ciKPz#y*z$fch{xDZD+|9MeJ`s
z5dD#H73j63e!Qw(<KfT?I^PCoqzM*GENdIHL-agc+g2B2BP%XPS&u1~!h<vqCA2)q
zFR;KoUiPzE7|Xf)ckd^y5KmCk0OrV!2L+<zMe@ePt1*#6RvDZwNmWopTsIFM>P042
z0OS!iRF*%|{C(Aq1aQ_Jd-vLZRxPJ%UNZ;#^|_8E!IB2&FiPlq6n5)aAI6W038_gK
zB=dKY%A!3Bzm8^#ilU&>iqH&*Ez(=O-WKQx9)nh?O?b0QIG4kCC9Xz*0=Z?1P67cO
ztisI2A_n;~%FJwn=O>OHY1|K|OHer~lmKEuQ~89~&+hcPfUFPFc@S3tj=3Ne|Jd_X
zfUCu|vNVKbrqqIVr}bw~oqBrUow>CGil`zL!YUMqx?nc034epW&>To&IAyTQ{{6O?
zRAhKnd{o!E*)=~=fA0v)f6ZHd&*m8Z$V<c53;^o05wIWNw5wi_LpMms#ipJi5CK3O
zAl@h{iT)z3hA0|U9v`ck!C03BO*L``lP}Y3F8yMu7_ZSE0yiDqyzdX}iiZu^4ge8=
zFXyuNb|HP#v*Us*(!$KK%=DAY>-C`W3G$y-NR@3}>wsPf^iT^_Tw`XW_9P*Hp~Lg`
z_>R<X6o(OO4GHZGe-}ZqJW;Y#QP!!g%V>3m?=^-<e=23z(4e$c#s0bLM`%V?^W)QZ
z@*`n}8lz0c>gEZdrHUiqmn$Y$_=FTuF)h(Bh<T6mClE~9bcOxC`tG(3!Jbv#xTU0i
zm5tPb0tq6&J^DxtWdk=kqvrOf17n`$)|KLR7FWLqd#B}Y#1s4FaU|JR?VDTT<zREs
zfAG(vjM^qKd@bCD{vJhIaav(bWGeDK<VzSE^0l1nGT!=qspQhnMkHv<qQIMI{-~py
z2qc+zKQ(i{{3yUbz<n9E;riUy#MUzNfs4`W$qE;eLhJ;WKYM%uQINviw08yCt(|;e
zG+sGV3(@E^Hb6%=E_;m~fdNseP#E3rhWBsf=g`UGZ*`J;9Q#KPFjN8`Ftr^T&h~0(
z9q?8S(R#Resg7>*5nCMaGGPFEzXm)$@klU6_Pw6H&~#*9RWeG}OCctu4VXb;$AXER
zxyOTO3Q)BUj7a<(lkx_6Ifed2fk%rfP>^!zx~Qz`-^bbVG}v6^Ll|3R05AhEfu8s8
zR=M&pCR`Z3=7Pq7+Q%#Yb_d0LwMmxxrdrCYxj0@ewN{rZwL+EV<*boJQIq`9lDY4<
zuiLI>ITMv~m6%FHKfIQGX&uXU0VE5zqcggt)-E3N5ebbsv<QtTv}<AZk5rs?6Xa2w
z{p55Y%HeO*S!(EuO1y>e^0={?<#0YIouS<=sfa3Gx5d(d6Jn*U^ZBt$woT5ko--&%
zc<*iO(KlB?%Bq<Xj;OV!8mpwsWk3+0l^)j1@;Zl<Q&Nz16{wdd^2mdAKr8?b^u8I`
zR4Ti=>@3>43?e4+3nujHS*MT3qoGvN+TYwlj4Fu>bKAz&9Rbpd<VC~R_c%VANMuO+
z8<Zm8dhT-aO;+e>#lC`YvnSzmxwX}_WgFjbv?lzBmE5O)H&}yY?Ztq{Q95UCKZ#!O
zey~o2{V%j^klcZ~Ulvzk2wI&F$on~nnLYp-1ra53rJul(WGAt+?{oG+hJ^Wp3yR09
zUarC@mt4$9q47m^+k_PCo_d_Fx<42(WUZ^IKOC?ES{l4h^l8QNx8}3?`{uO{@8BY;
z0J%C#<tFS69=(-TZ_)P<43pwkj~y{DOWOiTf&}E$STvVs_g4T2D{f)om*p_n^D4-r
z+&nAAZ4216LD5Qx&r_rkZXoR!4_d8@+aMW6oc#N)jZoWCd2|ENF_~wU=^i*szemJY
z2v%?SN_g7KFQjx@1dBDave5U27828AOXkXEsEwVxc0myY3b=2?S|Cd0);2@mEKT1`
zkn7DuV7?-ada_A}`(CSJwG+omOM^<FO>7&W@W94_Vy)-)_&6fXYE9cOnu-L-J^fQV
z++pPG_KEq`Q~jolZ-I|LNkO6q)9JuM+98sTd!}ZYt>({7W|<KTXn{A9k*cRHfdZd6
zHO}rWG1Lp@wD&pg<>*9}H7m>Vn9}trvnV9ZKd_Y_F4wrH<x-_l>m=q*m3p*@|8DN1
zX5Yn1DxT3f=DC!^7gffoEUN&|FcSieean*gtStkyZ^Uw-<*p`_gr*$cUE(Vq1=M)#
z38l5My4Iy_$&s+|P<HgLV&nd7{@I*a$}6!-v0^yitL4TtY5YwRS=wPT(;mu1M|T?`
zPzVe^)5)k*P!X{nTnv&2=laFOu`a+668FWV;k(?6<SX?muwW+Ryu+gdQn%J-l-Uto
zu31Wzl2AEDio$*c0n93?>W;~UwGTVaHKFE;TmfSFs?kVtI((}I3XF(kn3$%}zCBkd
zvx}?k-(wTg9jL;Pr)?yv)v=G^p!DPrk0T>udO!3H@W_jd%HjzoVP1|XwJwe;r=>qW
z&n;ZI^3d@bLcTUr9zSuGtgKI#sMhl5*5Qf6Q@$v7<<fZ{oEyLf$0hM5IUUKK<r8Pt
zrfa<v-{X)y-ta{(IeeaoLlQ^SvL8o1DL1>Lw8AUuME`b|&>(eOcL*T^omi<#F!}jv
zx!}glSE(R_B;9q6EDBOH?D<TaN=>RKe1Ju<>~|jP@9uf7+j}G+1~E$6vN$f_RUwsM
zK;`(jZv31n0)nWt;r+qrKWC<m5+5^2MDFmfldJJPPHO1<d47+H(<ft@7!?lnz#?b1
zw%a-RDTH9}C~t?H<)|<Tk_i4_6v_+xIk#{O8e)gmG<KX87HVU`oDN!|o)gD#6M{OD
zJ7fCb8i%o$p;Oz6fE2%dle|Qd=}{OQz$4F*m3^%SO&?7$V6ko@eLBDObGE)$u0g!=
z^;f3EwrGx(_psfRq%X+-B5L8NpPQE#jT0j6ZC?(yl0UkwTtWR(_u&D0NmZQ4p-ugO
zlj~f0jzH9qVUiJM#1%BhDUCDr)%}|ij4&<oegt`LDKg=g9E7OJAv1w)j!n3m4*Ddd
zPmeB;9Fs#Vcp@QVWuWzi#87iX)6za!dO(P5yUJ^SA&fa7!oDC>WkH1u9p6x@A`*G{
z!<RcQ{w9})?>|R`CBbkyclW%rEK;EDhay4@^7oxnMyK36#;%uH3R5#`)TvM^%`yAa
zjyHBmt5}8&(S!HR)25I12O=ZrHMNFxRZ8r2q43|eHgctE@c6`6uc3xE?P-FbWWJEL
zl30*!q5F`UN<;bfAM0bZPY`p&T?86(0>zV{26^6d*IbB5UJ=5+R`w~J1fCLQ2aqc*
zIPdR5#&xb;9Pmg#^LzY_NI;ng@=3s=+aOd}hH41g2=NyCF^(9VwJlKFpT^rv<iV8t
zGVN*Hj1EEHJ3s5`#cN?^`)2JFhgvRKWrtJGedcn(YV+gw87bc_RE7W~T)J{}RE#Aj
z9g&Rt_TjKiuH5Dr=ciO;!#ti^3v<b1v4o9SmuEii>U~J6HR*t7rt0M#mpJw{Rj6X_
z)Epid43pFQ!=XHsWzSs_i;qQiqRv~E%HsPgoQI?%FVZW++`qgLM$jDANd>_%e$&$E
zB)qI*?xpY^I<lyu;FR}X(r4un&yb#F(}MA0{IEQe1+SV&dCud$N-uVJ2%S@V0o8<k
zLJ?J%0Sr50sU<nANU6$~axWp*AuN8hT58ZZJNCS;nuI1yfkEhxb2owq_tZ{rJ>y-P
zzDj#<2LpYM8V$mj^b1ytdL{`ULB#~2N<yM`QmJ}0XhQ*&FU}-6e<-=ervf1g{xk4I
z&tB$XjC^xwz+?=+tX?4~J=X6c{N?NNrGD^Vn;R-jQn@<)uzj-4H@A;$eB=g8&1gsQ
z9=$-ZrPs1BG0R&pXAWcrp)5hKKGTZD`ox^!YM_avIKCD(<R^q;5BdfZ{G-*iu>tB7
zRb7#Y5ZILk-I5nqu>%WCq{iFZ_ktVa`G+7xx|jxg;^XA-bT6rhNZWy#+zGB8RqK3C
z9tjLz!lx0!7u%Xf_3lkWUGdGqDd*Fd<XA(>PU$7EKJOC=<Um2VIf8r$C+&10`DXkl
zNdcG#=t3Eq*AIE1VaiMX3gib?@(8&(DeE9j6xfbwbVP4C;q7lxk0suS7&#adId`>@
zvCRHccb2TgxI2%toOuo)X887CO;x*~;@()Yy9!MtkYWYLK;}Xrl_HKAp?5kIJta_I
z;(|IC8+b$~46L;@o?v4y$q?iw<1bfYu36py*U#!0>oiFK&@}(dH3<W8Nu&e9ikHrv
zzJ;oyu>VzS!wC8(zVdT_SzRVnD|Ty>JYnOi3KzErhcL85sH6&wFl%$i`l=^elX#>R
zenJD@(j%sf=#e@srVdt8TR{8rWv@Ztmv8{~5-mpl!Xe9*3Io20^EtM2aks~z*qHDS
z9cfe|^adO1aj3-me!!6NvFFAD-rm%{_rD$rzZMOKx6odAzJY4-+fN^0OWFK<NpD3C
zY!Co`{MUQDWeH(OZrGTUlDN6XDn$xoMTH+vlTd$VTEJWNDuh)7W3!2RBgugKc*;j`
zBD-@s)Aus=Uf8P)39RZ^8x*s6AltsHvn8d*l)N%Ehvi_*extGa3ts#`lKB>#<(S)*
zn2N{l-!{G~E`%p6E^A1(+JuDDgr_Y;aN=9_xDA{Cak>AsEXD1iV1E1|GV1ce=--NY
zCeF9R<gXxjWi;O7+2I4PPqqD{9P#iwy!HQhBkYrfa0Bn2IQ(f+fYWKfl6~uvm2?rQ
z^w}R3Ui(tm7v1#BDv?SHRIVHG-;ld;sk2rVZsEMRUjhEGf=!I5c`Lxx012GX3!Jj)
zqy@sbycJ(9OZG4PSiux9B{7?@{RT;C{x1$miHC9jk2l@Gb+}#e{dC+1l<Wh*Gb8}a
zy#G3N{z~eW1%Xim353BEgDkvh8fmId!70Yw=2Q6Ep7Bz@K8!@pU;3ONY3|9FZ~(3A
z<TK~W`=b!!=;4vkkNCHbVe%SB_U4!1yrYkvIceP-(L9z58OGNfHuRjl@P2lxE%s~2
zZMgd9?T>+H2so%(Mtbd+wSlPKi6DH`B>?60A9u!M=GhATiVKyh;zY@KF~rX}H6u?=
zpZ#YjApP@q555wh!n|=kk7SN#{x0erw_DvX&E_2b1G&}W>{%??`???fbgbqfxNl6?
z60v!MY1q7BH|ix}!REn8zB-&3`T6A7;lzf8&To9%@6GK%1jT5UKivJE!~Xv1@z6;A
z#mO)=HMqM!)`CyrPODGWt>?BKL)&rZMp@(|mrTxAVh-?s>E8c!0|*?nyeU{grRf4*
z<G}AnYxXo?3joe1U<rtZ|4RA-5Ata;04~{ofJrDHIv=@3zY4>Ig8$(Y+06?OTlEG1
zP?~1gq4iBF`<Ow<vbs7?!tLm6l#I;U0*O@rjQIPNxH!}xbtpkX1#V{fHKbbLoDte;
zWqv$#5Q2=ht20<gvYk+eM==le8uVa`|GFOqCLLhsQE1rxn_~&@z*h%SOL#1bfS^fY
z0}F`GQNNz@MmtizZ7o(ql7emI?L6;17f=Wa>6|QwA0F=<&rw?KSj_|cJ&+mz;ThOq
z`5u1Z<m-AoNC}&sei_UuryY}&jezs@iyZ_)Gdi~7;p0%2{kiG^Wok@(z;n{Pg34*H
zZ}?u?-)#@OAem^)2?5NiQ5`o0z)g6&Ct~}6!i~kEaO8x`{=136P+AgRU16<6p~^3K
zk(h1S@vZS0elA8Hjd~^&$SRjN9Wz-KDMRA!Ai-MGo!`o#+2U`JzRRti!Uv#bX*5#?
zdYlvq637*DlwOr}`uF)drA@YKssn;7v%~j`->W{(Z%5{<H&ioBSk4GesgFO-&N3Iw
zSun*JqO^Jp9_#D5A6gk$6$n;Olq7;eUPxJdbXo<&xJNYo{9=Vnvn8a+^oV40%1d|?
zTnw$bw*=gJ>>ON)S$K8%WeG(kAl#E=<e_;d>s`5_s-zmwvYo$Tw?<YM)$a?-d#xWB
zxLOQ^EvYn-FG%9;CW?TReEs7L625z75g|?J?jTUp{2yArWzdZPIZwQ)l||x40E+71
zcPfMbk2n*-rB9k&vzYb<w3F+r6!_{(vzQ$Y4}HyH%MyR}z?sd<jEp?*aIF^sLC)0$
zfxL{;uA&|0bf}-$zNw%e1axz64N*ln0C6n#@c@;bXuSHW#<zUxze2qvz`lAbVZ(uY
z<(_FGtMQ$K(Av4U_h1h<%hhBJ4uI1SQk&xgDneF0J3~VGy0}~<BgRo^<SYwQ0<hw~
zr(%sW+z7hauNEU;72`O(io>z=(6(VCqN*+7!S{WACC_zCU%bM~XR^?k-?MMO*1E{b
zs?VC{L`K7WC5A*~WWT&PJ8s*+wHZ%RhZslcJ6xRp5yj<Xe&h?K;rY-NF4mGmc-%F4
z<nX#p*>NUzok(vA(<`(Hayo^C?h}iO{nYmjq9Xg3!^-vUNd4!s?CxSOivbzg8fO%s
zK`~(i)}=xMIG5_o*^M?hfXy_R6zzlU8dAy%@M|o1vO_=y0DFmtj;N?zdYm^cryrp-
zPSmakTptf@i<eiZU@^FmZ+zW%)*}IL)IU1s^=XVNK<;w16qmb93V>zR`0XF#lGC#A
zmS*@ZYPcaebuNFYc%b{2g1uZ_(5#oz0DQN-Th(m6?MKzGMYO+vCiXeZjBw8;|Et3~
zU1<h06n7qG`PMlx1!K0Q_O@a&-}(SR9kA^!-K;EJy_W@~3{FO#nz^4q;0)y3E%MmM
zBZAeA(l*n(jmTLbQ<Bp<qM)DUZ>;&5GnG+o!w358@5Hw&%<ODc^a|7|q2}cyCoBi7
z02_so)f2o-Us*RX)2viFT2^^pTz}=!P@zDH4GbF_8?r>5K%I^fE#EJu@3=|70Y3LM
zn6pu1^%T|$QfXcHE9(x`x2&~w&Q=!|fmYf0-dwGvuF&%HpQstOki+r8L(u*M0K$%k
z(=m^W?gJOsB({6@r1=a0>g6TBtTuly@iDpp5c*aiB?PsK1F~#(l$P<Gx6ZbEE8-Y{
zBV%M%3*U;)#s?2n3m0l)$ssXqx1qb9k6j}r@ZF=4+u-HJ$L4rzEGv6=Ja1)2X6r@I
zCw73`S^Z#<y=o{qiUyMM9e71Z0`Yh>GP5vRtaT&-nE)1={AoFm5-T%*KSas|nn0ZF
z+E#}LF-@h2!JOXpiAm0nY1ucR19~Ef2Rni%xXX2l>}%!BhE8~#%5_b(jGTOBMWrp@
zOHEh8v>_ZGmF9~EKAv-$#lsFqLYW+d<+jc{rWDp%>OU{RJmW*4)B<;Sw&D6cm)jFq
z+Cifd4ypOzcEG#f+;Z})n};P;ogqNzbo{1Neq9hyYHFvV0~x8_l+Jf9<x&-v*&CKw
zXDn4CSM99Pq}+n5y^X|oFu!(Y=mR9RbW^96IF(!~>+GfdhSy8mmKDDdkKmPBTH+m<
zy{Dy=rqhXc+BY(EGyX0#2=QIn+2DvmwSO}3uo4o{cUwIBrSdd0dd(fi8MWLvo|T5F
z)k<7f?NP8}(7$*blpmmsTwZtJx3TV5`aRe$?3xqp^tG<`dOYOMt85%0j6z@wJR_Qb
zg2tdbqB&rIlnBhBNs{`*^y9c@Vf|KER*!Hwvv-m&5y-{>zUzyVLuG&0YAl2{-LDwR
zDyT3TY_2><0k}f|n0*&)bNX(zwMZdf&7`QW5G1C&j#$8>56%VJA}38JN!_xQ^(1=H
zH13zPs#|>`H~`%NI_wer7hO01hiE1`LjDD0*iJ4vq-Y;dLO~0I^T+VDtq7TTfvlk`
z>)=?R1ah0jOuR9aC^^`{JB_5vuXz2Jy-ie0vu|Gr{NI|S>NeAlrJv$9^8rpDC?O>$
z1_lVo{ar72->~#2UkC(B0%8x%kOZD6ADtN}!e{j|(%q|l+%%s_d&IU1C;+g|xsTvp
z*$gB-R@2+Y<WW%`=we|GN+8|0G<4$p!%oE3e509zft84oXTj%GA%?4-gqcnKa<!fP
zZwJd)fy)uU^oHZn^WM)Zl+BcE7!v;!1GGo4(Kyp<!)Z%mndZ*{;svz))_}NH`hl@S
z8XYxu76=qgMnyfwMLpm(fHoh^;HTiG)Uu2H;?B+I#BENT`dSWlvdIbp>>C`13d$kI
z1J*7A%184ry2Wp+4dujy#81zJs^m^3)HFS9#Pa0I0pmHAbE_K#kp2H^hgyqRw5)y@
zjoW-o%|=E4@WEQOJVBI`3a8#))h=mx1Z+RK%#+$Xl=>ENyhsAD{XD?_>w5~fg+VGR
z^6s^m^}^84=M%eJrBJzIYD(G22quVtrn9z<9n*-y;JXjZ@y<e@Tt8E@P2eSC=gyW~
zNGlT)Ukh}8nuhlMQ7~hsx^Yg+ESI!hi-@L*V=N^mV<H&WKe9;c3}i2(UldDID;`Os
zLmcL{@rLd2#?a&9-YI{K^~M6*I!J0cZ}9}qa3jxuFzw29Xkfi|1rF*DSa3;If8%S6
z&v|m+pov*ICwK3AuXjqGi7kXq<jh#k;Pty)NB4=PH9v?AznUui9VM&T^LiKTLU#$G
zDf@xDJdiIehnaHhkP5mnUhmu!;B1qSj9C2EtPpVR`o>6ugqssEibzp%V2myJZg6Cr
z00Q_&>|mGxue!I%<gbCPQ$2okd~=ZWT|QSzQB(=GHg+xd&SGvuPCg3W_I#jwVg>)Y
zimR3$U6Ez3ePUD2O#tS&6bVD=xnJ=fbL;gjODSGS>HypRvsi$IRdqqYcz{pea1>;M
z4L06v9s+dpgLinZXd%_Ew~iwbBe|c<TDrFpX)Doe&V2u{n_gTj?Q%pFn}=<>C2jXn
z(0x!`B?00)8?g;qJs2Vi(MS4!^(rrH63E-o4=r7*bvi**L8kV=Olob9SgQZxx5Z2r
z*?q4>LPO#wf-hG(Ilzkf=d7pN%chY>9+(-%-<d}_BpjI&0(U&<pIGqY4xv6V?FX8D
zkt#R9__lHa4QbPm{<0=`wLIaTwMhjm(pjc%hY3JgfVrwfiHSg^h#`6&_==Zi>09@w
z=`V;ucLfrVucI>ZQ5tdtWl%W~c==8nC-R~`nMkcMf>QPr)&<c)z*ll)L^ul{7`*`v
z5-<&WuY|OM6pRTQ)UZ4dDIoX(o)cvFY*MihOq(e1^j5!&omiB35(i`B2nTq5&#9RH
zhdL*pm#BOG6>8C@mYJN2ksxjXsC{SkgayK_9|!d~`g)~9!kr~^M?Rk-r?#8a*6cPm
zMu0T@N0xYuam3M9OdKjN2NUqx)SJuZPHmsy;s7n3<d;xiUyG}0Ae_^p4(EChL(Xn~
z9xQg=b2_-Dxd4o_6n_$c#H*SY3><1{35?m!cn~t%f&S;U*C9b1Vr`r*ry~(35f>4g
zP<ZdR6TV4Y7`j_&z0Q}=)j3CAWj?N5<WzbFuc%@j{x4SEV7z7h#B1Z>{{Pi31UC$C
zN5_4|tA<zB8_$`7$@oXMkg;vsF&2B1xU$Y<#`>y>%UyQQb=-XVebOd}E~<khKjA2v
zdnOkh)z12HxqlQI3(1IG6j=SF86X%_lNpxul}GZhAz`2b#@P9Ll;T-RU)K&<7+*+f
z%VdqSbncG=eU0b&^cjdqzN*`DMT*;x%fKSR@2g>&`9>OY(^6+V@`~Ry%Oj%LE0<$-
zl>um&0|`?z!AQ8w7oK9pTKdkTB6tq^a={ajSkU476QnJ`OHhw4gFZGpnhNFC-M$+G
zgwH*W#r{jELVmeEU*A^AjLd7cz=2@DtoizzeJ@-X7Xhllb49T3g65n?c<VU&I_%Fp
zPk%LvRbqHI^{$G=Y)Afc7grWpOJ+(iUT0>Ydes%OPgbC4{>W-ubUYWM=^kGwJ;xAj
z;<d8(RFU5G4cUg|)LWiSZ^J=A?FHrpfSw_+r2Oa#Rv*8|EV!sQEQ_m>i+<7Z!2Sge
zFa5-C6{`eui#|3MF4(^j@=f{tW(<Ilr4$5=thi?=qh|f2fy1i(88BAaXDC)f`MR&g
z$jN;H>eMq=4#?iWWVWL=LXXJ1ViT(_LDPz;=iKw2dHB|-b?kTPV3RlW@BzFVbd{Wx
zrz7})Q`=C!xizKh6IAQeKu0^x<}nO6$Kn+9o|kQih0Q!Q<2zJmLa#TFI`I&JeI0L?
z5>)!onIx|Ji&-#YaHLMWo|f*=knsgJ+C9Ez?qJzBT*3MUmR6(Pc6imZ)P8vnTw+1T
zKpgmE)h=lpfe4)>=@3iP4>~yaU79`T@<uKKlybo;)ArX94nN<e{ie?qS%#eX8m6hv
zAB*w9Sa-Up^5S$?p)^a6C7g$Mu;}U7f{GZ2CcUC<RwEc_O4=fz<u!7rY&4PjeAlnn
zO-7o6s)8%3$sB~D&P>+n(oN8T%8EmT>F@#&prx#@N<iwzR#u&Z^8LE<959(3A*(CO
zNd-z)tI@b+Wwb4d_yRgJviud3vP4Ew2LuWNkrWYB+2|RorXS&QUf&6~%_=k>DwsQ2
z)P7&J4So^0=KzgX!Decf10xtyI0{}Cv;F0WIDt0U^UbEEA~ne{1jo%)xFWeYNvSmz
z6YTD$BZ2t@_zL3I<2Um!>f-cx9R*8)lc<GF6+Zi?q`WIAWfw1&KTpjW-C>Jscs~%V
z@+BvyelvH1f+S!WWwcMmU|@yL*-@<)Lq6T^gyruZCLs15>pL)`1<*hJZ~pH5ty)65
z`+?F^WN;NQt;Aa^3lyp(Y!`Pt-neC|VH&exUu!}n!oopL=$}n)ELICLS><$^aHIaj
zufKt$f0bLkT!~u8W^8AOnE7oXioBdyS8BN|&ltB(*5o6LepSltOlUMMjfBtkFSqrB
zEfaV2FTkM6?RepC=)pgH(d$M9nj}GSbt+608%l1^gJ#V_;9>&^fq58WX6z1!cn~+z
zYiorDV2lUeVQ7JS1H3K@65{LP)yhKiu%dlTRZgWRSR#>J6<{#d<Cx8vq<k$_sRjtE
z5^P~jwXQ<+NU3`Nyquh_bnDDCOrPhE!a^2~`fg<n&3XQ1AG4J`3WZAz;Qf|2fFu?!
zj9Md8!=p(jSEVr{>+wP*EpO6((~`kS8^_#8gPw|4tWYtyJQeMrMR4Sx1xf(coZS<j
z1OUT>Ak+i^JKzUzO32Q^|K_EF#2u#e)8LP5w^`_vDT1g*&)U{|R3ly;I?QfaxBtUT
zjk2Bm!w#L*9YhAxr+3%utMWnqy4RW(uRwDln2lwXl;A*FX5`XbZ$TE+yc`t80vV7F
zSENp4kzHF7^#28)`pO|2&;N5XFJf@)&@%!NJ-dhW@AvyxtS+Of?6}v9wT~=#q|(MX
zv2EkX#aj7lgRA=RM9#%p-#(?B0-!F+_<nqS*S^kTCc~T7v6)A@*Yh9?1#Lk*=w26J
zsB_=mlC^BSyy6pfaO&}?Jx74c>;K%C$lsrFB>Df~LrPY!+(0Ty_u;tY)Z|YLLce$K
z`jJ;k7IjM|OE^%9Rj7JYE9S|^(8G#2k~Tl)DKUH3!^=~K**Eb}*AwqSOX~2nRiR@v
z>by^sdZUmZxXWuJx4)z_e{%jA0~T?OS1y4?frU<)IVdKlnF8QbFz}e#%%VIK5bI$O
z#1lvfo7xM|$p;$+?}eYsUhD-LbW03>@F30Q&o)s3FpL1Pj%f+gEX2qr0?z!-fgT_r
zJNbP5Izn<}QUp6VYZF?mSW(~ch2ROn4j(5>t|C={3=(Bn+VFz{m)8$%8c934%mAPQ
zb!|)9^Fk!G!C60H#1I{Mzmnp0Mu{!vd^Z9j%m$Lr%0}M&d(Fb27ry#y7G?l~=XHS=
zXyY>SyE5UH*Hl%uzTxU73g(=Ob?OG@`9feZWEG`CJsdyZz(57(s#?Gz{A?u*gb`u?
zg31n6iX-&8tVAVDAsJN_OiP6T_JpXdA9hv-gk%wdY$#ulgwuqy776Bxpf*w0f&3b@
z$rq#`PiVa5-@jQ@TFxE%|KUH-VFZ)VH<gnTMN=L0N{Io;{K_yXjVkYLXL2+Y2CAJZ
z!<`K&srY1sdNR@A+?fU0Ud$1~89t2w&HAth!i<fCWv~JiAC^i<U9jf}#@a5(@Kvar
zks(3_DNGfqOzF-qTCG9xY*Lwu_N!$*+6I*{!9@>Hzk9x}kyq~LfyHF8vAvMh(Kj$n
zu&@h*;4zN^!o#G2NFHtc_KhIw)(JBR(LeyHSmA$5uQ0WOmk36!nsByW@sMgIM9*?B
zJ`tKXaxLpLthh%GZ?JPA@HeB4FF^M77iVEGfdQmvFoD<%5G*_U*$?C-J+^v+DF7HC
zuUvxTW7Mu|*LmRPJ?CPt0tO??$T)_uG9q03*Z-!dy!G=J7Hbil>KyJT?740dp%H8?
z-z8i_GM7X}%h86Pwdu6_2SLvvOB6A>A|xerMppwlUFPhM%_wfia6gA#NGRbzJYdZA
zO3WiKNMAyI4uK1!_?u@+cqk!)XOpx!_*g6lnC5K=1UqfAZ0DFQ<i9CM%jW1&G5*DZ
zfB%%z;8UHBb^y8y$IXKa`36rG1c0G7ZH85$6GqygLaThH?E`U-7wx!=<sdu@z~LZ<
zN|4l)W)o~cFG1?mnYrZ7M$3;7kjR5U8zxnA_nWO2`}}L`%)W+zBME#Ig<5fc_r-kS
ze^>_S+h!%JPfy4l?Vak4FGw*Z-C_n9Bz)T;cZ7)|F=|4!)g=tRIUj{{PF@ty_@r7P
zpSGhVPyTWV9kWmYc>I8)Sj?e?#GQB^8B|OptFPXz;G;L5pfwuj8j{bWP@WP(1fJv#
zW)B@xy@?k=Y+vF@J|v`j-=0I~u2;;Yf8+w0-Gky~R=Sg6#Ebv1OK-&!gv(Y?H&MWP
zXF@|25>P-CP-sg8@EbgWPMdT$#@{&)(=zL(Q#Jr!hyfv99VimuEAW#T0gwXL3ms(B
zE+k)r!{tHH8m0xP;4jZsP^;h>zC(ujz?2e64|N|0aa;9MRESXl`Ic#+i7Bb!285Vf
zGsA_Y8EVyjyTV^>BS!c?M2`p7Vh$MW0R@gBLJ$Z==&A>T+{=(aw74OdI<d3g@}?+w
zI0JNy3e2LjF2ZPp&0cGfomOevxWBM*GOa9*ZT9yZnpSWk%UU^JLedtSxjo=!s8w~<
zqy%l;g{-#no)Eb*Y$7$COsBrULlqD6R;SJ5jdA1AXQ~NLO|Nhiif;2baxWsabeB$9
zm`vF1O(TYNVgHk$MXP^=j5RWjlW5;QhK;T~yC*^7Oz6M7wEF~mXVVF&8;P^_=QJuK
zoBv7wB4tGT!0^w;u`CHrsqoW2gK?YXYe;|YX7XaogL&GhoILe_th{^_`h)vsTHMKV
zY|-q=LsC_9QPfeyR@>6tXrW-k(&fPtMY^U34{dsU?Bg`a5<nhw+Pu8?arqb9?Y858
zf2aL)+x}x>t@R?xF?_-5?y;YM`}5t^#ME5-W&PNJQyM4R%nJMCDZlHvrO)NWp2XB~
z#^go_1>s@K#O#90fv1zO^jyc|Q}OemID=-T^Lb@LL1V}L&nc(K<LWl2WfO-zr^SAP
zMNP#xn#2Ad=${zd{r)Z{>D0?PEg5%fW4F=P8+*6;7vl6j2Laq)U%c5`eM;J&gO=z*
z2SY3fNfl@Wq3dx2$B7ou3Dws`D%f$`O{7YkyQ>Qt@sHtH(*dO~I;O^K%ytatx|EUZ
zO!Bu<Tp|1wDSnsF->R@FrrYuZJqrj@;OQ=*yrg|QfiI6EvnsH0?}@uy#gE82EDtEw
zn3XnGY{qcKN4a;8hR(zJ@ecOh-Tfk2qVna(=XyFOXnP#-x$9Zs_Q_OhbLn4<dz4w{
z2h&a)1*=zXJ0F@>#aFUUp4U;1me7oEp4D>H$|0Xr&9kIRQ$)=eZ<RH@Kex6j_uZE}
zfur5^X+QdCm-Dn=*LC}|y--E>{=-UnNQ13rn~CUp>E+y?&%Y$}b%QleLhz$@-=+O%
z`6n8URtFd}MLEg+JL72cHs<i}Hc-G~IV*b&2AhG*Xfg%nTCfL(I+INQ8|Yh{2;A@R
zc3Gb?gV>WPdRz?o79$nt5Wa}NK41B@3xd<ahg>$Fq!sneq%d^_N|dNlIX#Hac+Aa?
z7hAkm(k?t9Ic5hG9bOJ*j>JT42Pc_-x>3|Zt34jX<IwVUmxLs}P3(mt9Hqr9gv2bm
z@Hq>&Uk(qxe9H2$9}BW%2P+2*#U@glpXX-e;pDAzR;`)ZUcD5Ud6*%?sV^g>cv{|G
zOns+iB@-y)8$j~$-Mha#%Bm@V7C>eX@M8g6h8IXT5No@+N(>%deG@OJu8|d=hK&Sy
zn|=wh7oKxN0bU~My*NIw1>nQe%<@XgpI;)Gpacv(I;OTY6cZFz#&hQ^Kv#{7*Q8xf
zd<tBy7yeiNM_Xw{C+T#&fdb~bnr`~dXIHK}7KY*=OrTgpIVlngTJV>yY5v%XOF(lF
z2%fuMIivg4ZOJ|WCK3sO!$bhd4$!IK3&{x9=C70qZ4jhbb#H^($N-J^S^R}JT;_M5
z&nnoW<x-d457~NXyd-0~Roos;HlJL1NLcl6zYpatJL>=LJqVt{vU~{XyQozvSHr5N
z9EA1dZ}+n3v+#J{Z|gFBcHFy~{&tN%c4U2g^m~P1?e|s4ZQI2TLU2*XT`7v^<?oIq
zwR(f&ur6EA+n}1z{pZ|?otxEbns7w>N$;lv?rc~0YV5MRC%@Yaxm${Cue~Inf&237
z{xP*b9Sq)q#!Y{phr(BTJROvl6txPLwP6c;;#(600&cI;o8|51AF=0G34utKQavj{
z%8Or%wg&dgp91pTG)hmiS`BIzq%WAWJ?x8>av{Da?d$5RJgeM{2aZipghccQ`SK@2
zgA(4mJ=;^s7I<<lin@K^)%!$Jv6fVK8r`P3nm%uv2zffXOF=`dmcA;@&reR|&y?lo
z$y`8Tytgd<M^VA6V0QC5!tJB;?+3I1Ifoq!638|1aJ&>JkIt<A-I?XYRrvsj1uBFI
zEt>ELadLUx3VFFNXv8EyE{<c@yzCr;3pqk&7oLJJvKn#&=A@a0n~J`+(xar_;S5Y$
z%cLKxdBrXZXKiA!ykIFi_4fB>%Pf~pmLb-`nGk@B^u|ZPmw<NOMOdyya4QOT7Q~JI
z2bbXg#OSkzM9jI=a?tW)Y{_L)SNdqL@Y2iosfBIX%<Ru%gOAhMeD68HK%4Czl#U5j
zIoi#w7n1odRiq4#P`sT4DCg|gHJ_?=`Ls1-u7l)xViQm=<Ja02*f|g(@yxT}nKj#`
z=7;k=ED+Gdf_p*Gb_O_&<sGMO2qOy@NIk<2_O@S}g^wrV=G`Ck(xM4-V48}9{2C~w
z5qf2aK2^*x8&-or6<N75XZs!T4-f4th+2!`XGds=t5C2Qx%c(O`bFN+7+=Gh+4$35
zgY8Fa<aLIJ6@uuk-2$)Y`+n(Hb>6qdx1Fa;f8Px9sn4KAZOOi}YMX>${{AdLb<RRd
z*Jn2amE<lvyDbfT`ouBb-<?IOkh2;J7t;drZ_YP=_Q&_doo((WO|xo09#^+J*?&;)
z3+BA*(Ct{Lbr!901mt7SJ&jZPoGSbnZ*8d0KV?qqpZ{MbK~_eC_x*PZ<1D%IQCazc
zk(BaTr~mEi-N&oYOthW0G|ZR5gx$C16^4v2fB2eTHf=TC+n+L*kOzR_x4qqb=aqG2
zpn5WwMMukFfbdC>y(vhHIXbLn$HlOOpZ4-~+-8U$Szp0|el;kyMn-gq2;$*l@5{+1
z0tqukJMYh0mkFfatadO!`S1ko1}u_-jH2heAdx~el@IKVgpo3p8f)VI8&WV|uutCn
zc?)oJJdKXBMoNaw`Bcl@s_C}#lO}6bO!?C_ImPM0OEA0&Ga1YHMd#|VrR{WsPV;I?
zY})4|E2o)*4c?_WXaO~MB@2TJkSegP_<lj7-o{vQyo8$Or~6YTvtn!!lOBfQ?d%Yi
zuE%ZYU@BP16U=kOGQl(3_qmlijcV0O?(vTHbxJTnqMZcwwPuFKR1mZJ16%J?7acEQ
zvinquQ60U8+P!n$bO<3kbMLl&hufB?*``hOuJYK)l!Z!D>fkk<PGzPSu!!;*yEML^
z|3(cCgb5wo=*+gA&rKMwNdndTC`>QvrrOU!DVE<mOO8d&9j3WP>FMYa+SDv%GPJrg
zexP^%T{Po*`!}dHMl?vb7$_YfpXyrh<ZfTRl=Gj{%fLp`gzc6%Oz#m%bBF8SnY1cc
zAZ*<`!rec@oiJDF5_WbB{9)lT$x=91*2{KIO*qiTfcEP0a^=?(4pgX1Uj}F?-9tQf
z{wK8A8!G~`7CD~uq-C=W@}mAu{EXo~YFUr;>b#IuoG_bK%7qCmRYBv;7D1>}{ByTD
z5`Dbj`Jgm%`sYelPVAzr_Hos30z8_Fkk1X((gSuSPdg=MEPU)ktRO;p)E9A?SuDxS
z8ZEVFW2YIM?mLU%gv@NyzC9bI)|lzMls`qf_ytcqcw2Q=^DaDdSMtwz3hFiLfQ<BO
z2W9rqZIgI(1A0AM7~i}3ffD#lKVefg)udH3GxgF0q4%<iHV+}$u4h~Kz;xolM$cux
z7H}A_!66;~O5G;ut?{8}q8Ye$V|t!bn>&1$%Z7+>)*^o;S4MV3i&f^V)b&#5H5A_^
z)lq>Efh}asN!PRT6ZZKWRr!i&NQHlo$-m~We)06e8|%N=Z<fB9c{)h#bwCgY+P6k<
z_Wey){qZ}j9aqVE0OX0js!U~)UyEd9)!x}^`4EyuRSTq2gkvk9f2zi6n#+Q?eCT|G
zZ+@@`60-TU+aY7|rSB|toe#7%5BJ_Z4%)6gF832iOGo8X&ev8w&NRp&zmBfXEe&ie
z8481*@S57bVPuh=0&0Zmy}N{tpcANi&BP4U{JAnM?uVY^?)-SfARoz}fjaMBMsUJ*
z^E8@YYl)AQCm`m0x?HRcx<<pF<YbZU?H5Bvjt<v?BdreLqf$3d1deyG0Y=Hn^!JN-
z-`C0GI%+~v(rVuB8e3_o+qg8Yx}QG&-G-H7s9Nh?b9RynCs){67<q06PGs|(H;X$w
zyd14A_WPYRt&z(|-sn$*Y?OtYf3$5)A>%BV`1)4+I0Iucz<W_?IQPAZE-aD>q%8%D
z6@z9u!$#gg+(#w>0YW_TaN<|<bD9H~0S|Bor6N)0tn7tUyrgX(-I*Z(ti(V!rXG-z
z`Vv}VeWI%fp1~@sGk*_X`_ZB_5CrUkeBhX0UQevb0{}}Q1ek))OVBfXA~n!$$E}-{
zX^IDF!BFkEt>Y;6idoy6KVs8Uh2YICjuCGCf|KYW17m5*z9e*<QQM8ly8Mgm92WK5
zQ5o$A&K`&kQ&68)hVpLZfZTG~+=WA4r{aE@->W0v6ctjYmYmW4(c#IYd}X~=Y3fmr
z-+kfaGqix1#m3gR?Y&e>W#(Cu;wm87`MC|VVL+U=<dL@MUSw+3l{9iVM3sY#-|?-q
zR;FCB8(+4M)1m2RD+m`|nOWU3ZO!}iarxE@R0vTgexOz1yXtKALaC6K4nzMw$MWru
z&)T!9vR1TaVFV*C#8=mobr#!1uGsPXV5CICL9WOJWZB<dAw@JUXJP4b-mPRmuD9^t
z3p?oyAAgJfSC479TXX^BJafo;k57lDfcqtuaZgnG>*|`gbONJTeST$1FPQ71M1^%l
ztp2FMTI0Fwn<xj)M8@)WFNe<=2zdTXrkm2Sg`BNt;tnsigaCojk?kK(z|KI24->;L
zTR!yx7^`Fn43`37;{k!UD>;CT9QeK70(A+ruF1JChUI^}!PNgbD8uP<ZKCFGu=lVA
zWIY|4+3AS}Z2P;8d9VLDHN%sUpAT=nhcA1qCVj33b=)+lAZO!Ipj9~BWqALMJ3}+_
z0i3#2R%`W6k;BLL#{|(It)sxYp&(dIOHU<+5jjZb*7G{tD!0v~WEfgds~2J<%ghXM
zuK3+6{qoPQX*KUR!<A<pT!=uq;_-6r!*M<q48s`r061@~op-ZQvfa)*6~PX;)n3{0
zv>D5J(qbpOe|Va~>-eZ-V`A^J_EoL?xr-u8LN;uvvFMwR+0pNgJM>{Yi^Ts$+gnFf
zwMBiy2a!@*It3Jw4(U=-NofHAMd|KNkrWW6yE~-2TUt5}-F4_X#JBKX@4fGMp7DO)
zKOf@^#y<P(z1LoI%{Av-bIvt?2cn_E$-~C)hOTl&5j#JlU4-ZBtjO|Q%%@?!oXe%_
z%cJYl1gPn^w*A*y+4NU8DOYiAHzOvaloR#+D<^dL_Y^{6$taH(uHrzNA*fCVBTlTC
zLTLIp=)OGEhZ&`rry5Xep|N8(?|h9oeOc)kI8|NzWre5Zlj4TT(q`EvDCe+d?ShBi
z%6bH#SnCK-@0@DXT1nsLcS7#ebAYuGg0jCsCma}VpAEUi<}m2RYN?iL*(i4;vLo-_
zqP{wSOvxuccd!Re5((|9YPqr=C`A%t)fsSYp2B7gxh@ci0h5o<@tTzL3LUid^CI&!
z!ScKL$O;GRQK`UBsNdPDUSfL@=gB(T?%|UzIi(KIMjk9C-N3oK_lJ_M_gXC-=*8vb
zG->*Loy1$Toesq$2j+#ZM@#XL7<;bZH}%oqh~WEJy9hc76&u7R>60&+e(JCZkijgW
z;-^Xl8Yv%lUB4_Di^?0BAHZkS1O{9L5+f7YAaAt7eJgw6UU?XTkgrh$Y0C6#xCN~*
zylL)AqLzrEfb1Aco3*A{CWgIl3lCpJcB1}v0#{Y++W==xxDFEbdM#B>4K+xCb&Lcq
zpx|V;)>~AFR8UeHHHB`<Md&sh<2{WI{Fu+_0x^%E*z(E()72pTFqITUeP04CfeQe$
z{DEl%b_F=iVZ7H__<{BI90_8pb_FFvL1Ro|FIK?mfNC-@adk3S#2XrJ5OB?!?z*n@
zJ>aUf0XEC|EzDnra@Vf7f^zyKUDlr0AjpF<9Lb&jVm?x7i-8^t*mZTcohOZYl{^3h
z-H3zCI&>d+^MG<B7i%2P$noE&668rJy-;#svGUENLkeD0zD+4t-zGYaT|T4RM!Bo5
zkDW8?b(cusHb?jf5nBk6S`3&7@Y}kRx8>}ED*jW>o{}}X5kS#F9Yi~FltJ%BoISw;
za9$Kt6z>Nmq)DhW`c;&h)JR7S2kTu94vI_1&AA+KTSC9c#-P_|)p9**W8TpmcgZSR
z)u+ABDMf%a&6RJuwRv;E?EwlHGIF`N+fVJ9nY`avA1gENSp5hKas8CS3MaUo9|VF{
zL#tJW93Y#Nu@ZuUHX`*0V*@7P-!B5(9ul=wnjGyq&CB-2f4OrX=0U#-Qfko3`$SEv
zy?!-V0-#j^a>NkEomod8;R~8|M*licd0T)y8@eaX?Km0xG{uc!!&49B#61G5G%$A^
zt21+IDv&&L^Xc9yg*BqjU<;jZi_(AAElyBLpWHk3IPd+^F2pAIfRMZxHJEFjKyTSF
zIMAx5ntwW9qMg+c#MS@uO<E4P_n@!UHp4mZ;KIJ}0wy`av>f=oP=0s}6930x-Z;QR
zI#uG)Qvh7OLm28HFL}+4+dm%GL7kI&AXG4be=pNm#mY(>8R;GSW>lw|ZSm-v2wnC~
z83`!v&YK8tgyi^L{>-JpTs$cx32s2K-=E#`5K$5nu&EK1Zi{N|)?m3PCspQg1Md3{
zP$8W)&c3y=h=}E3iN-fxzyal?3qXIy!z4VJ_1^=iiX~79A3y^PyYvV(QN7b<PQh5-
z?c^~;DzL3m4|!6Vg_2T6-zduer#Ag*u1r3WFDmeRYq9!)iSZZc#XaD}MF496Tp(0H
zkQ~IFx`DcGdf5iN+VAXvi;<7985G+kVFsn}!A=R%5n!vHJp``3%_YV)2nqlNkm^u$
z4*vGUX9=}upHX<+@S(VucP2i1AFIPq3Ep2Feeu<){T476xcURmfh7yd{Zpku_s-3G
zrE9HVuH0gj*np;indjnPle`fyKMwiv(gmu%j(+#&-G7k91JUJ;@WM`hb)gnuEcpLZ
z^dI|oN)3RU>ToS1P0_$bg@J@=Fr(c;9sLrXR8og}8OA@4LG`{{FhG^Aoj<qcy?6bX
zD{NA&%b4m>a#fxVkhNX8iPSz(%<G~igUCd;)z-Uim;_QTtsdZpzoHp3fBv%h?SB5t
zAHN<|$-b(%e-^>={4*H~55WUdV`?YvWSW;R<**T`Bi!#+pg&TcrXH=EF~P#TMKS%;
zI?T_W2H;lFj$!8`0cZQ&O(9_0zvu=dTcQQB^}9g&K1d!|;NFb?dm__Li~o;_{AdKM
z>8J1fiy8rtY1GH%sqm0oU)z0qSRe*G)T#X-9s&~CefGj-xFkLGy}Ih9MQl+({Dykz
zF?9fKmm&8Z*XQObaBMxg+092KQ^AnmUUWrr<W+#?>mPR}#2#c%^TPtsma=3DL*$Mv
z<$v3YWbh6}MEVU(X?x6!p~Tqb(7HxX4=ipFGrIMY&pq_<0SfEyB@EhQ(ocI=3AjuF
z@*rLV`wCM21%R!=1Z+Scf2$*49fA&vO@NjDQ0k6@PV;STGvEdXpnWvi`agjM{|MNP
zb}kL12mlgbjUx_tw~V=ghNKG60Tu6?>VW~{ec*PREAxlkP1d$V2_STV_8*jVfTYw)
z`1)4t*XcBnE_1nZpS=bZ-~i~w)-B)tJuSgHWD-SS6^u=nBJjq8<SaU4im71!jo-%6
z*MUK_?glhqC5^Se^90FSNMg-Kfp;KSJ?||TU3~InhDPcZ7kOS<`pl!gu>AUv=jB%y
zAradzxR4G3RqWqt9q_LYk7}LA?~u}`vos6<|3f?%4A6E&${+m(&^QEPC2v>mHVPsG
za!9g4_^H%SFYtcqEv(OwAof`(wYrluZ}pI5fpWC;0Zm|&J?i>JLRCzU2q}Bh`S3Li
z8$hUl5Ru_;-`^RCQdt7pxq^b(z3mR7BT`M5Zrmavgk(YLcnzefqQ<pm=#WKaiQjOd
zhvGROAx*osAJk@0Lh;NYub<-IHb8}niF+3Xt)xuiWr`3oB-ZQ$Nb2_l_!ek`A~Qe#
z@h>6IfXxa{jexS#fObGzj{uq37X32LjSLcqUi_PnR^w7rl^7sRUIPzK`)EGP6+~Ck
z;h~^~{L_fFyyVLWUUG<r>C)jb)Dwt{X1`M?gm@0)`U-^U!O-Byol*e}0z8~rEYx>-
za=#e;hV;8kCB+lpD5Hl&mrW!v<9%i}0DG9j+c6=0!HQK!_lX~w6S!DcFIt!Kh}@Da
zmFUsgb8mSXYnqQ~Y#0!^PzT#dS|AXqM){lS!3d9-dx98Go0U@k?dB<w?v97RN_GXn
zXdocJdm9`ToWs};JmNKAmOZ`GgsikVgMxMo(6KMaKoX&t27>+-4Q$uinglcsXo+9J
zvB>j0#cY+I=hynF3QswWk*Ee|`2#<ER2M-lI|*6*%`c~pU*{3ggo1r2sU~Z(gK>z>
z6XBh!4)Jv;ACEC{caW)Y<%d9a_)Et*jLj3Eq{>L&_Zt8VjcCcf@ON_<uP&)a91sZ-
z04Bg4A4k;F<BBx%#A)1^h@2piTd>$eRm;I=<b*jWkgT3zVS&%k62=YEMC%#>yytJj
z6Eio!tBDNTzD*BFZCW@u!jRYXU>0`vdy>EmN+%TmMYVdezo=Fk{MABl_qBpdt=Xa^
zl<?Cs(!u|^#&bpZ{24@u;9w@*qM2ZUp#<6$^|EZuy3$5bl%XM__=EPR<^C4et1X>Q
z3r6o5OvJR|{h>@3JKNYy!@!Az{JsTy7oP9hHbpHNUF3diuTJON*3<DJi=a9{g715x
z1z)zt7a|Ji;-+$AtCkG-U$paD8noPL9&sre)IFfNn-!)f@N$vn7&(Ci1<kq=8BOTx
z{BT!(G?86w$7R3RmTb?Se^13!d}=x|_14n7rmJ7!W$QX79jX*|%Er4L-<gKyFdU0V
z-kAH<U=Nn)fZx3U&O!GApFR86O!zq)64@joAR^r6)_$0R==L1dzjF~SB?A=weu+Vz
z4*lv&Z#aogUM#CaiJW=drNctHc0QMQh|(Dgz;n;Bik>}YGW~ihLUy+xemr_0kqdj#
zveZ7y#q?+9cs3~3q8*jd|D|toMo_oB7V>Z^J%H8tvnG=4@O`33Qb?kxFk72pRloMt
zXB*|{pYAne1dFqaq{_s0O;b?u1T(^o+P-|cTix^NF6GNTqmL&z-|_<3891{tYhumP
z{3K$nkBhrC03Z_v-q5=DH#;X!>^Y1V#9+HlGF<=*GFllrk}=SrFU)aW#b8#D>~}j7
zU2{)$%*339*o|=-Bk$5BzkDwCSh*gTxd`QsDB5fVVu?mJc*aA#v(v{1LYY81ppxbp
zAYV7E?8$CnLoRJrE1u{E60pA9UB(S~7fa?nLjm?VOWAy1nElv`D}vf-#n{t7L6)Y3
zxp2Qg;VC*_utE{n2B#F#r*Xra`4dZm+F@NA^=-MRIDB&sD;&Nw?KH4Mz*pUKLZ0ts
zCSypkk>3wcWSZF4I8DxMFvsdEV+xLLIlqCaTpo1gDER9HYQhF)Fm_NM8~X|#1-d0k
zvk{PIn7FPFn{lkUCA#)=LK@8l4VMHUUo(T>yqD8{FZG5zj3jU5(_FVwN#v?iU@8d8
z*U_U1vF3^Jpo<T=Ke@jb7lmBj?N_Cb`=Yk_5bRX6nD_enmGN8CJev5Bz<^Sjd=Acb
zCzXEY*JML<DzF!_Zi4o4X3NWPLRbH5kwNu6c6FwfhO%cIj~|UKsT2)rpT71$?_7IA
z^2YD;U1!(V0#s=fntey_66}7A@r}UZ5g;^a7cXWTm{z|aVd35y7sxz!%!$Z4d9`+j
zp4JZcEr_dA7%Iz{`pBiJvZ31mjP#9%#r#?vTv4M7&D9>n$tn!GeHzE)<bXxypLu`!
zO@U?e(62(BN5XcL{G5{k&{}~B+?aEV4SvP4)oHRvw;~(e^2~xrVBr2Kdff1iZLu6y
zPl-V1k{VfLxC0}dVW7ewNrp(8>N@AFU%)iC@ja49=2-k6Y@B!!^_;N$d{3p#d|1mg
zy4TC35-!YxvEwBG@n8IIJmhPwpa`?(1xxSI*o3ch{BWyzQ1Zs}$h*!GG0E&1#xnT6
zZFU{uQXdWyNdA437D3VHGv0)TPsciOE<2FgnEs=nz#3A0_R})gizUjt>Ox9iz7k3f
z+YT1ofe}luP$NTGcemZ{{H1Gvj=ojTK<ji-Q$CWWX;K&;QHYOvHT;J0-iz5#R+L$)
z$j*c%^O+}>U*}Pqaelur_y>*{4_@2}5@;G4{G~Ut#jg0k68mA78_&>RPy0(zf~=_*
zyIe3yt103jw~wZ|^|h3>q<@>kx7PogRD_VRej$kA&gPnvwZk@k^MdWb0l<=3v1Xcy
z7+<i3_HPt3c9xJqEXgd&dCiqR+w}<lUTyugeApG84aJK%*+s|@S+FXt|3tIVy?@_)
zZO&tlx^o|rtoU?TX>q)WUQRj$(G$^6o>I_lhhGPtubmYJ-LDn)VB)1({UE>7px2}S
zU5JB;je#kLj)lB#mnz`~-XnY)Md`U$N?<>AbG#Jglz8KzbM{iy<n-qHK>p@jJ}DrO
zmAUGH`FZDUe$U^ZWbdVr55-e{l226CmKjt6EBYIzjdE)}c&M0-r+x7spA%ygK<BRa
zd+HHsAU|@SS-?Wd`3hF;HRQg8&Q`n^2f<hy7uanJD4|+-vr_T_bEO6BG<sa8UvJJD
zqc-DeTk2~+Ed4~`D$v-g29budPdYd1mjlx`|3IDr^1g0HIP90-K=HiHAL)K7ZK8Hl
zksDE|B>k8{(5N*Q7cv172j*O_{M5{!Wze?krPIzdxEbkdqz<wJPv+ax784k4n?wP9
z4+pVrC=4pl6Cxnb=Zw6)F#Kk$kghJ_0Vzog$X~^~ISjch{<rVI9*-tuBCp?P3zPW7
z%*{}qQ;?PAaTbz4z-g=^6YgX^bq}&uG)5_`d3Doph6AaZoN<~T+!)&5*#45Pr8$PT
znkjt>_8eU<S6UD(rwdjX3^N8><TKX0rfuljwdR)8c`fWy-kbyvxG#sL`$P}z=geJg
z)ECY+pG{=vs<eZ(y5Y{Y%R;#WnwQ#~!2W8O&A|3tSX9J8Fsxzk=z1qAm(-Y)|9UOy
zW)rK3lIFS4<=H2ZB`^|=&gZY?Z(bTJZl44*s70(IG?h<9j?W3gi*($z&w9&iz!zRP
zi^u7HQsbGun{;K*&h<^hRi4j8cH_lF+ArbAwQf>aV!gr~*N5^o{Y-%d2PF|xJb+8%
zR_<Z>jD_JC`dtlp4_>*i+Q{!J)8p~X{MlUn0=o$>!f9w?$_<bL(N8WkM1JKXE#h+x
z#dwVjT$7wP`IrlcD3}T6raOshOB9jyZ=kHt*r|B*-t2@l51~Qcsqc0+x^W2e?<8Gc
zw07^aHM+0-m~Qn>kM8lfSyuU^4d3g})uf>2;7loXc+E35*yR(ahcI91A<%ModF#aD
z=PGnP?*mjwLn~H*JDA<|w95-joT=pGW%GUV(eUG<ng@><s=(ztd~t;b!;zqJ_QZjO
zwp*69_`;gdwIT5K%X^%vnu+p5Cdm3z!qE0PF#SvnKYC*WCezba4eU<#0AbDqO;zce
zHxNfKIC9$AleHh921zbHdXuorGyH|;90b#V;3jrVl;=(Tew6t&s?!G-{A-r^H2-jy
z=e-c5@A25*<6`bWp2_NEJPA~%FVJ$k68+GP#&&4DGvGHsCSd=*0~EdPJTcX1%zbmg
z+_^8%Dc|=7%-p61COAdDBI}pE$iCgnP|5~8Lh}8|wUZ!HgXZM%DbxPs5*CU`J3gpt
zt&ObH3vsIuk!Cug%tykAkYC@HkO&p2(iK(1uZEsDbXQ!q&GwNpNFzLCVX$*FJpdkY
zJ@Lr}IhrRl=NigAgX?11?K!O*4VDGhOO!J-=}jLq9=q*t-Kc4eQ=hq22`0)5*2?E8
ztmxB@SK5}(Cc@GF5gy(%SqLF5Ge^ls*pRMn86(pjf)Zs7e&;1!YW>PeRK2yxQI$OD
zYu7UwEv3$i+`wdqQR5Xtq4T!p4}>?zAZx;S6uj6eYzFci;W===53jiE-`Iclj_L72
z_U%;qzT~|vB6Qv>ih`MRzF=|PYwhavehlT*0wk}N)EZ<xdEr=!wQr}Yu?X@E9xB~G
z8O!+Sf+B(HHImK)`>f0wU^N7FYi;q6h?Ug{zURu8*)vXR_1__SO7GxPmd=wQH8eJA
zP&_5sk!j7Lv^MRnofRDN%<bJAL8YId^(Ot@Ad<KG->)r%uST#M&c{I%)&1-&1H|YS
z3RHlq+<9|aN;tQ>K?$Oz5}jGVkBHXt;A@wt03&<|Yx`oBTj*w`@$8+AB#i$FGomN<
zbF_P}SQo^p5nGoQx2_lV+s+IjgC?A}!A>SqN{R#@&31m=rBujs8B;1B^ia9L!02f!
zYw<t+Colmaou(*hIq^s76}w)mClrvbJ{j#d{5Z6&tL1vIglc0@EPXo5z*Gl*QWP5B
za0kK$c0VT5-SBzb6b6H_pSx+Nl<dqBnU0UGIKl|Ib&$f>Kf^AUM@Q1DKtjPw;pYk?
zH<w4{I*kB=%~o83NJT1Ruu3(JeZ3q+Quu37;+apG<gX*RL+4C)$>O4g9Jh7NMBz0N
z;*hV2xL6PiN<m>RHm&gqtKFZn`-fI+VKg6<Ku`=>T<{CBmX&*liA9p})+S|K^z|_V
z3|mAse0eci;-3ye5Xl_k;=ka9#?>nh<5H69JzFQ3=?891-pErUy1GYg;%*>lffA~H
zxvka!PZGXp%`DdgapiBQNUoPT(EZ}DxvO&%?;yYM)+fv!OCH*1eGD+$V@xx3o$KmQ
zVNmwVJC!5p3P1-nhq1Wspm?0J2!}i)wKvnEsXHEN)vR?!xw*R0-rOXwS&0#@a2W<M
zPdLNP_2H61UeZLZdbTX-1HEgIs#Q2+c>S~S<}wsT9teM$v%Fpcyp_zG?e<C?$DM@a
zOd<Hp^-=iQ&Gkl}&iQGQ!zqT_{&!0M(BL+<;6Do3d&cjzO|eVWr#*r5NofnGnQdRr
z3<haf<jgzkDcwO6nBsfopwWKTFJL>J<$bbFdCmMV{RiSm7L`-v3$B7K%_Z@}D_ra4
zJh3qRzbx}&P~YHhlV$!|!4g%S-jekEsSVXH(>m!P3<xWUZRG<f1mc^LM(v$O+H&&S
zC!X?-wdP+p3`AAIDXF_#CLy|PM$Y{|Xrd2MXQm;NK-P~McNYF#?&5cAk%obRUo#XH
zzXoXi4u}0M2N|LNaS;Kzal3H(=k2iX{@3;M|MKJi;XK2>i|}6`9qRw}NALf_Z-U10
zCXi4|dO<#Q{T~e1yVajw<KZ9O`TaUGLxadvJ}YO$d9AuO)o&t~91}ZP|M7D<Ajf9n
zp%*C9eQ^$+Ony%ko0=_-yL#&gYbpsauYzt*gxmdE1QkpE2uTOT#3$y7HZDAQt(*cv
z58nT369dz!UDx00mKKo$%vdM@*h?n-DeX@mw?8*^!F}UaJ`);0Ml@s(1T;@v`saCF
zS9Jo-pgBgTVGIy$_?w!RpKm>3>Qlph(1jNFKmGd1_RgV(?bf}<$jHOTXVhN!?=P%e
zM)iKwzg?YRko-FPG|0`j@BMim0U|+d&(izf_x7qau<6;nQ~SfQC63V*ys!v=M1c5u
zN1D6ieR&GPKlBMg4eATH2b^;68t!36`L+Jr;{Lp~&Fu!7yQ`#2^TiVXxOan$6Yl)(
z<)6-@G9FXv!X{JjVbfut8dYos<hjpe*C5fG7hn04=bPmI^x<w4{oeIm9#pERLhg#P
z)BZO*EtIbm!n?CsdS7X3CCV${X}kRC4;c1$Y$!Ycd}?7S3g{Nx#njSY-$4Kw^6sOl
zv8CgsuAS)I;6!18i7g4IHu8UOvqI+CmK&EYqSRC0^^(m4;p_Gtkdp>^J@?D*LU)Jq
z+I2go)4uM84YP8()f&JHcujXzS@FE(EAR!oydCiV^Q`&V*e?|PHo+@Z1}8A=R8rNr
zw9J(H%#;LB=z^}l$MK|?oFYWfYWISS^zxLl?#!d{+U7Mg7S*zc$9dMx*@E;TUnTb(
z|4q>x9J+I92b7z~;W6b2Rxorl?a$}{D&9F|Z2|@wbd<kL&#Zbf9mO*xEC9&zv!nJ{
zkOQdgxC2cAmKZDPvF2E$gDuvx^5fp8nS;V_hX>u$8dLz3oUDzOl7Yod*ESq8RMvfG
zy0Kz1!Lj>a6A(;XHc4ZWsdA0-=$KznVKTx8`yim`1Uhi{rJGIGk9t;atvr>vY>POT
z9*cShibpF3v+l5#w<odjCFmhvYy?81$o>@s5J8@I<`GJ_DLo~MZA>O=c!gRDs1W3O
zE|A3Y&hf1)1Jl!n^1M)N_NYL5kmp!9T0WC)kw@2$;F(w6_lai7<maIY$yBpJ@cx>p
z0Wg_O?Iq1se}YtF3CY-y_!{e@UQWo_0A+*N@R6GE4b?&`SV)iy*jpKQXoN?BtQChG
zWhuyyDYBwEr_}0tzxUCpbzib5W^+}aejZ3_P<Gk12H-4?&QdMDoR1gP_XV7mprzcK
z)B5=*Gri%Rr{+@r!T0zME&J?GF&Yn6_h-EnvU)HeXjTf8Zr0=7huns-?$;ZFEe(jE
zhSW7Qj?%^0!QL4cQ~h7w@H&-jX5-aca1!EtDrCq%a0nDFp9^xv{o~~}qQs>vri$va
z_^1Sp_$VrW9#pT&P;C%+@BdbIvK57;Q)F>9e{Gg@-qmVexyCQ-)V^RFg|Dwxz>MGt
zj8kXpIn@Y7G|2bi$Wpb<M7M3PPJ4@7Gecp^GjvGR+eC|-<%s5m{ZOHD_{P;Vsb+2C
zO^`6!sF}P@?$!TD&ujbCus6m3gk@wKTD)62AlOo}?cjd-vn^cQd1@hch3DGC{lr*N
zq*qPobQ>{F6``p!aV8-w_O*7n+k!?t5i+0k1wGXx28=Y)e=KFx10iIdyG+Or6t&xo
zZQfRmeT|9zk@`q&CR>@+d;LR5uyBQe5?Jk+iMky3MK&)KOFCHGeWfxbJx)qFUH?>&
zSLmtG>VAD(=Mw{v4gzL2SlR<~hb1kaHR!z|WZvnTgVLRcg+Z_9;^5n5Z$-a5#Bg_=
zoQMS86S~9F-vbDF-8Sr^$q&CkmPD9utKQmDB@k>dP%_v5+25DvV4+1rHnL!=Q>A)y
zbZrKhb5$?ndPS1bt_C`4$Mnkvb9@`*4?!24-wo%2Ri31SSvs9%)!Tc%>MD_x5A@t&
zM=Fr$;t3WNZlNltW3s!<|MvV&bgFfyKP#zWEJZ@}&xnsX5YO&x4_DagvJcTl$562m
zQma^Ou#KsJ;A3|cqghRu);r$9l2q2mY^q0eJEUX?p0_5N;UJo3D)pD|!>W_^)P1zY
zo+gSSGLi!iA-1O&8)dQCsNa7Ga`MV`QNNP&-=QR#expvmn-~*GR|kkdbyxBGVjX$z
zJ796v!hNZdmjhi(Nyoy)#EG!T_)2q1jwD2Dr84mDusxIAnW?)Nt&|r6>)d^tQIc}w
zt6W{O{4U+(>gt5|>+$iur)H9m{PV`me=t^>@8mk|v>#rUZ^rh1DT|Ia+!p<t*%8TD
z9grkVZQIt*Y}Ykk0E>huCOR-6AX*I`x;uMT4!exa%x=6~ci%YisWOC|wLD4c>XAb7
zyh*CB4GCE^UV>cq=UdD`F>vp^LM1`nm9z3&d>t6BXn4Qub-qqYIDx~Hs@mEoFHx-=
zqU_GECw^c=-a!hyOl)1)?w_f)S?llBUxPAeFm>bK)AGY}X6Nz0=G08_3TUwMsSnN&
zqi1*;u`co`X7ap-y_E682favz_v_ehH#qzzHd<1W{0va$66<@$pr$h8L{G`6VR<I4
zgac*U@+#rvn;2P&(Vo|gzsztI^QOEWsD&ieI-Rdx(H<k73otXQI!az5iUbAr@T>6h
z^Qsmt@UO%bGxy64WHB;7H5*PL^lP21wb4F$By>ifIQOF}J$zsZ?X$Pq!16*`r`go;
zFOd7lqf#fhHF`gh-6{Tg(@lQ=_*sB30X{wytMRoHd-Yo?HM%e87`C#T{W?|bmR)Lg
zTO;Vx6(r*V5b*b~X`jUS%qhOclAnWrZfpwFwb@X2G9s=nAVF$WU9A{fg-(4gVKmX(
zSN_;G@%rs(kKS|xhbX*^125<#smc|ueKeEP+D7eFo<WSGRYjmspX(Qt*4JZQxVT|z
zY+9uc57SPFrH{zP;18Xge#65*g{@E@>kbdqu`a93)gBcTdb%|Dz5DGK^mcclLVm0S
zZcesmoLmByi-D?n1rsP)-%LS%Cr(oMY=sfIfh4IWgN;jEqlfy+p_44>T?!tn&pj*8
z(9qf<?!iD|<nA9-ZllJ15qaF0<a}0#9ne;kN)1gx(vW9d>|}$DwVs_G1?wG$qy+d;
zXDB|H>vJ|I@^kg(3V9cfoaVoh^JT0r&tgVRDjz+`D$uS*HP~}HBw*AoH8(ly<5(ro
z7gKJXE7FQvEzsb4(RWKd$Q`nx&Q9o4E~=gR9EN&6E)I6Qp&*YDCa^gb&;iOJsID#E
zBT=qh<$Ba4msdfNcm=18&@j_`&$ruCs2k?#zn#w%%ZbWow|@dyLzOxDsKgYbt>qPs
zOa7$u$BQBpb>Cxa2ePp&K|ei^lQ+z#hdVi&Mp(JctEc;Mu-<JcxK?hxf`l`9IMz(k
zT@xo$F=xk&u>)&I|AXEM{UlfRN+WC{gT|oHrJDCqhJJvUcTwY|$lP>>Q)}!KmYG6z
z==9mEP*P6^{CQR`3T}HM9N9DHHY|=+vzfA`gB4OOzDhTtm0rq5w^A+T8CDkVo8Tag
zG~c-qi%y&&`Qazyh2s}(IX2?$k7+w3cmf8xx?OU=^)dBEUL7;!BHdC*=zVWq=<az<
zI{W!peO3g$%968}ia?UtE(P&-+XaogNu4{;jOul>N>;U8WyPG9iS@pvJGePtS{K%z
z_-EWpczZ8Us!s+zDQQGCL$PQ1o+#o_o<Z$W)8yGQNEA4FPo$VLVskUIXlTG$WpKXz
zqY@_0GG{x#*8OQGf5_nalRX3b<Xq2!AWS)Jh%Vyi`tn=q1N-s}k8$z#wvnS>)rd8f
za4fPb<IA$54)g>8Bbi#vdQzVeqp|!U78^p9Jk{f<q^y&5L1j8T^S7s2%=<%21{J1I
zax0iuQjz>P^NzDE1B_F(+jooGRI}2`MMR_|raC8~-0pBSIF{3l$8Ku-;@Cv?W`PvC
z>aaT-cXGwTr132A*?T-esCb52X#f4yzCk8p-itVzPB}`xALY*Fxf%s00~scA@q9_)
z@rqA)EGGsL%1t7;-RS9=)z9F+?h_V0#n0s`h&@`Lo$Tq+s?7b7eKtOKU1PbQtC3-h
zt!S|5qfo&$CRU~g-<2h8)$c#MeI9HE&B5CC%xD!)N$Go%!4>TK(@RRqf$r}eV>#qU
z8cze(uUoTM7{+z#t$U_^rdoYR{@xL~yzeM>1TC9<nzJD+6US<DVsT0-c5!iWxp(!*
zqmlk%>P@kAYs6M%!nRrG7h*n#SzR|m{9uVv+w&SXl#q|<1}X)cg02&uk$t3j%DE@x
z@XYkgi15hsGe=9J{tG+lkBXCBL*L`LEspxyhH64f^m@k0dEIFra~7BvB&X<{<l&QL
zGb}83b94lgUhlmhxki*M*D!<IGd05P<98phu(6%{5g*d*3In)C!y(3_JT_5YGE5<`
z%N_!G&ces`-M=n@$w`2sr{oB&H#L<8_uhrQ+3v2X$3aV9f?vN@!~R2BsvRrWpDS@#
zEtrY?Zu=EcaiVj~Ok%L)8-dWCEAAl-YTO{70ZDG#)}ZJ(5;m6DA)lTVWeTXHkS0Zx
z(pyE<w~7*C?A0Q)YSBc*>*I-4mOYJuq^YEPLOII0OIiImVMRq)ID)QtZf6rQUY|N=
zF&c|ha{}n-`M9{aw4=`UhLqAeWExKA-zR9iC@w~ubLF==j7*UC#$kbeWx*rz7ZYn+
zJNWViLtNy2@TPl)-ZzZ67Hey3yEuy(JOW~T=)-im$Kp(k^bOWm1W5yj`v(tGiG^9t
zjw>6_1hj`GFqn0!*(~=aTux~MUeZUn@osO~ZB@p_M)UCV=WAEm?G0M7$He<T!rho>
z0V;(|-{}4B^70QsQ=K`4w0j5l1L#<|h1uzy0dS6WbuYAaXJ{$<eHyJDOt36Fy={Da
zt)s72R8pp^ug|3*+{!B83ONLDqQ)>S29Ln*FFlhda?GJ4K%#2bx|<AsEjqiCSf8*1
zgsiVCZ=nn|RqFcs8K4RUztz|<ROKO_`|<HeZ+>GZYa+MDzW2@5Q*2cJG825tBmvzK
z?s1D5Dr%Y!qLDq1sS%64!iuSSO4zHZ+3EQN1(hln21;+ZVdIa*#oIX%^O71J?dIo;
zad5EwU($z3NQe(yuT;9hL(k4HmX}wVG>hH)Y6@x!E-=X4;P#G{%sZy}OoZ1B0;b~#
zGwi?lC+Xx_v9kz5qh8v42$Lv!durE2+XsW9BpwG2dalW?=OfiBpY$<|@7=8%s6L7F
zxf>HhB$rr!8J83#d*PJxIp)<C?TWlD*hRDdYJ+7f0CCTLWqBE$_~f{W>I0$)x3KNH
zm}Q?QZLmn9fJ+uS$q2*2^@@{?yQ6*{uMHtFi9gmZw9I)W^@CsK^c&49_EU#)4Xtxu
zH)s0<4mb+6@lfi1|Bgw=7Ybl+Hz5c{NUc<my98wa__4k>^u0l)?ihoTzQ%Q>qibmH
zh@6$LO75`5JC!m^77z98RrgaMuPlahHwwv3+;w<d;A1L!xZQ!Hqyg)LVGp>?XUTbz
z$7i*+D$O;74m&NB>5mhy`~q$tTnQ6fSKXPYF+NCVV`JN&ZaLXJ9px#z2Css-Gd+`U
z)C$0>DOpZGxp0H4avcVk!EiXxP}HgZeCz>=@UzS`=(XPv^a|8@NS9_}oKo_T5JqM9
zyvR|;B%3g~ihbM}>dR@42LN>s*A<@OFsawnWLJIcXPJXR%iUpx$EEsm3UuKYSNdzq
z<tF30u>Rx2)$6nAB92kx;~b^6s<*q~P41W|)1;0v5bVx0ti~)TD=H3;=TC3KU@n^z
zh2?n!0Ps-FC}!CsC{oQd)c&k#48O;Hy4VgMCxO=`!2jUz-Z!ORxvIz4?wdZG3?4Uj
z*D})5HZ%NxF~ubj+0jv3VU3mG{UB*#U70T!uVKnUDg_IbX)c6OFAstO3z%fu@sZ7K
z%Stt#+4Kr?p&>XjgiEPdOVPKo+L<6BBag1nRo0$$`v}p}cFf6<z+Lk)^0(u|M~-NN
zMQslY-e_n%GgtQL?7zaI6jv)!E&qn0lP!5Fcb|}Hx=wF=J?zuzwjgyB12X#dD;Dz)
zsgW=B2wAiqrzT~3@LN7-p}vRZ@m#D^E<S;ELsE;~%hLm{dKU-U;1=p%<6u^#DFm*8
z(q5=QYs!Y}ccwC+MU7W>TlQ7%I(@O6zv{C!v&J?!2;;agM$1d`lxkN2SAAH*)f9NO
zNB<NiG4mu<C68-Eadj0Rd#G=Efr6s2=JC$dv*CI}Y{j*i^PXa>fM!m_U0-2V>>!uZ
z^;FH#JcB588-h*gsyz>3N<sJ4P+_%|Rs8VC2wa7?BEN*kP7?TW#6}vlq@j18m75^(
z@$=5slco$A+M;ca=jj<6i-;j`<`R<<cXU3%4XggF{^`PwS*u#R@qKMa@Fus>uOCjs
zum2jIJtridBbi_fg{32JG}^WShwO#Js%R2|SyC65TBT0=M#qSPzWbl>9=B(RJtDYq
z+X!r<rlx0lTHq?`yib=U0j;r{`C$bweqd1fd54RQbK_U>&V41Wdj*y6X1|C^%7swC
zcY>!KP_Q;-#Q<B2ef(giXR0VPWeC&OvQrWxjKF&k7B+NWf{KZmiHbTb`w|;nOcyl3
z1g}-5?WiI2mC&VTcluVH5{7`2qmnx=l@k}Frqj~oY3zkCN=Cjz|4}#9<^9Kx*>kxv
zinQ2hM^HjuvXJL=gV{ghy3tA5_Lnyff&Ff4WgjlBcXae|f<;MDQA!LMpE_5!n3Y4i
zP&tw^EGMS8K`GJ8%gg=T*G?LfT*zs2`}2dW0Sm0@@dme^43FN<9mHE+KH{}iK=2HO
z_ITrgQKZeJb=aL5#=uWerZ3X2?Ow4)G*-@Y6{W^SMG|}T^t<v~9!J1ju~$7UouNz4
zc3W@GWy;Jnxoxbh_^g-13xgz|zq6w@9<Mkb;K;lb`0%rBKW%fgV6?$Zn))8*y@#ni
zYK6n!5%?Pu&#o5Ivi#|ISUvrjwHq=u?G_eQsB_gzJNR?ElOZ0=QT*=PmReN&c7|F-
z<^?39c`6Mm&+Qs7>%2+1VVkqsjaHJ}Qm8l?>6u9aZVhrf$v@2UJQ9RUUk&>n9nrlM
zOXuewh<ucdjH6ZaR{M$31~FSP+V!X_QbdS<c=)#(w@z&=hp0w^fm-*C=+My4Fq$mw
zXyIFeK-><Pcp&pi_gvAp$Cm(`9#isU%5Lc!3}`uD@)TMmnO`(8MeJERtn52JkxRTX
zpW2oP-mEkl4fmgcYLRf?<8`=ZZ)Lr@IL#J7iPV$CBxODJ)46_Iqd#O(dYS8tf&|Km
zyOSn$+MHTW*O;9`_uxHI*DRj7<wj83^T6ZMRmR@_ZVom!?P}vRG3pp0GhCc<bLhv(
zKs&Gy>F@7eIdn7`Hv@8acPa<UpIbazUz5n|k~7z&a0Ne=k?uJ&nbe?U2_0jKQ*Kb1
zn}znr*FQ5IY10<0!5#wB_$coSI=VlwJa*@smojj>Z>}rL7JXH69l@;BzigxY^eNZl
z>bNUQ_1tl+K<RKIpmd4W6{b0A;4(o`t|4gneBh_F?jx?~{lg;FNCIJ*gr*;+`l^M&
z<q=*)-{1V^sT3p>i0e#443G2nItwV4XK-~e{i!Rv`IGb2!QqJ7<kx|<tLsK}f=B|*
zO4wL=++fVv@k?ssv9gq)?@Pk^2jb(H1d*$7Ofp%iS1Xo0q+?f;bw=wKvi!92F~mvH
z0;f^1=?ZfRu@n1>>B{`0g3Z$9qS4Yd#-lyUtEE$3aBq!@CO6Y5_(6BYSNQtv%I0F3
z)0NHz@yEFuf<6+ai@E%7?A_rx!Yt<|cJ(#QTVvPzq4kcj-1ifN9csK@mYJT{MC5Uu
z>|A|z-&RrL0H(5Q-q)T^*DGjm5}{1&v!A~fVXvZm(RYV)#h2FCC-C#QUnQ9vG?#2o
zje3-sLATqwOKnz}6rYX)(|&!VSa#(xTP5rCk6n3+Q2x~|n1si1K|t7$j`ZpR^DWPL
zVxb(;lUE=l<5p6Czp5vjJ(S}l30BPcBG><z+CpvmrULobFOKaUQysUq;HYz})k_T0
zN{h)KW$#;^k9^ZI=u1m%$jP@8byPHH6>^j_<&k@`v#ZjT(^R*7M_sW>N^H<EFtjUo
zL^Yg!b8@;5HFHKcM@F83I?>#QGGMMB9^5xI%hxf<yR5rYE@5_j)XRALS`aZjP)km1
zwm(vULSFbQ8C4U)b5zU0PMmp1hI>JQTfSu#<>f*y*09FVh~L*k-1HGJZv_fg%h-+!
zFej6*1#v)3>GrSXVH#vFELVxaawoU_coQj&{`YB5?0JZ1sB&L2N%q~}Cmw?Pe;+^~
zBA&nb34FV~>hHgYcX|FCq9S1a-%kGT_y7O=(0Rm8aeRpDcIpET1+?F9_uR1gPltXV
z-lV+KF;Kqq`?t$Ab8*@S8kT>0gnftX??XW7|9KMP13~$777WJUhyUxz|J*+)NjU$S
zP6aF}6Lv-N9!F>dA7cD<>)xxyhJr8bHuoJUYYSb>K0eIVZs$$T-TE9CimO-xcfizB
z&s3(KE;|+ZUgNGJKz5{wPY^{eNSUak{Bz|8LPMdQu_MmVj^F<HZpZrY$iZp0R_kHY
zhUQaZC!kvo5_XtKNB5b&cX7iSCyLd7d{6kyyb_a#buaK|gQ3>iN$XkmL|H=u32xZi
z6h4=o7g7?5QW+JMY<UW!qod7%{zt@{w&n^w%^hTffAI#8&ix3O2}0zgsONPkY)_*s
zgikChayHhkS!o~hv84spy0xV}q7e<NtaWQY8mG}kx-+|{-S<GTL|(gLZNt>$y}p<j
zt;FK4*=8hRSnE*zo_%Q^<??r(H_nTSKF#%KHD20W1hmDkVrn3M5^2Hm-M>D+JbI?F
zlTuo#LT?ABeL<b_@KT{Ar{@%IXHK_#=${Rm{4`Hr6D~kOsP>0jshVDh-Jwu>w9G#h
zJ@=4W7rpI{FiRFc)}j`9K1D~m&)A6`ai*@b?|WtXa@D+J`%)X5vQ^8T+Fn+%J3_FS
zUZ=MqUN7H0#GQB(jTae?1A24S=RYA~=c?}es=G^tZZxs50-w8^g|V;q>Gp83S4=Si
z4rji~=*UEJnM~$=OG}>ZLzh3?anXxNmQ^J5j);~cE7|>PWti7jfA73%$&Pdi9ye)5
z+_S1l!S6zY<Hzggd&e&QPPJ1=7d0_N0d_q-=?6=MG`2;e#ur3^pT(4E!?FzUmzN2%
z^jG}Ga;3zynJc2q1*Lj=9ZE_EIajdJ&hQTh`WY4vt7_Jfajf2OCFkb3n}I<!XAxk|
zGO9POBKezR!NjGuE-9bi=Sd%xXwQH<@$NglEq*z_wqwgepX21_vAVHJD)v#&d?xF|
zr_OyN9EDdy0mM+vaSjf)ht!yU<rS<>nL$$e<_pC^3yLw+gX4YU!(sknA`NK;;xf9v
zpMsrSrR)uNatD?N*kvBKMg{t~Lba>NdTIY2qUX`#pO0EUo;mTBo8!HH{WdZ@GEH-R
z)lgQfFl1~X3+$s}qGvulwB8)5pb(XDm5Ma4{yK2~$ZquN!M&d@VU9f0=o@2gy=~9w
zm6Rva+(2U@#uXB2Rt_ajv>puiA7n@+XueK$$s04=m7oPA+nUvgCEl=KfGvHI{(E46
zNE;06j=;^iR4|QI&BI4SIvTMgWqC=79|cMR(!_|Uzol2n<3y(Ra<_aPBa#EpQZ!l5
z(PlCqLfd$(#}3uRdO{kZ;dXxVfm_mqBI;1)dX?4}lWX+}3sk!2CkrEUt>x0t4hout
zFEv!7TqA8RXq9|G>Hgm%a8zuoFloQejzb*yx%rwRq~b<k%lLcEXoybWn+Nv3dc-V*
z{1%l5ysClH873|LuRj~<=7`XQnK-1uBxu)t7r@Y&hm3)VGH@zSMeUnX5sWCW<7Bx!
zqm?0LW??o~*U-4v-IS`ZzX3izM!J7@TF5#ALt%fGE}Wj(ueGGNcKWkwo=VO$0Sc5X
zve_EVu<mPZOqf#^NiaZ5l6bO)tMG&6;?3`Sn^5*G#r{%7p?Z^{wMd<D3x~5#Y(%~<
zY!Q>KHzh;y4EilEud3zbzGOV6zdKLU!P-{RR)QWX8P9!lnAKgK5{R`lF=ilJPlU)n
z!qC)tJ@gzsiU^ZUM7Js%6LPC|JmtTNP(gpZusZwEe6&Hv!ZL!=Bq^WwxIA{mxIpoh
zs}K!#ojs;;%)zed%935nDye!9Nw$Kg{8E}%nba@(fRAl~{+!Q)A&^_yoP=xl_U+{M
zWNbd;CrS@7TSQNxcGOJO3|%p5=N0|b*h~09DPoykcZ>cOP?2ZPjMCE;u*aiO&EgR}
zS%dCDT<Hgd3<iu9m54ulFdxm$#_*IsdIjLF=ye3E`GjON$y!l+-)w1Q3wX*$#Xe&n
zxdXXX9(w_<<xXd>DF`IQyt&M-WhLDp$yg2KC`QkUzP<kLChK(LK)t9+?5}+RIqI%l
zddQiJ0J&A8XLq~g6CV{s`tt}0-8L1cn&KGoF?XUsOoMvy4RY!)$a<;2736mt&y$)U
zWGhKXnVGj&Hl+Q`!)UUSKlR4ZNa=?NxoMQm|E0QxkT%1^51tSMg?&5Wsb$~Wo_BhK
zL(c(E)z5r?F4EImk!MGaX26{1h~__0p$qEK*$Y-MfF!lg6hr=ZjrSkr_VE9+8vIvb
z{=VIH8}FW;wtLFkLdPwzr*^9DvgH?hx1Y@qJ=|B|v_zT{VGJRDR9&+w2wlifpT`$9
zVeJ8U<%n00oSa~r$WB-;jEwY885ysY2l_PyYUFEEA-_rK8M@{5<5koP*&6gf*_WAF
zqWI+SP@`XZgY{kOY6Ck*877H#8ZbWF#e%5PGMPp7tm8`ID;QKoT-Vz8W=QFh#6BOI
zyOvIT|C&va_4HH)T%DD!*KquejNhiaTtDbsTD5W4m&qCZ&}^_cy==PxPc%cZe2b$5
zw5h;`Mmc3idi`({uH$Yok<zFJ<uY>#ov>M7cBz#UqVy=ZXY$M3M>1HB+(nMZX?1GL
zTxf0Fj)IdfBVE5<YOxkaA$S^n_{wDL{c_j7ja<C@j$nU$>CZHYto-fEO6#)(XIaAu
z=k>hw%ahJ_aOrfz)|sC@GDqpbDvQQk;WQ8T4JL-B+c{iEGhK0Vivp^dPY2wvz>u3y
zK;dbj6#FdfuTkbI+P<QBO3~oBV}JH3n?2wtf#Bf}^~#OI>$8Ea7qs8Gw@y|jd$?U}
zjkQL5+;+wUuOwv8i|#G$F1~q^?VQ{Q+ZxmU{&fmt>n^dsxJ3q07K?VHHHX0Ei;<Ih
zKjG{kE?S|SVb5X)uAOJx9B73L4h+->J!rz$#m*q9y3(*akbLguC@L()@m-QVn^m_U
zifp|rlSrlU)hgodDF5mzL0vl(KPvL`TqqYS_GpeuUtjye;Lv?RWI0~vg9ASu1tg^Q
zEiOv*M#_5Yt63}%B@HNBOMYtOp{e#pc`9FFCwwG7#zqa3;%XRfsswZn<x}Qd5D2m7
zKcS2hu=mgVj)((1!|e=QLoOS?zD37tT!eg}D_T6M@4EC(&C$Vv+iypSjbx7d-yb&z
zOc+f>T7T2x=u$;7U3`FHY;lpUU~&A7=jYntTe6*2OtPfwKEp^o;jiYe>wV?Fb+2UE
z7ocUUe)j*S_-m_T=c*@l<&%qDNAP7uJdc~o!+F?LndiXTXWx<S8I#4K2T`J%V-Hi8
z%X%*_se?~;gr7JVj~kxNv-qzcl>6I5JIDo{s%3+|V%4RdQ1Im`(_dW)z<h)Q17uGQ
zY_Ff+<FcAc^@p?F!1XQ%y|iq(<%UmaLKEt&cNYsXgN>K&0gF}SK9DfVyu1^+qsDHp
zKLCuxfTu>xawp0ul`VC`swkD~yJQpjb^{B9g|okyD0%ERqn`p)&T67xg|HSq`ErEG
zx~<m<WA%~wlTu<N!K+c?3?%mJFzr0OB%JSdP;KV7^(u{8l+;r;XUgC*RkJB|+OQEL
z=+<dO9PK6R08^FT>r(S!eHKN!@BzZJ7s@hGUOLrdrZ^KvL9aLnx;|Rd!!Wcjk56sx
z#JS^4<WG-G-hc32$*xD|jb|V_Mw=KOeq1u#$!4IYeV;p&l$Zot0p5_-5Wkluq!*`6
z<0~7V;^D$@`J!i6RLi7do$t)Vtvo#PRfjA*!}uk9Gnha0#@*cg1&*K*OX>UoXD}be
zUhcGhTRL%6;hfWZ&e?iG^(?!h9e4=t5R8Fq%w!rqa?XIkf8>B^I%c;wzE(8r`hEvz
z2oNRKfizWk*~uf{e6S%&a!1uo(mhXjc}~sLbRy;EnEzD67XIsTwiD=H{f{VF1*`5b
zB|;5uqrpbWtS|XwS1Brr-7Nfk)HN<FB?JE5yX6{OhI1CPlzHVE1<Y5ADsi7QZ5{5L
z^IC3??7>5A1LPALe^nhmUu)7&K>jj%DmYYoO2;Sk)b4T*;nv2h=9y%P6TZr0fv+yF
zZiTvaTt05V;Jf>5=VH3#xT<;1GsWvo%Il7{#}5?Jz9y%4wGKBB%ZMTR%InnbLvYG>
zFI0AD5p4rb$@!+U`(C5K#;BNl8FfnGpNV~UcqdPSisJJs%;4>6E+<Jjt}s=COtFu2
z1Y5JKEBGOaJOhp9ST{9-9Wt?5l>09-6#LHfoC-Rw1dVM;1g#R4X-Ba-6l%LYIZ02M
z-j+-j*`MZd@8T%5T}97+%BnthFdRJSIS(4!Vs1IuIyuEiDQG-GUl(wl*_Kvo-Kb`x
z<vWQVEE$gO&97Svsxe!$Vvs%*KcvMOI)QdFm~-w<BOx5Sp!gh}n|DwKyfV5_fnz4_
z41TD~(}9~`H9||4UbegQ)!_P;5wV|E+Ih^;_Ee0b?`&xlw0bTKx6)8-;XZkkX}@t8
z9Ar`JThI^>pRO^G%23V2BCCGgC}*c-`^o>zb@rRi6Zwl=%2w8kkJAq1MZ>nqKy<fu
z_KkT2HvAyEX#gq*0<^d1>7ySSqmjW|7LztSoPtVeLyT`LX8SvGJx)U|?%rtDxL<!8
z4c;7&6+GTr{PoLRM{ZCM|4BwBfSg_E*%ywDC939`+8Dn5x&>Q1yKwwMJQL(kd&y(5
zaDdTAIvU4rZzv*VoQ3e=!8gTi(|o{D&&3MmPRKPm_fKp`4a<hC0!rOA?O_T>YC0#!
z$M!lE?>qNiajaMG^GqF)goVfMFSUh%tF>$G21az;pHK&gO*zf0y+;XgFdDDZgcE3<
zk`Z%R`7*!TZ@Ht~Tk4x6pGQmOf|Yd7c-CyJMK5NO7etq9xb9m8JneqEaS>h|(EZei
z_@Z*jJ(^Uxe)ESrltR4om}I|iXU|Wp%&^^8mLJQVGk<QGO=p+S)_RvR&o<ym-y2qk
zeR>^>P_|Dlb8gt94kMN7yiNmZX=1dYA<~R=^t7onb>7+0J_tIp_jAZub)Sby4q4Sp
z$~2H)@10N4q=p~$PWT)w#XfUuzI>dQr?O8bSao`py)K8?A<_AGlid{?pJOpDW=G@M
z=1k_sXOl`lRn)o5D|GwqFK-Li$BI=dPnd{&CyQZpf<~v;B~tE_L*f#hcEp!<5^}po
z782t*>TY19hTYZ0#MYSSqO0czzD{}F_qgEVqH@|E(HSweGm1%vtv{ts*$d?zmI)5-
zkV&|bxm?jdL!{1CV@O_X={JkJVzo-I&HKK)v)h`Ly7XNFbMrCoJ$;t9?w8woGfPD#
zBZKC?$f<*4trzI$?sLsHx?#^532+qBkY5xspNNg*8r6rGi3F_w8r^$AV-OodGype>
z5Bd&u;JBWshaGWLo6Xs|f>q<#*lMXe853?m0~!4Ax^*paZX?Hro8Yox0iJZd$?Is0
zPdOf@V?Qj;z;~QzdwDdfAX<C6Gj!4w(39XIub87Ob~L)IL&!3{y1U7$Z+KdDHqtj8
zDimO;U@P-0es1il*tIsQ_IpmT!pKsaTs^J8mq56&<3O&EIncA*MpM*Uivdc6{pWKU
zbMzD+{OlTCU{*;~!zCq$^!D0Yf{vR7wW01YY*S+$i!paPpQO*$9sV%s>}d9CNTiT^
z?;^k1f&kREQW4sF7dg9)iFD1ZOwHC1403)=hq&!22jji<BxU;1bgL^BsnO_HhjvSG
zViN5RyMj+?7#uo4@#?#3agByoBQetc>oe_|9Pa8Aij^IyybnGsDRsDV=oF|v81gS#
z6Y~E8H|zHq>)RU8DRZAoDaF4J0=6t+FSo{X_D9xSgXx9kh{qn4Medq8OY9~wv|gMV
zlg`5)RIDwtG#2Kh6Wx@6N$xo)F3uvYYR}7k<*F)Gx15BMV^2uRU1D{wxU3R~WWMdW
zIDNT9!B8%zM!Ce{@@aIGF45u-Mn63s#@3aGKBwwu?k!yp)(S6+ou#44o5g6|_dOD+
z!@7@5wvfjs%52@^GBKp2dK?9I*DX96Y?tI<%w_?=g}CfEkvrveEoOVvD^6YG%;5?&
zT%YJx!R4Gxq@J`?50@|b`b@=SmzQ8b*XU%*_}(jcXac#gZqpeK;<ZL4)8O1G9F4~R
zB{yH@_fI=1ebVC8R5%z!htTT}2J9u)woHsalZrEbwU=g%WvjN2O^M_vlk>ZrZ?9~L
z*{-ZY{ry6LYsYH2i9&27*?cgV|5RzXv{xorN7XYcv03%n{;0P-g4BUoyV_~!Ab835
zB!SIIrd@|$$MD2q3Hfw4)ujXI$+^q~6l3Hwe1Zt<FsTg80!@z1pHxu9S4J@(KTLR?
zFp)69?T~TojG-ULQ@#VzaH$duC@-y$IwVc@uqZXU>$5c8uph@vxzHk)8I3n%GLf>}
z%*jw2Q)m=ft$6{H?#fEni83;&fqXj0PKg>A{SEGG4KlQZ_mJ>yP^TS6M%t=Wmav7A
z#($XieR|S=1A7wS_2#lfii?}WX>w?1!X+J0y2wfRO>|6!(G)AKkkMhGXlVm!R^H<b
z#g*MnTkAFB&mzsNGBIMguj%lmGGcP}bq+n0pGN2wSLrs}{y(I>WmH^U*CiSyf;#~M
z4~2VhhbK_Dd+^}y?j!^#JV-(C;1upI!QEX7x5C|}Pm=e$cXapH_eb9v48}le*E#!a
zS!=F2=N@D)WEi01p(QDn(~4vKtWoXqxr(z%OuOOzXujm@gX3u|LM*4tv8m4f>U}}G
z&7NRsrXd&o-K}f41|OcEjz%iNS54h(-DhQG)&GFllryV*2hFCkH~~yaZw>foQ>Mkc
z49AL)x}r}t-9u9jiv#v3BH@HD0;&n??dPN9_6dam+(IU%KQ<dnQprIq3GciU^b}L4
z+2in|(Vnd%Ri!QbI|N6nvyD=#?NHp)o!fTFxlv<{mv3sAJfn=<gVRdj%-(5rNpFaI
zugEcJU?42mY%>`*K$J4bmGPor=OZ{fJ34$GZTQAMOHG=n=Dp2Q{mRKwF5;$VZ_byB
zQ&82_%%UpiaD=pEv9`r_-nQ!NU1~}8euF%Q;&3rzaGrQPp5sH!1rW|6oj)tqj)c^b
zvK{8ylegS`g%Ae5Sgbw&z`-~_+v_r$sKYt6=~?qYh4VHLedlDlue9+Fq=N!X1t&z?
zA;W;|TxA|9c6_7zZPct#1QP=TB`8~I|6tQ?=a*6d0MaPXF))pqaWJ$;kj!}xlpgR4
zULxkR{2+x4^bN8T7Uu_p$N<LxXnF^T1SW|t>1hLHim$kE0ix7vI}A+o%DF+wC_ZHa
zUGEq-NqeuhcIP+f4SeqBj>pE2hyorjG<MDCKBz@_oUY-rq!NsSjsp`j$QVEyL!}YQ
z>hS3X$9WT?_KUP;yUEGfGQFA$dalEaxBHX6H|Hf}dXGPWimH$zo?t@vMB9SO<)`8r
z>qATsAy4V6$ZqnCSBhoe%EKOn@>a=?W2m%@kA~#e=lO^XBJjlDkqZwEE7n`V_f$4q
zo5w_NNou0uYVm7d$y1?&OT1e_C&gAQBHYj`A(||h%+qBA77Y4TT;!1)^L9>Iq8wu*
zRFcczF{T!W^(W@quG98%HLv+n8(BEA5UIQ)TMVS98+_J&g{cJF^YtxCVet(Pjk!n1
z7IWGi+4-mvrdd?{PC+()aj?_;<OkV}S87R@?}9X?)9u@{l6;{$eiG)p)+MdUqw}ef
zdLS7r`8m=$B-X-7OL^ZnXa`DcvU`UKTt8Ec1aLU^NQLrlyy{8SJSH<=JtSxp*!8+g
zLnvkBfND(+!u42$EAahH^(6!re7wA<(@ZL~(A8%EU)A%`s%}2@D|zwEC&>gAUnb4S
zSig8l!Bqi0!{FYFU(e-=!>h@;$o8(l15?ojjc}mljkI)yhET)<;x-D{T*B{79%_Iz
z)VI5BD@Nl-QsBOp01!!H!L-%)0|Mk_9STRyNWfjR(7xr7=CjKzQS)I_4lf0KI012R
zFQPU5zT5Y5esi*doCJ(Lnq?kpa#w!Wdr$8{oRX)KU#V&BUq6YE#1G?b^}&5kd~TsW
zEy@L<xmz^+;#UIL<0}sS$`_Z{jR=!cD44XU;^ofs`d5!jy}MWM@%^RDaF6704_QXw
z`ExyP;nOyu8jR7@=cbn={7K(q<-mLw#I_2||J?bYU`~2OTW5Yx3>UW8$zNUcpAkd-
z>U0eL;wN-m;ImQFdrttem^D9Bu91{7$-M~A=|WvBJs+t~>6VcVe|5Qg)V|IfY<3<^
zn)_Jp)p5lmm0hm(eW|3P`<2S&!!0LFHvmGyA5ye_H#e_=Xv6jr9G)NN;p1wFHZa=S
zY_S&wz`*p-kfD%T&k|gCo|&oCKuGQDWFm!p_H3n2OHr=W^eHpx?6=u(*NS~_a=Zn!
zVJe-}**;u0c}$$?Tvn@L3wLctYz>Z?Ov4GB&8u|BF`vIJenrGQyDLCT;a*d8;>UDv
zXuuc+HZY~O;jC|I!A(AUo57{-LUI%!w0^88sq+aMB6O0@?L>Zz(I#NXuCJ{qv9vB`
z<^su_poPM4VGus+L0W~^iD7eOE)k|EH3ec(Osv})?#L~`))4({n^C6)UZO7!FU3T2
z;k>VRrO2r5zyYzcaYV?=O>!^~Gt>0-GZ)tCclgu5Lt}xo{40nQT^-cd%Y0>Ww%jpK
zJ$#^HYGrmcS;>PHJkbq@LJZdWL*wK1YMqDm?|)$rtFH+iYy?!P>*5|1gU`6Dy*#FY
zPsmn6>~6^U){Gg@lj_Do-1ryo^JZ=p%MO?#z?I&IQBrhu(V3?gPC&^ul8JO|(zj!_
zsYZU^$<<kEc)(_<{P_O#_8@f@Uar_A+RvrkY+v*9XHS3oMo;yIJy*mdxA{afd9J#x
zkA+MS@5cv*ekQ#Z9ihk)%_5s|%WsC^IX4I^9%8v`eJtUMGZXSUB+l(|&m(q_fkw4n
zN%e(`ntd=#K0khvqiMA1e#5r_fDp<Z$G<jav28^*f40+(GZqja_J8iJOiDU_-{7p@
zk9gisN9&i_R8^O7>@R){Uf)N^fE&1&N33tRFH*JetIzH-vTK6aFh%*pMuUhBfQZmt
zS7jwNe|3#6p8o8)K7WYZXN{@(@y_mXD8xx5d>iR@hR{VtXeb~ibFe;}E!b>qLUb7a
zWGDQ#K9v=C<nYKadd3*6(W%lkCD=fBe*h%IFy`#NSaslg+2J1j-)-?Qk*NwnC1+A&
zy5)6%+AT9aS`fCgY2?9&LmjyN))<~ESNB<1@<kDmU@ZxrkFi#Njx*kU-Ns4P>j2^2
zl~Q^<dFcrLO2@T3@yNB@`^qeXSztRXxT+=L_9Ek@l5DZN*)v94ESk0!R5<1ry#AM_
zMOjxZ%vV_vK-tV%KY|fsW90ANFl(z0w=sz`g)=f1@&}Q>3r->C-xm$!7D+pdSAmM<
z07oMfX1#^R)p{}27u=b$zkAp5p|EHlz~kc^`Uh;gsd95%4@XWCRE>?Xs>I&Me0SP<
z$PAE|r@7@%S12_`+~w%JawX+m0ngBRYVDe&pT`v~*;pDQcJ@l$HoAyhNwo#aC;Q=@
z0|Om>ZFe1Y1)*`aW>`w|?SmSZpB8P;Vu3Vesp--Vh;y93<~Q*2?Rb=IBa48|6J{^T
zGp7${;*->WTDD?p*8Gke!>)blpmgbeLY|`zWfBujBGM$0m*vm4PpuUAw!7<m!;&~n
z`)bpl3ECp+t$}@@(nc2GlE7Vo*0Ft)muf%mb7;9Zawms`b5jl8aWK+%&-8qrt=~s!
zcRHL2fo$G2pKK?DN^g1{?jN*m*t=^p#rNZeidrWH*etnD^tMiwgiQB^>vJ6}wm57<
zskppXbW>qXe$@LMP6czE$ndhqAO20@@eRAts!1=OJ>c(aHLgNS4VM&O@g?1ET_Q+5
zk-Rzfe;rr6)8K)sob*Q&OV4itz}))}E;~TzOxjKPaJH)lpR4)w(2^i7uXlH`wL}$0
zJX0sj21lPWD5GJcF8O%t!$>%p#B1~8`!F?VbllstkdZNN;NE8-R>RsOd~YPbOoD>n
z<z^Mw)AqI4^H(?2j(Od?244E=Hru;Cb_wMU+%R$oSWeF^-A3F@jf{LgZ%aEqK0y&o
z+dABJU+%f49mnTFEdtQidtiWm^zMJP0bAXd0t*f3&i%Cc^&8qlzhEh&1)r@I;s-H$
zxR|pz9`pfks<G0%{1t^vR869JvK#x*G%pyl=i)X2toRg4v&ZA=6^<v)&y517(95gJ
zesEil$}5ZKP3(}GFyg)q;2N?iE&X7<m^IYwztu(bs8&+_2q^K|4x1{Cm1~9ur)_vY
zeC{}7Y4;HHNG|nULJaK_B@qx|DbB~CRv+@N?3wMVPa1a4!MSXN8a;LnS@;?NlUy2J
z{nkUGy*-9p8G^G3>+)M}On6;wCwx$`#%S_JAjbET*I5VDMAm|jXHMqPI6w)8_x8F1
zuMjI#6yCs2ozW~XFOzh=1pwf@HMU+i3xfcLRCKrY3bZp<)>}XL>IOYYaHroU(lEwk
zNMp3fu>v==MF;?f*Gci@3Fd30Z>faI(jXlMWc{o<w>|*j82|AGHF9{(jvF*u5hGHf
zdt%sNqvyKK)2x-dNpcXOUc5Bl^jH}hqZ1GKHt?J?(+4Ib922SI{1#_?1UvEWz8uWe
z>F5F`F(~x3DQuvg&pmBWt~oAV5^RIirBp?yOyw>Z^HAIjOmOSr*cx2;NEEG#HX5n7
z>f)m<Yz#^d<+3r8mJWunu&+<%QxdX#y}ENPt0`&TJ8j!QHjyFZvX<L=ss|8GO}#HC
zzmaaKr$#mvoyTP(&z%!Z?)M*y*A&f^uE&oq4c#DWvVqlasLP_i{N>GZTbqWmPx5W|
za0??jNXIWzc0ABn3DIL~vhxhPz&GhyW)sd=&Fi+hkjU6DZ8Zz8^(pd!&yn)mr$S`H
z!qKd5EZ4b&WRnHc+VzvZO+45ve9%#jm3sTHyobe}W`)^Un4Y)~5E?G%5Vxx_JGoSn
zXS`bqt9zs|5t(^-|0*J!Xs%?nkO`&Ti_2zaFQC7l0t;A>gf_jF7%EeX>qDgb#k_AT
z#4^hO;o-$DFxbVxmOg15Hgn081vPP!6s;V0aYMI?LQEzbT|Tp0(?Zh#ZcDsp6*s`R
z)X!F>&I0s*0scL|%N%q6)Zuq2W8DKLt$0Q^s@DDm6km+ASY98u$B?y1r`;Kg$1*km
z(DD^1T<WL0HWpV0V%)?f(?RVc^<jN%VC&ne9>g2C3IuYH9pd;OjaK&;z&`r=#a*vq
z;6&j;|A&FJQ=cpQMN-)og0^z2hRt-58z=9aZ{GFQh6E;S5%(<*RdO(ukj{)UksBEz
zp~jOnAZ3@3kp&j3U|IwWq2W*mBI6nS_3s^~FSnWMPF7~0xFvht3h^b=*Y7pgYu6#2
z;~fSooBQJGg>b`v@XmLpEFOmS5NhY!bE^xT^SMLXLJoH)z)a8a64<r@pVivpmoo6V
zxS=Crdb#Ncg>q~Yz|}6NPjzg5V-_XqN%-I?m$aF(+ZXL0fMJ{&<noBP#jNjo{mS)D
z@NQQxFzi|*bM(ba6`i^(PdI9o&Fp}_-r!vQ>GlodtFO<!#ZeIT2K%Y_Byx5?4|AXu
zIrn#4kP=@Oj8G4s(UZuRG0p{3OeqflO7!@tx=99vigu<`ZI>_jIi1aUY&mbcqpqc>
zqN0p&BsaxJX0Yki@Dxg+CX0Rig=}-u@m4jwyWYjZ<HO!1=Gvyrj~k+(cFs4bsl4`(
z1I~8>l?^g<dd)7bz)oGvgtinxI+JOMtP_-2C7nC`qavgG7cDVbu47PF%Mgh?*#E`_
z5-zV%?J=DpRP+0Z>7nPnQ-JFKD6-rPOa73nJRA&O*Xr~>2xA#0cHqz()=9#@t2R2#
z*$)bp?js09j8HjEp=SaSFg?#9Gkw>esqGa;P^5M{#rEFwRz@j6Q8c`^(TAy-I4+op
zmODygaoMiYG(5Wua|o2lviS5_9NWV|-PUuE@08U|aikudGDeid6&^_qg%VGY@yll<
z#reJ^GC6l#0?N9Oc2=Y|R|gk>T6F8l(|AbmT@3K#&5UsjrkR<(4nL)}QhaEy?M)T1
zt%I;?AmoK$q(Zk96uB0v?HUyj<0VJu>?~tVt;A5eeHlgfhRepU!hA#p@su>QjE+D-
zqCt8-8#xCb2j}=D|MO$%G@;NC={^c2VA^e|L*pd3dk0ENRG+|!^EAV!1_ss>HhA2x
zy8;8BwIT~{uRDkWb&yULhCU&p?DD&|jIDS;6Oys2gzPx34yz>HWO%TIS0Ax?CKFp#
zIGoTi-<`%v8SC3i0&iK2i&u4^6pv3y`W^fZnB@Q|i~w8r;*``<37A@dZGK`#g3Ga6
z`q4-t>!oO?3#Zy%0UX()O0xz(T&%skP%KlQAkh83HJ^Yy)Azx#y14N=tJZh5p_X(q
zI0(me)2zR5>(YJqDcZeGT56P`?d32>a#R96)(O3@+muBW;vJ7mb=)42w+n83tog*w
zmMdA5M5r`H3AdxTi(G15!khSh?^b6m6$^d+8y_2NP+#BBIO>;UuQ%c0x=u+(>p(&y
z=$M3qgJW5x>F5~K$9!9PMyy4ItfR7x+f+($Sezk<sVzP6^hsl95ILYwss@BN4E;WD
z8M&iVQ`xdZ$~yg57f{R-8dfTNyNn1`o3$_6j=?dy`m4}7>FT^mLXg3yuBkr$o+bLy
z#A!=h=g!UN{7kL`KZhP4^6-o15T7l1^29B*#~&{mO2lr<x4RIbHGm3Q*!PijVQ_F(
z_mR`;5wYt^a)FpDHwmX>?vL|VBR&je<=4iCFHaTH?k%Q3jFLEEB!VhJ9$68=D_2*I
z!)>JuyQ@a>kHzrY0--b^QUkZZ;IgP<)4o#_y_1T&0-RqH>z(pu(2mzHo;{o@qJXf1
zzo9X|MY690PV%<lSAHxZg8u^o;yI=aBB%=Rd`+#dzjpJW1+A@rzHJlx_wf@_*(VkE
z7wgyF2zuqm$L<@lG#@!qxLdAkQ>Oo5K~`nO{gyaipg!?l(NgV)E-|FX2iDT+ayNwY
zEgH!js@@`aJ76?C9{Rm~g_~!taoch1N|njeG<W)7{wkIJ?UN_lrwLRShyMm@GO8B5
z#W_){W@4cXI5rlo-<WkkWUk)*82ic<mX&2Z`KEAZYmF*~{$Mduqh9|J;`9Ei<<)Yd
z&-&Ad_=q=&N$T5MYg3gUOAo9&^_qap;7}l>;BHH%N~~R<CvW9a#QBoRp1WfOA|7rq
zFc>Ux)QO)TgdQw$zW5yAZLEA|ymP10EsUzTyQ7&v0_r*=-MGsb4%`eZ=3`^*=H}G5
zC+<TGFNA%ukwN7+uSs!WOWcn5;`4J)RUvu$){ngv@#5evvR}t#$_09JJd|85c_F!u
zKKf;vnaAf2xPs;m%<=T?XvyZ&84sx<rjKN%OmtTQnBjz!gy$3Ep*s)WaO8*-c&=+>
zAkym0Zny3X>Usr-^Ihp1@>huogqd{9Fk2GA=fM(M(GZ}P4Uje&evQtyDtD}~qM+KJ
zDx0w*X)l%y<WhaAOGrzgV{|8KFu39`_F)g7>8K>nE$O7p*3$YhiF{#6s3h3ru5XVR
z^54o>jehB+>#zB66E3e^3yqG`si?nPG>rdR;OT0n*itD|56Jww?R$yQx~J!>#Dlt?
z3Cd4nUj7QE2eh@oPF<jCZ%K%?zIUWjG5IwkdV>gE<=E+9EQhSPl<Q}H)=P1p6@>Jx
z1yn3sEs2oGTc9zh7=G9q6Avghc92vH_<t!%4jmojWoD>ElE6UZs+gGIj`Pzsq!(Tu
zLA@Uah|b_wmG2;(P!#YVzUC3jOK#1X`i@u}I}Of^54rWh*-2k|H?zctsZUv0$ulsd
zUm<@n6KQK#F-H^}f~d%#`UC+=*GKlC_;%~rJUmRwT;s=P5B2fyKbfovyQp#wdA(90
ziGeSqj6;^xzLlYj*GMCiM0(yWgwK3qf6PAst7t3XVZMw15v@U;m!DQspj~|De2qpD
z#8xV936*LBdZ)9%Ri0!rM*jyOuMH9k+aJ%agO#=RBG<%QFFcNCeY{yI36Z8~VMMPe
zW8EDo7i22oIxV-i#g&38!A?q6uSIXWUW!sms|5kl-Nj~62`gcsUX9+3es~_)zTf1J
z>AaFgYYUGSde<6@Pt1_Y9mTy(^OucDs_N%Ywu9JnWMn4K_|QH3tLLLto}Td#{&kWd
z$7XWo%(lIKGvw4mv~Q4k)t-kA%F99CJvbZDy@oY9Igeg6AgdLK^cyl1eAA1Fw^^_y
z#3H~=icLrn+G<GuUF==oKj22>W}jV#(VZm3ASEUdVvjb7A0ra#PFqNeJuPYQ25&7b
zEyN<S>kv>abfinGf?fQzRWnaE{`@?!fw8_Y7!b=gwp43s{fHnO2@VyntqC7q8%pIB
zzMSjoTNodt<scU?RydgP<^46BG`zL3iEmz|qC^FiFka<KVR*jyu;mx<vU^ZACF&z<
z!pT%ox%(+f^JA*p58Kzk6aW|<`Al^4F{I*nTQ3teaB0@dD0>I3ljV(pg13xh>r_@=
z2<>}tpc0f-kJh*7Zg-O5&?jTk!jyTjl5B6Lmbpbja#(J#C!xs=`(6NpOBxJ&$72vR
zveQd2_e^lOxorkvLKV0ve-lETZ4x3Xe6L0Q$`T|cH5lE8qsfT4&3b*+h*b4>u!V)2
z#1KR8;cC&h0jfW~fJ$ZoSQK*MrnR-P7}y~|sb?$O7+@jdY~bU-o7H`I-t+q?GO1Tu
zD81si_<~VsPHr|HSgARiDsaN6rE+=DdvSn!vHd0S5An_~lJ-}tJ_K@rw|<rMNeqeu
zhT>pEK{njpC7j#SruC0&STzbUR)b+~@NFak_|wJC(Tk5N{Ft+vN!X)Y<eocfw5oJP
zV$$I1DLgD#VP4iiM~@$5f>2gXuDLg+cb;x&#KzW;HmXlbic&1l0Ms`yL=AeS1*oln
zEwq>3skDj$6fQ=Dn`C8csc&H=0p=+11m<$_f`i#fp6)Qpz|)e+qpbiP$qvxUWYT5k
zS~OqHo54O>NU;2MhPNRReZ|M7IRsV@Ziuy~9A}{xd1>NhzXOto-urMIeCBAi{<7*#
zm7@Fx(EyzWI<)s=c(^c9K``oH(qT8wGIvzM#BA&MaK~6ObEDpm0<D>WuGv`XyqT}<
zV*flWmPANpCOj-l!KAJ=8)%ql`v-c}VH1F*AJ>6kKCVIl#Nw5TMy<gXFd>C4RHfzm
zb*qp6Jq`T$UUQ;kXT!?Cs?=co3(5PWBlkvs>Jo`8W;7VEgmH3kYFFG#l*q|Kr6vPY
zy7#OZlHXf%GwkYhT2HT>nox=1nRImzE!H~Rt`zo)oDsQLO#VaNVs^ZvvlPB>7=V~s
zdL7iBr^_Dow*7;@XU%;1R>vW|Ybk?rjY$>n$H`A|$0eGA9FbrUIf&YmNC!I-e=}?+
z`;ucl$KcV&S@_xRp4Hjyp)dN^3^i=bo7_Kx{a5$&S3^Bbt30Ske%88@O?_IKC^>z1
zX2P2{#+{+hh%W762F$GdF;HSHrSA;1qs^nQzX!?d@p;`4Vrpn522SKpHHjDkk&P?i
zSi^oQIX<AaT?3TOyp!|nMIzupgVC#W_>_&%P5<g3ScSUOqR5X<Dmz5?!&QsjSPzM1
zHA%w5u4bHm)580pbMs++4G`gM%i7#~aeM}NjtY!l=Y8OXjp;vlYHo#@tpb|N+V85(
zCWiopI0t7N%CnMi<Jpt$<*i!oS=n2U&k10<<<qpoR}^^2zPIKJLhC4p`|Xtf{G0Oq
zr=(n5k#_Il$QQ`E=f$6_S*wY6=P&VokxA?pjVf;2&R(yxrfR@Cm_}5I*v!J4olUXk
zKLI-`!+!8K&^u3qa>w#F<cC+?OZB&WHKN;Al>p`X>6&+3oFosi8U@asA=)36`|GRW
zhvh=00%M1O^iSU`w~LhXIh5*lbk-TL?A()UNY`p{6ZQ@_j#4cp{~rPS+Y4u(Q_n0>
zWH@pRHFip46_$xH^!~1bihM0$gBTs%A2I%poLqb7$z!YDy?X6A#crSY3;auYFIURZ
zI0~st4k}QDC;rDCP%@$4Bi1yQ^OGmG$19M(Qt8Fp$1m3c`|<-TCVdp*Y}m4HcXVPV
zHv#+m0&}ws$Qp79n%6Q;YegS8IK5V^r~op7da%uQm$#c>{YS7i+N;rU*KghW8k_r<
zl=|;Bb--N9*|;`_hTOI!CAtEvG^Cq>EG#PlfrLZJ*J<Kh6iV)LKF371x^z(+_|R3H
z=UxV^<;b{wTqq?4Dm!O|!V_e`@bmW2QPJ+`l8kO4CCLamMXJ5=AWV$Qk0lADvRoyN
zJxtPfz*Q<z>o?XI%S#)6k-JqviRU1l-B*)JO&7O#YumZn8zWgTX=H>E)IK-U2)_%J
zqF8!pp6yxyOKXO!5$)}c)=4sM;$|2s1|y~qL?aJocLpy!`B()h*=qD|6_O47e2=e}
zZz41ycSrLiRbu@crEjz621gzKoxU-^d{pJsF5AD0hZFJ6CbhK6Ii5<#+X%9GDyb)H
z09Sw0@r>A+!HOP<TS}#`#ef{Rlcp5!;tk`<az|&3cd3JNOlq|8onZbYHqo><a>J&f
z#sp+(<jQ$VYJtLnTRN3*zo--2#a7k$in|j92M9$XB*9p)y=l}}DOL<$@A(xro}|^4
zyyC2>;#7o9XrXD(d)~<{4LK`P10VkFNq3UD?IB4V*8M;mh2(K#UQ*Sdb;){8cU&CT
z8iO)DeJ{{oj$K<05Q2nNMwBkHRY!MiC%Nm6U{PT<^5<1zB4D~IkJ~c(l}Ky`*>FDg
ze8koY80;QE$rqs)EZ1k}T>AFNe$u*Xw?h@(bY9vuQzjhcrUpG+u5ZTo!bHsGBL{k}
zpfwTT!v~_Hi?ZT#q2;B`3`r76`u;Dq7V^EEVKf_>PAyx$C$f&zldIC^RXZL|ysp`6
z%KDmICh^n;lI%%~q=}+A{toq;qcdoa<1|UZMB-HXq?5G6iPS|({qB}|%i%h_w_Wqt
zy^--%u_(1sJ@+RkTkJhEQ#pV!$hmhEK93$<$QYIwbcJ+Nx9zH_O{demVU-r)>`V)+
z^?rgEEZhTEZ6tDw%-YW6LdvA@ypAX8dTh-Yz)*^`FBJm`26>;x;S<NPU>#$^f69AE
z%t5xZj=F>OyGvrFHYS_2AvAkes)1&kJtRdU&p3&>)AUsGr_AE^`SlI;PsZ~|$T++%
zQtM#zjX$%jwt6iebcYysCwu4_H0o}RPU|1o#Lt&c-7POuCI!0gs@8t^S6vThdaBtw
ze)3&T_R-#4__{jjIpk!ngglDshc2rkEY^`3o4IwM(~Lb|X@d)@cV=D@1Gim$WDLBt
z^161hax-GZgu8!tx@&81g%imTkAYSd9prT1V8SL7Uqy}|@XHXMi9*Vvwui%W-&@I;
z%I_&vB<|`Z4NDon1<iS%so8u)RF3ZR)u7BdENd#3#ipYC+w3$xyS!rqu>r=F7cao-
z-r3g{9aw3y_gY65XHF*i2NX#5oNQR31N*qHQGM6A?L)^}DM)Zyp@R+MWQ1h{8{IBX
z#TB%62<}?)PTt=9oK1vvHI#XkTC__P67W>8SQSnTS_4=fryCB&(<aWcVI5WZ?o;_A
z;gmDeP4=Z};Q^9hCndi~t<ShzhR+obImv+es+7PlK&?lm?qY^xMS~ZJq-s6?L4hs?
zGfF1?&a(U1hH<B!_tP4~6E8CovD_t}?@qTq(XgnQ83izSnjEXX>P<B}mxFz!nQqI@
z{wtvUbDIVHBFlO{4Gj$f^g9q(s4Wi&yvxP&O5(k3d|)!^dlR6Mk$(v^=jXe|xOvG!
zAxulb??<wm6M|>@Crymfy08+oYgW1h)Km5blBNnml!5O0H%$f~7qnWw7jd&+Ze$$q
zI6iEe-68$p-uBG3%$}Sm7em^UDE+A%%E-8gL#Z|rD$BCF!BbzmEh=!<<QVCEL~_gf
zcgt&<+En*8$9QyU^6Hl6CIcG|#MTUFqfFvNr#(u+2URJm*Nt-Kv)2(*oAPrHrGT2r
zoaZGlQ_(nmAF;G5EZnE-AU`OeO7B%BQFEUxKR**KNUWZs0z0iQG!?xn3Evy1;AiFG
zXPupq093Tbd)6|+G>ip5r9=OPQ&EW-khh=ojt<D6f`v&ivrX{0XMP|moJ(1x2N~?_
zOFt8I&E)Zy<%XhS8k^v6;KiD3;0@na6YY>b0Ti{!cH1+rQR{g<oJAc`p8RxOoXG{2
z00%L-_MdbHQOnbB?&;-nPq<l{N-M+YoT8^&Hu)t@EGU>fu+IO<Xp3fbG<+T|rc4Fh
z#m}Fx04lMH?}g-H!gZ%tP+e=npC?ZRKQ-%K;M;a#MAan8)^N7k$f@B@C%y|smd?H~
z%1PR)k^zmo+A_$01~D-dUzPo1U&+D2jzObJ7cSOcj)DnGLy5I9H<`&uUpisjYJNYP
z*xlKv13b4g#BW8STN+T!fQ!FD<HXZO>mHrEyYc@7$L_Z!LO0pO<(=0w+Q9A1Ho{a)
z0J~6vZmx;FwD)brx+Jq$LG?t?Ut9KrvSG>AjLH=!W96s8d08^Njv7B?bOqT@{4UZJ
zCEvxjlV$?9AVXJmGnc|GuEhpAv9D>ctGMf0vfu8S<SPTKbhaOyZAid>@tPKknzPTD
zI@pz0^z_lo$qZ6vBsWF_3>A5NOQxW;O*7|XHFiuGM`A!h<SrJ5V&<G6noCa7g|6rZ
zKt&(Po&NfpjZYWVlk-^R4^bhMb(YViYV`rLS6WtV=u;1Ax9Dk8p}sjPtNK8hfeF_v
zgu9B-EcfGt@J{lxI;6edpPBD$mMpSpDO{w-d&5pRSi5K)EJ3pjY?&65spCk(U&J!6
zGu(BeO1&f$pQdr;i}%0Wy_nZXs57KM^F!}lMa``xR!djmnM*|7)=Y!UaTGOk?ybuE
z5-Y$aUDR??w2-hA8>l#@4jQ@7r*-&Ax@U(LCR<MuyuiYX+di^DstRb$uo4<=yFJwK
zy1?v(>f7amrX`EP;}(@Zi)bW6Qwg)8^|CiE`Fyt5QOfb;=h#)igZ$;$ZdRo^@$6TN
z{r~O=^gEzh^LndQInwlDwjxNdj`RI9peW&<pQ34>Fd@NUq$_w)s8#@#*g#q}HMOUU
z=}FaleRO<3$;EoJ<!PFdeh>hFiPSDvZv&JvDbtr>A4h-`TPhnflr9MkRw-j*cC<(B
zr;>y5)(xerJW&40{}OWn_B6kBqDOcTQD%rZ0TJZEoB@3^;0p?v>xtk~uLtB!*R|8y
zJKw~M{cC`EjhJ`*ouTNX{Fegu|4Quof0or=$$!YnsmGryXPrR$mFv^aRuU^?rt=`I
z7{>ejidc|P;pLOxDw<!^erpJrXL|3DnDrB{9p6(uM5JJMTg#ncIy<g2(h<V2Ht+c#
z`G??3V)V!p>V#zCzYRL-B9gwiJJZ?D1OS@W-`bo%?TLRJ$w9TR184ahJ*j$n6fD$v
z<W>?Lwkz=c6A31att5TyiJ*V(Q?eaEinRR1PkxpBSL;V^yMHightjB_Z*iX;!3<t}
zRo}~KBk(+V=KBvwwM}r0M$!36+S%ok=O8pd?)2w<-%7>NBZ7jev%v1CEmP0D>N9PR
zu1ivrw}etTO5{$woKIL(NPgvpiWI&EhR&ZmJzqCG>n8o0Dv(XDmY12SNctp=P%w?<
zgIkj<K}6~OyVS=Q*XN`_y(LfBPyV>11yXC0hxFvCqj6p_;D1{0^LhT~^`2iOdn)fY
zaTAaWR?hkUK#FQFCyrYwMTz&vSS%2Hgao2(1bw3!N}Y^_+NUHFNJ~$=ed0aA)>h6?
z#?Zdjv^tY9y!zU`wSt@Jy~;5k&xyg*L?}zCNYgW~GqyHXZ4g?Sa2Vs;-*I5UxLH+F
z49GR7qw$97IC}N!ThJ~RiHqyW&em!_>yKC>r)ez74XG-z+Ym&R=KsPk!zDG%SHo2;
z3h{XIL|`hPb19#5=l38K+-0JpUp;72bIQy}p=F_81=-p7L1O7-flPL1G~6_gV@?Ss
z3>*7N_4~hni=-l^p-hYd(NRaX4&2dEKbROh5!VB>Dul3A#(`Zj)jXWvQnTMLjQYIB
zoN<j_W^LW+w&J)t#{Lhc<<S~}Z>k(9GL$tWBSTL0en|SN>m`%jgn8!l-~iG?r3B&5
zjiXWZKi*@%mE&&C)2FOy8mlIs7l1_mdw1IT5h3QeBP^eCKl(=lcw%z2A_}_J)gckA
zc`idmYU?MGt^jN?WfBnjy>Q8mKB*}w3f8i#*&P5Df=<+_6tiQTC;-y5-!Gs~>7_hu
zhGNqX9)tuMc_-j{mlyVuUwkH0Cq9Wstwj1b=Pov=xKlBQk$-#7i;o*q_$O2KaI!Km
zIGZy0EIHVt(X#dlRVWgTaYtP{Rb8Rcs@+GPD+ut+YqpwyPF=Flj4$B2^FdqxEXUBa
z(P|+)bh<4vt$_*JCkp!5FXk+~`x0aHUfiA!J(ZR|h7cmEGtYsRw|QR9&tum4x5t60
z)d*uZhY4qrWqf8!s?2>gO|bj!Ct1<=Qz}Z0rhN%72an+h*>@Rmai+U^r`tVRz2+j;
ze%!vS%EHRRg%Ms3nXt!*Bw`*%0b0iX8HuohphbPZwN4Qeqb;00K96+O7+z<K8+a{t
z-Q&zlQh8HDa(`KU@gz=^V%$&XchH9Ui{!kWeIVo3{lOTt@zdi!1HnJ6`6*dHrhP5A
zlAW{dqY;e<Z=7PG5*TN*BM#@a-f1tOWDx73;6#0sui8#s8z^6M5nk?q%<6cuWV515
zcRpG%eQtY-EX}mk7`eNt0|4I(UjFU+ke=Sfu8y9O-qu72u+vbfSDFKcArjvKJ0@It
ze5j_5w)TbQ>>orIV3WNR->^v3c$F{<j>ieR$WzRVCbGZoX2mulbmrr$xf*NZ53n*c
zpujYi=ofQSYxy4IQS;9huA>P-mjZ)Sf6u5zuzp@n%Vo%Q%%?aq5LC12@oGa0Gm=s%
zp&-UOjcL%DVGxq10)kiWcC6LLvId7itcm~*wTdk!p|*-Pp3C;aTCLI3H1)ymBG20{
zZ5#K>Y@oRS%gZ_TqRibphxGxDD1~J+(`;rjVTZ0EkuBx1ib0t$0Kc}LFSO|t&Y#$+
znvbNz>09xhKfP}J-_Uj}2{1L&f|O)GVD;yDSSH;%*_4LBJat!U%6b_TP-h<V{in63
zyoV>ZXm>Wdxx#qcLM$Zl+Y1C1xSKi@{LImDZMqNd&tQM@nvt7MzYqJx4^3O?2;Ltg
zzARi-GB9mS*T`Xqv1}leCv|Z-O4h7$aU?PYg)q}=5_@ya3`~9N_T6~$%Gm-Ji{u^G
z{d5%o3iZ>|n53bUlmdO_sNUx3V#R6?MlXuPD}FuBs8@4uW*=<SR(e4G%84SwgX5lX
z3dRJbeW)=Ak|`z-D0Q6XOh?beR<{<&T9OVGYXwB}S9M8X6$KTC>n{Il*<B#fyw8hk
zVVc+1H{o|zDVdVBAmz5-I2nAUk{;gMHyDH!%?6mj4Q-u9kC*%EHT91!-Xui{>`v!b
z-}VHs#UElR+DmGHjTR2t@hv8gV4G`!q0x}axp>BDlZ|z0<MQMMVVF!DG$j}IK}Foe
z<pG*>DYA=X_vxal{O_{!<OTP`N56#gf4GF;g=rRJ7>c-tp>GyHdc{>xt$dLwlA@!>
zD<gJn{toGzkP6f_MCk!;bJL59y)<!aBk3}CNT<qr$-GES8vN8JRk`cz;?$mlgVjo5
zUZ|y%g0JQ~1WTE9ck0a9z7mEw+}|;xhxP_MdswSoAK1I|(MbX-EjMo5RVb*<xBrNN
zpa>T-oTGX60>=jnH+$In_AHTD;3{B0ia2CKPaO5<J%7vyNC-{`>I<1ElbJs#?lZ4K
z246)hRW!ew9Utg`K#CWA%#3a3SlMR=I`Y&|(-I$a<85LuU84Hdu>)N#ml{)(D&8~o
zNiF!|kiJXdzUV)|7P}zi%hED(S_PJ-Gb3Fns(#Qu;B?7}@*rd3uTK!C50QW=t<C)z
zSbmRj2d&@q-v#Om4l>cXB9~85@uRR;ysdJeQ|q(*p$Q)t#wkzE@519cWy2R;BFiXg
zd?tJS^--Yy8tFQT;GL5-(OkCdcEB!Xl55(TlXD)ff@tPw;euBl05|vio23GCl4XSC
z<;VBe(XWUht=_e*W=#|h6%k=5N_lW%4nA5Y3CcSvuO;7s?&pDik<+Qgby?oq_Z;=E
zXCJ@RB?F~@Cw=(fG8rc#{Kc<(0|y7X{fcyuo@R)i#ztX&sjaZF0W9U=Vj(uP*O|0^
zh)LP^T;?})pVL)K`k<)$5i`EuzO(`adgTd3=rLMA-l>#eFd6q;D!`+|k4byTls$|l
z$e7)t2%N*t(y<Kt(<?`M(LJ%?j{8HCVy~^IXbEDnV5uq-)dhiIO^(rA69)}@EzcSO
zSlJD`IP0o+*ubj>)l*hZzUb7W5FWtvm|@B7^WHMk5ZV;L*58?W&F97>KpzPK0M;GE
z&W9{@t-$nMSJI+Ik54thO+_2$4UuSR%@#&9BvZL5X*Ki!fUjl8lRUfR0}Is#s>|6@
zlsHFg(PPe9$F&O=j61e-&TU;|g+4_VxczqYtH%MBm_qU-2A0Nh0A)-sQ_tAkW~{_A
zRA}np!mi9#VP21G{S~G+TRAoKRgKCVHJqNCm_J1@fXqYR77Jfo3o7M(H&B(xk-ylC
zpRH7&^WK^gYc@po*1-YU!`WOzlZufsCXw(R0bz*VkA3RE?lqc8!eAMF1DX!wzn%_{
z=6)g{!CoZsg1t|~)0LPMVa;}D<v5UU#0N!R8RGPB8g5AXB?^Bq6j#znQ`tM8HzlNL
z<i)laYyv$5z+1b`%J=ovA2?VV9d^@&(+hVtgu!pKmFQyVp?wQ?86wmrJ7e7xS^EMW
zEWd`?Y6Byob-^}hXrTNZ1Opy2=N|uqXoEt6Oqt0o=F_xXbdl|E6ZvtmiMT3*y9urD
zao$4JqyaUDBlboxa!vW^+agBUbIW@#?OP}FX8Y+kBF`25(oFaL=#bU-_}y33B#JD0
z&1d^LNz4{MycP)=lQxl7Y%=S@cE!KFU?fUzwmTijo(GY&=!9aRs|Ow3j=~VL;7WaQ
zcZve#-H{QGr_4#;0tC~U=nS5!gOmY4N1N^Mm?C?@-SO;zdS2A{FOnZuxTp3}&C|0c
zwtV$H?I-|gJ6jTI@hsB!4XXF#6KX9m_ci^9xgZqXvdf9sukhGi(P*)qFsr2MLVDg%
z17P_S8G<^AB}?{J1DBxz&wPL|0_Y1laB4AH+$Plux*_gcV=1u+6*|(9Ce^0IW&kXf
zZ1*f&bTK+9+yIi=@$3FY>$Kh1zb+m#I!}%BuvN|v{C~WZt^qtV<E8!Q9sm^xE;f6<
z7CCi|UFW7hcF^U~e_KHC_goJ66i0a;+6^_s!kVb{Q80&fj3^W~SU$UJdVbfW$1yKY
zQ{Va_>{CZB$oyk4I7i{lwYE0T-)>3!POlO`i3P$!cCXKcJ}%Qr{=YDPy<OMfos5uS
zXi%qnJ!N>|`wC+$Qt}GmC#{%_Gjlo{Hvr&QpG^^lMN4e}{c?8ZM06cM*(GK`Qga7m
zzSG|W7E}Bo0!FO2m6~(ak7rFiweI79TP$r%4>z%zkVs!aOy9agz}Uph5$-rXUOXWo
zq;@;*!~uxI>C~Iftwf(OMV?+568|-a+V+-b&zv-42Pm;T1qxK^!7uprT=@c9tNzY|
zvxlu#FM>3(7<y5!;+P`ZcmNW=xbNnkxjd!VG&Yg~qlccNa5n;gKG;c+&)Lvmy=(vs
z|4F1PmSan70eIyNgSj9OeF9`QLvKKY>ZV<+Su}+@26*uSG#{C;)VaQY8NB>~6g2qT
zSM^96j3`(c89?1wv;TBqy@bNh-Wa-#bf3$}{VA@B6PpbMh@U44pZ!-iKV%!>_N+?<
z>K6{6I;Dp{X1(m@Gat91#M$V{x~ZvoTP}0`_0ZdLsc+cg^F}R*vrX(1iAL>@7!zhz
z;uXbvmyc6LUkgoH-5at2g6qOhmveVt8xB^SextY8hW;%6ylcXDpMwJyfXep1iA35W
zdl>`$`e~62cs5|H@D5-y?^;=Qm7Dea4L=Y4#WH1w28J0K$U&CMW#5Ny<>zb~+nMNm
z!Am>|(7OTQr~Mc9FwH_0g5xVCXb7;B6oa$Z?PuV$qYmMl31^H}$=&X+n$F85jYIYt
zpOHT=tAk+{ccLc?XUEY_*izDyrL}K07pSp4O5#JQ)2Ijml{Ii_p%mAYtRSEwet;Gy
zhV)GPukYNE9BzCs*4RlbAn8dULLLn71Zc?ZD|hOdq|Gr)m0GiPf~3peE!ly5ZSHMn
zHk~m{N)jxlo%%FBo;IfOL(C9b>S2Zzh-|5|6$yV;{LAnL1`BIv%lj}9z&f^ek6J?%
zrG0yofRhW;k;h6dT?M8jB-h8vg-1m6Hoz-YqG#*p$G;`6MoNotF*@ZwoW2YtjgMvD
zAOwMhvZ7*0AV8CReHe)3Mg0_wl>Bs)b0{}8)E+~z(@rc{N+ZL=p7dMJl-v+fSFMxZ
zu(3OFGq_mAaxn`A=#x60EmHHJ<s4Lq;IDmP!FqF*oGctHlRm^8w~jAucmHP!{^Fxt
zbu5w*efBgBFn-P;O4Ic7hcutO4WsE9QtVm$tVQ2^wCg&;^HOlm)QuJ6gk7^pvq%+C
zK!xX=*r=k2Xvb|hd_oJ-7xFh3J!3%&)CZ%ieePt8p*3=V%D|Lh>=uI!+X26cHBX+T
z9X=<FH|Ew>>sbqVp<PzWUwKR#!FXfSy*$z%4b>Tv6-t9*G1ESDcN`e3iE+x2#a-Nx
zNjw#N`?x|ttfF5GdOwJLL&^Q|Ph<budP<4IvtIGuP(IqX9^F0vm(<tKKNZc99~=J5
z`Y%3n7B?5E9%k?LPdchcu8zu+<(81Fowj$cE&jCds{zgB1L;`lZ=7M-|L-L(XLe@*
z<fK2Z|1(VU_wWC$CEEWLAoRz;<o`#b%Z9Dqxpk(!eN0<9X~R;%@i>o$2LE4ZN1qZa
ziv6d!c2)rJaKLE$yM$dae3<Ja#aoIMD}X2C)Ui=+qE_!8tWOSi#v2nPll%h;kIQn%
z);y)cr~9LQyNzJZ{_7pY{TpZpUT27^<xiNdhZ16KN!AT)lsPil#2fGY#-B?;#qt%J
zjyEmBt5xzbj_ddjOebPRNUOZWSET>E^J;)aUX$VjsnYm2SFB};__$_<dd2@vOHpeh
zX!;f^cEOxM<e?NGC9VBnim^5V&<%^!vZrw3rKEu+9V%5cWyb#6@lVUY=3C2A;@eN^
zw8@{R2d95;2jbo9f7^%;DSp}W(qCT(Fd3}Lp^-#&Uh9gPz*8EBO{n$y`wRJh^SWz2
zw%HC6PSi4pcv%BN`d2Cjs7c@oG%9rg*)J)TD*syS`MI8C<&4s?TLdWS&_PW%aFYm;
z8D+z-_z!|G*4(I{M(oOqGlkVQJ}quWY3FC^6@o&uw7BOg#5RCGxhK4~^BT%>*yvY7
z%uxcw5>t}HY}SBJ6nPXP&&dvB3hC>VWaTqpahqMhSFO*VTk=~p-1USbKaCVg`{YNC
zK=3H%6KE{}p~Lq$cY?%5dn#zpAhTxkv0q7z^mKLlVeZs~#b8~*ieg!>y(GdQ>eujm
zl}?2Ruv2PJ*%k$I%;87S0SeceLxJmm=yWqDfm%K4&gf8&gbbK^c!}E+QLUZM&c<>u
z-2^R&f%l)RdpQ(wkNkC=d?J|K9rIX9+wDmR{WnJqJ1UL_U}_Y%F_fkT=GY)@v~V(`
z+t~DY$B@pHz=LI^`gt9%i-ps@@B@~b9|zKv)#;gL>krQs4e@2eP&}N>_I5WM_J=a{
z;%(#maB33~MK8J80S*1b4m@urOaGn^Ad{)<`ivf*P6yKn((cbBSXw7dr?FPIWM?BH
z?sIjy<|DmFP_;k&?I`NlOU&PFJ_9u1Orj&ONpw?>LeF(Wuau?Mw2R9D75_sChj2S`
zIsU}!$!<PfIKYqEojg;{S8*ljXbe4}&NT+&f}JJZ=IiCQDhRV@)&8YuX#K}#AU`3U
z$W#SVP#|lx=NQ+rBtKo%%8-+7p<TQ2tm6X?T!>~e5i>G1<k{bSin=pVTFr|6#x2Wx
z-%4mF5<OTY0{QQHBlrR<VO0pl&Ti=(jhD|Ygj+i>oy^APZFrYoKVPbbU~5SDzp<1t
zuX%_Ae*{F@4i_wbRy<4jR=zsjC&WZ6z*l2u^cazih4_8pNY`p8Udi0P^d&z((Zx7^
zn(7;K>gxESjkYxwehU!2<cIqloy)D^S=A-+$e2Y7UL)g!EL<(yVprrO@kE-r9!WXQ
zfZeowC?{}yMz--Le}ps)e|^4M0}kLS_XV{t)lSC_X#kSzcU^1QaMUwKsUaOy`QZUa
z`%3fCQWIxAbWn(-1OT|KANlON5_9+K&mOne<Ko5#yyv~-X43ezrFv?=yV%SU-`{%w
zGt)y-8QD<eIfxfH?x~}lTQG8(n*suu$$gQaskP@iIXU;_xqj&lX#MMFeI{B*lfNo?
z5;^`?Je}6hNaI}2aa+Qh-#Cv)%xI-!AoUhdX;f2*!uy8l6zSAD;4zl$U?WD1OV?Ar
z1gH}gpE1Ofqe|`6b0FoYEqNN=IjMyX9NCb(R|NE&V2I=tSCxd!pmxK(S<Lrew&Ir#
z&XuZ`?ASrBTMpd#fK;UVQKp@Dk~(~Q#muzIXg{?hR_3=jaL)4#)c+w9$tizjw`^;>
z(=&3FhqxMmlybTPNtiC+^IT|0rxY3AVo`u3!Zbv&B*#{j86Q;db=o?&FJ7R2e&w-^
z&ji#7t!G??=)ORV9E`<W7ROL;Q}&BQcBj7g;XG=UiBPGBk<8RtCXED*1_P&Av<)h(
zj5d{58Dk}=6^xp(8)LzI(q(cK%qOz4SI5e^`Y#Mo>}YWFm1u9o{zP5BUZsOU>U64)
zs^k%_M9ZHc9=x~Q5R~Aa|Ii01H%~Yz!FY5V0PEFSQqg)Jt~FoZG)0pI&QgNeih&WD
z)-SF+j;<Gg+!dilnQiorC>Q|KTq`SfX6U{_P{6_<Ue^tq`$QiOF9C*uuzAiRLlc9n
zr4Arh)w&h?-4T53c%d&?-oQ}WRZ4c4uucXC!wS@$Yig=gU=vudg`VZ?wcykyhZ>(!
zz4;txe(k-6DqEoXcHLI>`hG5gaTid=arZ3k+G{(QxcIab4+37_-u%g$fk=R-2zgYW
zols+lu8t;fR6<YNg3)7H=uJTS`7^4>gLyzkwJ5T+?m+2H;ywSiKdYAH&*HG$uBbwF
zTOzjVwxy#|O)V6`FoeurL8s7TC>@<N&z%MU(4B(ZR_<=1K-gc^fnly&@fJkVDVcTh
zb#-iQ%LcH|EarEmY*fwE1g~!#d{U#DcioF_sDK}zatUbfU3;YhajxXBq~vfNDQ?Md
z)>$ukMpIGt!OI|H>mtSwY26VFzy1yGIStBO({X947jlxr#p>hoEgikBH(hX=d#y-n
zSs|sdieR$`z4^0(0oicJlTdBqZ?&X!Wn_Dhrf}m>u__*h-90nF0|^r|rOt_umeSDf
z@B+NPV&Qw!Hn=**O8*71g|SA%*#6|N!RgUcT3SE>O)!$ng%orli5=DOlIMXcPLc8@
z@CBwY;6aRy4WW^|8e9Eja8s+Mga7!CG*kNYVH%K>2e6X!MM4H-P#jM~fy+wSD?;rM
zt`c+H8M7vmW>cqb0JyannEkB4$u(8a^PS8T_2T`t(<iz$X5!`k=~F>zbgSb5Ky`St
zy8v6v2@)+pe+^YT0PGytD&?HD=uZdsyu4R|Z$Z@d*q~MZcb_Mx=Dzl?3_M&&!)u8w
zs>EPQZ(e#WpxjgoF^4$^2eh54x9g<rfkFCL{sh#XmVlI(lb;yZ_k7A*UOl&e`Y`z0
zGik?|c;nmPs^#zWleL=vdF*8BdCv0mhrR^AX99P^Z=PXAA}sr*9>KAZS2z$%n|P&b
zXD%k6<;66;iZ`C_SQ?IMagn}_R_gW7`}P#B$yunJlFI(`2fybmz<>30sno65e~syE
zjcs9WvS(&%OoN9Qn?OAg@Hxmysz?Dw#2};_K**B$^W$q83@Q1_tJ%GY<B0)orKz>P
zfz?QzbNi2Pl}qY}7UNmfNfkO$nil|XQN_X;NZi3HH91RP*5U=U_Y2&3mqOgU4iy(h
z7WY$!EAn$IJ~7Oco?hYa3mda`Chm*B@LB|@pQ|Q6Pb4rhJx0T*fxVHQhC!puo-}Hz
zx3${xwhOG1nds`^G4+s%52b@91dskowbpYXx91+9p86`{&-2$Za@pTQF8$FeXU28$
zzYvSR+{2PGcV)}1_IJmo<;r57Q#5LHGH%b%`Wrt2IV)gr$AY3<Q6K5^rk@oU0*kMG
zCxC-;@K7y*)s@$2CqE%rU&^DpA@shMOs5m1-(cdL&3c{B7zAMU5;WUOMaCPzkslV*
zg$FxDLHNZBvjB1~S0oG;ez?+yyO8kL+#bDz|HwIDx*)%CT?VR^6FHLBb=qa#j|r^7
z0~0f)^6|jPD-cY}P5)vxc0^K8^FD#!k_S`u*y*9%Rcql5t{kQG4t}L9V2>Y&zMZ82
zU|B^HJ=1BIaz!HZHCF#Xdr(k2AHOsH87EKf#FfPwl?NIig-*4#C9CtAo7Lc05G@*e
zm0)5*-tP#mYi#B<vxqWO?X(=GkIuPw*JXU=KH6m=SgbQ2h^6>ZvA43W;MUbrLuf|+
zaoknk9tJBLZLwmF(fefZ4;FBE#n!Nyq9pLk6`@T9swjJI2HsqL5!jT(Mt)6dk;JbJ
z`$eCyH8rF1miTthVt|hOA3age{3PBq%Ac#e+X5VqgL~#@qr2Cd9!Y;JjXx})%CH(o
zXC?%9@%!MCJKmrC7;B3c<$9nbiI0g&DN%tz@@iEwrp#o*9!NI7=@YPFXZkLY^(;(m
z|E_SepfpJV&l06W7|f+>cf-waTYYO;hH?t%ME-Wm5t$qHe{lla@f17V0pcaK`Wv~Z
zST};i!U)f!kc7J=Rwv6Pv-2tPHJ?u)JmkJUqd}snvvZf$>jwzrKR5wI^Dkr%WKp_0
z?~&(2o<?9n9Td;r<Codnnx+-hy(`+&23Xvt6)}%2F}})3%v{|7e6xXzBc0{IN8|{9
z^6m&z|D9OR7EpdPjl%$vepVC<+&>rjr~0_R4{uk>NYnU1L7R&2Tv1)O4_!E$8EaGT
zUDw0&*Z&bOi~pANrC_{BM-R@U%Lg>fwEndW$G^$nuiU*9{_}+60D<I2z1kfypUna=
z7eIbYJPzO%__bC3hnCjf^<T8KzdZxo$)b$y7M%fF<RZJ^NkAt45b8(_rWWcqei2N0
z01nVi&wSI45!oJcrTsq``wOVHmZ*;#4y8a_3Y22SDYQ_axVyU*cXxN!LUAilpm_13
z0fI|_;!xZrxVt;#J-xU0d!F^JXRY_m%4)+&ax!Pmo|!#+_WXY$n8Sj-B0a!X(?1Vk
zyhM)SWK;JE`{ehuP3dWV{Iu`&PKTBA>m#EHXE}p4=H{QFIT!_G62=E@Fk3|a8%P12
z^CJ>*vkM26$LQ&f68$@g12)!B?C1PlWczn<{|*?!nVBKgS_j_q#%}V5W%DaX&ap>5
z!2i?bOWl7&P(a7!mNnlJiyp30);FzQL{>B0#LK3nXp#31OeaY#p5je&46)EEmwfuP
zfkX)ii!QSOJ0!S`Ci03O-@5MBU6w2^-|aX992D=FqvQ@MmjnLm-5Tx2IzZGDpnbTq
z;IkVALc9&U#5Y5gv(~5{Ic++h>Zt#@bo&9QZ+}Oq3Qlr5Z}uESJ2AQB=E1!|=Ml^-
z;PR=#uZ;Pv{MqUo(M&g(77`{gf1cO9<k?ZIm{Nf%AJ;dIA?GzpG5PY^(<fMeWLWW2
znJ>0-dxop+CT)gFE$t4=)7V4lu3h`QXYAon*j$bE%HCeC_k7vi*CGA$o}E7>2rz$&
z<Va3Ffs_12;%AUmRg&6%dV}!iWqnhU2aWMuJO;+FGrt(qGc#4KV&tuF{M|z02m$=(
zZoYE^>h|AL(jF_f@j?t!*-*=rTQ3?S)uDyqM_$u>jjp?+WeJbA@^+a;DNIBEY+T^&
zm`!<~GoezJOCchvsj1ZvrK6*f5|zZD9F^5ZmDB8V0OjldB3f30I=+EQk_D{fQcJ{c
zVvUaG7Uu}tf){zo=NdI<D=>TditdviZM73EcjlJxsCOr~ri#1tT8j^7(+ag~jyY~-
zz%-E=M4UgWYt6tqN*f#2Y3ysaDl1=X)v@uEbHx`Z<+z6N`hKNrwn$^*70xzGQDBed
z^*tevm#m>x|B#Tt=I3WKtjC)KXz-#FeG>m-9Ti<<$)YDH=&8t{_emF;qed&0+#v5*
z>2^hLs?$6*8h0=gXKg>M^3hNyeRD=p)hwx28s{>S!9(~h=4if5v9tN)&5ag$Ri$Yv
z$CkLj)cK*Z-^A8Xu_v#sBqBYa#NH+$_3oAQ`>}-uUh*nPO@sT^!jP@?xitnc|E&G;
z8+e;I-`&f3lG@m?7pReQwMT4#p8vV!FSi4GSnU=-1`GR1)_M%sph%iq>GY2Sj-{dB
zy}!ruZvarl;)8fzzWGa1u1ej|MNwAop<h$B-ezW|OAX#&*ZEAY22UxeqO$o*B1Vr=
zQSyVC8vkMbjtQ$8D56X#{R0X*{@rfRg-_pwrtjIo@3{-D$!B(}`y?|ta&_e}lsz?=
z|C>LB3AAGSQ<P@?<n5+i9}ZhLfZ;?c)^)zaF(yD(ZJuR#MJm3-((HV-7^awTA4E`R
zyR-)YsOkZkF%W36v5ib#)Z>Pu<JiH~fGpHdGB<nQ1`S9Vtu`$C1tu`xb@$<Lck9p!
zj>AmI0#8PlI>Iw=74yXN$!k(c_?6~o?jNuh8qtzFvJntH=(L>HooxNummc`5AaKKq
z`d`A_ZYq;a82)X7i+xzd(S+Er#xrE}^$h-8X@zlq{deTMV~OUbebv^(#Ef6T1M9yn
zT_Kz4mBu$kmZ^js6OHsNo(*#+Sl1a%$CrnSlvI{s+lzdIvyk1z7EcQC6B7Q3^$n|V
zpwMh3iEeKD6Gzu<Ruy}|^kJ+uGC2zjs~4JO{C0Ox=ffX6TdOK0ioY|*QaITWdPe0(
zL6-CQa6MV<NW!avhi4rwS&}c43{ZVE{wPDozV2Ym;Hio0TQ8ft)VjVq&07Z;YFNP2
zH_G65Js?U*4RBCoq@^D&o3a2n9DuAbvM}*DUUu|7Hj<cm>|t`Ou|}4BHzp*~V>{b8
z04`QYq{(c$B--b2a4|H*#C#9Xu^PObN0Rl4c^qqHX@J%_ao+pW0#F6naEOXR3lB5Z
z1gKYtB9$5+Pfs0My$+_rmA71*I6bxjI9Sk+wp}p5BZICts$x+-Rvfj(g`n+Dfwd#U
zNCaZ`U?r%SU0v@l2|0Ivby>@$u`VCi%Osa&aC(N=C9JPcSWnxd5uD=aw?XP4Ex?(-
zGV}m4$D-K8!~y^{%$RD(tFh_DmtSCLW@<`e@ZO)HDPU2P0l=WRj*Rn3Gc(r+Gbz{6
z_q2Vrocl%_r({>&Js&9-HI0pDee<M1T9utzDj~DHvd;MCzLkTO#kkb=4K3l+#23#X
zrOC2^N{G3S59iQODVSkz|94{pgyc}xDs?khtg6DGp11pVRAm+YlI~zCu&rTgD(3mi
z^}Kwm@a;`Hx!6ozW#w*I2AXYW17SI3jy8wt!MwAsj)sg(tvN%c-Ivi)*)pAMTUdy-
zLGMIKPi2+a+8X@u{`Ji#-7<ngFW0Hwu$@~Z4oY!~L?!W%?(v|ST0<h@H}<6RQbpoq
zKM2@3>+G$=K5%Q<+74=IkpoF;q-E3zt*JbB-ihKDcciq!X)Xi+x9?XVIjnfr8JC-T
zhIpaQ^l@QlYj~f7g+urH?gjboLIWKpF^^kFSXGs?-C`r*Tt#_s{>^8Ro}-YZtj7nA
zfyY}{*sef<JU%HFmj89Hl-C$>_t4a3_vG4^{6UFE!0zOOo1H$zt7BrKec%Pe2IwFO
zSbuV0+RkAY$Ut20>_}p#3)QF9d4DD+>d>pFbGa9ZG^w>d+>TcX;5|jYZmQ>Wh38OU
z(gC~^A-|PNI@-rNgUyu(Z2(VL4{sZ-uNTz~k<NEoZqwVF{>bIWTI!hl6~IwR#O8!s
z^o>mda7Smqn?L9+Z}+k+Hs=W8>`t+NMr*g(8Af4*`~oW$mg<i(ZVFdjz5OGd-4<rD
z$;032v$#a)6O{Ebrv@UUW2d{jEt;D(7#P?o#j!}i7pGonv2967QIEloHHq()wJul5
zTaN29*MVb}5fRldMY_8;P!INJ&Rys*O-<rkd_DW3qwz&3Lc*AtS>0;=r-L%+@(ba_
z%aRJybF;~<n-0BW5re-+X67N4j)3aAtyUvDo0zdRkSPq~PM_yc6?J)NEYR~s|C2O%
z?NRx0zD}X8Tz4*u-`8-q|3V@rLtbit6F`!wxy9JI#pAPV?I{t2i56MnOZEL}+*$m_
zi*d$<$QZl6`!kk+7DxjzW^kwgSx!RXFsupwHB4Gs8ZgVUV<0G(h@uRA=%4DoRh8a2
zQqOlQYm-qg@9FHMRV_X~MgcmKnyM<FL|a<w21r8gj9_|7V%ew#pzbLz512+U{U9vt
zPPE!;k`gw*(ENnF(UWJPqeHbWPdCl15f4pxH=W0yi=CdS-mDFFjDl?BctoP>QsQ;7
z&ul#;tfTU$A3wkJE^_GTm?T0+LgK%BWoPtDrRWzrX*;;SB2U!&GD<k#2r-CrYU+1Q
zv@`{U)tlQf2?PGvxNnI)Wba-pebC#8JYNEH?F--)#S^^=3F~bOQ0%RFfwYsFf{kN2
zD2q?d%$A*F6kSFf8m2-smN-81g_`D;rzGcfRoSa6CMI7iTgSMm&L}2UgBPeZGD!e_
zwnzrAJp8$c=n#Er2+*Pu;&TqBW4k`mfQ~C^K7MR;JhL-0s*-$Xvjp8()FlL1N{36a
zvQlykG#^Lvnb?`e9;_FeM}K^7;Up?A3U`E1qS-GrrzIqKug_Q_R@RH10TW6U9a&K|
zwWP*#^cc4w<jZ0lq902cK^X@n$+pKo_<`kd=NSM?6J~MTrU$M!eE;73O@VtXeKL6A
zr!H9aQwFZ(PKpT174=eaecmc1K;uG2+uzu>P+tM7cn%X&P>7H#m8bw13~H>fr~3&4
zazyA7WZ27%e_UJ-6a@6kMLt*2FWk!w_zFZsv*#|hY6VGQPEOUp)lXP4GaIpLMMR9%
zH&jwmM#&Zc&7rZr`5bd*E>&uH1Q*9Le0#`tvi0KuYNV(rGP262<FQJ<dL1W6Q?Rb`
z-V^+3a1mdN2Kni!5#aXhbw6!zQ7jvMg~`QP!PPLgZi0rnv1w(L!)9makHX2zJ9F$H
zmm(@7dUa&&;nTekHQTDNvE3VmKS(Md^oiyA$f{I1t;sdAN{w-#>O0Vo`L%%E*)T8k
zA|O}%Gan&-$jX_gTP^#^i4;Li|M>XiOz%k7tm9^Ef@TsR90%xx7~oHhw#S5VyW6>+
zU#ARey8}$CCYi!oqsp+bCy4hLq+GM*wvlRd1Xzl~!cHnKr9h~$m~pdbK$`s3i}$8u
z5i(kJHme5qb>_oDNv01EzKDqT`X@hVs2hZ{o8iltn3FGy?d<L6n>BO4-qyHkBOzU9
z@%WqG&#e4m@VeZ|i@M3{Mek11EU5!juyH`4vfi`KtxS--(Qi#&$S*s*5|jSV>^Y!r
zVB#ASli7q-6{G(pZN8+a@9im|T=GmzR;sdAMx7*71PD^~nVDKO=#Z1UW3cl?axxr!
zHZ<sEweHT~P`5Mg@bappv}dL15x_07<2x+R=y%?lXzbI^oCcHHKX7l95z?dtTB&S3
zMR5-M>4|zcRo1U>HsHxy<!;~#X$uo&wRmMefSWJbE15UP(0KBZZnpH}K?1nbrUN;>
zD-v56Ggs9*6k`obF&cEat2&w8(SOfN7dw1@)H5E9{8}fC&oh2^V&hdoI8s1tG9Vr#
zC|CpZAQa+qR%3Z99lbq(^&Xe49;~j)iu!uF>O!s7eljI!S6le3tkwXe%a;T*C7R<Q
zq7&7Qh*-wC0?Fm0RyDd!)pQtA)mDuzU5)mIkKfYM`!^ht==IfAbbKCvKdMuQ+v9)%
zUUxJJN4^(ZYg`A)E6mW2ou$^E=9|c!tW^7bn0IGq9&dqxmDwEBHZnQUXRlT_nO>iY
z+}>Wn+#H2gMh4i5$M_QS;&Aff_pA)S1KnL}HP_PW)*qO<_3*5=o6S2lx;lUz0B?4P
z%k59*qGH<4SEAtknKrlaFq`cw3n5f~-~5fUtLN<vQHElD`(}ZLhW}u1rQ3LX9^T}(
z(ZUFDYvFc&^R>ivo~Y$&GEWd{?1$fz6B3&3vLXN?v&Z|JILYVRH&=U?#GZ-ReM?yv
zS9rWxfO4r#G=UE}GrL*0?_jc|B-u3&QAgDTm{cK~EHR?fsCY)!cvnS8vuLXA>nO%<
zHZ3D&F#9U&%MHo*T9raKbEsRY`sf>XH<h9;`#*P2O;xw(d4WyY6JB1-aOQ#_Ae;UE
zirrp=-E?l)d{~d$ZM9Ue4Z~K$|HK~RQc~c@p;t0_xZu6LeZukt!Cw%bx#Z6wR3}Zg
zTxUIQv=_stmX!4NVsE?Sy*4}j9pFs*r!-0Cj@CDDF+4a!Gs*@_u-6Lll_`CB)~-(=
zu_R)9Pl!ZWEBs?|O4u1+j%VwZNY`e-Ti>e~9>-kTYB!gz^EJ9>K8`;je=*<C`m<hx
zJdWLV%wX~~n3n`B1`&^Z<gi{@-B2!g{LLsU`7j4K4Okub9fdw;X4z+3@^It6egMep
z$eA8TfxOs=LxO`7^pF3y{J_F|TNk_S^N6CD7oivxVd`yoaz2XY)t(-n_a`kR1^;e2
zb8azHv7{zkYAzt)l!SU~xG0rv!{-Se=nTX8?n#?K!{3dq?!}`PfX<7H6FnflI0sF9
zsXWfSZ&T*kY#uZYtf$sR3~WHXhVg=R>~2i%hdA7>w~G{wDP!^ZO!_(WTiQ2=lYP31
z<ywF1dKe5B1O!;U2zHuE4<=-{TdFZGD-U|kho3t!GSapj?60Z^B%XInOsu=s{S%t-
zu*ZJE?X8yh?dQtL&tir`J6&|lM5$^C^pYmmHD>!<1PK=-N=#24?Ng8DD}g+eKd3HD
z%z>&Qd31*GJ7)QqOK@UZW!zhQ{Kq?`GCfF&>8zgurJ<+paI#Lm%4<bg9UnnKwj|Sj
z>4C7`-xGO81ccTl95cy5EyU&IfUSeBzn<Jo6i-5gK!{A^Eq7F}@!S54iJt+0r^B86
z7rURMb&2N5^tLT6Fe<ssl{NL@9`Iv1A4(`Xpys#{GxyKx9a+?$tt0er2now{YwD$O
zz;)jX0m5z^;yhTlHRbD98v~2wqpiKQwa>->e*O<bZ4uMm9S?YV-JzX%WTWkcvX{mZ
z{PXtpw;z%J<sSSGkqpRn|2IJdDE0raRQ}I{f3|Y`eKfy4EbBD^=rsR6d?xDKp+i5B
z0{jsbh5tPy{7<9*=k@=v+5RwT{yzTa;QyHi@qZrtUwI4x9Buz^K(@E`>e_#SY$IE+
zMj`+J`R^lO<R35h&maHi&-|YU|Lkw51E_kIHCpKgf6p_FaAj-yEk(QjZpIa6O@XL*
zK{JG)s>`t8^X+RqtkwC$0CWE9*@70l)QO9d)s-Jhy8uP4J0z#u_1+~7fNkv_t;vdV
z-E<jBl%sFIwlX2ps=fFko@=VvJ@&hIajw}e057!T_2^KpdWH?%9<mo^oJzSy)0xe5
zQq4i>;ETwCm`sde2AU108Ib-oH(Rq4s<aysRH?E$lfJf$V2ab>R!v%*1T#F?$J`s(
zQsA@UG}-ODC1QPZ>&f+c^oB4FAiDW-vm4+ePyc5azNi0RNo?=a^jioIHcf0l;POLw
ztJPG2-&hEYw_X{&5z9YFn<#y^?7&B^Mz)N0G|Bt+{oVS8cjiznZb68MH|zTxxjXua
z^241qyWy%0IrV1P{w~VRI$ly{J+`3(1Jv$Ea#r$qM(7DN6P>x?RMAFjt<mqF-Kl?S
ze#CrIOss7UpnpjaI+On|5SyvfM#uMW2L7@AK}bM4!xmVAzg6eMGJrkfOSjeHcqu7A
zO!tAl>>bwsFxm(gAq^=-Z#x(P37WPorcQ?jB804-H7A$we{gNfCg#94UnLCy1kP5{
zkSw)c*{2C$%R-QaNjZ3Q-v4U{pmR+mPI-M_hwc50j;+H9j8k^zSFaTv*sfNUc0P~S
zb&|IWAfpl>t4j^jhe`GOXg+aPra%uJ>|-c@mmsLGo}$y>H{9SnO)712+Al(5`r6Y=
zO{g;$$YloZn+!SgtLOL4L||An6wb*tvlJxsALkEr`}+xzd@ZhBj9P6{fuiHii~NYN
zPV&!Lb;|O7j%Di4aNmSIy$EV%SoC<8K&u}w3g`pV#%gM$5MJ%fkiF}r;%hSKiK9gl
zGga9cdD}xDqTfiY3hU{b9#^cZFk`z?3YUGio_q6eCIPTlKLi2Yo`VNq-c3b6c@Z%X
zKj!3u3L`25G~!2ZRh^E{oS2z#0h@UERio)CMi4#KzwkXQ>ZNGD5<Z`0n2;!dEF+Kj
z|3|Q?y>B{msKp;E3r`9EtWq$-fF1diJ*j{mUCjdeHw-P9Wf%Y~P)p~XN>o|`<HkGe
z5oHnMW-Cg$-P;YEBo!U<IO@|#Y0{p;ta^`OSYP+VOhDLv+2E>j6;Q+%k?%Q<x(Em(
zTyhftD4lNojby<m++^uVtLV>?$Fbfo&s`(sB^js__*4yai2r{#bSS6lV8oQ185=d|
zfse>`aOoqKGgb$gz?JsZ+PMrpEMiO!Yj4F!nW0U)Ze*z^|404)Ot3?uma(1H4AfGN
zCN@@u$B)`bZU#Tev{`2#Fz_85f=rzzLSGK%w?Jdj!TS4Cq{QMSlYSE@KSr%oY1p!^
zZ1TjjRUEm9lEipkdi>!?{v-BAtDmb#lQ`Pf0I26!MMD1lF1%s8Qx*{3_*YVFOadmh
z@nDR<`Dd900Pg`i3>S-l5C+f%ZYO?A%6<)6?kF6!=zkZFSFS{p$ecoSaU2^VBklOM
z-JA&-V7sEnWN;FGDzUssjeZCsIGXj=s2k~`=$+;J1P7C~I*e~JnqReTZ+mz#qbOzE
zmPtgX$cnbyMgRQ%2Xv2vrv{$&==>>#bQ3IE?a?P~ekDk*)!?PvC6^9E+#1qPk54^3
z)V1C$MQYTQg<C?+6X)<#G&v=X`<zdn6>HJuRU9928c!bvWxx=@OZ8_}+Ok_|_U7D8
zD0U0gBCVqC0HM-P{K{=7;$rCVvvj^vUGfrKL(!9f{MLGBu6vN@PSyU^>$yW9M!VsJ
zB>xK3OxmbG1(d>msZqBH1L`giA6C9puYAH%A(m#>*cmL=mD?>_t_TVD7tG~<5GN7v
zl+RKCrZriQxy49dZYM3S#bVzAOmvms{*UmaZDqY?m%&-S3inpbTVmH8cFES-ii+N8
zfzB?9ZPTR~7u0#z?J~6zSIcJKJwRceROVCJrbvjd@9DXxZXg~>jGy78)mtFOtPOQq
z8z}xMl#7nj8mp>=0eyTs>@ywTw|;AH#O+V7J6<8xW5q@=g=Tp+UaEf~aZ(lZ<PT_T
z8!`4uA?4B;m>2=LYZMgKEan4q-|JQYT^x#GH~zrF&SW)RfE3!n<#V2AcaYI^1+2+%
zyI7QY?;RbLC=e;N*4i1e>1V+Vt^L#4PfimF1s-`@SN)pY?7Xj+YXxv0ghc@YJC~2c
z{IXC>2GN1H%U-o_4>a)p7w{xDyt_Sr{53R%T=<+H1pvz5M$fx~fw{W(o|{Kk4MTI+
zx>Hx>S|Om53q|b7?6bX%@&v+5iAN{FmXFuYllO2s%Y~nhbE=Vd=eI@!Q@WAKrJb_~
z0auppGjs1Fx1{>tiG=u->2um2#x@SOnacRRCr^~V*r+%GR8&)MVbiop53ymCviJNP
z9I;`{kSgyh!nm}wCWFIs0r>Zxl?p_ZSYK?M++nNn0!H7oV8FQ*fLzVHlb7qZmU*`T
zY73UL%7f&YH*R^_9&p2nezr7ykB{^0;O~zeqWrNOKI?f{g+nd-4lZW*oHtiutrN#r
z89eYSE@wQxta+d^<CT^Exi$$G8JeO{UBf+e(gn3bw@)~v3NR?3fyc6vhXlWa*zTDD
z4nE;XYfp%rp>n~{7`SZx2e4#DY=RBq4+WuMQe)GgNX+NU;C@R?e2%o?j5DjDeS4=m
zTF6?*h-#~G)mxc>1tk#@4UJ7_WoNdT%FDJZi^~@3>g4XG?5+t!v_?WXgt@cU{!%~_
zHL<ibw6x47Wbd7vlxjVg0iZYwz6K8k#4kk%qRq~G+kw`V0xU*P+s&}sSojCQ>)f*(
z6^U#?ZCQK4JTZtdi+R#GPqD>1%V)g7;oY6<Y%Qr~QPc%J7O#!%!_a8m6!*ihcf^qL
zu7dV#moQ3_&khAYGFfH9hcW8wczAeNn!N88et%4Ex{bZyMJ->cvw{@P6s<d#*~Vim
z`ah)E`#0z+0+eQx<0_W^X?^(p;B=Ntg#=`;6jot7_GL87|C9s-Ol3KknPnH|B5HzO
zdBu}c`~v-`zwVAW^0&rZYIy4DRZpmg3~UB0FEA~AyqJ%p2n7_eC70(e<|88P=jP^!
z_`HgX8_kBx-<eZMfVQz<EZlCLhkPjfny2gyK!XHm+|xP9Te_{8-jAy|nMl*yR?WLt
zXo`Ft8%|xfawkB+RVb(Zt<Dd^*0&Ad<HM~Oq;pF!*x)t=^E*DTi3(ux$9|#Sxc7&j
z8Ad4fn`OL77N6~9KkmSp3eO(zqsLhJ)~y@6rOy<0<wHzNE$BqNmy0}LR~>YOM<}Rm
z>kOd5?m$7nZMn8o?)JTY+ylKDr;;ulFS~xMQ{ea0Ht0LL{_*O`e*5QFUfiQQ=hOPW
zJEw`&KNmZodMA<MCHbQk>k>^@M5+9H8#@p^y~oMe_4vx%P(0kl57Z4}uSCb<lsiJu
zC*as$)6^x)d3~p7Z#&acQ)9DuA-Az;>f>X^x99t^emd#IRB}XT({qFVWiV#jT@Ms*
zo>Gc)QYOE9$p%@HRthGD)@_&5o1JmWH-1)^*gOu)l67`M&Sr9E5KR;eVip~EWIm~l
z!i@KhlNO3Mt8QWGy_*c=`#rawwtB16<Q#3$^oth}eWZw(!rOhEey6`LzqIhYzC=Pn
z(Rlu`FL(fY8`u0YzQYo1zV$>9Kz`j6Nt)cP+<~tSah`*AQn(He%S~K@UcN#>x-K*~
z*&EMdcU_osoyUH$QM@#bg5rku{5k8w-MQu3aDh(m5Zz4N*AI!3J<)`g*F`&Z6rk^{
zj@7YsTPQL~b$4II^F!P*h5)5$1}1JIij|dY>HOlK*O{cDz$$gN2$gsz8Ud5fr<;R_
zsNefB1KGy;`5S|Bbc%cw=Q257A&6}krRnk{*upbGh;PqXy$lztXP_<Yc2bfv4M#JT
z>&8;g)zqGV9Gt3-NN}Hk%FEsLXjwcQ1kgh>T+U6hwlh^H*^I?85QDOk`x1{D+>>B_
zwkIerf~yo<Chm^t4o&>@w9kJ5+L}cwFWi;{;nd{Xd*N8(@EW&)8tW8({!B!ab6tp=
z3`(Jfb=td~?II3+|CA@+Na9w!uZWp>O+(OjNI6{E?nr%^?0$z`URszD2f0`FnVwc#
zr?5@B-UN3cB6rTr%^48C{gN4FI^YjrN(NUdt_~M}=x^^G?CkG91EHh4fdq5Mdd>aD
z2k~7R4;MGMGm;FCNrG+|h8F6%R`zfNNcl3Gca!aFyN}p)JeLEY=1TPCIt`Rmbp~Ud
zOyt_u9SU--#0a1a`MXUZ2RS+gGwbWjqL5|H(`b3?BL`WvsVATex8V+0aHKi`0pZ=n
z9v1fc@P^atE2`jNWcN?##JQt8Ai(cAmtiF+^Yf&_c=5K4gy>mzp|r8c_$J+RfaE#5
zbp)?ijoeM0D{+^21T5udNIP=T(|YuqlyUESUev?3&%PL>{EnPEU&^ARSB?<v?C96~
zkD6;FTPwUZB!z~=Ffh~`bnGU2UUTnvV&W2DW0FL`I7a*j2T;u>rzT1HolZBBH$Q#2
zYUcTUj?LqC&kDLfA0X8Y@+wSk(ok`MR2+w_P|67Sw^n9bj!%6-zqF{1X=+LnH1NEU
zCIESO)Z1#o(^^{@rci~qpYtU980@ZBs=P?-GuXzHPvK2!Mvm7P5C)_<1eZ|CpwN}H
zBei%q8Y)_&uA=LjIQ5O9vaz$9o1TWn@siLBiO|a2HFleYmEGOfcpM|ubzQ%ZfMAe9
zd2zXJy+P7wVZl<2Wcz1byk^F=60pBg37f&8FMUzbbl{Wwc^)DPJo*ABP8$XW_m1GS
zy8R~sfQ<XokaJ*llaS*8$YCe`Ceov$n{H!kGnCnsr|)#RAV!mDHItRU79{+v0tH2Q
z+p?o(nI2e<?hUJm74V|v;lTqD9m?-&D(fb@)}<L47^pJ~Gr74e+$S%V78el<*wy<n
zqJpYxq|RxZnwsK$1$*tEpKT3ZUqkH6^9ru^M_Upaa+He172Kaa;MF%Z$-UuVrsXl;
z->$dbnMM;}=Ia8$lrKP`m-dLDa8Yj8ZW&;IR?E?qzyl@vr5kB;okw4xzI%nlxU1RF
z_j;=fFKfcRMa7lE;dB9yYtBDa-skPO_?wvL%62aP_!h25p1e@+7};Tl0E!$u+}%3Z
z+QWf0^^7q<6RM?%h=|$kB8L0>eGLy;L1Bd4$FXc_TXY)tb2)fiA1_lcw2NGB*Tb(m
zDfIj-4|gD2`o5-_E6MmRj>aKi%_c6^cQdfT$!!V<a1-pIC(>i1%HjzeS@Qh)y2=SI
z>*vvFrngdpvKT0bLvOW|mA$#xjJ@v<>lQs`8SP&LpLP~OT5`yfe6A@$=>q;YfFbBL
zf1hh|kG<?)f#O10&2Od!UX+#I_K2ICn1LUCJ4#a$qRrkhd4GCl7yxub-&P%FO4R)B
zM&ma+#AR2`J_5}k&X1t@;JJ4l)&6_<khBc0mNtT5D|Gb9=X{L?ZntxX4wowDQ;F!N
zGuob`5-1@iha`No^LcLT-OiP2EBMGK05Kb0N($Asa%&i+o}wT>|J6kc)cW`P19VWx
z%U$>5<;tt2o2(Tz7IWFTCI%_EpC}}1%Jb-8dV=QS5Qd@#hb~Tao2>-SwwCFIUIf1K
z`gMQbeA|7l*Glcz9_dc+OX}CG10M~iXacltNK0D%;X(OJ@OmwpgsZTZK<Ce}FIo#S
zFt%>7JuAi#c-&o6Xa&?VvSESjVEvtq4a4tHFxY%^a{S;Rqun5#x3Onm!mO1zu3l$I
zUEhz@`p`OLZ`k+5zm}cdFk8sl5B|15;hSH>=*m}rf5@sjDm}-$cgt(Bi(ZzGA9FSH
zp9hZUUn1W7!Zn&amp<nLqxBqZ=p70t?(Z?HiFvF`+qveB_Qk_4&vAjrZMt07-@p){
z@G_Y34PWFduV<E?8}0l<$DR77Icg=5{e+;l>5dhBuH(%D+|P;c6C)^KuYlMW8d~(!
zlyEa8*_TWwV6sZ7e(Z@`Kw6{%?7jj#j>okP2Yos^Bi|+MFHzWuQ=kBF8eLGk$LZ3G
ze;VLh{Ku!CUkP)Td=TDF5zHN(^DZ`L#+Ri;99V%eHhu<C;fp<c`{kAJpML@iD^MgH
zD}h$5Di<Bom-qDP$icoPI=TufYWfxiAK?e=ABso!#!QvG|9)Qh*`qT8dJVzlI~w^6
zHO!|`Z~6|WF|yD{A)#b~xk%BtAVCRGXs}q|-;W=YzHs=KwD))~qo!Yo7|;dQu5TQx
zAR2|pXFsVy{>UlVVW|DLFi+vpT%7d!igBaShK?Vj?0#&8sG-oX;UfN1P~m6o{^V_n
z8hL!K(nuhB`iakol?noZTcxC-YN1^L|NY!O3Maju64q0YpbP1rQ+!nlHvQjk+NoRh
z35dFJsv`t$IsJI?_tbAa4iSl5UEQA$p<i;|AwPNPK=xn#m@~Cye_gr>3Z_tb#hY~$
z^Iz3Hg$LLD{O?o3&-hfg;TF49W;x92%5i0{)t6eATHE4wU;lPN&vOpOE`9U&e86S2
zk}Q+CeD&AT{B{bm&wHi5*Et!nu(mv(ydw}G);{$9rwBJOHnxRbvNbJDbz<UNZ7q+n
z%ttzE`5{(3ywnofGHZ2i9KzRsi;jTINiucO(XXvedg_}dMop8L{*1V*dspbd(q^Qq
zXJDYex`4E%_H|iVYM>7qsJ>~uKyGbj#^@{JUlRarEqfTmi^D`DI3)AcC*#F^(vX-L
zE+TFVv)-BI5{mctR|`D6laf<4&i>D63<B1K63s2RufGize(A0hUemDQ-^j)if@>zz
z7rPzA(<Wx<>KA>{<=FuKuGs$1avZ|?5sT;<Nz*E-3z093y~G)N;mBwPi;~J)nTj=2
zyT2)4Glqq;eR;{ox{Xe(#M>DXican0vs25dhV)-y5s5OU)XaI^+KOmltqdKbJs$3Q
zm@mQ4#8u-c;iZj@lH-o#8KSR5(?qTMw)j4;HXT8MwR7#X&VFe@Uvg*N+FGe=Uep&G
zH$G@+LTxb~4aFJdZ?Iof%#tOi!Bz4DzYw2_fwevz<M91wm2Z|k9PHkn+lgpAxr-q=
z%JA8dhn^=9z%H=*PxmkwnN1fuEwv8#_Q1MlcOlVf)AkEK8~2*D*~?k{jW|p2i4!Qj
zPCc)E`vBfhri+sktB#(YpZCo)ZMpf@G2IQ~Z5Q-m(+D}}BrF9pQrr9dkjH!~Dwf~l
zs==moV`J`e6ZVEH5QpPimywV$#mSb|>|mOi8ZF&qQnED+W;v|i*L+d%1Z?_mX|w%d
z17Lw^gqR<XSAguMCf6s#I|#{#wz#xp0k`vBsBg}Nj0Y}mN61UF%9$s$15}@UFzOhh
z#aRqbUn(fXf?Mx%?k^8EmP%hmYPae^&oNmjUTM&K-Q>@F|GsshLQTs-3Ohb2h$bGK
zBLVl)j>u;9XL6*S^=-vpDtXW&68){SFOMgno((=H<Pu2klL_fnp>d3t$D~}$Lk?1P
zcI~i6B!QGw?|R>j%}owg_Q#t$FswruVR^G`ERUjxM8;1KzLc|7Uzt=l?wgyVbhpwI
zf9pjI>fIp2cKa^;GV|hp-5CQp9B$Av{9oU~!{ce)7pHcXlAnWasNKz!j}QBnUwoL3
z70A5O*<Wn3KTEPjdF@V}SR7|e>2ts0J-_N+P>|2X!_{&&wfAs$fdopFei&z<1=gp5
z2_f!lqUv)<Y?DX5dj&sef8O8XF6IlMNKS%@xz-bl&u;Q{1q%96TmBfip|1~3?>DOS
zlDN>hz3IW#DW4^J5v&IKnx!v^%*lVZ-l34xjN#7X?sL^KTsWLp&02T9jd`--eN<o1
z8Hayo(uZ<~LB#F5xu2rkQy`z!;?N#x+!OV#F7<A80M^k+=Xa1ex<)me&To6#=?HRo
z@EQV___Zcwu59dZd5i=kZw^yzZAvyJL3gj%fMD3+q1{?fR3?iza!N0$^;8$te!S#6
z-yH8&z{)t(lM5Nz4599^I_ORf^o<<Gf&v9Cd<S6HDipaD&ALkkndYRwE$z|O(v$8u
zy@hg0rPm-yVFCatJP$KP?tJ9i_+pREV#2t$qD24UBd~^veFH9TL<VVTY1u6_BZ0Ux
z%GbLG>z3daZ2^8I>W?<Y#t;40U=B7m#5RT2(uGFfo*q))3ez=i;lebot*)5qrG$F;
z!4>~L>Ad^HoPdvSi@x@~nx9ZMP{qp|VsKgpTKGeqJ`{dgf|^Y4e>+=sdAh&3$!)z^
zt-!C(?mN|dP0Ta@PKn@Ps6O0%QQPUhvq*v8%YTDGpx2}dAF@?bD|KkH55ssK2)JqF
zGW@`7!uBraX+4X4;j&GC!}g*g$YF1@EGY@MO2cf(cQk%j|8A?eFM;y@c7E4(9t%W9
z#o@mgiTd!+WH;YzxLRLH>vwHAzG(|`V557OKl1Z&KCuSEK=xKP_qS<BnZK0t8ya%a
z`H9$r<qJQ3FtC*JtjGSZ6GXUNzOK`0_Q_xGmaFFx?C2Y9w+MDL7FWpNMF3s<JZ?KC
zR6(4LjE#{o2pGL4!stmzR;Q-=u&6%z?ZL*zoV>l8E~l2NP3JpLjP*P{5kM{&2b)VZ
zC9-Y`90&k3q#LexadNSusR5{3X9uAW^Z4Zi+4!H#_9Re7Ej8NS0XOD+l4HsDakdAm
zI~wS6u1I;$=NSZ$k&pouyrX6=r{A5lMMb_|SI7Yfh(@gsyYeF@r+LpAK6>Qey9K9}
z3@mm&Eb3*hz&c)zFQwHlX<0lxM1X&)Sb1DAVz}3Zbc=%|7u?&rx=bINxj>9Y*A>4@
z_nI#EGg!Psl!~4PMD+J(@=;8KA4JMO@jKJ4tXod@jTcuMYp@hLD}jp>rFok$|Bh{l
zM8h$7o4>~}su%~Rr_=5`hNn?LyM%-YfKx;7cLuw?MYhgPRLXw>s??B0=9HbDwyN>;
zM8fKh87<^8y8e{gGGb9ZkCS-hd(9*SiZvf4$EC%-@~jkd_|#UX@856^QQ&`c+2J|z
zouF#GD$~vf9Ur2Q&dz8g>~V5&O{h%A`-cXH?A9F+VjTbpDfaMoF$M-shvVbGo3p6b
z!+nFO$5-R6X|)n2oHr7BettrRqu-wci3bR*+@NznaPvNLxYi~TezKKFa%czlK1c-a
zGas$3!OW|IWIW%=BWBPCnyDBfbRa#UTt2jr<L_ky@>w_8qz{JM8CL=?F;MSL?(9Ec
z_dg<rE_&QOpicqu_smR^jg7hsnK2f~$9f&+C&I<0rH|`pruq!}+^(mhplgRd^E(U@
zD+ZZ84%=BM--^bVA3=1t8N_Vxdo7ite_u4AN#Gv*mZI4F9q855w{iXTM77fS$RJ7p
z7LfmZt%vfE=N0yw5pvvEQjR$byv0SmogMsJ_+qo_+{nlb1@pqd02XMq&hA|@Ew*%q
zJPL@d#+Au8r%)m7BW~T}?flVE^Oa&Nlxbb(tpWyr>=-2zOLtyT%J-3I62gv;A0}RI
z_k8OMNOzd9dEqfc@vm<*;v9av#A_3*Lmel%;UuQ0*w?S>zu^Axe673tXu<XTTFNo<
z`gkQ*xnK}CQX5VEEA2XHWNZPL8Y)m_@i}ZepcIL@9r=}1?*kQ~s-~u{I$b(nonqdO
zc7SVSZ9HD+K7pt2r>mi&qpc1f?aAsnC;S*EIY`ND`Kx}c>J;4i;Aa5W&?Y3zRgj1!
z($fHFZ2gmigLL?s)8<2-Ocz!JpeQ1eWH&nFgAln@+><UD^_<&txHSwJ#OZtcd$~Ri
zk3o0EiOWO**rHeziNwjB=HIb5$$9~pH+917K=O%>u4T#N*Vmmv`Tx13z>K*EvVAt3
z)C^zg`3xiX;EjAw3Wcx4EAZ&~uLR<)JKe-9@Y`EiU0$BvZwI+w1o2A(jgMh43m8pk
zTOS^&fIfX%PqW_1waGDIdAZHizx;7OlA+FS9s$J9uQ$(bPp02c<uwVmhdwL<eG3ps
zY)YHIZB;{kn&i}wGD;7O7cDtnI*sYKD|biV{Rl7@fxg!NPe11W=$cp-JvfpbgiG&%
z0Lt+af2>~xB07)N_a!(lk&So1g@ZrpfItb9F|;4)GdcW$_*m_-Q?l=4c$@Tb^<-)S
zR?W|m-%f!6Uos+en{agK0m3u4Ji@T&UtidZUh&y#`ywrq|4K$C>XPr$VH)+7@0?ln
z`idSF&n4=kfcrWyniLmzPfdjk9`2*+JPZ73Z&8gkTU!^XR8(A2;_l?c$V1<)0z?p{
zbG5VxNDG9sZ4#=(ZEQ&&7zqgo%Yua;Oo+Sy<D3%CUa7zXjaabO)Lg{GTo&vJpfR&d
z%-8mjz7NJ{;mkISx+|w#7uZhw+8^Ybp5<V<?ZRE7rK_?CBy}LzdC-ac>vgoZ!c%9Q
zK*z2SQ^q$6j}51!JMHatxiyoP?PNeD=^(r}d4_cu?In08^a=_S;7JXT&Tp*e<QoB~
z!TEqR3aCOuR(%@9W2EMF>e2glGYB`S+s^l$ZJhX^mW-4s!9pM;&R<g);ScI)SJYH~
z_zDS~n^#7Bg748K^w;lcdrOnCK9g9E;czX^RHn;KSZi52vV%wzqr0QQ_v|p7wEcW%
zLEkUQqULzndGJ@MrVb^R4CeoGpf_d{6u;%XgUjEF-HwDCT#!-3#7wME%%WV;lDKpL
zFD}tJ5m5e{UqHn+5Gro4m!Pq%zkc~MMh^CHc#*T*b~94R8bG*V&>5od%!%V1$UOG{
z&4vsxVo;`P1kTKgrE|$hjI?pHb_t_nbARe8wtR>BMP)p%BIGz^(dZh8WVhv3Cu=jn
z|L?bexeRh5GKIiuUut;2j+|Jn^g?*}TcjA3WP<`{vJBeJ9z_?@si|+t`jtPy)3C;(
z7Ecl9v!sHClzJXl+AatxY&>DHE5Xb>v_t8?0hh7u<Y&EbgaT=Z0%^J&;sb>!d9kGE
z!RPUs`zBTb;rzhR@3$9@*`pt1DMuW&jQ+JvU{WOb?5#)dc8JcSy*LL*u;l%^(}+a{
z`@d%eCWtO1S?=cdlG=oyyFxPsu!+bn$ety>aQ-{*4Fsl*EBmq(@Smj<Mkm=@7--&X
z?LilrZRxyvt7=6m1s);HvaderPG4i>lg0I?Y0W*hh)~q-b7fENEDKD$m(f<8zg97o
zDpKNL4bPezFVtL^qKrcjv=xDDp6CXjql}HbOX`CUq6W&Am)c_se9ELP-a{KsEv!&{
zd;Y<NJ13{{Q3xy_d-cS^B`J>NNL8|sqMvpzwd-}M<I`c^fR3(<A<9YBH_L*<Z@JM1
zKzz?h{hJOu!0=m>u3HBG#VX6`%G5?mr<=??2-UEz_qIt5cZMj9e>{rP(oEI;beVKw
z>OD=tr(%-#NEFlMc*OjkJ8zv5Q{!6A_Jkh%?UU3QJg)Al`n4Y7>6&8wPsS;8%lsa#
zufTg(yKrE+PfkpgIQrH`f{*m45<zNb3CE##@o83)YQ0}ioP7CxSmCe;XKK3FdkRvJ
z-@UVXUs*r;i~G+s!v1952}({c>>dEW`;!v%%-|Gp<ED_U>D}v_@r9owXI|>Q{x_+y
zP|dqh4r?s*cW~!Q%Ld^Fql=h3y$q7WkePO*PYX1Y3>@48lD8$FP=@q|w2lw2Lg3}5
zcqzKd*(!8*o@XZz^-9a^E&uq@nKx!mRnjHFGRdkBC>0e?N1a20S(0+7HZJg}IA=6V
z*i!FTPxYq`JUuTh+|BPil~+H+GJYy9&ADu=M796;{kk&-SnjmisOmDwRM77Q1%?rh
zoMkIthw1>L*v_?0shZ1&Heh`X)$#AT4z%^wc)p`J3m-6!FGj#$wLNIJ4-1FOLrcCD
zO1PMOItpw1w`Ov$H*=AQvyd=UFyX78d8^HthPS!SHUq=a-KLluj0UGfsD=vA_LkQ4
zo4NUttidbv{5N(m@Bps+Ce6fW5NT|(c{C+lewZ4-%hc837!3%)FF>KWh_0Q_ramL~
zZ&I#G#xvV-c5{xL1r0o*L01$~zzveeIJvU1vXpD^@tyk8E|H*I_Ow}V<#Q8y=E>oz
z4?Wv_e>{ix>euF+D#RX!369z?$X*JB9AD*g5d`};N|m?9UAc4IMGY1LGP#25YWMl+
z<EZ%`>^goxSA4xgwy&H{7ix0NmFPSdRuFT@8*dN<MG`!E9>?G3C+Z!_k9VV2*WiKz
z>Qx(km-=$jaCBQ>AsAs!uCFt=v*Zg$jl5kE1Nu`#f~e@Byw>NFzXOxhq>P=dg`{p!
zz;f`F;S3qvVP22b)txhZY?_U+nr0*x@k1Urzlmi%5_)vd50zs7d+X_WR4NvHcRTJ7
z2@X#c0cNCVwI<i$@Tm0H80vT76t@lB;paCDP*um{&U`WF?g~v=kK;JXomnyPAYrT5
zIP`gk@r6E|T%?IIqp=jjfr#I=!Th^_nh-oW{nr?E?kz%FicAVnb3jeltMv8?wSWW*
zDcne8p>8d`fRTKX_0agL;EgIbFni9(!|4D?6sBKD@~GP0v;{;Nq$uthI3somyHH~E
zk6oO3<9&h$42M%0I|n-Yekxh*5?tV1-OM{j+NlAWtI)=Bre5$s)Jf1B?fg0_e$SAe
zt&JTLNP;J=4p)9v)8X|cpc;bn;v-!*`W_a+w(io0Mfdac*usHqtmGLRGx(w*;++dh
zfLW!<!KFwd8(O<AUtug^uOUSC_9*O%n8%*Bn%9|n004cilq&Y&G1C`p%*{W?8zKU9
z08yp;$03mgv4ke6-*#T-j&Gd@N6o9cuCzm0s9qL)`moBrb9<dP7D14rLtRlF7W0yX
zqcoPEimog^nkRPgV~LX^_Fx8)xw*Az?Fpiwp5tu$8lLrT+Ak3wYKKC;2k1>(eLcUW
zW^f2nIk-QDHYcyz$$Pc0d$U$hAhsbPlnLME;qx{`-DB-?s)g#Cw5yBB$oK3~gK~kJ
z+7_xYNaTBFF3{8K`c{7b)v+vgI$v-4hF?>BR9;_PFD_iz_>?+WZqMqr*xBm<^i$)u
zS#W3x-)vO$(CjQ$==V(Q0#A0A6|14RarJ;F4_?9O5zhgQFuB3sSsd?U?$14>34-L0
zmUys_o^3PvB(GH<-t*EF?+)sH2Akndu+@HBEbn8WMm^nQcD`RmdoCd@T_SwXw<V7+
z?l#Ngc{m3c$Wx*7BVzUsltiFvE#3P^WqhtKwWManAny*?qulzWRPH2!?(1lIPj#v|
z%hWuzaGSxYprdA9B+w;k)5u4=G#<}4pwdVMf;Z#3*`M;w@uEox9uA5<8iX%)+zFeT
zIEOPipMvaQ<@^r!MkS&I)2&pVE$_j?E(EZ1Jzz^juQ*v1=Jt^nuz{UE=4!!FiQYVe
z(_JoK3FD9u0l9^%_K+)1*(1`vo%qdoi#~V+XmWakAMck?*F@RXK*wiuFclit6Vx?@
z3<WB0r;BH29L;UyPZe&oRm8h1b<&GK4!6}+%`Z`k$vo`LmOPFnsGi2!BBSM>w(5X}
z&}(s2T|s1a3Gv3Vsa>{!YVq@vD<T3yO<>G19X<)CFivjfR|cS5T<K3hDGl!>hV$sZ
zGo99Wt}#2yFgr!G@TE(<+}+qTsk1ozer&MRn)P))4`?v=%ac3KR6Pg09^&~^7B!8N
zX_xM($G4{sc)&N*?dKHu$sTH%M!OWN_hESVz6%`hh~7T4NbH@<V`e6<(HbB5fDB5}
z@qEXXD4si*$thY$(R;#HshFKDw5SL}#2qAFGoU(mac=&aDq`osR?@bp_A}P*4KW~L
z8MVK9+nuyQ+WdxOHQD2w=#7gb+<JcH#F1$~lv^y)UUeq2R5wHPiA-eLhU)FcBFPYU
z;0LJcbI_z~bRyeD_UFaps|m!2#*j^VyO_HE5)7i&>sGvO|KqvpNXrIKF;h^**70lz
z<%vY3c?>Zwgzn_stn-XZ_N)^--|tKG<`(JEov<bLcicQPem9GeD{uWu*bftEziE}R
zv()7^LM{9DAV7Cp7A;_-MIC}OJ+pATHH8>-7sB9cPLj~4ftO`cdro6b5c94OT4}Ia
zXg`D;kZcx%ee6l4Ts}F$;rn>GU}=nEC&?*%$VXB5j-_zDMQmIzo%{ZJmbGgBY$YMN
zv7X!SqTPoeI@M{Tu|Zkin++nEI|+P|C@y+=FL555=EB^5*s&TCzT{2-T7U7L3nS7}
zsX*qXLY8jmP*h~3r}xS?pwCYpKLe5ZEfoP3q3>HkR+W|&8rc!{Suuobw)*TlBxpM=
z7S|0GSTv#t_c>;?y+@N<Wz)vEJR-im(ROaInd-7`xQ$b@s+s!Pb`kFW36r4AZR56u
z0{Qaxw&RAoEQTl{U*J_snYVmYY~+o_NmOZbJkUvv$MbqqLyGckcbd-3Vn~0RFzaRV
zg@AGzYlT{cm1RnVvzfi~LT*NPT}n6(Ab8JPJ<Rp8dY4<Iwq%DjAymPZnP_e>H?|Uk
zlSr&T)gszoQ(Y>YMLz_X?|Qh%tInOX9U(v6WBIV<6Ir6%dSEOVfc5R;Xi%z?@cLDn
ze}~6+v6Sqk^56N1XnY+8{;(!Y9oG5%G@!cl*TnBYj!gw0%kH13>drtD02yqxuLJgm
zp_jpLd~fg|mEFpnqW7n_fLO+V^jzrPRC6khJm1gRzfU6o(ptuKhg(-n>}3uE2h3Vo
zjj^M}by?ki|7>qLZ`E#Q_Ws@6=NK+AJju?w2NpIvLMo89pI#_0j%2!i`xI1lW^Xs^
zEKH-!IXAyAB|XZpl<C3D2Kk{KfR`Y(RC{G|QWgRD8oQ0%XX?(q^P+Z!MTKd`s&XBG
z02Z<66axRDR3W`Nyrg6A72x$d5Yl|S`O0DODna;jB5l6;(DDH42utkXQyJ8cAw9%3
zA8203k}9ymQgnqg;>k0akwDnqSG6s-yBS+`#WXu(`Ky|cPKdco>$Px#^H!V&uW1DL
z#?WA*g%$8UFddCo%s|BOT5UCf!UoRhAXp##$vcjb_DK9FOwb;~+?saaq~lJnN$)8L
zZ``Q|Ez;2udp7dRSz+vQg{BRz@`q)}_m?PfHAu;23KIEa{{&26=?DCNzPO3fMa8zu
zP8v*nA|5(J6_0$TPGY{sGOD&g!r26D^&G>2<8|h}VM2;dVoeajIW1Jm=%@=9_?`P(
z8UE?OflX}(BGIXr+%14_G<PBF^b6u#H2Waymo`ZXTe?xP#s);`a-(-JnXP}ls=w<P
zwI_T{6}`K)vJ1M33RDBUpK^Gzz7F!iP><p(l2ud?=375?7Sxvl1g{C>Ty~j3L|ne6
zpRyc^g)qt&a+v+?IbH<+f-FND3~~}$=!OFcao3%5OJ9TN^EQ5Ga;kh-zHxE%^PI9s
z5jJ%Drw@^ZpvW_8Qv<!xi+ro!BNk5CEs`28kS8D&tBbt2$|umSuQR>4m7+AtZ&V`;
zyG%D=&(O}Fqn=i-I|2@a#wR6u^$&ycrdwMZyJS^vu2rbVu6T7))Yw3tZw4@84zIa6
zI#)w*7R!rKKsDkl=BJE2+9f~>PZ00ct4|d%lcG@vLU{OVC}I*%Q{YNM*-?>u6xhdi
z7wEQ$y_7GHtWEm}X9~SF#mZK!3Zz`qJxqSK7N+HvBz(w8)89ED0M+ZN;t}K9w3}i?
zJ-1KjN29O<F_LlH0GC3Uut>#RUs_e$f^ZKsMp%%q_m>+~z$L;svZh-m^s~}hKA@Xc
z|Dsi<$!YE45ylWCbcBQHkz3lo@26^2BT7@ZuGxIouL9V`&WpN|y$%r{z<q@(z7>2G
zbxHLN=oW78RVG<KB<=!^AyN`<T(&NSNK<Mi#7rRq{U=*0SHhzmAz*IbWyM9qmJ*|Q
zLA|u}&J_^c*=NO8glGy@55Gm9xsJ^pgtlH=p6z8lZj!yejDEr74FqZx+zZ3({9@eL
zG2cRgv4fv4@W7_bE953&I-M5(21}w7Fti2TeUz>*2^<SD(@tA*;aIa8o{d~F&4flH
zEG_Q{GEU9LC-!y^)SOC$7idf?zkl}AwM$fADlc|+#NGibs?c=ly~_i237OC}dk=;a
zjwqW@JUc%-c5-gi)iif$U~I(uo)Hz)_v7l>1&5Bui57i^ympnxCgB;?PztL`>%suc
z^YI+>te~?6=vYA5u+rmG2d8RC!?z@nSE5#C2*JYPF)!`x5<vkilALB5SsO>gR}Pgu
z?BPJBeU7jZqrvVwH;)f%_hPPonYZHMlw<*R<_gX(Kb+_so>B&yZ$wwH?q>MUxUcC8
zv9d|=!_yB}+V9Sl4JyCgT@Co%hQkLKut|<u)vzzn=zxk6N6px`J#Wp)QW)fSrp7vi
zCJN?HsZ348w#>toO^n6du-IfwDBkdt4m0dsI&giga<(y*6IqF#xA(8SJp^wz-cmZI
ziEi#&lq~gEV1!ZoF3tgV$frXD^n={MOmLDwfurZHU<A_SFJ-wAZ$I6@ITJ%dK!<${
zBBO<eh?gCZ>>D#@6i+$WdGg23FP4^=Gnlt<+Ir|I;-_`-y7K$>Z$I8D_QQgFE{XWl
z;*`_1HMjvM@jl+E<2mP(hekk|v`30JUdaU#*#2W+y?+t&GhNy17r{n-Tf5$Ypn%z6
zV1ShUGj|vysfX^$(Y|k5PJ#rL30;vYin+G5l#R^w$NxXXy=7EZYxnlOzyJ{i6+vl5
zL6J`B5J5?4X^`#)X_OKv5$P5w=`JY|>F$>9?tUh^_x-=?jprHf81I+8$Jnqh*0thX
za~{X<n5W}w9frAHe&<LTom;aElsoSi?EA{Ng7js+!egz_RW)hh+iPo$v&<GHCEfR>
zS5L&W@8jXL*-IA_uKs>1o%Z<*W2taujfP1@vw?%CGWH=^V)k>0rq}ks2eYk=#I)n`
zktAQ@s=Qxe`jm2x7WKi=86WDV;dE}8HjIqkxYzZCU0j*uf?0N6YhxJ-k|}O8o23Jl
zrSraGOvhu=+*GP#^903=#EukvKe@zCUJez-;i#ppQ)~L?$w6B;t95crKFOJgJ_d3d
zs$&OgyU|a@#@-aW<k3Eu+mUp4d#x_OjIaDfkLr^cyQhi0{37hpy{f)Hmjdxsjg<+X
z9>6#>@y{@zUou8a;=Mms?-yex*nEq)I?|Se<T`=f9p*B4H84czzm|HmHa#|n;&&V0
z`2H`aGInRPF?2ZDJ0Nx26xy1E+7!aZ=kX`2!{3#(uo)SPrdn&G5DK&*9diOd;k?|b
zc?pb!;|SI3V&@VB_3@n{q@${=m`a8YOE4No<k5r$jaN_4P{yQNkBe?L-ld_HWlrlc
zhd0Xc!Yx$q=4R?N82#=J!hOraFM^=2?;bg*?XVpB$M{HaK0VRn+v#~ffBW0!uW;xr
z)57=R+w!9Xv`q?FZE{$1A8&bBsY&!H-0;k|<$E%xk7@S7(NT|^d$0A9d;1e9mD2Ny
z)VtBPt_|mrmCsKjmW*CJ_*IGbtDg2DD?XYCx6Ojvg&Ur`%n`I=4}LAWgxo>rPwNVl
z@YcDq)aAr$wF`x+iwWDWl?hUuHMgVEZ`>|#$Jw8<ni8C}CUh9+%TNaK_1SWm;ueL^
zWSn!dzo;hKRFHRbXR+r>GbTnt#J8GvEV`ZT^OF~KW<DKN=%2Q!eY=QoJvp8h?rA;O
z0Ifcga(Lae=<Siy3cCjnXwY1Jqh7hyq{ADdoM8G3=6mm#dE4zDoC8H?xEL{KaYH_?
zC*+0ZqPwng+lBMTFL67{rS+^+JqA=JnJh&HW4{<3(ZP$L)<x*pMZ3=R$tS+3V$8sa
zch&75OHP!Xn9v()5T@6Y`RV;qX<aOK!8qeW%S556obl{tF&qqO<-{uI2f~{(V?6Ab
zNXTjF&6NrXnT(DPV_$1Cu3Lyf=}?3x9#TIgB%W+C>a?`%5yW9~Nk*}(GBAw1$9#h6
ztGQG~Oy>HbcyyV?$WRU3u^NJHM~k-i%8T?Od=g-zgUZ4wyp4gX{PoKhjzU;ct1%yb
z^diD}Ud~Zw+>&TmA~F`<q>-0<+2lSko371q=BP>2s8f7Jj&@Vb4GO8wdVShoqhlY6
zC}NH#lEn&p<)*UI0UZ=hY@8Bi&=J^q!|L!wP(Ct*#d{ow4!T#ahrgUxBg&JF(f5${
z+7?M6><jm&6K^s@v2z}gU=`|m_JBW{A~(k(JCC@Z;;277jaHn%WCz2sFn)T}@M_N#
z|2XW&VT9+Fl+s}kOj*E35Q1;~YUg9Wd4!<uZpV}i^h=D*W7Vw(!@*P{F}1vIcI@mG
zo~{i)KJS*}DL2$hr*;cYN+VT@RkT@Oy9}(E@C!~%@&ifF+LS?bYPE32B=~ZZtqD^b
zs@L8)1hp=+zfP)<<ka3mHbM@*cNae=(`2*|wjp7Ue7zOr%rEW!>mkW!&|RY`ju#%y
zZ%lViH)%hT$9MWtX708!|6Gu@J2ka&vaX<~XRwi@JX+hZ_XB}&<-r0Q4N0Pu)4ZaI
zoN5EyPs<sTi}M!u$zmM?4GaWNKrCp;640g5z78zWL<hXql2DMbw_W|6!Zh7Y^$%5Z
z*kef1X>BQV(E<f1EkVpvQIS{aLq`g(w2WoG?_01kY2CTmvkmGA(oP=ev~zsXLuy%F
zH(E_u@I=q@K3C<W=D3nsL+XR)BdFh?As26>S-6ec9{%~+;}21<rwBnvAYKwll-j24
zk7U%>tM(h3`rw5Y91+f=c@!tF6L9BLjPSN0lkk0ZhWeITXI`sY!-tQ`FNBJ5fA$&r
zQrL@%;c++UQKk;=$2Va#nf|j<SwR6lJSQc2TQ+_J9y(`liXjd&gih&UruYsV^i;Ob
zfuK3x^V<U&Ul@a7e|AUaG}og<da~rOhBzf9g^1KoZo0!!%cD-(3w2p-?-z*UVtbxy
z8D2mViwqlATG9B<nwi@OFSgm;Y5e`oNjx6oMrz7wb2cbaw6fz0;}ue6cm!l4$hAw)
zvpb$MIjWF`TkE8OAWtov>!)6+G>k-+Gc<NbwP3hhJhWYtzizv2Q|?F|5LLgaqtMfm
zyC9DH+M%h|SgPVeXpPRb^MMv@O-3{KrS=J8kI4fYpR&k7S8+Wxiqw_x_Lm}y<I(;U
z6OwQ2$K~=#A1mpkAE?vjwmt+xVLI5lr@(KSDD@7jZrR|$3_+qSLK^%KM68IGypHE6
zyODE!`Nr^GsE;dH_j2$+lS=L1$Kzr-XYZ9bi^J+O)U5huwX7sIG}8Hdocp<k(9G#h
zeI^N8AtwSBC%l3Ik<a4~O(T-VXF@n>_^@FPGqm+`A)F=rvdW4YI7^!C^Gx`%!{km>
zPpx*OLfoPY=KT`ViXsIlPc0X#p_5}7cH+u_9RnVHqQZ64t$xnBR{$G}xL-Jw>0<`X
z?roVpYE{AFQy=c5eFM4p*w9CjwckwVZrpi|;Q-uP`*9XSbv2Hm;fAEDbpMLHhKiV9
zX1+{x$j`ZfpwSEhq}|DB{?47LXSmBPk-!ff<(gnc3u@BMf#hS_9IFQ*<yKf^B*#(I
zPQH26zM8Z8@jW~NQQvb-5i9ejIkaPpto^lFd^ri$3p}Afzu;*Owe%PU9o~R4w^_)!
zf%wOB=zK1+MJq21g`1cPSMwzQ8Z^hV7X1@)4O=<q;1%Il>u9~w&pdQh!K|M>+GOJ0
z%d3&MCsyrN8n<^tPaoz_dD(6<F7cXBQq}81lfFuGIC(6eJfL`aj!988-~&slZ%;`d
zEta?6%W{1eRdZPP-_Ku5C!wi+#emy#dlU37A%{q`gE#UC9Xd0kVRW3mX7B1Y)QZFj
zc5QXBaf8;!4ZHkUnjd~kjNQmKZTkQc{=*X4hw=}~E)37-mZ|@&A7fpvw4x4ezXo;j
zx8dkPB|XK~B(H(dH|LNc<wT_FGn;1bPm-Bz1yJ077FXXTNZTQ&qD#j~SiwB^xy)t1
zNsh)Vv1?w{rQ;~ggN)x%nnri|xp1nfkp}&3ICc4Wm%Omv4Hj>vMEl)DtS+zh2DpDs
zH9c7J@}mqc^+~IlyVHTtX>YlLCW>+4TT)1&H`%L8Z}-Ln+!I%u9o}u$K6scX!me&e
zZDx@@67#yTWgs&%zIIOK9wAGbi&Z~7d%08QM9Zfu@y3IDPFyNzKdsbux^ynncnK!%
zpf3)tE0~SFpIcbAxqIJuJ|ME5E8@!AHLAyCXxoZAo45q=+L1CljZ5^ffDK)ja9mp$
z6DtBOVq7{j@`rJ7&lTd#9a>SM)>jPVKWdK(j@NP+Q~6PN?p39glQI9$$Wx7Bwjc4o
z$KsRvg3`g$I)g=D@vQ49X7{H2y2!I{QZAUVJTde5U`6D?XEL{|(cg>?7#a8j_|^5V
z5ieOXOb>pMJQmHW+8uHH5tp*P{#?Xm_)CWY(Xvr}rX!p^<pTXNk2E&Q0(O?KO6wUI
zHDb-G*RM!`%7Onh>X9M-oE83lkf4~#jpfnI`#2bwb6v-qBrH3ao3ZRVRSBQkS~eEm
zFC084Yf)zO+Fq4Z>9b<aBPC0I%<`3h&Gw;J3x0p{;r!*>u}+oo@~`8Z?~x;z^91Jb
zJM0W$zLGXr8_>E4i?SCTwks$ZzR?$AbdSNr(AW|o;h#fEoDN1ie9SW*z3|We@o8_)
z4P)c>@p}m$vADC9%R(^CQlzD{(&R2(zYa>qSBdC}EX71l$Co9#0n;QdAEF<>>+S8`
z-we;miIP{lDG~nNX<JrstU}8*!TJOSsE)NeazxyG`+b&Yj9M(2Ov}QfL*Sf&pJ)3u
z!J0=^NB2DN&q(26M(iTlyOT<0eg{Rc&r8C3sZ{ve8Xc}5S?Ovgx!NmJ8c7MJ?6CCR
z!Yu7L|3RW3%VmX-p03dhJ-=ACG4Izcr^!!`J{jQ#S(vVetNeKa*55?RVIa@GSmfm?
za<+3=X<H=fH=3DNA{zs*PjfC?czirE$>_S4aXr<wjSTB+Qs#Wo6>osIK1(Hn_%A5b
zF-ShC02}=ZD`+pLTF%po`Z>&DE(R^Adn;()EKsr`Io<P9nA+R4tvqt7{pcZ>>?WKj
zm&z>o)Sz(v#`zBNU?uK~@#*W~QG5xugc#lP=-x8o+$w|;&+~p|Cy=>q?b}V}jaBT=
z-M<?76npKMgadO-l}i4We9izFGmU|_uW5Dsi$Us_c@!6{9>4GqPrz4A&zv3OjEyMQ
zYrS=J_sxl<&Z^aJiRRaC_P2EQ)}f-A>U49Sn`i_vF`l76T9fy2q*A-_K`tEBDSnYE
zMbMIJJ~x$kTu0-0JdRqUo++3X+z=e{`0%I8$v8UVIAU}g^J1`Y?O7z{6hlYmlf|m)
zKpRh9lIR^RhMv*#xDNFk-ZInd&tcpj!j6-)EAm^oI3tfSV6yR0^*K7LJ!d&~za8EV
zKd;fgNoLy(y76+;I_xlqmX95DURQA=LN?uSa|a|y=u1%$APgpt6_pf{W^u|M59k+^
zLa7dd&_QoXtVJ7klXAM)sSimozaK&Sq$GpU-lT?uNOSJ>HT*~=@NA-qj6jawC?@QR
zc*Sr#DThCA8umIQUhT8(npbI2McG0#G<~$iie4r800$*DG(rIzcdDy<c(A)ODc1Fa
zFtc>6PCz~*p4VXv4iTNbDyr*^hx+En4ig1L$6dq|M$8UxZ+Qs#iA&^#{y0q9XL4rM
zWC+v28;x}FlZ$kuC#$L(p)2L{pZGC%5tR_CxdYSB{rxYg6z-lb(l!j4x{24ld;e-{
z?oI8+a7u<Lv2_vcL0)bC*ojLoEEWFI&qs0(AG`4dpsyR6GNDAaU|!ks6vvd^E4nIB
zRrK0=w4V`=5ef$(jzwG582)(9noVw4bQu&ke!le<5?6cPM2Um(+LHW=b#|U}BNiXI
zeE$%}vD5H6)sr~|8I_@1zb4~Xg*>sr3q?13hrzk}M26T^`RaL;VIhotp4}%hf3Se>
zcPL%C9%J)MFkeM$LjDjJ=l3FB{)7DnSo?1*;f_1<KfEk9zbndB_x3z5!J4SQD2lV6
z#_QsHH2jE)6Y4&5`)^A0jA~nGJ0<j+c?(dQ8rbdGUS#$e8oZaAT!;bdY61I*n@OTf
zDnZ1LwGUb7%rxV=ebTBWXVi!~WIx>5fkrfYd}^_J3E%JgI6^dbX`3pr5eGjb<jBEP
zN?5!)18ro%oW5-L?Z=I1w4f`Y%4MondsB&CqfH%C-JmN8UarmPbjiWM+&$@vP`U1X
z#3%i%iBh?8vc6_{B;P$&Md#7(!&L3FZ%bDN0faSP`l~dd-)Bz^Pm7g(O*k!22AxyB
zecov>+U`D>0&jI|6rNb9Cox!Nl1oB>`inosADoSK@lSMZPe}QSH#GE;dp!F3`S`AR
z{8|RY?E0l_-1c(=)@#0^nNTGYR<3TfY#2b(LgRG>0js#u_}Q?-)Y0<SQgs&ze7~<9
z2CS>x6?ew<_@0ORBt*NKYLuQwHr_V^6${Ojd|x}^+$>+BRAlYPF_xtf>p4+vF}KP9
zf*Mlv0;nFpe;g`#ng|NrD+dqIhJVbO?~+tvSFT!#sc04<kjClkq}<nRdb8|Jk$2hT
zz{<SfSFT?n183ByCWS>?P+qy8q{@JxdIvA2JgPvWE^tz}OUoh=>a{b2F87+EqQVC9
z%hABb`FTl^*CteSVBoj<fBres3)W!aGMB;&DIMe5EK{TTYlE_tKDqA|%_H+cUq_-i
zZH=A22ZF19>Ft`8Eh^GAjC$sj9uNub+)HF)@_vKFT<}u9jof3{&y6k0e|I1JQjjRi
zF1+?uN`zw@2zkv=`K7t1q4lGw#%os{%ZgXl-~3*z4SD|f(iIwx>FJf`HV_rX9_w6|
z>wlD=o1_62YbLjepaYNd&euqv;|OD~t1;hT_z>p^AqsC=*D~jaZ{~d+-M*-oY3dqA
zFCud3{<hcyM}-=+(c+;EH=$8|TWasTbL=_g6FvnQ$LWa&271?FZ!oRH3hCM+N~p2w
zdwa|;ojWthU5wbwj*KFt5_h((E+EnVaIL=qkdprGI*r$~p6)qhLT=vEoowiaM6hi4
z;E-Yvb-PtSv{9*gd(Zb23^2)ucB7>zdmi;scwV#*>Jes8DiQRMKs01pb%rk8@(p3&
zJdfdVP!oIU4vH!jxf^FBnD#4T!t@R^5ym_otR|<qCT-BkhAR*B48hx#`_x?ebkw#r
z8qA^W0nzBIm;r&cuZ%=E3+#4tww7KQKB|B!PL&#NV6GoE*N}enVkUe){&-~P3?e#z
zx|WUt`qJu++h_J7;j*#w*f+Jb9{v2m;Kg14Tm6fRShI`y>=puof;Q$(noS#6sv!nm
zFshHw;JE;w3?|mP2&aAP(nm0Ms2%(z2yd57ZHHTUShS7fAdek4r10eHvbe(}5+tQF
zm05=m^K;HEKm864<7Hic@=(I(;zaax3&&5Tn<x!vlctfXr0BXRB7rf-{A{JT-2<ZM
zIz@N2XF>?Mf=Z$6?VIsyYNl?ee^`-6$7X%96=+({^e}m?x52UxiK|F`nkZK@(m|7P
zQ4=knePluGaOvrH+R^Yn3WnFFoosq8%7O+u)gS>^Fllx}fd;a=j^$AMJ=MHz_0!S#
z*h=QmCLNV;A%<b-p)Jn(KOf-xm4Z_X=JveR53n}i9aQPKTDyi_DNC^1a8tNuyJhBE
zVZ}a(5T_0rN6qVQfb;})X@t#uk-cjeG#Y+~Kckn4>Al~MxU&@yB+wOyv$D~w&y@^%
z>LC42b4GAF!7@wsy`2r<h|+Y=l(;PkH^-|NS+GEq@DFr%3dUERs@~cKPqmzmI#c$p
zb#76Qfi<)%tGK_mrw?gi@6)W&{7T0Aj%nWxs@8qZjsuvIvapayd6|od!_`=0z3VRd
zuV?x-=%G@6uawA6v_AAx08gkR*H&$9*L>`QnLBCK5-~@Y)poPo8@aTWhsD7$;InPe
zJwj=tyRK1a;fFDnA0=iuyNau4flkQ6_$6(&B4HLq9Tw$Xbv1G~lbvSctYf1Q%U6!d
z&0zFuO$UFH>&E7l>0_DO?eFgV`Xa^GpI*a-;ez`7(B{O!Zhx5BmgG$I88C==orRR_
zVXOIlFyrxFDuTNSW4B;2fbDj^D<ptxaU0V<>s=Lrwk#4S^)H4~o=EP7$(BF*){a?W
zVJ;!hw^dl9;Fr=8EiU*8M$$XKuoCz%o(YPX6?==Io<8mMk0PJHpK}D>k*$9ReOXaX
z@-lMnbIngoKOKg7r@L-Vl!kzj&C7iO?|Ra+w)pXTxPSJ$gv|P>kYX!pTV-Y6w4i5N
zn#|VCt|GfX@kC|+%|BUPR#2Z47CiZJEe8Y+z+(95$ET_zX3orPhwRnp>%^mdidB`f
zy&{SIKJGYikKd)kzJt~(3H+(}j7$-_)$>D)KUD8gl`3?E3lm-^&>+jlyadKX0c}<~
zW8@7+))R+aaT?!$bvuMY#+RNy@j$JRz?<cxzb2oD(ZDQ(`5psnr(nu_`_g-(bU+^f
zf;rg6u(m8r`!9B2laol8ZncwTwE%^KQp^Qbs`^<$h5Lx|v!-w^^OP4=oAVP#8|fVk
z9-qG!^2NXK!yk^MO1tLvc?!d0fXgOnexX4Af^gzOtv(s5<H(gV(gOLv*E6DS|A8mB
zt`jJ{PB>bcPT%-i>TK(v8WvNstgV_T2SeyVfh)@rwZ>K`>U)nFK+jdCx6qHmd0AX9
zuBbA=K~?ghD&^U-rDXPtogd=0CF}#o$3=N6+SYDmc{P5WjeeJeQf1!DrNIXC$bT_6
zL_=kInWBDsDnX)R2_0X%BXVjEjGjF{=<Vz|88wj>#QLRR#$J!fwuK-|PkX0<?}+P}
z4>>88%;@dZlkpQwlhS`|v`O2Tnx0C+ksdG}#Dd7k^ab3$E=FTzlbw;SPm2E84HNzf
z+$~$t4*-@Z@tB$QY=%{;nL1|*wz@}$7MMA5s4?OqtJ`%O^Xq(GwDjgS**&Ly1AH=)
zDiT+{=EIIhlI74i2y!Dm^~Ko-h%vwN_LBz}<qJRH?ZBEav&p{iP>mpLa<$KFPFix`
z4=UX7`rx4e2+@#Qx@VcwjfKb`8OELdB4KTl_lTcAELEshZ--J0kh~DNOCJ0s(%lGX
zJX)>|1M91~aARC>UEF6C+wBie8Zy5LrKE?PW0z;2>U0Dyx1UX0+cTnkgFFxN+#G!R
z>^^vr(Y6tbB}ff%Sk7BT4D2wP3J(|l2m<Bvspo;%t!qQ7J&OT33RL>R^`mMh6vN9s
zuMGVrN#L@bMS9)ar6q<b>5l-wlb4gUoL5}ww4Jf&PhWbg<So<+!FoYZ59hYb&oNpG
zJCEg`&eEzfs@%m{qrhC{NO!@i*~-YE8dH6&a5spAExHt5Xdq{=kTNnYjG(DCM$cAl
zb9@|CVrr?Cgq?ELlr}`rhA=KTri#YLMhd2Nb?7t2yN-2I-cP^+Gb-LyBK}1frl)g@
zj(OyXccAE(M6u3rR<%9*Qc=QdL$xg(YpFd<Mf@n0iDCwY`7K1KS+(jOA#&b6)r_1-
zeyC;56FpiA(Tgf~gBOd8D=}8cpT;9d+uH=0R9S;7L3|W>TE?}NWl8HwK~oshKzHG_
z5IsrmsMo~WSll=`y5zZtGg>@iekr#6(^JH8x1kBL|GVRPiW&a8)slux>_kxO)hCcO
z39I3pO$-3nYk&*2$|;iOc!eNtFby@~I*T6l&tQi!!J&1GWg>n9LFZ?#eLcRY44*W2
znziZlbQs5ahKvWw&HzWF0m}&i;lX!r%2Q;%ie^q(ywrMJld`bSc{Q}=;3P;s=IFKl
zStShZ0@Sr$Hf&r0jw|H~swxU2zs47UaoV6RCS>s;eFxRzl))vmk2eCMKp6xZI#uQ?
ze=38@#BViPEmbP0O><}`=DaJd^WY~XnZ`+ryZnyZSpD{nm&Ji`bg%<K9jF$;2Z(DP
z?Dd&nBr9)P#2CuZaB>^qjo8PL7ZGRG%mWWtp-Sz`P+Z-jnfC=>mhjtgoqB5AHEFde
z*luAJPD6MprIkeuZJ+s^>6*fUe{{`=7GrtSzNWs7dqB+%Q>B$E$QggS>ITeZ$^^?p
zq?mo6kA*38G!w=3FYQ=~FUu`ztZ0~UDSgwYslIPf^?4iXNST5aeoNQL`f%`~R%n!^
zd}ffgp4|60Q>x=AE3G>R-|y9lA;30o7Nt!<7vm)Ia+tiJ0QbcMoN#53T|P8Fff~m$
zwXb2WD!^rhs$6Aq#z;+4MNOd#L5!~t=#H7fHYqx1kK1JzTfI_=o5Mp>%`%w--&v_<
zcNDGBJVHWb!L3k><S0}a4sqJm{+XnkInXTfWrLObQ0#87k5M|R<M4ecHV@RDyNglZ
zm5>*z3i2vLdW!Qj{&zQmi}3w+4tcH{EJUtJdBZh5OIgE&3FTe&F))gB>2E_dR_z;z
zt84?O9{OI8tIi{LPGYnkXgo9e0cFzWd$<>6MFZ4{Lp4jkq!lU2ysir6G1bVq#ZHuC
zHuC@pW3aFK87<_2swyoqBoMT+4m?TW3YR(OedC6S@Fcs*Y=z^5nu<OBp!)%fdZwCW
z`Ah0)fXcEgvzIQ-wiw~MwN285abHISF_#L=X9FcFm7pLrb`Q}CxmYJ~RID>w_o&yr
zKYfL-!qZLeu~BbRo?zBc;13=8o5I>{*_l1oGbGD`nC}%yV)M7^#PBnEJ6d&?vbm|q
zYnY0_zdEN`N_(iEcOmpif|P^%Z3#BM_$pWK5uQ^G%{IEzRLzT25sW&<M;ccn?*~27
z@g<-t-Ce#(G<8%ljr(u1F4^o|=E1UoZrtWu`-e%#c$qT~VDL3|Wy%VQjy#ZQ@E_h8
zou9J02Y+&R@g}>=;5)$eU|&-6G_8aFH%ye<759e$sR5h*)9_c2r$$gYuWXvlE7HW1
zfldCpgaf52&9W|Yz^49fP4B!Fzz`p69*Lga9ELBfM7t<c^pmfIWhm!)m_j?CR8X<v
zdzCM-bBWz*XM6t!<gA)6xt;b~RJ9pq4lv>&&4sanZuUTh`}nozicvaf@7zMdu<<tg
zc53QczhGQA!nV|mt4HOr<}NP~8%!25Lu0f(>)<6QgzIWPUgO^l4v{Bbnmls1{n|AT
zNn}a8bBMtCVh!pzv|OFV>UQ2$VvQ5nSxnCc(_6GPu0w&!a~$@MhxbcE2gWjW$2>at
z?Vl74BYkzN<E2QF>dJo0VMG$6@yWe<=tR|848FJvR_7N-J&dp49#elSN|piterq{K
zb3hraD1>c<n>RUp{kL#dSjj<_)YGvaWgB$^{)9#z@#ni*7WaK>={Te&D-`cDR9xsw
zq2i#?Fi-oWTTLHP%AffnS3xvE><fcOhoM}{N)Dq~(Wb1~SYx?qLis9&&gBfov*&2h
z%3Xl6uT7JmCh*axq^Gu~iH}~2CP`ACorh?b$Eb)JtI|a`SbTGSKQ|OVwr)49=^Ar&
z)!pg351<JXa}7lrS}lANR9qrD$A+hMmpS~eSuxzwh@j6aNqq4jI>00>!@qU*+hmm0
z5$_O+MTMuA=1xBc4fdPF3t@}lo#8C{EbFaIBdzk)PLFmg{B|lHS>;xTwIt8;QwG1X
zx+<0W>5%0jjhA1aARLpc<ypMnp8U0~dG#(Csk<%><WJ5&{(W$|gRXOQROj8-n$Lp%
z$eE$?w_@{uFW&s`{nni-<nMsZe-VQI{;dCl-})o<{Ph86qSD`=6|aj!<b%ZPswk?m
z;iCQ(xH*$)?313t{dniE@A<3pc=FMi%=JgTa>xEf_>WZgAC>Cw5B&e~;Qr;a{^cwD
zQIh^TntwiN?TnuOPhGJWaQH8<-^Nx%CKT#vE<9k0vv~9U$Jf8YTEEw66a<^Hy%06t
zP7rp7;zi<7j2~fBrgQx{F~2pq^GIBfMk~})XW#jc5a-wasx`Khj4ZAqCsBdQj^XfY
zrlI3p3!wWDtdV4B|E<TpzRNvoe@9lP&(ONmg^NJqqjLOR0@%lh{GCg-ydp$(1P?!i
zlA5Q<P#*RTeiKZ{_-gz^8uN}6^drI<cBp-&J2sHKgzOLTG-W)P>B0pALFJ60sXFFL
zcG@F6_SFKvzrFouGH$xrQ#$jst;AjDJqYMX$fc|0usiR@=V53IO&S6)RA%3GGNE)+
zg4A@|kGjca<f}|7$&Q`WS?~pIM3_=~uF`s0Ot|4;vB&HkM9-StTju2Dg2&b$8BfiK
zSmI^g%Z-Nj)(}rX`BhhG6I~v){kn_Qs0a+>v?;min#4Sc`6W;RPBM~uprJ1}A9FMD
zXb;NQ-d!&W$yD7~9^4JhQYbK2OPeBD%HE$1af7mgNNth0sYJc_a-wj?DZbgVeFyNs
z#4D7r!!%IWr-MS3-*(n%&kh&sQ+GG>@m61EZEU*Zao3o$LRoT!<S^gex>jYColPAN
zDZeXNzsubhy6e=Bn?@Zp1{`R=v6vFZ)*YYhx?e4&p1K(d<XOIuULVB=dY}k{n{e~O
zd?^(0U5t5TR3&{fzCTlVx(qnoX|27Ta6}y$j=EoD-pJ8B8KMrrx~9G7k>&CZK*Uzt
zHV(yBGh*HZj7$e(28yR!a_C&Rnw|o*E-oh<yJ}YEIL7_vQ)A`5Tp^a#W_Zc8TKClI
zUvH)TfK&ib=*fOWdtjZ(GG8gX8jXU$WvgQ@`)Yun>^sk6{(7wQeMIcZ;KM+T?CU5M
zPhqe{`()j8w%3jiRYpp~L#k!a`VxA6u5v_&D;XIYGuuB~<y8v+LC{3LhxXLk&`72z
z{KiE{h1o9gs7NW!Pp>c;FYziFR{u%8SgT0e+XTW6xZv5o#*O;V1PAhKs>JX&*3eOD
z+aDKZmbWkYK$hpI#1aY(ogn5iZ<tFn=0Zu9+z*i+1GCl2NrtD|0MVzI8eO`w6~kge
z8Z9^k60BERO-c7s=MXbgm(qf}MFqI&%9TZPg0*VfUTj7)fQq9asiNzU2q<ba<UdzF
zBZ@DWC{?A7-ux$r(Lk#UcD-o@Q);4YuK8?7q_!-L|L2mRNto^p)B+PrQ7>zuato!E
zMfPp3$Lv*oL<olI@M!6-yHu*bKc;=0kZ_lMswoc1W9RCwmi1>FH)*`M0F$M~qS#2A
z+Hs<QEDT&q0&ddAp63D~T7U9DUjmP%7&n23Bn#q-`S>%g3lJtq%(T{ZO}BfC7_sEJ
ztY*J)DxJj{9n3u}7D(FLD!bx#;JJ&wEZlqf3}fuK-Ey>6(fptm3RG&2Lh}wo7jYL3
zLb}iYGbc};AW{jXs-tx#!y|~w4p%VoxG{=ei)C;qLH{lg0Ce-!`PA!L9W6uPwFe3A
z0BYI8`X2H$By)>7t8@FdYT>Z^RA-j5W7?~+j!k%i#_v=lcy7&@vms_X7QMiVQx+u2
zzy39MryQj!zl4R!2e_Y44?o2^7rhZRI4FJt!Kfd`o#2=P(Zf(81%4{gZNfhl7-VAt
z)13A<Lw0e+S{lpZvkKbAVhjg=`VKCyMq&Y1JE^Ce&@*pC#2I8$-u}MLhoGI2^9SCU
zl1svM&mO{9V0HhfQq3tZy^UKB^5`R!EO1Bl51CYQX}I-Yh!&Uma3P=tgf!lKqDdw;
zL}6D!!WCrDFnN^(8=z~6N{)o2>7iN=(S={$K2+qEGwys)St2i_6ic|);qoZO#nufs
z)VwztWf}gO#h0&FyRZl7Y|;IgTm2N@bZuR_qDZ&;iFM}k+eueJL0VP``G1HawTy-#
zzq<Fg!2DrWT+Vjp@-^{@X2TO*Z92e&+oofnnuYU6QGwXbG07!bQJ+mS^I`>6ryZ#o
z&`=vx2szEyxArkHf-UA1N8jEiLvcm=b56H{w;Ta3@W>Oqw1<0;_9N3x7g9B`6(7vY
zzS3~^+s?RG<1~&H)k8S$+Q<<whr)>w!ife<iW{GRiKBMbaLlfxK)`A@EF@~Ar3qjv
zrpnJ3E~JQ|{3bbC+Y)G6-9y_}|L`oHqiLB|<kc0`P;=hV2c+W0n_uAu5sv3Ij9l{K
zxdDn^?Ugw=buxnDIT;1&kRNNKb1_Q$)14fLvT^jw$@HM`em~K|sOl`5t=(SDp&!?S
z{vs^iNl#`$gi*-vR<}r6PX_3lO0IpOtCe%h<KOJNoRJR=!CvC38y2<)TP<vaEQZiT
zBWB<P0Y;?eL>DWVkfdC46#-8nHT(h~BYT~`l2Ep5&4loB1nI#-UJ#nDz=1{H$65&F
zz!p3wt77bEwj5&+7;v1Z@4uhb26el`)ntS>uh@8VWfG*pkn+Q~3FR%Tk-LTkrI08Y
z^l_h@e1+ReC}!etkIni=Rmv`&7<F1od02>MaaLX^1H3jvDmYAM_Nqn6C#MHA5%sQC
z&DN`*O}Q2OsoNcn{qHesqDd%EnY{#DPD9;lx3ZAvuEUhczp1EJ6>mispQiQb%!J7F
zu~OSP$qBGl0`=3-d1$Qp*(X5{y8XSwVp9mXV3P(t3b>ctsh1B?ustjD)@JH!MZzeq
zr0=?B&z2Frf<fP?kIhjZ;Q@0nUswaX2U4YW4vzzFbvLy%m~;%&LkRA`Uf;;%*mChr
zwNp)K1!F*i7MMY(NM5*pzyQvFP1+<SX0&+@a7Bpy$bWNOcn9v<ou*w?umzL~%wu8m
zT7v?%3q=rYn-M40x&Lb<sD~O2ZP#yas$~E_V+9s9<U_cU1=ByN`M3kdL;0Ze4P9OC
ztLbXdhXeDO@dquff%q4Iiq__qN5FsvjvR3+6AEJbN`39t61ceHU&Z>BInTH`Wdzpc
zlpe+Zs;?t2l*SyFntM*m>73!xfUH3fu`*9W1Cg$g5wW4<`Hu%lxWS4UBxGHKl*~ii
zwZ@&07j=fa1QveSJ~ctgaI1{bKyk|34)pef(-vQU%)2h35ZZdww@L(RSszJjpT4!1
zget>`a8_Z39o(8^7q>BXc9~i(sg8DNe(71DNu0JX;V86KsEAOA>sa7+aqzDfT-$Cm
z#t1&hE1G>gIPhbYV`S9tAy?TRI18IeKg+i}zd+pQ;3sa4(zsLGg}hyDu0TIo@o{S8
zL9yg$=U|A^OAG`!$zHjT1C<|w9-bHNgsib%GTHjNMSt+^XCEAJJm@uggklOMnWwzB
zj`>jL6WyP+wcpCkggaW^H_h95mO(g3h43lIPVC9tP-TkD0z{V(-qt5y0_=laASX~Y
zmiGp`(v<r{p!CvjZ)~wE-B54eY15gA54hf@N0el=S0M`vUfG67BSN}tuOVx!DQ~)K
z8JZPaX2Hdf4;a|+x5LN&+D{<Xjn2i`&6cLE#F?Myb>gg?T1h!H5nsCT5UDTRZ!CO0
zcZz~Nb&yL<yfMP{Nf&S7Yg>@gLx~nSl@n|xh5=kGW7)=NS{iLHEhVnive4P<v317!
z!3eLtO-FamIjAezc}-nNcE5d=0`Cg|Hn)1k2ft){Sj^bc!(#4m(&)ZCjbSKxdqg>-
zWlBJF8)Q2YY$7@PvWt)#DUivG>(FETiS^ze9o6;U;tFbK861eUCATIop57J{(TOmU
zHBJ~mm<rANmly-#u+K2dzvXv6mYs8jR0P-eBS>4o;?Zreyu84!WQY<io_9?V7L+M=
zfZDiKl%oiZ9NcZF%WUTwmlqD!u+>C}i%ezEvCq4SpL0d&(9rZ0WDMWp4y@J=E|}ts
zkV74HAJ2i9MSXiFEa{z=@9ST|gpv?WA6Skd*1{rMGWnS<1COBq$kYptK6i2gsb6`^
zB&B>ce(^vi;o|O$g4w|i=56{1!kI4+S6He$>t9OPQjiB-yEb8ap9~8u=_b(2p0c1K
zFASM1$+7bC3Kjs5($`u76YXE~M{UpLM*Z4(W3x#~M2KzSjSqLFg-556&Y+=@j&w>&
z=I*8isQqQ^0~hv6fdj>Pzu(!*IFc|RP^E>+;~~YYqsOEmuya?VqXh$bK`9Fa=Cxmo
zt#PL#<4lZ2_n6u_nA(-9io!U*#wJIS4UED~4Ad4F9MW}|VA1p$S!y%P9iUoaD=d~p
zKw8AdAG7dRF4|A`qUY11f@Q}_+XXs>e&K~moq#UqQCzu+vB#|vg;py7mE65hAojAa
zDSDoNZC5-PD&HGElAwRM6jy6A%q>fKg%2Bakd}d!$v)lNHf{{YiUxi*jbSKo;=$#S
z3jZv2S2~UPvaa7%taWX=x$?WHrk`XB`beLXU3}_+cBr^ftkd=h=*cbJkctXydr}BJ
ztK_hsOk+7yRmjpCFIDZ(G|6CSD=U+LWSwQJmnOiX@mlSX$Y>S!NQ09106`ZV@eRSP
zZ7WNhftM}eoXvFj=*TV?9?Yx^0_8L?ZxbivQvk_mQQQ|oL|FLI6`_2EjS^gCma(^!
zq`Bm@uHsh<p*Xs9;pk1rNR#MKQ$f!Ihf=muc5ir92Nvm&S^H5lgnz945>(wT=k3cM
z|AB}NrRr@Hifb=Rs`GKgK@ya}Ig%r1fbFbl3pkM-YJorNww*Lj+~JMm?zI>4NzTB!
zbTp6;#u@V)upnP_W;ps44z0}3ax}c4kwUWnWUFNW^P)ciuj?6=(k2r|W_z<mb1J$L
zic{wwz6YKw+)FE`4-nq*vK+KkQmvlBp}Lz5w7F<TaqL^pKgu~>76=pxmyIH7KgxM8
z9Z$O~xGb_P&0`<{GJ`c<d0cC7Y^ty=_6lj|dBxVRQ1o0Ip|g1z3mwXsV(H-6ka6SO
znZcxE@?6Kn`+n?Ygx595jT*@p{^H3)PEh`;hDpIgO1rp%KhXfUs3V2xnC`qhMId+D
ztaM(Ra-(}$P*KnrKJ1yk6?v8~kz;*b{P<R|XF_z#2<FRB`H{^Ba|>FbHsy5vV~klT
z-HLk8le_ATX#XWQg17=$e`>Y7U?gvmhKfKdHx%;P!nCub{zc^_vR7B6SK=NFrr{Yr
z64_{a5X4u6yD{`77yKh#A*Ex_1CrA1F+7wwiGW`%WdU%<LacWrOMY&|G|FgvB<6Bv
zt4*+1EAOExzq$1{>3Sy09@Ts4>H5FS*^<KPoiLV3FUSjZ#MC@wwiYw+E8MclfDq0=
zC(F@-X{k`2ci75^SxKH-%IDJ2QMm{C6PEp=3BiCYZe8)L)!IVeq>#SFcu#R`J2f}y
zP1N#Oeo4gif|l)x!OpLW@zAX4`N%W{&jOvnpQ4tRk+b~Ii}Q|`op!c1Q3uDaNIdQz
z$PeY}+8N;USuS>ZZ*(4#Is4ip#E><q{=oFnul*zDR=b{zk|AHD%!;0_WkSA%=66ZT
z;Lkk^dz>b9@^rcBgB;Qkii!aBRisXG;c&TwEX&1TW-@Hel&d5U!6jAA8;a`<k`$1C
zAr7sX&aSV#FQwqXn$#F^U|w_ZK?Dvbp|@2hhn*X*c{Fr;a;g4unE)m2!wi_a>ayX1
z87!=#s<1e{qJ{IkWS3koqw;d3Dh=UDMc7N-=@GgSN9e?-F{b4!P2h?d%nw--3Glxq
zjZhpkat}e;%~ty^A}J{*h-+M?N<AO%3HQoWWH2n9Kt7zF1h}(!i=O4X*@J~OwHq$4
z?~1lPtWc44Nys<oOmRlqv*e2)_zKYr`nj$87d#B89uPf+X9T@4LtOc5hG-JoZXffs
zep;&(Rn#_#)EuF@;z%C1hhUD`=a-KqpN^LnN?CWv$?2jJ60J<LC3Ibb=OKW&GqP<G
z-g~P&b{?+|YIdWugpWuoX|md4)r;4Ro?P}b7#3<9Y}|lg$bE+Wz^+t4K^z>$wbUd+
z0qHF(X2W;V_FW)WFBUi@<mW!dzrQ#?GiPUt0r}iin9Yp8p%6;w$fsldeXXMAU>BL(
z$Ghk05-Hw}AWX+uE#$SoW~WQJ)~C*Z--1GWU@A5mERX%aKn)7r<wMzpzL2BOv2)c{
zLeLsQk<AZ8L<kp!_?It!gxzUwpIs{t`@&K~Vb)96#x;!Bo+=bfiqs|k;}I&ugx2RJ
zUr4DcN;0|}Jaft+_!PhYs$=zYZ5*bO;{9GZM>xw7;b_8d>ZX}|hAI>aqT43L2{>Gv
zUG??Hl*DAZXt0vJhizAB{0nuY%amd)+^$~5&s7r?N&Dp6UXU;Bj>@e-8%>1*QKdbn
z<W`lEmF00x(?&W5-h?q9(adfh>$w|7S$^R#uHq9VbGU@lK%u;Hk|@-W*U8=DO*LC4
zSnz`fN3Av0V^;vV9;3=SuxvuH#Y2mwSyts=Z6NSKMYL}+1DsFeq)X$~(nwPr{CY~c
zjxAYIe>wUgqW+i}iyup<stD3(#L(bwW@;Wgcv;WniY7{muEr;^lAl?dHnSf;cjzVV
zwpQ4USynGO?Z*s-6fO2N1Lx#btM%I9ajZy-O@1Ezd%PkCVX3$Tr7zxUeaqu!{eUS$
zc$hfzDhzPYT4h0sBNTXv_uzlb4XPhgyLH~t>DM`AVfBPh+=<;>D?K*Z@aUwAwdrg9
zGz>)1njYCR9J+(=H^{+>jZp35l2FG;O7~gOFmvql1DvG^G)=$WwO`mb-P;-8e4pwn
zr%20_M{#AhWp1&4;IW!{Dx;G9+-`+=x}=Y3->^m5)2MVl!h*z!wk@caWuVoqK@L?l
zP7ROUZ)V~_>Bm3`=avI_ej*OYYl0!zY$D$$+sBOhmm}wQpgiZa-jxKC)`&xIT$>Q_
z_uSsJAfuQ>T)`v^NK1GeEx2iA%jv{@4narVs+2#pFNK^Bg_>(9%mXrBeQvQoy~WAE
z!`hVgD2;$qnW)~j@s{}8_BYVe{uH!6gy9UU<qW|``znc2X+4Sr@vc$vPbzihmm~fs
zm|?SR6Z&l0)Nuz=5_khIFYFcDI)7MmTC9zGy9ASuU;#zq#O@w09bVBH%Lg1u&-iE@
zI`D%x=g#xZHLVFWGUx6x{7LU%|GX2Erf^}3!xpr<aLiKJU^ah~<y8(J#gxDFv&XN0
zLJ2Y=pX7XWK;;xym!Hp}!x9KMQO!E{pPY<V(ZX-9GrUNs3~SU`)dX^v^(BlJKEe$}
z;RkjlF(sd#<BDu}_@dd{K7SJQ7)BQ0C0{w6@*Bu%CVsLrV3VDfnUYCSLnC-@aP_?0
zpuT3(atJ38JOJV>!C;Nrayuj~cNzHrib_6~KqdbmYj#X8%SmSnC+j7V1h#u<Sx}za
zGmF)LDxJuXj(k!_xD#9MqTiifS+rg)lbvnDaVHjc4d8%Kh)wz0IDX^+fi&2X(zBU?
zR}QyoF{Axo$61b7>}o>+|Ac~e|F9T^SDs`S26-GrD&y|q4vUYTALm{-Jn3mZn$*ow
z6>kF~?9OU7q?CrEm$71si&-CP_f<2(@C|#r$NPsz$I*?o&wos3!;fCiNX?9X`Lt;3
z-~rH~)?PxQtdtHNE_q5?a`62um`X!c?-k|5={z=n>U5MQKuLim=CFG_fDS`3p<}sm
z3+3|E;Vb4^j(qLsOT|uKw@gp2imr{M^rAqy67C~}tr+*>>>hr@l6n+$bMX@C9<DO2
zZ88j`xEE`U_s39#&Y`IA`Qa8i3%+%mM&67BK@Lb7G+xvu!J;G_+2yew$-czd=ChLV
zu6^B|Ean1Ki0>_&0&Z@7h(RzZW<a6QU&duYGV*qwOx}3VcHF>UIK$s>LC!Jl?NQ^c
zo5X9=ZAvexJjI2mqU>gOPgkld#?l8N2?0m~h(rx13;(cg{i1R!&T-WoVa1jX-!n-|
zH(4_)aM4&WyBgWU!@lGb%c8JR?7zdJg{O?5Us@XsvVs*KJZb0hn);#?U&3y~fi@+0
z?-@%CJj$!%tfG(TzRY&|?i!2F{=#q$$Va)qvaQ)ifQ8aQV-OI!NW^Y8u$GZ{mw->q
zsY{o~NG7#gMVUwt%bQ#XMp`OVY}PJ3)Vz3p-@3z=_ZIfZag$o11sheg`0jzvjiIJZ
z;3*D-yym?`ZrNziiQT#TgLT@XH|EPH=!$WJa?}r=IRv)D(?D~-O8^vF=RGowd5%rY
zK|0HhD0;(5EX#hXaAkVUVRc9Z4Sc^BD|k`B_SAlw1wd5c#MWD^=>K6&A0+kM28s(p
zv&-Je5G-53SFD#0S}Tq!Mv)}RdO547JGr{7Gr0bxoJFT_<fGX1_a4GT;hV%0eX2#I
zbbW_4DNYeID6ZA?*LX4q_SfHAL-fVr11%e8UA`0K-$4=i=NyvfA%l^k$;E`9RdKWp
z-k<Ulc}!4Uv0WrKI-1PVc19IP)^B3Q3$YfP{>WjJhoHXAMy^qJwwS3XObAh|B%80v
z>Z7}5#Y(}EAQ=Q2B6|hxp<PL#u+|jY-0CuU@I%qb7!5vdP$`^j2S`>c*_S0TbdT05
z{HQa^u#&OQkIxthRS>=xPcG+l*qRxsllY>14#R5OB9hTAOoLoO^rzwG&kP@)Z?Ig(
zyW(}U&{C&iBL@N(6SZ%GmHke)+8YC_*lfEsYD|Vw`-SM<N{#NeZBC%uXD}9=mGgW!
zM^n}iqm;RZIBX(;k!$?XAO85xKk8`b{>OGco;>Vg;`IvhH85G4@O>_)`dY++F>v8l
z3vs@z`78FG&d7ny%L6QGa;vL)DnG+Av215?FC@9%%#*S+V5$8cetWyXNY_?p7i(@b
z2!&TVTU907n{mge&SCz+rq$4FLSn-d25!*vgaQIggW!62Ix#M+3~{-GnH;6|B2j7)
z{jDSQoMs!N8y{=bosWc0WI>O%Rzp<)57mpa4WM)JmKhxt(dFR9{sED`ofaWl^M0zg
zuB)g0^bg26VeR0g306#y*j!3X-)KC8w4P~W(0FP0dnqK7-ILmnE_p_5TR!((`~B4!
z{NfmwO-F+r$Z2hje03T6um><Fr7Ud!`F-ifmeF~>`l-gNHV|0^KH72P=h6<ow<Ly^
zuHOfQ7U_3cdaE2C#Zc<vka&e?CyQS6i@d<EKVg+~mPEMh0~gUz&j!_moU9u92tpxv
zkotrpHT|<q)5;`CCH-ZXV$)Nmc2e=GfuF`pjO7k$oZET7!T#fj_aAFtSve2CKs#ID
zjf3h%XHn^lV<`&+6FNSi?O_9C<0hz^bL(_C{B1jrQyG&($nDWEOmW<d4(pjWtsdf|
zp|LQgI-_TPEAKr%jn`FE`lK;PTn<wfWUB`;M$R3t&9=fYAbAohI!;v&si)ZLuyJS1
zsu$T`11n`HZ=N~YF|y579vfftn&aesNuG8yykHsI#}YwD;<~VnwcYcjq-_M09D=!C
zr;Q&l9X_+Jw*P8Pimhlpt`p%D(7H5TVmpR*T|_lGrcI1wGF<d$P%~q&F#RF#9(KnS
zB<{rnRBl?xN>SA(r<N3?CW`S8Jq&7~bI?n=gHQ%<n05HIc8j1LGF#ofPo3!^(KQ|I
zq6|}#iB^F&5Wh8A<d!uk`0(X_q*#bP**J*ah?hz+KWER&0T;n3Tm7J014nrA9vBfh
zB?WO`h6kz(_vG#eG<EQt8{X~K%knGel6i^M_Y;c70bE0yUWu-q2Ceq+fHn4W#G#uK
zu@BLYyNa5`N5j~;71%9ltTrl+?p4GWSSFUP-fUiKkyO{$V3)UoDRRXcPQE7er$0<7
z{%oV+{v!RTI4ComMqXwAh4pj|hZ={@2r9yFp;SQ|@;xWv{rCQJy;4tiMQ7UHA1Ipd
z$Ug0SfKaxuh1_0O(A{|(BRQ&~>^pjSGj8-H-Fp4}BaqVhQA}IE#9y_U;iwuKQ0!QB
zN`A;GR>?XzgmI;gCvTt`NRhgeM4tAxgv~_>{GQeR@NSr_$arh(9X3zyq&bC1*`&a)
zhmpx^J$9Nf9|))DIni?Zn4KNQwEkZCP1wSR2n<P>Rt0&xoCp61vP?daImw9@e#3um
zknD7B_Z#Nl&c9cRIu;~S7~h$^`FsBaR7WwYzqo<_!Ys6JzJ1Fk^v9_GO-i(}U|g~E
z|3eG>-cTWCUE~6urGI-(YNnw~Ds!8FTrj2elb~B^m}kEGZ_TpufoPlps>jKa?_M0@
zag|9VjxJ}Xy>hXQ8qIJqGS)ji36{e#bN3@9N@>0PL5gf?^E4cSOJ_%gsNL|veoKKr
zS*4D`-<CI59|sdMrpCbhWwJLjg@Gw9_Q|o1MJs*UJ~?Y=UjNpdUaZRrTL>zDz~`^3
zMy8tk?zY0%?&8UYI88{^^Ltf_ymP4*3yue#L_*LmLC*+YC*XMyuK_m{#@vw0?`_Od
z!ztBcQiNeg07_mDh%z)Xfn;O779B#Gm13mgC^ZpiX?>;TjWe;#!q^Bk*if+e!+bI7
z2M;aH^KYzC4=VA%dlr%#;<0U@$ALVFsH-?auin}C5e)%RWK*Q^Y)aXG<|&T3U|Tz-
zmlhmFDO;};{WA)BAfEaCtz$hVq~RWAr7un_#I<$4?^)-6)CAdjVs`V?iq!j6yW$t$
zo5+FbFzB>rq;37gHH#x!oUxG;hCl6WhT!JhqfT41v34?(Z)<ZI?yj_b5WWQC@%oLD
z{9dSsJ)uC0H1<wrS>+CiQ86;EEy~OJ{?ijKGM6!y5TZ`@t5c5&!{hDmKvcZ$OM9Dj
zc$?0O`8g~mK3A~24{!nuTTBI)v|9bu)wiw?b>S%@Bpha)2x8SW%rAXHL4(5kyF;y`
z@b^{OI1q*5owH`|H70Hk)Si(IJg@0Ff6xNpzth{+OwDFbZVlWW%wG%*SNa$zjfrfF
zQBxM+ulV!o8wW%G;<O3xNf-%tb7>XAy<iz3>Vy4ncJ7Yv6^D5+3W0J4Ce9tSkJ#tU
z4;<}3sNvO6_4KluN^r92cD7@wMvnG(mu~*Ljp+TSWy8?I`EMD9Yrlc~AY%i4*#|O$
zY@+?Kq9`v9cD@y#aIugR-naDm{Ve=Oa^}{{0C)fXt|G?7AELu-L0;B$HF_YK!D|r6
zY*$ly7(fZRCZxWxtb^lj`%ulmV50?;6EJG^wh5^2|1=ls!%lBySO|y7OJARadewVT
zJWl7mS{6ua{+2~gVgmbm6?v1ppp@LXdnc&j9r}9N$3Qg1u2vfYM|TM(RW%{@yJ2N}
z9c0f)d|P^IFH%y_*7f2fUVaF;AHd->T=n*&MG3$DCp)02Xs=7TPLSr}V(djXX#A%k
zU}So>2B1d4rf2Th2NY)`b_jaCjzCj}(D-uJz^?@@p_7(Z4EFB(L6_T-bz-4iqUqDi
zr!4SnD7LIz85pUAiH;3Li^_yXLRfyd7_W8uvVaYDV8yyi@JQ0@30u^XF+2BXn0W-@
zF7A6Q8~g?~m8$VckLCitf2`Ba3-fE4fVnpELf1-Q2RD%YLAXo`U)2iy2vWL;;{9Am
zm_Mh1;HZ)zVVu|5HTi=TZ3SRs>`@y_QJ^U?43h>optv@~1-T%uqM7%~tkExU9`hrl
z=Wg?(xcpIK=v;=9I)G_lhqD8oALPYP_kH@BGih<w5*aQGN9PLt#-l;1Q0u2MNf?P9
zbQ4Upb`<zGU4?F!97h*T328U5W(e>6Sa%cSHOP9$81N6UR`h4CoW1g7C}qjzp;l*z
zia&kVd?&VU+~Vb!%SK}mN&D}c3MN9sNpE)%`_t!LJC9V&``l)SZPnlcLxg*Z@f136
z3o#zrBCw(`5-||yR^?5H(U6K58hM6|U`l4tlBZ0E96IUNp{ECM9F{xiY~T;a%Y>^`
zrWFlAEK7^{dO!@1Ig4NO6Y*+l<in#+eVe9MjyR5&{l~xD0TUMz@hdlppCv|IqKV>k
z*?mp>rHpNeJ{*&WwhuaPh7wfd@0L4Jf9AFoyPx3AqUR{C{3s5A*1yfRtn{=@<MTnk
z{CyH2=E05VF%7PsK1)e8{l0Uy$lN*G-w<L7WM`DCvrwm(T9yXgoQb&2*$`J4UNmu0
z!0Fqo=!9s$$|8b&${V1up>&K?s+Rbj!IP<sKd;=?yzy^?4KQ!O;2&raPrgksc<|rs
zA`7dV4pVXYFVhbGqtoE~d2jGq7o*nV=#4t*&Je1YOGrl`A2{d!^S58wOw(ju6{%2Z
zitD<Cc>qKzs%uvAqU+oWB(H;;H0G^J`_!WJST+&5IEmdhm;QdnW|xI9lp7PTASDUD
zq)fak$@O2_r3o;q_5{Y{q;A6SrB1l(VR&Bu=-J8mA~e5uc!htiqI2W-$nrIDYxZcx
z3>r#P#PuD*nts7OhUIr@`7wd|L^Va~20}%CZpChqvHqrT0<$$cKWr;S^;qXdXd@2h
zMHL=;A%{iK8~KIkR!3AK1$wLVNta9hQACUK*gMQGNQ_0*OqzcZz8PA>Vjo{1nwkGA
zm!tJt$D5{`KO=7iHr%8l4-%|VO*y+8yY|e^BNZlvm=|l-WOsk(Vj<9q(>2WaO)~wB
zK)kD@)j0%m;0{nU(m9>5mT|k8%+Q>k)sT+^KjQXP>Y_brPmxKOyNCb?-j!}c_$^NA
zAyF2BByqsEcgOzD_B%{#MZ!?>eN=94b<$*~3(UNW=Uixi<BNZhi}qj5*_HsAD%zdj
zGIz^<cXsN|pY6%`4>a<3SoQ1^&p!5_kjej_fzN;8ApaHR#N?vRA{0US$5&`$vKMeA
zI4fl))B>)*3cLQ-Pv%~pN9S6k6Fr00;Xl1SJ<6*5&AI;d^MBb2?4NeM;z$4I?|%NQ
zHv9W;{a^mpzvP+!-~HBa*z(Vz{p(+JkD<4sLUnH^lQQIuN6o-}M^UDRf%siCBBxsu
z{=E`FrWxu}?6*SiO`c7~*-gM*Ly9mdeyHcmsJ8#>Xn$W<EQ!qToPWWse=^mP;y!k~
zq$a__+VAUL1fLO|6`PBXWEY@unpD{gfAAC3zW>$Mxd*eEuW>v&+S=NscJydjv{lNs
z>t3p=acNzmSglPq?zbiGk-8JQ?bvNu?RLT%Jyk91wt`Yg+(J=D39*E_$0cbKqC(P&
zgUWem=ggd$^Zx(Nytnzizwh&Wzn>=uy=CxvgjGi0B%bZ58p2hDtHGRrUu$YZhccG@
zhcYhjc{oqVRn$amJ0y;<^#NjT+_d1%Jhv;)mikxRE3eHa-e|JL`eILGbnA?cZwO`2
zk1UmMhUh%d<Mw6DJNVv0<TbIy;W_JT(N%DYFZHn~#b!`upLq4Ym7wiCTd|1zqZG;-
znndv!TZ<>RAfw>%?e%Te;89ebXRM^T`I944!^-6o;hb6f8KBPOKI5E|&YTwis{1cZ
z>GThTDv=+#GNXA7$=CViL&W%o=4R3!&V3B&NoF?+ZD=X{&6L-Rid6crHNS3SV=7)~
z;3o!xI&w24s`KaIYFEkNyU&|&ftnXkuqbr=i=eR8Us?=Xb3YkNKj2k>F$Kn?#2q2Y
z50XL*2y}k1IaG?G!%FStjQJ?!_`y>A-P9?f9W<>O>1^*Lj+xm-7^LQ8fBiWsI(KYI
zPW|v)aE$tqrLF*zBJ0;b5w!EWmbiV3O*GlGXj;vRI{A6PV1ZMt`$he&*f)k&5_I%h
z)IUgIvaAb8lQ%;s=a2r$n}&aTp(}5yThI8VK#4ZG6nEMn*qq`RCmV2vtC*!w<_;9%
zlGb%kri;2w#puHmMl;J%vg6ZADb&?HYpDz(n9!XyY6<8$=-kE=rrN2Rs#cA(@)i~{
zpUzS-zIlA%z<b%7ySR7dK9WK4C$RzBp`M7HY>k?u?f=Hv@Z`6{Dk=|(dJ_fdKGcn;
zUbg}`8GH^{n5^*2ooezrm;R{MsAzi}zj>S3XneUs%=R`M>R@{6V8|0G{Ff6A0UuMh
zOIpAR;Mo)zo5~aIJ?=&!v6ZCq2N;w<5BWZ{K$UBKy<X(2R`k9-nIpFk9W#x=m!yr%
zvCV8dD#c^ym`MqfalLh?xArSJt78p=Na^;2wgR8NFj609Gc#V1|23cEIi<@yQ@Q$X
zVMDgQEmk<OdVG+X&Z`Lbe|}VfidH9+3j9?0oX)hX!XO+j+L_U2^wVXbKhiwM9^>uF
zSq#UxvyxWAcV6wxD|Pt#&>z)?%zpou>AjOx4ijcA&%CRLep3ZDDG%-8>2lcr4A-3M
z$n@@2Gci1Q_DMFWaJ4_L)mjr1xg!1juar7^j`qbxrp<p<*!vj!T4lGMZI!}%371TA
zQ6DB4Si7w&`w+Kn2K!p(mvMpx-C-OBlDAQ8;#sSf@yV>1(4hSYm|5UOPu|`2?B>xs
zc1gdP+O!+lD2PD6Tt75go(vTVOX*u^`3n|E^`aOkI6#mS;ol7-jUNoesI3n##sM7)
za#RoonFE+{De9d7y5JYoAK;HCvuc7s&3G#?!0HKRMqnY&wE7UCRGg@ipB-lLl}jMz
zv?ao^=@A9y8L)V8;dyQ<DhR`Wh8ps3QXz^AB&E_2?v$szF#+|;VGWiZP=HjS<qvyR
zX3By@9d;5PhxQ{tQj&V};Li`SBEbA1{Bxs9zCn+fEsb4FwTS4tr`0o9*2_g94KVe=
zqAZkw_W+<6Ptht&U(S+xgH5xw+oQ%?1b-JmcRNGV{J=+<6@{{v@&89qnDI4Q0n!?F
zni|WivvSh2e)<gi8}za)lD1FE%)Oic5&`a{xrI~B53!AaR1kIdLzF+?L===F8_@ua
zp>p%(^8^d4LDUO?n65l2>kqkBiUuh~5&IK>h<m5Ke2B&ajx#*(1kFoc*qOs~0@rfZ
z1)RtK>eDd*zC3h!+UDL$oYgD6Mkf%90Zb2Mnn)$*;rc@{m@)C$^Pd&CWCx1z#mxsz
zDUJ!tNGS1dw<Sx#GXr4B*XV5!E%oU+s#5T(ijoG*Iy=>98CV(*M}WNE^3uC9WIsf`
zpdCCqV(#ZOSUwbHX3H4q-={;W3+J@mz|<G2M*)otp{rND9c8xwOK=QkbpKZB+x*;P
z(Qj4)Yu$b)8)VwjiL;fWtVtyGo2%`<%5#GB4elGtlw#=HJlV};{5aY5@l*RF`55nn
zQx+7j7lpIVP_AW+vGRKVOvDctSgn$HHPvqCq0n%_<}lYJZ}DyhAZ8<T_z{Mtf2Xo)
zIQp)|Kz`^Nex=`t#j?h`M}MBi4^Zs@40%RIvEBBG!(9c5oS28jAN?|=$^(sM0hlEy
zjx$FX=N>7$EoMe?4&DS(#O~WUshwj}4r#qbjb%olF`CRCqJ`dBRPW&z&#wd)VLYh%
zm-N<NH34nhy4_O6de|UB0@+Qt2SKv=&U8wJ+kO9U^9Y-^_F-3`PjaqFzQlO~BH?Ko
ziPANBa1M@*oJ){j1<VgOGc%?G+&64{-Hj-_z~M#4)dO9emAm%oKGO|?A8S`%oFHmF
zQjZj<dR~JsC^eqs_y(MD8pGxU2%Q0<(?6pY?2|at@H_4K^G}9Alc*(X(Br<l-xYFX
zhRj!*9PMB>16xQkumwK&Lh#JtLLn6A-IOkzaK_TLZs{uHqDVvv0h&w_5q`2+!i9KU
xt&c&V(J_ehMK(w)p(y%H2@exxN%w_P%`_LA$=kJG%p%}$y5f4d#@7GVe*hG0H+ld7

literal 227602
zcmd43bzD^6)<2Gbgrou@-5@PpL!&fEH%K=KL(GuUAkr~3($d`}-5}i^Bi&uU@pI$3
z&-eOV@1H+jXI^vIan9Lm?X%Z<ul-&V@?Jp_;~C*II5;>AX(<V1I5;F%I5-3!6eL&)
zRq6SAIJhSgmg3^?rNza`-#glyS=yMw!M%?1jFgv!H^dD{XX|<$_BEba_ieyi3$pjN
zs;}YkjbzB)zX{LvnHw0CI49GtwVPzIP^x>TU4zANgKCSwV>(V!T!q!}kq-+h*rbaI
zYHCn6WqqGNXXZvvs;#q(a-Dv(O81>ubg@j8DNaVlU-4e(T!2%<zGt!3tMySp@Y>fj
zxTQawpub9#=()oFeE%lGs;El%3n9n)nKc{;kh#UejD6exDC}da(%5M`R{N@Mkip)H
z40z<KuB}<<{WmiWiCdE(sR}87Ep~~-c)N#T1+Gd|7bRk&3h}5H+!RJ@ulsTRA^Apc
zL^XNav-iHtACDZ&rR98BMF$+$)Xri+v|jPryLaedd-xTCbCPc~va}biZ6&Fg4~l&b
zXB^Tr+Jv8lx%Ytc`4rZ18%S3h9x%%kw2qT;H8o&jRX5d?Hj|f!V}PBbz&#1FghPa#
zJ%N1)VIP?EqXXfPVc#!cABnH<|ENWB{fh99a|EAX4MkPNrKMrtD#nhcrglIJdnZNn
z%rMxcrY%)9oiyd;_>JvtSqx3=jZ9fUwjY0Wfdhc}VW+mHPKM+lTN^tdKS+@BuNM5U
z^IyfRl;nRkak3Vq)RccuE^hB=O3uylhUE>V&@*y!a)6_W8Naf`yT5mb{U=Ci;pFs@
zpOw|s)s@ASgT>y_oRy7_kB{{YJ1aXoGpq$O5NzjU2x7JaQvK~B|G18XDbU!_@}rZb
zy&d_l>lzx_J39$dQvSNpKmY#roTebl|GASL@bANd4UqL$4J#YV8`ghb8`c%@tCat}
zCCJo9OTy9?CLY*5gn0RQ0Drarx0?UC<G=LO{GXm|++1A$+Vx+m{@<=@KvPF?dt2B&
zorL~JHGl8?ua$rA2w?p+^nVe>-{kyPDNN8p&j76dRGQE;Tm#t}I5-hFX$etP(38E?
zrzvWaFT3#<(HCLI82KW3aBzZuW@f^xgb$22-{B-g-il;L9UL6ky-LcMuWj*!rtn=3
zr#8f(FT1t6AM)Mq-K7IThx_(Z+93}rIE1K?aHv-zAFgxnmHUKSv6yH55v4x;-^X_i
z_z+LqUKeT+_&*-yil5dL_Bf!ye{4y;!tvy@fKZmP_zUtUe>j3Y;c;D!()lE*|J0KF
zNjmELg<}E|qG-5Z!~9Q&$R5tuI-J`<KFa^t?5~Sl$$eT2ANe^G`G1S)9}+Z5hwDn6
zF&};|{g0CWQ@G#FVdL_6*Aw_>X<^?YzCP#_0)|WdSqVb0ajkRkbN^XdJ~MP84s;iZ
zK#4zS0H&g&M7S=J^wDyPKTE4q2&UTdkrb*wE8)`!Y+P4g!ZH3VE%FPPYC}A?h@<|j
z1P@vfhaPh$oBu*u|9_dXdUy7qH4~A$bZYZIJ~cKy{PDX5ttyj%Gq-&~aGw366f-$3
zqd|j{mU^*1Yop6yoPg^=_s09trOR6~Pl_CdiKw1*H;TDiv!FlDH3vy@?aoxsTP*2r
z;;y}sFIuNfCExUV%;i!kA11|g(|N%SUkEw$YYt~@OH7AU#tyLHLwOp(yYaY8`m-gq
zplzAPq{)XwyV4oc=Ylg;rpc;>ld329h15fH0G7$!n#hHx1O1hY262TNrEjZ}d5ddZ
z54|`ZmOPR7z$t>R`dh;WHbQwLDb)kuKdv|*AF+d9I+%~eZrd@Y0i1K^!4e8n_A@pG
zY9*R166b8|w1Kb1+xGa-HjP$jN~b-TbsIe5sw~E}E)YW~rDJH>^cEXDb!Zin>E*Qr
zX|dzh8a;0(=}xA0S^Ew<kY-gDo50CV9+{2TMLMm0EYK%^n)~1H#mSR8Qwd;C!{^?z
zQ0LH5%v2P^s8P~iB6uqoC!^n)+Ba_2H<ZjH?!<PH-bc}&seLpbJnFcAgCQNmANS?q
z9-q(QV<GWOwR+m&MeH_V+FP`jEMYru*p`G0mKIKy=1XPhAJ^D~ULyZ_*%XAA&f=f2
z!!vcUQXrgRMQDvrD{W%d;B=Zz0f*)|570i}@#@Gec061XRGChOVmdAlCU6<dRa@F!
zx*ps;^$EsJy;$~s>}#hPkcT*1O-Gu^6DF*GA-LP9R9uP+#Yb?q)!00<yo@wMaptz{
zN7rhwiOZIWQ?{BcqE&RVVoej9++v>JWW^Aywc1DGb33bxrQc@_BbthV=!4W>(8!o{
z?;NiYIUfCZPH#|C<#D<xd2xbtf0rzG?;1}n9W7xdPh{PnT(d*%dbp%EET8i+<L+d9
z<#~nuqo`KR$0YQt<qtlt3TX@VCY_~^G1E&oBJrh~#+R3)c?JWQ2tiVh5zBD_p^$;Q
z0NKIns178V16{s-w?%!BJSG_*E%<aJdR6?<9CG@{m73fRMM7&K@mnSmljn`oSc{%4
z!QJj*1$ftm%0)tTp<JwDQ%Q+JGTg?F`q{<^V-O};T=_a}eTYEssByPEM4d&iWo@c^
z8V7~RYkLf}GrM}1yZ;@Av3iEC<v58%T$`{LPUdd@<8ZvWdy`cseN~W1mB!O}Z(6xH
zdYp&Y&zl1Y-19Yu(NiR8?4CNQ<cP#VL_D@p%Yk<vKD+KMFweUlC`G-FQyaP?6?BuE
zvi#XVE$y3HJY_qRy*4Zeo9ERY=litvZu<@S?$8U8**wF|_hi1f=#<1;rn4;wL4&JZ
z-$m$^GJ`$NQyD$xecujj^bJQOS@(|m-G*|hm8#EL^&9-jMELMhV;A9G@rFo?Qp$GR
zRMTixWRF!HcjV^roxbd^CNHOGDxpyR4iMCPf3YLG_%w|J?Iml>xVf*O8TrNc2c8v<
zQzAVBW*ts$J<%CZT_2TlmK_>6YeaH~i$g%-8y~3Z`#6%mq^%BD%%YA)@38zpwtgyM
zxBE8RkUhc(VK5bMpv4A6sQFIN>RXWkpN9U=hbjUz`2L$P9S{BXwH(Hr6t|nZ!}*7k
z-I3*xbb}jg&-)^MH3Uwq2vdWLLq^7z_l#VH8gaQ{JF?n%!5`4n7Rqg++|E86l+|FC
z((m$n|ItPnrHjONl7O-_m&oJ4jaNx~RzBM(PUJEd^;b6mAAoRNqiGar_vdS3VXJfh
zRmixUxBDdH(~N~@FMH{*)bepN*eJF0mnA*3PmLp_);d`@QTTZ7F4<0;YW0<?Cd6qM
z5+|qo)pj?wigjqS=S1)lE6n<A01+(@cj78f;YUjrZ{-rIah~MKX{GZRaA(Xs!y9D1
z7jlzK1D~*M&$Lt{BBs<dgq_((i9IzL6Q<hCXCcYypem-W-a<R!1c^|<B!N<?ULnCI
zoy;AUEtjaQ&1r4I!mM4<ju{p7(YEaF`ecSwD)*DYpN+^na+$T^Z2FQP773omMsGJ}
zj&Y*-RNlF>#pE`K)yzKC#|$SGV9E1!oB<8g`q8HH*KjfSJaEjO6KzzVY6fw;ln??b
z2wSkd_VXS+>F1|d;}wPXjGMH_tbg*nazs79HTr}q7<7t3#IxQ5s#PsqRJ|LRW>1gb
zZ%A<T5Ump{AsJwZ1qN7lfXA|>H*W23`XbX?)Esg$)M&<9C&>yZ`(kK9odnDg{3rbM
ze!Q_u_T6fH-<<Q|NG3DtKl_bvsGV5wO8xa5mOFCpc+N!ih_4z&u(pN_C^brSxt1t~
z9iio$)d(3`9`(w@vKMRsx0Tci=Xr%w0v@k|=gy?=oEr%)S+7Yq1{3w%nr9|G>=x=M
zydOE<y0xDBY&$0fT8K+=1q;TDE;wo{<Ar?2V=Sr%D)&3v+H0NQ_7!(X-6Oq~Je{M>
ziSXnXDAdTyHR(?f9X6=55Ub3Y0;i*&&|1w0u7$_oMf_pDlCz**F&)^<RSfwPRnn$2
zO1kX6FTytAv0I8IsN9m4JTF5Xn#wmv8*G(uz!MV-#HpNf-kDLj@xE^U<#zD7tYxc~
zs!L;A?M>u!sK>p2B<1%|4Geo_dILU-no8>Frs1ZrnH?t-+J|INnO-j4zW`lV<f~+O
z5D;YPOB^K;Tu#4<0rt*QyX-9(;~y?njxcx5o+X}g@{DrPD>Z$KrPot#2J4dYB4d%(
z%&)9WB>vQ)yJ>VCiIYX{d9xvFwOA4I<?hs8>nqrmT&4~Crle`>G~>U~o=}i!GAAGJ
z#@yUyrRi;M&INQMgBgAVYbKk%?YxP3_GBSnH$SCzz(uPEvpB4Fc&oSs+Z@}S(g>eL
zpYs|VnbmWRir$2q$=BrkE-Z~)7=x6edHGHR6A_i^F@Jv01cS|d6TiTqHrG-o#}Rz$
zzI$Oya5Y});$5g-3fZzH<sl3H&^75tC;y%_#lH1XD>4+B8$2hseX<uiww}Yo#hEJG
zM6X^IS&#I@datg}w*|taLsJQ5;@niamLYIb{L$n4R#tv__@U^B4WoK-+#xb18{}2=
zkaTd*AKpytOGFQRSKpIu+^LV2Z=c~i>7WAicB~RuUp0v|q0-m6+``O5)hx{v`I)w6
zJddJXzFJmNel+{r&nQqIpEqM)EpM^OP+q0QQ-U40mnP#_ku&9TcEYkXw|AmzKZ3zE
zlJ@5=^>kY7=F!6uf<{U0S)0}RBgw`fytrar#T_myI_5b+3P!aRpE!CoWjWGx9|P&N
z&XBMVs+l$z^!mAhfcbkhm7Z1!Hc?GZ&D6QcA=VbRmXn$d7ESdzCs03#eiq*Y@LIj9
zEH&A@lgyaLKI4Sl^}(pImN2Q2&OF>^YvIM$UmlDB%vqzRhR0TLJ(y#}=fqw0GeYnt
zW(Z5JhNOEDTzq9p-1UG%S<w@6JWH@yY!Fx2C6igfVt>(~SMTw533Q8KIeX!d$icef
zeHZlu?BMwuxkh56UQr*wJVR;NQf3I^wAEc^#4jXHW*O(=Oy-$y0Yb=~h>B!rAoyQu
z-PE=6!b^w+hLX7>&$h?4x<+qqz0#N1K|iLWxn#}84-+e)8#~pzge=S<B6pg+=9#go
zY~2-D%iiKk;7SOt#ww!RidHO>rSkU0AP)Oh1jV}<(M4|N<bGC$Bh}X$b0G3mA>b6~
z^sC3#1Y556#O?_Qd3$!9KspDWfXN}V^JF{7URE#Yr!mXbQ2-al^)?Z`dUhlM)+Mb&
zri6<kcKTcm=1U;?0);AZ7~+d(KHtBKfDiAz#=gx`DQAOdz;zBp$E+IS4C?u;ibD6k
zOnNO08BAQA{4f~6Y~XS4XS3L%a^uY=f=$UTG(&J-Tc(@CubgXS+m|@9>_MxTNJ^I5
z&DUuR5A)>k0CW*f9@@`v=~*YOxZ}H-`K9XnopZ`s=9}GGsfc{rTe{axuK?9-k8;tY
z#&jr6>C0YF<9Z;pWW@9L@bmk<G<noRfOX1!$gVxrV>Hk5wZz?69>lM4nsAg#$j~3I
z()v=UZv~?N8K0H%Xb*K@W#4hLU#%~h4#K<xD)g4`%8YrEhj?v6{td(d;v(VqkT}^G
zCNN{6w6~>FMq;JjSoE>jtg1cpLLa|{zpd~#0JqGm3=aTkpYXsB@a#im9<CSr*LG1I
z4Fsp}P5C@FG{33HMN^lbflt-I*IjnU2g_OS=}6kp=oHdo3%CgT78@@I-CON8J^IoX
zH}h+4x~vE;=F?pig&&S`vgILDLJ@rkcb6i|Si(S}Os_?4_M4FmJ5zwPCSvBvVB35N
zbilqJ=F_zMM@v0|R@Kf+Ja^9_;`fJhZv=vS@F{H0_s-)J4MU9HnyfbEAA@RA{tEm2
zzwr<eIczCHoYZ$!BhI@#$pv_fu^|wm{Mib#=N^<+D6@fzpm^=m!|#l=OtSGz`M7FW
z$qDSiG75T@Gr>v?N;S%6gGu&*gK<=ifYS|QHZH&|jgKbH$Gc8c%gLG;-A1nt(%Rq_
zzW_A+=yCJmUd(f=dKgZ8E+q80<KCC4Zx?|aU{FQ007b5M+=^}WBFj9y(zP6I3Sr*+
zpw$zR9ytrdpJDXZFtADFVNJ~$(CFvG8{m*!SstHBqU#CKhi?%Af)oXu+}@E-@iT)f
zOt!EXFOWC;JGk!l`>_y^2dWFFH)0}|9MoG6BXnvk7&J=tA*qd*y&Q^yUdyFHXupL}
z!2loLm#*B21VIpcx|0E;(B2mbFwC1u_s!%ulilMdR<sz9XjF=v0{fMaQB`u;>G)$y
zwB%fM1;pj&krKFOSGI!jwd!nk-y<!r19IqF7EVU8q~<GL0I%C#9r+*~y1vR0gD*wr
zMAdd>y``<i(SY>Iu02u%s=)Q>W|X4P9#yrKI)u|wS@x4#*KmTMfzZQ-Y`rHm-127k
zNH|9+>&9hC$lUvKm#xVz{pZ4}SE>+H{&!I!Yz)LT)dd3XEB9-~#~4=oGz-mVjls`+
zruD(14c1cilmTc-*iKiB7KEtOxbOll2Q?7*2$H-qKeVSO&^TAF<*E5YFQc9PWp62#
zr~1)ngwdmxFas9D=B*ej=ziJ9d`|vNJ3mvkRR1kcJXy3{B0GQKT#uATi_y8ZR<%`X
zk$$88N}NW9hgQC3MiHm|Trac#dfjo1X;(j2uI+FNAE(3uql+-_Or1mMosd<L-UYZ7
z3o-4}ukb~ixa7>H=d!0bY<;1DIY(MG*5RqkUL@HWGtmY39jq>?Jo@g^M`=`8BW>bA
z`;Np-rG{h5*-|X~b5)UI{kx5a-W8=hHt#jG3!o9>;UvN=%a|x7<N51UC-1BKhZ*!E
z^5jwtAsYF*N`#in_d<`uvGQsBf^rT}6Om7Mf_4>q3)PYr2aBu(ajo8cYs%F!Pc3uw
zF_!k02`Yy?XY!kd3(em<;8n;%7$|J#Ij6A`>YKTgxFt8ROj{hrU)lmiWgr)jog{CJ
zOX3W!W`cupIlNac+Y2z<Summ@bbQHLvRg=p#~6P)B|*v0V}E&*DO89<tMCi1O3!gx
z<~U@zjqTUd$-k~3;<4);@e3Mo^ekb~YoJz(<2bP1?8j>wrefdiN`Vd;*xdB3K<UT|
zdn@$28n!v0Nyo~$axA6;u`ll~L(jcZ_?`I|%vm^}yf_^Dh_P<2Md*1UiGC}6x`J2z
znL5ZVRp`>m9Qg2nd_Tkr03qG;P6P{JJEk6r-b!lA+BQQJ#1EK{s`mUYm#Uh3BWtY(
zmt#y;GjkkIOg?RlK&J1A-ZyLG<$pb_8Yfq7nS~-Wq8vWuy}O>~)vB?{IdjWzyyn?5
zz+-22hZbuL5f%aO!mm85Y?dm9a7}x^rU?I}I(^CXvQV!-mVRSkM97i*xxY(l$))*8
zRidM6dK;(ZxQw$W-SOVq`rUfi!_9E2pzCl|sZL{HmG%7Cf%W*7E&EBt=mi*t^?_)!
z!QMpVW9@+XxiHXggGbm@h-;isg)c?Hsj%Q=C!x<R4Rlx*78SvnBtnj7FqP3NH!%yw
zm^k{1aeeN3UAL^EUr6DxzJZ!0W^<7)=&mqVb4WS-UTGMUP*7I`=@IZ9h4b~{=~52^
z^%oAc717!c2e{_WF(OO-l|E<!wMDo#7c67)_dV%*hSMY&Mhcf{&HL259C=|e?n$3o
z-p;Qa$yeq*Qqjk~T|{alm2*KBMLr7td1Hg0uUXv^SSnyGW35`sfb&4Qt?s-*X1uZ3
za=%wm%?J%-h@Xi&`zpH5U12<}ui{@$_&P%SJSiEtAuB3e58QO*X6re{XNl5pUVgrz
ze{5!}!vlG;d{%iHM}a?=>?ssW-!QsA#BMf7-g<XcJe%U8Z%}FG=d?2>Us5QtW_iR(
z$bIEKRwa#a`$EE>%$t<fz?<iXnZ3aTLKXNibvg%nIx^c8m6{A~PCFYR8_R<3I&Ky1
zK4_9q6@7SAT!L&B^Y`1~wWh=?H?vD(KGOH^-ro%zn*JDRO)3GJjj#w~+-Q^TE=*n|
zly?s%(S!~raCZZ6+?`lf1%ZMMg0@`FxA*3ExZurm*Zqoz^cGgVba1=SCE#b#AtEB{
zs~LOUN-5aWzush+jyi?1CY)UCv|VPoo$&2%YTWkvOOMMbW%yp3UK>pVf$x@mxNn5S
z;ZDt1&p_{lc5Z7tQ7JZH?uUK4af`S&3B6=^LuVw+)l#vVE}#fY5;U5=z9>}O4Cz@E
zbo}M;&?%;}J2!l*9p*9cDj1n9JxM$X%2A8RX%?7HH1=4WbZx#xYYzKvfzOXgTA(f6
z{pDt|>G8EoNv%Th&dKG^<-NIK_b=_E-sn*`=T^zPy^9)yt)F!#0lsAhNS;|@mT161
z*55@}d=ls)dAEXAP<}a|*tLjO0M*GfIPM)HPEU!Jn=S9|0XU+vRRVyO(Dq}s9<zH*
zk#eOQmk$&Uy<M`WCmjbAqZ!zG<h>VCV%Lu8|H`IQn_J`YhICETiAdr#2*cmJw>f|-
zTPkg#*lI_WULLG`z9$_`9a3dCIoQ%-xA?C9WmTdz9*YBYO^~Frh5j3L&%1*uY*2ie
z-zjYvQG%|?+evq9qzse(iAbYCwW0K}>RZN|GQXiq^9H9E!3rp9Pm_yCMGY*kSO&aq
zOcP*MJ*M?-W%pRVv49Wx6F;f5jd9i)&rEbay)?Ijw>mRzo`o>9A@c1Lh5rH?YcqxH
z1VRTp$b;NGrmIDJ^0S%UgJ>F!#p$;BazC-87nQ-5Sy<4rhT7hzGC%iiPLOT$Rlm-=
znd2sx^)31B>yzZb^2u(<xwh@G`}PS9xTJ>>R!NL?dV4oOCU+hT01kVl_E=Bbe@rW&
zlfkP6j>Hh|sF@SYblg50kt%!{R%|rHRofnhkk&|(<UL%$&4Am^V$i^pn!aO*Ch#-w
zvzu@m&W{S1rRu+YyzS!0IKJI2TedaqX+Rla+f9_5U87+vlHI~LN}$>M`c;1Ss4J#+
z>AF{bhF-s_jQox{&2y%JYj;Qh@sLz=U%M?$Ho4Zub-mopw#>r6;Yh#A=CB2!rVN4Y
z<&q8OZ)e90)k+HyuKT(p^{?t+E_hh%ESfz>W^R48^uqfUr-XLRF4J3C)%f_GQQt5v
zfBaKU&~np*x`BJgDfpaWrpm7T%cHx$jehHd|G8MQagU<Z;|TK1kRZ@+h4rM?PLo!L
zhb6`<y~%u9r_d<G+!1t}8G)Q2yX<NJ3D~)=w3;Qxu^ZLVK<TKnpLV<6LA#7pu+|vn
z*;EG=N)j6;*)6sdU)N8~EsFMPwis1=E_G8N&IagX!q9*nq+J%ZUgZNem??SVn{gbo
zZj&mLD2v{W6TAJC#P!-KRv3?xFb09?Y?Zh9{H0BNpj74FK97Esp}1G%Ve7q|I#Vh=
z*cadznQq!W2v+CXKHt%K@y&4XLmXoq&*gr4IhDykAkB`}=u)gPX=%&LJ!y7#^^flU
z-;w}cv5E6{d@2iKUGj<C164f`R$wL3Zd<eaV_ymZ&c@18*vaYlQd=K1eLNWCj?`y$
zf#~h5R-4`%S!%Y1FXH-6wcI1`0}ZCEd8QCR_OMMB;DH>5PMv4iDq6(rfvsU33rwn;
zL9P9i);xvOYQ^WuWfoCl7xlG%(S*4pmU#+|bG6PW)S%W{+htRYj>ey7zP|Xc_6qHh
z=gzUUZMWMA*qzr5Dx5~q3C`~EU2aQTiKvk=Noz(@k%J<LV|qw!8ON&@1G&%;^~K-h
z)eelAGJb)EO=7Oam>yvlWl&7ER}c`sz{;R9#2yR8B6%IUr5NK)7ZG(`Nhf>bWI0s*
zbZ3-P;i<^q(e=?Fl@rNc?&nX*-1Y5kiSYN@)wG(hh<4X1q1d`<U-WE2_isbLKAPmP
zy~CH}K$I8cK6NxJdDkM{yWIdWOfVt$`7~?~1^_HjwWn@g28~=ai7aB=Og~%|dcWe<
z5Z=3u=j+CQQFr-x<$3F|coTMUtUV-XM8F;V+zQouKjOW`BIg7_6MxzD=aHh>w#-kH
zv<$7y?&q-(H<y?fqM6cjRhF4!saq%v>n|PcLOL2h#GKS;*T4U8wR<0rSsGl1<ot|B
zo>16E!*++aJGW8glSmF4KKy<|t^Lwi*iYk&>lj6+Sks2t@R7Rm4z;U~i?yfWN4B?E
z#1)6E2VH~Sk2Uk0mb%MlPg%oYXkqpq^D4KMr2Sby`sL$$>^bz8U-?YJ(|HZUM-0%@
z<`X&0H!|0W4cCh5n@=wabA?(c1$Y__f3zVVHdC0&Ksc{sA{le6;$&R#P&5vkPm@Ft
z2a>o7oA#qREQ7X8eXkqz-M@bIOGomw?o?>PKl<Y6)~l-&!RXHw`Z=|A<ylUk(8)%h
z>4`?bq(K|}^&*Q-#!P{FzJ<GOMtgM5z`onCF-R9rr4;{_gyz7KS2Lt<+%(nIV!0dS
ztOe~A*ce*TLsEKv9qzc*OEIg8?#I{c5GiaK>NcWTW8!eMpj~b8qFsET!2G^M3x98M
zq5^DeIaQV6Ed3dukrHMvr-Te@+p1{?yS4?ZXkNFDAPtc`Wy7DU6BRr~D@V@6vZ>r!
zFE6Trc<U5f-_iVTe?FK1UfMWU=R)QeMmY`@ace!Jg&;l@ctvk5`)D9UkBcuj5VmU>
z`Z;fuk;xywTU@C^U!9IjZ?}{>u_JJ_{Eh>cJTKsSSpM00oyVk(66D+&3&ttW<bUb!
z_eA*4ra`NT8q_hntp$e#(d7dM3g9NRhqkfj)nZ1EQJp1j3i{|u+qaGm6fkgcaT2!6
zihdLal_SZ|$y__;<jCYaqdil-Z>au~V94{skKfs<_X<@-{<+xRP-<)M0#2|xO0|0K
zm)6P#n~5P?e`p1|^g2a5ABM3`jcAwX22ufnJqZRXvUqR(N!)JI#yK7rwYu8kkJ9{+
zCx}9MZ(Zz$Yj`g%Sy$C#S?%q#p5v+&f!H8#4Ash-vWiXxL`PamcdKvOSOH=y&8t=X
zNs8V56akJXfC9E_8v?cL>b=eoxb;=vGM|ju(X6(SS34#sRuS&A4bCc}q|7svc<;#r
zwR^TiTA4;S0|Olw%B^eFnEbp+C<>=bYDXN(23MN{p{t{qwhJZe*)@U8esDXM0ce|$
ziky4Xff|ynF-p(YBT|rCpO(Hv+I}h&MbLb9!rMHt?DG_#7j(PQo?y$8pfj;qG)<R?
z$9}S!2Qo?6f)URLqy-<;v#?9f8!2FW78D|n=8`{0aejU92|nyMd-FyRk+B()@T^~v
zS&@YoBH{5c?AGUjt&S#!AZC1jJ-z&E`;&tYMHoe1mE2o@wqde*)oN&N+rcP~&%3se
zN8;ve+x8G!mr?UgdZo-4GV`H$nz<f}ypS<w2lLvkC#WdAG<=RGJbbc6Z7KEOB6j;$
z9KrTtiu5Sp`1}i(A1<Fi(<nF~Umo_5wM6TeHXFYZ_n)n^EW8fh@{xS_8i=ve4@vj5
z2nxAb8*g#^`Qy13{)UoIq{(>h2s_yqr7{sA@a85otQK{+_Ni^f`YUcz?cN3962=mH
z(5q^z*}<yi8s|pzN8>N`pP*<&=U3mcbBo5a_9v3JoOL!r_7>zM!%NFLF-EKvy2DvK
z^h+xvIP=Hr7R7b_dI?hFnca_o7!DZvn(^jgwGMy|60;G~A|?vXWSWB_t;V*ED47)A
zsFfM^UGP%ASZbUk>hzJlA6~;?!S3B+4F~UFawVY9?IFMn218wg1qL>%HQb+_=uj+>
zpzCYKsRA%YYHa7X)oF^nOUbuZ2)YFPe%N$)liAKu9%2r@aE+`iN^%p(Al;!lREX=x
zGws2Iti&-{j(t2OOT@f>``freF^sbz!KmQ!4xaj>@bm9xo8prU$%=Lur)R4@ZS@@L
z)^@1D0(?MISDi7UW&=lop1wFn4Qg9$4VF*<_~aYD-)-(i{V7zu3bpk6HlNXCb^8}B
zX!&)hF1^AbJZP`VVy>4uzXz~_F)Gs`5@4>`p^8=BnV7v;DF`Soo7F9`p}&3M82cRv
zr!UB%mf#0x4j%h(3U1gUnXR^t7)<BTQnt9Ns@hRw2j8Vv*jzIZ2wNr<Y1b=+KMhb8
z&qG$b0`Cu9%D<`|PMx#vE$Ur7Wr)*DKEPHK+I{qKI#^J8NPMG(-GV8W;Ji%EaL?}K
zpTg&=a9ZVIIfXM@KZ~7t{C)cT-8wGigxa;E>1HV#&Rzpb+{^g7%Bkm>=$E;=^(*Em
zOZuQziZM-6cIip9Ubpa~-B(N+3YX9)eBS`#Eqsp{y-`%jf<3{cFlSr!#`7Wd_?4eI
zIsiVE)Ul2<i5E(Y;9D4XN+)??Lx_2z1U1DAEs-fu&8K#tgwQ3Oqdn<43HGZ)rBzSp
zOCnUjq(EQwsd1dtraIuX(p)xElO9mXQ`qFjRQxUV$S4iQP)aZ#d=9H!i~O#J@pQ7J
zBZjcO56=q&ESX~Xy(pg|1u|ap^uEg@;AGQe;^*;}vh<MQ>DDeq7m2yRE^lohoq*R#
zHs4~-wT^amSxKFjWY~jbjm@H&0(J>%8kuwq;$zGgj5!$bp}-=x+wLd2sTqFv+7q!#
zt&FUACOvvDOe`9Il7W)szSY^2IBUe!{gimY*O$R+fhnXYVdk^h^p6c80<U{C1=GEU
zJ?xg>EoIA}oU*p|Ej$gCue|Rcc}5lh4=SH1RvGvB7@oqb@{r05L#VwQDWbE8cwXcO
zs^8vY=G8cRUZAc!8{_)}-}krH#hx4*TdiK}lv#v$@T|~Loqhc{SEY5buaQouh>{{{
zX7`P3@#W<CyGswT-O{&}?@siWy<A>*J*0axR-Y{%qw@q^;GFA=T~(r|(e*N~a|Zhh
zqZ8YF#!ea{U@w&~+;UL^Sl3tWhkSxlnbJL-sS5rSY3YjXgW!K&sGZ~MHemBcUkv56
zrZ;N7Kz`Tk`Oml6nL>^6b$;M?XUmKmrVIupU;2atkH9LqgKrGa-dGGJO%BdrgUJt8
z^nhD<Mp88>i-hWw|88P^Ea+C!B*^C)&Hp0zz<?q);WIv}NQ9^9iZ|X=jhB1CWZWh}
zqzB%K;v)ZNd}W`LZrj;GhD=&7V}DS8!}jE|ToNVZv1T38cINbUh>-0~G@Lzpp0yzn
z`NOYbeTQr8vSWl3cR_e7M(mM+R6SFI?KG72Zu2fSpJN|Lo%INu;JpR#V_~cJSt6^w
zf(09#{bu_G5imnZ`j(2Z)tBb@251GuDku~OR_~Kd#~Zrr(o=ObP`OW-llh(F_wUCJ
zEA4aMCM#^6F5TYC#hLU)6CM__3O#<eGV+RIG=22xaPh1XN8!>`mwy=BpJmzcocNKl
zj&^Q%^iu?dYanp@9!R(&I8|R*53M_dv5I(3ch4kv+>1ty^+;(!4=@+U3hE>(e6&&T
zc^a<>1P)U*gnMe)tM-Kd<bV<*Uv89#+wN1Md>V1~o<+fkcg2;^@?UV@O^w)d<NbMk
zS7`_3b=WG?Y62y?Y1g+y+r)Fjwl*A+PCXy)N6O(vM=d>tZx*~r12JzG!SwAt3Zj;G
zot719f)*c8-fGs!l}#&YlJG<MjHduNLZe!b>BlO2;Fh!g`C(Z*Fc1lg#ID42{JrDR
zoS#;G2R6e&gi^^5zt<5V#0EbhuqF22<5<|-PcBKC%XUu~e({kOAc%9d)|OB~QIwKE
z`T4|@=K-Af!(E{e)0i!r@+O<I?=Vc5RA#{YZYD2ive4Ye?!gG5{`R!Ae|=|Bsl~<;
zXW06uy|)FK&o?XX<L72*7klFo0}Eg@`S52pVzoAlT1h<i)U|et6J>^{a(p|htXr!}
z@TUvkJx^1yOs{%{b3n&Nw6z%RZe9MH1Iazb^OvfiogXdLvxCf9?KF-V@M1zR3d!5}
zQe9^Ak+hhotnMTiY!B_7xpoc|^>OpT>cUBt64-WpB@E%n6AIe27iR2j<g3u)s$!fI
zzb?(F_99)I0|lBZtYu4QTgD(oOF-YSzn;dJ`(!PDz9aI8;!thA`~-I(l(m&Y(BLP-
z15N0F0>&b@`+=BBIE+`Tc_DUbz7bmL{U)!M%W2~$n@`ZB>3J?8*N*)x9yRvXV45C-
zDwDNDsqgjatenf?5+j5~?<I&cweh1U5*CrAv+YeA&^H1G69qnZ`}LOa6o^a0wyBAs
zSuLK3`o@ysq&$#FjXcxF;b?l5cfYpP`kE2Trz}YXs^YqD0AOtx|Dn?$-9EUbSJ;>U
zU;$|MI1(C3ZtZQVmE~$$Hdb_si)T)fV!$&q&ktsoEN#P{D^efY+2XA*D6VS75_-^W
zMnBxH6z;JjRa(Wx&@Om=GqAGixOat$%ImC6x_wpk;r_@@3^QH$T}0(6va?r{pCA(E
z&Qyt^JG&2Rkr@VL8Z-PjB~Kx4Y=gG4Bu{0e{bbWGz-HnvkL=&b4xO04*qa@RS+Kd)
zN%6!VM?8TA1Qq!z>geQ;-`+ERr18_w`(~IW@Z<4(DZ=J4%cALI(z&B_06gRKMm=e)
z&pQUS-lwKzwQ&By8LjA%B@9T002JI-FzA!Xkt{1!;Jrl<ltHB-JMfFUrrC(r2iGup
zRgabJPZ*#Ln-DujwE}<X8N1Dl*$U^zz%TPG=^itZDQlSBw$n8M&s|f1pH>hQ6OL?F
z+i6~a=y?~kRrIVarpiS11dvg7<kI-{zE?@d1S%_bmAw_!fB9jj4{x=4$#Yjthj-`p
zA(>&P$+BI}5a;o{_9pPv%WHpr7Yk!Z>xm;){m0`>bW;AY*s%0BYDW%)+zpa<7g>VC
zr#mDS7Tb<7Jx`Y~($5~}v=)gwLW?dL1@|3c0VtmEZUloVqPSJ6(?Px-(S&x?^>_Wi
zMg6GadDl6}aC+;9CB;VapI>F6m?v7ot`RKesWrCRJGbY}l~O6BoKsJOiLYEU+((uS
zA8wCl={(hV(J#JN&Pi_Y$i@#c+^N;3+ZKk6cl0u#?eioD@)Gly)m7OpclitZC)`ig
zB8aQnj~65Y?oH@w9XBSVv+99Id)n%iZe?`{8C5cypWj*3lxR%r3J!mCQRn+Te+lLd
zbX0T!jKhD$7<&*S$Fn20<_Lsc{8dX-^^c~v6gqNqTDPRZS(mbZ?Lku1zsKt9d?Y>&
z1uWlNuIu@=4%ecSQkE8AzcJofUV}o-@sbTdXd+Fb!E81Q+VK>A>6}FdlDYDv#_b_m
zo7mBTKam`F<K-8(f<4GOf-uI)?~4mYZ$c4wI|3gR8Dd#+>{^e0JYmf<Y<XTToz&C8
z9;}8DD{2vlt*ch3TEVKAEY#!Q-ab<&N!IchkD6{45F-8-q(okSJAvw*4^=g9w9P^~
zH@WzN+RgDKV<jbULF!l7H&>njN9^m(x5N2&E51FL{=@@skZr<Q69gui@v+;Jhf?`Q
zH}*w&8S_@tIyfxa_N0~H3W_tGI@_t={=5s@bIW3PF-hYaae!?LGpo?u(~x=p=m{=J
zn|`j2q5qodJoS2OKv5h}I((C+&jzYp6<r@%q2Ruo7Txj;lrksi?f~*QEF7MksT}x*
zsL^G%+G-<1Z$ybUu6=`)Oo~4Ec)VNLo+wXUnX!bi660Z!dPq95Csji2_>r!#YIQ}W
zl-0zy9T$DZ*N@?9nvFH~`ZDV755J{XUn!7}dRw*dn9IWAGRTSFPvmcNqP-t(UpzTk
z+MD;5a<r&8YY%w#Zl`pl)WV{qnQ)8IwS?HWH8$egzVOFhyp{puj!B){M%P2DnX=|+
zg|6Txu;XmKUDIUPa0QGNFofzPb7X*lvWcjOn&+c4#6Psy-e0UIMCV_&X@e8f)9YR7
zx-2T4%3p0~0u95?i+S=SDRkot?vyU=_M|%lWgszQBj*>QPQU^dO5iF%`#FWT(s0VG
zyj0`S&UynYFjT5Fs(5|CjY=R;O}NQ?xB!37UgSGHp97@`OM!+a_c{4MGM#x5AmVlc
z4Lt>WiS6xY+zffv;Q_^Tp{$WfOZsnX#uDk5yy={D|86;d&2bhVUOd-fWc}xhqOo!W
zV*v@TxnEwAU`A421O2ad$FSqHezl@QJTP~lQ~0!)=SNwzkkCrkyEy=nx2Q;kVRUwo
z#JShz)7{wC-x%kA+_YSToVVsZHS(?7Pin1lLychd+Otwk2itW_jguX0JmRN~7i2NE
z?h#4RyF7M%bH%rNh0|vq*Ef2O>sz*sOjUmJ0$53G<xdF6hJdyiLu@UjR8?TfYQW0g
z+gad|gleOqJ50f^C_mm_FoSOwBXX9Z%ONU%1(%%;Z&cC4`tAM$|4WQ&rLxWs6H<((
zU}l3+23%$X{v;S!Y#^OGJWpmgu)%z=KH|(*?&a9uwZ;tC$lxj;aNQR!xu#bhc%XXX
zqUFJVq^n~A3_aXMv0YMP7Ixms+{>-QQTt+}2w(mV?%LSx+cysPZV-%n>Rc2y;PYD`
z^0z`=#ORx6lxqFB(QKZCd>(gSHbzKNfJVEdL#&a^S&RE?T=O)t-Dk=L7Wyhkhq#~$
z)zbG1B{-n#q%ZfbiMq`WDo7ED%tO2C(F=U+ePs@(8`lb9`)*5^CAy6ikP=-O`*mO-
zUN0ycl(FE#btYhcZN}%alVURU!#>P94q}t2hdP2qDo~szD)2O8^<;C9L4H>?GL~Lf
zx_#Pa*7~Nw{Zg1-i#lQ=e@(`SbV^&@Zh<+3i|=?9$9!Y(T6WETF7CzP2+;Q0v7T<O
z+rLA*C-KyW-Ma5x{m1PBlaUnBq{-sf+vB<H`tp_WHj!C$BhpC|^x1}C716AaUHydf
z{3|5xu2^Zm9aA}w07wjM?e_*GJ9Q9AvLpS}u*5Nu@`j$Nc9Ll4G6XH#YBsY%^;Q-_
z8&~B~SHYy;yjaAg7(O`GAc`lix$hRc;#qCkBiaG)8Ox~keIWw1QbVR3zW$5rRI~e~
z+~cO~%h=SN=4#NsOT9ZZt^RURfO|~$rP3Jj5a<quEP{pL^ObX=@np^VCJU$K(lWjf
za7Y+H_d<RX)%m+d$;S{gt3vg2CA?-UZp#FJ)}ukV>W}pL61igZkSL%RsR9?*Lprr;
zv2~{D>)%=RtSpza8?x2gzU^jV(AW<TZr#w}nYVL*8gbP|;o!%QRiK+w%+s3KjI_i0
zIh0CfRM>I!@dmU%`TAK4q)rZfos}z%P`7i}b7T?+gGFAU8FftQ1#L!kPv)o$Xgf-D
zC7sV-BwPAdzYL}&QmZR?d~XSEQnTgD&cydm`!TguU-Dzh#|_)1AeNqi)zy;a>4`~P
z*t{Oap}PHCR;Gds_`1)GVJUX<4Y*Oh7Q5PvWr^ImFfKZ8UYN-TQrgc@jD}W>(MgWt
zyhv(Ityon;C2&a+H=t2Uq>m3@`mB9J6y(FpZPjm-zhdxSAJi054-u$hLC=`1+2^B-
z;4Y-FCDMqQOuqbf<TRz*=(eA`$Ny26)LLI9pzc|P#U!_Uub0ke{6X6T@eGgIq2|0Y
z<B!Loh-)N1zE4l2x0Px9+ZCD`xl*wIk359$2vRWGt-|OX-=^kwEdf?c|FjB*E2+%h
z7`b?+5K9<^=b-=^JWgJKXz`O}7kJ(8e0wr{FR4b}OC$Y)E*_rYXpe8Bf6?(^&9okP
zSpraPNpRbs<{_oFB~p)T+~IOO`bm%H?<mvOG)q$*=<WALIp4`}oDT8x4#SN}f8-Pj
zM>XTEBrh2{K&8U$Bu385G7Qq+W}GLNZdg2|EoHI${alA3L9afL>yd7<ACDt5j9z0D
zJ@ds0vFL*DtEU3kRV__?l_>4=lSQh^7o_}_C5z8;hHUo{no9Iq^C=FL`(pNY2v|wR
zrCPt!flso#IT*wnI2qVYInopYVktV=Uv(xE?nK3j3O20JtF^U8>U;yBh+${FDJ9n8
zD1iAuFX$AgrDLc^mpgsk6{-FmO8@T?l;lq%hO<AIo0wL>Pe#H{2))pfZ$|*i2J!YY
zco*NInw}kE`6E^q$(4I3SL-TKF{A)I+d!c<^X{FXf$zq-Rr<o-$Df}Q6mefww|AwE
zzqcW{ADe+h7kvAmCobThT!}9BRIK)GCpO^_J8{P;4JDETb(Qm1PasAIxA*2ttr{-~
z?l7doKg3TG8xXO@G|wdb$R*pH!!Cm%DA`+U`~><1I@Cfg3eA1SQ#&Dx^in(7h#@i+
z02CE3V~(w|RF=t64%m;hsvC(v^8EpvV!P?6e)J_Scgdf|5kgr+>bOZYJQ>TDvFty7
zs)Uh=`@7)n|5~`o9T79B4?esG?Z_F_>GPba$Q<k?a&~Gt))I)I*Ad_{VBkk~&{QC;
zJ|R=|i-e0JmsHnyK;F0z4NtXBYV1*LmIZXh3Gj1w2BR~4(OjZcPfx&?Kntd2VI|O5
zBHw5i^&--AD(WH}xh9(8$1cEZSAlRlZx*;sGU?Qcn=xtIi?tf=+Y+g9$<-Ftad}NW
z+dfxC>x-iC%T~i8@DDz%`Z4!m|GXeBzClek@yO<pMK=##Q#-lXTzF|14LXuRX&_1^
z0&W~;|J{D-zv|xS8&0sYCO0~k=u?W(m!-2TrlHnS+*p1hAEi#~$v5x;Tt!D8NGGY|
z0u>rd>Ot7P%$YUfU8&rJR>d|U@LMY7suc7}yb*gsAH^z6WXv5K$Oj4cI=4^RL4!6p
z@yrG#Mco6vFF;dvvvew3#cb!;OE!yB_hv1Zoc{B3%<fzpTHHY9Ol!6{5`)!Z<|5}0
zm@!*L+(x)!MQuQ6+7^Z{v(nZIsv#1^>PNCj6_h1`#>vqB7q#!r+xm+QYeY*j@OB&m
zB0($b5bo;j0nX1W8c#O;?<8R4OAh8AWR6Gv=GZAL-&}FG6#k2sKqOYs^@k_H`I1(>
zLv7#f8XvJ(HigZ+VwPC}k2FJHj{fT<bW-7*&s#ADJwsf+@@d40&1#hc!)dK1Cmo<E
zzo3!8ePqsMSy9XBpA?BL7OBTuKICIn3U6bUX>`nl^Rq}9jB}Z}#6phEl%h}q7ud~N
zb>k_Fw-SIGLHTO={(Rv-wdG8EAkev!LXeS`#FWn+x3_}6O?%Fw%4&9Eprs$4at5-#
z3e09=Zw&fC<xfncX&T)QRL6D2EfC6S>pu$@6RM(CVoagh>8O1X?WRJ}e(m=fUkRa+
z!_B~pKycto=$*JNVS^(<z$Efit=l*$!C4PFxLj5R7|~uZV*MYyykAvE<Tz5<OE1dT
zSR7P<EigU>lkQXkCSu4>P7u22*^ya>9?Y2*UYGWLW0&@Fv>H?sx-%z6#8c(?g>0_+
zM}HetehFW>+mmanBkqR6JJ<#W<rsbfodR+5r4Z$MMff3Ny!{+&+?}}F-t`id&TpOm
zfATv0CBHYWJ=bR>E0L6#5v?6%-upW8!#}mGq+SB)P)uB6+V>&#<z#gLx1Gi2D}gHO
zjJTk#{`&Z`a0>M6Obn$N)KG@fKQQP&g?>6bAfWzZlHxBfdiPh>D!(J<f6=(*SJtY4
zK+S)VwW|3mYjr9LDDtP*7?!n~3d>quo-L>OKP=|IL_a$Df5kn*QxN{Mgnx<p)8VhI
z)!}gF|KMT&!#|q(m9^@;LHu8&4tv1H)#K`7BmKLe-#>80-zH<Z0=Z>TMDLSd4?vEI
zS~OcGUvt3!dIT_~8%-^3WafBzphs|hiB7LXojy^d&4Ov(lOetGKvQNoz%tu%`&CP%
ze(Y_IO&{gup%E|e_i_w|BEGoKdpQE_-G)txPL+QUo!7VbeDj<yJigvtkI2n701ZAG
zzLGR`Qn~4qOqPz9^D>-x!3R9Z%$AFi8_SW$$y`bmaNQid4$X})k<QYPY;`?M+vEGF
z%AT#r$X8)n(<9`0;kz(tofhcq&l4mIDeZmeprcj^Jd0*^b&-yJ9i_tqOG$}tMh=(q
zY2s@x;c2?S{^4SMn;jA()#g!8tyNK$h`8f%WS~eemd9}_ay#BXZ<&w*ydSn6Uf-Rz
z@9i4UpvgLsNn{T=jpnPlQHWs($X0}KcRHJks%{0`y2u<Vg%>4?9bxc#DzNW*%49#b
z0oRA3sTG)JD@>|bVHu+H0A%`TnwUE<P|EQ>j4>GiESF1dR_%{vvdJxThI&~pX4h2N
zs!!+9ucqzKc}rB7oW(TV0N!<m6Qe~E&vNw82L%ttIR7tO`p=w0a()#5=Ej#KRApFy
z@pz2k3#aVkl56ezLPr3UOddd#fBY7}Efxu6HdH;?7+U2;%BPexQAitrwh<2=nCe^T
zD%?DF2}@NIBlhNB;i*)5^g1*b*VU;ptGr{g3-q`%<LQIYNe1t>ycGF<z2@C2J5@xm
z+1@n}Ez48se)-d+)AzaYW88OH$YKK~ucyAy{%O-jU*cr(0=UAW3n?)>`SdN?Rvaw1
z%voH}uW903NjhqQ=4H`*mAKb*HSS=tEGDS{eb}ygoO+n`yq^EG*Zctj`_-j%w1D}`
zdf;uzf@;RM%hOcVtNss{h9n|C5*tm5<r26J7-E?zSOJs6y8JFDUp&}8W<O6aYQQcM
z0yhRZ@0{b`dp_<iJFfg-YliOUWL|7rYTgz-W!zj%ipv4s(xyR%z)pj^CzIAE575@$
z5rgL9%ny#W4nhwX8r!#Xz+8`&ALUzf`vR96Vk<O#@v~j@%?8@w+UfDFxlV#mlM<mG
zu%l@Vj9fsFQSJ_zQXX#orqf#P;J7xSMYRW5EDx9{R%%192X(#kG|QDe?>D7x{HzsK
zZV8O<8w_B~(e!C@JUP?yw5v#Thj8W(j1TJ=^eCjoN3@dArk<sCof4#Dv>&Fgn@i<!
zhf%8)#2$kSQiy)H6o~*}8S8YU%ft#WCyd+;C50a-I+iET7&mY$Td&-;QC<@!<^;Gy
z_OAE54L^RZRcQ%<(d#)RNJe~}ER~7MQHTb>P6%_B>$!u#w0HBzWuq#at8;N`y7{I6
zof~gqv8|u9-Z3{=(&><NCnEF4&kR}JBkb^z^G|zF0o2`cDa`53)8oO+AC5+OTAzv8
z7#fq3^0gLDk25Zk#$*PZ5FY<*W(}0eUkk{7|FG~v|8@YD(`=uW+dnW;JzeJdbg<W(
zF*)&6gYfWmkLuv+*X0McHN_#T&4q&}0JFPLyfLuTnT^pfq;!@txn@5KlD50z;&~9w
z70nKI>`SN1)2VlM{Mjq5Rd1I(ae~t0dUi#By`D~RQt?^WYiDSEx2ed1@&>JKH?)N{
zaVIDuEw<GAVL+(%=F>-b(c)!+k$L#pDZN|MA7u_FUAL?<X6G&;@&eC4cB7l43h=hE
zb*5&~DZG_gn5{l68#HK8Xc=?<PIUkSr|ch&UTM{Wg8-`ea^D8p??>XOLW^`8X_i6-
zj!JYItSYOl^&{34zPZNY|Mu-|r-G>sAl9S+PaXLc#UBrosmOYX9G1JRDFb=Uga#>g
z#bLN8gh(NsSA2p7m_k{R3VyK9`*X_{dlwr(GoFoQD#`oM4P%M-^!C_0*LFx7W)UVY
z=n2$TB*CJn4#WTt-KD+R*%T@#?MkFc)9yRGcMA@MMRX`}PoKXo4?KM~R0du;51Fcw
zf<ror<#na_!8uzF{W{ATREBUm{>GAvAuirI*@e)7uIXZ)6QJRBuIpQdaEL#6UCxam
zZ?M#|0#?p*17EuyIO4hLW<J@`YjB!;b3TP+x;>T?&m>C9qE6z!p3G*S<8gFTd2-r|
zs$PB{Du40ZIIj;Uf^#a;sb}+|Sm1)o-+my8FN+%MSw3{PX%92&_`^d*^+_GOlbcZ7
zD6}jqo<jA5O{f5N>j#ujGjRUuD>FR~y60Eg^>(2`1Cw9M{Gd;lw9+zj%z02;Ypw2G
zz`I>^8;u6<(3+Z3(yR)(MqW0xDWvh!Jw4Of%cQ^uA_Z`C0_fxnUL&79`031>IcIxp
zubBmR)LoS73plnnAq<gu^|l1MVv1QL=Q_(RCfC}@F0%$nwF(J-xtwfFzb{&o*E=OP
z(8#!=@HC&>;p-fJKzNtLecwVvF<BTJkI76HPvVZ%U)OiKk>a*)s!`g+62Tb<f8B%@
zoy*qx+sQx*g8iNc>6PRsIH{F3@=rgEM$VU>uXatH9c`c#Q~0C!Gr3neBM3}PwQmw-
zrv+Xm<z*}~B{zSl-WZNjYbcEL#kgYizESy%H*DTy7|HmQG8m8DCcuqs;@gWc*(VfJ
zkvKhxI#2n`;fGUd1IxW@Exa;dM4x1N)5aeIPaFqTi{JORI4X5C>@T?Y!g%1T(j+*1
zMk(=n;%)mgo<DE{rXT#bqJ1R0j@ZU0ZjB)1!gAFzIbXi7Cr%@i@HY#m7`FqV@t;}m
zk<h1yZpY2m8&!7SDZlY%Q7JCkl5X#@%$it7f!DS$LI$K&nD&{}!H8Sh>Uf{s0JBpp
zC(imV$fHhhqN~|~qKripXMkeEeTKBR<&K!ErONd$*qtU!ELCfh2yhHBl*~eWpQoZA
zCbVCl_D>5x<m)^1eEBflBr2b;Rc-T4&qm|Pm|~Y8z+8>-X5bk{2ucQ8pgDNLfA(ao
za-YVaWUu1GwHv`#_#YZ%P1G8ka!Z%u-7*8T)pA$D8|62fm#7R?7m*Y6G0E20?*AWq
zZ}}Bhw0w&Ohu{z(xI+l;ZXpB+4go^YK=9!1(nx?n<L>V6*0==srg3lF-CpOM-@W&}
zF^;@H;C|XY*6t5`SJ$eVHEXVFoH6^#F_S^c*zHlGslD1n`3k+(?2R#NPbHk3F>0-t
z=kBpmffh~CSJb^UUK_xk0r|6>yZkTJ0VE~WrEOELewTY!dG49f7kh>4_%p5LfUvAP
zlRii}m-E<^O8d;A<i8$LaVi0WvlkMpK5Q9?6d3SeH&$H^AWx_vTjWCc{9E?eUlT)F
z8^1s{V46Curxb$i5}UWSkdApbfIwgRz^rg@O<D_D1c!|b&kq7VkQKE5>KlO=ObEdK
z5ItXzn0RXJpI9LasVgqG8L@5QDc%b9K<;$x{1Xj8k2USIDs)NG7q%haL%V-ll-*7;
zTTJ85n~09_ePPP-R<Q89!bsnATYbpQNDAg+er}k7a-D4n>2l)MF79T87H+qi^vqhb
z<Hii}-b#MC&9A~(dXhOyKMxV_=VSE#;hx&et5ny|Sv5aZN@I5E9kIsq7SOeZWo*TE
zuRK1Y(+XGqx+eYBj_#khU9kfmf+n)ny|-6esduzW=JAe3GYLWCDbtXK)E5!$HKz#@
zy?aqeWfbL^SChNChSa}QVcdD={Fw2KyctRDn#RoFtO|Lb5JTxh&Pe`E^k>EsFKOd&
zPyPEvYB(Lf68dLpbdq4<YqFTb1+G1AwS_uXt&$?ITMvHP!?kabhsk;R5n($dBDuc@
zQaTE8TxpCHXA#gg7{#{biQ-uouRmL0nkBKgb4|lUNqGSxA8-zji&UI;4yBoLUX&yU
zU(1h#4T8(0{uLOHI)$Nnx!ap0W;%bAj8`Hbx$g7%1zl<25d>Y^+~Wi1uD=uDd@6N)
z)the8GO64A^9-k%2WJK2`&5;GDvdN3eq?#r&Z~g$QXcz<CZ@5jJqe;}k{9s#3eh6H
zcBnnhoD+IqU=7KzU^@9thQptb2Azw!r8rB7?MKWN1ROo8{jb>t6MXXh81GBcoDYy4
zPci%nzj=xi<Wf~oGvZ)me6miRjSuA}OirV<ArG++z|n#U`#A-pRWRXaO0INF8iOmP
z*yszF+nnY5m6F-n#hzq~Hs+G#9P^Wd7rGsB3BpI(@U#(-++DvG-aegV3~%;m?;Hup
zGl=`Yv)ezs!*S1On+2A0iB#fnq|+3z8}}ffWIt0CbW#P+Oe`r6!fh)qHQR3%;9^(m
zx3j_R(<7sQIpKz#PQ?~!?VFVvvj}><#aDRh_a}QJa(e9vfqPy=WUj_SZ`gQrfuYVA
zbXj5N+!SdXXn1Lg8idN}`sXm8%k-R#dv)&p$hV8jxnPrjQ<K|=jQ^vg`xq^8)_sR`
zr*m!jwJ?a}x_FoSXxSt1)W1q$+}ScayW}&;I`o0s_)zF}_?f0<z0G>w2XnhlD#en5
z+%`d-Kass;7rD)10@>x(%`aUXaTiC8VN}<syCf*y3dNaKD)oDAp&X1v-rkF3Ei<|Z
zAGO_Lv4^a07XFqsjt`m@^PC%D*p1X60?Ezjz`3i@7`I-NPvKZ5D?(XI$v?C$t2R{K
z!C*TiLU=1(UwKG!G}__0TY7WBc(&c=Dfsbz{!4Lj>hmd8z*oO0y_Yc^o0289O8USV
zi1*qrubewz6u<<U8LJ2_t3u2=-7$#(t~yyv%aU9L2vOL5dQCKFZ15qe!&8XQ;W5yx
zsnDIL?QQpM*Tb;IAag9cD<1*Mxp27g<=f_LLv=G&G)^UZOipCSupsL9?r(l*osCa3
zqvfoy5_q*Od>eg2ELC0DZUz{SSlsQiep(u;_<qwlZ!yoKOYQL9MC;6Swaa)+9@eyC
zmCN~!TXC|sj&CzRR!a1(fu+JT?(2oMUc1wD2bLt~``{(L+cm-T+zh}f76mK91IR|i
zGiQo@@n6>4bh_}_W(!J9Ry%+G=2|KU+RXffQjd%>@Av6*t0|X4$=l}A)akve%A0ju
z#C5~*XWFs%3<G04qqX**FLtTeL-+w4DjMzf{Z=uqsGm^R`Mi(0EWR!hXuh_dD>e7$
zP#zNz0&}dC2)a>qyVY{y?+yla%AfxZQ%1cDx`t9}e!BoKO<m-d@+Ds&ghURTVhU@u
zeiL+rDLEnHd3VliMTO%+n6bz`JAyHjiC65FW3>0q9~`S6&&DyPDXghR$fg2s=)(v(
z^tLpC=)<+Su;P_#ZF*(uC4Kiu*@obQP@@&ik<N^3sMV9l@a{>wp+RN7U_wc02&zL~
zC)aI$yxKl5d>1ndx~=|LL(>fbkH|cD$Pq~}&=7~@Q$%Jl#rvS;w#u|45g_HHo!RL*
zxXv4hOJHx1SiZutSvblc5M=h0Boy*1U`b#lko-4VWeL;!dy)B85Uwr_7x0sFNr}vy
z%jnhCdAC3R*lSGpw~&h(-3xWmh3w=nm1=X(m&cQG3x|YmS6^7v6?WM5Y&}P*6c#-V
zFgVBE(MJ6pKlZ7*wRCap=wxE>=nK=s*gt@b@}MSx?)TGI-wI$yIy8FIcBk6Z-H@Ym
zUpE*ocwCT1S8nYW16=P;Cts;QrM-?`wV<GC1Hd{?aSqSYG~0r2qdB!h{#C1qY8^Lg
zSE;+TP!|^_Atu8qD(>zKv_Q|(h=ovpQm&w2Am`Z~xd9BAH`TvkSW+9JQtd9$&33XU
zete*_xVO9F;CE>?hn7n2BVG0n0Gy0pDrROBt(jSf`R;J<%j?Iw_UZwO=BOVsLA#Ko
zhW_3Y>MMujMyGNnkLvOH>-_T+->vv#AaPgrBEI#H+oWPHZT@}E{#f!9)DOK~-B!TS
z{fzOt*lb^gXb|IgZ0UQR_}S3|7=mmV2pg279ZhtiSu1OMK6|0lvmE8l%it5`o%9aA
ztXSfv=MhI2<JjUnLqGq?g>)bPQIvHmPw9Ke@I_msm$d6KUBkuAk3VaS%3_caONxD4
zw~O<iw==n;CcR+ad}R<Ny>rPI1{rmxD=>62Kf-KQWjvaDrx;7oBrQ1OL9soWYLNPH
zev#d|+C2~=K*BE3#+1DxXbXD$k<|VTUM19SKO285&0;n$!R!8r<4Q@MHc{izGT+_d
zeH<I1(eK(__CL>316$i>!cBToP>}9IZ4uFuQt^|DyG2Dd4v6eB1eZy@P{AfcCh$X#
z=<(f8PhwG@hDW{~gU#mI77M*0BDyiL%I{Bq>r1IhUHrD5qe~KS&zgUu#}gI-0NFyR
zglDQrU!zel&>23uvN;%$tO9nPm*8`<iVJGj^>d;W9iZawI^A=s+>zPiC=e-n{$B!b
zx@emj_ZM}WZfY2b?{A07vRY^G{%$}YwaBgje}8+GXA7)IfS~_{lZxj0Vled6477x_
zY|`R%tvNq~8An6}Qy<y(>OpSBdz-12^T>Vqg3Mid0-G<rhuiIsZkwC7P@^rL{wznO
zF}JAWClE(p;e?RHTfQwa*hGObE3xbeh<gHHntu6bW4E!pKCtv+a11>|wJ=UblVFI7
z=hhNd^?g>u)G-a(yQrr$fOOHKP|tUxx0<@&V!UMA28Q_GfQh|VaD*_wPv!Kib?qE2
zORY8qt5~l%Sg)^ar11Cf1`;bI@SNY^yj-AD%Kz#+tGD8xDP@dr%>Mc>1%eXrHi$GJ
z()GDC#=m*ejuNMedqKviqN5J2(DSF7=c4YX!5SEBOODbz75Me*4#~ajW1datUTyz0
z6^(OGiLv`Zpax@|6}U54M*0h8>S4BZolN~nQ62EGElP$V=SHZ^z3YLFZS+qm{xVFE
zML_PAc5!}vtUce;LO6FpILBLhGT}o_C)h_vrVd7nARPXeM5zecgyTRg>NxBsjl!DG
z*^+kU#*i{C!$&v0qT85Ys}In8Fvr%a<OdhJFRnJ%pXR|(kVHos?)iCW1?K|xzv5B;
z$>&Op;KD{bI{sYXMx%3szX@*wklJ7NS_tM-u;5l7F4V}b=q}Kx#s3>Z?w`yY)f^fJ
zi%uEst{=>V_L8rRFp*N5sKz<}<(vG|D|1pME`KmZ9&1;N|7%9||2uD>5=J7s^>u&v
z@8A8Ei5Np;hWuaqbFe30d!~wliq}6Fm!!csZwW8jSN2UX`OhsM>)5{xt^bRL#N&Yr
zHj$rbObq|89U)nB*n`v63IDnJ-))C~_kqqFRuSV}9&K;@%YFO*Uc@7T(eG$Skq)B&
z2HO1}9FCR(6R;zCdo~OFH`DnCeu51o{m`1L`yagJe|#q3F9RpJs?QeruTs$eveVy3
zrpku7SM0>`yZL`v9Q?nT`lzhGg~I<e>;E<D|Mk}YUqQe>56xQgpS$&ALZ|P`6VU=g
znKJwhum8tTyuR?ei{)^lM*rAf^zdFMMrb@C)Nt7FUN<6sr*Vizp|4ikzrv4xm+h4F
zJ4r`C#+IWZMC;vdm4Tg8wdD!<D{vA=EK@WYU%lm)8Vf`;3V!u0gOcHS;Oq4j#L4|_
zP+xRa@Id5;VnUQeH+AO?+xn7x#nv-Tr|Zdci$R(-Y|WMZpKGwY$Is1LX%^iyIP)hI
zed&Q$BKEwn$hD5s`Kjir+2^7GQNM#ht70|opz(NcS@@>gVsx0!&KF-chNn93bH<mc
zg3r`Gdus9}Z-#yk0$w-+loe90R@M_w^c7-ESI;6|t+w8}$OvSj1i{`4Wn0NH{qI`)
zKiB*vyxdQ)^h6milx!27cd`GhlooC;jWT1y`&694F+>SUe`88vNc}SQMTNwanI38C
zM`XPyA-X5c@{jK#G~vj9rNA`O|1$#GHxJTlVq)cZ2Z_*e*k7V=cDwV?RSGeVl}N)M
zjADz2Y1s7DU?}eeJ1QyZ&1!p6)*rDGEtvg}=Y<E{S5FXckC#teqb@)OXs64q1}9{@
z-s1Sbj&6?E;<>plJB^ZYtG0dm`<r7W;?Q`;RW&`{lrSSrn?_8E67GJ?m0s%lv=_?l
zkLR}Cvee|P6X*~f%L$aDx<-Xkt`sU{C_GLT#OP{2jRadOVEKT42`2=5!v>ZLdaj3&
z342clNxPd2Cn<5=<wrXetIMAMa5DWpv>W6-AnLEvcrv(c#lP*frXlG4TqBw-vcM&q
z@Y{mkextX5rKQd7_ITl!`{^tEHP4$@t6prPO0ee-SAQgXgkymH<ZvB#x*ln`zlLvY
zx~s3IYzMwXXG!3&p2x+KEQEiS1L?+yYIrQu%tfu;Q(nAa;&OgqLb4@AAzvS;!^WaM
zE~#|BA_-7fTe{qYzVdD*X}RZ|2mH~!0xWLsfa{MC;!2Xm>Qzv<jskq_sa0vTE{S#p
zDn3;Nk6meBI9(g>BS)B3N}3skk!>aiS(?P@5YCLK?!32G)B=(pmAmJbm%2I{I&a@Q
zD^9TV2@>^;-uh&jB|Qu#==|b-d<y}jI_g^Gm`4C-l{d0H2&I<fw1j6kOS}AMm&B?H
z4#);b#(!55)iGXBPD}n`pV#1qFR&U#KvC-X0jStJ;v-1k{CdErcqrE_B;a{aa)>6v
zWHo-Acn2q}8w43Zc`ncQ&iFjpF|a|>`6T>jV=NngcWb1NIfk>{CbB?|iOI=083s&o
zToG+bI$@ImF#jQi9F5X^z4eF8IJTLxmwaCQmIlWKehm3@r{H|BOM}85oxzwwOhACr
zZ&Aua0U!LP;t%7|vAfpMj50e;F|^?Zbx%O-4$rfPXGa%%DZdlFCA-}sx=vRhjPU8j
zgzNCM?@7-U10xz;v_BlJsS(%NX27lJN~iD2&m@*HO(WShpjf9YwqCbz9z%HMpFG=5
z`Ibkefuk-*xQf-*Kyh)5Ida`2fOJHbPe4kl*eHXy3W}t+F#px)Z4_c%jTLZ}{*^g8
zd$7mNPu0$qEmvMA#VHo}TIV#F*nGCJG^zRf`aApNX47<N+C=Ou)|KuB#=UfV7FTKL
zVr4FOql@Gw(p80`?uGLM=X6a!f);mdR!i4~bHr}T&OY{y>f)a7&uH0!R-)ed1w6gy
z-6YxqlYV=0^ZBkPL$X$7tDK51dpHd}-b?WQz|iQI`u*g3ffNgbo&gH%3l7#cpJXec
zjO3P#rU*cIk{@J&G;ymEz-;n7bhOi^6&*ZPZ+K+BXv~@JargPWIwkQOmEcI^4OJtr
zjI{rfHhq2niE;{^Tp*+x4~7{>a63JJ-Eh{v7T(oZ6C`!(`z6B3xiRU7zE2%T&Cn7#
zC&mg)$2Vh7_Censf~lrW=X`5*^<Pg4y%nbQe+Yb)@iMYspTJ^)M*xWS+)r?4RLjR0
z>%pJRhwZNSk`2n{h_@^Bf8pa2``^&P?izNX09!l$=NdMm(Lp<4V2t0>l!UG_(b6(7
zeP&3l$z{m7a?$%@ss4`K;brN4^+%-nN_xX4Ylv}P*1jgQmjCD1Fbi9Qtg2@zNxuKo
zLT}ZZ@Gng-4NI;h{0cG$7$<6jBnve~mF+t*@|`EErvql-ei1;2@KEqju8hm)7Z3+1
za)mT==E-Of?j2`cQCSLluS_CBuvl2T>joYHJ3B=cAr;Z(Erw9Bj8aN&Y95~On$*zv
zQOG&Cx_{u1r3-oV&|a6(MZAkfRfT~2#84G!o}LBxzVb$fv3Q%x#Ib(297QEvWS|<x
zBw%A6C7AYWIvzadE2VrWF=b-ei!F?~+Qk}5xj><_3cFO}(o=FAFMs$!BD0w|E}VJ_
z?n-em8Gaiv{ap)|WhUiboiMJbw^d^2tb@ExC84s+Z%6~v)ArLPVDQ}zxAVd820r)(
z@g)4}xXJS4^P=UrEBpB&c%zF7mbki_#&t~|X<^Cic^Q8U3R`nM`R5u9PV5P}!(o!j
z&z2vk!sM?tIaB9N7e!>vtN3d4NYB7C11mxebE6ckKCKP?fMMPFD%D6U95KU+1CK}F
z>k5R4k_~g<7dU3cFeF?=Qq4oEBCuyA=j1A(vGVW9H^x4>oc%?dpVTjbu*)@@OJ5i!
z5`lCT+-p?XlNT>;VbAL{&sA^WK<h7{wwvqtLh%D^{=$;5qYF&-&?bQWGrB-sDo*Q8
zdZJ7^J!{+h&td5Jd&0ZX#5U{{1=W<Q&$~3hJiI2opT!??<&0!xp*k6+A{Oc7rRj%c
zZxL4)GU${K)2t>Yly9>L4w=NvWejrLYUp;CqW*-EOc&M^kNr-(z4ymE{6%f8;z>N}
zRyO9viDcq7SvY|bi_c~=K3q62W3m7Fls-v9`BZ$?q$!&a6>O;Ac+HAqpL71$qBTDX
z&C5X8Cfh{Z>@%X90(Y`seLkl83djeGR8Mzm^~?&wYe>A>e6vZg>Eh0Od)hnV&(65_
zo1CRDm|Z}h3{Hj$_^KbNALVsFdOv2rvUfPJ{hnsmVHh7?>^PyY^vGK;0q3;3kwp*l
z#>D+Y=fKLjQ+<2o@N4*45?5c+r!>T#>NksB%MCGGa0%<(a0#5T9@%4RaD>;3YUToF
zDe*z;Z$-}8AF=ezJ@DM?B-O5xL=!foCIJl5L~Pn57%n3j6A}UR&|Mmr3HWA-;lm<|
z+2SqmIJEJe?kI;7%C)RA+#>B<1>o_6Y$nA|s`Q|+&6$dE`9I(serzpJeRzdl!d;7v
zHJdzDw;F)P{X>M9y$YjZt4f`ekDc+f7XCok4q^5lg}e%z)Fa(K4vfarD)s?j{hZj!
zCi%(RXg>$ZeCS3o5WrqVYXABqIZFx*ulN}0RczZObD@lh;%O<>B$+4<uDvPPU#LAO
zsFN?mM8f!;NFPz%d6M$EJx17=Q6XN`#ZqnmDAJF%>L<0IXf=mTVqp$tm5`O${^i1y
z^I`R7AFdtZA6lwS04V5t8_UokIi=_J*_EbD78%UUu#SXvq{J2OX|<O3@8tkm6)ZT|
zZIv@VnXDF6p39~lmcWn!Z2ZFNfygn_cjBeg=})iVHfOc5WZ}N1lF8yxrJqrIkukIL
z8|Qp%EO-;hzb#XwHzp0FkiT6v{g%fYi9m^^fK5p!MCVMstLj?y{c(i+5~`5$ZrqE{
z7{yvsVGMFe=3%E>hagy&`nsA3!j*Dwp%BdvHO9=5x;uNXX@}!f>boxwhu-z=?zcgV
zP?@mnQ&Q8rx0=3EndPjLx!!|^Maza#6=;vrT=cd?*ZIH#bxSCk=msFIqLXc&_}bB-
zgj6<5Zws6?RM@r+p-MO>TlV&}=yoF(^)`}440W-vElTvDcP&uLlxA+!uFm$d6NOn*
z#RQQ<pVKC>F@WlVKYKMPexk;`b{iA^q>@&}43R@jsG_3QmBWU^XJ5zbaF$3gQD+6`
z)V{Gz&;I13CcqEaZnFKkiE@|}UhF!dk@@&Zj}XTkYJW4+dy}u@c~O>r&0Im|%MUq`
zDed|((AOf{!>)Wvb!jUuRgT%l$K89GH5!?3YAVd0P2Wc54)p4`<+U>WmNbi(HfWyg
zW5qm2?-H$RD0*E=G5`^`4z26dq5&eaNejDReZx(RD;VIt<QFh`>}%m`mG-&F)qVNh
zScK2^#=;_Xvdr{&(AHX$$hmNLulh`W`PJJm*NH{e!|~>cW29Y39+n%PlfD+_oqug&
zI-V{Ao3dmp!LJ)nyN3D&AMUr-@5Sx>H2~z<G;kXVIqyIFyN|QD;Q5p|Y<^-45oP`{
zica}+3l6Wk^`}+Ag`;#OShvriRpCYSI@G}Yrgez=<zwf7zO-8!6!i;|e=wP=6o`UV
z?6~Ta@)hrx7i!^mK1BFczE(-?JbDYM_Yz6B^ozzaTvYclo4np#x_Q*!b1h*5e-z^K
zUN>%;%hvx8qpur8QC0(82#rS0<&cadk7c36KSnB<^BKz=(z^fP5ghU2d`QkrCa<Nm
z_&IoM@8|NEjd?#wx{k@St`~P(Y8o%|u}O04OJWJ9_g#bGTNav_Raz#VoNiFs*dy=Y
z^hZB~*9}yZ_bPeY+tCu!O4;PTQ)ac4=BIzKF3v5rc&LcY94yEq^QTW^UmW<7D7KSY
zoLi6Wk~wUq+(LQyCgh(ej6>%CnrW>ysMA5f=B!K5>e#DUiMi3{Zn;JOxSaNsmC6tn
zL_c->o|{IY^t?hG>r0SF^jcy~Ok5Uj$Dmp>wk2*tJ??f0g*n#td5vcw$OMtZVaZ!y
zlX*|^M5C1o(B*H9Su}higV>O438LRrc)R#3$O7ys9dI18hC_hII6%Q1wX+1^3z&DY
zL*urT2ow#R`QG!DbtUphJ&zR}?sMv(e@YPCi#7jQifZNB6<2PKd^B7ZA`Xsj*9~Yx
zI;+Rzw)jAqlQ<E7ndp45M8#`V1s);N97BBjy|l{!%GWlMaU?^lB0=zyEz9cA#b##|
z9#DG73UK5oA@2!k439Q?;`ZDRgJ^Nq2QHhai6#l=%zxwTji2<9dOct%p(_zfZkSvT
z-u4oo<v-KCf5plBTE~H*UZ2t$|0Np-<()sLt2b4uuK1Pu69KUXO$csgmKjn7z(R9W
zrhk~XB3qC05QK0zF-pN)N!`L>qmaqNvnJnedd!pMt+kCR03Ru#fzuhn@Ju)|pDK%P
z5L5nMpmnN0$S(r_Hz}!9_@Y$oMRjA-py11Sm>;lp`|6J;2xJX&TJJ@z&Lj3p)LXEQ
zer4Ou!{Wy*>Vf4v!RdTvt2%vYOLX(xguGXcG&>Oi6Kxb(bH<w}`0(2`GU2^L$yky+
z$SG$#&M2ax9dXKi8rU<$icaDCRO25fcs>CeSOnPHa3UYGlC88`_Xy`EP|#i+0h2#J
zg}=jzNLDryhpf3g8f#y6-6{fSEWh1$#!X#*CF%Q|$Jq!)Z_(g=lU=WC5J$K@nHb0(
ztMyQSQXP962le+k^E=2<I!HaNMqo!52~f<&EG%F@m+>q^v{`HWsI-b;PSgxL6>^?3
zR>vwp@qTbP8(eimkYFm+)l~geZq2glPpmK|az3*IBFtqwVaem)U9#+H{Umt9X7}u=
z>_zn4&v~qa$c)yxtmqMU6t$|^{z#Rd#Z5G2+wh3slwl)~f@Zg!bLw4|=Zv8rUKAMj
z;}Z6{G90YsKjYsSf}IEs`s%H?BmP{CI}tf|2c?)x>!)$MZt)A229d1%m@{>bs6+0g
zIsz=zwtQ-(`qJ!mFqEEX;2sevvhUV%p91>QTw1a6A0GC9Uc^uirz#nPj}#vEuV%qT
zpggYbpT7bNrb%l=UA}y(6;5t@hvUsh+HKxqlM0#QYZy^5GMHi_W<62Q!S{NPEQ1dU
zf2NT%cIbZJFhZ1D?5$y5M{)yZ0&_nwXdSXcXd}EO!`@|}kldqDDkNUB_Rwt-C8T*N
zDa{m-wOBvlyCZRfQMoIAi|0#z)*D(xYfEPDr+a_VR`#knRc!?koij$CGQXHPIB5Tq
z@+l?#tVLVNd!W@8rps5A?K=X8v$VxrCC-?6V;<a!so}<yCCLvcq2zRKZ7}clgT?3n
zbYWRUHKfExbEr+_^Q0aNtQOTs3Kn%y>7;$>{*AuCA1s%ZA_BQ2<F<@@=iv3uV}kCy
zJHOVaGZ~D7^k~!pe&(S;;Vdw5`2t)RNFMpT4p1n(|52;)QK}kyieF_$JP&S$;wMs?
zij1H&H)V3?bwGL@dk(IcKjGH8&IIksu>EKB+UP8q7qdryqOZsVa^ijPjiqf@NJ3>N
zrwCsTD4jZqD!QHfqwf;0maE>7{Ja1yIiqpy<Es;~N`ynlEG^Uw4EZ<StZ+-BXhk#l
z$aKu`@2Kwf-TW#PqT&lA^^O&XVz|Hqhl)hKL4WFlZT)4;hd9SdRXggpu<(Sn^t|<W
z@3(}=|Fc8?^^p?4SEh7p*phas=~=vugDfE&(~^-va&C^Eb$$$o?khDdvD&!B?dIZ1
zNSN09QeBPa*cb~K=%-<0(D11o8&$2OY+SeKqF?7DX520#Vl2s^In&)TRdZ=!1_amb
zulE^y{%!jzi+?EHl99bf$d5`Ws&nGr*$Sb5jjLvqBTpFC6NjlA<HK1Gh%$@PKVsjf
z7}>O`$@8zV$1v@vYle$WGx0vgH)73Ohy(O^kr1=!u8C3Bh`bacF;m!?Y?~Xh-tD88
z%zo;!jaPOG|KhBlq9J2#QofBRY?fhfX_D=slIgaw_ii>v8r^cSg4KGWm5A5+8z^nA
z3?{N2j7l`0*F*W#zKuobz;{wyn31np{%sOV_@_?y`9^r<X%HjCr`7tic|C92?G*Ej
z)l<ey<io~ag!%7+#6R|(e}07DsLH#!Qv_=~*?Dts0U2R@L5BBmE`pQE)Tmvh6l5j?
zQw_fm&U2Jy{m0#ENWy|B?}JviKDIVUFBhkgqxfv1d9Xm)ThQw!$R}At$uH5+0w?(Q
ztON)%6*8>eY{m)=Y8%0EOGag>eCsFOrU6aSux}E$zvg41rtWyNwQdzx+u;ZpU4j#g
z2e>*=AoeL=Xb}w6D>>Kr>HA)e9)`D#&J0zldq<7kj6c5f)Pt{NStYv1IYRV|-^wEG
z`)T#k-F!Ff+#h?#?2Z4qKeGWz4WPC9*}=?W6fAhQ#ckexHJ2X`siUSd?T;W;CKsy9
zU441RgBV>X5|NIe;WOen`8-Z?xFgKv8LqUschBd^;d@vN;?GnYhYa4&YT-k{n@Tx0
z%X0;cDB?Ja2Og*42G8tIkKGsMYkoe?1omS8F%thZG6^D_oMo?JBT^4%IQ+n%Z6HVU
zObZOPJNUa##H{(u;Q#2Pw(c+8RY6+j$dPod08rRLs%L3N+hQ(pI!5@TLq0@r5~)_W
z7}BME_Ef;4vhR9X>p*;wZY=u6?ed%Gb=LCX8>?t8;cR7dK--=QsD5;-3&F)+<vuT~
z2!o%tx<@Duq~P1fG+S(0BPQJ{ss9s^Qp&cMe~>AH`7!)@#72`D)pERwyH#5cDwTsR
z@>+Qf?e%wjvA1k$+=@T_LSAxF4U&Zz6QQ`&1aD5W`VV!;A4m`T9B<!*)h%3A_rIUL
zO6{&e95b97n_>aAUd}t6h&E0d16QPMJ2(UHZ&ssyZhLAiV8a77TyqzNtR{1TV$ro1
z6ForHLSCUA$Ybw+_0p5q@Gau#A=5n_45zJQo`-gMB8v~7ZdfGWkW0EgQ(l8Pmr+X(
zDA<ZdDcq!yt-n_$Ik6K(Y1sHf-}tN(1VA{+r%<3+o~uP1Z$5hFkTN6}kX(Ls`>5P7
zjuE%`n`j{%$>XOu>0oMlcLv8qep8mRk%HA=IF`GH-UnnC1pvhp<<VDP=A&w3w|t>B
z_PPLu;c7{7%2HvdR+AVUk|$-a53<1;&SSTDZLXLk<vn9q^UeXl7lLDX+KJ*6W-(#m
zla;VJL1=D7drs`D89w?&>981cJ%Idy`LLSSr;6ou1-VGnb4}JgD_uMh$py#gefi9O
z8{5^ElH#)4UHrTy4ewXs1mlNU_VL06$DIiPwkU%~p<=3%c<UMs<okeRom{5%UX&Ct
z|7MkvsZQSK!L#K#*molG$t8EQ!}s$Twr-Qb^FH4FnX-=(I-y~1;Z)6yzUPD#ws;Ed
z(o1Jg-S~><79<$xrtAeSvGs*`0}=Kn2WkQ*N-H~*Ldbo{tgB7LyUWt=E_P%VnA8iV
z7IxE=b!=vpz1ogjKxZM8D~5k@^#A1Ye{(6qf)`2!I1m3uO0PHMrvIUd6#D~6h~*$J
ze2XJJpnz7)MV!7DHByJF&OTuy<S3HEy&0ku7pHYQ%BRDVa=LR{n=I515E3@+lf;g}
ziQ*?oFp4#D?n2p#Z0kgKFb80j$3VVhpLAuM6^YhcTdNHpM%%?rGbKpkr0!Ji$&Ifk
zo)H{CZoqP0pD!gqZc!IZhSW5jA12<ssI>+thNiVUzmZx8Uf*H}+3V8`_!QAvhA5Yv
zz(O}4c<@3tyiT%kD65~+Beo&b?UYkiGymKEU!+svgICCx$9GiA89{PYU8U!~oe2$R
z@Bed{(FHguY_QhKT{W<;pXhjWfL}hHPlXbJZkf`(&ard8$shiHdnTrLS$g4)ommi_
zK!HKR6Sd;*is*f}tu^(yU}i8e!?bFLXOTO|XTL!wv;)Ssz|0uExHZ0+L}T;<jtLzU
zUe4+Cn0E(;I_+bR=ZIc|HB2eiG0*qRGG!JV$DW8s(*(nhK_^)EJp`cq))Q|(8_;Hj
z><z+y`K4e%iv$jHv{W;--H)W&X-1ZK@HdKB6`x&Un}EzvJ!frt;soBxAD(O4kvL90
z&BR10t0R|5>^J{|AODhF6on4vGE5B%?(`|Ah&}xVWz0i~xeF}u4o}?6(t=GY_~nD)
zjysW$3}*Ez#N!Um&3w^TuP~;>lGrup&9&M_?rk15Q5-Z%^D~!<zXy-aYO%L(L!xBw
z?hlyY4{t!eJbHH_^6u;z*A6SNkpfA-C3~{;P^OMsk3KBgHbzXGor4k|GoteDcVG0B
znak_cezH^e&4E_2E(db~L6@BX;6%s6mf4ZWS?~1B?^r2V4t~#=pjp_1B^uQLv2<*?
z0NqT5vv+)e{Y75krmtPut?RL1A^!E5B=I;}ZegZ-My%3+I_Zjfkyd4f6O<ZdBHeX`
z*2&lYKj&LmMZS(J@lGUJ8rM_-s(`X=jKb&405Em^Y|0BW@zscVpr~;`T0=E?G6D6R
z1J4;1nAd%V3n0};<EvkI7latGfUj9i;Ea?4(F*$1^E=&~G87fex+!0*S08)cZ`=^_
zMpXn`=sU`N{hz8g4^YWGG<k=yw&;YRQZa_0=g_uy+!-93pGQo&4SGAk%*KqTrX58U
zhB>{AK_iF6wh*Ga{J+#<!B8<JR8CO1pBbmBE63KMq8Ed)`h7a?_FAZe5nUzY6#Q5K
zKPhs<CvNsq4fd<8v4+J<)<q(g;Rc=rQ^47{IHkN^s|%qxA<I`;BHdf7{njfbr_0HK
z>4|Jxb4@`v*nGr9yEu*0i|}e=i^HZfZDUNC2Rp9a>?*`1K-$uR*{Y~xT2g53c0%ed
zo7-xK&eZLh!PG$Rz(hf+4c?uWo-@JzLT+oC@0f$^Wtz`D(Bi}!D;kt)+YzxdmP&N@
z^lu{2|3O3kmQ*UcqAp;8Yf8z^<!kdUG*bbp33iWe!GQbQT4K5dA7(=dcB<S(HE;$4
zmpaV^mvG5|sp^`7)460p?FfaiovhmevfFxY9ke=+ytBu5f{|y&9RDxK?$Wvub(ulF
zlt|sjXz9zl)_ELo-x_j*r4M{>E<sI00R(>Y#^-F|IoI~Fssykk$d2N=8JC1|)8M!T
zkvIs&yX%^vNLpxS>dWR8u961MQRphcHTZkqe&$e6i`(eL&-sCh>{$q7mf9kPuuAt!
z4{Qi!Fmq(7c7lgPp_*Aj|6#g)T9o@md85UmHSf^h$guNKnaJZZ+7mj&NRjt+v#P^Z
zbhp4W5?Adw<GOODEVMr;wbypx)Aeu!&HB8zcQ%ILO2e{xy&+#I>o`tvkpIJSwS&C<
zW(B3WVZBF2rP1bK;+s{u+(~=p<j!~|dngk}qt(39^?dVDL#p{8I$#^yyXo%5W^nHu
z|G!5XEVxwBY+h3qs#lqdxk$CdO_Qb^Fn+R&axq35x0-buSM(3IAb9$HajvLJ4Kd*w
zLHZ<7{`Mg$w!G0?&>icZf1oK0(EIEI>ZM<@Lrub66oTc{dMPNSo6VKUG$}SQ?|X-{
zB$%u5+@ySS$KVMAoL4gFoWH6b-&a58nA1)ZKO{pZ#eTR<b-Yce8HjXZYBoK6%ZDfI
zakPbp${?ucujkb5qonkJNH@Xekk-t37uTpu+IucCm1B(r(h!>_U+N?PUgtz)6?~gj
zQ$9{}-znz3M&dS_)3e2g6~MtdIY$RW>d?|khCzMaaZ&!jn<~N7`=2$qM>D=MXU4E0
z(sg}=sSY)HtfNVsQVG1N19EYn^PLaooW>Rkr+ejMp_Kg3wRp_+Hp^kiScfu1x~EnU
zv&_dba#Sp`iOeWFkFDqd>2cu`jNNUp{<g_l1H*_zcZP`a>6G<5*Hv%v(Ii3j$a!ru
z*8O@P?3VRlQj58=g}~l%3vr>4XNRZNpkwy`TBY*v!1L9@@doS_;nobWpuVx{sU9`t
zAkIelWMRBRVliRzc_DzD$m(mIHhzAcf=smOF1?t&nFRWBwDD19!^dxH%+WFkMAHUk
zlFS=MBFVa#Pnb%?zSUz}@<)le$&}moW-Z|kcG<G>i@!~I9c6s1YFmngMU{aO2K&gJ
zSv4T-7en@K-ptd;@jJv1>rXgKi20WJ+Os_D{u`wg9ZGqP3#QC+b}atyh4!|%KeoBo
zng+JJxNM6$jfw8csBSm!W+)}<xzIC8KTA69j^+1Yi~f3cyUMiK8PSd|T!M??OMKi(
zbedu^o2qEV$U9zcjW>>M@V?&3U!d?wyIEvXJT7ZJ7INw%NSr_t2PLt!+;V;Elq0#V
z8)ifJc)efBR+#y+!C&J<W_n(>S{qVlEZ1OFaVMJYJvMH>c;s3z2dmahQ?H`)VmWTZ
z{|h4^0FU`wA}yXuozMwLj^<A*m1RMZ+~v2%?^e#oUpMN;DG1L^fuj=QwkC6$_L9sh
z-0&@rn&|FJhq*HRVUF%mr>p>hPP905{WIV?M@O`QShyb@30iVh`ZYXm0nIz?xu)zi
zT=Z&as|)|BzC#8hnaC3_*{gHd>qEIxu~MzsJpDF66iKogwSAr8G7R0aYR#Z7QEvds
z4wjDBXRc=7D3Q66Ol-%VX?$0?VM!#CBjLUdIFlRY*+X~x(*7qN3=phMtW4Gjzr?=o
z^**Ad>{$h`8nS0dF}$%rpC9<y<tjY)t;L!~qcqXO0i{-TOz0xy2U=Q+N5a&!w?|bP
zB-w06<biRP-(yC2&thQ{fDOsS60#Fdrk>80@>~}@>phY89-U3x{V}(*^|_?h_k|q#
zge&DJB4DvlV-jf#6h+=1i$3hijDNabmd6vvXHcNK_2d5)FPZim;+zP_lWay+Z{6C$
zD<AQ3Tnc+hF1Ao1n@=RQNIINQuqE?9kv0FgHxY$O<rXp6^hMVgNPuQTn-}_t%^rnl
zF(eQlpD-<P&DF4;<6VO??pf7YIQZ50YXwvodyD=K)8B1zRhsVm+=x7DXx3XNvy`_(
z0jJ%R7z1J-*|VADvHbXL#=4HWMg<T;;<-^Cx_Hj8eQJ)496GOazjLd7$S<54Hze|@
zCFmj$`y;5;6}eu^A%H}t{+GKAp<X0KX~hT~%|aRW*ehe~!(qZc;?J`yL+(Z5S%5Rn
zbQWAyzETuP6q8Vh=uSwJE1#EH?Dc)u3-{S@#)@#o7#?t!SSkG}9?_onjTysw3o25{
z-Jn}DGO%y6`UR`1)`rV9ic7G3Qn+nE6@b*#?O4nB`h!+Zz<V;5E0cu@6gso1Kt=1P
zZU^gYEmB)=Xp>t4xESaqHP{&vNiN*WuU3LzXJo{fU)ce%%mB;5of*p*GSP5&j_G>5
z<SIiWT*b16)C*aqhuzh&#jo(%AG!wa`sqa;9J=RuE{|?3y7QO>6;~BfB^y_7K30@d
zE0yFoQhPa)4`ac<H8TdKeZ972U{{AkZI7X37E~5`spmLQ`z|o=_FNKkTfj{}-(|{}
zZ_KO9Z|zTUJOU;!yGwflox#6=&}uXN;_##k0eE==f6mN^+~$iN*67jvtLF*}vYtEo
z<`XYodxxRj&b%R^<HW6u-{X<36ds?d^rpt~RX5mI-4Rdqdu~RJx}MN($m9Bmm1)JF
ze`mO#MdY-E?Y?EU#e9jf16o2ot)+YXp~l&4?*x^lXbe}cc24)%w*O%0@0l!V#r}!j
zpK)1i2UtLy$U*WB<3+L6fkOih@WGU9g79Re9|v`=&7%bbWvZJMNf1T@wu{bCp1};?
z?L-?Jh^Nhlz)_Bq$!FomUsjw_tP$s$6<_b$m082c>puXON7k+OnSqFOiIcV`T*X^U
zE-TfZ0(5Sd93{~(mrnJ=*!u0G5TB%yC=3o#O7Byq_Q&qUGEt`#;P2pGxSw|Na|~jk
zCi$oCTiA7%WI`VS6L`yB`rG-7<^OvY0EKX<awr9q2>TCo#-@`|u^_JlQD*I9SK;CP
z$7ge(_B!&I{1zD7`6DMxamG}+r?8mA?)Az;g_V!zCiV`sg)S%TdR=3RP!~5uqi`Qb
zN5eyVpWC&JvhnHR(}E6TdbV+0isi^{@j+R7ij!OGKVm0lP^TwlWOnI`52N!>kWe|e
z1}Wlx3msy$djwr;N8yPJ6*@>BL`$00)RwyyCw-uAzlF3q-9ER@Xp5PA#96PgdZ8Cz
znLlnp_CCLJ+g~;&7rOF9nFwQU$lH4~Ha)GaoWy-NNeN>;v#-Bot2VAMO#ZOe)g=WT
zb^R2kEPGjJKA8ro`=&aEy?OK4p!4%fE+|}>FT-Qq8DcrTGUHOO;UHu-lBOvBd{xhN
zy_x8}1Gbt!Dt>85#ly?3-5nVknz{OMS!lc$%ifVk-gqpfE|{dLP%)<gyby$+{qSlN
z8X#|*WsJQ5xL$H!6iRj99>r}#JQvw-94(-!ty@{;jW8Cdrn^aJt^h?K9MqaiKV#HP
zl@36h&Z|*QJJJ?J7tEc@LCJjS85HNiUWs3;47>2WGiGKBE?5^)*V<ifeT1hIyghcw
zp62y{lR|pJlh2-)I%N-ig<e3(9MjHgovq7Rr*r6Z<wQERnDp}e@rR3@(L(lq<vewu
zuwMf>PfL*ob48yFJ={~=)-FW%d#+4p#{qejnXk~#)pYrL&&?z3NqMQ&d|v}sRkU(8
zOrZG1`=hp=gu3(3<%!S?RU)1KP2+{A)0S))?@!LR2`70ZF#RFtNFZLNF{#eDm=hoq
zaJnBc^^3yyQrZ$y$8_Y{`HKFubV5L^;*lZ5PcQ`H2-69Ky%tAVsYi}j1W<%;C?`K+
zE<XZMEUpg)XDWIud5*(FXPnC;oo1>%)oKYx1<tb1*Z6fNZ2tCjV*~vz)e#=|<qL+l
z3YAmk43zJYH*y}5yDBF=4l3oWDyId(f3_k9_M^05G@SmaYTuWTt8^r5Q?$VibtvUd
zdJ?ceygd2c+kU=j;(c>UiGc%kh(WAO&8MSeP!#%rW-6w3B-=^l0(T+Cc%5d1d-_KD
zB|R9Mszi76+4LlHE##8BQuqqw_WQyz&X%<qF!nX4fDMg8`S8o;d8-l(H-E)Ld_IW`
z*~3xVI)s2Ki;{1z-UyxW&#SJE@=?)ACz#%?WP5&cjJ-vF9bkSXcRaGe&YNi9T8dZ)
z6fx9thlf)R*T0$<h7w}Yq`6)COh!@)z^@|1qrTh3-VOsjrt<C2wvWN>&=Zqx-`_80
zrjK~8SQs(oXSzZr_bl3hxQLAsZtd|+S+o<Ks3JG#i!=3(C?3!8jRzvvYu!bh27^)v
z*BLe#CnxxkORaQkksSp$KhowK>&#cuNcJ!CI>efmToL>&BN#=teGis_lleqxAFN!C
z-x;=D&v{<X`z|Z{c3kRO{(0zRi%=s&$MhCAAn~>%T~$Op_TCZ{a;r?I1OF85Y?3f4
z%>FF3%>Dju)3_N=NU4+^z6B*>G$9(btrwf_D`gB4YKP9Ggh(c}>^RacmApiIr>z5@
zdiVZ2GdVck)LL|kq0J(Poxt{=J6OL<*u$a8g)32cW2&o*>W@j{zHrNSN4|UYTAwDc
zp7<j?Mr0=6#PFItF!5Z<JrF(BKX=)l(Pw@Emz^L7ieEV*-5cJTTh99sd<%~i-T)0H
z9#pz0-~YHaL|6{~X^HI};#fpQct^mIM3me~XwTKQ)gr-hIewUwQ8spO_H~Qn$EQgo
zgWlLvv9Ko|cTS{ZXw@K+yR(j`S{sE6R%SqtZkPT<sFH)f*dv;_x_aA4!kLAyHrp-v
zwt~JKgdY`2#Qy8(c{zjY1Sg%_sp}Q5Z?sRxV+~uE>2O23`_2aIx~5{4ZsR|qWbiAo
z+p~{PDSDS7Y>>r9y@==A18z5$@MB-3jF<BorQ35LBW=T?rLp_@uni77mUqZ0;_O!+
zc!%YB;c4thaB550WX7l8WKuWc&+zFlxyB=Dh}Eu?RhZT_T^^T-zAIA8bNdSHpl7zx
zHIt%>+if7!_L0`JM}N8KFaBm6s`}DN3~CCC+|0u^#li4?KoGj{#frFpem+6@I8gD_
z5N0jlcJl<>E^t8{_u~-fWJc={<=t}5PJWdT`Qc?}G*h|t`amA#Jl6VM{T1o(-ID!F
z?ByhM9I007nplNT;CgA;_6#G>6*_{Coy$Nb(zFc%PU)QZyyI&yW5M3tnx1<7{+Fun
zoe~vC;3_vz?5RfNXvJ~49ts7x#@b)KXA}uHHXashhlcKkO!X*td{hS|vl(yX8DHn}
z3f1Z5bY$Fs<|msODXBd;^gYX38K~a|YumX^5ue<-lvcjy<3Ko#e8{8`30g7(P|W1V
z9>1W_WUPdY++eSUbJ*By1aiT<-H2a{l+P6K9*G%RK`dHFrLi+C`yK40LcAqdQ}|;M
z!JrdjmP}f5NIAnW--^flW}x5K!bt1Ahma#!*xjS4dEP*sA%J612XMNq6R+mVzc`_T
zY(Y8oF%O1{nI|tD5B45-H#quD9$?R0sPDLNwEpf*NjvDfFV8XNjVO~G6&>)Jyw1Cg
ze}*s8l61hJDwF@L-JXnnuSs&;#_2Kop?9IeVzqkdP5*-MA#FcYzxAh#@Z~a{N%3^`
za;z(KF$7ushGa3F?&h->R(Ye6R<gyUReQZOktx-R+ajQ*m$?JsP_2o*Fq3gt_mWY_
zY1QB9BzJt8<(l9gd)={>XhXO!_AxnFTh$X|DHv3!kT6c*^^(+6Tkt6Mt#J4z{m17M
zBIv7x{ihSac(13tatHSJA<zkV3AT(M3b*g6o{dRICYkdZ6~rs{YBG)4&90c(x3QPS
znc3|Z+Nw_Z437;*_|^Hrvtpv2TbP$PlKA7J-KCk+6z9XR_t7=Sj=i{00BF8^c-2<*
zkN13iwcmKe#?xc^jg0DmOX+Y@kVr?kQSdsG$bnZnuW<HIIBgXemB$+LQIp**BC%M>
zELePWm}G;0LB?1NC}c%~V%S*|(71H>Zk=Kx##f8HXH{`JW`(<=ZQbQrub$v)p(>=x
zkf}E$!z+61VSVzfmC6TYdEmw$)~`EfX+hXKTL0RAqhZ+xlH`nRSajI@(oQyS!m>%B
zZ=-<aZvB>BQY=PE{5h)Vrt+mlxntGnT2;}(@Vc6e+A0pk-j^gafp#R4n7U01t$X)7
zkdV%Sjw&)s(3elX29Ebflc6#`E)a#V$BbzQAs39+bumEU6CK>nt7ZzQT(u&Hykx=6
z<d`_#j~^+kjAvL)o9bNSH6Oe<F<LLU(n35IG4H&npEiR%EfSX-@@<x{#AsU<p7TQ0
z-CPtHqb0FZ&Q6N(mBb`A`1>z*NGT`K$2;U=LC?V+m)}ycMBJ$A*UnsDmd8~du1hDc
zpZI$sLQXvoA<VXgQoxl6A=f<#ThOx@ru%XEyT+3)1h=$?Jo`*vY3!v77V9Q^Y>(r;
z?7ADcClk{{@Hpd?56a0$-}Y-IZH8n2*3A5QeG;XCOb?u=?UF@{%BP1(q2-wuc2Jsv
z>(V1?y31HJUSl;KAfUJj&fq|*f#|nBC5&7ZCA_>NIlEf7%9@w1B-pao&I4bq<1fA-
zw~SWIPB6+>2OR+Ae;M({knhX8iLaHz>w8KeeyXLe?e10F9G}l2tzjVA7vK&ZFGrum
za_fE=GSYWmG#;3E?Ri*bf5tv@+V>cB<6VWn7?>@@F2AdqDs*cjN5L}B2P<6zNqiHw
ziUF_9{=o?w7E}ABO1vEL<yt+T8OZfgy$ecRENSEUHcXhZ)cjIS^uzi*(;nw=*Nj|-
z_ICIVp)K#t>y9Gh9qgEQS}!{a8QxWFdj0-fh+|PK$!cJb+4;;~8>q`GT6$t9bk`s^
z7Yh=>CUk>nohk+}9nE0owozKk(m+w-d3q))oZKP3iR;9=M!XMpSE*8l$5ToTro^0j
zt3LreCUg71MbC=rLh0T~)$E>2Uh6JKc|-7h2R<RI`C;9Rjtb>lz7MUR&t0ai321KD
zCzF1tLVWplHHNno_ov%0gyX_fY(g(MlE=f+7zL^G!$zVsmSIgeDfUQ-uvY=vvUX&n
z#+xPK<9REh^U?IkoV1w3r33@W@XE@Lop-<Sv9hh6Z&<#STFKm_plBa_<Jg%Nk4^1`
z<9Upd>2mAq5JWBd-llM8N+No;q>@ct^dOT#5JC^GXx}1x=Ip=~?eEfNK3$wM9#H>5
zc`*eP03CL#(<g`dak#12Y_AC>K$@XTn|q17kAC_aTPJS%=oFbux7qfy1}{Bbfy;Zr
z!@e|<fL2QPxe>P`)EQ!b*IPJ04J{j5Zr3Odw~W|R&G+6NlntwFJW+{$kl;kc-gdO%
ziM$ir*rQf$TjFrHuWR?IC$Tpoms%t;&cp*ZX9)OjUwm(8_ht&N!klJTpN(yHEm`Vc
z-xGjDB4SHCKc7ATR5N$nrtlw4nQw?Wc$Z?k!hOUZ&Ql%4JI-^a=_h{omJ)a&m({3|
z-Xlz(QXx?s%gW!obA=)tRkm>kun9bU6?(|)5uD^x=uq~fMBDPD^o~^8LcG!-%A~$I
zNKBr;wmf?<58HP=d5aBC%@p(eU0Z^A&+P-wjinC|d&$S~o_kft4%iH&e4Rviz3V?>
zM=>nRvmx5N$>)u_+GhuPM@aVxmii-oo<d0JIRW{es;3gM^aNHU{I|!yLNJ3P-V)3j
z^;33SYzQ+Yq)J7R+!)OG-iEU|qwYAYI$N{EwPxB*wF<9iQ!&47?EGOdp2z>7&rgAf
zeD)es*)C?~wb(`V5+h_<ZCc>fc={vGc*vs)X-DQdKecHm<V0v<+Oz-7b9vy8HUbti
zp&(zB9I$Iw5ZRCR7+-wqF5f+v_~WEOT+e~fmw!o)g3u4xr?&XDf`{Skbn>8QB{5$%
zo9F?j{qo-Kj#XO@t4%Dy|HCFL-rK}ZA){?sye+G`_2st~)X{zy;DmEJTRlM*DA^-a
zp6C3D)9EqvVLEx2f*vhn(bikx(B*h4L+o}9|JmphkI6ZYQlvuO`bi|-gX7LfE@$q*
zREm|!LmKT6;)bS<t*kP(Pdr7_i6F_-BvGB8uVekjNkI8xUBKq$S<(33`a@<S-IU<2
zud?~ePTuRsljdj0Wxo~e*4t;F^D}{zaZXY?m;S0HTI@E72Z}oU^b76;9ee5faaQ2#
z6Zn<Q-CAW(9E!7&@Qo~_N*Oyv)QW9%3&lw_Qv6EdTdt!p#1TZkC!oZWO;vnxtV4Mg
zy&>{=gk3zGVl{ZH#lkyDGjf=EiM@mt95c6m0qcR{N@@@sN&@#s4)a?4^G^+d>2?@M
z{XHlGs_AN0G-yr5y8jPlZyD9*w(fmH308_1SUAO7ytrF&w_?SMySq~;#l5&UxVyUs
zx8Ux9;4V+r+ULAyJY$@(_xpUwha@A(J#%04(%*l|qLob|Jo57HhLJ2u2or-AKOQiS
z0QW`fm+0@x`Pf$n7^D;L0AX6_FL)MaO1vePX)$XWgQ3>0e|NxgR44<q*|b{T)#@?t
zk++*aJ$*`LGtBfoO={dZEWWYTOri_GT=IsSXdq<%4$wzFspGV5dTAk%wvs@GOl2d0
z!kn-guEOdM<*Ws0egOS6ds3ncC_c_)_)BjiO~>EDcku>U_}(4X<l48hWO%e#XV&v!
zXYH}zLvSbUuAg2gCCK>0CbZ(;wy?1qf%dmU)Qi`lPGW!52Hon2Z%J!BWUu10FQ&g{
zbX5oS;hL#FJ%P5j66WsWf?XY|Jz0Ycg}1x#AzqFERRC*;+j4QGfNA*cLPxM$><$H2
z3^O+umPgCZQ-bLL#$Ds0kN88Z=dq6B(>e6uV8)O1)rS2#Prz*1ke3()5D9pUa(A7e
z04%URVk%ishBtFA58C9V$+GMFd%do@Csqg30ojtz?t_C0|B5^7pP2(w9cU@;fMdJ?
z@OzG`1ftFN83%`*CuUdMYSCrGk&XOsI4J`*ipRc-vfdzO^_#$N%4S2y(m0dYegbnG
z?Q6&d%}{DGc>~%;qxta9&fwonS9aWIRS%WbJ8c&+Z+pD1x+NBje9HJO_Qv$Ru&tiY
z&o}V(x1O}CY{)0fx4UGk^97k6WfYdGYTdZ=hvr>qBu&hkUNy|1rQT<<+CWxkS3cyW
z^VC4!h7SKeeJA_gvTr_i8lSwOEtvw+HO#OB&k_Cg!DQb(D19aZm!}_A7vd*SsE4K>
zo7bfna$6uXSv!UoQH_F$kG<Z&Z`}|cfui8lOfUoXE#AudbdWbDPF>UONjH>ug*cX;
z2_NF^@WG#aIobTpMt7bwb4w_58w4qJ6=`j0KtXsd3<IjLxr<D6hSl>m-L7kxhV0S@
zv-cUBz0c9WYII##$}fXPjbOj^)QtF=T7cDvc!dh}*F@}=c@)nUOLUhpMHP)O3CBxm
zrDtU^D&>#olCQe1rZ1<z$52XbN!p$U9Q@8KVtwp;-9<qw)liFw&0kepAH+bQzNT((
z64WPOj|r(dXw@}sn^&(*501@$Z$-LJ32RTf@#d_#ZNm&7uMXxlIu^dhvy=NU65~Ww
zN(QX1jlvSt@hM&Y<h0b2wvgnrEoa>~w=(I&Mo42>k2k;@(yzdzuXYN^B%hUWc$|4X
zXG-0<6~_;3TH>JovizrYyiw%*qFW64Qoh~nZY@J)Br`Oe`{-PYb;y|xBcdGJ>8UQq
z!sK}oENxk*4-*OT0f-a2l`#dj4N!6G3rN<y?Oj&$1jg0W&;$<~d)WMX4za@Sm+3y#
zhmGE<MxlbSh9!}Qd)iUk_RNtF+I5dY%QI5sKD2D;2NEE&1;Km%RV#+ecZ+{~I$^**
zIt#*ZuGawk_B>euxXs?4NC?vVbMwq7ADsMR2fCKw_^w4fR)MKXKOf519*R{Sm3#qg
zv-%2KjUyEuefN<BvVE6OZn26e*iuOHVl@R+)^w&;P}<X0vj2dPa9$|vi7PmL>^%Qv
zlcdk{=HS1k+H!<YHX_2x9i!3Bvi+}ZwQmq*aG!?yJ~O81c}D<ja>#}GPJ&5=vA8z0
z5iLc73MvYJ&lW3S_!%#zWxB7Z26a8(w|zTYDn{`ACSFCcJBa!ANn1P0oDm)YgjF;P
ztzNMQoJ|Mqx+_=pk!02M&Ey}SV<HI%+M1GMxET%furR;!BU9>J#H0whU?EqW{TPg(
zGDJxv*39Gy48Cz<pTmOmMWz^03B|L#aMGB|`&YjlL;XKNrL0-TJ!;(|F&TKWdWHK`
z1};EEfX3+{(^Mf$_>el%!8^yyr7n5Vr=r28UJx?1YZ=AQ)eL|7oQ=WW<_u8t@uvBq
znf@A9wjlEPOlHJos)<*-z8`kiK6^a$H&eib=X+{t)^z0U(&>F~+oEtABSyn}5jlOa
zjz5m-DUK_tgGqRh)xhe{$&Xb_C5zxbn_17NI@+LxuT_zFZ#FpbKv^=lHJpg?Y+uU{
zc=Q7YPX$u-!crTwROe)mO6v<<vBOxzMd0O_mp%&(*pCWttw8fbN8D?LZemxrKmV8y
zwtjI0lI~fx5llbA|MXxfxJ|wi3=d%-W0f|?DR_Hggi1~3SlP`;0r9-0%feG%Zdx=d
zRXA9a%1R+bu5`+Kk4f7_w!@0>D6cODemk(d0BKF?zpsdZ2LDxB>44??y80-idP89D
zzpm~H3)qO^0bh|%t9~$ghPOMiKDO{!1E+bq+&LKI!jYZITsCL`*r0NyZYV|T!Un$)
zt{=dF3}RyHfr3KQC%(($TWrgyNtAHM6ux_abQUQR$xi)U#fK4y!je50AGt~4r9+If
z6v|%kKDM%}3<)r>`^A{*_hA5*fCar**(FvP`n4FDT*4i{(qMGyus4aV?VYG5qY{tf
zmU>qIwCI&W=4U;#+jlGVmDGAdgo4qMzE6mB{_}XxW-Let+7m5;EhFRt9{zn6Ezk<!
z;dz*T;_kG*ziZQzqR+{$y961FN0sGUmZ|w>YviL^PZq_N$UHxU#sX}p&lg~ZYtz+k
z6b1KHQrpS`guy3lonh#G+NApc;N*=0I02=hN#^XRhe4h~=IW4cyLe2NLDtE#oy<Cr
zW=K?&N3kO8V*uF|DN1kjdzFe4WBxd~iD0d9j2(rT`7-vA{b#sJ{fn-Ihi)MXN&FKw
z1+~v0;?>#UHo@O=J2-+>bP^AP0zSq!<;+VF`?07JOK<ee<kp0FTc=NcBEBnT{)*$W
z*|tRUNK?&|TmoI#^4M<so7^FQkrVTXg?yJA;q+yKkt|L0cdAjq__Giw(7=aAxQopM
zIgngHPnR*1uPy<2FyjVE2qs^+!wz&!pD`XSDX@)jjwJl7l}*BKfW_E*!LcjLtuIb0
zC;j0kvO$@lC(vBqD*<D_(Df7EQ&R=l{>3O*`@N;;Iwbsk-Ro`*`6$sz<LYAwW91JR
z$x;O!atu59ING`DFzP$qKrS40(vQswn73H}dh@=@c~%;n)Bdg7n^Xz=HT3pXqzlg)
z_<FjeJ6fG=+lzU`v8b9{EM_952rx;wuan={b-`~mT=~EjVQR6|IQJ|%NdPD*r#OfZ
z_Gu8fm>sP#7(q|T)`V^Z9bS9gi^6r2B>H81Yy2E!-Xd^2tsB20x>53H!W|9P7_T0H
zq;F|;;mBK5md~1!n52FZ;0Oq!!9A~%kkY3TL^rGKu3d9j?~TuOea3Dm$cFd$>pRYR
z3O04s1kRmKb`2NHSl|R4U_+U88Sjw-EQIYxUXEF^u8`{5Qt_eI^i01IstI1VHC23I
zvFm=}`kiEmDNXS)ghnXa^IRd7Ms2wXUijv*JB#PHf-~!cu~awX4AWifVT_WX>^Sij
zA|~_m$vm<}Z`NuNsXub%=)ROV*p)Pj9A1FL{e{LqZn4k<<+LmTBjF41x~;*niceTM
zV5g8q@7xfOti_<|z#{FB%zS7sQmX=s*=^;GZ$91>^x6;K3O#*E-VHrn+5x?6%?c$G
zAeY;xrXVb$-DiK<v|ce83|c=bwOyrzkmT2d84wuly+t0Qc^i`!G0l@P&Ot5qb(=6N
zp)*Uev}{RI>%42FEY;cK+U+TTIKuE|Jd8@X@O+zAb)lYb`oZU=8`;F--NXU!&QH-i
z_EX%xH&ve#6S#=&W;2)0<SD?%{k4t{7m?{IRKnQ)4>nT~EoYyt`QJ@8#qj+#P3@Dt
z8lU3Yx<5{5Szf=8b3>{LoLfGEoeSv!%~otnIf_<M1j%*1*0Kp)CL_Fn5hUXgYtW*8
z<6bX$?{fQq6Cre0%o7+^z3e}^mh&37a9Qi16*ZdZ5yl3@Q@8<=E%G-RsKpos0y(;u
z7)NM~TMyFJ2#mF6DOz_5iq_w}g|_?+w{UiPX}%L%yhX(q3T<z?jXEn8X&A&X38L*r
ze!)BWsPMk`8!N1dd){pIj)Rl_;k!RchB!vRMXqatZh@Y~q-E0u{Mxote>3lLEB)CZ
zw@Vkoi<9o2ySnZif<hScpKv_hp-|w?-|Rw{JHp>!nJx=@7+jW5%gI`IjY`d`@>wBa
zck!CwJihoHjt{r+NBiuQn9B~f*W2u{9}RPV+7Hgn4I<<W4O1J)4W7(BKLLnKwvoFY
z$$cr?z+l4Rq?Y74&tf=0oox*1&}Q*Q`Mu?^@R|d%ZJ%6sVR*VabfC?QH~FY*F9pRf
zcSG*!ntPpr9RQIN|D+~RF$+asfYNr;mMuqqz8MX7dHA6@P>8WX@CIJ`myzBLL0AWs
zkGtSiBt#SNh%#B;t>kiSt33oOqN2P(d5^y5$QhVI@TI${hb{S|*vDw}M;n_lCDF}c
zSsTd?4m2*e!3%l&OB`}~E#tvtyKmowF;=YU*6a_ATEcFpyVvwzH?LQ1_b`I`Q!cXf
z{~Eo6^yq(cB^-@74!-2J15`<MowpS%Mw5utcV7B=yl;OQf4mS8vCW3sdM<`f4Ekws
z<sdGqWc!HPUo!H&2Q_#nrvxlVu9wy)wM1?|l9N-8=6nE0J)#D6fZ3^;JmQJqjUvgZ
zby<n8|L~LLncsJZTHyiuH;_9Rx@gUcgt|KBfe;}>V$=f@;m+<h;Xb^Db>{6=mwVsY
zSc@ml0rYrJa4%AA!)xE8xZ)l_!S`*)wsEL(T9YsKD4SD(xt<>dEFnOWt2Gkl_2I79
zKGsV1*cr^my%`Y~ts?gRyw&QWCwuOPLC7c(7I4q>>dQ#Wdz?4wNfNk()%A#eTP%Dg
zq@q>9o@tA^xHJI&)ukyNDkwc`Xg|kK?$IKdpm*=SVcqsbcvIgkRE+M5Sz-&TjM1{q
zps+(<#!=O&y=@W0mUgTl78G|{73jI9>CtBm&woUsI=|`O_1ke=(GK>47;#*OP%kM^
zgtOOQ(LCBV?AO{5duqD}Ru97m4U#pm&N5HWrS$)}dNy-{f<ztsp4W~iYn3ny>plF5
z64!{`^05U<&5$PepncxpF5ddeP)C8S)tJK%YsAQpy4^w^>)y9i^R0glM7H(|KiK1%
z0djq~%mh~NQd&(JgFDga;?6S97lHafrU$z&zK|#`u%Vup=}=Y1iURk_=xy<R9ZKfj
zn@81j<>`haD~2iXL^a9xf!4)j;z@pcUlIFvzDmj8BQDCM;xWU0WD`)uP?_p0eKy5@
z)`Q3_<cFU){8f+{<2)D!5o~r?=qf+HKZttie_^9?*%GM7-HEdoZ5=uf|A&v&`UGSt
zO6EG?Ae_BR_@Zw3i^C(S4pCF9`XO$5mV^~FGpRqOTA9jUS~2^J`+EkH0a58;#<3fK
zBrsGI4hDM9%k_Q;U}+K-Jh5oG`O|vHwe}aG0e#i!C$1>TE__5KE`9&e_N#ofibQ8d
zOxGn$jQDM)$E&@*@$W5nG2G__;rBIlxLmG-Gh-el#}pW|lz&BhNA3^-9`i*6y=4Kj
z;)<Tu`n#fMx`19BGhOAg2V<UsZwZz2IkL_Kj{AD4o1IT3{Nw$MP{|mj0u+vpRX@R6
zIzbu353insR3VGpu%g`A8iMHrF11&g;myS1Ai0?4%e7l-TmW56W&0s>sv{hE+{WUM
z+mGj4C<Q2n6KO1-2B`*m=a~0fk>rtD(eG-Vlz*8Zc&}1aJ6$L-@B5<aU<Kua6Ra%p
z0Kb*C#wK22eWzVy;bg|XncQS8JrZG7$tv<WVyKS@6Hn1?J~;_vHvDAZ23xY><FNe;
zqnxgh<iy8y{x0(qMvSgeUY6v<Zpl;WHXx$hPow$2%&y;UJQr9!_=LS1*pFx{TMie#
zCw-3N4pKy0%LiU|ICHPxqdcdY4{Qng90(y;ZtJhAHPj5kYJ|_cO;5G!Ya;CC6Mv#J
z`gr$us78*&YL1qOq45AToQ~huzuF~BG|o)UR@9<nH~8a6wd|0+F9dk*`un-UX~_Ja
zw{cOt`6Ee%Rc>7FputK~f_~&t${Y^}jDj97G0}17q2GrabnU2X`v+&)9OK`F_~uj%
z?m#PBHIjS!*J7D;x%Q!5gIJK9SuVSVov=(StTo%Nc{ZLPZR<NlpP3U(>#d~gQ+5mQ
zW+mW_H6QcZgssvC>Ug{T)b;&rKY4|`wNsQ?v_QSb>%w(?XZF_@a7~#{p`!!jgZJ6~
zQ|49gWo7KTSJ+9Tvrj;I(L3)neYca&gT!q8?)77xnHyhj%UI~2`l#KONEuMk{Vw!X
zks#x|{lHCchtfF}fqc|d<UX47Ft`H6%$Y}*>P+Wy+L#BE?OcRCt1Q~7?9J2N?N+V*
zRIGVzn01wGccDK|=FMs)`KsrmVawGPalbx+KK==q98&7mWZIr(J=N#0_(u=PmdS;2
zc|P8M+x2u>2&|b+%`-t#<vz68I!)RrBuQZ4&<@#V_g#|jvB`YlxBtM$wI%3DtN2@N
z;rZOn6ARff2LWR>)nAHJt#w6|S})7*36JlhNidj&A$CY1L(ISV2qS5mXW|7JeRAEv
z0ZtH6=n1nPj~_OWK5(@mI5Ay>DV#quJ_RiYn-@{h1ppN?6-hmkW6wTaor8C_<?*$G
zNN;dC8Ao^*=wV1Xx5I$Av@F^JqAexCRhRuS0ziJvY6b=>+D%2}2d(C$*XkSdo6~{W
zf%5)3r2}n>b*M2g49cw0%)dPQtF`cD3%g+6=c~-?u$R<V38CGJ@#D8P9Nq+TQv;wy
zXUn_6?IJpR`rW@X>11Dk(2grF_t9D^clpGPv?WSqSR3cBh82g*Q02KCzO(93I>U4I
zzSjIJ)Gksk-AYm0f|05ho@6%hocWrYkEHOF0@{&ud!u;r?JQEgGhrSrrGK=!c3lc>
zJ<<wM*ZV+pj0-`}HdQ;3Ofzv81TjXh3>XJS#qd74IxDIve);x$26|Tr<^oKb>#ilo
z#wMQo-A$5<9_@-3g?OXlv)4pSC)JvVI(RAg@}3bU2qsuc6iYSIAEDEH12vIgoAwUG
z+D#oNa>l=+&tLd4FboYSh*_G1z!vU~H*7_f!pw~xC>+U-=IsN&OAaqdZ$o8o6J<>n
zu2M>^i3dGi#oe19ZB??F2y~X6oFtlQcq>D+^{%4#Xuv|-rnI)?fGc>+l#D^lJTOG!
z09IEg8yn!dndAq-c}JUfoGf+P`}~C~Y6)6d^N;cKggf#GJr7Q;`U}^?A@5r;w5i%O
z{MZ>2W<XHS9o|I*049p3b_2FWqzUFvO(NvqQ8RTiGk5J}(|A2iUC$*I>)i~8vX-!b
z;+iz!Iw{y+D0!w-y?r~B$X!?Pnb`4Sv7LG6)?&?|L(d_W-x`4w%FmjYY}i@wmsph`
z3Drp~zQS9^cin#2nx6B)$mnNTaZpQRtQPgPIzvdoP0sQYD?jZIA`|zcox|CR=aSii
z;+Gdrzp35_vkUQ=a@|YD5BONMe|}omhS4hI0v;&`N1@JnGH3$t-j>DFZfmYG(!Mb7
z&~$9Xz|N&Xzn!G@^_u*;eAp}X5mtH4K=X_@RC7(!<|y$iU4*xb^$QArO>f_F4S$;|
zlblp51n|$L!=8ATE>>$&pIU>KLKvGLkW9AyY~qxg91VaSCphVznAbv2$1!KMpaJNK
zxZ$3`-OUr^>;~!t<*IsbsPUie<(OCCzvLqLSA$`jbg{7p%-x}2xp%#<uB25X7{`az
zYe@o43E(4V=6HM8C&M#M8wcgq*%_%qJJa3<X_f2FWsnqqoD2ylLo~IX)+-iN*jRZy
zaK5^V<vytLb+1q}M)ooyPH$akoNZiBg3NJGX~+O)i0IxVtuY*eMWEJ1!E(5%G%}Db
zB>~Z>LU*jb{**~<s=*=oo-201NfuZ;P1E(hUc*veLly#8Eo;(<lb2*8h5>zD@{sRj
z;x^fr%daT4=e(~W^2cm`uz!tfS7v>5y&IbPeAy@kwjSC!il`j+Zii68$~cVfp<@%?
zF1l*TPkoR6z!R?0#>?2j&p}DDzJp`&E3Xj0=$s4EHj<Aw9c^bIo3ElY{+W9y>Ii|d
z+c~BYEy5Pf)Z2NgokyROkF8rfoX!>ooeE1E7-x7qq6qnLWGCVgh&VJmx09(iMG)5H
zd!6)A{4Sp*Zn`&hcCd2H)5ZkCyC1LwQyh3J+2`9(Co<yN6|lZY;m{8`M;W{Q@`ePw
zB_a!o5?Be<-X@(NI(1I<ohOY)D%Yux&Dy(FSMjc*qIoDr_OR`j3#ip-pi8@>htwm;
zYc)E^Qc|4r7xe~XR&m=wzIdGu=L%SxBe4w6>&kD^90wP00pt#5VbpggI5aaL1^n)&
z50Snn&`sjb;oa&TNZOipSk)%CQ#9%d-D;9>HDzEYN2)Sry0CEy$)N(4QD{pt|Mlw`
zeP6&t;yl>07C~pLv8jJp<m%%Mx2&abedpUiJ@TP&|J(sjh{f+zB>rjqlR%lr3doWH
ziDvCALo-5Hi>sv+^js%6YomB?*KswvEB-^kdH6&cnYF9dX9?!#Oer|I{fv9zuo17F
z_4{!T<i8spfItN<tr)-COY#viq2Gj#kPoe+L}xUSYk$+<Q8@6RKV9Z<W+%SAa?3`Z
z+>E{3ruX7-fxlsC0tZXsT{Gl_$MA8?QgAKC%yRsT?o!dVD3ZWR6${Hr=(EzlQZZb3
z^3nD3<3EA^eN)&VN$K=pB@&K7-YsQIRS{1Saq?91ZdXBUKg%R%Y{odLU<(4aZ56>h
zVx8_@e`5kJ@JD`bPjFmcG*M*tLn3BowR5!<p9(VnC%fm_j(jDRXit?Izt9fk*T58M
ziPc{OOB9HLUmYT8RJhm5=uQ@#DLA*a>&{9olyI;?*6~MZ*1;8qni%!CtiNaSZ^X!P
z$oo<#FeT3PT#@x{SskxQTjt8LE@iv~L74rT68#wDzw9{Ja3A7FidE~;k~bo65V<Ci
zc2%nde54=I$j%i!e~$=+(xBzq-=$n=8@y4-9C=J_q(jOl1(&)NyE`FA+fJ6_MiKId
zSMAIkmDc4ZEtmZTYYQzqE<j=HyNlg*VE{HUzu;ysVwwPJPvG+J2I`FK*fL%0mMyR8
zNf|ba!6}{E*IV9DFF4J4Ld#$SQbW)xp^Ss;Effm+!0%Em)CMM!i0qVZD=kVUr+K$y
z*jmgmjiaa477$V0ykRqF169=Fs^`s8KT)o;WkQa3GD(*&TAb_T4n3exL1>0B=+cbp
zpgN%A9LU8nTOrg>$p66uvz_(#Na2mBqGeUE^Ywz6+s-3^@cni7-8D%#g5_X~<$zid
z;;%_F86-x6g@)CVE$c+Nr-oF?z1CrPg>y~i`VIiOx=Oer{?FgP$?nFcVI0+mI}}cO
zGpS=k1{cW(5|7A*`Dol1faYd71#n2)0Ay!2aV5bY-Z{;U)%1nm(tk?ng@t2V#mrA*
zG;iI7){h~b)=Ay{4|1JVGL7tM7aM5f5bS13#BcP;SLnq$Z7k6Ad&@t!TVnv6|9sid
zjEtsUv4+MC_#WSDhxXrL`pF*v9A}te90yU(eLFNPCZhI$?t5|zdN&)+r7z4E#cfB5
zyCEuDV|j8oj81P6^Qe$ku@muym92H&xY-OuA9AG)rFP1o6S{<^8)r{azYt~LmD~Q2
z>Pw6>5GVhF8UG2yK)e-FAUA0%B(n~e)D#_@!+-U0cLosjDIg{}0Gsqvk(UUY|LAPj
z2xPNm$g`@{s>{#~c4rE17=5h%;DPvKiQw40D3zA03!$D?^ADFmL_JC|1+kgWJ@~(o
zW;ncGb=BWx5kft^jl~|3c)O^4_qTJ<_IVPIvD;)^k(@QklX;pEpj9bhERX7Q$2%kc
zZbkk9V(;d$wSEeI1Ea}kh5T-Ym9TVc`U1Ew4Na1|exFtcqX^$PObJ?lNxwoXqc5Vt
zejj}5!z@`t(RPN|%LxOHyWP%0Pi(&MMjOqUbyPXo8uj9oNl}nLe;KnaQjxs{$C=4|
zwh+!GyQ})P2&2xTX#rXW4zlrpa6z7wrKFDDj+`FkZi7{mL9hIu#UxKbP%AiAnQDXq
zp<}0x?4$G>IN#X#Zv+|U3sN!t{`Bv7P!aA7V;(6NkokVwJ<D1jyw|4R%M%h&oVfIc
zhydZJ>zU-}oLrYoq$($R9DE(lT{?3>WW;8x4qu+}I-8lig}aCz23a<BWP&?zMc7d4
znq@1SUj8#03<L85b+ARi<cNWGa$eGt{B<8XqQI?FJAD@6BwIHl`J&FWsfIj>2Q5F@
zt!I%5XVCerFo)lB+HiotsK4s=H1l)E4|jyLiOB)g1zZ|9!xP6UnO4L>Q%ILRNR8iZ
z_gJq2diLXlC#RkNND6H?wuIlme}XA=Iq~6U;|NY>AA83Vv{Jsw28;#S=aDG({s^H>
z5gE^iPLZ*T(f!x_y6b->;z0<xL7h(YTs5~z4=A2j16O@S`ZPj_nteufKn{xq=Q$G&
zyF?){uho-jOOSy^i9oX&jiFxoKO>p{j<bqFhfmiC^jmbSu8{97L(0Tf<>r-`^st_e
z3TT<aI_CD9{W#_^%_pe1I~lENQ+p}Pv56WQ)v2W!&mtAUuKiZ1JMxfuL?aK+({Vg4
zk9o$jUYUj}VX-u69`3IKUsmt03!`)>j%=j;OBRK0oDqrJ`?UPr&2<Bg^}p!cOMa9c
z|I@kucjRPF+y}#2+*m+tD%y&0RwYF{2T{-#kED$CrdqYCPIR`p^p{MS083tlh}vVx
zq{Sf_KZ)za=&ntXJuQK>r+-xT37)yX2*z^=rp||vO1>$KSBAs!;s4gWBk)G~Tk|g0
z&;Vk}v0cq~+5bLqQzBc8TwbxMNsuM`9|e}~6vH=y-LL8?o1r>6Cc&PoON}CZ;Ukv}
zHhq_~bTA1Pwb_qO2gEO_<604@mN9i8#}9dWi-o}Iv5MvqQz3wv#<#)+q(x_-Y)7-s
ze`FJ3(d1irNK!BbFY<D)Xhw6uZkw2x#Etf*1<yFPGTowyRL>=2k!umPg}sj|dn@Ra
z%`>W`)UH8yhKxTRj4In}$7al+73JMTonBa^2p&Eu&O`k%E$9}s-b7YK<%h)BL&n@9
ztSCL(=U4Kr5Ek=fFX6qLQj$bsIvRXi0JAs(9h%kmPkU;15l&VZK_hQZcXU2r=klb#
z!y#yL<H~>gP#584*zudh0z_PamQAl)_2F^jXZk>Pr3CkP1?E{tGn{N)f;`eQYQKnR
zzLV;FEHIgLEbgmVl=CIks)^K6o**mXSHqaKz%E3vBaNQU5Z>hg8H%`uzR#YbhM{ZW
zzq?=md5uF6K+W5wm$3Mj$T`IX)iW%hbNoAs0M5`L+u6{B-H?k#4<(Qv{IiAHtAdZl
zWBhFt4Au<7{_7WqHM>4weRPp6brKPES~q>J1a`EXO@Oh`uu7fvv#HfixDZNpfJBcu
zUz}Z_Jf8`29c<k~unRKQ53GNAj(4~qXjwQ>O5sW{5_c&RJ^kRiE*>IpDS)ZUjo3pm
z<F;*n4g<MH>bsK!V(Kh(4}xnBT*q!TJp+Re$B)u1J-vT@Ab!V7o?)GxGkR9l@c(25
z*p!Cs1ZDF%jUlJoWuY)oCU6X8_!5q2yR?{jQ`9LC7okKZhUSXQOzpq8#}wHc8zh-H
zx&(&I{ts>4#d#T-<`;!Gqf?+5r{_``x^MK;(_H!5V=Hm%OJ&UaYUMCRrGJ>m4Y?8P
z7pJA70;QEiYX&;=3m8`~w~i}F1DkpEDMM2Ff3e(v93C^#9K-pb@oz(BM&D~GzgK+O
z5PvIruhuLLnkv8p<>}r9xBr!+^p8FpWw!}TpY4g`G1WhnwA#qY=gmYEIdW__`BDyf
zyNb6g?wUk+r`1=_FCoNV6z?^n4o6}7CWhG9S4uJYs)AuDygDyLJC@3{#-4;jVK0ST
z6zM6j5bF|w<FIy-d$(wGG0^iM1iM4hb5(X*QrR&NuXE2vL}<DzVFA~&2iGFkUTpMQ
zP5x&`j%u_K%MyXN1s01#&W&0oFL~nJlc8N)@m>V9Sxv!3?_Z<t|L#7GdIz7LRP{6E
zQml#${v3u>0vf7kQ%>;m;hjto-(z)WpoKi<qQSeZ;tq^+vf4fN{j@t95k^lh&A1Q;
zj-#vY)+7=x8KOv-VRTFXF6=?dB@XnMLEyS3c;bmj$`VT{Lh(z1*%A}6P|^)p=0sL_
zk?aPHJ@Y?aw=EdDWNqV0)sImH(!pZqw`5w7vMFvO!t?lo-cmAOr%-|UehZFfBdt~F
z>_a!Zy^^I0^U(6Ob|7r(G<JqNWPSsNgXR5gz6<6?O+v~UCwlM8LfQji25|vJc8PCI
zHT+Ab?hT(Z4HPCQAZ2^-`0LU~{;d{bxRtt)GmxmL<!_qgf7ti`O{as1>J5=|47@vP
zpR+I%T#QZv?R+xg{ts?yltgk4YMe;TV|fDHJ~HI7Yl@|6LZ&>5jf~+y;i+(CejLn=
z(M3#w4;U=)_l8Q^8q7R_e=Nw`@>mYWEsS|D{s@UGc`@IpW`^6tbkL}xOEP1n1MH5?
zt>_-`A85THiPa2XYN4WUZoYZr7BRdzxcf9tkuf5<LYsX%YOsSxs?zu4@GXNC6GWqg
zWxn8@^p+MdHTC?OjY<5ocSbujvmx&3J=G49>;il~Qafw@l?3x;C>5o!y7&Kfng8=-
z4jUx}J7becKM}lBx{9hS!)^*dBoA2&Z`UDuL*Q*R%{y{H1jn|_@l{h%YX`>^ZpNph
zy377KQuCUsoI??Gb~pW5?eMQV{k+z{TI7LqVhRol6Eh~;DJ}4<(vPt-==tA%*}8QU
z)Ty?n?Xo|sIwxdm)`XS5&lx%w|D)5Nz&|H8f6e!w<iRF~u&T6Ccg=*(G7xt#SUp8$
zVZ$=PG9Ia;9<~DrfT&O|)YPy=tem-~L5!WCn!54m51ISn91SS^=K|maL*Ej$2PFM#
zwrzqrUeCMe`12wXikcTxg+xM@hm^y3fr!IEbuoq`#gm_*PB5)AJ~_|aWgn5uzdddG
zK)z5O-Ca!l2ytc6_u!9A7oV_$K221{M(nSU?e<CQD-|Gm#)+?=O}Gr`$V+<{m`0;v
zpNufC4RY}ma@?ifQ-A{T>(I!f=a8<{8}G9C=lU1w`TyhfT42R$^O7Jc-GW6$GQY=U
zVogTZ3fC=L^h1!(WX2$Wq$W7K?AfWUU=b(|zo<Ky3F#Nd$1X0LJ-Hg~Utn<xp-$kh
zB?g!kJf~=av4snbiCY?foyOqeaCWC0xI4U+37RFl>Qa(H0Wdbn-ULmJ>A^MxEduxg
zoFFm>1~;CXa@QTWvTuDXU{ii+<^s;|rXL%sq?8<Vzo{Bs_V46``HD#?mt`AO5-lQ2
zt#G{fFj2mF^Lv(V*3I|A8v@{mC%@F)IjS3s&MjORgmgLAn!f<OA=0{isH#iIB#YNO
zR2fd2w^~h%T@q`9POe&#tSTA5pma&)Yo!w_#bgZ?i~qq;NdgCch@jjZLjZlRyj4tr
zKIK>_+(b*ezY(^V@NqCBf1c+=50Y?636Sn{j)9Gg`(}2^#>TOIG)X=AvA(nx!)4cN
zm-F?7izIwHGC_ALd-6b6@fT8EEruy0m_lT9!boM!AwTCgzL(69C_T?_gQ6eEA4sca
z`xGtE{CYwU<RAz2Xo6ce|A@FEKMxHT+ff9%{mb9}qv8rPS6eh+W&F#Je=8$sgx`Q9
zX>``eDpK{O#@I|3uv$WJ5=~o@q^|mUDF`Z@4<zP3DV?hSBS88e$ZL^pu`V-Ct*D$P
z(8Y$GPWs$IGwFhQ%9(=?Nn1QU$^}X)@InmDhvvd!BmM%o&(lCiDv=dg>4G12h6McO
z<d!v@vcw|AE<AEwNt^k9YYk*5)lU<_1&_R#JqNRVth^sB&WsoOkZs(tK>d%?jqu3>
zh76!f5GQ$vl$xFIC~{7@uKqix^RM8D5-^>L_M0g%NCq9HXWzncDdb#>iIVdDz3m@_
ztAp9_qS67F28m&!l9}dr+f-7LT*2vB5)@k=R-&c55Q832tjOPfw#|)Z2AMEUO|L}K
zHphC3+2c#<r>>6==1-d<4EUhoR3&*%|4S#z<P_AK3$Kx3D!ur7ct2P6Iz%G5k=I$f
z65XczheF#p?yH3GEqZ-tt|q~e@b<PWY25p#YiuHhQIEcm40E#+FTkTQrq9+7lmahx
z&7<I&G;}zl!6LZ_95&oJ4bO8y_mVfI4F5StIRB8tPJjj8)3f-FNq{!v{F?;Zj=6|!
z{|zd_8C92^cfvt464*BTciIg&F2_^(*Y0S+Su>;Q03FxmkEBb&$Pn#MC=HkT^tAS(
zcUxKX-Fm2?h?zXfJ3Y4;()#?rs-8CzuO}eI3|8bqa>ARHIh5#6J#y8XlRlU~3H5W9
zBa2qZ_!)zrqvSznFcB}x)g0+=ln_9c*75Ze*E#uH#{eAG2|e-yxC;4NKOLseC0{VQ
zgN+yHItMXkB2%o-z}MR9KtZ>w2gY{`$i4^_XDg6%c!~|bqRuV%(`Pv7Z<2McBbG+`
zK<mSxHgeeJQQ!Tbg;|OhBDbcr`Anhn21(RN<5PCC8lIM3@qf<wFyR4PoJBEzwSSp3
zaUc_Qx!<-k=Ri+AZf-Ci1pVX@82zvar=7nTiC?G9mUfYjUU9DE^3%vj$&+Rh69*$m
zkTp>1ezu`rW~^;xq~9Y^_)7Alico%`TR#~`h){v+i8q8=s2iGt%(tOgGHNl;y=Ve_
zhlwVN1qt{0m&Yai|M+ZI8kw}j1(!dz-GR#R2E6ZyCoMl0ozsOE<@x^8Y3?&h2%b+w
z&XlqAq4bsZbjUcA-9ey@9rk#W97x-;tHp=Sr_m0RD4pw_=lstb{SX#xqAoMfke#DU
zQtE`KwEodeKTArLzXwGq1QbQi8FWH#sq2+RM&NlQhb!3apaRTfsjy4eR;}>oJPbkO
zoElj)hv_9deNEY}{NFQN!i0ZixHX&(h=CF31lFvHb;Z&e`hx#|{~IiL48t%~+|R-A
zf{BD^x!8jwTYG>gr0FOEF<Fxr5%Kg85Ux(t-@Crq#8Hvjm?;-dW)(6&VdVp5x7QxK
z9*9!FB20dOg>jg7w7_X&-+AsIZFd51$oCdjIhyG{eaVQ6p7;mjw<BjgVUuC%WLz~J
zB0}v#vTB;@?gvDSqp&>p8n^!J10eyxsU9ccrTde5T2vn$I8bTVB3EH&lDqrkOkC0X
z`yz1{SQT5>>lZ>ja;A;=?q~8QQ7wgREyX8>b6BMNNGDlxH%%YU@4PpjpIW=Gj{T?Y
zsM&dc2Eyxn8RfV4Kl-HWd~clh#~$Z>9sVh5x1ca?L0>K+>RZgd{Y~C8QlT)W9e1{;
z#K~>i!39d7d5BlFc4Pjx7C_j&Ty%dBbkcqPzBZ+;vm$ruLjYXExT3V#Plt4ntWn+x
zOYoxLM*ZR^xE`3^l|Ib|6KEt3OSlI237L0jn<rt0E1j2`V+|+)35l|dB*?2mK($1>
z`BGT)L;b&GN~Ky$5`2677_frB8!Op{plgaC;J!9?^kOQP`-@3-Hlg$VSlnrvd$8mB
zUEtl0QtmRJ_yAbHbN=NCGAJ*U@eS0SvhP<YD-Dvy?W7{-(Hi$qzBEu|o&?$F1|yek
zKJ4sB<WJveJTh42YM|YnEBRpSgjUwEr7x<j8U~F!bri47BA=tPsBV;w6hakZ<;kO+
zp+FJw)`PbTY_)OsXjxW?X6U&tYfp$*gTzqaNyCA{bHfrv$<ww1=H&RYtyucaDgLtA
zM5@%n)1@e{Fth-nP=AQvZb_Fc7u~B&CfE(kaj|x_4z$?iVwnEmZKq^r0)_o(Nx=o2
ztl}B7X<wx_Sp&rk%8f={TT?#6Nv>JD>!f@P5`oK+)~lms@@X=DTTx%Ha;mxym7PlB
z`u;3~VF~)Ht<x{9b_)4Iq)P6B4>*}#S7Z=zhRxvi$Hlcf8MU3LX}@a?3)mN_!kEan
zq@Ue|Z$6VYEMU|rE?`V^`SrYSxz7R~_Vpr99hFv4+rq}FU`-9=z!=G>KbOo+9@Ts<
zM>6X`(N>6hK8PRMA=TObWR=EFC#RGBB)p!#ii}>SGJqQ0b@8h!jNDh=ef1Ix-P;|2
zPRy0j@fUa2JY+hRYsJv_<yaz&q>jb5&Zx3Kbl;x)C4$ToGK|w~62q5>vEpAD@5Vs_
zdxFE9?TzxY8#sAfXnUuorELmZ3sz+1@q9bhbc3XGHWzYW6~V++I4{h@m6gI@l(ORE
zS7mjk#_<@}&G8x>S7$Mzu9K_5VAb&A^|X+nbJ~E$39WVHbza*;;ot-8#XS8qd%Bj?
zNffXFKb!>@_eU@HcZ~bqbEbJ7lb*L#Adh)hD%mRX7c)L`ceaG!`w41WxDp;;uKA>!
zt$4_VSL_kr{NVz=D9LzN7<Io%d*+F`_a@J|&-RgwpsiiS(=7O-$EPytx2#r5g;7Xr
zt2q&V7fz+D0Kkv*joL%+OxW{(c*B&&iyGsuHsjV_Br_OQd`RS5bdQ9L&1tI-J88(d
z1Dh0$?%lrkzJm^rDM$IFv8mN`N6LZKQn@ha@z+Oay97Jk+1;IE-JH+Nw#Qo$=d|0s
zbrW4Z%rqD9Z=KV#1e_ZQXW&emyFKupTnM!NLZ!oDPg_3Og1{-^f4<<WS;74&?lN>2
z9X@lFLevK2v2jY(#KcZ=2glj7qhsAl5*)gSK9Da)>AzToY<ZDE_=dVPNOBGsHXToD
zR+r#?B7a;lo7EirtlY_F$+61&z<G|~v~SZ!C&+#y=(T;U6rvf_O5vc=IhB`OuVEm%
zTz)CZkuwvz61#|~u_Kl~^cG)cU0gUW0FK2$tedT+<EQoS_e8L6lM@BcE~FTvckb%9
zz<W{szne{1>2Wd3LE4-Bux3*TlHeH^&$~=BOlC18rs9lG8m)$?;}!;n2)5y5Bzq6A
zP7~8#rl^Mzvy(uf!sp;OGq}%)<St3|Ve=qGs|kmC9Z2}aMxzVQL8#urrhgE6=@_I~
z$!hH(sP-rkN#^voHB09;{IymquIs7RB|&+d$$%<M7sFz$?f$C&PG+`Vjo)gz0QDL&
zuZ{C5dF9^hK|by5TK#Al7*;$nhlbBs;EmiVcF9}qvSGK363g<=H|FJX2#arbXcZ4k
zasE=ovUBhpBNQ{7xpwTjTLAjR;XMD%3v$m*!!}p^TvDfMt+2Bbc^<x)KI#YU9G#yn
z(^m6(smI>xbwoxlNM^c{jOOm|o#+r9B(HI{VK};Qh9&+M0w_KYhx=Dowc_}t;*Zc;
zDQ!RMmdg9f^@GOF)->Fudtmp?qO-C#p}h+r*&HUmuz~$BmAXF@nOf__>LcVvvI#w>
z%Pu^Ay-{kp;wG5B?R5VV4V)g9${(0yVQwk2$uk4`X`eC91%8L*2WKm$TM63j2NvtF
zIfa_y1~#*_eVJiy7C`bE8>KDXA+M@&D?O%aw3xSf*fZ}eXl7}*vMSK$u*M(re$=~9
zcU|z!Q0EI>dYZW9?V6*<ryaVUQzC&E4d|pBZ`*Z~ft<x`kkF$cU5#e4Wbnl8wexW-
zd~L)<l}oH*PUFhl6S(>EvkR*pT&9Gov{d!ed`hwP>a9*!c&f2>uH`OUi{VoW$2BN>
zGKejEPXac8g-9Ngn|jxJ(ph&gF_DkwzRo$ZZ5}OxhxPk$FN$OT$LQU2wt(-LxG8)*
z#}l{x9VrL2y|rj=ZNc$Pfv+|uzT!iGnV`ofri?Uy1C})QBz&LqlBcOE-J*M1si|Mj
zEIVIRMr*t#n+%^=6+fGH3hUZDQz^dpjkhjUX%eycYBt1@#uaV0=KqE%gX8mHRKfHU
zo6;ybdVAJa5)U@c^@B;0m~2LW6bd9Oi5T(84C38yLARh_xaN9oQj1BrPj_JoFOeM?
zoJkY-l_WF1ZdECWC%KzRsQH%kbRNn&9F~%{x^=m1?6lLzxe6$*K8xSyDvYUIXh_oA
z%Q}@)j`_2f-{BquY3O3f;41&f1bwr>Z49UsBXGS4tP3Z>`AdZ?oK!;1dWJ5IGW#Mu
zrlf6%Wk2Hg!0V57NJtCh`rR|eDUv~uPmbvLRX0O@sV&bwQt=hm^Lyma!W+tGA1@Bz
zJ4;NbCI<6b%i0aOr*K`hb&F^`aalRD%9v(?%M{nLvgD?bgEW|vI<=YpILfPd9i%SM
zY^o;E<1i9myn|tVjlf&6X~ed6&jAp(0J~Yw!urpHBBcSjY2YAV=4i>ocL*T0x)#dp
ziz;yJsA{>M`8b`Hxiqs=oVNRe0!Mnr475ear8`BpO*<K>?fiw@?EVTe|6^Xy8lBg`
zIjX@)U(NW_k_qu~<?@e~S`sr<Uv^)7UskWOgQ^tEjNe|yL#+JQOR%Jzi0w^64{oH~
zQa{_%wmTFdI?ur1A}qddJpRbdQwmm2a_A?o%qP$AFq1I`f)^GuTzDVb45kq~pKRmQ
zx9@pDojmLgIS0p;o?j~oq;le@0z%%tX;7PZ)`q=bb>WzyG1mM*p7#V2-=`SP1ZaPC
zWWUS`=46r`f{hUPEMRM$^=qX$jSzBdw{)tqRo8MnaK)H|3gJ`C1lSu?Q#~&`M`_(Y
z4F@y?n6E4H9$roNDXPSp4=c7FG;%z4OZ|E;><%EpfY+b57-#Ry<DIy4AL6K18|Vpg
zw4VemWA1ow7vX#|djz#@$HIOADit@#dw-qdQqhmXax=*3yQS{g96zD$58BxR@!qkV
z?#Mhscam@M;Nf?n`9Cf#ZW4rN3N%rth?D66SZ&epHh`^WuqTg%_&olbGd7Xz$*RF|
zoFt0u2abz$M-|iCB!1;uT7_*-UyK6#aMA;j^a5(|a~X6914RWS()VC4(1nON{Kk5Q
z4+MaZf}LQ19iY`g+Coi$<C1oYbI%y}y=86;M4%FlR-oX?-(3+Kt1b)qk}XDzD}e{g
za8<MaE>P*4=ltkEWm-^T`{4Ke|H^M?_5aRq$(??bv3yIp`tcZBU+7h1O($7;H=V=o
zj&#yQ*v{$#5PUpxSTcQ_26~z~86%=5i$B;%CH#>GYOawD`=k#^bbU5sXt4QE>kiWj
z`60ALGu~3Z7`N;qDUTiOXrS=7<lg|zR28P;@mD4fZSE|bWyWKC9O+E{GG^35pgxf#
zOe!phYrV)@MX!9nYQd^MdA7LMD$ac_Nmp%o?rYvTF6|(pD8=dEXp7+4j&%m$2qf21
zAN}O_&qN7kps~|_$o8Ej!;4Lc`Y*XJtB(8aSKF5?d57#~UvZq%VBtCdV0NZ;zs<R@
zf5!9hGx#v))f~zIck-#Ce!+D#s+EpgcEv%?0sX6mW0<DqQCmkt<%Oo@dT@uTY;K*h
zPML>;SO6UAm!GYztKS;^eXU`#0>0zT@eY_DhUJ|mz%}<bi{{Yw`7A<x=5qV>wUAw$
zSC0t;liH(~q3Cs8`<Bp$n?t;9xiW#PvuzIFf#r&Oa6a8sdRv=<^T+eX4S9XZ>Vg9Q
z1e<&*V;z5K_`qO<z$FPeiwSps5!YjwmJz4<^UH<k>1m};f)xSdFZDA)zn58OdiQC-
zO~9P;HGgf<#o_)p5un)(vid#Loc=Y)nJP>9EegpFin<Vg)XmEicL;^0oZ5WAi@L*o
z;aI#$cw^eF8GlP;n~&xV8c)n~;+R}ESMt$(S>Z*ez($MnK-A`L-d>ZJ+K=|mw%{Xf
z`*3L|=i;+pqu&?%AIg`Do&v*AE@&Jn2(Fr?6pZ)Xjuvs^a$w&GfibygWQ9k~{t;}(
zW(sbv37(dd(Vv(9c<n)px=*FlI^C%>#_o9WG6qGpSTs5>JLPdRJGBJ|)J~g@JuSPt
z+xmznLbZjWO7>TvJXmeT+86J4-=!ZdJ&8Rh-&dq9`oWp*yjL{?c2mx{a;O%qx5Qd4
zwBucydG8A#*M7==Az6N(8Jv3Zcq!k0OkcZ9Z$-b_)eS^0cC+QMF7mp`ruRPMZR1!i
zk~X6!{fc6!8q6q%h}_8Y*c>e=wE?)zc>ROUu62}(Gw$%jevVKm?&ns?rv7O^@#c-9
zTtq50mteCSmxiae!R~p@&ritIW=ik#cD?hUmm6DTdCsap_}S<Q;<f(%yT??rXrKHa
z={afEP#ay*<B>6^0*gQl>PU$L(IMJ<FVhTp6Sq5T<Cmcv`S&!^He#fV-4~8wiDRQO
zHF{`ib+O%Fb4O?LA7b-+wd@S+aF%n?#N?wL!@vG!aQcmpNCTHi!tU+!rEG~{;>RFL
zHAFHlJ+<#wxfNly2K|GJHlIpFN;McjN~=q8Q7|!>6ka8VEs2V=@pe=r8$|@cpBsQl
zB86WvIEX&eJ4vtVYs2yj%f2&RGAz!7mZciq2`gvN>Cr*g8&NFD1TWn;@tqQ%a6Y{>
zgN0@9<F=te`XF$uK(q~{W2^%T#0yyYaa;7!aDRW)USm29efhgTQ6mTO1UQwo=F8Fq
zkC9Ctie}|bqpOprC$|Eo5T~BmMNTxuOcNE-P~fw}BGKX{viI}V&LS^4vu>+FHz{LW
zVnPDR=GbnSJR{pa5S}El=dY~n7x>J6kC69RC@3T?D0dio-$eW#wxPq*36GzRd2%_c
z5C|PaSoB&l^nFYpI)0+o!3Xvt1p>2D2S!W2ww(LzqBTyQtUsrfVtyi|c+^o4+NSIw
z`zo!a?|Osmoc`_<vLX1T<2E>(j~9%)Ka-+gWze0eYu}Mfq}wz05#>ifmuLvwP1`vF
zKd+SH&a)ko3L?L5y6oeqCj0TThhbQXh}~^1xe9Z3O4|2I(zSiym6Y&4P~b9A!|k>`
zaZrxa^t}fLgDHxq$OgrioUKi%{4R`jI{dR2KG)I(4&Hnw^F9ZCW=oIS{8i6q7zp{6
zxtZeYg6v68zs`3$d(9EZ<lSdTA<54?t6CKwNpJm|r_t>E%!L)m9WeuiRzxB3^X!dq
zr-CO?(GB*HA-~Mh9CW+ER%=>qW3s5{pSQK#xoaWzfnrhzW!3|pU<f39=r%&=T#uVQ
z=gSC9VUPTj)wEVWSK;&H7FfIy5TSkAnT0^<N}NZ7Q|qOe*Au~WS6qwCm#qBN-dXPw
zLEt)_=U_?N0chvU;Vc#WNqcp`A;2`UHosbocVgsRZTx^i53gY%rNa3dgn>|e79U0(
zOB2=BsLTbeS9>|o5cqS@PX`&zcjMVp<`KXOKuFJAJu~VOw<{f}9!JR`^{4&o19inX
zqT@6IJ;(w(n|EI`nS{!87a@}zWT=4Sa=&oo-u21y%cDL=kuA3xJiN`8f2mxfiiBRh
z<^DwOiO7ry-K{{-D}+-u^E#)-B(P((e)kIUU?K764F)7*X$HV%+9uD)wM6nj{WIQz
zWx)t1o)EWmlWUGf0u>_%JupHV!y`k!RBD&LQ`y7qu_<tViiU(dtaOI%NJ7|O`tx=q
z1PQa{X*-asnwU3U7~c-p!<Kv}7X=4M&S9LssYJvw5b95snHvLPmDJ{!;P{@pZE}Sw
zqNr3Oq)hDBEe9YXp3?_rKh8={<}n6uk<>{eH4Y&i$hnK1RcXu^>QmZ+s$Q<nX4vC{
z$Z847u=L!8&KOr;4;WPSn*>@s3@sbbb=@Y#FuLF<A-ywNJvCNZIOSz4JnmJ{F@j27
zO_49LsFq^`wrw9g(c9V0KR&;_08!=IZNY8g$(Gjgb|xpQ{O+-)+c!GCIlV9Zy6&f&
zivq*kjdY~ELBHN!9>(o&aTi4mW1heV26T0YcVXCTH{6^oojMy1lDi6LIiBt0`xj<E
zo$;$r4!sx%`O+f;Ff;+lmERNw$vCH;S6zIs3`>50H#Ma})C5H(t5WYbzAjA2AT->2
zdS0a)JWZ};(9F;_+;t)z98Wi^QOXp-J^&Sf#bN2ZtXcF7^&cM3s9++S>A2{gItI2S
zDE>rrt7CbEu+tANzvlZbyOnrcp`KvC%qdosqShSK%75R!cuZ4hLVquYtgXz;7irGV
zLO%dbdNE&8nR()?LXuV6hT=`tfcc5K(4~(JE!G=;l(RZ&4Z&Nn$agn)fut^Gbss-_
zTYDyIuyo3zbN$}o3^Nwl$p6q~Z@F-ywfFt|PD9+Y!?$3j@3;JcpD%p<v05Kw7x-(u
zvVJ7YIa9tW#CNWsa!Uk~O7-hPt_0Ugb1m9KP|LxXz+B^2>oEx5bW%FQY=uYM5!Zy{
zckR_dY{-IoC)3-lJf{7h5&2!wIOkb3yulOmX*<{6l-c@aRO%R>fLTk@U9%w_DTPtL
ziVC~BaI_V^PL<n7)eGnCcDZeqZhhV}tytNMYsTf;|HIf@N5vU6Z-Q8GCqaTskl=2i
zad!(AB)Gdn;{g)fohG;jcMsCIySuwKzMXGpX7@L<XLkO4Pxt9Q@4a=ap8M2ORk9hM
zSQ&U=DL{y%YK_0@&%1XWoQwwAieb`Afc@%D?qt7YP2^?^Ipx)&l-+2qx<mROajjG>
ztfeb`)8#9}$_(#^<ygJo5UT-fPI9)>Eq4zl6M)eqTFvZIJ3~nPZTh-O5+y&cRXYO^
zg0D+Y(tc%y3CB#gS7MsSoW&qW`j?KJ^VgiSk=fH9H9E4VwUdp4g(_2`AU+v~F$0P7
zQA4F7a$%{v`R*xOuQv2$n{%d|*Y*}Qvd-W0+8+(3G739eWA7npqnvIK<{u;Ie^{|!
z*H$CN&2W&S1>7v<d3}%G<EZQDNq4>-bJm5YSZ8o~tC-}fH}o_#*rA#=*Q<LSHZu85
zZ`FJ3sq;7>r&$~3Fxd+`3`w-SRcmFe1k)GPOc4GHA6&?`>tu@4in}9ySU?v{vl~O7
zS+kpMa^H+!f7POqMys(x$@maDT$WRG^L;mS3!*Xi7oET)hetnu5Vh$%t&@58a{HeS
zzlnZ=f0`CNZ$Dp3|7^QnO+B~T>;l$q|J3=8JyZn+*%uB+1pA%CfW_@mv+~?27Wv)U
zh58tz-{QvN(m6sqUQykaf!7WlYQjd60hNXi1est?BfxO<S5D#$YOEjU%EPaY$_fgT
ziu3(Px>oee1>S4d(&|doPp32IYvMlVP3nX6`vWM6{&R<I4^QUvbC!XpC4M&M<*f%T
zWyWq5@4tDHCA}Q7Rxb+jy%D1+Fc=QN!$GG3v)(8A4=Iz#OHn?h@>RuUF6b3k+Q`#&
zeqSqWr5<MC55AcHR=VCnBb8h0WgPXb<T}|@-0&-OJTgTbOY@qDro#*ET&9ofv!6iO
z`emXaiT--+6B$9C$A`6juyR`4jHXN&9o*J_Kxa>g<&Fk+5g!QeAYq^U3{R`MB6y%_
zHIGP8t_=9Nl9&p=dq_+$sm5v<tRslmimot)lqP>KF%S9z@PBGNr9v87Wagnvv>r3b
zi?Nh9V-RX*K@GuoR@vWrmHvr|jP0|zibVX@19@h@=xSzJRU+pNjH8ANmHtH^fq~Px
z&~GXh2I$$?$)VtyVDyfacFyUkAr_cez^7i`=XC$erTxiNsUzudmKun17qm(^LUbdG
z0hf>DeM$Gca=dNUPh}cPOAFps_rovQ{=gDZ6iHc#<!Z@2$M=$qh%c8hZP6d`+0*y2
z*D084%3`Ou%@nWz8+}u#p;Z)9&Q2#7F_y*glgx8Vlg<W*bucsl+y$Uj`xQ+I?|nrk
zgl4td!mKgX*oxp8dUG!8LQs+Wn+IkGf#y9nq<Lq=<RDGUVsaHrF=5TUPtp|@DF*e*
z#mg+zTer;_o^_mO!pXc=e<Eg4?CIl5;D~Y-kV)uei0N^dx-xuZjD)Wx)vjwzumty!
zj+{H*AQk6@K0g=D?mwP9BA{b82FG>twxe2MTl~#8^2~qZyKar`JIzEbXd}GU!<j+4
zsZm}7NpZv!8jL&ta|jW}Zh@T`D)bJeiv`Q%0r}jSRF3j=>3a4atI5)k`+W6s)?ww3
z=0|`l8}RU&x7Ax7)h~xYe$@SFA@H_S*5h?^oXg`CZmGo%$?bINC+!8U8t*rscZz_L
zIHbK~dNeNBK==TWZZ8Y<xqV36#`%3m{>$$0z|YPd&Cc&8dDdm^z#0*aMt5Ld-EV3N
z$0|yd=NAXHyMWgUYxmiRN|jaT+EPRWix@HnpZR<>wOY0_*D*34t`9^>FJ~;)3-!x4
zmnZXE4t~s^^h^6&Zi&69AG50el)nN^+_W~+nstEQ>J|Fw7^mFV!sy+kNGkMosBk*X
ziJZ@W%_V2;d_fjd608u@hGY5E-CEWX`xiltmsb!eTC(`CHBD8}i|4nYfvuOqXvf(?
z)Oz{s!pGCe5t5Uqge*3_;sW{B**~6?g`aDW!?lGpFv$@{)@U6K<|C*Lvo=J!_~xp4
z<&K2hO&NHOZ_Vu!n*R7XW<6}#@ln^j)|_AzBtIYFUMnQk(V@!gw$ZhCkZ6y{|N1*Q
zj#@R32}f2lj_xc|)6jK>lro-U?H~-g_K7KI;D0bzz-2VTB&KoPHf1>Aa6cdujI|9y
zJJ4*K*n>zkvwc)crOIgRq9G2raK<(>A}4D_isa5X9trPlUgng7P=HCuryY<r!%l*O
zX$iitH(14rNf?)Z6*X;)OXxl=+&P4;pi?%jvy35y4<sYM_zC2Z)<3;~>aTf<uq1Fg
ztXVm8gYl}i6++(wc~|dYO?DG+fX?6$K{H<-b^alX!<jLe&Tz$L=`sWl?2+cvJ;;wr
zy?ytadg4NX9=fQH5|C@WAo8ES7TJ8!7b&S~hX<4O@T-o8B{f{cJPe=h@!AIwz(WL;
z06JB4#odh<&=QAoF2;d$6+<<te78Pub5Nsiy5krUp_2;QkB}SWwD0YDS=y$f<<o$J
zgAG(>f)n(R!pc2eZY*G|e8Eb;o3df|(W=yuzF)cb@P@?E9f15h!=eQ^Ita9oPkJ{{
zlLEQ`)GE3yDIK@%<Y?<k?o6W@jRA9B(Hkz~fT**_7uJtSPs{5sAOsW90OG~<*DL9#
zwqB~c<H?z7ai7Q2^EVmc*F}dq*(=42#;NJ?4tjs#?U!cz=F1~(|6&9Lz#uZ$k)>V#
z!OPw;X}b{m2hC{<mCdO6i!0vC-QuJB6Io}}`3kJ=EOSix13);o<tem%VbSNO?RIvA
zj~Vswxl599;)J&+?>RlJ&BuQa6=h2{=I0Xs*#t^#?N{9u3>~*WSsm_MJdFI=!#LKs
z(OGR(JzcR>f9UN}`J6ogo%!pA;5mIil+sCzmmzqWtSzKja5QSDD!zyhX#QLh4bO5b
zs8y9R(bQ-L%0PP?g3aC1DAzcL4yvm-J57k!CMG^AJ~|bwqxD)-HH@6q(=E}tL74sX
zGxIp@^ifp_&78Jg!!Jj$2|E@BMsQfsK0A+#o?^_|J;;W1%x{|~#{48lF>3=rx>U#V
zO#zASVVIa;>ZryJGd~Vm3?-HVOC@$w!mJSC&nVX@u+(kW8X;icP&3*0?P~*jK_Ji9
zv%-B|iFtyNrRETe)2iR0bI34sDPIJ20uZS9=AAw+jxhZFKrU#S$3_b#BtC={j^CNH
zU+C_+K4}O<m$w<=Y|^a{1u=H90SrW;Rn=r=F`6PjT_1ccgJG>RxcloFK;Mx%P_}PR
zU@-crd1P5MyJ>3FZ;AMgaZWVRDd6O2)PYr0PHmz6q?~11yA%Zc9k!8p&R>=+eXF4L
zMu?^1V;g3tnpEQH4dY)?&hkfF@KO8Mc*rfRt(%)-rlWHhDX_8mE|4Ld9@!cF8H(41
zr!uJw;W?b<IM$z6^`ugK_q-qHgZ-6IFX$Da(Hk}pD4mmA6aV@eBb`79jv<wNJ1=^Z
z#p{n!I+_kO8`hevJck5-J$x(^7ME7~g=C~}f%ndTJS(f!y$?>1e{oSmU5|KMiVc<5
zuW`*)v0Uiip@0n*S+i0vK6!h!&5mp;v7i08^wQ^$YPRWpAAhHtP1(ACM}B$iHd&9q
zg5ld<u`l9aj&}dZ_OZu8WaC042TDB^+mGt<E@ZNQvDqK^`6pYu`1Wpja3@D@%WJl)
z)==L6l@Xk*`8T7=&?~L1F<)hTUQyWWN@2No(Z|pKYmDV0V;!$2t2V^-Hwm^3F<hIh
zPoH|@g>9;(xt=@7gu$Y>V6?Pc|FsR}z%!BPhd#qw@44FDM(u+70t9`rWpr{RtK6Ph
zFTTQjGtXD?+hLvAZECD>4Eg-3<!|>{8;ysp#x_3#j;k5aRq#3ZIOZB1xeq=PCfjVG
zh<Tjr=rEb5VfZ{){G0Ed!nyfL)wG^f7W!~eoxqogS!bA=ju0I|tt1i$3wLcDYc$S3
zi^D!_S6-!7maS*G%9$5ct+2Y~Sq86NHN283u2<k0z;<y|=X~_{h$yT&foU1L`3;1>
z@KxmAaU-ei)ji1wX$m`zn*5>UfuzBOgPPgl?%t7rWs6|6pEqhqh|h)xr<W=~hM1!I
z^>iD%>SqBSWz2F8Z@m5pOr<HLr{~MR6gCNY?C)N=()$cp7&~XwqoxzKO|3FUSMMp4
zY|S|YR3>VKvWFaQ)4Q?@Q~}DgH$|M>ezP(~a}<J5TZ5usDrAT}J7tv%lY_+5a{|_6
zXwtRiZm!26Io5OB<NfirRBK~-=AVwu>l)t-8}uImA|e#b$Rn>tWcrSSv#!Sk9in;-
zQVw1ZLml4Br(dY&S0Eneb3g3g?1xk0E_We;2G966yFwyo?N6AxjnDA9jn2`}ESWsJ
z5}+R)FE4L}59BPr>VL?IP*50Q4{X6GZO*2EH;U6ZW8A;_zOxhFH(qjo)L8P`#n5Op
z{$PehN;S;Y7j9!?JPU=?2nY*@U4f}J!m9+qxflJ%#<#t4qg3NwS;lip4=?^H8)X-l
zkr`X(e!;wOgL3buU9;}{qY745w7E;-3C<m4c9e~gF<=9~O27nW6$uY>YMb-@PL)jX
zmwLbBO3KW{mFV#M*M6tmZj6ECtsX)CPATiE2u9LmDUOc5bYXr3_f_b{Eaw~DT%yNK
z$M{mo_M$-27xU7XKNVhdeqr|;5tWg6>hC{?eSw>+90ho|$1VRtWZ#(oy5D*yYZRs$
z*TQ$hOm0jxG~OJ->YK)7v((~MS54)OV`Lfz;OcPk|B5#mjN^RKSjV;GfP`eMvTQ%a
zQo~=2bI2Kn;x>Zn?WOMe`r&(JmY=i$Ad+FL2gZzzDq!)G<Bwlcj@>uia?JA4I^+#8
zE}gbS3VV~`Oo9N{$1i?FQq>aR7=VenX@u*Lk?r8Ti5VI<d0vxk+5A+5V$ObND(0Do
zZ^QiT3n0$KZJ`=P-!?NYDo&S^w#d*lNU0nf(J*@QG^Q`MRFN<+IgT#s$5S4Up%NUl
z#_p!i38!c3#z|&mMHY`o)E2s_*w~i1fzE5nMOcE4+@$Qj$g5A_^}%w|y4{`k(}zXb
z3VBlKMGO`O658=7C`x<#hMqsFG&G>3cR-i4bdG*&gX=oTk2R>lcJ;H*sse~T;qHXt
z6N1Lu<v86zUy4D|yn%0~_iZE(5O}Z&wrXkA0*}8vxmz#u+;R|(>gcG%D#Ih);MM&7
z3-`Fc{wlHB>fvUaigD8g^q4f$TA{hK0>fjyMpQ}Y{rgK14me3ryR7+c;@fSvw#7@s
z>7VTGeg9>0zZCa12>*PjnEBIPwKp_O!@)@;DSwf?&7ca?8cS9E7n|}XX3qD_u-eU(
zTyTQ~Q(-k;Q;<mfyZh9=_Wn9*IapEF>bDYFz2J9P^hbWd#4nJ$CC+2d5v~=_6#k%W
ziH2N<2#3MF+lH`Nq0xG$NT-yn)_MRtL~rZMASylb<2k{;DD<eE#I}Osq%pWl_GK;V
z<X!ppqrzvO1F_G1_bh8RHowOE<!dBs-6!G}>mSktxyfIHkL2eC`E`Wou7<I}%}^*_
zKWvyYwBOOYCs|8zr3As;jc)(*=_GIuTS_E_vIjd)=vyvOp_eimKui;Bgf+kFYhy1>
z)D4^UV4O@JqO~%n_8rUXLub`B%z5y3Q5hmx52nW)%%@CSbLTz%Hk*XQjq&Glk|V8|
z!39gw+fwjiZ|KT+t^0}r<A{f!Lw0>a0-fE_bBdEQ`CUCuR!x5HS#@5XC^-^>=?WXX
z8K<@FAeAiIf-tz|floFz@Zr-1MGJbT>gS7a!dODPLPa=K>~OgFferM>CX{WHq$!Xt
z=+MPC*)T@g7uqq23ykXZ`~*XsgC#}L9JCPxm>mD%{R;k#P09ZB&TAdXrV*-T?9YWX
zefK8pzhxKTFgW1!UdfhV0xK8<ouWV<HIb`K*n7<Qzp{TlzPvqjLWJ)RBYB+45_6<m
zMMiq~XOol>FeFX2Yu>*XFK-Vfqs9cb-?!YqhLN1Y8EjD@c#x3%#>R%oAn#lfckF|F
zLKB>}-L$T7f4XtVpQY^^#Ji7_KMc)xDr3F9D64_jzN|mNvVQuGH>PSB+R(`LwrqH2
zoy?WO8{T<zrQ8=Jh=$8kYX4P+0_vvCk>3Mf@fUsao`3tRzC2>s-w^%yk?1ir7~+?W
zDUZ>1pIjJeyf%`aB96`gJ#<iDSX`QW<&!6Z?v3iu!a^mZTB=Vnx+LmxS4GKQIt993
zbDrH(d>vuQl7*{b|COxCAxMj0@{svwy*ijf&_jtK$KGV84qg;_uP}sxtAPU!BdN7`
z3niPq#Va}?6PkDVKvkvwzI|d_fSAGbR%q>Z2c6ePOKbcUPqY1!b9zjajLHA2>uFir
zm+!yxDwe;jCoxb*aI~UF9F@qm6)DdOdh~nWxm9MR|A<K|SXiJ{^aA^5ID_>oXJg6x
zk-NH21sD5}#_YCcq(FUA7AF)iMqf@(t{Plr`J28FVPD=X@z>Rt&QRK!pQ2+60fdpU
z4`AME+9%~<;3Ha{@j96(^!ow3CdQk(9Uf?-3%IB3bhYk}<O~9$5&pOmvfmq{rw2^A
z74lm0Edw@rLVT(Ctt&6s;hkv)D=M&ewyj-L*-@*fL>p9XAkDemcqWa-1TW8&gY!tF
z*a0k?wa-$PrcgW>`Hm~Lw|Ov?oJU)ygJgD>ZRYZ?-*fF_?w6V#LNiD9+&;NY_D71|
z==tIA3B-aaeTZdPzzz22uRLr!{?^opVKvxJn7TcoVy3}FMMNH4O0jHFReDmJO5@U=
zN3vLdM6LhhLBlBn76tvTcn$BD#rgkvR8oW*PuWxl;7de)H>nKpC91I`ImNy^Tia!y
znZloe8{wNWVDyX86aI<J!p;Lh=d0l(sP&bJ=DeLhip|E-aH=@&XXm@gtB+4qbQ6dO
zm~;rJEbZZ_05?ij&Dy9V2-cI6k+_@UtV3s+<X~+Wdi1RLC+PoDltT7RcE-Jji3HP~
zGZsz8)*X-t&9R6-iVkwxSg&QA9$~aKuKdyKJUP;}l+mWDer&(DT23R7@mN0hk8q9=
zOy^)P;}HfG;cI>-9yeN;+1gP0ItT+MK!pu-rI=7@_%TG@$pdZKmMqDb`e-pke*lTo
z+>7oEEM0F;_*i-uULN|3)OYkLw#Hk@x#lHJFpU&RRmwf^SYER@`&#R-vqL%sW5oSC
zYpc@N4M3^)3s_-nO_m0eepmUGayN3NQK%l>1@c7$C%}YwaHqdJ8s7=%VmKt^4&^Q-
zy=aE(G-v0h#2MGcYUSq>Ni1#)Hca~5Zr$p9mEW%rt%L?w-r0~e&R_H(#k}}3{XA&S
z8TV|Q$NU%)bC|e3YFZ8am?+{2!-b5?2iWDsKqRqKPvg<z4+V*%1y#l!4o}x0P)mT8
zQpGBdEUja*q)xa^0vjw(mS`K;J=GfHu&incAz%KKHyn6oOrVj`Bn`epNu@cSu4b$N
z@83v*CE<A3+fg7KSRLrOTBol30*ats`yEK}S}|52Y4voE7~%8{PLQA#98Wj~6c}Lw
z5!O6iXkYp=qJq=-2r~WMhXTj5Iw|JX5-hI&lQx6qX0_)o2s$4P!3$CMgAb2do){PJ
z8Q3p^+TD2U))d-(ZWVG3+RaHT3f*K+e`1)mkx;+J-W2*Vvf|vHo^Ni>LsNcfH;o;a
z?<)G85t5!~rd?E?PNATk?*wOK(F4O>D!`~4c6sEF{thcn#xL+IsZCHVU;aM?DVFoQ
zEwhR@8U*!CbCrcm^A{0V=^Q?;MI*EZmX-_65!Mftiy>+5$$z@fyi&S39bM?6^Nx6_
zkjRo_hlvu}iezqEYfWk)RjztxlY6H}=59zq0bPC+DxDUjnqS<xXU`3`n`-%G;{C_;
z6XW!Dmef9!nm-3wq)2hfyTm-1+wv&&_OL9i7!$0B`n;UERc|P*CR^?)xjdb6X{4y$
zmcK>xx>y;SpK6Rh3u%tF^;}w*?y9|}brzh&PwVT^BOn9>AP{VzG>+Ns^!JU{ex5{3
z4*|H1(d`A%!+qG2;q{HF%$5`^8!kX2&l9{WV9$E|*e+&6dUSw5ZSzgNBlxpdCxfE+
z(yb#8q(<{CNa*-5%WgO+^H<H)!CyZ-9kN#w^r}Hbm~t3XDbAVPn8kwe3vCW?(euC$
zRSM1;&Dfitgfcvj8Vy(CNZuc`=;!{Cn6=s*?ez7CPu`g%19hIXdw(&b+*L{qk7Cg?
zAj%M<#;}y5AoSlq2QMLspdaw^;INv3_psO|w?saZXk3|o3-p5x{J^iYi0D6+45<u4
z*JCAXG^IHVR}3ytqDCd#7m(Wz<tdvI0Jgz9&^_G1md?q^2_W-&w&ERXv>4kGa;L>h
zwz-~0G!WQowqku!<g(tu`EOu}Sv&{+JTDMv{n^WlNU<o}nJS7j>jcJoYj8hN!g*xj
zaIW5_yn_34mVkRKu&$~T3)lVt`-GIAs^gm!w_x4t<Gp{sMl{(6KQ!Zj5IK=9DwS4G
zhSRpQuVF~$$F9#{V4^C?Izd_b{b;G5TT5PW9`AWRUamL&J19`oc-;^#3A`VlOysmj
zM^f*%sh?Z{H77K!E9EIXEyj6Vp<Hf^)lL_0)I>1&6!YT6SfC}X;<RtTY7)w;ix$0b
z(N(=eKnQ#!9WKs<7ffx=WAK^K(Qxdq{OL&^v#0j5*R0XXf~sp?cbwuZTiY^vZS1ox
zVsGwr!+{H@ppCDj{<X32e!0Z!ZQRK_t==WFhBuB^W%dT7a{F{I@Dafsl?8%kc8e;i
zfh0%IhXAb&aq5u1rrg-^;B-%&vWM=3qf>ew2AMC-;&DjU!8aswVVS{K=m>_-6@PNV
zv_`pH@2*P&zdS__M)EMAvOe$s9dniUaEQD_x1V1f*!w!!&EMcAZp`g^j(ZM>UuHQ0
z*Sb4<@-WazkAK`e;`OP8GJ=Hgx}P$?pYDCWsM>bXtI2^;Q)+p`u*401M={g|_~MR5
z$QXJYN?_vQ(~m4{yVGq%A(O1)HUQu=Hh0Drx8oWfAbPh{2&U@*N6*5O@+sx6AK1a<
zd~@CY@tfzT!WkY<YB6*+z0OH(bFALei;z2d-VwZJNaYe*2`#K3<>tyswMjJQ^#D8D
z9qoB_FuM+<{CB*p-d{37?C+<MH)V?E&~cwK>{0woQbpWs%sR+t`S0c^xS$b<j|7{L
z(;5NeU_IsQ9}WknihYW)5(|AXC=Jp$9paSdg%+TjKIlNOc9%tdWgA$586O|`a=3%1
z2l%wc9x4Wnt|I*Wi)~@E@4Zjf#|5|w4V*DvHd+mf5+H3y)2#%|hSh41{tp>~q!_5`
zN&*HDRWgC55Wlw!P|kv>_u=m04J0A^kIOg>LP9K8Y{uZ&&h;37Fqtoe-3qL@=0%_{
zEBtnT&Uq?3Q>cgoyy*TCBvh#wLv~SH!*Q5i#)6l9fdjpR_u>oyj0ty1_~WeCyr4se
z8_#p}L2n=HA0AVXmG%&`7u82OE$?5q8rl1UA_~>Mo)1vsAEQH=$nW7IFWEvGmyKa2
z)U4Ls<yqd@`s$qwx^uJ*G{pJU;9Q7LW8Y3;sgZx?mCu=nzP4D!1t%!pn+G(Uel-pV
z9$Fl0Nh(vo6a00z@=E>r^={sasF>Q5znoO#4lJyGI(2Yry`XZ_oS`WJWt%E~iI5_h
zLxlkVe44<ZOlp?scec1m<_+iLu;7lVOd-e!A@kj=Xb!!_g2vE^irDS0UWxsxLhG{*
z4K&qk=1zS2@u*!#&~jww)8<EcWH`-Ef8}z)^8?ntBL>EW<Nbnjwb3B|z7`kS6$Oko
zf92Dod6QGsPr)@$KT<wZeZkDbecqfKj9E8v`+girT33R%QY4-+_hWb{mM0X8e~P+n
zJ#Q-AvRP?liD<cmyq4H+qRWZZn~#9!56faZihevQAM$chRo)Ge^cPd<=ks%IMHdgL
z+AB7j{h$s!FQ$|7M%PkhIGl0`uvLH8RL+7ir6h~q4|e{3Dna*gM54;w6r9DHqYtfS
zj>ZBJp#V;UykEyFd(&m4h=zGOP9It)dnE`X#`jM`VQA*I8%04gpG^Er<TCpO0faG=
z7AGGv15i0j4GvWJ#|-)?3IIg)+aAuTbEKSo^Fx6Ks#Ne&lSdYMiAY=&cmgclwCX=J
zak3_hCJ3ph$vC2Hk%KTfSulMI_<w9DrNd%w{UiUx31COyAd4}b(pviW{A==a3Qzh2
z4j(}tlbQ%c%zg{Uw@KJ&;ue0_kh4}lW?|^GGmh`3uz@#J7cb|&QHA5FvdasT!F3kO
z48YrrHwLqI)r4R7li4Zp4{ME`N4hN@=W<$pd$?K-<y9{GXWEVyD+_T94;{c|g2UN)
zi-~^4z0ooK=g=Ew&|7Hu=w{TajVCLd@Fwq8W9M@<Lf-S83MLeZP$B%XZ%TLnu8ifw
zT%lhV;=T&uUxNgbf9GqWCRhs3<nT)C$<?d8*A-)jp6Fu8vG|Dsi;KukB)L34UVpQ<
z$-9y4>jd)fIQKj49gs(Za(qqXqHy&FCTnGCd`yY~Q^)CW-7%UW-5Q0m>Fgz%Myve;
zl}`=l>UlsV&D-B=db;n1@}0to@Nm#3DnnN5GN>ma27R3lwraL(lZL-ns2_Cuprm3E
zzxEaVtX;N=Cq(h;Xwg4j*!{(cSeT8Lb`2tQ-n8ub&|t}p>@Ul60!)}S^Q1~C(;9Ed
zNa0>RK1y{;m~DO7m9t3^0=-`dj6L#r1rN&U82S9_#Ae=1ji==zOGm!YB8;~8jo4it
zG2=A}tHe1-Fg;Yk2RDrtj5DIO?=I`Bi^e!Pf|a4<BJrRGKz=+eDN9to{l#7GS8KK6
z#VDbkgm7g2^F6b?kPUdj*feMk3ORirM+PZjiU?e#VtCyTZf|sQ@<$i8pd(U@EqWb}
zVo9QuA-4L|*m4BJ8A~Qe0VR<kE9t~w1uK#@fWIj#r)W7%bstHpWgASu8~6mFp0tqx
zPLq+d05E($s0yH4zT@XV*g$Ak)uTZ&G_KdOOkCeGh4V@7ADV<ezW%M~MhHYcAzUpk
zV!YH>`wxEtb*NRH$eDgegEuoKSSlWC_dUvPZnv_5S$;sDX%}UH#I{;F`Pp@-GxVDi
zTyUxE_m2_E6O+=ktPIq=S|}%Z4^it{hMt)z;<nGCe1T@5vQ+k)q3f8*xHbzBV>$Gb
z_ZNkeSSvmjLlml14*x_V76?_FK2L8iZdZjzj?dm$F<ta!{=!F&_ir@J%kF&J1pQ>#
z#p~4xL*#y3h!XPVrvbm+H**OM$1W(Vy#+oaf2n`!i}7-aZEJ#rq!dh~3Ez@@e(g`$
zcKr>_g(xC;(hf^2rRivR4hDaDI^krHkW^AR9T_+m`9ZKUTpPT_N-=v~W0zhdaM?Ui
zi>6i(dS$1<x&NxIwWi9PTHiy0(dGn%E)5V`wY`MwN^uxTTCxp@T2>^I6b~j@_uWy=
zs6rExv-J1e71S`$vJ-?3cf@R)$9!V|WeQQ@aWZZE<n^s55z#mJ$ehR5WXBtab7-u)
zNu56Ubi%aK-hF79kTot}qxkC}>UV>Ef7q`fHGX7#%Z$Ma#blnfFe#azJ2IWTp}ie^
zohVB57?1Cjt<*OM)DNq@3(x{FBP5v`?Is}zYlIbf1fQJv|0wS)0DOG&$CF11FRZG<
zXVTgEUsk?9n&w9v#57OtFL%*oW5R4M)2Nkm)NLEi><!CqT$`ej2NPZnQbgM2D*qx(
zW$*twodk7KEwLER|C|(5btii=@<aWeGsQqg91&wD1#Mfn!Y*Q2X1%WHRa85k`QMFT
zBaeC_Pny^JYO-^ZxAX2@I-ei<2mDmGI8BZtZL-T@P-j}9&<mEBBll_vF_IT($LL(E
z(-RFk>*LpzXRxL4_lEV71mzrmVQ1kiugCYDjL_o_8z_YxP}|tEezqA^Hcn%Ekev!;
zHsa0F1fCz13<_yqb0w+l{+SRj!qD3ljH+2(e$>d)rc3Fkl2D5wtD%$GYZJ80Ju)9I
zx3)KX{(ZCL?2q4FMkuVGYRT0uJvzRd-_YEIS&MAog~6QbBna<HCyqbenBMazb6hQh
z6?f8Dq4(2EH9G>e$z5f&ub}O%mv7e=XI%9(dbh0}m$=p+qJ_)mq1@p<y%rXfSht~q
z0rSLne52z>LT4KmeY7RwS}ODz-1tO#G7Z<_-KrWfv}jPDlC8~&X3L_lZ#;%JK`b!h
zys3k;lEYD5G<4LyT(X3wk-mYs+zTvMi$7`qThOZ`NN_`{teuR(@tt+=n~?*4mJh5@
zEbI&0;(}esN8;S-2+YI3d=D{ihX7UqrJdNY7(`53v?MERQZ{_e1u8C;&vuBsJ=V*%
zpaVx&Ir80HbyEqu*b=bxO}LP4ln}tWask#@sRkSk#h;>9`B={a24C~G_h>osY1M#x
z+Kx!CXi6&twID%?Q5&etpA_Zs_vq1P&=Lw+aN;3+QgwpMK#%|PPg|E0391e)p2K@7
za1nTMf`}-0Ji+8~XL;Kes^b~*a-c!~^q-p}Mb$a-2*ikAkuP_>gR?LVUf4z(vm$x@
zB&&0!ywQ7QA)d=7s`nh4EOXfd%6#~c^d+x|5rd2?z)(ct#a*-agB&#LiwMV887GzO
zY5|gKKw!L8Oxa`l61z_}_OQ$Nb&yOO${15We?rvFsO_wOsy?5CGl({aKj)o@@<&6&
zJdi(KuD7w{7G0x+D&f4>NRbb!{bf$K%&vHhzmAh7_Q_Wd#w#NIP0hK^k*3J>i6Z}d
zx^F0Vn=!gP4wYjTHoU!nqVS4Jihkz?9nCr9JVs?O<k{)1O|&D8?;I!6+KHZke|By9
zopGP6O1LejVBgIR9&t5Irt$I7-nP!GEdmo(HwQt_hKZa<sQ<AWc^u1%Yx^xmVcaCv
ztOw>n6BoSlJks%)E&GP%Injtk^r)6xq3=0Pz8vsk-yX2L{O6KRExu(pd?$N3>aqAO
zIkgI26#;sUllGVpe}bnrw<Ux%ze7A0Ctlep$5Qes{*b}U*iyBWRw~^&<<dPELP9g3
zwK$bS9y+5!=td<CX8a{u=1L`4nrnCw*q#gTUVO2$l1}^eq3IWyt1*SlHy$5kqVGSc
zMm>|bZZCgE&7)p`&2Ge#y88*u%+k?AFUaN9eA$&Ij+-jl?N5gGp-t5{d3)4>-U>Nz
zW-cK@QgQFTC>WYnA|+HR%TmhTI2lQwhO9oH*BqLA4d2uH`-6Z?rKKgA1m$b@y=54x
zk{>P~FP{+uqq0w16TAN5YhMy%Q!{hyb77@-BzhanWMYqm*j;;vU{aSIa1KK;G8Ck|
zhedEkydL3y2CAuHzCogigv4F}3_R}y;oy)2;nGevMza#zXtuine~kP^HWETaUdFOm
zs^D8|!V3Il8#K1Z>FIM$M4yB3U!l?%5;0`cy3LegNad#zKlwTu;)9Iz=4o87K-zzL
z+pfbb=NQtj0f7A8FV)P0Iu4|-QCB~&NtFDk_25u)(a79$`&xPBqGN)fOnRR@sddnZ
z45)szib$|RVdD4%%k{|@Sz0E`C7(v{yZq<0uMN|z5+`?!4RnL5?Mk4f46({2X4N7I
zA)bL8sZU3ut1^)>@9f0NL{VY>*v%Cdv*;%qJSaqOZ%=<Zig`>`s)`8WQ#Jfnh`fVk
z0@|B&`U%I=z&dF_lzEl50tB@=S?igG@#3FxEl4*1=B)KI-sZBkcGtZEy5A;WmY-!6
zU})&9LdBC-{4}DLA~|k2A~5*-jAMG4os|DB-~W;-|KTwIE%Lv|e(Yj>Lgqolk4!)C
z)u5j^8ew0gnC6Yx4jpB72+?4TAP3I{e+ZPiU)Y4D3=iDdSJi1zyYI#sf1}bJSrf@X
z#*;b}NAGK(4#>F~ZiAwuCHH-T%*E5JzxdQKtq>5-DE~)NW@rlqmOSt|9#9puO>j4W
zUq4vt$Rj6c+h}s}@Y@jj`Wy15)Ju^JOXeqCGHQpax<vSJ{AyinN#wrt5$seWbGEI&
z-EMMeSirYBX;fHS7vu9iQ`ESXtQ;!`7F6PNbFDlkxmS`re8A6NWE~{Xd@iu!X9?G(
zI&Do9m4tgEB)`VweE^Eh<txa?CEJ3`&k~dIG-r_!tk`Lh|FLsZ5h9Wwk{O3{w*KB6
zp-laYRsYjE1>*(k8mP^DayQ;V7h>b|$i#qV7Wg7@iq}a-R|b#5Kdo%}2$1zpg#0Eq
zLU45tN-OK?uj2hC)Gu)TgO_U))3fiC=|e}MQ4Ahmzu8`}TjJAGjgj_e*`1#$`Vu0z
z_p?1&_V;qt(cXn6Ci;wWyutcY8$9}-?r(`;nP!io`n!18>#M1Q+3^0}5JequJ5x+8
zM91rmpuUTBju-mYRK9)ff^B9BgO;`V-RnKyShaFwWDFRA^T*uMa8fF!jsT|O%K5RX
zuPBM0`RLX0<z~C?3cHK9$o3!}Q5%9l|9<~*(+J-ro$Z803>KspkdgQ2&LlZ*!v^u-
z5MDK;aw2E&5Z+zvZ}SV8Bj^dBof+Sud<Q|U<ksMbs6@0j?IgEX7o>i%#$%l?dejb3
z4eNkhzR#gR%B7l65dR3!BU$Mtexs~P2&KlBKtuqTBRG;-d^J~5^*z6gS^Sm50=;Sc
zcZ>XQ3lE{8no!Y{T%;a32^dkzqR(p@rJEcvQvWAvfT?wBiHfT>zZZVEAao(z?G6kO
z*jv;kP^hxg4VzxYdY{S{a_Jo`B^mBQrsQHjLGex`b^<;;UztNb*x-Uuh@R1669z^E
zMpi;pV{&dth^s2~-k9qf*B=*uY?P=?3*A>R1}z~4N0K45y$?uMipNE)vr3elV3Z;s
z#(DsuLe?GKAmc{I51B*shfF1!vq-?yVppJQUyV-3ma(%*n6`~(8HO>hDLYn+FMu>)
zO4mdpb=+b>J#xMlo{Meaf-<Glh|!J%(SD}d$hJ!6kOGY=1Sjn%K^1%=MILWl;T4jS
zv^^YZ@VY-O^;q8i7b;X?39X#AIWdVdE;^EIMC|j;oHgh}YAE8Yr*ATWcJV@<vXYM_
z{pVX1kc|+P{p_U{g7;1S3KsuM%Kw*RPr?MvT;0)r7SN8waEIm^oS?aerh9Di?}TgJ
zzhE*K<9oa9hPF2Lq~`aN3ZmLK#Z0pH%+15BOy0aXKzY2tt&lK-?1#X7?^us<2kFi%
z*B?<Iw9}IN`8LzWtB3%~pp3z-0}SE6@Wz#9T#r<XD`_<9%OT3A1bzta0qW3O&`PiD
zK^8!eCn900&)LWbyn&=1QiuXT3#^yCm3r)rCiFM0j2un1frwhLV*?0H?WWjKnn@cQ
znzsj@2OnqfGr%`}Pnjh2yZJm6^DVAUnoF4gc^fdpdJj!2bs9vCC~eN5XnaH=;t+52
z^ZHS}-QkdK-M*5fX3GpxGxS_{1&UE*&Lg2d<naElR`)-QuuC)&MzGB+6mE-nPL@R!
zkqq~$cr<!4&k1-!lj4Z<SWc4E4VQ|;$&?HDy_*xd&HL(6Ifju<W*NQHcUt$WkFUxI
zi?YBY>YE4*<rLCK8@$I<x-~lV=eQiS8azj}bUxv~vT>vbE)bEzQ*qe{C%-%`8pi-?
zO>$l_Ze+!N5IgD08AL+%Tl6uW-?9am7Fg}{3pI|QgxkdVQIh<i7xnwaE+Mc3BUIxQ
z23uDun+yLeX33Wy#h1Nxk^tPd$oSZ+5b>L?7DbOqTDJy&bfu(3G2-n1Cg}o@L#`iT
zg2*+H{;O&H7fa#O#@W~iOlvf{`x^IsV2%3X*RsxM$A;@{>Mhs%APiZbTy6A?5G2;8
z0kcAc)`dlO5HyJbiA1qQ38umHQU)aiV?s$wlsiTCmPnFXaCEd3{uRgLk0`q;pVFpN
z^}2u;7baqJ2gvqJ8W~}rC@Nw&5r;%|*s&CGzs+fwh)pH#5dhE?r77oc4J;hL6s4!*
z<@|YE`0g=NEY8Bbl3uCmce9YYXWMh-8W}k<&(oyD<H{Q68kykbd2lL0&qPBi`azdb
zgXH~!lh4`(J6l3ZRX!Oe9Gzg3wr0OoKh-*xk>w?{v+5Tqp)r+W@c5w#e<<@KAlz;P
zeBUi%(P2U#VKB}!nUEdxZ}FyC?YwP~)&2zrs2Y~95)0-))a<_m(*G%5KznBAr{SJ#
z&hcQV6jSRvAHztiz(jj?jwcqV#ySBV>oSrF+b?&B19RMNwgPzr@vCG(w{2i61;fH6
zQ_@!`fWOkwVUl2G<DaKQb1#T5F&P%QpnDfJpq|FkNL^F&TgDOB?-hoNFf1>oA8Mbw
z2^1m3?|Z|etSzWI4I6VM!+t7C2#k1cH~q5J-d!~9k0292zDH@F=zlU2w+7lb#bFv5
zA;{{X8!jVdAqoZ*nyB#1)GJ;Wk4NIsED`LQGtok5y@mKomBASU4qW;BwUXUgH^rF$
zS%UxRUH{j|4I}Zc5ql%v4he$DTV17*$&7`<+rq~X#B5h3IZ*1k4b)4-Q{Y)^xaW=(
z{-?}ARw;RC=9@RO`BI@*9<U-HP#AHx$Sco#vRn2L_d5CJ(=j(}LMoH}l(#wu4oj^H
zpZD%G2?F$|GvZf$L1~nAtQ<-BHPcB@ZGip&;=gnLUvbX=`nZ8DA!5Nm5i?|-qq=&$
zordW+N_Y3Ob`8YPjgccNXf7dfGg#BC{*n4)Pnhh74as-_PNCaLHMPD}%sSm;E&%MX
z3-JyaO4zpi-bxy5!}-pE$;g!H3o+$#D()f*Ph@X=A0+83h0%|n4YI4Qa0p2>0^hQh
zNkQ~Khn;}Qh7dNMXXsuMe3&|Wr0R+Cn+(g<K3`IK7qb~*yMail>6N>9*po`7yJ-Q8
zW%7+*bP`;Yis1)PXtdAerrJ&x=BB4G)JWu$hQ-<GPTeo&3VBQw0c8FWeE-GW|9?IP
zzk_wk8Q!CH?0}x>6T+DD5@V8M=!qu0Z+&>r+8Q3qCIZzxOJrn3P0o-B@|04s9hLvI
zWF;JF8=$BKW16OKz=R={uNrN0*lz8(GsspKp;}@qT)12esoA<u6EI3C;07}BIAIYi
z?)M?SPh?v%33Cfia}p{g;4mZNFQcznUI0PG$_T!r&c?YtwR)y7DxrU)=A8m#KBbCB
zM*579$!sJ5y=|jgmSRR7(Lo%gFBCOEv9oe<Bs$+1K0Kb*dE7?ISW~vZcM~?|6UAx2
zQZ63vN=YIrPpaW@#KIMB%M=&H2adJ@J)wZS@i;nPa*?9#+4cyPuvG}??7jI}KJg}n
z@c+jB|99hoULCr;m;({X@SJIc8x{Kpvu2RI5ik?6RzlaCR-$aDLzRzj8@W2jZmdYJ
zF0f>mV|#>RRzTJ8={wLau-N+S{8Hxm;1s)1SRX}4syVu#1u|YGPJ0bAiElFb1ZpC|
zPQ4J7U8CS624CEe00kwoilLk3c&q%r3sFPdPGJLav<zQ?I$fS>-fCsRN&83B8C=6l
zE7fGOaYX86;ta<0pbhHB=3dxOveAZRIW;#22~OTX#RKj;%8Ml1j5w={z|~hi#UzGu
zKpry?^#5cF{|UkVN38qrFZ=(p6-ODWoLX{R7xb_94YIQqOKgl{-?lGTxcZj0v!}!w
zlJTxJfYwOgo&iELmO^o?nxOSU-}G7<I{9TT<;2tZmzpX0HB>?_I|nZJgKMi<T1<VK
zC=@5$^)U_Kq4Rw|9f%OWEN~^ZIFI2Y;raAa9sTj8a{lF^+P$m{o2<LK?`Lq4D1R1%
z-Ed92U|FeZtIr*mHLq>4U84C^NSoA?nDqb7_x_Kw?)!|Ks)Lf+3<DN8mKNpUG=WvJ
zAF*fCr<E}>7h`Lu+)?JdhJ~9z;^%-DABwY`wy^q*=$Z{cQFLrorc-jC2)8{G*ATlc
z@f+wCE@G`wKSApJ&dHTaI3lH$SVks@s7z+bW>7tEymfMMK-CtqbfDSszIiDnm9s>)
zO8-XkaTb%;fQ+Qd#qEOcZU?}h9aOYM^Lb>U3+aoQ!ncMR6=@vzbkTw-i{)N?Wm@g{
z=$NCbb)>=xr$g-t<D1f~L4F!(Uln+2$&7lf<u5*$W-t;tCf>6}{P%?I_*w;$J_71X
zL4s_Lt2(m`b|C9u!Khp1^w^AeRxZT<11A6lLgG21cUIq#c+Z86Ngm^Bg{+j{+t6kn
z(gp=b9`>Qw-+zt6Fx+56QuOVYQ1>~pbnK}@X@pLF9A@`9Axyg%5wG2ZCm1^DLB|@*
zg-h0{wJimYccVpAV@1&nvpS*Mi`dtt)u1@DF{47$llPIZ_M@lO)NMl+E?H@~>n34I
z#6RML5y7%E4bW-@7vCc<Tf$FR5{^F*X6XWccQ2dJy#le_*wO7G1_LnJf;}U%-kOCR
zAVx+7+*Y+<Bp!;sQtU2QKKEah(du^#>?C{YL}{>KoJb|m27JxI69tVW?k2rR<0M^Z
ztr)*~=I}jS=t6Zk3HL%(;VEZDH>vi^Vn#&P<uUKvB%X3|s{pF{IAgwnP|dgHEPp1q
z-52JWIi86*yW5!x8+<cAIQ(p%{r1mG^{v@T!UabDVecXT|9%#_#L``es55aa{DKXe
z<H@mMe8Uyf%TrVnlw_V`KMbtQxJC+;oHHVdzFD1yM*(_R1Mvz!0F%eCIs))%DTx+s
z$r_0`b7CScHZsH%Fg-Oo_C8BL{198na}w~93OJCY=qlxQ`(w%0H4sWl$V_aC!2>OP
z4TXVr=i?M(PR<=CMsp<$zGU$3LxfJdVMU6HR(BzyE5AC3d>z0vNvxkf3Z&^?>zQxV
z1Ml_!@%;rG`914-eIxf#C(VI)NQ~yO%k*SJnPu@j+?X}rQW}d6$Nta`G-(m!aJg*)
z$y6xf4J5x?JWmidD3-U7^Kqoh>ZcnrsBK6ld-33}(AJUX=Eg`&0f`37J0H|Upq023
z(FY_Bq?|nl^>No(sp~@%$HWK!2Yy(F5w7EUiT`+0Mhl78hCsTp{x4s<Vun-hQ{CJl
zCb$V~;YtYW1pL}?+x%1`TEQtlae6J9H^VQD3t-(x#3PvCp}jV1r3kxlu@pV2#{}+f
zlE~hse%sBTC=(dr`p{F<jh<1aDrLB0PtD$}Xeq>Rjc594$O&j2F{;SNz_L7<+ch|V
zizp$G`JxIcP+k0+G*ReVr6|U#Fd}OPK9M9Kr?sl(NE4E+Y<O_~wm5ImSz9<h(j_;A
zl$2BJ?Fdn9|9PoPHlXMsU>YPi%%5{D?7tum|7bCt0+>(sb{)>GKejoH0}mf+buNn=
z?(vN5@M9k?F)ooH*Na;GA9y-TO$4r-;1w+IgAr6WKk<?f+YO@q_=}%;B+*VGADi^E
zPPe$EXI;{Xd3wOO`B=E!{cpa&Soq%qU7@C?vZCm)F`sII{j?UWgp_1F+Crb{hNz!R
z(Q~-pO-5V>8QNAet2Mgz(-JcUs7z=F{}{Ux<o~AigzMs{7hC}->4rHB{8AK?1o13k
z!A6ZDYD(I^<Zmq)j>J%KCZteD*ie7W(Y?6n|KpB^<I;Oe1YjJv8FadF;`y=>b7Pe;
zxXMRdt#vs=67+ly&zKDR=zM~m*)C=bM$r?A@aHfP!Aw)?<VVc;kAWe{S97Q6icM!m
zT4b{p@z`-3?j1)k2#*Kwx;kP4qf>r7Rf5iPQw%Edhgq3({lBP5={3wv64=`vO91Z0
z-T~Pf)9s(+1o@-K70PlJp(9HqCE=q8v*ig4RSryFpXXbxo)^9?wH0Kqf%N*WmZv(&
z81pv8T@Ko6(XvK_SJdVDY{x&Oe3<Oy>#74vldk@4piD~Qo!D;svikgPcBYU%fi`lu
zfK!=MzCq}wlB2ZPHs|;c7wm6di?5S)DW4A_Y#qSSX&O4SBEnCz_ARj~wZxpCPZW1x
z{^c9~|2Fy*88Y?=g%ulsMkP-a@9^=J$3b=I=#4|s;gS*|cWgGCedZlTA)lE|6drfe
z*hLehn#e}dc5_xjdoi7d$d*K((gVmdNgL5Z82D_}xG!8b79H%jMaCi)5gu?u{G-Jo
z;v|^boEC|FMyfV4bJxW^!yBsOZB4<l#0^3-_ov}hun8Z8sNYn1{S6g}f$2u2sUF{(
z+CVJtMmN)V68*4QW`b=L2@{-DwRj##BDgoH=#t8E_+)zDjB`7uGN=*Vr**dwcsK_w
zF<YwhhfWP>>qhZ8Nfp683QDN&Cg<%yN~a>OE4aO`L-N4AUyvmcb9woB6E!>kr!2uJ
z4ADLDkAADd(K@T1`DG5qu9jitj*+~O+m;au?p^QUw4mPIzSq$rs&{rU!+y4=h~$s7
zkQ|)5;fE7N=vG#n>5(GoeJ*hTG3l6B2o0Zi`yh^*5`A1@Sk+T@+0&d(N=btmwciT^
z&^(K*0v$?b#`$Yw?>J7?$2C>(l|KvE$-%Ocr!cs^#E)eeDrWG`Pv#bIyPl|e)p;vc
z%s{nyPrvbedj3yvi3);ge-K~8r=9Ls+wnuYtW)#72+w83FH&2Wj&<UwaG&}Q&ocK{
zLPcPfxYKHqFe>@)Hw|+EZY_*Oaidcbd<!|_k1uxJDJD0P-ZO}U6{}UF5Sv;1ga{*K
z6#>52-w_!hAVyqt$L4DIN3#Jr3zrK~nEtJ6qTghIqc8ZtuHK6@rasRsKN+bjFr(%i
zO2>c!dTN>ZN|j6`$F^LBvJ`2pUbQQD<mgBDuS)t$GjY~8b+QSm$4Es&SO`!cIHjH-
z)CD)fR3Q$qxowZp@xWKsz9B)x6At`JZYt3J6Wm3HHbKZ^5<D|~6W4$&s*DLxu%m&Q
zESx~M{X7n^imLNb7D`H<Q;#_-Nzw1YwVPfqk7uPaZ#CUFooK@<gX)2<J`L2w-S;$K
zJd2^USsLv}s*fn7kCDK%Y>x?XEK8@jiN8MREgd-({M^1e7;P-IgdbNs8Vt;SK(nTg
z*p@N@(~OtvRF@{>vzGi`?pTUObj(31X=w>G@GVda66^`x8BlZnY;$<^@gqM~O7g<S
znB3lZFDwN@;C~8fF`1#A5*8)kpIj3ndIJd;OWpK}Jz|s+qbyzilT|OHtZHnFN4>s=
ze2TwWU#L%?6jc#162{hU|IX-kx)6<em2e&ibP{ww?@M^^X6s;H{{%$JJu!UK6$pj@
zZeb#Df5N=K_`(fs!`Ip`BlbiY4MT$4H20n$&0^t&h{g2cO?*qY-fNlVGt<D6jOPhf
zXvJV&r@T&DTAl4J?Z=tQCs-dT%TXuN$eN3%bWlpIVd4Dj?DY_nW}C76RrAjdCcbFQ
zz#G*u{tXoa)jr1cUiPIbFQj@0Et>m@ig&8&_vEwO^>t3iN=Ngx^6@RM3-S3o6n1Q!
zf(jHcO8(#Exny-njy{r9jd@QP`4cJ0o$t?)vjVrYExhXj5y1>};77(Uz$*Bc`q>pw
z26Jahu{gCe-y1cMNJB?;^r`OJYZTZZe?TEkwpeakWEdWa$tGe>qx?$=D!T!jBPGbN
z-WJ|1SOtwo(nOOkNzh*Z^c%ZBVai)+vmIg`ak+EuCOn>$&xj`2t~0|fT@A(3Rmeb4
zM`)D+-8HWyB+QsY>A!AX(T3Si`jDaC8y($<1e6n<kGt2VTWF^J#;0z;)bQUxoX#b*
zODTtZEH_`)L@Ad#Lei;EyOzF%%=#cJw6px-4Gm|sD<YN-T4SPmjgrh|G`<{!6ZTq*
z9UOj^reF$X%6km*WO?MPnK`Zry|(uslkLSzw?0k9&iyHK^SMJO2_Q$cO2%S(`}!?Y
z_S!S8K3fRYl5D(z2*8zM@#-m&OyV3{I9{C3yT%c9y*Dr8XpMzb!bV*L?Tnz;-14;p
zS?9UT`Dn+t<=o*Jd&KJ9IWt!xyvTo&G)QED>+5gmvzM-4-V}sAh9o{8E(1FweQq8a
z56gHnm33aRMgVf&9%~#Q`I{VSqw6({L4I!d|Eg<|Zi5|5oq#h9F+qpYv!oDWX&7Fm
z&ZZ})bherhC4P6;?GU6Yi_4+go23yf23B6_O#6Q=MWiqfePEcE{AWKT&2sr4eoW`G
zo_Iw=$wcCYQ*MJqw*|0STXrt+`MHhb-7GSW#UGEgx}*$x<QrC+g2Tt_EFT0)%`C=#
zCPZIkWH67vI=*Y?Gl9aa$7=>U!B?uk#I^WSdbI@8y!I_QI{ZHoUT-T4Ok@(BD2^HD
z><bn3JSNlVqUAZ@?>{#+G&0&}r5we-4+)LIfJJb4eXdL?4iCnMwwKT-BG~T}bV;tc
z<^#zMd%pWMh*zQ<Gxo<2jkS|IW{*kt1KQd*zcrMZAMiC9ji-hCMV+kUO+_S}>E7<g
z^tMgoFUxq9(=+NZUy3`#yG$t7V`2zbq{G&2JM8w!9_OKxS}RgOlT4>z(VR~CG?JAx
zb{m}Av$c}Nrzgkpr55S`i>|K@imUs!#2eS(?hrh<H4ec^Ah-ti#@z`7cN%XbKnTIz
z-CcsayGx@PzVBD>&CHvcziw66t-96w?z7HX_w2p4#o;fEn=8HR2OxVUJkKB3*#&AI
z|6cLpo$Mw>>&F(fgJ*Sysf|}r17XxgRX_hnK&|tt#rwgL6mwtk`KFLX3ghwaFSW*t
zx?ZWR&}h?@s?{M5F_AZ8fad3CJkxy}B`9NMwb;JCJzGWOH4^6%O@}QsrpK@Az~sd|
zbY@*oTrP%K^2Nu)z7B`q?Qd1X@5G#d7r*9*nPSF6#c(!x1<YwAC&QXkcI12&$7s3X
zIUEP_t*lRB2)sN@f!Flo9cEp+8GpOp3mt`S&X%fLCdA~9>s9!F{6d!8CAu?-<7c(8
zK_Lr3({A~S$ClL+Rt<gS%nT75P^OR&L>`vpd#z#<;P5zKP&{vMl2)?)X`6c~hm{w*
z3T-uO{xZTh)%-`VBxje>?+S;Eh^u|Rx-EsrwjWpM^5)ZtPgquC8_|3I2uxQ=N?ke_
z<J({UAz-y0PI<}VXG2UMatPx92!*;dsQrx^z_#O~&8yGnkpHv{2+12(_fN1too(k;
z<ePccVIgX<(_z4Xt!xizo(VLG=1qKS<In-%?&Km9Tc|m;*a~daJM<BxP9-f)F<PKe
z?gTLcRcO`i;l9O=Tx8;qwmpg}jBme*>c0H3#azT<N-L7feugTr`7+rD84kQWHd)&^
zLaTUjM!Lb7tZ9Ok#mc<Ywd^n1)4thNGYg4!NenxmIdWiUrjs)>B@9~3E=P&+1mt&m
za)5q5GE&(*z__!QW5Zut#N5bd(d1(_UfSdqlT>bpS$&Sk3;aw_#71Vu-D_Nj1knhN
zwX2uZlb#T&u@XkY$?iVhn?uD&+_CuPql3w=;r%)JZ5QT_PTwHVXgKE39+e8lm+My{
zWU>?xr}g<7($cVEH}!$bVc+H^D}7@g7ZnHwyYXy`8S*oH)#Jg0psR3iEdvOnMqc|K
zz6dfZ)!;DWZnIwhePdQ+7td;|T-5w#I=bl!geiP!@gk+#CIRp1PC@1Z(EIiC7ef{r
zb)!oqc~ji{n&P+!LmBGr6!JK+*kEXQ2mj*3A_?=VsTBrkNOTWg5aC*ylpOkzRO!5<
z8_WqiTXBP!w&c8#bL1$icC|CSvT67g23WR>lAe8k5uPyHpQjMDeO#w8v51UYA-D(`
z+X}RQdJmqwkZ2S8bl)tL(?dTX+EYiU>M#ZB5w(pnw!y(68=7c)4MK~hy#U>d8RnY6
z`wacA42R@MJcuab*L+bgyeIrkhhXE-e&U**T@zoShrC3!fEm92gr@n?ivVDWBRw71
z&jXxL6?C|fz+aH(eNC<1EX@0i`E%tlog0DnIcN3$fCYEddYJ**svEo+RD`o%?^MwJ
zwxpZ|9v+I6v#z%gRO<#*eEUPss<>YYn{YL(=kq>7^WdHL+8eSa`Sxa~H2P`|4Sj70
z+)h?fm)x0tR8K2p+`qohaGulluM&fVh?H90EkAcpq4Yp~Lv%pT^Vc@Y7`O|9U+u(>
zrb_YbS6idjd|YspftIZZp_=TA;*8n6v6`%gs-$xc#s2iGq4)5qyxueb_tP{g9I06{
zKFJt#Ju6SUqsfNQDGK3eM9(Ip5JG=;$*xjgzJbwqKcE!Cor}}X4i*)ixE7Y;U9fyT
zHqb&WjBccsDnN`N(703E8{<H-AdUp#^HQBXR@=)J+|hJ_C_er^X$!F&Av)KQHYJ{3
zdN<S3C!2Vk&n#fOAO2EaNWb2i^nxPNTM?G2#Rrx5w94A5Ph$^^eYhO{sXE%^guD;G
zh0!8PX$0Ud;od8Kh41x8o-(EHL@AerkTLG{1@uffyJo3<Gvn$NkP#cLHBETs@sq}h
z<6)i@kBwACKj4|K@EzNQf3j5Mv|fGGJvv2n#%}GhORut&Aq@XS>ueU6+0@E0o>*9S
zvzR%Sh~4IGF@#Qq;1esnBw%=9&>5YppL02*ks-hiHiT5k-7RerVw?SiXxuC;0}c=5
zy>O)^n_>@31>)5MVXznxTn#t<f`*4lt#~+wQnRxqLKLd4kvLw$M7<{||0#&L7?LqQ
zjupMKxU_`Ye|+=D6U<iGC3Rc*xmD!Xx1{``@3|4B=Ru;aAyMA29}6q)f|X+B+4ga!
zhhvhLP&pyoK?J7tZXE74X5*#9+r6kpHHV5D{`C=Bs?m>i2BK2kXc)e5Cw54@OuY_c
z6aJ~ypyG<u@uxI)SB7P7CbNccDAP*0P4s2%Daxy4NGX`x@3h}O|9TW}patf$snCXR
zT8CMTNS63KxI%Q^Ak<CYbH;lu|Bo|ma081f(B_A$iT5j-9e?Vto)5?av6Qksis&l8
z99Q>FXCuHjf-lf22WAq1M=l0|Ij+Lj8@zs0K1D5iGs{5&Ad;!{YwBssu5wG%B2J0B
z<V3Lf@lUZ1Cx4oW%1*uU63#EnQvSv`+JghA>u4fmj;mFAYa*Ia8)?A>zlw@tV>iz6
z+t)pNj@#voQqzHstqmX7B>Nvi8rb*Qb^GSGkerMUn*!+ta(w*w0`?oOl~zQAQY-<t
zyXWs5rVaNScnDbySl0I=M3T(6e&T*Pb@tuQB@H6K*jQ1$WuPMZ^~;vz#lY(5DVCqy
z@<K3_p5gKCfX4CkxSBd9=D5xSnA{+HYrls@#Mm0+J=&NT>LQxtXk5jL?>}&{?7H;>
z=fg2_2Mg5ip(kWwW|2{OqoG^44jBOW$V5hfEb`i|<TX++H;;MM<{!HrXwcWuCMx8S
zi);89*|9Ijbr!iRzo<Ty)70&hp}qWqHN>S@Ng*R93AHxIKzMqkuhg_F`-^W|(731%
z3t3c-@RRq;^+2HQy$)jx_?jpfvPoP{>*>y#wH+t&mw+Q_He_vg9s7AMOVle^pVsot
ziOW6;_3&Apafo-AI5~fEwh8M&3aSix&iQi<FXV6Ak4Z`OIeO;O&x^KI4vficY5hYD
zJez#v0jD@U`fSW>09s0rj5A#*G}U`J?R8vii)&TVG5|S8#ePZbo~&F)X4Pv;0I!v%
z9_LW51UbU5e|kBUQ?uajP>O$VvPi2x@wxE5yV?FV>r7Ubo&V-kD`%6RC9{cj<;X<b
znI)c=$w>G~ZeOB$BZY^<x@NGn0A&IdJa;f?{hK+_gphTXenn<;YB$PjzYp3jKf*rI
z8KlaL(*lRO6OmP@)>bMFBWjWLV<VPlg3-@F3jOuj0h;Wm%TGO6H;tA8&Ns#x<MqZ(
z!lUB@cKZ6Xd4x5b&cq!0!kcEgL-)CQ3z+(<CX{C#2@I6Hkzpw}iC3@B>?SJ#-cXt5
zzHtVtvV9mXCSRTinD!^3<0=f{=u6Sx->$=E)PO~%o?$~`0)yKk!PBO|IlBdhnmV^d
zUXcNjhv^n)71zCW4V}jbNCjx^%atD$?wQ=BPt^Kt|7Vwdebe>0m!=B)qo*a3{gpG(
zU0+q*lhh*kIb@~%ORqxfH$ye=l!=zMU3^@anJ3r3IyeJ+gIpo2HDA^5o8N1>jJ9SB
z+`sb@X*oKm3aJw`k2NN@xH$RR5{`KwUra96FS@*?`vMEN0a3;r-==N8s1FP5kUR|V
zIbV?m6bZCAIc*tzb?OX3igh3s0XJgJ!;FnRm|CY7d3216&=xbc-EHZo)5G&kmK(Lj
zs6d214SPMWta%voV|LmVxRXCk?O~i8AIwCcdLgky6-mh5<Q4yYNS(5}<)TeF`!E7`
zf3PZVceK<7ze})lWta2eD0ESHCDOdM>bIWqm$C!hHeWnI3TlbeKA%&IP7d8%gZ&Ie
zj$my%SZt*5iz5Fgrzc4gE`J!egIU=dyB+bVZoyLe!Ko5kJra*m<EFK*cO-Cf%MB-a
zBK4-dp|G=cdcsZTdc8IAa}`Sr7wBY5Nk~_}34eTOpML?(y<ZxV0AprHS>GgtFcFT7
zI4!k=KdtG>`?#kJ*^&1V`#G};3|!)z;KjyKU={XUbgs9na{)%3y;4|00I}OgeVJCg
zafG$-VXnnMdXbjc5p5*Q#}Th0JWe7vjfm*oRV~7+oo^)GFC|z%%1jBlLvTc7<Em6o
zQqC1_RwDu+oVetQH{{&gp>0dyPN;eB%#`XU4z{h(2orCD272V8@wi}m24jQyF3+pB
zid=1?s*DhdZ)r1ti444HK?MOZC6ljy>19bw$N42Pv$2-T&zlslmk>kwQqQoFe?9<m
zv}Wl9tS#@=GLxCqGKb%<5Q}~Q|MRuH!#-g%m_7}bC+B|1YpcXLeX7PwkzDlIig@*|
zjl9+t-1NOPy0_KL7_-hcQ~s~-?`T=f37n<~o}Z@j4dWu*$Roc^{$}yo+M26EAb-6Z
zXb0MbGx_GHx@CBI?0yQ$Pu-!$l>)XGQ^A2~|1_jS&8PyyKMF|RU||xiByU>~@dths
z7Mu(eN^OJ2lXo{pbnMPpP7;%OdfwIPgaST_ZPJ98^FAYl<1abEUl4T2yfG_lhsPUh
z-?pJ2>Cb$k)5Q~_5^%C<OJYtpRCxh*OG@d?AiNIVxiS|Y@1x!OP<O!k!p7J*vs@g_
zC{TAKh*ZE+on8dJ^|tFPiBB(#lM3O*8nvgIT(EM?VP_9kYGF70g)+EH(+A!x#criK
zX|8JfdANje=me?N9+eReHx)Bz&6Xo$R3Ija`KgllaRdFN@55!hu+2v?l+ZkKfu2iu
z5x{7rzC3XKhuHOzT>^mdYZE_E1bYKRgl>JD6zCSYBHb+!l>EJfCoB#=7G`ZS$OWJR
zd2@i9>fSxhRz{}V+C+6^40v4Gw#E=P*+5P`A3Xa2<QNf96G{)sCQo<FMj+%6dLfcS
z8(^JQ^2clbPDvmZ@JGiLmE+Sj1IK-6Xdo)ZZ^xbU8~j$Yeo4d6w3oh!<l_M+H6h`z
zMt>jVACFBdhR+cman(&b(3JhwaXNb+e8~Wf4m;;Qu<Ns>v?V1@n<4`bxhUi20_X{#
z@wSPsoFTb5I)vg)&Tu?5tYxS{mnX=9x^m_-nTF~h76yX*WgU9Q>MP~n=jPD$F9I|P
zpqL<9^p3v+DntzP??+)~YQInD2}o4z5)uwC97Y!w>Lz--atG1s<MDKHaeG?@l<|4l
z+nhb_$HAKG&+~Svv{`^tv?93gBd=BSw;3^u2cS!#gw(IwSKRc_nZ$JInCz!XzynmY
z<>X|0M+kbfeBHMg(@waa6&3B!dc)%`i;;J~m%h$sZMP|B+JWbZ=65P<n26x0e$~}?
zzUsVo4sT5=eB=U6V_=V%mrMz=6T|5gMBHacrBZH8NhAayc`6c^Xp-JJDy3Y!^m%y<
z8091qBWvd?<CRA=YUX2@llicMcZ4}o<|cM2Z2FKMR5sS!d*gvO0vww^_fgI$FZ1D3
z9YVR^jc8Ewx?>~+GS27^uluxO2R*If+w!4Ju=rwbyq<cuYxUf}4uRKGjtR#<v64ol
zA2(c}!yssa;x0ZVu5oXyT`~YCDj|R1Ra<4Zp@u{?=%Cf!MBR^#?pyo^N|@DtVds5S
zB0Dtxu!#5bX&ATDdV9X#M*GjwGoK8WdOF%Zmfez3b$81pAya|E!Gjm*;p<(NMwx6~
z@Y$b&J5|(6FaV!lo}_#m5_q6X2_40rCFmX3ZO}r**4pqzAR|wWzP0+kzWREcU)#Ss
zk?#Hq_N#K*2*<-_6PC}CIHRHD=v}IT!RSOdILnL2z_ou0SG@lPfIH68dH`aBSVFUd
z(OFd^XJ^~Wu@|sfLy;dKdp?GPj%PpwSTYgt)`Kf4ARBu@rkk79%<t&8>0$6p+}2Yz
z{Z)1N7neax0f&s*tPc%l%ul~zZm26wt<t)#G``Gz<buFc4ae!wA-i_=s5Q6fTcqS-
zvFa?QCy&6AAP^^0cv)K`;(PfB=av2ZKJn#=RBwSHZmw*JMgo5nwYyz}g~0L0rs?Cr
z4qa?R><dNOA$(hL)&xh_?YZQ6Tl@DTn`3&W>YW}pvQXwc=KWYg$lx^M-l7|GgXv<;
z3`f>SxoA@Hk-Z8$Q9b_CJsp{r!yT9Y>8j$`ox-j92)0IkAIHb9M=NdQ$`(4OLiKrz
zj_mjpqkQSN{kVo<WunSJN0GWsCkLI5q{~XG>M0-rQOMlO2PvAa@@zdt>*Icdo6VCi
z8Y|`TOYW=$k7LIR;Waia$|6ogF=FnVY(}*~?sluRe%FGPGmchR86s{X%L_T09E;M3
z(dW?Z@IkxZ+v8+xu*?fTG)pid1d(x<YbhG$KiYUfnkuxs$1)R{dFE0IZz8;C#0FE4
z{0>#Zm6CInKZT8U9<DII4He4I!e;fd&_ztSnaKOwn3q<N?^L`cZHQ_=U+%4=f-&;T
zy7}>nk0;G?XvJmS@Ubi4JRfUMb0%h<0B?sc1ymqvqMtLEH8|4Fn_9U)vG2&d2VlrI
zdUfD`xdFGB3pVOGvbyshYkw`5dQw8sbUU(&mWl_A)KU-P{YUypY`FQOQ8?Be8Kw9w
z<2W9$ZR;?89C?6sVN%_c>lPYogzY0uMfQG&zcYi`E@)@nJ;rWvL)8c?XDh$%Q2UKP
zMkcrhvBP!27#owJbqp&U##M6N=|q3IH;8Ek+4RM7Ma>k$)J`CZDo&vC<~<8;L0s2~
zba)NSNZY0aKDQajWhxmHL_7Jd(B(q*%hztbY*4%D_2}J+NdIz?o>!X-oyb9!^9hqv
zIec-c08A*q>%|=bh0TRp+y=&4WOLwr(13u}Wg61`Iko9$VJ;On9)_d)V^7Z>E;s^D
z?HMX{nj)Yo6QuwGCtfbMFx6#SSPim@f^yVDO9-*3rxX!p4w~TLOtDYxJxo@m{ey5g
zKl3H0d-P;|0!%*&UR*ri;IBOxWHLShql;8vd+A4B{Q(a(e*d<}i2)5#?d?tSnn8wW
zvX4fsdt@ZM(eMcqZS+^t@%K{;=aTB{9<9{T=fbI8J@*8#OebQYv$KsNb<9y|%z@%O
zS(r@QWRl(Ik<aZL9$}8&x{*=}^m&)LGR8n*PRK5?{i~5F7JHgk#4%#|7brQn;qbE8
z3a^~G5tGVOz|PolssBxH(QU@Oozre8$pqtBicakGT5M-zH1nMv->RAy4G&x>k?1>C
zY7qFdT-39Z1vj>DeGA$9Y`XvE=$sHu#eJuGIPU1Ytqh_QC@%(K6R2>GGWD{y^v8w_
zD~yspWp_H#k}akM1rqxr?{#;@*fN98mPh>+BD^JE3TQ8Y0H6~YNIyeiVUq00@PPF|
zT35fJ`T^>HH(YZ-mUA1k$d#556M9ZkPJb|fCg~{;Cy^6-x_lA!p@xnrkE4%nn9bOd
z6t1q3!PK3&9bAcs^7J<sLxnGk@yOTygd|v}zOkeCbCCd;Qx9n$4;M}=DUR6sJfH=Q
z;&_od+Lqp5_hJud*I9=>|5pR0n#&Yl<sy}CF!;1l&dx}m?mlfYXq}_gEDz<LhTOA=
zJ@yl0PDEfJ!I`=fIdAM<GsAhh-eb$G?gXrj$6%%$OetII>sfd!YPZVT0JGZ$PfD_h
zh&mw11L3mjv8%&t4l^elR3_eS1E*Jio_Gy6A&$Icx(kC43hMYy=uYxv;CPZ{d-POQ
zabKrwAg6bn)g#(zzE8o(u_F3>lIc3X4gtf&#xdrMaB^eUxO0tYLGYb0dPI@@9Vf%h
zPgBbl8*<sp3*W^1`}<abfJ@&+4HB_@>2W8Kmaj-S7KgN(O}E;w7`=9WBI>ciUvqy0
zr;>k5m0(RELX(6=1Y`w=6th=yPa8dw_zv-KE5=2DkSmv1Y#2|L2OvU6Uw-d24b$gO
zCc#B1WY0sJgjU&PdqcZV+z8)j+K8*O^c-@$QiJdhdfJ6@rAT^ejNLDDMB2P`s$&h7
zr&c_`GvBLTN~&8kEUr$Hyw1xj89cY8(f)>uO3B?Nw61TQB@fgXxL-z7o&0s70q_c4
z+Tl;S9<P3~XcRYMn|SW`=kavP(~EO=9Zja~WvHFM{)L++AGP?AF^4Oo;c9Txn4rV8
zm#`I9%3F<Zn=9@1ba4nsiAj@(6_$*C-luK$DFCzjT|HZ11`*QFZS69h=Jd+__&BV`
z$rf;kdDPzTyj@C%+%Yn$_jXB+zB1ACVZ6&$li$~7!$NHBm+%Lt-H>S{RM^DCv|Pla
zd8a!!MXeSV{HHO|<Ks#FUhiSG`%gQ$!ef-8RYy#n*A4Zb*diu#(SZ<Is7}tbbyxA_
zNEoHQlVIf#vg#DLTLs04D{7ce|L`e#Pq;{RV1S{?@}BkaYJaJ^2lnah<l){yN2HLw
z&U<vF=@^qcX1TcYBs;U5y9-=><?SxikNAAVNbYx~{g8-;iV_fU7-qZ04_<Ayn6fvr
zW_%kRI`Vx{D&mk)?7M2;>BvY^;hS>>$Lv2P$#H~1ick#l?DBKlu!5tMhW(+}cO%dk
zErYPPUcrTM_{@5XD|j9XL$?<VNJq&BvVKp!$_$Q2p9feN{=^d8VA*Az34;KiakuTV
zs?|afpCHPQ!nIM*i`=DIpy;dA2a5V@=pITve<8fWrSY<M_t<ch<2a5bKD&S6^B%?;
zQU7v$n$Cvs=;lv3UB`Q!OY`PJF({h@C7Qs`jh_prqP|bQ{=}{s7xB4RhD!ujsswPJ
zPuN()o~1-614N1(o12(e1;|QPiJde?8BR)<*`4=Vcx%ahJy{IC0iAK7#9Z2vmny)3
zN)aSDS?zud6^7B-o{Wu!R&O}5gF;<zSWNpY#x#RagnfcFm0r^Dh$nKMyOv7fO<@ed
zv!`+Q$9+zUgSv_mCka{gA){)5`QI{iNJXIlR3y*$f;MpDXU9B->`kdp&PNg=xPr#|
zhxwHHldK>Y9lT(Ij0=Mh^@c)gI*yny7i>p?ZSU{4?BkBg$_ANtw~xgi)OXV&qC)9K
z;$3CY3@feVZBACS3|nFHQRbPSV>d}q26(azGC(n!md*9NVE$X-pg^3pd|B~gql)sY
zmI$HOja;n5Z7G=j>6R0!_Q&9)42{Unk!_AvTE*MPdr2VP8sGdi=D3+Y_@Wv!I2;80
zX^PkJl-B3cH;X4YSfc<(57Hjr@GIjy7U6QUA~kTC3O{~tQ9<)Fiawuno9x3SZbIwF
zUY-~ODG-+XBZ{e6Dnk1{a^i+ZaVohM^ri7UK`YC9u-A@UpbvK-%PQ%Ei8UkZQ&cCu
zp_$eDO@5gPYu36S<`=mY)EVEIIH*ckrEJf516lkjH-0#ltryODVp=(z2&Kl;UI?na
za$cWO7*d=o01027M*BIt@Bfk+mgCh(T#SZ@Q^Q3e<I-%tYQR@13JwN#zPH#E<vX<(
zBqVh1gpq(ZNL`vwg1+2MH1)SrK6x80@7$+Yb~VfihWp%Ks~$3SU?7KXKKI_^L8&+S
zCDf^n@Q$G#u=5i7STA5e5Ul^i9lZ%(M_i$i3jILGc^DAmg61Mx%+I~gF{ynaU12<L
z4#~1ndSUZv5B2Oj$q5B}wMT@|(G>F!hJD3gI%uCn__`vB)oZ}r8oWyRwg4W-4;k&9
zEEgJFSegXmaUFDAnQ6^RB^K?}T~O-G;_JHLfuo|weodKi#A^hNOvI<J<Hj)Zfpo~&
z2~^^Aa8%BiQGGOqeqRjEZ%4;R$Kiw*G%!wXd{$E)eJU6=+RkucOKK?Xp_rjCSdn`c
zn}JvWoZ*qG#Bc$a>C|6PGFaci5PX3F_pcEZ-=3DP@5k&@S{0(>`m`oSzpys2I6}gL
zH%6e$Jv#l&h7mPM>&JSa@^to_wX8U+cK{wf#|7r)9*m8$Z915)=dWURy{RB<xR6F;
znMrCxoY^)lxyLlE9b>&FypxWSos>o7)ZFMCfsb&q6(UW6%~!)|pYV`AtFG0TQ95!p
zfJ2lV+bgAmrF#U^xYMrxk}Y{?zgmdZi9;`gH`M3>5X@`$pk3r{gqKFt%C3{y%cEPt
z?q#}wMo^m_?|hZ5U^6aIJ1$Fj-+7$e7|SVYT}S!Yvu^5Ry(1~W<D%hf!lTzOZ4Zb<
z^OgtAKE0%x)$Nt?Y-s>L39plJrwrGpm0h@R$AiPQEX@p7+p-Kv3P-=mgt3EEN`hf5
z;-A8gXNIaw=Wz(%5iPwiNn{(tM}H<)V?EkMwC5U6GzIWE%OBj<npKp97f8SNznKX^
zq_^DPVE(9Y#;AFCvwu1={$qn*$K7~eX=iuKUQdbwqA#-c&zRX5_@MT-=3zc==yW(`
zV!g*zlncQnxa~DG7u)}Y8XW6uEZx%$K*_O6#zOIJyZ~c8gJilQaeXh_GPQ6zt3vS6
z2450Bbpw<c$1j5z{kB&`WdV%Ku&-Ozh+?^$;)7Zj^nXyZM03BHlKM#R&*1C>IoBHf
z!QkIL>EWlm8z69*5L5~qmRg|y;zxlXQXU>8&HxJdWQVrX<^DV<8$VWGCN6wYy2Iht
zX(H?h@!+uw4{Z0;d!IG0osV@+Vx67)1KIcwdJa!No(n<pakp4yd<Z}cyXE2*sOFUR
zm;j^;dV+Cb(&`coc^E2ZIt+6`FZEWVA{At;tV6#-5qaGbdF<g>Wf~`cCK@pOyHK>f
zI8XR}8!ZUZxFN^UPS=lk&wRFfl6dZyH~A9#$KkGEdZ$ZM0D>BWroyOaf(%?18ZdjO
zx9#_fh%7Q?-&Gk6R)jNfgF(~Z7?BYbu97VZ-Fr3^2}p`P+KcxGBuRTOqknXCjdkxO
zVszo94yIpU;rIa$Nk|(2IV{4z^PDWGFPwZraGs+c;%|?l@*oEmRM}XOR`fS!T(5Wu
z`XFyyV=nW)WQC+NK}Cd}Z<t;#x(Geds%_1VrB=WT1Q*ZD1?J}R?8g_2@B@})S$&a8
zgTw5Dwjrm2Rb@03vfWA7+A+aw5zZ+mPgsybkn`5{F7X=hrks=`@z0`_oTPWMB!qg<
z_FIR+^J~y~*dXk;Kl`4l62Mp}HO62!JYhUJ;fr0I-VKqS&C3+n@fSmZkojuEY~Ryo
zgBQ%7PgA_25y*kt{NbYUAyn|1irXab@K(Cu-H?-MVIqRP9*0-@uClpg-{RYpg?2Sg
z%8_hg7Z6EK^8TS=PV;qz&LH_sOZ50Tg^V>x-pko{%o8*lT|Sku?~!Rj?>7H9K$WA;
z0iFSmY4F|9Gvlso&n$Pl4*W}>ckBFW7r@YU7^Xh|`94%Kebc8g5a+R<bf^r+AgPrM
zCsqe>ygGK5bIY9U44F+U_!t%O`2Zyd|8<f6^y)fFlsp&5vPrNxhVLa0fn+ys=NrWF
zKnj!0*TO`vF1D2fadz;0x~j&|rS^2K%E(nh1Ha;+E9>nBr{*YoHnV|vDKdmAxJAI7
z*7RT%E8{{;h^d_F^e^*Ft2ul;X$x~1{ED5;ZwPW;_ze5a)?CRc3u)R!J5(P-gH5CF
zk(UF#!hJ;+`cJx97%z@8KcHOM>2|;$38ZPr&Tvq$)YEi~`(n}<JS`HRpjmfG6y@<a
zT&XQJ*;nlBGM~@pEM3<-83<szP4Om4gOBjk7mPwXr>3MkmO@j4snw|KvaU3(PY*IC
zswiIVhtUtU1A}r)x2WNZ2NP<1o`4CfJ}~><JL2k&m}>`ab;rxW&0MPwS~2^7ga-t2
z>mpJoj8wVV#pIyUU*p5ONL4OxC4@mZnWKh+h$(BND3FZoK_tkXwY`w5=krr0R`uz(
zUqqCDNTE%DD`^fR)x#v)oMDs`Nz2DAeBml!9^0m(Q(Q`R5$sIyRZPbAMDOmAR3@yA
ztKq*R$|s3%I@KdQACdJwXm_d0f);2h;pI?rh!U}2Xg73oe(hl43dDW_>bA%Ozk|^I
zpMN4^<oN5?+t32#5`#IgTkdVu$Wh+2ycYxz|3#Jvq9sDfz+viE&+zOXgyT$YV8lsw
z3uGJ^O?ZBt<|Ugvd@uHhb~uRp>GYjx*US<TRy$Qi51+dU=K?$C6VV7Et-JB+(*+A|
z?%|MX?ZyCZ>Q+Ig&Ub`!kS<l8$Vn|1+r|p>0tNiIgUFxg({~rM<fw3FeW^q<U%j%*
zU6GB?{hqafkOr|%0(9upiW?zzy=l+O2Rk)K6;QiumI5evQ{G~vAjuxzztVIB9U+<%
z5>G^~T2f#<B4gJO_ylkvf|VPT6USGT*&3lZ>BN$+wFILS02EbVN7}xn$bvLBtvCOL
zrj3{J=9+zaXUyDpB!qi#Yj~U%2X$=p)%L?c#|cdH9Yu*r{6cNA>RqVUwS@6fFHS4Q
zn6K{D6k~NFKIXz#)U&FuR*W&k-CiG4)pcygqOeEUZx%H&C&WYwZJUHQ4p{oj7cj}T
z{g5H|^<SyaCiw47GxP_DLi`-w+OfUZfHO*ldG{zHwLxq~Sd=A+j0HHYvY4U*vs-`A
z7)Fk#sRJ1wI{F0(ItEJ-FFbn8_lJ`H3dmj{?h3B)VL;@NyL)AT^8!>MRA|5+?5r+J
zdek$~o$s9<#f=*-i0eL7Scn54|1A#xVBlU?q}G#R*o2T>W~fLU0lEwo4&piDohZk;
zC33L*AY=Hs+ee`|s`4@Nh0qC)cME^X#Pow!z@jZ~sW3!jeN50-yX6jfsX0Y=5L0Q3
zS+Uz?d#KZV-+5pnMl}kGLs!S23m7ctv)qj~0%7EhwQ;RVw4mMUZhfDu29ln8Hec1O
zfeza+jFTh;TBUxn*LK0|2FY5$63FjT@Vj961Gsc2)8*S+gQ|Z8n`_71pDd}fKU#uX
zn4FTZb7?L0xT5n5Wf%~XLHiK6*3^p-3M(n*yB2of@`Vr1<K>g5L=H?n@-7%lfRQEG
z391j7IG4G56-*8g-e?FDjgDAH@eHuXlnH<@sUh92TbKSE4v{0a$5G~eJOKh#$&P(R
zLg7(a!1mbW_+&d06d6GwK0^Zv9YLa219LCc*+e%%4%ijIAV*>^55C`16XCI0!bNNV
zZNA^jn77rq;l)A#B|ApIZw)~i7J`am9Mh-kRQs}>R(wEetmb9?$}=!9Q0XpB8-ZL%
zO<s@xEVbQW84E;_i#i^m&MxSod)<n(F5f=ESN>%k{iZ^@yG4jf3k#t0h<U`&!J&G&
zPpSFvdusz3$m4T)2hw&5eZuq#i@hRn9vljBPJ@p{M$W@p{z3g#Zyx2pjx^RT3h=^L
zm~(@rC1njF2li@%O6-&-tq~y|08iVdm}o69MRStE1kgYLJg%uD15nvPku*l-^Szi;
z=xT}95~se8^Yb?qt~Vu%7S$}o;*@GXtRb;E6=*?fEBiS72fS*r{|kVnso5b{r#fJB
zv*<>hv2;`TJ-C#o(2T{SNOkN*;vJT0Cvkasg!x0&+w4vOxZ9vkRe?$v#)=fZiX3Jy
zP7pBle%~M5F}RHqz~Xs@?E~(S_)zKS@gQO2=j6v+p&&l}#dm7J+1IWqG?=l!5=$s&
zp%*WD;R<EBS-Wcv_TyI!#t(1P@^*)bZ$ubj`V{beH@4)JeB-wjuW#fFJoPf?cK~8!
zJ6G^D<dG4{-YefFzG4N-<VsQCy%Qj~I>Zi!<JiA^J&U`{nWn5*S0LA6$oisL-eMMc
z(37eS!c;P6%q#P6K0Uf#OsEq7;~OXYUtR!r`TgO~Zs06N_nX5-nVgenddAj10Cx^t
zOH2ho!RVDb>{+_eP`f*>Q?H7ibmr@uJu?q7)q~yLZI3(G;81M>1k``K)MsQC@OUw@
zMJCyv&79>i-2S^y(<BO=4*Bnp6o(@BSyz;2Y(DxvBOAoWkNUi(T{6dT;648H1`<a7
zf_A^y5~l$+dgQr*$sVCVO=a^z5aU|B56<$Cu^a53z5CF8JB+1%`xAMP;>p<SB)8)b
z*kDv~2O`PL!;X+$8H2wjCFI^ovDa+Fyj*nR(n`1~f8^s;x5@Uq_`iW}uc=^{qGuR>
zrD9M{eQ?ueu(Jt0=j4yToFgv<oIt-G@0f_kcV2q8yosVE-`BB>51JH_okzKbC*u7_
zolB{008II<d$A1>#>F?9Hc>PJ>_`=(O-O?E3di=88PAq1b*$+qHP*|MJje5dK|D7B
z#piAKp-I%9;72aHKX|Ru2A&6`c9KuCES7{Yu9Vq}0*={?O=DFiS6#x(LFof}CDh^w
zmaJDN8!fxbEAD9>6UrpqJP+fj6f08DHSc+4!fg%I;GY{^qCw~JO{kjQn=Xigk{cge
za?Vv<G-xYk+gelb&t@V_kr+=NfKnGJB+CS*iYC70K@)3eJ1v_m=T7n8UG^$_tZ4#r
zHro&poBRwn$kK{c*z*ln=CC2T6;bzv&5z{q`p9B~Q84wZ-S>@v2M@&dznhyM><rS5
zsmbxG(<y~QOeurrE`0-ND&x-6wB>^ZeV*zbpP2LZjdAKnWPzG2o}6$Jd3et)r`P<W
z)qBxG>sc(W0kd~LY<s?Mr7_Six`Zy69ba&=Ub{F9<2Se{x_j=NpsSkd^8PGW_c{V9
zm+4{Wi2pFRY>Ia9^FbG(`4?p8qXj7)8m41JET7f;<9UHbU!^r4yG(_HewzZyzeh5c
zXm83+ubd>IZ&g~g4=bNV3ObM)4Pmiyid-LU!s_S{r?DRrd?dn}MCq8r{fb>bi^K5~
z5q6saqp-oqNQFb}0SMSpQDD!)B%2I8aewyWaykNe+unV)>4Ri07~0S6KBm`!0|>w3
zk54ANNUtZS7g)XOQBECUUBa+U)#?=Nx_pV=3TqR_at_RoygrXczH8V>5rsb>pTh_k
z{yj2K^B@FMMY;V|%IEIzJ&S89n>M5OxVh-y{!CN|*|C;m0T|*5!KORnuOtQdzn77O
z_^(<`wUizf6p|j&J&E)y6Ayb?L-PvT4Xj@DmJieoH{mx$AIO&Ls1HQU=ZJK#)<`hl
zZEp6eS9gbZ5L^)H&g`Jc&P+c%V<R+pY@N<Mq93qBdsNy84i%DX+1h~aU<bnvZWIk_
zqPcLbW2$h>XyVa_P)v|Yj^G4)>h<{Qu=R)i`ydQaFOl={*Z2Uisc>r&kI5qlN2h=P
zMR4J64lQc&_0wz$yk?2NF>}u>-yC&gm{3s-mv;8hfTeTAhQgH?LDaD=AcBml0<3zo
z(Vo;U&7lpavXUw>0ykwT6D!eeAEBJjKd1qpMi!P_Uuz6+Gh1yN5JOj3H(mI~|HS37
z4;JbDOohl1T?i`*OSZ$ZFm2_%F6zUI5#lH9A9Vc`w!4Qg_R$DVg!`Y$6h3#teH<i$
zMxptunGuTc(xHqOV1d(+gto9Ko~ed*HTntRM96gx<X7g`4aUVPM;3zkbaOO^Ej@tb
zRR&G5+w`}KFP=;9eAEU^xk!A3#>Tfve4F}1-Ji9CW?JjtkZ<XVpTK+6HW`KX(OIpk
z&UbO_TR{0G&yS|?hmfabxPqpWI=;y+cc0*)rBC}U6;6LQ*M3`PGK*k%#zTGuC*`UI
zy-J>=eLK7N^(*Esm*mUm@S%7YC8g|~=@X!y?s4hXt6qxSx`fxLTCGl?H`bZ{`Dbgt
z>g861iHNHjA^kcT``-1$&3=-}%Qu^y&w<zEv6cFTMNN>Xfu#!rs&&iisaXv|Z^+Mx
z2Id?7z9vE=@X5X1&E}!!?{4P3Yn+?-peMR{OFGSwji7L0&z4PJh)i{Gc!2YQ0_|XJ
z;yE|Mx^f=(x`&{hPSWvp1N&a+qUNyBx{pHDxuV;xaBi~cZ+Umq3?EN%If~#?Yqb@K
z=zirlhH~4gXSJa7*rq+S$H?@52#@c*VS5vD_Jil7*4t8Vu6p_5V689wSGs-Omv=G7
zpCvwMJq#M7t)4JpS2S_^MAjjSojh{e{v~Op=8uuqwZqc!Un+(U*D;R`S<89eCknOe
z{cqkqQ}zQ#s;TTZvaz5%%LVSem_#&>jd$sdBDp>8miC@9$|I@Gzhqab8{Hp$$|EU*
z#l<BNz5@+pVmiMcO2lM|NP?rOm@INe^S6cj{L=}1A>x$KT`Fvc^;Ym(O^(985tj-D
zs$ED*ozAwjIO=`+La8J!?_lOkMnjI&RDu<u^UX#Oz&d&-@1E$%qtYOI^B0-gvSfY1
zd^^a12wk7@UG#@JYPd$~CjSJAKE(xG*_rTr-rpa(f00?65(lHPbk?_<KO19@(~l2K
zJH`DJsgpv-nd)Yem57y0daPD5stjg{hH*W7L0YsBgUY1QwR71xpu+PDAxhw97<?{(
z|InRFCCuJUd8n>igx$tf_=_jqW8x*xmA&!V(e~7IC^_Tlck=)ze|CcqTx{SQN14Te
zgHpZkCk~-3Gk*q`&h}!FI}PD4NQkxfZbf~nDvV$A6|zaR_o3g<XSvxGm<QV=CB$(U
zwOr!=s^MajKK8qfgV|HfIaD7Lc;NyIT1GRi`xzX(avRP<oeb5D0j|7l9Pg&V73Z$~
zh<d0gCtmTY9@NBZ^CH-tcX`MM#<v4N{}06SKNw>vK5uVSt)l1XmzO3wV$Sbfb3mfM
z+V#3SEL77Ql~|wcZ%g^)P3%beIvM5NN2HC%kut(9o-Y!8vrp1I`A!8dUugUO0f>c)
zm~eI335yh<S^oK;Mc-gFLSN{(ne9Ir${WM|)Vx2VHNS21>&gZ%ZK!|Ex!?~{rf*QT
z9r44SYTgs=dRx3If$QG3gb}sD0Y{OzhmJP0F1nwR`oT+X{A%Cu_d`(haVA#j((~P5
z>azC4u77wy*54AetT>{A1)Xxk^I087f$m$j+B}u4J)P&=Dpe{nT1N~xBsC^KUvxiT
z8dvQ;+HrrNTo+fl@=B4jX9F|!W)2lg&spb0^e;wVrpuBnDTv^iOv3x^4Z|agaEf=c
zA1WT+u`POIe-9F2HeuyNW%0|MP!KZQ>WoEFowT?T4|h^9{$@Lc^>oRRul_iT$*XXx
z)K3UCAviFB97?cZ`EoKuvfR8EvkUZR9xZsbrnHkUN95kr{@#eh7P&wkt#BGfK3Dvx
z;c12D_lsk=3hx;2@X*f^6)($}<G>|a%l<2@MBHNjT`2|^aD@gb1naMY!E{UcY=(aO
zzce>iyg=G`&danLU{}Di9^;Nc1}oQz^X6B{qczAIYCp8pV4KNrBv)@eZ^)yAyJpeA
zKj&g6lQMxbt39yeE({k2<E)=G?*6U+yzZZr#Ds;o)b)&%C`JVe)Qk~RkS%NxS=Kq(
zt2`|{l&N@n4*!wOBMcB|aH=9>If#8&;H}vAx^c2}NSAQOWySV)9}58vh8l_ve45NW
zK=U)<lnrktbj+N?@bb|}UK(&c;P$i77zH0;yG1x`qCMgSatg{Cy*2tNx-NK{XXTBV
z$-1#75$m|J`=x*A3c)>=hX#USO?Y5?(g1W^V#Z?>#dY+)m)fJ_RLgKo#h${A$-qA*
z_7S5Wjp_{xVr+%$H{$+u(UGI!Nf0=|13OFK5f^7C{~W&-QHrQ-(tZmJ2!Sj}HXJ6$
z+j&5vpvBIi@;_Q37AEINsyxm&V!?%Yp~Un_e=MfH3?5J)>4(}fg*lDkSpTLk>z{?j
z2oNY6X+Z=y7lIxHUG86aX{dtGih>JB2bl6A$D2eCxk(UU#DBLA4=`FOS$TnR=m~YU
zSQ>y+0QUIe52qq67~a1*O43zLiPN7aAwzMX&k7+x-kBvHEwZcOooUnBuM8}s$>b;V
z<E|%mKekMTXfmbci?Zy}iQo}B&rX1!`mUyOZVJQTb0))St0({pXz3_MHt_tvfOv+=
zjtVT#Z<r69Nm%HuzIpuq*vnAGbRcgf1DTFsvvB;0Cp4JMR~WM#^o2)%3h;ii*L9Ad
zVxfv}b~LYo*mqiEn$W08{j;Y*<9`zCABYn84^sWli!vZcJ<9`e+|FrM@#fphcHW*V
z>*tMd06E#tG+^Chr%v@i2enycco=O>$Z${t*m`#GMG%|R3`KOjsgvNg6pcKVdih2d
zBcFgx+pxM@YB6L{t#45`SK00ROKu;m0#$OA3!WxXmB8UdS)7i>M`J+MRh~oF^Ag;Y
z1ePm8D{E!oGapfsIA(t+ns2Tg8~#1WpNa>B^CZcJK_$7_cA7jvG;=8#c@s2xfalj4
zD;%nPd+^7Eq6w*pe+8z9U7vEZPw`jkZdFzwhx5bR_T%_#-OlFI>Eq9~UmTUpYBmba
z>kFQUcs+!}y#yDTnCMx5C1D|}Sh?o#v$Ex*z}fDv?jxc__mDD4v@M0t_;t<z6tuRt
zD2dNVcJ8~)H0J<G{*!F~EXKE-`@b&Zm~hC+KRdKp8XHbU&ZIJhn)}!p`o)ryDOG$#
z`3Y-p<w0~eI;6prOjTr}Dz`*sv)_ruD+E@#Z+}sxT7D=DBfGt1F{*DHMNB7>LxKzw
z$cZ(Sp3N4eX+D}^r&n`Z_X_>N>Ca`Aa1XWRl(PG<XkF&~R(w(9&3&7PF-JR@XBu%U
zuNr$9=~~N3a|`o`>o1?$Yl+g~8X?M+y+JY*)b?<5qzxS(k|_9q?{iV?O`B;Pg=!gm
zBP3BixCi``Fh}&cuHJ0p&r`IfoL<I!ez0)X`e@W!y6|uz_!{z8p&j)&{g40rzay~0
zN{wBiAE+Q47gsiRr0-YX4C~-gAcfJ<l5Kgtdla=CJz*no{wDp$Q^_F%1H`^+{qzNF
zLL5aEm2K(Orn*UEo8N67aV)>v5BFI<JCReO1<)1iQu3P}Gf9V_5zh?N3e+D%l<{VE
z&qnl}OnJURBlDPhA*))XzFm5epEW?me#@VKx~IQw!D<j>XluFZjX}fzKh<LhVOf2}
ztNx&T4)1Toz`U?wp_ojYq#1}s<!=8GM_i_SOvb`WLz)Yq4*^u`7|H784%taH($&HH
z*;rU{Z~m-fZcrlX>?%=Oln5YV^axhyH9Oe23+1?B*mr_l0LV@3B*9!NpQx{bg#^Re
zr8@?tL$rh7|4@$Xw9g{ZzYT)ujQtdqoQu8>1=sgES3`q=Ggvsx5TbAF3531jT+$zG
zD`lV|$`WasD;CXLRYYxeqJZ|?1siQs9-?CM{a=MO(i}2nL!0_PXWQ-3e*NxN`!`Qb
z<zTLfub2LLY5#L^|I1DO{ZUO1!46+Kk4!k1%d&CD+=PD6mX^X|$j?;Joi#n8aoW5v
z{Be5mlHD~!LB_6jhkL<-tuj5QaZU|pC+NE($kud(OK?}W&S`9561>yS1y?>pCY(iy
z)T%^u+yw=(%X}Nmt6LmS9wifwkW2t%yko2f+gF)%E3nY0pO|^SdL;gpHx82LF~Wwz
z`6c!+EC7U?#!kMKFmZ+D$*|<Ye}X0aQ|wI*5H6F~YXn+Y^fM!HW~Y614*oh+MVm2e
z*fMUccA~;DfO!+K`5WMsm3Wy?yFev`8<Mp7wO8q@r&G(SQSKM+K0Y#qcB)B>orRKe
zj*lEVUuu0CTFE~x^NA1qo6{BuoN-)`f1>u^h&VZk(}~sc2V#dIc0tly=K!Id<irv1
z{SnFMu(-$>!(#l!V5!Y-9w?;!Nk=@>LlCYw{LR)T+<M^b#VcLx!4*I*=0xKd;O9yv
z>Yl~N(|sTM*g5P*APIA3e~Z`S<q(8Y#v2IZa2R#)d+aE~<)ktP8$EDl6-uSWTG`%6
zK(K(I)wX2pD<MvUxBpgQxH+H9N358y+WZiGJK)`@bD~D?9Gx3{IZ)fQlqM==h|Ok?
zix=S<K~X=oL&y6&@*tR*Roi+S_yvH@{bX$E;1}Ul5*vu(NhJ)wJ{j)bh1%x(+q)3e
z`R(Dg6J|xevZmY88!QK7c@zDaT^tq&uQ2flPPofTeA1S&DDRbu{;a?u7p^Wj|CvVe
zqi2@^co@qSV>SmD_wqG)zTqDe4xDyXh}TKq|AB--{ehjEv~t#G-6^g=j?&VeE+5%y
zW3p=v-++Qj3@$~)am}cnfqJ3cR*X%%o=?z`72sxl|4d&h*jZOvg}!=fCyo4jxi%XJ
z1sNDdL3~W9O;q@PIRD&2ZoApb4>L<#p8kkanZnGu9$Rz#1~SzM4o_(m{vhFrJ(gLp
za+Hhby0WHwoBJ-oFCl0BpTFM6P5s)<JUI9yN~j_&)M$2r$ml1lC#@a>lrs_uvlHyQ
z*v}vOV^LjJ(QJs3MwC7KT`Say)M%WfF+U_~%5t7+(4po!*!P>60%huy1~|KP>_)z<
zhi$0{+CG{}ZkoPI_|{7*!9T9}#Rh*R2*-1)L$8=%wj6y~C>s$?k=Ge~jLd_Fz^Te*
z#O3JMr^4NI095*~ts^&rN^M*oE?~a~tp4O~{vrPh*~()3Oo*`Z&ebEQLa4YoKEOjD
z&BT16bItXsZhzUjpoFw^H3rF;fA(L(!!0eY$sk=yNrh>@^=t{QDqoxAvsSW7FqKO|
z6D9hMrT+;sRIBTX+JuwGcu+~gS2=oA+bn5%8aYNb+7%*I{L|p+L-Wa_ONsq5U&JXh
zC0)Uw@y*~#DCP}_P5C$HuKMzhzOcm4=jUJ0A3P|OHy}r6_G)z@{LX!%%#GwlLJi~q
z8Y#06#fOCH@pN;51PP0Ljyefw?nJ28Oy+bj(%<R<0R1$f*@kvS+)pgOuKe$^Q0ae2
zi$v;;gpo7{?dOjlmQ2)nRz};uubU}ABXzzm+619akSQKS?0g40q%y!tSu5P?YK&*w
z?GFB#s%oo4nmw7d{jUK2_ZDpR8Tn+T24c8V?0Zk~GZ!e@Jbeq!k<0GEg8PlF-TJkS
zt~;C0i7wk`{O!DMA7(74CG@QQVGAKVJjW}lycvXhd$cB_iEnltc#$nr8tT8=e>&Uj
zruevWTXWDsk*#dhaZKXvw)R=KN3XW*ud8s`a%~KI24Ae9mk-y=oF%)wtH{-g{##=;
z%4~}q_{SI)Sx|p;=aFjtWYz=A&#em_l9dj|RnVe_jozGWSZGtjPQk6~$pQ)qzYVs*
z2R|}$0S$R9u_wMS7n*i|A0`!DdkWS2nku0Mst0>4MJSY-B%@Ep^rzboB0mB+n)kMb
zXk2>svTL8WV`gK?^;zb86{G++`HB|N#q5HquYVs4J*=Rez*^%6T@rq0Yy$x|)`>B4
z9*-_LyB-q~QC}DXudd!+uB*8x7Au{2zo}W59np;jud}bqeHfV@7d|~rUrFm5;7%<o
zS_1j(S7j_37UvS%f>`G5i^N{DGwF&uSsXd?cuDI&H?Wf*ey(>jUZ<b|oa@x=v!|R^
z_jB{T)zZ*-zZ4!)UEFoQP4pecaE5GBG~4YV5R=vO^z2guqaJUMWJ4ZrM~QgOR7W{}
z&vj+hI-fvMn*Z`wOwFRu9-Jbw9Hy393}%hr5~Jq$LRz$k9=9?nFP;~acgdHgztk{P
zWf|rd^$RxIzzbK796S#djIvgc2hGTKW?egB5<(|UE85C(KDu-n?|$1|z|j&Rf>H`U
z2{MngxM)sx=CxUkMXDZt-2Eh&!|B#YXSdkoM`^FyLVi+fKI7258GBu_)rq6a6TnNp
zpe{k);-1UQE&CaKwrkfdzf@&TS+;{Oh!1#QVhI`N@!DguQJ>4$YpvBVo5*a-3X3^Y
zr0u^eo`)DnYps3wVkhSNGcvWUBlYe?=p%WHYp(oEm^#=Y-Ye4GZdtW7)&2)9{+C$~
z5LO1KIg?z8?lc$XJ2o#zjMGK0_+e<!k4yFNPZMj|f?}$z!`}ul9Rpx6uUI`nsPa*b
zXkON}bbx$9zwZ9*K}xeO_@S8|`+8i3?^J<Fn+K8jrn4?FVxhoziJ!@}sSGCSqTX(A
z`r$<>PK1w(v^;y!DlD>%fe`^nH-OoYo?YT!b9nPs-~780R?z*ORu`cxA}J{Tpk_0Y
zx$#Mo(r!jiBb@L87E-z3B^#Tq|ELkPdQbB^l%vkDNnKJ;zxMy(96aI(8-p1@r+0qG
zX#A6tL2Xu_7J`wMe{>Q10stlsZ59k|4LhbzgLg-3>35VON<R0LiBnWep)LsSSC@g<
zDl7sn9O+!K<VM`z?qRO;I;;46L6prGtyL#Ka>lELqG)|4+CvluFn2|tu)K}sCNIE6
zft^n7NF6l?rp>R3%r}2p$}J!=iaDmuGyqI9gpZCLd%n%bMNxFc<DcDEXt1vrZ8>r=
zPnV`eJ@orx_bFVrdgX=my`-tS^nG(0A|wM5UrraMo}Nkn7h_)?7e|zAjSLJvNN|En
z5-hk64hc@s;6Z{1clQJ*1osdixVyW%4ess^gME|TeY^Yiy|>@;S5HsRkG_4YZ&jUh
zsxHMligW)Wt=5kSv^R@(bk(aO13&Q(?8QFX)rEq$+wjx@@)?{Twr|iKz_8X)k$J2>
z*J$9<Ocz2QrY4G#<v#n`F<l-#iQ4jJ+s{VYuYMTyM&Z@yS0QMF>?qOcY6NPI3SAJw
z2ri+GgF)Lab2AqVQMsmi9vLg*krVHozYB4BfFp<&6I#4)s&Q{c;rha8l$a2-T@G^;
z`CQL~v{~YSD5v#7i+ryt??e%QtlU3L+plzMlONByeAV-|WYe{Kl7OO(2FNcsGiX<|
z^VPZd1U-1&T@RXzWE>+2gD$*|TY4`Fn#2X5GlZo(aQn1aw0q(>x8cJ)z%xE(hiHnr
zwp5rOPsJF~C-bAmE^7;%G0#N6az+PtajtXhw77O-O{K1LzZg@u6WQ4S3Fnv-M&`(t
z3MDw7@QNI$TgSA-GAN91%Qx~WO~#cx4RJ>1R~gSoaGGh_G+bXNaT+Lrv?>gWyD;DI
ziB#Gy_i{RSP&TaRUhw{&434*NL*D8r>`_^8w%&b^9nHeo!N8si;nOtQYUUCCc}$jA
zzt5p!K6a|dnK8=d!#G!yL)J#z3!fI|mZP|pMN_q%&5Zk7v(gZ~dJA7fV})B6I?ME|
zx*0lT<~g^MCF_s-mAuQ<WW%D$|4aOkm=_c0ZxaPRsa5#)@O|hnhM&OfIa+&F)d>Rq
z9Rf0?@83@s@-@jC5~VJsyyP+zOZT@07=RJ`Sbq3lWiLNRXasSHx<`qX^bu%(a4!#4
zv>sA-2y@J;sL^qnC+G{1cUN!F03H9p(oQ)1mk6B`6%cto;42;y6aMf5#)(z&+Ooan
zO*EA!7S|O>P>Cu@GaIN|t8(7pCcc2+AezbZ>J3ItvpvxI$P4aL@EB$aqDD+3+L?DR
z09Qji57diY)f5@`{3EAHRaZz#dNEX9vSm;RAVlE9FYf3!9I=zM6)IyF5x2Jwzogok
zdNU-1<><WQ7NW+8l8mum$cQpuWls0yEBBC1By#5}o}M+VDT^@H#C7};R_W?Am!_XB
zf+D6vyI_ybQJXe(x`4CU`WW|9T{_tO$5=wO`EcQ$DvLUsfj~DppKG8R->cuIX*|K!
zNAH$yn+;)<;B6XUIes1=;K&e3EcSA)Jfgz>D9`Z@2@iqWi>|EE?Vfyo7+#;Z_;VR~
zQ<Omt;O+T3%8M|O*5xHyv-xitzn!;y&3&-C4i`N{AULm@{58I=gL^}h>}Y_Y8-!_z
zve_Y533ow!fs`Qsh_fT_@hS)7Ek^Jpnpg1l{i4tSys{vQAHIaRtJ6#W##cexlveS4
zeHU;J*zHQJk!?xT28EOrmVLutD&y#EV|u-AY0Df=v%)uhWqVnU^1XVUIh`jA=AnD!
zN2}kal7yv^K_@hRFHYsRD96TPyihYd5QDFCo15&BO%`UFr)&&d_Lo{2f%aOHzxF!K
zA&E~Dv$zY&<&!VD)B}39R-a_}`$5FvBs{(*HMv<d&<QufNF35yn`Ln?WXEiBApvCp
zy)+K@b?h4J+A@kAH@9$y>(x@16&A<#xQ!qN@{EW{i?{P^`-wA9Ua}ZbngPgW@@=?q
z$%fHd)TZjeMzGb(ATt9`If}`3NQn=(yj((~qL}}*G2uD~Uyzx_WWqti=KAO~!GizO
zhq%f4_+r(bI-UO+WVxa&wk?!3Lq|Tid#uU0k&tT-8wA0n7TzAHmUwVe6#bU-=QRoe
zZ897roP}n@G+9s7a8j!J0%>e|6=A$eCZcouM~of()X#ckez}2gH7;7^!FWP6Z37qR
zeyTr&n%<OnyeNzIl@3XkZb{J~NW@U;Y{y`@^wt{>@Hb+#)$8<2Ev?#76IKUr;iFNM
zr$P8}azgJoGvNDWg1)3puF6=|o)M}T#l_(B)`B$D#~)k0my%IVgf)u;@P*HaM6nMP
zi5}W;`U2o^3rEvy12wvi3^TS~^Y<;hyxxw>(<BbYcY4`rN)Ex{T_pD}(IlQN4jWOv
zq^dLH+pvwi3pV&2Czg?Q2X-lUzcN{lJe6+sRIUjUk0#XSp81Rg^(<pty-K1q0D&^&
z#{fX|%|t|eb(*go>2CS!aRfg#pk?%88p??@O*BBK@Kze1*{&K3^|In*!R9v1%(($Z
zH}x}_3>y3fi%DbOye0>aEO?tib>`n5r3x0Z*l^wtpAMK9@yQlnCm2r?h1XCg22_M-
z;8-u0h1J+a13i1A(pRmOuQ=?7x<soSpZMLc_JXFWJs3#3cZ6K8qQcYMvfu^P2ia`b
zeA-y}Oi37JGUgaAaat&MRMrSvY{R*~{Gjhs<~QH0kxLRYw*DZ^-j2Zd5w2{SKb$T#
zKx{h4i0x&PXHTgUJ;jv4+n>x3OKTho7PMd_en{8zItjZS3vYhe5AKTDU0l8yAl`So
zf!`9u#y_WiDFz$VAn^^nKBV(_FRUh$+X35E<sTXMUtkImBPlpVHY1N@H0RuwW`iKB
zgFsJyn&8Wv{v8aw5R2<u==J`a%f16YHQ_#a-w$6Iw53WM>?i}Vc6|c~`OE0!pO=>$
z%3V`v#$MsHaVx<bu7t})?42#WPnX{~zGvh_juDXmFGAE2MqZk-1fkU4AT<AqnrW)t
zwvgh_{N;kYxr()yM{{cGQ<OVu&h7g^fZotdz$aN4t@z1Mlrq&QrN$5~b-Pc<adfA2
zz&1X><zS?_f94CltOogf(rl#2C&2O+vs9ErG`98=710H*O*L`|H9|P^UAkm+uYUwe
zgVx^A#ifX2qzE=b%$-cuXeTVDMQK}hzrsjoWVn6&L?iS!5$wC_<bY2Hou1BajWkLa
z2)7SyO>a$kU1@L7W>FH`xJED^4EdZd6G`tfkkCZ}jV{geH&2}CcTjesEN8Ricxgw`
z4>-M0ikMtI@O53cB=%<tX?Di>=-cu8Z1k7o-(Zn{(wdZVOr`j4Hq7WLM|c>^mS|YA
z5TDR*N}VhRszI{uX6$Xe-0iEWinE@Tu<Z)5Udh$tlv00$i6LXRThFqr#%ItNhmrC)
z3B&tX-t=NAiJiXQgnSBM4hbs`T%%*N$6O~9Xj4ESFXHK<J!F^I=-%zdeHp4FJ)O;e
zn_NbASVhkbxk9xf&SM7`jeOFI#d{$enU*PCMVzhUfHJw73^2m=n7oJonFHaylQ_nl
ziCrIXt_0WXF@c`1NE}F?V-4-=W*QY?jVLqUfXpIN@i(yTyK2J81n#bKW~HkNZjG_$
z)k9}HRvu)s#!dc4%KZc85y=*X(;g5!JNLj9X^(wyWncDI#d<lGLSQfEB=|bYUkw?u
zu!2^T=Vo$@OCqFN+acm1FW8e(c-(fMM3X0~Qx-H;S;`t+oV)HU><l1*?W4?v*vo!y
zX+X}RT|NGQ#R-!Zy2HAf*`0Q{oo_N;n6MZQX)3GqkC@Urj<N*YUwtpm#5$D${6G@)
z@wnL)gLE9pp{ZjT6!HS>l*;fIEKitXjV?t&WX7(gWlf^HT?HY`sVe|KqZfe6P-X}&
zI#DKE;m)m>0StATs?;_uFxaWK#;N~wp)g<LpkHp7Hi8p<pP!mmm*~?6UyY?5j+{qP
zLtf=U<TaS>LExnsVRSLLdoG%Ma#1$6bDVM^`~&7E!$#G4)7GYnhRJl=+)A5x5llmU
zi$9A*_`I@9Nn02(ogv(TjB}^!P!YkUb1~NTb)ubqD}A!%uyL5dA5N;MA4L#>v|!qU
zKV~mn`V+Xh)mSY`;-`85z4{_54UXR=_3%oMq=`2*^d2IE_#2%W6DY@K<Qs!*PL9Pd
z_f^pO%p7Elzby5+Rk<#UBiDr8+m17IG}!M+&9}If3L1<@IXq{!nzRKf1|nOpDfNV%
zWnoI*a}wdyzNaV(-%Vuh8>duQG_80`6#EUfx%!N0#S}7C#9=VTG~pqJ7qxbz33e{^
zRHl3{9s3n$IVyW6<u7?f>(qyoj!P-~ORc>+k&Hk1mp519k%GAqQ$;TT-%KT@U5T@Y
zT~e1`o|<Efc$;3@nBI%J#hA6lKF@fp!Qfx~W9Au+uOLs~=vf%U&gnk9Gkc}Owfk}|
zCQ?0<^D&=@@Y8hIdFO9J8*PU{HJb0DQCn?;jbZBJIUGF<)?8<_fqYm!5k$0psk$DZ
zi5;6nx)-?{1?Z#0?Q8OpA{&whkW6ruYqvXeEr7M}O<asP^gWn39ObUq`H1hGu-C0g
ze?ow#fJzT2q1}-5_gOabWOGzY$Az5~GMtyY^O`5G(O!b$Fiyx@b-<GI)euJVB;Q^q
zqswP|a!`|ETb6Q9<W5RyD$CC@E*gJEVfRzXk)-MGBU{tn9@mz7fFf=YmaGiH%kM=G
zq9Sz=`z1P+-ESJp*>n`ec^hO8$-M4mfPyxk$*sxVARfZ<3mcrP^;LZT37DTZ#NoAB
zeCvML?XtUZrJYYBJms4i5odYVa?f?ctX(aNkl$BtROnDPk6i!z_<7h8*D<Nft<bno
z{DLq!T50EAkm<5sAoXNxM^FEqO-rj-P2e9G0aXlN02q_9*>pzZ+SoM&q^pp-P?64*
z0vJ!r!pIj*i|wiq-?0d8PnOJW8X?#&X4#4sxhJD;)}Mu&eJPN6MRh$Ke~#lJhcOeR
zV!I9L&(v^X?g;Xif-9rv&(AW~nuD-dbsG{UA^qaJM;h@RaBnsYMlQp8=pV(UuX5-v
zX2<-z9%)-69Rbo0Rbjnj>n`e(6-WnNGY+PaKOO{ic~3dkQ=cxcWd~`2v^DN29e1uu
z?l&h=VTn61UC}O}6q|&{?N#-v_lt5K0LU>l)b9#aIWsoVAA|FBs}q$oD^V^y)^8+B
z(S)wT2+XZ~8xi%*aahJe09}n_TSbfPSFc&;X_dlV5$1j%E4geD=;3_^m?`%%A1gMd
zFZ|NvfNQ?4#%LD@ssyZV2TwEfecsT1r@zaQ`ohmQWX}(tj)~b-Y44@7m?X<Q3`tBT
zNBEo2hqKOa%^FitfGU6Kyc&Ah6BMf=trEZi!L$dEU?U{XzQW^mGd`Fp-U=%ebovk&
z0lo=^>wiz?M~1?g>!#s!naG<|8R9p(gxBPr$*uUDffcpaErTTM-)PcH?jDm?*Lq*i
zSiE2<o%sqtGPo%I1mZPz@FF)N{{*fYDL+Tf7_4{2AhSA9P2scj<eI))X2>kX7w%}z
z(7+UeF6uy`OS7~;$3plb)KIFK=?SsU4iOFqqO;p&1H>}RhlBvuWk?1viNbP6s$jcA
zCFD+R_u}n}=fEtM_QlnnPJX%sc=oobc#lfyZ(^6#Cf6$$h*NPpoI^5@)dw=d*sUZu
zx(=A-cAAi75_@^jKKI;%9%g<Xj`O`1nNdi)y5y;aoc1k6O)pH^6}eH#;>o&+%sY!G
z&BF-xKBTqjCD;TA5m*^gwSS#b7x;bz(K<7=F)JHYovP_hA)<UFspB6xAuhh-U>K)x
zmCu+DUdA?VgZud%pbmJO7(XG(8qO9Q#QdtDL@@xpgL3AVy{c|mJJYlZyaHB$-gMpy
zo$&*FgaLV2DAC=}VUS)o<K(j3ejAIYjI`%VYu|5Rq=@`XOh3x0B)aBjvAoqE8v;si
zMaqmnRL)wIYdea_VnT=Fjg>sx>P#Sn&|~lW5NezDEgx-5im<mcr|T>B7I1xyFaH~<
z3B&D0a6}@*bdVIL$-Jj^e!XAVJ0+?_a$eqOLJ4y<>4dc%t6_m5Z}cG|S*sFRZU9rs
ztPe#S_0i!vUa$#7+k@fqveJv{Uu&_Q%Q0Xc)1E4twG44y?1liGtyN<cCu=-XBX+_2
zmw7_EgQ5+`r3SlY(<mV#Y||<_MEnK6d*8IYjy$XL7W;Rk51AdADmqq&bo?)qHKU?%
z(Q!(@v$6}F^9%?YXuWt$#AN7QmOq>biH_NHa+Ih)?oZtKT1loCOHvs#=VkDdgWUE#
zg!}4!OP%Yk-4fKK?YZhGhraY^17EeUt~<Jnn@|%XL0%omc+9<66h=rdq&_od4L$Mp
zMzSX_jpg?8RvaMaYeDqb$h@dBFm6!w;DKZBy=lk*H2~IBpm+{$BNq^}4+laJAc^`e
zz_%-Ra<Dw0lq0y%!0=Y=V;L2B?Hp!Go9PXr8FO#s)ko&|<RxN0nCLVa{4!zbhFcED
z1`5!aDXo1o^`pqu_J8v<Fye&{Av**!^Sx0pZcP>}FaApb8Ouw7F~TqPzwC$()c+Rq
zY)VqvxmR8+q#oPaW}8t6)OK@}?%1QWy7FS@38b#_?yw)6+fC)lwN8FanHtL8AxUj3
z=RFc<KBsKkT{SR`DF_8s?B;-~POl61DfO>>L4vylxzff!de^Ifx8<)-&AT7ukZ}dR
z9wB2gse-FD4nx$2%-pHkHfgUzwQ~JX9A!+P5}!IU`aY2a{`}ze7VA(ejO;7>+}PlA
zIPfUC2<qQ#k5=$Q;fk%eUp=N^c3!M_Lu{4trHvIUXL54^4}|nUP4eekM4nu~cJ3C{
z$eJYbsYTqcc0VGKr~`$k%=J0Jt1n7KgIg#$_5#Xq@nN_MiYDPg6E^R_0t%Tx$wCY*
z&J}-fCSB`C1JVHQCMJ9jO^<(Ourupv#)=)>975W9Pf$4d0c8bQP2!DGrnRJh181VY
z`SSNn#?h@)gGRnwQVCKjINCXOQk6tHZcL*14oGMdlh44T60ULN`Plw2y<o5p2agjv
zBIPxXn@r_Fw4S24?H;7Lcxbs3nbj>7qce8puaX3_LvSY<Hza|C<^kjehR&;$WDK0{
zZKaFtlA9OhXM=7m9yEMC34K^zxJABCIu!vddxqcTyxJo(H4r`gdTyzc+Ei}q<qzed
zWkuc458hu?`AGxjNH;axButR!C0Of<nWyuv^Sq>JYPIW-XOJ(tMs%P<xyDTSL!00V
zaBlVe$9$QKWSfhQ2{VWMND(~oRiYDk_tjHnejTS&Tb+V7EQ0{6U0;^nu5!YEiE{qV
zxco)?uv$b-$p-IQIwv%WPyTMksF+#AAI_g|qgp|Oe^sy&)FC1FS-`lm#cF>40fiyQ
zIa7Za!<wF~ntLlA6%PVTkfq>B_WQ8GBrYvTul)TrgUaV!bfegoaJ%F;t3SxaGq`-E
z@4L{bLbramK#=LbIl`gjD0@oEDA8Bc3tNY68J|hA2Spvp!}j}@%t$2e!R{|=C$LSD
zr=~*3n=Xvt<#yNhdQtnH;edmLT;ATwT0PHe@q4(+(MWXCWw$dz5Dd|)SJCp+b;pxh
z?Hk8)+=QID6H_4w;Y;(@8>P%ll?=f)3K*2M&H0yf_3v~sOc)^!*tFY-rUWtqqdS9i
z=XuwCK6MA)4%!ug7#R3W58>+N5wx#mP<7+rYxy@{3sbyn7ejwBRUjX=HcF`5Ud{^0
zM6Wl9mJL>uQKG5^AIaYOQ+q@UaP(rKe+c>z&_ni^7dlXm_#-+%%3;O8D!#M(@=RqJ
z{zEq&l+z_9ouM=Q?Iw<GJEbzwOEP2~)r|chGTo*?=BtX+2t_L2yY3f%Pp*>4K9?ON
zq#>eq9D1XiBCk=us#iDUJ&3UkwnNk>!nMNY;~sIWBPt*J=A9d-4HV48blmNvI*b-z
zqUnv?#vaIFZ3bHueg!$_>&5p&PzCe(=~&h*n~N6bs@$YeLpFcD^qYVQFZ|M69Z^`?
z30VK{X9ml}+UCUI+A)^RRb+4>*rVKJi-+7ithLqc9HZUPRoFgW;mHC&q|#1_z23k9
zctdZeT}nN(SjT$<qrY8Pc%qPfrHn%|^~(Ha?oci2LmyG~j?|bWYK|7(*XptCjRksc
z8D%xiv5FIs_Gb#KzG7B3)@hu#@F3&D7ON)TAN%lW`*Cmj%DD?C!Ldo_#1RoH*%Uu{
zAPD4>rW?bnAWa#4xL2gI8{#jcP~WV#800U5#!|vrt5teQq5fYw1zji(esjmGmhLkx
z9emWS56B#83K}$<+&*Ie`EiooLP+;u0&|j10Kq8)u137D6kniT3SL{QdR<4bc%M!^
zWsug!;s4aowBeX_ptQYYVI*5s+Sx^zk)vfK7o!M{;(m?mS0?T{EUy2%n{AYHdshP-
zhgu?`z>A!=&%w8!$-|#7FAdXkyrun4abc-gAfTO*8Up8czExX0?~1;QAAp-;jQy2h
z*OlXP4x&ODTMmIlfLzUY#k+Q@2obksX}tU>_A7eLt-qDHGL^S%x{C#~pnhonZ{g&|
zr8mkfoY5NYL9D>|vGf7sFV@So&-mIBhHW(Fl?MoZx2#&Y&3-w?YW)EMbMR@Rh|p*x
zr)_3UdPH$+>&lV0V-A-Pw)q+((AEBU98A8b&Au9n-{ieP;J%S2c^R}&n#0``q@FLU
zyL)dt?LOaP3DUJ&Q{`7xejg?H_-4tr`);aKar8sV%BxKc`;nAjbpw?YtW?*L|Bu#1
z3;?TmTxTR471UXMP$XObDw#MbP+YG~wmJc1;2o(qF3EhiN42miVr!rQrM1mu{5WRQ
z4p%IR|7&Lok+5lRcvE((t;XQ328tj|mqkl>n&MS9qW&XMkP6Ll{Sv4TYy2R47+=yw
z9|UBV^!@t5D--XaUcNUypS9{6+%Ects%U=mx8<R;Tqr_`sI>fbsATl(ZRF<g_eAXB
z(eOR?7)s`NLWW=b{lW?B44a0&81<9c@PlJ9wFGMB0jp$^rE26}pTn?%zr6@E@Sg|9
z8p~-}>Th3-9nkK}Tz{A_>ukD7h(WTY{mtP-jY%>lK#YOFmnq8D0PAx;mX=Y^p7r{A
zwJi&+;if&$eEd8L)#C|%VVnkelBdO$@oI0nS(D94q1Jm+-Tfp0-*K>-Q01m1&Ac;j
zVK;l4bhjWZPx)Y`dNi)WbDAG|+$y9rJd(cDIM({Sk)c%6Vi73G+0?p8qg7`d2XMJQ
z6rjA$5cu*7=t9((-K%)&9hEr8l>p<qRMe)G_cfQZKCg59@|7<uKIA;k=TJR5{CA7Q
zFbcer7Q^vjG&(XIKw6N3N-^xkd&tj__~#xN!;860@cp?<-4#F{+v((tmC(WG3=ziA
zbH?p;|6nS7f7s1eismR+raj8xa2RL|+X`i~y<^?}(7+LeHjqrf6GO<1!wZG--I|(|
zVc1;!uDDHT=^T2#7O#$<I6?AetY|cXU_56?W8n^@J+ZAb%@wt`K+j=Jq-7K0*WNy&
z+Bz3VCMHTT>8pP<+>~zRyDL(<jqU%gimDguR+aovUAxVOzYU<kyc&CkDqQ<I-!a+i
zcMuY%j)KW1q(4V-kEvI|AmFtHg;k7Qhc}zH6?-La^Ej`h-8VfMl10%>WYILSb`tIU
z01`$Cg<8t8i@lk&%P5~SE|RHMo+C(gg7<k?-mcH%Efw@><*|J)RLBTi<lUYT7p3ka
z1`@oc)^%^+oJ2cLOttacQzzlB%Siihpic5?U?u@Ob-Uf5#asCCDI<g4WztB%S!X30
zE#eRb=t%B*ORUvkSlx8yw6_@J4a0`ahx)RJtwI>1##Vfu^Bh+Vkd|DpBpo-n2xWzD
zpDtQ@In3^FjwF39R=ioWnePELZng}h_`)v#W`X-H3z&ijN%J)}%@syC@CAklkbRwe
zsbHHbiyC?PTONua4EPq6zSnI|VG#rL&NiY}ZkO-KkYx4B3=#nU<|b9@lt2;D;1Z%1
zc$?2gi7V8TcgWX6ItNceR0N&UE2mKJcI1wS=#fb~i{XykwL-!~yPdN^k_cEGdG3-K
zZ@<Bn`MsJ3@jWQs)~7vZt9<o;w}<#aD$o5>$N)V0ZI_-Udi8It@hF{Zf0bKGs#jIz
znFP&qvy?jMyK3CNxR--|bGXI<!o<9h6XhZjTwYA#M_68Wmq<w#407+TvY5$PFMm}0
z;H*=T>8vy<)oP5%O%sR@#+vX2)?nXfmwKmj+j~<KWtvSkRKwkOq1#M&gsCgh3Cu8@
zS^QvK^v0}4U#Nw@T@e%xAz=FW9!7}&is?k2IPrXP-=AxSrOstZ-nSPFyHTy~KwuP1
z3hY9_lGmHz70`08p`Tr2Vscr#(wHzJY$Iqr*Alj@|A6y&NAbXYwAjp=<+i<5&v{>r
z)N#M^e3!@RG(l8O$p5?#YVC7xc(>AksjWF{vwNW56eI<r_#vdqcd}HeZ73}lJxU*L
zy6nHj>1d$ekY1~q;yUs*@ThxsC7Wm4O9aS>HOZAQ^lsj+%;824x<m2s{kZ;KiiF3V
zXz6(u9XC8t@Y4&SyY&>+nOsa=w{g{m{qK9IE8jsHla-Y_sMnfj0SD)OlcnQ6&)KZ~
z`#HKE*W+FwVMSPj_n)xcI`9xYYFBJuS6j`UI`pK9OjQS;pC6oz?K`FHf?C}Poi?Vm
zT0IZlpxxP{<HAo)pQF$6370cR(gsYN6q(Mk^+W7?wq#wFesIFv%|*OrHzXeA67k>1
zw4B(!ptz;E{VoD&9)Y?58eL0*P=^Qsvy3jxDooCAc!InGm3Mf2)M)c^`eXPA2vP~k
zgahR&zO0F)JwM&2tRQLpNAMqOn%VUnZDYW@s6?w|*Bd^;X);5lV?VvPM;4)S&To2e
zapy#(sTmRuGi4iG%|4ex%pc$xbme3BRqj<hh84m^Z}Gg67{B}g%@i;NG4wuSUy?Kr
z$Xzi!#DKHZV%bkk_6#^(J9*`OA`ggr(j$=&Dt6^rFX0860LePlj`62CYaWwfWDk8=
zh~~!+IhPNGCu1#$A%TV32?~L$2nYhNP<{%+nnpU}0P(&wKjG?qEDwI#Fl|*}fzl{8
z%P2Oz4WW;splc6461W*#dCs`s?dp$Jb-E<7-pU+iQ_!=?fr*;TV{@z*QJ|)JNwSSM
z<e4d@Ezu3m#}b-p@Zd4ZM9xo#wx3#$&yyUNyT%<yep98=m?c;-nA*cSZTG|f5a;x?
z^|5@@5P9W?%1t%);p0b19$hY3`@M(N7X6D*TwT9&ETAX3>mky9KVK-=VOX*%knLlc
ztI5w3UYjeV`*IQ_q=hPG?fUrT&qbw;51z~RMM95<Ydf^j0Z;PU&STHbH_H6>o3FgC
zdj@Go#}K1hU$HBsDy6MFkC)O$UmkfJXIc^ib@0&LMWw`9`akp|NMUWRt|aii4T$4!
z_HfQSGm@TY7Z1T3YKQK{A93C^cRTJ_&#I$asM)5|6kR8|j`VHXOr5qPaaw4w)l9$Y
zLj8vr`oHH%fBEDmh5`TzBA}e@1M3<#E^alukbs_2jjnfdX<yj0`74<L?=-RJ&w#b=
zVtD>&wnGb_CI|-usi^7#J28?)dLwpm*@*e;gt9=*{cej45Af&&a3opiz0?97VtrXr
zpv)-HDaoxZt@<jZc;tR0o5lxgLW>-bCpBICu+h5(L%wm|Pk4Aqa#Pqb=ih8!8JW-L
zF%XH<sz4{~x*v!uk`(U5ksdvNyQ_F#{v1{x?qWyCQ|%x${yb@X&F03gP%RJu-b1hX
z3e!x$1);x<P9BZWCy}|FFjhbIJVMXNdcMj4jR&-PzkfnLpRpnwPL$BN2>pKD#14c{
z&eQi!0r$d(r0{+9n`o5gfyEKRZS8SOhk++jqpjCiOSW4~4HpE%cO2;&1%l8a%PQ;p
z<DY9Mvw6Trq*6$~(^(lBkkL2Vbay>zCsY?(@bf0NR@I?VIsOiBIt*M#s<pn~veAog
zL)%qmNw#Cr?Gr83L0XvdiaQhCn{5PoJ@>Y*t8rvZ5RJUQoFF|JKc#xyQ*3q40}!*M
za0Rto+z9`8pCU^zkNxY;W~EM6{YYeIw&jAg%69Kf2f-Jcmc~S_GXguGvtm}->&M$C
zhTY<u_^)-@y^&|vZUVcJDW%aOg#NlHZD|TmS)SL^F86M+J)x+Ut|k-d&G+UbO-PR2
z-IE;tyir0zDY^3G(lorUl60}`Z1esIZnid9$IwQ~ITJOsm%JzOr@~G&{(bT!;zez6
zH?lSm-^61jS1}jylCt(2%d!E9lYeh@L;G6tY)E@|z^Fa;I}uUl$a`Ci6}Pp&%Cl{6
zcc${Zaz)fVY-5F((vpm%1@9~XgOk&Y`&Fzgy;xBR&uN=J>xZUxfAUOJ18m|g$T%72
zXW^SHfsVITW=M|4O`&1?D$UW^VF?Bv1TAN;0cDtV#=)g`Rdl_PX8yR-RKTH3$R|(H
zjMa$cOK<FjG1?A0-}2vJHXYmPRIq)s0m}32{kN@CVUr28Ja=KhW7|mCxB{JN_p01E
ztV0H*zZ8~c7ASTZ=@8*Pce+7Lu!6s0Db0Hs8&x_ihWD3;GWA==eypF2)7Yb284-Tm
zn&q{%t@ph-jji0vc-|nyh0G1zxt8sJ#sX4AX8?Ulhjm|NdRLgIY#y|~i9<CCrV|0}
z&W1e&29W;_W6lo793Y0g?h>}#2S86Zt}6IZ7>&3+8zNW|`CG8j<7#cBVcwg;$9iyn
zGpASGN}Wj&WRIIg$vP3p)*0J|Sd$<=mZu~NhrUpr<!B%Pz1(Nvi?qdB2q^;>?Uu8%
z6{&ad-R8=XiAM=t@IO9#TBmQtDHOYz;McTRT5RpC5hcj~S1$mNkob+maT@tj!$kN6
zJ#DABLYgA?mn`j)RwnZ>&>Jj@+^fZvIE|CVwt83Y3ya?ri}zpYS;9~sA^#-4{#W3(
z4TpCSg%U1P6z<xd=1rTVKhbY-3bI3jSADQx^kF}6bQe#QY1Ej$ntxKhCi+{WP_!8R
z2p-e`FGDuk&vG2`zjAEpzvb8<i--4clzj?N12tGxib&)<&P|ruD93%Bau4?8IxlSJ
zAss|S{1;XQ%Rs%HSWzOk-|ZQOgc5XKxrE&2`dWovWY%m8)O@*$=7}8Je-dpXRqptn
z5UuyBtg2mJhA&8rl76yOPabl64P-16@{S%NQor``WUBZHo=zF0uP%B~ifOSmLO&A4
zVX1XI&CreIO=M#d+`3TGs;Yi!kWzz5)>LlY2R-HfxYXc`Yq#_}){1#1td>?>kNiau
z|7+Dv%q%$3!Fcy_^k~(CWV>Zv=w0^c<aykIt89J1RK5{#c|f+-rcjEEq^x*RQ}0Yg
z&V24o#9FtTHMWq12&2a|hCg$VOkvR?FSGWq^BB_4Jf-U2!mRf`Tl+kCWaQn2Y1r!h
zjH{qq=u{lewRt?=q1BHW=L~{UJVR5yXY7{e>1Ulh-jBj8^?0F4UYFGUync3X;-gAF
z-p&G__j(`({tbmX7uBuPo#bSW&lnu$z$cG(iicU6Dw74Qj(D3tBKrTuv;6I(A5@}E
zoldhD2c`Pm{HjsHtFJS*i5rV#j{|wus}mPLC>&*M?5B1t96zK)it#!7UkC-T?sBkx
zSq$NhdwCfm5;(D0OK9;!(Gne@tAdSRKrt#v8G(Fv(m-5>a1a2Jk<t#dL`lf`OVJ+u
z*F=iW!5K?yRQ>QzMXdGd(J&pIgtKvW|2tzTXvGzYwa$W_yKtaon|;x!1;87E-6Ydb
zW(o^dtVD06tiIh=T(x_*W3lpLxWBl#T!el<Lvz~G`%vnM>Nu3lAA?=?7gXt29yN%p
zD0-2Xf=N4$`yA(dF0*RYcaU<K9V6BVx><f%pTd$Lycu|R7?ChBCi-YB%Le#dW}S?`
z`Q9z^V)}5gIcolF=F2N>H*_Ax#_Pk%POVv#0?l?bvZC~lRS!mU->rLo*!_4Z!ZzPf
z<ku^r7gx0%>o`=$HY-ImrA|@fy3jYfXxqhGt~G$Rxp9J^S9~em>H>W16@Gk;xw{ai
zmvqq*!wH4v%&x>7O}&jCA#1C*?J@os7i2w;MP3kX4QD#)7S-~YuoBxkK%;gE3tcBl
zd3kWq?8%One3T;33~%&2M`_c%m1q!(wGI{*$6x8IN60C_a77h>RXU`J506MLxL*+O
z;|Q#bzyx3w2}$LPEl<XXb)&CHoy9TRM}Y{IyE)Kra1qmA$QkpM(u_^vl(`vRY|Hgn
zvde8J_1Wu5XTGK}aOm0|N(!%*UWn{yY1}u!4J<PN?B8ml1R#R5)Am*gN6irJxV+H;
zubFq()D`a}5VbaiM<!Z+#LsoDQQXi~&7(?jzDE()xp5wG>L7HFy{Kay3nL51e5NKY
zP*i>AF~Pu|#k)(Glo=a?7BD83d)aS*JJ&%74XjIE=G3HpSOoQ#gN25xG)fhtiL7wL
zs0D%)FJJ3MuqQE<IlPP@B>H-)n$btl{5q}r{o9}vBVs?5f){xR(8LdNW1?qC>pz$|
zz`a~t{I6u7{*TcKRrzyOH=0QA`nMxer_N;8=t!J?S>Z86QE+Cuh?@6_2e30LE+>i&
z*=8C|caD;~M-~)B+Lh(9TJKo*dS7)}bvRo?;xSf7Hu2d(!dGvc_NHQ>*T)L1!%2#z
zE!DnHH_taA-yKZ1-8S~V5ib8qZ~C4`XoGj1LbyFvP))j5Ae(FFe{ZihJ^5YF{ZVL}
z6$aAMaPFjWnko0S)Pda0m7-U6D$sNL;y?4Y8q5Qr{jBL7RFA_HJ|Fih&+Ng#kL2#_
z`0kr~8gw_9_8W)Bu%4DKyv$d#y4<nL>8(GW*7SW?78<SBL?rb`E{u>w!)%_1TPI8^
zM>g8#O)4soG$S$nc(W~kJIS_0eQ##FAgZ^60XQ2+NS6y4jp+dbFZZT-b_O3q;&>rF
z$0@BI(#SiC6t|f2+r|4O4UWN8HrvJL+o$n<`gg^nN}v`{hMOIh(<+%@&3A?XK7K!I
zy#kuC5_!e~UhnT%<Rw4Jbw>uY^_*y$x^c{CQ4G>E4VF{Q&+1)rQTTlvMB8?B9qK2*
zBf-JGqs_t2l8fov{;;EM`y8)SOjN&yRF~`lkICZ#@v8kc^?h;#p?dp*)%Gv9h8xMc
zD~rJ)E!IIHKLbVlUzAij)S(pLH6mnfamNVqw)0UOur)`!p*8goT3j5MY(vJ6y2Pel
zmunl_lDpiV#IQ)o+EY5NFYM5}Zbb{f3xLa%ww1Ajl^<`A2_!*9auU~2j3&O%Owfvd
z5JGVj$uLB)9?QFxX$u_1WL@hHJ9RLzM`(eyZKU>Jh5<T`?tIRwpvwZq>5{0`7gk?;
zt(}dS>~%5mAi-H#+lJR!1c5`xFp<%?7mCz)o~u@5S{uFLRq~nZ9mUktn_h*o{+=+q
z627{ZxwzZ%`7-Z?(qN_dDb;T1@#B=s3UBm%fqpN?Qv2hre6AxJ_kcH#!O!Hi9!mDD
z4|hC1vdeOCtFx`HjE_5rieo+xhjtz6pOzY(a&1-|LIBQH&jir3M@1Ph`Q^<qY`=qx
z`&LPqmD`Ul@l3M1Iw9G2Q-VhE3FUJb(lcnhx?2nwxd2IJA4~{KQJ?{(p6Z%;ir|o^
z1C3E7w~*_mbu+W_^^wHm+``Y}*J&QKW>-^THt(bNVA1vYo1fEpbfkrHPsfTaVi$zP
z(Vk!pJwbVT(wfxH;iYCvQz){22+-$(z4`iD3^h?c>231y>a=P^R@M5nE`#E3iU`=_
zq~VbtI>(yvi(;_ZRi<X{em>z#f|}rJlI=(zhPs@y6``4SiLOgG)3U!c!{g5AmELhj
zy-SPJXc|m=Wi*3ob@81VPUmbk%bFCchdf*8o{_gsB^~!R23BC8Dh_u6K)UGJR^s|e
zLJ~f@qlYQtR!f78ed@MT>rbO3jB>kJNU^9}NVDoNdIB%KdPt*`aPh^WHtX^@-RW{U
zl8du&*38MjbB%$HcVdkQWc?vbpMn$Ru&uYW9igzk9TFGyZ47Xda%ws*OR?GZNUj;g
zG8O<r7^7?VYbzB~S@8cG>U8@0eL|m%83MDJK~}h^1s{Hjm5yO-1YHebZy73ero@}c
zkQq5o39MR~HqqM-B7ZU*03Z7*C8;}A$aDV7RYFPX*T3Uh5*5xS?DE{@b7!yv!F^?`
z+ToRFqBN180<goNW=)?`MWZKrZlyM4w-T8}xhEaM!co-(3BJ5Yf^k{nx95B4>?Wzy
zLemU20C4A^)mOXjGGRz1{66Z1lrgbi)yyzD@HJ9ULrlChntG6dM~#56gIYBlsK&};
zb8l{OIpn@{h$idyGr*+gY{tAVJ3!=piM>Bf2|j+@w@RTD<j1%;wI=r*e&N*)Zd=>B
zjQ4C1yHCp3FL@<=E^D6?9N>n3HQF>o<s>o)SYbu<BX0Uu=w*|*9da3`1^57aSaL=8
z@zLQVK+z#GEozrx<sPe>&&QWWy~23sflqhIG~ndbhGU(~1;_NSlihJ6$3zXfPgjt=
z7pLmy6zV50RQRi`<xPr5AI$F!9f^k*yDiQ4>!_UP4J?LOAJSG+rSJt4X1xa%UZ1O`
z^wiW?t4t(12eh|g+5s%WMDT5N>sG}d*VzmWKyPeT;sXYXEv}HdcJ!>3U7*{MzN3xX
z-oV@219bQdkE@`j1M6d$<yaoO_(rvYv40=9)gG@ZKo=h<`jw7bPY<Rly%?N+cQ#`X
znx0l~)P7nANK0$V$KXnuQNqEwKQXkUe8q7yQ;xx@cHc(dg0KPkjV0(3d+2|I9Y3b*
zaWuxsd*rZwH`?$g<5mr(^<*ER<Sg!piJ%MT2rq2_;}e4frxU&ow8^q{Ykt5;Vkg!?
z?~&;-;0>E|_X@-iM-j(q@eQr%PILCMRa0^#jsVzHiRx|fpWosp#k7Q<A?UI6bIq!3
ztH5NF?S~+MG9C4)A$^e1q)~MlQQ9IQH^C{gmwM&ftqt&^sej13K2Myj*UtQU-S`h4
zQR-tngkVa+sL@+5lI47tVlSp7G>42h&Yj47i817MQh=S+J=f(L1VNy0RE01{cY(b>
zD;6f;c-dzfP`r4Kf4PHp=u6H6NkVp(!!phiydThk=J_;c7~Dr_jC`-DeDsGKgnehg
zVe54~?Xqk0w56v<cSZYnbaT9wDiF3?L(0;Ra!6!tgm&2W8K4-t^i)(-G;9uZ&P4Ys
zHG~y+?O6ex4UEK@6Sc2rONzLhSawoBKIAsq9i#_aR4i<vObH-x3%}KWYh#5qXR5}A
z+#?86C5aB1Ckr5ePm=Fnu5OgF0z8kW3C~Mv>tV}6Y5fX3_z5bKS+cVfjkUBF+!Aa2
z3RIH9*h*^m{oxCSg0nyZ$&=!Bzi|~(`Vcp!LZaa1H(~OJOhv(4&vaRk*(wO396*SW
zah8qMs~$it4!n)fqs<Y;j<NRo5YqCNdu@=20Rxpg|1~u!6!-Bb2-6S=OVx)d_8vFI
zzukFcN?D&kFM9Y{!rsbe>=U~Z%`#3#0BoB~<V5;&i65!I*--T{YhH!T2O81OqCxEj
zoTwRJwbuiD>@Snx*3dib&%|j$zsmLGCw?Ad@M<Sm3oC~urEcZTKdC#Pdb!QL-G&mV
zUb@q6aHI{`ZI>250TVa~RVo8v$?qVyE=7qJL)QfX3j^6g=*!J2^OCJ>E>bf}n~UqX
z#xK9VG+BQ%VmWft=HA4$m@Nq}aNQc{`-Hd`nZlZvq|(E)4XZ_6{$49A(8H%g@?meR
z1QW>I*|`3Z(`vG&d8$>zjxlWH=f`Q)YV)P<*W^W;YJ$?Rjb?WF?XYP6U>ecXWlpo+
zP{(_)Inh`nx{dU_6vFvA-D}T$nfx%}^Lh<Ib%nVH*it_GP*NXN_lXiVS)X)(wLkBu
zU`Kbl4it8eG)e_-JXN|b?p7BFS}tZlCyU8+DVIG`b$-fsnIpDSwk?I0;0zEm?{U(H
z0QBG8o$09Qp&#b#Q}cnX+G-T46*h8?dDLzG2&G9c8QlHBsSFA(=7sc9&^X1Ts_~Df
zl!-~Z*aDjQV<vmbUWV}`YD<TXuO@o0kvQekS@b?&1ke^+MHAU^5(Lq|WN2Uy<NoD3
zf5p}$I?Qg;tx%=MfU$Up`&|d7?tn<zIW<=H=2eN(Y1sM6w7>1EI!I978DrQFpd>Xd
z;Az9hGhvK?8VXikwNzOX3zfT3q0>T->lS`{G)6kD8+{ut->4*5^b-TPDn;u9we6{T
zN3JwdS*?ffklb9OO@WMD$ztuHaX8|@vHA_^iA0<Lx={rcqJ#+1fLF}BytoBiz7vtP
z#FpB?{!vBKSD1Wtv7WCk+H8ll&Ki%Yu#OLfY$1q(c@E`idHvMBtPcm^CAy7+g=QM3
zV~9dLni1)+E90;s{As-g(+7pwR2<l}q?WcsHG^?rr!saMkGI4Bgn6D<UWZpfBCmIJ
zcV>=$yEKkm&KyUXw;x|k)yoTzOy;y=sCk1b#7Ujdt-5=PuSv%(zG<~_q>nRrpSBS~
zyBa~>^nr4AGo}|*r<DGxpbX<(RDSzvI}Pj-Zsgcs@<w?1ET;=-xF)jJoO3cp)YFl5
ztXqSJop25Z93L$*PJwc5vHP;tY%l%ed_NnBMD_ob*hjs4-F&{M2_bx=X^U?q+PJ4e
zqWt5W;RbOKWA@D-cE6amfa1+M7$>wxGxxU&G*LYg@g>pu%@&F5FCLP-eb~gL`j;fs
zu;$&*w9@51-IVi;-z|k?#6(H<raoU4A-fnLtM3mbgJY1dPQ>wgEXo*K-Ig~{IOPCZ
zwH=YcR}`zF26?)3bHkN*`Z2*|i);c%!;Q=vff6=-Nr7;R)8iXc<>J~CmgZBimb=41
z_`~KV?~4-SZiP`;fstu#WGb-ODeVyP0A}}#vfznz*yI26dhDT0(IJ3u_HpGCwoqO~
z!6sn6++IdHvjm%0`{IjZ$nsRKiKV;G3Ip!yoN|4Jl+&^7k#<~pEe5%p^NQtEPzbV%
zm+ESpG<NXwx7duvKy`lr4i{v#G9(oS2}tN?ZVZH$%f1z}Ql5MB-D5a%HM3T)df}I^
z+>x4gT^ds2<Lfy413u0Gxn4pd%6E6{m!k353<&I3lFmKniAa!dR-HVlxv)5zd+J-W
zDC?y;X{D^PRJQCP29(nlQOv9F<<ti`id{`JYK{rQ1NmV&+OI^UrE7H6M8ua8akeCl
zI`58|ekqzwDK*a8M~of{!x~H6_^>CWKm5=*w7uId8{8{_pF9}qr51B&sxsKX{7$yC
zyb0641!40#uhXj8m#uDoOqc2_pKP(Vw4f2q6(fkRu{mC^=5$(&o_ND2zULYy&|g@j
zkjhKt(|DsccHNBsZEAT*K>3Dct4U2;8>aJ3BK(sv+x|f02ZA)l(;xAxj857&2aPhm
zY)xfb)&rbiT8>4-CW~Hwj=Zpt(dJ3Xk-KD)KdxpT|LTmB0Oo4A;u*J`xw-xvRWt5y
zm}8(!?KFAV9~eT93wAhr+6;7;Yy^jQxjrBWHM=stIU5J=2&C?BM-l3DClFNI3VTcE
zjy#>laz*WE>0Y}BvETZW?V>l6X<*Z+TANkBQOS_ua+3<+N6r1Zgc5B$Z~2D0x+C2h
z45iW+9n4{^${CLiRCV`Xwh+Y>C9IGv)=YgXmU70H7O7}HtT!EM7mSNFrH8VLi~_RX
zw2(>|^=Cl!!H&f#5;Y|fKJ0&`Off&KSJ?iW|3_&iIQPY*zg(sEyqx(&9;OV%lFv9V
zCMz3Q^6NF3kc6eHM@LYja2B6{2CRe4{jAZKU)uNbB`OqQNol$sFe(@aMg=P%`oXjS
z@5s~f82F;2Tf)+Ve?2h4QX>zx&9YY;O>CH1objtzWub_Iang|!C66I<{a#g6ZM)pC
zR<FS#c~~Y>m9jvKQMU=~sq!`~jDl;)!g%%l1hov0>cHXt6!<?+zFqQ~iu>K4=iN8B
zF2#lT=O`fTP~6HECH2Vd=6yFygUzI%`=|Q~<d7iJO_Wr5K*<S5Obfdi0Veaw#~pCI
z=f>%(0@%1|2?nQHNMy1BT;6_#^jnFNPobQ{a;vohBUPtVjhoYqzgWjuXh5g+U8(p2
z_f)x862PfUrq`c8-e^Y-Q6M;LR7kwz;LqCF_}8`Z8|)>8N~}2XnEtt~ox&3%SUf^9
z&?FvhI<h={+1`R#)nEubD&bevkFL{`UM->=%eIy#QCm(KIp7auIpR(Z;1@Dx`0?RR
z(;jmmK%idfj2i|6zC!cs!CfqGZyOI61~?y%jtrw(SD(2ap>W~@m<$5uYjnk}eav{0
z8^}4f<A%91Je(p*1}*zgAgSkWv(csB7iM0-7V_B_r3FziA|2*m*>vb?%k!yLFG})t
zl_?aBL^HuVdf_n)iC@Q0jbQ)KYyt&BYI6wT&Z`7EC12*;v`eBGkZ<0H_3dAd?dYX-
z>~)Y(A>3`J4o7^z=r_JM)q6eWloWvk3$P=$Wa`u8F=0pYN1;$x5=7Xfk#wrrlcrE3
zT(R94k_pw}Wv}(ZLWHqRoH8C=^ljr=d2%=kgGy;Q2ROP$7OuD88<~i*L7P4l<53;~
z*6LyK$zMM2qCj*8OJuEUN1H#;9G;W%Bg{FBjQry>I|BD;#leS#!;6wBl*WhPNRjK*
z%8N>qTA<4a!9+<fY`RHaAY6YABY`Iuuu+m~V2c#_hW&f=e#!BEk#W4+sT`94zVYUu
zQ)Ke!q69qVl6Dp0yYzhZDP-@uUV~z{aRe&WcKi%2>x5lj2)fiYg|Ra?-d+%c2CwC5
zAhe{i1*h!36?_OYFR#pFewesAQ<O?6!=?ih4TY!Y4?usrC@|>T$S>^+TjF<W{r=Y+
zcJ<=;(CC;Xg%yE0<z&oj^WO<){`osjFhH<w^0p*N`(LY#|4|S1PjW_Hgkd6h&@tym
z*opYR6LI{b^Oavuh%eBEWQEHi?0@LS|5vCwlbB|;J?*pSnb+<=-{}8wJAW+V78~~L
zHX1*F`D_2@|L?CjjsA=|oV5k?=Vku4kojMca}o*!@<nsc*&*h?b=mv>{L1fhIBd+x
zXWcMf>|aY6|J%d-uUi$_5N`_*h&V~E@BXh-|Lb*sKRFhT0~<3(%PrXP-vIvqL<X37
zqQJ!BXSy7<|DF%}`^b{n{*1YYa3$pUU&_$`kC})7{V|Ld%WZ=HaLgQ1urUwcuHTRS
zhlX)R1v88um*GXj|8UGbD5=w{BQW_Jm(lP4)S6aNQuz=}x#}v-53uH|+<KF=k8uA3
z6Zy*}X1OS-ORFQ>N1QfUrOW2IH_4!d|IEVn;rw8sd^z(Rx1DcZ%fRAI!URX@5VOo9
z=>@?!jDHIK$sBL?*u(6&LNhvEZqyrQ@;dZ5CQm;{au7@~KfK^P;ZV7wJUyN*c}5_s
z`eq?)`o!@+v!qOvDzLVQfh;#8B-wh*ciCBs;p+K8SU6kFlAFGQ-{nnS3@m@pt<{r6
zyw5MmVVs$Ww{G0sE@YM4J%9N}A@WDYaW^P!bTp_@oPF}Nfaol9v{0L)+=)ESM-wuJ
zsi7xgJ^yOxfX6!L2COMstK-4ubTZGEHR^J@zkqHgvZBWszqQH8ppgE{h0yyQLu5wg
zYdq;mXoU7&LaSR6ODfy9`S`dkBSwh#>DZ^_!Mm6dBR81*0&jkPUQfx-<$siK{{1ES
z=MHCW<}|j~{sK*grZZLFIBnY5=aP>`;5E`~#_x!vu}I&oJe*rkG$#e{Dz==`KQ7%o
zg*|O#JOvI2ROPLJyzXvCs~$=98{&d7kEMYiwTTAI6d3To@=J11I9K@ou`%Ds4cM^W
zk$<jHlpd0iDxaYDHpjp=Pi-*%vh?|4p*xf*^vh@q;$@o=t5PYsZtSXpwKc0u3?AQq
zwmcN$@G`c)T=;H1bNMY0UodArxwuH4bbp~S#MigMWRT$Uk>W8_{X8^1KelHKCbIbE
ze7r2}b6zbFgv|Jb+zZOpq5iqq!!cXCv@!8>IuDrPtFXuJN2ue0!rBom%TORGvL~Ku
zjk=5=75af~1r70e<ZC|PMrb&K%I>BG4ep(pu4JA(P0t#u4VMVr@3w?w<V_#&C`)63
z;WHL&>VClJ=d9<mRv)Pl#zM0ZfiOOis^q70ZCH~vOP&clvNGsE8c*MTD)|z>!|HBr
zp!1v3iu$|cFx<wPBZ$0k)5&aAOn}8sIEjqQvOV1uI^<z)<=OX3g9U*u_km#6O1%f`
z;|0k3{mr5mjm?g8xc5`v#f0}t=V(8Hjn7S<e*WkCe3iVecqCc%iIzv;9vS(`OCH_y
z)jyK4F~0zOPPdL%?%xA+>bN!ZIO9qhjNJ{hDgKXT>|fp*kt5in=X1dxBjywdAg|0-
zc)?iCrJX-`+zgbE96i?kwLB<_0#H@Drr?!$J`Vu84c6%4mJtgXVm~hU2=&0H?mJWE
z4L2bT?#a67NZ%m{P;(w2E#zMvEv13ijvz`{8su5U3ohgNv3Z+het7}-A$toqi=wl7
z;Mg+!#lu<xrG*-6<AXZ(<q_-K=qLNd@+Kjm*PEc{ohYzkY)?dV@hqiT?}$)U2I6bG
zyMERu3J+6w{qAvC-*te?U;kb+k5Mzf(2_xCW>)g6dDm*#y|fhC*w`rW!UYw+#bdiX
zO8(tBZeIXkWSG^)+S&QK_5ONzB+0|H<d;Ia=9~C81`=7V!SY-km=lzoOU?J7wEhgU
zcRW81#*Gy5kV`cE$UbW?lM&|}qO<jw&gBj3zpf-Gi9bx5cvn0?7yk8fC-d8g=h|cC
z$tmi`R;N<c|Hs}}2F0~)>m~#bPH=a3cXxLP9z3`^1P|_RA$V|icW5NITjTC7ue0|#
z_ud~nIq%P_diCm6t?Hub)xG8#bJ!f;H^-vX668xJ9;QSKCuILA`33yXhhFxVC0^I{
zGNZ_vcM5oc#sOMJ$5zXrN2KR05Ps8yd^;#@R`!1I>ZI+l+UV3U{_3h}q*^#AP84QS
zvKpg1jxTy@mtkb8a6B(Cm`^5|JJnb|c`{Ho9GNbRFO^omMGn1UnKpCDo0KY!{HmUg
z@I5Dcf7iK1mO>ULQL)X8@>rEOVS<}mAd?<F8SJ*|X$IK=%m)QND+iCI=Xj4qohS%!
zB}m|Nr!u*WabRhHgo4x<?SAX_w&UAX3HNHVnAF#D_JJ=0@d};~SH-kC?Mjyn#=QQO
zd?ir|SI)OD)y}s<W_w&`$Mem8T-n_RiPP0n1RmZ|cOHCR_yHrNf?$6>+EMM&8w1Xa
zlN#Su;05B=z>VBYScyX`za6|d;c`X3JTKjPo0Zk#CiVcI`DxN}no%m5y4dNVH8v0y
z?I4kNGEb7$-bprfZN`(LFqm~Dji@fzc!U(0B+#{B<(nP_&2%~h5n!_9%@ubrlBJS!
zD_(XmqX}0{LGu2k#!!xtSp=stp(}b-YlK%p14H4=rGv@YQ59S_n((w=G>!eh;y?#g
z_f*#sg=6!FG2?S!f80D%?uZ4nRuEnZYJaqKARet)7^YCn&Tw7&m^Y^gSXa=SZn()m
zX#^o7xYrauSj}sCo^y6%?q<Xa%YdGw+m5Un6BI}#HZ={G4m4=270~zYWvM?o9iLTw
z%ei^f6OkKaY0)$qXRMC0pQ>?`(P}Y?KH{>|5tq+mh~K4+Kfz0v>Atg<RSu*IM`x=p
zowc{6Hg~JhWct2PW5*TkkfDS~6v%No%I)=W+^yMa$$LJ~IGx$Gsn%Lg0``vSBsvi)
z5L*L%7Py@+_Q04UG7?XrH@32xN3}FeQ5qasgOkK(J<!Q?jLw~KYx2lG7T>u<ZUDp0
zUufHc%Zm>a^X4~);2_BxLn!O;q)sEbwb@iR+e}{>iMm#Y(g~}ZN^2n{aKX|tU}tBz
z+3^lvMIc)bQx?BxfzeW6ymUTn+Utl$xlExxWNMXjB?DYeFZLWYMW!c0tY5B~^xO?W
z38*v%5w`zceQ3oKk<@7M1G&H>6g~IL`yUMm!m~n>2eY1mwAwYJ>5agAeC7(H0r^ah
zEav&!2w01=TA{BTnBWy7ueuzUca1J9ObD@#ec@OP@EtqpT|Kb=KZjT_ApEi6fN#5K
z3azTV+K;=PNs+9eHP`rL3HW@78&3EVJQ49nNX98P^K-zr<r2mX9Fu6Fe<KEvc)n;u
z7o7%4q)ea?>1c+cFtzr6#a1E?M6?veH%GOV*>b1YMELSCX8|b=-V|}kRK0Zrsz0&|
zlk1l=BEGLqt+G1OvRQFfgp9}_qQh2;ed1yn3L4SaPKD){Lg{xV5C29i8L_97?>vP)
z>3Jra+Gbvc9GL;*1vuhy5-wkBC26o(OMJ)OK6>&zkf$2EEKYh6t7`K(jiKcwzgvYq
zemAq_cKfAAB96$~!AzNP(etd4aP7(h3<KRJ7*@vc3Nj#u#eK{nwA=_ri&&+a^xR~i
zog~g;Ne>tajy!Awv)LDCx4~<?va^CBAySq<i{#?+zJkO0B_q}3X0wjG7H<-uI)>aG
zlDxd|L@+gwg}5uVZjD+Qm>CkyyM5vOT)ygkS0CO9jQyP|y@3fd23zD>9yv^1zVxu-
zj?B$O22=2#|5?k&pTSkrKy=p1Vm|;oT5tczzpKe3<juF?H|08LtX1XHlE4tVrhRj-
zI#I0J{4FB8N>g0^<F{^6&f<^dUn_{F9gO8^&}MqfZoad{ad}G*#q8w2F&h7{i3kTA
z$&*VI#h#_5Nxa5v#}aO>dnpQ*O{r5=FJChZ#Eb}0X^@sOyBN-Yzn{WO<E-=Te6moR
zXZPU?V7fx@<G6JwavDmB!L>;^Hws&r(NVU-ftqsF=QucQKAG=(Zi3D~5@Jvb88~a;
z3FtFa8T0`OC2N&b%tdAryX=+)YEuUn<MUk1R!=(aNBhNkLg(9u>epm8M=9zk@=}EJ
zNMDLBH3=G%f_^eppiq1*d!5CWm-<6MS|5dW<5%0>6*K>KhM%)?(1$9G!)IUX`pNqx
z)i^4=(pc!Y33URsdw)&6B6W|uer!o`%8Lf0)rAn+-7WCkx`ub=%-pd1u6=Y4Pp`DM
ziBHj%FoIz#eWl$|;d{|K(9sIl^J8FzW8HIAaDvFa1p&Sve2aqQiEMj#W>-+~_1Btk
zp00c=TBzS!N#~=~n@t3OZnH=yR19e2ULamT8;v2<0OUL-b~Qlvi#?nMx?B)hM<CwO
zBX>8#O%K;S*^vQ{aNRw{GNGJcy~_Mss*iT$Ut+>pQ3&7u_Hfe%UtS@<m+!+1G_3*8
zYJf->AbN{(X9wMB3H6F;6e9koxMdsuW|6e)M#>fUGBb=v3Uwep4+hu-Y)zr~bzdnV
z6dxSmK8ut5{_2E&4PtMs<IK}*gCn62fbA;wP!yN+BGnLVvO5xBq)1-Snm;%{TrAz<
zLuC6`k^Uisp7On|m1>^y+|3N<IekXkf{A+r)5-#d<Yu$tc{dg{{x1Ia*5uU)KEZy!
z>T%-Ln4D-P4@SC950*5CP;g7&(2D13Z`%Hc>-wMyF6FhAO`azBtqG53cCrBRL1z;M
zzQNCk=4%s{w9u0Mt?UW?ZbRQJlK&LnN62jiBK!cvgG;VwqE_Ok>2aHbpx-}4&sFxf
zCDxOlOW=lqD$6j^X@GEWNkUCzMnt(=Xkga?uNLMXu4*7DxJ14}bhIu@bpqaVI7<8n
zPxG&M_C+6@^5jk|`0!6w^|!$hVxoL&M1^C34Hx~B?))uNALMV1Kn$#Mia+Sc-yiuI
zNPgLrXKbaUMftta{Cke?#J+4s=^Hm@{Yi#@i`Sp%Z5U72+4oAxKg{yKK3c~Bo$C|3
z;qiOn{`)?lgFylV?+NezzeTtlD2=|a?X0%vO>j8;JCV`VzOO<S(~Uu;+70KCm!BX{
zC>XtZHL+M+HgO2{lJ#E`Zt&XU&Bn9Z?DYV@^Q45vpy@-cF2|6O0U2uqwAW&FW}a;3
z%zZY$2z{|`Ludphmwc9h?}@FH?P@EXcEd@G^^)sDIz1tdLN-_7{ZUMhL=;#2Yl~f#
zYzC)XYikzw9E1zxuAzVcAemB2irZ^OYb>(`Y5pkX1;X#;`8C$}1q<H*Kbk;*ea_+M
zrpfBfLZf|+)oQg`W#;cZ)tMpk*<Gc4vKeTMf?z@l-xet3NX^Eq9QG$ov|5duo@Q$r
zGPs?keID!5v!P_-NMnx{n}oW9y)Oss5{I|*y_zOhFCHFGiGFphE!L_Db8{2DsKI@^
zpxE}&gi5<S&&{1bHnZhsIB#gmc>70P_2=yl6drZJ7vnBgTfz0!XQ;{RLVZ%pB!F_2
zu$Gzp``1h=g>3$*L!ADmD3;$T9RcK9kUzqlOEr@M`6F?#nIGy2Kh&tDN5<2JCc1oO
zQW$egUi`_(b<n}HrPU538*Dm;B2pdmWfwkQ0HZsGXK3c~JVqfedZGn*WLyq!toP3^
zPpR`%lZpF=rFQ98wx;)4#*Sr@${F2>vh{rr=^$Ve<J>P_647YX(_0JV)5%;<SJ^Da
zviQtyO4M3HpC;-;0O=hQr3Bno2`mDDTFcu=E#K<{HrvDF_gKt%iNk0kGS>%cc@np$
z`J$npb~w*)tE@IQ^Dm@oX5(mFmF}-<>Z_&u2wM2OA5<aXFp29vb0lRng-K3DYY*33
zueK!-M%3M1y^n|L2FRsw_GJYvKs^%hdB`5jy=ppa(bDR+pOPzNxed+R$LHC_Rx9V3
zb767X6*&roF95VI^G@~O!LyvLG+T%0G}<ZgzvLwvk0?oEvs#fCj%PTZgkZgn4P`O#
z+S}>i`p%#IT)hy~+SpI%FpzSj%^nckw4Ad|VI3r~ZQl&`OSI|fr<*KNa*U_w<zALi
zDFCpJKp#TkCv|CC4Nk-=7p_Xg@hB)+T=r>H+dPw7)*us<c_MFD=+u=PuIw+BU+is&
zm^EMSG7OuQwX>RZdEdzu5^RAKdF(g?6kPu?8oS+sueOfdwFp2Z{bg<b@P3Wwo03QK
zRa;?U91W+-u>)CI4to>G?%!51ko3QchSKJUgrJO5L|xmn(!qg=9nRtzkIWv&F^f5b
zVv!U`MNe4Qn93z!{>&X2O>dCZ>v7J=0_|gw=>|Vn6ZD`5<-kmb75XjoIiNK*Wh{x5
zIa-QAY_4b=G%~St6z+m7ww3M7BoX>IulH=z8jGyOWH!s3<lch(-w(JtOD7yH=WG;X
zi{g93utYAl$LW^TYP;?P;whq(&j~}MmTENgvDiFX*S)3+<j8P1tbZyxv=|>GFvZbX
znrhXUw$)nCDYYqfOUu(8zPt-Dp4utvXW0f8M9Sh1L}kVtQU}&*RP~ZXgz!$<8LJeG
zDcf%qSScfus{KfC*gG>M*)#^E=t(EjZy2*XOmjBnKM@B;6Amb3Brq(w#@(H74h29V
zk}2mw2lI>>zO)waXqJx+HKUV=M<u?}>&H?mk)$g+xA~kFuCi^DT1@t)-M+KPpZg#z
zcV+%_>nkiDowg5^LTf94>FjMVylN45F|pn%Z_^dO8*zzxMf~$4B4v+BKMh5-o`Pn|
zM9yd(JO+J+R=@lDeA4wXhae<8zD>CZc3S~WQiXb~b*5}8??(sY@q<<jf&;E`{YuTv
zzHk~2+ZE>TMlVn9`SQmHJN%_;EwRXsARZ36M!6mav=MYqh^5%?@+N3}aNIKAu3TDL
zh+mN~&<%{o^@zP20sGdd|LX>C_9X_r<m*eD+MOm1pU2a>j_oKQwWSjpZhJT}E|CTu
zGd8C#jPYz4i`^<B5g=>3(w+~0duaj;-d4^PN3&f5sTT26K~y|xC~EpOZ~!5mpv8w~
zD2_Z<HkFxE^cxPxXuVu|J@)B$hiw_pk)8?&x3yCB4a0?MHFBx0r+dJMRS6|xiCA~X
z!r_>%R~4quabYO<7fYw!0GEt+fq0BsH6F24YiBv{wtnVHFv~$O%p>ahvUg9{78{vd
z<SA8q4e5lUv!!`ZK3j;Q#7hbgM$}r)4WD80R#s@WiI1@QzOeGWeAvH|gQ`LJp0Xkw
z0$XMR3iU#Jcc&dC)Xe!wCNjIj!`tsk^_J%y*4K%eKw)oTbcRdIUEth{7-yCtk*x$>
zYKj~laKL6cmrB*k3(XS*yAyA%JvUeYPeZETzP#E$=m({-K@5?vF@7S>o66?+Jz?(f
zt<rX9dqA9kK0X$|*S8_WO|)|BvX5$IJv@a-`h-WM@(B}+!ALA#^KTqWvwiPZQW03r
z$kVw^YH9UYWgrputn16vk)i87Z}pmf5F0*w)X8dgZHPRMjPtc~_~Q)RFnzrf`sa+P
z%l}PZrhz?{CNv76UyST}#VdSV#|u8K^^y-sWLhm_p>m6<vu$Alk+%nxMtwqq^Gy&)
zOVj$I(^#F#U-n2sG~X~Fw5XLSODX5e8tS8cyARtQ!Bjw|$yf}&j;j2O=G2P+TB_gS
z7suqNH<b4}%KBm6`&x2;^4`)f8HHB>seh!0q*kZZP0OXI5uytWpOVM*L}@&|&_PiQ
zRdY0LW?H6yBS^X0n2Dse)?!82X1SFL14N-Z{a)H14rKxCi!LFSpgO<spbkOA>!UWp
z)Gx5IfErkKcSv&v)q7c2<uwO0M>eROuA6Te9ZiN466_3nJ`c7s_J_k*R3QX2=gTC|
zRyLJ)YY2`F9TgEY79f*|vvwyW5{%&l$5>U)mI<%{iMlKgM(WE(xewp%hAO%usUTsW
z4#pZe+=@ZhzNhX6pS~fmTNYrmR98E#q%>^+Ss|v-am+=Jb0r+HKBxmS;M0CwU!?2A
zm~P9c!x3lIsME&xd}g0+V-op|tfSI79<RGIb@U9-y5b*eJgr7xpqgD2!y7~eP%d-<
zQ#ylWd>0}%6MRj6(Dk$38^@LcT_FhR^{6qb5bRf$!J^e22m`p|gO)Jm&~RUvTHK{k
zr?nJLvYxM8h(N9t8UXllz+*o?*GyX|OJQGQbGg3wA1$=#Q(Me4MKFN#_#EY>u1>_5
zVIKAs3e|GiKP6~olAez^_Q1+~tL|TwisKAzScxaMcO$@4V^?=;sHC0<gg?C77fxYL
z(RG5(-Hf&kp0G?3TK5yH3`IL*t)?a1HO`MjW@%=lVPd1jJ1T}%t_0OvQ!OsGq((mw
zAUP6?x@n=8;xIX6M5vD!g!>^mR%Wk6bu>z#JQ~0u(z{)+FKVHa^p7x0C>p}%9Axo3
z2ZqTcGB<fG6}LUD_<ntwE-PFh6M3j@E)Nil$^G4`0~`^ILAz#E+1+NXjp5em2nMr1
z=xaIf!^E$Iosbmu%dVIU{56{1fUr;zgA6Y;fJ<o5Pq)KGM442<bZ0~8;%c8oDuFXc
z%V#Qjx>zmm=j-($$57CF47tGu1#MR6RO{={iFwW?=;S&YKR<1o+z-$6^FU?ss5dzt
z&T~IM+<1^x1j3-0-{XBp;8pQrp#im9ZME$v*yu8VX1ie@rH=O9{Sb4}8%;1y8bE>C
zz1elL+Gg4PQ_S;xso_)K=le1<+pa2~Sv&8cII`F(Ao)nI)RgSQ7avluE@&YA0=&_O
zpr7Z-D4(_HpKl$!@IA4!FRiDiiVS<2tJMdDgrVETWRmvhg^o?07xTq4E>g38TRyhU
z?$mxiQg5>R7K_W>4=$TggM3`i^o1$fdH%0uw_l7jq4q2wj!zqXD28ao5{8HK6p+f2
zHYH)yVKS1;v%_L?wpP<GZJYfOpO(XBxw;|=_Mq*ZZ5j+}LE829NaA_@N=Hy5c6Etf
zW|}E(GEt9sYTg-Z_dKUYxlZDpJrEQ5op66Bkiyw3M^{{Put>*%Mx%@=XPnU&)L)-U
ztvT%JX@sC(8^--;!Lu`vyypg##Z=3SQEG}~WQmb0A^CuBWq>&})*hULr*oX@n_V<r
zqI2&u)i@@T1TGE8;YjUIlF2sKj_`|O27V7%X>{+A^?n?D^8YzJV>!wxE$MhMZNZiQ
zN~Mw)bH?8q<Tdi{P(Fi~EF7I7o(CJd{A1lPvw<K%u})Ph*5MvND}*9W|IvZ(pDj41
zbBSc#WjynJa>ekbnzj>M08bpVJMmB=TV`(<@@U2eysqoTk(gEksNgK%AWfYBU<gI+
z_4YIyC;6qyf{a9p`O;!oOrJ{O2)M*;Kyek=DVkKQVkT{jhge__^zfrM=>ogoI@`#d
zJQ=ag%Zl2atQ5kFhw5MXmB<Qa_-V$|Xxs>HuT-0`r1Cm9%ck+_4#Zg)UYO5Zpzg0U
zbg(|>)v1>2=po>7(}L2XIA!eq67{kl;#brk^S&WlrX8m6EliJCw1?pq%4f&YL$tFG
zG+f*jS;!P?=9F5^Hx5}<<Qon4hT_pEn!ttis=GgN7k<Ib^|+>HcDlpF60rY~p`lO=
z$_7UYMzu#VIc8t>r>EYt+pRPD6;8H$Lm5AZBl)VQ?fv{N)gQ5+c!+$z86Gt$c^c9k
zbfKL-%GwqzPoq~_S*q0{)XC`?WyNeZ=0!5Ro(3@udITt4w(ofzsX~$}|LYSA$p<1Y
zf|DMr1!gE#oPytFI(95?8$3<~=Tn)@nz(|R)nufOrO8OmlAPjrrNAzu-AjAeF(*G|
zuYaao>KNfj!`~Lt69200iGYu&m=ulgnZ~U1Fz$Kx{mn5z6tvFjN_rER6iWgrrG5>T
z#$;3;fzKiox97$g0CmH*DQWP2wNl7>YCihh1HFVI*aTA_3jVgTdRtm*4+A)>xuh$%
zF{51enGE%#RUj+|<JUK3PH<UMW@D0|0=UWI6_;|3FxLLcqecy$;Q{2ndjh?h4r9Cg
z>&xq4nRY|IX9K-*eJSuhn)hRaRXN^Uo8i|7#H3sa1<6rtwLFaqeDdgq=Z%95FlGG8
zgSlM}mimcdHA}V1MOxpdml`Z!|6+&3c9?RZi!;#h9YX;QhmG{5X+@Oobh$OnP%2A0
zXmuofbF^S~e3G%r?Qg$OO=dC>wGw<jRj9DtV#_1B!p)YkuQO_3m8<Xj^3(0aYwn)n
z{v`yTJ4sRY`U-o)+KNQu-j3%thVjJ{CeWjNr(A?^3%k^(ZgSCx>wBtzYZvn6>vG>~
zp5kh$DIWjHiZ7+gZW-eU9k#lCIpQ85+7~Vv)r@|SKzB)UQuJJZ;dns6`EmdKWP>M<
z6ehzB&60O{qvxrg)qMT98+Knf>Xelp2v&r{XOV$?eTnS-ir%+NUjd376#-;olYx^v
zz%=^HFAXY7r;k!CJI;9qS+w+1EN@{N<2!>_C`erkwoZ6^Ew>{F7HiDLdq+lOZn7J#
zE(SAZnRbROP41FhJ+97j-1yJq%zu7wKacGqQY}*4AxI@!)=I5b+kUzaXZD;W9m>&T
z6|#8MZ6{{>)W--!yick~o>OVc0e1F=pEe|u_ZNkta@5xV+P5#+=bAv~lK=sv=z2H6
zz;t{L9Kb#qo7!fB5}=Vy*B=Nfas=+s0oArO(!P{-{Kygop>fHSO8zIe^n?Q@*uPl^
z5<uf}x~yi1Cr!iD@(uLVzR$^|F9KL+@nA|o<;)L%7zKWCQQRxOOiF)^T)LIY_9YJ`
zyAga6`gnB7ZFJ@q=o}$c`DrCe1GInCcLAEG!s^TnLNvjC3S+1#{4LIx#q83?&|g(C
zFfl^m-mmmH_wUk(dchARj8Z%nr;8RQpn0~ZEh&nE@Diwe{M~$DdFBxey9ErPEH?YY
zfwU}1YjuC!HG^pc=C2P0Kv~h-=AH6Dye$X?DmVYOVj@IX9$V?y$A2!ke({8Ev<Bcs
z<ODFeAo-6n%M2Flmqlnn<d^}Yyp;v)Eovfa=b;{V#;-l9o|DT#o3cMACW5lTk0FVP
zIC^MamG(8TiX(G2@t4Wv(!s1l`7YZi2iK?yF2@4YMg`oEZTNiK`lyh{g%$cyT6X6b
zZ1-zt77j{1wfPE}0Jmk)Fw8F8)0cn{W{Vr<1>d_oi(WtyQzUDtR=-vj#UhUHW@&!4
z;~KIx;5|j;=OpK(sWdL{lQ@80t$I`jC(Ri)bqY_oDy>@Q;?wZ7+5-rdEBRKhjDW{u
z-OnoQ{({9Lfvw6wH-s{fEC8ht=P@HK1%iEKSNE`1ucHl>OAQc;Rp)im=>FXc;Kw@6
z01)<9QZKc>yl`pyl!l=1LvPLh%4(biE+hBPtASr7BSM?=<tFdj_VZ4uMA}%6-e0wM
z+eKCsS-jWt8OL1#TZ>A>R@WE_gEGl>D-^oV#@A0=d&}2VyQmA5&e^Ke$GUl6?wIYS
z;iNDHqF9S{^-h*s7}{pyp{IIbHl?e;xMcC&9gP#J`!2XIdjNr{GNk%r5z2yM$tzG%
z#UbOLYVdOGKuGkD%?Tzdeddl23@IwJwkx?g%ckLI&o;{ueburM`Me7(lJ<Q4#&~9X
z{bem<PZcYTbiN2_MTaLTb}kmmq)F$^<DfvBVR6J#K1l+uvPPs5p{S~bWh|Sn6C9OJ
zgITk?kvo7QKo3dnOP}tFYiH_tcZbDQGDj8ws{uka{BA=!89JO2&w;@*k2lsC{+ExA
zF1)D!Y*?VG3kcO{>~q`&Rpf#VN-=*vkv1s})c94ZP)6UL<Cl8JNI0Q=1~Y=zP@(m8
z0byk!A7-emE~B3N1IRUIud40($jw|Xlgg7zu~fp@+7(W$_O~y`yp5MmM3kE)@k!bN
zPp);wLow2oqc&$}RkK|*J4GJzol%+Gwyj3(&)=)IK(44X9G$EhE}c>1rNu+!(?A4$
z$#gih9w$<Q!2(NR?5WT5003yTlC*N6IH0?iM~oRrJ^u_9ZTwPwtt<pVlD$Ly+(lBj
z?eBr<z1CiAER{WcgfB7BBbZ7XV20F7@>K<Tx5jZz3CNT{?f!`drto*w#sB($SKt?I
zURRw=obDP!KxQ5`N~xmW>1I@kx2`pV7HI=6kGnd(c@f+EFg(vp0C@<q+tFjUquID0
zklCx7_fo*H9|h0+DKvwB7t?DcYj)QwERR8Cv}<Z_j4vc5=*%1wkqU%HkLfZOx&pE%
zt#{Ro-EWSXkP}P6rBM5lQ<%Pg40kv<B9n?^ELWND3YOhhF5;NdZSvmDV##C!Qa`7@
zPgbjhp~GT3$}rJl;TFZWYyx@xi}ei>F0W-GWg=Q#zvT)H^zq?%mEX?#zsqg6NOs|k
zsALYLDjx&UFGoS>GVo-&Vh7W5Agh0IV7RB9j_?u&*f)FbsEm1<3F?wPc&@UWXPl$6
z>QX11X9&Q7rkV8(ii04HmrFUXkGFoiN|zJ_TlRVE{pIwz6Qf;INElU;yBlXlF5@i1
zi=p96&!CN=eqI;%7BYLOYY4R^){<9R$rbVyZZ@B%=|$a*cV3o|iwGunMB6(hsEx&S
z6L4F6?B7J-|5|hko{_BUia~$BAj<eC3qRxnN=S!N$yR8Zgmt9iC{Jh(tH2%&);fcY
zYs}PtNYZ2RSjY0JBfryQg;71LYPF0(0FzxzkOH`|fB;vglQ1T8;SkVMtqlT_gQ?#a
z<x8ebxb1)fhgNBfY2lTZ!8|&L3ml8@(-p*Zzm&y}Z866fh%QF<9DZ)C{Fys2F#yRp
zl$&B)Ct)y_IPID4eB`K<pnS5YM$&%dAhJc4lk=$I(+Yy6>+XkD9!vJ)q?DhzY4%^^
zDBSlmw`6;<{?nZKxypC8#32Xv4aM>2XDBOy2}=mVTT~(5c%zOalf)yls#`Bp<+IAB
z+Xgeav+p$u$jpJ7Omo|eN#ngQG$|ASr0_^)6Y9~zV2p{(TCdVks7Ani%~$E76k66~
z_S*E~a=S`6;&RjJm(!=EQZtY$&6y<@hqmqC{KXl7rD`!=%R!y=-ExA*x>YtB$)<_-
zSa2JTId=sAjxd=MF^eh8Ke9pX&5afbyE{UTYDyn_;w>?B+ZH^0FQegQYQ*cz=rhr)
zCF7h$w4nF47wx~S?w|ial7()RTOP`$sX6b|YPV@wZh4*9-Y15i?6!n@Y!B@M=9|A*
z`A^t@9P<@h33K0tbYxhcaTF{aUJGK(IrolyBy3;aS6HITvyE=4>x(|sj0c4W`1DOn
ze0~ja#q*sd2J8~b59%K9m<-RsvPqm(pCk*%aimf(@P(}T%c+XvDUy)mcVs{rg;bUm
zRs^B(HUwgJ{pbOvQt2T<k7|Mzwb-ReGI`yImQ<_UySR3f_|KE|?$%N{tDKm=&?aXV
z=bOC=(^M$wGjKyY@d(NP0V*WCLxRpHnq)Ok_B`s|E@3tSQ7UqB+Cdo(iBHgj{{TW@
zrgp=rbO5#qxKU@TTuWKb&+p=)SJIN~C2$JP0Bo6zs@bMA{+p|Wi5y`bk&=7aS4ol1
zE~9~-fjgcXr&|Kv1W9C)6h?=eYoF1_q!*CeCnwdOjVR81nzLP@2^avxW$AuQwX+{Y
zZ0JJlK#XVP)|+5h^Vyjr0^x?O$n%wtfm>q<%S+Acm0upQjO5(i-G^RK5l*`R7V+RA
z->cyMc^dy>dJ(+wdp9taUIU2Z_WKFOND3Dm0YmMHg-BcEP`mvu7V^_5DDW9SJSF~G
zVRm6MR!#Fj1)m!+_9F;abs6pILi12cT$w8|o=<_%91)VZz1*3dUD%sono%(BXnT|{
zHJug#bgSj7O=L+B@%biW><c3$;>kcHOi#_E(p73R2A!nSc5{>z5oWso<WV}c$=B7#
z@gAG37Tg7I2)M{N)F!HMMDZf3E(>zzkK7$rdEUC=Td!8F1*V7$HmeSyNSBxHXHsv>
z>Ow^h20QO7lU=v7BujP@fL$%0Lm_bduC4<rn|W1&FCRBu&i3LR!mhS^>JO~D8=y0h
z%U>16mdX7ptpzfIeQ*_?hcL4LgZ8Y#zI6@fv4J1i!6Ev}^})%Dq{sOWbMdc_*3$&d
z=cH2n|1%^kN!W-4!Zmfu!AE{mko})mdrK&2Pw^%uCGbE0u>bpCSo5}YCGP+Hfq(uR
z=?zE{U~fXD{)Val^!k5rxY6s%NJ#;|?rd3Vy|e1_1d!$a&x!rt5vo(0L~uN_Avg_+
z_%}e;zr!&oedC}2oy%c1hzt68;WvKWT*@I|l&in~vpoJXtJ8PCcr=aItb0vB^;ST}
z|AxquK&A6<+e6EL65!wXc4rv~vTsCVVENx5BYYzRO}e=|Gsk}lVQ*3FXh4&0(>DV6
zgGT>raD?VCipww`vjBhOe*As%vNVX|pncBl_@74r{Sl-}{z(*$zpJzS_nf?K0FgKT
zzi9uT74155?E=$ZN_)o$!^>x{j4zu>g*==XyNie~Ie(<ZFN?%$2{KIsne}_eSVhBH
z{pgU8Kv)7jQm2WV^9@JFc|8yG2oOyP;w?XvJIybbz6ZYijO*p{{MGFQpJansJ!x0r
zL@GtJiQj39*Z0>?NxWg`rw$E-r9mODPNJ8sq%kyr{ZMOr?Z?GD^$Shu^b}ry>CAD+
zRdR&Eqf2wklM^%C<!dVEg-3B)gARnvH@iAY{aRSa+u^B^CE)eJxNvaSASTCH9ONi$
zNIQ4G;cPJf8Z(kmXXd!jIK1!hb7&%&Q=T~rw+%Ne57B0n0g=?Y2<bP5{_*UCma29{
zfhPKkE4{D5AoqjheXr>T`m(Fsx=ZrOW|Kpm=tEJ?3y0fW-^TebizQqK=Oq}q+#M%X
z&69k)Hjtd)h426tRPxJbL4t%J((n9<3UuPK1mV}L07Q&>v<hH2nb#^h3cbSn+r(t9
zU+z*+5!LOcljz1x6!9QqP1@&b*_|fE9SL;Z+t@cAKSbvJl;)W*f5Cr9lhC~G7vlK5
zUI@Xp@5e4c0%{fhGTx;TV+TTeJE6qa;j;tI=KU()<yKz$t?=;bqPXcp^ZMd`;&Y=s
zX=UIb8V9-S^)eJjBbkV7t0<TXyua2Iftp~8MpJ>7?~h>2MLOT{L%oxU+y@QYpTuv@
z3!$1H6PJN}1Vq?6`v|Ug$@P`V1^*P&6ybk-`)nN<eh$4mVpATv#ekL`bWdl5X9f?r
zW<uSj<C__~aKG}5KvA%9f|5>D$(AM8FOG=(P??k<E;uQYFih*1W6X6Il1G)6706-f
z|9U^+I1X;6XNa=xFy<Ki%aaR}`W4=a=u}ai1UAa_gMkDG4h5!Ae+-S#XMpv~>k*nm
zySYPf6M#k^8Nma(9=I8p7XsvNNl!H>>1c%qt2oE?@~{CeQDQ~^6}fFgIxi_~cR7XJ
zK7{cILC0%>PV?dfZynRO%d(ocx>~mHUIz_a@GI%r(|(O$a{73eAPEowq*z@kZ?Xfr
z?lvpUL2qn>IuCiFvRAl)wAv}6T$z`D(K!5&q}JWndHC87FY_8N%PZbQ|3dzVVFF=e
z^G$Pp=}xCBSdJbr=LWmw&d08t3=|Rl3<N=wX<&z}3I0pzq}QFZ0=i*0c-l;PIsZ}<
zXm><5&``Y*83q2cW49ymGoU-+z40QxJrQsM?nBWZN<{NPn0)_33I>weucNbtcpdoz
zl+Wh1>I*j8c&gf+ogtaY<ehSr8$HY+vUpPY5*@{uUeY*r0$Mbqp=|R{7Io<e^VmGo
zCa|&RQY-}phSZi%B^lhe*;;69u#?-#;P#(Vw(V;)Mz%{h%C<}w8$Il$a0QaM#sGck
z8B3o;!)cqC3zK-YR7ODMS>yFPu{b6<6e?}b78dwn6gCI&VwI{G$5-}9n!V<)<fD<=
zt|qHt)(+SGcr_V}da^1fgUCJUCa=RlUTCwwBjBH238A6ELmQ0}NnDer<EZ46xjgsN
zN*Aj2<H*8DxR?tPx|>)A{eZj1w_Q`>##~;T{yG|6c^;{)v*oJ=OSc5cG8#70&(vb1
z(s|I;R?qla)h@|iIwg55x?#QNq-Hw_W1!AI-#K@gRLY$AVF<=VZt(bMXgH41pqY_;
zCkrIa!Et4ln;cL5!q^+gZ0lK9ZyL~BRU6Z4yh^l6b#uPKP&AA7{b(Agm(2a#S8BZZ
zgLf?Ox748jj?R7@gh+Xt^8SrXkzeBoZQvG~cZ+zvwk*QXwII^G7AA*xRwPKZAGWG}
z28dW9(MWz&h=qj60`_9b+`l)PdM3s-ZBN!|uTF}GV@n04iLTBrV1U@tCcL(Bq!A<%
z3c3m5uPcn3^1-U1CTp=Q{qHGkO3fWM0VXhb+_ia9SrhFojxSe1B@S{UQ>F4$p*S?n
zT8PnkGt_!~ZdaPbVs>t)jnvUBB4hv3vA;F#A749hkf4?A&46P)4wqwmXv#LyUhp|d
zEGpDyKi9Ep9w(?$>+J%tB%oG#eXzhW1BGx{924`T(e;%rzc$qJ_a?up9xYS?D_O#Y
zn<iz76mv30Qrusjns9l%e+C+XkOU%9G6h@>(53>jR#(Ck+&MdYs<_@MXT!E*OS*N=
zSk|XB5Lue<qS6!DP*-p`!0C@1>Axqy4HZm?`s5p7&J}~l^j8NRzEAR5EmqyNhTe^p
z_~g7e{cBViJh`3e0}L`1oAN+P<n8q;#{*|aA@);l;(cZEIBb(k9@lfPO|k~Iyfl*^
zz@kPYx=^^(+Fn}0^`UIOOk}%CFg<Q^*7PJq!>uvBR`Tue9k-_3=q3t1z0DjTWD~Q-
zwtbyI!=Li+zlAL*2n}A`s6wd$Ih4U(%w>}@;c4=GBO-4PMH5fv6sXms$@{VZsw<Mp
z1I(2R>|Ell4zrBN;TA!=N63DJ@mJ<y+ms1cWtgruAiB-+dOygL19VB4zKh-L%)A@_
zh84~+M1%(=`Ro}n57frjghI@-_KY402*LK3<8w2h9N37*AT0?_sp0j}NgOyDMEuW=
z%uNI=XU)#nw#5hz`zzrtgMRW9#tVzls+$Z_XAs%JO2C;ll2Vo%Ut-HGfpnvt;mpzi
zQ8{5c$k{nBXDp5R=GAETLT>=>1X3qSXU?ocWcg=Z0@dDE7|zdH@ljHt48)(MHRuP|
zo-u!{{2a2}=&WJ0(!>xxdz7FHrNAA8cXarJ*JpeD8szIi2LsHJfS2q896psqRJKRc
zB)lVtHf9}lDe2oF`~#wo3l2v>O<W-hOBuOxne<E#1sZ0&3#Y**eV3J6xlQJMnA!Y9
zl}es{delStx`{l*h*9B~PjcaQy%7Pght5MZCPmu|{${-q2wjTrH1g&csChpgeB0&!
zJ!;zqfx~u<$$261kRw&(n9r@3mVn27aV5mZ_M$=Hv_c2e9zoz<=S8>vpp8o)3mPU6
z9IV0FJevP`VE95UedXh_Z*nQyfc@>`YfS7^zS8B`m`A?0LRe~i=lfsETe?`Q02!rE
z$%1a3Kp9K?aHs`bL!;Cp3_owaH=F!)Z#m7&<@VI7N|ibgs9JNw<8kmkBCBfh-gmqC
z6iq7P_;NkA@Mzw3d2wbdo?eXDy(rQH`t5GESQwJtfhr~CEdhUA?3Bh}C6x?Y$AD?3
zcgL5cfp*aLmS3Se4~0^rBDGgKd+t7))KiH{`xaHJ@zW?y=495pki0^6?wq&7ne49T
zu#Opzhy=~NaM-kV<!S<-w`CuX7Fh20!sStTMEFy$PnCBc8n{qX9M4L0-ib#g=Ku@t
z>h2@wZueLw+@rr3E=SzwD{gyC+76nt;IHBk5XN9>&Q1E9e!QI8p@TKHk$uTQy^F~T
zn61m=_4NBt@l$gWostIPx+Q~FgUMoU+w3^Tc}@C4y-?^JZmFz;XX*AR9tsh+0}4qX
zIP&(n$((Nrgmjz_y9*O`U*=gX$yZp_+?3pEJ!;e&iq$aiq<izcE)L8c&%VrF4yWzV
zYfsHxwU_a_KV;lz;&VFqXK)7WL9n8@If5Z!^50+ZNX6wAeJEL#oZMm{2`ZURUU@`p
zbKiLj=z3Xd2L%v~8*Zngz#4l03&`GI8gjtN?<-PzdTsmqI51Og`Uv87%IUhC4?CM;
z0hB`covs2q9$#5Z<Kjc+R8H}XpI4YLt!woi!*Q}g^j#0piq=RTFJBfT)2offeYlPa
z5KK)DysTDnyguPFerj#Pzr0!rM6ZT9TJcr=L{9hV1rhh+)e{qCyjG&ZH)A*CG9vza
z$_LsR(Fb_UTk%t85REZ*%>yx6Y-F|tZDbju1YnOuHJn-Rxn{V~e)(mVCSZq?q<<{V
zq6W7os<CDnz+;RG9am{(=q#INtKIC=^c9Un`paZr1il!O`f*Me^PU(6oiwR!Li#N2
z2I#pKG2B{UwgZBa^|t(FHVU71kS9kQDsA|0B{tova%E~3^COA^n1a^Pj5%J1jT8pl
ze|Z|vngM{#HWApy>+?|h#AckpdjEv8(Bu`BCwb6ehd;^nG;zovR56y_Va-rSo&0{k
z5O{OpyV9KcVKiH!T&IJGghC#~f5)bU+3b%MuPbSOo^Qt^v>x8NNK6{Cxpy$FVQ|O-
z2a{bFaYsPNW|V7x%x~BliB)^KuL<dm!V*!pohJ?uS4em#5j8Tb1q1`oa+38n304j?
zW>i=<oGizp9pbj_CYLP`x}L1Yn=9qE#(|!|iL<@AO%q2c#JkJRN;#&BQYqesKqrvo
zRII{%8;QN}$P?!nz`%mjaLS6e1bOuo+M(Tkw((<*<ZS!4V{kLkGGAlPmejZW$l+v@
z?Ed`rRq8r=X)xzHoVB!xB=6yH8~?7Ye>{bzsoLbG9vHaq*hUA{5G2&$dWkN~uhPtF
zL$?`mAD($%u~MrhjYhSngAmGM^zx#+WPv~QK(}N9NYJXj?KITlH?sPs0I{ras`)J5
z0pZ6_>FQPi4M?ex&2~p-P5Vib%H^7BJeKm%#w~DY%w2CuEe5+2S2B0iX0vQ{zdde<
zBH&|Xp;J+vxD}9vaK9F9t5Z???rHlrCyv*hxLBj4)thZssuRa=&Nuu#Dbf?2@cZ2d
zmu1JiFWayT_}Sg^oj1nRe@(IgOaf(wei+6u1s(QGEF@b=N<6R6LByr;?cRHI52x?R
zu0fD=#>=%_W7a7`wmqK->XIUYXa+R|t`k5Mq}6&O-7e{C&>lVOf(EzTS^e~5bIBg|
ztH}|iA8Ft0H_~9CT++)KDrVB_V-wtEU_2zov}%{z7nXSSoa}M0vK&oB`sLYI>C4jC
zW9sSBIODZV#440<8MH%xkYB-L-_u@JEaSC2(~JFJcWSoFZKXu@814aWgrLv=%$9f~
z@buYa*E;OD4Jwi`gBhcYw2bH37#q1v6mePxW<aoM;?gIx9sH3sutx;(0xoD+W(ED&
zc<M&C01i6QEVab)bAF9N*<+r~4D4i+u1w8-5uMdwxi{3PcZ_s}S~)Wtc-veVl9Xgb
zC00-gYs^-Y3}(GL$q#3^%I-Sx=ncrS_PEF;7p-)!%>Hm3ZS3iyqvJIc(svGcKQY5S
z>CN^J;_5&T`^26@cUd1~>VY%quanlO%&=Ohk{F(|rBB56-YMffbL(_(qp5(h4ch3o
zM6EnIy}jr9dJ0tVeNsT7h+v2hc?Rw8E1}E}M^Dh_c8y_3V@pbJuuaDw|8loKCjjk1
zxdcDni;maKsUeryq9{FWMLgt)#?khCyg@`^4y4WUMw&n-rf_bbG!@VoXIyLdTyi;P
zd3<nfmFIh5ToW0mP{`PRe*}0Uqk(u7q4YSq7e%MN<|!S|)4FUk5s=dYpO&U_e5@&P
zSco&#I9v`XrZCkw_WH6m{XoYvm=>u$>f-kDbd%hJ^G*BoML9nd$Q2Rkh{2HjakL$Y
z*Y_N^&XeiEnT{}+s1~Q3s9fQA$GXjZx%q*QIcRghQ^;VnpRPb;yfE@mdNyJ|PkDcn
zx!{%HLS>-d;qXS+F$&r>Xcz2&eE)qS3!Wbc=^b@{0l^WB*YQVWC8@h_d4Y-?wFh33
z(9!7?K2M|5hG$-TH@j=A2QccU(8YI(IO=pPYcgdG_pGI_`D=tj8twIYgDT3@>`$uo
zN6SE#RL2D~zMmZznrjlCe4QTXTr9PttkVxQ&z_ldDjqd#gyYKE>~GV8pw{T!?z~>>
zdL!`VOaZ=i9F4x$yByCaB)F3tE3b^suB|wo>F0T)@krOtupjk>y%F&Z&RBaddl_gl
z7?M>>6c^8M=1bDQ<&Mdhsbsa;4IORjw=J1v6}`)qha4v#Q7jDMAU|+uJoPyhm}Xrh
zCZ#%bMkkXOdULy9>OPV$I|Qa&tfPeHs_xd}x-q2k&DaQw`*X9`BTzq%+|z_gt2hXk
z&*kG3eew~+p>(j$%vQ2Mu*W-Y=bcYfdR0xNBZ~52Nw1>f(Z2Wey01Waa)m9+*AA!q
zA4BiP*DJVRshYy3Iqn-C3zA`(IWq5!aBh~W9=|1&%_>);718lMMlj;3W`ugBQYo=k
zBv7VF9L&;Eta-02=W)6`m9lJSc}r{q)pbX?)Qc9x`{mMhmxHk~E-A`<6Rx;Qq*kK2
zhnp^w+pGx$O#G-Yx{GGa=k=6L%8cs+n7SMMv=?#JwsObYlkr**JeDwa{jcYv91mw)
z^Ro5Ckbp6!oiWL4?w+RWtIf|0%$_f>L)xu5TU4`xJ}=&1Sp*K#h~bu!GkrJ)mg|i=
zoE~y2K2Sf$7Gp%E^RD3<?T1B<l`=&G<x@A17N48@8`ULU6?{p$;4VR3nwjo9mx_B_
zebX$1uLYjD2j|vA55JW+9`V=#bmE=3en?lrjz)x_X5A)f(UL3Z8*36qKI_2^wr%|Y
z%$2X9Ea!5;&Lq;_f5yI1=j*11D)d2xp52UE>)S#9D@*rV7k(q~WPYY!1aChSPZ|f-
z<e2h3v%^j6;813%+&d)V4wX*Yc>f#2j=6CF(bdQBie_lN4A|{asus2teeCiP8w}QH
zPyij;&BSZ#{b~0F!y&K(tAdZ|97TiF*Cv&DSAVL=wrwIe2YwS0`$O7vIr;6$+MJR1
z>5-PT0Hof|lJ{#3sfKMX`zZDTM;miAWJ~!XN!`bL<qPfPidO4};l=ht+c+XQ>f?J1
zX^#@hPni`Z4is`3os2@cZ{XTG>`!Dg$~Z<Srg>mD0^&%e4U)WlI&lh;+noyJ5{0p6
ze-Q5xt$tI363T@+Dk1P3-lJlXvvtV3e`+~#SVGSNCsxg6*B|kUWXqE9+>w~hGP7<!
zHXVKw#i%hiO?t5l1l))F>(yZ%mYe2Rlapaf{$RJrXV}EZ4`N5iSE|5{$o0c8$LwBp
z-e1sQ&Q~B=>9C*xZCXkdm)U}NS2$k#a}UH4o4m+<aFD;Wn17(*@;b^}z@JCdm_yDH
zoLC3{S*EzEqs*yqLxMZ|S{lIh0h``#<prDj<LqY=F+(|2w$H{=iM+*Dt5r){^jj>K
zYh)-ircR+h*5E%5lApB;K%IO0n=6$!2IKsM6lxJ#U#R<3zBQKBSIS?qHfqEkOF&a)
z<!#2q51vJbOd=Yi4(dH4bK$r@|Lm$&w~B1}{4lD$!!vzes8`^ZWA4XGuK&09jU|!z
zpfS*5w=dwx`-+Vu_x9;t@EsNS=EDq)R2+!K?z+^lRacUb9LlomZh7YS<)Q%p+icUT
z?Yt%lBM=KAi>_n;Gd9uLQ!TGgwW*|8mJH=uoZ8{mRD}-`qj_mZ;+)Mg<6Qp%+{Rqp
zms@I|H9LlBrJp`)Ik^S)xZNCpnbTOQ-soHZHwUQDmvh?<?fz$GclbHwkX1_;iXxax
zV%YT<x9<7OWXAgk*BACnwwb%HL9^$I0-+cbNhj&6fga0kuiyAt=u=pcl7Dt0Y*aO~
zZ(&Sx13Q&aw{eauKQ$a|%Y;j$FfvO($c)%6E9MAGjfR<&s+opy_v?!cNZ!z5Z37?J
z)C@Q+dyPFqa4n&-uSGSstJ<S)Jl<r9`LSt?Pj>EvTot)?{wQM9X*X6P`JT)FDYfL`
zGTrC4<8(%$UpCXEH>KjE_owdLnV(~#jkfDEnk8D=Q-b#+u6VNEHxy{+iUWv6WDyv1
zq;2`mG8)%5+3x(49;64h8v0J?0ej%*FnGasr{oa?8ZXoGs&4H;FsNzQ+}Upg&bH;W
zZ})8X)zDnRB=axCwvO&){DXZ)0FE1XSofe72wWAw_}!sYtu^mxNuWZ@V8y|`a<eG^
z`NUVrXUHfF8EDNW)9~7pvyyM|?j`8X+fB2{?Jw=or5_LX8e;_%)Ty+1v+o(yNux73
zo%MVNY^6R#dKsVi;@v`Q3b*rWO;3>*BBNq^U6iT3k>H9lPhIqV3^A5WR?be$$-iAQ
zGClxki0L2l9!;_A(hmg=y~jOuR>Q-yk1=a2SQ{*F3&|Io`uGrqDz#Vw{r2s<U_}!-
zRj<^?Q|h5Os>t(%$IZjFqlIC3KB$Dl!!b}tyeN0QT1EPrHi-%%ai>mCwc`U5lgs)x
zWsPX(r$7-+Zuf^){FZpD<!Xt~YBVG;sC%wAzPa%Fwons6bW1l<OHq7eVh-M~ueI&t
zqo!E?!?10TYp$mZP1R<s*E1cEaxrU<k<3eFmJi8#HFY>Hk{e)L5aSP*7!@fOhemR~
z71gQtpmnw*{<}-g4*&a_aNjvj;Xu2cMUTL9#?!dQ+0d(uGaT@@?{gMGJ2t6;V7FrY
zdI}^5=)E%rD#sf){XOgC<D+(PKdaNw*@H-?#2<IFUv>eIv`H1Kv;n~ivAj*pBdIkQ
zqit?`UxD6BGryeo9p2~pBkfdPqgXBix8TvNj>%=2F=4xYeK7nNn{Dxbl~~R~-t;T_
z@u~SyR0XG|GB#F-x+9aD9@Q?8!_B2}p^k?0do*<!fw!Gaya{H+!hE#a(&v*C5vbR&
zc}mrpNao27J~K<g{E{`8UVqBo*7vgrTIPd5`_;W!Ug;!$-X2?+J*HxmJ1|&M$C}o>
zBFBml+Ip#O?uxzPLcsCFe_tq#P6ZO{xkIl&sdI71vDxrYeu@PzvXL@epUBJO<*beb
zJQbE0tM>K^<y!usRElpQk0InGu|?Cbbtk6f20sBemE~Y$OMWPhsO&te3-U@d5RGO}
z(hObC>zgom1xd!^SDz?YW^9eLy3<eH<Y+%*%=bb=pOAhK>&#b*@BMh(Pad;chj%<U
za<{nMmzd0rH+s%~7cz4CE|_bovAJL@kl%FT9R@u8*JA|3-P1LngriiJ6jcT1l|~_7
z>HgZ{>prfm;>zzKTg{^g<KL}Y@c2$Uo@$GmqJLPvg9opaTx5jnx#I)zT#^=yAaR5a
z;vwr~PYn|4<`D7Zu(Lr8C}!I%t(RIn+PT{6j^><2qc@MS<MFolSBo>HvY2!~3zc5U
zytcKv0tdoLWD28_&Ng~dSsTp=ugWwVl$i5CdnN0SV<bFQKC3!?)tR;Df_Dcm_1yRN
zK{(-ao7YLXvQXw`Kx&sT2h`DO%*s{-id5Gx6b_+K#9@&<%H;4ik@~Z1s?zGpN|zLl
ze|#QGrd94t{h&wX?dilm0@_3Bd=FRSa&^Dba|vP~*W4f;U0o!WJb15CmCdB1su#=J
zqxzt1NS{3#aX7K3G#P}#5U8qV-!EO?2cP44_^dGr0vl%T?i}Hfo+s0$%jkWdpV}P7
z4ibg{HApm!H{ik_j^`Z(*V#hFE#0g>5j?4P5<-eiTQb@{A%#}tF!L-wiC!d?nDp*r
z*Z12!)(KL;2JVfNfKAH6kA|%YZ{0es`T6fU7k5KEJ@Zw!M#{duL*9g0zs1FO!R$bM
z1(^yf7+`l4TV~i;3c%UCR`)22VxHTAW&;;_M^iWU*0%NWmSC9oI40oHVj~Z^;3w`l
z`Xgrujx*Nby7lA(FgREXv+Yz|K8<Ll<9Skx;ERUM!e$VJKUJ%tL6If8iXUe&zw42D
zm8yLiBKjl(c9eJzCzBCu>!KZE56w^JwS&;2kOvKXOa1I|V#~I1i_D#<=D<3iv+NbQ
zw*HR@!&F%UXK=z2L|(Q;8G>6ux9<TR4~{v!Tx)kNh=>K8*prtf>Z7vHMZ(3OKAygg
zvx=TBx^}iIOskDg6kLDC>~f!q(j||mpn)t(uUM-VNh;N&fYwOm^8R?4ab2-$%?I^7
zjFUNNv)oKK75qwP5{AY+wC?x$`J_s37o!Q$k+0R3@F9^#caZmXVhAyd=w9_p6%Kf$
zR4#5eYb(JzQ<dpY%Aq8(Ol0SSlDlf7TcUV{YEl@J9q?<gq3j+dedUcJr^Int60f08
z_gj|m(WY3u(u#;;l8jE++HE#1R;pe5;p5nY6#{i^Lnvesme|J{WlN^5;icZ5&bGGT
z2{anEk{;LiA6sR4#=Mo6Km_U9&uuQNtA`J_C$tMS1uXmh@);$WG`53_eYs?oJGH@L
z_I%@SMJQyR7txGon#&wy`%-oYW@6g;I+z{}XtQ67_qL~gsM7Ap2Dq*WQ5y&vr?TAp
z7Mv(mSs7j*?Gxsb17fpQ+7r&HjaMeB1`DDOjd+V<^e@>3LdgU*K|KgOg~aN{g75cy
zeb~RJ)s606&6c%Po1Rk+B@opuw>yqUFtJ))!QH>4D`ZL`$Js0_=Zv}X??PrurIR-q
z&w6VVF@C}V$IFno$b;Dqb;-Cm#Re|QrZrDMtEGf&EZWSsE@e2TD;%ae|1ZYg0w}I+
zTN_OX!2-d8dmxbD!J)C>?k<f5cXtTE-Q6L$yL)hH+}+(9Z+M-(|NHK~=bm@oU$qLV
zR;{&q>KJp#_l-Mg!fdijx2N-_-(eeVm<crWTU4X$a~79{e7}A&`OgFMtN^iVsB86c
zQ0PpO0r$mqjJGi|)9|^1`Gv5veZ_aF%pr^ZK%Lvk0O=M8-IYw+UPB3v$|GBN-s7#M
zlo#GqffBk+T_+}r0MV#7G@0XRucz#9U-dH@?&2QK6gfuQGMX728In;LKB@3@svan`
z%V7gb3`7~;r3oL9LGQvTApF~{Nx;9c`euK*7$!`%q>#Zo;bd|(jq!2V`9S||c%!dD
z0)zZC%k$p&YLZG1K0ZN$l;d@E)n!+0en8GQu~NgSeq6oI_R)s>U%?nieK-%Nd#i_E
z<NCumH=yadPVZph{TR6%Pg}(|tCuY`@hk9Mn6lYFxi!hooQooq`N}z~k*FKYJ%)XX
z9D%xu&HQ5hX=XVDNwk~oMhTr8+?0D~uL8+*SRA?~Ov$M)Ymi+#sZH>Q$9rb!Pocuw
zq!2tx+Ne81<RaHK1qW2#{}KUAZDhln{51<E80GO<O)wb{*1!c8PDH7R3+9tPVYyx8
z!hgEy8E(ZA$+Ju(9uwT!fy-WfV$$k|V<n`2R!R9B-R2Iub0oSY=GJ%mqJ3>h?(hiW
z#eV7;H+f4_gp!s}X^;@_9A+XPE;@rVnmQ0tmpT$EUT2pl<>uw51w+zp&#1)_D0Wc9
zke$#~^1kha?y>yDxScn%^knwKs;kI+CX4plop;qQQCk2*&%H7SG*8+Z{HZ7R0CiJO
zuUi;5Zu6H;8ECSeQHJoj*3T^8FRiG?3>rqQh$r`kGa||eXIr%sXq#hxcvlqCA>U;p
zRoyk#cG2H66pgxL0^ywm-!vIEIWD6I0q#(SQm=O0%mG|V$5VUi*mS6VM7VwO-PTn2
z<tKUyCv*BQ8wR@`k|ts*C9!Y1Ysx>fjBWe89wgg-1iK5__UpP?^NyQ-e@XE+e4dQY
zpF(K0BW>=Sa_t?l?Q@4GUXh%Bhet#>PEG)Rh1-``c}Q#+io=AGtA^V3srebG0asx-
z|9KQA-9fiT$8WLsjyj>AW0t*Kanxbar@`Lue4}m(q=J{TfnmG0h_Z(0(g4XOQX?IY
z@I+^u-?JZRaLXyVR7+3u;0-<QZvg4E+%rjG%;rvo0+7Lpxm2=}HE?yKHPkgg0B)-*
z>FIj%k1=MinM|^gtW_}O8szd*Xp#&kg893zB#zvz@P2b^xGsd7c(ADVZx4kd+{h2z
zT>>5rT~x@BcLc%BK0m^5k^GE%0RAOz4dCYu)m0bXk9_V0#nFrCBTR9bV6M=<KpuZp
znAXn<1yYB|;qf2U^^@7$i>?nRy6!FB<Q-FQs=+ZJ2LbSE(Fqbb<UN?{KFa?RPam01
z95?ZPxPA*6b>i+nU2)fiDw*?ZAC61IBM}*Sg9f*;PKiVZhu^<Fk}=+fHP*PFp<8c8
zeB$p7C6M%AbFn)dc}sCSmBLzN^*gIYBf^k|U7Q9*+v!`Ia=Y1M^o2-w1oX5%HTF3I
z?#G)zA|juW$CqeD%C%xF$)qp5#VXVrC5?(z7U;(KHUcX-->X{3n&G+K#!YP^Gf*wg
zo(%#Vt3EcRKZYw@^cBpQ-Ni3Y+`jBw1-5v+$fh#|qdP^x3%w`AoC9y>B@#VI6pb5s
z?_IgJrYK7eR<s2UZ{!w8wIFi4Yp_+A$GpA9U%FbZ0ohuLhG(8!zfWz`%@h9_<${oG
z%&w~C^o1`dTKAoAgZY>AwMN5+WBIdceSaeEsRGH34{mll1K%efT2-H#6Sd-9&%8td
zLSMi#)uoU<Y1o(AAAcBS7-gh{|H8hkzkA*4pbj+%l36mixa~<#b!`-rc*1b?LvrPb
z%Qw$85OP-uiHRA!L!OFp{ii}w4GVF*OZ!Adw(`&dqL5@Wd9WBN3S`iGEY7!j@Q;2K
zL=Z7b`BSUbe_#AOrFLV#_6?r|=q_xo<(i2->%@EGs=Ct``dPrGOAsCiIQJ7kofg7}
zgCQd$RrxRyD|qax(O<8Y3-6?lf(RR0vZ>Il^d+nz0?Y0VmhP~eZH;{$9FN!CW;3)V
z%go{^SA@>oG=nYtE#fKSyr`pjQpUy$0b8F-N7h9BqG%a~g&L}-&luH3-LjK!P=lEJ
zRSp$>cbXpId%w({=D5LFj#!PoaI8kqWS-2%@~%A`&qi~t^@)95gCW59k-NL2tGgX-
zu=V7-W@QcA0l2-eSYWKy^&N_;i$pd~=_me0ryUCf@^dn7ctulGk0dNMjH|X5Pa5y%
z>oU`6%ksA53FbA^AYnab_ko(h8f>u^60hiK{9?2>l~fWx`ocWxrz6xKoj;R;7-`--
zda2=zZ>c}RJ8_AF-~+}poqE)`5U>uW(4I?M+z|NJq0Ye~kCpr;5QP^#d$IP+JuR3n
z8lrCaVhN_B^P-s`HH3I+n4T|%z<u!RtQ{G<jxKls@gF&NSFDlK$jYpdz!bKSag#h>
zXhQ@5n*2}xL5d9;Z;5Csnvk0Iq{unBZ;!FR#N@^z`VkM4GPx}F>DJ<NDel`3Jd_0*
zzxVrr%iArKKqD`-*&AUfa4Ry~I^j#y(Z<_L6z0k<-cyo84$mEeQP}Ca!1g{$85??%
zD<9g*Tcb&WxEt*3EjfUX5!=h0O0V|R4{v4Kt*Zp8zr{7YySh>i@@4$Vl?L^iX5F2>
zjAw_>N=_X>s(!m5ll`WH6>#Aa{2oBcAu`-x2EoRJLD3s$Ou+NA>_B!joHmuGqE-Ht
zbs;670kz~iE^B7DJT5XYC>?Ok;~TzYH24(F`7n6BL#OAo`z1EkO8X6cBg&L4w)3!V
zsaA1Okh3_uo-rb9WwvyUGB2d#gPK5*?*5d`%Y#vDJ_CzE6hDgq0-MX~9W+KDuwUPb
zPhC>trmhws!@~Gz|5?kW-#rVwQaKqgV`G!hR16>`638GMAt*KNDK?@_c`<FQW|%qJ
z>=Nv^jcr9Mj>`X*j`Z+M($o6FS3d;Kp`9n*5RQ8@vNZafVU`~0NyL@34w+aqTExD7
zJe+f$9U|y{Us`}f-vj4Rqw>gwa+bT5Go#{Tpl-wvTQ|mAmQ8j<dP=L)CM?j=ILk_%
z$RZA77k=WZx2m6}AUO0%<?H*|N-JTAbl7vq-23{bO&BlTfW36X4WJh0W1D`3!Qx(-
zCnNX>Xs2uxT0oO<V_>@q@JXaITb;B23%Ll*`+*UDg`&)O<j>s_z~%dSVmCHm%tke+
z-}|LYa4Y*~qN$6v#Zuec!jWBDK$xweimc)F`#v=uM!&(IWUctzifCN>ozYvA`HaAX
z@%izZ7c^$<2(02a2MrAAhMT_)vX<>0?1BOiJCJ$A4TM4|Pc&F&F8pVc7(WKRoUXkq
z;9*eR5z+87(#&ZCPLRTYNOALVD_t^gtj;d;&VCBjhaE_3#O>^z5z;T2r1h|VV<2yo
z?-}p8NCl0Sn*Qo_VYjVAhc)sSCtx+rzZr69_3Jd~vnnqy;wjU)Dx}aS3@o7T<Z*wN
z5~QPx(L5}wv76<<jCda&j*GUy6!%p*<QM)>S&2HUe$IQLhpWtd)jjsi2FAAaiSbE6
z!5TFNQ4Z@M!&AoV)<Da(wl&waoC2oqS_hN+;Dy~ecmWsPk!+}&E_JnrF4fKYPFU8}
zU9hCYup^=ed=}C9_(16A49|_ek@xdV+YHRsCCQ3kyjvKEgpA_Ac&*Xl{^E0?-;+e(
za=O%Cg<C`n!1c9+{QM$PDq?N(h>J&wNkXE+LG_ZM$LnNE-#&Jc253p@N<v0!?bJUf
zSxGP2NJq#fCQiZ)9kW8<^y^yZv$`#7&*Ed!ul0OfO6j-$Bp}h9iw%;y(kudzx+r{e
zscA*^Na%lPtMYQLB3jMMr2@qjFAnxBp3a>`$CG#^mWg1L+Sgf}^qZcOoo9xS;rhPc
z7;QgWFU(v|$)SG(6~DOcHI4mV6U~UNDtc5h=};IcTdFHJ`#O=&wWX#9MU}o#qAkA4
zj9IB*js-(^<7P(np{WUJ|2zgSz>gHx!V^4_o|E(1Z-|R)EFQuu=yiL2?`QLUN8&@m
zpx|>i^%VL+qL=STE2QVIQ_Q@ujXTgM-5E@aBIV_x;``M?>?||A<tOXm;S0T{WuN(V
z#j}NLbL*)yiD6@T2mF4mZ)N2E{)~z++jQ3k%G(N&FuF^@K+sM>gk?CXYPAt2*8bk3
z`kcs0t2c-wea|2hQLJq#V|9-^!%)}vfxR_ZSFm5^tE1YHm$Pz3&0aFQC|fKEcS9MY
z3mTKEIRqW7YQD^MyjA?XXWs(hNb`P#Me{<L%`<o>9zAlA8hK&OxH^oCGG~P245Qc_
zZD5@0yo)m2&v_`x6#z<mTau=}o?fJ$N+PXov7JS{+8w$xu<N3;keywQHj5JAs&-Qv
zVQI91!Z+f+626qLh_HHumVrV{lIg9oh9_~f2-aj+dtuIJ6BSac`gvcSdhbZ!+)Vqn
zdv?QJKmCo<4=Q9KRvHSedRo)bs#{_XYR(!%M%VXvoZ6XyhV4L^OwPzEgOv{llPA{6
z<#Q-{*N4-ekD$tMcfV@tr;X#e+0VN+!$)4sG3>ef-BAE<>|-<X8A+UXUI>5#9>G>T
zmV?Wnxw%gzz$v<yYt5~02rwLhR<O%1KYTEyW!u&E(;UtU0SCT@1AeA$vv>q|4yWF7
z@Aa3gtq)!6(e-W+r-O50OlC@w*`{Kehvf)Q-VeErSJ_&o8Bl`DPIt-mWVSd>Yz_CX
z?a~DK7c+V$odO`fBrLnPZ$u+gxCK)@7Z$>{ej<t9^1cb{tTwqsz>FpGE%utND#3HX
z2^XZ9;{@JFi+Fi-F1-#nY=cK(k5^+sx}L1WKezd2f{P1Fi2U#%{y3ITrt1^%?%O>a
z<h0HCeYY3#@qO%v@<smkgNwjzP`b9@D#i8IK*S6h%6O1!sT=wIDGmxKpZLpcR@d_h
zZj>DkT~fbaYf_bNF!DIZ4I@iTRw4ixQnkX~<Elij*zI@sP0O{FG%}M{^lj7(lVraT
zKL;~{o;jN(b88im?fyxd)p>O|aRowNY`dJRBD7?1`HGgdqPxZ;_i3zeU?id+J^~q<
zy_wQygNR7t`bv3BW3hO<Ptq=YC4219D8?;vcb={XfnQ&xz~cs?Zn&9BJU!1N65RJb
zNw)3>FvK{{VS4p^pX@L-eYVQqYr2xesYJW36+Q9z$Rkx$5au+R5B@##EeXEkS2p?D
zLiz1EdY!?AcQ~F)qosnllrH5P?Ok3_f_}UFwj2YNof5hJFx9VzXFxk?K_dMovFBwb
zD_v{MTOtF!&MCdgD6cUH#}+9xZQMQ67mcXJ3*1zDU!SUEGA_VtsinHP?~G%>3gr`@
z;0BZie7PPHF~EX-??JU^a!0Xz24#Rl>F!6sii|BRAagTnVLIMA#M@ORuCV9sxV&s4
zZUgB-vnE!!J4#PXrUTe9`x@?=9huGRlKYfo->}4dEd3zxA-ka&lDDF%Px8)1MxT&<
zSl>*r5%g4M`8t_xa&2g=0~{aO@g&1TOFg7TH`V)6J`}0ry|H(C*Y>S&T9{^T2$knC
zxzg%S{s9rS#$lu2>wBKV3FE8?5R*E#nf5D#5xpOmUAa_4KM{MRO!$zUUT)8;xU5#?
zbOeX))f-VAdhEfCU<HQx0(|UgK|wXwUt;uJq(7HT*H=CB-*~*RI@AU<HW_nqYc)D7
z_^k+7U&IJs0^0O;j~cm(>a?KgP*cqVD#i=zUFQb<4AZHWKfZra8T24QlR;U-9A2LZ
zbJI~Ro9oI&UgbDn=c(vlY_rR-A0eXQY2AV=#NkBNTlCNnBC27i4jD&qe%FP+dG!N*
z%Y%}6xP1mwJHCG|3}}#7Vr;5gz1(WhaB%*{TEM-4!cT2j?N`o-TIGBY;CUv~ce6#O
zXu{Ztd+fQxiIoU$>~KC2ZJQB$BL~YoZ-<>P<x;P7$TKh^<*QJ2`+nz#q$}aYAJZ+6
zVN76Cu2OB^84!R)3|;RAeP7I#N<!?}Uk)9|gcyv9&G!M^w`d|Rpst?XCmd7buVGiP
zXXFT}jI;1MuiQrmui)9!+yg?c%>*0l4bVoj?0<LX9gQ?nuQ{DRyYs0E8bVr3%D7Kw
z4(cMX8LXrhn)afQNq7`vC?c$Xe{>i56R-_aRFLEmJcdE+llIA4iB@p@FD?MzuiB)H
zc&IF%-Y3vFa(m6;qaFI%8r6yGBRikNv;(Kje&ceh;~Y!pT5}mRej<@_+q^h4Jn$KX
z{8s#kBriQ6xTU;XrXj<(j#*qno#l}Pd^eZ}?#G?nJNwGDyZGh`Lc(mC;T_1lG_GD{
zcb`+Od!cbK39)9*0IlmOj($Cw{%kxstrD3dzqKnyfPy(!E=|s9dzto>M=TtEsB)RW
zmtpwk!6~}iFh!#O>=C!(v!umEf*j8Is?J_+1PqyB84}9*Sg~qNT7%ok%K`wk^K)@U
zXr_b0ew*OFa>$1-lUV4mzkd<|sGT4s`^LQi^RHUwUwxDR7L|X!>V8Hf@XqJe!TqV{
zum#(2{uyPeO*tiCXVl%=t47Lb)%6y*XP{NKMw`8`O29UB?6wu}bMp~T+knm`K8PVS
zp}aRR^Z6A|e|?!Dtx)+%iFG*R$EIiLC;sv>H`_8zt}Yk7MS>{*u*PK%MVzpQdj@Vw
zVqICp1|q<%WO-^6MvC-Dvp8`g`JSrPQd;9_<CTgz-NLloXKA@p60e8cR-M4jmAOn7
zX;UjotfOo9X(8AlGQkd3*QDor1Bw*MBo2s|_wx>})V(LH28(r4{3%vY^#^C9--g@b
z&}3+>VAz=NH%m>CqNG5K8iH6pzr6gH_>#{Ka$?dto2=GDS@5S!0^wFu%ZzKDPxKCy
z+dRI{1*zlT;PyK1)}?Do-+%>yUT~R`0>&uzPIcQ~Tx`b$$G>G>OOXsb<Fdj;c3kI=
zcoAC(p@O+4lHIv%%5Ua>07fk?s$xL=ZMrN?hwmbJ_U!^{-#>*%8JtBe6ma2k8eX&G
z@m88XSra`eygnH0Vmgw0h>bSPUjv)XFz#hBuPljM;ju!L^hCGZG?{a>>+<w=h}{oR
zJScr>CpL-l-jI{DUBsX})jr*3w$k{9`+gONW4bm}@DGaYkQo&G#T+c+`9MzzO7g|p
zlvb`VYDA2k&EGo_*`MHIYR=c_i!U1Z#mCiIvXM^QdWGF|14_xk&zJ784vSAt#*cjI
zr6T^#HJJWA8Hoj*N=9#hN+(5K@8K0dO`y04E$?RE6C!-aLC)++m7Ls2t!B!7|04bz
zS$kZG{KJ#%O>jg$F(=nRQgqSntlt?QyZ+=6iI)`|G5&PXm*dqMdx?_wo^ms2#Q5)p
z;RCN*jFbE3Rjn!0!;A7=eOYQHkMjtr#H)4MstD~f)cS#gnXRb1tDfgKt2|Qs$l$a`
zIap~{2)pOpXxsT14QRe20L0DJNl_21)vvo4n|2?COTM>A9vfI~GVW;dKGdBZmgO;P
zy(op4dKx*PN**;H*C(oYMl8J~F-<WZ97p*|-j=A9!$9jSh~6Iks0jf$50g5mj4bqs
zW6tggEz5ru!3;QpC<-@EehN(;#7#kkCbyi%lI@=5$$T8|V8@?4+(Rc>Y>Q)haQ{Wz
zPK~tBBP)Go&gH9ZOjdH>DSNAVWJK<*Ey6FHZZF6unC5beR2c`kTzTi|^6KZ~FJys&
zV~4ZJJ8Qn)Tqe?rjP?|Bi86`aOWc=HV@jo5B!1atZ=80LN5HAaF(<jj4R!^}aH!BQ
zA9%d2P%)QlmmX;4mnwSNPLyudu6Z*rfOT*+<#!gC+R-B0!S?%!uJjW~ufq!*>^eJ<
z+#I2zc{ur`c!;-mc-H((_k4ZQ<s#F4WX93kym?ZVBdQ@#Q?mE_`eAE6F^$&Pfnii)
z#jQf2rq#OCfR*nTuQx-~AYTeIZSLM)+Vj$j$|;d-`(;G3N1mr#q+EJu4oJoGJ5y($
zC4kXv1Qt;bu(B+utm}Fa99Vj4bim9ES~*ZI<owZ&cf+;{xu!vmG4}LqpAJ?!>v;GH
zsl3iOI`*fhE4&5yor&Vw?oC;HF=?_A#>@P?yPRx^w%WeR`WCyRGl(NYW_0Q<#!)%#
zR2oTwgesMc9KD0Y?AjTo9vXf-fHJqRDoKcXM5gZ-@{YOpO}4(P<{fQ61dp!c`H~+U
z^ZoivgJ_nY-?9QI3rFYix7U1}>D9=kj-rvEH?1b)mMFQ`)7M>0?&o8)){E0bv4od$
zGc|bffHsTYSS1!tyvn*0B%@Opz%mTt<_3lUE&LyI-)_!C+Jl{WpWtq}x#yMEzS*sN
z+z*x*H8~V*$}!}=47!?RWQFWVrgpiHF2zQB0-hYXZ;o4V0ba!yXsVG(6};}!zauDj
z$4h$2cL}~+or<pMk6)cFJ&z8t-mRY$FqAZhwfcq=vf)C`UP$01mJ}(&Z0?^cM!3Y@
zr#7s;EVk}B9!=wubR^oLHkNL(u$h?Dvop+O3nUr-5z)7`el3dV7r7vBCYYcQW$&<O
z+(^D#`V6lN!KF2!LD2P4BuO*!Z~{6`o6*`Z>x6m!vVb7cw=1GA*3QWx_ITj?NS%OW
zdxZ&wHD7|D#5vSS2BKWKnhcaOV^PRb1t<dXVz%bj$-<?Cr_*)x>)h|o+KjVM*qMzX
zx>~Chd&*qmf)CKhO>@dGlZ&z0v|+Tj#xfS)>SQNah3Etv|8Q&lXlF(Dn_lbZK4|Bg
zG&kvS0{mt~+X*r@3vy!LTEk^C2lm_%mg8xfYnA<SMzY~3Vs1a6uiS}O#<<gT|Laj#
zr>i%x)Hr`_;Up3175<HY&b)SdO#t}>+NTI0U~v{5otvd1JfQw)wW-Y%2yX@?W*Tu}
zH!X)3l{`z~N*F$_zL9*~Cgknq0`@qkC7eaS|Ioz6Kvy6hEg90e=V7HnboxAfREQc+
z&0#n@-6Li&;(dF8R!9|>d*IvB_q}0^A=k0rV5RC<ahlDXrN;4sH%VQg-tGXBI%s|S
z4J9)x!-ciCg`tf5wOczGlOS&y#LXkRvXVAXPU?s_VPa;$${lY;Q|_juA<NCcu=o0G
z6c0Ucl8e5rL)7iX!Gm(Zgog$)B);%uM<RtSn_QR(WG4pfdKjMfh_>p+fR^kK_v>|`
z#grd9+c>+T4-8nP7U>Zi^6z1^JxQd>g%O8~f#nhTprgz|3K9sQcop9af3_4N?VN(h
z8L{!+G1E(yg{@;}Cu^zN+-+^<Q9$O<&e(gBD>Cdf&y*-}>g0fjZ*P08{YLU^iz`|9
zijp%Gh=X!putuKVb@G1dC~o3W!0n_Ep<M4$sn)q3x{uR_HIBG~B|-B3Vyd80Jf0WM
zvxY;*Ib)SG-@SmjT6XQbs!umN%Nk<yJUCyk0zY!HQRfY6VK^(`UoR_c<GBK3+zUd2
z7pmUj=v%D4jISRPW}Fzvh&QrbJu~S0&?rWd5M4K{x@*PT)=96mUC+mSn)I^fB>M7V
z)T8y1>Zn{$V!31P#HKft|9tN+trlgRQJZ0^O_UjLncURpwmP=<x~)FNUahxdL`_7?
zp~GwLiDw^@Dxc}tvFq;u_9}Z6AZ(Y#D>DudPcek4rXR>xPdtWVO6mewhY)qV$tjJ%
zE!NaxTZ!KIOHIjtf#5qO5w)Hm3~4XV##4Yb1q_U>+Qv-4*!*?3SBsl#O>>d=v_l`z
zX~b6dbJ>>i_Bq?IR7cH{u_wC9YYI9^n#iBT%!1tz4+^rFX+cqAg(Hi{-Rk9B&A{Pe
z=n@60a9|Ql9ws^#w#yYr%v+t<+>MxY2+B9m8trhI0i(Mxcx8Iz4`|iXiw-Qt7?APG
z03_a@%C2~m?CO}WcpPp$D;50hC`E-O80d9|_K7!eoenN@r&ePo+CG+%*DL`wz*w~>
z<#5}~T%r*7*j3vD2#?+Ks!?r*yiR#7r0QMbqJMgp%-qN0qW*PqUy$wQsOQZIszV5k
zK1HJVzNfRP7GC7mggBeZDX(hy!J3Wgo2^4g0j2^A%NlCOGuc|f=6FXUel=MBg4Ui5
zlELAvnl}91NjsCz{^PL;;PhA)nk=yoOo3)xtYoaNg{M6&&3PSoa+kR`0dbu9Ks(of
ztwZ;i<h|zFavu@=${dtN>ez{^%quTdN3AbQo3jz$j;k3)4;}&%zD@ea{@C{VBBs)+
zcC#8w2N&VHF<ZZUCnf7KaTAI~msVy~*cmOql8gmlf?E9wFk1AdMmKk1Lx#KffOi0m
z0^m}q)>>HO_gcQ(tAUZ{u!pqOdycbV6CP&Bm(PZuPd~)b3|>KD4vqQ<6vUinW2}Yd
zRDL`c2r^)jtc9KOq^rGPw}2nKjAKs__}F=;;T!GqcyRxxkyYs!Qq3#NaXS%yo|tJG
zi7Sm|XHA{N@)u6?jUld-+b)_Tw<`-MR7U|bNVBf5{u^9(PX?ihAJGchd=4i}Dm!cT
z;&dn#uvHgk+d7hcsl_)_&=}FM(F5!j+fuL=KDQM>KbH@X?@a{-dbThjoHvaD%Iy`V
z$)=)zEUutWKXazN+*49e{dN)En-BGnUf<axj!I)Tl}#F%qv{{S;edv<k(NL0AVRUL
z9~@wKH+K~7UVt(1^K5S+O0Hf_Qv8B~CQRBXkBBS@X}lyI;Oa-3b^-Hk&vT@<b8bs$
z0+b->wU0ZRovim=kZMGvqRIGoL<6(rvpkBE+2#f>vkYoTb~L{iS?3<tS)&4PS1+0e
z#QhxgY@diop8*Nkr+{Q`*_s7ofCS0{u^oBz8~6vC{v(}#A99&R#>{H^C*E$8hq3N?
zF41<$Z4LdwPwT2xKPAyFQX4*c&1lqs7+Ue4h7#@7BMAN=p0Y^M5X``ZX>e<y@4D-@
zIiYsI_e}m9COg9p9%3k|KlF1^iZF?YfI-f(=>ES@;?EyDA9bIbfyYqNmLL6y6vW(q
zHP&qm_mtaBa&`+JyqwUe-ngc55kRMZKodr$J7V?a4?LN|#vd9rv-j7w$$;Xr{{?T!
z-$fSXvX77h^gtOj&I!v>yz?(u*C|lx;{29@_>ZT5NJ1w-OMm0PQpx@XJ^uao+zKZ6
z5%uGtf0q~+k*QyL<z9x6+?>qnis?<nKPWgl>0p!W`{{7i|M}hjYR)#Xj~~w?8hG+Z
zECM5vh>x$ZUq&u5qG|4R{Xgr3L>2rQ{x4o^&@wF0p8d~Dojj`2ya54VO?tn~*||m{
zyy}AIQ>O8~3?qT^A9N!FbAP^ZG~7S-zoC*^;;<O?C;Zdv?9qgtt7-K*O-vszg~**|
zmz8jzx=XtFTHT5*wf@P{|Cs~&wGV0LgUtWD`}e?nUWcWZN;1K5x>mwOCF*L*&eV3A
zC3C(lXtc+}vik2K^!X{+*|4651p2=qi9zCpR(|;KWIn=7@frjA0}|57Q57JYtuaWU
zX4^*?3SeuC#hy>@XU%Hd5I?w<5{W-Yo%LQ=7n0Ve&2wHCPE0E@pPvF*121jc$^~}2
z%dQ`gkomK-_$v+*OU4L!@PfCuzbk##?w+x-f)auZ^uu-&ixZ_Vb)*jkSi;L!h`fb`
zy=y8v0^AY_E+`1gQ-q!MTKNuzh;<GlG+I;8g=2;`qJ;;$v+2A3eoZm#t^SqdE=zfV
zdY@nw!BDWf+V1mk%#S(rAW1PH4*?8}*qCSvh7anjIwT}__YVWF8W~`qRXO{4OCY+g
z7;-SqZI?x_(XkZ<JTiM|5_)?e&Dly-AJyTm!G6gud%*ztoWjS`E6iu@Fd&gemV8;U
z`Y9^vpMmumL0k7^WR6pVQU_#_V$N6Zk+w(gabP*p_w{8<1?S*Scff~Wy$27NzO;NN
z^2%Vs;cI0@`1X;Kb1}0fL4PyN5cg`eCL)zV6IibYzqyHN^9Z(NSn5alYhx<IIP*gC
zI4Njr(P9is3*6!-U4D5}#Zk+1lqhc;Rn>gmzSoq?NqSrj_0DW2Y-?r_+-i=mStcR=
zv#a?KT%?x8rDVE)@uYq=T-&vXmHTR<{@d$nszl?>HKO$^J`$0bVKzD9Br4cV%-C&1
zDl*NV5e9+EXc7`q0kb%mi9ze6-mrHUYrf><^n1iU-J9rFW0=la4i`C%XqcfSFB!fU
z%-G2|56eeyHUALp__UHkCC6%&@gJsWS6TkOV$X{u2W~G-XO=?wUI&wFzN_;VsY=&h
zYmUSRS&>psii$q@Ju@iBmW5PfIyH$4b4`Ekv?k#!8#OXy*Hi2`dUaSF`o4{R#H+7X
zLrmPRIt|N*FiX%a(AbR#?Vh^(rdWg@(cY1Mun@$I#cs9N5#w9~hPwOrzzCyrDiY70
z!KVD@P8|W#@zDMi4|Sbc1iueR0=X&5mER#wk3Li%bI-4~o5m}lmA{mK`+BzIn5YFU
zbXaV?mx{wVx8Gyfyg5BN?*HA_yETJuVC%V*KfaJCyS9J{?xxW@?4C(#(I>~iz?{ez
z*Istg9+Db14OKB1y9^Hsj}%>^1dq^49rdmiyIh^VNn&w+o6**SQ(N&D$lHef^(y>|
zbQ~C}XIucUJ#V-OJYOphCssMvdEee}cz^9HExEgzJI+gLFvE=b&gR~d56*g2&YTGT
zwgv%{u$^$d0zX@+Fc21iM7G{9ROEx4YZ5G@3g5OjW@|G$Kp_rray53GiUqliHS&i=
zWJ|Il8La(B70Rj3dQT(5L0ryV+_LXm!4Jb3Z^-jTL4D5#8Hy!wH2x?U)OVnlg!S*!
zoV8|Z?{2S;KSRLLdjmW9t6(V6>xZ{|$X@%{?f|X7#7Zc?m<=g@aNtPH44_P!!}gHY
z>%pGP=`@r-{oKxF|0d$I#@(d*#iI6|`7U)@XvDV{VA)CkzWc>`BxRO+VBej=0}{9A
z3%F3H=41YtdLXA{1L?P%?%JkiHmi=Rcu10|{hYx~%;>nm(m{Jh*(hWf$dAo-!r>?W
zQr>5ey87yb21-(trHghxQ2P=Ze1Y3!E8pyQh%M`iAk~o7BZK9_GC~jzd-=vE$pwS}
zh}bLdjz$uLs#i-G>Jcc07#46t(shhQaK2UzZY(l*H-+Nq^Wre_fu&p-C9~CruUPrB
zfsxbUST5Dai=N*LjV;FT9_QCQ^YyokW7>@-5mUPU{W8KIH>dGh0sHjRr3%E7>=ym4
z@u}xeZEY8aJq`L-r@l#5E@fXTK299(5S%Z!v2V--TKNaSO}vH`U2@)Tyr6cw+qFt;
z8wVt8G5yhm-{W7M`Ko{FyM%6{x4}Pl=S?-(3D3eG-n^T$@Y!9F-{?Uatlt~|YO&;u
zYt1`LQo-j&pklT9MSsl8cRf(N=F><mAFtQ5*Ya{6YyOCi|Nc8Rd6T>#CXKaW)a5Ya
z@A_kL_cWtdIlVHOsLF(s#uCH3!&f@}B?KBJl*cJD$MUE-kvr;2!XGVrCTb(}_+G+S
zi8KZL(=k6Hdp`De?0XBkx882AaCkk?K4&y^6WTrN)9wxk<t|agEloLt9ZCcKY=2db
z*H}jNXFLH!?vePmJ8S-_Hi~mb0U_-;-j_Ydh`}mvGuxeTpqc663|`QRghV`EaJgQY
zk?s%my@3pC5tc2H1Ka%{Y@g<XnS(gc{hf6hQR<50dnQ={U!50JTF-4zTW`LTSfFPc
z^*y2Fmm7Y>7}cOX8$n(9F$V|k+D#9XR_~XrxgAHmpw{>ydb%&9*N={zD4z8S?L4UQ
z>S}fxRVE@$Y5G8Mh3!g&PseH&PaWNj#Tzvowl)0+okPkakCRq<0}}TlaX749YG(yA
zw*K<9|M=Zr#41xtA=|h1*tt5>pX2KSyLp~x*$BVIXm3yex7mh0DVqn1$}wC4>!$=2
z!Z~r$gM+)in$30J2KD_%Uv&*hw~RN~)5I}oYYB8>p;x4{8QJiI9Gijw?9Nt}7@G++
z%E+J<d(1<XlJEU!whzedPo4o6^Aot||4VFaQ^BO@6pSi6UVwfoyIlI7F<uu0%UR>H
zf`7Rxb8AUp(^=SEOqXgA!;{Mh@VL!dEs=wM5XlL3KNSZyxPeVfSnCX#stRNaRCbd>
z3?;HOk4h?ymaJ-Iy-k5Y@M3bqB3rhoFj>0AuT{Q;w-OG%WWJ|DC&gG&1k#5p{m;4m
zWh+66w*^pK905Dfy$;d{2Hb2OKCsGFxP98PT&*xSFI|n9JY`j#`TBUhknmSwtO!`I
z^j6po8DK#2J2w0?A@enPbd%}f-3N05G8PI1NOMDHhHw8)8wc@G0}=mliCLC>`p_ki
zFs$XVw(S~dK}2`f%cGH_bisH9Y}M}}zHWOqi(^nk&ij-JD%-5fU7Aj)SPD<gJ4G@K
z&DA={`FMHF--eG>8e;SG{X;t;&#=pJT=co^AJ*QV!ky%L3kjlxHsa#`gmsqDRNH%v
z_gz5TD$%)_QYMnpWP{msZ_|}G1i-CU&bc`#B|>OWY{5j6rF~>wo8FO?PzGn{`#Bb{
z8bRqiGb~HLj8#fK4w^v2;_`Q|yoS6c%2h&_mcgc6+G#<ffd)**%lJS;${ka}2o6Kw
zC7lcx;IeTfNU0*N`ctTSYWN){cFbkWF#|KNBW0nX=&y37Pl~5Ch7uoYK-1im9~Bl9
zddqT*@(WotmDry-Oe0*;=z$a?z<_su4hqmpfvu>`p%h0@#W+v_t0Z*r1t$1;e>+1b
zf23EHsY;|LK|4;I2S3NT#6`ti>|jcMqEMl|)@9{4sk~85pg-)AtmfOSnmvXj$I*gZ
zzE2@z>_=`|B_eevhK|{uQx7hd+iIA_&J&AeCM%8apCAeX$|W+tvZt|!+i?-)fBlTz
z63RRXolAN+#qb%dKG~EmCks#=1~e}ACUMxmpM7Qw;lf7pf?6^hXya)BYaY)U=(wcb
z5^)7Pi%9*(u}1BT4iY2e#SZ>v{ba!>aCJ$TC}(*XuUM`$1S^E)-7P@07V0Vgd0?ZB
zLtr%*kcYr*xHF$yEiK*lLutCIR4p29Khlsds6WC@1)Bli%yJVN80UWtr53WKGK6zN
z`T`#NnlqM+FioezW*FELv(shZ$ptl)n~Rs)r+T|ndqngCx#cvlKcX7W^u|AqrB(<!
zCiBE;Yc_e&s0{aHQuU@o*@QyPccBz|3vFVq4q9m=BjY$pX^Wh}dM8Im<jmX(K#$2{
z#ic2yH#?|oP=)i8U)fdt_UbAg4O_nND8Ko)>>OU~n2G>!RaTPFet7fy?k}v=mBrn=
zqE#+q`q5W2Cl7W&iTa{=df>E5;s~;`V#Dq4UldpC#YeZ`L%%ouGD%6NDII?o!pxxP
ze9WRcsJ4Pyf7aw#pzmBwqJlL=@rj7+DLA(Kvauu00g9oCx3Q?1O{#F8-+VROq}@6w
z%V5Zkd2<ova-o!9V`A3wo|qLB-CPQGG@Tg$R#@4yVa@gI+*`LvHKs8TbNfE5B^3|k
zuRK<noM5+7l6gADM24_Q&RW(bnvwyx>F}q!gLDcu+X_xaDz9ZTwL`@hTHLhE8T#M;
z0RatA`#|$Shae-el)j>a?&f-U&a`ydGgfV-DKVST_SBQR2Zex9_lvyqxJ0Z3l*2Mi
zJjc~`$wbNcN@;ys?dr;+5+mg$wIjo`UdZBBXSCv-)st3iM?Vk|2by<<1p9hznLE_-
z<FQ&k*+QByVJbTa@z+kB0a0qaED0VV1379+Paro9A85S@-nvUY82;(`e8LEgk;bu#
z7V&!kzlXpB+2k(0hJU|~$4hnQ%Pt-B3<<ys$=d4<1?YBU-+I?)jC&8U4oY~U#8VeJ
zF>>I(jpcVjG~oy<dZ$XjehHPAISLCgK_R@6;fb5Y<}NJZrsWKG_=oyMBYoVCyJ?8S
z*$mGI>OCpSSv53Um>5!!6kXMZBGzK%nc5Q6Zt6pi=c5lJTGg|_^Z>gSRoD#jep!Rr
zOYqIf-v=va%yrN46(MyJs0rSHiGU${#Ly?(KlVoSL|ePvmdZ@2TDp0{rnQ&Cv=IqF
z4O@mu)`!$K+h(a4hRZ&)T?Hjve(glUZB!wcd1WLqpyO#ZeQ$?p%)rd)a{QK_&LkpT
zr-1H5<Qc!o9h>M>l<1<>M5Wx-QzJj6G}l-gjZQJ_B3n_Y+eZ93M5ksX8*HxBhlF@v
zk|AJLLP4>VRK#{hR^!w0hx&^24a@|N{#VCSuBJ1J9EB!~U8=)nVT)xeXyo)KsM5M%
zVKvlT>9@jQyuAV}aT}j>a{MLnQE_sBBeh=h_Iz;S@)-WC){^OGvXyC;0uYOOWOz**
zj`z(LG9tS1aDVP2Yuu72WKrB9Tx>++`#aO3r9Uo^x4u6_p@iYt^43IH&ZRaMDyu|v
znhh?d(>#iOGkR7FDiYmyam{ho-x6<0B03v`Up6*-ac$jeo2cnEYw&8YOMhqQQpu^>
zeY<X{BBz$buo*TA(!6c`WKPkw@K(#&QqsKUo}1eDqNg1{aLM{G?B!R4=cUcVN@e0m
z&(ZILca>%kwzTNvL$H}@PZ<v&I}O=Oqh2Y7Z!Dqf84_bt9aCFy!d7aK3i%#i#k)6{
zwKKgSdA`5WCa(x5X1XfQ--G<iIQ(c%=u2Rw5*3AC7fGyfc9IKAVNnt$2BBXUh&KpY
zK23KzNj!<g^8IN$D>#g0kB!M}u8Dh2oRkWdCHjt8(3`P_7Sd}VDxChZvNl)x*o7k-
zTrk4!JrV~$;<6=gUoi4hN!2F2!^_}t7nfTfnFUsp%Ju6Uj&*qE=}>uWWn3V|@1-e{
z2&NYBr&b*tO%s{$uJXqWJg%W2fMba&i|qo@(S!||?5ZvK>ivy#a0_sPV#IM7Wcb$x
zr-#}vHIfnifBa;yFl3vaSM!!D(x><+MI{>`2`n0YJEFsT$M`)K@TPi`YvQ1u;@k$L
zZm*6`PN4OB{V@+L*sT?6sT@Z;JJcO5?bob{bAvZ-cMs$Qo3t79qiR?a#CdI*?nQ-(
zji)?o63Y59&pdr~4~*>x^KxT7(=30qc64y*m!c<gHCXroi8R;24E@Rbh~Hkn#&r-y
z-4ks5%X3qN05v+grmQ2YI&ew~uO>S)>TmTCOE0e>b5Q%)KI}Y(0u$rxaHa1Cs8xq-
zbvzC0%lDwY8tOSw<mmYU>)SF|vuc@Oi9O+BXv*cVY$6}x#!9n}Jy?@FTc#~Y80QHR
z<HLx>kXOAt*@teV+sy(vt-yvrS)r5j%R&V*L#@dw!aoeumn5%Al6hjE#T?kiOgoP+
ziXy6A58~ML7D|bz_tl8Gn%5>u`iD9U;vJu#iX^@Fq)p2^z`@A84-Xr4#;38b`zWBr
z<zd&to;Bl+Vq8w;HF;7gvbW&LMRQ}fK}CwWNV~Ma@K_8DlL1LoN&OnR!dJ|jfqdgq
z`uA)Y>=!%c^<o0mVp}S_n=8h)=VGux{7bBmp*LpC!SGty7GIX<>rlK>xd{}Xwf%rA
zi`l<|B$@Z<L~};?-5$MBLkmBI)ulS&$`?A;z?mpjz$H|yAfF7oS0J-=PdXb=rdC>z
zbbLiPVmtfYuM^qh>wGOB>bjoi%HYGiXHYZU^c6E-?<j)D<#DHf#~mlQA;2p%@a!No
zKl~`gjq(XXvdf?zE*rod$?rNS1`6?q%WGIVdBm37Y~KZ!G`Fp$sT4M_LT)oi89Y**
zmW*KPEfvTMX7ah7g-RlBzzQ$VmO8rvW-uw{R2-i_E9;BXWoNK)ZHbXEF&k(ASB8~I
z?bymhZ;k8e_qLj#YeJWNU6JLJinCGDId2l4MAQ>TE2>e%2gzvuRj9~iJeuPd#gxei
zW&*iKxPB;0VR<SK(6_JkzvR`<c0go45N+`0GD133D)~WtqHsxjc%}Vw#7h-5`#5D6
zA|EXxsBPQ}<yqRq3WqHhf>Ccn%^(0yMHHPINFEPsiAnR@pTOcEIot!&NGEiD!a)D0
z;LeGWq9Vfn;&5-w#o=-)o~;z&M7M|RH2t14K{_qeJQ`SDA%`zhC+3R1v0?%OW}819
zo6JyObA$j?8ri@%6P~kG3kM?A$Z%E*bvU=&_w^UQCc3)Li?JBjZ{pNBVugRm+wOD$
zEI9E}LW8dEhI=X%HZPq_o$JsIuaowOn^v@5VW|Q=9z&JNR~8#&EK@h?f$7rhGbr|p
zrJwdE@=&bKR(dTI_4b?C0}Xnc=_pk}N((x<8p6nKS(#0RmYOWx4F*(OLEAw#*Z7My
zF9^IZUNEQoQ{mkaWa>6v>Ad#X!>ZOoYXpGQWTMxXky@i);Rk1l+()x+zMvBhhuVmd
z`#cGemf;xi-5ccdC9`U}&gHSrMLz#kXswd~@tk)*T-Dzb>R__Lc}+4Q&4Q}0u}gbw
z(v;&bc(E}5<ulC$vW!rMFkUjkLbj`~l5*qLy^Q_A_x{OdYvTfXVyIt|A4Y<dVjc_`
zXx)P|de%-j>wV&d3N8-J^Tx(plw$r|BiHRDaGOyqBoT?T+(Pr0pZHXiRdm1h$(T**
z?y|i5&Y=5_bG7&gkLo3R>*ea4%VTe#oQe^0QA1dY+mKp*wjWDt%3@b;|3sPRJM!aw
zx2WG>Wz<Z|miPO`D`tU9o7#tPC};V$KMBM>vkljl#aynp$ZlaY_#^ht=0Rqh>gf56
zD*3*y8<jLd^$z{P+4~o~-cR3EBPFwg6tLDM+9??&FONUOsOz0*uzuZ>7icF@rb$d>
zw6I4fXYL!*X*7|gtQh`Z^nn8)SQd*#DhBQ!L5jw5Y9BQ|pw#$FfIxe{+yC1q%@0Hy
zz_RVXY^~z9Q>v6l%@B8IPqCkMG+)5`NgS)K*I!)Xb#hpEMp|8HJSGV8{&7D%n@q@|
zK`&+m{=i@~?3#150;m(A3w~F+k&YqsYhoEKBHv1BY`0`8fnL3p;!Z`et8c<VJJx&Y
z2rQ{xVW4iVZVV7k<1iGcVKtQ-UK{~=$gCeXU8%L|^OPUW<NLhdfFo{sQF-DtWW%P_
z_LbQAgsNCUk4uxiB#}s)0Rknh{4Z{7SJ{NyBMHOgE1$K$4xoQKy$29|riTP&%p|td
zP#TO}SJgg-gNp(SU2-$HJ;y&QqqwCd*wdyK^S@Ua%V^Q<)-v5^AwmDH^jp3nMbpix
zdd^M0m9iAqC7vR93(7ij@~D)w(8g!D(%z$&ZP#0E*NV#WD<wqI?9es4$*oy?X|h%`
zPoYT(Y|>VPUCu<da5!7L^Hsj<pr#?SFAC({H`gK64etw|ljL$Se#z&few8TrwkrbT
z0mKweN91@zXmzqOx@|al;w_tL-0IF!fcgJNz|BN5|24Ig)>eea5ok5bsZ7^gCJPSu
zxIWMAJni29FmW=rqeztIA5Rxk^Brme?(VJK(=d8W!`eGc1=NiiKdPweT?~bfdx}P8
zcBl20TnvPgq@)2fvK+4hcIVe9K?!mej~9>%MH>O3lxrzWzIwC8SD41Moz<+VRpw`8
zVNVybA7XxQjuI>_w$+1`)jC{pC}lDk$krqDpVn&5x9*CHif1mVnNXTLGSPpv-yJY)
zfn$r&R9i!S<ie|J5GiI`Z&cTr&}_^L2>v|jz1E1te`IgR1*Z<S)w)4cMl@@Yh?epx
zaO!ZJGzO$vWCCsC{}Jeco<9HOA|=5%Z`_MulJDyCQ*GG}H)wTaiHs;c;>EJ11rZG!
z^lQ_`#>Pl1lY|i(@V*njtE1jjzFN+0=(&tIaI<_Tlo8(d>)_q_l=YNUP(ANTg>Xwk
z_~=)jmip*QlY+1Ir*=;~24v+;&16bw8ZD;A%_|<)tE+d1d*XLa*K0xHp_q|`nk_0W
zW%Qd>wv^QPFQYoah>E)@-=1GL+*aNWS6yQChOAGxyKQY%^y^)Y2t!YVZCh6K?&z=i
zF6Jd9YCX>;4`-MCX+ACMz%)CV#1{vN+_<lgt=@TE3nAa%xnsVsl!s{SyK48%X)fhK
zCD^})+5U0og9i*R1`;hqe&2!-m(l&nP_!t^AUVKPQNEvv<|RV8@A9VV2H^cXo!4<i
z*-$1LJfNtC!Bq_JUt@YoL=?rK^m)KlwfQJmTs$Z|Trg;ROni7uBvUlHa=g~b-ktX&
z8r53tyQ=y$NzQ|tqA6nv7R?}Z0%k>7u_!*6bUQ)A-Nv*y^}q678vM~l#CcA6Rjkd$
zFVAFN+N>5mN0ip;#ZemA>~oYw-97W3AxrHee_M_fupS}UqY87bBqJE~*wBF506a9P
zGy;zktPPDsoqzTzU4;jsRG6O0ZuBS2C;lBVxKH5c4++?au>U{l34;_~-tPFg&eLU%
zTIITpCA%z#@*8~^PPAY9sf)Acuc;WMuTmN@oN8sCnQStY^+Y4DFtb1N=!p)?&C4Ub
z?NQRT6%DF|()1c?%un3dY0iJaRSh-%k7XF{BY%i?SKoKS4_;>G78T|aa~;;@sz7ZL
zbXPV`?7`{kS!wdu)>LTFGQ7~Bgne1+A~Bsa;yzJ?bMCU?*erA@bBppr8f)BSw>-z~
z=X_bA5_+2#ddjxX<kbArb9$JCCe)Pdj#6GBw>i@q_P-oI{G@dm8<jogI6Rw8Q^gio
ziBxHuRf_maA7ybFh_F0ZKoN`Z=DSHGiSRm$Nh&J`L_MAqQA@BePag80Nu6PFEJc@c
zcj#ZgNMN0y^jQxy%USXz{q0hE3+qvR;p}(&jiJ#7nkO9fV+jGOiP_>xgP=xVCdR;+
z=Xisf^5X&}vAVg=F7yFtb0uMTo0t=hWY~xgY}d|3)Ud184Ee%4YgBohhj8Voa-X2!
zmFr@aHCN0z@lG1V4@lR{kdR=I>vMXo45OIfTc8<L8PoD99?WaH6!MF4J&@9v#$U9Z
z4TxgLYo+-AuU{M}{p0pqMLYK~A=J@Bk2cWfIbLB$Kq1^j{4(rMT!Z+>M6qFbo%!l^
zHt}7Z>-T2wg($}B;#ty_(~`niWxWE)JdHx!gu3q?2Tnf$;+;LPN-l_WAJ!8Hxg)e^
z2mu-lJyo0vgDX2xnve4Yt&DDIp2>d=OB4y>9W0zt(-QR5h==zl1bD6w^}V@W^y<w)
zr_j!y-|5uXM|H*WO!Ih1{>G60&kp5pr&uRQJ8M2cw-x;Yjl4x=cgA9AP-CyCx0tHD
z*HgzhM}om;DiaeU6`){<pf6#JC7Rm0b}17*GWcA7Ea$NH)r++o-3~;Q-+c#09^U1x
zE`>tSNaqk?;a+>OSx=SLjy~$Dm_U6SQ9o4wI1Wk}PywRQ5a2u5YFCnLI(7JOqa<I6
zq`0doakz#k|47YFL0At#3UtfotK|!K#Su&~2hwJ*;OfSFEmooa{>}6I8g;8aQH95P
zdQB`@HmgW%LmFduIqqSUt5+E3uU_-%=)g+g)@8jy$=l7`A>omUoO5gKeNP-J<UiTl
zng=L)h^Ad2jg5)1;bvO2s8A>uDu$e@AzHYyV%!`HZmxPNqz756vO0*?mHt)M!!DAa
z|CNV8H6I}OwrjaX$pYFxXcJvXuF=#~B%wXAM%ad~KGi(B7?~6P$ph{2rcy7gl$}&X
zW6?hgq!aBt8Zq)&m>UKPLz)?iL-4H#J9rofSMXjo<Yju5a$G*7h6)AC#0%?QG_RNd
z`9AsNG^DkCI;NnY(49Ip$k((?ojzB)9gBQ|!%r#OuXIKqPlAc;=daO+E~Q(HD7+Nj
zF8^f(sxx1!t^tWZGo1>J(lkk@o%{*l5xiz!h2O$P6+S++MxT6qhwg&w+P_54`UpLH
zM!~%X&tJTgG%$ubRp*N|dhmDF8Jb3EeW><Wm&~ALF6d)Q17XYgp?MDq^lqD{JdNi|
znNU_)#4dKQ*h1H*KTG)>1BNTTU$onO2=kN2&+kStsXX7H6C3kx)C#)3eu@9M?P8g*
zfroYwOQ3V=w(FPT5_-ca)g5-l&rT6YIa)EdG}Pn$B+Rc92C*cYe-g+$Qb(1~h`-8f
zgf2wdKLcFyCs~2oitR5q{U6ctzpp4+1Q(6vi;Qie`|Y2VssHAQe|aY=@y|y;dDj1j
z5`zEriaG_flu2l(+W$o{6=*er-t^XAp!z>E|DP|?P-qLjqvMAD_i^_hD)N75Pktb@
z=16Sf^#a>}(yD*I@;w^b0$LaY+dq@@pRa*G2`!f~yi5N~4f*%4_|X1ofv_&^ze_s#
zm(g|=|FJ0poHSm7-p`;~-@2!q|4Rh_k1qYAt6CzRz6P-$oau8%|D+Z`<BA;>Cu}%4
znQ~Dwp?d=VZo2=Tne{x_(kd}?i%HCtUyWOc#ig;(-A03OcXvnnc^q`Tv+S={v5yJ(
z52{hF5>d?{nv1Q-ATEP31dx$6#P!D`lJ>)K3i-<i-3L3aLywHxV4{CND1VLb=ez&Y
z2>cR<y=28@TPo>UC^Uav8TL9~oq}cl`oLwI^EVSqs;V}L(_cj#{_VOz!hel2m~Rkm
z#>IAks3&@q-<bR1Pv+9wkRPjzWtjp#&vuw7Ffl%FL}hUbueJyOzXlU}-v!49!UgvQ
z+Aqo?gV<S)ycS{N5WuSA$^rp&L9k<t6XaJ^Fi7CM`+pdF3#h8L?SEVmqy(guR8%^o
zrI8S%yBlechC_qWsdR@(H;3jB(j5|q?vg$<960<p_r34$z5DLHj{g{EF!q7X+H<cp
z*IaXcK69>x^0I0jHnwSZ@*$Q~+d%byhVf5d4PIm#NAW%^_;;iGM9z$p1g?yD*LN8>
z3doG&I<}bspO6$vL5Vyq0zq<0OLPkA$uxh&w|{Er|K=2sf)PMY?x8YPAxR!n)j=+g
z#*auBTo1+^O{_C}0Z?C$<zK?Y`#!xlcvVHOjpEf#nq?hqW59(O1g1q_<Mpfa7we#T
z`J9#R>HA(yc(d8Kranvrc6|EQw*^R_xnZLpx)EtTnu8r5i-vrAE-5L~(VHK(K~3uQ
zoJh4VL0G}J+x9br=x;^)*Dq0G0eX8>!Me*>VyHr8)PS9+z&JX-ZZ$;t{5{dJSZ7G@
z`@||U_T1gs-S}+}RV!b?Wvr!5QL`7d_e@@WeDydZ(LbyL{Ufo{&+YFR0zcj&&<^`&
z0mKTr_wM*gb!<CV-5RQ`qZEzyk!p8qxFG*HIGEpdMb8qoKbDq}dscw}8(rjC07Y4y
z=`Qj=&Uz60eL|<9-Zj`5+a!ozsjXaBNwY5=P5k{+D;2};v6aZ~+~P6;`wpA7NIfy>
zm)q*uU%B;_&-O50J_b@~o?LdPrsV3qy-P%q><AX|J6Y)sZlYg{|24=drb8wFPWKC`
zU8>?Zlj=NuyZrBrNe`o6+jGB_3j9w?B7Oz_X#*4)X$};)uFTY3#%o>T)4${!y7ODd
zN<Eze&7~9YTsNrwAdg+hhKKRuXb;~gy>BYcng*gmJdl&X%PG`2v89lZh;B{ADV9Dn
zYY6B}@{NGBiM%f6og4FyA7QkM*6+h;7>6-iQuk@8aQ%v}dE;v%S2e!pCAx{tUApZQ
zI>7-T{wYAUP3oD>CZU1#02kOgjNcDH6=u$PSj-XWepqGp3j@x0J<doZp@Vqp4o&t!
z536y!y`#fuqC~5BoO*YNO8iaK!liYg3O3JIMzby5EB(K!+?Pb;{VwJaZb1G38eM~*
zedS=|oy=d2oQx{fUj6z@ExJ7o=%+iXcbbXN`AWss{LHJ|H1cv+x#=seOL!)jxU%Kz
z<$LL+(FX8~{f^G=)hXB*t!`!Fqm764yZYYKb^oDz2U&EPzub(I@huq5B;2#V$<C2)
zZ79&9it?TjBTp&J{woOc-*!zh%9nG<9Gzz<;}`i(sTUyC2Sj5(qM$Z1l$V8j$9l0$
zk1sO!TV$xPRu`Tx*?FF7t?|?Db@1pWY(BA9qtPO0U|gQ4^HIKTHpat+F;o-j1Uts<
zigh5$G*~%7sXM44we#v$OQ>f5_|qrx=)j2I$&AJ6BlNoRW{4En*e~3s5l3Op{$Whm
zjy-zF2!xx5Re+yun=zD-j<K-RlQoS|@cI3U3VSq6Ec+S9%fd5pIKkHNHDAKm`=-u@
zQ7w_kW3%m_I=?%?%da2(4F-P$RI3H@-K+*AHrFeoJ|WtzIW@YfGCn$Dz0XGIf=w>q
z_nbxGQy*d9(nYVNC;OG{Be*4*p!*HFD`!lBJ0iW}kj<Wkm30)2FR9Qs0CGp!DFu2d
zjv8#F=3H#H1mqLyp~wq41l=SiIVKpLeIg8wZ1&A;y*D?LM><ng*S8ym`*t${rd)2=
zFZV){hzT$7K7dQ7B~R>jH)@RtD$d!9cb#(Wm=<NYmlQigbLxK!EGXgk^s{#A5V~^Y
zVV|{u*7ECC`&6dvUtQJFrzF|TcDAo?7j1vjT0hDKT~_8Cp0w94w=SdQn~C|hw1DJO
z+gb2)jdzA_4vB|@x=t+(TK5DVKY45r$>VZO0O0NtX9uF44mtJ`i=}s1!q#FVrWQwm
zSs&xSs45N-rTJvl(SxqYcQOvUt4ZL|sp|8`mTF}m79ju)1+QFf1BfeD<9#+@U(APu
zeQ|9}0({GbSDfTwQwi0(|7M<K=ivb1n=S(EV4WZsD}F9l^5}tp!DuL!>EexpxAE;2
z@vAW6ADB_|7G+_WNiV+8>KQzp-dv1q|7uM07*B^*b+m-<%;@OEt*%1bqsn~d9+<ea
zRpSy-a8IS-gZ(u_+whP8Dr~L&MiHWcJI#%i?E`Fs@Og~*1v{{782NH&ny}u2|6bbC
zZ@rWc(Z06S{p<OOOwdTscCelC`nY12nf98!a#^6&7@H+YylibzYqlQ0MTl^&9kusF
zu^M`q_(&p`2c3$JB7<I4Ij)q-lp=h$aWP_Qti@H`sj&tnzIY~Bp9W!e*4fp$3;-{p
z;@?Ocbw0aS7p|n}Bf3U|W9pvZTlHDb)S$lbxp+WNHa~yhZcbYl)qFMKnT&K)BvY{R
z&Hy-zwYs|3bNkAfT&r!EWnIZ!F3q<4I^wFj=&ksZL0k@*ZN3*&vEY(f2!3{#?APXM
z*0x9tRneAfLLh;0DP6lEySR!Ez}|MhAd1pj>_$&+@)q;5>~BcSXDcfl<8+3R{RaF$
zNK47I6%7m0B55hUd8n&h?u1pSR_aRukTO*|8QQknfzWgxG{fgVa@VD(dgh@md9ZOh
z<w9hV@sbe7mF1Y&*ydUV)2rAJWn<jmttHRyv(S8DNav$p$T!c<rHYL6kbp*fd0`YO
zdtyPm&NW@@_1KM0C<+As0HvshQ$K>clXYG5j9sflk67=CjVRzsh~r~*a|k;u$1*As
zh_{KzvZG>)KVhNJov!qv#11>}T*^BTZ|7Y$^(nyX48Jf^TZ69o5NCY_!TCWF^56ou
zRbJ5bx}iq>M}~%~#u@rRfOs&xIL8-rs$T#(ng`bn&Ymxorj)hsiWlv!)5ozyoTK81
zO-QW|)Ert8!rHW7R47Bd8RehPSD4-6dNQBRKY!lDTVr9_S4b@XX-&^<xq|QIoO&h?
zw4F+9Ftw#^jf5>=4eC4Vo@uB%d#N#d@k<YB_z|SvggFfjhFqlG$m^YQ!op>}U<h&k
zxHU5r{CVcHDL_$0?#_5T&U=yl+NYP^>EoivwiNEY`B~-3-^59P`}HLQZ7sBJj0WNt
z%$p<ohD+j2{780N6yoH^de)3XvQJ(j=$CnOS`%udaFY(8p#HEJQ^RV1QIDHT)Fqk+
z8-y>%XWXZ2)!UK^f;xUqq{x7{_I42Mz?K5C0_fGIn%V9J;<%@CieuM;@qk(zFa9u|
zEW8{qw=~Rpt^sk##!UbUB0mEp&>mH!YMsCT3a`)ehhv-O8a0w+eD*WDmHYut;sQYn
z<OncKWcxXVcs#IY=DpEPmZgM6GmVsRs9ZsG=k88}0t3XM(7CiO!?&y~yG2gwhDJW)
z$2SwJ(eH}n_{la|j6OH3$dI$P_OAYJ`pX#52l4a}kqFDU(MnBGD|VsZ2WX{sNcAfi
zuPug6U+iiaMY5^OlQUc=J4$lR=RKdEvzRDS5nd$aUCO@oK%x)KCm!&|)n8e~Kb-6q
zTIycReLn>@H$QUcJat!OARsVrGwgiN)6cQoWU_skP4sd-l$gQ#7TEEWa~oP{dZyVj
zek>wjy&*|k)6pR|px;20Hp^A(GApEd{q!0E9r5HxczfqRTVBx7%wKZ|d1K!ftTu_L
zd!sFs2LD;@6^i;bURD}ZzP+5ciRLeL!FgKh4#2YJV@LG-p7Q$nPwHeHU~gu={D@k;
zx%I#h4+}KhI?Q;ybJ*m_*!>4z{@+f(pRWBF!h}mf`){bK+rUp@@46~E#Zoq)_8huU
zN<z2sRn&rR2zgj;qvzS2Ta0|3SuK}2wH{u)#RA#jkJT6HgtMJvCK;ez2x9Ig-=mjr
zbL8u)DR6QVv7+QDDVD2?=;mZ@=rpGC(S|wInbrhDmh~^Zx*Ri_BJ`N3Zq+9xK>k{%
z{@BK9ZLi~iFM?BDf1h`aW9k3)0{F^mwJbH3pq|k@Jnp(==l`p$$w3o1!ud~p240tJ
zQ><lxI@^Na&Bt9dhWDO2o{-@8zc#Jxi&Og3Uu9k<h=^cJlPVf2Fu|1M(t!2)Tjkn(
z0gK_iFaqp2h@@<}mdLe5V$DNmtEs5f->we;fb;&DI=?GHNu08T5R<asom=6hMnM56
zPyiTK@L-kR`ug=p`go}~Tv#T#S<~KWZ~D=mPrS^Fh%+<moGE!jU9Vuuq><EzpX(Aq
z&sMiEwYKA?%<uWI<rWKYO419t_q26QL`rTL+-xGH$Q_Bwx?Zq&n>*}(r>AAed0873
zXa?VG=~OV35cr%b3wKgL&IOLWPPB7qkxAUw5sSoR<I#9HzbMZi77go^_er{bTawHv
z92=~a-F0KUJymW(obKU>+;z=*T*+Ja9FFWMKHgudJDbZB+3RW_84TKX<6J(_?20KI
zdSwsu4UV{5MP;>Jms_)p6PpYIaJT8ztJV#qisn;K=t_9&)Bf30zXQeKfDzh^bl)-G
z;#~cT?{=*uS%XhK97z~0JDSK=DP%IO)@9wZQAYf5!SAaO;+2rk6CARV+`?eqTaRlw
zb_2Z}Bh8bBQYKSL@06#G30d#kwalU4Sh;L!*GET>qUO9}K#1|KGhNh|zr5a8S!+?s
zLyju;*(OhCh=Tb^Bi@e@FVUbM<fcFIYS0gJp~9%I1dROC`@O1?TueT*vT3kh?$s=#
z=)l8<osExEmBtxGg_)Ob6is>Df(Umq>R}!Kh51=glnj7~;#yuD_mF^l3^PF+`O`_k
z60P!(=4iam90t<KVtWCySRFYZxuggo>S2*!e<-P4x9rM|>d*1X+l~DT!`+vjCe7ep
zS~8+f68lZlAlP?k>RHI|4Y<M~`i10B;%<aOUb`ufu#vD=Ek<_QXHR6$!I7esarkiL
znm_)@_t`24_~wp5$$bRnl#g`Z016fc(5Qz{&9Mnik4F7mB*FxJe)xZ|QYj0>4RBig
z2BezjfchZkecAbH^$=rwv5=nZ&#+RF${hN{5JDSmc+7mm35YNm>Dp1ey}#orVJemV
zkyriWl;|KjKC@gNr=e7VAhsN-DbX#SNqibN5VKA=tDb4(?3fld`jJFti@sK)K&96o
zAZJUV#I|Y9Z^CcjPo?N<+xacMWiN~(UQL+?b1}3;qIc%jy8v_<aXm;ULu8}I@`By$
zc^6F5=P3b{(oA_ciIdcI=^zPnv`$Y}Cpd&vkAo?B92_PP*-gNNw^5gzy<R@@g<n8W
zB7*qvv#MA~h_sjzc9kOG0;4UtdL7b(2bn@itXRGAvu$#wSDkFXmv5g2NaE~96$I+f
z$z;Vz30)cAcB2VUZD?d@O#+#`HeQ9?1P5udE?M0b6eWDzvhB%DR|8%eHSYLll%c})
zzR_DV2ut)aweFl+@sDQ_HtS4&2C!HjO8ku4w7T(zvw+{Lft|_YLrIOAGH#~M%HSId
zJQY70fw6LH3(cKMRo3!lPK&(_7rY)-r0phr{0#7+HP4=1);%8r49MILW8SIh1}M;^
z|Iw@Xzm{zM*BWq+ci7`}+q@j{lh9QKAmKs9udUs+BI`jvc?b0-w)3jPX5Rx?zs5Hy
zJ#>CIy4^KiYc9!u2J8Uu!vO8V{gdebF&>4gOZEgVRprMGjwrhH6C$1E--c3vR2VlY
zVU+X{k^4XtSZ^{DUt<v>T|dEmS6lO6!u{`cj|UP3Y;JUH8~-D|>mRrbSf!$;aEytt
z5)ThJ2=tziKC(YD74vgk82Woj8L4+l4%-lA9ve9nav^<6<O?{}h>&et`T7YNi2olE
zmpj}|c<8Ra2X+h-Zy|{o0YD9zIWTVj3+!i_i2hK3Wh?1Z^9yuSwtYr&S3g6jOA7(P
zRgG@{5xD^D;WHon!}mn}i+QaJcibAGU+0cXw%bji+XVmY-KnVm^zmbe_LXqh*ZKO=
z?dR{c_3p0#>B3JG&qRDR^e>`?33;n^izvMKpKI<)X^{k@X#~oELv8iGnl%EAxJk9*
zIi(66S1DWn1`mIx{}@<^x`~+lx~~RGhLq=enSNRa{Q=KzVL`9%;GLwcu;Av$VTpC1
zmoKUB4~T3KLPOI2@kQ^Ky?i#ri|}ryC3xanzVwWMfh=6)?frLaiheY;VgSCWce!Vf
z2Xrz2+g3cF!mVR@ssQ}PasL}lvSHe9dIlxVR|Z>NQc}c8q&SJAbTyp*FqT0R`9}cK
zpyp;^tEhcmruPq!9?*gd68&~Z9~P9Y#rK{Hqq>rJG1DFT`HvF&r2-Xx<K@CNBf@VH
z%@n6Aut80AH;y~a0&(9bborw$_5a|||CJEnLHT*O-rLjEmQl~%)gU?}y?;-q$5+4b
zhV(ZNty@6@xywYa3=y8kt)R!W#)-DFb`QllPVy`NMo<WKrdvx1?7jR+z)B=dex)36
zZ`rd<Zh6%n&Vr}EP4sXG^NoDJJ@q|L1gtpMTf)%m0t|seoNrEOkq8ALc}$TFnDsYL
zW=H}4-TkLW&<e0~;LXZ(jIbYdCekpV8Yov}ZVvz3EC1D7K%#0l^{@KXG-zNGkbZS2
zf)o#p^iFSivKb)oA>lVu4TJYSd5RMm0M=jrbnH&!&?LTNCUHkd&8&4ksh@_V{l>`D
zv7v2EeUDUhZ=>A@eWKq1Mxw_NX;PN`ZFKzTZ=NantQO!IVkR|m_-6C!R^^h5!+@z!
zgqE0+YvylX#w-6DVnDJL6TN5ZJB>fNfHI)vpr+|RXt#e<yFWBiG7KPrs(S4Berw16
z;9x+{fyx0rkmA(;uV#IHwD{(#1y)2jsQ0IX*Ktw5Fy5MUdM<rdGbzfn1-*#HLhtX(
z0$4lX@W=l)w3E#TPo1Zr-KgHpf@p{5;(#;ouCqSlw?1N~FWzBdT})!C|9cNE<G$v>
z>34ZXBfwg>k*8k$a0`Fop0}VAS07L%y2XkF3wdAnBxT9vZFfaGJ<+RI)S|PY!0K)X
zWPDs-9Q^o-dzb3^k3+O1^=zr)>vA<s<eKD^eP9{Y*HCc|yhAP|`l{5Zkn{ZVRnH;%
z6Z4cApnl>X8v)v1>booK*fcWYfA>)*mbtf~v;TYJ;>7>e`auGGLm60M=x&qbHYrH*
z>C0yAzftj*Uucl|srIiS&Z@~Y+27<cwj&0-Z#?TY%|3{4ja~}?0zO2d=GUUY;3IlK
z2&!WFOOD;2l*Eq#NKEfY1IA3}r}FbWAQ{Vav8HD=vC8#@pawgtb6A|S=E6i*)wYW&
zmyk_ZNJRT`HqDpVj<;9W4)Yw{k+q53r=8k~<&?h@SwR8)!egZ)`m3jA^>!MV=?J+d
zEu<$paaHGQQA1jPomSKvdy?U1*16rQ(|&GULfBT#O;DsE06^Y3Ll<!P^z2NHmC#+r
zFL2t4$TyHaGRniu!HEdF;gWepTG|o4NX!LsK($!Ad0bR_8tqsg0<Z$JJo6nkOm&r0
zy$E|Y_#@j3!|CE9&;I5gMT`GPl>vqScV#$C{PcemYdGl&fEdATV9i<Y?VpqnOrvUD
zHn$vm3nNUw@Lye{><ZW+195+kqL-!s2smZu!ldnyQ(bO|?%Z^xF^k~Ukvd1IKE7?s
z#pAwsX1_EK?3EyxGVDk2DCjr<6+H8(e-qE|!arP~I9l8;iN}l%acTP;h)sWtMa>x=
z%*Q5SzP25u*9i|1&%rQ(9SV3UHmKNx^_%Lvp9-On*6b3<mwo`8*uP@MfwRBU$V>y=
zLm-J_K99rVAh*BJT3wKg#(0R7)oeCtHQFq%SQBc~P&`{D(|9ydv9+Za6J|C#>IJHI
zGXu-_YfjS45zP#04G(Odw;*2Vu@B<1T)rRD4`%%ox@tf6;V~k}UYXVY%JXF~s(&b}
zk8Dbml{PnP=eJ?~4i=w**KPf6>pMA-VfotN!fDr&3pxnTE@~{D<|AVogq2w83tSq-
zW@|bEY|I~&w*#G3JpGSJiK7UuYFE~N(Q=fkKUj=Nqw0n)#pUh41(3SOkC&nxOr-kc
z(HV7{o<?j3WJ@k9<V(J`zd{N}7*iusd2u|%QVX>zis!ReHy87amn%<$d5I&2TW;q;
z_a;geQ2>;=Gpa?lUH%B{ea!5SOe_-MkV7V)(m#Dihi$b9F*%!L`0x#(ak%TA^45I(
z*w0yQvBMk=cYNsXWECXH?b0?AF<WjjOHtL_!0PGg`PycZYPyCzYTgGEz~zWM&dA#;
zCrC%@z52(o>NGGhB!RPfD`xjn{+)a>r&q>DKkmc5P3{b&o~Wqje!z8A*{Q^~F<V4D
zc;j)Fs<YF!!P~%?*iSl~Ar$2oCGa_Tm1YD|zo!@9uX{MNA(#3lB*TXyjNR;;LiRi7
zvOOBUzl{-=(vYz!-?v>J_p%{&R=;BJFQoXl2jMH$$Xq3<x*WWZwl|R!qosVq?D1V$
zE{=jP-G6KAga7)Mx7OBdF1>EC^ht<%%VSb5>df%hUkz2tYVq@ilLh1Ha3AXH?}4MV
zyRq1F*B^>)=O_aN8h)f~LWy&~Xm>sO>5`&fzC7rG%nX<(&Na$$dZ74V+6P%e+}dKg
zN)R9pf?gGI<@DLG`~1=h$6Xc+h-;oN>!f~ap3!8^NhS9#c^ltk$>ky+9XPdDfVbzF
z*Mk?8*T;)SV4=5dW)?R>2th2)LN(z8m%$2$d9LfTb8E1^fFsEy7I#08<|_hzS3P*t
z{JDE1(}fdxyG0PyYNnhku;us>fYBP)AOuY!(PWS9;>I11BgpNS?2rS!S&8W16x^kO
zlh*8a&2?Ih6xgtjW0!^Z<U2m0*LzEHw(|!#4hq=f*`4xgC2QB`d68*2!Uh}*13upd
z<9z!7`$n~#GZjs^v!1Ji1a-CiTo~5}?DImkv?~;D+%2Chvfb;bf1BQ=oF`L&XRc67
zJtVF#d736$z+^(l?j=Px_{#M$ke%87#Z^e8y{lxTURvI1cl<#FNp06iR>pH?!3A>J
zwfxAQ9@=7!3K9nOk_sr;azZPd9Nx%JMpj|lzulHAtF6%V?!}`z9|JX<)8r#u+-}%t
zcROrYh#itEzl-*FK7g<5<1fnw{I^mZfTGAuWU(vuJ~`2;`mQ9|mFx`DXk1|DsV8QU
zZk5kw>8rEtGX4^S2>IdnxrSCWvcG_LKR1rkp&5?z{k3K_FNJjcX6oDTb~h&0GP&+N
zN3&rob6*O+p)`N#Zm%r(lAUW55y~@p1*G~-Ef*e+p+<Zkcz0I|6)fCPZ1NM&cNf*n
z2uStC%GW66pbw^z^<8`U6b@~ff_RmIy2f8i-17P4z}nole`tq0OlHX{Lr#VgBu9KY
zjgoOBP%>(7@A#&o4>bkELsiq#qhM`qaA^x~wMAevw~p21YKN%#WSeT2vScR_IYhtG
z;l)gC1ICYlPj>G*h_P@JzS78k^Hk0o)cQoBJF|4Qper*UAx7)IKe((>@ez}^*5+f)
zE6Ms>4;Nq9&?wgSuWSlQ7JiqY{2D)VXeBFl*gZ~11V+9(&fqa}`cqH>ZDnL-WXYg0
zja=3@G}risVx!0zR@l9wXNzNZfc>ei2hK{>qoHB_N-2no))Qyw?h;Gc^TP#?_QU=y
z`#Sj0>}cb81c0ZY<I~7>sV{~{3$cZO*5fvhtIFc&Ra<8`!y?o(C%*Q^<Qbk!!JeGX
zOR5wnHZIeZ2p$5-FMsFZK$3jlXlA;N-7D5g2@WMxq5>$av3x(FPoF$TiX^^t%NauV
zk)8IR1Y_?h@u7f<f5@moEM<|l$B#rO=;>tG+-Sqxe0{q+$@jpa+?MeQ#*^pCvS<2g
zf)q@vv`9P@W-O@zC|C&`^8Aik+%^Wtarb<D2pI4lVwL2sMD7bYy+q>HU0m45%Q4xW
zEDV*Ux>v9#U^nhLL{wqAPc{4KVgiqA2S~7g<2Xrl^d3{CNM|T^On;&%mKcRwP9!HS
z;fs~{-fT(0($cfBg@CY%N$P}*pvZJ#NHE9tvT@SJhNA5kubDFG8KqaaC>*=VCVXdP
zuUAG{TJi>@)XUP8@OUHR`H*$c`DTui*f%>G3k#d@0gu7-QYLm#c6bIhR!0{+{zY+u
zKHCIb97I+12aG<D&OWSy=wldu{<6b`JcZlp)AmGBw%zh;k9HEO{h~67<(AuxrJm7j
zbLbffKVnK051Wy!(Pghoc^Kl~6+yD}`FydGGMnP9bUbtS2+qR0_Q2Du1-5MOClQ@t
z3E!k9`s%VgxcM(yn{uy5v%3$M+CPtcb5n+qSq7Kolvruib|}kZcX;7E5*y2nfbH{@
zt-@&1+bc~N23c*JZv+KzcBLOt3KGaaa;I3HC^TH_F+4kKx!ISHx$>ab1MR<e+MoN;
zEC9y*l?GM~I(ou>#%(>@{2+~2FAPz8-o6A~c(*ABT?yFCVC!Tn+{`x2Fy4m*fNq<(
zVV@5*>+H~_5|{&^dS1ADv$Yk;ZN-|7tnLG#vG~cw+5_1$uYXm6{xzyILn_g_ST%!D
z|MD`<^nz}4!nS@+*9fk*yursV2@8I0c{>!+evJZSdrP`SZvxaSGz#IeBO<zuab~-0
zs+&Uzy+&0dM_Yw$n_cghAy_o1_;O?(Qwj(^WKeq*tgb*cX)D>v{`nK@$r$DnJNf6a
zbg$yVZVvm!t3EyrzH(-#skEL?r={S6tsvi1cKz&*pprw85@3B}&xXD?`*0~<kgG!K
zlgcu5(YRc0hFN(AYF(z;j<ZVBVU*@CHe1Pwn^N;~DMaEEu;1)TH0w%A*i=0`uCpb4
zc^Qs5J#4m7{Dx774Cm>>yCS0dTeA!S>m79V8dV(FS<eOQvQkQHl(VjX3f|D~?Zu5a
zsnTCAO{RQSsQ<aXnXJcyZXS@)-66>vj;vC&9acng*<WYPcC|p@Un^ASYes?duEL0G
ze}-6he|({_gCk5rE2G9%RLf(&O1H@+Ts_iXTX~kqt!@9uY9TsSziC^YE?$66T<<Oy
zp*eG?FPm#Gpo4wg8xkl<;tX7g<?l&$m=*Z7IVzg6EtEX^iw~vf^9fkgrmlglOK>^F
zwEKkkTIFxo_1H?d1(a<`21^_@I!MiwfBdpOal>`S3*U^|heDVlb9c7MKO}*_JSH}q
zH9J)oYIL<^atkW0!Cp3_z@^oLpbdpU<4rc#w2BB>;<b>;*e>iLw?6V&=A*A4kt1So
zF-wduevu>7tChPoKZ1jhzYWcF@CXSB@gE)Dn;X3)@}LpAbb6`c|Axk`f`ltSs$dM!
zd4nU!oUZv54W}$pnMQua7M4Hy+SZcZTqc<VMFN{re7?c?vHk8FiZ4g(rb8mexVBXC
z;>mV)i@=e%bY<N(^9{Nb&xlqzaV3UQd5j@lD=Rj$I23O_^r3{^BYSM#m_UF*@2`MM
zRHR-M3Z`O|%ec%yTT;wTMI`gP@z&TbhIFY<Ls<6s*y_J5@K_P<OxkjM`-y~Wj1d%Q
z*cGk`x`{X+a3hO9u3^k}k0j$UjdZ(=<1W|RR&n8T*>7VgYqn4|Ji~E6LNV9AkGP-6
zX7X^s%`D$b=&msQZ$7O_!XQqer$zT8DZt{cydKP&smRfz<;}7mzQpdb?K5ITBnC2Q
z(`SvV1iR^o;Sh4V>`IBf!gZ(#+j@RqFFY}uDr_TMk<Wocu`9=rSY+Vc<wT4A<7A!n
zs0D!s;=&anB8qr5jJ?kZlD>Pz+Z$`oPTK$S>I%CDcF{#j4sM0*r({KE@Srauo_v;|
zVDwkld-UUzI1Ep<$0Z$~x~s2_<8aa{Ys+5uS@R|A+ggVFyOw6Z=x#mntb6=y&pLaB
zMZu>K!N+ASWK^rhy@~9@@r4Ef*7{X1DLzwRc45i~8SJ=(IB^bho#kZBO%_LVhYkB1
zjAZ{vY;3L39e(@SBH~)>Xg(}x#KSg#MA7_vummd}#_%W`J@*y#$y3zNJo=}V$;?JN
zRcn$z4dH!po)HQr6SbZu{M!@tI{cMq9y?}N82+U0B@{f)Vbg7LPs_+O)w3jg#(@~E
zLZW}Ga+<oI9<BZb<E#;`{rCbU{|JJ8%g@_%b{lJUFwcFuSf_SkEpHTy=EIUx_F8#G
zvDT{;iO4{eMu3Doc7zVj+W{11G{3+&eSCpDR-CCOXd+bO1%<H0OP%Cwi{=c!TR0kx
zyu@9(mFX9?<A<6qdi!MEuP7C&`_@Zj6TBud%0BQ1UcHZ`C>p+jJH4&7($-OnCv`{=
zp8omjmENYkqbM{UM+*BD=V^~p3XdyYjrF2&{3(2*#svRT6pv;3K2EaD^|}D^IJ`?=
zL;!Iy_N2;s8n<@do28lZ6jLsp*XCd?OH|_ZQJ5{Dm?suKhU4e@22&CTD@#AxpS&_r
zMQbkAR`2NOFgV?I-l(&gby*t!CF!&`GdeD`8?(%2yiCyig!R#)^qXpnv0ITQcjwn9
z+48uKis>(zr?c9FI`KDO6l>Mrvu!#pte!?(!phI>nyPZnj--c;uInfVk4~YkoO<EX
z38k-h=y`3X8?e;Fh?NSWYYuXzzxL`sO#`bPUvBD?+=t)l!81S;GC%qVk8z*Gy1R&(
zZdWv@lzp@rNa4fkj~@`p4#awyH=?*om;)CgMdaWPr4z{Kieuh(ZpR(Vq6zG1-0jfu
zH-Wq_`+eDhk;)_?wUFA#84_HHQp+_Od<pVA_-v#WT{;){!eif`E1Js9sVuyqsKKFc
zv}!6r>14dA=H8ZJ2DnUqnd5w>380*De0gFs%*QMgNqmgPB5cb-hetK3{bnvrA}IPv
zPP<WUhJr`Gf&x#k!)X-i*_!c82Z?EzL--iPW9w!4O{#Q^aX%LZcMqfsgly<|%C>ka
zofavI`Xur11}Qo0Go`@8?wR6;OqNP>EWFk7DTo$asm6c#DN=SytM)B&7U}rq4=4zA
z{ux#Dx_DMwOsFB$6)RR!6|ZhP`CcsTewY{B=2UAlMUUq+bf%o{eyu)ll-7#dc&<rb
zU5p;|G(n7Ou!sO}*Z9h4B28aVfMs7Yk&|<<`q%+HR8Y57BRFBRoU5`sYBHbOuZC8u
zg8IQ;T;QWx$zou-E~mX04?N0!-W)r<GaA^!0my4%e?FP+WA#$-+USwqt$A#3h!JNV
zkE7GlO_4rz(lwt44%rWnc8S&7KyO>Z-a~L`Fo)&X2BUZf`fO`i4JrNNNK^|&l$-RV
z(ZP@GMEXnTE(9mOEXlaYCEKe`RpxsoFTc-qJjE=x9yA?8^ibZ4Wo16&u+`xkbkXLt
zG7xEtAUVgu4*ddT$1(Sgu_GBH5|cJq=f1ijHLJCy4p17gOqZ(S<8I0sckOmgxgMgK
z4rqpx0O<peHGd_(XN#XlTjV=)OB(H#Mpy^*%G>;bdWBJHwiyNot)BN8sf8<+)aXuI
zBiP38e4=(rcdR=;#T8Ai%%2O2z^!gGn&9_hzD-@d_U_^NjQsX7%KL9<pPsNv3_N}C
z4)O`tu^|v%0Nv#@9^&z%dPtzCqN0FI5JyXkMlbp0(c&far|7|Jc0SC;@<vD}ct9p-
zdt3kf#OeH3;S99-N&49J^cJhJ=try_?(&0XQhcO0&N~~(GF_23&%<YJZ=2eSl691?
zoTiAEorQ23Xd`q8PYM*X-zEACY#oS>i2qoj?7AV#9rY=xndy5VULOSx`TBGrKZH9+
zUY+UI(H2{d)8K5L#q9E_sVonDiZjA+E(-BMiihu4$EqkrVFYNqfM%nQCB^gGQ*42Y
z*25Z+&d>!iZRnwQM~~w2X&z;F&@(MtoGv<xWIeN!M+cWU_mLk9-}}=KNt%&*WlhrM
zw-~P`IDXApIQu>mj6xE|5vc58Zg%j#@VKn*L@a%jlZ{cMXia+Ed$4?6H8*3eI$2|_
zH$yF__Yt4ppi)&jYN<Hy`@MIu;}|M#2i&w$CVjCOINxqpBd`XKNu;2QRnIDzF_dn2
z_*_ep%mtg&ifVW}6q>Z?wBzwH!M|F{4t<BWm*SB0F?whRQ>%ZbOy~>94Yr8WnKe&j
za6;0fpogG7j<oauz5N*Vf=YLCD>q+SDI17pgMKa(Hz!@*GkF>uDMBf&rVEkY<}Xrd
zjl~#~{v^D5RuXShMs|~-Ly9HoshLAFobVVAIxBAy*6r?*xtTL^tuoe1FwV~HLSB|W
z35qwu@mJE>L_Q^d&v6vF<6(MMM*6hlM&KpATCqXG$-W_u;AMlZYqv24kB*@>s3fJi
z3CLj^19u@sKdhRmEO4GKjcB@ssUuWw$#%T@aI+3FFa@IW^qzi*a=)eTQ?I^9;K_Sh
zmr5GfmkWI#H1$Bf+3+Uao1Ncl;k%+&V>y&ntxT@udrmQ;t{%GmYqcL#acck{u|kSF
zG7#Iuw%P4?ajq+XdoZb$8BTdmol)LLp+D9>r6hS4;j#DO0PC{tA%u?u8Bd;fBeSE~
zX?GbuZ9Lp;h{KPNs{5f=Vrjy6{Js6S_*E|3*U1*)grPJUAIux|)iHUYS_w!&6-x_+
z1+l(EoYxVokqfbjo~7^rwaM%%EH6VnV(gkzz>a<3GcU2elirqkUg-I9wxIF2%xXuk
za+|dTMH=5lmY<MEhCmvh>!Vff>6bLZPXyOiTlQ*ZyE3BljoSqW(di4wq~QBtGeHMU
z0Smny$Q)%$BIl00m4Z)<-9Xre%00&Pqdpozn+UBUIDU~T!{$`}dXMdPm4%@uAwMle
z&S3IKqNa7iKk4ru>MTi@>8%&fqHVD%@c6ihdpK8Ew(vU%bE8`er@O3NiB>%L2PF#(
z-oUWeVcdTynrAA6s2a$<u56Qg<Ko=<+^zY-jPn%{=l#583@L(lg=?H9^lFSI+&apg
z48-5-p^2t;4sP2Zo3xf&HDPKq^4s*rw(apDH~k_tx&sP>)4J(pFF9;yORMI&ojlL&
zi6NU53ts04-A<^u?4r#Ktyv0P>&7rq(D!7;y(XeDjRT>r+0p*Ja1C}x9%X{4TgR~C
zAT|j<aunz2m}Db{p7CmBzA^nmCzW#n86PRjbXmVt(X;tia|TfSokcI9AKzxUlHXOE
zmo{EF+0NR&uUppZeITf)RK8vhFN+Wigpxxx2C&a-WgjVzNpGfkJ0)_njx2K6&h(V-
zd06(S5B}ghnjzf=zeqoEg1hBWu8(#RW-Z3`E!e)}*R|VVg#rA?tnKW~3HKu0wP2~q
zBu-gZP{|K1mO*<ap8h&Tyy0Xn-AZP{Yf;zcR=}0*v{t#u^i*e+aDb-_3iJM=N0N+D
zteLG<3i~CPFZ2DBrhJ@~GL6SESM@}{iMQHH^Oev1tkvM|_Wh(GzFiATCF=!<+hn<-
z+;K?LuwZ+n;MJiHO8C_;B?Z@mCf8bZ{T<3=efW0K*BXyn-5ZY-$5h3~AG!|M_g0@D
ztR?GHR#|gS*D%vrlI$mK>OC6l^jdjKe~MN0D>q`2eikyR*<F{L!U>B>ET}Q~f#ehV
zO-dsYNfj2WE(o(2Yl1dRlxTM&PI8Y3wnoizG}+B^QUaFIp84KG`qK|#5#egrbddX3
zo6Vc0m-98UGGh&@Nsn7C_GHuIPPJa!Hi4(M$6-Mijj`3HveNJyBHOEetFPn5ihVVf
zijxaZ$~&~3w7@NCVu9~%xnLXp1peleRpGT5)os)s2Kld}Nf<2Gy@ny&paSP}(=h@u
z_p5-;1u-q21Htd%LY{hkrZU4Hr)~H%&V_XFu4t8HpRZ3hs1Ds&oaP<-Ma^p65MQzh
zUD&BQQ|cGI!;<#!S!b}W;x5XiUZe&cJ1ggvpzToTZ$ffs9ixuUma@aF%jWxoNJL|r
zYE;6Q)E8Y3s&sjFZqHUmNK!2c3A?NGq)WV=RUBzBcE!AQ#q6@=(^UuS#M>vkt&-Ss
zME8=cAW7AzO}{uf^|@RZkoZPY9Hr$51tjrsc3(yf?|>~wwpe)R^ie{hAMn9`IlXwp
zQ;tuWvG1iSr1W^|eID4Qy&pb!;cW9zmir_IxaDW;IrU{F)^0u{J-)>aI^!{KuE(BZ
zFuBvn*P1DKe@OI|gjR!f$V8d`a8ZsLm}`MM@+XUO?u@A{Nl;55773{3%_1n{HGcNA
zjBGjGh28B9j)#J67I#REnbF+jo+DDHbW=euZB)xGVwM2;%FGYSJ}5yCwiLRw0zi64
zaoKi(^Ev6~udB<rIcsa^Qk?fkvb;1Fi%JplTiNCVi3fY7jr;x8J=RCPoT9*CBsFtX
z<L+c93#cJ<SLc+#cAunwSy_djrL~?d5TqpIOG96#Y|J{=9%ZTZ<)|~2hm|HC$d;Cr
zV^cg*QWBQD8MSWK9BSe_eUa_{;L;*`ul0t0il#k&sx$rEk%jpP<3WI{_U#%)ob_B(
z|1OoS(f-e(TlD*BT}75HPB3BURz?4AsmF0MWpz+W{%ux&sir}K4(H-QPBOWt?|I3p
zg)I(bJYR37glLKo%G^_cTU}Tgc}2$y5AQpR=C;XW<G)%H;XC~vsx|??7n%p?$S@q(
z0B8|oL4DZaU?H<=Z@oX9W}+>5ZI#!BwwaI$BWI1GxjYWRk}l$CO);mK!7Ei_IdS|<
z9$~djd+<qadvPO|VW{$Jwhsm;=xos#b!VhBhufp3At~dN9`z-mkDnA_-^?fRqU=6W
zhX@s-pI3wmvg9Zq7C^^LeC6=bnwG0U*t1#f2MaLE%CO!17dV(GmJ@|Jdo@6@_tM_m
zg=rlgWrfu=*M-_)!P}qAEyZO8ixfF&F8h|MO%MB(<%JHsY~pGKToySWL4ESl+@rBB
zfvUmND)8RLYGftKEn`(Tg;yUve7g01^Bf9h)7x=IWoT*IUI<MFmR~HT&vkDpWM$=b
zUUFcODmYhQ>Y(D#t%dPw_Njn-aoQYMz4X<==FK_TDrfAG)+U2zeTEko|3$CDucdud
zjobT0pP8p;*6D>qacENQthc(iqQlB+a0D-UyfawGx+36oow1KZ{_KU_tzr(C9EV!$
zIE%HW{k%bx5MGT;vrBp2=5MEm598xK)Unt5H=BdJ7N#jiLvs3Ajx70}{si2=kM#v^
z;GZttgQ_=v2FF3Sj>A*ua}#czi`{ujj`lF>Rcrxs=V{LQ%O-U*tqD?%`n6AeS(A}h
zD<M#|8Hnan_;5?n1@Fe1_XvWgWJs)E=^i7-r{1-WRr(p2M9R5p(@zG<VlKsY`X;#|
zbLsd}4rk6Rlik|$Z8i(9368myPKG9vl!;>to|}EmCMGu7^UH*ONYt@Xjp!y>Kb%s}
zT>Il!d;?{{en@@O_CymyOk@FE@h6A40AU~bGV>`nn8iDzva3PjW{0+%{o@%U&Pf&6
zp3^L#*>y7U&EUOt-6s}f4^L%$ULsc#(r$7#)4PjCghAX&v656C#syR%P(C(a^4bPf
zL7J{CeHzc3y|eCFO6|p_(||_Sz8z`~`p$a{+qf)?t4}o^VAnwPD3@gGRI7Z_oEy^Y
zuX;m7B<`mnY@3YvJThr43uW+W4;^-xxTgfp&%i0S9%hMVJ1#bRUAK+Y9H<FBFT=Po
z8fb%$I*Hr&3i8tBkzK##F6+5pI?oy%o7Ut&U3wV`&W1<i1^YQQ`{T6(bBB+#%s6SF
zw-Lm9^XI53R}?e$-OQ8ahMynL(N$Zz4oxzv-&gWfSbR&IzBrriy@BF!b6N{=x5sQm
z1Qr#`XQbN18WBBw{=aL{J)}z_g)buazqU#B`lYpLMIOmwD|99h;#_nD<+)SJ{8X8u
z)n^8)IvCKXB1qyb8@3nl1Ce-7cj9U^eM(M3$#SeW$sLd+Esypl5YpD0rRyc8g99d#
zwFBQ?Lt@WaVj4qb@5gSR`#}08H+kfZ^7@%Aqh&eWk75vI{fHWi36jgC01I4N6+dz5
zc-!)OQAm7*{biAFh_^#?dpxIV@qxYQa_PFPr{3}w7leRK`s1e)(b+`|XKKuK%mb8e
z`2Z^9h|;#qsL_qxN47~eo=N*7*mST`ma8DaB^iPNAPnFVh^;H<WlgC?y^tv`%Z}To
zt`P>auFEf!$(;dZC@1{2PlK~JVC8LAzW3@Ko9kQs{4n-<PvD&2+!Zut4b}0oK>N~(
z`Gq;-g2Sx|>do4n0#?R)h4<%0{f{+XxR*#{yV}uoQ0r;3ld{iS#biF)9H`9E#u5LL
za-zlVg+=bep&6Ue*1mWqQi@=?36uVr_$&p>{qZuLi3V;fs|VCkvf8EB51nI2(<8Kj
z<&B{)80%H$QYh6CCNT@9>LaKG&v<uavQc)|(ACJ0$J2HGsmeI$LqJ<x!Y%WPrIjKQ
zK1nGWY-UFV&aBGw8)tZ4)pO>zgrqsG*rQaV-7ZVD4AsuL*9vS8_B-#*bmq!ue0<UJ
z)Fj1batiyzSKgs7R{p5!m*7r!OsgC(dEkq`D$FZsVc8#?mUX80XehSmhOBhVZFtCM
zAU0@+1O$<v#Jg*E6%?kw;vk{WXFiiY1<<aeLf^1YEGTKQdGXmM=9<VZ7+Rp!LEA}6
zpP4psOu&vtRU&Mg6AyA1Cf|KLXgV)X&<Fi=Id2Xim?~JVwzxVGWMK4(x#IX*&y_py
z`G1_LyRYRiGy*BGwY?zc=-E}rDA)D5KIEYiLd%z7-3C?=mDZkYYg33NCUVd3+bdzP
zwYZgs0?A+3*gG>yOM=u{saf+T?Gu|>^$rPQrQI#+ZyxxcPWj^FCt?-PbSrL%{r4^Y
zJ4W_{Afo|03Uq*ecULAFIxw3>NI!r3i_iGqLbw5U^-2fB{^V5t_YJ@wgn=rmI%R*Z
zhvIMlx;*?Ra6ba>ib;69iu*sI{C|J-qk1W9mxpHaDD>0+JmgPb*Io(R(Xc%4`Wub;
zkD%g`zDshrGfxOm{u+7x=b1gyz+HMG;S#?SJ@m`HA8Axoth5+^GZFuvWM2}1yCD8g
zemjZ;&+mWY6E`<jAo$(rJYxawazkgO_?_sqB1p)tp(9<HwEubOzg`LJ0e2nY8S(#4
zbOnDvWeBn&-YWiQy#9IxC|2JF=l#18^oxG>`fStUl_94F>fgTzEjCgPM(vmJIXWGE
zhu`)thKg@8A4=bQQ?zFaDkyi>Rwe9R{a+t{*B6=o=;7r0bxi2M)}8))uZyvN^H#Ce
zKqtQPfLFQz4foh+BZdFJq599Hy1Od21#aBYPF??-CF?&Oy7Nrf&W!vp@oxh8|EQD3
zBGB8DwQu@Gf2U8AZ+(}Bc$Ziiek1*}@@5pY{bF1D_@I9f`;UoR{25R>=T>92zaNEv
zNoL@M`FKuqafR`3khK4j9rdmoe7lSP^Ui<0YP}+QRtIkG)TH>W?AUkRa6d}(x0C&p
z3FuL;FfjjbWhVzzv-kl8nCj1i_Gh!TqYd=v6_J_SUnTxe@3r!x0o{PgZz}%V!Knp$
z^pt7n=<hY~U;pao{21s4Y|ua`(7ZL8UmSz_OqE5;w9qZ%+~Y8_q<@K_aiR?nC2So3
zZYeVnlTi;cWjb&nu&OnXd>X{0Q%AeX5k4UIjPzjFK}&#e)~p)k;PF%<@XFRQ+9}TB
z_xy}l4wr){XKTn^s&rjup)=J7Mw_XQUw?HdSS&y;Yc7ej%V69dLu6xvwKlc0y=QZc
z9&N(h8@#T+O!*Ef<<pO?K0RopjO%GsO_6iCz!lid%jlvxYFrko^@q_1{jBIdm64%j
zf$q7^8TTiYl{cO9bhzx)w6y3`<YowZ1y;`$e%75jKRQgh1>V9hn)(odN*S=a(ktMx
zu2ntUa>4dUX!mdxzkRiPZtDrJ`3O7&=I%H#!R>!JBybR|(|-E)_@Ey8w*Dh<2*Or{
z%RmJUP3{E8RhSajvH1+&LBlYw%M9l=QMC<py0m4vrN*c;l$KQQ-+E&pfWB4B$1C6C
z6hS1L4Yew3WL0bs4<ni_$V;=CwQkIIp0{9`Z9e|UWj#d<JUH8G<YObHL7MB-eBKVp
z&?~2ir#aWDi)3~qU$Y>9??E_7p_gsd9TntFB52l7Gl4vv3huCRVk$l*1Bmu7Er@=r
zr=zDO16tMl<`U#y(M=~mtwJuxn%s8w-iFwGv)Tvst(91;&e9<SXQ;JkZaS4~W@+@!
zq6A4u;!meH+gCMVfXNQc5}r2FFb%!4H`cL8((#PI{>FMAWVx-3xX<=YvYSb5aD<M&
zJMYhp%JIYM{Cg+&W;CGWyflL9#R{W<zh>pJKRT%A(bRHtwPRZYAVRxAl-^aEKGzm`
zC;ZP@OBTK-3nd%G$Zk&;<fR%Y=OHZ1AXm9*-lmkKydM-ec%eIQQTJ?Ts}^Uv!f$>!
z{RCYYqH53cR+lK}VXNiJSnPNhQo_{_FiU)H{amID=S%cky4$ZeGZy*O1wHQ!f>d%V
z5D$Qp*v*n63#4ozFts82_&&D~M4579Jh}bF^HGUe&tub&bBt(-9~8RdJEm_tLkaO#
zPfb_8)43e`*w*fpHnBkuWhjr5H-Uf`d^>-f={!}_ls49sfc5k!L;%sj4xD*T?XvMS
z??Yd*{lBNJ0vgh^PWCDPFA#%%v!{l;L<>dO&r|54HRYx4WmXWGxwh^6B!$oQQ@*`$
zL9UA%#Bwq$p<rwm$>*X}sWa5Ye$mk;Szo&OaHYuQ2TH>1YSg@Kj#P=DTkpm-bu!`<
ziaO;&UW48_a{B9#MM6xx?=<<>3`dzGkqJSXv~1#=Ucs9aM^YeM#(HvC3HY+_jd+sc
zvqC;_yDsp<M;=fm=)0w59FN!Py3W(F`WyiVYI<|CZtaw{RP5C*GQ)US4%p=np605y
z$}kJa@8b&EHdwTaQNXw_rv)+8?tI{6j%ki`lmlF0z!m`h*9PgAl^4FPT`yjHUw0fL
zyPWT%PWhqklOnWgtPLYbIC}!hZ_dc~j{4ynB)K^7gIaa8ea{tc!YF|=N%-2>a2p5k
zJJ(W+vB9#C?a313rXhY#nKGKNbPt4yazsiXmSe(O{M3=v#Mkrq@`9wF`0~=-KULd|
z@je>!fnPez!cjVIaQKb*_NqQN9sVqG8DN!|0<bBX++{4lyelZ7JbVP|mgC#|t^hyE
zNzj+CPd>fbcw4wyPfa0s%>X|xn_hm`Us8KJ{Fza--JX*tJ1^b)$Jvad>#Ruvd5lEP
zO{zt@$AQlj3HQej!~8eps--&9az{a!%yowjDQqT|GuKc2{%xNFXub?`&IAyr8&4Ff
z4yp$8I3j8`^*uYWr+jQ1k0Vps>&S05ZkHv_%Fh>WU-KhhoQw?zkuU?TN`lZ7@KuYn
zCawgI{3D(od!eCqvJY-tzZ(-e-VHlDuwur<dEWdB2c9FHR4U6UpX*2z5tSkBwRAs*
z-961p9&~S~vY&Z;>&ubWyAOG&WU81~k$eZTq;r>>89pNA#R&ihdyUC5JNp3j)hE7b
z;7~j-W$z?QpNr3lqnr7~y=B1Y9uqT`hcP#|rTZ{%X7#N>E`Yh;sqAYy9lGg~Jr0Bo
zxELI^&Gno|&-!#1$RZ14g~kt9XBRRWexif;BgigG=6}(oUU{61=HX>K8JC4F28Vs(
z6%Fz>J>}OJt5~fGu{fcgzlMb%u8&zrx%X*`R0_ULz-Hc9r7$;d@skP}8fj1pbUMpr
z%*hg#*fbB^`3wXme(Z8W(|R7p!n7->l#eR9^iq_#)uP83%jWUPhfjH3_aPlGEssRG
z)#c71+a6e%7s}s8#V|69YBpab=-K$(3UHI8!Z^qH3&~H$qJ(CL_?)r)(sHB|0!eYy
z_3Xc<c?@YjJvMpyZ%=@rR5;hF3ckOS@FwpG{01lM8O9LpUK5mJS@pKsa^hz*<+18F
z=OEh_a&n4og}r#%y_W6N^;yO2?6=FDv&Si-*n-c-_0%GsznU<ZgcK;{T8+tUG8P=o
zSe4C}=ruJgAay0`WV1895X`cK>_Qx&BS?Wmeo8qw4{^|O_Iu20=UpoN4j>uk4P2xL
zDsHAE@fmxLBYyDd1pSDUNul(f*jKB72bp*m_?VK0uTTLKk0EozMbB$J$?k=Gnl9oz
zzR^0WsUfAXsyl{PX*{F`(R^#DW26#*L1=ycv2iMIA@Jz>@>tZP-Q%DsD2_P|p7(72
zx^D}9&^;Z`R8t|hKy<8O`*AOqv`kv%K%SA7($>kLn0l?ty_v?t`8+@5o9Blg-vL`E
zT!BB*d3upS<L}-72YlF(B0{H2e_o-%kRunCy;`p~!Jij>Mengw^0sD>Yi~EhhbZvb
zO{S|*&qPaPZc!nP75rv+<NBsn*K5#+gLXL9BHeA_WiOk)%gNdSbm8L-Hs5~IML)YE
z^}qc)KP2Lw4U#=R+ek*<yu=%IIUk-YUG+kp9ETY;i{wJp!Zi~89Lu52{IUu24>g<I
z029iJ0&*fRqK4$jrEHYQterd{T_<cZZQvSo8p0dQxGr=CGV}~fe<a0!wGz3_ymV%c
zWv<IU1|O~WO`E20V&fRmAC&QDev6H8O?*vxyKV;0uQ^>_AiE-WowE|U_?-L_h=HFX
zS?P(#ho2fT-FX*yH07;DiYzc1e`ZK#6qYAkmGo$|)$a4&C9z&_bt!zmF+t$6Lv;Dz
zY*x)Rz98i6G<W)B&9%i_e#)rjed63p?L_MK>%kOm@ckS8%6XT09!9WZ@y*g}115yB
zqrFr?UnS8rE9RYPTSKv&EVP*CpF(UI%TISx`d9{$&j^?#aa+y2wC9J~H<dzbRIYZx
z%Ur{sPcSB3x9S{0^eWsW<L7b?meWSkjoW?F)~(tHiDZ#cqW`xSz{lMWF+T^h^K^?m
zVwhjN^CYeO1@V%AyR5xF7_+I>v4NU_ALaf#NcQ`Ldp96is0VVX%3JsOa$NRi0-?4o
zH_VW2ApvC2o-_B1#6nBB68vn>y3PMRmxr93uw?sqRQOLWAUCa2pk<Vw_k7f?KW4$d
zHaRMSf-Gb+?>wp0hEs5!C#>sLp2e6qJE!X;vl{06v9;=OT1phB=4*HVbH6E$af8S}
ziLy#%eVzu>#nQ1-m%(Zt=t`kY2{2Z%>NR%;t?xK+r|igdo^+<9c0O(I|6}hxqng^b
zuwfgbD53(QARr=LK&jF}1f+ysq=QNeO}ey1EN}z?k)F_dXps(~L`6iv&_WLo>77VR
zAR+K=?m6eS_uMnSzwa3DA4Uj^z1N;=?OC4r%(-r+Tmbx<dcZTj*%HQo<ojPdtCMzb
z^vG4rbi+SghAu2*ev2rquN!&1<^187Y~Uu7QN(bc?LHz00JH~<Uun4C8ZI)J0Nf3V
z)z-3V!Jbf%2CU4|(}Be{#N(bzGZy}v<wA8aV|S4c#;-f}{Ly}ReB;^f6aYYuxnK(t
zc{tm1r+d=nq`htr-wg#4X{|+dv@L8l%x;{rPv18muEQI`HMTU63NcD!#H~-E5JOa;
zt|B5Ldfzd@8rlj~t>Q(t5DVzpWq%kmCcOT`?5x<{fV)<cCOOmY73zaHc_hV$@_pKS
z6Y9vH_Q)%7L!=y`wT{A!y0IG9H!c^pU>wV?JGO_iO8b-O&1Ja%7N!oDWGPX10q`oY
zUk|&Etj-F|P(@&_Ft9&gXSkqGeyQ7BLQyt3Xm^Tl^=o|hFW0F}|80W^wW{#prX(&o
z1^qzpo~rv<D^HQf;{_22>wH&agM3=%()BWPEXJ)ji_|={6It4%dU|hH6phoM@*EJL
zbrubkzMnG~9C_8U9-jN<F47N=_;M7zmeAA^TNp*wgUhLe4BEBP1sgFMRg~{K6L_;U
zqjOai+NlLKV3nB$^3+w1yG8L0)&Wb)dQ9|pP2i&N={ynazCngNuKI#Boo#R#I^9cM
z&$VLiN+1944teE8{g2ivMBf_!gf|&?6dLvL4?Gyg10oR3y8(E%>#%CK;ab1P<1Lic
zCHCD5JC0)qntKvU7-?%KJWtKt%oG_6+<0qy$)^CJI_Z=V_?ZJbo%+jifSN^J>(}nq
zi$C}3PrpC(%u|$l<KlG5Wwm>Ic{8hHP}@t2q~JvkxrOnlwbM{%RY_g&P^o>uBqUy%
zit@XP<gF&u&+s<R4K=RL8g*Az0zUFf*#P{GtrET{;k$THJZ29hQPv&isIXseo4M{B
z&kK5cdLaliKV~eRC+pPrYtc$;!3r1H0C>CjY^e|5)C7<Y-^=gsZQ3gihR9^M-|Z`H
zu-W+)P0mvwj&OfDnaCQr+0l;k1H98#^uFMBB0M>u{Cw5!d;D7N?LlZi4@;)!VF1?M
z{C1coV0MbmC2XGA@654z*a;YCH6yz}0B5!GXR@Vbk1D<ZaI)hQ-tIeFxmLI<(NR`1
z!?nuGuJ+3VF4=(`HR3wI=U#wNzQ}ZO0D-o6bsC;`p0|v!`SH*A`B88f5F5eC5iaBP
z2G5^yo9Hf+YJzsa`|E{YIu<^<HEpHlSA=c~ecL`$${AKMQ}~ARVXfBrBF9Hl^f1k+
zH$9*(di<XX92uyvvqdL69WjwM`emO?-@p4u1RL3;EJL{c2!nY4k6(d@+C67n`iM({
zEy)GMDp8c_A~Cbc^*%a4vGQDe<?lC2IDecxE^rMOSMx8R;s5v)7X1JS-_<L#%|U+y
z1pvn4RDjku|EEW`;(q~ScHEbMz&y^)*_82r4LOQ$!U0Y8p@QA~+~3@9<l#{mev1t@
z_~3uu4v2`k0L1dCo5s+Izqy~(WdK@X>j-z0{2M?d>nQ+F{6A6s{}fe%@U@c97Dp&h
zDoyvIg6P(%cmE64p?mmq{~R5EuEeOm4<G&cKb6d1E^1f~Kd_$s9?YG8T8KYF)Bi-D
z@-AhW*Gk+uuMTVgo?n}ce%eEH6;gjW^oIUZn(%0Hqkfk<CjI^#kI&z1Ipr)n0Q6%j
z<!ks`DDsUUFh~8sj_ZH3<u39+0`?ruil)b3&+7N*QO>3V_MEYe*xw_xrT|F(Ip_o1
zAD;eyVsC$3U%v==J?RpYfBelBKNj|q8ORlU%$N=T!~Xu|<d}+q*Yp2YQDwP(cGUP?
z=xh({_Pi|{oa4%@YJX_Czd!L5-J7WBf~a&TGj5A?bm)Al#BKD~xTf;OtoaLaCyrdz
zaT@uLRgWh_svch)x#V|7G0<E!wRsirp8rY<e$NC%w;y;{@*hs_DdQ)F#s<jp`1>FS
z(^1X86!wkxO29_h+j<NJu9)@xY>`0iG%V6*G^#{qPW><55&i>Uog)vWp3+}bw&P~u
z4^Q;JY*~6QS)t;x+D}X*v(V~_!HnCS){b+vS6+pZZsp#&1A*Q|%+SVyrjh&lJ`D|O
z^~?8Fq>PVyXZ5u=aXadX3(~nz!Mpe}zr9K4%)^61O*L<v9!z$k8ZA`TB|GmlS8yPO
z1y0Ek`XLrNpGm|KptDZIn|IyEg_UR`3Fm;|yPA`4|ARO2!}f$`!%KnFSCaj@x8;cK
zwm!RS4=dcS0q?Ra->(S<Mz<wH&kv2iSs}kd(ecClSWk=nI?=$EFT48-tLU|v9(2W0
z+pqncJM!NF^U)7LG@72RSAUmu<m*opu}x1EdJbdLCrOTSEB%&hLzK)aQS_doL2cmH
zVTBo<<MFuz^OUQm7d>0ZL|XWEmnTh}N!Y>$@n?_QX7MLAl|*sN_GB{DIll0UPH)~Y
zPu)nVlGDQGwf&`G|NYV7u@Cv$KJ?Il@4xPZY<%Ep2w!Ox@(g{d5M&E?-KEV8aYtoM
zj$l#ioOKGjO~SS<IS=l9Lrd>jXLq1=>H-w^Z=$Qpl9%v7&=lGX-Ux@bVS{#2_d{P7
zYa%`SEA)Yf)pv5#r6;TLqU!mUI&thA0bP1rGn6mYOX6z{!+1TJU`_IRo`s5n-JNH@
z78=yc)?|e;UqbA-%szimd`f0#+o3)W_WYi#>GSIn5DrAW=oa?FJezMjq=(jxAC_Vc
zf+tT49lX+O@z~mbp1KxTOJ|YN{&klSu<0fLyQnR76rSe$kY~|b$OgHd+rDKRy;#pN
z1|_`?9}6H<4U4wSTK(2cE>-wl)3mAnOn7pkdIIJDu}wQ^tUi+ucT%s}zAH(zj$O{(
zU9#A$23~%z<dfOcdVG@`HYe4+#XR>!Pq4Lk)9fn8+uL--X>aCI_??qH6%T{n4I)fh
zw@*D!UK`_`7py7vDeFOVxK8-5zQ0<|YKf%ZzqcV1v^BG9yPBd(e5dG9jijl8CY<`T
zOX5YZU|TRr1?ZfN>6LpOCk^qG4R4COW#MfiYL!jn`iQVY23zZ==}J*1Vr|MoP0}R!
zr?{M5Px(p{{~XqSCCRi#YtFAb>K{Q3ynNANXL+C!dPSsi0l)i+<JYk+=7o%E75hz}
z4C~+J1&Nt)-NKn+k$ux$mQxF>R6O;oph@XRl{%Vp8b>DQ$mej^8#)ab0Dh)0W+<lC
zFj2@H5y^ax2P%fK$-2MiT?@ip@gLHR7&8)Op!=K-&>3)Q!+6&KYiI^7G--rcTHz^W
ztwps6<2AXYVc9hgTHRp5*IvR?o#}x#<n8RJWcQjjNBeB;=AHsRo9oWp3h(s?>o)9Z
zS6MehmgfT8UQ6!~)0I9`)<!bdzSy+S3+A1m6K#<hQKW9l30b2O*3cSehd3^sTo}Jz
z({2n^-UTLF_%<C9LIO%59?p@9X>SgERfZ?Q0fG|BlG%3s9As*=zK^%oXMxDYFeux{
z2#Hujmo(pXE|QLNkm~F*D7P|i+-!<p>xPJqeWt9swYHE&%w&3$W}F+xhY$NF6-xav
z%UsCh(;?0^uEtf({u7EJF$axnVGCa{%PKZ(_I$SMT$J?>&jutiLlws8BVM1IiCL?w
z%+TPxn8b-e4&PPMt(KnL`x+Wk(U~|zrDXF79i}M^V=h!OL`45!9`D<%9dD|j-{57P
z{+!-tBj*(52p{8wQp+^&TdaqnZ6VYNSg@Tg3o*9&m;bL4VA<=xkGoLHT78#l(dz2B
zjl#F+N4ckWRtKIiR2M|Ez24h?Fh{G3uIzWv!X0l}BaJjXxmrH<gqpGBIrB~LEUsyx
zj}oz#<^nw{UQQM@3UoY}q6})EbZ;V<VPF!~91#S@PR6yZG04~ue4xxhgB%^OW{V)s
z7*pbj!ZhC@B!}t=u#enY{j1IK4DZn0(E};R@vj$;O?a%7?RShc98kyPBxVZ6d{q@G
zyb`LFKFRK1NV>;m*8=2x-JCorm~k1O1$gb7A+?$Qy|(BNcvnv2vP<l2iX_%smUWX~
zE-2YaqvN*1JKRX=wN*0=IJqBJLOrX|&WHMY(99jPU-Db8RZBhASY5iZ+=~egnMN^Z
zD9uUc`QB=W7h-Dt0S<Tt$HRf>TRil^SWlZD>2)`5Q<`JZ)luED-C#25PR2m#D0dIT
zM}Y%haPDb8ki&=@mi$>wlIf68Db5&AYF_7P+}N~f$(U0e%?w#e@AXZHxwgS8kn6Wk
zjYY4%kybhb`kWTLW9?5tQyw)`mWYN{PDmR!F3>0qQP*(Apf1O$krD#=7*aTIpNMPL
z&UqJ9C56-9$`{{a=N=f+af&Ms>4O-cd|fDyXCDQx#&m%|eR)3GJIxQ1143-|N5%6!
zzwJNmX(D@!pqWpNI@NXC#Nb=+F5y`+U@1G_4i%VNXoFCel%yCuXUJxv`*M2*W6bz)
zt=rH&9eBCUQq0|@aG|QjtI5lCg2);4JhjJKZ&y(ff5i5h&bB|)Z)rtea}^Du@9A$@
zi`gRBBwuisxHoW9yGGPHw5yeibFR*_PGqW1_{T+xUc1%cvQ^V_m)&&ZpEm99eB0G9
zLDckEOVLB!L8O`7Y#zL^akt_je)zdXwR6SJ){`)ZHcWbAz`}i0LJ>v+yp4A>+rc$G
z9ypv|ol?f5DBp!=WcFUKxkdutE@Ab&oG;p%ips9FRXu-xYuPHlBoocQ6mr0<)YI2c
z7~{pqUSpeLHnR=S^$|>OUm3rlwXwoXuN@$-=cn_-w<%^b^WK~pP_}RfTl1p76{0xy
z6bt$y83#EhLP686lC`_<q{lCk8lO;-T(7tLfpYU)(>`a${Mv%SAd^1zlBKrNX*kDV
z4kodUL#EzH+JJ3K<k-((KI?erAW2KofY7Ub)Vzk0$8cqL2}CZZ$+zW7I_=7sX1h;1
z0pVht-m_FyoBE+U`+$fqToF~ADA;RAD&H}VdWbF~3lBALodqJpm}8jA#5DH~*pZWa
zjpmB{{%h(Wz@2otLLbs|FtTtFo4%D8b>$5yik3lBr)qXfv{fF;j>8_v&pv_&@6gw7
zW~M=Olg=N?>Y%4%l^C(2hdXt5+?ML_JmDJ!&rbQq8?eZt1ac)-dSs?dRNh~kJbWc`
z?0`^dGn5nfB$!x3(qS>KvkI+cpFSQJ%n{rMhjzGpSz9uj+=0hM-N$5N6?!-8X^%5K
z@1sY!<7$3Ig?kJw3~=9{+&J_#D1=AU+2Yy{CP>DVAEKrM3vWbp)}Jq`F~HpH18f3x
z>s><djL0|UCcMqVZ@#+^Z*TA=2)&7-j~<|JR*N!|magsfOw+*pK!k9TX_7n~)mYq6
z0_Doe-ZFmNRjIT$m`Wr2?=UFWfKaLVUR8$~oFca=2P^mFo*~&=XXBon`Az<?)*8}%
zmdm;JtE-N{cV@k1<n#v1X)^uNtF7~=zAkia9{?Um8CI%H{!{Nb1a@!mO8HnzpFHX_
zqOuK#H~r{DV)wDlL%4zDADPy=U86kREz(z{Ib@OuT3nL8Pk(1F)q~<HH%a_?Zm9p2
z5AaMGYqhPl90|`A#~%#0?e>bc)O2;r^oiWtx{7{(AYt`OP^lSdo?EQ2i;r5%<0frI
zQL<UDdz{D{v;FdY1e)5l)l{?dB6>*mcpR>|L1OK&PZ0^x^Jtm2{Y=;!RyxzbOW<Tp
zX;N}Q8-wb(8OA0^U6WiRyIIg~AqDcjrD=<m%;AMJM&i<O0u;Qpun>ae)!oB@AQdYj
ziozjEPo>6QDQk@pn6B!-pAF(f&Pz>N51ulVMe8`2qn?_N#4^7yHZK5tUTC{*jgOw3
z*z957$4hUiJmg7!rHM1WGzTYJ%4&&(c8aPG%wEeZoM+Oe<-~O@ivkZjp@$(WgUt$`
zEXNiOW#3_=DSQfN3hjzwWaz#Lyw58%iN~^W92;|?5dHC>&{oj-R6&=+D01)H`9Au*
zL?Kf$C~mHxKu~UXV`-hO``qyrfcgB6_gokkJDc$es9lu3-DAi5>q$A-J$R@ph`Z(P
zA|qM_@^NCSUA%1J7}_guJC-x~3Yp;Ot+kLWZ@ursTcvX)wUY&}9zcd<hln-sKt;vo
z*zqjWD{;%sG0f!Xd!*{zFPIk2CSH@7aQH}Oi$X3Wa-cnGQs`r$cS%RuCP(Q&fOS}3
zBPT>gzWzNzX9*JDPoJ!T!WX;69QwHqS4SQCH3`_2Q%eSuWEgb5+kKhEuc{wXO+M{$
zDJ40Zr*=XH_Y_nWJM}(q&gQY@qq0YaPv)7WLo1_qT9Arlx2HfI$)|i-5y4m)pZQU5
zTmOUs+t;0OX&KuQG6~y_A>Ui%a9Ob}4>Ml({6iNS$6GSA@jJ*yU<sevGoftVu6|ZQ
zYw596mBPDI<I4|}3WLWu1&#U}HdT9?u5nm2ba0}2cYcEiCHg|hi$0#CZ#7n351Th_
zr}p(1b`2uCtG0Z8*Mx(vjED3FjAgRx0x7v$-HSoWn6jlb5W|-TX#7&lOnkHEaQM#3
z>xlbO_)`0OW~K)l_?BHyx6Q!!1)xM@UYg$RtS%8bx2kWqWTE=;DL_+>Gb-81v>^$u
zuwYK;AkbCVV}fd-%OJMIb<-NY7?v&r@z|S_R(icOI51xK1WFecnqD_f{oZx(a|G`X
zvpvcGsBlXu5P<fwW{+?v8QcfSqf`Z*vE800)_oF6sICOT9!1M}R2GN!ROCNtAKh<U
z7ww&UKRR}H@kBmM8owElS&B^6dc!stL}x24u_FPE<tA1vLm0I%E&RLL-3f`|6cD$9
zd!ge=-&~?B^ozFMo=c0EL+9=r{n2N46PnJ`Job&t<=Yy3Jwl(HaVg_8mfl~IrLZt|
z$2c{^6dUa^@!Cx8AbqT^(!I&0aCxx!^;~hdfs{-88qVC+^QLa#H=|<j_1=oI=xqxv
zEtE^~j?1ECl41TU`J!CDRv}aVOxJ2z$ROzHg#J+dB!pXWvKp(yaAuqkR(wvOKKooL
zU?00I2#cc2&lLhuvpqo;O+FDrT>QCg>!>rae9)|ZRNz(!-6H?e30;+}wf%1p`K9}c
z#p(I(*%s23*gNhkiv?iR8gfHhAuAsqPxl4k*d6F}o%!YKu}tG!trcN8h0v>kuIOIO
zahm*X-+GS+g84YxX@?<-@0`J>`^U9trm7VNAK0_w(R|;?ua{d$y4j_IJp)VVh@W=F
zRMoDx1ij_thsPxcpBuzK<O>oGBS5ZlCKb9E@mOb-j5aau&%bFg3+fL|?#87=bhOT*
zdWTReja+<#^|1LG-W=Z-!``@R`(}OY-1k?gz%rDVy|FCXxy2VrH;Yiu?5qUggx%R}
zSrp2Ud>}tnr*HzYL$iy{{TBtbs2&EsF5qApuD-MK=2&D)SMV-lR?xDo%fQG+HZk)=
zuV8G9LXeh;V+SIjr_~*4E&FC(lj$SYs4g(y)@lFJi6GiN;*eq)Oq_msk0d8>C<akg
zJ<>78I6fJND$m7xC9LAY)L_P#Ob-73cx0+!Eo4J}^U0M=QRJqii?PzcCN?_HZG0LZ
z)wCIt%#97E0qx{H+bW3uLU;*&zufVQU4FNKq!lz6k7q46#*hTqpHzp|K!FMpp7GvJ
zW8Q{BGDu4r2t!S5+M$UC4rM>l^izW*(Fx_K{;*&_`u3ZH9|sN!;i;*e<?v_&2;Fx+
zK6aKJ{RiBKiX}vMTcjp#ELLXpI!pYP){gmsY|_$MpTXw?0e5AS@?jbFfVSAC$=FtY
z_wxAg#Kxl{`&=LTe4T}7tVkdIbfuyK|0hcAMr)7KY5gZ_{hnXcuE{sSnJ<83MPtDQ
z4;Jp`HVwsY_R1u7Gx)k``dxUR`Q&lIOikx?9%{L?yA>X?fp<|b&e=o|-*<ERm6yUs
zH<;K1;$vrO_N86TphXCa!Op4cBo=hi!^Hk{+I*O4tFJC{CF~^iGi#!xjKIZwd?M8L
zd1SiJa@^Z7$-a$UZ)njn^iW1A?VJWfK8P66kTC2I36*vj+kR%9bu3x;Z8gSsT@uIH
zV$?<JM@`!v$HrFj5n2S((0rnqN4hbDW=KAV3GbIZ`wvu!hX3QDyQg}aXQ^@HW=`*Q
z%Lae<Qr|?u+TE(Dd8Z|s`dgJ2Y{wPMOZld9=1r#q7w7evO7+)RXza@CH?qIp3c3lw
z`3tMAu}|zq!bGvBP=N^`!>lJSX+_KH5t%)<!sFFO$9_tqH;T_CE1HeReOGr#Uy`o#
z<<`=Br>4o`k2;$HGK}{cEg(Wv_I_2J{1QLOjiz*<{5xIl-yGaG*?%c%(%-g>n3PDC
z6&s{)O{Y2z8%&TMN^})Cc6T=T2-}j3HRl=RcY+=#WEd;;h!%<QNFv4UH<30%j>gVO
z4>6%jdMqg$d5$dQO?zB&<ev(vRnNgUb4&5c@AxG9E=nd6SKgUt3-C&IWrcDVp8gv7
z4rj~qdFKgED^LS-6X73s03HsJzHLY`8j$Y2WMgz+syUS6IfbDthUa-~79QyVQ};?=
z$`k%rX@g68J1avMC~(*%!4;NTIx_##&AJcLT!;h2hgV^J`x{hEiW~LO3*9X<r0F1O
zbkqgSFjlzpw8-Q61B8Fsasl5=BGb4b<JIE)ELI_CpiwZ0`nI2c>9l(S>n<qanz+wP
z(WU(yppej%INz6(m!-a6pi*z%<Y?6vl>YqTbJm@~y71Rogu5+Dh`l(st}M27gMN}4
zPFIui>UK`vC#`V-)^f9nMg1-JP4oHVHztmC3Ly#-VM1>U>zzV&$C_dZY<)(xV2I(0
zG|u&Y9^L%6<oGh%kc|D5wuP>e5HFJ3_>kYkj6>99d+grWF!Lu<L+ooXL|w&vqF1)_
zm9jy<??xV8CRBqdZOEtxQLBM^qJx@Bg_Ib-;>T_%+0+^nTz5BAHKor3EmW?9Q|D{S
z4Cff>wGY;eKk7os2e+UsIWsvgB}Q+t2ke{*-IrI!^G)2j#q~mYgV{Mh;<9{w4vYZ4
zAP)Api<L<ms_iWH5ok8UHukk%lFbnKtt{*FJ*9Tz=uk<{f;^v$qJjp9>va3G^oaar
z?b}N2Uz=ivvoDq$7#-7Ccqg0byg=|%kbrDTPy(kVpda}PHK%vC5tA!vyjqgu`o|BA
z1ttRZi(MpFcLKu0xB3;#BpuS^t#{LjTYZb;e&?Y4H#4?xm_U(x)RJLTpTB-&H{6$_
zoEOhDa&2oS?^$yWtZU2z3?l&$U7f2Z^!BM(rcX+HMO4ON2^pCUC4lMU1R%I=fhz|7
z091J+^Muesx42}_m3)VIUJcLT=hj4Qk7+Ha<bjf$Q1is3_Zsevl9G{*&SB4%C^Ewl
zq8qR9Hm*rPA`IEAbbS!k3$jv(OA=WMuPY{%G$0}cWC;WNLB$}wLID9$cN+!wQYHoA
zD~ewaurwJWR|b-ZkI=vA`?#XG^2YANJ%{+sY_IjX?EvRGr&c*?aJH6sd|E*`%&}Ns
z1-}ko;A`tbRC=z|unaiX!(0u^;5C|bIg5H!V|nuUi{9B3@J)gA)zFRyp-DxyxwCn!
zY~TVer6nIv@_m-+Wj+l}Nx1=~@DrztB`@;03(>T-uy6S+V&|@VLWE?NzL-+Q1Q3{w
zZd^@;HYLptwSjEW-miU9Kb7G@S>Z*K58m=k92?jUl6?m72;RI<4r!V!*$2z&;Rsk!
zjZtBe(i4UWZ<mp82qFs&BqxupZ>iI0xGR@!Wh2jmPtZw9paptM4=F!z+c?3u)!wEk
zu2xq0QgoD!-&7gf4e-$Y8t#OF{YTpa&9I@~fTg68?hE)vjgZ4W8vg`eaV0H_SlN=7
zT&epxOXrqNKBHDdWQ8Sah?|z2sj!?z^2-dDI{VtLK}ZR~Cc(GretXJnULkbHxB`5y
zW~Aw@w18NTNWCeg0I$DE^{t>asurFtP`2<*iyvgA-2WjSC=(dkUG2$VPwx0dxPQ%W
z%QEb(y=_c)%G{V+tBzyp?M<VWebgKuLFWc^k0ezrlUjuwJ`-QU8~gI-n38c7565CG
zR7t{Xo4v!hz!$A4`z=qF_>^4MFDA}@D5;1RFdAhHR0~+SeA0XJLHmp_d@jV4QH`uS
z>t}U4A3yjeim@S|Y;A%z&(}`8@cDrMYRYQn_ZQNDrEoii+6~Mkf5tX6z$#3l?X78_
z%0_hg&q<M3Ki9~ADph>`As%?W7Gh-stUeZN5_YTiWO(QOnqn48e#XF1gD0;oD;cbm
zt|VyMU@1(<wwCM<<r>CYW;KRJ*0BgH*&h8Z7qE=-uvpNdkQVrg8AG(+uLE|IV54u#
zg~D23W|gqpH2&2sLA}CsKM*|zl3vBM=t*`l`BVG8WtS9AU77m~@bH;z!v=TSqX@G4
z-bZkMm>bRhQ?Is6D9?duc~GbP;HuDmf%a0TjP$;lh?O&xqmO%|E@aH}t-0yGq+A?6
zQU(D#qpi~kKXI`ab7#l?SAuk1*8ISx7V2&>aTibQPVvh%W|0Hy-UeGd#PH7g<~56r
zk2m}pJLLH$kd;+9XUH=#YwUzTWe<H5&07vUJc*jhV-;NfBo5BelwKbQYk~<F$qWR%
z2p2%82JRfs&MVxPh|P#GV)UT1aex~p8tJ_$v1L>kNg9qPB9e09MABZg(}cchycyV3
zTN;~_H($>5)4)iB^E_3MwMiE#X0pcN=UuEMSy;e3-*SDA%DU&jrRbj#Ol^L~Rd~Zz
z9&|{J?bT5?j(5oR+yd>Nunl8Z=qprAWvVsOs-xDho5=BiujqzF`5;k3&x;yrR3KhO
z?!}>6lrW+ukDndVz3{~Z5nz(A6vB8X4lX-JQj=TcckY8E{kqHZHk~<5%hH<+i>cg-
zu^tD@nx=!!hCvIhqW67n^{IJ<jO|jWRP~NSjzAu(TP3Z#XDfKyt_WLPt_>6U>G#AU
z?4Ha6mtKul)nhu8WLc@9fQJI<ncom^(M68$6_MKg(XZq<g1AChc3y*NksT~+_|(q#
z7%@3d9B+b2dl5r3nsX=DNI=al@GYq<=XtV+q5xv%u?8JsC$BWd8nu@TG`Z$RgF^Af
zc$L1EESG7_)|+dl)I#MbVgNhbFuw`Nricoe+~$OdC5-A5qHY-7dD!)EfzLMdFafA)
zdz#d7Q)#X%7T%eh*%Uv_cd#d{bfL?(opFbakzuh|K#IzN2+Vx`%Lg^Q`7TD`2<HW{
z7UN&(IA{gD)BM9lJ#+?o?kih>o)pm8sAC@>0k71hIz4w@EH^M`m<YjoWF6WF-pi#f
zmPgoD22ii|kDNple`X71`4AgL-%Ol4gU&7@#6VaKC4>0`B(3w-@|Jv?43*q}C*29d
zrSH-_ncR31Zdl+`?>78s;Wk)AjPBG*liq@gmTX4RQk}l`c&vbdl3z#Q!a_>Q()08*
zWcN9fE&X-}nk)d{gN$$M$8>|@jet}|$JYG9*2*Mpeo`hvW_d^$7VdhNeP-wV`-7ak
z8MJQP_RlCc+6xD_S($AHS7ETpA<4Hfq;x9DM3bR=DO-d()S3InwufJhVdo9QK0uCX
zvjGZ%+8~UTM@b-M;)#6lU^O_|Iwi%v?-R-Gpgs+r|2C{-GQqtPAxypNWQEX5EL{(t
zluwlIkRpw-mHDQR)rOGY-EkP4bh21N`F)|xp${Cj6%WN^gcMm`ynxZJETktdPd{J*
zAIk3a_DVsd%rg<)pE!f=j>}umOV1AeNQR{w$mVL0?v#_}>LTXb2cT-ctyY6X6K)Mm
zsrCGte7g}F`gt&626<U}$FE{!Of-uLILmYTbK&GRn}N358|kPlMQLMh)wO_<f*$$+
z#Y-OgOO8q4K>oEMKU{Cxr_p5m6&U=jh~jjY4oT5OW@i?NutRy}E7Cn$bXuA37zn>p
zG@HBx7Au100>^TJO+|bypzSl+dNJQ6j9QkyA^dys9Q9E^EpP$0EmhWR&?sOdk8ji0
zrwKQSYom=I1&N7f^jw;hfMpPk;<Z^PpPPUfL1``&+voEY#82@^+{|QCibpqCslP4v
zrLG`B#%%JM$M@of3aY=7;B8Bl6V}QtBhY8{$JV??6uFKidH^Yiwu3I?jB`!UT-uC~
zR^xN(6f9a-@wQdk@@bWV1n}W+dPqf=n0rNV>tI}N_E||u@gj%0#DRsVF^9v?o+Hxk
z{hx@Wm|niXW9lx1iP}2L^<b&-EK^PmlwEA0dowgGs=QHpymYXooKGgPf6rwcu*h(u
zDqhnl?bc!5rMLQPs>9>thxH?7O6K4Kkbu#(O7kR-t3^^VCm`|7Gx&`5>p%696;oH{
zn>YJ>DXT+mWSd~UBDI18O~9CUx9?WmKh6&-EMTr72rSM2MqXZ8knB%FUcDIOAXp`O
z1E#Qn0vaJr%|AqHd(==om*L;JVK<PWxuJ03)ljs7cP%HUQ1FZ5Tw1PyANB<a-FjOS
zTO&f**E_bH#JZlwWp2*3gXX&QCOcLb4@-aU%9u@Di!m#vXPkJ}FF|KhVy?Kxy^%Ll
z2eZLeXux;ganMFMhKeN$Ox#tk`L#*0OvG&1&Y2jgTJTNWGosf`l(X(M_Q&M5eBs#8
z{qE<c;EPV1QAsdc)c6sR3B^os-7A_;^nKUob!WoMV2fk9JrT$8d@}qz+fsWd^x<dM
zm3*y2O5h8QFZ#9~#m!YfFAY_^3!=c`Dq!rC!djb$_R1g^Dm?4Duk}n-T8q;}T_CoQ
z%UkBA^tX^eKkDq*s~Dt3$}+=zB%Fh8p)cr>CdlO5$z7NTy8Wx~@Rd%X3}5yfT38OR
z%1%~1x#F$Tql=k}d-rU<!E=Nbx6?^7#k4Pcqx10;U(E#t@O|^+!IIcgpF?Td&}qLl
z?KiZ8+k4zl=lLPpjGdMXa^-Q+<Vqu<V-~c7y@vg*lC*0zM$d1oRvrd_f=YM3Zdv^j
zh-H<z0{~KyCCUQO`%XJgUbp!P^GgFIHW$O}@wy*l+`aK1$8OMQS`=MyMO{L`N1pHo
z9s3gNE$7~-)^E(SFw=?l$&l)CjUKp;o3_uiT;t==(qVlm7ck-EhYxKv6|r%Ha)i7y
zY1}?h^3h4!QkF<dp}g!W?Z2z>D8H4VmbuCa*JQa)gaim$M&mrId0Nr64Q6<|n#|za
zX3w060*95Xb>nt(weFdZbPJ^O!Lt&5A6!_!F~589Qg|881NIiqD9Jd3J&OiU-{Mmc
zD2>WD)|4KSv@Mq3$*UC+{2;oR5DQ+&11H_U$|I6EIj@KocILBrNLzWUm$#gn#yV};
zND3t(AFWF#bUBF!#-+?>7vg{MiPxP;f2={%f7bwa&xD>16z@VQ#F-X{Wo0P~!hLaf
zu?LqEC3`k^Yoo~tkv;Lll-+|k4~tL@!!o_%CFZ7H(9a?ngdC;$>Psiu=Nb(LhM8st
zxTU_2LZ0gjpjX!~!th3Gg~nalMC^jLM?HSM*~{;lVyCCI%}y|)P&U`XW~1pt*G10c
zrREI&LB?k9-T+(4Ql|01#iS@B4%>mJQ65$gKEt0+j<qL|1MW-^O-He7*oMuHXXmlL
zfop6QF)z6hF|iwSU-5htMAedL)0K=9MjZld0GhlfY+LIg=mgo)wUG`Tf|TdkJ&;Ef
zXri4c5%cGAr|{1Y<p}iDev!4%`@8AApoUre`#-FxRTpT|)WEz_;b3JKw$>7dSS2ei
zi(1=^(N-guKfj#K+tDT|^pW$)F?<VgnbezsHj3OpaCrH<?}g+{NzH(ez6z~&eX75s
z)}8`yft-z#g}T(trqA^rUbJ7T`a+IuH{T&qKrdZ<33huAr9BjMb<Ty*rOUv+c)Vyf
zuVA7$=$XKTr1j=@2tW~g$#_)?e7|0F)FbM2Hu6#W3UFKG+GU?id!)O_KWa5@=ue;O
ztZ{cY5moHDBLAyMIAmk+BV?}D!*x(Z2K}{c<y+-_gvU*dm5ilnA*`A*3a;5Hjm6{{
zhov{ozwLyrO9~cdJP)42d>$%ujqsyeb(Se^HX8CKb86L%=Sc0hZ=gpm(XMBdJdzFj
z;matGCF<3c`P!$3cwG~gn5gZkMnBkEmV6Sp??@QSb3Xho;aNa<xEWF$m-`|n<3jpU
zX!xS0!Ju+f;p`{fkhEG&)Eo~5kqR7?B(Rtl6*=pm*7Z<Yo;7p5CTTdt(8%Id^VxFP
z0c0784#vDYiJknY>z6CrDTh@oa1mR>8gK+*TyYDMinzJ2$*HR(cy0FZGo8fByMPkK
zZ_YW9_jTal35nY>MY;ATn;KF{p`0?ps+?z*ViZz46V|WBd(?M+XeyJ?5x~trQFc1I
zA`OQ<#{Qw4;?|2!W3)q#RPW^56oS!a$dT};`Q9%*|BzXu8L&S<0H<yuIL}7`rEX6i
zqvqPStl*?QnHVJKU@w(#q9J?pVL-QURh{WCs$TqkVN5QH5a;a$4o?R7Lp(-+Q^MoZ
zSZR8ul;t>hy_98Mp5=o(CS6`!OFB$R4Hfc@U|OujEM(nmfkF%g-2=$9u$XJuGm9P7
zJd**jve}bY<HwZE3QP08u;@ph+TqG~q*OLLo1)E8GTChHqr3`jh(a+y4_9JbLqUZQ
zuYvi{T(V#P>Epv@=8<2#2W$=V>6i_N^dmd#?xrpU8|8bq^;Vl#9|X};%L9cIbU?#j
z3m5(%&agFpx<zn$SSJ3gyQYG0wiIf>oHeg&Fd>$34xo&TJUX?n*)K-V=62h)D<}zw
zc04PSUzmUz=uY_?Rx))e4?fh_K<{Y|HX{-Hz`Pogn3Faei%!68B;nf{otKI-)ND1`
z;?1c+HAd^K;0#d{#!vx1#~Z(scFv@bRc>+}71z8EQ0Ryr4ww8}a$#iJQB^^mCjZ4h
z{{1i6h3{<u3Sto3x4-=3pWI9}U0_fg?iSM-;32<fe(Kx@+2j?7bUTO|zGph(%KSHD
z&Mp^dN>F9s?qPZbNd4w03lMr6>kFo>h|^%*hQH!5MxueqPNV6~PXbc>PNQW~>MRsx
z&wMq}+=1_}DVxd%0E>9GCkg>vE-Z&nzu;YBx#{2!*I!H#SM~UFlO+>IyL5qe5nmWn
z(019>dsE3LtUqx=F%<$>M<(YCHrc9|zO0m)TX6Kx%oCRRYEj84o43lYq)7OosFF_W
z%g3Akv(#Mb{t?x9O5G_DC^9@n_xydHaiX9pN}XQF<m=)6Yt5zVc7><be=9XKU`&w;
zEl?nlDKr+P2Kd-IQg}$JSP!y=`k9xyY1!$e=91M}RH=@*kv_?>p9&KB^mEva;j#SY
z_=}>VCKOQn!cawk!qN)Wyhb^<tS$lct$&xWA&^AU4Eu89pF$7YKX?9cKA2%$r|0n9
zO5g<mgBO11+cBz8I$?@A$L+fLqfq(iN(~k|G5<jhJry>MJ15O{@t;?}VS54}SOzzn
z<ai9-->LIk>iwoG3sw>`DNdkPJ&RKye!)qBS9?s$z|3;fpFC=@M9YXK7GVoFYQ~yp
zE;Pjs1NQ)z)w;pFQ}vqnW1_E0c2~diRLDFR%<ih4EL_EBbJZFDZm$D8ROC28ngl>(
zaNW0kTS~~2Z=h<x$-MXtF<N)T;$z7SZHnIW$_d?U<1aC6$f2izt7}{b$72+p>Xn!k
zCXu9T`)zi1u5FG=19i=GxP~q%|MBeLH-4yt?)I|bvk{MgH%K*uL4FUlHa)Y@ZEGjm
zv==69jr!5uOcrUR;zKXb1#VzIOYLGWWdwj$d^)FwK0+q$=!yVrwGqhSliHd;*gd7*
z`H^oc6Gg1YTCU0raWu|&H?B-2ul@}6uN8*5gOd*yAeM`mVl{+%ji7%kkJIbeleAC|
z01W8VN)~XZUF{nr0@Ndk)MkmFtsiwQoaPcmsIs9+3Y+`K;9`E^l3@Me?(LlkfO})_
z?H*y)`~wR;Y#pl}AMal5o1hnZ<7GkosfVrwn#zxLr{i#U*AY~^(aJgEZj>kPHv**k
zG<@J}lBIivdCEc+QUfRCNq?52)lRfD@5yEO=snjtCJL|<87K!Elu~r5d3<>Gc_7>S
zDEGVg#QNLh(__1u*e|{c7x3*cDG$4-<l7ZO9zoxUxKP@jLvA_3c5ZVM#v6llkl*W<
z%a&12G{Y%qEuA-9iv>!jHzRGZGS0RGkY{s&e3sYn^GLL~#A*P!Wt{lQr&hJypGc(5
z98GK3Y9(o`@SE|_A3huT&8{gIS{EbpyyuS9N)B}$D~hh_&(|J3Xc1jSw_o6jwIo2h
z0m_DWt1lTz@FR^xCzI$h<1rReo*(>iJYqkOs%QUHN@o)I0dtX1gz4z~=XVGiN2*La
zN6<XxS?d8WT19@PXO#FYOYh6q%=4VgFPV=>dg+jT6(Ycn+y#;H?Z@Lestr(UFh&1A
zGSp`>;}7N5KQ;rsl!aG+okW>u8pWQ;&4dKLNA#osoX9R+1)_5Ba-xcqS0@ZpyL9@n
zX|IHWFwl4I9uMS-&DTx}6oyw6+-NN`BN5qt=C4t+Z6mxoUB?0XBPvR-3QAItl&As7
z3lFq>=6_Vpar}Dw;iW8aj6jVDu7=*h*xa+3>?X7j`a%FiEEr=QLNdNo0Knhg49MKX
z9V?Y6+Kiyq7@(_>^dkF-TMT5U{O6<VO~kZk+_ut06G;AwsEopG)vnP3OwyEI>!8)h
zzw<VZ`kJ<I7)b~MXA5iwA0eauedg_>!JLI2C-kr_8|!==51c(o69dDt!5`QA7V!N)
zFFH36-VTQ-1f0W_ffKceU!zX8-lNG@+?{n@SqZfDJLr%i7HSgvoVZ)-oos_ePjPx|
zY;sJi<R39?C=3=UjQha{?v49tj5?I>m+{g}pNtIc7G5Ycj-5Pg9;qdM!ckO*ZzE55
z9uaSAc5cMaoBjOde^~k{ds;%=@!(qLJ~Vl!@(PA6A|&@PNz~ROKxy-X->)@468*xP
zEbR9_CG}h^Yu*?qHjqcma)&ql75J%1ss7~Y#>^HyZ=5Gd#J+qK+EaIY(#i_p$bDQ1
zh3-!+2oTqc=g%n}2I-`j;<k#ng2zac5r*3eh8J~Ja&gEtM&eYD{0qdv>!(TM$oDTR
zh0IEIT$0LvbgX=H`lsFn)F!{oQRPf`?NiX77BH;(L~&@p3*2-Fr6yit&<rk07oTqQ
zvL}Z&`knpEGPtULF~1=85aSxckGRr)R%4ZI-hlq%L<$MlWpA~wM5EdH+}2{QSxRHi
zd+tk-sKRevU*cr8JQ@O@;GPt&-G)3-RD>3gqL+uysiZF3Y^ennU5WbuZs%7vC^V(V
z<#`BW#R{lW;zp*~-`)U5#+2Vy@veIrY|wp}y><tto#;-muB)?!P!!%#x|4b8fI2~Y
zlM>@v#?a6fihanLm(DMFqn9lK67Xx7=Gz~p%?1Z#iq{uo`0||LN42FbfaCm;8bI$b
zS*_Ciu_<o7^cJC&VPuds2y<;v))15a9F%yculO*CBtK3Z%a1oHe#GUL{MHCU|71Ya
zu#i}G|Bj|(adtlJu2!o;eXh5}riEs4I(FFgQH_lWoA%tY*H=Z;30F_Q5mdh97EDq}
z55@|X5%`|-^W{snW`!3O)Y>vt2;C&+0C&=hBY$b#L1DeOx%JmB6i}Pu&)MsTW4L~+
zw;aA;+U`oy(b?`X7ChBsJi|v<tG0D0I}>~H$Gz{ap)QBUck)%5W$goDyy+^%)VmYa
zeU&-Gz86@LH|AcD!rv&v!0**+vL)7!A-$?xT7$ApN8@Pyw%k*<sQsj$fB?=(el`|b
zEqX<|LvQo}e;KI;G`)QJkrV%H>6$5y)YfF=QKjS1Ehk#=@1{F!njdIf)#g=V;P~er
z0#Zsdy!(%fneRL{*1c$-Jq+v3>_>__zHvkr1d7`N)Z(+!8)iY6<AY=R?#a6tN19W-
zdYDFAc1)x5#^aJXOof`}=g6XO8WOkR!>ofPw|I^0w4}c#8bbyj?oBOp)P8w&4vNWe
z1(``|C#7(8Nq0(XffYfRS^?_(=Qm`IdyyYro*pbQsY$ij($uVZEXFf<)iC~X^3KvF
zFuTi`sQNp4XpL(No1+Om{UE;~Y)bM?PQmQ9`Q*|E@UiBlnt<xbt|a8gxr4$yJFQnB
zZ&)tYi3Z1X#z>2!aDH>U?q}v3u20X}q8Z*SZD#^uSYwinYe9bcGN?~sdmGMmv7(B0
zH)gp-!#SyJ_-({%3tePTygS_)M8jR0JJW!ZL*6lE16xs1HLuEGWUOLgmO*hI%&24Q
z8>s(UUZ)V;MO=oz2UX)rt_9DibY{A>>&k#w)Vm^+OTq{%fcjuo=Ru-}tZ^!uDwSt#
zPOe45$$O+ym_RS9XO5^&!Zf<x+{QuouH36XU*98FDC^V_P3JgUoXI~|Z}alVI7QVU
zOO5*CR$)Zul4m+Kd?!Ct_l%_FKwX5n05Va(Pb*oF{iVFYMeYVf(QH$Wg#yg1=85l&
zO!34W99&DgWdpef6btv}^?->&@VxmS14^C3X6f$C&BRXb9{PvdUWT1;Ps{o{e9!Zn
zavbL?JERq(J1Ib=#pPGVQI0l64h9ntTfZ&EyJBr{2**VO(Dj{5O!;f_XDS!E)9>H8
z#d@WA2w^fY%alLLVW*imkT3zzeObXGM>#Ic#+W#ZRmqy8DbfQ3ml5LIWx|x~AoW|U
zejQ?8saQ&NUCW(E4}_$XFBTgk?mGwRCUt01nV0k=-*fmmjg}x&h2fI5Kwb@VK%8H+
zAu9R|JWYosL=~buuG;cN8@Xp1Q|^Z-HtP|4KYqUzA68%#No;p37~Bq&DS`^p_&-Hh
zIOE)#6CKY998C0*5vy7jJ-cLAs{zqC*fse{xP-BAR>h<h9ELS||1gwan0TXrD7}Nr
zb<Yb`FzGD$fta@k(6xVB`7=z=<1h!I1KfMbe=QM{bJgH{wr2U_>Fwd%Z=>SK`GM=^
zi_&q@8$Vykz6FSY9oY;_6IX^o4w5s(Boa>!{0B;)>>#k8M{*$_CZYv13r#3GTXON@
zhN9nqhNdNFQkrqs?1Cot{tIPnvCp1ce~y~=eIGA6^&&TX%%03`?JcQod5v96z?}4i
zYs>>sl1my)&`3#?&TTevtlI4gc(h1UEFUNy`2q{_aoFIU=%33z@D>d0eL$W5Y9vR1
zJNCYx%J$?)B-Dg)Mzr`#M3eLT#Eg9&hLX;2lMwxv2~pqQGOFYPMBRrHCI#{Xbur*(
z{$}cDr))fHvnL_+@cecU9g*Me*>J1qXd@>*15SIZSz&j}u3*f76r5!bQ~^o3lXV(<
zPHNJLNVrsMIv?n66(eeoayYj&Br}a$HCp41o_H3!O}>P#!tW}*F_;Op6tW#0>kx7u
zd&WqBx<DRJ-kmHo97wa|JvqmQ=iGux2}Tfcz87HXp}5s`(8-LxnV<UHLd9wYUa!Ut
z%Dq_^W60eCOToWlNGAF2g5vHBYbUjUngCfhC{3V5r~>j@9@Vg>-S|qGXG*v0go~|a
z;-;Waap2Yes9S5ZJxWwS*(y)}zUUbay*K{s1ps6&GENjX<Q`c515-6B05DbmZiGho
zUd%7WM;y<W{Yp^9J?Y;jV|5aA34IeD!9Qi#Hut2n&sL^42^0g}UL(~Pf=r<D#eu&{
zqzV3`GJN4|KLd!teL=Qf8fWBJSE%{bq!!l?M&hED5r7le<hs6j04X+KFrhZw(o5bC
z`~zYi8W>L^p9N3kxIF%#+N=lv10{BeW`6&RmDgYl<+r83bySKpMwQ-)K3y1MGWt&p
ze@R+0-S2a1dtRDU;7=i&cs1#@p62E5J6fT{@#lfa-t8ptr!=3r^r_P=un&M2lM6JY
z2}TPuHWAW*x~Pfj=m8xwro6Wc$d)kTXj#<G&X{bmNj?OcllL<o{Br!+0wdQ*j`HU{
zr|azMB}!bvlzrFr3t{1=llYkHiQV#3b__#J&U8$|Tc19VZvgH4#RI^nOM4OnUVnNd
zX&dXKD<?Maqo3F`KcsQL?4tumy}r16hbCyWV>OHqf2O8nd(W1S^9oryl2+rx0@i8p
zy@9O^waI^UllkQRK&A(VPle*c=0THyQ|2=ETx;Qu$37DlFVKGdD(r*n%IB-@Pj)o(
ztKESznm#{L_%Xe6ghNfLpa5_Rn9rH_=|D}vR231+-8>X;$i|S-LfSBU`!nOEVwpl#
z(F@Go7J6oRY>@xjfQZB^7DufOTa;K~N`lJ2X@?v7_fKi<G1?(Gj|*`LeFp<OX6o#D
zivLSLw<@x_#gwoBRA%L4L7|P`6Y!6(*MfG({m1+<@V9$iiT?l-K5%Ch<PRhm$uHF-
zENBxAB|7q#2HY%AUK=6XHZ{`5=lHcc>p~hTr^5XtZV#5gx&@6;I`v)|;1HDkMgjgq
zp=M2apG3#pyYRwblf6nrMZCws>{M}E_KSzb@(u+rw8rlSLPAY5ALj4d%8)>bSN8n1
z2Y<kl%6814@*SEh=0M4bQB}}J9;-l?S*f`Vbsc>8aI$cEOP#>{Lvt9dD*-|c`%>&|
zPH(KG4OeeC6#D$8$JmVCoQL>#R?t4$!mz$!HAB=QI<pC>FD*MXMdqrT<A2noC!vCC
z9rpx$yssU#(fOCeXoT*#4ZMB^boRJHzfUfAd%mm3;LU7ovDKNA<;~0ar?+w}?54o`
zW!@%m%2T?@r>x0MA3Bbo9c=l|n~&nkz=RlNDk2I%z@z*A{^-`Y&HOGs>CJf0c@3<i
zYm(qS#<}ca<1lvmo~G4J*wg4dJ0tTh_FsJuQ1?1!ulMldZm5N1EQX>&?})zI_3w5a
zb2bmMhOd<o3{ZQ<G0)AXyR;TQxX86F#7-7k`b%V({c~b}>53oOa=Vjfti~EOhK`rh
z>&stx`|l6UqYq$OXUB_5|Dy?PsZ!YTB=Qnau<&m#!K2I*C2Xp;nc5EK{}S3?eR2ir
z$DGPWQvUPb|7oLszvRdrAZU<!C#U_t%Bue{Y)A{J+_$K>%lL2W^ncv)qy14O{ndb^
zqi%WsGLQfDsWcJ5)@mL<;r;h#`maeT+qD8-&*+`?+kfANQ3wFRT-(0s{O`Nnc=0Lx
zs8xXdxVhlpOzOr*Q$P$uk<qFDCg}g3)UhynZa|`~^;O1yJNGg`45iF$;(v`4{vjJS
zbwHxwUQUR=ox26l#mHPp%JDBca{p_hQttqX($91o{uPw@=diGv%lwqX)pXi4CN*L^
z{>umPhZmVNZ)&!s`CM?ixAVgZ_}RQAFS>+SuqFJkxwDYQ?Re>d!TE>!7f)VOQTDdE
zvWvDAZkA}(A^fQ9Dj>`N2hIeTEqa=mnGKeZijA|+oH~9+IV<wgRrwG%=B~S=Z;qY1
zaSZtC*oliT{^Miu?Xadzj7(?x=A8EG#TUvvTpum*<%zfWo}T>gp?_YWX#LdbSblul
ze7!@-y5w(^SO0OrKS%v}n=Fe<$_++kk@4`bzaNKU1jbEhr~JR`{l_x>Um(BlNYj8;
z%+cN|iaBK}ENxlw-OWVBuc`3|DZy;G)StVmNj4QZb^d>BLGX>^w*$a-**;ys{$sv*
zqfK{e6;?Q6a7i<jd41yAjsM!Q|J-28caJB?wejzsINIu$FTZb#nKSwF&b{dNUNh}!
zHbI5{|FPke=lEWD7j7nBl6igX6j&?_HXkW$ZQgo=ojFG3|9C%+?lxd|f<FNKY|3Zl
z_o;+goxLr3yE+d4uEvWI`a{yW!AdD``8>sI?1xxX@cyieRPg$~Sd?g_^N1OKwAiF1
zCo{z3*oiF`k;*=Nv}j$z6%mWa_?UEKj}4*e%5wZ1Y*Z{V<nxy{Dc{*T;?`<It@oT3
z<?+`Px={blT#jh6f0M9Pb^W{F5<Mlbjz209Sf~j8f%m)Srm>~#RR-(H$r=+vB%OHR
z{nF1pyEviX)u|Vz;;`77Fc7;7*?($e3D+HxKJ-}-{^&rHIuTWZt_lgXN9Bog7#%Lg
zXWKf-_nZYp=y>@%GPMq4t@^tVz`S8{>(HU_P-^<zaChDQ{@9RT70?%7B-Fj#J;;G(
zHjIxl+C+11tv58FW0}0!vRGxG+ZyUSQty{~YmhMUxfYbUUQ3CwOq5jwja^_B`*LBz
zlRg(tfOK*+%y@Dk^J7w8ygg;upqC<nnPlH?*jb*GxohR3r<*F(nh~_8&^XWFlqeN>
zxi!&`DsuNTU5heZFPgeygLCX!A1e3L#(r%-hh(Vcn2@!YQKy%Fxc*HKwj7xsSgVT9
z;A-A1(m;|9?^QE|)-G16tP3PRP~<#_b|0ur^;;iNJjFI0|B!~}jsJceW$toxzV{D-
zXJ=WG)#R-2UrwC%1y2O$9`e;LbX$6UbjmhVzQG7=&6{BXin~8Jpi}N8w#ahP-yS(&
zU{bZOh?9L6#$DULKAZFN{<_HNHvSsn-z}i=s5UfZGsHHJ$Zd%C>S-ajP^UjlxR+#D
z5377|KQKB8PV*z>ibg2vWCUL&tP#jjJ@P{^36bUYqF66nbI-`@4x=*N^bj0mCBuJe
z30*C3ZS}H9Pa@#pKF*<0k;kgT1z0lPBi$OW1rPp1zuyZJk5T%;EQ@<R`1DCjrd`0^
zvAkzM62y-ptUb%E{ids1>9f>mJ?QPQ$8YCiWZVe!aXPv#x1UADKnTpB$$6&tQNvNn
zf~2w_KXIyw1LECIqkLfZhDo`0GV{n1TDJOLD%*iKWP?P%;m{;RqY>PARUqL1WA8n~
znp(Ft&}BzdP^yX)m0oRtNQodQp-QhI7K(J~H9<r`KtO7w_fA6ZO^{whYJdQtg&ra`
zkU+STb@o1I?X~xL&d+;)++Xq}bH;DZZ<KG0@xEgKB6_s>F-p7@8O<N64tYIoy{*>P
zousKS=c_3ZE0!F8OSocVrQuH7Qh=uOsOjFM<k@_>Q>r`1i{%;5Vmnk5t<Y1HV%tiv
zBqrUugSsKqhI|iq(D=1fU^=`L$BM9}%zs4)L(Hq{=CWaRqpm1{>UK|$`ol#IuPF?H
zK5PP{e+PTCtZWx2Jq2Xozy6kZ^&3%X5LhYO#Sk7sIMLZsu9svhgpJ7JlM~zOa5~B-
z{w>}}Je)oM5w?P)XFm3DQSh?I>KMu_tIJ63hC$r4id4?y{2y%<EINU8xeUbLD~OCj
z2#~t9915NC%yHds1e3*@PtT?{xKVrDS}E9|5Pyg488@AJeU3aTBa0d_^=YKoC5X*i
zkSC`&g$zms_2o@#_txw?{27VZea@An@cM;<p=<+07>f}w|FGrzVw@f+P{-E(%Jn(R
z#qq@?@r#!IiJ~1F-uql$3*+MWI)|vjDkI1{(Kp;4eL}X6c-I$ap>XT3fpIn>jhnvG
zyMuMvL37Ddk_LFgxQ1V9B!}7~vhNbUWC=^XF&4|nFxGA>UK%FT8Tl@22a<g320E1b
z9jsf1^+rck4q|R3T`E|XLJGk~QYJNwy)e(ju*ih-@CQ<tQASl(Y+J*P5P_(3{g^YL
z3Z}k<+K++_6$3+dR~!+vhv#Y7m~;<-tlgUIjT~21%b;*wRKHPiCuwJyuA5s6u5Cw+
z2y){_#f335p^7gguUZhLH}he$sM}(882-X7^ltYv-#Wxq`WS25A}B;m!0<@K4NmJ>
zO-}Ldli7FwrmiMdtcs~}Irr8V;xLt@+tafQP`qbdG8?8G`-dv0bdB`=NV{@k$uK-D
zVbLzlG%3s4=n>HP_i*X{+VKE$nq97N!E~l$il{}hG=5jGREg#OD*0=bg$dr?ajiV7
zY$&)Zvo=1+FU%T;L%(ewm#MR35$<7VQlp^&9ajm@L_Td<Ph@J$R3X&|M~Pm>^`?2C
zyCM^3em>t6GOQm?DY2LGfe0Z;NqN(sdbth}eAsIUk*TcI2|s|m3QN+-@}%r~uXzle
zZI6|%)1P|cB4-ufS-n((`0<bv!4naql)dEK-aGD!N75cBp%rGwE!kIfoybQc$0dHm
zaf#NrRt+3B17n_MxAJD>*+`lgO9hpS)9f7A9!TU2kQVSREANjqPI`B4hrx}w->6=>
z-n6v0*HFc01_>{JQ>9wKG&+bmRUvD|tPO{H91xw`lzyDweaMD(F|1&z&>+C}{VlV~
zH^7m3eTEDh#|mEiapLPg)L-Zay0REp_dhdcgKemi$JX*E@PrQa5=bTC?OXV_Wfy0I
zcV|YJj%GTlc9*mWv?EhqY(8AWOTM!;cGtIdH<_WxANQweate$DbPIdODmg2L#(!61
z)@H2<m-k#fB8pNsZml|K8ZlW!wh9fA)n|2RRtEdBl1KAn^o)t9`c0Vx87E!+iz2#L
zScc0m1h3J(J^z~##>a#gXO0(T;(`EO7WMnC?-nIxvGH;4+(n^y@e&6+-+Y;Gq|rFi
zh{mxpVV#BG-C~-RC$kL$Ql2C$!`_N1UFl$<pAQ?1GJ9Wwo*qfo+_D`6dbf$^vNIEY
zERY&IqfP3ych&T~(A`K?oE(0_h`s!XI3}~hhjr?)#l2voPKV3ax+P8rs!l%8hhdgr
zlVzP)YYiW+<l{^kJ1O;t4feT>#DT!|8|`3E@usc4z|nexw-`&zG*e+C)U$tY!Xx3;
zHB43i;%ri(oAu-zC|HZ|cGn`=%k~3SFS)KhfsLv8R^>4&%|}FS)jF?8>di3iYpLPk
zo*68y)KbU!F*ZqCMpCUOG%s;&1j#Z@e{+6njX*$5A9B<aV$^rR*8tz(O{J17!y`YL
zZ8rbwd0x^lr~!C!Jgij7*Zt2ERO;kK2DQU6rpbx|MsN7Bp(Qd=lJ6Fjw1NGxX_j&*
zemGh&0BuHu7dqL^!pIYmdOp_v^B~?Z_1DbO4#xWpRtIxe;Ri$lLkhIQ2L4$0vFp>v
zmHXq+Kx{#*2w&rKXf$(HgX8o<Mc8)69M#TNbK-fQo2h+?qT(u}Ny`O2cKh2Nv->^v
zu<H-pcG-XK1np+Kw)q3cz6*pncf6z9{Ps$*#_N$8RXvmIPwo?FNOxK@P6coi?P^GO
z$Ye8%fG&Bw(_Q~{BvER9lnH{bv=*kJ=2hkA>3Wkw1ub>9td@_Oi(i&HKwOxJX#(9<
ziMD=)0P9v)L{1Ld&Yvleq&R?II>Qb|s@f1eE<aLl|G=v=r&u*f65YLalfql%bA-P=
zw10iQ+{C&4zAGMQabUVE@8vaPfm(iNhd5r$yjR_@(tYWpWFBuz$wu}Z36!)Hwcs@-
zZ6}mPR%PT945*`<%f}|Y_Sx?XYDRvG)}}+Y-`f7cS=T;9FOE}>YK~Mn7^qRHcM;a}
zm}_%WiAonIHL$MO2~xIawj13P2OgrNa(j;tF;L7n&rwVAj<x7Fgw)<4M%FTIB+4S?
z@X`=x34<8Qtu)13J$yx`<k;tDwij9z8C4_}BX>KpIVH4w8ud8{HIm=6MsY?JeU=)G
zX6LgSbU>tACaZr`W@r)|4wLp~uRF-U<QJ(S{E!puB5M4#%?G?`?Xq~czwuh3Myu)>
zcU4_w3EqKEAG!5_cmIZrOY`z*Aaybc3%-fBJyOdT2al_FyCwG6CRYug`rNX5pq*^r
zxSF1-9WnQGtBV<m`2e&Q0VVpR0}UsKY|BA`3c<#gb~&b;__MZCgk`v@qX)|Fn&rvc
zMrLw`Il&yQ71rY-<?>zu_Q7jJRayjb@G$FQgi3!Tw+Y;1c{;m`374h@hriU1b&-yA
zd`_(%#E=#Lt7Z*~xZpou=O?2q)%bl%rn{Cel8f>MeCjsXs%#i;>9}I2zJ%^zTc=)<
z)nI5#;bDV4t#-R#z1;gYINW-W@Xmg_i0JlFzw^ph`KULV@>6g;7p0e-jr&`9)6*wm
zZ4n0uXBPo2jHae!QtR8#BIYk4b%Mh`hHRn<%~_s&UC}0wZ;(akt1{ipG;3>yhum4R
zmlUJ2J)1g(@(V324mjVGvqv&9Eqi6|giM`=-u}b)ru<Xe#j%T^+Fe|G(9vqHdX^gw
zNeM$_^<(X8vCN|DuZ|lx27ja24i7q?3a?CUeHNkqn#-Q5z%fu~(lH17W<1RdUg4Wo
z9JYUXZ1kYJgVD2!GD8&BICdWzxl{qzsBE{y$s!268JyOCC+q7zc<w-bbv__O@3^XD
zX$9!<L>*GSkgR%iXE$YU3Rd^NEgZy%e~qqi3jA$!iTw%r4p*pO?EYgxVb3b8!?6>}
zJI+Sh_+aojBQ1?^3z9);m^QN_(qin<Gc-EE96{Y$N9&)%+nI)dSym^UP~gPmCmJCb
zt^U~Y_&Yy;2d^CfY4^=n_yeal!Y|@@35eP_BEFZ3uy1cG&<E7MKd4fmx1BB!q(PvI
zV?-bC2h24c3X=<+P}9Q9<M}OIsLwUsy1myS-ZD8N6<a@W{%^4&G?n?^dCKALRr}&l
z{tKs61+7OW`t4Rybq+E1Q+Es55CUgvIIll(RO!ss^}-$Gmw39YeTwl0qxqkbE0I4q
zQv@0JrfiMKs|h8y*;G}m29*kOjVj)mA6L&M7Jr1Wxb;XU3Vt@7%_tYWD3BH9ZNBEU
z!&C6Zxio`T`%&k>jFMk$L`KM9^cFvLfjS@Sqwj+=d%w@PURq(T?^kQ=e<9%WDLDBy
zat_@si996CY%tRNK1D#-A?do($Q!o`!R4f*u^%CiE&tH#7Yc33*^X3D;sp9HDS!I|
z>xH&$3GRMZd?N{+Bc>!h!PA2w!S9ly?kL8JN1~FR?8_fm`o?W>T5}m(myZ+%Jps;G
z48o-7mfJshmBgPEso$44_;yCM;53d+G5GqGCwIqv!dYARl?>QBtt@uj=v(*<z8sON
z{eDQ)T&!8#D*KW7UZc7`)p<aMJzfRtQ8(R|D4JH(^)@C)o>%R61E^e6YxCU*={>s?
zkAq%ygb7i*DC^!=<qWNG>CW(@s|-3%Qu0u%#$u5SO}d)hxU}fpIc~V2he#udWieP#
z_3Uz@p!(jJgSCBINVk+IUS(G@Z#uL6+Hq2}J%neCe+0c~CltdE^opL=+wCq@@2~C_
zFD*XkW#oIoUaD98F$y=~0JL>@!UV1*e@>2Den?s8HKyy}ozCq40m;i)(vSTRm&~PF
zI_zRCjC9xaLhy5K@~cV@Zr@<2Hep^M9=B%DP<5F<NsiCiCuE8#Z-P&uy6zer<_Uor
zrG0AM?td06b`Fh(yveS#vv50pIF6wXnpl0P{#dX)#glE<SgH9X-3xzJq*2^NY~+Mx
zTMT%3L-Am28hKyzqWic9kG{H3J7?UWa;N}c1Bg(~+PuviN*H=*U!uV+!&QxpTOt2M
zeHktj8CX(lbW0Aq3j~yXcQ`I78(dJn_I?&>cO^D4!EJmPiGN5e2%*CH6DtdiN8q{k
zc?}lB7YLZT1l5%LlE$$+b{d!rnJ?{^C+6Q*u~w>J0=saq2;jtGY8G^3S9Sy|)q+jS
zfCPzX_~^p&t4%#SEWg}QHry>3@zKFPOfp@a&#u!oa~w)i4>)(;@cRIAh<mm)MNdRu
zBSj=~-$ZKQK1@j?t0c0W&roI04O-1a3S7Nh_nCN9b=U>>8g+Ob@p;;*)*jIIJ6U=I
zOZ)fCBiuf|yPV~y2c=LFihfJ`gk3~$vICh2(Tfay^*Vj^QPzLvv-CqgsNX3vwiC#v
zDVxAgss753sq}6gvWBFwdmQWvHEo-$-BOoEVCP>N9UdC!-rKom{l2ql&?Kd=8J7Vq
zc_K}73Bg491xnyBF7v&pIFL5dugTr1^uo>~AdENu-k|)eRi#p1ueXzC&ju^{;!!uM
z-~Gw~KM0BzcAVWoux#u$Ye(Ia&1JOJf{bs?m&dtA(5l?km^R;ks;GO~QQ~Tsi6rrg
zU(&MM&Ui0R++B_MvZY>H5ZUMPa6o&Z<D=VrAyJh`w5xKauLkF{fG|gK#tf-&`@m<0
zIysCh5v@fdiv$po?d*#sEl`3epJPl$S5>y^O{SvBaA?k9<<=>4PNZSs0m|_g_0yVn
zUq=E_G2t7E4{$v61YYAEKD4vp?)5Ggy+jrUj{$om$1umX2pUVzN-c1OytiU<=!JYh
zB<sY5l*x#`50j5V(y^lD%_et~xtTV+<|<}N@jVgPbLf{E)j-eea{|CqV8n#*btTr(
z$^)Cj>LbWX8Ov)y=l4~meI6RG@E8bSOKNXIpo12ghxy_{Z*ja?zLSGs?Itr@x}(wi
zkb;=<6;7=a-@Y;z6vl-!Lbq-+`UlBWoGwq=4wvu#gYOT{_?d8!k*&DZ4c#x#(dM<`
z%igv9oM9^{b?MP}qE4(LD+WqeSdN5)^ek5gJaX7>2x3f@#qX(<-tuXMqvS2^;=*2d
zfQfO#=B)Fhk7;Y$61gc0+0T_|`EHd(<l+Y_YCAetmpf9-&ojqs)lZE&3F`S5ycyL3
zJ9Mn+YGUpvH@ibL6E}fjzM;cU__?wuk$~=<_+KJ4+gWQ~jVNiNK9m&B9+i&Qu&?r&
zrS~aymHH_}e{wQjy!N%ua5riAMU-fuU}lynT2er($uRg<1xE9hvX#d%e`BsJN<2iH
ziiy;+Li(|a?UEClZqgzP>h<PD_K@$aK$ybysH0w8#1oPXrg>sVss+2<hzbu@mGkWL
z+!Vos!(>>*yOLn0)U2qA>CFOi^$KdJgw<PiU`pJ?E~EX6TN`FOjh0j755r;Zf%FQ+
zJD2v|Q=m(a_98mXO5{VL$~)f-ScM#L^~9c2-tWw^ukJh^YPlWbSLn9T{FJH6(J1Gf
zb)>Z03JcR@=SUgFbk;f8OZu~5_78=_3#X{G`G9m~zP3Yz!HMF<U0krNz*kyKY~8m%
zi~AYO2h}%;a*f5>DVH%Spez|YM@rA>{%$+db`9qS8nY4=ivKDgvkd)6mpf!<ceJg0
z_+AaWX6IHb#D0*7OazS#y<-;)TE%<&3b8m^sBOM?IH22aA^sW&c2#xn5&dvJ$kA3e
za>3D7N*LJ*>Y6(4JpIg%rp9%ULq3*eVrcPr5~rKrdGm!*@L;gm{Sl~fJ91Bp4J6jV
zGk13&nHT7e2>bRvG^`CII({oicRGirJKd?q+X{N)Kpnj*8)WRRaEJJ`nQH<oOa(8&
zVWk?CB(>lVHr0~Gj@Gzx6u?<W(dSgpV3%a=`W!cVkYM8xp(~~tBSE#{DwlfABvKhO
zN^2t%>My}6-f)(>4=ngIxX~TNg$t;quW5or4TP%{BHqo^eV^BeQxMR~aLPJR35J^8
zH2BJAcV#p~wn4W;%n`NKEUbJ!sN0xcxJFU40UXT3hvjmxY|wB@xL>9y!IX6yVI0q^
zS<j!KxZ}NiV8RZb%XQzbhYXm!ir^KA%gnUk)2iN`jp0*MRfB8?mbEN|c+d1eW@4Ho
zr3<%I-HiL4jAz-J`T;LRuZu|D7SM|qt_qi7nQbJpS9#ghr@OxqNp4b!eY<JB1Mzye
zUTrH<H<zx}B0pz_KI{lzw3CP&u8ba5<Jo-aVcAk-#Dg0}H|?KIjm`tFFhXh;k5wik
zr+wlEbtJzjOGBbU#;QgHDqZA9BdlmgvODP>X`<RuivoZJKSTA-VKljM8Jr$OsXFg{
zQ?MzDG&1n9z~;B9XH~9<jzE#Fek(oS`aEpFeX^!r<Utm5xH@)3Z}83SnwDsmClzSG
z``FwrNLGo&OA2f4XU>;$Xkv9nDg4ZMNKV7~7hfncypRbp+>LH`m*^03y8)4TdB_Ba
zncKK->h<o|<Q8Q$mXUNzQ87}45IGr^MPZA6P;;%@%DZEiwphV0fW$=gAGAC+kOQYX
zL>C62TrPPEwQ3w|qdQ$Tlf;dg&f(~RqQslCqx;l(Z*K6^{h7Zn7WO?9qN!+cIHO9Q
z?Bp^^5(*YHAFXvXOA|1H^Ha)NM5A6?LzX~WTQHY{;NB&zBK0HW?*j<2q{SW!G%G7}
z+;gwG$!{nc?J3kGE_F(k+EP94MT(a|wYDaW=fNvQVYBq+I0n$fE2*RtMW`3Uz&Ar_
zKlVIm8<-&G4a_|EqUtp&E*^s=a2J;QT9zwGvAr<xCd{mKX)4H+aNWFWO+TTyP`ixu
zO$pc${h*WFCO~&3S@iSpD`l4WRTEBC<G7MvLTTw250^<cGPFSQxj0xYVPH+2QgPRy
zww!}kG*f@T^x$_<$ob%b1C@iWR!M3EK8FF^Fm<kV4PG>t7UU}lxi1cs3Amo8jeNK{
z$)BjpOQEd#@B|D6JKLHT=wui|ZX(`K&TAYU%|y+P0vX*|XF4~&(sDZO*mIHMSav$y
zN9}rf0rY&wmUr~exEvI#M`rH3tz!hLyM8(CQD)L!hqKnSd|tTfMj#T%DOJRV!rem4
z?<obGBMF&airsEtkC%{NpOnf=wRd&A^ugsfHWSVSj5$J&_+6jmELp;UV34JbF`{r=
zyJNw^M9Ehra!1h8QIY&K3qx-WbI<At8JqO%AM#COh{aShCUy%9Ikeptkgcg^Fsdok
zW?=<uChYDA5d5vPyfLrWlADj>^|OMxVdWE&ECzG7Pg$S}g^Y8aYOQ^Uub)!Ew*Z%6
zWu#=46XkA$6F!6eU7O=-Xl&m^Fz~`)@R>WB+p$4LgJcn{+F(h9XM8-fLA~VzVPVIH
z3|D<Sp80OdzNmK~P)(xog|bz;xi48=dup&-0OXj47dt}@K)dKeSbAgL-YA&oPdz~h
zoA5c9csjitD^pv--Pzftum@7CYS)}RI<hW72TKAPsg&NH7BU{9_!*YpUK<q#K(}Is
zAtRN`qxauyHmSp&@!2nI3F*{U$JkEQ9yAxUST}xOtMp3QY-3dp5iwdM%;Z9a{0G04
z(1-M|^!#kxmrH*%jM!MXw9jcc<G7;Z_Nl?&lVl>J*{cvz)N<}mw;^#_fgj6{uzhg(
z&qDDE)v%*-(uA#N?XDU~An|va=mbvAXm7m18WN9A^&i0!i>z6DcJ5ZYTTi`B8uF-s
zsYguMwKqA3;#%@Yu-mIBhmfofj$M`I$Dm1_9>*T+;U7@*3Uf`Tq|Xw?vQ(1*kJl9-
zbDvF_n401t+N(+O@7wCm8HNg`jOb0fL-j-TicDDR_IuwBEeas4=dZncKuMyN5z&o)
zcNIOvgB6u^?;7to=-$=yet`O}TN@Lw$1`BHv~^Y0(Zro3lGIipvq>}@D|iuAAVZ?=
z>H<|yUN=5OV_H6_2>+s)UaFoe+`%{09L>fb2L%1-n;PVHbmOSH=(S#6VaZ75vN+~<
z*nQ<-TF~_FCCLlREEh~=(3MCjc;?6Mk|gu0h;<#vL0=P7MNc!`{MyEK;)KEi`}W8+
zIk#q`2KvutX{Fgy6~(0A%#Gz-st&p8U-!Ge>Z}{{1Xj^+R7K#0sQxk9hn<$mWV3p0
z-%3ICV^2jicU2pw<K2jEX*RVp6K`p-7*ykd@64du#veGg49)@53S;l+^7#9F@GIXc
znt~Yo=($zPfFV)CsJf$wmpRdm-g#B;5iZ#Mg?;mc%CcwPWjmV%uxvzh)3P_<r)mQ;
zy<a$3kfQ5o4X{V^m4QE6Yq*omZrqW0M_~069keg1mp;^mNRRR)j=oTubC0fLsX0L9
z*v!m`*hcNy1|MN^lpn4bOq5z6?rl0uv)dcyOritzYP~y^R8h{TE!9G^`+3qG3t>Wl
zDwZJXv~H}U9*XR5_cgbDn@CoSoDi(A)jTb=ZRIoc=~vea_Uc&4R$dxBA{ES6vvn}k
zmh(Jt2+lT-n%eN(;j&(5dYA8)P*^E5)RuQ^cbyxYU8xWi2*x|p(IOLdSx{g>zTWcV
zkKHDbd=0}==5w(-6lEpxKXtRs>p1GDMVi&+{eavJyvANPhCRTQYu6JFR5nG!Kah4y
zKO#QPUiTrGuj&=)Yb@|fu*iW4Of?^d<O+RLE?-jmIOQEKizmeL1Il`GuGAy{RJ_P;
zu=-AAGfbqHF3>r$M^YHF9~qXH@_vKwML^q=Rgjh9z=)8u$m65stB*W$^3(+{c^k0f
z=Ptzqj0~bnx^B}<VpRC=>gkdk6L>%N7~`H&mn8B@z;UXe!MnUzj;U$&QYW2$)7=5e
z6UUlt*w&o_)+8+~Bt)J;t^2mYb)YZptj4{Q3<|#@M?d?b3&KXHndLT6GXEaHbI*NW
zAA>?qM1`=(Ft26jnyU)fiEi%iK89*+ASdl$bttdbI*&`epX=5LChnIA!N~oi`;)Xb
z2X6M`rM}|T)|L3e=Gm%=!BfY~lcgirV=JS*E+6FYKw@EYnmBVu0+5jb&(edcth$Vi
zC`Xdbq?~41^abmL_wdOJqst3Ra${UYlu=#bc*`p^^*^^(#jl`7sXJ(jpIg*hdbr%&
zhf7-+!V$1Zoyok)<)C?+k@Op*Go6w`MFY<(mrF8`1K@srr1^^EbX#0V<FF+?Y~JY%
z-7h#tp77}hTq!*j8n@!dist=ps+wj8&qcZX2rvvPWDIk#4t9q>;>!i2t7AH##~wvV
z4lQZTw3UJ(b4%&PR)Gr-c$o*z7nX7lJ|CwunD@pfq)}!M=|eIG;MW|N7!fvGQLU0}
zdScit?<mlovl)WHL||EGk;_5DB<mKrgT0?`4~KfYbhP>0Yay)ZTwB=c^Cv_zE(g8o
zp%_5yX;~%Oky_7z0Ni<Lh*dchIx1HhFvMZ(5t|hiElI2vadr4Q_`>emU4)WhTwahP
zBn1gLKO4erQS5j&a?MmW@~2KpA(u9rSz4-4(A#LN@kF|Fza~TYmaxAQw*k9Jo<lx1
zU5vM)q0iZPHfo~N*;Y5&T(f%lCM?$Zc%XtGDviE@>8E@Ad{aJUE<Vo|47jfiWhrOS
z1T()*<X{LifuZSVR%}uWcUA(Qid3I7R)=SYxgyPR-km^SG!eRiqCbI1d<}Z4$r8(_
zvbve+rmRW6)fTlzzQfnR`*RR(P7V{WJ+#Uhv5(ME$tGshb1qL^!@50ycm^wbv6!va
zWxp-DH(|X5lt`$_%G1sx3U(3`R>);W3t8FMo%4n~`=?G(MN9ZL-)#@@=#qiJFlV9F
z`EX-{pH7@2Y5d!m+j4&<2YBsIA3*jh&HU_KL*kwdaaTCbUN+iUFAC`&!K_H>eNSY9
zzgQ~As^KePh0PSSsdI*|Pg8+SkU(_soS~V=74g#Zfm3u0l5G)1lsjvzd?8j<cv}Hx
zHFfDef|3%)l&Ma3;i980!;8UJ*^f3AHe(kb4t-a40Q*LOgVMqbvYT}u9mFcb%Lnqs
zq!A$@F#=QmaRQFQPRhyEnf$JEOOby{$_p{<!zm~5>x@vZC{$EJeGYWR-iu7#w$I(L
zc@M1n2bV)X7eOnhpWk)&nmTC3%j$3|Ll~!gOxskvNP!6Os)H!Sb6o}oufb_UKc|BG
ze#0IvEGmssokS5`du*E9Ny?-Z21#lWoMPlhPQ)Xnx$A8)%9w~9!I)^m?kpotlr%ge
z3~7AGs#oodezD0_VE~>@|4kBHp=4O^)^k;+z-5@hbMet?gD|d5MJ17BLgxO%B)}|c
zeRGdrX)I8ak2>Wzw2i6~ut@sae$Kx3`z-*xWhLl4SSjJ~3T$h5vilMLw)+*whLI<U
zqW}$KFd^T0y@^$lkJr^|q}xeg?Fg;0&U;13U9oEUwkYhx!p5Zh5i1$f^riFmS$-h^
z*(3IJz|^v)?382V{UDtlrg$N!jYnwDK<)XSq%VgO8u!nZV?)k&uL!;v6@Ou9%WRv>
z&ptjNZ=zX`i%ZFL?wL>2y~$MFQ!y-CQr(&2Rp~cd+KD;z4=I#w@Qlq==@w%(FtudQ
z-m^7AW(Y>_BKA<0bHYapuBb<mdDGE2>1b}K87p_tTZ0@0@2k1JXNS!nS?Oc-AmW9+
z<DB;Y6%hDd?9{Z56ydfapvKEDumOM~Z9!k4?YwM_RtZjd^=j_m*_RtOALa^9cPCwW
z+AI#({I-GfHK*wQGr}kre74)DCMqGxTlG$VgWP|_6rG@@{)EW+Dk%aPaV|lI(i6zu
zKR^9Xe?9=f9#KJ;J8u6+Am9JMqPRE#coQ8HwZX>|K#&SYk=-WxCi&cX(aPl-hyVCr
z`0fDDm$}rUaq?}9-&6ea<ZzvsyCRH{mzs#*Q|0J*{`}^@7W^+u(^dj<4g6*$U-?dM
zEx5Qaa=*vkQkNd7=iEO#opkC1oAn=`iGjXTgwoFZ=eN0uXFq<-@xb-6)SN8&4__ta
zSF`DDV(&VsPI{m7+p=|C|2uXpIt-Aqtoi4>fBk)JtJ9a5gi7E9m~q~=;^Ke5l9L|=
z7Lw|Gws?|{Rb1|`Ft5~JD(@rwWAZPg4L~Ke0&3wkF7MD2Y7%=KYonG?U)#T=ERFr>
zZ+s2<lJX`=Y-&u6g7d8$=f=0xfI(_i<Yf1e?EXa7pGjWb5tUXWN_881fwq*7{(Au7
zwrX2lx|>PFzzQ0E!y<>>=N;8a%(b^(K)~Rb6HPTpz=+P$+t9Gm3-(84z&x@+fSu~X
z@?^`%8l4@J<UUNPR6vKBx%SKdn`mV5e88!#j9;VsD@fB!?v;mZ8cfWld<1FKVb`=r
zhk@lF@nPiTGP85%PC#XK2OBwsZp5FnlXj9emR0)%V6dovdDd9OT16ejrN(wVBcwrc
z`5`9P%&G2BoW~%lJ#;-=K%^MJSOruw2^t$GVsZZdVs4a=zl~OWp4e!=oSt;uZHq-9
zEKbHvFar1v7U{!?3mbOF9=|<|mPemb{e9!Kr2y0(BlP^jzlg<XCit!->8mtS<Hz~R
zV>XOYS$3$+VWuTOQYlO|m9RO6AYc2D0Pq<`zaX~HW->F+cVf`&oR~$jfTb?76k1KU
zc#`1nj`Q4IWr6|yI7&PDz+$%8(Y<LG7VGIkaP<xVbi;IY+<K=9kuC3wokB(#QNuuR
zNASRVw!gl_6CoG-<J4rS?H`?-fcN@u@%4?QDz~0;L@G~^2r1^hmFKQ78(~I;MrEor
zloLop{i8idkDrpeieBpnRd|2+89%zk{kwZ*qsaIo7nm66rnuEh@A33D<;g6}9dgeu
zk%2uy+O2UHKhyveul`L`=crOA^B(VI{#Pva4^#2xv}SUv!suh9;iHQ7P?m|r8ikFa
z^zA3ieDBLe`bB*n_bm27-}UdZymAAPN+AbzLmA2;AZy%6DOUlcX62P^^VXbG9@O;q
zaH_2IN!b?(Kl04WIk@td$Nck8MwL|4<I9YRvXMYg``>GOs>;DZv`(Qt=AK;r#?Czv
zo%gWNsUy@jD%1$`Q6a>342|`7I#Cn)oI_KH*xD-q_EBs^@R$G;1aCKa6C-A4P}V|R
zj(FstoaoOcJYkUoNr>IhwN-j~8tKSv#|{&FV2s!R;cGIa;U<LRATKW?Gsh!WphsPR
z^AM!}{{L*oe=T^d7*Oc(;(G9vzwV&r#hvMNr<c`IJH0H8dSL*Ghy8UZi|A!EWn*$4
zk9uKJc>*k2U0A{ZG3P{lwL-Wl0L#PYCu~$PHR`FQ33x4JtELy91cDIPKA-i-G9R4q
z<dd2$3#Yn;d<@cKh`aJFHhH#I<rq-<YpBPb?IfQ^!^A_ra%r~>YgS31jjzPNS?O12
z=sLG!+zZ5Bd2*fu9L(L*eu3c?cu!m1l?}zd2_<MnVNh;S$I$|dN&<eg$~vou=f<Db
z@D!E&*#OvXQp3aLhjnu;S~hugY6W^lC;@llA5nKoQ}YN*nhFG&8sjL*3he>O5?!R|
zd2$amb)hSAA~ppoxjR_i<N|}^Cv-8#SO5M7JHx)uTzmVY-ZTY;_dbkaZ#P?M_ZV-h
z+|beADD3$JRH^=F|8wu12766rYOV8T+~ffMSvEE<$-wTeq6%&eZmLAC?Z(Z`KK>tR
z`L7$JSpju7>xlgJ-%<p8{*wPR%+tBVE=inENB{I+t?`Lbc-nUtaA1ou5^jGH{+C@;
z!+BBmq-THqo&R!#<5%_Py(JS0YR>;v3jVtCe?CO2+(kgEULJDN{9WMxcC{n00v>S_
z<9}0(zg@>4{YQ5ab({L!-#-8QB00nXH|aRvHu8U5_x~^O?*jVIt^0rR4L*hYXRH0W
z!(vx`n}2lJrA90MucDT_d3LKC0Z7IFhximvRe6fLPeqsc^u&jKBmdQ+|BrG5?^%;7
zdb^&pJBeZX5CF#iU4;L|UB|=$PuOkzWZ_>7?|%^P%&Wke_4KEd|M1m+J61p!Qy-j=
zKjM@F>;G;H{<aWb20)QCKl}#L`u~)Se_7Z+Kh-urIhQ)Ed=>xS1nM8ReU$@F-_%#(
z|JNzKTLrkzOqg}+JP^=c@zpV-zf$toC-~P@<X#32)Y<`>9JK#j(EoBRhcd9v(z9)5
z|HpNy53Y6=U5@+5?-f(dQtN#aGO6vRrbdHMTVK*pO&&K#`^yd|aB<WQ{{Zm+eFsxX
zbl)9wNU=h0z%vYUoYq|Lh3FqJO7he3r9|uDZv5w926)Ym0AGT~&HU5J8-KY%)%hkT
zAFR{sr1Mq<{-0x!d>+8)kCYkL2mo6fa4mNoH8#lj0=T7?Jo9fS`G33_u}8o?Eb)(5
z{wV=3aa3Ra!F-t9k_I|`1IHzJ-h4{a`-o7Ao%hdKWftM3Py8HDExT>DhHvZvHGQ*K
zOpJiu1oPeYv3wn!{@T)Bj_9izni4TC9+~E56JHF(TuA+Sf#@|i7kKvQC6!p;o?vWo
zQKP`n5~_afO{{zMWk9Z;W^rF7^y>z=mSwti6X$snP+%VLQIs>fBRua|e11uyvi{z-
zdG#eG;YwW3!<6t2W*9qgW+$62qX*Q14BaWJv%se2QvGvFql3RkTRvRRyo9QB5@{MZ
zrkE{39ipa)tpyUa+M4t}0Mh`MuLxEZnIa5J)lVP4O}K~4aYn>;0f7vSE3WsGW{2qO
z!AD-(N4L2G*g=;0Fqy-IxwX<Odbd*PeE32hkZs1^0fVx>X=1Y&K6Jm}yjk7!oAlJE
z+#T$kJK>$rmM4QOYE3~7lWH1q5%E>SQnZ^FBWVM_C^i(fV)Hgz&uHgZ@WY`jt6uy~
z!%I&v-jm)$EueW)w~dI%W^E}dgp0fL+{x3Fa=h<2>YupLR420oghcBpuDGU+vil&F
z-aDoT#&m>!bBrB#gBDsG!PTIZ4BLez+>?ME%S?m1xY+v}_8OCR$t>%G1slZ=8*EIr
zW#Go}Wa)kisox7W>70?|bO6FP(KdYDeRFn~kKK!ccXvLisc^hHxc5K0p2bzH(PO?x
zSc5Zv?Acl%`GBnaWLWJ^>c*BC<v`?TgRvQ(0uI~ytB*&;Us<tH+?%`BSj=hyu=#r8
zLs0O8>6oV(O)0M=cknla`^1dFo4NtpW*X)lw<?LAQ{5i{BL5N4_7fr}b;9ld*bWrW
zHUon*KC8jSCJAn(KUpzFdQ9{Ex>iTV*e%6AeFK~XU-IgXO4b(UYLnJMmJFKZ4(-Yy
z?^^9Q;VXX<ig>U14*9rz##i)+p?;aXW`{o+r0h2FtWPIU-nncExYmkbTpz9^8Qx^u
zytlTk7DQB^bKr)tA0FuK4JP>6tW8hZq(G`FDC}1%a!fqYPizN&R<4hW@;Yq5ceoOy
zTxyd%*Kf}{eFxI?Wi+;UW}xLDgXq$U_M38^&>p^6NSwqm9KPQdQWo{eqkZ(K+-faH
zU;5s(CBe&a%K+=4&CL8vX1%+?IQIjeW~BmLWm1LpQjBdYUkNb(t8p`jv!nk3H;4H7
zo2|D>?FZyt0l2-*WNRMKGJ<t&z_#q`1kh|}?3fKckh~`Ty<F4QTJPxs4tGvD;8=Pm
zUHY(>Mdm8&Yt{){Q>0M^(BrbcABYId4DmTSXd`EQwJz#}$Z&KI9^9~6FvI4(>Oy|q
z!oV)*Qc|0|h{lFp(xrpeO0s2nEXdYjhEw2`m<_LXHrSpj*}GMI6uHfvebKF}*T8B0
zev&x+pS=Kn212)_>g^nzezo!BC6H^JJ*x537KNcpMP}RCH-7N_R3R2PImGSEJCliL
z`pK(xRUaiQPr_seOlV;S?FOeI5{|xm(mVl};ZtE9c+vUFSwi)3&AkudbEFPiT5?UO
z>PA*FJgW&`ty*;N{cyL;RD$lypZ_2}Og@&P04>qlAmI&!GhIi-$>~OR@tVhpbKX;o
z)<mg2M@1+OV-X^JJMS}I9Cf{RXj`;-3aDB;vxwSU9rS7+Y9tRJ@W@l8Y~5vjNlupX
z8v<<Jr76<C7p&9lL~UMTf#8-~K1O>FY&M$v8df(~D~YsAdg3~tr2ef?)YFw<N|dJL
zPZ3tUC0!$Jt8{34`iod~^^}@ZJ?{vVzex5Pn%?mWrc`1*L*Dlrnt85C_kYv1$fvQo
z3UZ^IuG^~&v;mSBV!xwiE8}PvPS_MpO(c-(ZyCuzudg9ABYiLGW#FRb#=Q0;5;09%
zxfaXWb;*}UpCOGzY5V1$gvE991!-spcs{QfBq|qeCp<P9u>{kR6QtEIO_7#;8f&#v
zp!;PzB_MJ>Etb4p-LnU4X;`bVpUjp0tiG#995T;f%Km+B!&AOP`-PQP(nhI4geI?N
zW%=Oa3iztT=k8|_*<QlV#<3bJ6ZA<T3mPIl!%_l$z{FDjrS-I&2I)<&an}N&mWNgD
zU7B@En|gB6*Y`JzQ*B1K<AjrWufX_!E*pIL=Cj+U?_+0jxnDIf)F?2hDhCSh7h*ts
z>SFV!&xo0JyLMN)3E<69Ee)IG8#f)m)1|k&y=H61oR%7!r<7}Jor{(XO#Z-lCGbZW
zJw@J}hOe=;*&<f4Zu8s*gpDL5yrFiscHhS;#q=OuDnEJ8nJYP20i6Bd^Uo<fzT<=k
zvGgip7YJA15q6C^M?&4F@&Q=IH|VO<(Y*RYe3VF|usL^6b-`g$3BeBInPO%e$Z$gU
zdH9ZTV;=9DVtA=&DdDl#=0KeSjw6CBwi(l6gr8_)*RDHseTN7PC&@@Lvrbf)6xi|#
z8o#EM8W9-|6*-icsJ0atlDh!bgs4+9pWX)GdVl!dy68>9@t$O!Tqd07f6?R<HlH8g
z21tB;&r-xz*Rm_gHT5Zx6R1o|;k5LCq!hx<O4IWi8(%4Ezp2iK-Tv6xi!5>u+(bN&
zQJbcXU54aSItwMXA2ez`YX5aTGf0G6D}hoUuETUt2U;aRKce4_ik#TvRVQgT8Eq_6
zHanc;u#lr4a01*W1R-1oslpB}?9SvNrh%EF)9qm(N6^|DE>kM^_?pn=;Eo)4>;|p|
zect_GalDmp$abalv?P!v`eAm{?VZ%-Cn5o~M?sRJJuOa1Q0oS?WgTip21!p2UVEp@
zyl<#=d4|=Rf6zb+_1yOR6~0z;V6KZL+W^U`mojG`xvf4kwH``$cvmpegoYY)O*G7u
z2FLt^HZe%Iza+H1UXl|MZITyvXr=87ahWo%o3nRXCjzXp<3{U7A&6nQUaMcY@FV}w
zg%~t5Cd(%guT-9X_gNt0n7weE+4dqLi6xp>NJc>96rW9_(>Y(`;D)`QFJ3#^*h8gx
z<0P!@zTJ}E%ss*ffKr&bnV|5sAMZDGnkqfY+FglF!c|aqui}RN_SE->_K0LV)tlm_
zJw8s6thI)g3~GfG`+>QvlcMJY#mmON3bKv4$597#YHJzCo%7!VSQWCjoiQWKfiy!s
za6FI)G&`=FElu73HKTe5N9c0{*-q8jt!^66`4u+Gy!Ybg<sZbo-Z=Ds9Vx<RJa`l!
zuXmhtDvuj2`nz$S9q~!_00D&=c?U6E@C&$H1%i0z9|36=)xt-w>$}=**DWkaQ38&f
zLl!@2RI(0#wH`?IXUInp0s4?B+87>tbX5A#k3~%N*G9Rm{Ry=o(02h~d|cIaZvSC9
z=={9{I>G)EG|>90obXUPvv4!$_&O#5Re#S}3Cp^pps0RES(R?maaZBCv}!8C^*FU7
z*-PNEp&8zB@nYb32I_F|NHMZoCa?F=fRMSS?$qk896h^F(+XVA4nL!7fe3KF;3M-O
zvt(=y4NQUlK?MACZcr2@4D<$@I(d=>wP={+@dK4_t4XxjH7w43mx~&IlH*xGD!3<I
z%gD#ABf_cRvXpl(4Nk5=xHn7=+HGFk$&#4~-{R$(0v&H9+`CrP?DGW7pTqf_{~4cZ
z7L^XEj!<4P<$!gPEy;9_9P5v(x;LEB19y7!?d9Xm<uh{9ny^}clprUz^b_(*Af5Rm
z`!)NLNZ$J7KG5+V+I0`yRLleQ?ug-6NX)PhfE;~6yvSaX+qAG!cNUIx_867mBZtYj
ztJh6qc%`2aynh=|rFSv$J!)NDkD{Sf>Nh*rBcvsz@nq9NsW*mzH-7CLf^M)JvKR;2
za5n=0-x60ODCNv~+TFJbUX;%f+%3XS=D)pH>rSk?z=Tu4ks6CABl5qpmJaz#gk1=O
z0|wz?rSy&Vv-rf-6oyEn-PKjw>9*H*UUsKB-)YO{j@#JU^HA2i+$5RH%MLcX*UEDp
zOa6VS4j3MuGtP@Wqk<30%&bjw&!}ZwLXeEDTkv=7q3P0vC#+-JRcdj*OG8~_7q##w
z?3!ST^g5fKOo;5vHtwcO$`y9j=^L7MR(I?>8XM&5INFvjOw$zfa&6Y`e?mi5Wu}+=
z4<Z@|Ng&kK$aJ+xZFE$N|MwH1%hOlV7vHhhe8ioTZB7~9SlWVj54*+;r-W7|)YNM|
z%wm3#;o4*n^<35?bKaBPd;aaUioVE*##}k-qD(iX>R-oN*yXKDYSc$q;(3_eTb{$~
zY6?g6M~YUMA8iH4L%9Zo+~p~anWH~~m=eHn<D>CE85O~KKa<sW6A<n`_k<0r(-j~S
z%(;OAP}6e^yEmMZrX{N;x1FgRcW!%mLSY`)p}9U;jVP23R4%=Zdetu%^gFNV4Agb)
zj*!*k+0LUMcW8vn<p86duMC8xBSMmnCmF3&m5aTH9{$ohV{+CF8baiwHdXw>Jj-}%
zm;YX8lmdObbS=7s55z=*^DA^G+c!b&dSa2K7o&ooAm@3Q4C`E{2kg2FvQ#c*Q_JsV
z*0H#c3SED+{EHuUC6n{6H%HpYoZ+sJ^^F>f>$RRBV2a|<r>yf2O8E~kSvmgqN=XC!
zv7U|b#<2`5rWm2B;>HGXB6ugjb=BcQ;3?%tdG(g$%1R;%Q$3dprt$<R&6k5Y46eR=
z0Gn)0Kb3I4>E>C>L3IH#Kt++PTS%O5NxjEM3!aVK5Qnqh9J73Ie8Q{H<+wm7i>k1m
zQp#w4A19_X!l5cyLE893Pp-3D&e+xUT&Q3a=QGId%!`}DIv|Lo3zZZ==U|%q${1Ye
z^5{e1S^@D9$7pwh_CYU?ez=Tj(JNWbf{1zJw6wPo<@T5-ndspQLxy}J)@OsdHO){l
zB&BV3y+kdWD|G%NIl6928uUjB^yQn@(bIe#Yz(U*TS(`*;35^X6m4^b&82f|H%87N
zR~azKN$CK=a1trMd*z{dN7=PT>#U5&LJmDN2B(bQlLmY%1V2y+>Pxk6iZeuA6vCpN
z>0zMk-01*yT7(riRknhgwR}QT=}gT_OI*QGN829qz#n~a<VDQEg5{8(f|6Cc5`T`$
z7Y22D5y=susVas{0Ph}moiFHUHramUg@I@1NXTl$YLvU_T{5BMnZ8E;-cw!4JTH|P
zZO}t$W&knkMc1#FEoD7Yn0&*4W}_a$p0K{F?f7e2^4z%$eM^@j-5;w5{S4|-$bC0H
zXw}}Hl8b_Xd)1yNy3(cRccSIo3Xk64bI0XI$qONLINaC|bUETl(;5v-&M5zob0mwE
zv{zgNi7OD(p!Xu7F5cp!xdbUGBx~NX3f~n}s`<u0C($7kILzIp+8gwO^{OzK{|u7t
z7_j~ZUR6(r`L}w0N;Z3<DrZzeLA!4Cc5VGYROM-BBxX;y1>hzeYI<B7=4D4o@G(l=
zrzJ4q?1&zpVcUyf9#y6MD}!fe!Z16RaVTQg#9QeUPnnM+Gpnu=Y$cBqy?cEX`kU&m
z#?-N@HY!Bsp%4th)crgshaY3A++!rn$P|(;?WXp4>%(spf8JF8-cfWOo<9%7(iCVs
zofkJ4(vd?brHMILJK<PCz#M#gHae_nmCIfr12xvf@(oDrikc;5z;j5vrP1m<aT9y{
z6&Ugxnyw}a*}eE|WW^Vf|0VC{5c!aD&Q*H(^vy5wmlo%?`~>2Lt47^rFM%i&@<W@L
z<B;}CS8fiM)lm)ti#Zlv5kSinJ(Mvc2@`Q{h!^V3bpv;)(zJwM<W#A7<md3oS6H8I
zMxaH2!X=lMixi-qpMT5ukRS2(A22?g+{}+~gh5iRhwIN9s@_{ar}#biw;b>IhckeT
zsvSF)<ZK3`87qOA^<rHyPlODIO9{qZLs?plp((|anSaPxF`cSOubDtTyAzSs0ohO{
zop2i8PEN%XJ_d*vrAiTZcno7)zZC8J{F>r`>?4ejYv!yinXg3LVq!wy&E2C@eI&jW
zRBcdjK|Vq`ce!5oQ_rBqUgCjFNzH@m`2h*luu9vq%DQ&DB(b26W``=&2<N6vDl><n
zN|%uRw0k#hvR;4S9BoAZWy^OFGy7F{8ys|ZV4+O+k(EvZgA7m2IfeYsC6iNKF@BR$
zE7Q21I?jPs7b)loGvTqqY$nxb`R*sGe<(k4kQ(I)I(Gcg@On<?j5}YCrh@QtIrW3c
zHPmBt43G81W#m)iS{sA+W=xO_@Oz}#7f!8l>p^jFChwQQe4V;c!)~FP1_8|iB#R&S
z<&7=IW5e<5H6lazYaB?+Wf8v3x2p8{_+V{`-Fh9Z`UMho`wzbosG~Y}V;HEetfFZJ
zK%&>!5yS49J$&?c+XjAmv@3Y~IJU(WwkW;9zN@IKaNjp>EYk6bFU$jtw@2(47pi*=
z_HNS!ZSh{B2{QiB71{?Rk^IsPqJ#^K4I&F3Iahs%Q1s0z4dvu5ej6iV;>s@&qskfj
zc9)}qW;s4rc-K+S+VTDY(umN7@tYLOrvb<9Wng<0rWc>5k2E~=PUmyHaDx>@7{2Rg
zUCK<la+w~~!CnIW#;eSKrXm#o#x|c}Jt9&%SbWGr*u|RJ{!G@`Ml~2yT>GT-mNK)O
zc4fRiz=?m&YgF<}@<l<MSzGqGQxjO#rVI<I-~yeH>;d$gIx=(A6az&y<?Mf(SZ;*X
zG9Rnyq027n-8%JW!E@p1Q(+z)NmF-vRb3G*q;Y&ltFCB!{3OZ{7SazQvM^d4N@rsu
zOv!4hN+Q7mq-g5_^c2imL~m;ulGFCa6K!de?li8XMHqUXeokfJPQ|kRP8`ZM{HH?7
zYEcUOF#VNn!Tn#ir=bX(ZTZZLkW@}bftz5{gE-R90e9JSw_14uzYs+qFt*wqkJ=CR
zw~Im;#hzsQv+`dsASmYDEikPK9-3q8O0L_v5>mBrTGyxagES6tfvHaF3iF>Nr!1<%
z8xZY0o2Wmz7FT(#Pt!vThLBG1m+SHl#0`V;TA#TE#>yix7o<+Xgly2=kR)zZtMNuJ
z(P9l?*5E0!7?lz`?2c%{2i<zhRE~&*Q+Nr-Qrhd93Vu8_%#oOnC%AvFG$}jcq`SiA
zS?_XwA<;y5|7K9R;-li>r!QCD{lUVFf14ijrIdQ2emna$Z3y;&!b68#PQWRJS9khH
zbDM}>yWYyPsl|12dT*Z}m{Fznt!^b)8bKARup5{_@W{R>NjT&JpJKUNi0-KM)f9e5
z4K87E3jX5^$cWs{fYn-UE5X)Qxi>QSl!wc&m%21sedp&Iy14N`$xpGyb1?ORjsX#^
ztY*YxbNFGeePGoy#v=3AOL%mV;#}gK8GDj?zIYpY;kN=g<g+h>encmo91Bx{iRFX+
zd6CA_<`fuX($D=G4QeQaw|$e`bN#VvdZuG{t789){5q+uBGR`jWPPUKrU1sw0w0`*
z^w$_I&IskmWg-dAEzQhT$y3rg?-9movQ)5VI^lpZacxt`Ia^TGgVMm1)Y|^GA8#*H
zYrS}34o4rOTHB+XuUu*#(Uy?x#rKRezat6uQBl`|D~MqVeK=cq?>1-C;e`5HH#W%*
zY?kVoCstvUlRhR|!?~9BD;s4$^|_)g{&AG#GXpKl5m#da-9ebb(p{O-Cn179k0kil
z<oJjTIf7n5^yg~Fcaxd#RfQpGu|T-j(&yt~KuAuX+etNIg(_Ei*u+NC6N;+>#!U%c
z93iM$5i=AtR^~$3m96Sbudoxu`Hkyo>B4z1Cqee+{tiU9O4G12w3tCsbGZ{4&xGn6
zl+I|K=DShEhr4K?Y}x#2Z!+RsHG@Dnd5&A?XQVuNHq^y+LPU|EgeQ)+AT?bG4nfh<
ztJ})M1V(!URps&zs&>9+q5{@Kry4=2dmq2Zli#ma38rysKy`JWp-tef`p%CWcgEg_
zGCi1D5iYz2951ctzPqW72#PzNltoi}FDky)LJPUg(bePkZzo0B3`_|*Paee=x_Isu
zzJ+;?l$6X<`&m~q3g{XT?W}cYJLYG-`Z!WmjVdhU(IZUv48c5l(gUBe#P&u5Rw8p?
zZ{Huqinh@h5iduPN<V+?46M}6wxGk~uOiL88jd?g#~E+ke3}(}XsoQBp<_o^gZ#{W
zY?ha*vv%`3xIALT{@B&)`r{S1Y$;BE<yvUl4e$kZBkG$67Z8dDSKa!uPOTa>o~q`)
z(Izk4Tz)~F^JYD0r+2N*uYB2kr^eY*_Pup>sD`Ml)ZrT8nbeaa@OwNcquDh79VkS6
zYRjsoPJgI%ag6}Gb-pJLokfXteC81y`Qox6dHUhXoca|6$%uZS+wXjStv%9eIGMHK
zNS_mImXg<-UR(pWDwggfLJk0oO-P7f?9JgKmPzNJp;Yw%X7wF$hqYM$5T>GvI}fP~
zy5`Tph56k^Bx;<Lb5cWEGRcB@iILa4YVYK48_o*2!3^>7SIEQl?;JU{ZWlSR)QtoP
z@@u;~2GP|#Rk?!Lkt~68OEH7-U?~6--O--~htA<9+c7i-n0H+72Tb%7Y_)|qGusn(
z$jDPE=l!d=-)HI%Z%3;s<tsb(-En(6L92|q&t+A&D5S5yuBKs|YrHQXtEBNHf2gXK
z)+Y(!KP_e#L08kDVwF(2I?^}&TkM&VG{lDt>z}~DL6N(8EP4GE+yZ6}+jDDYY!Ubn
z?w<5|3o@UK<I3K_XZv7`24AM6?S$}p-F7q2j~1B=D|16-bVw#Wh@RK`9D(v(K_0N>
z53aT@i4#R}IK4{jV#PTXU7-prvn9?uWWv?0>XcUd+vmIYfF8ppQZg{~M-BrTOP@!(
zp{5N@lh~9}<B{a}70%tH$c^}239&AK6**0M`TI>OC3bH-im_o5uavnz-a<4TW|J>n
z_82C{M{hkB#%d}Y{Q#P>{*VcuKx>m*6v%R`hPy<r5ZLQJd1&JA*EWTz^OEG#j6s86
z{cDVymCC73>KIg`Mba=4c83t-AO4s2X#uK{<Jr-qi+PS!PXqp}jHL=vIZr;qHnP`E
z@+^AWZdtL0Ge~UdmB*z-{XfioWl)^K(ry9-4Hh7{1p>icckuurxI2X4?ry;of@_dP
zg1ay7!QI_i7I)XX9J}=$`OdFfb*tVVTQKj;ygl91(>+gj_a4kkmobC+9M$F@?>Ng{
ztSuW~$)`0xwZGxnaY+<KS4U#}`5Id?o`OPMJWtQdy0^%SXF&hr=5So{opb_~S8MRI
zAKd~{&rs~)yuZ#7i4Ns7$VaJwCAB%~?}P)~Y{Pfzk?|M29DR_#L@PRpI1L|GHdbE&
zK-I`s&A3u&0%~f-_{W4HZOtx~1B+Uc@c0LfSU(miA08KR_F*U)2k|~)5kh+y))ANC
z2RnrFS$#<C>?)%&9lUZX(?%@TxX~im{vmn3+E<dK_D=6Pv?9Avrw|tUZr`Q2zh86;
z2^J~s81H-OdGLkj@#qKZk1}sjPP?B*18KS)8HY_m%hkiE&CmI>bQOk<Rnu!j2JjAN
zJ1-;rP44$=+-X+=AJ4wNilh1FX|nT`g=^eVPVn7pJxHm1_?XC{)<@5ck1;BjN&Sqd
zDSJ@qmbv|rD(F09=CO=-8<xa=ublFsv4#EIUufkkdh@X5Z;e9<YKNo>m>V#q7|6_b
zr{3N`fy!w4Z3X1nG*h40?9=+T7~aQme#}6aw7%|VsqF1vMQ>c>a8m_3HT<*ol#%X-
zw?$fYNPKa%5%ziBPx+dx#igDhR{>*KVGr~9FhOFTkOF&}nUTQ}aV5_;@>E<SCyoUx
zktgxx4s3L;W?Fd7KN^ohsT19Pv(9;0uv7@?oULR~%q=dA_Xd5on9Xj;ww!t^$$b4=
z04e)L>*oH(A}SOwvK1EGlJfb0IM(9kcOSceqxzDQZ~6C0K>>#e8YzpE^ZSCO@xW-@
zj}F+`;7^r;&Qwc|OqRs5YSuf}vgRLUs(s^%xw7KNlNBb@5aD$zIJ#*OuN-G$$ZxCO
z)C`<BotM^Kq?va3`-!S|Sax|8S~gx^j9tOhRmU01^FB`v2dfL0#WH+D&G<R$l{5E&
zkCeTMMdPFm&4ua4$=0dd5KItTwi|V#F)qPc8!x3Wef52zo*BmTn5;{H_n}3Mg2qf)
z55T)-9^N_)wH7(RVHB&N(mgguv)Cm5WS!_+uq0Xa9e>{dgWs)5Wb1K+z{RPjL0NYM
z>HLjoxcHjZ0e)VWzQd1)XV+yr-b#=B-Ci#w`SMLzu?w!k5#vD$U6BrxQdG`_CM{Wu
z+${<0wy+Sx59s^LdmiI20C&JMY-8S~d0K{Oi%je$P@yVUb%V&xR{(7G9%AD?BZHA3
zUx-J%H*!{K+yCS~0OWZnH4Y(H;>^rTt+iGj*z`C6KMmIkxRjV8)vcQxHpO2a<Df0+
z%BSi2m{*lQ4d34|9E37JuRqgOr9779G}81{(WdJfkz?ptAnnhz`MCc{=B=WvROE;g
znX@aznCbmYll<}LN@RrPZ`lA)-8SE}{$>_Gf8K*ha>KYpikGErlG!>tfBK;^j+^@<
z3&=ULbS8LR>);oC(kYg1B3<gRX~W6~tMeo$%w&qGKNigm;)mE-taCoyODQ?QWBneQ
z)Y&*7W#VN1os`4*Yc{$MyVn$|v7LL*xwUF>PCTMz=Mq&+_EO5++~PsF&IQgYGvD<a
zHWb||#(fm`sCHntH)F7i@hVqDZxeMLx6k=!^FYC2o_=Zm%dvW=^a5wPg@$zI(rpck
z)G>Q+*fA_=KGy9TOH%Y9QoqOnH&W(6MoDnv#OUmy?5SyHn0IY-Ra<|Wb58Ior$Bnn
zZoDd+Kdp30jvgL_ljwwFnN#wtIMhfj#kOGy>==ow&C71`Y+afo8Sb+l234j*U00UC
zXt9Cx0n&@fXQycL7-)Fo;_u!kUGDeS3^7>OIl2D@Sm0-cY&3D0h%2wO@a)iAAG&x}
z6S$`4g32p&IX|+pSu6dY=2n!o%%V%na*j`}GF+{s9z-DOhDkCHaN&|lcTT8T;&zqq
zlGoDkY#Mgo)&91wQ3K=UHIZZ=sy9rF-@|yTKk(a@9Av3pKGDS>T{RqsqXs=k3Tpr~
zu0Zvi;?j>^?#p#A+=M>0`cqB4^TmV9FtDbg`F#E>F|S#{)bL1^jqd5e{zM8wS464x
ze075LVkuaAdlEI2lyvXla4vgs?yI9t<qxEoG~osmQQf4SI)1==XE%1)y4)>_C2GU_
zWT#M45DOh<QU{$??%jBO9rY5-CUpdHhV_shXyXXI^&ZKd9dids^OJW)-)fGpa$ekK
zuP7x`OVQZ8kJnU6txp?>L+Xl!HM*(%qN>FA9>P*^nD9sMCQ{l$w-0>Sv+?O6jmY%g
zYuqu~dS2?JXF`dO#(t1H%`Nr4w|a6Cjoo+<ldNukaBNzR%*^|Ek@0$&lbpt~>xyf~
zhjgTL*Q;{ngR&N=D(u>Fi_EPsodHEXSxrOo4SMC1)5FqXN2&8HyulS|Em*FF(wU|&
zCw1LEj#~$a(eeyk=?xM#Us!P?lCoAGZ)6Xpnt470E2ie$gtaPv#t}?m)lx_(l#xQu
z^CqsshVc9lZxCFnHKcvjC0C;5-aam*tH&uwZypvW`&b8qY2~}YX&kC}5k|oyt7ty|
zO#401<v^RFGhmUIsSU|KY>$<l)hTUvpvBkHVSv+e*BC(J+d*W<DqKeRa2GSc^CMa<
zy1yU3b@#nv@pp!;#uPl+mOgQ`n54GNf(h@VZwZ29@x?EOaRV4DHf<Dfbd$|w@Ja;J
z`7BG1Y9~{#Wavqrqat9il6Z=Y$5m?Ap6O-XDskq$!jIj3)Ch%iun>tt^L7XAXMhDg
zhu_xFH0U^g@aDZOSBS7?F|e4gx^M=hbooBf^bJ+XyP?hG^37lMznf54Z(>N-WDPyZ
zjq$%86lLR%`v8(Y7L8QR3DGLMMf?o|M4$ZaHemklc^kAqd}(rIA;IUE_;+B+zsDr0
z;K0x;g;F98#Q%G{$=9%U|Bw0;=Au>LY297=0>cbVWywVR2bdAnGt8($rJfe1rn<4s
zG=$3fmmFcQ#0SXy_5AfeQCZJ=;r;U~l^XT1c!i8y?A|i#=_dO$)mN4T5Jh*@G?<n1
zFR%OsMn&NYr#c!ff5;<+{M>}g?_1n^Sz=WIw6tUe?nSEqfR^izfdwfTOU2gxGZgEe
z1`+0ahQAGe`|&SG^nZFW?s@wEpLghY4^y@Y#$JD5DChq`&A)xVLIlF8>)t{QNfxaI
zY&rOGg!yzp(utn`F`+a)0}Pk1Ivqo)|G%@QFa<h{PUabQ$o~x{s0QO<ddt2jmj5!<
zs9+f2kyC;9Uji}yX(F&0#sT7MjC%3^155mUK|hI62o14eJcHfxT@Vm4$+Zs-e-Qr-
z@cpl3v!H?X%T={lZ;3p~3)gsYptW(BL>&B2=*WK%oIY6CorSxHNxLhKq2Rwk8)2Es
z>y_!P5dP!ff15L&80@a8%Z^s{zt9SX?*8EVIVfECpJ?;<Plt)&Uw&qMeU5P;ILt=<
z$Grc!$zK`e^K;Iyf^zKtx|*+HM8fL?sr>ux;vbz07r+Ll!{h!J<oQ35(=U_~21Nf_
z7fb(N7V`rhY~Y*@35x$l8MbFw=xbM{|Co;bZ*$Cf2OC&r_Ago7|7oxIA9IAQbJ7Rb
zx6FDL4C<xDzW^WdRPvsHGjAESl;kSP^sArK_QLW{PqV~KW#Y+?d(-5oD$PQI7_9on
z{n`6yqyLrB{y`+zI0_#re7%Le?jZ!kd?vrA`pQUg5p?;%RRNdVmKVFzn(1Z(jQddi
zhcDjTM`kc5_YmLkh=iAIL;7-xZ8E`S(hQRJS}2~&DYj>+<I+Z%7nTNzYj5dZD#MVU
zzrU#G35XKh8*e@!Fa!e6FM@ZL-hXr+nK=4|%NAV>i-l^i23L?)tYC~~It#Xva1A@9
zhZ9d>LR_x}7Z!4fZE;JbKTG3N2QfM23>Q5J)h1OzVaS)7V#NRtm(7;|t<Kwv={|TQ
z3I$T+VmruXj6a^5#`fpKrd>Npu2nJ}p|o`U0iwwg>l(}WKK>A*7vb9f9`u~gi14{&
zF?!u-u#Ws-GV2N>_NsE+&2qH-*md&}pcZ;}w}^+Yt1F^R1d#*tP>4_eIpMH6yceHt
zGS6E7;<&|BT`*y)9a)-!ORl}ba)f!)KVNNOa!1zE2*d9Vl6gFO?~RtK^13XeAeG`h
z?7_E`!$KKLof#hum;JlAjjml?wkqymRbQR=8&8xEK$sy5nyvFfItg)VQU*v~w>4bW
zi)|5tcC-Tn166*HcR!<rX43$d5vG1eSov=evS&5R-Q1&<kh<ii=#*KCMAiLSG@8bf
zIg11Q^LFD%`2H;?s)h*9@veUMY|T+SG^>2v4sgK;CGBF|1Hrql%nLdPh3ZsKoyLzU
z!8P%?1<Hch7Wk{Jjgb!OW$S#_BRLNCj%Z%xbZnF7YUE**bpG+JqCpp<>5)$|2xz_T
z-eS?QT55DEe{h*&|A6w_uEqlLs%tzakKCpT%3NJ5L}J2WGE|i?lrl@{X>C}d&0W=_
zM`rd@=jEwWYoryR)@H82)^&n<zmYt=oSa6k>g^EGf?lcB?4Nk57#I(@>q!Q?8I|Ce
z3R-uQ#GV!!-n}bI!1{9GTiOUCtk%5xid?mT%eJc5=T;t@iQm_?Enb}G#CQEnAhiYt
z&YX%XId6aG0a(SP+SsoNLY0W~rcgl<bDYRkZS`D`_x;PYsNye1@#hbL=6gD{hd6nU
zByK&OJ*^BYA^SDfAK*z7-<hSIMNrd~#B@YF`c#5^$3-#+anlcR{Dhs~Q~V??b}qEr
z@zBm^x6&cs1JUb*8j=1x9R=IubCQR~1?i<1UukI9zWedBSmV;^RR}I%J`w^e991)%
z0<Lk45E`AgnOwYWeiE<Ku^DV3eKJ%iPIX@NNr3hz8)WqaIV#CC-LxlyXXKg>stqrl
zUyc3#V(>fm#12{)Bc?`~{`zU!qyG1%e=KGN6MwC%_{cHV2ujEi_To2E$5CeRgW6I@
z#Y?dk?s^8m#KhuUyg*s=le?WUjqxPIk@wqTuVKJRM#gnC+=m!!SP2mxqp_pOk>w>o
za-7PTAn)zuk)RLo4c+%#nH1wZl6rN8&0ZxFe})RJTC3g9#qUeAwXm4uMJ+FzUhRFb
zGAhV&gRC>gYz-0Bca3&zo1Q@Ps9LJ5J)Ob#^EE#sb9~I_>oT2}vt>`#*bMVD@L3q7
zq|Dz3#Sidme(o#WYmIC+cyd2?-h1lnU3a>M^V^l6sQX%E!=u`H7{Xp`@M`$r-zh>r
z3*iive$sjh%f)h^3ghk($1NntcU<aQZ3^R{#`m!~gJ2sjs#^U<>zPiUWWFBM1bjrR
zlEr=#wAz02?f%dbPbbt+3=jd2dxQ0|`9}HGPh3J+TMmu9kHtB!=Nx_xiQe+(dVjsW
z+_!Sx+tMzxN%0_Z?98d8K7BQ(mN%UIfScVmYnmu1vP0!+?O=bI)hL$&3B{X9nT^o4
zB|B}<O)nK`$9Z@9gt6FM_VBg!AS->(%VLBGBK=nK%~C*|W;oF#ON*KskhTs`LvvVK
zT(AA1Pst?LG4_0WzP%;=TKW1hz}IH1UhJCe$@XO3IIXtk3d3Tx760a>?o<7{F2!nm
z`Fow*qY2+M;>+b9j8>Jh(kD5=@xMP`7&dY6cIvh~+-`gOD@mi$BEU_>d?O;tw!q1F
zUF32T|L$r44b6I!$IyE554kjUgOf<NeA*ToU+D5(&QF5}QFHwk#gzyawl}&}c4I`+
z%WvTAM3S&SSd$je8-wk}-rTwDXR~kQd~YEan!}f3>gO9yHyx?@p&WX<%!gFk{qplb
z6%kdzvG&BfKd^d(bb22(rU{d|4HFvQJk=Lxy%&5|x5jcAh3BqHwoS#SAZvZWzs8_X
zr3)9t0hAQ}#G^W3PcN02oYPvyL2Qz!q~kP8o9gy{)P_DK;4xw*@OIGW$Wbe;fBc+I
zCp1)PkkySB60OZe7xYd_)y_-Epitm;T=;Hf!*;%trG;FlLwu%ND3Mv)238NZN>YzN
zf#ga<J)7~^Z!6W^@+dLOjwzX&8H1U}?!9$gvufm!70e+TyRF>1p`@T-X8W4N!d2)7
zy!0@+Kr>@p1S=5Tmm`@d>tDp{o!Au>Cs6R_m*?X~rCHy224g7sgx;r0f*3qi?#j`4
z5ti1wB+`Z}mo864;}o@q^07w=CENlXh=uLdfoHPDU*q%?To4ZHo-`X_IOpjf$LG>z
zh7LZY^p@mqt9?F~TX*Sh`X)Q`wEZXQt*%H5+eb8UhNyjtFlX)fgM3SZS9H2J?3QIY
zaRa3LF5jV!VuAnk=GYb%gj>+XmrrlZZ9M<l^EAix=b7$X{l8)RuWtFjo?~7Pw~h3_
zLxa2x>DMrBrp&1Z@)(ivIB5|#kYwvTM>llU*0(kDHyt-L66-f*Uu$Uk5VD_J-r4nj
zuMCTU*+wuKT!ndq&1})Hok{?NfHlcyIP(m@TAEOyg)eQql;*_*EW=@5?uaeSOt{7Q
zFqH<VoG*YTu*c>OpL?5WA&JY5l%@nqy*ZGj8o;HqoUgH2OCa_v6H}ZfP09voH+}Fq
z;8TwIP%^VPwSW?GK*ng0ZB=)a6enUB{Yb5``Dx95y6m#H!Fjsnz`PWwG+W0wSOLFe
zJmF$6LZ-<ko6a?(n|e@}&^3ltt24H><baZQ9&lGTRn)amV?%~3U+EUD&3~{KOW)tv
zF?3?7#c7Qz_XPB8*Lo|V^u_z)fV%eA91oY<{7TU9QBG~h?C^q9tsEP^^;~v5ot3is
zy_Cg_UKUTBCvSb{U*j7ytWeBGIW`9r!Dry+0q%7RvXo*ZX227|g3$)op;XZglc~3-
zZ`0~#aT%l|l=66|eC#l$F7~;yh0!<mqF)Xlj#PT&led1h)68OcdnULl{Ye-8B9<8N
zmh95=$nZI;UbHm%#=rBqnu90?-?OQfv5(SQHIy~dY`$PUwWL+6<;k*BDbM5`HkH#V
zCdA}@<A4i?^#K4^Q|3Y^>ol(p-C$|0u}P^xQ+ubh)pVFZcd+!J;p)mjqi!V@>}y)0
z&58b&Qb}jKNhf0H!rLiZVduaT@~Ju`@-jafQ0=9T>UG}5({7v+_j*PCmkCu%64vEm
z(njg>`kE2?S&(*NF9ddEN{_s6_qjI*Klpk=UuuZQH=o2xQ20d!zV)!pywXF+rvE;x
zuxPA1>HNwWc88?y>YVa8rK-cwa2bk+fQ=os?0F;}wG2;9O?^M&s()yB>SntvEylVs
zcD$V803Eh9IUHO(N^|6|&bRH?Em~$X9{7VI+SVR*g}5$N^VvB3n$vxnU72Svz11r#
zPU^$^A34(f!|52wtj5TgA*0sEH2e<x*)vsLxCsv<5<^VNa*1?Bdud7|$?gN(`A}KB
z0>%0!lq;8Qv(UN3q21_!QG4eibxzUo!63`9@5+1yVRR^a9earGcB!I29kmORU6Iy?
zcg+Z~dUJ<h<(>Gsxr!?mf2*eC#07sBbK|!}R>mj8rcsRMd&M*u!Ww*Rf57<^RrYE@
zEyFn)i4LNYd;%85Am2nu=C+N;UMXb2nP>UgR_ZO86B8Pn_<L<p?88rZNdfnQ!uPr#
zlHY!8o?vH3`~3@;=x50VWYlp4>5^4+QDmo-C(Wzrd{)z0fDR13EzF<zt*Corvg@@o
zUYayx=(xD4nX8=tYgr7FgrA<J^(?39Zl|`=qm#Qpt=@lmVAwNv-n*NBkLM_^Vk57A
zv8yP@@@~uF_*l^$0xBD9NC7{52;ZIJTobXk4ks0o)$_DXjo8-C5D%1EN>-Iov{|^j
zJF}Gz;3rb!n&v=WopNm*C$Sz=YO(SM-t9_y*viBwt~_>l(aaPXNHDivKJq598keSy
zLW3nPER*fZ33QIPdT=1&n5_x#i?}~`p&Dmf{ia2NWh*^MG}XV;5G3T8+P4)ucoAtI
z_(}Xd`Qw%4Ezs`MTgzW5D$Q3kdp@rUc~0jaHf~(AO`&QgPsbw<@=YI>0N_y(v?P=B
zcb98~B~LM`#OLl5%Xe^L4fj_=Banv?+7vr0)A5O#QsW`E<F^S9#*q0TI5NZ5wA`zk
z=J9M1CUgd3I!kUF4k~bB$+A(zMus4$nbN+3KH`;x(*|$*9=tm$@m@n6ey1Rab*Y%g
z@X<k;g=C{ey*hSAh`_dEOzkthWrA35I!c4jo(XywkA}PV5Bac29G<ilGw23^fFOZE
zM7c)z-VD3(O`0@Uk!swStrz_gpqlmUWTf@!Zuu4T-SrpF4{0pvJ~v_oy3LhqKTg}X
z?&f~VGK(;nQB*H$dyusen{PEiwwemH`eFgBqbGmB_N6&HV7+libg0?|y%f7;J8IPm
z@0I;wS9}=WKGMgw5t@4naxb<yH@m!TpWlbElY0yz>7+$!r@$G62DN=b2!!Ou{7A(8
zF}&h5O|S8%dTAoRM|fr|J}J{#b=qFdgzwqq(s-ux21(DLo#IF}PdwTs61261_L6jD
zZ}o>Ik0{d0WZ@z9_r(aVI!HHTq-(bimGlKsNzOamd61Z7!~l_X2*x(xMJYP+M4xj}
z5xz$lolm^SL<X!@`Z}h`oJpT^6O?_c`S-=6hJY{laFI%uXnNfA=|fVpUCv~gt}K0=
zH0R8~9=VtGu%V8Sob-g}`{|w=|Kkri=LG3$nAd8u0!Od?hE3zJ^YxCi-EIz8AfSp^
z83Fpei_J3l!En!v4KCY03xT7S*d<Sl-t+o_Z1tIG{Eyh*>Yf&VRd__mB{BhAq^l&H
z9jb{J;&6b##2vQ$-%$Eeb5A*%IOg~AE!QnFDOG=}_qYnxIO`Zk&cni@O0|n|&B$3t
z^cNy_rr|)YW}Rb?>uIl2_&tBLEfi*^v9J#MUNn~(buU7;?%nTVZL_sqhy%{ZW_aei
z>y#?C^u{Ws1n5ewYZe~h2h)8Yly7zyG(94D8D)v56M_b2^z2CNn1dV^1MK_8FNtT~
z?YhgHm2i(8Q0h<|#?vav^@rUs$lL`QUi9?nPl6kp=dOegQUt($^C`m6fnX-U5Cw1%
zU`8zrNBspwCY4|P*1R#`vet1Scgx31CF^Xp#m9Jt+oVGHAeyPuXWa)NkuGquFW3pJ
z>T+AS5*~RSbkStE7bx#LGG`X@(ERkpeX(l4O5jkDVa9sewEs0JquOxwlHal;mU+9N
z_FW?jqQ`U>H@v`rAz3)Wr`1!+Z!O9iH-BQbyz!6rE<w!{m+MWQ;>^+kSQEmITTM4R
zobC^?bf+t>t!!}8kr=YFQpeK-lT{@$QxOm9LdlHeJ_6FKOB?6g$F))n+)Y9@xusX2
zL9OcPK*F<HM$vDSc_YN>a`9~B@`|i{i5Ag1(z%0r27$zbI}0^I`zp3s>YRbZqFI!j
zB!7sVIN!OB#PKl<0l!oC_8FqrdrVv1jy=A<o>OsrN%@CZ(7VLgK^DCpJhG3|WL&6r
z?vy_ZX>*9&dh%n%?Tzw9UY{g@JhWdYjpxXU;at8R==^D(6kKJwP;C=2C6o>v`EJTb
zvx~Wj<j)$U!z<tV7=LwC9;(P%YyC>Q)-uJ2&+fWzPCalyERUl<D_U5Q_IPTup51cI
zBEX>i6#aA=s(f(^B)74jx;;2;SDzU2auRNOT+1f$J@Vxn`gz=wj?qi2KN5G<`iths
zi(4E(jPKs5{gu*cp!8{amX6(iUep$uzWArRbaja%(MLC#bV1i3$I6V-Uo8fE%tz-a
z%J?1wwF~Xg23deC6s5&>*+($FuaZl9vzaB=;#1nrY3bor)BC+9<2i5L_1F}&i{*02
zJ$HrwQW?(tTmGTGX}*WV$L2y8FA=jgw5T$X#lX>*iYDhPNAYsj$-TbkJp8#{=xcqs
zBbxL)7`t>=OFjYE5@Y7Gob_Pf)1MC_J>>kl2HV?z21b3!$mx6=pSUN+!gSc%!LBm;
z$k9JXh!9>nQFO4n!IR2gt#GLzp6{CRd!MkoKOF`4XI(vLP20>f3k_<UBs?4s&~1@;
z-d3y(WGsUqUA2NUtWIQ+Uz#|-R-Y9;U1eZ@YDsrCn9b=Suaj-o+t|!(4C&+YZfuw)
zzS~TpMIxO<E-HL*sFVl17(=<9q;gHdfJC+?TkImQA%O~+h-TvPAMMMi<5{Q%)NDD=
zyq@NKkH5PpMa1rvHi)J@>@B?^R_;JH)nFDws>pD}2F;8J3GVtM2|F#@%${ZePgZS*
zDqe_vcVk6<i<Vdt+w;h(L#7a+Y?5ZGSf<9sbal`5{piBd6ES$z7!MRvE)0aSXc|T!
z^?RSUtX0YZ1_VUYf4OwKGq(eF%h{{=NRP+Ej=&SsR-c|KfbARlzAehT7QI^gn3o$P
zSvK)Pi}qPw0>%-CM{-sDcj>;S;2`V+Dw}$((fUU90dyC#bsg<`m!H6sHe1MTQ5oyZ
z$815Qmg^Crd|_4PmQ>D(xJb*dxh|#4Y*ra_JuI!Df`e%y$70*&(z2$fIio5PF#fhy
z#a&#YqtT*k)kU&3J&TZgYqfQ>6@sjl-S#R&PJNpC%;ga?l`Zkt-BqATKK|FrfB|bB
z^wGOPqah{;%382@&&~O<Kx+&(k3JLmPE8;NzD9<jwaL~xIp&jmc3PVJh>(4mlXB+u
zoVpOVD0S#uW@a}<?<3TfYU(WicWC-b(l}<}41nJ!SZ_i)&Ffl@ia9a`xG>ns=XVL6
ze_T2zA~X*KBGbzSe7L=&jU7BW#dE4yY@D;Eo(}nBF`_=`2uNSr4LW1fLkeonJs2uG
zPrY^+XT){&tGCB=YML+Lp^0FNxZs$dzQGt5T|g0Z-MzU<1&?8gQ>t~0+Axk=62S@0
zKMvDBwjOtzO3YS3sY`EsA8#-qT%SgB{nIBzn{6uOGQ8V>D`3)z)VJGB(qp4Wypbh2
zyY3d9F(Oe~nf}-MPshaW!bgNFBU;4^Crz#U^Hust)G{$^Jm>g}RN(v<p~Jk$bmhWV
zm^w(d-uK}^pv5nPgi?_6Y;fxa)~-Ef_bdO~-j&zUt(JG_YYzZ)91U(ZJ+h`f6Dq;=
zI-Y#xp-EyW<zR_-RnN4(=Y~tmFaH}%l&BXd*Oa4TNIaBqKfMuMnb)Vu_!2u^Uz4;o
z6JBM*7Q`44iPAV=fkVtd;D~o`>n=51MA<KG=XsYOa08cRD27s~fcje0>zkpx=@VW@
zKW#=DY(`FpA68x8P`rH8%U8^l2wY`@XCZW3r-)0ot*iQs_r^FdSVXK7orS~_OD=U?
z>UV@s(?;&H3%FW=62Z59x)ZhcV4SeS4;6qF#}BqzWy;g+B=Q&H9B2J5!lS>`g-nS}
z&$}w#OVnh1*iawYMvP3xEw?vSkaT7maTMTDbMYuQir<7}+uD7%utnK{u)hInh(rb<
zmeJ?~ibzF_aW)VPcHjs<=4Wd8I`MwdPrc}AimtsJsi426RFAsQaTpE^8BISV*iVhy
zXj}mMm!OTkzK~HodKZ>@UfasY-Azud@DU|r<7<M)$;HkzJ%wL4x<!7XJ|Tw?5U@xY
z7`}6+R@fuf<dVw8HZy;3yl1@Suj*i&n6O+~XfZpO%inMl*lnp_X%RcD&-CEwCZT1J
ziDy~+*)oKp$$Y`)s9~68Ve$+MJhh2%=JcX=>|%U)a#U`<bAGH<On_MH*CmZ&Gl92t
zN^pXo-9)yCENQsDqRWwh(QW{CO*rY-YljkfF6)&3qN@O*P9GALHG<%V>QNCyPByr%
zPWcv-KLH7{z^u`B<1#X0WK%5ZF9cJsF(a(!>rrj-^!H|SD<VQm4QQUKk1~Sa48;j9
zEhMdoAvz^uUkMopQl{1tJYd=qg(*Gth}C*dE6N8fT8$KMUPI|iOd;70Ca6s@qtV(@
z0=i$WR@`INkwIlQFGtOhjzZt^6E$|HQpc(^i*I=3a*R5i?sz|0;Q8EZI#qmqlRNUl
zjaej55J(L-Mf_WawehxJZYu~ci$F+qgxE>=9h8Dhpmf}w)ooz#8*lsraGlX{%A*-$
z$`CONY*4E=BWdHiN~cVFAIyV_0Q6OBlrX09F(6BGUS0Bwek8Duh>nNtLG*Z4R|XlU
z!aX#_vS*0h(#T&^1O*9gLt!GuahCeDs&Thb|4BTt{h@(So|@73p^Z!ew}NT_1bwqb
zWks>8ywhK~RRs#gdz7RPB8(o`QvXvywpdnlawy98<uwaJSlAyvxR>x`l-Hi??butq
zfey=^I7LQQVNNRTj)Qj_Ir@>89)h?WYh|lU1|`-%gS)8^T8p;pe?%7@11*aTD)p2U
zv8f=Gm#<()?)<E#R4P}@)@ij)<f`N0Z<(>=WIS$L!O+mMwb^fIO<u<{S<2EA+!~l5
zJ>7Y?Bm<&T;kA1-r(zI9?0g|70KRyQsIWLo6@<9PES4^Wbg}c5Cd)8iD;{<Ej8CLl
za+MId^CWPF`1P`7eu#Cz=vJE;W)C?TaY+g{mfLBYkF)m*$pvr5Iwo-QF&~Zs`0{~p
zxHa$5Au$o{kIg>E;DMJ*5&m=!2Opw&+g|(786}o$?M9Gcm|?i%#EjkkQ_gxA7jhq#
zV@dq@9m8z9hqJl$Jb55~fI_6nHVxkCK@EIa1D++fd0b$qi?gG5u*Xuv0X(V`_+S~`
z$QK3Dbf$~c<50dlf)d^G;ss~E)JG8&^3{@8o%M+J_=sy@!#$dAc+6H?!g1~9*o5Ru
z>{j?Cp;g`B2!PH=UD;B}@1I;Nf87;xTET$J+xo-8!)~-USE1Wx&5}Fc#XT3RD%q`7
zb&mFGCKs@`%9`6VUe=y<HNNzrd<omPkX}}c*Y3SYrcLwIPPVLmkr#B@WSm%ggmWGK
zQo8PG)%~TnoL?H@Xrv0k2mma1IdPMEaQWycEbg)>G}hfwE>D0Ehwr$Izm(>@lm<Dg
z)GZZ*qdp#ZAEn&Y+v(H60G~OyI7qi&#{>niOkRxgZJ4x>BG>&uVAnUG9d&RA9m;Qi
zyBa)oUdVAZ9T~7GuQXKsgw}=ixwOG0ZmUOhDWTOmu79|7!<H;B`UQ#`^8RA8zSz_L
zG?MO<o+pHJQ3V~{e!KdDUy1zdWjuZUYCFEU*y!8N4Mez4IxgRdby|@hG&KA3UpQ$s
zle>8Q6lwfErgTgYh!q*JHbv~>23=set8|Rf9jiz}g)fq!eJkoiZ45<}9wA%P7Xus>
zo6_+2gTP7)wH8DP6=Gl{@{e?Zt6KFomKgR(&c8C3(_q48bUC7l*kU`y3d-SvYFHmc
zebgWe1(1o>AuShVmFZuvnC4C_ICM(mNW}A%h|YbSt2&C(x6jLVdDQ4+#}bebJWT}|
zNnCGqA>NR;Jw?;%^T6XDI|N`XF4~M}+g&Ek?%P>k|G<~<j97DR3eIUK55)QYIr84~
zH4SlqsjMTO%NN&W{$4jYFE;yNY#$qv*@?hQb`JRa4Yi{$>vGvH)!HmCof;B9=q<jM
z@yqjLxf3?_bABZm!rA|WK~+iMi$LiDcNnO3H%pn2>^1UOQ1p(Zib`P`X}4K=K|tOa
z&K`elWQ3rTiOnP!L2u+Zqm5G^?axFa;V=UUhvl#%%EWxFg%$AAv1k~U<4jRvj8JF2
zRS@Z*ez{Z0jda)*GBfWqffS}ZlT-P-!8k4k1e<yA9^7RM)LZ7#5f`zo&5D*D9EtC0
zSrHNCgEe#DU?#-YhB(lm%Ya36>JjmU8tQhj+|DLG+^yh%?@^ZuGrG^-0r=b2{Jx-D
z=huvTr1?=Xj#hvN)^TRYL=7|pTzi_SN^6CNXomw(1?#EyCV72*16GYns!_2B>2W)`
z&5(hCDcTJVSvTR13m)KGFcKCwg_V}4G~n{YDpJAy@wLus{VGu3PGG<HQqBJP#Ke{D
z>)H-Jns#|(fI#_)syJQftVbYj15(B))A{fw6CTQ_1;O5$<QS*3dT)$I?&6(_bcaF0
zwvKT)b&ORJyiwD)mSmY1;;<B4i8%~jO0X6Z<2%}~yu_LLNZ3=OFCq3#TZ}k*`#Rim
z8k}i!h4~tz&iaEyY$Q(rK7Y}*>%)}5AV&hzf={r+qS)HHRjhrJotJ;oQGF=H`VP^a
zR>3piE^guGja6f+JRG%x6G}#jzxsU&(W!Ge22thKG}#Tty8ttPtg*(6CAbkSGL~yb
zZx`U!?ckSM$Q|Kl;=QAmJ#7r11y6*QMuCYNPjD@Kez}d!pu7I-^WvYUi)j$YDgkEc
zXThe8vbBdMM&=)1Vey3~PnQ`q*`qpG9wY2#X5E^@%<Dv&mrkGB8ciO@oh1TK)TP~C
zXk-#&rXRxvUVV;nnFlzcQcSbFJ}a&>8~~KKi;tSWI1;tQ3V?Y9m-(?=edb*?99`l^
z<;Jc_K;Ms}M6Ub!x#-OWW{PHd1kuk_m)_!><G{VSY)1vS1QlxO2kMAHLFhaa_11<P
zYgL~dGn}nJR`?e_q6+z%Tz#8gw80)#C|B!?v`7Bp$7n!qiUx{5(Fdu_MPv%!!w)#!
z3@BJ+Sj8}iH@WR2&YepgtAc|&dTlpLh3lxBu3s(a{c;JW>Ivs^OGIR!#D>a(h|=EM
zk+lyXkgB|&1mLa>L<zOejQ$9-)9&G_COCDWV8QB$sZY{w9`lQ|L)-o&9wNBA%Aj}4
zKs<B#YQJV;EZsmKyKs;Q9RC}%{lU;TYFIE3Nz^;d=lm)d>Ga3!OQsfQ-rcGPj1nTk
zNDRgmkuH4Sx8G@Z_ZNjy)wz$NTOC#@;S64|bR)BD?*F=~Z2|=Y2?YSP+@c_miO`sh
za5eZwtL>#|{K84~-rLQ*g_^HHIKB&K0)iUdWK?bll%~j{Z>CE$r#3gP1GX0Jk`WP|
z9ywPiw+-VM_$x{@LN;*wxyZLQ06a=GnbpC_jSGA`{zsSd&colzzb?2#ouIC6;lgnZ
zkoo1|zAaBaQmk)40XavHt0%4IVJr_c%9cY?`v6C_Gg6(X6bz6E7^jEOX6!Etv`HSj
z`;Bu_m01q(p&yBTYbT`XY9Eb$or6-S2d)0635$;LF!pz~UVIMMF^i+Osdphi>Ll!k
z+bM9@J*q{Chq3c0zP=sz6|J{9tHPX>%Q(ZZF2lPjPd)Q_X`5IA@MTX6{S`85In8Pt
zk3muq%#Cz_z&QH=U%z);E8R>UU4?qU0POW*irXMV#fP#vkddz(@cBY(ywO}*cx&5_
zo*hH0(qF!X0<b8t^oF!-=CgP>$@LZz`c6lC4QR&UPu1U@M=Wpzc&9OKLrJxLeba45
zoJ^gCH?Y&M3OgfA_ZFL=ytN0H#d~+fX6ZPfy)(eG$?>i2rp{>dqze1fsA3#)mD*^q
zV%Q@v2-O3?7>V$S;s`;Dr^J+BV-+tzPFH{7_cA?Nf;FozvMr)m1XGxYgBG<Y*nA{+
zDBjP#7yq(ba-|<Bxd<BPQs`=(sJvg2SKk6Ynm6qa=nYtr6Z4MZK_bK5*6`~Y+B)z|
z{fY39R!}dss<^txX1*8cT@f4=p{p9DmqjLle6_{-hqfD@>m!p>vheJD1C^_@eZrOW
zz0XDl8I2^0M8}4T|7u9ns{yV>jMt=J0Io+97>%htbL41Yy+WlZAa%=LRs#Oss28|U
ze17ccL<Ep+UvgG<YQ&3>>o-=Oco#seLU&U;JxZQ_?t@e`BU!Hd@$7=LL3bn(<8$Kl
zepewz&W=|O$le^*Ep$jAXjy(;;DhKV5VYIt>u#u=bl9KnhW5dd<zvRSf%p8~Uyd1%
zT|u`tS(T?^Ue*I-dsHN8LY<#{n^+BTsrDCk&}80N@4a8QB?T}sF)dY-V>OKO)qNc@
zv3+PmF<$d(vroxh0Zo4v`$9=g;_!izB%!SS#7d_%!Rsy{&x$d`=-h^~K!IDdVok$9
z`!Z<BHKnChach$hP4=Ok6iT`t*@@MSK{duk3cB?5x^LYA+5ys9Aozc5Yc0D<ylNd0
zDE%o_D1o@I4RV|$o4Y8fDJ2qbiR#v8DXviKGL(t!Pl<Opc^m=LHhVWINMybGa3fR%
z^B_+$Qc@LMaczGEPjIJaUq3ocv_OAbeUmUWlhl9BOH7Wz5|7J^3Lz~$u1{sCb=`8+
z-_90?s|TfSRm<K*p&m41b8%~QuR<DC-u|7>I+=^JgQy>K%Ab_wJ96({(B;(3=;hkd
z%S>y#dlPdr0#hV{CeS{ca2kD}Wnf4e*QTe4F6Ajju}tOZiD`T3!k4?%G8w?oK~n%N
z+M$qHYZNU;YRSdnv|7uxNiZL#9rLd}Do>Mztv;HbNzY_Yi`&H<nriZ<aD#lyjJux0
zW~5DHJQd0}>Ln`6$dZ?jYn~*ce21BKNyS&3Ky8DRPr2ca=)r#6v=__P;&dErcj--F
z+xB66DEBo8;nOz+FO=0Jaz5nN^!iyqH8szHV&QUC{~iZAFc%x+?G?9o`Isxxm1(fQ
z&+^F<%gPE&`rK?fS1Ta9ei&kpV?(=4HcUK6d@iJ34FY?Jup7jL&S#+(PkABW8hUvG
zU5<T$azBW$Dl$=}?0DlfZbfA_YbOHMI^ZnR)V(-#)Z)A7U&x}m9b*f?Kp^Na-a$Ap
zV>!^pUFIg$;*P7Ao+gS+bCcvHV+_O|giJD+W(6D06}aQh*O+~ASeu2r+~tl^ahqze
z-WrjUjChI6m`U)F)XMcK(~zDFggF$ja{S3Z5u2a8n6gQ`lV7#w%qMzI2tcX_DDUG)
zn3bx0%@>e7b@s@-t51PQ@o^lMN6A*<OExfOwDtCo*H043XXRqAT~8i~M-OX6VcPO2
zd}cV$sc$@bxmWia`zQ*pxc;FPEkN%xQK7IOK6mYbZq^NXl!kZrqOsB|kZFX1Y>Tr9
zGe%fi%TXE2uL$W)jrvM$;wl0?=IDJ~QV#<0kbBZ8PF%v$SDVQ<dmK+3WG{LH{9)RS
zksyzFN(|*UHt-{VwM}ZLA+y39Z*4RO#F@0<R}xqIB<9!Hor)_>6h78qohe;1-%DAl
zzzzT=i5MHJ`z-`hmX?{{op`$BP#4|Zh_&J23iC<Qk@sWL>?+ui1TE<p=HW`Qg66pz
zKfqx|2?Ot(Y>P6vFnR?d!?}yTG|t=*t{pO#HG7~^4$dAE!=Nrs%o}&4luveKVYdTk
zTi5S4bygUF25ngIWYG4d2H)P7K{|M9bxr_G@7ib>lgxZJ$)(*)YPGHdQSr`rxLVR)
z71d(Qo3Erw_u|7x@&(G>pXF;i;`-h(!9#9l;?YFucLg#d9op@kIBE?Kz-g`SScgw;
zJ+kwMUhi!!dxep4>P$dsxsTHUA+JwG1uoBty9W@V`}qr{96!~{VvK;Vo=)xo66HbL
zsF8$ulqw4Xt<7?erS30x&4IqvD00M^P&5RKO;Y#?x#YxGSM0wQZuZq!bSAJEdn`(s
z+^(0{>s%ws{f7^bZVz3WlFf#JZjp;Od8V83v_~WD<>n67H+n&gIxB4Sdcwuxv&5F+
zDj$S<xk=!GG+zL{96@qEBxuO1ypj}Y8Kf0_t^2o^9C3To*5p=vkAh3XjW(po13GvU
zzE8(hG}NZL7jiYhUg*A)Kr5`SwLZT4;K%L>^fUW|whi>FJW_rN#DgIr$yUpG%t1`2
zr#4_}Bh}Mss_-CPPO-$!4Z@iKMkd+S7oDiqbw64?b~wz-k*!Z1_WnrN65vi8^gGL;
z1D_y6;$D9ci{JEy)3cMT9Knu-Y_j%eALzTe%|Wzoj}OLJc@FYkXnC{QM4_3Wlt%eq
zM7-hx<$UK-CdB#J3X=uqv}i_MOI&j{{Pz+r{L2L+SnyA=S=IWplwV{0YW!MM{aJ7Y
zR(18x^zMfVI_c-_Yuzg6^a9DetwWHud&z!<GPG0X6~jhRpQEe>uG=W1MvDkw3!^XU
z5j14c+sNVAPVZO8VP%I&<<`V?2@okI*0)D;x1*8M%_ps&%GT^m&JEZ_y14htTW(t>
ztu|zoNnPOgS&#GLw@;wqvi%@SG&y?Ag|vA$H?UdDbHSCySM|1Zdeq7|dj-#0h7_wZ
zCj=FS1uPwl9+%`2lE7D%bV_Kwy5W?y(p3kb2~f%K6qt^LxiiRW4yOW!8_HDd&Bj8*
z$HhBKDX%a@|75m=@2YY*`_~0PJY6l{W4RvRNgF%MG&{Ey`h^M@(hg3JIveLWrby&6
zf7sYN!tbql;7_tsnAH!Y6kRH&oUR-yFvxp#8y0yHwvW#F<d7aAM{dd-ySR@jv6gkV
zg8IWncS0&3WU!ra##MWe2~5fBb`@AzA(#svn|OTFBjzM}NVjsZaVyE2u28$SXp-TP
zMRv?SfF?HCmF~8_So#p*joM|{!)z-AGN{|<y!#Qo=H`xZp;f*&C(o0{%WY<P;!i%f
z+J4f|f<+amV}pJ__IPa=@DT7lOfjeB?Y7%3v${enye>m~Kc-UzMXKhnNBmC&FQ0^a
z@N}Y(m#-R}i+(OtxM;JC0^M}3(b5Ub+yP4^;k}kg;C<m@Hlf)Yl6*aPfkUv|wG%+k
zribtjK6BLl(NN_iPV?vUH3(r@;`a8}<+B$ve?Yz-TFc&Rid6fn_riBry$+5r2aQ<9
zDcjOP(^=2kv`@!jR%JJ}Uyi@EBkv;l@JzZ1cfh~Cp)9vO-VLnd*xEsIWJQIE$C;!_
z!V|driubxGr66iV=&|k|QZNJI;kn?cA6eDhDYF(^*aemfb`fPV*IrTkLVw!U-^;?m
zlvMqDtp2mN^PJToerZ3J4v$(6%Bp-G=QW`BO+K!c8*G?Igal?2ACc+}GLpCeBaavt
z9J5t6K4}oK68J=_mv24*;kE%mT&1Awk>%(uLKdDQ^LC53_troSlxKSocC?MMg}bm+
zAH&{7GG56{b$@k_7dC1nz|V!VnXB1oA5zcOhSy{Y-IAC+(M5WP)MS!SHupO#XE@TQ
z%c0kR!}MgHM33uNTF%-eR%J;v>Zj?^Xgyg+g!Z4^p#Yb(1=Ffctt|sGILyH8uk+Zd
z`eJSE%Dw4pYk2G9b$w@p`(l!E`Na2hcrL@xSM6qWVY5rW`TVR(BT2RN?=>6Oc5S*X
zdmowm)9VjjI8>ri$JE8|aI+}54_nV4VcB?f5d%i_O$oNvDCu|>${}kU3e8KqYdR|{
zSHdh6j|u42@{bA5a#c5~sT2FIPWM|qi*BMC$kfcdwJ`4=W=neWNAcB{!+n&#t{X>S
zU%v>`UgBYhzq`N@9Ej@iqpWHC;%uY6eZt!Pp-VAnAm~<rr30hiW#iWjyEO>DqWk^}
z)G@>3RkBSjVSnDji34ER<}To%;RKbMX#RHVvcY))NjtYyzV>XGTzk{UV=vZL=9d7l
zD0PxV`KpK(lTk!~obpj-;*v(M^=Mp2rqh<h&hOKk{F1IS$?R+VMz6?#)`pt}As%Kd
zTezt%+1YlN)A5#90R8)^^a<Fp=o1BjpTay<wYiOT)WSo5?Su1lPf55lbK=60jkT8^
zw0?@R40aD;>_CPRB|JtcJOcXdSX`e+t+0x)T~8H5JOY9fdZ9(p(Z8BGZM|u2V8v5r
z{4N+Mx}L!SRjSl)fDY&UNp`05K)}Ml$RxqG`7Qx-Ak-nqq!C?=ihO6+4@i9NfbqV&
z=VrKJ^(x0}>8lWi5oR!*KKGixDXQD$syn=1pC2N!PI)K3J)8q+rsJ`LyG!GDvpTxx
z{l3l$xy_M`>KIM>OM{hg`EM96ilB@-(tdcy4C6}J@hnj|zuuM^PxO&Lg*m>Vf(-Vz
zAh8Tl7n}4BI#5o`3lv_IHY(aEbqqwcz<2u@P0}|FT|RYFn0&p*t_4J=x1-M_`i8)4
z3ulvdmUxv`aS7`ok=PFnK2G1pv+Wkv1I!Bh-yUJ?cf$6xiAVr0rX_0CVTgrJ>T{3(
z`-2)NY~&-I#A;n(wb&v_M!@!=RUEJX_6~zI7Kbh`M{nr!4gFJZ1#S|n_m9+}!O1_X
zra3m@q2on{6KG$7P)jPEq-RtBm7QFXmw8TP{XN0sB3CzCHq6EO@8{ZP{E<R`U9Njh
zX0G|^`$ut!U)jrvUk^hbkRtmcJuxBDi+%n5F=cs7(U(lSQUO}=;caJKn>Ur#Gd=~n
zOgrrSi^cRX1`)ye9`<^Mo3be5r?ESJ^os~e7&_rUd@M69+|3(T@ctsh6hmU{?D|-x
z!GipFp}qA{i|vZH@D{T!i)2K4oCV&1)JiE+wwqI2Qmfm=Tg`f(Mk6Dm&kjq4<2ACC
zC*S%eF~*OerEw)fhp{niT{+fO4ddl5cvZtaI407qHcVW6xwJ1K*@V(Lic7FS1AQ+Z
z{oSd2>JRv$GJ7=6+3uaml|FkmN%d|eMrlJaGlGwDHmz%)ag?l2i;XKSj|_f<|KMKc
znWB%MxEO{RQ42Xz&AV?3zQ#{rknmBitr<wnwx9QYN3ORQHif>smxHnQN0hh^Zz<{W
zR2MU^h9T~V`7;>*oe<plZsXM==sy(gP3P}b_3WXuKa|-O#eV6+QjNikM?Di3O<HBu
z>iR-SODeb$jauE{b8}k+&<`QTXjNj@&m2rh#@VK+@oQopy(e+Xr&Do3F<9zKG5uWw
zeG}#qbrp8<IcX<bEqu<mVRTpBkD#z$2xUayMK3JX5+)iJ54}Tje6Q5rU}G~oCKRhH
z=GBEY)ui9oL8At>!HN`zsX!3@#8ycHy_9i|&eznXup3|@oa$Vl61(vws%E2c;-7@?
z2^dVf(y)rSj*LCz&$1UO{L!s0F7!vt<hcxAktn-(+Q24>f+7+b0L#Vh^|LdNI!Yau
zT9+j1xSX}1I3VdS@R`5J?eqWs`q)(<Z)z^`#inKc?!zXWtt!Eml}r1qEV5M{$Baj{
zz@<azFg{tV)xIw|f*}jZ@Mvx0E)0?HNkFG&Yl*uNsB`s{njzsXmrZU&>cIGeb1%X>
zf4ZSZb@=O*&ZBv>&ct_aESs4A_XKN*&fgMc>s%Hook$oT_BEvdu?8Qh-ALCk->S1q
z9FqFPyYf97l{mEW#EN;b(|3mk51Vak8}vY?DE0=-czSAnd<g8K*6-b?7wf`(>$u3F
ztC>({*m*JP8>3dsu$#B?VxK#^Oft8A1K5`4y`iDQ@G8sm9`-*TKRC)L=yGp3{h#by
z5Zf}h@>VexGDXo8Jd%rsfbN^mo*j8>JRPa3jOpLXx~pg^oTSc3pD6CNzIsXF>5PZ3
z`mapC;Y3)7Hl#g}pBb5b1D*M)Xn;&6{P-FUy`#1Hbj|3-Xq|)#ZVpoX!pL_)-i-z{
zQErWu6DlrV=qgWWUc9ydF8nSIQ~Ljy)`td!;Md#C0k=+c4KLvKZ~hdVQA1QLzSXD7
z{C$!Bv0733aPF6jnl%O?CxcSs<(B2$7lr1-$)w};&SF2*k4OVe9JOG3%m$vamVl95
zDnAom7u97dz;$@Dk&aAvFtFQCJ$z`$QAr=U0tj<`>!$Wy9=9J=Y3b>`?ik@x2Xj#_
zP1`&w3Z?_)B_1rk=|_@k`|K!HbXWB}cAI7gyA6DO<4pU;hxQ-S_j@P#rQ^!+f{$J4
zR&PwMTQ<!&O;f#OfnMmbTE28=K{ckIwtvBpmXNttXF;34+JX^=NsOICQ`>!!$D73O
zS)n3FPup3#N9Anc<{&Ew16+=C)<?*swFvXqSkq%gwJ25?!5kG^gms1~G!7eWX*5PB
zRPqtgLXjjiCpiLoC+T4+^pF9XPm#kVMpF$;r#Czto1@Vi<E7%2_q(?(xjvcGIPrpR
z*ZEBxm)dhp-nB3Yo~p#6S54e>d7lgUDwmM!iG}%MM#3UzeqJ0yEJdWiLvZRRKDsB8
zhlul?WjVylL&md&;)D^};nAo*^YKD+Z$ck2-yh>5%AEgq5&yQDeoffDu~3ZDB@)5p
z-|wUVIQ-~q6SvNm<`#C>8lim#RU(~bntrAyg-q-|yYDz!O{Px$SFk)QCy7lKuYMZs
zB$t?wiDonD)c1MG%StE4@1huW=C<RQ4GcG%kTtnqk^wDRknWJaVmNFGfAk;Hs#fDZ
znzj6s>cK@%DAGs8YTUOzmF97ipjq>kaKk&W+@5t`$l*w30ApvX5$O9YEPsD+(c$vA
zSd1*RlIP}>Z@stf@f>=}{Z6;NJ0SzMriJ+x5@{Zr%=H%yEvJvBu|p1o{9jPk7DMrV
z#*F#4s`J-c(y%n0Bw-kR<~cjrZ*c4KsDCQWWY18SOe!<JXSGcN9yey@E;<v}4s4RY
z{WaP-RYcu)%9YYwPFc-asIM%ZWXQf1aKe6`tarNE=}HuBvbZ@{UudePmH^~2DMpp8
zf!xqaNQD>TK_IRz=ZBpg5KGnL0-6z^OKrixRaL?-_t`6@_lA)6Mw^630e%7zXh~#i
zbciH6$6ZS48c4lZK;P6Bauf6~>XE_-&i##R6i=Q9<dm;TcU2R<!ssDkNvTD~d}kgU
z?FBRdH{G|_R!RsMdAOK;rJs6NpP=#qho#JyU0m<BjU%)|JWI<&52iAWMjok7Lrc%5
zp%d9jp%VY6z3U8XYT4QcMG*vP0#XevR6!{Rqzgz5p?44gLltQXgleb~kQSteND&B9
zLXmbU0@4MfqtZl*28i?`?QYM#pZ9P$-hbb}n_ughWM}qTv)8=uTC?_ycwwT%hE$cq
zU6~M_so`3I7YQ-J<ZU>)go(!8DXyF8seG>rxw|&^Ue5RS=XLp6^~Moan9_Be^P!k{
zxTb`|)bk8B)$#M&E($wFA_0h!ov#KPW0irAu&I{SI{0STpK(5LkN88C120`SH<@xW
zKR$lQRMu6aJt?lLm)R+$eCQ5Qexh$UC1K3aQza?xj-}a42}sfXF$>gai5`Ftva1iQ
zauxe$0w;5A!piZCw8CSQ%hq|;@3)JYx&}v>d!3}cR-Q>-WB6!=omB^_e{-!Tnc9cW
zPswW<yWrY1dABC~W^nMp@Er<#q)64u1g9fY8lw?b@uuTgdHj33Sm-s_mT&*#Vh6h7
z)dQB|N2)#x<P^yn*#1wepq8VF!*upR75KlY-=Ec5hk~@rsLTqlgveX{quf*U8`qPo
zyGjJ+IjlQV($f2~$hC>)ix~0xWr~Kns5SgrZ%{~vET`*Asqh=dU<Q@^Lnk-yMQs4Z
zp6*C=GkR%BR1~kSUPlQp_GL8)1MjMK(RlQilB6)`e(R1A9zQ}$Y$e(9<#R)=-f@Zv
zGM}VU8N?ZIQ0o@_MxDtGQDz%eAD<dulwT55kEq>|>fSc1BnJiFKmujE1t0p5c^F}U
zTMHFyuOx%f!oD4~+IbCyznbrj1>;4%!;uoq;>+foq5-X=S7DjHYl4<vsRQE#XoE%-
zv5T1j5p($sB(OQo{`Vu%41GjfWWl%M%ENVBI<vm^U;kE>W!#mr(~<5S(#K>(`2N!G
zx?sAzNe003e}cjv0y|A7wl1_r?*ToqIVa$dwIj!eX{ET&7M;f9?tPy7m#jM+kGh*R
ztJAFmgFkbRx|sI;8H7Lx1>zVM>3G}GfzNz;V0NJnvHi1CQmW#cW#WS7zn4|+F;Y`o
zx8xPS$7!`zxFqa9XljO(V%djj#3(7(59UU2Pt!*Dft^SFJI>u^F%r&rZud;k5*HPo
z**aY!OJWe62C~vlwUt2xCpDk@^N{~bKA^b(D&4hAqE$ahX2~A^CgU1sOj2dt1ASkd
zt=j8EcbGI$6L@XU$a8so)ovPs=6TATv6JmOU04Q5tu>MD;WXHclz?$LPocwlMv-*!
zNktPt!T1__di|_ckzQGSxS-ruit4K48EW|UNbGRW(f#L!^+TG@K9W8x%|LAuNVw@R
zEMp`i-B93JvXuBswY-Imtkb-H4y};oN0@7HvOt}fVggf%nXtPe_5=KIzhy3pi-I0N
zYEoQ6J9-)ooV-^|tww;~uS}iBJ$O_L-Iz8}GNt+flOs?X9|HOEq$!)<cZyzl?59uJ
zIroNL#^8$)>)aYj0@Kp7zVMZXHL$UckzLY+NN)AQB>54UJ5ckyE>FQgqK&>4P?s_x
z{Ug8E)vvFy<2mf=X`HNs?>RAT{4n-&Ug`_d`9_IeDf=1#mv$pwC>iH3PLQo7A}bj_
zNDj5Trm0Gd8HsOmt|Ew@^K!Z)eSEHh_}@s!``eiwW7h<}3i>W3Z%UL{ZwPHMoF^oV
zq}}e*O7Olp?<}$+Enk0#D^J;d5qKF(m602%8eyPqE=lOvRg$#3BI7MmA<_VUvg~od
z^^-*WOF&q05N)Dcn8u)kM6U4*le~%EO**E;SG^dV)GcC87+DQuOpJVam!|M`fm(3W
zgjrx1D{yoSZ01GV-Yg9xBYQke{71Ye{1iMB$rJMub`dS=C!9yegg8!^1aAL#^cWz}
zm%Z0DVwO%k0SasvK*<zGzqp__b}4S`n!D`j?oYKK{Ar)ppj<-*Pd@gi9Rz3*Vk1II
zGsKElEC1E^PiXVUY_JCgV&drwrvHcbKVkp0U?Br&D8%OcAo8S%|L%^~wI0tx8>!2G
zJEh29#uCUJ_yDH1kQtqzA&q<8e+#s{IL=$G{_8u}nIpYyGtJe8<_Pkl29|otNtMI>
z(rP!OE1H&B=ci7X|D;wHG{pC<a#zv?qcwCV_{a+d0f(GP08!D?g9q9;AeMSiOf47w
zjmBx!f3^U<jW?=oYGuckUoTR4gU;zF=MojQ-zqOxroX0{?78Rx6)vz!ugZ8v%U2iQ
z^LDhTKQ0j!Mm#TK+l)_8u%^L1wS%njR-|%vXwxk$nEd`9p7pbjpTd<hRl<YYS|1v_
zgWu4mVp`;wgUs^!HHPBXtUY!ek}4g{Ab~sS2{if~kaN+3d-o?C9ZiHaG@g;8!Ze3o
zSfsjP4O=U^j_WfxuBEGV(ODuF3tHY$N6c>xMB1TQMEwJS4HWol^MazqoLMX|buPoy
zbeKMMpBh#6m*&!Xgh5~M8xpHA`-;7zy{$Qe+B$7g#{`x~L@0lTzB9mM=0T;9!^mK+
zc!^E+8c9r^+ACxv4ePT~J7LwmgIm8IKZP^UGZ(tT8`Z9S2VYbgzx5t&BmwqM=HFmI
z$LAl>3+G@UamNjD1+$TzFI~~fwR%!Q7MXi~^~SlWO}o+eC)YOS>wOj?ec<~ql;L}+
z#C+*jgoGPEA)NXBsE^@ul<q(p037rH%-~*K%STgFK>Y6Rho;#!j#t!A>2)J&ukNtb
z7HrM5|E=fzs}V_$Kz|7t2F6)E+jVeTpS}{H>g>z3BWHn)z&}Sn2~nbDWd(a5)a6D4
zSrNrbc9xF~lvl-VfP*bE6WV%)VDo9@rj7iTM-R0v)KoW0wb_!VkE?RIp6$%N^-({U
zTEZHoIi!+#UDI#JzMBW%TycCisnXRFqB3DNcmeVtto3DqYya%}cvGw&P+TYu^G#DO
zkQ7&Fa4K0QtbxDVv^YjalcToMMeZH8lRFNBGzfLYiN?5=#@BwNA6*BpYY?sw*34QO
zgEsg0QpLYTWBU!w79LM=zunG+uZ5DcQE^r*V%B=*mR$8=__ty=UrL!IUm6g3s1|KX
z`KXz+%>Pli@>hbl6T>yX9awj<M0?sEA5%8L_1IexWOLic4Zag=rS`mlMj?c;q|mc=
z*W_l_P47!A>hTFT2K37Af6YdQ?*EbQK0V$1Xwgw4-e!|}@EvqJ<Vlt`O#tfLHT-zt
zqWT0P?s5GM@xplv)|N;*P7stuW?B7>=yLm&o7r&S5INvjlgYja>k!^@xH;4{Q&2U5
zZQ4SvLpuYtNp2`v?vjlZp^Oe4rx6m4R;RuI8lzl)!tTWwgjte6KT8{teWY4blj_;m
znM3(TT_wCzKSx__9!Z^GA+G^NOYscZz36Ue65#fpHqw*ZU9PO(_Cm@?@<X?=xXr<1
zXm^8mk_hb9z2IHqPfl(4ho%ieN=N$!!5PCMneeZnNbLbV71{6@R(T#q`~FCIuqQ+2
z4Qs-Yzf}hHGnFP^#o5`Gd#|5yLo64tJ43SGi3xZ^j`_K-f{gnkj*MPPMVTxdn#M4-
zSNznMy$)F2paKcRMI15bD}h`a7k6S}fGV`RYBGYHl1%3IdgToC&+*yM>Eef=kVW+v
zXS>ffzz`{?E<m^({u-r^CUs8+b#sA3nM*Ghl`rK(_6#<bOqk`wMwbRc9Ch)BXIv8s
z3a<0z?ZJx<uS;tI6B$rb2LxC#m=gK#Tl@sNlm|wX$<=aFbUG8w^|N@(hr4P?%et}2
z``?6M-Qmwg?%gHD>hygk4Cbr4o7QnmK9M$gt`%jI#$1qMx-B8mf#eB_?d*QVI9LU{
zQOYpjhL$+kQH=)HS{doG2K&3#XifF*^aS8b*X#lo<&RPn9O|HLSPk{eI&xMTXPFQX
z;k6X7n5)cVa{qp4;(#sg(Y`5GUqCOZz}}!5%H)d#IPMJhU0H9AN+JzGR!)0S(fN04
z21A{h2HI>3Gi%wi48MjUgbbBJ3~Q*3(lE&6{UA5Qit9U9aSbZMCZr^R$DM?YS2Y%6
zY(1+HmWp#2|B&Jh?M~gCnG!YG&U3b%Lkca*!mqo0dD6Ojp^M*0@@kNvdQ)pUI8MBX
zf!qB>3oI>MM#<!Nfdr5%)e#LXG}SPcr8nV{OMetspUY)oHgMSuYmYB#c?Xpe`uz7I
zqFRwu&a-0u?~X!J2TKeq@9PfCYsX$4^57)qNTk@JF9=K_n1j0`s9?ppzPvY!b4F=D
z5eki?;(E<Rhg%DBJ%4XPDa7;KrE?d{UaGp<*?jhCv5TAM+ZoDV>kquoz)3_d)M2&p
z-LQVoYuzMq$q5L1XEh@(D&mSwG3-yp#~_Y$;&EpeQpn^kq@NeQqWVyLjI5@2_{c<E
zOZIB`O0;jQ<O+`L#wgWxaS;-VC<<AaLojH)$aULmV$dUoyJ-}d3>Cs}aMsTZVQwv#
zh3k0oXk$=se0o3W{%&!JRZ5<6-%qi1B<oVaPBD|vO45=I1!rh<h{Pq2?Ha~z8T|Ov
zfNiQ?31lW9xMpMcA`hen*vC>=<*tVSX5+_1^tdLZT})rrdo?*Nsf1$LQT--*$P-tv
z{weU6j`ABRz{{~IHuy5yoHV5yPi?|C`PfR)^~qQKdtY}Wdg?mYJbE9~tS^x8h?mBw
z&Zucg^OV*<(vzwdCP;j{Nc<eLow1|n&Nn4}@s8*!1mSjul0FpV`N4Z=FnTv9;MMw8
zHFmHdD+tkE3q6$5)zjQqfutokfh8O-bEER|(qtsZ`|Lk!_e9s)*S~ygo*}e<$p<fM
z?NK;fLhabnBW{#sm+5=J(miz?X?91e_txd&tmy?oN!xBj=h<5%*%bIM&W(_?LWK|y
z5d%=`IxRTgalHEVzJXB~#(}~!BF=}^&>{!mLKbSTzcz%Zh>M8mwS9HK>NQpl7hMsC
z4Qq+y`Q%oaf54$*nc&v9G8F$CV1I~s(x|-2m+eX&5dFnj8N>OV4c!t05Gis8`1-`H
z+uwKi+4G@j)IQryeo}l_hz`ufT&2fVY&u4MX;9AWXx|sPY=l@GAelY5=Fwcqe%5vl
zJHT`AdyyE{j9U@!^nfw{mA-4n{#EI`oYj6u0{X(<<m$VY1j`^T(!Cu|p4?Kx*=^e~
z0%ULUYHVRtqT18Kc#-GTJRKBOBc@A-Z=?9y1+bOjnEfHy%(^iH#Fy~q8|%qIY$!px
zu(;!eX5CCU)kE;hRWaL`e2CA;?#72T*dXPjfrH!LvTno6V8xC}x2Jwj{t>f+?2-mB
z+)jui4#f!gk}lU>W?kmbG))y^&BoFEIGv$>bkAUu=eb#TlgoP^n7;&}|KSus?DRP4
zv0OV2=e7|UsJg$HdS^GMv$ax5|3zdyvkWB8{(M$<915Ib4QG|X2uQ!kdKb6Uj>+1#
z@5{L8`0;48dPt|V!oHuepILgPK^vMXBQ>@uY%LS2;lL{u6u#1G+c7q1@DPb4yI9xM
z2w9cZ^d^V<2fsI-&h56Q8&#QLO2g3=$@K9cCjMO{QIeT%7`P3S<+v1@kr7m2BA4EZ
z379rHMaO?;n?Z;cp1UL{bM}s%idAP&!Vn#p(mYfr#9t)K>_Hf7BD30fvkdROtS1^K
zqrE!9v`Kug6%nDVf&^_~8AfMmzUR#_cj&H8j+It?v2<VeXUb>o3qRr@b}Af2F`b9M
zyb^D4)Cur9$<{BspMfGsc$dFLg>g^M_O%s$=`TYsoo~Cc_GNM0i}z#wHl9W=%RjX1
zAGF=;7U2Mumm&H%K1+Kh_AnrjH1I^u;xAevUK0oQ$=yauBVwb#3S?~by|67sjA1bu
zrB#;F!g(Yy0#iXPMDw^7_4f?skI3nq2B=;^)7JXG{N(3XVH!X<lr;<c^t0ucf({M{
xhb{|hC!I>%oWA6Le+$^;e@6KKG{Vd=(E@gU(p)s~+;6}~{Wes&MDcF$KLJC|1M&a>

diff --git a/sample-reports/findings-table.png b/sample-reports/findings-table.png
index 21f2ed3c6c7393b2a22a138a2e241156db23162f..930357fb6d1b4cb57a7c7dc9b3481270c8bd748c 100644
GIT binary patch
literal 186723
zcmagGby!>5yDmzVwnz&UXwf!MplET2N{YJ#C&dB;cMq(#SSe771}zT78r*3KPH>mt
z?rtG)=UTsY&ffQ&eV?0W{*g@POvW7JllObyZxE`cB1`gs<^cf#0g1dESc8Dz&JO~D
zTc7XU1kQ}}+z2GNK|ml6exv0%xrMdxe5^xzch19Tp|dTvTAb#sqX(DTgBXqU;$iGI
zN1#S)dUc)8FE;gs9q!Eo{F8C}=tmzP`|WT@3t7Tsdy|nVUaR*MbBD+Xrh}@FGM@3Y
z*VStjK?*eTOTWNFI;MI^Wq}_9UOP2~A0L1Y+@tn9C4`dv;>UX1{__U{f&fDLn{@wN
zL_qNRp5wpo2p;|KlLVg$2>(6%Kb|Cb{`-G@*MGbJe?0j=-v2+I{6D_*w|{YZBN>u_
zz`KX5sN*(4^|f`yBqYBaEzcgSz^(I)(LOJ~=FXk__im69c#6=8xJs1ce$Rzmy_v^X
z+0Aw{*Lr`hs}5ej-q@rWEyOM@FvP{iwqt$_t$Uw5y_!CBARjntPvcGY+Pz{53jITd
zPxIP2zNozm(l0-INPYSWbg@_>7zA~4dWhRddf)oOVrK>`eYIr(qhv%Jgy%X$9(+-t
zWAa?9@&1gvBO@qqNnx2RVo@CCGaeXre@wjfi9`J{3iz}kNPGMeqgQ!7$Gb9{-BjZ0
z^iVTj3!{&?I6v)OeVzf0<KC6_^nL9(n}^7p!R>Jbz74%~o4|w6#m(92;o-@ypi|d$
z_sey#>%8g5c|pgHkWLJSBwV>q@){=B67Zux;c29_&)(jByz{|f7!2dh{i+=LTJ9(-
zU$u>unU?!HX_tC)Rl;wj9vBSp!~-Q(%}b&e`6MLaS8vpd8Rp08#7)U%!;!@URtaA9
zcpu*Gv0X*a(?6=c{^xrG(HLU-od~G`o>%b6ujfs8)P=X+urTcFJYJXee2($)$cnKd
zx6ayb%M-;o?l6W|La&%>b%sM!rEn@u)MHaG32uuJ1neAoUN?J4laP>#IDfD)_uK<M
zj09g>_9oPOoO-YH4P(rQL!Q%-TJBz<F~gr*x|b<q&Dw}9uSgyojP=ot<Pt_dS=%jh
z8#;J6<F{?Q)%s8h-{#mr(H=Qn=Y#LN#(fNt!g<cmU^iELkvm&UuiOr*NoYNW#{_}H
zcDmfG?MVK_y;4MJkIgDpL8o};w{N58OI~iNPDglfZo=Di3CF#>*S}{`o3E3y{mur)
z!j*ecN>FGogz>?u@GQ>`<B;WfS{O`1$QnCqK*e=+OO}veC#NVWj>q_@qFno8Nt0)j
zqUmbm)(Xwp=E81>ToI%%=~`hcu-an=aefMIV$INj`jq74#D%c47vxA^DJd)WR6+f!
zmsU$e=}xw4c+AaVo75Gs9u~ipK&ZdL1Z;c%e&;Gr3xAqU33hn!q6AK6w-b@j5>t+m
zjw{-BgpQWr@#s_N;-ROiH0~muiM6;&{A;9?=V9)(9~t@5^@y;v-}%V(BoEi~eP?y2
z(7zwghB10jUdnc&+;n&6SkmV+?!uFAll<P9U9<cwqRD(|@69IU`l6*UzhKl>|E$;Y
zB0pv8@oyvadn$t8J$FSy<npz|#U{9nF70e=3e=u`V40Yd`*_p$*hODo?<j1iV)ysF
z4ipg-a<U_C3pbUpdM&^|(lXxR2n)(bTAz0O+KDom^4RL*^&EK(CJ&7Tn`RHKhjjGx
z=v`x}Q`4%vHj86zgi3X@M&Q&E;?(W;7|3Ky_Ybr;SEU8J<v5Kmrku@~Q1eD^!MWoD
zi@8aO1~bNI2V=9G?A$M1+@1SXO;Nf~zvH1Xs9%34jd=2E3FT&v5)E#j(1C1V?hU@y
z<Drc$ym{b8KwZ9%`4ch=%T)vp|2?R!ApV($unxNWLtAXJqEo1%{}t?LEgk%rhHh`{
zz)f$$i#&AXuUoR+T^yD6GplPKRKb3k-ZHIUCrjPN2zMKLeRVPiijAtg{*<}!Kvl#k
zeEy8fO|QT&yGuB{kH3EFT<X>-5*8w_Qn0wl2UhV3V2jtd^|2`Q-Rj!fa%9WrtoDef
zQtk^B96I(-#H#&+>(KZ1PS;2HO~=1o>8IGYZjd-MoP*+VC98GxbtiQq;xe+QGZnZw
z1Bd#4FR3$}7e!QPC`uzA-oy>kZ-nEItSM&n&iKgQpKfQ5z?<-hPQu+Ldl-E1T;;|i
zxFf-Dd}#M_<K^WLU}47_{Fem|)cJxmq`_z<;F0>i>h<*|9B)xWuR5~6GKwE`#ZD(D
z`=+Q=Ib09SqwlUm?_^~|O<<|Ko1*yU&5ezR^rEPvD$4i;@(kR`R@aG$=%gxAVyCYO
za(zCQxE`roURLpk_oHk}OK7Hr#>555)DVAZ1iduB*#$E?pFY*J&VBpg{rkz1Hb2$a
z#v4|D%wMJ<4o+rit5U=n$2w`I`ZRU5rqyOUrXzG9+B{dwB}CMV{QPCe_`e7UJlX-<
zznZDGL$}etd2_V_%TZde1V(On7r9a%uQ?dPR_epXKQgI*(Ayl3JK9kJ-<QuXF78!w
z{dE5k;RWsmbIw}4G#+)|pUZ$Xo&$02=A{<k;OH1IKWV9y=6NtY0k|9qZB<oexk|#T
zNk=%YjtP{==T#V=i<{c@bHWA-2#JFv*j{kGOB;lFOooKq(`Jj&o4EEC%^I*e*%Fn2
zx6G+C5mHmeGqYs7ranyJU}O7PVzV~FuaP!bV0oL&NJV9PLFLAeyMzSOk*Uezk~z>_
zzz^)F%NOVVEE1mD2?z@_fd~nw_I`Z;IlH@?uh8*jHOVngd(6qr=A~LJQ!ciVvVI!t
z#$c{5wmCTw^VwC)&hKaQjEQEw^TVbNn?JG&J4|%K%GCUBF}xfl@9vCly8>3`?2MU*
z=k(1j9DaW+QAGunvl8b=7}0ofP{wI`yvBgCYiB@f!p{0{Fa?nqp6%pPw1wBs(1<6<
z<_@XG%3C<?%Tq3EKh-HEB>fsESLpbaU~cDZD~yqdDC|9GzLJaMD0C)uCnDkmY;I}!
z4ooK$?6u->?ZyyafcL0{6wL2md8v8BXBIhh94<Ge(n#sVuDUZy#)@Z6MGk-bg;z=b
zVpM+?Ib4o;8Qrd@$Vrl0*(44EamODX>o7(<6?Vb5Z377=T&8{A8Hjz`u+c|k@rNbB
zb!8}OINSzzx=Z_Hjg=~_a(9}Vie^||$~6MLOdh45Ihva{LgVL6?eQQ$?b9uS9gYe?
zw}LTSbChnHU;SRNgEUu3UcGD4vVYnPcGlDG4{Zrof{+DWw5csKgFxQwOhfSLjyNZ(
zl+RasZegJXbJ=D?bQC&o@&}oZvbXQ$Ll!F2D{hpN%j#NvFbA{!boiaQGI3tUUhwmD
zNBUrEs7#MDZa(WIcl^)0_K-FIFvKCrmdl2#Ed(+X%TW^qJzrW3{Ch~F_FLxRb}LS9
zZoK^blK#&lLZ+t;AzaXf)z$FDn*<&c>x*>^Nn)uzriWe<ehcOKi%6SiE;ur}B~|c+
znAOOLAk@Dq;ar$g;8%4Pr*KsOQcK4m?fZ8IDw-qJZ_P9Im*Zp{5PL^=cN$((HQXds
zAI5*-clx5ma%>+aZ3OnWrOT)V>|U~3B7jVy#V+V3klNiEw*S`^Vr(i!sJG4dap-3T
zhT@=5VER}xtoc_6Z=c30Sa9gr^;-#~EWKMzPN8FlKv-4NhH{f7=(}NMB%5WfjhY0X
zY3K+Xo5*NGrEv%CKvvjo!s#n0(2z|SZ4Q@Z)U%)K3$_LjKv~}MBDO+uQxO$~8O{rz
zqb}Mw!Nb$j8EF$EBgp()&C@R=1U*)8jDCLerf>Tg=8dM=g_5u<>!fq)a~m6c*3D~6
zF~j?2vMsEJLdnBdkEc+F1Z3M2H4!2D`udDX=SLA(9MwgA-u0K1qMj*-hNGEas9R~<
z$)SXl%K?vKyn(*n$vUOeRtpmA^KibJ;5Sy-VP}z6Xj``ew%E-h)swZfvJ&?BCW!oA
zV53y3)C_~VpSSP9x(8Pem-~r3hfa~Iii(eOuPca#*S6omzc5w&I-8mbLvjDJKPR+%
z#W`2yN=IU0B6pQe+-v20b%kaIv!?t+_#m<g5`34irdFg1IXsUgTO83zo${EoO6pCD
zq?gt-R!2Epqo(WM`msLS_6ROMey*>s?sa9lFuPe*f6`SJG{q9nLCPpOQKz%yvs<qK
zw(L#5zNl+Op{Q|3>rM^6)#;Y0srXhMY5jzxhasT~N(y=xn_u)IRqckD<b%cU1OVuN
zIu{I@=Lu`_I&I(yicEx=+8+IF=U6p-gVPicnt9Wr7b6UG6DicM5$Z5lPI$QTVta&u
zp^5^$E#bb-tn=kXw@0Q7@u+H|g!PukHSRbb8t)<b`^H|!#eAKrn399bm*Ws(Nm`%z
z?J8r_87$dA{~x@^u2l72I5kPr@fqgjl>63DWaN0d&|&@Y1rd8TygSZF(cg$0Rq749
zq5$wF+6hSInD+KesB7AC!DwHa$MN84FAloKN<Y&Sh@QW!Ji-M!_#faS6%DdW8L()?
z*_9@(&3!UGdCsw-tL2o_Cf{px$uL~mN^WjrIZRSwnmB%Udpp&2ef)T|cX2<0ZhUe+
zi*z^Qi79HWyKgo{aP<!Qd==xPZfZeEMRV3(A`J#otg1tqIA*n^2|ppnNlJR+e~leW
zMZh6R#@TLSDOaVtyQ}yqXo1I;*dux@&imYPk)ZujkEUW{H(VT2H1omIhTmc5>*=gt
zQI7=u&fkD*@M(GKodAPJ@y3srmgPMB*eGHZVzss2foJU9PtDsmH)${!<q6wz*INXj
zjKoBJMMWY*3W7PQ+ySdBzM4>!I!<08TcHRN)|w$J0TfE<>FUr^svqJ1yCSTw^VbRZ
z+X=&np>GHXe(0zZcs_F!N#2wkIXst;N(=U_ehwB6=<j6vU&WzhjG)LD#V*Z3zH!cz
zy>z_OtAGCzz|cZNr-(4%H9HBLy*%5*8d{sETN@dn{hSHP^|w3uSIzp`Gx;C?dwK2Z
zjff+RtxFvNa6|?)!jGHUBuCd>F<AhvwK*&@V>J!6`k=(PGRxCs)QmYlIwYDZ0SV$C
z@Q?IzO*>xMBm8Ph1No4?f4X;TJdcUjd55vm?9Y7r2c;pihqr#&tzJ1ruZGiIx6Ehe
zs?**0&(E&S+!YbB!=iojii)HW2Xt;lehTg?Qe-4sj3cnYxNY14(U(c)t6yu8QxnbV
z6swmFPO>hF1-ZdVH8pzHdaZSgh{JvA>$)n!-;<MHx|a{mB|>BGM1S{sF*eXpm+9k?
zuN8Fj@A@Bjz4qYxoj$Z)X+Nt7&S7aYf3&qWjf%Dm?EpX_6W`}a!Ra&WeLi%|bbT{@
z9qG&gRoe?g6*;Bn8Pf3x3J-S&m5qFLG$HvwTK83BmDA^h#)boavqOF}H2PygOvb_>
zPy=hTzhA%opI`e?_jFFgpBGh~m5iSEJ@~T;F5mr)Dh888q=mf5Sj$V5Fec38#Wz@6
zTI&T~&0cd|9lCqxTiM#0O5MAC6SUx51HfHADfiiYCIb<=2t;KAVMGt~S3k!uXw#o)
zsjJKO?}G<I-J-rnM=m@Kn-p}5w1fVm(L9#sD{HJh3HXIQR2ifgTd1m6Vc!kB&*{<s
zeTi!?bwjuJUR>a^xrzooq%T>jao<|9hL>W#zT{6$IU47`6W9tC*hl5gp6}VfuADSi
zNEpR!R#V?SMT!D9(nz_Frs8EgKP+v8MoLQhZWX3cT?aZ7|L2iEt83ZMuGsm6u+^%b
zT1U6n;|7F_G}f;^wX-Tekxy|i_F5Pg1<{N***&D8qJnX&kaoU&8ivrj+NRzmS9g*>
z59+BywsE$rBsT<dZH-ms)*!9lnGF$@)I%W<(M8lgEQbX+f(~t`OL0i*8JLvL*s!rm
z&$Q3n_#Y!1F0LMA%eMGKjNghI{<7|rUexty_=>&&*+sn{8qZMx&+wMruw>)r7We1<
zv!Oo~-JCIaNKN4?hMjPUS4nG-1B;~;qfqOYt+zqnyOzL@sne#1r<*bUFQt$nEMMuR
z+=svY+(@jy1QkKVy<48aHuj@YN|5@hz4tL@|Cxbj!*kWj?6GiM@hz}`J?0fkSHS#(
z0GZvS`zHuHfNueQ04!kjdiF#UYWONX1X41kp>6aIEX`w73@Lc`36Fb!TwM{qwD0NA
zc)}UqZD$KNKD&yad4o6h+l>C0LC&}K=O|D|`dJ1lGiVFjxRKO18!N|I=5l}pgB1EO
zh>O6gP&SeN)A%$g|I;GsuPvs5Z)@gaPwnA~+=dDgekU2oeEA<uk#fv%{$qR<H1U;v
z_0^#zW5Yy&rASz7qVOs&sP;*GOk7l}l2MZvHJO)}dsyR$#J}G9?6ye92j-ZI3mK{~
zLGPt!AR1wBHZpoiMCD<+E^?Bvm^)$zYdEP&FAYm5i*7J1K3lHR)*cbGxtdV`^Kf|{
zxK|#YTf)-BO0zxs96{eZmpC8}8w`Tp*XfIxVW#%pJS}!%omGn_Kk5<j17t3&ac_$b
zB<6KdFO&H^11+mspv7*+w4dYF)Z=U0Y)~S3+M4U|UiSD`oNla+7IruefF0f{lk5EL
zmFMT)mB^!`dgP~)_r9rK8~fC0NfhKuvS5D3q-W&!L#@t#h69*ou-4;R9pvqNBJkMs
zKT8-O{%Gz4yUpj@=b_+?IEb}Y+737i0wjr@Le>7v_C5{S#oSlbhC3fEVH5+Uv9yh6
z-YCOjM<@3u!mu?v`=3oEV^=9Qy$rKgEf{%DD#dIKN#5O&(gOvMY3(yEHckfKozOo_
zxepmc{TAblz{BjZITq#=>b}hupa&0*D#|KgaYC#6FYBs`#~a)N8&Z0d?b=uw>qkwh
zm{MK|^QTCdFa!2fT9>U|Yt#3<#_;*$2RW+r!EgWdLC3lq5s-Y>%@aRxjH@WNGqWyQ
z)?@bDm3cp}Y;a<t!2&t=(D5xguz*b)vkU)F9Ay2cn?Z=xpP@1mpIZ&|HxM(@*L&*^
zq5iMI?6Diu=boUSd4;eXAps#?fA-kPA#~3WTA4eZLS5U9i%d^H!K2Z!=#6R~yrLFQ
zTq#7(ggT=V@|j6q|7UJ3a5E%H9%KVq`%FDOO6np1nvuQmZ<NP1YExOv<9T{@Ry|ri
zx7QFrrgWsa(Am^6TrDcfbEo2jdSwMx22-g|+4jYKD#2{uv^9Kd!6zEcXDdg1m|k6;
z9Mb&uR!AOji<9MP<@qMrQw8vR`d?tcdW#q_FPeT>9ac&vRc+^&I52}kV_%SEXTdgf
z5|Ob}2*tBY+F|U6vWW{P4dNld@tDw`Lf3LzyAz}o(tK}jYyQU;2zI~$W<#Tr0OLTe
zrk9X+-K`+nsf4Zd<8hmoS|%oYA4FL7v^^`_GR-^rJ|QMaa(fgmxkmCe6a>oFI6fbf
z2J97N%Kqk&dI^IGcvuqjIi$D6c+z9<30ddzmrnlFV<P%j$NQ@Z6W%BHm@+;#FI?j<
z;~@ohaC@(lR*zL4-Ltl-w6InX=-~L6Im2aj5vi_D${^)+wzh6CuEo=5j|q08t&ES;
zE?3Al@Ao1sBLP1qU!o>s_)Pw<J-n`ZI+vH9FOJ}g3&~NT;d-=p>@PI>{m-q;P+)o@
zZqc=?wz!MD=B%*kak`w#dFM0QaIm16f`LG1*U0+E_I3fTW(qS@rRo8DH3mgMmp6v$
zlAvjQjrw44gZF3I&v(cMst4W$Kin=Efm>n_yjku202GLz6E{-Vll0#qhTS)lA%)#-
z#2*!;88-OT;NBZm$H;+qxqQ{1%~1^OJ?H(~2S^#kyL)m^%k_xpw(Qp8^!uOChK8;+
zL^hJ#V=PB3s^GKkn+0zYrlf@Jy#LpVcH{!gfH<qf{{;w!09o@j`+HneY$_59(?Gl-
z<Cn5wrFVQHwS5{wEXXUg;afR5>5Z0NuW)DcHbq&@o@l$IC9p^7DrA=e;ViVpdBu#P
z(%~|CeK)#&vFPH^zsyplvLfm+Rcx2Jv+BdDl%#l)r;m#qL=SKaC8;Ub)zO)L01(kH
zszk+I9${rw`;s~_uPheUJZ5}TC$wtb@&Zmg>wo-*Yw0II3DlXnl`zb2pXxuGYdYR=
z0h^oJ3Ro<#J%;{kXm=GY`(LhL_s6~*JJcW60Ey530x3S?u%`U7Bu^uMn7fyBEGhlR
zuW`)qaC7sPH$O12(g|BuS#hec5!iP~K~E2dtD94;36!?#b-_r`DTAJx?&a|GIxqyO
zFS~vq?gqAw?tShOt%8xCT0aXjXaEJG46Xjp&j<K$7yS4bQg6g8!Js<Zv}A;Cz=`{A
zfjP-q!KbyX10<l@`MhHL;@*_Lxs8Q!dFu2F6@i^<Kf*|UdPj-Slb8QKgsbW;I)D5{
z5hNF2KRfVA6-TGq;Ndc#gr*W|=UZ#D>VN?A_v>xIqP=Mw-Cs$u-{X)8$t>je(-Lt{
zoNp1ozo>gg@y{gzJD*N)M{;*W=0<PdIg49uXJY*4JORO4Z$!r5^3C6`|E6*LH|65L
zgp>at;p2b4{l6rZ|0aC=*U8_vLVaZ8N^!apNv$-3&o2K=dKIbUYW)nnX`FQACa!8z
zt}m3N47QIL^#l2ibB?AMRT$<kxYXDR5xsx3bH75SK+Re}pT2Y<$8ntVMkIRqnZQ4;
z`ud>>32Dt+?b&gCquDIApNxemCB=4Pt}HcZd9%CkrKGsMyF!fJ!nx$v?|Ar*1os&h
z|Fi+0->Q`zAjy9lzShRoZ{?;Ds9!Vy;`nEB*5(WTL>Xue^i0TP4lGgXTzHA_g?2s-
zyuW^K`dk{+j~yB*M#ro`Ch`@ZQfia9kFMao&yY_-%k{DQMAql6+Cq>Vzh*yXDwb`{
zM1Aws=u+kI_xXCQFqVvY{97JNDvOoa#3UM$Fj8JBqEI%`vR8rya=Dq$9O55I>wv^)
z{aa_+7Mx)wc7A2S1$Ii20SgC-i>pIR4@PF|`aYl4-tiQzm=(N{wz}{vzsO<7(WZ=u
zBhkQInQL(C;{!#PMTS4Ay(bWG*2sEqo5jjwZJN;AWPj~2a93WC$o0MCCBL7=_uksV
z2)_=wktS}Z#TfIpy8AIZ3E#XB|D#xu|C$0LwfS}U>bz;Zky>w-oW+;0co!CuP0?Q-
za}#GA@bF5%FOY&M4-hITx(DMl;4ZX+Q(-1ow|BD8EIZnF8ergd2OeEqX~3#NG;o=w
z=ma(3rxf0rbeg7<KN1-pQ7XVM<@Yi=#Q6b7>0x&}=@&XG`tMOXiBQA$U@ndGi8IWM
z$;@JqD^F2j(|0J$!H(?dl8K!)A0G<_JyN;Y{v?~d>enE|bY^~({qax5c$YJY84Swr
zlb_MU6nT4i6q&khb8HUPL=0I&29uwvky1&a-LOMIQl?vif7RL!VufX4W_|{p@lO5r
zUpwywZ=2ub+na&g+85;&*Ohh0bUhxaxHjpjR*5T7`w3Tjxhqz#ZzS*Krn6GNI-#pM
z#unS@uw4hQ$SEv6>4kONO5YSG-Rl@!&#T{P6j7#0(l^Mia*pLF`KkSLSR`go?zRXp
z?eAO)8Y*fsQ!JGI%9PU0*?(`!vFflDaVh71-Rgm%CUb`cEAO32_^Yy}2T+sE6|4QE
zP0EH>$YhUNl}{4z<ld0HmB835^b*_xg6yg}n4w;EOuc8(IUzj+mi42b;m=K)P&SUH
zdezU7p-~-^g93nDl$-bQJT5+|p{Pa4)MQ~DuA@EGvFP+Q{Iel<`}D9}$7+Sc+fpZo
zEof2%GKmH-E|2O8usJi;$^BERu-nGP?y1G@HSc4=t}m)=UzZS=q55aqKrMY-xpNzL
zJ!>cLc#9_`eE}?-j<mf+&dQ!$hU_*$gP;K^{%DK}-{eNp<A6AsLRTfl54lL=td9df
ze-*DA$0TPc*F|1?Bw;%b7QdHp&i-P&Q~i#wW??FuR_s2!gR%?9Ok1@r9-D~t@BR~&
z&EYYP2)fMG&vvemacR$dYc%Z?AiF`RlQ~jZ-n9nLJPYDM7#FDh+&MRPz<L~Xte+X2
zE$rI3>p;db#|b1KC~K7xahw_2J9%-D?N=vHH+Q{uu+%hDFL_jgZC|+KYy2%zF{H!>
z7gHM)H`rB6X%MjqwGyc4@U0b%(HSYhI!$&pS6ha}N9p!U1%?2Vr*xVO%P~z4V4ZUb
z?Z6DnvFMPiBjmLa^0B%dtRVWR*c#rl2Sl1o_~4J<fA*dhScc?A=~i#g1*%EwP=$$2
z>w~`QCag7qP_MX3iXCEKhP*e83Xm@s5LW4BtFJZYH+w8Xux4ogM$hmdw&PJ+uqPwG
z^Oqp7Ea~PfK7ArHZ|5&R&@DA@hd-#Y(5#{GC*u?op46A;r>UrS7u9uQ&o~IKHW{az
zzjqlC_BHbP^N~%+VW|C2$iv)r+o=-7?OO1^o)Vn81uQzl(lxSGy17|ENJC_l0r}dt
z68KMJF>p|hkPxb{PUt31PU)7*^O6%8(lMLel_}So`#tj)ujJ*S!q1a5C13c)Gohpr
zmcS6=b^&YY#?VjU@6+xv8gP^etqTj9hvtWlHxILoj|uWNd~noK3pSV<=d_D`+3|xf
zEK2Sf`JOgBTtCwyaji;$vQ6e~t<crY2Xq9k_Et(u#qUrzq_E((jV9g@<Iad%mR$w#
zTYj}Y$s)RJbF@eC)76V}NCJl{dcxlN^JxJhm*`{hh!@!wikv;|q}vp8+cIETm3BrE
zr-5Nz3Fi+yE3jfzz8m(0NzbdbSfx@^=G3FKY8394cIhy}TGD4iRp-7r&tTF>1<MH{
zsw#aoRgUw#T;`+=J)c_(`SqFyq+ugqq{p=AX-j^1v8JK1f-AvnT)?)(Tt~63i0geK
z(<sN$taJu@Qm~f6Y`MuQs<571*wO%IHffdS5dWQzHc=nGnZ)PvMXIrq3Iw-;>(#8k
zHa0;<HykJDGubk)&~roCqpx@SxEz{ZeL@3e(g{A-h|Vs&rTKGA;Zusc1%inc1`k<t
zR;op(R2W8PC;nUnO}(;ky$+Lq>XIA&L1?i*UxXoE{D-R5*h70W&COZy2=nFGGw<53
zbmL)q*0`@0R4-7kB%Qb?+PW^0dS(%6%3s43%PLTwEBm}uFcx5t1#sF2UpV-j9{^J=
zDdp7hB^>ASpz9-kdR2+GcWXClXrHzB#ky<l4Zr5Qva*i`suaf}>1irVR(bQ4q~L11
z2{X^ZfKD{FE0LIxXlD<XfOSY4DW{0UyUv}xFM^Df=<KciY4Bi-kaTB>YK5hQsisN0
zxE5%&nVYd9A;#MA-@Y$zeK^D{ntcri)5AQeQ^eAIkCZ+_3N|U8{s!wNh>=R;D_%6^
zfdqb=oy5%B3KgIiuqLVeiTYVhMKhvi%^z5C{^TX`&*@Xg*7XAGNK=Z6?e3B6B}<t+
zibt=T3m4eXic1Ji@_6kZ*y+{0@Q3VD-alt-6id2Vch@g-THUW+;(+DIEC!#Fkn9x}
z+f6&omB-f&rJ`3qzr6~OGWm27L@}^}Wt~pmR)H$LWGmj=cT5#>4`?|^^C@cOsEm9%
zIMve`5%T!KNTk0#0*}o1WjLi$kqN+^5T1HVQ%#(|5GPH}FD#C{cf!D5uKLEQHIXY=
zKkMLOlL2ov6db8G%ZQjgno*2|?k-Hv>lL1E4<1L$v=vSvJk@4HQs)udC2}<3?&w~#
z`}umH^bZ$jZ|X=}8xNbmW?GV0(~-I;a~I`J_=%iM=$SpFYqGM3O^bs*9PUu0V(C<&
zO1#2?2-Ac9lX!ZNm^aHj*!H`A=F^!bLIt9Jra^FajdsqcRa&xyqi0h;fLGEI#q#p?
zM%gt1BxEP<s-8PEp_gQUOzL>tb@FmFE=TaV=Qz9wJlxNTb>I64$rY!F_mX;<gf{UJ
znJU%g%vQikEe9DaTUjFGv@yO?6!A!;j(daX`<up!HkRA{K+<v!V>ie;AgziE`3a}t
z_(>ZgSFB~R6el*JhnnCN5B2hP=hYPDlFV)C>@7uW3s-fiUj;DKww)yU2sejpq_0Vg
z43Fper}fhls?f5Gjtb)&-N(Km$kOV0<NH>*44V2Jf68Ra_h3}zIurTbs%wz@Z7J<~
z;Iw)vkCp%i4q=8o8!LNTd#oGV$@Z!x1}SDbv_qi~t6wm}rH8@}s2rRd9D+XjA@pkA
zvFNPH=@{$1yB;31``#UEN7d-I+nHF~<^lEgz1&-Kn~D?=svuX_8O?**o~kkW^Na!R
zaLCB$r<oKL6Q^lxbUM>r272dvrQZ}^)5dL7fgYV)7!qDN*=8uWn_U+|PM9>xTYSN{
z^Eitnv$8xCO!gYd`4r(k3T?tE$px$)kl>1|d{J^8%Z{ao3L$d2Ln+~k$F43hos>YL
z1;-?OH!_;qYn}Rgyp@b1*jT&0jg^F$IP_AMO0Kv&%k%zRgRzGIWoA(7TnB_5O9!d-
z)#X~#MMO%37)Cc-#^vQp&7uLs<%O*cM_CC~Ni>HxV}sPxOdA{@VTOThOFf?A$Lu!5
zGw_uB#I4~dP5v_8Z8-9@P{xOjGlRY;HahdZJdDj{k(PA9Oep5dTZ@9V^o;!XTC%Cr
zlF!asp3{2JTZ#>g1EJN;4n5V^mmumCa#g)V9lI;`7`G5jF^e$qwl&oEhL|Xo^!LB+
zGoHU9TKQU5hU&LmJm$0Oi*jKoCIy_;fcdfQgik4&csC=fJoy$YcW;{LMPLoZ_d#cJ
z%`)T>Foh8`!#49D+aD;hn=NXHbI#DO)JW<6a$Sz-cmzeSwH@<ip|OB_>y{n&FAebS
zHe6OK6_3}RYOU5y%;yixf6t9%G`F$ibpjvpM@9-7Hb-ghQ;xVXHc43m4#y$1WBEnF
z6t1EH?=>LG>GQE&N{@Ehf2jx7njNqA?oMyS-jen?l=m?xfa>fD)X&w`ji)svbon;M
zBwKT!UVXKn9`3y7ID0kcerBd_Fnfec#J;<DkJ#IwfQP&H&AX)9M`YeTb$9xu_sY@`
z{H+R7P>}c2%syJIUZhGoj6@qU<}l&oJUln^2C)Og18})lU+B-ti>kD={UtLd;VlV>
zv0nFWgCv9OG5c@Bf)(LPgt|&-<VD+xa-HgJT+PF<^_h7K*5@y9bD@eZjI{fcLz>@*
zTz=Zns(qM?y60$4t>q~)wNaq<Yl2glbu+p7fv~I%1=BoGgV@jb8yAd-O({<1?s-i=
zSO0@kWwDoZG#QJk-h1sK6h^tR3o$gV^SVAi_UYxLH!fGLnTNc;>y;-sN#bL6J>!;B
zquoYqI{2J}h{B9%{(!6f7@Jx7oa(-Wp<Oip191QxIlGjGDq|+gcc<GVQGd<!V%XT<
z;qF>eLu{vM>ky}Umf{>~_VmMdj!&JXTwa<TULCT1bZp8mwlOT*2A1)Ilwl`V%|-NV
ze?4q!pDLeIu)wjWa`8f%C3$QZB<{=NwYZ~6>z*d&%8sgRT;C`<M4H1YxqSNC+ALo6
zG>vVGpl}`UFLX+TJ8dfIb=b7V*xeyT6YiJJup5WFZP;9rv1+efJ-iH`>SN1AKA~;N
zGLzGMNm=d{<4yO~4&>4{VQ;~(P9{TppHW0OE_W!HNL~;4rjo+*RYD(Z1jU`!*i-cL
zwOMh2svm{FmeRuIRr-Kz^ML4xPmroF;T0QyZpeg(WZ+v-hYL1;2OWm^q;KDk$It$1
zlga2OP?hExJ1V@Htx+_zuCH&w9U-*aBoWpFi`5zFqU>@)X8@@a?|pYl-vG$|h7LZ&
z)CeK&<IqktC+2HIt*Df^O`#SyYesRQdXs<|s-w4Uuy+!uq?|O9(zWt)zDDr!^U}}^
zHKe1mwb^+J^3>V1fb^4qq;Y$Ayv?vNwZbvhEgYIX5i`JR$G-9K>jPS0&M$qdKoHZ?
z)z2S*msDMLJYrm#kSh5#4KX!wFTyjCz0`)+yv>K$Wcb|fOB5*QnEJhX2>Rs5&74D_
z?(LqQ5}tkBWb@1&;n>Y?v*f&-@Z2v!f=;kHUWvQOxUE#L@IKRpegg7nmtt}llp;`?
zR+GQ~qjCPCd1Ytg(bEMp2Q$j2TXrz`aFy)0@RoYZ1V(;zV9VFeOjG7K7y$M@Wil=B
zSPoQF{eV#A{JCPV@2z~FtqpeNma^L^CmV&V>~NoC1|KzguZ6di^rmfn;NTS^55D8Q
zOcj@y7!uy{mVzlNrQ$_ocf<T&F27>IZVv&d{`3hYM9px(Bxo~Mdz3*k`p30dD)*7;
z;vfrgq<d*qWksbYyp1ht4~`x*Cc84mCev*(OTP6(Htd+D@<X8w=ikac_59BJCG;MJ
zCSG?GjvjKsfq|MzR6j9Eg>E9Ub4dlDnlv-fF91keZ5R<7m|s*8I6vkmk-VxxYhuc|
zvtsJNgks|^U;)MIOZsd$(uR5oQ{!G{n)Mnhj8I=Om>>WkLm>+;&`Ml5@Ta*v2_+7x
z^9`)&NNY?OY*Jn0O8ZK1dic;D#~21g(SCwHz_$1)GV{$YfN({0$Crqo;zpXKrJXf1
z)%Q0#DfGt4Q)#Vsl`g|`#$<11a@rP7beLB@<}@`w86~UxL!lX>dOed~IZ8!u?B3g&
zt4uS}hi#pi?D9Pso?kP0yhdi7LC(-$q}=sG>J26s2psTmNan!3;^Wx~sn*V3=eF@i
zz8VcEFGiO$nJ*(Apnsf2lqe!kUQ*@A@VCF`Kco%4?ZW!7x|Wshgnuabm9Qfa6bb}s
zQsO)%Ncr7#T|*E|4RsSf9%ZZ`(j-ZDHFF$(kS8tVE_5pM#6S@YdhP&L$}`L--}Ah9
z9jVKlAW)e5Hh*Pb<bp~di1syjr&kC#*!&%@6_vVOoWDH@{Tvj^(w0GnFR2_~a2D05
zS?E}2<{*kr=bfjc5@*Ui>zL?9n>F_+wSb3vT7@L~Gt*JWN`|#;nXfqeQ$lDG^~1X0
zK-q*Th!pB$IB$);DaF%N%{M+49@6%3Q#mUvynD`3RPtSe9w)@ig~MnQd3jc&g;Zj|
zO8y>~)73Ec;g*U<o7RX<k*kMk#U-awKb@{z22d6UXA$|H7r-@Dk{{x@_b@PJMro_<
zQFI@M2AvfXqazOWd5$qDvn%3K;DAeD>5ieOSHdRT%E#ec08bPMy(})#WI_p)Rr1kF
z*Y9Rn7_@?J43+-Ks-GNCd3&wpTgLseg!E{8bpB+GdZvH4*%YOuTznFNv3*TFHa`E|
z0nX3aql~otAQfq2Z8A8`&Q+A>1Qb(HpA`DSq2lsNJp|4dXz?=O*vNZVt%@+r*RU3$
ztJE)2XCE0eK!AUp3O5z{+fM&(8Q$vn=Ko&XI|#S@IHvKmhmTdfbKFFo3f5*c5!5L8
z5#k^!AdrKb2z!b52{z`r7RSIDA~&tBRT*S%dr_z>z!12v6|uUy2}!RgBkh=}+DyrY
zjAFuDGL|O|q>^lMKLN#4Ti4rb(QO4OvKQIQ%-PF^Tm)jy)s+tnHVY^zw`~g(4YH5J
zd+3A!Hbghg;bOB5sJZ~z$y1_OD`zdME_~A>@v3vWx9z(Z|AZ9!m?(-PCdjO`BUS;e
z9RtydWSogVx3#mdw{vrA-?l3}64%y(j2ufiz~e@Tg(0KE{`j3CJNH%Zr-SqMaggEU
zngr(sLvkb9OmM!2M`;p$DvfZx=@atM+f5}{BZJwFMQ5N7G@Gv`A2lw=Ib6~@F_7ch
z7ivR$-B%P=mZ@y*72aMk{y7jCniOrMAd?D2PK9iD4^-1~G}#>D>d*FG`&)nby|a42
z`BMz1|Ah-^&;@@snnT0Sj3~Ir-aoMBIeubn-Xga=!@Id6EDISL70P>8CO|glVMH%g
zj|u<tP!)}kJmoTB5L`M(9v8!1nDQ=Jyh(Gr>cl&#-PP~G-jA|Z!ZisAf<IJ$nSjFN
zKB#SlDHc?S8O<_WDRJP9=Nl_zc~&U3Ki{e5XU)`Qdqi}H+=ar=PTmZ~cC2uNVot6>
z!-|utLeAnsol=3r2KO145~^5YXI053Y|_g@8r%abyL~N%rAad2__@(WykTMw1A`H%
zDm_J|n0gJC-_KD34c~P(R%`(<C3p$(vPh9B3MbxIQtH_xTWD>(zG&Zfba5<?f3<xx
zf%^+kdUyP|@hiI~bpBGQm%s0uY1AC<VXDng*f@|zZe=zfe(6F$%eqH8i}5#8wqDp$
zCH24*Egr1YR5hZqdz!<;!R!@4MZhbXGXSq^lqs>NmoUUm!k+kIv(jr?9gpg0xn~Eb
zv&!pp@EHR7+W=6X(SL>QoY7C$YS^2}P>FM}hufOK47K!QlT&dkE|C@I>qtq9@vrwk
zeb;b77*!nRszTSggj`)vV;inW(f4;=P^$Jk!NR7*q^kkKB53zwn1&>{XXlmK)Y9{$
zp*N`OQ(`-p&MB<*L0*FWHNw%(-%9Cg>jS_VApEDB7rx?N+<LM{Si-(i-9j!ORrkT<
zqD{hLzaV}xI*_vm%EO^5KPXT(%|R?hC3A!idYN0rIoh)<N+!>V32FgfReFyZ^hv{X
zpD+Joxj^z&qM2|w3#jCpDXB^t6BV>~Y<*R3J+^Obg1D8@9I_UcHa1vc-%2c0{r-Au
zc--7m<}w-~s5QpVCdAz%V>-~}(ZR*28Gt({JQb6sYAYJsF#-CoHE1jQYUfLggDsuv
zx;a<9b(kw;hUO`Q`W82Wo$?)Qca}cR&ReuMV}NOny>DJHLW8Ei?b#6=>KB7d`m&4m
zXd>`{nE$fWwlhomE7<(Oa?KgWWgqzxc?YbeIc95NUwEBuj*>IAfN1(3k7==JYC(j}
z&EvI(1;(e0{f0IdcXVgRH6VKJTFZN<&VxMld4>AFSL;Lp?1aSr>XB3Sqlj!b$)F{s
zRn*Lhl5k<2U!C{meja_U!_$;CI55-IGXN<XjltI)bl}YfI}nzO8pm!OJTEL2ESy0K
zN<Axw)p091t|{ZiK)DszLc9{OgqszDXpOzdf%(_DHmKwtI=VTQm)Tp#iiwW{;etQ*
z5+Eq}T^>kc>GU{DD=L*5zN>-(u%g5?BSf^jV(WjgV6noo+deBy`B=x*DV*MZyT~pm
zH7rxv!p+bA%~P@pg=LhJwH<8DyYXc#u(ia@!bAqlTGG(EVSXO<yb%|XD$Fl9IA&>L
zJMHF+yBd<<7MAD$%)Ohki`)L)?9N~QMYB`lpdZnW2ElsU3swdi#y$1K4)#%qBm9G!
zw<9KPGYI6-zN4tyd?`Y;uQk`mK^$we9ho9;zM;Dw%xr6GAFG>)(&fxoLcCn>8VUAi
zLN&gh;-afQc{<bTw}0#^>ckzoE^dbVi$7Sk4GT-<KWsmG;8Y%8IN_Yf@pqi`t`j$s
z!+Z#eu1`on*-u3ojQ4C>{0NQ8^RpKgs?t})gy#LI&iIw}mhou7VQ*e@zcH0t>Eise
z>q-<L`_-4%xAjc)I;uav0&?#1{g--@=u3z5gqzcS($(}=x@Vr%$*OXeDwy)Zo3J@^
z3MO^CchM>yi%`j0<X9C@OpVnwk5A~r%&GZ`+Qb;+8_?YmCAr-LL;IK$#xP}D7sflU
zBVi;F!Ku;o8`{liRnDbg!dj?8Z^V}){wEC~TvS9Ma)3rl7S=O(g%dW+9a*2U)E*N~
zsZC(fVY^jtSYPZ$%uTf~X}C31`laRVUzsVfHE+T<KQ6FS%i2(d8PeMgmW4Ink`#YB
z@U_)+y*z6u3c*kWY0vPVvAd1);NUD!>1GFg@}O_c7W4z*JtZPOrC1=GmhoQPNl(Js
zNy8^SjwHyu>cjzTe(gJ;kCOW_0*9sw*F^LDT_%rdi$|u)TfyzOr<gi=CpAp1<Gy{z
z51ev*e%q+_`}EYA;+`iFED~pfH;z(!7Tam5@}ya7AWZ;t(bsg!AmKF7jA0(1UGyfB
zrcTQl+PLXk%Udy2S1MDhl2UCj_0<LnY<95ODkZ^vzS(G)zV>v*;A+=Vd+bn|`7v?G
z1Kg2+0iXk&R6+nKp28yy>hMALW@0=Uk9MWb<BKPesYYz^9GO11pN73RnhpY(Zl8$c
z$epLtUinsOBjBUU<bD6bDKlnrc*P`u?-LS(w)ra;D$Trra#_C-G0Q4l3=p*^LXZm<
z2724ouLDhmlTIfZKQ*$ytW$nZfxi8_G~&^(6l87EV$u10R>$uWbjO>^xN*Cu4`Fb2
zd1N5sxXoW5hU0VoP@<jm(D!5ro*rOn%9%P_ynyLh@mj2?{(}kq)MR{c3b3I;TxDXI
zZ=@bWV?)_GpRZS?i^%SI>KE-G+uNs`?TvYEW%}GL!MdLT%q&cR&<|2L?fSc|D>>xt
zrQ|xijK1v4Mr|ZQH(%>#t>{!ZJxyy?Frk+}zI*njlq!o3CQWowj?>mYibl%s{pme>
z``8DQ#|iG5)VzO_iB)JuA_tG$ztrcUT*j8R%%)`%{H(+*AXXn64woTeDI+nv>DPW^
z1N2uL*x}Y1G{^U=2bm+*K0)WacyE9LNNaTTnx}3uNJs>KK6@fGVZ*p*=RfgOFz@v5
z^mV@R5I|ZBAJD|#ZtuPRu<m-V<HmH{KRfhfYo``tt+d&-A?hS#fc88+?2(k!)hqr~
z(h+2G&>_X8A$s_R`7xac^2dmk4Q(PT@vgR-My!FFl)V)XUZ?a>kz(kOm3Xsf(K+D}
zdMA^5I@$K!Wi7pEw5=`k7UfFWX2+e-8oe|*C`i9*5v=t&EjF+-;vIE}m2T53`hj%K
zP)*t65vvM=({|%<!!=j1fPffgbTT<a#YoP=W!#SmPa>?5J-8*|Ytj;M&yOhv$Or&#
zNXIuH6>yjQ6lX{>wdIUSNID5U;$SP5@Oz1Mq>K#TZU=@_WI9<n{VhMi|5PziB{#b3
zvEAgdaikUt_1-z%C&*oZ76h75udyi#iUpW)xnUR^9rE(7O;ji4+Z#>FNip2TsCQMB
zPlIl`Bt8k%9Si;JCOI3U5UY`GU-m-S5aCm#AsX2(SeW69wyRE#@>ntL`Z%#@zdgst
zVb^qd^3(?hTnx#z;kREnt_1oiXoN<eWwhl$%$Uf6(T$((H2MX3L@5-FTDx6x3w+x4
zPMx(4a;;9%FH&KTt`c<@u1hlNdkv86!-H^`DJEwB%g@>u9F_i!j;U|+fxSc*f>$Va
z532yn$X87&T_dYuqX64k-}8*G%AM?1b+8yu0T3P6T$!Vxc7|R=P2R!)Wc;p`^XS1D
zpv<L|TwR`*Q6G<yM5*=1=2QbUUJQVViq?Ux9#5p`$fBykKDRHTcD*&h0_rycXg4WW
zG#&ck<s_CqHVnZ&8*kxuelC9Rx+l(v12wjHOiy>CJ{cZ_ap)7%6a!HU2!>mBoOZ;C
z-auLd+W!!`CHrV^l_xXZ<8m?3K|KyiO$t<W%E)@yx<zaSu$se#&C?mqP*qE`7jUCd
zav^O})&+x75myfj@vb03w{PH99fi8}`N$i2L9rB>%n_^dQ%h|npzY(B@D@sLd}TDa
zZ?Q5`u)OJyX_-Sk74TG7)=gnHTm3*f{iEi;ppx;>s83ibZET+2a<$u`4{*f8$KGf=
z5nuLVztapO>1vEZ-FH+~WZ$aWi`qZ7mPx^0AU=M<4F%W598yCZ@h*rVzI#`n6>8LX
znA8Kri0B?zh4jCxB$Q-f51(%QN_19FI_BBn9Ge1d)=F<;`Y+d}3ae$fSKSll60F0F
z%KP*>C`xy{HKI+derwOm@b6w`@EwA+=UYx~Y`>=jmnW->?Cu3#{_*?7!)!q>f&9Ug
z($egzrWMlJ<j(@&8J6soY)k6Xd;5G(AiwNX7w^1?o!N=F*uC%;G3w=9BU`|B_PMzB
z{U*Av(`(qJ#-_cJBh$cinb4@X4$YMH0V)@=sJHp-1%;baOmlF02VPNeIbijWUuaQI
zPcdqx5GocXLhwR08v8u9)9wWo!nnBOK{X>VB!E^pSx?0#158YcFRHY*ar2$l&ENj~
z9k+7vKh_C8v#=Aqj)YUhPNfgPf%bBf(<={6R(#y7(`i=de>#v8^Zwc6W#s5Ucv)vN
zK=MzI!ZTtDqJQ4}f3&mw)1)FfE@|=W+x?E$|6KVt;1&Uc)lCLMWB~E!;8+#eW$lWp
zrsTw0nS3St1PwjSl2NN~XyDR+?#1$$WtFww<o@}*pKApBh^X3-v^d#u^RYs#VS4={
zlR#B@S3=)N1qt-B9+IwwUE%wWUhR-@u(+G#a-hhVV>U28{N?6-0)jm?$@OPM1Pnb-
z2vY}d?1Y+GQpo4h^8Q+-H-wqUFBgBZgd(MpA%FxJChZg2T6;)_DVa^VhH{=TT+G#3
zNCU!c7c&9D?{}XL_uCnns0r+4_1rRxVqapn_1DCTAO=%xFF=Gg{B%H%z2l22&w<h+
z!U!nP!vNqSAQvq%>X58abSW9t9sg460HjSDTYJ3QNH2+aq}`Oq#c<#f1lim-^g_I8
zDL!_pYFoO@ZZ==B6B)O{;w}^ih^RcX)z@pt+bJrmI~)B7%DRW`45E~2I)(@!uUZPT
zGNBxg<KA%yF?3*Fx|UV}^kIho7>{nF$#w0vEFdMO(Az30e+8)J>ls8=jdrbh>xm{c
z_onO8j%k|r3;**VKgy9~YH~gi!-%4a)+$Beqs^yEU_GxF-J`oxrKjdV&D&JP5#OB;
zh;hFTb<H%pOA0(v8)7!LKA2hCzXbz|B)$?h1`zNMvb(0R$Pj?*o0!lQn>5(0S{)my
zOQtJS{@OCjZPd5yOwBXvzT{f}DTTS@mu=^lZPvaQQ+fsf+J`E1DRp*;Q>Rth;v1K~
z8Y;SI0%;U<;lA!IZc_k+QKuS1YT2ad)o2~tasM^*WUU-P_*3cQp7y^q4QV1QD`vbN
z-`d{cq`E(8X}xO0ngIwy%d{ug4U1Oph|u7IPrA(YF)_$gZO0Rh4M0{MDt!RRs<H56
zOX(tOE89@TMh!z_`i0$r6}kB>zzD0CgPB03d=xGs$#vK8+a-=S2<FHt0F647DPz{p
z8s_Y+@<u)|!gV=T@FL%hMA^CKd&uan$Yf9JRd>~@$HRRmmr`26ym%Gars5ev6VIbu
z2TX;4@H#*`cZ^ALpLexpVRTXxFOM+1mOR-k*~{h7_y33JBB#_@Tx@r?u<b?mM{4R}
zve2|p5v0nz)m>J+bJd|I?B2<_#WE?<Fnz#^T+;<8WPzgBZ^n%2VanGq)y@M~7l6X8
z3j5UaQFIaXvA#mz=)E>Q*~tGb(M5&`&?sx@t9ZF#eR%r55bvJ@*b~&n!#)d$a;>ba
zjX>reuP#3-Y$h!$sI7dHJ@`o7!VM27On_2u_Cf26(dINcMA_Tsj~O7MT-Mk}s>o^}
zO;6`_qvZA`l2l2*Jh*njrfy8itQZ)aqynSz_?G6Qq2K%0B6V6K??pv!ZkBPUw6oX@
zy7l?h0cDPbvYv&VpIKRKpmng`<oTo^&Gw+S_`6F<DX2)_P><94&lE6o?8_56(bf5l
zz4?N&_iz8iHL$k6ogd<FcNE#W<I)!Xbg&K|)jR=oUA|rew&fAby#d&DfUeJJlW~wb
zO-QL&K8A5{7kt@Z0J?2RzeHHs$L@Pgx2;fd2U9Gq0-IYO4~dtfYGTnQP&rJ31iOr>
z^~#31xQH0&${B*wPWXTE(m<DybD&1iDERbVs-Sh=yh3*YeEGq0wTU{Q7$77+0Zbsk
zX@$sTL;6z1re#cLdRh@(YYAoX8i6+(0Wv9|udJ+6fSl-9QSSdzB7o+WS4jdEu3wR%
z1N{j*B;i~|8a1e>vyt;?dfOLmG7G<6mrOU)dX)1ze^4djkACBaj#U`hyCDg1gqc1;
zfMjYgD+gYIwf%1u0U&DR<$6pT1>ue*A<rB%&Gu`~%I`B}0PJB=5r&agc+b!`@%8V+
zeMk8|_GcMc!&^Jg8^OaSaqf*LrCl^Axkp(3aa~RtsUNvoEI_y4Gk|K8*E)Tz=o0;x
zy2+hZN?W1s(aDeRImK-hfdLg$-v#{X+0h?hEgYMWK=%s}mnyf#v691<gLw&?Ju6!u
zTvjx?0M&SPaR?X$(9+YQTQp$U+u`E=3y@~$>FD2p0WlLea#&13AbQbpdHd=wfD|u!
zCwteg4AZH?=dK$Qh(sYY<h?2~Q^40HnJI3-+oG0cfW_-u*|O5CU2QoQsskw2bNyQs
zq)B!*cIx`-W}H-diAe|5hM)z2DWGEMDbjG!T-?T~0-F~1JPq@e23Yy#g7hqzP|tv!
zqGr}6re+o@VBjVLB)?yZ*o48RO_rGW<kC|7t2BDsqN6Dxd#m9Jqv#mO@S1Ba&^ZJ!
ztibZL0KDT+5R^v|Aco(&VPmHk#-xq9F!=*k1whMK2QXLis4^5#xX(D7{GBR+e{ul)
z!wqpDeWW#<n*&m9Vo~tJv@bw75l-rf>v{|{D}`*(8YE2AV^hX<MZ7PXEmVbNSN<fm
zf_!MZTf3`(R<cv#(@lm2V2js|O0;Y%Ky2-rQ)UtZ+1;Zlc|tR&2T-|Q3a$dhsQ<;$
z9q!eQXDtBhOQOtmAquc{$y+b}b}%itAVs>BEga}sXq=h(e>i&!sH(!Q-xoziML<A6
zT4_n?27ygTcZW36-KBtRKtQCsySqUe>2BC`cQ^Mzeb4uuGroJz7<UhcW3xAFvDSKW
z&iS9eS+4aJc<^MiSBs_<=eYiN|CTY6YRv(Z|Bl*wwxC0&W$@z*)}Jk7d+{Fy<fzb#
zjEszn-!p0#D+8B++G$)?zJ+YgXipk)Y1vV^T2%C-OIw$V?2mU-O)=k2U1puMjcn4u
z1NgJWf}6h`8KQJqNhPJpX8<b#2<k^D0^77=EFxR!&@U^iET^s{0&2X810Dp2#bqao
zrqg0IdApzYL!z3fuxKUa+fzhF9%r}HWfO}lH!gKajjA5kxvH&m(C1Hc-w>e_Tba3q
zx>tZkKdPG9e`CQC3-*|KrCw%0Cdg;?7*%1M#bEW7a}7IM$e$>F2-KE?!<8~&19`Yr
zM1Fc8ZTQ9n0R)Bq53duxgYV453}rD0@hQtjU&{`KPxnuMUG$&%%0Ofs-le-V<jSov
z-7~+m;0helrA;0EWDG8E=Z|WtCoJaNh!`fWoK>7#6l&R~UPUT_&?1@)2=fEK{kRcl
z(D**s4f)Pa%uH!(|9S>w#UHZn2iN|G_bh0E1T$BqiDSwtQ7o0Bi7q;Ls1i7+H)}8#
zl!PiHZ3DFJJw6DU7$XAbZ`gEj4cnCbC=-aM;jvP8^$!c?4+5_g@R$I{@NhdaknMoE
zdi?O@is!;ATs5`0vKWWAuF$jJq|qPrYS7Q>FD5Mz6BBuu$gIJfyfNuxUCmG<{G(Vo
z4aODnqw&*eRpS`Y_dJ%3c3t&;3j%!@3U*_P2KRydn<Ck4c{`g5Tuvr`XxuiKcqCxw
zwi{(u@Id-BSnf{_+`_zCWs1~jM&(nHYZ48bieO(-XEZq$cP$&Oj=H$#e&vL_y;p1p
z`{*M(Iz+hzBkzILntAGuB+XH=?%eIyuHYe0cQqdaU%>kf;Cl1Oo8>ll3~T5QV!3~^
z0p4FTGlErXj5C#i)66)U-hJR?)4WKTsmS8IgEwy*d-ZIh>dQ{>eWoForE(36g)7`V
zSz9{RV<+~xm2l&7)qhEpA-AswU(QEJk!pzLZX45~jLYg-`!rPc0r?*gV%FbvQG=AB
za0~a_t;#)an^hfAAPoznzwrZ6W}~HoCBk}^*l4Y6`OkJ7$)2#^lv76GT~1uIi5>Nt
z66m_AxnF|+4?A-F>iLa}$meWv?TL%^6CioP!S!Q{o6etdI#joo`Mi?%TR<({x>#i3
z_qpXCxB0X4x<0H49<kb#Y(Zlkl7{T24Rgo)5tc-SA`DsHAzC<aG-bhM{xj>K0XgC7
zmxx{iU`F@!emD6enZw&5nY>7E*9j4!C}Lu*53^0rOKI;E2}@A;G=WReIJ@M0rBF8L
zbj(LM``)%C3GPNt>dR>O`V-XXXq?%}y7~p@=mdy46t)u2tY=IO_7mWb|1mw_;7|}i
z$a8Hih!-_>WManHLieJ*bXb{MQ4bo-pFL%@pC_BWxvF#58m8@FsO!z|ZsfV<mY~am
zW<wk4^%Jb?e@+9en0rI!{^beY%E<qD3x0SnPW|uge^bR<o>@j?GW_Rr6k6IE@<&OW
zgTcsuKYAIH^`GzlOP+skll=1XY11iIp(c{eX72oJ231u?A)sT%f{*XHK~?YYSOTDF
z))*y!rT)7#t4-eB2B`OljNZiqHZZ4Bg<$+S`G+&MU&$myJi%i3y8l@{bc|w8F$lw-
znIByDZUCIG@-IPj47j9Nf6ytZi=k4GlU~_s*}%V9ZJsWI$?~jBVtyjj%k)xI_d<W^
zNL@UB9x00XP1`Uv_59(tVt@Y9Ji)*QMQxR8CNXLv)%?*tqhQ^@#Ik786c>>m_4lis
zpIy#+e{H!Lx3=&TYajnM9Thd4;z`qyc{sS54Q-uC)3=Eh+C(HNT{WxMC93(D80>#f
zO$%(s$NJ?8cD)ciU0TdTCvnfE1k)E-9q^t6`=WS?20HPQ;{z#KW=3YlA+?;M;@=;2
z{>_LumtrpOIubKcFh)XEiGD8e{n1&`<r9$k@Bzi~yI0GC9;W<;oV;;wc(ds8-<+Ts
ziE@d<DKaNd-<x`W^ZS-L_C#QVQv7PsOdT|0!pT-w83$_?Qz!PHYpX)^b`2`824Ynk
zHauis8<bp&KgUS7vPFscg+NJ{ZPZpotNCew9^N=#D7R((Z~w7eBlrOAHn6HPeH%>m
z$}-SfNdWh(!s<D=wEg#OY*C2MV|!UvEWZn?&NBbIm#U@u2Mkh#FWkE7XWxSsBuEhZ
zE}5xYz+jew`_$&o)%=Qgt~7qVR3*ia3!3Uz3(o4BN6depVIzwD40$rry>*O*^XDT^
zUwB-VKkvYQ|CPe=-+J&L3;FMF{9lqq{@d~Y)tUd>hyS;e?tfaC%YOX1Y|1|-12bBd
zOeu$1b(wl5lQf|P^VtO%(U<yi>;RwZzt{4?v*m-CfC-;de7H|>b}^8^dv`CqF<iJ!
z8#8+Kyc{T<JE^V9D}P4ezLolW1Q<0$IXM;uCSlIiQ$(x_d|6FR3;ygvBt`ETDf5j7
zLi(m=UQhlVO&@|C3GvF2^6ijh5pWUpNVzQW%z8|4Rkv`|{tYU)V+sT|CRH<V0bVpI
zxcf=gMa7+T`J<b*oqt^!aL#)0cq_~j>&<WkwrGf<{+mL}_j3q%ahE(m&KCc@cJ#w<
z|HINz6%7OFAy`wv%adRh&R6~2yiExB2K{N3Ec<`JX2<JK*hX+@guEX+?{_H3n3Q$?
z!<;#X3CsLF7;Jq1jcIVEb-ovtd77oghKUQQ?S21?dFDCoP+9v_A$OF}^}4sFvGQd|
zZ7tQm$p{W^03K^T>S~0FTq<6lM=F60a9#er)|;MN=4n)_5YE0yNftnu=^H}EXK!+S
zx$lG-5dl&n<7iPfh{C%-?%p2?kX*UyPKa(MgkRehrul6nvtRR5ah645f`&?4^aNtV
zTmqUO#`C{}2kw_gAb=^EUvyh-2m(leMqG7DNsdL2QMzo~wTXd2%ukRM%QD->-P6+2
z+u12X8yOy{Aexu&e!V*k-TzVGT3M9ER&zJeJo5;6{M>WY3-(X<z$8hVz-eTn+Y2Bb
z3TNxwd1|bY=)(54`WQC|!FT)htWS{F1NiOlx+$}u#}3u;=x;l_Q751Nx!VuH{N$+~
zg|LiZ^Oqsneg`{rN7IEoGo`vaA@FK+<O$n^!)ud|EyhO2VA)9aHa2sOchFlHw+qVj
z^khowzXvvuiZ{>ZL>Y0bkeqsnO#3IpeSyE4zt|A=mdN-%Yq>A8K1JvpK~N%!i=3M{
z0C2z-ebXEB*JmA;mr4`IJ%9kW{%k?1u>K%fHQ&6nXOP%;chW)mZm)0ls^dFO${i~y
zjm-jQ;x~IjHplZcz`tSe15hNXm`goN$ejc4xorN>dq1R;K)U)%O_62KIX7Wil^XHf
z(UggQ{bc|iXTJ0IZ^mn-blH_v%$Z4rM+lGg)-YcVqTH#es>?Q*bi}0kR)QQ>kE<IU
zkmj0mdlIZb=)T`x+Rw%JWH9jfn2ONj7&CIZg7c@gz-4BdfxNsTs*JYPM*#s{OKCX9
z?3x;b_B=x~Gqa#w*x^WMsiyNvd}~@5ND?<p@X&4D=MzRY1)Ft1sq5*XYrIVmr<^U-
zoehS0)Yx4moZwa@|MzSC(Y0(QYrj3^VW^}Hk~);Mq##m#2@UHV{ib=OkmZd9MZ5fp
z&Z4Fp;TO1Bd!)z1bPc>7Z_Q7-v^Y%ZbWKh1&}Us>4XKba!?Wb#RNpOfd=BTI-79sM
zhm4A7-5nW0d#KnAR!0S;hIEJ3b(slqpLJ=Rj>;d4?-2m3TZdGf+i5gAnUIh>kER@1
z@N|(Axj+8D=H^aH&3YaCnw5nKC*%5dE$6db2PgX!EL$NgEW+mz!pjh$RJXNyy2Vi1
z*qGO9s>(*?N}RHG*Jm|-i2-ypG<0;iOb7ORmS1#*kkpEuTS9Fz_om!F9i$W%s{b|^
z3h)=L_4Qrnq}Z9`roON?)^yi4>Kvsc0O`MTbGs0Eb@g_g;slQavl|AQo?hvDpVIwn
z{Xu?{wjoury;pdT$E8BGx|MK*ma1aH565bU!ly*es~6+=@!QCI)3%4}eb1JJjO?aN
zH0-WTJXkGMd2BAz#<ARiz@I~X^%vjZ2DTCy+;501yxu^|TPeAT)$S~ejfGfQu?!7;
zzxSBB!N>hvv<A5@Dx0=7fm?TM9`<(^rB^7surh;DItu&0R|MA4Cv48P!A6Nu5mx$_
zOZ`mOwFbiDqob@~m||gKBy!oEMnATAf^cybydehZmB>d;ev9U(U?aBG-pi@5!|_rd
zq`hi+nDJ?t%@THx*|T|tD03xwz$#%kI@?hT-!|Z{&S<C#Kh?accV(wJok{0$b3We0
zR?(1iS?_#CG*w~-GUP=e0CvQ~L(q8Jph_7IB64d99wr+WRR8V4Az6OM=gw<6KKEXZ
zYFbjtQ-=*v)=%p9d904^)_+5O&2<oe)&PBqqIx^tFMf$zNOyi1E7&3|iOacgK%eRx
z8Lset;mIb2_rc2A-tBo~`uNs??QvGJpkP~S#|vh0TL*_5*jZx3(JfX8w=Wm{UK^{X
zhkIwzYb?W#M32kO`m@FtdpwRy8TjIXC@it{%b6BGLuCQ}5p&d{%&++TWE?Z;KO<vC
zg*sl+p<63Rj1DBMZe3p6Bsy=b7Y~oecCA<o2t2G-M?SJBOb98gKisCVh?UIDEy&it
z#J&jzZiAdn99$E>21aDE;)04fQJqPH)ytYE#UaXX=2LrSeM_EG65VK+uR)$3T0>a=
zE{y}J0Ih=Rb~WmYPS*d9l6J>3M>RhvKx*i2YjN9_a|=YD?mpXksrcjv+FiAtg4EcO
zA|~O_|CYWagnGZ{s48k=WBC{5R4p0b3Am4A3weGmJgCwSS6~)%*P#E@x%@zYjPAlt
zP+tM*@X?=+^Hf59U6M&gdt_vU)^)8Ea1QL*MrWG0<101YO*b7|><RDp<{HC8VEQ;4
zh%j^MZ`EYtss&;@7!Nm@6dtqlh_o&-Ju=6ivw__S$oa0i6p0S6G;N#8pFX1qr$qME
zwJ=;-UFEQ9?vx?^28HnBy$0*4`8T0dcKhq?F?^S^UEUP=94NHc0EOTcw^Oqb=uU3^
zA*q?=svy_wqE3eRi4+d6@w_JmvaeSv%AY^w4cD;)7Uic8f;h?F<atO);2%wnci2pY
zS;>(FRzxUo7-kh@&(_)XgYL~(xcvSdnxDSvq911isd2e8?2GPwUj6#wwzQ0j+kq?*
zDiXnK8q9!#v;344SzTS??yHR4nD11RK0c&3S0|{?A3JE<spbPHqnJ8vrBd*|T0xzn
ztZKrKD1J!Gw_~iQ=MH+&e=kc?=)t^sPIfjU;3Y6w9hd#q<^Kvl)&Gg6SarW=`*DAd
zWJ6qqRrhZG^yxZ0QRV41%wwN~sHCK%3eO>|`({m)D3ofI_v{HO&E<j|*4n}E$l)jt
zy7<|>#UYj#B%!~t8qV4PYZ3_Dpq+zFyU`b=2~Ngi^}Rg+$?`=Y6WG~niSb7ZE`_rp
z`U&hVRztc{GQz|PYZ~m0x@TY3G#z81WBJ$m`$_9+YHjINX@*+LB9PC1<c}V9bC!tz
zxrh5*>~6`o_6#~+x2tcZV3zfMgg~u!aJG|Y0^klkzEe||p_zRsI1^`M5sccKb**Wy
zFauT=78KRgz$|#MKn_zFAF01P?LK=?9vIlVx|(5Uhh%Tha@h*iY}wqxjl8*S@w}C(
zEVUF9vq|9N5+T7v4=Ha244slmYN}jLMc<W1WwJll!kza3nbtRd%&5w!9R-D<T(xDT
zC<H|#b9lpkdq()4r6bWxqgJ_BUk)eiy0`+agh;jKJlAhYC}(stGr`U6u4$=TDbHgk
zJ(Kfu|DhHmE323v@7TnIslI+wnn-#H$aWwaGAgUA-ZzVlxVUgE|M)#<GdkKj1{lwN
zd&+l(cWn%RR`qpld@@CnWvW-kdPH0U%c3AlQJBYe)<?{*jTAU3*1R0FNK@c_gT&HH
z)RZOVbQzEMeqjOpT(`#Y(%PEjE>DR^s`g%Hq#Wbi&HmOLy)Mz!3y+(8DcUyja+SV8
zT|-Uhlbd<ym$xBa39gq4Zsf#}<JsWGpm?^md<Wj~OcE_H2U_(__}TdTi~1Q&`Zoet
z%@O#GiZW5&>*d-`o|e#`a(+gOBblpx9(HGQEs*1j@c=UM_zu^bP&#)!aIg}LRxw+C
zn83q+yOkYwTQp*+%X4w<Ta3QORX^Vw+vVS#jm?<o=zh6`_#837Z@oF)8+_N}af%cz
zemf_ub@m;|YK>cQEj-$pmIndLW?^NV_r-I<*W8xPtgyS3(a)SJWTlzBG`FQmN$ZnX
zm`}V<2pM#yqyp|tOG&Sg@nTQUOL@My)x)Ql#(PEAO%-p!F`j@?HJqqCPl&Tbh{I^p
zcLeZ(R)6OcZaikT?}D!BqGphX%fwt&AX;Ah`aw`^ky!^1k^d$>yVK%23hzyU0wuTO
zd8@Y-vAI1vz;H&zMgwR_{bjrF%1ZcfMi3(-Gd=hhM}8#QmzI5WjB;u+ZZTV70~<r~
z@bP_2|Blmvkm)<w_N>QoXYnv+W!_UnB%+j=y03_lXfJAI%}tG~E#G~C>M^jRVqiql
zGse}vbYM9}L*1|i%D;{tM)MwNqOQI^-4p^ySa`e`;FvxR?y#{fQmb^IUKu&gOmv=^
z=?R14;Kbgl9#qO^J1>o{nX`<w<jGJ1nu&nGu#ea?{^a?KNZ4fU9R*{5j9qMQPL2|d
zTI=!an5ZxYvsFgx>aWn8920l-u<49|P?m1JQ~7M!d{`NH&QPea@g{Ai!T!ZHm|hGT
zN(^Bk7yb23-zx-^yi}f@+Ot^ueDyOIkG;qfP1hmAXLsgkOgcXv+<6`F#|l}0o7JRE
zN1vN*Aw<>;pP$jtrm6GIb)6_&wA`ehj|hj+I19uHn3CvF&1Q?wFfrSf4m8~^KGQ}{
zPmElHPJ!Tq;&>F_|2#nSn33XDS9EEjg|Yd;(Sd5I>p^0pJK?K&s_-s?#H)vlugu%S
zx7W1XBcXs0i*>WVp;k!u9xVXl`AT=8hohXDH9hTt={6~&TqqnbVMvzQaMWkH_WJ9^
z(OW*kSdQD&Gp$4pCu-DQCmkGgipdf?6h^zV1TWEa|6YUsIGzLNE$7n<pBAD1Pq&zL
z=aS@Vq>)qr268iaRd{!NlL=^i5ZnEIzq0RC;-S%#N174c7_K~f)tQDKcfGzhm#2E0
zX|}ZV?*ubPX)g~-9bnEMiHb>565VeFcuyi>iePH($dvNuE)LkxP<S)1<v)8j5oQG`
z)1M{?7sXiLbJ<<qy{R4hND@(9{TQ%cnm+!SH;!M9%zr9XF%MGIS2#gt!R!=ud>O7d
zTFa@b{j#@!)9O&&&5byq4Ts+K4Qe0(yIy|-G2o(%jWW+PzbWkR^B@A~Pp}DF1Zb#e
z@doFe)e~F?>Z==HU>2aus9s`ZtOY1^yIb4Y0o9W56{@b`*w|QRnm)w)F(J3TP`WHO
zuHSgUWn14^3=~L%rX6<4Qx5$pUA$=dEsS=zJ9w_vB?y9rA!bkd3D{jfB{lY^w0Y1c
zMw=0*%ztR?-2YMKy{uru%6qc>f@rGFjt&(G7j5a2g-bmKc14m*uK7Ug9@s0m?ruy%
zme;n}O^;s?b=CdEUEhoS86l&hAOL~6Uo;(mUh*@#961Qh;I_NfX+}Cb?uRv?JUb*O
zq7A;<z~W_LVU7$};+U8=W{O$v-hdn*1{`U`;bT_y-#Y!)0^};C5*zp%H$MQa3jwaV
zXz{lwD2SqUmddGvNtgG5DL5{!)GXy_?9b&jLtW0oYOQSZ59Ab8EX=g^J{ugr+ztTj
zDP1`mKE9CH*lr}lzJ59)q6~$$UL8u4M+ldHX-j*WA%AE~d)!PeV<T$HNr}PZefd<w
zjHS1#w`VZiid^{|r~W$kgKZuJ7qtvTSt94Yqzw3gwxJDMtApRD+D$z#zC36E5Lu`}
zZxokF`?A`^cL1mM@iU(ZV=v8YBPB7^UrVTcx%bJUo9S8fjicek{;1&|8>fbun2xEn
zSIKy$!&z=q*c+hstWu!V57Lme#zD1Wi#yQu)v6D(sb1<pZq)W{X`KL^t>BB9TEo`S
zLuu({aJmJ{nVC2n8$`*3pm=6o>%*0@Z|!6(u{)cKJv}ULo8G`SUt7TdIMuecHmm(#
z?!%dZ<8*(#pPmHkWRx#V5OvkWmbSn8*R)3{X7lF{zES(KyF@PsQfh13#{eSGL=4@p
z`k<v)i?%NaVtcJ;s$>A*#4k|k?TE}pbLG26f<+`hp6&0fEKF08Sii)!?Xl{<cB}We
zK3%eCa14gZQ;q@#`h6y2i@2GQ@z7m$ZLPCo6@9pQPVN@8vw86e&G#3a;nG@L{LMe|
z1DD6X;b3zbQ!oy7Z8FEQTFmw?8{b9o#Ji?D>~+5Nx}x{EeA#lM92KpROWVQ1fQAmt
zz_%$i0M(B6>@oiWuf`h{<tPVj&)0HpZlrRdxjtIFOg#Vv<+mQ_llbifh%sMdvyim6
zo*Tb1SpN~FF|8Oxz&_DBk(HHYd(m~$BHTX#jL?EV-oy_m!br&9(xXGFv#aWAimMeA
zRdVHFry~AvcM5)MMQ!{I#mX-?_730gC;{~DyU)=bQtf^5Hxq&Ic;x+PGL7q+thEuK
z0kkZJE&`r`%|f5#sfO0n6`{w`T8W)24;|G>o(Ks^N|V<meP~p~ySID~Agyahk_2;8
z+9&=4KRm%IG{k6Q%YlD1qbV)@Dlv>70<U|isvJc>=-WdzdD;F743B9#-~L9vStQKZ
zSu)IDFQ1+>62w-WN9wzr5&}%n%fUSC&|Ut3%=tGSM8==P4b*?1o}Fama{H0YuIjY#
zKa55J(Nb3)i_RqXM(WEh%WniB+T27fBgQ9SgM$dWBI4w<SlN^iNBL`)qkQ!Af=*CJ
zqz1AxyqZslx|s0Rx>L40U(cR6vT}14v}afY_bMD5pNw0cwmvYn<Kjm_!uIK`LgBc-
zibR5M0p8E3qtA_whqrJ`Y>RMqtzUmDOmuV{M&ooBAL+zJAouJm)Y%q=GzGf<iAcx5
zac?J5g?bEpKUw9J`GJC~$|b(KTIH;B0CuM;r>uN^^i!XX=T1*7_ZT2dt6oPM85sZk
zX&DD~t>=#V@N2U?*048DT~+n=D$&IJtqVTBsUT6ZI2o+;tf;Xt6EKgeFGg!Hq<W(2
z^fs*1Wfg#~VeQC3Jk}Bm*}+Hz?r7lx3wCo8X`!wW@36yNrZf6&TE$>B9M6C&CRDhh
z7`n2#si(~C4NZCSor;<|n&I>DUBeYgj>B2hy5{7hlidjt+tvLv<w+0&LL8R;PEOTQ
zi7X%mv@ib77|;iSjNu(kBKMwtyd*1_d}4FV_#n*8cEDXoobnM}==mepo5a9!y?M_D
zNSRs3ZLI32#JP~3PX&!P)l-~Bg%*~_U~5N~k}%uSBH#t>>>InR_n|`_{Hdk%=o`w@
z7lix6i@e=bIqg9NU9DI`fv;O%NL{T|^12{EE*_uNzK#@uAi^9qf#6z3evd$>7z&+p
zzZ1Lr5k=r8Y*ihnwkaKrk4?Z2QFGYd!REf~t>hh+vbM6qV>mZ%3mqi>_TEnD)+7ko
zey{F?2sPc%KoBKnes_AyClXe#%^lW<&u(8+ogNO=c_QU{P=2Q6wv^f!ai^iGn4GBH
z)j9}ZZ+l47zJUq!I|qi5`N~p|mM0za+kXsOVB*b7UM>z-YG}ma;NTecI`Jh-S0wV0
zh4#nYxC#iQ<^~LB5;i!McEifo-V8rz%|i8>7RO<<etJ|CZ$(<Wh4?B!kduYZWAOl3
zfa&s-xrG*CBGh0z;l5M@J4TY#bY92~=5?GME>$x#bCZyW4-ao!Bc#(yArPO@{w<}|
zlgK*!d$6H8T_Im_T3HNa#dtZ{7`|t$s;#{}=yvF_qyz>?y^D}3tnP5E<SaNH1{U$C
z&%Q(L(-sZCTpe}B!fNfSw4AJNaSM4mAlV~;mZ2Gvd#h^8i5SOfSi=L6Ra7iCTWdJu
zxpdx#W&``+*yQ>+l{KGK@#F7oa>;go!4%*zI{+r#;>i6o@w|GJ+v^F1vn*X43iw)w
zx93aqyQ>SI@w23Wz!JE9ca3W#xqvUp(iCglS5phbnLWMYXS>Qv8<RT?T`gek4;S58
z+_tR8&M`4wvDPOqmjnidifKh?s)nz|r&kyN7!w;49dnI^dv~}+Xg*Qa(lNa>GPvWw
zyY>9JKSZY(OwTNlM@K&!8_rkP8f3Ux@~`4s7G7au^4?rGr!9|=uZiDnmO8vx%gf98
zZ1&mC#>Su&mFUl2lOG8L*pBMzxhu@ChbKhp9PS2DbqzMBv0g=nq2My#?1#t!lWv-Y
zt`?Sp3(>PM9R3KF(>zke_{wZ6D=S<3l15F0L|WRQI~m*5oEn4apn3??)xo<nk}Uwj
zHs`J3gIoZLsGfmwvo{SGtnqj|>r+)U$9sH+GqW0~v-e{V&RLlg`?2R0UsB`VE`F{d
z&w;CIdw2tUd#{@g4l0dWwI;0+8^=VxMmdCc{mBd}V3EsGDgbcXVH!QkanK7wj(N~s
zfzM(p^G=yA*xW~uG+N2JN}YDN8|W0lD;a1mll{6hlr-e7Mi>hd8>5n>HioGV3t{e6
zoEo2aIKo5~5~Bv0%TIu-;$k-!h2VI0vixcQ3wEn6Ee(Ni5%iBwFQuYr1_y2W!T(vM
z?*mA0e_7pomI7lP+)qcPOfj!+9JHcYoT!6d+4`s#WaZ_RR94pZYX1#7-A6L-?f5^h
zr}5wax|rbp=Sb227*zTnKm4DM|KGw_Gc4hvHVBa!qnk`PG(p^duK>s{T{1D{WrmAR
ze)+i1-h6dchi26jd>(GFkrH1w)FII^U~{79X3lkN9v}dl<iOsca!#pW{8t;M7H#6(
z_O#^<#dbsc2?w8@qS@0yA}cz8wzFHkt<TC6B2!XTi@9{+02rk$z?6EYXv)1{WWw$)
z;y{#>Z82BHI%XNlrLpr((D(ZCEV;?;Yu(H?*h#85AM!g3+SMy&mWD<N3!YCXN2AKP
zs?PbO0g{Z17_~T*;$7;zwZQ^9x{fr@-`jv&N6l-pqNUFjq_jvZ7~KHiEpJy%MR#@(
zBZr#h_kf>|6(|q=sXz)XuDf7nsv9{Pz;Qe|L5^c*nHnD5U2Z$}-+XfOV)8KtKTly<
zNr6Jf8zL&3rOXUuKmq#jAQ2aT<7#B&3%m;g4sDS_#)Q*3T4F~$Ti#k(h+B_%Yi&^b
zIBU74TKw)rwS2s!?_bvh(2fK<dJ5=#zQ3ib<HZu3a@A?h8P3Wg{@hWZDz6pLlu1|2
zBu-g8#7P%j+AuIY55H`WSUj8pbP^5x{9cK+g$J|kC>woC*2j!`7-5gEYGR_HrHEaA
z&^DcC=UfjGJBTnNyHWR@zA>VsmewQ>HUVx)#A-Xd^JAQV$4ZA?QQ1N|U(}OD`zRoP
z9brJ2Ak6g(6@NobQ6bSS-}uQ5`gaNko03!Oa;0o$!4+o6@``b$bhaqfCX^zxsCjZu
zlw=;)J-wtNq+{j1nNZGF%uhx{lg-%Nt(d56q~4*NDKaTmPAMhM48=|)g)ycn<rwP;
zC5PxXB2JT|t{9<JEdpQk;o&=eYkRqX7j6GKyeB~~58G=YBECe+y<sfIZ^uYu<T=bS
zbtySbGJISF9c?l{!?ku-jcCvg<G1rl5WDcrXpa1IFHiQj^onJpQ)&vbYbrkG51u=-
zp~=|0SEol8`(%e?=4!YaYYK#p%*fANR1{B8?=-3<8I^Oe#HQbkkMa%m{$4%5U{Vr(
zCi;ZyWr9aC#=mEB7OoZXda#AwU(_?QG&=iST_=Kvw6RJwe-Mu?yv%ks`Fb&D`>S=h
zDv*55;vM?u9*X6Zspi*~n#Hbw{+T@z6LV=mWNlYQFhkz?{<YPCwWNk__mG`0%MPb7
zM4T$TZ}MYLjxlbu0(yvIE>&ScWq1^J-*9EEmYs$!R<8HIUJS?G+R}==jv+lgkax#Q
z)i@)mbKC0eUfM3q%aVhFiV-G{8sb};4@MZSM|y0iMC>gCv~#GZb8zf%U}L$Y>+-UF
ztn@%B>JtJgJrdwhe2-%0aUMH2qGP?Hy3l8xp>!}*BZzdFmzPyAlQVNW3YmCS&A+m>
zYs40;+_{Ion`-g&-^>Je{FFr|Ik))P(mvc-RhT-_PbvjLeP)4Ffr20`6Uc0wS;=8{
z{mix#mn18BY+SQH@^ogAa$d+yOHgaZHakI~tVv!^U<-T=J$#|wN~Bs0ZY`U-nFvUc
zH(Q#U*sLKl5gV4Q5G7d-#>I15<e#eW!m>>(EoZ>xq!=1e9x-6?kjkWT((lb*_k(|`
z(D?WH5WLE}^7thG53M*CubL#3JGx=3j*Q?-xC{N8zVp8#&U(yjyVNWJb_l7skTgP(
z$NwJjQ@8)`5?XNo2|xe8fF%D*G4TIu9^U`3IM)|BiX)pNl1dsFVauUM#`Q^=da=l_
zg^VY-3UB#e{F&ST0dn-$Wl_C1T)%8NWKBf!-}?A_yP`e&LHhSbj-NgT!Fc145XFEQ
zFJE8vkCe>Veo!w1wSQk59XBP*zpZ(I@-{Fcj8gAkvvQ+7KrVkmBj-u5=!}Q+Xz%YY
zucJP-oX240nt26<{SA~3qyi<&UgZ~p!*73u8*m>`+&l$x`7$2-uQlcP0|J|ECu5SY
z>$b9|aG+wQ9E_qO6Ra-KJ8o|!u6Wt>jEZ=(&!ZZgV~0U8`CWq%CxaB^o`)aqocfKb
zqJS<ZP+R8#+<b$A%5>3{2p%dB{{WFI^n-&Tf*((awuKqJ@ux?q%q$;u(HW_7aY6n>
ze4ta77OM*`BGHrwLsP5B2<uQV6el*_aEUS37^jRQK0n+kSX#<NjFCvRt20>YH!g3P
zZ+P`H)O7WC;{CJ<EH!k<O>QETa@X}+W%Yq=Sr1SzTdTrm!l-<30>_$r94!;yFv<~w
zb@G~D)Jg>jwVF-&Y!4eS1%EOeE&&~9BL=}d0l~VavaA~itww?Lv&VJoA|6WQCPc=G
zov*lfr82XgYOQWjmK(I}4(lXa4nZ~XF}t_Ib4RBoU-QWMd0$5_U6xPwmL5c7vy-Mi
z5t>j_d;bnFW`L#@HAK17p`>&ZeWQEDwobTbjpnK!<hwF<oGn?iQLv0tk?$}L43C-*
zH%y??F9g{~h%aUbYy?US(R&e}_<GVCfA9vkbl59gu8NNu9RmeRo$sX`amq?;aQpF#
z_pHoQ?)zUCo>Xy8+uKxd<G45-Lgzpt45ZBN&dEe9)SVmN(stMP(6Zi!v9Rh;*;Ldq
z$;Hu=6V;Awx~~Nb-z=ZViyJDEAzd(SWqkbWDW^#Qav`WI02EdO#D}zk>0|p&4!5?7
z+00zDyN84#=-*D3t=Y0w1bzF-`f*^1ALF=EDn$T5@ScR4&(L-o`V6d7#FxInj_Jns
z>FCdt#F<n3b(cw9-u3EAibRB3LKww=xoGm8l0R}BupB6UI`s@}*k;lhe8(M%Z_|0(
zzh~$q7!H=}x|{}ujQ42IpjpYq%<s58jBK;=TV3z`yv5$Jd!_PQKL-{TPDbEvuA+%O
zK|@ry7S8-mGnY>g?##`m8@#Uo#Bh<Zu9p29NOTqH;=qsGU3}f5WA~%em6WQGx~DN#
zndD8%_c$~kSsKjSQZqCEm6NW~vOzaLTXMQIEB3f75!k7qWbW_^meTW!x|wECH(-N<
zjZKZOBQsM40dFFaB-JN^^r<~m)KL~DkmP$<HPc*zgJP)mDt0S8^c1^up~#H77wk@=
z;e5gBK%MXZ^!Ss(zJ2K)_G+)|s>W6JCi=qC;wKFN%^;&~nQ9g%#4cuHOkjTd4GQ=?
zxCHaN8wULbrB3QW>Csl!LfYa|cPT?L-&V)ox_MdI?uPzpRIusjTwB3ZV0aLOo6!7?
zqplgqXMiNkvC`n&x+I{G)ekK9i`GJX8oB|+%In*2Hn2C_RxG2&^BLQP7*Qyz1u?+=
za<l8d3~F{0A(;;le7I+R3c4|kEOuz;n$=_11owpIpOpEMtXWd;eOt(YHvhVta!cO0
zT-(zt+VI2P2V~IngR?g#n|*7q6d_NXUWS0Ut5S|^;j70NHAJ92!QZ&m>|+<ia1zAe
z<0*i&a%oV=Qv#N&fhEZi2Wa%q<s5;ky5`1Ay6U{A<-*S~L$rTuZz8-?phS)x<($bB
zF2Z8e_4R|0pgof<^>_Am1mdcZJR)7<kcE_~S70PkWhh&-nF1N6fxFOWr+n4?9sFIl
zckG!`RVcA;b|(NFDnbIfQXY*2u9|9LrEt#?$Y$`#E@rDN!g~;ui#;mCzVRNOduAI=
z?kI)GZIW8?vtYh#`o^j?Gs+~M{nZTSzEitSa&YaEPg-94sv_tMZ8grWDy@LAa!L2?
zaTOtNBpT{+LY&I{hJl4KQTt%ERF{D7S_Vi!qb=MRC!TM;7>T(g^Yht2l3Kvk)P{q5
zIS==yPHng`Zu@epH>D&d6l;jci|ZTPGz*iMl%@#Av-3-eXIw8SO>o%p>{abUibFbQ
zMzV4WLI7CY&~g%w=x}#+Ue7{7W1OV;J;?X>Asy|N#XiEEotQsywlfO_2u7QoQH}sX
z7PQiwDIvFwO^j8WW7Cq@P^81_hS3S?`~nmI4eTVatwy}>qS4tCu;Gj4i?TARwg;M$
z3FfDO5Hm?uS)|kb<p|(;LBol=kb-gvuR3((qWZb{>%X@(LqGL{OjXjA^0{5)FLSg&
zpN{TFG10Lyv=aA{x3VrpbTvj!Sytjnp)pdx3Qc70Ov-aC1i#u+4b$uJpZ==gz57yk
z?j}&ocIRvYqK3LfFqEP&i=nl@cSPBB-!=uHZ|2sqw`B&j?;B_~-mITo^Ic({Ls@AL
zU4d;`>8oewO1e_vc0E1nw3%8cce#yP5<?|jHD8ASsVA52bNu?MX=s$W>vGS^)VI}J
zqd4otaNpDCqB$Vb+c!W%Nb;k(OnPhcafYI8eZVugU)+e6VUZ@?-P6cbiz~gPDcgA!
zH)xa7HrqRsY_H*t6YJG#v&UnV4n=F(C%w<BQA7NSjieLjzhx*cpL&tf12k%}4>Tjt
ze`x#>;DYE+;XU&)3lNseEh|V)ugYt08&tic3<sh2q1)Om4S>(4<AN-k0$1NBu=2D_
z&OM)W_voU@D|*k&!paO#A)#Rjun7`oMhtWrfGD+axayf1l8a=ZG{#A-y#g9#8F*rU
zQIjES|5JkCJs1^ONP?gMThlr;^4?%`$6(J$*NL={iMy7qG0XV6hyahJ){W>0LrFNc
zEN*cmF9mp@KUiRuuWD5yfCVj<M#(rZBPop|!w@dG!^*k{T*&|e8`$6m$BTvh4sU8O
z=h+Ps*SX@RyeGi^o{cko^pGI2gNCBu@Wc|buu&9e8})_gEv#vbp)#v^u018Gtj56`
z1zVm%*I?E9wtBLgmO@Irn>Yombboj`KfyMX*f6xdmObiqfTj9w?%{x@q_z*}q5*<n
zGb&r~YR;7AJ6Mo9UE!)KA0SJ}rsTN2@q$ieqNCo6S+yGeGzYVt#222sy7xeA|K7FU
ze%-c2q}7m!%v&|}EO&uk8-p3Cqd$H9MKiiPL6G<n(YMwiCU$PE)In>u?Kgx<)%@Xr
zoo&Egp_pOyuKIFL8DNw3&AfaA;upBMTihykgB2+0JDc4o-_is_Bg{B*3O8PY&BFA6
zx*BYIwl~=#ExTAbDk=fSI#ijK5+u01NMU6aw#^&;Lqod#5!)kI%_2S%)M$PcY4y?G
zNq}6M9qh9{8?1_{A(KP5x`M2tHR;Ge3#Y-d|Bz?AzvUfi?ttYHnAX&&lzc$#z`#|b
zZGFsuwy=wa*_$Z-tyR5Y)**}TTN{SzpD(6_AKlezC>Tg)OA34JaY%r|CbZ1C_Y%>~
zKdk{-UNH7}OW!@InKEiTi+7jp2J#PQ+*fy-2<*`U0$uvbx-c|mUMmTk5LsJ&@CZFq
zax#L&3gybnXewxFDkO%;HOB>mTu1z|VZaxw=vuz4MI~ZjL9=u8DGrY!zI!k~$13Aw
zouI6htb4~(&EwW8lFXA*>>7RS-uEW@yEi}oG;b2Z_3V^H{hVH@O8kq+txqOR$4|2q
zO~A}%`E*we^dee+!N|f_3|`4ELBg(%&4l=o0Z;JOs!?d1jO8M~v9f2aY<5kYN><?`
zy?uywXqb#6)2THi3Bk7)7{Kxr@|p#AIT6&Dhc4cZ@eN_xIwX(^n1%6XEY!%c@x6^4
zJ*q}cT&$ctD#3bzbe5!s_?lHUE%MJ*#cJhF!(wHHawOp7AV%;GfIN&=C#7c{W3?O(
z9tXrqNA<qyRw@aa66l+=41;&5*nW@j$u<);xHWbF6uqW);?U9TipE@y+9F?l1ygZC
zH5z3d{{uuc+<CeQQBZ&MTS(O>t#QUkhGzKL==AbQVwM1aTEbskTU}cafskU@87?xY
zrdhYFss?8ucYnNkp_gM|Yg5LK8)@~HeR{NMs>thJW}O%f*fLl4fM?95zWtN&d7b)B
zt$V5uXUSC&m-Mt|AeAz83<raMbk!N;p<H?9O`JX2QPqh08H1Xfu9c2zf?si`GPS%3
z(+(XO7)Oq5SMxtUZd^MFN)}|)i7##U9PBTi?zXKR+_sFmU4E96f8}xfdZrwndth(O
zeDfp&WEAR4zz>d+0<QEpYsI+>JLBCG=i2v$_Xw_sc(xvupPnDuH~atrM9cEKuzZBR
z&?d(?A)Tgy^&d9RRHjih!Tt`6<|&jma<oI?cJFw<{s|i<Nns9Lu~INRceZ@5syJ6)
z$*;RGKCTI#%9K})!sgU4Sx4PotGSu?0m~+WT6dABc_wW}_6QC@h=chF_3=g37;}Xw
zuOnaX@T79I4}u2%<J4-w3j3>%4C|GSpZ1a_&U=6b;7U+wn1wZLVRQuni*~Pp1i@f!
z3ympgvt;$(;W<AKrykUM9nVJAaHy<dD!zWg#-+ZqNV}G%{!VW*8#I}pPqu36vtujm
zn!tT~2dLQZ-*h>Uy=wf3P~?C|s0WUCN(ftZi=u8?<lpnY9_D?uW_V4e$op<!T>q*G
z@iD2wY}{aQKfF4@lpR!VV{HS#eV*=HONw^`yWC`=E@WYEWoUpJ?AulH2f=Nl1R(44
z8{psX4{B`T^R|`+&4f2&Ynjyezf!)F8O?ao0S)0N(&2eMHvbf9$;TJQCYn4rkmymN
zsPtKY-zi8kuKA&a?9ZX;SXP^i^~PLntMebt9ll$O{viy6Z!yVOSv}O9Wqyp;Xa81L
zRH@v9G$-*ifw3^*O$8VQ!$M~gU7d|Tl~~M0P+A;Jd?m@>y)teYkA-(eaITuz;f?;J
zL$Zmx5gD#!zbe}vCL=>8)I8*01D}c3a$W0GJ;};co=_LHy0?KxupT5MPoPLy{>^se
zcJ#8b;1@tXWDcLHARhmC!5{&kPZaaz>|;2A6;#Ah-56$#F7*({^R8z}Tr=5^K~lY)
zaO&)m&O<oc#?g5Sx^V`=&CT*}8+LY6YRXdu8izl1dJ*ZcrzcDND2U>)aJsH;D#w<P
zx4*#O<>r_Od`pqV8}Pa{?}bfYWN2D&OsN1<Nko!PM5LP$?HNFKe7$-9biJjgh~eTS
z$&1yQE%!qDY7GH7cDAi$cA*r3K!hN~`XL31gJ|sPXJFI*x>55=l}KrLA{={MFfu=|
zv7Q<nqoec4>&Xq(Vv$)a7oF5iJ8pZXB&D3JJYoW?j<JoNUe?)e2yf*t5emH>7+rs-
zbhoPAEEij<upc$G3Z%?Fzo$2xSZTd4QAsj}WUf(atg-P8*W#wZ^-1Q)Xdt5=^wVI<
z*qqxrcg+zr>y4JpaaKx^2u<-K1hSuUd8jX|dMMU?en3P=7bGbh;9-v8r+k!%i7sPZ
zvUyJ57C?u+<VK$S1c5tiZ!C<`PHArOpXjkg)vKjDw)=auPUq0id=#743@p`Fh@oAS
z`QoDH=4PxDz2P>ritj>yMq)XfnL9}awRZ;yK(P9#dV3~>gz_54fBOe8FOfg3Rv+_Q
z@`t%wIIUoyhd?(?%B$IpadGW!wZ7EDs}X4@@)qhn#7j?~qEZ_1@_h=t&!WU8qo^{U
z{Z0!TRZ~+QwFo~&L>zHB>+++>q0{<hsGpWwSI6e#6SJs;1o8)s@=3SLn97UkaR-r-
z5H4nMQgHuxHTIJnKjq-DvVx+;6IEsu-XA}I9t9z}_;~hb2cksAW~2HBIWEWZzth5^
zvT%6#=a*ZHOLc?s-sKezudHa`+enh=aNm5F5%*}Q#?BQ+ad&UXC{PrJ99W5};a0>>
zH-1GwI1m*Rvu}LeP|Z$75{C7vwbu6IN678%Odd5eYI<g_*Vih7gt+fa<&wgaD#mwk
zTzLO{p9ApfUc{VYZica0Y@9aA)RgZ=C#G(xDCA^wPy<xZp2b3)kLPzLi4)(;goS0H
zJym}2rLLJD36yxEV64H!rmy_O%wlxXJu+Ujf4UG8UA%}M29NOkCz=BN&9r^JjAF(+
zx^Y_75&pX}Sp(D%54gQ~K0)17T5b&tbmAYsZ9ivIO3|5%1@ysCBoO}kd*If;?CHtF
zaMBATT^8zO6X#ON`@1%cjgsB!QU&<mvIB`)qTCaNgX5)U(exT`ws2nr-wg+1rm#kr
zN-i1&48p?aC}6GB)9ofpAz#CGa<qhQ<b2?By)BPt%}Qx9kkcdKeXF^$+#1qlyAWcg
zi_TJkN926UPQ0oW?jJQLhKDz?ikXLq6{Zlb%FA1zUNBv%mJpYwGb96y)IYCvK8q9`
zi++RKs5#c-ygatck04a9%P3gRJcZG%CMP?>JUW#I8P)O-Emw_sf3W%MB|qxp#|J?K
zGOw^qz~cl(m+8B^14?Z&^HS8ON7ANC1W!k?di}Q`@<g>q#>QnX4&67`Rb)F;&EDSo
z&!018O1?{%)sPHYJ(7x*N|1gZdVS;Mi}Frgovpo{+Rxiex0lCWe1Xt&^KW;9gFAi?
z3cZ!)k#1)uGIQ8|XwWYeryPxrDdFO(A{Kro@#2zVXE2nI5VpD8Q|wTM!{MY;F?iXS
z9)MY%HA+&f!+Q~?OtR~Ef%a^=B{VcP6`NUT!ac_qVXe3Wa&_A6u=mr3ZKM>-<5zj{
z=bM}AV#DxD0@my6>Tm^7US8Y(q`Q1TX?b5P)mMun2Ij(D82R{F6TMEFw3dVJ1;b~h
z%lRY^6#vPQG)Bf+zb9`fF@CRbpoek}7^D@;80xhy61nodCX3h&1%5e>26fhQ7N+jy
z=O8y#(3~r&3a>)?SLu6HP!U6h0B!|AnqZ!X8U-#`8YyU{I}Ja>p%{i#bDI>!iZT0!
zh#=Upj&qo}y|(}d6dI<=H~v)Isi{K=a@f>gDBmQ36hGPOk^&h@1q%GU-v6Agff5Do
z7&>x4i$_G7Op!P{+4xa#ib<H&ZqCoh8{*wpqIHbqcT63coXzy?uqtc1>1s($E743J
zoSWjN=z>qW{)JDC;!4}`8*}Bs%0fsjqF_9hb1OVJ5)NT@)Zru|L#IwG*>^qgdGY$#
zE(=af8iP+)ZxdSd#gE@~xfqBSt7JN12p=vUgdtR|tt`mYBG%t<G9~$f;456x9ZyZu
znsp63P%{O*oOOJ<Uxml0E5j;GMc}KUIBSV0mSqv48s+~Z6opVs&PpKk)ye~Dces@Y
zz^9f}xNriU@tM2D$GP_!e_(ZvY&IyCmOD;f)-&OQAoa4kwY*izYUSr)*k2&VJk)=V
zaep^(UGOs~D_^P+-5yOB&K~|d_|GG-wgIV8n}-7em%HnjF|4Uva9t=#T)#YI2nbec
z2h<9V9^N~uU(Th!ocoh+IZyk_!RUhn+pnhP*V+5hE=8hj|HpTb%9r!=Nqq=hBht-(
zCxvwx;1)Kc=bHKNA3SyJWO9s3_WtWo9!Ld+@k&3Ed}wHD`AGeS<v+=t1F7`>{y&1<
zpL-H?wZD7#LgZmEix0nwf`)FCth~DYwH_!VMV^+Hq4k;31B4ZhG8J<zwCzq#0uhko
zKUDBCtt>dhoFNPd=8e}`@;Tkv(cubr3hfD8HVtKYDQ?b+_L}@U&ygon6@fdptLNR6
z!*=tY2`C?D-rs~C`COFp2l<CH`zU2O;^v94{r9MczaiH@_ELpX-%(MSn48}QM-(dN
zqNAaiv#DunY64grs)CYIuDk}mHYm+UN=AkjB2Ni2uRi$Q1XEv_r8`KAYs+Nwkkay8
zTqU}br<CJX?992eS{i^PB2Zv+Cd>&vgL?)0CAWK5U2HuPw*&oc`Z({9@gT}Yi!=ep
z#Ta}}Ufq2{Hn+_@OLzaRK*vqX6Sw^X2QOhB7EtO<HGPP);Ul5@;Y|a4#}pw<!K9M<
zQlA}p5?+RYgO|RR2W7?$)PFdcj?n;++q)~>Ba}vqsfIgS?T><dRu=%y(WqQ@y0;@N
zAKySdxRF(y9eyE~%iJkd)dI{rv}c_V@rMLf?5{a7*B{`cMs&Y@5G>w`;?a_Oe0)sT
zaIVvzz#V`^r`h0IEt_4pl>6hi9xjXNx@*ExN3g|ARdGtnSLp5eQgBsORjh_1A74`h
zjT#U=J>U1xzR8G3UEss5+}^xYLf%!i*=_Cnp0+eMM<7L~>?oIu%WnF~;LwT%=bJ|D
zl?D3SoV*;B%Z^QiT&|hJ%3Xn_jGpekUJq&eBR)D_<MPYu$hqmN)yR0Y2+{=Jq(P%Q
z)#8O9i=hLr*i~Nk)SH8w#n4K{+Y90XaukTu`gQB}CD*xIHTg<%wZi3sLwA5^E&;%6
z_y%LTUYuUj!4mEOAv6eYWNXByTZ>wC`r~(jZ29_w$-*8O;vU_l^+8QZ*A%A>0+mvP
zVp0kim=H+o$`54`G93n1GDP(2g}nz?jI3nn^nN}lcb)H4^X-?~18vs&+%7jVVeVIE
z@se1$xGqu^pfJ0|KoZ~0<q2_$l9pS!VSfT^?IRD5yEB+aqEFVQ#~a#(5~0+a#idFX
z(}oR0mJks(=hh@pSeFPW6t&!INf?afrI+U&c+OQ}&MVy(k&lF4RM<Xcs6<>x<u<tL
zgZ~&goY~_V6g@RW>2^?#;wo@?=8t_f{8L|i5#$`gZuVmnBd8Id622NUX@%iByx)ke
z*nPIg-ArfuYs<pJ-Xvdlm$h5b-0^N{?^|%Zf{cp9c+A}kLe8yOltz_m`y+UH0*-4%
zH@Br8cDkC2V*+lgK0moN4t6N0>P*OGT~q5ZvYn|pYAATcK229tP@uiO9u1V*DE@fc
z*stqNSH6Xn^?>@7wHK$+jh~YFlk4UVw>ELWpR!w?*vNW-&IO+eyO=it>B>WtJChcs
z=9&vVlXRz0g5iOQk?`5;Rp0b27E_Ote5tyJR~mbe0poJmbrI8hogxd7JEghvsO+|k
zQDffgW0$?8sJWYtn_|=1R2BCLQ<mUvGvm*s03T9oce6*wd#C3soS&{R<uKnG6T@L(
zEULOX@mmT_22_k?q^sM(e}&F%G}Of$%fUrKSAV<kMSvU(H;i0Xx06{qR)wcl+|^er
z$v0n2Jow8K*G4OOCd<#>mnv7Q50=7|GZ;j$==dr<oKv{2(S@ZcN{>YGw@HpNg11pO
zO^jX3cgp~{-Fv}}*Gbo0!fmO-Et6BL6SrUT>Zq2L$HgY0Jp4k+!@Pl*u8!7lnO3D3
z|Ln_sb~-nkoq{qRvT(BWdsd{Q)!r>wBQN7Sc6O)VKS>Eat`B0EO=4mS=312$6>m?c
zEeKurn-<#wY;0`&L@2{=54-7{oSb-Xj)xDHI{YZOxo^g`JZ_dlrC7{olvPx+wUo@w
zcT)rdcrKPhccv>Vvki;&yCdrA>I8g|-R^Ec552n?N*6<X{v2x5=8wV7&fa))I_*p7
zUgdfL<h<=YpvrEA>&0O(&*gfgmOGd~b<xDc#3Jdm`b>wwfraYThfBerO7m~>TKk=$
z!rg&n0WJ57m1ZAAnDbWtUgI4PJG)Be@Xl=QS!qAd)q*c!ADC^3_{N>;S?q?^HMyIa
zaeCXT(qb<`QJ<r(^4Qc%2-@H{j4n`0e6reUvI5D&U=7ptd;<ki=C<}l!v$q$wt<qz
zo-Vk<WhebYR~RMa_p;N4U=LbC)R{kjGMAHMw?E87z47zfPnaT_jGSC|4bn6&PHZ3E
z>}g+Yf8+ip!ec>Faf;>2Hm!K}8XDHhPc5snD158IKxo=F`4*H2ZLK1w%ryr8guc5F
zH6~>NX)-h!o*?OPV4>3e*6wj+cRikiV-urP-Qg-ZsB+rk<+wOfE!C)cd^1j{&Q(6$
zJNkKQsh__1+o?^3R+4IJ!|TYhyZK^W1Qz$Ji&~3@tG2vqI*)_jYQksv{e8V!$K54c
zG+OyG9i-}-)dokajUH;Xu7g3d2(0FlG?>p=3ohDvdX}f@VAEyx+1Y+pO7^8GB_NmZ
z&d@}+-h8EhoD+4-Y@%5EXcv^EjOVVn5w+jF!@O%Vo#^BCmBgPcvA^i&rM?vKkmZtH
z0r=_0%6%Vpsrt+2+`UBZGpUt^Q{i3_YHQoF>FTwCQ7w>7=Jn9kZ~dT}j-7o<i>vf1
zw|`FaxZ59;n=a?2Xlq*m(z=~s3kfp~;JcE*Xui63UR>Rb(~@SgzDCCgA4QRHGV++8
zN|fGNdq<NC>Q|37?p6N;QP9mA_h&UX!|084&O~puGKW_%B4_}vl&UbTS6<Dpt&AQ%
zC|*K3#~e?ftb$<+e?bd20SN4*DS-52;jVIb=qnbHH=(H_*WY8q^Y-S(BC`H=V<<cp
zxpP^mWkw%^IY7zO<D!KW;LtqSiG!i1__al!&kioXt)eujHP~-y&ma+joid7$r|v|N
zw#iuDWSx_Zre*>UHz()SuP^ZEWa5rTy{!3pd5U?;pe#5j16`uu?ds|}2Zl*hR8%;X
zQjR=jppcxpy6gG=Lb8Cb5Co{}*DU7hoc8CNEb31p^7D7TA>kf3`N(BTav!v!OYvOj
z85pdli$%U*)m<M*4hjka3q>ra!|qJAjS4m9uxv&~hQV52yl(q<r;C+H1<KI`ZWm})
zb+yyQ;flGrIXLOq{z6No1<XDFYf4E*#<zQ*n2gNe#nIYYZ!D|J>2`M{9V53V2|0OY
zS{m2cj14#h)3*it{ihGo($e<!rz_oH=w7T$mKqZNKa72KR8{TP?*;@^Qj|`SPU#Nm
zM!G?e?nW9#KpLb$Lb|)8rMtVkbJKkv&w1bXoIA$%-EkfJ58bZ)thJt)_4~~^d7MKu
zV27J6ysYPbdGBV9h_Jf0<`y?s60_{|5RH5U%~;tufbsG0l2r57`{IzBA?OSRa#b;K
zIJ&TqJo+VGeR?6qt=c5jWpd|!zmDZ-(3-B@`jw>u%)88b{OY~Su4N)cgOn2wfxEH>
zp3}j8o}<A*-rLTRF$-_K%#0#4WAn4UFFTZSdJvylY(}1dCy6-tp!)_I@jNACbA-@!
z&5p9J*GeOze6_V^9=P7b;@9S-C?aYq>0<hO>OQY)Nm*H=_m3%{&dpFNC8(uQrv5!8
zvM9Hk-`Un(y@X*&@OsbGLYLb;;uFQrsDpZ3N*i;9J*d#fkPH%*K?de{K<p&OGmw34
zgc+l<Q13tA;20u8%I1y{p8V|x8*q0UtMc=qt-q8`p9d+9F(>JioB6l<$I>NcW#x^O
z$mja~lDxEjy{K!AwMpTNc;-fcKc)BpA;Aj9rjIW!$ypm4Y!o-`>MFA{WS$vs|0eVk
z2WLAm5r=J8bV6$7lWQ&A51y>#91CgUC-N>^V_nX;_&a@u<)tY)M||JNnb+;FHD-Q+
za$?~}y2Ddr*Zg}!@sYmi#r_pDg$e@wyVIUePb?fNOsu+n7IR1$V0~mLcswsgmp?aF
z*h86_9lTOFR3ZnUW?SrD{mW4%46J<A(15MjL7O?+6>KlQU$(}nd4URI#&TOk!p#Xc
z!)NVm_kvXqD}D$%A7(#2yEzW0^lI+D=PbWm+S|nNCK{ZS#eRC`oUKTem*8qMkRR3-
z?1fWOl$T%FE!ER~zt!#MZ0$VOb)GenoAk&}jsC5c_jk(2xG$bMIpKS8TJP=oZk|EL
z$L%;C9TbIC%qG$94+>?R2{@CI_4X}I4lPZ78&jVlp`4vNw%`jP+md{3LS0;3WHIhf
z8{0udBf2{s5(w<XlTYPGK}DS$8~ezdkj&#!oS#oaPah*e28W1>jEWj7m4$_c_5Ats
z>+5R>NsN^H`L2<TO-W(l-Fi=yj}L^FmX;z4mw;eCPl=L0Ro*h!Vyf62Byx+1fwTDQ
z*DsXIcN!WAayb<<mMH)FLlZ;e-PhIC)zTs;EZjCV#lgda5BVMy#m2@aEF?5-S?%X1
znj@E-_N$mfr`}mbL4gS{!W|v^dwO7ezI=hj$Hxa(f|2Cqhrp9EC(uPoh>$9Xiu(Ec
zcQ&}5DyyiJNwL~*+#K}w?tX1w|K^~!?Kqoq-!;c6G`BQ2mBM`!7x{Cs#fwiRI>y|5
z4~i6YgN%1{h`)P?&%GO<Aw!XoT|L;<cW{@LB%eyo>ju4>9oY6q!-qsf#9LaKiRFxa
z^CsLcR8(ZS@_>PWT2(#Rp#B{rJ*}FG0)M4TU$Hl8!rb-aTUT9C(TN(n=g4PHL#c}v
z29^=YQK`vMHs%J7EB*X{epr&rUs*YM#}!pXC+k~}3_Uxtqgf^O6EeFX<9EdqusCE+
z-~3c_)M3nY3Pt+&NkLWDjK^T4>z94-v@%vy)tym%XlG_u-7MLQPiQ!5bAJ_9R0MyL
zo`nV`$`cx*$9q?IiO;ORwS-t;VGfg~6}L?NQe5swUCS)>wztKjN3*_5^XD5lNH&F-
zg(`!To7>oXJsXgltI2KgQ-_C)A`A39<_!x~Qa0q_nWbn1E$iqgupBN??kz4?W;Nw9
zqF}A|Bu6@>uBx=<?N6UKXWa}-R1oJ@o8FRdXL#_Q+-4nwAXn;TZB;u@*<IcJSgL-k
zwA50yKB+A81c+6XhzsRji?dv|f1Pj}x9XJbX!)rhX`~Fr+6nwDUjAtg@&V2=DkQL^
zT!IYRqWfFyX7(pxL+Dx6$2BG7^Gfj9c1%pli17>LUqttU%T<5!)RU5xm9@3C)$MHC
z?reKxEJr>ZmxY3ol9HYMVsqf;^~R2)n~F+Ib+t2aO+S6A1ry~bv|`H%UG@X}wc+%e
zZ(H*_>s2-;f#Bj|hREEaqU0Yx<~u#dCMRQ?a|;UKeA3fN;o#t|VQ+43z!GL<iL%Op
z9U2-E;%H|VDV5dJ(<AJU3<Kfesc&g%$q)|@5+PMnn;IT|Ux*e;!0(IzNw;2#%h7Ja
zny44wswvJb$jHmjXExbvKTmQ&*`CwUkW`SB-7si>_eQwUKX_(V-OzYLCgnQ#JE{A_
zkDdd#MI5h=@o6f`8o>t}XSt@&O~qee;UKxPo!u{<e*OHg_)~{lSylD1&SPOHSdDn*
zajV7-3mN5%L5yH~{v%F|)E_DJx#@69g;-NlnkLdxx5l#XW&@3g51-ed+=a&lpY}AH
za%6GRe6T-I7}2ls+>vA8y_)z-2p&5UX>-c3?qXBM%w3=>Eq?LUYd_(PNyHt^8<PI`
z#`dl`&lyGmn3hA&E>uDuIEWL$;d)?(S0dBvH!LRenOwK1$??o~<Cm)5=|}uGCPyRp
zkCw0y1Ydry{s?LoZ?m037{L;vWYR&Mp58%1-ZYLAGD`zX^viAYu^$_hS@g5I&zfWR
zBx@GmP`%paP$I_Dc(~onCe9U8r_1(m)4ax(t=OuZsdy~oPr15>g^0hgUdM{=Pi3x*
zF_I88=X;poU>%mwb3eGqNMT@io5h1fsJ%~2)+30E)_t^<&Wesz<5Euw!^dztoNaWN
zI!sF1Mme1L-LKAAl9rjCZ#)PkJhoB8zUx4OBY66=<h`5QO{4pzSQvpM^5n+Wmdo9h
z9VyNW42;#4l@Z&O)zww48f#!d$V*B}QbZN0mkB+@-r)-B=rpc4R#a70$xtXQo?Y@?
zl<sKm?(UkInL)il_UmkII@p`8uGhffz<l+J+vU(wUmpen`<dkJ+fv|F7#SG_pn-}h
z%kMsXAW=pB1%>wJ@?0wE&5w+ZlPJ>B$%OlfSChBA!{N>y%6FO@OsSvcDAcMM{JqC<
zFki0E1-Y|1nEcY3UX-L7M!?ZGHRrj~kVnz!pWW#ns#;UVuBM_gb8`8+=cQPX2#CbE
zI38h*j#j61G~%%6JNJi<B_{3y?YxpR=qbI`DyVn4Is>Qtd_%wk&$anxxL5NdML+7X
z4TsAlnY@b$ic?i$;;gZ}!PMY8o=5)a3U^9!(TjoH`er&U_pR9;<2cL2*Dsb$bt<lF
z${WIBjXheW5qb75X@3|CJXKMdppkNhyw}jUA8N_~`Ug^adgOaa%+Kd#oAfK8tSZJ;
zR(8Qf-P_WNu2{R-lV#UhqErB)-GsNXYq>P40qSZ2146gX{-eJB$$79iObaMg`6TmL
zX$$fE2;{^dg#Vajq;qT^ZaQ-Fngcs4W$EBjiE7;@o1c~2Zon%IkABV6#$g3IASn>?
z-mt>?fPcLAQli4-@r@S{Y#q~rl$#1ddwqsmm^GJn)<!V0PM9Cz4)_;f2ereVp_t`#
z8<>L(;`m*(gR!y|1EI+2p27L4wx5OR+;`gJDQj`6{rEX~Kh4t$epwFUG@QWgr+-1e
z$=})DZt%EfCMSp2mB*E44J)mv2o4N<jX*3bDLGTB?<?}B;GH2eP^fS%zKCd?1af1@
zgaiZz1_mG#1M=$CE6att^9+vJ%Ia!4d3j2I&W+RSsS-V#wIHDISy@>2#&U*A_1k8v
zEW|+`VEg`3vmOmlgXZQI7N^%92{N$}5hRfkQc_aT)6<PduT-{m<@OFpvoo|_9)dGm
za~ql)54IfpX3K}+99g1z>oK_mnQFU%@8!_v;^A@^)~}f^iSElkAV5NhS*{-1a@;Qn
ziTT~?vOX@ySk&Od=ab6aIoz#tnUoBM5haf+t31?rcuCIzlZxL`g7_$H5$5&%q~&yz
z>BE`LzGFNdJ|5mS;Enx^sZuS`cBENN572YrNVPs_(Dt1D1<c9-w4J#urT6tdDJc(p
z#sgZ_W(SIZYr6kkmc_EqjxEWXwr?n&+xo<2FO+VsQE!Fy_MQ4$m))>tv}=R_cqiPq
zX*OsEJ<rzsN6c6$hXxN|-Lo={!ibobc?tzI6Y*98ocnc4TNgOSX9^sI44~Og(pp>=
zFkZUk<VKURo9!8R2{QbicSl7$7j9QhHO{Ea%)@WQJU&gG&Rqbd_?C(NDt1>m<K@&o
zV*Uv8%TAOGMJi{8-`4y;8RVQr=31)tzVIJ*o$@?-F^x`P1+^EobEXq_2Dcl0^sPa2
z{L@i6L$P=v5FUc<-gjFjnZV_T5qKunKc*pFV_$n$IG;Y#S8Za5jSll7QUV!rp$bYd
ztBjznkt>>+8!v`*c#~xr!}<6p+KZ~lYO3-F^mXO<+dw2Q6pW|dZS!1^QFrz9E(^>!
z3Yj<MG%{5dz3A$RqLd{24(us4HDZ2`TA=G7+P~~KfG|Qv5T?UIBjg4ZQ<Q09h<Kdo
z=;=dy40pG;(XEJ)k&%H*SLS@6>FUp6vk1JmpFpuD%N>no1;@mwfO1W3MnwD`@jrg>
z0>$iKe=;QSSo`bO3oEf|%bC$C3pFjRIj6nJ^S!BXQ*#An<w_6-1c8(npW`b`hG2aJ
zNuHvh@Oj>xfoKgg3rkyD8#bN#u&IN~(ISW=<8axpw*{cdCv$JCuPbY6YHDfmm=2Th
z@bK`bdhbt{H8k)V1ayVq3X?{vmgxQ&Mm(HoVsi50a3SeRZLwo>uSmzL1T*zjT;Ize
zk$jro_Gb3McR6AA8>TjJ5b?I5!<()5;}gclIY2%em#IU4b85cE3YPApIdiN!F+Wuq
zM}$x@mMDK<o~BdXqf{V`jE+%b$Ga(>Ax|=%#v0gsoZ){8A&KgF{yeyfl?`vg0X42~
z>lrKSc+=^Pl7d23TFZyB_#>A|8k&4{I*JqY+eM)1PTZiW;{pDfH-c=94^*_Y>_KLL
z0e6PWpRy$E8PW4$Z*i=I**@-pRZLnqYoy)?bE1!ZzoLdcnVGwAW&$2|q*AY@|K6@N
z)b9mEM7Pm}@1`eFkAevkXRBnX*_l$61f8ZlAp_CLp`0zMXL&y+zMv*Gf|~4k0<W`e
zZh<d3q`kSH(|*%U#fdOM=5VGb$6cJ5bW0~-s8OcJ*`Yj<vtcXF`!W1&%V%^1&h?sE
zZE)<ik#uQd>^TX@$+I|`MV|=$ELAWVtA9=u-sRSn6YQd*q||0yF}En}1!7?WcgMad
zDMXO=&Q2hQ`hRe})E#Oe#Rvor0N@r6UbiD%H-Cb=p}vB@1R2r8U+vm}%LiTJFf!aE
zm~O-^AzHHX6jb*{pF}((oJ1tjySgPtv@rkm5z)oLq4Il<fULv<wwI)+#>o`!8(idB
z_x)xWih{h2e5#72hK?AODSPD@O#FqViE(?(85!n;vzW!lH!Vz@=tA!W#<2=!^yv~2
zm~oI1e1Cu1+pkFFu7iQ}_VylC@+J)o_V<sEjYahsf~0bwxuG@Nj@%>X*(1Zg?ZJ$1
z>rUuremR{3+so>1%?2-YcXz)O2qn6gU(toO>syu67*p72fCjj@H%WMoY$dA_D59yW
zF|dZ@>!E{ij%+Rcaxm6f3SX210=&<>JSuhvo4oc`2N;}X!EJ%pu@dBp2_iI65?NN3
zmLjAuelpn+lCPKprG6_IH}L?&GcY6sI6)MCLQJfz`%@*vu|07uGb0zR3HR!#PhWo>
zz6^Pn6S}`Nv((2#&c{L7j3Yrt>;fqNZ<OBX&=EWVcUgLyr`-86h+J`|o<jkyOoS#D
z0(sv}Mv;8;nSOY9N>oqpv5VNd-Cht3hknDHfWHSm`dlO}8p^{iLS(U%C!$9$7EDD*
zV<t{SNy}aZzXI0@fr}w<1jI<;jLRqR>f5<aLS@mEue|$%C|@Blb$<TW1?WOPI?Bt!
zw|JQ*8_m7l1HJUH5b#*|4sVc@;PyFv5{u~X!toYJj{OX168u$A|1<8<&)iC8E;b(W
zH}WK}XsCvD2<Tu)xafIUaw6X4XeHs#Y9?%(d;W5eI=vEtN4Q^;D<X-4(IYXW8D1g0
z(U5TEg$d3Rq=@40VDRJu+bp1RVHtWwmn}qlz^RVB%fYUM5F>;YNX|+FUt)A@busb1
zp-b?WI&CTchrjmV*Yg!=TBfrJL{5f9kNA`rd5S1{nKP>*85!itK$AWQW7q!O_x17p
z_UOW|>&Qq-zK5?Dt$N;5z4A*9my#QJ5!ex%jo|C%@?OEfyY7Aq`otmD2JM+G@ifae
zpXv}T-Ga-VecLNc%#NLpw<%4ITQ|wm=h74v8qclzX?RLLO{50I-LYy4%U%mR@AOf|
zysKEV&NSLwXu4#jCf}>MemQ9^psm&w(`=MmazB>&`WfSx{EzycmE&nT<7T4Y#V8b$
z{s?P!5=Mg8)ds@Pk@4afl@$zEtM-%HH;@vJ`0;rspBJL36QfTOe?5oM_q-aFLiRj|
zLFLy=D=2y~*-<j`wUZ2^XZ(HF_<M1xSILcT;Y*teTn}7sOmA{N*dC!{wB!Z5Oj-$4
z+yB0juX&`S$Z!|85yxj)UHWKZ0|XHt&vmt()93fm$$GqLCJ}W(7?G_XhGAOTdJ^R_
zsz-;@4(iViA|;ZDsn-^xo)GCtG^B7c%h2TMSw5afBh+c~HZ6a+%8C$_XXL1#yG$YE
z^PCu*jUJh2oyEwD7JA5T?Kkf&3^GSuH1{azE#L(IxXj1YF2r0i@LV?dvxdXoI>g7t
za7P@+H^(WdBxm%F3O^$x9o>R|(}NZ;W~cE_74zt**$Ujhg~tV>Kq9&`lMzXSrDz?i
z#swB0E_e4Sy_2K#(n|_Xin%yv<8imm*=3m6M(-nBQ}7Q*YsBfyyk?^n;DnF5nn0@y
z2n0@to|LI3t+u?bbFS?(Bf7sc^z__O`NOakz3d@>P)Xj3saZbz%jJmfrm}=cl^AvH
zrne=vqwmF07)_Sq=U1OIClsc)w`zWdkkr(Em!Z)Adm~=r>+MiJ_2lsl@p?suAsN}x
z&qx>3<0Ar#M!BbBvDw`f65<+-eoFN-t#*D~qDCvg8JG<sH@-QNE=27c*fAPO_}8x7
zwOpDoEj_0-7Q38l{*IKfTuvu)DozVmKNpl(PEk`D*zH7y)*@@D455Y3;8d--rhg9&
z%nevyXWs)wbS;`yGV0*Da9~9rdg-r6B#>Fpt8BM@#>TIA)mBPm!x!N$k73ivd+#(U
zQKnw*G4}Agk!QY%IPQC7!O!gZ8m+XbWUjL5<bV?wV)9q9(MdSFH||`$YLw1BOMNH1
z$&}ZAS(BS$YUxB%_O)T`#u*6CKNa#I5y@&EyijB7chq_$Pary0=b()bu;H|u&bJ5K
zIEnO3ZLDT%w0yGbdgGj9$-leA@2x+qVb^ivQTW$EhJP<5gPs-L`pmeyyS)R5?=zQ{
zwP|iN^Wn2pG_E(yY3O2M3Eewer<Mw$`mkfw9J<NMQ(}AFr-E8X^8wqC&8QGlofrs&
z``<Ud{KlRw^{9ntOIznF8PPbcz=(h#esww*aJ;$s?&R*lyYD%Fz&0MeQRV|C(f@qM
zG&kq`c&1O_@`vtQqujj6!~5y>#xBOo1FW}c;_v7CLXr{RU=QIL<>shpD5<IF&<_2|
zuPZK0$AetKD(FjI17)&6Ku0fw0!hoQOb_eJc;5}@jzAn*`!lDAXn!j^FS{@&;~7NF
zMj(YV9UBs@qP*maF5qQ)nO%R+%vPUS`2Ev?sfAdE;$Ce->*#YxM6aPJIi`D<&Mr3I
zG*ip{Xi)&@;h}T67anA}3DyNsUKa)BglL$Bilt_IInUzwsI~~xNt*}+Bkc{=l+3vr
zBH`+Q^ZkR@TT3I5uhb+$gmmFbtv0UU;G0)+1~IvIco-o|X;NUMoVoD>5DlGZ2iCbc
zm|hHjRAcmrzTT`x>~Efs$D4goDbsFzKK~#onnOOh?eWE6A&MH-);$hMJ?X0aSS@AM
zwwK@9F@B(577%mB_N3)eSMVRl!SMa}YP|c;YJ7|VtI^f$!AG!PBx@tmwdnc7_M&$I
z)vH*zRY-zNalFyQiwKqB0t+(C*M942FxzIrC>!c%)6RQ->i87p1OWnCk-p)h|15Ym
zS#)-|y0vD#lzZ~6BH6Wl!_<k*Xlsg|t`5Ft&U;nru@?`8ZDVhwEWbAh#2aKC>WPyi
zawc3x%a}RHG}RmI-XC7T9Q=Uz^cWV-d%UGB=^p9apIk8EKfJgXf`e)4?SD^#E~eW!
z#p>`=f>mE#J{xwSx1WTGoR*CR4FbA!)bhT|5k%9WKj+thvu<yPK7pn2BgF`YNoy$Y
z>}>tCdG#O^c~wwcJB0B)3nMQlxQN%UZ{rB9IW4E?1;+L@q1SgHR`NepiK^2AE9&bx
z;vX4846HeRczAd*S0j`Lt89!=mmR8~>FtM8jh;)x7cNAdgxpR8qvI`YAR{FWv><1F
z%_ZEVP8dKL(`%0;b;tX7Fh61mfrS{_JQUjKr!U3wojBL<IB?y#Ia-zsdNGA#xH+9z
zR8O?jzFxo&{XO#SVb3M7!`vKjBj}oQL%zA8_lKM(>Zr+zYVa=<elFh3Fkyrd6qlCO
zQQ0}`*apGEp(p_B<Bf!OF7_IVJPs;crldAvWEB0Jtf;Wb;2fOV0Eb%c0;_O}W#ss(
zwHZx3=<9dMj2lJjX-$m3EQYr&Cnu)4)WCC+$Q+HmK?3#g@)Nl&kTR;*V<VMnPX*UO
zd@>ZJQj+W`)b5!8w#s|$Ls5zy^MV?Os+jO5YV;r~;DXDHPAD?cm)vj!?874XTBjBC
z7&9xfK-YIVvSP*&2s^3h`H7<N#DsERNo@%ZIZPdmm?@LIbGO;Lq$RhHYJD9g$*pPb
z*RcVO{(?|~Pd_s+Q^2f(nPtML*hiD^R5`vWOO)Pi04t~>o9tU<77>mVN6G1Oum}JE
z0;_><HBAJW)#r*mgS0eM40{Xo=(;rv(@t;GD+}!<mKdA}bO{4;^4nFF4cU?e{#akY
z!un~0aXn^aWn@eh)$?7+K~s~2nj8sY*+2Jc`7Qe}mNc0-Y4H|j?4+Hm+7a)I=c3N4
z6p-aLYwrWO{b02OZKB5u-&(U~%bsrPClCSoE*`YiltzgS=vDZdZqb5QNZ%TqPhO<1
zk<-EX_H=$?T|o`;7FKMf5n?5q3J3v{<!mTV*?x<@;AbEs(P_ATTbj(G^cjY@ibd`$
z<0|)dh&JCmrM;2c`#^VYs?lRlLCpExCHfIjvWJ^9lx=c~Vs!2MD0azQ)Q{M<v@vCs
zS1>*@H>)X^)Y0q*qrQ}k;}gns1G^S-Qf_j(?*av>X1(uPvy;U+4tQ@^UvCIQ#s57C
zub)hR5th?Y=^5=mUW~%tq;Qi>ef-7yyOA<bb<>}wcfT5CPw3ipw$wXJTfOYsN0~-R
z!8n{~dSZ4S9pdJAwsHdRP2AM7agy*n1PD3w9Ub4sCqg5iqtx~|d4baT-1w!aA34xR
zVzr?E*g;`s%lg-}mh-VgUoXAe9_rcl_UTY068<CiNJfUdx|%oS1I=*#6W5exuV$sR
zt}gmIU>FiGJoaa8x8;-+P?aHGAoJTo&GDyDj_reL2^>x~g=txQ_Zti-qL>^!yx({p
zKp1oG(#z=|e_%+HA#+=OYL=tRZjDnV>@j4PARG1=?i!iOXlff-=1<0J+SoNb*fqTO
zIxzan;C||fFHtVfRVE^;a<DQsr5ru2zW}Qo{eWVqJTWe+9hSFtEOv1;+6h6t<0;RM
z?|R9qBTW&dGBKV<L(66!M-uf;mM~{!@|nly_cSqO@x<d$gB^cQ1a7=`Z5rZa;Bgfe
zD=8_EHA*W515F1SdSS~EijjU+r_-o9Fa4P^IsN-*dp$;8WnH$MtZ1Of4aOYvH!{VP
z<(FYzy@v12qQi;TK7Ef~Gc@v1`{O|US;8+i<-yM(xdk*%NY-k7D}(~>wAAED5*{Zs
zr=Qm8QR9~AYZvOpfcqqu!CsFQD59vOV16?#NBVAT8v#P~cAFSy0VsMJDw;ivb@)_s
zW9{#CyFB8grpi*X^f}qFa1f8r5sc{UydKXJ3XAjajQ$KIMd4W&#$t#ODAmb8^UppK
z-SAXTz^9=uFBajed-3viRV7=7f}XlSQPt4tV7H_o>p>-M0o3y->_`5_CDlYgc(*WC
z4&5r6&nxWC->|i!3#oTHe$Whx79nNAeTAxbXO?L5zG=D}_3!h_SQi}hL!Hj`6)^7k
z;eFOO4AwTxPf<er-*;_{<SBC}U%($~$<o)P*NJHfpCb{Nt`&VXc&0~nUF%9SOzpUv
zlgN)%pG)%B#CcG{pb9zB2RunDZ11!eKaRx-h-SPqJ>ZOYqzS!w24@bOzrWt?YO_9<
zHS^0)lyP=PngprrldlGWXTGquz|)k>`EIw3^4E~C091VP*b`kwRt+ml6D3K;{KsFE
znwy^fCIU;7Ad?kA9WBpkNd4Cfy>5XZ3Jq`O$#*M{QXYKx^7kgp2^9V7#$VC@4EfjS
zLQi23fJ6TGeE;Y1{vTI;h5Q+80(j@4x_^x`EG|MCiPs4EGw^bTKRXcJ>ZC<^YZLZQ
zV9V4=0cL}<`PYkk5*Pws`t?|zGI{lvpmYEYQAA4UNyNi}i2rYnmka36JB(DEVybv8
z>;H0DZ(e08CcLM45k%(1`_9faG{5{yc0NY3*gb{;!5^2sfD&DD*@;y}Nk>CT2e<FZ
zzctX=%+n6VRd`=97y`prub&XJuOj^Qnw~@9l>ho2u_Ig`%)hVxDo^$2tGy-<TUS^*
z#DCAuaGXycwt)}a>nBIp1oTCPZRvl%!?RwRy@xijKevC{v<L~1pekN_Rz~&LMCyIf
zEEXig`1r41&U$17wf*OpT=`sgkNGbU!K{BN;pkN8`VI5<{Od(%q7rNUnL!;b+ovKJ
zbkF~O3}KS!4@jtA(Hks6go7N~N&o$QQ|{KQmUm(={#iY}TeLEtG4S7uzu*zEVE_7_
zSY_D(ffM69OQxa+j_^O5z@q~uEHk?B$DIM4^*@{8w;JAZZr(<0v`UuA)<?TH|NKYO
zC`8=cm<W<-yy2a$OT&x{^u8+AGBAifZ#SN9oxl^9yBm~=(8WT0L`aL)j`>SjMzzqe
z{+e9$8&m~>Hulj9Bva*l393PQIwq!J*CP+rdsnbIU?ItJEKK7k=e9saBKVBO9cnkf
ztoQ0MWS9OqgUNC4*(#{!(4S^)GoT@wU}aorVqIusV+DJj5n%XGb~}D%cmLy{f61n1
z>X4HnM#?*xi<z43Hhdvx@{U;&m^6(@D@BOGfA4Xa>gB6#^S#=REX<T*c2;gSdX^*M
z^4>wl$qCh?<)cm0kBQNVjn-Xd^ItF^$F}8%iz7)L%2yFT&K+5~uj&)<cABJy?mu4U
zA#o6)+a%!ZeswlAG0&ar-7TmglJtm~7_BFSo9BUdYq)IU^SFQxHJYqHdR_e{JyZ2)
z5+pNk8c`w)n1co+`-)C&BCXB!Ns(ck2ozpVPpSWYi1KJ^?DgeG0}@q5$9KaAl2(_k
zN{7WEyJZWEw=*T1`%_E!pZ@tY1!d^`ha0OFOOr0ImL&%I5g~sfI3MrPj<O7_(~pie
zrW-SchQ|B@$-j3EMZvTHFI3G$0At7ZVys_%XsNGE&7_$t3L$iRiEGtf#?s?Cgo?KO
z#tCo^+Re>G^OS*!)?#(d)jl^c*tPJ`=u()QnVwmw_;4i7rT!H{!co#PJwK44V-hGr
zD(?|_W<ESjOrQg|z$;84pPG6{Bm1D*J`=o9hgR(Zy+qk=GCg?&G=Oi83~?OphZt%l
z=!jcB3_sz*i3Hv>XW}K*AIy12UtOwy`dao&%TAIS60cr+xy`2Bq+{Wp%C`6T1maHV
z{n4Su-y0?M7(gB7mWLP1`g9OvLZ(1<l2YL#T!H)ViHRqAm~YC|IybGeV~KQx5L0+P
z!z4J$Y;8V~#9*q3+*BX9f8jZ|vjyPU(pnsO!4ue@9@hij`=q)i#+%6aTr(q8jlR+!
z9^b7Qq;|5+PmV54qCfI`KeSHI({tZEs44Gh=6^sz6X4<Lnw~$fTqlQ2L$~x$g6&Sq
z*{u4vu1~S6!@R~!=*_2TOJ``#h{Q*>*Pr{Pi*e0y-E3`OV<3g&@f02TFrgF#C1*S?
z>%Vk<a7xqnZ?}Hg<-XG^OX_)B><JzoN+Ks6v&AztI+13!5$JtVK7yI;(j3{|N-3Yp
z!tRp9Yvq;ka^bjvb@p)fT<hS+UGl=0FWmm*WE5+GSFx3j`f+OPt4FO_dyt6O*co!i
zv?vRA9?HiJ+Q}X`lqu`^!x!xHzqy7x_&&8}rh<4Y{$#&@QoTKW@ASN^7hw|H?NnNr
zKIE-+Yrhy9`>wN0Tfu-<&FE;ylY7c_Y;v$5UT|HVlw?(oZ6qb1+x1c(GPG`lEZK*|
z3S3YLkL_$;Gw3yL>|(C&zt~?V^0?{ui{&RoMDxQ>s?W+a>^4C@zu04U-ED{s6HW20
z5I@fBarlN$>FQ^50h^Mf_QCp~%CbY#;H7kINm-?pn)=zspvB0U{m2DlcJl+*v}uou
zMKwgwH2k%IT!NN2VoVfmv#<Hi=#y#DjkYYq^<C3^YU*-Ox99tqy*)G-xRnCDTJQ)u
zN;+BPb*PX-KFJ2$)3Yg!H!#Z`1^r{#M*xu4ir;lXftFV=o7JiU!+H=dvO2cYQy5OG
zhc_*GEMuz&Err6BQw!9QJL0r;hITLB)FlE82vJ@K*qh@cikGLh+sj9>i3v52?U)J3
zt#52ZbsKqD3p1*Itw3dO1HSt4dL+JjWCktW@&I1mEy$j(w{?@#`{g@d7sKXy9L|n~
z-;-K*P7OFgOAo2`n0U<7&KG^{6qzF0Vb@lN)6Hn9@-jVGPyK?Y4n`&vQ@OL{+k9iB
zj7&<}dF5pa^42sHa4+_VatpFhA;78VVWg{K=cvOtuZ?YUs${}vD@6*G>L|e)AO7VK
zhl}iHrZLla8x9BO@hze&cSPy@%!%FRPKOHJdcNV~@1bVVAG7kLk=FAeDQqToLn%5~
z4Dl(kDfi72NinZx1Q_F~frO1eQ}Xawz56u=La&Uvb!E$2OS#IuEf0-aOKt$c)2m05
zP2sH5U+p<=#K=3V!Q9I)uwXCLgMlC;G-eSH>{|jVU(SBv{2Ot36kPtDvmQQ*PO(Q7
z{bKd%7SJG|dqk;Xi^0yxxw4WK&S#|!0U3WbRb5a+^cmz~`sVT`bgnCu@MdqQLa$Lu
ztHv%VsC*PW%i=dPtT-SMBsDbb4)Vzz5k4L@y~*g3<FWGyPcFhNYiYXgYIF0etLO3#
zWvYs$QQxE0<y0f47<;c~CC!hEJCorZf4H&JWVZlSWv0v@z9p1yi;~VzNP0-T>04d8
zJerwx?8pk<!o}O|;&-h!AJ`0nLPZ5QD&VAJi!V;k6&1WPSUzge47n7<6ufKe&B)G|
zy5spUJgv)D7e>VQb-=I*by?T=?KX$?VqVc26?OSiT}NC`9;h(?V73`f$W#4j2mN8x
zH<j{y$(M2!e{A1xp{K{|{1NLV5)SSzTuU8_mIbKBt;6ZO(OU%M*7Ij(#M?)No|h}(
zN}GO9ZiiB?KWeykWDoEJg#Yl^UFR2NFF4>Sbv&6*HI@zgR(pJTC~P86oHl9-xCo4T
z+1=Qm_EZxa<I^4|^N#rd=QWA_0Ozu;pAxNv?OyJ+H4fy%d47jn*ad{7S&{8t$dX+C
zdRGQPxM@9LNk}4V6h7F?!NE?uaybVSab{FM)0!$K1nAtDe1I~YM!Cm<pY&8=5hYB^
zn8}HsXh);lfW?M7!GTpQqgF&ra{XP6Q?R#Ih0`g`H83QMWf_;n{BL{_z7p~fF*)pt
zKsbqrm@G}b`E-&QFZMYawLjI>SDpmt>7^bvHR<k{;j(z$7<H7x9}*R7Chi_p772RW
zAlrIG#O2K}DpkOwRW|f4^}T?EoLAvGy16;?zgW&KTGOdN1@zCs-b@9ubSKg>PImq*
zpx4~LaX`lHT>Y{z0SQvtnc$n{(E+brt@K&j6^IWOX&=MgpBI_P(z~<`+7i-N>FV4q
z);(i+vrsRui#|s~lZPJE0kK_PR{<csEht3r<vaM5Mk4O6d0v1M%GKU57crVUEsHQ5
zpKP9ts<L9)*0!j-#h7mLJ&1*gg65s6=$C$ahxmBY^}$PRIgBoZyc||C#3t@YsNs6b
zim&zjyI#JEQSLTG$5>{-kS;$B0{*Ho%`iR@9b{j??%LJhrnHH0LirWrl3S%$*NG^L
z7;xMG=Jr1Z3DLds()>wD8U4<md*1LqSgsq9w%A?wg3>)f(%50UrWP<hfq^R%77Ew!
zqW%bO;$bP}<;-*C`s98>&rqMgS5q43?~Rlo%QH)0av`>!xpH6PUw|RWZS>al8fo$r
zU&31kbvb4#UBxep31wtLHUcl4Cn0H>nN+WWeh^q{4ZRap;c6M;X&I{5ibGFr8Lo(o
zGm%L;*2ByW4UGw}K~(x|x3XGQ8A7+puP&}tF`{r+ad`|ROB{U)8YG#!`VwkiP;55e
zbPwIYhyO!j)Mg!?g7blR+dQTbQOb)lJQ$&t`4op;+@;3ph45ZXsQgm>bJW>sIww!5
z8L08OjDzyZMg|Wo%vfi&3jUn(v8cI->R99P1NRpuj2F-L7OxcM7dyM=GAy<}<jGWD
zwv=6;W-BF$q)L*F=Bp&Bm1y1-$86P4^iHIWn2|nYMfBh$0)!H%(vOGy@d7ThiB8_S
zzuX)In{{oPJK`i^1nIDNX6Lk<a2T*w(bksIj2ZW(g7(E?q-bIQ{nv;*D`AW>1dl0V
zz!<J&rHv8@RToPwagP@Ie%Tuo0(a16VvulY#W>{K*h2Fo4rKqpGEwYqsV>Htkz%`f
zV`B#al9#swl39xKixpH9tao@i=EpP53@Y^aLZOyM=V;A-BzUk-{S4rQ7Y@9OH*7hd
zm%vfU3J@N^c{1oW0gF%)0=QIcM&un~gs@s%SVovejPe|e@--|k;zku0O@H(m(y+S2
zq_R8R1u8|}q7qR?3ev>LUEA%)d0ZsvGH7xaXY0u%CgOolyKq)s-iX#wR8k|WzR%j)
z+u?~yW|k)q<^)6Q^ti;BrQbs!WRYdO0bmdS;4~>&n=pv#)!H>@$09+1()HvcSPoqT
zy+1`XRg@@Wq!7=LcV}k8rG5(DADP`v%!Qd+<jN6YQpj8SktP9f4c{pj0DB%yrD1)S
z_GL~^rJ0J<%FjDSI$uFTP#nK0NcfR5K{)5MLWriTW`5kd*bom7K7$kvga-A|WE={(
zRM(iAanQ-47)&SyNzo>v+V!p>9d%KJ5fXrsGKi4P&YOx@E6>CTp^(ehuL3EM_j;7m
zv=VU1vJJDmrnf1#=c4Xt=&w~~hmeeScg>IHyw5H%gK?1EJcPajO3}&iQwY%^1NgM>
zU46|2(@R|<zytaLkm&My5}`r(`5(iW*Y?)R^v6(%!k2DPkqL%xRh9c&^}Gb!Os5cu
zg8j4We&zLm+_uLyXh>)%Ej=}l$9^<v(#GMY2w4iR)5FM`31s<$$$ek?%na8rm6(YK
zuLDS0Z6@noyM_T12e!DZEQ+hDd}{MsCMME!{Pu${8I22LCeNVoSc9o$+fz$5NAoY|
z7a#ZXor;v-LZ)k7w~BJ>0njsd<;G^Y9^M|ThdoeTQ(?`Q3R)$>3YO?Dd?SwLkL*5G
z`~F=QrX@2l1K+ywVbscOvchD`h<2(5?bwPM5e;n$*lY3M6W_I;<K0+Yw+0Ffq9P&1
z<W!bH)3Vik#bR=1ss{CHrGCEmM>+65RXv;OrnP!z%Q-!Bwm-8mWcBzXw1L&*s--N$
z|HF#6dtzfLB}Jo~PM(A~>LJAEWKHaj(@OWfg!)$4L5>{J);{Q;1*pW1PcPyE7#FmY
zagc9--Z^@;{HdVEI%@}5uUo~s;WV@*oX)(hJv}MktXUiNNie2t=Cg~lpF{8`OCoCM
zEG`l!EmLS8Y9dV=Skm+uudU{Qs(YU|o}ffotX(zIRid@j#Fu@?sp{o0eKs}%YU(Fc
zcuPw6RhGVO{InxhQ%s28xsymFEh@S(v8P~WmJpuGOUPnxt98*eENHXrQ`-E<B}f|S
zkGhjnka16*dT-2#O}rPp(^%sN6IN|rtpIAluk?*urpHN{ixpRAn>QaGEK$!fyaRQ~
z!oWeHBr|b5cCb2Q@O_tbE&K>v(86gCknH%R(&72uDw-gy&w3?6lOQK6-B+osN+V(T
zjtwz{SwkqkRgyQ(?Alq@w$<(6H*!U6p3~p@uW6(P5ZmZv&VFwE=6^sLz}s7J|NeBK
zAO7|tQVIYKhRknAr@TCW{oFRQFx;BB<OWej3QZ4mrfl&c-Bpg~Zf{gSU66)~fkZA<
z1%-!?drKS{2151z@4F52GOz1EIvAOv<d|dn-b<zz%;Q7BbQB<B#QbYUlm3WNFiTOj
zM01qZveu(N4DEHKBo)15D-BH%9YcY6bS_})7Gzz#=sR6rc?pC(#CCI?->T@Qwy3EI
zb>#VYH>f24eQWBI_F~lZmZ%>&qh6N(*C*^AVp$4#ih=6`I1QQllu!BilCK?dinOaF
z^_n{ly;8SwmsDsmks&g&q2FRfI=Ng$E)}?3KWd7KUTB>vD5+Idl--zI{(cSD2Cfho
zDWjq(2evUp@TcGF)UCl3=MAZG=+aaTGe0@xJ@vr&oV5=3S7#KB((RfieZGg}*9|B!
zThjcusj?Xb?=pJF3YA`9^YLkKvuaA%w(L52$Hu9cR?Z&AmEMQ52_s(ed^*0$pGX1(
zuyUKr)T;q#sM$qpab~ymc*9cH+?(Cm1YvQxLjl`{qn5HR)FUX=F=Hebr5QI1B;nFz
zD41Ez6eAmER)<zyOct>^Fui-M!fdwb9~?Ad#*|B)r<J$#XahwD67hDq>og(5$F7+(
z7Mc~Vpqep0&Nhrsaq$Juf>6UmZJDs|?Cl}Xr@K#|+GA*IinVz`YQpG#PKLwQ2MVQ?
z)r~!vhefai`i=Ef&<#`wNbMLirdvOShk4*f+8i=ndyq+DK5Xx)Fl5e)*~HiD=J;3<
z7aV@oAu>-N;WK^#T4!G(r#fjPeDt)!OHPc9$@!VBt*E+jv~gC<RjMHa&^s7DUxSy5
z#fx4TlM{~vVkoefMi={mzJTg5hMnh4%x_~|xV8J?83bf<0F=+0kYB(Cif&*(qY7L%
zK6#nbQ%B2jUJ){^aH8QDxg4V{%==%LXB%4K2$zR~Pu}DCkx|ieU{F&r#MNl^FfvSy
zjX)smN-%%Gy((5^ASo-MMJK3yR!#;_6@~fe4H8yIr3^&E#o~m%CeD^QFhV%%Cmy>U
zpoWH~Q|Km?0b?()?d?xPLy;jQ7iRN-y(@-F{2{GmYv1sa^Wv8T8R_hu_>ac;gczQW
zvuM@~au8d}o5kawaNpc;2v3K9|Mvf##)9Lh!WProdXuK5pztiIWAwe6#Wbs3YwgOT
zR+S{#P1;H_$VOmcak#Cry%f_<!`H1B=umM#?Tmqk7p>U5>$Q5@7m`{s1^O<mKPJZG
z6y#C~fM$|<OGMe(owt{k$-sw?D^bKZ+SuIvw5n|A<`(PcM-5SqR-+&z3&r6tU181;
zN8$IpSbdzdG&A$&A5v&8P^AGS-}c6Qsfzdae~7_^{i?{R<V#g(Lqx&DnJklT23;<#
zoL_~6lag_!t@KzG<C0ix*a(E*>-*RFCniX;*u~ag5-}w_$HE$L8PaaDeAhL2e?iRs
zAouT6AwKr6Q=u$p?WH}B1SxeYJZf@#Se+QLv4}h&-I*Ah-U3Nw&(AI&jC%5Y16n~Y
zg<YnvjZ6i$^T&^EVllhNWlGtdVq@7M#H?@o`*Qj=XgL~r7qqqiP+xo3P7-9`A)k(y
z10~4pT^uYQE~dL75YT4|5SIf>q(8oCtKQewsvg}o`10T|QbW4MsO@!lr{d--7aeMi
z^Yo(_+WE<aDF$EaXeTcs+U}U+dG)+dWpP8{YHOAS*y^;g^v4(Wsmz`aYtvgI89%dA
zQGs*yvFiexLA#*1cw~I|`1IWTUVVPyM>xSe?tC6vcvnWX>zN?1`Z?6Z0c}s}G?Z~Y
zscfdN1JR2K7axDUxoL)hite?X$Xw02>>^8qz+PuJne@y1%Ka~DJ6w<tM#jfp*SR#b
z)tAmqSofJ>ZN3~7tt)gIHJ7`|U68cA?D^v@1IW`oyk$$9vW?Uz5Rs5QEzB<-pr!K!
zFwNch?VgK2{*DDlP)dYEW@x?KKA%@$7j|wQ4WQwYI%LD@L=JdhT++O$_gV61ItUkE
z1n5phVfsyLDB_9aPWuyD3V&{h?ZZuDdC>0HI9wOv<_JcRH>IkmdcH4eo{<~yowV<F
z=UMypoSDWoV5GQ*>&5mMf?h;d1D_Xz;$zlw5(H8N+^_Ct+796Eix+Bjl(ew%@X|Ai
z*z{NBP2Mmjb7FFRoJ<GXW@m2)wxxRouA<^JTTajRpz|Qvn=qcwhB~edv>L#|$_9r2
zqt%ALjyG|G*V^D&Di)s?)N-}<<|Ng#VIGZ`57P^}pEtI3NyIr@oUD~Gy(C{j0g|Qw
z&GwQrs5dBokK=IvZm%V`ObL)fZ_aiWdutNIvUhWu%rAFmM8&l%K<Et`o!<Jrwidgc
zm`Qx<+X`HmpLn6}<yP{xd!K3{pUaB*n1@ikGb=kY0gt}eRZqp%pbqYR8!~eYx2fQC
z(v%`J@sYl`*xc%=|B%D@QD)5ZNp4rB%}vY(Hsa@gmWH{HYwb)m>4&=YcDF?;+hc?_
zT@fureB5f$YE3hly!@;C9e&MsURR*EYgA|DE0n2;5nWDiu{NhUMc1bFibu&Rdp1*L
z*R+I{*b+#~%Kcp6-s_}}pl_h!{C8?<+;%-DSt}=%^Ac$_o0)Q!YZXmn<LaOwdo6zo
zQN84B?2Fl1Zr7~*{CotTZ{LCi1~l%#D~N}u0*$PrLkPiPv6rxu>_Lk%)@yRxTmE^R
zP=O7|y`O4MEvva_)U|T+^9nU?x3XwCYOI$)<GYtj9I0?xP@sF<f$sTr@=@Hjb{;gM
zsj+Vx?qqCNh04eek;PhazR|_Ed9C@|phES|W(_<Wd83S^gv1lb!j!KY`@JJXFm>_g
zAN8FYvOiJakWtcL9PTGW@%YyH)Bad(KzK@19}C5G(LqYnSDVg1wi2}C31snrcWqVI
za=zgdI-%8EvRGJ{xxM^h>@Qv8Zj2(W)E1Y=6~3nESUDc^YN^@Ru?BS!Ft7BQ&P@e<
z%UGPMCdAS9@w^yz*RSUcnW=~8W=1*--+hJcMBS}EDLIz)PF3f0`jnBN$GG6;xHI_%
zle{`F(mJ9<8gM~wlHk^&dNO-5K>y0dw+=n2B97S>w)ay*X}Z6Gg;p}_W;mGnZj;_c
z?)BLL*45?8sdkE>M&v}ZySu>?RavJPz{C2{gyVT6ncfs8wlwVHn^WAFVl>Ilz;sa3
zwlxsqxFwG}`?jDbqZQnsR$r}Foo-}mB>ub&l6<tr!F~3-Eg01MQ2fE|N{}oE=i`TD
zJRjKPvavhx`QH6#?sn^YmWA<<R&UzaEaJ^zJb&a>>r>>jh02E-E1t`c)VI=V;_kyf
zrDkIk=%1T`J9vK`7c=K_kXM*nUd^so?`8&Ke&0|)hYH8u5O^dnT^I;xZk9AvVtL2b
zWAI?JkskSR(S+g~&@WxG@n!}F>zli*4zph;Q=>Mp_vBqBvPVooM!QDi;n3EQUTqyW
zY)j-?PB?*p&LjQ9dTe6d?j6^dh|ow+ROFn?J`kMotoq}V2lYRDNMHldEN`!;9`EZ6
zW7O&Foa}f@x8&2=#Dzf!;U#4VspjfkfcU-KnWGbk!`rxaZu3CTkK}|^>9mGpJt*Yy
z9H7eU(4|Sln_DWXx0-oET)0F03$GdVm<1?q-nB(fSUi5HP#+w;Xl6*{I|+y^D&#S^
zY60qeBkD;_7SyB1<T1*8!+baw%Id(!>%s(L8XrE~n^HR%%U@e<xVhe@`ExrJq^^Cq
zpEUvvYg5=hjtbPH0p5CASoI`vl9$aaBbp~%qVDud-G*qje8RcO^QQ-u<{Kp}#`p8y
z!<;|~WVmmw2;ag9@-WsU&rRBZfa~ZwSCD0FN%+*PigY}RTP0he+@Ba2f2jiqoJUa%
z>6gU=Rh_`;C8FhgRHS8gVen<SnYei}-7{?|<zAdJgt*6mDQWR-<vmi_3~yj`s`tIl
z!(^2-<<dD;I=M`CYqh`>-Oa|OH6H>kbvZC&Nr?~2cXHq$U*>Ls*#MH}&UO|WL%W#M
zypNocoGs_dy6Tf}yXdbU@BXE%0z8;tTH;51E9~tbZnhwCeW1xDm%S<W$ZTEc+zrJM
zu7nltAq@ZKa#?wE*pHXbIv#Z84&_qwf4wtuDk4p~4x|t(Dq2&ddW98rvdAStHo7~@
z&4#%l#&LlWSQ*x5VWu4(`>g|`NietDcon<TdqYw&EGh=Z<H9aplvF`V4i}=HwCgqB
z@5;;XC-l0NI8=FRoQ9T~-IFS&$8dtJ3i`7MZ`IzF3?p!+^*#JjPI<Y#lT+1X>bI{#
zk$~rK?b*asq+I$)mTFT1O&byhv<g+_Jd0&{q^AIn!f|vP3zP$YnWm%g8_kAU2I4U$
z`qf<RvAYfY&+rLHIZ+kd<`DkXja6X@vhTCpa$~p0@?}NU5<N7q5Q~qpc%c{9v^`s>
zwvd+dZAwNZhfd_(i`Vp==z#y0gY*x^?qLOky1OOtL7F8as8=(@`ajtFALzKO$ytXG
zJDBKis8r~fZ7`jbxM*x-68XQsJ^wG9{twUlA0SuA2L?dHe}TRKjpqOFSN)45@b>`!
z>sbHSRe-bh_dQ<!p|Jn`>;F$O!A+1t*;DkJ*@1_^a6g}ak90G1&-t<x9`SGd`YZYe
zfSCXNDuAbsE~HoB?M(gg^<Ojg;2{4!AMytw|NBw?`*r{Sp6ctebc(1bX^g7M6s%8v
z5QbmKXUu<w`>h7pz&(a&sX$E)0s2C(Au|M|YV}H4@<@M_$HvD9{JI7C=LwI=5jjD&
zcvcb`Qc#~`6<fdTSrwZKOj>4PerfI9@3G8=^z!20x^(aeDG2|$MI7$(G87)rz=Auz
z%Y7yS1Td(hg~J;NAk5UAl00lD;0xb6-`z2x0{=NyLR|*_%7=)9H^rwznIuXw)tdI7
ziU0EG95I4FQf3fnXsRwwTBp#p(m|fpMV=MhfdR2CWhb1h$&esza=O&OXVE_2S}AfL
z>NXtCMd~N6moHj$UQfQDht4))CZTzCj{vvnPu8%P!VKlY^MBT3SpeC#L1tjEmmU;7
zRZuX76I77wSX_%c<o#BEN@D#ONGl40=4t8es8HvgZUzatJ~Jhm*Ug*^)c39i=56g=
zb|rvz;BYFfsaI25Xx~%UNWefW&-M5CV8Ki?YBL=vqFx^*d{5RZEXw0{w%rENY$FnB
zj~L0!IgNz32_aj7W>!Pj^HuK0Hm4|@-UnV<lb{L{JsowNMAoO?f7lNou_VokB_~>K
zQauU3SE*rPAABH!kptsnlT^U{Yc?t@iAs#2jOv+X&Ik&Ka<UZaJ#A-ILzISm!g$Ot
z&7AM+pkSaT)I|%m+ca>z>qAD3GcmH}EHx?hPlQg)g_nqT!L}q?iFX@9(|6he{fGtR
zn{3zK0qS65)lU3p9l)3bIKro{H#Ut@L%?pmn9TNdgJ;=hHMr(MTRY;HqN1bbU>ZNa
zw2wZDQKsQ>C*O26(3B;d>g_MpyA%W@Q!)2N#p)T?4lu+fRx}h|2r@jOO3YVkG2Xak
z$m}{F@!nto6wn|<eA9)zYpkChuJRv(g$ztsZ@y-pvUz677?lo948N>IPd~MzOZj(7
zylpeUS;#Bi0PaK+n~4R|n<l|ehqHX()f12h^_q_iZ1k<u8PRO_`JAa)YHZb)<XCAo
zphe<)E<}3JF;f#BBnElgl}=xPS%Ce>9f|;nnW$n42mKKal-0GpRz1ddq(=a`_X+Gs
zU2>P%tKRK*3+)CyC*4|F4_s_E&<_}aj$8V7zoXQIg&RObx3{03`_pcsN6AHM?Hw<Z
zr}|QuIZaTU4WDN7+EqI4n{kzxb)?GZB4wJn|B=uf7TnmO7ck_qH!P<o4hJb-bR~`I
z=?`V9`^=9A$WiE$WQw?0qHh3`>RrZrYC}31-VShThI5oO+5n4Z?U@K^*?O{SrUJDL
zf~=OTq)I~IWyI3>L4eFtMTTxNNNV~gNx^hT0z4Tv0_S4mu>{#Folul2^5w^<{?PMz
zf+9RGkw7tGtNsQX)8$@z#I>kVQ4C3ayP2>0eCxuWY+b(u4C%_@jr6q(B0>PE;&Cn;
z4v_V=3F!bH4b!qXtE>@89$qbjHxk^TT*}Vjk&u`in}7xZxn@W~y@0i%pre8dd8N@0
z!rkkbv3NTcOLe#XT?<WmrX&zhyYKmv*6xB!h));xVz?{;4`;M#x`B0}fW^#Y&NJ#{
zSibe!dBtj0nwY+qj?d4AClrsy*p|g)=;TS#6sd>?*%RZ^OBP(2-9AhuY90c>Dd6mx
znJ^so*V&tacFb>O1ZmgLz8h+Pj_*jTK7qkOI!zMz*X)VMsi;$9^i0!{vte?_2)TCQ
za|OPqqAOZenL3d<n>ZnY;{Upjc=k^5l-lJT0yC3@xlj6?RTn3}q>r$QC@44(r>d;M
zww(nF>6O~|TA0KClfFSmUjQm|nA1pE_0PAz?`rG0nXkGv2+T|_NdB1;%i9vErVa}M
zo~5E2VaIzlmHfhD3wB~QOrz^3#Q=rJ<?{QJk<e~HgRcJ+@|Jm+!YvYK+Z;d(@RbhV
zORS9x#T&ZmsUmw?B=qW=1oK|;S%m^x=ckXoF`E_O94f1+aC<UwmnM&$W;%itlqUw=
zhX04IvyQ5&Yuo)oL@YvDQt3vzJEglrx<R@@MOr{Wy1PNT*(%-L-5t`+nLN+?edC<(
zoHNG$Lx%(RX0Ns8ocDcS*Y8q{Jxf{I$h`7@GT(Tu{8{k)^y9CcM_1~PiJxKp(F(~6
zm4m6rE!<Fvfjf%N-Z3*xh&tP>Air_r7|&10m`Ow0MAXSiRX;mF1s9m`UepjN?wd|O
zqrwLAvQI8HztgkRH8pkTPKw2bkRZzZyx~!0uiTq!#~145-VE^~3BXyXUtd!F1nRv>
zhgH?Rf;x@fpgs>mraE;0h<a&h@B4)OsQuLySAsSntU65Us{|132YQkJt8+&3M~*-t
z$;d61r8UpX6}8H!tsHLYs$UAL0?!h;l8S=+8F5unhNifb_5AAF;G(M-lRMq82(<&9
zAa~DmJ0V1VcCOH1wa1T%7`}e<J1h%+`U0IFVUxR_5i=M_rV_TPi6Vp4X{o46iR;t6
z-_XnbS~{v?nRoEn=HN+}nEfeEcO?h($9c-n6SEH&_Wh-wh-R+=2taBbp?3haMJ@5O
z_e!TEKjP{^D4?;ZD3Z8NeCR@o-tAt%t^-225n2*Zd)9KOgL@uL?x+|n+5-%<4pkMd
zxxJudLp(9#2eze{cD#sJ#-cIF(OpA<iI;%h#F_+3DEf<A27^OcYZ+D$0{EsxVJ2A2
ziY`<o8q<ZSL0wrhLQB5<zSY=^0Lf6806IMV80d{b1X5!}Rr;c8)i(6x)-$p??SC@z
z+TA&8s(NdPo`P)-T+J3fj$$K^%kj)_yI+86n3wDFWOvo_rvCL)XmG3YJ5&P%*e||j
zAm7=zatfr1TNC8QdtlSc5nnFT`x%tQb*!+v^z>V=*rnTwRj4SFqOocT^DTdz7H!K;
zbwtmj11_KX%hV`97*ihW*D5<k2dIzPLLdwA`alj^Dl_MzEbh(896l|}RUY0t4IV?=
zFgd+o8$;OKYGu-)L(RO09GLRbYs11-@}>e?zPjy<RJ>TFy8go;&i^eS9G8~FMjmc)
zv~8wU{o=lO_^4pvo`V!Mc;2ZEr6^z_eYl$|=8t%YX&FXbcC>5MvGsQ^2fVB5NBC^(
zVmV^<8zl>c#Vb{n(lT@#e@?Hl$lXKT%PU1=-<10MYIn-KCIF+8M*HL6bu`XEc;1V%
z5Z-14eM+eo>wwOICxfO2-)gP-bDv_|@yZ+I0GQES%0dmk0VC$RG_Lg9D7Z9_K$l#B
z0p{2Y?3=rZvI=%E*N!P=byJQDO7HjAS>i9f;^r<j8%Kc$b^LUs^`}^LNW1a!P|R`n
z{*HsicC8;s^e#2Qf*1GvB`{cC*1mn}#l;Y*TZOVUmu^VpQYyQ_FdCk&rJ}-X)f#^H
zn^&iat3<OYUgBn<Kn5tSOjJ|A3y8(&QwX5NJ70<;5oVf!5mR~r-yuJbuSoo!yUHU0
z!=D!C!HmrM2cOgW9~H}cGh;2Lc&n}>R+~Mp%jyF@_gNOV!{v*hihbQ=Pk15j0Az{x
zU1n>wcQqDKo@$|ebCQxh%}wa;cQ<3Vh+(YK@qCs;`%U6}1J%=%+!PZ)M>kxZ9AX-f
zx=!2Q-$gdu<XIo5<)JZMy)#&M0Oqa5tAkdU02TDYM|Wxc^>BYpPwg{i&RMzP^<(D~
zcz~M`m6})_Tj7sQQ8^^tA2Xf&4vSrB?DFLo?U%G#558Pc?I*h5>5TwQy|TYluA28+
z%G7IStw=%2S3yTGxAUpuhJnBdL&N}or_=iZ6b&t<(*aE8RVBm>xquGrA#<W)U!c$2
zcp;)*@YHLXp86}QPYsEw4L+X(-Q+~y_;B7(!~6Ux&|VobA6;Z)mz%6}cdpoa*oJ;1
zBRuiCnrtQp4+1(hO&PAU&}%d-CQ{n37cK(fX>hz>Ru9g$cP9!fi2iD-N!`ZAlhi)c
zdFGDMz?5kw5PlXt<^&D~q-dZ;6E9&pXs#p{5cF@gc;~{h;;&`SHq)aJ4$j^Go8<iv
zI3vn@cT59hB)iuCBItbKDND#0_^>}q#{Z3g&ti2kcVHP2>Go}wFci`@d$U20By%e6
z!7wpC>UV~Vi@FK&#gQO>S)8iPjZ|pSYBigr1GHI0sO{`48&IcukB@%~FFE2`PcC|g
z4o}!zjP$gS<=x`BIK`IEyZ>EY^Jnc@qmrp{TGJfe<37)@O)+MQSIT9Wtg~Eb<WvGp
zeQ%AM>v$!^UF%}!TZh9Aa|c^p-nn5rx~oeH;sJ1fQPR?m%d1_V$(pIk+UV*o#lq;o
zwBTYgZ<?zg2>xmgCL2t~(1>qmr-YH6*?@!+kINu3Br3D2%B`Z1T}xChg^wupJC4IO
zPqHi#P|4i+E<I#{Zi;)c+!W;p4aHZ)P84a2bclbsSB`x%08SG4R=si0ZF!ipj8=gi
zfr^&O1<1zcOQRn7&M$UsZwJyaB9G_1iZujgnWCHmN0#OF<5p!Er?GjR8~h>}xHqiK
z2WG9IN8OtA;iZMe^PtlO{J-Wx-9MX?p+(?lNo17sBQ7fq5I&&yh7K>>>{VoR^xwCQ
ze8m9PiuWY$RORsoL8}*2T5`*}`IHr4Gkil{XNwS$pO%v$!lM>K7MbIrqO0MsyW98U
z8;=qRft$k+`bGwA-^&alGH|91!yU|?f-fyu!VjuViHtC{G@s>d?U2xuY91QxZ3L7V
zxz_~b3>now25LgHfBmdsYa%3=VeNb|Z>CGnYe&ER{)R?{tZfk07R7W&j7DtE$NO@e
zBwu-azN5~RLJ#^bX$%}DZSA>cmIcnwPd++Sasi7_Uz{l^)0Vf@@Yf|?JyO%W0!m<z
zVl7r{?P_v6*RT-`3Wz!lyi0zM<eyAoq2p#OW3Sm?&S}_9T@aq!6dw}}j9dJba^e}>
zD)ySPt78p7e^i33>hGQaPDjoq&OPjVdVINee_S_5tDJ4B+n;dZIr{+(p@>$$cf~2H
zU}C^iuL%WFEu!!h9SVKH1zbV0@0|i2HU@|0S^&wZ^qH|ykHW$5*3yMAm4nFXd?;kJ
z_eSk?9cbe}<;Qj+;TrGm{ouOLFWufjwDMIfo9&xT;{Z0EQu-7Q8&DsssSvZWXFiLT
zG{>1UlLCjy?3@_Dp#;r9fllnFDnIV_1YJ)1(J8bl&Np8M4K|=X7k%GF1&{a@?o&fz
zMOoQW;SUxlFx+RVRL%uAG^Zqeyv*?W>sL|;fFuq(BTixZgfGHzIMUdmPEtjChlO#n
zY-7CY-5amA46)RN4!M+Mejn?tQir8Jy%lT*jVhZ{CIo~h5yQLH%PZ&&PWx#E1;D#}
zeS#b+=lTpP8(8My)lSB@qQd9~V}y~B3Tm1HO)mOBN0>X^J=AQr>VlW9=dZv1$yn}E
z+Tg51K*IaGGUpK<*t*Xfush?!Qmd3o*yKMS9Bj@Tu-9;g;PkS>=_HZG4ft_yzfXe!
z!`_f(UX<lE<4UfYs`9I#WMM=j<1v&<eAL;7pLrMCr<8IB{h*)8>2UTX*Toe4WgvwD
z^#wr1oDsZh@8CZv^+E2gsd8CRfc@GB`$P<_9*Nhj!`dyPod3(z%~dQG>+u23x=RrQ
zF|o5rA`|tQYsc;J`_ZjqXt29_J}8p7L8{|SE|uK|Zoa>#@Aq%=En|Br8a6Fa8JTb1
zdY2&u1<ym;PR=c3qms{u_?Z9|sxD-Lz32{8BCBU2LpMBLXCD~V!K3f>#T`$}jX}Gy
zAnj-E!QwOWaXzmnVGQ*7wv<02;zvveQN&{Q9tm9~^Ekjk%V@gpH3xL}iJYcXWvhUx
z>FL{ImE@b#dy}10E!!Lv=Mm0*j$>l6!)~%{wMzmIbqDW$;GYQW8A3wup|Nx(2;QBY
zH@uuJbL6rHcc3j#jwC5VBy%cx*0<NAGAg2f!81?#Y0aVC-`T9@;9@PfKr{X&5a8|3
z&>hy)8IGw$0}NlXRiB$Dkd4tnK<(P#xif^);@+RaaoAQUo#6uq{CYmO&3-|5k*Q+L
zm^c&+vrj(lxEO>;(!}(=X0DX$0Ajqq7hg<J1W99B$+G$7q`3**3d33)sw<#RIUZyY
zk~Ih6gF}kfKxhkGUL)8$D0SuaY&Y6JfZufDO{ocrHg&Z1oJ+gBoMl_19q878Y9x}~
zgsw2}?)uQrJN+{fynroT>Os2h>Fy>v@O%&bPT}!ssBGMheNFNt!0%yAia!>!VrR~M
zceLHKwQ@z5#C9?t)tdFg3gU2Dat3EjQ1V_mzToj(cXvXf=<FC98yfDI^X`s&r(<2U
zttm?oFrnB4N*`W3z5-BjCcXDnVmcz^k@>>j0jqV~dF3bcnl&v1xPP1Pi$G=Ejj%!|
zgH(OMFO{^QgE#;JcT3{fbyecMfC-liS?)>spXKr=1PvA!p6SZeB=s?{)7=_nlvh`S
zGYSzG+_NVED>~aG{dK{o8x9~MUEs6e0ov+RLkNsGB>qQ?)8%+ep+b1ni2aXAK-h!l
zdgA&HXW_I|7Z|UA1`!yqIL~Vc9K2^r(sPE3eO+z|KFaC?mtics54*rqzA0BM=$8>S
zk1GxhMsVCqe|gGBP`X6xhj(at&D1nBrqu65h+jcK?urK#uL91pHbO#*=QhcKSon%T
zMx&GF;G`CFS1mSAwRo<Q2*ji)_%9cl9ZDM+o~1IxHGG&V&pw_CroBAohiI>@btX#Q
z?lsP)@cRhzjIlS+l}WV9%TrR*yPZ-e|27J2BZdZtmF3=dy-68RQW}B#)MirUs11FO
zj4bmwc%`GW*LV}Y(5nw}z}MGv&NCSN{rpPQ>y}POY()W-IsVW~IN(I9+CYb<5IgqA
z{$!cyfSy(gPos^wIic4EpIunHTpXv-$Aup3a2jf=yL!*l9aP1-i&HuF?Cfl`pwWfW
zx%|U9@PF)#Qf(?<>?<ub>{;#j7<v-M*6t0A`P^5T-?m#D8?T8}n)Ot}fd1J1a=EOw
zwiRfa(PuR4EJh|7TMTSc)r@HNr(ELHz0R9S+S{KDq|DA%E}a)n*gW&gP^}&lQ!HEk
z-7*;xYg@EXX}FnoH<-0C8iL)mzfVuM5W%7(+B8$wP&Y2;?sVPng@UpX?j1a!Q=3zi
zHTkx)RBnL2;}6N2uXwZMd%ZhYAB-W9-(mV9*@x)p#XkDxgw4eGm>bX}Y)sThZSy;#
zg>><t-wk|fo}-Y}xu7PSYn1>y06*RJY3>v=xsmaPg;@dIFQS?AlBu6w)8U5I*1GYB
z#BP(D=0`HUx`#8n@#w0w@pw+xcL_){f1f{rem9qFX&@j4Oa)6xx;Xu`cc=uuKct-*
zMozk1g^z-7P{W9(Tjr<1{sr1yuZJl_BKjPiepXg6y_f7NC@BUcC|T!q;5U7vH?ggW
zoc+7@{M-=z+W!e?shFGRAwPRjN0j)qv;%`;UHrvg7a-?<1mV5NEb|qP#?UZncb`tM
zs6)u6d(6=aPR`&ppqrKOdIt^W$1+#=C4=d+z$nb)doa^X&)9g+m}-h|Zivj!(!#J9
z%?d<adF}R%7amS$N=D2x9^B`ft1T<XK}2fR`@GCQ)!s1%Y0dP2<Mn)?8}+?Me8TOX
z3N=^qc#YQLP#_)>`hx-ycTz=0w5z)}O(|_-h5cHLs$7F#1}CjFGr!ZMj#Cr(v*3Tt
zQ80)hZ5HHYm;t%KO6R;bpPoign+X+VS$w_bHVgG>@o9I@SpTg0fP`MpNSlA28j^WI
z;mh6EK#ZveKA{2Aqo!m`jb0mq#yTEvbGI?j5M`$*1VmKurGXwzkLih}&W<T8+C7l3
z{>F1FY%hsmhSPF<lwfk;`pD(tqlmJq4ddTskgj@kVz{xNWr`i6s!YV=C3WYrqkD^j
z_pEE`l^PK~KepG^@a^PR7UD<O#AJ!;yXvdSJB$OCJGIb9Uh@5qA{e=XANk*MUN3HG
zO<msW>X4N3@?g1%(?&o7qqkrEwRl{wRGsL~-KA%JO-nTwPSTkbFiSU<r6v1#9WK3n
zFBzqfQ<^bTlgQ-E<CZ9%>5Dx6+aK`gQxSQTN9%s*bzY=6lP=X*Wi#R@(v_FzY5A0P
z*dMT?<+?%7sZ|~kDzMm=5Kz3-Zn^Qk90jYG+-psxp5nZcp>g?WIjt9vzq@8)jEt9M
z6zW$#V&qtEql?z44i|PwfW1CQ=0;%Exl?x)8Q9kWBPZy4*J|UJKbSq(1%>&t@oe|w
zeQ_zg4Hy_$qA3l-xh{FRxjlgYj;7l<TjoRuSxwgVwRdNjp7&#}MGK2dcXzoyf!J-t
z_&rZfw%5?1cP>lAm_6QSr+=-SwY~!51{rB1KDUX)ZC_JvVnM>u&j|jjE7z2;+QpT<
z-ya6+v~{IAjE%B<mM8ZU6&PE@Za^V0+d<bA-GhzB@C0e|7FZcVf~6dtD&f-9!s#ux
z3&09=y|CQ}Naf^W{`mART|0vKy}jRZWnQB|7)%<(5z5M{K-k-t$Xvxo9F-twI4J&-
zNP;+`J(Q5kc>0l<9qn5z&|i>|iEdenkHca2q<QyCOHWQsPi|tY?eBb3N0Wz(2R<G)
z#-^pQF*4NT?(B85dU>c1pQpU-S8*yB3U}+?n^I#mwR{Q0cHeg_>OAQex_&!Pgdw%U
z3slTloYkgXE}dT{-cPD1YPRRE)HmF6W1e>^C{bb98>@^B>uuoRy{=3#l~Qp$pC|Do
zEOi;MA-Zj`r{yX4N!<sEL!X6xFGM+j4;vlKJJ_uJxc>tPak-qIa=5NmmV}LiRR?-Q
zM(3~-<|X22d$~OI*?SKI1BY!KORM_8?eJo1a|vFk!4ditv0_rs#Z8;Qjs%?%yiDcy
zI68dm1@}upZ-AYHmX0^1&jjvQZ~jW)+5!JJuai|y-G;#UA^)?jhco<p5)Z-K-oM#m
z?x#)fD2>X&BH^tNpPm03ruVx*QY1E}d%He?YyZoFOA{fRL{5H5Mn)E8jKs2@39tu&
znGQSd8BOU=mZA`tr+e*929tp+!{t-$`swW|e0m5BNpu4Gqt#SL@<tOhkz+e-owey=
z9vMCi49G+18sz4^QGteT%CR(0IT-X+8+nr=npKx+`gbOS#b^+9bu|pr&JS3ekLu=^
zb#p>Q(Ohy(>TxP{`OxySiZbd2Ns4S8e!g>|D15*XP>i$R7Q({4<|fAl)GCG+(<Fm?
znPc}s@i=6rOfR>%u_dpfBu*T$+82yB{wqhbKn*NKNA8%hKjzKoF7pQ%s6C=nxHoF{
zN)wkPq-Y9`L%MOp^lc~8EEO%;^NLe$Rkz<>ZH|t0>eN$`QiOo`ETJVeHZ~(?Z*v>L
z_z3S6P8JWBGu01+feqqNpj^MCXY|U7NoIDwqK1mgy+*k@@u_pw6G)V;!ty&_ID;oz
zs`L4K`<f3f8HD87>+YOdaG%tP-QrVb-W>-&eCPC`l0Y-X&N_N_ULGr%ov-27W$xC*
z<pw9v@|sO+s#2P~fhcjd$ya<N<~qKv?Ijl-bIs(`_(=t3P7#~9>gn^&&<4K15jlAo
zq0a^C_rDpM#TBa}u;$<c-s3D@-~$BOU#_tq<!FWG0l1*Ms??G(@U73FjjuK*J%66k
z>wdmC*lN6hRco>D$vlNz%1o6Z?_b+%0az`?sc+u-?ik&6e-l_hctS%bM#knV^%0=S
znW>X)W+6(9E~9doGf{Azmo9k}EB;@XnJ`|UR!}vnNI-_4HPiaaSwVh$aRXF7-7a^N
zOR)Y_7&%&qoA%vkm!TFvJ-O2FhU5kp?sLnDOhSIQ^|edJ4QehsYWs!HEBMHW5E!91
z`uUXyqd|b71u{AFR~|v3lE){GWb<RgMX>i{qoWsVu~YngI)Dc_-C#PwS&_TBZRSv?
zZA>P*tfi_Vx_0}dUs+KxlBijp_7OxF?y}OJ{0q4$h@x=u4gV!a5qpLKnB0G2_;LS{
zSO2DSZ0F8wW1;WQtkF?cnb);r0M_+0HV5rKMP&mb?i*}KL`*k@$NKIz?#lb|&N%Jb
z-^-quQi3D*lNi+_tLotSW{2}|YoF9-3mq4e1aE<a(zb)=9V_Fk%R6v}4{BQmid>2?
zBH2buYjf56Ki$%5xpx|W+Pjl*dQ=5JN5txF5)H?;EDdi~Zf{R_cVFeU?)ebZp1)(e
zx}u_v*6dg^F<R%~9>1rzurw6R99l-#1uHM~DLHg)$5HC#$4-s7ZM;o$u{jU=`)BC|
zIkI;)pwE$cDIfHzH7Gz4E2_-<@2Z$fnfvs%&pu~yLDA-(&BmI+@%jO}qzWs(myQgv
zDQomqbKw!s8t@Qa)=s^uNWZ=7NUtG82zm?(k103N&-1b}=i4goHY(OSEnR#Ggt8Tg
z^wE->+TJa1p}@5!ojun_`mU?R>0VrH(@`}s1B>$n%>nMLm9`!H&Z$gngKtx+9t%at
zlalWbCa4z7oUa%`J6QK%HJ8<`rHhaNm_8tzi0<w*LSy_YUU9l=eHuL4O~}S^DhU`+
z%s#G}RN9&*-YRstg30;t5L1vec~l(_93z^KvC|xP@;{F*Dizgo;K<Ez`Big<*ERLU
z<w!g&W$E|%X1c@E>|9e%<2gzID<R^Q8yZryK9Ls&RLntrd-s%vOhBAPhA7K1vX~M#
z#e)cCV;})?IH}LS6+hr?o0B#d9DFbAG{`Z=;+Tp9j0y92KbGgBP{xy$FPK}v_E{Dm
zUniR5KMeqKpM)~Mzb7^0x)Y#DG+}%#lzw4sk<wJ9kV*CZD5U3hcF!P%G+J%U!m}j4
zn(7K}xwk?&<g=|md+l;j$n&@NHy#7pC!f|YG7q~B-eAJT`#&fV7N~GTCCQ^KcQ`~a
z(qdZPav6eh6Q5p9MKoSA+kU&&5g6mT`|@zej742)OmOd+HytBtLG1G9&x8?qrKL0x
z616-j0FuyUbhqaL{LKwjJCi?4fA7{wNz=~C(9W(oq_H&6`G0v7(2_o4PTeh;#1-c0
zDQ->IXJ;5NJ~qb5JynBpV!2j}OvFib5TB8qub`~{h{&mXIJ%JSw#h+w^fWMU=he|)
z5lG;$-mg)Bk~D#AWUDgW_ZrOy=qF<tI6Woq<MKKaCuC#Ql=tUcD!t<zb#J$|`BDXQ
zdo}`Ao;?<Up#_QjvHBR6Cc}&{SRddV+>H6!i-w7uI?~MJX!CEyW?TR^Nw}C!_+<0x
zf`-tym!~z>8p$`y`;B!YSa;<a^*PniIdgr4YBXQCAFpC#bYC-WZJVF(&T9zk>^Zjj
zf#)<o7?_9qk}6y$s!!L~$%$@{?UzU0AWAAam^<&)RUZxnw&fF;USVl~<J$-cBm0#l
z9o_6K2F-GlogB<5DwN371%u`kszW=gS%9j%t?(*tCj5)v1_o&ZT{Nz|1yVo*97!bA
zBD1(wn0_}mv*4w;Ks??4XVXrbDYgUg6JY;ru~<lj9_M3#y>J}Br-Eb!z@(djy4dxE
zhm)k?<5H!*)W$a(4(d9dW5CP_`mhUH<Y1blHJ!b!85Wa64H>Or0mVeq?V~>{0D{Rn
zI%45m`VFZvM2cpl;yLuGWo^MDa*`#$1Z5T=jKQ`I%X<ld0h-jrL9|@MJ1}`&J(+C?
z*Q;dusz1Ve=}jFSmXnYhvIjb%8I+)#9e8QbX7C>P55;nu>tizWON59cYI*KfHcA6k
zdcU1y5VfHXg@!i#3F0G{v{H35?(>)^G<l6@22el%<pwWcr?Ccf3S^4;#o0r?lUZE!
zC=gTm3-Ai!NC=C$0-z!2dz7A{y7rx{DU9wEwJ9J^>ya(dRsCsqYicS#0Yu1)mdw|N
z#}a3*FL=2f);X=5+GfDx6){A4``&Z<c5?N)tV=P!D5eGdsYn9uJ@WVb;&j@mE^2B^
z2-sUNV^xjUF>+0?Hg^hOVSI()(PS7o3e3SjQ?-5kru;}!=4B;dHa-ug(M&z7J(W?S
zT6MNjwPRqm;Iswe04hr3!L1xIE=^o&5!0jr08ZK^?&n)D^H;O$H;(**tI-i~p{5#3
zvx242cl9Wmj4mAB>i1{Vt1x(c7J#-k>==;7;a>(d@0Tyccz86>N9S^WuXUkoXdxjX
z!IFLdrf$vWNF|JbTlnStd)F&k?;!?QDrc1*d6W*!&f{Vb4q9AV;;~&i0)v9&<lS>3
z4ijVJoPvy(5Y>B>z$$8L8n2rjZlo0C1sbBIa`DNZ{tXjmT0mIX<D<oY+F>V+b=*4@
zLf;>DR8wBza7MsEp4yw8y;ASBp)09*wJhoYL~5z6?LcCAL4rk|+JXJ->q}e$C?oUW
z1)gV}F3hf@Z;WbvUzk4D)WBd=5&2nASFWr$y)H`!IB8B#N46|I`cxGys^KPjG8f>@
zmtsmn&(VBm4RhE?JH{^I0#3tv$Cjxs!FhR6adDcX*|lk|ut)>Trbo&6*5H>>Rnp2W
z%Br=#CVU}P0Zc4FQTM%zl-S<!cpSEpUZQbt`YE*rrpGPEj?EQHj`|e(G2KjOR^>4Y
zdZobjfV=k2dH1J|&jArro}852QJ?D2?rh^<bQAFV06P7OlBaH1N}x7}%Qi?L3G_+r
zpg?eW9hVT3Kk466T2$}^VoM~8mYlGj7OiZ}FDfDgxtx;<zDWdo-90o^%E1M}_TeRO
z6Yno5eoaUT>sSv(vXZwy2|F9lHpX;q`Z6w7XneZA?DMxB9s<gV=YL)F>ef(0y1q+h
zGk2hv8Mi%a@z|gAIRpIW1Wj21ZVDYbCpINP+6escMzW~x?b=2lzhy~+vc<(0yq02P
zie`k<zXM7jMd;?3V*i}5=b4}0__+K(Flg2N3hdH3;mYEV)yxNr8{@mc?G{eralq%S
z@L6!<#p8LKYCp2jLXir@l3!_Z1S1<jzB?t20GL5(;@>^nUmK9uvd)BUZ<)p6?NpU{
zHW#{&k+fb5S}C?<)Lvis2~eJVtp00PV_RzkcxB*_o^8B-eDMg|<JiA&HeBY%dt+oa
z6D;y8XmQ=_bR%WtSanzXozterD2<uE<2{l8*<|xQZAiYnjuLy3ocQy2D{Grk#zC*P
z9Qa@>a$i{or=rrYx5DuEeD+I{qa>`DWTqY=E?16~*@PMA@=A0{Djq96VSzR;iGJJL
zXN-?^Jt_1thDk?BEbf?iER7p7lUTbNjw3vYz7or7*5A>|mwr;}QF{3J%jDO}qXJDQ
z6*9e=iOi<&zkW}zDri6Vl|`2#!^*h|Useoq3GOMV^=vL{#!3d~q`axi>~WJTx&vLy
z#3v9u0g^CpAL4-GOUJvWP2;r~96YlKi4O*8$v+ZS_RTKcye;3*;C{zR7%tziJ(J^n
z&w79&;6CTM!l%)KkVhLV%l&@Ht2~C{L5;XjT4fn4lfq@&(eK3+Y1NZ+|7s68M=tT5
z@wVr|CmXZ~*U6u7-p#s43hxeDXZ3DjdTWIZ4V+*beYQU-P9B9&bx!8}ft`^}v%=!<
z#e4oBKVkx%VgjG>@FFVP(KG>5mYY7<5<4*qj$Or2HJ4vyc-{4zJS8F~zuom^4!b{;
zms(OjTI}At?+iNqRl_X1mfe74*Y0@xDFnN_QOf*G&G)_Df4cQqru!*DdUo~{-(bxW
zI(M=xnC#jDVty(A{b+Y<M$CFn9VbEwApy=ye=s=#O5i{t;J9Av)qp*H>`5Z*tHZth
z!lAeGEqJqy{kg7Ad7t02TSwCM&d-8)T*mq;0I)tZjLXz)@Wvqorq@6?$Bpp#Tv<hd
zjg^s*+2kqo^)VtoKjAB!SuGvmD#L(Z{-$o*y?)Of{iVtAnBDWLW7fH?3pIdsG^Tp5
z)2O_vYVEAp60d0{*JTqJ*R-3w8!R^#P1J0wgWG4l)U_44%<XUSd4VdsPxix&cM6}B
z#QQ#+!SjWE&XWGK7_1y|xuoQG&XZbd=Z-G>3pE~Qlax<<=NTvYDSshCgdOd``@4U0
zJ=hOJd6*WB^htG$7hgFY^@`rT^#U~Gkc!)>D33hln{J!-PB<OhyP4kuRlcc(o>-S*
zaQoURpZXNdDq~8juRx<4&pG|p?dl_a_(0l75T6F<?ln}N<4@AyKmY&|CO&WP^b>^4
z6PvV>M!kQ4tkx5D&hQ{!*0c0}Y>A`-3%%9ex|xbnhk}CQ54|Z|8(iR$n(`@5hVOIQ
zwXRfyJ{ans!2I|@{!jFzwA-TXa-!UyKEhg1w;ypDa%ea6C^WZlC0O9a%DUwqT~>qX
zB|8fxDpzv#dTh|CEmaw|EMEKCGn|*2BPrydSTFQWk=JQaFk)Uq$S&&CeCI?N&LIC`
za4lC_OUbG2#;$eet^V7ibfbjvLVt=00N<I}3;m0LH_iq9tYXn+wAGd&Pz&mdoT#DS
z<K;$lM?DqfGbyNOYKvLOIliz}j^tPCH(QyqttQL}-x(rNXpO&m;IUChVqn6W#qbNL
ztvqN}5C<ZShkaI_o~erUPSkt}rbQt4)m7Ha&d<5IYA+3b0Af>PMXOMkW7G$@@_D8x
z%4-YS465~vN?f}snpg=X6gF{I{T8Jns}Lafjf&lW6%n#pIji~zzu30^PHSe0`shk{
zXou(lovC1M3|^9Ae6L<pQ56mkDc(vC?5#Jo)lID4cW)nMwV~kf6|PZ5E?*Cqo6csQ
zy?NFBScN5bYhlAQV6?J<TWB+x=Y6+bInzZiUbJL3aRen<?n{VgZ(;AU(Vxa@t9Uy>
z6Vo_5huMJo-KMo$ZKMRLL0Q(;cSI5R&*55+hykbojUC^)5)+(AWvr9I6fK*Z*%<3q
z__-1-Krs&ci!QB=7=sF2HO7SLbtT%|_m#gFKz(MO_>?|&;v^5K&ZF`V-}+HuN#U;j
zT04r9_RCpQQqaxMDY+7z8>(&!ZtkGE!?4)l;31SFeEUUpgK6>arN{`yi3Y>2T`54;
z5pvh!CH6JGBG6J$xdvQbb=pl!7nWuJ7=MdQL5HCYm~G`di}il%+v)m#9ZYTQyjEBI
z>vKEtFoUUSMTAGSURtR5v<FGk>h3oE4fD^NYgG5&E}ha+-w`^46Veejh$@&36|ZvQ
z;YZOjCL3SN%Z0DMX2f$`1mXv;m>>IlCYgoVs;Uadhf_3CO1vl(J=j!JTN-})I-cM>
z3R<&I+@}(8x3t59l#FODYNxV{uo@-$_lJf;1ak>_yb7CYG9yw<E-uY19pEh;ydX--
z63>fW6_~spo6?es`+Ufcq`P$QqxW)w()0D^kVGG~>)}Z>u~fP(`$E=_+1wy=@J@k=
zX_iBF?$Z{0Hf$4y%ahV#+!I%S6SYtt*SKE4rMEQ3!t_7DEe}RuFMknuS)>nOq!{-B
zS(_z7u`BoV&gBGirmSu6L^LB>VY9KU9E6l~C)zm{-rJJM(0F?S3vQ@1x#0sH?Z$;)
zi<Ma!T;}4I6(vfH=YGSp67|8U8Cpo8V%OhSt}r~tK3IjA5Y`yKvApK1!T4#$mUH}e
zC^Y7IMfPIE)y|esGro0c#$onJ)`yxhZWLd^`%T}hjOs(jvR6+<U#aas_akODY*K)4
zFo;jH1t89pBX+K}zM71?08@1I?bi2J=;+U(r=sPSY6#xmj$F5eR<z)J(WFyc+EK|t
z`n9PlLYZ7fqQ99avDbhp5LGyHKcM|8fkD?8T!T*Z;=U8Ss($blqe_v2r?d5wWlYZV
zfheYO2PwQzv@2P#ebOl1_9ht^B&`=U8h}fZJu#v^t%=i4VOr%-_T*FL?w`uttG{#p
z{#Ch(e1Z;m2z0^zQCSyuUOc2L7=3orFqK>`opzdRGml4*MjsaCOY<qE@-T*f*m9m7
zbR2^n7Qcr;vQbz{3O!$uw^J?-5W8P#({bR?(^ry*-WkE@3U%tG-z!9%tko=Dpgu|u
z6uh@3zq?3E^bW_u@8fy;gJ*dGrv>*yf=_U_;Writ@v(j8CmkulSbiBpe6{IkZej5a
z;hHtY;6V`Y_2gc~aRoMaa{ZPno=JG1+0+sK<9CIxgY0Lwf|(x?3}^$!Lx2WRjuA-4
zPo_4vl_K?mF{eU(_WK87DXAhRt-keS`b5M{{~B$#|A##o7~iDvvOs|Jw=@3WEXwsu
zT)*jc^G845!7i1){qu(Db2v2_kJU<#@UknWvR;vBaA+V2J=htl&eX$DT-D<q<n>oV
zW@eFyFFzP?zB&1Pn1lacivKH=h~_$^|MDC(8}Ky0t4TXqkyQX>-lOMIuraj4k|oq*
z2I9vHQY~`9>cp4obwOlkxY1vP9b4GnwR3JcB#WaV{KvboNk?6{gH<}`^>^Jj{Nm&h
z#MAs?@62$}NKv?XQ7i8F8tC>WG7SMQ;Q&$UGd+fPB}%D0CBT<|479m;(#}Cq!KVg&
zLimptBfYV)Jg>GAyo!pJbtV7{gwy*7Kep%kmshRp+Ir!S6O>+3I$oNqeG;B@A_ZsN
zh_cUTS+APRM&<b0r}`QOZ05YqkT9kJEmU9U_TfzfVz?4}HoS{wIXqLU6P8U0^9X0`
zetA^QePGNh4xJXufERr&F)BCi_w_L;wfv9IB8U&5MQ~le-U(BXlQw54QUM~MsHpky
z#nOv)Y4eqOw@bgM9J&(^`{cH(w1`!2oobue&EKHWP88Xd!+&3ge*9*s>(oV)hKyBM
zNmxfm2eUa&4E-LTGgVJ{-N=%!$W}ZD<Z#*W2R6JuR;EO|cIN<mXhf(XTz3~^Q{NyD
z9s=-V4jykXxc?slAu?8G20*&AGtUmFa4Mzu4hEAN0LTulzt<*@ayoR_!Pta@fJhr9
zxtSa_@TLhLk1yVI4byrC8xE2h-%DmGj|C@=AO{7xWxafADt~`h4-T!GN<7ONqP@Ac
z`^l+9Ajkzp#Tz|r2>5Nq2j&4AK}AL50kkJ3?gi4W5*Y_1jKB~q3zR5e{>aL^>YuUC
z5A)msN!^wQE3*|*wiV(-yLMG;hg#IA5QiOo_oxK>m4c9}O+={Q5a{HwjHv+EI!Q?@
zhkBxzc33>S+aVCI7ElK_6C%4>3oblkB~z72PAjk1lo4HnuPDefix|CvKoa_U5kch=
zlR*iKZd!b;TRg!Gc)zeVX!6U0+2$%~y+1)Y>9*+2N>@9plxp#eGxPTTgewN#1Z|ze
z-e^M!tI_CaA^W~3r?}nHl@~Kf(>>kIXQ8(XZa65=0Qw01g8NC!&y)%ZWMCkU+Pst3
zR3O6$3RL0H_Lf0Hgs2NGTLwfqXW{{4jk>gG%IQ#h<18h_2bU~HVgQiBARzkUbx+~h
z34lWnIIq9HXah4yh{JJP6E^rul-VE5K8)8eyUs=Q#4BuT9+2}?hJQc<Q7#3hqp5q^
z^X-*yi%^(|_CPO{l{tH`6iulJZwg<@0$`v6PcwC4-jh#2C=0$fELj4!M!k&@>`XiY
zr|;o~g_+sm4YxlS_3NiC`UuOlO=R^~$2>q1q!x$uCLk5Rr<&>`6dn1&M(8btAoSx9
z(1+n0@zp@0RBmS3$}f!|5$XsDT~gDB$uo0aVnMKh6J2gtOH1MNtCG0Qd<Dwk;b43E
z@N+`m=~lF7u^lw|l(~vo<n9*gDNptP@i|?|10Grvj6GTsGpJRh`>L;@apt_*Veg$o
zzan9&_iSrxES0agEMwK*y;(zb1I6bN>YAz#I-Zru+IjePndDO%D9h9c1&?=bbi7n*
zU<oJ?qHWivLpM`y+v8@gK|bOgAiad1y*>I<_367eL(~W^`5nk6!z`?()hYWuJHJ4a
zwlN*b9e6@BVS|Fpc-dZzlbSYvjgmU+uy`>mN(1-dB5q5|WuGJl<lgOZpTb@{sgXxn
z&)3h4H6+$G-N!wv07iXFiyiR6`@8$Ks_hLMe(ApN%7+e_IITPL@^h-a)AdP8wHt0P
z2foOYE+1ZCJU0gT<hztG=p#Q{nXOq`L~~4x|MvHv->=Jpii`HQ4A6IX3No|Lco_S}
zeh-iRRum25%~ShXS4If&c%In{guekPVCcfhz&iy-@~v3l@MSD|*4QQNST(w)0r=lK
z)<~f02QS=ccYZdz(O)INU!ZF81V~beI+`qu+3O#>S>#c1&uGQrZmq7yqKY$uIGz~)
zg1R!@f&S*u7&TRcGL7ewRym$p#rWmKiKio9;eg^E7&Q|!RotDu!DGsj9U8Ep__<T6
zHaRgln5jX}EKP#6i;nhf!PG@MFW}zeo~_k^dpR^Nw^eV)6e-=7q&+>mef4nrNGf>P
z!C`)j0hSfmQaGY&tnUc__SZke<3Yq=DG9ER7s}Q;b3m%)`^XC<OhO-4Vqo`E9*)QL
z#zst+=d3=`DRpKGdU#Sj-H6E7L+#VcsRWi4<;Uv`SIM1%v@wm6?}_eLW<h7iaT`@$
zS9i*E(A8AD0sh{~{o-Qkf@mWjU*WmU!S&(aiY3F`fjB0crP+MM@FZMjyR*#A<LA#`
z5=RAur^+PNe*l?<&ebtUE~T}#ClVJ^X#%ORn&S6T1G?n~ywO6*ybeM#*4DjE9k1g#
zZ~qAK&Lzu<Y6AudJcMm}eH$Pvdu{g;(uQG1#YF7Q_3yQAy|~x9-Z-O!0ddbjLXFkg
zmj&m$zpys`fg~0ueGq*Mk`=Gqxxn)det37DZgn(*sC4cd;b}_|%?5G<*NjiU!%(i)
zFCfh~WmvE=HRq{y2_#O8S5wCw&u-5A`nkl!TS0@yAz^dJ43*(1r2E@R)sC>5qb4^y
zH{_ZU2W}}D4G{G81|AGsARKOvlf(F(Tm~_Zy6KaHSEE+dDy&YVZ}KV2)*6PcI1;!@
zS02?*<5uC@7(3DVNh_$79H`l5m5#Z;W$^&2MK1;$GST&TDHlbiBQqB2Sc=1AN3%1^
zgq+I1hguA%ZuyTsMSOPl){plKYECFXQ%bjE-VH9mrI!<EG^xNi<nnEH0}&|$vki~m
z{)=PIEBn@)w8NgssjX|FxgHk*|N12tw9Ae05Y&b&==~538xWrSd&$0ZF0iC<1%JB1
zug?Gu3h2?QH}K_2C8GG2#AJs7C2@E)=j7NN=;3WSYF<MJ*g>VpguDc^^XG?U%zN;j
z-Z~uc(6n3qKEGo|Ue@U7Bq}t_Ts~2>(EM?K^f$aa>zuHt==krs#CT~xFel&UNa95d
z8%W`VgKD+sQ*`i>2&~~2m0Lv(mIQA-9#)gARb>yYLS|Ej^Ot*_CS_Jdbi{J|<{Mkx
zOGo}l`wd<b-oX0ITuBlt=H%qO`Fi>l6qX#ACErOC+fNc95r)h*VKdL^akp)X3_`J}
z2jW@s!g?AUj~{UFz$uWGlcB8A@;0Tt&|-U3`3I=zlEtD1L^U;Zq~1p9g<q-O3(1H^
zjC?p$OP7$&RVeO5LOglO#5`_UE2<^60#KUKF=_-nPJ7eI6s_N}LVHsCFrJEvkhj`^
z_k#PS<+9==@r4XESj2#F=vR8Z|8Y!5);hAr-TvOS9n&X(C?t)L0HVSeiLC$H40aF{
zb(AI!SzlF|J2rmJ5e|KDqyA%7eVQ&;V0&PL=xod9<Tx>M9eX$Ju(}vAQso5VO~1T$
zh*9URs&Tg9H=h;~Wuu|tX4o<=C=MliH3!gDE*t)ro%cY^YHn>Tn>!(Qy0L18mwJc>
zE$fjsa7?`l0ustUwfZ8C@KBh4D)3Z)d(D_O#amfZWx%xK1Al(<vA>6*sGxwH$<F?#
zdF4-#k<2YO5!gxN*}Moa2_mf`GAe66mNmFqZVi`?S`GRh0J1$&+$iB0ov3EEf-i#a
zq^YTDWAodT4;yAZof;RJ-D%*?rG+lcIjN2#I_D$HGF|I*9$%cz2yI#v!X)}1Lxg&$
z_vP`=%&cg?5%I_nlk3VzcTG1le32k+KZPDrSN1!|$L(AzVr&2qx{^hCuUJ|Wm*<OQ
zdR*eBDE~J^s7xL0_FZ#m!_dc5a5@6hK3@|pAIdU~wP@B-m*#lkJN6>^o*`v5Fb4w3
z2!D^&purQ$1m2Qr{5!1|tG`D`i9z(yJJ`?OQ3-5@H{j&{A8)W8E)o(eo@K}dHiJ0Q
zL1}tAh%6ii<{j8;?sq(PSB*CdMZ2^92O#6ZEpQ1eOGhV3vz{*;&<#%iWT3gZ--H;E
z!1J=QVnXU1rrl!z@e`KnbTz5Rf?GTkwzj&?K53Rx5L_M{%rx{RZOQi99)w^{Uk<#b
z5ZA&A!JM7PhGL4;8KSy|(F}o(B=P>n^wfXvG=xokZnSl9etcV3xz)$@`IB?xDQs^I
z8PT$g0%x$RL7PKEE_xT)WIJc_ltuuI1eEb`0wC2Q)W`3>-kDwL^U}WAT;)h`Rh@ny
z?7Dy-g{C|nxI$eQWTC;#sDYGB>{#1bh8T&HN>-pI{V-?_0-s7IJ>`XE>S9`wd8muB
z2@>BmZiL;M9`Jd;MSaejWbHY-H&c#xU&2?kQGNRgXv4vSAjn4#lCndwfX@BOVPMOR
z#+g2jt8z*>#`0jV(fB;Sve%PPZ_&UO849*C$;>oM7;bN|b#C*YO)gTi<^Gd4;_CSu
zXyT`6{ieC-b-5m@E^4N)g8^<yaedgq{KrJG3`HetJhHvsNpYdMQ2GE>-ti|g7|8j}
z>+WHgZ90ex4)eOmcK{}v?IOKtmu)>|ZA~Su^On`ix$AF{T}I|x8eHTyA+e=}MFrl3
zsjG|g3Zfl+6g6pSKh;G$?liQCBTU`Js!Q^(>t(n(@%KR(YJJW=2w(?4OCg&&!DtuK
zd<{n4_?(3LR%<}KKp)jL>sfzWXJ~6~UY9A}kze6$UKzk_!k{ozcE9J7SXf}0!t0~I
zgLboWk_t>=;KMyxPdRFfxwlp77<}8hb95w$1i$es>=x^;K3L)z-n$Z@tTrg)py3_>
z5fouTcoBrC!?u5ZT*gn;fhHC!ozldp*Frivam42SEd>x<+kit|YSNEw+%OSh>o{VJ
zpo>TPnIN%+vv`9fx*MFNGetfNbgsO>&3Qm5;L2(_e`{F-z6h7O&?kk*Ux^j)ux-x1
zuN4&Rv>LqM`R^*?yAC1=5uXhBy{nwG8y(+(Xu9K%Cmf6o^)W4LFZl13(3}+n!DBPu
z2ejS2yEpi}Tzk`Au2ZEIh-W*`pdB?j&_cF1pJ*FxXJ_R-4o8B)ee$d8nuoE8BsCaV
ztjrWH#DQ(cj7`{qd8NhUp2Kmqvbk=fmI#0*81+|wdP5-lGhFmIH$3GK90GREbP(@m
zD}|Jf7c{6@SjSKfX56WlhjaMvY<}p=f0A47!BE0mpl|Z`sOPrTuE;tiQB+gg!$-rp
zC)VK0=(yojT1Ja}NjHPwLcn2h0VB{~zhj{S_3VVR4s(S)9i8;~ZIxZix=wu#;jO=P
z9H%wU(ACPZlBz*Omu;mqh_8C-zT!_O8EpG{AY9}TR@4w>glsO=yLp^fQPSjNC{34a
zATw>t72WpXTcu%1GR<-Vg+Wp<Q=-t@8gC5HMASmQFGk1!s0t@gIt`i%SY*4A3gywI
zkgjoPy!KoVmCRO*koXa)^aM&dYj?#0jfBI?NA$6|B_-38O?kD-!a7yvdXZw1J>9IV
zqj;weY5+`36<l2FWaN+QN!e}L#vRC3g(dmfBW550b8&9Q6$=B)(jt!;=VUyVmWmFr
ziZkUY)#2oY*$?=bSw|V!hdMweLHfb=(o?7?l+~OCgr&AWBrJmP<mfMtg!w`(h3mOA
zt-)@o1fO88Dq!K^2tR)@q`M^?<|jh@db7q{LIT90@to%6qx!JZK7QEC{>4c&5h2M`
znTVtP6C3fL#E4DHvegX@^{4+dNsyP`WIp`iA3Oj5H&WuiAruQgmdho}M22^@##r%@
zW5Y!se)2!PloOq$kC$`^FPbUAzg_MCS`|pvV{e$u52*pJdo~>e@HYSb5wIN&>@?j~
zr4DkkO+^>HPUf)s7sUHFRxy1puj^drY%X`kLdYjIalz03+ssHTc}T(V+Mw)-p=(hT
z*c8V2p}J#6>9ZaR_zwBXn!0@mkQW^$&x@yC0e}WF%v=E|QGq@lr$mXddXvnRhR1UK
zu;PWgi93+&4ksX}Z)dC$8XP=4q5DXi&}T2q5SVC<(4Im4+QI8bkEas~0Ofn1*Le$U
zP%4<Bpkf7?W8Tp*iE)um2VEg=^wi2k>@Rvl;VDXaWF%D7REEdpt>bb55rELm5-=6)
z-kZ~s3(IN2L!^r4K+NMsLC^0V(`&+b>cj$p4pAnq1+~_BN}cO5T(TH5>##LdSy6`j
zK$(;{u}zlAx<=e)Mci`;%o(OUZiXY6*#R-wiDirm<0!Zfv9MqV<o|Tj(K?mYOxnE}
zme->J9jxJEaS+GVx^I26^R=pO2poNY`P8C75=pI#j<Sn^nw@!=EaqnC&<%;z82m;z
zS>VWX)r%qyrKSJLkf$U?d-flS$NYA8Ri1ukPS<^t*J<mzQ;(*m>q-KdOGz@ZZm9;$
z3y{4Q1fKnjd#?PPjFkih0y&UC!VK`MB@01x)Wzy-roDrF1m}dX)|D4PIGLB3J<h=L
zaX4@u`gpTThxQ8$U4*$SXFyP+sETz9kDN}ej;cbFS$iOegholNlXZkR-R_)$j+ud3
z>?QIGPBc4S=3G?h|Irn&VFMYmHVZ!EZSw|eU;ct*$eHt0vOkns=gEwtBbto1Nx)zX
z3Jvw=&p}%vL%vg~{p;!W?h6QT)`$U&U!9-rE?R){(WfuVN8Q_+V7va;s9}Z)PMumV
zsjtKp6jh_+mCOwCe2E@nb^bjez8#I^ciBBY7@Qc&9Qo5$7%bHtC<0OuEccnXCy+rj
za`9a4iqp&Gv+oK@a>;d@n1dtzRV~}6r}}<yE#BV(8=359rNJUu(j*2dfAlSIv^3|x
zwb()1MIZI(spdVR(`|S)SFwQO;BikxKHzgj3kR{;Twcd!?;Jf3o<=ykGQYEj;;xSm
z8qSG8)b1G)a>M;0Rhhx=$YW6XM@Nr&AmgVtn2|v*iI{IeEVTo6NzIF0r^C*zJ}nm%
zoU=?%;SG9SlxGCQs83-r4oh1G$2^Qk5AqUlkAc}48<rTbl7hS*5HVKCItDPJtYa!b
zb?To0B(Jy-xZ(eYOy44I>Hk)-6G7nU_<t(kYt>r+052z))hF-KNryVxA4w(1&{EPH
zGQR#i-yckC0vKPQ1y>1-O|{<!uz{~Mx6=f`^Y(|j0vJ#?&GI8YWff+ZjHlTl`3hE)
zy(4!%x(rcfz@G6rSnAC3FH}#!l`tL#bO0#OEopGRW9|6f#vd#jw>5d{kHIo0KVv;t
zXM0+2y`y@YQJno3<}~B2Tkby4e+s=bS>7$$ZS32LQJEO+zjn)3rq<$ckp#8zX!5mZ
z^M{u0wjmdyVqI9@$XvdX#0N2xv!cr$ADwqz7vGy{)b1JWroZ4}hr|8K`&%JGJOs8^
zu(HwV)CorP;qsewwsZ{mhbQwHcGvnjfT4`NMQ`g=c*cOs9@>xiWQWV`J+crJb4znb
zK-Q)?Jw2tMAUGyR44hG#=l7wHN4*F#NKUM*(Zl6OySqG4+(pabawHR02&di6M{Yc+
z2#H3kwRTYNyLr^X{R)F2*Vb{o!#OEkb9Cj<DxGq6lu+-iz|K#huLiyyCT9XJHC+vv
zOhrozPVITTicn?MiLp^T?3?Bnx-Jq!%J(&~dMYvmz(A;K@ai4}Lyl5BdM_FzLyEg;
z(T#Wk!V)NSH!Unj?Q8qUpNnRwZPht=7lvB{u=a2;AVZaWPFaVEFBu_0LJ_suZ~DO-
z1D+soU4#<M7Do?1J+!YUN;JzVy}fXIK(PEB2?iJF-)_3a(7sp4M&F&?<RTw{Cz^Yo
zURi$@P*>1!I=xB;U#?p%H=KZzQy*xuVf80Jg1}_~-3=fu*@JHkPyOb3LRz9E@do<p
z{OnGDS02jCD@tHA%?EBFD!K-z>-h@A*ppMoIUNF}5hhT*;)BbwWN12#cyUwz@d;FU
z>^SGMDWdQ`-#59+H@Po4E<grx4rdfLQNF-lqIXIYFCE6=vbNzig4>LTv3Ok5{|XZ@
zEP}y%yBu(@@2#CNaqi9gPRdxudW+@?t7s_5h%!>ZNa?A(0H*;$C3NfQ=qvGs;XyY*
z4=M(PGJrGDe$^J0Xg!zKX%gIOkgqI89u=6*9w_ozo)jZ!i-r2tfxKF=t-jz}_7Svd
zg^YyY$js2GUZN{@X^_Ba%`s4@PHfIb^9A_Dx{eh<!6j6tuBTQJJ$!iTs9v`9Dbz2b
zt}G>z_yvD4xcQ-mJWp>x)FO}iol6k$syX;_>0w9h+UA(;Ey7nb^;p(JH}nM&?~FJn
z7hhwc#mx`GS=^k{Sg}8%f5gB+QTZPXtOT-VrqyG9#PsN)GwfQ?wi$qJ^faVZ4MLqY
z{$8czVVQe&jgm}DOAYtw0=o-@x3~WJx9H7j_b=WxI!H<0+2(LL;CH*Y&=56N0sW$4
zqS4mBEhPOq`FVNMP50^_)51fm+9sS7d33B8=3Ub=ddW3)l_%^gSybTO(9}?Jm*(-6
z{5FYE8;781A+XN7U+j`Wfo+ke+~L^Ks+|=Xij*c|?nB|rL7VOEI!hXLqJSknE5dN4
z&r>D|^msAk?B+3LpPg;=-|N5UgfL=NN~WBZiKB7xHUYF^9XlFMz?#5i>#E7~bD&tZ
zBIWA#bo)p%(<Td;8iIiYPjWF{)0i3NKRm(xCFTi`NB!?j{1c(WgNC}0%jq)xhV9SP
z_~cmsN&iZ0d>t9dbtOgAdnfI?-^?yt7aWtCIKN=lf}F87{H1v%nTnkyXF2oqst{^o
z+}}lw0?*eB6d}&^F%j%3t5_gsP3p5vQR(Yd>w%@`$jPDmb3-E%rQXnG;<=u(s>7Ab
zahOampf(W^Vm*Z(rC*HuV%PbtfuW6_cwbxp=%~O8X!SMPmE#%HphCxUkj9mV37Vie
zIqrh`WuCL4KPsg?v}lyjg`v(KhRS#BaG#Q99|7$*Sa4jA&u{#TpHO1hXNoAHlR&O#
zi{<rKc*pK>2{>pG$U^^BVn@e_smrS>?v9gPNUs_L2UM}c&tUtNDMj33oM|$U007+E
zEgf<qcU4|}YA%XANkzat%~)hhvAnSVmJe_)&>b>sCnv-sfR71`Zk$j1qx4L^#r<36
zf<)2c{58PF9v*XFnMrj$_qNKArgr$rSn+NsmSW!PM(7QOJIBmL?M#i=dEE1F|F@<}
zT7NJ%Z0mSp>DVggi!wFAAW2}p0OF_b(77?*nOnmY(z6%l7_FB;&-2sfPDa*vMTHB&
z9iP*o1q2!X^WcCK%yj=#Wcjoa-K_QbP%mTsqLrl&DRBvjkt$}EB}C^;TJIywtxFa@
zUIy5izkFi7{9P7Y^ojj;E!-W@q=x$xjAr>EFZ^Z$W7)4NJ|(q5MpR{PERMt3(?2{h
zI?P{E)A`k_MPN~XUDqZOC?ZQ8l?=nA!IE-!{s_#JDX`u~Z+3l=RDu6R*;hwZ)vfPt
z5J5o!Nofh`P+GbKq`N~xy1Nl60Rd_0?(XjH?w0P{blk~z&bjCQ#=ZaCG1g$X9WeLW
zd#yRwJD>N7=NzvgW`odYTzd$6X`?08Apb74dJkvL_-tzNp-Btu5rU!%oUf@5Y}WZr
zX>7%j#yk6`Ef*`&^6Cr*{SHz!Ie+&aO-YQ+^$iS6IL#j6DHp1!C@PM7Zg*%caz2)Q
zbr~KB8TU}*GP5G$1)_9{VY)ke#r?)0$XBDBm>BKzl~H*-8YGrVwyYpRu9WHXS@9f<
zK0g-mIE$VUJ_hO=kJEfRQc`Z#pwFo?U7>`h^Lcc_elD7v&)w|}g+9mLPtVo97TExx
zL|*P%4kc9|=_l}L0LQ5o9j`Re(8dXlT^-lJxuuh6SmoDU8A9!pmXv-{ermCO-*G={
zXOJFB9;#xl!tuFjDhEbW?Mub~NvJsr{|}>wCqDC?cBZz`*X9wvztFMS^o<=YdRB0p
zdgA%<;ugU|UiQZFH_=~x0{fzWQinboDS*`2k|rv+fI(e$6&!B&uvYA!X!5q)iL^bI
z4<>-~-JuJJ^5v}K@$5AbaVGa>2V@ZVMB%$$OCBR&mDBrSY<y%?CO2;b^1ZUwLs+U*
zf&AI`g*L`iQC;J_`45kQd39-HdGucNfI^YiSHQ=>DNS+4fvo+o7wbl&k8ce6(=vDk
z_wHf&<&DxZmU^Z~0Nw)C$P@h~z;5%3w=**{I>f7~RYxkMN_~pKbE_D15+tscPZ+`_
z&F>PpIOpe8hZ9%{A@Ju1r2uUnMfVtEv{`K0Ye|k*GBU|~#wU{^-HrUvi0~`^>?}}N
z)qWQhpwZW`I$OV6vhZ*@O;BHog5g&whNrWC5f)_hfQM*_<Lf@RR5mvK@VqkJJ?(uE
z^$yY@nT;GqE4*F>^`^M-U4zWAxI?-2?JoZ{Bp;My@@p6Nl`YUh9=QxSFNJS@SC{j4
z&oo>#BW+9!MZ}iPl?eg@=MaV#WR(>$0z2AW5t!>VDGPII?QTD5Q&zA}+Lp7)%j&}L
zndu6f3HSwgVU_-B_75fzCqC^$M~vM!uvAi$wS9CJb7kOk6&EDbuDP5j)FMt2cEM#k
zd~bE#rbSFBge-&|l~K`9Us_E5>Tt%+pVX2IIH#GI=AfoVplXX0014gylamyDLi_GK
z_N6ZgVe)dtrHG>aYkB_FXNJVNd3jmmJG5BnOK&B_fKPsAYU%|Q^48d-`WpG5`}JLP
zULa%ALb0-o62F0k4ltPgC-v`fwfzl51<!QMsABlBy;tNgMkfOpXv^}Ei%T(Bl`y7_
z=g^Y3x6V=We5#K~mLDe)1Xj2HP-Lg5Frt`*#BfFSlKA2{L_7#32ICtSqnXc{IR(2m
z=eC5}+Xj{fmc}n263^>Wi-b*-QoTZ4ge|_@IyeNMQbec)t$e`T?oi6XU{n$UyB2ei
z?D1_owej;%w0AO!ipFsOH{+27AavEi0<ROF<u41j16m0vodmQLA5;V|4zkyj1%v1K
z1;6T^*D6g}m7R$P2r&toLq4!fSk$@6scG52?r!Zfl5x~V`^{*x=Wi~bGQO}c8NmBo
z_?{rcw{)lmhG0TrhO4Qh6${E_BhGjxmLZp08zz;02khE~bib&6qdO@Uq6Xw9RW(_`
zyZqcNA+xq#cu$DPi~Hop`d6WUcR_VG#eH~qDDdmW@03<eq)hfq*op~p<De*5b1wmF
zM*%AoGInCZaMVlvHPz{(Zol^(FXlX~mMC~x%b6Sv4j1$dhn8IF1&(rm0IB?Gp6WP-
zuHrwQlOI}Oq!B#Do(r6$FED1x^`?xk%nB_ZeA|dxta%hA3u8U;v8nyhnUWjf9Y`iO
z87fg^)EH15WG}_<d=|llTea!OSbJxnTU8kg<11kz-xNYVKOwUvCt#wgs40m4*wrW!
zu=5<>K|EW#RwH#O=<n-c`KRE*dp1>dRkFoTz+~QE5j=)p5Vxo*OduyTy@Z&NFAgtG
z4QyYR7hNFQ)&Kroc5n<fs9!CO_rETV6_*82EI3?ISHzKHsoA5|MnpzLs-kWly@FsM
z_RbBwtIjFAzrujLL;d>I=Q2ut$8aq?gRwTi%R#?{^ZrZr--5f-f;*cQW8MF{ERv-c
zOOQl`eIX+`c|D|;ra=9T@wu-+n|KH$;@7`(DN)IB+|hF)**xCD!NR2D{cnuuEAoGR
zO8=*~=>O^a`Qk&%(?@J{5J=q~0r_Om;9@yZS?k%8Kej5d|BUr7fNEQNbYzCv^dUSg
zyiA#DeaSoHIZ|_XpU~5<{0}thU*n~2-Pn!~{nlz<bR&&%t8U1v6K>?<Z8mBd=~W8h
z2egzGB)B}^>>;f~Uj4Et`Qt09v$NBnmEPac!%Zr?yW<qJHtTUv^>v$1T%0T41~NX0
zH>rmx20vYle;bc3`7}Q))#^h1oXdGts&D*VQRJF#JbZ5oi9D~}hX$znW9Vw#k5(CI
z9^k(Fs9zcm-P%kXdm%VJeomJc35oArLxOyrEAXv8BrDQ{ws+fRo6j_uUN-6N3Sc01
zir8W)D=B%NZNL_oKLKZ{hopL#Pxs_vwfR<RXYz2;2Zy&$%0P_<H%;2;oF%pMoqb~O
zG|0-~{W=1QJj}{UScD+_XUU`wXb`3Q(@KBOW!KAy1pI>`?O*ja7b(S|oRB~9v5`@V
zdHvco`l>Dl7oFp`pUkkPSpNa|{&k654xHThLG>5oAGE6siUb@YDVgTI-Tf4o)%CBg
z+z-f4ganFggQVuS*=kbha!82c8FDy~n)*+<SnwCe#+nZyi~d^!f6R<h{44**mj}lh
zl$)I`uO*v#qxcSWa~-ROeKz0Yeb|>gY&ckcXj|V{gMag7o_3Rkrl^AyAw)sR8ssBE
zQsUI*)#q3C^|Prxw|JXFA6I}3p8NKEHvlu_pKJ5S`-$b^f}VyTRCH^qE^8gDLVJC4
z8>Q`WM&moSQ~mt@Rv4cHE&l3*Bz4ro{je6`I^Wy~Be>$Za_${@-UN4JPfSb%CvqM2
z1dQ)WlDPVNoNaW=8@eUMLf@L={eyp&AUt{4o|6~cZ0ubpyW_p(5lWSTgC46^--y_I
z244WFw48<<t4$j%A#g}auiPk(nwyJ*pxQd^Rm36{CjP*&Q(Nvi{+v8u(m0uYmYr>=
zADYO#)mQ5cf5Wcy1bzzSsJ{@)L^Fj+RX%xFKC`%VPIsh`Dg#p368_>sj%`a@^1qL$
zgCJdBlCUiJ?0C<T$ptl1!F$$zy!bdAJB}!^)|;o9F~WIf1qVUKaslK>K$b;$nvmPg
zA!3<!ydU_<(B?(hASv-DZ=UWjVxLd{zmC8E8|(eQ=HP!gbN`IH^zIaou2HO`SykSn
zF^^1p<a{B@{15J`-zKpOxt|@D*4v3ViK5>$kv6_^MKY98!>X}-5VSB+5;RdE*jOK8
zu7920(=2b`@|CNtraTkvT|2Z4XE5qx=$VoI{c&!=BRmr+jIX8N8$%2=Fw@4j>^7b<
z>Rkklz6}Hn)siCnb0+eilL0@he)fsaCdAwbj0R7IL~<=9#Qd0s|MCqnN#+#%7wbCW
zduhtBK8$~_KL5;jC)o{wrP;tA$jgXhELD1@+|@qin7$hVgjz|Lu|ip>V*16Il&M1G
zt#AM1ZVbKwt&ym_zZXb!vA9V4jjH-4B}u)?L)@_T!3zC_s<^^-25d<D$4kE?-ZW-y
z`vr=UxcY`XH8uY^%@y~7R_p4jGH5YA<2Ufx0z`XEit05KGt}6pht8zTGoO1i%@0Kg
zlex!XOgH`RRid}Nx$`A?3Hh)+q0Aum4kO~H5N_~~!d(^(?9y||$lkQI$*0!O)8H)-
z5l2jJPQ$<mKMNOmN#Ea=?NesuS)#=G=s_F<6lxQ}0m{*jwbJy;5Qvv32n7PFl}m?m
z&s4$12DWGc^5J-n{mEgM16~n{;Pb4IozTKv%v^Gbo#R596O<vXrpyQXhjZB}Eb?7#
zl;j4ROPwyCH}3A-i5xW1J~$%(d9;A7QkjrVtqgsB%+FgKRUQkAo-MY#XyqW^(70W~
zvt8|?nY6Mzh^3*jh-sKgc;toCT2Vwf`Rj`_yN*4?$7Prhsk3hr6Rb5HYL|yQ**B9t
zGRpVBLd|+Ny`gApDU1e#jO3;16QT9#-iFv(HNbHMbdZJh`!w9zN7?C$i++v~cATED
zpPraZAMLcc7RR<QHkfGdr=o4qYdwDxhg%Riz}1lRc(i^hRSw>XMJ*0zl7-oN5BJ=@
za=RkB^s{d1xz+w8zig`yJt@9s<P+ocpSLSP5W)6~o%<-N4-3On;SfcMLCd(|w!ws6
zuuz;&i^<v?qWLBVql_b7*g|J^md5cku<x~9rT3kNtG`ozG#m3tNJ3zLA5E4l75Dw(
zB%XG|3GkSnn{Hq2xQ63J@o$xF<!U;X*{=lXC0fAx->)nNR&c>$Fpx|+9M=;ixf?xD
z_HF7fa&~mLO{74rC)ijY8#$+Xhjg#L%b4jf@K1e4390j=c{ynlD?lD&YHY<5`$^cl
z9rn9?3>q_wiWiSXx3sovZTNpK6}Xo<(7)+l*VHCSkYzDjaWg{;RO4KO2rIP*!_r?v
zh+VSkn7fL8{2IfKeRpBaPvyn;TQn1A)>j{`*0P582{$R8cd2mvIeZM03J?d8VGV@u
zOT<e8Vfurc?Lx3Re~&2<ecgx;wSeNkzWg<WndMBL@eEO%`k7mTCP6`m?#^yAimYe`
zO4oTz@4CNkapAIy*-1hv9IVcC7*a1zExMnGiE#=2qUb`!?fRIneC|Z_ew5_k4;D`%
z)`@At1-7^G)BUmzV}k-DQC~6{9VzO=M&Ce#2R$vg-PWXR>=Z;T_;(upagvAdMcy^&
z_dXsG>i>=WPk1(1cfP=VFU1ORG@+5ht-+!Vp^7N<5clu1njW)kEW?S2SXAhK*EmBw
zIl&^=Ll!HcrPf+m^&v~92V%wfQBYeX-|`O;<jR!;3nPYNL41$kZ(@|Xf~w}_UU(?D
zmmn>zU1qCe!N+#Om?xn~yd$Gykna;B*8ruXX^zdki5k=|m?>$l_>rHTZokKWQ&IZN
z)#($=_srPQ`}Kk@1Fxnca>()XG)%k;V6r<H%NQxqrh!t76D9C)ov)fV?RUfBFtwS9
zsZlEA0&pt^Wd!OdIr-@v1py{)N>pIWbaN}u<Ux-$!}aeQ_}Ihq`lic22Ol_8n&m;K
zrix>J+QtWwzNVvB#(dVYws~{^S+#JQ`CExEqj93boxlddb=50gS?Va>;^p$a<Ll?+
zBGHk`F-lgRTFoMjxB)_N-^UQ?Blwj+vq8QKXa0G+lRG^+rJvu11Cdcs>(w8bY>tb^
zh49H5N6C=MQuA|@`wC~C@1NKuh$~r?iqhinR<OnX8V#NfWk4lgkc2weei)gChm;D5
zWy|$Z*VsdY!4Z&4H@Gw5>r|>TR;&z}di(Fm2y?OGqzNKOzGt`;)n{ob*}5y)azj4+
zBy$b9fa{O0<)Zt8OVMu=pBauFY*8Wn4wZKB*I4-}OiK@NbH*AZ%y$u|j-bL6d-5B`
zeDOJW&`lB<;ADuOF{`DZxDe688;w72cVGIX86<sgH-P2)W={YCM8lmOBUngvRqKQ(
zuvJ0)20lhWSWz@Q9>k3szk+#2{UT9|%TOb}1Ap6><H3$S(x*3NxhXk1LYd2qPX)93
z!P=v@XZwYq`$6s+e6A8u2q1)LBfdUAcd*?q(Es-X5wvbYu<c9BjQ->%=4T}#M<q?k
zq^r$zj|c<_m@ay^|L(f$V&Th@aZC0HqKIf3p^uBZj#}V|l}L)vc462FYX%Oh=f^fT
z?q^}*Y=k~n^_Ve=mU9GvuE)eqJu|x`An#r2EWQ7SxDjACx#HDuZ6SixQVv*ZxclY^
z!y$Nc>eNvO95zcGGSh7XzlF%^I8}+bZ8g;+((?<gALbg>191AWJad+;jGB`c>bjun
zq4cr5{ELckji_h=@Ai!9&|$qknBS$icQX{t+x!$IgS)AFepT}(0M5}+eG(DY>jh*$
z@|B_{7Y8j)KK8#?@})0u8+bkS?Cd;Q&|;mNEW}L4)T{+XK{k!$eT{GYFwMq=jve=P
zV(9R<CW_V;w)Ya8(wTC#pBO6bzpp85mlQcNyY?R0IQKWag?CZ22$@Pp5XlMGUJxJR
z@VF2*cSjEpdWCfSmMJ5~#M$_{<87<$`;AEm>dHZZ40Wd5Y(s8)NK!38^vdt@adz8i
zYVGGQk^!@y4DIIyuuLEqGPU~ilp#<}#1V5rsZAX*s~RgT0$<Or0^7pixzEBf7SEB@
z3^H%r`&a$Qm%^RV72{K|Ny7Wy%Q;W$DH<v4ivN0+CMRl#xFh+B$+nu!y}vR;hB8CW
zSjzhKe|J=O{x(+ZD%-M@7$jj=$nflU_P-!0LL=*i->iztWGbzS61Tb*B9mNzKaq_5
z5Q(h5SnbuUDpxYzic^svIbnRKQSwnlH+HzF5Pagr0vepan*gCS?pU(VlH@T#9cZi(
zUUXNL5q+2frTdbR11VutWF-F$gjlMDAY32p`+Xr%4uspHMq;5-(Blw~3h@3yA`(AC
z&3~Oz6vz<M6mXv>r&rN!V9)kpbXFf9w9M1-EMNEvVW7VVoF;G~MSEdMQuojH_UV3J
zn#9MCmIx-{kGPpG$eN>4qIWQ(OOi0@pIV4cUMjPMO%*0lppMcfd4q9!;k&ZoZ256V
zKS}0huD>JjAI`$RDx1sa+qjj;R?PhwcsBC1vAAn=_(u~;=S)?M-%5%VvDtbv;t8`W
zh+@;|;TVQpgGAqr<dTI6J=7s)$bS)nHF*2qp}LWNvX*|*2p>1l2}?2lJatdVAzW?J
zXY2er&sX!8L;!1PYyTNfdiWOzT-Z7b+1gi`UJOQLsee~lsgARF&b#ATW8Hr^?XIR8
z>%{Es(vjo~G%9lK8n}*|y4io?!$%3ZT_<6ak$API=mJ{sze|;8_zZ>(zUUD`UNOO;
zznIIrO}!!C`5;({Z3Z%L6&N#J(<NTOrTqT+iaK^MrDPie|IZWO;pwlx3o2+eX^@=A
z9H&sfc{Gr`hUSIeDN%jm&}*M~!N!a-%Jea#{J8C%6YG0~Fo~9sxBspPeO9z%$)|n~
z;p!Oh!q)5kgMIvSHV>Ad-In@D9;-nd-M4}GUg>#7|2%Np=piFfBG-Bn^=uF3TB2F)
zISZ63P`j2oKcmt|^A`R%vT0=e;h69=vF=_*jE@+SiN7MLzyR}t>>Y4X>x6(Jd8u^U
zkB_$9W&5{AD#p)m61cVTC@m_nM|ba^oYuAK+X7v36?%1TDp+#$(RQ9&uCIeIj`??H
z>o4gf?ZC(cwNE22os*;RzZApiiT|E)V$sche1V*L8KOenE#{=D=o1y-`5X*3f<#4I
zEZ-C0GRGmovGzF~4=@kIfEi&@Rfq&XbwN(I^swXlg&?t$IKs)4!#}(GR&_*Tz4r}8
z)NOqo&9LW$i+{v2SnPv~Renm4GZg2!({+=g2G&+Gcya;cswfqQVXwKUG+-F}=L57|
zhB`H^?&6@j{Zd9Vf{&WQ$ke3CMV2EjPA<2sC?GUB>8S0%|J3|>Xr#>(5qJrEumPEe
z^f_#*#zXS0GG#=skASR5_5KfwBy1PMh7EExb#-mk&ccGfQxg-7+f}cFCH+H^&|dfy
zJH0Yw&=?%*-P>QxGSK>lS$%I~A!#nyj>P4^&~U%vp(|#1gy@?lC?Y*M{n(Gf>KdY@
zQ4QT5r||dN?CgK=5WIEy9o~4qQmagxkyT{9HuQ&exSFY1<!mwUV7X}S0vhNUk{qN=
zT@QT`7NzcXHBlME6W%eAz!YP-#`_zY6qyO@F<M!nNUQAZ`1-0o_gKyQ8%e1U^k!yu
zFJ=w>5n8@E#d>$ztyL;?lZMx%%jt$<z2_{!ac>{hmBCa41rFpEGEKIeZQy>`UXDnL
zC75y*E#_%=yCaoOuAMmjFg3!iGq(TxrxC*=Prq`3JZLdot0Cc8n!56WgN9REx>*Zi
zbvyJ7Dq!l`yhbsUBd$b=;q522;CQTZ>pzzCMzCnPX4c@kK^i!)LPfA|<*1{U88mkm
zNf{~4RuG7Wlo1$^2|n$t5#dbO@=bh~{q*TtGhw>8e>x9kvaPE=PW|jqb7VZ5;c(8q
z1R5U7d+#zIa&Kv<y{Mp|p{uiIzBSQ4UOa7x)J#K7FH3icvTwS!V!1Vut~_x}+O1n3
zh;26^G<k8r%i%Vm;45(A0&cXc*diWxF4uGW^Is*_FI8&|^e(IE=<@%tczyvUKQx5x
z)x1Sbb}UWhj>?6z>+3kyJAF(v`dodbj!3sxfXC4sBMGvh7Hl(uz77^#iwBDJJwT_D
zlvN(yy}zZ~r|eiZ2Zga^nm%$+>3$H3=Y#G|b+Uxi;DETqV5@YdCw8m^2deGohq_1C
z9L>g9y90ypT_~t1{VtHMr=@54r1yruA%Ql9);*gfWw;zwG2JuRC&5alO8yI-aG=#=
z!lJu*NH<2$mLR<SKxIF073y-i3u5J_?rT+*rMH$s&ITnLV7$98U%f_r{SxwhmMP2a
ze$o(P#dxvs;N1<wSM(c*@{<D&R<50gm)aE&zqQT0IY?@KIKPCxLUG+JI=t&N-PsA9
zD$vN&8uQS`rtbtk9W)QSU*Nqz9<4DvE;ZPmv^hV2-nr~{*&m=+ubHsVX1U1Z`jD27
z9qQ<yrR@og%^TRrf5^$n8JisSxTH7I0URsiPESv5wYj+50P8`nhrH#7xf<i{z74w2
z<!q@#z*KK=<Tbv_P)$0tKt^UIuvk(>SM)_wDqeItZ($`lf%>0fyL0U21GSQFFYwyU
z8oF9oo-TJ3>hUameOI<SoWqm4tF2tHbX@dsyNh>-?RpZOpU&d_Fu)`z<zYN<?Gw1G
z#wM~CKuQAKX!05I@$~4)YB*Fn6QotR3=68Tw)h4n*MD`paHt91z}IuAz_hIW7<=|n
z*<>&Nxj<N$*HDj_jvX#kM{USwH4I{PFV#2c<Byh0+cRx1y8IPVlbkR)(vhE2<oYLC
z&qDWu>DX7+AmWIAl*ERMckk8Zy;%x8r5Tj#i-vuBQ%p^56ow}mYa8xmC#Tp5xSUxi
znkV`eM&<{#DksC_tsSPaPA<nll`1a`Jvi>bi@&<nqu*MO;h0r@wNGGVkygC41I|u9
z#$x#XYffEYojmUmD|zDP->>$ccuKWvc)7+KHLTYa7Q83S=#X9cjv(47{;YUii&8wE
z2T1~{uaM4vhP;A>_zF0KMWtf`{~32-kBqh@+btMUQ&N-!^<_0WlcB^fso}oqF@2!l
zcbF+sz`ooa%m_a<(RTFzLYn>p?uUzGo|3Zqa%7bH-CA2NSe_B2wFc>E0h<qpw;(hr
zg#5|3r(3H*Rjn0jQ_03OHNH~f;`E6@v)**4EjLf#g0Oy~eZIGC!V2s{mude@B<3&c
za0-naV5BmHIi?4>;WKc&L~@z_x#z_Pmq$JY_Z8r0zXOFx1_%0ZxJ@V_S5B@fDu2Fh
zt;6z}?54kIhX=uD1eymt?rmdZj4)qM*GnTPs@?pZkF5r_Wd$L8RLZEFHx)&jQw6Gz
zmkj+)7Vd)ZkV_)6L>~7Ye@pDv^5rhi%lp$w8jp-|<Gl9-hcqlK>7EJ<baWtkjKi$w
z`$UBZ<oBP*zgv47hr6KBNG^?^7^AGBJv}n(oJ*@&Racc|u^9I)W7;t}RZdow#c)a2
z@#y$vgu!xyy>zA3*YldhdSoFXWISf4yUH4$B5@G^ZRnJoDrM1HzDa9lWcDT3{c@?D
z-@Cis)mJj{!TLUe9wPfp7!wOCU+ePMTQH{miA{nw-$a+>ymSKB8aC<%HfmI4LY5lP
zqv~Ge<a!Z5t1??mUz!d{MED_yaC0T%(QKDlSKfZWiP9yRuyaVj^Eh4{nC$jBIa!<e
zApJQqy;s=12qC8jE~IW|8fmpe)&16oTf$=g8Nh$5^YisK(+h@J_e%ou0F1k}BTq3i
ztJ+-4i;o+Oi-pEV9+5c~9eLVZIFFCY+A*6yO@ZVogOb|k6v^apszKA8lEaVA$Y?u}
z{u#E-Z$VlDhjF*vIoSgV;(YxXo#$$%kE+J<ydxr;A@9;=N6hW~XD%x}G11`lUmdym
z-C%CpT*IR`p=CDnw3nw=RMhm`uB&;w(~%V-*!0>cM>siJt8JNk&-|pSY!C^VjHSBL
zv+tiP-8c0%8&;Gn7ZZ7^&by>^<d(<WqQshQU~qZ#-8I~$Jx+Ljc+E;fGDEX@$Hc7!
zCOGR+a4_PTW}Ojkl-R7p%05$Qu8p&cQfqrfLayG8sc{*Y#ljGkI;*+wTHFqV9N>Bv
zD70lQmbTyeKU5gSg<w&T^z<+G3R9xxhbxg8t|v7+9HqY;O&-QiOwvrj)qaN>D6QRO
zZfbmbZ%FiEyCU7N=vm7KUO?1B9TA99;4K&q5!~`2vG&h?7u5@pmvAN<luoU+6JNri
zD#*w~&N^aem*z*mn>k*(xT*2w`>WY#`65d*9yjWt_Sr1$8c%-;0Ng&#Ikyd{c+UPs
z0hB#Qe2(m<DljP@_c@t#`Hc1;Ber{6?pON14$=QuF%%B=5^}pIs?Q$}{`jKjf3ZYl
zTbptfJ7d9b{dvDroye12xA*R(nowVV69cBDlxf;@7q?mKgR#ov2;j%Ev7WR)YXniK
zu<jb0QUoUYDT^}$TPMDWmH9Vao21!mekd<A*-g!)Ja!WOV~@=qf&i~1Of-Wk{ibgt
z5YUZX>SiA9HtaZQ#=(ocqN7djY?2=h(R4{gnXMeotK^{!3O~xy^0FpdiU7zCIIlGM
zdv&%@PE-FEjk^aq3KxWjH<K@iUq@hScU*Ws5vVJM3}GOz;O~bPg#v{7Qbs|D1w=GM
z4mUXZgt9&>E1Ez1OQsy;0~^yvHYS+wX@A2jDh9mnNfo)-F>J0QjnBC6UG9&^#hOyy
zzv*J=pRTKAKUlJLT3hCv(EB1pa+1d2d3WN^pkkJFb4>*CxHGnI_Gomya;2ci&QIFq
zT!@jN&K%u|Qk<Nfb!LW_B#(go-jpOICDpWheRs0P1^HU`CovHlvcA4<IbXUA64fjA
zp^mmQCC0$xX|nLDT+km`<>D-k0;R$p_~la|AK~*_bcFURIhHyrvN(=s9n4o3cv@YS
zB_>MV1<&W1GP`$CtaTytdS0N$w?8=S1X2)ZsLe(cThwS2X%xM9d1$?VTy?T0EF|nl
z#My8#vuZvhMYsHsJX_!F%C?hNed^)j)-NtjO|io0-p|v){BiGY)*Iy7A|MkgAM9;y
zm}W~R{<gYjj_(9EkI5!yAk0)<<qtV`O`XFa12%(ZglLB5ettX#<8@+v0MNl+n;&GI
z=m`tdhsp2ksPgb6B`$~AjR+~Omf%_pCaB6IAqEC5x4aFEtQc6l4SDLcftKECsuwsQ
z$G110Rfp^)=kvqUk5$Z{SoDS{wDVzc(kTXj4osb`5D*@Yv9%x5hL~d$BiP(8NGL?=
zQ%BuRP51nRW2N4;92T0U-}p!+H?kjgnL}z^d5!;8gg$e<+Fz;z0uQOg>)M=2^wY)L
zFHBqR*Cz|cLsI6q&r4JWYMHWWwJZ5CGgO*xicix0f$eVYQlstB>iSMH9Ky}PY*omh
zLGW8n!Km`JOX%ZWmBpEeeD`CegQ|=0MJI)~2AaiU@~5MIklIbSaE~1<MexbOz`xhx
z;qx1QEoa}2&zXwS#j*xTF~HX&z7anDla5nz!NOnG*5{=vjP7^uuo1)&WA8rD87`D8
znPIg9=jhobMyBkN(pVAlu!Tf(fCaDeYXQVdE<fPjg2Lbx5vmDz_!sB1SQs762jJvw
zko&n1KUi?6B>*(n_k9#(#mJP$d>?`wZ)~n(mXfV0H*`SOLJUgJFW?aKG&9%9z$FI@
zN*|3W0Cju3R^xDKJsBv#VgJ%2DFmE0SY!y2oSYSdMagjRF#!v{4VDZ3Gd$vF5(sL*
zd(Q**k1kd|QMI!1g1dDdJ|w+SKK{GOBB4P`jncx@QH%|q+g^WY3bB`@2L3SCC0CJm
zFU>JCP8>ay>!r`oZW=NP$G+VyRh0m>Mnf7Sq~`jadtZ*nT%4J!>G*7f{|h0K*T@l_
z8MZ2~NZkp*m$Tpivg^(Cbj&Q$j<$AkOq2@&uon`7TwTgcRh*~8Xp{;=XhxpySq$-#
z=_oW89qNHPR3EJ#6y&zze*7RIBA(8<wFI3!N+U>{E-H{HH74~O7k=oAYFMoIdAxtN
zgpIDOBA4l6y=GD8a@{J=b{Yua%wX3LZTUxy`pMHyVKpV$flf|;sZJtZN6wFQ%9vh~
z!&GvG4j(SMHhk6%k{}Rzij4iBfVJwrw&-ZZimj{4w6g3+O+AK1?zgUj<T20q77i+=
zTo-Kb)bz?%Yy|oeGxm!d8!v@4G)bi^r8d{X(YKNfXsM|Sm%y(8f{4qPJ=kT@7o_AG
zPA(7#WjrF>ZDMk5XkJq`hE1>1GqtwyYYI5mf()E^82=mq6==VE%VxbfDmXt!`*;(t
zokr3=U+j5oC2`);BtiZR@>59H*txSTQ{1kia&zeM@7$!%_IA?-W>jf5{VP1imf>OB
z?jmpFolw^MN<_%iT~q7m606HsAnU%r`cfWv76Do5o4f+4;aXgta1boIYn|Cp?dQ*L
z>}wdJ2<nluGP&be?KS!b8<VS}tGax8%e`UmL%I`QzB<kv&B;>;AxMg;t?do-o-gWp
zFY$+&bM+>7T0Mf7K{L(eqrt>)%ck4Rvb?#T5eNhxWjDVtoyB9}Cn)5BhkqqA+Zqzw
z@?(iyB{0eAysHJ70YYSb8>e+QE;KY}ok&}iLi&VT@<tP1&_&Q+_@MB<<#l|BNjymG
z)Gwo@tEj95kqeobpZBT-T;cz`#fyE5=j>d!SZD9q^ZVfvUA|4wd;h>3^3}?&`4%Od
zLh9{j@`&LCvzI2na6fLJbuK?%En)+I#W&7_uwi`bhr1PkPdxdI&;NG!xFKcj{5H+r
z(+m`o$Ih@smX6TVUir;1(T*EGKcXg0BOQx5`&jchBaoL?Of!A3SP2+umh-jR$|ASr
z(gux7;tAR^Zr3JU+V9*F)IZpt8sP>bLO3r8A8vv|U40Sq<%T5^s=hOzYSf_(ubo^T
zstoHg!hqKgC1$U=2)tOF4+p3qR_j+gS>#J0bj|X)ktInmJ2<mIP7wM6Y0mLjNM*Ri
zGKLoNozO$8{(>;KU{g)?4-B7{$7tU&E4?bS<$g{p0pa?<4*KIl&Dz9lzX7>$Oi>5L
z5=Z&&W%PbL0&?Q3J)EmW<zxt-%=geB$K*5YV#!1<gRQ0ZAl`WHz4QPGD*pD?-|_kl
zl;fUWz<nT>e)|%V?{PiX-h9+}`(;S#G1X&7h(zbEgvT{hGmfP;lU0nSX0wYf{e!4b
zT56Mn>bKy;s9YCxbGi@{QE_+D;sA=P)0jc&F?cGd9W%=(vsjI!8_MN{j(6{w7#Jt2
zp@-n_1#hcfi7~Q_(c~A%J`aBdRqv|D!P#a$dk$&&I>LIyt*E{%N*oa%cMY2=>OJTa
z0x#soZt>lOJP0};qSYMncf(}*A*V+_Jhrr{jyIt;z(bhz@r&8#>LB#uLQ6)LDfy$J
z>Bje{v8R;M<WaXZj#gClMMSj%OD+O9QX&*k<YVjVW^0P~pVBk^6$H^kA#jq&;_f^1
zWC$B2I21#RJ-rN>GCi=V>@&lasR1JIP?_23pyPGVtEN@!8ONq&tMelVs%CvBW10%e
z$T^GkSEcci?b>Cn_Hg^DO=%@wP0++w;>Jz*78QG7AD}imaLjcyx$mf|mesJA3Y~gJ
z<CW$7QkT=xvq+mZxc;33;RsHvbA|gpQPB2l|1Y1Vh&%V-4gAtU25qdyo0Sa+#0)E4
zyQW%(%=vem>lwe&;|n51&H*=#zehU7xJPG{#ToXi_Q4J0N#8*yQfWdh76-H;C@})N
zeKA#QGrdXgVZMtw#~Eb>Y0^aX%?GGHbG@$G@qPt){$3G;6s2VJwfF88DrS|{s?7d=
z-BC5GuJ0_;6aDP_fW>utaoy(;8wG_W*lE=#3ekvbNT)veQf)?l_PD`y5rJo^>c9rg
zbbC2LLntA4rSrIDo_4!{w>)75nQSQG0`Fm0Ay}wT(B**(=2Vd?JOo&LdizTPej+dc
z?yqWmIV}y&X^LQl&1|me_zX~I%J0u%%r7#_j>kU<gl#X~`|o=5)>!uMjK^d!#>%{l
zV>48n-s=21^33H5?)<pc?$hCeH<>5z(X>j0NJ!`5g8R?mEf76MqIg*{GO`YV1PJLe
z#=3zeo>D(BIXPxm)4ee|UV)o?(X#3KuKY8vRqX=t=slJP&otoFzC$&#n#q$^rIVDj
zCyK>xTeX_VW(fNN!$*msRck|9F^xJIp(y0^fvdOO<vl$=eGKq@hhk4NWl3w5-h>ho
z-<zA$ZVkk-y3Mo<IZUiN+y5NYAy}w>4$;*c9*%wNJn)IOhRauec!v?-p;2eD5V23E
z89AF3a5(FlVVV5GQ90W}>hlSjAIi?-<X>lqjJo>KCbqGu9*djN<KOU8K-PM+*fD`R
z*7|<Vj146OYJuD|Jjlw{+Grg<v^du|6o215M|$kGw*C_VhYKP^ZoK@4tM`yUQ_jGR
zoxkzGtDWLA$;rf*bPi5Y$=5@_P$&vi8e4mMz5-H}QuO9-wcHpH)WxO{n4||qXo}6H
z8xS_vWN5gHzJgyI?39IaaFcR=VmZ6(WS=Z%rmjpWS?9%Efk4!0(B<_SYt(z`q>bYC
z{m7GU7Qv4YtZe8_21TzbyBT~0|LsBjC-Xzy;MaB!3mzKc-UKUa`$s!h18d3T*{K1R
zx*6Hjs-WpL7d=70+P^wu3Is}x0u3-LF}xQ%m$Wb7tg5PMsS97dwzBk8n00>tdaz+C
z!o7kw5m{OzRi+~8rviCQ{uIiw4OZZLf4$;hqN(h`Fs^EkF6133j~inM(b86^c{i=Z
zYsFzT-2fmzkfmBj#+!uBQ;B__Tpk3Tt)QVE(~oI}B?vl|7-A%0DPpUmI-Jg0^(1!I
zK85t$-Giey5ur&th%xFiQzHYGlLk%@J~C9$^5LU2U^L33>_XDKr=KHs!Tj{8?9UpB
zg=D|V=xX~;E3pDRy2&2Kba9aPj~wUgN5gi?SLYRn@3-FWn&v*}Pvl_8?b%hSI%fi_
zw<#<?NQ=Q3rdaotD^Am)19%5Wgp}Txu|ZcI&Me(Cn^_5A3;x>r^!JIvgLFA5zeRO_
zSM?z&f#}jfosWoO)P)1DDD}}G0RkjwFGhI$EwJmsxuFH@kFLpKBiK4QAZCCE^;e=T
zAB5P-*MoJ#59m&|qU7A)o>TNzr6<3(e4+1axYJn8(`Z=KAZQ&==X{JrnZcK_f{F>|
zexLv`dO(K(p*H4oqs=o#?@}B)urD4Nn|K$|>z4FgEIpU47B{A4^y{sYYXw8FaHiNd
zI#LY@$zVk!Nr_+UHnn_|k^LKDnT%v+zcUL%9Yc8vyK&u`wq3>5iNFEHrzAKG63#xm
zcB76;%WYjfyV^Arc;?=Sk{!Ht;zW2zuanvepyj4}kx5c{pe>@I$y=?IQoT7lt$e&|
zBtNu~SlD=L&+`U?%DY1hRQ(Ez;kgQZSEcQWykYKb6Q)x5Y>dS87rU8jmG)3h2STGS
z5%gxW8t>3Xa}=O=RzS|fQUsKROlq2>+fx!SkzUV8)`~m3w1Xsn1}Q?hYaMy1cvcT*
zXP#Nd=&?Rj$~BhN#`gL_Y0Abdfz_~QFIzuud|dtZ+#;Cy#A(XIWv7Txc5+fZ?`<#H
zI*z$+y&*eU1Aj>c@+d+c7rDu3hoevD!jBGi_LT$#W`K}vJwpp3loscwFgF%tA8R-`
zRaE0JF=KcdPpGMlBkr~SVf1C3?<7QazW-Lm8vP{NQj)!{aL>vz%+3C$S!QKnm2w0&
zK6wb66>N^1k!^p+Os6gB?(_}zHh^E_`}fk0$_jE8rh2&?zHMp9Aya*0Zky);h0^9X
z5kvBiRHO)gi*6%hq;sQFcOGKVPg>24^KJ#i+VY`meYD;Il}C#)(#et3<p&;x-opBr
zgeYx=QvC-XA}o&&CNlH%W+7FZ*3}V;Fcqe35efUW9Gn?l22D*#SP+b81*|9~o=2je
zGUp!-N@Ghs{6)U$n8<V%4%5&gfQUT1J$~U^G!8CnB>DC+L<`k#fWdMG$9q>L$bHa;
zkbVpJ!V3+_OP>+jFGNls+<0(zjc=VfxFz~!6@7y<OHG<oVkHPY*(wJ!EzLIfc8t(o
zz<J5o@qSXT45+NNzH3wfu6dV({)&1M?6d~v?&IRs`N*n&a3d8Iloh67`4lDZ`(7ig
zBl<=pUMF@)B=Nm~Tz}rU{*0N&9+%oA<>CPI#K2Kjm~0xEJd)xRVjw<@V}JL%?uPC4
zq_ouwOvvG41R*auK2x-gsrXGZCn*9AI(fv!2kz#<Q-s{wYV>lj_XAOT1|ZfUdUuCM
z^0#qHKFAW=+l`0t(JL!i;~@s-6Jkfkzun;q;4!sT`6W`DnOB5Qe=!XA4pF=|I_m};
z8;bUt(yj~8qF%s5w7iWJxgNYT6o$u)u{Bo6i>gg+D#|kXFr<!X^#>Y-nP|b(o?mdq
z<y9ofZ1$xjb3Kakd6fR%DxU$hi9FzPfwtKi1fg?sc6B8c9b&a*q3i6NnV!xKajL1u
z=d~85jkc;~i78q*wsVxVv^idRsdy?C<^LrYB(h>6eunirK8@Owbti$eOi!=r$j!B9
zD8x!snO^d{x|)J4HS&nC2xk$f?bhZe`<LA)M=}h`!GE^Rv<V66vFW=eC#R5n)6gk~
zU0iCo-KA)#muhcUE|=+cZyG?i2|8T0$QVn@R=vWn8|d$UW?CQt@)t10jWDPo9o@^(
z6*pFmZX14bxxb`qNKs$V(G7Ca5Yv(Fb$`nTi%f1nske9HE`Mk1QdL$J{llhat%e8V
z=C645{y$qeImaNZmO84>cB=?{&OFY%x465!5@NF5NE~a2n;6Mf)w!_<5Ij~3Ue6O;
z2s0}SU{WZqZ|_!SU&|;zTx<=hUxLyqxtbzM;7w2`Lj}XOjnhQc!7c58<R>$wy^ZlK
z$(b^HM{I(R9A;_Sv=1ta(d1HZq2v$xLL{>8?s}@u8yA}X;qr{Ica4y*e9J#s_E?n_
zr<u>Lm^M8=8C@YjMrgQdN^`GolRZq0%*4L9Ry0K9N+{&tS6P(vy=!o|p9)(ugohqI
zgN#1A!RK|RU!8LI6|i18?rkN_0=*c5A3YeShlP8HL1H|&y2jWiF_uktR}t6a1WEVt
zxD(Be`>{dT49lo5eD>JP7>aX#?PKPtHSJzXe(Bu_mK+4}APmlopQIj}-uQ=fkn>1H
zh-G>{mQT-pQXw$BmR>E16-+umb}adLMDX|Q?4}X0m27v%3Z=6gC(#Tfel<BT?SMzN
zN4ZUYdSPu?Q%HHDuLM0WhO7BKZ+Da0L#WGd0rBS-FVn^;my4Gk*5VQu=KM|sT^*H9
zTb8^yQIfSQPg+*xr@1uu>uQD{EG93Gl+3lOEJCAVb&9_pA%_O?XAdTE>Cd;8^A;}N
z_Y=9oHgNX1kE{la8&5dP`<u@?x=eO?<2iKw!o?^`vi1|s9Jv3w4U&>igJ|lsd5<PV
z)>D>X)Nt|b6&Iw3Zj28OiKg~Jaq;Th+PKj`<$Jex<bD($a>1O_$atr4V{c-|0N{ib
z&snvMPPI*q!9f}p_sh@3uo!OZp`yu$U={heT@l)aGFP*=e%gFdylA7(S4>DoGTPeJ
zAe}Q@R#_iYIPZQwV9!t;EzEAixBcWfQ#eoHdXnWIbbxekZ<kGw7Be!DGco3oRUJZI
z_t6?{d^l9s6yW*MCy(~RaIkRBoM5Z3Jju+(sfiKXoAEK086snkY;w<EEJHn+uI!_0
zt*d6y<}HC3i=Sa(3}<CuGSJHa$d6G}>s3nRyXN^OxNsz4z*8&Li`7@aBJodpdi$Qq
zG~}yEj;TR`BgIavb3KxH9#EvbgezfY0Ri<&O@%swLRC~=S=l*XJRIEmWXlFcA#D+d
zc+~-QNqh$3uUva*ET16*E0o4zrNSHQp@z=*hoxLH%IV^J#mS?UwQHu$p<9v^L(f_T
zR-Lw-m3N-@SOa)3tCjC=3SDf8EJI61T7L4hM~Z!OQu)1$<RFf87S-Pz&$GuAD`aAn
z(Y!MpU39xE_1ccQ5bF3)$ood!aKWs+xMxY{CEJmY2r_B-&!r>_(BP77hPF%RXG_PY
zh|P|4I=eqE{#CWba=E>P`EJ>KQy`fZsGO0W&u!Zk+1gIAv$yB#3t#D>n=MDxnC7Rf
zpx}NxX{cb5eGh+NRv;GG-{|H#YQ&6$RIb?HtgJY9!@}!%y2GYh+OsfVca|01m%!n?
zfWljN@$x4#8`HJTX!owb4fKG(bvLbAo1s?Y4UuEt{ukvqR)HU`uW;YaGLfi>%eVK9
z>F!QgLq<5$wo(N@roIuhv#Y#0M>Kbj+Hx=Rk;<fs>dPhi#WphSn(A(!liD;ol#381
zYG+k4e>I)QdW4L}__cGFmtL!BiGez;eUQ^EO`kFLj?8k|G?_%?+r8fbn8_5VFOV--
zc|C5gx8ICHj^|I03<kCT&ZZYDP}@4%&Q%$+KxXDt4rj_X`z<~0_12JIBi{!3+BV&n
zdSjG>y7SiI?&KPq_rBpTin;mVF!sP7E*&_?FI=9ShO`@RoMaYe=34gI$6AM2t^8Ic
z7Z;9OhlfeaV<C0Z{$Z?v?PHm(!JCx(wo%fw{yu6$_lAt7rqQuByWuJ*5YRzNc4I6J
zSlwnVd&mNW=4iN_W`29*LA(E-9RI@l=(`~D(A`^!9Lkw|WvhOftR9(V9&UFyfsa97
zEX$)nBX?MvM{+GKv-M$jEdUtm3TNhZ=`TtRY~yXRxd5_0=vfj4Hg0a1Y#kUB$GwRV
zB?I_DipjQD-LS3GZ^J#<X*XW%Cl(=?%<)cujHrH}TnH_K;R9s7Z<B2o*;5ZW5HR8I
zrr#5>oWS8@338i!-OMmNEwOX@>!6e+jxDu;B(&?h`;2vB{NdiemO%k@ZzW$(#VKJ5
zWXdUdjE^CRMYO9idj8;}%o?RU5Q%$>vrYSGBCLm=JgA#PBj!DLXS3w=kNw(Y%mAOX
z=`1!;)tx){OMSbUA~o#=h~*aK$dKf;P@Mq6KC4Qrey4*j-J<hx@}SW2kG4WiaUOS$
zZI(;TOwr?xUg~zN@afhtQk^rD)69PxTIVQ@Yb(GG7LvupR}eE+ufd1My^hq(UYpYD
znuy3u1+HMYnwfZ}qy@yXSUdP&wO;d)@hK;pwP`*ww2I1^C>E$0x%*ek=K9`GpycRK
z(yJ^Ocpc7!gf?!|sA1Mq_&~LR5lIteb-qBSxK2V--O)OiQLeY=GM)F{gYcp>=145r
zO%*uA(bPht7H$&m7!~z1>atp8wD;(^tLI;ZMQO-A=B-Cj=N*o~D(A%X<Xg~~gu@|d
z@X^Z#;!z$FH79#=!ez<@Jo2NuV4^SvEgncNpGsjO`YKQlQWe2Kcw?|#c`VUHIb8Eg
zb5-Tj555WzYV&2w_O5Sr3vSrdN|0xd&XMz(m~0wb%@kL|134Tpj7@Z?Kq5#|mS+lW
zH?Vgw%xcYO68i@1Y-%+|>!|OZ-5$=J#55*W%DvPSVw(U-UJ~?{<LUe?a9Q`NNWLWS
z-VfAKR1v-Nk?&An;Jk9Vy~)iloSquJkzO2iXbx!Vc<+aOxIm2c!iR&y+|rRczXk||
zG5T!jxvR63q?NNJp`hxhtAhs>{<Le3SY}yPRgrr*h8MsV0_TpTQe_luO@m)SmxDa_
zsb;bN9!lfQg8&(g0O<l#qX(n5cXthfk4MNI8l%&bCK1fojX;B=eujLw;Gy0bv@3FX
zPL_Xay+23whs$?oT?i{^^~T;>$j8OXMBVv)CxZ*k)mUAPzYj%uj?Wc`dMsX^cF#tj
zyz(K-nNMqz6fXYeb&Y>IJUo-y>y^O)sxN&5NXHJ$W79>srgia==7!()_bg(P<Rg_;
zK2}(MWs*j<J+a7X4vMN>-SEL+4I<n=_#-cql%&X<6UrMb_5^~fe2=d!U0NMKL1xWD
zW+jKnXeoNKQMq<}e~0Crl&Bn+B+q5TSK=~;u1Gw*$O7S_r)@s_5I>lKazqpvD}VZd
z)X`{}Z!-Hl^9n=n*#VzrcmGQ&TKGc$nDz(;<(~|;x5W87x>%TMBVuV;h3~2udV~gE
zhC=w_Zu}cg$s3QxQ)}ANxpTZ|L=74-?PJr<+GF+Py(W5lzLhP-TdYG?zNU(#%KQ`}
zxd1-at<9H}iU_&kGX;lP-4tP>1RgpMb59hvRGFmPf*GiDV?eq|)O?zExA}X@de4Ex
z=d>KZb{fR&(#!kyX`M38>WIp<H8110)%mi=)hM)N_Y5>r+7k+Z2<!5-0;d<>ww0p<
zd3t-kG#T1*1c(>7a^?tpKlTTS?LAs<rSD1P=>73C*v4lC1Hmjyqg0klm~`4)>T2PJ
zL%OPJ;Q+o?)T*OIM$VGUeT+%`1~f?DW7;=-q~rx^*#FQ(238cL0aQ-{UJ_IHyP-dk
z+Mn%ALu^%Wjj=gY;wyF%WwjJ3BKkG=2NhpV?-y+M#$JDZzrd<0plt+70LyP6tRS;*
zTth`|<EvhuPNka=$821t0p`Uqh;Lj-3tUKx_VQTs_X}GVLXfND`7*7kW#9asFx>Ok
zU)D$CapM7b#9FdvypVS$oG<}dInJWYuVD8<w$P8u8UzFvO>Xu%8d_RbR#ubc#^?9l
z4FA}YSGib?aB<IjERPJxKb-5Gq43(wn6-H}BXsAZif1tIHZz@c&o4m5&sVlr_)~6@
zw)+$|w_SH%>T17wx?YXqqC!73yut>z6h=*pC1_}n3T7U=#h<hzsnsjXffjf5^&X$#
zLNN7OdSiZBK*(`Ezi8A;Cc+5+hb>tbSi*RMMhb|Rmcd~!srJHt4Vv8AJF3Pev=f)8
zyp0i&e)AT-<wJ|h_iCb*9JCY5sYvZ&>RxPSZpUwUS;94`&Oeg^h!cIW;VX$FXx0%k
zHBuvKFf>u}Nl-y=Bm5^ES{NVss!$Jsl&Q4-SdVTl{;f5ii1z+CWyWDOe!+m_!@u6V
z_4`AGsrBC=?9b-W<tjd3B4VG6)gNuX3#KX@()Dr4oz~pOuOr2sA~8B(=>KA^PS)QM
z=xElP7y~==Xotrg*<3h4DvhY->iuAZu^+g!s`rU!Md#a-q;#8CKsl7%1moErkiVU0
zS@f}OWj4v!rB{-^4+Z~RspJRVs8mh@z2cs1^vaaZ0s#tHEph({L4kHw`OQ)-L2Etw
z3MKaGkP=3N*h@ni#C~5cv(2MV0TRTK4SxIZ0s#^~K0ayTER$r&sHnD@mZ)|CN#FSS
zWwVt-u%z3hM!*YVr|XbpvRDn|Vsq5$1OalLKno`Xn*{WwDSNWtK)lpeq=4yI!zD9)
zrRRDijqkR=0_Cba=dHSYm|2=v72NVg{Fk`vi<bJKaF~!E4jQ<`jk3_-2CysObcGI?
zy1BrBFzg1CHGU(u+*HxKs;xU7hl`tyD<LPe{T7;#5%I5MxoEwnw`)<NWOlgE<?Y%z
zf3GF<xT(WH$iIGH`@C3KXja}4mw6KFEgc!QksKN^wZ(NlG3Gcvaern#23{wy*cr^b
zeE71yg>~u)2t$ZISD4-Ti^Bn#nhiAD+jtp8dkuTAZv=AUO-%Qk-CCPH-qt$%p0FLQ
zZd^%IQ5RNxVEMyh{K5CG%P_azg=uGQFr(V-$9Na=+c^e6^sJwpKMo{4M?1GyfgLry
zMO_W@fuGy2PRJp=wQdoIE`A;B(fnpkD&v&_19ystCm;ZU#Sz8jOMwN7;Z>9?2iq(+
z{k10MwF?o}!#wTs_`OL>0){~ry^?0z*LTz`se1w(zew?U2x6c$D*rI)LvY5#BhKaw
zzETyg9CFz$jZZpQDI7CZS3xD?9TF?bSqa!G91Z8YwCbY%#n8X%e#H>anO@$2cj6e%
z(6NY#*!c>+(9(%d<u^7YgS(H@W|umdLH{GjZvX65JL{-K{vaa!qA?BZQ!j!7uS`xF
zsvER3<zmC*cK+`30S3p{gJg9}vV||MRya$yQt0ZJ$@KXJ){bSd9~w}+rJjK>dbuKU
zu1L{u{7prG$@i?K>X{*_pgY~*E0}kyTDaPjyV!@G>k0{pmBx3C%yh3WB4yo)up_$?
zq;vjG0fYNjhj;@9jF1%@H{FE;eIPiXnc-xdz=o8aiCqvjlVOPq-Yrf@-$G<m)M|AM
zUqRfOUAhZ;y@Oxb0nwQ2@3_KF9h7Z?mA%!GSskzu{3^Qq+nb^o(I<`H{YRTO7YqPw
z@Y$W;Q{9(F!`BbGzknpv+3lGKpm~YbB>wrNr&|F!Qn&I-^~ni}n)5O$a@UmAJ%ghz
zV?T2U{D(HMqFveNB?#t|g~%LK^z!;@U6^t+8s?@Kb;f!qVZE##=D6u3tLn=K0U!mM
z^OyOKGpg}YIFr?-0nJAp8wq!4;!N$Mqi+nlZWiXc{vf?9LRR{?g^o3hlV6<g`^bSR
zH@f*D-s$g6m$13ypfYV<QE8Ykv61PAkJUGvKlq-bVdld;#D5W<r$j#`LwpXoGRDK@
z<wV+d<18l5s<IpF_fe}NWRFh><E-!;2Jds-iJ3odzv70e8&Clp5%wqR%{g?E8eOV$
z3i5z$r226DD=WJM#`HLKBHKe@m6Ykr|Ha;0hE>^x+rJA?kVZnJk(QM1QlvYiS<>Cz
zAOccS0s>MZ-7T#k-QC@ti;n-~jlIu4d!KWiFX!97F1~>8yMTvh&1cSgjPV;`LTH%B
zLhg6sAl^fVeZcF*JUMW?qab|fP$6u0^Ie0&I|HQSH=9e!Ly3lLWjSlaVLJy5&CT{(
z&)@YV_S6*hMfmC-gEU2hJvSZ%7^wjC{(R`;=78yE`2l7{^t{D!PRSokWawW0xp^U&
z5D-EOR%mnQnK?y02Lj-9!-lHr*9F%!x#%vu9F{pmKctsa=P?yRw`QZgApy4Y3JU$5
zkNp}um?NHJUBNztyiBYO%u?`7PI|tLey}joDPp=mngN0>5(?0baW1cl_rsGJjprRY
z%yh+@yRY(p!oc>-_h#vn6y<k}Hoby8%SV2#ImPytMDe}Juk6J}k1CF=`}qV0dwTkq
z2Rn?xi-{uwM+Td~-aMU<^U*uMniFnR8a364+rt?Q;G(d7CYzt17g--Ss~IuI%|*sb
z!tEup*`jIacr0@u(EG@*-9#vo#b|hoofd;8`jcZ01_?192(;W!+qaBL9&E5=gPY!F
zl7JF7WbMD2-pVp4Mw7D2xI%s`j*p>yY)N=NL=)Td__aP@y(j)C<rr_j65F&!;@K3#
z4iH21i>Q5>jmEVyr6C?G8#DZ?&$>7VM~WrMk>SK%{{V~3S3yEpp+jkCNsSZi>+2>w
z55X~XwyJ&`x<i-*E^DjHNjn1Z@#lKmC=eEV#mzdpTG}Uv4)K$v2>lZS7ybL`3!%E{
zBzc#3;G4~h_5YoM2T%<xOA~6oMOWS<!_W!dpTS5U(Rsc1Q6M)>cWIcQc(R23dZoli
zyM_RAd>lsObyyasVz;mvLaP8(EwTH*`3-wEWPC)AN?FMgXJDICo_~gLOd;g^?R#)<
zXb^ryDUk(9M8Ny))nhVUU73zukvyAUT59y9Qho`g1HDH$5@JCY0O+>&CmfVl_sN~Y
zoU7W=_q_R8GsF6B1xP4AG@!w%V%fnFXs<zMkAt_6HGmRuoZ%L2hBK7{T7cXQRw%Ge
z;ix#OdafP?5?YNf^R9%Srma5(&?#}mI`Jz$@B#c*E(Yyj&sWLGdp4dOo#At?QeMv!
z-n8Tc(CMVi)$i7W+Kk8YE535M_%#*BM+DkCsVXMJIC*5B#rEs7j$UtHeX(YgyAdD(
zYTB&;F|Zg3dj14Gx{uxX0g}sE3BWb`xt_JJ(_8^RP$0F!8(uLAaQI4wJOYLsYdQJ1
z&P5;(IL-30&*0-@Hy}d+UoyO(24kX-PgGdIn)dV3fWdpi@Hf!p-}uMf`3xu0q0r5o
z!nzoiRRS|sR**MpNO?hDbZJ3!VMeshF)>gDvx*AgHQK)HhL3(N)H%tQHlfJybdMR_
zx+pJv<5N1&ZOoOuT~9vZJbA<wtMu--8oj>=1elQf7(gA<BQ>3q)xcy-<#OQCj;kF4
z=IkJkX~-{}C+EbCUsKe-cf;8jrQ<wXe2TX|G5JT>i;tPV<g0krPhPFa&!5SKr6hKD
z_U%^WxBcef@_)0Kmdxu90>SKRyA|{T@i<(0NV!*4)6fofxW7;P#r1T24`~3<^Ad3~
z^Hin(dw3Y(R~r$gba%eDAhG;6g~Jm&vjrTOAl1%~g23X>?@F-J5NMfsCzCc-<4(7?
zKqJOuNaJfSRfg47eD>!YBqR~|^v^){=CvB$`9+tbp*T9|cp4igLCPM``;vl<|9r8+
zs_hDz;A3u-3)R;41yP1riR!WOaZDoixz;}S^YJRz16sMXMh!<{S_($MI{pzdBBb}~
zyp=j^eQ(OwYP)yfpe-$X#GJBYz`>=G-`>r#rO%UngUR02*}<VQ`Euw_Ni($e{d{l`
zq6g$xQ63XLDEIA0IXFD5tmIfID|l7tI{+R-zD?ltlF~N$qH&5*9Axy&7UH8Rv&B7(
z<2ZGD%?%843p|wGX#yL3x(8qvdbsf;h&YJbIEWV`1|vh#AK_36Lcsm`s|hC|GA-i#
z+<};vuA$X{D9P;+d2VoD65&?WmfBFzQmjZww7(5IRB>TamLjH-LyJ!ckjz_85XY*8
zjp3KJqGW+@otC8%WVgpk*vnD*W{4r-sibl8(k6QNp4^<nD)$x^KcHH_L1FCp`0}gG
z$qB*?d2`EG3&)$-AHfzfzmkrFg((1`O;aFo6hP*KvZ|Wt!ro+mL3OW3VW-iqdp?+W
zzC+KVj<<0_G_gU|S86}7!O0~}J%?)dYtZL~XC(B_2X-a`O%Nf&*WHWnn2yD_X`ho$
z74k_3iGs;QqGns6hT~*SNa@NVufO8WRQM1lEW-ETGy1VJI{G12C{?qykWqS$;CX;P
z484!Gzk_>MSkSavQB6r{$p=W);9(I-K&-Sd>2;!a^~pbj_cF_&mKgHr_0YClFqlDs
zHAYwK_ni0YhipXtKMUxor>s-u=T1`YFnq@jr96ND-gefGJi|C55F+QODZSZD1U_K?
zKlOQuX)&P3L74z3>D%uEBd{TS_4sP^acZ-C8IpgB%mJ5NZLA6<Fy?})NE~!c7hRi2
z>)+)+ZJT3xxI>T6RJ9%ZLJuInx`zeMdb37P3kRb}*G<~Xa#;Gm2_22r_Oy#5z7X{R
z)r962%X^c@{BhFAI|Naw(Ty9wjy{#9dm|})grVKIbiqS5mo};_52Cv*ilhDSh7W`=
z(f37jMu<tQCTwSYHhhMWa3lg@Xb?Z4r-FTb;o4-aV>{gZj18@=DtO1tLqo$FJeFt*
z<N~g+`Tb1%XZ?hkMP24*%LN~vqRR<b%VGG7q$|^HU&`$eC6AHeY~us3VUx%c1^%E;
zfB*=Hn93Dh8h<vR`ZG4At-OuQ!IJ2VxZY{2Jz%pl{Y;|Gg!K=0UOv{C{-&8dWU)3l
zqeY*+4LeVjMg`{Ww(mv#@MMmi-8aAd;}WpJKhuz`Sy0J2g)Y}H{+k3q2+wE(!Kvdn
z|0}UJnVI+bRRtE~3cPfXUs7+**^$WTqbrNZb*U2Yj*_2?#bCr?K)h<d98#DY0!|^=
z#6;I5&-GoKLz(VDI0bLa6+^Gs1=>$^ux*yrrhmS>q&G3BqdNkD0OO~B6LY*tP}4rf
zyLIu`(O=~=O*Zh<-%ZF7J_S<YnwjN1cP|Ura(W11@I~;YEBu1Zbjb<)uC+Ypu`(%n
zZ|lalD$44*J=jH=34VI8Cj={CBq@F#SsV931ONqVad;M1(;z{B4hgzGVCW|!<EtP}
ze^oaF;`Ay5kn^ctrJ-n1>;3PFMCOsl?2afK3S_rayY?r-!~n|s^^8tIu%x@V)ifO4
z$usy$|1DskV@M!rkD-DV006mM8wYthB}&A$Z*>p|EA2oeA?qg*@*mlP4y83p)JTsZ
zuG~3)WiOIa*S7WxwIu&CrTp%0375}_i&y)2O1i&FutYN1Tvk@w)KnH`xLJ6Jfq5`j
z{|E>@anUNBCTuqX#BN?MAUxAa9dq*U-d2{($vTu*Kp>O|DW`?-V@NjJnHYSOJkwgU
z?qBng+&C$7>{j}pkG)pY!-VkQdhWRxAV#v>oCY_$c>$?3KCCgzB63g^TPP+X%l>9g
z6%y68dgQ87@BX}qyE!T92TGso<aI!+!T310Anyf+{N>}MqcB_f7qL=Q28Qfp54mbk
zu%TwC@v|xdU@yU3_+kJKL_Qm0->AlH7gXaLxdC_cRx-C#TdLL-ScJC3Vk(06Z|l0N
zcroD?4Lxm{==W+Q&Y|DI1lsb?uhJ!i7MoeQDbL*)V5w_Ph<%+g2^IoF_Ow<5Nn<wH
zqwk<9)V?N$m(fJ`jf#@_Sm~W0T>6g&LdZKC9!OCW#`3seWAZNEuJdJkKx^3q;OWtz
z9b}R=!b6<+IC&}0)4X%GI0yq}^KGqcwmMN1wHH*i7e*_B>+7IWQtr;+=)M8-Tr?LC
z$$=7YnVG+L^eUdd5@$;^vM9uaWYZuTVdrHxJ%xZniSV^S7WQS~%hoQcZ|OuYPUEAr
zZd;X*Hak8OH=IQlZ6!`|+stb>?J_`0%Q=J{Zo)nK06|xqNao@5g4{wM!hFdAHf~N}
zz4W@h?Os8uIsN<uklo`kM7RADNl4$A2D-Yq9egc&<8dJ1rKcUMJ25C=p~wS4+s3Ip
zIjjY(GPKd3z;+41Oc4EY6`L1oi0@p+xDZp;SJnr8215fPG!L-S)_nI3E1ru{*e@SS
zLZ0Ii{Ji}&mDPL@)3w%)Sl4=W{zK^{xaE7s_lCyC&DK#zZv|(PSy??sietGCa>A&w
zp_m;aWC{Dk?IV4(Vz!fbjwe2KV)W>kr(QaW(<YC>)?K)U4BD`Jz_Jl>aQLPEfSQXI
zE8SHgjcj5U?a+mkyYhS%Gss5JE=V*7&<#RbGXbgsG}s;9BY;tr>#JWclsn->=+$px
z6X>IQgj`RV*16F+%7pZi3iLLt-ZoK6m?l*vHwK+e9e=Qi{|40oF4D=%ks#2*g!KfA
zbkqGpRmWY831TJe*5BWK+G>x0{OD)$soBn5JijmwWn;ZmWWP>rpFWVup8p`kG%!k+
zp^5gnGpM6?c#**HgN*>Vh#2UDX`w1&5|0mfJ%$t&_%FH+apJ&%iF^OYP36U#F`hA7
zb)gg-Jp~CzaDWxACIi{9t*KUBSR*=wF-h=U)d#SU3MC@PeH>V|&M^<du)PBG2LMY9
zEO7M_Ou<p9FmkAkON<sFpKhQH(pC|+af6aVK`}!W4<lFdlzth21KBod2L~sQ%sz(J
z^YQcWPr-?l94^`>6yI6TtpkJqY-5@e*eIzrd;KMP_ulW;BO3-kM!F*9^RVcu>A|s0
zDY7*K#%56MOb6nIz4%X5+me!=!~NQFObABbH?=ZKpVu`FY-Xvlwrm2-0l7YSuCNTk
zG5~uNBIZ{7%kecG`<dygE~%$EX{Z;+PRpCG*XvBG$@P;fSX(nBdyNK1DfxlG4bluK
zSuygKQnXJAwrBYN1b5))HxDbG0KAWVjk+&fh0z@_p2%h@jRtV?350VB_o_9gvgO<M
ztP>WN2&V#82*3*l%90M&?@dyGy^k@}EBCJI_GLlddWstIp$o>L%@)V%zR}*k(VS*P
zRWUK_-Ad5eI~HPAa;HCjier|ZmKABuU;9^3rx+0hq-Ksz5=M@i;T~=$`d>rjc&J9@
z(I#ge9Ed4mK8nz{R9H0HwckqUtQxgQOUk6FO3NL9fq9A?&$Yr1RRtkYr%8DI_{UQv
zt)yLTOg1X)yoyHZhs;feBx9U3$P1~lH$J2&%W*cA!LbJ%IRH>!&Cw3xSCR5KR%*t1
zwWU*3pCbA}kLRF&OA@4reB{bNUvz9=VauMbN)i1sZm<_;+e{jug%x#Y()(8)L%=Q?
zpl0@kJfiyy+-j#`|06sj;N{zl*ePWrl0G*BLv!r8nvFQ3^AZ{=w#`vdr5Dxjvb)TA
zvj9_~bVpH!%F^t<w3NK0pGIHwNd~udZ|?7fn^KD@%rNacS558RnWK&k=*{U#sBmQ!
zr!e%D;qk|(kXIHL>Bphlm?mE1z$dzFbiXle3{*`mEkep*OyXBgC=ud&I8U+XE2v$o
z;<MWUVXQ=>QGbt2+i|#9__kwGYUv>EtSkt_bbqllabWLj`e&P5rI|pqPhzjH1zmEz
z&F6T--zAUKLy=2(G`k80oWFmzd0+zEKl^ZuzN$-1Og3^g@yc5zP&rXih1A-hk3tC}
zZuMdZ+_c~U@x;4gv^|M0q!ZflNuHw3u}90+jowLPf`56O%WBRyyR=d{L(#&bGzhkn
zx6Kg!HNN6x&^=n?b&gU8##Yr%XCN3Ulyk6Od9(?G_!#q9JT)G$NeUP{H9wRs(t%Dv
zkHtcZ!ceebIz2+D;+S-QyT))geGf9AMUDXlR$!Kp(1R~a_7Yp>Zk{ALTIC4@yht5i
z5_&`*YIdZ6$GV4sMgMV$2~bH#CQ4?#E-rgn!C@9mSw5#VDrql>Q9Nyh7idS@dP@_n
zRT8c$rd%sVe?am0WhCwUio}oj;p&Pnsrc4luJP_sn!7gl)g43(xF~t5Nh&%BkOz*A
z3D#9JIK7OGjG41fish+}k8y5p3$f2Y*&|tS0mKESS7rw;Cm8r|iJGuN{^ocrYb)^F
za={aC+XWQ_*@&wYSxEi#*Q}CU>>TPh%b$aO$<o^hgeN|v8mm>L8y|gN)d;mR8((}i
zwjc=-e>U@;+vjBK06m?Bjq$A^CMmIIc_(pO?gAc+qEydC_k_T^B3^QAq*hQJxW@Yo
z-sgW}mRv*0&^Vh8Gal^3#eVuvO(|H?4s`qiF5YF|s7^apLdY}o;@^Jfv9E+%^l;wV
zZ|OaW3(WrkcBw@P7*&cdSGk7J0Z{S@c%BtqYb$pe)#?;W4`(RS0oKem^0u0W?3Iid
zp#F&FI1AUoL9__1!fl))fW;Gfo)9Glza%Hd4X(sru!-OGNda%t`WHh}<-eV!H%W&{
zU$<v<1k~lHUYR62s-SH#MF+asBq9e0_KZ`OHEoM}t0lkIJ5b`C(mvf?DqAkOCFWA0
ziZQb&U6&&XVp<dqlcGKOI6R?EK2HBH3<!~@Za_xmJ|_1kET%`T?PzuwIljLOHWn=&
z|2h#3B2?;t*ZBh%+g?}xyGDi?v~x$09y^-HSaksm6UVAx#LrYD!U7WRo5TMFhiFM>
z0&oa%!e8`3@JD?>@(c}3ZY!(VCkGk?8c2u+Jx%F~m2zhTd5KQkXNk%$v7IzJU#Zk{
z+gqXWjSY`tvE1B0rcZn%f+eNLNq`g}ogHOwhw{%4+}JbUsgg!1K|5T!QWzXZ;ZF}P
zVjr8i=}^Qx;`%d2^ag=X(lidwRk5QF%jaC45F_IK2Z0liEZlg>W;}OPwpeP4gyQZ(
z0x<Q69x+`S_`l65CBQ|Dlig|;!GVXPqoN3qHesh@<a>;i4O)Y)^ZsI4OtY{QEq2eK
zhpQFj=OuKl+1{JQN$2Jkd)HbUm&X%t-;cvRtO|!VNIah&wVe6gY2RjMYt~P{svpB|
z4a#Hfn|3bn9R*+i$_(fH3JE2#Gd-FYEg!L>fD9v`8!%;zD5`<p<B>+f?|JLsMInIf
zlA8cbNFO_JT&l+ok|S52eQ8Xg1p1VKPfxU+C6UjiVTr~u+f)@;+`0F|-P;1(;}Ar^
z&9g|-|2xA((lp{#1)07{Bpx75Zq5M*x<cj%2z~7^aRHwh7;f=v7pSw)H>ZDXGaw|~
z%uD#zXg4-KJv{XLEUO0><!zZMGi(nhyQt{$-XSYHf<(j(d+W{yRxKRQwAufTp($0=
zP5bBwpqVF8xrI|$Q6RtyeWz3HcX$xEeh>Tm2N5O(8Xq`au!0fCE<WB7u)>$rOoGTU
z4)JEqRwNXf6*XpgKVQ2c$yxI*LlJ;7<?i3lt|C)H7H7!ReJ_4bsw3NRaB%e{HB;>`
zN8hXZWrom#o%HDUDMPqLFlhqwVwH|lBtL7U{xf8l`xliTSzRu!)ta?Seu`9=J}?Y^
z%MlQBg%=T(dI-|W3EcVV!FhWKvD3SZ>`yKsc*IDpPKI$?Glmc7*7q0<(njuDS{gf?
zZR>J{J$<$a2L{p&;I+Z-sQSOp>>-1be-_9bc>yi}(B$49h&bYSLpqrlXMC3(ti3A=
zGRH<)Z^7XAjJUBA=Tj53k&>;qCOBavsV}%$^A$1#lz4z_rK;*g9j}%G@l&ZBrP`{9
zy~vzaKJ(_H*BP^}H^Z%!9RmJX5S?8n;bh*rvczVv?QI#B_E!XnI+P<<vcZDjZOA^Y
zDJRDfef|z<_S)Cv=e<cBU;7Lozp9d@@QW9~6dfL7h%h%`8Zkcnent49<LFQb?XTu5
z#dF<eH>0_2GHBLETOW<8tu#U3LQSpX3meh#qP$pf@4AbQKf&e)c3I}7iB&K;ScCw?
z?Q482AUV+hhkfX%ggb~lf<z?P1^yT@l_!>^c)B4^!pB1|Sp_7sKfEeI@<i;5e=aZb
zlRVs9egvt~C-kfVKpoy}ovl#f?#9+n*e?P|DHnHL?AHt}CSJ;kP7xsH-&L)A%!{5M
zfXbf3>}E^ZL6VyRx4YRT^%eU#wEE(Wsb>$Ed%Xli%bxpLA1}qU^fjpWk0^$IohD##
z;G<*fZ29vZ%<91j93`;4ybc5M-(%&B5GOZ*J?Ec$;PCB?-Y0{vkjz05DxKAv%7zO8
z=8UrHS9i``Xkbvzz@91U4bG(hQ*2yB)3^_u+l5kCx334XA-{U1hLVWGAGQY%7#BcA
z?FZGdY0OtcQw8dggTD)W7Jle8?Uz{V30@^mUYHZqUY&=}SD%nWbeagsp79QMztrgI
z9P45?n9o^&|Mk7ZXR3OK9CA~)U82@(t97-*hjf1ESNbAnKvxNm8arge=Qtul=2Luh
zL435O$Yj*&7c>~i*dDE0Uvm{-XDO7VI`PQ`w5Ia8_ZAmfCc6u`v9%jreQSFs|Jxh!
zb5D1_3X|3P(T49?QLL%h`-><TQFVb#y%V*N#~)Rqgs8}MucKFa)}K~8(tOE;T)>h0
zf@QQJHs!62s5!7diDv>|3_h;<moMtc1Uo7(nY>j)#6Dy+alt(S!|~}P;;|OEMubym
zPF<2BD<)YmiREY1q=*A~(TUa4tDtLcj^hjX=**(GYI5G}3J^%wR^+W<3VpuiTZ1kz
z&&y9G0r6KbV_Q?>1p87u)l!S4^iGisNvgPR6FJgl;D64D0+`5?(C#gc{A!wD@vP@t
zJEdP0PRetP*4=BTJ?p0|OA~Q|&bzvqo`wD)Ayv3G+_#&FK`AZ?4nRyMc(w^AO&ur;
z?-z5tjpgh5EOwrDv?h^7RXrgzBt!30b27-ifK!9M6gA|_J3A8VzKBz2Fe%U>W+Y0!
z<cWVE)BZ&P%WxeWO-x&;Oa5sCiwqM=saiVFW$>BFMZqZqT1YpvX})=f1p*3D&Nrin
z0I&!r+eg6RB7FskYiDPRkbvOkurCLqsH6O@ujsK~KK*_gkt+u$C#WCj9-23~+I@?T
z9sw!!f<Zwl2xEV~)L=>-a=0_hqVtVp6e%h`ni@nlyl1t^)K0-rPM^v98DP)!P0ZY;
zp);(pUG};|bDzm4-kIwwZGmXwKr*NEZIE^TMGpvI<K%b~Pqvz#0}UVB9*m>kQk2#8
zq9?oVO?qEUWI>zG7^zq~rsj|B^)=t=l>z^6MdMm#M_cV<V}QNWwKcX%FYwUM1*fzF
zo~7K+@rZ%4h!Fa~!puJNb<|H{9})_@w==ymBz2T@H{Kh*1Cw7)kEESHqmlsLs0}94
z7B@~ACG`lgV7_SP9%u}`X}GLcn>i<~r@{*5=dT_{DV~aDllmu{C>Pu@(r4W#herCt
zgq!OGh-srk<K(eYkoPtQQFg)+v{>^}y{ZxE=6#A#ZCDFfN2(|t4R3cFV!F5MVjMtc
ziP}!Z15E2LzdY9KgP_pv?XUz}9bQjGJgAwK)fG6Qg2_Bhj>+jE3_PqbAg#e?_@QEi
z#AiTfLVncJpsCVnbgUk>VLjtMDAK%F@x8iwJqd3C&Mz*@eK%1iZ%b2O5CQnXgVDDp
zS_cY((<T5i8?fZ!q|Lq2sIaB93q~Fh1R$QK@;jmcs3+&Z*Yhk%s^Yw&dY9XG!zqq5
z?czduHj$1en4}>oLe8^I0kkb1h(7g3aDYpAGF^2pY0Q}*o(2D_YXtv(vQ+SF)5Vmw
z{$6s8e@gRPvx@?K9FUEO2sZyL$PK-(xcYeI(ufx#>BU!d;W%O5wlH!8b`^=T$4+I`
zSWl+^Gu@R~mRe0y?|hDus3T8-9VT4>=8BBE9C4yKS;lzZc<>jdd}b2zGTWjhjlf&T
zwc40%^IAdY&U}wqkfbOP2dQA*p_Ek^%aQudCO;)^tFr7i&2!&_F9|%G8Mt;gN)uOt
zVePvQAoPFO<^jqhq;P)81)1CGV3L@>on&DX(Oj|tE|&Z^0fkJJ6`NVT+Z}Gm;<6R6
zS@~+$P*Zi<g2KqVrqn%DRa1njSKRt+1UfcMkc&$XVnO@%fr%5P@s+C}aRt|e@npB3
zyj^R@vkerq9iQ1l^6Nc$_@?P`L+h@BPQ$GrpEmi$8!>`g5&giJT<GbGd};u3Zx6;%
zg~NqRRvL2$$fIJM2Hq<ZVgR2*v@Vam8z7ishf)Edl$}PrMlbj^O|0Y}kcFWMhK1IH
zI+X?Yiv|E|UnoEV1o7wZ#zyhuRkad{fQDS*5EcXj43|WvTb}UKB=--%e(rnS^#y3a
z!EHu^=F(Zm?I~a4QA}Aah?2f^o3=25&<!xoAK)(y7!Ae_lc~HkB4I*Ta|z$rwwo!5
zzsDinoMLH#O2`C=QNWAH>8^lq|40WWh>{Nuzjrk)?aENGf0m6%_L(R*CsWE2PxArU
z`p-q@FJ$b4q*oTUjJIQhO1N%L9xFjz5&-&+mb}?oCW{D1TOUZ}v$!CKyl2}4_k8FA
zm&VuRk3o-ajz{qKP^qFNw<jK%xnH579BNkh^xP;kb8@jwHd+^fO3aFm_r*m;?u_fZ
z+)$rFEdU6~mc6e8!152ZBM=eJS8$Ng6F)7@Bm|M+loLKs$S5y?*KdZr@WV7QnXo|5
z_WHU;;o0qBPq(nzE&m-Qv2`Cv->TAXf<;49H^(E~S1b6@=G@3e2PZ#51CSv1Zt1Tn
zu#s)#$Gf&_&&I*gHC<)H=atirKRX(q967EWF=<vw!DGltHpWc(0Y{jqIvs8%Vj%mb
zDlLB)V0$v&dgDXfcxH0fDOlOZC&q>~PDk3y-gwsYY84pLHNNrk(Q8iVN`HwPs*oM&
zk#Qk&Z4JKffKIK-#H7wUB|~GIToh%1ZQT>LZv#x>y6hK#GiKHtRV;IMV)xUYc5QNs
zXm%QrFpkaeb*0C1)Q61#*>|xgjY-!8Zz)1{neLy6#k8B;-G+Y$UvNXl@<?vU6lc<I
z(gW;zA7F8PopFdx$^!s7)6<}@mm)144zMzS@s$$kbB!x1zw6R;W}yx^T29||K*ucz
z>xhM1=wI^cl4IqEMG$f<1*iF{)5oC--TUmW)^4xSjQdDLrsWkCO>n}V^ZJZe5!Hmr
zbn^?8s+h9ueEoS}W-p;+uldepf4Rh$wd{<cBo~0;=KXK)XDi=SX?d7bXJ^QOP@@j>
zIm+h!(Z<5j#m#Ves9))C;gX9td8(wmKGTE4{CDeuwK`4ris6CYkOXaQfU-B=jQJ8{
zza#%WHF4wa4eKPfmgPF~Gz-wvt<_gh#VDj)QB>)0_qY$T$7jGB^zp*&3#`yD(pj%F
zbU<_j;C@<Sx{WPe3*KQpX*+4s?7$Z=h5B0Y$Hzn$c#t>>Edd#(VH4cpe4adYX-cD$
zz4)J~Z0}zp|6RqvvR>nyjLz7gDooaQ`$2^K8&73bXit?RDthSi?fv!2yP7P>EAy65
z7B+n>4EMyG`tgC@zrc?P3hl%=AYSF09lU8?)=O9ymkGkorjg*bz0GW4fkr@Yud@e*
zC<SgZm4`{IG-*9V($IH&gr0iNGo(Ysnpr`hZ{|+V+RA9q-Sp9NNbCKNY*S5M#QN*E
zwLJV@Y`%OCR{YH!7NNWM?WR}jdPLj@caD2(f`TNlccO4Y1-`c)zgx&`=6(E_L?ikP
zDxs4eHece$zM>HpX|M1<dGz|auRae}4IHVltxXBv#{S^o#=RTo<RAjHWAk#$o#b+d
zuw?fS00J^8ix?p9DUUij?DqBUXK_ZN_RLqP&SxocK(fB&e)>h4dK~_B$+D<PS$*S{
z_B^=jqNKBU+c-fC*}z{NF5~_~P&*A`ihQP$TC)div*zMt3a0}d$q(!jZKtYPR+i!b
z?w=unf$R2&0U{tPy(9Qu=XmZUe~3btj``*JVWf1eD@YEgGAAf}s|JSripvr_lH%FX
z-b`h>(+$CLA;H}sKq&#f?P;gO!UD^|u{QlD_vhP$Ndvl#+FeB><3>o=wRzcJyO<cm
zfTd=#mz!&Fi)g<jCv(dA1$N%<>)FPe?<gpNyZc5Ygp2+U7L?qIU`mKx=^!YI1%s=H
zXdD>SB~)^7re3PatcbVFb<SsqQM?eOoEdJxg@CV@bS!kaf3r2q^%Z7~lg|OM5}_I+
zbc`@r8t6}4Zj;f)q@=p#<?>Dc=#-Kh19lxVXO43ef019C?e(G(VeIx|GvfxP#ulb9
z_zZXYKmi{5=L|Rivgu3wkf;Gi-%sc}zInNY`$O#0%^Qo^>+8N;#qfS0m0{=TOf2A#
z6l?k?dL<{4WU|G8ErW>l6N&ct?zHD9I08(5jr;)bjqk&T^AES(?i0!b)AXMK(IyGu
z_YZ>qmy!Y=v4<V$Ka-NbSN*>~|EHnj?|=Fq%0~YFuTD!|G!G3Ih}|S}u1yq3A3v5G
z(47j(dun4w`rXt((sU_M)VgyOrS|npb-Fc_w-YKvI8Q_<umL7EM3OxA)yLp}zBL&6
zB;+X4pFcAued#`XD+gZa@-YEF3Y&QHj6%873+yLu?pP4IFXXr~YbeIt6YBJ$H0qro
z-w(jAqM2A_FaP}|7O~<I%6VB}f!~RWNM5=(@UlEEL5GLr$^OQXt|OZ>dsD1<{1H1(
z)}J%vKfg7;8uMyO5#8n?ka7+AtH&K>c(j!?m{*t9+y|tLP%^~Mw%49evmv+t$AtsV
zgAc&GS_3uf8r67z&_|&X0F!NU*ngU9d5RrK?v^H={Yg*4>CIcJ=te6RtbecYVe0zg
zPi^g~D|L)Swzlp-5ppB$3Eg6PWu|YI8}1uZW7GI-Q{9hC20dkf!}ly+mL`D#mxKOs
zs#IeJZYY&3Vo?~prW49L#((}`fGS^?w>ibD@{Pkug~*crqnCE|x(xnsU{YOsvuj5k
zkH+Wc&(B;e<e1g}%*pq6Gxamjo3fb!bvWSak-6R1$y7aUbcQb^>vK_(Kado3qzAgy
z=|C%AyGjSzGJr7KfnGjK<PeaU*H$qc-t>95-kuUC)e`=1iSZ*Iu{Gn6RR@S7{DY0K
zCh76`=OW|2Va3L~8BmnvlgKg&_S}s01$7?mQWVimApyc}$J<*yHQFpwWR7cpF5Q6g
z*}M1z-?N7wldS0OI$e?K_t~Qore8z$-Qhbmv0zy;ktMzA>b0+OjsSy+$9^~8%TLq~
z(8AH~9PW$+1&iL$vNW3k5$W$s3_&0scuO1omCAv+WXZrd8aY6YHhR<+#$8TmWR)qE
zQGA9bQ(U6AMv(p4)oB4(y+E~ap6uDH+oNQjJK(ek%FZEB09H1D2Qj|-=^raD{`l&r
z>~m6HXW3?OBuG9VDHZ%}xkEW(-x3aiPO#w1R@blsqZ<Oa0+8oK+upZbUsB;x5wE7v
z2p@l8(fRie_2SnHdR-zDiw^Q=<VP2S(`w%pOFO@y#xda(J|BLrMgf;1Mgdtm-~EF}
zDmbw&z_`fWsCWs6@?)In6||U3$R7dB5rEpXkc61^e1ULFg&P9SI8CYJm}$O%#EZS3
zMLjFSP?BH8#=X5z5F7?n9IGkM?*8e*?BXN6V@ePWe74A%?&=3ts5%#QIbB0dYHt1#
zs?H8$V2T2A-@g3#yv^A*325l^1zD+hM47ovs(lv+cjKb0M12rA3JzleDGj<g$J1dj
zuK@i4(VzY(n1)+eEt3Iraf-TZrt&Otk%WXqR2P+1G<~^zot9atCd6+0wU@LwY253O
zCr5Cg!mT}hWS`o2z9G50s347}{66g2LtE2de?0_Z-4M2NuUQ=h8f+E9pQK41<BWZc
zZzEN02?oE$7U|ZkXO(q+!L*(|duCGXdGo5)|N49V&s*|Vz)lBz8Q`?sxnl>05hipl
zkT-v4BkX2#oZAG9aP=5akZHW}S~p`0aayt2&X}~s34(!5Tyyg2=D=P@^Edwa?%7Y;
z6JO)ifU3%C+C6yPrP(pimQ1))&#wtgW;|GqZIdFj6qDKy9n*lbK=H<VhFCnRB&^Q2
zqnHvu2zJ2B$4BvU?<h!@^&}_4&b9nmNEY5$6_IPosY_Kw6&v3Fqff{xdN78yvcUBc
zK3W;*mruO>6%}%*%fdi6*2~rOk2IwBYoWLIFmjw6;(sobzTb)*1th%6u0cgRdiYn>
zdwbbLE10${o3V<Gbb#tCIUX5ZH=&t<p{yyV6t#Op`+fpTY}Y}K5iD{O4x-0gtxA6h
zJc~X{cc3~zIqSE6&|^2quPC1vV4u`(FbGG!|4zBIq#y_U#R01{>RYrY_ZBebJ%v2q
zHjfO&K!PwhW&(6sB&xLFH*0}!)&~6@J7$&-TjMjJZ}Jw(pM>bu$Kmd7@RhnkAd^~2
zVAiwnGj@63sK~<=kXF^mVpqdw!P^NKdb6Xt5bLzOTW=nm*$+hud|cfdgxmts#fnx_
zB#y^kHy<L!3!Vi%b`N~)p3>-W{b!4Zj9Y?mPcZ3K+dvz<_Tzsp%KQNfbm0OkE}(5H
zQLbu!`U-{($o2L=GTPSi4b*l6#H_j?-xcY<NRvb8^bU#6zDT&kXZ&mmaec8b1o}*e
z0lp+365JR;kj4_qoA%yN-)rg0TU!PPpePjSWV&mq*JdjVy_{bNG%3Pb{zxjoK8R5f
z5^QpDx(+@C@2W(C9sC4!S2qDLJN(hW*Eylq_-A%>QBOJkN*%n)SQwzLLNvgH`HBgg
z&TMouvtEL=yL{(R6X#81?%_jXxTSYf^q3OzGbu_#RhiY=ivwJ`M4eju=8%qw9CLl=
ze;;x0F+WedzN88>R~DSmRbeTp6)LDDg**omTNHQiC|5OO<dcuc@A~<VM+*MHyB!_9
zd|>G_<Xggt03U_Qgod)7wT;0qgW)xlwzZF9Zv?Fw99O_l8y*rZ3Hlkfmex3U=rz<n
zXi%tiXnsnOCzm!OaVx9gl9TNV`HVI^ZnYJqyfE3|(lgZgYM~T@N$H)^z0C*fjvI5%
zR#>Kih<L=jAL|rJkfpf2X>(GWN3Yd+5!bcJL0>KDypV=rs0--TS9?Ybj)sT<so(A<
zXa7JTm7J5N<;S+dk`)zf&F<V_ijdb)RQcdj`+IQ!ML?5T-QV@IU2L>G>Qp_tV{Zr>
z(R-`%oXTD|)ocza;%Ku)|6~%5V0hMKw$vve3do-z6z~Q?U{MMwv`yHy4n}UcixmK-
z^6<Yt!RdQU6PnOmS<$?yl24E93H*6I{;VA=6u^iJ21%7}{X9rS70fQc)fbnd{w+@1
z3e2nkjBZ@`)LwL|u1EsubX(tAAI#pox7vY*UM$`EbaRK$b1AzhE(A!bAVLm?++-1C
zqfN4={HQds)j*Mr4rmdh=&BAdHCOEhLPXiy*D_R}K!HPhtbep9Fb*cWc0lO*<RZky
zBp`k{$#3l4$GRMkloMsOV^4lh`agots4ytA`L|96@a-wH8M$Q_Dpd!+DXQ#$&ls8c
zwJiJgZfrZI)+JR=IRw;yP+;p(0I3UzvVink5}fIQ94)!IwC2TfIkdU?DOYg;Z1?4%
zO+`gr%r8r-%Q!R-m!8lB2<0k(r|_NW0s+ABrH_Cl?u;{NFGPeP&(_`d9%z3C9vq%Z
z=#v2XTc`G1%ADoTDYY3%LgVejM&ql$aoGq!CFb^vXEGS64c+*k009}O{bz?RHc*=6
zHVq!f-f;v|e3ok>2;hTcN0NQ&D;vwA`k*uK!yDH1mDe~|j3SQV3mTuA_gwH9X4w9W
z3LRG2RPP4vzmJJcT`|Qb{}5`#j*iN^F=)pVi1Z`5c`ZcHp`eDkG3{>CD_3S}+4Uu~
zKRZYek8d|Caw(^(evY_E91RV@51>s;5^Pfh@@-4gc4DVEzWnvPz*rh<8Y;0gGhyA_
zJJF<%8=RbFOOu)SOZffs`=#}N5qXc~R)_2#IwjQpvr_^<z5l*ZZ-QgO`5rnYzSP`5
zKGB{|Lzk&grs7f8%oWYxvv(TpAv+=D3$tmUKuJ_p(xr{-f~1GgMls+f5yxNY!uzKe
zUFHKVcyMUhiANjBA2JtW1A&A|b!>_wB}9r*Ve6gPVN>`Y(tQ7qhQLK#lJ5pxqjcB;
z=-Nh{V`ro6n!Bs&6lT@NmNtDd2PQ8{9MCeqx7O?n*DuZpC(06n<qZwyY+w3k=hpY*
z|0wRVh)m=<`(<j<=q8^G#^kZiw;Z|1y%jcOP(i%baz1iIb&oSFt>Mx>f`w0C(fBJ`
zS><L*NBQ4HVj(}`i=&F^gvyvZ(Qj3`BLCZ#_2|IGk8=9Yx}B7Ka^Tw!*?5}go}16-
z@?Q?DaXRHhsSBXN`wvbzWo+KV$H~Hzf1)Z$3J(yaR_Wy7`S)}(Z*04or;sd7X1G7N
zq<y|kUyn2Q)nM(rT-M5(s481@YkJHlmZ?jyDBC?({Yy*v>$w0TUTfhsb_OwYhvi4n
zz!~FajU~`E+5KH*5)B2&#7>6k$o>#q>}XNy3Ig0`DIXA2{@sp%inE>s87fi~QdR2Z
zg~FH3dTKE&Zg;9Lxnv{k-ke|w;=JKQWkLJk@{;$H5&T)(gJ${g|30#1|CIrbJ`X~w
z{~YVTFZbfnea!<w%{NxI7)xf&ArQL&etOM1LrKyI`zZs?-@(ZBQEud)Fo6sW`nbl)
zAO5&(A)=Yj%^WK^p1WaQ%Fp@GQKw`1DPtVc<R?HLVPhqVq#O7l0JDLH(;M=5eL*M5
zVnvicY%~$GeMs;BBWPHntN*r9HQ$JpcRERxE#&kAw}V57Sc^3l*YU@A8b0vKpJ%}<
zliPa42B$yDLR*y+8Fs5NBzE%*9`ux8jQh_L2k`rC2I9s~yj&F%v?ifRIr{!!T!@vF
zMSP>6Es;%*_il70XM^A2Is>aAE5OZ?|F2TXMW(>0GHg9{JbmM3D4a*6jV$#rIG?C9
ziqXU-sE;+puRMLyHandlOiBvXm>3LCfI)%He*;zQ{z{)NPEkqs`fO&&Gq+fZJPxOl
zlM~uVM<OSer>Z&e=b?3C>FmvA^#=)Q-Un6XAk0J$DJ>e_Uy=EK;FjS_m(lBt+)Qm3
zQSJfMM)r9JoT8$llEUS8@9Zrtw)LE5g4(k|wF4N_s|y5G;1`>0tS)6C`3XvZE*+24
zt=KnjPL_>*n=`xxCA;Q*4rdvjfzGF&_NKDQ8#9T}!b^ZBu~oOe1}+=0S!9Tt^Z3}=
z%_QWtJuO2f1^h7}%2bBz{M`O)*+osmcL!KZO7K9(f?VJPAtO!*b^b(0zg{zO+C@nk
zXHE4Ipr(LKF#g;j9{6QHX%83<Z<Q2q(4_n>>PY_P8gQI4^Yq~qep(_m(2KDn_(MHS
zU+6A6XF$io{kf&tw^!yal46w!zG-U=<9W~S>b!~qBWkJ|)4)euN=Xis1@hB-!`~yL
zs&U~6$8?mM0XJ0i4edU^TjA{+^MOw<fKl73!fT#ZCcfk<Gt3(xDGm~fPxqe^;Bp-X
zU~Uuy;0J&Hc6t<vw#`d!@hkV+w;SgEoryKev0w}R72Uof_jBgWtr2|JJ)udDu8uUH
zM(d8dnu-z|dV1!v(xYm}?WL`Wor=H(z_ZGYzeYN%vOlbG+#X`ExQI3^(``fLv-qxC
z**;<L|FzqJ^xi%X^v4TJcKM+415sOBz;rj6F0s{s@p`!x807BuXk%5_Pk;yZu>7vR
z(`Xn>y&VFV(c^q!Cc{AF&Y$=@fw>A5HU>64;RL31rI&871&$0!>8yrov?r?cYE<zC
zMHC+&CSL;@m7CX**>d05+;>}ljIyo>Z_gFb#&&6(Z<y!`rg-xAb8{adqLD7JbI@^6
zK_DgrUyotxX>h-~CLOOaNs%D6ulM)Yy=bZfHZ}x3F;!lEK{k}A)NHcoO9T4ElK#N#
zSW2@Sli=-8Qk=|~%=E!dOV-aFZksl!VAuOs>)tnO3(2m`dORiR=@-cdKD_o;HDR&0
z>qVX>15hW}@=<^P&Q6JtN?fhi7#SX(8i0)*%s*ygWPZt1ba8MXBcsjE$y%J)0fo&#
ziMaPPYHvKpj#X&S>-hNR>(e-Vh8Y!Hxsi~PF}M#(LtKUkp)(6TITcM>0t$@r-|F40
zx5Ec+y#+lbJ}x##`^qfXHBW}s=#Uf<oSLQ*{C7WswzuZobH^9I$9~hVd$la{8dg>D
zAQ=?Xm<o)K3=s}<PmcXYfdJMO>8Dy{?FB}x&~P*-aSXJ~kzC9X2O6}<NB=zl3Od??
zX!PDX&$U((JK_Xr#v)c|q9yA1Y_3*;vn!|>)W7xgsGWB9W|l>K=+5#ej_+FAi_EWX
z+FI-?0BSJERDt7deh~<GR#b3BG$&+d{eG}z2Gh>}cRL159;8WA>zq9Ik=~4{jiy|=
z*RXDJ;3F0E9EIGr+%6^VuZ4nr56~1X?I#gDkS;uUDyLrUyBuFyo`VRqM!JNP5g1nC
zc7s$Pb@ux6P4l-wS043KY5z4Q>g4gRDV~PEbE2x%C9CeIx-CuI7xn8pepy0-x8zu(
z^(s|$(^uI5HVydlMR}G2ZpRij`iVtZT^IV^r%oJj<P0@DXUly+@dR*cpvNHwkG1x=
zZ%yk0Jc$}!`T1lP>Ad{2>>x`nvOAOCKlXKQF=k$Tu*rGi9nwIgySm~wB&9J}FRp|6
zh(eLGj0WNf=ANol*ybkh`a#tK+^>$A)|M7Vep-BpvI<$mbFL^LSZ!LIZ{ftp$0I{x
zX(LkvYS;LC1A-03BMIRl(zPEZhjN@bYfSpCnte6ToOg%-9QvMo>vT&-*sK0Y>Mhq@
z{Xs&B-VtSryb9Bn9W*bG;5O64+}wQFY*haZBFGBB`~CTWD-30ERj0)c;c#ExY-nh?
zstfAxmoeTdAFJYY-Wg}4Y;3wliwo_}=RJ8=?-{J{mE#(`5%L2OGCTHWoyjR2Cewcd
zY#+6gZcBR~f9o}xvjb`>r>XuMLmBBkz(B?z6qui5u-ZP2+(~nS`$YIEzqC{XR%iMr
z3cO}m!paT&cP^W0pXF78W<R=SzuX_I9AhYJYj~{^a_DFTrN%p?uqKyX0W4y^!4Bc$
z>nsL5g{I;L?~UI-L)hmUTQ_{K)a<1aE%beShAJbU@%(%wen#fLdtnaQG=Q>vY&8M?
zsIynK)|iK+ck{)?pA#d?`DRL6X{I$Tz4pvFEHoq`iL&w1+REMc)i#bIlUSxDdTER|
zqJkgkSCslEyBv#%1HL25b#_`^nxty05Mgnx`WSSBaAW`VsWzmuhb8IocgKTOBa=2&
zz+0&?K}LN!Q$n`N9{JL&A0IPz`kgJ1odrE3-M++K3*94)ysx16&}h&vJd%}F-DG|;
zKbiY#AuB8!B#*#pN$BJ&eL{{Yo`7smBIsO;r@0>N0&&+Y)ExB9F~g0F6X1f8rnZ_U
z;Rn=kg|O@`GkZ`1Fq>lak)n*={H=rdK6p<EC1KrO_6}`LJ<dM@9ZeUfYctjHGz-3G
zZ~^lC9_xI-#}cj4Rdj8?G<wu}waeoKQp2upD9VWffEf&O3yQm(ppA3M3Kg;!`7jrl
z#WTz;xgGg#4yrvP)2w;dz^=YEXBkW)t^%)J-Ih@Tk4sW$d&6M~Om~A*^9~&uj@zQI
zfD!h;_9&RC4|&7m>}OT+PG#nlI9d`lX}&Vw9h?V6E%>;?I5SLi#h)78c2+PY7!!r>
z#sk88zfnMVT-H5+hB|>tgT6yn2lCkMG(K+W2?@!%;2=4h_a*|Z68Jnoqg92A8i;(Y
zI?aN<PE^x~zAl!=lUF#YeZKbl(}LjUHdY0N<z@C0QVRGpY0ckkOpWWnCu6WVkX{yx
znka7@sp8O}Wtj!Sm$c$L)v-##$uVFD0PBmfv#x8gkLey(hI%7OT=#sdZZqFft$z7(
z*rd<H1pmYMC16JXPG6`^ri+#&;7Agqcnk?qmChVuBQ>5F9R&v0JXI9Px(N;V023gc
znD}_!Qr{o>NWrg})7Y$=a-bz-K3ZM)l~gSk#+O>$_&IZ)7`8W_!5)kul2m%9Ymvft
zhmXVhRE6&menkow?N5}rV)`Det~!mWcn4p{NM&*GHJ0b|@$*Nvr*|1CLk1^Cy1Kg5
z1=ECmz9B(mpH)<x!25wMgf;&e5dp!M_{KXM3?i<*(z3ETJYSd1LAV|ty^~e{YG&G+
z#Xn0aD;*IR_EX!;TqXJIHq({f*YPmSeZA_6ijZb|ZRd#WfeWMA$)$|}QUk}y1!mnN
zs*kD+p2uV82|aN=crShnekPgc0z~r8&O^iC8gQrfP35iex37K)NB1qhFzuOM@L5n)
zQ7H(0R<v+9P`u}xBJBB!ntJ8e@0EP-+Xk<_$~+wG;xv<r$r;yu73(JJ4Ifn0ksnCv
z6UCQn%UPD#A(dg?&atm)njN{1b}t#4i{?0ddL_-c9q0uGdpbHQPWWRmlFUqtjyR>I
zdS)9BCWHFw+hvn*NC}^l5<Y=6m)x7~d`6IIzV*7bl>xh!b+6+p`Y2Y97ON1kI_Hu6
zvP?wZBN)rJZ0r=T`-mwE$axYG&ec>``%He_dIS$D61egeHczL*fCmE6ul_uiM*f<o
zG<X0|041rGfy*dNOYp@)V;YC!d;-}(%KEO+dFnk**puUK21XY8A`g!UwiA$OZk*fY
zoa{wzy$1NK8f4~AZ82LbNVPl~%AKph=DaIGFq4YsAif4dNQu0G5q$z|A*=gVnZQzr
zd2C^|9;+p{3+VcWpdS}F8ohOk?B94U$oDETf$2Evk?Y9N@+rm<Gh^N(h=lfuxgnC>
zq^u>XA%fr@u-VYUVQ3my$b%11ylaU{Irhr`OhQdhlk%C21P0o~==)1gUht78b9mwu
z{^Xc#bYlPTPfvjb7^p1ff|4d+x@4teQ>4R&^OIz}wCo5O3ZMiqooQm_2^b}=R56u+
z>b-!6&gniU{r~nG{BOU(|MnaFmwtobq9d5z^38|k9`%(=_@$NE4|%Z?BW9|Q$=dV7
z38>dBgMdbyhsko~V=w>3;W#(aNFXhGJc~t!c=;a&8(S`JJt^#RG?j<*qwG-N<~(w-
zx=fMI0?}Z}fzElyMK>{x!T-sWHqqUJ_P}&_cUNuS_1)c20=?ZA`u}UyK-Oc<QCoro
z6QlHzUVI27Ky;?zT-Dl}GEmmWVjcA(1v(cFA0gJ!(oeYjM8<Jjeve!E(1Zfr>r9GR
zsRy3GogF|b5KP_Bmf_7Y%QsXv0qs|zkso><FJjc4DUhhTzcT+DE1-BsqByE1RWWE}
zNU9ORYj)3eR!XYhZ0iMRm!pIL1BNp6imOYM*Q!0lksBPJUgDOE&|#c8TAM9Deewuh
zUgoya#(&Rwyg2;Sd32ASy29E;AC|>ZP}tSapm{OUPCI9Z3#x$2y9rTo5MbRVML{&q
z89N0FZ~4VaQa*E)*+M<u#WOO?Ge+N}tpzdCuf%_u0HOOTO(80JKl#jDp%OT9&VpBz
z^*n<!N>GK0CVyA{mohZ!kKA}6kmR;a{Cy@|DbgS7^IlP7!YvYG80=&T7oL*{ezMHI
zU(|=|4(r7Aa1=yd#L6&O0N(iP8(mzKww0F9!r9^9(RUD$ECD%=k+$ME>9xH-h5n6R
zGpC}6ejj4!3FDL%mDiSxVB_>EQ#yrKornfAyG-Q`ltw*pA|^FAOX_nJX1w(Dw*EVe
zf3<qLGSaXg^;3fbHdl}9-bGlS0W-9gG<9#$`*bs}FWE=smhc(jx8ro`5RcQvJ9}=M
zw-V>xU%y&d8I`*9u|e$YU5Ev&Vn7!FeVlgnp4?9#tvuE0)R*sDv-ePi(^^efXB5Z=
zO`!Cs!YKfqvOnjWD|8WXUHwhSTZ%pw`SEvm$82YBJv2nY^k4-M%ru#Vm3?8!<MR`r
z2u}A^jotpa;0rGyh$NM=GbSp!90nvxl8Pp_YXcNEzRte5bkCa~o3N~v8XFn8T~8hm
z);>i@=pn(Lvt8P7j6g$w1n-X+Ty*sXq*uIZ^^l1%B)qS%6LBFQUoXWmaKH9MR}$2G
z`w^)%R-jOQ85?koHK>$)?F9|5R`Ck%H=hnKjJG@V7n-*QqwiWt0IXr~B=PufZ*2%U
z*V)atOX#e;8G%Hp#~LPRQRv7jXcz37AAbALX7ccEzbiu{8@>lcjF9x|>iIsF;qi8h
zi^01#>NV77KKFCOW7`J~sA1CVWP&aZl`5cc{MSH7rZew0RAq#ecXCEC?Z-KQit;&~
z;zEE=3FaO%7XUo)7j_>!W)OlELdBLr3}ES=8Snq47=VgG=~l7ZXwc`{Mn1V-!w?|_
zL}@36-y>b{Tzm2fom}KR5C8xUJ5PFid^NXPEg{c^=S(ZT#<2v;7ILu`**GAG3J>>f
zk10%=;SIv<44ImXp41!m5||O$o<dG54sh=k(Ne^9t>wcI8omV@bb(R<;3+kCq#7tn
z1G(Zx%sq>nLm?n}n&?~PdW>Vs{J_o&mww?onOnRduLNIsXT#+$!sD@Cr&IjC;yDmv
zG87+JB`A>?GhHXsco|`oR?b_zp!_<`>r__#=j?~_AQPVgu2uvHg+B<EK7P#_E2{FA
zRc~|KbqHgqptCEwjTqnFQmZ`_gG?S1BZKX$qIS+tA6;TxvA&*rVIpz;^c-gv-VQ~m
z42(8YJS$2o2QZ)*VD=RtRqzPH6<e&x*S^qm=v)K71Kd|9!dQ8B_VK<>8-l1F6E+9b
z?l}@B(2Hp!`Zy5Kd@9xSN~M9ehY_ZvsBCU*0^Y6=NigRY@jK&ns-NVH6^)fNiX=^_
z<N4ZJp+XK?&k(P9Xazb8t<A>0&(eM+zhT>Y$-pC3O>%4H_J*86K<1zkwk7DeMiM$>
z)fE60dGVOy@k4jfyb3N#q9hg9$wfY$2zy!yVR&Eq$OXKAd^TdD?E1+gRYJMOuCbqw
zJ|oU_%w&3-bI_~NTM{f8SXdNlnHd;RB>)^zh7L2Z9=^~IV6^sb@H{ma9A7+nyP!RN
zr7?Y#yCDKb1sr@S0~;!NxN_(iX&vgqIE0%!-aOU<ksT*?uE?n9`^ycWAvT{h@q0;*
zwx$w#iF5aGT0+U~#sMc_^)EAb<er2;{4S(0-OI$jZ^z4KDYr+G6kmnx;$-VNF8_>1
zwl7m>At@;;SSULYkx6pW?^%bBe!$9Z1mlFZ<=ay`)P5V<CKRnPK}km=#v<@#;=0qa
zdaYBKf6xVLa*mK)2ii$L)e~17mBekw_4Ube6+)xqd>oIyU&=ITj!%xxzMa^|7$`t}
z+UOA<r=HuvN<cs)h8YgJRfR|$v%}cx&AwY}tq^@LDA?P4pPY2}snuj_+u~rpx|nX`
z^Hs;#)bH-$!rY&yTM_C?QpvmL`S_r(gE~uL;|Cb>RaBKdf-uNbgm&lbv2zL*G&QYR
zo=~H1AR=AKr{3jRyvKm|i$-X*5i;9)x@TtTBTOwrjteIO_S*D;vzi-TY#~M_g}y-J
zx7ZxC^(D(+9iNlw?`Fx@VDoLkL=}F{nQM*D1$ON}XS(v=?}FheF!HC6C>ydvp$e!F
z6d8K(7EHUx6r=O_dN$ds(cGF@{)!Wz*f#Lu5g<@<puJ{#Ba@{549wFve_T^ojtBv^
zW-_0dj8vDUfT7#+V`-atg#(H}{cB2hU&6SI)ataH5isdfQ=8NvELabV`-{skqjLoe
z)S!~oUj*yP+w<58wPcNCqK*X_wYS_p3tk$W?H~VQH8eWaZ$|~@f$Wy^TW2PS>ey(>
zter@)BF|Lff>iG+@<&J%R5cZ<nh}~wu)Xtt7<&t-s=EK(cMF0F64H_?4FUoZ($Wpm
zjdXWzYNH59i*$E)cZnd~-L>iN=1$-D_xq1?&b?=hI|hTn9&Xp#d#<(SoZmU0=ksKm
zfP5%Bbte(!J&@nAUnz8owNe~_h>%wR8<oF%>@WXlX@Pg^$lw>V!OQCE%!dY6`%)G?
z7Bh^|li9a05Xi&LyyL7NEtqDxj@qH0m%KmvI1ag<5b#}#o1a0}>_Mb-T59dK-N(9s
z@PUZU3U>bv*GSF$?Ve@*2Wd!pX{3c&zKvPFu8#8LS>+$?gLvsT=ZDpD(8$F;n6aU}
z-3OrE2g2~}9rJwT)y6D{zq+pa@D@93V^829_U4RmyTEvfq)vc>yhJrAx?y%YJJP!+
zAPSln-Bw;Ji3FXL>k-6dpDH>=m5XZz(c8bF7p(sO)_)eG>9Ey<Cg*~GM)d?ES)TGh
z2^t$Y16xu{lc&IZ$^?elacTsJhbJ#7RTi(bWK_3dgELuWP0hr}*k_iPAL3k;_+6}%
z6=Q5~57E!;$G-;*oWqxw?U(hnw5^)tX}Ii;3v>Jvu8Y#sSCSeqz?hO=Jh*cmqWNGs
z%Mj6R?|@25k?rcr+0xmA^Grmc?3-vBf`G@Zl|%u?WUs0<O;pe2H*OFy0Nb56(o#|<
zf*hLEZ|(1+(>}uPXx*Qv(st=*o6wo8Qc+dacA4DYXT-rp3dh96%tXr6<66Y<Ay?2Z
zEIGP`c@QvOBs=WanfSS<e9*JDp3y>)Qy7UZRwIw-4i0&~w`&=RLFZgOVFbthbV1r<
zSk9WmR9ib10^OhcaC+-ofa1F{l0{@)JdhtscYR$Swu-HM^mV<qo>O?<Q%$iK$(upb
zMW@*f6_RgZ4!kQY_KqhLJ0K{aWY*)r>p4iPK61=a0C2I*q~ou6{$hJm(AK`O*mmRb
zMLy%cp_YgF*;>WHoz5X8Y^!oMFD=2eQeZqg6ge8;6~n?(y!GIPyy7XGzYdv|(up3o
zhpy(_jx`O^KupO9)wC5GT(9bZ58^kqoNCehh~d|s`3bAJfelpa`DWPen(w|gH-bRe
zVJP*WR=qpF3S$fzms_^U;xLQ4w*M;@-^Po@kPmeL)6UqA!R*Q=|7JxQ0|vr8(Ld_6
z+?G9n?Wm*%=Ldf~1}7&F1^lPT{fM4pPq+43*WE%9QJX=Gh&4~zd2P3d|Na9rY@9#;
zBZ}laH}a5KWQT<dqjpO}Wuv)x33`9lT#?Vien!lsC9fmEMY~WZ;O$r77fsih_7C6^
zU8u)y)?l1kmMcByvKsmRoy4Dsak10|p6%(CEYs&XwDuS4pO@kO;JI`gU*uo2%QxTR
zo@?Im5~$>jluEGi4|oRY%{}it6!-GopYWrxh33=gV~<4JOf?wZF^XwAz?gEb-2v8(
zS5jKH2|fglF`rbZ<j?b6>dvaSjZG7MS~EdCf#{KUPLP$G%6%d(Y@BRs^xAox0y*h?
z{>Q%NMWXuIMjIN84Ao}QPncpxJ<j?0xkj1ZL0||#N7e2vD@;DU@qKc@?d8<b*#y{Q
z4i4pBIWA%rAPESAZ5#!ypTlj3CWENmkJZzIW`cd~qYr`Z#LE{?F_*S}MBSuk7H;>$
z(@mwR0NDSLce#W79qiQJSCGw3<P}y2Z+GJjO_U(jlUxl#FxBZ}O~%hQ!WD<J{9Pj{
zqcl?XNE_-CSJjn^5PUtE5}T2?QWePtA=t4<AlT;l4l|hFPrQu*(Ls+9Vu^O(IE_jk
z`G2wg%wMv}nWS7DJbLWPmH8pR3igSHg{@p(u}WN98FmaW?rH|4%F`SoBBfy*(Xb7U
zPh4V~01qZ5mV~IzOUNZ>(`*b6n}^+M2(8>GwOmqr5uE;Mpl)>k0qMdsNPfOWwscZL
zeDdoEaewqZe%QX__}f@3A@{i!hmWckXSF@Ls#cs1`+<UKPtl&Km032IZ~Qun*Z^hV
zC%WiOqD|}B#_Er2>FJFl?KM93=%LqKPJ21=J{fj8D8Bkzfo#-r+5obfyw3=;*624L
zKYJkK-FL@ui6P68v%G3VK?$OgP0rFHHeAPu=nN(usTCZH9lI#*3rVO3(^*kfRcZ>(
z&lkx;F^t5_%<QLU7)0!qi(3^jfq|0i{c#J1*^+?4IdckSE(<ezA0HRj9j_c@W%>5e
z((P42P)yN_fN$AUowGGX$^+1&Tj>5zxJ86w3V@B=y}!9hZDn^tDuB!0dFh<`5X4E7
z;z9?0PaWQn;e)J^U?Nr=h-gUCM1@$)y{9`uD^tt8*XeI{G$%GxhYBmriPBi<IB9mf
z<K4<rX$Gs1&^@0p5`OoKb10<NdG$OI+PkR~FPKKanL1hcG9sb3AWDXrgNeUZ`*D=y
zYpeigXZDt2wWam#$B^cGy#^O6XXi?M6p{P3<pP-YT$aP=$H4V?(}<#@J4QQ$y<f-_
z6j^i!A-k4Ee$RK$Rx9m#rX8qd6I|feRsq7>+bg98vl>QB!BVO=ca?{ejkoyb#OHJB
z5ip(l^X`ltLzeF049~T315#_*5;wZ}gbyxIS)DK0+1HWJ$T#|8Gv}Jkc8d9{cXRXe
z?d(gFSRE9EF9sk>xR`v-W2t5lqSTZ*VDfCaA1uL|9rj0VwG#&gN%xgL^H$Mx924e9
zt`a=9u%O1Ez`_;Lts2q0vagZc#D*d60}5gPbGjIM!V9SNsa;X-^6}UQON3=l*)*>_
z9oVt$6)~RAkVjyD5@#5brIA%-ImIGXvw(2Mr+6YW1?_eK145&de1$V?rX)yD_>q2A
zS?VFS)&o6Aou6LWozwB!uejRJUiKwWtYJ0}He{UbVY0a_np(~LPMWP}n;XzJ-QULn
zK|-grZ9meaRVQntX@5keTol)QJy@)duiyK^LH!c#*tzoExN6gPIcW053S|nD`Kn${
zr=Cuz$6Sl%tBi#Q_$vNB00`DkjVJv&nOoVstOQ(4Io6X3`#?9}D}L!N*G~$=+<jpJ
zue4ecx{QbKcy?uVp<QrPp2R{elD><iM%<MRed|IZ+=TcD-Sj}MT!+{fNq3M}yalg5
zkeBGXrkcyjvj^=Tm_1AsA_*Q%?_hk8_7i`*HOdCUCzEO&b)kr<9^cVX&&MXm<teA)
zxh&7mg)}C9QDjtlk00m1S3eR`*Q0RQRD{UeqCU<MB4~Q^EV2GLXuto5Q3?_knxTHW
z7m?eBPe0z*!V_H%dq^qkD1cP}=LEoC0B!06=8~(Erb<EagzdZ6F@JJKa}AGYb9MpV
z2_*K2T3ohiEA}d{mhxMpfifvTSOYdQjQ1X@!&aq*o-jU_H0}SGQwNP8e6j>Z_o0-x
z;l8q}Oo_&OCXibd!1ANI2~SPs(Z85^Odx#u(UuAmHv)4lWZJ_k1Z1CuS}(dDdbX<f
zd<EPyR0*aIMIhsv_%M2a<PD#0YF5_pXLmb^ylUV%J&u;r)lezUC>l?718GJgB2m@V
zR9*{S^%&>BPwB(U43M3S$_O~pSLpK1TZm>z3XnXvwx4hgnY>&|ZD@#i^om@l-h>18
zTRhtbQJv!JY>mj?OdfKMm);}vIBBnaQE3KM%+0+aLvM06a(+Ix-oeoY0o97a^mRRt
z`Vil=ngSVsQe^3o?}eu{U%#80?Ea;si!0gH<rSV7J=>JQ6e6jD%qflL6q+1XUcpjb
z!Ghq8PZ@==I(p;xq?F)v9f8=UpAeD^Z*)E6OzO|P*dqK9AO65eS)m%+a@=xSl?!y8
zGBCND9T#l%=Nd#|^;Zd+=#N`mynS-5`}v8G71CH*UrWqT&^L==a38zXtXk#Xw}eY`
zb<r#M#@xJnLis4*91WS%76{vhEJ89MkkoCmBbC3G%UnNrQ!EU~(tHJ>I~Dr98)v$a
z`3rM+GQ!_*QcXSM5>VCNzZ|{#u_@{hHLZ0hzH{Q<XI&n^K1ujs;mB3gjZThyU8K>N
z+WkTO*<%Dz4nAfw7x!>A`|BRwGBtfOV~~-9Ux<B*Tl$Vo=|(c9@k(RN^T^U#Hu+t+
zk+m!Wq)gauFQ4WeFdcb?|ApbFr})pGHT26qTQ)SIQ|(I0gp2;kVt)DF==-AuVlPwU
z%!tHf3%&f38B-H8Lm<9{)!<X&D#Z15Pbhs@jt@cNeSHSC_A>KP7hI&ZfRt9f>lvW`
zG%%W|C=VPueR|{buRf?HP-MX??P@?I=3IK;T>Td>AvfP24?*0R^^6j;$|_iz_!v;H
zuPZEjPNR7P3Qr{^-1r~@V~!9k8J+XkTr$XClg;BrTMYEmGB?}z(Gd|Qrlv!J{s^Z~
z9sR$Ws!@zjpYq^z(M(0!<&o{i*nAJ9#AJdL(H>n(g-nz?7n^OvzkOPJ36?{K`yMgp
zBk3=q{pH|$$^Z_&bZB^gjnc4Ki8LxIYvB~rzhwJO>`Ryk$9;=>3mL+nuP?mTc{7M~
zxxuR1>E7K#>W|Aev=c(T%HN^_VhDh0?b`5pu(+9AmZeI2NdqdX5i$Cgj$gGrZXvBh
zh<>CKh<}AgnOf5c668S?EW3Xm$#|B@W&G$W(xHOTpA@wG2FkY~V5N?7rdM!0%P(zn
z#tVAq@faJw;Nw%!C8R}@_8vXL`0H@O6ij($MWX+3|Gd!OhTtPx?=CE5c=EYT&wq8T
zj|M)U!3qR^<q+~nz0w1x{VS<!N)n(MfPK2Qi^+}X#YGay(zVM{o;-|{dN)BG)uR&`
zX%HlMi0gbyAz@S=78S2VmGMJ@(+AfBNzwZS|2WowFx5Yf``2UgG7KDWvrbs$jGMAk
zfB5RgrN>A5ixzi&c2@c)5K>;*z<PWi)s2Vr^7sbR{?H%}GLPRm_z+NTT2zzzi3Sm(
zh^)wAg5*)Lq*~V-Hzh3}gI>D)nti^I5EM_(SjT*|+u?;q{W1V=^jLw;m6APaR9!>^
za=ejLV+34rbAeY6CPLy*1zsUapgmP;{qT>SDARspzn!w>HaQk((=p$_ALDX)dcPNQ
zMYwHF#vJtZS9-wcIuc*~fMK<{`1u$aKJxXA<?QKBGa|L5Wbap>nI)s^Q+w3F{@^nz
z^n<Hs$MsMqQk=j;bgu_9#-NG)sY?B8nCDpR$K`LTtTfHKp-(+OI##I}MR`!Iu1eRm
zVWXVBpXNN9QvDYVzATimnK8ywhy)rwH>y~tg;jqJqrxk;6qE~o$o1W{TM;m|!@FP+
zkpFW8dpo{Y@Q2`eXU(+P%A(H(YEZ8hNul5QR#)mMWa-@JcY+I95akF6v-w^s0GYDe
z)X({B^Otv0OLX#$8q@jN8Lu<rNaqMA-Fko@p}XNjsmU}_4$~q7ZPBT7#m-AS0DXik
zfp#`@{3@7cO13#oJ4FN;sW`q!X{5rE`0AnU=JZS<iXtb~wRe9MQtG-_96;_yxM@bh
zjekW$tL@W{ey{{GfF`w=CoFk!Uf?-i_Q^C0Of?w@n0j+VfH7al#QHZi|ERpd#V+yG
zQX$~Ez)q}rzKDMhl_KFU^v?^oUR6{HkP)XZDWqj636zoMU>OSCBwjN#L5F~QVtbO|
zv^CFyWY+D;RsDPMFTMDM3-;o#aF}!&dOJs4!51nI+-^6qHeSckNFYMnn*SswMFJsI
z0?BfmlInh$IfJap8y5$pC=j9t-u-3EQN~t~KYDk*(FQ1g+D#+{X#>tqmH9ABweMl&
z(F58Iav2K#7dwU~Mu92(oAjyOdK0!HQRCzB+uLNZN+M2dA%a6n20*oT%GJ8OYUo$x
zJ>=g?^IC8*vVYb&gkZ*IzpuMTmv=5nj%+^sbd5G_(1bY-Oa^axY}|6t+dvB7etR9N
zDqpQ99;A5wyT<)aXX2cPD!xBk3!|f5ITHi@!LUnT3Xw{o+L?b|z;JX(OD0dh8hD#O
z^ASj-Tnu@c-c$B4B+>4FTIY5*knu-?`O`+S$wvRJ8FX%y!htn{tc7f{Ma~5h%L~hj
z$>|02#pSc#XvaqM9K;{ILi>%;wig`+f+cj}@LF5mnUOKu?ac+TL6HS$>=@-3$7{-y
z<DyvF47X9UNEo`#XBN|>uT4_)`M<FOjxm9JRIwM)yJveQW8+Oj<%v@zGZR3aH6P3!
zdL;oi_n=M_>|Wz^Nr!}#GW!oj=G~<>j8wPwX48m-!3o18;f}iaY!A=U%(&L<&odVj
z3$VRnR1Tmdp7qrsUWr^rj!afERjV5|G100FiF}P<G%xWqseI1~u&pw98JU&Gl7_n%
z1~+(kQTJ5`i4{%0q0!gF4mFa!1pua{(TlyyXJ6N*?tksBq%_X5S&0eb0LP<}Q?Fvx
zeZ}Rn=XLXH5Z9s8m}l@|qxA}D)PKjkASP0Uw8gf;JqMyG712rS`1CmbUExNL%uROi
zzDR}wz${Min#??L3nm?7+x|ELUf>N9OxKPepIhoa&?vu@e(r>kQa9b=ZtBEv0JRR+
zDmKMm3fGhu%=!T+rcMlD(p1b_r`LZ1g#qzmX16gNX%Pc<$a%KtgFkW0^Nb%hG}$&M
z&svjPUYVZQ@fqYO0ReIGiS_pm{bFyq9ISpcwlcmK2#G#_d+M(jar>X{Ir%=MhD;Wi
zD0wXh>E|hJubCDk29cAqHe~x1+|tMVk&+rj@V@<;4#J3Cwus%%FJ%!Co9>0E=>GEG
zqLahftVb-LxF_iF{*vtNdGb67<Tc#SR~ySeBs<_2Dj8k#aJ!t}>Rx)Z{kCg|q%Qsl
zkVak|8;0FnY_aQYH=YK+{VRg<P`~aB4puE*TxecxJ!fbsx^r3vYOs9~{%g9D?`m&=
zqYfzD)D~qw@-ad%Nn%E*d8Wq1RaG?&Y)jCG?PwW@_gAeK!PBU#%KDmew0*j>eOffB
zop7omDJt$YgeMp_0~R7eqw7J`L(b=e+RW!hp<2lTA^q{J(9$o((R8$QzLu#uR;dL>
zsRbghBQjPMMA0|X^9IVQ-tXh=Vkg8d2r~Z?^sHnXpGzzR$$KX#x^#p3eW|wER%rCB
z?W9SFgu5l3dgZZ>=s{^c1#ra)d6SDBy!_(M<1^bsyBb(xV%pq7Q$$NmK@wrYG$#^B
zEG{XKfP4if&*s_?k$4&L5%t``fc2&J?9CC<uaV>Y&Zvnc8j#KUp7Sw+(&X_7>xm%Z
z9DRX#mV&ymY?@EV)sE(f=pV_<@{dhixdmlhNbV<>zcd)h_`eQK;;ash8y-HM`xVon
zeg!=^RlF>ZrC!=Ld-s<HzeG&@cLv~IP+SZ@x&rHDJ-UO54cDW;bRVTg_iEntehpYe
zvpA+fcyxX+Ggc(!POAIP=~r$<4wKQw8Y_V#B=)`6xANJJHu9W0t%ZAS7^s9HOGijj
zDut?9L!Gk*7yK=V-tsgW)uzU_pNY7VjBQNr{!Aoc=&$bW6%v{BtR8{f11p9S2mhtW
zKa<@!J*rR<Hy5jhoi2D>Z#CCUELz}Zt1&Z5prpI+cnC2w`w;D0Mhm?+YUG|)@StBS
zEQ;j3a0|kyk<QT<5G(~2Yz3BaPH6}P38c0`TEWoyL{^(0%G@*A-mH5uL={n#zl`Ob
zI-r*qm=-TwA#q)TK#A-&Q^n(D<irplJ|bU0q-tZHIcrb(9@>+y&H!osEw6f(kXNQ-
z?EKMZ6lRfyix-n+0w2_9R=z5breZ3}wJsltU;S*53_#1#Q3tEWy1j4{cym`D<1X>a
z=&#o^@#ab>FTqx0dT6v80|<gMQ1v)H16}>fKNR#YV3KtAurJ0o4szC$vw1CuHc=r$
zPtHiWaxa3?u}n%r8F+Kd%yjDTKAinY2`Dj6E-5So1%^lCT%@K#3ZDZ&G>dX<+t?h^
zC&|*&yhYg_^8d4{m>aphJ=4>(O~ty0J$xo%KXbu~|I9a?F-Zuf$(+)EjdGA#^?uA)
zh8Ps5jPt?M?zcUK0f=nlAC%d6jNYZ^`xWF3yvBU0gd$RfY4%Ukc(4_D&ZEjWv6n2w
zv*`y!O1_>|k2^geH8(T9T=%J;4*Xys)mw0$RO`GqkU^S+Ko}F)umAlwmeHFYeN!`A
z$Wl><{7Pxun=;@M0-QwCj&ur{WR~|8g%VC^s<>RQUq}>5e^g9b)wj87ce&fP>Fc4j
z)H3UT!r8}Cfm&g&`+R@=OYbVbXLN$9n!b@Wh>qnF@F17|4%+Y0zt(#`QX9ERfVk-0
zE<$wMT|*k5oPSGoB4QVC?4+}R3J>xTlTB%HT)i(+98^3YnQtlbGFLL6_t?T)r>cV@
z<?n$dRh!*&bKKU`;6kJz)rUGg5$jH$%5R#_xti+ik1xMYvr_TOHMty(C9g%EvbEUU
z&@ufvMsrtSv7eIm3rir0p@u-*Ek?UGAH$LAoR}8cI-mcA<oz5ie<bh<hmyD7JTbJX
zYTD;dUXQP;B8z<_YUGS&!aNkLxh!{0Yl6N@D|zV;CCna*0J;)tO$VdUq2F|f6!Z@5
zx&9I$^{FSFl&Y$n;0yy8?MNXwD5m8XPy9RHmJ~vjFR5hfniFqV3KQ{r0{Hj&CG+^-
zW%}aKtkpkb0hls1rj|{k;a+<P4Q+u|6Z{7V$SWV&CR0wy2vL{*rO3t}A^DnnDt0kc
z_WjVf`MWa#hd+Q#DCqqUZy+tqdOAHW$^Cf(k7pZ*pl9fl*%$e9-?ZwTzu_BHaThQe
z^QPXv8}}IILZ)C{SeQ@sLgG2t^~1ldwzi1quEs#Sg-*|O^iKBQ>IquwEaz8g#?KX%
z=MzHI-ezkt>Ne<chb`_FKAyc_aNq2TE5JtwV8A#6A{5{Bl4JYlft#gZoR@KO7Evy;
z4-efZL3Ac-s&w6x#R|wR%FEWOta2zFJb;niLHp4GMH;R@={gh$yzc(5N|X~YO4Xmg
z3Fj=7qlV+)a${&~o!^k=NgL<p%r{tQf^H*2u{AK{2K43T(A#cucQ)11qjopTS%-BU
z%X0Cz=gt)%Ai-RQS%-|T@=r8x&OrxN5amyK*aevFqB$Qrmd!VwtbwKHyZ27w5jk2Z
z2@z)jK{X;^mxkIDe=|=@B&(T9@fBvOkY-8NjthvrM&BP_Zg@Rkv;U#paHznd7Ubtr
zya<p{(eTMg)hWSa585&{K!%tTXA}BQb7Cq!OgTRyy)^Rym8SL!jmwQdAQ3G}Uop3M
zp5l=$6d?RFTooBoi-#qcqUIrZe5?!;<`2e35pk>M+EHcFxVfp;^SP0|wN^8qsqpfl
z#=&hFn;eZhYyVb<3M-<MrDdcgdFMDXdMXXHbsK*IT8b9kj>dGz$vwrw&cjv1ptT=p
zBbpq~Cgf0I{k^cXPQAe-wyTXSixi%EYjge0|5+16^j4xvy1ctpG+`Vy9Shz2YHk7D
zn?<_kw9--w)BEy>PYQqFQg7nt&yn(W_Zp?iG1<80rJgfxCAto<$l6*g116xlJGgmy
za9|D?fBFjOF|zFI((eUHAz+=Qh9|&B@DT_L?M@wEq`{L~LqSRsExLGCxODv3$-$xW
zI}_%xX(Tea{DMZXn?EWL<=Ch8XtF_jAhz6G%q69U!Vm8NvCwenX@A(6DWfk(ethpn
zY3$jkY554~K0H^Yq-Wx`<Y{o;gntJ<FCfGPzndZYWtolXBLccLN7x44y)2%*NytP}
zy**%Qnb3dUzPy7nYes`G5^v*i5&RfPLXwLIG*M|WpVsjt7l*Rzl-NYmwSG|s{rhGC
zhV2q2E_j?aJ>~Oogb<sk9>zF<yR#^mg<x~1*@+B2p+m1iBZAQ9qw0WhV6(a#7oj1`
zvz@<0`hN##@LzjDjzDOXH~74^xPOoJAIn<nKiI+ly#BwkKK{SnwTY^ruB{1L*Ld(}
zxn!O+)xY(4)8D$?8#DkoMcUvWxF$2kYD%^7;9?C~Zy)2^g4~7roA(n$f8BBf|G++*
zIgN~P2U#k1Y`XjDd7#%LPpED-?G(nE2nrXNI&4roLBFEM`<Kg-g2<u*aM!O-Wf^tq
z>W*vr^UMZwl>)ysTZ0wmUcCM{SOLsoD<*yF6E!ZE{uIpztpVVMSxRMB8!Q6Qa{%@|
zzwBmZ)P+D~tJhy>e+9i^2<en^T{{!eMSl`YtYntqIu0q1Q&VI4#PovxX=||(%GFez
zIFZz9ZY(vS`EK}KyFv;)xxuZaw({3(e<<WJeEI(@1%*YawVH9sW9S8M=iMApAl_E)
zgXhm|3TAZaA^`u1f$ziUFQpdPg>$xOy(=KCK7HK^R(!<YhJ#6PV=K5Se8s?y7DCGJ
zFm`x9Eq8!x*m+yG9OLOPYjx+&G|~6avA6jxFn`9#q4W8{Y@B44G~u)qMRcU<M6NT9
zn|iUlw-VKC<B8!#=%a#l7<EiHlU5k=e+naDg{}W~9j&bN(Da~nBM_FwD#p51d1FW0
z(=H`R5B9X?n-skZGJu>0@Fy=?$Yxy@DqmlaWn~(#Aqbd3qlDim8sR^zshdH^d!VZz
zL03*Y^cU*iE8P||<&#lcxcwXM-!n;!*WTaO*FL-=yF0pj8$<5qj~VcoQMdMBEb07y
z0DYpf#0J}j2Z#t}u0GIXU>rF)R&gMDj|9eN;Ae=PKU*#(m_^qC`fcGiAH^aJGIQVu
zdQxv*JX)H{GF3z*fyrq?Fu(ui4x8U5n&_05tH}3r*>V;XVFR{vH%|4-y4h&u3DP>-
z7B4faKD7GB4Jl1WG%dNr5U@xS7cQHd0y2T;-LIX$mqb()J%h}JO7t_)kr56@i@*A;
z32dv6A(}M@N$;GezS*@$wje*L`e0{!Q&Bi+pv<V%T&F+Y85p>|EOhfW`60u8wLWAv
zEU6Jl$cZMH*J^av|4wN^zB+1jVYAy^Xmzw`NwT(AB0FGg=8bf_C3749>NAV@^L%#_
zv7qV0l}OftwX?aU@%NTlP%P3IDnvAZc%lIEH;I=0lnQ3vVJB7GVUe?*bD%E-n1-`l
zPA1g`_T*5=P>rUzhkf?;)PB;f_AbLC0g9h}1dEH}x?*pl-0G){;dorraY7jfs=$k(
zM2Bj<x(;Gu@c%yY*I)f}pNE)A<tY42fiDJ0)v%9VI9E$Tqf^2a*FGCXUcQfMH=a^|
zS!L_$=;4=@N17mEQ_A~$a=1@Cr?C9|qoAk=TaB3e0UiQ61~#kN`<`!YN#!THIt?*~
z2F9sHZTHrnpFpNuu4Rchh}`MP-;@>a1SVzarN(%Q;9hLc3#*JcfD34%Ir@ioFv&95
z_f7X`-!JF;0fKp8qRpg;=*CLPl=Z-!mp?wYKRdTqZU*X1*j>dzjV|7AK1sDYw~DYB
z%^F4$uZPtXm<!2Ftut-7xK^Fp=o%T`?){Amgn-pf#aZ^=k4*|}%zIr!qX5D^HXLzz
z{4v>`pY(I99sl8w=s3bHUP(z8r%K8GuHg|Sat`dJ)KOFQ555gyT2xriSU?`AF<lMO
zmIb{o4qi;$%dNa~jy#S^;VKOOeom(?+0GLL6kmW3L-0%_GFjVz$Hpnv+Mc0fBPM-k
z{20G&+4vV6ITS;<l=`U)P^yJ>>5(DcfV+@rB|}EdU-NE41{zH^(wPVU{3SGcX3sxw
ze%76>o+%CN=WG*aBl|-yf8F&E7OR}NJO|t^5I&59!Yw5vh0Ti<C;kf46j(Sgy#=Tu
zB1@uZ46%Yf8Zet)&ulAK@jwop%OpKje#EIN=&1J^5AQLcl|_NBQz1WZ8RfB{wzie2
zv*gpO?6cmt41F_5H)J2Y_J>z9t+ly!7hsNUa|g5j$aF3Q?8aPSgC)hqO&)B=ogM8x
zOW*SXKI!R|vAjqVn6l}5{KS1{aq?{^mrYz#)mEG0WQ@&JMn)F1o|+saRiTTg8M3`1
z119PykUFFeFe~jf4l^DylN%|Q)6OU25p+BA_0Q%KgA%1GX}2pkfyrKpUpoaIWP&kX
z_!VZTZY_|BB-EC?2^U4%WT}+<^KGrq%6-66i!Vg_&9c$ofon-B(PvfE@%TzJj7gXe
z{j_|wbQ7|)s;}IRo7i*&hWREoHO$@B!xbZV#oWre^U%oB5AoligTcc(ax4eAO$~CQ
zqI}ZJs3HvhO0FKmK|gzb=hPul;u?!`L0a{Pz-1!+ZNeilcw$#Y_4xt~^l&An=J`ZK
zFEg`D*lQ4dKGsy`YAUw34b&GFrbqYo_QIGwC-k`|F}WvyfHm7P^}fWpuhiXUkfrUF
z)Vb-F5Y-mG`N)zC15#=}==I$iGld7cS3*CxoZofBU;>xp{#sklOJ20oN>Ha3nAbuM
zm+Z{7ThpWe=rO-^1UtXAC$GxvxImsV#)?7|YZTw0=Mhg$?h)U36%SayLio~(|I`3`
zB;oB~ctwq@c3}FCZs67se)EY2YnAPv21DIz(=$(%N&5kCxV>)6mKKs(KjNOpS0tG!
zXjtb6Ox7Tysy)|8jnP)>8y&EkkDnF++j<(I>YL_yXd$Kv_l@tE892yuOa&$(GER8!
z`JKApxghLfcgt|g&>($ob5B3&_ALmj`M0sqT%omzd@e?PU0?Dy+qcg&Sy?JvEHzQj
z+#W-`k6TFn`$r}w=1Pqvz_^Xpy#2&`<);FxB00oWT|-4j2fq0k5wa(QNJ3)yM>f%E
zbwm%_;8t!73j`3Na*zW2HCSa+kKGO<nG5MR{N{4_0OsvL?g(TlXl(2d&Z$`Kh7;52
z19wPk|8V~O+e}Fi&qLzVq+&VMtIr}XtWPB8-wE}-th*~)6*hKG6QHqoF?aI{DV0wt
zav#X#>jfdFZB|;-(#Sf0gMv4u&}^sF30Ypgcc;&2!B_;m?y4#v%9O%x%B<8v#crC&
zT(Y!?Kfe`m^bn1JG0>Jo_u|%TnD^vK*CD)a-2R?MOpFT2i$elW=s<P$xr%5*s2JZM
z(~*jeb2O6$>z%XLz>~pw+^4#*KferzPMzL6R*jY3AcNTxax_!&c;3y>Rz<Y*t#xg3
z@p%?~jY`R)^XH3fJoIN67Byb0&iuM^R1wS$`^Weq9r&_)WffKBRb^U@9`h+guoo!b
zd_<+K$Ou#8BOQkuw`lXWe8i-iJgoT>I)0n`8#kZUI`Mmr1|Iyq$sX<8b0x-yuWsqj
z=2*<`licD!-qU5-)L_B~DyY#`j*)P%;zTn}pJ5<-KWleyev$C>Xp4APyB9mROjq^t
zno?1z1l+(X{baiT?6&t@4LthX-S?>nzvcElI^_NM2h<#ljU!(m8I^qfpS!Y`B>fGJ
z#3jP;XrG|3U|Z_wQb-=NMuNCIY~wh8=34Vo&`yMn<L)Y`;FE+(_BEmTTgbbSQIBNZ
zpPFhK%I#q?JxT_wkrfd@8M6@JNrxk4UW*VXJ)l3d5TB6~VI+DUq>+3Wf?%)%#+I?~
zS-#Uph%j8-mR&;Tx#5hvv<wrKw;*w7qS;qyqDaF~&w6`-s_z%ylDf({=pm!-xMj)i
zE<`>BWC^9J3e;9*UG0)lHQ!%IQ`|RLffz+nR=sR#s&>$h#`6jrr3P3d=C!wTUsnS2
zHH4b#w?5@6N#4=cL;|W}h^X0zw(H>#s=R_SrQwkE(pblTITeRl7fYOu_oR^0I7c#7
z3v9%q3n^i#q&>Lh*``FadGEZKS&xx^QU4ht&u%1<_Fg}|g=@?Kg}9MD1DbOf`a;PH
zIiu=6)jp>inAA+g6V0dtX#-a>&-cOaa{cH>PQTef{g7*vOv*@&@xTx+?#k2b=T~oj
z<K4`QeCpY>+1;E3qtPAOs^opJ#zYbEXcmx?5~}hk3vU}gc>>1ImyTR#<D-{kJ2AAn
zxpq@!E`tVEHM@U~?wIC1E@_yx6_a?)1@IAh849ugJ}L<!pa{}Eeb$8w)^jH=-LcAq
zB|&Pb@UH)tdxtQE6D_L{ey865MNSmAto$E#h9^3P8051_w$MM(>>k6soP4}*z6=>M
z$?p;d{<m6rGyu}Y|Mq8pfBkQi!hdKJ|NSR`#{2J||3BaL4Z!36bJ%Z~|JP&vZ|@T9
ze+}zu8%*v_-wz53f-BLrbq5sY$g#Y8Rj&59P~{Z(xV?o7Z_+-M@%{J1G}l4=g%PM_
zpV`de(Blj>J!#VB_TUoMCG|zfWckqpfvll?9x9dmpSPz$#AK5_ZuoCUV(cNY_lUh?
zk>Ad~H#-V4i)Xg#L!S9t{o4}XFg=JIY<XO1R75%I{YKx_e`zLU`S6`m4eh^8wJ7XO
z&MV}+>PG;Pmi|t{t)JrcSXZ4NJ&w5GZ;|-V5V1p+ZqE-`yb#Fas*X+MYm|WBt(h=A
zBd^GKe|+@+X>(WVD_<5ksy1(80i;d!gFHNF73?<s&l?ucV@eK)GhMIB8C&&I!zyfE
z{V%oSCDz6gCd#(XknJ~=uO$w9YX6=Z1Pm|~rhonK_kR6Y_mr6U;G1q9jdVC3&kI%j
zrl!S~`q#t1qs(`ujm@zRfBmfn|NU<F2anKwiIW#_jOJd{-2d2q19b|22dA6zl_%jI
zdOB72xJsPSzw*7AS8`#hfQlMTK~WKrW_q^hI~J<A*dNj|66olLZ`djRb3AbA8%r`#
z(|6U5Zb%aB#NOi3@VJc}9jC5G#&lzlV6Cn95I*E(i+)lhmvN^<f;c#g{CNG`isZTd
ze?JkZw-16f8DR&TehRXM-!wxD)KjxNcp@#QTCG^>hXt&QE!&Z;rGp>Sqy4Ah!L4^d
z$D}j!OLvR-s~BfLd7|hB<^uPN)BeC_CO&8BS6Effu<)m$B)Gzh_y*(uz2ty)>7o!h
z;b<u+ld?GyY7Q6rbiY0FCH_qOCl+lnZ8%5VcSUMCo!3gb>T$QX&}DaG*ZanyiO@nH
z1LglV-n-Ue^C~8yP?C4{uekl>pIZ?bo9qddou@T+{ore2pzZllohVKZu*MpUav|;a
zkH;@28i5hnia}LKDCtsSy}mFHZa?)FVR=W(Pc+TD-T(25alJm~Q-K^GfuU2~4t-90
zwRc8zLEciQ|7{;Y<(ZGG3!iT{-M(hvT_Bnc583Tf?l{i0NN>z^A&48vdBBX@4Y_-`
zbDu4qcX!!exH;UnLX$arxZa&8oE@^)x!C6=VD%blnw<m;>K&WG-d^20bD5C{!%)H;
zp@t!K)@((ZNQ}4APEIljAo-Wvk0F+0qrkEd3N2q>pWhr#!dvha&G-nd)4yrC-55-m
zVxSg_j-h7dpkAIO{a>z0Pu87gIuRWqvhc=vr3;E}W+vYr$uN1Q)em#jgpO^(2{0NK
zSmb(s-F9zj%v3OI`O;ok_*UhvoQH`Y2Dh=uFR)N4(mMa*`$<(bfyGSF)b?<4M$O?Q
zKGb?@=7*cu5IQMVcD95+dUn{$ZnetDSuK=*7exMEomR*ncUN0MfwU@TC2!$O*U8hQ
zBx3i|rzI^N^Yi2L^Jk+<i#PD7pU0JjjUG4EGCIkmkV78sjg>5VvMe5c4}Lhkbs@Ch
zagl~5vi~7YQ-kga<O^WPYf8T+SUmf0w*V4uOmLCxA-1R)#|5}?7&|IEj?dE&T1UB^
zDrl!JKgDi;%Pb%>NeWt}mOGetS=!ArcoSYLR^r7!nBu-PG#o1y790|6Jb0Vt*?<Yb
z45B2upYm89fyc*daHz%@NqJRQzO&JTK{!3vZ`<0%SdxvZkB+uxYg8voWzT>Q{AWy7
zuWGT|;VVDU45aHD2F+{Mpl-|ZZ}IVjki%26dY0BQ!{J*IRM=P5B<_jgMOW5iS!E;T
z1a`iYjRAIMW(7RU;a^abf#jB#Q10W-s5T)nSz`WTmlD#R4AHQJHTV{v=givoW<-As
z5|&aJ8AM!Ca-q^lb8gkug1%rNiA(y@I@sPiRLm}{#`1=n@AdH9T%k?L_fO>hwAfcW
z2PFQX#H;poRz3(O{jt`@=Eqk^obmhf<e>O^g@KakXeu^7Nqtx0^H5Cd;giWyC;ld)
z8&?e%?Z@}WgucR5FUnZ{mE=4m^$>cQQL4WBDV}-2e)7s!T7QVfEuI*S4S7MxOSy&&
zg}Li0^~a-I{BbD=!n5zvujK9Grovi_So<d)oRqnI6_NyX<v!?b$T{suySGG+j<6PM
zHKg4_KPf$jC@U+g4_1I=`WO>q-juV^ujnK*R`ZRYG&L=bE6M2S=pKD;Crh{><GDTg
z3cYbYkne)Gi-lM~AFy)<`r^4;JWaa>U=QUL6>;pI>!X#Y*U(3;nY4==a1aV|5(YAe
zn(*&FAN|DbkDBi5bNqeyIw-oBfJ?tGtzFEbjt48xdhYjb9cqbALz!utT*8Ce;Kqr6
z2(hAKZxQ`e;uR3?URTnZ6Ic7zO@mt?)jCmjW{>;R$1nGgA9p+r`T3IS4DDiJimSHw
z^UX#}-d+j!b8bsZFCgNwP%h&+VKFg(M0c07gHiYXYc%(BQi%7ISeR<booDB%*^~4A
zLK-GOwwW0`S`;vnvT;IA5}*P>)AEYsjk+j{N{&8EKUZMcRNZSR&Ej-X-T!kv!V}Yb
z%IRJQbu*8!ma?<C=a7-}BI5ZdYEX80e)@9pLw9h`U+{T3p}hD*!X`3=23Vfd(P(~y
z?F>E>(2{+9Zs;Y*rUWku-%q8<m3(hQym<uiZx7gHUFwcl8yZ>yx0dkft~JQe&{kwE
zg|%$4Zmg}X0ai3y%|o*1lk1B;Ht2{e<nY+m#nE=@WO0+~RYbSftyg|g5<@}<)>B_?
zE|+@yGY!-Zo#wTTM|aoz{I<4d^=K{k)y`W#Q*O?-l(n@T*5|JHA1>!Rrk_F92a<;~
zR3H4AnXM2JAEgTU4~@4>Aju%3Z*n-_t~K5wuqsAG<P1!yX+qth6LJr0d8``o8aorW
zk`!1?O*{;J{XIRskCw)^DyXQafRqCXGT-1NBQDM5yt0-X-VOww5F8x5>#M8%+Y6>I
z@~0hD-*z}UCT#-UFVfM-dcFrleHXs`IP*4K*e~jEg3cVyajO=mdq??q9fZ%`aaF`u
zOLhdhc!t?Uffd*GnS}s%eEfq*6rNu^V34uRd39Z-<YL<M{m3O)y7UMkVH0HQN|yk-
z<{tcW=W2+&h7LMJA<yzU_(N8fkw!e>n=%4OenCOhqtMQqUc>USu}ZHd_q>tag(4{*
zE#S)Z`nU|*h90NYxFSElz*kVOm(s<_PNQiXbV_)4jjq$+j-5e9GB(+Ov?fAPE32v^
zZwOw##KDiE(RFuo%?(9+hR!lH$?ds57b&qinB4I0zJVDHOHNk8$-YvxNM^QkQuFG~
z*%o+Qf_3hYCvLt|APUT;dPnuf>~h;~UW6oo7Hv*puLFrXx{^ejgrXpZ+-AD-iFdF`
zIqAHBcGBfBr57(M!#99O<5T&IM{9t13UOrXOEAQgWSo7psFcVmkAW+TUeA!}kTwha
zUPX1PTCCs!LW8&A=4Q5sJ@+u6gX;pTKN1fQctUC3D<k$oynAwU=q(>{**pS*Q!|cU
zm`h7(Hx-trr~Bn(b^dxt*1g^HUr|H~!(ky#KQ>YfxzDvZmpjo;BwjT*m~V8p+b<;3
zTu2dqqpq&L28S0^^T>)z54x(rQhxnP7m-r!yF9vy-JInp(cT@YQ$!V+sWZ{dVdOOg
z+(%GCylD4>2pFqGhlJolc5gRIay2K@t+g8*PPRK7a{STrP(|hQBCkcZCu=V9MokWc
z=L_<S_h+foKjN{oPe89qP;Ys-sj1k}A%#Unw|5><TVnI|&U+(Qs3vj<0(RZKOVuA^
z22ujUniiY2H^KFzqc7mAk?Pjt;62YwS6E(_MMult-g&`YnQ?rTnrK^jM*AvCgRvyQ
z9lu#%T8p0^2v}ZWvODz-*ubG_C7smP>2P=y*n|N;Mn(s79JTrN>s?0<9?eULy|za^
z{XkCAcnT>!xEv38AcftLrR6&h1h(8~Gy(+?NT%IF#HRgcGsDqmWA>TDB$GzP$p#xY
z-tGBdx6~&Tkpj}!BP=JO$qi=<lmSvbK+!~)ARqC<|HuJYj+*7Irae#X$J!|_bK6+b
za*Jaw!M0zCSjXMsU_G$Uz_ah(l&xuF+_pMjqR|ztv22ksBzI)8O41)uZS168ZnOM?
z{Gq16`Cbcdh*y1GU2~1_Jr}{d>r+0*(<yktWI;hblU6N{X;;_wcKkK>({Bin-26hU
zAW9CKc|P}hLDak}Hz<%`0Az}Vp5Aa!`U;8rdAYhYh6@LY)n4_N`(BuORPs^bn$gzR
zlo;fioj$AeHcNpPz7KWK0+o`TDLy5!2EAI|bg`P#;68qKo1((PKsjkbK65SUU2@3g
zFvIO9t=pD{b0t;f#W1hU#p*kLZs$j>{R!bo?e247UR{PPk-X~PzYQ|teKwstMJXu@
zqX6B>6ST|{tu}TxN~^1&$+;vw2ijL)B#^<_!W?ckuwh!1-C!C+E6vZ(C*|@`kZ&L*
zZ6;B@tNv7XG^tF~SIEO)<q3SGZ!H_=J!cRFPJP7kL!ztssO6fxP`lvA`%Qi%oF3^%
zLT0nhFKQ0vEJ{7MF-}y9rpE;T8cdGL$CItNkiIz*u{p=nx!SEwy#yzGWYx~?e=*qQ
zy6_8nS8wi<pKGj=%p}#@+>GjWe>)D4Zj+10cVVc`yIhxM$6qIk?-Ff{;byBto%1<&
z!RkTwx*g%3ckP9{9#+INl?QVhQvnqW9jNi<>5?KHl*KxGBcuFYI6%zwY(R%(e)ijR
zLrsM}ibj){#ZDLl&D(fRD;;Quzvz#@_KTT*n%gCXo*w8C4f7qgA<o(ki^*~7!y6;?
zpfdgaDc$wZn=Ahp5_#%&5-(lVA6fwWE^U;<@c1F0W3%7=sAj)|UN`I|&O(9I(8FEi
znd5u*l33Y-3n#*BzzxQtgJ+;&rh+h$@W&RoX(cA#dv4V04VUFkV9w4LdKK!Z8xQYc
z%PY|rDV$z~0<Y9+P0d6^vO=oHzd{|9eE1?Q3yY{cIE?Q)`wJ$m-m$X9u|rqZi~2id
zw6v34EEnqyub6Hyh>;<hnmb@fr;X8?t~VMDR(Bx3eh#LN>&C|157YU@#S?3jW9#e2
zkM6C~$$s}em^rVuT)Vp8)oooUw-n9RngxYcJI634QH7GBLhikqTT0Zc)-TZLVcKBn
z02yPOAG+cSAsA|ryRI-XXifmzy=v0yfmuOgY<vyHexjnkgHN-$l}SI)@i=RN?z2`)
zq?dNdz4=3h3DdoGUuifwGH<9HA?I2H`ra%{TyRK2jm3^>$8NorW;@!!hfFJ50oxyB
z5NSew`?lMc5Zm?LEFXV41OP~IaI$N(tq$1O@Vp6App8uPxn`egHoh~~wYeDj!Lh&1
zsM{2kc<Xq#ZIsUta#C;4aD1M0^NC~d9YJv3;=}3W`MiU%O#i@uX00ha58FM7*s|uK
z!Dgg#nxiDya=#I;FC|UdVLV<&M1*oiBVKnAslU6IiH7F-_GDy8NiHy`5Pm#Sc;m2B
ztzDox?n#)!U9mVl%tyuU)pZ!KU(D$2tRh3YpoNX(4KR^tBy*Ds3)lS6mRnA{`^3CA
z;g=)hni+ovPtTkWh8Umni{9%3iQ0fp(}AT;cWTQ~-;bllrBir=2vaZEZ}LCe6VCax
z<EgIgdEKLJ!W}dkb1)FcBd+M<uzA}5Ez*QbgYbpkmjP!y$l=?DC6K`ZkE-(cG9(~Z
zpj(5<6>@zk(K*DI^#9fgf0q$2$X~{5Ds;W2Xde@|SvgF$!~?Qek`E3$pY-eN2@6~%
zt4Rmg8B$OqK29oa(4-V(v8b;qM5#^?^Et4tLcjRtHRl8s9p@Tsys>&4lA)h$np-Az
zj$v{98yJe7$mtHc>MVUWm?-jT$qO&08wE0qjbahGm*c=nT$GnmLKGqEP+n0>iaSX;
zhQF|>!^rQ<c>GDB9@(E{p>1%szqsv7`0%qBn~pAcASSE^=#(G=jH<-EF7%AFLULjm
zilsF<L3<$K&t?H6j6EB+%LCv6aas4`v;lMgLN3>)W!eW%;uVvQTf+?6!DO8L0X>aT
z0nivr^!90TSvabToGr6*usWa=^@sSK?&lKAMn%WDoNqUMO;^A$(Zm)aVM8wn@n0=R
zbC2#PERr^S2(Yl?Apyj*NgMup+v~##tvf2f`kNRSr6rHxn^Cnk#M;uv*ZZhT^obJl
zyFiDY{-K1sErm8Vulu1}^TgQf%Ghj)LC8yt-x8AxCbC_@W8XTlZ9O=g9VJ)DA)nuE
zP7f+vpNGn$9d&s{kF?m>KsG1X-ZJlh94oRY8~)_;<h<7_dS!oq=GQ&saP>4Vj8vGn
z5q2{JcQ6n|v-yD!`TGdl3+^T*sM_c>a6(5e$1*t~rjv}EH|l}m;d(xT)fV_3H|tTC
zu{QyB7{xj~JL~HRP6jk;57vu62`=7IT|2LZNcA`w65&Y0mzuS~=i#cvP_}~p#N=Kc
z_aFvS<={p;+Vi#~{|j=MdUdQ|9%}c+?li;pMAc?P%};Fo7^W-r568ZOX>T<f-%%b7
z&v)%e9APN0>hsZeiZa}>{^(7EZ+2=bUPcFW{2Z$cest&l$U7z{AudkBO_T~kLCL!}
z+d$+iI6N}3JH@=#9iapvVAdb{{=#WdkCe~NP2k}vM80e7clNzz%UcG`hd;XXs&8L4
zPE*sIf4aRonT)>WX=tlC3c@SVxS3VpYO+?(qB@b3l-!!BYx48s0&&wMFOq>I8}hq@
z8gzBFT-+d%<3&5Np%Gk3MTyNtN3vI?kb$XSs@4lB;53{_^pjopTAqUzuaG}_isOM-
zu)RSIsgKLShp}SCgMD8AxxmI*dlayXjlMV4+eT@-vZk(Favj7Q44rG*z*G(UF}&Jb
z;xUet>frj2n8*X)sor}N7${Y&6LxyE)95ri0Ax6qmrmzLJH#o6!gcLI_#&RyVdoeq
z4>yaR`Hjwdd^iMi{k=7#D@FzIlIG%IuS3(r(r3lVX`^0=DKWaabC<v#8GDdD`{BxE
zd*<MG_X%W3Q0LGZaY#*%M2M97{qCcM&dJf~X}&Wvjfw{?Fc?B?>5r{PBF4zFLmuQ7
zIo}hqQFH-?vJ{1rlzho-?K~63FR)~fQ4yW1KT0ddiX0NFuSYgicQX_@R&TQoWHon!
zZ}eBO$gjhau2%;kKhAhuHggXch!NV|o^w0g=hMYlaHPAPl32lUPUqL^!d8h?4yI8j
zXPh^0-ZPwN-al3}sF*==OKiRsjfp<)iQl^!bVfhYVRwHXB{>b;3qE;m5u@c~{M`h+
zr3HRmH(ha>kG+j5I=|J}RNR2hAYa25p?Z%OY@Hk)Pa6QC?H&RTFho2S{3N2x0HMe<
z)M>^&nI9r$rG73hJE#)Mw1g_WQ6i?9K*W&D9QZMZq{Ws9QoI;I&se0!WpVmrfy9NR
zZfuTt0W0q<GaEe+zXOGzRx;SqB7_jeNK(bv%sXi4sybZlGFy3S%jpzy!~Ye(|Euu;
zL$7_^%HVtsP=TxVy#yHz%{yI`%Bp{WDFKGAwMj&(#Sb~1xW2-hQ4R~ecQHtQ&pG`+
z`gRZb67;`)<$ybRbwZM=<N5a8!JqRa4y&#^G1|PBbr9Q?Uwhz4K&XDPPw25UcD7BZ
zliT9&9|Z8Kqmjc+&rjbMSU|OsQ|p|S)wSJsJq%M0m(;PJ81XOx*Bb6Z;={^F5dlCU
zmcwGDsTS)uf*T^vnD|2~%HA!27suDui!R05-hTo=tiB&pGbx^1J${TLj}sL+PBf)V
zjuQyC7dh$;1YO<w%xgh1H}320lr4^^Gk<KYZHE4az`czYG+WzK9exI|h&A^s7t*Rk
zUF-WPiXVqdelzttDo+*ysd<+lLYCDnd>_F|jU^);tTgzk=;JHQQ%5I_=4m!IHtW0g
zpMKf(@fz3>?!#N}wMmk~?Bls+X7ckycUXreGuXF%#i=4fLeLWC9vqf7g_+-ZJd|(k
zU?(M(tx~?{NbzNfJYUjFRC}v8WU3D!9lx=jg@{T)<8@S222w{Uu%1C;;|b#82_6Yp
z>)c0B=Ye8J;e6>wuOay#X@?857Q-v^g#sf#mExJDm9<ir#o;2@o<a!a3lxzGm`1&0
zw-#PPp4<Hs@2uWQ=dF>nkP;I?!Sdt0=I+K!a3)zMMrd4evWUS@rouDG=C-MkA&)9w
z3cq_a(q9N;9aww|4&LB)CVBsEh@R&5a-O)_a@NSm$c}$ozeH!5-b?*q`%Cp3a@L!%
z;dvqC3+?*!tf*LkBCwvVcGy^i@wmCpcXrZk%T^u}h7dipFMaf6)aCiLUJBDWpDn;t
zs5>23<;cp)Vu|CSDeVu);P!jIKbxnx3I38Lo?qUSzaTLX)bEMzZ@D|U@N;Uhp{1u+
z6%D$dIvz|;g6TB7axyc+hn6FH8oku3^!hf_Tx?QIDyFzy$mB_z4K6;ivaVi=ac~ss
zLeFLx%G5>#b&4ordPsSK0U4pQ9&Hvlo1cV;%2HD2K%sRUFtHI~>?m=Hpy)#M=ZD($
z9{t0sCig)#(kl^TO;2Pkr<+Zd4!hIZ?!gZPc(xyI8+L}uQ%vs5tkne-dVsWq2Jt1L
zpDd`K9;`K4b76yZs4Dr!@zR4`gdAqoK20(uq<Wy5Y<dz(j`{hZg^0`LIVp#k>{^m3
z#Fc=E-?H!G-m3BZz9C%rO=$8vMYV%xS9+GW-}3l9`Hg}zeEK==Ur#W$lGAU1q}=Wu
zi^zERvgOW}enF=(`rarr18d1g+m94jVMHVI-2;h&RQz5)nQL91um>$KTdtZ~B*%v<
zYWGq`h!=;dY?~JjLBh5*Nb?pNFM#&K^OuiIh@(>#8}h|AFgv8rS!b4DukEB~wQXUp
z#YN~ohn!Dj8zB2SOi4?z3h|Qk-{NQWKjzE?6$JP>>K=UC|2(q&F=5QMh#g@4Y)vvK
zX@|gfmX~&xQzhH}%r|R$`!^RGM^N9VXG+uH054USF|*+9T)oRN{!?GbE1ZCbIVW?0
zL1(;dH2gG+I<LoqM<ESi%KUOEa4*jg5TJazMd-148gfnae;Orj)~9ILgFYB|z{ovG
zfUtE-KOsu<Ddd8bGHiEIL@~+A!i>jE_^~dH(&{^PX)gbccSGYq`CwzE+Dsa%V(bS5
zc6|HiJ<eyHNy*XI-lS<N>!SY;dv6(5b=$7{4p2f`M34@V6i^xl2vSOSmq>SaOG$%t
zOE*Y2C<sV*cXxNM8-1Sn&Ud}<nsd*6to>~t2Oj`&Fvg$%xbOSAuJinz3?iMeC@SAl
z@Dn=LCuc($FruRsUu5Vw)lOC(*vKhr0~1hMX6k6XwfV(nRX^ImJ4Gd`xyq<2Q(E&A
zqup8VPkl|_5hUKNF2_)5PCLdHOuC&<ClySm4F+twQkv(wnavbmeOwY&+1<!T4@nH<
zbfo6o70zOWO-KySpWfM@fR61^3|n15EN;veJ%_^Uoo1$hZFLvwNL#gklD#!yjE<ht
z@El}AkT6~f-w*)Dx4e2+lN;N?TNkG;<vpIK%F;dZyAhW!?}k^#n6Ou{>!<Ax6=YOG
zj6`o9-bG-vZAksNuz*Mn>l~qTHd+#&Fba`Uy-@WY^T|$0S==iN%P>Izy&p?l&M;%m
z(HV=W3)u=Wl`GI-Bk6OYl78`t*l4}y{4ok)=e73pGj56}<l!HFB2q*JRE%R1rSLe6
zdoR7SV;*n(u+Z6?#D~A<e!jjzG}9a_=F9j|X+O=NwbT)`=VY^b8f=fuLW#5(0s=ty
zY!FH|-QMmxmfRxwCB^K@8WmD-=Ni~hXd7ylMB7R0hmsO|#zh1%n+|e%c67eEq78ZF
zJp1LT=o-TL6?0t7U=g=p3KwVxAJ5k&I1@{vidUpQr+_=ZN(6fHxxNIUbee1{lf!y3
z@nFDvwPZR3IS~=Nvv1BUjSpjVk0Kf1PeVbqs%zOH`oNVNvOd8rCM&A_YrYY*Q(v<+
zeV-ooZeL^2C{?K`%gmf8r(S}12#^CJOhBgypuKXGWsM5zBy(r?=K$gw2?ip-6~-~{
zWUpEQ1Kmq&CUJ38BFPVCW(s$bKTL0eP*A}K*R=ZXTxjs;bv*o-XLtl3jE&(S+|D-s
zu92@y4BQ#xTo%OCrPAH!cA3^*YSbFg1HH0<8J*@Y9DrpvnXA;efb{EVh$rJPbKf*t
zEM@J0euINrV@!6w(bea0SzzDNl^^+%q8}HBSCy#eMd7qD7(7_Y=<3RCO4n1dRf!1K
z9RB>xVf~}NvZJE8pv40?ps#%w`iwVS8s@{<Z94L*+uR#wDUOrwZ?A_OU2ZGzrPb)o
z?}~ULmoOY%etdblwQz!1@K}~2=%I%;W#8Dah5gM9G)m-=;Z{uIm&U#R4m(m91hf<+
z!>zlc`VB~bTf27Ot#&JeC|$Q0gk;NcchgpNttXi?$6fOJ93-#uJK0aWFHZh^Y+E5M
zC1+%$#D?T0Kn}=8*w`@>O3(7q28QRU{L1ANtc|O$QxwbqibX0lJ+r7+OH{WMSS7`S
zk1=J-IN_RJ(^q`WDOXgQ`AQDBalpQ_QvUU_)^=$I_#})RT|m8JFm;v!$|(>o#Ztl5
z$eYuq$0z%MtPKrK5v}%GyZvAa9TP-X0e1-qZhE$vci958fLR$w8m$WDs_X}cop{<U
zW15K$b)#@(Pg3-RUobL^QTRS9SL0!<0a`CS4g2PgZc#g(T_dNxUO&AfYl&p!S=3-L
zhB;o2WSYO?p!yeqAkcFG4PUUVBF~BH2ko8;T7b}zuM-h7WiJlf9K`wC4s;^VM&M{D
zXscxz7Z;vvq#xnLAEDBJIAWekm=-D_8u1KUNKzDp(gplnWH2%NHQhXTjiZ|-gxXXQ
zyuSS|TRPG{6cQF09q}c3ZO^bcKV3t)H8?~vqI21e$PNM=P_^DpNZyO@gyYVLGHp%Q
zGEMw)`wm@aOkj9vBDi}xi&Gqcu+z6IJFEjva0Q#f>20HgRn4`sgtUs@+dhd#z;>*^
zZ7lOC0LTOzHI=H<S#O~uOue<3{+!6|YfLtTKuLwTfJrVvc}@)cH{I{cfH%Fxv%AQ7
zDQ23|V7x1E&+AA4#ll5Q!7VZfYC9L9cI|aG>p$;@XY>rpL~ghBmd9S`ya)k&GRF4(
z5&P_?R-HEP>a4=_kq=kN>h7h=-SYW&9&AttVjefMt4dp`DjUlWi|Mt(!_LRsc#dms
zV6_Qd`htRb3;=8}5Q&ge(3-;ud;vI4dxTeevu}!}s5XnSzUfZ&Dl<`*DR;MZAu#_E
zH5?6%faB8=+t!v}Kqo%Gy1p>R%$56&Bay_FwQ}_F)w-K${q>}SdL0q&71ium`_c2!
z<&r1*_IupTO9v2MkiYAsl#^>6nNRXMPK+o99fHN!+MaC&XP}-`n;=I>xZ{JY-x~|0
zV&%+f?_!jhvVmg%;KGFkP4z-kfnQyH<lSnL1v|mWMqnl;P!2z2Gn;;7Mx5$WYJ`J_
zSiGv$@Yqq2BEsMM;|R{!Jq+7)CyVv1dSPKVr6j>nwtdwqqtRh~{Lj^IXvF9Ekly45
zF2~8~^*Y-n#L*%RG7O{`dR3<Lk!?D<jES%QZ$7(D7aC_zFlAFoZeF(<6LWtbpiJAk
z=8%Q?T3<idnjKLQC77b2esriQmQvv`P+F0<XJu`L{2x9s$oKZHLO0Gl&4^?!5N#)8
zTL8LV>{izVph(WPbz!MPh!Vl&vCG*U=YQ9S=#w_ka<!x%^QFQkyd+g(`Nq4JlG)Zy
z9#!#VEDz7j>qJVpxR%yx9EHNG(rjQE-oC`wNhQHPd00yO%8}!;cB<*%Ji9kHZvhu~
zol15Tw0lBdux!FQ9&gjROSYfBO@@548gg@R)|9p=XX&H+4N_IhJ1)4+Q!%?~eS?=G
z5kW~G)8*)*bwdq_yt;B^M-o^}*Ea`d?2-kX2j=-HZy)b8`Pi{!NVbbZC1P>6Xj3W#
zKKd(>Wy<^#XU&@$@JI5f2&8z7=)Htv)}>>`8b}&0vSI}n{$5IAVL%7!s9I-aID6(4
zll;eaW^UsHJPrkUD<j5CY7i34&jMuO3>f!B3aq81A~)n64A;*=C>t9Q&4Z=2C26jg
z{SUlyP$(i5L0maD+(W6dWOuC=DiHAS5tH%QmL<|0_bH8!oIB@Kc>yc~4y`DYE93*y
zhLw-2oLE3rJ}Ly`(f5p@SetnNR67x;84oqqi14_Z=8@S%iF7?Z9O?JukKb?hAS)CU
zr*~+*E<FmQ6FUZaVTeB;875-C1KJFBsU9OJPL4OqU@4)p4%Uw{n!g<KGPKu)%5>!$
zRq%|6Op&Ko4sJ8)Y{8iOvYihm1|Fl`H8$$gyYX7ak-L>+E@P6&fV8A{{A(E7d<Mi{
zK56UYC3(?0rBQf4l)XAhA5xiVTt|7v9QznED2Yu4BnJBne58xX4uTy%bm;ssj=~w-
zzGj@04+t?tF_MLfdu-45tcJ%mlFfo;)1`AU4QCK>w6$9lnd<St#GsKEj7hPO1f|~F
zTN^X<u@Y{Dvcz&Ym(*0mfDa?oNQ$GhfekLAP?5}>d`kzl<jpuKNk#qbSW-3mv7QlX
za`taNN1PV>)kZo2MIm;U1ES|SqS3ddMlC$<g`xFsoQIbimrL^k#ZJEhe}2@h(gC(6
z9Vy}!$?Oo)JZ?YKU3<2}?H*&wE?OFpb|c3oUi)>|qEYI-^9ZrOus)&y*-ABLoLJk}
zfmzE;h)C7GgmhJ}&<v+D+hIZJp0JpS%kYdJP9IS~y_?fkO1?ZaA^w@^#Zp!Iva_|G
zWI~mNpslzmvU*(tS21?E@m%G;V7L)MglDP-I3`t8FiR#k_VdMyvr6X*eEj$^WBSL>
z;cu0`S91;a<rOTz4IA+#1&DD>O?w)ktgCulQa9|-N#)pt<<+P4jbNT-{_3jX(8s67
z(Cx<-3-!?<GFU`lzBf;2<eb}HiHS($7ZhAgy37_(d*04IZ@bAMi1mVe)vOA04&8JT
zm{Lt>qsTgd<AZ#bbOV6WgsntLig3_eAa3K4M<Y}@8w+0?42bnEU#k&3%0g9VG?u&D
zMXmb=7;8d8lvG|NVD<ofJS>VCn<~KG1P@tW##zJ0YPxwKK;m+}9Os{E7Lm!wG)hZd
z*xl&}1L11izfF&9qXt1B0KW{lA3m+R_f{?j<tovN?dBX9^}*6ZV5X~j<)gLq#RVEH
zqWNy9eP-bx0!3F|DGr}zEHFw$R~kJ6Pwf)?#*k=EPu_WC?~+Fwo%}DwQPV$ui5v(9
zmL&O**9+fbSE5+<W{Tng3NuFYxO82Y0}>f2Uj%Rt6fxjQzxgb>atH_HHD|3y(`32?
z;+l%I9NhSjLnKY?sK}<F5p!{<z#i#g^sl~@TDzq9L&{g5ksz;Me~F-c_yFN`L19z9
z|MK?BpjffVrR6o$N*<BUpb*i(5K%xhsQ|zU@__+2?zdUVl|bm7lT!c#LO`TtR6zXT
z;ma$ZaL>{F^)d>8j*M6Sy4|^;b0q{J%l<k%tu!{RbS5Y)*wsZ;mB<n&V6tSGaDMDa
zw-+4#){#NPP%aO&!iy?vtzPv~B3Z<G3tRWGDJ{sy+sE;ak#Anny31P}J-z-|s!L45
zw6fxVFKwXrI~`to{V{jn)k$W6U7(J{g+Q?95dG`qglq`Wg1&Bp?zeyn7Q<gsS+$(-
zU9-U50PZltH&#a1)eGoEZ4D06Cg$eI5VIl)0BS=t#0Rz*>z%fw9{1}!&gK0D+0G7V
z6j3`Rol^DTus=80m@k8;T6~WYAm-*(97oY$?qX$aJ6U%2t*|iDw-yhglkrB1NM2fb
zgIJEuV1Ic)Jr9?@?hH?*$pQ7y%Gz3`(q(2?SQ}TYEtd&rMzd!C8B$Z@2x49o=vD`(
z9cLP?d7d*F4}4PQ;J64~#2hP7c}Q&i)F@SeJWDzUg7NezUC~+J$z?D!nWzZt=gUWM
ztE*W(nfv4~c7Bq&YWP7Q6Ckbntz1W0Aa*w+D`R<C*}}m&5UCogD`-5n-P8Ko)E75|
zqo%gm#$~@t;B?z8k3)GS8e>*n!<o;Sx4yNN%xzy2-L>>hnJ#h^WR>^LwgA!<3z~D+
zXwoQaw0g^=;@B{-M(HlEuNICSr50&a)tG+Ol=^^AENM^U1MF-N_QF176#}9P?KK!C
z*(G@DAY3M!D;{Tf^lfniy@gGRgq-5ywP;hQAIfga#}YJRj+LdYi-9@D-#E#51`M?t
zJ1FUE-OZoj5DcPGvzxXZx5i{K3hmYD6;PTnBu);!VcuWUHO67kWIOVERO9HAKWb*k
z_;$r?i`6WJQERzn{9K!op+LC?1LEXupUA2`(EqmK!A(Ob0T0{Wn!M%N7H3Tu^>V|V
znaP~(d{9l-?espfTL?9Rh=4bodi?<evRxnsedu^|*zQK*MG@2G{%lM}G3GCmY}-sb
zOGSO9sTwNa(xBAJQ9!Luqxp*F58=GXCdV`(na=GVGw&GaH0mM*$c&8h#0h4%sZz}d
zukDE&3bG4fAiEN*bkq7^_AWb7)ePkRu3z;dGGRT0pOe`UG``Q4_8|*T$>tyE@-6YD
zkObSJ1mVop-h(w|lv*|Vy*X~Viba%QkvPV@u}wNZl#>d;G*?yTnUkyAoc*!)R?X-p
zuNo)eC1xPV$GB-o+}y)mTsv(Kc@j6_1DpD5rX%l`6tq~7YMLiz2PdZyAzbPvY<pZB
z`mLHg;)I7pJ9)syyz{Sa-GBHI^j;gt1^9`oKi|e7y6*ddtVpH}gz{z*qkG4@2KTE<
zYL-fB>O~t5RM$p(+#)NVHm*w^W$?0@^ZAo|jHJbaLILn-)t9JY1&dMSX0gkKAV}ZH
z7fF53AE1Q|r`i?PbCfTPhNt{~G-AT=(4vwlRJa?YoypX6Pc~Cg9K;<m{Ed=~5lNS#
zTApr}fr_SM>nWO$8be-<j<LQTcEm{0D!9AkXP~^xj4Pq{gsiqXfzqK~%>*%JnZxTB
zD@DJ}vhE}E5J?V+%1s1bhY{E3@i{waIuyc9!3FH`Ia^1jjZuif&R$j9b^f*os})<b
zZ^R!r$w<eN(K(P6(K}u7EpGY>JW<RmVT#N34^7XJ7ZF{V=+o^h%jhf1jEV|Sl&!)n
zc-f(#pd(8AC3*JhnzG-ey;1KkMfpKZ*NW9&R^~Snd#5iXQ8lL>v^$56J7m`^j4zNr
zErKpUou56d2VkaB%dTZ*>Hi`hOy$4oOM$AhAnQ%_6P@j;^%t`3>=x&<CUV#V^NY9d
z!vZB%%?ay;^A2lT_bIBUqQ|H<Ri+yGiCb?o|9?W||6M|59fhnxsXq-?z>BW2L@r05
zX>o9@F`cLv8sVE=!ekqzH{s=z$vd3=)jMkR>$?Vz1b%iRxBX(dBfz{wzt1S5M}t-t
z%AYn@|9h{w1Vsb^_vAYb?$w3W<Gk#_hB)h(wdJS4(j^)9$_gNdI(HH(cQ3WOLh|zP
zC=sSOm?#Bp_D~=iFbkmB6VGaBBV(l!liae}8_TSH>2RG55ifXN1SU8yDH>RyM{s<2
zQF#OrwkLKbwy5Ty*9i#&Gg|=2eZlnZZF<~WFs)d6(--`v=qZa@GN<2-8{3Z)(UZ#v
zKj0#N=DjLwvilR%D741uQ7<l758%k~f(NJHM{ME|CA1nyNdw=yL^`I*0HVr7k;-NJ
z&lPK>?n~v|$rd2(u&H2)wC?=1g5<gHI!jn+?w3<@C1gBAu{%9lxL~)-XKkOIlZKxy
z`N$VVx3;!%1$m?3y57FwsmtBy$gnATJx7N@SXDYWC~OM4bRN~?FkHAu<D)}a(2lH@
zmu_cZaZfI*0EDRT$LMft(Jof<8uq*PY}61$$N0FEDA{4!?mI2Mw!kj|vs!KsVHYlE
z1OR+;P0RkWlb>F5enDqt^F!m_av=r}j<xno&iHWRHKzPBUs6lZ`ZfY&Lm93E*YT$L
zfxPvnQe_)JEUeO_!wBfpaQ~&nDDY7@r3l8wbNy%LRVO}Vh2KW$TXtiSFAaDmT4hzl
zgQeIMxS4PT(TbTJ0mPk1&*S)0U_CymlCTptuRj%@ACA(rG539W^)k$W<jIqhseUN2
zNhO9((p_!%1COLQG#|c;<1NMO`&iaSfjK>or4du*LZ|d7*J`deNkT6o=4KZ}DI$b3
z8Sx4i5UNVOzPA^`_=9Th{gxzj@)Jd0epYmsR#|)<(^VLxJs;-z;ide-7ICHiSPCE!
zAi+tgTCUMxAl_>e-aK|`{Cc2_{E!dc>y|VMq-)}3d|yL;hT^nznM+kXJUn<_uxpTD
zk_Pl?FQd!*`DUTtVazwCNf(dcR8;U#D{*2Xjf@SYsLX4QGj&%uCsk1M6jP<-<m3#E
zjThIBvYlat#hNg2p?Xq^*nyVMX^PVFPU})<N>ut|irhRNxJJXE)z(3AA&iU}&UQ!d
zf^<09!vx8yT~&vR2n%aE4tb6seqt0n_Rq7TX%Ua@3>d$M$A=TA#ILLwnt#n#R**h=
z^=786xqoVeg5$X&u5QlCp`@nkv+XS%fL26$p`+9EUZQJfb|6OR1?>ZZEMLxdeeWie
zai^4VVZH-nrQgAZYs&*A6enw#kSaY?NS~DkmqTK&-r$uD>ieEw?ulO}XuCBpG%r=;
z(o&PNnzC<B>il2A7Y6&y<hP=Jz7zbPaw{`20k?8fyij#|xoWQe*oY;AB1ZUj9mLfF
zvaz|V0w4w72Fi?R+SFJIyoU)Gjj5^e5R8!ACdQmGC}K=NMm2DC3!MOEmQ}>qeABz^
zp?EcqY2GIJKpbWcN?K3e@9S-pt4n4Kn4%JzHI&$*U_kN?ZT*w&r$$(ixM-xg@r6w@
zu$CdYr>ElyMQL{r0Ix(-6{$akgO|x2W+*K~@fSEg`c~&wH9<|9xGlDVbP-WLy<W{s
z;gyB*`g=kPdQXtemmzBahLXqMc^Qm{!s93{17g$@O~j*~6iq1gKaojUTa96jeQ}&r
z3e;4{>D%>~D_lJsa4+l>+6WY8P``Lp2+OEQ;M)VvT{m54cVWVu>HA^~#toiWCZ8hF
zLA$7^pQEk($tho}#hhns^2)G2$$UvhhhVS}dI&_sa8qm|K+vQe^Kr|JjBAh}O7-3?
zKOA`n#?GQiJm9aUc7AxiQ9uuAv$8rwK}E&0H-DRQ@muISAMrniS@tN-cr7IzF|igQ
zzk7<^x&H*f6dQehw9+xK`_1MCs5E8!_}~h$?W^B|D^e+Ln$qy^<_hM}J+*%z@*E`(
zpnjK^o7MR!A|{Fep>iU%w)p;-em&n=G_3K~Iz#%sOE^}s?Z1azP9psa?6Rf(k%c$B
ztoaOPmk!1a?{wn>RAUTR+feQ~J`BHK8R3GUxG(xnix%8Co-O@;S>X)0cCR=8#5X_k
zw$Gdiz*29ZG5MC%N`^xG<7cZ82EaoR_`?6(oiWt!3!tIJilGl^uG0zvQ;1k*63nLX
z5E=oO?=77IKqcL;&!_4)-o*0&U^~u#T3bMPLoMR{Uq6PJ&0?*rEQ%2zHpWk|S@=Hu
zV^!*>d<RsZpBN~<za?*OzSx#X%6SNDGTR*(^z$ihKTfCw91FI>18~jI$uI(rG$R|g
zFm3mvb<40oExn&Rwwc!@2cQx1axGW%V*Se{;Jb`91gglN%*&T3g=ww~<}gHc89ONx
zdC{`hZ_#PP_H&D#dwRo!P)Jd|a)7w*zEqGRIWf%BX>Yn-zgjGKiJRh=-v1adHJiT(
z^QJ>0;86&SeSjsf1@!a*^WE}b)hqP;7#0GXYS1&<60D8D7k=IpG(4<(N%h)wZ9%j%
zc!Z_iUL>PNo9)^)sO#wmueWm)6iGDL?&WO70Q2MC{Ak%CVE67Dtbe!UQ^*I{-X8-5
zs;XZK=_;+j6`4yb1>>4LBUOCSk?86A=IVA~S7$%>51nUe#L~G~4Cpa~r2)S7ZDPK7
zYdc-dx_W@-(}aR%bW{@Ht@6C;E6A?67n`M!6epZ5zD-5kn?KXk2l`6P^`!!r27{dt
zaoQ~Rc<slRDjP;6oirC>ZS8Sp0En}0SZbN(bdI#jPATP?0dMt&N(T~fr=x@9`A~oY
z1E|^W?T!7$IK|Uy7gMXl<@$hF!>h@b=DemGsQ1|aXY9KJrq!2M`v%RGO=m#Sj*GW`
zQMm&H#O`8b;jaKp;u+Mczf;$GF232f=We#<Y91iCiSys@<J!lcpUq!@35X&>eyS@c
zNOpu&-;f-v&a{8@XZ}9LLG}^@Vn<LrPCY&~EkF#}ZQ}yqJ9R$S(4@ff66TNq$F$To
zq6waDWxF36UG@O~0csp4U%1jZ6bO*N;ov5L)e_JJ?T}94JwQwKhO!tOu}L&zG}J%I
zz38B(nk~IzhP>3MGhY0h4DY1U-YfV<L}YCKTMP8uv2KDzF^EMKUC<kj@Qrl@1BTt+
zGYq_WGzeqdb$=W_m?|?5k8?v2SlPF%$9CuH@g+$x)0Sk~(YLe!JMBDjD=<i++J#n#
zUeWu!?qnT{B!)KHbiB-D)L=#PETww1ZRkgDXL*O%5aSUMPsitV%yOqLQctORhaGyr
zY5|m%NcX~p!@F5`v(t>XK%?2&0JJd!59(<8%C*16NKu*Xj&EP5l_~CxSvW52+;CQ&
zG)q1`-sxX{Wn7)sxoISBdx9>OmsT4uL~4-t+S2T#_@O5fdE#S?-!9R9N}JQ>iam<H
z3*C-H&l{(2O5F&r5AIuL#l=w5!S&FDaQ_l5X*&YQb=lE;Rv{G7j%F{l-8CCx`|c=w
zA!^k`riMoBwl;f!Rk_C{wu!l!5cb9KLZLfSx?zL4lLvv}6>ho2kJ-$p@*n*L91%kq
zfX@zwSJ!rDz&c!g@&ZupViZSB=IqTJntB0&5=0O1xYIcSd|@c&5U?S;T^I3$GEBQ3
zmjX(mUs=!Xld(%X<Vt3y>GCD-y0Qu%e@{l`=dMX_)Te}aB$60wV=A*I500t;e+^rL
zSOe_%V~tEIcm$$MEfj&E73KJX@${<16**AkZqmMYVwUfn=*@bKYUYakQ5IU^$|F1C
zn(6rh{u^$ZJm45s`P`IHnWYkuT`<W3EneRqxhkVT)9KFz_HrX#Jsopx6*-yHOWfQ%
zAu6l~yb*Co-f2KRMUnJIOQ|m^;Zz)VCQ!(AhFBxG2Y|_P3s#Nt%7E+&pqgajf_O>D
zxqI*icwWBXuB*`odU<i8i7j2_l}cBAHG-EXw#)}*aIVm9R2J(%8d2I#WfY1i5ul6M
z<J|LAdbx^pZbLILjWGvB{P8aKH@5PU)pVxOzIj~hNgL`=zf`sq)sMHP5(Lxtbnp*V
z1#30@?_A9nFrJNSkH;M;M&avst5-VRD6AOMhwkBEK28ZMxVG)tn{t^twKz6tvRUzs
z&d%B9u^HU3R?NEo_D$SEQkQc`@7iPub9<J;WTF^9s(p9bS?BbVW}{CRY4m#sSW<rh
zywNJzuux=(Kzk-|*R!$=j*N^xo6hIAQ4>M-yQ-e5Lf-Em8xecoacog}U{NW(_6;CD
z^>y_SA%LuOx<{0ko@r*5Hb*@U1sc@2=P{I0+GVR^L?&OaE^B3}bslh=f{7#eK#C(E
zj9~<fZE@R>!c5ET4=Lk6kFf(DV{fJx=B}>lm}=#vD4xqWVgotImXWbi9Pa5lLH`GL
z7PN@g3~MD6c@4Tm#)Q_y*Nsi#jQ}}yY*W(HNoP{@j7|r*h`_w!5id|+49cwy-$i%@
zD+A!6Eo!JxI_H$C-rCcZCI`chIii_is_d-wUMZk42_UHzanf!JqSqhZ&V2~tSB&`a
z!~$6pTYqJ(VMubJ>tnJ<e)f-_>+pY5<jyGm&|wJJ3T}nW85GSK#x7MmyJ(%!3D#B@
ztIy_8(Y2S_#pBc6!iMO{zwQgZuGh%qOHK}N#X*FbKjXPouClxeXtg#e=&8CXyR#ei
z0&iYsMc=iFnzFUKLDuhz%0X~}?tyOS4(*!8#>S4oAjibUg2(;wgQ2pcnb{A}p#SgD
zlB6GWGKvdbq?Oe4j54xa#M5Oa9XMfm`9$>iL;#fS5#%f6`2#|LsiC_5p1VcKAavn0
zezrw4sZ;v*99jN#(Yw|P3+(@rE%}gdM(u`xb!j*gira@wg~g~zA|oCEgNkrfubM>@
zQn}h^g|vd?lO7!BnS45=?<fY}^P{a`B^~9YTr;Uoj}D!ZKyZ#soMn}gNc|JWAH)2y
zia4qw3C8B8QC0m^&(xWbQFYzz?R}tQ`H856@SOd+PF<MC>gim=-FhN!1ce(L3Iz7X
zHL;$vJkbr`Jap#nTI0-nuB_`UqCGYt?(@$@JJQ>;v?Za?XXiU=kLge=fCSL$;*%(w
z_9;;lqwylIxUGadsw8euPTqo1o;Bh_*eJe*1D})RWdN#l&38`C?Oh$gAATPFJ{PML
z5c%$QQ^9h#ujl6jV7WlKvjer<nM``e&B<b^Jn<3)9Y|B8z4VQSM}Pp5n<D9>EP&N|
zpNYkYt5RYo3>Kuzt(|oNxbKsK5r_|)50I;L89Bmv0omTg6EI__*Iqk@ift+W0?0B<
z|KYx&0bWVkO|3M%gprcjXSfDVjogb{FM58vb4h9LxApAI+*~sgov`TSi9<7C$>hli
z6=_XzHo$xdJ6<-lhK^Y|I$ki`lQx?epV@%kaP*Mk4hn>v(eQknxPagR_f4HflWkRL
z-ep29Sr^;3aK|q#Cfqk>c52C>ZCWV)JpD;z606xvprYN2SN%gG5?$~RPpL?tt+eDk
z9o0i8%BI255byXkQF~QxwUp#1+({Uc*zlAvrg`O&o7y2|3}yews6{Eu8tc%BhZvc1
z9KH~@7%U`L4*TR)Zd7ZI`*}~@0jP?2BN}+vU+OvP_T)FSS$5L=GgT&v6b?lCE+3mf
ze$l!p%gM~fi&5(^`U?~knLaz0(q;mJ01>B<V4o6SJXI1bo-XQdPE0hz(<R^vVSGTp
z=fJJswRW|v9M{ll3!#xW#ABPCTo&TSP29I^cC@w3ezP`<9WQ)F6;=U#=XGF!W*%$f
zWo>e1VPTxCxqz^QSz}zTC9>|<!A(9&VAQ!@PVq(GDKnTwe+ZijD8O@*E6=b7w9W>)
z;y1Se8trz5ALi@-);XreG2J29KDwHF=dMxa^)}nFW}Jnn9B}>zNq-rStUfTo_Igi_
zwl(w!0+efWj_Zr1b7${$8G)s4R()zPClV<A6-=hH3v(5^mL!QL@@qZ?6OU?7B{Q9U
zj1c@-QkBrq6eDXKaB#Vw%3Zn5;mW|O{4(78vW}<AjD7ysP^;ZhZ-lkN^~umMsd#d!
z$mf(PVyJ|U9uAT>nLQ=#N}Jolk2`{Tix-SSfML3-GZQcN=;3<*sPV?-j9YSum$R({
z6PJ#Pl9~`jL?nyyb?K+$RWf8cf<SOPx{4ur_xt&acRUTqOgZ;sz)~DL{3vUsEo*gv
zNpeih-Pc=Tg%p3-(hTCFz_s0-wiX!bUs;Sw027#Xf9p1dH%LBYTaHDZK4X)p?gtLn
z3E^ibFY8Z<*Z~7*)cksCypxiZz9g?!Z`ht`_#|m}HdLMpYpzdid46`+@;U-ERactK
z<i_m5@8FXUao=N~U!0LX$<KBl1L$#T&A`@=uGW3F_*Jx60pOv_gVe52<8q{^qHk(b
zwa@1-1utuXl~IS$@rDi@cc?Jg#tXBe$E-N5YCg5&u#Qt<`or-_-_S9})z|ut#eX_D
z=gSp4Eo#lNuLfSoa;r6f(ay|^rv;6bM7S8r^Y3CHQ6RMq{ap!l4Y-pVrLH$pzF2%l
z0<QXFG=RMdAwJK~IoBQgybwaPgHFg@_OWAo|J&)wSxG4~^qcX}trul*flHf2Jh%1b
z`D6Yo*zfk*e%0(yn@!fA6J`7sQuy#*Mbqv*oj#4TyXs`V2~!t567P2j2Qs64zy%A$
zxvmCBgy*y=j)89Y+#kPJIZ6++gVTKf2Qh)05wV4lX>7V|ei9EWm4M3}Iiw^ZAGR2*
z+yuvCQ=m-rx?oX}1rW-iD5j6)d9RsmJ86KT6TX4wvj8k`dj5HBeMqS*73&y$<|qFy
zqUoNgvOWZOFkD2M{QM0*u7IU&TV8=^E|IRJp^=-_mL-MvCh+hA){{4<u<(ND1+}BH
zo=%P=`QjP&{d@M3hlc>>?;e>w#k16R;JdR3K7588fH_&qDPB-DsD|j(q4O#(=#19i
zzl2od@qJASQ}mw^9{)fY{1-r#e~WN&eH@?>4Wa|i-qe51k)w!lUu2}kk~%I`yHKHt
zXrQ77njTO_BuNNRM2KdVhC0x@c;=MXU*3ci7J>0x^PQqAAkSW2&NKdAfi7ispl&Rr
zED^%lfiGmlQBU_9lf+SMRjubwUDw)BH_VJOuG}un&acK7anpxKlu{0Lz%f|CY_iGi
z01Gdw^s<j%jKb7m?psc51^{XM1M<<y{#p%#gnFZ@vbrcahHd#Ur_VY2M7;ZXO@{8O
zV0$LY#>_z|AtmH%X<oEY=BqdxTQuWUZx}ja=fy=+Q}Gi}LESQ(_=8IZNTK)d-!5>7
zF|@%;XuYoPm~9|7{#tCTZF;aE4BolgC9#)IoOyJhfGn?MuBs|?+hc}<T>#F7W=>zw
zzjilMBu}%JGVrM5gE{+{a@}xueaNBRI9i#VonGSDY6I&@f)N0&r}^y)0xXP^9a@;k
z-0T@CNKLr9JzDa!ttxp1?*W*<Q>RJFT-uR%S4-tObf~?h%IPp4))oT6F7vjLzL3KR
z(8*yvJyPzsy+5d&{_HXHU*7adQ#~n6CrcF2lXf4^+c#6JH<zUT1vC3&yRPjT(a~Tq
z0}=!*)8Rv(P2xb@G-~a(bKVkT&gbM6#Q|d@NRdj>^5FO9g=jw@jH@@>7c>&u1>{M9
z&F4xq^*!ErPZ1882SdW}vnLsh%42q>UyCFKPBv)mlXhN8Xf{Ii4@v06!Els}_(i6%
z#rOi@HGoq78%GvhJrPsd`B}dpj&mT0q-YcT(y4PLsTL^N3j&+=<{FYf+Jgz7ileT$
zp`*OX$J%gDJApM4N~rZpvY*79*n7vU^vuVPvDZ!XVIZJS;gwyi&&6Qz?e*5^k2%1O
zr@}0rbF*1EUI00HIHKgDqdPKsSo2E+vyG^bX~!^!rCseBwa4q=8$XKOw02v`?M>J6
zgUlcv6+Q#y1FiyOkG`eef}GCmB7LqtHnsuc{`4fEh)~!K1l;Cy1UvcN{jN4w>ui)P
z8ET+a@avoIcF_2sm8aRnhsXZE#b|UVHhX0kf%*`fyMu_vK|q*h<J0uiUbE6uaIca6
zNghdM7y#)VtVQaVq|`6fO7*6Au2>5-qwlu0>?Uu3XzPw$-*9?~Qqy&01*btwtf%(q
z)yDUZtr^a9T0g68sAYwFXul5+3J#(mCH*vvN4sRQx_=NM6T1tz&;4`bKxGI4N*w^M
z{)b`a{9+1x8!*6#hx1#042_i?1wiJ1`b_CQ9YM}Q-<x4M2gl(N7B2bG_P)7jVclB|
zah{ZR9!CWgjS8z-c5}8X*_d?5eT-F|UCNKIg|SSP+F@fn2)(rW#q3tA*f1X^3SKYl
zOx-6fq~$5lD_+-JMf#`i0<JirX%8^dWJr0a6;Zh<!$7nV?18pOR_H7ql)iOkw&HZ?
z_vm+qcWpsnPoIo^^N2bQ^eAR?GI1D!=LqVx0Xi@LhEwfD4DIc-ZRa@eT1?G7{S;&p
zf`J7XRXFOR4kuI#q(b7<8g2UwUDbP5%G%3MY`Gm@=hcYH0td{oT1G;;e2kQ4u2`kx
zS_fcIEA-q+&_`%i6QM%DE=4ctVeSrA(Lc-P8yw(5Z=Vn)<esd0v|F=!W}3Hye>c4_
zkQEpn73%9*W<Es(wIhc2*kViP<2)&|KpcK$VP|2^1`zKsA5O2Mpr-`z9-3p<_y4ua
zZN^{?ZxaX8@^%naSB5Xupc5UrF!2*JN+JtNBCt(?xJfx&0C(SkqM6K8mug>C+Hi^o
zw-9lEoKJRV8@8(1Hwx;g?y!DI01LIlPmE5^oL1^u5l=WM^KypX^?wFgZ*rM-J3?}y
zjp^WV8xy$BEL~bKItDe}_LvN~V%qQ2U<rH}mcB49rf@wGCcmtWhlIt(KV4rk(bg&e
zYI^`PRg;1LUH@(oebm*<$uE3u^g(gtXChg+!*tlLgxx9@BL^qF?y?7c{3d~_=#s>b
zHzocX5Q{zO!(X@R%p((((QOez0{cFEE1qB(%;4!GhGryK1+_MeFXP)2)4GH15)f;K
zBME|73he1NQ-P*eE7EwI+io*_BO^+UL}<V%5E{V*q6Z>^el$P<^c!6tALQN+2PNXX
z&;<ZS{WV_Jz{iVgqab%-UcM3XwK!dv1OvsU0(`K)^tD<7&M4Pfc#ysbRLyQ|<xnq)
zd`(eM(y^eGttcz{kXaVfzwIPAv1I{Cj?6V{fs2gc@6$MuHPQXBznoZBnd8i-7Uu(&
zDP_p#eY>)Bsb4T}dX;M!_O0*ZHU7dsTQfN|cLTCyuyKsS*l=&$U7%V~ESqyD&~F>N
z%~cv-IpHOZI)ASQ`JX83W9i_;w!XfHbIZ)l-f!RkITs$@Nfi4Q5dx0d6rc|!B_rc>
z*q!Nl;|zFqJxz6J!3oSz?$<K>{H`ODJV4>eU2osDbiV8usBlwjQWTM%lm`J3su?o5
zRWZglGAD?8=bXc(j_u8kbLhLoB~~X{k7U<oYusQVLLpbuWZ~PFS7+S?i7%Q8^vhzG
zgwWmoIAMmeffCSpv(bxENHP}piLFLdZ}g6{-43_Y#rAFJ8{`gW<YUW6s1^tw1=BdH
z_9+@w4kB8X6Em@tz<JwAm?0CVL`L_LerKqn&?*qPJ{(!jya6)xZ8i-*<RM9p_2y~~
zGi!eh(NjhFmKPX^dHo(npZ(NQ*=;Y1tP*{!L<QwhL9N`V_j&^||F7g$$g9`G^5UFY
zMg=i(>Qc%*ppWRTQlmZ+0h(S(e5CmJjmd(oQzH@+Fd05hRN!gcY(50;8Ze06yc>D1
zS$D4M<5`5w+(aK#@?(o27}W+jKm_E^By{F%2baAX6c=7&i75zgtULq=@~%$mY1d_N
zAB1%*6R<wvVFL^FpWv&@deEM(2Przifqqd3K7io>j?aAw+%HI}GlQ#~V|r5|{n?6&
zo>Dn&TJLyV#7Ho*BnX5lBG&riYPHX_xYd*39~l|t72laYhA71*BsW;lQFG8`6l(H)
zG}`-2Z|cG|dG1hfw`AVP`#w`<GsaVZ%+QD#`c~*{AMLm5KR$l)K-L`-Nf5;2R+-I(
zx?6Po>i-U^IOWx&miFEdeD3q_3$mo9H}1)7gb?sx+Y{~u=epFvB5)o|YsF@hrAONb
zNg-&gDGNT|7@07I$)iRp;x`k)`>nRp{79%U&pOY@Q3#&1GYlbAla29{K*3f|r{3$|
z>Rb7?mw86jpaJ<0y)6W?B9lc9=C34TfJ)tWKx?N!(J95(*XxP8SMokX`avxUFiMef
zSc8fTKSolv*BYjHt$yApr-Z`<KH{xvm4Vd_h)zykqaBl!7hg-I(YFRdn>>CjBp)$)
z#a^y7osStY$x(X?*O$#nO+=>Vrh3MP*P9kVtc<gHat>~aRGD9S0gK22on{Q+bpVBN
zL)m<V6peg|HF5xOE=Bhcf$;O>4BeDkEFWUR`*YHLL^^<$M`ch-!hCO?(74FY59IIY
zDvin11(gFxFp*5EaRI{2U(f;YHDrF-K$IMF%=8+%snPBEJUbE}U#bV*NYCh}4x@-@
z7tHtesh#s&<Zx;9%A2y{(!9x;k=$ESGkP?}xR*?{RW*Ehwa(*H0LXp_1|iFlHV^|G
z*8X0WpS>(PeYZ=3tqd?E)EqrCBhocYe?;0oasG#6rtW*X{f0pDnX(`+MKv$|5f7x8
z$mxS@4iI!hgDDCjp}5`fj2MIY{-bSMNG_2N24ZpKRu9622tvOxvIRNCW(0W%aEn=e
zd;L7(eRP(u^lRbH^|rmK(A8y}F?B-i8}KIwyQT>F7iQ%QkmQ+Eiv>b)8q{_^3#3Vr
z!+ZS6oPc~^Lf+#MvHbR$GU7djZ!PF-(j2M(R+S<#Y2SQG8w8UM2pB!b6imG^p}={H
zfM0f>lkq6I*5zz+=iSNOWJ%%J5@la9mut~A%Zulfn+s2nWnD+mvV<;Q=tgyx(b5%5
zbahvhykhMiqM@RZhkrxFCE;qj==35p>ZC7?1t+KWKjU^E|9&^Z+-L0pf)N|Y_<%@B
zDe0K%qJia;VVK>7(3B3UN}DQmyp)&;7S<t(;N7`wDC8Bc4GY>;m91*GSnwyWYX$n0
zDfYKA4Ggo7q|OT6JW|Fkd2W+Wm->9+ot*7W042kz3?(Z*ev?u{Q|)}{Op0yr?HjA<
zP*WG~Y)RY)5FN&i5u@i1M@S(Uck`vu(L!EB(n6e@&1@ZpS#7pUSa#PHyM7a*3PrO8
z+j9qT?9My0fD-O6m)E8xPCOOEO9F7X7tYX|QcL1sq42J!PyEgvdfX>q5H+&9kIZ2q
zO?1ESYySDwQU-7e#w*vl8^(3Qm9}^E_V!jXCZ7SrU>I%U4qai7=9r5|)zQ&(nmf9B
zEMuPi(uhP0pKIkV2k@dPQeh!fS?V(3LgrU>TtSf&t^_(zz)ek~C@rmLxwN|!uc9%<
zTGZ)DF8l86_UgMMwinRlU)iJU_UF=}OK*(+aPKSWqGjF99HJs%wZ85rI=Rd1)e^@a
zx&p3ezusverRP-H1j(G4VVZLYjO)W72JFUp9o9=?3E8{l(njG_?9tx*-BCQDuhV1*
zs~(<_3FJdR2%8nyW_JmfNJkPR<B{}Bi+O6^Acn@OH@3^A0&+Yc7S`o?JoeQ0oq-Yz
zEF`#5SU%!KX`|%)!UM`)Ir<n;@-IR4jF5dx#+H1Ke##*rLjqB0*7_0(x1i(wp8N|q
zhuN_zxSJ_S%d0be7$+xYsM>MA9R;>@FoP7|iUIO#&=kb<7l0_8ZndE%++OH!8L1kJ
zIzx@&y)@2VO=~NC@aP-#VRDPD$jB()-k+uG+-Xy2Oc-S_CdM;Z!=9uk|1h~cFdDs@
zMIqiDWN|wfEIrqwba~VbLb4vh{s`fIhep78vVIH4|A4#LW4|OFUOa&r4<eJS_po9w
z0?&PjS91*d&DkPsFYoD5UY^k<YFvMr>Y5LatNZn^k0BE_Ax|}T|J)TIA04@AJhi_|
z6QHp@HXwF9iRC2;TIaDFy42-|KfUZOj#LARC+}@VYYQ6x7eK7irqi#&9`+|XgP-pq
z-(#SgVMf!gM-64jkowiB#ZZ<0<OoSr=oo$Jz()+e@U4-HXP8jtm-j#6{b==%4PJn|
zG>mo=UDIidu$t>_i^vmEEJ(SK-|&5u?^4pHcNdP-dmX&sPbuW!@ALFOni3%J_&!t<
z)c6Ge2czEC&3|z;6IlcFN5kRnq9UTEYM&lVo><vho@>uALY}=T-|HGIjml>`Bjz0F
z9^IP{AA-F4W{wUy*E${S;CcC~>?q}8=x}s72ZY2{Sg)TXNE^G)VNaJ7Cz!8+jv4;;
z(DVAG=-{SAPUnf1V$nMK2S7V-e_b)!&s#hJg^(S91hOw*hF)$zP<Q2oa!lU5G9`c<
z?+v*Eocg=qlvLx*65FfU9(;xM_4?#E#_xT`JH^OZeJWNAmjn84ai0bFybx^fx#@K8
z*dQJqUs;m(KfTRvcxUqfq9j&pL^gPdkDm=LHogFx+)-2|k&l=eslz}#VSElVjnC*X
zsgcQQ-RPr)j_+Vn0_r;=0z|NCLAHN*_Ujks)%w289x{+yDJC+l?T+Ix9G`y!*>8_d
z0!_NG!}GRsT%InSL(>E|IFI%NNltHc2?qyd4wVczu*OZhKq=eQSlF1NJ9Jvw#1s{m
zOzw`VDC~=JS7fNMIFm*vKPt-0=E_k-9IQrS2LuGrfaXSh0r9|)e$7+)3eY!DdJ5Lg
zZwLr~b%Dz=Q;V_!K-KH(JDF664$S0H(NUDy83_rv4?KKpovcKh+RD~OSSm^^g+T?P
zsCZRKoo}fGg6=viet{<AcH(t?J>QYy6L;1Mrn(a#=;`m5GRK&KKtO9^AUL#lV3Z&o
zAN)#;KRG6sr6w2Jy3z+-tftQAl{?C^s#krZERa{$mkv1kSIIYR?A29JyTfaLe)qCi
zF#|!Ak7ILNXWKlx^Rq=~-}hjz8}x5p!5H7Cq=L{C&_MLym%A^a@4x)BxBvP4ulT4x
z|MY)^2mjk%*YC&r&$wdmUrKQIk9uh}^Ur+)bcl}CMTvEI=$Anj_H7XH36djl%-`sg
zJtK89gMfqTjOBXswy;+xO&&=7i;I&rFg0V&uzyELcQSamIi$GDIi;M~=wjcy{1ywz
z5wyzttTkhwZH5p%E6PrXf%KIkqa`&;gU|pRL_qPrv_-bG{KjQ-smIsJL`WA5GCcL6
z$n{jeFYfQ2K4R*q==+X(0$e6HrBFldOF+12qvUzu@vjUC+EQi~2aK3B&Y!%JKvM^}
z6>T#emoX`A!1xKifCqb=vX#o|5+yF^bc{&p?{PS_j`N;X!9AHtG6nk-A_NJ}WXicx
za%>({)gTIN63(HTQwbn}0wLc_Mq~F+O~C+KO<F#1?0!}F`wvht`>z$*1CRCU$nXcX
z26@&dbiq)#tDh8Ez}XTNDL)E4*<oSV-D5Kg|0X|=27=-LbII4nzLW|0BMCooIom!;
zlj#894Qpgk9V<s$I*>h5!>I!B-h2<Z@{AqHF%SNwkR+(5zrTEcN;z=(XhHEXQ&D(W
z0fNViDuv`xV;~Q0(L`$oK!3qWjv)N~zD1?D)8%y6Naeb&Pf}Dz%X#*O@<my+x%@7e
zgo5PDieZj;JOcP6l`3g^&C@G0e*qz~$C;o$dMUs54QLMsht{%$ocwc@K~N@behrJ-
ztt4#~Ejl;`fX&oF{r-mi3(hRHWteB};F5Y+0UTN#D}cE~9{u@+42=)Ki?XQEp`t;~
zYo|0r1D;0+?@EjUJL^A!*0L4AFhYPlFAX1xu9*nc{p_Dw^!{aB<vu!u1mnAuq%jzL
zfbE!v;hm<vbFLUz$VTbnLBX>B8=3s~TWZz|OpNcNUcvEl^Kizvia1>OpL5GN#$!QO
zI?C{^^hQg2ZX?kt<io$Q>x@Y%zl?rQ&S)xb3#led`a1nABJ7l_%3!uURa7r{bB-Ge
z@{9ZnXbXXh*||M>W1CT34qJ>2uEfLf---afoReDH{W<IH!+>Dt4Q3?29s-_n1jv13
z=%0r@PryC#5C@^lds$3X^vV5cV-9r#bboLuyfoBX2q){(^Y(l(y(El@mup;Fh*(&M
zq%>7kWl<pnrrjBg6CkJo%L*=r0SvBYLB3?%41gjS8#$UzRpYH2E!ct_8t+>MM5L7}
zBE;0Q|6`vY^p42^u&wB;4D|`y;cw+IiOGNxYD}Nj>jZpFGHlVGnA8caQnyb3PMh4&
zDe*pCMwomXAB>UKRo&TPAy6hlBp*I<%n}5I`<1RA`ZX+}Iz@}oppZi$xW{CnSdJ#s
zZCXH-pN^IEM$i&BuoY-HL8xMG3?U)I!~4tlXK&_PKU({D8cA@^{k_~ZvV$$+ewRT1
z{kEXF?=AmXL;sGC`t$XF;)nk;fc>wKsek>czt;cz7w{iZRR7IS{nd*9zw%S-cb|jg
zJ^EvIrHzObVE;Ue-;aNpcEKK}_2MrS_WacC;nV-Tk657n4$b;+p2PpMSN;Fu_59NY
z^=AkD^W4{w`P*oC*YU}tI{qji^9%qVp`VJJ(f{+`DdKx_qx+(?HLw7164fx|iN)yu
zHhtaDih1}M;JeDtxKaHiS@Yt9-`A95fI%cDVf5r}y$>F1EM14!ByV*x_###`ADAJA
zR}+Q){U6}i+Qc*we}Nw#t(Zr00mh8bd|BsXNp-o1RL|2`e8UCqWksv2R1B|z)uxx9
zV6kMvMj*mFTOpS7JA{051iw+VC3%RnPv-8o)P87(qcmyEV_W8mSev#wA#m0bBYTaD
zLMTp`n;0o8=YPlD^koX2<L=4R#R%Qs7vl#d5~=nJmjasR&Y$)$d~=^SRWvLO;YM3j
z0h|@*#flPo4#ywXYHrc(g0Nw3z9@M>03Olp*)^US4^|3|Lq^yF2yW}I0vR#D1%}EB
zrfzt_B2H)K&u*8X?{fvnbYHEbR$4o{um(=VAMt4hOHK=Pb<u+3^&ym*Fv)%kUrk=!
zdS!Aad4}_K95J)SB^cX+V&K$nRQ$FAXwcV?As&1bK&;|6qv$?&kpCz*PK;BXA_jlm
z5Or@#Sd@RKsVk%%XAs2O%~kJ$Nf@-r;2=o)gw5=FjXhi-@lEAkjNK6(4x#`EfIp3k
zjITKRIWo^`)=>M<^@B`G(<a_5NT?iTh&y!ii;<TzpK-n4xo^f+u>66u{*#1rdcLFB
z^^hxNkzr2B3KB;`>-NlxUjw7pLu}86KMjh|Cv;pW<-Xns8thb|W2x`BK%#1_4T3mZ
zka*vke~}&H=M*U48=nF!u?ys}O`^8EJb*OA8ZPqlGjEq~GL<vCwjF_IqLma?B?ceJ
z_~!O0rx1*r`EaB3%)-77SsXcP(D3*lfIU^{sz6@D^Y&hc3p*qO{8^5AccHc;?A|Q^
z5S0^TDLZsgRyjRU?>|~A-kor+zKz~<SNo<t_Cqp4k#=QuB|+J7lD*vW%#cTWG;O-x
zWyMbO?iDRm6W@<@2YSX~w`d}I@JWGfAT;N{1bPaNAVe>K9K_<8Afw%4<56>K3-h(r
zsfk{?;n5d5KNd$ACnzs#DV8RV0?^;o**_iNFle1FY3e3i+cjt~?VGq`E_O#t?xUqL
ztOu(w5Rh+=nbv(J2N~U>*XzINs4mXtecGl{^j2-rP7Pgc(tR@e+pUf?t_z(Hf~)E{
zm5O4ab}N!|;1<~cjIayXg>3UzIdHJ4-Xa$UOe9jda;fh>RRsK&Z%DcRe?i7{f}h&n
z+9AR_Y}+|p$*=knky51DAXbrSsi9aTI18Mco2$6+UawECQf?<3oqG#%Cng+`aSFL?
zKNd%L?VP%wiN~{Et&T+WB#nK#V2U&>QYp*L$q`W9qP-4)QZh7s{kneCC(19&O-)}4
za)`@z`wFM*3N<Q}YHp_EZhAvbUzZ&4`%2o_+m@7-86EDAf<M`{+lA#KU?B*S9c1QL
z35BL?Z0*dZs`u-UKt92`&?inlj}m$EMdk`UDI+`kXsO&Xg=7xo7WXD`IPQCVmUQnF
zAp6lWu?m!tkZ*chsi5zLo>)6tQfMDm+_i(?&$jmlTQmb^wil2wAs7i^r=|5YluhS`
zdPRW^D_|-OMpTh;N5I5rbo{l5oa_Ju4<gHYf#5-oi&nsB0*1&fgIx1jN5<#*^C^SK
zD4Z2<-BH2#Adrm+9EWM#8!VPQQ?j+`B)?v>Fmf&&7Cr+r$Hl$TbXkv5@5fqi!PIaW
z*?R^G?+su5fLBjq0R(q-(HbZ1&<UY$gE*)at5(qGBjRyvTS10=?-+Gy^M(P#x%**b
zH+4BH8{S}DI!HBFl|+C5eVQO}bz=pbdM1OjWx`8-E2q=OCB+(-g~f_GP9F!q^BU?d
z_bs<((2UY;xVc{X+y-ah5`y{#0PuA%g&pI8oqMflCWV=djFq%7&sSALIU+i)%4T$(
zBI4$bhOYRH>q=2bmWqx|T5@IE&&S;6Gl5NaRDzn4)<C5V`mYpI!Z%nlOjaP*T~S2?
z(6X2^B;PUm+ia_4q&A)c!X|j;U>dBpO$V}G)zn+I2sVcR(GvnrUcff>L?(H|zz`Tz
zK~WSLt(el_)YsX)KUnA|2JZ?cL&nJIcO~|t1JY{hkftp&OM819KE#Li_6(Wj!=kwd
z6}-8!lY`hm90w(R^bqlpfdAvgWD}FJqNAJFTFPI<5oM5et_ace8LyTb+3fAsW@^qF
zBXEi-HG0S}9_8Y~1?q>ERK4D#Z)ynk@#r$cs${7OK*?4aCY^C*POUDO9O$*$jP<k|
zU9EoeQxE~vIdBjVB2ORvD<r8-gfv25;@S4nf&)`sPG%wh_@EopT1arzMs@1zH$)-a
z)F`k-(PWX=$7*OD<b&yE&7aPzQcWJfKF;A{e)7xffhVsGFd88T1Y}F#qC-f3z@VYo
z*$03wFI$zxptm#@QtMB-R}T9gKy(WEusgkBy(ZC4y9>22*^IP=co^CWXg7_DH?P`m
zx!+m!P=W^3{&kP4a<+uJ+C|gZ0)SkmxSgI%nkxWe-gVGGqm}j1I~2m7Yexpmo8Fes
zt<7;@d4&`tlnla}igEk};-St)hK7Qw#?F#U&B_gWrlQtcl3Sx(C;h&czHMU~n!CgV
zY{tF$V@26Zl<$J$N=&b2J^3kuh@ec=7e;$@CfC}k)AI)!Za2~Ol?Cd<aWYUkZtLUm
zxZAf6uwOcr?aYcErasS>le1~00t9_ESN<g*@8xg5Qt{oVtd7q&z-L<F{AH!)OK_W;
zparXp@s#PXPaJyUYC2O{rMaCGwojT;c&m^-v_L6qJ{|x1>gnBlHQVe3V1;AzC@Uz`
z?1OMwmo(p?SeNr()R6Ve;&-1~^ic7+NSL5iT^FDCKWJ+9eQHiira4s?yh8(5!6WuP
zV_boPeOBb%Z8i@XLeLQ!-tlQ^)S<Jv_z`kocAxs@GA_3bP~3l7?Ddhg7G3tRWMi^w
z6L;J=vA;!tWa>thtu}2ekC>0gPP9v^_n%oE$aKaEBdfW5)NtGJ>Mkf6a$Y=cy*-FP
z3KR+AIsek3MG7PR_{T)eh3ob~{+`>-^;U|8`<i<Qk@O9`#IN3tJME!ekNs57$1S(h
z^{SeBJ!4ynMapZ7PoB)WciZz^!$Sx^3WKNdG>Rp^@tl;*&gAXDjDC||^_S=+9dkHH
zaC0SpHbW>8=FZ;E|KjYeqoVwyZ{YzHlnzNL0YT}KZjlZN>5%U329XkJ=~BA8Ye;Dj
zknZm88RCBY{@(Sz@4D;$b=R7;WSn?np67hd*=L`<W7G8=ncv=TY8owhnOH8RJ9__O
zj$=^NYak~+Xk9Diy_7FyfG(39Y`1|Y5yLk9)71z+<!P22cEld-q3;IutLixKZF(I_
z)wrEHKg&9G<iu3UZaIIV=cdyp3tnU@f9em*OPE78h%SHmpycuCJ`8Po+1p}V(r&25
zmjU{-0XOl)`)rt7KZVn5{LejIY>M^=lG3Y0CP@jb$OqVZqKnqz?pIYvLt4t>9J5}l
z_iCE-`$E-$;`85Dwg1dKQD6<er>j)lbo1cJwFytX<57+oVe9$X4|UV1R#y%derR_A
zx~)Q8c8ECtj0U4FtI*%&u6FPB-Ss0PLb3+;5u$8FX9}alJU$xs${LQ+bgfbgTbxzH
zOnDi)7^(9-bdI?L;YhXO)@0qBu{|}WR6E-NI4p4yHQsZx>UN4C&nxQnRSq5URm@d-
z2#XvsUj5o3uVc{J$u5I?ywP?!a|-X?q{q6#>zs$S^X`TIF1>W_BWpt~`BrSm6@?-d
zq(raIe&c7T4Sck=F1%LD#?@E4wZf%m-l+>wko!;&1LB}0D(Y*i^a_|Nf3L4%wasH`
z(4M8mo!3exR;X17xo^5GD2<;bq+mqFI9aGTOw#$)eYrX}+!D2vginEYwq2$Iel=kY
zKBFD~KTy}qPS)uDcsdq6Ggfn}1SlsD?MC@x{#PbJdUV9oq^NAmVZVxfI!RyGFL`^2
z;}pg#B9z!z8`Tg9a-c6Y)B9Xy4s*_U84L)0ZHh$pCgGBWt*yZy3(Hy($ibmCc>JSL
z!LAO!03)9ja#Frh*QHKw#4hC0yF2Z|l5^3k!E(Qg^V7M?^Y-7%^?OFrFHkq(6lGeq
zXGlOGQ~wdEy=ZhAlY*QAhdeDkJ*0du;wo3E*uvTKz0pKEe=aAoe6|vje`B(=g9CA!
z5Y(&w1tf{lRB;{Ae{HR5So>N-Q}gd%As_A#45*EZgF{n>qv_pEj8&Tk7<-%7(oy!k
zXs=7=pe@y^u1nmDknddfov+#)y{sR{U0BdjF3VY)HXmE7H<QbBKN|Ao3b}_)E-!Gr
zsx?1qZNfnf(kf-n)9+qIN(CBGoW@cM;4dtSnS;a0+lA!xIOuAk-2?2r_t<ad&%(kN
z?eHnP8!LE%{%HDaVq6^5Z5gMfoTcr-VfBlqI!mTu^^A6%3$qos-TeB>=TsMl(_R;S
zy@n*vulL$5j@sdzduc&zHlhoA=v_8dNJU?y%0D~%CMJgH<x90&{7p#L(U$OF#>c&j
zVm^P^gNd1oo|y|3;;ZpEomc9m{&?Jaxm-RnGVFJFsA&KG_g~HOBGo;4s1LW#zzmkq
zt#W4YiGss!miqGbne$6wQw>?!`L7n?&z{Uw?)Lr)G$L$m61bJ2hvX~{rL>+57lcNW
zrTPNDY&1O&#a|!ydZe0@F9-H1+8UjI)hDJZ@v@=I$`7_UzGD*LtcVii;zISi^N0)c
zufM&nRi!uStVwh`;=Ma>8tsiDzUuf^?s)#~gk2bfXnptVa*XA+md{&Fmwpcw4=l*(
zSG&D-96J}MMj<{|{rp^038M!u4^+kW_9*IDwD0Fj7uJF%B-iL9vBFR<uUD#)3yE*>
zB!AD%C#9yInSGB^9PaByYv7st`qWcPJ1O|7`$<E|1I`11>0RIF;{h+6HwFP2I2}s@
z%vR%l8ns&5y359<od77yLoCZ}jJe#XXsF;ww1u?KcGtYRe;?L8BFV@VetWd`mMg*3
znt)?ww6&&6O@B$X9pl8orK-N9$VR#No$OX58pg@bk9}hXZMpF-kdL}7=olwp=a8}x
zAzi>JSl5UnPBc6M{WAwKHS&jn4O9bJ`1_E!gikys&S}ZdM?n%HWo<5DTd736!&&6t
z`%CGq+7>P2);+qUHEq{GXZOHD_qg0=RsSQSgTg}Qq~w#l$S@~|nq3Q>$GbrG09FTM
zKZGcb3jL2E;#?koAwr3Q4SrHAo{o><SwCy^lgd-$N}p%)Tl|IG*Yrv}nbAtVZQuu#
zv#0LOe6!k(ytAGSGwU{{OUxN;uQG-WpWHTiH1iX@P+wVgQR(eI<tZ_6SUsc)Q_Wj(
zOk$)>?=sX#PW{-2<!-#aSg3K|b%oV-V|2bWQ9eX0o2!hT-_%z4;g@Oz1$mb#8?rdE
zMhe=uK}$Z2)6*D4ax?o!?06YL!;fE|X9A1XP=u**T11FYl%R(yY1AMp))^|=#n2GL
z(fTI|f#<cgP0L&|K+oa+O1nSu@N8RuWwAGwq3GplAcKVm>>RG3_qMczu<n~Hx%Bv>
zY}3-M;kv8RW+fW;Ri+%TBiFli*XO|qkPUqGwVtc=hFJS|+Ke#>BAt_I;A?V`1Jvuo
z>D|bsi%Rg9xbOAl=H1r5NfbZz-}pNpEO;akOM^RzTeh{(*EHcZ-5g0<|BdF_I%raI
zG`I7<uOu&BGS)Gi{=y9X<(;-1QSaJDz62s<N{M-X{l48vRfUh1FgBgf4_;#;X~LiW
z_tp=Bsstp9pB2h+8C@}iT-hBtKE&bcW0K)cx8AiO_5S`&61)u>m0|B(F0Iu3jHy;w
zeAWYVx{Hl|qZb$3@i?5_fuyXf6A>^x-1y5+>h+;W{w~7SC(dqU9G2!*vhzc{vPA<`
zkQHS^87<GPASV=rmHQ~QGR;c|XVs*!Hv2m8LAdK`=Ti<o3bw8<w}?k2jpY)OL1etH
zeDv%;B(m2$2qGc}mzK6x+J?jW)y;-IF84O$6y0c{8uvK9tTqD;_?f=5e`btLEC4T0
z5(_Ws1cbtiNp9g!YSTP(^U@|&qiVk4gs!fx?nb**5K5ddt<t*M(&7Go-`lF`%R-Dd
zoO@}rD$k#E%AT7s`>c0mc>a^+ltc;eXNeymBO^l>{&q-VVPs=sWP|@=$L$_A?65Ae
zFw_?o9^vZdhTvam6ujILFX%P(0?2a0-1C);26D!ZnI5et^C=*ZF!3LuCaB4s%hUT&
z%ToxDcp0|2#4!ir547rc7v~i6ou-B21h@y~!oqG#`v5jAZS~oFOyHfFzgjZYSH0L(
zR?~}*PNItMKTi0;lEfb`k&W11r;8$VyD}{5aDVcbqnfbob$mawo=l8XPIFxu*mnqJ
zd_Ty)P_C&fwwQfP$RVTxjz!t;t1d?=3RDODA7VUi-CU0Z+3iIxj(j9hE}~$|l6D9p
z;u?RhbWvWWd{w}71%^p#w};m+g*_iHcU6A7CbAxy)-^9fa+Tl4_tPm7H5!ju8#r0%
z13O+xl;(E~iAW-{R`6JEp}D%<-hfJ_N;aH%SMs60A&irAL<m=Eqtm$}I<n8n&j;K>
z=fTMP<JMO9p}vk6sJw65-M}BCXU)ZaU;W&F(uE9fR2<V0)m3u#U|H@30fsR$_N-R&
zBp0U<5i*3p)cY<cD7k%2k6sOpL-ZltvDNGG-VR+md=6$x$6u`1{p{39*c;}kwzPQ1
zkMBf_!NgeDwEeT2$MZ_YK@%fLETKRCzSH~kJYg%H*s_#Su1A?TU4o&sV6pBIbWHwO
zy4+|S*f82|E}dSxzI{{1ieukztZeiCJbir6B-5^C+wdn|-8XW+w1c}?pjycs5@wcI
zUCGWt|2{K8`}Y%jhYBvf-yvC0If>MF+?$W<(C>&sC{eT(taug4K&3F4LiR{r-A&NJ
zrDhCk&k}aH@z=Ul6VFf9+JKg|K?8=?n<%wuLnR#|ezltDw;*d6w93Xp>&<N21KPW^
zh>;rf`#nEb*31QMhD7M&4T)Hc+$Cq0R3MOwTK4inLS$IO-czu0&>~_o69Ju_Jnt}7
zOb93hJ@w_hw8LZ1NG?_`&{=V?Lol)l@hxKG;^`;R5?)qSscGm=TiY2S>*CRU7`J$F
zw~GS-apde+^}|!Il+@F?xz~l7APr__??ZyjF#bMi_}nPw!cf04SDJ-`^!@~%wPNey
z?$3YJtgfMDGvi(?HU26_sc$0%MnK0Oo@7svuHaUm)mD&WdJt_7I@NDrovqFh1{#(U
zV+EqWbiJd2dSp|KMD7oDZe({}!Rr3*?oS$UGD_FsrL4DtQm&-Wja|1B&DLEImsO_i
z$-EOOkx&o=Zpyn1**R==I1lR>y01#1K;g3-s*8oicSO$Td=|Cb*850`J<qbOhU+U}
zdJww7Fx~r|I3YR4%Esh$z3CnB`#$7#?Iewti7=SSOm)+3^+xSt^-e}e*Td3IXuSq>
zdQJh08kRJZ;}%-=H{*7udqK<f@KKd~=Aw5bjdG_jD>N?(!a&ie@6W=%KWj{i_C8lr
zbJsXgN$UrWF4psv`t<RL{xZ2!UK;iuq!7v&DLGmd`WOUAklb@Lv`*o7-22`zP7V&;
z%C%OvWqn}L-Wx&OcF>xumOucEV+IY@p;g}GipSLFQb6GI{^S$MI|wi#l1(h@#w0<3
z5FsP2!#Y|8(i3CLEo-%M#XeBEw1w)mm>+Rl`9+2jukNkg%*6)b(S6@5q|RPvM@{XT
ztA{H>cpTOitn9p_JulIHeGlsyHc@+uCYOgB5?gZ<x!_q@iiu(C65cI$F5Z&((27@O
z%nEqDQGjpnWi@M-S*BO)XQ!{Esq)c%dT;`x-WDRF(TBvg2NMRRxo1Q33X2v(`|_yO
z<F7bKbgDY%jh-tOeSFnTt|qJrj9IF``GK}2$437vDsldL*&Bcntpbba+%G-NqaZ6s
zQ@7nfU#H{|7>G4C@a%D%!Q317Q!&smG|n$!SFSjjkE2f@=Z)4ci_5V7&={KSB>VST
z97nG`o#UrLBu9ZpNp-^&O2l!;X4FV<yNrYq7n_NmAR0(n&tx_$V7w$M%hdQ+w*?}U
z++Tb`46xt1F!6a7_zMEM-xJX(F;Lk3Qy{nHs&qS6{T8yaYYE*p@7xx)<>pw0vU@QK
zkqRqr*X#SXFYY=zc^!A1+E=Es^Nq}QG|e*#R?(F!A&k&1bMi?Ds-kK-vQSH>N-gL@
zvWJDR1b8aHN{-`!WXR*MKTaT3Q?2yQuA##})zYi`{Bq*5LXs3Mid`ADT}~snuf9dI
zhsf;pZc+y&!{0FyW_+BIC7Y<RqhuT^w`OpHDjLtPl6hj5Sb_&Wi^&!rotc<8bJo@z
zJVnc{U|r8QBh*egFMM$psQ-*6r6bW;$wEFfGrT(RH3S$$lWir(W>D-M1Ew@0>n<m4
zx~Z8>ieJ9Wv5K0q-uCe>kUNtd*ndkCi~ASZql1KT_z5XNc1u%7|Hv0HT7>8~G*khQ
z;B=uHE1)!@Y=L?_b>lwM71&HT$yIlOcG~7y{4-bAdSF{1`<N>AA?0k{c)AcPh1)pg
z8^^_s{56FyiS5Tby-$lUTxUy4Wk^r~C3ff|EwJ;JqWSh(c>$F&LFUwEo5(pum3IBS
z0W|gLW0Wj7ed4<}ib<LIX=bD(*nmvZl(R&`%$%!`;{1$;MXgq{PT8a-8+te~>)hBo
z8Xm(6gOU!fW52B(lC>R@tYxGgbA3)eUHW+C!WZO;)bUc6XwT7{suKxDen`<EJP08f
z!Y|o@O)TavwaU=2+)H$UZ>tv8ny{W};fG6j)5ce${^z|Hx8e{H50(azLS>h>@N8vM
zh0M^$m+bETZ5s!~apkm`QZ4Q|xwSU?b*<?Z<D2P|Ca6y%WG0WX=+x;?8*oe223Z><
zd;;Y1zLW6MyxtX;84oM&r?X#<yGYf1t3EN3Hj|oWZ@pf=yoWYFKWnY=D6h0syLk*f
z9sBk!3zO|4>F?rAgQvmD&xcx<OBfF=gH<?Nc5q6{vq)0@McLG-{47Nr6_tSe5Gz}~
zS0Tgf@9+<1?o>=pG46%+?Xc)1n+J;E$Gi;m#m&ahUaU0I!(ywwi|yhfD_vbug!cZi
zvbNPW->ohD+S;&_^{51<LqdE$w=sVA&kEc|1pHKtZ+QC32h|3!4sq&DcGM4o{YbJ#
zhY%qE&haKs>|I}T$*4c(R#b<B#caVo#hGbvaQIggzMV0_iq#pYy}{Bf(2Nq&V{Wm(
zQz#?XkQtb6;yr|ftP-PP2?`zTXY7q@rmj&!LsXSNKt$i+MDHqF=<85?sM?g$QC*QN
zABC;d61x*fqiBck!SY~v1Q2s;TexeNUa7)#h_rn}?9?u5+oO1_kV0?hRs|8$A(_VL
zaaaWEXXo$1@|v1SFP2KX1%FSlqrqnm&`yyoRTVE>b8AY(a%Ccpmzv;GV*0oebDF97
zCirXQ6w8loP|=yW^B%*itO!8^JEPf|1vMqW5$YsRQj*S1jkD3GS5xKwq4pQSUp246
zmtlEuxRM1maEHHNdZ6zOaI0y&f%>wkLZlScDR>z(xzbnnWIR_THdc+hjDexwKvNnt
zUOP5L=|_rE&V+$sp-!P{YVuNjly;IM8@iRvJ_J%qVD+LdQT^Q#Q+ajep0|pL&8w9P
zqM+CB8W=*N;7G`!-$;ICmo{dXdgvMzD^Jcpu(!I&)8bHnS#&}jyx7g+_j}m;%1J-j
zzcjw^BLrn#fEp=ekyU=PkeR>5vS<Wn2Qka!#RDB};csIM<LxjJ(>*Om$mTy><<S5M
zrDuBHX!#)<Vo%MKT~^jHF+m1Fyz_}96)aUP`r5e_o>=w-2Hz<@n0I@jxD*zb9M5m~
z*SS&WRa`$Fvo1NGJ0;|6FtV}f;>ggzq&erj+kumt+tzu59Bp>P3i8A8@7ih@K_ux+
zk#Llx+{IsY5&zL!wEj{i8(=rHbIK8b;0uca&Wv@3GuN~E$Jat-z~J|>)+0nB`|aDe
z(D)cU?3Mc$bSkgZ3*zZXf>0rE-xksbQcQo9RcA$)ZS;Ik8^_N#cm22X@Gk3<RojGR
zZ5`JXIl1i(rXTrH*)UV-+v)Kdt;18J{QJ9>lg{@cztj1A5V|Trj|%t!?2&z9WE$qE
zcD%Uyl5ui<F4LGY^(q0<9vq=PqAP_6QIbT7k!oj>43oY-|K$t6X92)6FpI8O5up#t
zQl+OTWZ8KqV0oUfh<Q~<$~Aa$*BMm(uuy}ve>>ZFOb>Hbdh^1@CTp%Km}&mnY<oj8
z7zLrd&j4xq{zB47rCNhZx8<U13~w8${bz%37Urp0rr$F2USFf`&E*`1#LMn*pT`Lb
z;E1w&b{QzC5Jk>L1o{1))O+J*ws_iZ&$$WMheV~<h(K2vlEs!Pck{mu?70bR+!MXu
zDeM(e)>VOS?O$eLI=Cu4a9eSIClz{DA3QU!MW@@Qr}Qb%tlfj0NRTH*A=|sob+E`~
z{wvcVM{n<SrC}(vm;2>a$*o0io?t$~D0!gdlWqy*1OAws&C%xXY5*CafU<@6dWb}z
zh$AlyG@c&@w=UZ(5bmsxtGMaeVgkO{CDy#~qeF;L3MKmt{464^wHHtL)^x&-Ka$~-
zB|uothQ?mjQ#`_^1%)3x{-KX;E%OwDG%~r$<qrn%e5?AJ8kesZX;|YUa|=I4eICyv
zc4vRb!AbDjcZe`jQBPb~&u1unZ+i)a51nfOidW6jja8r|IHo^Q@G+CcckZ?amcAWp
zx0X6B@S~@?mqvFGcDAj{(6+d-YiVa<JFe3IS@@bicXDw0ZfSvjuelwa&t>=SH1#Uu
z0lZJxhL6W<?T=6};?tW3av>*=VMTtSM+dlnfd~awZ`&L6tYha;*0vRdmu$9+NrEB7
z1QHG|)QXuS?v)balp@X*>J}!tM(0RxU6RmA;-rn(Ej(qLR<T+!yDr8U9CO*%UHd1s
zpZ*(Bn%UQD2F@rNI%?XgTG?Y3y6M&zE-zE(O;CdZBN}sq{J{hX?H22v>$L1N<g=B9
zrJ0Q@b@7d;tbSZzDQ^HIvW@`%o&4xflce!HuDNN`)&a`83TBKhEfV%oqg@WJJW{|A
zji!Y8OJ#)rS%2A=ed_mWrxPEq;9TGROCL`e7LHejxd~W&?gRTCsB0{TOEgtrA42x4
zKkGH7z=qWyn;*XtlCn~AS+1-+Ckh4%Yrpj?`1xl1;FtN~2`$A+g-oSGe(>B07yaYE
zBKhO!%eOBds7Oo~4#uaWZxGbW7eimN2S`yNqrh6L+%q1s<1@>3YwQU!s(vLp_+0It
zy)I`$!=ylmJi>1lnZxKau<=wn7{a$B(s_Cp7OX|AYgWGjMG15gzRI??Q$Gr*Z0^+#
z_s-Uus_rMk7kr@-*}Ob6KG&CKH(*-jx@Z2l<Rd*k@BsF^o8nDI+Zxfhy`78hdv)c?
zMbY+{*A}zdwWgTXf=$XLRXmwXlUY+;%QdGi2Mry|4!)q^2_9YN<K<)2U`2wgp<FFP
zA2klz9cc6JIsy$b%Fp)g{KWIeS<$sw{qlf4HT9**k1MX2RP`q@QWq!o^Edl$x<cu!
zwi_TJZ;Q6~xcL(xQGBiYA(MHZ+gcN9fEFNfV(+GT3BAr!AVGpG``rWSHzCyTM0sjf
zclRw^k97nP9bMA;hsL8WeEs_t2ZqG1htIQCkJ=_QJtg7QT}P$D(CdzEeed&Xk#?`+
z(jF%>c|`xWc#_kT+{5~Jwq9N#QHgLC;W9RkXLalx9J8&5)2l{i&3ycA@ToOP5-~-=
ztC)rdrQ4t$g^V$9o8Ck>P_!K`EMMQdC3;^#%LAzZw&6LjIDAX&?KYgwUIOoTVMrvg
zrGSrrSF((d$nUy%=)dvJ^`sUvw$G2BSRT}bP8L_UPF^?!(kKHm2P>G%gEwA(2o|AG
z7bp*i59*($U?Fgk0%99ND}x_9J+6zOk9*Exatg0vEI0?cV=9S)U+a#-Jcd)z`7pXx
z;LF$eFVvsF8@(ENOEe#pL&Sd@u$|fshG2$>(=cZUO5`f<v!c5h?@J@ICtr*hQadOD
zgETIkdN&*p8JamSM+Q}L*q;U}P~$$QM)}~3GjCq~_(FggEt8Z1EsjM<CnxHw*7dBi
zPxo+e`O>bmBDxhu6dDD|OWHVwi_A85GwW*$6#uu`>lb7`cU#uUI-=Rir~RDP*pRln
z6O)GRN9a~yV$(AUoC7kPg-Oe0lcL4+!?v5xN`#ACe^Go0Ar+ua^{>9@Ghj;?p<s!B
zn}nVs^d*ljNK}A#cX!W7a<h7y_5QveIBej}91xC%1&$g4AatRRzSH@d2?0zMe)o#{
zVojSan$7iWe)!3P7j)%NoJzFajGME*GWkO3)WBl4$0edvJaC4Y&MW-j%h~t&*P=qq
z#)0-lYiE4uf$z=A*Av3CVlA=EQZtPATdnToH2mRVUpX&Z6F;#xR*B9`QCc%F7xyqx
z%MTwWY>mFr#-24v%Y$V-D9R~kTeXOW!zBD9=97x7Mq&>y5lT^2>QwHQ@9dWNpP+lh
zzrt4hUHXOI&u!jpp->@TrFgRE(=Y^k>)d?*95cBnKT4d;ki6cC^_Mt(_C$d(dm{_~
zo&~2CNvRcL4rb-oL63osCQ!bXPF=A1<%~JFguVt-TYtKoI1{CPV*CG^b83~2*wc4r
z2iq*eiknk8f<;-TFa#YN#j+<|PtDuke{PD>Vpew!6L<d$-d&@s1!m#Ukz3(+HFY)5
z<!-)izs3CpmR_PnBJ$bB_iy9+<>i2@6DKFCy!_1zAT!!p(bzNeH)rs|kZ5Xd&eoFt
zhW`oIoY8ShtF=jXg~xIv21vo<#XN8qy=-rtru!-N>yOZS%!bUY>M?=K_mz{K&Hjzi
zbbmded|ef*sBp8CVuoO%3YboN88LT;9d){}V`;b1e+WOOc^@)?gw*dY6nQvr?6l3+
z+R`WUTBogql;<Nw+FbnjUXi5F3vX*rkKnIf%>~_GJ^5#~_poZT7W-v)4Z~XW3kVat
z1QOGDO;m-0MIm;g4lZh<7RD9%@r^$lYpI#`BU9sC3ZUA04ki{K?r#i~48sm)f@)^$
zDd@ZgzZUaa6A04JR5!FRmlrr*tk{#px139j`%4LXSydzDD+}mY3+jMgSy?3$)BZ?K
z%oro`y@G|jp2Oru%>6}b#!7@hjTNLpTgi?395YoqlZUG5X9FJx)cCIA%^ml-p-g0L
z5GDN#$Eqb}xM=vZvj)OlY45aNEO{rE=7K+2(AQ@=CUn685*=xuo<a5&GHWrWce<{Y
zSzO<IA-Ti=_~o?LPaf_VUO_@BL2>4|;RoB-C=e_Z4nQXL-a2ysk9pwVVZ}gQ7(2sg
zN>L2tDY92#ii<!|0yOM?S@kUSUb;z{M9+8jIle?HIcC4EG3T_L@aV+P8|y#lcQ-z}
zW~|Qq+E%>7;jfTSOsh9$WMZ+DxF_LMh5PKu1k`5EYZMVq<TeFG;x^;&B75`jc1crU
z)7o&ZG>spT-0R`*YF|^p#gm6d>lkD9=enoR%n`!T$jA-#gbGqJX#i>&5wg4ih84<%
zUkM$gXmHus`>0nfqu##q7C3N8I&xJqv6R4x6YY{mKM^_8%>!)ZrF0oOIQ(U_7tg%&
z=}3W<^`v<%xZfKxQ&RB+n}3#6Y0bQr-Jy2D_$N}n`6)s<84*HnNdkT*-fNxA7M()?
z(NQ4^LVo5{wdGWCK<9@}k@|9=tG>Td<K*sZBe?kwUzvow^|f12CsTS0pnt|ri2s`t
zL|pmlH0he}$QvC2B9tq_V9>)|i=1>3(4VU6>h_M7zPOLDux0UQ`rWHo$-)(v%f(c{
z8?hB90|N<&W-fgKHNN<?$+S4)hYZsSJd%?teo@ZNQ+iB}5Y8}}j#}+7Fn;ytM_EIS
zKkqwTsOUj<fB+Bnvu@~f+?bz}uLif?=j{|K=EcP!rOXhX;!-!A&-Nbwlm;7k);+PA
zS!H`ytt(9aBofbP<FvQN79zv`O@#8n1WNHDR<2O={15!auYU1FqJMi7Y8D)iQCRS?
z%hbhZQCGWo)BYJFLDeAj(fiLDkS@ewr2k;TcDF0j@jjVaf?EgwN<ug%YM2~V*8lev
zzx!}%a*Q{F(7rKmYch7GHOe7Y*->KmwSz5qY9?eqB~Oui0;EnTu}7chnRdTbAu=a_
z=)%6xG<|%Cd>H;2;`l$W0_~{)5y-&j%P4uuRn4cPxKjUp1#sj+JQbkYi(YHKzAydz
z7p<0W@tj)mxF)RIFsvjh=(VzkRr3um>C?5R9}1O)ANe`=oHalz{(-GmF;=432Q>d{
zv<5g9ItWcFU@z&SZ%VFO{7lJyVdMX|*$h7|t+{7UzJxtrKFLul#^<Vc<h7>7<0TSS
z!OU#5re6UauX9zci9Kh>#@OLKPaMCy^A)q>k!=UfQH_k=bsgoV#<zZ;(U*8GIil15
zmT|(eX1J6}77Y)Q#43>Yp0T*d25|Cc&bd%;Buh<?%WrK!THN7#1dB6?chP@rG6TGT
zw1X18l2s`aRFViW+8CI78=VZpzJjitjV)fO=0oflqWXj#UB0PREpV#cH@16ctMR?@
z?eXqXm?B!E*zMwPAK`M3bBabPIlfQ1$}z->X3q5S-xRWc3fP{oNFhl4L<~dYBmO)G
zrBe%nJi*0I7Wql_5C8pl1t`#tdgnIe2yowjNlp%X*hn~pC;FXj*6Vv$ZEVi6z#wes
zgZ)e=r&mAQp3QGDr3uBJT*MxKn&Qmh@jFcKQOUsb$Y73>z)0e>6mcpxKeU6ZvuOKg
zwxp$;8%C^YGJOa&iyOzlAkD{{kYX`y%7tE~k#N^!hG)xDj9xczQDJ9wc`NEPm|jc_
zayv5TZ?)Wx(;!5ZP8ftuv)3O9SKrkpN99W@`qBxFCZ$%S%o`8o8?QvuZxA4I$p~Jt
z1c*Gv#g|87w+B~0xK89^`Zqvos8{XC`;ag8OQ-%})Ngo)gd_+lL~(FXs-n8q_aRp>
z@yEz^W%hfY;~#3re2z+ms=Z&~E)Ie`?(DO}vs|ZIYA(7e1<>BK{`aSo@XeRJVd@;8
zEajaGjvEZ_&yIc^3pk5Xsel@9KN{f|5)~5q%eUoa!l_A93$&<LE}3kv$o-CWKk9g_
zb-pu@^@=W^9|{ZXr-{|eIOaMc<7PBnJ{3>aVe_<i)^VnUgm#ZJd5x<6<?P##Ay34|
zI}&yf_iNbZfWmqYJ)67Ax(KPiv<m1P;3>0@yv}!;9a1_~0_|?dp9T6kH-XBWtf|Q{
z)2*)^rnCZ(Hx1ezXPuYG23F?&D62SleFhMCBwd~fftGd(b22{|uHBU!qm8wmb1JI)
zHM=}$GS%II&L^+GZ|bU~BJ1_R<-LJ)Zf5>DAmo5kudS>^xN=za8TJe}W@hQttm}%7
zrb&8w?d=x}YNnwZsI?%Ut2yTp!Y|b#znlG)s@D?*KekUbfAr*V?ELL)j$b;8gnU$C
zv9{T-sO0PtJ`}1+o&9h~77NRp8k+C9;v$gU`fgH9L{jSdc$%Zl>*lUA^%dtn(0dWG
zV(T%yWR$2i*UjG8InZf*R)8SdX8Zgtaev_~Q830H;rHexQh{V^8;cZorsBp=oa{p5
zqZ1bM0Zv(%yMG!gRvlI)CPikb_#9SK!UHd7bAYn5klPunI$f%M9qC)<(py>g6w!R&
zt0V7wNORiso->Lf?eait*LH>EZ^>X}_m$v^(L|P<MGogC9*t|qO6FYSHa@o!|6XJW
z(1fMo`a94m{!4WeKfcyYN^6eqn@o`!llEs-FIjraYf^c03p}_dA5#)nRzpeCVEW9x
z1jhj%?>jgM6$&93p{PV0G$fGkOCU1Y9-qo;dbr){T+RHte-J&ywNE0$HA$7CSvk$9
zC{&9Hm3Z~6;qfdK>B-s{I%z#>(I3YDuJbXsHI(1hb9KiN(*#;tNeJyz=_u|3%*k?7
zULqyS{|wdw$qY~Zllm_A)y^Bz&IwuU7Ck=ib&oBV%)g0|0vZLdF}N&(2vxifs8L3A
zTZRnTY2}G7XM63|t&TH&7h7z41M;>AlI4z$w(j-@od}qclr&VUV8s-6Ic6SSO>O7D
z2fIRkBeeg}ERQ56_S@M>E;+dC3td_EyWK0c^AmK~%1V!zoVF5*48uf%REon+^Y!Uy
z^fu2MIr8P*;g^Y!6+nc09VhJ=<aoW5jfikO5w%Rt;b?yr|JQ9v|0!fWuch0d8aUcs
zr0Ju@XvomU*@w61C{>PNP6^uyk?!nU5=s7{#ibC4zdI{od%=D?s!Im|Q}GZOaKuZK
zmC@((Lrj;rwHmdc4V)70^t*`O`Kx_<o{zCz(Zo!Inb}rl4||50+PJ-wi$oV|Do;vf
zZL#ce)0vf=Eq9alKA)LF$j1cMAnNHs5@fR-XV-Q+o-^mUdd#l~)S!}+Pp-(DHx54E
z52RH#N9m{*zRO0DB-S9Vfc@Tr?<ZUVb^F)2vLLQK%r>7JJ8qV1M<L%d#D;bQN*mT5
zVa;b)=#Q6;{{WkVMUUaqEMd3ww08y-`Ndti#l(qaCcB5UKC7m#V?V|mGF!QiR|*G1
z6m<1CoqqVf$j4JoKP=VPXI*XY-(aw4ycutr7@||pXt4*JzihgQZ}&di{qf6o={)SN
zu!b9XFGV{2QSt?0V|c)Mo!VCU5P52BMzhIsG9Z&}u6_1l62yXXayxwk&5F@{7bG(c
zotxxt&IM4Uv)O3qXo$%mKPX-Q>fabpd0sg28<T{C#&h|!8_*3|lDMc=Wh4SCTqdiY
zVsuV{L-RTBXK*GttS6%*P<Xle+3I$Zr5RZQ<<_eafLd`Gx)=WylRb4v+e32h;Fh+b
za?o;JZ4S@>);*3fAE_%psw-giU84BjWnW1ji_Qvd;>hynq-FKFED`$LxBBh8oK4#~
zFW7z*;b<DGdsm%N_8K*rH4}#9^yb|!mBb*XLx!c4iG{gS_{ch~cO>A@{qz-8mC0Oa
zP_>K@I+Bjc%;zYh0}B!e{@e1zd6Roh;iY4iezT6oOFveZjxhN#^?1^w`9M55QQ-8<
zUaS{To6Kym_nD2gK<B%JFJm?E%-p#1khH=v)8ugLYWyx>jFqZwHjj;dYR#mjPvb9b
zI;RK-0;O}6;pA_gT%Xw%sM3e&NaW*^l|J2(Bo1(IZ^zkM_cuidaL0{~#|AA}9CDI^
zNpruu&2qabZ^pQOKS1|V&-AMRNaIaDN>tjzUb8+|+2i=q$X5Dh@e=&xd>C4Kh#ekR
zo<sj)z-8Gx#gXYg^_cr>&<$2t)cr=ao$>@b_hXwHV*<0sJ+-7)>QkqD-IgC`i&#*b
zdn2+4g;Z9Tu^pUK6}l)Ku6ntQ+kpa{(~#>HPc}A_rNQGg;YR*9?fE4wXI+mz_g(dw
z!>NLs*^1D}9bqotk3&<!)Az9XI$oC6Pbq%D(0N4rB2ue#3AT;(Iv1Y-s?lr8M#z*j
zHuFZn@$R7Jtr7SA)goZ85w^k}($kDt6zkRXGVc4$mfJ32vJJOeA4GH2WOE#uQ)};P
zi5I&VIs;pDNlOqY8UIvgHNE2d%l(epZ>>+m>!lMUiA~7&Iwt(R;rpiom=Q9S?A*Ic
z4?C}v8aN(1iK&Hex5|_8khfp_xI#O3ajJUiFP)9-UGI>&+JpuP?g>gpZ2)wzxK@)-
zHgU<%%bUt9&I))4;)Hm(F2H>h!hHOR9wXQQw{W3<Y0uAY^fm5tmxy6GWF{_l2t)$?
zTZ=cf<ji=6%14s5V;r1=2-(<p^)o3IGb58==o&dGUe*1|Epv6z<gOIW_<{8MA2Ke9
z-<Tu08dRh;{3QXG0?^eU*u)3AniJ0;r)(V=wwU5nzx)~=E1lG9`E;SI%cFh^Y(96C
z>|sA*eVYfJ1?_G;dB_Bkb@V=s8nVj_SP>2r<#O9QQ;<MrG*WuL!dEko_%ohCGRm$1
z^No}%uH&a>((|JIuYlme9=36OhzM~Q69xSsajHBMd<9}MGt*8Ej#Z2>jNv|}-#&td
z)QHxlL*S8iSPJMGX$Pf{_O70`syv*oiX%&Z{qjPiwKv9R6%8j7&$)BhgOZ;|0k>Av
zhJ-CF#=zz@z{u0Te-I-NdA;Hg+#S3))VO}|8SuZvDYj)8W7vpPamU<ez9c`l+e_ks
z6qH%*F>|H%Xt2AbMKxz@Wrty&x4Lf<q)WVO!BgQl^8y36j9VZIfFmn>mjZBPFsej>
zC7JD}Zz=JxJ*dCtG`p2|$M!zkjjZh^YMy6~&$yE-tU@<;Oh9Wyi9NYHM~Ugi8Uf41
zM~w1gDC&QSt>O^;m^qo<s(-$mh0lG1Gj%wH(>G_SeRX%$bL~$;Xa!}VoRAf)JHpR8
z#4CnzAF6-2^O^sr-^Rmxx^cTr^suOOR@a-<awccz3Y8*NBouL7*<lS<H!W9NUvYEF
zqn~UJch4HdIyNh=(`9L5LiI~@6ezLpyaick^>}^v#6J3CLFCdoJ+HopL82X*Y>or)
zUi!ge74jWs4@9Z+5)(eL6J6vCPFLHe)mGM_K0j;LR<1i<3HyL%3h@_d*S;Rk|EEXe
z2Z-bgEm;Wn)PQF6#J>XxK0mJs6;U@{y@+X!q9x^x!zJI~^>EfnRJ`Ou1BhJO7iCC6
zAz>uN6mh?ym5JK?pYNAV*MY4OPkq}>ICeQLWwj-3-g9Jp!VxYXGyh~6VSqmfPfz)l
z%ia=G%x#B7hV4n64XH1^h-`do*BSb-&rJawD&0@S{$C2u*O7xdK7--{kV39zxI;cq
zha_NBwq36+j_ddj7Mg+2XkTY~*<DK5afj@#uQk*7)Ud8E^J8lyp<eXfx(%EP#1#9@
z0EAYWCQBmwQz0iJd2j#7o~uD}d=Q|Pb;v7>ax~zfr1lWKz_U*B&xZdwnVr}t5{f`a
zK8(_()1DK5!QS|uF}@#P08=}Aa*H5gc3xxS#gDbIH?y~|!9xcV4+24Y$-r?hM<Q45
zTXYNV>H?Ca6CS_=0x}p7`XFnnmC#&vg1Co226b*y&qP)nG+^_hb_2WAwBBXPxd{wE
zf<@)7namUNZUU4lhvjZ^@oVR=G64jtRT|lKv?pM4Au;h1h1dG`ShYH!LB4rWC0BMp
zxMg*5WQ7+dEsmQx*yhHcDvX6nyTY#I{2Va=o%Fx*_U^p<xA>E%H@**(iiFI%nzd_!
zu>paV{-bc`%ekSFd1qwZ!jDDo(!=$T1CMq-hf{cYG`)MS4cxG4hdp)==jJ^50+|V9
z4UMP}C<Qp}7h%Ft<ie8KDqt}vySID_+1OkzEGxW5Z-6?xxgK0}IJ-HGQOwNG{@LY(
zoSfJr_|qDMYcL}C2Xy7_GC1;Bw=y9M+gH>ZuoH_J42FAsXjvegV)T=q8E-p3=?Pc2
zUHx_QIl8TFfBegTJdyDJE6gze-d(}cyn^?ZRwlva1IFyH6T5Ivc;X~6b~c&Zt_kPJ
znXkN}bY-LmK@`^I@%g$cDUKK;MKiD=LmP+;v7vhI>udiQeUlVjRn#Qxnqgm44L<Ih
zF=7W5n60pt_ONNzu%s+{LeBP!c0sms*=M!Mx}P&l&X<eLr}x+SV1nGfg?~3n9Hym9
z6BB&IyTUmyy|z&~*VpJn{%yHm&f}%_ErIEmfU$s4sPcy=USxu)S;|&z5ALV$L#FN>
zDR^RD;2#LSp(O$Uv<D#s``Kq3gR{W|YHwzK_HKTGKX?#OZRLHBbUHFUVpE-Cp0HBI
z0Q3^CvtK)8T;ab|3oq3I!C82oc`n5SK5S*;n_ok6E!Z)P-5jZt#!fq8Z~Fb4uF~TF
z&WBmFo7A(d87$-_YM)co2eN1(3i?x)E)py#A;YRge=Q@BxglYEIXmj;0XOwulvk+!
zD`<Hb{oMMOka~%oVc!dlFh>3Aw!F~0WX{SHHgXxg;P~0aqTWn^ezi6&L@LPM)<n}v
z!;<R<9iel_aw7y5OCx8WilKMA5$c3;$vh+wKwSW0*bL!zJC8Q7!{(8MV<z8cPsFYx
z$iXWJl>5JVeR^8HfAzwb4xaBN9=I}m6*I7`d0Q+_&&|CFZ{U~7ISWxcb*@!Z82+8k
z6<cQF(Z~yd{9`5@v+niB*uO&(&U9x2-Vk48UU@al<eK2qf3k!~jnXgp(EPe4Pu2ba
zE)6YCr@#5fLtZvZH_XRP&!1Fqa`!i@U_w6C%3nq>L89Z`uA3vg*wCF^YAS2l6QxWr
z>j)+<<uB!#Ab(~Su0U^8D}7{e_(4J<K%5rEziObVYQVE)cwkPV)#vc^=C1efwg=yu
zmYT6Wo244{I?(E`W$lz|JCgt4^-?R6$j>M%4;P=U!?nK8ncMp1z=y8jrtekdtA@$K
z>tDq3*haR$d#6w0-(f(aGjvteG#|%aR;w|m3U6j)#()GpzDDQH{V^=(@Atb9R8v(9
zPx>JPHc$k5@&Y?n9nw;jaYu(PaT%?$#8jkU1Ay_gzNwbF^N;vE-Z#_Q%M2#X>|g%b
zmF50H{|??^QyuY*30Ibvkv34Fi}he2A`M=(*o@}|9TPV!1Z%DcW#7iP)LA#r#vja)
zQ(@|0XrpUINmmtI8<bd>{{dJJi~rWDcRpfw?Y=)y&QEIV!`=W*HL<diqQw>;eHJEj
z&J@hbq#k43XJ5g310n_Hw|x}IxxVjo=fc6ZOL02sq2NOLX(w3X{9w1&^KKL=f<9uf
z(llbH#G{$JiFSlBtoVtp#o5_@gULi;@7AsCtE<R<4t-*N%bjmn%Lj!mr4jg$G`>_;
zg9CdjhH%0)tqRTWZ11zC?`kGg+wo;h%7<S*{-FmYk{!SORdubl6irs4f3xw32Be~z
zi+j^)`O$m*;`9_pR4;gQk<>=$c8i5RNbXlOsB#b>ASPvr`Lx|w&_zg$?XtE6>9KOG
z&T1qd@_P1nOl1`|w!&>$;v|1R)NWtgZa5=E;jOHrLLQcwlk1Pm?tB^26>=vEgpL$A
zNj5i=v$<`BM~we`AdA(+Lyij-$0CGxRKBwEUFa}mml8J=x6j}3I}l(4V1a=A);gPy
z&K)RLo(Q;FHM`5yw`b}Bk%>UVFQ608pEwNUfZyTUU+xdhghDD+C9;+Do=tY%v%uJE
zj=q13nsZ$tCD#S+HOP=9Tg-nbM;MJ<h_vz9?mF_*+olL|+**_4<Vj)cY4chzbA$(r
zrc4mccTo?_K<x$G06xdl&Uo#A<;=t_=(pe1-QU!vddS4nbGCEPcT3Jt!B)!y_l2}&
zIO=pS3cso%L>U#dgKQ8$aWf6~4Qj=otT;z7xfbz%7t8<#0Z=d2y6<v@JUemiuwm9c
z>ISh0AqD}g?#yq?;~9Pg2r;+H&8=w~aajwy9-3yzltzZ5wrJ}G`u1Rl`n~?TM6H1H
z?8(Ke{sL(8A;*zw{zT#A-dd3<M5OQwPN-RbyMamw7TL||*>rOn)-wtiEcU6aUWU)T
z#P5X<cEGorFTL&}-eZ62arR@3$4OtITVi?H+t%4e+qCAta|37jwG7-3jYgA%!qNT4
zUi_&K_ni#ImRN_kKJcUWb}ZVv$NQ60%$9b9KG&1qG$-gF?YH5H0H^$*>w}jpr}c1D
z+~6f8b<vl&rRcXl37mol?dI!_`P}#CEFjSX#&yiA`BAn}VVK1QMVb{it#@AxOV#)d
z7EUs!eMU^#mi6kYlxAA&dV>|3gJo|<_tg|Lcu*l~KBrw%WGJA4c6vC-@+TKud||3f
z$%8-b3f_^VV{$Zo<<Qc|9e0+t{5fI3-k2rph?=cB#d##)yy|y6^c2!4R(lt|+@@Xm
zwSQ+WMd#PSc#ur#m^r7ejH{F}DZ#{_dE_qEO4X5fQU?A8Gb*ROyV!#>jL0!Jee#8>
zmhoB>CXQ_yP^XR>96&&3xw!Tp`$at2j~Vu(*I<2mwR1BSpk03}kq~|s<XD1$6n{KC
z&0WyN$`=7MPs~dt5qQqt7%P#zWAnOo2P;@qF&(VHd=Ycab<Tv^RB<X&8+t=}t;^<F
zm_VLn=Ll*lC-5{#EH8SDLGQ_$-Eu%jSI2j;U)W*d|K`P_1CWS$utN!7qId1>y&RU4
zH}}yfE12B-ooD*eO7{M}$j9!J&EwW@+Zeh~gF(Or-Zs-4Pqf43N=<nt71dBm38|?M
z2c>XaSk+ONaBcQs(Q!RfGXK=nz=5sDVL+U;zF*7D2lQv2xJL=oq+s+oo7?nWl7h(b
zC{3}g5g;|dSMTlX>{?v__KfXJ0pPl?9pR1m)BhmsZ33V^h2nYf6c`hj!9{#Ug)+T1
zE$5<dG^k>t6a6GJQ(p9T-m$saZJvAVjNb*G@RUpwDoC|ufXG|QB)8<}0`nUNZ7?uJ
zS@|A*Z{`B3PnAMt3VuKNTxEWKjnPy-(nZ35`P;ufj0idDzh2r6VVu6k-D&>v#s&d)
zXm{VqPl~qtlH)Dh|AI31v;TTSAWW|{wolKmcmHBCC;zvggB^z0;Dv(&_@5{L{sAZV
z-*Nok{6{x5bxSQquFU;l4=j)LwOglqhD3k4YXz!f=s)dkso^xOv0!Im7OLinod1!`
z*pQF_+YxC7#L<6Sb06b%+>(hd*A}n1UjOuHwB7%KLvnsTX@At*g|AVk-;|A9OMPbi
z0g#lYeCmEk<O&4FEDba|9hxqo$eKAn796v?=?9!Ql=xkt3e}yA3Wtp9aN(c)#)`VN
zTS}FQC;9JU{1Y4G#^6TY)^5n&jXT>?*yXc8*8IZUhOm6un+P&D*8@b<`g6{CO0M;i
zVOei@5d$Fq&&lg{QgCwGUyOC^;)wrLD;b&YGwxz-YCBNt%-Q<*BK}=O>Q&m2tTY<O
z1B=y?C)X4PB=q^U_QTu--H%4J%(BHhMEM)E-p*a>$7=AJR7*m<GZPy5(eogiS+}cJ
z^}JGdtC4*)+5;Z<HZNj4A+yV>r^Sg(&(2)ZS+gGZOweHFi|z_PNCQL!WTlGLO2w-E
zMFgI^h{fc-y(V`1W{{+iZ-oPR2fx!o$`BDx8F`(A96Hvng|w?}LDXu#A}=hqBI2P;
z5uwy+ao$Y7R&Tw&Vo)5vsb98}Yl`JFSu^Jx^?5~IKLcjLrsi52Kh>Bl&kFW3gBe>e
z-eADK1N4EF;QLeAk|TPhWmad`uCHQ3A@;kLTT?z}EP9PV#1l+SiQNeTGe^P}54VB(
z1O5q0YuQ0Yni%Ow*MuIEcd6GIyv{I38=vZ^5b9*PaktWsMQ!s9b|S{@!v|Sk*1lPB
zpVu7;r|RqAtQ?BvD*p$)C-|5}X2@Gu?AyCm<SD;_*xyQw{M({V+v_+6LES@ycJoWF
zn2qUDNz4qHG8^+NSGS+h{U2U`0*egT$=$OtFzdn0PWVFIcFAjNXZA<l7MH#v9aYRs
zD_Xon^;UlRAyq$U3Qt~k0#eI;17?O?LO(uSk>*e^K|}4+@!IEM<3B-6S>RN>jo$-^
zJ;s?!_Cz6y0*wv7JF{SMXpb>K3V<oZ%j?+w4e+|ORDVS!J40~^++}|ZWY}QL4oq$s
zgqx3!J*iZ^0%uTt98g1bNK2X(Z=4(g>GCGIYu7q!!f0OBksT6lP3v|v4N1$l+TU+=
zZO4wAIOc-f4FW)9J6n8ETbjEx9Zk5L7+1-ZE;(I{gJ{*6a0LN_^a1{8lraNPxQ#xP
zRhTN~8N_YS3Shnj2ir@!9?ZJKz@NpjsvgmQE_h2&60Z|c@H7DnsHNuD%$*GQ);pB@
zj{=}`OodP-sPs^X{Muz5AilpQ5>c+ua9yOpkJ$`27Xuv`P`f8~b%tnunz(_F#3eWO
z0GWY&JX_Gl;cNccJv|X7n!h;2+@!0K04Vq#$H{4(%6LN43qSnM)-Jy?5SvV1PTOuZ
z^3GQ#U66$^TQB;R732UKpqO7Tg1=U&Lq%<ONc+!;$aE;cJ!9SN=$k+WK0Wkx`?D1S
zWU)L{qWIlGkT}&<&IX8P$9lk-;%$^PI9kDl5&wSy@n0Yz=W&3oed#$K&g95#Ink1r
zhLsEZRyrMzMfe?waGYahP402o3X|`w!+Ju(7t*Xj7KRD=KTU=AwfJ0v>G2>AiMH#3
zziD4^4P=`Q`2V+IZy-Fg4v>Ig%xAg)gaXqM9>>I8oqS|dfBvFE*c;DO#fplvhe4Cp
z?2iSgvXK1~>LNj<Ny<lgFyXdsQPTuYIRYg=bVElOHdy_;1#GE>e-reV1V0I<NAFqN
z-A_ug#7T7nbR9ye{ziMgXHj^Ms=6W<*d(H<{O&Gw_lnf{CEyMFHpZOf3}dM71(KS%
zXuqS#NNjk@xMJLUf1%xX-GfTHe{TGuo~*Z4D_yO4n1Oz@MYrYi+%uslpPj!ZU|jTD
z{gxaB1$0|O%;S?FgcEhXY;g#_6QOy^_R8;wFWy@a9+=Ak4)fmX`Yk$Asak5hdThG-
zS;u&Cxas#M`&+f&hilB8!gPBZ)^;w`)D*%aBP^9wtZYS}b+?SCSHt5Ze*2zH9i)AU
z{g#3Z)Y5Ws3rQj071UFuyiZim09OoD(=5!zjWL=(3H^r+S&1*eNY>pb1Gginfg|V@
zL&Rwl1}+l5Y!Torodv}8BP=m@t#@MdPQJ08cj7bvln#nkw&L8{_4a;a9qtj@+&HNm
z50&6u=NZuOnA1x3Iqk^$0~rO-em}lUshSr@vsCtEsTSAr!jJ1qmS%kV%K?*fumoR|
z%XVw?c%1SDifUKi<#vF>KNNaxjnnht>C@ZB4?#Cz$bV@-EZPNLR*`!@7)20->`pG2
zX!r&{Ugq@Dxid<3!0NDMNLqYteeq1!bN53(NLGJh$A@I8S!HfJ$QYwGDqkMJdstah
zTIEW|gch5$N)?JHTkWU+We|EiTo0A&@rkC;Ds!&PQDDLjrtd<o?+i>Wvsmn5I)<tX
zJXntnqtFLwzcV0*6H3ZD!f*a(9x(ckH^<`!@sE8g=D3Yd{9naQmp-Z#`>ecdt|@VB
zkM2jo%oKBa__#-snvAYxZ4626Ct`b}OsoD(dv4NlIJR*eXcfMB;pm)XXJJAH$uZqf
zBo}P&=>QB}VZXUhW@xoD$*1=9KLsxsobU+Z{-Mts`{W1PBPJYX@}xSd%CFVm0Fu6u
z1p(fXS?6|l?-O-Z?iI9kz_6m!=Ozz%XLBGzh+@@p9Y$?*Xfre{f6MW^H-Aa{gIjr-
za&fNXQ=tDLXdxw+lxd)^E40V#1ZC9+Di3%<ZsP?A#Em@?&6K#$6Sfc$u}g;Jp9m-<
zu7U|{i6>rQ#h0cwnzXcW@xg<<i7x_K1KgcQxo-p1#2zXkXzrwLX7jHq4Y-|-R`4Zz
zBvIYdI_}@A(qD#(;?Q~nzb;B-4cXLZkiR6ucNWx)LpPwQ2S$>0o0F$M+-!@d3+R%O
zq|SHa5<|c&G6vQK`@id1{QuV|00BN2<BC&vRdk6NbLxs~3v|S9T&5?47qHZ^8pVJ`
z7C!mLWZW6iYsNoLpPi#~8-EVof`U{RDF4adqM3aMN)=dL5D4f(f$cW(%z>2Y&5xqf
zE+a6T=idjBbrJ=$ju7nUU&E;3Xzsvb@(UkLRev_}N#g-H5_&6=Q`1|4s|_Uw0cHk)
zJ_g1=9316Ig9cSe&Y0l_CbnX);sCNLRyb~6Q;CD%M2EHC|Lzhjga!@<Q9griySZ+!
zB`LA}W4~XCdn!m<e9Fe0KtSe7pj8q*Lg&NJ_)ul?I!<)oXm#k$kvxQWXLCk2xilm$
zKk~bwaO?8)(B0Wx^Q61;QD4Jn%y3MI8^cR572(V$mp|dbGyfH(LC8S2R3Xv+5LB(=
zAqJ+1Bhf^D3un4olSwh^d0nivS{#gAf5u;YVEdN_3RLF%b8WkJ#D1v8Pz(;f2?@U0
z=SIA_FHc|gKJ6dYp4In-%W6oq7p$HNmpoccOtlJ^>VBZXh2C9lPcJ<f&u0ol+B;tl
z4loq?-Tg1Zz5*)Bbzyf9q(cd55F`}omKG3cq`Q%l?(Ptgc1UTElJ4&A?(POfI_`_^
zbN;>0f9}0|u@-Ka8D_qC<4KFm?DSQ@8<_*6^H&bE1IqJQ9$PVuyDpQc&J+{R=jCYq
zj^cSS?hUe*C&1y|_aDfr;R6A4U#pdmw@yqXf&R&RLGdoB_4Y=$vX~LZCiL0n#tyb6
z`&x31k!2-}&5PNS?5wl1DofNR3dl+D<=?b8JyeY3;MHH2&IA~uwtiMh2FtjKo6QCF
z`r+Ar-ODPcR-&)<ZhmL3Y&Q-zrtG&_BI)fRob$C?59`+;I+h<~)fe}6jGryp9wF47
zq9ef|UOtCaf5|eJ0D;i<!9fJ5q9oynP~`a_0Qa-#0Y+0h0%&^%iqqazf0DQd-*}KH
z1#sDKK8f}}ubt#52mX5ifH^2LVv)S%r*`THnSYBF`c(`G<HuJXF6l)zhSAJQUlr9@
zfL#;xJlZ>KI1~o*+-UnN3zZaVsNjK^vrAD`+^NU=YM@>fX-AW}Y+?H)2;PvpuKLTL
z;Lv2o2{dhni&0!(g3j3M<JlI;r`1`a_ij~cyWeirc={WW0H+v*v4V4l(nRQV)iRR{
z8{?XSAWcjwD#j0&J@p2LdT<dKEIA<t<p6ZSW#tHw3kqiI5nBmN`JW;f$j<O-hkVxd
z$0yB$`+e+{L5E6Xg9Nj{V7P&;^lkGC>cOV+=ul+5v(a_96-i)@+y`kY!|?759nvi7
zoCIYJsq{#r&=43emYC85C03{Esj@N&3xmZ(PS&s8DM;$vkrrz*g#K<n!G*XYw!IbJ
zwT^6SJDP;NWml6tneX6WgNH|0emB&u9#@?n&}lhq4;ro)h_ELy7#Llb)#c(ODKL|3
z!`-&~_~tnEERE#VXD^VI$&>-B`6(uA7h};qV55!!(dm!#Fv-lR1h9&LQv7v=f@e3g
zpY|i&Nd72tUoR&Fir;V^)3a93-fM9fj#r={b>6WE>*$z^do&dgk~c;`<4?O}J;TlA
zYIztAUXO>f+SMKmlz<q<jJr0|y9^cDjG>F0hzUD_ktSi&X-oMSD2`Zf&O^q;vtc_O
zKnMCvfLkgoySEJQRFL9vZDYLL2Ucw6>7wb)s3U<vzb~lFaoAg{;!huarcn`+&s%n?
z{|_ua1RrxgaC?V|HBpc%@S)2$BOIXYp^s<FmA9{bfdLilNY{aYARmvdbs!J7#tKl%
zi|YQO!9H4K<>+5o%D(HMiX@V-U%-g*okKL^LOyUXo|BWiaIJE`)ARBgZBFk2yfi(?
z+HpI-?4zz;he?rO*s6W(4Z%)(5LR_3?`%JM1oPUC<{?CsLQf(5ZBbaMNFGpjD0pza
zvi<4ZHYygU2NoAx6hDF|Z7dgaW*jJ-4|6`CwG1>(?p#K<ZjM$EiG%*c$!$hRRkU^1
z_nK`5Im3|<H%K;a#Ua1D`>1yt%8OS7`O>Khhp(&^Gbi?5IpZ)4)icyhKieE-CzY)G
zs^vvk-7a?#njYhdfnoBfg8JLW_8pHEm16q%LcUoS{dduth{g+nmEvFy9C3S@$lX-g
z?&Dz(Cq5P|KEjwCX;pV8FT$`^IKTk$Ft%hBm3^y44O5t$`AWL6xDBt@@;;c-X}Ly#
z;Vtl)>&8|i;i_`nUzgjo84r2X3G>ppDS2^p7`Fzb(GyWfFeW!Pl!}Gb6gAH#N(OnZ
z5uDC3RDN{4HG5K;R<hxs^%!z~W#3Tn`4eIskF~;PsfUZ<z<vvdwz{Z`6`I!;(tq*d
zQU4tYCc2?Hkptq34enzXrI<wv2yn0gW1bTX@Chcodc$1(08;YfK<<SB7GLF|E;<J@
z3br^7WDQr@Y|a7IlJONAp(W3@+LNSDBhQoXs(2f#eEJRi9y)C)7xB6qJZCwuNKwdv
zdCHq-br#{L6+J|ODN7OUaJMC52(w_Ls_1U+&XNQfu`1qKF;0w(4kiqe8?kZ4N94it
z4R>Ng!Dy*>qJ%Ac|NQ!=Z(y*yR6QeI=~JGrQtF2+v<&~G3<$JJI+H*+=j~?Xs0l0b
z!IrLq^LJWF<U=LXGBt>3FRhz#0+RCKi@S131a*`hUsnj&a<Q{lE;lp(F$~IjW*#W~
zhhOk91hi#Js3U0U0N@MU!_N(DJ~jepnF0?Uy9e9N>2%wP;}e;7TUb~iO6<xuJoV^x
zJj}%XJ?rvt);u%YXIw7*6%=}$1^3dH&s$(<yNIP*^)?CJH~r?PMD8Gkkre5?Ox`GT
zl65%yi^;R}pAx3@8vThJ)?T8t5;YP0WuA}(vBo6lO_z<tTU{;8xD_=KS#VDzLUW`8
z6Qz6bu-A=@-bdO!yPMb_=@O{aE%rtj{1*BNg(^x+<Z36piy>nT_2W@RIcxWe+&;S8
zPsk2NLpdHK=-4)vgTbaD6++}3qUDs$jPGd1D=lI={9ODIs=m$9)<ruTS(PQrcB3VS
zbDq_Sd>~Y(ldOge(O_QH%x?D{RntbOd>hqmLy$TLS9Z(O(~OE7w!XoKGF<JejOdBA
zWM=zCjO%D2NJ}O7qVr&tywZ(?^y5B*y~TO-WFpXV(wvt5#p3m>n$wXY^{q`(t6^L`
zvd6W>deyK{?RQL=lvLR*9ZOgUh@gv(cCcjNfZ$<I4$k)8WK#ChC(augeF)jOPG#IG
zi!lmasJh{ddW~x@YAA&#Nsb8yG<vP-^2@+|$fKowpTcqw2)0mi*w?9jCzcvcYz9;a
z-)mUk8<|`5Y&P6obZoD#KJ%$t(H8_LXmEGRwp|Ud2snSiDbaM3?3!%cGc3guCbvFq
zBXc^OMgMwZw*Le($e3n{K8~d#YiG2x9gq#uP5PA;!C821+;}(H!F{r+eA?G#Q2-RR
zQ(@42g!pKY-(bAPJfe94ER6Y6)^14_&8CFX<<^kbSElt<B)O8p1qZ>uJZ3$vXZm?E
z#c>Fh@Nrf~V_q?Ftg|7iD;Laulgj~etPZr`ZF(La4p|xxt$}H0%7Xz1-WRdD&g{WV
zhN36&$qw<zReCvl<<6_gZZ$+^bhMHeK%Q})ECQu&nx&+qJ8NaQdt~)0)jJ7jhn-Yz
z$8Z)c(!xQK*2S-fST*x+$1;C*TF$rv(PH=7r)jLf_=F$Fk~Q^!>2Nvkd!H#z7tsSy
zgVSRxI4>Zd0Fa1k!^RngcJeD)db8Ej)rXERagY_w{P+``?^4Tv_T{SiClCE@AV2z&
z(YFxdSnFDqrqz>@?t<Z$dSx+5_mJ21hvp=&mXR4-<&tClO!4|(??xts#2WXj!#yk2
zre>^91Zx`BPM^iha%bd|cL!*0vJub)=$eK&tRDQd$)u@GA?MA4W1zz9tss`}VBDL7
z?(N1op3o_ev+3h~8#eCEOE@w--f@CScYlwoKmi7FnFFq*NKKXDD=RQjU`nhj+V=<K
z-!yFci04<kXYCwS6Q0L`iG-KBP!G>g;m3if!6zvM`k+i3)Yb}8F$*j)H2xd?#W!(+
z(@~;f3YB%=OwNL^6VY24&F;2$YeO}2OpIkeu;M$vuMN%8`PdkeZ~;YzZs6ZVy-*-8
zJ~8xI@4pteLjsa`F;(ZxV41#=O69dV`tO#;GbQegO*4mm7s9Bm=tO)byO`e?UKuT`
zTQ;1%2+%ETEY$-$J+zP(^y0PkNj^L_U6O`TTa~`83x>v*(W3q>(cZ0D`L{c7QCk;W
z4okOfV@%6ua!R#B@L6SPBhp?Sa+4Qh-w}g~<sNKg#TY$ts2Yv@NwHL-G<8G|sSHUX
z`tCvm*gQX1bSIDwRLC3W-Fb@_U{cOiEPU$3d{_KaSj`Y7Ko`UOHI2M+*$f}M`r=f{
zN`e$#z>6<5nc_EvvPJZx^gH2v(CwDZJ8+#fktVn*lK>_on0d?Day-BxLO6X~{QZwW
zhk3_WQH4f_oK7UTLRq^~sNgZ35{09@w>aCb4ENxVI?;SzA$CwEv;WR?VPsO5Z>wMD
z0R8u-Fc6sF(+vxwGuWL68JeNbF*locc`kN1H%t~$stWc*p>MUq#e~s=Q{QE)y@~XR
zjIUdvsmoBxYJH}066c+b%}l~B`1Fw-m*yGjH<2q-6WoM^xwB_%SUe^_4ESQ~8Fs=l
z-(^FZve(uSo=Mx|Ic#6<zthI$aeNWh3dYj&xq&Z+$eHmFIQV`i>4~?wFQG3BGjP#^
z(VA{dx(p)g%X9KGksyBOT$?z`L2b-Db-#%N8K2Uq*3|jN!i$Z~$EzD%>z|H>n%G`0
zlD;x~$Dr77cR5OF>4uHRB$+>Pe&xK}KmrO*ro5$4v{g6u#=~A`p%G%9-Ofs&YCXl`
zxT$bB>cU6ScD4k5r{_wUVOF)2Xl!oE-vh<TR*@cG0^r|i4~-8IZY${#v5eqw*7C`9
zYybW)jzm!kJ2AdXJf1TDhE111gcYk7cT^8|nfL28V%{betc~q;=~#~VVnmBTHzQ7>
zgei8Oy(YODAzV+@JJFPWuzXzD^|O>117MN3^uq052A|k>p*pgd;P%c4%RzLQOhDI;
z{;CjKZ>7Cx(0oI&ilmxd(c6!Owv~sA1Cdg6X=x=har*k%*f#Gqe};TtIiRyU%+s2p
zf-VAA{?SzU&gGLQQHCx0s{^zY<Pnlo%Mp2y6a^F3vr{cf%qyA;Sbk}aA3#+!RL`3B
zfF$qr)Pauvx4|>ADkBc(NMK7lRnQapSXc_hZ!Beud6OB5=81k)!bEq^gIo$)g)c_9
zd*+Utf-0NM#W1X|Tqb>EVrLw@)79^JJp{5wD=aT%Q{VL%*kEBbG<fBQjQh*iz9H6w
zPb|O)&~CK&RgXh^wV_z{mUcyTb;Hca@W+Xx7C?%Dveek+DpaF@i0F!S^mJ97ir@Yf
zkgOXpmox!c#W@EBK4rv5T^RaJd7C5RE<3J0P#4OxoL!AnSuORMkb9=R1S~o2c-O*8
z%2{8~7q-SMI=<Xt$ifwv{5nem56rXSOsGGC^A7##vBZSafb=Jafm>n}m<4$VjfHGo
z(~F2@Ovi`jET){~gP&JsBZI>6hf%NfhjJbOunqhL;ZME0F8CgYk@|Q6mP{-e$&I%L
zUNQPw*7kY8BaaNdG!>D}PDX*SRtAyQ76|6>xiHPQPR|UsYH3f+ch^*XCuyX&moi6&
z&U^_w?E!br$1Eg&L8dZ`6J77OEM*p3%hs>Pa4!<sSF}akB#VO6`{ga82j9!!V+DSz
zJd`BnE;<x5ziRm&Bt$Z}{mrp%o>;%-X6P4qp`*hoD)zC-H~A9>{O+J_uXkPCQkfgW
z=)-+Ij*$L?0j+^F*%xxvHUfSe#R!%xpm;$BcNW$NtV1yabX)a(Yn~J_chi5La=hfy
ziH%D1_lWuek?E|@Dge+#TY$6uVQ+`rqowt#yAyk^5Kwb4mzWPDKnqP4ttz+bdFq}d
ztL=CN_7bi#T0m`;+AshS$dVPj(QqJ@d3-blD(Ai@c_O*Q@SI62>YC7nwa&Tj5O^4l
z93k=rzGCb-6BI`W7P&mo=4e|{X>5U|EzJ<i!}Eh_=YhaVNL{o;agDJ0J2@1H2D`qQ
zTXrHes4{QAL4MLip+qT<ke4xb$kCGjF9PrPH!W7gDfyXLiEr<QbG{r{6WRFZx=x@n
zM(--*j0~CZHnhk+9|xIZXK3$g&ir*#-tk#swtjB=^+Iun{&6Zn{*zX(5rnYXKyh^5
zy`sEBrrIJO=}f2U89tHuz_fR{q>Aiq={9*OJ&W_F_>Q@w+heBo)`~0;zYETkJg<LK
zf=Pkxk0DN+u^{^Z!0rsu2!SMq7)qZTR6u~fz|)fk^uu17dRJ{Y!O19*8@!rXlrDGa
z&C_??%ewd#=S0zo<=u;45>bBdW$y30d&K^pJ3U6VDq(pW^*?_H{Nh?(Oav?n|Mf8N
zXb9ka|NMaDFRGD7s{G!1g$e=bVrpQ5O=-wkR}BSmY{=@ucY72|tn8I0WntB|JbbQq
zRK%m&xUzu?H1b<N8x$vzjwKxeIuW<XJT+|dwk#VYky!`9i~oxNZ42&=U{MC;dCB7P
zfQK0^L55lC<i`-FumM<k4F92A?%1FiEg+f@q^WM?qn_@B?}T}tuj+_7@2{5o4lXo`
zb)HPFAI0?oC?7IJ73p?4zrhm30SvIq$MSm$d81+(ch{`q?>}WR7XZUa#U3|Gm@$?t
zm|0(_T2<Oy#4k?XR(MYDga8rYmO9w`{*Frh{ps=abUW_e_p66}nY!}d7%flu)w$?a
zGS!Q=KR6Br;gzAJB(M;m83IxzU~9<??+)mcDK6}Z?~rnpzFQT#{V<r58{a`~Nli6p
zdGTSCG)H`;{Cma+)gc6lp^6(LAav1Pcm27j!D<3122t6^AMZFb6!Vl)RRx|V`EjLo
zjeNQK%-zliAinaC1`r+n0U>1=ut?+R?xNc$itA+1n02KsPR*el>I@NhTIML~vFNNf
zIP5q3=KaCIDJ|6vaQM8oZU+hypv~-OC;&2$RJj+Bci>a^Hk1O|*2Dq_2HxyRYy0p9
z5Eg*7DdY&)%7D4aB{#v2ZWpjEXUU>m&c{F&#NB**0C4HX>FWjkAoa7v`Uusg&0>%Q
z=SP?3-iZaIHH!{JjSeh>3mq+fgE05xOa9g10bk@h1v!(JO@MuaReh7r=;hzZD4$MU
z&6;>s&Dpj4JYxV8x`t8#u-S0!N$GUoXpF_)D~Fu2l7aT-`0f-~uWX?jK$QYG4OxO_
z-<-CJ=m`W!z5jzxlV<j}0WlM^Zz93D&fWF*<|}C2=hQXQFL;-IMpUct|De-g1Z+%C
zfz?B!%1t6i4hY#`A$+cvIZm&cTr>wLGdU_hm2u72@T0S`RW9~ax9Ty0!~KB&)T(^5
zBo17A>Zi%|c5GO!jJR(J-CFYdq&(+c{3NNkr_}K1bZC}9yzf?A8=(Snd-np(q4Wjd
zTM7KkP2&71n7fAuFk{50$Y*R>U(-VG9|+`TsIUOUhX8k)YNiq?kNt(Ti9OJ;S*!MM
z)Ej}yC=GyGt}csGMOhf)zTb?|sI&P1bdo?!2V_5<dtCPpmzsbL0c~Y+Z!17zN)}9c
zlA9bBx0U3&X!v_f+pI~8*?U;G|5A58C-yGYon`ufB2N<d5CV)zh4XzskF9nJkOE+1
zx^e!ZcRfDfC3@edscUpU&nvh;(f!k*?HP{Mk55_vVx9`ya?ZmJ8Dp!!##Tl>ApO*U
z_xPiyn>8Hd8xK{GFgf0Q8+JItANL`m9}^&r!bpgIEsx*>K7Z139j56NcGEn+ukpe_
zETwQ392<bUDkq7H+S`|1?9E?*e6gYJ-h2DoCGe8JzVT72uk;ej(j4sKFazt!d!=Ts
z`s|P!`->akPULfSB!Sd18=;1^PE1NwMGikT(=0b@?nCkg2Dg{W&;MIEvs$9X>ZyM8
zhR@)l_7wlzU02)}dZFGL_uop0x50q22}_cI@j?%hq=hag=Z?p3xW3{B!SDo+*UDX{
z1wTlP0w)YupC_UNI$9Q>(F}Yl*aS<};K)`BBHgP@02#a?LwpN#g=%Wtz(`^^vJGrG
z66B9#=<)c0rw;O)AIkrKCsaQW_%GSpKNeGEc{On(RA?f4%xU|nLboj6>z3FxI|2Uv
zrr00<PH7<VWG~H8E9pniUNNABmzOdB9v(g-@BOoz<37$CcmTm2Z)$-9f@DKMu(*zX
zv0d}|JI}ByACq!bXG*ZiC8bTQHtxtqiLrb?M-T7C9&rww6cEc8V85d?CkB@ulbyiU
z&Ka&;&X;~y?q7Fn{<~nO4J2*yi(@rEuJVBi_FmsMH5cv1OK7S4ze&@1aGvP;9|9H=
z?CA%rJb+z+*%EiP(?r!j)Imvvt=VeH#=oRo)9hq|kqh>pq1un^8XwoZ(^70S8Qe|`
zr0<L4L3O7jf8-^2ubsS~-?ZKVRpDIXzS;Laa-TXt>A*bYqjI`F!lQxC@y|7uR6HJZ
zHu)#D1`z;B-X9y^3KwyN^~STBdLf04%Hz)OPK==dSp>Mxfs?|GhX^!WFLToXm=4Sf
zHdB&D2p>SwrhVcgh=S>_F(zvs^baZ;PPL-s&=)%d@lf$!|E7`VnjB%@W==f+LK7lF
zNcfnsauTX;+*I%V`SZB3-MIa|0v0*b6ud<MD?DXx8qs*Cq2!B8!a_0AKHM?)rO~RR
zYq#<TFf(UXdqDuOh1KjEB|!0rDs+!w$r}C?1#Fe5!U&o+OAyX5nm6P6^%`oOK80lB
zC$yuU+A`#Szi~8HIGpqsCsS9ARf|gidB8<@b~jA^lG432UqMnI&;%G8y`o@eeO5V&
z%;+Mjkllz7)4!L~R8++%55v*a2?Dc9aw~#B+oux|0aWk3MT_1Dnyc~$)}L7+AY2b<
zsbq+;9QO@LJox@a%stIYVeOjaof=H+H5`cNtjf+n<{<z7WIem!$mNv-MKJKZGRGOv
zEUCq#puR^$Icbw(AqY9OP?hqkl#q!}A$2;e6gk8HSG@5O*3}T9w;&nFlm;7?<$3WF
z=tqI;PO>{(_?!vj7Y1@?KMC?fg(-M~W+i3l?ubWn?@|A`&L3*|=&+w9$;og4X9sNf
zgkXHUZW@`($Spwfgl)VGG&e1e7A7}kRfCGdLN4FLL;aBs;ACfq_H^`9EjtG~>ayr-
zCd(_?L9D7cK=#$r^Rq3=%9&Yc2X%&Sr|e5IrG&|%xZC97G@9SDNS$l&NWnq{*&kcA
z$*GzPl>%}5EmPY<2hUyTSW#lvqr=EgGXNc`C}k$(;1OxkKch&kZx+}yr!yst?>2}`
zRRAVGw%^K{))o!+DCzWyvY;w>zPkX#bE0e2mKMn-LuL@7<Ut$J1MzA#B;s|=toj}R
zR{Co_9=Z*8=pim!_S-@KN@qoaczO5NUsM*e?$>)|R(JD0WEpqe!t-y>*d1?Lm`FQS
zu!*4u3&GQg#CQPlfx8vV-4Gq!j=+I6<_9S9-nX20($&^Dxt0zkrOY(G;M0htn_J+F
zb5vB-P62E+iS;#uB15H!w&7ALhY$EQFc^2eeoX4|%jnMPj{XTgxLHw&!uq<~P|3X+
zUEX!EL~8}=(m(^GcbQ<O=6eGA>X;MJN4M=r2H2Nj3Wo62UPxCfQb1qYarO0l<!2m;
z5u_sKjLMaXE>QYF*YA{$;BSDVV6Xv|eV!QY6Q_T<+PPf~3W!6vQ1wT0p25R0ZJp^$
zQ8KqDMJYeKp7(M4+VoVvCDoQA)^29&HQAf@_8hi{)XveOIPxMQaS2wgkrmlxr%GD*
z{*rPZ%8Hj4LfI4f135|#qm|eneS~8U!rnMs(X$LnV8<+2w0Km3g{afBi5iUNwnGJ?
zHNiNPL@L_m`cn46(nQEV?F{WMH+qG;JBghpxDsd;k0Vaz-b~gQQq_TRHUZ6*(`=&;
z>DcW6_GJO^ucrCbBecW8Hi1R*jv^#z*j<t<dE~#aJT(5_7d6tQDA;N0vV~eUi@{Z2
z+k9{8NGy+Qcs6&MI=*AToVkp0ss%4iVed|6_lgYxR^@6t4?rJa+Ev?cG;o{>)QU+u
z`k(Ah)<_a1uc<TM590)A7B8^uMNd9uS-x)4cdS03a+5Z9|LGeOX>3NAh@kkf_u$Rv
zB7wp0b+w>{LKh~f-q^=useX|FBhmYS!{?S*3lI+$ueX5>90tU`s;I|SlsVo<P=M{q
zy4btt<L2Z!MfpNGBRu-s{&d8+1sf+PCQ?EYrW=WmVSNlkL*lq-YH}N1<)u8hGv`eF
ziodqc>Z-A~XI*SZ@XJjc9U@7H!|T`rxlT@qg8GKwlUTmW@NB9JvOedZtC4*t_sncN
zmak@U&-!MbD1XG3bSjeOLZqQO<wH;RcOPVT7jp(&Lie{(fp3}dS><7}s7-)K0srEC
z)LUU`(s|34p`(}E5A|{$KrA+*0f8YyIBz*Ibt|NIT{uSz^2}FD0D|p|h0vFPhX83`
zw-@cb-)S8$zRr}(8&{Ku!GO?b8J@|F{D-sQvf-@c&Y;9Mzx~Ig;q~EuHK>iyocyGh
zQ;kmwp~)o#Gnb2L8xX?FPARF$B0%KgRxb0e3+lg$a=Ebk1FG=c6^MBK<=(&7m2;}Z
zT&!lHD}AT^1MoZ+=g;$UI~VH#hknnuz_9%*ppj0CbJ-L=00u&#)oWK&4yp}7GPf`}
zFzLRHH~o9&<Y}U32r}<U&57S1W5i9lM1Pm(*aH_%S`i6X1dq6-X6)6!Tnj7E&j$(f
zPBk-&eJ@&gpZ&#Mc_jZxaa1I8&68%D;rdL#$!xhuSEr7@wEsgieyCF&7VtdZ8g{|O
z(GZ*CmGIl`4+jCOiz?V)jntMKB`}#k#R%<8Da&o1UJ%S1k5=Sxsdcz@m|!c<e7|Up
z+p9rL`|QD-6?O1+EnD>)C>QEan{uRI_An6Q0L@xO1-bDqy&-@vfQP{>t(4C_wWPMi
zqK9BdPtbhX0VMV_+!63}ISb%p*<s{Y=Eu0ot=Y&Ryg<%$0a&NEmNY9(by1mv+4W6d
zw`0#vE9{&T5$Gv@vF81lZ?kX%?ut`!ymCq<mUB7|77`))5$)%U+f&&B1t!$U<QOHk
z0fJdl$PBlEBv*M+S+pS4t69}>QDL{ILYEg<L2#(8*Sw_XCNF66-!pCRA;412a%E6L
z(T1Bzs^4fngGG_}!22~n2u@ID1bp0S)wq?C;y61A77uG@&Fo|eU6Xyk)a5G20HiSD
zl~oN5EhF=RvopJ);EZ=U-Cgd#HOF_9fCf*AT>|b?AS%kIlahKkm$X<pixG;Z`g0Zi
zNz`j{Oprfuxgeq9)d?kh1$K&$E6PC7LwjilUIQx$4r%#*)2n+)1l(oSFY=u{+fMTZ
z#{lVcnlC+FI)#_tlv*FOuCxH{pO#gnT<W`ak@M2H&tQ%CrECtP@mi>9-4EVnWtR(r
zh;eec6Ely>rC9KeK8XchX0FKY_TIeCvc(F*GF(^Q*^Ul8eQ4yG_jhIl;2&P+w`6$}
z=E10^NlbhVVNr}vnRS4SlXAV>#-DkpbA2&GuwFYR36Gb;w0D687!M1EO@ZRfy3*$@
z4FsME_nX_nRkGz*KE4GjePUaAEnsI~uQ8{A&P*?u&K1QTs1bw0mG(<bNqDKO(fWF0
zaniTMD~HGZ0lcg<Z|>jge2!po1Pt(g)mg1i06|}qud@gxb9GcbPDA>;MYhziN_Yr}
zU%M+=@A|>k=n2^M`>Po*tTmp`VyKev^hdQ>5OAWd=%6RW#YZGZMqdGW-_{kdhGPge
z)er`fM(E>OiojQYV4eBy^TXP=6(T^ZNW|r+uagm$`GSGB(odMYJ-`_-m74X6tfo4M
zL86jXNrWrAVAio_OBWp@3l2VcEU~s(U=T)tt!L81?Z!vPHPzZ72!W_RTxYJPp&GO8
zO{K8KI%pDIjCMG#emPy*acVS_-H!9ivBz{Z{btK9S1{GW%;e0jVi?8Y$jsC%wi5bE
zJ2`q~@CHf35Vbx+Q!-sn@aDktj)X7y3Gte){)-_(VpBr3z_xSPCcqNqV3%a#%TPp{
zl-G#0J_{0ViS`xqO>>jC!0Ev;HF6DZ9`>kO7NSxnk*Ip*?4)2JOX)A!BBa2G8mc9_
zi@TFEst4X`fHw~wd~K*UJ_qOLPTf-qb94ROkiC@`&(e_KhIZ@#WLR3szK^?7eW9}w
zi7)gECT;u|9Uy$L0s>Y&7y9Vv@+{V@V_WrLg9hC!lkNyWp2qdOd9rmDSE6*j60R~E
ztUzoSYz;CPm0>V0t+U4n*n?r*r|i{fp=X%ibiV*vEhrcn^~m}m=vXf7#_6GVfC21G
zxTrIcgSLksHw80#@UXlbV~*tO)Nr()R$}jw;S)tDFl$bpNAz(2<i-PHVYE$MfG;K2
zb0_y3K8Mn{aZFPSkCA~G6pE2XMoag@$xPh&QC$@V!ganf0U1`-@>_rb;F8h<=nGVR
z8Jn`#D}jX?J(9TVG6=i?VJYN3^|i*mi>XLqb{|eWp5gJy22(N%t#>kh_9F2D8*dA+
z@g_kx1dcFKiUu7r8jx3~Nn6go3A%;=y1Wh~179Xt!LY+QtICL97W<CjB?}1z8#)1U
z>tlaRyV2VkOF}}#;k~#s?ZF9~maG9OWka($8EG8a<vOI)=)ngDA1rixuqqthJ*Qv~
zmZpk2*LadBzHA#805tdEFBJm#NhmNuDJjkP4*e#Kmvnj;w)jo*Mf*74fy22nV^}NE
zV_a;~eGY3CIH)*%LAG*UxoHS{X^Pu*_|Zkw3gCo#@})_KGs>>BpE|l3yV!i9>65Bb
zI<w)%m(yGX-aD(pkfe<AVr)<lT^dtrfvcQY_odlz1SIYV<^ZfZU~yJ6peaSZU#hBQ
zA{0G{XkPz*19)Bt=H1IGX^@^AW(vZIvG_Px4lO>^s!Wm7<mK*08els<Ubnrf@mnp4
ztEcTyk#vc9LmVu2s5jr_x@Q5Nkp5GE95eZoJuCzS*EEjQ91rb|1RwmesB<#*4irq6
zb1Al1Qk!?&?GP$o-!^S|HcwE$hzP&xPu~;voe-!~iHO2F=X>C3;xsfD<z|OKlDqgz
zLYS0HDKnZa$@?9_T;g}|zaS6XXwjBhe?~1{bY1)@Bq@RrB6+^I!EVjqeq5dSqT!)N
zwC;&!*kUP>QlPM5>`Onuf`!bi^FZuAuGhJ02lt!nWvYc-g*^)LLlSCzcy?(Ika5$;
z5naL|N`wc8J*yzdTwF5S=uOBY2%sgzgvpb(u?_+WdXNt$gde)%K^YG%$_r~X4@W?J
zN%3(i`xBoHCF`QFC@6k%uPz8h&y))ZTv~ALw(>-TEN$wNlJ0MAE{7+{`;-A1`JS5S
z1tujhuYg@R5f7B;$r3&x{!yAJ3BeM$O@?vY9;g0hY&_rgS`0XVEgfqsI6v>uL+8=}
z6&mGPNdQ?x24H_kav*QRHN5Y<N;gH?vKT5XYAYUVu3CCK|3gTQWVhk)u|oG{Bxal(
zsqS%h>XScYl$GUR1U%4>=RP`838-eo7B3ei$2#K5$GdRMbD!H=UKsd}!zKvm4fiR;
zAYlqjL>}}gmq96CL8{e&fW4Maz~)eR6LUmM0{4`){G$qOjVSr711CNNh%NI*&AB7%
zbVdY#!3>Hfwcn}_>l&k!Gg1Z?z=S1h*opxv+*pWkBr(%dw17q$j^S7?hFR+AZ-K}l
z%;6d6_JH9?SS|D(k8c|Vd+spenZq|<+$P${wtm#70HNs%{gvC$=v956;S)ew0oxHs
zx=tUjXQlLL^GX5hU9BYcDk0jK9%zLUm1EEDm?<4ZVY2e8*Z>?v{bkf_`?ynk*<P)x
z|2ine?D?#1RY|ZomY<T*G0+32y`wzAwphx*`imUmD-t1!<DxJ8;R=?p?xEAG4IE|A
ziQ`n$pNId(X#tIz+cr~8UPUdKkeEIT_uP4Ebyg~eZ6@*)JXj3ZAFlwW%HAEtV*WWz
zo^263EChpkw~jkezx!nY(6&7EvKDIDkoug!!sjq>u0qOD`;I@xTejgbj0Fl6TAK{|
zryu2|%yE1*Kb^C|JDZ<YYot?>8Nm$li;7{+u%YCO1J2!n9&AX<wMIb(F4&Mmj7_(z
z<dwh`<`uSenn<%X$CdYZa2zDu{RQj%Sr8^wsShuiTIQVP0R^+P!v<J2d25BjB!vbJ
z%%_Y#7be#g@WW_$DkIsy=y}QIFK9TDBXorTX)3yfF)B2`jh@J5Q{zB*$rB_JUO9T~
zmryH{@$Ln-GD5FbNlH92r`Z$t-qegKMuvR!m(O$JSZM|CUL>~?;jO!pQ6jVoq>o=#
z&Aysd2jw-QM2`t$?Vj<oG)m@;tEwYjK6G6ml&#N)BKb;>zdZ^0j3QkXEkPCquFT4W
z{QB}25WmY>AcxrJN)n`a6pK3ZvFa%#MgGNE7E}@lLYz{bt}pOWDbU0TQ><L2>fm9|
z<ulFw%%nB}J2?%%LGRH?d{hFcBmwq%aEzm43D7d`10GM3{P9P>a}N)qC&UnP-#Pk>
zwLQKF@cMD!^<iHB*@)cVtM@aXF)oz)b<T)gcNK7WGB#N`BDLyaBj-rKeOhkFcZX|j
zGR6)DafSFQq$k<qYM60TF<rR+a#ES$wOKELm31tOxN9b=EX+<Tf7r*{{2_R~KS6uH
z&(FE?VcL%~!?+#2`w?^+T8j${=}6y<Ip~(t9ixXpu*J0}@9YTLjh`6PL|k)760CO*
zJ{yJqJ0JBsX8nEy|Lc_hjimW=4gAj!yc&5kA1lc->}`+!cF75po-DQ<jewO@O~(^f
z>ibXoKM{j&<jT(*XR8XcWWv5yM=C3X8g4gsg!K8yG)$Ly{EP@|xMZnJ!G?e~L&8d8
z*Wpgeo$$0^VC4HBf((=~JOKFI;IITp^WI(MFs#4%v1X1i_@QjZvvY_~vld@d8*KOv
z13rI){C@XsC_T+l-4oH@f+kDA>pok3cEgicLCi_L6OJB&LP&y(4gnU=gLI_!_v66N
zCEtl!R?3b5$ycg8JI@50Xg7M-y&;dw3FJ>N0aZa|W`gm<KH-(MRgC8TFW#D0v)?in
zf%X&>9`0&oN>NOgZ7KjfsWGPadyp@_-3<8C(x*x<wkv^&j7M`nD~u4drm@f@6uq$n
z$#u90yQN|#ppErlO}9Xr9TFZMX-)qMfOMgs!a$oBoY#iZaKma4B~E!kDEob4Fw3$@
z*^Fi&gW)=qb6Q;*pLb}XgD9tS^)<yKMpO`=2mv_@m#saSmth6p7WshJBSbur#rb1k
zFfZhb!q~y9_@NQ1(_eOKjOK7qL67W!E%n+s&9RXQGBcCLINQ#S9=o|AJdg?lIk#9{
z=uTe&t+Jd|p2m_@i~o_(cbRqyveUT@jT>(|u|PUxQRCI;<74E^omn*3b>wjnI|~lY
zKmzlgw8^i6XSh&td+-|P%S-_*DZ{2`q%t*7+rZBEQh3AsU6W|alf0dnAmIa;&_&wc
zPS3_J_R*UjhJ!G5Y^XxMT1C@V{X~6C(q(_6d_<CFmDQ!_^&pC}1*q-;)I<%2=g$Qe
z5LiUKPka259Qrb#)88@9A)^Bk?guc{{=OrenvJo5f4{NDcq3bRGlUx&et9*31uO%u
z_6t>|K_)=){eK}6011kuKEv<gJ^=!U!oG?%CxAezLmoHXp4ciJFz>zm5-6j+ozn?R
z9R*vb3H~%;z6}@I`1HbMUYHhD#7E$XJEq}A*W4mKs5HEg0GA=4#|p-GKKFe49l5pR
zpZ{_piSWr*waKB$y?Kb5UgK`-mnzD)5FRVQMNJt0@48M{fr<TE;ErS9R|AxX^N9xX
zNJwXZcqXu>6oT~oI0+7rYp|TjP?&qS*8hrW*#kH@JJ4Vn&0aCPSe;CgHhv%7k*3Z#
zeIvBw5sI<i9SnxEnfP@Ev{0lA;DOQ&MudPkHsI+Z;iZ^aoTdCP9xe<;*E;|IFT=9O
z<z@{68DtjX6Xk)+a#ZKJN(=NeyzXx9dlW-yygK_k)oQ_<QQbxhZjcb)0FDocGX&ge
z`+e0W2oMva7^!>F>QXaVb2cL1crZ`_C}XEbAVCUbMS`0+1YLV-26$|a)#T#R(uHQ;
z&qSa<`xA+Jf7Xu$F$o`o=#Y)ogDo>loTdF81IzUdgWY94ZPihg#WA1_047@9QanJw
z()K?DMo!3moCvtOY~>q3qG4?6uoL&Ihnb*=YyPX5)cG99x-wXMayF)~lCs&f^;E*v
zdzgl%T#ZIKTr^`kDxl5pVmnXxAI2SdnUb8b9gy<mL^J_Xo`499Mm}4C0JW7ut{PxX
zcMC}p6qx_bxbzQWOFGAtOdIf#1sjD_t7~0#b0mOFkY(y|f_)I@0Qwk3&9W7~J(4gm
zEjR3*vrdH}0fl8;eU)V;1q=jwh{>HvJT#%5@BI;+{Q=jzVgCed(`m*QeR~bR0WTC0
z{s&8a3yYp)CO$s4XLqTlVYnbV@&Cqkz=ZjJh!>{WEK%*%P5>Spz30%Zyc=NteP#Bo
z)VJI}E~Q3VWpe8KyX+41{lL6kkQ`>?|KNWtKqqN~z&Vx!DyJ}?EX74DLLfjj30Unu
zDQ8}^#xp{!7mUAU6MyENl{alIk}3Q^OS{OuA(8O|xH0mfaSa*yP-m(7q2>u6VT$8w
zv+E4LFX<Jj7k_%nswzJOi03oSq=#ghFep-e-fFbJt3Fe*JaMp%<)a4`jSw%;N8M0U
zpZ^A^uj3?l=o2#In*0WVngAk@87>7!RIFh5-hx?I`0iH%1`B=}7-9n30w&m57hmLS
zonDC46)5F_ay4?HIuJyu>{dHH&|@}tga;EAVz(-GWMd1yo`XB@xX@SY03GgWEOM0s
zGCt7rr^O-3&_dPKW22SEEM`4JMJbHSxzH1)anYIyn~O`?sUID@6cKZlih1(8P_BJW
z9`ldI#zpzc_0xQg&A)jDqUdD^t~6=&m2pc1%ZugLNl|Y*@jcr9ljj(|@48)7o&<E_
zfsMoDrU2>WLH)^y<sIT3aUeZvFiK;zhpUd=JBHT7n-1Z>vV{NKID+JuC!NA0umw2}
zNNVea((X#@h4hTfJ9Jr~;DS$Y-bcK2r-b7fSd)bXv29yIVQpHuu}9Uw=or<tW`s5B
zNW|3$@`OMb+efmU@S|!oWdAWu_SOzG{5gIKKB|oGxd&m1)I|H=;dnwp6zVL4%z>O4
zFglh}p$`nayfD8yPUiD$HAa8jCe+<1FDoY-oD~Rs(hiOldBE*kRPMGk@(A(2^<lXW
zKibk&$I@UrC>I#199keNFJ^9q3OB7jLiAf0*IHz@um<IM%yE&fgXen2&8nr>ltA?|
z(25J3-fV`VWw+`7#Q9q+DRU%sV>4h$)0;)7MSfMgGSr{!?&;*W7Ntezeu@u>F$&o>
zIafe_!yuU;`aPz3tKJu^R_;qHey^UcQHm;y&CD$FvMnGG-QaBC3GVNXmL#v{R0BQf
z4<M+pJh`OzSx6%#$WR(KNQMy(&~O|LorWk~{4HWf=#J|KV96dDN{ZS*h+ts(UV%Nm
z-e7(H#$r_qwN-=I9I&>Oa&f--4@uS@KtlS>7cHjp#<x#_oa7()^!OYNvm}}K*0TqE
z)UViTr6}Mb{&I?wQ+n@p=hy@&qHR<p;S&RNrvM7+KK4imAm8FIcOU{Z@*0iM!}X1+
zOs}jwci`$eC=dUuKq+0cD&Biiye@iM=L6X6KQ~|w5^hrzB!@PZ{!k8503*wpwd2^!
zTn~*6LpP1O9$=BRDk}e;gA48`ST7ZF^@|%Nf4Q3>*L-kj&rl%1(#yWjOH8~2Mn)Hc
z20-&QIG1Xq_R-P4A-G=%I{yhF_CB9%O_7foAZ-NmCVV33K`@jdGPUSI@B*Nz*_6i~
zP?AH{h;eb8D(m3?Bi*Km(zZj8G!3stIgXFs0|eTFi@aQuXFUnQ<4=bS@PbwgRy&>I
zJ&8hx%)kF&Y`VV?+*m2Gv0n>Xy~VTSw^?(;YOz8@oSiqefDVBL-%d8rV8XANg4|j~
zW2$4n6XigO20M2O(UU#O8n}>Q!bacwqP7VY7qcd^GN0ClT%BuFsE~tRTW~BGT};5j
z=Wn9@k&%gETr?(%rp{kLW(D@=<WP(~+|P$;dR<%1!+%%dpT4292HAp2ZnZ&zRI<<4
zCUGSpkOwd;SApNvD(RS~TszLs|05#EQpHihZ4Bh?9CgJAka9p$MzaeUVvjZt<Z0nG
zvqq)xi91u|uWSnKxBdI|PDU6YZGKmY;#H3c@rQbk0y_e3jyApT+$-Z=XZfEypJ0~x
zfY@{2M?*0no5636Ci{nDrF%!>jvZIInx@7$DnyqLeTxR%48jbe88$q)@H|C<{yu_a
ztKKy5iv_Wg1zTEGlMDvW6uH`%*@L|s{crzt7kt#QOxMHXohF8YdKu$b)Jxd<`!ts*
zD}EIiP?X^>*ip)(gNNtg=cE9hiJovV^y*938a8H}NIFks0HkSs>}&2!N40zafCs63
zMYgJ`%SF;hby;aL!y*~f>yJwvH%q5cGv&tL7}X$BMf6k?eH#wrqL3pAoPYB?N76fC
z^U|Zx{xCDf!xp6%ETy%$Jg<cU8KS#5&8SA?;8rd)fI~mf7vEoyjPK_Z)4y{_v_oZ4
ze1`o=BSf7jc12_qKhrOKu9)jQ$Uf_Pf^jlp?rl_cE<6!J-M00H)#hQ`=gy(<q=I<a
zn%L!(!flg}^(q`z%`ODbK*c9DoHK=NZCKg;fa7}HlON$re#Pu&Fb`I=UVr7>fvk5t
z&;r1MMG}tyXEzV|C_{Be7o>BX_(8i0DWV%E+VFv;<J$~?gFU!CeuU%yU<;l~6V*2W
zKC%24mUD(EMXdNkDyq996vRx-Hq5?0?0SUPe^u@N+4+6+H2R1f&>R%i^I5W73Bk)d
z5W!>xjw?p!5wg9u8{LI2U5p59CMM(e(d&rlf`NfyT2;42SM%dM;zr9Qg88mJrGT1T
zHEv7kFll#ghwjo6HdOf6dCf#bqPCliRbR6#1FGUu8$2|BHDA$!wJ#$HhAP*ear4jc
z>E)^TvF9|=CI|b<>Q!(%dG@%~$`_kihYNK}MmpM$jRl)4&B;Mx;;1@fh%<{!UdQ?-
zu&dbwXkWR~=SmcB2h?TwNeVsr#U<^G)Y9+rvG0Ch;clb-ds7Pz<xwG%mFRmFrHYNf
za-z9AA3<+1EaP^^avGd1yP|`)+n>TzsbyX;Q05@QiPoojtgn;gV;}|5FeAZt$ik#l
zC^`NpTNzi5g?Q-}-FcDIX`1W4CgKR#Sk>3iVaE6IeV&s;0~s>bIplkz6gt!QnbU)|
ze=?93dnc4cxu!NsI#Fq4+wV1Oj?fBsWkrqK8~YcsnR2?r!(-r+IQ>ejU7wyNcuPGp
z)@|p?t*0Bo&LY9<LAyU&E>}&&r%7pTOWB{?`v_!ox~_ru92%NoBERKOAq+Wp$hZ4J
zae2V|gUr_?PIaeP-&i`70`iVVcV1@XZ1KHpj_B^+kF!$`kF2PqB6MIPAUlkH*jOO%
zp)xL}{{t@KF%Dyxrxp-4&W}VmV$L^;-=LI_A@T8L{%_9imR||95yz_d%+DgCVIkX}
zTdUQ?3;RHmOAtEc@1`g$YaAO;)aW#16sxPkVRY_b9zI(73EhimHBqnZRaa*Uc~Vj`
zK0O_ev1n9Z7jAu=#{5hk7NR;GU%Ckm);4T7qkqYu9c3j3G;-6XsqfC#2^>@q*SnY=
zLY`x*e8>y!rl>246(eunEoANtN!_(O>V=O>q}%QtoYp1#qRk<?ZUgb^5SdSX_K7Kd
z`}Wqr$Y`YegQ-T#NrLH13Gxz)zh>y)-(Ut45Z<aMgm&(-Ms%$oZPPG8L^G$p<9{9s
zABaV#k7?4wjHUH~DjIe7&}g<$z9+3+`WX~OJ&Xj0h>?zs`+=pD^;rO~4n>ufEHt{H
zK|Rgh>S@E(6BGzD^Z25BD_Im7=f|&5sR4$es_KX_Qx(Q!vL!5t&JOnF_-^jdBbyzx
z@eCwzj>#c?U!@nz-|`tSD&{=!#~d|&TEXAGm~2**j-#UX2nntUK~6nS{(157sxgG|
zX>?><CVfL566#afrdU~4er;w*o3OmHCs`a{h%}W@58L=>6T1wn-z$;7J}!?VJUSua
zia#8kN1sm9*`f_(X;d+C;e&smYz+neer8c3oor)pZ9VU{MbI}1?=DesVb1qg=*~`f
z{;gzX<@&^Wd%j`qL)D{jvGJHNqO?z7DlL}w$4KNL0#f-FEmhKYSn7mw=K1KYPicJQ
z<kBwI<ckyOOs+ZOy)4~6ncnx@o!w}gnSUH-Q=4njHJ_jUCLmyCL$SUvp`!kn&9tvQ
z&JP>?ujPN^=WHR6Nv<M!sh@Fb`KSVD6>hl$ek$YwJ^_xW{SglMQ}R*L6g7>*X8KVD
z4O(Y-QnJ}kp$-+J3m%QHTRUdoaKSX@HSy3l&wS#vpxqbrk;{TbPiQh|sX652|Gs`*
z6#a9Q3q46yh^lqWbf|K0^D&G-6LneTE-C>vfP<-8eVjl4;<pM!Pqnz#{5C8gQ$QJD
zQxVLF^*YNefIGhPH0#^KJI(rUpMr&kU;K5P@9fc&tG|Xv4tKVwB}$V+S3B?b>YfXk
z3OUO`6>*&n8jZU#bZ=dlIcT+R-IW$JTklIMf@3_jWk-+jTA9AwbsOFD#<yCq2>uWB
zMMiJWB?7XNhfJ5pOellL?Qs>^1E)rOel2_{$H^%Y^;O5R$jCX_d`VMInW+W|7cbtO
zRMgVyNPOy6*KNl|_Do)i$`{-iA~ggMRsxk;>6xJvSO}`Ggc!~BlAg~<Z!juED`{=*
zB@GXfs9Yp6fAyi)N*5EQ{{ymSZ1Tt0$bD9I6mnVp?afJJQyDJ{haPyn%YI2aQdNx~
zLC5H&p;XY{CHMBt?-G-HxTVcA@sCt{w6o<;dQ?Z)eUrg==U|X+C3d*Uu$VFI^1)k}
zB1uY|gU6PODMXkY5W}eJo<FAVU*Np9GKiSX=bJ*)rna~->(*A&<ypGO8;6?_R3!4d
zy4R<-fh%FrrLLybP03$vpy$n<dN9e4o`{=R9N2wFM9JLaPZ=_0DuyHE`M9w<pWY-C
zI5d!`91tk0<s4Ui?5L`jCO($BODa@eLO#K<)z=>s5;8NWB%vVQHy!u6*8Vfeo7o!8
z+ie=8Ah>T-!fuPv%R(lEo-yvK*%2>`rfwD3uNvwD1iYGkjbHM|2)}t}D4E6J4y`r`
z{@VRi^!?OVRa6w)wBdbCy(@W2%+Df1JpuQh3c#QY!r0yai8FeEx{5>|8jG{xVBf1i
zk-*CXJ{zW=r<y^M=n%ex(8C7i@_M0?{if=Y9xm<=KOc^YsKp*z8sdUZgq;L67E4^9
zE1`{JiSE|}NlKePr)0?*z!KHvF382oK;ff|*qi;NbR;@+J#CpR@LcQ|#eei_fGo(}
zTh9CPFA+-YijUG7RU06zp8Z8gcgkQQPv3a=x85os_GPg-kR)JR8W|@^qym0TUumEo
z+1@`uga8TLL<Ksb1k3d(JtlCcxN#1rHh`Lk+E=qwTD`diACP~Y#j-dXdszFYUIUng
zB!|oUs7YcJWZ!_~rm^iJAcg~g>~U0#<r;-nKS=lo&tDDr1?v@90rpYh-m7GiUj-64
zy(fmfi&fwvy|G#gcdO66{U06&k0*XZV_^|DXoGzc-srLU01^auSl9kVoC)4nfTE@A
zF)IWQ?=3M<0S$rYPQ&SOz_!%AI<s{?Iefdl81?|-#<v_5rXq(gk~JR_DC%`#i!ToH
zVpA4-{6ziUpx~RbZP}%82q41w;gFVQ$bA+hTcY&!?P`9Vh{a|?Za&gBkVbNl!N6}M
zK@pq!crEbom8M@^VwNgrn70DjU*p%s+pJcPd6%)lUgw1`x^d2q9A@07psN7SPA$FY
zUSXXcC|t`ut0~=Y0fO4J8W?v^=V7xVwG%l=AQhyXmLJ~V0s--h?P~SY#0!vE^gDHF
zr>xkw12t&Dk>?n^0>B9YXb3i40$v>2@rV$)>XocU^l6oNfD;2MJ&xmjRb_2!s4p%6
z{6as65%E%R{ZhKUHfeoD`%OBKjkWxgA{C@24KV038Ur9QAu_tw<Z!!?Ukeo@<EW{E
zl!qUPCPI{EuTTMCz#kPGK*%{j@eM5)r8Ql&MuOAY02EF`0Jw?)vN@b5@Q~xKHw&VG
zP2T5b4sG3YYzLfAmxz*|5};OvA(7u(kjiq}v7@JjVrr2053D$HfwjfjqwOjUpcb;?
z)cVRl`{$F#^k*=;9jncH_{DllAy}lca!*D-@~{%vEoMUny$=p>XrH8psn-ywan#7W
zDN9g!ClWu-A^5YlYx^nVE*~tIL%`1y(65L35w(aF7dvKri4^34;_Ms(0chT?KfuW}
z*lh(AAUb&dk`KJjW0ycOO}2s!5JZBI+k9yR2z#_408fFu&P~$l%`aFJS`cdkBGQ4O
z1UB6l_>0H>SGrK52+k2FD@}XPTpJ^rkql<;e}aE_4l&`8%f?3AE5<*E@Q;33VM-XR
zEB=z|-v?Tn$FCR8FAgvra_~sj_E&VwE%iyBY^lo5552j4n{RPG3^JFo-nM}XVD)$u
ztt2+!Q-%=$+3f%s1mQg3jp47Z-Uq##W~Eg97#Wwm;RmGg3DJGf-|<RI3YL%0ZCnI9
z`%Xvb>wnKx4Df%#PHvL_Eog-l74OY811;=|(gCrjWsJ`XG8PQ(*=r#F_-CRxM8|}_
zDGx-ee9SDNcb})H&HHWwN|^8<LndV-pJvRj1|J8(<tugSvXF`iO0ak%B?Af$NDj#o
z5IOa7BrTtqm|8RfB~D}I=BYKN6*W2#TtBB$N%mSz#RS6WErbO5cQfmw)HzzSProvz
zHKyt!CI=q3>K#b=0Ld;(fUd~wcDN`=JJt!m#NGyphNwggjBb3oJ8PbXXE{^1*ck?Y
z&BzSM|A4U^7+{RDTtN@W4Hz3iY{Pt?-yOKm&f}eX8(4te-o(hfKp|&QrC2Muv@|Oe
z_|yxYAxYqVrj8Q*Z<tdUjV^<`W<$g?GZXEG4GzfA4r7SO&t}|4&$C8lR~k^dXn$h%
z31E_+ZJo3ID9BSM{c^&zHJetqh~<8hHU^ktO{>68Wd6PHNbJ!Or&CSH!M?EnIrw@y
zFLECX`e!@=dJ2qxH$5*ISc2>>9H@fyRz-g&gL-J&n}_J6cor?2E9mGnP|#EukL(1w
zvpke;O{*D!3r)^VJEi%QHuYE-27FOso_(aU4kpmY4B23cGX7d@6q!`v8fo;kOk|XW
zm)JEjDI;iGOatr8cx;MbE?n3e=Ji9&py7|0;q@um4@?s<GFe-nSRHQP9ggO^?kt?m
z$#3?$@6xUqD``1CFrRiem<q3207m<;jZ64?rF5ki^A?U9L8VDiF8MXN6$ATE@^O3i
ziUOpKl+!W4@o`-rza{xWg!|+s94gP~d1^q`294Y$^QIcC3cLFm@H9$FT&h^boZy$X
z2)Uz5Ye9Lz9i7HPnx}%3h?16qaJDeH!@-?ezJjErR8SCVZ&y!n$N^o%$7h{3S8x4C
zU17qPAmG2Y{+#|#Z+?DrFEc4r%PgBA*yOp$HWC#6@ItKE6(cd5eKO{Yl8E2K2F?$W
zYMDgb<R%x~yLI;QO9D~dTl4nV>iVO_qZhYSLIc(0WNlTlzJX}?R!>>3`tQ`J{qV47
zD|5d|BM!fuT3lPb>0LJ&l$Hny+a7&`#=9HlAd>T?at}REHm}Zrc@Q-MgJaL*Hm8$k
zH>iTiL0ImJR_KbrA>aN6YlYm^#W`3k2cvMd!n3`0S5drLD@*lg4x6lP&AN5MV*YHm
zQn}YaE^63yd5(Ik9zu~+Z3?kab<jO-+InYQIO*g#y?>gvB2Ff3L*%Infmj8q5}0wB
zBM>fE&mSZ+xZhRYU6!b2+SRuAC?<4<5kz8>()k%%RB+4^6Kjpnrzj<8Y>Y>Kt|}*R
zNS@t4*rw0r&0S8cpF6Os(zNgwT-eCyU00%s#X;u*2`+*kJ(fLesx@e!%s#N-2v-eq
z^%8?pL0>ILn#0+Q^R1ounw^=;B`?C@FdA%|_WgR3UDlo1Lfx}pthK|V1Pjx>voe|6
zdlZmnY@GX3#J|0XVtByq#(cH+F#R>h;dZC*12+>a$Ri3)@LR7&`UbwsS1cW)=#Zn7
zh!ME^r$7Y$oL$IY4+1}dLqh-ko2Q~yzrRBeF^RxGn(p{5DxcF8rV(2#mX9E3^}gZ$
z*9*HArsbY;+}()Dm)5tAz<)?@-QL^gO^DwQk?KFY8Rp8Xt1ei!@N?ainWcTA9{5H&
zrguaqy%grJ_f<>LG`LxhQ}`U`2fD<a(JF5HWWm`<QsDoo>)NB)%J#6%ZN0`LifBEm
zjMjK1MMEb>k@42jD56xN9i`s&tcXNAQL3dGRO3}<s<<AJqJk2Z(rPL3ijHDZB@#`7
zcveb!kItR7?z(r~^VivH|MuB?|GwY;_P6%hdmj?}$PW*2ENx0tf0uBxZ>#k<sy^V$
z)j2d=<HnSpKP}=gMPmA%w$YoL$D?DY83WG(AgKIF!!&83<%$u2U6tmJp?>6Uy>f_b
zvwDK_ub7|DuPu*SklYWCcXH`WE6BwTzjNz7LjI0v&p|DBPL-7+g(YSeuCca7+<%-o
zt?Ion*sf5_GuEzSCGg`3zRowOBm(2+oRoPSB*4Tv5pGlC0VSf1qU2Ofqo=V?I=e;U
zqKAe0jJBCa(MeB0m#0dzg4^*^YEICURG1EAm7CcVZn5lUQxw?@dtsk0qvOuO7o)BT
zZG$&O0t}dZe~TphWhKvA<N6U%L!H?r+s9tIlQjLFu<+@|&#x*OiWozPK;uXqvi6<V
zpXa6SGHD-X<eP)tHYdMDxfvb&pleh+SZldF^=bR}WeDajU+WRF*0AP{hK-F^ia=B&
zj~gm6y2E>mTkclYj+`z=CB@jDN%O1VpC|$8?s69aH+Z``IQslqBi}wo3buqzecq5C
z=(>j8Sg;{`kC*(omi@+Uq8$}@X(XRyxr^m=Qu~d<C423iD@N6u*t;+*8a@Z<>2ny^
zhqJZ%sQep6{y+}sdC>5yy=86PL*4s;IGR>l5T(y70vD=G#zB8HkKyh4sD~X(&PQGM
zJ&6;w+NREBWtM}79vY_o(a5`Pf7?>+%S>;>Pj90pF#-O|@$fZS$O9iQD0X9eKCOUc
zAy7qRVNaQwp8h!79dj3509FZ%kP*bg<JO=HY|IYXp$St2GuXYFIJB*+W1rnd0BW>r
zz-w!-okMrO*mZIrOpWS?q6zRX&)Gx_TUw`%R%yN1cRu$rxx=jGX-D#6Kg>lq;)X87
z(HoD?C6#g%cr8_=l<x^IsAxHbllUhD^4Mb7d8}f#>&9w{evsMXBehCvA@@YpSUxQZ
zg}6BHPo=A<DizV9$W^6PYn=(F0tUd0HOs@|Il6~NvA|7@@vXv%NYT!<kXb*(MF?c(
zAz`NsT_P0O44p0wIOiLG%uqLe_0y$Uoqa$DErJ5O?$o@KFRNgbm<7MCjf>1aTP7G(
zLGY~$nEJ+_SeP<so{PChX?giKN5A?!zM^e%HnH7Ap0+Z4BNexSt@avq$SI?C54Z)J
zB}<7kZh=CE)CP-6YsPAnrR-lgZb6JicG4peEjHFyvh1k%h&Mk0VMc5o@u!Z2c_mZe
zuUIXE&imVYOqUB~_7P6wpA*YU%@+PxOkwPS;*@?&Ql!xoD_dG}%Fwu%#hNz{_Y3oJ
zzsdO)kIT^0@7*s|kSn!eo)qq+pmpdyCofk8$6k=T4;1~~r9m=U00aO(k;5EawaD)h
zMjg%HFVZ-MI5@u?ev+Hofv!dxIaSDwhK?)0tn`h{R`qU1NLSmh&iCdx62&>QnF(Ot
z`8>zZNxYZYn$r%g4?u9rLYdkdIhpmb&^;(w7z3n%sv{9y{j1dW=P+1J(=C>w#}SaK
z(nsE$_0OZ+k~oLb;D{%%{-8#HFG<e#s>;9Nf{5)v_}<XiIh($y>?od{W1I|Q|1s+_
z=OiBrzBhEo599kYZTvzVb$8(>h7)-}zzGK-K8ccWjfZ60$W$bT703+pdg$;r%*&BD
z6sHMRKey_T&N-zwtQQq!ZzgC^DxDiX+Lhbr+A?L5CcUzzWa%SkDp`<a(sw`&!fN$*
zwspJzWcWtzX#Z`roz0~Bu`Bs%on6n8utlw=FMGX_k()4X_UUA3;TvT{6*7F>mC;bq
zEy|l+hi?qw3mwSyui0oH|FM<%eF7o@|1rhUr<7CPGaEs(s`NP27Ca!vbQFR$RK@&p
zuZKQoF$ZkF&Pv?=)*Rw_C%I0qow*E+#H}S&74`YI7m)E~!w+=n?i8dEs#B;);gkRa
zc;K=1Aya_cCbbki5WN>egu>1o{?)e3k>9A4aA}!UWyJWzg)B+B{zcyRo`p}#vysLW
zlK;{)tlUmpdyK=}_Gmsmx$ygAGZ)fxtwA^s{6SzTM(gH8uy9W|`1uch^Ej(+eThFj
zp^wLRs6kU+UTzjxrG)KnLV-m3Jz3im4hH~?xM!lo*Sp-N<`dh$!)2sNZnwy}aO<3@
z-YDj{j7~>TBf49xAJ?UXIHft1UrW31?R6dOKxHP?9~6L<Y<3drLC*zXDYH0{)2)_m
z#F-#pz*7JuAg6n5+80EKdx^n1zbCo6_37iMX1d1zOkn%x;jpiRJmc_0knWEs--m@_
zL$Udw56M>sQ^hfPW9(<_YbLcNpSIQY4rVeZlHkkF2PKgx<^;C17Q;dVO%d`3aE4pO
z9@jNh5XPw?0d^yb@N78toQ=i(14sYj&G^W`2$ngg%l}zywrj;X1J#%jB@^np;BFeI
z+*1<YIA@z2yqSwyfE1Xsi3#lrczk7j=cW1Kn|9*PQl`t4+Z_@idgC63;=A#V5sV9N
zyj|QB*l$=v784@ln&=+B!{fzGNWU{jEF%OH_$~sj`OI<HVY=E7{!uXlmK4~<633K#
z>a@TtObX0jn4hf#y4`7zb9+38NZutxx_a{KLaWz8Jly?T+{%3ldB%*h+HVK<8EB=i
z9eQZSRn$&R6vk#!8Vq#mshl8cU}_#|3reoCwlYb$dihI6MlXG1NwUIoDYng;@rge^
z-t51nA-|`83iJAgk^ADEKNQlW-aoja23E{cp!eAYK*%#uP{Vo^gkImRwY~XX3O1#s
zkkQlB7P@t}H#_urwkvS7h$pmNY+U`g^_HK)YbF;J2@Yo3>nyLAIk)%B#<u0lVl9_<
zsysIJ6mF{*sf33<nR)k7H33|Uu3cP6C(X!&)Q1m;G6SCG4zOwO)Tb_@QPIp$CIv+}
zup-f^DWfC0_4zeBw%V&-dQUXHCwRW1!v~=8$oUb6rSf8eS=>nQa{f{~yZHxtLXnlm
z(0htN<Oi^?I5wJ|J|uGk_Enil6}eV8Yl0Fimo%AGC|>4?>r>VWQWC!?eHC8Bo<4ue
zxc-0(0lEqHqx6(taheJe`@h>O3GmTh3@;(^Uvdq|`enb=SChYF7V!GFvXij;I<h7H
zt?d58^nbthx9R`ai7S?`?jDyAzXOl~ejEop;+MP7iFK`RZKmG$dubO3cl&xo;4l9I
D9<6sq

literal 269993
zcma&O1zc25`v)qaEFml)h~&~8g7nhe-Q6JF-5?;{(n@zqr-XD!cZYO$-R1q&d;j<K
z=jC&jot^W{nVDzesqdT+S!t1%2-pbEo;`ahCMqcZ?AZ(FXU|{~052dpTpr!_&z?aE
znh6NViU|mSWbLet%`A+bJ)?;BjFOUo)_WD0@wSU1{Br`Wrcj`eDS@n|A_eqoeQ^R=
zhKO9>+5Q2+a{~2Rs|h+&xjF>(8WgG<cuN>oqcOaauP6;R>?m7YO`6CqO%3u!^s)uB
z#%`4O>KaRc>x`on@-|$)g>prjcyaLnnS1VY&UY%--3zT=t&f~s*M3I9EqxJh`o8kv
zpi1x0^=-hc@F_%~aog2Tuc9Z~)3%rzGj0bQh1;~sjh?onw6ACe>Fh0wyAEH~eQV~H
z%{NvNyfq9GtrQJVV-!qEuzDDhX0C#FlEc-n6o^J+A=F=`=zA5ASfJ0qr^?ozy%#oj
zJbW;lo};^h1U{~*oq3t4hQ(&>-k|~X@Go-BNx4zUQeQB)6d|TPDDgd<woO<0#)A;<
z-tAhzF1_}u0e_|80l8dS?KtI?stSay%0{YU#!^zxs32*;GpHc5XRweI6y$>q`9QcI
z^WhmB<Qon05&R7O*WDM+pJDz=!z4Tr@+k<2i9x;<4D5`Itn5v#9oUMStRat@GE-D_
zP?eJ8FtE0y(=)WzH==W~w0SD>4D7-INm?2?=z&};Ev)Q0T)2q-L%{(_KV{Psf&N3{
zV9rIPDkTdNu(mS-vCuKlF%WShfIuLyouM&@yrA%(#Ua1Ah)f+EY&huYot>TOoSEpX
z?M&$3va_?(GceLKGSWgQXzg9C9Q0ght?Y^ac*tMR5j3(lursr9FtfG-Jv~=X-`dfE
zi-_o{qQC$CXs3~j**`T|+5g!sNC)Yk?$E!bW1#>0*^r{(r(6zMGZ!NZH9<2=2zwxP
zaI?Q<1OJEq|8wV`8vm=L>OUplvM@9MchUd4^?!>h*&EpjSX)Bsbm0DHX#Onx-#7m(
z2&RAP`hT(F4?h1V7s6<61Tg*IgT{?8fU7I>>>2MfF+n~>7pT3o=N^h8ue<0E4uG1_
z-xd}Ys(HWU#Cg$v{mT1AmSPe*XZ-W4kByCuoRE8da41KENrM_JDGP>GGgtL@PM7;l
zuBVH4&KE{WOqYwMhw<>?u%bS&si5-Hqvw=6(K8{$t^oL`XTQFDs$erY-9eGWP-vjv
zT>ww$SI+zy?8BnaB)q@5q|raut-a&G|NlYyMaE}U`X|%Y8!?}!#{b*ZW(H|Ns&F^V
z?@2*t@Urvpo||CeUw8g5zOYI8tVWFebOHUIG=LlGBj=alR1=claSH^M2Wf#VHXh3F
zNqtAid2Pwhl1{^Z%UF`-caRoHXRZ1Eo)mZkOK}juZJ!?fuU!2P&r`{GZM)4Jz)`;^
z<<EH5l{R8B#1!)v1AjTge8wOxU<;3cgOCbhLN{LQB`$dp5KCz|ML8sa&zuamac=p3
zJ(Ymh073UMniI!RE+Qy2z)NUO6rHF{{3L-jMM67df$^DY_l&^{cZWy$MDMNJ_f=?!
z|28o|aZgjiXc>$LFGvQBDmPz2{xgnJiyySQcY)z1OeKRaku_o<MtoMg)a*{~eCR4R
z`>sIXaouUiWp~n2ERn7xt+|vMInvWv>u?(F7jwmj>8Zy8;oT6Pm_nmU&GSt&OVHy9
zj8G~R)(y(M`ZB9K$v<3DL~c2W(%YW#;$<SaOosS3=<D@0r;_#bDbH)8tHYZ(DV(Xq
zN+a<XZZ~tz2Yp?kiKGVKkz#((3Vc5Aka*7aX|ixmGXkH766WSSjxLS!!*$NeDHf|<
z;ds8XTCVg7HSCM6)$b80G+RSDBSgw&_zNW93of?%wTfTOno>gG81rB`#?v+cc!WjL
zgVScqiO-ARlI#8%f*SF%4Cq!YgrB8tqfJ;7SEATG-x&v=m17)EwR!pddyG-h`p|;=
z>i)fCD5p#YIDW?d_4dN^ldYGs^GUV3AxPL9@&`-ay6?zC(8%KGxeqB8S|8dqF|}D2
zn_P)i%Cx2uombk8PK~tdY{ckv>T{P=ie;7czlZ59ZtV&8vt;zu;5F{!KbUn#8uqlc
z*d4SBX>Bzf7A?T|)ft>7>{ohj;oA<!3xE!$cin+0MvlMO%zQ<KA$twUE$<8-8pyW|
z9xGF7nVDz2?JXhU0gYD6O^4X{WF<zC<ws60s^=?%KfTF%M)a}<L^{Jz1w0m8;`0_4
z8CPptH!k)$8SfG^25vjng!iT^jAqxp4d*Tv#HZg|wsf+eV)p;6KtH=>BEJw{6$}};
z<##if9(hpLEK<o64o>gWUJ^LVwn+WOLIcf1wodc|9-=M!quf5YXzo`hd~Du<;22oZ
zHuZV6Mz5+Sk8AnW@8LKWY=CX%gI3ChG~AiWzPgGm5}5-{yNw;k>lzcDnP!vLf#fP#
zx62#h7*YxBz0*KLn66L^R4{)(8ks1_`;KLNX}i+6x40iTSvuvcb-#}i;x}^OE_&u`
z`KyIpm%v+x>Re+nM~e8mED9EWwZEM3UUN=@T*E!H9X}21s2oEkMZ;ccVlUQ1Ku%BE
z6LgMu6nd9s$2u;*l4dM(%i7a@`V7MQC~}*N`RDBR7fswhbXp&Y78)+2O@`C^ze~+!
zmm-4sBQn@XwOhVS&sJL!;=9hD*H;=2QDk}H5&3@z8#$!cY$ECUh&ee249JzvAl9fk
zh=PGbkuX-Owb+h15es68VX?&4>UL3YHuhhxaBj_O^14^wfa#;QRA(J?HI;?aJ3=b^
zg39wq;(EF{8ML}M+pu8b*0>--o1+x^-R@-l&Gw9m58duqQ6nyghae`sR!);GT3<{c
zQ?_lD(}{YZNs(4n@?BX!xqPcFPQB}CO=)BvW(iL`*4xbf_Iic&(?`#|8&4g15}8si
zuQ2gQ0-k7=ea_ul)2*UMM@FY>_i%J_C!Y+y#|*D%|DXub4`<tkcd7~pSuetQVrmZ;
z#hW>pb8NocolN~aUM<+kRv@}n(Q$~$mD))eK2>&=kxFJ%n6#cIN~F_@&J;ovYb9u5
zI;@>9-{UNuNuG$ORx#R4ea?}A*4YTf<3%5cu*t+~dzqdnsk}A&)wR)u$32&;qvdu}
z!tBQ;x>lZ?KgY>T-v0T;=@z|VXHTo)@FI*IUm%i$y#zhrb}Dab>Vez)6u$0P8#QnT
zR+H!;RfQe+G4URlY`hugoh@DR{()nxP6*C7IF`tjk=@&_EaN^jp*ZeM)oW4qrR?Q`
z`IF$tVGS*l^U)dkLPI&8^W)9<WXXZF)-bR<x>GsnX`Xo3NzQqVtw)DjwP9aCt3y(j
zOi(1gN~}NE`kt$T^mE+ToXRu{c|W}GGM`h3%pnxHZH;HY-AffBVCZ%KdGuB*LTq}x
zKz_%PJNg-Xz)PqObGVgGZ02HWbTaA0tZo^EJ}trn60w-+`HBtdN%1w|a}uS#R}Dze
z!`Y7yEQhQtFOYD_9;K2?mxLqnwGMb(@?k$_RXQyQ(^g{Pa|1$N91;ZceOS=;R++S(
zFSHxI1L5&l5l7;4O?K<^w70$4Tw61sE7Puyq5JUD=d_JXI-SmZ(sFc8t;%q;EGQB;
zF|kZrY!O_4&K}<2mgmNic`#RAYrQ0Pb7p3=@L}+V%kJcJS@}MvbIS0KW{o4emwdnu
zW?lxy0R?z@HgCVH<M?u>p}X4c3bd-0n@xAIG>)7&dXpQR^ZsBS!-46L?_cchH)+{(
zx!u?KD_Qzm3^GWI3dT(O`zCe=Gdj{e;hwwtJ6Y=x_f9OS2V3EBdKw+DMi3MQJmRog
zCG~&ApbXG=&Eig+J=XvTig;XH;n>~`u-{MDxuz6r)bmzN#9s^kLUaRjVKW<7_d*j(
z&&CE~jJ)hcuV&1)2Kk1G-DE0=p5IS=;u?;7H}BRx>zFbaYchG8>KQ3G>4;PF7Lilf
z&#D+pCzDLmeA2o=h}2{brDRPQnSg?;^<F+#`ijBTT~I2b=ISTYecMM5Z1^bNX*AVM
z_p)Nmg4E8BZxjku%8KbtJ90~)Q9drK=Z0Cu40o*4+P9sSzoOHY!)CUm7Vx^3x}ZW`
zUTAdolCBV3=zpn~r;~BGepdifsdr8!mIrnMIbH5qo)r6<&ad4PRDYH&=jB#w_DC<*
zV%MRfSb?@gems|P%{oXL!VXBo9K`PZ#3KSI?U>ciZ{katqK}`XP5I<Zs{@uu><WFY
zf=&HppuA+x2|K0IahI++jl`CyK=n&l{ruz$*nEY&;T!k1H8O^drRd1H>KLKZT=BWd
z!NCcW!skc~!FwOdVQN~#v1ryF-sA{<A?}v`w98ppVb<@oAINOK!$zsl5Wv0OJC;|e
zKf%!)eu~Af8sE2Jv{)R%coVsDb6RWVJyqJQKFxPMpM<_K@<3Z@K8H;kAry%z1#g8@
zg0kZND@n;fw2U^47cf-ub;6wW1*J(q?IjcYK2CCe{!3ev-V<iV)vX6Ka%tTDv7Xdx
ziMuA}u9T2ilit(U^b;f+;A@$UynN-HOl?vwkM$)+tM+&7U-;n&ze?>VD{0v_0L_UN
zz9XIZBV-9c3=cpCEKq&7>Eyv@BHtLz@x5XZN$Wkguy(#X5G(_vqpo9d{|;+5RT0{D
z3!_a6`0@dc?4FP&43}G!VH;(xVS&W!RnHcoj@NMkod89(b%SH{p*L23NAVY%Rt|j2
zZ(a)BI4hGM9#3M!aE;L7$_ksfht&Hw!!0)(D=g@1-KFuI1}XaEsT&bi5=2{RwTsIU
z5)+iI^2;rO&Y-VtVGk4Xgfse-)&o9Bi!4g--<_yztVe74Zjw_eW#$hV1o%t5q9^KC
zE=C2=sgxysa=D>1ZhPPnxwp93q%7sHil<Uh2+HW-7TG%;=J;9el%GN*#8{wI7RWuo
zHuV4#bawlSGN!22%v;psy!PdbvQj6!dpCM6S#9+X5P_;5xI;~Glsen&St2)}@~gqJ
z;Rj8pbN0Np6%VxZ4ZrV?YyGCN5vE$JSJa_(rdaeT9Amu(>>QP$H-X(s{Q;E<Komp$
zawU-Ew)CV_wj~VHM!)MLWp4~w^cR?0(SGBXIad4c?Ji3bGscLJempjK(qD%v#-SOR
z_tiGvgsy}bsvY<IKp!m{<}Hvd`C{luPxdmoCh>;>c~ZyrXDgF<>P)w^&G&(Ky!`?j
zhu&m6C+g=?v2oKOmg8M5N>qnJ3&I2;jR*?P!@DhK*S7hKQ^!oPZDY+_kqrZ;4sD-N
z-5wV`(;4@sTF+T#8@}+vsHx}CEu6Q=a41kzuD9<8i?tnDOjnzDe{yaE^nO6}W$<NC
z17sOZ+mQn5+U0X4OS#OKeaFtdGsL!Ix=3<QJbV`#JViJ>ZgMcajuruP!6P<-p(>0#
zpuINyLI(356a$w;kfzbWJo`B}nDB1Kbi>kL<YG^4aD#7wLZ?Pi7UfuhC;5cY>?d{D
z{&c-c&{e0SPNSE=l=<g&#}~$?Fzn041QaL(b{l<qrO@<QP58N*BJ?^fqZ<In7yh-%
zl;^HkALhaAc7{xg9A`ULwxxICaZGy~{fTa;oxNi>)w*6NRptKBsZ$N~SB-FTNG!S|
zHnzhW@;mQLDT%#qHM|ep;4*$?7`H$7)pb9hIXRydD{h~EXQ?UkaBp3he&x?9<L}0d
zx06j6P*>17ZZ?*CVUI+H7|jHAjfc&8SN;)?-Az}t=6-!UNE6u$8F>{)(t%Wtx|NVj
zulkg*dbGLRTK>J{$UWzciZ?Btf-4ON)e6k&tB4?8hl6&~q*j|G8Z9=hkNMfN<!j{9
z68^^fj&s7qfCc~VFC8LAt93jM$Gr+B>zxHvX!Pl3j@5FP$?C_Ryd@XH?KT}iW3eq~
zS@ft55&Q&`7QIxD#j74y3>NtF=u_wysK`@B)7PPi=bKsGkrV3{$Ztx?4s}y%_M)6D
zCG`TLvfwi4Zvx=;u;B%bppWu>&woDTNHEZ7920sNozF_$SHq+5xiFJSerj9dHbGd{
zGH{u8apj8A@xGPF9ZbzTEpC&@k7}6WQfP0|tG6>|WqE$-?BdbJ^rC(UDViu3tu;D@
zG~YNWuY0n>cJ+IW5^gr53)lVWAxYZqR#ac0zdHkxzNhQbyag2VC$O44yVsR~XsyqV
z`eDZsqC}{b?UHakVUv%JB<YbVc6;CRE}BQO<tl~;<TsXB``>T|Mvva8dm|qms8!m0
z2*cqKa>rR{-pYB-6YOPx(ceooV3PB3gC=E#<rfwvFBU4`rZ{yXknRFQt+1e+`^c_9
zDeGgYZ!f=yy)bXK&kREE#d%`Jc5j`OhBJUH8OeVd=GJ~(HmirU?0jc(WS@6BU%o0N
zu0U0#<<`q5`KP*hdK8ni1H^LJH-pj3le?d_+nlCjcXSC-l&{BKZXTE4sO9r|A^BMk
zCsQt_GsNg1?AXrc(rx=>rn`X>Kmq589)e>Dx8b;ZvEbMA+B*W5=<)tE1-aJ1^Ny#l
z=zUyYhru+&QZSrKz>rtoFwM_7@gPxzMzyFyb4Hr0bj))-DT@v)H{RQ#h8KJXZ6uB{
zm1qHA)^ofUQPRc;p8P-vPCjPn({6DiHCH-FTApUXFt%J?M!h*6zx4+oTc_hMIWn`}
zD=wty)<w4UB~TLDD_LQ#RXDEM?ce)f0)muzU47eZB5Ths{IRNCdJ)vVx&+SGyUT#I
zv7EL~lnlm(o98vL2Es277jMm=v}tCljD8qt)a;M0%pBz=AQZqyCY8T)?gGB}wy{@_
zxGCZL(|&Wn_0(O(0&5X`RMX(KmRsM8QDhOMZr>lJ{Q~8VF9LU-?AECy5$fLUy*5_l
z+W6{Ah_3QK{Uy9tARvt`9QBu%)<A*r0;Q_TgEuFWAj%qIW0!+zG-v&;2vRAWi7`D#
zOd9pl6ahx-06PIXANj6O4m*UPT_pUY=C5*M4dD|%0qm@1I~Lb<3M#!xwQ*rLr#ki;
zjhDD1Mbj1XH}s^8IpRtD?)Zc}KqTlNX3TOyVuLAEcc^=}_&No5*zqJ9lLL${yw=+z
zr8!?sXL+rbT8b_?PvZonbm`K0gl20k2?vwMFVWq)O;PY=dpZnMg=^1Z$ero-F@UUA
zniy844U2(dvc!Um#-s;rj3#zW?x1aG?r2_EQrTJ7mAle~TM~*dGqTRvWm`kebVu_Q
zNWC=%r{c%+wKI2h4wDM52T4t=G`sBnV7>N$z7)HUUT6EPf?J+^oYsp?(LW3xm{`^L
z;71wORekprR<NB9W{YZ%-`SoZnT>xfd1pN#7djt^kPJqvus#}zJ`tC?Ydt=WMkRif
zC!})kt>wBE13T*UCUM~unx?eshG^EiNx2h;<1)`uAWxdl*AbkQ>+$(kGrw0=c`YSB
z)#}u2)=Eq`Q#@yTe(TW}+E;$)c29AY;skL8eXF^wGWkxI*fd#UpkDrr5IKV&Kq_G7
zRxD7fs^(4Arq~>^)_Ux4L!amQC3Tj@3qI)#ixwiaRJMwL*SH|lz~p!|ezRYA-n$q<
zS}&SO|F}|V^ZtS*3T7q38W~69+Q~+<2s1Z((teZv#~_wAXOAz8URV4F8xDg9T(WKy
zt9ZWq)+udT!2Jt<)}dt`;q4K7mqXW|0PU~N61^wYomsN%_xV$GC3M~B0o3cWZ;Q*j
zvP}m*y<NZ5f$Oh(OYBHTkR>gvBSCEqyWRqbAk4-`VrNFa)jl-dpndMIf))--1Ow%A
zfTcI#x7u8#5yHo?HoaV_TH_IJ1x-}uXoVeIg3%X0d0ShEt9x{1Kl$+$9Vkcq6YSA-
zXo6V!U5+Du+TMYX(OsumgPO~39JPYDwewwFIEWrKAbGQdC%TXsM<NNKI(x|{!|2dU
zhEl%n^YRU-(|O0VVVG8--WQCJ5bg22zt1~1ch^b1#<W<V-bfA_4Cd2qyu^<h-QnI&
zFUv;8DM0kUj-$86w?};PEYPqcT*K2&O|u>jLCih}t^jpvmC4RY4_zz^MTnp2JyoO_
z)`PHOzP!xGxMGMc37{%{7m&AmXXd^@($oc#mri-Ba^vwB-a5A4zx$<`HF~&IzWT+9
z*_M@jvlBYrBzk;GK_KAWue7rxK9I}mP$ddGF_p44$#tl540M+yy7JG(58-oXRQo;+
z?_KtJe^MwilnoYs5)E+ft60lBGg$O9QXe;)nJ2lK22*?r+#b!5>+R-=pBd}kwlVjn
zK>c36K_!TTq#vmVtPKkiN!N_g4pifJVJU9&UP+n8b~NCuKT#8Msxr4tvly%VCjPz>
z6+MF?z*wODP@`p0FdSQczQV9;KUnHnIxCQ2xp^(P&7Y(6Z1x-1Fd$MXYc}XMhg2!+
zuKJ{0t=Y+cqZDL4oWi8m;BfGn>t;FL`F2Q)b`caLO-<SkV*Rv2`3hnSByre=y|W(W
zmCqBW?16eQEU>PBz1^)n+Bh|}d5UsV5b1F)M7|#gD2sylJa^m{8Xcqc1f&*2flDUR
zIC;CvyaD+GThSU1cb=c>)0Qp974>*+Tiz8YY`4O5TYKIC9)LqO+#NgPg{5}$oeYZ~
zW{NH@?hHQhx`<_-y!kd-)XM%CelM_WwEZ3@ze$j_RE@^d-J2TXYUEF#O(x8^M&M>s
zLDC`XY5Z!ssEFrw_^m^v^8Mfo<`+W<O@?{W*u>{MYzZR66H~(%zf!jD&}}%5+g7r=
z&$BarkaQw-gaHkMe?<0v!R+h!o{lGrp2iS4fAHS#ZF=*2H#EDR@}(T}OM>;AK@Ir^
zLpd&Zr>!Bb#%@?gIAvxT*%f!)PxCaYZ6qvuIXB%@9<$TO3hQBgkw>ah`t1m>`{=8b
z4hUQZ2U6Jiws1!|i_;m{ji-~Uw(bMiH0s^_`!tR<WpX!$6Gf!J$zU5gtp<JEOr67d
zdo7+H%bZ1buX+;4KWj@RF?yC-$gf7coe33d=5KLjyVC?NMe)LtJ@bWImDbG+&nd5x
zm2zur2PrQ#xG}cn&VIEbb5WgLfzhB{+L2ZBt@ekB(lO?3)gEoNmchW>Z_uo_QwlV7
zh#e3YWN4RBXGvwygT9u4M=39wDn*1P2qvF=;hSllVSV1wzw3)|exW{^BVn#3Ww$Xv
z$5~rC$?mdv(-eQUE#+8T)+~5T1Z7w6a1hm6BR5hc!g_xsXDJeiKPZzCb-GuA_Eon|
z+lB18aS!!+@L(#-qE7X0V#F=Az&Ag3g}Zoi={V8v5%>kCm4pF#-|Fmg>>hU1FS$U<
ztYscYuY?5LFY(6pJ;Shm<k;t3pmEkveoZ#QYSb4(NE%j?cXhMWZdDALZFJlJF!Vg|
zE#I$VU;rK1R7__~`fH$_<>OFwj6g{g3zFEEsx3;wp2jMd?ZRhWcpdiLJ?FY#_3mdg
z)nMLm+@bKvn_?-aa_XZHaE)HO7VjFXtVG3-i0$QJEpjj!)5dknr008}-$L}{rSp&W
z#VjHRh{Ub38y}6%ZM#B~$U4g#9_Zs+R~xNcMmF3p@Z<P+BFE==P!6cCm41GPeII|v
zRNdgYe)uSQUWh@OqYmFHSUq#hG$wv^T}3A9)tg1eU$xE6-<Hf|9rDghQ)Ogv*74y~
z?5f@cZn5)xaLu<crN$x=dxH8Je(S@C1<*N4r&IJ~Fv<ei$0!~k@@!=WH2Kc*xB}CK
zVe|D+n*IUYqQJE8GgtvFT=eLdt1p`P{Z`*VqxPUmBr&>vo<KS#8u=)#Tz=N$8#MZv
zuyrTOBu_e})6r$$#ifpO#;phMgY0L*-p%vfsnNzm&;nGzJ0a0Jh@Yv~Z3$QCsE<FX
zns2;6i8#ga?NaRj)RG_`JalO3AS0%eZ9|onQJO%!GsJYd?}n&Ny!f}9oaG0nDXiRf
zSHWV%-`-#NAh`ni;wcM?I+bFjBR(R}IqgLkRwv)M>z+)`uI6J5W_Z5uBZeBz&de#2
zDD}u8HMrm(tvF@vo7+gkG@AWtk%<y0B5_%ov1{pqfkB}xMx|s;<A~#(eIkK7z5#S{
zz|Uy?u#2(rI$lKj0NSXN%ll1L`C2q*BEpJsvSyL&g8+9hy`ugJk{Y6Dhw;AuJ3{jX
z`ZX@)5s0&xOeTf+O%+DWIS!8tjP41C*6er#hjL5@HfwQ~4#cAt9qvPTghe<zYIHK<
zhb)K}%nfuZr)LCkM(<Z47V`ktyQMx+!GTeB3#-kQ<Cla#!A7)2gj?M97u`t_dtHm6
zkxJ%wmCAYF5!-LkV+LsXcMshtA(HU<T}7A7?V<c{B~;K2S~`Ri4jDhee9HPgTlIUz
z8u(s{AeDY`jO4+DG&V<dV8cu0rk_FO3^hBM#Y&;VZYpW&N{*FQ?&p3Aiz=i^50{6i
zF;qqf3j<tbx3g<6irU}4X>wg4>dorJ>bSYQmv+1SNp&F328Hf|Nr)t$hfL6G5pNFN
zj$EwQtj?$m4-Qn4hAIBs>OL&te)`$tymDp}4760D$fZ~G3Ud($`9pkGS})EINik>z
z37R`X$j{8?Kk1Mrs)vU^ELVk;mUb}&nDQe7IzaP;intIpg&K<Xh$1o#pGp!3NpChx
z)>3_1?p8JkvjVWJ&9XB^$Y`{RHB)aCFL`rl?VX;CS|swVan^~T8W?b{(P-C#{G3%L
zFr9O=ULb)!$%rXV`)KHU)~}+A{QkV}s@tzUO;dX&*~z4nD7oBF6ybBw`*WCX?@8Kg
zlz6`OgW6KL?X_bHk1P)k*kRMTpx!iTH8p35L6m4?xo%}o5`tF8+XzrbcuDGOwint`
ziAq*TwMg60144#Ho+5qAfdNgN317l&G-b|RC1o=ZEvBQqPU`!9@DfA0!#d%&fP}ah
z=jQOf^o8GX03D-ZgEFN9ZmwK@8So<k<^Tc;>Q05Gv>8nv(D;y3gzU*hD34Z3s?f=X
zqe|wS`ytAh<5m5c*;w$_;!BPsH<w0bZJ8@VU{Yt=kwCl(|1Z41|G@@8p$ES?I*3{b
zJ+dlqJJ}D|Qz~}^s(v-hVV9A`zf5H`yCZnz#P;r2a`w-B5H1=(VK|LgM5f36oL)hg
zRV<yxjI9&hk<RS?dkIIjX2hPFBcNfrLSHCts45SFI@tPcAfHVNB-w?RSC;$~lny|I
zAPU;My4ynk1^y7M51T1c@le_LtKjKB`M@ub7<0%70ResbFXDTDBOE}5sE|P41h?%)
z;%`a$pJIYvc(}E}|9k!ZV_EVl5<{Q_g`TT>^uHwyfW-XC`Mo`wTz;Xt{*7_)&3_7<
zD&BU^==_!x06|ko2RvN49RI_XU%*A=!XZe4{ELvP*58t%CPPR8_s7SpzgmQUPo+$3
z2tq<`AKk?Jx1>Z*U<%ZmwY9EaNu9qrE65D}wxhBG1>Zfi$(z16mh8m&&7souHFYhi
z$mUlxTJ?9{w`%|CX9Uo6>N=WuLN(~$##K{V_vR{_&KmtC$9_GN{+<5JhU@H-P_x$>
z@wD^Lbs_KDVnk`3I=b#*t+6h8?Usc5?xB<-u*#t`KA4tXr}=H-%p9A?P7HS*B#h>+
z)c$q8!TN%Ztm(32(Gjlpu4amu-F@5GCS~P!!vG`&u+bj)3`M}?-SKfaJ~YrF7S;}i
zs)*0C+YQZY`?=U=3yk%l(OX&ACpCwUy|xm~3^?9spP0KS3^1#AT-wu;bU6%a-bJ>$
zPIHf3N9syj)?fckrE&p2V|p{IUE##NXyj4UtOsJ7NCg9R5oygt+w$a0txFAu0ojrX
zswbNR`Tfgj&@u_5feV9<_&lC;_R4!vCiFVJtyNRvX&;411!mV7^%h@THz~ce=hDDg
z9M<VWKirb9@*re)yQ!=*>DMj&;KaHICYm~&PkcpnrV(xzNaFaB#O*O>*E!x~gp$v+
zPI6mbtOOyD)GAfgZK)+|%R$3>sU;E2KA+8Ri=u@utK&q#LHtAMs*alVu(ugbrc;0*
zQN_k{(z8E~JLeiZJlyBT_VAm5TGf6O*yBWUG+UIani?~@6MoICESGr>yfIsH8w2vf
zEl|$&F%-AHp>cSOyL!P=|0=dH=XCeT=_sJm5vhIIa?V>`no5QWVBdAJB^$YSBJ3(4
zrS(-z{8bO-oRWJ8T4$`A(#PJ(W^xCeh0)xo7fPWLd#br#U=NEr$mz{6O|x{<X&OQi
zrw$S{)ke(^i=7V_w=WPkda3f_E+;4N$=6GUIqzq@Co>y5gHdS)fAIFHppC%t_w7f!
z{M%9i6$4<+F}b`C2JFrTFixwNyss1?zzyncc~aIyz8+UdoYU)Z=NyMryosf?TR2AW
zILB;o6io+SID@5(?9Eut$ZZCNEg6G<t%NiwHm`1j?UrwomnFyR&W}RomlV+yftbN3
zTYWT$6Yg<5@<hEKrQotHqUT4&(&)A4Rn=kJ>p?8IoSs6-;}o<dJMpna;>GMPcYZBl
zJ~z-m)}zo$sS^9hOLh|z`^C@vMhwcVC+{n#P{#es6~Nxo*M*jNy{if0$Y~6LO>^#7
z#b}PJeJcC!sgHAg5MrH$SrO&T&y{5gR2j=W=D&Ufd)-K0<To(5ck?3o$xam*IbP@U
zJ!f}(NCtae@SnO}T_u4e@dI858!#nU#kb?D<w)!%-&BDMcG`jJ`&TnXqfJh4%oMY-
z_qgno;bpYlma4YO*3Y_dMk}S&NINkSXx$?azx%mQBHh^cBv6Jw>{0HSYI;E6P5&Z*
zKv0daexwKM1F6!bOBak=UA`j<yzty;g9q1p2f-NBAGm3hCC>}NA~Y{E`z$dU`dz^1
zUV4k3JMGM*!0be<A6XKZq(`aE7JUnLk3STSU2m1eG5T`AcKYThF~Sq#JsKO#cH6Uf
zq=1~*;x}WW9vBZV+eLqP%s8e1Da5INkh_issDGl=8R%H?U^tQ#iwB30$i&FH7iczk
ziPXN4T?&hs-i5npRrX7|v_HFUj-&Y`5z5k_8Db2KkJ<vPVs=tY3oShuNhZnz7fUUE
zfb9-WXqykK(+n2#S=x55Lsh6cwZLXmbukyCKi~?;k3#S`b1%ZglPP@BlH|>0@+>|Q
zb~0jhrZDyqQx}~4^vhG!i?s0K-{1rKVFm7rr%)xK4K<OtotdIB2_v0jYaPvu{VfiD
zm4GH&c2H$`he(g;qTObn6@}0m*n5vGMb$4oJO-7)9PGYw?;EB2VPiNRvH%APgaS33
z3Eo>ruWgmSw|?U?u&!`R06v){^0!6O4!5zrRHCRc6hr&u+@+Z5SAo(^IG?Hqqyjb!
zq6(P4>nMLY{8|KQHMrSp`HF)IY3}=ih*9^qu^27|bv!a;e7+;FdhJ^99g}_dNrE_;
z(YSknN2Awm%S99WA@$ED`SwBc4N{mYXGuEJD2PK#Hc)qt1|GdLKGU@-MWArSo+aRQ
zKsr;+5B!VfOUF)*lBV<{-k&U3H`Z^+==qxJ8gONR6Cm*)zv9H-`F_G6)m3Ea=Q3&W
zDJX^T_jNIZQg#@tG&LF2K3GS6tcuu9pdbm^m+dh4lP?INi1=m|#m?#0FZd$Twy2zC
z&^EO6X-lv2?FGU_3j<I)<~mK$r=I_S&J5|5_#Vd!sJDq)da?Pj1#7Fy<7GYpKnZT8
zz_R1xiKOeq9-EE4vL$=IK<k&o@WR9qNf`=T^KZ#oqt%{TVkwLTB#QWq08|spiwM3Y
z>i7Y242kuLl^JCV?$5C00me0x`_pb2T=wduCq@&{aV7UOzp~~3USt4nU)?~Xj%~tx
z5XtPMCwaC{BSNpS5fDIE<Ut3xelGKp82m|zIV6uiuUWR<1?V>@$63&s_JL|#-FIH?
zEK79JB8IauCAHo~L7q$|+r9xbfW5c50C#e@SIt4Ak$YC~H8Gm-XphHDJHcu?Z<nxX
z#@FEW*?Efs;rs;wR~~<Q&g3oberT!1@hjCO=pDFHz2k;v^)UWmW|xB|1y_IFxmWf_
z0Sx|8HdnY&3V=mUlepLMgjQdMau>Rx!7u7RI8jDY2Xw+@kif6))|~Mna~sK}MrHim
zpL4zed=0_{`@VtA3+m%Un3DcIGd}T_b2*QAcx^OS-HyCTyX?Ag07QQ%w=^&=R$e4I
zCTTw5uP{2g>P=yay<@d*#<Z9p%`I0N)Z9E@4jDo*&_coIPA8`;^q^PEu|1cswCji3
zAB5q{Rt_ZMXqDJ`C6?`XBAe9g(TFMjl{FMCM7M`_?fj@9ETvhxRmAI)osj*mrO0h2
zwFX%2lC}y>2FX5~pvRiYvsW39Za)o8`h5|DWx0j;Pv5EWntO5xZfw~Vol{v-EDP)`
zUZ^R+_CjCEg7jg$OdZ^2Fd}2ancInF2=@CN$QW!FfjzyTkkLP_W`5=x?VYd3tU#CL
zGt2vUfzM6tEu%sDXs#jQEetiW#r^LaFj{aQY$m03h^%d*OO9PjX9ym(>|`A-0Il?$
z3liU1xzWW%v-_pCdkiQnrJ8;A_3oPA9IN|QwMxY4+?+`nE?B>iTSP^hcL=*Fe38m4
zq23kO3~?Y!#ChN3u*X%c+x1Uu>jT$Cs&%x;uMl{DsH3pLZ8fW?({j>#&Vti?Ri&6t
zBe`69<expsqQBLQESu_#wB$UmwZ0fKFT>rcsU6mK<t?VUMH^uWAT;?(h`<RYxAD8~
zGN9Tla{0sln_BRfCBvTvQO#vVhS2}L(N9hHIekLM4oCc^e@~>m`A;^_PLC`9Zw3ak
zq;1k6F1W3kW6|G}0vsU*A3q+u%>NH$`p^@I9n6U@_HTynAC}7(X^7F2PrL>Hdxo{S
zLRye&(oOt(QqcGlV%c#WO!zxn?ioBA1V$fmy5~ajd(r@oClGr?D*5k`=}=owAog^;
z$lsIt%07YE$D>aJerwE;EQ28}7^+%}{yixKT?hfObJ(T-g-mZxZ|hgFUZ2=yb)sLt
zzr8#;n?d|m#N~efU1S6~99C28nZZHGrM>IzMH+RAV<D|b3!F6bfIktf@6kIiVp>Bd
znodB#)NyDl+*PB`ZWaU^__vMc0Ro<Okk$Sz4<WIxV3sxGk{?>zlV4gg=(s%gXp3sy
zK2CLzH-NPY4drX?-i8p+N7OG4`RA=el)sam33JHKkQ+yvAac@Z^7gPBwtt5fZsXv-
z+s`cFl^D8M_(>qC(n)8-P>#8?;q`aV6SL4Ah-sjy<+RdAt5$#Q<1ty7+Zl?Zu~|G#
zSE2tsii}x8;;ZQohcqLc3$fJcw>idvM3t9EYUgZO{j?c&#$xo<)ELz?t4<_DHrnB_
zFFBDB0|dfC?+%i3^m{$rZcolR{od-EC5`6A2s4X^oVSpKpoxA1t7S)tu()0xq}{PP
zH`kd+(Z`E#uo7_FZ!3$%flA-yE6Y3KvQfS+oll5NQGR=f^3z?{lN;AiGqfJcN{}6T
zC_-nRo&aKwS>h-$GR-wy)}^-CXmL~*e))dn{)W>a-j#qQQzVj3r@D;V+GFu%<~6+)
zZg2A2a7D^AovF9qcgP2eB>0&ZACoKRWjMd%q|WWGD5zBpD$Ksi2T{f*9c*b_;3guf
zSod~I6^cqa4(AGKLqmlx1)4kchR<EzJK|rCL)TaRw7b)4-8~nbEvkrlXA7-`Ic;m7
zU>!S786zIg_<X=}Z84Ql3c;~;D6ij!p4(wHvnA00Nm+SoAeK0*o}2aWfffZ(J?%E}
zJf0V6u$e$8gL6lS-AgJQHsY)v;0&`_w$>Se5tv_9q$l(Y{T*aj6l1-(?RF1f#1c8`
zTV7?<S{ucq8I6ysn8{WL;K!yo5hxkKWvlI1HXxIsqu_JWcOkCF?In%&ZHKZNo*o#y
z&m{X|2+@Y!6^iAFUXm^CQba#Tr)>nwAoi(G&=X|8jR?sUAg33PZkoCO(pNyXsz6oo
zv#VdF(rikOQjQ@pTRd72?dGG<1F|k(0J%^6%x(>VJdxxJN@Y+Gb|Z>WGnyNtiD(IV
zQ8=<Pt%B?-l`jx;>2hLPrAS|n7MRZAtyQznNoXcdrm)77gx{Z7x)d+of|23Y8g(na
zOcTSJVw;~a)z$(hyx~*YmESRy&j(^#V+}$pnJTJ4SpnO&Utv#^k{TN;TrOjYcS5F7
z37x-c5}_qRvt>*tPdRM@PmrOa{?;HTis4~&m75)&(WG*%xUH7M**NJ&+O>S>C57lG
zP&$bUfAdxdV&&Gzn}WQZZ|<j^_0;kOhF%DqlOW=m+qUo4+wJumf$B%L_X&x(at3gh
z>UZfZf^FS08D@HLszX{W1>OR>oaJk><e)~|t(FHV`FaN^($9H{TP-v=6V}iktXC-<
zAiH^yzjkn-5&+_#qsn-9D+Vq1iI<leH5{WP!KGM52gi}&ho$7l&tAGkMsnl~^zg-Y
zk~zxV%Cs85iRu!iBICC!qs2~dvVzM<fF#f+^b4;pE#9oJpj&^dAw1A*+|D8YI`^*F
zG(D<7xhCpD-R1bC`XZmbxHDldX-sUJ2!ire$djaca!*(?|3J3gN=}~k?UpWb+jxGf
z+Z#g?XBNtW*kbN#Z#-%g!MzW*5wFbeb(f@4SGSuW!~diipy!7ld-t_R;#sUecON3u
z8cI5=OWSF``bY<x51b#ZL|K63o<y0lrvZ4e0nU~wX?-9@S~|V4u-hBKak#6K9ZbN$
zXW9>ai;vX}>p&}v*CPB9`rDh<nfSaxGG;mCvTi@u%D#IMnT?Q>^@8lCNgCQ}w7O%B
z&V&{GkM8gARjlSG+FMH8z8|x__Ugtu3~$)@=-NZHkpqPiW?)h#Du2#()+0s_?=NHM
z`O@MpSH?h{#4iw!Aq=O#Oa7`PTJe5xC<oJ67Y9*L*B393`uUNAj%)0ScKFh}+1NT$
zd|L%*@}?Qn|CR?tubkNsAWM{p*|$xZ2s;hM^ql!27NMii`m4!xhFaX52JLQeB5Xun
zv=23W+t_nz^H4?VFI`<QeTaGdAx#{`7=mvC_TDPbt~PxFSZKBSwFJ~sd0>!Xa23O1
zyZpp*5|O$hEKVle`;1FHNO&}V?pEB1mu0+M_NlY!a=GGUl8uITCjs&9*<|oIEW-zg
znxEPJ0)IT6<IPyEBEO7!2u}BUj)4RIqV}hCf4x<p!Sv{If$Q;(C0;umA&g!=x=6ME
zZ5^ibcqdDMhX!>k-Zehf7UG_In43rV9jqUdmjQK|c9=+TL>;}h@*27UdOBNz6JNM_
zfVDqg=U39)4&s-H5{%h{7OwdnbD!8mRBNUB4A56Nca<n}AHCS-pHT~oLPtdCxTkek
z8v(dym~vu0sfww*B(N@Z+`HN2BMzVQ*A1yQ356V+on69aHk@1Aip=Umj=ucmYzPj6
z<>z6MGtBP!4@6!AdXgH|-o$zA`c0VX^7p_so{zbYak<Ry?79S<xRPkfa(X_HO+A-f
zJIo+V#h}`vm%pB*<iwB{i{{e`sa%ylD#X#E?vB?c0ZnbRLdr+%8wIj~So&!;SkTB#
zuhUy)^&_oQJp#-SDNLZh-)dB2W1>@DAf;oxRqA0i?|5s<L-8S%in;%_Tx|TX;nI&P
zKK3|AVnV1eI2W1(CF&}j)(g~i+$6Af7V@z1jMm{6y~7n%K)G8Ezqb19`g0t^v#;^c
zC_R}}Bp75b^i;3I-J4cQd=6ooTrHA_mtfZF{@%>$)?QzC0t-*VPr}NPdX2>na}YuU
zZ6mu+x5{XodpR)Lj}8l{VXwtU^OuNf_$#m3K|ZWk$owur<eHeZ@1VxlOMCd+ejJ+@
zwF2!xRK~LUoM2kQmW)#^ETbYX*}fz9=ITDEcvclMX0nVP1Po}W&B~HHJiJ%I#S(w-
zL<R6y8EGNo3r1UzIS%nzi>MIIYIugjV-~Lt<&Z(4roW^{x6hB_s~K>sw$Rl^6UK2q
z;6V$>Wkh;(t=2BE+FPTBhZSD_x!vE;*Xg=Ds5D&I#D1j7D@q^}ABVNbb+qhDxc6pt
z&EPqk@<#)r=ZowKy&o$GR$r1`M_q0%AD^D=bxH6cQ)7`4qjHcY_QgYo;?13%Lf7X4
zl@UK!N|twj+)!Z?k7Gy&B|Knnl=$|N1~_~Xl7a@dpq{|>)*ri^--HinRw`}W)fEa9
zy;1CY-EYoHgVQv!%*^gRA&oIf+d>ct6U^SvvWM<LptwreNI1jr_RaKVTeSJxog?P=
zK)}J(U~ZEU3zeeD_#x7I3RS{VD-OxQm}<6uKd}8}y49)j!3cYSg=@|X$B^<H%#vm6
zfas-eWxNC-x~G}1(aaKnJFoL{&iO1gj%v@UsrvS#Ey9n{QP6C6#TA|}uAeGzAe>jm
zfD&Ois@uq-^S4S`tA9NGyoThw!)ZMa@KxR<z%F>U2DBfGJG)Hp(SU>=%Y!~gJX;ea
ztYnq6gNyHH+L}nhSRhW%BKu@e89e?`*ym`-QNJdo(p)$yTp3FY;S!CYn;YL=jDQo@
zJi)%OZFx#QvWQ}(kVe!RID94?C;VuGys}Rn3LA3hLEXdJ7-60+pVFEg1YG%W<wN46
z@X<s~k@$=Um1XcM;r2gs1&H$Xyi!$<@5GONd#fmK9V~(}Ubxsn1!WKMxsVzowXP!X
z2#kCqdD(9EBa;p)EJsW{4(zznaFOh>bI*^+Jei(=g3mKyfI^rR22^^%3|KQ$AcZXK
zi^37!gi8gyWGN|<gA;I0D<YJX7u*FG!_e!IYAnYqY-Rwg^IbB3RZhafdk=oy&gRM4
zBOItTd=wgrig&m$-<l2ioST8q5hYDYmMNe_y30x~%8w{p(bmJ4@CM%}D&1VWr)3N)
zd-gN3VtAeQg}b{!VR+f&a=VJ%V|o!<wXCqnq_vWby|$jrM8?#3bLp|$ikM(&m-0`n
zBohtF?LaU`CdHG~mqN7dM|^ONvY$X_{bw}0j)#=0Ny)>^kAab$r5|Sg5CF5h9=C-?
zh}eVMHvBRZBwXRJe&WyYS>DDwOJZUek1&wrE!qDJ(`<H?abJ8_tSldR$WAhrXz?SK
zzQ=ZycVp`<l33K+Z<R*FZ}-`K8LTKe3|Wz4w_X+{#yE-}B{f^5oOlEAR0u3Vm&i!`
zG95dl=c?&oZ-0tQ_<d%@Dt^@FrAdVx`Rn_@rAnnpqv*tE5Y;<$Jwd85qR)*Ki$8TZ
zm%rd!X!mGB@tlEIXt{a#`#8o{Ru*wgMk$*P>M_wh%K&44@~Gx0i|@z2o+x2%5t^ZL
ziDl6#KGfgozi;H2*H&+ld@rir=Wr1}^3i)#+22)Hk?U^gh1$>xajR*;foOqH@DxuA
z!dw-IO2Bojj9+&>*f^RaO?EuNk4A&c*9fKd<8EdnTHUl#K2SqIR5CaYBEC(n4R8}>
z0uB6Yk-?+o&qzL~gZyqe1)omU{B0EZBwNYx#MDV95c@(7AX5Hy0ym9=<tuW#H^&yu
z64^xmYvnH!qvqCuLgvmA(GagO*eyU^01IByXPGCH!37tTiUNMU96eGX<apZBwWBKO
zG*za~zcut^CydKlcI+;%*PB=BO`)18l{GyK(~$L;6x1zK#*oH*Bt6+q<r0;>6C@RQ
zs58UxEM=$qDoC~Q#!zCO?*JYfKHwEpn2c&uomcDx&Q`~;KY5=$k({54+aC5tLKz_C
zT-vpI#vI16VicEf0s17S+#+_4#OG~bDiL7&wd_OQ2xz0{67;Ure=C>`wteg>oNe4C
zXC;tVHCzY4c{Kfv2o-QU`GQ{ZF1^iby)FB{ZN*Q35&NJgrhw$pZ5&85OD3iOOwo(Z
z=U<@UwSjY&86)^FCyU;fsPyZ%b3)X~EUlIpUQ={{Xw<iAUAyN*CcK-td#0s-y$c{%
z*MGh59U1@uN^(9hF^V(71I2HYbrPZ|JT>d?>x_U3I-uwnF>(oFzfJEWV=4zGwjw&w
z$8i3a5rYJ26FJi7(>M~K8bA<s7|-8PwM6jU5W%O!0J+Gr|5mR4ZyJc@`{`3^&QlK|
z+agez8uewVud5i=`IY!z66=2jaeYxgZ%OM0)MY>>2c2*5dc8p{`uwjB3jXH-sA0Tk
z0H@|A&41L8zx9#-lL#J#nEry>kr`>^e`zfLhvM&_!KP27UuD9k{uZ$RtGQ3T2Ijzb
zhK)9xZ2jqf0mY!zJ@#lEaC=Y<>$G6H5{Pm3S_QuJH6=P;`<^h~izfCl8(v@?`(WOi
z2qhi7cJ&gqL9R(|={N;!3oRB)WE<SJ49P3Dcm>O^cXx6L6QmxD3J6?6A#~ce`1I$t
z)=udQc|AkmnE9F!gv9~&f32gAYo(JDQP6u-m-AVX(gjygg~9izuavQ(tFX3Nn9nX)
z6aiq@3wbMdu7oLWYf^*cbu{uC^GQU#JMAW088nLH;5Al7?mh}vG=n>Cg;nPoqyjdt
ztaXaux-{h8<NhTSRA)`WIBM4KWkudRf^iS09Dnw@Z34oux@3wuVqXeDP-Y0HW(Zc`
z3lo>a_kdE(rrYHZNQ6*}F<Tsak@Dz<2+9}d62G^De3(?^`#9b9V1Yy}iQ|bNZY$lF
zUSVirpJVsSZwkG!%v!oic(cRDyFfB!J5(r@NSy~Sn;&o;#<)bwJ4-0v#jYQ@`~`tJ
z0!NQzd`)P|e+(;t2x^L^3TahLE$xY0{INbc<N{8$if4uZsVi`z7WDVNt{|C=#(~on
zh|}lfWCEu*o;`fw)D8~5F6NnFr^&DmJeh(YPUg!m#mf}}dZY0fz&V6qpSNCbFCe+$
zYpkHr`PXQ$n(SWJw}d3zgf(v<7XDqs>Ltuj$K&C1!MO@g!eejr?x6woKbFNeLLe6#
z+^Oo*6b%Nz;=A)C8iuUx!drjH{|LxX9j_A(6AEU)N&)z<A~d>mNCZ{d329jP!{U<q
z9GUeTzS0zk!22ph>^lP4Yl13XYeMD>9UuN75|m2#6GuL9N5a!VsoZ<DIWE_}du)B(
zBtt^-V2##9z53&i21EcMo<{)bBq5~!a@er=U`=>@J)U+^?-i_+o=E@r&~MdSRNk=9
z2bSg6kNHUdPc0ETCi%yoj`)4nSerc1nvhKZb?@(1S>Jg{oIbh_c_2JQ+HO2b-PI1E
z{jmmBp8TBeGc6(^o0%r+vUsP>x$Tku9?)i{uj|rDx=kMqU<O@^<z8w^oPFDSK}-&%
z62_(S6_tIvQiV{e4Z~m<!!p2uXU1!tWZAC*?ojV8A-6ulr~kovwLwB(;*TylK@9H-
zm=9f$U(x>0RQyCDhTm3RwkuJ;Cgvo+fK>gLI~kIofj@e5Pk5(UHTalP_kmag!UmA<
z2nga{d`EGL3weT`NZa$GZ|w)GuA3A>J_gL<p7VP&|1Gr;0Y|J~5ka%2ewvoNdZ<sg
z0(c;P*Y+iocIw{+TOnL&gshHfp$@!1+Wv3<fe(<5!Fy-Gmj(a7`taZV`8&Ob7HsB>
z;{1<z{aeodk>GtrXtOhKv@jM(T`QWNs&?iy))0S2{nyzqP}9?P>vAjT!u4m9fYN{_
zw{!6bT&|VF_Xn;EiF^XyOo@-+RhfF%-J0v>l5oh8>HhlD*OvSGZ{Py}Pcty=@*JlY
z@<s*s_1@S#Lc0>vvkco<Bgoku!bxtN2vu03*{f=isqU>3k0s}F%~snnW5|i}GKma=
zpuR@uLyH3wy-tXH`EK2rJzRuL<xA)-i3-*QI=pz~7UDU==SS(Ay*nho|H$~48WBML
z#Q3qiZ|0D31gO9s5saN~4fj_Vbgv(;b?ez#zNXiX(`s~L_c&m+UhHXb+%<$K+Bcu1
zQdoMEm`rfF7b{o&;ZO`W`r;dYKHT3{>VAWEeSBy(!mtvtgH|vZh!tnX?uUTp@6OJm
z(cY6urt8tAaCnx^H##rfElz%)S~`zM+j!p#0f^Q(1r=51P*3)xx=OT9FdystNw;CF
zInM`}$rn2~zTtApyaV5%P^van7OT}#{(QaGhN@Dw0Hh}+`62r3Ka9C7xV~zNmPjlO
zh8&31+E_2BV!YZy357}LKA*hxTx_YHg6$`UOjfK`zIzR>lS}XQ&s)&|(bz;>by(05
zZ_jmwJ6zKFu*~RT3i6GwrOSbC1|c-Nos@Gke%~Oc_KmGXGyh)hpNfW0(UbR`S*`}+
zzXDPMQaPQaZ!Qn%LtoP;&}!85eCG2X;1@A<I)c0m!tU&+T#!t?!?rxFaD8Lrt^ueI
z?0GZ3vPMh2$|j)dcDx#x+|){L&3>&PLNRJRoZhHvx79~zzX>Pv(`Ra^X5XCzawNA>
zZ*0<LcyR1Ae{aSaG_PYKs=XYcb-TyH13AX)bQze3_YJT0XnOl{jK0#TOH-{uH@R4i
zTjT-zyvpIW#yVJX1PNzUCYh!5bvjUZ+I-~-1AhP5+`7Co97knyFd0<8V827fYPA>x
z8H41at^O2^%>gX>3WF}jM4|JS5jx%9tz{pT%d{Ki=(Jj}CxTRhFL^Q}mSRol5%Gae
zVX_tp<)8yyf*sy<+s+S>NrYT4A|@jb$9Kt>9%u}5A&yIK!p4#9zVo@0!>^<#s~glJ
zbg_<qtUe;PC#csQ%=!kz01QC#t+(G2Z+1J+hP-xSwAx%{d#<+3V!loeR1;v*=yl%^
zN3WxefJu{2Uj=zbgnY4Tg|1FzN=k~yao1}!CNhQU=Qzf&X3GOJr*>NhT1gzo)@tRZ
zuH|G^uW8i?m8cVAts5PWw@^>7j?u60`teuOTf<&aDoK@BP96a}c4aqc<(ed4Hn&Pl
zrHdDzv7mQ4Di!@djC}=AUCYvSAP@)^Ji*-^f;++8U4pv?cM=lZ-QC??f;++8-QnPJ
z;NQ9Tee%Bd?z?~0E~?m2=j=Vx)6>0r^_msw>K%IevPEaM056a0hdOjh)j>JfvbE<A
zG#%mCIT2|b#`#FEudFMcqq}o*Yt5!4ZjN~iZ?6eBwDYAiNB~8SU)G<$qHpf9^FBzd
z3hi9Kb|St!lnP|OPN`Lia5kCkdo%Q-2n->!`oXCiG=s5qyLg>~O5toZ7|of}M00&K
z8yRManYf0t#je&qsn{fn2G(J6HfRmU;}@}*wk9Hro5Lo@kcus%`jGKMCWTY3+4)7V
z<Ga~MpAF_Vy!m-OfZVBEHlysYOGlRBbx{VQ_cHic)ZK!ivMM@1cN)WRP1@mRiax)7
z$LcizAdepc(wZG_Su`1C3#e>m=YjU&JdGncvJwv_^U3O*jPtbFE&S_Y<<gS=7iO|U
z&wD4^CWq_f_6~z;@bp2=L(4b!O5b*+a~sRWLo}~7`uu155yaiD*Hc*Cb1eN82bZu`
zPm2#)h!GzCuSS$AOWR+Z?u!d}e4d5a)eH13IlVV)uTI%}o*GVakn{%fN0&xlzsh3Q
z^1e#C=M^$uY)Js&TlH<5k}!wr`5Un~oZcOzy1$<2KVPp>>widGRFNE<?sypVUvrn*
zi@+Wz2lpG@H>b_cXg@sv?53!;9^Zi7pgWrkuVMNlh{*mOo=&_=Um=G;t(1EeV*x7>
zPp`xEB@ghy!<~Mw$yAD!n-QGi8T9D+!B;T|9~cFIC2o=)DQZ@Gf4L`>!RNL8c-E0n
zq*O3uxi;8pIafY75Jh6#{R45b#l?1^!>5A}$vVp`HtTsffnjv7udnMnyptB-HsiPY
zBOVt_Td|l7{Nbz}Bm(5R*{pU)k{)p9SL>})R@psntPW;M5<;<9MCr8~eRUR*-2tth
zmpFW0_kjUDv7s`phEN@c%Uu~PKF`K`-UqMqbwMmH$HJ?lIl0?4W?jD4G`lj6@nV${
zqlc>lhjrgUG{{xq9I=Sm$6sUZUN^i@BNW@Bg=hlm)uM=p;^nCeWM0j+)#k$iZzD5x
z5f;CS34MF0bL2kXW-48w&@-Q~>)+jBw%#=3)nNCU^=!j27-_!NGP=3Cs5U<la=UoS
zyV?iGtOhKTCiY-`T=(E?wT%H}oV4X0%rC^e_?eilPQd}VND<R_-rL*|;aoMlw6WMT
z)PsI2N2EUOJj|af54fk!0&MfFQ+6jSy{#8oyy|kLqqM(grcfm+UoE!?*4t=P1N|BC
zC)~ugHnC?Oj&TmglGG5U6>g{qzW}%x;Sp#q$l?z;f7lMbNa44|AB^HnnJ!+_B<#{|
z2V6Nj(DTP?Vz_@2p4JghDuFtT&#Ef=^ptZ2h~a2ZUV+>RWAaC$flj>y)}coV%Xn#2
zc3o}$n4m8+E;&L?ip_MeL8AM`zJ1SQE05D|-k7cr$4gCsw2lOE#)E8+2R<LUPuRVj
zDt$UtKavfKHcc0~DA^XUsuqD&r9z#Mpkm1uY+um_b-$S>DPO9n+j`0$$#&8r9wX|s
zv+qauuo`|Vs&ix?Q6kumM^LBO26X!~Tl5g_^d97&RW!nMc!T@o#_EB^#XAG;aGmIK
zIPJkt`gr;d3w%cEc7Cpqi@l255gw+e<x`SSp<U3wxLX%ueAz7WkdEm0rrvcG{bFFN
z+=qoWkykKbrR|7pT+j2aE$lmP!`brGBV;qMvPw}FJcA3j-fzqyyN|lggO-`N5bP-^
zF?rn`gD_a~d(?bhhT~`{PZwAQ7eeya(9BG4{kE9b=iY+cDo~g$mT@oK&o|QRO)l~8
zZPwQ&4_fp=mwHo<uIyXO2^A~RC@&+iW4r-J^7j35DIm>LZb!xE6mv~r-|O+Ic6GYD
zO=N%Q`G=aq9uU6ShvP&5L1ADIRJKS6d7flkbPyWF;S(#e5#cVWWURPBiOMqLb{(h3
zP3g_y{lihk&T&#rwKv$k?d*J`TNC%I{A>IE;bAEc@Mj8g_Hyl}Y*kdgxkoq*YSI$5
zirKG-JcjZFLcdZuzc^~S3XP?XB(cEzN1~ER4&+M2SdrtOuC}!pjU*~0vs#kR{~)SO
zCPLqEx;<TqX3*nX!8{~BPSpoi@tjwWn`XU5(WBY%Cyx4ncLdnB*YyPj1&&9vGF&dF
zrO?<U4euTz_`I$r#55}*<)(XsB|o%gSDTC$_h!rSgO%ZR#?zAwE>h$=!x+h4W!bEL
z&6_Nh@bbb#HrX9{WK{j?V86$pjmlH3Qbq}=K}>XY8tgc|YVmq3Pln~sB!7&xOJ@E~
z$TMF3eJan&JjRYut_+{xNy(P=XSxV;t{lbh9#kDJmtXw`*;P{%)_KxJo6#Kh#0NJ!
zrqLV<LJJLRN@wqmi_|BC6iY-gc$uC%=raZ&Faii-{9zH%0p=dB8v%nZ&(Axro8#~4
zjva1C;g}wnqiM8pG;#39=zuN+NMs5O%M;&)bo1Tx%gkLE22DO(Kbwk-!JGo|s1=oJ
zezS7%sydr3Ygr?}#z{Y3Y}5OJaGcZ6)~B2jFJshu=w!lkvQ!_dNEUJkrnH)Aje?V?
z6Fuw5AxDYG-~#&pl-cLl*&wkW&($Bdx7fa3lBsk}c0RWm4cDhFmLU3QF=`+YQOl-s
zfG#r$a>Z_6utr6b)WY?m)<f6O2V*4if{l%LET+zqop9KsCWxW0y<AgJXKPA49F8!<
z$n?9Q+(!!JGE{F)S={&yA~hmB4A*<*Z)Z8|4UQhEPb*w)&HcOz(y5}};^!eB!f)S3
zp5P=%fQ%&QQUcMJa69}Wey_QU6yx34DnR4PLL!AcELN@Sej_IzTA`5ukSUUR3F~+M
zjQOiA_IBO(KxF#@$8MbO_<A6&cjK28K{)D(#24@^?_eTd9X+4-ZZ=#-z4}lBHK|u~
zz0z&ZKC|bQ^a-B#O_xei`{%G)TU9CV`>YUBsc3N%I%aUY>s61IXlN1@RSZR3yPglN
z+e(eOKJ2}ho%OY4qIZt7g_0h1VZHgEsYz6dz{tP~?@jpctSFVl*Uki4d0hoEi&*e0
zlwzHQN|AO`wT<0)I<ID{uh_d%*%hv@p6sj^(~+CKAxAJnOoNFuYV>{rMjxQEAFhv%
z1`%U7aDlBTe!578|7xkulEP(X`@8-*A+u1)#uJTN`SiW*WZ_GrrY0>bRoIL^Y}yZN
ztv3o}KF?3?YH`#mwZ5<Qp}(S*qhuq8%Ox^qDOc#~sFtehmtg6rmT9umy%D^kme2IX
zECg*2k^~^(q1L9+X|d^4IG-$<oDrd~YoDWb`J@stg3rHEkw%q|6xa#A(q&?|U5lcc
z+THIT)oL)#fzts!R(z{V5R#`yB^qNyncI5IxY9SnvG$tG3QOg55nNuLJd!ZW8Ff66
z-g+3tA!sU$w)-^Cgn$<G9e#JpcD&dS5oKULgH8)`#iXg4ER49NqDU$4<5{;bIk^`j
zxwQ<sH&}&&Zk`wl*FSex21k7SRPS(5=?h7e-D|XuKMKE{{xpO!-dF*Uj*Yn28^{qY
zx2;Cg884DY&Kbi@<7EzqBW`#GW$H!mHb+=@vVJMMef$uwEz_!wO-_J9d|n4S*KW5c
zo32p$#5ibe4k*ba)x1A+1y7kK^DNsPFEyMw&eM2`{#IgYf68w_-5`)i)11lGJ3Do+
zo&w=2=%;L{U4a)DF5rnAnnCK8OU+5N8ug+<oHAFHoKCx`gq|ut4f5AMQT8-;0HSGb
z>c9fH3>RR7e3S*VS`=OpeAEWLFCsjpCeYrKTau7+N{gD{@P3Wop^j`|eO~!p>}(>3
zg7gQd+#kl4iA<8q5Mo8j?Hy98nJ`Yrr{~0MZs>RTVswOO_`_^G5oszR0qKDenv?;a
zyg_Ka2^Kpc2h>ZqxKYcTHR4UE&{vNU$<vWG;OEE^cAJm}TXDfwa@kmc_PfTariC1e
z@nM!7r`dc3R)v==bbs%q>R~0Gh+=4xnPJIA<@}cn6MLzW2v&jt#6KVuKXD0w|CRfs
zzCZ;a73-*-7GOYh?+~V|RM6M2Um_TtiWJZ=(DW2EV+tg!q>xKbY%@o8M$lg%j2EyH
z3~Zp)sNQ#XWp0J2M2txExIGQZlmE8eoy2V1Wn&F&MQm(!d&oCi$*D}k^>!!w6g(D$
z<bs9OBSnU8GWBD|3z+q7(>)Xj_<Z>I_})ko@w7k;%j3Sz<Zow#Tu!Z0oXZ<Mg3*Yw
z3$>p2jfccorI4kYZ~&MZO+K5sNlLgY41C*j*G@RwoH8M3(2xst?btnh0+|O;c@#pv
zw=^gY`tSi1)vAyVgY3X;Jd(+?QhrovHy>~|tYm9@VjV;Fg&f0s2QzroSx08uNM$cL
zzuo1-5}<lF<D{^$P_y?;J~0aOrrPi9I8g7+z<I{wu;9+d<qW%*qidLLvp4=g6pBv+
zli;`X&)md`C4FZ=DnH$Jkq#%KBIttibzOcZkLAk^B*rAD`Z=6baSLcN9W|-qW8^c-
zX#_PcWViY->aVt#s`&(TZV_izy_0Kh#c$dvVc@%Pp@nPTUl!zFZ@b*;)CZ~D@>PGn
z5l(R;@gVB2xZG+`9i^VE85h9Fz79WLtkLt3HE3P8{RFfas5Fk)(-ZKSac7<>*Ow+4
z_ig*sax^=yn50!88Ured&i8fx0dF|HPXLF!i3Hjwiam~fd7cgtea7Y0_1IZ_q`hd_
zs(Jw1eDJ1FPj2&|I{O(Pdu%I~dl4dUIZ(G%D41)nyzG}4L-h%}$?3Me^AQ=J%iOa!
z;kB4tNo#mTZKk2yDZn=uPcpdA6&wXIJFQ~xtkeiQ><!S49;(dhuavK~mbCdcgYOFN
z8Esj;&oulUS<cqq{DFZ9<WeB>PTof1{U+`C5uyrEviLKwAm}n0565EwD$h;!TR)IU
zAgeZ)Y&+tJKK<D5*Yg4AT@I{&*shgGV$MVI`q9dQh{L8_VjA;d^xjQG92Hg+cE#jF
ztJk_9a`KO(@08!Z;Ji^7!us;%%Vo?k%*HyQBi4^r5!juZqlyj-xdM$ElLKwRKJWG)
zbP&=urRsIEyJH_J)PxOHKH_(j@Vo_J2fB|-H)$R-^Kzs)FL%Amm^{ww3yf-YJMlzq
zx?a4F^JiR8&<-2Z*7Kr!>=4kdcuxSPg=Yh|iok#MqVYUe*6_wZ(gKZq^jDLee5LCF
zb(>DMD+-=7^t}u+7qsC+->6o#$qKnwDv8`VKEQ})Ue|&6^!4*Lliz3MTssI1RmPg`
znEUWlhSs^CP>A>_KLMXfB<l^jXZIEY>r4NX%9sDy8qFD#g5RAe;C~LA)oOa?$E>vT
z1#UpI&Wv=6TzYD2a`AD5gTAw>f_#NSHmT@~R3@Jg3Y*1q6{e_K*#e=S<4GQc7o&o%
zkc_(+3wBs`1#Sm{kjfk5C*orap5gZA@(Sf5ZCN+Q{yCCD&jrQmvrZzv09=F(Xsz0V
z+?bi8uL9|lc``ZPQY({99;GF3uF|@0tAG?~XqS%rinrb1elq%_xj|cCUvt{PRr=Q4
z&0Vjl6}aKydoqXEof^>kTR`Sep@Dr!!0SAz4Mk+uTYP=UehZJ+H4j?F`_+ctMRE4i
zBoyHD0cIIatKCG_`K&%`|M6BfoYrQtQq}GLIOjogTBF(|<sKKB*Fjukr;g=$PIngu
z^c+i<uJ<x#wUAjHiZh|~=Jr8)@8teELj$A=E|*DTP9jyi<v-fus()JN42@ZDm-v%{
z9{BV-4SpU^<OM7ffc;A+155|&t(QjlgDdnp=o1+9;&C}0_Ggh7t!9c<xOzUo)!VF4
zU+#`hJ^uEV%Y<-(l#4Ac74!|a{*flIK5tN<(EQ=w)5ikhRtqKg#5>4|=K>jwSf^#J
zB%!!Mg1kgL_Q=VI>9U_WY?e7{`k|g<{FeC&WYZ>fg^))!`y*`ADfwN`Gsl>WQqh{i
z*54W@UVG%ER+N+YdJ@9g{*ZVlWhvhg?~2cr|A}8C9;O!YT`-Wt-lcecGAnMnOgKE7
z!>xP3iJ58w#YOW#4@=tIrh)*GTE`l3;j?(6G<0eO5eL`UNW*@)p^A>Hxkv2j5~>WJ
zSzU`+OQHpb_X$xQFC;bj;TZnv-@wd`6`=})^}l5WPPn|O;%K<iNeY1G=!cfX(YC~!
zWwYtbdRp~XAw2>i6#dB>!^hbN9#1&E-(`)cDL`PBAg@;}jm&gaF<K=o;3t1X^gT5e
zI}fG)7t?UHt_>4bKB>e0Zn215iEb_kp(34{VqKY4X}5I&##&>DFt5<@h^2aD|F=C(
zUJq_ACq-yt-=BJVS{mT$f<Qo*{BTz<jgu^)*4}50I}+s8J_i4R>y-K;ZH2JW%5@bs
z?-6k_qvzay&md4;u2E1nmuYg7;wzkiGF2tFXLLH1(Nv$I>gKjH^mdxYaE9jV=q|Dn
zNeL$afJnCdxdL*v3BdFFh2JsjQ}TFoP%e_7eJ?4swTq`*&L1<EC%BDv?cy=B7^aw|
z`AO$$h5bb-B#QoEjeu-;4#3KK$9zxoT48X6Nycef?FeTDmN}hHt5?GH2@W}^kJZ`y
zp}j_r)Z$-@$qpY}s$G?5Lpu!nbr)=(2YqoDoX{Od1A!xbwpYPo)sLO_SR5A701=Eb
zNyW9UG->j{u5)6hjZyE^Y7yS-z8UZEC8A;*fERzKqSd#N60Oov%e937CdA_2vEyX-
zCy9X&gc6ufzDT(z);=D`OYA34^ba|9PUW$kV+o}6R$^oL`?Or=+%h0;9RLs@r$$!k
zO+i=lUzvVLL_fB?JU#z_Qb4%}Vjo)-xE%L0FLzV<eRRoXQwu4|Q63P8hSrl_+r~*H
z&>wi6-!UN=3<2<s;}~`zHx{!|WH=r-T<f=b+ckO$+0;lt7v#fCo?3<OWSJIwTuINU
zwux0JHmjtbVHB~5<3z{Hb4m9=8~}Ij%{6&F*4NsutrpS)aD1HKYna1GE0@#diMgBg
z=hs0v4CP}?wffy}expA(tynB3p$Ir^(gcs!b9z!Q&)_;j|F5i;v-_1+)=PCWj}!4g
zZi*Qs8AqMhOB1Mm?#tz{9SCH;VgZTYkbhJIF#n;%81U^{oz*HOs_qz15&XqLGnjOa
zV??FF4W1Qp=t1e)7hVp|tpPBh>YVU`=tM=Oi26&6s+;|{DJeaLFcBHTLDEF1Va%<Y
z6k~vCTklR(m73b(tO~`?eY@-l!VwGMz6lR1-idO1GQiboa@W}`o>>>4wjKsTBV_(?
z(!+YE*0$=-zUS9*YW=F|l*8vgZWc}MVIXlk#=_RbsC{&aueo7j;sseltx4ZCP}u!;
z!Ct&YLjlHT^O?F*!W9HF{T0`179O`ETVDVbVEa_{od{t{V@vpBU5hhqKRi>f^ui}T
zo-n=bRlxz)K=xTkK+=JS$H5py?8~Jm`?)Pu^qNkj6wHq`H2x=M*%#dp(={>e0dzVo
zI<r=*B|=c{QbIdK3;Fh}Maubst@7EUcUV$&AN;G5KH3W%Oy{?6j~hPtoS=}w%4k)p
z+N@km-cACMu2hQ&>*$v2@pP|){LXrjd~sy0t?qCU(Qfc~UlH0R;h#Y(;qL}?QteV{
zNYc*|gv3wl@TW%XJhr;6u36A9S~0N5hKvVRX~;OK=|wYB=j-;<gdl;B!DXs?0eM*+
z$hB72b5Tb^ux$Pn-wI!Uqnx@8Xa{vLycF;VRVSsqB9N-UJMQ#xrya+c_xNHM^|>2k
ztzbR;R@^sA2bKgFVST9d0;jhS;d%+5jY#x`fnsH7=VdKD5#U`ah&D67AUk|U_WWG`
zTkQc_POddWf|%@7{h1$jR0!7R{;&?!+ls*s<b5LqbP-!C8TG&9e4e#F6oLV4W`V;F
zTlII%5ZGkMAzp?Jzbz2H`(11H8xSUp(i{v3;O(|h(dt4vgb|q+^eP>Kv($%~)34y4
z-wOn1wAJ`V9J+4ay&?kmX{V=9E)=d*dFoWLK7K;>482t7bM>*CwIabv+Hl`D6_?Az
zfnr`Xlo0Go67TBPse?-sX~K5&6M4pP%*?IV+3LyZ@d&wGdg|_Yh8)a0eC2pvV3*79
z5`j}1OXZY_*4i{&y@x%SC;f!$`wI4-E&-0WW^lL)puj+y`VBAcVlVqOOpWN}6_CF`
z6`Zq6Rq1?Gv%1oQc%mD><d~qqD=6SHAb_BBF<9g6#qa|@O`sN4Jc=0F>+z)Fxc{kH
z^GhL+>c#?<BeOCzI2Z`zSO0W*z$UgB*H9pC{^KbG9Fct;D7Xr9q<{Zo;0{y|WRZN9
zP}LK)y&K^x$bWw!^FrZfFJJgzi0iJ7?=K9$a>uy)@m?k{Jw&jG5P9!y4~gV)a-?Eo
zi^8rW73JH<weSD*&i`i!UcvUzL!zjjE`!{KR@)h<R6x10tcDhnJ+Ft6kze`klbk1G
zlrlW&PTb?%Qt3##3?%`nrpg<#Z~yW+|NC1wQU&~Dx!>FJX1ZAA#W0A82B;xmeSHP%
zAK^=>z7xZy!VGfX{siKsi)BIb5nD)p3kk{e)t4k)MQj^|<a1WEtXL<?csdElj*GES
zK9q1h&~zNdtp`@UFn0>YuBT=%kS7%hff}6zmSc0_i!eSDq$;`^s&>u?j^Nk8fcu@J
z1QN6x2^&<A1gDK0D1B##&js!W8bN}<v1dh|dRxVTmd$%sgHR9<rsRa<g(S<An{F<<
zEw~;>Kla#fR+k#>j9tCAx^%+Z<^uocM%pbs_u(qX8Ai6r@2Nrdfc2MZBC$LUq+z3U
zHW>frOB2)vwe3N@rgp#DCn7P9DGl%gLqZb5EyD$&wz1+&S+l?H@n%Cs@$o>NKm7>6
zp5%as;OQ81ppcI^NAA4D!M70Kq6PlMHJk>k@lI?dC6aRs;SZDb&3Oxa*VYbLx~ytz
ze~6GDc*_AILQ8|eTQ+)0Y+V;h#(lb#%bT!}gb2%U2&nCaSX1TnnLxPo+dx#|he}l7
z(^U-u&!m5U`qYYmPM74Xaa;8uqIMRPz|g%pcrb6kvVqttPJl9O(w{RqPl{a5>XP1u
zkXeeQv^4U;4|wOXPlOtiJ&phqWv@sceU4P?$F$?#h7#z~M+RVQXKs(YhJ>7u5m?3>
zDCJN%9$-17{CRmw89mUC3A|_hKH<p1+x2^=8*cxH1!CX5IZQl%PHw*eZ*RTqj`ycx
zgw>}qjWquLf7-n>O5kmHZ+W6<6jExttO&@2mFt@huue=V?4B2OinWO&K9#twPdkAq
zQ@gX=L`_WO=6P30GTy&=@1*a2DPl4j>5@v)2_HN3z_BShih{`<f4AY*APl{SEA(o-
z;u9lrj2Z9@?8%)u>H)yuA0dYhkS4>f--nT(JEP-3-}Z%T62kp4_yQcT{=*IdjFi|&
z)8fDjO21muVhzOCczrP8>7u{`>rY5H&Xs<PtZqmA<M%XvvOzC4k9w7^7ou**{4aM<
ze|r%DLQFK+xn%CDL>PL+KW_ZtT>f-1|N1jE`Bf~pte1y8=l}62|K?XlGUSt?v~IC*
zg_Qa<v)xk8eAaH1fA)L-cI^tlLQWJfqkIpibQb>k8seWE*T4B1z+u6r3Di=#2v@Nf
z?#gA&Av68!bN}ldM@aeyUG!6R#pA2fnb8f_`8vyp^n#KSnmpN<WH=03fw!psas?R3
z=fOz09KueA)6<uAwP?7w(mvp8_NJyLg`FV`Az@C}b65qQY)Opa09g2wo}Zt@3I(1$
zV}DdYL;i)={BLiHd<)y-(T_Si%x8DVg)x}GS~_@j*91bJx~)q~nH#rgL0XdJbOUV@
z-{wk4ptIbb@n<?7O#a#)+$wY|Le;0=yGd(NZWDdoY=45#8`8gsMFV=cwxm{XMCgqm
z$UwrI7de<Jm@?#Z-<H9knafJ$teHAZ^Euo*St-(Kc#HVxj674SFtbV;2m=}1d0*mE
z<S@vClt*+18PUawn@qv{+kyS{RVhR0NlsgTS&K!j%B?_!)<Gb1G)Gr(vNSu<LGex=
z0DTKRZriuFw$Kh{29ii{te5JCb5lpP>H+4#fy~&(f3&hcXX}^@d1naE5`)`wJF$*1
zAnm=26^R%^mYS7DjrpZ>+!;WPI7rFLDRhWyRxWjge#kZUXm&gZhQnd^W(M=PK&TXH
zMsPVk4dvn+oPRXf=D=pO`_Sg~I7=$cZ8rTYhRt>%AFueNkH0~FOEjGvI6bAY@K8SA
zinaJ`A+_H6B@>y;{R+x!vG{e|O`&ABn5USa?boZ?_V)2Y+YX{_h5X{;Ejj*C68pC>
ze`}+GZBW_TO<(TpwrT8zT6D;Q-{&38*%q2j<&Wlj+_uI#jgO__P&pmOesmj>#<)4p
zVjl$?qaYISB{n;Qg~nBtj<p-@f<(h`yDaZWe|3kt9L|<Wn2zgY0+penDIjdmF>N2$
z2vQb~xB*xQ52aqFL!Glc-1WAZFW|E;hf}7EX<SY}TH6Se8cw|irfR~gc~I5tHnC-6
zyulqrJ}<8p8}-S6Tt0oa{3S-UR67US5dLrN7yhkqn?rx__py;Ag}rhabSk-whvKD$
zDnssMwrdaF5Q;Lcu{1ygFf<Cy>1aCl;o3q8P&-y>e0sE5HbNzviSFf(0gk)!UiB2~
z0?JU*S`8=4f<88jk}}vSnkUDLbphJyoYO68?5ebR*>YNJ1<b~h6U8$}2kSpcVj1;?
z4zEN!R63r)?!``?q%|<5jEglc{4{A?3W~Z)g#vz_)1a6LvzcP2-I-3NzjHeRw8Vh1
zrNQkCYxYpsEM#}Frl5P@mcKV1jFy<$I$8RR{cvJNtyRudXE_%XPQWkm^VmTqhE{{w
zvgJYb&~1D;1Sq`z8rN7d9~nv=J=5v5HrSEfB1e?Y4kil^5TimZ!Ic?`zs>~0!pX3d
zhC<;WgGF=6C}PeXfER<ew&Mt}qYBb_VdQiAG785h^M<L;M{#)hod4Bt{hvDq1b&oi
zr}IJ|FlM=LHHa?Hil&saz6uUbmwD)^UK!<EYt2oZ>ZBBE)QDb<nXM#4l?pH=0HhW9
zB{n)B2i<604L@PEv6v~9-E2Qu&my5t@pQXPG)e$YRcUs;s2*$r4hoS6!dFVI`clV>
z$$-ktOv1dx=mGP|T!o_}TD|r_q^BAsuWjsj`gF_a_elTe@&5H!gZF-s$sywH?LZw=
zgHDjvz+s0<l*N>DOk_!kK+pYZK&wop#&!)tw>zH!gF)55Sgj=c@M5zUo?53FibhH?
zCL<%m!Sd!u9A!Olo(Ji4g{_?X)An0B^~N4mWy$ECFpJqz$xi{{`F&wBWzMAfqu4Xz
z=(1W3r}FoyydLQ*Rd~kic01ywsYWvR_ABJo&L^Uv%UiWaK(Rds^8Rvixe1<%a2+FP
zbMFWrY&JH2slxI6JHY;rSC1?t{g|r;i^+3tu}ZrqR^ED`I9>~Y2}V;m+7oG579dq*
zO?BwK;~jnmdrbPjol>W&_Jw@?x=3X>!u(-`U~r9JAi~gGES7DnFFcc8?>ZkaG(|w9
zo=!w*51ZX!&PvPq+?|^!j=RZWCzDF4Z{nA}q1kle+pGAvkBSA0b(V#-ET+=g`rZB1
zbM^*<G5mVEPP*FFqsgpE4>ylLsFjOFB$k&8jRrR*4|0ju3I67Nd<9BLk<aj?)GLlV
zi;k2@^=2!{r?x_j!}B{Q<QC_dbPL3mi>^<NS04IB*;Kzl`Kb@&N+rx%qz)iOa=Ci&
zt2#02`iKq1F%r}ZNTzYc^;+EBJt!*HlRG#$)qMz$AtZzv(`%E8lS*!e4yD9$d+&-q
zhB9FliT@uX5JCi~>|O`4SQfzRk=S>eM11I<njNa5NNckfPC`u!#w#kACh~f4#4MrJ
zpGD`6CR7=U#hlt8{o9v4CPAhf!u#3ixgb<mFRM=L`fzo6YFCmr?;>R{0tA8jWXMRb
z`zkU0?*5Dj|LxDJP~WEa<%O-SW=f|6A{M7J#|q~HRcLV$&_j@Z^Kt@8`-!%OFL7IN
zf`7gD5laf7b2HZ$Qn}Vz3t!f;d(~3A<VI(&M@5u&lVmqpPR%YHthC^mKT<>fVUz+;
zumkXFkFD<DAD((|eo4K|T~VJSLboCAij)&aaz+E0&R-dBj}7ESpf+kxK~MSH!4*1`
zJn3E0AT%;%NqmKK;kamu#W?Ooo!L^?+A?Q+t>2M=9Xf<e5!yL*BtDOuY&!!aZX7G<
zKWuz~@KCM}uJZDXZ3ymV<YB`cIh3x<`4X}=K{^<Ih4SYdVGb1Z%U`rffZX*8898sv
z(tE=qnowV8D4Ge;r<P^@KRmmyFBJs;T7N9Ss+x+)!f(ql9rqmMbsG||+YBPG;6;Y`
zZAJ!+5DLcv|LTDL=MG`<TjAY#qq|t{V<jXYUPJDN?b$f9wmXL@N&DbDC;vOh|BK7-
zgE(PzKWX<)ybLCs`)Ei6#U>pTltAbG+ksn^_6B>I(7Abgd)B*_P)h{6wts6cf8Goy
zS>M|Fq^qmDeRfvCEE7%o)_5#6Nik2-STV5lF|CI#it9a=<v9@cQ+#j1X*>5YR#f;6
zA8;^0+_w+ivXuu>x(I)w4@v$9D)2vV_rI--kQgeR&r1?GLn?c3JVQxdKJsCpJvD~W
zFp5b6D<zb6&T2#P)JQhrt7rNn)*RX+@NBZu0__!`wlFCJtGdf$ve*gxgVim~zqDOK
zX4t^qa8{;wF-#Iws}p@xWqI&t_jXh+(WK6Kj#MjyM^SRF!y;Tjx=2Y(xHhFc7#-<p
zyOlf;GIeV#pxt7n&G46|>MKBs3=3PyH)}>E-AA4_<RF#^$YcH3ynsBBKNs#o`${X=
z3FNhpRBKbM3zM9b{fSXw`G^T+dIFzE3O`!B{p(0(eHy9<BZajJo!l^{&oFLw^2eTM
zBdtsASGb)KaX?-*x8#L4v!9Pa9Md`g7<6G^(D8?E71|Smv{55H<+h3kLN1*$uix8f
z?|eOa^H;_KWc;3x%xqMKu~9_yD5J`>u9F3_qQ60t({BY=lIT29N^^m#7zcucH)x+}
z(trg?1<W<ZU>cQdv%!>2_01&0rpPeif3PA#<Qb^iDhaHTPzw5ZTuJ~&5!W%Ii)h@v
z8T7k-r2*_;!l)2=>weXo(fh=ItmeP4>=Y<hE5#Il8x~y-NRsV%I@}$iw|_k^|Lt7>
zKP1qE2H`3W_t#_nUx|-`%&VcaLh^9Xzc<x?GFwQf%;lh0JfzTnJ+%LL5x+w6S39!G
zXkvejSN+!m5F$fB%AX3q!v9b1@gHsz$VD%NQtkKOQo7&<qb2=qAmA&ojS3)X4)??^
zfTeSY6LN4Qo~~SGH`snF(*+;RRUG{M7NFWqwhkN!10+X=EJ%=s^bj8Deu27ayyFJK
z!vgO8Xs(yLVeSE~9=Br`NhD&(fl!bjkDVQ-jPnsuNNuCHkWs<{-j+6NO;Un_f~rz>
zef5PbvxC$EP`@n{+i!k)JnCj@r3LUP1jy#Ck@m-gpT})o9CeEtZVlZZKH7xpH#Ih@
zi&)c)SY*RO{r9{9`6v&NE4qQ=GPT`;C&F+VgkB|bm~+L^E5#Knm&o->DQ9x>GcX2S
z0>USUR~@Iy*+yi=>P<*-bZTipj%<Z0hV4AcXCXr-rLx;vtgzxfy5BRX<es`Wu2%@^
zz+so*cX{p-ak3eVHa=V))A5+TAn+-j**adRkxS!t-4EoNYnBmnqMb8%O5(DvPZwQs
zyV%SNX1M`0F4!z473I{b9gUrIC}f{X$bQbk`Ta_VI9VN3jrp>Nc<XX7xpNrn%pZD|
za{PGrU?DLuTT_@fcUmxAB-kBMq=_i!eskQE9#C(nOF`GB>K#{nUFeeW^9o3o=z^xK
zMvsbTG-4|>6Z-_I>BgN-xWa%CFwPqh<YhI}{LLG8vBoyN!g;ykh20&0(k-T0I^+49
zH$5X`WV7RmNUxNt@>yhb9`(cz#FT5h;~qpv5Rb*U`A;GIY0%X8;GGUVdT53q-D$lw
zHwK}{>PZTl?bI-%+JN{fXhOIof~S9%c>E$E&EuR!D~S5iqw||j4HEvxr@qAgULbGr
zHH0<mpjvd%Tl}okaacwUZB91tE+&q9e?p~Li>p#GAz;1tTrDqET%T1ZGP(ra7vysM
zB-N(pj8$idNvmB92xoYzh#;Qu8XvS7+NOoBCG1-3ZMho|KpC(=oN$w#y*+4|EqOt)
ze)<yPJ-Fzi?hyeDp5PbW<w<VgN3RC-{5rvr%QEdedYMEHo$<LRa9&)+wLa<Duf>h%
zBwjEsovn3AT$Wm&g!A*mk?rZNS~ifQDNStd6q$}gkjA_cvAW>$xM_8-@aDD(^(LDu
zUy<Ld<qNn6S2|_DW72;jXfP8~E7zX7oJuDt3aEY08o#TBH6H2W==U|R=*8Fe`byJd
z>aML6#(-i3$_nfpaMMEl-Td~`X~yjHyOVawW+p?5Vh@HGnvVyQbrf-+!fd=rpO=+<
z;Ji8cCOFo?94l6f`NHqXcX?ug-??pUY*Z_TR1;@}QD7^}O@amT|MXc^ah<beKYp?_
zwg1K_#_@HorB*8K;Q<_h$Ssy$LI#^X6FArHSMDGSkO|RFH%1i%vzv@S{Z2W(rb|&U
zXjJ_%=^nzK`(GQjxY*<ZnPJRG&t0<^fApAb0MZG-j-#RjJ8@p`Ph_y!YRUlI?#baA
zQ!#8K44QZ~C&q}i#3S`=S0>b6KT1zNo7LFKd<hxjp;+b!i)#+Vxq{yQ(fx<8l&f+6
z0CDUjpXa7vW)pE+RvGPguqRls@EHao@JhXKJ6EJY2&ejZ!xQ38yo$wVK)cd<PXIU`
zoILTUWsZT}_E^30R2cB%8P<%x=iNCG_<0FZGLq15)NumEY>YY`v7>=KvDZIH$^5GD
zT^iaYSHRwaUV}H<Oqo&)_Qyig^fWGf09}!wkX|L|1!gchuEtA)D3-<4nOY$`vG*ef
zmd9Jir&c;%pNp^02E9-0YvK7owGx1X;;!Lm(*;k2%e6UY%6ZRjMpGI}8bN1w7d}N+
z3zHA_>du%T-xC}B*!|v)?{1*o{3I411CcXAE(h0ly%7<dM*8|ejfBXmkjBHY`HOWW
zG18?d--8j_rIR^S$NLt!H}5WDJ{|=$O?TGNzpT1W9<t(0uUn2L&rtfbw<6hw9AYpp
zR_*Z`qw`8TRnOe8jsZaq@_X2;lS|gY?JSj&Ii;89PbwbFVmDR~d2=ONAr89(<>6C#
zQY9G)c$Y5XyCYcFc9)gFaR`U{)g<5{o~AF8yJg(svHka#J6RF@HpTr+wh5MAAA*oI
zxtCYH!^@bjf`u=`ms9ZD-b60PT<E#vO_`2Ow%$uAzZ82tvbmqo>V$-n8SPwr1Ha%-
z0~mvkz=;RwaYfx~W$)@>N}+&(FNfRZv}o-cL(5gBmq!B@h1%mq<K^_uaJYru1I=bp
zE=h!1pwVD-5J3BtwqEoU0xGO9*9R*)crRB|JVR+TFm+}ZQNaN|8x+Wkwhg=;CGm?d
zSu1KDmb8+6{Z@4>`cIUqvTvxNORubbp7fL3G<q6cfiA3F`<7wMBRYKrDqx!=vyO!Z
zLgTHsfkFk!gPXBDZp@1#EE!>O++X(S<--#5q`b38C6<-9@@3odacx@^PwyW1a&~Cc
zl)B$InLpIN1$28=TRop7xM!$dvbRiunll7fH(a#-Cz#2X=i8=WrDzx@Zm)aRvW+p9
zy)nG*p7Xp60>lp-vGELA=)^0gCz?fHLK2?JW4Y6~yhKId-ov4c&jumz%-@Z&gH_Oz
zvKErckT7eyECwRI>!W)Y7=hiivXe?{_S2qiDt)c#1V_2!jnU`5M|+YYv#81yA1a^u
zhHuKw1`_q3H!5mvUj&Oaa*FLyWUFk$;_8NgRSG>*q!UxDT4ux~>6!t~T0W=ie(fL;
zL(V#=Mho%=Tjyb0rLazYCYr0%=f(c$+Njtm)MWUTMiv)nlZc5X`=XX+U4@_0$8rJ;
zQr~zcQ{=DJljrAWi)g_);D}}rMu}^7SG^sL%l7S1TE-53>9Ry3BM}B|Vn#SV?@t?%
zCpU+$E%tSl?;r`+KSMHC&ecg##FdQ1^EzxdO1zz2MFF*8+=GUZl$({`7AqG)f}6}~
z$O3H>6F2tj3nlVa3H)!;ndQ*pxfU!QllMXlkpoYla($?*gCL<n3Kgs0_P2wSB%?BQ
zZYeT6bII||`}?#k&ya%*X{5V&d5;P`$zDJhmJ?Aq{W7uKS#`tKb=@Z?d;Y3FrdgUr
zXsvs+1Y*b$ixhGm4rBOz_?T65CGg60q`(h#DlbQ~WiPJG>PU;@;7U>}8TqoqfI)%i
z)mbmu6t=KuEn-#N;rNQ|$6EsVd})GMx9EVt*|V3k8@!z=L2fpG)a%dC02S!St?LM~
zxEJjWy>7D*|44Ed+6&``m?8SAwOPkX7Px%T;>GfIV$rLvV2pXNfixnf&SFMLWV~0B
z*YxU8f4puUhXO$Bmv5;CFeNt?C-lgqfTYUDhefGaSwAJ#+BRu+Q?SV}3}Nhd<<J+)
z59S@g1fY7y=_*fPLrOuCltzeH-O8h-v8);Nw&r81a23hs;h_cd(GGwN9eS>C)lI8D
z4+_kG|I&Z81sv&F41QDkYBJaTntFRTUVU_XVr-!WBZP>lBaPjsDml#Dw)woLq#N@s
z^VZQ-(igUvHJ__7qRqbl(gKKW#n*IRi{t!+Jrv7VH+sdy`77O2prswyP^Ny~(m$rF
zUubzmuUwnkv_(_Mm7{+Je7hzV#S5=U2gBnhDksf`XJKx<a_c3wjN-9gtoE1sSndg@
z7uzos!e3BG(mt4bYNAyoque@Xt1r|$rPY}|xOrrFC9yUn(A~ayhb72Al3rYpfM<>@
z6;SNmws_b|Kx5JiX>k~Pv7J0HLt1_>=*Yxc0TWIV;H&PVTBH~SP)+hoDnd|2dQw*W
zE!KQEpVwZv3WH#(ZKa$~R!f$>2F^m?yR0@;iW~-ReCjebSBg6#t6?|(+$4HkEQ$4C
zKD>K)JFbd{{01;@4oKiY@B*=SZEm983Ng}UZ6rf+G@r_!@b9yg*jew$F*}(H6RC|Q
z<5nlE6=Ed6UlP(f1rOERaxlOQ3J^-Z6<-thl166@XSgtM>NDP^c89qup{vQQyxHn{
zA!N%fm7-kw__6B7d!oyj#&Q#v%W8kmWY|KpJdZClepZ#6M;eR^4<;=`FkRRkOABGH
zK{f6RC0K}lAO$!wKX{JjvT)DJifY|8x5(^`9nvVBm`%rWW6dVtNu_c`#VcD|ub9$p
z#!$!|pwbu`EfXPnT*5|(6CA<ULne>UiuH%5Z3pE*OOTg*C*L3T7Y&?G9=@@4G2`T@
z2HO_V9+Ze@WZ(B&yG@F_0S#4LUOjtO5>}08**!rPBH?8D@~7(AU%&iL`ab)0V%9H4
z{hVXQ&%44JG#H!$K=E|@EjimJ2%2PfOJYQ$C{l?}5r#Y^dfH0^2)GwcII8!pUO4zh
zQsPtjV1c#;9<FK;6FV5Fd0kjVrPV|lSA!M<vH7J-1hZT5C(Pkj9f27c`s9I_`PRli
zg{(V2VNVhNHnaz&0)!!9`x1)$yInj!x^&*9+_Q`$UwKT(u<}O+@7ugB65`o+9V2PR
z*VR3npF!Ja(~D|Asl=2u-QJgX+*`rfP_4xoF>hI8tY$NGrzk>yLn29s3N+l>`_b}d
z+@eG1zS_#GLH<PR;k}MD-3;^|aeyz6o}leoGNp@Ae!&emL9w?kfVbLwijB20h1Wxs
zdf0};xUb!@(^!D0bTZw?a57io(-Heqkv7Zo!x9|z2;Mz_ZXcrIbtO}50xNu8?DNFt
zn%P?|J*h{fH!uO-ES;oTbuRwu2hUXwLCI-!mS&}UKUXf$@+XIOLS~M=%gQzjf4k8x
zH{^IO5vL{g)C7McLS!;1BN_UGjv=v9SIL@3JHw`*m;{@Usy)k_st?4xuHg4kJv{3^
zhq*s@5^%LVI>ZwP)K(q}%P3uQy)G6^%Vw%>#uW)f;cI4)-bwNIt72(tOtfK;jbJ;6
z(AmrzL(ca|u*{b|N+&ZPa9gal2I=xz&Jo`#k*fvo`SZ9rlsp=oM$0f)Ib|?tHwwGC
z>5$*kN%X`hQB-@#CFNr49(2WTbb#BVjW&O7ihL1Y_Wp;(O&dvT0Zwygec+}euR34$
zKAp!kRhm49PQ5bLJDDXzvj$`Qc1uhnxO{A*T}uRQ_Z6i}S17_;AT{5l_PcJ?{V_n%
z+E_<kvXB=C;7nQ>-%W>8xtv7d6_*x{r?lU+aeGaq2V>G@k4fMr{bV2xnUqQ53i%D$
zn|#7xFiCWxswpw5{}x#Koj4w+Hw33E7bWpm?{`nHj1s&1+hcG$8)GTV`Pe*D_dam4
z@$cf-))dlO0+MecsJ^Njvgav)hn~_Is*!ix*V*t5!hT+hM5I$x@<*V*X|mzkt$y}g
z|J#+}Le-weH0l81@yB`ulmt023_>2p@cZwUH|^UL@aDnjbgJss*5HuvM+QrEpqEQU
zOv6P$dkhiBM!h35HH=lF3v?W!@{Ka7-H@QCFFFMr9TMo2>3Q4Ybxr1UJRfc`V>4n|
zmaC>;|11Kdq;)NrxCJ|)X(bksL1=ILna7XNBiyRi=wg`>gS3Owz??*}c_aX<(O?4$
ze<wU)&MQvV#P|&~bd{nbIk+o68^ldfbMqU^i4x1ynEEkfP=ThkF8(N2`ZKI|kz2^b
zbl5*K2(7PhzgkyruEL#$y=$|1FulIeo^$uHS~oY4L95fkpd_uhx2g`&GA+CK#Ij@z
z_BDhlVP*8v&EpMT?gIaq3L5(8Tz5>Jf)TH{lwzSg#Nvo$ktV9;*?YRvhEFi(xmBgp
z-*ud&Qn-wV&^03$H4nQ#h*i%1Hcg6J=Fs7ga<8O;_X8)b-d-L6Ptj{1C^b*lYS1{R
zv@8lY8J=ivdk-~!4OKGQbMg@8Bsu*x(mU%F&llJzi`F~2(JeNpn$gdrC)K~%-p<?r
zVVtIqwN<J1E1^n;x^~S*tB7RrSuP)3ewi3UsV8DYD~aO~&DTj{Ya8ud9_lfeyA5Ci
z)gkRpAKj<rQ-*|=U9?=ro-6Ne#6<pNC$&KJoE>X8myqX=S9fN5YF5M7x3orPHX5P<
z@>p2l;n$iu{nGOJXPfk5v*M9{oG4Ynl;a`e!_se(Mv3$1z%ZUtQt|WvG=Rv**_%yh
z_~UA5Ck3G%+zYSbvr^Mhy=*>R**+v@GC5EhXuafI{9}28q~DAy#X)MTT<Ci>b@&B8
z7D6hkWwjzKR)$N@GaztaPQwt(X}fA*@#1DG*>jq+Ew+LmMc|-t*n`m<&RDgFRT+?m
zDfUDI?{kvFYnjCxqUl}*8|9Y@0rr?+^2YZ`Z;^+uwxrn^PF7R`G#abyqM%tyRI6G=
z!`yx_Z9F$vJ{CQUrOfGslYovR_O8RWH5f59&Lp{%n9&~9(%XLHD#^^onCz(;_619s
z2yEfD=KSQ0b;`D>HPWB^$5x8JtYvMfIf5T#4m(wu`?7hzE#B&B2mBy!aXwK|5DmK%
zeW8o_9=mh94U{@l2J`qdHPp(ny>GWY&K5c|D_aN8UMt)Lnhi;&U=bq&oDm_Yp1BtF
z4bSVDmwo02kva)+&3qs*wVbobrJgyQg2U%&wco<@u_-162n>o^9*fyP%o6@m((yi*
zms+t|Sz>3_l)i!L`F<}_Q_Z1wXvQM#ojndZ{#&Uu(w70N#~%gH;;$hmL^1{Zo~GM8
zOeHh;(vs!x;>&!)dhfVt*VH_E7av8W7=rN>um{CfS(zbzsh3{shi<7`1}rU&R}~;^
zfwB$tR)5Y|e#}(J=}<detpK%X(^l2pR;f~G%}oMX;{Am?!KQ_lwjq|5j>UoX%3e<p
zS_~!V4bpKQx(stUvI2@F-aULtCWB#`IuLozDxtQhEth=lo_bF3uV%{_;7CuUG*quP
zscD3Zz0MKoVU{Nkaem59!DfkZ?wz9Gll*BJf$`zArRzhMPvvqDG9M`b5C_sg)mtrO
z(W{Is)Cp=N#Sw-~*qV?@KR@w`oAeB1?_17UEAzVsp^|04I9bT)Jy+y}A0#x@6q#1|
zeRMt+o^g%Vke({=9`~LMDdJ#`aTttln(la!KU^`b1gX%5aoZCa^N@V$yLvkfKJuQ9
zD5Kl%|L9a4d$sjWDXv1NjWH+9;225L<aOAickskQ;8}35&@DcgN+fvOLSgk{OY9I+
z^k$o$f7@P0$m2~{*A{~_D>;FTZ2EkK=kC%at%bSKQc%W}PRlK&&p5L$@i&p1K-G5j
zvcYDSYWz4J_!~*-#uv190-5UY$R^?Kg#-;*mI67Tc<*HseKL|1W6oG{$zm|=>ZH3$
z1a>3O;B7Ci3pIdLDl4B~Bxn4*&dB;&sg%tav$<ZrI9}4@P2CnJzw8!tD1Yf(ej58~
zFpa`R-fFWGylNkXq97hutx60kAcvCgG8sB$_NYi8<9@v_d4IovZpopMd4CzMqY~K|
zk;3SWu9af^E875|G$0Q`8NE^_Ul{P!-s($#K+v!}3v@o=Q~AcQR&89|D2-}q=hiXM
z%uRe#FG6;@>=t5_BTP<Ns$C^qc3o*Sp?x^z!dQ3qOXNFHw-4~%bWwICqjj1b3M{R!
zi07{-L{@?goC~OEamokMr>P<SSw*1CeqD^?69B(GZaJqJ6Fm>u?f4xyTs?O{lR&9p
zEMJ3#;^3zyfe?4rwSKLkwPg{WjV*uwDsydhwxL$3Itunc%yAD!4W+3tm16pwDvC{?
z!I7qsLqRCjfIp+<iGasxjr7NupwevN{pBW-K@V;&C@-wx=}(U*^{GR4Y{Vx%gMy`x
zV&NaMwZXQA4VG_R73~pqm(1rIUaLS<<L`gOpNjS_RZkBx8cj|z8D+dy&Vnp`>h@}Y
z>>Hc9aFst#OS4D$gBd0bi_77Z#sjy<$hn6A1JaBcD^3hZZ+R9_DH3llRZwN6dPGW5
zHXV#k(r)awk}zTtzeuCucb|Rw6`U<@aw;A$n;bY;Li<F2FJOTAC*~dX-<UV@l$-4t
zg=Cb~3Et+NViXCie}->FMMd&5Av}3Xi|1RPa&e%JgPa6qG>T9qogg8_%xEZaY#yR1
zS&)Vn(k0w_lSA?zC)_Npwpsu8JlDMK$@dOdS023cyLx18P-A*L&Af>c=}ccc9iZ0g
zTj+86{NQ*nZNwzC6Nu4qrPr&;SRa&eW~jSGeLQ!4yui}D*;{U*@u>JwPPA9-L29-S
zqPrV$DD7PS6E;v26nQm-#{>HxDl%1ZzAQ8@mAkT5UWax%|KT71{8Lr5K&kv`E0X7@
z=i^PvVp2xNK;1T^(Be&bq`xn}>_gEqyvc%DYPcldr<2iZjG~UG7grhfRQGp#$mTCn
z?KM!&{w&LzqgJu@tCTEd`XZBlbVk+F`1$-ul{%K4W~NMAD5AyeS}&H?+~6TskZf|u
zOt}UD;H1g)y4`eTupM(rz9V=nhVGrpl@=wKp_4OLB%8X7OluPxo0ynV8?13Rr`GMP
z<QwoqOW5xW3L(GP&J;MMoi3H-Z1#SHC|ht2Y_7Z9=4vc*Ra_ONKl_QMw?o5VUA#SA
zm=BXD7bEmtD!Fdy-BbZ0jZ!%68-CAstzPB_&Aii1Dms#JT{^wp0L}F8N<gp-5CNK}
zxO`4Yr~IHQjRcy8R@a}R-((L~zfn+^(~`zAn3CtoPoVPq9LTN8WhngQiGMHX^T?Js
zd&VPVy9%Xn>Aq9+-Bd(3mJ$M7b?vKoWp+PsGkNWCcs^Oz@^AoXCKozhm&7aX2{V!1
z$I_(BMHsf`#N7s$`6tiN7Yv0E@TV7lQ%5o<hL^U!e<a1qnChzh|0rAqqS_TY?CG3y
zFSg!7L06GQu%bXq>DT`njHja0@vLx+YJ^@e*yYsfbLICckJf!Tg9w_Wunm{Sta%t8
z*3vlsSfr!cI~c=D!dj#fUu_~S#W((R^)Xw(edB#6CY$ko$K&eu`_Fc3<f?r44kr29
z3(SR$8Z5c0{eVpT<P`SV{*FD?{TJi><y6^H|MU)o%whJn(40wlRp}EhyS{B)q`$Az
zb)rDw7B3fR<&i?4FS7d(@Y+_{JOjQ9TFP6sIM84RH0seD7uLuml{%o(u-eo|KjvT}
zGrotaIU+^tAKgecsgpg(#UZh*y-=oQFBwG}lrD-co-~=K2$u&GLl1@!zhOk+{~W`k
z8mF@-9!jLoOBWiFNSjQ<cTLfxVKr{Bd0)PgRbrI~(5U~`PQ-o>cYoSkf0UE8Y<h>F
z!GQsNf<_hbEboD9STfKD6q)ft(|mHRE;6N4Q`H+@T0yeco7|t=3Wq>C2k11Aj)7zz
z-RLq#55Me!e5jKe#kqY>>Zzq>9|lKeIrlUUQ1RW+(0fj|QT@da4>z;5yRl%l4f0~e
zCU|PSUa0EP-Hmbmz5ezwkpqz-0s!&{`TcyDX3$s8gNRWWAxd6Z-Nr2H$0=Ja^MgfR
zi<eEO949;Vq^;|HDjj9GL>CJ@e2l>^e)|$~`Uzn{(#egj<mr-6hQaR{@Pncywr{}w
zSIKc)Vsd(U3sUScjqbo1SISN1N+@0D42Fx!L)Oc~w>uJ(0=j4YOM9GJm;R1Bs%_dR
zlF6h@z#67R$Rniwdv7#PzHYY@j;>Z?z$BU0wUTS3al2b|CWV?{{H^(;S_W`#=mdtd
z4kj*c>1MEHz3}mmle3)nl&0}lv4Jc9kG;2yimTbya04M|a0~7Z!Ciwp!5xCTy9W&t
z+=9EiI|PEeOXKeD(7;{ax6eLjpE2&)`~Mwx4E{9Tz1HelRkdc-eBWmlYsL$E)Rtb1
zc`3wAI0>rVJj?(oa@D7DoatiYWDSP|N>#^>cHfND+S^D3T^6n50j<}){Q}#e)%eM*
zw&=@Np^4cB>ouoz9W)I+Y-)%sJEgLZEzLpocgz!b1OIUrCjQ3gFR6G&ZX7JWtz{yG
zfuE{lm~8Es&Z`Z5iUAadO3~|p&rfqBDskFMm7Cv=b@75<v>&336}!9+GZXXdmd@~?
zbDf+RX`ESwQ8*-1BW$5?RfW$329yepmVd5!>{Vn%aDDY;W1QJYNMgcBbD!1SWPobh
z;C+i=!v@c%s!OAE1uZrDIePus2aLP_Q*80yIdUKn-@0sNJ10#DL?_2uu<mY8Qebgw
zqAnRb{>^!lR1q0RE{{R6n}dR4uLcPtuS*4Jd($gDue8u3eiQ4_9k1NNl=_NYnYgri
z<_iCt<{6jyJ#o)m0C><wF}?3jaC9#{<$FQNxgIRFKNzvmwy`wT`W3gfiht&^5@{||
z()J~_H5Zq|3`72>@fhj_CGa2@;k6J&_iyAA|IG1!k^rOwpWH^i8vLj6<KHX`e6-p7
z-r@A${H%Yx#T*4_+L_Oia(e#bM;%gtk2*Y_ZG-;fy)ndxNdBa5r1I%6EmF^y?CS-_
z9)LjdZzfY<#|39Q{eIY>WxM?zn*HDFum5Tie-uC-0p|}z^=}UPUvK^PfcwpmcD;r-
z`w>tn`9rBO$RGb+iNXB8hqI71mHqh|e^H01#u?XX#h1SSd=g@Ez>y@((v9<<?hYU(
z(*h(I|NmkCKimk(F-7*!fA#(U_dnv#=<YW+9{{Hi#oKqGAKxUm_M|nZ3-WJD;<?GY
zxRQsKn*d)1ohLSi=%wNBzOHSaekX?<_b_yH3Q3grmiVltpKd<?0<V2g+Grz&#z)VD
zqSIOLAX{+%oWPbz*U}sK5{4<AlNsVjr6L;oxAF%X(k?KNhWLWv!-o&o$kfH6I1sj|
zt<AkuoC{D1#J;0%-O-8@iu6WACKL4V|7+s%|0KHs&}f}c$BoYJ`-|#nX5zHP3De!a
zLsc7Y#ZEYR-rP{^jwL0bQAr;F>q<$i@<lk`OQp!&frL$1RRuLssg7+bryl_W5YeU7
zuHFGJh|(Fq$`?_wbl!wKW&FMQOSY)|1E|s`B=Tw8kO+B=8l;z4%v22A+6grxl}oH0
z$_!xt9`D7J#P6>d!RwzAc$f<)Fy~@O%lP&PZqy!NlxxZ1jOqiZ`uQblLVb++GY7H%
zSHm0P0b<DJ)>g$M3>th-3tQ`MlB}YMOqyNAsrD57R6px+S$bE)BaO~k?Kwe<=|%5|
z+#OJ_AyvNs>^$t{d(wqO(oCa-!TIp8ihVM<7P8++go0+V+GT~%yHO1n(k9_rvOnVg
znm$o<p?VEr=6R;X-h5hCh!dVSGP(A&&U+X4sj;e~_lmIl{+D4-=qE9;8n0o^ws~LF
zWuMF%GGUh~LMFETl<CL*eqULKKGRb)L(i8AU3HbL=*!B*@^{J$CKMlwY|uk*P-`Jp
zL2-8$bM^9}ph0d1oyMpbPU|bT^G?nW*Roz_G4HMWZuZCDkAKCS1r(vg=}-xD9C#Kl
zVDR9=eM;Xae}Dg-(=p0ZEYUS(WFmpur%unO*&mRQdYY0_#$~eF22+Yzp$Qh=mpQ92
z+s)(6L>ae!-GvvZu?OW|qDMCA^Xr1&<-uMd#(3zvM-6z+8<UE072c4Lq^<;U5^vpP
zhr2RelHJVCz3x2j55M}_iTJPPt3=uem!Ln?kn&?ZdcBe0a+}5xj%aZMR*rliEqZiW
zjn3o$9Gw}nATrXWo>SC_zYQ8|yE$*6OL|YXc{0X(e^_#UZNKmRdL`$1I8gbSUefrY
z=Icj!f1#h`-;Ue1N3nN`J-a*!B;&B5pbX#pM>G+Bg}>j4^`%h?Dc^rz6a8+YDPjt3
z=J=fL!l?97&HSCwu}iS)DiUn8^KR7pBXc(_PCKuu<`kLY>+f)E_9xNp8ItjSS^#e9
zc`-x6Sd`CclZSxcgM_74JQKLziekT|WynJlhZqDNe-0;AeYxcm%$>L4nFi=RH(HT|
ztp3tTm9lba4M0Vb)T!FtvYTp`<5%+N+PQ<gJ)6I*J8YIW?w$h(!(lqD&cT+m){+g!
z963kqd?niVoj2bTg-9ER>oF-U@>&H@X_Ti!Q0VSSMET744GLZX%1#cTR8s_mRx0%x
z9#7>j$@RW3lrOZyNoDdM;FAgs`{*XIGg@Q$c<+Y&-~TA_?$c7KQxmzxx15O0PlmXI
zLoX}=%!z_&h6QIFGhCV*>H1j88PHjiCs}*Enqwzr@-4KPv(1lY<l2wMW6I$mw<n&J
z;Zm;?LbuJhUGmNeG7(?>&eU}ibq3RymmSR~7xM+O<$>rdjh}YjSKwfodT_MM6OGI+
zKDTFF>70c)z~Y_W?n}rZ@FOY!{0%bzFix(N?{HxK@SrPpIg`(O3;$Hm8<f8iihsiE
z9q#+;!vFZt87j$PAl(*5rJ~#HNGEIYlgw_-C&qS_y*Wz2^@vpJO&DF`dg`hV3#vyt
z`#4*w-ev+d-gv=oHLrX9#n|yP3v%O$fN?G?`|FvgX-m}jvf}NXLBSQ+<gRG~--loj
z846$Ow;=J?7I`P*%%m%{dut^uK*|hE+{9og!$^P}d%Ju?K<8>)bDG01SmdD$t=v^v
zF|@ygfXixwy6Sd8-&;+5KA*!KNwC6AFNFe3JjBqb2a7cX8T>v$QTR_0mb1mu+x-gj
zR{EXkFa-SV0CH<Z4xK70r)FJ_oQNo}huf&|W4*(RG-jj6j3uaMn-KtibV(l{9Z4$}
z{mk=I0E;}|+Y|xo`K{dGuA@f~?Tng+^DI@n$q_c*4_A(tmhka(0nrXGmm<3#kyBZi
zUzq&XkZ;b1{0{0|E6guqP^FpCad8#zZjbn5D7^(!0n17}kT;au?tK1sIoY(%d2@72
zSE`YN-vKP$v|O15ymw1)F|wB7{K}U;kyTOHou$v_X;WQ!*ax4j^N0wJ{}M`TJjqvO
zzVQslWDsroOvL$UJQy=ha&NkObejMyaax@wBF?U;3Wv6fCd`*wGngwtBu8G4Ae&P4
z4*a>&EmYD`O@)s~Yf<4?gB7K2L5UUsUd(O2G*{2z*Z0v6TCJ9J9)e+=Qa{sN3G%Uh
ziRdLGyLg!o=X+;82gv)2>Hdz}gjOi+*X{}VKUSX{QrgBljLu24I_{5mNUYRwc$cec
zA|%_mo1D)3B&_h$+#Z5yb|>O9;wT;RNIy7E{XVlfWN#A%JuMg{-o^<wP6rYBveKCT
zxqD%=-eMePh#O7SZ`-xQ<+F`SWv8jL`)MYRl*Ja!;Uwa^c8*sv@;l7=c8>s;+e4rN
zR6jsIVd12H!0P6!U6)b#R;z^UHx&78sA-^S<{<4-Fg~GbC^s?fu&B?fLFDOqvTN4w
z2KnZpq+3Pxh~?WTvNQOGf*<KGuTyUH_lO7tc8itoXyl<2R-nGT5X9q|l)8NvY@5tX
zm!Z{FUDay9{g}X`O3QP#Rx1HLTW2zo+oMz@F9rzd@_e2@e#UpYCawf5SC~oEiln8=
zMU<z@cCdA-g%wOg^rgq>u`F|a1KobP-qc$4)k?xTUA{9x-&fWF3(eOk{3VP1&ok=;
z@uBC)NOdyhP;h8p<<xkd>JX{`dPj+~Aq{!$x7TPk%bl-r5H23RMs;AXCw$#DhX_|2
zUAd;$Hjx2^^l3(Q-)EV`DmfXy=RjO`D;e%9udi7Ue-1#m+OydfR>QGXYz?pF2>gDw
z)dKD>Pwa?9{Qluyv)L;jMwH52GY-4oi{P2AhA_}F4oy7dVK%zHm|j^=r#fO%i!f-p
z<>n2@TYkCORrj$NZ7wN2@fM@~nl{nJQc^@1>xOnMJCMYX`gIs%=<qVW$TMa~ziO%|
zp@~WRyU$d{*-A&zkJV16XprlHxCeY<ULk`((X!jwUy8QfXk6YD9=GG7PlN3IUU%u8
zN8B;t3FXqev<pS3c~rC}bx9YqDNZ*Q%ZzikDkXD4zWO!d2rNr_EuI;)3+C2_4)Mgk
zkkZ|^oUemU&1UC<;TiSoY_TjS4bAX7``TxJ@-NAXg*y4_Ju41nExnG*6A1{G;R(eK
zRtoT(FOL|?`eeN7-wu{$y&gVlwKz2Ox%YhCI$3f1X<XQ)Q6Kue<<Vu6e<o5mIeET6
zO+sg7EFHoE)Q%t2EIoZ(5F{#BvRn6(oTf}_ym-)*Y01E?t!w=DNXavpBvi(ES^!sv
z7?0kY>N~B_b$s~hWk<6845skm-NcT!it&_rX|O_}Bevj;PU#G-+Wym~c*NrRWcXD3
z2Bp>R7-0)x6^BCvZZ=08GG>b9)r-c!PT?Y{jd%pNY!fvw+PKzykMX}oUs=<uF~F8;
z(~Dp5w=*A}7)dO8$IUo^f)Z*8c@@7}?yGth|7vlY(sbv;T2&_4_V(i6MYQ#jyI#EH
zys@asA5I<JiyjgbnO^(7{=D4#Evv3=;oOwIFw%6LK+5`<pVefX1>|+1Z(>5eey#f)
zeY}fvp5EpixJR!k;pDd}q<_P%(PVXd$YPHsw|l<H>g#512>z_mYMJ(g6cL~%x`v0`
zAqZBJ?!1b^oa(%;WpqJ5mhw2SSZY_7*YrV_UL^8+6<h5}DQyqY*}jMV`w3vk2XTh|
zAz~or-X{N(AHTx|WF?=MP$H*~#BGyYAy%8&%xs<Z;m|R1SMrp<@$HzA^ZY>lIS#>X
zXoZP*tE1U&zwXK=_<|Y60-y4EGg13QUps*tVBE0`k*bCpC-6#Ot#$|l==+1wU@N|n
z!$AEBzo^U{S)A!oe>TOF(Aom&CBqxVKug-QlVGbG@j5nmlb3WVfr%2S)!~G27>Zg`
zX@xg@?uz7Ra4=B@ms8l4eG91}e?E=b+SL<o9agzg<WMx88r5OD%pXM^$<Ta-`0yFM
z`H^^^8lGwJz24hIL^~m0A-*PS@xucQphwby0#cGFnDjBxN>@J}oMQc-imV%yON||_
ziQ~Gr0JM|RBfN=7&=A~Eld#9J!Thju<CAERzZg@^$<C;zllexr!ECdIjOBV~L*)i*
zr>w)0+w~qp#6+wE-_m{S+xJ>ib}*J)DqCQy>tQ~$bXL1M^shJ5)S_s)0mBC6PHP%k
z)m&;-di@Z!O3*h)kKBt#k2N%0wrr|MLXMcE>f9o^=g+fE3+gx9qhU7_-DGTbIR=h{
z;ezus^QV4OqZZrdOL19CEIR^-ude08Ra$f5^%u!0N34G1Yy~>;EMl*qx~x|3)hxc_
zxqNmyY{jI}l!F;p-Ge=bKi{u?)Cx!SZ}1YS)q?h3nKUZ~*i#evQwN{4e;^U5XH_h_
z)uEYl709H8fSO)J#bO)GTkmmYZ3JxOt+@S?p+3*njwO>1BWbS7B=9#imuGRGPk`#P
z;ZAVJH1fe7)+7Mq6G@BB4H`i124KqS9s-mpw)-L)Hp>U0g7jE+TTx?vydnJr*0N;A
z?8XX#!c3nZ)17`F(JkxS-`aeV1uU2RQ`t(ZjtVod3sPrC9>@%Q+bQE#kZnI&D9+WL
zY@;jrXG<`FmTH`;Qh#l0R$=+f*5?d$G&YTkFNuxVk~Xe^^_M9vH`LCuT0(_QC%WU=
zHp)2I$`vG9e;@N%FB=W(PQ&)Vv`0nN>kl9vN<TW973h0RD$j>J_#UXwmbj2<wR+;M
zZrl~Lgvzie7Jock%6xLQD1f$S)O}VEi<go|v{KLKMu$<V324#uaGvGk_IVAXN~F>I
zE?}V(_~bLEwQ8mqjxm%KVfyn>F0rM8A+V0cK`ImC+Qm`S;O6r~hA(36+E`G|YO!os
zK)rWH&IIvrO3L+HwvyQO)M!lyjnNaE^VP{Nic2gyn(Jk0&g;I%qy~mG=-Y`V;m%l6
z-(+LbH4D>fp@%N*(4+54HT3Pltnh@gP96Jwx%hV1VJUQy3GpWY9Pvenerv50QSBV^
z`f8Wg<n-B;&`t2(D889OZGD7snZwj%*t4LXZKo!HO5QZ@FwaZ*7M?=$u}0@sdAB3}
zCzTq~4!aZHd}(p*Y$vbdw`2Zoz#>NQc+clEbL{jKx9&7Df3^WfO|lx;3HMRy68@rh
z>@d%>)UjwxSE>(TfAi@kKYfX1D*BvC%<>%aaeTOqSfo`&+W#hX-G#LC1Xt;4GnH?@
zVXxk;%%P*e_Ui0-y#kTFR9Wg&+Y5R4k?h3N$9+BONcX3kzc}`Cv;4+z11Fo$ozpE2
z|5`G`-pdwGoOz3Hmq)~*#Xu#cNf)R#kg%@I-9o3ssA;tJ&GTN5KkBWD?qH}WYi8yy
z<IrJ7ZKuh;WQ`D+&rzojnZq#$oK&$*5zSdNe&F$KfEzYn?nHi>A7(nB^eqp@nz`<5
z{)d#-xT45xPb`!UeoBgi9<XB1SCeDK&6>VnU0t2^Eh}`naY9|XG}#TKRskj|Gv+jU
zoS7+on5Z)79A_4EN@qocw(vAq#jBOJb2%Hq(lT6cmg|FfarR=V4q949#m2#(qKBU%
zASKC_L)h3Jj$NPV%@ijkVYE#lOh?i)<ukfUF~m${u#_$%--dE)S!B#dvl(gZ#>;6X
zO~FH>gZ<_7w8I2D>n;9X_pf9HY;p3=CAp7tvLi>BGO_sz$&?g+N;qZ_f2AU*h&KRx
zQK5W>*!7}MQcGw-&_~ey;c7+&`E(l042FC%r-JQOInh-|a|8n$KpgwB+*E-aJFb?}
z*pr(Ftjkz?g9oP34QnXg?=re`oIGA9FEXSthN&ip@(CISlO<tX`=-bRBVeoS1MZLF
za>rT!sV>~PvT1}yHmRPZ@}lN$hQO!wNP;h99ySCuLPNip&t!q}Se`P5Q`21voMH#t
zrid0R00G|jq^VRc+u(S%22s^)_osK^_%9K}qlH3G7t7)e7D5WCas^SIdb<LFT1K@G
z03N+aF3oL_q+s)zf+#lDh%(lyCy34K>Hf$aQ#(ebLdXB<hRwNN8iQ_BI(N0+XP@w?
z)CmT&$g$w+M(hWN<y-7M`q7kIs3##H>ZY<glU+3m*6sR2HVXoHlkyRJksjYxvY|9z
z2ee96YUq8Q;M_nO{ZY8GeIv8^PGEWpg`}V3nQfBV^NdEE-X<y!0JhAc_g9#u{<C_8
zv=}Z=aT5<l!DtQ{mHBc%rb?%dg^N6f=DI?v6#4*S(dvmf%Xfwz-*k3GKp}gGrV^UC
zY_ar`MR`xeXH1uKH`}>d#Af_W;j|u<X-YT1mV!7@la9iHw_s1j5^yz;il|cL%HEhN
zD?OIRo*kxaRwuUmfp)z8w8RN2!cD_5rCx<vAL+?xTmMEg;)(K+aJPG453%&vW+q9_
zie|)VA{A413kPYdCZK?lLVl+diK2qqRf*h9JxeQ5hAvq03_nF~nh=cwTESU5YyN_7
zp+YT5{whB&z{81pH%3-3t{b9a%sTEDa()NHIlcPY@VyXd`ARndLK)R!;mic#7O%Z9
zl3Gs~Jw=7${iIT~;G&XL!grP>X$+0&5Uk5`%}f|)g`@YV{T}cNHY|x6OzgXjof_|k
ze%DYp^+wj#kQ>WLZ9iEVu(;F5_leTFW3X$+OGE@Rz>0o=sBu17sf3F(#onQa*kPr)
zdi_JC)@2v0*=<RGYn8Boy!#vzw~nZXOr$KF40RLoTw+K<PCA@_!q@$^b0ACyy|mMw
z)VHeHp3e#HlwY~XQd2c5f#RI-Q9gWYUZ>V%T!@`EQK{&hf5Q!y&bi^KaYLX@<0LHL
z0rmcHSC{x44mIrhJ_i}A^(a5%4fmQ?x*u88x&y`pZEpavOtBCs>f%u(DM$zj>5w7x
z+71_ni=u$!DYESLq59Y?S3z(zHuTs%{q9M>4hHp2KRI4|WG|uEk^<iN9MUnJSOi*n
z6uq99IbKM5fn0@AM)7HTPw}Z%$VKaIT}o^0dD=@hotOlXem(}ia5Vq(S#A~fSV#R2
z@Aog<V1h`7)qvVIJkWul&Z1ON=1Sr3jV2Wi-Oopw&6U#EHw{E`JZ&kqofn0CL(?;6
z9(2l^2_XW(`AerR{?ly**+C~6P-q@dq;f6j9;!$wb$D(!`3}eXM2`K@y-6uT0AN4`
zKc#>^a@}u2S5e@%3Ek(FaLnO6o{ZYP-|Kt```u)LORn!G3b9*U_WjrV$CK&ODi>p!
z4(TZsk`m+{^m13YJ?_GXC-_U!pwdG3n!GsEvd$lW@Mh6dxrgLX7a7lgb<Jcy$Yg_S
z^J*)Dw(8}N9{maSC^7h|zVh3`_qQBNKg8c8w3zM(Mjn@<P9LwBW_{LVlJ%b|SQxrI
zeg=f1z&g%=Q}o$ltaM#CNEd*rg!uAmwM<B7@})>MSFqRwOHnH7{<ZDrI8_4{(gE*|
zr2+MYrZNRA*FqKyKynq@c;zflcaN#?SfdJpuWZqxIm&gW>|)z1j}d$i6M^NXN~J0e
z(&OQziaS3EdHpHn@JHTXzS1V8N6XaipZg^k8lSJj983c{VS~@i+Eb6ym0hoD@c5Bp
zr3o|*y3&L1)pPMD$(h?E5;R9i4J}xM7+j(V-;x77*rc2m3i}dIpCYx*FYV|o?&sMP
z68sj#fa*EofGJAl`APvg>bhE3;V559JdfRs<ysUcC6VAa>#=A{Jij)U+Pj6^8nPe7
z2e}#+tDST%N1(JuYYl*majItP7@k~`V^Y+}X}dCARUqWw?x~RzP#EZs7Q?&^vs<TD
z<^AY*Y;kpYeK-Oy?y%&VvI^cE%#=f1u|l<+XOfMYiYls(lNDXbOOfdYdstk8HJ>aL
zMa5OTv-tA_HK&r&J#GoObS7*+XxoN44rKBihoyfjS{=AGM`4W7%W+1H2Mzu%8<kxk
z7Xi&$AHIn4vMmk&E-PF_UHDzqY(tlHnrbYWtR*Kq9o2BUiM}r-P@-(BUesG#2!8f-
zwpst_tJ{$=Zw-<G_%i!&x(#zXWDFGr6&@KBQM20g(;~`ep)%6If+BQU4C`CckfLF%
z@#vSHid~BM(q5Z*?`Sa^a;*1t*p-E}yS*lsjv28#1~N()bp=x4J5q^>(XKy%X@woa
zW38a7`P&ku<#;%>oVCyTXd-Ve8|uQYn<fO^IYQu^4pW!1H;u>>^04QSc3OIIqLGEw
zgqL_HZ|b0%bU7SDn1i3z8fGr}8MAXLAy7Ltcd_Q?^JKzjPh(!UINaM!n+_PF;`<30
zf%!FlSF8wgVw5~s>$U!~%&Jb3n(3*0hd}b#!I{Y<uPbs58rP!*hizA<7_1N4RFo*y
zmIN(V<aPNOyro*L_FeJ3bQoZ83;F`CYMq$SQ;A_i-R&7pX+rnp`L$$Pe5x^{6x>!{
zkq`3c8Bw)S`qHO@VbjaGmm8_dS``WrU(eele!;<VI4p;2*Q+7F`U@XEBW$~oN}^n0
z8kQON=p^UmbGS&ZnxrJPbKxd^ft<kT%Bd~OjKjw?^_$0ar^7saLRvwv6Q94N^4ZGf
zQa((@!^J$kYk7-7nMxsboA?7$GYZILWR#?)5Y-A>#&O`7B+bUJnluh<qKlVeLpPjJ
zOMy@tVomIZCYGO<LR*kClNKI#N&g$3l3@Pfaytcs4F1<u0m6*bxD4)s8KW-Xm9sHN
zli-~k?V71BLzkmXr0FM^7bR~AkCRRiQ@2|&;gqwR?fli#b#bj6spdd*=^>-QK+_29
zV9N^;$E;K6w%+Box>%L=osE^TSzLYG?KHp4<)#cb2x~H%5J-LbqodVgSW~;mB<}@K
zfn3g}<0-GQy_sESjOqX0pY{-S@gY?zyks9}c!9Kra5%iee5qvx_Knae!l!nm))fIy
z@gacMu`W=|6#qz6KES;0(H~gz7s9Ek)ioDj?o2)+U`x&0vow}7DWKy;_fe!t#`b)e
zRin3RtR@xJsS9(F*C=p%GuRoniOz#*q-!!?uk)(grJFxm3dLh}P~f;9ps|ikRu;_S
zRd>~UKOiHRMDUo&dGpbWfV=`vL5F4pOU%hvlm3TFo2hDJl4S9)D%H<dU1K+2(%NzP
zBNb?hdB3LfPkpd0X=$r<VJn*rp7m_CA<?qJQdt5FyF-b}70Tp+yVF=`u`WKMu`vQ2
z2J=pB^9&eydM_cguOBpW^1{mTjJ?Y<7EJvGcW<FtO;|L34S|sE2A>eMRqGpdDrMKE
zL|4Wl3Ah(4d8{nb4d~z_qgDzN*r|G_#nEfF?hH6ZQbRH2K(j=kB#_6o%`|yfqLN~{
z9-Ba1^p4r*0!<6$HffxKb^tN~u{QPowP+=7s5PDiPD%%TDX!ksC8=4-jz&9^$RUfo
z@+qHz{w%(ihnP+3k2H=E60HKjO-J*nWU0e^-HhL-QNNS5G)$rn?Y*t3@2ChH)d~9k
zofX}@_eDWbIMj>%ukl^a1yY;epdIj8>gE^7g97U&xY#$Vmv*KBd+At*BjEw6okh}X
z$ly-{a3fy*T)O7ZS5YI0{H$%iPS8j#QQDNeEpOx#U=@C@eYkvRg@pVV&p{#E`Fs~z
zai9J8JTOqq=XE8Hj}m$ab+s=e>EjiW&g6P9Xr<M9LgBMEpD~>uhP*4!wszpgH>9vq
zXMyH?oz!U6y6a|+(iY=pmfSDhjCdDC72CpYK^&Ms>F|<VmFvC|g6(lX-Fep{1<e(T
z1}R{zIAeOQkienHqIR-VP`D&h<{01HJPqBr#{F``L8l9O;NMlHM^w|U>1`soy6?o!
zf|=_ahPb_jvl177Uxv+gy24SKAV8F;VE3z@ieYC}Z=c4jw%&R3fq%}>cW^jgX5wrn
zrO2&V7NnC9!0=;7nOKan1OJ38^Lq}}*@O2jzF4dgc<TMy`KKQi(nQx>cli4wiK;E(
zlUN?J)8G*`wpzmIAS+VVk0y;Lmov$U(O2OoN?%01ZDd4L6Zp3}g#`@HR&y0yc4yRO
z>@4U!bUL~b*sgoZrg3hozo~sbbTnnBPAN@d%t@X)+isoBR{JnFl)yFJjd5?aMJrtH
zoDZSPq=2;hBuDSvtIquwqJ<lFFxzz9S40wet#3E=0X&aoo`m~ZvsRYI-WTjp>Ul2t
zi{n{e#{|(dB9q(6lp0$zq#k<Y9g$vI(I0Hx67`9yV%#(_ynU<xP7%^rZ08QX>kC7F
zE8Xv(nfZ2RJ^E#((P!$CHI;qj8>#`mX(wR2{(+mos5YC8uQMhc)!G0cU7-K0AmK=2
zj-WUIWs{;#Mp_oh8JDU$sU0c(1Oq~RW)$9Jv)II2MCy!P&_TCdhBCN^dxNdixr0*)
z5^?e?dqW_Oilu@tVtOJY1NSLUk{TitJoQfZdM0yZNh0w@FU9oXmUB$a?Xg^qqR?}d
z>krX_O$iarCUgtaRU>N31@~4iQm<)?$#>(cesyW7>h-S^6)G*_Mg{h$yLvz+1dGK%
zIOkgsBF}Iomg#t=Ss9m_>~5|%7>C~$p041m#41C;s?t%FD)4fy3};P_Y(PGDpgn3P
zO4qAIwy)J0yz>L1f0`nK`MT3GvUq~`mRL|Q@b*_lz;##C6>7oUpC5dA;Dtm>T{3Np
zdM1aV`SKbnpNY@+_0K*(6YZxtp1sz;v>lc2?$T>JsFKJ3%GWLS;VtlKPFz?-jc|JO
zS!_Sfc09$?$|%U7vv^x^5b{~jZ@*DL9U=7|*XdQgXzY+kFbQwRHrAEaG!h<8<8TX3
zbtZ?Wav-v9PYU)B0M#@r_;%mxQ>ukYYO8}zYdK8e8^0&FS|Fqo?R;20^}sgSbYbkf
z(j8Hrj!5IQBDFbj(Y`Nn2_TPZ&IYwVXU{ddI5w`KTS36Wa<M{q5V<{;)0~2zf4xRk
z-}<n2CB0KC52tek!VWJs2Z?bJ*I}_{js8JgHqxt%Q+Df+O83O`3Jus48I3j8JqsIx
z5uT<AjVZsoEf-9=a+ktU&B8UstIzI~=a6U55$W454f%GJQk0ECXm&VPda<|Gc3?LJ
zgxZ#dJHiCfX{z<7<V}A1V`rO9A6VF4Oi06qct*RymaQLAzF$vN=(9q5#kBLFi71zQ
zF$LtEGFa|@+c=+IM?H%r?GUsz?IiQ|$rxU6pbT0;2wF_Z`((NvnZ}VnltgFhGu=B8
zk4q7&=H}Pe?k(IH6-<=qW=bc}=X@dIyggC#B*4#KDfQ7UM(Xe}`{Wl_cA!*EdCNF2
zMB~`GC>TBdw4#blHH<SPgTdCND<~8gRrz&4kh@}Mt|^o%l722-{L)M}V=Y0@L)`Pv
zzV5c4yF_!pLiY5A{tn865Rc;(XU*>xr-@n<IgN7Xa@9JUYfsBql|$=r#&f<E#diB!
zEH}M3gRVu*5{HaoPo>M}({8JCdi}0=vkuC6v*WN2F&Z1?i`8koDQ741B<wc(VoH6%
zpxIb{m#l41adBSgx89+H1@`5{Wlm1lH&dyr{qg=YGNl>(%*_X!HjrctvA|2C>5tSF
zE*E3u#C&QuKJ1D`(KYZixShgkSTo!nMw@3&bLlkga#Rj8)DH+Kro@F-cx{$il@q&M
zSH(LB@fNDS&T{|`_Hl&3^}=aFB4_{zaR?w!-0~CK1wuHB>_Fv-nUz>=AT6dh3D7`b
z%$Bsp;H2Ua8ES9G&ZCn=q703dN#XX=)qGFy6V=}-EEj4A^P<dsiQzs~Dc6$uSWGU=
z;p7JQ+fz_OZr0wYx->Czv=Y|#pp@d4Y{nD+?IG_kO4-zYEX**Ap{=ajhrhgn;y>|=
zh#2*2QWth{<WE7qrCAY&ym*{;>Pf9~W8Pw%wkpxk-mKCzLZBuaoWc=&fqJ5sDl7fr
z*maQ#X5}U|mjdcISz{X_hh+}G%k!f=lM|QgdMzS}1agrOABozvNR9r{HxC|62BohN
zrcQKf%vZ54o}#tJ!^QJ3slDNJu?hmVx%7daH;>{SRJ|b6*$e;SjI^M)PIn}qIV0l4
zvaJ#f{*1SKoT?U9sQ~)$kCPReEdX)lT%mw&R&m1gRBP_w2hMugLyMzn5yiFH4CkML
zDP$)s+K9|Gex4uIA#rf*2z&BHM=q%~Vl$k7ZG>Zu%*ewh>#cU>XYDiOEIDC){V^e+
zn%-b<rL9SJa4{91{`N7RIyWD!tRk_Dle&!3>&QCJ9~~cDC1(`p@`=4fKQFyj<D7lP
zzM_^Rx*W$M+Szs?0Z4epbz&`u^G#}IEtJrVpM{Ny&6mgAl6(2`>eA>rUXW8yq%zEj
zeh3pZyz<^%lbipI!fBHeCaZR|T!1;IS(~}X_^d3a7w2Ld*MbL)ro~=Xks$7<6I*d&
zGL|_h3Odtw1OM_h7zu3Z_M^S;&$VXBGAZ39J1bVRUMy&OG1+j1p{vgKv6Z4tW+=q6
z##a9-;@Q}Q@nK)+Hx2C023*h>Us+uFdonc8{aEuf1FqVB=OK@ynU%!hjOnh6t!OW(
zLO*#PoS`cbp=PTXFC-e4@55>GQucU)B)^7E<e|no9=8Bld(LkZN1gDVrs+PJVM)n8
z@JSbW502(kYgT!IR%%z5>HI#DEqa}Ct5UJtmhCZg0XdDujQf<|Ug@^z)Pa%8qM`$a
zLYC4@&x}Ix-mb7#)ma!*9YY>Skd;9t81B0@E?Vr%V~+TILRPlA=vAej@?O1cW{k0x
z6zssNaz|Snxt|9E#ZJQp;x)<7@Q`GB(IIp_wlqKlc!THrA28gX${kc3-&zs+6w<^q
zyu2nNAdv~!;RgJj&{2ZN-szc9vD5i+ta6(uEhT@cDnY4ACL^jjYPkfXV#*{Yf&(Gv
zp7<hb6SEx;9cPlCv5TFzKox3*J<cbWa+a|()rDmmAH!T?dehuJSwGZ39$*%A4bJn)
z$w~k5Cxh$VUZMk$3rXzBz(i*#+AcvmTb1q84HG!@6>1)sKlcw4r1+58&d??@R2J2_
zNvza{b#2h`$w-*8gmZpT|L{*1K!6xeo4(_=5|$NPQaqoN1g^VFvmyvcJn&1(*8A=C
zpB`Q>B%JGCcCY$l(*L#d>(Kf!y%;OrdbK<Xz$HCKV)AOc66NZx9I)L*etvB?fu3z9
z(N&#&ZhvFtj59IK8I8jdn^n*9>kVXs#->D*;+f8UNMSB)l6H!(i0*vxt<<7cQ+_CZ
z2Y&BwPHz7Xq%|3?)wdRNkBTtN01csZ!0jVes>8DLJ8^e5Y2xYW(i$sN8AUSXM#QX}
zh8814T6DpQyo-G;+Cw+u<6RqHgR>@cN=LzQ*a3IVuv8+8v${soFe(C3O;0#Istm4!
zAQe2W6RH)3=AQwjUmiNAi&?AgVI!P2Uln+(Y)mTBc81~(&z9=1QI|UR8Vq_>lOH{e
zP={u?Y>a1@xZa8vu_JIEJAgtj)#3FXx*pYR_4`8fE~5TqNtXSjT@4U?Gs@Zs16=g=
zKAQR>+AxD$l?k^Y73K87I0JR{j4m}CEyGIS>U8vR!?|}5{=X!D10&=?Ylolo9Lj1v
zM;-hU*I+d!w)XxC^_WD)@Z76kNlSabH&^n=^6<q(!;Z5?X%x%ogKYym#cg>#(@RhW
z@BCU|oKB@8hJm}pA{_dZAr!>nKK3ByG~kH_-z-feibWMRFZms?GiV!>F2=fe)U&(S
zJ0~?J+pT4X-pw)W;^9qnY~M9@ke)5-5pju@U{B1&Q}2%dB%(RJyS<58UQ$SH%ry>t
zrVWmIt5x0UIzg76uY#eVS56K1tXGJQUKGD95lJ(&Z$o`C=-?^fO<$nbI4Rn)eJ#c*
z&1^wWL2t4C$+jJ1^O*M#+n?YHsnOcMASagH5t>l@3*OPql>Fhcpe>=Q?UD|9b8&;C
zt4Bs2L1v(ed$fqmQrtd4OZBw4XAJsC17#BwoX2T;8Qb;>(r^+R`y=$z%s}}ds#x?O
zL01vm%>!-2`S|=7Mh~A1{W3Szq+XGziu_|nLI+>Cgq|Xs%y1Q|x<kkJv^i5<&X@7H
z1plbTuw~uzAR0#eB>><8V=!vv2P@S}#wt;Rw!W5sP50%(uySy7Yuc*(5CHWfNa&|s
z=KbQfV@sRPXJO-zbqBAus#iC=`1Xl$*-_BV)fK72gu?ONeAF4HpIsII22)cxP(dR}
zi~oDXdYbGDl95eX|8CD)a<&5k^8u?)1B~;t9vrWv{Vxs|__{7*Ooo^UEQM!=*@H`{
zZ%ss<s+$zv+=teNuAH3pnnur`d_UH#Zl&P{CD*vvl*xotoJu$j<aB|vd&$5o)<?+)
zZ;>ZCnCj=6EcwjbYbe1xfhZ`DiW2Ww+z;5Ni;oqwIOK?>2_=|TRTEBLWEW5gu|kWh
z^P+FjD83n*<u$_d{<2Yl=QUqf(xcGsMdJ(vvzxCk^5t$Iv+w-qp(~}Q?Z;O&Vqf@-
zg>Iw!wfDSz{u5u-1q%oGi(y1{pzCND=iU>`+48KJa+g9Ht=WixHqP>N@+>N3tlaOF
z`>|>wdKQf*q!cvQuSE9{G7;$WYi1t@496M^yrL@xfL-##H4Ig!dNx9CN+?5Ie-?`L
zp(&F5f$@F@y9zWnLy*qavHMD=jU*8u!Q<S1RUrXA?8$$|zglXr7`z>Q7^dPF<28$$
zr3@w*-CU-pC=u9S|H8%Lz6jQ;ZuGTO9<C>KU*mFsWrt-?C7F;9lh&MLRv7OxYNm(o
zhA~7s+PsHAM%si{-ufCwY3XNZrXG+Stuc!l>gWKI$(8hRjW^cDy_D_!55|bl&1fzo
z11i$flv1lPMo{6=kN^oWRBqPyygYuv7JU2{0-0zM*bTm3(}=MJMQbynv?@HDHsDqW
z3&Fxdke~=aR&-SqWJV$CGte+V1$}3L!Y4Qt4l=AOKrBITfm&H^qHO;-R&bXbggrXm
zCl;(XLuAHie;;Kt)S*iU58(3dGKYr7H%RFAmHI@I_QR15r$azRb_yJZ^!`vM4MyWJ
zWdjLcE~JKfqPSVrCsur&P6vILVSfqcH8x=9V)c}1vN#Pe@V^+9@B>X9^c^LX7P4|2
z=>`xD@P<Uwh^m@RS6V=x+y-2uq%q9vNjQA>vF@}rKKaMx6GH_FJ-{~q*mS_{oX@ZS
z>t_*XqI`=TAn^gYvuLIiqJ-i><;t$qP?|*<RAw~$E1Qx4U(um>XV)oeE5EZp(E<Z0
zwi7mgJ=z1=E>8Tj_imD_=8Pv?<RtGlHE|rco`1H~U#G&Sw0{xLURu)RF>Q>)|F3t_
zU`11!jb_aA<NiK9H2UuzZ{g%c0xWvy?MP0M_+#p|bjy_De?1WJE1jT@W*sSDxzZXR
zQZlroEB8dWQYy${{&7O$6)4daI8K%l;H3ZS3jX!Q7LkAYQU+`l54-O6`i|iCPwryj
z@+dT-<$*UG1)sr6K_;m-u3wDruF>kkzVijxqH~mx|C_`8)%2c_uIb2B9NN}IezFGV
z*4S-T@15|skJ?AaI9cu^n$c6(3K)Ri^?zSekPtaqH6T-8JX*<4mvaXjqEc<x?#tHP
z2{Uo}bPCP3j}j!mV8Mkp8=*$yV?h4TO}s%{blZSM#NnWv=FQ;sV`k8)=bK)>^}LAj
zyu}e-TT>wIu(4qBMdNaNr2GK&OJUX;A@K*m5AEJAYE)s@92i)Lu3T#`i^8!@qsNzU
z%M|d7T)-0eYH!b!!RIArGcZ*$T>tlFUxt5AD`S1^@WS485+^#48I^`aLNd;xCPDSO
z=ml1+mg#(Y?6yD^&R#e!(2}x}7pEiT9**{$0OI>-qU+z@OpMISu)T8npO-Zx|Ftc=
zT_Ld<b#s6!U6YgDUE)U?u4mjrpW)I=RIlyG8dl9F^d?t6$P{lQS5TWsPe|JE3UJ=V
z1c&O06iseq+EBaQ$ubj))s1(RFjG3aZFjK-(#Z7J&*q5nOUI6qtr%t1d_#;pSoV+e
z5Y=PZ%PaaE)8$7DgyZb9?mVwNA&~C_xx62X9(Lci`Y8Z2E}W{`vcp>rCxd2Ne8`=x
zM94D8A(U{;4_BI<E;&~%(#oQ3d-k~*N5;H+$A9N}K3dHNG_qhJ-t&l!{`Xz+Uz8)x
zD1!0ma+j-AJh8YO-e=EYtg%P==HENM%0Iue_IQ(~%C$!=_J{l(33*tCyKpcZZ6*ea
z165|aIWX-0b<~`Y*gx!ikOs0=1O|$v9HG2nXsuJB0;fZ)9!j3a_fdNctNFdrl{R>N
z@CSJ?&Pqnn<=uKMmqZ0uvf^f+b)xIGqWWp2wu0D7{isg!+7TfB>ViV_R52`?q*uOY
zA`|)@xyDj)qC?h`9G8EH4`gKjn%Rh<tf`2%qE1ip|L1B@5MbNgAH$yz@xMGH6Ox#j
znU$&+K_e1Qrjg-t6*CFv^}k910D?ld^L6D&%S4Nvi`Si#oqSUcqdUkat2N+kPd~#k
zh82t?5OeUC>f*8hP8-;U&1R`FA|N23#Bvv&&9hfXI-P5WsMy`J%ly!C_IALv-g=kk
z>h`uE(2HXlsH11Ta}egdHH$NxN`c;BdrQz@Zs~~%o-13JHQTTUHN7zbs6w5@z~rAa
zb!_ShKlXj!y1Qn=RgY;3%;0e^we?GNO4==H%YD@<*Mxv_qax~+tJ&Tjj?)+GPl`39
zA4Cw15bN++ec{JaIWpmQCeV+XPpYHdiDs+`aun3eVADDL?$*OD{dPM4GW=&}r6A3D
z;TV;@`0+!5e9F%~hUIcx+t=G<l|l{Q2A{1_6RlQT><-UU5f3NRLiq|@`v-Jvkk^C0
zR)>jSsK56BA%jT-_J-BVhcW%m6x)?fg_I?y52q&5S*dH!&&qF#tR=pY@b%t*Y^763
zX#o97*zy=!E`hfY(T6MJygyXq$I<)-$W@Ocjgv06oa&7qZ$#><U~}J{9CTq@-0u0@
z^zSnm;D>NT?dvnyxq@1ssT1imV>&klI8XUx+mJJq);LULFtRCc1?ITj4xuZy8aEz;
zY8vcbF<aVNa5<zV^g9cO>XMat2}SyyON8-R!Qa0cVOOr?&dXVrt-h`LiH<Cs7wYqH
zveKJ6;%({t(bAucdZBvY<42mB*wd9TU+9j%dG&dhxX<042CF9m;qO0c&iXR4IgWPq
z3vd2aI0N1JTNKe5^T-1}5ub0=$?0jaS|SUWwxZwpVaEf|aaN%%hhvV40S{R@d3lmI
za2v2;L%`*!<{@>;XCE+KaF>r2Y5DbT^iUOVuM)=PV%zV+^N8OXUJiF&?sTf(^K@QU
zdgQd>r825D#Pp>u3Vwg&3y{=T-9?#4+<zT7$HV2ITK=zR`FmL7iI@P}6))-N%+4Zm
zICP0rY-HgYpiFWP(i6&m4eU_VnD4Hr+f)s~|9qJEf0EC(7>RN|9A>BB_=vai1B+2x
z&WK80HSg7E1w-rNo&}fP``uV7PbLyRk95Z~xDZglyjGzJi`SSteOvGZ`1TZtgik+s
zIBfR3K{ZZ96`BJ29hEvA@_r8Tc*?H(U0!Uq(`=UWJ65=yp49w6&=8s0m`5&!HWN<a
zr<hmOm3!6!Gu;}gEvH%pASGuy+VpNFz=yMC&(Un)`^)<DU{YmMi%RM)K%gR>%z-$T
zDd5l7{N|eBN$rmS1Z#Cp_r6E7x7ekRCYV|s&YuyKQcAw$som^FB9|W7EJyLrRxG@u
zzzwU;8$dfl426Z$2n{NZW457fb-!)wL|kt=H(!rsrQKQjeO95Fza)WzCVu}GtHn_&
z<ySSSEAa{eQSW*TaWt4SMfve`7~$=%-r$*JPCi&E*!(1W{AjMo$*I=NfP@HvWH2M(
ztM+2Qun#wueE;>n+xZ%u!3FAm#g{YO8`bu&wpz8OMZP*HrogjGVu1@8F(~5nIZC+$
zmuC~@RQ^}XPq9>Mw%7s4Df1)nT<K@gUtL&s`AO@u*@Dnu$qRRn?Ps<1vj}wosMu0$
z1YMWX!~!zD1%7(@+q2mOrZ<^U)8ov%Qt&p_gle1qLZ#$3wA&_%L8UbP6lXu)1uZV8
z58PapCP~nSp@#T!NOrJ?1@z_a?lC7wqVD_)-@5XCB^neaEY7DoQxsNLLN2L}*@v#8
zhy~lS$Bl<|x+aIvI=5kjJs7NljTb0^q=zq~0Ya>=O`qBF)wL;#zqI%8?SEbpeF4xV
z`_q6kXk4eg5>e!h@OREpR90tiPg6XtdS+GRP@Ot8^ThORw%x{df4mvvTvFw@((n-E
zS}!2`Gd%1G=M*hY*JPcp@nbwJBNTKB3-0{+G*JtLZGZJw<{#f>AgPA4_z??akHi)9
z1q#ZV?8Jr<Y;xr4BL#Z@5t$GhLJ14BV%9X~H~!0m$PfbpmTo{EETg@^SfE4^QCed%
zp5U)n%lXlIGuMPxUG`9^Z*JdKm-lP*TA=xK^XAP~fo;uIUqtdw3MtOm!@7nl^xLM!
z*RLoYJ7Tk2eehFfHm$*yJ`j14;{?mo_Y7&p9T7>DN`!pMl+kL0!WX{W-Zw#4g(dn;
zrlF~B=N?lzWCIq<Aq5G%X0ErTZ>kKccgy0pA_<6AmDD=T-+Z4+l<`#02?V*9>Q$*)
z-QN74tV^;ItvJ30I~J4-Oc1Cp0sKm(hEn|?$wq{U;>|9FY>zrh<vCjYV#lj28>kHj
z#ac;1Rh)B)2d6K0K~o=}QLYe@GWp3iULZ*Fj5qn%OwObmn2;UJ$@eR!$|Ya%pMqUr
zq86gCu~y!+S`|GCe@FBmZ=&xazDNC_RwIiF^4eirZG8qryV6B>KB^t*SED7bVsLkc
zO9fXI=9$b93nyO*`BAXYsx`84pmKy>J7<ekq)!9x$B;Y3>81|oy@(A2E^hoAzQw|9
zVfGhl>H_jY>2Cv?2NoJ-qy<t1UZ5riek}YY<s#GFY3HQisI3o9$|QHdH!OAH&pbTJ
zY``$x2wSSFM<yla{yI-Diw7L$wXbz%j>xHe?QO44?wp@>I)`#~q<5KvoLG+h{EnSo
z@QoZ`wv<89+vjtaysv~E>be`BdeS^DT7Fv{FbY!7Cp~m{oljiD=P%fKt7^1t;^QJi
z+cB)<0Wo92-P`OQUc>sVUl>{o9U~cjnOaWs)k&+*Jqg7YnEPUw*@get)uQkV488b=
z>KG_wMvcU)K5C;UmC_8fV5d5&C3*JGp^^K)(E0xSvoG$U2`#e0Wnei?MF0FpV6qjZ
z^ZtJ#-*gK5M3K;L$DP5_ETb=2l;1i}2rgne%tNA6g_O-kRi88KV%}c^fpBNJT9{|;
zuc>5_)|c4|#zY$3^rx5UNa<wSenK|DG!ZDFlGUMp(d!j?lxT6Vp-*FzI$PR#>1VNc
zEWzsjXgr>vNc4pG?BrP7)PN`Kb(T$kl6DR%jd5J;|D?FKNI#}Zmqwdt>yMu`lRqDv
z=Q*)?03g=O!hap_AI+ty<hmPF;IQ98)3bDMgh4$QtTWwahV4_D@<N2-UQ`by(;@J0
z2S0Ll`qB^U<TuJ4$HnKJsk^x$c@?H~1a@3qb(;m<_2hCpqt*wa*upM+fY|68;goit
zI@%=2<Ofg}YB{wRI0)AzeDQ|Lb|o5%-WLZYXm0o|enC2c2K18k;7sf*k~8A{@yRut
zTMw(V6)#C3ekdyGx>va+!FM?n{IdQTirDV%?t7EmQM527Qf@^MJ?*DdUIg`2oM_Z-
zuZM>eo}X?(#WNo_G3!j`!;}`Af<@Z8wY+sjI`CdOZ6&b@+kSvdu)Ep%jvv9@?=8;a
zB1`#$I7EK6ooG&%)!;@=kx7x><;sW(cxO6f#(9v>Bg>$FuUu^{3gT1-OIN!)Uw6Ua
zv)ExR$mK(^!P24}+mDTcy)w}JhU>7^wyR2m;73BnKR#}=2K|v(n>dVI)~;I!<aU7B
zCr<3<7V^>x<qQfM=_lRXJ$@^BHif>EW))bVX8e0q{4eqJcNbuBSQ8bWfCl-`USvq(
zZ>`B%rnuhWmK8@a$FL%>3Fby|-RKT%XMO+VTBJ7C#m?R4|Kh3iCb0Uq?mR#&o05Td
za!h7`rbGfQb%c->MI4EU`%A|&VgZ0aDJ*y!Wm$^a94}8{o$7(1o898Y+BUez97^S`
zrw(B5xjWS<a=b1^Hho2~sx&PvSv9zgXRxAd9ncd^{leAk`cepgS$O*F)FY|YLvr3}
zw-D@VtNEp}G7D>`f#r&j17auNpX4pl6vb^^&$tQ$DcH1vM19oXXrIe@>0X-YJLhE1
z_Wtc02?z1Y62K0=c~+`!hCm&h)NA+5!{+~Z|Dz!?#_<BlbF@c1+*pblSSpe5h1EX|
z#ZwlVF*;{DFT$MTt~X@~=UD94yTLMr81+6(3XHM_!*~dK<Y20vqhzr$lERW)pgmnz
zVGfJ*&r$eymZR@)O!u<d6m?{Dtd&7Oqk!n?5xy~|0uf>{pHSEm8FUC(bOYG|W_!T9
z&P?rx${>4?L*PE<lf)-3SQ94qu?;MPFrs00D-GRUTHyzQpf;HdmX_g~pbIbeRj-Y)
zoO6!Jr&Ac!anf04wjc*qHl{ugslja~<46_*U1SjW<MJQwz7_i}I%RsIeT>#pC`0QA
zIEcU2I{ysRAV|LPLU=8gNz47qe|xPVQTR4?S&SDyVSQ~sxJtBA>2Nhly<J$h+-R^=
z$$68@5V`R5-(bCpmKw%`@gP&HS`}?L=A;PX6?y$79DL<ueE~&l@tB>HSMm}Kh#Ksc
zSSYAPp6Yjc^ghmO^f3-A5i`0X5im#bv+7OGpSD>Lc%9CcDzd8pkf_?PNWO@8+?m)F
z+$9WNL-iKxa$^I{_8Ly?pY0yF%Y7{u%EftI&+}BRIA|ww9MFrVuvL$Lz>cVuiYlh^
zI<fHk+@(9gBC=TPHU9bXj`UqmlImx5l{aBw&lBY6ZiL>sKF#2JVfV@xSeO2{Z-Y6k
z@$t)KvHa~cY%*E>%DZjcKAWka4-l}Ae)TcdS}oOUo58gf`v#c42sVWZ@o{<%zJ=HL
zAqdcR84fep=#Gm!L$N7Q>8;s4KP>cQl0Xw#baXbG_`E2JOpG`2f=%P`h%EszGtj4h
z?5(fTcc1n);FK#xzs&8Yi{afokJ<eG18s;WoNi!!5dc5(`?KBnC~Z-+E0W*g%Fh88
zsRqRuk$#&!hcC_n#jF;0j-bZ<UzS)ohZ{D*oxiL1?fht8fx?%qLK-~o*1INlj1$I$
z(oC&ylWB$H+67R#AMr_%deEL&O)eV!Ct(5yrhKphYmH_9>@$ED-uJ^-(O2;6hzKI5
z=lA>HMbrp|d5cnw>rsZ<82)n>_-8*^l;4=qcWP`RVgK(CAK2(4gWHh0Oq6*uBq_wk
zWYCq1L?xMhx;rave0%U=a@mZrnzLlz>YHtnhD{xAv9JEB)nO^7)#ZSfSo$>{p8%f*
z0A;cn4QsfRo7DBsUKZ(7TV<l{d^;BsgWoS&hkh}{3@q1NblR_?nf1FkXY)9+mX77a
zad|m}vAp(~`Fi{R5cZW}adk<zfgp`Hfk1Ew!65{9hd^+*-~@-@7Th7YdlOuOySux)
zySwW>d1vMu`R={*lZQUtr%&%)yK2>1s~Ey!C3fTkhMOq0BN0u#Ds8%KCbKVAWeqx#
z%<>T7xZ3x34&dxT%QCP1AEm>aIP9=15}5SgyNG|t1%_Q6d=(#B+j&mnh{R=nhKR>e
z3LdGm%@9S0mLl*g3b)@q^VJ~A)w0ujlcu4-;F%TaESp#AzaZ={T5{Kw1t4NgH4*a2
zP2CXibm*<w;&NF;HrH8ld{c40KHnWnN08DkjoU8Gg>R%Ie$^KJp|E+)+Pjej6`y=K
zlE<O6cV#DcyWb^%Pril-cOt~^K#}*?>MtGB=b`ulH(x0s>G<bN!zfah5q|KOD9ZHn
z^HH>6oy^bKQ7~)kI|9*@%iJ7{a->)tI;U9o#qLUPQBegyzqwA?Tjs4)(K;ZnGHKmS
ztbACdipBV>#CoQ^jcfv{`&o|y>3pyDK6av4xD4EYn%3C5EZ{73DAY{sI}VIhLnTo`
z=QgQFgA{h=FU~Q^UHv3eyt^K1$v|L=ACqw%jt~VhD)}F}L-;L?v|$!2j^5W79DV}3
z{T=I3JSz{a6$73KFlg^LNA~86BdPTti3DE>)+W`MSDa&-t~5e;HInKM+G<gbnC=hf
z*0`Ger}M6@q#TXqWa!_we?{b89m@2(o!IaHCyxC0D78ka(<9^W)~}4)TraN<0(m(}
zuZ|`rE7Dr#yc310VWB05Imc+j{?04EL8HR{H3TmgSqym9F4^gI5fR5}JL#JtJiK<I
zrn57-wds)X{7-VUkHnbCWp}r?)MY)P7rwK4C0b26osGtYenu6OaNNPN!%5AwLsRlZ
z>{!Zty?2>@wMf6|IG*niZp-3P+oJ?pk-`NAt-pZp8{R-zC1d?m;IVE)OPm84ZV63E
zCMBm>76Z<2)zF~&W7@d-{2qdkU4SuE!Wtm#NP|<(cKitJ-r3bDpHJ2~!-*X3?Am!g
zvQGYRIRb5~ruQ0uP{!&LzF|QPq^+@7&yl*bIsunz4Ycjywq2?h*{yPsJViN#0Yj(a
zZ(sigN&US(F?@6Sx9-fHSrNe&AcEhWe~s!jxG(W+o`1JSBYMTvoWD|2WHC{jve)7t
zBGG5`uL0i%I!+j!c0TEi<tGE$X3k`=gB7i=pr$m6`GVe;C|7X^p|YD}=7)>8{;x^D
zvw!?~Fz*k2MLro4unp2+Kq5u_N`0P(oXyxvZ#P%Xn_gx2e+3u5mzZr!7(yUrH~cN&
z%Yda<Sxt+ev3;A!rCnRYAurY@deC#b^oGgy2(L!>cCMDkci_RS@AI`PBI?%CH&vPH
ze+e~zt%cGs&p@te>nQpEj7}ggc9B=QixJ@zoP$6<b^pAe9z$+m6TK`j#sIe`^smo}
zAJj<({r<Q!yMoFV9r{1tNcBr=U!PnWT2DVUE4Gj5oAaZ<|2!_i95999ZeWh5FEsyo
z^<N0#KO*Ko|3D`uUYCYh{i5_Q5B#71{m(ZMW`ja^%t)@ir1;lE`tN(;KVJ;;0)YX1
z6#6u);9siJ|9uPpxGp2vQ{T>!@(IDKR;-opQy?_74;AI@Ygmt4FquMSO$8~u3zv;e
zC54e_0Og(#?%V(Mfd2iyy%J>jJ5v)p!oK-3B=Gage!6Qy3t<%KvDycRdi(H#?_GC@
zgo_dI`}zb@PLOf>{<U=ezuY7-FE}E0?ba&JAWTm16?E`PgQqdNLkPvIba*#?WW9fU
ziT}%$f9pH7fLyVxcOdbOj~TQTp|&u@1&v6c$HR;EcfzZ8hq(f9|F5SA^|xOpP#Jm*
zHx4CZcuiqv4>F_A(pTPvw7V>^yPRpiJ)Q_Ijr2qe#(M2bU~vm}!pCRF4)-;li0J)a
z5$oS?lvo-A=&|*vj`l@-d}{){dGyX(jYhMF{?D?zXK0{bK-%8NR0m&I|KawK;^cY>
zzVfEm#PrM_#m45R%_1hwlV;<OWI{eSX{G+Rq(s_$>ecSpQ^oR0<5}WobI#qqP{cjb
zl1w3eeM1~MC=%VI|83dG0UrNT{y?1*O}<Jgm#YfZAMr8U9T#jP3zrkya5I_=xZ4%b
z>mPNS5osqqjr`zrTf>Eg_aNrt$^hhr^0{#+l(9yPX30U9HZ><aS^6(p8TTyIvW(%K
zmn%=Ac6aw4ibaCfHg<L(M-S}c<%|^ydSoSfk@63hJAs7X7Pa%dl@HmiuNhN0U6g{j
z05ny3gFc3>A&_funD0~XK0X%!h+aN7@sZg%R(SvD{7DRt*1c`s!Sc2YlKo#65I;zm
z&5QD_Bk?5vWZ8#lV+f~HKtNy-obC>wR$|VOf$xuCC3EI;6JUDL65Yt5PcQTFD6g6W
z&G_6PX(eeky9Zzu&jMqoF{{5Uj?M2)7C;&FC47Dm3q$2h@2%x?gTiBDJikk3xmLk5
z>uEBD@@mtS-X}ofM2i3Z%Qn84CY=FjDNNSysl?E@Y=iAr?wc}o^^L|3*qRk{e>fLh
z7{J=&Ul|U5#mO+ApM)@%&Y+Q8<9M{r3NJF`yifbjaQCnE8L+#p!}()=a*YKY><=|4
z0=Qp)iU5TZv9D^)^~$*B@X2d5L<&*S`_^R?v+BcK{apG;BKkt?Z<aAw+8$p%5_Qz9
z-R=)P>~7A{T&_>y^+U*bs-CN{vc<LqYMw7L@-Jp&Z>~etxW%(`95yFm0hF2kX}RPz
znUzD1fWD!^UdG*@zL*_=-rry4ZeMQBNw_7VETD}Izot-Hg32_K1N6C*PGd$b#dLLP
zANFU9UI?wUf9LBD+{ZAP!9~AQ$Pp_b3ebhJ)o*tNQV;&biQF7@e7z!mi21$g*BkuI
zrhu1hwr0z{0ebQM8~u&G3T);d{qId@Dp9wF68*4fS28*S+wW{g=ZhZt=K6vFcJk+`
zX3F#uM}XToUwcuihZath5^r$eIN|xdDCTB-Vu#*jd3?z3>6%A;cUv5M-CV3031I10
z7M+u!#Mg*O1Jx%Sf`1%cijP_{vkr@@jJpi)UGB(n$M~{(YrhX@iKp~xI^Vpj-s{+D
zORcNCFD`bkk?<}RDpq4+b@TZLdid{~{jWgu_b^iy$3LhoRrAIIK;rjC&ulB5XV8D#
z&5KR}){p1{8lI)EeFDqBFF;X`=n49$YnK{zq1>-5Dv4jVof#ZBl-*W@1HgQGr+<$O
zWTF(|f|8OwVfg`mR0zugn%%j{u-S4Y-;Id(<89`nKS99mT=2}L(v{6-Bs+Q=*Xt`;
zI6e92MKvX$<18UJ2F*bw6DFBLx|@$kkz3_*zW5eP)|Jw%yK?^H?-i5>A+itz!QiwN
zmx8ZFh5gw~2Fujflw;1n@O9ga)_&5(c-vx5J(P2&8jw?rXpG%p_og?0a(BvX1?L<+
z#wOcEsLd2=BngGpjRUQpm<XSZ8$zdvths@`B`%Nq9BHyxBjdIHqJq$0#F}aPxpc~c
z<0D773Mkv2wi!WM#-!wU?P-1nduopl5I-EJ{Vd7Ikn^o!X-n7T{lv`YC;0Ha(K4pV
zEZtDqj5zuo4(}QnFYdXk62M@<f2wF|ZN1%G4DsL3rN77Xf7w9%A>?2qZb#0_Jkbq9
z+H?<P3x$$P{G=k+K5xZT9&wF1CV1!}ppwo<M?%#u3xtwL<feLh-Vwx7ft<Z}l?Rx~
zps8Z@xTMLMt;fC|2=xHlVGb~>K+WyVM3%U;+pK;M>KBg?WG(j7SAvjq#B9WT>vXZ=
z!^GXoJ2TV5+mNGmzjIaOg=*s~2eQIn+=Z@vf{I}xGz$Ko?2i)BXr=l$nE`i<>!doF
zI(CY&>ZTq_vz*Gw3Ly+KMn&qczV0}zv9R<CbbHqVS$k7^Tw7H>yj+jx@Tr`RvEX)#
zmocWzR+9C5JCk&xl}lK&-PW>-f^rZ3R{<jzIo;Yya)Q{MA3;{tn?#I!?ISK(#%+tH
zuh?dp_U?jJDo;+o6v(FwgV2q-?o$;Tt+e{PGqTF=N^3Wcw*>+2V!A|%J{76US2xWX
zMCbD>>i>lu{jbb}c-ZOKsWcw-{3zsb!OPF5zaP(NZ$6dz-ot}Nw<q}Gto6W<C>X7G
z#AoJMD0lL$)y^_$Yze#;HQ<;#ru}wr+({k{i|6!v(N=F%TUM!lzWbcs-QIfDLO&M>
z!tkfVX7F>XLeXzgQ<KtK(D8}Jt0H>t9MqMQ7?%sr5v0=_9K)xg+;r-BY6Eto#et#q
z)%U48W0!X(SKtUc#nB(>d}_-St$-$Kiao`-`ia>qLc@BPF6a84wLCYP)J2)(Qd6Vi
zPJ(q5dblZ?J0CulHc6Y0XLGX7_6BOIMCnV*h*ihU(bxK+9-dj3T-KfSGd;^Zs*3ph
zM;`yJe^1N*H6HvUQUJbm@3!h}!!I^s=)TWCbk0vi`w1nkO_eH(Y_<7(vUn+T%Jd_V
z=+Z5Z`td=2h%8%}x-x+x;DeAB;k!m@+C;K&tjUTRw4*YB--1u0#!UaGPx?`#u8U-A
zSvJG>JAS_ecJq*irf=-P5Fy`mLQ@9?%E+e@6dPoLQO4^euUWl5{1BUs*#$RKqB>nj
zS<TOM6B0nFz2tEl7nWAn=^Rv?7hx_jbCmVb0x#cHL_M+glsCh}C^pTw>z;sld*qJ!
z$LR=u&T!E5_j#eW16Y~DDV7wUD8;1S&JZ;w5xXmW)D|QdiIAq~Cuv-b;TYI$BefLl
zWh=9K)2b51GlrU4hco<BUgO`>@_*mKUbm9O6}b{2sm)tTk08_r^D^klkPexpi}M`h
zJ^9b2EEiMSEoVy3TKmfM1J33)dr0roP&x^?urwI6zGQQoienB-#r9(<84!Ob7DZ`P
z^5%n~(S_5UICr~T7Jy*-;?Sslps%wsW}6j4U5lf$<*a(Typy>4KHvdXV)lVYZ8VbB
zuKi4}-6Z#fgG8x5*Xt^}TYGsJYqt>=->mkjt`FIq#n-8WyOqH#$4;EvyC%lan5cyD
zun2|(t$ie-%+|Q48N>SX;#~C($Uq03oIY)$lXf+RMlC@)wN4T=0cQ=T`|51I?j*tA
z4>*VVca{Ux*`CC=C~OR6Xr&g%ig`NBK5NUd7Lv;rTe1Eg5EuAciux}h?VkwVpYtX@
z{>W@gPKsW<i@@UahTYj!bshD5w6#B}4==OI07z1HPk$sde8Xt+AmUGC%F5}%cQ8Lo
zO7*p}07<}+WMaDX(rVTOM|}_%%U2-Jw0H=cD1J?0@)%J}y(0}c92gJ9J;iwQICFDI
z&hFDa?Ec9?j)K=yR+m$oejJ)CK=d_MQeD+B=N&hrjde{ma;{0}QIPN40L@^AVA7gx
z;`*J*_R2x&m)8v*CCix`E#tK1v}zSTBDI>-Hz+n6+`0}3OH1ba&4$_XcBi)-xV+ZQ
zh$q*pX9|X?8Y|OCSS9X+>~aX^D^|~>AX}ZpWWU;3ooiPD*a~)ozT;&VF&8vQ)^@0A
zS#5NL!x3L`F<&4HNPnizVgo#7M5iI;rxsJFT$VL|(v^OGZQa|-I<zlm(~Qbyz9jlR
z#YYswMNpCT*0U_=KdZgJALakpy1x926yWT2R2Tv$BYa+GEoa6A3@75lUy{Ot<$oHc
zIfGw^N@5RjGPtaJpU%y84Da#T3BI!a!a<rDec3KnBqZ&NBF{-%U{P*IHMKKWOUt2G
z{e6Dcn)$)tXV&FF_)v@yT3C&K$<G#*?@D!g5dpd4cY2kE7rgl8^I&n5_ZZwt5MGxr
zd{uX!r|9I^(T3C-y%v`=fWv)Ixdwa8+x~ZKHjpmRjF~P?zZU;iAX@--S<$G;H*rct
zJ|6Q2dZt<DcZx-_8qWK~oA{Lh-w1>9G13A&lr3`sb7iVFpn;b%S^M1}`9Anq9Q6<u
z3;&zi;@$B<60_r&dQx$57aH}TR)DfL4LxB9n+N2O#2;l1eGR%Q!i?p2%of;O#<<&c
zsVc?S_QcL)Mz{=7Zfy5;H~D`(F|5-(2?Bb{8|4WQkXPS&yK+kHD<J`~Fv0?~6z9dG
z4pbz#Ys<v_#G7x=cljw93<TQRHV+PRwawW+`fRwnpUk<C*}1KH*C1dmlIr0)&>nVZ
zHD9NH_aV1N{UtwHDR33YY@wj(`-r&NNUsk1l#IJ3?l@}(D=3{^E^@idSMj1Y!r}07
zVvwQ5YPUh=&bbvGLfg&ZVSdELxqru$TXSN6m)O2Pvckvj_vCYvK<6Lf<^Je>6UMR~
z*BY5ZK(`Z8o|AeSBS4s}=gj1nD_$AXb%W$wZ3WB?xDwl1j4U-D^VZ`0-+046gPyhj
ztM+o|A3ywEcmXsj!wgO9w|(E^ocslDZKgWj%%!Iln{kF<%#UN^CxJ?@*4OCp%N**v
zEJJ^I80Qzl{&gR$woA=TXj%PSSwUNd!&Zwir9S7LL~^>KW}*ik8(~7ejm+;{QVR^K
zmd5T;y~r4av8<Llox>b#YPp=KoXg<*j~dYO=4Q10!497|BzB0^DTu;`i6M;_XoyVA
zcuB&`_>JZ)AZ;f#eNZ3PQhON7Mik@!?2CU7M*ou$fbU>3L>AjhS-jxaW^``YOF)gz
z?+5fnS#Tv@d~#*ghU<K+jLYOsKXrzcn(4zoWwjsjoV!Z{WR&camLickrd&2!tlu@7
zb3)xWn*1S2ue(3|*Tr<^!(Ukp5?UQ=wD+7D4W@8kW#t(FD%1pCu*6OK0iZD@)8E_e
zAgqq|;i+Ti7;kuW&|cxUq}M5~L;Ef|;eYP^KezthzhWmE^ceN=D=NYAH9rk5obl`s
zq8NiX>oCvYijOrzJ6J$CFxC&UjW7`WZx2T&ioY_LYo1bgc1*0-#hmPwTvuCL*yA$1
zdaMrx<4zDh7pRMzkSp?w()>T$a{pKGqZ1W6O=>ZS!0B6zU@Ie3AdU3*;Z34<!a#wF
ziTOy<?@I{cM7?&{+%%RM4&xjl8OV&z{BL&$#s(;r7}z5PgH-bf{O0IwWb<Vb0ssH2
zyqv!9mzVYoOni*Sg8u)%6bd-c^k@L6OYa~t+WK$&yZ^@``uh)Y76qVxXXljzS^uR_
z{`0|Jv*P?V$DPwm6dV7)JCPG^eYnFr|8X9*e19h@j`qEHIA(alN1j{)lj^9e?lUh8
z820XsTOj^&nSXdHQ=|`9WU4|T&bbkRu`Jll=_ZU91}<vJh(N59^QCp_2%n&DxXW*(
zMW_=uxTi{FF{p<^JLe-nEW8E5z`{qTd4OTz;4Wl-oleD$qZ7CCoe>Zm^-axr;UDU^
zbeI&@hpoSR0BQKiEB$+F)QJauvJ5{O>LPP@qU9pK7U`{_aItRoA%Tcq%mrXmE|0iT
zy7*&mM)6}^T&a>A!tm~dpIMbb=_#+eJa_Qn$Y>WMJhAAS`uL@;vhjZFiT`5WB0qVn
z_N(3X5Q7ZUt7r1AT2K2>o2)`FN?!QSXM^RSRU<quSUsVAglB^&2drjx(r#B#pV`sM
z=Jb~AF#~3Mwhumc17Gc5f3u9}SH1*BMk?Z|@5$=c^Y6tNEB#o<s^5ga&tGC6L*{nS
zd$Ms89)@{2%YP@F6<Vu}O~?gySdY@>O^8ph_|t(7O`ZgnIxz&@vq!q|nTLiv#q!y!
zWLQY@U2v#=VAYHqzK-PvRkZ29uPtINbk7-7ZigtcFK-Mklr3zDKo8{Ck^HVmU55Le
zNUs$X1rLQNt80y|?X||Ni-i}1Q2WONfQ?=T@kH!0)WvFUZoWL<qKPJZe0tjJ!*DQR
z(``EpI=?MrTU(0Z@p$%re3ayC)5({S=;7^gdOw~^5??y(qdS*S`^3@n;;)%1m6&bT
zRr<Jt->}C1zWfPjJOE>L!%hhoP<Curyh#5De(T*gu$+0E-mOtRS<Y)$nhte?YV-@B
zLhO4>8FEnjnpK5Y7q^lz!QeU%S*;egaIJ^cFH<9CKq(zP(?OBu2sZrT@qEtWcI%n9
zDQ6jJ9hT{{g_l-ix4)?L<NncLQs{10=v!&f&$iDySLkmy!V6h_*d>PsRK_aA9*>*&
z01%O@T}Tv<x7m_(67|`i-T7L)a*6ak^Q>6G;mtA6jt9fjjhs_`>j*?*W-zU1VyC2w
zrr7`R<BGHJmpA0Bi*Lymc3<DQb^^b6DTE*2c79BTyLecFuZ?msB85v1q>=<|G-6cr
zPZ!bT5ot-r=bC2qu3OY(k_i#zhJC_3E_T^bWWo7;XauZDadg@uU*1qC_bgPJ2mqW?
z<(}!nIsT5%k8Rfe7<nTsri$4lJ`ZKVMFg64HldtPv#DB5?o!ezI>oAG@0q`e@rkEW
zlkGe*tmJ0v?|!K7!HDF2i@EVKm;%3{$8cSdcm@vxBRjk(LgiJ#w1aJv)$WHRn`wzF
z>jP&$r6?X#C|07~vUUnPtk~#;UT~viVLE$C^E=0R7tn{!HSocn*+;Wl;3lygc<5@0
zlH;*5IYb-i?+))(Y)=G^VdPt$6i)_dm(5k5EK2Y_&N6jkMo~zJPdq>R0CXCvPIogt
z^W}P<^Q}Iq73N7z$LZ;coW(8)7302h7G}HCl4;EF8H4H*E@?bR{0xTIT+zY7$2+e*
zLlWx)0WF&#aQ2~Krx~VtC~RTWH=Mm!`UGH*aesgdswijQ-vpSDf6}&>y+_Wk8uotE
z4=A*8&$R;v<%L#&?Q8Q3r))hl1pPbKdUtOhlJR_=);G%tn&aMlq)Po21l+|6lq({Z
z=s$E9ge6U?K%sC$fLuH8suIAMC6#~jlBTo(vIo-2y(>Iz`{!f;4tAFr#s0Y&+RNTE
zUEY~-{hVo(?=Z!<mIUit?By|-0eIiao63X@5lLa;n7_Bp8?$zs{Sj7}N^$H6X8&Pl
z{3fG+kqnPY?!BX_Mh&A|eL!6S<DIQhHc^tB$oJy<Pjaf8Y27zDcr_;qK>cbu)}oY|
zq*!3w47T{Z9e_<+I}D_`<fu;^f<xcu?Nv2j0Gyy|b{NQ4RC`@T$PjlBlu!kC3Zz`9
z9Ir!M`K*!bxpNK^m|Zxw`XYl&6{+9qi8TdCrL#)ypRR}>Uml#A>_gt+KYEQ=LQ`uO
zMAXBb)}SA@JcMK3VAHO1*sNQ`!wg?4B$wPZCsGS1PrKLJ-jE#4dU&624`v9nZaj?r
zo#ei6<WptQ9cyFx^hiqA6Glc38uM@dvq69=t<?c~y-uHtE1&95jFg2@ulX*$GeVfD
zFY2I>E&kSc^F;sZn|N8T?c**XFpeGj>8$4y?y%l)FgE?<*`$g5*nQQ&WSJD6%J?-v
zk2qO=z5fpDtS21rORfw-*6W9wvvwKqQ1U}fv!;ZbI_EV<x4v20eP4HGXegfYXkCS9
z-oi+#No%X_y%{WMdk`X+`@$nem&BIN>jocP<2WmmAawXpw?O}A93-cm6+D>?B;<40
z?Iw@zo_bL5Y<!XGZ!Gor5_KY@9LJY!oF8YqxT)NYsWw}K(n~IAAxyTxBN%P(m)BXi
z-orv+aZ#Y1e6Hwz?mt<gLZDChsMf$FKOZI$>Z*|YW~xMvL_P<`3ofN(@s?iL1<ccr
zHBxd75b?zczE1C4j0fbDgJ9D2E@N7*WP(bT8^b?pw+MM4?-u$tp9$5EP9-~<ObmCB
z%!dRK6&l=i&xEtie<GqiY`4w0s;MFs2?-8D?!Z;B(<G{fWR`Z95YTt&UHQ?}?DDwO
znZcbM!?<J^uf)pSl=AL3==4}ez3836`<H`JxZhA@0dg_{AnO!%YpBe+8>ksAdTFdA
z*FStHNljKzZAXRkNEQjycYXO}@Wtsk^WO32SUYNW=!FS)zymN`S@(q}m?m**QvQQP
z#&M8s_f0my`Od^J`Z)0i)M9Wl2u-a{DDaT;erC&n2dLMfxRdwZpC#3GDnw1%8t3v=
za&rov@|vfWD9+RVtQcY}FbJ^D;(aIl1aiMhT0WXB(h@);nq&6icX#5L{dt9yj2kch
z0m5a2{#V)Xp8u5=miAOpwq?4*5$<JA!WUq%28g~XP^+kaRvmlqN2xZRWp{W>1x#Yc
z1(<#E9<(@o*4jCeU*=n0z)HoBum-?zy6`oT7*8G-U{<o^#rBib)BTk^gdpy|((ceU
zq-UCUYI9@F!>OOk<GE4Xx7PWB)n)&~ltSy3a+N7re+(7r(QI8n65E5a$KYi5SSCfU
zSDJa@V8%vpJpCSS!0C_cLyi}8e12(ZX{-`Wg`=)*x7-n}UwAdgqs2wP^VEwz+nrD1
zP-_*ICcVK5_!(FHnWx_21Bf5{qjt9cm8o1jk;kuMp8N6aftftX{B>rtc_%;!f!^ft
zqUHRm=xa-C+T~^To5kVHGg2!1{g_I_B}3fnhg;b^X`+Sf>msd&Aj7At8pK@XN-=@`
ziQh=Ev~r3B59tbM{Rt#IJVsDX6LG1gu1)p!<Kaw-nQ&a?XFQqGMWz5j9N};YI}5_-
z*3}YtgTtP3eZ(h8CI2B8OA1e}he&<TY$&10bDLhHpAgE@sTkmrm3iqeI2@+;za1E>
zOuR4#WcQP$?iS_D?pBXa;a@6sCmeoslaLL>eH7Suz76HBv((4CU7+OjSYxDnG(!aP
z7H2Ku?x)V_k?i0t1tf^-;z%@UMW2aIBvG&y`wE~(Aa=6zHE<eldgaoK&uguveF<1R
zS4O4X`~ULwn+C);`#eHn&n}UrfguzfEx%v#-Do@8FR}m%Y^BWx;r?|;jj8qUcmnGQ
zr(gprWb;JkRV=+)M3R-u{KV|M&PR<V5wjZnUl4-i-L(FhFalm@$iw_^NI$*ur+D>Q
zN1O2{DxYe{^NE>j)N4h+E~r4hIiY~{`@LTK`qK20Xg>bU-C-9EwK_5OTl$!<1frCr
zzSrKp<z7wMt5jbrY^V@*bX}jzhc4*@Hox?0F`<}wv>`>qDyCA5Xq}eP*`+qY*cc4_
z;s%x0nwnFF`$=-6qq>|B@$b;D$S-qr8=PG_A5mwU0P>Q{(FdGtsaWsTvC$GUi7QO5
z{tlO1I>1`H!EU0q{@(n%hRzSqCVk-W+6AXMI`OP({2-rsGG}lM8>769{TQc>AWpCS
zAj{D_oaFJ8{oI(ywc=09K=G*I<Jiqp(o=61`_LnJ6!_)h?s)?sMkNWSs<X<<T+x56
z2?mC9^w=NfVWkbI4|a_b^1AnH$szT{cbH{paT&@3zK<-Q6;|L=^aJ6Gk|&jiR{K1h
zf^~s(&>XqvlB2q#p0_pCvd<3aRy{kPh`p|Nli4mtUu;;rE4w*0c}xCo`Hd8wq5{cD
z$Ot;t8r>2TvYL*rJ5}0<itEuYtz2akLAR2#r9Pl-ms)3~d1CTf4pUF6elopjmpkf%
zJmllXTqg9jX9>Jh|C;Oi1Cmee&l5ypeg(ttkK4scMN3<Fw<NTNz9;fL*Q}G04MgjN
zjaFUC&rM5T2uf6Q0;w~ODJ0k?_K;>k8!rVvIH)h=HdEQn5~-5`X!OdBMvD^7V$RJM
z`Y!#W#>*5nCdJ}IT=7Ca46?=r_(v5(`s+tz&l{vpR0~>g0mE_(Rg^p_R&mus1nag7
z8sP-c6*3kZsh<CM|1{#a|A0a-sKHiy!{>hQeZJK%c$74)v@@J^g3)|ZTQZpXEBNy-
zd)W^j(n(FmJZoCs7f4*!CuGz^gv#A~NLI+p?AkFO2X!ZoWv9-&ly>WY*>VML?5ILZ
z6x^RJ-En?s3eJ9Qc>>#8mOSt{U-KPMp<k}t{=*AEs6J-j2&?#}nKXBzRC}Sq_}UZD
zB=qs|{r0UVGVz`Oq)a9_D@=!TE_o&$`};dt#g2E{f7L^_2;5KQy!0P9E?yl?5~l`Z
zWpoO`tFo-tAYny*O^(})QMq|w<P#U@Z0QkPE!%Ku6iS*@uF_ZSwLJQ4v)zJ%k%jzJ
zu~eF3zVMl!+tGZ3yy~wsfgAy!+sPN01|a};2th%*Qmv$uul;pKQl;v;zS*Mq(_=M}
zvGQwu%$@%BeTd0M5a_jn#`=77pNDj=wmX5C{Q*l(99@gT+HJ^AV1!$Z<qCr{0ZzPI
ztITwkOq%o&VMhkgn6j86dImd%42@UmX|S@o`x`412%}TWQ?|S@jVn^c*28stZpeiR
z)#lJx81-ry_4bHUn200D>lsNk-rwZgU0u^>b~)xN7#`m;Ga0B}Vs-`?xQ#k+OE*8n
z+~AN^dYbcO{kMmc3bkx=WMtQI?|qM!Z9O?3CxcDh)e@EIl12B}C6{Z4xJHk-9H-6#
z!W&J78$I%5y<C}X`&DDZ&31c71tX~+&sqSpqj6oVGue}pyWo6}wD0$)Btu^vb6gyo
zcGK=A@>On#)NXNP22}R9QJ`{GensN1m*l)Dl74cD8%}+>R6Io*CULm!MW{L%L1<Ah
zxfVn=dnElVCEKpFqV196TtP7bc*W*lp`{B=>);=-eb0Q6!Y6AFTkB(<{T$fsfbU>@
zoq_ULqv+X&zO)?~jcq)#=8@0FXU$#eVpiXYv;%ahQIt@*hzB*AoWqODX5c&D(jw0M
zPXC(VdVWYY^k|f--b*l5lBxcv*>L4)3Lm`dLANYM*RmFX1^1ZOD7)-Bh~g!(AxbOA
z?S7u}`T9tVqdbQ~Lcd**2y67z_p<ePWkO`w+Vc!=-U3yQH5{8ColzR8CW}CHHoH!O
zwQP1wkWT0Rf+)er=?vW;cJoPeL{=M15Ik@4bnWvaJQ2IZb@EILP~>q=^~(<z;s|kb
zpq{}(qZ}SBIBwoZ$9Jrq#4f0EJLN+BU()YXxQnG=2zxCUbhjC?Ldvb#bBbd)gm9BM
zJ*o;UABnImWm4{9;9m!4t9DAKj4svY-9P^9C~h*c#B_QjhQYHD|0apeI0?q$VnEZc
zU@m_3!VkF+ff#+>n)39UA$X7}Ag4{$$9%;HV$qy;73y#|>46Bp{ON2eX-e!YM3Aws
zFA8DecCPIbSMu))sJ3dmn|JG0E;?(ZDv43i)(ctTynMyR9sgbQh9pv^dsIGGa(Jg6
zHo!_eZ(pFWk{OHEVT0=z4%WQ3O@e}|@T~EXTbQF+F`Cti+iA=jxw2M^J>0shmDkV1
zi`nU}VQmB}`4_Gb$y8E_8)PA@TFW)9@yM1DjN1n9gYU2DtCPzaX^C-v*y()5;FFB?
zxZF(Sd|`*vg<ruCDtrBa-dw0EU?GR-VrOXbC!S7r^1ump{vs@za>Krn8>)OD=?*Q8
zB~YKt75QC*acolBqIT+)i_>UE%t@zF7u)ocFi#)MX(iQu>ek^{wK7r^W89dq(AtEy
zwgs>ff)IB`(u<up>M}lV!%lQVM>^TP5XD9`eH)UtA3SZjG?70SdRG#|?*G)Q37d{g
zYptEuY(>Yi9^teB_mbtih4YAGcywd3ZmB7RzzW78DNfrwkYEzB{A`i7#^pY2EI6vk
zJ2S_)=bp<#>r)ExZ$}L?Sas&dL|k`a?ZjVHA)fA7rP~}tV+Y6{>uDuk;;zj0MZeo0
zSBALIb{(HN;M>f}ZCf3`3^IC|u|XTJzi9oQ8C}sHKUZpwqv;*9!f^8VhS-#-73bY3
z`26v$l}YM6k(Ei4sRB(v`TW4k3he&uLafErgX{JTNlVca<?Wrtld9~Dqn!Q~$LX+u
z(zVZt!qZvnR~P$-<-KD*%lMjcH`LRK__po_0-?$0Rh1jT!+10~8REJ2xfs0;o2zo=
z*|xl>5CRk8L+~8M7r~GArV&E*m2!N>du`+Zxo_52iu$icjv$6pE5cAu_)GNXF#I?B
z#N1@1#w$%<jl{d0Z9^>ZX9gg2zt49Wc&np%n59$LMR<PLG4KliJ^Q72@8+N6guet8
zUc~KeBNui!x4Yg&gC8e#Gr*V=e2}Ygw?CO@Es-?jY<uqR8fAF3e|0&MVUVtMbHewF
zt<iI<TgD}g!#3==)N?dNsJ<<trDv2@lg58b?|>Cz>eutd=SMw7O^ZK#f4x+CyHlmb
zQVexD`$YYeV+_PEUOfdK>CS9_y12N}s91A`hvCI-fSei`w^98kCKdnIK&(83f7Pdv
z4QzYr?db&z6Zo$5?QgcfWL;b?ptoC%;ut-s3NnfvLZ2&a3?$@|Pm<+h``_jXH7MI{
z&LaHKU&Shkomh6cBouCPClK5qmsXI8&AF6JM_p>#5eW#x&n0>7qVOGcM!88`<d3jS
z{fyzm5@3_N7kr+b|5CD)$9=<*+V#QLhnX4s`aFTdK1DCWzeCKQ<#~%{W@3b|Di>}M
zZC>Nkj>lxPW-u6u1mh*8Pk)vlZ-!QnK6^Bn+5f5M#)6wJ^bzKi@l*9iBl|Sa02l8d
zB!u+w<T3Eshq!GclPqJ|QnJzx;_;H8v_Wano}#wvakQHNv<DFu+c+L!ajd>fZnrlT
ztE1i`gq!|tf{DY2lj}t7yE<iK;|XD9wHNkBKl@2xgD;vm-9??tjmFVtk^w)LGO_XK
zE*x%PWE)iDtANw2(~sj@s<)rhT%b8jaBYkUCp)5_L30=ME*r+m@m=6U(I!BOMPm(x
z<gWV5XH<te0Ja+mjhvQR5EJKq08QMg-J1%MCprvr8u!G;GFd4D>zlumInN4GqGZAE
zXfMSwL`++2vrB4vODuoHaY--rZ49I@(2ziJ&&sWmr$5||t1_<$G4*=4Qzl-QaVU`0
z5bx&}_Qe@fcMTK58@lga&r6$XxnUi*>8v}(j*{jwh`ubE@D-YuVn6kSNA<A>njPya
ziPi_1Bwzm<6C&!CXk{%I(WcXoE+=zzUHwI6JGbiVd&;lxTkgMaB$eBRwwl3Y&?Ics
z`+=O(u*aqTii#a~8%8T)Sb#g+4ZOD@Iu`jVi$T9tTAL%fH~5$y98Y{}3}-F<P+Yj+
z;2BrEBocea=`Zk0Y&%kn26x*<b%V{mC_~Qa)@_K;wboz38baZ8>{^e#FZ|Z2)8r;Z
z{IJT_pT}OOmiH@jLHco-PVmWU%MRaCreb>di_&jd!748o#zsYAS@u(w<H2?icNxj!
zSN&5|L0<Yrv=biJLhdExgSEx>1K101K;4x*>k)Q>c3byq4U@xF{d{&rvpJpH7kS}R
z6$%t?-P&sUw|*-$?*1FWcby-cn7xAxYpbngVAA|(swur1HG;hNKMmW<(~PjVlLNZ)
zpU3Acj`2KjZ5T7??nI3a2axm6<M*8n`DU72TDj^tU2iVhIYxb%k7^qO$Rn5<FkGS=
z<l_dzE_bcLsSV(JlGxFzZ{c(>(8cB;xuKWGpWw8!wqZJsx@r7u4-UhkLi&w_W|+F^
z+td^!=A2aum0rt%lFK!>-WH52zmEA*M@2GdOZWSxD<3|jSvCh>C513iQZL8k>apN!
z&ATZ-Er&f3FZ?;7idVyt_xtfsml+C<h@0@yMP)i#B~C-=I9io=ky^IRd#%4`uBKd#
zhB9}C7RCmS-6(J8n4a9{0$ri&EwwjmXy_23fVRu}TPWJ*YLf*ugioLrLvyzW6gfgn
zg83RC^bN!nW$>h!8BP845F}{m<kNXTdnfKOlvvO%fP+;!3Baw!q<_J!C_DHwHR$s6
zF4u*VaZA7On9cj06CB1IS6JjHj>n!T`ct_mq*7UviFb)zi4NPl1{!aP?&DA2<Db(o
z1T=U@FxlN2<6iVwonK7wG=)4R`Pmm4Z|Pk;K-}Ot%zK#T8&1HQYufBhY1{_%_3?lK
zCokEmv8}}ZTDnCP2H#lX=qiE>HfnetPZ5Gla`R!n?c;}l(ltLy{W9dxLd}-M?U#xW
z2MaZkV<HTE?YbX6;+XV>C$EEHK)L=5CUHsFx-1gOtX05#MK*y9VT7tBlI3v1*$hh}
z2+InyMJ~*@m+(8J=DXq|t;)6(+w&{f2KNot0G|oJkTxUQPF-66xTubN-H;?T+!lHl
zyG0`}uAZK2Ie2fdFX50CD!BZk#lB(;b+)wccvxS93G}JMt$inR705^xI#{oFE<>#V
zvv0Pd^O8uaSB0U{@vGarVy;K#yVIZxll>E(Jw%raV&R4Sih5XHr{GoCj)?{TzWp+O
z^Mt~MF}e6bbv&PJ23>Q2r!n!fz>lw^i_aI{X8n4QZc)I=bU@e3@VQBv?m2$vR425h
zAfs~(aQ1kk)yG|(f4#P+n;^E7ip|c_f&XWyxyqb`*UTrt6@*z_ax83PDd3`&|C`wM
z*&c7uCzDUKh(CB-1vT$wWYf-wAcZ&Ex!a*l=2nt^h8sYIZV^V&vj&@m)BaNz9pkDD
ztmchfYi6Cm^-finP&E){r}VHbGuN=kuU<^C7)Mply|i?gp`Slw0(qu`^kip0Gy9?_
zc4m1kGz;h6<9WU6nxT`+H!Ybq4nU?Q=w^k4Cj<}uD2*>kxb+zda7kFZEktIF%u3LF
zF((JdS)je%>4MPV-tbLWxigl%GwP=W3g!W!TmA$l-`S3<>-8<X=ytmORt0*t;3gyb
zWnxgoX+~=TGD<o&3HKUTNJJRu2=qEw!O-_j$Njtm5WF0Vc-J3Dgb9X_Td-$$T1iM4
zz7NTt)fSiaWF5PoL!xj435-QAxF`F~PDq-6KiX<P6r1)GIg5g{haS*xus#$91VTIb
z`$q(yzV`;hl*Dx(=D+T!iu$Q$=Fj@(LbZ|OgMliXKws3BQJXQ`N{{x#Ep^+1Z0E%O
znns5e%H{E8>YKV#oE_Y?nL-wBVlNj~Lh;^_1@NuqVx0^?QdL<aDYBsG>se_beg#a9
z$hoO3uXfj<t1<aaq}f2oe>y%^_??ceKtaI~h1&&7a>3zVF4VO6Fr6^(ZRAbw2OT3B
zsF`XxZ+dq!E(#SycjtH>%kPn?J_><ahxnSk3=&=7he|YuAo*zhY4QC`{c7q<2WJVy
z+WN#4q<uorWWV1I!LpEa-9a9;7n_4$Zb3}wH|UZdS3PKyQw3Z*K@Qsi$f>tbLh(sc
zlkOg2l50#RxXzLjPg=pB%unZ?=PHPTUF%!m+i{~-`l~j3(cX{~j>mi7uC>pkcyR88
z^kLeq1V3^Rc=c2UUAFZEXxSZhFY~c<m`aB&i1Bw4;I(~W0Roq==jT_!c?6u#l2gA`
zl>3gWp5`AC%A$8k_*mFHmhG;-B~%lgxLhCRzDOm08HgK3dkX<Uu#dRxviY3kn)$t4
z{ik~6)8fL?BX<d9gzu3V_MEOsumf%yY?N*$DRLljJYNvsQuFKgg#0R)+PCQ~)K{#Q
zq{8LS3s++-ak4(;rVu`yEGrtu+Z{KE?Vu8|S%MZ(o%uQEuRjOn`^{%-AX%cRqrvcE
zS~Er4NE2i&N>I7p^1TVJTxVUl2hBp^?%U_kr|39Z&7zVZd>&1gOBF5pIY2giGLl3_
zy0mdpmA>Yp1sI8UXtG+ye^k;4V%{0n-W;`5QsjDYD9$WY<8>A@4mIjefE=IEuO{h|
zpz70ToK8%P&odk?jo*^!2$XvDL>O8+pWPofJ;X4HvRYstEj9ZSvtR9B;7KKBT^NrO
z#e~Yjl=25;oq<_ODT{Hino3m*aBL)6eY$alcwqw_db1<^I)3Vop}&tRYdhFXY<tfQ
zDY$WaplXb@b_R-7hRRr;iefBZd8ZMbG4S<MP1WSYRBw;xBTr5t^bS-Tl5WDYdZU1!
z_5;BDMZJht*wUwLKbcm=88-6GZ7-8GGSx*7j(&#?Irskr=hF+#01BxnWrqoeF+;A4
zh6_*3JP*}5oBt!8RcG8@D06iiKeyRMJB1r=fZw^PcR2VSsDT5H1Ajzv_Cg*SuRX17
z;HcQf$MYBIu=nTu1eBH<9=b;X*wReHCQxV~-|s@bT(lWxb@YQ%HOyEpT94x}5|g50
zd}f2VtkabkZw=aA+;ouRiX#E$c)pqIVC(Q^`^+x>v-{eE?%$$H2gXionQcEQNRaBh
z8=upCxl}CB!WA2R8d;0Cdqu((4c^Wy8#@n$rd?t4*e%uQXS!3mTTkRp*JvR@i!Oor
z#t)G72n!-M2nveOXx<Ii;EX`jop8~TWZQJ3gF&MrZDAG1mqBRLj}4K#R_7gFd!>p0
z3feNIWj!FMXcA?0ORKD2^@Az-6^&p1hGfqDu{qsAtZ9SuXhe5U5@-18S>H&IV7{GW
z3UO<om|F-1O>ohxh8l)(6S=)A^a1hwuyXCx2{6ryU<$z4`91k0`N{mKx9q0Ustm2l
zG%g~Fq6XW#2Q2;Jd&j}HknAfL)k9@H@zyCieDU8<^raq%ctOXjK^q?D^ll?z9A;5&
zdP_H&EzxX;Jd9Cp=P4<d&*f{!Ru){?W>Qc)%Ce^i@Qb4AWSC@>ONq-wsaVAhSyr21
zF>XC@n#$4&yu)z)iolVE=HAk_1!n77t<N3Q7O|z}0@p?w+Q}V>K|l!3F3U6>FIbyT
zhB6{k6Xq1x7lY5-G(153Zp--e=GPH{xRfo-2ijx~#`3?QIUQIiTG^}JITgA_(oNj<
z?$zu$Z`j~iPbT|)r>h=<FcX;<QblE=>)k|Nw>K1eGFN5aOAGG3Z7*C`a!8*Rt1#T;
zyf*f5E6x6N_eZVl!hyPv8hm!z!XMTIIKY_LFHIJz@nAxINVA-%hkd%+xs>e*ag3o=
z3&F<b&f|AaWv`7A3ENkqIg4Hm+vlvbJHoAb`<3tEbRr#W^Jj3;>xZk!7V<Eh&!7Oq
z{sZ#Dx@LVDTv`_rZbV;vDQ>|gl@cw5VAj;VhHjL6<egE$W86lasynKDf`)7A5<;i3
zkkn5~&X`L1iUI^RTP?{o$6zf`+w|`d@Z0Ge+M8rx2uXiiiEc^-JVZR4JxwP0ddV1|
z6ci*EC{d4IYd#pCl~1KG?Rw3>9NyUm3xUiY*?A4_@j2bDz28&<b1M5d{D1tmk}#f)
z=J7&&J1APgfjt(rWoEpVv4!;z?ZXMJ3X+JX<_OrS3vEe^*&2zBt+omypwqy4v#>K#
zbkTpW+PR4bc`vH=DEVb1z54uo9a}KM1nE{R?rDTN6&|^LmUt7VeN)GJM57tGh*UzK
zI)RPLV%z=fl3h6UOGW%dHBV1v0d*rj3?aR{p6kvt#{JVgoXrQx)EaR*eo{5g_S;_s
z@3x!lPZ+M4S-OKhtoDZM4*z73@g)#+$1Y_t0EuQvh`k8#IImpP@B!G-X1-IG2gpo!
zsFacu=ulM1*a)%v1iXz($MgTjG?jbS3|B>+mm(p<%S(q=hOi!=k1x4K5I-Hyvg1UP
zMv=k>(s0TkoIxHOznh*%JK#Y_GT}YE3aD!%ezp22uqnU?IYdZ*8vd3~C!yaq@jPR>
zqT<YA<<=VAiCf_x%5o&Elz6H^^v);SY;%cg_^NZA0jq^%HFeF(O9z&TS2PY78PeYK
zQu^z7f4xvJWX-+er5C5!!^H7ZM^yb$2CQxVqHfQK#{0mGY1~HV(o(*Iw5xt3)GP2a
zN*adSWfF_|!2B8BbeltSiW=xW^l@EpWJO|4D9T-aD~fj?FT_%-IY973$5qe+McA6U
zXmgosBRw}<IQeE;+4ch%;(-1Wg@nPHeiDW!F#puQvx&&xc_aPR<FNk0O`nxyE%u)V
zyI(Ey)|s*Dv{i%RSmVA+qt`{jnmY_vCnOh;7BSsf2`OJE_~ue4Y-oiz3&?u+`nz&<
z8@d+Z5yg*?AheoMh+dD5{3POd{xVCYKn>**av)ggS4fxkKG;(MQZLS*j@E{c8r+o{
zPRK+ukB0iKY%B6v#A};}@i0YW*T-*zWS#{mpT=VGE0mP=$DH3R8J3V}Rw7_@8K_`l
zct+^&Z0BfQj$teY5Yaxj@?|dFt;yV6uVB0gT0BvnuJ-h-ped3)Yd*f_+f9k+u%Xyr
zh<<anGT(>w)HU<!rMMT(Zw|-zP1Ob^x}KaU@#PZx{(V&3Uz9TIuvb`8Y?gEB+f_e?
zemp%+muMC=T5Qv+3Ihnagh;TPdgIYb4R)2~${z-cluWIA)4kN?Re@C=ov+S9%gd*w
zb=ZaGCl3XBOsfr|VQhMQ6{M=|`%B3^oXqam;iO-2cGEjEL+Jtg9SFAH9aa1^Knee-
z)V_Hb$z_B~pCJT8ty~z`$2g0CZuEF7H`ydggv(<H9gt;}4trsgcdo11V2BrL06%T3
zq5I)ganBcGl%nsc^!bi0E5=9ubd%+YAJy{KtR)tF?r*Xj2wY@yQo1P7TvSQYLgU!r
z>)gQA7Q>Gs``J|&tJiAxIl7wHVP_f5uSG}oPjdS+4TnR5V))YbU=53kvu}P*;pKIJ
z@Zu>PQ2|qhsD3oxRGRqVY}8a2x#st8Cj~(^F!p=gs<D<+k6!_vPdy@i0L9ORs_&o4
ze!f-i8GOQ?z7-9}7Y0x4yDbUQ&FX2{s`fIlhGhOB&*Z*XQFq>eK)iZ!2&?%UG;Gfk
z*adR=S>lLK7r(xk64_iZ>(OH=`1=(B4Bm^^aMzEHsXpqPM;8jVSFKPGJ<;PpK$B)W
zOb+CFwi(41_UXiDn2rR)Dia=)l5cU5IX;3RpTE9hJ{}lPP+W$;uHEBJ=wLn-q;FI$
zP(gO~5HfBBDA*ag7~A>W1pdM9y@@`j-!$PQWp$HFjTd4E+QIcm%iNmql8X95?D<Kt
zLms(nJehvUOqW><DKajoX{=thtB;eGjfk(|WpHRQ+v}f36AWoJa*t`+9^tJoESo1?
zh;gdZEl3$2Gn5wk)JNVIY5i$efieKLj4~mg>ZfAG>O4*gb(|xDp#Bc7kCRo~_}Iho
zK0nY>GhiV2v;`zB=s*BchAq5B(|ukIoif{fiRr<@>Zm#4O2^(IUff!Pohuz2S7p3l
z33H`if|HS7mhH{g3svjrPIAa7kaQ|W3uzl?@jh8k$PZR5#@h^OdlF{au!XS%+1?-*
zp)MnB4}IoR%{v-gAz^zS7ErwUaoPDNv7xQr(AePYdDpHFz}cBELz*I*@Y0IjVJ8cY
z)JAc-AF+#gByPBiLh^6amBej(`RQ4R7AdS(ylQ{r+zJvu1PQSM%3X!P&eH3lgRxFE
zS3UuDQ7z2hZ8y>0MBye^9Y5$JD1M(SAKo6QCb1U8bEfG|m2I>8GH)`NE@f3Wvo|xX
zOcn{Zgg!|4?FmU|5~iS`7#`ewSz)(aeGX62SE9jWS|r$JJ)U{j6XIuvAc*S@A(>QP
z`A9c)GTe>QDnUuMgXlvH>(hgG?wWW310dOWHB@PI7_#ld@2_V~AQAmBlE3JYy+mnE
zLF|S_!Y4Q3xt;@fx1UeMQS${~q%C%mVl)bnLAI}m9^I&R`;=@xF48KhaTzVS-E}<7
zeA_8TQVO;RgAxVXA)`P~G-!6HSt9CKhVDPY@8z1c0UbUMLTE4iYd+l>>2D)wp3Mu@
zOd38`o2Lt2H7}%3I9m@^-t_&EFD*uWRgmKyu}^%HAi2Jv8A?}jDTA9E;`>&#&jlLX
zRV~OW9`dt*dFmrf(4DApp{1xe0N#Mn5b!x|qknEaUBc@~3V1HyLd<>OJN>?f$G8~R
zwWqa1&oK_iH*cp|m1Xnf>vKV&IX;zORI{BYnz|PsfYt;d+-~Ce3fUo}gZfMlAgM)3
z1E<XoPrLiya{}j<PEWnCmF?c0ujvRZ4^b}j-Yd(HTtqA7gsI^sXP<2Z&DY>J1Mp4k
zn_zY5Q?0fUF1kiF;U7ZB*tG6Ac=xRwELT|-)@rWR%;Z~s{YL`5WnG`be(8jCaVXkX
z67<q5^a#GKwt?qXjz9uIK6JxrshTrWIN-$BTrs)l3P2D(G}Ms4gwbs<I)=fAK)Tj~
zO@DKXoGO3nnjXKab{MYpN5Sbhc)f@M3|yLs%P!;JbS!l&{h6+-y*>Lb?k;6vt%>)O
zvh7Tu?(U}z4xBX7A_9dQ<c@k!P=HIo+8qlwVdBEAGu#NN@7s!P7n5U%k%?q2#i|Qv
zjh{)QgusJ92#Fj`kxyZ)CjW$bpR)q=ZD_W#I&{UF2lv{-mAf&`vQ%Y(_8KHC#;f3e
z5}JR~RJ1~&;5J*1M(A<ttdr0%6z3p0#b95QOpQHrvv%^Rp*HA}AoaLnR-iDT<h<?K
z<wbg8ayA|T5cbcFIh<(E>VG_7iCkLROC0qS=tC_lque}2Ql<QQCa;@L6+5|p9M&zZ
zj<gNB-qgr~y?dSrObM=D2U}c$wxBH!Kg`T;TprEWk?nNdWL-KKd@Ywq`1vNrxJQd8
zg=lL~et6-6sLqW^)K5{t-tvg_W}D_VzTwq*;#VJh##plWa?L%V*01Laya_x^Z=${m
zX)+^J?j%$(-YiAAVzcC+H7{?fdnCQ_aeetNc03ek9axNfZ>_p$^>cQm5NjdqH9TMA
zxU;f)QvU?~fkL?fQcR$}>agVy+}pUJ;l4!tI}#CJC5dLkGU|0MGeTI6y3YcS5oJ80
zab+7V1Q=J(iTLc?+_blMNU@m|yK6!=7OLSIs)Y#aAaF@QsB+KI;?iB?gZy}+M?nCN
z)=T#cd9Z-Pqb-JaxY>q(3~@-{TZb=&NK8eXA=@vFjg7q%6HJRu&FcWz4;7sL$B?|+
zx%d`J<53GUas@sFo&>_xExcLr7cCDHs(1C!kNP?hq4T;2op-|Cm*Sd~`cO46=RA@A
z=g3S`Q9J5qd`-aIQjizl);~A&46#HFmk+B-cou<PZlPa4lD-`4evodwfH#GY?wdc0
zJWvzsxjA7UqC9j|ZHb}!H(V~DTl^p5-ZChzcir|4-nhFpPJkf6-Q7d51a|@iOQ3OU
z+$Fd>3Bldn-QC^2aZdmD+H0?K?yXaGzuhl%F{@sBb~W>rF@Dc@zOKh~2GNNRld%OH
z#a4xiKBM6_2G16M*hV=f+s0JWKy4ukFSsV3)2ZF=Lwy60tP@mo5jbyS{>iFX0Bef=
zjt+)Ac7R6oX}+isX_)dr_l-*&rS@ZjV-?WuAlsJ2T{XHkdwe>-?GH13-4netgEZ$q
zwJ&k#MaP;0?CZ8W<iA-`y+t&hM>f91a@SQX`6VfTPARbw{{0xHc$)aW6SWtEO4x<x
zyPM6g2HYe*&#1-@4f>5E3#TnTfkKvr{xnah3rDG-_L~Nkef`h4Up?e<>q&&}jxV28
z?mNCald-I!&a#8U6tcWva116Yw+@lx#fWs-tk1Lp7^H35)TZx-gYYDT;ix1ch3SX4
zJfCthP`jzkGBjgU5OghHwGmgb9R28YM!s}VuWYyAytdTSE#dCRpRf3*hYWOL)H-5-
zYk3cuhf)?5M)zSSi`Q9i@7QPaPr_-TTqUkNuz;8fixRnqVVpe6mCRm5=u&Qb8vz^L
z*~KiDIw#yt)l;_nqU(g3$56I1!z-CV_P;BH#Q?B?*gyma4Fdob$`BG2Ry1;l2MUGc
zpipi<DQ}e;O=)^_8me@G8jh~%FPGdbF_5sUQshPd_i?Moot;9Azy*d(K}5dNn-z{?
z?9((#PyU|5Jk&+H5D84L%auxy!C&al1u--c#!SJwjPwi9-_~D6KPmnfL-Gf?K|pXK
zt-f=s^_qX2+N1Tq64d_-YX47y`i3)>7>+9kRPAEH^@V)4#dTrNy8yv|p$E!B_oyMN
z@Fy$Xl!;6tm$8i~e&gc6FTEMiC<l#290ZYmp#s%^R5CFz0Ei|*&C76gy`TK*M|~v)
zumCYvS8N<um4h<|&}6aKjHP5AbX>`MsqSJOU-Qxb8TG$|{2^uQ0Iu-PDURx2JO6!s
zLF%8k^1y68%uM1nmtz>Lv=#XJNgi5hF|P0q^%_~9nr-gZG9%*0>mp#_=gs1TV*mdM
z=|i&_V#G4Olqsw%*7T0sDhfCCm8k_<Fi`(1pPVCI>?TamAo`FU&N{B_8(Keg_rJnr
z|8Xq-kDL3~FC8&rV<#$L?Tpm2pk{Mu6po)2u%nZEfR*Gi^o(`us3kYRv_{xJD#o_L
zgXO}LRq)3ancafp!0$5%g@`gVuD9xUX>H*5buY2&M7vzych_fs=IYFKzArxN|9E`n
zt{py}#9gYnW^aW+cv)~ZPm4)Bz)1Ay|0&q|e||b>$%#_O7(Y+6h*KXcTGx)%KG9!q
z65}X_DwLjCH)#S&#Z#$ee7_jmRB36ex*XiSsaaCjT2=tE*xUG;rmwss*JKy8$Mq_A
zgN?t9fAfo2MYi9@83k=8Y$x=Zq=T#I%Jux8R)ZjOS5-f_-)GIgQqD5ZcsW~zZx!O`
zBP3_r*d!cH7rQ#hMZBT*T!W-}_+Dj_^R4ma(cc6fbCU;G%|2UE_bakna*l4#0<|0o
zwJNDgM$IYs&%Yg5p^aA&uOFas-Se;8pWE(T*A$u>yq68aa5+f|c3kuZ)9UT5_uEWw
z_HIds5?J{&+J9ucK6{|=4rXRbz(ZCsyYu>0tp(#9QyN<j)M*BDyp~+GUuI9ke5tbm
zjIjT=7b9_?98vB(8>oB!Ajz1xXgK<$83yh13N;p^nVkF60SCfk7;F67{S4BcW63>+
zpXy#CTy(~Y?zB9c>q)iS<$c+3nGKyXUQ*DV?fW-$n?#!EVAbNMj=`Iqk`EYG(^=lx
zYviO&-#el`QlIaI(GQjqmblAQtTkwJ>1^sJ?P&_9w;5Cmb|u`ZChlQGJ;E2n1Np<}
zCf6hxR_;(5Nudm?G&d8T^Vcy3!E<4d9Ovs7`K0nznjOz2*DNyCVWxk7G8kmPq;doG
z+Aon-(**GGnwQM5sD$O&h{~_~=A2>8=+vd{Wd`l1bOw}vI;!{C4i2mLDgQh~FP-^3
zn_11Rj$wcu8<*{m$X+2QNSSx#2JJ4##P*rIN~C))eSe#4o;n=Mo)maGL%ywV#{bw~
zgVT^&+x&T+(blRxc!hAP-{RC=6}Xd3fl1k3KiX_Kp*n48L*9RBMCs7(u^wRbV^7J!
zzB!!f;^Gq5a`wm9chViR+$W{Y^AC^hF4s}j`XWm~PneM1#&GRcsE<L=Ku<L{ZlHCO
z+ff<6|MDZ+eX=FXMbzgqZbI~p;H_tz%?ov4;mKSNrt$lMTIb>7b#yyH2ZsX-zA8K{
z0u2gDN@IpS7H))Y-xyJGgDg-E3x$l8Wg9=iw%z3{9BHR@%7-F2BDlX`OAuZpbUzAt
zFj4TUfIrfBKguY9kPdqov2YmB57OZWH<?{oeE{!qV<w;F|Eg1w`p@I~X7gEdsAJn=
zEe;*5W-*y3m3yw}Da-${$T4hZW^wocMbs+qdqYJ|MxtMmV#@-Dnc>k6GP0S*x$(5s
zX=3Y*<e=xxcv~Kq&m#TNa$_uLc7y5!!p{s1Y8b}j`N0S)g0HY^`SFPV7P?QOEH#|i
z^TC+%%PT6;2><c}ig|r$a6+B^`$eI}Iadlr^)ziRrb>5VxX`w;<<5Jv(`Mux^#CXS
zTS**U{_kB>4Hi|~r8j}pA-q9l1SiYHtNQb`qSw5){Kr|vVab)6MrO08bLT|Gkoq&b
zWA6!9mgGso7*$Lm3Uww5``wQSr}wH^^>Gv;?h?e)^m)>M>afO?H(PXz<=SlTM2?W8
z#jw@j@nEEZK<W!hX2zUiuU-`Sc0fYPo6UOU(fnU|-H!zjMGeExtFHkv>Rs@c#b17%
z7p$}C9Ks7#x&U_idPcAzdHpIA3&`!$zUxiud_o<bG_ce_s|g?;gBF*4H0VCxtz}J7
ztQU0$RE{y{`SVX=A(!os&w0A4i-bH8A4EiiW=LlkhZXSCevyUv4OS;kc^S+j><0gd
zq4L+bZo)sYS%#2c_!{!OIr|cnE+|ofMv3Wv$bFm7Z}J+&xH38bH{OJ-ueZ1<I+{ZB
z<!o=v`_A~%FQ*AVWvN8=08zmc_r&1`DDmI@0^kcPj3qSwJpMZA`{IG|$~;bFg{pAw
z)O-D@@_Dgf@VIp5jQhq_gl&<Iq{HV8p`Z+oKCIqr#HzH#80M10X~@$}1Z4=b9=kiZ
zU=E#G<Gw<qT2J`LGg?NoLnO%@Q@^RFB<`Dz1hhLqEH__fsITl!hyg==5H-a(78^A3
zy{PoZa4HquY{@5uGyVQcEQCDt<-5t}-L!^Nhacy!lF;ZBF7x4Jg}xv{aK6ZolL*g#
z?xkWaw<jUrig9S_37(!|^%cd_C)!Z^@;{WY6tKzt<mJXTY>uK*kz{^2z0n`iT(7R#
z%IJi`AEgUNzQ|D67U=y}V`WPt7V_p%rkvE=Q$Mz3V|G_JdUzzq`9)(F)?<)xvv$T@
zN_aToQ9ANoDYoj2y5fMvp*>}Qa?K|6K!nuN<TYrr$S2HaYd^{Rf%ne)aJc>xuS!kG
zk8r4tO}QAiwtXqtRr#3(0O-t1*1?*L9>dzGb<buuZUa%4mk&G)Eb2a*EkmDD3_u3R
z(KcW9jD_c%9BlEl;FRPO0n{;)xTyG6x?|MKV{}7FR`nqji)S#tCl5RR%>;J8+ncIr
zG^$nhuz!f|1T%Chn~)7qM8N58*3_}N00i;%NKX3L+pRE#6v>{<PXG2cXEI<%qQYBg
z`s?vtD#Qp!fR!)USuq`0=h+v)heuN^YPW`>kR=cbHjr$t|GvK6d-g<Nk88nNNQ=Cs
zHYmX#h)2TXSho6zk#k5P>K62yx|}bcbSbbGv#VowI7Pi~yR)>Ifp~iX;-<(uvChn+
z9yB9gB5?>SL5)s!UDT=%dL!d^OsqQ<QKCcH+mW_mOdT@A9-znn&vQnDMJ)yR@(594
z`oh<q)%1|+d@`C@AH!<cwpHZPRx|Wx{(FAw6UI_AdYt85#HCAMnOAT(lI%*kK{M;U
zu#evb-g?yMouBv;_m5Iemdc9F$#_*Lb2aRE{+-zHeeyK!^@X7U0#hAjqxZ(_SjxuR
zbO5xU6|B8Y_MfxfCNB)XPD5;yXDsh;FoksTCEj`XsZZP9fzB7pDA14A(x=!R1Ai7_
zGX`mVv}VtjRV4nJ57@MV!Npm_-l>Y{>FHI|O2s%^^T(;4avwah`*h3i!7rY(RI5yW
zG+%&xy9t0fKtf9gTCy47PMrqFJp{^iRRiXh)z(O^Fg6qNWWs<iBvW|^bek1Z%yVxv
zw_Z>F7ehM7dF=<<S3Q^3*reuebihCvj!F0cjt#yRZ5w23uNd@EVAOV_=PCV5tu4*V
zqq7%<2hGu4yMWSOX^bUnLcjAn07HZgKvuiKYhE(*XT>?UsE_Z0-;_@Wn{tUk?MJRC
zd2Uw<k>a8&H*5zN^sgRZH-K^1%U7cvop>6}e8pcq?P+%|9^|RBJ5bwB@+3JxLY2c&
z4Jjq*$>lrC_~}=d)~6S)-L_juwBJj8REhR>GzCAIa}@OC6dbHA?bT|yv}Za{>A4!F
z_4%L4R1EvxDpT-cj>FBRlxlISH<Y!QhU@Dr-#H6NESm@h#%w6XZp|&2d#$azj@^Qg
zbv^r5DWNBd_}7*Pj^Z2-YsF7$76{7DkksIVF`M$06nMh4BC&d?>4S&WY*5BbiMgEu
z5nJNVq<WF<g)xGLim7f%*WIeXlSVJGgpN<R2CUG9!sI-C*7gIjzQ|Y1AS4N$uT8i@
z=``z@@QE70s;Ddh)s!iES8ZjdlMV??%oaXGp-eIaOmF6U@%qo3D=y5XKlJMC#$%!R
zpN^f_KYi_+>1WM^+!mNiCdc7u(E_WlH$iAGW&hrm-6O$Pd>l)!2GrWEf)iQ4DtkaE
zbD<H<YUi05jM7*6Tgv_~AJXQE8m|eb;~7+~mix>TxLrAp7H=(?bX&0SS=B?me`^LF
zy?)kj`mr&g{(HWddo)Wp5Wg;`*mQoaW;;vx<PghW;TNNlm-nfJ>-kC^&hBsd2Mm4p
z>61oO>$9x*9ncG6WWF@nZ?t^rOKOC}`ZfKX`YFej1CMo>ZtKG<?jMjfub~W1QfOC|
z_+05oYUwwFnsj=V6nO^KjGU1Z;+aZ))S=ALy<g$%R+rno=8BI`HJ-Zy&~7L+wWeqn
z-+Rqo*A)-faf=GpGnVRelR4~;Yr18lrtM#XCn@Nyr}9<gPnWm~U>}@@9anGv+(5V+
zTQz>1JtKT+w`R68Xb#!?praI?Sek2&`j*Xe+FXSXVI~oD@~sKHRr8}>*GNl@ELJGE
za#>lgf_x5UZOvEO#KA9di5&XeW{doLX!8nc|0yk2S;Toc?|sOf+@_xn;zrFdVGL}m
zNGh<Y*I>WfVC)PMz3>j==9QQla8I4rPzy3`*Q{tuyV=Ka@90ys_z*4>&A&*qno|E+
zik`PZg{+I<3=3q^ojpKwZ$x^u*5;h`{ZcdpKy<J{#JgAwurUGYig6&DpHJfMA2gE@
ztBpb@Q~gI}taE2FO#hhfiy!0h!Wk!jzLc>C!y3>9Deoq$4U8W<0VLQv<2^-#wf$Y6
zFbl30y9E_tf|FikRn=X16h3CYA1Gf;p3eZ_24VHRWwy!HG7(hI4`ngaybMur*E0W#
zu@i()n&uUZZn<fUc6I~VqKA#by4Y9z`$GX9xt-m@UlKyDxM4+QJNQuNZxb_+7V|74
zBMLO@H)jgP%`YkZD+$`>EiseOtm7u{R%NZsvUr>_9qecCbBh1kjca2G4|G33Dcqr9
zes0HCM-_1v<(+Fsu%srPMF6W!)Yt+??$U4$u@vsYm{fRd_sK4teVQOdh*7q1#-t;N
z$1y6P!WCys_!0Kp&+y9|?JQaUbTs~C2e&Zua-K|Gq$mL;uYf7cIXZ~#)I?7af3VkX
zsmnIuLu#6X*ET=GxcD0sgc1Z^u)@K(sQ@a$Rilf;J)#881`~L9?hP*3du5KNS6rYK
zmZ227zfu$(t-kx1Sg?B(9SxhS2zhlg&nNR07P@y=D7z=@Fy5r>nbjcSU@9LLc-F3f
zZV$BB_jPANv}-oNhYO)#8vzvDkc<cKlZBST7ZJZo1G6?>avJ7=m;OmQj0>+o4?>6r
zD}9XLvVFSc+$9N*5mhNfM1->AVWV<-rmpgo7i;rn1IFoUL^_mlvgNyUl!-BFbHFj_
z`0_<qfVK)%)XfHC##5A~$%V)*DR(@I(@v-Y*@rEx`e=_k`f=3;mm_Vq?J3;xn&3t>
znK;Wa!&rW_c^Ur(j$RG)dD<VafN*}#DLtwV$JJbWfF^PmZeLt-(N<p+{WYN+$S8#W
zFHZbbLm`m;B%Q+tU%$yo<4o69lJYNw-NGJYay#_IYQvk@<E;&0y4zexb0Ldyj`Svm
z5f5u5L`=L+@w8jbMxj$AODg2&FDi`s<JNc5|Fos~^^ld+fjTUtv1sI#+#^~Jj6(#L
z@G)wM7TfCbz=SYT|M|S{InXDF39)gX^AVf(_v{3m9vrRlECf8eK%RV$&6ZYvkrD5r
zP%>nKicAc&F3Dl#x1|d>lg=k11=$!S7A{`*dIQvKFBV|jz^29jeR91=_lw?ZH0_Gd
z@wiwLAK;+5|BgONFBQ|92d8D!hRxC!q>@bY24tw1IGSyHMGD8P$w(kXRDama6OE_H
zD;!I@uw;x@LzTI}g8w7RayLTVb8>wqC{Y?%U1NRZ*D=_GN$>Mvl@WE;{5d;74Q+38
zAi?=Alf_ZUGHrbsah!q%ScVnVnJU?Tay=^8HQl+)pnL_sJL2H0fu|s0)nTbM=?yW_
zuGuh#Gp{JtQvcT~rUoxU2TKTTUzyp8q@MDr*J|kA_@v+>=J(qI_*dR|0qKG$=w9cy
zdMzyanLQ02t3i`e^r98~PzKte2CBI6BU&85m?@4{MGhL@Z!U50el(3c1@Z1!h0}7h
z=#X>&Q$lg9^-8hdrvmFdfg79Xs4KUQjmfHZ!*j#rd?Jaj_2>C_<Q}Po>mKLbb^$Gi
zGdcJ#BG&Nw?T+zBTor+OixrN{+~3xs6!4hkQ1@O{98LOjnYc+OA5fF>Bca7PlRN8g
z*=UDT6X3~!gT2wOGspE*cXu3n#xx9S*Yvl=Z1L*DTBQYtJ|n+g>c6k<)sd*RG&ova
zJ`*RrHS2wD{>~}jwU>V4I$tjS;w~pw2m5d}F%wF|h*s_=r1Rjj`&*eflR?`>0)xT`
zak0*hAw$4<PKAtk<$7;W{O?z;xQ{f5kQ|a(CbcUwdGL%*i|sGl{^939#X!%lrX!o!
zq81k}$Fs^Pur_Z(%xbdKyU;C`a@d3mwXjq3z;bM`Yk+JtbED%ED{;X*oq=Tc_Og2R
z1Q!K8&_xUox&0i=ex%!MUXK@iiPfSihNy#(kB3(TV6%lEvS8#_$6Mp6xRSl+#FDn!
zZYipN8hQAm>-VhJqC!#uOOfNBqvJvcOs^Q@@{e&cPGM~5-b|*#rU9GxQZdH~?Y;)c
zZt=sik<_4$XD;D~ha(LlYl(GNuK~J9B(c4YR?IJ@78|@ogL%hjnjOhNtu!Z`2}giH
zL^{5?Yaqez1ZJs}6cFjm-xQ*+KfmcJviG}!fWE%Iu7U#v^yEnD+ZX}hlaD$kf@7i*
zzkk|Y<C2?}@}4cQ^=FQS{Q$H$4>>b7Xp*`PxwiO@RFY^=acKo{$(xHl3iu)8FzSj=
zh!Ho1{HlwAmH<0`4mjAF)GW6X{Wk3dFG@om;}x|H^WOg$Y3)%9MuiV?2QiBf*BfKq
zF{%RH-`Qd{*zP{+^bFoWPK%A(GYE&!X??pgM)pIpkS{OxK+$ZP?fm;Ca?VqGWIyx~
z-)3a#(=!l^Bjtc(dUYR}zr9s?qQpBk{c8QD$1ut4QvnC1Ons!EHmpxr)MOA-i8e~{
zWRlKm)|M4Ab9&se2HuTZ&1iW!EPUW<cDidz(BGebI5|RNR`3<@vk7jQmRvU<pK_!`
zFqGGH28y}U?DpZ|@#Q3m)TwVC;<%Uj(jTQggs*cfpWN}@OMvJLzc~`!dOAf$Y^#L=
z-4LsTiOZzHDnA&2Y2xggjYOHD4VmKK189329R7+$U3x`4U5y0(xq1PNH`2o**9GXX
zUlU#--=0r>4(VG&otJkzLBfs|HvL9rhYjn*89k}{%JlhNXPC#{Jv8AVp&!!(&{u@z
z3Sn}9^TV`nyb}^7Qc@qk!JL1#&mcjq+&)UrZE1Exe4-+)JC83W0}hghl4A*ISh5w3
z3AMv~C35gx2{1B1>g0^sZ@GH*fNc#A1^PeX&x<t|&X#ZmN4UD$lb%c#{`sfc6}%3n
zFe6$gWS8g=F5mKimvE9wsgXBTzma?Pc-+9q5b_x_e4Qj%l3L~q3j1#{a2*S@ell)v
z*Q!mL$*VO^cB}&08!`Wgl(VQd2DS^h%`}9c`v|(|gu^b?yf7kQG6NJTn_w>_QPS6+
z2+%ra7mXMU8RN|<@FD4Bh*uP&Q?jDjZME>y@wKE>BK}y)j*mP*+DdA!nzHWJ;=1^;
z=zIYNo26BQ$l1Wmp|$DpdnajPGax#xaFvAM*)3)aOw*m0e*5ZKkMlzEew~i{*C{77
zvS}tixYoDTCRI`9f2(|yxG*5^=Yciem<C5vjk^}QgNe=UlS31YTrL~EXz$<pv(|*a
zwO%uaw2DWK)gFwwzI>*am{S`);_3Z$DJI@qq#FMz7kt^cYHG6b&IBQj(OBpbr)!_s
zXRM$P-8(;>ziNxQ)*>2zXO~!{p`LNwEN_3f<w3Dn^E&9pYca0M{BcLU#^&7HA9kDV
zuHk`IRpkz3&GPgyUs0J^yPN?mWivHlVVwm<Hk#`vKWOdL-y1Tx_wb{3x$j*S8y3;y
zGk+30vR|qSm@8eDB44i0|EWag7jw9HYN@{Eo1V&l%=V?$0*+2GHF@Qh`RDH)ys*}k
z4gG}o-N8K)DW9ZE?1Il~T)HiY=c|6%lmKzXC-d5~4C$TnLlXGZVGqA9)s&p9Dew^<
zC}w459By{Y)|elQ;#?`Cco(o;$Z>?Zm%hiO6jdZ%-0oHv+hNgfmMp!9<wY2hVtj}M
zQlf<r5OErNHAUgKnTIdRg*BHNfj8p?JDZ3M1SZJ7Tnp_DCT9LhD-lt<&-t6KJ5@11
zD8iJ?P|f(EvMk7-(oP%(IT{w!yFrOE8gTMHCIsK<;@;O}@#Of{8Lo0Dcx#4ai8vp1
zfB~uy)9R(xzOgU(Yr{n$l~aSWpJIi78dM_*MEtH0krBn<$Xw(ss0#M@-Ajw<WI*DN
zVAoY_O(9F{`;nK>BZzNr9ZZcoq*a4NjR9*yWFT|_M#dIuu<aJa%i9y|lJ34h=C{U5
zMLV_vp=bMa5b*&i8H5~xrwh2S2Jl!qU66eNpw0!RId{}K<AqR%8*}<R&wj@?%-Y9+
zLFAGF3ZxFi2l2@)yJpP6I>(pgVg7(ByjZL_x-dv5D4Q{BFw6&p)Zu~lAWh?}qBf10
zP8h=|Gs55L3QlmjN$vDzbX=9Mi+GQWO}X(akbxR2^XKn{J-HcXsO1tAQ~J5k7u*m)
zNaloNuAKErLLrZ=%P!3Z8Gb&mf4o8$eoeRRiX-J?)-}1=o&7VJ4J|G%liCewC^=24
zaI`H|8)SoAR;gvfTd&y-6aRsgne=5ffg?4&w2*bpwYrNOlGRu@(f3Nj(AzwINm4i0
zeO=Ue_7^M&pakiOZRnZ{tvj@CG<B!L`-$&*w?T_5tQJ`Ncb@Peg1LHR7WUkF-Skpl
zPZfGgjGta5sEyh=8@;c~PLM+1`6X@8)3c6O5>fyxSDdk8ST6iwtkJhsV!kNzizadU
z$>Nsb-jH6y38jh^gN>#L=gHu8Ouxq<kL%L3*v)m-Rv~S2aLlLeTSMo>vp1BJNvko+
zM>Oi)40xO?RCunQRsNs6<Jqj#c}6NHBmBO9_wk>A6X?Jyq>$fM>HS2Rx-t$?;wQjh
z9r`isbce4>gS@u6p+HP_fK!Mzq|SPJ_8e}{a^##ILbg|jc>0LyM>rLzGEh@;eufQg
z)P<h0M?tgt=br<2$G+4?Uaa65qPav_%7pD)h27ban=2(n>V+u=Tjqz8#3(GwD1Rha
zmX?jzNFN={*A<V5ojGxR07cw|?_8*Ur>wKdWEmN>r>yE4eouB^K#d!yYOWiO=JnDy
zS@6%PacO_{VAX~UBRoyTkITpo{6!sh12bxL%mTnABFyH`0Kx{D2+h2Q?`xHOPV^N9
zU2q%(&3!Lq;krWU1fxl-y7;Sw{}u*3wctM$f{M^oQ)y!v^;ENjEg4)*+=6JF=LYqZ
zdU_&p!?pgdi8VS|6hIw~PrG5e`HVtVSQh9x12LR?YcEJAhu3GWD@znDnj7kH_E{X;
zMMJC!!N7JjA@hjr6Z|#AkG*oGIvgib<Dv1Ed|bLR)rxrEE@%ZDuWG!$DrsF1hms2x
zf)xX0L#SNIAm@uV)f1wf#!FZqStaZI3!5U2rwaaTIc}F3-l4FH_}=>=&7xr7Yqu#O
zf2sVIfyK=l=2OwAP~db!8vI+({R9lo3-9@~D>MJ^EC5<Hzh^fQMhLfENC!9s`!b;d
zl%0GEQXS3&Zu9SNN#5}V<PzE_$%-G4Gk(hXEDK@-KlqEKoc?m<?lR~!aqp~B&dm={
zPehirkYM4bz@%#4z=u<XW2AAebXo++VgBiNM?32-sXpQ8Z!{6Z(24ww*63Fu3{9Wr
zQVvOyx502F2t-DZ{q(L!1#i41O|1)YZyyd!joLl5kd=&fAm~I7^Oe!`F9mH!-_c-n
zfU)PmpMYAyIS7!e6h(>A^)lMD?(HYq%TkV?{^7Ut(s)cYkOWp3`aZ#@k{{w<s$9}y
z1l8oWSBS(zSf1f%jK1{(){rV5>rq--Hqa;IX^4pmAjo6-{>8{o7#Rt<z;HBUyr`$^
zMCSl%SuA)37jT8-7<r6f6zo=^bNCXDh{I93`Ic~Ema{8~^lyGPwR?%3^ok-;_^0fF
zdXzC^91P3@6$kGa$iYsEqEZ63hg7e7G%YNKjDx{uB)nq}j>0!dzS8xk=sONKWB4_u
zvCQ?6*YTIAV=OAt*l7R+MQ9RD+`mm4@b;Q+JixOO9sjDw<Q92HDMDvp5oKDr>ch66
z(MO<w{dB2hEyO`K?6L0wcBr!<HJ{{-sfmFeWCwkALjLRuwsbh@WCob$#S`vCM{ddk
zjCth>E<7W?Dov#{c2$x9&WR>%=W`Yb1B7iSwO}xAgJQt!>At~+0VL+V-L&?1XcAf^
z{yj6@g4ExMV6pmxdD#FzXX@9I7{hH=e*tUgoC1mckSO*V&ffkgo}FoeI#MjXW@-%}
z_fb!)H_LyVk3jaxZiuHFUnC7ozz|LdcimS6XKi7O@Zj`zVBu92213q0hb+~bPEs50
zNv~rR=a;UY;L4bGgVklLp4D?Wq3kjza4dm-&{8x~dG6N}c`G#96TzE+fBUEx_*56V
z1LPZ)64jfVuqNos^rX-Cur?G8Td%Dq@j?x$NF>uN5}H6`s}~Y;+PRxq(t2}o!lb`%
z5k@cpz33)Hm?TdOA9kejgYG%ZOV2~xA`!?-zhm*hU`m9LqQwoU8;Q^VK4#Zd%2j6Z
z%)Hp5G5?tMi)jdsre{&Q`F&iUt8Le*tIotGRAj-xX*QWOr}(thA4!GDUIHOY>}8<%
z^w&Rl0NNzZsbw!9Zev#HKKUc4V>I?X`iGrh6mXp+&H_RNrxQBV(ObcrcKsh^y#wg$
zU??M&4`d^AngYohaeWFLgmNH2i1OOX;(M3U<aD@ggxRwB^i=LLMMZ)UEa)yN-4Smt
zG6X24dt;@3n51HN(4We~M%`bvCpgp>Lh*}LzwH}OrR4<YtG9GlJe^8UBTSiI^?7$N
z^D{ZW&odJ;ZjY(r3(=304Xq;O#^WRoe{oiHZP@d)ERvdhazO|{_j8jOwzjmnV1lBI
znD6f1iX?z0SWgnajqO8E;^Nzf_HI*><Mq}P?5Lk*dA0m4%HGy5c{*BxTVRKwu{coq
z4m9C<A0hC)lQ?jN1MfyhkQxm~0=5xX=aNPWqlG!9Jx{sYbzb;PywnH11O|b-MMR89
zOcw?2{WcYxDFfpbHY`z2AsK>#3K0*ncr%bCA`X9jGtj>DZro{rj#1OmUh?uA`XXZB
zPJEH7vPMnD{BXs`U}{1r8VVo40+48;LJE|ximH6aR=OT3-P%gUKp8PLe}o=AUT(OE
zRw|a6V=s@p#3cEE23O0TBl%GmUk5LvkF$?Mh@^CZVMLGCO%)Bp3L#TnZG{w*=Id~s
zHWqwGFVhqyA);Xi3e|b3)O-hrPgoJbQU_=6FPr+)9;{q$B5L$~G!)mB^$vW0A)x}4
z{e<x|12LSgc=%f~c_n5H(Aq~L*>IBBR<`r@d6tArP+3VI)zQUU0pP6YZ!?Bs4@&yi
z9YOIk`f_-PsZ68DIEwe&wZ+lak_11|nfM|`XRCFHp2pZ}bMwRc7dB20r;a={3UU$b
z8w3Lj83%OXEsvFSo9flaC`+w~Zl(s234$B=<ZY}>G&3q8G)FsMvOw)<Rrn@&ENNf`
zdvs?W!h>tI!-CQ|AafqufMV;+pjYSbcH=n~g*wTF=jBm)Q>x{J&p-^t2P-~YA;3$J
z-j^}>YwA~QMDL-}0tu$>WA@L*SU3XX_#8V6iOn9Q=BqCvMrRUb#(%WaOrIY0|7FlZ
zJp~f%i#F0Q(P)aCMW9YZDqr2JCxFUigCc@9KPoOGKA8GDAImw(i%<;i`_~TyPGb_q
zR5#M{cW1f{PSw+V9ffu=qNWSoNas3c)MxB0?diw_Tgu;j*pO}0Tqz`=s4^aN%@CR3
zg4|(OV~QDapPQdW8)U-zuGu4)o4%C!(l-#PQ|p#_kuoNBgPoCW2`Z%E?hi_gED`9f
z4-<~}Qwe^bnh13+Z9d5&ebdRrEv7FBwau9}y)e^-nhAQdC0!i`@}mDka%3U<$!ol2
zkCJsAlX<NEIG9TN@JORBLrB3h)&!6+LER5dd77v0vII!PZivdoWapZJ35V9akWOcF
zMmijMzORji9@<e<(}fe}s+-cIa=@IEfpQYcZ}OhCmYLnX88veOkrccs|MZ5QFJI3O
z8eMYA%(&Z<j_|UXx6hSU)C$oa&CW61AqqtC++T=@Zr>kIN<-Havg$bqjdML1P*;gE
zXhKQR<2`!}4Csv{4R_>|8aOtkvrv+~+8vcQmJBW&TlLPXDhNk?Z*ix)zTH=;d(mx*
z@(>;I`LAAPpK7Yguy)z5v-+CtoU6>coW;cQb*da|Pm_{#8fWOSJLb9*6iFkBG1sP+
zEG~{54FWa#cD!4JiGzW)C)qJ|paXQ*1WAgE8{6K_h(8pNp&-u#1_;3~@}ptOfUXan
zoG?#DC98G&a>#THf*CEqALIahNrLCmm$7~d+90mvMx$D=vV`W&f|yRZ34*PH0;2}D
z0AL)AFLO}e1S25EI$XP*MgSWJfFcDL7^!T@l+j@WptYz}T1G6gk*>D9!=(-3rOK(W
zK*~v^FHp{jFxzIHJH?Xbyr2-Vrue(opx77aok#JAMt7@)!EFbhjK0y5dm-jqnWp)v
zx{Ab<opu1qz#L%qA;rZ-4*FNhqFxz^iS2X>!f(!}BZm~Zw8|_m`@16LQYAl&0K5?F
zIY3dq012N;bbmD^_S|l_;B3{4GKG_rCuD5cjleynD)!LO2|d1jAlKijuuDG^ig}Kx
z$V&-!M8<PRbjd`{G8+2v_;JG})C)BHj}71tJ*|xh#_+3HM{}2(-U&}pykA<ql!#Y2
zfy|DS8%wZ*VM40bpfp$bHLHuD%cu@gv)Mv@3GjxFPx*o^s_~xm?#v)=SU={OF5rxK
z2l8<fBSRDE&_CuBm_lWlj3xt8aBlVM>Esl;3KhqSLw7FuV`GTI@8*Z3+y&yGJIA=v
z>^$ym_IHEdr$@#;{6|W840Ie80Egz|KQI0Q{Z!E(<+Q^5x#@<a4;vxtmy+k35QqT}
zA)^iik}>Wv&q#|VU3-OGhabDJ>~}cM1zAt8w%QFfJbH<>v14Kgqju{6&Tc!mEf$4)
zmAt&P|E<`z@xa^e5oH;FrspEXAdmJ5d0`S>YIC;au``DfFcy)g)@`2@$1F|Zq3d1=
z`XBBdPZ=FV7O@Dl<Jlq41lNS#cFs=N1$Qz_^9uAtdHOZ(wte$sg6C~Nf;r!)HR%J<
z*GjAYZc3JS%4oVXydUd)Jg(JS5|l#Fp?W2ARb|u1z>0hF)%w3e6;z8X6%I9B;?Jhf
zX-Ka9Z8QlmT}DQ4s0PKv^*@}^XnTJoh^JqClK!9hjSK)BSBAD?JeWywPT+EsNEI>1
z3&f;U!NXWP#FS_(P>zp_dh-Yy;-G>N2UVZ7*A%rWO`wrM*%+sWN~rR&kk)PQ+RUSD
zJ<?F3G(nd0_c&?7w{5jV`dH<2z8Rg?7tw+pG8em%kXM!Nw!62#X)z?bOfzv+e6Kr>
zbq+N6K8)R&g4!h-^CCa4=g0?DIo+Pw5A#~#+MazczE2lL6tXI{-JEdhltv%Fe$E(5
zU}5^ubWDiCRjQqKe3vuAA3o8DTi3HVS0+XkRpCO@r<A)UETHS!3gK5i!joA0@$~cE
z%kbvj<L#^T9SxE?w91YVd4FdxS>)8?XWK0sAnz7xOEEpKHXlz2CU;De+VFz5#To%L
zK=93B4^_QV6ax6i(HI5u#iQ7P0oXdA!xT|LHwJI6wuYZIp-}Ca3cE>j0~<ECm_K;J
z&%es*)%K2z1WL61>RDj-l}M)CDQ8#Eu_4{#l!GmuenLy@+mTXJcXzdV9Sg^3^a_f|
zlJvlcz*BVtp=GyYfr`8HkRAjo31q#2;Mk9*CA|+qGOGGwqXOuK9Vhsdf#@|~Jluhu
zPw<GEt4PY&_HL!k!}#OFp`D^=#ukr9_fe1CDP~p=!|du3xn-evzH0UrVEbt=un^|P
zGc1D~Tpu7zaR=Rx+k*n*`g!Njd9mJh)djhFJ`0(G=0b)@bi?uzQOrB)I~+qOL=~W7
zVV4=}V9&GtOifexOb1Wow3lEO&A{lBft;y4MEDjZa7V1Txv(4~p4Ufq*`deD9s|ce
zSJy9x(nFQO=^)sc><fOk{zx{2JakT{l-X*&YmYiMYwYBLu~UqEfySA0T-x7%`%TFA
zVv&i@!h=3t?1I*mjx*B|2zu@OIgwV5E!4iTIDRB=VMmkg6U4jnWvpN(;yijn$eXbT
zJFrX8{|UQ?QUazaE{J;=ncvSN-iNk?Z{4Tit(7K3$B*_75Iqa^?dvr!^umux=S9kb
z;mK-qr8<Yc9~&_MhQrKJ)W$nCcA7%TIMPQ9&zQPU5u8^V4#TZJdL(WLwva};0wp48
z-u_<Bz+Bb@g)(HV4D*Tf`5hBMc9Aj2b&~Tyw&wnLkRVPNan0u4@+#E%k0G)2na<2Y
zu6nC~8ra4STA1eFof#WhhbUV1JG!c@j&c@$h^d@Ni`Z%0tXGLVrCP6`d}4R4yEiWe
z2^+Io4Vq!)tN(TSm_!3vvZ2orYii~ca&Wa*40zr;gTOq7UUCv#zr4k*Rk>P?hV|~~
zr8PbN4-nuP34kWEhq+d=id+JWxr03gp_JQwkL+Ccd#DiV1FU%2&>e~s@blr?Ew?lJ
z5^&2*K^>K8iprU}du4XBCRx(%B1NhJkLNcY^=>a<pz;&oJ*-4e_coPu2-ce66N1fb
z5m_IySuC?S@gHoYHc|KIWNPV%jo)Ej&Dy6v5gaK2>pmNuVcYDv?7Yh(&Dt+cWYs16
z)2<`?Sh!c{25Q9olxj&)Z+UylM~^l9AI=eAf#i;7V#$0cXAEFLXRf187s(*LImbJ4
zf|W=?wERPwCX~v6rn#r?89#p!B4+f_M&4!pR!QsV3#GBgD1nQQu-IE8U6emLzH2`O
zOc3gYN16E_qDItaGu|O%6qX&50=Q-KSWW_R2p=uwaBYOsF}1y_5}oge%@Vd7rTEiT
zcZ?*Gg>X{`b-k+54fuindVy#D^>_oMmi-c>d~AS5OZb-~D4|7^_YXPpR`4bTWyKPt
zB*k=CEcb~|vqjg?ad$Jey~{rGK^hENJ$wch9@cE;ZSZc-CMGEACN$q1N0BV6W_ahh
z%CseC8o#aE_TQp+EzCZA+)Zzl3_YKAPxes~A+fZ3G$-8y>@+eZFoa`~H(-2qC07yU
zTtutttKT{@=;iNPIn*y*&CqbYj&Oa9e7GL{y1$RTk1PYn?taPEsiXHI@{VmJysgpY
z<&V!&)W1%g9rJ-5(6oj3UuvvGC=!rld-#5y<{Z#X(}xbWFN>R>?q#*BXN@`|Spm70
zF(|up@&5~<`7bO{4Eur{_Eq^Ln^3K^fyPCN*d|)NU$7^t<hbl5nuC5?+tusl+seW@
zrHQ5<b<0}vr3Nz9^3luZQPI?S9x^NdDkd7Ce=wFMihH|IddGC%uLkNbdcT7Gr|~NT
z1hil~E751rafB+iEuLJ<A7RId+C!Gx8r8!d6Bon{Gcpuy`yXoPZTfj!VW$S6Bis$J
z-$$9s`a^z{*lt#?kk8MGj1ZsUy&By1Yc|8!HLH#bOT<C@sbr!!SP9us&}(mB9i_Tz
zVlKBT^2q7(&eu1a8f7(KpZq@Sr*?4=((`EW5x6B+1t7R?Uj2+JjrGH++D|s@nQc9q
zcHSuy3L$KdVY?s2R2cJtcsXabbPccS=xy$5rZpM<&zgyYeP5a>_|6uo|9WinY?%p)
zNnh+zWoHT+uJKP(FvG4>!`jT*<=$9pXpAI#W5PXs*dmPSi)fL(_{@|n8V&A6mGhd0
zf_gBZAfRf5E8fVOy{4k~2SCRVrNO(gmgJSlNzGy#*Pm?#UIRH`_TaOS27Bb_Xnrk_
z=4#uMZ?0_U0bSz*$5W2o|5zMhzHdP24SaX_Y|@X;*QEIGdsTyfju5M)MtEKc;=y9a
z8c5=`>^KOy>rw@DROyG3i;CZCY6txil`X!myr1<L>PLF+VgmO68Y&WhXP|lJH0+sb
zaG?I5e~pc=VjVwE{OpZy1Z4iL0sJ@2`hR_CV~0;zdFWC}cG3RNUH#`z{=dhy+5I!1
zZoECp;Q!-*|KHwW<5+g1{p}SB(Pw&B`H8qaMmQ*0UOnEDx?f%uRO?rrt_1|&?2VEZ
zJsGyS@79$yZwuH>B#}~zy2(Hzbg#_qAhW*9)0X4<1ny6FA66lt9jEp)C;>nSyU%9G
zu+r`w8yuZAajCKYG6jx4rr>iL+V$Ms?rW<;K_nd!^uWxx&`xJHY?jt8Uw@^>eoAhK
zF{A}9S^w*+@heC4%QhU9`vLslIeyPxK&f79CI%(H3e-w^4wEgBgo90c;}=8KvMt2w
z^jA-wpeoUiKf+_RwPNc$oU(^qZF0_nMX16@$NvZ)d2%iK01Io<`{-kJ7I!;SWk5HS
z$nnc|-D`vI<pDy1Le4}RFF#%k@;mulXhpGz)MfG<Aq^jBFaZ>2<bo7PucF|6P@rA(
z2^)-qrnY_pUl<?qP}VC|3Vnt$vx~t=>-(%llKo=?kk5lSYI$FF8|~}H8U@Q*VP4rS
zF9p6-xs%p@Q%iBOP%&NI%^TM)ThCn#pHnZtyY>1!u5WB4U_XesRQFVoUX;XUsNQ;H
z&S*E(bN8*o<G4%`k4lfo{pyCl_P1du4nv6PdO0O@u?y{}s$G7sv9y!G>)~$by4_W9
zT;noKp^zaIn`CE%F_gp!7l^)n>uEs(H`r>vPsOBpzq;}f^lY0dlFN*MPSS&SeYL79
zXrT27i%MiGmd>Wr7W#=k@|>pSucV02A<1gv{^i;^0(&$rb877Z;pKzrGomLp+`P(v
z7a@4w0vH>wXR}Pmv;VCXW&`dCU_i{z<zBqM4eRO62X{PnlkB7I|JJ{C7=LN<jEoc1
zQfuoP=l#BlkCSV^--pL<0(!Jrlt~q^<gc}G>Sp#scmex~YGBcukQJ;Kr{G25|3=>G
zsX6buMZYRkEt0_#l=<v_bN~M5vmKeaQd-1TUl^;I+5lFkwbgi{#1M-??JtWDdc$5N
z)OHb>cl9y&^0<BY$8Rpevg&80hm6$m!a$)h{RSCH_Znb@@{7z^{?D(FPm`XDJ@Ngk
zj><?mIxDXCv<0faz(Nm9)y!foZyt}Z|0L+4AI(Kbe2jI0@(d&b#u$;u>joD~wQoe^
z50FwLENYMg#V~SeqY?M5)mJvL8$-by0F-k))L@`{_K;2dyDXkEMF+uNya<uEoT-iz
zT;oqPC4T$XU%Bf0NS^P}&Z_)8(|WD6LcZ@dMg;enMZZJ!)Y|+%6V-(ebY{8qQL2^x
z&$W96EYQml_dhsr82;ef;$TKO{3r4tLcocrdstPqHhKuTobFw&_4D;R_iic|e|QWf
zD8)X!#&SHky=hvPpem>A{cO<kU5y}<b}WSaWH^Nm9e*f3@G&ag7?SCBz4uqAtv`f-
zSh`1$@e|kq9up6+w%r?Q%to0dnk8h3Y8Rwt_e*CI$pp#&Rc7n0*>)G*38_b>gu3zM
z<^5MK-Vf$%FfoD#<b<cjEb*2f@&q&$CXbYxD+XElcv}3$o_iuF0)P7$f}wyq+tcc1
z0BpFHUC!?DYfiGz-jOI?r3dLsn@3jRsJ?vBxZ!5qmij-6ISukpz1j!=%g`|cC7=t?
zaWR!VC*~sh`du_RqonwWk&y0GQG(C=ldavW+BBg${FxV@pQm*0m}xSin(yU-=XF&`
za1{piKQVhli6g&hGJO|Cf)>B*ag=7ikX13+9;n?&mUv3kEs{=Q8luCNm1$$uU2HHL
zJ`1MS|A3Q@CXqkW*w%DDJW@^-v8RKU!AQ3JbkHXu7Wz&wj%)q!x*(1T@*a%;Kt5Zl
zHsbwe`V@5f1b`TRU(>GDGcIx88j+^@{&nWBoUCeQybT^j@G^u9o2~BKE^2taVZC4c
z!De1R6t?EN!x|BX`dbB1<ZR;EJdL*0IPvEFjyER3Nk$m#wv^k9&8!_CcgaiZhzH+A
z8C?GYt|J_R#Z|*2ru2I#c{oLB31M#0(W?zmXgC+k{Tix0@{7m^O41?VTAIo(ROc~_
zsb~By*jebnU-J~@{bSru%|5;?=q8dbP*Y8=h=+K0QMy>O?K?v3=4=+zh_)7aHiodr
z4*Ha7G(L!1#D+o<`R&(}FMGG!x3^;}l2;p>!?Z>Vl}j>;wEZaeS%u++jhxU*N&%Nt
zAGof8^g!omXSne}?G_B!JK&MF-HLRlKVkt6g0oy&SsAkHyx->=PmXz;6l%8}_eh-g
zLfreuRy?HGWP)y)pDO0np#>PoGKgi5{Fl+a2^`8FhtAwyu@f;syf24H$2liiUe}~X
z<)xJWUYPyfg@|puTVObi`_HVz2>a^)E`cG%39m4v`Zf3Jmv{b-wKMcgt$)}T`StD&
z`>6EWXix&5IS<pPDx4P%kG7L$?-%-AR<$o8t_M?JhZdOKycZg*(`qmg0%MuDNhXRb
z<9Cm%Eys)X`zaCxObrxbS$Vl_W@9NtYIfJe)*ms*#22seif(jKC&n|}v9IEZ78~3I
ze=!;AKhC!NWN7YMJ(-7;<NBr5pT|;tWtU*A?Q)W<6Lh5<xUCFnwIr#g{)ZoeFW8*o
zUPb^gvPlL3#JBmBzGU!t6+dMUDt*?g3xGH2SBDyK3UjgXZ#dE?&|0KqmQbb8t^UN^
z!1iH<W(cKa;F`)3l)ZXsb*g4GtHjN5yV@PGvd1ytY48?*C;t6{4@#JKCRd<u%{r=E
z437nrVnxYWfAS<cLN?yXZXg?=;M~;}7y5SOiTplzySWR=&Y;C9BU98zzT3SvcdIm=
zj341PGtA^Cw5sOBD+Uay%?DqaOcLEG_&3;Sbd^^sPO_Yh-w6j7Py(INI$d7ogzrAN
z)1l0{za1+E^o?D8jK&cvbST^GMCiPIS76(+FnKsTJP&qo=?p-^4g8SMNkji)K5otB
z{Q3>~1<~dOk$ZURytJa#`#P#7kIfJh7Ko{@U%v6p;Z$$`?NvYZ(;V7+UG+8<#OM|s
zsKB?)ZaZitbv`E%aVF|Cg)!n4-7nGMpZ{>X|9HcOi}Z*0H1Xx_L|B2;^`z*IjJnDu
zP2fj5{&_MXkWKdivx?Z?1`kSb%!#k24wKco3>z#4y8|)3zkiYJ;ti|vzH>TSsY=uv
z2gYN5>@@mS9806%HWLs`CJ{l*Kb-03CCE)cZ3F88geBC5{AqTXpg0r6nw}RrPZESs
z3|Nj>p7lkodxL~XU^*W=u6ftOdf8RaWi>F)_gM}8>FS}**4HH4>@Gn~X`Bn#I@1HT
zY;VneEdh*=Cl7DL@*j>Dd>X&p<r$~LGU5b1lPQe#+*TO;eJ?t`8qhyV;EznpwPzM1
zhW;%f2bq&_u;o`kw~-d3rkD`FpRim;k>`o!xZOkV%BBf<^Y%}p)4WClalLLyJgG03
zucu61GVf@fYGNPIoSAzxMdKNw#{1y=Pe;#0Kr1SD%e?O17o+yRrlkL|8vs_&%>eGi
zSje61f408Q_<pE_Y||C7xW#Vq?lX{i)*9R1FR8Endi;oTnF_PV8ejm~>$f|+-=A|z
zV?@J~{^l~O(@Zz0!xiXF%ltf;ryv(SAjCVe%HpQI^O`SP&whdk?>sFaLksJgMr$0_
zxE@3uueg*`cogr@iG)%M$I}&G+}|W{`_Xd#F1vnuiV`+oFBsM?Q3*)I<Nk*Ck3>kP
zgcW`K^8V>&_gJQ5dlR>=1LJlL7@Gw<G`*1?u+NK;lbDWQw5hv@O!tAMmkN_oILE_t
zm5OZ?>_=YWu*Sj#{^h2Y-Gqz92(*~{zNYN4h>N(!K+mQEpvQ)GefpsFFi-;HC*78}
zL6qlXC?=}OD&Kds=169NRtVihOBg@$?vwr2%_)BWy7nac6!i(JhS(B0gcN~GvEXBO
zF(|owUo;oP-`!L91Munr1&Gr3Hd>wm2PoYXY(T4Qkk{*T;4;sqJi>X(sqJQ)#We-}
zr?VyDG6x|n<^k)eLSuXqsGJJoBAx;~Wgu7d^MfJiW|Yk9IcD7Zv}F5d4>@KchYShL
z*j>S!*RJ|QU0;u&wNg8LYGsheMn6Wo9EU#8$Xik>mOf$$+xK#9I832ehm3BGvyY@q
z8}&y=k%Ctmf$3iw#x}jMIlm-8yxSG<hu%MYj?w<}DFqfs0n6^pBD#}OVXsJstPLCT
zeb*__ER8?&R@f!N%4sxc-=<bAa|9<9>xm<4Lja=_%spTX0{c2hs1U|1Tr99}wkvrQ
zwzO0ukpb*z3KluBOj%+C<FS4NKkALboGpoaEJQzHtodTKbmIb+y*|2>*t&%h3I^S<
zQF}-UD8zvslNp~vbEU$76k77Qy#>ta>mwn5oc&%>rVFs_@pnxAj6#IuI6$sVI5Aq~
z$wC3LgzU^c?U;W_wFu(Kt|?kT4$4MrzWa1TrrxMy2A_d{HoXoQ4K}xq1RQLGC--eQ
z7^q~)*n{hdB^+}_iKl4`(v;#P^=>)8_9gr{nQ?1OG~#kjmNd2)PdMuCz93kCM&z@T
z<NZ(7F2K)KWE`egW9ffNy#6^wKI8g5{`}@-RSP?{Q}{v9YP3l?uG!+H@bAseATEh;
zZoANp<zPal%gKtQ&j%fe-Qff%sBDY8f=d?x?a}4IR^(f|4xtpn3hWL*!hCO&h*o1<
zJ4*V_+~S!(iG=q))@g5mN%Kp+E$xF>5ayZk1;Bk2Wl`QVxPqDm-YbcL;dI$&K!#Qq
zGdrtY03It5kt((n)`US}2Vi0z8S`<#^7^?~vFU9ima$8X0HspB{UsXTHK*X)t6mB%
zGJjWuxkD`G_DSHMoB658nPy2i|0`?*`u50Vl?tb~s8$Ih^vnqSC}_D<0?#HlY}Wwz
zp;JZ&+<lF-nO+*E%Zb4lO7#&@%S56@;H;`vkQOS}F#i%V%+5!Qoh>+rf7<i#^fBMb
zzfe1A>_Q6k!%nD`iQvWV>hZg<nlvw7q|0CUpheJa+NYVu%zHvhdq}a^9LXrQX%4j#
z@u(svT-ddYij-2tT3{#GC5pKZ+0|N5v(0|cb>OVY4{%gv{Tkus+eyIw!;4opNTl<C
zJPxOaOP@}8M-`2;!y4}mrDqbxLE^gSI}TOa6PPe4el|)|4NV4)kx1s4s2~%u4LfWm
zGr7ikI|IMEr%5z`G5TMVmnfUlpdu6Up;w~Gwb{tdK1?8I1~NdFX5h*Hc<O)g_08dN
ze(Tze(b#rl+qTm*wv)!TjmEaqc7n#X-6V}CwrzdWpUyse@ALhYTywp%X1xoK@B7Ix
zG-y9O$Izl*74qc4(EJU>f~>CPowEhWkCdvWvR*bgM6?+IPnY)E1>0#W?v;iNwR}7v
zWfUWsOc1x#B#Y#u?l2o=9I7O0bL;9Q&=rIQorpBQ@)0N0*z0j5j;Ln#>DcfLxjK_~
zs5JheQK}{{Jr3Zqll$61#}5<a0<n0ThhI2Uw}HvH+K%KPkK!NSB?8_lMM3(U&649d
zs}wIRgVu+t#OA>fq|DYCTw1le!qo{jfInMTaQ3%DE-Wl2Je(8YCRr!+_eTL_>u0ci
zrgFyQ)h2_*0^Z0&8XnUW@+bxogtbDR(|vW82eenSN@pP8Q<3$&owPJJHDMGsgLHd~
zyP@^dIjAR3nAaV?tjT~<iV3jQ{(YX)&5|pKH8A`7eP3(>sKpCSvq{%|)LKC~45<mE
zICOG=@)CJt@0?zE{}TRM0=m)DDf!3ijzMyjd-HW5gk=78uxlF~kMl-U$N`J`j`ELg
z{C#%s+5li6mpsF5JWCLY5^NxJA#{}1&~>MJjWI{e_6_sSdF;8JM&*jR6Lqdl#~4Kf
zDP<ck<E3Um{K5nU7G%i8g(`Mm=JONU12rfQ&)($i>|KdZ)5j#WV7!beNbMXq%nW$P
z7NQ<K(uXTL)lD~|0<4FtA~rPc`LO{EMBp9FRld&-iDUs7GsDs`X6O|*%2Os-+l7PN
zdIrd~3cfoY{u%ODqQO-L6fN~`KNKrvGO>g>6qO&l;h>yt6TJsC347wmd|*K9(JW>{
zP{I~37^zLl6ViOr%_HkP)=00;pf>i?Ph^A0{u#_Ggjc58!I5MwIjiAJ+fAN5fLn87
zE6+55({atHqdrvBNBF!vunFILT{zIpkJC2G$85K?)jdY7N6yWb(s|L8s58aK&6V+I
z=}lV!;#k5^+O8~fSgSmd78L0*vxWSl37pwvb|!Db*AJ__CthDRjnAYVtO<`S+?zB<
zALcFGU&i`*c2JB_ig^TE(Llnm>9btpKaoE$s6cnWaj+7pCFK8cYC$0+RPac2N<*k?
z*Xmo2@HU?vybp>vYd$IN(Ts=fCqKADfm`>_lJWP8(!~*|mWO?)E*IB=nS!1eCqf<}
zORvD3o*(WKpaLDMzIZ{G+qIQT|F;2}9)A#4gIeU-W17iB0;k#IAg5=|X6CL6Iq(=)
zb!ubFB4j84llKxx(ukPsrwj~($JOoGCCQ#j^+&2vs~xYzm2H{od}D}`$p<&18Oqp>
zwB3$kD_&0tE}jK-GZ%Ty$jNSfw-HF<VbJJW_3|pbX&)~ewxHE+g-t5ry|uKnrYc*=
z$RDm={w4)Vfs^$l8R7Q<w%ly=lOEmd<U4DmP+wJl+{s}gL8#IDyYVPyZbw@3G$Q&0
z3~Nrr1)sZ|o_9M6aAQL|JqS-2bSP5stU*13D`6pb*o$ln=L01~ojt&ttkGS+U}GK@
zD0qDMaPtYCd=mA%_nuT*G8V;&l;;^mI^7w&YQ)WgsR_w1uk~5Lo;o=gN)T;8EPjZ{
zC>w+a|FAaWNKNj63zi0o3aTvUlAjno6$f<qV8S-F>aQR&BN^<S!}B}*!n#BjhmDX1
ztmB2k5W_+MJHH7y>z61bq^mo{5~9o6KC}>u#%LdT?KwkI25nq`1<o(yAniq%1Y-32
zY|+<ga#J$0aA`R&H}R&nKF#u-kkI4oqQ^IcSvqpL#V?R-iFj;v^!lvpiM%q6m82sJ
zrxNmeEeXySB5Le`Ke;)<N{*?<?;N=+lTijJNXswop9fh(Z?KI69mAf0-;W%+UvVc3
zrWSkAj246omoI%6{WOGuTdl4P#+h#6(KK6mXQz)Dp_AC62cWpl8H{sjJ#xnb;*Yuc
z$-gC;u&}tWfIIl6)|BAy4AftF2`Uj1{|?}F%O2g~tOawu&8jfJ7YK`pbh$2^?-Gf|
zgJuhC%ee%hd8W8wV%0z$I>`(M6|yOLeAO!!g*7UdE)5K&8uee`JblBEo>M?Am<IY3
zZ0u&R7|TpAMA<)&nT{kdu=RgI&kBpnm2SN|P6P5kT<#X{l}8**w=*^Bq`93gNrB4l
z(|~+)TSt3U$Y35*zrJf`KO$sNj_`u|CUu#@Q1~8FgaEn5d65f#`q+vVger5OP{Ua}
zFI0gtqbd}XhD1MVei)5AZK{z&Ww&*aLq3>!A!g9>Fy%kfbwMJ~ACP_(@;U_nyky1f
zT?Uy7vcm8+l6;4v*^<O?+I^phXYCes8a7H8_w0mo<6@3QT=o}mKQEh5K*1A8i}vn}
zWU7yNy6SGpnBs*>p(gjhc0yQv0%TJp8+6(d(@`0`e}F>9rPkKl2=<ae8^GMz$(A?@
zL3{cpE8~sB7D9tBWWqw%U=U@2==2!C>>SQ>DGoG*vK}=Eb6gWeE5F76ML(MQ+VE4_
zlY0yUwqe(&<EMMwe0AuFE}77TBhuh65Tf7Z1Y&r2ZcjQ>zrrWs?zY6pj1Oa|)0vyf
zV`rTp14SGW)U}psEM<#ySitGKX1m|2wRERXHLP&t*`b&3)qp1~I|A07$`voBC7Ji<
zHqX{iZ6mCX++xk~{8L@N%N_HUq#nZhWS!{6pg^(cK;0pyZbzAH>N<qIz~V;#``s`Q
zBL&<;%rg^nyyeBHat4TidP;2cF-6c4Y@TbE!XvrPPC3*8xe3kv4&c7Ta;FE1!yJb@
zaNUCZ=Ez2qqto6D7i1|CvvxX(D~qB)lUIx$s4ITv`Y4bU%i8Q|hs*0&881s>xa2u8
zI`=p?+0|@Y^qJl6Q8a^3c+QZhzy4G8CqKAloYXz)ZD8c6(Rd69u&&wm4bL4%+~ldA
zEo*0mkns%jx{T@cG15n1$RC<)C4|DoP4l;@YAx0H&v^$C%m~{U8MBSTO1DpU{H`R&
z4(z%OwxE$aydxF|7ae4&*eHO4&nw#Fo?@SL@?>4Y_yJbnzx10U<lY6=P%wgk4oZQD
zE1C9HSrQ58z7DJ1X8Pe|$^3nLgI_NesfuC_kCaN0cqy-tdXWKdL$y0v-*~#CDh=8m
z>0*mtq;KoP&#n1DcE4#C724-d0C;q9m=Dj|cLqyS-)1bnIbP)*>|gjV(sII@jijdz
ze8HojKujKD&~_(75&a=6$=$?~{X}J*8Z&(j?8H*3T7#CmZvbYeQ7L35|3-<_IUmV7
zTl&65p$0%bkt3mQOS>2j!OlQSRB$vm1@=%-yN@v#-nM#$@9-pt3}~-tBc(oD&gV>z
zX@mN9^W0%RQ0UIOy6al=O$crgi7G;)V~r;}h9i&UD@h-o+LV(t<x{%=_bL_2dDdwl
zp0nXZDZ#|71qo10ev~o|!R@uv!EhrFWiqsWGr7{X8w@ZZU5l$d>TMmIb~1qe9d@kp
ziaWxcZ&vd=5K0(c{Ft0BhS6iqAb!3+w{nSlg;wc~lG1_s%(%6tn|BWMyt@4|v!xXm
zxRuE}cQPU9?b_M$8HR`f{Y_UCg6C6aQ4>DjF4^+{zP<in%V~#+A9G(l%^oPCK&;_`
z)UMf}ssF&>z#mtNsBxD5X4qtmX&CL<tEPj)$M2mT$)}s0ayQE9{&Fnzh)kQ#hrTm(
z%nM?}Zm{=*kk|XWl<1xlwaM#-RwDYA@mH(6%K7<uzUn+TJMGc$#4SxTYBiFh&)m74
z_rwTI^A^INMgOa!!o!62-Nm7x(B1lbkuFfiKGb4VN8>#Mb-pf*oqn5#2orZ5+#z4m
zU|e3rN7}lwy}){eCEx3N7H=KyNrM2t-wA$giQjmsF6`K@u4;c!w?U_<k>YCie%Vux
z#@JL<$hPPJQjEl!@a0BoIUbk^ZKNX2yfZoL)0)Y^&{k)o5AK3eYv4;PsJV6{$7VJG
z=jxYJ&Dy<Cb$-_Ve?=5K=znMRY9`Wd)j_^mTVwzzd=Dub{m)GSDF{Q6^;2JDMTfKO
zpY<5tXXKYTBxTav4NDp-kk9ym;m0(v$b1@-2(P|v0dqvs;2|39Mo2;yZ@`@Q9@bF1
z=`pdZTzR#fc~=YP+%3JH$R-kTo3@jclZyrd4Sy-0v`ArLN_U?#r5Cf@_b2uL8ru9z
zLFHkB<)QKI(_fl2$z{H3!4$*1ZK670s-H&_r*pxekZYUTr#|2JgML$klu^j93Vat8
zr4Zx6?bAPjQ+rIXy+GAYHFg)^-%9WQ&!&|R3+Vt_8@P2U>DIEpQ5^r2Z2li(V1j*c
zFSp#c_*a|n?<xEy!}u$c|IZ(AZgAOC$aD1K6;O%Ce|z9RKJ1DDZIL?rb?tvyrT;o9
zFoMARycU0=xZIy0cCMWtM!g}Wup2!-hm89d|1tW1&hU>%?u}9JO}8g1Uk3O0hp$}T
zx_j@sqA*zaL3UAuld0m>s@qH9zb%mu0QUKA4b=MWfGvn6S!w6t3LAsogBc!e!9wv7
z)G)k&%YIEcV!b<u=#r>v%P1X_LK>y)Nzb-VGuJUsG#vimdqk(bKPdew;BgPCXn~aq
z1c!Ree*qb9j{c&`hQ!7pVW-~wh38$};jS-Eib6O6cFK@G5nU{PSV|~dVO6^r#6+^u
z{^YPeG1iA&3988~wyb4W4N8XX&Szk6VS;<sf~88|n;D|lzJT0E)hLRKmDHJ>zgMuU
z41_F7;=8}lsdr3^=Z!?`D;+yXR5hh^A@KlpoIJp@U2&C;$ODD>m9x{Q1b6OlH2?nU
zU#ChqK-BO`2*$EIY8-=1lNlbJm!jVKV@^-#P3Cs9(+k#@hZlQF%hhR6hiVBhwN6Pb
zO6wq%tW)w3dR7SEn@5hSQB`G7a^L{OZN~05K-S`Of(2!^Ny$!J`&Y7-#_#a>10J6*
zsRS%>s@+<%l3CPF!N*Xi;SS$$rRkyJD{5}yUg;F4&~KI<Hju0)uQgw4=8*gQCID$w
zUsX;nlUc36X&wiIX6yWx1qFBc(7rFf9e#Y~W|3D_Tob|IuvyC!4Mi|o%L8R4KI=CY
z`WV!Daxv(%>P6(VKDSM^DMHDn&=(wwt&nb6yuY}*oVBJ^rQpIG&0ATGZAETHA}9lK
zzYRNzoPT=jfc;Gv^xcC4Yb{sR{bkBGDnJQEv%?Q2g*H1Hkq-T-I5SlZQkU$UrSe-h
zzmO8~R7w!^O$KV92^BJ-kk}rhZc$kM2+!%|jr;S!#O_*v{>jl(3u49Bzt7w~7dUYW
z5Ue^FCO^W4MWflK0J)sfP$GfG)~Ur~2fAXpMPo#LE4(;B_S}#kCN8&>?4hQm&hmO3
z4!jxas1xB^l9$#CkI>gDi*n(_{wUPh(M#?BeHGS6Mb<&wafSRKma}S5PwD>cp<g_s
z-&})7^pU`Kgg;@7C1tEPvswb_!M_FA_WIkt=)Y9Yyq20qZVfkpa<l~?2Ctc)xeWc<
zUKigh*sV9T1<f%Rg)&DQKxuCfeFNQq)`?eaA&87mMV!)`$Z2S2TH;C>Q~!u>q*`?k
z4!%KTMF+OK?(QcX?kI@QsF=EkqtROT%XH~=Mh)(ud?q!~jg7|SMZC+?DTH>L7u^Pq
zk!X0K0L)tnO>Nqg;VHy++yh`Iqu9Cx?Ha^ecer4Y9dD?w<-TV8(fYA1<yVodUKA<=
zYd7t4BPyHe3(_>Gz~=e)waWi}ts;fP%{hFvQ~@;L6R1C}M|c=p)c%%b_sOt6pPXQb
z_(<Ho*WBnYFc+BWrd6%hv>UX_G}o3SO?sq@W;DyqMW-pf9GdyWh%|yF?H~68*z>Jb
zqp+XEtUK)>Jl{eA>><S3zjcGzQyh^{$%%I?Y$Te%_wmmc&m~9Kdu!IzO1IaqvZq}&
z%tmdRt7PtmT9JZXPcp-VOiD#q{|Ho&xLS`EHGG>=O%^brZ7uWGqEy6t;}>poM1elO
zU3p@+J(cD4eT4^+*nb7{-VM+VXfvI}*}4gGFmW`INVAQ7myd|TglN4)pQ*w`<UN{x
zZf3c)-7NPJv0#Zdg^{EWiPI1<>c@!tndibVVLbl?1*7+NquC{Nt{6%@**P^Ucp{}S
z<esYvbny&`q==f?`?gE<tMV%SM@(^93hWz{zzWBTOVQ(ehiP%g(1?Vn=bEc77QCgR
z5+6ijP6Y2&Q<8YaFrcHWe7v~l!y=SPfYirdL#S4oRqCZ$q|Lft`T@?L?ZrXZfmPvm
z8_+OcawIxkKbtbGRL)a_lg7kH@!b*`#WgEzCZv7vh5xQvf&uj&D>+OdTkdztl>%<-
zry-?Zt+})W9oMs1)mmFYqK`iadkUxv-y4_lXDs-gJuSSCXiEqZLlrbtsxL%KL|N_}
zP3ZQs$@A+HXaKQT=Dycg(f6yY)b98(CU8!f&1nHexXy#Z3pwW7TvM8|JGC~(pSp7d
z>Z(#I^dbzRwGjrTq6&u+$Y39i$AmFVzz%%(7p!jm5X3M&8Ap5XE<o+gzsYsN9XF?i
z?=q|itB{3aPj)WKe<uH>8C87I4?rz$1aPkRv&2sZtJOFW`<Lq`0>79|eP=*JLK|%M
znJq;Jg9asCT|LWLI+;-Hhqeij5QtKHsm3wE@kv=(q<YA!>GO0n_Ewh$i>M~2=5oS|
zk@<LBUVjzj9E@i*UOxeMAeF|_%jp6&3gHCYKm}--f03+AU@yt`8r{@hoF(66I&qo1
z&u7)!@3K{bd5CRt!L6DPw4!xNRX#>K6r(@12wa|N$!3$pu83jSf;;Cn?C^HApUWNP
z!G^rldD878yrqg_tJaFLJe>tR<OuY423J40m+RM0-};uu+242I@|X#(NzuHx2&La%
z|ATZnX8;fM)tLf#4OIs}^J-Gy8N;~lGHOx1X?m<nt;P#b2iJTJZV^n$@3ygPJ!(9C
z%BSTI7CycgM`5)aFrYKL*iQ1&{%zX*tEvYL3evvl;N8E%oml9@O<Q}3XwC<4d5suL
zlyX8MLsJXm@p|<+BxzG=h1s;=8qM}V5J+=;P@l-f${04Y^A4ABH`-LDR%)M%cIK*X
z_cNghNp(J}t=pIDyOHri$N|BS0hWTn^B4Z`Pks-Fgpu19`z(5`p5fZ=_=*a=NN8tR
z@x&<9mLkx4#!$N;gtHm3Xanwr;fEVg(nuxP?d6+oTtc1EQ>!cg5JpUq>gdvSr=*%0
zKh=b8^7pTIw<rF;On#bvf9mWg+z-P>f-IKvispI-eYXZojdd}c_03U0EX;^}2+t77
z(R~bG7drRWS85`kx8ex}VRWL}C<E2q1XTB{@Ea@87X5A)j31!AgOpU!)DRkx-k#0d
zSpH$vi^L9@wHgeJ1`>*YyJOH~sbAb;PhALJgg^QVj0!fmQsX)S8k%GRh~KgdL^?IK
zH8^Ry=13W8WNCToxVRsT9S;|=5U8A_xBN^&aWz2rR1%uuUqL4RZGXNbl6ppjI=j_F
z;kKYNJT@o6K{I6(EBR+sdY0tPL*Dk;OIEKYFS_`Ua3zxmBj;C@Fv>CAzP<@MmFwOj
zBxi7bERj=VL7JWo3aMKw@@DOZGah<{md_BT)A@Ge+nqvpJoMi1K><Nc`0p>f-a*8}
ztt_CUnBqndMF30!9UkuLY+v~Xwh<<FaFt#LP%Dw0R#%$S1_TWB+kF`Jh_=U>iTGeK
zvQ<&2AUyeZGAQskTm?xx5h}4!xEI+<v2;PKM2cCS`p{u0M;tqLW2co|lXmTQVa=T|
z-sWUB)DsL5{1E^@<29GL72)*~tqu?U2Z1ESXYesD2Uz8JOItkkgtd<${&GqD3A*?s
z&nT7Xkf^6s-CKLgPMo<oa{!K=y`Nd2EU({L=HQKx(XKHI-tGG-tH-i`;`0FpD8E_d
zq&x$I2>1rzk#g9@6=$6!iYH0D+>ZG~)wULhE|sxdmARyL**oyCjcw+?Du2Q%E(JRZ
zE?f+A*V3&i8BIBA?5}}H<-hRg2A4~)a@LTZT3eik!4h5Z+%Vf-`od?!z!q2ONjVd|
z6EA}j-PZ_f5-5R(m3^T4q2zY~&)pv8;O#&mBytn!y;1uBvV=nIt-IzRy>4@;qLYua
z2jb31Vrs=Vr=>eSzw__>Se4FcHt`auSOxo&pj!5?cuaPN8F0}>v^(%BvGU(atmuzh
zkkX|eoXqM5Ro(eZ{r*9*{BdzXB~tuEf(3mx4E8A?-cIx(2+f79PLDu>8hmRF6mn(h
z(Cufop;3q(>bYL!u@6Q^X4Z@ZpMqHJxX`JTE%5>^6q+0gBsO46>`-o#MJkD<0xuod
zb>iRpQV)Lkg>^+kTMw=h;=v!Vf#PEgiL0_g$zv8(v9H<u&XLad;&t9wMpXRnLACXd
z>3+7M@4y`~vwD%psgR{{>x}sK6M8L#bW%)+F=}AbVw7D;;$F2|5*&bx<zE{{JoQzX
zbU^Z@193t7%Y-r~fysM$lGE5oW}9VqVyq)S>e9v&K?-Y2>MtT)&G^x+&hSn$5~$})
zkmuzf0*ZKnp$xN2WghF!A@{|;C!}2W$OqhK5G@O&5-~*`@l@-VF{+KEu!6H1i+FD&
z+wI|0eSW`~w7hyf4?g}&3J^ft{Ceot!c-MWGMgmEAx{h?6;+=KWlRo49MrMdi4vaH
z$Hw*uO*5A3o&Fy61tQ9opSV{Qj)>y?(t*;vvQID`7l&@hQimc=_){Ut5-jCpH#4k4
z9&IFh5{tse7SB=1$Cl6JsNUY|_bB2dGHJBc0(l7<CV}py7d7H<zv(%K@OKY2&yz*!
zkYOj#`F{x48Of7$<;MkR6uVCfkmX<u<;X1czTXu@;X5}U>)TjEw~HQLEl8sQM_>A>
zMZ(1jInYF+A3~VKaHijeS6h38sLwP}{4pblwb8^6hVq<Rbd_D>Mf|IO^1+*&>eCHG
z4|Hd^q?3i5^<=wS%8k(d3hg-0JjsKzS)l?!55_~j$R@dv?!)HVu%JiGKpei<$SAa5
zU^up)bHYdA|A8L?VHa{oo|~~fhJs;`E_*aT=x6W$>aaq5qSQ<Wu^`ZTq)RB`)&=&5
zC_&n-gfAkxW0x4SiTuq4phJZB9$xcz^{F_}a|7HCa(mRWL7FC=>OGSUYjg?8X5!t!
zg0j<Vm#Aa+r9zFS{3&i6@K^sPi+$|1%a%GqgB@^?ND%OKIBsp!7#_J~K0}^HmA#Sv
zU24rN1zP3i270uiCQ0|_-%-jMLlM!ACuE|?oexWcqCV^CLNuV%F534~*6^xeD9Xc3
ziIjtI_mSQmA6T7S{*Ca9>Emexe#$XT`FT&3=+L^8z)PW}VfCaiV4xZWJ-zCsvC2Qo
z@Q2b|pCJu67Y?&wmV&Adt|v|QP?oLVXZ>}IW__Y_JPRQ~J6Ch=1O^5!5}TfpZBhzi
zth>F`L^jE>Mo9W$GMy(!gB#Ao_JHn2%*}WtWt~f;$rhLWjJ;!8L{3fq<yVEa_7Gyy
zGhQx_Ggg&%98hGR8+PshV&Iu{?pAa8)=Z)j?jSYBd0*Hu;yHC+Xs+}=j$o>^F0?F&
z<+Uf1Sk^qAHa-(GTBYa~LOj8uL16vn&Y^*O5N`!VybDXS=WvO-EYS7S0M_Pdy0RBI
z8+9jX=#}{n$BSP>ZYLSM-XChPgvA#W$$<llC%fV9;~9!elfNcOCUIKBW1aI#huv5c
zu$F?wRzD?1X|li9Z%oWjc<5lsb^L1IL$AHuV<G-?VbC-NHKZm;bd`4Ael?|e#3tCC
z_*Fy_L~$L|%Mixay3I4|L1<)RsnmnJK|>m**$vz}pr>B0U?K@*LGDRM-?1T5v@e0}
z$f_o}F0w-A3wCN^%X%Y)OE~_Hm>jAxJmo*BGI`rTV7Q7Ktu`6x>~_{Mjy|g9pKyjS
zxtAV(=A<?D?Ywe$v=4s*c~{`s`wplx$rPh1qUe6W2iA+)?UR)NhmJx*qFEmFFs9PR
zVNNxlWx}`1=QkPCX9`ZBVgS5B9}JiJR$q1Q7KB=k>Y<Jc){RY`$#C7Vh(-R{lykM6
zTwjodesIul-F}<hyKl3TbI(@wA7(gkaB$*Kpy%`Ux0vzAtwZhw!t6;&<1r^zbwE0=
zWpB%Vb*keH?)y3)f;V@8B&smr;;=gPLab)Dx)V$R?R2$S?C@DIOucyyv>b?iw7feC
zavKS)Ei;_k85m{r!K$H~ZWqIQK^WzUAi5Q4+&XFpv0+2RVUsxe15gYj76yS8R$UUr
z964w=(xomUz5Utrs51CEhC$xX91TI89Hj}hmv9xgc}wkKi;8I|s7~&P_#{;vRwGal
zH_!s*lDvBw#?kw(wjPTp2o<3IAE*CaFMc`A7vTfwV1n|53tS%N@@7tX9vn!K1FHx^
zo5=(o4u#zMUl^!63+4@qL|t>^>Vctd43yF_hJ*<Hq!B38M5M5u!SytkXPQuRTim5u
zjiTMKXJD|m1s%hoU;vL0Rk6w_&8Z^z1e1CqDZO%UQf9Q?Oak@oSnv;2{4w$&@2HIn
zvO~!dMIBB_)i1l7zWGF+9jD$~LTn?HS0q?>dyJ9zhdvyiriYQ#+(N-$arwv-U>7F?
zs+;)A=59fOvUNhpc%}FHcwxnmxa9L47H0e~Tg3CX7#(jH!00`VGie<4fbfkc$h)t@
zCehgx9=W%&>;3B~R1j@<!ip3Mmez=-P>;w;BK+Z^fpLPuhVLRT{SsvSLBS7xWH%cX
zxm~GkN;3HEBFdHez*n*u!nTK>{t*TPn}?cR#H)%C{E5_l^cnU>b&(Es=Z7qtS<Z2u
zETH^4!9;oUSX?PXTQ3R56+=%gDHX~!6o_9f)Rj*CVl=(tBz^Mk9+<^H%$yub)UPMx
z$OMUmp(!mYrppt?$ZoqOKx?4U)KMO^weHnxk5#DxSm%P;3SVzTB8BoNeB>*UPYqb_
zF8L=e=c5QIs69dG9xUp?scF#V3}ZL@N&~fMd&^GM5v)dT3NeT{Il0jfTDo(f2vDCs
z|NIR`hr>9~W#bZ&sWpjNU)~$n15d!mhP>7gw?{JKOpCfiCP8_GjJ^-EfuIM1LHYx^
zCc9MB{e&o7bV*ZnAqX9>!svP#Qgh!0(NN@}_PRNXkETtYQU*nJ*lPx)mHq@rSAkBz
z2odzdg{QW-8f)sG9Oa)ew7hp<AxAtu&oLoLK|Syf_Ul#<N=cxBYu%qrWN^MzlBB(N
z(iFXb?kA?dxg+8wZ4a5ocyKPq8ib95uEN(G(fL5*eL?~Q84L5f-Zx$*Y(Zq&iTZvW
z%#>eW-ZuocX1BGAC8l0bI(dypgm-QMC4?YMgC~Npd|bnU)ji1?y<i9B6y``D7NK1I
z!jXluJMfB8nww-5rhm=!mQz#*W&2yi1nJlOUt)`nAkf5T{a|ckWM3(fd%_SQ$>!zb
zi;%6oTluBa)AR=?bCgMP95<2m10+!fT<?2t4lMV*U)BDg8pCsVFdX4c!M-bcNXew#
zRVW&^Ffpp2W059D;4+Dl4;iyK0gq>gc$RQqRBbBoqx+e6TN?f-)kz`!rBTIt{9Zcx
zPo@xFgK^0)9Hk|U$PdIg1D6qbRSD5li1t^J0X_jDWf{(f?2*l2eO$Y=%P-bGPHpow
zt(?NSX^h#+isJbaoiY6@)xw*Gr?P|2<dCF)pz}RV&R15N2Z7!p0#rG0kI_K3QCu#=
zIAwDao;3WPU)@hoEy&v|fks`hx2rCcez>)@9i)(ie!clcUH0gH*dU4eblw{5g#!_R
z_srOYwy#4}&BAg`go2We!xW=)!56(n29vc2;zn`c3xuyBGFxwEi@NBtPy3tHj_jNV
z^&ZsqB_i~FV0}pS*IFdBjm3C(n6p@8dU|>M*r)bKr1x>jHt>*VIY9(vcL+LUoI4H(
zVF4n(wf7Rwnsn7c>8-Fb8!0#dg5>uY_c=SrL|?0az>cH_O9pvqdvpa&X|g~&|L|c|
zC;1x8NwBgz?tUzW-~#YaBf^T;#3|6FR<b6uKGv#(vX<?8?%$+jMORS9=*p7%cL7QE
zZWD@V)i+EbiG#E!wVRG0h=Wx0C3X*`m4tJ(!;_A5cuc!StQL>mZh#C<406XD6!`hN
zsDxR}I8wD*x18%Q$?4U>UaqC+G{<hn<fhY+qx>t?*+^I!nKZ~K|5K}({Un~aE6+CC
z<@zUD)qpVhbg_z7L<_)aqj7PFZ~R$$a!VI{t-4;g3iWNe=csI>+ZVv{m&$l5W1RV%
zP9Jn{IDw6NZ_0~YDZOp2fISgV!g=_S7pzK64x>CqFB{00qFLT}$|+j@Ts_BuBN7;i
zG9F)IZNo!*?y20kixH0Lg(<hUhcZ<A)%6awhEr;YcAGM=iH~xG#K3GGENS}zO#hSg
zEuytkMC)&f`%%jP1B{p?U{8S}jCkY@>C&cKd6J)Lvl+?MB-$V>s+z<}w!Yk87^VU}
z9DA~N-oxWDZ8#pXe1S=e8arn%J|4vbGiZ!q$Y^{DIS+mp0XT1a{|bQ$QPo-aP%Fch
z9xhDAF0~+&OBdywi=6~9*g7bZ-Va5`$r70?j&Y93(>d9M`yP(8SvaiEtXDQK3cx9R
zYFx?V{7Rd|m{p<`!YaniyB6C&Tm94HGo>NQ<+R6PK#YDbWD^|e*(va?_U@~Pgw_}N
z3U2oAYOz&i&4pr~;~~5V@cG1DJa#ILh1*4eq|}#0wmU$Rwq9*L!6&z|iAQMTnh$Sw
zZ9Wg$Z9i+gccI;8m0a>g#%qj^1Asgvk5>*MI9qUs3tG?SWFa({D8c!??qeHGc_g;@
zYUt#FYdpwoeg+P@&T$zH>mQ(kTv@&Cz{vk8qFi?-MTv++%FC$qs4a6)ip3$NSEE;3
z560V#pTG*yj1f5Zut83{6*0rc_d?8}#bN{D7s^h&kw(RA8xX$j@8)<PbLxaEI_mz)
z4KDkMqDb@}{40pp3@xZYi*Ol&DN|zTeN!{}Eh9Y_?;W8Ms9LmouW)hTJ+5YT%*om+
z5i!9q`n=t$SW>tPnsvu(k-6+D5&ATO3<*qJ7Q^t%`mRo=t&pRJ6q-0JR{l62a;itO
zrt;W}koO%Jv06$4*s}~&;yY3l(K8N66cm&LLNFR|GUM*B_Hwh6(~&Z3E%B9E2^&pR
z@nV^?_OMmHKnfID*bi`4K4;!Ngp|Ew#qq+Txm!$QK(~qJH}BwH-#r0~L-4DD!%_cs
z%cpk*Yw6lGpV2#TAHKt-A8;Q{3iAK-iJ!FbCuBX%%k#1C&?;Q(nJ#pO9M`W~iUE1P
zz&iPy+OfI<;sy5QgCu``lesHo_$GACYAd14P<7YFQN+bk|G|A2$Ctt328hHjRQ{v&
z9XqlEK*R$K{E~N2)WTr!reeaKvwn);u(4X4>X?t?#)#?MPy7{E$QU%6Cis#Ayp**X
zSGHcB>z|?MS(n%RTK!6AnYekLf>K|Fw1{i8kSC7gX6|@VTg~APl&xbWh~JeB#l868
z%n3e*eh|>Go*=OHRoAcY?B4;)e@Sa7-vZWuGnkuZDmq}coj6{}m7|>h^*OH!V<;+M
zwQM-CpvYj?nLe{QDRcMvZotuC&}=+@Mp$J0^MRO)b(aJLxq#WLI>RH+@?!g$W?ZY;
zN$V@&-m$y>8_{Kou$$tt!*Sm0OOfm0S{e@nPX#&EUgAtcxwEtD387y3%ZUL;dR4Ek
zwm;Kn0~bx9@t|KDL+nYHp2NnT5*-ffpSf$Yvq8e&N=Lh#iK*$R?1j^}G%3fr;*Hqx
zmao|LvwAGj&afyLymA0IMnp`ExPya31L@}G<_{{_u&3m`L?e#T;WURfg=5mPJm+jz
z5+zpmx&mey{JBq>h>6^ztB!NHD;k}c#cM%LsneUO%FoP3sWLl$yGDC!g+Dp3vv4xM
zSFRaOHG`T%=aKd*Tqg<3k+V$|RaJ4N4u>zZvJL=lHs<s?52f{ZH}Vu^z2CY{cY7P4
zKf2hsyp-mb2Cq%$H^`LDxp)!s`CcBE?DlBi94_qFVpa5L2r049tUi7rAzUq#TfVku
z*Lu>b$~ZBQ5{zg}y_$MAg_l9VB_p_?z4cSubsu1UXqmr1FSNJG_z;Hv{*QC=`<?T<
zzM%h{{89<dw?yX-hGUU;Q{zN=kQ8k|XgEAlooTfFeLt;C7s~A#ht7Fm@!~Ol%IoKT
zlOFL<vlsPVQ`J^Y>uZa(YG=Fc_|%qW8DpzJntbKA+Q+6?@JdMFN?B(6)|YD@LtVnN
z&+V^vmcmk0^>GOW?_D+72zP<B%@@o)dTTRpL^ax@uK<&`>$ALL{$uw!W5uJP;pXi+
z2EbZnWqVO{edi0n1V!(uaIl@yzzf7G<bw0a$$(d+T|(FUYniy}%-LyT;&GS$t4aON
zf|7N6hxwg$>ytk$1mA6qkJ2BT`=CZL8N|ns#o5J~v92^IO$aQjoe2mMi1Is9yqm>v
z5V+NjdMyIjj!J5FxB+lAfLeNb6d(B2JF2-P1}a`eg7|sGbvlVo<PD|n=8+M6TN~L-
z5aS-b_&c8G<tDxl|4@9}s}d94cfcW*hK?)qLHVv%1kc`8{3bkKxX8n+UQzmXc-!sU
zx*n9>s`h<2#AlM9{b#Xm=gri-`PayXORy2YL>+4b-|>;xOv!TezSGoChnJ)!1y<uq
zov)F;9J|ZmcwI~W)QMs>X7L-Mf!Oi;9-Mm$4CiHI==pzM`#-i*SP{}iKU+zP-y-aA
z&S<5)xzXt(b{x$;IB3QajkgSA1ZHMt6ll==@UI*@xPP92@elD9y)`td+tuheLS`Kg
zb4F<mjV)vAQ!#{y$Jq&yXQv1A{l$R>O1s>IsUia!v-YLjbeXJnP!`#??hT5nnF0d*
zwqgLD(;}LV%&3yJaz{1BKB{zkGu|i4=vtHP6Mub5_+K)P9DKtg`88o_PxD7{S?lq0
zCEtG9``y>$TD-iyzNXh6HphZ%z+prfE#8j)uwkWlIT|2HJ^B8A2ovL9-|$~vHb5>=
zl!rd+^S)*~UU^2lB_gGwK?JBddwv*#N@;I`)zrmzWO4C~f(3SyJxNHnI^qmpe45rk
z!ipKa??3D&N4WH#%{B**F)W^rS`c;a(s^9*W~)N)`^1mqhgq^l#p~36Q2C59vUS^u
zZ?m*Lf@pcI5}!W)zBT_ciU0ktLk`rXjV9+2KYQ2JQ2eT9tx+p(scoR?{sK1Q;r=t%
zJTFF;Z;p?@gmA6js?UZ<Ino;C6)~X{Pu?`E|6~QLypG;7Mas8tR$oa28w1<<3KhSM
zXdvzK{UM<K&!4@_5zd8iFK3%u|MJ?G)B28(R$eY3c0&iawiH_BNs*r+RguM&NW6!*
zPr(1!`<J-;KSmRN#cs0eCX5yh=0Vuk#Pj(}sr+$N{`b3rR1N6UMfCHr)l*>B|8G@(
zKe;Xm&)nopezVB=Kf>pK#&aNbxP68?UU2@|KbKt*8_N^=b&JZ`?MJVQj@zk}lT%dh
zlC=)d`yBSVP3yOg`#l{8rmpo^Z(_UuIzuk;b!BmO5FR-PU|WT>7G?(E+LO&Oc;Uv~
zW1IwJ(_zYf=v2~)5R;1CQFkp5|8w>ZGw`~1JnnYdGPyYaZI(k4fszIF`9k#noPaKs
zfNnx5R7TbRI2G_ex*}Dp?~Qusk9kl6;dg>A&IQ_)>p${1OM-xh{dsI@>-WQ&>|b>V
z;}8xIJB=l(ZSTO6##Q>}VE`1hMMf`~O#ln;m{&)5W7D<Rimc7mS5U!X`EnilRvDu(
zaPbPZLKRVo|L5c{9<$qz9v&Wsqp>d$5&U6(0!szDizG2Q%rn2(t}E><XX(e<+|>rT
zIu$_$`!K9^Pq*)p$(mefnt0QqWn?_If?4*L+Zp`wI#A3;lR?yPgvIu=dJV4fVYFGC
z?oj$3$9A=oT%Gb_J5gp+MO(H_E(d7(-u~>8&o3;+#l`E^iw)LmM#=Q30Y>g?Mu7Q_
zByy=ZHj#|QMAw-X337z^+s5OCa3OR0f#DfP%S8$dWQ0Q_pX;Uz)m@XtrSWq*Z4CFD
z&vBk|a~nC>#H=S{1`R|Y>Dcw@>@d6HXzxq|gKo}N0(8Zj%Iqz+OxKu>d_Ov|3ck6K
zHH`fD?E3lBK#|y)xUwN!?V_HLhW&!wX`b`mmcom=Z)&sG%f&ny|J(k`u6{a;{|Br}
zSnS46z|}TV=(__O!k~=z>PFp{H%%TaxVC+kKdv>-u%8O|ILzi)+wSiTos|~tXYS@a
zy}i6dpKf2i&a;S|_Jbf-nY^yVH#4udokfJ#xxaiH&jcgL69#9VC{7+dt}fEGtN*ww
z!rf@=KWw0mys8`jIW7Mjk~DBDD=VCbS&v`ev~cq}p7@v6+}=yZzK%mu$L4W=nG#ay
z?ph^exy&isIMYBd7_Ld(F2=A7DA6ivx!=y4BzwH4dA@s+@i<Kg#JLzD*Q7w+FUlF4
zDHI6;)l+O-JUtrzYMso4*_-(wUAQCaLzY^;6tYosQh^<|F{vf@!|8?7=YAlm$=?w9
zncuNtaZ-=4_w+Q<zw;&e0T)<?J|e4JCa+8a%!%$Z&hN&{(UDwksdp53=JW)0xTe)W
zNNBc2B2{~4PcIS){w+97VkHN=<_BT$?lU>vdBEkM*8y?*-4ISl{u8>NZyle>IZxXz
zd=7?5_h)z9vbkNMP5d&VNMBmkgXf9Ub~Lw22dx53k|0-BAC|>Dv~KenT?mc0CNgM~
zOa<`~Gp!umC%j(fY=E&X9Ds<~nO)v7ot9OCz2i6uI?nZm(t>-NK4&xsx-V}p%!|jn
zm3dw-o%nayr^G)AiQ6BF;rO-0YP5Ej2JZ~K3F@ss_0TrYMXTF&jVd9q%=?E!ellm0
zB{o)sV8L_o9JcXBSvJ!rU77D7;79vXy=9U4Bn1&a5%uEfPkUDZ9bTstiJfHAN<~32
z(w=UZdXxLhjpN6C1LS0b%(^m!z+ZwPFo?QqT~Va%^D*1MixCXoK+|D79tZA`TXbCC
zP1;~;&v$v*$u>3W;Lp(os#)e9uhk-y&c@NER+jl<wNBvAFBDzVgdi!%wp>>@l6dm7
zNyIi8_B?G~+mik%6cVPuM;iANK$mE6ySv?FDu3{)3Ng*_Bc`)%(vKx>pX(7H8iveY
zT&|Y8${&WwrV$WNG@^A5v%=3aFE%QXh>7jtzTcCPZWIpVcz)J=ySB-fpOAR+w3weO
zt*AW7+>*X_yb4%T)5&aBss9K|R(yt<IHl6*#*uVVfJ^0#M8Kk@s9gq)$Sxco?=fXM
z*!Dq7yi(R4?(kExGoyCjyeaOt_BjBqQ06dthgljAyU(cIbs9ZQ{T%T)_w>6Yli}k>
zHCQ;w(NaX^!X_bJnbH*VohI7M#iFM}UuG9!u46uzzU(A(=;p&c^Wm=Pqi=U{4UTz`
zo*z|bf{hMNJkq<2GV&8C(akF$-#@KQtpbI*OCVUJgPdCwNAciJEzLEdnj6`huBW%|
z^8G5lAIuKru{c$|oP`TrY@T;hUdeLpyH<n1B}F5cqCYooDbZZ$?D$q!@Z0acOEXus
z)h+9;TAOEJAvP_}6ElgBV*ROxh5fJ$SFQXyc#rY_eS4MHYq}Plu_>-71$sp_)MyRV
z!#eSjyQSFdL{0bEo<0J!Kh)y59#e>#Mz8`bg^R>5-t`TM*)sUC7N@DTneNj*6?|`N
zZw~-$AyUE?i0LsHwDv;^8c$}|3dGE}JfE;K^0)IV<V((5hlL`=m9QZAN}p9CtyJPl
z-Cds;<MWQKH1D4quR7VOH-zU(vEZH_7ecnX<Nz96(s>cLExX9%SFM%J*9wXjyw|_t
zcE~*m<Xgb_2>C(h`k7#SR<E!G$Kb`tsoi7}p$8l<5eKHQ>T2Kbu9&AlhhIyL9xT*S
z`+7>V>oMxl`g*YY+8Y3KYELz4LON~T5lI#;sunnP{Zti$q}8Xa^;$l8aVEF=fn2N?
z$IOS4Zc@O$K%u$%l(32PdCC(*v3&e6?97Q*-XV&w`czkpuY=?l-{Ovsfg0ePLT@bi
z7K|1w2aad$yg-7=?w;f1M6~ppDBf?KsZgUms2v<HkNY)97GJx$|Jf5vLkFr(ecapV
z|FA?1sgzqj$*^swu6zfqeh%yVHi`_W_`-Xf0nP2QJUnAjK1=!4NfBHUPoA5|*;PH(
zR*K8sMH66V-7xe+2RXBAbmT^-+W17BOG>w$rk2;m4r?5GivB&Ii4U7fhH1{o9ETCq
z|8{*MyWd(tS$vO-R=X|&x8}%D9D^tk=0%&`L}G7eN_fgCgM4r6?InnXxbt(EO)baf
zwu0-h5A6pq1VW@SP+Lagn3r&J6@Zr)irrdwQEY3vnfqS$%8~oy<qvyxF$+_zGbZ<!
zUr&9ntJ6=1qCRbE{c2T928g#>65*LMM_(lxt@P@@XGrWj1o2YjVk-M6@3KzI6XrO}
z?43<r?p`66o@Ec`;j!0&TeJZ50p-cwrbGNMMg@NwVHg--NTce?l^9Ple_B`nVjd2O
z3)gzOaMR=nNkv1$=XxKpv0Z1Hr-N))MzCD&S`g{}EGvc<j}GS-t&C71H#w{*j_ow_
za16S`XyM@iX$6J;j~OO=iM1HSTsJL%t@yFl8kcc%e&(-IVR%knjHgTANi(>YR-3Ob
zC{c=R%U7Cu#}taMPAqYSTm|RsSIvTW#_{LF)6&x55)YcKQAX5ANI!u~@nS3<upMZT
zX%8|b?WXg#*4qcluwj`DJg4khbYD8uu3p4t=Yo8H+vJCkSn>XJN|#t-#1;(X^I*`S
z#2Wp6ZoB(BWkYLi_hHaad(_C)+AwvjI*I-Y+KTx4*@c^%;ftuXQ7Jtj4cb-kY1e&B
zt8Rez7s5^{Sg!OiXBN}TsN&QyS-VjEiuiEsN9(_iVb?fy*H}*0#rMnXzs=OY7cyTN
ze*dQ?6H+Hkk$-kfHM)6bOvJ|BP2hxH(bX=({tDO|!2{v+_J&V9g69oa#tcQP+3cgO
z`72(IcZrInf~CXyw|Sw!Jku8TBu_K4xSS#Nl+(j>e(P_;oL**qX$`z<9;bl>dC{#6
zE*>>CC31^l?`KGXQA5loc%Q0elYa1;Gp57MV67KIHiX@tnTL__Vd96&uwmmPBmUsQ
z8jm=bsX$zPy~p?P8aj88@Hs#3g&4PUHR~wEHk-gjY{R5ehx~0MFbya=m6Hwbm5XKY
z+*Zt17~x!9VI&D`QQ3axOvG}3Dc7nX^BU$CwfA9`3~Rp<mCBeeD@Hgf6FcUiTj8tg
zn%c+Vzq_?CcYaw?WBH*0bG14aOwnC}z4`!z^gA5(;nQ2@npFNW5qAwFhhQ=OrO8&7
zG?A2)GTkxDph+sWE^zZG&Gt*@WE59LizoHzFTVsnF(BM$xo7xmGt>dbg2r!m1Fn3b
zj(A)Yu=;gZuL0m+VWsUKCC}Yz+bO?G`!;8}(o{P7(j54&!h)+Pz?@<Kr}4x{e{r#m
z#qq*?QC{;2@!=7(X68zvnDI{Cc3o_Cww&T}&4fa2QB-6_dtgyyebp9#$a);6c-ifQ
z&t^BVxxxyf_Q+<~aIxX(oxY!O#8yGW&T(!npyOL`Zg}k`C_+IzUMC|X!!f_Cy?3g1
zH}9XPC04n32EY|)(SzV=*2~r_0@?-NsQfk;yT+MNaB(Bo*Vk?GEOm7WZpCE=D#Z<Y
zKBux>fgSEqJWV1kR{q*}XMV~Z;E?dIZ}W%M>A(it1b@8WjCs+{df}@$F?-P+0(d9l
zb~s^0$itJC-C&jz=j$+_y=Q4$;qK$gufEsv;P;I1%wZo2DZ;qn;{&drC{N`6p>^;0
zyZtEv!IRaE6kB$iPc2a&+fys-<G~NN$0Y22wYRH6hPl5aM-wVI!YL5ewc$S{3Ft0}
zlQg-I2zp(~^kv6z5P>|7ky-m2w2Z%I9+;&X(4CWY)pA+>@An6^8q_4<nOf**1fPVx
zM(zG~#N&w}YjUNsh`mMy|2ho+<(q$8!az|*kXc6B3Fh(mpC<XAs{JovNDl_>4nKEe
zY)|u-ule^S{>Os<<8kV3(3@gh;s=!d8D;vvMg{o-h7M(hdQ7*e|FJ{=`UC%;2`W24
zfrJ<d>!WzL0N5?R0bI6#KN#OF!Pu;z#9+4QuZyJSk9(;(PYK!CiFB@7DaQgHkY20*
z*rSxc?a@}_W2S#MSTM8$U9;Ra4aJjBp6Bg=fj2sCi>VJ`;PYe-)MR+ISd|^Aw3WPW
zuJ@euI_(eNZ+NsWX5*3^Pepwckz75;&StPSe<qkPHabK6IWkEnyvN>rY_-9ESqoDP
zP4e#SpG&jK?Xpm{M#5D{xbEv{P?aM2DwYiU$p1to9}GZe;MxDng4n-q%AcF-m&yHp
zBg@@rG}d>a&X-Bw=b1=8uMu2ub#;HL`h#RFQF!T>Lt~H<`0dmw2`&(W2w!?YiW%k8
zcZytZQxe+L_ne8^gT!oDTiXZRbv9^GFwi#v;o(xT$x7K#{mAI%Mw5ZCpW+{hJIX-)
zooFo%m*`)fop;d)gm9ywT>)DOr0p9T<<y|Y!G<+FQTLCADW-1h<p${PH#TuoLW&|W
z$II2Os=(#WBej=ikgH57(}`ULjHs()ud`aj5qorH@y%oP{^q$-V<JRG7FS>p=SHo;
z32Q<%#(sm)4#3yuc+Ymm0rC0y7gPkFH&KD>_l-!H#|%H;t0Q)s6;~3mR{PF#k|4RX
zAb@jodU6PtAWm?{%JSyj!F!bkc^ZV|d>zZ2L&jxZO0g7$tX6O)ez(TOy)1*$0;m2O
zCqnz++%4;~xPgdHp|Ip+3?GKyQY$9$132^XDWA>FlKaQ1c4#wmxjBU+tS|W@oxfe=
z*J;=D>r3%T#fqQb6xfzYx5~x_YwEK$H0r2N4`+$4Qp<b!m;_CiGCFMpay=~r7UySq
zbmk}5s;Je=m!p1oaX2WgO$-drMXY2MZ=3qOo`~C|7|kC3`Whn@z8aa|g=UWIez$pu
zxIF&ieCpHoZSDIst45X3t9Hm9ar?5aRQnzF|90Gs`LXB??EScwBBl%vs<s5G{_xo!
zR`6_2VV1jn#QwBkhQh%KQW=Q#G29~m<JPTHGm8fiHipcml1RhwUpYMX-re7eQ&3Q5
z>X~d!$h|WrUiE!IMQEud7koJ6^6>WF=sbHtG(yvyB8g5#FPktNV^UR6-u}~nmCtA&
zvl%@l#xunI-!6SLWQHFbSkxAkqRF+AD)SF_sTiL<tNSO+UX7aa4?Hwbc!pM#-Cvbn
zALt9?@_PI`^Gv~&$@M)Uqqo6)>ykXRkqBZF--$!6rue>IO!t-|(cw6Y(Es7g-`#ZU
zFd_8j)utNmJlfu$f1z@G>ms`M+_af#fX2J_Ax?XdY=5HX7Z704182|<TUkMW^LwJX
zVrx>ON>0gF%*Yo8nXi%k!oeK8jWG?b)>~fpwwFGQwrZ6)WX{V3qTlbWn5BZ@@f%KA
z1_{2z23Ex(v!8R=o;pFMB6MjGw+F#&6TD_O|2p2f57+m;`P;j{@&ggHd7LahT{Lb4
zD+u6`Oc#P7AtH5LHHM$p91AId3s*btjWtkYOiDuNYlGYe{Z0=2#v;3MTH~8Kmh48C
zcAkkv;%If7E?Wh$i^YgNigk6ow<n{T#qpK)uk&xMj{Y03U@I3>SxT8*NgNbeW|h7^
zZ}o#Jt&$(g6Rq1Vcc9yz`%s);+>Zq#7Ne)b(`QH$peyuQmx=n^GBl*`>X~5T#7&Ox
zGeFkgJBq(#4oT;G=BA{zDwHRw|FC{hz{Y=GTwW%^yshqTbh0H+B<7&5pIOvkp)pZz
z#40uxSWb~y`pNlT{m_q_vOz!;{*|_|!j3Oq%iohTwwy$-MUE$5?MGImq&sVx%pahn
zD9fou2lm=8?>2N5hsc_Nu0tUwwmel%a5D1((P}a};cK3y{;641i``Bc{{#5*PCXXh
zs2^#!2sQCX=vmsdK^9MkGtJNH0BYn@VsWcs@o9t%?OD1F%TF=3jaUkYS-kAdUlUDH
zt-``?0ioHQ(9rB#Vh~hkot(PhAJycS6(|hd?kyj)=>&~+`sT6W;II{#kG~nc%+v<5
z@?f8I<>={THMBHX$C6JCI+6-@o9TEl0My|{LhA5QJ%PIK#}%hyk_2F4)9I-yRI3W0
zE6~uGGLLZt+%-xXAzj(o0G6l*Nr<y=v2Fv>^HzDBHjB1Mh-ve$i62Vl9*c0L@C=>k
zGxR#)NxLl<>%e3&?xd)O>!!;IG$h!(T@2ch!;tpFe8XeYot@m7>{1cv+jG6%Eb;GT
z;;A?|1aMMUW5eMHQsHQ={J7?19RP2HC*v>Zy1XdC6x?M;b>#``vF2fF@!oR5a!fLF
zIxpI4Gk^pklWqN{HDv!y3Am60-x7(cXxFnN02_HN`P*NL9Y_Llf82uC7wP|9K`N6p
zLOq+N(=+HNekqiIz|>|B9`y3-wDyNoA5qrc$eJO(wO$wYCm8+5?Qi_s?Kk2YZ-PrG
zm^_xN_?$9k{Hr<%w)r_<SK}|gU%E6N3sCi_{{&dBD17Oky?~yXBsNXwAhcstP~3Mp
z*7}q}j{~@0Hq+gAFr9liI@if8D1v^B*AI8l>2QmN%k9hMvGC5Xy4iOd=WZ#p$6o$v
zbUGmsj(wHdp|eQjMbvNFR2z+UJ?&b#G;MUq9$y6Ze!P4-f2>1Hs`{==1wDJF17Uv=
zY%MM?uxt${G*gW(^Ia$s`Cj?G9Lgvyptn)XKL~s;U9D^~o1+_3Pq}tFEnIwNXS!rM
z{QoibmSItLUH`Bkf+!&+9R}Uqp-4#@bV>}}9YZQ8-QB6u-6b*PP|{sPcMLV~Ke^KT
zzOLtf-!B~Vfn#Q$``ml&wSKX-)Cl~vW0rr*lUnv{+G(6B12t1C#t!#YS)dMZRo8HN
z#>{L`VvK=TGRV`^ri;NX>}!HD*B}vYGDZB5;}auaIm!5@@yquC>*cTYx|bqxlxH-!
zIz`^<ersXe^1L?SfoehZhso#N9c#LC%gEb#f6pd-NSSO_qed`y?<eK`%^m!in^D>O
z$U-wI5-35_S#^dT(UEA=0%#%inUm}SE3x&N#JG9S)%0{7CO9!|)~llO1}1n+2Un6&
zg1O>tfUcJXWYeKmbL(tIiL-|Xnu-a*+13#GX0thb-hd?eX+wn+01k-9pu+4c&}t@N
z9J8t<&$S;l;rR>_RPUIrHEHQmwjGZ}b%rtNnEO5zAdCR1S;l3wV@bYRe3DQt9Rw;^
zZxAA((_pb*@wjT%WrHoNa$<6DS*oF>OwR<;9B!&H#A0_|w?)uw$yDzMy8N^yEZ^Qu
zE_X*L=u({ao2>^kZ6Q{7b^clZ|NO7|pHnvq>x=O{e9GwBV6JykYg)tS?iCH^SAH9U
zM~c5ERAM3o05*Mo{G&wkpJ|#D68R4~PKKhKkFS+p1biE|z+&Fw-TT2BHOwhgrdbR+
zYNvgk$ggv(hKVl(A2X)8lSNFEC~SA=ko?W*FC;)-WqOJ^L2@iy_sbU<;F?>^kLzuh
z^3$h@a!CbaIhUsXGNqYK_oFSMe*S#V6yxev;63>y!P#gdvEM~cDGWmycC0m1sVvT6
zTOmvyD(`1G)d_eW`et4M;+R;VvvJZ^Rxf}F@U|VAhRa<RzM#Xr;A0fPnA+|zPZ!_X
zxE7d?gtlhoXkI>!=Q3ai_34^=K4!vpR{6A{s8E#l2PU9JA)>f;Hk2-Va7VPJp3rfk
zMR{?$50SN|*B`V}QC`MTV1?Ni$?p_tG)J}LmzpMEVv4Wvkkd%Lk?ZTxByY0;G?N>Y
zbe$oNWadr#*0UNWd!zP8>2dFccY@%(MTXL_f6gzC$!x=urs&!i4%bQJsg0siG>ObZ
zd77jRhy&jJ<M52$z_W$P05sTF7IKoUjzzfMaaa_)iodLE6xv$b-qzieddanZ;=%g6
z*ZhZqoF6s*1uihZgq@xB>dLdp_;H??s{&>GVR|zSSIhp-t+W<J-&g&HI_X^ov~t2g
zZ&>b0$>QL%VU<170pajvdteb`DXLUC&`;ZZ5csHxLk#NkoT#Mv;Mk|dhL_9SB7y!I
zb7#IEL&AxH2P+E1!n2l%!~+>_6qm)5b3N@>lm|s&X^&?aT!gzh8Wm;yh8@h{|Np}d
z;F-|kpRzC<H-M4?skMf36f4RQk0}OB*sIhzoA_i6vAgW<4D^8-c~N^j-fHv-N#km{
zEv5{}FXW~6RcFB?!9%t2w@JQaFo`+L;JZHWOd7)T4+Q{z7b`Nw;SL%vdi!}!(l**X
zx^T*SDi%{=pp3~I$a|f%pzF%qo3C;a*553rS@E)ZjBmz5%wdk@1!=!#kK^)U<=6$T
zjzu|d`s+$zfwi%2#}ls-s--y1l4AfmZ4x?BS}Y~HJT3aO`B9o4ht@W{d)Gb1SejGc
zfhBc2`gi!?B4_+t{KOO~U!vOORI?eXY~YoeJ@!VG_9a$Qt)Z3qRLi!2CWjhOWO&D=
z5$SuG_`@fKja9+#(1fv#J4PG7!t1a)jEy+?1;;#7c8hN)D*Uy2OXQgx>QU|fT!ZR3
ze+XJsocc=?e}@iYEB=5Ejy8<3E^p$D`KZty_RVx7kzoIU1O8G%&q({s+}}32v1csF
za;ybV1fI(UUl!wPK9TzeaK_kKhN7u?<?zMt<m4(VD_V9_v7;5`TPr5|JLWf=tE)!-
zcICQx_OrL(@^xbMOJAxu8y#dLRvDVG`p8*(r%_&KEGYENWj4Gn&U);w4akcSNzj;L
z7n(Hv$0j;gzbykj94C1HSq1`cF9;dH`fu~Vr!d2UZ<Q7aZ)-1@m$bGS@-zQ98(Ko{
z_yOJRYyO%314Z|Y#qU^xLwU;Mfj{_PrLO>#Fs|`c&86(0`}RKuLFEOo*-@g!58WmH
zkud&w9{r9LBm@7r9Q}#$e<KO$V%PWpe(j}0cpCWYa{HHI@Bu(Kg#MxGpZLeG0KzY0
z@wuW8FZL58jEc0qe)+N~Lbf3uW#?Dr&))|qodq&rcZy!)I;eG<0xs)r&5?~Os)Yha
z<ih@t!MIi!_}+z_8T|VGrSe~!i5GdUb|`8k`n|^mf=g3b!UL?-Xm@|tWFB8+PA9(J
z0`F9ctjz%K@Tod3Zqj<2@*$4e4{SvJEJzUQ78M=s`|aV_(n7>CNcrH-Y%z6D3_4e@
zsJu?F0j+-FZ2#6^)6N_A=Uo+?rl$<kRV}#JCR6D&R+egb0Bw4<w5I-5Hy^jI%F1F|
z>hkSOGac%jZT-#}ZNO=`V@IC|kgl{<+}pBQI#w^&YO<govA)rl=mV5W6C{hI|M3=Y
z-;fv*9&iH}!PM*+5z@8iy@IuEE1mm&Y9+YBg4Hk8W=U#Q5M9NdZDDE6_pDt#9hi-d
zLcx4CbPvL2$JaEzciU_OfaVpCkqA&PMqq5!{_!@tu#szVXG#^a)z#!bj(rdQydI?n
zcvQc?r}NX?RF&ESos@v*aV(~6yHM1fcEZ}}(c_PIhGzu0+O{q%FCUTP1+_L#Q?(S+
z!I<ZR`DJ;RTI&U-PV-etnG(6aT4}P76Y04ZTVFU>`8;i!o2a8jeyD2cgKEfi_O4#T
z6|be#SI~F>B0ETf)lWLwW7AL>{?sR*{%Ab014&q;ReY{LLT~h^tGSJJn$wt7SAl31
zIRN?m_gYgDL%B|D#+4@-`(TsjtySEx3!6_PNgS6i@%(cZ%jm-MTT|>>bL1Z7XxUH!
zO<Dauwm%=i^g<u3FnLc3IIAVI>Xb``Jn~#IA297!Bqct1_dQ$myUKl@X?JG}|Me(i
zj&04%nluzM217ODW~EZC@a~3h@0&1A$$|k;YlNoeU9qHu#VmNja1jM9rscW~vaqr7
zMMJrFn$pVMi|!Cb;k6e9$pm`q3+jHierXM+*8H>fpnb-~)W#@vFAIW0%zq~I0mxfC
zJMDl^?~(JV(95m&ZFtzne!8WZxj-v~Dt+MYQ$F`y<lUWl0{ggv4uB?p0i>vWwhWI&
z<>EgzqJ?Ez_4l|O&k4RMdv)hFLIctg@tfHqNWf^mkNbs_q|L@#m&;}A?4l!=y>iMy
z;AlMF7^9JD9NSL2*E_zv)L~d*I&|MJ#}gYH`*~jWLcjrMsqHky2t=^HN-|%wO^);(
zh?V=&VzQJHCjv59EF~DtNc!=XFxU~_+w@oIABI=%z4v(ew24ymE}$imIJo15u|A3f
zXndldj79Btq8SX<%bH(_fS<gMWAMqNB=Mf78Sum6R;gAY5Q2A6;WIBiRCP3Y41wH`
z8qbqiS-vO4#;9v6NP6N^@`>?BhAwWS_7oYQkW(*S%N!uDNV%0aRDbaatFG>?Y9bRv
z*PiB<N=a0<dCq{E2IfSfY(BwnFyx9pmmTjuiVdoHR|EkVvjd23ki2kzHY>mypi`y=
zhq)D)7l73oKL|Eao(KR8Zo3`okLvBm<HJP5#X&QK%5q-V<X<`!z4|2Ehn8V(8$AHr
zmUYg2a<DOu*9TTA*XWQdPRqCF3E{iSfVbR|KITOUFJ`Bz+1$V8<a^QtwvOLQTv9II
zWSL3)%vT;&$xqypwsxcZ3P~Ce{Tv^4D7b$qw;eU_V;0jZzL)VmrYFImU_MM3?Wt0R
z78^xVUYuo;vZ<LF!}ZZDWep&BsIYW3;vzB^)cqrPk84t?uFa^|euzV#kxQ<8@Py-|
zM${mqX<Z_57Ui60TJ4X%tgK0)qCix=&=fvDN*d-L!;XTFoLML;$$eQN)Dz`TJ>qsC
zlV=5WR>j#Xn>H3kuXE5MzpG&IP>wmo^D$qpRBGgul|dn<&K2aM#Gd`YsjHw70K!rC
zA=i$JxnB4DTYB^-6z!9I|2Z|S0nkFpMaw^h<Yc#;Mvo1=`{3PZ#MkAsHxyc1ZHTaW
z&mN(cP(ZAlcvY`<BQIpuhr;!s@QdOqAGiduitUxS9BHI>3?MN{XqNy^WcqHcA!n<<
zs#=E#g#5f%$d%R2$t(ttsO$Z>GTJ(bL`j%)TYO<LZ~q8TQm{E9glu^ntfsN&Tz&}2
zjeGy_X?p{j{&e<=Nxc%iZB?t1(hI8b)F=2am}<}<CC12{CrNMI_*rV)9Tn@~bJxHG
zK~>6Q${_wvzzx%SKSk5Hv3G9{_N<2_km+t*_wJdv12Q0X<+|@#nL@`m)f1Zo0mEx|
zn)OW>kO-Lbv#s59NaRMYcf-Y?+Y<TxJcXK=T=Dy-LD(Ori|*14W|3-F<{-tTxML?R
zSIgen4MsUSB@g84)m%O6ArK$FE8g7SvNbS=COrQ<;h9Sm3MW|*g8TYCR6DKz>S9d`
z@8ht0PBF@t>q`VBOg#j3hRb^dQ2Q>w{q|CwNxiX~=ceRT96l5|d1CJf4MmKs<_vd=
z>bOmyOaKtsD<~p-vR_%$aXAdnH~}o#bcAu?WNmOX7Gu_A<649MylH=87UnD#;AO6q
zS64dhJx^O!fb<lBxD^PYXDi3fhpi1=S81}@9a|H_kcQV}4LnmBbWK?LTSDKgQT`UT
z0TRTHyC#cv<;hJ9lTM#uCmCNPh1k$Z)1f>%=K8CS<k%;JW=YofHr$MJicp;WPb~vp
zM}o`O^qzaBRN=ofB;vY^j869DBYxX|F@$Y)x|(lm&vrQd?aX}9t-?YJf@0%P?`hwT
z(N9AxD4?qJ>ZgneTetEMHnTc0oV)zG=6l-KKNB2voc)u7RzQ%#J4r_UoH0j6&2k#$
z5Qtc9JJmc~lR|Zt>)uv0g5s2~rDT<!Nt9u6U3Tgs<0kfJzQ6~U6z05?X4BxY^v3N#
z41IHa7lod&<tU<!iGm+t@!0r=Wy}Jt5OOgTOb98H<dE3ioYa}3GvIio<90=nfW|A_
zreA3IWR|z2zMJa1a$}^ad)wG-6@v!Xx3KU9D!k9%p8F8=U!aHA+G<LpcGo^Updp1+
z9j)@Zg(f;?tbI$M^NCEscf49zEu>f<I^e;N!r{~4L6?~1$Qk_VDPO+FjA^!5BUC)N
z^c~A!af^|qDPF|-9?4koha`8&fgAvpdZPp71eh+=lMNJYV}c!f0`x8u8!=8ju4ghq
z`Bhx+KzpsvKxyReSP2#h<hVp5nRAIbkxT;;TuCe07~I9gQi)%(9R(R<7(b@B?a0gd
zM_cI<H1*FsgNa0bfPa@k4XVmZkZ@~scd#(^HPoJ(3+%yNU^ivMA~1GCXeF16bAxR4
z_CoJJV0uE#M-co4gl`J87oN?%oZ+QHT%*UNhoD-pbbG1PHo6jRju(N7tdDKa$-|As
z8tZ1Pp!wi@8an2za<b2Z5jqM_)sYPV{V+FNHIJu%|H{Cx?^;DWaZ&mGZj$@+Hkn?2
zR|=z9_=Ot-4|FP~`1drzXNxABT@_A})Yxb$%=J}!^5@cOEpYtpaoO*yjjGV6iS#8x
zJC=*qd6{~o10CYVHcX4mdH1;6(o+P}sOCu+Kv;!LZG|T$<LyS=iRxLVoy~IEPbpzn
z{b+B^jWJ<Y?Cu0kJwjrK=p88T1(u=3i9Qupy&~t5!5FPH#6lVsl=WDzGBYsPjg77h
z$0#9gwQ|2C$G?B<3iU=cbEx^YYF-^59H*Aht8y1#Lm`bni0a(ALYeDMhR-ABHxPxV
z92Y35t_IPSlZN2-<kytf4cS*olMDjylRzVeIZSGgLv8Byf>D)^Kh%MT0yYJb6O|o4
z^C9@Xp1hc<r4ujHB`yMJ-O~ix>$rfV5d&dBz@sEFZyqkuT(faTtvLJGb^D_sTmO$Y
z{JNOZrVGoFh9IE5Hl~_sX|ZBlqfrefBhvz)@lh>*U9}_R?bUQu!jhPY<ok&D`y2xR
zrKPV~#YE!rl?Rffg$kQL)~-|rL`KA+3LM4RdwGVs<dTZz=2I0W7DeT#_Qz|BPZCqO
z2rfR2@Zio6IT+{V`x}k;7r4Ke*Zr)>CJt{rC}yuS37iuJs1bG~Ow6(gLh>KbQp44Y
zS^;B7ox|ic1wAd?2a9*DC~c|<R5l4$E>Cfg=Fc|)#VC^%hZT*RXE&2xU@)}rQjA(|
zTE{e^g^GD`8T2vKpOW*mU8?sc?u=;q6BzzcZfYs|XkqTIlW~!t@RK`J1gwZlAM{c_
zFL!@wA8W~RG<m!;^RkI}k#W9D#=F?#&JkP|yT}B5@!{yBhje+MCn-cq<g0p4JXzjO
zz}R;t@oJfH8DE7lCvug-&lqi0hC5jA^VP;q7oh@U*UIqG(tsNc{8ZwYFMsv|2xY0}
z<)Wlodwm1#A_C+c$;upCVU?7Bp7+0G#QZpeiw&`blluO=BLPzvcRV_#3Uj{)9vZ!7
zBz>hyCTcrnNVtB<5t(tzZAP7B^`5Rq&o<}pj2pY`F$F#qG<ob7(;fc7tNvcU{?Nj!
zLbDA<ZnX#o(ThEc6j4da1@qXD$CxS`*W+)S&W%VkxG+2N2WHS%(eE@K?|S73gjpzW
z6k+Y`IX5GW{1Zm5H6<<!5!J6PX84z_nCsmfM`KYlxu#{-y1wb;G<1Kjqno4_unq&A
zs7b7O4pFAWt<~F(umj{xRDzME^XYecE`li5;!uE$iVD$hR;)nz#`QHjD}Fs$ERooO
z?I}q=NiMdi@lMk8_+G_?sY=x2N=EJP+1({T2*Gr4b8|_g${?s2z7v!GwsY}9ZD-wa
zL@#MB>r~>dl-soiSC)JLJ{h|i)8=SV;3h{w21vTLC$g+KVDFD3!j(Qezpac}qmn@P
zN(j%ZPs6k`)iF+ec{f{N?lGv$N-``dM6o%|pZqd3(;1>Euh$`9HPA{Ij4;U9p@sd7
z5eusfYuZ$@Irt)TXqgGF8oj_w6BuQPN5AiQpU+uhZIpN-i-1Mi?c5oUaAE7fUVcGl
zd@`=!6mm_}^iSN_P+6?`{a0PXpRBx_;_w^}+7NDx7-&Rhn>gaR{ScEDjurAFfvfn~
z*Q>ofT2*V7ZH1-_#w+W#RkiPCDvKuxRsFf`tMiU5Z{<R;s~8aUG3KVnY5!h)xk*TO
z6MDYpT>;~8k+0()iX5PcsAVjI667EjHKQavnis)6u`EW&f&$42(DJNjPKJ3k`OBK<
z>BpNM^~{exjOMR#$igN{{a+_NStC<nJ-P+wP;F@jGy?tOwuU~yKul_;u#h3AFiFTl
zZ)ucVRR~r}uK4t~(%9L{XBOkr1tpi_oM{fb3B*ger*66kMVOv|$8kKdK(WTE9cV6v
zI-h6h$eMPF+;z2ZEMf%E=)`Xbo9SLhe%R&O&lA7g&=Lmd=LC1)8j?zIKkmr#F&P(C
z_7Pz%L(KEDZ{p{cGgXl7vb}{j_D$U1Rk)fdr*`Xl+txR#*5)qyc$ktv(Hnc=pxrA~
zp@KyW?aGdmKaU3LaK;3|M4Th|B7$?rUP(_Z_LNbX<BmXqhA)cI@$^%G_2T#mH0Q!1
zj@=<NQ=yN`z$A~{S(Un++S8viU+7lf?>=yut+m*QbTJX5#rrwL|LM4`0&F`@d5Jhn
z{YN1i{tl4sbF*7-2nd~A&<?Ub<uTV9z!1+pA&B$hHFxq+kn@t}VD`t{{Q?)c91@~}
zNATOEc{x04x-k8okVhl$&o<8QTF{5$jM$he;%_2{$8}?DjAy0PYo}O^EOY0td~z1y
zMWRn(%msi~&^*Ndl>NoWJjWV7SFw3*nClR~P1!qWvTzt6wi35IM!LF_FmHUU7}Zax
zz)kd42A0@uWvdJUl6Al>f_B<H(*mHf?4z4XAOSLMI2N;9$!cx2DCgFetUm-0=W|$2
zDQmi=L!WVaZhC0uhN1?+SakdZxQ7GUis_CXnfecKT8DB>Qg<K_``gd%$|vQIS#zqt
z!PIuaYA(i>3`y|5*V{(@Il|Y8qaYrNp8X=q*l;(s19xJwk`+0{=sLlO10&s{W>d?~
z4RQK<e`O#+cJSadH&?h&&F|en(+PcK<XbtKw+|EWfIP-?vkIW_O?{)MRQu;lne7!e
z9+^V}=eE2^MSv?<lApql9PIZ*&-J{H+_Ns5`K~A?d5CY74ligdRlTgYgFw=zr!&=&
zwK<Z1Dpg3C7oN=9bj_)%SviDFiU2sDHOlWOt@4q)S3&5yuK7hFD?+NL3IXY(!zd&*
z-lP1YqWvE>6){gd>F_5*j=MzUF+Ugts{2TYf8+!0v0y&6pbsWC#(j`t!wE%Be6B1h
z$|d8<^)+)usWodpL<8U@LO?NR7uf@@28H9Q<W_yE6xqgkil-3s`R%Y#uZJcnDzHdI
zlR7wUMBte0WTF5CTF?X-)wa%}@hjyk`(+FZogGTYrki!-UUM8_s*CrT>N=QID-<Rr
zct?0Hp5FQrS2r?1d>oesg>e2_Pv}LirKv4wZ9*~M5<EH|u&rg@|9<#9Fqxpghu)2U
zxqs5BDC-uf^Z7yhmk!M3H!!!mBn=mgp0BRZ6uxLFB0K2?>UPS(LNmM~@okf2`4@CB
zycs1~xQm5AO^bsW%fJW2lz?t8tgC^(4HaI;K$Ue=Xjr{2{@EP-D5Lc*qxZr@6YBS(
z9KKU|KP6~z*@&dV)}X8BF|8nVo~62_$!REWQQwWhACLR^pr2@EuxZ`47_r6J{qaF(
z#<L-lkxcgQ$_&O{YW}}J>8(MJd*v^K-h*uuZH(=&$iGwYfc_MaT=m50i~h5YU_s$Z
z-yg;kPj8FfxZ);w`MMq>x8|#FKD{0aP)G$??PxBvf8*qk15@3lXkh&lJ$?_M#~yAU
zCYb*OtNxOOi8<XvmPHZsQlqnBMoz@cvfnTH6ZQ`Gx>pv*nCvy+C;Z#A|08Go8{GZ$
z68M3awh6A0zoZHO@)78{3CQ7?R3q13{Eu$~fXIwTfJjV93zYi&ACT3bwf=8kz#9a>
z+Pu9nE3SWz`rjd7B{~$M8G8J<1loTJ@#tKTr84y&5rZ=q9Fv7}|H6V@nE;^}#ocnZ
ze@@y9f?J#vs{6UwYF3m8=Mx|so0`(Bw?!MXo;1>g{erCeH~{a`h4x=YxA1<U_?!_?
zkNJ*Rx|Sa5z2X{^7K1R{b#oM(-?c21X!>Q@YCYc1MfsPRxF;@FuF<Ke?Ojv8hNF>3
zlIoI9c@;>&ouXT6#h43K_b*>#SpdvZ?9Sa9w^9(4Sf)_CJpF^VkLnZd`*fRQ1;J8#
zjd;|uD0<Voch#!gIIj?aFT=3&Rqp~C`rw7(oc&YCytFoO1E;ZQx_dzE`bc5OyKKN%
zvouVtcXZmge{j%w3n<~Fg?22%Pb8#m!ude}NjFqwWbp2$YiQZVeEA~2(uUye+jq87
zc`EC}rz!wxtPHgjiHv%;KQo=S2spd_fGbE_Ak(D60#zTYmKPU&m<3OtJv}74I57#Z
zGxB3|`XM*cIaptpp<K>(G&g!KAdFO${nvZCr*um&?q`<v{`ZPgIzx$!jG}HSmGh+m
zvu(~AF9LY!hP^7$=Vxyq2g`e$?AyDkXJ<QkC5pa$0KOPO^Ck`urv;O6A^{o9(mVbl
zjn%`m!vN8K+in@);+Jx5WD({4z3Ma`M<`&sv2fq|^ns3IAxt&3fl!$G&hmGy&x-9o
zRu_qwUStqb)K70a!TR{KU)QVfyI&($+-Lwso+KV!uU#ZOLlXF!7C;_n8jYX=-Zr!u
zTouiW!)Wx)cG+3<FJEAMmd4%R<%w9<iouumW4P$|E!zUDg}z*(owf|%87CoTQi>;i
zy#88MK1pK0225IbdWiqm&i-S57GQ*bAP-XH=<U(r>9Tm}zGNb9eaUCAolBd`LQHv{
zFe_4lbW#9@e4Yiv%`{L*z##5#0(dP{^3Cm*MY`uSI$RKy`{+DAF@N9>7PGbU1*}V3
z1{_9#_y?b=s|h3Dz3sDgE4Y3onO2f9KPQ9%aIKst(<*hYBRQ7#D6e7R6z{UkZe5M{
zb#My~WBMprSy}N9P8{7Ff@n_Ud6Y(9uPS}hVgstPk9ThLO>AYs#3C#d0A<4=teZz*
zPyN^Gr_%$ZY=z$1Y)*0io!vahyDef(%77x4>Odb?pIR^%pu$j>j}yx8GbsN+&1%KL
zbTj!P;53Y)e_O>`)`NQ5lLZW7Wn=fN3&%62Dy)np0^CUvBZkwtK#sd~E`^q`dIz1v
zD9_NOyk?7seCxPb2qmQmetcMQ&&Q#Lr{8dRad9TaIwtT*sIuLk%3Y)f_|mr_e8tEh
z@4rKMdI`G4H1*MP!Q@l%Na4@7ioeiA0`qDT|G-thel4!p?gP9$TR{4!&V=_KcQpS!
zo4V+j)7HsPpk+egmTE}6G(Av$5ZCpegsN7#NT*Xjc_PdyJq{eQl#x3<6s~aS>^V$3
zzu@n&XzAYSdBBa6B!A7}pOKqN3OVu3yMnL9#84(~ZUR{#<&iy1i+x=EF)?G<Gt$)<
za0x<yI*a=9G5a)E8_n*F>$HtI$r&-fTQV`Ie|rHI7Rm8m6Hwe*o!T^g^O&UiXg!-E
z!jw$rwP2HdL{2`oIcNhhB;rrurOjK_fb!;99`gMaPHh_R#n;+5c1%+Ib6{x5zz)=(
z8+LTrJW*Vr^+^JSY&|(tyJ+C;xO*ihIWRn$bSugQ&g*vfG=vGP?;yg}!r`o<*fY@#
zmMs%i>*An5LAlpQiSA%IPBtHU`4EWl0Dn-=1h1PX-+AtRO!~NZ!W*zKW~x-aRu`!H
zfFOwn40{wem(2&w*g8GK?4g3%z2^dB9Y%i*I9&IhkYV54aq;=eI7JyC>lJGv_@f;~
zzcXT_dF(jJlb&O7s|vx<T7WiKXWQ>FuITjn*Ja9&BQ4!PXWxGo&krhCR_xg~Gv~38
z8h{qciLC(yBTWq_poZbt&a>Y!kqm>ri5ksJD?X80tLU~GI=$M4b$4$bd^>cVV?^8G
zA4`imaxC!sE9&9v_;htiqoAP~lTxv;V7X^PUq%(QnZ^25dwi1=l{H%9R0D;8uDMhC
z%od#fdZxe6%c3N2?wLfeUk-AR!FW@fT8V`)@+u;tYdNxUWb3=PoB}fQ#iOTr*iY?-
zQ&Ux~026s?a#b;;?C&Uab$ep|yBCb=Au<Vu>&BNSeD<e8(3CK#PvOJ+hlf2sB4$4Q
zJwNGG4^~`l)?BV!<wQyd%tNInXx#c3qCI%;GmC#u_X_d9fAFwt^TSLS^7&gTdTM1F
zCV6qQL=56szoAFMtJ8KmsT3S6RkR+B=V28dt`U>;zdq)So=*!d(jes@_LSc;$t2C&
zUI^dfhS^qIoa96+gdx5h-&s{CMJ+sc3&!ps%(%Scq)s7c{kCW>RQK#&P^r@}%Gbn4
zW_gE#k4PT9mTg2SWM!u(=m>Oag9J5WpGyA83jevqeo0r-+3v4QMlFWWW){(xEPpP3
z@f7oMsZu%>y2&HhOZ`J`G$*nF^}E6v#bX2i%a{I1mP*lA5dB;Cnf{htb>zwG7{~hA
zNlDE8bvA1ze7gI{U%J0Z%PDk^6qz9~_E+fH8UI=6|M||s_fQU>*BmWFPgoS+`w1Yv
z^Kwm}oK)tfgr|swLFe0E`dqO9_g87mp*k_$#oRY>|0n12cOs|6cl%}KFrZPKFy_i}
zJ_V?1CorTn+E4Rf(f`v|LL&WXUHA~CYKQV{(dj_`2|%>B{~%a&Rc`#|+zUmhm6;i&
zR<-sVNs6sa)TXYwRXYn0gjoJ&{rKy!|BoYHOcH4?IH<PV0X?qhyL7p|Q%7n`5hsKb
z#eUnlg2Sai_0n?8-PlocI=S)Me#Lphe&Mra6hLl%)yWas1@z_LRavYx(`I?Mc=lca
z&c5}Zb?Q#o{fF1)KdKGJukTk_k3R2(*g!~G!=ob;8SS@|1u3x=6|n))a_@1r0~Uql
z`1myA2)OnSz5g$-`tOhU7Cu7gyERXTT0)f_q<OT*FeviZFSUJWpJy2-Rc<Eg3a>1>
z08sk=*u%E$BH7OZPPon2{DhQOYsSIX>qaiFFqy+)Zg>&_zLw7lK3qJTS)+*pP+iw=
zqFll^KNpc(wUx%dJ2Ts+{LJq<wT-7yjp~oN;djRi{({0Xt~DiJt=9MN4fglAep>-8
z^0YRyzJdbBi3EK^RH58^p@CzJ1i@~`JuqS`Ko%VhXiGQ8;Q`OWmaDsu!o$Pqu=@~w
z7o((A27nNrj|7Z-Vy4{TtwXL<`y)mKXxxJuq-xayFbL~oMH2o^lD%zb5m{bs3nD3O
ziko~6D?~u|9|jf~o{klD*;3CV7T{W!fD6a(AC&e&=~SyKcFvTysz3M$ZHsyw6EVoR
zPg%ta^*O6N20R1A4^@@`FL$QO$!n<7Vx0$7c%qXdED>By@@ed4!mv-3GOa@AQkdxx
zj#^obI=rJAZ$Y)-{@mI0vzkYgVSAnlzVw`gOHD5tEg*dEQR?;3&_#h?gTtR2;*W3$
z)CA+ymJ)aQX}q5yQGl(PHPr<Lw33ty?u1t+Clv$IiwWm-y4a$*kD8?8<@cPbb_Bdx
zn{Mu|iuWuuA<fzX4IHlAkNJ+i@0j0#<$WpdyL&D&JEaHcCDfWt;|k5`>FGa<c;epH
z|LQLhZWY|qw><{{i+FJ7A=?cL`qV3FrHy4)ua5JF=%C9^OZWYb2^l(dp*sNU9hxcO
zaWF*KydeEE#)2k4LVg;)R6n1arMfmvJW;B2xRH+)0V|4*y<^aJQE4Fxp!VtS^=!E;
z-%~;qlYeYX@XZX>R-&Jd7Aj-*CvmlGo@hoyCvO)`X%RnwTHc+J{(D3JeK!1ANWP>R
z;B+p)ASXBL7cp3C!+dCYhvcl3vaCPRUaB1IkmOjf<89GU`&=Dg@RYnAF%Zg@z-3yd
z1!R60q%$Kby%n{+t1sN;g*dXS)yE6oXbYW8N#FKyxD|f#2aU%Y=#Yu1!Nd+;1xzO`
z#Ng<@23IlkCEd1s*cB8^fPee;EuP<t+U+$P$Yvf2(r$C(-d_^E@vBU7im!D8b)6=T
zGAtzoptZEM-3257?EncLm9eZ~*hL~>!}lP~OArSzop4(kTg1rTQ(pkmLN&Z50))Gx
zZ(JO$N5hC0HLJ8rg0j;t|NTa5#gtG^Bx!Tue*wV%3PR~Nx963VI=5I>N6%08UbKFO
zX-bkVTNSQ+2*w78mp7~&p;b7-?_AMvy?ys^jXIg%o#Ix|zjbr*05CV;15)<EK62*y
zD~|q#O-dl!?cX=MxR!RnsH?KHLKdvk0#xaa<|?g4V4OM=Mxen%Rpa>LY^0IzB`ODg
zl5$1iaL(%`pt;8&35c!=YH7{wLp}?EKu8s_>wBkW8_XmJFK^CqatynQQd2aICOSX)
zva)#{nBg;Ppjc|m=_}Ak?}mMk>Fs5+2nvsPdE;*+%LXs7`U(GEVP4E<3y|}0SQiA7
zVNRGx4gm4JpJ32vt8tln$e<uSe7UNCC1C7Zs8T&u5C|r8F&v=ww5@!Dj87x5E8IkY
zD^}Ufp#ihfNQV^23MG8G=H_(9XpT0){B1uxbMg%5)u{RTI~qp4L%>6;&nH3o<BSH4
zr<WRgh#&&)Hph)Yi)yZ~mW42LB*I&5ib}z3uobzLUvY8Rjzy}6$s-zhUGJQHp7gh_
z2>}~W=$Ye^97-IE(R6_If0stT1jF?G2Zq5yD?WZ$)gYrewHG8?%1I*&A)v!!@ivS?
zP5Zrxy`&ET=4yQIEOQw4IpTR6HYOzPLj{RGalnD?=xZpy{>Y-P@$I=@LO$*ASSBjy
zl(MPJVp<QLYuE9Jf9|e8b|PwAg$YceuUiesNPqm)%z0ajabnVV6j#VAUN#CyG{~}$
z@&+V@!r&q|IJyX~dz4KFD9F@70XYi~`*h1tNgi!eiQlMGb8}<b8V`I>nlIv@ea~L*
zwpq|YQ=ez}<&HV;uaLoi1+;XrCy)30w(P5YITODfX^b47n-uUk0^PPgL?%R~)@Dr#
zj)fID&&&(3)E5gHLL-3+JRuFZ3uH-jUY<*t3q9XJXS&KF7!U=$tOiVWKY(+a=(<M=
z1SOwctO9+20heJv?ozS{IM}J#;Cu3d#5w1)p?-x0(AdD3wF9s-l>*SX2fGt);A47U
zP{{DKrL(4i#at6MfbT{;S;%Au0Nh}5(P!e7b<L;=x5g=SY4CYl8qF4Mn}SxCD)K3@
zR*^uiPZJ<8%B;kI!1m%O+K0d=8eZ_N_a5i7D4g)OXRs8t1`lC@3M<%mhUtrf3iIiN
z|M|{afXxdF?J;TT#3-gw7b4kapA_JLgo4)Ac`%pM5(HH`6|BDKM1EPX^f>Eag;jpV
zXjYLZGt=?#U@O>;XW2=7rUF|^;4r86jAt9c7#aiANr0NEi)^I6cZY*%$`r6kqrNj{
z6$f-o=|~wNfZ}_n=-TDVr-=x$jPHRsdY{lnE5l(oJYDHOzR5&PYP<wBn2U6b=L1K$
zc8OZpC~7uuZvk2{AIRQbkYdvX<_L^QYM#P!hxZ69g1a9XTv+k*_!6pI{g_#kwhfV!
zE_)eE>@*aCplGUQZ9=$m%w4W%a+2w_4Nk4kG9PUf?);sr|1-z~?%IVX;y$%r4^r;>
zeR$ZZ>llsdP>|VHVX6dS7`qZ26H%!OtDHSJ34p@+ih3$n`Opsm2RSD(erU|*jNpY>
z6JY)cO`2iJ%gtF_>Ue(EJ;PtrGkHX)^t5Gu6ja12hAd;3)~+j;X1}3P2i`m;CQj@h
zKp`!E8>Wk6eJ0R{856TyWRymbbeg4Za`DJ_{H>xDC16(0>E27ZZnB#8!WgVkExM79
zn{EVw{|dpsY~tIGVxG8PA8X;awzf|0zWogwPT?MS4pc!=tOxE%@qP+-qcm6R40k7-
zRqpbt>~|U-b(JYQ(D5)+cCu8cXv0;Vj}l#a{p=ClRtJ$8RWtXTDnwA7%JLJv;Ny2>
z_1`iK7qMGu2+*<h(tZ;!)81=Qh!u=ebg}@;_InKDIr;rxsTPoyM?^%NS0%aP&K!gn
zck9}nB{rZsaEVKmJ5~H-Bw(5poG!!6ax7N@{8#u<Oo<P_bdMJ%O;P;i1pSvM#>esz
za(z0(k^KOuSUh6Vu{uD=LI8U~;Qn$h;DhP{Iww4I_iE9<kJG8b>hXgWXCz8iMf{Tk
zN&Ul0?19+HS~J1_?;k+lJuV&^G_{eE>DLlO<F?N$K;KjouP}<agqmfj&&FK7S@3^=
ze<Dx$gO&BJkc8oVzWfwYw=#?5|7$9M%BUzwEY)LHw4L>ivx@n`>GSP1K((4R+X;;^
z%hDH<sps~P^|@kB_aVH=6dB~VwJSFPYp@0w^vWxb{ofknbiMm4GO*B8w`P)!)|8Ea
zs<pt6s6hn+_Bk(AUixf3PZ!TUKRbU)PfgHGZz?Tc|FJ?gu57jr)uBO1cwu=5UAKGU
z&khj(9Xx-l6@So&8@H0PVk=^NoqS~3qY7EMt62(jK>?&Alk^n(-q6ylwgyw4M-T5k
zDDy@&B#Nf*QVj?HkJ?KV<&deyASD&mDD}R%k!OM9e=s-yTJm%yh^6+`MwJ)s)BTU^
z^|#v7rw@R<yX8Jl|2G2l-#bPGFl5tGYGXM4Qi%W8|NK4{!&~Px=;e&UKZD1A4E8Vr
z0Oilu^-CE4WzGINwN#t{O2&b=^lxayuZMMb7)ry@8{G+l|Ld8lDDSr?iv)Dx89z!3
zk7jH<V1xw)w))VKz86y6tlwa$jmF5<xx=y=>g;oHuz#=N3JE(6d1RGzawuBXw1x^U
zJ)DEjepC~oU0YSfs_k1Gz<afN;qK0M^E@veV|V3!C<LfNKPgagGh?F5e3O=uiMsK5
zTsP8eOY4EYe|q|gU6<9x_3_osBH`D|b(->KTV8g}zlj7ODz)NBH^c{nr4)La-G$%K
zlwbtLFeWmlC`!w{lG|1X#vY~-)0=LBBhpvhYNkiKTEX=AM*t>C-|Jesn|<uaku~8D
z^|Z+iLoEsx8V!8i;J4v-1>LNMZ=PpAm4W6(=TY7jQYdm(Q6ad>GgRl7-MzK_E|A<i
z_PMG(GtAEBD6tQTo)py*DgRo3vE@kDmD4gS#Tx;B(PTa0{OhD@DI#HRpItl_ujMd$
zQ(&?SfIK%Eabw>clNN?fguY$P#e%l+J6l3`>bgWlLVPUm&GX?52B#oX{<IZhML&!`
zveOz^WkLu10Ms<QuK*m>38{aA{%2bGVH+k@+DV^d7dE*21LcElumj%2+J58#+poWl
z&w$iFH58nZ9!Y()-5@_Z?2mQXX{VlEg4qGv{xQ;$@Y>%I$a68wtwKK~oir3dMnBlB
zxzUwlK2S<;c^IEDF_YZ!=^>#FOfGpuI5INQX6a*gg&@6Y<QKau7mVXkb$+nGV|4T{
zP@Y!pq}{67&(~VANvE`Fla3|xyrNCb5eQM|-G+COH8tg*h3z{xcrIgj%l1wYUEP=B
z0bx{2(%B>8tXiKTb6~WE9>~TEC&p)4nFqu9H)3*q==GJZ@Y4|I>rXNH<Ez?t3(j+K
z2XCqi<{KWy848&j8vzK1v_foYoqZ|Um%tZ>6-V;{x9Uzvs$cB{i47ABe++0j5F~R*
zwJ8wY9wal-B)GP=0A0KKgt9$HX-f`$dPH;h4!8h;r`&yJwsa=89{IxER_8iRWAL@r
z$)(1P6`hII_Fg}8$<ZKtGzMM78tpgBbq^6BlNaMbd2pd*QKWDJ5@uChOA6W|p6Qm5
zQvpKhOgnO9?Lq<2yH2mA<#MpW2+d(@2pf(;>|bf#W?A1PxFkL^T)};DOdeb`d!avL
zjb}McqnH{B>YvWgy?J6Xo6C58zT0epz2LMn<%dP?o@qZWIMgJLEp+~K-bT(>Ok<{U
z!zziwz46kX*>bZ~m4I-3@jK#h>j5D`Q9(iSBoXsXu_xz8Zi_FMyI%P3a<7a8gJ8^4
zSyqj?CKKyCLdW}2gYLBXMje5pCX?Us1e`Wacg43vhL_!EhIGf^KggYDKGmaQbo9iS
zYpHH!?iFEoiE7rtDS|uu1z+A(4>kI^mNk?qkKLD0-DUeOHdZkuumdi7?a!&O2`%sy
z&FgEqL2O0!IrWwx#^<kFinQH13zmQMQ?mh#8DQzlla`CNh3xb|bg#{PiJbB|!0x*q
zLNxtq!4D7672t?XNH?Ez2)4nv<<u8HoHtb$+=FGFy)5Mg*lxyvuw~lm_r?)b%(`1i
z>&vtU1By*jKyOiL`527pEhV6rRY&!5*|l?tLEOwa;4E*g={_REu6@#b{*86_4o5v?
zmRvKuTKF0s#_s;6^Tv2j6#t9r{N=o(ATwgN3LAFo%?JpksJGf#QxUHn-7`njKdFWW
zoG4N8qAcM>+BwqksDg)|OjR)d4tjRg0+E@&dO6}YFbB7kd=M{nJR&JjuY5!<P|<OD
zb5SjyYZL@ht9QduDb(@~6Cv@rao>B^-r1SBv)U7&Hx-QznhtKhZkeflSn6`XQQkj3
zPM8+#K}p&cXD~U;56c*x*z>9y-71oIp0;}BWjB?(WB70=sX14%J+?o8|H@u*vA<e!
zVwZsW>@<nB#J0_DhSz~j2fUNQWE5ypvRAvN+ZsUG5Jb?smf^5L)o?Qh;TdAr1&3lT
z_LgYu&c5)wSVmw=PF2myS--}|X3OJT4Esi`Aj|n!5@9Uo?>KJ%VHs8!&u)HwVi9Rc
z@W>}BZ`p43iB~r+(%C`??W2XgIAh}`Nnd_6Y7>JPq(*^sYj_ptAlWeUirXuv5*;8N
z7ISF*Ct{0F`mfvGeATUIxR@WJ@a(X&7V$RUiK}0pJ+BcAolbtJ73MzU+RN)yNVAOK
zvVE-3MTlYberVnjL0;VhSVIC!>bMI!kdHK!F17W%C*S-Q=ID-*rw3jwx%eJMSUnI{
zV7UXt$%mf{0DO+F0eNn2uBIGL4uIm({5wK}<;KnylXbH^uQbCbv~eDVU+dMHMs)%-
z)&p}E<I{?|!g~y=MJD^czOOTs^B=3#IebztdXq(x$PKV2g!FGwwCfz&hmAI-f7^d5
zPQUHH#3<H}UM_BKPnnqTFY3I!Iy1bEFPwH~kd*UPS{u$2j1voD7wa1u8V29^h901!
zPm~*{@hfnCsxT2&8RDsI3?k$NJye^1c#-ePxqnI7X~Y+zZvQym$g5eu>cs8Zy7}@6
z3HO#a$w{KY{vgC=Tg`23=3-yoWVnpeGmh%b(RBS{%=la-xp8BHkRy#o<<^(NX{SVG
z&8l5CM-y%5IY-gQtnyxih%g+=<vd;5rIyyVT&P4)TvDHK;mw*Yo-MpFEb;Wjv097Q
zxI<gl@kU;=D#7jhcq4(O!0Z=Yh+>&?mb#px(B*?oUaOF*luNz7YSGE6gZ>c0nnLxv
z7SoP*fEFlrlL^F!dM7!~H$iLj*BE%YIrF`tf_d55OMrH%x=;sjWn8n&Z+jh9MgWj>
zmStnp5V-l=5g^x3=4nVfNhr26F_^#aFljfU4>a&UcqT$_PO2eK$r8|8V!fOPg?wdS
zmIsfl6|xcEyBIug9Pn&WC&oSG-&hV64k!WIgL<%^_JC`QAR-M%d)5bl4RrxBZ#-G1
z%003^QcNpWj#tqP^|u?jzT&dw;jx@I-W)fGq)tclvySXXC(n~o2Dg4cnYLKt^X&0p
z0$So#33*Mr$pII;FexT9;*Y>sAZRy;NwUk{Z2nvp^R@XrRxYr|>P=I-NO!1>3eZKP
z-FW`WYC0Pc-$*AcD-+N$68wN%0H9<X_dkAn$aWPIb^r^|6)%rUCQx0gvytHQOtPcC
zT<e=WaydZ^Nyj|7(9$+2^a50Wg9W98H))OK-eH^TnP*72Gfz+gP@EZeHMAb!)4ffO
zeM$ex(<Fi+M=66DUt=bxrv6<;jk%4py!T!zx^?;Fw*SZHVhcK+Nnj36YuL>k%O$MA
z-Fp5>=XCFN{4<(9^cC*Y`P4Qd8XeuxD)^vnc?!aM#PQArCJB85bRzH|@yvGpIcHU?
zmqMrf25Em?XKdlD8I-@6AT^2~XrQ{428pk7X|yH`W7F~Tu$<cUvLY`&0IKkXBhTi9
zt@v?!mjLn#Oc((xn;p8u&t@8EIoOJ<-eIH15ra(NjmwSqo_}x~J)sUa{P`8DXq=F-
zVfBYC3e9(8{L4*Eb|Qs5O=M?r=N3nt&;hKFG<7%ZAua8+8Hl;%N#{+UvF|+d6_Wtx
zmK%wPCzgi8Dcq|1qHQ1m!QFl#V$7PjmE#zP1grO%SHw><y_&0YIZsrFQR*~bh2~7c
zrzh9EDPCV`IUqKj3$!Q~QU>atoLlMfb5p0IM0?{ZA+rXxEG7{ud0g|lI3I+4tzY8B
zm@B`pN_lYub5jS~2tkAKG)vdqTC86}5Oowh$PBw5L(;}nkY9_TqdYC~M9>)aN1~(S
z(cG^{VNB+0rqK~RKZIeGg+*0pR_}-{KE3C+y^LC=nO(94E($%bJE3L5NcMGY<GB_v
zBx*X-wSHf$PAQ+nQ-SVr+Gg0*gh#6&&=|ViYkNL({!lt)N>_}GZ=VprUxwu}wHry;
zT1z+PnTbU7@$2C0L0CJ}-ug>PCbM-;;e-BhrAAv=)BBwY@qu%*f_|xXvGNH#q(QL-
z?Zu+tAQ^+3_Js1ap~CTT5FCMq-Et-TOyc?GXcngi5B9cC%b-<C-SH1zMBOu0s6}V}
zCZe-2LK51VOuVdAXZVK8a%gVl%ybmcUcF}sz+Y<RHES>KN*lOw_t}A8UP!$!)<A!D
zb2a(V-TdeFGxQ+>F1U&fSlH|O=_apP2nza=LFY=uS$eDc`a~`5SP?wU!fK{LSm83c
z<0E_9;A(l8ybE8Tidiw550RaG)kV60LJjy>F1T`!SRzQ7)HyxhrS<r_fd5ps=%K81
z2`gl^R~2C}`R+Lpzo|&#7?@D>_+sKd^XZdG8lW{S%?+C8Bt<1dOpA3ENV+TMlEZd8
zZ5-CHQbjy?WY7>r%SbbD2<J0@pZD|-*7p(qJ@!RFtYd%1-mLo_PnAd-h0m-a*LMz<
zI$OhrL1V$D2ht6z1?b>Y^P117A!e#AaN#Lp?2nT{h(=X@^<=geT36?7geEG*93Yls
z!VlXJl?FYQ2HkS9!?iw(sXS>xopuUXV|w-5UjI=xt4@6~!aWKSNDnxcJuQWxXt(G%
z0k1D)KK~=DsPzXLaAAW0egx0nL>Q|eFK+|AH(xo|H=z)337k**ShTs$pYOjk_*}le
zyZaeumb~@g!(<fh63ZuJT#VgmBpuUtdRM{JGi2>rAu*|Vr%^}v`ol8wnca8q7D3rb
zn>~-Pi1dqlAt6eIFH6NBz1t~cY$ZHaleLuU94JC$dX{kTit(%Tbq=U*)8<FqPe%*m
z&ACZ8&heycd5iBl+!^nB?#|<EjAXY^8h{eNk8yW)!>#M9#cB3_+F4P2zEg{5ne>xu
z{H#yHyyQ)hyN;jyYU08fb9s?%Abu7Nt5{g5eBS}(m-s6Cd7S(SQn*ghE2M*MPyMEc
zWN1=zey_xOBPM%G7S=xLe>SL*8q=(HjXUsI<~K*YaKxY#oxUG&Z7KHxhGDvr?D%ry
zsjEbMf<=+F=iYvK|9}f{6K4M+{qwg!GivKZYQx5-U^k~3ki7mC7j8D0CU=)zvXF7S
z-UE%xT3so7E!FWyZ5-DZaIPcp@z!|C!bU{beQE48FwA<U#u7zgi>U9$2wXh{pFXf}
z89-^iTjy*M2(=_7dJ^=Mn>l+PbBz5&8@+)U1&i{eW1xAKqxgD$wxz;rw~1NY%XHbJ
zX2W@gLIopi0Ci@3f1&AeEq(|1lh~xTsy5~(JjFh?UC*19V>z9|K5FA-i!D_9cwg_y
z)?A9(eDsN6?OZh2jd#HZuX#BiQ7ycGlj3Tv!Fl62e<w^q#j~WKc=CD$W;zmk?aGf5
z*%=%}9n;*>6<KKWLI?y(!ML*d(Yx`9V$}%8#$6q4c$p3f2y}A}$ZO9_FBV$G_v1be
z*m1eNwi&)ISJ+wHNa(ZWMU`m`CT@6hKKtOsDKjB<NTFu6LHE++i_?3~eG8|Jf!7~b
z<6od&`&*?$9@8#c_eSkro{~qGSn!G!vyc>1x-AYaFBRi7KXE@T0A2Pa*oUZws+V5A
z%XN^MX>uejHTq${2A$<|9Y&k?m_-9$dIe~f3A@@UzH_^|_ERed`B~I|y1I8bRk;sh
z?hGV&xHq2vWoS7!U8(hoZ`B@ki`SxaP}i%4(krwK^Rz7&vxP83F)EHuhv<lqsd8uS
z2lhPpOGB-FqUCX4Mj-*x>DHd-4-*`-o;XG$pjN0<fR0-pUmiYOo`l;@!#Wv_4~Apb
zCz`m0gd*czVCRQt)kf5f))z0pT;_*Orq3KVqiJXdi)Jt1)F^qD_g~;?>8eV9hFmTc
zo<PDW`?BqPu3W?AKdxotCJw9}t6NM|+>?dLzZmNy?$1{VVTivT(E9Mc*Gy+#m)(a<
zy+N+46u4zI^UHmX(<%uXGU7m{PsVS{YnwikaS|52SS^#-4!Wl?S9wG9V71p@Ymy^=
z$090fZOl<h@%{tB1EU{2x<!4`%_97v$$ZRUY3rWxuWB=LcT|~_AC0uX`~2hnJpxZw
z31?@{@dO0YMnB0jNeBC#cLjD8+8i4S8C_;+i#?JGsjSNkMz4qzcIV?7#QDqJlHv@&
zTQ$eYl~c5Y4+JqrJ5+0z&L#BtQT80@$@9_FS)+MLhXe1wWTfk@|D-xcme8)b68>2=
zC;X{8Zh3L;eO-JRvVLtL#*v)Uk6|uSgGZ6enE-Voi$y7lnX2e+-$DE4#~B@U)H+w$
z^_vE=<b?dvv3#A!=tkSL3TXjx_vy&IYM1WG;T1t`MR2-IMkRjA#LToYP2bSR^X4Bw
zmrw*CRhKR7&puAZmBuc21Q|e|j59`iNYP9<$CrSCu<W1q)2mwU!@KCUB#Ot97U`r9
zGQGiJ^y9%s4LZWYxJjcwhl_DP*~xxxRa>aN&~BIVl#&V}>1VKNaF~$t=RTH>yq{LF
zPe`T?u<b&Gv2Xa6`9Jq{URRrH-9>njSQaT?mL@m5j0TV6ZoVe$4;Wo4bk=Hb+kSdB
zk>sdQ6Y}ywahg40amy?-iH8JL`46VIa<3W3`S{;{ttk4yOTT7PRHV37u9ji=!k&yG
zXnMV{WACn%Y}7EGQQ#_PQi5jhD7S-5yMExutJF+exhqe1obns8ea^PMY(p7@SI_}x
zt#}h&8Ay(BY0sZ<!*A>jazug{EO=LpK<@@gmr0#Pr?RQ#5=j>l;c8N>JrBl)idVcx
zf}@3<qO8Cx1xTr#aNC(iM>QmVzCyY|tI1)x4<~cnU%8NZhB2#qEZSbg`{0d!dwC4@
z!OQnI8%E6rjEkw2iQi6-BR*eC#eJ$lXC}Hv!IcaPdHu~!f9eafNlFeEC~eAzxQyw>
z=qZTH*&`yKp^QfE1D3}^CqIU0%>!PF*(ikKf#Y?ZH0k&ad~feE?!%fgrI6bp(LLdY
zL3VeEcWYB^^+YwsND4De!59D?Ak(?jl{$Fi%)3><S54WiPwicQ<@r8{5BWN+>9e`6
z=5GmB0|5#j@qDI{yTk6xi&Q|aY1nrhn2shf&BN@wog{EVSrGYU!Yfztepwjap0N7~
zq^tQx?CQ+N%ka0*bwI^hFZzKW^oY)SAJzY?H-3neS(8g*M<C=m_Q(S+3$=mZnj_;h
zD)X_vGlO;A^z?UC1<l?i&htn(epYB1k%~eumV%UCJ;}Qnzst5CP;69olS&WSiLEr7
z#PG13FU1QXt>)l&(T9Xu?s#U+B?a-m|HN>@wvaSOM5`mXr^3LfZ@%!Q5AUh3BcWmn
z^YnEaUIP77Q7PHQ4N)YEW<(H$Zi4cqk~11MMTE>|K-asHg2HufoNbSG0~)?8+EgQA
zPM3s|FsV>-?5DdZ<Es94vT;1}>FDq>qu24EI2K*Yxh)<G(<2T2W{%#<yi+%vbXxSb
zNP_OP|Hs%{M#YtFUBd|>2^KuKJ3$HwuE8A=f;&ZU*TS8`J-B;<yF+jY9^49dE!=r4
z-M71MKjVI5d_QZPs#AOKv-Unq=A4UCsgE1_lXimXOfE&e(?zFNHN9<uf#Rk*#2zP$
z1-QAEt>mzOsdIjB-B5Z|OIW`_4|<aJ4hpETpI7SEPZABnt41?3Eyn8%^zZYi_}D3A
zwd~YCnHAlITUrK!i%6+@mU(`Ui2o}e(=NY8PO6aWPWvG{5ktr(1QY&VPuhSiFM|+K
zEWRSVbF6m1erWIIsxczUV)T7-Kk#d<ccG6cIT(V?^Cem2WmhaQkJqc7ZU+jgUZ7U5
zAP+LbWlJRvQ}l$KaG^}bBmzUDrU{Fow(WLOUpQrF2>ZJ0mMgdIM!bhfgFn{MbnUu2
z<dI-qu&UX1m%w_t@pmFH*FQ~paHq6G+EpP<nXCfWS)C?Qha|tqnSw<8WvE=*P(4?b
z#awU(tpkjniD;nPF2U0fcFnEZ(y)_lFvqntPvG0B8C7!JLQ<RnFmE~C3q~+YUUz}7
zKXYGO3}pDwO&m&t5(bhOK^uM1Q(3rn<M6ol21Ij)J5%D!UZ7~j)a2m}xflpVTwCyj
zPysSp)zUq?u+JEQ%Q`xu_g>Xc3P!}T(Y1Tv^QA|JljBRz6$ZOb>H^+&Tx6j;LDXRv
zQK_iX&3IuW@(TUR0C&MPWVc;))m9nH&&3B%$*pb|AsEh(Qgmcmg<JP?jm>j`Gz75_
zq~$JI^xVlO^d146jKvd-(bV-|3araZoE|2c#TJ<bn<^&BkVGPD$d{oetswgbu2Omr
zG$yh0#YeQJIiw&%Ux;Wz!@7&3IGwrq_zBGqcMZ2gM&4?|9{z`805X+)6oJ_pMT)kN
z1%Rj%jbbRAd2XJ_Z79a6Xj=uHnxB2W1E}W!7$QbFt6Sfr4|h`?5$s;b1ExkZeUR}`
z%M$cB(iP7<WM?gN)Vf}542?*PG?e?s*|2%{Y<L<)^3d^Rr+e@`gdG-M?d1OvnITa6
zN}g_*E;wiA81_`r%(Vg?UU=WXM2UHCd|pAO7*eKLi_`ufNTggC&Pqaf=`@<g1Lm~i
zTYH@xKl+v7q+8dv55<~v!F%ojagg=UwZ&>s!^rPxCA+K6pinLu&h>PoGwMbAha04+
zO1lYTYz9p{&$a_&hV=$pWg7C!gQcjb`C74paQq6Jr{`GC5fH-2URz%j#X5&=5^RR8
zC!<<ma(`QffR-^9vsLGYx7;JX+ab4RA#>~S#%97B*_D|0h;2`H2sDaNG~x~QX)n*<
z0J~IJsz%Uq>iHn9{A+>0Uxl*%@oVI@Hru>+Ilc)@<%o9?g&qnEs-vNjWVE3Z1&F-a
zINEybpnTlt76f>z;JB>!ZU?rf@eetr8iKDOy1PSFkFElUN=jyrUMlPwRzkbSF;wJb
zvPtBFWy>v024j9fFKRE(1f+AW8*b$)R(M4*ms+<0*QeZ-hCM&B1T)Euhkj(^>&Q1%
zy&1fA)H99HrN%a-)92Cjz~B(HIBUa*hLJF+T}5g1uYXu~DD?J)5Kn+GG)TlP<HGwx
zdq;h#N$k?sK1+o!!c`_5tEfrXnGEbP8Rs;84Ms5<II*Vf*2)PC2tfw8L)3Y0hWIHU
zX37MLObWA-VOzIE;5<EXYBcOtA3WX2!LsnU<;z}+I20b~W9o;SI(MzRC1W0{8TDux
zX3qF{C0mblK^JNGC|8<roYnw0r`s{{i2nA*lwdw=GCbYksyx(XjKvWL15c6?dk+(@
zB9WWwTrDsSjR)!3%2-_Jm&0~;^@L?YY><_%VkA;(yen*jI_q{{6L0SkoW|MO&K$I1
z%{{6#Td*PtJzYKY0FRJ&w}sk4tO)>UB-GeQz#Vzm#otpvM-|Qn$#*Cj2K)m4cmbSl
z;I#4zwu?K;ntN>*LnZzBtqUW|>b*jFY9ZTm8`q!LB%1J72er^^$CZ;xMN&v_t`((~
zq|2Z-{>Sygs!}cFk5~oblT^vjjbG0#l#7;gaZOQ|mnNVa(>y#9GL+aobiYW@o`?zd
z>S{!05wvlmQY4DO6yHDwZ_kE;Q_Rj%UjduN`-q^BIj3PsvBbLu+vA`^;qw-J2N3bd
zU>zHMRR?9k(+lN{%C+@V|AlL_V?%7&1jN9&FDy>i``$f`o>HU$`b!%=i=$V}p-GM>
zTdoIf&IHF)7b0*_qBRCtKkT~o9g%CSllBF)C+Ax6-)WN{S|5C{3e$y-Q59O)Hwe0X
zPrl5}R>lcG-;NS`l`2hp1SBR9{o;fbm0{53#Y$dvzkhq&%-rZIXgQ9W>3olnFC)XR
z)9mceXKZ^18cJNstRRYWT9#Oc@3}mDO5QK9-wgeL&SI$*wk6ME)L%h%N5qBw?(?${
zENbizUEUPdz2|d9>TTit$@{Oima=EiB4%c=p=8apSgpGgg-(`R5t=rT67sg2N7`h^
z2*km-9xtCED=cwNmZ6Eq7hqPEq`+<@*`oT7UEV!!S8p|D0P<gd<%dd-q@`Y8Twyd&
zLLaUU1bk$sAbn{!kBt<c3T4bXyAJ1D6=_mP=1|XOiV)SSt+8MobpoF*?g^x+-s?dY
zKhP@s?=wUVpUq$G`xYpkPrDYHid!yJ%8CfPk;k>P-8!={>$LeH<1%N9rz-5+O$lp}
zI<8)j|4<Si>Zp1;K}-$kY<U-^`e1=9+GBKvqKA{lDu*YEl3aNDMZ_8M>rLHSTG1El
z$d|F)X?~Qn3t$;RYzEh+(yX|bL3Zm{7bA=ray!d0+Fa-JwlxP70hW+TMH-`r9v`b_
zRKrf8N5wwH<Z2>qlbu38*Q(?vp>)LTODlVnjZV8t#;Ac7F&-nr2oh>{sx&+S13aYg
zLvVNhmvI^I=^@%Gr39VidQg2@ysareXCQ+cp;b)4(YeQ}IuR4MVC0v>nM^KK1wZz@
zY0LpMBScmMo<4r(=Z&cNIoA6yjTFmtPw#`o-4DI|)bF=wcql25MYHl1Vo<nx29vja
zBovWp%IocGk|GT5yA~z9!yo$s-pIzW;j_8rqsE(1hYz>cP0?$!agA4TXjv^|d{YJ`
z@hd+aUU*Aw?1Zpyoefz`jvozf3nT|r0(EJEB%8@@YRQ<OY2(d5c{457Cm`*!oeSgD
z;UprFmo57fl^#+v{>?$3ptqQ#j9W=LtlLu<(41<<KoFS~u3hZ%n;{|R`$-K8wTk0=
zU7Z%U>P7{P#8p7D1sEsgI7lBYhwrN}6_s##x*Wd0AVZs(tWSk<jV%fk$wjjE-E$I9
zjBQc5Q{pG3M6|!O0G6s%xZpw?v^t~KMyhR1eR&_cVFeuII^27>fFt2eBkE9hIsP}s
z?LgPQ3p(q{m4xh)-LQ7raYQHq(#bm~#`1j(NwSaO+)0|3Soa@G@Ci)lf<X4xX8u=<
zouZ92c&dkSmTyng%ZLZ(jhVuj8^7a`7xpx@S8U(nSBI^kEaV8Yug<=@w;9B)eh8WT
zqLuFOSz_74X-rYK`kkZ5*7d+D!$PhQ@>E~v_+jTx%FkO`ZAAD7PSlyLP4HbSUy_pt
z8mHcQOlEMl`*%R7TsiioTo^B;aRr}`OzZ=<%g0n@xK)XjnC`603wH{xSVb%5@YN~M
z=j57T9FEY%5=n8#Mgui>0R&q^$JLxK1?=o5!?jN4M+fx13&umUA+bJ7lJ?2*HHZ6i
zt;q8=W|7|}jMu6r%QcF9t@IkJ^5qcfYAv|duAy-|km^j=N?}VV{A|5TSaP_NlU$S$
zNx6#mj@@|<ilq`HCs5|AMQUNrnT%BJ7R3rSz4qAd4k4GdPj=TMCxwzP++*cV`rEu<
zcF@Vyb%_HP3Lc%GM0gS&-<G0s{A#ae&2@iw`F4Q#t)p3l8hYSQuDQL*5<imG_8zc2
z0X)B}CD#hT-78Y{ke5<t3ywxozQ;bl(rE5oGiDiX9IawdOqaLB;Vr3*Zl;InR10fw
z<UO%K`#sJ>8@^G7vo+L!@^kqbV7?OIunl1K8>JhVQm(akod7jY51+J?JWx;e*cqKG
z0IcqDs2C}cU(KiiFm`(%9|+z0E4@iMe+DS+O=iFO-l7Ewckhk=Xu8mbY`?)^MzaSa
z`$wW4-ZhY<9l7Si@4Pgmh8jykn3SbN=yW;@^&SmxzcMNFPGTJgtT2k+e%61C$XG_>
z%1-<#BbWk@i5h}c`Cb8)UE?P7Vqr7ogxysy$$!gLv4Q>L9VrDot2Sm_<N~3n%XpYy
z#<O(IcANIW4S$2j6u|4pz#>cn3JDY!N6TH(pjaM#I%fH=i-K~&kOqZ(GV*3Pj!VmY
z`Sp}uVBqQ^UiJP`Rbb4WMr8Ic@iRmJ0AGt`AUbB~Nvt%@qo|?E&$k_{$q3fVz=~Z;
z2Un#eTjMmMZ7SDOlkAcmjGh+JGLfG=rv{H%(VDivFNEUV&BoI?wfzRPF#V7|avozw
zsEDB;iJP@L`EA-%?$xhbre;>RJ(0#bG9Cl-d65Pua~)XzC>7X!K)V(*+h9$7)_Q$y
z=hJXlG8}CUeA>yM%$`xqx>DnBeB`Y=Z7&d+moQ>VWOlNj{I2~A!ItPns|9bpm5%|?
zWZed;zjoV4I{n;%lt)ts(Vg3J5!MSHBbLYIlkBVjfrb~PF1v<xFilZVxZ5Jw;K+1H
z=<F)*rdRg6^X88@m(gZH`4`#uUF%IvL9>&z!^>TISlep=e1K@p_<nEId@PsASj7NL
z&I}x`7|@O$kO<WAg6zJWuACX&YGzCKpjBnoT7FNMa{Q{8^tKEhVgx5Kn@mT-7qOmW
zn*9u*ALqX<Pjbybl$z>-&#%pg*Y<jA0JnYP!#T<=i+a3z2zs@4`S#`MZf-NkLxbP(
z%nLowGJfar?6-3w63;C??8PjL!mTt`$%Q0`rs~1u76({l8xV-n`cbQ|r;w=k<~b6l
z4)v&lA%^!>=B2lK$KC)j#$}as8&TWNl*9cr^@dD5!4*s^>7IY;*Tx5OG@BY-u3w)G
zOzZ9GtAP7ov5Hb3iK`<>M9)zT8%dp+d@>P)(efUjL$|(}5lbz1r3+&xk0GY7VRkYr
zJ*0YikZz?f;&u{r;1<USzBYH?X0dzj5BTQ(^~WIX3IkWs73ohb42&~7BsMZ6fl9-M
z4gu`AXCDX<!EXqiNkn}Qc0054Pptg(ELxs#ZcIXexOf_HJ!eJ;6CbP>ogM;YlL)4N
zX46EoC~Q3VUVks647zCY*hGqTr$O#c&3ua#E+?1KEnQS69QcKrt=ffX@NBw#xgkUh
z(I3s>qJ{I|s=BqoZf%yP=irK!hl6$;B#2qq@7E4~2xxNpzP>fA^`Vnvex^Dhb4JY#
zttSe16enZ&d*4;_no7sO!z|mkLYx}}{)DIf>nCDbYf<wOAhno_Dp=RZ`ZWE=ao`x<
zLVm;Q(5xf_e^&LwIjSuUo-LpFOIaU#)tNa?q)+2tC}uTUD{9O-QycMetGxmo7tXHX
zXB2FKPAbRZqfnUQS5^sCeZ74ocb#H+NWMjV)&i}3xC?e*=?VYq$UcYKk^Q?$s{8!c
z1q9)=89+fwN#>SUu1wIgt)ZR6Exf9j&Fd!|y)waNfW0R#U)y@!ieTUL6{7gIHidP<
zyVx1krFoMD^v;)Vowoyna~wUa5|b{X2+f5(@xl#QE1q6BfEkhwp(p1-(1v>FaFaY5
ztC@_x0oc{GgowYx>0~Tqoi2mR@@lW6mh{`@jV{th7gFn6V#P8N(ULu(^^WhyD=tQe
zIk=YoJ2xpSM*(iZ8STjdrp1T}XM9aWmETdTYJVrYlujDCa;bB=FT}$AO1q1<8A%S)
zC|unY$eowk<)t{3udWHY&G>aX`LEYTid-<5bXdC?r!f>gk5?am31;nJHIJ}Na4tBU
zF*Ed8hc;vFukS9&2CG;UVfY_Kmiu#)%85_Hn^`^}IClt~2v}5nS?)|v%v^lqJUJ9|
z)-z3?q`X>9wpoxqYuH&O9<^m`zsV?6k1NaYG#bBOVU`9u<qu2^=JYt<2aCMHkhSNw
zYH@^bKhOz%Z-=?wo9hlz3?M=hsF`pn&)(*2l;~aybr~ZbC}(eT<XfK~_uT(X)a)re
zA7%`niN=O49vJ`OrIhl`9BEXM-GQ23@n*HjXlGX!<)mj5{nZ+HGz9P6p6m!p?6%C&
z!gce&oXv(3*JFuD|1rF%Yrqq8CNh@+7+fco(}XXQ5dJ=XX=+VoB@mGxbdHBc)!jGv
zK2*wu^qQhTPP;ptq-g-Au{z4Nryk$&Kx*xk8}xSf6&86EWs4Y6`3~>e#7bl*s^l;!
z_CWUngBZ@-9N0Aad0?mVtU+-{ZJ#u`NiVtwdF9Hy@k0QjcGzdTjREJ{epw&GP=*gZ
zQ$=#=J0s$F({`M$yWg4a4m&Qorn<{jmXj;GJj?2|F0@<ukbRB6Mg((~*6E!;xO(_m
za5YpmeaD@5kW<W$iQASf>Z7HL2Q(KOzp!$lfmeU2drqW&k$E+8{F#gUN!L?%iOcTk
zEPyyNc_xd&0DPyDuJ{;<U~Ru9UZzNL?25C<ah`MM$4Ap+t>)(<7Qx!^xFbk?(u6^$
z$<oA+hdB#0dCYMq$8^!HuN13$98>PS8WU-dWhOSc+!&!=OrIXAV~|*NrugAuI{lzf
z@>~zwJ%@TUVwPHnt245+qLvKnUP4L}g6kqywAwB8K8i6|r7}~6Vyt<0A|}5#Zf77p
z%=dCvrW>n2jjU1G04(XXT#Rlm{YcDfG}g7{-B>)&d+t7NoV6X%9H5k|1jIi(z-C;x
zx^$I#B)&6aMH0kzP>*VVjVXh`m4X3A;$&G^m&7e+!w8?Gh!hS09l>-juhyrY#H7l-
z=`?jjYs3*Wtj@&|T96F-Dl^MJt+=N0yBq~4ZPCUNn3pH`qy}T#0h`+A6#`awVs3at
z4-UF)=XK3hwt5HB*_$_3f6-3sz5@v)!RqDAh-2)lKWho4Vi-eY(cY+X-h@+yXH<{r
zF%!-Z%aHjYEVjBV^Ai`Z$-+OMHeNP`%f48&d$qo<pvHPILp9?3a=svg&zW0frxB>O
zo(~Xgb=MFn?GcN|gHjyL?lodDE^NCV!E4=cEPu=3133FpbUT<F_*!*b(pcme^{0#p
zB><2~TI|M4Oypr4lNkW;GDLuRpWS;@k|(Tbv79gd#~{TIB}>2puy1a57Hm3Bg*(cC
zI=)q6WAm#{eU04dE+d%lGK#)M`b9Vj5MvZ01Ke*JbII%WVpcL?zu;3KTTFiOyyEYw
z875pBk%?gHHoilS`i**qn(7sUZ!itIWLJd5dqXQdL^|L4XyJJ7(I<fu9K&&P246K9
zGLi1|VO-BN)X*FStMWACWglXOVRx%?ZHZY{zY)a#NA0amnH7Tt0L2l@&32&d%t{QE
zK?U=+0^ehb)uQJLUfFU(;4g6<+HtSprh5rzFpsk?E>Ld~XrT=a<|jqr!UELs9m(Pe
z3JJY+rHFNkt`k?cb%?Vir#OJey`+_Dov{_oYmS7FU6!wIX6bzT4O94|1o#KmAtv@m
zOm5k>sNVuE{p;fNKXdH8@DyT;F*TtIU^yG&P~N4p#OlMsnaI|Uli3K}Yzfbd+Lu)p
zF25Wk+AKAOwbKmsc)O#?cFq-IzCiC!BWDsc*Cfm!2{{atm_0prWni@!*YvpddfTE^
zU>m(Im(hxHmS8Qsk7k~w9Rl~^lFxd!#gi13<m{teAI6ZZwl`IXX7UvcWAEM!wT5%&
zwVXZiByso5C>k1djrbz^hN!;YY~c>`DQ7@_rY4uqGuo~7-bwZB=VFe#;s`rV=M<AQ
zkuanD*DT9l_?oL2`ofL)iC^hB7drGsZ$>)K`5gWEHD7d$V01fLD#-$HWNt;58@3Z(
z3R6pX=ScEdB2>P<P6`%$GV3%(uC8zE!#uI;%2C=?rzG@Rb`xk5+1ki@UsOZ|R?e%M
zF$>Wji5Y~Wm4y@yj2exIF!B+s5MHx0Sr=2<8>^C9VR(qM*yx~$iQAm(br?#g$`UpA
zBn+Q!r@Uow^++iZEr%||oWk|pml1zrVUJHsKlAgVorFX^{qKV9A5ZIFlUn^i<{;s6
zqEc#Ka$>5m@SnM`po6}xp*rlXz=uns_7Iy$81yCYte03y)e&Q&CAyp%iQm4bmxE$w
zNRNLTzB}P@$2bqSb#cHt4q3qC^29(T;-Sv=&LMZHLotP9y~}C7qdjc1-F;UuqC<bD
zm;#!J*!%pWqOy9tLe&*}D0R5z?ij|pgmtpVh=tXsz)e#>@mL4iqPVP=I>xa~qQ@C(
zt<LInURw=bA{TQ#f_sV|dp3)?qS;(OO~ML*u2m*A07EU~xt9!_IXZEg1&1&xa6-jw
ze@R7YQvQ#PmIhruZ(#{XtIOJGsC-%@wlrps<V=)MMQuJZIpv9Z%a06`_Q<4g2V7=K
z=aMAfP!etrI0xKPiP})=k1TqqCF=Dru{LjWpKZiYVI+i}IKTiaj+PVXA(*|1p2)0T
z^Kc#$>>yS)Do><I44sevHkyAewhWm)x;`FRP`=wl`1&VzayS5WTeNo>F?14RwfE;Y
z(d_M&3)zARl$l<(_d#FQossy@*X*d_k~_(-<5)e-Ezv&!S3~8q8boB{$uclx=nlrb
zZY)wT+zF<?`-J8r8Lrm}B)zvtp1V33r$l*lK%&D`VbH^dF_*he>>O+#*WNCApNz%N
zxu0-*k#fAij!c>K#6@{|wO%2;wS*llG!RR}1~&+c*GlEL()Yj0;EL3kJ}>m+agvZr
z@;^wP@TZU~Nn-7uFvYYEM%XmvyCUxBA2`di=?Sk8%{E^dlWuT%dY&>}jH1YM6df~R
zr+%y0?0(#~dzWN}9K+}S3L6l=P${j0_S`o*z{vgd8qv+kni@_MZr1y-Y^mnO?yo$t
zsZi<_^6f&e;n1C>e2z6i+1q4I_(n8BRjv$P*zhDGOYrTq_&qZC5g}T1um$fJs|o(U
z`}FT6|1n5~E`CNQiqC%)8b-32e{05HFSM$%B2TOaf+CisC)$fEwPc%$<^}^dA*)Ro
z_F_X&Tu*zM#@0Hk7iB_&qm&RqfH@3%(w!wl3+xn<9b%{rFlHe4dnHZ;tJI`VY1^+-
zNvA!7uJ^Knp*#-bAgJw^r|dXx1_-VIABX4&BgEMIS2tqBwV~?9=wkjpOx4~~ljFNJ
z=iC1Dmxs-0ozv;BmD;-bR9WMhGDt-qGnjJ*n|o9J$=5E4c_Vv|RXSl0!*cUe;Ry^I
zBqY)_IWWw5eEw~$_UV|LLRToE5Z#4H$O*Mw#yx^6Pc7N-Moz;GdM$nQwTzT2)>dzP
zSba1Uz1C<LC(fcDJ633TxjZyY<Dm~|HF0%9eKIE*k-qh-kuF1DgWcU=?;wA+^|%5$
z{q0kB0LJS%|NF-3lt>~0JA#?A<?fV-1*I~h4`vL)&rp^#%q{+2<KIxX|N7uFq$ZvS
zPA2V7(^#RSS{)ARTdADPzzC*si1qRaUVMbE)Q3cZtfPH3E8y3HpIz<@v~mr)OKxqg
zi%lK-=_`7$@acs%C@=7VgLz44h*CZE7_-5hXnM66?>}p)pB+<S1Bka4cvc-y&+X?L
ztN;Z=x{-&NsHKXD3HpZn@dE-CvX|-6w#Mhtuy%Xph@-u28NBWtpeds`C5wd3pE&B+
z+1scQH=c~{*ZsJ(ih32Q!+c%edm^w1e|HXB`}O?|-%2|3SNZNrB-#WeZI@$#A30x9
z2Azp<nf2J485POP#vFDQ$bk{KpH!f9RR<?_q>GL2XzK+`b)5L+>3Pza^V5yd1AOvX
zPCAI*a36DdpU`e#UXA+Gv3GweLm1+4okGGBkpOXPa~-R$psHeTu;lawAy*8!Cjs`)
z%!&Du<3CsP1P=ZvWP9&O;LdJyk7Hwqd{uKI@cyYI!?R8F;(IJ%sZ<9pxBbrdp_FQ+
z*a_yYW$#C#rqEFtaIKdVs!UL!#|W7>L>m+1$IX)yxtZi(K;$!luF<q+s*EMw?BeTK
z*{Aw#78ptm+hC?Qz4>a`UrmE8&vSqhd2V%NP?X;T#F!5{myAzO*eCn$artTBg+X?$
zCs?7s6<pXzi)f|8RQ~77#OAf{XA(ra-P=+GTo-Fd<4Y3RLwsMlSb|O_){|@Ilk@R~
zz(5i{Z0CMqCUrRLk2w?{CubWNX8Lmry<)UBVwQ)_XR|B1?7p?)`6f~v4GFf526H7O
zb(Q^6?t`R)N%*IEuXwQhbuEJ*Yg>L5!0S1EkLM)eN11Sz=}vsVHZb9RLKo*kYZECa
z#mHl7dhV9p6OOSI(B-zV4^|(~Nw$&$+2GqiOj+}^a{{0x!?D{12yAnk)2pa%x?^3&
z`2mIuw7UEjoDbkzj-PXT>d4rzh2%m`rhY9O<VZg}ygJe<S+Z1j#T`4ixwcs>QDeAl
z7DY1fT5G5hfQZ%2u}~^h7Vz4ly-kwHmmAaTupj`z^5z4RLv%^<uiPsaQ9C7jC^jH%
z#(BlYt*)<h!G+cHhz*5^?bVB05A!m1t>-#_yAQKfPOnqy4ty5skIB658yY~nNP?E9
zg0J4}*tjQAHU!ZqWcY?dc47PDOvww#67bGjFF=eN|76`pqR9N(%Zfc<Y#PmavFx(;
z=Gvh|w;AKiL|z!06R7=m;&4@N1*Q_n7<V68-rOJ>byL}Xi8^jFC?aNamA587y1X}9
z&AtsVsNyf0YPTrfe(Onn_w*IqeeK@jyRj8cw{W`b)x|}%hI;HO^L7A;<&abuhZdxP
zfk^Q^YQF5xBS1_SZUD2dE8oJ!_Hav{N+Fs|<W*-K^c)ey$iW9EvGTEFFfy2#mt2^f
z>O*|+MTvvG`qFs{CWwA5@?n<gIrzqrY;_thC*sEGAY$J`g92@^HQ3HD?Z)xD8e`D?
z8nprb+17~!Z74{U2vadJZmn`+`wXZ5c8CwGC~i+UtYyviZJA|J<Ey>+5Ueo*-07C>
zS|CMap`;<qN0>g?CUu+RM$T1fG8G)sZg{1<T?XIk9@>UANeR4ZDlGuC@_L%ipYgbl
zpU+G;Fe<g&Y!)kAZ_QLvzz_F6LtK{t<jX<6Mbs-UnSZg26N&QhgsPvm7qybWCwbF5
zANT+ako;@<M(y`t8uHR&l8Q!&EI!cno|qOX*Ge540lWex$!V1GKC&9z-`m?)N^IrK
z+A~H-&pQ0ZJ=hfl>?&X?QYpuOmjLiLS9#Z>N|`MMMC2gfosIoctR&oPJcVfW5KYw8
zHWY}QSmFH8-dpUtch2+fXtpb4Wpi=u`N&MFX{vZhKQmf$fY_odRv+m+E7ZkH%Ifhn
zqCb(LT7L0H@2;1;^!w(YF5n6iOz&F$6On-DOWZPkF~0_A*Kim(dv>Q%)BxP4r2NO3
z?puKYGFywJo+Oe3&243i`of|Hq6l67nt9z1foOeI9i<M2X`Q`A1IQ;Q*??b#(ve}Y
z+s402HYE_G0X$ZC(>`^Z?JuP06wlbY3A*a-k`pvU1hEr|1cv6i2uCF;`nw~r1`nzq
z;~CRl=N2-HNnp4pxo`i7iNh24@_e47)XE;BzIi=Th>4$J^;q?WPA$g=ic+;a`eo~p
z$8o4HK-s~?rK>wxmN-nR6;FbHZ!Cwo$@`A>5sw{9K*%bn^Tr{`)|!%bw6FOKlB{~U
z79Oh|^QqBbFlVf{6q5%63wCduiLO?*RpsYOI6MwJPSw!hMA1_crr1<#w@+VOX_#+=
zD;hNISvbnn#JkfQ)GM9CF!p}sosM>F?12vAQvS4ic$y#lj$kxW(XLx3OWnqEPK`R-
zAkhA;(A$|TJ3?%LDnh2$uinqPjpoEnj>q8PeO$_>W^Yp;t$LeWjbc>wb^~_%?Vpi?
ztxYKvMkT_PxyNcR><$_N_+o8sTAMtBetx|daKP8CmOQq}8=?`zEni8Qf^ax3E#_oj
zNT$c|s>q}XxRA)Im2_;?hOu~$e;UeYo(1(-F0^4;&AW75>0NcYyzuVn2}}G~CWi>+
z-UD-EZq;fY_Hx^vu)vCqA#aOk42G-bk}gMyv^*~lVcEr<={t)Ot*i2HU0xT5ODf&T
zrWNx~-xay;Sxkcw_iw#gHFqGjxf8EH&qB_V&sM$)GP$`tp`<r?g^;!%Q|jikHVn?9
z%ss&hnrjhm*gREVdS@Qo@Sq`lE=Q2C<5%~7rEF!NzkOO+uNxk3FwjvR-P<OBBFLn?
zM@)JD9qbH~AN9OCUY0!edQo9IfOJ+Nb5ljl3WGnb1-?at^~=dA4tCM1I~2<iLmWHz
zzumbv<6C&aT;MBp3C_@>q?$bL$SsT(_KITTqH1+&X!BU&JgHv}MsyhRmp$GXFqf#8
z?|fsk>?!5tKFx-96Q11EzhOQUOa4aFTdAvNJ=kEZLOOOEfQ-|BjQ*(bc-_Uj#dQ!n
zmAY9S^DMLOJNPqZQ<ARH6QjBniK80@T26fQaw`nJ%@RKM>SbXMrc6?MBC$9aCY7@K
z{T|0^JnK7;3(UG%9^^6@L(KfMr+Ve}j5?{0A>Nbsubx_TL@SmkUfQR$Euq_Nuf23g
zCi)r)vFx}Qh6Ss@jjJ0}L@ZpjmV*7yOo4{S*I*yx+4X3awHK=11IIgIm=rvoDcGh9
zc?ma6qv)fmB#QQ%t_G&tFr&a9YI)Mv9fEbf454jH^Y7*OQ88EpqgLqm-cSAZ(_tsL
zE6a`hvWhpUpj*K2(#^-`u+DRV3Z=_^mC7coM_V)tNWjarTHCnMvk#3f+@OtkZHC?a
zOpb`8v&|pv-N^T-FzxT~MnI9qH+U}+*0&y`WIO`NPYy#hfv3;L@!18pp4ZxYof5%-
z@u`bymVV3YeW%e{A3xLKN6Sv4NIcpS<!-cr$;;LU1W?MKX8=-)S?w~NQ1L#ckXLDO
zmKgJKmIvb759>5KV+Edlk*vP`I()IUSKYC%znAt_z5Pr5jr?$%CfX)c-TY6V3Ed5j
z71%&&(hK7eI1riu^kR<hd=NOZZJ4rNIUKNHr@9@$vy4;!j)R5O5yaleZbnb%*P{y9
z(QVi!i=a8|qRdvZDPf^37~?0Vf33U(pSSKyM*JY`UzQvdPJC<!u8?AV$?1LL*`o~R
z3N}-A&5_7oQzyqd%)GjL!*@v{5#rbQf@73057vUv&roSM$8~tP+|w5+A1SA9aR?^8
zgrk!e0cB6fa^C#(A%M78K?89>f<djtr<Q)~?v7)SJQC!59%pN}{09HHidc0mg2HA4
zU&#F^_TnU#P!V$O0GGAEB?|Qq=ZaG!cwc&Dodw*HnMDwDh*6}aD%~1QfAe+_yF=(q
zHS6gI#;p4a9V`t%57CpBy9hc~;hZ^OX*7O)&r2X^GLmameHD(YXnP3GSL~=QzWXza
zll)9PKJ=~3`kilkmf{m>h4B&%e>Cl@v(14JM>FNr>~vTU@0oI0(_oWc#O}C4g;Z%P
zi-pnl2o~LUxf1v9Ry8wopkUI~pny2g^+~pdSG}QzrA9ma#d5K)b!%HM@j#S_#bgcf
zW!N)z!ySDkvE=toG+y^NXw}CpppJVEbN-f=Uk2wVdg0u5XIoY<9iEYc?YM}8zIvg1
zKN3BUP|~);h)sr>oHJa#lm{WN<(U8@2IcSEvj8N)%L|R7kL)~;zFl~Nj_9|ZH!o=v
zQ(tbO=V%;8Wpcj}@|bx&oXYtlO6b8?KD9piVdPORot4nZT=jY1J}uU4Si-CO1mLpZ
z-gO{Gov{M`OPliZA|{egC}5Yzd+|w|NdiR7?!NE=O6UjwtFcN4Mapm}cSLG^pIK&g
z5{ofjlgA}%+oLs0!Eh3=iN*06k5Q}bRdqoGYq>u-Qhy^!+E@>U;2Jt^gth1cW`!HX
zTP|N8t5yT59+R6LTloX9alIc;UZzYHGm<P@3@hPLBpK+Kp)3u8BN^A(0*OKaLT@tP
z`N_VzUu@4!uGoG7>l$-A%*RIVJsH4Nte4C9N|u|$OV{hJpgQ2-lr3Yc#N~dH=SFAO
z|52|-L~lTC0Nva@V>8u=Q2Y4Qj`DM{662VGs`V_4ZJ#Z@B(p^XHJ}bHebH_irAfhj
z&uJcn5PCIUq#z!byWRTz%h0hEXQ%V_fWOkc{M}cgE1zH-SydavNkKKgeM0XjcJSua
z+LD4@Aet_$dxa_9$5{h}Y6E*_`+*lcgB!kt^Hu{kW~2o-Z3sm7kcx0uj<AhUX5Guo
zlx0WJz9F{eaC8c^^oyO@ZqUkEHml%g35O{?L0QKSr`JmQw{`A(>-pY_y*;CV2w+;Z
zQ96dM*U=OG+Q8KhSba0uvsK8#8b0witwu%sB<mw%?v4m5N_L`XfT+ZaEV3?(6<;yZ
zEGUuXqYbHBe-{uNfp*{q_(W{Aw51b^!dGCHd+~aT)#Kh0E8S;PJ7VBzR(XTG>Aiir
z^B+Wzu~f@82Y_Cy?<$4vC*k`xNj^%rVVsy~*eUdZ)$}-f9dEJRzfpoqCV1b1;@$T@
zQ*6Ssh)MwiiPUdGw};W00d@JE3bUhOb$=w^DiB)Uj}q_ucyJlaWVmkIrf1Jxe?Lrr
zq3T6aOtjo(h@vumSB*CO2G1s(Kb8u6m8xP}K6n1@$99;u_GVWqmU}ZLmkr8*L{wVN
zDLi?EV&FI(iiWD5NENgv^$27KeC@XO)z#_1VIP)NdlMIQS^Yib3fg{AS$al4(Ba9K
zLTfrl`lK!J=!cHX<F<10P3Z1&R#5MNPt*%KAUL=)+?A*~i_p+49%zFgy5w|M<C^6^
z-cjH@RaNw<tzl7rS)wX0WH=A35<H_==uC<SV1<aC5uk=tD*kl>$NyOF^6FF+4FcW@
zIY1XGVvMV*KeWzYU+!mcj;3YR!r5eJ8Mww8jiw-K*yHwXF|qk-75OBew0Lf#E^e%1
zxIL+p2xA*_%C=?pI22~tl0QB5O@x_@zJV50mV6G$*|}*~nEpO-)wV|cIXkUg@|ieY
zD0|eV^zFeKJ{E&2BPh5Kx#yiE-=>2^K+2(Sr1#c=D@K#o+w6WlGQ)J;B|b{UBO-|w
z0(P%=3CvoD?-vQgb3E_R46cv;hwSK2<WgC2Yb`#rf-_hxNMvvThWsWC<cT0|6*|42
zav~Ge!6e+?C^sD}fM_AKsxJcpuy~*Fm@w$47Ml%HmGOwFZf%}?2EYwdr`@hA{3=Lp
zx=oo3O_doDouQvHn}4Ts;3#xc7I^IaC=$G@MD-v#?t^uS0!>whf7wP<st+l_TvOvu
zHuB5xYCh*L1dqDjl*$5-_v=Yo=`>yN^=S@(y(lLYRr3r0-3>c&6gnELyRN=bRtV}4
z-@tOrxn|*bmw$V{*?DwUA+IRjcEWOR%^t<xNqupv)v~9Oz3h=#6so*sW~F>=SWqXb
zz$88m<HPO7nvNsEjlD5vhLOkh&(nCImI^gd)mP;L-3vAvF;)SU1Ez*HD@f%i0^fP>
zcJUK#X#@fWfdoJ9jJWMr-@z_@>H{?51GZ88)?Kp*@kR5C8<#DQ+fd=YQD%WpFe~n)
zrO?&b`riI{mz#7lI`ndH2+wQ&XZzge7VY^5o2*7oLopYwc2-v*;nfkyh+e#fcsHkP
zJaA`cDi-a$VU$Npw-AXMnZS8to5@x9id2vu!v6>{RMncU?R9c9tUPE8QyY3=Qr6r3
z&_-c7<yN0(7Br6XtKjneL-uR*s2KUq^KsA{c8ce%Ioh6_4e4vNqV{q7GfVfaEb=dI
zCI7360dpc+I^f}qAM`rO<h_V7oZvdkLSBzn-}5dS18%tod$1CiPmP0Dv9<ASKtwif
z>Iov~T|6ft4U3rb2O0d-eT0ONb4>%}g9W4O@DnzOCAg<kQ;4z8Yhqs_aeuQTw+}#+
z65#>LwQ}9(UVp1&-G74=!b(MWmsjv-F69HF(ldji_icE+7Wa9(c;{zIh)-YfmZ;!0
zq!_hel|jRSSXZf|W_WJ5gFL7{{^MN~9?K3F3bEjP0ENZOmM9j<L3993?w6m~EIgyp
z)|UzVu0AtW56*X+B^qq=s@46cFQ7QQo?B_q`N~7vDq%F-lm{sLmvhcFOowgtghlo&
zv~QoN62YSPt&t@U(|41*)x&GcxwJ`FQ<x$V2HR!2&5=|gSgT{%K)P!M-QtGiqWS>R
zDyiS(fq}a!OvA`J#~brA-FgFAtfoi?Sl&?Bc$cAc(B#nWXz^tnZO9Yg)91bAZEq=h
z&j+Uyt{vzm7v1MIoxEtf$#N|$0cxYPRw;dg5Hat)(AUUa+Md78XpN*2k&acEtVFEl
z(0tn!lW|X@L6axh809teLpG|95(4gzY`juBgV$O8)X<;`Z@Phblg(%0I2_;S#0<c_
z%iZUA*&mGzLF_@q#!~YZGdASuOD`1ch&taYKQokKLn2DZ5-Z11Xt{z>7QAy$6Eohr
ziqG18Id7?FY}}}8vE5CnHFtNJ;&Owx>s&?(>_ws%cv!zB74+im4&NbGJdX3;D(Ce3
z?4PnZ>~C0y+MurQ%|y9Cg$efy>2SIVqg87Qk2NPC*xch;xGT5LMdE_1pf(~Of206I
zLKr0)Sm*8Y5LXf%{FgY2Q9tekHu<11A^@iy?T35rx;;dy&n$OqrX~RG-dVFSTZuBh
z%ec-dWenm>7gYYZmn?><_!EVk^6V`{0ycHWyhhWmkvBPwx0WYu2T7o$i+ittv@?*z
zVxInA2KJ|${0DCjgW^am#snerr;vLt2-xC)7b_1>EZb5E(U^{pv9%nk?LxOsKrmWH
zUGPfo9kXiPFzfN&H0x3}VWwzw$HcnyQS9gGeeg<t_yufrgM%StR*zmRtHD^D&+l^n
zHfQZ7M|}2e#`h#-LzQuy^6w~5S;|LNDf{GJ)|*<h8F((KChKxXN&xT%twUyDY`IyS
z(u@GZ^?jJ?<F)&wn8&RvV52|dEq=>H>H{q9n?1eLZnJ;u(o>y4!cWdYlG^BMDu~$>
zj#UH`QvjjyJ#JOaUnJPt)J#yAYTN|QN($b`Flu}v;&EPlcf05k1nYoFjKotTfvFkc
zH(kPmJk}(Rg>S>_z*x+xa2jX#J)S<ggF&EIKFL_*!#HKKMD{Sh$60t!%BBNVe5!Y*
zyswEjT^{QJk?4xmV$E9}_w&AOz4MNEM9T2K@lKvN`QR3DS=F^_=GGXojK$;GwpvfD
z81rNvN+B5JJ^4hh{R{3Z)O4TK7tJs6MaSWIHlF8+Ze0~^>WnN#>QdZ#EVNohp8}eE
zvn%AdYaxdb>M(ql>*&K9{sx=Z_Y`oWzc{p%zB!Vwv%+3<C@6bpA@V172T|)zmZYj-
z5O!Em%caDy(~)PN@C^9NA>Gw>2SXmngJh6xAl8xXJ)_#o?%lM}eB-ca=`q*X2>o6U
z|GG}zt`|}^zR)*fo%Be{qLow}2iSTbqGudPgwU7WTFitGif_%<gs<l%CG<ni7C!Bj
zh@578&cWAi$7smh7@~WfUD-}0^qCy-!;E}O4V{tG?o;aLC`0@BCIYM|I~6ezcVGrZ
zf=RI1W%`Xb(eRXsKZy*f6sSF@_GhZn6pFZ1N7xN`^50d-AE|Obo{o6aB-LlxODAxW
zZNLB|-uHJdTdS*K3rS&pFenFa+5A>pFdL)@JCUEi#Y}&v7Ot^c@T!0_=QiiCO%Q%D
zS6o~Uk^J;~gr~mVe{N4k=Nmw=!xDwk^DLAKTXkzh&+v3Co^FeDjb3&OMZMCVxbAp1
zaGh4c00sd5K#;=i8U$rAD5`}~Hj~G!1Ch77D%WX078nvU!VXGoeMTGXAeH<E(c`!_
zy*KYWM}7UlA1lp0!|`|orS3YcuJ;x?^p~ET4|~x3z1g!z8PUQfzbWf4T<UzVhp+t2
zi;b4neP|~(iX5#l7m@`v!Bo!Skw^&_D@#3L+$+x2ZO&2+ABcb;SGmpImGIL1l$<GN
zLa}BeTtca~zqj!)R|eO4<U5tN1b(NdXZf;k*;k8hy#&zJ%5>Qom+3Vz76KZl6eG`K
zsSfhhK8A6oqj1&TeR+CrdIsI5(Kf5hc^O0FB!huqm~v@8^Mvm2jZdS?V5d~(h}a!P
zswmR?618%WlOj$YhV5Q(CWfaiL6#A@GacU%$GXm@k1X^FD4U0Y3X*KPk-mQA6=z$F
zCz5nG;){S#_y@_e@u&_3;a;DubWo15r|WX3-7hy@1y4Mx%b%^%2KC<7s0a+9f7qBz
zM&5E^cW7o*uN;`nf8DQ??6WOMAX+;P?1tc!&s&ON!AQILy3PYHHcUG%BFMj*0CZt;
z<AB)FyEm+T$n=y!ig#w$*j>@<CfD3S9l7J|;Bb872p)4#+rgm_^tKQrs#OOoDaX^X
zrSo_r{)T`f$eVqlVJAN-;nca9Y12^~e3C)n&9IpFdrP=VO`>-+>Xl1_UKy>+8=1fx
z2p%9l&)gu)Cl;{lJ%J`PWmn$WGsg|wY&~EK^x?hITANL#(T)g#$v}J=nh{&C6gqqe
zTkSj>vb9cVkgQV;7FNrQfaP0~h(2ORYAjRQiBM9d_FhE&yIuzJM-=NHawI<1zP?(c
zPn@MYQR=Tm>+0>)=&|Vg3Tr^4O6j>`OEc~4sRmc>Cp@(Cm_0_)Km1V4g2bmvs@ns-
zNctn8Jd^&c%RxSqAM<eD<pV@yQ_cn08|+(Gnv$atcQt(b)Z{4KYE`QAAplnqYHGGv
z!R&mnh-GSOrODYbv-}j$dWR|ls+_#O8_n#w>*;EFr}hp!P3nYGxr&%0E0tG%>nJ+S
zm@M~zuPhPDGXC-=>@&+g3jMS|K=w)r>U+0#)bCT)jF1=gAEi1o9&Q$dEpX>+EJHIe
z6T%Nkg&KP5(vj1Qo=o=WYQ9!F2x-J8E()|ioqA^3lWQ1AamJx-&oz|r)>^2FPb6gG
zeLN7raP#Pv{ie2jYzvJI@W4#i=uQ*%h<Lc;f{_cDykMYZ5Sr88*eewXlg%v;Fw|Sf
z;WuI#H25cCIjQUYLzdvY=jqFq>bLQT8>an<T(q#1Kp=(yh=jiG<BxTag{*ZR8o^|3
z6E6KSJ%!S>zCt>f%?<`IrY<CJGz^(F418K+i@>@~*POvci{qgP=kLU7q)9#tB*6ff
zzm>)9{vkw@5(3&%9!Q`sa`{?amkb6&a785)a20c$Vd=PnU~1(`!v|-cJ}){Is&b~!
z+IEPF5;n*|@%xa<Z)TA^MopJbO9=eQRHJAPW!##!o)!}gK|Byzfmf;Mrb9D8L|k$M
zv5yh1fw%Y9^-wAUX38M5+^@_jxP(-W>USjma@Jy(qma<HIAxLYVNM8rWe+eUL;XEl
z_O=dKSIAeF4%!`7mK&`9UhTmN2Wj|o#a&mLv`|EnIe+-9b)xedD|d#3cfswn!(4{S
zhd-aAxXQyC;y&x@9Z7gN8{#;Hf}Jcg6zX1OR4b`<zCtDBLbjv+Oy+Qur?C5kPFmbZ
zfOX{w!y^;9<4DN%3%R{Iy@df6M$=Pbmv;tzy~)kvi!gg<iHWst+3hdp`ZMTTK_ON>
z^WH91W>}akscwgOIREy%SB7cO#WUbhZt3*7!*4Qy?kvX}ZMLTLSs|z2*t5+N;GPpY
zN+Y(=z<Yc--FOsjXW3jq99BvK!YUTJwS6N&>3vFM?)@~bBJ6Dy37aznv`E~pHCIXe
zZy62LL$?Rer;TgdU>h$c?U`tfPNFt5jN>*8U%YOc#7AS`cP;VWcG0ACIo{S1F)ut9
z>JBEM$7W5N6F`i^mZx!IiXt@mLR4S6Z~`!&whHoZ=1jU5zS@+&YFJxc8QNL;Aq`aP
zU2hI+016Brf7b?CnT!xIV5b37xvU}aA%`G^R`8C7cnnRQ95&y4I-iR?vB@2XzYd@1
zMc<|Fm6IE%QVn?&Ze_)^3qOshC+m!&dPGiKDgrIGBCOWJc>ZjcLmyuAeTn%g(#_AO
z&C$C>_!+JsIfum2ptq=Fk4fYP-J_hM72|}X;~8q17mTaJZOlUDQJMVCyk#r57Ry1k
z{B~QPpdO(S1Qfvyyd-@;64_r_g5f^d@_3d28{M{Tm@gOR)HP@uSjW!>ehzQU3f=?-
z@%42$93ITuTWZaG{a1-!SPC&sz#WH#goK>Qn!!c+$P+Cy&bB+JZDS}}`$%nR$mSHc
zwXd4Pvi@W(3OdKJW?5P1f?Cbf0-r&!>+r*TVh-w<iV6A(Pgm8@7a1vOUwyQHC1yP<
zt{t7abMhXEcRWWTCUv?fm}CfE7eu1G@CVeaMH-$F4O0zRWk1j`KYBP4Ky1Ao#je(g
zdc}uD)gX}9J0Ju5umH*^!kAtM*JP^l{Jusjx031J{m$ZvM3Nt0Tf=r8?Fdvh@4i&e
zmpX|mpV_6k3{_txKd2a92_Qh?yOdz1XgF1!Te<B$aV}$|3J;&%5t}tg9W6eVIat}A
zdh?-&sSaP;yHSYS!HGYTyn(R40)g)UZ8WYJ=-_P&w5L9($Y5wIs{=a`@fZB3IP@1r
zE?5qpLT)jH#`@feeM2M!TlYWw7mS#9j&V!&gogG9EJLX#2MsYH#g`XM)WYN9fr<6!
z8~YW1EdQz;ndD_j60ZR~CXGE)P{0{^Ef4jHCi>2$G%ykCu3Y@JUakU*HZke5Pk)x~
z{sDWf98#hitVIUK<_y7*j46q=^2`5vqJFf(Hu1l`4?U@?cfMTF&(3;_0>gb60144k
z)1Ur|82)n6#Ejv5fuv$vF{b~%%U{?3n(tqrkP{qqCA)1V?g3u0{|P_)_x)Ff$+Ol*
zQXQC`sQ!K7zrluoU-_XWEZmb`ze2T-{;wJR@3HuDfqg>xY(^R<WB%_T{}(RK=K1rt
zE)c)C64B3p<6C@SgnIp{lsD?_cI-!xR$PREBGxz->$Mu;g-+n+LF3uZuTlWBP7@Ky
zuo>as!~ECw@xf$)|GYSk{NeAs185!5gKxzoZ}c8D<^2<$6Jd>50g*V1!zJ88Lt?om
zc#7gapkAldjX1Ygp%<2N?rb)*QvCbZf35Q$Qvih_7B!sVWO@)c{m0Ajt@nK<VE^iY
z4Q1JD>O~)_WykJ1A9O&HX>2cdWVX^_biqfsujqfk0%4<XF@TNKwM(H0^`9gOg4{}!
zLGD<V7gLQn1dkQiE9U6pa=r(_hh@?`>JIs=0y70)x?SFkfG)5B%EZO0<@JZn^ch^F
zPWNzgr`VDMryQ*J$98p|+DWVqB#=_bvt2e^;VI3Ciih?k-%Blq>McgG@lPt1Cdbb$
z;@TMgG2?$(0NEsLXowtarT;uRF&wy|Qit<v>3C)hMyW)}i0ijjS{$`jdQBd0Kjq8$
zwg)`~1R$;vj%E~o_UI<yvWc1yG+{LuVsX4V0D3$u>BCZgeFs`?_N5qJzrCMiWr>aj
z1_ARKiy#;tBk5r}lX_4!TRBnpx<Jom<7e{l-$<Q*#_*S2A#gmeSDG0^`Y#g*rh@lS
z$n1d8xuSVhLboruZI04tv<Z;~K_|~5Qal4DOh%I32sy1fVqKM^IUFR;zN_RS6+E%y
z!c=Pl@vFD8ji402>zvA*YGnsSN^RIjvV;kxI_=W%*_kYw@cE~kG8(Bc?V!Jg@GrZ7
ziIIuHb_#B1!Pmd{hHt;{j|B$e#l@V}ZbVYbAMi6Ku(l}+N7w@b!>3(fG`qFDD2=j(
z3hErmDC>lBop#?L{MO;qY|%cYlk^tjWN*C7(z;-w8W{03`3m6X@dYxGFKYq$zy9q%
z<LDF-?y3q5%$QdBdq3$~z_A*33*$iRG-`~*qrK{$Y6yEHGYO2E*MrV?e<jIVB#d@c
zzR()lzYXk~ZSks{%jn=ER>%~zDDG9V2BVVpz+R_T3qkkiOrbc;K4@A_KOXL`tQMU9
z*<Jtq{~t34i2PoM>;k8M)<H@%%ci_cz0UrP+tnS(@Aez?ne5kkQIARQcpOeQhhZpl
zqoI{Rxzk%%NY~(a6AJA$8!y1R_2L+tEY)oEGkeO^IQtNl@j(bp{M%_QT;LZ5Z5APk
zH&1V2u~?UhPP@kuYwiCz1O6G6A7z%ooL_G4pB1>@2IDKGm}PkL>-uo}7&-yyI_b;I
z9R~f%lL^6(dz7#qh&tmBBj9*vEQcRhci2oO*%o_p<{n;^AC@b6Cs?rOUR&(j=;?Ox
zfQk#y@inQ+`|Z-N!ZZU$GTTip1YJ*IjlS+pCd;14k=_o0Rfh=|E_eO@9g_SrI1y2@
z&;V3df)pf8)!&w-k1<<uhKFRNXj0n7d3>)4gmV%S5;_oYeh%xOH5#{CyPN4O2AhGJ
z<O)n=E|`G&9bHXJ@KUQg+Q%HR4+pcAX{v?W3TtAB=|>Y0|Ft>(`Nw$S4GP=K0}T)e
zeq-m2*|80zC8TTH`uU&k#p&~AU$iKD1@aa-0hi9Oyt>@KPp+0r_)i5=Bn5)KAy|B~
zx9<+%!z5ka{qN&rRZQ67C;&^!O5*=(yZmcx0Dstf1K?jpBKrU9>#Jg9on2KrEiSLC
zBab__!UQpOnH_gMbEN(sWp5c!SCgy@CrGfM!QEW~!QBZE+}(n^1lTyiU4py2yF+ky
zcXxN^uDmmI&z$+rnYkbTHhb;v)!o%q-BnLLl@;2VW-8amg~4sm2cJ)5{zZat6B_W3
zFSU8doZkm+yTR-^D9e%I8`KoYt)HT!O{`>zEECok{wKTXTnZzc&~SBs@Cg9VAzn$J
zy6U|{^?7Y|9&9no8S`FT<v@~(CM>4%o(uCj+oEWA8)sOC#Cx)pr**l!r*bZViohpP
z{>auKHU(4>B>{K{{@dvP^+O9h1hIwDef!W}C+RVJXZ}~=%CAx|EmjbeH9(pHPG)EL
zRsz-ac>;Icznp;nX_5cF8(OsfWC%3A&11BmsS(f)lmtaXHm@y6!*YMT%FBb$#sEWA
z!M}fOtvWrQr#^3CdUnzM_jA!fLxe=MIXVx%q>14FCr?7th;OZVk0D?jnrC<|8)y;=
zjGTLs2Gx=F1FG{p#{cDN{MSMLLyJ0dK??^qR6k@zD7c{7nYr#TKOtzh`z}!2>UM<3
z0!brNrXXV+t=f|ki|>oK>l-8~Jf2uGY5Sz^-#M&@E3ca7kEY}2{DN-(gXo;+q1c23
zdh_&55spl90U+=pcIPeqf^OVC|CHJj)!v22o}sz%#xta9^T~0K(O}{II=~UT-Vvox
zAbW||&?r)kceFmCkih8#8J@=O)3@o4Owz;^-1-Yn>PSU&7<0mM2jB!CKJP!XO|U<f
z?QaI~ADg{FCk{4k9v;q=S?R?ux3LL60q((8PL>O2bN^Z9?Eg&67A&G4-VkPV*wOWR
z<uL4+ktL2o8&Ohug8m7@)Srq-!=w)Yw$!F`4;O%LepGPHEOlG&7Y|Kt!^{oYtqtOO
zLQL<75TYP*x(&TQ44FN@{u)ZsCu1-j1BrRQ<a~X!NL>>!amf(mRlat`Q<4_EUiE#4
zd|0OrA+cpDOJPa0ZgoVX3cYyFx(gtljN;6tSY$2*kH`rc_HeNcOJ+iBz9T@EDa-%*
z|0^TnAHuLo3&tR|thdi1Ih^Tiu(MLxH^8L!38dR`6HAUUcD(h(?;Vi2MEkq1&CMik
z&U(S8XeUH>Z<S=e;)e{9t#RhJ&hjTG3@aeHMIsk2@!SL$tZ=zBK~fh07$#8IrR^Ja
z7ekWarVB>x_f|iPV}2UdX$ltTBF`Rhjjhn{a@_L!#iwGVSgwjo#q&$Q_gP7`ZIlmD
zuKYcTETI!RGjS8|mw#{p#8p*elnVih^;|sU4ryg&r6!g_jGWn877YL%bpr_~k${g*
zmNcQ(gbt{J6^O%TO`@@TU7*uS8%-gpe;Art2VHNq7CZ1(LriM%`DL$CCXLtnaDt06
z3>rFi2)&mJRF%Z}NMQkiAF_YR{q&>zdrGqnR;5ADM@5G-?`+i?H*lcrIo;kQoPkLH
z#?jTS6f%n$Dy>%SK%g7m60<OXyk)d~6bwzTd$)G|Oe)J2PD6C?%K%SH<=-nCO7DI#
zLP5JzcKwV<p$Y#@`1sNvDnH?QoQ=}wLjc9b@7<@w(YMv0&gXH6JF3(2Q}CfGTX)rB
zzQNKuW1002su$)<9A;&X^o~4GOqX4`WGy^Ir7W48K=QtXh$KJx<WFeHH`NopgjEn0
z?q2+!wvNwbQ4k0^q3lSab^!2v#vh}w3h8MafB5YTVQEo4OaRn4KLWBDtzMr+3?C3T
z?Tsww`_hR}58z5r0P;OieAB&FGsAWJTjCF|jL4`dCUaKHou}Y^6=q!se_;NJtyAkw
zf&Ab-G=X~Ue`QNtz;0k75ZI?74lw6<3V!p_8&5NqAsyB(A1#d(hG?O5^kcJHfE@cC
zbYZoi|23WyvM7cj9H24Y?98RfL*)VZPgGZ&4@o7HFgdD>x=*<7z_h9zM;6e9CMh)Z
z{*EvHpH1N(S@-@bN!ZEbM2m<Q%yNql#CR)1J7p}lQ3Q+;t5&}n2@}!>1oR<9RO%gB
z<w%_BwU{iEQ49d6%gVEHnC-#1-wt{QNu~WsjCj13N`D#p1O12blcUV@PjUghZtSRT
zZI3$U-@m0VTKvJ>!>L#>t#TOoJX2}V@*OHt87dPzJYren>45U*I|rV^HW?MGZ1B5-
zvAUesKMQLPZi|;5O0N;{d4&26u?5e`F)|k@t;P(H2~O<2`0E0M{geQHYGIdRr|o!o
zd6!I3hJbJ2_vFo%XmlS1rv&O?ST!*}omw?y;+LEsF0?C{Z4kUq1(g@wwiY*?JH=ng
z@YU=Jv9c3{nhEiBsdhL=(wEkn5BGzn8XRB9XDycf?a1IHG#EreSllQ0{-GKE@8R)Z
zCiVOgCD6t;KnU<WS99A8Kf+WG-1ZIjburx%N4oQ9Y{=4nHhnR>7^aG52tZa`URjQm
zwM!^jY8eXTTK3#s7MYGgGDmeZq5Z|8z<G@JKG3mquLYz-lsThZx~3Obf5!1$Fmt8h
zM_<X6%p>!F<q*Kjx}Lc$-AJ`D36RU`E?Loa2cvc2o~^zF%#!Dy8IS7tmj^OmpI3%9
zg7)F<qF<;_+gWM@!EQI&5eV*($I@Ie*(@uSMx0MbrJ~2{%HWVCy@+O076AG=k#kAo
zB{Y@J=LvvM*Kn!VkMY;u#$#A=e<UwF?9LdLNqX5ojO72<u>b9wjwQ+U+(53lIfSm#
z3BYVx2v$#U^(9uONFg=ZPN+p8S!eUx>p;W+G`tD%O13X?D<&%q{xCu4THG25^Q)@~
z)2mftZEZ$TKZ6Z>RtL!RgQ1ycKY${P_S7!88Q@%|NaM#fjYV2)nPH`!PFL9Qd9R-{
z8=Ikcl{E96A`Qa@JF~@JpHRp`jnSe~xI`iWKHa4z`W9@kAe5dyOXOABW;#%sNf62h
zO&!g*JY!c9Lh1D8kKh5JzrA?ViA6*AmvjFf$o${e-I~$6BUk{!D?<#y{zMg@gWGrK
zcb6e72db;8f3Le{9RyJ|<3~@{z(Ap=wml#yFe(xKv?liA1LXc>ns}#V#E$?fro)Z%
z+N06!hV%9-Lb7VrH_7zHHIe|LnSB-^g9c_;ep=6?h3%Gwixj?(u||nbO^Wm6eLNH!
zlkzSfe2op-(kB$qb#2<izy2DW^1anx%{WeM{WjA~{Hz)6#*Ze6R+R*MnKr;xizTKt
zFkt{9mCJFV1?f&})4i98AO*^^p(NA=jOyo;1)z*H)y0)8`ZA*w(Yc~qcSm4A^}y})
zI5tZEfv+pS$^I;Ngm7{A_h&G#KfXO;?w|m&?az18ch5UuVX;eQt`7mpSr~}%jbTH|
zt^8<$je?8@OJzO<+TKA&zm~MGoAeOU;G@9<X75`idWEti-_|a=2tJMP0p-3af`72@
z4sUcnRoGTby{3NR-8)~2ytubpUsI0SYs*KA@~^YmA=hki8=<{wu+{JDT<6Qz1?atP
zHm^ank<Xl;jOhgcuF*dvqXY3<;hiY*R<oP6_fCDh_Rni#Z$1f(`WgJE!+Chdp0Imk
zdV-x{Dcl74B46iQ-wL)59^gM2(b_6&*84^CE7IsmQyx`12X%r(QkwmHXjs>`5A0Q2
z?7*3vb47!V!O|l%p|<krI#$8OHtcu*l)cl3Xksn|>wM+lvQT~8F5y}Ej}lc*;SGJa
zyiq|li;0MLvB{Xm@v&Ld8ei=W<A<FHbm~bnLZXd1<dq@ZqzBOgtJ8tYuXz8?F@Rf8
zA0R~{zFZapkO)#~X-90&_8HxwSm19@IgGEkTyOvZsbPx_Q{bG`AMd|5qX5Es1(A8L
z17!*yS6t~rFpY}!`Y-e!Qm5%-xnZ_n&<%37RWen=k~NrR-OLsWl1lv?N6hr*=NB*;
zJrMADUB0()@><Wm!xu+c7-Xk+&K37YunR4;SJBON2Agormu)*XQ9sk_%W8TBgUAx+
zO{IwFx!Hvb#ph6>M(vxNdDCBwt`+@iF`LnJqHcDtZ5W!wj?*PNhIE#eABe%my2$D}
z=6nI+#C|I-^}k-b*58g(A>9=FKJ`&_L!bWn)6U_)K&RBMiQ$v4so|$WrH+xOT--c8
zwdz?Bf-ZXx2D8D}F15O|V|RBNttp6NbdP&?TI%Vvrfp?xtPBnPo`?`apYJ`85QMM>
zTl+rwb_v}dc4l-*fInlYcKync*&L59oUS-^VMfD$kdK&cJq<oM<q%D>0Me1r8x2s(
zR0W>(%0yNEG_1a^6`d5^SsSyOxuzgOodzEtS5{+V;}gfgJ0~~vv1CFO8zL|ZxAToF
zEgR*KV#%2OON(i8M~HUAJD2iRh;$HYn(}WEg3%@MB+{s!ZR@qiiQ>67H);9vMsakK
z4=bU2r-D``xS<jYPMg$dWAPl+AvMLc+{Wz9gKKN)qnfQluV?IuUB;ZvMZ{6QUPwq_
zg8Y9Q;J<zd%!H`Q36-Q$$opu2lFs8Q8h=`G0bMSR-k;_l#;JLKAIqKx|Ef1SF8GsD
z>trs5GwG82ye0K1&&>2riY;rubAcngDsAD%I)sK?PELr5^+nbb&EaI7UIBJ@*t+-a
zt^{7`yX_Er<<Ra#E&}6cUnLYkwak*DtbKS-Dd)D<mhA<-FRGVoC{^jRxiU{ipnVIi
zStU}d-<RehlFz;q(hm}uDCEnb|KA1x42`hq6Ht^RxK1e)btn9j^)FBBIw|c&0|OO{
zib?Nn@uX<2s#KUSnA;~NzaLl)0vxip@)@Y$(tt!`*$J@5`4cr1F$}VY9%3+j3#zNh
zIR^C_$}){<^<&`>QAx6Yov?qIN&+hHuX3j`(y2iRtIb%jg^q0qs9YFn+`1w%@0%jG
zy*XVe6u;B3MLK=|3JAyoyvF=UF>yA1wDB<E`XIWFt(I2*9E1Mp0`a2yv_Od?v4q?t
z+#f;w-@DaE_|qfvfbw{j9h7Rudgf8ZvUqL`r{0gATk$wI#(=VE=Gjl<v_`x!KcRy0
zN)amY>zHN#=hgqO!JvAxNBt)H(E@QT9{238CRF%IxkviuBL|iH&u;$*i43GbGceh*
z?ua7^_B-+-2*b>8a>v4Gwp3#OzF{PHXyM=;grqrkjSM^Ek+5n6Q@R)t^)!S5StevK
z1k!gHmSq>q`=xJOmsf}xPVdjC)?Zwq;`k*%+qiu}np&HIIIIEDvBUrSbo})VV+el^
zl~YRUrtH))WTD_<NzLY>DW}63dh4F29x{a;aY`jPn{~wp6lAc8)OVw8QCHSkt_<QY
z|EbyJKg}}J$__fv$SSwixL(r#n}zwO#*lcyqU?61?~8~F|LMQ~ZdEOik#@rA1X2E<
zI`B3T=8xf;DEN{?{cpC#f9?1R5#aGUXz_-BqX_;>6ta-t%bf~mk46^#r4s+s06Nft
z$LEPjH~ybqB~TPXGfPhEKfJgwIM^LQJ7GDL%)!i2Jwl-rHzJ!vIulH;MBF&hLr>GU
z)hFauSMlpr#ukH*1Qcw<d-uZ9WsG@)1T|S_s}rs|Ixc5tGSUP!#K<(yJQPlLwnX_2
zwvBJ8BykI3De5s?1h#vUQ+{4Z&^X>s@84fPo^V~>A+B3zROH6aBNKM4-P6<C_IHgW
zrfhY)`AlK5gzIBHL5B*8Q~&q%=fwtVvwq$W-V=IV!3mHj6&Juab-tK+f0=}lbH)df
zz9V>&4G*QFENiCSO|B5E+<Hsk^Y9IUmo<85-ynD$Xn0^E|7OrR2}$D!rhOmz3Gr6~
zue{=mnt<PJw|D|SDtFxDQn)LlXY6pes08XCwZJb7qbu;*L&JCJNfDeHSoP7~<+T^e
z>0FGj`+Jb>7A1OR#K4y5;lGGcR`femE-Nei7;+Kn%Z@S^D40vZw0;e$2;3O!lKv0q
zT#O!#yu>`e`FPQM0=JQ$raJYZf>Y;7O%NB!P<X+zmSG6k#K|ChJH$lap>q-3tf@_8
zwm-n>+z2@oNU|Rx8T84~>Jp67|N8#lg<w6K_+2rc>M^Ng3j5?@>E$ld`mGdcU`O9>
z@Q8dL9Jr*S;Ia=*-8^Mwt(M$`O4f1^?4Z0qAf=3HUUof3<H7L^I+IiRW3;`_Pq%bD
z&K=|@=%ikBa;GcJGS2m+5d?ghbLDhrx}T}1D367vDToaZ8|M$9+?V&AUx<$0eoCd1
z5EE3LA{VkvYPZ>i-QuyAtlGXj-W)+225~<k;tKHc&TH*CV==jXJmGWhHtKzSJyT4^
z=XU$fNPn7L7KnilBgy4-!og3{hC`61Pb!6q+;Dmz6_L(cueP{zly<$`Ip5oAA78fg
z?Tv`Ud9_hSdleB^-S16WC+qHP1DV^7l&K-D)j8EoyDc~c)^lC6G)zWuXm7{7$@xY(
z!F>N|m(F{kkG5_e%QnKy3ORL%*dWb@8C+~`Livp|>ovTrn&c35mOJaGg6h$A=4N`k
zZ9EFaSJZ=^?2jpXB*cI;zCh?FPJ|b305h2PL3GoP(uo+k>^mJGDYV48JITH2PEyR4
zvvCq}WrDSb%z1I8i&Gn2ec#{-ZdTZ-<x99(ET(^&&6)`Vbq^T*N>wZUgX2qt!;)*V
zF44>;`{fM2!F|P`*UX|;I+D9dN|)WC{!!o>;o%S;%a4@J6xJEZT6FX&iYbaUM)e>-
z_9E*Dp62H6>MFZr0Zu-xrKgbp_vCb)7KM7FU1=d2nWR$QGALN?x1eExP~Ry)u33J(
z<P<3pUn;6pJfpBBizD`UoiCl5dCUPfb=EF3wT1w)%snL{5gC)orJm0GAhn3HdNCN;
zN?Ch!kJjpf#!D74m)gv1KMMA9?7TnH6N5Gv2uUpsKTc%#74cZM?OQQgE#2}c-V4zT
z5`+Xfuysw2R`1b||Lmc0DBNLcfnYu17A|!S&0%X{?9hxWTM@8q!#4F;DjPGeKQ`DI
zhEKM|C|{Lk<395bcG`+#vz+(%JpF<Q+IlSIa@g($DWD;|IfaL(HR(Pc2Zq3S(q}lG
z(OP%d2){=C{;^W`;;`ko&+8!UK63TW^IAwTsP-c0(%N+`|AD5?w~<;#^?<{m?PaZ4
zkDd?(#o=Ym`SJ3oa=P%1eF`qP|2&w^QFOUW!^n9`#DP8}6hz!&IWd{YCl+3oUHUq6
zh#ci4Hiz|tF@1|fp3iks6q3UA5E*Z?#pPu-vuwVk7KVONHZJgQ8s9hFi_)ocOj;iH
zJ)lHTy>CyJ#t(i4?2mh&DCSCtJn9Y0kTU@|!u&2Mr*ZF>rTspF_UwtZx34m3+;SVH
zlX-bFG#G^yKg{DNcSn{?_eOcBhet-j$ffVSU%BeyZ;w~I;Uv#YW`{v}ZefGWuun)g
zFxH8Ay&l3C=5w@}3KWR4>8m{ZOPOnly|75b39no)PHqgfmQz1JAYe=1oh_}VA{gqN
z@q(Ky&&$<VpP@^nabvxlyMH}`rBx5d;_`;w9>Xyg-|LU_b8$TTDs!q$e1?;6GPrG9
z<M@KEUS;v4#N;Z<fMS37Au`0}-tB(hvogz_K!YUZXNm~{y9=xElpar&+Y9|F1k$Es
zj61;b1$A>aOFcMPou6@3V#C=Dizk&dTP_G>a!&L12Hy3rKeppr7Vw{1$W3|x$~91!
z$J=(zF&pa>RHC*B+-~rrM0W>D_7=C^E3QZ%=i=dEe?j#Fu5~fOKP)&h#k$ijZtEQA
z1={&G#jV~#rQB(CV~KlvEIA(hShYRS`Gjv2SCe<tNU|6(L`Y!aMC+TIg6Yf!=7S~L
zt&7)N_XC3>8quUdh0>`>c@_F1a0*p9;s;0?x6_4MK7(;oKw5JgEmbU?MzG`Asu)lq
zF3X|?Q_2@3s=1kKra&&%Xe3F@2kMSO!%(#T(Kp`P>{;wyCxzX%fZyBA_pVr_Tp<WW
zTncskZl+izb2#zKL|kc$Py3B=-e*Y+sD;}2>gq2_hPhk6@?{Ptb7>&V5mjLuo0^J9
z?e|9VCD4YZf_~-S>-J(=q#3|?`MKJH0(7tP(#O~J)~1AvG6ybWkM_q7?DrRMk`?nD
zY_Yi>H3k!iT4CFE4n%zXJ<8Koo*yn{t7ULZ2Bux}tzIaF9v!xS^d+-eFNp*=S`#8h
zG%(xjn=DrE5%xq7L>x{RiIVtxWIuujNmtZPC)oai2~NB|n3BJvKPi+N$|Jh$36P90
zmk$_qFEEZ^D4a2t67<{h$GHQL8E_`g^T>JU3s>mTG!YnlsWL{CP`$6$G^J|I;$Z=o
z+<T!f9+bHfiGsP+Go!}O0X&N}=64<vQN$dzmNTJEj*rWVd7A9u`~dxo$)5LHfkb0g
z-Zz=_c8P`Rocw?YA1$v{&wF1Z25lLYvb8*bc}YH5##|04DWsUBp?zmEx(V;_i;kT-
zhWdNe#~CKg_LFy(EAGCV?0uOoGlTNAusyYeA!it6%Q>a4;qqe$QU}95<~4ik;=u$A
z^e0?)NwC`kqI5V)`P<^3rXnk+Ok~IEVn}TTW5+sUHK>$=bEw~d8tycZGdyKZughu&
zL(1@!_<S^x0L#HRld?8w&GqYponh{%CGW;FkF!`g!-!@>cqA(Tee;Fvz9fU2e9g``
z-6$&MPOn69o&TQ1o<(7~Z2L9riBn0kn0wB0MP}&^PoWHE$TkTbzPR{_hV4|@o>tQq
z#6*GCd(-#DfK;@_x?-uhQIc)4bm<P&dfSIJjuxeW9V&n)Kt`TB&4;&CC$a9BQ?RT3
zl>gR7Dv|r#^<9aI<)YA-PD{?Ll-cC2R=@#{a)W6}ZIjHSIWkL$l0X<nsL#P$S)MB*
zelg=@t|f^?6m2ECQfrsQ$CnR1^P4P7N}enRqx(>SwT@$2Ro>yLEg6re5O-s9S{g<7
zk8k7Ul5;1DTXhZ-Zr7kI&co*3MNB~rMisg(X0E%p{N-6?O05KSmNLD^@Fv$cWV#KP
zEbUzOF$B89!q@5e5OZ@wl8-0Cub5rBXvyC@rymrvY_#iYxcFaNI11?b)>x?HWTkwU
zI<eqp$EE5<CF98<^|-%Fq%TgpapN4-;b$;Y{gNvtXZdE(f$Gh$erP|N^~2$KT14U(
zb>m_3^1_#c>;m&`zjhkw)MknLmQ(pH&RBL2Ch2BvKZ7=EjTWz_I@Vq!6Xy5@4Gg8P
z<DTa8!N_BryD;YV?|U&1Ia+j}6ecHr8BJlN&nUH&jL-$*&NdED+UJy$wDkcgBQkHP
zjX7yIGG=l4Rb*g|YQ^oPjl(ANtVu(k2@H5S>^HCtM`FT*(T1gD?yY^4!_1@GM(Yj@
zEqR%L@4`vib1xcpYp1{dCVBPHtnsGTYVI-MA^TyWws!quGVS4xZwH(&ypRG5A@Hl_
zFzuYS4xwJ#oM@C2P{JN(%XV9mt{8fb#=|uqoUAj>N2}^RBpSE6%~3~9!GUqas>$Ze
z9mjT;eiOHoiDjZ4AT3LU=(g*VmPL{JbD7jd^ad~kvT4g4Fu{2CzXe|m>K3Wgb0R@V
zt)MG^fRji%_W^D!nsALNw=_VF=1bEI1@T8(+aSw3kB1-B@b_!7X5$qcwdQlt!5E0z
z^D~RE@$PfwYZdI_HSCK|c&lo^h`tIirp1P9H9IJlrDd#pcZe)SlhG6?<TKQeR$k)m
zDdVv_E4H#)EQ-3fV~J9!aZHr`_%frNf-#kS$Dhls)@Fj<$lfe_rJQ<it;$zhF<&Qy
z*krqf{_^l7Q!;KMv85`Ig>lw=XUeHDYdDgWXe5>VO&sLiJhP`2%Q8~KM?T)K2OcxT
zl#&a6aod)EDU-qu@Q0qW)mmLp-5j#{I-c<qjKx{4Hc5pgdkUmams=`T`atl#ehx*i
zM2mKei)3gH(P(j~Z7LtL8IJg6x)|EXY{SoxbTe1(ur#DG10G_)emA7dwN#PJHm0F{
zJ$76;-EQrK&0|CyUoD~ItH~9}A5M!EBM%;oAeC`ks9u(ED|dsX>A$lFc|WjrBL^E1
z^t>>47glxqY}l($txibs!qgO@?#1Krm_<dW`R;_*`R9ilGqIPZnv9v`J8Ci?s-J!#
z^(Dff+hsAo`_>!dki=?V$dz<|_gwVZ`eWXr)lALDvu_m|0+gf~+g^5hhs&|kB?3xG
zpPy-R8y<e~2_dl>-r7CZXd5CNiNkEVo@Z&UgPo@dl_2RsA}!7r{s2#6wI&-g@K9`0
z^$6GT3%0@W#GVzRn{9L1F}I6%Uf;)BtbA*b_xO0Slr~yPY`hiTVSG&1=aU5+GSsE|
z`=_6ThH=?CR%I_vNV#l540Uvb$4eW7;n(<JM@F6LPgRy@az8J@;d<5_tVJ|b3vag<
z;LwZ^RfMlwzztVi%-+;^u*XjP1QA14-=lwPOta%N4c4OV1}ad+<-M|d!B(MI4V`us
zX});&gM}=tK4Y`xaM66Y9RG=?p@f?4Sg#NH={}pl#nGZ@OkRu6`8p==rCNgSH3Dxr
zwqm}?ZVMmH$nqo6`Qiu{H@@{m!F!#_z*oH3qt>Zqv7`<j-Tc|~am>+AgRpcmbhu}t
zh6cw3oF3u+H|FKNP%+;b<*cfRFBYX3rr?xUBPqt*rmr{}?)HMGo_CUG+<sQXmf+Ir
zR3S-WE$LA8zG_#X*T*imoQz!cX#j*9Y%@kZedV4Ewa$)H?I{FpY@ZQuD)o=+69X|8
zN2t=OwV<RczzT^rur%BBFc{|3<qS%+syUgh2Sk<1CNPDPLwA{6k5HzCZ}QS9N=6{D
zCi6Do31w#Ny@eC9KYM(+thQvX_cf-kzQ#Q`f|h2-FguR4k`Q=L#su(!)jk&U)4XAg
z^wjM#g<@DxCbCz>Cza1xEDY@-ez<LI8x_4_N<zF*s$=fMshrD)$5nu%Qn?M~PJ5Ew
zVG=RvoQ9OJwfIXP;dy|?m)%d~tfdvt6)?(}UR1?zjD3?=Cq3WoIJ?$2<8ayg!7bdd
z)~IyYw${jh2BFT~J)><MF(zlKO?P6_wD+Z%w{?|00SsS<Z6~0H;mxv)_i1guc(ctD
z>)EOBtv1#B&JBF*n@jEeRmYeIQ9GhreW>gmcp50_GA^WmDAMB8L88*A(q*A|USI^}
z?b=7WQV5m8RzG;CT`U#!CHw0&DdAx1{sMzM4R8Y2C-mlOG56f;);S0u5cMtMp(U#@
zS*w>plt|@NDmaHpp%=Tg7|iP9wxQ85!R4?E1+J{7_`;%w*naMTkHR^_vhWePY`T@P
zY}QtTi6mU9Jg(j=RgeUqgD-rl6O&l1#irgK!!99Da@5+~SYEEqvSiBvAmez*9s?!*
znH!(&W{kXajb6M}<enSBC0;trOtX{IPn?c<TEzR|M1!}~tnxRu6#t0FsJK#9NgE7I
zqz;-SS~zrud^<zQN#hZ0Imc6<2@<GDk-7wqE_a)gM>-(0lw0cA7ImgXTdn6{mCTu<
zyth=|uZnrw)4f1_Cb)#zl^+TLFFU<AGy`@=LZOwD#iV0SClQrsY5s*6l~KXtB`Wxe
zz6f873pll0=IGXglAPCC#o&|cvK=jXvjs{*8KdRNLN4^})YaRlZ5Z8p4&h_MS9r6+
zTmS$e+Rf=i5Vog$JROwecuu<L6cuZ8yUj(_h+}7w@tSwn;3K6>8Lncrx}jP3LpS=I
zql@&!2DYe!(jdChELTCq*pN!g)BLYsv_Z?Fw7XU@Gw)iDFgu9{xx_6B<B(8ux7VP#
zm4HEa4e-?s_#=#CS(#r<9EHg#UET)91pte}pdbm)nMs*iAt~OT*1cYoL!kmSq$B`+
zC{%yYhZrLMnz;FJpc+XG!_|SDmQ?yq+Lk@$1LT#F@s1R?*<1<hT65N-O>`+25VRKZ
zTe!j5>}txEo?)VHUsRGPhLoxSAIu>QLK(+XcHy`h6<|}rFofT;(nH`HhAkogL8GuZ
zO+{&VNjlx4$I{6oB~d8?Pm4ZTwe!BjTvtmMIG^dgY>hUP{Kg8VR2A1nR^5V!3m`9P
z0E24LB?3P}mDCSA8mLw&&<y%%As*$2QVFS$oL4)o#y@*GaoL+yAx~-xN<SCmcAVGv
zqzb`b>3^|4Ah93sMxQ9xTp5Bto4F4~d!Gd7*q1#9kbDaUHLmFbbrhV)qigFr1uae1
z7-GmUOWJe?9G^zr6>e*(<K?-|^{8fl(v@9<%%VaEMLpfr%cBonuc2t2ENrJQ!=%qD
zG@p*rXY%F%c+a<)V!6s37v&CKja`SltGYI`w?gc6eA|^+LCirSsqujIAjWs*eB1;H
zPQ#E_P`w1bM4G=1_54nEjxx81v<kC8GYJ8cY~W)o{TL5h53av~g6h4Yy$L+_iLE~v
ztpjcsCN<xMWHXiU^Wr;%BkwX(;@GU2Siy{G8Xa*6f-FI8-Cul--(Qt#t63MmsxQ&D
z;*9i&+GC|5ryNb!nOe@=f$YBL0Suf|uCK=8B{M^-595=#*4^4VP;O%PKx&~qT`vx;
z!jpqlS(|m}V)@vX-xy7<un#eOxtPq)Qlp!TZBAxyO%BaM4=u#Oq#nOFa*sYw^AA=I
z(0B@`!ZBWJek?>)&aRyIZaQ=wRN8iz1z%>b?FN*U;E3Ztk_}|vV%pKnr-0#WX3XKd
zik+=Nyh<~RRNWCvXWUf3&79<+o~>OP{i4zMmcFyu_32!z4<DEFZc|0ZWwDy?q1qTx
z>iPcTj4^myF2%}YG@tdiIx#Tk*3F0h%Ih2<CznxkxYy@q`Csv#BUycxZ8`bwQ1Ttw
zVvClb2nev=HYnmu{sH+v2R9@fm=@ji96ZijSy;>loiFhMK4O$`!Sty@46r~<CDid;
z|E!AaErBB2{uz>Mdr9v4E|e;UQZ6F|hb~$!QB?0M!OTt2*F<$!K7Xf%>7ghRoFCu6
z?DtBkUvPX|Dli=4KZ^EnZ_nZe*-gao<$Xfsv{{4Vu)pPQbw+-SIL{J+lOwMC=uK=q
zy>H9>+BZ=m>zq5e{`&e75Ce%66Rc9Exs@7U9+O<<YB6FU{=N{Ucl?dX@Y`7Mlo_*2
zH{lEzrLub6kpy1zZRSle`nZ4C()>siA{w<EnJ`?rR<i(%^95`)mlJ}5>MA#f)ZC&-
z5_3x=4ykM$zuoRf-Ya5?yCVfhExY(qH~LG0iNr64A1g7{YbCzc^M4|jQ37p`CTg`V
zJ(j=h(V336hz!;)0XI{a^qb3Qj0x`6(~8Z{4bmKT-<9NKbu><<7pH3s#eOlJGrlpV
zOU9?SaW{sudj}r}A1>KW?SFA3tGhd=+G*?e!<c0Gy{U8<<9*sx<65Xdn$1-*|C=}i
zgt<&%YIi=b)=8rlEp<3+z$=Rn7q1u99R!vRpCbU0CFX~%yxcu|Fpu5ALBANRs)G9I
zlDq5YB2|%*NT~<bG}gRP*#PGxm82Vm1^0|p-i#RI+PGwqxv{xfvh3PwOoOeVKMG|b
z8%`di7L)^X_;x>Ff0EtfboGoRKE|aMEle~?CWHNq1)`YqJL(c7-9(&i$cl(Qxbzi-
z3yG`CF>e-Swmu+NuXD^-4-7Epq--9BwBlpI0PW-8+QAQzWILK$Ee&5y^6E6Wgxpr|
z%vS#L4(^(>Q1Xu_pIr=QuUO{veDJUO2G%~zIj8qn3AQt=Raf*GBfAQj;DC984`;D8
z;hgupm~}b+_gGBZDAD|-eI8GG#iEZn-{+gXFLySlY2>mw2P@U;`fz>(%U}ptU!){O
zF_T4Lx0&2$b-EGlngd;J-WO8o%ONa}3HF&X_lE9PRm_U$Fuc^(HfDTm4)rlaqFu{)
z_NNgJ1i9bXhh*<DsR}<-{qUS5WQ(UHcmb2-mnxajfn)PzO9~;lXsBR~|4p{UmF9YL
zg|M5m#~WA5R5C+Dd!<*<l<a<XuyC}MMIe9FrhxPzL^V+ENy#_kZJp`UDGrPG4I=Be
zKnN7o`U{q3gj*8T1Cz-NEAAp4igVY4iR^caH8(6XWg7x>*7xRe+bdBJDVvdNxl-HO
z2cFy8hXU_qtSfg$SnTW&8W%bT$mkotms(VQ&-XR$C(}Sf+l_9;ZdG3nf2J>^s2B9c
z0iz?Yvi&qGR0cXMR((~eTL`549VNc5_D0m*Y@>*L@sMIte`(lX`&A%#2nW&jjjkN(
z{@bfh^z%h^FgTk<#UkkOMpyX~@~zcKv2RXNB^u89S+cvmdhNofW6$l?VUo`?)2Y67
zpN>E*aytTu;q(Qhou8dH+#F#VlIbB60>>oij$b){1rm^)hnf+Z9ZsZJ%$1b_R+1I4
z-lo3q_?zCA6cTwbldOj0H6PTk<xgb!Rm0FHU4spUjB2?|M6^)qROqg6CZJm>=E-4B
ziv4gWmd~4Ajkw@pYrbm+(n<>t4(6G%Z8m;hPu-stx`chGdFvpmW2KVn3V>(sVQhEq
zg`>}3V9M5*3-_Mo-y1FdlA=pwcf9X8Xem>V@2*tU+#>lz9KScnRT1#<wU@hC^=6@~
z%Lm|$5mb0fDqU1cEw!}yFi}JGNwD^cyZN`z@@2~iT(LJ?7Mr!&YGw)9Xz%F)VcIiP
zSzPb0w+_Er!6HQ}O4nIh=DYNs!BTYedcum(pdqd|1;_`Y-Ululyt$_%q8NZNa&W|x
z8E3#)3TLu^Vk?#mo;D2qjVpERU6Z-QPaqGiE}UYFCP_EkyCXHFuE4xBRgKA5(bmaQ
zOGN!?8vcP{5}NcIk_;8QbVbOQ6!^)bA%2l^WnEb949`pE9DNLQY}E#_MOi&=0u%XA
zrzMqgSwXs6^E=!d1j%p!T}h*2%ubSJy*H*fTQJwv_j@*Q9`f}kMo{Md*F<8N70+{0
zVYCcYfC@bKz#>t$NR=16fA3zG!s$(}-IhBa$(GKYALQ~u*T7>oG}mGF6zifli(ND4
zcP=t2i4B>bPe;fV2sQHBRAEx7F0!M{6<V{%Pbo5BwF$b+ucCT6PFKKwnoWl~-bHfu
zl(3=Ghl|Ozr(i`Lf7bETc*j1Yf)f7DNe{UJM$xL>|2Ct+LXXMdH3`X+FY%6s)_J(6
zz#_B}3ACREf90k>Wvn{z%xj)l6+D>8LSoJCEbt<_34)F3L*M<BlAnv=rsC`j@YDwH
z<A?=LV17v&0%G=$w;h`>^a!^2NV^dhiQs6XqV|%)yG)W}$fLfUDX=2wB^X4Q%>_cv
zJtp+M!)BKBLJzXDE4OW9aY2Pj7YRcd4u~Pb-+7t!%gezx1>|xu8Www=f$Iw;J&U(U
zzN1l+qs*!hN`LHB?BfmW!xI`K0<MdY{od2~Ug;;<%WYfX#!o28UA(^!cVD>p>MG{T
zVyHYY*eYmBds{m2Cub;WZCCMMmK4h*%Q#Uf<ksDcng)R4W8bsb2kb90@Ahu$yBtoG
zTX-H))dk;=o!MX=#ANlienWJzKacplLlT82L^yHR)u03ZCTeE~_dM#jx%Rv5h%IXE
zz#g?D8E0(;u`U$BzVNyJ8D}-;csLn7-C*S>n+3$OC;#j5`>u#NLQPP$DQ=1F#Zb>E
ze289|52-8!m<lSypLiayn|(vxxpCe-xghCn;L*=jWMn^Zi}~B{4y(YXP$`fX5g0=Y
zVMA*g!ha7*D^#FRNMbJZnf&0-vr!Fd+aHg0xjXC)SgGdI(rWv23(6cWD3cK$6kd#w
zdj{E_&sV-pHvqq~i7!Y4kMY7=tk2c)Of71+yl6sg-uY>lsq4+Zvpz{ivrwyw_DXar
zc(Y)AIy+J<Rc^N<K^2lYUoih0@v(T$>hkEr8B>eI6$V{C=qg^mG2=_wI;-W$<4BF+
z5<RbVN4#>`0{>1ivn(t|L;p|$5gt4qV>o@a-xR=WauC0kr?FkSG91N2v$H){KtNu>
z)FYYN`sHBGRIykTtyZDYF1N$j1%k!^|MEdBx&AZ<#n60mVvC}dwgB_22%EDZom1oB
zDx3!<j!pEZEkKUR^TSbQ%m0TERY+8wcIqMX&RF|Fci|V`s|5cr?EFP#LQnkM=PzdY
zvw3G83H>4Gh_R4=Jm4nXPFrC`fHEbO^&6W{Y}c=rfBx;Bq|J1$&$o;%;0^YhcxhzG
zX$I`O3oip$NVGcUXpDC=t5k(<v+W*HZm3tZ;lrcW;YWNr?yR%<i#E_4@=a?zvD!K@
z>2lC-_5F=4V`|rwWH1$}`GE*~9|U~9;?Y`uLWJR74xGq23*?yK(oY%l98L$K<5-x_
zM^TXU%QniPx2;81A6`@lomdwE-^~4mn!r7RNZKyk%;SAsS(tOzC5dD&^Wk!;mK*CN
z!<RVUegv!TxYDJ<LoXMLC0APE1|9;NG(=7Ck)12Hx-%|O_9w8i+E9p-SJ0wh4;ng>
z$U+ks*I5^_=!qz=&4^#>c^oN0daXm?6IvWzWHtrEINuPfS}^t|{;0cvdnR{B7AI<o
zOT8&O3Dhi)37oUOMPi8D0;V;lCnk<;f9ali>+z0#S_XHB<z?L1;LjnkkwvjEp@dP0
zfiHE}Js{!8qht9C;&j)TFJFnUP(`Q~I;>afz>8#bk*}fB<NX>bTJ--M8JJYx*qi8g
zExpVu)k0?dRJYlZG&*_W)j;9nqA~SGSG+wquv#f(ap`A%Dxtgj8un@c$?*OhmZT}y
zn4WW7W(`8IuOTmU`c~Nd(UJF;U%I9ck}S||1g?mwB{99CCv$s5bG;C{wZFcI?YC}1
zAwbbM4#qhe!=3SCSoSuGn>fQX>{@1^QeN|Vt>{(SQS|GR3wykOEwN}ccZq8M5%Q5@
zuHkx>kXyJ7otM4QIa2brsEFP>PIzv?tRUJi!H$L+nm=j_l_AaLBD1RKE5WMjb6R`z
z*46IVeQG=5tHI!F(Ru{*${PGL6npDl7zs?<;Wrp4cPSVsPpN^|m*hTv<xRe-{-C$s
zx$Yn~`Cwsu@9}Ee?N~C7zi>|ac<*WL%GN4GYRw;lXYy`KwHsyCmWI==7*-lUA;D<n
zCa^e61$;kFm($Scw51W*-Md8TzUj@(&!B5ooUFE{ucMfaM@Aj`L0{YtJsc-?nd!}_
zCsKjt+G{_nz6t+j`C$gd9OR0n4R(r(q0j70$6!-{Sf{!L&*<ob!QsbT2x{$?f*$q;
z7_!msAcI2dc5h~@=dl)k-1yz$*D15-dF*$^m@R-iI4>!I*Alx(vywK9fJ@We>h^$Q
zFe}%1?f2osPeF_AiuVvsR*{~@GPzbfP_l)vKVq12uHr3C8@%PgLl}q9M{?+S9u+E?
zSQOKh%awyX(z%s);#nlglfG=RVRIitJ-Q!$Gn|;pH#RQPXl{a?d+oAXY0sC+8f3w)
zoHY78@_d9r*T3ls<=FF~2W^#ZAi}_(hHQdDYOzRY5AG_Z!fk@Kwjump^u*V1V$#ps
za!{uxOP#P#y^;Io7`cC39%RR`39-KU5w1$f3>_{O%aQQzX!2*?s9GT{&Uxb#hE&W9
z0`Zmwd`jO1y>1vM7dYILnPGgFO?VhZy58i`lDJtVI(_+}q9uM&==o~@SjeNoykLfH
zsze@bRRx;Z)CVP#ZQu6T;?nQpC`FGXU@_cu4<!*mkfIpUwc%=l)+6asjRgowWk3iR
zpMHm4WDIuz93UjBARzKBa}7m+R2~mFI|}i3TLYw&>j6i?w~_ndcpwbE%EQI1WK62H
z4ta6t*4BmZn45pmt0ti1WLX%aQQ=|&IA;w7kmH&<e!kxu*S&c8paEHHEf>+2&MkJ6
zUh5Wvh8B^z!8am{&iq<(?44X!5m@RN&!85WcfQ$%(L91PU91&YqQ~QNW#J!|E^RyS
z9@^YYb90C}2}URUGXs%@CO+pv;Z+H)n%w}#Js;yZkKnpXF|BX)a$a02RoycSQF#t<
z$$DdlO!9n?QT)+)m7%g*vRWmRnx5mdf?nihVv{{qp;JSYXEs$XDfy!}s<ue)<4loe
z(qnZkf~L6=6~^URz_G;+B;+9w(VL;7)^Ss2iwU9MUdgo-QpTp2myoddTG)MBWWy`t
z+%x;<ID)H%amBj+k+GrDe4)UfsvmGyoM{?e<NmOklBEi7$G)sqS1cYecHL+u0@M)3
z))_{2<43E3=&F!`D{g6~YQbi!+A4?C*ipTxis67=`xazZcRXFGYZg94g}oBpon@EW
z_wNiKXAl0SVDu<5P`Tc!dZd#f6zdevcfl#0g^2^aB<rZJjqZdmx!U~$wW>Mt5e`nk
zb2&kzxeYUIwQAmX);g2TP#6QHUyo#MQ<qT+T+i0HDe~{BzRewjhi8mWz@dI?TN15q
z8;B@nF}p;ZT(8WCpqL}@_u^}Qk?Ft*+&VwgT9eY~QiQ>9>^t#%Ay0IP@homqp_Z`*
z`D8&^Gx<VryZ0K5`e=f}I*l(;^$9Aj)7WH+s+|vKU==_p3m#z7EpXJ%&EYQxq<Mdi
zAzrts4H7+9e$T)0@G5lGyXdu_*SYOuolq`6_+0vRy^%m$x;#!kBE;{H??x0Nh;Jsp
zrUcrKyvlAt^WG3}yL~m4&kshbP8eQY_3w%%2USJxA()ujddLa#HoprYxE-W%%ms_L
zR+X(Fl}YC@IP&oYytwkt-<N%wNmMCK_l^_d^@>v~h{1fE1?csMr-t?lD7;p#Y>te@
zbvJZJI>F=cRL|!|e^<otGM)bBiK%6BZ*1E=O*>CTV6#+S`n^$cTuEAS%I`u;$R#lh
zBJre5EQ)0)D+$ttpA2vcLR|kMm+`%00lp%q^ZiL=7#G4sV#wTnvQ_DE847KhE~L*D
z-}&=zd9cA$(=Dj^6uxsO<X-PxkBL*k5#pqJ4T6uOvybmCDnfWmc8;{<4u*h2gT9P<
zmdi(58Z<ZumCzR2*4ub-AZ;DxZw>w|#h>1)Z(Dth$5Zz{X?#4#-NOA$iHt`kY5;^9
zLqeP8&3=_O_DtAg^%mp2(diZISj=b;Sn*;kB@Jb0`lA&(k}u}8qa(+#B*Y)bo&#cd
z6+(CW*ra+0MYr7Yvgi(?xZ&b+Qa(c0|K;H-eRJeOIfQ$@Xul3WqJt@4>0=M7`QjX!
zpxxpTHi!{4Z~Y_t*+4O2&Aqwk32^$m@xLftntTp&a|+dCQ%&wK{cdbWvlyrSIu*Jc
z>^@4rh>f!OptB%>fAdpIhO0-i43)P$&XF`9qHv&fJKkcZYcD%RwIA+^jY@k8YcMxS
z!qpO^$GU5_|M+#p*vQguR5N@t?nvb9MSJ3Cq-%kR<b97h%DxoXL*w`2LBsm&_&3)4
zJBG7gV%dB#O#3@6<f!d8#EuiO6J@ti=G`9Eiz;7-!*0?%`4*!CYO&?2MC@Zw#0c(g
zf>{RXl7AKBG;WU;E*FvMFzSea9_DB-n{9$tFUYspkJWmEJdenp^Vm45<FUVXY*8GB
zra7&yZcpS8^%xqCaPdw79GqK<4GPcq%V!K!2Q@k~M!tI_Ad4y{zzWa)?Ci@1eX=W;
zm+Ps$O;^|)FLNyI2|Ik!*4B<;GW;q7dpo^>bvKvGHI@h?=Y8xpiuOkSyH{MyBc1D1
zC7g#Yn*Gns+&e+yote$koV|e=O}1yN!K0%uB6E1k1JYI?wc|AF>OP+!v8GUp*mo%u
zG6@s9{zG>S*ho@>bwpKKBXx!245GTlpetA5ER6TrkXGif$Tjams=_rBYU6`hdJra)
zX&h}3`Mf?Z>4{YO)TlPF>9q8{1O{?gpFk~UFnXeBep}IvS4NXS%cHf3g7}^I8OXfL
zuC+i$K{`)!Q$1Kprvr5oi!V&Vgk&w<;^vaNoeUU1*I3J~<>^BiuJ;+JqS3@18m(Hn
z<7$L<DYQBE2DagzU|TX3MW7>|%?|b^O2>6a@zv4oyk(v>F4%<WA7Ire8fWj#%e%Rr
zV%-!@;38rDs8rI?un!>%M@}3n2~*LyVTNVfGcu?5A;UxEG?gdIeu_w=j!y&<C>g1V
z6;+*gg{~fY&|Td#;~oXz*sR+fbymBiGc3flDIF0^E2|y5XqscV^cbY%_hCBZd(Spq
z>~^XhXvMw8++7;)?G++j56Vis9t7QQ+uK4g)|{veBkYp|QOh^yBq|MpOSIUVKTt>4
zg%c7ePwVP+a~N7(7I4UiAa82T99$Y1ileUEGYBWR1!99yv6fe<MvDECQKeEyW??yt
z=_C_KKh1N#Xm<FlrO_1Fg+uts9b*!9n8Tejci6iJVRmTKq}}r2tVTGyO(~As*4du)
zZM`BUciA54edV$(($@h|Xtz)ZUh*M40v+Cx&$O>!`Fh_YLs~lOk%|0lh{G_*%D9Kd
zK>pPy_sy7KWAxX@zYxW&&>dCl-s<PyP$a}5&5>}25yWFVtA1pJ9V>mN^|Cn?1?nB~
z1?rEcaZ2F+iI}mz2P{}zkc~k?B%8~+Mag+!_HNgC44vsQiPzeLUgdISjQJgJgvlYp
z03D=X14SGcC$6LV>At-1!_HGY;{1%drkx$)QyyD04NV-Ef5CC(GUG5IHdL?r5FSI_
zvL5nKstNafju{}`-5y~0R-@OON?xjGZvACO#TeH@-{LU2!u8)jC2(8ioc?*{BUlA(
zh2t%Bi2$yxKb+&}7TF&(CQ=|R7!VrJ)HM2v!x%3fo`gtJ{1RObn4Vb}_8!D$4eFyt
z@jsxva6&?>1zZ8SOTZ`*&VKTG@a%LhyMClgmsw|!NTWQlQKoHZsF1{0K2B&h44iaf
z&#1s;3)e?>g>p#$PV}dzzb@5(LukMI)Zo^$Mh%tyxj2aQ@38OAKbY^0PVyk&(R)l7
zT|Hg_%^@gO&rt51kqr{UElRg#(%64)<WGwPY5Xru_!5oPR$b=Bu?KTBQ8S-m{@zjF
zAB6grs)Y2P{r?_VlK=h=f4valEa1QBiajsV=_8q~lfx#5$f9}gSSBDnQEP`>pkiUE
z0uec%s#uq?6edCZ7Z&k<XyotB<9_QH82OFW+i~pcJtA$tSv{to-976lBBB#yM?p;~
ziS=*Z<4+Tk5Gh+%TJsEUC7qTkA9-hQm*%Vh5cq*REe`p=;+p?Ho83rYY*sFlJ^>N>
zUoC@HA0Om~>a<MuPG1npuU?)I_v7;8yRK>}x{%kx^4DJPm(mJQ`n)>+!U6B)_Fw`O
zg%s)W<+T24O$S$(EI^@mNl2nG03ECmY~;*PVu)>o4iEOm<sRhuS>v_m7_`R=0`bY#
zUbnpko-Vr<l-=BA3w**=hJ3lVQO)~+#pCuIW3}35jzpp_&}O}g(n~{1Naz)w)}mWm
zPNFQoozIG$A5O_b9%?E!#v{kGiZ>xscli%^GFn(kSpGgM!u43ih^V+PG;-kHhG@CF
zJ4s9cPmtV)K@=F`^=*mm=unkLK0$JmYBR1cNQ~s`$KPyG$aS^p8MV<0UN?6g3vO+i
zg*(Omh|(7Mf8{cGV+v+~iWv^(sHU<lEyq$?`FUIrb1)d(6!F%svbKg)$_FB1xx?cs
z`CcS++!lr=78YaIj^@e-*kI9NkBh!Bhfmx0kNrWq9*$dotbH(xY3kh*DXuS6XV7j<
zwQ^S1ey3A!$+rUCwRvxO_QdSjgC2Vprm<S1_w@VouZeij%PbzJ-KJZ@RiHEs`E#S!
zYAalYYHrtCYBrGbUQprFH#(l?LorkP${S;TRF7AYusSQ10~cZ^J;Xq4Xa-VsnTtS_
z+z4-Tx?DzEY`Ln)u4dV}^TlX19@fd`Z9fNz49%V>+S6J2#<x;kQMP@?&c9XeDHwTV
zw6yk!!b7x&+r^Z+wvTXRAU*?To<v^7b*gNoDkAol%|f)EH7!dY7c)%gD)=Z}?+VDM
z?@#)4W7vIrbWQbZ{0qTS@b5r7ek@8!VKIIx=Y$~hqKKoNPD{}xkz<mMV5I!}3o7Z&
z?rl^boub!e1eBg|_ZKTN<zt6w<J?L+jepvE6JcI+c-HFidF<!!-toT^7Zy;gaE1)S
ze&v(sZ?0HgSuq{C1WlACA(xHaSCSB?^z}vlJ~L=j9`W@Xz4n|Nzt7}3wz_?Dsj1{D
z19b~N*db}_p}8l{sR=loUcytWky@)(2O(c1&z9>~rae9}%wwCK%)Tg=yQqcOhFKA7
zP5f-66nJ(Poe=aB0U!y9?xbue6cYSEhSir^)|O)_tnLoDY}TVb2M5zdBIUB(p+vtb
zBZ>T?oOIVLNjw7$p1-E4>-;i?gRy1%=M<3L5qZjYo7p#(CdUL&1Ai1)1-usj3}U|e
z8h1_+9|P=sw_ynGGu}*x35R@m&7zK--WQ6NPpd(c3fQdH=*VD#>)E8AU(P@=Bx1@%
z%DG@K9PS7&=Ud+|FD^1~Q(dMe(ah)Ze4%#6;*($1Dq`qNUd7VuEd^{hA+Xt;jySv=
z&p7y5%oQ_@$I=wm-V2$oM@}#suM%IjxCc-x(V7RlZcbwzu2@6ASob?o>rk4)qV?w|
z5b)Ziv>nez_<wx!MyJ;nA5HO`Aci!(S(KXgT(@x<Xns*CTkW`U5#Je#%R<>PlWVFm
zrBoR`rhWmyvIT2i8_X8d?2FZBgoYz2QIq*H#hskCZ4}aJxj>B`1qS-Jj?C;BGKCKk
z@$^y!ud6kNP%Eu>UW@hS$kZR%LI*)tw{-BB%+Zf;)(|64PB4Z;Nr}9c3sH98$BN1<
z{hW?iyu$Ih#FePy*^Z&6yOgy9KP^F)IfPe-R3ybp_?sN22~kiHF}%LD>eA6^HT!6{
z-R1(sx`ph&Ue$#QqbYKMYyAY>{~_!vpyEoptrJ|5;O_43!6CT2Lx2!0xHj$(+#$FG
zcZbk;f=h6BcX#`5W+pT9{`bB2*6P*k(oOfRu2XgD$Ugg2xCboGAZl3WjboK7>Fc9M
zY@=|!(?=o_%w@w@uhV7u29)D6=+;F@V+=`{GU}_Szb+Ut$P?V6H<cl=k<R3#c;wzR
zNFZ9k!WhKk=B#6ldCD|N-QjFzoNqnmo-9=LW2jsD8Lu^9ewA|>;8vgz=cjD{cv0=S
z%<|UuBAiB0Q}q>*U^?LQ<Y$yQm7XMX+T>N2`s{O;m6=VCZwtiJcv>VZPVq~?ClY}i
zKISLjxs2ZqaG8%5m(?Eknis3)hqOw%{TKw`SD^`}CFa{t&+)8c1ExT@GoHd27k9*J
zvGzQ=SoDg1SM81ij7W%3im$~+tzUUU6HSF@evL*Is<14VA~rIMV6*Lu7SAJ!t6gQ7
zR1F0o2)96#?X`taX}GWjU{+C_`^lC8nCIwYu!33t!6v)uDa>SWp)snu^bSA<PnF#d
zzCNki6AUN%YNOf=vDkDUO(|#a&Vi=_XjxUlDb(>&n9zGrzvHnsGBW*}<gDu{{^m|k
zPqWMMP7;nx@A7lHMN;b<aXu>9^pSGPM{}SlPOV*!@KW-w>?|uR<FK*EL&vqD93++w
z(5FtrQw6MO?Rm9_tBxnApz}^<>Qez7m$l0315fYdq*#Q6<@yVFEC&zf8PJL##}zZ<
zo+?Ax-05ZS^3AtbT1G_05Tge$-R5!M5+-gY?vU0u#_Dw91vS(|_X&5#BoNt-b#$zz
zy4kzmcJJp|W(2TeRpu=NkYs9`a(cde!a^3H3#$@ZIuHq}Iip}O{G{dXjDj<T>wV_X
z0>nSP^!1ei*m7TApHvfnExY_S<E+sAt(L$@|N6kRjmj)4v}CF~^YZQO{rKRm<*p5(
zjO!N5w25p_^O9D0cUCC!MWz>ceX6e}X|geJl6)Z*W5bld_>CW{S7x0ozbVkCRl`Aw
zMSZY4V&8gtp@bEX$lJR!7y2_Ov_XPqqzpx?cUrf}E~H)p#NwBo;OG5i8S|yFh<*aR
zR+;g9`RpwzzUG^ycCbr)=6P*VoJ!~i->|E@)2}6o=GJVuus7~7#v2IN0~Q%%ri_{e
z8KZunnwZqo5_|7P(6k|~GI2paZaG%Lb4^Nr61~}Ujp-qd_{YSpKww)0q@bx#Dj2bp
zPi5Y54mdIUzB^qX^QRi=+rFfGYM%U}JL?on230;o$nQD0?Bo?sW{hw}Pf?zX-=X%0
z*=P?Bc0Ki5>*}WtKie9@bGulJkWQf0g1BtJd)n$4P$C5^Ofls%KpXyLQswabQYmDP
zK0!+C^iSelY{zF(yVuiCT&HG3B^jz|?b;r7n#?snM_a%GSai+0jQ%91GJ%FWFkL#Y
z_vida7GLo<cv+=ZL9d8%JHai-N&o_u+HUP#tz*aX#J3*>(xcVx$HLAPTMC|cNNW9Q
z0E$8}Y%8KjkWOmYpz$3B_ptzfb0MGCmlOUv>)WDlt)KxF8n+X}`$+zY&5|e80(CX*
zdNa&Cpq;0H<#-^_v^sCiZMj8(?c<{;K*3#L-uC?N`e?C0Nl;eR(C~Idod+`5qlb_4
z=T3~j*}=7_`PuO}{5H-l_!Zyt5A_><by|Lp3r)4YLL%f2b$vr~jZfi-(Ct2iWxGH?
z#BBeF%<(cP$$}EIsj3&g1A?$r0)TP~F-Tj_dTK5<ToGZeWZJofEbDmJAqR<FeI|2{
z0dQd#^MfW6_X8g<7JZn^Vd*}AkD)WTauc)wSSo;C#i;YS9<L;{Kry@AY5_3%5O;C=
zC!m_QU~Vw4>Z#(?!R8N{!?e`rVcneY((gW~FQhXG?xRYa-~54Eg?NDg(Tk`avi1Ni
zr(e?vbM%UY$>4VEs->q;EO&3B;oMXkeVi9vPV*uCL62x};+wBBVG9WF00t$jnC#AF
z<BC%QaZXb)2)yROkS?6Hs1QRB|9WRhn}(*HSRqn2o=%7It>Z(Qbky^kOzr}7u6#UU
zEHk2bJV}EJZLK<C=zbphiQEiLxb)u4Y~<0fJl0X~;3wXa{x9DjgNdT(xDHqO5Juyx
z9upvt!obL%0=}GVi}WY(lgZ&u2GiD%egg2A`A<Ul7elq65^AgB4b>_~!vzEqalTBx
zb0sI7g?opOkMKhVty(m;(H;2umBF&uODZ&3wXJGgPS2}A*AcvH#p(LjyW2`F6H!L=
zKBD2>FYizef`7qWkuj4m&j6OI%h9wJ0eQzZ@n_*(pf8K_QJa2gvTRAbR$+tE@|;Bt
zXMPM)1{Jl!yoYvJkmsT>O+a?|Kr|=D$gaXJW2PW<)AdS~GP+2S(ZvBFpO^aPbmn$N
zwr5*bjmH#LhC@i5-CVJh97n_Z$lckhqR^5d{u^ch>dHaXj$2|paL1mMfH!Tuq;&dA
z@w{IZtTp)y$V`}Np!DEMctPbI1XKa`AWUCQJk_|dXJk51b7ZN)!@Vt`D|KKxdq<#<
z(IS%DdK;VKt*pksuX*xxc<)vEbGUem<U3ojMizuK3x)|rKU40#BCeNyRAy_)2kECx
zQzQh!i6*5o1ik{M&Ew;C9+fcTC+iVzA>8m7HNKvSLQTIOLz}vnFM*!G)X7=3(@@Jw
zitR$5B1CgdXXe1~&E;z`HA>>ZI+V!MiwOuDk}^fH-MPUEL}Nepr}583^n1}jxvx<E
z^yxydU-lF(k*UK<{Q>g-)BE$KCPPlba_WhEQfF}e*q@w{NN>=Eklv+Q<7QH<Sk7Li
z(-v5)N-F_0<|9R_-z!on!CeG9r7{>rj&@HX7C9Cf6_+=(fXxqX41n6Qpwaqt_jo_E
z{tCg^)Dk)jCiUdAtzjveSSl4>Pox9=im~@G?4m)n>~04mj%O1*7PnfACYOHg5YT7J
z{pfvae2?CR20zYB3IXoMJ?B-wTeGfwD=4}&>-09o>wbq8UXM{}z2)u2Xa4)w%BDB%
zL#ZuBCHN*L6AgHtbB(S2ta5wts^!v<Dp&QLawz_c;ddmZpfB45^MYN)(9M&leqwJh
z@i_KT%MKMi-Ustn431NQqp{RGAgop&e0j?ZDNx#{$ct29v^$Jm-ZC<I8A&u!&a@nM
zH_v6q+qodt;tCN|?p&u}pjO&;4CpH7`Q#~y)FFp)w%dPI{vrh3X;?pHrrc0nl(zM{
zq)1F&Q)ea?U>c(4OkA5RM=h)r!>0f6KF>ZlK~1Yk51D?)!UF}%3Bptdf+CbxN4D^q
z7=|Kj!!WF{3@mz^t}LBqWJygQn;OP@Y&$(>tTa7v@2eeBW{{f}im(r-nW?+ZCUI8P
zDS^fi(JC8YBAb*_9FJIEcvI||wT5k|h~5DK<L7)|WmKYc7`o>GR3p)-1Wgowa`J!n
zuY;jS)#fbEUPL&x4l|7irNA(@4Vrv2{DMY_J8JFi(fm<=KV%|dVUoUK0fryXWw5ZX
zwCzIITAjXO{tq^9i8fCF)~PH_Qc5BStGU97<#4sNI(l2fMW_A%`eg3;f=in_7g4%B
zSRq5}aK5s>Ni_ycNynp^p8nP)A@t-yF(~0%C9*&1EjAr$*2WJ_b~k6FD*Nqmw*(r!
zpAVyLmNFa?J~efA2w^V=8Ip~e2?wD!g{%DS0<g9usX5u{SS*cy@(~@fWvGNJ4T)6g
z)yz%YrrPZ_`Jm<lNZ0-pnA3UoGO>BhFQqhvUA))o+onj2I0L5+FH9_e9PETH!ct{u
z0QMx}2<wH+Yl}n;JHzaHH0c`Ryz!R;RIfq_G+%T)8Yi}x&mi>2Wfthtw(>t~;lWDk
zl)ks-ptM~q2NCSuwVhr>CPaxFS>ogJcTH_U%Q)oVc?$-bzF{f8??H!YFkgFnXuM}<
zUIIj4SR#NbO(X3nDbGI&0)L&_zHlg#KM>F#Zi3q{aiETV5;LT5<*=+%j^9*unJ)%0
zOf(u2)HT|#u9;wDu$i8$IS%8`?$9(_G!G=Q0UV$}Ss!bVrekrx^$Pp#VN~0$f%Cod
zz_?6$iU0jE#FBYO&@mRHes(N{-=egkFCwOdc6u~+D5l&><ZJ8n_lC%rn~_R9E0C6{
zvIj?Uar6hc@@P7%+I)}AbzX1^`gb0JLHqB(u0`;=5FLBny5H(8zn6nJN2}|2Cq?wb
zf+lAf)KJgO)CGIOunsz3hvK#HVs45AVxd?`sVtcYI;_6Ev*;a(=XY?c%R;;s*;1}|
zeObr+Di5MGx;Fh*vs5;nbtXb*54|rQBL?IqlZkdB?{2yF<LK*3=N>1W;!n&*W48*O
z0NFTN#m|8k=9<}c&pYOpTC?CNf@d?{1>X)alz7Igv?AjrXY_!pu9g&l6r>CSel7Tu
z-~yJR>7%i8)%wUe<Q5!UX|?kHT$npgHI(3X(kua%{^877f6B}nyo*x``Nu#u%r-+7
zpT!Hs9CHX6$i^4!SoA4fhvQ3K1*&rZAslkNUp*9pq#ViT#$LgC_-;saU;bO1aVYDv
zqZ+Z-rF`Lc>R~n`?nW7=?7nAE>u}0JnR?WNSqnVF{k2n{3?W&F+U`uTjOCxhDWuY(
z86F@;7AiUA)$-M!x-`#BlBlHo&xF`7?%|zF@;~RX6b5R!!A?(nV+p!tLWx?uKj=he
zWQ(JCP1vCLaX+)+WVmH6E$kLEho+B30(#eU;@qZ8zqrlmoZ{?fH(x34>XUVEvUy_}
z)FCx0%#Syyz>0+%@9*STfau<iV2^UOjtIf#?=t*?)rrbQdYMrB+jbOy0%#sQ;P#aN
z$fNyXP$DzHvs)+zk0juT!Olv<Ch~?oeJS7jd~QOVQJN-|$ZqSqa9*FJ{Z%f37TRPa
zC2;GhMzg77ba>yF6c!O*qkJ)Ib@@>eaa&GhN_fU3UBHqgA@fPlYP#Zyu)M}(=<D$H
z=yKc8_Txl}ik>%J=d}1H`AT|grTttFru=)T*&3#wo&<nrOBUI()(bvhVB_rWg5cME
zXrG)z6-b3;3|z^erG*ZqY83MysA&mS7`qXC$_CP2XE`Rl>DM!dNJ++(IUTcjDWvfI
z)btyc5HjS4;c$GWm2hM4j@9LwO%DmS`QvF5qhPK+l?=D-3GQ)4;vQVzu_VD`eL#-?
z!e{>dO&p^R{?u!%gfpz^Ak^B>)XvgFZN1K%tnq$d9rCozmspxSH6K6ZT_EoDY!3-V
zFXv_jx-kgEGinoMA;lauXPPPz3XDkBSdXo(En+Ho>K?uophH^c{-GpIXk~~WHk1gp
zEpo`?C_M?;PfR_3MIca?gB#($0e(Sb^q|?dteRi%XZ;Q3k?Dl*!%#e9fSRAWWur;W
zRKpw$Y}}NP40^YVW_LS3?r?BtO>6|l7vx-14Lk>)>cYZ3cQj1G!iqXOT<o|A#hc8g
z_w<J2km%To`654$S3&Bv;Fzn`^@2Hx?u(2vLxVHjXvuUzm;nm8EY;Cwg0R7+=|cU=
zsj(=RiDRjs$-#KiNJuW5MsL(zV@R~Mdhw2ye-bG+uJTNeOxoPu6US?UuEH}6b3q+^
z&z0Xf6zDR4Yq)nV5We#wIqnR3UcXlw5E2f7fKa3dx`O$`ydjX2()z5D?`WrH5qY3R
zL)9k!$n1;3pucyJF4ZQVtIbhNts#>Du+}XwMqu;nr_<Gd_T_1n>M05My<$B;SR7D{
z?`#=+zxSz#HuCjH3#20~H<~y1`AIIq-BswP<CdDuNzrLkY%h)}>=tAe`~-r(h1v<B
zcV^B8ZElyLK#OF8wLk~oPYL5~3N8Zk+Xj164liEg-nCc+w<_wa-Zj>j6MRW3t2Q#`
z?p_-i$1G02pD{sd;H_U+=k|j{f646)8CHwjNXF}S=BK;`G`rSdXxCOYGV;Y$XBYq~
zRAKWhojO2#csJn$;R?0zu(g)ui|>^jQuL@uUWKJl_vnL$63Kw@i&`i_BOD?h8@cPK
zD+3WiBxgGWglU9kHD|TDx=4NU>FT-9MOe!Zf8A&T9#F=LQD4e?4L*88VxS;Pb-Qon
z6)D{CWxMdk+*;E&oQupn*2`6!+gF6xbom>cqAMcOIukujG-g!vl*H5p*FXF6c@Qv>
zLm&szmp{_OJ8dD2&8&Uq-h$YK&|UQ9=!Qav<ZkYXZ6E6)D^ImQ46>`dZ-*ZzZ5!oo
z2Z`a;!$uONomXX4lzq-<spB3!6}a2N$wUe^eF-7f6;O0OIjd8DH>G41R8sy65rsW3
zK4P8i!DGfRIH1^Tq@Tj)$znBU7ZTo0GY8{hR9VP^6;2T!?2sIf8Z_e4fg^BxtM3Xu
z^3Y*ynxIB>*3R9ZMiNn-PoqYjX-~$JG;%vTydAarKpRCI_<3|8jAwODuHr;pDi1KP
z-3SpCYt0>C&~a_o;a-yQA??=_D2AWNKC-wsrKqSv!9E1n#4|q;@7Es|l$P!|m~gpO
zj(r<EN8rTG@_z4IfR$@!cJT^t2yx3HM@d)WBCM7F&q`RpNG2|Z580GgMN2ySJEh@k
zCYL34-aP?!qPojBK#IHPqz|XpVUPQEv7_*#e?l=dWp9#p^f<1kxc<XX?B}h)n+O=B
zdta~2w<=l}7rV1x_NL0qF=tcGcsPdU9oK$*FvWdnTlzGL26o`|Ze8dnSYWO{;_*JM
zev2fDRA?RtBb^Nu*xz!GG>OB{_LTMx`fPhtqUQc?EWuK>MSdLlbR=^|roR6cd}tca
zX=PzD3e})&X0t?!AshZFFqryhH>|{#Np7JgPPpDd;MvE5Uzi!*0z(EE4dECD0IHJ<
z)Owz2AqtKX8Q;_8p<*Iql`V<exUy8q#cB7a3@P)!ANBh&=J(A3WT8RxqkQ~G<=8Mz
zEf)NVXROo<!%45{6Uv;+2Kyy8pKy~SfV-VZNX~n>yiPd-5dp9u;zn!#Iz<@ggnX<t
zt_jN>^12yaz=5PyW6u<rIl&!)8EeNaR45pUr$EK@8ZVG4T8K7;ZQ&>aO0I^I+Y(0<
zzbQoQtLAv=Y5$zyp}SqeHIW*B45N%^76vQ!4GpkI`LF|(NBK{m${^`*9<}&vZ!esZ
z5_N|G@UuZhytdvPr)pUBoySi~dd!iPz=I3|kzt~G*S+&m0~d?)&&uys=t(9@_%e<C
z*ir`b0EW9-lWUZt{m<x8S|VC78n(!}c0Oz}<!453$C}Qw7rB$fbv!tky3$%eu8xo4
zKh6cxQ)*0>Xq{~Nhr2s*m{T?rl$PHX51HJ|1`f0(Mpz^><M20AV;O^wPYmM6I29rX
zRcq{}^0=!w<zrZeKcsY?!!P`Ny*D|miplu4!CVrE%6`=qs)q5kI0vyMLw3<|Ym}P%
z)3V!lE~B^KuIe)LMIrMkRDPWIJb_wl+>|@inaDk+8c|vf6n9`6#(nE@3v>BY4RS3J
z6TkEmBOj)}3u8cAhAveyB`-R6yg9~#%h=B>U{LPY^Hz6Or&amx7^&Py_f;mO#?Na@
zzy}pJ)GI9yN;ut4UOjU)PD?m7I_uR$*eEx<TTsLn^f}KcbvfCc*fL=g=3n6_<VmPB
z*XwsDoOOkadi`j?juA(j`GdX=Yp0m{EeF&%uJgiL@W7W6mxO|ZUtk<arnhx+dq7&X
zJ(%hwR4<~j8siP-Bz@nw>4>YLzg`T~?a=fZae9pdzW#?->IY_quG6IigX6pFeCupp
zs8nyRE-R26HtO>1F`4x8oV6P6N<Y(Dj3*LIRO@NHt+rv??9B)S7Ji;r<RBgWW_Nw#
zjX(e|K3Sm1hgzKG(>e#TXhC|>tQDWwi4-B4ix4EA<DWTRh14knlvW+uL>(F6%hNhb
zKATGXpUw-G*L5zMZbI}4ML$^FB%ba}K?}#vij($YlfLKTyFX1`cgKyUd35>aP|sP1
z*1Hx{0O$;-O9uokm@)O!DSJiO6I*v-ofmUdF!U#WJcb1`{H)CE?_*I?4CzmcsP3Mw
zj%}Pq@5^k+nuo+k7)y1L-;}7g%-|LPm>B_vySa$A)QBxyPY?I<)hR{ZXP8qvaV&HQ
zZd16;_MA6=fPIp?DH~HpTFw)#Rn=|P2C!-hG*j&c_wy9qU&xZABig+1A?;W4b4Wt1
z8rzT4#!zi$;2)vJ!qYvWPYEmgrS@{m0QUuutFo@dbr@)Vqvp@#@%J|ne?mu2cp9$i
z_i!p+>z*Mv^6L`2<315ODtR+;pV?pxl%QTsDXzi)lQv!<BSRip$#Tw;jGZ~V#jhXJ
z(ynBez{3b7h&L}vdk0>>8YuTPpSx)4cX<YgT?!p~>ZPmv+3Pz|di3o+=wBt`;H|Gp
zh^o>#w~u<DEUFWDr8dQvFM~yw&#YZ#{2m6+C)Q^Bb;3-aBDaUeAiiQUfu#u;TCVuI
zl%cFsm#V}9`7wod*v^UEuc)0B%hmJMVb5L8#T?I1PH3H@qZl%_Om+qFF8y18P>=5|
zj=~+^<#giAepl{&9SWqSC*G_Tr<-%OZsphal^pVAL(n@!?)Pu$J&QCBi1n1~*P4Jd
zh?Q|tgw)O4_&%Y|@dVQ8gKr7Q+qGsuS~G`R8kqQz>76gE(gh=A;OVJ;PTJ`yZuUJ5
z%gyX3;Bd)nj66y@v5#~7Z4-6M2+_NA%E*raQz&HAMCSj80e)hKa&pxwp|}SIm=O>#
zdu2fO+pk`>tGkBuatd&>GU16yoxoDAfVK(q0QL-J%#VV$<MB?&Z$2ud(t-*DyOH#`
zXbb=+^8~H^mXo`JLT_&aGeLEWr;C*Zq&$!+IJn+jJ5q@o)`h@eDgAwCA!BBNY4l6;
z#2-8j$m4MDOa};*j=tB9l3!v#jD`T-YmSnsq}tyH;6LL2D*z3=V@vJ3Q@ZeZ{b!=|
z$KSv1fBgV5M2s|$e~t;&V8!}7lKsDZ!WcfpzNd<hg6ltH6#f~?AEB*xw7=NyX!ZMa
z|CL$&p9dC6LEKN!a~8kwzm4E;SOszs6i~HM<VxZ2U&nH?3a@*8k>8_`IbYiQ7k*&K
z6;=2buu5TN;<jXCdz;AQ^)2=`iTgZ0PPz}zGtk@Q&A{BqawhY~^2LiBAD<U*0gF=f
z9LZ7)fE4WdClXEFNqhXhO^oobDHB#ZL;riqatK};7#Pe|SrQ#CdWYz@dSK*uv6+q(
zG(7_~Eh8vI;3HR+XJ4|Nr$^YxUU?wFuu56!JRtDaWjAQ(0wDG*z{_y4>W+g0=H|Nx
zg!izPFw<Zw5?PHJkv*X{z-e>KomDn%vzSdrH9Q~Dx5P=NuyF`?YdT8_IQj2zukQsX
zJbyxIH(Hd4#uIyw7|7t&6J;e;c<chju-f(3R0eI%?*QmXPk<oS&t{jGtI~A8kSl+P
z=sPCBK=+w}pXTt7KmP!ql%n1kE|B-fmO#~6EvKi{?@02TCuMKaO@CRlS*!|nu3qaI
zJ=+;YOW`qn$?y4b-l%ibMCKnCLx|Y7PUpIYlx{6FWWNEt`_p?HKN15(dK}V!cG<l1
zu!(oE-oS76@RN|;?wtZa)`nTOekGwAt?-N4rvp4oW0wQP?kveAjV!4Dt|sB)?*$_S
z1=skFxQra*?|Baps-=1nmIfbJFcx4(RtRtvq4&&w@k+Vj^_(puGU<!`9Ew4MeK=2y
z@!$$qy3m-KmX@|N(Ny9%u+PX*uJRe^{vuw3S*C$pS*Z>LNSr*MSJ6^hT>15yyi%(_
z$d+I(vYJZfc3OiLb9utJegbtJMIuEa+0ItRSoc$l5;vd_(aYk5JPV9aJdvRLbO0)+
zbdPzd%C~_?m-&)ky9A6?HYe_ml$pbAmsZHQt<j*3gMrjMie*1j1LRYgG%)wBK*pil
zC>ntbx=jgJ_ySU=Yu$MY`x^NS&5=J(DtHSkVN0>oTg)K!w(2*BGh*J>J-uU~EEc*|
zfb-aZD&^Mz^1!+LunNi#u6E|jG2^Pl3Y-9`@Y_7u3{@0f*9UsTQzCV&MjN?KR-|-3
zcdboO)OPMeQ_WaX8E$fhT`ma7b`p$O?(fVLh4J-J6aZ{BCp8&;+6l7P*<WW`kFiNS
zn_{7h#Jbv@v4@npx)lnxnLKvx`)Z1u6UH8B#YDU1Rm_2`qU6z0`9!5Ubg^!IA?<dv
zR867fym<Uu6V^)*tq!*uy`E-MX#mD6-Pub*PAwXFT|E)TBJ8@`NlSy2CR+kutxl-Z
zBJ)RD)r@&&mp+)c-3|u;<M9quu;*eOg;tm)gyE*qd3hImqXw_~H`hY!({+$yPvYgI
zOK9SET+!T9HrK(-01)WF=Dg6N$!M>6H}%-7;1}D<?9%(`Oot@vuR0CKMaTFH-(9J-
z$eFa(KcDg#?s?DxRAp8RUeW#ME*Qx^UCQ+cZZ|hLKr_fF0ULb@PbQ1Yh70QpPcv06
z8Bibp@BPp6*+=u}``4w|Z~vgI3@MpS_GB$a!6=@yt*?J<ihbbH(71C}6toztWF+8s
z?u;i|7(>Dl5ZAhluNd<IdW2dcxOXRVExNtV0tXJL0DKF-sAlq+b?Nn5gDkkrguggo
z6u3obk5)a)2f|GYl>SN?suxQDy_%25#AN7>iC|wgHvi%Vb~2xj4!W{Z7~nd{d6XFW
z*+{Zj^ovC#3X7D4`}hT;`Pp`VG3Ioo5O<8={avde7sszOcUTd?l72C;BVe(5akCpn
z>7$9g1X#1L*Pz>fS^0ZI?z^1{srj}tST;+oYKWac8I!*2-9zAANFX;of;|3gocP7D
z<UL3U$CMv@d7ca8mrh8{MejhWOzIEcvpG^B88+$<`HL}Gg0J_5{$zd`z1Yxt?`1X*
zc=D%y2F@wpce5H(Slyd|fC!>*REp22!{+r=W|{ObEk&O~SF7^KLgJzX2Gg-S61;WY
z97oxZI>F*3o6QhKYRmc07T75Be=*&t(}I3xKHwNx65hGoe$30l5iEt}F#6GN!<JM%
z&u%=B0?CJUG~=Dtx;rI36t&H$UjP8Oi_gNhr~!u~|JAQdUd^ee_w^H*iSPMi79-y>
zC+P(2_PS7pfT!@WE8!T_cC@cM(12lg+)b?zZlp}mu4M>=w|)-1jZ9ag)$}@0vS8}9
z*&I0GVyld(&O%vb^E22T;G_wy`;{KbyWVEfAG3UV(;F|~6tWV&tE}>fyE(y679_rI
zy1_+2W4`u|{iNiV9X3eF=T?07{kj9dZz~m%-tJ5v-zx_>7MWpr_heZiTk@e?ZG4Hc
zcbLv>gH@E+;5p1xlb+>rw$;c}?7R+%!S*DYD^68vMWuxLQ^yliA|r3g%kEGV<^FSa
zGD2|cZ1>mUsWus{<OB)Ceer%2(QEx=`mGMM|3*5KkwGr=j*Vg!`jzID87xYJ`LaKs
z4QN!bra<|*b<zAH`E#x7E^UJI{?(%NsY-!5hjyziB>;*E#O1nA(?4M}Z22@-?SFUi
zoY+dl69QOIB}lQBB*=b3zX&5D?KD?ENX982`gJoND1#w!!>TmDU$kCJGK3qkyb24P
zvCH7oGWynS%IUi3*=w9sC_Hp#QB@~DITlZ8Vz12A^cAvaSP=kBPy_sI@fqh8e-MK#
zp08pobJ>7a$1`2J+rIwdbKCJvrva+vrDN_OnbNk_7H>Yg8e;TQYCZ^6>a<C<^cSbk
z5G)rui;bUe4TY6Im1cFmai_;Lrn;_6b%|f21v|w%iV)W$x5GeNj$q6sGdfA<1xUs-
z3#ic<gv)2P6{mQ`mc3+YXwSp!oU4w7-A*uDcG&Vb_!2B{w?u)ktpw`i*J%D&w>xo5
zXJK7!N@y`&tG=?J$c$yOdV6%{q;PH#aO07TF)p{Ko?ly}Qpur=YOz#_yPCmZ=i;E2
zNCdE}Zvd14ImVFzm&&NlOfX^Dw0yxC+zx%rbf)Tx%}w8;*>qksH#Y@_T9ynYkG~i5
z2fa4QIp8gI^pAxDk=k4^eb-)44BWGBAA<&U-i@cs7@1i;WVOhD`U0PbD_ZtSp&lJt
z$76cszEJ!JYJ3a^-<(S%=E$5o<P%|+i<0gzq`Dlo3V`)dno3E2j!OUbo}uWQ4WJN9
ztSf6fufwjYulTUlg&=+h96f{}NUTBx--~@U`>ia2!<##$ond6Yzmr7tu9mZgQMvGi
z=On{Viuj5Orn);Y9%$(e--0VZBU5WWB+?&87wpDy_mz=Bt3E}*aw;UTTvHTdASv6c
zrMZ|D0dr7-qgZ2Yv8FYj)#aGK9U(i@9Fs1-Sfk{_Hzq8Rc2wURVe0{8AoVjxN{V^#
z{?SiNiXJXs9%siwYJkis^n+tC1}`^a2j45}D0Uv#1Nzkj`aVi0M0L)Y7(#vD`ScPn
zH|K`~gEUi-I%;?>8%=V5cdAB9e~2CU<Dg&>_%ncsL3$X0ST2_8b*nfY7)+!%LLz9{
z(JwaYxio6kO16kD%m^^~inQ-ELHK?Dyp}5Yp0T|K);B>eg_z6u<`uO6D2T>+Nc5pJ
z|BYLI3{^b(XH?3p`-4`*O|8^m{Z_ZK_zux-Sy5Js<Y1tEQJ!b*jkUnB;c!={m+SX0
z+f(R$vB|OdAFq>=%5mwEWMj&7vFmW8z()d#N31sI4=~X1@hrzqm?C$dx==M_V6ie*
z;F6rS5U>Gq{h+DtsKlkQd$Np??4Q$NUh>n+4UPnYy@B|hj3-S3l}~)mthQY*>0?e<
zQO`L^%Af9k7FwUrBrK>n;}!Q^LpD=GCthhS{gyQlTm}rsBYyHrAl&em-QOuktTQ!e
z;k$l!sU!W;I9|zO>9AC4j@_40ZV3z$owiv}Zb+>^khB)&bs`c3NjKSlP`PH(2TN1P
zppV8D>or7Z-9k3GU$?puG2ifBX7JP;o<pg=1B{&+;%GmYGEuD@tVWJ5>not&WZ;{1
zXhFHqQ^wmp3~5CruLg}Z?jP_~?N^+=i*Lq6S0_>y5e%^&w4CFhuq+fQJH$paL<?p-
z$FM9`ZJtNRYmZON)jr(S(rA%vhyl%g6f^CtqbX@-AZRS}9sA!3H&Y!0zX}SqeO6;C
zgN{sG^HUEgn9`Q*>THtk(717lWtq<de<uYIN9goIMC*h?Ing<Lt1t@$H$^~5c+{Vu
zv(R|toD^|(0Wuoy@_5OTk}C@>#70P7sqI%sg8m+PBb8pV@8G+`-2QY20`yRerlN9*
z&HK^{gZHf+gTD|>01K!Dq<cMu=F3Z>OFRkq`f89u$7K!1v@%6Ihg430<L(@Tz&d>i
z4MO~80cfGUx;rGBMi`rk^~B>1B6g#YzaNsr^QF#`D)_y1f{Lc=M-#3zDKsio)81K~
z*SW`{pQxFO=Nmj*D;uysQ~f?Fv{8{8K8;rEd{zD}(f}VaxW?vY73=!?*-CSr!UMMp
zLP>`$1_Y<&2l2!~oXIjh9gWe+^We$-zC{^FGn<uJs@WP7N(BWb6;^s{J+Nb-$BaZ9
zW!uvOWCDX;TI-FVyXi{<liMGska)SNql<dE&BFaJRHaeS<0k}je6rsA!ogvZhWJQJ
zNd*%F4Y!OhcCd{fMvifg7Z*2|n%`HhxZEr(x-Vb%9pil(Ip*JX+$lyBKXO3Obh?p;
zID&i6@|t9>UJ!u{$_|QT#D2S%REsr_OMz79z7jj!)+&+Y^JNYO-jE3Xum-uN#2Z4F
zAgWFzOQPuuc+&}Au1FJPtDi9MGCEU)=5;cIB;G)|z9N_3FzJLctg=biLaoMR+E-(u
zV%w@fCco;ooJ}cHcZgN%@s{ht)n5I2!p;|KZM=$nNUvGHlsM3#{+UQ}g@<J2=$n1;
z3&V2c*iqN89ga_%ZT1>erJjN3+wA&2W@z=cw=lxoQm%O4nvpsXQEof8_Upp$;kPbo
zLOa!G#5Eo<8KQMCEh5wJabZxeAr^RT1^t_vB@Df#UyH#aA-ShEJC^Mdks{frW2lQ)
z%DT197lZnlIX7tE=8M#tz?lbo@Hh7Gq%`y79uTCP-qjXGRMr3;rp6<sjq-5<$^)iz
zOpf}?M;G`TncmhU=@-%h%np|JlkcB_p17Cy_;GA-%Zn`EpL(&sKcvmFrhs|rrfsIv
zY`lXlx(P-Up)V1ikY*dLDo%wuTN!wfdNbKDc`*?$7Z;y{4I>y-MIS^U$c27As-j=;
zyBMtsuSZMyKuP}b=u}v#Q4p9wwoL!J>?1t(G^9>h{-}`a6<3tPw!P@m>1D)blc5`{
zV36s}Ash7SPSx+id|BYJE%soxy0=|HFgED*o@5Urze#r~NV!HF<M!~n?Zb|X;6TP<
z$tQn$gZkQuGBv&8X-}!8=gPM5C-XupBEe{(4{$5HJ4kO^DRU_Y6RYC3QVQ~x-Oo+d
z>-?_(rXMk{$%5}hP(vKqgVH1mqq%&qdN*zF4xo3h`dlcvMBm7@E@pj1Z0PDOQcxi?
zm5)-8NT%wFdG2AQ4`I}5nx#ZGtg4G<yn`vmu5q0FxVvDQOg>t0?#UhnA@aH-+Gfo=
zU7riF%hj)KvE=n;&$4N<Cp`P{yQl^oGoveSSuYY@hu$Gy9)qhkN;b^W=(WIeY?NNr
z6(m&GNVt^+7a-K%6-{M|8CThQoHg2=TbIAJE>%P_v9M`sH%)l8+WNE9?llhc1sA+B
z36vp@oq-<-S6K7CVh^XB$<0oY_{@)%9PPkZ!yvs<0LGGb+DyE7AI0p6-k&6zVkwWA
z-0Y5iMb<DgBXvI5QXxEq;CKHD?EKB_Mj}MasU(S`$zSn`Vn~Y9apHqkm2>Kc$psdW
z1B^SikwKM6lgV%_$JlPJ&E~c+zZ~z(8$`?DA@-4(!p}A2v$<)!T5PcH@VVBT)jz_g
z$-tl7TrBC1`iGU25cIiwHMY!7`oXq+26vup;y*3}x_OJl^TxJja!YxGBCP_id55#h
zZ8+jEXb<qY?WOreJwI>|zHq(pj^xdV^lW!1FmIt9^X|o7k4RuPgxH;GZ8EM>T<!v>
zY8PijIKDIexdO?N5#hg&7buB%cpI-maeqK1_T3??bna0)rAZ^ZgIUQjU6?vyCwNj^
za8O0#vaI#*r#Ne*9vT8ZJp$?5H~z8j1SNN)w+ij!x7q3si7{QR>_)FRYu(QI<9c1v
zw!ZrwF4SpQOt@=t7P-g^yl!)r=687Od_)5{pX^l!mg*Ispm2{J&E;-U1j7>zx@Du!
zvDlx5?i|k!vtEvURpOtmbI(L^<Sf^xzCGWJ;n?Twmtk0nw`tvDBABb=bh`D2%7}lF
z;U+<9VH%_ht-0dx(e;d9(Li0E$kYVCVG$ATXTdOk+Ll8*H>w#SJUL7QSNO}YjFW?^
zgZ7xX?&iYITwTGir+I4kH-vFW%U0$XEXNJU3moeW20q=-=U2<3YAaZ%uJUl)&E=hJ
zm#|wdA9SzbJ5~4=Ol)mzotW%gh(!1mT1>f@xE7qkc~)FJ>Gyb3fCY0z;0j%sJiePt
z!fN<IknCW^YmHvw^^qW))7Bs}On|zBN%>Z|9ob;&z<sq|b9sNzHem=WGH5Jce%I0Z
z2>V+~T*)Ce6;y?Gf+zd7vhupgZ0<7L?qpt_P-)d5fkH|6qx-vo-17D3;8lWD&$b8I
zzcflDl!vG1k9l75@aA<djb(sHj5656U$ho;C{F2F;fmcGO>A?S72QR5blVw_H8Z^8
z0z4WDV)P66@5~UUkHcT6gxNmI5*5WPjxlTAh|zx*aM~Y?4x^IWQyq4;!-J3ZA@B`L
zs_1XPwHT7g%s@hLqvqo1a8tP45SFCEg$KTePYwe41-;$2`PDgJ-Q&pGWVP!L%FDuw
zM6`m(uhLDZWA&g%Y?ALi8&&)Y+i=^`f9Sz4FMg!YcwBG;V|tkcMSaxxu8ZKW1u6t#
zh+LULFTq0I64_5R)47w<3@FPCV~ED<8-wO-!wqG=9`qcqy%Tjm+e`r~TB(grWA;7w
z*9KuMpiir*FJ)q0{2JCfD&J)KBfg^^{PeFgT)$rV=h5yU{K6=*CJkle#|DoSFfC?e
zKJG|?>4iN}iVm|J!8)?FK#y5~@x++)B``qL5Pm3K*v}FC4l9y>>+L_a_kVa^X(AD_
z+iv2SNTdGOE&qM{zpsUKiG}Q_81co1eW4`VIecBe?Pu>VE{Ogm+rKB|-xmsjFQzCn
zW0e*_((h;K|F1g$;&}~$?veqcRxkCxee0ihQ1}dpr2r~%DE99m{!bU}<G|3j%@s{j
z|2??Bu1~_@5BObm0gB<raQD~VF3nd&3HR5KU8R+t*Ce2ulWZtx=)S~s*uiaPx+<Zs
z@IIG$bkpR_C%)sHN3bycEj}*_?i*wNIv^#9@8A>{J_}qOeEI##@3Rw_{haXj2b2Ac
z?_V60rU-H8z{YL(f=-;$a}Oq+^i3#lPR)0i;x;?{iJR=s>j#tDM64HE(I_5yEjOgL
zVGX~kZNFqaJq{dBi8`Ifq&HwX_IfCLrLv_bh{L#^Kd5olK{|5C>jE4aG-sz+f&*0k
z-U%<ey89AJri~xcxP^YL4dCIb4-62bAIZM`-{%;)0N!JwsSceXnpb+e(e7RV!{s5T
zcIbpNkyVTpXX08905VCrmb`0Rh#NizR8(vSZ^Xfj19zvVgbQ@rdD4gBHI6g6w&9@j
zUM9C*DGXSk8LV*-=ku~t>{~T^9D&N_SC6$N8^am1@li*1HQs*>iP-l&L<W@be-b$|
zFI*b;Ar)EyQ>=>VuuOvekD;tE^j-=R8O+#YuXI|ueYF@qo|@jDN^xIhKZ{f=^0Prq
zqOAvNW8?vhq4|7#tlbYB5?A=#lueEut&UX?Yu<<7YCVdqso_q<XNwI-oez0Qd9Mf)
zpPk(FkaH{_;-RZOM@Xa+Sew|3bhKy_X>f}(E={`XTUZ@Bq}P4V@51WJhPEEpOuTUf
zowD%-yu<-UdP<uH3sPi<gV%<g0uK)oIHw>atybrfv^LitoZSFxXMYyaQ*_0>V{EW6
z(&ly1xygRHe=LiqHiL@9{GheS=Su>1ZQO}c;_>ZAD*h!eHK6^T`Tm;Jc5u*C5%Sp?
z;^c?j;vxI~Yw(AW*pAw^?G+ZS7Q+Ja3u)s0hNBpxz_VVu*Chjm@HLyA6y8NzO|`Xd
zJjo3e%VIdZpz<_6PkB~TSt^2gu-P2Xx{Gko179Dfz6Z4m*atki2Hnupu~^k$^J-l(
zZ}8NQ;^Hhes=2m4u%kq|HNcAK%2YO!vLD>|lQ81<f?nx^`{}UVcT>grA2u`}8U(UB
z@k%_MmS*eonP*=LPfO`SrKni=eZDswAvNTAo3je1^)j93w>HCoI4QOyxOW6IHgVgZ
zHT<AhKM8S>aS!T!6SrRS;JeV0!61^x94aueket36l3f&h(kFL0hQ?Nix~kw}6&bIJ
ziwd^#*XXs0+mf39c)6LXu!QE?s7W##En^B;PRd|g!dvV2Tzy{{;vU$&^39h|dwvXP
z3{kq0mo0+l>+wJ!`@-lo6v5VqJO_Vdpy8}3Na;rzQMcUmf~bq?S7aWS)oPT$*1bik
zv&~_Pk|-nvR>2AHtaG2Nja)yOCgngYLZ%rPLE@hQwOs<XSG?X@JshInT+A3VulI<b
zi!`CdD`&$rWB~JNv*4F~#Vt@tkJGZLla8kEzuFN`UKKxe_5LW*zuDM^R`4!{$%WHF
zp7;Xy`&;~J^3P~e%7?ItQh}@?D#4NIi5#iUyU7hw05Lw%<Q8zy{i*4M9MQ5G(H13q
z9^?MI>J#FIOH&_-4uEf&K+6Mb1q4&cb7HuLhpvA0N-s8v*cJnDMiefQgVlg<v7YeK
z@M}aUBTXztf*;61a?+k+Bm2pr7AhlSZFMzUB)R~_ztTHyYsGvV+<IEwmr7SMp^Ox7
z)r|C3Jt6%*vRF~6*R}MkWX8lrFyGr=rS$?oMDXXmX=<B*fR7Ota8Nlwu@?VSWF3j;
zw~3F8J(CXbK>~DlQ0}if*z%of+&&8Ag>ELLX|WYc{M?mLTbDZT=Ah6^iTAsmnU5Pp
zIy{*5R;{M<4k6i`a6nkE<ibxy6+8Q4mp~n>AzgU=Mx@cCKYAEWdwT*6ekyN~uDgWR
zE+>HY3|$4Y^`kpb7!=O+n$Kd3QLlvFVZQSy&<Q_{z<s=M5ebeb^QoexT8hG$YAE5_
z4e51)1FYC_i5aKWFzXjS_o8-DdQf!%7U_t!*@NV7{e=7mBHOzLUIH4E<PVMdr(XU0
z+4TyF@!lYby+}D=kK1bR=klRTzHH3I6^F^$hi*2=CEgQmK#k7uLPC$3;Z55tRVO%I
zzFcB<IbMvLz>OSYjk6IKt>?iNDKt?f>0*T=RzFGu+VsGS#5f)DF3ef+Nir5DMPf`1
z)^{C2eowR7qlps}O(H>3tZF##Et_}QxQoykyWStIkJTvG*NDn}*lI2)2qsq+rsu<q
zxy^3jk(t7c`f3-&XNA0V5EAsoe+OD7mOKX3gXD@m8zzIDlviM--f=*5xzv=?!=(t#
z9P<9E{`mwRBQ~<n2WdWaXcecR#@J>#{}Lx>8jk@td3wpeXL8=6eAqG~D5b<Y6fo|W
z?+?SNuN#8u??pu+oI!LmVFMQa$A6!_qoO`*@)x$I6@S0-&jm6Ggcchp70d|N0+YSs
z>((Z;aWb05v&s=dFEwcld8=D(@@5zbQn)kZH6v~n*e$kL^Q8hI9Ig5e<8ukucV4UF
z9t#miKWr1N_Q!ke<N8|!;g?Nbz$PA@BPhQ<%L_}cbZn|)w4ZrDNJ#jZ+-@y^^<tbc
zR+8TU(B9ph#xY-(AMbr3MmOv7>!35Fm|d~T=Bwu^j{*vg-Cw>uTR&z~6#}W8ZT3@Y
zR4hg#!92V#L70LYpE_Sm4B~fwx4}JwYk#(SQ&iKvi>R;1?7B6fZc~{X#TPtfy+o0x
zO70(w1P&>-c#|>GO0fTx!un5}4Ol!OZy;U`U=mEsQvKfD|Ju^;qJ_kVd}G;k#K~++
zb=&mBBOiJF7@)Acv(=$*y$&3;T0fRN@EBKFu`FvD!!5!n;9+Cl#N2-@cPk|Z&jE3P
z%{HfbRrKCRO|<|&(d23wjq)$mg~nP_vb&qW+toT<DIF`DY>pG;I<3SdY3uH`W*kUb
zVEeeB4|GP(#<F5(+p)I;Q>k9WI}fF|?(!Kt+nS5J*S*6?JQl!VMZ?5dNXx;&PN3iN
zwjuWQ{M8pb?!&>p?iWKtxhjgj^mVh%vQeKo-_w1zH3zy1vEJI0MxgM#Q714xK5-Q(
zCv$z<5#4NlpV1XdC4qVF3AB#y&h7OWCBkbs<jBEqU7yieT`zs~p!&VtT<f8Bn$ACg
zYPfz|5WnB~HIe8q>GxbFqc!PNXLxKk;wQ@2$VxayTa;i)e;TcSOQ5I=a+$B-akVeh
zybvi1wbyl6;%3|M@qOXLY|+wOm*Aq!#j&Q06`-nulGD2NOjEAU9+?O@@aC!ou@?mF
zbFMQ&4?<?#gCxFNC%dQ4h_@zdg0$37lF>mVqQm(2l_rsgTFZ2Wg>06qv^2`h?-ciD
z@{3*(@v9MsLltYN)FDvFxpIYI7;1gkZm=F89HLR>Rz25Zb;GNm-rz*2APJUh+1t!3
zaN8$V)sK+Q`=kbtCsp|M3%tJEDsj*^uP0m3y`RPlya!gA!&$cLDwsAlJq8K(iMoh=
zVySMQE3bBozF4CrjV5A2S}-z|B%K3G!6WJ>R(<3P;W60aN_c0sAVX%6x7K!ymFrLU
z12|6j5Ft)4%u}N!L^8yp4*a1ciHDIjo7W3((1%ghxBTa|qq|Xhh@9OcchTJ4l1g;X
zP6fG*7utD<|BD1{MPIb7lM+dn^$Sp<V|UhE?r@2?IhivwRh!tWuw9g^;W?Wv;oA7V
zfV@ANE>b2|a5mR$HrnxXUXCt+1sT)(+pgu2zW$Eu66EIViv-oAlZIpef?~?n!mw_=
zw0xZtPAmhL^G)_TsYOh>!Ml4qHA2JvwOv6t1C**0LRc3oQZT^aPm&o|vmPK|`;|(G
z@;4X2(JHrA&;svCyPuf^*`JHWw^6ozdRhbA(n7}f!*aU3kHp|Ia?&6nbZfW}so7Q9
z<57>6)@!>82CZrtw^aL|)%Uli2QFOmp-Q2BmkgeB5cikt*J?9WX*5LaKMrAM+kKUe
z8H9U_GhV<FcDKtxu6Y?su~=`&bdZ(BhSIJDS-8E5L5jeWC@hdvSRJ6RA7f2heIDi*
z{05^1l^d%KKa~H91KhJ(73z#f9Aq*U?Oi^oMdXFWSkj{bt)bSK{<k%TgPgTJ%;q!5
zC`nw7nzb#j%U_*_^)DSFBui<#eZ=2Xn1Q)Fo*(<pc?lf_hYjo%y-x`mBac=7L5K_g
zE}-4y*)o>XsXs*3Q0p&|h9m&H42=#64_5B?(f3DO@K0sU67{0f*kmMj^)pP+11DUG
z7@2P`a#kf8jz#HjmrzNjz0SsQ;;L)vKX{)1a*O_aH^&F?=cs*pDgW<(UeQ9yYCJEM
ztRea@tMA`}`TH7x&!fBKydX{e`<4Ik!q-&HXKlEKbja)f9s)7KFFy|=<dffTLHz3n
zWpMZcF#3V6U?fqeeZY!L<M*bS0Lsj&EuWQ|yakzQQ-Gc=TsDg_{t^mejryO;Y;SJN
zo4n4|<6jAqS^;E_I`v0ysgufeBVt=;;eN}qeVhXDVt3C>_WwC9{}u>x9@JA>mFBk#
z0!n}H2bHCLe%1Vk^9s3**-EFV(xpl^>3dP*HrZqfF6+g_OP#CUBr?hXi)ZglPbP=N
z(kiQF*I9$N7x?7D!ou}d!va7+T;JLv)o>Q44UyG+YOFH!%OhEjd|bkQLvYC_Sq65i
zVS66CJKe8A+r8{yD`E13>!FJ3`*x)!mt(K5cONN!3&z(}=GUBV4lVtMIVB#0`pBqB
zbB~l6Z6mNtFM8*cXqf55q0eystcSJBNv2$7`;=yX@wI}_m3%=L2(Tti`kNhhtk-{h
zL&(n%c(xUNbGpdHGdRw&tXP4sJ%JKJukvikwQ<z)!u;Aov@f=gcMs-!;@@}9z<oJV
zFvW^T`LE;R@6`~Z3?ZX#9V@UnCtdyZvs|-O9C;$(XvFH>N4`BY-CpW~5Z-y9@TO5F
zPI5Gx)r=*VC)aT%jOK@plxm*FO>v_dNkel5UF<FNdn{L4RTKp)>Q%I9&QCc5Rhs00
zEo-mLF9W1EKD|o^`egSd65LY&F$7mPw_cLh+3MWhj4D0T$2sBYeADqGX)NiEpU!gt
zZ%_CR35N{G!>KZ5ohrA9gUq!nLfh9(A0`6rcV=k%(njY8=_IDY>st$+YGi@#<+MxY
zDpJ!8`Z2ONW3yL*+x~Qzh0V_A*0-jo76juA=9l(*FSmhEB2AGpWs;MQ^S}j&ZsRJw
zc@1y|QG`&*ZQIi91(_AQ6|{)wukl%}{&IpXf_U6VX)kM0J6wMb11_q^r<-kd@Y1qF
z(f~BS^`<mNV#5WumeH3I5Vvt?&`3rzdEDeVJcRsEe;!~+k@TS5KeC4}Ymia(0~YF6
zpvBmj@JPWg6aJKk*X0VI?<2U2nJ|rNJ?J{d^>i(pCiQU6<=w{}P;k8+BY6DV=M~*R
z;SgQGrRFi9O<?$lht!xwkTy`@G14dVx>&0F!hGYp2vN3Ws$wE8R6uM~U&!azNj;Hz
zb4@Ch%<RkKZA;i06q!Q)193Y+Y=BF0)BZ=ERxa+`7Rna^@4%q6X3EWkZNQl2<NT=d
zMewinLX3%G`;09|p8^;BM;!3~+jVwdUIYa5x*X%!efP?kWi^c!ccPuOVa){kxRK^k
z4kvC!SoZ%^XioldX>h^&3ULG3n%*DV?(**SIR@fcn_LQ&RqCV$Qug%*5J;gUPgTPt
zMS;S`=5v<D?4tuYm?Qw$!DK7gsB}&d)Yd`uj<5E!YiHwG8RB1Wtj_pU@&Oy098~>v
zY`;Z)tWsSJt<!3UNrl`y<I~w<JE3xmh?L&f%uk41E^8B77!G5&3VFJ-Y<)!ISgFpP
z_gw^G0B(FBz#K8$j1BO6dF&s;LlL(rBr&kz-mX)QXb6`@gx`RJp`aF$2x$8QOuP$s
zUMM6BdoFX3PJZ7F+nDLA$)5v6Y0?y`T2W+n^~788*2*Fq0qs{H#Nc|D9J%)+leSfV
zQ))1oO3A9+{58(#8>7j#63&59wALxc^9&&Rv0HZTZ+l%f+@_h$w^p8c|I)YG?p`0@
z7HRh2%9=MOh2MJu+;;F-<+ltMy$EEUrx+psO0Va#`Hul?;VzjOze3~hyI(TWO&=@1
ztSoxJJQzr)ra4dMf8PqsEf+F#pfI-oO`X#ArO9!mIP-($7AlX|+{nT8uMkAZ%*=U9
z;?}oD*W2Ror*k6nTV(>AuY4q=+I(`*Pk$)|UrlMiQ=#X##sBZ2j`nl07y7V8jxU!+
zWjZke_3opjzo0@78F>PYDII;mtp{`7-(6)Ji~SFICmnKhi$wDELpP-IB0~9)2%%;J
z5=r+y+et#>V+Uk*-r7q8^g$6+$ls$&_DCR(@imj2D<lCYo%}B^)|X6EQ*tMveUQvh
zglYZIK^;2po;D4v*;b4KX`yx+LwH<U8NuOHjIJyPow?B$D+!eBZpI_9qOiEoJ0J0r
zCiJ7LAjPG{ia-}k4eiZtxj%bld3n9(6F}Y7Yz9xt_9xP#f1FNL)iuinlOzk>6z37L
z%{vp-PL`<F7osa$Cvt^Z_2eR57AK*(GUUmnkA(>7xDYVAFAR0X6irgz$>%;Wzqx>C
z8CbFv00Kw|0)%&OqVQb+SQgX|+yrTy3iA8<6HtL$Up$SzBH*yU8YXh>V=vU|K!;39
zGAOhLm#_Fv=9n{da1PimnViTQZ)K>pG!z$ZzXnhA(>QE+_))|Aw?js;>LMY3u_&A#
zesdXHU0M~Iu2m}#iNlv}OYr`PoA6|#%2i~?cjse^?bF!rJzS4`63zg*$^9Qf;VU3Y
zA7nKR_O=L&Cwh8JxSj+Oz5mD9SBAy8WLqaV!686!hv30N2<{eW+}&M+ThI{P39iB2
zt#NmE*Wm8<z0AxxGjr$M@6Pk&N7LbLs&`fG+O^i&dz-131DHp{Z0Z+=-##^*zB|Gq
znmV<J5Kx^Y17%`iHY%Qb+^@$dBHyrgDJ<SzmU2Y#I(?+hyLF^{{f6)@oRedhc26+`
znh>e+w$oFE!RYOr`f{?WrFQvyYgGwMMB)aa&c*Uq6Ri32vx&Z=y8d9nmP59frQf_y
zk*^LbgWf36Cr&c2O<G{$^DIts3H%)t7$0JW!@45m?IZMmUwOsZyrH5V(6DpyvvqNZ
ztTOn61NFfyzeO8YJ2PPMlCB<A&QEby8`lyMd}o`3dO-r61FHmf(nezOB7(J=HEhue
zf-q`WD`d@RDJKLw7(!HmpFf~10d<rLRvGUwc7{oYE)7)2MRgHQAHM~_Yvk%)*Bl{Y
z&8$8KU|Y=X6<172e-#WAOkQFABTPgBD3Q*9tWKu?1md}_p(1F3biGYV^2FE)7#Y+W
z^V;nZQ<+Nl_aY}Dbzip%EEfbdaauAmmc|PrypuVmA=uv#Fa9)~^-}G6Hvn<8GUHB1
zLb6y^7CzJOun?N(YuD>#uh^m6wgIWTpmS1jb9#+~tG6%J7f+jX`ukR=6~!p+uqSKE
zHDsz8bRgP-nw{CcSl$Z+0t&;Vf$CQz`vq}~B+e;3Zu}inL$LrD^6nT#c|#(RJTeG{
zkn(%zR>FqYWk4V1W<l77V@xe#z1?aXq&+)IVUyJBa?8LQSf|J27F0Ucdb24`O`3We
zrmAnwpb<uAtPIVbdXn$*LP(?}?QhjGiRP=Ye;+Ii#L`Ej%|}%BjA_ltSUQjWu`EBL
z>!{SsI!}Hw`Xf;KGbHieiE5Q(RETBr8e(%1eD#X7^WEi7Z`5@YIF=gSeJu<*#QTUI
z=#1vo1c;HKjzslspsOt9;(Vf1qs7!(eVOMzp*)Ju=pu!=<$Vzfsts1@qJcoI>cX3?
z0g?gMc*ORaHV9Vs;LjSreLTx@VXo#7P)=ICsbJ~Mb1o=bkhnZ_dfg_#D{$&6A1hDc
zJ?r#kOAK@|;t-a_24<`<H=zaIam)fi;aT(>g_F4cI1Vtp<rVS!*?YKy;t%#$g1+(M
zV-WR7>|}YS9GeN$nG5aak}>q1>=$eR3qWarzt@lid$qvQb=|9`@>pk%-Qxvd>y*|g
z{kji8e95BNYM8M-Ti(8;OC)e7+zmi>=EItST)k7iC*OvP%2EsQ9Jo$KeJtl(_@0u{
z%9Evr=eIuou@J2wWY6Kgd>!%mD>$^(o-f@omf3DCs^#L|C<KkTtV}aY&NTYdvh5wm
zlzxWl1}?MCZ)@~yQmI6RzAfLd(geL(<pL9)-P2vT4J5y0$~Y1~C9)yaai>v}Xq4QX
zZ42@IwZ$SC^Y`DO-Qlp5>gX+Kl|F=9tk|op!b1vrCc91zNP;e>y>n6Qs%G)*c0y8E
zN1QvGCesriN;meI&D!a1J@z2r<z%z;lX9#&(&lOnpK(YgJs;1B7INYkr((MuXd4Z@
zZQC17rUD4;)??DD+=>CvR?jDa@vH`j9K~ip0p?<j*-;uD6At^Mi&aQ%IxA}!<6uDq
zb?xcz0FV*;!jWj+A+!4^d0ZCIXuS`w<{Wg|yxe`9dXMQ0p%5`Z44l|{dv%;S?^k<S
z2g5Yp!W9x>PYoKu1@?YF?*dvUe1dM<eRR@dy9dx*W2nlbN70|hs8C7f$jO0fK2WLM
z=CJN0Z>Ng2KE{litPpZJB~BNTK7J30yg6l^RBwkGFZMWLs$%RJ`A77Gx&Q|-`eKB_
zbfK1lJI;Vx&P-~ZClKw*wF&!8*scG#Q4_!m0|^OfI8ttZ*ApYQ6}9#(xK|ES53r8^
za>den_xfQNArf}2ftbh75H1oXoIte0G5m&5dg0p)9G4QR^u9QvmhkBX5!NOF(s?Vw
ztpZ(RAt7z=#(C9XWEVi;g&2!=%wvY8+n)_`kR62(jt_ifuyIC(!XiO@{@L8?jL-jI
zX9y>{{p-92yIUjHVG)@jFYUdqSlX2#{*LaUefQ)%c7l`gqhBt)au50r){{~2msxP*
zHAMD=sGvc6ucyfD>xB~y$alv8D+j%XWcr5%v>=+Bo7WEs9#$os_tO`F?yQ>;rLLg`
z*!E+KIG4{fpmR5215YZOspE|n)q0w~!~YR@{{2TLpI2Bg%+9&+*D43X@b?lWHCZ9w
z-!Kqrkz@vYfCJsHBv#e%+qv+uIZ|`Vd~G?0IjUV*2|n4$#T74;=3ktfuAJ|ICweIl
z(vdqMLGbjMx0-cyjFSc5mKYAj{g`ZQDGt&Fdt6j}ZT{_xjwh=-`e-@N+bMM?==?59
zt`2Pv6ZZKBwrlGRT;c0%-g3bHhgSpKo3|L+x6x4mD78~OM<EH92AV>5b&yp>Y!s~_
z)8pZdP#fRZ9qyui)45t|Jpz?N*8CwGDE9+CR>dy;)0e;e*j!O!#UO)3ulK5ToP1(j
z^OaPuMzR6;o$Eeqj_e<oXFxvyI?^WSpzK`xC$s)90PDZK$)`d2!gLd94*$t{{maVx
z*Hs9hWB?L@v4c!aCG-~<$-hk;YCIrk_%R?FZ~qSf>Q9gVA1?y!Uyjsz!G8EZ@wtB+
z;J*yK(-43+*3ZVa7XNKre;e=mTkpe0ls*84Nb5_!BIIHKAO}xM4`E>{S&rpA3tF1(
z?vMX`sx|Ue7lA10gY;i~5vG{dQEkcrUs(PTgRkfD#nBkX!`#u$nVA^(r-Zx?N*|AB
ziFS<+7lOW$75&MR@IingzwO9dBuV`RI|WEO<RFL~tOyE4taz6<avux;&m~u5kRdkI
z)?6&c)++H&<DJC7J0r@t^?Q`L0ITSe#OeiySKmPjjmR)^291x8&!*3_6if2~&O~Rg
zt)0w2p98=VR5S<{?4p=KoQXGF&RC_h@AKt<MHD48Nnv0!-Vcmy8215}psmqzc{y?~
z2Jx6t$s=f}-X85Ix*r%6G1j6|QS^<-fll)ZcM_I+01=?xeD9Drs8%QOz@QPg?td2e
zUDSQ)qvE)E0w5Xc?Jf6`ybStfA^5o7cp63PMk$^^n(%_8h)DgUkW{wD0->NRrOqi0
z-<1IrZUU2+|G~1Cf@kUndFkY<Xu8iw)}D8gIfGBi9W6_ddh?72o;v9vNvt5xBvxgB
zKA;yzr;4&jm`L&vba;4u4JqXXT!7LyE+Q5=eC{i|-Bx?WZ|%GFfG&VOblQ!8CWe-b
z@N{F~!E2`PH?L9BsaA`NWDr)b<$N;OB=&&UT`uS8ymYq|5SP`|Q%Obj(sK@O+}loU
zh3^J$^-t|r=pXB{JkjC!hX2_8_Q#$08<ZZsHy*o{*m$-$8P}8B^-<pz-nG#Bk8DuN
zm-YQ)($n=WmQpzO?M#S{iuzX_FH)@k`41HX9-rG*srhJ0T&qZ1Q3RB1NodyYE7c(i
ziUrhjy-tvg;=>jRo4KbfLno1$JIO&GQLSLEJwW|2@83roKbl`HHQOt9OQkY;G*m~T
zrCmpS`*tsq-Z~60?YJ4FKpbPYd!{%6Q<K)>EKE$!Z^Qq)5&)jXj;$<Tj`hA|3UjFS
zpe%s>V>R>$!j8~|Z1}NqJ8;%fhXWj)_P0&Su(#HSN=uG?3ilhw!gkkM-w^liORBuU
zkzbOV#llj!%&%^>8>#VXk7Ie3Rw8QE*&<(v?Cn>T-RjL>(OiD%B2lZdrnxV)RFa=u
z#Jr$wUi&qD-;ZlzJdbOmJrY51>!=6Qhm95PLrN}(UGrza{W;N6N&RS+-_Ivq0SLHm
zp9Zce3eQyX>5ixc|E65}y93~|d=bce)U5&ihgta`WW~~DQ-Y%CO!e|*^J7jm>hszW
z{E}K>QL;Tl&!Skx^-QPp0?>qxmZzvhh*W`u3@LEKRDZu|%Xv51PP1zp*QhIiIkIT+
zXfB&wsk~?5GF0P-js{5Hgt(d`p7*FSWgd^y+%I|ra)8E#u*R$cTh8zo4#*s%`bxa*
zqXO9Dsp}>=0d5E2TzWyEaG3UzgG9=tXx>$uYOOd!Zw<vNnkh0Adwj1_%{5aM|3xV1
zf40S{#d(jM^5L?G=w$p<V%2n({Nju`X>5CdQGwl~%{*UtLM?}=Q2JMeu#}t5&R}vm
z=b@VxdV#TmZ{k*{lPqvg_Tdgmhx;S823+4NHHOY`N-pBhp}+7vd<y7d30w)L$m<fo
zg*?OwiA&f0kwIdnxx-SkEo;l?4KJz|*OVLd+K|qPfq3%!$kPwvS-MN}wH8Hd{ZCA5
z!v!()l)yDD3W_FdRvkJm^DN%AkF`j1EReletHj*VdbUCNL?YU({5EXV0M#>D6&=ae
z2nXt2NCz_rgn~9DgqnI-62K&$!dzcH0LKUCWTe{vmLx;A6+(+gcTV;4P5&wZegLu|
zOSYtb)Au6RK8?W7v&TV8hR^$-kKZa`Y;(Vm%7TZR*#A5Y0|g*RTEvBQvn+!CElT=_
zcVC@D6N{(()#q@ocpMh)fE#xsTkQ_twqLcK$DfMlr{ud64kjr@5{T8T+hly2vC8ZD
zf>qi0wfsS@Q38kh*RiZ_udOe@>!0hpjNNF1b?u<I#qUq1`8nfsk#(-f12jZ)C*5Gz
z=7<&AAop&lc~7a8R>czyHUBw4IPBK}h6vb{Sby@Jf8wsh-ajQ@x!9I0)loNI6S4UU
zX(eZ5QR1w%E#-~eXhx)YrjY<#&=)Z#KYq9LTeoD@`Y3+@?mHLsx1?43P)ny)K6Y^~
z(-AqOQ8vE0YOBP{wXhnhP{n7J&}dMc4hC@cBn=MXuj)c{!e`l(qNsLgZKK-)L*@GZ
z8A;E_pW9~BI+=4og=?GtkV?l#>OUh-EdqQ<g@!%+zpg6N7p7$*z5nB1feAS1eDA6W
zt!pE+DW9^|rXk3G^G8%!DIG_O{@5=w?2Yz~FaeZWB_zvH5@*@s+3Mf7rA4*caswYK
zovWLk^avI_H*dUqK((M|7J!>H=u77?QJcLI-R|HlPQq==Mi3axZ<W`!pMN{^z=c+>
z=WmCHk}XZ-LCcG>mtP;)5ARp>5}F&mT=RwqnxaX^dHMwc_X;?Il=8~#S9_^1b<QHE
zk{orvo9>;QvWOfMsODEu<BeUZrv7uqETRSGg4#b!q;U!?ib9aDM*Sl)M~=VGGKaM?
zcNSoj=^#7ca2)PDD$!up^FkDvnVn<&gP{0ZSi(j9dUGDwHoAUL(9TC(aIVDg;3m>3
zZh<K1J=%)P6bDzv)n?~>6KFJw3K&N6&FgZ+mD5@uk7gosZK0JhWP#bKf&+a&CO_l-
zF>Akzy>T@=!vTZDjulD}^HX5hkF7tApBeY9w6xUO%}um!>~H+t%KqKxcURP%VH3NX
zu9+3_%(H6<*CU~uvNDK&8{*$xX{QDRaG(aAtgeDLs0q<Zj1~D(@tZQo(OoH=*S8P+
z30MP;!xl&vepK^K-0y2c-8#LT(llEVV#7r^mQo^H5Mjl#p8s6NuK{-Ed+zJM_)Eaw
z6Y^;dzATggnBC3wt-`1mC1^IG{2ves@FC7vK*-01(Emcc{%5dBERD_w*L09*9w_op
zzdsViC$>6gJV$%~7n|xoW6HO$gE%AGyZ<Gw`p={J@9&^;17i_Fak}~|*!zE+=8>d8
zs4O?D^5d_D{qJ8S^E(j6|6Uu``f~>V;+y{c5n{QQ5xl{p{XgU12)+wcAOh!JoTL3~
z%l~WOEEEKcKulNvPj>1*tn}w}1`@u|hTl2eDE{}~`NuB<_ZnaX)D}hm=M{ht;{PXo
z`5)7PN)3#F)IT)#f3?z|<|TH0AtMQo4r2fBSs(>CPU-Bja`gYgTqwYj8S6*^|0l5b
zuU36|&6f@5EK-2=xB23ud(r5RseIH!j{o1sL;M+j^FsP<%2MND(t4OW*CHTCMOB7V
zU`U`U`Qm^6=S2MH3ul-Y8F?B%W8}V%?i^`PX!U<#A+;9^VI3UA{O=?B!<?j|fQ2^e
z%CY_n3n9E%$R{P`zp&8e%Lwq<r~mKG>TLpuvZ>U{D&_xqfc~c${{BuN{>!%B=vMn5
z`|>Y-M5TY(R0xia|IM~014dxCs1p2tn=8{F*i<HM!_xo7wzhj2K^UI-f3dBrUbZ#;
z>>TxfF$-b92zqVx>HiCJVL_yhjni`ee|B|XITV9NJxMcmY5yVTYgy)Q@*iOGU?&>!
zG)kA4s_R9zvsG`dCO2h57#N8rl@GVyKX*H)rlK>-lA@u6t9)3WW$JAG&TqG``wfZ<
zQK7Yb?Tby@<(lAW&<?fuhRY9QuDi6l^tanaL7cjzdVg~+aFi#+@5PRwxFT9xi62p7
z6jE_sKZcG@ur!ljouP)`lt1%6s5lUIF<p%uBpZtU+ti{4!!LrJw8N5{v%Rjn<G<#Q
zi?4??d?JE&6!rgs@HDdpR0W7)SN|*y)c$%~b(hSV(Jnn2nq)-JTSF)M)3yNB-?j&o
z8Ug`&n_PhE_~2^=8~nLkb@nv^f!8;#h*v3~y&LiOCqicrfscg-k;$J5U#5;v2u_Fp
zsr&FA{pMS{v{0R}xawml>S7yF56MUMBF^x2)caZYWt)S48|euhJm2i;nFJlq#IN|y
zlZHT2L3I-hOT5$fLGvDjiQYZZ7McS+bxfY~(HP%)q>H%GG^Dgas4R@i_w`Hkz$&*o
zwfUPi4hr~hWUxc#t;MJ|+>mYHwl0_Wb@>%n5adA`ux%OsZNYFcLZJpB5ptT!<+z*4
zf3!3w$|=pAmRvM@mockX*>!c=^Y)7Jt@;<7FK@%hN``6Qpw(Lht%pgnF8)oAP6GAi
zeN9AZxJQG-ew+r_^|1VK78Mnh7@M&`vJnG84is~~!w9#WG8aqxWVaJ`PNlJUxof5U
zHDpKpu4)H;+O~`l4}({9=f*mZ_90s3YuKZBcWA@+aQtXMsg>a5-fX`!jKTKfqpRmb
z!eW!l{*QTE#ror1?STfQB+Wy|hR6Bp{R)#lySX~kq{Ze(gLC_N{&#p@H@EBwOy*ke
zekC9CIR6f8I-6IwJ6eR6CuTl(T4t{8hK2wxa<S3I!@|1?Kw<+KY<OyrOwx_l9dNHd
zlhOC(MQC(m<O3if!u%4M<86ARnGDAl3CdH<kzypS24cb6gmYpTB;IbMuBWD8TVH#Y
z^gLWAgOWK|T)o{rHccTfi2!r2m5kmc(bVyX)V#R~W5&SJl`bl?jspBxOI6G6Urw8|
z;t6zJ@@eRIeA-nfXrnuadetxXes@zo<v~mL&DKFncZl=NmHZzvnpF<s)phnrJ`dL%
z)$@;XHSS3HGpiIXU_;KiD$_!w-qsOV$-eQ}U%SDj;!CcK{n>q93s*ylY|8HaO40FJ
zR@AYDld-QMTWaWW2|n3~nN3=}uipO{xyOdv>z2YBVNV0m_A)s{dp!H6T;geY_dn}D
zA&18X=i_OFJU>0&N6~_qs8xDJgRp2BE$5r*D~-R?#l+JqYrc6)N8c5s98o*pLiNe1
z-Q0Y}D&h>&Tzp6kX~@MSMKtgEjJB8@)Qlc=Jyy8$-9wXoU+<uVwlkS~tAI74o3R$H
zX(N^mL~XjzESW8gx>C7gu;|z4^K%W<@s!A=iH!dVza$3|lBiex_#%SKe?Yuvn0w0~
zTU{apJ=Sp9=hs>Rk)l5qof^$PyTuO$`=5|d`LO(ZB>8}zSG1r*MXvAofx>jk<r|P`
z#~c^($>1lTV`0`mo;43_TCy)|dfpXNEpzt}^M-SuuRji?Q!S^4U~6Y^?LPMTl8D)C
zPR@5c!W)vr0PqCyr6SU-=Lz*XzYd@G%iMxB;Jq-Tx~1PdgO{7*0Rd>=4^f}lDvp7z
z&fPrBo`d_Kp)@i(!p<re$2*fix;tzAJY53rHCiICTl+jq(D{Im;l3p)>0LSRajH>^
z?2@BGC@1O6fu)CyIgsh%drZ3mn!MJnuw7WDO2rk@#K#_xPCkqFA7EF})_=UuIlMO*
zD1kI046_gYy?L+@WU{oA@$ll4af601S^P`{wf`PKd-uM`;9VSx{+7`az}M(lY<N8!
zT4DQWmoJ-D;C^{o`;mET;I=mh>ACODVPG@KnkSyI`9b92@p0%WB!Rg%c}{+)`Sv_#
z0NrEHvny!IC@nrd9ue;@)?%eWM5$Db&bi|F+SY4!-eD%U(PNA$wfD+2>A?O%cX_eJ
zaAx>&Jj>1aHhX2K#vU53JM31r##)`sQmuuO==w>4K?Cl-PdLzH$?YPl%@?MBo=uX%
za-Q{UDqc_kO}J4M`Ixm-SFi=Snz6*aFNrhvt4AsLCXJKalghCVL<WO*x^awSulM-Y
z?GlGrGQK#%)GI7<1Gcu;Thsj4+(777D6-~O@7U~Vl~rUrw87XSfWp}4sCaQ@+Cl8s
z97F<zD*Eq=-7+iYjHi{R&L}o#ta+o#J6t7aY7_emFy)C=x+s0)hf!LjumO1TC3OYo
zN>v%>V|r52Qj=s{$vnP(?wRb)v|JV6(K}8a<byu=R&R^-6@;zzt<@Fkw5G1W+7HJo
z4t9dzRl4Bfoux`b_9I%d?k~{_)KPsX+8)F!SI4B_#+umE39SC|=w_^8G4O`-YMqKw
zla1Eyt(D}yd6AbjfK0vU84|v4Xpnv8xUV5qi~q+>k5okGSW%n9tH&ifDX_Y8d>GF8
z^FpuX-_Mpcven&PYAM_n9ooe*U5{I%UO0?Qdc}g6@pOL8h34^J5@Lyy`D_;BN~SU`
zVG2bu!!?XjiIZ~WdK{|NX2p|5s#13QdR1^*r0^J&F`pgG`j1<lNj&Z@V#@A9OgDbe
zL9*QLoQOW$oc=NyYxlX%YWSp`^TiAg8vlO2+FUFQf6j2X<ym}RsdWB|<Gzev(9Pv{
zrhybD!DFdbtRU{w-q{u{1SkUv9{p1x`c5syI2DvSt2wF1ofma{jK3jJb1eQPuT;MW
zB;kL?!~8oKM6NzfXLOxE(LCO`62Co9FISh&>h-H!aj2=~@d!4GP15L;d!I@&t~e&N
z5KCgc^T+0fr*`k&6dt+hIQe+G7SLyS<@>gC`goY8+va{7nZfxqK@^1~rAw(kr|F|>
zrOe^_Kt_jXsIm0SFhTZKA>;RXFV&8ZVbA&nAvaeD`HC#g<z!%|&o~c?UKo3}Bh8Re
z>>vgl<^$2TogXcaCVOOl>Y=WT10XV3$zN{_yGD+iaP}K6lPDsWt#Lo*(QA7yD>q%>
zzmD#be2z|>q8%8?@=|7a+}y&(OFZ15l8)SGx5~4bCYh{Do?@~@ev*Dls1!@PXr?gq
zkm&E#)fVp#*+oKdCZc~ZuDG>Yc_;Au67Pcw&_XJQ)G1<e+6DQkA}w1ia<N$@`2kUO
zr{h|!zc!1q507386$MPy3doLraVTu`m3WA5#T;|E<ny!j{p1OK;BoMtTe*vMl^e^=
zyKQpm@k}@yVXk+4%y~PUCco^lK_Q;GvmNBHV6fe;m=kijafxj%`HQ)0vz>ywG>1Nd
ztY<_Fz@(uLw|Wz0k4yu{nter*{Hsmv<0bFD=Krc^sKOjh8!&6%a!XBCC6_9AYj-Z&
z%jazV$m7s#vE(4rld7cFtRM>HidpTgfZafzkLF=7;Qvd#1L*VZvg+V^eOWg^Wax@=
z9s_c1+O=!S^YcGGmB;SS(9b2e7qK>db|quMR`<PojRJBng^&isM$kSnVDB#7t&_+2
z<D~u9_hrNj#UAz@uq(L$hfrZ8&8XOq*`s{xbcywnP}uY!z~+H_TN0AQyb{6=NXLA-
zI{OWS6YK;p>-5$fB6$?GRrmFX>Pl2<HKQoS$$`{5rmd3>y_Iw$=mef)-rduyLRSms
z28;Vf?cBt>RV!;ie>d>X(Cuj*)82x!#zl7g7kmonHNpr`ZQ;WP-}?rdeyASUon)4$
z#>q;vhPalmTZu7@iYg;hFgZmYEz>vJ=4$HDKZNhxq##(D0a0Xv-tc@EQ^5C07j78g
zH=9uaE0|=@UR0xzqOQd47I3=JQ;Bpw!}}Z=C445%kpgLPe<WDJ&rQAT#&Y2?qePO(
zOKb;^Rp0Z#rhNC+{QjLi;>c9>!KbfIJNbp?dCw6{uFoyh+F|b)FU@1vdnTTm8cR{)
zL((evYK}R`Uj&hq4z!Y8%x%{c$@hj5Z{@<HF46O5RuHObBmj^Z|2xG?9`+QTW8%tp
z8@g_!<E))IMSH1@2D%8Uq^6~UAK8=U=mF<$K5xk3HdKlQ#Fx%w-u!-q+}YY$d1Oer
za35Js>5d^_(~YZN4#pa!zuItg)NIGt*2c8oaO;c@_&lwq=>7%oW^FIA8q?-%tte;_
z4t~1Oo>n})Wu~oSmmBJu>RFUze(|*9(q{z?P5P*6xISuGUTfl>y}fY_aH(I9c?Fg&
z@1x>^jgQ1pXX#VxS^y`m{=sSS8a$B`_fqX46|yIL$sB3OxfNB*>m3;#>5L1IRE87}
z91~*kqU}80YQ)x#yUQ8=PpNB$^U0;8lV{cHY@}_zs~o={UvHav>aaQOs&x$JIzRPn
z2R(0SEU_2W`zARs@IwhE0gWNBop#7eP!`$SsFbe;<r-98b4$-$HorS#PsRD<6~U)L
zlHLLfwJYd%I`Iqhv4f&yaIZeGC&PSavv^9MBEeWdJdQY0K_X3geyfzm6a(hj3y0uC
z4$%r-EX!sz;t#>+WgG(iAHg2u_EZdnio*cvL_7~yq*|#3)U2XHb;L(PxKy4r&sFGK
zg(kj#1R5ko52@FPyJ(s?7@5=xxXj#ZT;fc0pOYgd+x`G5-g)v$xOz;2aM>+MEEk#?
zczD_nw6D&EdYd<TK%cn74+hrGRa@+%E+hGvgoJyf2^Nxs1>m^i9FCU<{CwRGFWI*O
zx1)Xp2Q(?d;RIj{`CRiJFfQN0N-ii34SfajuNYGry(~JT6Xd;Saxb`l2@ljlul+2m
zo7*lPwp;I{zTN7v{v|bF#C)@GEU0@np~0j-S;?SWf`4}Z8!bu=Ot02FCVq9uOP=LL
zNCSCy9R-v$fVb;wCC*8IjG>nAz36KZFPs5V2Z%0W70m^{OLMsFg)~jBOPP-6J?Xb2
z&(D?XvjY`n5LBVModTK30z9c1+2FBKOK-H<JoJd@#DLZiwr5p~iVS6pFi7$0xc!Fn
z+2zazqq%22*}KgA!el>Nw$XimR|4H+Z#{2j<oLm8JHy(U>$A$^RpOAhmpi%@4hzzi
zD+)HU#{E@u{hsw9_)oE45>JAYPcNgxd2ibl>YdnIL#R&LHpKP32)VWV2V<Gd=bg_#
z+nkg=eDsW(QcU*fX;%}tT=mO~;<gWvsaFQFo@oJ1XGEA~qD0H}LcUm~9FUt-ckBiv
z=R@8KVvp#4@-k*rD@I5JDrB@;88O)$MO7OS358hSJAEt-pBf-*E_sVB8ws<+DFD63
z!lg(ogg9}GszF?k+-RfvaN*xf9PlOevea~BE?l2#q#)03p00+Uu3h77d(bTCiOv3p
z>L^~OzO$?_q93>56UHpmrN}oVAaR*NOL=Tmo@54kyBQ$vDkE+I+OC1X`a~l~%v1B#
zla&rien~J`P*e&TQyNL2`$g3Eh2{gt8_su-0!cusL>uLS4jy8ra*A2oGu6tdIc)t$
zx{k-~X)-kP%kC7Bh*tvul{npOw9kFhOugrIn8WA3pAVsx^*Po65CGxEnWkMlr>D5*
zf#%7oQVg-&0-3chkH~NBj4_=owH29Af;++jp!)-=Y5Vi6UB#I+XEhsWvQY}@!WO*A
zat(A!k<U~|u8cw&9b_@Kd!GRunpsU4Es)pu?klq%?l6aFWp|6LAdSadV^(S-<C|gc
zjoimCvOSJWBeEFAl0Zi0CD-pvJ!QRH;g*hevw^94!>LMR6I}NTGOwe9fR<{@i7=0k
zZDaFT6U!vbd>2okE;UhmCwk5}2M31w#sHgRZ=E?ntt@iFmvps5a3omA0CVXv6Nm*Q
zcgvN=ROXl`-~WSB{jfer&W&C6?a1UB5<-dtu4N^^2ft)yEi1R+eWGaTuGRME2h)cy
z@<^nIz2y_x24n8bXTgLt>)9V6w!oq@+f#+?tQW>&o|2oHZQSTayjDH?=riw2hL&m4
zJw{L25-JUVLN_^$=F_YP>#%+Vi^_DmJv2%+1|+A{TBGg`Jt#8>LI!ZhkI&a}XavNm
z*^<%y_$c_;iz^5PKhbS?M+5IoCR3@J{E5HPX;yb#z@B1cRvFfLX@EUD+(UmmAlGzU
zI<KWZ&(-P=fzcs2x{*pnXI&q85q9X096rTg?cNl-feUXlmMtwINo-Swrj|T9JdZxb
z6Dz4(W@tL?Yy$bv3D1zL)wdEIdo&-4$C86d2+i|A2vVz~k@sgyC^JLmt24@m^C9XP
z2qz0HBsS)Q&h_IZ@_Efi3@W7YtO{IDEFO6?=sYXxHSJ2<S48rgXNA_iu{FoNzj8|Z
zifu7`pEst^U*pyOJmZgNSm@_H;Wn>XT0wKSTyQ)QtilkBf1f~SH7e;@IL|+v-!oW*
zL6Q%d>0yJ<7lQ$$7{!no`U3Iy2(5SJ-Q-i5?#jSBB>OFslbF`b$9wM2k^zXj1Wp4o
z#qsPQtBtXZx^wNz(b*=KLOQLtO=Y?*E1GFXSHeBcso9`=j-IWNli7BkXC#k3yW?d@
z+_=Mn)<T4Ub6BlUCk^k;_fh0jxW#l>jEBdBBYU2Ei)6tCi=(`Q(Z4fikstl>);r_1
z-D%QHt#bDpxb?dc$L}|u#hcw-Lf|gIZzO$TP@-45pA6<hC3zY4h)9}gzCIpjfux3M
zHV65CSELhb7AqxjS>`Ads3>V!mUtcHc`&W&Q)}hq9E|Blkh<8-fsI?}esYV04}H?;
zc)Zr4-0yDLbBZprfVLRp*I9(yv_c7&c(whR9P-)j_2Wi(ogw^!BK_=pij`kF7~9FV
za*tb>5MX$INs5tR`cIh7at%BTr^M$B%}Xpymr5LKEfo!AEQjNBX6y*LUw-Jfs9Blf
z9iMNW>H<m()-2>IJ1saV6M0VCssPQ3wEALM8V?q$XXeR&Oit)ufCMeIM1k5~QD%xX
zv)k$=7N*oPRhh+HJfEgrDi6(lun~jBfEK6mE;Q)=h9{p`;B(oY#c<NlE8J~Q1hiBx
z_3od56p%t#ei9a>rqY??E`+UeDTIY0s?o{<(Kk&ZQ4~^iTVHKYL@^~=->r`-H$+&e
zQfprLIlt-vLow3DJ$*Dxby33uwUEiOrDg`qzVbEh3c6g_ngz07gJBj<pm>_R_6q8l
zfMjYi1D(^QG4~NoRu@acJ)b>8Zcj`JY$njIK0k(*II5%EZ&HJNy<3W%#E?A_do`eA
zs&$hKjMrJJ3oenqPpbiAssfF=0zht>HrTT-zwL|O)7$n?ha;l%GagB78yvx<73iXn
zh>_7!wrx*nJ8x6R{zBh@v7)4f=v?n$hUY#~2I!_cvf7yGWIFa?L5DkXws6xb9L8fC
zu)f$6K=lNi4EU9`ddLjY&UGB%cD%=3R3o_O?+zilfs@_?{*huVBL<J=e1GBgEL91=
zBf6}ix)s78qP~;H?L{{#uvr-f+Z0}g`lggZbRs7t{?)rxMZu9`g1sr-@-k~|J&Jky
ztKZ4i3r)>U=W99(<@PgiKwRe>l7TZHUT)Fnv$u6sTEC(*<`(Z7rhCdoiHDW9V!9**
zgZ#YYOfVNdb^Kr$KU0xan^I^`?VbC5!2ErNGDIa`stou8S9NlhrJO8OJ93F`6Ckdj
z2ZZ~R_hKi{$_@o_Y&)-qp)D4ie*1B3haDQo+ct{)T7}iL0eR<!vuPz;_wGWU-uk==
z{lsYF<&%LZbkh6t(c#BA{0<8jrf%J_<%BsVp}($n<*-{zk(QOI9EDT!`Pg*X&6*a9
zHyn&CTx#+OSI23qi}!sC%Rq9QdjCH7U4T9W=(Ecl81_w*Zo6AbaHl-z=bL#ihz%xx
zSj-|f(LPd_tp|VF9P7d3E$jlx9K_whYb+^q91!=Ue|=)wTt4q0KEZa7`841apEN4w
z%e|Z&rSIM{>NMSmc%C)~C5V#?FK5eDYruPd6SkKk_F9G_Wenum{Hl%h>?TSE6WBCA
z=-_hn185Ou3KhBF^(C&8UMtQ|kygBQ+j6^6GypM5jEFU>OBy1-DM}1XCu}%>Ds|@Q
zy~ljN`7xm+?Nr%@G#qNYP(_gXC(X_E_@nYj|8L0WzNv2u4bK_wvJD9apt$KT4?P}|
zhCN&I=;<7C1Fkz!R{p-v$8~ncafox=+F>ho?_HvD<3GC4O0FriJ<ntfS5)4UgI)K@
zM^}nXK;Zykk=qkT56DxvM4`&wJuBT0pS8hiLa)u>7dxemgun{-I4#>PQpo2HM?8Nm
zcj{j8;;FG-X@(rXj`lWcTVg_tY~)!w6r>t)<pPcG=*z61!1zrLB(c|4c@-8nT~zSY
zgAEdzo?OeE`e2WpB7LCG2SB{xOg_l%*KJn^OQm`;Clj$(CK9nU4ActmeIi&+g4>uk
zlNc3b;5=zC7Ie1;V1qGHBY1AJ<0p$3CjG1>Q)mpBCYpz4?>K-ysWi#cQH(tMmN~C<
zw=Qc^vORJMEBFMx={2eb{g?p%DUwG`D1S<xz`)b-=54R}f^wb?&w}wjWP7kG%rUx3
zvwMB9R1_$DUlDVAI6r=bA1OSZ%&kUd`Bm65yP#+Yvjalj&2~TP8)T5BwoEy-FT<>J
zUe6f9rFqi2zSpy)KbX9vAYi`vp=F9$3><ky^vR%|uYDp{=ybJ<=<SzMEooE;I!^b^
zx)@r#bwwCZ23NhkTH{coe#!<7!<7;!MM}K}Z-gW{eyu$9*eR}(rW-u_fOI<Em3il2
z-v3gl?xk5=u4@sUFSLX6Eb&`Rtk;psuY3gDkR%PccT*I)Fb7a+dewS6e6X={%6oq}
zqAnW^<!FlFpUzOt6hliCGBnWvA`TPvcL68gsFn}u1shoHt`;fCj)+;w{RrN5`v~=(
z2-#8|wPJL?F@;8X<;Qa`dhZ6L^MjYI#8*m17aHm_*FoZ#j;mnb++DQxA!a{I&ePrw
z$c3mmc=4m|;M^9LY!tLFvNLD+?K>TNihkHlDH=H4<v^*11uHnFEeR~F5T|C%aXa<b
z-%(UTM1JP6&?M@<#?Kfac2td1faVw&&aVxknAOGGwzST(hUc6mR9d)lC>}x0divR{
zVl=3(E5zm}elCr7=jkPi-QQy#$UBIq<*EEoy3c{$6d2-oa7*;bRbtxIIk%V-C6Pe}
zo6#7C1Q)cR9-wdk`?u-7d7h(fv!Qd<&oGEjGjimh9E6*v?M0g@EUp~jMsLy+Nm8R4
zVE-vR;Ps-{O?Lf^4#}s4fXR^EfODv2l@=*ES*b4mfkjQcu=TJ)djR8BteuINir?TY
z*=XF0OjYYB2cCBO9t0Kl>kHb07j1Lyq`o=hs+!>m^4L6cGB)bh#w!9VOJ+h|RL9lo
zHRod=Q7wbPr-sEchtkzp$|=2xw<R8u`0)FQ4pZ#yCRU0W1F`<WX+bk_{9GLlxP%B@
zn)~(ZRx3(ECH5NnsE#^U&+KcQcJaDQXxq-7>(4lFQE|UQIv*C7*hfnq>kTgTp9zD8
zvh2|b4Nq<=N|Qu7hGZAf5?X$T1t2#wo{X0log#>5%lfXGU!83clO0T!MyrISIWI;}
z7Ia+y6kHu%sq8G2a}mFj=45#fdTf+`eif0vzt-5&nVeulj`jM15VkbM-`G){0_g|L
zxp=&Mq5&f{;pzH7fj#UN9;T6J>0Qkn`_qY;X=-7SLSKaT5zi<b){U<KlJ0ViCJ*%n
zVQi!Oan4*AQFK^IyZ|-Jzzh%l=4A1}+3s`#bGfT1hr@YAQKOAex3ZgP$w~{YbrC*2
z<JL*})W-KbK-)rP=2F21=x=u-_`dOwES1YUX}&8pjauR)eRp;Uhk<VTaGW(5ZFF`2
zd~Y55aI#^N@Y%5Gbhd28X?sxBC0C#QRs?%17!yI&L>R}(qhaBD!{2-t)gDi&QaT?G
zhs{ZZ<y`{Xocj;-uFVA!ZHdFrp==7%B9|Yj8Pl$wXO+57JJ>Y+X2Hg3O$+(pAOshK
z<K{=B)8%Es&VpzzRc4HJI6`e(sm1bb6EKx@^6aKN&gH&yWq!@JEq_F8!LL7R0U(n)
z=YGP4LYd8<FlIGYI%(hRlP5ul3fns6t_?8uO_|o<R!W&Lb{`VZy}Q^Y2bCl<pN^OY
zuw$+3_U`-oFI?>Urmc%U5%`7eKeaT=W!t=_j^Gv2V8*-<?L!wH)Z1EN*)dyAx}t;?
zzjrJijNVx>Nlg*CJ^z`hV&Sc$kJG6=fQnvWdCxFjKcUWS+$}VO8KZ&=o}8aQyx<nS
zDl)Q~mJWo=z4TP9aF#Wn&_CvOy<$PgNt$N(c<%F))un&1r=P=0teAwM=kc@L2Wh|W
z_hln|x7wv3!~V3E&sd=>E0K~A0T1kP{EKt-*MSpM3&qS~$Gs?Jt{V&+{;wk;mif%t
z4{I<5r3w7-ac^{C7izvXjH00RF0bycy?-@(j51=JyaR{kmwQfvOd*{->bKxC69Qh-
z2rBim(6gOT`_iFTKx@ygMdz&LsB+?GV*qb(a^U^Fe`oJf=7TnJ66_BT?OyZq#_hp2
z2%_%LrgzS5`dw<Dx)%?ik!TNa=W)(=@Trv>%G?*LL;DgY?N?D6*vLnMfrmi4Bg-p8
zO=R;mQz)JE_|}^`ck1@n#FIGft#f$o(rs?$VlBhng{BAD_2G|4da>VUkg!fVHr60W
zaN7~W5D@LVNb^}bZUYu+;?|n#G923A_7O|w?VPOqjnNu2L1-JA5N)_=`oU~+wy+RT
z?S-n_NAqR<D#s<m^7ydIGpK$B`k#oA1Ckk>iC^g@Q9P_W^X_^;-DX6bcP^8S?R}Q%
z2-LK#b86Ect#GcBKK6qPznaNc?4ENoy`(GB{1t*GNN_EBkyyPa_=(G5+x<PyEbIuS
zjX&)0#H#V-@d3fL=KZ}&Yt~8Rd%Vc~Mb(Ajnl%kLhn9(FWBhY3j=~+Qq{jPzEvC(q
z=1PxGUZ)?rfK)5jV-&3VQ!gsd(##*5Bk_DZzprjQ+#kE$m~F?UT(T6I#gjhr01^x?
zRl>av1-KC-)zwps>7LPJpq|kr>RBJFXdcre_i6?YV*ERj)Z+WcEZkbEXZq8NHNx4B
zBoZ%quKA(bcLJ^2+-7PeH>%?lUrO4gwM-MiRXD2XAjVr!u#=+}$FIx*0uCq6&1-t+
z<q+N~wTG|jp<nzvIb}}-adFUdBZ8f*dr!E7S-n6!)M-37)?XfA$_@^+`VzQO4i?tU
zp&rg@C<*GesTxa?<Cu5t#3e5A+Y9;nzcBfIS;QAP2@+UL#xoXvQMZ9oUZsjWt$Kl>
z5su;N15WszRX^&slY4(Vp8$0X5}D0@|NOzP|4xP5RU{NwSHJ*z25EVxwBBXey)gRg
z@l}a}e67j7<I)S&d*?pA;S$9od+owXCu6bHu$0V>gbUTkxnR#XTT?q<jpiqdFwh@+
z&a^I2p4k?xF!7v9?_fSN$}7Pw<y<THJ^Ux7)k-scmS{K&$to)0hY}pDui=E8`K1_l
zF>A63tPVMSwDP;MVTC|l+g`3ve(={h38Z5?Wup<z_p#=zAAJynnEbf+ujh0)ia36J
zG!68L<PEV6e*gC(xsWZm1)1MV`@rW**IB=S{)^p(nXc8V=698h0lgGMUR9ebm~uIK
znsb@;=5(~06+bWb&%OJKFGTK3D5=7#M_flTuTzi@)y(T^(U?z5O?^)6-L45@YCm6%
zs+`rb@ygiCvwAgi*&W=7CvY2kYt%W52ZY|tnF$CQLM381d6wl>>5R2h815r4cp4L#
z%@oi`#$bL*9aC9I^WYKU{!;RZ)@%W$MCFa&cX&HAsVRFVu4%7T9hV*ObAGzVir;WY
zx!A>Tl>U>+@K8hIcH%`DDWn8_aD)lo0-2u5pmcKYfFDo$Gf5$<5Sjp8D{41fz1*s5
zG%<f~r4~@+sW5lcG8&3tt1QsJ>~sB87D+{b|Lq3u^dV5INGgyq*|>KXas>OJ<CE8P
z6V7kgdsH6tRLY@l9yrM>gy}GS8}{X*gmFAs7zivx``u-0Kl&<cE_fN3R8HQI$Au5J
z7DTC^#l}N5*pxhxo#DPr*?gU%jbrU%G2?7x!$&Qluo2d?8#wyCIBs5HhoY$xQ0AX3
z-0)WK5cv|B5+U9iu9@=k*&F(9E=4%ovdY(92dJyq-SHX%L11-mhq(N%!HvBY?gQ#_
zt5;8I$F_>f{ox8ip%adusN}bf#pmSm*=Di45wU=<jW?07B$aRW%N>n$kjo)br9as4
zKOqkYA}u6WZyhZPq?8Sc3bv6<PH(5&OXU@o_4mX)qP~mtHQ((Ys;L}Us$TnKrMx4j
zGK1PgyXw7W@(EcOVe=zl;HTx@Egztx%h!eIcir|<MAEI7FdfyOfD%s8+B67P`6l%q
zPA8B!0A<0F>Z0V8K<F}{!{zyTTc66KSkr1H*vzUxnD%2LkBrl{Pb?)Y3Qc{Zku8{h
z)Ge6>4W2NDf>mg)l;%mTKEUR=<9c(C{)+q|sxWs#3jBRxXT+AXO_Xy@$`2Ny74_V&
zC)W@SJY4L0v~251H|cIxXYDfuWSzjPh<4)d;HKV-2+h~_w=Z1WmrqDFvoEfM1)MLI
z@AXVMIUjBg;GNz3vW;9O3HYT1ZDG6-sA6*^>4Y4i>A5x*;wvpBepK&p<^GB$cS6!+
zb?FrD9NzQ<$%=ilWmG)0FL8e@fb{WqP)jkGcxXsGH~~tI>I;p$xnpD+4Va|(Tp?-`
z-Uqr~w-LJ^oX&@#R4keC`D|79<PO7VtXxNGSM>mzY_qA_HRRxmSDzBr7RHi4{r3E~
z+O5gN+e&V+{mf#NAl8Tx2{0Yx1zVvsN?#gj*5b^e)~VnTn${_G5S|HWR}^kHck*@8
zi=YgsDD(>97XlUon|v~dd6;E^y%C6M`QrxF!>=FhAaT>Qf*KDGx9b?E$t9P9?c2J%
z%cSO;L`!XYq-y_UszRk=3_riUC8uvL8GPs-nV!d~QbxAZifPMtlP!fFCr>Va^JSJY
zsX!(^Zj*t4L+oUP*`Y#fzD#q`#9Xb_W8wpsSrMAIySoGjy>BS0Z2%G;`LWkYIU*sm
z2Dc!3pWkWA&oj8-%YNG8OZYpXyNlnJ8^tVko2VOe8x?IT4Uk$)&h#2hgM-Au0T%^Y
z)tQJm7x}l#53!Wp=h^%B9)p+A)=94)-NYS{c3|$!AKtsvnln->|MEt2UEUoPu|Gm&
zx=(&=Z66HD-^kYANtJ65Ah7>pK2t!+8}`m1h%9%=ubfvb?Mb^YJgXZgJe5#$rQBbk
za=tUVu_g3Lx?sjdw!vex$GJ@9zUZ0}_JRo{;<b2<;O&Hn*pAMnzN!mpo^hUZIRb$s
zc<qfdKm}f5UpR%--QjuM6uiAlLSr_#2_Mha<>o$ix42L7aL&3c#BDz;gRcyrs^rY8
zl~GMw^|vzKDlhh0c@~E~<Q4TKiUz6=6z^3y?|PL4E!5OnP6>Q=*rljPh@FDAL&0ne
zO4Qe<MeX6?OBdBjZca2=T<$lK_7_hiqU2hJRpKTm&~7lR{CdRlCF-{TH&zLnCwz@v
z2Qv3eX>Tp>vms`@a?)fJ4Xy-|c!%g?8o2UXbj4o#jq0qXN<*W(TmvUL^jlQSHAn?M
z0U<=ba!g^UFG6qI(&-vx8yd6a8yc~0hVA2>oShtv9E~6yjnf9KuZokN-BvgUxv!I1
zjH3ATA=MaAU$xDAV>Bd_hcl$}R!CH!o|1Le^$vIqft9)T&f_Vnx*-mghK(lH?k3z>
z+9Ob>4XfER9W1ZN_ESf1NRjVxaSHoX`{*INW{dGwb|}P~zP}ow5*2oPBYo=vd>6Dk
zR!(8%kD$3w8-d0Pieo56W)?s(nPfGWS;`g^f^&&0Fs-n9gptIZ(xcAfF)JFCOR+|I
z-euIcL*#L?TU@%e<gO(u{}w1Lc%d9cZssH75ukHAuX#dYz3F`m)y%jo2fH&`<9&>-
z%;UQ^L&xab{4{0a&_*PIHf3gqU6w`E><xp6Ysw19)KXL0{rZPZTL}by9hu1?AT+%1
zIm_R`XAj?As4%5>F+M@*CWm{7PERXdrDk-}ADAL-j7@Vu9J_{s;D$S+JNKQgtn>6c
zDRk-B6Zz!dAaZ3jyRczJ$Isa|!3p)uvQo%VC%6|4^v=S)qMO2&VZpguf|^*Np^t#6
zrv2<*>KFXG1Nsg;V_&SeVNr2P>!@DcHeci3nGrez?${7P<&@iD_-W!h9g3-zx02k}
z(bMPiYyX0K@a?cr7G}>B+A+!e%z0>r$ZrS?e<btTkFwn0${hu<vz`!WAD4Fm)H~m7
z@3!)Ivv-mNL-}CsHSVX8LSNzAX7!`wKr!X=OP0;pgFa#JU*R6(KU7@0n*X$d6Ek&R
zR*Cd*87XFsB*2?2(5ceZ!v8QR)WtO+!OnJrp1klzJ|}e>N&Bp($FjgPdAwaH_swtn
z!jHxPr)0R|O?LI3t3|RE&e2mbG^K_*+s@xDvA!D?g_;``;`Ln;rQu3EfuZ)qkVSmW
zclb5}_Dga;FBIY<DUUcIb_ke#m^wsz%7HCwuLwN64r>O9F>och+&%<c?bqm;(5=Ej
zj^|Dk2-Ml8Oi#!0{1fB(45T$059*7Cx3XRwH++T0$Nm^{q?X9_=&l_%JEl?Ry7>`I
zX<W58u+hjlOM3?NG=-qU=s1`D1h>(5K8~pC9u>9?eg&_7C+0jWSGy$o(}rR*i4*fV
z8PzTGU`7A>zzFDnTgc14b`VmlPd<h}!A_ZcF<0qq^BIc+_Y6|b75r*f5Y1A{wU2jT
zM-WUVj-b2+6Cv1U3h*eb^M{iCECcA%7=u21Pw&^qy{8*ggPGb!9xxexxu|J#Zf5b1
zIIO1Qg(#%Tbi}BV`Hr)i+?6}Jye*mSC_mlpwPb46lR3S#JjAnEak;0#dHA{_rlpB$
zVktDSr!5;aD3e6PanX5X&O6^OMz3tI4!7_}JPC3xvx3t<61~6LDH$HwL+1UdcFv|T
zo)R#dawMtR9Jf|_s%r+zgW5V0|4KJ(sVA7x6ddZNIh5Fr0ttmO{Q9z6ud%jG-XlYH
z!vbP>!M)fyk9Ls9P|jYUWG|TDCa?7T;oEaKU)idqIx2SX-ssg2x|>AyvySJ;){o3<
z{!7_P2A8e&17A}L>wYIOlp;kjrL~wsaq4UqtCHE&njbhP#pjl96@*QL!&~lzfkwuM
zCxv=T;Ul7;<AAA>-tMSIC%6rGBByhNZu_z~hRHw#w3tV@1h(!S!41|f6w!g7g7H3?
zeKXCnKfgd$B}t509WG2;+~|a*L2Az4EJ{BSU$QO|OLRA(nWl2-=+Nor8~XNWc_i=5
zUJ>hv-woBFdeE>TcxSh{u;%j!Uh25$l|`ggz_(F$uhcRmUQ{&!6%=jdC;Su678|YW
zc?H3iCLLBgy0)S9tr^3En-d>`o2_#96KB0@{S~brN7fFY+xv-1&b!98g;(|#Gw}@Z
zU$aC%MZH@aE-R(zI1slJl_E^Dnii33US5FvS`zXoRT7f&o?82egnz4F>~{<2<~o%i
zMYgcK`1BKXeYstz#=Dc|Y&=eyWSbp}9&GZ<^lOSd1#wZ1RA~sg`zOv;c~AJ$xxR&X
z?vHppc3PU;T9h+x)B;UE?v-#VE!xbgUpL!r6U>p?<2D<uU#dJso1HC2@?p;FD6U4o
z0ZE9h6JMrON(NXaka0xkM%%NO^ls4fdZ)v#jc&1wdktA{bNQRWYRWx-=AAjvWBqYo
zl1l8xkUIK+j^{lxaZ4)+wn!aXHu@5?xQU7VjL+k)!fb@dl5r&YIK1!Hczyz{pHT1I
zOlJhi(43{|aeN<D%FV#$binHTw-oRrI6lN9m!$<wiREx{h*J;Fc1T=N8=gbDS^iqS
zN-DQ2i{(ohcjIGC+OAk$Qrdh*9~4?CgZ4mHrVB_|1f~xy+tkhlyyI@JM>N_%FGu)d
zjjkSW9-LzYGOh@sEZJ(YOdH4bEY?9fmomaHC2sfP+T1%4<ud)Lsk2J`sWH#5RCI0O
z?Ar5s9AvdShewMuO_3;`Vhx3bVEh5)pvTl)d+ReHSM41{kbbAUR_b`Y8EjRyr_3R}
zML?cRLtf$g)2q~6rw%g(1O2`wPQTMlQ``3VQ;Vstq^#UitSRHvet*81SQ%{7#p*E(
z>_WN_-JhoR*o#|-49yNik2tZYb8Z_yEEW2FQ5W#|YjT@3tJx|Xo%=^_aaiAxjC$`j
zVC0VA$S1|AO7GOc-!|CY>MRwZY3Uo!57KJEJE1ez)=gd+fVe1~7_?%7eOo?I&VRLw
z&o*oLyjha4Q>UOj-NoW9kY8E%_JDW_!-ZDN{;~zq-eR=OrPx4U)JR*=igC0F=n29L
z#isNvE#<8GEWsFO>N(6q6%m36&OQQp#m#im56=e;Io4YLDEAFAn#t{lPQuq_N1cS~
z+g~6&LBu4cM;Z-|@=ga!SNA-j`$&iiB*H=2{I=jkt9|UW9$8@WYUFSJk#VI2&*%Gk
z9)5SSO7^SZmu<sR1XgnC6b>rX)p|9$nw~9}2jW+UEEak{3cithRz+1e5kXlAOlU&4
zp8SA1kAf$;DX8BF>O%la51fp23_8`jS}kR5hY6FOWicjlM(%7=283O!_ehInhU`+b
z`q#81DQK<aY=_PKKla`-D6TH;`vrm%ECdJ+!GZ*Lx8UyXuEE`ch2RoggS)#!f<qJB
z2_Ce8MjAgm_uMn}%&B+gdC&J#MRj#`*QVFrYwfi!`Cq@QbX781-gU^K-|MW`iPJN-
zbT1YWIEN6?VS1pb2Fe^9|LeQU`4?2r<CWJBEp5&X7UjI30zQK%)?+D!jmdI{(2xFF
zuIK469xj8S#z-$s*_ip&kYS8{BKrc7q2>O2!tbr*Ofz7{2iq>PU(f8a2*3J_1Mk*J
zJGoh85y7KkqWOp6Xt~6L_@|Dj7Y&YuAf8PpUcW1!t3{k{=NwLF{DVrLm~mc4lS-eW
zn*#TD{i1IvYMn$<0pEpe1qaptAw~Vy>m<C#35I+3ZtL~sICdoMKR#y_3+m5)(>E*+
z{KhLdSjO=ZX<5B|l>8dAh8SY0I+;}O|5vH<cbZ_D7%_ObtONF%_V>k}px>EWZkfDf
z|ERp;K~`?v7U{$JFBLDI@Tj=RulzDNUOMB4-Tb3C=M)FlQM5-XPv_;o6-oT#fBx$g
zDl78da_9(a<A}`a*T%V8;?r{VJ<G>;t8JL^I`IGPNQp2J5#tB0?$^MfUxlJ#IQn4E
zeTiGmwrWmX7S_``l{OXSr_Bxjb*cWm!9qeI=6BZBtlFRfK!?d_sZ3+d+4rQ@@0Ebn
zhxEjcx65b0R;R>d(7na>sN!&xuw9}r6vfP4Fgmo}lFDTCmBbfgFqNhu2Q#R*IPhk8
zBJ(u++mOW9Z>obQD=iiigC{OSm>%b+{BG)#SslLs5N5|QrfUWRj7s)?wLuRB6vOzl
zAl!)9r`^LQyE?7jwJa6HQPZ<n5s~RaK4u?$?&=?6T`Ga$zj35V^T6_cB*>>3H7Bem
zE;m^>g0J#E4pEW{QT?+>@C+Yr;Sy;_7%g=)(Sl*Oe&*X*=})uW5+m9{FEvauUV4AS
zKt07Q9)fLecJWtdDZMJVZk>>&cf5Ybg{$rEa@S-6^z6@un+_M+kuA<Ej_D1?8p)6x
zp}_Rx9tPrN&$G{!>t{8THMn*y!&|sSBnvr;)dn3*149qgN}j$_Oh(S&H_K|Ib?1!b
ze#idz8$WT_fXs58is0S>EqwP}UEt4ydzRwNJqH5zJ!Vg2duGG-w}J9TSS9Ntr7r1Q
zo@J;rH}_eqPfYi0CAa!hFXXZ2yiY4p$GXY*uVCj_pQ9#oSYxt!b~==&wb<TKsx2pX
z)5x`+<Itu^(5ZbcMO5-jI8XDj^;hU>dV2Yj7VAyC^fZkuP2V?x?T&b<qd1Q|L2G>R
zS!8Gllh&*@3+_J`Q&8?J=-GDu#V)t7G@xmw;<!v9#TnBYKpfqEpOJ<Ky0@yMQh3F9
zvLb|C0I!%U#85C8ox}ucN|jG%8?;^@kB0B0uHEm&27t>g0`sNCGOG2~uzj>b5ew~2
z?&^WLs1?m8%gnoSxX!DPJ@}3T;Wu28wwg@Tu&}V}RFM$phkU1P0dq|jO=S7Z7J1p!
zcT{wVv`MpNs>8ic24+QB&_ue8UFfvhlMYD!Ky@^dJ#}aN7Lv&1eyD9jb&<l~LhW13
zQJ2`WVOic|0+&de3cct_fvSR_T!!SxG9)4jrO<h&It?RKPtzzy$iJ%3fPE-0f!%BI
zBf-P@%JlU}N}_b&YyZ0?tqc2w^+Z}FCOWlpiL6pu22nUX*kj||9`hLeo&dFSjdyeo
z84H~K5t;e<Y(5V!b$TpH3T3iYNvn(i!3Tq5B08y%=BS{)1gA@iT&e9oN4c8LA<zdc
zO4B~x=qZg-`hF|Ogss*HpVw_CbX>1f(#Or-W}3;MONRzz$cWEmm{LMk!R(4xov76=
zRCLV_w=?53I2z&4ucwhD1P-7hvmr$WT4TopTC)-G%u|9PNRR>`IV6+O%BMDEdPt`L
zT=6oztHO^@`ZP=&<^VP2i@hehG9Xn;jX>Suy2*YXH>{mTHqM-_FqLP!di>Zb@GQ>`
zpdTYxx5L*Sm_5B!!vnZQGXzx?VsrT@w`oD_#YI!yp!HLe`q109zKz%<k`ByLV}>}l
zg=QKQ3{)**`Fl5;h1J>fma@PO+_Ph?23g@pAvugE&(%vLHabn78f=;_?n|kI3whTO
zfUi12q$@JVAjJ5CY?L-4E+-j0r114cM666RBSB%q;MiBehK#`u>|ld#eVw(7rFyfP
zpAxdk?-DAtTQnrm4``)gvt80}JREAeoT?B9I_E-1AQmI#3W@Jjf(XcB4%O>PA#Xs)
zB5Dqu*Za3<sfE`00@F?YXq*no>Xmhg0y?UFzA?_w!bviK56$`hI}`x7hy`1|JncZ+
zrkzM4USi`N<R5%J4J_qw`HUuMxGP_`j*N$u?xP^Oo`&uMtWk0=`T>J3q?d$c5D+zP
zb8HGCpi(x=?lJTRGZ0)GG7sHPcZ#~Fmx67IU)mIDB<bop8mi@#+{{SSK1Pn}r&94O
zS|j>wIRtXE_Qa<1%#3TL^_&#%_F`mK0)${{QPJQF$(rZ33I29)ea9^l55ShKgj~b5
zxm;x=zt_>`6Zp9}I}|>8$-ayLv5LSTOQqkHO9Ow)>ktC8WSmYvZ6Ad--p&}gmw$Dq
z^1NZJ2L~&Z|Ge#(JTIBdO8rt4B@4K>BoMZ{fWG>xPjxYExfItZuZPn`J;?Z|hZGG`
zXX#XBq+h1bexl<lz%BellHB*t+H|;C?=Pgn#s6aXe%^-fCKZxhZggY<c~~>ZTt(P?
zRF3cb*#c|?l?jzP9epakjIEb}N0fBhm5J(AbLvkzwcpQ=A8yg6oAxVIcQ(sayBygG
z&L5Rxt$1!9L1oi<Hbf%^rIj3xPsx=AJ#?$CM_V-`?1e5dgZ18Hf;g)4?4&X<@U<*o
z!e)i&^}QiQ&m)>wF%VF_JK`j$XW|tyRc%4nOp-!$uSt#VE;)dImeH)<pno*9X9fvA
zmPS9i#_F_Il%u&Qaa2%Re8EptLUNl4tHWx`7vidY7ya?~u(QGEEEBvN!~@9M{Zmp%
zd%UNf5i+#v<27#ZhZg=8a2kRv^qe=~A{sTYUAoVYcSq|zPKNVvNgGqQKkuO@XTxjD
zL;G<jb_MT{jYEnFBK0Jl=T<H>q)jA0H}X8vlF1yc;3-4bm>-JBF<6r}j}*1#+Qn%C
z>#Zrt^oCQ7AYHFef`TE!d6rM_8gbzm_T%5XB1W8z+@`z7u#robE0>r0o%hLE_W9<c
zj*|<B@pztoTUAvA4Ap2N?tvTy)nFZ<)M)o8*uU@-lll{jV@70n+hBS&tq`|UXhwHf
zp8aor!3oonj?NQ*yEzmo#thTV=LS!o;T3<r5jF#;=c%5rU(S#L+#91L%lDf3rtAb4
zj!L-m)QM%TDH*6ML!%`x+B2<O@vB%t#yRH^fC$uJ4Dn)w2&l!R^`u$)Nah-YTV0OT
z%ckdbJIYD<GW^WzcL%eqEbd|SgS%~^g;)7aCbN5dGF{?W1+#zyJi_qt&Veh9(vg4g
zMta<RPoCIug!!rwWV~T`T?yylG`DopJ?GG2KgJWsb#H$|DS4WY%>OBXncb*rrE@?9
zz4qRBM3<7v`{0&#Tz|8gx!|6uBa@PRih$Fx{qpEG8arogs?9zGH8bnQ;TQ0?<~ZTE
zFAPuL={1Ahp>4tO7(_^S*Y>ns{4EJ|t|@8fp#lPe5Drj&kJJO(l09lKO=wd2?Mp7?
zcXqq&4s3azNDb$`bAFC*FO;HRNoP<=f59Ivx132FDRV6`AL{O6y%04V#_=wAiTIa&
z82lSMZ%^?O%F6lA$E^r44a^2#$IWSKs^QBSj#@4ES<l=RW{b(rz{2OFE{mNr3XF*y
z!RKl=v@!>Nw;6<!m5Z_8n=Ze52Br(NjASxtngo89w~gQXCSX5w=GzGS)bu<+XS{5F
zmUr2&d{p8I{bUK!I0+YW8jjO-jNIx@k3-c`F@$mkf2Cjb?sQfN{so&KXIrMPQH39>
z(VmCchar!*sa9f3(ARI$y}C3G`2$ZR?25xY?E}5Q6AN*V0N`(?NbRnRt?n%VW555n
zd#IuLJ()^Xev@U3_fGLBT%pFy@?aswG?P{^Dm;IgTLRwR*9*pxw}1*{I&4x*GIQU|
zK)Lx4BR|Ri{LKM2>du6TN2FN`|KUbu04L?IPlLUaT@i(nMXDy);3tJjv=x&RIpS)6
ztm_?6(%ScO_2$-IW+invk4jpVq!@HNEsl}*4(}+}zEBOEl8}0S7xB#}abpg(LUN#0
z@^i5qV{9r<_Mp1SYN5>7hOeyCetE)Z?cDi%2Z^;3h%|z)74555Kms1?-BrN7B}sYt
zopbMVuKGL1@&v%{BgJLIO91%TnWdo8c&p6|^gV-?X&+xkwQse_^qNx=P9@8@28KlD
zp;<YjXX;MYb0*z=9e8ij7Lg;fkKhzOSkuncs2I{HraOfyU@`gL2S~bCL)4vSe?B>i
zk)xZat5q?;?ZqHqO>Xb4DHr)U7bsX8_#VnJ#6JE$={R<bZ7qYq_|=Fi$F;%e#+-^F
zaJr)e^TUlBI!?2O1`O%P@e=5&BmYiv=Zg@foS9))f)F>RpZOyw$c3hqXCnmjjEc4o
z5iP`5dWPLkt@c^Mh2M+A&@7*s{LL)LgnzdhnfchS`!5c_cbMRih$nV_8&`7>p^ama
zEMDrV0e^<q!mRmswUdr=a$0*)FM#UB=6mSnU8)QVv3atlygiAdlWc|D8>tof%*jsQ
zSHqM^M1E7PaYQ$W@7a6j`ZIC&;z>$8+PK6qn=tlXfCAPEPAV>Uer^4LxWyy@oy@vd
zzazk4`mhbx7<IgRo6o&`XP#1~3d7R?MTr>uG)Kgj(qLIVb_ENjNSbu3_1f*z2W@D%
zSZ{RzGR9pXM}GpmcdBY1#$oIl_+WaK0f~@@rDTUV&-;a|@-vBGet)+AbiRU_PS?3n
zK~aNJQ?l{XNM_Kr9;|-tfH3{$rOvKd1^0!t)AlZ%(y?(wTL*iF)bFa5_B<b@fuYGs
zBB4qDEjlMH_x^rHKjtekXm&Gg5v#uicfk%lI`{|B$<VLA6JP##lSH^;*=+tTzb&yN
zsj_GdC#DEi;%@b=$oCMuTnkzBg>HDc5DXg@Br2`^F&kVwFM7&)A76T5<$VNX4=fg`
zUV+z*`+nZS1$+x1G@b4{BCo9`-_V@ZE}L0}`O+nK;JzJO`C=vP^N%gf7<{R&MsN->
zr#!1F{<J?IHy>%7f^Jc)XmhXl(=BZbOS5v#R_I`QoNK`t?Y*oL=xye{@g62&m>u^i
z%dN3mNK@Tr+NKZK_h)*UOt0|Yu3)?figIg`2!GDR-_P~nP!V#Y^;Jv!vu=N+7??q|
zO!gy3D+cq4SIufy?M%hsmB6W0$6Iq+l<tb#k9)_wbn4`}Z9Qf~q(HbXhYQx@wpn=-
zv%k)acKm!U0Gw`iy4p6L5GdVC5*&RnlZG$`=iP7GJB~RX&<7GRy>f-6K*h7bt}Ts%
z{zO@7u;l2ds}iW?LD?WgX1Q@Qz>lkgi8Qz>MH;VeL)G>|N0E68JXfptFq1-~K3zu6
zo-^RxRE8-tBDSNQSv8p5h?@Dl_g|hp9HUKTy-JeB$2YJcYa64bIo($lT8zQm#KQYp
zx9z{tSD>oNiH`-B{By2if#ieE-tsT4{R*;Ymf|bay$L#?)Fycy?04|lN?3H`u74=C
zv&v;E^{fP5nBgq{{OY%G%*Z>aoylh-cw<t#^HBv$d(kuGXF548huB7JELpKPrU=OT
z%tk1_3st`J*xNsJwTA@l^z}fX<#nTRl(bZGuWR*it*d66R&5J!KFRBV<(WVGMESZW
zn%F%n^GZne*GFItj;zQYO>_`15ySQvLwkj%FwIH`8*HbN&$*ISCdL7R909t*KF4X!
zhik!jZYxdpaAU+tULM!0@3Xw`YyO6U^lqR~UECnn`~S=JM@bb)q>?GDwOtv{5)_6D
zb!6^lG7HGT+U$nJ0BX$)J+yrVyfmAE{o}gqdY8zI_Mh>>MvlC0ziWAi$QX@}7u)oh
z%E0Iheyls<W%_lM58x%zb}YZS_6bT9336q?{Yz(cO4pGOW3gBqj%2&f{VLfCw1gAd
z)_Y<067CIji>~<Q8_q8|!~kF8_5*N{T?|21d`CaQ@p8B_5?Va+qDD-;0m65NVvNa>
ziX?~c!Ogwg^ddZG8>~r4@+b0{9kT-b6`x{%FmShz4z7lLv}(Q^t{b2Ds$6mwIH6zY
zfbN=in#J;U9!JQY969PBh-Ay##ga9^6OYNL2H@JGX-R0#)$3LipHEprIhK6M?U`Eh
z16*E54kQT5uh|rSw5dX?g@na1d+S+<z?|(zhe;Z1sq<ROr_yM8>Fl1r@r6Hg45LEl
z+QX-?*N306y<@HqVns~S8FWgC{V=8!SK&5wwp7_&W88m~VXIuZ)GDaY0YwZUe`9j@
zV3Ek}=}~aISr$Ef7<0S#xm&zD6tHuA4OOy_-d419MIY<16Xajsz2~2B7|-?<ObflF
zcB&wDTDMSgg>QV@quIwE>cXob_o|rXBw(P@MSvvgC`-VuPnPm>a5bV0A;1}HRWQmv
zXP^_lp)lnanb~Qoa6d=L*%})JjB6<%HYEgz<AXen!vnxPXyjG<0)OLkf_iZB_F{W(
zSXKb~*kATON>=ZRQ|C9D`S#&V@XKVyXWwOOVL!nKr1Z0U^MkvG=eI>_<bj5CrMWjk
z5AulUesYc#Hbnt1gp&1n8^$`Ex@cmE=94DZ?uW?&6_S>l%11DTpXfs(0x0$7nO$}a
z>ih`Gj7o}UD>uXpeJp~ap+2?S1WMAqiZI=1wV8KCEkfM7Z_iAWdn~<ic5j;}qT};@
zpD84jr$ioklRJ-u2XZ2q_vzHA*a=~@(^hH-=~zOp`)XMw$wPj$a+M#jnt%6l_sEe4
zeDc$2w>S+_`C@be);{Pl${Yd@bg1ruQ()m*g+Rcsl2I8JrO~szJeQ2;*aP=sZ`5-9
zStKn?xzN~=vXgF4a;#7y!OwEvJ9R<ms}th2^H+;xaIh%ml}xaYla|A`KO9F>&Ik)C
z?hHG$D<oDgD34C9TQ)1L7P%6J8lIP+YQwin6$g^Wg;VAs4GX``ZM*e%HKk0)Ae~me
zRXBTWZUKY2xSK7E;KUD*vDFV1MS49Ts&rJ-vGUx+fgwdnT~TPBt!mAej6EU~4qdwn
zVbV0_?{7RYI2lqCi|EHs=ACL;(R7p%V6K%vD0rjaI)2LP`6xrKALhgYuVf*i=``-Y
z5tnVb*He7e?>E0V=H^bibZ?`CGuOsc@3S%%1SW^J-=3z@(X*u6?g>MQ8}`tA^|S61
zTfWX`dM?cnCkV<(&O8gQzcIaI0vhQ}LzXl(uMPhsJ+1G`_KCzNpd(cQ-h}gx4%0q9
zdp0>Cdl-HPFW+!XTeH!~yrL5151Xq{$(FU%yr?CBw8pV9Zf^0CganRj8*A?=ZxX)v
z+cKu&fP-zHd3)g?gc5_gA_p+=aD$78uB8D9R@WC_VM-I-fl~uUMu#O|dHi09@)T58
zQeWYtzIq_43tT&AoaaP}f$*`@u6u<d7fTRLZs2t=_TaC<nP=ZVDEgbLwf()@K?S{{
zdCIsE`ngHE(!B+Ya!bX1M}PB^yBNzByORu!m>?Rn@JpJfT4t%?7RsUFa~z=lyZGhB
zL9ge|Pnx*l;)#`L5v$#;bk$Ph0G)dKqDJdS;oF@7*bDoJW}5fU@j(o5i!sq_vn+th
zvR0gz=iSuqw@TO5;p)05vW_C6g(~}tkYe;ueoDkH+eU$SQuns9j?VYbd<nZKNg~0v
zVi=Y?Suf-TbuvUJLEn7Q4I}5W)a4N$0!>G=s1MV+D|L{6RG%9<VI*mFwBRyI>TZtC
z*<s|8&kGWp+|i3XBiICb<NRZRk!8S%9x{w*Y<Q^&4@UCCvuKjb2c<I^!L8$1JCHk=
z!)_CTD-2-ZrLN1=y>3gHzIPDS{AJKSkdcx(t?ZoKM|wzl{;^!Oh}Y_z@fQ}lFZT?t
zIi!qVuC~WGW9@NIXmq{phyaHxKemnz%rp!ywq`1wuOS6mOhN<(qy3{LHJyb1**4Ay
z<sT`qPOHJSmCJolZfdqv|M(UjDD^|n5ZuJGtLcSrR6mK6Z^$_?oo})7KGMRyS_e#4
zAi@w!ENJNwYB}<%X)QaI*@zVldBh$g;Y1;vImgYWVE@IB95Rp$c{7SJwny4&udv@`
zVWCWtDn?mgI)+1rw8mOG2usrV;`j%fZy$YdVBBLwtZWl1rd)?6dTZJ+Y$7?zVi><O
zY)}iBcE7!KO0V*t>+!o1-0Rctpa8Qf;6eJ9LS$2sDhQhPH<W7&1vafYm@F4y0;^RF
ze8@E^xgD9=r&7D)NW838dW-+lD+>N02d0t!RT*7N>m@1lBEY2@a!)ae`1gJ*5{>hD
zte*sY{Ng*$E6e`@ZvHDSuZ3JF^R=JHI*#Eg((WqAhJGwiS-*nlNF44aNu)l$@TP&M
zX7pnBaYuh2S5@*~ShLTx@P6!5L`sA|Z2$h5zqpY9$}ardo1mUQ5p*Npl#_oQ|DQ-_
zXL7)$fLgTFtNhD`_)l-1WP|!i0#9_B|5tojFEe0wZl|t|O8(0g`M2@?kD)^uU{O6E
znyi+X{!7y3A7AxQiEPFic`y+DrDy$5qx|#vuNuG=I$y}K==hU+`mcWvi7;XO0ZUc(
zum9=A|Bu1_+o1pdi~9fJqKf1hHGhfuYxU8>$#EY$w-3nuw+a5JM6NVgcuFSpi}v-Y
zz%LBrb6_5CB1Gm?Z^25UjA8$I7JHeIfenafvN^<ZY0G}0*7UzEjK8Cu3Ba6Vr=MZ`
zZ&ME7)OG&s6id}6KmPkN`tvRMTVN@_W!ohAZzuY<uio&-S8p&F`0~HrAOIE)7=na(
zKmY&5iCF>n9gbB;IPU)n!zT~^{AUQmp`QO2CpHOeC$y6u=nVgZllq@VgZ*a+2`J!y
zyLbMN_moH$HL&w$oe*k9|L5ub=gs@}&k)|?tp6XI1OMCR7R)0DB!ziaI4j@$@AE4`
zh4tnf@4pR}${db%Qa^cs76kNs=Qf2Gua7q#0n&BmvZ-v67myD5)795)?m9b)<7ctl
zesG^YyrRWNLH@$65fG1y-sP&tbo8dpnN~d=L14ICqUM<2lZuC2InnMJ2~qi(s+@&x
zHIkmU7?>{UkMIDZ;k}mAYU0$?${j++uZ-tkgnm*~EG!A3@U$u4Be$OM13C$%0tTP@
z&`neR*~Z}?^Kc%~3!v{TZt~UcI=B<erISR(>ZxK9Mvb~W6cn?%$bnNxgyUtGo~F_t
z_Y4X%roD_dr0M;Eh}<AnbA<Wqw(J*+GL-hw8Ln?~X+<kJDK-fTC{k7$pSX8YR;R8D
z6_TUjNbw&}CaR!4vU>^)1QCCx?3)Y>+68{iYVwrc>thL=BJjx7GvhCer{57!;;l8F
z3(D(r@73DVe_JXag;7LmafpfE>adw7#uu_uE{Z-T;9p3rOM1Bp6X7n5eHv60dwtAv
z_aV@a5HXfWz*!WAkpJAUbbFNv_ae=McVoXv>(5SvibDz9JXCIQQ;RZF&!8`8FGQYe
ztnMh7W~slpe{R_x#$1%D8%z85we{*Xto4bA8Lh$LY~8$LQcDVKgVRe-6e<oi`)a<N
zm-;Fwo}e^SG|wSnriUhjn*vWDJx`Xbg9y+WJ86yO>%6Uh?2e`GuC_s#%vM{S#T9eZ
zzk1+rHrsw977h^m=!QF)#S1j4G<3a^7WjH_uoP0N<Tl#KEmR*+I}{VOk6HhO&ur)t
z1#fno7CXRi3z;|Yig)+aqICj;m%Fr5n2e}-wp_0cHJp;#qay_FI-i>L+e6pfS;_8t
zt`Zpa>Xu8Qm9m8>XRIcZVltb{52SG=SNi|Xg)g6eUoFf2aSOpGj($Hse?Ao$;m_nY
zG`V)+l^N@Dyoi#-MX&G2#1Tu~>T}Y*+!_ZZsSSWA#)0kBGn@~{d3nz^>Po5HGxw$v
za9p6jWgri~BWGN8yuO3Q{GO`-S9fq_yIHjkO3rmhO+VK~KuDkYv_|QR8QSHk=XsnY
zmpbP+^x|bHXd=@VUkGua+CO4PjB#RsReJ(HNkjjQl}a#)+Eus5V>mgpQGb<Q%g*ZU
zqTb@*eVs#zllw){(+z+1BR_S!#gMt-&nh{6`DgHxSt8$ua_t(z(I8>6KT&rw<nNwp
z_NN(#e<>f{{82u<>^Ij07FdA12q(UNn6iP0&C($Ool#wiz;tbxz^yvcA0ip$VF%cs
zv1nBNtL4Os^rKY9*rIa}Z_eY@f;ydEcX*@MF<qH%6;MWgDi!;q>SV=JwrV-1$njCC
z$g(Q@Lab%o@|+}65SUPc>2>g(M2UPM0Oq_D5A|}s3eUXT=mdIK?=e$g;?gnvkW){#
zS{9^DqET>d{N@*yp$g4sQ~hR6eXw|d(6@Nb#c0qjMz2{-*>uFgwT&f4%%I=yCe!YA
zLXFEXm!ioRn`?8^dG&7Vr@|VgWVEj*y}I2y1u|dBkKbvfo~8jBg=d=!wXImrfK=>A
zDeE>o*MJ%21K+9VQn!DqmX49urt?ur&R4M?400`oHF772adPRh?iOS7C$X21CmlvW
zM(?gav=f>ABR8p-|BYT{mD$2+&7D4DsQT{$y_SJcjqZ=<ZM8fpFk&gNA(EpN;K28P
zQqtXI7^&h?vHZ5Y&=qHwqm&~B*jQ<y9Q)N~y*);43soR&CXsUlsdGDiOlUlLs^%TK
z3Z;YikGjv@In-OKEo$r6c|<W9*0GA+MWt2`1055Gci(l#VYB%KahnzxeVfiA8&ph6
z4`kLVHgTQ3yd5(Se2I4ISGCY$_LLaK1TT-pH<8w}x^OK25UKW*@)%*NNlsAoMIcB5
z2-s6KJn0Zr?+D&wjvbNt;hY-U8|G~siw(50On#eQPb<G!a>d`duUmh7ektZVj=$z!
z{dg9YdkIai)NkRWpTkTYy!BrWJS&|<VCer53Btbyzus@YTW0b#>@HS7KCjX5!Y(LY
zTxAW3<VybWw+Z3?=b@ZUqV~ra52BdL7uQ?rbS|pYe`=X6*Dw%z_^pPN{snh*v>f+&
z_`(9Ro20a!bR!Ivn9LEh%dr~C&?%PBFwRlPz3v!KhqN$i*Dea6VPK?y5Ch*GEifhg
zh_XC-yZ-*xc@`Aw_h;e#*-6yL+&H*kv*k1IGVPaJ^?kY)71q5Vf<xM{pTJT9)JF^N
z6Reh-6Bh2fsc98MPr`3Pk@~yweY@z%F#UkNC7t15rX&ed_|1;=#W}6`+`4;hrCx`2
z3S$nXkslDurA#EtdOe&f<<mJOGfBEaCw1eLSQFvTIAb~fb>k`R6<F`a6#P_gdxDsL
zF{D)QbZ@)V<xupRDa|OO#g=)Yrb2D{{>`$`n(Q@L+e~P!!y}n^sh+QzHuiCSKjSrn
zuC}ED3G)(XZs_aUsCz*9Ap1zTyE}&IGgf=!BNHXbxf5byW~vYABUz{s^3myjuB^EX
ztjjhBW&F(AZdYh%KTT}y+^Cm%Z?m4)K4vvP@wbkI`oo3!{Cm;@8RMaxkm>7lDIliv
zKvM!pRQ~im`M|!gC=+mgp^?tzq;qV3I@Bii^SWfia&%<I<hjHTOW{LL{&OW(>QK6d
zl-AI_fs?fiCK0d7^zYT1-H5K;8Q8TVr#KHbpDp=_=Ija|A6L+=KfO+4(B;8hGPlh3
z2jY9rFRpt24ncy<Ml)<ee_0$sPVmh+{ES02?agl6dWz8}UqtdMGCThfefvcc+}kVS
z-DpE8wKEt)G)x;3PJrWJGhLVxj()_S^Of$gwooopQ?uMsX#nx6(4`19*6Luo=<DcL
zhT(4?<cd5_2osg?3qG7-%OnE8k_s)ofQNIdgN2$n2~A7=3MF-dv_aZl;mB9iiCaIS
zP-A_skCR+>r}^IHfsf{^sM}ok6Wbt93C&8vn_hc|=3yDvvROQJvzqzaORoFoB^hme
zReK$Ibg%PlL4i-4AND45>;cJyICL9KQFe-DzjmQ=!2Rn*FdaLC$kEP9f*DXQ{6e+N
zREGfiM3l%b<pF{I${(1%nZO+H(5w6{K7DvztjXr;S8eAsk|3B#EaalTH*WNf0e>Pn
zKECkcE)zVq^@D+`jY*f=uQ0aragU)`INo}o`2EGtp#k$IRLgoR5IwWoDY-+gJpq%E
zJ^*Tw;uG4C^KtXl%<<W(`v_7hZ5xWD&%1N^Eu~r|`vJme0AN7BqSo-apHc&8S5^m<
zRB7g^d2j$!$N0KZ{vh$fCzn(;-;V&NN?~Qc$o4Dhh3O5;`|2KzqY|YJPxIYGoma%K
zsdBV`d4D`4Pf~h?ONdB?8b4bGPQQfNSaN+%Smvx4<)#c!A9Rx44tL)TiHjKBp=)qM
zf?CiSH7EN$Ek*o6Lk=K2<nnrFwRt#3^cW6E=l}`WKY7qt8cljNdBq$)2HMLPCQ*XD
z@C(1s+07qQvJ+|CWxX2%G|Kd=TO%*lr^t%N*e9r62WvfjTWyupYoN8S1K;K9t0g&Y
zJo0_us%We9Yik%2M{rqbaQ7ARf@=4D+GJcqH*6A<>4RH3M1LNIjz9n?h@5JpGU>r`
zcNo=-r}5!x(W^p;=D@Pa_KZgH)RfO|S4}h)8Ys1DiLpmX&v^Xj*MA66v_F07e>P9&
zuuFhHTx~W8d$R)cCbjSgC{D-5a#*Tcutqk)Fv#cMlmc`+`R$_pB$SOMs!LmJ2KeP5
zo5zY2W)pbIG)io)GRYZmxsKc6xObU$dugN7+SGV%=?lC?Ko4Vacmt?m(xK27?<-Wc
zOU721f!daPY0rJ}Uy1xucte6&#?Aqkq3QLmV9}8j>H;^P`bbKQizh(U!(07mSozV=
z`?{<+ykc$;=*~JiJ(sBvD74gBZ7!dydFOvwHRAd!RaowX-r`RVo9(g#W%@Y5Hc?o~
zW5B)e`ab2vm)fb?UbR@lgtvkQH`i9hXizDmL~Kc3RpB1jWPOVhZlZihz4do_*Xbhp
z`^AD&>A3bbRO@@B0m(50PNF+N>owhEfHsqQx_m;9c?76{V02%dF54HyIZ3@#LROS|
z;?uahvbP#6bR}Xjiq7E?_W<830nI}XT^=aVp~jt`e1RU;6Z|nZFnw##P)mwC^v8uf
z%@07&t?hBOz+c%6Hy^PJ48lDdRI*1^YkYXsavtM2Cr`j^<5FAxOGOU!S;8d(H<tx)
zu&n(+VT?sIs&wA%8?M0hgnqu7&8{mB{N<w)+klYp>CO)o)GAvN)7nS6CAvCNoV1E_
zF*;-OXzL$3&DP=5N<w97wK@bH_M{3&%D^P+j}4v*jow=kp4jrnaHsLjZC|c6i2R3Y
zS$l8&WeYb3yyAS_?CJ27v>=Gxo-DL()-#J7urDWS_5aBNc$rTS!S~k7XF&n}@r8n^
zbp}_JmPRkN|FZhD!5GQSg1*{9KZ46h6sS3+Q09}utMRr#W&=C<kqoZYHGyB%{!pg6
zZnZz{bMvd9r_S7-+72yo)X20|U|J=!X|jFH3Xm6|4LwtW;|BrQg{Yp?*TDe3Mp?Bi
zu`I~#ow~s^Ey{hjA6C_q|AuW@Mq8daMx>yyA?7y&=OTGP1^qS0SP<}D9zOLZQjhKC
z_XEgJlKr5tJNEJ>wRZKzZ;_9@9*Z@G4T=+HUt2ajvM4uXao2=hwf=0cZf|&uq30v}
zMlVyfjC|EHxa{7aEDO?EjHSd*>82g8v^e#QIqwkP4*xVu+^!BXjYlQva62^*@DuNS
zF+uiFnk{73oD9&f%hjuB1D|+*@S^p!hAZXoGR&ue#+M+wMOui`gD($?vTZZS8TC8$
z+q<Cc*f|fpn^FcG80u<Ppb>Q3Pkm&=>?9o{Pmf5uD>Xu2t#WMX$O7*^@Gwcu(T+>c
zRsJE?Jn)#N6)I%v=Gbn0Xa=|!l78&k>jY=z(V5WHUaOb=KMRHwp0NBLgievX+b6cC
z)i^)my+?84+wJXpF8pxxJW`-QD1miMP6k~NE!F9&=hY2lvzmN2Lwoe83AHTiMJQ)>
z$Bl}Kn!~O53Tjmv?XpLT|FTf%0H5V#PFG6>YH|G^evG`N&p>~h!2OlZm0Yv^t?g2y
zcP5Zqq%14Uhyk#*iRlf`DWC|ycV<I=49_G&^ff)_-7+4J%jjwzzpK)&W=v|-^aX@V
zqXKR<7Pp8==fcFT`Y^U09#$BGYmlsajGfO)HmnX#!IU(&ZLaupm1}|!hqIm_=NJ}A
z&qvCa0TmHUue8)~ls1QQy?<|kmLRFoEF~Z`C7C224f%jSDkuuozf@2Szj@pzRg*5h
zWFSBW{WbyX;QD&vEu{6JUHdT_`x@}|)VO|sYH$r|s~c&+&qUbF2Y0`t(+K+V!7((G
zTg+njuB!bkQ!c!FW`@zn*EICnxDP8T7u<DM`B2gSZOL<DCf|@UAieTaoX;PHXv0)Y
z^V>X(KxQ2~JPjisq0T%(sd;%9-7wLVI0{DTZ2^GuNmF%&1fKonG$co1P)K^`$Xr$i
z*9F|@={G0P5q7qR5*bMzc4*aUyBG1>jYG~)T``MSaR_5=QS)h5;Ld58>BH3vpBt+}
zp!9B!G*nZYQ4(sh%0XHBD8B?q(u$k?BkwRfY;*eT2?rB#Sv+<3F0xjRA}3TF7~}_<
z?8=A?*S$oW!9u^Lsr16#Y<A}GbGYEb08O15tQph!tYd{?b!^VvqFScGF0Rq3=r9Z<
z`k7G=KY!H3%r5ISL-InW9M-&Fv1Kp$tUE@OmLrFlxHXE<joTlY1Jz@X*y2rY$NBA^
z9Em(&fsvny)W)$ZJqCMXfUSG*SBN&p7lrrVz$UqN9d8qZ**FZtqto*GcOUM$FFD{U
zYNVcR5=93dAz)hBvMq#N$c=BA2!9oJyM7OUj^IStwGThY2}_?@w@&n~9Hz>1pNq|6
z@)diI%DdAV{T2np%Tw~2QjhVhu!^kAUl)X*NX8MM!fAp4M^|Dr#cz1^;yWhzEj$+%
z9;R1Y0rsfK)b^o&dwxJQxtmli#4U%LJS~`f9yN`5(xBCvNwDik(~p?qSg5#r?o5zf
z;vVhOaf|Sy;b9rxAwF5B`QCU@1$R2t*n&OlHr^^rO0&&l6`0)fL|p8M|A&U2-~`Ea
zv)%@prs43yOxoqb?TeGxs#@0@1%kU>1c>)dfonVVfr~xvS7S(5_X9&4Pv@6aKH`9<
zo;HX2wm?_CMJGN6(k<OwqNBk#j#>fWomNj9H=H)UiriJ922kH?8|LTbW&Ma#Bh#(*
zHowtx0XOicTHl4!Co)IV``V*SzznW^YnXZ8+!lEMKyic@cM~iUUPx!|F`%^@aR?e^
zolCp5dlp=Py~+2&bIwHxeJ1<i&y@A!PvkO47@Ox?$F=bNF&aVHUPIOk4(eL#XFw~I
z$m>e8Kg6azgFBoHvcBXI&MF}!tkA0Yy428*=Y9<Or%M9_M_QJ0LHTuI2+vXNL>?7)
z^1Qy+St1o^u-izwJRfz1FFKfuN^RrGMaW%uZK2N++W}P>bGzT3SOD_TCn7F;w*E-W
z^+36G%?(BTOCdb3O_2Ha;Dn`pm42J#-BqAe2B+Qe)Q+go6Bb}|IfUXd_gtr(>mUfT
zz9+LQ|3qXEImP0*m8)9h;_dxS!`1Z>ppVLpxHQFV07buQqkHe4N26uTG*+1Gt<Hg*
z;ZD_!5UX>QFlV_&%2Ul1TPoHlqfwitr2+vnE<-Zw4SC}mp5Ly2@`h|i6U>HlLicx3
zO5<<sme?@muyIkXYHbur1U>XKn(S#$mW3$%jZSQEaZZu*(eT_GEYNFEu$U5OemDgx
zem&G+7?Bg~NTbC}eOKQ9^;WW=_y}^tfti(<KGt=Q;q#+kL-)u~b#Cv?`IT`5;><IE
z-SESzZB?(b{gBS(AB!s}N=otiT^=FcdbmbA6uA$>qh|Y$6i}zdJL2cldGgS*0{@Pg
zfmh44$@xNeEtt+h4foI-5WF(@Ew(hc(-*lr<D%uLpm4iWyozd^N({zB_3-aNo8qC<
zsLb<TRcx~P74rR+`R;g%j;%%;Epc453V=K&{?woeQ0K^4rnvf<&Rj5ssXn0YvF?h<
zp`iIsnTwXHcDHV)w>jTnHU{K5APg=YTCqr3V`?vpXzC;TIUc@kw`j+Rx@vPV=i*=D
zE|bI^ZI-WSvYQjh3EVY<ygX<q!)p1K5*#G-EEDE;q3vJSxR(fzbfBNJDA4j`?Ckfr
zm)#D1Ok^6TO;Sfll)FO3%>1Fv5L;5v)uo-~K4iJwEU23AhAp+0t3m<l-z6H~>J$t-
zlm6BLolt3d#1d#)X%oEeT)lDzNQ4D*mc9heC&a5cPWPpq{5w)Z9maF#zt3kZD@9<U
zlp9=Zfc_6%$AVrGO$8UaKgY2%xHW^6U+?v^aD})%v=ZgMG17c)JH+>VgsqYY1(cVW
zF3NbP4l8XN(X<t$^FN=M$b>wmtv7Y9e%vD)8DnW@D~mFQqD|>bh!97&mBQaYH0%3^
zZTf?fDUP2_SyI~+H|(tWwjKjIozX`!=(^|-Gx&ST^XTh?c!dlyl1U3b4Ay)?{lsX(
z8Y-4~nLXh5`$32of6H<GW2{wAtUYPt5H5<c!h|dzCIUeWoi)tYPCL?i^*T70hwlV9
zBqzR=DheYRydiClYn8D-FU57?Jx|y%ui`kbJG1%YCxucf{f?!y%w8=Q{7h#*xuq?H
zh#{y)btL?zDamB>UDs%OLw*r@UjqpZr5RlDalKcU$r3znL1gQxyUhtSs;CVzKcKdW
z(W;b_Nxok96fusyc%^>K+UD=kBf{e5zGs(MIrk1lddoZ3#oSU@=5=!?ar?d#ice{z
zx66LGBh!-L0%_F#O}a?NFY^oO>n%3t4SMhDj|%B-#@P?m`%v604(Iqz-EVaQ$ut#Z
zb3Oa9!=F!{hues>E^kS^d*tOtzP>%?Kdo?ZwHP=EaS`{=PXVQA`QTMKO=q<Q=pZ`e
zFx@ldBtOuxkFX<@%l_mr*|?Hse;(!<DO~0gz03ScaSarQ;rQC8vjeeUxVJ$+pt0HQ
zGT?Q=+3}wP*t+X28!M6_-yjeYN`Xw4P0U*<eBWp2Nh&g^*<pq0al=b10QzJn^OgP~
zu>MbEm;kkH<0?`y9Xk(tj-EElpiG|YcDSghD^T1avOk_mn`>{OyLw-AdNCy)wsYhp
zNf?YVenVlubXS8K!j$29pF3^q$nX{Q3;D43&10O!6fL+ygu-5n=5%8!%q>m)U~!XR
zBu|%7L7jgmNhty~R6xW1d?Qz^I%`Seqps9?U`LG&9z26m^U>Sv_RB;9+Y7tB%G<$C
zd0^}7=kx`yKPHMP%#y!m((gU592Pf08;vFMfnzt-T<kVW<$bTslIt#qYTJ{e*0;(!
zcM;6nxZ37I*cXeN?@@KOr;mt9<Ve~V7~7#NoonLB6)JG6!SY)HIJ701S!)y<7f!se
z>G0U=*OvKBPS>8JIio(6`|4<+8M=ioETOo+hMLt}#+8en)*g!?j?Zu+T{dga9(sh_
zA$TjpHlSF;)m}3Qg-dIhY2KAM0RwK`%|?~i(ds9{C?Ejfs}{_rQX<{*dKnBm{+m&!
zX#_c9vb;II3G49l&MpePLiX(C;^$miyGOC24Ad-LVO`o!I$Y)vce=2a0f`mAu%e2Q
z>Flo{;R%8@jHBSiH3aE2f4yQ$(7fZS$wgOr)G$<=A`BI@hLGkHf`^Njxlkrj)RZCR
zilH3@s(f_7M7Y>tNd*d7630F9lbv65Jg61P=SMACO+aSL`uAw`gEF~4@mfoY!dUJn
zDJsyKlyq_Tts5%Y*M^W1SHV<KI{DLk+j=&4p!I2X&;L{-lWLjJByhg^T({EdXi-3S
zm4-@K3A6dKQR|q(HQWuZd$OMdS;2VnxTk<NMg*&Wj-O94mQ;A(!*3blE_5?Xrn&lY
zTWhGP<J^v{qV(RR$}H|lywW~;5EGvNjqBt|Qz%pHuwl;PehX0ihWeMnv<w6k^kJ2g
zvRkYZ?O%I;S5rybUMPoIH#qxZG<pVpPH(_pwZK0O;5jv%B+6O8`j~!%0PhdD3cb-J
zp%a=xbQ87jIZZ<&uAllBzx!E-&8k@EmbAUNT^>r*h<$t$JF&)k0ER?#J$C0P<+^Jq
zAZ@(1KG4p$DKG~xBa1g%2Qw`(#wDU%SaTRk+JuXEaoWO&REe4VR&t4iH8LW~pI3!E
zl{uZRWrLU&SHwk(RZ+(EW&*~XN#og~;P)yls$W1B5*Tn+MkYwusank!2N|R!$P~$`
z>O=YSJNED66IIMIU;^|+?X30!GYh|DNQl47q=*y9s7R)oKX3TGh;b`{z%HyAI4MBX
zWmnfYs%Kbk!9=y-Scb^#p<o@9-r`<@Ib7Otu4vR_e!2}>6dWs(KD573S(<k_yRh-L
zJITFJo0xPto3_#MFl~vhKJV0T^;TGBCZ>4rlImW#Ei?WnmuczE#tp!2;H6=rcCtG<
z-(4Loa7~_OW52v}OJg12xEtEU_BeThfZpC-RA952JpBIHO&32D_)L<p&wrDw<fhUs
z5ox+vf2CerVl})Iut3Xa5pL%O*YQrjHIJzk?AFManE~>FZoaxW$ipmj>?*chw=J^G
zR8MX}>^%Lv?dM{MPr>E1L}Sq5rn)H>u+)BHv^{`A_;!&ZSKD)nO3nim>0KX>#hHms
z1LHC|mRl{}n0<D__R#UOSjXK?YvIQ>d4bB->SW;DOVa*6@#iv7CCA=FZ=d+y?^7iq
zPEhzqY5yy28;nQKMMg)<(PYt!{Rv9pN4B5HmU-SGFh*S3d6UU>@<eb?p2mEqKT_}I
z>b`{)ea!dmr%n=iPFAlX3MHV=IxG|Nu7pYQ6*N4gttn&9c3D>R9Zuy=C7y2kLCUhw
zdxH)qKi%h7h|6Tyev^B%+SZSk?QdeTyM4M?0m^(;i6&Z+GRbv9Qc43JjCr0hxP*5m
z>xjayif-NZE52*>*7g)y!EfE<hwW!eo9u_<g9~LKn2Cs)gCQ}}s#(X8?45lDH%&cF
z=B_Q#h}T(bP4E>)7#(nCRA=~}+56u@$939mUDfN^Y<}S&lch1;nH;N|A)@dDk6#@<
z|IHSpm*hMBTQ!0bgUHS&4iO+U=ogXUiU8So+Hta5!n~M|n_CtQzh5>;o_TH)PbrmT
z<5^I+g^(kGj3*~hvA!A1J}7hB-E>@yuTTymhZ+O&cN32~N|J{<?F{_1xZ{2XyUy0p
z4IHA`pX*GGBP(D$r4tVg%vH$jP(ss^LC*O>01ob{2n;O5R&zLS8_6|T(AZwjHRSPW
z*r-@KjP1kj6)7m~8UNDzM$Vtucx(9{+otjyB?blOl<6VVAoTHSmh9TAJI6{obr~92
zZ-=Vu9a>IM$F6uH=#WXdIuWMn<2l4ejViNdyIa^un*Cz1ExXQN(IwWdXOKAXtY>?3
z&p{w!kh)du#n4QrBZ#4R^4#Az@W$lT3~J80J40-ZRP?~dV>kP6fdx1M6C`z<R+1&%
zPw~yledGsgkaZgD3WYH(!_?eC!^CT)66L_0$akxCz2DEUb-6v=VArRU+uF>E;c*=(
zS}?-6vAy@(b?vnwAqAJcV(8Q=<)5EvWs+%9sbr0$9dn@z*b56uzv@YL_KG)luEQvG
zCAlcy$*PuR>KmQM)abAVaG+#q#AKA<`B4(6qgBZ6!A&!25hR(__Zp{HF7p$Ch}HAQ
zG<ZFB*Pl7_z1e;CO?k_2Y%SiuB}fW)ARQx4lvOnBcqiUGuKFy9P-I&CK*RhwV2^Bx
z-doi&-oXxo2=>Vtm&QRjP@OBAmui=7=j&`aZ>ZAdtWLqwTbdh*ARm>S-)97WG6)i4
zFdcioJ*!%^XBbI#EVLnUxP#FI3|PPX9<QwSA_#LRfMsvdRZS>35P>;k@SF}VM)&p5
z#MgRWsEg`cY^azmt-f}1xb>k2%1DyEdya6j*%G)Y5E+##4La7NGl5Klln6|N!&LLF
z*ds&&k6!(qT__s$mk1Q3z-NcV*&01L{0lg034Cbz(c&GXhRzaDIW(;xvy^L9ywYht
zKjp<MxIPxl%YAGg`xqCUeOB@yaP3*<vM{8v9e!oL9L>w-`6R{(c2S^F$fnb<<K%?H
zNB-fmH%#Ny{aAMlWV$u03~6%%d8a8u;BFzZqK}>To5r|>#9ZB;;Q_2-q-9!TX(|;u
zl*ict_m843vX5jF=`A9o8r94Iz*;YjL9INrbE&4~ylS>v4YRGXn<YzJ_v&O$Z=%AV
z<>Tjv%Oi<xDHNI=K92wyt}^AC?*^N3f+Wj)o=<S;92ViI&XXf0;@x;@RTXL#?U9<T
z$^q%mH>Nrj?n@ouAONyj6T72gvMGJM2j5vI@p-N5Ooc;q$XW~&*F6DO=v8sK6B6=!
ztd#QWVIy{YN$rPzG2`?8TaHszvkO!qoL_+jY3t&{KAsUg@Gs6n>Th~YT*(fMZS6De
zGWysV@0Rhy6{wh>jfecDr;W`_Q8qN9j048%gjdGoPbEX9HjjWxg_H1*b2x8T9{DQX
z{YKL@O-i1=#{)>JjNz5q>({THH+0RT;{)b}8DiqF&%z;>-@+hU&AipKE{vO)S+UO-
zL-vsIOktKE*D-hS!MAL)1H8T5m>%H+H2|ISJ##njcq7?lU!5`LdsKMjn_mO{-8kz4
zXXi?koT4{BZhD9UMXkqjI?UjfL{=;tGD1Sm$cn3{3_W3^SL^x~Kk+gYz<%2vyXf1Y
zuSqVqaF^NV9@~&oUnbEZ^R;cL;QP_yi#6)5nXBcBU+vN9&0BBD5fD4?gtC$sREL10
zbE^-9w3mZF(r|`+Mkiy5L+qhD6#XC&qr~#b1A!wnOWgc%lXzprZg#)ZcGN8Tt%#o0
z*;(CSuDXZ7j5iKVBUbbAB16aZ`pV}`M<$L0!3Vl0Wuf#Y<085juDiMHc!Wm$(r|&2
zUd-p+y;2h|1zX_u#Kx(s;R~niL-U^aamzO!r9?J<5k3uk8vt^7^@li1*vk?fZqY#$
z%P0!+3_#Snil>|Oyo*!qu~Vm*rv#)&V|*g_(a}zQ55s8`a&tRCgjl^LVpn1u{CT5o
zOluA2SiL$;!uVU24CRe(b@j!bAQ%N6*Txq9UAZG&KGx|fX9ONo#7aKBJ?|b=`gfOt
z@aERR2N7k}w(ZR}SHJzEpk6GLaif)4YWXDVTwC<D8G83v(9t4gJeQ11x^hQ{pFvSq
z<Al)%RojiXe$C#+`U|YE4Yq4hvq^e<9+gwK`ODKK5|os~2d!R(_Coi$-te0*FFpnB
zr3%XJHfd~6Jg#Kmd0#QjE3Y#>rgawN_8eX%ij~z5D|C_hEvS>dMWU6ppFUGM#`?@d
zG^EHo{#U=_hs55<q!RPN@wQ?IZK{_3WSQ-l=84~|J>?^XA*#jpi~V#tH{cbioWSl7
zd1YZTT2B9lJ%>tjRVf9BKKPYyAI9Km^6#z#hy1W$b#e7tDqksCSk4+eJC_Mf@qD3w
zfs_pIb|F20H>j>f$5}Qnioo-gKE-qC4se%-xd(c<#q#Pc<T|25GO@P&u9rl-%WjS?
z&hseB2@=%@qo3xnpQ~W~cbE3t$1V>VVw`fg?|N)Qg<_EdT;QtS`2EsDr0BRSEd%1#
zFA1S3ZH`ya0?AB-WhSqlJO{{RkQTz;DpmlApnm(cmj)oQu!a`|3ExNGtrD2$wB3b-
zr3=$UCr+;2NvF$R$>+{jsfl+Ja!pBqGHFwzZ=d9V45;|6E%aT%&zXuL$aJY_+I93-
zT94Bw7Sqz%$_0I&>r>i-?)z1r9UhF|&-LdTkiOo0xc6_8(W?q|)M#7v;lpbvkhAW(
zZ-Y;tgsG?4?w(fiRXZ2OX_Tz*8+9R-vv#Yx6X)hw)>u_5SjAz%YmeRaAJu0kP!6B%
zQ`Zwaly$Z}O9Qeq2A|_Hf1_-90J^S0=bIK`1y!pXIgL#Ex}S%KD+LBTY5{oB`zu^Y
z`5OxHrz{$UQ7-7STG6}Pd0}^7-U#?*F>1Ffx`=4IEbQP<3zc;9)v}-p6Hl#|=~joH
zQeo;@H(p%tA@A=26~QTvk3vc2x;ORo!$IjKrSQ=6KAxlVK`c(ulvPHzYd@}Wjw06p
zjal;*EC+5pO6(S;RNCwUo@zl>F{<O_z}>Z)aWQ*Q+;=)c?zLtl0UUqf=du&2P!e;p
z^%sUz(oPChmrU8buT2l8itA2JyVM%5b|;la&sYOT;&3eAi1OndP!x_9ShU#d%B>ST
zgs?`zl97D;O}aLvKJmRs!`1Kk@NK|pmQEp%EvpCjVkbFFj21<c*Xi~2B}#Ip^!6K^
zeMi)lJ-eC?{DnM|+cZb3Y|H5ydOO0~t53wyl=pu6sEt;gC7oOL<a%}}XZct^7wUuF
zX9NkKiy?c{2)k_bhIwE}J`t?(0%L*s0nEB>H_{gKo@gO?Q}~gZr2{FKpI5yBzHbKl
z-4&X98*t1~V6pJc1p0#?h-x>gpm;I+2rlS$Kibsau6Ot!H8(okezqaHI9lIyCb&I%
zO;C0cHo|PZrrkHAZ~epBJrqo8jeYHBR!Y#*)?lTX%T}fE|1fqIP;qQozfW)p&_ICT
z4hin=1cDRX-QC?KxVsZ9xVr~;2=0wTg1gJB%-lP3=g#-N_txsgYKo@1`t+%Dw*2>R
zE7IHxbA&acI6!U+tq0o5>=p1E(||^!K@yy>ZF@RV_rmTSoHL^iDIUwECk$|PsJQ@E
z$;+N@ewB3>_g3=YYK{S8rjUitrmX3o#@7HqH+YBCjRpILSv>shC~di>sj2($d~>;6
zCO1!_p9#F)b4Y|=<3yzHp33ZkS-KFFirA)@vF9mAg)3S-6vV}B+(9^BeEN&bY$*Rn
zG!tZ-BS<6Y!2HB~CvZsJ0yjI|NO?RrS<}ok>Lv_SA;ZnFW+&0>A!d&8S(prguLdX}
z2Cej$j^T7`3Ei&ydn0=rnuV>i$1afX_g##u+IX2S{L{!*a4MmaR14I(&-SN&$`fEj
z%KVQ@c=qI%L1z=wWP3gG#0GqB)@LXb_)@L2L+Xmk*-MnP7YWQaUm2l}h<YCkw;bV>
zUjJZ~eyKFSU_n&Dq1TTS@I4-dW6s5jZ)O7Mc79NTy1#;W<r_>>?sA%DbfqkQ==#C*
z0(85oyU#!|iUNM5Iq!s)b7v2Ei5rvF3?Seq@OcTi{n|fCtM%#+x}BZh>-Ja7+Sts-
zw#}!;Ck3~oU@)@m-j96oY`Stu%v0F-sWFIxR-VeD;`ad9u0YP0Wp6xt{>!ff(YygI
z0`ST}8|+xV)Kc{LbMs08zt6J}ltYa23Lx~`-?T2VeYPtz;Sl}ug}43U4$x^hb#b~=
zsAXJS23wf22&6+H9>qc*f>7rAWK|G<F5qWL)n92sr)>HOd}w)n_kG^q$ee-eE@!N9
zMz55c7K4LUHjyNir^FviXa6K@5|_}25<lCL=FYzO4)o*`(8|Qi=s2%zD(P7mJ{ABz
z+@%ZK;$tz2Yxxy?VE#O-)sBbl>Q-ag2jd4CV?u}RBEr1fXzW8UrS1<btv2kdCS0xd
z^C7$}*a_&#>c7K#v2h^amNRQC<-7hiHhy(hXkj|vby!&V>RETsn$DJ;?`$<7+F?!2
zsCggdK+Q2KtG|eqpi{ZL8Lb3KK2QF`C%HN10VI0auc46qUn;=Db*TOfrhJQ#O&_n3
z1s(dBlJ}^r74Mqevk#pdT%ug)s*fu~Jv6@nw7W#CW4$N=En?3IbKBXuqEY<gVcDV!
zSnoZo@dNF2^PkCB5u$(?QmyT=B?6yNy9%<CCkchX#na9QsP><HE<gV8;(B$s3tw5{
z;dQ5C|8PkFZ^orq@pKUzc$`MtwUeE^J~c78qoXcvn|f`YTb@d!{qxujZOXNZbPWi1
zMt<KLKFK5_5-}E+e^#5_=cHk0i%{w0g(XuPIf)c!jdwl~5(i(id#TwB7sw%z*&S2G
z)k(-UJ6wcmW?m!-{ER=W-k`AA#!9JdNLrPlds$LH*5o559_wW6{yM_XPcf98MHDK(
z=Qz`|B_4CIRz@&Q_BEK&M(27#{dUmJ>B==#^P~XojN(|sXtV~p^n>;7aH@-8_^8=!
zTIjsNoovaF!zTzO(|{w6Y(-ajp_$<68uV7fg(S{6W;ZTQm#r|K3V%E}cM!4`AL-Nl
z&v%nCLiGW3#XgzY7S4=my<RG^F}zr^rrx2zC;j!9SfJey0wETEdz>8+8n;ZpHFLMo
z6YMlbHX7JMkHKBpdE-I=&+MbclYQSjb;9%5IW&9IL4UWjCHkZ>lZ80(yQUQ=Xcc%v
zVAoUJ*~oQVPv2ql$yH$MeKl9T6Xk*+rG~dQkFzVlSF5(WA?PNIZCx+_(VNA$sKx*O
z+T;3yrPx69tKSP=H(mz)Yl`O;Xt*YxFGW?S353wx6~9~$0tt$FX}`9j9};D@_G$85
zkoPL`y+=n3_uF*0n{1ZpNH_>Z^)_r)Z>k@@==~99z~5a4Ug@*gUZhN4uxaIW0WJYT
z_R2mzCmq&oCX@?`i=hYV(<Q?IbR@pVX?^+era?8go$W2OjR)togG#qwQQfi<p~tkb
zht}f}4^tQN65?|fnA~LxeT_E@lT!2Qlhmmb`)-VjVzyfe7K_=L9mYSHdDMiKkG=pj
zs!I!eys2@c)h;{7EITj==9IPM-8nc;O(k_a6rpS~w=g_9Eockm^Kl(10Wf*9EXbAB
z%vQS?m4V#gq%PMAcmajo-6(9d{0>LWFU!d?gFB%|_|b8Shq(|bFR2GVybz%YO>fA?
z<>lj)d=}xH@nXx-wbt4F^WAJl$T4Pg^~mh{yV2xd@To<c@`|S`I7Q=sUKea_WSx-!
zP#KBLz5-oXa{kyxe-@P&ZiWFEr1W_S@HE{^iM@y4u5=8-9dS`L#N%N?W#R<SNYS&)
z;fOxyRv;z7@fIwZN3j9|?Zuy4jXo)Ml_-6KAPrg|6&TB0Fc`@Y|9%2bMmClyIX|P8
zW6saOqYB|i1@xw6`PrpRf>SWCXZLn(@l)P%N&--F5rz8w`0V37<kYHvE&Xh}t=!nB
zBIWqj%>9mSqiDnnDO;M8aNqGPKDLRRoWT38&QInT*JOb)pydqE{j35med#WZ^MI(5
z06+xblT?L5+kD(8-Hj?mJrk;&W_rB1tRVQ(`e_Uw7nz>b#qz`P!>`N{N+&ECd3Z6j
zW@WboYT$3tKS`!n&Qds{`15yVX1GGqxaGF~L9c_45D>G~Z*~>=!hLOp03Xo>X;Wby
z^_6hb;h*Ys;FI*U0DQVYN>F_3z(yq{o6v5=as4ZUJRY6%KzK40ZvoFC(vCjq5UVH~
zueZ}z(gdNqmQu+BkB`Z(_E27qG#W--AYKo7u}kiFe2@|Z>YfmR3KY+rz9v8r4WIOC
z6eeE^lT5{?Xzb`Sg4^+dz~_JP_7LT|qH1|B9@L}Xy{7?3lJe^lLaq+b{H+co;d{ku
zjy0#N`z{;mA9%cvp+Mb?TzCJ+-=~j#g}JLhR#5&UaN&k=(KsqEC4Z>xZ|69s{7u`7
zur;|KEwv6mTAgmU`P3Nt2OIIb$?wXuhzR(<{nNjHCE7rJuSg_zYBt3{w!xZ3`x|25
z$06#g@ncIhxQgpP$_oA|%l+$5P}Fz)`po0#E}dm3!uzo9%!gO0BLBCl6kkb**Ijfr
zltt-=ATt+O*xN!>Iv*>Qe0&^8RG?Jmb;#&%qT#<En>c<7CgVeXFHwD_^#DkZiu)Qb
zVv>jOqcIkpR+1I>jfnc?9R9=h)DCrQ|Ha#lKV<c?a{7;{?W1{=G9v(VPrvPr@jG_7
z3{DrpV~!)|$a225%M*fTx9N6tC!Nrh4lj*4%a!Azm-{hp{JrZo{Zig*ro%lfdaYQ1
z2nM(NqX|vlfbY}t3S)Gnvj_7DS9It?5$r`o22e_<+w6X%zKxoP4Qce1Ca4t(jdC8H
ze|Gq^B)<MA$WJ8}-7<e0<jd)GGT`xUiD0_Ibu9*V`qj(Z8{T(GH2?4ce}7scWV8jJ
z^%yeQEGZ^qF&`a^MuR=;e>gz97qVoMNmAAFY?y*<mP=HWvRQGzTZ4a#z{cD8tzCM4
zHmPoVn6rrTV02<Kzf^^PgOG4-l^s${lRBXV@tcD-iEb>0fM5G_?d_28cC0!^zFp=p
zAM;X^Rpa5R&&MpEZ>bYztK_#QKjE?2&9d4ahHH;=16!j-_JFpEi2x=I;9W)HO~g!C
zocI_lxjbCsYpsZr%u?~ul&8-n`TD+k9sFAqj`-p+8cV@N3Hm{!UM+_+kF?eFvM!g}
zYFhu6HeueNVS10A*(?leobmygV6qQ<A>W~h8f}(ASfSo24FQQRd0mE`N$A#=#pu&K
zQ*>E{jYvS+;%Z9o(6>Zuza?5!XQn+bA_Wesgz~;KXrP(zkj|p{NT=EMn^lv<HnyL3
zL)mcuxC}TluwLA_extn~d~h8BC}Yg`-ca&tZ&1g5RU?^nT5rauYgnNK{%`a#0L_hQ
z%k#8x%W!nhChev#i>+bFfWC)oAmeJ6a!vdf+7~j(e#g0^_xM})o>8LB1_T8#+~oFI
z%<ZWznFGCm^iv|pvG}*VQKtEVi4ERxB1QCf6%es_e7`ZH{qq#Gpc+v10tFQcwcqA&
zP(ue^6H`?ss`3RmpYM3k;NFOlnW2-%k8p`vuS_Cg-M{R*;$CuN;cyS3LnAKrfmnZw
z-y?Aq{#Crziw;qq?XC=TDknYZT)pX-;{Z^Dn$7k~KuHq@_0D((ug-5F8{NJZQ@B2d
z^U0DN82>a)&2YKJsud8Vsg%LF>=yrcZx*Kup!^C<L`q6ydeF=d!8h4$+=dAWbjqJ=
zj5{dX!V7W@c$SY^QN)b3h*qnNR5&(}5xV_Xu?R2Oj0m{wH9KxMT*R~45@*Vl>G}`s
z<XEG=jUl4X5M9KHAg0I~LbuPAmy-_jVZd1}*RPpu$c#|b<GJ11``_#PVf*vx2rG_U
z*5md2FhD(LRDXV+t-c+?U3K&f95i~W=puP?#AlX1P>H;f0P6nz*8@(^e#=YEjSBRC
z<?<z`b15NUFLahp{L*LcTD-v8S-QfV+6e7ul#k#a+v|X^`}5n8z=*=4O$qMC*V*{Q
z?ETI0!%lCir2X!rn|Lyp6N`gGCZ5|!=CXgyJ4>ht-(U!OT-2-<qE~`q`@Rbp9WC#Z
z8aLkqtNf<vK$ZHxR=~4#0U&!~G&gfrJrzQ$(KvEJ-$p~5#+u{;(?<1cx**Yvc~=6c
zhX+dDrKW1rUDPqE<vERU@}SQ5hUk7x<;O|3xLQD)I*uxo$A1h($BxY6YN-mdJz8?Q
zJD&egqb5zcGm@$0(zDkPH<*O)VN`8iK_-zPrd+m6l^1jwA73~z^fQzh3L>9}vsPkx
zfG~E2vnGXwU0660W|E6FK0$~TlE6Y!xFmskV-SV1(R!5$A{7va7(&T!5P;iN8;rw$
zGx;XtI9+d>wuiG8l~{&SX=}}k6XX@l9!N2cbt!ND&@z{}#eZsPu*pf|*W<TkFK(D3
zY&rE(9E%a8-n(mv9!@Ns2g(TYB8e{hUiai%v|<hu3+&Qrlk##kB%FAs(f|#}G3y{-
z8|UiA6-&16{;3MKf1JUlb;x2A|H8xP(Hi{7;oXuTpQG`mHGGKy5c4PLj+_6SX_h2^
z&+x;PUOKIQ@bdL&JH9-D(r_{Z4y&s*3M5P<%aus`Z*ams10cmFjY+$@K`2(w$^R|2
zn{-#LvTUC`_urjXpxwtFL-I(y_9TY71;`8#Ik=c|+&q(mwk-wf`hXsg`ZxPwo#;5N
zo;f^x?+4tk`Pxj>!>`^yz`rgH(HHBiqDS_vS6Tq-H<$N**<0!il`OB4VmA|pxkk%1
zYW$@@cqZL`R2<GqXOE@rfU^k4AKzT3B**Ag9LAI~(?x$h_`Byz#cC3HmX#O~rW5^1
zHcY;9c0m^^>rAd-{WZp&k0Yu4t}^XQxQbPRVTs+TYkV4$%Z9nz!A?~F$}&_Yds5kw
zA^1hK1ZlBIhMYQ;Qy+YLdXXJb_2%TRcKA}yYhX2TucZ73k0X}810Txlo$KW-c8&Ll
zjCed(0Z)lg$M8;AdWkD@HtFWJTKG;~+TB6XRu>rAlv%K6cvcgz5oOZ;q;mdRfua>O
zP2`+N{n6jswk*xc^nij#?B&5@uph?r!zPs}pLGp#F6H)DV``1^!28`RBra!d_h<ND
zg}<~<z;mATB&)r}KBcF`1v8~`1j%n0#l8xRzo~in@qyEMza?KLma4zbRW}R?hZ}VG
z^)GC<afSb2yYW!iK0iYLTDnmBpj^_TShOSncE3Td)wN<ZdtM9Ax4S4LTNB<X@Tlxy
zx(r91l3?{KTmN+zB(0I}*w^yA`mVMp@FIKQnPN<%J{hRb8hKgdM){sL&K}Vj(vB9m
zpl?HR4bD?4G5w&fRFY8ASu$x}Dp@+aS~A7^InVg0r2PiW>`cNYe(IA=Kknq<pn^u`
z3T8XTUgPR?IBvf2o^V^cNmN;5cxW>lp)zQHzC2JJiY0B0c*mz$V>G5up-13RSKT&O
znS2OFcd)lv(NP%X7*;GI)$!u)H}7tf$zoE#;lIy+OQ$Bn#W$}Ig@;sqG;o{k*-{FH
zS^A#!fS<xABHeJ=1mKVKXw_TKi`=8&?X#%(d#TZReA0c%F{tr)L1jioID__=+<<VC
zGJ?Ye@}voVT-D1rUkVMERtk)B3AlYGLm3t*ZLZ^zq|Jv9zfg~HJ%`RzX_m5C#_NAM
zA2PAIVcSEHy-${Z4TWBsVv3)001DCVl+MUQ&rlgtxYAN0@{92cl^tPNWZ!Qrj$`&v
zPVPpAf(#++G786jZTJO&_xLbyH|R{Mt1DCFqv-J4Oy9$boLxTrrDZts={-7TC7CSb
zcpL95%a14wzMmk4R*XhAsh>P}tSA!s38tn4eZzjV5rcwtMG$ut*p|nbp1bU;h1|y6
zo07VEO%o9c>Q-CiI~-93aX|)B?N^Nl<=_zaJIf<g#N@=h#MW0*jLq=GRv|JR2Kx9y
z(RuA>5+=;r5z7ceF4rp}U3Vw*dF?z)RW0jWKnuC5H%BjRZL^i(i;W`70gE?gYit!*
zYoplPt<m=*%vNdpy-)hJ4`nhx^+_<^n2D#q5~>oUv3n~)9JASC%aSo2+bI*vhI4)z
z&#uEH^uwhESy+q}jy-8Z9fjYgt8DY>xhI=BU*UjapLnKc#e~i^)@S%k8!}dRhzdhP
z(YLSt+rjkM6_`=vA&TWmz%VL&gRjQ+&fV>*@7n)n$l2>f^@a=X4d^xa@FAnE<ODrX
zJCG9j4aDo-6jYlVrjz6yiw3xJj71G!@C3~Dv1y=e+r&u1d$Qwu2j{ZuBfUHAm5Hv~
zM)=yu0aTtGqRS^PyM|x52B(hvpRhxWG@Os)qsnmyK+aVYtL-olM8{@Nqj#>#4Q6!A
z8H6S`QU@L3!Ea8R8w7c|Xf?j=L3WdlwooiJnj0QBH{D$CPc5ySAe!>>IO;AkVH`+c
z(3_T@Um>H30n1AQU4}x<LqR<AhKb?4-;>KWidBwuT_m6BKX*%bQqTozbzptp(!X|3
zGFu%~(-$e1cp9&n#_U12%pd#HCrHeTSCbFIhHK9O=KwbNTx>ds$?!A3TDx<5#I0xk
z_ITnnUS8qTe1$07`O`<OXr`U&H+DaJZomv)NS<4~L)bCGFl|fA20Brn*{zqTl&E1P
z_Z1oAe_VStdqm`#^z;}3WNeC)iQ7<x?J<`i$#yQ*0>|P_{|p|u1GdA}c_3-dd3PCp
zl5h1;QFFUyhE}4Dpjx5P+9HMb5KyLGtL=V+Pvds6owUSi!~e_kXo=PAWi&jFN=d@a
z=I3`+bRkBV9*j!(zzhyrpJ!fKLi2XLtlWx{ZiuYmps&7#IUDc+lo@)Fmu5RxRA0YK
z!U_!sbHO7<zj+j_5_BaVVYmx#!>fwfDjZWdnKQJ_G#5Ny3qz{WxfuSwWt1qhpce<y
zM|=*tJ~5{-nfTSqWLXx4;>NmETo^*VTte{i&fbVUekhSuc8mdO%`p20`p$v@HGD+~
z#0j`FW?9?Lvjh!2rQ2R(cY10uVYH>z@HB&riq)2O9}0=*btmeqO2CYTqfV*nJ#hLE
zGiSU3_KCw-$!F7;rf_|@{wBwflmYH_3mOQS5mE(i-(pmH%^|N&4Y_zy7}P=yFF;m2
z*s7}N7lUh%Hi)jT7B$ShWK+-fn_?>mYIeEYvbn#nm31SoN2+A8j)0aCV0UBl24uw5
zGGm;Lnh1y(1o7UNqvzfR2)@E)){h~;rCidimZVxf>*(@8n-69WIzZDl15xQ_F0sT~
zS9+U*Uyk=}rVeWCKf`OZM^T*vPR1lP>e{n*0N=WoF*elah?j*S<~Vi}XNy{(N>XXv
za<(jrR?27@^D5FsZrWXGjJGP$y^i=TS(#D1x@by2Q-xOuB52^T_I{`pvPI9~P3<x2
z9JO=H0m=h@G{*Ab5pZiw6849BG&sFf>g4%{5w*^QGbfKcG_#I7rMsj#aEtMpWw;$T
zx6ZHELTCpzTYo`1ns3i+?&N4SQGeQ~H@E$8b*)Bu<(L5*jh8HiJ)M35V?#G`ni}ju
zcicYL^ce-Lie#bmHt-_QG$i<qsY~>$?r)5aORHNWNx#E%L^)9JkI52<4*o^gUrB~S
z2Ff?6mCNH7r~AbdhcQMO@sK#_dV+k2K`y(c^D+pTs<+o88^-qa>a$@r-aVM<CJ}{C
z<6n8!ngdv@Rp$@yZO-gdxnKB6k9+HB;Y5&dXYA%gBCLiSOK=9_xSY&CsO1(t@;T>P
zf?HNYxD8&?Xl6^5;wYEvSe(FK9=-|Xs<NPStA{8p`<-EoyWNrK(LjXWY_z_xcl5-i
zkUSethZpTg>HOZ$bC-HYTNd4L3wx%%r+%6&aLECbCn^=o#?Ljk<BXZ>Lk>K|UUCk@
z-%Fv1S7>?^ex|V0zR99V($i-R_Nfyvv>J(}4F}-*qF;hvF{7HVC9&GMXtrBi7pb5=
za~1CebEkhJV1;|R+FHQ=w(tQ7{tL(!L`);hL73vBtmB2&nVA|=cg^YXCB*NCF<g1z
z&{FLNmZi}AS$qy!46nO9mJ=g(h`6|HP>eG4#ZH{oK6Jp{`FBswNTMC-b|IW+>wzp`
z(e+-kO7=TDrUSBXMkygk)A_Stb@x^WI6s&y@xgX`;pVTIk96H&wWG#4%5_wNgMzMX
zg#IXTwZMh|xdp~|agY2>{bwBmWKHd-d*<t|vU^SBFnMn%MwyL9i3)`#T1xaAdbTLn
zlf?XyT(eyryz<JP+F=er9Nu>pNq9<f*akrY&}UqHyRIkQUWg}N@4%31N5_7H8%EfH
zGhX{gY_1D8?%AWJP?Xg91wbRu($?qC;4@YH<tD5fhn1Jg{T@tjoUBo%_yeiFi=SSo
zjC{Cd51hlBS@(S@@S;Dz=$?$OtXklmw8Fs$^UK1Z;$-RFu5<^$&nniP^?$axB%B@#
z;5cAEY50<L@r`cekEqV~0I}~Ti~T7%+yuP=+l>G6PGfvY{W4o~d;H#hu;<SB6x$6=
zt|?qkoPZ;gurrPgGB__2cy42}8<_SUc&;LdA-xavpxGP7AhMXV{+>I~Aw}Hk6NW)c
z28)bWv%Kj!InQ1z?KqUd8PB(ord+X#(8_9Y4G}+`XW7@nNOhtTU7*!^Bk}C%W+gkE
zE70D;YLFltMX35fsj+w;BIir(68MTo2#7YA*iU}#LNE$T%U}__H@8XoDp@h4#29NL
z&BhgkS3{pI-S-xb^g8HN1f=$v5dAycd;+5|mjV>}P*UEjtg4`aLGJ8lvcB-`WP!2y
zEz{WhK%S4mg)CSw!#(R(b)H9<=}qyplE&DN=gd(`s}((^#zQ4z-+V%3O>GwUX}?AJ
zu<39*aqR}O3h}#<s_W{b$~JF>KACq-x>2nlZ_mk;5(JXjP*S#=%`1yelu`?aumXL(
zZ7x}~6%C#<tou(&cpA1eiEN;oXlC2UdODx9M3D&BF-TpG?AO{!U&%tRNnx`(Zs~0q
znOwcG;R)QaP(Nu%esjIS>qT+s{F8Zwny%;uAuw9_lgvAM#L~zRjhv~fsHYs~Zc>U3
zdaVxp?y-`su>;ew3&mz3aqO>I#HT-hvR_h{?`H1B8a!|iJa}LoYcwT)x8J)|c}>~t
z9PO84iG5rkYmq{~jV$#3W1wx|E9=m7WzGQ=mnY7ot2*z-<2}F?W+b2+EQUr!h7rv=
z-a8HRBMx5JqdFx@RsgCO#@HTwfO+==wj#b8I@e;|56V?=lesrD=cI-l5nEP#8@}6X
zC~-Am`9^StTBoGy%(a*IfqX1o^bg#QUvR3gY~*>x>NTM;1CKKRteAj$kL+RGiw4*l
z;>iMC-ye-_KSc$KVe+s2G{SH^HMGAzT+CM-+GM&9UW@#J4vJX~j8gBgk390_IcmhX
z)F-a6N~Beg_%@MZ(A{b@CC)d}L2#D`0FOQfp?HieZJ*Z*wyVd<Q|5p2x)3j80^lNX
zIzBHWc+3=ey1|JGI7q08ydHG|(B3B~_++yD%fiC-O7YIJd<3QV)?)8oOLcc&7y}?=
zie4Ob;dkYWFXeGl<OpHWGWJir7S*W>Wm@%Z3Gd|vfWGC%LfOPBZ_YJUiHGq%#eJd_
zjOB-nHy11j$BD)vQ=l&b<1qx<`Uk%eVkC~3U)Nh(q*y!s=t_W82sM#e=_qs>Ah;UY
zq`L;Y)R%8I@~z%7J=~lCmyG&m`^=zp-S9P-%WOKINiP$GY*if;Dv?EUk0bK@)ePX0
zll^)}8uyj-rN@GoTTB$AjBfvI2~qia4Ax?y#B3OOdhFEL&KM*bg9R6#Jof-`MKP*s
z`f=SwCmerwNR1n89T1Gt24fFKaM@NpDGBlp+(XG~7=XGF9n(SmeA2KNXW&*w8i9At
zPAsKTU{9Xg^YY6HCduJhgBFQpCYD`4rM98@2#o65rbfHf&TzXU!{v8kQgJZpBNdO3
zwl+L@%7^znMtCk3u)nL#c(9g8u?F9b*o|l!jX*TW|K$Lez%FUS`}}N>Uz&grj#t^5
z+QLUuyYlA)TWb`0_xSZH?AU{tm+0nHV7cWleQ2YkU3B61J=;U^sW;6S+MsSI`(U-4
z_863YCb%w2nJ*$9rDoPxK1d=VH#L+F^Vx+h*AFMVPk6a3{h<zlKaxRru{Yl&A9ju5
zDvtM>*7E2oa+0%cNQFN=nw|#{6GpWIHbKHHL(0p~cFa9UZ8e>UXUU7$oy6Tp^AwBW
zvn;bUYbA`Sjdu7hm>l9vwQq0S2^CM6J%rms-PgXT5lbZR?`feP%_9t%=wyxjVL+b}
zq1(Q2^aXfs^RWGizVZtW`d+MHV))emv+%+0hZ&2MTIi-ozF3X`_Wd*Ed0)uQX#D74
zXh4-&N|TqO!;$CN?9J3;Xw>-vX{6E7y|ledyL%a>7Vl9s;!0D))l~SzP=eWuSn_e@
z;MZq*$qrAq-^!$OaFwjl&-6;SSyp@at6w)QqZ(CW=Ceg4wR^M)(Vsj?4SaCPoml3P
zDLmHPU79X`UHJ#)Ez{rw0_yAmPcwT^PJq3Ugv50J)y`}O?~YGp`v)V5WS|V^x;IxP
zKriPV6w$CQ30e^4Wq?!n^(4&fD3`qo-een9yUxp~)G+ZIm1%dYv5pFSf_Pa+Cd_7s
zbuWcHeQeUvluYE8_2T^wdLD98pH!05+wbntCK`)8PAz5{*-<$3^hh{*=ZfEPU!nWK
z)f!`WBXz|aM+9jd?3`X++Dp4@a~9<*&9srINV#8eec!g;m1-1@?|Z+k2QBMPD()_e
zufm1FN>o9#js6Bb&XwwAb;6rXHcA+;ItwP)H2kdF;H&KXf^10PY(p7HQPtVlNbz$I
z`r)e1gK7u<oNS*QAx4^fIv&TVx$mdGOqOj0oIJg7+YUk-b#CQppv?wT{IvzkJdAxx
z!e@FaSs3CIjVo1ws2mHf4RDT<0qIgu7QnZ8zMJ3?N7;x<s)J`KQj-Jio<>HCrdxpA
z4EL2QbpziG#A1D(Xqg*37+%hP)a||@Cc_3lFdPblOZaTOt&dp;VU4hba7ZYDwIXjc
zpVvOmaL(2m1i5KmuEc<Ucd!;G*e(&{Kp7px5K+lmtfAJ^ni-cI>}j3$-Dz!ivc(wN
z>P6O}gUHipsjj%-B0hR>o?n{jL83&JRmGv6M!R{kOc+F!)1Ca!yJW$K{&??ap++#~
z`QnZH#9T}`j)ipEPu}I>&YgYlDEFj|=ZFkFoo5EYi?m|hN)!jx-DB;5hquRam2G!l
z?!dl}Ht$g!+Dz1s)G7-U4Ie}&qH7=0m0+5;){USi>ipWdQ^$&KCg(eGWob(Bdfhx_
z<W{OfPXC!jS=S?uk;*0tT_a^iK_n)i1nMRwAx>A|>3+G9bQwXqn88|GxT4WZTnJjO
z`gHTW6Ql2Ig-Rcb`|c(1RsO2KMnyPsQ6tA6+VJSSnF4PKk@o?614b_qXQq-iuj5&j
z@=I<{S_Y4sI)zl0wNSO-<zk&t`sj?U;Rx0k%UJVrr}>q;*-~z%rP@t4;I=B%Y|~H}
zh<a0%Yl!fRKltrlr*c^(m8o+r8)#e`G$yeFshmnA94cHkt4a7oT&@q<+V?M&$(P4>
zZ6D5$in6yIFbbV*wDgo>J--AP{*0O5ZZ=s?w*u96;68;1)o>ZKB@gU;CHRvC04A8y
z;o`-oeM|ErLpUI)jo#xLp8+gI@9d!rgW}pJb=ai=i_XvQ{qm)Gt-<W2jVO4sn=`%-
z96vb6h;_{II>biqKDh7%AL$NN6aH<KQ8lv7yN6Jo2PU|+MEUIg1|Fru8}ePIC{zN9
zihd`h8}1Q8y%Q(&wKLLf5D$pv;WH)nff5Q+b99-N%Ra`M+3DUs$7HnEdkUL}cF&!X
zX3;~+{mJO3mPV^;%}vzroB@OJv-A!Tpxg>kM_Q8ZU%ZgZ3S_bybx4{gr-9-{pRm9l
zP1(IW;O%{mD*P>>^y`gIBEBAr>XKdJfHCbRiH75)%Dc8){);N48}60qGFaBCF<gha
zZ1$_R4-S+kd%77CUrbC+b^^f@tE(2aZ*&7s<fDR)u5Y9Up1@_xjeZVrIRxN1Wor&_
zXIsu7(?1v4Gjb3b8p-qXvt5Pv@e1dn7Y$dZ@h^Y4yJLfndG3ddD2J^^s?RH-^qg~m
zEdmPTZi54ocLZ-Cl38VVg%UQzJx7G1@RQeGGTt9$y9=G~j9F2r;<8xLf`UX##kR~k
zXQS9F;mr<!_AU1JQbj~k>YklsS@1~lWonNZb13ul`Ke6Cj@-?MV~jO#;CW1;Vr-vb
zuhjjU!tg$xdA;zOYP#}}#i&Bb1P7&mwg<6WuQYwYx~gr@c0cC`!j>#Mt6mF47Z{wd
zQ@|1vxiYnSP<;wyAH@74oeFe^d+XBX+e-p`*c-yvVca)soLeD)r`bm7Tlg7Z)~YpF
zt$o-TNlZH8c21>CA9!I@mq@0v?v8F+KJk*hhpGwg*qp)~0bookxDc)g1fly5=JL)i
zS*$n4EQbI*@)Z<~4FwG;A)<&%jH~UNyBrddJQmrQ3p`$w@z`^*e_lo$8t~5IzbtKO
zfXi@+c-5E59TbNIcoAfB5GiEp&E}bh{H}w6%81BR)Yz<hzD8Ns8ar)n?eSJ_(}aKe
zAV5*{Umi`A0(JwugvUT@swP?Z&nwNcvUtJLe^9vp*gpT7vtExCkjHefHi5WueMj@x
zKm2dcV-|jU;@8-^FaN{Y{`OBGSYVVlUxkbOcH#f;529+|V#N=czd!$fycQX_gx=Sf
z;lEK>e|hv$*iz7FBIEO-dVGRtz~gk55Q@rXqs8OLpc;_L5*M(jE)B|VC1SS$N3?Gt
zTMD+CX8#vn(k0w?V%0q5=<lbF{0_jhjn=wAzs@X6o0O!sr_viv5}#nB#T%n&^XJ!P
zf!G>cv-eie$B!Q+mRO3%e&Wm)lgZYbu3w3%*euZT@qHk3k?~P$wk~bJAeXIo)OraA
z^0PtZt$mbVqKj4D`&bt%l(#7&Q(@;#gfe3eZzkfB17Uglvnh-Za%7!tx1(EeTuLSH
zb`Dj5YCG}(zFQfvTX{Ov?wHv!s~4CFp4UT$i~lZU(OEj$WyVIq@ZmThj@V1R*_l?}
zT!og>im=q?dLUT(W<E$#amGnJi6%8)GFdbXW0ZOfcQ)qH4MHmY-LmgZhtjy2<yLoh
z@<}_1-o~EMExXT8`?YruRht!H6rXWWhQh)QwF<e_(oCGx%SbY1aNFVyXP49ca_=Hz
z%Fa+Cpdp&?o7woYA;h0E!X+D+-K`TTynp?|V!jItuOFa1n?yNH_>nT*NB?4ajLbUY
zx(2#YL^`zZWw|RtXA=1h);LTE{+6tUws>omsL&WJ`M;}`5Xp17cfkOn*V4^|1LHCD
zqOvj1yxD9JVWl#aI-SHik*P$4op*77j)z2<(e=Qy_<{Jl=h-nem1ll}!yf%Gtj;r4
zu|i=SW~7CL=c4EBefVbftn9c>TfWdd8}{|A4NxyLE_&N7P;+nOOtmhsVrNpZf92f~
zS-!+f-$|W~azu*FoL_6z1Cau@Au)`ATu1ni*|@R?%+i%T%9x%%!PUP_RaXXh0h)LG
zPJT36?P@@0IEt}-mFdosU0vDWti<eri8x-^C<!3`UvMxTExs#-tymTk)72v?4&;ru
zD}TL6Tw8iiiHgL<i9kxX2YiYesob}-1IUTRYRzSf$|b5_6{&Q(0|juIom=p@?1k*1
z4dbzZM5Jf4!{D6OgVE5iG*{4ejr|kb-PyF@ek>aC+6$vJP~SiaJuCdpb>mSxGf-Ca
z`Gb)pX42wIMFP$eKU4-QuFD_?uM8Y9c{nD6Hp{Q6Z>VsLAG|#C&DyE7>#cO)x+R+B
zMWi%3Wm2rrU5w2-pFHZ=yOD?U@D{GTx0nTgHfnO#EV82;VADWe?8TWmBukVUJLw<x
z42MqZ)tr0|IZF{wWGYyUc7S-jO?s8(*A)MGB!Re{r9we%JTNm}4N)bnnzBxM?yutr
z3}q8PJj34jlN*@B{7)y~w_FD{<GV3ZIJBNo?{fP#Es{&U=NKls@j*}!_k-h%D~34W
zNeFvLzD7d79-D|qLduWf%prje3`2pvi3!^Y8(HYwOZSSElLM@_tpfYII8k4LcjY2D
zS#PxIs(_wOVv!O?JL!5)QtxXCXY!yii#L8KTP=Jek>|TRJOcN(?j*z4j&{g`4-16k
zrBlm=0@$5_JPhgXrGnqiWY8=*36uP{QEie{){NyscN$R4w+Sudv=-0163u4!*>q#A
zBtKOs;=}z}i~fV1se+LPTVv&dgb!Z%zCj!p6ed4vW!d8IB<B#$Uvn<$jd4OTj-ol2
zJ;7xMZTY%76_z=k`9tK4*N7o4H|TsJKR6kzj-R7ztUN0Z7NvhLS<2s*g^c8~jOFsT
z)on!$;&P?AmS+*?KW8v1#GnQ`DmM8Zy(SZJGZ_EJSRJnYW*t21T)uVPC&V@#z!&@h
z_pYQZg(=!h2Gg~Zr9?~oIjune&?b>k&elS0bkWGB1l3cetuRA~h#eJ-%ciJ2D&)yy
zr+&@iPudwv6y8@xsZlms-PJnZIN*(F1hpxACfK^_Pb)2o2V&;Rmrs853rPVISg}e6
zjmvYHv;t+#wr62hDgxIuyQ)^WhnPfl0DVhl+*BKH`|#{y%n*vKmBbizV`v=-k{i!{
zYP*S%`d(JIW0})=o%6!6RP_AGM#0GRWv`qBP<&5D<q@ky>Fi2<^Qy8p8ow9OGTF^0
zcX-3NlZ!yR_QE%&%%Y*J^E*M+;G}{G4CD3nAwN#u1Qmt^*OjULEPLa>;?e(H*T{Zv
z;(=!dR)3k1z)Yov0#RA5<rv@?A9)OIrppoS&QxO449H|K63@6JJ<rV1$APouC*T8-
zFD5@5gPe8YERxuyaketi-LKmk;)j%B5!IfoD@l2l6tBSW)An*{Ixw8ZG$S#5<@N6Y
zX%-^^`?VD`&~m9KzE^o+NXWgl0pxByeAq{EiPxJ0M0-aWIf{*!>vV^>)EbSFt=c79
zKNWn8g=lbkfVTAu7Ds-e5v_t(ilvlj*Yxz%-yP-j=2E0epfxXf{-$@(ebi<N#<kV(
z6ngE-POH%_0yN(1?w}q@B`rm5*SDO(xOAbQSvhoBG3h)m(+P}pFdmRGhvP)bG)c|g
zMe$$2R0+4?y;R7NlG|MgrM6A_kNen<Tg-QJ96xaA+kaRH>oTYUAxy5Jbry>P4M$wM
zLY0CahrVg!`rX-wwhx5Q7IL4Y@^C&ysvvaN3SKsQKega-cxw8Oyk%~7?|3$gYdagR
zl_z7U3<NfOueIl4bGCkqdq*=ex0-Fy?dp%&Ri_t>!>+A0PKCP{YW0hkh}EWdOSGaK
zb}F5#TS(A8;01tI5}6E&!t(iP@Q@WC-|&%G;|dXrK0U?~t{BFneWJF(s{%92r=_{=
zdE*96v8BjeSOk%w$mjibpgV?EQUvzYVo5H4$or&q<K>O2b?Hv!#NRD7zXomP{X0(l
z59@`e4JyT9Z-e)S$Nn$V#*a+umC(Sp4`wQZK6yBFm=C6oU`Hk(cNu9$#4;L*@-n`J
zYrGyB<cH3U<PKm^B(m`xYOMuC@^|{9P#SiDG{R5}FJ<1w%l-uiy$JKh)Q%RfbGp|*
zFdKlGXzdloOF(sovlIjR+U3F#66q9)x8_YuA=2S0mI>+iIzmV}hnN<8IXaZ1NhV8d
z^{l}l=R8(VY@y|@&(_=YK9WG-%5uP(`q23G#(b7*ew1$>>x!kjH&tmP#*%O=!{x=(
zi9&(&g}b%-g*TS{hsb#b4-FTB7+|w?*NG+nn~g`n0pZf?u$N20EnUbzeCoInpiemw
zcrfi$%qn_w1bQpJvv5lKju=O?Z#`;+<17GgZ(`Q2<zPfXi_BEy9m1n-;a^9zH&Q?x
z<MS?^I(jD7r_v-k?avZ#X^B2ua=T<#Snagx6yiju<Kpm@3m^11w%KX!wRgD;XiwB9
zy(q>k06B7&A0Qh^WgE;Qu2U8>&BCxt1si<Vt%bdLJGOlw?!xSkwj^|igE3;Non1N}
z*0QSHU`U+W=o)#6$0Fn-3$)3x@3ZO-Uk;;lj+)Zs04YorN>T&4{n;wLXvv{mzlN#$
z(j@j~8}Q2`mUt}57hv6&9xlR~xHw8*1}3DhrzrKDRis=SpcOhV595AOh%&o!B~oSm
zu_F4Dop{b<5KGi^qy$2~TIkMDpb~kr6fBTLye1o*3~o>!JNPLJlcqA@RV-f+m(7QJ
z=t#(xn?*@anh@}{(ecVkj$Y^Z6*k+g$YJhZ2Mk!cRv;mU9R2yg(fzbKoeFFxJo)@&
z3Z^s%)bb2EzAVK`U^tW;-9v&_)mo#<1iCnS?al5>Xp7Oa1gf}sEB-ALI%aq)?z$rU
z(v=ehENo1xbfxHedOqCKk2~AV)MF@nVoy1$1(vArR7yWsSj|^f-iceHlD6AEXH4Y^
zk|%4GuQli>+brer4^F3C%(rQa45c%3IXAX;{P^110&@KJp>tYq@9L9-y?7;w+K6c4
z7>aXpz(&+V-1nNu2Y|TnOvdiKGIwg|kigf~=JW!8@zE;sys@W}togNrz#o3fdeAF^
zhOQf{5Y(uk3?>k2o7+#=?8xa|y2N`{e{zNX%l_%Y3EXVSmt?L5Ax}WcA;I)SZzOS&
z^*VsV{~6uf6c&YkbtJe?COC^#Zz;o0`sbOZ%A8)>+Q50BgsDfF?0-60F&t1rLPEW3
zYy9Jx+1xHN&V=E}I$ABdzC)2=Yuw;R=ZgmB6YqLXGo<dJ@h9S`VkIqRHx&BF#c=kN
z&Lkvi?qa(W_Hwz6+!zEImuUwmejyZmjskHNdNYpD%Z30RkK<fCZfuG^#GPs@$)DYw
z)Qw`-WvK<;7isotKCfO_&U7M)vt}(1z!i28yC!s+)Bxfrw0g{YXXVRCjs2E2V8;37
zPjYOuqTt0hOR^1L$g;8Ytz7LCA9pKhkShe$O_kVTI8;9u9$2uSBrYXNE~5DT8GrqU
zQLhaW0~#@5)v*&`Dr3!|g!&PB7Urxz?ySdd$=BL*0!@IwQ;`(Qi|$2NTb)+fQU>BX
z+7&LHF|536J^6MDaZ=K{=p6yM@t;OB;1P%ufj5yU4m4Pc%>(gcdZq&-Et2AusEXE$
z1s+`k;TU`tDL9>}r0n+wsie(eQ_q8iWJcyzgCmQoyiVjk#4N8#Jpz62GF>mfPb$<{
z9wBp94vB?hj?yBPBr=ltDbc%~8;YvB7dSY;BX+)bNV1Gk$l1FbYK@pGlZojkouKKI
zzLTXZe#K<nFAuMLl0>x=j*#^=z0ooLkk?T&KFv6Wi;8Vq&JN01T^M^*r(v-U(gxqd
z<=a-__<nrkJh@JVX(gt@#vFf$bQZM-=3>o3%uI>mR0HAxXYHo}nnpG{tw!O7qQYsU
zD=Gm(r_uyAFzrQ>bwc40kIy=iVx_qm>5{6`S&L*}U4<+wQ#z;tLR;JenIKvTc?AWZ
z+rV{szEP*YDSftBcl>pOFdSE58?D29a$(Ez4PGo(wza+jv0VnsU-yw-${zs37^zcP
z4TzN-xQOY9JHWPCqrDVyK>X!p|LA<~dJES}Ek2%DifS*?BfR~Y9?c^FOVSF1gXoZm
zW@^nr#VjNkZ|bPHKaMoLa`e`v`~yJ&ai23j9Ao$Jg%z$C6NUww<(kd4U`k58X*+;R
zmdLWw(t*yE?C*i%K00txh=rt+qGmgei=#@oJp3UQ2E8kvW0Gf9sCA)E@kaH4Vm4oY
zvD<jLJ5hu6_zLM)u9vb>waI;_h17fI5IKdtN;Yl2)n#_ZZWJh@5w;^9)9x6xgQ&`a
zuwC>JMdd*5HvRTG>&7<_lapIHQ`JWJq}$&WcE5(HKC3Ymhd7Cdlpub44^_?}ErE!F
z?-5Xlyd)CBJmSe*s1ltMK38(&H2ZB;KF9FuEeHIn9>#FK-7MsVVWYCqUPqq%=Lw8a
z1)bx4k~uD(g7w*}E1Q==mCo@5Xlj-u?#RD{H;BYRzR6M@E1d5S$wF(p1pmX~1@?P^
zN4Q?e6+yU~H@~J9c$fjDvP~~49NBH_t7@U1xGsfn{_bN$hbocloA#TRYM~(!Or&Ea
z+H8F@)RdWF7&~ED3_`HZhy3>PVQ&Y`>^lVpi%>PYT?<u%VHxwKsvp1kSPEyQoRdS4
zD^U@CP~)h)Mzs#>ju*>RV9{>sr&Otihk2c+T|XsyDcA%wq9w-RqE-BYF)N*K-%Mg$
z)>VLr?Khw}<%2U%Lm$mrWLn<uE;5c2fk^O)0S~gb?9yy{VYoZIFf&MDq-bN<b5<BW
zi>WXXx6CzXrDiW?7g}z)w6YJvA>HV~hfb&Cn?X2s9BFxl&eYL0j2(1$Y-0F;cXsJc
zyh*q8G5$zT|8mEVECVe#r6xY)_W^q>+sn-5``B`b{^)-l(f=`WM6?05iIIc^@uj`U
z7o;aLYXK9~MjN}I3MrfL8G~N*nQ@tI*a9`S9~~B#XkQfubpXvPDhn<V-y?cZ8;KpJ
z^_%|Zz`5E{x%CBy)0DD>Dh)c#7X9w7F2sRUt#-^0$(5S%Iux{ZN22&4Jg2+W6UhM(
z-l<FrKnf<~UGZSUhdH6e%{!yoAkBaqMD6M*XWH<Pkhr@M_8~o_WM_q!fLBRcJp)}~
zSfd7Q8YM+dP|-PQ7?P^9mX$%xQEOm2GYBoqM)qwX{{c{2QCoF56^wLhqdGw`uBE}c
zmCpFS`duW^TQzM_jx43LwL*#JT=1JvqyMmw|EEz|0fi(tK~`qY?0;~$T`(IH-U8Y*
zqkTCqT6dV;{^n<b(3|$khyQA&2)ES3)upNC)s?H@!yxC@Pz<a|OOU(8jj8k&JY==r
z<*gfI>8eB)<Owkx!36)}XY{^)p2Mwuxxkid=d+pv#--%iB*a}L22PLlK1X?j6s%DV
z&Y*!wi7U;}77R4xr}R_19}zPUk6w|dP|;X{1;WULpL!PLPRf$bMiRh>eCW=^LBXg{
zWwfoxr2|r41N$=bc?oN44$2a<UvtyMZk$8dZ0_xq*r#c$KZt}a%jm(On9w_N;=f`4
zo9p`byXzIatH}EGn>Lj`8?2ICPK#aI<+3|{y7WkpgE1}mYtH0(N(T4hBNGCTWQ+<7
z%!d9{1_lA;-Nnu@MJtOAVw<_H$4tQ98ivMb%@#lCoo=d<l)u%I-RGGP{l=%r2(yo@
zNrEBjwQiMaeXhTERY1BT&eka<nzH1=!Nsza6Eod#YW@C=4aosVSp%NV#;Sr)wAXN(
z5(N+5`Rhg8d&z9NdQ?*)vZGHr&ITeOE!bQHf%y(bMqxYg7zZwCE8HNzn0c7oG^2yY
zBL$R_jD{Geg(wE6!JMs8<LAcl5C^#MJ<}{;Xt3^*hRr=n*^d~dNo0ShUr`KaFRxW2
zR{YH&{qOPV4G@sRO5$MgZDTood$&;uEn4Txjx1C=Td6!(2VoPLghVyMA3j&gE}IY}
z)oRvecgV|?;S{XN3X1YhuNmCF6fbCYAh7s6q$Vc_$FO~g{WR|>_>2vQc8#f6^A#T5
zh2pSH5s`{Q+5&cHjjF?P$xa}b#Zv<tNhhd{n_>IdkHhJrALeY{3U1yQ+x}`@^{8E=
z%<H<+D13)K7e*VuTxdujmBHi7ZVx9NwxZ*3I<rOuNuSb+TC-j<OPL&9zw-meHeniv
zMRNoW`+SIDJyl{AyvC`%dZ$&Vqp93-N0?MbyXF$V^2j!J&6?k%0BBP8`p!1XX8ChX
z3Bz6my(|EeqB66mk9>59in?goo_iEBjsCAd@ZX}_C`hllVWYXdMu%o<Nd(7)>)<<W
zhg`!sg1Bp8!Zo?UyS~-?>$A)5{Q;lwjfmcJGUMg8Qz8Y%yxlj0q(}cGY@MNqV}ERo
z{gEUv#G%fhu-mX9OcLP6+pb_(;BTA|S#sibdg+}$*mXnvn#?JF+U212SWd1Lja7MH
z5ESR&+%`V!u>AB%cd_3KO_Ql1C3WGG{|(Q%jYx4-o0CsnvS#G@7c>vm!|cE8M1NZ$
z*7->OnbNU~mT>w<O6RaG6s*+p+4uJLHs#LKBa<ZO9a@<_5uRGoDE3MeDPK1-&SgVZ
zwEImH^C#U8s|lUy-N^kvrGEPEjRqaT=G%>(A0ziP(6{fBo%eTl(@S`_YI1>R>}a;E
zbfT`Rvd)yB@l76@{@+WvHxwGpac`x@Tn*)C7KX+ITIKJ6$7Lh?)4l<SQhU!b!CM7g
z{mp0m@3k-v^gElfZg^`X;iDq@8im|NTf(J4flcB+4f8)E(*OQ~ZB^iVWw;zvS`D`T
zeel0u_U93JVgWl!;!D-!|9z<c9Qk9$->Ic{9Ib!Ib^c*w{YUSpe;x4)1buCa2f3F4
z%_{$Vr~mEAO$rcY@_3W6`Zq7`zi;*!0U<abuL8$A2PB04=QsY>aX$|!-%S}jKb>YA
z;#j%)E!FV8|L2&Ct&f9F#Z8%~vC3k#V55dgwKOQ|id*GhdQ)vVeKu;|B8?_~z3%Cz
zAH4LLmzcRau%{)F01TH8NTtb%hC^}WMOw;0k!2G*RFc(-iw&1P{r~ovf#WDpeh@%t
z=g^K!Y{d_DWHMeaZi@1YW{am1;A6YPx}Q5X;qiG>2yTu?;<6hq`Pa*{78SjvPg#cJ
zi8ro{dHN(Hk>mMV{CeA77dTrZ{LFiupVtV<|2>obedIf&UrY=Lg&fVs#lJVRJvd78
zdF45dPuhI3ng64|<XRRFukB?5jYgwz_qbMqC+Aav*%8t2k`vA;R*mc7Z}_leOy?~L
zG;u2Cz?#FOTLEMyE|RR`yn<!LU@*dfezGLw2s?~U{W3ZvWBZDrHK|`?_xvyA@$w?)
zsn3*SYQ!Rl+h}!&#NYH&yX8ARemz`pQN%1?q?pgM9&|C-6KkZzO^q?H#i~pu9S~NE
zkg#gAIo~;-cV{=69*30wX6k(=S3L}t`I4CoD15N>V3)n*^J5AL%FT2F|HGU6pNHL6
z77iHe#o|rz#Z73k%rI_5Wy^+8?u|YAp*Ki+b8XsH+k?B*l5^I{cT`I(l{%9l0=SKY
zF>}%-ID#hq-SstY^TZztkG@8R48H%h($bO9YAgPn)hhAGWEAttN2j?cOAusD)9SdB
zMtd_>FfuRID$6V16C!?E;`d&WhM`e&&i<2Z;4rCE0J%umc8%i^@|NCAsRA>n=V1hm
zPNyW%v1Xg62qw)Mi5o;ss85oVGW+gT8G<6P!4I#H;~Fi4N#ppe%!@G<rH0>*5a!{j
z{QIl@^B(>Ck#%eIkj5qlS`vAYcm}h{uQjOB0P3&Af7ECwgE15Dhpo||IC=_uFt$&C
zxzSFYd*^rO;$Yb;gg)|c8_`;DiJemD4?MQ2)wEXFZscC{M?sDykJ~0x7pd3mFHnhZ
zSaOksdZ2HA3n~nJlcmqMhopaUC`N~b#g)#JM20|Bl0J4Z8HrJPaj`chGUM7jIXrI~
zk?zm@u<M+uPR&5zE$p6_7%CZvq5g#VkgNGeoArO)#Q*)ouT_G`%~NBoKxh=GRf}jG
zTPeVWh8V=W`tJ9oq%d4(_vfjZ>Zg?2jK!xaQyz;N!*SiDGnDR1qqDKE{*r;HnpM`R
z*+II9h@Gb8EnYzXAm?^RsyAJbgQ<dF1#cT|UQ%ecjA>X&Vw8}Z12V9A;;qdW*h1us
z<?oAJWR*XZZ!BLIhlu=tEPx)rJ^%6DOxQ>h8Q&nS9-UvgcPu7jg3Qi3S70FOFA=d7
z647Ek$6OjbdMBA|^<WKdGwV%aDOM0ixT^9~i8KNt;iw70<UomV#p?NKm-|flbrl{~
z!0Cl+-tbiEG^u>sXX{iBk7nAo^ipRg6Db=WkHeb>(~w47DzwSJ&x8M-AM4s^fO#F@
z$)00EUnC~q7bqiqTW9P<m0}khq{F~z>1=+>x()U#Uu;wPHm+lp1bJc1egN{YE@B@|
za4R)ho%1p#6v{7Os#^vK-Z;eRGw6c|=`gZifn_D#>vWgX`@T%=`VyrVZ+jHzm8j9?
zo_@&bx)P{EtxlATnoxyu=Q(G&c%b+b2#%GW@d+((yo(}ib~#@~_+`v?PWb;?-hovX
z7HTum0oKjod~ck9lpl%5f+*>5!9&qpnTEI?r~#~=P98+UkcnuN>KWd(^_Rd*VAccL
zSlK!3v>;HqLDq<WF7`LpnO+i18!=Awe0ZSodyB5w67zO2e)X`FKv9zdSgz8QPS0*e
z$eL?B{tsnu9TZ2m?F|Qa3&Gvp0>NE^OK{iV4#6#0aCaRD7Tn!~4DK$2yA1B~&U5cM
zZ+)lg)_d#wtE;QJXR5pRUVH7eev)<qf2(D`#$xpP6nAsFq>j9g5}$#xIK2I3l}1&f
zdA?G0B}6y4WctcYfJSB1a`x^F4R~j@Zk*9(+{irbjp@Od%J6+;C2i;Pe>A23hcymT
zzO;uPp0lM{DcWPb4O!zEQroe*NDe$ezq;fl?C{p#>u$xxVklKB`cbj%OyWnQoI9pD
zp(7v)MFC7P33vz{O=R%XmCZL<wxYhM!Paha2Ee9`0e0CpAzsl6>gvf5kd$~H?jpSr
z{cubY%>TpTR;CU1-$g$dL67t7Q(<?|n0zYhr#$}fxMS?$^<xa@GwP<}kBhj1$&f@j
z4;fwZ-NU9Tgyd6fTurd|-QU=9_cbJeKf$m588c=H|65iHiP{n3J)s?m^kya{|8ofc
z&s>5Ok_}vb2yg%27j|+6EJ!|*JOK|B|KAgm|6f0QAuAWWrTzbyZXW?X5ZjEs%}bS5
zUz+V$R9b@-^~BW;tvbtLPw5qT#u)u>XNf9F{j@)Sh$taGJb!r6n_(RyA0DXF8cJ1V
zB6l(VfcwT}5>C=29Y7iP)q1%T?zHkWiIkmPbgKNTqxK%*|3GbE6UQNgN$>&oA(SOy
z;u7Yr=%lMHmX!T2;s;#4-hWJ|mTE+ONKwEiE_+&bc{g#KC#w)m##MSSVDDIi&+V=w
z8@Zi6^x7hcs}%e$YxL69?xaIEO>wNU)JnBDEMzS?sWIo4-A<IqVK9QAyct-7jg#7f
zM<ZGE$F}UZd47*89@{a3dS*vd{}LC{KPAwfr@y~20{l(dfoVU_<h2Sn1=l9sHw>gP
zFrS|v+qRbe<MTnn60g@?Vxe4$CUl*7T7&g@bWQMO0ZT(fQ;g>iHjHD|Tevuq39L1m
zmiym2uj958Tb+j|hIdeLIn>T3jK-X)K3*3XT1KBdNUN^L3m}PNI31L~Nfcd+fX*4z
z!;IU8p)|&aX8|vUI+p)<E1oJykOwD+Xip?DXK-#bN^seiYhgaMZH$MQwr^l;Q;@yG
zc%fr6eafo0WnhRISbjLaw*TaDevLh}1=*%TfK$1`r)&mo)LUBz+32*Cl;TPN%`|s9
zcL||yO1XkGo^BQ<CYE~;iuHthM7!|%nSAsmb)oWe@cj?c(^1-iy?)~NP!v4u5NZx!
zZeF16o{-P|XdO=ZI8$o1ersYL?ey1fD97P}C{M!UiPcRWk@!8PMNd0k#^bgMop!MW
z$2HT~v!Q9sI5%xbuqQvlT=LocW4F{MaD+NEAQMY0KtlmkZeQ|o<Z)c8({ljLrRO_0
z*teq(4aleMXrF8`k{UH(;L(t>APEw~iYtZ5@1tg%KlT2`xN+Oa5=NA6pG3MK1|85{
zY>^5N<b*xHTpvO{TnEkOcAqdKqnvK@5q(P8T*{y#S(^Kq!07S(iCrbS-+=^!QU0$6
ztH)$6n>E!pVu9W!Fu1!!-l=Hi%Cr1VwZMYP%jXcG2`MT^z(aoBJ5DC}Yn*IOn_`jl
zWS5J$6nXkTuS#OwM<_SsCZer&Y``mAgSFJbiQ{c(NCt^n{cB_zV(N@}nG8_Lz<eZ`
zpsC=GdTZ<_CPT52<Vwa#w<C%c_l`#MQBAoNo7*D8SLrb~D+B44L1a7zyd4ZP?Yi%+
z*Tn|W>t0)hjg2nj#WNim(!ES?SD%m*l?)6MN7Hubu0n_fC`8^qYhrS~I4qHw(Tz;x
z_y}^75E9bHWQowAWj1jGHJVI?7&MF96f*AOfNl3>Jqz{%MF*oW)cM=norI36hnDBR
z=dXTDHt&VLk;$fYkq!O4mmZ09)5CVNO8@k3*^8WJ_OLl>w0DLj!oU8$05sd}s}AsJ
z1B-z?H!nDJ>Yc+zCG<O73ViQZKk*Ue*3hLo8=f~=)q3~2>$H27jGDD32?#nr@3z;v
zkWjenSaISprv*zZ_t$F9uz+40w_NydPDx0NeV0MgVpe9kRZweWl|IzxN&jGWu{$?%
zCe0k<#@C;nCIZUGJgblT3}d;S2gQ#rW>#af$Rgc5#svNL`{AY{)bc;?7EFIu5s|kB
zVYmDf(SDh_&U1=4<g@)Z-a_;Rf_;k+5m<m&Op!xL<hdT8*O|{U>NIW}mFhL8cD(lj
zxj$<#B8(oVpqLL_!Cg&DgNGpYqSTg?U*GXDhB73I6$u>g#<MxT?N7XFy*)cdlx8t%
zFcMr2Ki8S8tLoHw#wvZ+PXqYBj4xFEYa;bGE3ftnOQLWVE60y#Y03c7d`3<jJIvZO
ze;SV+R-5-d70uN4seLxy%yKzSJ}CJ^ao4$4((TJ@_lH@JU%Ad=oD$s4vxdoH*zxCd
zy?*$P$L*N+@^+kAqg>N_GaQdqTh#mZkkV55G<64oXOssJK+pM>L5EGN=tCZRTQY5w
zzN1@fRSe1ICE9LJ=^zYyxsO0xm(!N$*AqubPZZmFrh`_cT#oPYZ3pVJMZf6LTw8?i
z{YkRqZFY;(QRG-USo~qWKrW3t<`m?it&|hNw;V0oD0G~Y$ZBs>9rr5602v0(Iz_)B
z{Ln^7TNi>RI$lI|*XS=l<7ML&@tB1u@oVXFm%8z^*EF6*WK|jy;~AbTi^<_J;RAJ<
zbMavX4PYP$uOv3mnb~<l-^O9-GHl{7hMA)XW)i-c`@OJ2D)ZA(Iz+{O0H08BiuS!;
zhU_%5_Ay__88|j;8QUDs4PK%n^S#YVW}Ue2Y97;${jZ9_<{Q<f>pNNo)qklA6-x8~
zfzqV5pfT<|X;N!SGPL)#5UV~(ui4@lyJtq&lq6<<|2jD#pG<CR`uQ@=rnAw+0p&7{
za^@&Jwj}Rc8+oyuXxv_a%<)`lkx8HT)vR*&aGuy}zZyW+UhvY~82ydnh0g10R~6#=
z+I!OFhfruLB|-$3{S1$GEcf>E_#Ncyw{m?%XaAhdQZYAW$N<?OdNcCpqG6=1x8Eao
z2yHSXe>NY%*PvBOryM7<C$#m67RTt3BlHumu|ENRpNhZVjjpS)yGqWuT0b<3rdMs0
zt3ma-cN@;4YhLzykO@bHu#>MrEE;t!4PL)nHO4#K{c5XshjZk~zmFNz$Y`?U(pbCI
z`ScKh%jo9hWC6lCT=x1#AnzRwS78<Fo&CzI-Y~#urW+9rB&C|!37we9H#osRGc~`@
z^}Et<7M>|TxSn|%)~vlVgUR*ocgA7UlmvO%{!~a8G)QIDqk)6Dme&V1X#!!K5zStm
z9@0LR<x_;AJ^^;sIS5fFas=4U05&w>4n9$KlhC{CgHba<1X`Q!K)9=6rp|WxYiYva
z1_IaJ#$Ji>^euzAqobyo_W(9NA$W%$N<C{BKUB-qr$v`r!STBjM{I!T7d42H9CQ7<
z0mB!@G#rJF$vLFAfV4`r$%zxyPE`W0GAWqZ&3~csAdpVEomaJDNeZv+1pd!gX$)V(
zOSKAu1lP+FHY2Ve$iED42(GRYAiz*0wUen@q8opS?g_pI>~;Kd_w^b&xH2sP7JZ+F
z=75iG9sL{VwcCwDv^xwuUcEEvR0&+OxWXag$l$Zy54hTZkgkZW6>(};L_kye^1M}%
zdvZe+0a`N2!c$Wf{$H%M%YR#=Q1lK)=dgywX2<J8E$@cLvd|cv6I*Q5ebM`VoK3^u
zCBLt|`FL|2bvD4``n7MT<dX9r@D_wdT7Fcno$uSUV-KqN_44J_X!sZ+9_?M#82###
zOYW;x`}c8o?_gCfbFNf@%=54B+xC}4K`9q6NuW8>=c>UD2z`)%$E^!wt6{8VK?ORd
zVYq#>C!qbER?f4KsVHFH8EbD0R$>K4@?U%)<Z%nkh6p><1YBkSWAeDaKUldMI{9bL
zRZ>E*6=`wZuWBH&hoJeC8=|KaU-m!kIzT=L-RiO)JqSyMPEoHac6{L{s{){TEV>(l
zVRVrdBJF<n%RF84k@;*nLY@P#D?Wo=!Q&aNS~9jQ6!yHhZV6D3;m<As63)ll;K)bO
zIcU-$n%_Sc^6j^I6^ebKO4NDQCz-U|h~ru0s*?6F3q}|^6e%8F$a$t=H)1VSDNfHG
z@B?42ZX8r}C5}Msfy9?h_l2F#bPI1hn^I1fTvawX5(n7o4M**%J$`m;-v={yWqf~2
z{9>U8<W?+n3KXnGhcgrti36DTFGFN2<Q7ZFI1g6av^=jty{|*d&lowa{0JaJn1!Ft
zubYJU`J@Il4E1<Kwclr(gr58cr47N?6|IY}FN-2U?BQ@%`^o6aT&WPu@AeNe(RSe{
zKbw-sC4qb5&)^&gTr?i_>GAwQxW99Dy5iYv{aCEYKu_JX=hhR#qtv$40=u286)C5E
zb(##;o~|;7xtu&cxa&GT@^-)V@4ejS^uNCIbK%_$5d<|ffh6h=AEWP3;rncQi^gkP
z+BDZ<mPt4p4o*1{4nCPK$@+!osn?2nb@{ovl66$&SH2sxDT!2%$TNn4n;yoz+KupD
ziBZyGbRkG>48}mj*RH@5l8yUwgm#zPOt0?ZDX>OEKZVoI+P7A&s^CJ#SzT4FfMwL}
zm1FSU{vNxmnul?;n1M*6K@|%j>(R=a-70DAK0<5L9fItJb0YO*`fO7UN`%BuaAE(}
zgdrq5BUOQxPpe|buE2CBM#H`}Ic~&O@2c2gZ7o)Atk!8aENi*Q6m8ci=e_^qv{=&a
z7r_C^vItOCU|P1K*res&7eVp+EGu#)N@vu(4|mi*-C7V!+&6o~N){6|2EB#cUqW_U
zX;e_PrfZ*349330!;<<0FL7!}cs2U}4t?E6upsa%*R0UDeX|(XA+PS>mwc%=*Qm{p
z;Tx2a*G!)>!BnP=dzYni^8H7p;bXpjJVyDBtI*zNZ{OAWBAGn!u5zz0t~<JSAENT`
zSy$);T0`N{dhTGmB+2>=aKyUmahm#V!=KU-<H)f?D_$PK{pCS+)_;F2<NNj!+3rzE
zZal~jVRXBQ$*jTW@Zy_S$65W=Qh}mAvH%C;A@T&vV74q>hp{sWk@z@?;19`Sg&Z2A
zXip<uE=S60bYH!%{_pjdo<Rt6i&O#0^S0beD`E7hasdi&PdkgM6;>uk3p)XI_Rp-P
zIt7t8M>s;mF9USo;n}lXcDD!RHKc4_651~Q1atuix+UZE-`XV=+U**+tVWKoF+7Gx
z%&QvN>7DFPx{=Z0pUs2awml#?-@S)nmB(YCtVP{@&fDauI8I0`K+ud<V#^#xIq6;<
z|EK2_aJSWEbI5r(bwKOs-cuK%EXPKMal|m7@!(|9sPRXq$-AB<jJT?Aj~@xCx3>;r
z>{Ckbr2Wfg!|^DDi1u^yAvHfLu+gTEo8ab((}MC*`D_EZkxObIi!fzmgs1OGb}uin
zspKY(Sb(AXu+aX1jx1q|pIZS$iq6Nt;~<0_XVwGDdDl3Hv{>z*{YQKkXZ137u|o&I
zh^KHv>8szjlCnE`Z}<&rr%Wl&fqUmKK9)Gda$y56_aDGCp-JC*dbv7%5v8sHgHc<!
zi3Qtf9tfh?A}1w8XP>#4^4_^LakFDn(So6v(J9$>B6(FJ;X||)@U&)Lj6T6Lfii(1
zNym<XBI0<b^KQKTupg7vWF}m?IP(nCE}szOg&Lp*w3r8;nD3c{=J#JdTTGB|_|0t)
z|ARkV#cO0~7XWmZ{`9=n4M8P(`TfKC{?7|UU1f9SqJP|m*lh3?1`0i?6Z5n2`GiIb
zvKeNI@%bS978-WHXSXO~j<93tzE*pC?l%h+qz43Gz4fXg!PD{e%w4Vb*TaiTSqh`h
zMXk;hXf!IWxMwKw(=GqkM*%<B?PI(Gx^yty-TDsy(?8Jd1e9S*?{P8A$NhuhVnmQ`
z%Rk}I*-a6G;XUYCwe9impi>GX+(KHt01ZgKt1<d^%$&(y=Zd!QA@1_-6EgZsAhwlZ
zM>+H1HlSb;1YKK77^Oxt9!I~KwGsT<d7kpOTlfsiwKnP0-H5vF(Rqwhp>dtlH}6Ao
zfPOC>K1+t-HN1uZ(e|=EZfmb@YtLQpG;->Q(zKhK48jfC$r7|ph^*Gz>+2ONOagUZ
zkp60I|L<sL3E*pSj8Vr};2u92rgQ9~hLFO)kXGXN>2w~v@|&dQMHi&ZB2bW9%$&0X
zuKQ5!)mKksb?1|Xj2b1euCGE-UxG9pmKb)5Sw0sC61&KCy}PD{WViS^@>W86zVDZD
z*|TAq#sQOt77MlGPkokzsD=)ZGuCc}bh>VZY&L95)`Y40=5B;Mw(^Pe+IsUD5&6Az
zf4q>bXRJF#0N(XIg5>WFTDEw=Tc+)Z&bxk8ctfMPy<W3<oPE|jhT#EQ%v;XSS~kPR
z0miD0X{8Lacl#OWN3Xy7j|Us`-r%S=yRQ_<Ku>n~QH%FxO)}#ZtIABRKE>yZ_6K)f
z-_sgPq5^2GY)q9w9!eUQNx@dHTTM_o(W2Yx*|mvA<kCfZA@VWgmc>88^8Iv<<`MiY
zT!Zda)aa1rSwvq>C#2;s_!BnvNbQ;Gt1kn%`(3l5pl_Ft_RQ#LR?TI1h}8C-PPf`A
zKWMN3=zQRNJEdK3k#lplI_jL(ax%N#)sL?%{uJ%DiE#+;X_rF(O(F6VEA=Xu*6?zD
zbC=c8<@S@9Lov6#!0;isJ2CNC3_45DEA!<I_@Esi9Y>mka=<3T{|eRNykkM7^kXXC
zq2{`69kf5LX9XK^r4%Cl>;f?gIO5E&bLg{p+^}^V$&wIBlnt1~3_<D0$Ih*(4Ny!y
zo@X3Rve%WP5JCWV35mLw0#UC9PDPxwo9xypsDud_V+iLs%)L7<^qD_3+G-~CR^KK(
z-P&0DSIpL#&htM$1UDC2+%o>72{dT7R~@0I*a=7Ie+jW@zZy>?lXVJpnW=wv{VXe$
zYe&dESqCw?m5W-)DO3xiGdF$*Em)LPV^&z$YD<SRU$hP5#7nS~j&6VEE=PZ=P;Cvm
zIbWVv2=7`t)4@p(-rGxS%ZQjX@VV2KDhm1a;B#LYs4CHk(fxAc=gMLtsPp0*bB~Ff
z%4#6)a<Hvtz->i}yD1b@60KFWL2DHKIQlZg@~!Y^rKT&6+Xc0-puA@J!&I3L2?Q;k
zB|LD(WUn{Jvs&@j%hf#1r6^K{76)o1g^_u0&WA2609TDPsR=XI_<<ybu9t$+1iH4$
z`^-)q14*zmNB5bdn(*@{kmSVJBu~Mvh9jY140_*p&Xs0K2D?7BW5<rG3h$Bcsi(^?
z(an?7X48+mHQgqaa>atNjmB^Kb$<6^cByInA||vNv&FLZw3hc|$Q-NF(zlW3V`?|N
zUFelWS-#8*g&$mSOo;B_QWzNF)ccoRH^WPrj+J5Aa2s@_;HaWYD(ZR*O}zGgT&Z*6
zHB6W3*w>Sd5tV*`btD?ij^PXaELUU*bCIo3IYx{|3bz#Yc_C@PYB2KkqMxDcpr1Gl
z`D>WNUTiOR+rne-_by9$3tH)V^I<zdXF-yz`a1~sdmB%A{jbl5gV_{5v*5ZGi!Bc5
zNit8aIW3I3TRry(NaiV$zBv%WQibKo+{=lAo3`W3&8^Qv)O4B}ONfkB5rsFw*2tKK
zoibQam2_$gg9b)m`{;STMf|1QNJEHUO}^-g##F)Eax5LBKiM)tq5gd$+0b>3IL=ug
zsL>I4PrUS-xC4fQTof~c8@wS<wGl9}0S4*A;ISHNR#yw{lOpw+uO-7lvq_GYX)&_2
zgc+Y=HgE(YQ4nuYZN;Q(RKLGwVl%M<gX%7}8LRJALqbpHno5tz45>gJ7+dS%K8&y=
z_%0)-pn!f){S36Hxb}Pgk=>CkN7yL^Z}iLD+VjS$^YYv(OJ#7{h#1Y7C0svP&>LJ{
zn){nzrX*#=ThU<ZvM*|MwsG5L>^xoPp6hv%I7F*lyQ-z<`O~5oU1xwDsCF@1FI>#*
zD{5j#>+eoJmRw&&L1-zIl4R+uqLdzJ;isI3HaieuhG%dqnfJnEt`t*qKPDe>SdM@t
zx3#{&(p}gy(YeSqZuR25X(4DbxKL+3vN>eq_GA7kvwR6@Kpgj<-}f<BZ6X<CIt>$Z
zjdx^=V1a|%E*qVp2$k0ymvK)K-PH?k(asVqDQI^Hitk#N-bjhFSXW~t{T8_hCF{11
z270{hRRlt;NexJIOoRv`l>!|!UVT}pO8O>FY8{){itkg{{VooSqwQmvp3$WO97xdl
zNU8;WW6y-fP8g!TB!!O$v`RWrz0|BBuG0yJ9<Pq9b$F^e7$T)5@8zbRAfzrexl&vr
zN_KN%R|niF{8PlofQ6z)38<1+rs^So$t*x4zDd2z^UT*fmEF4Bp&J&@InCkP@&MY@
z`8_KUygaEqnvC%zGN=vWKd;{&Igk;yF7C+6065T}pp3+1I{${E$fX_d5ARg2*pe2*
z%~TmQc*t&O8GhUye%xQ3{yHW0AiM-A>T&7#Db&KR1_zCl-G8N}+C}xdmmqkXZhw*z
zdWsTgT3ro^2pGk#)LnA)&P%=C8?XFp?MEfL*+X8@a587m_5)1yu0X<6Z^6c%A2Xs^
zLA29y4;G;(_z{GmS)pyR+VycDYALlc^ykmj-)9pB)A=HipBSvpG<&P^LTs%7*vEVI
z@_jpdlWB|GrBULy#|sT91AplNaa<<@k)I-K*Oy1wy5DKuSqvQ@OcLfNBLH4ZjcH2E
z=u!p0e^-|Uma=CbGkW?Gu%Am13ZkjRJIZc?mhU~;W#x!!D`2$q^#ceGqUSWsqEJBr
zi%v_+B43Sdmr62A*X#Q5tW%yyrH9LzZ*AWb=RL~qYy*}ug$>jz`IyhaE^DEKj@Dc6
z1E2}f)?4r1X1EC@bU`!y*bz|^D{DGRj`&hx;<srH1<qvmYvX#ays)7Uj<6X0Y&m93
zTUr}SH^vbWb@gr0amjxuSPd7g)Pf-7lY;PHOkvdg75D)5krn$6-H|j_n+4}n&4-U6
zdi8iFnEu0Ue<8Y4v=5`(0>C*5zy)i~*nE2BE2yK5h>6w;i_*H(TgqhS&F%q?ipy)Z
z%8Y=x9>)g#84{h${3@FL3#(pu9f~`+9@H3;MVc=ioKa^j=UoTkbJd1=_dG`1G0iEs
z2Wh^4{41e@o9Bi#@~`;hscBp{*7j?Pwu;TOl-jKxbl@4+S8+mcpwC8;6`0l;_==Px
z6C7{8%;6VAoR8^q#Mgvsr(|u#6rKm_@K`gL)y$fh2yC33Wjc?;N1^52DuUVStwU`a
z{|tPlYT6-<Fk}9+Sj_`8Z48}?O@);gxBa&kz?NUKA$U0dDMV;+D~2L%<%BFYk?xBf
zEoc(a_LonLc`oRL!?Tn<@)>Gu-fw>P_VnmAXs3ScjWlAC#uu;0ZSP!H%s|VmY323~
z=XJMcCwj70;fcUmPNHRR27#!;r?vU4R{t;3Shk;(1cEej#}8&(5Oa>;3fI#s9-+6y
z{#ZAqB4Kd~3_?K#rLUXV2SCi|g54}wvGxE<g{Hv2nIWF1_@@^Hs)@Z&t5Hw5UH$tD
zYHs7sJd;&7GRMG|LR!@Oj5Vm~dp1FJXh#Cyw3>hii^)JtBv$NKKmYr;g5q2VN>Lpd
zZ^&G{-;__Z+vm5)i^&VSFWGq3=tgas&PIOjD!zO{rr3V7q|)mVY%P)@A7<L;QYVLH
z##>%-0sobz0)s_xAVOSj@(Lq8i&68sCk)&^iWBpo8yiv~<Dwy}@*(jkC$P++!+oSQ
z&8uz|!=qP^F4X(%VV99j>!5>`r`jO-d#M?KsT{2f<Ol5`xyDCSwI%YIc9Cw%0YkeR
zZ*(OFOO*jp`Dq>GUy|w$j!FDUJgnI5Q8w-~J+VNNkSJ0eCw%FOm$w!LV@w7KQ?-ba
zhe@_<KLT_Jzm!=ft_$Gezg-^CqRvi=#BgD|-96*6>N6Yp3CRt{J?mip9tLfCO`nB=
zt`d|+(imKQD3Q$9{s~vdpp$>vMRR`ImFY_9V2GWZ`$Oy8NxpvT=c~($`$Dn4{W{+P
z##`=EN=I}8W2T)JCnY+HX1jG(Hh1vHGqeW3FyTM||F5v2;iMASt!GdGSP^)Paq7L&
zU|po@<b`d6im)u&X&)bKHOB+!=iet0D46WsqLQ``8qV)Kr|U>Kfp?d5z3uTCU?xN3
zP|mWL%vD5&!;Lr6h!^9<9z}un@?+OY7V^2lpxoUMJ8VgN=h2o+VYc|2lkqG2h4Z}m
z+l(Yw1e9J<J0P7b_Q2}{!{qt6L_}L@1;Xy3Ccm=qG`m>njr%b=k=vd}sdy9TYn#PW
z{ZNa_0So%X-eAp^?KunoH=aUaWqPONChQ(*hvB=IMxL;^cLuw4CM<~|97I@)^u%?#
zmQ0Z3?N&J{I!q>^r-L!kFuuz%z&w%y0n0^P`&W&iXBinh2Q!57O&fyoRL5hhI_IBN
zzK48#Ih$u8wez@BrXb$jPQ;WuVN_>R&*$%1E;^*$<SjqO>e$)sB+^=p-R0SB0*xyU
z2O-=&5EFI4W1b@`BeNNF%Ki#?ZjUAu?l~FO*hLLQj2;e980&MY+=5WR|2Fte=wY9=
zfVPm}qb4tx?jtUZ#fcWH_uzi21Ymw3{p5<eiZ{--f3LhI67M)9?2+X50_ys&XrXuM
z7kV&u;+M<uXd&2`FuwH`e#N`rqVK3lhWKty0McstbtW}}&zPw(b&j+1D{cJiEx$OZ
z7L<uH42nM(-tk%Q`dewPb+4hk=qkR!b_iN;gx(r0@OoVTaB!la-BQW7w!?aOfOAze
z{V`5-nv$W&5xjI@JWytPbppWK%P8TLS*RFhIQMjpBrMzHFp`Sx>43^Cziz6r(dhI%
zD#PNaiJdHju%a{dRUgibkpz|yu!gkAlKHU9z}<S==uLf28{)j2zFI>SfW1@=Bt}*U
zxr2KfUA&NF=5xv@UQ%T{hK`iFWULAYk9y_;TJps;!S@3H`!Z7fzdIhhdN6HHx<FVl
zM2rZXROxPDZ_VUK4@g^s-15dGH}rV#+H>|;^V=#@EYyY$%KoHvEP^=p00~hpFB`S|
zNx2~(8nw&GuC|+_q3YzHf^r(gGcB{zC{@RtWE#EjLKzwc=#in@KBoQ>nF4(C78ggP
zwN%jdG&rO*tw_3?o#1Jj@90JKkMGkNTnr7->(1-n0iw?)Bjy@T1&dmhQSq<tk+0#7
ztV4fkw9IZ-x@`Zv(O(NfvAbW<@Hq|L#^F5wYQI5Gvh?{i;@bIlYy$z1vq*+jCQK8g
zI7>&2P8#d)(wiVli5g}A*%ngAf1tH|esjz--X@_~tUAFSd8j{4GkW`k$h+ao`B%Zh
znC!R*lhO94_f0hMV=Jr`e$ipu^z(#`L#`#@gq7{y|C`NX8EJumhhN)jm@xR(^WzNN
zv2ZkQ5g*h-<*IR2R<WX4fNT)rgZ@G6)n3|kF3CB*MisGLf9U6;f`Q%$>|!gc+P0^H
z&AYVY;Q-|{xs;&sFQ-+N&t7CMny0G)GVkceYQLU$Cohxsnnmd3ZuR)8FuCmqMO@86
zK~jY7`(+9l!tyqA_N<utn3Qaex%yXwdSoNHozGtu$Gji6%cmWjKe2wIm%4F0d<G0*
z;kd>79MrQ(%kKPg8^<W)Z!FlDb?g+-5AY2gUVD6(9k7Y{4iU3za%W0rqjE$&wsm0=
znk`DxpTVT}_$wI0BJ5Y8->K>U@Q8slJ(b+YMK+CvQ+%=*aVI&FB#>t9a+e+O#ZhV|
z;7Ldr2v~B13>x}+E}&B38#(Y`XzX!Rv8Cc6+V-i#{44&?p<rJWny63g<HmI#OhTBq
z`ZZQB2u0JmsH>$NP~<xrMvUf%p~9sx_1JqOWtEiw8inj<_5_>C5TonmJ#tmZ&W-HJ
zXF7fBws{K+_!5A5B~Ly^h`J4bWj8iQ_cDz@Thu+@L7^$bsWuc9faz`5L|ZJ~h1(EJ
z%r^A6Jxm@%&J%H)0j}z3uQgr!N6AfjY5RqB;o6jp78RT8Lg}XofxSs0{;zE5^M}EM
zr9s6UHd~%EE>k54b9Kyv$ipu^aOpMpaw}5`L_XK|1&*y+wGC|_t(m|(Cx}T9d!J3m
z_U~1`gKsRt?J3&USQjzp^sfD*-wg4x2YtW)y<az^W|!QHjo#!6rV!Ka7ey;KbM(4#
zK6X7$a0q=3vU-9rbM5(}PDk5x-8~fB%gpTW_X%r8yuAndDa6C=r!bS)!`)gCdTi;c
zez9k08m48Sq{`<tnJB8RbYrYH>S=WnyubKVd8Nacke-dtLPAo-YhC+uS^LSOQist;
zm&z8i{f7(~u&5^?MHs%_LN`;47L(wdlTipA9;~IK{ZW}>lk1T^Nothr2SWiV<c&8W
zlQV<br=}XUN;#Wa@dlme$Kz~K(py!Ag5QItex5KC)5K`GNlc4it^lHD>3~6r3g^2E
zs3xfup`}3ZkAg4NlX006mOu~{VQyvi87S0$6D`W;t~SZ!Dd)K5va7a3tkU^(@gnD8
zY~ncW8(Gx_r<vqq3;y6PuOZoO_F$SI6CLSFpZ0M%0(OVjg5xq#c~mDM?Wdid`w!71
zX7wT<ZJd@~sz7xylHUV4Cs-UKU+oB)7~~tdDPtRVEc$6${e6S=^&Ttr30IY>0HAy?
zk5ujU$4nVm(~X!;;-MQpEm)p&jE$>#GHXw{)8gotqu<dlm%nd(7z&o}E(MwaJ-W5~
znaPZ~s>n8L<NY;pVNY`I@1MT<KD}1UU(Fw)Tv@!gh|H%?)nc6cJP-fsw@92aGx7V_
z!iMO%5Q+T*zeEX;5MVLRX|M3+lUZ45tu{#Dm<0%Ult@Y<OGWN&w0nlfIHg-}b4$I1
zlze7&yQM};?4FNp|FDD@>s3&sVt%yQ+-x2vLoQTv47S(PifR{ry)At&<RbMX9!LvB
z8<A+3YB}1WRoC)DD_zim%P!Mk<P-AVop^NL#ixRXLqOnT368;Z{u+%>TYW=9PKN%j
zPKP}+#3mAeSMVZ<HoQ<E-Hg9V+JF<z^&sIusC}LdrCOr-g+TaJu^zM^0gNV}K1mVV
ze}!|*Y7V=>3xW7DUtY_2)oKNl>erWIdAA8|d;|Gfwk#i<lD*JpaJ@-;iCu3%l;@|i
zXW?&cM;8GYoC7c@yGcfazBK<RYZ=A8Onctk9L+0cezC?Z;1gVb>-#fVsMMD_(+(zo
zynJReJ&l`;gd{K}<J^^`NslPFqvbGRgw-|oVd!;U=RGHfrA;j6Ljq*Ou?9Zhm)fg=
zB`6Ed5_z)gBZIS>dlY~yRhr1%H14<sH?_V;Rs~gYPq7vjM5%u?;~vpe2>H-A73Ule
zwPs3AlK8R64m+^cb(_88WyRxOKF0py4hy&r%h3PIiy1wiv}Jui=vF2pa=Reb!rb6U
za7S@~(w`dqw9|F17B}PrcsHemSAieyNx&x!!VI}y(HNB%MuWjilNH@1;rorf`Huo$
zLlnD<;z?uUug$AQg@~X*wbEx>veD)~h={C=v*z%;Hit8Z<0at{pH)bq+7_eswGu=P
z+ujzM@8{qPUtjd)WpSfoc$u<v45yb^nFjM&)5Zg_Ui`1dU>R=z73dwBxqOWs{Ctod
zjBEW=r34Dqhi%>2WlC$+>d0Y_5Jr%b1ZgSA(YM%e?Av}@MFn4y@g*Or+VnX9BBmG)
z@Rm7S@>3~bfwel%w0RQU;%NVPe@_X5DB9j7{gR%GW9)71d0quMu^rAfR?=1g%D^dz
zt@+9_R37N!CI%kq54F_?EidnPRWQPl$4JUQRiN|lK?xv%nIhz%yq`ZQpAe)X!_i=2
zaS|w{GPOlj%6`hEfqcN7_oN@m8!iCgP>*H1^E)}#LiWD6Q_y+&22<MDy~W^kHg^eU
zfV(+*`Ze!UG`9zMDritKvz!_3l0Y+INkG3*e8!wAcbc8H3WhhH5AhEv$+F@&Cr7o!
z>zc2WKHJ#padq<N?%$BEr*_pXB0;WD&5Bm#em&1Z)V#j)oZ;&lGN;c5-?(9=((A9c
zDt+(beSAlJEkx+iNy7%+ErhyZoD3kWvk=H*GgYPE2a(>?5?SxGLFp^bXsFIu&?c61
ztY~W@+#xjf1%&k<7thPnP7+M?xuD0z0Rvm;J{|SSOx_$(CN`@%IQf|?2lv?^sV(K9
z=C4$&qDQzY(b{iHv;Z8Hw>2GJ^d&FaJMa}$boQ3%75R9erKVuOxK2czoJy|yeKA1C
zV75p}32zyVUWW2T2pY;dbOR=OLE1BR<KB=}D<mLbwP<GFgoy<4$>aFc+)c!5!NqML
zj`Oq_jde#-5P}k6L!%k`7C}m)_Z6v5OC?m$4|52RrZ%Ig)`x@4l;cSdnYdwFFn=8{
zfS01jgKR?e%X7K_jIr2*cN2`k#vG>(AZgzyWNULKmxs}TDbESOTQA|sdNA=*ZO(1B
z8jDxwavm|z?cz>PAre++4}gB^uyqOAQz|v>Qs3FTpbe{8do-7{*=wo*_k1|MG5l;{
zCZP!Nlc7*+R5fMPTuOVwK+n4>!k*4V>-9aR3}H-`l>s*^4${F=#ZohS_#ci2>Se42
zW(&QiKlzf0CJh#U1Bj`!7!Zt!2}TeuD2i9BW7yB0KHh6{?DuuAiI|4=Q%NcLErB-n
zRqYo+VX!AOb4Cq$Y;IO*(L5St^Y^9o=QArY80tQTd!LCGklX~=zt54_tW3o%*n49_
zVRKo4wx1h(71`gR<ZfIBB<IR>4%t?%P_hHSEBE2=GE`+_CFHCI{^Is}A(?9M@V}-O
zgU>N#m<xOa=fxf=5GApoiQEBsGojf`7Qg>^hYgtO^~s{syW9Z~U$3h5DdYNXsybTy
zc(#!UwXS3d!Bp{|t(VA9Kx{%b^3hdZu(P+ei`Df4YKw1&ZXx1!gP?DKu}KrzBw9Dd
zRWg#ndyjM2M3HCD#ejJH4ZgN+po8A#l_KE$OG!IPj|1Y%E0s2H`mEG|rKP=V(ZnxB
zT{Zt$7B1hR=2J?Va0A(g<+G?JLv}rv7S*sqXEdmmP3Q>~!!{-r7xx!mc16NvJuHFr
zo&DJqdh9(PGt?N?R(*RW<_q5kfHTY1r+Zvs#f>~osYX_3O0wOFhh9LaE#0TNi)-}1
zb85XuPW>1&wF>$y2s^)b@>&vs-}JDwV4P`Ax8gQ@E{wV*^zuJ&3@+A|ttNH#+Q4h7
zo}Y&8bN~Dv{2t(A&fBL5xN79t5ITx;APN`PR`2n{h1IlzyZWx>s!$S9xoGelJ2TU$
zcN7)3Qj@|sN#}lGhT&uO-oZJMTPb4c+OwpjbzVE!+D1FJr<hT%-im6YUJ@DU3<+y7
zM`I^b4-g<>d830yY^UFR$|G^ct*Koco$COB#a)+cjdbR{N%D>zE79t)gSQz7Z;v$K
z0B;D#=9_i(WS>s;e2xD{^Nis8DM!T|(%dC6eNvKOAfy$!oS;U>P!~{sQuq7hcw)md
zi!XQV$W`l)`Hsy<CH_#hyW_&Qjj(3uAghUOv=PcmxbCpfRS|h^db|(|7rKXDDy4SA
zg!z=wPpaK8c6)VfM(tAJeK07zW(E|*Y_9t+Ux+2902t%Rnhq<pV-Lz$BIIEftlH)N
zM%LHfEd0F)7ER~E;`W&f-|>=rxy;WQ%M4mWTteZaJ<dgxp3wotP1(54u9&Wtj3uQ;
z1$Hgz0)vpE4N9uxR<O`=sb{Z#*_uYy-Bs7Ae9Vb@q326G-3%4CzLfhTe4s6NKMb_9
zTGEM#{}W~9uBBBPZ3Aw_(r<rYxmIWNF<V8PQ#IVVu|doz&cWM)-w%yG%q_x?PO;}o
z_F`{j4x1jrpFaKwJy-Gy_PxH$&&ljO+PaIlxtaEpQ?FHP>F6DO{?@_e)i-e1Do}|-
zQ#E5Su!WSi^wP`Y(uU~jJo$VLf#=d2v|VU6S2a-ld<ThmCm6KXDRs-_MjwA*^|$mm
z@EO$+I)A?f(gex;JZZ>Y?z2Rw%^yaL$6j;@X`{87{TsKugDG`7SB3j^|K}$@_e5+$
z*j|ms9yh{wd()(!0?J2Q1vU35>B)}`oI|OeTrR%kfgikf8ZYSL>@v`J!eWIjIFF~A
z`o64W-eUZ@FByJ})A>#Ib!`i~^RiS0%E&$NDp|9lQ+ZwZq9ksGuAuv^OIk!3wQzE&
z`f!g)+3LnoY_77Po6(lPJp$$tcH8E@E35&$N%eFTrar>59zX4o?km?n^4s&2?uFsK
z_BQ#{q%P1esp|X3)6uvjCROYH76D?>^)SM&M9D^TDm@Xmv&~7`Atd@kL&Wii1JXt>
z>~p+u_ftQ~<@)V7O$q5eO-xMKj<63+xl=H-ASN|A7qY;b>JRtVgCWGzTydE6LUsMI
zENz|&JsilZ@!T;xYT3g{&+P{F0E(LW&M^ix!2l-Hb#zPn*(3eVpa&Of-J{dPPQf@q
zXmZRo3M}GzD{AF2>y9t6{0ot-zU7lh&TYfgrP^Xpi>gdZU$o@9L_D^T^}t*W3B>%Z
zI#_=I?XGYfyGVSy=jpsQ<wE9l4kB;7TyKGg4tnc~ao$*JG<Bv$cFw=DgjA)Qfk|(N
z9X0eY`7luo+4M@2=O4;7nDdQ*8RdNFDFv}!mf6_+jG(L5dOqWf<q3J^2ol$Cu?xSw
zNHVWmpO(KpPF$_7Y8hlqCg`vYa(jK&$~Lh83jjf+)@$$4_AWob4&KsxL)YxEjH!x4
z$afdG0w}l}t`TcUOj75nMG&cOxlT!<CK4xPc$oxvh2o#5>77=cPiib*4iIXgOo7bg
zCUSVAC5YIVEY@fo<;Dz26!wg?NiPo`ITv*MShMiY&P~iFkzW1qD_sZlda*`kQHM1L
z`}{EgEJp;^t)_E+afH}x&F*sZZSab&h8(>qFkN#)i$O0PV|HVPZ29RhF><vaf}}%K
z&p4s5vQCU^T(@N+6#-Y2JX!KD6(*Y$H?2GO3hAJHYT%1Nl?DJHj9x5_@J`dc-@OVt
z$?9)>KGIwLVqI?C<kK2K3j4R7leGz|P~lkp(v#zt1+T{z()jKJzwSz-T-jRP(PWq1
zEA&in8jHtANNqHha(`kWXUp&Da*I2y$p5ULJLrg|$ti>Vwo1YU0sN8fDxZi)f){fM
zdygL-Cs4(DA)TkrQd7vymbRFros1E3&1kB^5boFf?)a`}P1PVAOvDl)1k!J<sz@m~
zSTl_~9%uaP>bN|;r@zm)`bzBTNPbs@`X6R}l>Hkaq#(-m#nOe*bx`G3u||F2$Y;b|
z^g?94lb=6=s1*qT%g>%aw&%=7vIL;)H*Vw0AmO`YS)*h(j2tr<OD3M26jEz23y$pd
zix^kz<L$SI7{8`(f|!LJC@MJkbb|m_U}_UF9WxibBKugZpNW2+?^Utb{Zl+D+&2$-
zDK4YIODu@&s8U7Y<eLo81IT+tTN^(#E_q*;KVnrO??jRh%7OHCcH}&AZACH{s*hD3
zAM}Z~EzF(0gxirqspCvxH!lYdBUvKLqvi*+=pR3BiNN;Dge{=`y)AKiBPQl#4?EMD
z^-h6o;j@wz_B$pt`7xG1;v(#gQ#aMJ?vAH1MLkuIaxARZX!5<LU%B$Xgncq&B6{IL
zmZ3K@jF%Xk<gaW!Yvmgxdg~)Z?1pR}`^S%*H~;L}&bv9Qr?JG2nf8ya8M*2{o)SU}
zBYpff!(G2Tp82A5Mrb+>7@=}Oz@=}7{+paV{OXsi$MwVVg-mQLoxeF(Y$dh&dD(6B
zmq(RMF{%kR3)Mzn=3v67G4QB^^7b^cyO(CQrYVsuba&nZfPdZ~<#xX^-pNRAkpCmy
zU4EgzF!2x=$)M#X<g=hFURX4_ZKCUGKGR|@y@xX}<HuvihCM5faA3$x6^OVIV{+X5
zw=d>5-Nf3^#BYqXWV7}P#}M!ZAU4OdANQ;CK^%se$etl)I1(bYEIt5w*;J{*<F_-{
z(lOi)W){uDL;>$lKf7EWj@C2t(U1X=h~cy3CLOAuYGb8*6Eb!<*-F3wEU_LU#2&_>
z`6Uw2AFx*n6ir5oIq2F(+O7hKU7nmiGugrqFhlN|K^G&ZC6AAfNL-?JN}>Ijgk@ZS
zO5tvL^+C!iOL|vn<kO|PUB+t|={Ky{FG)eNX#GE1$3rmIihGd<Hw{?Ci>icwnos$~
z?iB1n>Gk37!DDmiZr-u5Bq_xfQUZ6y#&X68cBb<Z0z-ItWz#Dd3@Gy{4V@b4$bA}m
z=JlsKOJ0DEf)MCAsX;gC9r|l$-}&(rd_y}+yS(kXAOjRtOLXuTrLD9I9{psmQI(C#
zRb_euLZBaX>vi9dz{tA6wD{>H0Ere$OcXPm5Y~x*X=5_&T;x08IWBZJf-spRdE}X?
z;;U%1=c-g#Fk!)|b48Z4GvYHnkvfAmWO;yvg53D8gJ&-$ue+dcIGoviC5T{lxRab5
z5fM5_bQkL)d`&DmjTS9w3LF6Uty)=?9(vpVLXA*>BD_pprb53a5Rn5JF%Jc=uR<jn
zOuXJ_1E0#^<wBDuZ<hjt_x<amqg0KH2E3NzHSR{qU$`@Du0cV#t0x!C8rTM_BR_ZG
zzO)p|^UUwP`%-NzZlq|iME(A{**2}PM!^2I-A+^3+@Ck>yLMv0zN=`9AfNO0a9AY!
zx9is$fw@11ALT}2$Dmo+@POoU{Z$(aj{bQoQ4b>IKSWpX%@B_6(m5CgVbMkybWnR$
z{aU(=-Jkbcl>hKx-IK6hZcZplLLUD&E)@NK5{<h;%UAm|Rd0PU(fx1w1hPkA|NRDj
z{`+vTO)&+@{GbEt<8Pf}3k85>xLE)F3d6l&1t~qID&QNFrq<h)k9G{3>2dU~dNg!e
zRU-}!Vw=sB4XfhA{hw&!Cpdd&pVbz*z2ezKqFW@G7U9*JDlQqwfT<jEUQL5X(+Avv
z+9ShN!@^bvnF7CfGO54yD+ry#JUO4gU_Wgp=@Ew~(_1#d&ebSsU(_<Lol_J*r)a1m
zyNld=ElxEZm<An=7yIALdo(XM)095&0EC{ep!4fPB1+~@Bt}CtVuZ>`IB9REabt~c
zwo3A$`Y??S#%UJ{6^pKrj^Y?RN?YKNzV|Df!~K7T#(xf!f6kOKhbF^{FS{wo+;L4{
zwdv^3SIr(3dhjC=p=&=u0ZNz?tOb}=F)iV%Mlh2GGsrvJot40KOkDkKwRBdm!3e~>
zW1($ldyA7(Rlqm^<0#Rq-PKJyW2{mVylk>h3$^TNGt_M#WTov@;O`v)>I96ZZ*m6Z
zw{BaU0YdMO;IVDN&2BMEpPRo4qd+H!8TXxItGB7d4t>I+@v5y14GFo(^jCOR*4K1X
zXN8DS9w&<b&(9Os67=D1f-Rou-t}nWpX|Nqy^{3POE{?r63Xg@{?8=2j!4m<hl?3g
z61l!|9O1aXq#G97ms{6=hP_CHPg5Ah<PMHZogz{2SXJ779IZK+h>Ct7>GYIN=#jem
zz8epNw4|pc$ju%xMAc&OP>-5$#|FC%efeFVMk^bO<c@zkd`V2#c*|z}Ze(F{iq!`;
z#vdHM)axVtIK`^<WUCZBS%oP;H3-L8UR;b;S?TkGY?tw$S^0m*<bTc4|2PAQeW*1_
zxsCOROj6C|fwtqy8@%vZB$~e+2(zq|S$6d-4PAqu$7REz8;}$wpV?Ik`M5I$(_dSv
z$LSn>HhmJ4I5p*{rkXkTIhw;gzR=`f|1}-kbHsUYc-o5MzUq8`E_6rWp9l>TeA<;3
z7K??5j$W)`%RTiJqqn31?sP(0tXP#a3gF~j<8<^poWJ*3Y4OTxj`X1zUG_PI74rTh
zoLbZ_s^8`v%xc)`z_Xf@*Z$+;kf9xH`nM0VuT!PY!3#P0dJ!D<V>8_283kqc%m>}4
zF=vbLtT!xui58;`>!5C}!;kLkIJP4+F^=u%{GEv+LPpoB{y5XoZ}>n246<)MB#(Y9
zHdAOuWk!i1#Bb!hFMae6A^a*@c6j~jxAzjnjtk=hum;|C2sd7h03fp2ui8HRLB2~9
z`9j#zWkyQE#q_!*F{15s4RzEk=B?nR{+dB457!ss7L%xR_oJtJ%apBI?IDeS$4{pa
z(RD4osd?MQqnm`YWJ;-rmVmymu>~d~F(pR8H<@uG$K5~Sc*l<z5?{Yf5HJ7P%Tgr1
z^Xb9pvz}YpSQh6aZSV2@yZFH6-7o6hDJzk3(9_$;Wxp>n*9|^EAHBF4NVcx0cRbHl
zFBR8Oj`G~Peib|-dpaLQKh@-W@n(mv|1qwa$>&()eY3eG@wUU$MQACAFO(->52^)_
z3i~Rs7?zul6`v~uIweOJ916rAU8Ownut`y0y$B)u{H%4#3t2t3Ar{T5cWyUfH1Nh3
zaqE%^!`-DqDD@`EUPN#ODJ=YY!7_^0th`sfT3sPWpWMbgx7Ug#Cn<;#sPCZv__BEV
zZiQXlSLiQ$sI+NNW>`wyXr(_|?jS7cP_f<-MmSf7&r+jPS^39d>MstFMt9VwA(DBG
zPWC+?en4)`#*@)orZi9)P!iJBbviK^=IuK*awUM8=YIYrS`<^*r0#_RTSE3DovL=X
zYGs8k(>Zjv{XK<T7C+n`#CdnUqL$S!^#{Yzaiu`C&K#*bI%1o|A0}4Bp}_AEJLF=R
zc<={O=fRYo+k=EY31QPZ8=)jlzv4Ua{_ipvs2wBf^8P(?Era94==j1=PtVA>^@FK2
zwIK96i=I@GJg%$ExkB#eq+hZ4(h>m=nYzt(UoW+fM0SDGHz0&{2Fr<4^)kun3%HRI
z?Fi8vn?1yL3X$liBpY=G#XWgkmr^!JPD%5EN5MZJx!7w~vQF!vO0E1A#>Wq{fc!_J
zV(#7YnvP?N87mK~Z*IL68p*cTm&0-;g*Te~_WN^enbFWuo|*D$^*dcW7%->=PT%53
zf`H*kI0Bp>sI(EGl{yLsI(MQ3ZS}4e2WRrKD+k95LfJ9RZ1-eobi6IoaN~M<R-St{
zE18(CR@<N51m!T#3iz~|FN!fHvmKy_ofj&fDQh{xPb<daB=AciTTXf2kebiVVu~A3
z{wogTQek$JMI9{Dlt7lnjv>VCcHgMaz^No|r)KDT3N6Rb%yY}hq2j!MuD=kcyf^^|
z%)CDL{<xYW@b2~_B7%oV-xjo9<Cd#U-X6~tio>By1tVbmdH<Pz;~WR#`u>2w(qc{2
zsox3>kzYt|0xv0|Wi=H;Xu;DyB<<76W&s6R%?@gNk$cH?TQfyWH`73)8B3w(S+?$1
z*^<fZBAa=})e4fq7r}%!zbl+qUegM1?o<&newXM`w(1ow%X9JL!Q0<&m8%}#mOs<b
zOI_`btSglwH!j;teLSAG{BZm9<ip=rwSTogtXR3~Cu&riRmY;|p^~#Q&xdY&SgLMm
zPGc_rv+EUsVbPjSDYqD6)AvW1+ioWF?p#1dI+lbkp4YL_b6v9-zDlBmRJ~nO<9M|^
z3>gurJO|Q-nVBvCYB&we6h+Q*587}xGZ?Hi%r(7Ab6Kpx{vBSuGM6tkt&zqczQVqJ
zc(En?a_+(Jb%m<IW8CNi_CH?f#Pb845M|y@`p*9{l@gB##VQz7yDdxkL!Bfe9hZ|g
zI1Zu}5pFeXsPRd~Y7^l&<M%svX&ZO2gizk|GMjwY-B(;McyY$kBp9543fU3?W7?7@
zO{e+H1hcAbT&3!5o!J&+WUhx`xboy88E0CpA9)kw0vJ=u-IJ8`A+I`Es2&nuGAgD^
z(sN8|{7(#v#zrz3n8OdZb}SD;uLuox>)e^VeiS4kZn<(eOnJ<{7Y<L|On-=z#8mhN
zZ0c)4`8&m`?0SeXxx88XZ0n+Ybr#>F0@t}-(g<J&4D(<382G9s#z?dqqF;B&bZhKj
z;A#fM6VhB}%VGqqXYXFs8;nUcm@5>X(BD#QG+B%Gi)vXnryBe<ZeLbn^vam&QQ~q1
z<wKWO=$(J7+~e>T3E91%KKZ=KxtVr&ZguRQ5P5Su(2Br-AbMx2W=@Ao1Z7%OKUhxM
zxE(g6YpQqyE*UG=YLXy62L)^XqEI4lldTO_1GGUX0zRowHQ~>N8}zL8(7i6lQQ*O{
zOTxdr_8UIwCkoa?KI>s37R-eZRX`O7VU66xVTz$#7@!rgp3QiAbC6O_yQCBW(~Ze{
zLK3nxCal@xtF?ccfDdgW8T1Z;pudQ6uDraa{l2O%y-`)gh@5gWl6gTuUqFWJdrcya
z!&4;3ot`^M&8p=M&RLIdAWpjQW2|$)kfZ=8pY@ck)%Clk`D!2fZ6s#Q%bDZTLx7{|
zQ$zj<*#fE;eslSv<F~i9WvlbVMuoTREoc4zQ`lQZ#nmNk!-3%LE*%KkxVuYmcefDS
z-63eO1b26LcMSvx?(QBO8hbl)&n+{vzUSi)tixH|`|MLyyXvZ|sw(FcW)UbpOkiH=
zy44p}uD8prBV`S%3k&m2xRtSodzd%O;|&c?f`pf&Gx>^c^DJKJ@^l~qRAc9xT*J3V
zmU!GQB6_p62fj7Zb`ih8PL#<$b)@_-B0SwRwj=4I#r9J0Tr)7*yg#@wNo8_@cpk^`
zT!?x4_P)?MWxA}Dc+5zrFLU+ja=z<{A5TOp^EA&MHT<@_6m>h~8Oo&Y{FhY2s|oUU
z+neXofyahKl4nU8AiZ~yv4N1{UXMxPuX}T)$3Xd_yC_wfCkp`PHE_;O!%Jt}Iz<(u
zp7+D)MBOa5S9#sDF=^X15wAt`664PpVO_?~I-&N14&2?4UnGI-Q5_(T7{;~5G==KG
znx^>!fde4Qw&CmS<I<{EkMqvGR;g}fvb?cJ@NsWO<Q-70kIuJZE~tY;?!}AQW~XK-
z(<8F$9NbmJSj$}3J%!K0xOH%jSNQJy0u(vnkR#glO18||Y~1GXNLdvs8PBPsU8OZC
z(Wv*$;9tH15DN0`TN(@Her897Y=dU>dm%IFES?n5+Ti*p&^g<kbX}IVHO%QYnZn;b
zD*)x)uYsbB!^;G#dY5H+ohr&__8?Ec#SAcFb0rF{57*UxT9+o^wtgd*am||1Wgp&o
zf25ND>laDpJCP;pi3I9oY_M7m3_&6kO>4B)IPW6nk{!rQ;lAM{;HzeQ=61o61386w
za$1dhAFbK}Iu@VUQ<;48$rKYSH03z8YLJ8@Q|0x#veoT43b<J*YcE+LIwp^N)I9~1
z&y~(6y5w^w1W!etz5FENUQ(qhmRz&X^aQh+$ze;HIlJWVM|W#O>ISAHN$ZQwyAH(>
zap<=%MV7fuH|9qubinq@qL-2U0asH{t?(safoCWMsr1&7;(6Fr+%wN?ree7%Wn)p^
zq{XMfvQyTF8)o9=ZKxVZSX2^d4deTW{mil_soiA6>H`uNyg_-74?@B9tSfx3gezo_
zy)M^7rEp44=l04>ZNETax75_w#JQz(U592Fv?tGl?tc%5G2C8oOk);ddVQ5Wad5hK
zqsiT>&fn#_%@JijU{prgU|~2BEgjD5_MPYEY%1ZnJXTi-T+Xtq@<NIchC8!~9AMR0
zcvCucr%Sa3=uRMn8u28??NLe_yIDtoGalG-IC?$wx|YZzxF*+m*KM;@eBR3X@KuH;
z@az6g%9oYUx|!FyyMtqrQ+NbZYEj|Xa`OQ~tl3z-#~5V}%3&cKE({__2oIHVMH1JN
zx!~;U&w<#14X{YOjTW+f_rzGmfD8a2qw$3AgHLNyp28w~>{*ki#l2Fes*z`hunVoy
zds5`XX(^gPA)$aUk<K;Jro158`d|#|kjM#J=1Mf@LzXxyfTHig&ASAe7Yw;a^A^ug
z0kBudvpW$N_4qTYv<AcPpxFW;6gY1?#YOokwM#olq1`V(j1Y|@R`Ns{RZKR3Z?VOO
zwB&_ehp;tC*aP))f5<ljdr<L{2sgr{P3zE=V{d)%Oq~oN!G#>>?&T*=OsQK?Bs1hk
z16K=~Ro;5VE4(YTKnF=)PgkF`HNP@+xs1AasXoKD-D0Fm(H6rt(x+~TH&!2N&Ble0
ztwPVn6n(37yF^>$px{l}=ZPyy>Pu9n%t<@NUt~*-UwXx}XZ7=z1IlK>HcUvn$+rXL
z=3z%~Y2sL8sNB)T#%wG;v+@em-Rf^xDXN9qJ5U<+QI}}UBp%)vIv-_cqARJ`2Y=4_
zREHz~dtG922i!T)m{B{cG}wyHcIIT+tokTcbp2%KlS3cXlt~!HQF}CCieX+mY$&?w
z8QY$YEo$_E@FD$WCOMMCTPB}d>ACLT0Ka1I`ss>5Zu18E8*ZShiOubObwVoV_$^{S
z{TS2>c#7B00wCw7na_(eHywM|$mauP948y*^ESKV=35<CZDTXMv5~J8Ya?er$i}J4
zIwY`fPbBpzlWqcF`Fh<@he;F$Ecv-CRmuvhiaUtBJoj(M_$qkRcV*ItlOlG;#12&+
zCU2JK4~I+Q^dDks6)8s~i2royzKRMBXAEyrwfw{0-~eJjSLm-<uO(B;XI5$>8XG=`
z(9aaAUD;Rog~F$u5+*4lH<Hn4)l#b&l@Vy3;Ozn_KO0tDIV45LlY6Oaw^}!N^4}H-
zvw4A_b`z0yJ}|f{HJYD8+?=gL%M{C3SjrAM=SN_V6yLM?`Wp3ruTOC*RvxI0c={g4
zOXahCj@X#VZA31r_~FsDB3ZTM!|9r>l-8nWvG1z(i1z+0OqF8F6h%BX;#7<BoY$##
zS$h~OR9Qj6s0KMuhjEw6FoD5_fL5#h1JuC%qSJmtEsa&;&$uqyxFAw*l5iO0gFMi3
z*TlZAI^R;;Yqm7M#|YBV{mZgyjyFE7c0R!6cq-sy?J^&=u6nutP@=l^X^(p^Lb1w_
zn*~Q4pT+cNEkpfQ?_he@CFSKgyQ!os7l)sL&3AbDsPS=%C%xJQcSGmJ@>})nSTEo~
z$f`wiY3$|WI7B&OOPN7b3xS2%Jlq*8f;0_A-(ZV|*x@no<At<$zK2h5l@yB{k~yFC
zCcq7FTRMII{Pd=18r`4}1IYQc%6AMQKH22`hAA&r4BAYnZ;@1jh!(xjA?zrgCR4ur
zp`A)|Z(xD(VJ~e=9w|VE<O)1ha&{EB^|o1f61jku?j20E2%BIWX*C}0cOQPIms(l`
zv#zylTJY%;!jdl|2TuCce4(O4$EZy}f-4l8_^?w^4zSVgA}||yQ&tv#EwP>Y*}U=t
zxoZ<Nt}d64Z?u$RtS_!s4k*k-s$Kog>;?r#YxU(Wq_%c(wCIGH(cY4zxzR>H>6V12
zaxJIx2mTZd2J{sqjyzWaD#R_|0Bs1G%kOdEm8`$9Tgp=tMQ9R9rYJ`9>lcUGdGr3@
zfC8*RYMDXj(q~?LQThf0hBEmblb2r0{f)_K*U`yCgKHpDD0EOAW>&%oj*=Io@ulXN
zi=-98F4b0znnq?9fUDw`V7pnff;1mE<ODt9S^n-vT1UHru&$oYClzQ)1*52(%TwOm
zJ(f&ft2}gE$tz84%liQKrI2~l^1$kS!;X_3o`!|AK2SzyBK-vhF_))w1>s4TX4XQQ
zaD2BixV;)(pkY*e2)(wvV>`qCR^G6VX7@r}>6@PEZ`-*>o&LiW<7Vd{w{%9!bgAav
z&sEnwL-uQ3^ghh^!WkEEodXwMtCIrox}L0KBo>j~&qK^mI|);}2tYojb^<N6^9PMb
z$BxnaFjiIIa-Rc9TLZ8UlE(pIaI(8F&D>@1K47{28+5JGE`~?@C8=3Buo2e+M#=!J
z!+=us4`{R4A0GZ4vi<8<KNQqbgN;<fF=r8J=doPeqH=+420?s4LYf4(3y99=dm@j{
zB0a%M#7Yb1C+~_g){k&51A(YoEM}%|@7-pv63XUiG)zKKNY!lnH)<=~YZP}cTbyu9
zh}yKKA)$pE%TsP7wcAaD9eq^FWnGq8SJF*^__1`csx&I4K;L`HYc<=M>!ALVXyksl
z{)Ac<0#F9Glf=^Cvx~Un{zy(ajeG`A*~+Zeu2c$3@K^z1x&4Ov83b_5=-KJ;QZ2Ax
zIysA~n9Lu0r*}ZcdFQ}^a;!F3B@+w)i+9WmqFuo%0}M!>4}zOHwlVuK7oe9UiQW@1
zxa->~%C!J_y|>C8aqCPJifhq#P+vraB1}!8({ZRha}Mr8@;BVowZT!iCGT!!*5*<1
z*dQBdZGy3;b@nWU?Hwc{2{p~T1KgFV9(I(u136dxxa}0gwg_3KQ^R1Z+j9Ja{zF80
z1r39C?+kF`@4`Ua&_wwW%N<%BD50<LNmBMwux4P`K7a#PQ_)zYq=bSTSgeN~%Zxu2
z+&U$aiDaPy+^wv8g4e8p8(@TzmVj#U?aoKR>cgK3ZGb+%+C$>+iFq+|-)ofFS79E`
z)Iu`;Q7>c><tvhHE!gv3qbi__x)*5&_XBwzfPYIb^7YC<97@ed<Sa^p-NyDf(t`7x
ztDEW+)n4nhWT;xqKR71Q{&a)8U^!=fl${R}-=jU?9UMeCvgEhO`Bt2=7L;$3lc`e=
zH?x*ilNR>S9-E(@H+&E%u^J2+jEF^7v~&RRM&W_(LIA{d<57gLIt~H{2Q!ksT}`Go
z)c`M6dd=5r)#<GfqQSK<K7@&M@DIF1iRueqE*6`qvSm*Y@mS5h5C;v~zRuV%>pK)f
z;;?F0YY_1}$orWdul#cAx9s})$jV|8!|_eZl0;xR?_zDi*85erlR$cWJ3~o#(JJ!L
zXcO8BTwuLv!G0Izak8pY0qeGGTIKCQ`6n#OrvUYN#Ut~RjNaekk7ff-20^Qn`N^fp
zsT5AApY{HT68=F*t=DLKub@>0VE9pgm}8sz!y+ncQwF!j%+QR*?$*@oIq;rc8v&PA
zC~c7<U42lmWAKbVxu04sH(6S_Y;d$3>!#qsB;<&$v8)XTXN~#`ap%Gj=Nh0;A>hel
z(Pb6Evu!MGP-CQm$oQxm^j&)6h~B5Q{(3fvbb8s^!z7Wf#gXNKL*=U)7Yz!x*IA&l
zVSxgv^k9SSqHL7Hyn-iswRqZAMD|2#vT#;*_dFybVzXv%-Hp!O&y5<t$@?AyMFs(O
z<N@*(q7(|b(jDjRlr60D4Ti(B4zE2^rQ1cNG|UU0E3xc_J{}Q6Yt5UdL1rd<G9t*{
zH)kvMA{|U^j;yq#r?bJ+XJOBfh{Sc>5oW829V60k%$#URCVg{0wD?TWi+Q_qtVw1d
za99;_ZSU~_#j~_olFhe$pGy?U42pIObIO7ClFF_fl#<sVqSpC}<AfIBn0_D1f?au(
zT`o?Co7b+}$+h{)-Iy*yhY=~q+UUz7Q<D2IOY`{68#^4#CU{V$ywhOLMR16urU%e&
z=Kdslgg>v?<Jn^7)>dh?_GwtMawgE-v>clRF&DC~x79To?n2L7glW8$iC&RS7t*!K
zt6W~>lOM@vMKSGGMu9?xvcfwa)eB&MN9Sw!kVB6+oq7wUCU6J4YeFwzIE8J6`?!KB
z&>v9asAgCIkH{CRS*mO6X1UgN5?=He+)*1@xx>VPr{T5rsY>{Xw61#zre;LoaDgR|
zB8R)8ZbJPS!sGPRuT?JESI|+t=x_Wm7XiWn><tb}xBNr$w$c1$>dqI8-!o@<a_R(S
z*Ypr+z*-t>A`$U9$A5g{pDz&TZa{n)+SlY(?55MM<xA&nLVdZ5uI&|$OnzBMF2Jea
zt*)hzU7XC;w~6+tiw6f}c}q-gFUF<1&uZe9%`<OAbB7ZX*sUmSA4#wchDmC!Z#1%|
zY7?wfk#gdS#?f?FeAem&#|)b+DP*wN>-#Tko?F>1W|G&jdZ1;%Lun*_T8*u%f0l13
zO^9Dkt?DBF!HjK7o8(|d+bOc_c2<L}8F75LTE{!D5xHi&uBG*MQGf7~Fx?TR#{U88
z&T#qebE}4EQ=yZ+vo{R0awAt;w{bA}U@;mdzK$zN^}t6V0;s&u?pf>=;}S09boHSq
zCB}y#5WSZ*!^AbKoj!5H;xtcS5Gk!VMHn$PvfH^}A(N1Y;zB@rMxA|wOiv|x6S;rT
zfR&qRwWA1=egC5W&4+LO@Cm%+&7?Y`5W5Y^RZPGc+^UuGK{yNCiw<&#mf&W<QY}hN
z08SOc*cV4!hV^3I6Yi1o6K;@y^SiK62=4KK&bC{U9IS3diC$wE6I9_eC)2S{PUuA>
zOAioaR^z$s(lwDS3DF8K$G68j`;2-8%$Vk7o`$<n8fuDsqGZ=8dT<O{9pal24-vKK
zIs+-mqYjBL;-2gIFQeDT@ej1)NFZW7=NQ2WmHteABD($7fz(U$(P+S0o{~VnWfk+B
zRfBKj;g7qsa{8TMuO{%EPFgEgy~HvbG0!rO^3gswo;mtk`5y*`0nJ*$4=HWRsjKgM
zZ&n)lL#=JbN6tpkV38eq0h)dG5b(7KIP%4$rua}7RVO}-Wl1Q$fEVOT{~fKqN6mLH
z^3_zCXSlZ`+O?Kncs{=&vz&~Ovs?pYc>MM-0HozbFi|fu1G|BUTzM<a*g`<=y%=8O
z29ok6DBO%{5c<FKn`ltR7?8#-m~j%KOJsi<S~y6h2qEwQ@)EFHe=VPeBW+|{S*}o}
zaL^IGN+bC)rCKc{;92mI9b~si>r@Mu6?Z}U<dbrJpD7gqZbzk(2jjw(DVt14u8BmS
zA{ewct|JCf9{Xak@CLM1X4j0IBmVAotmO)~<Z6f?UY#G@bT!}CM<DNHv9`HlINVz6
z)oMM_^X4I1TCG@)3e^rg+^|;%yS=w2NCKJkL*D}X64+rVMKK-ymhw^VIVu919t(od
z3l+v^J&DKdQMu)N&=!;5+6vpp9aQO*NKNrLUqW&IN2Kh@ZA$7U_Enx&g#kR4L}=sf
zyNkXO?bG>UnY&E3&7`kjzT$1C_5enG0JeLECyLq0GYu(ltO4AaJ8Q5O8(My8o6YUG
z&?R0RQ@)h^OeU+ROPMdr{RCwqskI(8iYnNhAZ+)i)rR}-U?I#<gg-AkHPX8)&5O{u
z7YR<2RslQR-}+E%P@<j)6O)oVjMV>?I+;<jIoF=RmjzakapZF#>&5N@{OX!tkZ<M_
zBan<#87|AwZnZqR){{n^8kK%~0VTup<%6&6dtn-{%}aK*_r?$zTu#CrZ|CfF3QZtW
zj_I_Snrc5C-anub@K(bX(HCKj=siX%N=?4(xt8nw*yREt&5LC@f0Ej!eD0Gz6OZ_O
z__MIaF$RX>Q=LYcN>@%75Z5(KYNjKo!HoDQ;L`0d)rJES<{|@uMd>r(OdGA}t&7`>
zWipx5(;`_FBCJNJ*ol*e+3NIe*{0=MPn15mE8{^fk^b1OVY`?Jx==g1X8ASAH83tV
zJbtUwvq0IhV!3bFvQnplrWrZNOeW?f&%L6(gl>!Ilzq^%VlIX`<6$kMA-Emez2o(9
zou`qd%mz4ODOgY8>1x6r6J_x_-^z^qY8K)c{@q|iHR<k$F_F`tUXNyuyyiUqDxI-j
zbQ+t67FqAnS)W_#H@{lNyA=9`K--1;!y~5w7V(o-0p}T%NZxYSjS);(7^b<f9y0~L
zRmPJ9wLp_A?<K!_GWTD^A;~&uSKf~G^U0&S)!sp==YmW<dC)uO6F~xbCbA&`OqD%X
z27XnCY|)kK$33NT35(C~>F|vx?#z-Jqa%{`|2!kQoy5CC6&yZ4C%)*GC60h88GuIe
zYNI=NT0QD^WeUn`_+<k5WP!cu`rr9%IgvLXezQH$pmfDI=1$*4J78wc*i$gdm#mp2
zfg6#SMJsXGtjX&%o@UFF)@z(;8h%x-S7pb39Xc6AI-kmy->v=Ds~Phkz+#reIPSe<
z(C)1D6&|0pkW=Gy%6tYL4{HbQco_nsoa<I2KSl<6Fh{I<(4XvQX6?u#Zv`7$Z_esN
z@@mc|@3cPgVEbBglVu&%E}`Cg{Hs28JbA~i<=mW$nrSb|)1WVWhA?-+9|OGj%F&6*
zho9E&@$U(zH(7l(9QJs|HACvWG(CHAzi0ZlPccWHbTr)|&Ea+)kYbiZLs{KR4P&;M
zNglB3(DLuSo;CLAM&~uQhfUP@3SZ_+CG;NpR$Mr+fq@^IojzUmDu{R!yQ;~X4a>ib
zs+0b<xyDl1wffb9CdpDlEPUMXNeY14Qk52;;Vi!Lt<|_b60zn3|5n4t^New;&fN0o
zEYw0Naxb7Utc~k!M&;-))2^Q$U7$@|&nC0CBN_a4wR3e%Yhzd66FMZ4?9K^N&Y2~D
zzt&o+MMCI5yicJOi4AZsgLnqLd-smYYcBuSOn%R=CWtJLzmt3~4D#8&MG-&FG4?!n
z@8j^%AL#zJq>Ox!nP|LkkRvczYl8MuSj@8F{bcjP<BC+ybh+b4Iht{-dK1MyN~KYH
z+dE%*xd})X(rLsCrLdYg7jdIc<)Q$~$J9m95yJXV%i{|(+uzop2^xt7_NMu1Y9fcK
zrBz&Vdls1(;H}4`GJTQHX!&5^^AvqiBXbwM1RFT^H94F`^6=Nnhm(VeJ#+O3J&%1b
zFG1f6LEYS}HTT0HfxOV|cT%TUAq*{a@#rNJh9RX^+zalxsy21E=)Kks_5x;hOkVf1
zVxkOKjj|gPS@TXebDNYa0>QQ^iTtM2p}|YCX$H-^X8{|CHe%!)M~YLO79MS<%u3=_
zSGS5azC}i7Jx~Pqb}<oHqh{>%66>r?JBNtI(91Z!XYN>w?fjdJ)O{r;MCX=CwWOQ`
zKpR3s8_nS2$etnw>qD3_6q?S*tHe_xzik5S;iOP$EXJctnk8zRWGn`_esrjDy>^kq
z>B5h}xpqW{U!6t48nlG~Sq*COz2X2PAe4dFs;bxMb97-ci9BYS-d)ATL%Nj4kN!*!
zyZ&L^RSSNMCU4#l5K4&&t9s-7nK3q|{e3E`NJ=bG{QWKiyPZS;G(!x<YOFKoPfn%E
zrRY%l)KFmT@|Vbs1`iN?XALYw?08tyRXfxi-9*}g@H!fz<ZmX@zxi01q>$)7tbARq
z1(g3%^?%Z|{<`VEFLI)zIS$Enzi;`IuJpgukUve%AAFI?aQ|4|$?(n@`hTqbKd2=C
zd4HgP8XR29Hl^V=-M^Rm->dkK^#&Y>fsw@nF@vMOcI^MWA40fW4jjBWU@}QD{Lh+l
z;GkAJ6eQ)-qm;P<N%`{MO3E)DEi{}{^ZS6}!OhY?J!bYDt=+POtmt-mq>ZO{oixl5
z@w!BxL9O0sdqg9E(^j;4&CX+!R!vz3e=twZTm=+Zn<E~tY?F$f9oW}PoRSXqPI+lt
zJdhZ#@T^x|VoCVC^TA~Er(`gQB}_G;Yv155g$oUrJVb*~YOif-|Ld)1?_+VB<D)#<
zyDFuvrBs$%xxc7W0m+fz9cK1$&bRrmofKjtuLd(0cwBCCSJl(IoD&LP>VBN@+VQs!
zNFT2kjyGX*Uhi96??}Nx|C@5L>UC#xZagxU88l=8COGI@jsNff9$s^we-&>v+N*(v
z2M;YYdghs$ALG59ZXNR?(~B;H{^QZgPVd-O1I-8zz`z-8n*$OfbIsiO5WF+kH_&GV
zvjNtN7_tX|oENR|xAi<tS1J1`%g}uLNDJpb_lmK$xjeLEikgiDt_ip@K`74|t$xp#
zQDB(C^NGvZSF>SvV^U?N;m#iPQuO_LvB~7H4c!kdjO2r^j*2?hFz=t@0HAyq3!r3|
z_^0>y?>%8g44^On#Td^>1txKDOR&>{iBoLV^RUdNay1pqdo?z5)t=VJf%WsB{T+}L
z(px@&5!LL%o3cgao~g<qSb7?(!s|wJB_ESab0s|k(@{Z}TMS}8*VK_jYP`i<qCL*&
zxIQs?efJ39@a6oGdd_750&uEo{U?0A$vQf%L2Yawfe}5o=N8e?OeGCAO{`8q+S45d
zm`DTd^64tI&-+s3Z)pcJ1>d>l;uz5A{eA6U5^awk&>}OZ9C&|m$OJS*CFK<jzT7t*
z&@z!uoQb(5<t`})Yz=&oOmid2hVS#7G7*S+9l92;w|Z5QPU+1e=ul1prxSCJ2zhL2
z6KK`_aTwM=ppx+AqOMy=hiV!<tRK<G^Qa*lf%Kh5zA<N1tjy5FO<%e!&(wiC!6~n$
zYgt^bf3bjV6IdQiqy`V-%v0cLtY1#Tf33_04+B$dWuqy%YO7KyM6yuhNvF#iKZm?`
z<^)~#EXxfuN*Rj?PNFvJ@Pg_3YP34>+U@FJyfHt&c(6FVNNaaE;8NVk$o|HLb*SW1
z{Xk=%e&=vpxo;FR#QZAGMnAWMt!nO`tSZ(>mdq~ym~9#5gtmzJgh3ANZbXTBFyc-`
zc6*1LU^1nw!3VGAs+aHIFtDl<T5QlZv<lsY&2HYT9M6}30OPxPYdzwVj4FGR0<LZe
zyplMcG<GOAD{C=P%XgFI&}Hy0340e7cOTzg-pC1oGu9u7wWLzt=~*V&tmOM0>|PF(
z49nz1s5Z}o(jHxJK=iaj(hF`nY>Ief%!BT`A;d@59lf;<^lBlQtd-HH-i>d1@Mg-C
z^l#=99^Mu((iJo5+b3uQFRzqJ*<4;+DA`osi8cY1L=2Yt=lH>6cXQ?mRr4I;_DWx7
zi*+N`EI|<?2%N^zd(EsX%y#Au%a!X$iV??6>&51a3|=--;S=MRsVQtuHIC1r50T72
zbBBI1N|AxAZj~W@!OnJe06%YS!NB`g*KHhRq8qB&V$}$6UQM*Z#tZL|ndOYr-s^5C
za=`gy#)CGNim>BVogDJJWy4GQ>AO}EFDKO`ohk`veb%z#<wrZ^&J``<ao7`JvYQub
zW_BGegG!vI8jT5PhRtD+3|irM{#bEfO5FO?rso(6N<3Gr(=w|>z2?1<kNm3}xGWee
zVmZdZt?^Wb8tV9Dq#=!ONOYfyPQ!oyF7kXA$a&CYadn8KvuHM+tp1f`vCg#mv_^ss
z_gCty6>=ro>F)G%Q&ZJqANJLj##-pl&h$l=63}#^d`?lwDaiH8^N63MfB!s<EqxE7
zt*aiR`KApMPmH_nV?Bk{Y(2-S*?hWoEKFj8WOSC1GBcIWwJmEeLDLd>brlXUJ}I$$
zMK-~M!DJ$;>{xyKy~dyBq&p2ROoziRm&OeKzqpWJh2B(tdwI6YAVUthJC}ZuJ$mAy
zn4wtA3yrZDt$bUqIws%u=%OV3Lr{x3JejT9&|<wdhm1-7(!yuB!XH3M6Rq;9u%5?B
zFq=)Pb(jbc_9nQ|a})5$__9Z*oi~-E+YBc?EX{>Rp*SA%bYoZW#%2KF7DN29W~+n8
z#dck`fb*4Wj3E*{ct=z*aBn0t{3ZP+OZxKHBsrzS9JA46a>&hjZdllZ3}><1!9G}p
z;Ya2Kvf5=HQM2j?X2I>`Ic*j_VnNP!l3Bh#BN8hePS#GAqLxef4jP4h0cU-v9Rj8p
zdlad+6OK11Bd42PKe8Pu5GEDYePp#*i;CEFL!*UrG58;AY)47N1t3E2);$wevBw$;
z-ez`pna?*RD0>~H7er(W&q>J!3WwaDmdp1uYBgy2aJ(w+O#YFi4Zaao4+&%oTInRl
zV|al!K6xWb|3&Ko-i#-HSP|x}&T!%Bqs8oC213~%$>iii&?@n=7azl2km#yQ3y&Yu
zItr<v%(I|ZOy}98eoNib(6$A|C)_Z>SRKJj-OhgL3nk2tz}^c&26JrS&rM|{WA>p6
z`=J%Q*ZHo9Pmnbb%AzJ8XB(4WP|jv0UO3{UFI$NoY&a<yr+&&ewt{sDEq^C1%1XI}
z?7`wgmb`2{WsYxFW05M&w`p9`2BrQ`Y>B;R7zB{fws|#~04nnS4br6{nAW7)png2D
zNMg(`>CyrK!gwz#q4TO=K|GG6%C%v?i*8^tzaXHrx-H|+p~oZ`Mx5O3z1(eM<fX<i
zMW{0GX9#3RyyZRd>XySCrzL;&pB)LYdAybsL8>N_-RL*3^<+3-1!sfvnBRI)L*Cw5
zAgc1PCIYgrx!wijdADZV-m-f&2QFABmXSpfUgKk%DZ4LfKYCG>Gu7bsL|Cm&-N-Jj
zsGT;rjEu`|iNTksPC~L7?wIxpz$+szY$yicG=H=j`Al$2jRx{OZv<<|gdyX>g%QwF
zvkjway1B)cUBVIjPY<#^3ha5TNvMus{(0r!ju%<L8>~+h2>T|Z=z^A`i7<*U$Jz6X
zEaurq3DQegmO5HAFhIie%!xE0aMtt-Y+i1YdcxGm5$qfhAmC`eTqqoqN*M>Jm~44*
zr!Z2PR!R%aRIUULZ$=zk8EAHi<z1=3hzpp$$>Y&%Mca5^qMh^E@*Jo(I<@#kW5z3=
zv^!$@Nmhcw9EeAqH<8|DJ*pF}N3yBvMX4^|_lz#TEb4l~-#ao}dc<9>Y1m>?FI$am
zxDS&k^Zgs;yZY^w0w663DqRppjWNa?bv1#=Yb|q69$R}M%aJ-`)dv>pUg6vVQ(Z;@
za{So(+flPw)^zEK4DveqarmW`LahU?Zf&@To1&))x@s7IN0P+%iiumMZDo~NN2)+c
z?)w>Ug2vXsgz0GW8V4rW4OhfD<?3|LAZ(C(Aq9)c@d!9M&5C&Qa!)+VpebualG)|1
zrg8o&f|+{!ipVJs%r8?-uW(~pJAe%f8lBiHnk8!LC7#m&JTR$il2*h0Oy;&$rE_=K
zymVoAG1zU1_K5JvVAe~8yV9y!zQ5S6xe*hYW!3fBdZ4yKK<gN10v`haJj0q0_CU`7
zs`%UL%qe5L=YTgqZ5--Dxl;3Tc0tsL<eJ&pbY&0z*Spd<s#kDU6hIxy-dcDs$lJ8;
zwmU3~C})7Y_9ag*!H{;<xH@m!A|%Fp<Xhf)t?iI&ZKk2GuwrOXkM!jM0MZ68y;DXh
z_m}|^`^z8DH$;MwnoA@CZ8amI?<=<=_+Qk8vX6Ah*EkzozP1Q>5Avn<Fw7>FFNq{9
zEMem0jYB<Rcgh$N&$Z0Qu(|)hYW>bUS?`b5=Nro)M_byRY<M2bwM?#WrVOi|zkr!B
zCZ(68`wzMSR)As`Y+%U$gf9JXQ1%!Gi1B(-DY4Bxrf;C6rRjxFP{6gaZw10hT^$KV
z9BkkNoqbQ{kRXF8#DKt@g<wY&nL+c)?rZaSr-vgsnLA@1daQkIWhN;w?+Q``#`fEs
z-D+7_fsS<w<Ulb_{%jzN?HYm_hDb>ar~&Wd=fsH~X7v{C4l<PV#`|zgU|AZWE`zQB
zJ~+klE9-_AiXgPD?8+MdZKO~ypP7b<wveZV)Ml3K4dV72L_!ndPprB<DbUZ>>j*f)
zua22R;F-t;c5J03E43-pse*kS@i^=P6T_&n3g8UjX6ic|OEdVqX^D^4dMSc;S}m`z
zZ5@H5U1%guk>qsv>ER57hfIRZAGQ7Yo0-eF&yd`jIaY>oaCmP&Yd2(P+><Ut=a)OQ
zPm*fPhqavlOJZ<Sko*TU_x1a%2f9Jqv^v^`dc4|xfWY+dJZ^+<s7?@%fPPDX1D<LF
z%W!i*qapp<rca*hZx0hVT%<GNS$=_dJh#$M>t>OM(=%ibJ{rwi0eZf4W=T?nLL<;I
z*1&)(BaFy6t<RZ^Ef|(*vv`|btshfs)6+W)*%Rnevo>5&K3DO7&*CM#Ien>IY72?X
zknS%1xI1<GZ7H*7fFO+W33f5G1LKUm>*zLGI*4Bh@m5+>P9*&lT?%>KYJ4xB!JzW*
zXbCMsXu<AhVA%f%h8Qno6B1Ppy2jpF$74iyfblGKm}JoOu6q@BF+h=s<|@)->~3&+
z-aT}BT>`Q{6FZ^>>B_uW8{CVys`lv3MSvy_VdEJq)t6uRH@T$Rk?!CrF}ighrH3v!
zE2+iF;h;3fh2H6;(&zuUJT|y0)-4ga7T@QHus@je!=iE^;)Qu&M!E3bq8X@D-$=b+
zn+xLNx%Z2%(DB{x-n0J#1%xA2=UeY0l@Lf?9SrUhi&FSRhaB1Tkik42(n7z6r(@#x
z)Az@8PX{ke855LMQ$&-=kK>ay%V^#{eq7AA0D(;qBSW}{PqtlVCAu3^Z+ajvqvm!B
zG!FTAza^>zhosA*`jv2z!wtd~^w}^QcNBa462zeu17_v&#t}2;c7VGQARCR;{JMY9
zvTHO6NVvMkzSKc_i)wYjmc=j|2HeW;L8j8peI8?u@Xh4YXla_Ua2U|EF~>kS<9t_L
z2&n~)o2kBoG6+}mS%^T`&|xvK0t&X~CYsg3JjUK!o~KM>4e?LcixCoXEAdnu&+IVo
zKi-p2xv=5Y_*+^42SL02fW$}w`4_!W6zZSouMiH_h7_21&I$wiG(RR*u>1LX4jqP#
zP(qNKw8OIA1}xL1FS%)Ci^+cD%5gM;5;3D6>SdxOBTmprUQK=1iA3jbf9Zw3E-7I+
z8_TLAQ4pzDXMsBed{{PexN8|ZTr5DNlR_ckuh_b$#>5EaP6ll{_#an6pOnIFzqy2B
zraAfkAfsV{1oRgU>88imO}0q#N?C9;gl%&d!4Km!aX$Q9i`E56wei*W9jpmsykJo&
zq>~}@(ETLC`maj3q2-?#*d}G8gX~=QIm)qptE8Y#uUF<-SQ7#TaN-gi5g<C~me98+
zvN=@yOc;Tke!ol(ioqT5bhwTPx7sgyVZuVWnLEuInPI$mX1ktmA%i}x=P2HVR|5!m
zY)i*@`bvGxy~1XR*b}YTNh87K*P&j_<(#p6VY4b>^UUwLb+E}oG{Sl;6*}B+$!ElM
zy+JYarUO&Kv(uqOk`YaiyWfz&Elt;RR`U2qw|;F|2w;8c$M!m@zL=hMgM};mMr0**
zPCqze<il#RCY=^cb!lUc8v`f>9DAIzw1PtpBYx=1qlFTtW6FMs(NWul^l)CU&%91k
zS{;}Ae+Itp=)d7NT%-7cn7`HaH{?_U1JTchH(1o`03whc1a}$Xv3`8j=2XugkhD+e
zmmX;)^2@`^dhe!zP)9~|HceUUMNdtwWLul>TZ-2oEwtgRiQ=<ZP%$b_{tHywuw1M%
zLHa!g`?Y}k1%4%y8?zspr>BNCmQjh!0DHSHvvyL88^n**o58K#Z%OI;+wTk`uZw;x
z<tfGFZ{x61j2e`C3H`?Zr6n%Ggs6q=yva5nYqj|8951-dg4vhS4LB`y4alM=UO#r(
zs0u-omEDd#T0P8Y4>so&Hth~0Dl_PdzM@}IfeU;FD0o9q6Qa=_aRFe8;#W_-CQoix
za<_!mTl^dW+#g9nsdW^wiN$z2dK{His=zX1JAWcEI*b``lg`v__2xdvHy5cOq!%?U
zbt48B3(|-N&gHxI(LhHMW^G?1U>()FE439`>dVuy->o`e$qk}Kr%#_b7YKF?%nC4i
z6B#SgW|hvaGx=&7R~#CDI{>$If#rKabuR?#d4d4pYPUeV0lpAyl>ARUD<ip;+xw!Q
zPP$24zuzE$gP=NhdTd{bd@>1ba8*hPtj@6^s*p9CM*p-o^>QTe_N7zQR|Ur^EC!0x
z=3|fVLWd~g+O+vJnA?(YJhByhsT{O~tv2N$>;5h}Zjzl+zkAoL$W?BZ1UeVi<ZY8H
z^=L|Son$jBRmLpv{Lf=O02cy+RG`H8SK~98vlfUNEE{Vge^lzly1n|}Ni0`aZ04_;
z2%NUP_M54h?qZw)TiYjbXntd}f1oO`0W?mDmloE7B23nr767IuASA9n93;v>Mq91b
zx{`LQE70dci4dEJA02phk`Sb_!Q&dk>yk~X_<?*am^V-$0PZ4R-h}@?<Be^=h9jIQ
zetAIa4T*4;&rE9e2R6j1JX?(#&OJAmABHVg?{~uKVZPNM^)pY_1c8a%G3yRLIf#S$
z?@6|U8VOD2#cmb|jyYRl*#z$9I%bL7LfWtk*DMX3<G0J#&+5MuN5<kD_pJ#SsTFnb
z_s?=$GR#{FB!kcVpyY%52g6jh+9opBpQtD7A8Y3Iod~YX``0fw{Qxm5=n7XkC?>o$
zl7{+ROQMlBB1q&X6oZ}QU9-(w&o^mJv-ihu-wd);oUN{sucXAO-;DeXtJT8kHroeG
z70B$nGDAQ>IA3oO@4{t+yJ9?LqzOICncnCf+ftl84{q8Xe)~&x|ALVDM7oI`A$Gz!
zp(-1Q!i(O2;eBSBJFO51Q0*mEH1K_8efKhc=#*3}-Le(WY9(Rf(&&|cS3g#{7sSF2
zA+Ac9hpsNIb=^l&6XcCYTE-j^Q6t`=?Yu(uytu4U_OOBE29)hs9pBf=tn+P~#&KhE
zq^hVvR=>hLEZ-}xAzINHgLTp_n^1orS$Dex#AUYT`@Izmzqg{9M}S8nxu#=0Ud}x$
zT2I51?CcD^^0qIo@dL@9AON5e07&F@FneD>8Ysl}`|rs&t*SJC0LN%W=-pDg?ur{a
zv2<%NZy3VuzY(7WY}IbCJvI<FaTm&u>_^x+8-sEqZJdqiTqIEf4wCb#1%$ne!O)sy
z<;6FhKZOttN*@lY-*G<}@8e<qf1Gdr05oo>-0gf8`AVG({TSUCV|iOmZqtb^ZKRCk
z>7(I>9dZ2S;hgs^d6<8EI=V3xkEGr|!En2G8=2cycC)m*|94U6KTWLrXK-vs(nFc@
z|AVFfRoNXz0tVH?NmdHf|J=I2{`HqA{O4!!i3kl7#~8-R{_}hPuN8`+LW-P;p`Iz1
z{nrlte<mSF-l3hxx$+-e<PDLSCH|jZR73iEb~d<`1``<SpRvl|w%@^mUhUX#xXcIq
z{X}r0fVC-TnG*3+oO;L2k?JBxs{hF${Pj4PP}$7}^~P~=s+T+*05mXF<0GT4oZI>8
zU31H_D`~EZIpfkLqi)St`K&JM$CI(N4%ir#;~3E7=R?E}t@8N4(mn2|5a$_5)ysvi
ZZ<iju=d`Fk621ZdNQujfRf-q}{y)k&c%}dV

diff --git a/sample-reports/finserv_security_report_phase3.csv b/sample-reports/finserv_security_report_phase3.csv
deleted file mode 100644
index bfa3882..0000000
--- a/sample-reports/finserv_security_report_phase3.csv
+++ /dev/null
@@ -1,190 +0,0 @@
-Check_ID,Finding,Finding_Details,Resolution,Reference,Severity,Status,Compliance_Frameworks
-FS-01,AWS Shield Advanced Not Enabled,AWS Shield Advanced is not subscribed. GenAI API endpoints are vulnerable to volumetric DDoS attacks that can exhaust token quotas and inflate costs.,"1. Subscribe to AWS Shield Advanced for DDoS protection.
-2. After subscribing, explicitly add resource protections in the Shield Advanced console for each Bedrock-facing resource (API Gateway stages, ALBs, CloudFront distributions, Route 53 hosted zones). Shield Advanced subscription alone does NOT automatically protect resources — each resource must be individually added to receive protection.
-3. Enable Shield Response Team (SRT) access and configure proactive engagement.
-4. Alternatively, use AWS Firewall Manager with a Shield Advanced policy to automate resource protection based on tags or resource types.",https://docs.aws.amazon.com/waf/latest/developerguide/shield-chapter.html,High,Failed,FFIEC CAT | DORA Art.6
-FS-01,Regional WAF Web ACLs Present,Found 1 regional WAF Web ACL(s).,Verify ACLs are associated with Bedrock-facing endpoints.,https://docs.aws.amazon.com/waf/latest/developerguide/waf-chapter.html,Informational,Passed,FFIEC CAT | DORA Art.6
-FS-02,API Gateway Rate Limiting Configured,All 1 usage plan(s) have throttle settings.,No action required.,https://docs.aws.amazon.com/apigateway/latest/developerguide/api-gateway-request-throttling.html,Informational,Passed,FFIEC CAT | DORA Art.6 | PCI-DSS 12.3.2
-FS-03,Bedrock Token Quotas At Default,"All 224 Bedrock token-based quota(s) are at their AWS default values — no quota increase has been applied. Running at default is a legitimate posture, but it should be a reviewed decision aligned with expected peak load rather than an oversight.","1. Review current Bedrock TPM/TPD quotas in the Service Quotas console.
-2. Request increases aligned with expected peak load, or document a deliberate decision to remain at default after review.
-3. Implement client-side token counting and pre-flight quota checks.
-4. Use Bedrock cross-region inference profiles to distribute load.",https://docs.aws.amazon.com/bedrock/latest/userguide/quotas.html,Medium,N/A,FFIEC CAT | SR 11-7
-FS-04,No Cost Anomaly Detection Monitors,"No AWS Cost Anomaly Detection monitors found. Unexpected spikes in Bedrock/SageMaker usage (e.g., from prompt injection loops) will go undetected.","1. Create a Cost Anomaly Detection monitor scoped to AWS/Bedrock and AWS/SageMaker.
-2. Configure alert subscriptions (SNS/email) for anomalies above threshold.
-3. Set daily spend budgets with AWS Budgets as a secondary control.",https://docs.aws.amazon.com/cost-management/latest/userguide/getting-started-ad.html,Medium,Failed,FFIEC CAT | SR 11-7
-FS-05,No Bedrock CloudWatch Alarms Found,No CloudWatch alarms found for Bedrock metrics. Token exhaustion and throttling events will not trigger operational alerts.,"Create CloudWatch alarms for:
-- AWS/Bedrock InvocationThrottles (threshold > 0)
-- AWS/Bedrock TokensProcessed (threshold based on quota)
-- Custom application-level token counters via EMF",https://docs.aws.amazon.com/bedrock/latest/userguide/monitoring-cw.html,Medium,Failed,FFIEC CAT | DORA Art.6
-FS-06,No AI/ML Service Budgets Configured,No AWS Budgets found scoped to Bedrock or SageMaker. Unbounded GenAI spend can go undetected until the monthly bill.,"1. Create cost budgets for AWS Bedrock and SageMaker with 80%/100% alert thresholds.
-2. Add SNS notifications to on-call channels.
-3. Consider budget actions to apply IAM deny policies when thresholds are breached.",https://docs.aws.amazon.com/cost-management/latest/userguide/budgets-managing-costs.html,Medium,Failed,FFIEC CAT | SR 11-7
-FS-07,Agent Action Boundaries Look Appropriate,Reviewed 4 agent(s); no wildcard sensitive actions found.,No action required.,https://docs.aws.amazon.com/bedrock/latest/userguide/agents-permissions.html,Informational,Passed,SR 11-7 | FFIEC CAT
-FS-08,AgentCore Runtimes Missing Policy Engine,"Runtimes without authorizer configuration: vendoriq_vendoriq, test_minimal, strands_claude_short_timeout, strands_claude_getting_started, proposal_drafter, harness_harness_ctuux, executive_summary_writer, document_generation, datetimemcp_Agent. Without a policy engine, agents can invoke any registered tool without authorization checks.",Configure an authorizer (Lambda or Cedar policy store) on each AgentCore runtime to enforce fine-grained tool-call authorization.,https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security-authorization.html,High,Failed,SR 11-7 | MAS TRM 9.1
-FS-09,Agent Lambda Functions Without Concurrency Limits,"Agent-related Lambda functions without reserved concurrency: Dev-DashboardStack-DashboardApiLayerAgentSessionsF-EnQLRGDeLRkn, fedpoint-kms-poc-create-bedrock-index, Dev-DashboardStack-DashboardApiLayerAgentInvokeFn3-r3fQdrJuboTX. Unlimited concurrency allows runaway agent loops to exhaust account limits.","1. Set reserved concurrency on agent Lambda functions.
-2. Implement maximum iteration counts in agent orchestration logic.
-3. Use Step Functions with MaxConcurrency and timeout states.
-4. Add circuit-breaker patterns to agent tool invocations.",https://docs.aws.amazon.com/lambda/latest/dg/configuration-concurrency.html,Medium,Failed,FFIEC CAT | SR 11-7
-FS-10,Human-in-the-Loop Check — No Agent Workflows Found,"No Step Functions state machines with agent/approval naming found. Verify that high-risk agent actions (e.g., fund transfers, account changes) have human approval gates.",Implement Step Functions .waitForTaskToken patterns for high-risk agent actions. Route approval requests to human reviewers via SNS/SES/Slack.,https://docs.aws.amazon.com/step-functions/latest/dg/connect-to-resource.html#connect-wait-token,Medium,N/A,SR 11-7 | FFIEC CAT | MAS TRM 9.2
-FS-11,No Agent Rate Alarms Found,No CloudWatch alarms found for agent invocation rates. Looping or runaway agents will not trigger operational alerts.,"Create CloudWatch alarms on:
-- Bedrock agent invocation counts (threshold based on expected max)
-- Lambda invocation errors for agent functions
-- Step Functions execution failures and timeouts",https://docs.aws.amazon.com/bedrock/latest/userguide/monitoring-cw.html,Medium,Failed,FFIEC CAT | DORA Art.6
-FS-12,Bedrock SCPs Found,SCPs referencing Bedrock: InnovationSandboxAwsNukeSupportedServicesScp.,Verify SCPs use bedrock:ModelId conditions to allowlist approved models.,https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples.html,Informational,Passed,SR 11-7 | FFIEC CAT | ISO 27001 A.15.2
-FS-13,Model Provenance Tags Present,All reviewed models have required provenance tags.,No action required.,https://docs.aws.amazon.com/bedrock/latest/userguide/tagging.html,Informational,Passed,SR 11-7 | ISO 27001 A.12.5 | FFIEC CAT
-FS-14,No Model Governance Config Rules Found,No AWS Config rules found for Bedrock model governance. Unapproved models may be deployed without detection.,"1. Create custom AWS Config rules to detect use of non-approved Bedrock models.
-2. Use AWS Service Catalog to publish approved model configurations.
-3. Implement a model risk management (MRM) process per SR 11-7.",https://docs.aws.amazon.com/config/latest/developerguide/evaluate-config.html,Medium,Failed,SR 11-7 | FFIEC CAT | ISO 27001 A.15.1
-FS-15,No Bedrock Evaluation Jobs Found,No Bedrock Model Evaluation jobs found. Models have not been evaluated for adversarial robustness.,"1. Run Bedrock Model Evaluation with adversarial/red-team datasets.
-2. Use FMEval library for automated robustness testing.
-3. Schedule periodic re-evaluation after model updates.",https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation.html,Medium,N/A,SR 11-7 | FFIEC CAT | MAS TRM 9.3
-FS-16,ECR Repositories Without Image Scanning,"5 ECR repo(s) without scan-on-push: bedrock-agentcore-strands_claude_getting_started, bedrock-agentcore-strands_claude_short_timeout, cdk-hnb659fds-container-assets-123456789012-us-east-1, bracket-predictor, vendor-iq-dashboard.",Enable scan-on-push for all ECR repositories containing model containers. Consider enabling Enhanced Scanning (Inspector) for CVE detection.,https://docs.aws.amazon.com/AmazonECR/latest/userguide/image-scanning.html,High,Failed,ISO 27001 A.12.6 | FFIEC CAT | DORA Art.6
-FS-20,No SageMaker Feature Groups Found,No SageMaker Feature Store groups found.,No action required.,https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store.html,Informational,N/A,SR 11-7 | FFIEC CAT
-FS-21,Training Data Buckets Without Versioning,"4 training data bucket(s) without versioning: bedrock-agentcore-codebuild-sources-123456789012-us-east-1, bedrock-agentcore-runtime-123456789012-us-east-1-2h09526czr, sagemaker-studio-123456789012-vs7m9hvz7np, sagemaker-us-east-1-123456789012.",Enable S3 versioning on all training data buckets. Consider enabling MFA Delete for additional protection against poisoning.,https://docs.aws.amazon.com/AmazonS3/latest/userguide/Versioning.html,High,Failed,SR 11-7 | ISO 27001 A.12.3 | FFIEC CAT
-FS-22,Knowledge Base IAM Permissions Look Appropriate,No wildcard KB permissions found in reviewed roles.,No action required.,https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html,Informational,Passed,NYDFS 500 | FFIEC CAT | PCI-DSS 12.3.2
-FS-24,Knowledge Base Metadata Filtering — Manual Review Required,"Found 2 Knowledge Base(s). Verify that metadata attributes (e.g., tenantId, classification) are indexed and that Retrieve calls include RetrievalFilter conditions for tenant isolation.","1. Add metadata fields (tenantId, dataClassification) to KB data sources.
-2. Pass RetrievalFilter in all Retrieve/RetrieveAndGenerate calls.
-3. Validate filters in integration tests to prevent cross-tenant data leakage.",https://docs.aws.amazon.com/bedrock/latest/userguide/kb-test-config.html,Medium,Passed,NYDFS 500 | FFIEC CAT | PCI-DSS 12.3.2
-FS-25,OpenSearch Serverless Encryption Policies Present,Found 5 encryption policy(ies); 5 use a customer-managed KMS key.,Verify all vector store collections use customer-managed KMS keys.,https://docs.aws.amazon.com/opensearch-service/latest/developerguide/serverless-encryption.html,Informational,Passed,NYDFS 500 | PCI-DSS 3.5 | FFIEC CAT
-FS-26,OpenSearch Serverless Collections Not VPC-Restricted,Found 5 network policy(ies) but none restrict to VPC. Vector stores may be accessible from the public internet.,Update network policies to allow access only from VPC endpoints. Create an OpenSearch Serverless VPC endpoint in your VPC.,https://docs.aws.amazon.com/opensearch-service/latest/developerguide/serverless-network.html,High,Failed,NYDFS 500 | FFIEC CAT | PCI-DSS 1.3
-FS-27,No Guardrails — Contextual Grounding Not Applicable,No Bedrock Guardrails configured. Configure guardrails first (see BR-05).,Configure Bedrock Guardrails with contextual grounding checks (grounding threshold ≥0.7 and relevance threshold ≥0.7 for FinServ use cases).,https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-grounding.html,Medium,N/A,SR 11-7 | FFIEC CAT | MAS TRM 9.2
-FS-27,No Automated Reasoning Policies Found,"No Bedrock Automated Reasoning policies have been created. ARC (GA August 2025) uses formal verification to guarantee that GenAI outputs comply with authored business rules — e.g., loan criteria, regulatory thresholds, policy constraints. Without ARC policies, factual accuracy of outputs is not formally verified, only heuristically filtered by contextual grounding thresholds.","1. In the Amazon Bedrock console → Guardrails → Automated Reasoning, create a policy document encoding your FinServ business rules (e.g., eligibility criteria, rate limits, regulatory thresholds).
-2. Associate the ARC policy with your guardrail (automatedReasoningPolicy.policies field in CreateGuardrail/UpdateGuardrail).
-3. Set confidenceThreshold on the policy to control strictness.
-4. ARC requires cross-Region inference — ensure your guardrail has a guardrailProfileArn configured (crossRegionDetails in GetGuardrail response).
-5. Reference: AWS Announcement — Automated Reasoning checks GA (August 2025).",https://docs.aws.amazon.com/bedrock/latest/userguide/automated-reasoning.html,Medium,Failed,SR 11-7 | FFIEC CAT | MAS TRM 9.2
-FS-28,No Guardrails — Denied Topics Not Applicable,No Bedrock Guardrails configured.,Configure guardrails with denied topics for regulated financial content.,https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html,Medium,N/A,SR 11-7 | FFIEC CAT | NYDFS 500 | MAS TRM 9.2
-FS-29,ADVISORY: Compliance Disclaimer — Manual Review Required,Application-level compliance disclaimers cannot be verified via AWS APIs. Manual review required to confirm GenAI outputs include required regulatory disclosures.,"1. Implement post-processing to append required disclaimers to GenAI outputs.
-2. Use Bedrock Guardrails word filters to block outputs that omit required disclosures.
-3. Document disclaimer requirements in the AI use case register.
-4. Test disclaimer presence in QA/UAT before production deployment.",https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html,Informational,N/A,SR 11-7 | FFIEC CAT | NYDFS 500 | MAS TRM 9.2
-FS-30,No Bedrock Evaluation Jobs — Compliance Datasets Not Verified,No Bedrock Model Evaluation jobs found.,"Run Bedrock Model Evaluation with compliance-specific datasets:
-- Fair lending test cases (ECOA, Fair Housing Act)
-- UDAP/UDAAP unfair/deceptive practice scenarios
-- AML/KYC edge cases",https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation.html,Medium,N/A,SR 11-7 | FFIEC CAT | NYDFS 500
-FS-31,Knowledge Base Data Sources Past Review Threshold,"1 data source(s) not synced in >7 days (a configurable review threshold, NOT an AWS-mandated limit):
-- KB 'fedpoint-kms-poc-knowledge-base' source 'fedpoint-kms-poc-content-data-source' last synced 194 days ago
-Confirm this age is acceptable for each data source's currency requirement — slow-changing reference data may legitimately sync infrequently.","1. Define the maximum acceptable data age per use case (e.g., intraday for market data, daily for product terms, weekly/monthly for regulatory guidance) and adjust the review threshold to match.
-2. Configure automated sync (EventBridge Scheduler → StartIngestionJob) at that cadence — see FS-61.
-3. Set CloudWatch alarms on sync job failures.",https://docs.aws.amazon.com/bedrock/latest/userguide/knowledge-base-ingest.html,Medium,Failed,SR 11-7 | FFIEC CAT
-FS-32,ADVISORY: Source Attribution — Manual Review Required,Source attribution in GenAI responses cannot be verified via AWS APIs. Manual review required to confirm responses include citations.,"1. Use Bedrock RetrieveAndGenerate with citations enabled.
-2. Include source document references in response post-processing.
-3. Test citation accuracy in QA before production deployment.
-4. Consider Bedrock Guardrails grounding checks to validate response accuracy.",https://docs.aws.amazon.com/bedrock/latest/userguide/kb-test-config.html,Informational,N/A,SR 11-7 | FFIEC CAT | MAS TRM 9.2
-FS-33,KB Data Source References a Deleted S3 Bucket,"One or more Knowledge Base data sources point to S3 buckets that no longer exist (NoSuchBucket). Retrieval will silently return no results for these sources, and the integrity of the KB's grounding data cannot be verified:
-- fedpoint-kms-poc-content-123456789012 (KB 'fedpoint-kms-poc-knowledge-base', source 'fedpoint-kms-poc-content-data-source')","1. Investigate why the data-source bucket was deleted (accidental deletion, environment teardown, or a stale KB configuration).
-2. Recreate/restore the bucket with versioning enabled, or remove the orphaned data source from the Knowledge Base.
-3. Re-run a KB ingestion job after restoring the data source.
-4. Enable S3 versioning and MFA Delete on KB data-source buckets to reduce the risk of unrecoverable deletion.",https://docs.aws.amazon.com/AmazonS3/latest/userguide/checking-object-integrity.html,High,Failed,SR 11-7 | FFIEC CAT | ISO 27001 A.12
-FS-34,Legacy Foundation Models Available in Region,"Legacy/deprecated foundation models are available in this account/region: anthropic.claude-sonnet-4-20250514-v1:0, amazon.titan-image-generator-v2:0, amazon.nova-premier-v1:0:8k, amazon.nova-premier-v1:0:20k, amazon.nova-premier-v1:0:1000k, amazon.nova-premier-v1:0:mm, amazon.nova-premier-v1:0, amazon.nova-canvas-v1:0, amazon.nova-reel-v1:0, amazon.nova-reel-v1:1. This API reports model *availability*, not actual usage — it cannot determine which models your applications invoke. Legacy models have older training-data cutoffs and may produce outdated information if used. Review whether any are in active use.","1. Identify which (if any) of these legacy models your applications invoke (e.g., via CloudTrail InvokeModel events or application config).
-2. Migrate active usage to current model versions.
-3. Document training-data cutoff dates for all models in use.
-4. Add data-currency disclaimers to outputs from models with old cutoffs.",https://docs.aws.amazon.com/bedrock/latest/userguide/model-lifecycle.html,Medium,N/A,SR 11-7 | FFIEC CAT
-FS-35,No Evaluation Jobs — Harmful Content Testing Not Verified,No Bedrock Model Evaluation jobs found.,"Run Bedrock Model Evaluation or FMEval with harmful content datasets:
-- Toxicity detection
-- Hate speech classification
-- Violence/self-harm content",https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation.html,Medium,N/A,SR 11-7 | FFIEC CAT
-FS-36,No Guardrails — Content Filters Not Applicable,No Bedrock Guardrails configured.,Configure guardrails with content filters.,https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-filters.html,High,N/A,SR 11-7 | FFIEC CAT
-FS-37,ADVISORY: User Feedback Mechanism — Manual Review Required,User feedback mechanisms for harmful outputs cannot be verified via AWS APIs. Manual review required.,"1. Implement thumbs-up/down or flag-for-review UI in GenAI applications.
-2. Route flagged outputs to human reviewers via SQS/SNS.
-3. Log feedback to DynamoDB/S3 for model improvement.
-4. Define SLAs for reviewing flagged content.",https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html,Informational,N/A,SR 11-7 | FFIEC CAT | MAS TRM 9.2
-FS-38,No Guardrails — Word Filters Not Applicable,No Bedrock Guardrails configured.,Configure guardrails with word filters.,https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html,Medium,N/A,SR 11-7 | FFIEC CAT
-FS-39,No SageMaker Clarify Bias Monitoring,"No SageMaker Clarify model bias monitoring schedules found. Models making financial decisions (credit, insurance) may exhibit discriminatory bias without detection.","1. Configure SageMaker Clarify bias detection for all models making credit, insurance, or employment decisions.
-2. Define protected attributes (age, gender, race proxies).
-3. Set bias metric thresholds and alert on violations.
-4. Document bias testing results for regulatory examination.",https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-model-monitor-bias-drift.html,High,Failed,SR 11-7 | FFIEC CAT | ECOA/Fair Housing
-FS-40,No Evaluation Jobs — Bias Datasets Not Verified,No Bedrock Model Evaluation jobs found.,"Run Bedrock Model Evaluation with bias test datasets:
-- Demographic parity test cases
-- Equal opportunity scenarios
-- Counterfactual fairness tests",https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation.html,Medium,N/A,SR 11-7 | FFIEC CAT | ECOA/Fair Housing
-FS-41,No SageMaker Clarify Explainability Monitoring,No SageMaker Clarify explainability monitoring found. Models making adverse financial decisions may not provide required explanations (ECOA adverse action notices).,"1. Configure SageMaker Clarify explainability for credit/lending models.
-2. Generate SHAP values for feature importance.
-3. Map top features to human-readable adverse action reason codes.
-4. Store explanations for regulatory examination.",https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-model-explainability.html,High,Failed,SR 11-7 | FFIEC CAT
-FS-42,No SageMaker Model Cards Found,"No SageMaker Model Cards found. Production AI models lack documented intended use, limitations, and bias evaluations.","1. Create SageMaker Model Cards for all production models.
-2. Document: intended use, out-of-scope uses, training data, bias evaluations.
-3. Include regulatory compliance attestations.
-4. Review and update cards at each model version release.",https://docs.aws.amazon.com/sagemaker/latest/dg/model-cards.html,Medium,Failed,SR 11-7 | FFIEC CAT
-FS-43,No CloudWatch Logs Data Protection Policies,"No CloudWatch Logs data protection policies found. PII (SSN, account numbers, credit card numbers) in Bedrock invocation logs may be stored in plaintext.","1. Create CloudWatch Logs data protection policies to mask PII.
-2. Enable masking for: SSN, credit card numbers, bank account numbers, email.
-3. Apply policies to Bedrock invocation log groups.
-4. Test masking with synthetic PII before production deployment.",https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/mask-sensitive-log-data.html,High,Failed,NYDFS 500 | FFIEC CAT | PCI-DSS
-FS-44,Amazon Macie Not Enabled,Amazon Macie is not enabled. S3 buckets containing training data and KB data sources are not being scanned for PII/sensitive data.,"1. Enable Amazon Macie in all regions where AI/ML data is stored.
-2. Create Macie classification jobs for training data and KB buckets.
-3. Configure Macie findings to route to Security Hub and SNS.
-4. Remediate PII findings before using data for model training.",https://docs.aws.amazon.com/macie/latest/user/what-is-macie.html,High,Failed,NYDFS 500 | FFIEC CAT | PCI-DSS
-FS-45,No Guardrails — PII Filters Not Applicable,No Bedrock Guardrails configured.,Configure guardrails with PII/sensitive information filters.,https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-sensitive-filters.html,High,N/A,NYDFS 500 | FFIEC CAT | PCI-DSS
-FS-46,AI/ML Buckets Without Data Classification Tags,"12 AI/ML bucket(s) without data-classification tags: bedrock-agentcore-codebuild-sources-123456789012-us-east-1, bedrock-agentcore-runtime-123456789012-us-east-1-2h09526czr, bedrock-usage-intel-failed-records-123456789012-us-east-1, bedrock-usage-intel-processed-data-123456789012-us-east-1, bedrock-usage-intel-raw-logs-123456789012-us-east-1, dev-vendorcommandcenterst-knowledgebasekbbucket1bf-bfoajiinsr4n, dev-vendorcommandcenterst-knowledgebasekbbucket1bf-dttwp5qrbqyq, dev-vendorcommandcenterst-knowledgebasekbbucket1bf-mure4ntcjmmf, dev-vendorcommandcenterst-knowledgebasekbbucket1bf-pivy5zfs0whp, fedpoint-quick-kb.","Tag all AI/ML data buckets with 'data-classification' key. Values: Public, Internal, Confidential, Restricted. Enforce via SCP or AWS Config rule.",https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-tagging.html,Medium,Failed,NYDFS 500 | FFIEC CAT | ISO 27001 A.12 | PCI-DSS
-FS-47,No Guardrails — Grounding Threshold Not Applicable,No Bedrock Guardrails configured.,Configure guardrails with contextual grounding checks.,https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-grounding.html,High,N/A,SR 11-7 | FFIEC CAT
-FS-48,Active Knowledge Bases for RAG Present,Found 2 active Knowledge Base(s) for RAG grounding.,No action required.,https://docs.aws.amazon.com/bedrock/latest/userguide/knowledge-base.html,Informational,Passed,SR 11-7 | FFIEC CAT
-FS-49,ADVISORY: Hallucination Disclaimer — Manual Review Required,Application-level hallucination disclaimers cannot be verified via AWS APIs. Manual review required.,"1. Add disclaimers to GenAI outputs: 'AI-generated content may contain errors. Verify with authoritative sources before acting.'
-2. Implement post-processing to append disclaimers.
-3. Test disclaimer presence in QA before production.",https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html,Informational,N/A,SR 11-7 | FFIEC CAT | MAS TRM 9.2
-FS-50,No Guardrails With Relevance Grounding Filters,"No guardrails have RELEVANCE contextual grounding filters. Without relevance filters, responses that are off-topic or unrelated to the user query will not be blocked, increasing hallucination risk in RAG-based FinServ applications.",Enable the RELEVANCE contextual grounding filter in Bedrock Guardrails with a threshold of ≥0.7 to block responses that are not relevant to the user query. Also enable the GROUNDING filter (≥0.7) to block responses not supported by the retrieved source context.,https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-grounding.html,Medium,Failed,SR 11-7 | FFIEC CAT
-FS-51,No Guardrails — Prompt Attack Filters Not Applicable,No Bedrock Guardrails configured.,Configure guardrails with prompt attack filters.,https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html,High,N/A,NYDFS 500 | FFIEC CAT | OWASP LLM Top 10
-FS-52,Bedrock Lambda Functions on Current Runtimes,All 3 Bedrock Lambda function(s) use current runtimes.,No action required.,https://docs.aws.amazon.com/lambda/latest/dg/runtimes-update.html,Informational,Passed,NYDFS 500 | FFIEC CAT | ISO 27001 A.12 | OWASP LLM Top 10
-FS-53,WAF Injection Protection Rules Present,All 1 WAF ACL(s) have injection protection rules.,No action required.,https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-baseline.html,Informational,Passed,NYDFS 500 | PCI-DSS | FFIEC CAT | OWASP LLM Top 10
-FS-54,ADVISORY: Penetration Testing — Manual Review Required,Penetration testing evidence cannot be verified via AWS APIs. Manual review required to confirm GenAI applications have been tested.,"1. Conduct penetration testing of GenAI applications at least annually and before major releases.
-2. Include AI-specific test cases: prompt injection, jailbreak, indirect (cross-domain) injection, system-prompt leakage, and data-extraction attempts.
-3. Consider AWS Security Agent for on-demand, AI-driven penetration testing (GA March 2026; available in US East N. Virginia, US West Oregon, Europe Ireland, Europe Frankfurt, Asia Pacific Sydney, Asia Pacific Tokyo, with cross-account shared-VPC testing via AWS RAM). Open-source tools such as Garak or PyRIT and manual red-teaming are complementary options. Verify current regional availability on the AWS Security Agent page before relying on it.
-4. Document findings and remediation for regulatory examination, and tag tested resources with a last-pentest-date for audit trail.
-5. For DORA compliance, include GenAI in TLPT (Threat-Led Penetration Testing) scope.",https://aws.amazon.com/security/penetration-testing/,Informational,N/A,NYDFS 500 | FFIEC CAT | OWASP LLM Top 10
-FS-55,No Output Validation Functions Found,No Lambda functions with output validation/sanitization naming found. GenAI outputs may be passed directly to downstream systems without validation.,"1. Implement output validation Lambda functions in GenAI pipelines.
-2. Validate output schema, length, and content before downstream use.
-3. Sanitize outputs before rendering in web UIs (XSS prevention).
-4. Encode outputs appropriately for the target context (HTML, SQL, JSON).",https://genai.owasp.org/llm-top-10/,Medium,Failed,FFIEC CAT | OWASP LLM Top 10
-FS-56,XSS Prevention — Review WAF Common Rule Set,Found 1 WAF ACL(s). Verify AWSManagedRulesCommonRuleSet is enabled for XSS prevention (see FS-53).,"Ensure AWSManagedRulesCommonRuleSet is enabled on all WAF ACLs protecting GenAI web applications. Additionally, implement Content Security Policy (CSP) headers.",https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-baseline.html,Medium,Passed,NYDFS 500 | PCI-DSS | OWASP LLM Top 10
-FS-57,ADVISORY: Output Encoding — Manual Review Required,Output encoding practices cannot be verified via AWS APIs. Manual code review required.,"1. HTML-encode GenAI outputs before rendering in web UIs.
-2. Use parameterized queries when GenAI output is used in database operations.
-3. JSON-encode outputs before embedding in JavaScript contexts.
-4. Validate output length and format before passing to downstream APIs.",https://genai.owasp.org/llm-top-10/,Informational,N/A,NYDFS 500.06 | FFIEC CAT | OWASP LLM Top 10
-FS-58,Output Schema Validation — Review Required,Found 1 potential schema validation function(s). Verify structured output validation is implemented for all GenAI responses.,"1. Use Bedrock structured output (response schemas) where supported.
-2. Implement JSON schema validation on Lambda output processors.
-3. Reject malformed outputs and return safe error responses.
-4. Log schema validation failures to CloudWatch for monitoring.",https://docs.aws.amazon.com/bedrock/latest/userguide/inference-parameters.html,Medium,Passed,FFIEC CAT | OWASP LLM Top 10
-FS-59,No Guardrails — Topic Allowlist Not Applicable,No Bedrock Guardrails configured.,Configure guardrails with topic policies to restrict off-topic responses.,https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html,Medium,N/A,SR 11-7 | FFIEC CAT
-FS-60,ADVISORY: Contextual Grounding for Off-Topic Prevention,Contextual grounding for off-topic prevention is covered by guardrail grounding checks (FS-47) and RAG configuration (FS-48). Additionally verify system prompts explicitly scope the assistant's role.,"1. Include explicit scope instructions in system prompts.
-2. Use Bedrock Guardrails relevance grounding filter.
-3. Test with off-topic prompts in QA to verify rejection behavior.",https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-grounding.html,Informational,N/A,SR 11-7 | FFIEC CAT
-FS-61,No Automated KB Sync Schedules Detected,"Found 2 Knowledge Base(s) but no EventBridge Scheduler schedules or EventBridge rules with 'bedrock'/'knowledge' naming were found. Note: this check uses a name/target heuristic — sync automation with other naming conventions, AWS Step Functions-based orchestration, or native Bedrock API-triggered syncs (StartIngestionJob called directly) will not be detected. Verify sync automation manually if applicable.","1. Use EventBridge Scheduler (the AWS-recommended approach) to create a recurring schedule (e.g., rate(1 day) or a cron expression) that triggers a Lambda function calling the Bedrock StartIngestionJob API for each data source. Classic EventBridge scheduled rules also work but are a legacy feature.
-2. As of December 2024, Bedrock Knowledge Bases supports custom connectors and streaming data ingestion — use direct document ingestion (KnowledgeBaseDocuments API) for real-time updates without a full S3 sync.
-3. Set sync frequency based on data currency requirements (e.g., hourly for market data, daily for regulatory guidance).
-4. Configure CloudWatch alarms or SNS notifications on IngestionJob FAILED status for sync failure alerting.",https://docs.aws.amazon.com/scheduler/latest/UserGuide/what-is-scheduler.html,Medium,Failed,SR 11-7 | FFIEC CAT
-FS-62,ADVISORY: Data Currency Disclaimer — Manual Review Required,Data currency disclaimers cannot be verified via AWS APIs. Manual review required.,"1. Add data currency disclaimers to GenAI outputs: 'Information based on data current as of [KB last sync date].'
-2. Expose KB last sync timestamp in application responses.
-3. Alert users when KB data is older than defined threshold.",https://docs.aws.amazon.com/bedrock/latest/userguide/knowledge-base-ingest.html,Informational,N/A,SR 11-7 | FFIEC CAT | MAS TRM 9.2
-FS-63,Legacy Models Without Lifecycle Management,"Legacy foundation models available: anthropic.claude-sonnet-4-20250514-v1:0, amazon.titan-image-generator-v2:0, amazon.nova-premier-v1:0:8k, amazon.nova-premier-v1:0:20k, amazon.nova-premier-v1:0:1000k. No Config rules found for model lifecycle management.","1. Create a model lifecycle management process.
-2. Subscribe to AWS Bedrock model deprecation notifications.
-3. Test and migrate to new model versions before deprecation dates.
-4. Document training data cutoff dates in model inventory.",https://docs.aws.amazon.com/bedrock/latest/userguide/model-lifecycle.html,Medium,Failed,SR 11-7 | FFIEC CAT | ISO 27001 A.12
-FS-65,KB Data Source References a Deleted S3 Bucket,"One or more Knowledge Base data sources point to S3 buckets that no longer exist (NoSuchBucket). Document-change monitoring cannot be assessed and KB grounding data is missing for these sources:
-- fedpoint-kms-poc-content-123456789012 (KB 'fedpoint-kms-poc-knowledge-base', source 'fedpoint-kms-poc-content-data-source')","1. Investigate why the data-source bucket was deleted (accidental deletion, environment teardown, or stale KB configuration).
-2. Recreate/restore the bucket (with event notifications and versioning enabled), or remove the orphaned data source from the Knowledge Base.
-3. Re-run a KB ingestion job after restoring the data source.",https://docs.aws.amazon.com/AmazonS3/latest/userguide/EventBridge.html,High,Failed,FFIEC CAT | DORA Art.6 | ISO 27001 A.12
-FS-66,AgentCore Runtimes Missing End-User Identity Propagation,"The following runtimes have no JWT or IAM authorizer configured for end-user identity propagation. Tool calls are authorized only by the agent execution role, not the originating user:
-- vendoriq_vendoriq
-- test_minimal
-- strands_claude_short_timeout
-- strands_claude_getting_started
-- proposal_drafter
-- harness_harness_ctuux
-- executive_summary_writer
-- document_generation
-- datetimemcp_Agent","1. Configure a custom JWT authorizer or IAM authorizer on each AgentCore runtime.
-2. Propagate the end-user's identity token to downstream tool services.
-3. Ensure tool services validate the propagated identity before executing actions.
-4. Do not expose propagated identity tokens to unauthorized third parties.",https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security-authorization.html,High,Failed,NYDFS 500 | SR 11-7 | MAS TRM 9 | PCI-DSS
-FS-67,Agent Action-Group Lambdas May Lack Transaction Thresholds,"The following agent action-group Lambda functions have no environment variables whose names suggest transaction-value threshold configuration (this is a best-effort heuristic — a threshold enforced in code or in an AgentCore Policy Engine rule would not be detected here, so treat this as a prompt for manual verification rather than a definitive gap). Without explicit limits, agents could initiate unbounded financial transactions:
-- Dev-DashboardStack-DashboardApiLayerAgentSessionsF-EnQLRGDeLRkn
-- fedpoint-kms-poc-create-bedrock-index
-- Dev-DashboardStack-DashboardApiLayerAgentInvokeFn3-r3fQdrJuboTX","1. Add transaction-value threshold environment variables (e.g., MAX_TRANSACTION_AMOUNT) to each agent action-group Lambda.
-2. Implement threshold enforcement logic in the Lambda handler.
-3. Configure AgentCore Policy Engine rules to cap financial transaction amounts.
-4. Route transactions exceeding thresholds to a human-in-the-loop approval step.",https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-engine.html,High,Failed,SR 11-7 | FFIEC CAT | MAS TRM 9 | PCI-DSS
-FS-68,API Gateway Request Body Size Limits Not Enforced,"Input payload size limits are not fully enforced on GenAI API endpoints. Oversized prompts can exhaust Bedrock token quotas and inflate costs:
-- REST APIs without request validators: VendorIQ MuleSoft API, VendorIQ Dashboard API, IsbRestApi","1. Add API Gateway request validators to enforce maximum body size on all Bedrock-facing REST API methods.
-2. Add a WAF SizeConstraintStatement rule to block requests with body size exceeding your maximum prompt length (e.g., 32 KB).
-3. Set the max_tokens parameter in Bedrock API calls to cap output length.
-4. Implement client-side token counting before submitting requests.",https://docs.aws.amazon.com/waf/latest/developerguide/waf-rule-statement-type-size-constraint.html,Medium,Failed,DORA Art.6 | FFIEC CAT | PCI-DSS | OWASP LLM Top 10
-FS-69,Prompt Input Validation Functions Present,"Found 3 Lambda function(s) with input validation/sanitization naming patterns: ISB-InitializeCleanupLambda-myisb, fedpoint-kms-poc-user-api-clean, fedpoint-compliance-validation.","Review these functions to confirm they cover: special-character stripping, format validation, size limits, and injection-sequence detection.",https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-injection.html,Informational,Passed,NYDFS 500 | FFIEC CAT | OWASP LLM Top 10
diff --git a/sample-reports/multi-account-summary.png b/sample-reports/multi-account-summary.png
index bcc986693b629ea55a5a7783cb4970c2f215fbbd..639c175678a5e4399681bc988b77ccf50cccfaaf 100644
GIT binary patch
literal 145026
zcmeFZ1yfwx7B#w&0D&M$AcWw-0t5&U+#x`4g1ZC@!J%;t8X!P$cXxM(;O;KLT^ky0
zzI}4;x$oYpcVB%!;8jt(y1N$3*O+6DIoA%9mlelEe}xVJ0H(yp4+;SAC=CFR$j}hM
zUo<il+yMjtkoX{^<TQV<WbgKTn-DnJ&ajARaLvca&W>8sSX?sd?Ph1+I_f{*Ffi!o
zwsv&13a-YLY@S?Vlc8{I6=1B_Dq_I(Ke+a|I+0*9sdu&O<8xl#rg{^E=qpd7CC7kv
z?%28Rg(Hkc?u#Rg{S*}&;qQ;&cL0g#&#!+TUI<uVfq#8(15p3@_<vanN6!oCuNMBl
z>-w)!Xz$v-{lB*Oze^#%TowFxm;bZH|ElZ1N+CY6Ci|yf|Cgl@P&ohHum4@wf0p{M
zNpev*B{|x{2$qag9Opzfnf%`F#Pa{t7iNIc!_@k~YVtc+*YjbawSMf*do3ZML3{)G
zC#5rde6w!gF|Me--G_h1x%wN0Q(>aAC|RU9S;SrBmOfhYQV~~lOz!>~X55@ToD_`Y
zmF{yh?&)zo!~{(mdFwe~{k&F@b;l&RnPTqT@$u0@IG?#`IN!s#YYM!%BUAj!7m5+`
zL;Zf+KfnX=@<4#wW<G*B@<kG_`_n{<f7Trto1?AV07iZzWN&{scYZor4yRS0s|Vge
ztOc5L9S->-5>?YUPCW(g=i>Q@csBDH7GP}bY`51gnwpw;u~E&pzh_82PdhvL5U{Wu
zcuC~QRu>lLMis|dkLs?Wkn>&I=o&pF(SMIp7sFZ}x7zhsA1JH(3DD1u)v#_GAPByG
zAu8_YBh(W@s(L?^VoO8gx$<ot))X-F+=^=XBZ?PWVQUMCE9dQ{UwNiKVp~FME$<>{
zM;g4@ZerbbV*Pbvz?dRBdT?U)xN$zNCe6P`_h9U`el|tuCz`Fr2#dtlLGq&L8HP}P
zwZ7CM0-o&51dnVJ@;4gwz}F&Jwnj)*ig%@>gKln6ZobLCK?X>|YHzlgp09;!aaIQp
zY_e1m^E+(qZm*mjb6c;L<&%2C-9OpnFT2R5v|KF)IU+S;qN9`YdY(#|?#>M=+P!Gu
z{MvD6pXk7%IBm7e27Zn|PtAR}J3k)Eq#k_OYn+l98g~@9YtS6|%@JX_A}yQ9zde^<
z8MC>GkJuKaKGJmlTNQfuJeP@pO&<;yp&1{q6qkt;04ov^mt&<@%~w)1=3@oFg0tp#
z`0}5Fx%!4Kxz=uk9C$feyFF;SzH+~_Z=4U^IjvNr3H!z#Y?ji9gAItF?yHWLm6xAE
z9Gl~lE+<OOTCdl%fj4jImTJz)mf|-D>t|hOJHOq#s%xrGPjNJzoZV7UZQ2>jR8&-z
zRaEJXRJzZ!8!<J>2$U2RwAl09pOmxqV4GJ|SLe_iEqR)cRm{X)W0P>%uR;AXZ`nut
z@E>znMyo1a>_6`slvh);z5be!oO3MUA#}P~7>Fy{)veq3(iIPQ6I4)YRp-X`6v$#=
z0qRn$E7QvZQyw%rWPmtc{Yl^QPI|gRTU(5e5kwr^{vMYH*PJ)<O|a?U+0du|T6hFw
zYe<A}`mF2fOF)`PK!K8llpg{B2eT8hOwqrx7VIxD0UXw>*58#({H<sJyZN&6C-p~w
zK&eil5*<Z@-;)D;cPpO0?ei6<3w4q()s@k!>04bCUre{nA-Oa3ATQ;1sGll7;Pu!b
zfONSLzCW^3U0XZUKb%d2DEQT7nw6;u6Ig0MxxZQ8K5n`8R-^oC5iRg==IU5Yqgt|5
z_tJH$e>}tNV_JQE{c`1TYxC!`U!MloNBCVb9ZNrYlg03|VE`pMa*`4QS*c46=KyeZ
zYfoTZ+JpSh8iRNTm{CT}&%1b&b%z8Zcm=MD0d2dL<rdgok|v~1&JEX))Aw!;<5%G%
zM~p1$`=za=rFlj3bw(UOk&}mw$)(+Og&)4`;ob!OGeASb@WFg`ta7C;lV*5)B!$~f
zB3<6e)%ouJw)Xz!1A`_v%+Dkh(d!(a37jB+)A=StIQ{2$Q6BaOe#hwz4qf-7V7V2d
zQKtF!<&vtRwUSH2-Hf?8T70JDx#vV1xv)uAsV%ID4{k9G$*?s$Ilq8MNNtPikwZg6
zfZpNFAuu{S>2|ea3aB+%Q?q~m2grB$kvVq^Lr%){?Cj2Sj7?ix_z(p1m5z93Rb)md
zObps*uV~+sgu(7A{D2c!gN3eJwIsFK1=Kp3)8hk;BO7J!!wx*8+yurL#}iG4<|kaP
z*GEs4y$J}$k_`<o5%JlymoZlcgv2+y&maI_Vk8yED*!U`(-(lRJ*KULZQ9J`WYaFH
z<Aa?wOn`AX)Ulc{)$OEUtb)R#tfnG~-T4W)rR>Y{)m>IcAIBF>4N7ymc7HJc^$*&~
zn;;PlDeN9Kivwi4Dg}*Ja*iu0Lce{!DaUo@`FH2+2iCShypVvck@&9`Mst&IwOgI>
z0p5o}VF$L+VKhvvt833x_;DdNAeb)yOIH@~syLIpnQH*?DOETfdVX<vei74W2*`g@
z#{_EFr!7j843&kI>7xBvIl1P8MKfGy52@saP`tWxwzOTbtrnaCAV>C<frU|E$iLBI
z&)jSMWQ;W@C8#w*O-<=5G#?|jBu|NsF_x#ylSwgH>Q{zn0vvyOTIGCOc6ZRD<-T3g
zY+GJ@<a^8u0zRXS6CtQi$C?7LL-G_IK)QuBkhrQH>q3-}fe&JkM_y4?Z;ju@E;e~5
zyJ8(K+U3>MkN^jV<_Kih4&0Sv&_N!5*Vi~zk&W%Yt>bJIW+%YY_d(PF$qR%unVC1*
zO~7sLzYRN#;*YHYzN29?jI_4j4M_9L2{eMn<lVBs<}(2NzX`&g4<nUQ+hf1Is4z^H
zHK&mbcG5fmvRHclhdmQNVFUp33>koi9$^7|uD(cZ*>z^(p{WQ!e3AWpl8Fz6|6m-9
zh)=V0=Lq;2t9#Ws;u%gkH#!SF2tMY&ztb#jy|4dhhy@4<c>p+`T;E9WHm~~5Y2<X9
z0<<q+`@#aVO%_%*66%#o=tXP9P<}wrNzFQ}_nmn=+LLaYzc8TXR(EC833@fRx2M4y
zy^|u5&0t%PxPtg+%XoGEa?ny%9-2G10p1zxai+_+NjpNyNZBE6`K<VkM_hMj!BUv`
zysnJHJ3zVKXyW?8De=(I_$t{0yK!N0F${BxAZRmrCU&A65PN9hqi75Ottb2<?Bc<E
zksKF&rz&`PES#?)0HN)d4Fzc2Z4Z9cb7AO0&me_)MV6-FPmxd0ANaFp-gyj`<wy1$
zEW2(@L<_*nzRCm_MIU`TTh?S6FLj?h5o&~yn8rwg#z+oZV*mHiXS#q#^9Mo{PlFQ@
zvX9-NL$0Lm=S%&t_!$=GjyxDY+#kNyh&B-XItHXbq^iXd4e_=-RNB+?uXc_JU%Y72
zTdvCMJ?Ys|R#H+Cg%M7Szg|Ce+Lk>ygTbyjYEvR&PW#PB$HF>0MOwA55o!v1zDrNL
zteylGFI?uB7*9}@BoiG{bTop;+<oV#hqN(K%cDP33}EH_F%KGnrI61Zv%g*B#tiba
zvW#+aOm_LA6IBJnM&`v3ur8N8AWFV|9~Ljor>3e8JQZXFaQ#0TdKezxh+-JeE-Xl9
zGgMb!Twd1LnaC_Rx?^e|M~-Zl>YjIY)K4T49iC$ZX=)gHv@G8`!ufcOfeE{fFlG8w
zcbAmLL@5KsN`-s~r0n5zAuL6mB{oI>Cd%fxsXS>}S>0@3@jS=VQI6x|)|PPq%wmU_
z*z~HvPq;m?lou6v@$3{zYfyguTEj)`GVjz5er2{EZ5BABkT01nDKoOzV)wAI8@#Jg
z9~LZSqq-|=D4BgWc&%paA{A`jnUhS&e#q-|wc)dH6Pk=_MV&kTz;3mqsI2TGv!C8O
zK%XWDtM<*pVvI;g;j*5M!q@d+Iy$pA21?I@3f5^xhTOki|H=>Ur!OGcuLb^C)jc%t
z&v;#Tj&~O$(=#jAi}U?wvU}OL${f&=s2JrpxRP?%s*$>-=NQFr87$0;q=$a$$`Agw
zUR+9g><#!}Av)TgHS;bl6jvj_CU40qM&g?8I<kX}J!{Y0&0E60@8>_#hg+VU++;!a
zpDL;=V*+mct*Q`5#P4R0C0Nwy`8tm*JTH#%@70L<Ksby0#Cmp)p`An=MzYxPLoO=Z
z#$>gu55Rfx3bHpFidt?OEr~Z~=Omha$$oVnw&J4kyye3~j_0(M>+L-gg5KQtb*cwc
ztnpk|>SF@`ZTt%rtp(5`D>IrbBLb@j8`jX(7pnNVJy3?feX3O<$4~VfCc|9_ZD|P2
zq>>OMVE(>;=WuiE@`+B0r9~8)QP7t~M-WT0F|6Nq!)ZURZx!QmHy{8D9QU$e6G>qI
zI;wK__Vy4~drw)zq`W$XU$@wv$~!oel$LTd$_c4Eclj(suQ5&!c2IzWMLRSkB5cv!
zrKBU!PHd|-iHLJ>5)BtJF%XilrfI5u7fx?-;4@umUnk@^&g$uN`Mv4rXrX=n9j45D
z@#1gi>EsIvC;aA+Fd_rlji2PcvHB+L0vIhcf&F9;j!1im!oV-}GA<+ktCQcpwa780
z*sV=I0`l_m-fKzbD=kaQGBDEF+17;pKwGc9_9)6Ll9U=KC@HqLv%fsw{cK{A$$=F4
zU}a)9v~F5T2Qt|$V_E?1k(-$rJs_X2qzoP<+93r~7qOc7_;>F)e^U1K7rc_99{``O
zJcNv~Ql;dq^x~BZbjF&pp_gDu#mK1Z=TA_|E!WjYOJm)Bdc3o`oV4J9(MR_u)+(^D
z9wQ@Pc?Skz?-HojJNt!VT_PaxV_iCknG_aUeU#|SD=KhsbbO3;W|gUCE7qO7c!x+5
zi%-0?G%k#oLoWmIXardwgi1q`ke)x4DV9FMa*2_?5PETej)`SxwckCoFuoO&mv_RB
zF3j<sooYq4u&4+N9g6Yfgl*8wfW7B^SW?p6B(%s<pWG!L0s?}q-)p8)ocGnjyAuqn
z=Q7!o_vOY0LPE^<R|9e@I#t#$zHmdq4ZGB;`#yF+y;h$G_|>h=V|y@I$K1JNoZ~U0
zre1;Z5kXK}+r3arsPr2jmSdw8L31WLaQ#S>fWXne>q%a5v1)-5K=v$t|ANm@gEl~f
zb9RBC<q`L?Y(b&fZn2uWMqK>k-9U7|jGUSj4|7v;W)2Pm9ogy}Cb`DrzdijnM!Fri
zq^txfvn3;Nch@SHBS#Q`id+^9$`wV|uIIO;o-zW<t*+X~JG~D0b2WAksw+iw4263A
zEzpCfaCl>>Z-C#+<;IrF?w)|KWMdSDE!%q5Tsf!n>P=~CC8^*+9>HXCTkzDCjglFk
zMz0jz*i5|wUh?K0U&^#12|74fwvs<bNYk8IjTEmf)vmqRe<&^~EcCRwj)1Lr<X03l
zn8C=Q6*k*gS2r%6=dDu@x2KNpV(63;QgJ=0^vA12)B1D>ct7S^o{pR7W|}!b_XwQz
zM!3IJ>I$lD;BaHC4hAOcdfcDqPv9fybzw-YxSILtfB!w?D6mq!jbkV6#JgOy`&{7m
zO2$QyN<;tCZpHS>$2yzf_|FCg7vmUGsjkN9%ji~=RIR6%CVjNKgHjm#ukHrNohPWn
z+yxi3Ywm{JQ9}{hVlE0R?QC1G_GpYZl6CkfR7*8>4>nGQQR!<fSH#1(L~%YCewe+f
z7TE1l{1|b!aemBUz6|=mc@$a>>_|5kH+$!>*;6!QJD%E-PjtAYE!WHwm%O}Mst-*p
z+yy-M+gYZ;Yo(MgQ_>LbT@L4Kx~;iIKaJh@j3R{2vC`aME#>MJosap_%4y3rJq9TJ
zvFGa?@I*g-au>tHi$!ePFXe@G7mk#x&St`TL4Ou-dN_>L(Q3(Bw<6dwvQ)dZOKTnB
zA@#7|I-mmH^tQnF2uTm;U0(t>mx1$*1`MvSm{O+zkFUL}9t-Sn<Es}tPCV*R=zw@=
zGJ;pFjxKypYGBf}#b8CM)cvD?$M1Sk(xzMV`>WO8ky5GdAYQvQt&NcW8sPlPTmZp8
zGCUR4zQ~(e3Y%IYigDm*uC#m_wAy0bX1qNZAU(qfnve6mEkR;xzCo}n6cc~LsMWw?
zFkG>azw1(aU%AcaxO(z<D>R`+d$Gde_?KyLoCh;3CoOMdTNm!K?Gp_VNN}CVRSo-o
zQUYCHnKsuGP*zuVhhC`<UG>||>x}%SpxNCK^J=yFV!gT%Xt1;EdP&0m1VJvj9&$T;
ze_)WIM8{#VbiWvE#i|$-Bqbi2*cHkG2wGU&_oUt*hqbbMAB{3pZt?XjR*!%30Rc$I
zX;-@$u^i^uSQW<qaMUT+ViZR2wyCj}k<B!sb8_b|!?U}C;=Yh-y*_;>N*^bP!gqR6
zD{${VgmU?7Z*LylLPJT7MI|lm)^?4TL>kaR`hyx(HMI)sKB@ZpN3dz2qS7uN8WKm2
z^kcYl(>A_$X3oxrQsNmhv$A5=_3H2E2l3A>7c(*mk%gqEv`l&6G3g+?OX1!(<!%s4
zWVS%OCxhD}Hqt1W72aL-*(Er4izJHNRV~Q+_dHRs^24L#b|fc(^e|;=w-lt9T#bHn
z!uzAk{3U~h`Hrr(;W53{_t<#Yto6*e4I$vuKdK?Vo#iO0dQLOaT6E3jxR+J#SpvW8
zgy~?SLy^218g6zgQ}vHpK1L)p>T%sS*2c$MgJr;7(SM?kwA%n&U;8n&!u3rY8cRyx
z!KI#-jy0D0?RF+|yK@wX@0YB%hErG^FQe)!b4C?YbaP~-IUV^K`6v?Atrsrcp@PFD
zjIst|*nXiGa`C)2xWJEB%)Y}XOmvJPA&ohXsS>2m)8$WkN>`Eus<#_U1+p5oiFj<-
z+4v$;4tL5~q1M9)@D|WRwK?0lG>I9^OugBSZH*%n71Hk;<Qf?-_u9!jT5-SsEw|#y
zZY^lV?RGL=NSZXWn7q7l$Wl>ZdvIW`(o_bmj!m_P$io!t?0F75x(1AmJ91wP-kmh7
zy1O+AMhcagjgTA9F}2*7o=@`uWH=|fS}lf4x&nNy=H$&0iGBH?nSJ+6YoR{1XOmI=
z{dOd_?(sC+%l8yStP<RvpHYUB`MMMpH{QH!i{)Qp7P%$lvjIKSL4(da3I}>b8Bfdx
zyMAcj-m0kBR`TE=&tMWNcJk!Lj}H@g65tNdzpML-nM~60a<nzJG7`yMBaDb|D2V?T
zDA6H#`F-GZ@$FNYZ+Cdcszkgd@v%;n!y_mIJZOWK&C=MV^s3L|4MJ5v{pD^WOoNgu
z-|J;}JHOV{k(reey0>&j9wM?$;dgWWq#*159rtOTFgHZgF`V)-Aca42z4rWq=^+?@
zIOu>cBPXXMC+Damn;z2b`qgDC+H6lVO?kzWS^o|VZ~}os*X{m%r1kC*kUOG9N6T<L
zScVJgahv$5DJ(Ws!G)3XWbe2~@}7!_g}khASW<EMC9i6dd)#^*$JYrOOAsP4Fr<Lh
zkyehe5e3|8n|%@&f4_5+vH|axpT(JTq=_(rXXRf$45lFk$N_D`d;zmm8dl5FkL*{_
zYnd}YBO~%_J7r{KyaFg+Gb>(4dyG=Bn2)yc|HT$3OReOx6-2QqWbnH<-Jq1oXcL*P
zwZxk6w0(-f1b&+%#R0kGmXDt%;UYb|UB|}`)uaILa*n4*-~kB=Kp(^O7>l$w%is>$
zIzlb;QZ(Qv3U;a_YM5oN@w?N~3&N?+xjXm(hk<wx(6$pULLExVWxGfOfa+FxUDn{x
zl=|_H(uZ4<8z=r-sQ0$6n+dF?6R_r?^4S#;f-z*Av!FnayQ&m2>E4@u0G))C95Vsb
zn_DmT>fHXmvE`K&n%7Nc<3kI8HRue@Af;p`4y9A<0X-0zVbPuy7H;zBlJ?`K>(6Rx
zWgp(=n7K(O^Ip!Z%#0<ver=bQ;T265V6i-~&f)e?$EtZwBYt~gna*LA{az}&uXdtA
z+?OghYXYIP_eejGBLZRduIq|Gu?OTvW4Q{iU)X0U68`ZE^iWWRcXV0Z`|IdqLyK<r
za|74KS?~x73ckj?b+zBWbRRUIDWUmBeGCe*A8uBLHYVZjQ?QfM(-|Qc>N40O1mbhq
zO+S*%-?9!pCC&}Czz-Hpp4;AzWpF#M-oC$U_%51JV}N5JE)hrRr|pWRtULv@b<Gxn
z=mL=8qJ!ee^yMpuV=ifd?`X$+hldgZDerBnbdK>}5n}-M%;AqyJx=fE?8>!8yt_jP
z*ewU&ZIL9#TYx<?pdP%nnMxp(s14|Ol4W9$@nmrKWOvP(l`EQyVvKK+jdqPu*Ar*K
z2!e_E`2{oU^ULwYeGN^`u`x`54DGYvgAR0kQpvvHql>YFh{5wOdzSB98O@>{ch~Y~
z9wS!Gi6I<(87tG@`{7f>Q*T?pMl#$|olP}i^6OnBV%2@Rq&h`!L9owY9Cv8G7(xP^
z7P95{(NH$P{AiD%6O_lzH6Hdy$?u5|4&%zYATrodR|AhBRT<UF9tXeFhi+?&;k3k7
zG@Wd_FHcpUf$QUJpBja|?CwWWf45lA3DkM;1s=JwebGxrWzOLG_gdw#)@dDqdr>Tm
zNI`YwWaP$T#p5ASGW)f}S!J}qU;=YE+4qBkMU5dR^wOr&@UiI8d$JwfRW?}Lw*vxX
zM30%DX}1-fnPOP=O#AVyX8n#U4=O98v-5NhCY_fYI_{w)1h@dT9FYO%R&YwPD>k#^
znJbL+k-d$t$|&w@E{C-PLzyOuH>1ZO5<Y+&Nh0Fyn>X+an0+g}C3IvP2D*5sx20oz
z_<$aK(KNP{`bfYjsl`IJ&c<w$qp;{LLw6YQDV&Fi^$};Oc5B}giN?sOTc7YmO?ho?
zGZPa#&)NYrtTTfLf-wf@LA@G)h6SBCTzlH_BRA8MCV>ytD^M|&WjW@VrA%^G<UCHn
zLX67?-*Pc%o`oY|CBj%TFB%a!A#-7<|4b9j+uFuKzNd`(2mEB>I7-sUMa)4(CA75_
zdqTkIAnzsjONgo!fd%f{ip1Y_l<nW(`sqR-f25Qk;c{{LeMcbufQ#)I+v1)v|HK+n
zmHdQo{-Kf71IcSZ^;wE;&B<NY0H9}OwE(i1<z^SHI;ZQqY$p((%_1uO_5Y63>4V`m
z=uTdt6%d37u(Gl?*!osSZ_?AJlvh?euP2WHX$=kRe5^d2qq-%N@Q=&2a#6pnQ-Ia2
zwIU8bkwwvzScUX+9$p?;`_IP2eRnQI5GUK4b_-QXA9>jm){dlbNoeXoY<M<BBQ2MQ
z$A1X9QqW${;V&Z^;Bm(Rr~oerOU#-67IQV*;PD4p5GXDRr*pb8UMd_+F%YU?AFN;i
zS8njs!d7?V-KIkx>|daYZ%2a->=C{K`IY;@#$0eNY;Ily$xGNy>@DS*<<gJXpJ~A<
zi=dJ96;9XrAx+#pPRteEGeKGum2BPqM7BuW3QetZ=qZsUjhwqzYH3Ia9<fiIE#H`u
z*ZSTC;oeV4n5A^d&*Ws8!JlwQ$Os7fO*i8#IiBc>&!Nl9EF{#gF01m_cj(elu~OAI
zJyF2L+S{-Zn;8TNZ6F8{dRD3+Rot8pG0u-VGGd3w3wV=#_J_7wpV}%b%h*bCN2Yc~
z9sY5mJHQC(&Tq}KFOS>_S@jpcv$eYSNasqu8%4*E^hUb(LAoz4e!HvSx8ixvJQ3ZN
z*V3GcMZ}E&)J7=IO=OS9&?jt!mX)-F+7XD}gI`Oj77t3U)t9Z+?+dYOGhwxZholnW
zVkT;LlLssC#WW?l!h)|a7~JDY;F*pPO4mV+%pY))lI_Lox}bi#926S&efT9IQ`3Dn
z2Iz2O;4^vNT|a<22p)P@310xpR~I`#P|46q$&eF>QdJ`6w>_I+^88{N4nk%Ur@O~A
zG!RNMULF@F;O4%3kbij8cRz2reQ{KLG`O~QP-k+x0;`pHp2oFg$deg|fqW<NT<oFJ
zgAlm8S!jT}yOxI`SuFV<(#WRdl8z+tf4iTA=CAJpJ?$bisMvc_FgY6=2g94O#VJiO
zLYg%Kt64?rkZWi#sS=&C*4+i@k*GXGIiPg!Iq{IAy*A$Qvf#O#nwlzIDDw#w!6X>R
z20o*}9(E><fz_)(yFdw0%^`X5InLDkFDVaM%?CUQWlzFBJ)pSW3}z=5d3A8fz+ABc
zo)a%6w_K-_0&OsX`}QYZ8Y(*VAf>L{65ud{+ewc^EjPQ4Vp~$@R%8OLcbC|F;7+EG
zs}uS75x8Fkc{20_6N;rJRp+d$lUW+ZaZh$DOEO{PH8j;_T9IS?t9Zc_>O*xHf&~UX
z;`wRi7~&*mUg*P<Ih&$s^ZEuauT=#wiJ9GZzVEKwS+M~he`SE@g)xbP_`Qg2o|XDG
zugHkliU1GSJd?*)_Q>6~CkyS9O;`KJ41;wApkf!|$e)RQ)_}P{`pbcbiSkVws8#^k
zMtGVvhekO)-MX1Dx8)4{BWFO*crnKJm!^LwbkF%H{?W7Y@BEfhDbAZ4`4}wm4X#g<
z8_qySbXTCcnJ<1!-;}~1v!bQ~*{kYD(Xr<Z(&RO+L3~ksqsu_mz*xJ-Ng6*S*k!+Y
zWEW1mMA30~*HG20*R$}r@kx*BN=b%p$0~w5LfgtpPiJSe2RURFsYg!eFNOM#tq*6h
zy#l$|&0`=Tdz^LxKa7NHa->uWR4H4KdM49@bi$$9M8MlP)_Z8Y6kYV!o+F>GY$Ik7
zl*uWM0|D!|t!ZeW4$%Or^_kmG&`*L1<{!X<z)6SHF$upd3t1b-wZlz(Wvn3UDw^W*
z>$mSY8R6W3R#5Xi=-1LlcH_oImHQAU|H|3~m7(uD`k-C^@VYWtbEa(D*<lXRfvkII
zDxS~n$0w8F?r{U@6Q`zHUC;Ki4_z64l{*Js$&FZyn%ty-%O#rb#r_JEp<Fnhh__76
zUiq*gWPwecwK@LwVP(b~@WLzgI2k5nLVk3;(vm#<V~XXA7k9n!!Orhicuh$~0XGAM
z*+JIzde0M(u=L0!Wd{8CeSWR$31{TnzF)H3w&6_j!!RCigwAWGYBfQq3dC!F6eaPw
zVo$&hK_95Rrlz4b+A(aWe{vWt@Fni*_5?-6LcnqJSBNo_9IRB;qs*;~2N)fleQz~}
zA)HReUEo@&lmKD%BLV#Q<2>)qqIKex)8*fJEPibGJOGLx@l{xtyu_XZf&oDYVYw@c
zG;-R&l18ot2z%*@wO4K}!s%(5FT<beOSfjF``nhU)cJ5xcb0jg|HTdd%F=Mj0wp#}
zt;W4;JSz@%HV!taiyJKnsD*6rS;Y$kU=!BeY)6kYU$IL>l-tb2Y3c&jpt8N|naYBP
zj^=%}Jwl5AR$a)%n~2XNhSpptZ2EKx|CrgcM6G4xD*xQs`4J!w9?rjHNU|4!F#@-^
zeD95E!07UDJX`!Q?$17rQkrF4^oxM#!&lFKEiWp9rw#+)fe~eqJ|S3~c?SxWku;$h
zNJOBG-6fb4`sTqbauY_#dN3NUNGSoo8_<P*uTSfH9na_f?EY$(%5FsayVOYUUs}_C
zGm~I#qfqMdC+XP8r3H8bi<tz7^$re4*a8oIgWcQbsveg$v9YN4;L;trpTZZI*f^wS
zN){v|Hd5}z!R(2SAbH>B^Q~Z5(^iYSi^KjaX_K|d$w}>&gfAroFMIP$BYSMQl2ljj
z;z-tOK#InEiSCMGLKDE&>WTk!dCGc@V4|Cu%5)bd_0#g(RA{Ra_vgv)<S(8v6C-6%
zm_<_m@W+D4?CJ3!02qOFa;3c(v6JF@U@&7)5ga6|&+Yuef|zf>+Qsv~BEVkSN}$gk
z^|TX}c&?S!_=~5jtES%O^++P0{m5`ND2g7$)5yH6z8oR_?0=ct_!98?@b(oC_ZG;n
zA-_@d?pvDSrKv9%lBo1CQO!)ro%b&`8*7T6mLG8)9$M5|s1f543@;w|p`e1Q(Ro&2
z=JAZ#-R}jtWzX$RQ1@b>{H%Bm{joQEaNTq%7Eo;UCF|A(Xfu3%OF%rev^4bSy}{_X
zW0vQ`>3uF~b9+lRZs4Fe7OC4>FME!dPh;Z17*gW)NPIW{m4gHO2!FF4?6P$h$qohO
z=4knHCMwWCOFJnpaT)YG0xnBZ1su7*47e?CA1>q53%G9kIO+z5?hS7j&K&4j!8+`M
zv5wSpXZDVQvi%Ifv14q>9D|#usNMqHD*Sfl+v8n!AZHY;Jsu}4<#)W99sVM-@Q$}@
zaJH@O)!+q47Y<oCI0ywSksCeZb>>tRxo2g+9JJ6di&Xik-ok>7Lrn%(;nH$Me>utN
zG$>=1*e1U63njTPe6Jh%Uh^m_Xz0kR5#jFiK%|)cDEk)j35*fHrRv7kSlNS7_4?~a
z)od3>mcvI!C0Y|*LLeoGs(K=j$|&~yHAz+91b&Zp3l>mmB71Y%C`St2dX<<k!CGNn
zR0N7?^PFCrc*<P$*E%UjgT?u@pufXbZBO3*&HtJf8`79OGyb|UIpJt;?O<!~&U&F$
zGMkQ(mWh!T5ADhlR8B%KEwJTnRk`6Y&S~JF{=~!HwVkfEx<?qgXHHH_W^go@eELeu
zzHN=hO9h4-c1RYbWr>-MU)*1T`vgSQleoVlugJ5a**;ke#jTdyDT-?CDQYUpu>G8M
zyeUjEeA6#qxm=D=?$xMO-(><Moc6_888smmR5=^)=5^`DOcZ{!@fa0FxoFj?hlX7z
zBbiPE$F(_B(sY`(R5SK*>>KFbw=vAW1O8y5nqxDs5asf)zMRCz;a$Dg-F;HEbYCae
z(S}ps_b$!Vgv3{#Nm6~T?5NoDe0XWWZ=D~~Y+F`6*iY|zAj^BZN&&5-XDFO?JmG|x
zL)8AR6$ea*@%I&O5o`m~MjRY#ki7QhyT$T<9DP$zQIAc~eqR;VV0|A-ajGaL#)?70
zpQxs#qv%?${$_QEXaP3sm$m#9&aToufI7|gUJ>9EZZzDCcB!BDp)OzRsIFQ&d*x`-
zNTTh2VDT16%gVTvR8Y~*oSd1UZAeUw|2ZOEly7wgsU{^N?%%ev%HFo)Oe#Sj0pt~D
zAQvi^dEcI@UmFc6s9U(($qLmchjf9z0A<@(c=f{do2yj#sEOpw_Fsn;aTjUdkn&KT
z_0|)*Qy}dG4vkMgkF}hhWOHtq!w$lFdgAP_2&@{rzz+uzgS^XtkrO>8;0<FbmnW5S
zy3(WD2GM|9g5+n3KlKf$WQX5;`SNvlY^rBs3NC$jxD_+~UGMmad>PEbShW4Ep`k9C
zT<LSswxfqp?ku7>5S^$#d^!D?mP;7H^JA&J394DMPnZ=Fv`(|pgOHE17>sf@W_G^*
z*BXKm*FBPPDxt_<;nqAfuV)h(_j2S5UL|P6&3)ZZoZaL{fj+6J!MO;0@{)@T5!g%2
zl8i=|rk0GlcII|%<a&Xtn*Z?`m;=P^cI2O2-L?1_X)*awwucHy(4g|*sw?p+`7&z{
zlw9IW<Ba&?7ly>|b{)HJ*!FoH&AKImmlCy=Y4ilWYQf~~+<ZY@id)ZIyUSKxi!cHc
zJG01})sUAs!@qG1Q0$NAhE%OeCF#EwGjv_DzxW(pR#Xw1;>2(r8reM6B!N^%BrB;B
zK1MrtZKPhG{rq!=7#5n`0PQeC5#VK~s^IE~9mn3_X!+^UQhSfJWTcYArt#&8$C4Q4
zk2;6_;c^TKA6LI0uU>{b@#Hqtgj42IY+FKX9Fur#yecy<!tFQ!LD7hMQM_u*AyzTi
z>A5Yx&2G%^cJUn>4qoH7nvhnDg{y^}i`J@7NO*sz{2<4*kD*}WH%dL;-JH5GM)WW>
zS}OBcvdrGDZH&tPl{B!a@qMU>LG)mE*D+{Q(mqS1ZTr!69ipJI&hBjc(zRPjrH{Rb
zO>|g*fsA{lR(h5XRyzF1SlFXbD_m1)tZS(}xRC;Y?mq<`2L!-b6i=I%$elL{(9?tT
z>hj1A;7KaF8ktc&zO+a3DibUXo|!=NE~~*s0`6N=2AdQFm}r2LbI5Q%lbu6ZPA3(m
zge_;1&=@&-cK=S);No}-A0orAtrwrqzmt_7cvmozgo07*X*&G)$JAlpsl5Q8lNP|)
z+qN`gD6fv;oYS0JP~)6eNAN0)lrfS)dPIhMB67EgkS3ldCu#i2Jrfs*lC01*B#Rx`
zB^lpzIU|nO(%%D*e;f-N+M7R8hcJj})-w`BeOz0{-erO#vZ21?vv19!=|QAMjVze&
zZt&mgHdZ&Nly2M3Hp0Jl;#8SopI0{v_<VW+K?E^E%vBS^1wFOr0_Kp8pX*u*00Cr0
z48NxAWpZkUky*@(ezC+ih1^rp(oq#!JGEN+Wlup;W8r+>XoxO;x2b`0I*sQ=jlqXr
zd3vnmE7p>hpF}M``SnTz04{JZ{Q1UTyDs6CC&k3dK(?Hr*BC9JXGH#)q>Ln3Q)83O
zUZ!i4?cspCkYMcR*DqhgzYo3rWvs=B3OH$n`ps%lM<zbLnuY$8?xyc0qU%*Vut^v%
ziO1zRE_hhrtVOLfMyE=rY$&c`H2a*Az7!Wws6gMnz>QX>kD?3g{h`j~&MJrF`@wK}
zz92bIDV&#4{56Z2F{aP>;yB&Y_|rPA_#7~|Rq58eCzDk)dkXles5UH3o1bT6S5b|V
zC_^-@I9>4ZV;`66_2n;pKFr)Y?s@3p(;Y*TE}ito%EP3`_xps|+a+1c(gVTh=WIzC
zwE-@!^e-OsX&?4rAA(k7VRVq(`b7I*C@t*8#>rjw0&6U@P|oRRtbAHX+^kwq;a9@l
zRbgYxz~2g6!X5^dMN82po6$oAE1r{W-#;NyP-6w3+1mBemq5y@iwZ1?^34#vVpOhU
zd}47WvlA;V#4H1a(-FNo#`h?;pCPmj^|8~JMuqxs;HsR|5n+_aheX$v6(x|+OzpHV
zJ85CXb}|#uf<?^bA!yC2nJ8k=kSAF^3UeNuC1q9f(!H>ATg&ji5Lp|$8kxSgSu=LK
zE-o&zfkn!vuu#?t6~Ab|-p;NPQEHB)@uP1UVG<VZtiU9jB#fw4Sb-YV`*5{g{7<3}
z_*iX?Y)1g}zoob+4*K4K288{%^@{<Ojbja7BF2R=+9{0FlZuL#&FW@nIY&iPM|ou1
zW-hbv%9-0}Gy2ArD~y21`EE^yl{_^ouO%D-k$+@rEJrhKro<q2$kz=k;N?qVM4&{L
zeaXAYfu#BE>iL_XR|4<Rfu<!Qh05URV=kH(@z>5=mBHz+_Fn8%U&xya;?E#_5`yA3
z*wRc`AOm+zNe)DTq%VmV1?YC9?<~rDi}KaQu!}!)Qqc{<l+4d+I&HFos>+|if=)pA
z{iNT*6Z%X2`;eyL*(aaZgT8Lfw1+8(2&o)Ry0w|xR%nmzKtuCwtleV660)&M@z1h{
zVR*CLQ#`n*E9JjIziL8dEBPi}@~-F&xO*$?Bml3BH05-GT<H>=Gv{AOJMHAreM5e3
zmkF4;Z<OhRkoi*w<|PWUm4#-u-mzs<Xc*d_H)<i<cVA3;zw_ka#roH5Bg+Y*1ne@B
zU_11RWnQpcWDo*^IAU9F*46BoBG3F4owOLOFB~F96NjuN#q}WnPI1@6{2$r!|2ud6
zKXdB;cd7r%H~*g*?$ET;6C5(AVQ)Vzw=Fe1J9{FYR^YzcZg7+z&VNL#B@!$xi=#)4
z%lmz)u%HA?2M)!mK~86FZm9V-u&JggIj@sMnLi#xSKg~-B^%^j5kyC5Ce^&e&L#lL
zLzCY>7{7QHo^KJaVG>y-YHlf3rXy%pC_GJP0>=&XbxXO)po^vNr!zaSC>Grk&eZ%=
zpk#!{#whEc70NxjIQl00O%Pw$2lL@g+xM=bZ0{wD-*(Lx58%<^nOahR`4Y8PytpV0
z#>3+I^7BgU>?^jdzoX70Y8n=o&qSP~OCh8M2S~N<SQ48{9g=_<BXr6jPn5!V+A{G6
z)qc|YF2hWHN0%B>G;p?#FUx9lv=v+JSMq=G_)&^J6+4=u1*M;zZD!YTYaYUZ8rACU
z-bYvgaqqvj-7j_KY{g9NUlu4)3gMtf+g>Y1S`;%Nknt7jZU3&MlqiUz3$LF$pzUm0
zObRI>Z>=*Q>h^J9SE;@TA+ZbvDgW=&I>35w?V_?g@Wp2vZTHOF#)%Gs%&ym!>{}yE
zigoL4>gis(%9{AEMvaappGseO=|hsauBifKyNs4;@AjHas6N{nZ&}>R(c~^a{c5>x
zBK`8!#`a?X9J(Vh@AlD}yp{@AofYgc#qGWyd(9D7d_=g3nSr|E0uJ8O_x1;R-d?HG
z2j=Eq$51{O6s&0R&vZ_O!z*)2P9q<R?{_O>;|OGRCEw7M#PK?e9`9d{oyNY1A8emS
z0sOJ|=J*C%Gb$YRTNF2=*&J%7+3YXi%SRJ5PqMMc+{Gg%XIjk}84IhTz5{9L5__9l
zcQ@yiftTKN7Nqpur<JN$DL-yEF1j3QRIvA(r{6}~aQfEA<1o4WIZ9pxL}=-^NBtp_
z{Rualax(Rix^B=xqx&bJas2!`C7Q65hKM*8>YNdgxlSLN&mxFTJ($NBz-^c=x9!bY
zQ$7W{WdDqXz}e&=vk*K5ux6t@48y$D)np&oIo!WF?AekdB-q)`f87TTU;5+l!4%)s
z_>^XB$+C<6+*=+(spz0Z_l>(_!pqh>D1<TA00K{F@Rw-}V@lzhUg-3r%x|qBYI32d
zmQzx_^q*JTuG4pKZLQR{>glI9iy0=K>6(b<E3auWT^Yl$YJE4;H&&DW>E_hY6Bhc!
z9#W=nJX?2Or<H!SF+?Sd(5g;%>we$jF3u!P!g`XOTfJS9mUVZ`5U`|8G|$%*^K2}U
zX%NAy&aAI?+%6?qAUs9qlX~OV!;<pOo6Ddl<Y>Yr@<*K3#y#+fVB;`%9FzLGqKdjA
z+k-OxOn)e%mw`zs5kH=;j{4!jmziz_@Dy0^$Vr}GTGuB;vAcXZ4!F?aae6&HH|Aiy
za^y7kM}YgIN5knEN-rVyPtIWA9}$l<jqm9|Z0RU=(_*sZKp{`du*Iz`>b0{d<N^us
zQ@Fk;V6b|dS}adDW6sNI`w<E^h<%liklEpr^Ml~S1AnSD{kqmcNdF$UCn?Ny-M_5y
z6Ch})=9Rc5w$#-ZdemXfN1N#wCjVES*x1u{+TD7I{5j@(*PX*3L6kH<c1U-?jje^%
z)7M_pkb?z$E~S<u<?)r3`fbZK(SzyyP$&>QK);kk{9`!PiM~?vdunY!a1doZ(J<>d
z^~)A(#eJx)qe_7ilowNG+{$C_Zfz}JHnc{0%Kme>^WDV)a=`Oft1^zR<>e7>x4&)W
z9b0}DevDvRWtLLckbD-&+H!mHDBTOxj>G4gOetElo9)MUz8x3_oR@Q;K=;IOV9WU%
z^Fz=wy_ID?;a!18Zp(v#A`_M9xRO*8VO#tKg;t1OEqt9j?ni`p4p&NUGTH_U2w0gt
z{nj;$9SRXy)L{f=rm)8jUhBW=3uhw6Hzkced|$~+Z{Ar9(#&@p){=ZvSo9ckhs9hk
zDmaoDsH&lJAm)!vh^J>^4L%~_b(5C^>XLpcd{Q3R_))av;v`sV4Nmk5#{uCu$JuN>
zy(m>Q|8faNZrF=>jE8yKcYK9{WUJauE@n5g<lj6<Zo{-25~Ao{1m1`TVD3HtHuJZm
z)%H3QEnQs3Lc}0gT1+74V?j|xLdF{f(M`OVZXGEPhu>M*c0EfUhno_jP=MXJN2qe$
zvZ<UK&9V5ia~k(8`l&jtwSoe2Ihx`w#x13>gaB@|N*(9^;!OkhTy&HQ!O@f0&U6t5
zKrlk7I~h@zi33j}CPuY#Mi6Ip%}`ZA!wBL5yeTb+{yy}u2w4r0Q*Et18(H5jc_pSG
zT^z}msAkAsr|W1&AN)eytWxQ6yW8hlbhFRYu|=agKcgZho`I+I%Tf)6K+znt+2<c2
z(T^&XY}B)hL!#w-O|~FawV<(KtG*bF@)z4Ju1ezPYjD`2+`@}yS<?LCM#A)Vc3bEJ
z2hg^tg$Cd$vq4kwl&c}MKSSRZIu<=KsY{4^LHzV!e^V?%NmeM3yTJyo(NR1IPDt||
z^hbk#4n;20MB#h|Yy(_I0k;cUe40i~p0Kf{ci{ZXXDc<=yB)2~8I(}wB)3EXfXw&{
zZbqcNWgSe2XmtPHjds9@90BW2@unRv`eq8nHiF*XY<tUc$-Rq%t0g>(QHK$nZw`fu
zWexu0-THOeq(%*O<$#&LMUJ*7Sm1@drMl#cjz)nhJ~>zkJbC435M>Y6zJUQ1xXB?H
zr$h8_4ng3X51IUp<l4Z+1GL4(@y9+_prbQOBC-fs>Ups;+<SjgoeQMp=Zk)}#A<lN
zcDxZ=)r>^Lq*Ym7g$6x0kLi!1i~f++h!XB>5IMPX2goZc#>T{Rco;rVRrV+=O~K1e
zTm5F6tVZ4$8^=p8hueedr9M&ykXF#Z*t=qObCu4n@(kc~dVRUtH%n#LJysbwIJBru
zOqh_Z8aeLbi~9JA*M+tdUlzxAcCn~jy&p1C4@w#zR3Btt41D?WQ{($Xb3_seW9YN+
z>rkX^6j+EntulTowWh}RMJ*zpilX1;h)WSvfqev}d^{LHMu$(y^2hU2@W#NbSszAD
z7{s>hk(YYpXO;>KgjHMNz15bbUCB3{C}Lc*>b1QZM#Vt~i)&T_E-5{m8tUJ3!$_Of
zN7XyE$ZOzZ`Vgltf{?4<il=~{fe|?_+OOBFt~?;epjAe%&nT!F?wL5eS4~+vJ()rL
zLqq?%JIFn>u;lzD(b3F=k!rEjf{Q2bIZ+akd8J)2KvtV~&>!-inp~J{b!L*|6$<Cq
zy;tl9oa|P6Xx!eb2VX#T{v2IfP*bt8<nZW;srohkTBMFP`*Q$n7$Y#RsURjfOI}BL
zfr7UeTnRl(YAD2UZ;J0Fpp|qW_T(TwDq;xB8e*7ie(5lM;KBG*`+mlp8<_XSbycOg
zjYIe(P&`NA$PiDv2)3p8NgJub2kZtrk11A>LUsdWbL%`fXGgcFUMnK&P0;6?;yfkF
z*d8|fx<%~+DY}A2l-oO=5cxM7OvxM`htndUjYb5dFviB~*Dr+ea^kpEs-mEa#`#5c
zRRwibK?CHB+VyM}i+X;-%G!!@0aH7XQn`n?u`2!nSIh(c0XGP3$xY8_P&G+Z-HWu6
z4hQJJ;z}A3Hh$=l0owY;a`M%`a*E98rM7P_%^Y*)D7~R*d?fpF44diin~s0o?6i*w
zsTMV?1-{UCQA|uK)=t<xa?|lDMFqfHC#>mQ0NVAPf4A}IllA_T73;iDsx*z^KAEoe
z*x%UABuX?IU1!_!EXiA-xEv<8Kazy08AT$LwvxTu?_ak=$?6CliCtZmk*SB;hvxVx
z8oeHiO|rd@R#9r?UPw$?Nw1Jx@bev52Njvx=$e_wD0pIaXHs!2*(~u|Z*YLNP2Z>n
zf9i&5Y9X)0VE5)NJw&g}=3?ReekQteTUBg=$Z%~vGlM?p*2lW&-(Rc@)O04tg$>D>
z!K+n9-r}2hY$TS{ij=%d$ySsmSfnqzkUxOL11ssfHm3mubsfubU}WKNz%gcN>NUu=
zG~7O;16d~9W`q_RmLF6F0(+a%%i~D`V>0r<P7u;#xM~*qQy;$CBTVetGQO;d0hwG;
zc;LQ8(c3HD6!|uj5v`$w0D{JusA-k1pYU)B6meCRsr$;qj|bHo<T;v5e}oXkqINK{
zGYW3m(4<fr2}#ii$1_P`pC*L1sX4fchOAj3A~4)TQ{C)e@{ND{v(;!9#(2e9>y>Gy
zr08Bq>FIg`F$Kyc(JW6=JZGBY2X)b*x!DhR5_D1hNHmOKj4RLb8}y{y)^E6Uf5s}u
zYSG?&&O1<>S1S(81G?n#IQr_K^Avc`R%<@%Tm+&`1ApGwwX3*)mht8Um25Ucg<W~z
zlDGSXjuhcO@?me|PY91@zJkQBj6>AnMcIM$NLtyX)>mUwq~NWgqT#Nkv|yI^?<FHA
zY~7j{<Fa?YIdL3t>nP5k0Y-RJJXk3yye?#wa68cW$K|OJ9BjMqC=qENy>G2Ma1aY^
z4QtFlAFnl0jmU5y=BBYQ%|=pQxJ-4ht7$zR!wmBF-54Blm4!oRhEu1@;Gm;*o)XDn
zX;RJnqJGTaQG>w~6GJ?=>!XUf$bhj2>M#<JzTyEL!fs*7^}-RjfL5KG-AuY2^cUEC
zLN*KVhOYPu9(G6<0dc5$9ymDMO+9Y1H#<kKPu>FI85yQ8$u|SM%s3_zvl%Q}6{Ik1
zY}E0zC)drj)>0F(@;;8YFVD}7)rd|9;XnTaQ-9fxQISa+y7zoM4@*oBIA~Yx2+KN_
z!@#>dxes5(mR)u4X~Vz!WABVPsP}_(r_hX$|3SZ5uoo19Fid`|+1kI(Z7p2^vvu4~
zJ{+_^FNa3Wq^25}S)2|woi<{p3OK`GNqo{dl9e(J+dQoUjjHBl@*U_546a2h+wa$q
zf}sV^q7^wXc3I_g?#Bf-T}h3-V1J^eXon#Yp8kzrvHOX+fd`Lfp(tw)NOq9Xeh%O@
zQ;49x`t=l~1;y$4&YdL&r2-rSQ+@DjzetWl{_^{_c$IqIx4p3>iJc=0?vp=tR^T<t
zZ`mXJHjrEc95MG4R`RsJf)rS0h(Q2e@00P7Bo&{PEGYkHM6&AS=p@n8Jrk(>NCHu%
z=}e$w>z&9O9314qRQ90VO#Sa8>wK)99VJL6tyeaDu>+gu&e}+gPY7qvTR766Z<mtr
zJ{{P!ZsOCLeaxQ~)Q}MO%Jcs6>gl~0Rw&B41gTgko~ysFCIRSd$2_xO4k!671o9|0
zw%Wm@caZgAgH*SNuy{c|Bia-;S`;9I!rRP@utmMO3v_$YuPSLUGsO#?ZN?^BYf1PC
z9YwO09^JUe60@QKZoEq_;{F~tt@btSF)hoMLLNGYE$Z-P+pFp@PxTh3{xtrl*P=$?
z9je+<X|j!Tnjd>%fA4|xfY7x0D;rGmNrV|ijE=h{lIiJ(Wm_~LZaxOa9#*6bdgD+;
z0&uFfjD?%O_|Z~Iu(3-Ozy0Od_)uJo?k)1p^bvmPqWM=#ee6f`CDf+Dpz&U(C}4jt
zLG{|MvxS{lm!=U1rCFFYU66^@J0q>7ysuxlV=%847kJMu!9eM#jjELWI#JUwhFIrk
zMq2*04*R4~sz<A=x#eZYTK+-0eq7}3!2Hq>%UnPy@6;v99&ur)BAv2ibkI>=hmO9T
zRIpC78t}8G7tG33{NXbvf&QkM4N`T{kB9CTK|uMpV1wZBNeGQk%UJlEeuDo8^X2v(
z6z#-y5>U1w!#$fzNBHJ7qEx*@7TB9qm&juv6_|IpBi6V->DsUGn&ki{grjGXZ`Wg4
z*Wrr6ZCy_^(5U{CY_(mK14zp$A*XxY`>sJKbusTdm^;<&0FysfvnLAcVf!J2gZxqq
z6y^;rbMTka9M6{jG<U+>@aOdfe-xV~e3h7p`5Wp6MxRfT(FHjrWBm$eYE4NxOCm+2
zk=mltSfYgMW0I7wn}g{7V<ct4LEjd=Bb3cxy_-SoTTjuh=wqZWjFlJvx&8k~G$M%y
z6RzGU7c_M!1ie3{-u40=C4FQ5f2r9Bp&8ydF22j%S|zEqJS3?9($D^<LN(gi(U_v)
zC64gVjbULgQL(3pZ&`x=L;}GFcmw2Lb^n#w@&CWq;a@ZQUvHB5pKpH<{?8X_{O?jQ
zLTvC&9C9y%GN2@BJs3hbF4$$^Wai{(gpWJKyvzL39yBNrK>CUNa5#!0`biRRZgg^d
zc5%Ky2^6m+)=at$d^*WN&EKo15+_kzVz5pNO9%%BWA(A5wDqf~5t=WMr^S`@Q^*Eu
zV?bu2nEhB5u1C=><_%wZF`j15rxx#!!Mz_^m7}#hTcohs?y2>?-p%A&c37`*lzW>~
zfZk(O>lMO2K8kmG{_-^1f8HbFikm@bTVGL7l3!E)Xk|vOV+I3^^t`XEt-(2QhV3Ky
zWW33j)|naATA1~=K-NUl5&Nr6q1lh4BBta<72Q*!u^cgrKf@(?d&79_u&i3lHf&+b
zp~ey7<lQzah(vS|Zwvp5Y1H;^Na6*Wyy8m$2Us89)}ghtrf1)}?1jzOCM4dzpQs^8
zx4)YzUc@jcYK&N3FK9@;dS2(WOp1@5ElC&2QQMo%;;e0eaZewV=u@5jt0>aOrXhTC
zQc9|DZ<ki(nO!*-`!jQLCjxLfLXZg`vp<8D*8E&oR%gl~{i4u^K-RrnTNrKk{a1Nm
zbY-TX^awH-nGwRl6@7*rkO5x8pM@3S$|DQOQ;J%nfv<D<ID~?RB@~V;gahi2$U>zO
z?wwN1`;)w8b+SRP(Yz_E2N30<vQLS;UrQL1NZwOs*S>AG4^l78K}D5_KyLq3DsxUG
zlsA(<r+HBb9ICvzs2~cx?0xxmV9fH9ds6j)0%gGJJ8>^~m<SG~yOKoE>JEu!(3&+Q
z6nKQ2zD(<#@rDd7;&mb3cvW|QRZb8zryql@9?)yYE5b^7X|N3&RpdI7^U7=};VP}_
z9u|AOaqf#q5*9qe1pPmJy>(QSUEel5AkrWTf=EfIbP7WwASp<Lh?JCwbPNqjDF{fH
zba&Sbog&>ibjQ#w@NMqvx}WF$*1OjG$FRn=oHKU(@;HwDO*K!wuu#5MLR({eedU9h
zHJj(m9m*paDJexG6H8(cZwu3a0!uBV|9Gh=H<LFzN4`iI%{!v7ZMI`ENsMzOIHRhx
zEDHzH<M)@{%88EWGsA?$4}ED2_o8CNoqwhujIqA#fQL10Bbna$i#2>mO@fXGjo`DP
zso(}PQ>*ih1hw8P0o^2@fi`l7rTZ@jx|J1byxG@MwWFz$AUjvJ7uU&-tx5rS-f4{J
z*z&N~@jK-wGKd1xHxd+T$~V1wIQ3%it&DZYJXq)?jpNHNju=O~V@!%|uZYVHLZ}ag
zn?r1KPW{qg53t9sOF~l@%Hn+rCh3TJO7BXnRnB~7^blKe*0vyqxNkx~=j!waP%O=R
z{@w3Pd@m(sY2@fpUY$^1tNdjCke`w=?rt;vO#V;$`NN)G45zX1vQ24-{LIF5UHBi@
z=R(~9kB~XJ*6hXR7!WLq@5$LdKSL`WlYl$xZ|;ytW!TVHxn0jcz3!R(stC@2--pz_
z|6H%Tvu9TEJjX95gImfz=vV(ryknW)M|S$_q!4Fv7dj4lcXliaoQv_tIG(i4*7W{t
z#%3-DLfV~Z23b1Qa|p$Q2a_d-tQ8CBPJ9>v1ECf~lz~yZFTXUaZkzGq+*3edn*2mG
z>uElZ`05g!-uE=s{%I_~_uveHqPJuMi+HX*^yPDyPdY+u3UbHrlNV#J>u4<nWul38
z7tNH3K!<*=DT2}|3rAd~iL2_(KreDYpb7$+|6nT6%vAGcG=5gyrRrJd^vtuj+h;^9
zp-y~FD!SwEb;q|ijeT~#jwVV;5;WAIHrOq7_FN$W6!Sl;DoCTp(Y(_O{bGW4=r!6N
ziDz4=>FC4`$E7I_X?~aey=J?+z;YK6RwMX!;fqJvyKmpDXoF94{pL-UaT<R7Yfk?1
zg^#HV2)R%|dSJWPas!-bG1(Dv;_J)Lh%l%Up5Vj$qx4^LNc77nr^Fx(m#^RNqI4q=
z;+(Y<g8f7Lm`1k5&zK~h_e)qKApTp%PBEU2t};!s866WFoK<2DpCxy-cesYM$0qbP
zsB}&U2ZuM*K76+RlJ@fV3PH(!k;?C(c;*mIlQ%Zlr7H<y1woMP2uJ9Fyagxx3$=bx
z2w!dc=<<>_T2P1|&-WBm$e6Q4vMlP&7`iAKB=1wgdW2_xa9b-5MHlh!)-FsPY+$0P
z6K}W4-t@OY(gWRVDahW7YR_S>CyDwg#EmKV2Y5%r*o;rSqn@VL+GoF<M!bT;d`5Zv
z7-Ex{E>8b8Eem;zD?Os`E_2J~6j76P)V~M5mkGqCVCQb^3`s|RVUXjD&y)zqc%&UY
zq@MgFRv1s7BQNdn-9&&mbgJd3KJ}geF$G;*jI8+(G?quoEWTh5wMAC}@xFQZzHVCj
zAP0kAKL0W5HO?JhYC1QHpt3&~oiCbbwHOoLEkov)toj$`m7Xd+V-HwbGQ9^09@6xa
zaH-a3BC&I%-#;$toEx6Uq3XZ)&zoA&H*+wYS!V2zs<K-Mzl#!w{2g)pB@k1bz?4#d
zIBrby6XH9IS+S3Y%jl?~qF9I<juH{SkAWcjrZ<OsHA4`XIG94Ll*$;GyC`Q~F6JO)
zy1rti4A+nn&;G-NX!8@FBUX%4b<*=+jZ($DkLz<~NP~ssg=DIg`xtk6Gy0gwS?b~2
zt16f@lo&~F=HL>Mcz^4@d||^6q0EuZx3ctPy+b)fTKlr86Ds_*v(B3KD(o+Rmh}j<
z5`g6x+UWF@_*O~Aq1}Si_p{duEHt4H3YY`gfV%@eg<&0y_rYI@uWaD$>`IuaAasSu
zmV#f7cF-4H5NTIEWq2(`$Cj1%Ae@3EHU}}NiNbVi&-&z~?0RVwi%6xKd&L3snWW)#
zW{dQsB3kmWmkozJId=Qwoi)K|V(joJFxT!AH>{O2<`rPU>A>#1y;HZ2D%2a*_*UYu
z@o53roxEWh%?C1T=#<>G%HE?s151jG%W@`m&cZzW@$ounFF&xi9iA<F<#Upu-{NMh
zym)|tzJ2=Js3R;TU|NDu!wmA$H!2AAjW$voN#I!7O}Jv^t%t(I%he$xR#>z88L3B$
zhnyi$g~D15+=*N78#cc}VWJh(kA}{#k0VnU2iT5NBN9_70tfODseQ;4{7tJIAM$O#
zNu$Nb9Wcf}&UIZ+ie7EtGZUL`phIMsd8oVb2{QxR?i&s+g><ekYb+bZHxK41qd~6U
z9nhRlVnE)l<RPwlfvc_}`frFtZG|Ui&YbNv3oSsP?TjH)6vmNH1T|rIz!MTZ`(!q=
z3#W(-gHw#?jv}83>B8<D*+T_&V6A)WXyU$dzaURCYyXz^+;ZDy9%1QHM_reQEAf@e
z{&pCw3y}Um%hzi3?SCfq3*UbxwQc!{5c6Hgt7%u^SUAPNcQ}Rm+NPDV<tQ?x!V&ti
z7=@W=I#>#)Fo;Fiifvl`Ow2)u7i&XF()+$`+`g%5)Z#yP#61&M$Z$QtaejaDbIE2r
zPTsk)lN8Lte?k!hid#!hI>e{bP`eMO$N+0)Q}z`WxDlo!G^N!Mif<1+V%By@Lt(}i
zA<&*}S*@>Gm2AB)=@hAr0q<K69tVv0dJ@O+Mn<*}_A5wA3iZ3Me_PKBrb=wxiW|~9
z-o*OE;P|ExlT$hq?bR895KV%J?}2YHh6pvA?@)BvK)!0OK1`C>B86-y7a{JLfs#hl
zQf!N>9c@_=?TjG3vEIQXy?RJgp%GuxP<beSy~ZfFd@v28NQ0`(X`}Up_vF_*4^jb)
z-6ynhw$6kMa(3ptF#6w=<C-G%zSG~Y>A4N5YA{I;t$x}GDt2%5uXm1+qC)X6RUmMq
zte?`TP3>9=hH}<aG3oDopI(Z|ZH$j(&_99aXIYpLVFY-zDw${5<EOFtJ3_GuWq95e
zxF#Q+%5doTYQTIXZ5WZiv1QakeMJ2QJEPIRw!TtegewuHzKIzeLvnJp1YJzn;isvj
zOp?llhqfp$-Z*(14GzWh>wn9nQA*&Zo?H4CA#gN@Z8f8dB#@_I2g_O9u>|Gss+|a@
zD8Rq7NWE$GQpXW`WJFW|r*N?G{TecY<b0Ir=SYbU25NI&HUT`Eljt|oR74IURn)&@
z)9O*zi}O$nem=|DF3_hiX!}N+s6G8%ZEYP(0&T8ijPC`%_w)j-ZpKhF(C(1Nr}%uN
z9nJu_$p%)Yd?{YmCr3f0TG;3pr#quzithsv4@l<CtgQpax&O^kKFB~vY9FY()l$Sa
zP)pl^yQ45WZ5Zwo*HT1^qcB-wUL_#JH;#!@o1SR3aKa=LpNc<#50c6gcN>l)2ZF3h
z>~DWxu!n(g@_!cbm0OfLxO9eq5KDIGEt25G8D6me5xXAF(BqPN#2i}EVKc}=chH8#
z|K|^j==HYFsuBy!Yk*SbVR?Vi!_v?&`=RvhGYcj*rfOKp<@L0Z+be&V@#LSpyv+W(
zaIfcsAAiZQYq5H)KK%NmsDlP(=aBL|T1&l8XYYLsd(zsQovq)`W^Zg(0Q6ndLDsA8
z=f4>%Cp@)~91ZLS1z?y4xzr%HTd%9=DmNJ+u6p6e>R<<z9VkYK$NtVpL1m&a2j3tG
zd}c_INlYXVL$GZg<s#55L*iOcNv$JD2)&y{9ttzHkCaOjwxqJR`;Z)2<{0|E$l$u7
z;-`aW;#|Ssy@3YB?2w%X$ECmX;vUH!*TM0dQ<s&kv$NDPp-CUEg&oc^g35{YV*i^#
zqu?)?)U+guw*sAhJV<0jH*x48>8+vmH_Gzf;8Md@Gs=RP826BTH0mMQDeLG|NX749
zOa*HumXhagQ;8{7;(7B3a-dr^wduEQ%7i1dLMF89Me2l6mhv{2+DowW(q-;dxG+wc
z93NOE{e^U%<JqP}45+x!Xn``1*!dnCkdR5Ge-24$NZl`liS8h+9c14&b`2-VD|Tae
z_cxr)ZO+|n414v|`E^g~7SCSVtmGGafhzm)n1EH!H%XZ{++KiP=kRx8p(h!D>aFV!
z&0qDWwn{4kWuO-#`v+0Jxjdw>Ev_@<y#{q=^`kcU)WyT%Ix=eB45b^c#)9hv2Dv);
zzw<RO7SlZFi6jV*f*G*F(y!nYm_}J8u0Pj9<A$1n5d~X_(Gp2;yS>cPmDOc7t-QnX
z(jvop2o+J7?dk%&+Av8Fq@p{mj1U52UP*skr4RD~oU}`Q92;Y^wUQfkMiLlm89Aru
zfQQ!$kHCW5TpBt8J%=wI6iUf6Mixd_y|8>pN<rE|wb;1VS@TvuyG~PxRYsPn``^I?
z;UrJ%#IRPZ=W}mZSc)Oue_PT3h26?9^++u$O2d9tY-@Sh`C`2&Gia^Y`8<(AuIpix
zMt5|hsH=KUt`P$JD<dOonwjTD<>|YOA<0WVuN!1G&_SAlTi(+{{<|b@n5Hfbos3@+
zf9L%Dk+TOmFf*mralipqaO|JP0UB$+q3)+#J;0H;kV@M_Wzm1Eq^<))6^BSA=h89@
zio7tPAg7YfMqzS>-4EoYE*5A1zPfI1#8oguATI`MeZt|N2ClW<FmxmDEjdLuoKUvg
zG<b=?Av5cYpL%yIpLPQ1?5pbr_aH!!=wbZlu&`E4K+uWIeQ>csHmBQQ=g|t+4?c+r
zlV$M1JQA>5egUBrbpFs%qtc`H{7v%Oeob**MNi+X)7THWL6xv+81=W{dgl3kuv53z
z4Q_zG#BgD1MZw?g+6l855ffTcEUXKqWIo&JzAI-($$yM#vlpwMWFrdG;=O9(3_;>&
zY))NRI*24rQkYzUsZZ61r6+Q!p^8wL6~HfmWnQl$%ZS_b3Q6!s7Hr|oyxV{TER#W}
zMrtISBHku27dZJhUTL>4{ekG!nNjaW+Tze<&G)p$2QV!%AUE?HHhY=o=Fn46+yA~k
z=~eh<#Oms5OVW*<yM(Q+xw%|z?!yoop>Wip-TXY4lXrSbN{yK@zx{#h$+n)RW^_aX
z&HbV``z2LXxY&DW-YqQ;fCgXV*-4IVxpZ(srD3bn(|jVFf2(E9URJ-~;$j=jjc$!2
zy+cNkAHk}<AOn$r^rlr4h(l5YbzwdpkJdSro&)~?(}785f8F+?Z(7(kE`~}yv+%fx
z(=sj_yDS5$lS6G3)fY!7GzeH|tE(vYgWn;C*{4cL{P7vGin)Y|;|TlCsoL`FhLbTF
z=BPjGf&m@)vWnd`B(S@Xb?>{q&9m&hY(eLTCp#7Fvq{v{MdlmY3Ru6=T2vt=)#aIt
zpDxG5I6A58Dcz3F2B|2<ZvwSm{NqFhyfg#0tdv3Yf|dxJItXtdV0TIY8(S|%m5(sw
zl<&T}jSA9G{uhrn)v3+Fj9ym$)k3En6mfg>MnSGSR>WFcSNE#Euso}(p)QTPF=g+s
z--Jnj;~*QW@m|U`z>^Qm(9_M#&K8yCx&YM;Tp#qb7vJ9=P38BGtB?OZKYf<Y1IXR9
zK9`MGC^F)X&><Xme3ZWGJL#Aw^^Po0*{|QtH4N6fNoi<mB=b8GLY#I4Mp&cJy{oHb
z3{rNjy*~ex*CD}ex9^^Ne|0J5EcHJNkPp`CT!>3-l(jwr!o~M6AMR~DNn|ltMjPPM
z1;V<%SSI!7V7@>c1@VDXq|9|^70wXQ^9nJZ6=U!}`$1vu;3~1$E8hC-s@%##t^CMp
z{QRg)%k_ks%XlL4cDczIPfRs>W@R^CPaOjJnc*BRp63clP|um1@NjOy8G{$T`zvd^
zo;R(Z)E+8z22-ghEAw0Z#XfmOLsLxCaCww?+W2jg*S$HMOyA4$d@oi!iP}o+rskmj
zwDHHbz~{>l4~Gt{fY$Ss&SL9lPfs_6%I2DENgoVa6pMzA^ZvK~i^4>pFegC-%pioB
zdg~co{aBAcz#`-b{RZMUAMW4C0dgL{uZTPZ+C?qJsVd9|z6MP5(%GkwS;-I^hrFH*
zfR=<<uZ8qCe%uHgHe-)>jqY5M@`ZsG&`~lN{rZc8a+}>&R<$UNQHMkoXJvW;HDDTn
z0uy}HA}4<HosgSOeVm2G=Bp23%8X4xQ}m2H#jMP2<viBDoL<#lF3ED?z;wsm)qo7d
zC1&TU8_T&wW%^D0k@)NFR8x>9J;r=`V$-n33##J>d4f<gH$s`Kko+P`#^M43oW0GS
z5Tru=aC>X}ki^kCbOb1cL5Swf`_~QyDEk`6WFN<8kmMf9HLuxAt(u-zRn2@=6-@>h
zyCww{W{qCeMCOqXrP>zxi*NL7tBK|ai}<or)SK375&RAfnIa9;ns|o!)*qu~djKQ}
z=^iWb!Oparhz6*%n4a!aSx)RJn1@&8L{6b0YlTBz87C#_&MzAn8JP^G21QB4#r~QU
z;$FUPsOYQ@8-cz6;D$JB1?Gp7Gj!#V-{LdNs^+$-YUR~P)YV6CJITF1vLV+>x^Jm9
z=~Kn<3RsUD11f&MlM8<kBzTb;5gER-wDO6T6nP3uF3`}^)Lz;)usDG<^oxCs3A&t?
zs9S8f<NYI6YqS(I<f8A_NS)``^bqlqG@N(}4aFkg3aO5zLk#x@D_-0{jWr2GffK`h
zLJ?^k`<ORka$Mbij0;Cc37o2;O-&`P)-lC@GRP58o)9$hWlI)k<GcORQbZDbZSAU8
z`)p=rZupcIKYC^TNMZ0h_fL{8TK=B<DK|?WH*E(xe|pd;sgMMu+hZ`MU|VK=f5zAL
zC&=7dfn37lGpJe)bbc{_^`+w5eTwCLQ#=81<8!CSgnZ$bTlyY&9_0tEAUt7aWaYEf
zRnt?F{cwGBWV5@>*?sQ?T->^)Yp~fS%@ByIeg0g?72-{;2vyq!edC$Y$%eGNzTS4v
z$+~?Bw3`O&m6j+S-b#Xg_E-p{SCu?KGByE6sOGba$&SBnXE*aF&@0Zj*t+8(ysAL`
zj5Ka#Ip$Z8(x$Pu(Rk|NVHTkmD>~)9?hf7OpSB)9WY#cuiOS9=hWKJQE0XgJte=)|
zPPu~KJKq?o+fG%cU#v%RT$tL~me}R{#O+un@cUwmk5e_5Z7>?)@#c3krCJe|1#C0A
zloM<OSKX-PDEH&7Xel0<(_manw>KwJDW%#M{UPbrB4VAbqp63N2Als`SK5_M)<7Qc
zw}J<BWns0(=Hho^K;Q8$IbVkUX~?$Z>(^UTmNKAEI5QV>@>VTRz1ZtyS}D1qsZAO$
zu-j|Sd2j19sp}8hr_0`1lm@&m?_{kJrX%~xt~O1h=xwQSUPOIw`r&<lK}P!Qy-r?4
zv=}cF-AHI$4qaEj=gj&?v#W#QVL{LPZ~2WFATx8Yxdx*ccHP%bwiPU_xsQgbFWbVd
zP`lk``s{)ShPX-~_s=9Cdjv{@#fVb#tJ3Q`^b!(?j|lic_vQ#P1!T%EEA(MYN8c@=
z4|ukz3cBU<)7|_C$;W&=^s|9oLX%n#-fIEYc-=eD5E-o2S@h}^rt~o(EmKahMOjst
zx8bdOSqFjN2wDOk@SEE+1icb46`0RR$VmRq{IE2Vpnis+^;cNHx;}voKmUaF?Ai2o
zZTA$Fu*po#ef{FUkm6%(k&n#b?-4ueEJ{iMNvRpOoLA}A*Zwq^a^|qX`eVmgvqFyZ
z?qCo=F>_tf3q3-f&CyIh580lBGDkka2Ba&K-CO_x5aqEJPHOP#Jji~A_EJg%nJrf2
zb+dAA=^<tj?s>A*ku2)5U<F+OhM;D3k7&;Ak@*kg&_E+AJ8foA_G@<uc?6J^lxk9?
zdv`n;7$BNQIeld7gMb~IDY@Kao}ZQkgwDTq!;td5Ku#wlmM+cLeyMNSP%4tlUaY3!
zM|{|ilv$?7M?Peav7dkS+4&pIFy&%#_Q)8o;FPx53{2nC_Pm{?y205kH%@tAg5l~Y
zfB--!;Lh-w&hft41-ENXkE6H(#H~Bvl1wQ%#2cyJk>0ZUc~LK0;mD3nC>KWg40flY
zmZH5q>ihVxzPpKkTwF=6+{I<F+tnSB84=3S+6Pp9NCOG<Z8(L3#^BR_#WWt?jNY<F
z&0UYBt8)f(PE*`WHA!E|61X;Su>;-6l*9Mlt!P8e_-RJ96bf$$+Nu5hx^ih1e-Ik|
zBs=_wA#lCJz{sH#ddCggaNKA1TqzkU=u;UyDrDX8!lHxWuY~tNqqiiHFnhMt7%sq*
zuB~KF>B|;9%}j>JDywLat#5I;sp2Q{PBCkJp7vUGaxJRN%+NC4D?t;1%pcM~+4Wz1
ze>2<H!z5_Wv_E;5*vf1<%XnEpV1iP_{&=I-D5yJcb2H&t$oA>9|5a|>IXc?zd-tL3
z?_6Z;bK4KeduCp5i&3+X#tr6Y>b_A3#y;K}FK4;R_U=y*GI{&SR8&p)Okq11U<U4E
zaJhag{!$Mg)LOao{6jHPL5op6%<y`+gCLD~71$mC|4dHQ+Fsh=1_*DfX3=d)+l@~L
zy(2<O{Zv|d+6cq7{lHDQfmpx!5~fI)SgM1bxzury<XZWm{LHT%X@U?G>0&~XZi(Ue
zKB@K=)?AUJQ;F{N2!r|Stuc@6h+%t%4~MiKh`G_LmtY~xrjzOG2?krqYLYJUltP__
zQ2_HCo3M80`C`$t%*rZeSI2wLcxlGhIOZ~RrkW#ctHz?qVYpVAD-+Z2dXxEDx_iIR
z9tI=c003y^?{~G7A)zr_3H|-dthsFwvvTs8n-{%5VEVr<+xrs$h6n)ZV;%OvFhpsN
z_})GL@%X{crg1jxJ~qzY#q#BGF?)g`(|vH)Dk}bnUrF?Q(5+#5hmoHjA)KR_3cMv#
z7agDrZoKx;twt~;c!O$tH}mxA(E4$z<ra)ObbE7-tqnFhCDMv{#P5D#CvNMfPgb2-
z-Wk~A2T^{jT6;RtF67eA9^zzV<jR9L#1Y&|>v?51H(^*0qiIl{o0!RW+xxLExn3-A
z8QR&Q+o-EE_ev$QJblOa{#6?M?zX5qttgii9Vx*km1u>LIejR{YOmGi4i3bTKoLMu
z<8+kA+K0~pXp@1?{^aqQuvL($Y=dp<1?Mo{YvvQm+E_K^&5c!l!&mw@>?kiQ!HH~{
zk8exv0pQy5AALTtMw{^9C_lr98hskW^`aX7sePBaw&fmbB>H+=vd{CSODR}kUXk@u
zf?QC6<5mL?Q(Wx_`$I0S`lDHoXh6lVX6iB*zz}bHp7Bop6~I6OIuih3z9~}1-yjok
zm94O%SYpy(_LDGwM)Fqn)tu*ELGIRf)zpj4akgSn9;5_aS}{JrKzUeB;$OH%#YdT$
z&{EGl|6s6d19@BN)W7#drL#|W#kQ7%HC|!YMo#<TWvj!4H?_<geb1G+jU!Tu$C+YR
z^;^Abrg(mTJNHR=&hJkBH-Wp&)1J+V59SHG^YgKkH_a$KniVl<O8K^3kd^@D&hGn`
zD$9%-DvX>Kc%7W6fR>THVv@0@^h?-VJGy@<SDhKCY@vO7x>{V%D^rfPc$B-v)CG%_
z=jLy-I9u0~_xrSyjJ3w`nC(Hr9r4IW^<+UOm+Qq+Hr4aeR$BpBAS=VFNSY*_8|HnC
zQpeU(y{nc*j@d;!0iLyB{)*EN%HN>+O=5Ms68Q=Z7oEB%Cz^vEh>oP!@#P<1D3cHk
z%rHz>?N5Atx^#w~RP~?IkfCz>a0w^~X~FJ*$_qB}@q4B$9b6(y;LDC;?wTS<nnk;B
zzSE`SySX76$NxHSPN0AYBOZo3WZte8WyOAVc?`5Mm5SdB^0}=V|FC*;RO~UNKsmX4
z8jLlz!yg@|)~2A;`)AH=d+`@jtEh)jSbgGXzXfdgG_=ujqF6Oo)Y+xEg`A$_eM3}a
zH~}OxidSAS=6Fog#YB-RF~dWEi&q3;FxaC4Ahf}XLjVv6iRHD;@gl1RzCw#NX>)7m
z@%oy}g=(6qcKgQb?+b8|QhU7DBFJAy4Q9RpXG4kVhd{qKe{0su{JNslhi_LvTTcTI
z0su@aq|pskpMm6-0!x0*q~p5qEwsn$Z8^`xoW+WeQs>d`et%VZ<*{Oqp!H0jpfk7C
zsxK|NsP%ACga|!)ql<N1dj0Vi;?fD(rngxg_q<TJ2Zw(*k=Zi$cIurj2Zhd`iYBoG
z4In7-0eDbBGdq09XC&-hs<P)v$D-Mq64=_@h%a9}d(oxzRLHN2;Z<mmWjhn8C^&7q
z9)is>%;RXY1&98kXxg?QFN+#Nm>Ad?9eI5;W4qh<Lcd7)y`sF?NwAgqF+neaFnO1B
z`*M;Z=n7GD)35*$Y27@&q;ExU@VJ>&kxXM_d&R+)hzoHZ65?QbI*n|f?P|_)(`xMg
zo_o|*Fq3vH6dFn~dm2<7T_Z4kQ-91UrQ%A424Q3>*36Z?z)e@ryPc*om!+km>|ZrD
z^}&1wd0#B&ysGs3OE~5{;Yy(cb9|JH?D-#dvj?|)k^=Jtv&4slG<Bz+L{$zcSqj-W
zb)3=C)CudS0xpPibnVLCq0{AJVP=HPy@|5j7v;<snPJS#)hS0UD>?ua<l(u{wgu%`
zmvq=MmHuG2O3~kYu~_)@J-b=Yz^q6Mx@!3WaX62dyUW5M-g9aJk2p_yVRB&08M4>7
zZ`3mauS}uGCm7zqFFg<5z8TEN6TmRLye@amr{dydKAGB~xtVg@G4)r?OnW{C<-37f
z={F|nHhS*H0n~K<_)c+=<=%-+$ZJ_c(N)I4vdSvXDF)QI%p<tYlFX5a4PEs0&c$Ms
zF`0~xKF4@fV_bn=Bbbl6%f&h~GKCuF6-`IoJD14uj_SyATe%0N=VaDw8>HKZTk!g9
z_GfkQ&lf`iMxjZAH%)eqWm~hOH%m8#({9_UE+&=~<HV^ytt~9We*Ti{w^@<S3&^L3
zfXnxfbsUsKqkH1{k0xp@j>fYC^WeR1N>Yw^zxbSp%3ED&vOINX0=x6M?Qwa<|1v<$
z0y<y7(OiA3IR)?xK$OznhvXFH!{YJSiY8`$dcJ*-%VT;^NxtVty+e2Vs3<S5QqfOh
z42HQsMMZfWEV=03JwMQObYA0nlk>DUHw!XmbX(^;C5yTg!t;{Ot=v&P$Ki{CenFi*
z`Y-bG%C46OS=?#o{=EAY9xiDOUD2$HD5nDQ&2}w+-W|*YZqRq0d`CF5@Q5TcbWLq`
zq+>08ML2yYCnta$J1Q0y+Cia+!KF(azq-jonGnkHPGmP=NAQVNM}|CN(0lFZP_}|o
z<60bveznx}#xRwbjZstVvAmE1!7z`X@tUUcZ3Cs_qOgL?6xZU_!yOk;VAeVBzsvs-
zNF#%Qm{aKLlXze7Ou?2dS?K4<v*`+^rQY328!CzQS^RCP>+9EeJ-%P(__lBCMprNV
zO>c=R+@EAQU}RWfzdyHp^W=351{^Z*S6e^|FjUGah(OxRs{bMvnWq1G?FYfZp|RJ4
z>9^Y0e(2vPW}5rt8Rt)T?!Qxh50ckA5L+B3fSe?R$K`;X3jEuKgC+`iXAr&sj|kGG
z1H5j?{Ltv~WW)znwl+eiu?XqoMpt?Q2#DQ4;MQ>z`T|PqkLk(*Zm7YYtrZ@pR%71Z
z6%(zH=~b=8q@htsz^uw^KH?om?Ee9e%Rz{~zpL5wtclT{$MCIkOtS~wBC#q4dP8CG
zU2z-A?SgfhKbR*dKCdb4FW%NBw1h{;zx&uerC-d07;3`{0DU)-O$g2Y#D4h@roH={
zh)ia>t_2)G;=Dqd7-<MVo+3;g5}&P>eL6Ztn1u%<=pKtyXlW>V7)7Y3sz+;$9fcAS
z<DR!(oPPWm4qAW08>dnr695;2tUn}wP+S}Equ$94xLew5Jv#gHFdw%NiZKxE=E3e8
zi~&7}*f_Ncn+{nPywd#gt8F<+4!zn@X$sEKCd?C@Q2ax(pq`84?I|ANJwQbm=pE&*
z6J4*hqmMHGS*8ij5b<#h08|md3GI6*;;;yPTu9f3Kp$b1k^f2fx86G*A`@~LO`G@l
zZH>h!SiUD$>zo#O0>UB)s@~7?{_dO|`_tS9*H<5phhq{30G<R$BFnP+2K!dap)nJ0
zUnj*%+X>L}iqiU>%gniRE7Xgi8OY9|bcJ=dKeJ+;2LEOo*j?RTTDh1^2)g4gOh_5(
z0b6-|F?IyP^xK<pdWj~JJ)~aW+Hn;Usn$CExqS3Xvlj4^pJpC!+@EraSpR!#WB@i7
z8{==j+y-vu!QRH%KK(`6RA`v>GY#HjfLV|3p*Auz+SoL%{<!)vQ+2f2Qm$=v$^RIT
z<7MzsldMs}!5fwqmgMtG_t&?~Cwh|Nxjs$)#fchqOm=U)PTrBxU@*_yKSJGiJ(d>q
zICNoSN>>W~nHPT%m^THy4X&TNzIAo82Ysw5Uk=RqW}VYa#_~$E{+=3p08b9=?EEaj
zVQTOkh<ReZ5*<q=*okGj03D5V(5Xc=Id&-I7FzanvnBF7{`B+vJ=kU1Q`3MmKHT=f
z{`vESw6B3#(&qN|7L8~N+HrSZs?@>)ukOq^b}D@Nu7;_Y@K8->cyBsS<kBfwO@%~G
z1^R$nCUlFXifD4;9U(cj<K-9?`nMA7n@F8n2c@{k<r%B{o|U}8yu1W=0-VU=_mRSh
zX|4e?4K4w*)6^n9@Kfvx`;xIXwU<vw-oE?pJ^yz4-P?C^K-0ol-C(iO;p>w~d5y*6
zA33wMQ*er@5GD}yK%5-$O;bb0k;*bL-ccIErbvQ7?l462pQl`KDd#do&J$m1aY84}
z@@IsJd`<)UI)v6!_P5kpJ6!oCV%5-J4GR50r6GUoailze)3L?m6aEmKoUYLQ-P<+m
z-?>s%Z=U*dE?Z_Dj3du;d;#JFelyh{v-s3SgzYP%S-9H>{z+~v6*Cz`$7(cbTwPVe
z{-u}`_wc#9UXX&`Th-<wj`g)ds<YLRb_}xTLRw~y+KcVwo!i3BsNnt^8<=gZaGuxC
z<mXjHBCc4&z3mI&|8a8f1>3FU^^zz{d`YQl80?!Ga=@$bT-n%oMiHJ~6(=Ax#m6TH
zD9OOW9rb@W!m1lw4C@PVQkXLZZ1+;RPqg=4;DS_QutNR*BD1A%cVXR)P($I3#E}7p
z`lx7P>dhD%mI#KfvcPyy{<em#wS?n3apBdskoxcZnH-F+{a91WAE_}ikT{4x{gQ&9
zM{SrB(lp$=Vfu;hV}KE-rw1o=n4H+~?_PuDHnTlT%eI_~c_x-c`gW)5#;HPgPo0{q
z{x^_HP4fsVONDoB)CQRaV|oMf3rLX8EV>Q-Bqn+2KK@xpQ&JFeF`ebl`u)*Ld}Ej5
z-d8K9q`~Uv5YBNkGnwfQ)7*vlUf-`=l5WA|Q(J9*Ta882r%TVfgXCF?XJotkhDobV
z?O<hPB$uwWv!K>mpFh_-^2^)^E8)|F(=AYn@Y!#@1YFjtqJ}Ooo#Wk6)HGO-AD%oa
zjFEjIRXxAyPpUMjXcm3X2?61X6!#pMo*svbLd!=l?(NxvYS{(qbjQrd`e=*Xv||62
z?}gQjV_H#aF1)I_M`3<pGd40Dq-saAT3+OO1fa+!bRanb$PA+s42u2iHYJrOLy8t2
ztoG0!<NqnvQ#u}FfmSzzTvU|iw9wnb7y2M%-pOO$T*j^S@;2*BT+Diwo7{-dPgx7Q
z6VrmY>|VirPUd!eCE#)I9tp%5X1kACRGk~BGu&Cox2;B;Vt>l9o+>$E<XL43?YA%w
zyNl^YJq0VxRe7g1&OmgK_<oyv_<&+FLF=Z(hg_qrSsa-|`GQ90=$aUk!AF-8BH<8<
z3)suLiorvFXH+dL@U)--pfRKz;DQ3##%*Jo6Eru6OWQ%lVe-h44m*&6>sD{=BR7g9
zDY#x-%O5n}d@iN`mR~VKKqML(yrFmlZ)ar6&$Iq)8amA!!NU5KF4Y?_H?|GT?m~d)
zYsw=X3-fq1RD7w`_!;NqaGA(g&)Nk7!naya9*>dvq#nnrf-=+oupr>5Grh(~6XpON
zpERz%(mlEmwNv3!sNv*^bC_KrB~3(mQM8&%p6*0bYs1HGE<1-Eo>9Qo4g%*qW#*-#
z%)eC&P4{Rx%rLX0dYTn_|Cn7D<mEyOATlZ?PSauS<sH75u6LSf5(sAxSAQg$q`o!Q
z)Ya*4<6U1qbRx^xjl7NDJ$YJNdu>7a7UKQ9{%~ENeuIR0AQJP)3FcH%X{!I?AC6Ox
z^Pc}s9=s|ES@gMpb^VgGRc%uGPX34DjH=nBQGP{T8o|jYRNDo^<#@4Tlf_?qOH^w4
zC$%)k3z1GEGYXuZ&NPB$K+xn7UrFbBYCUt_=Jkxj9;g-HB*qi^Tle$LcBhcn9wv-V
z>v=gn)5U+9rN0a+FMuZl!h_4>?Te8gDz1ls3|=1{*|%ovAv`MC9}l*`%Iy{ar5vn~
zPLzP_LhzbtX*R``sp@-84G^ExT85FE>c(9}r=3PK#EKoi)@a#39G4AG!?On>46goI
z4@qL~Q4F-IFMY>91S652m(`$TjP3Egq`LCmdEc<~R$i6c%L3N61=<GNakX&OGMbys
zs(3hsG3b&1!~iwXfum4mGji|3LK6>NdSc4le2a>TaO^X8eXr9cnZ>QG_^*<P8vg0A
zacE}d>iGqNM;r6#8*^!ll?ubCmjOTIt+u=b;vzaqGa+ujSE{95DYUYpYJiaGHAG6K
zIdwL-+WwP8JY4Dw&AYPDFSxKBuegr^|H8zkhSKtxUshHw$}okMwf*`Fb(h>^ocX!P
zrEi4_?9PuBs~ONT+)UcCdh{a>U13`WhM21N>#PdG4ed6(5TwHhwKNo_jyX*BI0psS
z>LEK-?!%Wn#sx759*6_piHIZDm+R=C;c=&fH)FZ#89@<=%1vTk=g&Np&iX@)0NEO?
z3E95zN%gUuYGGmEM1B|5c@8^sp|L2=FRIV=Grz7UJ$u$WPrUUE8Kf+yy`-mx<mWoA
zraXpPN59DF@|_@mpAO`9D|A&m3WcD(l=VK{Ihtt+m%qRp_@kl2oIhIM06Io2q)H;r
z+$ha=A*z|KTR~#whk@t9da~Xz?^9FUzSCFDLyCKT(Ft}o6s2ysyFU=gOOEoZk$RTC
zMGuZN`O67hlP$|J;mmFr*$H*MtQThc^9<4`O^MFUSD=m~%xg3PavribG;(A)tr4>>
zV1AQyIBl;h?jJRt>c@K>OT*=*q#cfhJh)P|nbQ-R!ER1Hgdek`_pHdWa;KMnQD;6F
z$UXa3<e619A$>>4o(bp|gcY&4Z^)PFDPp9L2fV?>*^}>Q|6QYo4PoOxH|)KbKA!gX
zxYnInRS0o$Mb)5zS|zcPuKbxJQuLvm;FJz<wOlJa3u4M0?Rz_u>^!LuZ$aDZ$5+pF
zQ^)!`xZCDf1Vpkk3UDDnv1?Yl)*mJNfP6JMO2<L;+BBJ(_H>K^wF!1a0+SII;U-mI
zU*(JA-nP-MH*|bLuB*6GXmYBEd-|O3r;(no(Tr-T0izZul|j7Urz&*!nKiJITMB!)
z`s&q&Mcc5HYZ-Iuw%mcN{}Ez-c)k>`TRLu4jqHfMr#3a<879-Oms@1HPQ7|l(+T|%
z%=QV6@?VIhjJK6uM|{MRp|B4Fxn11#Cs&k$1SkPXsZdjgRPqwUk>3?<C<2JpE!T@>
zUVSf^qyN{{s+qpN19^9Ou!F>j>}rLf*%PC^)DU#^`o84XY4jv!O1fetr^5AONILXz
z>sh(iT?BZicOf#*bppRGCrkp_5ZO=Na3i_zagno+*yHzY!Ksz^EC0OP0un{a1X3y@
zZUG&-b=vxKl#dpXpjk0ch!A&xqcCqjLc5Yen`}}KLN7T>fgIJC=2NA%c04Xu_pW8!
zu()}#%LBHjX%Am#eV%aq^#nUAu%fy$EkJ)~yxc-V@d|6M;34k0eCDT(U!_N(_@L6a
z1Zqrg^c5Je_xA0mhN^`i3N+BO>_*sA2D5k^4A9u%(6v~bmb_UnnS)X~FVrXNxtI!G
z9h;2&T%UtdrwHwBEgU+7B4C~4?#8`F-R>1TK)|gwNCq_9>9;p^xvk@$MUTeFyp%~y
ztSzp3>THi*W`N@LWoOnMck0k52Fl4cN>IzkwV(_HN+VjubEi{faX>fa+M^W>@SPh<
zU8W|)6&6`O@C!|_$BCHsMz_8vlzA2t`e-Dg$eDv1N&(tSopZ%_NBhpU`;oauSl36V
z)H)V;U%fpC4NqY-t8d7wOb-{v#jX^a)<7zFvO94Bv_x>w0hQL?wyc+p5pU1d%N50s
zmK^ZBo+q#ysLgLqwmxvF6#_W{NPPh3@Y5$iel$;yQwCA#ni7RL8IrROdtk19ouwx?
z2nUEIf@;_58LfdUznmHYYnIpYAB_YTVXOT2T!yda1|Yjm#rG1uWLT4UFF@*m^Yv%f
za)iw3T*aEP3@IfjsxF}-))vG6<bT?tNJx(7%F`+7AMixl<H^rmFDmiyd{J%!CCquR
z4B9wXw<^RuUQpKG+Vgpe<f}KQiq5uOBwwHWqOx35ByZSEu6L&{24e=oI0r0@RBsy6
zWqbOkTjzenyM=NyqaZQr?3mwu_~9p^(Plzd_v`Gd(*1c*@dE@jnDMt5M8rZ<KkS(8
z?hn5amb|Tozb@r(KhF-);o+T7%|O$FJBa6(20`4g{qeO{1|9ZdRCe}F!+uk0#J=KC
z^zRag;GSXNYycDF%oPFWpK`=I+4!BKwD)nm3L1^Lja*E7NFbX{*FiF&ZNtNEukI2&
zeo#A~TPjqQ7#R9mlSxCg!75$)G;4RZ-eV>{Awwb+0{MGKIN|}%)s@IPoTA6lO}PZ7
zsJNuxNW)1S2R01oFr~ZtL7FCTuAFxH4~MIDm;%eHN`G-1an_6J&Gz*wvN@e-l16`U
zwO$k9HC?MxBkP|5gu$;8a0h}@6Y0l>c?O&dI6U@->cv0Bye5}cc7%;)vA;f<5vJOq
zD!4)yuE7ZC`u4FLh1uMP9KiqOM&<}z=iOTMsL+4`faopANYk{l)yg!H$^PAYm27nt
zKFtqxMCqMciXIW(owklOr+Ehd&?~Q3kk8~)Q<aTL)zMz6|Mtis8(^@!zvqmOrVnFL
zH!2_bBXJ|bZfX7y_srEL>NvR9-`;5ebZO4rsdc3&6+#jT6?;|jhVROVH$r?Ra_KfQ
zOa`dXGU!=yEk2h0{6?K?{Q%qu@}y}vsejF0u*B%JKJ3w_kCE?WUs-0*<*6Hc7?lS{
zwcnA~ie!njtCjdr(2}D9I#zXwVKQ?QIkE?>*5iGYV!pY12iQqRo%Md4*0Uges!tV}
zeqtGhgYnm?o2Fv02^^_v@v*8ZGWL^mR?)pg^|=Ao`w8|!zaE}lWH$m)j2G~14R?t@
z8$sW98-<fS^E8T-86&Bzr$gQ7%};kG!z>!!=f3!C3f?dJfeJ!uS8$j?@Zi3`R`})V
zRp%Kr!Zi0s=MwJSX8~jzJ=G*9ZZi^eLtE2B`yInzv~bT(i6o1yKVHvIH#WMjZG`B{
z(o~WzK0Kv@WZd%@bq0t*4T=_n9+E&uvclTx><Jn!jDVkfukT9G21wdqe;smS9n_B2
zfJr7?Hql~-GbB7V`S6`QAiY5>dz>kzGEbH$eqTH8nS;igv1?^O&l*}KZSd|~+Q+th
ziWfdl<jTuEVqw6>V)^-eXDzY6k=v(8=~e00d(gI29>-W&FN)xPKmqX2XjuSFt--(x
z`lb<VX=*SZ$Ip(NRsey#VKgk{#0yzI^{Dp=#-L7QXJ$Xq)Tj)04){TBp;4&_{^d*w
z8b)85$I%G`I4>+;8neIni|N%rM*&1r_i>mcFC7D%(yj;g!O3pe81CtFe1bI(EM9jl
zT?=(J0>ST*6Wu#8-Kky%UN14+XLXTi@@;7cf8zb6nINF&`^VT$hvK#H#$J<GnGfPZ
zm7N>9CF_tLj44gz8yuAp>~FStF(9WI{Q-qMa*6!bTW%M)&Jp%>WfVX?w)4<VMd156
zUig*gC)>Yy=RWe3ml44-GHyhm-w8c^Q!kyiJ}f4De``D@?U2qhr+PHI<lpWfIP1(n
zcj(qlBuorTm#J=&p@k2g_xqfH0a^nbjAJT?q|A!bHM%f?7)c@pOf)I;PIANGIEf8S
zp{FnFrSM+culA_MKhAMaeMx~#`SD7JF^~=@xxJ#}x#-!PJ=_8ixuXLrZ1f^sIRf0B
z7IpnGuS`J~?0;c@h86mu0CXSEodsq@8DQ#4e3(1Hw<&nu-h`9Nf(^Dc6cHZyPD_TO
zZa%G3#a5~?Gyy5;MRVQxG}HKWopd5D-V57N**VABP_A98(Mpq19n_*LY<+$ZHhvvw
zH0s*s0<3=lyH(tn?tMF0yqF_Kg9r_x`Z*X7EJdmC+&C9d>~u%h!^@08pn(oJKv*Aj
zC=9Z`_SQ?ptN)8`X@&j>0E_ja8RWjsmsp=M^*V%v-TyQh#R`@u4xvm!w}FG#(VzUU
zReg5@<^iSmmr%RW^P}<A@K|adzj@C4#96G2pfH^>0RY_Nt)f+%Go<wZ!6jw0zLdga
ziaR<M%j926fuR=JS~9!21Pu&KjEZH*T|9UPeg4BXrBgx9rO+pMg7osO$Y+mqiA!m}
zMcbD*=%7wzYuxyq{&FGpWhnYREtz^-y1kwAiF%QJdi*Oq>)=z(9-rq=Q$ruhtt$f?
z2%^b1=r2EBYObq$r7+gZ`U1Y#zz&lUD`vB?<N(XKH1XR>B9ce-YvaYz&8}<(H?<gM
z`(-!^cL%Ee0S=~aXs7E4r312pH)qbI;bPRMG>SGOF@*x3VBc=qvV%X{pBW@X^%<8P
zIm=0CogW!x{RSDjgoeiSM0@XSpS<sX&oe%YIp80W;(Q^14pRGo6MHD5&kRAxvu+^P
zZdifxKfz2gdhtIfcE<(`ApnJi1LLl|CSTI&W73ZIB8~*UPrBp?9dT=4fS3zo8rGpO
z4FTXglOl)<>}VXtSTNjEfT>Y(AWnS=h}IMDz8A7dW!~Cswv|ykz)PuScYU#6Lm3wL
zlJ3DZo@2?sklqVf<fT1lB0$#t|1jqqDF9^$wgXYq;{`v1xjl+PL@GtfKyTlGb};}!
z2c|h#7_V!V4QM|CEDa)8M`+XU+4ww!c#e!Y7jQ#wK_TEX0)R3G;<)`CHE71cBLV(g
z@8ILP!hb0VzD=C4R&^vn-p&j`%{ZI_a*N80MKsS$zyLeJ3gr)IBP1q2U#Hz-{g<uQ
z)v0R(;1vEYTmW%;2Vfp0?LX6ann<#eh5q{{>-yMsGo!IgQ;ZmHJ&_0i?yLkHilL4t
zx4`<lk*J)a+d3e<h7=Qh92E&qkp;pL3PARZ^(wkT$}k^29)}tfrWE<I$2w*G3CQ`7
zG`GSz|6JVlYdQskJ%=TrExj$2C$7cWgi|yD@2jhskd8Lxj)nVH0B`EPp2L3-B?d>@
zs#ot`p3Wu_`mB#_LyW)z`u^i%`lEukK49!DS^bUm=%mmx)t+MDcLZfJ9+QsNG8lYz
zc04I_1(<pvn4~och5WD<_R(g|hyNk24-ju!*+D0KvH(%+r>`e6*r`LI76G81x4eMs
z$M85jlFXRh6cCn^=OPRTf_%9F^c74D{vw%RDeeCPjRAC@@pgZ3<{<V<0=~C{BS8M0
z5$7hLQJMsP-;IR)kp=MOFhr{E7?{f3m|X*g^e<23hKxaTSv$Hf)4=ZO(IQ!7vxOlI
zreKd`=?5+n&J89|ZGE}!z-G9n|5N(%I{;Iq9F_4@bZVOYAkz%NG%PD(7J7$1A$9k^
zoPFVaCQ2~t{{`p{6km0LCA6#52^c1t=`|dV(405GjnPQfPmxmrmXNP_ZwLY`L=>*%
z|3T;%9weuvDgciS=u;>yfU<S~A7k)>zX6TKdIhBK|2GO2fP>TlgjAN^5jx>vczZa&
zKZCF?*U_Lf){lI`RId&JHtTk97r%fD<J&<UIuugpivX<O6V*`<`sk?I|8&~L$)}3|
z;?@@|*Pggr0lWW><|39V7Z}ah$2=>dfKc}1_9tM=P6CK-N-|<_5?md8l|B@`<sQAM
z!?{EG-<@%Nhn6rMynG+<BvW8S%mLX>4@n@{n+BE=*fvX^0B9xzuw#1Vo;yDX$B_mr
zKa>-}5QH)0TmnuBIPvbEOEr6?PvjUP30h|e>g7pqvCvuIQs8L;RCZgC3{Iam>j5ep
zv%vjCmQImRd1NY#At6hk?k^AXng-@1t_YDDgZKhu5&xG3foP_FAqCLVx6!k63Lp-3
zDsZVfF0uoAaja8Y4X3c_2NwV%ThYZvbsKm9XcmJox`^8U4l_12VB#HffVT(+JS>3S
z6?X(_Bnv8)@X(<QTp5hZhzD57BIvagw~|W#-27<w74#PSyY>%Z2~Y=pZrK)V;SL2T
ze?#8DO91}e1Tgz!u95u2!3D4wAB}9+ggQd0zq}&+KlXA7Fj>lgZ<TWi>;pFdvvX_1
z?o0s`@$HXmzzY~C!|s5cX-N-jmF*?8L}8ACR~-V&%DH0G>VH?>K%-2A2?Q7wZzo^_
z?^XPVrJM>J++CQ)f0%l=v>it<7)>A~|1;sFIEH)z_<gs$Hf0j~qyHU_bvaXRtwl7j
zK>i<##0ad!`#F4p|D2q3J0g22EI&S3MeKrgII0P_UBE7a;TbR|z1>s5!Jejr)%G1u
zaTI@SVRmcWSj>D~ZEn#Z#f$nKt+2=cStYJ*xn<><bMBI2q<z1bzI|^t`YQOnpkdP0
zmi+21(FylBjFdXU3$e-wj%p0ZkR=rVC~vO}pmytS&PZ>xfG4uy4A_K-a{nr7EFpMm
z5ntZyVkddFH8c`U`9ad;)VEw;R5^*<14@ZTeSfPu?+ivlAtiA@0RdVA&9rZI^{@lc
z31u3Ku`*F&X<%<7b>th_apY7n0usH%ON}JAO%z983`UC#(p*M^8`*!JtY!1fogsY&
zPmNJ&=?iLx$RJ2?A13$LTaR;xr!fY0w{JhZwc4qjK8pt?8UV@?JDrI~O*G<?*OIQj
zV|k2>v(yrPvd0ni`0f)2Fma&G^{uM&Kep7j3gxemDXf~rP9Fu~9GQ*b6f_Mq9K}Hg
zm3dB4LHtyqqe8HqZdnA6w%KCAjvFYy{ky@DPsQU$C#Vjph5+J;{S4;wi3N5iDF;6U
zod1gKEW+O=rzBm+fkg2V02yJ9SkPbn{HEXL`qSo4PfHhlnl6>)CPik#iT*Dl;+2ID
zGGcDeuAMAB4o6h#AE??5l?Sc8p@cx>qc&%vM!tsUk;ct5k8!v4*IRgFl}iESoEW0N
zR$%hY<5^<B&8DcP2{GCYPmVeKjkeHeDZo`=9otxqcPrK0uP?`zU+|Ra&*UszKlG&x
zkc|T(*R|o1B1Q@{ZWMSBS@~{6R8phC!IL^j>P=)c>10(Rmes8MU2n2v{pGEtOs%tv
zwp_f<H%aNTpN@Xh(g)lFe1+MYGL2`}uwHN?67@tQ8TCTvNG;y}B_X9Xj4$l>UvOaX
zkf()uZb+iAm&m^6hYttf_~Q8|jY%RcZYS6@FH)cZM#2rh!lPYK5`Tj;BHJ>IOJzyO
z2P@r9i(37UU@-gU^1X>Ca_uYKc@-~Ar2X@1Vz+jB@d#J%VjaR^SRq|=4}Yi8O(u!t
z&Acxw__4M52M=e#-~WJ~uBoSInXa}raM@VHG>e%fD7>rY`dZk_%SxGuLzq&jC0)s7
zNqTEA-B^!WTj%xLcXqn(&wMa(FbOeIO9~;Kl@^=U3r<e&X=tu=vN}4(>fNH4n2c??
zXv6j-Bx`AD|DupMIyykC1BUvo^ee@fyC@*QX6l77N9X{7&Fi?ly+_(nvYJno52Qmp
z7{*1zm$-i#kr^JuE8A&?RemW@On=9W&7%|I2OW3AE$%j+kFS0>&nTK}rM}unNl_2M
z%48NUViv}IX(!TQCnCMU!J4mbY^D5=Dmxw*;!PxAPkFg_wf2B-2SYw*Rl;N{+4xwo
zjEP2_TVk=j^kD5S>mvWFW-oS_BuAt7P;svLPekg*miVlBE>ioKdwFU_U1isgR(rk(
z{E{v14z2+?Mj%pf{Dd(OuA(m?1N4NF3$yi5(oyf>`7df!*`Inliy2@;-WRd)tHen`
z#0Rg$U)*d3tI#d)&F)d9Bp_11<J-i3!y!((jr>V6filC!s#Q+86fk%{Nty?{$|1*j
z!OK?42Fx%?p_bQXcF-T}m&?XBZF9f37Z(`s$B}DBcJ*=a5byEWzXn^Pfc4cICrxlh
zfrGaXL+-DZ1HFZ7*V1}$*uaYym2F2GpG;``m{`TUct>YDS|*$0lW19rdlZ^DfOv(K
zInWv3DR}zY4F9fo@Fn{z*dgAL?dT;Ta%KpAv&<_al+Q%(W-IV3qoVFkHgQ(Sril?#
zmi263+gy?;{50K0ljtHQDq5r9+^k!S!f9k|Y*;NziK-KWACOuLg-&j&OpQ(wg<S)K
zg6OH{C(11KjnwQBTlWYLIw74)EKk|&ky(j5eWsR{?HK&vq?DlOdZ+C+fz?UC?25?d
zKyMo9GP-_S8QwX3b2JGzx(O=w1jNNSCO}i%g6@`;mQFR;Iy$IhBz^0AX<>1=mdwJg
zKQ`N`sm@recNcQ~lXkIs7M*>3FQ6`3?D``TLH2^Y@J}A|N}&#<i2(a&!F##4?;cO~
zHT$qN{zWffcw3h7%Jy0qg5B}se&Jg~W6AZf^9{|5rO*R<nF`{~&EH?q+oM<t-A?5j
z&c2qEay7hHi(nQ>^y~>8YP=VjEXt-^i5t(GEVHtbCj^^sLTmXWUuO4od`{n*h9rig
z8Z}#3=c0CH$uCTKhjLHWkwQQq?o;l7KkZ|C^;!f3TRfS@S^PDDPJr-<l*y{#&RiL;
zhAzl=W4RqGZO*7$W(LoqmmQ5W1wVB-(sTqi$wf^jJY>qx^=Cc4O8Bk8(Ih^`&>a%&
zH}+U_BJEp2U6I0-#=shu-uwgNVny1<1Ap!%niTbdyFpzC{3ffeA>B_FQoIyUI}ve+
zLBP#S(Sj`*xLmkxJfDDF`ITK*IJR5h72V7@y8A}4*b~1gO~b(uf1lT7M!I3K)H`#S
z&8zvDy}`CXSS^+O!SR(hEkxbP{y1qU(n&w&snQu-$qP`bFobAc5qs4H0b;vw5QxDz
zDS4!zX3I$+p|^wHGN&;e<>tF6o{i0p9sG?_Z{6^Fsv-Y$@;UeX8&7gMRlxCCidR#9
zLzC4q#9S+}vbNKsmr?cqG4+;FaW=uW@DLn=Tgc!LToNEaa3>HnxCer}4-NqW!3pl}
z?(Ps=g6rV!?l9kz_nvd_x7PfaH7sWO>F%o9wY$1@dr@Vr`*bG?8#l7$7bPRJ1nC}+
z3%A7z<|MawK&yMeAT-_b4%U)<+3?R$DO~x>|Fubc4Z7Nqe7(2x&C=YGg?O^1M4V=1
zfFUb`AT*#_?ayef=aY^Ii~&&8GmY;cApH3Bm@)f)0;As6=T3lzeW$KL=zBI8rLL^L
z-n+Z@&(R*z(n*^XA*+`Jt9m8f%h_e}u3GDGgw0;r@$#Qx*Kg$46=mV!;kK<^5jK?!
zW9il}SIUa?SNRQ350-}~&~K$3<%}FP=W*(V2Nur~KoRNoZbp|lk^cQ}YPr)6tiDBD
zcZ3`;uPHxMiTxk6>c;uKnxS6to!mo29{k<$FCF)iVCXm7%J%m2>$$kW!NsJ_jkkm>
z7B6RFv_NB$vOUQ`&4u4MM|*+t6x1)qf67j;==#dONpU-Ue<xktBUTh>wJBG=#cXzB
z(qwZ03fkD2n>_w;ai^ZR7x;SySPbBLxJyuMe_QV7rx6Y6`1<tZd|6m1DfF+V^}gG}
z`kUepMCo_S7;4^ddtphUbwKTzvi|0`ByT5wrGh8{N5|8q0}_8L6zAhG9y#Bf(1E_0
zkyjuGEsOZ&`HxHnhh5c905kzR?4KP@l5<FObOiDuWtIIHddu;1a!LEIBz;)8harzi
z$Zv0|SeGkp;HK#3XfG@0zCA?$56T)|24N(zQu!xH{Ee?80J(xkdA;EwwwikEsshuU
zIQJI5JC7!v#$+``t?lETwbO0SeRnN;&G4X5(zGE1R{TmLhKh1Pt-vYcH$bofBoYYF
z6>#AqbTW+zIS4d(ZZ7)F&e6b0HQxgDVyY;H)YffTO!A_<N(C;oluSdMJXsrj#@D{@
z+TOYHt{0#`C_qC`=Di95Sy^kSvbwtM!9r0?|Bw-Tj>0>rjP!V;n9#}Fx4(iO&I$0>
z_$(g~HXBG}X3E=w_WKQzYg#W_^ef&Ko|3e-@$ZZ!Z=Eh}57mKv%9ipK=|O8}Re)4_
zZ{!=UsPuxWqWfW6ALH4D64ToS4qCw3o~}TyTr7}414d;X&rJqrzALV*WX9DPU=?%o
ztM3t^q2IPXm$$UA15K1W;dqxbe}yX3(q6cm$28$rRh2#7mI%eNFe8WsT|C~XZf_5c
zr{$<i5aJJT*>dSui57snBS;T~8g;rdMV{c`QK~d>i0Fj8k}a$dK-<@cLt93Aw<oS&
z$(kgq&11NlDREH^4PCpsj5L#|1oh(L5J5(onp6Gc+U1(xX(U~qc`v<^=W>GTrB&3q
zeJ;a!Z@M<mA8!a=6N?TSh0JS6STQT&f6kjE_o;n)w59DdU<~vlL%ir!5LqZ~V!k_j
z+Qr=&D{d7i-k3VzNPL19IwGK$?l5GGZvSfXl%tnu+jW^XX#Xoe`9c*jXz+jrl==43
zs9-lyq1~d?XNX~kHT;lQ<+&-o32v*-`q<Di{HTztxy$}&^qNF0aUo_qA@0+X$c&7X
zG*7*O&Z#sn8_PQNjw%RbK-%j}ENl0(c<9i`t#k)BVaff3p~l|y#~Oc=fHLRp<S~$*
zh0Q`6)zqK#9_)8$Jp%lFYU^73RCJ4&vNzwdf4yHk?ve6fbHV;a4^92)pt(s}#A~)P
zHygULb^LH~cr96h3h>ps;#`|){?kop%?&q<(fnFT(n6R~JU~sS3^G8o-Rk@=SwsuC
zOdwTMga8SdA01OCB^S|6`0Ga3kJhd*n?>7BMpb!{Kb77Fo`Q2zqk<d_(@UdW%d%@H
zRta(H2RlY7${HWu^EQUh$Y^UZS-xc~0mm|`Mpb}8M%(d=TGCd`f4ud^P#YW%-saB6
zXS=K@kw9DDf}(SINR9{39O_OtPF!ysLK0F0ygM^tZ-X^@iO#}l?LnY~VP}V0HU^ft
zl$Xs0@*n5=`-Ln1w3Cry{_qdi!QIqPcOk@+LMESmauklCK4GYK{B5q7AbR|evZdPz
zWs;*~%;Wo@^2`tB-2-bBFoFuN&qB@&CyaP&JRXAbS@#C8g@RqL>jl26&E0fOZ2S)a
z5f!>&ZGbcd&~Yn0LMry_g8N3mj&@7kAIK_BL<Fdlob%V=G0XFd$937jXv!i8S-Soy
zr-^0Vjz-_>4+aVdq-T_Cx6vE;?#o__;(gwi9k$la=~G3$j`C;X4j-QhzJuBB!<Dqn
zgT-q1I(ISk3V>oFYYRCqd%XE@&OA7$&mkZ+Vlrx>*Ywr?oC*}><~Ec|qbD9v1VZM1
zA5~fTEx*BP<+Xz|1N~(|2BCbCs1V_6FzxdR-~IWfQ*PME_^#_de*6Z{r{CM#u3BVO
zZ#3R%770#}EWNJ@K0n}g?d+b7QC5+l1A(@#jkZ5Ve76OGR7<F?A=lNS+BLtC6RAj_
zY%1!~^-G7AkU=WCjGFH0o9qKBzW$qk;RBlMv`|<LPQ<0Zgy|etbBUHb&?fD62>(4L
za(>_K12=9PakRy$$OY$1b<OSK>tEVlB>U)pA47hF*3nOQ<>v`fT}hv<L7#S1dq>YP
z`}QyxUO}8ty&qsjfV|Fct&~m1DE)!c?#^gVv6-uv<o1``AL&&SeGmvy;)GG!d#oiv
z-WmmyuDl#n`>f3WvFWu1rl@^d>(97e5k>r&@!6KhaJry1vkM|$;+|~{2_(F=#C_bp
zG3c6Ezd=(!a4|Vf<`keh_(uSS18+tG5hVI7P|7TE&dr|0(Dai4$nXG3wwV-#EkZRw
zh>bCp5rne0k*ur%h**h4=SBv3uLR_z#fcUb7XunLY}`QxUOn?&ze*aaEe}%EYz3<}
zKl6kBwy7-cSlOy7=_=SJN7%%w&GIg2SMBbvax_-w1D1m?Wcb%7K*Q+e=5RQYbUrZw
zhn!=6K<=o!X{y2c?jsxZ%jjJC;hn{JYUt>IN`WnZn-M12F5OIpPiX;pV-s&A=|_Cf
z1$szQHM25Zq{$p|+6QM6b!Fo9uTRcumce)^cdy`9M`Z7gCf!DyI5^gG?Wu*8QSx(Z
zUt`@-hcYw47pZuC|73(h3RQ#=<K<u|EH~%1NjJL1jHnl&q0`A_=YTU&i$e5Vf6Ud;
zRhTN2XOL?aKP##c5PXRINi9`<EArmzO%3H!Fd5mPh+a`3()Hlmk1_?UNEvMI@{c%E
z&5#Oj_~G#aMy8p|o1?*I^7z3>GS!A;U(h;D8u`d55zB^z)D(uas>VQXx43P)d7X92
z)?vkYF26%~?$&F&yG|UCR42OEk7xYIkG@Qr8AS{M_Mrrpi51FzvDDb&mI_tC?t11s
zZssg*(g5U_8(qYHga-7ugzONWQ?GnjsFJu`Dxz?I$2a4*xtuX4L25`n{C)84ECJgw
zcRt_i{wl1F{{ADxrWIvZ%5lqEu5ESK=*I#lpn5J(9pWEBq*Jciks!uQLe~;t@!$?L
zX$1Pio!I2J*DNWye}T)j;X)u#&%v}q;aR2!W4UW8I3998A)TCjx-~j|H~Y%*#@3nF
zL!t^f;N9ntMV-{#_I`XBq^0|}03Yj1+O-dGztM&dJ5GiFm+kf_22wYhH)a2Eb&AQ1
zOlMmdczn4KdJo~4k>#(Z9)~#a&2YXt<;yNStQCdbt4n|8diIy&V&?<GSWhC{uh~JJ
zvoc3JMjjg*qg`#HqoW8#3lhK?Vmz)RsIb%=<a;jWF|QE}NAV)5CTSx*Zqsgk3P`mn
zcONf*CyEC2#2i0~i^`Ojs^V;I_N7Z1(e8nX|GDFz^RI<W{`&kVE4yB*5L)efUD1AZ
zB~a>eodMoQR*NU($Peq;d=hU?cRh5^epp(H1|)FT5Jj+u0g9SV{;km0Q_FDSPFr)O
zDnTkZkoVIKwQ`X#qQrszI5UkQn*xM?C-NdeZD-}{d%Mh+1};HzE$!=v6GmLTx~z~Q
z<?D_#aS7?{FeC5toNOa7SD`J(#f59Bhpwt#I#&}l@7wV~Y9hobae9z1QE5iQ7akt$
zn;R8X0s#`{C>oD>Qj;hAwpS!WOASfxOx@BkSCR*mM@KaJo>>i)BC=r*p*)gZWCA)F
zNmLn0eM<_;SzHm{mcok;i*#qR3cPc0TX3k<dC|pGUGeD&rm7G@fX}QOZZ>BMyJ%@!
zk^eFqAc0asfvvGGFl>K>sF`f3(nWb){x!GyEYYOFwOhoe=2jfao+GGCK$eGYr--4c
z;zesfaE73VocKWm;J;&6?n+~AOtB(>yRyE;s<pKieZr^>P7{NWOggPkM1u!#nUX6G
zHRZJh;VraazpqNu+gi@PIYD(P*gObuG}1q{n*y|(-h}@#yHRVXcn!Eex0WjYCZ)7j
zT%+&8z5rbcAG`!O>xAk6BDe`R)>{`hIu`}AE96)azeFF)LsR*q9Q~|t4HD3(acABI
z7{nrwK#>x=UA!WxSBoA{%s3o`fP`t)@ncm0S;KNNHnrD)W*<NdJh$oIdD;*``j4L2
zbDot^{N8XhJ{C1@iJ9Wz%fzMC(XiKkaq%W5{QyYqxi%N`MT-Zz{F6AV&hP4)tqyNv
z=f;yIA#^^G8A{(&r_W41Dy8iepTNPZ#}>K`OO5W^A$&>{*;_F(TKVL4gZu2da>M`}
z1(U_lO&$o%tga)xdhu&I0ITSeS5yf3%<Vl9vFe(eE2&$dVxgNi5LiRq)<!-#H*5j@
z;n%R$BiSQTQtmIdzZnWEIy=GpKIgPu^kMwnI<O-l@y*6RKQA7Utu78BdNUCEYt7a5
zO%n_iZG(q5nt%ZG*L@Ad#ux&Sm!K#Dg6h$fBqxw}hTuP7N|C5B5+Qkx{2BzMs$2A{
zrUBG`t1f*LUl;<!yD`uv<xRD4Kyy=gAeH_75HL5ujYYKZ2~qih-^};j^`ekPQhpy+
z{n?K%tzWd{n+Jm}@SVQ@G{y+cC_W%5pu5>h&EX8mVP1%49**C(f=7DIJj`ki&upj3
zdh~PHVU*Q;@Z0+}tFRb9>+MvjoQbVe$0L&B_D3mab#;h(qzS&M<nHa=4<%>yy$X5t
z8OVdcX_nldmr`Mhj!wB*jx)u|jDCbFEEE>~U@zav{LgRf=(BgGGvdC!@$3lGUi5W-
zg?E)g&%Hol@jQj6n9L*f+@B%0Kbc$2CqtVxbO?E4{D?J3_}$OHIq+1{Y#e_D(xZO}
z_m*~Te%^u<(cZ-$r1;kYou>n{kvRZ+DC2Ws8d<HY7kAFb{42YU;=jC1I`?A&7!~O=
z5$*$14asEa32Sj3uc5w&H&BYKLnQb7sD*nQVWU-y6L(MUCn=9zzCSCq2tl8?4#<Vx
z-c{KcyNwN9ki49Zdl{A7rSWkg3>h|*F|F3K78-jQ+p8H@RWvk-vMyB_pi2E(I#y-a
z235LClYvT$M)cv~#=A9Q^jZ%U1ll!QyT%1b=UbF27M#Z&;(=Ce>`GXl&gJ30-Ksrp
zBa4)0=)c^sbt7I)Wq9Hu8!1iB3Ekba2#)^@f<TGDV6Rctl_jS6rmp0fIErIAZCIYq
z{p`SA<NR4(Y3>@#>(pmGkxg-#P5~+X)6kG#v6g2?8g0$-@y%}f_a#qf>sH%WF)=xh
zFSkX7g;53Hp+2yN<5gJN@!lE|GK<eG#7PD%Zw~z>KXx$paST$J_=e=(EdlWh>Ie%I
z8IvAzf)5FBZaWWjb?L&u;t=)g*~Se?G5V4af=4Kdf4;+3f9l!qxDim<iz-a~y7|;g
zAr()A5PJ+Vi(8Q<`!UoBQ*tIg;m6JWhlxOvbpqQ%rs^k!P>)jg@)wmOL}4p|9|*{Y
zfRb~%>}0;3z#rM)Rs-vS;}@6|D}k#6GUBWQvo`gc6;x$G3g4)1E;4hdB&m%VaY?OV
zRHN#nM=c^WUfcn<OlGv2d8dwAptXxD;cFvUbRo_9b3tEAaw%Niysu;ODqP1&5vr2^
z{2u43H}#{WVi$*JMtp!Bz61sjGqR*tnOpszT}h_t0PGM#cG|i977=6*Q=Onwq^6p7
zF#hopk){(F2{#OzA!OWUnfXmJp(!^u!jF{2`0W|)m33G<WVm@GjFTirV$e3jC)n64
zUNYl(TB`j1<vZQj%l$U@eFyqQ4f%?5#@3P*mxr9SKTpf~Hk;?eTD!U;a;@;WUi;C?
zDW1s`V8r2I_zpx(=Jt*_nM3Y&N+WJzqlItx2|kpYS>bQ?0}zh6+u<Bm{o&@8n2dlX
z@0XFV0er%Zf${$SrT_#@x26sPvySbIm%%nutfkqVPhN{Ju$PR>yo6rc9r0bLwlX#6
z8%*{!5VouUecQ^*vg5{4;2F}eddESVJ3+q>Wp}tP@NkK_qsdYgirENod0%oy51*(q
zU3OPI+T_L^H|wm%^=_-iT`khl(U3eSNc%8Jc9+sXpcseK)Cie)@L7mM1}yOLDq&#-
ztFdZ$B~YL5)(X{3QrrU{(w0WqB_f4buG{<Rb!daG6JU8!S5RzIVwWVZ2U4u{m-d^o
zRp*R~^rM#d3y-1Y9QuV`Qmq+E4Z5jZ0{gbumTLPo(-YXS(6c7_0D7KoFK*Y5y_WuU
zr9Q(7G;tv<JvteufeNN@T`R;jH&7HaZt-V*n}*Xs`lVOXhF5FC*jwe>kv`sX^kR1{
zrW1Nj_J$37FL%3h_Z>_L@vKGkN%zms@M7aH&mCw2lO30%J_aUf#xDzOFMpv^x0}1|
z)_)J}wut7%j`j+VJy!8NKTK!bhn+3)RV@T;TY0rrs4I*7V5SQ?KDn8lyHsV-fizr$
zSO3Be)Hg<(vB+v+cm3UA+z3mz?FAOrs$K`mJTI5nqq{=3_Xp~Oy$H4lmay|k|50?$
zKT;s!A{AT=Lw^jOUQ|rODpyMjknh+45FLK+o7-BmBqhHB+3}R>!<x_UcZ(W%_z^2R
zSw5#Brz@&GC$b~j@D9zuwwF6%#wnuqxo(TtkccGna8p)W#q#4Uu)#*1AHZgpyqfE)
z9$?S8ceb0St>GQ$t;}=q68;`&Ao`?^9_mAU^+w^XjRaw<$4j<QrS1>hs~83w@+gX&
z*AuZJQ+UuB<!8{^Hvu7Qp?53p(K4&2SH|NrvTMi}(vdY|wn<gVrx{cL<8<$b(vR-<
z;%C<@-ReVnwk`YRYKO}DmBi>M(7!406iNIFdPY<)K5G+Yd1n)_FY>Ah3&l*jd>leu
zxylEXK*S?K@#`G5e6@E!dfBeOUd=v5bxkNi$jjDobF(#FD-`aGaUVEi;<KZyPeywE
zO!l~-;A6DZ2BvCjDx|oL6M9}YtmERUYpdDqiJ!%cH(vF$%;-7s-2a)8h0!nCy<Yj!
z?-MmB-39u}%K2-%pu&6mJ;+zB<naVz{H|RZeGY03ERLHLQhnK|wl2$+=eE215$syu
z)5V|tt*U~+J0`|gO{vzlkoGIwxjEzj9(}i;gM+_q=Y8o6+C@x__F#`4Ec*9owzO{z
znV6Uu>|f3!y)#~kHTKY_{TBJthg2ZTx#3d;TPKfgf%psISU%4-+?68pq?HSJsASwB
zr2GB+d67Q%!`XhS%nF8MvxWk)>oHA5CQ}!3C5ip;GMP&?6LFjNc!FiSKSX1jg*WTU
z`W$qcmMvN7*F#UBDsCRV<Nhr~RVdepQQ<g}azsk3>0g5ua?}Otyb!!3Cr*jQ(z|!(
zjG+~h@BG?*KR?*~QiJctNt3+~oz&GY^|*Z!w;jmGQ*HJc)q{;Yx1U@qvFBAzaKu2n
z>t_=u{TrCJ?Qm$`p*mE%LMoNcE?lXKws<|c2b>>m?k;Gtx!kiJ!}nT5B!Gy^eb9oF
zP1uD?fFME$Z`*O()tPyE+c3`m$SE&HR8$}PbkWex`l+gFqJ?}JlOvv4;BK!*v?fjt
zT>Nqhd9e<>O_A+8*5($xIUDnVJtRbU-65^I6M}BM>@@7kB?yJ1G??QnJS7TAeyge#
z3lS}wYSHFo!^dD;bBv=bV1P2GCON5wzuM~RQdnO+T?!rt>XiGOeA=dteE;*OtbByw
zq1yAfH|>b`amUlU^q+2ry#{xK3cw-+SPkMT(hKJqUR-|Ee@s4sz3AHued|j12fy8T
zYWpE}pzJykbk@*X%oqg)fx;ypM{Q*!ajF%+eLeloP8OZ;Tw?L)aWQm?B1lA;gg6vc
zvgr1?{Yu+uL-Lyn#nj)bxS{I~WgD+hjYW9d%Oyu_OYS6_ruGN?--&xIL!)d%4jEZj
z#H}jg@sA&_sXscYz_}h%df@Z<+bMI<@VxDgbip~`?rjHSXVIY`Tp`j7D7`|V)Jode
z&1-4@-EyAZNRp%TE@zKf?rL{Z{l)s8L(NwB9=Gf-+7kcAoe~8DdW$@UkG(}x1#%Rr
zM(lyutWnA!*P@EP+um$N+wgJfY@IN+Ibq=eHtg<Tk7R7zShh8ql27y#=ZYf8GOsE`
zDLAOcun^g$NC;?zaZF`Fe&E3n{dWc?B~+^zRQ7@r_pwo__?dq2BG?+Qtv|jT`BbV1
zJ@<<7P=rRq2g%pgJ74(tY~(~T;Nu8HBOwJrgwFT-Xfql_XNre}o?rSY|1juPKzi9u
z{#tz8;Ki@gy8h$i=`#Kzwst6^?J>UN%=3c2cJFL8a$yVWbG}cfHO|Xxw)J9ajX@+O
zAAe{u8DL}-&5)P*0+02at^e2-9^TF!8~ZmYNd(Klz0I%(X-*$DL=I037Au*!M<pPy
zco>jcqb7%|AbKO|+HTt7MM_e%XU0p}1?i*a{B=F5y0Hn!RGiUgXJ_x#a+bI7(S$_Z
zFTY1bK?dQo_<uw7Z{0#qPbNQWf_K^S<FA!c2x)yPxwxo!wF{?3`;<H?$MtxLh$?!D
zThI2FLM^^^`{9ypza{ZXw{?mBy$q}m3#l&b`nrw<E(EUo6^MJ`&19vTkpSNN(5&x_
zgyvt)?N-AxY2RfnV!R4K+d>aWXJ8C*V=sCN&Sihq`Rez*Dy43Ow83{{$(ktQPusTG
z+7_Ruhhw9)a0iFb<@r76>>OH4hCg(5Jp5`Bmo)2w_$TL_B6VzkgZ9g|gDDp=4)X78
ze!1rdJlZI7JlKE~fsaIR9Q$iX690wI9lIOP>%0T4ms2`2uTHbSn~BUa-Y<tlp5rdB
zFOT{&eqGh~<=4{*-ZYh;2%hncz3fAT)Jjw-ZBr6c8B6DTVP31Va%`}DpWX@+V<cG%
z5BEp=vt1z_^@Qt`ReX2t0kzV<UWeM5Dl+^&Tid9(SnOO#nwlb)slllBJKeVlODwTm
zzdRyBNRXYg-#!Ww)AH;Pr%x5!uOjXDiqmr78T}|wWdAhia`)C~NTMhNs9O2TAn$Qs
zF6!n+B{uW{wT;-ehcbf7h-`DY!T;<PvPA68zD=fhu#%RDx$?bwa2?;7-08ybuDF>O
zk})IB+fopSN2(Du!y!n1nckqYt8hQyqvKe&Yy(OijqDIt=C-H{Jm~K0+trfb7tv2Y
zgSjfUks@A!8VmS8jt?@m6IN^1pZ0V%I|#%ydRK)A@9wnVEYJC87akP7NJsi({~e4S
z&WSb;$^ONL2Z!(MJxO;LqJF?WP3sLcd7Lj?>SL>5&kHuWU7M3RBbEJ}810AW$#h4g
ze^fyjOM#X0#pJXFZte_9f#bzZ;iTII5i7+=8iZ`Rd*qKyK&T6Y&}n(F5j0;vO|q@}
zYTmI^pvMOG%~JQvU-}4DZl>q<A`CWoxt`tCWIPjv&fM~!pGWdP^uV6-by%~me}#rm
z9M(SZDWnSu2?`RElA58rZy2rhFU1Wftlf<}w(gE;cH9b7K5i|9kn(Zr-}$-XGD+UA
z`Ik4W5+(-@`ITVl1Ysi5q7oCoNc;Is9^T(Dtu*siF8MRRK{?lHrGI$Fs{vnP&RJHR
zW5@wn$0j)pg^Et;k<A-UJ_9Gmv(3k%zdGGw)k#!M57S@{+f9{#0Iz4M&Q(5L#b=8;
z6VplOLa&vchUb-1z{qzqF|J`cp5>V3P9<LR7>#9-r$3}l-3P*Gr8oV{e;GiToWTcD
z7Q%#$w2fol1g-5$QOrFRjPLa7VZVgns^n8s5|8nrv%9=^xu?ms7s%DwKKRBahy3b3
zJA9v&QH=*MM;fci94}EZLF3z}9D^zQjRYGyVTbdk@U~;~h_$Z>EBvTiO@~I>!G_0u
zMdv5_kTgUP+FG2k0+HGG=W@I=Nmv}yRQuIKTh*uT<;N`zI)t~q`Imwjl&awNbcQY}
zq$*%5X<2WY(s`!Wr5IL^%0Q32xYwG!xIgbT|43&rasgcY0>r;1xE(C6QZJf?jO<5&
zo}Rw)19Ef6nQ=H<O3ysd^+7ZC>7d~U=d3A})8KuE{xh(q-tq%BPg6ufmmTdlKZ6I0
z)_*IV`^XnmDBg6XY2ORwv&;sO!Blj`I4FBJ&q;V4E{65*>nj&94%OE0#t)kg!L}M5
z_i~giS?(9o*K~p+%!KS8C||IaZMw|F>Ya+%y6pF&o;zNK)n(puZar<1>sGYB^3Dr1
zlv|@yqr?)Wr7eY>ll!Rz%v;@LJcnIF;PYal_j<+o87?up?&HG37ktjqU#@-!qwa>X
zxnq*wjDB)-+*VbE+kEXK{u69>Cd$6;kLA~4P`O>AZw!9hdH9Yn^sy7}umPS3d;8`X
z0MX>M)QZao{7)b1PeFDzAc~mq@>@u7EDl(r$rt*PUJ8Fwqfa@@+Rjo^umh_)u0Y==
zlYNlyC>bU`(|BUdo%`M?k}`+7&2e%7GkO$67{dtIM2c*R@Ot}ej;Jbb)h~0Wnmp(G
z&@+ed?EU)pm4}R&K}o}7!zF#l5fn*OU!zG+@Ba9Yd&urVOV`iQs?+dcoRyolou2Di
zgZNF7R0z!OGICM=!A7|DC}w{crC$lO@eoVjRQ#Eoe4~YOi;c!ox_2=k0htxOLh!c=
z(%fN-2(<DPDXF3z+<gvW{Aa{_PdE2OKWQ^Fx=t!XW2>ry)nN~;Fo?auO7hIGuuRMO
zsI3s4-bGHv%Z-%Kv-KUH&*ddK|I2_p=<Z@ysLm9YH8{usYILZxAI*m<N%~K1<FZqL
zD!mT-u4;|=5#LAFfg|)`TCKhJLrn5M(V}5Hmio$8=LBsf8D6uK(+FH(P~+_><a8BF
z=G`iV+8Nc1=dtC+>ix_(|E7S?3f)GdtNp`w@*G)O8P;7%$yej1oGdodp(Et@U~XQ0
z@1(FucwdiI!P|B(CqpW3PMWLNNKHDISTG8++_nv*s%XHlw&AfFvB-CL`QUu5t!h2b
zLn#u1oN&|x?rD@&0yc$Uzl{ZU${vZi^@c-vbjbM;!f=hW?7~ACCnk-HmLy8}H<~WQ
zHr~7f*<PZr>=4m=(N?+q`1VGc3BM#A&s!490^7q2GY6lV?Wwfjp#=mwL7hWx5h*V)
zvS?Q=TP1Vmi)p4dV)>Jt!FOweTtNWp{J0~?WZhJzaZi%R#kS~3k`IkKgPsi{1bphq
z45R>hUo0kWD=~O748`sLC}3^Jt(ewq1;lUeW?^DG#Tre4<2Lg=<J(2vSt86B_y|l4
zo{Qm?%t0D0a3DOg#}&$qKzensvbij+@XkTY`Y?KctLexh1itY7c*N3ai^xxNZiH2g
z->gWAT|X!W{Q689I?fWf?>b^)Mnrefjeeg833brYkP2Qh>~qE|^Yf*VHhoG8x@n6}
z!FwN;n);8TAann=l;H#WP6E4seSXNkgAkKZ0h@^QD;558-t&IZ2L`z>rr5?zOD%={
zVM|OUsnSN~=4UqIE-a*nI*t#{8AcwseX0u%nS||0`Td{=*}=pAI6~?%>$ql-oK~Rw
zOEGJeACsq?8msr;*B*WHs{s%7ldJ#BZ12$FwaS}epcogQZ>Wc8LpE<NRd2~bafRBI
zjC#(npnu<o{Y8qRMPx8GML%~_J+zE9KpfS$QNFIIb;I()LCL-QJB}&0*`@n-zR(xX
z#zZtA(GekN5<q*WTn<ZPzRiIQhl`!rqfFRfi%j9<Lb0!KVagBR;uv)2$0~;z$87jh
z>W`AP-r?WX;_lKt^1rxhSj*tC6Y1E!bhBBZsD1c#fo=PGx``))e>b@IB9lbC6J9kJ
zN+IeTT!<!FsEs<MA7IH%b0Gd|5d#<a`f$o$t^B_V*<^)VD2spocz+x?4-sqb{uNpZ
zMX^fiLHOs6Qxf#tEG-u4?w+RmGhUm={9wl9CmTO~Ib(-4Ol0~zt*3F@Z)zr)Bj2<?
z{icJM<`#%niuHGR?gQ<WOLl3V`JyC1F-b+ReT8kyxxjg*_lStir{3!HswlHTDc3^x
z!50%!Nu|tHvi|b2Dpo62ciU{n#>PCAmylN}vAMw7;@>WdrTBa2#8>EA-d$Jxxn~C8
zP<_3qoq6<Csbay@^BVF{5ILqjZr<kROvYpC14l-ef&S-#+98&TfrJ-6YerOykKKid
zrTsH}D+Qdv2GZrsGZ9!xM+J8gWgDz?2SM^2MYo8ApMsjIlEGHkhoSR%u=2tOVrxD0
zFs<pOnNp4C)naSgU?QYlo}rH||4<O-(6<;0Ey`gp$+k!4nCC6%?}fyaQ%OYyf{?Eh
z)fw>uXXn#HuXLGNlIMvIHem%$b3_~^y<-Ul{Vl=(RpAd%zhxnNnfw7>-#d46DiRn@
zLdP+Rb|?(DU!lG*<F<own*tSQ#1dVob2mpmdUDe<tYY|ljLHQZ=mZ2l*NgkrPfign
z+{PZX2tIupe+u+8^lNBdQ-e1DxP5B>ruhjOqOY-pxhvsG^k;bA)>@4w9r<xl?+#&q
zBL|BI8EgN!!;dMOmyR{>^<5goe~tFtT-$GM#%jr>jBb$Mn|2?YEG-334Q_4y(k`Sx
zr}{i_$FsC3BO&o&a1eWzu-|LV_ZeAe4L0k&%NM->bQ#mDF9-??hoc1UkfcTX#mS)a
zebyl2wvXeHq?dbTJ%X5I!xe7QRP|PdR0>=zVuJ$JTN*C^-X4(PFw7*oI65$m$HuKD
zwya!BnKGG=<m{bf&JsWG9-J3b$*Pqhzd!jyiRA=ETIgB~)YyFfrJLWAOF+5zCjeJK
z{r32B@RVG$x~9bON-D*R_yyBwhm$YFcVjhdSG)xv3Vou-p~(W*G6cB^@8?$t?u`N0
zvN-uLPPzL_#CG@BjG3HC663KHb-#SjU%U{n>DNPzf2oYeMmfU^D2p;F=X&I0i%!&v
zkK>DqK2!$W%2Eo`hhUy0b(?-b`PJ72;pdb<DdoGg1nm_+%xNN_X8yx4DAgLl>~Ci)
zbb|qHnXDOhH#f&I69#-)5jf11S3g4{;>$E}K4?<Dv3noZXnz!@P{$4ceRd9eD<age
z=!mjZZN(zI#Mm+%|Kih3#n-rd>+U)B%qfQ=7x5&qtZ9>Zt7ZBx?~jq-M1w5_#M{BG
z<`R{bNZT1nmc)N93h_}KyVe?(Hd8lhz#v6qnS?87CIa`=S~^2^Y-kh|CDD0g1>(Qz
zPzdQO_2Q-v@x%VlJL8l>K~<-cXU)P&mm+-jVyKvG=r&lDB$XtYK&<vvSN~@A%}jAX
zBv1&K8o1Cqz%Md=rLLw!GL7{{q@250!^h8GUIWoVAYy>DNIq*f8;bq)6`a=(`WBok
z#(pKZw4aeN*$=TFC-w!6kx_3x5!B*}EMf>MgE&dG4n@QXi05W)>;keGlqg?QQboQ#
zZ_W}h?p?%SoUfzFgk}c&v~ZYn`}K2WLZdFAQG)3d$C6RDsP9hJ*@ddX+_7tRjh*{_
zrwrAZ<QbjAehG*P$SP=xO!l9#5k#<!$U5ztVNVLHI@4yo=fXBJ-ePsfq^qfN1pb?F
zko@2w9Z&8;-&09pee9!9V*Xt$RaUEzK^?=-8@rd9Z<RYCVnc&erTWY`mfYg|vA(BB
z0i-Md$Cv4;75up!OydL<1~$j&5MY;{+~SMjcB>eP6A=GsfF7bsh@w~xzt3@LOh-T-
z{xJhb5~Tmt=zPt|zaL%e<9m(rPzqowA%uYj)iw5SqEdJp;wL8ZcwXBD`RK#~^FbmN
zbZ7JVLFR95tqXM{yF_9(9sTt=nr`7K(nuc!o?dGp5oI5hYSsoDw=|9-s~zmrm~DWx
ziotLkSgY0zL|hw<7LidP08kvae5j}c+d*|zmdQqJC_=I0;Tw>H;6(n-4}!=VVQf&4
zIX6Y)O)rqa3x5WpbkQf5DDck?I3|K>M2d~>SYl6Z;ZkJE?ALwFUfiC%=-3UWX@d~|
zD3rx;@HzC%lp8p-_$Ij;9%U738`*0+1ZMz*m}oUkGhiQu#xbBU8<HZ24)Xo?bHF)+
z_I9s`@H7*G-vPDX40ii6viL<H2xZm_J1gMbe9ga^6z*0RjkQF%hN8G;I#5`g;d<6$
zZ}l?BB;7^QRkB85ze7Y>AQbh(C4f6dLO5jO$q1w}vJ!LuD{7~!@ar_th%Ce|`$*yQ
z19I<T_+Q82ik41Xk~=)^>PCBm7eJ`<zk%2oM~DIVq<p<aq`MX@630NJa*7QkpA^SN
zIJFLqz)IiQU<c=fZ?#bVwnUln3NYvXHSJCPV59i89qj%5^Z)0MMdJaoSKLlM?G_F5
z$qW2LLaz|;1OL4SSSD=5Q@?+?Liq8y9XD$+T+!=?ZN3~uX)(}7fLo&lCs&i=MZQSX
z`^T?3@JngvnI=sfEeF8#AB6e3h<&~7I@F;Uf%xlltF%zM#{pvy|Nez$OySp|g~oow
z05XEfUoYlL1myk=2wvB}ko|vt)p6Jk1xT+pTDpdrO?F%0aLco~0dAxPZWY6OIP1UD
z1Z;E30n$q-%B+p=Jj6fXQ+kx*Dh6w`jPVN{4~jR(?>{Sig#R;BQQC@0xLpu<st22Z
zYXqEo9R#7yaVW$eIGsSE#Bnc`aWh3Q=N4XsQ0JNs0kjKE^(m6`_ja(zVmL}a-U397
zv)*XkS?Pbi?ceMtiV?*fo<mU%W8RkQBmxofGj!<s-lh{^S+P-9!+jf#x&B{vXjI+~
z&f5KtIse~DHT)Tq{CynQg3Fb_X~^li<u7;tcJMUDqfHbdu%1+pHVBM?J3sNs{?YCK
z^G_(thKN!?7IOOXo^LhWjyoh}1F(@!NKXP0%K2Dg-6@iyK{{!}D#Rac$|lM;l|}{F
z7+&1nbzt<r{s7zeKf71tn~fTz3wX%vQzV@nQ?w>vP8$VRF;Fg{zLnlpz|zt1^S$yz
zcEA9p6PSqQ#8V_9%@(+tb7-b$U%bAzX^*T+Xg%NiPK?(9TsniJF>u0PYPgNu45?xg
ze-#n_@6TXsl%ipFFmAqW2S*?Hf76u$?DE%|5l)k-%$hIY_bG0m*f08v5dV!;TmTl(
zc>e!(C;s-Z`)6P}!`i{IwZISnw}nH>Qm27Oa<pxs;7SD#>P~<M{UcNU=dspU_wsRp
z>6obPF#E&3e|syN#Ur|xITR~gp{d6tqRfd}Zjtqe!;ZI63KcGyuo^7t?uSz2-f<%K
z)x2A}Py(S0L5e<kqp`DjZOKXT9m=~ajkq&~ZP6L*?mNZb?n8G>%6=T^(T5?EEVZ`!
zKicVHug?FfB+~abj7B-%r{a))WvEHSCE*|UmZ3)By*YM98$Mmi!exIu4qFk-=<vZr
zE>w9hL}CEwyZ)as6Iz6aC}08$iGea_bEg-30nL0`3`hdNQk6?j$0Ug-_Z<uJp`ghH
z6u{Gp+<zecb2j2<&`gsnC@5337VJkQ*$ueqD=5k;JI)-jQmAT|eaR$-3y)*p%wiwr
zRZUTmtV_AoHRDemZ*<5lIqXB5Nx0!IJYy>r<^S%e<tPVg05T8Q1XysJg`gkuGv17y
zG4T1hM*+46cPyEi{}Ut^H0zG7BoV0SM#<g>*xG+l4qmH6fsXEAooa%V7Vyy$lQw_-
z{%%Rug5SruP*;`*ut_Vr_@gT&gRn!gKj}?%{j}hIqQ*YhhBIU5<zPl<dm41v2;igq
z(GG))`w${{mUTI!PTC-km^0hCGdfhw{z)(L|E{bJb3YEiomq{MuY92KJ4O0^21O~M
zqBQu=JBR=@d)H$4`&A6o$nmwDIN)!E^d_4vaDa!)PG?we2OCKON18X#GpyC?I~xRG
zghI7oJ1{;8JiK7X?0GQ7=Ipus32*()7~j|m+0CW?bP}E!s8ENoqA&{fpkCi2eFcn2
z`wHg-THMQo^Z!h-a(vIqle?Qyxx61j{rOe|o#XNlh^k@)7>+>bMDK=(iMFiYLKANn
z!<T-qVL#gZ`sC4v;aD+WT<&7KSh`gM=GW958Bz`TlE9zB%@j%MJU8q9vQA$2v|wd+
zcH%aE-{kYRSY^81Yb+3{qDPXwCMoT<L~a5f^t8<u5$4plPh~pRNbV+HV_WfkQ*wJ!
zCPQNr(ot7n`u=vM<Y`dBs-y&;DSj9(v&LV*_3zBgad@}^Bh$9!EF+1_T}FmBx%=m|
zlws^wLXSmqW%+`akhh@1qH_|#t%q(R=hyxT>_+zNT;?B%>#kV7%*x9yT=CY0C9#Qe
zH1snie8AVb=p-$izjkdyYkDm-?bmZ+H}Sgc>t_^7&4`rh`JC`(ZD_Qe=j7Y(lOC<5
zQ`@taGY~sY9h-{b;}3h&cX{o!BvKmjF~h{?>VexD3!d(UxY_9AbJmSq?yaRdeIwq~
zmn>R4>&l~Pqc$UJEjTBVAHb^^-8gLPZvruIq2DwkvdvI{Rdv@)3QNlScf^ddk@mrI
z6(h5opD$Oi$a=A8mcjh3P4FoaK|T~4KuAD#7;xH0QVTY!qUCY8H1ZtB|1dGZ30iKT
zo*ox1=(q_mFiUitr=+I7^5vLJnkrbv<lEXATJf4&SRC5fVfV!RW0qT|b&y9yDj;wq
z)}qQz?7UTZsNPZUeLw78_m;M=v0lyAlfTWTjQvA!M0nnKs{JKuM7v;l(V)k8n+)g;
zu?Z>HE09;)@~O9}c8z4yv!JSa0c4zv4pgdHqR3bn=&oSHIyLj>=Bg6(o_*-gpGjwD
zy|jqFBP4cM0lAOoW#M2ZLHyB5vuIwbs^;tx@|cjDPn@KHb{yWnVwbe-KDckN^Woca
zhR`(R@d&~c$JGgo$OPvmeu*ZA5=Mv9ZbgGnC--w$Y;42j^dpUFk8LV*_D$`|dC~Ac
zNWlq`#GIGLuekbM^{~kgn%&NiH~F|&2+C=QES6fC8;YrJRh(-?O7xV{@!E%KXR1y=
zUrV`^wd}-CMQ_fsFkz27zFh50<h|4U5>ieY!WwxyiZ$l76U<Vk>mP3I)zVPj=$|vq
z$1^)U(eb?}y5;N@I}f{Cd;O@PGyn6NmO<7Ga0U#;W0G-X6fcP099XY$ZiD}h))Z#2
z_sFHPS9j3$d+_@%7~etjE08d_VfOz{SmitK+%bl5Y14=k34U4bMfcYI68V)9+4qr)
zdBPHq1e*Nlx^KbPj}x(Z!5$NzU>vG`e_Vnbhqii@`JT?$&HUymEZ*%}#nE)ij}nMS
zd2*Tl&GBFTPWz?<p09o*<%O)Pv*;!hCww#dbTV|0d03l9{q246u(}ayM_UtgW!O|Z
z4HFB_@V&)Qyzz(E#}00+X*R0#MhM^bhe(pMO2+H@lEMegtJ-C|fh3qB`!rC<A4juA
z#N-Ux=#bTBWFFX+8#ikM`Z&+As5n)o!ichNmOM7VO-GXgoFlB;yKT!P1-QWP0Qhai
z1OZ5xIEmAs2;Y-IzVbxw-FNTQzzK=s1^Mg=tj&&&GhASEt1H3l*hPb&1B-Dfp?rC1
z1JJjA%$Z1UBWv4RLZV@ia9RG#NsX2ua+TrFjoXff$jIM&Zw@vPA)@?gzj0zy8(k+z
zN#!b5GeN$EXl@X0kC#@DQ7s9j-$xh5SfJ@Sk1t=0U69QSFZ;^XYdJltS`js|3u7+|
z$TS?mE}ZOKUiJCgT`a?d%h+kHKy7o9hEn4Cd9{!Cp@xXs*I4>@P6>aZ+!oW8TD-`%
zrheb8Cf)0r9&@nDln0DwuG4lcwCc;5GU(tPpy&J<Lep}l!v~Y#IsT9J*DP$Kgbvcq
zECMzaka94?h&=0nOdq=7a#MyidUf=et~mi4ze7Ijm=TJbspGEipM$%*9x%{OUu<_U
zRBmZbUB_l`xw@IAFV|;34R2Vc#xkXO3irDbdd<L_w8~m1O#bIit-vhHx6NZSwKheJ
z`=lg%UPb0}0>k0%;Y*udw|^y)!f>KfT!NT}GQE!4RX2{m)iQ$+g9ae}pMiMkO!{M+
ztAtvBuDy~|mH+37Ir;D5{p;I!TnZwE227_&x`O@-ra8T%UmQ}#TQoqi`q$Mt#VOTl
zPRB|J6~jAT>V6%^EHA@l#+V705~fcqYKhk|zX0T;z=Sgh0Hazk&F7X6F{el{R@7CD
zp@I%jNJubuJTo9Gzf}9&J+V{xCQbBR1^|z7?`={ArYl{fh;isBfxzSs5*9xW)W@pk
z!6RWAT^XK9kNVl_LfvYUXBh0cKWX`d5}!Pzh<|lcg^DUNRK6mpmXl@p-5jJ*CHk`B
zF$TpdVN>^rl__o%Uzz#ys?)N9xAtY^b8K*O@>YN~8d_+pXVS!H-PWy@R-n#lvBu!L
znN4;_2I-qM?+d(=%782e5Itjj2dv%FA_UkyTvm#_B)KQWbad(_b<x?PPIMB4G#-&^
z74*aFK1ODz#AGB%rCQ05x~AQ)y2zBd^xS}r*55&z9%ffYOTOIswAbHW^(?6kyfOJ^
zbTQxL9y*#7|E8v?xYoz)=`4x2VEA&fg>DF)J;YJj9jOo47HQS<HD5R9*x0ho(Lm*#
z&U0MOHOvjQJRDD*R+w{HQ|ic4wBKbPSW3QxxnqE?uoP0;mf6j#ObgzX(hn;!Y_sV4
zbG1wvI$vRi3)MM>L)UrT%iDd-s95_d^Q$RnWspH1F?16S_&6CQjHT7&n>8JRJ8!ND
zy4kSw*oK$mCQIYTei-L16qKaomtnq0|HgLMFjUr_%T%ghV3Qq}kpua13-PGe(VXrz
zJzV%*`5kRF$EP!eL&?~*qta@#nUO(OE_29q7JYPO=7UvWHGGDx>a%y<^53(a#*bD&
zf^HpBg!u}Xs2q9^+H;d0c~zm*xfFaw)jY#OOqjX@I1U%0-z{&W)XGYk2Z!XpfPAqO
z^or<5euZ*@gvGQornWV|#-8sW@2bUalXU!DbMT0dGfLRXbGeNS*=%~xcYn6f9Fe|$
z_eN}H@+rwDvt=hpOID}YcCJ_zQByh~Drfg#sW~W>6$_M0+gGZsH-L4~l&sd2y3m--
z!_Y<3^m`=sF1c?kZo3K8>98EvcXCwQ$z7XYb!g$pO{tiipr)5N_5~E7Z)SE%Hff>K
z9og3Azj+K5J5<NlGe62UZ>C`*00GawTV89UuWx^07&BN{W_^%e&&&9wdNSG&E3Mta
zv5^stgT|TaiB+ow>7&JV@x}7Uw5#Bq*aiZKnQQm_663iC@B9PO3!eid8r$+U>UCee
zV3}mzR6w!2@$1o5OptGudHaxXj#@;RLP;!|=&uB0%eO6Lt5v+7Y_{HZHb9sNMi0kK
z;NxR4fL4ooE3e;H0IH}triTK0_3!zT)Za+!{W2le9gq_#in7+z?S9V*5|`TNbq|8e
zEb{v1ritm(qCQ{@R>yDi$(FoRlh-<`qV+mmyW6T|VOYT@%}epBO>LdWC$}uM-6thW
zk>Qf6&{peAsQkIAX5zMl78!3TIMWH$@ZyR&m8^6T>xT50*zaEz|5&k)TuS*C@wJeE
zQzFTbb7zZQ6h%Urw{6kJ5jE!cT<MFn1aAe~XPNL%E}8W}u=&bBPL^!gRyw+&NN<es
z5$g8mA3m0=Yjcmu?{IXo=q4mBV59${YN-Nx|G~zx@Wg?4`Gft#hH=tsu@;harrjm$
zsfaxUF(nBk>YQcy)3{6PdUI1JzpP4rUD^V;%o6LyhVO4sa!vXQO#08=QcrHy({FGh
z-VryU3L|P-U>CL1i4KXCsea}Bb0|W>W%|W>bvkkMP1z{R7d7+P0P66M0y*%?NHM%6
z@1^sUba+=bt}AyjXTUkm_XI__f)q{&tKsj*G4*CdrGQhPZJTfBE=o<dK_M{PZN{Ij
z_aSi(>v@_sGI@T}_&X!!4N|dORZD|;=;=pRfmlC7&=4sVAv2EW*{1tnn`DvBQ8_{U
zj|@QVW)`fE`wFPrd&z)lc39MP``{5^AYcr~GqCDjadLYcV^%w9n%PhZ{umrHxjXjU
z1U~>JO)v#mDZFnk4eyY6n!q6$*#;WAv4li*1ZMqCb&!4p5xbE{EH751+$Bs-e(4@n
zL;DsRX5lF1;~8dPW_6$=cQ_{Zg?y#Hx~Q$g^xJE3hja51_*d`p)kJ+a2hw|p65>pJ
zj<TFdC;{w+yD1AqtW7{rgo}AlULmo19xJ1$L@OCK?^U8}b6WI84)k|cKt*@XUO{!g
z+#}xk22(-%h%(51?`md`9?H?eZIs_j&Z9c4K(->Jr>qov-WxGP(w|mg4G-L~bKJK;
z9{ro5Mt~;@s1V`f<-rEZofph^1cKO_1oT>ZfLi@S>LoQBJzWRD{1Udi69SGF_b*5U
z)L}y&1@Q^nXW0uaXl%nb7~utUe@qIJw0V*5eipEPRM0+-gf_UVN}NnMVz>mMgJ=t^
zfsa|3M&%VE4)=)L0ql9YSgm`@e0TybGe3Ieds%0VTGbaRSR0YG-yE+u_-?%^4uYw-
zcS5eK7mtVAOlg1wB5mtQI9O~bXX^0ToCI9cP5Sz0bOl|D<a%DR7TcL-W5oWk8LV(Q
zxX#)c0D8Q{oDd4CID7Sv$;E-y2{Rh!d90lSdL6aL|JMF_nb19~o*FS_Z4iz+_A@o|
zbiW}-BedG>Sou-4BC_h!^Ac$VX-s3~7V4>;PgM}Abm<A9BJMep7At{%;^e&t<{zyl
zMu<lf&wTTpTM>q}7a7*@cu36XgqDx7j^*69Fa4eV+VR%f>MMU&<|a5^gXmbf<Ta15
zY_*#VBqsI`OwK&^G>$Mqm3&al1Z@<nmkZ-MzVX@Gm6m*~$A^$h^~D?VmR5V?2_U2-
zl-EbfX>?=l1DK{a_P8j`a+Zya-?e%6_*|wBRcfF;XGRI>cnYhOVMH1S6RC<%2M9~W
z@jG9(fB>k9cHf?p5SeCcW^uY3gEIW32E6#N!fR)9T<!NooiD`UD@{ocus;1`bGBN#
zPXqOFQ)>Oeq2VA3HyE!&z4uIXtJJCX%mg1lKNpJ|WwMu(?&V{|2vVEcC|$z+YZcEh
zI8a{!^9JK0y}!$l;VutV>iJmv?@M(pslI|$Ub}Q3rzGQAjpMN%({jRX8lSDMx(OsG
zFr-frpI6jO9G9ZQ;*&BgPR7iFxBjF0Xml0~YIwB{9+BPqrGg3~$%`A7bVw+bXxn7U
z)(EgSbEYI?)HKvf)aB$B@2$fl<?$kTbjchYI5F&wdP>fNX$yMbK~<=M0GS=sqpJ^1
zO2uipSusqL_qvzm>$eZ^KTsZBK$NyTWuXKehr<H~G;hmkUVOr0VAfplJs`WVzRx>H
zy2Zp2RZh7rjT-cRo{wvqqrH}~!AU|*|8{<$6Cdu)LCT&58Dr6iPBX2kliiTHGomy%
z5BmoT)N`oaCxIM)WwEwR^>IkwJISJHwD@g{ap&Gd45m{C&R#R%J*e|<XYSOFma~F^
zm7$8%CIxj)XuPo^r)o7nhk#Jm>iWBR<N%=PE1*Q>vzgCoX8wmCWUQf|x_&2qzJ#5h
zfPbu37`|E0Td+MIj4bSzY!c$PEh)Q>h_Fj25$Jd<OWXW*+aoxWB!iKccj1q$1LUkB
z1ZbeYhlR^JJI4*A{_x9JoNk*K{kI*a_R@SA-PPL{6G}GYEo0rHNrI(>`K>xD3xi~Q
zJM~M_mQ0UOSS5+T#usctf<d9D&bau#Jtq|_W>Rt~a^5XQM#+1m>i1`^fE3TibJ$GX
z4M<qt-B4;A8&pX$C&d3douojGk*w8J(<xTI?5hzV>=YrZ=P1}}tt;W8<rijvRviuC
zux$s)0@Xny*;tX1uLFD@Qh;sYZDwC-%^bXQdlHjY_J9FzP^%<!^lIFkrCsB*n1!s3
z-O6?P@ONk;!{i(ToUSlU^Lv4p<@C_UIK&+dYM8vge4B}R`zJ07!=as<N~R%46&W{s
zn~=f6WAfy)Y7)2&r>4zpjL2gRIc1f*=riqV`5boQI$bYn=3%I{$m9fHbSn1fdnftk
zraVjRC!tOoE!FH9dc4hlNk!vwd+|SXw_uKH5tm(*<D)8JQz~scZ8^)rW(649_n!TW
zznpCb5=sUx)mzcn_-Jmju`Bx*uOsC~NlX9<<Jk@iX+7Ck)}hQMh#awg3QJREQJK$F
zv0<8I+#6d)wh^;ql2ikPczol%y5g{{#=AG019wiJ`90c7`-iJZ)KgQc&5f&E|IC(m
z^_U)*z_JK!(gAc;lHUc;eg7Y0Zvj+g_qKg+6cGfZrMp|YyOb1=E|CVQO}BJ+cZZ}P
zNOyO4r*umT-}3&)^UV9sJM+!#xo2R!*|4wcTI)Q|<98g(2Bm%DBF+AXW<Je`+zXP2
z$ZCe(G9A?-MfyQRR&A!pC?|N4Z*eC1R8yQz7@|zm4h(2m?>U^1KC0|oT;zoKT+SSe
zJW5yP7f%(<Qgq>ULw_XGj=T?!n8>H<0bk!@q~l=6$9;-P^QK76J<(7uR;5M%oEzqP
zR3wCej!wN9s~Xv>Rl}~3tGZK=YR5L@+`G=>{?kfDqWn`jDy9rWC6Bga;GnS+k9NzK
zIL-XIW`}MmB5iC7)@pm?IIKM6Fj>tn=%aRnGIm3iijvJc8O0NzaDzlOdAT(I9ViuH
zf|0`7uhDhvoP(h9cdJf@@^b{`pnR_Ku?HmnGM&+yno>YEZh&L3=Mh7n^a6N;0+sG-
zOLef3O{V2gatW|-kt^n^mTSfw7|o9(gl<_Han_c-8)xlQ9$qG3)L(!lX<ruhLr?fL
z`Z{XR$Upy^jM@%^MsjRM`q;!AcF{{19K57U=O)`7n)V;$^vq`i`4KY(j|l-S#}R1$
zN=ybg5GAGLdQUeqRguqjI@X@=LyRU^IP`s^h)N*A{Vc(>EYk60wG_$Q>Vwt3zpIP}
z?KWb<!ouXGL(}nUpFswpR$MY{_98CkP*)^UKfPz{D(V>tX>Y_JaBkF4X{9O6_?0aA
z(Fo%GOvu;vjI*>2OyBpp(<O)rc?gk-?p1C24!XQ6hYmkJ9|a7q<L+e=;3iec@`SNy
ziUuw3$Mh%XU8>iMCS+J#xpFs7cUKY&LKy}rO}cjC^T*iBW@urAbCto$MRtBj;)m$A
zgO#T2Ur8x`*oby2jLb@fX0BhySGK19?(xXB@^bZ0^Of(P5iVV)xudR6Syexb_>R@~
zB#83qRq2>?tMl_%gWtDI^|KMrwmiiAp%$uiZAQfx6S_AG=k-a|`ofT&-dSB!buC14
zcJalL^I|J@zxh7xq-E0(N4;LUvVS%8XVE*y{k+DaIcwXG6!>_K*lz|--}tw6p!yFG
zH#oTj`DJYPRZp|97|Dfj^&274V1b_NK9JfFOl8~<t745;3PhRk36lBk@93DVl}j*5
zt#LA|W@@i=LBw3EcYfk_4;5oc!p#F8hk3r{H~3ly_wD9bhQV?6ZfM%<V1%6d=Uk6%
z2oyIqHM;M~GGqc_vN)+oI5hxNSi63d<djw_F2{|5OmtZ16A#trKK8!ygjE#UyjmJD
zDhQ`5>oVa-f4b{wom8TxIIhKU*&moQ4KNad%~C~~p1)#$WJ|@trfixwL_%s=W5OlO
z$4{+BeMUcMhmv0I@%X!wHhBCX0joIf{FIW^O+g_<P9bD?_}!A-7P{U$R<WdTIZai`
zTSqWhan`rH5l!uUfeHVneq6C3C7>KvQrJd^1-E+SyNk1@@kHBcm);65k-<b6!|1g6
zGl>X)9@-7p5DU+u7q7&W*Qs(voaRhDK<(nH^yRuONw>t<H07y1p@J^QY#?irJMH+?
zT0lWUzbEx16PW81;Vi3n@t4Q>md5#pdP!k|f+sYN<WmY@gQdPCb&FBld_W6ChT#0x
z?5_@0Vsd*@AFduIH85@L+=jYQY<3M+ZM?y+q!PPsqgk;};e*3TiTL<kd3j8K%;IM$
z6U^72$JqwI@Vb7#FtN}~cw<5+pmuWh9b@t*XxE2wLQx>_FFu>ci!vq3X%U)#yPr)c
zo-p{eub{^DtAM&(H{~UXtyx3FZpfvF)Xvtb`{_qZBilE6ErwGTg=LQI!Sj3PAA}LG
zLvqsEnz>n+1~z~5>JY6{vEG}mkM7LnQ402;dTJ#PThjAu-e`>?DR4NsRKw0n`8CS>
znR0zSNmkO1W-^pSj|od0jd(?bD__`n3{~qMU;uf<m?wt%@~r*am%=B0qO>L2>2~KI
z1Uknac4$KO4~VAsKPtywfzBu(8$CvLuim)QSj74xVm`ZT?hLCDm!uhWFM~rO?+v^n
z&9*Q};oJK1hRxlKlwD^XPqSie+Cf_B^2RyaFQZt>P32kaD&;YeNU{+~vUKsRf>>E>
zMUXb$qdq3pGa>Y%saO7EwqdAQG-V>-d@$PFPhD8VaIpoS%y=_Zc>Z{%kLOj&@lZ>Z
zQD4vAIS{W^H)1H~6!w&wpm6RY6%YAP<V&K(1t<MD=?McY$^Cbm&>7#&H~R8fnYVQT
zs7V=AlDS=TMn){7f5uRi7SH=lIEYZV)5X(X-F75`(8;IA6ESShYd5$`wRhd<w^Nwo
z=CsMCTjv)>8|f>p$_`KRSSvYEFXX`9+H7L_d7!6JQQLA4?yCZSQ*_SSRK9TpYylH1
zE;;{F<C3nYDjPrN^xVqz)N>0k0#<w4O@2#Qp_;4ROu?K-p;D+gf5_BgNik?EUrW7}
z{j05iA+WYAEO^4D>Cjr2r>$ZG>LM<*XZPS9e3oc)z)qLiN!iqH?9@%M2a{Dw(p*a7
zVPgmd!}GK8fG%g{8*~w>)AnF`(M{hQQ{V2Lx)PuEqchOr4B|AD=f8v%iir7=u<aKJ
z5!4!`*Ykl}^%Avwov2!tLo;Tf(s-<KZ12J}Q$s9h=Kw~Cor$pM^o-5Y{$VH`bEeIc
z;FMRgsb4Yy$=nq1Frx5s%Ik>J(*C`JuV4&*G}>!oLHdBrp>X;by_%n`R;<9x{9-=_
znLcE}E%2JK?D29_%g;BDmX5-R?IKXKl!98Em~ZxUKSLQVUGl9;x<{;;ue@bMD40`u
z{wk0@JI`}gRx$Dv4O1+oJag7a*mjN%x;Z$hkT>$fj0f+LDc;{o$zz+%!pv65E`$ux
zU3H@R{`r*pRr8}C;m~sbcECt5?SZwPK%d?x+N^-y0>2`h)bGamJr`buNx4GYisU0<
zDB<#;u&@E6+~E6?n{swiW!2Qq?!q?ih`J@Ba81QU3fm`X7Qn!+EzpMk>6^bx2^axo
z)4w+E(-S^cwTQHD%CuOb286MSeB7+b37GVAp2760V1{?886Ty-#huCf<!by{P8DsL
zCaufApUU#vk9JOyGIb}C>PFH4DUloRKx(bEU?-i=iyGwaK#TamKJ4`8)O8M#Iu)F4
znJdc+KQz?8RVQaM71xCe@7<43B3T0agp{^jcNO5BZ*g9pW?iBkOC8H*@_N=}E7?Pk
z1op-iRe$8fu}+1qd#f(L)uePk<8yKvE^eB6*#SAkysQc;m(e@y$c{3lcU-I;TcJcx
zH@j1>^F?Y<_|JAZ_?fbmcWE1WMW*TM%{fYg%deToZyPe5`E|)0b+)<VHQR&Txw@)8
z2V^6&EPO*~l+F!`;EJmld6Uwigek{eZu8z%*KA;S>~i|z$l`=PcE1~cg{}Lf5p6da
z{d75Kj*arh-9JrE-JOyS$jl>8*q<31tSgkA5y}hQ5h;G)vymkF>U!A`5r_9=9m4rA
zNJA%w!Fa9N*8rE+)}6Fjq_BX-re2^-=lO<H3ev(j0^(EL*wQ#N=1PgmD}QZC_$iKi
z<8Jf(rTy6;Dr#{qr^^fDmyGGprADWp3y1LRNavoYT`m+HqehZdB>t{qIPoI=!ZuH^
zJT*Rw{p%Vj>_`AgyXD&@c|cug+3D%#-_l;$RaXRhb};pnf@kTK=oa52WOBMeKeGo5
zz|0C;mk__h??`xw4kv^ofli*io%B@t+KP&~mX?jmd(~R|*Awhm#0I6-N83N}t-YK*
zo$cw|<=v*e3d~a*l!wM4e;)*a=LU57{M5^bHVu@C!dVewsyeIvPy&ek)oUr-nvLW_
z!z9YoT#G+mnaxW|%VVVVQ3bSiUp{)spgb*UtS$@^XMpZtpLlzcH@&%&4Jnj6LqXe=
z->%+YfA??-HYCScD&XDFL-rebx7T`fBXS<jiv!DAYD1qo_Rqd6zj5=U%O0xEo15xN
zic&&bpUSKoo10r1&77x~)A2-{7>PPc3R}o%XK4x0t21n8xZ?|YGIMHhiSIp~n?jP1
zv>gxVH^Z-hIyDH$9eFt0!F+vrqH#5Jj7+>-bDY~agSDOaF~QJMTjlV|xtF>Of=X<#
zyGyvE@ImYPgS-8w9_Kryi-C|O;cM}4fxCE5a$C~MYTDHzJ#W{qnZbDce)ctw4pFXd
zYzhv>o~S+Hxc}0p=i_396%9)nZpG66{zfnM)KcAg3QHdnce}cK24WaQKiSx$L#P;k
zlA9ddnwsqq1aa<fdHOcbi_0jx30b@Gv-5IrngvI4NdMEx|7%>C1$eJfaE>(chIN%R
zBmj<TA@wD<C{0$wV&Eo5m~h+Cc?Qo+QXF1-2G;0kCrnYWE#lMTOn|4L#h7~ya|wyY
zjebF)CHKsiDbx74Q5?Sum9DR2*RXeuy-Q3eFQ&GNra#;6=CWI1mwW(+7zCj19^tGP
z<`<&Ogh#4xy`mzeT-dyP7R460-y2YfCEb&Te&py%8^YSXcgHJrtFYjnZ<1w_hWa^#
z!@d^zHlol&{3Z_wfZo<YMJS=2I~fEuyJ2|EiU#S9a}4s&x{U2qh^_T`ejb_YX?X}S
z8hpmcr3pEAZAOxtWZ$-R@vX)O$gADB6)b>uB&{od2FuCDefOW;qlFZylVuL4qQTY+
zaO-3wt_sjT*j>+Hf!mW;`j@@ShCx`9uZN=5fLkEbYb1p_{*|yTXZT}QP&EGDSnQRP
z)CpOAV4f%NsL#HL7byH16&B~LdyZ-_aZp|SYn8jnN<+j-^0TMvxrLj;pb-+O;bOxp
zh`MTu!`jEA%tuGrp0UbtxRp<`+L0d;G9SUXj@?|MTCuk=ow_@9;Cym*&Py^sZj!ym
zQ$o?Xa>xTe!QJ^hM3l*?UH}Z>aew1At1iz7+yF@h3z{rC0!I9-?1WX~P0?<%aURa+
z1Gn^+R*_ufl%8mqm~902g+WGbV9uVfElJI=I1_)ur@1`0q5%J1CItD`C`>5(rGlQv
zSvm&09B%c#<-s7#Cop^hcb+*1UCFQpXcVEr!j78H^zO1%Y1I=J8-6kvLh*@=2c@fC
zr<c1qjMCO?7bwym>u9|(Tc4>hx{uJYGCjC(o=;=9^E5`+dv$i@eZkyfr%jp&)SIDG
zZn}tHAvs|lQp{i-sux&!7vT8g;X`PA(@+;;&5>%Oo%;kjvB45qN?Xu3>jMYwWgw7?
z6eIWk!A}h6R=@I&t*JQV>8?!cFVfM79?YC?mMR7_vnJhgZf2uT&Z14yl2C0AixWg^
zqH*(&JbT8KQs+qX;Xn`}p8u(&uA~v;aC)gC*c+XUE+kgD0tR?5<);UX!WK6{;hvWC
zb6rj<KPr^tD-<_3Y7lSn{y@u(c%>nyl;qFpUWwPk0a|@p^dOGN{J0SRy1kpTtyC4y
zT^Y(KpZ2late>X``sXk&mwRrpNhGn8xjOOl$9$y$Ff(rbc^#));>f+c$o27^ZcsUS
zLlpkHw6YVBdK4>MZUt7^`hk2VzQ=*DhUI0`6o7hK^+nN2+SvS|dird{8!^+}UfEWD
zf46Qs68v4o@vxs37wRQs99=u~R)xqD`?ak`XKKK(UHkkeYwBWxVfE0%$LCIVh3df>
zv@N$k*X}{f4eP+c_^q$b{^#%07QB=Kdw@fm(ZLioPwA)sytc0rNH>6p=c>F>GfWd&
zY1(@{A6n|#|4}BjT9HrlmRhQpYS#rOc(&8A=5@u&M_351%MK!S3JeJ&AJL6&*`o(l
zUeXAmg&|JQ=2-&M;71yx0&c=d=}caA1vK<jobBpH1kzihZ=igRH}{`B9$}P+``T0$
zcPFFMLP^>0x5;`DTdupyZCB)NlcriRKqs3+Lq{%@{irk>d|kncl+R|4M1?Gz6f5!F
z(cp{o{*brpGrt^?LhfYd99qp3&)?dC+9P$^D@zlG0XeZhHup!IbodvxenW%JSfKu4
zsPFp2guLoV1u1z8DQIOIMF46&V-+;22744xvEZLelM*}OyHtsjYQd>EAV(nb28+$n
zIc`nV!^zBwb?Hh_izu?N-VGCyfR*2Vbl$8+ixtz#>86o@8uii%#=e0cNo<hZshz^F
zZfPZIJ}Yq>05t5Gn@-^U*D>BDF5;VEt$)gM?4py1Tv(S8{h9TlZ<kL^-8s7jA96nN
zc^k?jH+ezvZi%Qun<`cRqdJH^K|pxkI9aAT(B1mnj~Q*SW0}Z0uhiQxsggnJYhRKD
zvweLtlm`Q<Nmw3ajLO!Xv`B7%gDW;V5pNfOQj<jH=f!{j=inuHIsg%RQ;RYZk8KQZ
z1poPp=$me1>DLo6B)h$HG47~Av5``#p0~1oli+5KgU&M?_%U<Y7h|6Le0r%3h7sT-
zZye(QF6q1-ZzYozxc7Yq{3lhId*%dtsrL`~ftgLM()mix{3}roohN#JsDXpI2tR{f
zwW8`s*)!Vjm_&g(^Na^e3b7Y0v6rn=LW@-sC>^o!c$uluIFHUG|5S`JteVE2#r1Av
z6n~~rV6u!i6P=$%KBy^*-blkoSCRL1pu_6PLLz$+h5NT<Kb$}B`Xl)4^Rrhpk&80@
zxOflSEU;~>gZ|e09kv9$wyc@rnYH;OY9lqh)RM`{xdKe8<)4J@zgrb18q?_Zl5*!Y
zq!Ic1WYcJxavs<>#J}QcC3`YcPk159#wtzF$uMZk5Z!OKcJb0X9BxYL^O2+td5Z9Q
z<l=TTy-^EO8RiQJQEi~H>B{9R9}t7{l7f!)3^~~gDfpcn2J26NYohYxeE{GvOx50@
zH4xtR^-ORnY`ENPNZ_F_$HhJ4P?Fhw^p;>|2Q~s*rFzELWYLU}$m=UC1bK&yrPxmJ
z=u1dDtf$yoz4dobF$xea(vkI^k%{@?!s(q;_6G-UiT3x^M;uD_olMLc?x4H~J-X%{
zD~bn|pT;+YH>sWGPAOrU{Z2c^NxxE-Pj$R-5bn299jbCJ7vj2hPX}iie&9E)Q|i(i
zV^EVVYNjZTu`L)#HJy)PVtHPHD~KsEyz@`-(N@MH9*N1wE;sBxo^gvn`k=(%V%u_T
zntVIHVI?NrXbT9`M-|O2_x=O4AQ~>wNkKJ5FV|-e5?Gj|;ssH*ei%NINr8xhn3!_?
zILRONUu4rr7i2x3M}8*ktxb#JqJFCJ`~%%~$Ishsx_BQOf=p9V!QqslYux&;7}UdK
z?9bOOw8D#);V(_LJ9PLFK2&RyV)R5^k3`WMJ`TfsmJ>(-r7_EA<~K9-C7|r#QC}Uq
zGZFur$X(JTTB<tSn7*1R7b%mhad8Nqqk7BT9?gw{l2J=0x+BD6W*pF7Y+|TN(Vco}
zr%*^{(-}PUR!vcmlw`Y6<hEd;<qlp%N?3IEw+WYD{4))>tge0EECSpLxwTq?FW%BL
zS+Xp=HL6$>>;5<UtitZq?SgM8VmgE3@W`^HQULAo>VguD5Zudt#R*@TdZ@)<;GOvY
z(vhpsPwzon^gW>~6L612Fg`jT|Dh>0wszTzk@es3z(egcT60ie!X#6=V^hFdHO7DG
zJG@S5!53Y{=s=6UYx^}XGTHY27YTSIn3gP5$MkFnvP~-iEA2TOTzv=|VY3ePvpEVl
z%~)HhC6E~R8539X63KIa4^U%3fQsc1BS&A^Z5yvQvV>;P#sCzP0!2d6X-NSa3uK1<
zmu5B(9M4*k{Jzp&Sd2P6?lDMNjV~AvEEgi8#XLdk@xr1t_%OrI&=SjF>6kn0-()W!
zqh8TFRFe!K!rMJYX(MIYq5(8Uwh?V1mqPnJaDb3_uTXh2C<ybQJF@P~u=&3;l6@wP
zE-Fs`9nkZb{;P6ZR^MPG|3j8qiL|Q2U)e&?SL6~9w=hZioWwr5kvZ1FlC}zq-yuHp
zDJf#sYkNOk23w8(`3Mey{X6mi2P*tTN|4DT`ZPg{LpQRjm@cJ0a=1hT3K@$h>3rte
zM0(a{^i;MD7?X;04f_6k53B&srn$)CU%}ocF=fHNY}g_R#SgRjHw9du-;Zpziab6f
z1UTy;hnF4FKdzVI*)<Sk*AQMj@_4BaBL?R!*P#L1p(FW{({lj-lC;OO=Del?d@IRb
zBMbJCWL*L*IN$@Y)vM5mrL)Y?y?VF!O(%4Xp-+B)oi5<j$0%)yihjDeCVGx7(t<y+
zfV}4lexO)sD+#R6uLs~uz%6hB6tb{$`a9u95ua*w0_yS+)Nd4ZQHCP#7?A+84=`H@
z+9h^0;AedueZe=@7Jxyb$bTIkhVF}3c72k6!CISOaNh<TIl;dHXDdZdgDU{(7BANk
zts+C0!7mKJ_Pi^6;4TRPACFbezqsyt4G?p%AMYQxmSvXYu<8V>@yRq!*dTa-;nZ0p
zbl7|I>rh)>H<Jo$2#FIC7#-TX*$})DV5)Um*st3(A*k@4T{h}GI(zk04d(y&+`%y=
z7@|E?3>%aTz2OQP);cr+Z&{2ks+NwPBpE<Q0zYlF1f~T5rT)ICt(%Y@eiD#(Y_M``
zWfScITpPe*fZKw<e!!H+L`V1H4wK|NO{j9*D}n%x@dXa&HABXT=d9092)I{;_`Nr6
z5>G*$PF-Mm@j#-W!lh@niylMhJhOIXoS5OY2@XJ2J6W3pIx49NKSAN5-6RI;MqP)+
z+LAK9&4cLX;7Nx2LFYxqF%O4P<@2_0GQ-P%a%Z2)5;d2%&suKVdCp?YN(@$`_qDJ?
zNDqZPUCudm-;xu;EoC#&aRFn*GJxW-caPT>%Ln(+-MN^EtWyYn46ikk&hWLR18n>s
zUj(^$BdNU~GWZg#3jH-;H(5X?+Xg@(d7F={4dkl`B3;@mvQYT=XP0;c0rN^p=?`Pg
z^fm-hxHofR_)0_L+^_o{^Z|&6wawEKHpEA5BYa%UMl=#gU5*r~u)HJ?viS;J0u~fv
zyma?{Z;r?lb)A?*#|KgJ2m}U6{}BQYu0G(4KqcEwM@!1YcxJQF$txmL<*210+oVf}
zO}@qL6X^szKj^?n-@vjOPI4saw+SK>p6`sYQBFCD#kIm;FMrK)IB_lzb6mD4jwea<
zUVP5*lHnz+iZeVzQ^a>9WF+KQx622Nyp|4W^-D1cm~L0lL9uJ5S&L~PXgggZ;oGNx
z-~L-L3uH`)-}b>BO!VyQ1*m)-f5-6GYtO6*RC`L0LZ)giwaq|VJ@0dvhh@a`mmW3!
z!AD*21x!p>sQ!Qwo-TjM*vZ2t$Jl)$C4rz(Um{wRsS{qC=9GHsKZuyzXxm&peHoYo
zsG2|AZA-Ar!3bL_J2`kzgLa?Q+-dp8!(4rU3RXQ;ZUXt%mVeL8F=?5mhDJ<$dIALU
z7dMj77&${kW~w#Oc<=aLmkx4?98N5tb#hkaKi|(LD--1}+Si@^!#dB)G{@YG2-4)X
z``K999sJAQXs)YF7yElU!6*ozNB}=eDA0Mv5>T9fTS+AV@e|is9dovrT>~Q61D!Q-
z-FL8Ksg@ztyZdXeYBs*CF;|g<E`hnegIg1Gvl|)9NZw>IP)p5p@mjy3M9hA~H0tWb
zIlEkLIOw0M_Hh1E>}12hNb9&cu;E*1{!)@^GS;B>WBdfB!~Yx80!rp78oFm@)m&Qd
zC>Ox(z)!4F!npC!`43Y@AoZ69JHnePiZ2<kV^iL|CTN-BVi&YsD)`u!QP(OBO?}20
zcrdnC;!7S2u1dl*rDStJD_h2YxV_VBL0fH0O_ipnIip8BQ>VI!jFJ=Llpt_c+cyTF
zPe?Stt!$66ZyR}Vzyd)AydI!nFmjw7DweC9Ona89hJB&jcxn<!AFjhLcR|i0XeQv4
z?{I(jN`KQGsoDv}jH7tlXg=m8kZ+yN%=tcihyfT|)ChB_*<r)Nk{o>8PJTRgLFg(m
zky^AU+W&?Q?XFNh{a?6X_YSvXi@uHX1OYba!?SfuGS=Vjg!?=X;?_qMbfeC`u+wd{
zy)zZF5>e`mw@O^JkY~k;FMJ;L*n&{F4EmiONk)s>IBuQe5^P@T-ZIzR0zi7HR*?D0
zhG}RW+#jl%h*r^-kOV*Db}Ah|&{rU8!ow<K)=lxemDRFRteVM!@+^g`x%Nmgj#mZ@
zJ^Qhe1s4LH(*byxvcb<HQ%g^mV$G7z8s%ru>%O);LFrhvm{K-#@dadH=?y^#G(FW(
zfH+YgunVFZk?kBd!m!-~pc$~L5RM<fLsi&V)Mxc!B9f6B)lj4ps_pbt)O)bp)F57{
zNZ2|C5f=E}w&1-U4DKM}X6tzQ+y$@8^MvA<I@8XB`;oY<`~vD;hpX_vkj(DCkfGH8
zN+|BddN94Te^V35^7grQk)@Wh#`h+M`<vT<*u)f|9P#KaCZJj@RoeCg`qzQ6`N58^
zio~X#Ke60#%Y+)-9Q;O=#DdCBCkw3Uk`DVylYpVJNW=<L&}5!=IBYOUPTbaAwliN`
zfR<_U7}dCGyn)F72QiB8-k<Y2tdcL04q}m)Uo1Z0bF?ZZNUc5;a^zv8oyk%r=Fw_(
zeXlE8de$t4&8D=mX@CT*_lc*WVvd>}03=kAxj1}1yVgh18y(X$wO&aJ$l@w|K%lU(
zTUL76&o%(ni!D*h(Ml7K$bp_7x(XKlqpD~1VYr!93y1Q}st%Xh9(~*NTX)7zb+{?2
zbcR~9@vSW<ml4P^hO9lG?T7^J;uUOUH4eoLlx@e8mg{O}V*!bCqNDZG_5I4DL86}P
zbr(P>z+dd{yfHAnlTr1+Ua~yD#Pi)^kTtcl=K7rjm~4O<3xm`ZQA=C`4u-)*;3^m%
zZ3D=Nb|)#EKJ+et8qDlvIHjILyn0~%a@PN1lBfzS?;})&3|78dxvZ~{C(_CM*p!6>
zqWv{Oulv7vG%!H;UDgbyA%azw`Q1D2PtL<V@e&9uJ$7oEqq9HD%7(Ceu^^|j!lHc{
z<cSlp8=PfyW(PzIb~h8Td?lFB<SmX<rpWL-=UAX9TCVN^QXwr&Jh_$VQAww_*<$dc
z^zD7G1>VBlU#cln;831xQ?GllinJW#zx36fz02#2grdrtxpV;d@^Pv0E@xav>dX|!
zgNZYMDH0;QU)D0%HSmLx702$B`x{?s{&GWBNmfiiyA~ht-mJPsWLhWvoHMzANGeZ(
z^<H5~4@jDz?Hzd+?9?bgDq{-tn!E;fAxp4xHq2yz=}~4~YY4gc`P-f61nZ_DZ$?iM
zAdDH_lOInniD@*Gk}*=JHPj|meljRCC30x*S=CLbe2fMb0N#|Bu@eR%iN>g3!4vKP
z=WrX6mJzYO5K2hTiCOoT%3KId$itOOnF;W|D)9EHnwr?wFo|T3tLRJU$Ay3zhhY$1
zw0N|-J305&;3OEu9x&OLt|$#vZJqD^oGPu`piFMo>Etk3P_tqJfPlSvy2>>s%5R0A
zGuLXRBWNxrHXTTru(x_Q)2Kc)U@-5CIQSYh%hXdx#0y6FMPot`D;fp+Y@2P`+klP+
z(H7s>eK*k;_j$lT7H6%~ir(ea^6utVGm4T9-iHB?pXj97Vn7MQ04KoefJn2o=|g^;
zNkLB`Rge93<N^UxK=x$pCcC-Od)?yY^*0I<DZF=TDqB4%my*rK%jX>hSDv0O)rx9K
z>7|oJ(if9~y#+Ug$c2Mqla~Ql5@3VmK14+P5Asv|!zu4A9}f$YbcITpZp`eA04yXI
zBVo&Lm&TWKCQm^wtdehe!y$Fyj;oAr#_VJ8S;2Wn*vyEC=WR?5QnPA&GyyiT0Re6%
z9Hb)Ap<xLx{xg`}Qu)3K^bo=Dv|Td^a||r8Hf^F{o;G)?BH((<ic7Y6?Wz%(Xv9;_
z&1Ez>@EHOh$y*=xUOs3K7iXJ|mIv3^^A#HO_Emigf`XeO93w;=x0*Mcj)f@%wL|KY
zn1!CL)qeWpw%HjtW@F$zS8CV-0C-f(7>49I_c>gWgUJnAe4;nf;&y3t%s<PDmPWUV
zQ}jqsQYPI@VtVEPJ%A{(*4!*ZvTR6>>z8qo*j3V(h!zvMZ<_h<g2Gw%YjQE(_{tBz
z4bv?NVKpUt5h<+UxiE09T^|OZK_cAL9r(Rn!V%fvQQ6?xqIe5B#G%TbsJds->3NHt
z<us#!hX>mwRqjs!z)x_X9y{tV*0>#nR6SG=hU<8_9L#-PZKn`oqXkg2<<zzj#rbor
zy?KKIdL_4~gkmKiI-pu;>(XVfebTVHC`SMLwE>|0SLbG4LWT*StHj^Bmhmzzd{B&9
zSrFj1)0TME4X(GK2LP%#E11v-BuzXa7ylQsbw*pFM9Mty9{h6g-5Q`P82H?}!?h7X
z&kbxdB4Bz#Qb<Ber&%~zGMHd|<q&?BF3pZ7A!1fctN9XQHh)&%-Onxtpci?CIRx))
z@BTV*1NYByO8I@va>1---e2V_;2`NDWlHpZe>4ixb(vFDqKZEBE3<wEW>9{sis8?R
z{mENl>i#kP0}AKP>Vd=Eu0Unw7FA+3K%}3r&i==LMgo&K`r#k{nRYe)x_~wb==P}B
z8%d`++B#Ig(54E0%>1K!d(iMPlzW-E$pzM3!!c*}Ta7v8AT-^B+?Gnr<m6qDpq+gO
zSsXfG%K@wM5YIFq#0T7Y@`d;i)r4O}ygK&}2Z74yxwDM)AN7S+Uii~W_dc-*8kJce
zH7_hN(tK@Vz{W2V(plzbu{6-Ia{j`*@MNsJfQ)JSFkG9HYtP|1+A17{Q!Sr}5Bd2q
zo`_G)tD%91OThN`1V6#mi}0;((ryBQx2*Gg+!?V}V8{$Au;-l^SnaOm4?}ri6K`#D
z;P1)P(#R;8rlHJbq87+*HsPk{0RJ_WQTevDE#vOtn=I?EgtvJ2S?+FU#JktAw8PG+
zgyoL0BFt58&DvM>9sRpjkqU>pr5NfI{aqa8EN8(P!(AdAWGe{s|H4PGCRE9lPKDRF
zOwI?~s5KID%|f=hD-sD)zjsOAU(qD8)Z+%Txubm+Pwe^+pCf;c7X%Sjl$TbN|GVY=
z>1FadAD4UZ^|P5>!yt&x5Fpd9;WJB_xH}QAr1Fi!PSq|sYb9NH>sW~Z0VqG8Yaj>R
z3!!d|OzHl*syTv~Y;I07jT(wXJpj~Adn()~6SpDp{s!g)ClsBJbX)niX4^0J)@6Ws
z!9#4*>y+;XN|5}M_fURzXcfM0((+@6J6B!}K0Bf60nDejrZ-=LM9V%IRxckvgOn-C
zy=xP>-16p)*anVd?uZNM%=<<`>ETw2*uf#%aZCwYKV%`g#W=A-HH26GeiRrG^}<3b
zNygr*8OR5SANi+RUJPXe>fX{q!J<iAm3fJN>G-tObU#P2LqoKJ<*&)r_%O?X)sD}N
z$E<)q*S7|rln0*n2oCL>mL0olILcjG7=<jm2JJrb6Uc~+;)86e85XI$$``!~mg4l+
z{v;=Pl+l@3ZEmCsbeB`wtjVG;j%q+xQZTA9$7(HC-)_&HEp}Y~v9x!tU1}lZzOxUg
z^vyozE|PKcxRS&z1j;U-7BE9>sedZf%vT4S0R28?xhfsM?#v*xX>QKgX|K9vm2>Yq
zzDo$t-QLStz)VYx%*?XeGtm$CMC;YP(<M+EVgdIaxC0Louz7WkSK2G1&&=$;V8YI>
zTkGmn0p`-}<P?-EnV#;UhEqm)U71Z&hLt?cx=ag2o80K0w<$?KSuSh5-qH0*yE>fg
z8QO*MFiD3GSFbs$Gr~S5+~qUxBDb4-I2WAeVz<JmVXpMA>H9x8iLL2(*Mj=RE^CHI
zKvn4x-{aT4;;JB6>s;J^W%%AtChZbi#2tJzvN4_kqn=!L-^$4cveuEwrO%ZBvA)qb
z;U}c{PFL3uiF_-#^ePKytSF9%8E~ByTUGBl6rnEs9r%Zi*vy^pL%38_cBsYQZX-mN
zj7=UrX}PyC^dc;WR@_2VRikuOqXfBG>z{76Z%oBLH_;jftLDnegm`?i%Xcob@Fd@n
z@Bt?8=f;Q0&vJsB2e-%3L}@|{cp?K;iVcO`SE-%}f1S#()~nC{VDiDGd8yrr2?jM@
zbKTa>e*iIpoE<slk7^uU{p{c?O@xR|nh@3EZ5D(8fHpjYz&(Rt3Xe~O`9Q4<ZHjkf
z4+8G#X<mbPpFTNYOJ|QtZajg5QS43DS_e*OmhClpy`}HsFGQl+>;UE4QvV~f6{hv~
z`fb0NmdvlVwcRb?GZ3t|lT(?C-0w#i2RigkD=_Mr*o1jGjDE}TW{FoCd4h)KHVcCt
z)#`Zn+F1i)x<|n6TAtz67aGb5oUt2~ge4cO7-BvH1o$ee6P+(rJS?p9NNgMUTfL5=
zCbwDkIlveIha!~ZV+ZqVP|GHaz|=^S8tfX{4NdP5#VX>nx`C^FHnjaFAp3_h22BXm
zttm#4I+0~(t|%58|F*PbYa5Y_H)tG54v|oR!`#R{Y<;)hmEBc4>-rn$TDGb!Z46_q
z9~Y)pu&WZ5_jck*It`RNA4PF$l&mUwDscIAnGcLKnpIyw93G?OIi<K9F5UPUAeaAw
zCHTwR3SW#V$S>Zc%WDyO_!<P;DmoKUMh_+rBI~%Htem~4ms2*6hh8OO$0{zearacL
zER7R;Qa4OYZC@iF#eGqtZ(4_nQCn+9e~EY_e+T-F@b;Rw>$X_5n94&eYIu!)&#Cl%
zF#1WpoZxz1_}clQ+G&3TRPs7BkU2P%GfZBcs^AOctyyL3?W0CS)Zg1jEW!8HaWZ<|
z5$f=YzwUQYMM<dx)QbCEb7EF;Gn@dl(Mk=J!KySR#+M=cmc;9csT-Hi1q^hVrQmUi
ze}2rgf_a4#U~D?DZG+fI1&c&gW;CIn>i7(%cGB+d6XAi;Z^>|@0sVC72TY?HZYBbY
zEqJqriAl}X-oB)|E}D>>Caa3K-x3d#MLSYLgFr+?7rg(KEP~wA-zX$X3{ltIAh!aW
zXx9SRTPxUeY#&MTQUfcS(Kz^KV;C$Dov~yKJf*8n)pybcwae>t1Mh=bP2;6`dZRJ0
z@eoi82Y)zfh!{(^>04-+&9qOd>AC-cl~aZ*b6vbUf2RdRtTixd&<r0iw^P;s-7cC@
zvtvRDRMu+k9#qkvWhIcWY4&zHGAG~mcg#X{s0@CVGyWP}@DQo_`DL|o@UJ6;IW^XJ
zWK=e0sY;qwPc`Mw!iutM*}}TL_38)j+~)6dPSu(_USsaNE88*HFXNTUmFRAcA$akk
zxk>?At16gAhkUN}CZC3m&d&X}V-$N|u7KtSZ1<84?sDQIwsG5qtq&{xO+$GOgRdZ2
zO(dIhw|9BY7#Y3(&Y91?9v#rXPAiTd#HsB~1yUGvpI)Zwbw<m;sD!_kx}w$o_z#D~
z13uzL>-a5B7l74ic;3;Uq)!xKjY|@)=8(~@d<5J;&m$XMep<n|-}E6An<09CT99P~
z`CTMP6C0N@!1u!D;sl>{*MHlLok?5~$X28!V7mV4fE7(89g~;{pmpHg#9ragnJ$7(
z43kpjYRx7b2>|S7=GSj%w+pRLdtgz7m=LGF2QcR9Cb0G5-HtE-yAw)UsfW=hZN#>$
z<PqRmk~gJE6W<4HR85pVFEoF;tTkW_hzRF=r)e7aGFzk&^oPJZ9{Z|Zmed3^7q}^}
zHOLZKfDwKXe7xVH775CK)4wtc39-kypse{TDoF#a01_wE+uq7HkSB2Wh?P=cnxd-|
zPd=lEDryMT&~)tB^ZorQUbaxJghLt<6fvD|lsrmg6-94^`Qimui}}G+sh{%8gW+#1
z{@dSLjzd_BKRb-XUmQVSh{12Yp&kSWVSVhc8Uo#!AvAe#ub){VpO%i1Ykgq;>PIIs
zC?n&DN<Q?H|CU9#{+~#XNAGBm0s@kVI%)~j(T^L^0JCSo^^lWHvWm<adlE3VdL1E#
zc6bs(!qww{cRaDQc$Cur@4z&<I#O#03<UCCT;$_F;b~k>n@qJ*OtEJ|CA#G&)jZl3
zbQdsL)}{|P{yo$u6+Uk*m?BVb8B*xx)2(Wh<g=NsUCELEs}noD1yK%6wQ6sb=Iw5j
zY<0~g0YQ~kV&>q|)X~{YQ`7|Iv6FkxN!qo3e)?jxuOmF_ppM&b&E5^{W(j`+#h1S@
z>HYY%l~2{Is*{izAOgMj-Re0}e)hUhD<7Z<#_*($g<9IeT!m|ARi(3o{(+f;M=Es2
zzYVg1CzWPL*@+XpzkIC;XZPorMC`)F+_*t90b`)^;&#48BIJQ<LK5r8q1rmcc)bNR
zzOtpn4be>iMeWX41Qb!`!AfveZ=Z>J$B81L<3ZXwzU@8vKdSHAL<94Oi57gpK>3t6
zY6TF4@;>gmYv}ZjsK0c(D}dpthCcgSLV?y5^1G@uktR-7n6U#bBnQ|fL}?KfkArmh
zJ<2gK>vV|xMc+*2`fc)CsUGX4>m8qc$9%!+h59N6E~J3cwEz`;;+kR!xUaKC-3s7e
z;^kQ;r=P%O=9932K&JPr$aEyB$;~GLb;U*(^{dZ>)uvlVSl>ZpfJ#@NPlE+r-zlCf
zz6<Q_Ei45sW}_E-mwsrV{;r1nCw96Q#$2BiotHy1ryMj@+^(ahkJEng!bwq6`ig&x
z8ZKB%%b^*vVxThivi<tDvlUg@H>xOgcpK4p@qLKpF-}k(qv+0)$18Cwyl5sipu?su
zC-FFgYliFjW60|CoRZ(-M^o$2#4D-u^Bkq2OY#sU(oE9E_RO)ULpZN1N`Mr0#T(KL
z;M}FaU=aDS2E6V!@?&1V<{s=!0(EcRUja|#`-$Y3reDri$O}w4MQF5}z3FdQn1F07
zX<UTzCK5kbBQE$%E|^L@(Ral(m{m53s1i0HXcx>^s9tw~n78%+X10)Utu?Y3jAD{a
z8>xb3u0!%G$Ss3+iH9T<k-)QB_rK?IYd)MGEF-GmBIPunEJi25pzs6EpJ@lez|pCG
z9A4^W?YLMU10Mzw&@st`vYH4fO91t6jTeg-4O|#ah?fA|2Vp-Afs;mkdCu`Lg+$Wg
z*;6yh-S7JdrziC9=+`UU5N54{+yXv`2x5P%`w?J2iurU;=~nQ8?YAr`khb8DlUZXO
zpSv$2O<N5C9<$GhJZhOlm}a#Bb<Ao^<QDJjb^~52l$HDfrYW5q9*X>`Di+ugY=OSQ
zfS;JC--}_G{W&6(HTQ%Z=yYW!f0dASr_Rh}5=;p!#`h?DZX1)VH+QM9F7ZlhnMZc|
zAhc}(*{fv!LuTk2(hFgbf+q(gY7qbB^G~M<@=%jPfx$lzQT%Fo4Ya`PYB_(acu2<p
zCQk>{Z@aF(q3Z+YTlV2GOfh9vxX|zaQA2mUeL!N(zhqy(+xmC(BJMwap{^p^%Alg>
zX#>@)O%^DA1<P3y>EaZZBos7G7>Z!pYsU4g0mbYHZm8dhoZ=;E{_@}BLp(ALE|%Ax
z0^vf))pLAENI1#JUe_jW_aSTZwhuye-vG-sZO!KqE4%-Q!EM8w>+lxNcp$*Z|JLe8
z4|x|6#6gMsGXl9Xd)^O(1x7DatntEZ9Kw+b`|o@P0ia|@;N3x#8F-v+o`V2p`)YI$
z1?2iS1FSW{5QJ}OgV-vG_NHCT&{k{m3;4*yAG`uwG0X7Y+d<QNXU;qXTK^Vdz4?}D
zIqSTng!R^}mtb-t@(6;quqoc@L9~OU$;9bNHPyzjh2NEvs$auwB)5ul1X}Av%b4w!
zbXjxI0U@6Pj=al(gW(VPL=5EJ4jxI?Jqe6ZM3f~u?P|F2qiCKI!U#d|%yu^;db9B#
zYqVeS$2qWpoqJGjotth+3R^dxz(qHiXQM|B1`+?s=-QD=5G!3qJx2l00y;XX=vTE@
z!tYw+K{ymVLS}R5B<3to@b;5CKsFw@;3WDB;cYlkAmHYM1o~DZTFZ7@49KKkBVzId
zO`TH_@{H9Gpaq1;)4sn@zoeuikXqoqPg!u|b%TQ;A)ijmj893A4)X_+!@IOvsz#WW
zmR((3#@;Bgf882Ue2EKL<(>b^nF9f8!n+MVCjsjCU`OiteI=Wmdm`ya#Ps8QIZ0v^
z6D)3uKD#|0Ts|dcZ>)U`Yz%WM^GoWRXSW?oK8Boc5I{`79PRHCeW1g1(V%@%4`BGo
zra!NE)2!mpshpyyVAGgt4QtJV)J@uX2$;e(B_^lJxbtp5akEn&!I5_Do%@B6f=$QX
zg3PJjsje9>KP=~MulHY(8xg0mQ-ZBpnl$sEv*#v{qbIKyMm&n|e$9&z+#x`H{#Vi=
zD+t^QIt1b=kb=?Ef|I}>0o)B%1t6NV-N``El*`J+$KWLUhh@44yPQcOHP%)^A$9MC
zL9?UFd$m;?0~s|PI}=L-H%H0yh+%q@A0oAj7YlAucv=kty4LcN=bI>2V9-{3d3DRY
zdfUBIBSXAczs{?ALWpy_S#sYk6DGNgEm(g)?9uz0pz)^D+C#oXaTuzs(=4|7G#|Qp
zR~Xrwgv14Xckw3TYu-uEljpIMYKhK`iL}y#kjGU&7@QLdX>B^XZ5YTAdu@2yxwAvu
zoiCTxF|c*4BKu8mb`2I;l`ts(aC1LH+5tx*f&55PyW)oVER_nH(d0?Z|H<Xy{t6HM
z<vE393M2kMA&l({$fAE&zo>m{vdh%)B{oX!Mzjw~OF@plDeoIazUG+h|9inp14&>1
zTJ6>brC_Us2v#>GH5=Q}A^`Gss<q?OlK}DVPFu6#)!Dg8($OlxY^QY$$zfGO2d^co
z(M94k=*R*96_`&fPmaAd+J`aQ^sb5Aj<GA;uU7>f4kGk&RgdSYswjkFpMKF>6Hk~;
z^POl2EZ!F_PEK=O?v5ajORieKkj{Swp_91)x`1R^!<m>S`}Z_}JFj|t!S21&bzPtK
z=-;UeNEqp)X7+ptzQ_2StLJ&pIlC%w<F6nvvoc-#G?u)~$GK&c-&}vPTVhRoQ#<O#
zFcE>1(%y*p7oK3y27;0V50y`w&zBtZF~XY*6g!YU@D0iMs1a?2jZ&Qrs?&l`1~7~h
zIF8(t06luZp{!l-XY(TJF)AdT^!%OpX`-WE;p{ZF4^IPKJN~5Sh+a|OR2oe~xadP)
zvW6R(4Z%0-y`@T*>GN}UNS5ionwP7Ijo}gjw#Pxlleb%mUu)xiK<p5U-LmL=Pva^c
z)g}t?+(w(X&<0jJqZ5?cmjg<;_i21mh@FL_xvDD3W@|k?Rr*yGgoJI{eNUPVLP6E#
zxhXT+B`yW?Rg*T8jO`enkNlq?)FY#XeQvvYN=DkN!|jB?W1aHZ;>h%hlU-cSU3OrY
z1@$zf4X8@3V`E(0L>3c?TZPE46+qa>&3ZpQmOrlTI2^>(^Z=+OG9j!?)3p}U#XhBZ
z|7Wa8N>6#o@Uow<nXaabKJU||^Mj}us9scaHFXohsh^3g$tUKIf?U`C96+S7MsC5?
z2U3$dz*h4P+4hG!mk(fzs8_?s(#F4l6#fLj6x7k96WAzYc=CofSby@1%o&(y(tBFd
zgB|U|_+_q;R&qp)H~5ajdbK)-hAUmqb4Te<B^!r_Z?22RH<iJV#JH_zZTKgI=|2}T
zJfJV1GFp!XIC+fzOeyne^141f^aOfckEd6(*d=A}F?;QdpFD1jrWPlZYAfBO6F0x*
z1(PA}iK&?%u4alN@(aYei%;LEo#4NPv^L#lPwqWlPG0L>_@*^{aN6z4xAwdR9q~Q*
z|4zGnQzJ6U&8$v>S#TY#_0%+zx?7Lt=IN<Nr(YvQ<`*W-GBBg5{z5SuK950((AmYu
z=^vE#c<OTr9oCJ>yd5&o+GfRt*#Card^eJv@rYJ9hz!}e*^LzX$w*D^^0aQ(J2C@&
zdO1yD%Zsx;lK8*+`+q}cO>Lof4=Q$|vaTVx5Y`FzZED6N0owjENR}$?G~IUn{#~p|
zMOc`E`&RVPY%}>kJLB4$cN~rPQUbasJJXcB;rloKaFG3PFJ}O%PQb5nzw1%*za+ts
z|4M=v$!L*@+g!j|ee{|OGDm0?Pyq7@y5I<O)~bm^;79szG6IiIhHqg7p8fvN)C~qU
zej&pZFl_<O^`*k>MzC-cpI~-sGdS?g>Te<}C;+U%l1&FD=k?&c1#iFhB@eEkT~q6C
zCvaRQtKoc%mATj>*D#KjT6Xm<M_Qu-t-sciD}&8Q8*L8{;}cf}tF4UYTivhD;=1ZG
z1)iu@%eODP8-D4{t7%64&Q}nKF^u>#ow>S4hy(LA*z91gtNQzPKkdQp4JHJz``+u7
zdQGQ}no19MD%+5^+^kkLd^iD~Uw-w__%iVc>{X`Y(}&oxPR2mid~<)@GKNJc5c1hc
z^vMO8neG+0EOb2mI&+0-Gj~D?3wsWc>RUU#xu`g#XC8Q5Vr#tQ9cF&K{5id|CN!S8
zdP5>aeS|nFsI8gw`&X+cJk08hZOJkWWb(~oH~lcSMXJ!%?##>MvIgh;+p<5@Fkg-8
zpB{%T-tWv+cs=g9&8R$Uqb6F+h&H#{+r2+nF+j1>xnR!p0H<!XUL8lfs6@VG(`;7N
zv(&B6Q*SyQ>Mj9K1b#_^Xcoo5(Y89tTgw`q)rfz#{(1?(+ydAiIKJN^0V_bYr%Sdp
z?Wk-x(9ZUbi3u~SUHMmv^Ih<2Sh<$dQdzXh4!{*YtcI<T9$#YlppslMTMXRwSTFX<
zmVF^(Q!B0iag!$|=76GfN5WTqBhw_5HwL<qLG`~YF0L_aPKsI7(tF6+kX}woXDt&f
zR}5CGbjJ?X-!qKPzDdmcp{7fWo!O*Kz08NlR!<Zr$?UKtU8De9ocDwOyL|Ks7Ora2
zaPbO_CoR!)Y1p8sV>Cg;EFXh}(sBl-fkAHPhmHP=8tYassIp3TY$K;Kro+}p2Nfe*
z7e!9U;at->ROeuRKOpSmMLR}faRSzAtqUc@FrONH81>p27RTG|Whx~JZ~VnoH1ub*
z?jxmAk&GT0dalChb)EnGk)kRvkPUd=%Pfg&KR9sFS?hTBIbHOaexiR^dL8SH2(h`@
z_ySfwc>L&F?>B{<u3jf>nGgwTG=uMVUY9-px-^8DIQVDeWnl-`@s+dS#ie|WbaZO6
z_UzL9#5f{^+#uF5@F2q>ey46X@MoET^F~hRb_@$rrY>%3(#WX%{X`*=ty>e~c9YsH
zCzPSKv`JWfVv_6f>T%OTHO|O{0ugbxqFlYT;qyuRq?g-C-$aaizEZ^XKi55(+LQx8
z{%{b^#=&*_*3%udQ`~TjW_d;f99yqg_1J8;PxhRt9Jme-#2}9ayzt_Ey!s;kZT_u(
zyfUw(dY<tDw*Eryv%VFm#D&R8&j04q2B@Fd^!~GwgX~v$U9L4Bw13yD7NF{{!H;Rd
z-=YG?ltGEVJIj3hNSCip1B1pJ-!+u~p`&P4u*u-h@%;=jpVmcUt7lSdw6;dV>ZH)b
zq>$3$98=S<xt$Hc-X3we<{O&hC|Tj4j}n4ald;Bj6!eL29xb2Fz||16v7QdLt3mlv
zwlN(;%74EVfr=7=8uL(bZk_sbjwj+0IpSOcC1a?%3!cltcZ`l>p1`fV0S1D;Av>;k
z$8}AlSDSMQ^+**Z{dHg(0-Y4P>uZ*h*YUjn10tph(yz;3_iqkq$!E4|YQ~kFai!xD
z;N2hTt@O*vEYx@iv~G<Bhw2DC&vZAZh8UVq5b`^EE|`ZZORnquv*7L^_#CBZ=6|3w
z%yc%4b%q-U(t{nW_AmcdKyN?r8r3xJe%FZlKL1}&=a<!;vnqx`79_?MDiFl2-SIar
z?r$9Q|DQ5F=GV-v75uNzB{PMuT1jg`EVv7ecN!6~X}1?#8U1D!x{mu_egZh|v_z=+
z;#T2UUM8ZDX6}3OLyc49B}zDBA+4SJWk|@gc8|&JtGDcOlW{yuu7+P&zx$Va<|~2u
z^K@}M<56?Rd3H2HGQ*gLuRfW>JbVZbZs$^?)qLYidD<=3tWSRist)iedB510rbq{|
zAtQw&$lOVI1vV)cZ_@>{?w3^j1WPGpS8~gFJ+%WK2Siq0EA)buvy`ruPy58vdH+`J
zDjw7DoO#(+)D73WPU85})7Y->;;eV;?XmUaWrAexQiFbX+bIsDt2ad!ZaJgpY7*Pr
zj#Wt^qd7;FmV7=m>lg3eLT^dKG$kZ>g3IaZmkCuR!S!)_C`b(ImcXYfv;;cSP906*
z;v|^r<6DB0H5C`9g;J97POhB!+yZ|nVUSsJ&J*a&F2#OdfCni*>|oyop(Y@>LM^2M
zKyS~4<qW7_3;GNt>e8XP|38ipqTt400rd^8Tfven;AKJALLl^7Nh6~>cCBw%mPc)Q
zY;Hm)EtB*%;BH4A(l?r-;zQ2Jvocu4-0ZNHi?WJuG?m`);g_S^E4xXUPty}Q*O6(X
zvNA)`GW>dzm*9!Hi60e6PK;NoDcwp(k>4@O-!dtj;c)u%m@n{jejWK-SkioBT{#hj
zptY`)|4G|HY_!eB*nEQng+!3E_*+?HWep#TV2|n8vo^2?o)B_3Uysd$?WR~oy6#&y
zH&{u@C~3<}-<C96tTm%340|sB2^_6)`h7Cj#L7t7PJo>rw|4NLq`Z1Huo&2K`ArJS
zrkoST3(5K=7s(Nj-GqksEv?>$W5IB!Ul!}p><8Z$$KFxTC*IbrOrdLgm-o6(Ph*Ss
z5pGSov5HS;)Q;kJx-3Wq|0F<fz5d~#10s&5fxvO}S`DbYaUzHi5Ya-wtpdVo83v6C
zlff(vQbaT4eBXA9y~<M_HTYu^-MHvbS2e{02zc~v^0o{ntmbN}peO|BlUw9RuIk?|
z&DyrQ18t|U;M%njPFn|=v-s4YQ-H){ctTYH7^OdQehrCz0?Gh;hoS5aH{~h<+A1uK
zYe5Dr7>u;l4)cK2e*l03LqdzYILUqI0Ygx=qc1rDA?OimhhBs;qPeAvJ#HqW%!g~G
zt_4L*{4y*^Yp~&<7hrLJw05eK*C`qV8%FGlS-}qhw|BoXAD3m^9!Ddex@@~l$2=b@
zEkPFzv3W{Rd0lu=%Y0nPmu4P+ZV+j;ooKySx3qoruosR}${ENbcvtz7bH}*g6d}5y
zAYyh!;C!Jma4;0gslvD}_ugdZk+H<{dLjc95(n4T8Z{P+c#sbzm|9#6ZYOPKD}xtQ
zRR$N*smr&u9=&?*7he@CJV5Cq)O^;?FsswpbP4K^D<a<1)a0dUzC5s{fvc+&yD`he
ze1uQ%r~l+}-$)~0^f5Z{Wc>eQ?XBag+M<8attf&hEl3L}NF&_{Qqm<IBGTOrN;e|X
z-6h>E(%m549h+|UeiP5}ob$W)e(rmJyp5la>$BFHbIllYjxk4lbKWs(yZ5Gk)_bAt
zyp-zF3U@vJEEUFAOm%HmS6MV)V^`3!H@eAUGu(4~s7JES2e~UqCM%@Rvy}>5fpcs0
zG>AjH$7yUWcr5Br08Sm$ne_!O{xX(NZMVXB%Yh*)Kk}i@iCvFtrN#gszT@*0D&y@b
zCWanNpeatqS58;rbDqDg1-Kxk(gc<5Ydk}mG1_fs1+W0rUg*$ZRp7t)WNp&w%I$Z~
z;Dz6~KR_9^mNttt@%1+}_1YE4f-MXAIW%{Wg<3VfX6rh9xD-!<e=?;xJ%NAnS*U%b
z`~(ciceaiW;z_Qadk^j<ur{Fj(YVqHcCM7OcBi13VG6yUGRA@uUH7$fgc^>rXVjn1
z!%sR^yknZKHV`aLxP)aSRi#8`6PR?s5v01oWx)h~&LaGIqQ@QXp(Xh?_-X~~>~oXM
z^l16m$5Dk*o?#|OmHx$AqO5G=Ov(P4Yr>A-CW4h|9z((oC!VCWJvk5?`pvhhx9&4Q
zTY-Fu#-WMsF^DK=dDe{7j3j_#_@&$qjn(cL`m6Y!3?3qKDaT)-QVUB{1AYK}5Iv&_
z2_O-c69J7|y}cL6&hGu40BHRr(U!C$WwGfD-`>LV)b?54B73|wW=Fyx+68!NLX#m#
z;6BK7f6svZHYKUpx%nrM(!GhkY1*Y9jtZ&GgV{w1+(pTeGPV8Ye%1a2Cw_UX3T=Yj
z;Q*zG&945kUnhRH#%(#UMjxOn12a&eu-vz<oan9Z2#WwjRF>)qd(3Q($=(hL;cTtW
zMM001h-e=t7HRY=ATgJ>wNqLFoznR-GYb)sUW_s*@nvY#EGIgZN?b%Y;Nk7o-|KL!
z_Rd<6B^1GvmdRfQ`r7jmF^Jo^z65{=1kX}|C%v0S56HEC2!JBgfqAAAWTgj?6c}Pp
zdjW<(?@k@5+%DN6(8H0x28`EIr;&gWWTGbPN2gn(r(S@D<V_gO@mudL1OzF^b0IDI
zic&u2>Z>#}>9s<+8b4VqL8*!Dat-@>(UQd~q0W8PcsQ$#XNw=ymz11X={6!Bb7sw2
z@fA2PRH-yJ_g3|y-nRMKBJiDF)(z%BMJoM;NjP!aHul1K2Lv2%C}PnN(840AM=QS_
zJnD5I|7a?VP@GejgA}uz&VRVyux^acplO7dqNIpTU(~66&m1Y){nFh>l5IY;`{StF
z2}x31<*$zHtYzJ_wXh+85#T~tAkQex?h;g4B+vK=A9yVNZUWLw2?;AXh@7|+@~M+s
zcO2+J8W3iH6aV{NM1P<HoOoRQ9++jlEjWu;)EWt3JH7yMqUHi9Yr7qE4;<u>r$T~r
z^JwY&dr}~eoOhSb1N$S0^S?el#`n@HD{faH)rGvwzFOPn7=0M4;XC>GAAN1XGWt5c
zCpiD*tmlF%y$cBj&1J)n?>9FROyvJ|aQSTK<NDbaEn4-$yf@82{5c3L(Ch_q2%o^{
z)c8VuTQ}$~?>z{!D#>8`q8_!JqE|k%cv?zW^Y$mYcmWbe`QMQ<NY>d?tq+a-fj46#
zvdyi^u+}`q;9=@}pkD?-T%^P1AVb?9kOJh*U~XK1o-*k`UX3P^1NCk4>j5d^#eg1~
z70?5HtAnmDj02=_`~1vuH>%{D(u;K@9n~d0P6qb%=g)*c2WNqNq>NQ9b=ZGL(0rL(
zVF&mPKpz)SbNL$=f;4q@|H{1gZJpJ+EBif?TU%0KR*jQvvL`a?$Hpwqmw{1oD$0LN
zj_0%DoCJ<%3!ZmK-DK844)sBEq<_#MK!+4#ZgYw1(gVmBI^<hxfq5f1N(1cCSQ5aE
z<|zJPXMiJt;MzL+I0M^)jX?De?0B*7J<1j6n4>eSDYFo2QzaRUp8=G|i@b(jj|6Ys
zn)p#fb6(GRdn*q6mlL3mGb(dXW9G3S&t~OJ-M`z7oAUD%H!cX7l@+4_p9TH-cM5+9
zh6KN7)uZPc(`4iIGe&5rlK)Vc=d-Febr@@Z0hrtcaYvqZB!JdaZkOj6JvcA?o!%em
zsa^m7Wi0|@Dru(Ko&VNboO6|p9(b2NgZr(&5}9Njsk{L|2l!fxCdeV47Dp~t_BsQ^
zcGV(;-y#lRV(4LkG|U2g&n5=lkeINw9WdVl2p_1(GY`@&RD?1R`@br6Z4oO_hrv@R
zP>c2!D67GL|NUOjlev!1o`AccWAeG+W>XdRIJ7{isW*RHF@W-3<i|5_(7$`Q!2ok-
zpAJi$>A@mAfs8IdyAGoh`bBoP9Y8{K0ycF^Pc>1{b|QzRAOGT|Al<FfY9<B90~jER
z>Hmyl!VJ9f0e%`#T#|Nc-_mU&ussWIxiJEQ{Ch!r{`g?~G_e4R7%;=^)7uXKQvj=D
z9|8s`+1ntlYM|;|L3CxW26+_$kdgn!E#3XSDuJSTh?3{l>9SK0*d#zO)k|a4sgQWk
zK^uU1R5*y7-v}}zB8|2E_A1-%^c=Yjb7crhFWFceU=mia=?>EU^4|Ns_p_(Zkr0us
zJIIAvI`6z6)xF>Rdv5`F6fwGOyGOsRUC+Om0h1J9CB4FR7=<rBcQz8t^qtKvfKh$(
z^z*AC1W0-Cwe(xg+rFVZ_059(*gIa3rFA|pqfMuJgn5trUh^{nMzJqGPe`pE5<yth
zMM+hl=!LT&*a+R|x8kuHRA~tyU^G4g<5s)Fn?dm(K;!hAc4KiH2|V8z$D3h8mYz7j
zz7IfaY=r3zz&C7{WoPb(VFQ%jPCd{I5hPCm&-Y)Rq0k6EtSEsDek1^(L$^RDVqb8U
zz>cW+5eWKNK${81v~%|mEWsZD$OiCQK;r1uWCf?MATNj8bbzV^J;o#;P=pEr@_<if
zhBXWuKhv~74Pa{pqX(nk^SbTKo}srQ-pHMlNj5g+`Nt~gw=D;=v=1uv0~-)HS%}@z
zCD?*};jS2b&2pJCEw{kmYf-Z)FU8Z9AV0j@_H0vM+P+%0b)ulNhYaSdT<10=J+pGL
zdX7s&UxoX7%+`dzEFd8Bg@_4vs=47q2nkG}<sk!Le7-w;;$8(V3%_BwVwSVMK}F7^
zkYB`lfhO#mu={`eYwKTWcV+ix9^Ovi;~qnRm^{iYL&LmXCQEhSbFi%=JxTAWxro+q
zo2drRkZ}ltYvel>f*|&1{W3m4oK%@g&-=Cd08)Ernm4-PCLWMmz$9`LK0kl$DMKDk
z{#+fafsMMQuSDBq3cAAcEY|_dCK85IU_S^r1hg#64)A_6X8kRBm;ty9AwX3I=<0{K
zz|6)7b!GpA{;c)QFN-Q-OPd`;1*I$s{96yAUe#uS5!?E=C=luBYzsq7KRvl&ZWa(j
z@bc5SA)VBS%}t+o)}~{GZ`zN=!(&vb1xI>5XI~1C6<b)&>M7|hDN}mgBN5v-`j~}u
z(G;tWjXk1I02iK!MR)oP?8*PNNO=e@I)n3}{e}4#0x)x6^M4PxDo@iM-^6Ny>`*B@
zzC=%2z}iNq@n+XznH@*K+#432>;1GPaf(|?fkk*nx~Ol_-bKYr$u4_1vs21%S#09R
zd8hXi$dVL(qDUL#BafCC^)Is6Z!qFVOl+!GnMCrH7Jkt;A_XuT9kY`Q?lYD8dp&Q?
z7&H3z^m%8&Lrm9a&Dr62uNb>oBCX(#J@0x3i+d`2W5}}c$TpW3l3o1<uE{r0Um{VV
zr)~ll=h52KSPX3nPt>Ct^uFtsFu#XAtb=z7?!m3a7@m}Did5r+%^}6x&SyE*%k4E1
z($x}DY8zm#l8=c1<XSehVb?<<op{)*NA%m_eA;Z|M<aU*E+PbX7S=D&Xjz|YYJa)i
zJ@&Tl`B`?!c0PU9x_CO3xHt4RUMW+N`lF*34%Y~qfx<-b*xubwPrazci`Fcjut;f(
ze(41HQ4&V_q*aM<;zv^6F+ZX{$6>>f^A;jd%pwRyuMeiZ?D5C&x>wUC;EDG9oQ288
zdnGR|#CmL~tDj=Jb8fL+!%U-e>b3tMf-qxk%5zQPTTm-yk$Xn$FU41a1U%{9e2xQ=
zt<mw`dqY(u5NgFbj8o3cx)A>`Q9(M)!LPs@0=YZKJ71Y>?Bum2b#v8jN*)e%uLA<o
z{m*s*<zbrucIx`4#K?`d*_^`|7ZL={Z8Jh%B0PcdoZTi+s8|wJz&!XjOk$U%0ku9d
zskfeL(FC`dO|T@_IRmhJju<IA7YwJo1KAIg(tSLqThw->gZlJJxHZigJmLewhBqpx
zV<p=ed+q#hS_PPltb(OE&sTw~S+?93t9YVFfI#UdvQ}dU>FETex}MFjFV!zY7Ab`N
z+t!{Y*&d=HI^s3=0AfZ&<^#L*Odt{`%OtEVikEF10b;b3^P+v_1>#X@&L~F>&RyxG
zv>KKUIc&PE=SvE2Et}sxxi$y6FgR3S|EOpA7_SjyLa|suK#2R@VgCg&5^_EnvUHLx
zcApiY@Kq#!sym^e-b3WBcJ!Ze*nP;;8Q$_w!w)@CMzr_2P^8oHe6*v1?~eDXv+LHA
zsdZxf&c*W^A+M|AFYm+90?9wN>gLDd=Tx9-l%Sq+X5V=|@X|f1%Es%}a;?|B+sJ+7
z&=dm1o>J*(myg4Hwq=g;I1i}rW8r4XQ9XIoGSgWgNch}7+hl63l#9o4SNmR0WGP3w
znv(+gJqB_x0?%&$1kCNckGZm7$`j4$SVSE4L0*rudZC#XZ{-Lq7{zW`PRs(*3?oPA
zG8B(3dwTPbi&v{CT9@-Wu*LH*^gf={D<-uU(YfE43cAl2t(HZkNClQo9kb2o(R!R3
z68wZ)u6%Gv9~FFK#;?#wuYZT(8I4gN{Qk@DKku0>Bu;}(Ze9?d2i$|DAJ@>;XCbJf
z8{*Zd>WIC=qqYsmKc=EN?qa9;w<YH;h+*JRHz>Fh)^Zhcge1Wz_7C4+6#UXg^qd_D
zAO5U!sit+`&Wc6KZ-#n5sYF)#L+9h=wK+=ACqeKh21@;Aow4fzrHq(_6(PHAPO&T@
zeQD?`_8FY}s3jbGgjGv?p9MTIz@NZhyzeP#Cl4BC%sO%?P+K)9MT8r-KYRV9ZeP#~
zFvj28BX|#7bQY}Hvt%b${_+#0oUXmJto{cn3*hbDk6SR@+_?WKs-G{EysBLbgHZbH
zkwr1L2K~fI-62;(Aps{3$Ux?-3VE;EZ)`J@@^Cwj<Ua!Jo}jsCfVjGHlLp06bptO#
z%VrnyL_;DJz9Ss93VEISB|G~$unPbc=Yvn|XGGkVJ4<LyC!7T$FKU*;+^?KVIZv^|
zESlD$LJ-aL)jlYx$;)YRozJ}Ca=*N4a$lVE>v>pK2rY)sGiWbz?8R$es<=r^$augf
zNUn<pL_{}>T+j<I{>A=6zbD&lHBzFo`-XhEhx%~!p{j`}G{iJ7-=dR{q`|1~>(}ex
z%c#P2_X}|uI3q+cYHjydseHQ9Y-bb})(5r%)vv(1W4wK_35D0LFW|v4kH2|eu@!WR
z#dh(o@Wa<LYqR>rip*8(j)8?>!p+nmpTPapuL&7me}MKIv+*x+@6$un7#lZn63B`{
zrnID*8rKz22Q`FiQLApgHHnIb`~dC?@Xcv{evg`0tW<pDW3J1mnXyIz*HL#CT5G0o
zwLIntaWz$=3<iye=StjtpKykjJDdRpO$jiPI+8zN<KW@r;Uc|0%5qitM@qa0r10K=
zwbLYTl?bhDU=A@e-QC+GsHHlxiIm46FiVIjz562<#m-M!<8m#U9}xo1%yTm?rXNkI
zxyg;DeOG;IHkT?WvS^zwN4W2E8r4D7*<0Et3SaU%)Ex9?UUrw(!%|DMVVk=HZadA-
zZFV|;tt7)Qbqoex3u@TD(>nl%Y+&EjcD!*DT&QqBZ8~c1%C<KHM%Ih|FfB*xiM6um
zts<6k_!%755k1c(_Q~~l(d8oK>==z7-aWV1xHy_o-DeW56t#Be2QbK4G<Yn*T~}3M
zyudU!KjpE+4?Bryayw|KU89elzJU(#T7(9{I%IgB!-@$-=iK3~tF_}s`Mm7RtBXY2
zy;dM;U2_SF8v;47N<&FFElMUO4w;jkO!GA;S}a9>+hcBzgTOm*P3VopM7&E_Lk&nk
z{_CT(J`*J4MH|hNhpEwlZCeZT`)hN$kLfgRrm8!(d2MptEgcgax{IfX5XhGy3n!&b
z*CX5)lSc6EAQCBQ|C^Tls~KVj|G1j#i6X5LqcLC;0WD@y=p*7qxNb!B>zLJIfZVDN
zIYO_d`1u<2c88VcI7dhLfxFsVg&7^>dmgPbPy(*Bs)T-NUOZUWo|8c0v9x$1EVrx>
zb?`Q*c$L4g(xdI`&jF7^QX7rqBKY-Q<Ru%Vm@~nvW%;KIA&7$A=O8V1+8wU{j_oCV
z^{YPwC>*goR3MIvCpV(f6Fa|3w`>M@Hcp&9&U=(Eh@{j_af?{Aznj5+rK^)vS8Xjt
zu2r2Tx2pVSn4S<$NR@K3u`}O?7{+yr%V6gzs&TnoA&N%ymDo&8&7Ts@+w32gx1mA+
z;Z)U@s$5g|SQGY0Nvm^)y4bG!CY~vEJ@xhI(szKZ4`>I51zZ9Ht+x+z%1E9Wn}OIg
zZrB7!=u=?7et75^xI`Em9R5o3tve!^3Cex?3|H~Y?=P>G!^|RP4#~Lzg09>{2$<J5
z=~$xD+VnKtp|(#s@w#x+;~$8&x6nxwNuO;7*(JL!@ipF~prPCBnTI7yRP@!)`%N!j
z^p0?kQ45>vTLXuqo{*a4f6i#nIyK`KUiM0%QK8-Wl+gRlH;TSdJTtR_l8?<;-zCVh
z(p*Ie==d$JLMPZNE%Ne^oZjVr^Vl2-+u?LvgI}Ky7*|;D1`cbgPk?Zt!CzCmwl&F9
z6{-}v`eo^0>5Q(Nqt|_r;kSdwUxmW2!#s{kHJo(DvFg|eKqB9<vXO{qrIUX94oYfE
zV3|G}LOGo(_~>%!hx~ao!*M>~+pB<sSHPX=nqNx9ODz-P5xS{ihtU4p#`3!hcU97?
z6~rV0qiH@CBsSpWyE)o2u`}Bhst+2EzM^PJ=Vq_wokI)N`Xnpo)nhmaJDTT(l|kJP
zx-{d@h`7|JfAu#hszx~gop+PdK?7KiCVP4xO@X<VhJoi!I8W>HiTm}C89%HaxAE{y
zhNa?chu;+ya(+)-Ox!bo7ITvX9}BiefG;8Ge+N>ab|08h6|Qe>RMkq2<gfVfA>Kc6
z1Um;iy;J;aFesJ(=e||W9M}C;#&~zj!gw1I*l1U_r=`CMRJrR-`gJg<n4umV<{C{`
zC0(^V=;%jy{k;nU!G0364xOs31Y|+k<f04gW3KTL3Q=>P!}FzxfDz@UMY|y?4!a3x
z+z$v|23|t7n_zy*XPgQ23g5IyqmKxb^Rc-KE(N6&T$GzeRvXuvn}FX3D4V{l;DVY|
zBR^khY=i;H$bJs_;qpK_BvfXMtvs2><DH|2>vtnZ+tN#839<1vMI+ej2KBJHq4EC4
zp@Urh`r2gl(v0W0y7+(Vn$U0e<r!mZCV3un=tbO`ceP=Iw9V}FWTVlG?bU1iha`VF
znV1cHW=_7k40GQPik>K-rRf^L)_b`S5oRId&wR5{Rdhs8{Na>{?<^7Sz8F@t2i?J&
zDXzUfN}ehB(j!<3ik=q&X9@<lZ3FlvNfQg6-838hy0-K6=a58Rgn4*!H1J9+a$2dY
zD!SSYg1X&YHSyXm4TH6G)L^8W9wNh2y?MQwRpbG$ve@CQy=tsL-(XUg{T2_4$DMZp
z+XiX;?SdUvz=Um26x|lz-6Fa^%qEfYXV#JYqtyepQqob=9b$7bLQ!{s8AV*>(04eT
znOP-n4syi|8I4utyvl1cHh3zMuB3H_qY@Qgsv;$VAnZe5HANKe%1gF*0t86)?032>
z^HlVs4$*5A%N+l#&mXht3k&&*3y50^`d(c*O~OFuJh;sQd`}?|-_-PU!7_sD!{5qm
z3SGv!e|0Yq0B6&;@-Zt^M#VgX@BTj%11|PVfvt~f&bVTE@ZUZl-9;%E@+p$1qUvl-
z{dWsQzlURft1<YOa{sH~d4_a1X5sb!*N6W@V}|7UU%=Jh1oKay!Nvc4C;<5{aINPv
zCc?Y-R6n8%3c~*RcujyT_LIX0w+A}(>fGGN0C{N@z+?sWtsa6H+GP$&n?KcC+oTwY
zw+}vyl`MLPXGiUuN);GKY4lr7NE^4~JH1PkST3zXm^1sQ?iHmUR;_&{=4d8%)xPan
z>5uY$y=)Mqk4NLYE!64Rv8vOYEEN*M)+$0^DfwqKYRsw|2;qM6{gAj|GNilgYt{cu
zjy1cC%x_)NoGn7fAKYp5gw)%{<D9Mn_{+tA2!M$M0J{7h<U$5cE+(C})IZJo$j8W~
z)8Iw+SIcMa`E~48aLsUF|IxnnKA^Ra?pSWSRqHV-U$kfReSY(&2_Oqk_gcNepR$C0
zW4?(0Km+%Z)3Q-g16%0l8fp#=VjRD_f6xDy3$LEOTVETXKnnG0AujpnQ~6F0Q@URM
zQ5A#R#e*LH4Z3wvvz5FhgzTJpcRsyLPfC4N;`xkSp!u`cr$3V+{chp(IR_Fc5Gv!Q
zowEw;VQ=KI^#)B)Y=)yE*A=jR)`|Z^d@%#asC6wB(7{Pqs+^6hq>{6|t0^|*QJ6I9
zqmaZJ#d&UyTC-*A5b=QQe})xMZcH*LHgYno{-9p#6bP|E==*tC|6LIR3_U#dYu!B_
z+~=cvbXEKvK;2PKn=hBYfJkjlh#D<YkY=<szWd+RQ(Z=p{vb^IxO7LMu5y3!aekki
z!n~5g{Mtz=L^dJ%;CPRYc--au;|VSM`Au@eIlsrbx)>cA=}LAJeA@$doykcw%}tVY
z$<Gfv3URG1oJ;k%JRJZcg~g`UAJPFm{>&Y-U}(6xb-Ux0&fJ>Gfs+@B)~v&hWFPQ5
zWT=P17CJdVHvFl_G(FRGmjvo{29XLI1bMj@bs7_7T8@obxs@g9*%pp#c77t1jVCiC
zruLLc*8i^KTgmxr+$CFu8kJ&}?aAY|4iUG*fUBgr1|LYS$<{(N?pjv<Sa*+ILD~Fa
z9ZAw%xvSVSJ|5oq3JMB3gce=ejzy~f>=UoiP-8ULzm)`R0{Kg)tNVoyO*Ho1Pty6)
z!C|*tQcGMy+;DT}g?DdOy11UvT-($dsQO78C&Y45eB{UeufxM@(3*X9-D@-G0nOuG
zwmNclnpNNm2V9@fLX-F{ugM_S3+oI+EH@zxuHGI;7d;_>XT>H|;;ibqE|r))^dW=*
zBWXUA5S(W8pJu&eSUz~bM*YMZcGJ<X#pzUN|K5?7x2;~^DZo<k|0q0@iV_=@0ciu+
zNOQ71S~sl`J^@=d5Wu*tx0s|x2Kbyvn#|z~8w~L4eoEr`q{Jj|(*K-*EM2e(u_ACn
zm*pcc1*2>T9a6JO(p_Hj$jL|tud0}Le~9mkIx1BF9w&|%4@mdtK98&lPpYOB+$=`A
zjoH!3>`Wa`hVd@gySSg{D-%gOsOs2{m10617v}Oh?9CNBfveyvJx;5})6Lnlow>$6
zakpt8R3UuoS#{b|E&?mS?fPI>W^Za{aQGx*{w5M??gE?@`I`;|+@+^*liaGy8Mg;K
zZe)LLq7*^-t!wo=qTVIDtO*oNT(xL7a`72qkl1JRmC~NgH#yOD5ni1P@VgDvibKv@
zb*Gu-`#@u}8OD)~Qh+1rGw+X?I`;qJ3+B3>UK1Y}b#{fp6l?~a#OAKOcv16HuqJp>
zn51mx9JpH9ojukD)M;Dc^xp6|b=O2-H1gEcu4Qj`dpH8?E9M6haOyMtP@7vYO-Pa$
zZjAT|c%7F1r1ed`^J%$y!2S4h{r7K=^LxO7MxFZ-l9Jny?O}OL!dH^d!H{16@=8Hw
z51i_EZ#^zsDD#!+=$y|R?P_AF)F&9G8?88-6#PcqE<ely=ez<9`IzX)OEeOX&P{vm
zJTn{;n~c8DV5uphLg0Zy5vxlwRT%~Juhv~pvr1|C*{05cRTaW$R+8K>Y6-p6D?_jT
zvweXb?|neG6nS?}x{>ooS0-ge;6aYqa0(7%;E1r~L!Pd{<ogQmq-@5~SzHj1Jy=Mm
zr8|LvKfkqdG^dw4ynhOT?QiilNVhNmG#p^1e*vNq@x2iXfd}U4-W|xs7SU+VyCFG5
zcL3bNqb>Z^G<2JQP_r&gQH7V8E*zeo?Gb}6CKY)0I4AfmSZP~Co+(i@!||GB_0PG)
z;cIit+e+WG3M~{~uDFu<X5|)aM>m|#h0mT9aN8b!70*@CR1Izp?0payH}%xFzpJa>
zjE0O<quOzDTTi**d%}nsVTWeDVnl2>4grCeuK!>C27F4tXu&@y03R>@p$FCTx;v1T
z<%p6JIh!fio9PMnZ9k6`sx1<}Mv3|vLJ|as_T};IffVu@sd~n|@!9?BwP!!)%f;T4
z`ICcr-$l)CGhSDC4$g7cuSQrR(GBp?RsE1o$O8_BuDKO3m(MjHg-8OmMF1M@us)|?
zTJYsoJ{^!)k*%_dT=(84iu4tg>N|CDlO#C9J1-*EP1xVj$pMqe_fERB@((wo<wZHv
zbgY@*>o?|MCr6t`xr@+*N)@Qf!du_eA`Py*)Aa`iZ_WcpaPkG|m2<z9&5LQi8F4$~
z?}GO+N(yN8Z;kc9c4@Q~sh>EEU0fdW!>>k16?a#4nVb4nt?OpY8>D+AwnB-yPYw*4
zijDPFO&H*)x_`5+=6fB4FB$szfDUM3znT;1@~ckJLQWnBn@<;;N)xbmi1Itbo#V2W
zKX@{cBPM1svfr#$p}JjeUfJQFfUt&o;Fo))4G$J62o7Vt^8;-CdOnkzRLJ3#8ebxC
z^agKWkquzU?;JR4JGyzu3rebq--Q6>)2$OB)mtk)AJtt=1n5P4&4yjv(sl5}JU71H
zs4$)_)YUQ&ovg4qR;TO=E!hORHDBVSrzY;nNzX;K2rqMpUIh3VPe0Au1=Q6&z{JEv
zibJ27)eLe;rBf?^t!|iFEn(&0K>7MEDYBJA^labOnXXQ}AZEr7Kc2HllK9D38~uUa
zghZ#aPX4Cv)-?%PA+BM`O?~=ho&=Xml0ISLGTIicgYFM~4o?%WC}om7Ea3;aSaniT
zT8~AywhYk-2faEL8x?GqPaX#aO4PgFeSo@AVL2BDt<5Jkr<d|1h>Q&APpqpq>Y4BA
zGKy#W{sY5x_N$(U`CKjcakJhVas;xx)pzNd@oNQYi0L08x4%1~4$EtXSn*%%mzH+t
zh~hU5QF0DR?0Td%>z6+o9Ei(ARShxaNN4tRJlZO^I?MI(*!f0-O(AlL<!krkp`*}8
z9plmOa=St7#Kim_E-j_G?_T7;Sdk$bvpL!uv2maM`H@kRut4<KY~TY^K#tkSC#LX~
z&R7BulE$3u^s#ie2%-lA`BnJ5#UpFH*&f<W+VsjQad=YrbF;mz3ua%<6g##zCgZai
z=54Hs#l`zDksPu7>_(35jplwqf1dcc&lT1(xXeIYzeD^A_q?sh{S6OW!^_s_CrfPR
z3)Ii*Y|XDO<M;=XVD74lGmH%E@CJtpr2>3@spQu}M{AP#>P;sXLCRn_k8SNN(Y3=P
z&WZ%tSeR7mE|sxSZU@M<?WqNS?Rp)iM7IM;4ag4?KYC{8;9gPVA|yF{Qm3PVS|<~|
z=7~1@Q-dNps7+oo@hl9*zZDZFC^Pn16t%52)k|vD!4Y>idG#6%QmSZU6XZF*Nw<!o
zR!W0wj!FhE0qdHj=q6ZYB_rPOcH2%dTCz~lw392WoD?T(gBh-h5+HVJU2@qPOC2d5
zD~XesAR$zEx^_HYo3pXGJzwvvaRV(`HfWcLd*!~fZ=}#sxjmRI*YZif&lBgSG)-SB
zO!&xSYtn!td0@WegyE#ypkEW_a+X?5xyZ^hTWfDLQFaxir8{O?ZFZGZz<o;b{5iqX
zE%lf<HVfj>??%hX`n0BlDg6nm^ZD!^$LC$au|aC(hD>&chL;Ywk#oG<4C+kE4If8i
zpfbq~wuk5D&^Ti1$gLvQ_yO(usBa0F3sCM4=Ra!gv{>Azsp(Z=9dX<2d)*m_Yz3Y!
zryDy<OF8cO#X08_^UB&yR-&ZQ?8Z+S^$ra|W<s({7ielC_bHsm;ZobAlE)d_Sl5gd
zx=wO@a<ay7zH8*@9Up&Gp1XW^Yur7XHDF`2EXR(Za<+!(gYk#a=hZ`_Z__ylQ88{f
zbaljyFTdkO;L={-fKu7n)8Ati8jPz=#C30ccdMYh<s~d6-1g@T60lKQIXUV`lW{X%
z=WAOL=O{nFZ3lA1O4B(Z`sga?FNPPa1sUbNeSHCK@6D!b#mS<A@tF&pj#8l6!E(xa
zCKG17ZhO|^#%c{*6@F;j+8y)C4Spk8eTj^Vbp``zp+x-Y^0`x0CKt=c$XoafuU<Kg
z&t&SzBu`GMR2brLxbIlv1o`0K5*~yl4U0LTb8I}OWsxyf^75g+oE+A^(@ia#LwQBL
z<xTVF2xW^|w6M2gF2u>!+XCk>EM<mS$Bm`;V?`1u&7vFp13G1J30p6J@4K+=p~olt
zWWJYN!QJ{SI%TS3qU>5SQ7!sUqQ8NE7~vTj)Kt-1n}$YnydJ!*J+pU)9-n_(vA(DY
zQV!@G842-E5*A73a&a2`Vioo#nR?|RSzusjNJxlsk?U4(+mLQHFR}-YY_`3r>Cdwf
zkGYex&(Y2P)a)yVPHK1WU|3BO5^0*<N!ISE6ETW4yz0N<<gD51bJ&?7!FV#8qw|`z
zPEAG8^-2pVy2r}KiY%?>DEj8|%9!47ge7OFVEXLAW4yB!qk9+uZC`cBDa>apm9=FC
z#>b6E#%JI7%6t*)4iI~eiH66fvtD@9F5=6^rsQ%)vdeC1E8tFwvAVh@DkO|X$W&Rc
zv9z&*e!-*Px{=F!`G|p<>fqS64!&@(A0A<2b2MkvS6$r-^AZ7sSY>2Mj^o#$zZ*q0
zq9tVfH9`S8hl0mr%M;yEQqI_9!~Suj7+H@D14CG}0}Y>PZ|8!hKlGG`&*Qo^nW+qh
z*W%bU%pZMoiW}Ae9V~q3>U!8YG(TSl_xHE8t%x;c!!SawxV@6h%Fw{ac#@culsjh$
z`#B$VU7MGa^J`$@YAS@=%QqMW1%;BVM2ryQNrUAOR5UEHaB(v#BEHK0rm|1nA-`&i
z->|pEFLk!AoSB(b3)WG4^B`>bE67p+fn3&R2aGKoRnvK0b61+?&|wR;QY1B4L$Ajk
z$dz<)sd@Gn;Io>nbSzsnt`4J_t4zO^ahdvQH$R}wZ3n|AM`##tW=PstieO%f7|!1c
zK-kw=U0HcV^vY^*(5lfcKAFd9ZhnB0BWJP40Q#-j%SDu@q2lAgcjZd8>z;>Zbc+Gx
z-0Ws5R;Qy{%nA|0P1mWiFZ1S$Es6?*aQn&9aOmO)f7Lnd#H316*bM&AVv02#Xe1X>
zR8axJO7~?Pl%-ny0?lU|`Hg$eZV*Ec&<wRyWLaF=v5CXtza^BKUCpr-#1YR_U4*To
zobAo2P+%6!mwWk3C-Hf}o0kO;Tu3;p&CdGm_y=HG^vZ;M_JRJ=i8cHCaxs?$ZguR^
z@my>a6z&5s^0@lAdu$xV4o6+-b#bg_8j30_YfFwxo&Dgg)6KEWoSbtjm2>Wb8sn2J
z&+DHJ9z}4o$${+9n^~|s>UIpYw!O$x_|o;!3-M&G(rK)Q`6~V%Yj1adKyWZc+B*}r
zCr_ejwOEcio6ST~&DHmh(ByL^BP{Htwd(BYLJ5CWu0&5Z!7s}MQ>z^hsN?(iiXF-<
z3gU#yjcyJRT-ckK62!sYwN_BqP|w4V#9OVmoXlNWNKc1#Q~5!&?bI+k6spy9dIlPc
zIkZZ{9`KUC=o#mWzLpldHJJ!@i}U4)Onw3af~BdyXkx2lA;m*xCy#idthoA{z$0Ew
zx^LVKF?mWZmoa>8FVe2lJ}8j8>G*smD4>&6y5>0zkrIUPA;n52C4B9E&$u;qa8jUY
z^16xmXEfI3#^$DUGS}XTl7#9cCspodvlM>by80_NHe<}u_w%212guSJOq><VbTXY!
zH_BbxrZhcB2$_vL7s<1GdNL6noTPP6$GjB!&=nHz;BPpWu<3<(N|81=Xi3K90_$GM
zEgQ=}aGdcY)e$=0U&JEY8UjGt7b%|`#^Md<w&pSuFXsz2r@%(B^~En0Od~6bd{Yjt
z?E3I3fmA$Vp8Dkd(Ua*isF<n7hoESh`o6fZmL$xf_7LtdleM)c=tEw9snXJ?TQ7E}
zSQMHJM;RBkD%4A?0$}cZVQ*S0ynpiX*5%A^&F1%bw)L>OR9{zJ0N$x}G0{F#?>Ss5
zPZlU4=B#VP?~E-Xv^!m)DDzsODzvB|<Yc)+2Y@Lw2zp)G0Z!%LnXM$HNwj-@E=0z}
z!elu5Y+-HJ<uQJh3FhcCj%ur;tk2c<x9fFb`k|%a#<p>KYwlNM3hyF^oJH$jG59!q
zcoGspK?Z2=U{N)ynF4`dm*mMXAHq59?hD?*h>ZHC)I|D@uRB-zY>x;qD3{agNZu>7
z&CPAQ&0m$ntX_Aw0f#<Y*+kK8muiCVAAD(c^Uul2iSh51l(Ie13TB(ic2GXS9uj`h
zCX|t`(DgE-E%SxYbM*RiB(=Mw-~&-NWy;RATewqPf@H%kvDKBKI2cqbhYo5AytqaB
zXl`!CmzSgEm6bVP{F5$yLPIO{^O@xEWPXg;YJV(I;o*~^@)(lTZ|$VQrPs{IT`({(
z(WH+WY@%!_6o31c3d87~f6han>)!9yu{&*)!|a1&w%sGc!^5=mjdo*Q3b^!IHSVzC
ziiWGON{e~xzV6Iw*W1zh)aXM`4cX7krxsgW`B;=)bha^sbs~$w6uZ+u`@ocKI$No4
zi~Ttnak8jT8k1a`&zoD?@(GIK_aL6AbLrSJNCW&kHZiepa|CxxlgHJyAs|O{dhKW(
z#^|w!ra%!=s9hv|RY@1n*;I*!F<a{vriJ>8)2h2y!GIn!yr~G>tF}|V89yO#@b4Tb
z8W*MRn&Q(kWpf#>hK_Pi=Dyj!JlPsOEL6Qw;+tbVJbJjt@Aw^dHg_YsB`4_r@&)V7
z&rFj$b|%pIvQ4l?AF!KA!inz(_>YRNkMZVe2Kk%MIm=NPZQ{KuLDpjBbs7ux|Mu-`
zt;0M9rD)xl2Yrph(f9cH5zu-XDU!cN<PwJvvd?;-5Ag(Ab66CDfEZ#nQac%$&z{U5
zwmnf*mt`Trnn1YAN!WjZqU@ef!uT>rAYMr-pmS)b@U3i1{)G9fr@=4;XQkx35nY6=
z9~NZFaBeE}j{@g$NB1oYcDEb!ritnOmN!<4T?SG+Qe`FzF8ch8D~)DtXD`iAa2N*q
zyGBMvW{a)-#Gc17>r!J>m=o38-;BTLf%W!xty*)aSHcQ_^i`oy7pC~Z&Do*BbyXiO
zkpAG&2B5PN=Up6j-0X2Wul)Hu?c}}aq8Y+h&f?G{O@G6I#+JA$+wyY%m(*N)tpPTf
zWJ4BB1-aF!b#>dZHqn$)vAf#SE=#R)aOa-B8m&+BlSj%Fl1ZDJi<J&=9UsA0j_-@M
z&V)pBSRG(R6zw8q?s2{EnV8G0`y{2xy<=K`i(E)_9FT>c)0=OvmfIgmh>2?zZ=CJ>
z=a722FvP(}rcFCntzqY8pTkRr_8R;~cPU1*BngFu`r_Cs%SzmJ$$&J?$i&9ud@U(2
zP94-X)p%00CWTP7JHx)~m%NM>;i1Y>X11*_^wCJC@eKMniP$_}$wIB#u_hworkfv!
z0FNMVeyYJHG23tY^6|7XtYT=cUw@)<EDrA@e>F~@r_yz0N`~Zdi_DR7!JJ}K5`3JF
zX8u=Dwo}=U%%<KUOr-I`=~|uTP<OXlqjs$^_Q805huZRb*PT`pkEABkt<j-&5x8V6
zi>=ta5?!2-Xh-3ExxzKn9tUvXo~%eSb#`u##qOmSG%HMPr7vu_?MxMJlAhw@na*G0
z`n3>qA9TE0&febK_^wrPPx&`HapikzF``2N$-}@5-&y@|62SZpfMmwfa&bocYwY&H
zn_hg0O42dXft`|@E9#vNNPrFM>g<#?gkU23jF9eKRAi!wncl&rdZr#(jYc8dx;Qv6
zP(nQNp^vjlpUg8FZc%mhZOv)Ej7)=#?d^ufNWoMwDJf>QSMFi$*x)-1O+RLOj}t4q
z2WVtpKB0go#oqtD68!%aoedGclHcQiAl*T|WV%a8BBUc{)!<vu*C$n^!ErdR`{MR}
z$m@BPPY9ZdkcF~h7pP9S7?0y?1|jy}k3KPWzJ$1@-rYJkpFB6XxrDuZ`1}4dQ0W57
zs&XC9!{0*zK?3Ff`h7xQ`1=ZS`_|t-(1Jggf}arnZ#Vys<^PX2Z@cyXQ>Eu1l<pox
zyLO{h68rA&I?>fE|I~eZ`2!x_luh?{XJJr5vaiTsx%~b6w;lg)J^oKW{vC$@-26}Z
zjUW_DF+J-@@e{c+*<7(g*#*bH$IUhJ7YP6XocRf|w&rSY8zR@wnz`}p6!H5@igghW
zasqMeTi|o<Fb%Xq<(Anl@v?V1R+F(NsTabTrZ^)VBYY`QC>Xr1I38zK!TO0@TGDnV
zoFq-yU%!Tn3JLN}j1P0X{81*U*tq>GB((3^j5c`GM5_@?OIC5b!0tzj!GT<f(G3?X
zMVfW)b@%N4w_t#Apkt&j+tV^P*X`}kf}Ce(F4xiBi%xm(@9}Z#xr18KNJMZ@ldvE2
zO&u+ndou1~%+eJn0y8mYanBGBCpIIU&eE>@do`?~ScN$3NE5n-Of`vX&TCc4%FZ-M
zO2$j16UKI;wL=z^>Atx2eki3<-Cbw%B3?&LW@-DPHU@9AjY2OEflxe?n(u`K5!sMz
zo+4!t&$pf@yIv+J=k>te9#oZd3Z01=SVa%7OV=a!a5#x0L?tlzLyV+91cZ1{)qkw3
z#pBIUl6^2lc4E~qCHCo<R*&TgdW-yhyXzw(b>YB!#uaNH@l0#GV#{JSy%KHPSRM3(
z>I7xX^<q`EyGc=>4D>UURpdp43PYpNetz(}%M<%ZL|mj$G0U=&y{P)FI~Xfzo%zs^
zN46FIIaWkyZkh$dOaWX!nm@eK9{9b2!LV%*pjm3vV)eggWU_gPKWaZVw1gGzA=Tj@
zGrAlt=zTXS-m8sf`^tGLxdx|pcmJKT3yQYP174z3XQ$Ze>zNS7lWkvj^C>|-jL3lQ
zk+O%@hd~NuhX~t_=;1+$7kytk%X?i3P{{2RQ167Pzq;9}C!_Z(2sKB?2<kdMD4wW~
z{~Dg%@6)2sTA+>fKZb~HO@t6NNHH&``WT;{O#@Z^<-(X{g%f7vX#Hp0<@r8#|ISv~
zDvJ)0f#s2(X<xxs<Xm28k&-PeM2j;rDh7?Dr;e@hF|hCsd?627EMs6ohPhuez9#Z2
z08dHZ_ke2hvmLM2+vKkIip;LLp9bEo|J2uE!~2_(e$rBB;8CRe21#u{OZHqU%_t{4
z5qw~xKvr7C=H_<e|7$dDsT8z}cY53aog7d?L&Cu7x${&${Jb8wK`g<v&(|J}ZEyrr
zBIAj5d9X~Ev{;`Kbz~@;eo=<ShYZRH8fz5sQ8@Lt?hXuO&WpA!kC4Z<qpFTIlS_a0
zH?TxUpRY27SMxBjNoC3-pYvQ!SQ12jCwUTWe<P3~L`_5gga%uj?v4yIM~)D+0=(;q
z_@#0Yj^Bp&@mHpROKnO5<{Ck(?L`~VZq)b_@k?LlDbRCVbH2Ad-3+w!b?*F!I*y*9
zm9K9K1ye^?(ylv?M*rHBAP_eyO~uoMdSRg{!N#WOh>DAN1I@>U%11MO#eG){%(0Jf
zxlxq;aBaS0M+dS)n<SrP1!O)95!&Mmbteo@A@=oZ(cx5yZ>P{}oa6WLfBMLHy7g>$
zcYj2gq-W)!go4-F<N9-k2RI>tGGT!-l#*D#wSW-FzE8fnf1r#AbwrseEk(q^L8)x6
zqIJ#J7M;Z}Ee~-2cm8+HJJj(PtKbXrBPX-2U|qB1kfb>3F>gL_uTBVSBzS~~F!cD-
z78MzJW;8=tef=*swnw_U*hoKcgPWgGM8rrU`n{pW$-57E-3Nh?6se^YRRleRxQ1uQ
zADr$ED`c0i_3G4Ar|>`;9jQU~(G1y~k4#I}cs#^^iZrU-?xqViY5qYp>eaHbk(sP6
zZ01Uk4U^#ac`MewuU}itN@9=Qg%~4_K7!=nAe8}Z>uBXj&6+exDZP!YQeGZee26w>
zru>VDR5b_$ytIEO|Nia1%|{bxFwlJlr6kjeXVVsK;)djG8Q{rN%h5qVZIJV4V|Ph^
z+<_#=AEMxjWs;Fa#S@4lENo|e75`t}IKFuN;~<TGa6;4wGB`1}ciWs4eaI&?c{=pF
zK%A|S%gD&lX0&X&`|0Y5A_^o2PnH=1xqXsJP2*zKl$Po96OvNoPR#)xeu}#T;S;NP
zjr1?)0&o8P^M*Y5`|7sh|LrE^w!MG-{!{*cx%neHy*Q`3xY*x6Lta(OUB{{Bm<Co{
z<l3ILgqZ+=6b)+N#&xI0IWMOxiNkS$RO2IfP^jLuddL)xM2Y4aV0jA5hf&eW=PC*v
zd(;p)H(mPO3Jd4*LLwax9Pnlu=Qm_jXM0u;Po~e#NO)&6wc@$xT%;50XnC2hyw=m?
zb3N-G!JH<wpWyECxl&j6EF|O57gbyK?6ov&A`ZaxR%xhqIIX$BgIt^FhEmt1-Zt<+
z`FgtYOpMiK*lF<mN57Z<#&BO<|D6J~Bp&Te<H)^f_$)t3<@T3Fg*DSDJ3!Y;W$tYQ
z91fe*58zSkdwi`vr){%ARomRRAIypImWhRSp-i;Hic^#<af?#=Z$xE0uupe%SJE2i
zu)fOY6(N%F2LP1S>YkJX>zewdHMv*FpcU-9Y~@Qo53P;L%->M<s${5^y1`2p=)IJ`
zPZz2(=`IF>Ym|q9)LLK+7wrJdh4HxCFH!2P2`pvhn60KLUSFA{ij|$!coOpMnfkjE
zmu7X3lJ*M;DmOTPmdSN|9cI!<g)_jT8FG7fW-{~HDxmCBCDJ`VLJ{C9O>bzUT=z9b
zC+aSXmOqu)M16N9z9Kbg3bQ&rC17nh`f;!&_PKpWTM5yD=&QDDM&ZV&M?+J5?Z?$D
zPfw2zajA=P%(yp0)h&={XS1nOJg4&&9~lL@<XXqsTyq*fu7blu6w1Eqwz(!@TaBe`
zp2WF2m;hKO3qd98`(1<kIqGL5+KpCFa=lm1Q}v)L${I{=FepF025iIV<A|@_s&!k`
ztl#u8UTn1Xc{2hb_#kqZ(Gy(r89PQ69^;-Qav$NgC(vZUmh^GcY4w9xQHqG0!*yR!
zb+z|5W%<wmnZV$HqV4U>i!vtmD=4?dX5-C#F2AXng^UGS^n<Wu>G-qhY7*SW)yfK!
zF{GSbGZVefD7!t@o9zwLXo7EA(ocywPr^%oRi61P%qrD5-H&_WC!IjTxaPOKUU)u!
z%*g(V%kIE=n=gHj*ZJ^OQZ#5v>l1g*@8$Tk^fV}s!)l$cnqkZ9)aJ0ODKpT1okh7P
zxQC7!h+e3PwK)O4guHgISa`M;0zA@UAINCEq{G5{y5W{I;ZysQmX<nqch|^3*Y5nd
zjgP!(-fn;8!GM^uXq^tx{Etf*v{uKmr8WcsSWoU(3&OSePNNk++SY@1QZi_a&|(C%
zZuuPnW~(2vot<IOe`VG;__i!BtgPw5$w~i*SG*d8tJW8JeRW`bFSL^y+~Vz$%Ra7(
z^15gy?i9{CSzZa`=)a8>D|Z^uAx$<gOvx_XAl&(G;^Lye{)ASuBG(Q6Y70q1(p5hD
z^YS>9=e=Rdx^}*Zm`ZDLSDCW;<<$u-pJPS6?J9+jV9keSG_EPNLV8ql=~KkZT9T{!
z0!P|E<j|8M`w}&Q1G=~LL%-~di2o|wIzUF8?)#vO&O~#B`WfNoaN$K6LB|A~4|=fr
zrsdL3Lb^|-!ET@fRzIMNC73MY>{KnDS(<J@-*8wcpQ};g?zcAIAUcqhp{Er2P4<U2
zmqFfIk#GbeiQPP`38?;|M_KS1Ly?Wu7CX0wQ(|5P4f#tp0(;}x<KDRwd$y?R@kZLK
z(8NV+PWn*$tFYv&1vE@!s?FGo`@-Up@*}h#W`c!LE5{cn!pzhw&VM%dsl!xWMs#Ue
zD4%TRH?Nvh8L8Q~zQ`ivvr7%^fI`B>2#N9D2w}dxNc7X8#i1eNqNij?_FuwMus%GD
zXM1?wTZCdEGcms|HDB#I7m+XO$g{WBgyz0aTdmRmxsRrign31iJ%QQoxUixpMsfzk
z;=6j@uIPkoPckE)h2_zjo}Wp)aJ#)Tc3|TLbsSA+8`st)G`JpZ6<m?%K5(`-ZP1@g
z7;zady0J4C&^cICz}<AKGp3-(jtXogIoa7AtD(an${VCOK5pCoP$JZzv3vFEje9ct
z&0#8Cgy`cy|Ij)+c!?tQ_RXx~Tc?XQulTUtbCZF~dE$iWj`bs)0+lmygorRXx{eo_
z=gv-#_GW!LmP7GouC|7DDMWma!|VE#cyOSa@MnOf?CVwAUkT{j?|qrmjAKRRuv=7X
z%N~z8&*(?!m>x4XUyvX8k*W21drnkFn=GyV`ezA0?Y{Z&WZm0!D}H*#vn6`0fV*mE
zbJu67Bx~@!xfIP^{aIzRxdK(<OIqqzFL(iR+tA1w#?TORbh-CWeq31Vd&W_xzL;|W
z67OYJ&^reA<#m~JSYhelq9bs4T5LN;VRs}Uh0`-(UWE5+Q(EjP2CqA2s#clY6-+|O
z+&ME<UoXteAi!{S3GdRm)+H>#X;qVe=7?9c|9Q54PO_8I_i1xu)7JH)xl+ckq#EqO
z+Ot_do#R7?uutO+P=5Ez@vv|2_NIqMqPb9?ZZFK2b`*DckX)`m7|RYHLTJBUARMe!
ztxD~IP0>1E+!QEM;})pQgPj$$?<zFm^f{SY0}m-x=JuC>Q+K+%+^8C*)>sWY!CX4+
zWMRI$4e_=~EJxATo?Er6%ugS|)mRm&-^m+0zZ1<%ld3~SEZ-x-N){5Ljx?Usj`!kv
zY@0iwzcO0G4&{|!pUXH(5m<H~HZ8Rq2nUU|nDq$miGX>uyh&(uY_PLTzr)L|_i<ID
z2`kMhKcn1q^o+l5+{9#M{Kt>XB#$8Ct>m^mu2sa4E2H6F?MjekyXqYS;0NtD)w0x)
zxzQGrZr=V=$HaJpwd@#)4X$s<sNlMbVa~N&TV{3TCVUQ4zfutGM$O0`J`4n925E9^
z3Kr;>J=AjW_&*F*Cj*YU(7Q_Tc=|-W(ca~q-RRXjuPtLz`d6!+o45m<G~;H<)RC3r
zkt~f!#<G6?dwkB~LJlOpk<k(l&h{jQCM^8Whh{}({Bz!>*A{8uKG9oU35j8vC~)VV
z&zgnhpqsu(`<b>Bz>Isvw!1d{{YnNUnvx=WxTjwT%=@9mP|J9g>bBOr5$gDMo4nLg
z<nYLtl}+hH`KM`*9n-qT^c`b%iwTEsS*%wi+YT&-6YNY}jev8yiMSUPX2O3J+nj&n
z1XJc3XU}U5A_wBnfUr`TKU)vPfVeMK4Qy^%18_}Ey6YONXfT+lFuDgJS5(JF8O}aI
z6XxujJe}bCV1s3u47t$}INE!|S~2rAG9JGI3RSFn*CaQ>nmu#-;XTHMxpYdpS~Qmz
zBjO|84goGo7ccA%e^vnb!OSh*$o%Q(e8#&(wn*Z1ezqOLt7Sp5xQdT@V2Po<Nv6UM
zTwX6?%UNcw_i*SN+3XhPmm=a-v4LBjuiUr8*}V$kJ7glZx{($G?@#RUJiThUyZ&i>
zY*g-DE>t<lUw)X$-*9jE-JJrL{B3$r@%aECq%mD%Mdx)JP|C~REns6mHwZkpm~l#3
zn!GxV?jkswoNa5)&blfoi)MY?fttiIuzti<WpsH-d3cs9AcRb1Btw?I93fBX#y*&x
zRd-3pP0&*zu^vn^&OpiDv_t{VR4XiBL)+nyeU3Tram|uqXVI7JoS)aIF?B}3YkFwf
zM_;kYYu);-CX#qboTf!Q%qI(W=T`WqDL?DP!wDLz&<r9bQhWP+wPQeYtbWX{v-SFC
zn)bT;JZ&)_#^c=))|^I<Sg}zcAlfKfgy7HASxlT}GiXAYK7!ob%GB?MtO9JJZX&}Y
znVrQ*Kx#6BuI?W8J?mcyp#`2572Z>7p5TIDw4gvfm)Mv0=+JU#Xnc4@&oG7Eq&ug%
zp$=V6QBrVSU^!X1Ba~ojpry^Kt6ORweocdsTXwFu+WsycZf{jQHZd09AG*!-@q>u;
zUIMh^-nkQlW`$9E+7m@HgdO0rIBsckn!7nyBUR=SmSjkbIhqwlKp))$pQ(=UM@_8%
z@+E;wZ}b^zyrz-ys{ABiEV*#{`DzIvpSBmE2YPx8A{YvAn!J64{;S>TW~_Bz>9`ls
zJ=wv;w9!2sH`V(;$EJmjdDv2yKUvA7e`rVDTwdKf>`5kwzNt`c=vtYSh$@<%<H>=c
zE&EbtWZ2_#NY9?=kCtC7hQDgMxpv#m3W+M5%77u8w_WaXqa{4$PlK12w4f%{@Aq_v
zD7F>Ntga55I1m$ZI|wU_PPep`<dMIV(-P3J)kw>zPw>y`*E|JZ<JC+ApFZN?$(!HU
zRONJ<QWI=aV+~ENOAEb671_<tzDFA^zJ1}ee0c4_>3nMKR8#KKp)@;P^`7zRRVeJ}
zIrHwi_JC#sukNsaY=j7Aczi@lvHNU3=jvDa5wrxJCNt=eKm+%Lt;5CDU{|Jx8Ce<-
zvQ8_Nghun;wt$HYc=?<qq3y%i$w^){Wdw-bwmB4Ii>Jd3;C_tnu`%jHOr&mSHhujg
z;3)BdjO<y9jJOoP-N9w?+p?1r+nw)pd3ot`Mfi%!ZtWt7O+~X=^0{B-htG(4M^g17
z@C*BkvK1yKB%UqIy8zo6@M171o8*^zN{YT;H2;`1%>}LHm#O_Sq)E9DC694W6HrZP
zLgTMSJ=vmuv&vm=d^{o<2K7w`VitG!fsN)AD|D{0ZLcL;R5CW-T=i%=&P+nt?4hx&
z!J-USkc31XTKso+F6T^@ytmgUwPLBjB|dtG+y3;ekgeuCFtna+#D>qqO^rXWz&j4^
zetr)&G2j|Ykp`@Mog3$<2<<DlI8L>kxh9)VO@;cHy2lGznR;o^MmR`kyV-|7u{~SU
z*LM{LWaYR24_jXy6=m1Hi~5SMiXb3eN;d-13@D6rcaL-q-KioiT>{e5-3?0jNcYg4
z(hM<Y`+dK2)>&trwfM(TndjNhe(t!g>%KO}-2ETsCIwG-HckC_ig%m5k*CvN)*M9H
zR2W}?|Kn@y`~2vNg$VI`YJ%i?OzbR3MjG+eXU5Qe=esGm=ECg*VKb@pJmry8%m~#B
z`raXye<MRlu5J<gI{&!Xj-8?wf;t!w8bo$EmiJp+aB>S<f2`oCf_&6BJbQfMF*d%q
z=f{rfn;)-F9?KmyRvQ~Ch)|TLK0Z0$n`WNwl@g^ERG`J<%U{)XQ1otrn9Gw8%rm~F
zcuT_TQL9pr%;j0GS4zz5ah{348Imu@8WAB&&TDxNZqCZfLrqmuof*Qd>%;Inqm%<T
z$9!F)ht7)n(o%b7C$^+ei0UbK?BuWT;9g{RrE$>*P4nwe^TRn9y<HWeMX+v&gR#;3
zL<F}0Rt=}jFUpn&=Rq*P2n7W}iYo<m7Djq9j#x)XzAr_3=(e-%oXupMa>O|=0nuHe
zRl{g<8~o%gVVJ3v&3J{neUHYk`yw2I?8>D|8Yk;`iQi(r$CUO#csaExTs&`|YwD0_
zc(T4Z!%+*pRaQmB#4Ys8w<W~mad<k3@=0deMkUFM8_ROH5@HY5NtY@y$1w+}07JmV
zQ*K`M+Y{D`Z*qjOzl^x1S-%{$I)aB5OH{@KSDTvd&5*C^))8B7&Ca`avr~kUXbTi<
zC&fx)@68mr_zQ{{yi4^Ej`;Kmc~w-`k!|FA?V)p>ARjD6pU4Jlf}GAc@iBM-kgj(A
zZi)j7v!gE83#7V(FJFM<z;0tLnqe5G&iI0xA(EE5LQ6$W&&bF`X~JM%$g>fMqt+I!
zt?C7e+#GxER!{thFS2G$D=5D&n19HSggPab{?%2rm?T7h@=eJNH(rT#r4Vjd>Uq4!
zEQSZVce#OHQqGJ=xMy3_R&z)i5I1if+C}~S$Is6#riAUMe&K_g&}+4A3Xi{v6458T
zt!Nz`?=<RzrMMNr>MTYxELT0z>so46cDuEQ+}xak%`SB5i0e|niwWKHH3CB15hP9C
z)38v*JsthAg@E82pB6{QlQqW%EtOVd^q*mPN;v6wSnwXa#M6)O4EXTIN?^0HvMU$H
z$zeL3W*8V_UaZ&)0Og087}T+Wx;zawz8@PO!K16BWwVD=!VjNqT6W`2(Z7xMyfvAt
zK)YWPzO(jAm4&A2Jfafzc*Xl_X0X#@{<p~7IpwYO*rJdIhk(<SnTiZ5D=Aism9X?T
zI`LK#v9-HhYc(1*u>PiW({1IZW^p5=`imH~=W|lZ`TSBr!iJNd4xggz%#F2GbTlTI
z@_hM4>#uN(Y5X%=n)t^pJ+6Hjai8r@v2oFhoLa7RMn4#m`x?wB#0QhqEh@xRt)mk5
zB_+8XC}zsWJfo#HHtx_4LpNW)mb;BoRnv2{MN6FNyQ{mz`IV3!>O31AxYJgZz)7pH
z@A~7US-Rkxp~h@3M=F4><5AN_gkidPA40svpqjP|c1k@xy-IDM4c>L5#2ZPCDsOD%
z0SQ-~;Cjd_GRp{WLyiLCG5(TzXR4${ajY~slInb~VPloAQ1kjOJFj3{yLOWB?8bUu
zuc}&pOoA@QlpNb@@brrBP;_T3XP>3Z@%(tG5YMkG<V2H)sHrY*x4(-!#G+&P0ihXv
z+u--X53fJ(Tt9Lltv>k~qEG_6kr6htPiM-0gd5%H)07yr8@PTF9NcBZrc>byZL_V)
z{Yss+Ro_W=K?!ONg2>9oyXd|(@G28w+r-G^U}0v<(I&{4sw54*g}I%L&NwE?F}`SZ
z9CxJ@9s#+*rR`P@I`m){6oVFv72H*MUp2~J+oAZ+4!Y=R7rjo^sG0nXlaG)vmB=(<
zRpxkZdY{c5lQN}33B?q18;hUoj)kId15t?~f6};wkjV6=QBWz^Qt04Cqk0|~cQD%#
z^X|>t*;;v<%!M8H=={>>+Y`<}CIow1d+yC$3dQynw?-6h1w9<_(>gNxccLKs(Z%lM
zT{xZUb}HgW^aGHpR(HW^G$$SlWE}WOdUw3n^DRDM+HE%;Tb&IF@}%StCu#P?i-Ymp
zl_%jsSW0b6_WW&w$tq16;UJFSEA!MDlK!`rLp!t|fjsV9S*J`SYisasx@vQ0ocY$#
zW0lehn-f=Eouu`T)=!2f_KfO<`qH?MRE&_mvF^$a-tAQ-j}e~J^`~_wCapI04;SwP
zcs8M*K!(8Q<G&C9wKseQ&%@;3dK-HD%~8$W%LW#siZy9ybtA=xBq`?;WOiJ&92tw#
zQ*L|)uN0TLi$0U%T{kf;Rt<<K74;J@!uL>6mhB?iN;Md=O6a^PQ!=pa-975_b;CWq
z8u64h6b^Qip8VsjsF|0iT%o?NZsGnSvPWH%8((=}C(WFFF*rEF&CT^?7V1u9XA2WI
z01`%@r2&ytn-><~S&dJBxs|?XsaPc1{+*5`UWNb{4vvm8`sg2Qra<X}8VyG-`k;k*
z4JSCN>h%=VuM5iZPA-o#cl-{s+$>~NuUbL*!+^{A?(BBLjaZmc^Y&#XJEKT?9w2U_
zH=<dEcSvw4AU<GxT`1Z3MdCL(C|M#Ry=kvZd2DmQq*73XCvoT&2@3IIX__vhKD(m2
zLH)-5;cmytwde(*YERRP>Y6XRe(0pW4}vpu{6f=(k&d9T9K|7~B*<1`yz#awM7xw%
zCGooEZ@BbK{^}Xli%^uCDK~D5sGa<HKw<B3*G8N3qbR6Yx89o#7ZMT-x_1SGdSsER
zHT9F?O~0eHD}voxq8Eg8xj*D@N=0!4B)c?R`f;P<1ClDDKcQyb9Lfg<`-<Ky&LSy6
zN*v>=EM{dUDdPhPg!;H>z2I&NF{kQ-S$Oy(9P5myjZ;HiQk`HaKbLg8n7i67aU#Wy
zL$8&ci6>h#Z}Na0TRq-D$zL$BbkXC6c10R`+Dz4ruUz#LMO60p6KZ;q0?8hYiMX4w
zUJGg~HAJL=Yj{OfZSm!w-R7Hr-<|FLGf|d(<$U6+4`xJJb5sgSo!&g4RA)`F!pobQ
z&6Fb-_&8uTW$#w;np+utA0R(8v3)z$dj;AhMkjT(Ll0PTm$r8<R{~P-aXng#vxW6j
zOOd`&no3%Kp1WC%o%UQV3!PIfI;~Z=rX7IXW2S%_2C;lMJ<J!@R03K{Vahs?bq6-&
zN~V=z`sn~{vAEAkj?M7qrok*gC#^KO&Q|nab#on`<Rf303RG=sDrI1OQ0vCLi2hma
zp^%xS?T&@{ZTH_|=oGcef(!AYRP9<QJC=sZt$O<I97=xr2<sTy9`1NOlxSD96u2X~
zxU-udN{@9oRiQpc2npJ?unwm}mWA3~Xo?Zo{rAO>U8^3fn=uEef$-g#qJHx$LRrw!
znS<)2+Tm>%LBepF5!}?)&`7Ui;k}P+cB_4Rwh<3(QT>Wz;#ha`hBV%{q503Sj8kw?
z8P+F}Aa>^6)wE_+=j^NpOq{!`?e;dU6kH9JYSh;+N5VB3;|f(m<mffCqS_9w352W%
zz)P1L+;O*RJ^_1mUOUP8M|#(Fk4T!<Yx1_RHP6kZk|E1KMf1lO1BJ&e<PImD{wLQH
ziXu?8i7miesj{Q<^xxhJiiGqP1To98+ix5{+trb8OW{fkp4TVuAIM3b%gCSphdy?D
z$KrxoL}fYgA5C*F!Y~4l-5;Lj?WN=%?tk8@k35T(YToR%q-JJh^(7^^W)+MG=Bjdn
zkzmbtOjJk)B_Psz1cj#0w?{Wp`^VlYCI%ZB)Mog$`1`0A&hVX?N6N~LV4c>Zr)Qir
zZE>Shs#>5brIw~XXOp)ONri!RM;C2*QUN7>){2W^5&ky6zC9+Dg0EdhrPnUDqa9DL
z`Pd`BhNL%K;!yYZaa{TiMs)@em69V1i%KBA-78Z~6ZZUjwL|xH`QU3S7J1uOdZ2a)
zNXdracD1s`0*GxPNYN5Cr%2BEHb+H1t?Cq&8ubYxsIk}j&uL!}kve)ZuauB{znI76
zA?`%swuTP9P7{1_KkD~GQF$fwET|4HDs?`nsk7y8GOM6<5sN{=zPeTNRbo0437$Xy
z4G>#CSjj(VJ9pe_a;HAFcgac&XJwXSQPQV4Q<!+E{_T}1s@|~TaUamh2l)j-VIx02
ziQ=;9wgd$0VDh}oG7Eq3MmCujD`STqTF#Kgz~P5rWn`3*_H%G)5)gW>?A#tUz(6f%
zd$Fv#Q&0oCo|F_AvFDYN?RZHSH~mOk52kNQC(O{+YQ9$c!$}6_&Q@Tfk(+DzpE7lE
z{U1!3iB#Vg{r>#S^=qF*-+j7>=eR#PFq!eS-`7hPF=)G3**9h_Nd*%b=gPkeb(sSg
znVyo;+KP#rC!(?bdecmi!sqmq&Se*+xr0B%n&uF~#FaES))jqc8G+hK93dO~a&a9)
zO%2h97pS>zqf$YN5fGYAo3BakGim)(?Qu(tiyPZTOFc6X_yrTw69g#$NtE!X^a0MM
z*qUddar58UK4+)ONO>t0KT*&mY+cgg5J?Ut(Yt#*R)a~Zo0uAIY^oZA>Y<A+$GY~w
zr-BT%!*M}Gw8WxX1Ynr#(#17L?RZ3#U85Y*H{Hv{R+SzPKI?O-Af*+F%?7hXPv@t>
z=FC2|BGZzoZ0=imaV8DA%$+BMK$F??;hvGzr4y&|9>37CH8-Vgks7G=EcTnrHMO%>
z!yJsBrj3wy0Xn6H{YT+F_qXt?m!yai(}wfCSJqJygaYd;)1!QYKimarDq`cSa^8|j
zZWS@av(TwrNe+pz#uo(-nPxZjPto&0PBvO3Awsn}=xgC2zVDJ9*w+zhNrIk7$#5?Y
z{Wg5HHig4dc<LU!8DelVibuR;Zfhlcwh8mQ^DWkUmEK}PkdA0`+jv%$Uf;k^F5u$u
z>$t|Z#;O`l$Zvhz>xGm4^~&Mb#N36o*HrM=5HKkEUGEjzR!Nb1XEJjl0V0VRp3Z4z
zv6#PAFU~ORW;-UQsJVGIv)WV*Zw1)sr&V84p8Tnk`cBaE9w1u-8oRjExz12L)F`Ks
zub&`7qXXMpq}97khg(S>XVIhw%XuL*-{j09BTA4piC<84xq!g5eEjg?`z|4zH1`2l
z@`*#;#e;owc9ijHwMXhKZ<F^b62LPh=zVkQ9c0DXWQ*h@`EQ&KP;}hsV8Fl>&`vfg
zCe}&>qK5A8mMzpy&38^CCwCCfgbqZp+nhY>{7cm9Ug1CVzM~5BU9%TpC6s;n{Q1a=
zDDU?MZ{vxTq|yji8|;)0GtG&fO#*d_g8pn#Oiy^qLqJ}2clS33HVp()Tm!V)^Li~z
zdfVHok<U_Tb7%h%py-=EK^#2pL?4h#BDA!>L0VkZoYEogH(vn{W@55#V!El2)}p2>
z%Wr(_c0QSqd~XMU!g__luIk<vU<O9LL$I~u+U;;YcP8h+4WPs^3DGmv4!1X-+iCJR
z%r-Y}xvZarby<-s&CQN_509z?HaJs>6=m$-60Y9S*jmPLt>B_|Hu0g0=h_ucMoPK8
zv-ZKxSbZo6-~&b``F`ie^479WE=to~Bg2!kD}WFMFnueMa>9lTY!gE>F0bvvc7O{Q
zXAk*Njbl;ZX(15Z{oV(oZ6;g-={@@OMyX0Kw?;DQaKXUX3z_$FVx!r4(F0R(zsSz*
z{oI6a7jwx}L^nw4{9hqXnstYwwT^!V??FV~$`)}a+RCM)uh*3Q0eYExM`6JD!enEO
z$7-?dz0z$u{nsU@hO!=|@w2{GWAhT$AwBYaP56A*szXzaowB@yom^~dC}vClsdJ!G
z@9UeNY^sIm7*cMZd${2gqdjFB&)kS4n-Zsby}tAA<R+83QucDN?o5^jB!!H0ub<3a
zkc~O~oIcps6`Y-$fBYECYBs0Vm?rYdhvX~PxdM8Y(|M&Bn=OT0z=spU?R9M3qJYef
z*cr)OuT)Q&vYivM`k?sWLCY*M4SG7(P9T2m+~Uiy=ApMj);9kP>s0P576R5%Wwda<
z6zJm9ER3ufT=Y$!djl^n%PX>Vn%ZUa{l>||t8+Fm2q+qhF)y_s4f%iW-_6K^CL7Co
zk$NkB!;-2{$2a?TUNp$@&!f}pHcR~(@&*lNe<&}2XJJ&Kr5^9C9&gCgv$C}<JD_1_
zQ01&(;l7ruALLqkx4zW(G>^kTw0T`o-q`RTevz-T+VR!jD)Dz*D;+}_huuavw+vT3
z>4dIq4d`(NEVe@lj^#qO&Y+mnUMmvet><Y>R6>oJ^wIq@a@eTC8@~ugjfB(jf@9f4
zDb`8tmSjuAKba~bAQZ^t6i%BYcNw`@FM2PW-$u5lo$XCqO|FQREqFvFN0X$-71F)1
zfz{N5)*poE9=B3T0XPzHo$)fJa680V+wI`GV}H)5)iKJlJ-9ROG@cBNU3|D$tDTWn
zI-FVJH>h2?b3An2gq=o9O~n!UQ1q*2-K&c-b>kkGtQq^AF(6i~9|wRLsXGu(`i)!f
zYIuPZVAHh7EBsr#QH5X~yw>L6LVdpjnQh*nr_iGzpD$({o_xR#Ony+N8*8D~vvWE{
zJt6Lzpu3edlTW(1PJYZy*dRE=k;dt8yq9BFWq5YYYi4g3Qty2maSM3Os=Asq5nC;U
zLdnF#8tb#sq_!IY_ZzGSJ`1+{I)f>^8ZB4n>S5h-u-AtdJVq6r?SpHFH3Q>yP`@&5
zUR2Ok>Z1q-YS8q66pJ@f*`OLGJ0PK$UZ%zj>hP&M!MfxK0fLs>XqCB}p3mS?%4VyZ
z<Y<q<Ef2-a5TwiveiJ?h(S<_yp{Ahd!{2R^-th|!s=g~<sObaAh#9}V*%qg}dHF_I
zgvn*p?E&-MG_u9G$k?0%L@3*p;5%N84JON^Fijgqb~ZMS#NlKv8H#`NcjAf;k{VQZ
zt?Q`tnq4;mow>t=cc*n38&WYcGr;GoQ~y1fbx2;5_43`VP#SnNA*p^od}o{6Cw}Iy
ziCw&{Y%hHba@c(S!nN6?H&f53Qd+$4a85TIiizJn+aVY6$b7HlGt{0Nz5}20q6HMe
z88?)ac#C58cynv}gpeI33B7Hqn;M&tmPe@h-K+{}MxuO?aRRd1tY(0)7gZqswQN5=
zb@+uOObCa(tb|VQX!Wvi=erf29~ppwUWCx;o|7B2t$s{U;s-oIXh+-)k-wK)gshxF
z6Z{ZVA0EO7)fM8m%@7i-Zm@NR3@R%v>%hoRmHx@kOdl8pr^#68)v6gQDA3ZiSREXy
z=UQB~&k#|Rr4e>=Cj&qugkNUB_Vg)D#kXK$div&!mj>w~r=L8FHPLiD#jq*vM7v^S
zW6$XP8wmGYA9CYp5)f>JhYqv#f-`=iX1(V=J!b5vY=EM2<7b2Y_lUPltJQUG*q;ID
zlu588f)eC6(60?(u*l$UtOEd$PaRJC?d_R@;M*|PZMC86(IqsY{C6rK|5L2lU8U8)
zfq<&y#oqKze|QrRLDajT9YEiajd|{!qP?HUacOwY!Lo^N)$oZuq3pU#xE@?}5UR7R
zg&#(f+726V_(c>NESByQV|7RP^!VzxsME(j4*2XKem(r{bYa)pH_GZN+`C!05apP3
zeLI~O%{g~LHRpD-_htE($7!ayG`YXL&^S6Z1)!z|T6!_j@hNfOR9<=oS%i$7H0UBQ
zPxmqTiJ2#Y4vAhLEU*7~k{!BJE^xaqtSu+uEdA?hkSIL6n}13NpUjNqH_7f!hjAr6
zq!s1)c8#Mgm+JZ?j1CN^95tXJOwsk<yG)MV$v@Xo4(q5HEYy=3g~avv@GxhpM61!S
zwzwAMsTG<y3Y6{SkrKwfTB{(TGPFsI3O3;&DpEw#1j*5dDGbw5`zg*{DCCuQg)N4i
zVpHWt{-#wsoq|<*U2K^`P7EKAPw0Ya_QD}QNhH7Fhm1s+(u--!jM$c;3JO0<4Muh*
zb><g4LSNC;Y&5dq<sJQWQR#Gob#{i#<$337n^s!Oi$1v&P+(8oBzRHKBY#s~>3Ga6
z&&yZ#7N)p)_Blqz)Z<}5vg?LgW<hOe@6lqLLU30MV9sQ&XIka2+Sa305*3vl3ZgUb
zSO(15?wrmhA<3M$qGNVG6sc&Znzyt~F0#$WLCg%2w}(N`?9~oI4A936U#xTR7@&Vf
z8*_}Sx}jI^%dq~3?kv_75S&dad}6-0w6C&&qKq(1eMl*lsyPC63gksIHX1qMnKA=V
z=xKisAc8?W$n6d!(6w%pT(NUnjZRB~8=9&3{Mcv_a}7NmB$suH)tnv5F*n=Y-T61*
zGc(7dq~h}WwbZ~-cjIK3-cSZJD{CsBV$!Kqo|J7E;pdTT(O)EUxffDNdak}`divO_
z*QeSilpVgw{6?T(p*pWtW_)2uGP9A}UDm^*&a4hJ4Rhnd=$r^<HheJL;R9Jv)O+Qf
z?^#ngEC~ufJ11wL#k)bm*abYU8fRyPDKEn7F6>|=R>LeVH7BSrMI|=16MHDMw6>cZ
zd((fa?$ponSM=$jfa<(Uczc)=cc*E@Y?-gLY~1mUqjb({2z^UeCreu~N;gvp57)mB
z2$G8T*H?7M)>B<wZcA6mdA;_QhS9gGWz+6I`{&*55tG4s&1X{8YU<83LUkXmTUC>0
zuE4;yA;qC98yP3DngP3z^Nx&(TozQt)*6n?we&H6WbI<HdbC{>*`D=-D=8;Qy6vE3
zP!5ZQB2v77nsC<MyI)*Shq=k?0v#_D*2T<`XwZZ|TAv1!6H`f&vN5|UliUrBjk+b8
z5LQkhZG(SZ+Ml|40mHI6?+LbjuB_fis>w+xm^e^ynvg#ln0Wu*;!cU(zjv}%RWo~2
zhfy*zpj75RfE9Ibk}q7!^-@7bp?o4|4MRq_BPCuqEfD<y=*rhUa+(J|L(eRD^2l4f
z=JpDap4SW~IO>u<o)g|TGE}d=$!*NZ@f~${F6R35Uw6G-+#t(a$uA{M*vOr*>s_`-
zx@7$3%f0G~HfSk~ussrVUaEx`^&^N%^a=+1V+`tl9!~7~yJ;2_YnapJnF@Q7ZhtT)
zz{OXDn&oy=-BcTbGN$Ix_%*Se_Q_46;7*(HPc#u#p+QNU5~KUThs8$)35(YQ>uek+
zZiQGpo9gNuU^YU8IYjK0M(@)f>m`HxMlw%U2SN>mdlJHE!cL53o+7zpViE|Jc9lDZ
z-l?$r+`KUxIya`db~`Ft51i}a_$;QqKAql#lg{^hiej|MM@*(0NkgRf9j;FSuR9O|
ztn^%qxGDwPa?M<1?VbRqua@Fd?rgxb20_9|epiKOwjKoR;_&YAqsBVl+3*&Pl55M!
z&0lW6uGa%II5u{6GZRIXk8ngB4#ZK;4P<z{YwIR^pgR;*qzd!DPt^y)J$N$RSlj+t
z?kCT_$Ko$`2U^;)>(uVyn=fQUAcF5fG~mb<$FW7IiIq*Y%Q`hV?ngAo)mR?1v$}Qz
zheQl&V%EJoA=~UohufD9S$$)BQ{najq&Aw|LHLNzH^Ir@O-?BysdFp!7_EBGm-6w_
zyNvK?<n@y2+4oJZj7)TBC>LcB!NFfWZjPwCyclfF;RaJZsllXEXUVnp`dU!(`{XbM
zA{%w}lV;Sovx{3L5AW#IB;f(X@l{&}V_P{RJ$r-S#bk|eYDn*FyUE>gN#^nhAvg|v
zMfLlBiLl;Y2;=LF$yEkKwo$BAqmV`#4cSBV;|Js@)aPiL5Gmh7WF7)|GHh){r~_#r
zlO+kS24S}yCrt3C7uj#%4ir)HtZkXI1xZ;3*QHi5Gr6HMVv*aZ6i_u+B#Dpuo?Dcy
zerunCab#&v%C|9I(D8=5X!^%;7bNpoRqhKA({%$_2Y{U?$4~XX?*U?l{Ke12r}xR#
zcWl;KKU9!lk?tso7phrR2$*xDd4Bc#-wdib^aWkjeCwF}nv0wA%@sAeQ2)bOmBt@+
z$CJ$K%}H%*=&=0>Uo(3p#zRjbTM+$*R>TiNOUE{cm^<s8Nx4IoQs}$^BE&->-*pc?
zuCT6S=bFQr%n(oSNAWT)H#hq|%bYo;E6E4g@??{>H7HHpU!SvLT!bQ;gyvi=$B50f
zc-GXtEjfwDe|$O|&}LQ*?w##t<rYd0E@qSGDOmtf10<7>-cG4QZMDx@D(p)qX+3oK
z%7)5)LhJv+IE`r@eBoWf|Jhs)oBVZr?)+W=!<)WdKDpVmgAng{<z3gzRV*Z9Rx3$!
z7V$3zjQwBxo9uuFeL3lSDScQhgMTKuU4M_x#lN^hS=kC=LdSnk_Xjgfrya4X>!HrI
zJ86G#5n~m|o$q;2r*zqps09Vbj8&qioy#pdX7y*^M99mDy6=$U^1!!P5~P6h2ADTE
z-5vehVVK_JDa!k5XrLoHI8?U3of>qKTo0_g#_el3I1+CgZK;B~NXM&c^h&4QZu-+x
z!0If7{rX@dYR`VEZL`QebmmgSuIE?p+Ed}7`p7!)DKk6nZL4itQpmfYglG1iBV^qu
z&yFW5NjGZ&DZ|*4yo9-KV;vz<MPiS<;F%de)SyroZ|iwK@&@M#1t0xXuIO)FMwQdW
z7X!F|)!BEEFO-#c?ln)>SaX*g$?{`(E8N4zROZmFYw{p53=pW*5!7h+3mo8Dd(wQ0
z=0Sd~QQGuyX#IF*+Z2}q>olxdb9`?l5#e9*FsOq*O9&@DiFl_D>y#l&ux1`FX3P%h
zH(Q-)r)HyK=6bh66_i4}jUQc<eKzi4y_GH?)bE!j*sBCf3{Hb~=b3M?r(UI^VDQWj
zeLD*UBm&)ms5<fXpi`@&10rK{_}$Alh51kuqaTt`Q|i8$i6;5*Q%Rh?PBX*eAT;US
zwA-GMWq~^sJq-Sh$y=yLK$qBZ7_p?myXcyLg2tx)t#|qdkkAjWN$&ab+-cQK5tnrS
zRj9Yt&$YF;S1$U}1blWE{+02L@j1rjUSs~Ayf3Bl_f6{$Dlge0*`#f4&Ad2Sl7d03
zb!B+3t~Vx=!Im&^Y`T6J=j+o(w4kWQJkc)dX1nO;+FowUv^@iE;3;}u8jbaOfHrIV
zD|zO}vcKankpmTP(B@Gl4<K+Ce*fSY74Crhts5{h7FFuMhAgr_m<cRVKaT3ZOSqu7
zH}MEkSeX*fx5wj#B%D{<B>1q?8%Zf~`HEqWjKv|;Tzs6gS-o5Tkjbh7=$2)0nCYl!
z{T(!<k0jtd9Ym0qF01z&7?b85l_dE)@8K<7=XZ6LbFx`<d=etX?<+jkjcIxxBVGTa
zID}<$^)opKWHmqLbAHTyYP{Fl?1Gp+`|}gK(@$I?bGj0Ge;kr7fMNG?6LUBvC4nMz
zBR3FwdYf;sQ)lAXAX7k1?W9T*4Y+od+`R1f&?h-uEDW$)RJ?!->(JNtM$*y+Qj)q-
z(4BiPiwDCeaOMO&0yH+dp+D3Lvy5WdhQd!>YC?JubLucnuZ~5AyzqnD{-5MZmJg`Z
z3C6~$_<gTH?+Q<uAbRo;tgJWX)U;CBJBmZuDe>wr_r)J9R3#qnSUlZDc|KQur`%WS
zZyxgNHSegX%W^_`UDKyD1$BYHEAVquA}L9m*Dj5VC5#yBS8w!p%&pyL80oN&tKMcR
z<}90}p51|ZcVq2(XYFQYwJ36fE<$oM;pIWndyYAd3YYsT4ST7TpbiG4QsMvsFebgA
zlAQeGz>w7_axgGORc{aZVVIiSXE|f-MsA0!cMT$ZCah<3=3E10&d4g`*NGhh4$HMt
zdLB|;3o{zvUQdu?EkZo;eQR?#-)r7*SJv<vb0!%aU_VmS=l(s$$@LrJwSKoBgdmh7
zE1W4;Es_wpdhcf|c)42NN^c?gb^<Xs7^TS@En``52^I+Ij2cZHOFVe4EbrFy%4gQi
zYN5Va&vRpxLb_pma@P9;f>#HOxnGSthseszIbAk~s<C79rt0vO(o4P&`ny2p?{P`A
zYi*JW^Mm=xmoNW(mk3v)$2dx=UE)tBB(pGzXJ&3lN-+?hV(jfi$(f0XY5#e$NDnp&
z+r!z!su*M0Co%8o3NJ|S9gpWU<*_f&QL6$|7#FMat>0gQ^(f$h=aycVr)ReerIlKP
zKQRt@<sSq~>4Jv6`8uJ+oba|GEcm`RWaqMez~p!;b^`A>FJh;`<6>K&&DN0X8+*hg
z4XW0hGYR^}>TM6(^)Rb$l_Y(l(46kG!!ZTf-ZK6Ny-{f;iFVU%MysEwdd|ltenC~$
zhCWXG$Ttc6KtZv5ctWq{SXrs<(^Lb5uInmbBCKfIJ<scUX&8Qg-SJ_1kB@i+SO|=x
znJ9w>YJ;YPHAkb0%Lk9Rh6Z17a&jE}x%75cyY~^n0>=A{0zL;1UWw^u4ky>YJ`;0!
z8X?i0AV%1v#jZ<+Pp`?;zvw`SaFNYbJJZmox&T`wpeqMR`$AWJbacNBCJC2U%MBWF
zvWU>S*%6Jm=qq)-7?j5{SJ>mglLbnP!*yCFXy>}4#Ir3%O-9;v6?o>`D({UicgdSa
z+s3G+c~2U`*gpn_xDs6tE)WHSMlB8>rv4|ci%iD0C-ZRl{!wA1P2ofD4iC*}d(CjY
zz{U7&PO$Wn`c+se6K-ms-1w?J+ojG<H2)V?S1(xxf&#JQs{R+1k<n$I7GI|<fxD6`
zf@M$^)xYZ8wT0P?=<6|gO@g(am)sQJ_n{nj3Bwcp$u38QB(mq7GR8-V2DR>Wd*Vym
zdmj^DJjs#CY5xM8+0;LFDCDQmGEd%+sekADjU3a~ZBt`+8l40te0S7#m^7Nq8U<=L
z^s#ZFQ~1A@uNpatvF=5x(?|Oy@BJf8_<%1H&G1<|_McdKACQCQeUiIOB6b&09rMYI
z@kSwP*QQfdD_nolxcOqa9X<506Fac;x5@SD=p&eZ`hi1{e+zkEuIBh{Xlz~0Wwyza
z<flpOx3MteZmVy(dY(9p*974{2~c6zoYqZt{`Z)Vv(xA4&+Fep_Df?Xw23Ua?29Ap
zzspP^hd42S@NZvrc*7RFs#+Cc;Gv|X*KhJV{H!Kr;^f@9y8F+=OVaz~_art59+1;H
z&g@LT7Rt1x`cEb;VcjeFXI8T^w&*Yk?}JH1hd9iSgMdDLAV!LSN{B`zv8x?}99Ezb
zP0L*e28KdA*TwD~wlRE*i}qTv>h1J}14o_&)<qAl>9+3R(xD_d3FU&Vy8WJ^uV)Se
z_m7gEdJtOY=i%d~@2neLzr*`p<+_+Y7L*Tzc@aC@8m`qNOP)E`#K}yoKU$uPfL-}2
zF+fM|iI^`tFwtW+zFMxJV*XjNy|s@0$v0xs3>x<>t!4Rl&a!@r;M_NSWj&e6M*mH7
zzbSpqr);hFT5m8Uy<~fCnMTS)xPwCzp^$uQ3tu5VNNu%JOL=k{(>@!8gL~^kJ>Ib3
zSJA$muH^UGQ#wHUDmr`3h3uJ7pw|@kO`HDRBj56xUcmTpM%N=Chg!O!p~82{?4F42
zIng1ch45G|M}?<AwaVio5$<i{zE;pnw9lq(80|WoYy$iE0xMD;>9QkHQ15+^d^@z`
z@z_J}Db4LmKSh^H&)N16pSgs%5FQ)>&4VD>^-vV3O+ViRZ!KL3Db#N8QAuv^T0FC$
zBF0VhT+xwIcvlgb;&aIRY>{6M3&Z<)l1BhDL5=Ma#WAY}{t_cI0r0M(<D`+KWuF?u
z<vn#cB-h(K3sdtUfO#CT(s55AIx1jI-KH_ern-?KbfXQ{=R$MII2KgyR|c282SZ@t
zgM<4_-ryW@@r}mD$v*V9byn%FV8P*Xd}<{)a|)jeMyzhE5m7Y}u54TQ?DhK}KB@(9
z;`Q)CgnXZKCGYM+V`jy@Ssx5<YMivL8f(4lqa3flqonkjGC5Wk+hmc{_%dC1)W^=%
zY2$7Bw(tJ15Lqht{t2;ug{_fmZWr|As`+mJeyYvj-K-P6Ag8e^()3;=_jS`jop`qH
z#D#_=7_sf^wy{BItgmy8;=PCuc1>>}NsY5Lw;XNpfLL?WoKZ+knVo@8N2*IT#i{D1
z?36K<ZoT93L>{oW<%L`4*exIs<50drPVjbr9OzlTGBYBVgNtk$f5qrG;;OzPhw^Q)
zpi_B=%K}y5ian1IM%(M|B)iypTjY9f$gMOmvHI?gr};ZvJgp1zZ)ECp-9Fgnc0nRI
zK50@=ZIAbxc0u7_Az*Xe*NDYFHb&Q4PH<jmZAsF|mI2%CJcUZtF{}JDW;1h}jNK1#
z31}t)AF+T<HkmWC<_qsIj^#jl$v_{{nLc8lKXa^rYqx1A_>Pp0@io@u^BKDnIW(Le
zb$Rh?VWe+y(hE-_#zy8Q*oE2E+5JYO?7<EN3mMjZUaH#Bhiv}=r&*NY82ubm=}&a%
zYOCYc{}Fpcn#3)=`(KY{T>X?Pt-+BNom!k?w)j4$r?P`z(LDIx^5(kt(o;0GDwlr;
zY@9XwQZB>}tlJ291_Zy5F?E+aUhTbnNAcOY`X6f?y(8Be-PfgcvEf&<4~Xo`F+`pf
zsGSRQmgH82r{|6N2lJn`TfagahspR+j#Ysb(PK9^xgZ2ShhSG`ss&0gm~Ida5hEuM
zV-6=H1JLm%7jbTy7WQ8*t-F(-gH^bkN(R3&Z&=uwS{daRsTFD*3YnW))qk)#oTZGg
zK2Il-?VoUa8N`l+g9T2MU9V%rI3jt-ADkaq(iGL@ad;`kXH7(&VrSE@6-bz#&9(%z
zQP^QuFr6zd;!Z=(hkCWOAG5nQUvrjkX_n+e<5FR3Ch!9@yQJi#JX>95HJxs=isrvH
z(U(uYX<a$ggkc_{!nL|5p52&@t_k!*_nRr-cNVEyC@;=Q!N5$<FmjY%fIAYgO1fq7
zr=Hx2#)s`yTlo(;&8FkNv_p}Q19H8d?s+gIUZ%Ml=$77WQM+-tJ>A(Bm=tZGCFkg4
zM`TXsBo0Ysm){lnD);lx{Y$lb5&WWxk|L42Ch+q&yxJ|V>A36OvGIZ5Yxz+#M5=wg
zyr@xXcii5!nyZGB@3?F^E-qonglq8YDRJj(zQ3kA>`eGiFTcw)K?2`1T-6I)HVSQ7
zJw{bq632fl^^IXl><@Ic-PtxtRaIhLb0V8M|4n$L%Xdm3-S2c9X5Wk<@~M1_md}d?
zJ7s@!`T6nQ`;Rm{LT$Bq*`*0De<S?Wn6Xph(_&%U@0sKK8u@U3j}g`u!-~r5i{)rJ
zd4HQ$eUm^5nn`#9l_&G)MClJc8424@KlElRLfUGhsI=xf2BkOz1ypY}=DJ&bDI*$n
zJ{Q`8^emFDtu`&U(TcfWNo!i?I96tw)2T@ulg%6<w(ycWC9pfe%$tq;o86niUmsr2
zV7;mT=;r=4BzV<9Ao@=Mv~$&g@;&`OS6(}o)_nw_44i$uW)g~7vB?kJah11DI)875
zaM+5dnOIuoEBqSV>Oz!nbYs#{|6$qI{YGrIu7TWQ<zXo^j%q{I#D~1oaRo;}P*XpR
zC1Mj9tvZ?LcwUH(XNglu`aWQ|nt#t*jVZ|kMB=M}9Ps1KzB#$d2y=TxUCGJUN^sun
z0V(rRG_n~CFKm=z(Rd1$Lea?J*<0eB?YMz8Bk8MMr-VGyP2IL)T`jp>un%+;KGl8%
zrU7hAP7^G`igIY*D{N1JIWYypkdREu2-2TDuD8lRlA?W~dWE5C1==3KQedMSHEAY+
zL$lhVXG621`s}RwFJw$qkXc%rnT8!SL=PMe;Q4v#)Cm@k(G%12qgtZeb-(AO&}U5#
zixMa9<7y`n=bEigIM&cm4<zzosV`)K@|sV+m;_c-R3oeTrU&C=<Z8daeFfC>R{0-X
zg2Yg}01=$y3zOHq?ONzEi212Y_5J4WU>{ObYYK(g4&5Jbk=<IPS<r}Wtw}QMt>TZD
z$w~UWX=vh|R4-g!8}zBv)i6ZLhe$<>nd|q2Mp=hvLoWCXWYrQf)Y9vFzw;;z;)2H~
zKG*9JlBDaf$Aj02NH?s-+-|}B#kP&HNWHNV4-r$?pFr2o8uWpPST67RJswr=8y}QJ
z9pTxj%a`{#)I-Subf$rgIx0z7Mm0)feP&{9wfu4z=`mU=cfy>h17-!*nADy}tfk^n
z=_xJipe!S@;kPI*6UwqaDP$iVoEMu+(IL`JA(LdtwJv-}E$DHZnbH#fsZ_&IdPa0Y
ztf04F4j<EplS@+_M4q?libMopo!II!w3y@3A}&k$lx&h`7FRvhzXTq>2bXfuVGPPK
zKjK-B;rxSz<SEs%Ju^F(Rfjm#*_~6}p>Rkkvo^&m(XxCf*lx%6<&%WRk+5gVjPcMo
zm|Ek-9vg!-_t}0gr~-E;N|88jb#>l!6hyiw*UJ^_DkQiIexy~`r}E@n7^oM|npQT$
zw+l)M=`ZXyL7_z}$W)i%4$_0T&?5xt2wW{PVW*qO&M(?=+J-Q!;IV<TrH&i;>xPHG
z3rvYwanW0kJr<aU*q$fgP_ICZ9^*nHWR@JK13d)^#wvLDWcr2&df8rP72jlmT7ro=
zMG6~3q__tWdt=QXemJM0&pk+tTz}`zihEmgVH1_UiQ_LMPd2W+P`;bWuJZRL%b~Z8
zmJ7*|S$OH)&0F{vtnBL>tDENu-MnVq+E?#GEN7r`u`u%ZsGS>~m#h0Ajeopr`|CR+
zvSTa<$9W___k=KPd*6r%50^@5OuJNRPt;8}CrhQ`hxq^slxA?UYg>q?=^e`7F`&JD
zIz!c-qOfuzFgiMIxO!d4v(`$fF89Q3A$gzQ!)Fra1=xY0A*-qS+Qt&grf%Q4NLW&n
z8C6)<o6)hmQr#2HQ3tp3Cr7T@)qh?`_9!!}mz4o$20d>b-o&BG*LUVNOCTeGnrEV5
z+s4wWesd45>y*8Bvl1v`OObNfcKg2ngVI<d&t{3xbEUBc5dFcz>L*X?do6ty%Zy@r
zfvsV-ko@p@bWy6QeQI(TF9q%scVM(4maeI5_3ve~VQNb0f}cU}CP92Cs@gV~Y4Dy%
z-wjhmxc58{dR8~N|3zrrVDrc1;XGU6ehzl|0rv8`H<Y7Hm#OTd5;c%J5uere1qSXw
zw}~;ri2Vsi^p%hoV!;TnWBRR|eGizL8ZsQ)N@L@rYGGY+cpr1z3MXwtvh4p|^`&s)
z9fehlBP8(sY0)bdamWQ0cl5FE88(3zTHd}_p6YZ~04e~v+yNWH74Tyyu7{4dnEFtM
z%1F)m-3@<_Uf5oLxg!%Fidb#6P6k%CtV~2t3{n@Q=@VJvnJE)h&!SaAXxC@O<eq|#
zwyrf|xK5jmHfM8B(8YKoxD-m8AeD!1u-^XCy2FBM)B8c~0F*2~rf;m{W$5q{t<_UL
zI3#IFGJg2*!shMJ5gM4R(xYo{6aV=9<DDk+zU`17$@)_kVuJ8%0FFWc{8?#rHCAGd
zQG+3xFW8>^L>KAgZ!8A~>%qeX$gxjid;a_Z{@vbiESH+>Snjc^lQ5b0Af;%~qi+&`
zJP~;~`RUh(X3B+^)L_(1-dP+X{yd8e1MP-t)bR+QQ+{koXS&k+<qiBEj2pTIzBAxH
za@WZPw238rbooUATbMu5*H_`cfDH@Mk5E&OUO@&i%)wqXeYxAhp#q*m$zJzT_}QS>
zVipEQ=3mo~F7QUh53Kc+27>E<#4>h|;xj-w7WpCY<!{K6Qi!{T8h!2S$#lUC$b);B
zAMKE!1w$a8_z>gTWzdjMi~OF~qB6bzA7cw|TT)a#&#8mB0LI6_s_=%YaDjf{sh+N#
zUUOXw|Kf=8axm+Eo2~p`P8k1R(~SS`hyQWXKtB{mcf}nRR&vE*{+#mt#jW)JID?QS
zR8^q@xP-`Z?j6M&bNyeoAb-t0W()-cTIykaeeWzWy!VNOpZ>qLAj>tD;=o3gsl7uP
zSd{Q#2Kigv!vNMGKOYqk{&l0e+$+RjVY$nA2c>Os4PSEvwkn!lRqd-SreUi8+eRcq
z=Pj^kXqCE2gJ>%#6vp7qEHp7b!$9c>jX5^t6JlWSJize&X?5@KuOnySN{wgnXz>i0
zD$|5YW&_t1UOjek+5dB4dTidl(^NcXtkN?j^QYF@On<Ug_)7N}$DeUkSz6dwc2Bj>
zoUz5S!~vKgQ;jJOybDNU4FHJr8F6XJVWtE;N6u-Oe_rlrct$2url*_`Ujerv?(SwJ
zz(8d&xEphY^qJW69}1`u1ACWotb7s-B{pvdDycI{#VEUX1uFY8q5M&JCzNyN<qq3+
zn|(Ji=8FLr!tgle3bj%t-*Tsz{|*J5tftAn!tFC)*GLCv2mFs&+YJQnaQqiU0ybaz
zQcy13hFMZ4e)0_ls^L}R^*WJ*zU%jV!CP--22u5|zmqJICh2K2NBjH)`hKSWEl_s<
zuYF3ZEfw9*Xm)l;YV;9Ig+Dd=8#{Z~@|CO9x=h8Xad<CVLVr%M!+*XD!+S!cpO`$c
zGKNLp0MVNjktq=StNwfZpvmj|^2H%rMj9$64!$`dSmhU;xLJ1D=AlrO!zNj*)VdA*
zrtyXP|M<0_lJApW9CN|6S2A+uX8N^LI`ohB*m2M5PL!gp)CY~JcdYiwO^jM-IK_TM
zwZ-%%k}XBam^ucCF)poQdC|nnsLRhi195~Y@$sb{k9M>aYeDW{mr6rakJ$$sqW@m0
z*vHj<+7@2(etXF>55xhM+o=lry7|Z3lgZ_AE$dI`d!%Q+o{m*0D04W?o~Q>8GrjhI
zP`<N0;^MrMUuGYqhk9pf4{b_F6#(m$UoTvi;l6)vJdCXYz|<0}xm6-tQE$B40Yw`7
zz>$=m?3}{x1%97D=iy$4Dg}e%(;t+|T>s+N)xJF=TlH&+Rq>p@sX}SNX%gKO{0<Gp
za>aBnoZ(ZQdAU#3c`1Wb-m`Z8*S`)}#6?`h)3e7j$3xfbJ|vtU{^IEtxMq~@GH*eo
z*~~f#iU_o5_T*w^iRYD}8_f>esRDiSeb^KGV@4}SD;*y^u-e|f!{-z5xiV1ENhpnY
zZjR&g&EYKz6$K3!{h$7lAb-yqZf@Rrr_=UN_=(*(yYHY4SMS+U{;3z3!NcVY4(^OO
zPQ6CFf$zb3rdDV7d%UpIFYIeJ9R%Vx0I{RA@!tjh@=jv$L3$rv`82eeo_7$C6_;+T
z*;?$+SO!Dbn3mdBWAjuBLW8AkX3Jeub!_iy<{Rs9`uo{>2m8?FLL7-K!+H&QSA1>d
zYm@$Y{B|NHk6D=QT3;>wX{^O5-9E4|Dn9&RoR$uggFXqU%qXAk?q>y>fFE)u#+DM$
z7)Q&Ljc3Vkis2?1n+G-wnv9`g1I+TOnM#@eV+sVUA(8&+pDf`Is<vW2b1Kw4Szi~l
zIhYyzCq!jrxcyaY^=n1unP}p7P?D9(=walPlL{5lTC-_C7N)o^qtrmJazXH~m!cd~
zXR>*PlF`6Jzh`*i$zv~eJlQ??;I*rzt(nbRQ1Ja3_TNnJ$%zZ0g__t}5fd*hQ2%br
zueU+>6(Lst5}ERRL6rL`<ue>vY`zAiQ->m!V{hIrT&<t3H{BOO%(g?T$R78RJW?=_
zl|}%YuL8}vY<QI?+SgOlX2wf`Io@Zg43anyA}=T8vu&%V(pV7v&Ie5@Plm!9x!Qfj
zWH|#Y^(BXqrx&h1Ig*2#ikbP%4})4t0>BT-Mb104CY}j*orn;$;rfpdj0DU{dIvie
z*9$*~F+Bx;J+m&F`Wm4~_^*3lU}O9v)wpl6|Fv`b`1|u}>b8@+2rAbrCR^c0&tk7U
zTWsHC4`i83dwXScKLjDDD}Y{8u4_nQ!|h5WxFxxrUi_&S*^yKC%w8!^<C!?k%EnFO
zI>6{X9(E-Qa7CmxxtzILltuhfl{i-`u((3q?yT!xq%pDM%2SRQkN=E-sx6jDtYX+z
zKv8ojpBTsOZ|_o@Y9D(Orq(-LNXxUceZKL~8*V7V3C_>RUz@x=s+E6mDO_r%HUOJC
z;O6?B%G>C+yVTf&SZqCe`JK6%bEbUPM9fj5t#k-T5*>BUsZy|Ybd!BW3pM=(d2mu&
zeXk~sshQcCo`wYjS&1jur92Ddtu?Ag;c#Z45LFx)gpX#_3jTbxbTZ3peKb%!a@$lB
z8lmV*nV7H5%`JpJ_s{!u=B*`XMj)QB67yfTs<$6kTP}&eVY}x4F=CZg!HaGx9Wj}j
z)uXp|603*4Qe<W!e61a*2VCx$Ot3tI-o4ztp3u5kwO>pguA>yb-A)YmiZJ-=H?^kP
zaTQeIV^u%1yKBK$xEl}Cib)0hRtQtl*^Tgi@z71P-adS=E5=bI@>-Z(fLo}|Z)zh~
z0%fbf%l6=wDyRpXYT!cX{dXegqqUn@nCyG=()p<oLQKA+oF^qXK>qe7L-*+e$UbT5
z`6MBIG^cd(w&>)cU|L-A8DQPO{(w4fE_36H-zI#z1AlU{YPj-fm~TdB)rD!Ph+H)t
z?59k*xzCv08&?^vj7V)6DF>KR3juC}zzqA1rAhWj9WXaLH7EaaDKEFp;+O_cy7o}i
z6dXWNT_M{4>_1`T<L~$D9iDnoHFV2KWuK%oLgXuon-g05{BPt$V%IaRPhW~Uy+5U)
zCOup!Lag5sUM)dJr^ZHhW_inHQ-1DVw7XI?F4@?r_w?u&sM$`tRObJXlazfKJ1`;7
z7Tnv>b+EIqM8Rh0Yv`b2rLj2~4t#teDZvS)$ZY8`B^Vz=o79P&{e$$dDe-fvw&Npd
zXTXQQY0(T0Mr;O(ge_cNNQ*@F7*;(Am3iYIxk2y(sLsHnFf}>KYJ$pmx>`vL14`D4
z*Sx~upKn;F)z8jc90XgbxmoO1OINXL6Trl)RsU-)!Axm!QQ%gnR=CC`5II0cT>)+U
zbGXV?V6^s=-G(p__rEV4*gE2|j08|xRYtyU2=HuHoxh102%XarBv%NZD0UL0LCW{o
z2aC%S>HCjuKekJ9^mgoSr0D5+wryl>3R)GV7M*KFJ$XbwO%|IMf*){J`wI!bGQ1*b
z`1VC|ke#FRm&ny#)x?7>i>Kg-56zB=wBSMc@M+e`_U(@G=%)c<OtAx3!hgezCqRxC
zTHpJpK0>6BkiE%Qty&TJ@&(f7%V%>}ow-3D2z_I{Z8oIa9q4)6RIAmn9u=Evn%!uy
z^GY;$>sq;GoTYcoabjRwS$pw_TOd2sfEkdgWUk}{PdwQCcg##Saia?=?gb5rxUCx)
zDqDVlq<clC_YpiHk|c|ks`T9)`9A*{sjrie5F$I!i4xSAoo$yn`E14LbTF`bQ8h^R
z`b?i#$3pI(qX5lPEM88n&Lw>R@Rh%N>L32QA~Ed-DfUCNeWOAABkjGY&#d(RoIjB#
zHWEf%6Du-dm9*4eUWi9mNdc9|b#n8Q{h;956Y;F@n<7Mc&en;iN#}6k5D8Jo^qUw-
zH^|Ws3~>m0EJt|We*02QV{UsnZhv03Zf2BkZfsg;aIkE{^5VFbihrs^KLbj=(0uVG
za$w}kt8voFf~2@)^`_hb7JnhB9LM-j8JVs?&&rc2@ye4Y^5JJZhm-bIhjTes5&oMs
zHUEh4eBVXYbHMzT+Rvf@p-G=-TDIWO?6Eq#I2)B!W?VrWukgc>kG5Hk77QtB!bLI+
zxJ;d4EKaKj6raIZo73S4w@4%qR+Tpt7;cSiji1_3&$b@Er!7+5{rM9m62B2(-Rk%x
zWbcpI%t^`3hR`>O8YN1MQvxjeA2HD~611;!KYr6;{HxjkJF!jhziccW(^IBiE4%F|
z6^&*Ny2gmi2GjyQ{iI^3<4F!4j(&FD`vyM8QKaFNc5!<5*+TX8_-9d9#&~9ke#twC
zPJ^HhzA|{H>h^_%TsP7|Fw*Q<+J7{R8(q~BUy*6BRi#y+mJkz7LzsxOH&WP|o>!aj
zVaE-^w=V#J{}QBjbgQM9%-b)*>6Y90Xv=1>81!+LGP1)sp=3rJn#S%LzT-(i7_X-H
zD&L^w`+WOZlY-n;X<kwG&~FhqPI_xAx>KDnj09xmTuTgvcl5E+Pr7yon%w?9K)$*>
zTR*#P*}3*2NKDwacuazYiF@VVfO2nWg&Q1^n%<2avpi5Y?Yl9Xd%l2iNy_2K$&}MM
zNhgLQ0v6~pnNy9*&?p3(FGAx+lVaFCDqUNAYD?Q8%~Lw6z@-+tmTP=e%x~wW5@(hg
zN|t6Ze+93M?O!u;Xh<uaY}*`AS|>`_0_T?R5xx8V+q`1eEmcdz?dwN`YJml!LROJ_
zC1LPVp$b@>wHtBraQ|qARQzbxV;-BD@EtgN8YT<23o)~pe6CXHz<N48$GylQL!V1x
zNhxS$V%S8U?+0aOQ!Z_1M|RvRui3ji@#kE+=gtqsE!ej_@#Sakwdz>({H?{QVE?Ce
z_^yb4aFW-nn4{9LwS_-YwIa+$*rVU`F}Tz;??CD+e@aq5rE|x7Npy=in;!OcJZL09
zcTDpDG}C}Du&EWxRKgj}RAUa41=AvTHSq~iXv&diKw9i!M+LfWAALBK@6EIvX6zp(
z&j>*9^5W~O8RQJMvUs5$;Z`g>desQJ%DUB;4@3W67|03>-;N#%;8koag16U)-7eRB
zA?l`Bf_`$>xMT2=gZe4hbgU0&X;Pc12u%WBn6$+71}(6-5zR@sv?Sit=t}A`MoR%z
zL^t-qSMDWr#IFzkx)*bW+^q5~e&8hj*S=YXvPl;*$TBcZlymPb%;&3rLAVk4W{kg$
z!_`)jUKFjSo+BsAm4t#7OepgA=e>;$SEGjS!I(2s|BJJ)0E#2{yCh121`;GVOMu|+
zmcRnRgZp9ug1c)3x8UyX?j9hxyDsjqxG&s5^8fC;s=K<no7$q5-P!J*o}TXh$$Rfr
zw>|;(amc36n)up|pX*ekE>rB2`s&@`CNX=+x8SIu&svB+cPs!Y#id3R_zJ^AZPiAV
z7Nte@5`jQwi~-m6HDF>ZOM3zA@4%x5v?X2%`wXWnOiNXzNWomn(O>{4sz*Q5`Ypy*
z3749wbQV~_2$WcuAn>Q@<%I?h4GY1=AZm0!NcU3)aVDXUXYYCm#(Yi!Gfdx8Xcq6@
zJeTkO{2VCz0PFg_jGH;PcYi-M@hPJ`NDhd^<$&q)sq2Qv#{MWt;Q07772+bw#}Deb
z4e0=8tv7q}k4+J~h>>Wo4k4ZU{y+e{1Bd>H^i32Rx7TJSzt?1J3xo8IrKI2X4lUbM
zJR^7%-LKQQF_n(;+)73AQFI~Q;@3kiNfg?@T&f>7(~gJ@3Z^iJxFzK5X*l3&O5zPU
z7eVoyNOnK^O!4s4jlD^{EMAAVYL~tJYX8qdJn=xc%!xg$tWyJ&_Uu1?{14-?o7I1j
zcK^RpX?xz~NWSaorBR@c{L2XbKwQnQ9xD4%Y9{dOq#NMTyZ92@15kOYqn+Zjk4|To
zdwjm55}=bA?7GB#>jz$j8Q#ifcOwjP&tIb_V<rE(Dx#vjwab?;l%~p6g;k92!wusq
z-X5;ZMRK;@ciaO@_Qg|sV$RoBtXC8BCB2hGt{Jo<QfhN)D>42OS^ZbXK3p`!Uczjs
zC(*rc)a{8(=It~fkR`-H=dKv1_$uPu9p!Yr*%q7VefB-Zx|)oFyv8d}c2geAD^};;
zffXPLi?j28R+aMxspDHZ&iwrDwCUMG+lGJ~{ozX^uZ}xjKycZ`d8cSall!?SFK3O;
zTEWn)i#O_SLP8jzj{zrU*8;Ggr+?a7yepOOZUMvPHAV2grizN|wYf^B%jqM&5NQ;*
zqq%(Vas_H0=Vc^mfYTM>FIzf)o(TuBfx#N;9<)?7oI879VXVTOBrRrYRk|^2%DG~^
z8f~N+Ef1gfGrS-vTA9<J2ea6juW|d7fX7ZuM~4ZZdj{M6Kr~;lvc1|Bm^XGfG#hgm
zzjBLPOO;8cq|hHjCE_$5(FJi^ALT`TF0r1ref}eLz-0Yg2#`{-Ff=Q=<=8cnOeSR^
zXy9fw<}%&#H=~Zs)5Y#p-piA%?o7Ov@!hmiiE!@srt`i%x>h=k!$Wy)Wb{&Qw0x}p
zy?YGrd#YuH(G>2;eJp^Az==Gk-;!o>0#zMFv-)yqry~=fyQ7~S%UNSYEJkzl?sLQ>
zk~hlD6B5pMhkw-4au{s&_zjq8#?!>JPt?(E&bDsme|mAiei|=0U(sgW9jHoIa<iEU
z+<z|&Ds^_s%#;G-6wjd=v&{Wzl<I_pqZ8K`KvdKy@C3|q>$Q}DzM+)9V-sk8Vfet-
zeosjV{mF+oSguk~L>PCrJ0}RD5^&#+TQ8)CHw`k-UYQNA8c03%{W|3-{W0jK2b?DD
zmX%a*Yj|=%1b43DbGudA;Fn*su9XuTW)dsMDeCR&BV<XVjPH+Y)b3w1Ip;E!?qvTq
zGb3nb_7Ql4`otB;G;Hg{fUqUlRd~fUprD=_+%f7}-UWl-obr~+!@394mj8H6_O|se
zMMJBl6HCAQj;Ye#y6yDXxo8rYo!Hrd(w2G7W8*?2dCogwk8e!qHB0xhla&>3Yzfc|
zf9EW`^xIlEb(TuFHR)RU1OSieqmQp37{mQMsXs*FrYYI=UlyM7;0F+I6!F@gjL>wj
zZFNGU?oJ(!7d?q7(WO60?@YOf3ohsXaL!T4gZnT5Y8OX`_Iq<h-HpGp{ltv6tFvw@
zTn{bOdFK=V1Z^H(bRRbf83I61jN#+WcC^MU-XLE>jx?X>?9pXt6|H8eCgEsqMTJB!
z*v+RO^WZYyJ-(<oo5f%o^Yj&I@7+wL&EVF{^lQmv&Wpuii2x6%Kg$Cn@d75kFam;B
z(FpT!cR5Gg^GiUvr^0CZgT(tOmraek1v9_*WGozPbS6DD?tJxCUtcY1vZPRk^fECH
z@p){SJA!v%0hHAi^D({|%v(o_9zOg*_BN%IAQ$xjLi}}rEm6y&I=GPn+H{^_^m$%&
z)F+wKMJV-iUmSmeZ@aD-0A%qi{ix_tc|KGNkg3We-W4n@fx(%XX@oA)bTNF}!j-+c
z-Wu~p+9?uX8|)%FYI@D`8&NW$Ms_;9_IC37NnvT1$@EMh@;HOZP5mk2O{u|Ps$O&z
zjDI?#^e!0n*v_s3GED<w9-5pkb2cwutOJkLd@LN@uz)ljrl@Zi#AS$!3-j0~Z_lN6
zZ|ckgY*G_tlZ(V5iFNEorp^A>9xG=n6(_qeZ(H)TBu#bG>+6dJAsqJv=9&u03cbPH
zvqJphYrW?fcE&ii2UBZP7YZ!$>A+~m!p2UXYfj6`X2BTG)g+_j(4voq)*WYzj8v5}
zhl>M*G;=K<9Qyr<*O+TRzb8ri{aX$c){FHG)h$_ozu>d>`hy?v!Cm~QQ%3W30J+R>
zJp%?6At1H)5Ey5`jLkk_fW7`lI(Pz@zaqL<C(Zc*yyxk*<7-(JM^+4}#8Tb;G`nqZ
zMdj1M^w;B$(2DT}wjq=YY?{9BX((Z*lFuGDW!JBa`qt!~QJ-|%5QXI5lbR$Kcg7-D
zgVHePGzook+%+xiY=!2-0j2=^tH}?k-Bhu`XcJh`z<`~pF;<HG#A<RoQ&=Bd47L6`
z)Bde^!{kd&^WA3F%h71R_BBb0a9<?kJ2pX4M=&igIa!@9uernx62<=#EN1uT5(NV@
z<RGL(Bv%1rxT-nij#J;#5nLdcdQiNV3+ZoNP%Fnzl}S3j<h27fX=6-T#^STkNt@Z3
zWDoVqeEDLkd$x|==gssnUv*76U9K!kGj1jYss>eSCI%*S&rX)+c{n<q9t10X0@^(v
zw4ClDY`|X(^)6XK(yy(iJXRlL<SJ0RsOJNdePuklUwc@iI!=B4G?0N^4luUPRMMVa
zPLFLEk`WW3)!sT3o6~8H`Staf2xEs+MZ;MT&ERzlz|)Gw<C#!v+1pcj>U)Un*EQeY
z)S!{KHG%OqvE>W1X5t>}Ax6Ja5xqUYPP;v<b2`9VTMirUZ>AC95F`?HoY-nwF4hER
zkiU_}9S`tbh77#9?t#!<nT<{(SEKK0L`B<P&cvb?dmt%Os)OQKtCG3vYbZN~itZY1
zZ=YVB7gV^QC6K3m{~nf&VFk==e(zamV300(4nr4^zn?@_^beEW1rG|=T`r8;+8KZ(
zDK7SF@xqH~o5cbR`r^C_fB{=G!EBHKf_1lgkw7d;z-MK*Qk4#bLDd<}etTy4$}7v5
z4UG@uox_>?Rfz7_O@yEK!as`QQoVIflof`P*!W5VY0)fsHP?1fm(97cL-?dAx8>G$
zV~V%Cn{$P=b;ViHQW}J^<fEAlOF9*cQs1>vhDK^kr8X)+D&V2-a_R&$jgZS-|8@lR
zwkgR>ojnfTcHlxPBPw&b*3*yZ&Yy%K`w}r20{Ah>eC)~7_7meRrkz|DySVg3PyAhz
zEH^hZ2lnDOw~V7B{2^jhCY_7Gs6@wQGCV2SAJhwXhcq;~Y#8j^CFH86DoNqgYLxB{
zCTb8(b}u+@EXae$(!@Swx+tnqPyh@68xXLv?Cm7~?)ucM8tz#ckERmyc6wIrwsakK
zjZU@?nOR>p%~#zRtBnU&SWlmPbDM2^F$5+bv*34xwI0(%Nt(@;4KMuIFe~ggapWw7
zT5sOA89LCLlcy1Bs+rE)=>qKz|8pWH)~i-xD-R5-tCO#qibjS8Yiy=W6~d#QZ{>ZC
zoHPK{Ek|(0W;LB5{oK_K0J%*xoi=6n>Cc-||Ld!}j}tY^M!xG!tLoM}4{eYfx}+BB
zycNm>I_6oV_;`7*fF>?Lv{WtKy2DQF{048jT;e$PSV^n?l#z{$hM!bQq6=E8<35^F
z_xyPs<r(~NzFk<Ta{vJQRl4!A-*5pbSP>HX<Ew0XJwxpofsrQX&)5s*tMtkEH22y(
z?zml+>Ut*y?f3YE!2Ap5$c7<@=KvR(ht^;sK6YQs-DH<vK*i7Rka@Kt4fev3FFTW`
z3uOiaa~(S_Xjk6=IQah1>ZDirCiF)jgtN+EwOtsP<mKPLq4?u{Y#20wl7H9(fiqei
ztdwj56AD0@VFf*XBhjNZXw~VREGnaRbj*O?uIuMjd$`{pKrO-n$TqbeYtU!w)qm*6
zM0fCsOBxWB)=*`(xQSx3`6F{}w>HzL4=Qag-k4bv$eoS9xOTp6G+GM0%ts7LFwst#
zEtD_6WD&uTRm|L5+Ap~}CpMtdz@IaJ7v60;nKwN2Ezxgt((5&VQUUhB1ppE|@MIEx
z-${$0`v9hAb*rPkxFCX~^1pZ&r+lUyRd{z=xQ$;Ibo8uo6vJ#>sreP!r<(&8DjK?G
zcq8bNU^u{ez3n+?UbW?Pmg3I2uonR{<52$~gYlemP56(~LpK^$nm5rAR9HxEZu56B
zvTDv%Nl8^zQ3t2hWj04Bs3!|qsDk#=Nkzfz$%FaEUPsnO5ckkbuWtPCo~}NugIYkl
z3-D1yYkko%zi}s4rH{tJio|=n)qJaDZvL&QX<&!AHg80Fuxog7R4Ifp4`3HMLiR7D
zm6C0Abu`tBxHoBB$No!ELh<xg1Q{52M>##nSlxzq7K2u%_JAzGOutVM{>7hm%IHYH
ze#s!}q7(qd@{u`joojBaeUt9B(@Gow$TUmC2cNL(AOjnwg<({?X(c?sxL%>Ah|bNc
zpn-n|;E8#^Kat;0F$jRBLdzXiK&SmyXW7^HAp!-T8ZZ1<h)0^+5?y4Thuo^di!JER
zomfPcV;;^2Lc=i9|HVe5;rWk^7I#=_sqN{zij*msEB9UzDf4KrUXBU3U6)x^@_9hF
zb~&TW(A{ex?casfzP_uuIQ(w=23aDVXLN)8bf3g}%SxH^^Ys7Pc0e`bfYMEU7ziz+
zy#Y=EL|rd_8mhleI{h04{laMJ*rY0+DNYL{Yr$AP1d0n=d&w1%fOMJO0%^Y8?X@R+
z%<SwRzCPH5i|PlZ?obHv`D$VsJ{I98KUHEJZ@uIGu<poA%xNG73Q7H(Cr-{BtKld2
z*U1W)eG7_pH7B+rf|(ZM9A%ah6CQd<*({i&9hscGP?B5?s;C|T(>UE+4S(E!0u+D+
z989lI-rO`Kox{`Gp&Za}rfqr|E;{clvJMM<0mxvm2p^@U;~Qh<YUH*Dc0Keb!cQj7
zh1SM~KL0xak^N-v9ua>Wb`zi~w(X^tU@{LsH!h}RZdrIOx;dLFm%C85=PjNY7Sa3E
zbw58|B17;|NS=A;J<J++_HWApbJCGV>@JC=LvwOdOxE1HrcX>A*7!PC#N2%ta03H#
zN?jG|4QpoB=l8`6FN6H0f+fUpkQ~`G_Ga1gi}T6aFTr<4+G=^Wb3s!-#{dojVKC)D
zGQXgNgyq%p9{&0747u3c($*BnUY``I-{$YiYh`nO+UOpX6Wi<aulg2xvRjS>;#j4x
zpnorr#8%cx3ll&nD1dLD8(?D@e6yRFa2Og<Y=&$=HRAi7LfT>c{-4Bq>s)sLcJ^yr
zp62tZwQwAmf=1c(W+s`T#pc%6)7_!=(T@H7^e(N*JuHa~&g4x2)E8=(jBf!ytZ@(f
z-<T!5uJX$2=EFBnkHvO!kiU#LkISX`>^iDDE=S9hiU+hb02cSRmk@vfX3=g~3cw9a
zjg~I^-bs98Pwp6L7@wJIO7u!6^0_uCYysRk`jwB_4uh*5HkQh-+}XZZU#1_#gp}R^
zz#70_4s>(|1bP9r=r-r-J!qkD<4lrUJuC5CIe?+QEku;D;ve=f#*qiy0#95j4v(#r
zo3RfZHD?h4f?igp35OD<!9fNJ5Hick+t-NfNI5_rEXktPr_%vdgdufF0SyQ}kjrs@
z3~`JLXQmA(4Lrt<Z%s)>W6KcF#E!S2Kkj%+W5D|{3JhEbZoA6u%@QU|geHxcJOZm(
z{>n;hYr57e{kbhImLH7QRjIhju%o5((u5R<wCRd*1#|;#NaoRh72i?kbhp)iEi+nv
z1OzSB5hqV=OUcqu>!mq)R5sRe=Fx*zOQyd)S}==y-nHiML{kNPn5n<c8zPabHCqmZ
zAxU)x8|MgJP3pcf9~EvfS2(D<Y0^mrgylO3j<Ou@7WAvJo&m@NP+H8-u|z}$*U4sh
z(~7c+<a!3ie1L!NS#rY_FMVw1+L*1)=5W)?`2MS?LE%ev*5Z=t%93igVfZ@={*IZR
z2wx!U$8)g$j&pgUk&^538F0IA8B|-MH$w_>RA|>PzV&ZDVWYqd0I)5tr_CLi%k!Nu
zitLT!8UlJB&B0F6nkK}a2ZPMBDHof7?g6k2@;?S}bY825kzE-8VOs=EB=}3uYc$Io
zD^i**Yx|zhopDH!M<Fqysa{;LxQ@hMhEWD0>`_^##x5d%-kHRyy~{E%pLU_BNrjy-
zHSQJmV~MXtz?@4|3wF+vcDd|ptvt`iLiz4xSIxK*V#370T$jS419RHUxao-Yd23s?
z7kxpLp@+2C<)YUVS9LSe_ECH@9EZ6}k^q1B+hF^s;$0Cp0h#+iL)|HfYwrTf0+IA<
zABXaCX7xt+=4j4S5HKA85Zeh;0Rs~wJeA@o6%gDE&M#JL+m|w+Is249Kzgp``kmWx
z^RMQ{dUSw%&?cTWr%)9X3M6kl%gw2&*!}V45%H_yC8Q-!F!1sYh9k-}R7i%!%14AH
zQDS<;nCpreImMsNe{RP1>-B)TF0^%9FGUpDP}&lVHg{+8gkqF#ab`UX))T49MeSFo
zWp?%P(HKfGdij}p<YN;J<X>zi09u2d9%TJBm$0-MHEy+oN`L*4nvt|>87+Ec-WLJJ
z^BI6A+L7C;b{B|6sXrShP0NU&)g;u>_T<2@Gaa{FTNhG$%#Wej2(S636{MCV4IZm9
z`mk9(1)L7VIQ_c%rczw4NdP)trsm@VRY}3TYM=CKpOxWq4ir?|Mm~aZE&$QOt)>`E
z>AZHf^8A)<h8>jzM9I?|ak9JP(AF?VI0myfo&GTY=N$lg1s-DHPFhZx%9Gv4HtW%}
zUipy=J|d=E!_UmnC**NS*U_|~bfM}04TMd;ow`YD)!D4Bj?b{oJMy9-ZQ~yvsD_33
z1W9H&-q7Zz-UVbSGWn^xNYC}tyaKGY^(^OkwaZJ#8At<`)hQ%GJQJyCW4Ixe5}=Ip
zsME87Hd4X@+Sm5Jn>>3~<0YEC&ug8n@Gh}@`RlQFk|2NQZxx33EmDaENx_yQi`eA)
zn5WH?`vT3bJaW|XfR_FC)SQnmT7okW_H-tDC!(dySt9YnH|AsoN66+#!j;$b$`(nx
zT!j<zaMQGmaUvVL2g&@8T~Q^GGS*7TyZif184Sqt^@wRHj@M4!0(nii;2wt?FFsmk
z>38%D@9Fs*P646X=-#3QG(|*C4T8eno_C^y3$_)NoDO^6!V>`kb|96KYKsea$)qoD
zB`14yY~w_&|JlZ&r5K$X%c;o-^F}ab@16Pmj*G8;1paXL^eNo<Yt)oV?1BeD=H=v;
z{%A-95TR15a}HUj6LOnRxB>Cd0E;upe~X?r$FOc3_4|lXy%oBupafC6^h!(;zln~D
zJvfn7g8Cxryi8QT64&>)nQQ|L^hp1STQ|E;)!tQ6A_0?0rkIQSYX*cz@0Q$EerL4O
z^?*mrd@SDLf4z2`F<6UAs3+og*DkN<`)*fXJZ@QPTg766qp>rPKJ{@PZ~N=vAoN8w
z^W9|a7t<U)(;OjiDn_?qu~*0zPTxi;$9_HO8_Rf(6WaImvmV?TirT2?qP+<X%ZZ{e
zl%46W&oVoUvA={2iO!6*a5^6p$rb}pEOQ`d-<&jltz;S!D9XK3l=}dFOhKcmF*Dt>
z<)}swj_bC^SM|roFfw3s{yO_rr~-9w*8mv^h|tg7qyc>efN<$ZwNe!z4VOcGQ!NXB
z(j?+V!0iBRKnfLz96Ed*{*WkGtB~ba&KRrMPtucv>u6<F;(YP0&h7Z>xibS^#+x^h
z1yhzKPAOX2p4GK}I>3V<AhR-ksl>2C0d9A`ye_QG#fa}v<8+I0o<sc?4&JYJrDyhC
zz=etfDN!XWIiI^s-U3YVLsCJgfFPiZa0m3I)3&LF&CbH>N6Ch!Im(LI2a#0N*oGTe
zfNCO@Vo(3Ic|?T2UBxqDau9pK)|$B#_~RpU;2!{(!9bhpg72XxM5rfZywI|u;}{l_
zO@~ows?pZ<VHS8T%rJ8CHQP(^JmDh+{AL`(WNE)KOVbO*)=mdkYUt@qW>xSoWnpM`
zcl`FE^VIFo-X<|m9t_O}EI@EEygczOhMn13wP~B`KVi?NF@#R9z6@Z=WjhTDs<|nN
zUNK>1t7KX{>W%c*6bntHO#}c8>lfJoGoXW1Lx#c|qDaOPm)<{*7Ea0@byRqnSorYn
zj1Su$Cyj!~Dy33NzZF$x`c-{Sfn-C>25ppyIj7V(XViFKxHRnyc^Rd<)N`vThXcXx
z+vA$moT)F!@__MII8cb+`7Q%qx}_bzScg`H4dn6Q6!~;v`CqvwffWXe{~X#>C+yPA
zCz=WUP7?47#9zps-!XFLoJI0#0K%tsCOANN3y?_ZU$Jf?9^X;t$5EyAzL6?Vm_vQZ
z@Y)X`9Z`%&&xw|NJ729NHMx3Hpl4_f1mvIaC4Ow2Va5&2D{Eo9i*!0*{nohx{*(0@
zBc#*)gq91KcVt8XC}=V`b4CT%TR1Ck1q~SYz^jhi6$HX+8`%}EM`6)xjMfo_V}`Cq
zp3q61vXs-nIHKcXp}Dak0P-T%UCki%9(f@#it{o{A8XF_mCY$+te4(SJXdmHt;A~V
zVPb0PqNf%e)qNsWASX=DVKd5ShZ-L@lhoteoRG-;r&g&{GOu%~G$!yIpkWz?550f>
zV`*bAOZE2`=ItxTIrO0WXj{M^cOYwpl3{^qXjEEk(7vKPfw3b0bBo1fK@vb_eh8BX
zGA&v*P&XIKu7H4LrHPWo=)Qa}2f^3L0tk?!^vrc1*r=c<)HrXB*`3B@0c$cDqU~bI
zG<b}n#@wma7FOD;5Atg&vIj!gJ6B4~OW*&u;b{(cdgfS3x%bp=`Au5=z;@Cv$Hiw6
zh{|her2?_{Gdg@fVN5f#CHyka;@&l$P+h;>8TbZRK?BruNkZ|yC8(7I`SrZwEW`E=
z(i2yL9miR~gZ4x9oc$J!y_mgIThT>HMID#-g#>`yjLVsBJ7{MPWi2VnzlSvVO^wWX
z`U3of&z;q_?O0#pZ5rE|>`iiaA^W_%@90I77nZL=RZ>YnHuvVswX*5gj_Lt@iXKH6
zmyKb$NM$@*9=zu_gz$%p9STJnuqm&4Su|T|MuLI$CbI8BUw*T^23Svhb6o0E%*~zv
zvFB4eJJ#lt!Gxh^U2cJ(oqQ)VJtJ<|H7OQ!d>lJ(1>@3-T<!5K&5EkM`Fsw5Cl@Bq
zysEoH$=hDrFFBlq(G&qJzr2P=EzF@mJ9OPw66GQMhRnCK>wVkl_;-BB7jvuY(VsGp
z)>vF}$&it}0A(6Cua30Mp9L4IbHt+6Y%CMw*iE>TfBJ`)uYP>B^VEZOUspwWpPKL}
z#}x!)13(OgOwjWmya}`nUxf+k4{C&Lh_S<CwN$D$+8eut0B-U4^viLVLB0gKw<vYi
zlq2)qH<7j)gneg;&aX6}iJfb}@Cp&@+n=ljfIIhn*n&d<Aeu$#8iAA%L+00ZTpAKh
z_6pqrvedfb$O3Y~1ne|qJX#ddHdDLHa-o8`W23_(4ZYfofZ=rOLhpSQN%>p*bH}C#
zTg6XY#gnz#t_O&-XnfCKh;vGDfrq&69-e(%6&4^lIy+CXYNY#t4zX6S6t?;#QcjVY
z9yVSS9FlETpS7TV292pcs?kU-VH}3dja27-DeOlLJgI2bYA9B|t^<T|19$N&;0J}V
z&4la6oCNIoZlh{S>j2*fea%Fb5XVLVCy-JQbW$mD_R^W0(19|*xhWX=j=OuMERuS>
zYeCBLuldSP<h@PCD--PE$R(ywaH;Im|8{?~!+=>HOfEg+9KZa#yhj)?V+;LI^C>WR
zQunporJydvx|ni6s*$FK9L1ZXo}PD7_~ZM-{5g54Zx>loKU4R<I|_-Y!A|bK;?z|5
z4=_QMDpEXF5<4+L0(_fP1xpP6x)bmz!SchhvJEJ)83Up~yFXlnh9TUczsqx~z5g?K
zyBe@l<%Dk>l7&?=<^0IyQa#UmtYbBb6!IK3q{l@c00t(c5igSwtC)K3?;n2>KvVWl
z(KFfI*E3|~J6TItgRW;fm|h(N-X)zg+c~i(Z7xEC>_YSHEOK|1gW^c*thJ-nxjPU8
zu&O{-wO+BQ&YmbKgN@Nh;e+~O8UE-=%*nmFItalQ-l<6wKT6t9`X1BKLBNuAk<$Xl
z4c4^@=Mq3v`yO<V#xX%BNdbt5-Zuu}O7IB*fM7n)1~->6iYYX_+y1C2bUa(TRcbNJ
zlG&KK;xUK%{D<tgZR)}Fa+xX^#qUI@YUP#XGy!`WKJ=A`g%2QOyx9TF1^e21yd@@2
zA|4*}`#3!jO3h6Ydr@&Gr|+h_`}%AK<2_t90Lr_i9%RKhEg7srt^8i`&TUZ+h}yRg
z;X{+WZ|PCtnxFrwQbU77PRs3y)g4F!ju#F?%_kh0FaKl*>H`7&na9ERc?K~sR(qr$
z9|^GKTl7tkIn`Xz02sx?0l2j9bVN}8Z`eOv5)j3Y)-NnW_5Y-nH}81<J7Dc^VF*``
z>vR6Sy*KFp^Y;HJ3F^9kk;MS{6d;R>pv5B@f8Wvf=ej1Uh(NY+dPWrPGcJN#MIKan
z?=?cT46(E~3*A$xg*>19Q?veyEij$@*uMHI6m(1v=%1S04Q!;N+}D2ZD&}UgP2_4S
z_x+S)84<w@02C&#y^4j~1)1(oxCcRuFFQ)<;yKGZHGwW^fuGZKfU*!W@4tO$Og}EI
z`*kltarfG}0hNuAED?g%ymF)G)bscE$r=~iIt@$+B)W%Ox5z5?gsX>$Dr+5*ZaCgi
z&%~d3Hf_Gud20&7X1c^xe*>KT0GY^Ql-jnI+D`k|KmXsk5%(?p7tMco2Xu(%U8Mum
zN|wNkpe4D{T@*(6=INWKA3v9Bw=KB9hE+!NFxBI-VwUm4W4`*Ao=>^Juw-RhzvrBQ
z8a10|&qKzKSJB!rcVO2`A$sNx_Vxx2u(R4&)rZpmdrc45k%QL8$m>lC3R3c!`CI=+
zKs}R=BT5_NeZTQy@`sRuYUO_9{m(Bk4sZq0(GVOJ1WA*9SH;=#{sLe&xez(W!0#}T
zl9V4kwNf4#LP0pOMw1QoduE*}@(n2K{un~WSp4PpY|zBlpM<#!zaQb?U6Mq^FCAQO
zoiB12k?;L`R>dooK$t0X52r8Ie$K7z(6<JKiT#|LN7C^{Liik{M}Qgn8H8OzJ1;q?
zr>gMx0pvxbmEagTR*A|0eN%bY{w^KiL&(gJADt^)v)#DfZ>Xh2%rO8g$o-Mjcrpjd
z6mMe;3~ziE(kTR7ONywwBy9*KhF^kd1~@`pB`QoYXEL4aZ<~3^ocZFz6fLt$0(}$A
z^f5z!AzSiB|JEMjM`+wl<Sd}eR3lVZ$?9XEXP{EPaOPA~^_3NPsOcb?y72SD0PWCM
zJMgMDU1`}XfzEyW`+jX)WkTammI0r!GpBmi$`_1%wVRZ;AqRcSl+@KHt*ZL<;+d<$
z{a8al;KecyDv~Us&Ho(P9Z6jo<%{bLv_c6R^V^4(jpJlx+aG``Zb~#Sz*wRY*ft|a
zfr)hFzb0NOojXB2zINHMmIHby=K}T#>`JK~3#MH@zSOXN0z6eIlz~=^C}jG$=#(G5
z<O&sxBJm29@+Y@cc{Tra)dK2^myRe}E#WVoVV1TCT60t!x*}%Z&kDtIfj{a~4jg$+
z_@Q!nhOm$Dhgw?XlTm-wUoYayC0Vor4Rf@kXQJ)3R*n@PM*aEM@wR9LuQDcBar`KF
z-xV$Sc<Urj*&cqp*o<!9K$41jFPe<=u=*o-DnCJ2eE1UhbKi6Sj{AA!@A2PYSO41&
z|CcGuhpAGew~Q7K_wR2P?MNKe-mb0USWLNjyO`;dq89EDDiu!*mn&OjL*FjslZSLh
z^hWk_5SqQl(g4UHN+u?rSWQHYOh|pN9am@1!@=B?0?4Q`ckGk!hU+sUy=+_a8lCxi
zSD1qBmG%eDWOZ&``9pkf=k0oW$C;?-l6~J$pQd@BpKc9J^-mYoROn8IUi=QTew2)Z
zt&lJF<nAV|tdd6>FS;r?#H4fcxjK4#rXkL&P)X2{y@ToayHA-T^s}xR`spd!9x@<q
zOc!##dhJgk*u37YrGFnogb&58o<CSJM3MbI#aNQT+iQ2+7w9osoBRNR3c0eKt2(WQ
zIAeV()C0R>gHw5&Fk=@k^`3W;Bf!;c?Cr;BDcE!K=aytNsK@&nKSnd8rwHiy&4E~1
zpXhD~^^>q`&?Gda>qPr10q*4>HX~4@9GXn*te>?bPpMKb_x|S9vE~w@RZ(M0Lp>)j
z1>JF7E==Jj5|3Orwl>(w(FXqm+8}IJ;-!JGkuoqtvjg}rFqp8JtxB3FFMq0wM^YS$
zIDhfgI&FO{>as&-SQL{b(JqKj6PsKuk-b?`0pMpxj*OXga7FUROKI^x&+heq+uJpz
zd+Uu6@KZPR7pVxzVt}w<s^=gb?VAI-3|$5eL>$EU<uW9Ye-2EYRGB<`4bl*0Y()C9
zV9z`K-%{ua$w%n?CjW94JrQbk;acwf2zbIk{sk~~wW29!5@`x70ale)gsL1n(!)Vx
z33=Fn7j^mA3Apv+UoeRjByvY+ryVa2V!^d?if*4W1&aW<O`Rhf8(H<x?0l#%ZN{>;
z$KWVV7`>KE0Lr1>klVksI!{PBf=_h5keLi6pmAryQ9g!8htZv}yogZT@Owmr?FF{V
zr;dKS=L7+bc?w2(DnIpAtFB_a!W&P25z)nQp!C(rSJ-cKr-dQq*>C@v?_36Se6aC0
zUn_KmO9TR!ORp?W4zm3hG(bq1WNg9sJWDqP&6m$FNgMGW>*J*_t-4S2II=AgLu<W-
zuuqf$gQBk~Uj1|0WV!U&1o(?SDV_5BEr=)zsH`jkb2xG}Fl@wM+oSlAW*l?-ocLg&
zfekRk^sXvP%S%7MANK~wD(o(Q-C0@sx&Lp2f^dTOoHK$tNF%i_E}^@uKmnA6nDr;e
zh{7!GJF<Uop!}-1osQV$sk*95h~^Q%;Za#d0&*~{SKq45jdkkCJSvY4E2PVu+s&9X
zHz4A3QOuo)h@!FOZuC;P8KUz>9G9+3R8&fJO=;oe{x>abR=WE4Z0}L}cF9rrp&TCD
zR(do@?wZl!KfnH?*<|#Ii^w6!MY13{L}IiAfu8BzP<Bp*?)k7|p|pjC$#kLF)A^u~
zF{sVWvcL}7kz-(Ui24UJhrExS;rBODqjtVbmXF}|zq%L*z4fP~oe@uH^T)Trzk5RQ
zDn)1(kDYi=+C1+x<{~Rzd7zK|yWx$@e4I&qL~SuZ$hXV%@6?Qd@M?YWUs(twCyNN4
zcX2v%)4lu%e|N1ANpI2Mrq6>!!k$k&A(=zZd&|@kn<_M9l~U!5D!CIO#iB8Pi%&u$
z3c)yV0)1=g5!BVAS~_+@X=@<SK?6K6n~{FzIpZ@o%SUO<&#ufLs%!E1SZp{Bpl{M?
zlyj_+#mx%IgR7K4sf)tCRzULG!HB$(tt~^`_E(F&uNFbv4^ytEp-ADl4MV#izfPDe
zu!O{0{jGY@u89v&@m|bKwtaH?_hM><?mt*-a_z#R{&)QiFMu5buzY+7!6E3Up%(o+
zx3>h4H0RuK*)Ie8Ku^d5f{#ccopO#W)<ZD|p!ebVtax+}znXDNuMzzAZ#RM?D&}?M
zWVh^?*4e&LlgeW+ml&Ro;}?@c@~s>hIv#1L)0!f@l-a`AzA+Df9RTUU6?J+>vG`D`
zC(b8TuaVY2%eAIgOiu{#P|c<?cr8EomyK1%XV{rws9`{UBRn#)%NWPN*isGi*J>gn
zpbkRYd-3pV2DC`E&iO({lw-`NoN^;49=CLZ_34yp4$$(0qviCMOZwRg;UW^)a?8h%
zEL<O=LEnc3)e~o%-wTo_29Tl4+6)ItCwBOnx6lY>Q&v77e<&B>gUpD05+tg#9U?PA
z$eBU`l97Q(2I2-Go*1953~gy;5fOZ4emJ$I5Qz`sxw1-ysywz%2js~+V<85n{xv2L
zAp9W&i=PG?cyd$2S%{dBPsGs_{w<i!YflIq_UBM7YwEPmP#-dJ@5}Rq{6X-MvpV;}
zB~$QZB>Pv+ki^@?huVNYj>9i*N9WdrO%2l6SIX+%T`$3J&E_1FNI@am-}-_-w*BWs
zzH<b`{Oo*0MKMw0CBHZ1(^p}p`pXccuT*)HN_{Cd-8*|dSZ2;~^khQOvAHxfE<dfv
zCME*w5uu~uu(b|!B+L|wzl{a(n4R`UKHF#0ovsT8BeIoht=@LgDNYcXXV0$2^WWs=
z)^(~kRz%RzjYI15$U(%!w~M55h=}0czioM8W64`~^cb!u%E3ux$hP*(F|K3h{aK*F
zzRX$(;e5_JHbsu}?4v0aRB8ah3>^1yUIinZitz@TQr+L&0d3p?<Vt;dhL4Lg<SEDR
zZu39qCK)7AW5MgCt+q4p#?|=>mEse_d->b4yXLxkLwIloo2&;5{djOZuKKtLWbey7
zfeIinarn3$Ngf@ac95H5X@yZy`T$u^f>naI5zRIH_DQu|1!_{`I59x&YGuW-AyO*!
z2XUwoC)aaj?&`Aesx<dxb#}t{rS?mFauf%7J%f`Lvqd){%+M;$*yIrYkL!_9ks-;P
zwUAH86#d-Ke5zs&FHM8iRZpCpR{GJePKe#MZ3)gTyny^>QjamoKS6gbvmCrMJR2Rk
zgXaP_rgInQmKyh6&Px~1VPbFUv3O<)h3x%7o%!wx9~8(>IyfKRn`M>2HZq5fDKohy
zX*PV40`pXv6l=L5alAP~QgX3SCgK^??;Ur#G(CMr@su+us*ESH6Q^bptG$70?=aNM
zB4dbio<VMEg)E?ICByvDcOL^mwxE{MO#QW!KtXTx=_rwODq7l+ozuZx=~HqzpGL9a
zWP#FGV|xmur|&QorN7{^_?_bmN|{W)Ke?LZh*Axr8a3FPu_=-7jIn5rgUnV>9AWLa
zUsx@$Ozj_}!t3nKh~K>Fg3lJ;#X#JA(jRu8DPi8ImpBakmM*v+vXhM8H#Xa^?W@4F
z?rDADMLUQnnBE+#0`YFDrGoLX-?SiGnXZzw7*0M&c($)*YZP$Atk7T8AinUoIf*{Y
z9iitF><n6fKi{!Mr)@qceijf-t6uSCI(9|WbkFp5r}0{6U~aqGZn=GHc!eT?vkW>v
z-_OZMM+c9e7SO0m(AGB_ud>VUCT^g4gOpstNKT#^6kkce<+^#2OWbUWsOwy}u-kwy
zM^$M=XFjWD%MU3xu9SP1#+3eLN#`+9i21@;|D6y-?GG~w>RVbPY;sJ$_k5an=K@E&
z1T4{k5pOhs0y=#{Mw5t8MiM!(Objiqcjhc`z5V=*rZZHt+d8EOQqb>qq|i4fZ9X(7
zd3yki!lru#!w;*{=gX{-cv0}%w*}dhLg3ok0&y{Ze%{QmTa^^|yC)cci?S@9!`M8#
zq|!BJ!OaUqN~cv6%PIy2*V`LO_)mZQ;RUWR_M)i6g7)t0!?(5-<N9dNHfp!C`kw~j
z9S$Unpc1&AH|=KM<u15q*G+X#6yg~gE_AQV0MCV4AV~?m$2^{$5mluz`Pb1X3$=HM
zE(S}`?Rbt;ny4Le%(xpsq+k{4tXP1}$mnWOd!gl{AW?`d_e`Cl4HLw|Ov+5}r;d(8
zfb(w7S-V)Gw2;QSE$k68{)CD7f-WDQ6QA>oxq0H4XUpqS@O{mh1dS?lO$f9}(C?@3
z=7rVXl2F}m!6;u1jad7=r(%<*KYZrqciMbx1xaTcyb$;}`|_ddq{FCB)RiHY@uJ90
z<d9l54#tCijz74!v~;xGc3%aoZsOUi2A8F`4y!W9jjz#g)imUouXj}2o};TZ*j{dE
zxx-hzN=r+VSeN?g6S*4$5p|8@F41@%-9ENpXi{)K2k#9*2;{UF&!hc|o9P^^m+fHm
z6lrLC!a<;)$hQ$5xB5=@!TW9JbWgvF&i0r{Q%AjD^}o4!46?SdtF^s7XwJW5YN&VX
zY|<fvBE7U=v+Sy2+hKn#Yh@)CZT@4y*&<IT)^4ZTcAMF9GU*3cK|zIg<#?KI_U!9S
zTCZrbYb-FY(XrTFP5$r+8tm(FxB2a(S&vSUR@@BFm5=_$RqHUIRWp{`+tP6JeQYdH
zTJw1@F1$*kXmi-`qJ?zDmOD`gLE?O&O*Gi4e*Ics&00u_*zHJvC5sRrTy=PcY5}d)
zO1@36t){1hxa>6MqT*NXjOi~r2n?{GjK^}rcT&kHG#l;px=LP>>d+ygy>;L^j3aG3
z#-R^N=H$xI*`c3*zBg4#EP8Jzx5(ox{PJMB-REe#aMX0<OxF2SoXz8K0?q*Z!NS{%
zS2srT!j*1L5;(bq1u?+AjaOYcBA*|paW0Iq<rZ(qvtg<e*c(%A*%<Z3_<crrL5-!Z
zV%yw#p2&l~MWCf2S?^$kh>j72OEp)mTyL6Nr{%HK75e)LVx?+qfl;V$jstOOIN4}r
zymot6ec~WG(NIUlN;ACbJ()Z)e*TJg-<#EPm<P%BxO$CIIt87g3^<y83!QKTm57!=
zKsF{OhoQ^R4`{Lnw(;DY<7k#Y9_u3At!UxrIR=OhDNrFrUFKrA3>ZXO?i?BCTUI{x
z1JTx^iR$Wrj0ppkm?BRrIr&!(4V}K9um0ABm6^6Ck+Y@3*2#0P&wXQ-Izii^qOYDJ
zj_*tqmRpJccutCn_mek%+oi#boB{&q4PV%_7NfSc`EE|^MI_dr@kSmsoDXC~pL~$a
zUoNG>VK8EVj0{{Z_+OuIGM$#LY=>b+4N`)Z(F&aHo=t|^zVuTA&3Js6&nPW%FCn>2
zo48R*JKXw!j<%=ce7f7PI7m)dkAlZup#|mFbZck~)O%{t$kWl;SuT+sLnbQY#%z}*
zolnS}k(?R1R%PbGpLq5yJ|7vQP_ugNDkwgP?Dwj5M@}gW(hxCKtEZkRUg^G4g^a^s
zp;F&9F+o8`x3ZdBp1$C?adjHs)Wi>t2o1GcQwvio#5lNAngB9+Rt^ga=;&zmnPbPG
zgXd6G_49p!5uhZ{OqCm~Bj9DYK#a=qruTH%>tRG<cjtqH!=!nhUMzn?o^#D+_hS!%
zfp=-~9P-{l2|1JHgtL`R&hS4s&jOfP$~WLQbQqbL`UzYv?qe|y+vCR$4mNyt+~$4w
zFe3h%X+a7J@j5o^lUZPyLv0iC+e|#qI&=(F_@1qCzil2GCCoe;6ttT(e@x%Pq<irs
zeYD(0#V^p$fBCiSY}I#pO1sO;D+CWn4_#w1vCKPzhK86ig~m_deRJNGZ+rIkf#t|6
ztG~-Db*zcql&W*yH^uX;h`3r<B-SIgow6Pt>oYT-Ixoj!cMpeBzG4Q>4?muFS@nI<
zluR7r`@8Kj_AM<&V$i4uz`Z^bS6ZpBR<*3<JLz<NusmQ~Z}<A*;=uRoBFR#;R*vs`
z4j;wbY3amg;IRs-yCZUVp}MnZXFZpe*w}dSAUf(AhHP@v_d$L@MI<7zuz01@#$Lzw
zJ;^UEr6Py(MUJm60uIv9EK~t1v5nn68{1VKv|ws1gH0QYZH=1?rQn9Sc<%kdg&!8M
zR*oB!wJw{(m5qflEdHR@Pdgmu`@{7DK*Ia>Sz;YAm-TM{OW03g_Pv>OSZbSSt^SyC
z|GB{JSecnmNmmw`NJxERm>T>DT;bGv_UMO?k1)HN&2OIi^ZnuqI#5qz`1ynju?VZt
zaDjfGXtHGSFJ&&xw8TU@AP2@d@%lVqFe{PU{nx(TeheI*aF*!8>Ti5GQBQ2}<;z<n
z`;#fZZekf^i?M=?iUOPJh4^YyjxU_sK`)zct2}+3Pu`Z8!zt(wM>2nwu0WB1)1WOn
z9=DBMuiOK99NbT)Uh0HOxttN!*iMTJQFz>(%H+pLV@RnroG(!tZM_}jZIMk+70b*t
z6?-|`oV+?)T)>Jq)2J*AEWlT4l^1eU7_ycnp1!+#jxuGDll>7P&{+5>N+IO>xY(o0
zbkyc|Mu>lacujTF?HQ#EdbL@+vb(_bF&Sd@)b#A_$#F7xEMFN1G}CxZ;;@<=R6oSb
z-P1bkzH`Qhv&`VZzmoo}`L4!ssdzN2!DHo5Au#@j8<!Z(i;7CK&j=Qpr)v;WQ(Nzf
zE=6gvog8c6_3O#cj@?PpWYeF&9zI&zsnJ&|oF;jL<b$#;-<Ft{w@Mv(wYao0UvGZ{
z4Pn8#ITLbJ@eK)4zH8$1{ki}{4nPW+EV!{5K-b!zDr3$vJBcc+H(!uUbvfP&B;fkm
zEdYqIt4-D^9?$VODHl^<3^!aNONjS2!43Xool3A5Y8{P7%a0lJM&0}K7O8Bkbl&Oq
zbZOg^sS<_E5fKE0#uv&orQR*ujN>HdH{A$kD#(6(v;!Ngw+oPJN<BZ{xV%0#pBsYK
zbzEHw^s8$Nv9=C}GBwy+f9av=!|C32pYQ#q3`u36(s}D$Pza-_t350$Qvvl1kUE^#
zlUG+6&=%qX|4r1_E)*kjDEIW#c?cy&cGT5E-TF7e(_b@Cs>AjNB${#u`}JAMrvhyo
z^JzkS)8Y;W6UQ-!V_B}U`Y&R>oGb~>2Efzz5qrL?`F&TLPqqe;h`*V+Wis@xwdXS$
zY<e<BeE!aBd3ia$+Wd7Wq*$iO$>b<v%WSqPNdRVuh<NR1(X6bZ0tVZ7#8&H$$H`>N
zXf~}9D-{#79|dhkLraW$S7ov)jmE8qe+xW*yxjob_fam^<XFJQkcv5xRx_UY4t0+`
zhF4QcC*Ix!6zBAieu1?4px*BG7JH)*H#+y%l^r4R-|g$13{$e4?eiQ=pHLmUUnXnN
z6Lag@8mV5+e|O^z(w}yKCVer}SMBX|8IP;9bx0VfBohr`vjAk00iYE<J^gx~{!|V}
zL16**?d7%St(ynj?6ybI#P2=n;r1rSpUHe>hqbZ}xbykdl7~$#Zs&B(G4$?Y6cN_c
zXg!_w`}_B4DEuN2y*({WbhAOvsP(|H{h+JIUldF!okvF(Q*5Z#A7e0_R{JTRJSfWT
zsIY<Gk#}K;6h1%z<-41N?I2Fh*Iu^_$%fZ-2`kx4JBv)<Xu03r`Xo!oviAy7_xBFU
zNJ+p(auYwjo2zvZz}Q=G^Ypzs*%k*M9=-%uz*?37Yv}}zE)W#NCki%PS%x9X^E-8p
zchpj3A_1ZM8rh4(a6|LC8oM=PIagP~N&3CS1Ok&Xb2f4uzn{#=s?z&}jgaEuuSZ8m
zW@a$y6q}`GebCi4Y)xb77}?)<bGP=|3pT^$?J}I^^cp1I6e|eES$<9XrL6UdvyBBR
z-jq5;_;Sj<r#B^AKwS70adG{tViVi}j<<z_V}-r(ToQe7H+Ur{<1ekw<Y;U4=!63F
z7mJsO2VoYQ^5#3+3WSTVUcPnen7@8jn=rN==Nj5{7dPnQ7@F7pO~==lmKL{i`<6^w
zLR^JM-P_mHEGI+3!toWYva|_)R>rEk61n~t6BmI69lh(8`b_eIAVNJ@%Nv~X<Mmu+
zTKV&Rx{^{I->zAoY(N5LBs;sjwUzhxyY#`~?oq=qi-k0oC#-Yx8Z>l6^@brIpIl*v
zMn)=zEWjDGq`!_+0}AO?e02_mn)ym%Mq8flZczBaN<;)J4$ekilvbUqeltIS&cqc3
zqqgCV<*O^-Y9pd1N}u2ISX?4rsH>^GkLU^Bo86nPFOJh4yjmW;b-ON5solQjvT26z
zcQQ0zR9L{00252S%It10I(Zur5o4H=*lnoLu$iT_lrD~qEUn5+-R*8~KBXHNnw^31
zF;PiNduz2;qfy-MO&F+cLC4S<qkzUlcmi?L+My%xiOHqo2F{yT!&&|6e0+SJ!9-$U
z&3aq^X2&fkD!yniZV#V26&XvpShz?4_AQVN4_Ot_YEWoh8D2f7dye|6@3sj<rzx<J
z?T=0O)0vNur|81fTOUHSPF|F|yd0K+U!9OhU_5@bKT#;;gJ#BUyXA3t6nPRz>vgj)
z?^0;CkA`79S%iggc==cze<y~0xc;1|r?(ecd+q5ZInktP0-~m(BL`7Zikf4Y;OEPd
zAwIjhe#^e0W9_Y^calR|YREvVX;uBYb2IdZagDB+m8v4SA+EuJ=K}Jr#z>8kXrzd|
znjH7qio<@9qMAX2xT6aEpyVnk$y_8^&OwM&Nhu20UmN@72tr7s{GHDE<1SpAR6r9Z
zOtbfScP;YhmIv#D%EykZ`~5vKGA9SC`ue4SuOomaJi4<;H61V)zvy>ts@B;{L9>fL
zlaOSF_4lUhwB<K^bFeokE1M3(1kzi%Jod%v-Q(#nlVz~66%^X9#`2DwLisBlvt@SF
zs#Z-ZZPzP`gjth)Z{SXy!P}1?U!VwehHTYj+d4ZQ934$pur^k6FbHUQkcmNaU*9df
zv0vTjRIgW>twS{-)uY#%Ko$;cBs_+37iLqkIF@uRd}DIIk_`XzU6F>ZKkm?pmsfbL
z7LUdHq6<SPUzLO;1??Qf*plpfgoNb#DSy22y0z2E>GI6Jin=n+S6p1Y2Ek|Rh&yq=
zC(^{tW!_^>Xp)|g#>{JQBirzcJM*4=6uE>%z;YO7rktu<x6n4Co51x>td{H9)&`5f
z)feZ0^?q}xG-+B$wzPv~$wriwgF}D!K%+xFmVrvOzO9Wi&PKm_l~f#~`A!w#%Aeq(
z2q(ei$Q0*q-tk3$f<QGm%0-Yyd%j#l=%e!xgeFg4HCBtO{sM-mVh#A{;IZ+gWApJ@
z`vPBmvu8iwl9Z8%xBInpBt(Y8!YG~%3nMg{0lJV>?dlcgyN!tK`~Dp5F@eIdDDpWz
zXV%9bSLz(}dblF*FzagT=ISEzCXIH+a`nyhw*caXHACWKN8Tv?b7I~eJ;x*>^ZUKV
zq^1j6kxJ##Nvutyi~Uj^-A^B{-KpAQljt+T*=mZk+3L|Ea&pA+W6G7zOQnyrp<Og@
zPFmhIneooevzyQTSveFG{QkSmm>Vj^My{OC7X7*iQx@Fz*}-Abo~ba7!=$fpoRN0*
zAT%7-49{x(L5Pva<8der`S@e#YTSZ`mi3~gRSy{Ftmbc|!G^knI9S-TD(Xu^_fx22
zovGPdd=rsuGDMd@C({8!-bm53vJx4Rs#LS}A-{G&FlC?U_%`bhl7rKg`EGLeaWY0)
z+SnM}R)=y$din<LTizmvHog43PqI?acJ9Ur_zPBuZgq{P7?;92;%Zb1<)lyrFGE9J
zLB^Ai6647A_+mvt(pr~;n(UTOnXJYUmTTfc3ctIsOrh?AqM{IUdKVZC6GPpzyXabD
zzX%<>-S`zSc#I^_VLQV98cj;)5zQN>HlLTZ(;q<i$7g%#6tb?o6lcPn91br$SoPJw
zju$dEO?tQny%T#dnIyUXBUgUtWVMo-S{><{>y0pSY+!(=C1A7&Tp#66L;DC=Q;0F7
z;txBb%x3ecN76ETl?&DC4L7j)lNmyNeb5OTbVj3A<2h<kaNuxJz@H6nFEe%W(x8a6
z6uJ@yrCNnvoo!Vb9Zy`fe(WG8cXK{xtZhB!@wolI1XZt=KRQOn<M2N?J|<5ar-`!M
z0&qpeldol^_Y*g<`+ZP|KFi5n?N}i517m(CYIshAbkIAJTwdw+;E)W<y2_1bI4EAt
zE5Ymym894>Mrb1+tiMz)N*^{ie7-}&Wv3=T{`n1!#B*YlNJkf^pI+l3Au_lER@U+C
z!+y#|$((QT6*yWtJL7%5QMQjep}iDMr&iZzg&{;djZVD-z*N{#5k!$zRj59tq7G-j
zBaYI)KG_Eteuhi;ZUk^Vn9U5-)Vw_hlkYm0!$wAc4fI&XyN`BonZ)4ull_RHtJc>G
z1g(S{Z9eE1``20k{F;N^Y{tl@c*CnO(X5(&FQ57{Z+r)E$_jxWJ+f<P<VzqRRE^Td
z_4a*^zHM_bbf`l{iAK!N$ii}c{w&}z91i%5<lRbr(DogGFRfk+0C$H2qYzS$fp{MV
zY4KPstR{Ye)b-_L&$PRdxXMXB%fGirMMC1wLA)Al;T)EFb%GJsf4mX`JO8pdqBvC4
z=&3J8n`J)#6ui3pTQVN-9bu4B7n>(AYcIkl=bc~VQ^|dL!SD`j8YlGQdBby5F!+mE
zf5UasCwj`#3wKWMPGBbfY0PF+`7V5(;YTvD#SE*JFqerHOuF;4HpqC|pLjm3_*Xe|
zKs}6zFU?J_z!%@A%q9A){iRtkKz%DNrL!}plf;-MR6IyPz<`%2s0aZNVeiAk!ZzTy
zokG#D+4{+CySx2``sR$9FP*{jPY^@iQ&F)&KBOwVlC_d8RV(Cj-0Ygz<H_qTlx_2_
zmX~Y3*`Dp|+b!5l@Q9)>ulVJ~_QKBA^6N0I@x)|#G39($V>kzVlp$Tcnt`F1F<$Jh
zsZm~T)WAc4GE0g^6wyZ<cD6aO<}7!_aJ-I#g{4*FXf)Nup*#2oL$;beab-YL1^7hF
zs=Hg>FioxE@;bQ#Y<sY{be343$ZID;5pK<=>e$D^S2NFR{DyX}M$C>!nB&qdV9-D%
zDzcnLnacP5e!}{J?CBI!*_J$Afd7ffog)8|5`=>$ihgsZ5<a|=oh=z(X+NJ8^*@+<
z>#(Szw`~+V5ReuSP^6@#VF(2Tq@^2??(VWEVd#(+kY=c%hf+F+9=f}0=r{}gees^}
zJ=eL;e`hZK7$)}Kv-Vm~-1ohnr>|R;MXRBf%WCaxz7<;--(|KjRA{=)<0@eGmWj;8
zCl6^RBB#v>-Sj?QK7MYS;iktd8da8`v;5C^;LF~x*6+pnIxd#nnTS-SFkd280#@>H
zgRk^(TGp>Ayzw5$_QoJ1PTOO}@lN$A95$yW)Al}?L`=Dv3%5>>=2SI~wquZW#|1iB
zb?L2jor2iqUNU)A4s{H9Ve)a@79cfC5P!>}d%(C~grBM-)46TpWBoju<=9{sv^F8*
zue6D5!Ln2M%NP)=s&?T|wFZb$6A52YwHq4qCj^M$i1D;#Z$D5u=@MfX14L&}NUZHU
zHRYzI<#i=R4Ydlyjn6Oq%ev$19v(@30j<-o_JT;1GQCJAp7r<le{3lQ$iAoU#ol}?
z6!g*L5IQR<D#{K?*#@{c*<CN&wd0dIKIelg@8qM4#HuOXWE=UX!ZzN~c9CIWGd`Dz
zSIzl_YWdotVwacRjIqq+VeJ8?m)rH;Y$uTvwP$%lq?9(>Z+(yz#l@=hT@%G;$F4k3
zbI&!$jnbEtadl)QeLEF;KJgcmi77r8lYPHa4O*SSl{`<&riFT+>L20=cV8@xQ+^Yf
z{rUNVHiQ!N^*uw^dC#}36weQtLw#iqhhkGkClcItM{Qk}X><zrCPOnPk`z<ZzFeHB
zRY{5oP>{4>6f?oJGqmBVFCT|Vp~GM^X*L~W9rnL#C=cAd#Er`n^56>eoZbN&!K;*V
zDTg<XVqWhw5Y8h;Q@nW2;8In0P?!_NMn+~DRhk+0jy06-T4iZ_B)hHWd@WbQSov^+
z&JL;0r$Y86*+s{&cLq%#_jQghFCDB^LhHG-_7)jY_<h6B&c;7$c|-Aqbr)u<C0roW
zsJua2>*2IInJ2xKBp@w~iJ2}RD&<QlP;@l&xfbgRo3z)W_mgg%#%OstH<7Wh1F%dO
z7`hmf9`~`y`!5l4F9;OXpQLzvxAIMNa-2K4SNHG+cFWE|FDWVH(i-VYxvZ{M*0qG}
zWXSmD{J33uWP!saC0V^NBOsuFq87qunM5lRhvi^qvuI}S(S3^3TD*=v&Ch=-A#pG8
zSLO}=7$d+?B<6XCe3i<mbD%>`PDUdO`+mRIR{k@;pD*jT&KR9rvd2y*(MmVneg5U9
z2LzJbuKfx?)f<}|!Tz<6!&URTySp769A*XgtBmGYO;rn&&rw<={K}+6ES@VLokLwG
znswe`?jE_eaJ2~Drhdts5^&SJsxCKnX6iy*C!pSQZp9hYk<W?%&8CRGgiWTdyc0+3
zZE#?!XYGR;0I7l$nS8CUXBFD{J2uG*ic;9PcU&P4egByF=$)h-%oN!##ZLB-++z)p
zG;RdLpz_^a8UJ>%{n8aGwB_Ky(dU=S6F<9x!<W$?i`zQaajhM#HoJ}@!X%rxa1hE!
z$AgEh8|nOaZhrRnA9vux`ts#=K|xL8(+i)I6-!-(A`G>}SV>RMKUMq0AQf@b1eL(n
zCJ~*PFbIH~nzK@n!{$z;P~(jssR92)0FV8$e=Mr1eYkIXTP$!x(1Nu5Wm_-V&8OB*
zcC4qQxPfucMKkKpwNnQ!BpkZ?i)IzW??(pL$>hUeL>Cv*lhv2<ujE~LP)S;-L?MU6
z!%a?1>7cNgpAD~tmAU?o!Se?F7#n>3{yv1m^NsV2xnhnt`!%W)6URE$@5-&-UlPZ;
ztkT*!H9tycCDGHP)YD7JN`^^NTarxX8#!_evRxmfA#XvL1n))h$D5i$efNXhH=FSo
z&qprD%t)Bm#?|&5O_*aO&1RmNb(-Sl{w+U(@u~Og{QDuR7uAG$!wjRX>S~tFn5H4)
zeJEvRrT4FYe%RD(h9$`B7kw|J^l5vX1I409z77iiRs|Elrbwxlt%xEnjtd+M?p%x5
z@Rz4Bn{U~FgzI)2)6jVZv8xHMSe8vR4Uf&L_mXy5&paHqvU-nuMz2)CURQRfuI|fN
zou`S(H}1cOye=$EM*}xF*Sde9^?@79)lg1OfR0YrK&JWMIWZ0rmuCKb6r}dVd=2_W
zZZ7AN8YDq$U)6BF-cbDa-T~=tUIBqEAqx%;CI9PpC~M>Yy|cn~-`3TAQileDc>~+^
z&V%FZf2s@&cl52Nu(Y?HLb!c71Ln$<HSSG6hW;rFKk0tO@K0bYv`~A6OGsFPaL!fu
zy2B7280i0;;Xmhd7kHbYWm24VFEjv~LOCPj<Ijh^j2vfv>fg-&ec~sIrUB%$!Dca=
zV}Vcnmb&wJJ)an;%w*8vhL_#R{YT@^7}2=a41E(J9n{0ar4{g2bU=S!GA`k!mz>%7
z<KnQ`&b0GG_Gj#3V3Ft4r0~Jy|2Q;T!|&ar<+HQ-xc{NFdCfZg_@62SeCApv`0w!_
z74h{y|5MO_@rkXS9;4=2grdE|KaJ??mEZra2i)W9r^xrOnbnm4-GJWpNyJmZzg3^W
zK|ZmG{S!d`RRsJy$A39AP&WSO@xRXZ|FtUGzXSZQ@Bg<y;{W-epZw`r7~aree0rnd
zc8B2xhOVc3ZJh`U&l%v+!KS}#e}4vM#@5fbuSJtJq|V!d1jE@@ref=1elQ;EvEMYO
z$6N=8SUl&1ghZ@*#XUd|@N$)?0;97;Hr^@zc(_%J({;pk-q&Sg%qH;(X`lOfQ~O)r
zX0e0Ln)({A#=w<A-%h9+pz%^JE?8GdH0o|Z>(1BiS>vZ5&+FtSTSob+OkcPzo*Z-K
ztJS;N?OyO20J5*vs}b3hT)0Ls?|IN3J5@K^8B@sh%hqJHK=59b&+=7O(>RZIdY`S<
z$q7n0PtPyFJEcC`38DKtl{vm*gCFpd4AG=mw=s}+U7Yp~v2gBxUmNf_0EtV$ip+-F
zyv2vJo{LJ~AZaN&5bl2s;C`+T^Lvy~WHPNUDpX;Ug+(G%?5*B8bGOgyUNE1_Wt!dP
zG&0UaeQ#uU09*_pI(aO!UFzTaxda7Ce-Vj416RK`jvG5tcJ?7ju9X@8F+ua9%}A^t
zbPP&zG*x#?qVi7HR><>W-HWAL{=sMSg+?kW?}Jn)q4l9EN;q$xcQbmS6d6?fY(6GV
zFJ0kJW=dS#?R(!1L7uNkH0mmsDP5O}z^I+sy?i-f;_G{Nd%E^{iT+B|D*VyxRjTOe
z=16(`8N9rBZLCT#1vy=8L3y-wf*D)lV2^OwZn_}D!!uN`bc45Of4unFfVEEK#eLC;
zPiG*UfUezjK08<|F&JOdTlN+e)AQmpYAqj1m%uvQbENDoT#heG0O<QQ0ADaJU}&qy
zqeje$UxUrCut(E5Y+Go6)D3_T+ng7SDuG^Y+fxp&nTV{Wsu7CTDL%V8@60sNTAYY3
zKm`Me#0{p!rFC$`DtZ^KQ)Pa^x_>FMj?n-w)t^jrtM{ZU3=1VWOMbo!LKiz!1K<m&
zserR=sXUTT4ou)i*9sGNJx{|CN(@iYdo2cB^<5mYl$4aK#to#;85$y#!UNbdwZcg@
z!!pkke$f=)J3dS~rD%s`)?^`v5RY2R=IXug_p0A2pE@_u=*ra`qJ$Z{wmR1ceY`JM
z{i#xSx*tRWx=(v(%eL-#V?Jfsd*B(h>EV&E55%Lu%zBwsTS^-FIOuIc#nysiZjL{C
zooIWcy!zd|pVO^%+i|?0x6yyz33r{q09P5^Nfi7<=)>xs69`s~Tr1*}Zn_%Z&c2D^
zI*4%(H)lu_M;>*u@132U9Tw0$p~cb@^8B|GmNW>(%YsA3sywFeZA0nO0IQ;*rO{Fv
zxHMH(Qp%?L!@$a5lAgWhz2R|YHzES+Z4Nd(N!$Z}F-C#es?4m7)i(9$mU^;s7LB?X
zKy0Jr<Jm~9ZWlhljI-?PADVB$t_W*ix+-q#7coAEjcvSip6M;_FWJjcnmPl?X+K9v
zjld+9&8tTo9*4;3?#ujm=6D_B*}3S8v%}*(xO_l12=T?Cf25_P`}i?-n7F<_qDv#=
zvA$$mu9%BJ#6FwW6l#h6orj7<w&?u0T0fesc6ydp)H~xFq)Izkxwx`Y<Z<*FWMx=a
zTL-o-FVcv*6F6;#oG$!eDcwK1V0i<pYWe3b{ondxS!gJP-CFuZR9DT<&%QLjm!%?j
zxR{oa$INU<Xzx2aDK#C!YhA$N;G^4{VL(Pnxh-X5_k5LN5`tdg_}Cu71qxenBOr+&
zyvU}-1qjkGd}GeYLg?g}{PWD`GeozRi<^g=m;}#cwH1<%vR21S@b(bqGb%<#=`u}&
zYGx|UQb#lhWwT`601u-jwu(NbTsl7-&5E?jhviPc#Q3|j;njoNUyi2S_YdMKvyGFC
zuXch|v*!0tCbZUhEGgMN|Afur*PR^Fv1F))vY-m5W#sC*OE!9R?(sVXzd9!fb6w=G
z*a4rxiX$c>+MM)py`&66wj_mG_x++>+&!>epDtXU#*DqFwLO`6<E5>W*eAXdzcP@O
zAX1=SYdjF0_wF7JIVF2#;V!~hz8I$E!ey%9v#@gmFVJ=TP_U&F8PDf5GzQI*YgK{2
z9WYWH=nn#vU*UX}%ihvO-Hyygl?BS$R`~8s3;{BaBTC&e=XtQ&MMb_?TIE+YfnYxn
z@yNc>j8#Vt^cNP_pFqgTg#f}2m2dWfik~uNW`4f;El(we-NjFLusXOGgk2T3eXl^x
zAeDMnbpkwX9!|~?*LBgmM|}1NO^Zzy7Q@!L^o1*vh=g54=5$Cvwog69rITk?&v9l)
z0w)D)ntt12Q=VUx6haBegMLV5$W`w)go^SfS)Uzx=|C#h$1-#@-CKN*JBLuBXhp^T
z?+=60<Hbl7)8fS*_hke<;F@@eajl9a?)%aARjbUh+VEtoY@K_1)WH<lQwCBIv4yRz
zel~%qfSMYCN}BNs8|G*!=dG#fG`C1FE0YEJ!~2k(6Mt|#oij558=#z_IF#l#7$rXi
z(|4On=3JUaYq<*Co#dG*n_DoQF0=`)CuR|LVVRnq=E=0`tS4eATq0m(W(2@`!@X_U
z4*_Nq^dIM!He0e}vH&daVhJ%i%?F68YS~+k&Z7KT9bau+7ZxG9v!0=Kp0RSMv!ml{
zvKtNX-60;~jLb~wj0osDF&W;iwPSbJO5E_gJPzDlH_xr)X-B8j*FSyObP7=qe2;9R
zTIya|wwIK_eU9CZrbO$n_9nj%twV`J%*OY2`Xcw2E~3L+VLtWAav_H;+wtBIDyq+)
zt|m8-h@+>~?wgsp&Qe(hCpW!S5C$bhApy6~?^$ojB??69DfCu51)ZYT+YS3=wVeI@
zeU+7PhUPJEi~Slh!+NO+>j~3sOuG43h)gW?#(TD8(SpS9WUce%)tNq^&9+88UR)(`
zSsnEGM+%+V_BUJ#RuM>JYRJfRl0yzRN2-v0zkeSe-LSEdx1J3ZN;H(Td_v*QJZlKk
z)P3lirbsEBTaGUQxP-O<Hpl5tsP1oejSkxjK+EIvC*cK&-z)FV1A=k*(KFoci^b4t
zbOO1cGyBWcVe~o=R4wjgG3v|tpA5!fRd};h=kc-Y_=tLn5Wa+1nYkOQ&Vg2~`wdfK
z4A+(r@-cqX*Q^wc_z!&jnm*rhw?n<&T9+`De2hzS`g3t{(dTGhU~3xi86bM$vB|Wx
zAtWNusq>@}U|R4F`_o;f7TOaOo4>oaw=u!jQd-e`Z1)00QBl!J5buc{sq68c`*s^e
z&SSh%0be%f)MP&rh#eVmK!06RDT72O@{%w{OP!y42II#vU&RL8#U>$sIwr!R#-vd#
zo;3iXgQ5LBM;Aw1Ui*!x=ZkH{kpdLRN?~a<<j&vVl$A8jcO%cn$DDxVa`gZQaAed}
zD33_@CBx||*TRI4wzfJfB7J!h%f&X{VbPJ}SuVtlABd<J7#Vq(Hoyu--<YkV2__dj
z7+|e~;Cs{of5yc`7}}cW=yGp|e`j}hYaB7&-1(r^-BHNpGGbRNGizjt84+lD785O|
ztgHLVbR{97Vlxr%I7FWia1J>sH4qSf4O#X%#_5ZmT?qMv*M9YaX9s-s549ODCf>Y>
zft(^s_lIdzxUKG$ZP)J8#@g>MS>=eyh<yzFW&I(k0i%AYn-rOdHgMCZ%1c;}$jD>W
zm3hix&W7u>^<=+QuTwnK<7o4pjbw8~JrQi?!R=e8f{#Og>?~z}l?bWlvMb$<CHV@L
z*?F0*hPr7$XoXrvMHjdWo;#OKNeCR}_?nZM)cH|9K8Oo>jT_?-+k=4Bt=?KbF$a5l
z`Bq)^GWQGrZFx491jU>&ml?@{>^71Cp=W9Ht@2<h)I`!5Byd@1s|X4V9`i_ebDYsZ
zw8pt%@p=LE0zSXzW*hG+$A>p<$lbWE3d>5Lqr7)kvz>)J&QwBuR*fN|^x|!2!y3vh
zBU6I`9J20-OIy!WOn_#ErL}>9j-ujNo&@o{CkvhSCh*CHPcgl(iY=C%{VGn;o1kj(
z9bj3N_c87@SgZrF5odz#DuKmQ66d*vI56&=7tRu5!0}C$TOp%Dr(Wq=jPzcT@oaMn
zQ1<0Zb$YU&SV1-6-WS6sm_&U1yup+_a}_67KXou>NH8BASddKq4HBj*JysJAS9$y@
z4mUNC%llV9giSgI;~c!>^`5H%dgQX64-V+Yz&4-<SuB~(@;U`&W3RyieXKQBElwn|
zFvjlk#*MmN6CBktr&NVXpQF2Qo45<-rttP()82w!$JrIoSW0vYBm^6KRv&$(xl_MF
z^xp44m%Qx@1_t-5cVcgpr4Ws^ms|dN%!Vbsy+7r%e2$k!W}}UxjWvdCM{#nAcUu1#
zfj}%I#99;F2!V!I)|GO38fDJ={YDnRQBFS*To_oTRMl(&_d$T;kp-ta5e9|mza19t
zOQGz2rkwB0PQ(ZlI?+`duJ84Wp)jsc|8Q%J*J4pAdLL|T{4H)`)XV^FqIPO2h`qd|
zVZ)|nnsG9x@u)^oLgLsbr&BkTBcdVzYCjbMs(Ft3FajAHhO11A@EZ(_5327mTwm^-
zoab(>0RlvlT1-%YAdT$x55s>M_5Y94#s8$M|0`#ndGJ8t4hAa%M_3^Z@9(=aRS7#3
zsrUYyJ$By!Ah1)Sd7Q-s63y#JGNO{P`5VRm`{v-kpT4eR{y#JC>xAdu<G+3Jziik0
zAD8mqzWBc#R6+D6*xn$33yV?7dza;5eP?E$Bs}1DW&Gc>K6VGE>@^VQA^5&b0&4ap
zg{aU==DoG}dli2V9r{@%@BP0)xX#CC77s!3?V2AnZtOG}goO5s(#juVGBzN0uHIuW
z5`O<PSF&7Tv9X7B<_L;ui|dp)YE<1}RSs7+m-W_f$MiTQh>nVm?hK^osh2!EC=l@@
zZ)ar+XG~tc^QJ&ykuXX?F^;2TKNuNLyz}#>D<0Tg8lH5Nt(KMLaU<U`#x8kFMY7Oj
zfPEVrCcXLdHPrCQ|McL@C$szV3{FYpb+NyfakbT6rPP*TGva1=RqPO&1d}UdEmRQb
zByVS=zg$8QGL-q9F=Q&|q)_`y_2@{A6<-Y+L@^xx8LC&c<T&?WWcHY7bx`DRz<Sw<
z+D_tfG0Q0PzVx^#4B{retW8Re40rNJdQ=J1Q|7$i!<1fP9X%I`7T%gezqN24vYn+9
z@S<qk5-m1i(WXgDxjg4NaW>{6yp+V!9|?y-LTR-T7f;u(H0{T#t^6r+x*V=fD{8cN
zsVJ3qa=mlqPL>K+r<oHkC;yab;as>BoB1lD8_&6LYWW4H?tSDUZiwiADC(X84>qWL
zs50NS8Z<AIY;f+fWgjt06U~5D6J{OvSYX0tekQ~I5cHkfog(uBm1?;(H;2f~>d)c&
ze*!3kC|E!tFykjn#rrbdZIji@O=t6`g78|<^f&2f2%#N^lU(_lX}roRvbASc*q-|`
zzQTWh^w<J?&#x&z@k=Ml+J6vcm0fMYGw|i6ISG+ujW^=5)<sV@6h+S(vIJe@33^m8
z`$yjOR3LCWGc@m#$@Q0?YY1d-M7M>#k#Xs(-Gz42=HkOeJ;w5F2p%d&c7EB_$(;eE
zJ1^^bI4@l9jkcC85E;6^SIDLBinE12`9@YuTu{wBHrsaNx?avq4(`L-sc277^dmI6
zj<d$*Y|{Uul@(Kh`0Xpirft#~Me9e_aZRm|71XSh;u@&kw)gOR<CpbETjVch_5)W|
zR)g+^q@dPEjl+K@jdQ=N^!7M8tzEQVToz`rMzN<EMJhC^9#TRo&TR9`GV-Ozv)k@|
z23=FtON={zFGR@*Qy%@U{rGg#Dj@q;>Bpg^i+2_5Ys0%+{oEa$ldBE8`!|K^RR->g
zMa4zdTTQn=X!J;g)~jl3>MAI^GxJ%kjf-9$EmxClV~>|_FZ`Y-enR1}HW6(nim;k;
zsPQ<<EECWP1iM+!502_1TX7yg*!Es|vOW1}3s&{Clz;L&))@;mHEPd(6;)Oii-=4;
z=dm`i9CtDAZ%f824xsS*)qc|X&L(t=!)JA=PDhiZ?vm?a9%8@2O!SjM>*oR4KkLyX
zXrFhL$?QcQ7F7J64Bkhn>b1#MB!puy9VM#%^--sB>?B0g!iMQM3qMs&osUXjCfc$(
zVQ8arRD2ds&3Y`wk#VwhAj79(IN4gx?G6oSn6-m;9(P&^mSG^7s`#qMd?W>paL8)t
zwbhfOh<0Q&*x#BTb$PgUZ<t~%OGm}YW2MPgP@;#3AR3fCfj9ckpJ{1IqOAD{Tz0FW
zWp4}RnE!lPUm%RKobu`dwV}`Il<)$xW#KzNh_C{)vwwNc=5EIEojiB)@;?X(mugb3
zx{_;O5^N>k%*RQoUfK8n@pe5DrDI79mUgr&Clk&`BteJD7E1SHBmEAnP2!`?q%sDU
zX96)-HC(7fZu+6EkZdyVG@8?fAWH1^3lF2gHSCK&uZ5JcMg6KQ^=z-6tWbmtOeTtB
zt!!+VS{%;Mr7`j-R%{B!MXEi)C2i=PoHzSj0;`2o1Rz`|EB|20YIuoKXBifZmDc~v
zX5uXx&c2Z(Ch}Qd;!!igo5QQQ#fu?2(=Gi}5W-F8aM7-2J>hb>2eq&I67c2RYl>{#
zW@#dWgD!NANWEBJZ+@rxMxAb^hq<S?51*UzoA;~n%=aR#jRyDZXR+s{mNx>t$z|jp
z4zQC!?6~z&zd4!|)-&}t(_Y{eW;M0wkqZ`a9Boad+lhSsDGO)wq-uzad`I)<a~XTd
zUYG7?WQ!g`Ng**J*@26%%=^QpzSkJ5E`pJdhOsnxJNt7|C5y*dXcEMeA=zk@yZg`h
zTZzZva#?z{iw(Zt$jXOfCdYZwJuVU|^CDHV@*LmgJ9c<fLE@I$UoyvDm3<tSz`u*v
z7b8gbU8)0&o|xEG{uBxRBq$S-QlB`OZm_@YqX$#S6~3~w0}J=XDL_xgS4Y8wVqz{_
znaF(LQoC3na<i`C0Nzl<M|Y15{557Jhh_z3jo(V)m5|q)aM?)IgqcmVM+Cb&<c}1w
z&YoH^f{e?taagvod=uiveR&EoaEI`X;PoLfQTwhnF0BWAw&wz<$UHk&!Ffz3jO*eF
zz3beu{!(auwNL(e2I9lyKp&Pj)A9p28rZlqZ)vhkt11+jkyx9N@j|UUl5H#{dKJ((
ziYD#2X<^depcQNL@Ni{nH?W-;&w4Otv9C-=$;M^*UAnvYx7!o-qM#{j_0hs$g<mjf
zuiIpKqd8PHYXGTNo$)4Y8l^Oqt<-67+0Q(I)o&xs?N-g_h2H()ekl}$+WM%$z#JQ^
z(pKfkNowW&<^gUyVXlt<#}m&>aMKUmW61Od7#NuHy_2&2-b9L{9i7Ve(asRuga(-F
z;T#vS1Vq#^y?=_tzS8zYT=&f`kJ5C&eXNPnvnM1@c2^#YAwo&%lrO4(-;vNx+^C&M
zvdm|;&M+eBUmx7-g>OK|<HVx8vYv6!u`*R+Po}uPcB8A$F0UBhEZu;4$k%aXA_pt(
zr36dYL_|r6f#Cq&JnnL<NH-}BSP3NhDYq=A7BUl|F%+UUMDH$mHa;gyQ4pf%vnMWQ
zI<qa!%^1ayBuAX`BQZ&hcfNKu9P1`=!Ib_OeG8VFg7WF|ci5(uc-OgUsU-Ee30e+b
z77I-3y21wVSYDUE?^C%usPm99c3wyz7Z(V<`P>F)bYFonn=AKz{+v(f`AOuvuhUNk
zjkd#i3&!_DF0#x$s=OdhOesi+`%*-elAa6jZmL;V_Ir|a_Yy|;RT+ljS!qKZ9h}u`
zPo9C6qzu*+L<9LUO2P6eJ{6Q(lYH)b$De_<mrJP^5zFJD%--BQ+#IxnlHMNPbKE4w
zH`0#CSU+^F<oDw7^87l(A2htNU@ahnb9w$J0z?-U156v8I1=sDbCJt<STA6lq&gW7
zc?@-BMNOTm-GaECp=SIZW9qeXNN79zM!;`i>Q5a*k}tP<gVZ8`VUn@fYs)zXF;*O9
zD8+DAtt53KTN<6TrL%RN{^vh)iW!Pl&hpUC^nvwd*2#@IL!R~YK4wy1%L%uxgG4S5
z#UC-FrUOPMthydY&^nt(YbDz&Rh2=g3k#1XI$8%h?9P&Vp(%xw>SQV3Udx-zJz1=h
ze&;Q;Wn9=`?`u9j6$xBNx2uc#VbUMgB_`~`ZQ=PzebA)SU%mzZJ*fU&yo;Km9N+Fv
zos>_M4Um_iO#_Z(k&r;%%c8AUXcLRhcXrLt{n|hzbVnLky=0_kSj?>E_2FCH8`9ED
zlFLHrRl5&NHiwUYlc92RFm(X{x0x~$^z$S2uK2;5w!Cs936yb)NzgN_d>D7Z#1<Wq
z9GUDyH@4#cn5x<nJq*H5h6O1eVt*`1C~3c%)fgq25A01?iX^pqmE9F|oaD`AS;;oR
zQ{jXLFBxiG`CYVgXGgmpeDP;qq*quyvgcM7t1xQT=@a0E8hjp?NlG!S4)`<IKoH-S
zR{A17-wKqhvNIUfvYD*)>Fmh;!3Q@y-iZLxA>;0T+KE~k77|_shl4GDMlE&q{;W`z
zm#c&Y0AAIwGh585p(49oZcVy0XXvuq(G4OGCv&%vam}OE{=JC|YASw`*b#(MX;wmH
zP~_yubDa#lVlk!?crjkkw*t9CBKE-Nlx3Qo*BY}w<BcZ+M}GURGOE^fG7KTsc;+u7
zoy`Zt3KT#mK$FEK#^^OLWEz^1THFsd$5^CN^X;8QB|H)?LHW<qi7TD9F)8Eck?I<f
zI!PP8H{Zb9W-6soRS%FM&AQfBd*k`~+gq_p=_<K{nlP4XyOo_f@|7tZiF)R#!FrE%
zP2GZn26|KU=lNwUA2pj_iqZRa+ClfRo~5<*0u&DwJiXS-V88r%K&%whnsjESaupx2
zqNdFl&YSOM3(oM}0MXxs&QpMC&!R7EGL7;20xQ4aUht2Ns-L0`f3Vf~Yv*t#n3gBY
zx(sZDICODK9VXq(keY-WII#3Jx3jFO-o?$~iU+@CR9(Z-bO;pntPv^59|RWTdR&V>
zT<x4*4#$){uQe#3$pR}Ft~7e*)UAqt6gZ`OcaEc?RM;MY7oZd)qaBK><Kx|<eJp}t
z=K-hYX4{RVL~<(&4+MI9c&%ylc7Y_}Lz)yMC5Tw|+fJA21K4D?dzd#Y^EG)e8JS~`
zHv9XB$JjI9HVy`B&o|4!bA|TB_0gWSlQk1b;BIIBT7LZAeK=_eD#BzK@na>R<e{%!
z6Et9q8)tj8xJr`Rw2z*ei=!g<#yM~sSfV#c{Za7Z@|A&%j9O?kz>5iWRjN~;bCPZz
z&k9nB-1;W+W}s~*AxFcwB5&BVgOOkuKr8Z37uF1Is$aW1>x!9v0@13GGJSErLPOzN
zFdHJvZ_jXXAx}9Tgn^^#TAUB_#_975R{1Ore`WiL=aG+IT^8H1v%I0k6ZgBDTxIJU
zP%t6s<W%lrU)0{g%qEnB#esigu=kG&#JF4MaB8_83}adFLoSayv{ZVOM<6P;?!gXE
zy}><9#7yeX3mM~nP}r*D(4$>BR%pQ};Xy_zAM4zQJ8^F-#~~0T9nSVeXteXXGi%d_
z5C5?P13#_Fw-?4qKr;EUn4Y)j5O|h@d<Y0D{VWJVTPt}-Uo}<okB(0wmK?3eo7#WV
z@)pIURCu^AB}v5wNu}H|rkj8K;10BLjf5^)AeR2|j!6w<<D&RN{BYY;@@Rke3FO!M
z%IBo%r(;P05!Ob>L-sBX&b)-N4JDSA=UjgJ@jMS-GBDFo5z`@(lQca!j4YYuiJwNk
zegc}87ZR2i6`gmo-YGNJ@V?{=Y|drYT5wnf`=>As%ucFR-s*Z6C%{EB#9WB)H5RV4
z8n99d5y~GWOZ^-+<#5<@pIpCMUHH)HgwNI4{yS4GiwLA(Z)gb}k_^DRfE-B?u(+(%
z>qCQH??#LEI6M-Knk`<hWk@<y2_a;8n#l#Rg;VxU<tWqAx+!a%?$mdU?x0f(N8MHH
zz)-P7>yk5fjF{u@nk-Bl#nv=!$gh&LJF%x4Q<7_}BWQm*NA?w={Z1-6;4R2@C`Zzv
z`cd|cr<cG>SB2TW*mdtH651@J%_5O+z<sKo5RlK5k>E@&TOIwJ;NikU6<`+T`tAMn
z^I?X5$<M?Lxpxmv82_dL#x4`R2boa&lQAnCHHq{sVL6gfH<l3R!}8&YZnz|UQ3V`m
z<;YsA7*ssOos&_u$?cvLNU(M}=%y8EVWl;(2?KuQ5)NAg=B3q92in#M#hha#;W+4K
z`t9Z$GYwyWKb1#mv{Cy-c)0PJSPRRD)$*6A*Ek>fb1b9s<^_u+w4^a};zXN=zmwT7
zZkU?9jO_UJam(qXb_)OLKz=TA;_)3@r}BE&MOs|9DhQ=8@cNwr1Iq=<r1zT089012
z)B0A9J(E>IrI#}0x3NSvE+&oj$+RbfVX4olKkjx%b<tS3?7IfbWfiVTQV169cgUXc
zYzYk0GZopOR5LMMt01j9)f9@zBPqr2wMk{K8wwf34S?${<i4J`;o7=ea)BsDhUn3Q
zU)kO!vLR5QbME6c96hZi*W}{I^{8?hU}K3l^HgNq-LY{M14%$dS@F5|<=P?hHOPPV
zPC~3F#6_4TiF`AWeB)6ee&O`emmk1NxB$mnh2STOjsmQRmW6cVyZ2^@%viC32Ga}y
z=rnA3+u;R`60!vJ3qtTiv}?m@BfqZ??-qEQU`>;N2(N=;Ljc{2yy>e*PUgd0^5&;9
zRW3oFvxBp35u7%y*S+qjVsWm>?WlMt0ozts)7GmjE#X@}2!LnZJ4TQ5o})cCEtz0U
z86Z%@c`EF)({zHNS2*hhQFeNB>$*^#uI!ppmSk3>*8y&zm>6{e=R1!R_LtEIr+0V@
zXtPvE?{!W(lYY75g(%JE)QeAoM$ej%#27ib3%bObs>%fUStan)M8}|)_h3TF1<u^6
z=vx-`JmrPE?C&c2p+3ufYmS~2^3()Rs*{MLqvB#<q|EW(u9H0HQj5vb&#Q<`zWc}L
z;TI6>RdW24u$m96F)1dsvSPA-)?O;FIcecwZ4nyO6lKWp7fB@e$IOmFIjO3{Y#U8^
zIBs6lRH7a=mIj5KTQnbH!^i@~MCJ+c3$tu@(_dt<l!ys?bAQ(Vfrf;vIJ$%B2TClh
zgROM4*2IBrmT9Bzv}sZZv+8-j%u;wUrxgK&OnUxOs5xUX**b*Fk|6zSu08ExxoV~h
zI^>Z1EsfFiMO{aSB6p>l))wPsHOxQl&w7~|g`C**dG(hqL3!o$A^YiEu%EArX448r
z7fPwXqPD^R1YvoR+&+I#*@t@PSfwY-Bwhs_x9=7Wf4GCztUYNc=7?Pz+<PKeq?F-t
z3E(JicC#W7QAokuJX%;MYCo_3wlOhK(N@*x6zwn&674HOf$q0iJv2S%rcugNb)K7t
znL4dqEP53oM{1Oz04~$5)1R(Ox0@&>KA5p-%j4cm;d04IuVp@BWDK3%brq-*X>Ja#
z6xuO9D(xT2tjwQqefVU6Jt3Lkpva_K$kuX19rwMJ4Ub@_uC$zVdm9Pl7a8t}J0eb8
z<c4`q`|shQQK8JYP05WW(@!RvHwcd<y?4K&o+h{Z{(<YERLh{)Z((v-iWb2kv)`ri
ze$-N{rkG^FJpfz*6(6UrNzQ{`6mt;6n3+EYFRf-@l8Vsc2MHa(XS#eD&C4?Tj|o6!
z_F~ZIA$?%=#8Y>w*7QYZ35a7BK9~sF86s=G%+ahnJFLpS_zD*H;dXf=Kr%q%ghe66
z)<<g-^;&tD58Br&C`U`re&~xRVf+E|Dpw<A&oirLo@r&zeW>SDjg-x*%@o1$seK=o
ztYyCWwyutIIm^Dajme3gj~%0`=h-HswlG8V(qL5+2;m{6*2+WdH|mlBIJijhi_~Lw
ztpj>iRVd~!-wbEM?aQ2OJt7Z$LB)t^_QvjItf}qu*%q9AH8|7y^8D89nzHWmqeELc
zWL>0J)~5jb{h+!luQItp@LGFYPiI#<U0R9#39$naqY9~-$ypwcVil!TPh!31MV-1v
zTV)PC5Ja9^XPI2*-P8ivv?|5U>#4GckOz0Z_&vV?D7KwXwP5M!BI0_m++3B5ch&q4
z&3Np@<hKg-DpaGzb2x33r^g2}toCi)chuZ5<Gvx@vcAl-Ev*0r#|jjZq4hm?K7tI3
zJgBy5lI8MX85sAc@Id4BQAeJ<F*_>uaeCb?7LYGY6b03MiLhwT(e@9I=ls5Vu`?Qk
zs?;N8rJew;9Jmo<QloKw8=U1(I_%Sf+S&J5UmwA%dHKfh-b=a5t%1}`Jx0*={3dQO
z(<a0{<m|+5cp@Y4-OCtuGec7hVy3okR>d67(7vcljkrvOGWiA_ur`1*^gO%_2z=qL
z8o#9ss0~j3dk`{fcFbxNy76G9P^)$Qpo(!qEExbj))~gAqCa_3;MWzEguSEr7-Iy0
zM$_^gfN&qxAH!-yW*0t?Eo>|4rhd?v6TeH+rBzz2qWm?-2J6Id?%5WxvEOrIy0dTV
z6@m23`*P0Kpc$Td*LWizPvMHO6cMgUTQuD~UUy7Y|GPIh2`i|Bk!NW{&^1==+H^B9
zwow1p!Um;*a*bmEd;(Je(k~nx!CvGzn||*Y%wH}^nqcRoPRQENVB|n!(3mx_C9B3P
zxg}3at3y3TwkBCIE5;vI23q3Og-5)9IYLKp|JYL(fLlsAX~2+G^N%NZ+YZ9!b#zmY
z9h%GWP4J1PJp^Ei8LIRuAB%hYMck)WP&cLHI0c%7&*VM>Bur9AkBZ;rrCEO|XzNx(
zv9e5q8$>~RdiyU69=peYkN0O}+@WG`Y+c2haCmuPMM;s<&h8Jb>}@R4$KlVOy?#vE
z0X6KKtVXX5b+KMqKHfPINo{BySOj5Oe%@BQMn#B=vRE%ln3Xul*If|et?oj#*3WIe
zT92qdbpuryOG~1lWc|<p0Kh%9gbBxU`Fuc@L$|S#adMVD0Bi=FVvM91UNL=JeT+KO
zQ%L3dd4`su;yb{1h3UTXqzGjts^!W>=`mJlNzwo*Ah0cpf%E{~0tPeFb3ZGoOhxSL
z>v`;j%s=aANUhS{`NGQ|d&3_<1bZWea+0?+UxbAS(?an%x#rs*z3RmdD3D2zPx3ag
zX^Sx7$&rrkpG~VFs(1zZacV%)B(!Th%>oPdclF#~|Ngsn+vP4Ozc(;Np=j0&rUaG}
zMY$#3X{Rt*gpCP9RPNn3E{Kf~vN5aQ{mj4?m$-BD7L})jdi)1;RoUdleb>eH5LcFT
z)M0jwTrp6+KmmJma;p7zdF}(uV6qHF7r*juGVhDdhjGgJsP$=&#`ARF7oxX9lItq<
zL5GJgAB!b<ttELtgv(-;9+N-5x$!|-4C~9<6LFDi*kre!23X7TSc_2X?m*KIq2<!U
zo8|CgCMK43R2gAs$<>*`W>=`VaLb9}OGfz1A+X@>T%5GaRzCq^AnANg3P}YZSgUw{
zWISSUOmS(+zTUrl^*80rIwAh#PF__flcAzeD2lhn8g24hlq?Md{9Y3C#+Rj0<7uPM
z0y2C{wGf$l7c~>Vd#dwAgzUtS!5cNv35T*?>zAp(%uj{f%EFZHV2AHpxK#y{48CQ;
zJKTJFag<B$f!zx7M&G+9DrH$Mzwmay%?e&>z?G<oUaI8M&N{(mv6<m?Z@EA^2HKSf
zo!J42d*0^e@cfi0eLPQYz1Nl5KuY+H<Zob(iv?U=rZ1nm*jTyW@m^We8Gp;HS?jPQ
zFAZwQCBSc?qHQL^tm|1PJ?AXHXr`MH4$ZV|KAKnQ(#3<yyTRR5zw??bEntEsNp#Re
zi0}D5L=4-bGONCw&MRg!JY5?FWVyVea7BL!V7E?PI2^h+1~csdjsh}f7U~I8!l6$I
z2xSJ`)>2c~ohDx}pRGx8EuRFw6C>9Y2ZnXH=KX!*bW8Q=dH@+GI8$iVUj(GrLd_&N
zKAC*gXT0dYhY?D@C8Zfq-^wwSty_rt57$ewa8YxZ#LSp(PDjF=!aw9bE5g!{%IB_p
zdA7}MfnwmX9(>CC0e!ZeOAb*c<5s`gy@v|?%FN764pAM<jXr=?NZrMbszt{X8A-D=
zyyth$Uv!z?y_K6l_@%hSy)2ZoHW{?Til!y)H7(0ehH=(>>5^B>9x^XuU%hq9PP%hZ
zm8eAOLW^;sLu%fMaX~6a?EFc637D#T?{D$Ph1BJU`)a==c*r1&aT0v7jdap6NDKCV
z9UG;pt|`grHLpys0vHXqqSG$g_+j{}wQBu*CR9Xhk?<iLt|`#Z;kfuP+N|f`Lp{dU
zlxt@){=<y#XVx$jJY$iNTQz1vZgJw}xz%oFVOCA5qQw)xoKnz6$X*)rWoYX!<0T4S
zXK&E2CRFExsOr$KAJOsQ2+xZt`Dw}?sPNVC`W@k}Cwi-n3VB@S&~nA-c)??h80I_$
zb>Z6C#YKDHFxG4#0#NY;T+7zh$L&5|%$#4~-uUg+Ts7NF%larW;KG@@PYj^D13{n(
zjjW}!JfoUZ)kKF#2b+p&{%GWvT=HzHnf+i^)!2e5ehLpaK;Ilw-MD%QPjSRKX;QX0
zVA5Lc(*aG!=n0-6DJ?zSN%in7l9w?hf$ws1w>C|%OOt}-aAvg}USyST@V)XF<DLId
zpqdrQs670`Yrd?Wk17qrMj}<AZGN}+D+tYr)3WJ@TA+I=K14WA+d3B4pk(jz-j*r*
zwi?LTNOpM-u<MO4StoaU-+5I#30u1RBiBnP?-SDJ*Gh|l&H5@S*U!kwukx)$#pP@|
z`TcDE=6JH}C+`_YHxTkq0CnuApF3Sp3%h3PlDB&JlP*;?RSivl&YE({RGG+FvJ4v^
zH;1<F@K;!!Q{Umf+%3u_fLmHIVSbk?q{(ut<e#ccGJ6>rUmhh%%?Txphf(_JCvTx#
z23B>tb#FX^tk0RMA?Yz%*@B_bMwaJg0Os+1o8jAR<oDpdn*hi409)AGxq=R4P^lwn
zP>{e>dzo9-*2@2C%pehFEFUKIyiY1CYgBqpbl(%VJ|XZM6+93pMlWxGoZszv+jJ{$
z^>65$nB%ScqRJRE=q6rX^{yYO$7kDn?UC;aiN)VOAmb4)t6{g_|6V=49&~B{YO~^M
zY;C$0o!nRqh+@KrcfwOYt3YYPB*pZ9J7wP$B}_(zjHqkWa8;vbBX?<x2(5b#DP^Cu
zv9a#f;DAt!A)`jPV7lO|$sCJr1-$s_Xni^eXff+B?S1>3`wEilaeCN4#l8p8LzoY<
zs4zRmqxUzSJ$j$2<`vNKLV-TO=-r{%^D8xPKwexw{Iajf{02-}hPUK@U%;4sRs8SC
zbvO6_Jp1p<mjBfYAW2g~BO35Kt_k@l*1_S$hbp>n0_~*SeA9}KcT-4|l@(Q0S$y;p
zp1pv`XQ71GG#Sch>x;fo?Bk|JTO2Q<zwoetvs_CT6!3#3zeO|{WQQ@9@sl69&-bK1
zKv{!t$OnzW^rYpqDmKIHIsm#1IZScifNcm7cr5)Hk_rSU5VH6|aD~uOp-*QgVQ9Q4
zfRzD=?p^~+7~bjZw4ASd1_Oo9|NfrAsMlbxFtY0Cb_!B5gStVqP><H9a4b0{{LFIL
zUEd2($*kz%1fJZh-KNjHKlBz<K|OQV%`G{g?b!MC3i~#(F87r+M7y&St-i4sb&&X4
zxbU;!81LBl<M;MbOS!UVnBP0T+_Hd@_P(Pg00=!H*`bc4WWnNMf1!m1s|(!#0abNG
zRJGG~AV?*OX86B)w1Vt2En?3%uN-&-|3Nf)KSZ1Xm#kdKrmy8!0*TM^W|)*%iVs^v
z0K-B@3UNVwQVc%P22Y6(9YyF%7G}K?>m%48lRQrrFpm((SbTwz?ZH9wtybhZ+7bXV
zJyr>}ff90h0<PyZn(0=gxD)B398{+!=pKNw2_>_LISL%w`-+SftGp1Uz4JE1qWmc+
z`~SYPlLnBuTxAtkBUO!Aa~d&L157nKj<<2+Vq&flzsd3=Lpfc2F;fiDU_0zZ`{twi
zLRI>ql&i{0Ijc|r&PGM4=1-Iguc}suW=UUJ!vrT2gJXHL_9&MMxB5~~02#UX&<OP-
z6Bf_SrWFA$7xUP2YqBfx-0DmYdwsmFe>iZ(+5Hd@@zR}){1s++18L83R}W5oD#$|+
zj+4V3B@W}XxT!b94jRvg05+gmWu_++bpIY?9T2v6kIavn6Px|goCD49hS=!qiwwJC
zz5*N!FcV)rnr$Ueq87(HImbW)fOao8QZ}t{mIdX)Oi)%3$1TMOc)As0<-Rox)a6x4
zIHH^E$ku8_NRQKR-RGSAh=rrWzGnVD=fU1XDei4Pil+(|fT#wb>dL|g3-uApdDUFc
zI2rAn<ZcQ&Lr%>OS7Ii^e!WW#VKYNk3uzJ;?pmJm>6ppZ?&K=t(3Ewa0X55sEJZUA
zTucMNx;8n9&t<i%J-xCUHd0h*=c)rCvzYfPg_nV3{e$NmmW0PR1$q3PdxL+5fWqef
z^&Xo~x*Hm|VqnwbY40xzg(&8i=88Uy5+%tM4y`URkBx9;u5Oqap!o%PsOJAHl7Su&
z(=uK!s5os0whWAw{#$;M{7io6(EiMMO<gF(<)DjZ9)`0;I6r5I%5pe3))%ad0&F6p
zMNBr1lb-9vk)ifYTxOk$*2bY##OgfRZIni-an@)VFTkD<IISQ|-Q4V}oyU&^xmsm{
zE4}kZm^EeHsPOFR=0$4{?t5MRV$Jkak8~X=Xbbkr!Rd)K4}y2J`_$AiNc=gO3q^Wv
zs}W$NJ$x+ddHkJ)?YN%{y&APN+sBl?)GUU{!i!jipVCAI$R|s4_K4Aj*YK4>QjiIp
zxh6-4vS|0iisl3XZSwld1!zET!*r}ANLgAs6PVqsb^ESC1d;(0^^`-43W~YRMmFYm
zW>q!$b6byaNuk{JKY#TPW4%uR>0by%uNxRGkcWzudY^@Zr3;i8WFzp+-0m}*EF%Xp
zo%(r6l(Vep+6jox|ID%brMk2nc$>&<zxoP^jZv#a@UA(6A6CJ6fA7q_gADLEU4X}>
z<?@6ud#q1IZU?V&pf`Vm1h0@f1FsJtoj@g&Sr5rq%US_ZEeLK_&>R0J%gc^vj(=Kx
z*Er#I)&Pw*!t2t$A4mp(gM_}oH72W2Tuc~-o2^d>-;{NJ!+`5MjGnAH<Hfa_a4Xf9
z{3J=w=CP#ebPnk6Liy#D)oturR~kN=7ydNd5T5Cx=D*yaju|CTSTsHEP86tiNNABB
z-tvxcGXWO+uZ+rsy5!A=`5kwF<$Li<Sa4P!Y(Pk%&gVN6U}1`+{xmb(=^kXFQnV<Q
ziq^~<ddq`N4ul?~Q9)|f+(7T6)Y&*STrD3Pv&=$+8?Kq2qd*TRYQXx%OAPZ&m4aaP
zb%RS0+}W;VUNMd8%ejR|HG-cTJ1-$VTw2U3!T)GuM4K9~)RZ71J}z%yT^2P5V7-mW
zmtzCn?al4h8({_7YT-)DcpfexhxRV^_C@4_@Xefi^O%_>_IoM}vLN9C)HSK^kQISy
zMJ^5U|4u>l#K&+8y{gieY?vh7>hGUwS^FHSO97Ta>*IMqpqLm$du6@OQ3RJU(JwMq
z@-90lQl}pl9MAdDUo{-tc{ufrcUg^gKl}C%=D;|d%X<|)G|vB(k039=mN?ipH8EJ!
z8&B79TmYCx6%C?1===Q#MdeW>?2h(DPWDBDj&mYFn=wVvqfvFjp2J)HE;~bJEJqf<
zN+eEA;k=i$yfn;<tsn&vl%C<sR8x1=Jt#xPj~mODrY8X~#j7z2e7~bG#%S<usf=om
zGh=NXCoAF%1%__xVp{)#H!89}6>|WZ#zo&CVLB)e%WZ)vpD-0iuT{klzd~RF__^Af
zV-pC+%rsm8jg`071<Tzrhi2A@=v$fX?l!#vY@-VK+m<s|Fadw+S}`;K0@2Lc$r)f0
zerH@;DG(lE%-mUC-159C^LH?It_$^F|KAYvijpYY_mO^Rz*n1iUWI1m8H9#(1JGDj
ziQQo@v{hFK=tw$c^M-P`#&nZ3nRF3njdA<yL%S3s=`fHA#{a40gV?eHsCuAe3+PM=
zQ%(l(pyI8|`=y#mny_f8F64`ZxJXo<66QR_imIcnXMHr4FLq^i?MGZBvc!_>PFq*|
zk)y-MC!&kIG`c*(Jcgbh?L9x1ltl*z1kkvsNx(C@!6&$L^^x}^M8n!eWq?J&x^l1N
zH!@u2y1(aP`l5OQVd3QDJX3A<Bj%T1>(}@ABhf1K-=#ZAK3e88J#uP8e|b&?D4&5L
zR=rw~H$ZCi?iH~A<8y>2*Av3j)D<;V-+N(cX-M&G^2a+eiqaFb5#|EY7XZSK8Yf`p
zY5ZjZl^Bu!;}_LnemqN)R<nt_zJb<g*_k<06B7#~_ZgL;%FJlwvhWUvB9}zjsFZ_!
z(I)AD<L;OazWBk+zN<=76=<xyvCHB9VHp?}n+do4_v#;}3t+kC?u|l#B8ZLY%<|l)
zn_M6I1N8xN&uf4lL)VlhW3i>s3dXF&VGppR#FIYy95K(6u}uI4;)Z`hQjXTohfTfO
zeb9~>V}0T_Jf8Uy0P(;pgOs({?h?RrK$J!w%jirVtW)ldTmb3d%SS0L+bywG9+Z`)
z-97TOSci@diaA_1$m5K7r%lUzh6R_D{f?4+xkBQd6L7HR3_|UL)XLI{o|f<WPr?;U
z)l0H}b=kJI87XS3>PFJ(-9C0dTp!CVuSnR{$ulzphxp#f&^26MrBlSjt@#stb6|xc
zIUtvzYL`V>1@t^o&`o8_*K)$2===_<Z1s!eDq0MZ!X)Wuz8l(DIN7v!L_TDU$|WQ_
zk|!NfYFKtS(-kf{^e{LhWp%hPc1Lr0E)2enS!qSmvOR)(x8f$r*_b^aGA;Ytu3}=!
z&dDhIAyxl1`GDLY3S3F`FPNFS-LAs*CWDllUz34nOB82pjX2w!_#>+}7S<lbW0sV-
z<CVwKLtjt0FMt-$@<Lk|2nkrHi)^O*Dhpo8x(Os}r$)SM*5*xD901eANO3n2Nz4A|
zD<d_q$9|y6P($Y&AlxRrwqd0kT^r|scLy1SDiM2*SXaqL-vDt{^RTsGsTt~3>g!%M
z>QAlnFICJ3qA>K39K;2=gQQ#DmWwSHVw@IR{Y}3J0Gh|n*<kzC>H}z4K+gcnwKOji
zPw(R!8GYOr?m;e^tC<H-84w#*U6Ld?Q%<{3hXepZ<WZo%oHmG;5(0o=vx@Ey@P}Zc
zlA6qI&L$?PIdaehUB|JJb}HCr4-WRZWnPv5L>U<A?wE3G@<KqkMRgL2IWlsstC~A!
zcz(NiBL&I$GVd7`t4r+P){#%CIvDAzViG&hs%+Vr3pg;I|KQfG>&bjRLyqgl4~{+c
zC@Tz1SnPD{Lz1eRhEg?vdp9S=U6`N!m@Q*HaT|AWiP-Dv%sff=s+W}IzrxYcspYZb
z#Us+%jx$-psEl9Bt{#<!hRa4v3;6Ffs?LM>f}$Cqqs+q#y%}fZ@f7{HaVYGKNl})I
zWGDv}2`8>-A|OXp&GPV2E=-Fk={%w^wsc>LXZCdSox5Q5W-L_T<r}$sau%gV|HKbi
zEc}9L+O*Ox$Y|A_Oz76?Qj_4GYTgh40j%V7pR+{&XKOVEYbAi&0skY#ga-x`$UXtp
z>9p>;4I$;(&&m)Z&_u>!(m0wD^7*XB0Fhy|l#}E9W9hg-&J1vmvIBk=`se~Q67BAM
zUbH2~StKzISd8&ebt0lzG{-6h<s`KuP#1cHwg9Ql4^Ye+&n{tU7QVz%RvuMV#mhUQ
zp$1otEq^b4HF+_F?4<sf8l7PYur0Ac5L-q#A%w2%a8r;DMewEXgF^g!S@pwSr;Wmj
zftC6f81ru!6$4%W>`+|gkG{kWiegZS+^HUQ>6#t`KB&wT-4iFwJhbKrL;--XeH`>H
zGXrY}{XNk7cxb|ii2Y?stHo1Yw~hyXspZV1-Y4}mKu?6VHtGzJ4@|Y~FsUYcUwhN-
z!xo&4>^d+RDgYhX+M^x6*PY@#tcr_uv#Lsx(Q4Atdfv}jtH`l45dMInjGu~=EmuEm
zw3$F^2)rPN%{}2r{i+X3iwBGB|G<H_Q@JKe-mL%#TCy%FM<JK=_6ce1>|m9cD)R2V
z;lq79y0i*$^r^+7GiHuhA?j#->^qsRe)V-=CayxqZuKRRA>;-eYEiz&I0PR}AM16F
zc76jJzC>KK0b9cUh$G+TOgP2{>wwJYu#1KY-YO4r5ddLVeNA%G@b#PvNEREca5$LG
zbKc;4YGGnPXm0(8Ky4P#^Q_EyrhUA>;^QD79@CYPK{rO+m`R;0_~m=-AutbJL%T!8
zBco#E#lqiAnci`w_JNHM5ou@Hxz_GIe48=)s$=otbG>Iom{5FxvZX3CKvlCD-WHmG
zv@Byns&gTRNReXO&b<cIcPSIsx>z8;OA3n_f>VVTDW>Tnzf;OEF~(|<$cAZvm>ED+
zr@btvz(62N@QSlf`%9R#R8xxz+#RBSa7%Pc>w3KdBCBg859_&FcGJhy(Qr~66-}0k
zk}#Fr&NYk5U!{NgMKsOU9{MT*qJRPRe=SHcyy*M4tNEbn?d<Fa3wwWGX#Td4d&b%=
zv*zqf<6aLQL_2Jw7SrXl(rE22cIjA6u}-b6z{3X|&gS=ZXdJi=Jm}_Ag$;0<BSS;_
zkuP#5f28L!U%st)Swybi@a)+i=UxSNx*YOi?9P&~f3oP;kyptqraW#l#LnboO17=6
zEIFK0d}Ys*tJ9bKlD?Hy@Y&QxZu9TB+E(D{Rugv4(=@eIJDV0a*?Idj-wzj#)xL22
zeStNr;=l~u<(W$T$3v{xD{Y=FWN-G-I=EF3*!(F5j-(v$Ug($WZzIphkPaI0NaW)K
z4lJzPnk(1m#c*II@O(e;HZ`CO5MUpAVPkry2+|4$`udJ36U?(18|M88JP#29FF%1Y
z5o0&h+ZBT3DukgQgaj9GF~pStZzzKu3jwtIfVVF2Ix=AC1p;5H{{QHL9f85%FatQQ
z2mx46Xh0S8SbTBsiQkcW;aVZD()Y(sQ{C#8y=>Q(UCVc`11|l0`9(i=H`K5T+@EIL
zxY2#m{BqG(;FYOG<s19CK2P^@IltgVQLC4l==Fk!pF6kbu1Vp2^($oanMb_szsvhJ
zP4S!;#(7@-p5LB{dSaZND~eYaXmfK4-t{<ZIlsVrefrm`T8G^4ZVT)DcdYYUf4}}w
zQDWiFd8xoP<F`!tAAYWIDKXal9&<?7_H>rXExwDqF)}#?JD~mpp3`#eU@)+}Syq1h
z7_hyu{POWQFS`n@h1s*)fUeTsE+=np@T_(1P2eR}(waA&cWnpWaU;Hd*|9jEzRWOt
z<>e2q{CsVD+jP^$Nx+70F8g^-mOmdBMEP&Za|+rOp(1f-uchEyo1%wqUVgFh-<uwN
zy8O|+YJ0xQ<gU+L-u!d@WG*b#<ST~+Petfo`5O0!lT`f!!3T7By85}Sb4q9e00`YD
A00000

literal 144900
zcmc$`bx<8k*FHK(fP`QPf#4oAXwZ!W2yVfHI|R3ldw>uic(7o>-Q7vB;2L0K8+Ui-
zPIBIJ>OEEWtNY#h{qd`sn%dISGt<4~S<hPC!EfayFdh*;0ssI*O7e{o06h2x07&F$
zh~O`p8A@IN0su(85ms@X-kEcP&Zyx72aHCBkpAS4>3%QhIXF0$C#-i94v9F9CyE)1
z`uiW#XUiph9AkA{nzDa9dLCq@kwb0W+t@lbw)~S)W~jo+3+{z1rs#{k<;!RusQ6vi
zl^9zDjUoVBWCLMof#UU_kH1g)zDU1+{p&kxo8R9bDUhEp{Qqr*_}Gs8|GTe$wL(DQ
z`G3FT|JW)3KqCI<>Hl}FM0^o2|9P(ezT?08`d2H8HURZMgF^AYZ1u09j9{GipYv3-
z*O0d03tIU6oC{Du`KP}H#r}nh%X1&o0iUx_Tc5@>qL*|``NhRPlJbC5bnc)oj}Jv~
z2Ax&-Kkvyu1xRR$*ED-%HG3HA8<SOQ4tR%T&|T#V-RqiFjUUFWBj~@q*F8x~^S<N|
zSdZz`<(}&psFJ<XaJlC>yGi-sQEi5ml=N(f|Gvi7?mWS!9g)&qq6_2hbchq{2H6Vk
zq<{0JGxJ41#9`+#m&8AVMQY`1bX?PX;{Ww)!_(X+>0Y<W6^=)M{;==7xPtXuxe!b1
z@cSihp&M9~0I`7i_bWL_wp_)x*FGK|jnSh=we#0Yw+byDWwdRbox$D950O31Xi?pz
z#n)bz`j+S-=&T-@T7CQHEoW;1R58UF=N%+Ki|Aq52a;ll_ZBfA*^y!MkWGKoe)&4>
z&Qzg3R;$eMJRLIM&Zusy-5iGqFnZrE_11gwaw|lTvY`QLH_dn7yKt_~H>2Y11zDCo
zwd3jBr41B=Wtro9R;T!I{+@`sG=y;U_>yPO;_d5avF5!9fHN}w`P97c!Qgm)v)$kG
z6oj9^PLo_>zr=C)c%P4jgsbGgfB!y<3@uOuSU7ZTy}K|Uy}ZqhuvvAe@3*?fB=uQJ
zob-pBZ*v<TU6c7}X)BplrBZbd^54#CrH|aU8=~~<oOrs6V;+weT@Hmm=XUwks+B-r
zIB8A7X0vxvKQ!!fcX{4`v%KbgcUmgPeyO$Zg)`^0QN5BhsXUrH=x%ZJIs5W~7{F@Y
z6=U0S&MR<#ksm7YIjPZdfAQpVGI-(dPWSzc`g=JE2eJqhz^~`vu>ElU{I{Oj;l_r~
zRCuufC%eC#uD+Dp-tMC(YI`pX2lqUc5H9TGR7jOa_7z6@%=n&%XX?`3LsvoSelb2)
z&-(}uz<m~PJzEj9*Y9w%QV*GG_x5U-nSo7kzhd@TOc@;w(cpM71)BzsvUOOM)6nRu
z?Qle4fu+rC|CGzYMf%)5AK&!YQ<ojSI=juj{u_@oG6Bz>6TcM8jg`<WOKt{+LXUG<
zeN#FHhGx6Xf|!zhDPe=2KpA!V5WaZV%l>*9;I*QPsOU2I6T<8HBEXkXYLX~h?&Kyu
zrUa?2!=9=uj8s!YH6=-1GI}K;%74>LA(>BsETmS?2XBV$?}=}F9FD1!uL5x<L-sv1
z3JQHQA&PqXz;|F~W+U5y^U~BylnQuEI@NswGfUGz11u-3i;D_Se93%t^3@8BGO4ak
z_ngfjJ?qDMUYqo!5tGAoUbiU<q8V4s7t^Shft_sy`VBXoE(rRw8|l~1MR!ZfwaF<Y
zm5xUn!9ZkO)a}X<H$dLtIK=|@xtXx+>!eha2|Y^0pKmD^sCT`bPIQdlv9jiq2+-8h
zA`-YBBpQ+<7W&|JGjgxHJ0cKH{;3n)6llw4?8)EMIH@G6*+KDL_$KeQf0FQz`2{VW
zeprB#`s8cujs!)21pS)?1Hf*lqkbaDFuM}##<Llb@A9i4#9+sc%oZy!V>KSGuCAt9
zs?&-Aq<WYtN}M^uMlV6Z-h~NZ0$-D!-50@TtIrdVf)s{_NCmvrvXw5cFK=$I)tfzD
zFzK*+Tq>gj3*(9CgkdN^I58wsDWBSKWX-8{D3$H7IzIJorG4`1Y;SF8M@3E7P0ORg
zc(FfuoWm@_77GiV-F>U4vodIdQcxzo-|cMk0h{6?!0OTU#?q1zcvtWK6p&0ZzQ!a*
z@)bMIHKG##+hFX8`1;FFd<uS4TT^2b-Q#h-^$4)2c3)4Ou=qd<vB&HWOA}c>bRA+!
z!2*0rr!RWeh3Ii#wg{#!cVliZl!ymBAe*W_n++y8HdT0mCX%f*pmk$tuJHgErja~G
z4-pSf<2D}er^qz5nQkBgj2+x8+_?a1on{0;F{OQWPJ5&JWdeuOP>s)-)pd9K+-Z&T
zvcHQSyOwj-voq%!<rm?Iz5`n4uX<J*&q>wjG>eJ?IC8_f#sASnr&nzhF@3eWQ&>O`
z_h=JRqdTfIMkoPL^n=)xQ#z?cyBQ%4i5OsYnK1T%%)ChSJZ&fj4*Fw`VZUBODB1Z}
zx@`q-){b2eUS})O=t?5`9)&Pm!LB}vU!_TBV?H{;dUT>rhYP&bP(=d5G0%!ilZ{nH
zR11IQaMacFg^FcBrglL|LiDYYs&VRW3Da^$YFl}jxwC6kjzjgg3n0O;+kx24jw%P^
zm*PE(PxRV4frS!=ee7F3+a8-6U3yafKE32Vu(^3|78b)-k!IU;od~+ALR%}x$`7gR
zp6`9GgcYR-0BCR+vM*>Y^muEBHuP!(-T|LNcOL`!o3MU;X1B{gt(yJ03NKq79VCDU
z!i)I2ci^#UCV@t+?D-q=_f#(a?Tf6-S!KE1;u6#yVn}W0Lbr00bULrFu5<s9c^9g-
za<>^>;8R#|5nWx^O`kNcm{6m2w;(HAXq5>7uOkXGGF-{0aon(LTe=+EXWI5-%k!}X
z-ZH3?`P^knXCnf94-o-(=r$stvup$`>|FL;W09Z&ff**fMY%tWQ00@3UkPZP+vot~
zt=~2p$?hqoDio(r#w%?F4*R!Dn-0q*jWGZN17RT2l_Hq*+3IkVvP5`Fy}u3y=GGgb
zceVBsQs(ut%&2OInC@f%`3nYqLFPwVtcWp(!J3+1BKGdMUrA#T^C>DT2jxDQW2<k{
z$X8j^0{%cWyM(E;!jcjJ`z?MzHi=)H4wrRIM<+Sx@s`KQMdHhu^X7w{Cu0v3lKE|&
zec!Qe4%jaZn<mPVlH$$wS~)pk_(h?JmN#AYvh(4!ZHyIKYRBglPAYj{8l4JRa-#<#
z^6h3w)Ye@vD*~+E{bj`v&>4C<Ox&2=dNwl@T7WhHS@`B+An1g!E1ZzsZ7I(ha^`aZ
zJBQy^WoV3uoWFLvJ~i8%6f}H)5B}4)as)b~QPI&WSC4nS27YQD!=N93k$AIv?{#^0
z-*R(R>5?$XZa@2}7JeUnx73K;7fKm7J$<$BqZ#EXaB6DtF(aGi6%Q)|gXerQ{X=`U
zh~dJ#qJq5%4;4_dx|dV<n>cxR7QAf)I0cS7<L@Pe!h?fvwklo9bp%9kL*nMHF>R;n
zsHhl&nC*Ahwup(w+~#-k{ZY<L*_RJq`u_HY$O+#KCc@`XH*Ij2#j!ZuLr7(4I0YDA
zQq64SH{FQ1drqi5vMbv^YozIzmh31VQd3s$zN4Ky6*c(uX5!kVNSDX<Yh`7o_Pn<G
z<igGlk4IMrNs`*|so<sO-PSYsK$<}3z_0pmWm)waIJg_FmVIzh)N>Q}@SDRiGX(**
z?wLN(X=>%dUnR_gaG%pwTKu6Lvjjf#{-jdoOc&LW(F*;+@zVVbl%DBn3-}<XKtpF@
zi$(g|gXvHOB;T+%{7$3qty(_CMI~|=?i2~#X?h$UsU~WdjJzLZui&zVaoTTDHmL1o
zF6~^(Kxx^lHN9@ec}?9ND-8!)wI*&FO@>;i&TY1nYIo{Wqs8yFY7IP`oL+Jjqf!dB
zMhecw$3)N6OKOU%wNk{SdM)lA<Cm}^xvHwDk?}b=oP97^re!J0EAq~QBmS|+c>-u5
zs<_8@7u#tVrA?RR%_+OZRh2G<HXGLTjHN31<DlKeYt_Zag~6uzc&0SIrhh97XkT>o
zsDFx#@PY){W)<(^(!Ey05@|2*Tv&TZ5rjE1c!R&?r0i0Vx+LqF_ydpc{@XE6NQCMN
z8c=`>Pj65W(a4!;X&7-|o;;r6y8D&uQY*0}DV=2OFCoiFM|WiBB2Z=~z#*t;x>oEh
z`U3H_it*Hlf6{(u4kw|U)nt0C>eb9b1l;HLq0YsVIfeV8`HL<{8e-chjib;FywG~k
zhnL=MtDiPW!`>RAm4ufa?S>BcHYWA?32X}p%#x1O0)H^Y2ah?i)j?t*H&Wp0eE0Bm
z1`#m4rY`Oylr~{@aC~Z!{f18Y&2q_%&jzxNuMy6ff-v8tZPw@r1~7H9zkk9rkeFE8
zC8zOL4-NpJ#qm)=B<6Z@*vaAH=x~IHbPMx()XT`Qf10C^B5y3g4e0lsH9uc)CGWLa
zhjL3NrMm6O@ily3w9|F>-W>k!m6=JY!f?9E*aJBy)@-yv7m%Mg!k?dRFz6JWSMMDC
zk2(3?POxyXUCSaB^5o#s^~83v)Tao=cTcDBO_k;s<lEe2K}Q^@KgJ07kZ2efo`xeu
z?Gg$|uT4y1H<c`^uiT|IrR?jI8XdK*a9e+!8=0s&xw|{d>7>Nxdc1v2OG}HINsw^k
zLo4Ays^Ft)9^GTY&I_PD@bvJ20K@NJ{o-`mp=Yn>r{d`Dm3~e@DjjXC>Qr2uVhx@v
zW02zevL_>BQwnFSF)CkjtD7Zi&yQ1^-66*a7iqcSecq<oPbce7<aJw)(*d95Dr~%{
zNQ;8PPd|N0RNT~A*E^~()KOB>H?%Sa2HPScR95ByQD{@Mz>oG1TJ&+riEfOg-y*wL
zowg@BC&Urs80Dazji(r4P#R4MRES_&sY*e#?JN^Z>7&Odp^vdlY`3RRlN>Z0MMPv7
zAEbkTlb(C5u)yMnh`)#^qTKOx!T{R<6?ZN9ODYH-!w<Tcl9CePe5KWOe7_PkI<JNY
zo-Ns58idq}UNSMIllfdN5}~gT0Xjh~g3XPmn{#1(t3{fX4}rmy)~5S~L$=J1!vnI{
zCFPYS_>qXdS63hLvO{!{Jc#$W;OycO&wxjdLOD2WF$iXB!P^v%0KSsO*5l`q=GnxU
zi%UDkS9tGzAo=<EnYD&ymPRHtS+oTz1=9^ESLMZF9n;exZoHfgE&SFkkUtRt(3tnF
zk&%YeXet2)94vE_$)>zQ!9vr=e+B^W4$m80=I=jvH(AaUkj^blYa4?Dp5}9@tl>tZ
ze3otL*$=U8e*W~Cf&2c|QQ`hR#Pu^lRYKpYd>Y?gb$mQq;@g3NNB7v)AAf>cmr2>4
z&?$6%lna`81OVykd>WK}ATlOq(qq9D__Rmtz0#HwTgc^kI8b_eiZR5jbpt|Qb=67e
z9($zj*-g)!pWmIH_whD2{2p^nDZBSk^i!4>atRgKP#7c9718)h-J|h7=s@_M&a$(u
z-h<*Z^iLr~l4c0RLQSh<EZ+R?JC6bWTF;)DQXw-!L)YEnh*}$XAMsPt2yUaTi->uj
zFw(cdYAV__CyDAYC3E^YVEiM{>e(}<FvzXBSiSN^9ezPa!|Cs44&uKwZFaNXj*;{C
zjWY4gHIC=Pz`NF~$>iB41;Kki0=Ha`$vQostNyux)d3fwnKE-)fi+xVZ2NM>LiIa+
zTm=fLBman2ol2Wf?fIfGJ6_(C-MQQ22)JoCRl<NZtW2a>srh93T6X66@bKoed#Hg1
zntq?mYGSa|Nj>&-yw>Hsm`FWAK9{aQD@_sVYqWOq5Hw>H3EQ5pY(_sYs+S_Qm8IWK
zmfQqq<OQTsg~;>*3$gfV-ly5QFvidOY)x5J#K64U@}*h)OPhPGk8X*UYIn~Gi4WF1
z(#VAD@qkB;B~2$=_ceP{s6ey(i=C;a=w^?;RF4>Miv{0#qRBhcKXRsV(Sd%AMT+V>
zsi$!^dMs1z(c-p#%+e|$q<eSr!v*dh<=tckkD^g%eheTWcn9a6EtnAhhBLlm;v=`X
z&j{4w;#K0}14b}9CJNONkCQG>U@}5iCygI|EUB%*tDMe{S(^K13r284#>`mcld4Zl
zH9wA6-}mz>?9aO-)Mw_{;!oPnvU&H4<mmOM&@(aL9<H~}d!BPNkPW14!UP1layV`;
zYM)t7DX6MW67xVsxLb~jCMGLw?{WAVaGnr@#)r@ThR*%!jO1EYv@Ir=1y*H(f1Qx`
zYs-h*%Hs;goj~77W76K;uP;FWd@Ctgyp3qNTrREF=YjTp=2hTuDTa<OfF@{lsMSP;
z{A|xA{;V~k)qCH+bZYsLUX!QOVl=+#pob~wbvHIpyk^p%yIr$^Lu`JJ-Io|`Juj|9
zICp|MIh`ObWXXaa=3b(in`<>T@Wz84e3*4<ULN#rY5n-<(S8xa%E}7cCXqkt87BlQ
zzR!eGk5)dFRw|nOQ%?isfX5k$=}<Cs7lmYw9L=y|PkQFA_VMmk^_L!w)Nh$YRp!cF
zBUn#ZsLMS>s;lU*NO<#;%$Tb9Iuw$2jW-tVri;ryyrET~{jhjpQiUF0b^MrQ9IG_r
zw{QOea$y_k*aW0kvqzo%5jR5jX9~6Rnd0F|&GyIgXJL%H2T{r_8{UH{{01j!t=^~e
zGc19DC<w2;yxPYT71&+$sHFx|Yd_!3&Gbt1xc%4w#ln6g(i^Jd`{6?dzOGv-Rilm`
z9DHA)8eT1^%EeA%OhZ@qhZ3Se@Dun_uROY_-FrD?s)HZWDx?hk>^H!htphbGvNAVl
zCNIkW8^}w&2q!}Ts6Jw3aomK;^n#|;3YsQG_7sFm-7I>kd=0nTEc2O-I>h{*lrO15
zQ+M0GFQ3>AQhfJIn!L3K4G)OE($lUM*IN_F#S9cTPc#%p%6)Af>a^S~HIud6=IOyn
zp%)96@$&-NjgaQX853i(bv|C+-}a=Bg@1J`V>j1s+4O3Y10Rg@(AVUA_IKkE5pQ0{
z3zs=v>zcwqvtTgyaTg%RK1kE4as8zy#9s*&Y>wWhH$TP~Fndu~V}c*ir_*FNfx6%P
zWR8~@N=3{e#V3k#o+RKHU0U)}@x3IuR|6{6meE;9Y@8}<gxqn&R52R#mUCl}UYXXy
zA3sr}wxYs@&2bOr@g|;QG^|8&8WaJLHB%ejr1;$8)zH{jKb-4y?`KrB(e7p*^BAzA
zUW#gGsu^{ziTUndMUk47MFd^Wr2}I;^qq;mlY<7=Lk7qGLxzywuA+^Q7%e@hL#tE(
zpBVR`Q(Xuo&e&Qh^qS+2M$A9}3-ibn->^-du$hvMrUsZaUTw!<Rkhx*d=;W9=`I7I
zJ$QgRJW8-{PN0F$VrlE=eRURNZxn>kc9e_nebgBtba#Uf5JS9cs){nG+Li3;XYo_L
z3`Z}bNK<V@{MvT-!TBX-vs&m?CECCd6_}fAxjphadu$|*ad>#h#K7>tSLpsO-a9TM
zubQZ4jH5pd5~hRKfeQ&?Gry4pB0q_>qnyK=_gMieSWCQ4#_84RtKqZa142&2ve#|7
z=n5)o6M*j<YEy>RQLLrqjH~nQhk#;~L9>UGY9Z$d>nK$5vlnXka4_qkP6l`By?;pr
zE9f|2=y4<h&L1=KbUd&|Lg90}TS9<qlh6GnZ;1>p=y0s;U1fz{kSqt;3Vvm^K_(F)
zWQDSm@HZsJ^>nnVmHxssJH8&$3n%4$4v1rt@p$hXEE<_2w1E_tjC5Z!|6JJM#a63N
zR>ZopLchlvjJtMs78T%D=13I8g~BQMSTb$X_GB433zg!<jjgR$E$h!5-`fEj${q!C
z+A042NQOpyw0f-%fyQ$ZZ<-bJ2H4JADTbZwuT|};`<F)8N}I%YYnDUeVu3OphM?N5
z1ZVnOdOd5de{h_$y+l8K6UCMp#Quv-wz@I}<PEytNa(gkF~syK+vK<ehe=Bfd_&T;
z*U2c+l|k@THhYpQM><1iouQEZhRH%9m+KFY(DoQJVAzYpX*40!?7Z}9I|wA*IGzy{
z6k6i5c$v57r1V?Gms0yP?=SzzE<9-kRl>{Ne1Gxj(^B6>tR}XRC@9qbY%5fO3{rJD
zl|CSWW%DFdj0CoB7B}d#yK45~17EOM#)J`ev4m6tbzt$#xtjVUVjD=KJ$e)Zyr#qL
zPvOiy<+Pe<iSWiI8iT>%@!tFfH<Fq2jIa3cfN4X@Wx<=3nWwZvPT^=o92P$l6h#v}
ztW0Y#lAOZ{xz|Aj(w1rAh1v<ZbG_(oOAhyyZvpAp1dh>{x>_+yH-U`jhK-*GqYU~f
z)zp6MHF)TNAeXNJ0YDZ$*&R#qPL9iwd)D)_*Zd2YU&$Uy<$4I7Nv?d0cnbOJG;7=+
z;dmGX83Q~&TViun3icLuW@e_@y~JfX=wHLh3O;jwD5~N4S=D2dV1fH>J59t)7Ysh3
zKi6vJ*&k~W^|TiH5WFgj2(5hjv?ifo+b<gA9m3VBKm$)InC@|3Ga;0HyK9`sOhR?I
zqzdpjNzc%(&eiH>NiYk!9q|L&_0h8D&0Fx&_2%azfBZ5Ut3MLOIF2^6%gTWtRS;H@
z?fV<E)2`B%Te-}UNa{;a)dv!|QprChCpYoUxjtfPxe}^mOurT$Zf)D%^Am+}pdsH3
z;uyG?1W7z5b5)<<u<XhzZM`i{SDYTrxG@{ZQP*?-N=kqWfEL??Z!I+HCFG3V<p|<T
z0$AGz;0-^c<aNF1c%#!q#q?^!|6KQSVcAwHnu&?&a`jxb^`<3cX#IS1ZuizjH^+k+
zXq$y8Gix_ASPoHK)$ndkhYhvd^bAgz?ra$BH(eqs`yL;~Zudu4X}xO}dhX^H2>Mxh
zc}y3V#?J?3<Y#H+BT=9aMe;ouCU0jZ#p!qDn|98aaRi<Vx%pkze1RGrA^VSilx(lT
zB_rx29LX#hKxmS4bKSz1lIkfNj|r5rqCor6J|{-hPRM=KjMb`E_=_Ns7Y3{U{vAQ~
z{>umz%GmdBGwyvGnfmr4Im^)jK`0VpAG5PeBdP1}+sZE;bJ=c{J(~pFPi5b8wvEg?
zvm3unD{Z~T0GPF9-Ay-dl+Bm{-^xm(p}j+ahVC>$$Hj5jn~)6Vjp)jc`hTUh48RoL
z$w8j&d*l!>7sANc;1B=?-=RYSn=2a!TS;UHujS-)#MR_o-<K&B-$ym64<U~&@*}kM
zwa>kO6jT?+&r;pH;Nt4M=TC3TGSujR3^KP(yvjaTPBcJ~W}`U>Ew7F;LZ|6izIxu8
z*4R9rw(Ox-c<DpZueza+NDLf|KRp%?dtTwad<N=&DO_^w{VRspt&Sc?vmqVL*0o8H
z_Co^FhVG9iOH)DAJQg>%{)7eI5Q_z1gpGn23*x%ck!S=VA=w3)Ob8X%6MJaY<&!7S
zk(kCtosVznUWG)Nx4-*Hm3!pc<sVz|lsVyhaM*JU1j`2A5AC}P`B)DhLG8*ijj-`c
zwX1O#>Y%G%xw1xSzV<wGaBz6eUxuZ#?0DYN&LYtIWi#!^IC67k?dOQVj{+t~&l{vS
z_Pm1Dhf=yu6cYLEKf^dVrs49S#cbq(fN)W}$y4q{{8)28%IUrwcE^IBmwa0NTOFOG
z=&#>b%-Br+3ZZ_dP2CUHUV4VNgb{F?PKCf*OmoI)p1&6h%wA0Y4jv#K49)*x+v=LO
zDXp(oO8O9Fgi(Bn=*@RF9o&w^bQ~m9*6qy9BtXL3v>HrhxQyH~*)|j%{tB9zzt&ni
zi^!6!<Y3ZdJ+2j+1aaxs)^wnZ?zf=(jggn(0;a_praoBQ4oBmcy#*FID70SNcU^^j
za91a{7+LSD{=jpgyPR*|B(s&Q=UQshO1M!$F0>OofY)Lsr!BV<f;T6PYo=mOPP>an
zxu&ut3i}i!p>Frh>TCVUvumld#k<bh5v0?DOr(1yGu*dcE=jKt8ph;m*h1=Gx23V#
ztOylyBet=$7H^FeLaup+)rw)zi=XsYhbQ^VQwnk^{Bf9eJ1`I9*Y~>6dt59R^&GMR
z>t>S^d&<<yj{@dD^00(1<ugZ;6`GWkGzYiRM!VYH?b^~J3qK|ucUfLb0fWK939Fpt
zw@9dGD8Ap3u5R|*OA!`^7h}|8lz)?`KVFR?|Dj0BP(Y+AOu+Z<nrNqd*{rk@@e!@l
z+&(X{e65YnMiSW-0^oVwPSy|Ptv*vd#upMY+8g6o6C5~^-5jAx^|lkB2_t!MaarrL
z!Mo1v9v%#N^Cn;z3zLLb3Jd;vzil;Z+hvs#1?6H4%fV)qLkDGwUtspdmWB9iU820u
zyV;42GK=c3n=uvo^U#JGwB!AQ77SToIn$a5p?ibjvV8xKa<@lGdI+y6@xln%-rptX
ze<O+(_2}c<mU8F1x`Pe;avS-OD4T=CVTG!Eyj0pc$+28e@M}vQe)CE2CpZQT_%pk8
zpUSYo^eFHpR=osX=bz}!e8}Fs?uf_Sx{TnPXs;DrGS5nqGx-yYT4O$mo!D#Ltb|I0
zr>fCa&4q4^$8y7OKi`dkE|7pEj>}5Y#{;4TNDlSiodpTKPEug|+Vi!(xK=hvTPGRy
zWM8T_ZxVi&u$MMU!^J?Cr@W0`)0$G&XXknMOW{Q3`EV^hfQ*WIap5}35`gKsa6$h&
zTtMsxD+dHrK4Os^9IguizOu||ubf7HF8YIh+QfKmXV&X2QNaeO1iTZWtw}>Uf<&lr
z<UN<|jIxrNpsPOo>SLEqBNiSm9@6W#Z*v3c-n$Q$MSlD4e+2?VJRnZ!egYI(5fMaX
z8&hI1P=z9ev#!3(pllza)kW~FTxae)e=Z2hRP?BWb6KW;LX~H=CdrJo<oYMpsGk;n
zAD`{GrE2m;kbF8kf|_BG8BH8MUEg4P;mSWxRLaEtQnB3b?lB)kzi&bSOh!HMEjeTp
zx;^6dk||OuL_OKoP}Zrn*nOchA&a$kcYprO5?H8@pZ7ZcwQ6ASo!i!w)u{Spzfi7(
zK)_)GREUCt5~-nnQUQa#DMisv!;$oM+D!_h3(q@zvR1JnH<#KOdtywpyQa+(=H{C#
zRI@={*-sIJ{eyEYMr2-aL60?RFp&<?a*LlDl->ROY3hzb7~#-<WWV_~8kPw1@~sy;
zb0$O04}q}J9A5Nz^uP~b!~!O&j!sqF0o*J7yTjvkaTB#bk?&J%?VBMlB_dJ`M){_W
zLEwk9%Yeck=dD1(>rVLCGNmTtb~iwNZt3`vAvPr3u%lC)?KT<(W24f2*K{r6@%Otw
zQ~OsW_~glxI_Fh|A^!7^RZ<hwF+`{JAbWGSUaH6DgGn;FKS?I^J8YJW=6AVccict?
zK!RJy^O!<8-Ix56&)tpp{L=b{Y$Q^UJZs>~jS)V<`xWc8q4l_zg3uEcZ*L0Vi@M6~
zRksCz9r~s(Rr57g7)%(npp~YwSsV{QY9C}b&;z^Ld!574jBIU$wKCfg+v0XTHc*jJ
zPuRn3fVPf9strIw+Cp61RQ}!jVbE-MeI~4MxmS#)_PM!aaqrL`Hi_y_=JWHu=~#l%
zDx`rSWqzrx>+P;WTUn#<5a~nN_!w)V`>(Hz?46vf<>lvHgzkF!yVj3|t~W4*gvhRj
z8XM;tmr}S><9k*Z)vd{;9Ii`lXIys8#ON~SJ$GRcUB}W?olHp3SRzk#^(j8HPW1%F
zW8;Z0!I|~MgEFPf3K8}*qZ#~;dz2n1F5L0YT75`BWD13WQ93J)`R2Jyf`Q+!vsRO7
zqmD8^t|x3HNEuX?PrJeboS||SW)K8`D7en-yl%{_T0(!gZN6U_WCaXR&Yhf{KZgZ(
zY}5Xxr9o<sJb;v;{o@(DbsG+95Dx@`$T;LP*xxf#TLiUtHXPzNnEe#%<IU~*maHKZ
z;diOU2o)*_vlE$Tfg*UV`u%D9k4p~fqD6gcYwFV03ajm|XOt5Hxs{d6U7W2iIyzao
zJ)#!VLGFmh;O1xJDPimNmcPrqXS&BE4^i;cD8J6r238Nj+~N@fBEoE_5GIiD-ax34
z26}jQ1k63JIw9GF`*>b2-s_scl|tT3v<G4GH2F{|XMUgQTW;HPax{}OAoHZ94a!YT
zsI?x`+wtQS6-BDGzOfv=P)sGY>6fzw(^$<AwV@P&XD23t`$x|EAwz=h#~{Yti5m_a
znk<2J!ptwn(9f;(OvbltLW{$Uuj68m*JO8zak`4?ot}0_@O#_!MT=E}Irp}*{n0`e
z0k55fIGctV1NV@`az8)Lgzc1OlW8!v;&kq3b-riMtSF7Es!SQ4@=`#-8pqe&9cv_V
z<VVHYXg}!?{%rx>t+1`n?8MQk_oOuqRLUkrD>$-Eo&}207^Dl!*5b-YMmHtKnbTk+
zKX9_RRm-i{h*E$1PJL!!cXe-fx2Ia0ScTbEUT)~|qYYy&iY4779;cB@bag=gFOqMu
zc|N&H3QYU#>YL$XFHH6#fO(j~0Y)&<U}_`xlAeyPptvvs4U2O?p*|P%7i*@S167X|
zuv}Oa&QWLXz|4n~xtNrB;_J5aqZ2zvCmS!{=$X;G+J1pwgU%oRkirPz9{0O3)I?bh
z5|H4L6ZiaCHLHO|Y*%S)6rN#{y3}YctMSKIhvlM45Q%_Awm&Z|f>stP4e3eJ^1eKO
zYokcxVd&;`%W_XzP-On9QPN2H*e_;sqx(^I2*Crp^O3&nSf^sEZ3~Necv3_yuf;+$
zxvfq4iHew0`|oQCtUXuc`L7qKPM%*lc4}S;gZTIP+<ywvSljGp`kr?DN~+(Xm!hxV
zmF?hhI1@K1b|(H_|MUtpm^JK<&fbY{tW;HW9q%JX8s^NjV2t<@Gdnj&5_=t$Sb`!E
z4HZYdDIS=@*Wy89zo$$D4Iw<kP?~N99l2@gh|t!B7RbwwkzRe&fGX{#>ZK`v_$_t%
z$7#|ztvum;n1&rZxRB;qwUe2#2!id^hAyfC?fEAR=Q0jG!Lk-bafA*D=iWh<<6|g_
zj$!9!-zM00eoy`|1u2=t3iwu4v1jPu+^j;nu|4sU@2B)nvlkOwuP)vBur}~|)*Wq)
zaqW1L2Pp)Bw_0%Mrug6|?{e6KRrdOf65%+lcZ)0f92t5{fRzwbF<+?^?l{rjX`qkg
z|MeL6LG2?(ajefXK1Z6Rb=dA1vhxlXJEzlEFZ5W}@8&3xJySPvfx1*hJC4H04047J
z?iaIIfHZ@Jf{v_mKIfvJ?wsL=etF*bFPr+b@;yveRu<v=#0%S-p8SV7MfEgXv#l}#
zLV%>nKrTyey!u3A<J9>!o()xvjg>`<tH8`0Opu;aoo)eZhjeq#&=z`dXzfet1eR%K
z1!bL{9ldvizWYyIfj&x*h7Khk&1N)Dw9Q)A$Lle%ITZ^zBV`T_EgjLPjk6N)lEpKw
zj8uDy_UkUh*P=1n#Us9*Z-S4=^;~>dCVxa*U`QbXVv5)Dx{ejKi2^01wT)xt$MgVs
zEInpQJt@(mke7-=G&M`^?5I3{3h~oDZc8gN!3d9)8w?<l@yozVY4=r&FlQkxO%-(|
zoBGBn1+p<2x`mX+uk^SFA5X&;?LH~qHbTQNUriTQ^zwOVl~?+Qy`yF-Ey$(Sm9Jl2
zv*I=r(PIvZ`Kn{(EG;kW=Bx{=`~DDo+N|}sm1nAmZ9Spp0u2GO1Td=7y6C+HBfe~@
zk~&ubv-kTOIJbr@@H(dh=#lRp4%JnsZgZlRGA)gi#eI)uN|TOR#Qyf4MeF?vComjo
ztZQ$glW8^mGga7oFKB3<Rp0_mVCy61UZef4Ey%;4?Qf-N<@^1i=>CAO_kj^XW3a5x
zAzx7#5n781ye0QHhzK57Gn+7$uQ}9n88Uik;dr=r6+g+=B-+G2a5F$i1tMehxZGdk
z3#M)F8S1@NB3W40oFP{(7>5p1uusiM|Fl&sI0|8exHUQ-IY027KQy@Pj0Ga~v|&Bn
zoNe70z?D<zh2=3@wzRc*De*2fC`thKvn`i3X+B}>vl>I-+dX%5tRCLVItn1%vIk1@
z9`hNrE`VAJGia<;D?qxK4MM|MTBPoo7dAC5Zbd@07O(tnzNcHYc!Eyz3nk<C4ud%~
za-a?R2zZ0y2AP&2-lee_bRNXyDv@^v7B<)3s?JCvpgp+xL~aXwig+wJz+e;Ei}1Sm
zg-3UwLwzzcPD)AEtP-7S944s!bTa<Flz)jLYa2psN=H<*r8Ui`N2j|Bl5|Rm8DjYv
zWMd?<1>0GtVeI*`6tVQkp1SVx_P!C8aw+3Ix<a@z-%5#q@o}jX66+0mPg3qFxW8`l
zUNa&<{GqHCXL6idW18>jPrI_GjJUmOXE9lM<2xDY&6%OS78`;rUQ6w0hz;GyWD2qx
z^{WB3K}PTZJ4OmPR2rOXUHj~x(g1)9+=`%_hwypPzdY1bD@&6Ys>7~S2HFP2JNWel
z@VIN~EVq+D)xC$gi*RR9{F)kP!qI|#Dz4MU1P<zmiOQ=*(yN{vlyClB%JTyVD#!MT
zK%cA_Cv?~g@V-(#u9M9JUscWW=UGv26|JPRHvy1kia)YV&s?gQ&-o<kS*633X(~Bd
z@Xvy5F(Jib3ODWWH^wwZ82*%&Hc_97T(wI?CdELp_NloYNnENR1b)6O(9ijzHsM~+
zJN>D+3v09By&_HaT56r0<4t5qjxxUviF;>I123#xePefz$5J~DCI4onvub<u@}Z(%
zj`HWT;rF(kl<B3p$5X<GJHbw2?3jN3`~R6MY{a7PBjMF{pDqRw*bKZy`~(e`^chP^
zVn)9Q7Bwl2Wfui{=F5((^;RDDnT73wR&ob4oy$Sg7jE?{@hbH^(`u7a;IIMT>c#54
zhcsd}L64h|s9vCC4t&ciGQIC91Qu4;5>oWUB}5%U8Nk;Ko9g{8udSjh8WCgR41dng
z9Mrd%5RRLaqBq~Fh1{$TD(_hcdUm%GtZLs=Q6nril5AytzUb}OlqIn1uc~iK*LPw+
zf1Xtm3*Fiu=zjK+0YVfN5u{uxV$PR6fFwp1(||$%jLWRfVChiPha!EiIbQgC#zYR_
zJqv(u-dnv)dNmPm&vjp?#zCGbsirxS&IyrB0?H3w@;b6|@_lK16+zj*)Ks_++_cX&
z7=&AFV3#J}z4tOvI!O2&=cIqq(if;}fASqVhB|%1Je_er_z)X8w1|D%AO`s6CW%55
z;BiR!$eyHPibkk3fNyKO4CwH-c4<2)3(19CoY_>AN7B8C&Qj4gS76)}pHoHD_lz6D
zfY*^}Gi$fOw+(^kQfQD=S7oLOi)i|dbXD10>NgKa1>!60;ciNzd{e=V-6+RyvjKT+
z1J^?{pNf;7_2S$b6$f}`(p#q@BBXIwxt#bZPX-{i6xC<z)gGuha8ElP{9UM<F7ZHE
z<1XsH<gMi^+y|cX&4iP$(^V4HzPwi~fYnojC85I^?5WD>Di1IDmq<?*K=VE!BIq%Y
zqdZQCA%>VXWU@>BYc?ap((&EbQPP1&*{9abANZF3U^9GD)c?4o58dSc?GE@69uVV9
zn0ul)Soc7V#^E^MsF{>Q@o<cupBcYS93u66z?3grfVJVDO8MWM!(Rvjgc17xcgpFf
zsUWo%L9I1qxi<%saXYh1&deohmW0_ykSQB66Ki36UeH!?ni}JO9ef?FA_W2(qnJ%)
zPNy)_Tp~pV)j*nO;HVr5TE6NuQ6-GFTEC%|dKRxrA6qaHE?T(#g}XLEryyOi>&7yg
zvv$2&%e_WwzF(I}j9~Ah^vf8=DdiRLawRcETo3vyvg=ssB+&m=pQn>>F=~dV)*nq?
z3HTJl9e4VliG^0ApmX(nMVDb5w~%8z22J~s>4O&7pP7!-KsGr!C7^&N{Z;HEkXJl8
z&Sf>__Uc#-M@liErxI7po+o*jJT39*M?T)Enu=6WTIM}ohdY0DJYL@Exd}`wxKBe#
zi~V5{n-n+ukZ#lA%~NIA5Z;$BrSBTMd%lC^5?jlw4R%*_q!H)<0W47KEQMT3DRbge
zQL(8!;nMo5jq~j~OYV*!bg+FczpBaI4jy1|+c;|Q31cQA%XAIGH#ITA`J&^a9I1dW
zIny8(Ks%%d@jfd^DbA{Dve+q`M{;*!!?1p*xnAE#uXUb$a%M+QUrIP!*jKmcHHFT_
z)dRmZ42<zVtE;c)VM>9t#7@p%MO|)O{{m|&Mc-!*l?rn7O-r{iIUQ<Vt*%t9qSJCH
zd+Rka@-cmLbY0jlbRIp7G7bFEIf4LuJlmh9VYm>VE^d|>WCWe0C1YR(O^M^Dkvq5;
zwUpQ4aYOVGgI4e-L3VH5y;6RT81m_N7VU$XlS&n{$s~OR7I?Bm1SB}`od?s@Z3+vl
zUGG=Lic1et3oPGPM7=w%({4KXgNy~NTwT$y-LrI>;?z`U%B;R;X+5Ap4cBw^?on|@
z>CXEufONypy~E>vXt4!;(b7_IXlRY-&R#i*@^_z|z?3EYRT|5>xh03XE>A#8xKc>b
zL#AdWCEc?%Pt#OZW%w)S7Ck585&GE!UzwgwpCZ`l(I`Pqd2GYS907^J*2^1h2$6lJ
z%H4>|J#|L_-}Fq$oP%V(lGnksVY)9%45PPRv*Wto*i(tq%2)RTC$p9K%DP%yGL#@J
zjrO@;Upvqj;>MRatI^b0A4JN9zZ0Ap_*JgR;B&v->d_(A(7?lruBP%U0QrJRizi>8
zwE5JGlNvTPb<znLvg4_BLA7PXX|D0aBZ1dPMO}~29-f@6B=OFirM!D(DN9R+#kX{D
z44)z1wZ4W%wBQ$)XEhaMHCdcQrc$9eqx$-TA`1EXPEmDvZ)?0)X;P{3IJ8&D>sZRq
z*M~#E1)L63Bw{BFxj>rOC&8!1AC|~{_EAs6uiaK_#5g3}>Khk2QUA;Wxa=jpF~2CI
zYjTW}X^NX^%H;&xAG>QPtwmDk;Mke5FwfkC#!bwGT1t-i*E!reC=pyUqUNos*3z7^
zvQlqJjEVD%l*e90h%`PaE;cPyXJO0AXJtJ0a!lfj>iDZyy`Q<{#v)hh47^1AJrR8S
z7VGMHCdMa_+G1DwNe{sk91_sb`7zgYg(i3P@!nJ0Dilm%rmwuygW`{Y8ZOH6sfL`A
zk?Gzo3+c7V{g?QUE&y^oje$h=okBfs+2^pKotyBp8Z%}cGDuPU8>`}x$eJf39xN|`
z<?v_HGTYFy7|+vr_F-ogMGMJjmIZ{iS|6*e*x`B!Ph&CFl!#nQcV}TS)#CUd89Q2A
zkU%Myx?3IEPStq@gTdx^qVh}fU0j@)i}MBtSjsD7p_u3k4v_JvgO$s|7;y}+{sBt7
zviaa?LBaOEq9vHqLiE+u$wd1A`074XybgacF(IRcW!E7Q2p+yALE(|H<v*Nxc?Dju
z|Ac)%Tlxik(KeEyVm;@<F2D#M6pzLx;wy6@7PtkKZ`mxSx6p!0ln-MweqnJ98CZ=4
z%QI4YUeX;y9SKLd(;Zy_z-rcwiRmXxjUzUYH@?N<t$Dvyk;qW(-Z?GMj_N$)bYNu^
z!$k4IYBcXoI(rKoF%`AR+sl1Y(uiwN7jVUjXS{i6OQ-tUO)h-*41`-;#s2sl5D$T=
z2VZ6#xqUn$(v5YoXcZd+dS%(g+3YV(KPvFkl54CMvqnR<!XObNV=T0}W^)W*IouLz
z8w;zXZ1TI1<J;5si4c6L^ZT^|{k(O7x7uo(i#B%M+nZ}DnrhY!C=e|+5|(eacSJ-c
zf~h4mtE%Cc&LR|Pi37i2VCmWT1ZP4D8Ng7mtwK0}FI4Jrd7CD5<?Uo4PMVNK`c9Mf
z)=b{}upsQZRjb^s>*716GZ!%2s0F3f!vga13L0Hs?oPoNe^q1L+d!JE;q)@4I!qOW
z!;PWMDPh@E%8IJ$%3AmP6Ya5_rxFT!mv=)0#gkd@NyHQbvtv(i^m(RW0mxUgnIDa<
zUn2YVT3DAy^ltG1Wi{AktPT|Pr|~{DWPDEMgDVEbRign3Wh+TAhU%}W7obDR5<i}<
zfK|T0;&s_v3#-yP>CtRm{`pB*VBW*rFDPm3>q}JnkZ7(RpGz|dN#7yVQf9*G)|qMR
zpp6{eNjht__uKAosa17VMHO-L(~m-X2X*A#EbanmD!a91dK$hYGh-j5e&yCRewoZ=
zx-jNQ`%dd&c#7PT0}okKgRy>TU07rI*EpNMh!bA|P_@q*ojE)%wcyo)3h{&A_3Mk)
zetqeWPy31hJY+M7FUdx|aJSfRrgxYh$AK!fe=yISzjf%WDo5JPT~i=)(=tH|Pj1=K
zw-jAxdd0~pQ&bEalJ1zOeI%`=*WNYPjdB`X`{a=<J}sJvl{HOl4=hDH;gUY2Am5tb
z;pnJ8*x##pR+-~i&06qabkv;GX0X5Cx<uL7dUbbmnl469T0SD;;nM>*S)ZqtjNc<$
z9zyrphVOKQt_`e910>ISVWnP@@Bp>&$6|_#i+*EW7)uVk)Ka$>lM~14HfP&7NG|X8
zmGe~!tf(`tCvd&^wP`4~2O1SHH=Y$LS`KPUmsjJsxz*K}X+VgiX!Rl*u5z~XYZLH(
zg3IFGD>C@=xjjX8t>c}O914qglwTY_-^+Np)oh~8+&v+FvNBs9CdUrcMSkJ>rjE~-
zW+>T;j8A)QDkh`p>=#;j`%Ul=z$Vy&*Lpl|%=fRq$s7@N=bMru-k~1B@w*H(nQIJy
zKw$Pf#2y~Ol`$m1`|+>h`P$63;o)eH56-E5+xq^(p}$uux(vc+ydtI6F>64r*L36J
zq*8dH{^g5m{1;V6-VRtOcg|;m*QhMoDa2r<SBfkJjz+xdui-IU#)ha=9Xmd@%k1p2
zO`$m*62<~cs`RHEqGC>7+s)6<$Qp-7Gf3I;AV6IspUT8I;am^5q=^l)yy-eE+7IcU
z`#5Ba`^(_ElSPCSQOI2XPor+~Y3<zHq{`f+<As)oLPb*!cMgvl#pxUCf>XlkV$vjp
z?H^P+Wd24M!NHG1g2zpr?Refm-@F!9Bq&29=4Y13WRrXf7UF8BUOG}#;DKKCi<%mT
zj>;ZqdSt8d;8ZNpnaz|vE?{N-M#ePa*}=@I@Ke$ye9|TEJcS#rv|CuQOoC!m=yANQ
zLtQecSU}sV!yxsGZizr}JV0>6-t4NKLINJZx2z(D7nGkg;smp3OjLKA-0L7|{4T|(
zIu4U5UflTI$^0BhPr{y$8(rTi>)ll7QkIhrQ`P7Vy=(fbAmMj@8@f)sW4)9i`mGu_
zqDU=OuIcL|fPnWw|CgjqHz;bz^hfa!ME8ymyliO(OXrH(!V>ek;vd+s`cBJQQcuG{
zo)^tO`sR2!YCk>fjiiosDzx)0asQCtp3AJ)n0Pz8)H7WcTA3+bOi#yremsHM6rHHN
zv7z4w4P^aF1~kp;Ox41)N#kGb$PM@Mu~27EaC42Qay&$A;!h^ZV$ZbK{Q$YF<Cz)r
zVZfD6f33e+UF&T;T8Yksj8nk4`t7~q!$6c<NRxmz1A`?-&}Q-RS=qaT(aD)zQ+H-a
zoBgS{nt^#|0FD>vnI0dVU!4qO*H-^r6QHFO<rDjOh2$Iic40>!Tx4d1O7)8HXeXN}
z#gl(SjiI8ZA@%DRT`UALJxWjXji^^WT?HonW-#1&XA?syaca63_MK~4jl$!C0$&0G
zU>{wEH9XZ+p8Ppq&Lz{Vgv;yrBU0mO&@2PprPpZ*;G?jAmR<PQYMMW#UX6uP6Um7>
z7n@o#X7a=$_enez``Ih6u3&L^zx<YiaUbA{?FvF`Vj_axSb1q}w>k(I?N0d1tcRJw
zjm~#*v~)E*mS$BkqzcBj=7NSCc#;D)-nu!;)GY3=;EGw#xNL#Wb3I<xph44)rvrTb
zNh<*rEtUtqN4;MMJi_IOVMC)gz;L0~cu&Xn=nGx|H(nK#{IJK{#!yB}^OQk(XApd6
zqC0X)uhMVULz_PrX^CNkvGd&;x0hrNgy6XwYM98`eXE5{$}2{Ca!3@9yyIgh#JC*F
zx#g_J0N%o<zPPTMS{auql7H-8PvLQiC9PkZ%_hPXbFbsm;=6nL@mxl>!R=6!P^T}m
zEX%NO{wb7haW8{TQo2X8_Vy>1kM*U&gKfB;)`Yc?!>*|_qv-C`r(&#>raYAbU_nh-
z%1H<5scA;G>6%*uZ|lv;<Az{CHV>=yGI=mMnbk=_M!bW`aBr}}T4ylznxnv4GaNtK
zA)T0>XVCBQw)az66g|V_@Z_fGrXNaIQ>o2RDh7URfPXH<Hfz16Di2stF=Ve2&=0Gt
zD+=+xIsfPtq@Y8I_5<E6%2bmx^ViCRKgrlRAMl3$NKMun<-QjQWgw{L?)i#9K0H)d
zqkFZ7&p1vP))+b#&1+<9xvKi>w2+Gg8|}iUXkJXAytdlS`jRQC`k;r`sCF0Pv@&iI
zopIANhc`q#ux!twE7Lc?Vo(r(*cO;I{&c-0q$n`$uIyv#C=G-0)|4L@4Vg!Cf*9O1
zgwoA(9<)@@C>)t%mr#t-Ld%<z?rJdhr|h9OLP@wAwJ}c-zMBUz^ZiyWhGBWENczqs
zRgU93T41VXUj@E5;?*D#K``yuewMlKS^h(uax||ea7;q#&4j7m_2}g?C_WdxV;mRS
zsW7TB-lDNc?}wl@k*BVR>-j2yxn-k*{e^ttvQt^jX4Yq;gXV)M&(t)3tFZ-RFbXJ2
zGV9@R$CcUe+gvy8l1%^IpMG=xkhxpROmIx69WRLE+YiqV_4l#z(?PH$)8ya?#(M3j
zP>#l(VQ(GFEkgL6XW%<4F^iv_9O9v3YC8nXG`UV;7)A=4ghbvT%Jyqsj$=t~a%gXf
zS&x2*c;h8-b^7T6a0T_b+;(U5drh}6l+5~uZlSTBXE2G+@YkBZHfF9^KJhqhi;M~@
zaI#O36qk5^w(cWMossUfeA&b$h=+O}3NODuiJPNsxr0~GXQCF(*4>X*Lt~{$W_uuQ
zL+C7jlC~mP*uvFEm4qUBB!2>Hp)#VR*2(<`zMYj_P&?Af@`y@&TmJhFm29PKihSqr
zKzl7sO%>!IeZGjI*|Ji-p(*nF8J>jE7jD;~@0D<0arJBn8{4|1;6A_@eE}hQD7;ZA
zgZ4q6R_|5M*Ilbl>u{?dy1k>`T#`vvG)rof_#t>SV#3!7A)1+r48JHX7X>VW$h;e+
zt*om(M~u%TU-fI;xvg>~iX6^|qHAjSi;MQIJkm;n&<8Wv+Tc985Esa$dt^K?@FdE9
zP%%@*h6;xuCE$fdWp(VqAj+zBH0SXpe~u=`UwC*Y;{&!k&qL%J51cswNRJ$14qMz^
zbkG9HoVsEP5j4c<&o&?|74~f|4)9X9!p&W9;I$U#mW{8dN;|8Go<M*7?%{)4CnZ<y
zz2;CG;I*}vk%(1-In-aU?_s&Y>FMai<m-q42Qw{vjig{XY~%!SZlG;K+}QmIwc$1-
z)MmKP5c=1K3crhjw#Xq`QeZkmX99ug2CApUQe7E4yZ5yi`2*x#0o6y1jUT?G-WJte
z;#O?@6j7hPFmRI6{9&Vzr^Fsmv@tW_tvrjnt8#$oe8XYN)#tBut+>A>WW@aw5B{|;
z0l1xkO^jw{4+}%4B)Y8w=Eb!uD^kwieCYxm16Z<qXx+bxa_O;b|DXIB!o+`V?eMQH
z6a?s+!0jSjasMO%f1i-w8RJs4QD**4aQ#Us|NZZOZ>8|B?IQlw=YO~Q*H#MuyH@|&
zmf?Tw>tC(@Pd9J)@9iS~)z|+_@BR075&v_me+|<ANEJeB4-c@(PZHAUdN&Z<tFVy`
zP5`2ZKkz=3MUh)kqiLaCm2y7$eZvDdruAFg?1{)Qxd9~&nNUqIsHP51BZzp68MI)}
zi%2>oZe>DS4q|a+;n}&N#|=?*s#^`>ZlTiP@@!R$FchMPHP}s`^{Kv#e+WY+df3qV
zGD~r;BA4OTPVVfbn{}WP!&u(If)GQ8c1vR$*XtG5AH2pzGIarrb=zSp;W*D(Mf3ds
z!__?=!N^w9(SfVbT6dkFE+3qJAm6brPTsXf_MD%)YWqefUGjE<yLT&VU`o6!aKQw;
z9oLh9Fl2#9Jf)JzJ55gm>rKuF`Ca}ud6jDiYwleykM|ZWXxyF~61%)?OQ+~L+Um+N
zHK`QIpNMqL8EFshUIjxctD-<sW@ndejEgoTVkmA?dVYOXf#025$9$KjF%7mB`WrPw
z!HCfHTg7xG%aupjMH=+#blcejC#7_{%x5)E3NgDnH^r4^$XN<)zU59y6?INbN&fSA
zR@76H!(P@DK?Rj*15<NZiimCc>urP1dpJ)f!E*^Bo4`}xEm-CI7FP<JIE3=y2Yq;@
z(rX-K;V9hi6uyW6xf2mN53-mNvT!7>7&dbAi(L$s&LZXWqD?;f5OTEWaTfH~BM>n=
zv=Hh<H@e-JFC!Hv6ZEFV4Wz`>QcsX28oA~ik<)c@ZEUMc5l^(ztNI*xuBePEm?T=o
zcI_uvWTJ>av=bv-31JFHo+#4Le=u^jq7P|j<3YrI8{nLa7LwshE*Vm!*fW-`x+xb+
zAg7vZc?`6DWW3<?ywT77hWh_d_Lfmqc2VE&Mp6(IL=ZNif&$VKn@(wv6r{U5Hz6Si
zC=yCYcSwUYY#IgWZZ_SqLAp7M`@Wy^KI8px#yB5vpu)AUYh82AHRoKv|6D0uj_^Aa
zTt{V>Wm<IDpTG7$#B~>7(Q6tImn|BssK||Z>FU}r(%;rOsdt%+&9fd6(xqkjR`($U
z=d2!LZ~n6q(tng$oLBq2x<)H+2;!HR`D?OeHC&jjA}s5T*4t?e$e5T99V^|pN8Cg<
zPghxK?g+sKrZHJ*z$kwMcE?J)UR?ck?hA`goEHV8zG$a0jN*~`uEZP%NA=}lZyxG8
ziKSn3eeqt<Uz{iFrt~j#L}CvHn7auS{jRTdyl(pI7Jjs0iYODKVVKrDM;>clWa_KK
z=+Yw?EN;w7KF(6NxvCuURU$gJBe>I=`R=sCx1w2$GQMcCNkw?17<BMdT!;<w-^H-@
zo#+^F(L{=l*%IQcPTVov(<+92Z;0~9t<Sy-5xPfS_N!nkAk5KW&iCeupg5!Kjn?p!
zgA=DJ5?rur5*$EN{>1&0*CQve!Co2D+^MIcM}wL6i?XqovB=87xy;*dFl-7-Q=*6%
zqC-I|+Q=d%G&bfzfpaQAiVclP$nup~aO52myQYkG9D+rXGeAx~c+S1}7WyqBl<@}t
zJbI~F9@)R5<ysoJ&O+1DSnN*b!Nf}Qo&_7sS^F@IrmyqWgu^6d+0Rybx5XiBNXGM%
z^}9aLu-#Gug>;(xg61EzJL3C`|J<jfXVVP1Dr8ys(1}cwcY;lHlbfip^*dG6(z+C5
zJj7;8M5N<6tUEuaw?$z+Ubb_%cOpe?@PujSeztZAH$1?&l!@_7yossfl5x~Fwylrz
zDLpRF>e$_&S}0Zr2?QcgXwy*}IBu==Dk1;P$m+Q^|Hm)7)CMbq;aEIYo2FbxuM}a}
z?{6}t!iy&I%W}SnKNzF@;t0Ci1lQMQ=VnkrbSP~v1t_TVpS9!g=_F3gwkPxv+eTJP
zzZL^q_t^Rj6JfuGe-qr_UK$m9?Sl7hHk-sh_FKp4E8xEjX+-buO-p;Kj`l={LD<F-
z-PnfW7&<AUFE9<iCW<_8vGHd^lBxTkHQ)$Ri+)f>1;t-DXCmObD6E!cyT<}@9nhZN
z3UOID0RniLJ9pxWqb7CFN69GBIKGiP|7e@J9{7o$X@1o4$3WBB%hbhYlK-{h55>>5
z4VWQ!p2m)kw=}6|OWWrQC?#|CJ#YPHf0f2^Cy8JT`G>XO_d1rRi$@*ba?Hrr2s2D3
zK9W9Ke^12J(p_&R55y$isSYH!*g8Y;oDxPv4YQ$*cuEb!24p$(uBSWsU7x2d_B3YN
zf5tJ*A<g4c*Ol`=E<PVbFa2M2va-FQN%MoKfB%T;OTOd1OVl=luij4_Y2cajc<ul_
zY8UcC(6EQ88<pI8DF3w5TM&HTwQAu1EUUO$j!_valD5U>JFX0oftjYPhPS`LJ`;Ur
zZb*x@AvIQ;1>W#UkkGQc%_kGRXW4Rd27ScImitM*toPILA@5b)SKXkUZAA0*1$Om}
z&+maMBtTob3dpGjA;Buyc2??lMEt5bf&+wO1X5}!-uT6GK%`fgU&frfHL2uAPe~H3
zFNHS!XfftXp{{yxyAVuB`s+)B7r4coCH7QMDOm<`Ip7h>6>A^Ikk)iCZc6<X@^KLB
z@Gl-Nz3p3N-6Gsbl%Oaf27>gH@*M8c41P%Rpuq#hbo!9IMVXCq;d}gMk5}xJg5FBB
zq;)YMeg(?RJ=Bd?anlPz#i+a>#ErT#q{eRJf|x3m2bgsD(MOrec<bGBR$(%2EHxIN
z%Ef&^?Dwhrg3W~<vRy1+V);!l5{<y4T;<995|pZiX14n4wX_fMFpNAQ0r0#;Mua6D
zQ0EY+NyxF(uMOTU(<w>+w-P@C4e<V1T#=c#PgfdPF)MbgW)2ZaYS4&IMu?(<Sjd{?
z`|-Ni;BD`b_-xwnfIE1uFs*K+LCJ(lFF}`uue>wta48Wy3fl$xi;}=s#pp(j_5?CS
zkSs?<vVlj??4D2parU=wm{;xMRwFGU08?ZKvGyZvYv9VS!~I!Bm25i$F@P(y2gok2
zzw;AMC&n%HeBfDeH&CEf>~4e^mQ++BCWLlOOdulSrW)7!DZqO|rmuRz0$ugs9~*3y
z^ry1Ho79fF3;F3r6+{!H^uiTZG0HL>gFut4g)(Is>dKcUAw*Rq1DWnQ!=!-?M*UTg
zm->i_R|~}`Js#unH`aj%WHgtK1dF-_8Pd1rqJn@kd6kDq$2Th_HH-LcO+J@SfAIH3
zR1J|STdsU`5jJGIr0YE`2hRvOk<>?t2tKOVg0Zg=7FbeWWYHm~)}6k~<_{qj%2swK
zu!mrs7Ap<Bjg7#BDP^Xu%=5qYn5#fxRcOKk%D_ik=p*rO@9<r2vSam@os!w6ol^B%
zc)+#;81p{lx&;z{I1?L#@VO(ppPJ@xn)utQdMP_Woxsa0!vHFKqi<g~GCZ)ueo5K{
zc0AC=0RwXz8VK6bo(5uQfBG%z#`zMmzPj#gziB6e4K7YufDo-zhX)LeBO#e}P?rRW
zi%mN}OH?~D7a{7FhQewvYf}p4rg<?nh7MUKAN}_eAMbg@Ngtg)+^gAs+Obf@5wm9%
z!Hl7e1J+L3^;vGBOEG`uEZ6Y&)(5UI>2mN6zI}2V0e&2OC}In|eY?kR%hpA}qw2uX
znZ}Ud$qdG84I;dp=v-mB{NR@2N04j+`cuO)ig3bDfc_UO#W=%0(5y7u$w4(phEl=s
zSRdkuV!z_qdou6QA?g4B4l1V>PByElp<4D(4KUd;5mpl=cz~56GK||9HW85XcpUj;
zDi?uvQh^Hk8^@4k_ySV`sgA_Y^kIan!_lYm5iK^|r5ytSwXbG&iPC{$A9>RBuG)tY
zf`M_mFpBnHK64FCCv>~?&n##(RDz3pY4ksxpk(p8<Bxub6yi@1QHBH==X^CoZEDs+
zY0H@m1tdQUS&0bCkd2RI(L4z%$gwtmfD!E7rnr&gET6%g;|jwekb=D{bW06A>7dvC
z2wu3j1AW^c94U>60HGkPj_-H;+g{7l*C{?oSBM=PN0zd+emS0SlFv|1n<kNoyx*p@
zc*5WO)1edZ$D7nlYQ=a?lDVb-GNHpc9J?7kB)%*)3tK*T+2yDpH_d=LXyHBdMNn)I
zv37-p8b2rm@802~|1lVMvg|-t3i&O&2UGLX1>n})gg)7&Pv;`i1%p;M?czE)&mu5*
zu63&eKLdcd)DWG&tP1p77`hLbh=5FE6L*|yq<Gz*m0t6HeF|<9ze#hMNCD5wiprR`
zb3%d>!~IDJ=?4QpG)|6fK);VKhEGNN`rf!Ri~o1KZZ6`9jG~n>i1e*3!x!)XgEcz`
zc`2fwUx869+m$-W9M(dkm4yj$<(-}bk5i#ZL~HoiHr?eXg&TN{>sb77@cS*eilx@(
z>#rE-50(bwx{>n^ezd)#NP~zU-Q*ELZ25AnNu*u5`#9G3NHd>3i}3c#tk2j7Vrir6
zit_TxZ=d+fTAwR6K7PE;O7i7V$ZFXTt~u!s`=)a?A(kA$ZuPestRDNn{k1iE+vB5U
zM<eO<X>k@+7N5d2NIi`tOh=PE6ycl8Ui<5P;2D!oguHflG_dfu14v)}M{r2O4!LNW
zvrs|VGx%)$X1I{YqsS+dmBL}bDRtF+4HQLT-E9X$j~7ool05Q{$r?sZ8%=No-g&|_
zf`o9m!qP_BRVR?nadl7wGka$6>lKsF!0QpXhtmHxcm%CtjCr}Ls123r7(ZJv-`zo;
z?G6S^+v)IgrTLcpNb#tw%0b!flr}Z>e?XUt7d}DpFD{^hNMHO9VlvI5&@~dnwpo`!
zo%!oYh)6sohXkxRcq5L%z@vw_btsNOB%X`|Q;Up4qN(tVU6nqHU6y{h4ocD?kH%Is
zDQfP+2JEU#jh@Y!f*!n?t3l&e3iQWu48&eN#B5X?zqbd`y{STcG&AcHJA|7ZHxE77
zq}OxnzA&yi)l%1=)MaFw?q0V+25vi+_1^b7q#`36^;(R^wA|2y><!Y*U7lYE3togK
zaQKoTwnnFSy^n_&ck@QAGF`*TxNLT>X?ju-#}tqGJ?Rh3Wv$w`?0p_jyAFIMj5?tf
zkW{R9V7J__kQn@nKI?g+S}7~8SXg51j{03~OoVm3&9S+rfAd0ysKo9+qde_5b*RvV
z2bio-0&B8Bpn^K%7z(Lq+l_N7%28OOT3~wV!_h-G?FJ_4iAPhwOUcQnH+@kq9*YpY
zUGjjB`-4pL)8(zy1s?HAy1{lFndV|VaIJBNf|s{;TlnqE(IV|LIQ-$D^0&$AeYE++
zT_5I`EYl6nJ3ncrDJi#`F3;&8^d*JoJN=`(4HsRia%(>`p_Z2MyEnUBRQ)y8eS7KX
zDt0-s8ftgI)`_FHx44TM?UmZww?~DwinX=1RQ#o`of)<L4STDgK}1*nW_Gt88L!da
zV1V{re|n~uIp#jsE7gfB`wjf#-WNx~pt~Wm)RA8g`Ck#`hT;6e(9J}I^fOzh1zRt2
z06C?)y3fkAV)w4AiH*uW@Kx7y_FiP#p$CZ>FylKtE9sBNkfm{mbSV3{!I$V`(?l}L
zcCezbeIpFvqAHPL`HWiMFlH~D!SCXMx6!f&Wq@lvZXCLi^%I{hWJ@S>KKXz^+`SJU
zpQ_`7yyNs;y+7x(yt#M}BKqMvrq1Tuf;d(vh0v!wqVokhef=7D)82gjp5xeW(zI6>
z$1_bgk0IMgXZM*n!XDM&h~&k;HLOBSBb}3u?G<;CM2n#BkT+`PIa)-M$)Jq}=^7Aw
z2HD}8t~>%VOE0U9JJ6pz0-Wxf(SM=U+pPuA|H!FpV+IN^Gv6&ml7mp(MBHzs4r;q<
zSBkB`-i3T}cM1G0G~USz%+IhoC@_!5VPay+5E8J`f~7o8O(Pqufqu%!u(69HFggQ)
zs!XHEw0q|duYe&CMLlVyW>hDQjYj@fAdZdp^zwxGNs2d~9n<O7;is@)bjoQ&%BXk^
z)z=G59Oz5Szhq!wWGpJJX#JTPJnXIKw#)m6z=4?LyGz&?!#8^4#kyVH-OdNNM#dEk
zRL93|PoJVel+@H@AN(papL@)1*8Yi|W2|s8%k0s!|G4<4r~UY3a%gDV2v6`N1C8Km
zmhF^I(otBJIVh|duu$f=xxyxbKM)+al%lX45w5U%FaKP_?ogoY`Xp6>;)O2dy>hxm
zE#np|12e*NN3x&lFQn9EvRiK!C3S2s<Z3exBrh@{BQcw7?hV@9B}szL``slsikX9P
zx@&1I-ory2{V7d25SM0u(1I`edrI%6$AOtAov%JMb^l?gO%D1SM`g0x&TA^fm6mO(
zq<xe%4yfjI^u+PvYs?ahe<y7EO`#i@V0=n&bUv`GYZV~S&g-Bbm67<KzEc|THk0V@
z2vvB%CI~@x*g10rhJc4UwmvJt;Hh&BgC)l$r0_cT4S{|({MzQWy5bV1Z$%9U^M=>H
z3msUwsQvQ0_J)W|(SL~ub98e9TkpV>vR^Sgkp(I?)}}*wTZNre-y3T;te?`H4kD?r
z*>jVb2|}z75oq4B-CY|*Sune-6vg_P0*z`aBmh0E38)3{LbR)QV>(wL^Siqb$;nTr
zsjZjy&0=Ja4$H=UuCA!-GyV%b=7kdxhK=fhf$XaHHtinl6oYl~I4~Ur-c6Si_%cG`
zTNw8c=cBvA=KFxH$$-ESWjd?{lE?%~;!9v=OYQey{DK>sN7v#nF3YXNf%Fow_1<XX
zi>}u_D38fdqP;H>HEHF33H8QCN&RKd5B*Cvqme_$hijpf92pfANd&Mse8czWf3@d)
zP71O^ei%#MXJld`=Wu)MWhCM^2iNyKUFA=ub)n|7|65*CUvC4Nb~Fm<3H#hkPVc@a
zA9wwe)62gRdY>Tp;NV1GNAb<ZthM{Dk1^PDkJb0YDzX00>o(8egZEM<2t20Sy;dH0
zKvpQOCRi!`xWR*i2oB3M5@E<@hKmUzWb{yH7%B^e<=Wv2lW+e!O4)!-v9PWbKMbnG
zPp?tng)Bs_g;NR}Z)j3QkV1#!JC=rgkJnT7hVT?ylJA$x0}btftK@=S*s}av^|y#R
z9;kXrx|Q{2QW9mDS#d!T>1PSCbO@`}{q(}i{f{_v;q`<W{tc)Dp(xrsmAo?C0<<(5
ze#K#nKSLo_+R&fLVW(6(4j!gO84?@2OFkXepmpD)(IY)nA4T{vrH1M_;H*dq7stO*
zB2wH6z|Le**!qHfuEr29+LK@7@%?MgJV_U0(&UND#Fl$9Eo;saW9sm#s`}PfLaA#z
z3$60X1zfLcMITxHoB+hLD`OKa-?P%>f?j4O06)x9u~6DuMigU@icOG{n-YEIifyY+
zzOP!75c!Cbuo*_yx6RU+sQ^uRuCQ+wrX`%lAKL*SX$~h`qz(new#}65PnEoq9FwC@
zUuqDnJIeO7V7F2m%6<?gllj!N7gzhU^b3uOYcu=)w+R_(WpxA)uzQY@a60teY~4>I
zzk8)=U~YXWm<5{cMMl3HnZ2L9Jdy+vR)qdsFK)UZX71Y0*MgHu6?pA=Uq7wanL&~)
z!mq6%e<&^^xyOLE95huKS9GXg$5H1Lg=gk>$9#n`y1!5H>xUIeivHZxS&to!plwa>
zpf^MfZO}28X$EFw=j04_4vuxnT2O$dGLf`*{o5KB#@AdPA4MBR9OQ$P!hy%5S~e-k
z#&(<bV`mvfKnepEC@VbU#R%rTbLdN<D@btuxNLWcA!O0vUN{7kIK7{9@ORKV4|dxy
z262lBW*I_?bDjs=eZ0{!Z}1<sZ}^}zAoS};vi#6aq^tg%n7+^P>@Nm9+%K|BI^!c6
zk&*Gj-rn{6JU#n@VRi$FK)%GDY(Wn8da$LuLTS>1hmR_>t*a>ZUEsxq#V7j?dVJ=E
zO3h7M+PvO>C2e(=R1ezG{N#)09dN7}4f$h>a`UyzkCcE#l}C9i=!#qT^%s5?|Mje3
z#(ya4b0_6J2OFf9Ro`-Y#B0ALQBA~=gKmRb_F(i|wF}QWG?CYz=CYKpdVGWn@~j=)
zDy&Uy*I4E%DhbPXIXIlZ_?(#oMB^ccDfs=PFa_&s%IkCFk7>;>7c<$!*j`Zk`=oAi
z;wO_umqY!&noSPpfAsEtE9&oT#E~}L_vNN`zlzrsN@1a#!<O5%7!ES;RAhvMPN>fq
zcaYH$v0ImUZPnX?lRvCSnrC&V%J28~GBd(ZyM&~UaQ!J7g`&aw{Xu)-_cckM!$`iX
zT{gP)liCZ%Cu_`{CpPpJxJbAnBYf@4!M2m^+b=3d0D`dVBe>r$_1Nl1&rHUyhK+8O
zftZcS0}f^JNNVq<vC+=!K)RfYn`dmkQx1Sr*=<b5?oVk*T3pyvQ`6!t)rkGu<~4_m
z?QhhnSZgDu`ZDuRas>RU4t!~D6#L@vOW3FFtldp9R%?(w8g1G^2HlWh#=)%mh=h%8
zBYi#f;Ucf)=BIzRFZe(`2baFp;v*?oAVsm&K;A?l=+4f~!kI3GAtNg89n}zk0rHfI
zlHa)~taSW|3ax)~nst&o5FljvWa)Whr>bw-fwD>5YN&w730L#N;$pqsjy;DttF7~1
zG`n$-_uol`dy&+-9)KRZ!m#z;8-+AQAcAOpwQ8@H&z2X^>t>Je6`=fncOUKYIJCF*
zS~{fGxJkkq&y0sp7rZ^6zb3*+SIZmU<*Bo~_(r!D`g<7e%cRYQ26<VqC4A{~#LwDe
zyK|u#b(y(4e!aJ_KaKpD_$6Q?!T8yoU4tz4e_s7r*2tSis?Rccwpct9q-ffo*MCH$
zc+F>a{ZydjNRwMLIF5#=q<Ud{ojz!+2v)K&8AxuJBuhL=+8!4Sx?Z00;&dEFJ?v*r
zIQ;tlWBPRKijy0)5a~n0U!1|e81r0@R5a)=urE-I^m#naf7|KonSK)CW-097Z_<89
zNj1<pzQoe#c1$q$H+ZA1AFOe=Wi+xofyw%54Yn{)jN(K|WRy6II!K2sv(-Y=`jPYu
zd3B!8mnKPnXlmX~OjvHZDWl;T>6q?#o5(nbn!$fT+gyxjQG29&d5FQMD$b&Md9)R-
zF&8fv`NB9y35)AB4@N;^peV>GXYl#@F?lGS^a7G87SXaiqO@)JE-s0DsCAv~g$Mh6
zsjo{ubfRZx=i9SCkB?x&d`{cZlVsbJ+dy7>MmGFnp7hQ~6gq+EUQLpj1RlhJH;MH7
zy6@B4q$I~fc@<MvZ;Q14p1T1Xg@Yv7R!hZ8Fpm9g+vmuo*5Jc1Y`=&meT2;d2A>B%
zWA*9jWPxHY6wblH%Ed9)`+K4Jubg5Jm9C1O?%V*UkNfW2*tTr<%Lh2_bPuD<!>Qk&
zw;rJ!7kV0g6^pO^ddBEkS%If9Y(x{_3Ez>wVVDQqgvlenzilSIFXV%oT2PI>>;ITH
z*Q*INc=*=iWWhPM#5`9mp(b~p!T5am?!ih-rS?g3S10S;y`#qi1#&L#kPD@xhG-|j
zow0}I9cpT$MUzgsWjR6uf8bql*AXj<^pqOvn&qy$c}bTltneR%=yeiO7-q}F#gm@7
znuGf&4MwCcMJ#h1P*hHq9=wy4EPibx2<GQ>9W_0D-h|_P51w4k0Dfnm<onARE~*HA
zGik-uRd8zuv5~_-4+n_2sJe(PRnp>NX50R62Y}m+uf_$?2_OGdZ}O|2{_e2ZgG%lD
zq_J;dj9RzF-PASf{vP_5MXgb@qE?lwT}M6DDaluz5jTLVrQETNbNLHUtJt?=l7X0^
zk0*MEdpp;kJs?~>X{j#I*W&9{e`aN=Y&+vE@SH}&#&(oL$mv(J9mF6H|DBbAEB;Wb
zx?O)K>)*dFl!7%<?xm@NvC`$^!DB_UPV~jj4lb|f6&b7VZ$O)NCjwg|yVBn1$(e<d
zXyT!z<yKgAv~X1K%L(WtOWsGdFiAIY5(J;Fq$Xzu9|EexB|vSgLGJXHqAcM>5G3>a
zu9$)CdI@Dzarjcu(VI^Mli-IIN7X*R8)=g2NjuIC6R3-WA+oFKAR{nt?`k7CJwp#V
z{S!K~2(Z#mTF)QU^wvE+YrnVADbM<{Xr}Q--p(+-BzCLDu)&|-<K}EPCFSooK=DD+
z2EV3W)uZCi9)id~KJgdw97nwRciZUa{v}<7&X5R#^oPF36f)b$B4<|xamG3Mgh$L!
zH!8*6u7}#%5#%$-b)-2Xq2~Gb$jB7A2d|A(5{h1P+HdYnowo}H_cOlD2f&FW!M52%
zySr7GWVVX-T}*DGL5*D@(+$rIbxWZe(<?c}H=ro9&e#S}Gd(@NutvRX)3xczPuPc{
zJL5E15Ff2tZ;Pgn0d%Z?Yi58DVTfNxORx8ujdBR)bMq6ARfsoc)(BwvZFAcCUY<Eh
ze|(7**`xG<mtgx71nCBaiVk_heM&XvP4A07Q}ah!+INlXJ|6B+Cr0VMztS38whUm1
z<nuk2-0YosuBea&c{Oyv!GYVZxZTavz4n)rJWQ)79rBB4D^@=>dm7@ny&f|Xt!>3c
zMzsKQF@aagmhblqI+KPIe=hp)L{`o^oT{D;KDcgHyFcG}P+J{hOFQ-#`E0Q+h!Eqa
zVQ&knA(N<o2JjxkYxkxROY-kN3hOt|RUf!~5j)#D(N0d@sXN+yk22XW45ayx;Rn%-
zGFqAnI3S5wz;g#_jzJD8Nam3uD8}3-JO-fR$u#1e9cRZNQlSEB*?J^#J1Q6#OgD5P
zp|6sXldtvuUV+k(*_%}Q2YY~~U-9(vINU%kf!>q#?#J^z8xPs*J`8wYWRVHipX^%0
zOQznlF;>ULr+n8fU7C;Aj0$>xx+!K(hoIK5%iIM=36#ra4%T0^)}IXrr8YXy@N!{8
zK)09CI+iVF=C1rHPd=H8*3pX4q*lO0ox0Zm4Gsu7AZ*5$Y4dONuIf4jsx6$-n#?V}
z?*1&-aP7_yPi`PLo_NS#lG`)h-Mj83DgXKjQl>JkCL=%RI(ZE!HITl@W12^!u8`8T
zKWFtBWwEhuy#97F{Nt}u?m#S~E)kEkTLZ3yybeCMcrV^ex~CPVf7V>9Oq}!zPf8WC
zOY`f$fM0wo{+X`d*f26W=>weKgmkk`PCMM!4j*s->avJVl3??v)9?pv%xttqs&YDl
zN}~N#ZBCD|UoDVQ!!`C8*{i{VFDVK9c5^@Rwz06<x$xA^ey<!hCDciRzTKlSqf<dH
zsC@;G@<m_PUTRq3cz!Q-fi)CjusisxyORv~@q@kt=a`qH*~|CL=GMQD4bV^5?W(!B
z&r6lC;G&kVE)tN3_nL}lACW%VALUmJ1MUex#g~zt5I?$xrASrhdch<Rzt_1C)H!g4
zrNkv`)O&WPvx|Fq@1Gm7!q=K$+nE5=cm{!FKjI?Cm(e#IvFb&z_Gt5&Z=W&d1uN=X
zX5ad;M7QL1B-iFJEM=XH`fNG@`Fv$``-;=cn@vSix1Uqmv%_kWd?keBJTDBPC=cb|
zLz1rMt8Mmry<w}S5WUt*t#340{L{Dvr!rQTXyQ~6UwQOBxzS;%_IFfjyzq6`k^K1s
z-NqCTuIF2$Kg{2Qn`4RPuu_UR&HY-j?VlB0c%m0~({uUvB0@K94kscQx>3tO=FuaJ
zpJ&)K$=o1_W&qv}KpxNL<PLZ-%!i8~N)}L#u`bN4B+lJb9_=5=S4xU2+I;Qu(X1?o
zkN4@<Uzw!ZDK`~Qy;U7w2g#TaL(Ewm7>dE!cAKagZEC}Hw=l{vYj9Q2TiBc>$GwIR
z>)fO2x_5be6cPP$RJ*^=!)msMgVcUx1XecZUG!d#*HK9GS=IIO(eJ?ppj@5;EBTO|
z+z*y`uJdNcrTa{ZupcbR0dqHIqu~MOjQN{dwJA7(@1?vFv!a<igT9Opy%*3$n;#zq
zt)y&(Jzf8X{tX~Vsh9Wl&Mz$1uU@hcb6Jlbyo#sfK4-(<Tz;#foE)Q_g||rORf`bF
z7{q5Ie;?4P35f!AS2tA9*-zfM4d@v4SZ?Q!?+Pj0&KCQlh0f;o?(Td)vR4@2%KH07
zLwUJI@mI1(fqYtXeceJ1jm<cxre-2o!sUGDhiyl=PH~={K_fI(z$d#R%jr5p8Mv$5
zVk;h}`Dglns>?}#<g5-&D>QstT18<%w8yBc%45M%AtMW!UMa%PG>n;kw4HV28y^JM
z+W6t*0`*V`=LoE_g1(_XNiuwgnRwr<k5cHpyrR8ubyt3!fBh>yBZniWgn~pG#bz$g
zY~sh%*lxIZ$rhqN&j*#x4Xxr*7-;#c{a;aV1agksXUDLszN5)s@5eKJHQVLO(kzO1
z_wMOp`H9mjmPf04-QA5&*FD!q*1n0aEDMj4Ns7gBknui(MzbD1DKScW(+Rq%*A>O-
z%2*K6NENAj+o+v|XGEG|&@n`no|f`kZEe=xKIRl**N;VEf2P|^CtL5@l3Z!MvUYj*
zmGvTOqNNXXu$TTd#`4BZ46RAyy@{cWgvVQENRpx~KEa+Fd(UfIi)g?ze;?MY9d0Lx
z{#3M-DGnfN+>kD``R(lJ_=i~2Q=fE`w&_CGoj0`jATvEZaA!w~8M?kH&{2A`$!6gr
zXxObMqi#3YG#w$(<o@ak(I8orS8P4<HQ_GJ`5S5&j`pX##P~Bi76S2$=YS{5Y~{mW
zCrgZre)(Vz*bt8Y(xQpfjnY_&)Zq+68^)c+<S-u20Xn*pnwZT1euAX*8(l=a?fdV%
zNivz|pC!}<7oQ2}Py&G$+I-J%sEbNaa*_M$#};lQYYu8owAs7t>0lB5BZ>qbDoepB
zMoU-u?eq`rXr({YLv)QlWmx79_Oj+4fph>|2$JTd^Ev}XwGU>X_<6e&#>MBtqM-Zh
zd}h-9W)fcpCHyqSZ5ucltKF|F7Tmav6ya-NNRn&aGh?_7@;)4Gkv$}R#6+Tbgqo_g
zmS6vEy<renVCw13<^+i5;U|xnWi!n$PCorTa&mPnqaNVku1>oLQF-MAVn-?bO%_7!
zV65}fC>+00YKP0cSpv7nC%z?M_Br9ng1{;(!}*<Gd1msLDDT~meU(RH6a?wY)*zF7
zYuiu|)h1QK>{c2pz#X<MrlMt}^6~(5%r$xE>2;^MSx=Ym%#(+A0%$)HH7sU&d7JwW
zGRH{*F;0Q%5(S#<4^-!XSl$1!q3$*2!CC#sxB(I0{zNhlB;s|J$#NC_TM+B>HkiLR
z*;2?@y7e-y1Us}3_E?{r17($W2N5{i<F}QtS!2A~IQL8!tFC}^bW}jmkHq2D4VqCa
z1^(*igxV2gL#ofJsJPP#<cl8*)&yrZ*h>2;TBMa&a%i*J{u-)X%D37SK6N`1P9(69
z9#UD_Af)!#(8BUQ@ZjYwH-G=y)mGfp6$zrck77P)P2+xgKjk^L=4f&htLfny-d94I
z_f=UyV*{z4ykA=`Q-gVU<Jc!*URmPMb9U9x+Z|}IUpw;w8X6B0wBCM3sBmplSlFM@
zUc-?%JsFLm-$vFjSny(N*NZ%z7uFj{*bDxG2lOv@)nyz$RWHObu=%LmFmPavk8)oh
z4<9E_zp<hZ$;!2s(WL1(B%1z2L1BwcpitwnM1uBO&BkF9M6EyMtz`9FY?O41Dyph}
z&ZV)4F*e4QXp2RBN*uQz^n%WD70SKOjr!8Sl5*!xdh^&D42+K1!S=B?tt$?TL}Dd+
zeNS-2ipF#rBI5^W#Ps3fbL`nMb<pPG@D`?#>pJMvI#Fqvl~xf#RGGvH_O6!JtQsc*
zPWtHMfcT%^op$Y~qN<W7H`Z5;zSY#4ps-+PsA;4!b!|+#PWJJRkAiomR*@szb=j%%
zgEGuKcnq($mY098W@Zcqyqs6NREli9koQdU(pqs}0^5WI7PVq*WC*z&=CR-mMSMXn
zq996bY^G3Yj7z%d${3F$xqpp|F<K%!X8YV<^!ogReRzt@zJv3=%lP-_dYsN9-v#OP
zuTJmV-;e!FbN&(Y%m|O&$c3#zKnMKX9S-!lT;U5#O3Y}bC%M*N`6j2e>^>Z`3bBtG
zi93zLIN%ymmQnSZgDTpr*}f#1!t=c(5iW37qjPQmeh<B<4ST)3wc)nDyfUlHpURU8
z`lrbF-dmE{O>2K~7Iruj_a`k2s!1#JU1MyOH1@&^K^mi8_C@pYqbfFA4Ul;BNVIjg
zW!IN|M}?YAVQE<!G}Z;7K^pb!#)q9mged~fwgM_+TH<hwgO9CDHR81i%@jkr^WVRN
znhJBvHkoUgjTJpR7prhQ`CQDNP97=W`A3`6m=^L{3WHz+dNY3R{W7M`+GZl_n>Tf$
z+x~JAyZpC7pcR}ON1?TC3zXX{LJW%g!F{O2&$#rei?!s6B7r~fIX#TgSKqn34lw;~
z`j)gLdu@3OZ~6kzOOqk!R{|wJkefri>z-Pu=s|QQuFr@g!XQ-hM0x}Fu8{KF!1Br}
z#rm2|L<Bm-tSLTM%?ga6*)pNI6yo^4W9$3ipXG#jf$u@_(v0tFj2k~87{h%W<X2Z0
zIY3izgd#Vs`uj@~s~G87)A%zF$V|Ir=a)7Tk`h$M2Mz%fAFqcmfJ~Y`5FeRNy?JgM
zX}(Nc$1`<7mQyJdSqoj=`lntWUUeQ2ID;RV)zxj4q`U1=SCUhVdNUexBpdUJ=NIfm
zT}CxZfPR9XeguAlDreXAkCBZ@3@$&uPHGIs#)Vw+dz`}eEi9soG;4Q<&JuMO+sL5_
zV}%0Ep&ngJ2jF;=^o2$*c#36Y*Va}dhFD`_u&TPJsBysd_%1g`W=Ktq1vKUh%J|Ey
z?;XDpDU1r`Pb_y0o4lJUWnQxWVJxq%{(I<T2|yLwxHUI`3D|-S=`XG@7fNkV{8GwM
zrt?peCc4!CW4}01AN=e*zTUMbKm`{mnegSNgg`(fIvC(J&}7Fh+g$)eNyjxsxY=Fm
z&xmkO!&KtG09~8fIM<y5t#@9>h6cMVsW<hYo)9bkK(b*4t$D6vsp}{d)Dd2dPwwYW
z?OgOT#d9TG>yBIaSTlZjXL592Miw4aJ<JmB#*3NVlL|EZq7Lhb1k7Pcn`z(kUuVl7
z8jNHj%c>s<H<^^l776+C9#wN8n!J3;IM|qt2+XwH&<@O9Z38SZc|!bSpeL*e>@Q!9
zP(!Xy;r*2MeKVRQArk6buK4mg0dIutokh>zSc3SSah$`uUMIGX3=iTy#2<dm75OIp
zj;^JMuRX97uVaZ!(U%|@W?yPatSU&T!*WA7m6oUPYRfB{GU68|G(^^6nX4~VxOlG{
z1h_bs_5Wcoxi)FS<sOz?Sy<J1tJ>tWga*`%6X}8*f3)PjSV=dXehaA6P#?cd(}zjz
zFX2{vagBo79;^X&%YCfA$kQ&>;SD4D0Iv=p1kML$_`9<aM8bGEVQdLaQaZ~k%lCvL
zpz{Tko?|LeHH=_wB6uB)4VE>#ix0ykLV^K;$Zc3u<o+i480meF@>b5RuAyq;%xc<}
zOG}-6B7)>P`AA~jxVBmKA+8sNKyf5J=PnmU$MW(N6jU~+f>Im_51+SA4x-9oschOB
zmA&Xj<}~4-aRhvybMbPm4VKsyfQo$84-}RR*bK$jy}_~lj>f|`#XTYyKQHawFf#V$
z+57=|K*RkVMVnlE+=%Vv1=PgAKy=D?>c`u?CS(IN`APg<0nhS;u8csZ8Fivb-qQNQ
z_O1|nW+E0(ql%)2Fdu2nJM<yA5r>M1cx{boVoE3m<T#w0Ae_5fKjBT>VfVZP@3}m#
zu7YY?o5<uuNPxJvN~Cky5MJGJs6{pk3vBe)AnTwbl;Z%2;lPZWh*)qt^1_R-A$>#@
z+ji*s8i#7K6)?za;GhV>nIyZcwH&jR0J}f$gze#wPXzY`JYRgi{{A%~=BCMB-I6ma
zI5A48S=e=f&s*`de>EUBiUZO--L|6Q#3!S|%$)BWt1@+<tgEB``#n(&g6G_$_Nsg%
zZ8Bn~5t%6+GF7uxQ(qg{7;y!kCZtv*ec?Je1J7)3kYZ(fJ_oe0I1s|8*B}@Pku6wf
z6-m9SXv~+K-qJR)J(|hr1UYWgx0Hf03%#4={-jGHp$M?^^g}IgU2pLdv%oJ_kj?k~
zEU~xYi;0tu*fck%u~VmCKgXe!c_kbQT>h*y0u%1F97u`XH;^j&S;i8$)qzGnLJ<4`
zgL?PM`ViFjH}1Fs%ST<tjQm&&OXW9xe6<TwbG^Fn>4RT?CI^Hk%R~aP7{}@5+L4Q1
zH3$i7DL@qJ!u?fJ93`0Wc$)Xm5Q(;>K}Ww{k@eRh*T8-~dG`Fz2FK?EqJ&R<$an+e
zt3x1Zn&~q?w0#qOw97eaqQ(n92c*Uc=GdQDcrFf>%YZa2@2QN2xz~LdUC#R#m)Ko3
zU{Xw*JO>Ah0c}*yO%~$_XvQIlaglAZ{QbKIx`?j$aAImv8h_+32~6{~N2#*)vm8Q;
zeF?v8y+5Y&b6C1GT?-mb)PDco81G)kEAvYow35i8e<EWw-8h_MjX>Hn7_f{lfubx3
zD<NrWdBe`QajbG?P{sb!KOo18vNLgw!22NwRQ0+ZQkhSi^nV_K5V@$DeYGu`I~P9l
z;UOsyWFcN-3UB_!cQ*c_Rg5s?dl77xM0n0J^?S5Mi&kDBR?L@6&_jTMsWml&o|<~R
zZmPYor`1nH5rTtrDB!m2WKdeoEiMYzMlG9ov9njE>&ZU&sFK&y%?!LWmfu&UCRMtq
z4V>SfGd0|Hc_elfU2LSgj<h%OJe1i#K;}1BrIo)r2?o>3;L8;0yRw~Gk(hD@eX)D5
z1NkcbnmOeAIUfUMemZ@=b;O?o^I{n1A2FIs?K}ipkSpvH!8p<nd>O2HuS+##OD`%@
zzZjd61p?vK&o%B(B_mh@Ri2j-U7G7R7QH^4S(LG^qI!lSmiaW9a%X)(!wbHnqdUEa
zie(HGYt$;zd}YmfMbidqeHY$4C}Z<tB7od^5NwZPLUO{%_CW0}N~Nq2!ygoI`t<CU
zrp0e_`jW|p%N=UH_f9Xbj!Z!*wy6ZE0H24ouKfiXwi?5ZpC^r4ohwe5@AX{VoA=O=
zTADXWo#GmW(--G-zDmR^+ZHz<t~eCQ0_B&hjwZyJ0F|i7O$vLX-Z`g}hWSOdbNh9j
z=UTVi57s21{Sz*PEo}x?o=w;KwfrKZ5tyeeDZEy{&%JdBq|((0w&r4r-C4`3$R`TA
zFXoDI@%KF32D3UdFRu1Z+@!pq{(iH_3=~SJCxz4Gcb#|1`_n|ferIRL?cv5FsgI`*
zF}8)?&$jilmy`<7HeY<6GzQ3i%3(M?LrHP5t-*b{<+Ys`gxWt$mXAMu$t|+JJPoc?
z7yF>pd^_KCUD^(xiTIvml(0$l)8>sP>=`s|7-RddEYLD@m4ZPN0)b*ghplpcJO0)q
zvc<X8qx7ZSPZAuG*X0`!(FeGJPK$qpZtR4IQZPYXRTr`Ir}Ll_6xHxmCjBjGGTP9w
zj!=;r?~dE)e6=+1e!O$NJa~0YgWowcUEYfs%bIk!Rwr2EbI6Z`ElmE7!tr;2yC!j1
zt}EVb&mXvhi-0h0g8)YiP533#yq485$3e%OW>ig41e;56*wYEtR$9vTAy^dYclk5p
zofKp9l6<ZNDn~+}S-Tu`;kmJDVm4BhlES>3!wy%YpRUg3&t3{RfRI9+ToL3$nQE)3
zO=*p+XE=+$>2j_c-A-m{J}d06*5p3m+cW$;7|Z~{IQIf#S&3lm3iA;<_ZsWzL;!MS
zqOdpseOKu<9*=(UaAV`|UBfHv_Fio^&x7{N&ugljRth3%<Db3>t|Q<#5LV479dJsa
zh{Gp)P+*xipsqt<IZsoOp!BsFueMH*>dy*DB;*`&?Zr-TAddx$PpW!5d{3>=C6tc|
zs-kl6(@r}2=XA$LwwG<pjTv)J-1_{LwYjMToi7vWH3>-u^PJ_Ma17z7Vg}q*e5Z-`
zuukgo?7&Uf_r%f}RE8H;wl=qosEHTbp7Y2{zW#^IL<QN+&j2)2v}BTPH?tDpcSb6J
zGb(+>Pvyd~B^^H;+2vUo<W%}_De$piofR|zLm>P|cd`a1B2xYFqixqzcp|L~h#ud*
z!-w1@gs1C?fOMhx_VnAfA|()3_qCr2viz%U^oRjU?Tw_J3Q+45N|n+e#QtLZ1F$1@
z#<lbGk4gQM^0;V|EA9o+_*Ixc2L)YFJ`g`r0IjQ@LO!1I9h|*?!|%3T3?otvQvrF$
zi0sP@NpWszQ_yGQgkBePhXlOh=UUuMGf*kKGBXqMHqLz72_`SE_qIq*Yqz-j5cLsB
zYrThQZ?B}dSC!aoArSuBeiydL{-8|!c8<QhI_8~~`}gAelp_Q5QJ;!xclvPOue8nS
zxf|gkhhMTY98JU*?AEiz`s7OhUSnj(emcUF#`0iiGR3-4rHI?s3_M=Z>k+d-L^$W?
z<M$sIVwO?fH|#gPuU}~Fx$C4iFYY~~Jp1126EQ9QTGCs4YR)}jxmOJBhQMeYKdcPi
zbbc`mOSQNOJT$a^>a*5_<rgZ-8ef7CEwd7j3yl~1iOO(2IVQfK0U8&lc%3K2PCOXF
zPv}7zAiz}96?RyApThr%Oqopn1Gz#Tik&OohBw(665{>?A^lyP=><+@$H5sm{$INj
z&hAh}bkH2eFiHE1KOX%vQ2e2?P-p6LIzl_e!;xG!^^?(fEgPV9i|%%@>(H6L;06RV
zI-tzh@};e`;B8N|e*p$>Yl0kLr8oq`9XTDf`e<os<BU5tw0nCl%6}cI3W}o^DPMVJ
zy&dQB;F(@<{Q9X7^MyVh4@K*CHQKkzfkWserLX;0ST*g7Y=TWB=G3Qi@rz98?SV19
zKGPO!vS9l%;(V9(<U>(d?hyiuC06{V*(U<$w0^n{J^GUbXt@=p0{VQ7%00r(&J18q
zaj97oo@}x8W+2tnuB59Qltrh(X>EBkB->UFVqzdoWj}E{7XV#CK%0caSU}j2(@AN&
zjrt*|knR)0L0aBkRci_MRq>OPpQcrZZo(5^^9#2Q=ptNy?)AO~o!*|;4Sus{klb|~
zHsaf{7a;m}lx&JaCG5*A#CK@;$<F2SAgu_{dH^go^u`V_XSlkml{V>Jc>oS^6Hz{Q
zlzazvgo8%k+#Rq3b%q4q^5|l$m-_SrQZRasL6VRR97r1dw?835<v}NxlCCiN%=g&-
ze%++Qt<U(`M`OeE^F*ocn5z7PhsN!U8>gd!ibM0V>!8u`b<pj!kXrCvWARIYGF>$=
z#B<$w6=i+HqiC!(>&j{>nxyk9hs|@rH;$coynhGNDf7;PmH2<Z#v+MP_qp!oi;<-v
z)K(-Lp4;AI#6ePjF%Ji!;_3AgX{}CpYW4I?XWQP+*`Ef%zclxd)*#33?n)JQJvH9b
zq6hohU~h;m3Sr1;7GkG)Cv;Qi@e1j>^TTGB9^&J&TUp<Kh<Z<`Qg^Y5=vP`92cB~s
ztnv$EHN8iNt}Hwlpi{x}>`OAi;s~MGU;A+k7{Q<8*i1zk+)!A*`;Y?-RL4I@SF3K}
zW(I$8YU}`Z)!eamc|eIiiOZnKIZ~%?P*zLY{snxH+K5N3VJNzwku2k;4#ltViH=Rt
zt(XUsj8BOo(ChBkQ1qQHG<4kG4GX>_cn=iM!`eSLSFh2W9RC6f2=y$vy)X=$D)yt0
zI&C^2Y~PXLZ}Z%RfE3G6>FPs9=rclqq&AoS2(5jL5rr>WqC>4<U@ER;aGWw%Lyoys
zS$e%jlq4b7!Tv}@8%$Z(H1LYd!wh#q0YwOD%`yuP)X4v0_aNeu?I#NX5lir&K32HX
zSDdr=>0ihDdQ?8ni-yK$DCI}LRB%nMh>9(bO2&z}`!6x-kh;%PA;IRtdxygID7eZQ
zMjthUAI{S4my9s1LIqu8r5JMqWc|4)QP3cXZ6gLhKw;}zz~HUQmUe&=2A)eianN59
zAf%}9`n>?L6v8rWL}3}`0s8In7xp5cf>U_chfLGTLx`5{i&C9IupvBCpLc8lvxu*v
z=`0bZQuOq1(HE*WpplBn^RJ&io}?3y{CjJE9$UKm5`6!^ne#KuXpoZuz~at3n)(OZ
zP#+-RxQ9+0G)acF#RYIf<!HmOdu_5LSa<;dE(8)8thh;SIY6uL&@+DrkZU(Gt;crU
z28qw7+Fnt-nMpnmfe?tg*G?@V9{mR~J^&Jscei4M6a*Sv3yz-V4X8b5SRC}i4Up13
zNH%?-!jX59xd(<TU<N;+iw3R)Z{uWL1@(qo1<88&PC$vxr<KM3X}pLGe$rtZ7M~Fz
zR@xz7n_LG~vj!8<`yQ}rJ0%ga@XaY%z(K0MjeZq1DayW7SEUI&A=nHhAFZTxg{^am
zgNrIf%ghG13|a%ad-AFUsFwd@NjrGzL|>f@kvPM8M)NDaCZ-i3(6(pr+f0vm$<zAb
zX?`)~Y19k9pWFf^XlAL;D@!o%?e1)_eKPDNVAFu3$Nl*v6w(sH1+*sv9Y)ft&sB((
zu-=L_o7BGx8M0GOl)JMUq+!l#&1r^P>I@5&{F(0J9oU>3&Uo9$=ihq}%(0_`2MAh(
zD1(d{Tn7-I(bE8G1*I3ZjS|DSS`lT*GXk*pd+SnOG)U7&fo)(lU`alP51_9Kfsy>U
z9d1o3jzE96Q6vQX_kGW}clR9r=SX6IFP(tQE8qZYXYkW{mhD6sYoX_+y(@NK!FA1E
zkprR*$hQ3AO*eFKUud+_`-sNZlN=kSwFwY2l8B>4rDT*K&_0Te6S-YuT2`fgngmcc
zJ-@iG4Su`3;florlCAu*%;$c(YX9>@Eyk&>gMcp{_zAuMKEE`T3M43p*A*qGAWN<g
z1lXzmkIv0c9z@kaMdC)bZ`1LqVm6HbGcGO0$t{C@;IS={_?vcsq-FxtFAx+#z#NPE
ztB$Gx(6T0Y@gQGmZ?FMkH8$09@l;@U%77RG05Fmi3lysUGfFD+?F$oN_K~k-F@aL%
zc5t7dz=gYL;cW&z#JF|^Kxw*WHv^1*GaOXvz)(lm?r0SvMB_>jElCXjYcxB2o;*6J
zg?`LtS4G`Ix$@vwsy6MuQUVJB%M2y3An>gr_wEw-*T=sSZ(A_@`>NN4A1vOA>o(s3
z)*1wK(O|Lz|Cu(-1h{2%Fh@|50Eq=~?>ZNByw3uT#8>ab8EvV963h5kr4s%xss1G_
zBrE~Ure3h}n+$#c22qQ`dRK@rOhU92I~(#m+uQ+zg(^g0NyHZ<r_X8JqQn18yn83r
zpkN*i$acwEXdF<O{bz;O&b82O(c4{t+nS%B7l<a@dx$yS(%EIAf|Q$LfN%>94n%CP
zRN>;OGefs32=I|It>Ob5nEz*(=Uaf-@&883-#Om5jr$SsZ%&zpvI67v^bhj?^eRZd
zcnBT?j2ifeB4EJY|2m#zxglUfIivI_FuiY)=ZcPjTsKKDnIVQM<x4DMNOv3}-v2ea
zvp~ux8b1b}`~QoVCS$FNnZf7a;s;tIH7LN3y8%qSkdOHA?=eQV_Hq)z(hUJl_y32L
zyt_rUfeMa(b^W$c)W1rbfu$a!;$MOwgpUVzb}L0IYjcG)^T0DRfrbEl+q3FD^SciE
zOI*p8_<s$eo(8ar7jusPKdi)c7huyQdcVEf+u-E?yi!k23(ldnRP1abh`VmxJK-x%
zDk77Qg|)LzW(-&F9vt0)Ibcym1y`@q-v$F&(gdRGvd&8F4btmg?rnZ(!B3<kX>kY;
z<w1>9*!*?rMch^n*p1normCIzp0%trQm$og1H1Qw*-){Dk6E7py?>u7h)hM5Xh9<Z
z^;lB>48JyZ)Rw5_MFfz7uAh8=RV*hKN!((%rmwU;@xV({j!WUtR57%p@j1YGDYV_}
z@C+GlWoM5~qe~Br*qR4l#K^X-Iqy!rjmV-8S#)Ce!n_^Ub>)mVa>FKOR=c`V;lI%R
z<t;-9lw4tzCpzKDfBl-pHLQsJZtvq(45&rTv2qN?1!PSWg*{!7Z_)h(=eowHX7^I&
zXq`Vmz`ENLK_LE^z}p&to3|$T!V8ZC%z#5C@TXFH_hyHD`lnl;>I_yue;`%|UdFHE
zWk6<qozHa3m#exUslf9)B5!S%K>y)`7sus<+QS@4b<u7d1s02?b}7XK_$p^jh`vy0
z()`lGYhf>ezh=4tHv6AYGI_ORyr50r2_~dc(s|!V%h1xbTx?^}0!p}y<oy*qnNeT6
zl4?uWFhfCiZwD7L>N=!w(N_*<_|xz0J{LDPMol%u_;O+n9kQ9duSz=HRj?@?;smeS
zrKH~6G{J^|>yt(~=Y(x;Y#X3MIycT>uW(ltwj)TN9L_l&X>}#IPHV+K6<~7Th@3P_
z1u}=R;yJg~?QC$~X~Gnrq9R;azvT0hWGE%q$F>&fMdR%H46CCi?XIquAD%ScZ2C&}
zza(bnccY%EIuOzGF;tD}=^f<-mz!E<2S<QdnkJjB#DHTwU(87>G^VJlXo2J3iJ_Ea
z4=LH*MeM=(QUa?HA6NB#(xbb$%^%*Q`12)f^rlEHpXlLee0)NWyn+Ys_*^O}c^4ku
zlIsrc{qrrty0z-GjSXgOg0B)12_d-t{cAM{=YW8s_AnYyX~J>PY3vbLh3{CE_SFj<
zjTUScGAWq7Ff{#*kG~QawEvJuOP@|tr*NWCH!4=@d#tmdpa&u0%pYkV8>V*)M{6y!
z7*PrS$jwX2XwHbp7{7tf#!DSX07}q>2*^N-3YI?|2lY-RFBv?Te<BxQ{gO3uRK{dS
zL2R+xF?@}$!_iwRLH|d-vd7uZSk>!2Ou?q#&Y18NgkiM42oQ#Hb|MFkj-K50SIxJW
zc$W}4tEM?LlbgkvBBm{DeUX=vOk+F4WWs52fS16a;3Uo<*zhBO8XM>MnloSf&FJzE
z*=~CfI=>B(hK^fkNAU3XJ3ux5q1$icD6pchKSQT@VbuDO4iF<)5@f5gN<p>IDH}o%
z3V`W&Z=Xp7VZ~7kC4Se19EjK(`Zj}K-Yq0VM)7&PjPI;Q_O*J>BU2~bt|E-f!unT=
z8rYyYIH2R+i1Jd-KaqJ^otxn$U#e_l4~_)@JzfI5z#%w<Yb0-hp|5TmETN1P`@bgZ
z+dZF;RU7F_(Ec?hM(5QTX&C@9*y$TaW(0_#3xuHxO?sIT;W}=vWr>{i{IP8^Z~EuF
znJmFnAgD6pyL1uwyE^hs5a&`Q@H*;EDxzX@j=89Z%|uDR94*{;%*N+t$sQct(i0uh
zwQ1c6gQJ8-I_FOM^@VoHsRM#f*uj}uSKw4Kn`sY`Y?VRP&^r|19PNiW%rcEBU3Pb2
zc4jtHb>?G-cZGcp&?3xNAFeH~SaYngmJ}74=KwVpC9fM61e~?WU3~WY_vGFC*KH*$
zdxl@Tr<1~_^Bz8&Pa}sW&U$M^ea~rfEGksfufu@&r;7tY&^;X%s)>$+#>y)7<BcDi
zTjP^(923jD^Ucxk%-SD~+usQv$TOPjyRP6~`7NRP{vMA7cZXAa^F6?~;5<jnXjeyH
zoIK>_j*Jjqm3$p{MOk|mA*|)L4bc^=tgF-VUc!Pnh>OvtdP`1BEuMKk`O}5R{3A6j
z%i~<8_ff(*r@|nb>Atytaq6BJ$vd5Qnu_X{nFcz$PYZ{Ol=a*tl7ET`i>k}3CuyKN
zP-F(Sxe<-Ee_$&Ul1n~QEFk4#yyxJ;1kX$cYZB1HljruAN7yqf43^qmbw3&^z<<u)
zrHbHn_oWgVinqrH3gTDA$&R&E(%I1SiXQ>27n6}B8^bU+67KTG@ATvZZ%xsgtv_6u
zd3LN@1zSWh-|oVf9*DZ&Awg7Qn<8;54iAqvisNvS0!dsgGza+9s5;ucQ~ZZp+ZJA%
zMhP2-8AIUYvTZU_r-HO3S_TNt-Mt>>!nFIU%9@ob*?0Hh=Bz5?18QpOpr?LeYV4PW
zB6^mx;g9LMX98E)dg?xwE^(>JVf6e>p+f9pX!`W?4@GXvJAVBsWRUe<{4MCtqQ#a4
zE7?S5`D@yqo>9r&U(eDrBwPg>AgqGxO$@NzH{>@RsW+#K*3_k$P#cf4z@;3f414v#
zOh%f6u{asL^ZUtVj@@=I>I}2emH8acA8xN>O`j|9oA+q5aMYsB!uL)mI`Jk4@vE{5
z7{n!enV4SwR^9u5h<fX=IG&(ec#!}hxFjJE+ycR6aRP+kZowtEEY9LC!QI^*g1bX-
z5AM3SyMFU~-+RCNJo^{S&h$=qSDiXlUFV}`e|cG)z%3DPv%Za+-M08N?`fwWV^74%
zV7P@u@YOvG_(rZyFGC9y+;&S`TbpFfeSMvBWck3tMCOxRG2f{0vXgkU7wCyyto(3L
zdSEfvskN&xTyLdU(b7mwFZHk)sw{(^!Rn0lSsD+y|KoQs8Y33^ko~aAV5U0IKpS!I
zM7v3+8H8MH&dnM7d4<^&S_j5^L{hNZiX<#yL6$>a1`bL9T}eIyY*rnsF{+ZTNVWo#
z+(KLNcHrOc{@(oNO_w>&4_`icvyL!LtXyW6&Uoz~?`-#nCC7Xz&4605@iuqe?37QJ
zqQ;H@4zqy#i&2GfkS&_9E<!v9aEvR^?cD=PK$ESUbiXvqw4DD`q^AXNyi1}wvb^hK
zn;!7UQYJKjOS?Gx4}B(fO@hfRVbQ~YM8^#$`OQ_?6RVeXqMl&nbmG*z;gaVzE#K$m
zaUBV!FO}ElHaSY%WdZOv<oF!u?!<{FY>FyNKQ+{mLBay#gI!4fxyYfEzhrH>9F)oN
zYVQe8)^^)fl);TWi*}A?pAq2z5fJ<t^s7vF#s;~$Grz)$H+Rh&`N+@6D?>9nhko$S
zy!VeuV-r+=8$TRoJd1U_ykPFi0cubRJ;*@YZWGw{v7m!+xhldp`x=AEsYIsqmBWpb
z5afGo$K!|58W>Z9z<64~xVF@+lk?5(Wim6w+1Yd=Jnrgq3uZ!s3aE2(%VhQSuBB3d
zW8nHfWxjYxtKK}_%oE)H@ZSeSPEXrSGMcv&=+#+&438hItUF%5W&{MK>8*eJGa)LP
z9xwXdl!<BC8+3fUm%(o+5qz^X|Mv&84Ji|=qT_w_#gV!^E$ExaP6#z`Dj|+<|IIn7
zbyRhv0QvCnwXVo7gU0M^Agd!ONgf(nXSF+(zdKV}p6Nd2@TMe>lKD83Jds|t(zw8$
zf+9d9C`PgPp!cl|gmHzS#Au0ACy^1Ulm}X2G{@*cLB#%htu&EZP}k)mkDC88XrNoT
zui0^SoIeP5?3rWO$3O$~`;q;e+5>xt*qDE#aAD`zr6WIUCbw26$0b{(l^MPJP)KBS
z($<*aSBpC=YZh{IIJeIh0uz)~N-rB+5#~rl08x$3Z9_I3Jy)~3I9I0xaCmIBH%E^c
z)qWQq-MAI(o#g*Vm;>SPxyK2&lRvrq_WVkhTIWWA_;AcYokGdxZs6QBMn!n)Un;JL
zC-{};dzY0>eH;^$_TLlX6&JF9H$LUx^d~vHjb}5Gkz<@nTXjX#S!rDtw)PI5q+2-)
zv&Db?8ksx=gr)zJI|fdGCofe15Z)gMsQ&$T?why<6g00fPtUkLl7E%$k#nsJVNY4^
z9s*Y1oqI)PqP?n4az|n)(4T2(<qL1e$nYpjLs9jAViT(L){x>7tFjU^WeawFK)EI=
zU2WHt#`X_B@_iG{%1F6&+|p9WqO+JS+NC*2JZ978il%3Lx+%8dF!)`ur_Pu&obc-c
zsNaH#pWo^ti4&GMxMSU#`}+LfQaV(9Hl)Cw_A-WTqZ9JBR8+u$@?@$TUT*sYz1;nf
z?-gJtyNXJh)+xQw?)=vyO;T4|^LxLK3DtnaJwoTzmtTp3ZF*1t`qUSiKz}^9#-MBN
ztFu44<1PUeE?L1F8|X@v*_*`SH{SjLvq^z;O~4-Pc`#5l{c+v-E?CF8OOeNJD~9Uf
z<;&#aDN;%32S;$R`%=d%H4zcWThJ7%L8)*TpFSxA1-O2s_GmG`$uYEP65HzxuERv`
zfypAq^5wW8A)U9*9<oGD#1l7N9NPy^q{XN^w<6(qO;<Ft_&5=aTb}6>=xNDerq~lk
z5T}d^Dmk1J%7+)oyhojXimW(<3!=DxvTv?B-`w=y>IXCGNF%SunT%^N>0<npJ`hmU
zamWAH>>x<5cF59?LTJT?<?yIwYlx#>+~!Kl)M|Om4QiZCfF~kKbjIR2s20XxWkW$O
z+jt0n1A=rqu<C^vMAq+RG;b&6gOJCq!?JFf05RJiAL4HSnh{{xrc&v^aeGRg@9(Mj
zU~92bHhc5^*(FD6N_Ej?sZ$|V`QSp=A7+U=HhX(NvU9S<Cp+=hv+TiKh_-E2e3}I^
ziy;k{5B#p=m?*xae;Whda;16TCxgDh$1ne!?VtRw&rDwkn$6YLpJn|O^jOLK25l$;
zu^|v^R~_WQgQB|xoa%FWE!0QiT5}|UkOL5XsyxJi;j0+K5{v(R0-@}0Cu=Gvt7%EZ
z7<xzAuKJh8rb_}<s<H6inTf+uItoX6z4?UPb?7o36}+u3UgV&OHs!@T^Ak%o_33Zc
zDG`u3m6;~)r7GC|G)HSmJsEu^8q>EuK~d^NpliWoB(GRty-D<nTV!0ExmSR_&7a3D
z*m&|D5}@4a_^`henIs53;u$C-;kScFcoKNs8+}*kWTGXwzin#G(=#|7JhBDW)jk<W
z>F-&&-hpKrrYtmv^ClJkCx9ARC`T}C<k)mdg#8H@zv7Tj<#*xwWWKB<`MWw3c`kk5
zn@~9we041}cY(8eUm?G}y}%nJ<1@YIa#00r;?91C&MFVy%X#w$2kK@aF@my0#+jg6
zam8$@O1(8g76PKy0dcJ0D;4fL_w`F5QY_iDqD)=V_1oij&7TGg9qZbSbUMZ;-@m1i
zW=6@kZOYjhcF}IRXm;8`dJ}DQmwx71V2x*ndb3A?{rqB>LkI%F^Xk8Pc~>%o33K3^
zqu!)A7)TZxQZ>JP5kY?_w?XX0#;WhqTAO@uf)UBhBkd=Qg5Ckyg9rs@r}c_!IWrT0
za{_qT&rCnn(xeXx`WIXT4%b3+fj*&~Hn6M(od>OQuh3Za1+2yVv6^Z@SKbGfHmPdE
z2kR31)?Y4VVKG&Z2i?usPm%yY(+4`Q!14M{R{-=}O7;pss}50~_N?!%{8zZ+&;#(i
zKo=jsDHU~}e(R)pAAa%$gcQS__$J;Z%tJzSkYv8=R{JHO!PWIb>>~i7VJgUw8amoO
zHdkgs01+Mc>Odlb#<fT$_@@>nqY{*~v}x+%e<A?!G6g8?Gv28l4U%`S#X_=6zIHBx
z=2|I;q#-ZW1rV`=M!wy(`<?fXPc)S7YiB5b<bdP^J>ykxfHEOV!q|^9UAj(%qDPi^
z5~96I<&tVUJA1o}wl;q99+8m<!>ZSH+ud`u%yz3q1f!9Gu4(GXg;trzovqGn+;=dU
z9+79-g9NN42D18if)J_ex3B^ZqZX>Y!XsXrqkWoP)>7a&Qa;eiU3_@Jm}!bKmd(m;
zV7=WLl~_B(YOyLArRpcMcq+XtP+)($hPg}sPW8Z=4FTaCBp|z|FIn3V>glO^2}^aS
z*$G~AEw$}}x0)ws!Orl?c=pStrU@#k1T%D!xo*6X;{N{do(jiy`MPdZS*`NmG>1lx
zb2Zu@@vX)4-U|ngYNzjqW_ev9zb2~KJJe>60=@=m!Xmome)J^sKY^PR4;CmEwucfD
z?>QHQIV=d@_7C1&h7PW;b2%Vo(V7vfC;mA5PE`02%K+|(H=6|aJHU(*gpW)541T1d
z1o}jRLJ$v>!|S=;MXtMl;!Nu&#(wV&?@X3;Tb#0NAPTgD0?)0)%pm>#yr1giS|jZ(
z(z_$J(9HIM0Gd7eweq8D#u(>G8MZVnahK6?45L~%K%(*}f`}q)buqP%<p2urc~$YR
zql9=2ITs>*y@*1YC;yQV!wh@&PlVAFprv2ZuO%Q1HFX@pvob^^u0+EC+0@4NiXJ>H
z075|dGga6xK)E^~9~SE;Lqnp*BMQX(faY8LP>KjV-{_CKALx4q)-<bb<YvzqH9%J$
z+vxP9-@&<Uy>rvaIwo3%g-FF|5w5k}i;~Qq;_wnNfUecDJ86}~EFZ)M{xgeyD9Xi+
zgJb7AEZ<kd*SPg>ulTQ)XPAczCKGvY<l5N{|4CPNR%{i1Wz=8knvzYMLS}iqJ=S-s
zLwLAm=M{7vnO{5*n`1*&0ey2VXcyPCwIz6Lm;oH${zG;exBFG?k6bwKA7;~YYtORC
z0wBGqyJ%;Bk{PDzfB^Fq?+?D%6pJ4nYMRvJlV~3=q&yz?CJ`dZ_;mL99^B^kOqs!D
zIQ_$+Tf2YJ>V<b<eof~}(#XF#mYz~xUo_X?A8(Ajgy!am>Z&&z8$qJQfNoBi2G#3>
z#ZCr)68}{vJW>9`nrtI6!pK<9HIb>4=N3E>yjz4+sREs(h$?k`TGG3cAKKt%2_!b!
z5~1Sbfo~j%VC!JZ)lVySmVuiST=%XWyH-_(Z#=7fcn8;+zm_aKBz*yBZdb{`+7j6r
zX~7)}t5Y*8scL%l36qST;D)(14V^N2!?`}oZ1%*%x*gBv1-EzH5API6kUQplAKHlj
zz0P!cG749<Ptm+FF~6d+?x7spwFB2S;Q*yZK=6rVRNbIg1tgnh@7PCb{_q)xD2yrq
zX{SytfCC4T1^^QZBykZxUbXv(@%#0xEO;)YZH#2D{PJz?H)U(j$lwp-hZVg%^k#2(
z{0h9~KuP>7hSYoL3v~LlR(@rq6#Wu!PESSxa&>wO2gn9yw+Us6o*wD-tX^%J`OVY2
zyC!%ZI&tQli!=kWFFCZt^q*7O6hKK_WrRB36JC-K2$?<fVb)FeV?qg;TzcDt$ywfY
zsprW8e?$f?(EE9CTly7G3c)2X2#F<fUov*D3J-66obSb>Z;^PVnVF&+Aj`bUe)jWe
zDynw9e1Cc=y;U*4zDY->4N2jInE|21*hY46V$9x9E+6q}D%0v`HalkG4Y4@i{m5@v
z-L_j_N2y<5++<vv3;slX$pyCAUf+iW3h$hLvh}_LvhM5aI(EYTwal^!Pn{?Zjw4ng
zX*i7T)m25`NNQe906H0Z@b|51>1CPT+xewW?!?%%wX!!gT~xLkg!s{7euf7@<fFE0
z#!=kd_-t=+-H31_Jd*Bt4TCYydb1MXK(+sT3q*DIm8Q#zxe6owuy&CNRZU)U$DTqh
zM}7$tg3i2d#&|};FI|^RjC*TGMvgej%tncLG3=+1Qfg&}(9AjvJdFx!Wm4E>VgpmC
zWzlR${uuwPOiWJhOG&<c{FOH;{;3=q-jZss+q8Hsj*#NQG4;5|J+83rE*yRC?cPo6
zz15lPGeduqo~jb+RWaa(!?dhiao*cR_#H^Fx_d@We-%inz{FHM6f)ZD?(@3g9-aC#
zdND~%4~xLj{FH%XW4cOA#V(2)dAj8-wysB8!bKT@RSfO<Wt-La5IsDylI2mu#z+D6
zTb>6FpF5p~Myc<uHx31fEBH3s*6EpQV7GSg__`ySq3vO(W~Qn{!OA6wiHV<=6FcY&
zq;78Acwsxn$aT>sCT@;BFL0LiV2dWl!ykUD+GwvYV{K5uyX~dZqq4FJx99R(NDJ)T
zPb?yI+@VQps^E`C`EF##y@G0i8$25qm;2d(ZB^w^E=dP0I_Tu@G_O)eZ$u>TZKIc@
z%2$o={r$-4w@wZ=GBP;;SP@Hoc~F~qxOT=cS&I5deB+5LCGqwF==_1jr2gjX``Kx=
zpX!S6LY`!loP=`|q$=Qlw`<l<)0ysQ-~CYrb3q{Uy8HdYw#mX6yQK3<&v-QSjewR4
zzg{H<cs!W^L!m$Qa5%?)^KFh+TDSV^%jkj0z35%HQ$3goZZqgV%5^TQORg}x4wPDX
zXZt26rMy*xiLqe8*3sUDWQk~>(18qabra!ci64e_$GwAgV?X)^qa$`hLUv?anL+H>
zeI!PmH>GzE6R*fYJSlP4`l%I-rqzkt<T1+|TRK0>6Qm~JW%Pz|c=sAM>hu;k<!{FQ
z*W)WuMGQ8%pNW#*g_Hhn`2GeoTSiyT(@=TT$t!mIT6uA_8g_+u&dv1v$gpAE(gU}8
zfk=T^{%*QRS@Jy5oo~Db-%sZ@NcUA-`Yk^I!f7&|7OOd+?hp2BJhlf!AWG`qV7b}-
z)&QRmjI(hS?QQMZ>P|J|9e0^6B<_k=sAO#K`frZcn-okTEmjxw7aktFryk>ucgz_*
z3!KH#>^KEi4|;N!F5=Z8hfgl+%iQN7QZt2jXno+-KTl6Ey(;mTuMF#7uwf-70~1)x
zXiD-~?Z=#btu9%rp`whtg_(cfLA8;C#WFxY4rj386(lqef1?|DeCid}^AwZk3fdYl
z(S~KbO<+a^#R&-6A7USST&JYo?g`BH<vE|2`8#IZ!|61B(cnV-<=5M?kt!kaodnML
z`Av7(ssz`$nQ-MS2#lCbD>?4$_348ecD;*bqe_{L#6SPWIj2;7aXsYN>g?H$x(qBf
zUV-##`GY`^Zh4m=6rr_=a8(O!6I#2jg7`bqkla<GwXnbP=KC@ewh9Hgwwf!(v)k2!
za`W9>_Z^}?;x+{F_~md$X5cFtfhd-tag|M1+EuOL#)oT?myXJij=wa${V%tIUa2j2
z)Ek+P7;*gP^9X=g>;Co2%q+*7B})s<pgRlqKdkQ!ooryosVe3(zcL@p^>7!gJ&tQk
z#<chLj*vj%KNyT>7mp+QGoLgpG=Uy!@k2DkZC;lJ9MRDm<yN1)++Ogr*@iPbf;w(<
zb)R=(YdvgyJ$mX@Yc%OmSxL;53Xj2ZXA~6fa+q@y>&rFBC>w6BUj^@j&*wUfFD}ou
z#y;g8+cnnL>+yT{)$<B}2~k_eBJ5R+vwL~cbJL%ix)OY0snWQgRfTQzxV!P5wH|iD
zh4y5>ZeRweBj!(f=jFriT?d+EDB!&hL1umlw~p!(0<C`{T(F1XUG8q|w8;8>#}y?K
z0fEW_e)4?r@O{ElpE~iM`u>JGOfmaDj<Lu>I@%NSGfU#U>-~m#{RX~Ggtx_r<BLh$
z6s;Am6hRDrGG<ed*2afoc{vjFAGtcuImgFu3|k36jbm-j8wDD<IK8^x4DG>`r9zF}
zkAxDjj^br}WbGLN#;J2p_!a*`WJBNz>t>JYq49xKp$l2<tB6=_gbcGAg%;3I<nx}R
z>u9<jM1Cd8eCE|<^r&5k{JL)HR%{CyUOnRY3MhFQoxEW!3#cy80#Xl6Dwsf#K@v06
zFJ>EZ*CZ;x{tavU$HmsE7yrCS@fQiR;=xe{D?m{C^hW=Of6yd5!|z65nw(lhautv(
z=w%YaLWF&OCDb@xHe=SeJ#|>MV0`Ab-7t{(`E%f@Np$UQC^l4b_dS!H37M!=V3*XZ
zr_>eX>A++SP;k1iui>=TvOn$5SZsq~fm+X|4m0on^&}G%I|rIzRfq)n-;;rgtlJz7
z8t7s(nN-6|AkBkMqt@`l@WUFJ9<z7-f}4YB91}P`A|(cQT@t>c`K7;Yv!zvM5hp*!
zP163IHYawUxQNYc92)Y^_<FQI4LJ-F777Ro6;XaX>&a<`13B1LpVVa5J?)8|Jgcha
zblN^6Vpy>glsjU^Oltg4UAGB$$>lM{FB0yns4^^jiMjp)`j*T}AZPK@XajcCQjcmx
zJvP0jv@L*v3bm{!e^eOoWFIh9WwE7SI5)mMpLeCT`l{0|F-+*$M96G=68LW#yLdKu
z+_D}c7}qV+5+wyv>l`}Vt-`~imSZ_@@skl<E}0aH04nK!6wqw4`nOY$!k=92?4evB
zH}(cD<^4=J;Q3I*>C){^kfc+W(d9x=9eaWZ5{gJs?A|KIEDQRfMTWWJfcA5Ii4<1L
zi({F-m6w&^zA|R`b@YyT?vB$xoZohMp7k`iYK(EJeD*k;>0qQwwy0THT3pfn@j-HN
zG=m!|WSMwA;nDDDCAp}4r*$vN*T5{YCCc$>ra;E$oXF5d{%(96u{4QIjKw74qb~?9
zkkoLu+t652^RF=0DJG2*vjS}|A4YqdwluNI1A#Bs7;hS-Bkg~_Yggwq-M{?&<w#D<
zO*55#_o1On6%T*VIG23RT?1#M?Y*J+%h<S7f)rtkUHU3gRS4pmgZZpv*-E#Ufp}2i
z4W&f%J&Uz&ypMhCi~(8<5dpGsT_;|1(H#sD6>JCot>y;`8Tu#2n!)W9YZOJ*%f#WA
zLra=BcI2_NOOV@#7na)tF;fv`p~`-XyA4SrK7LZ}TQcZRK*rtm<Z+oqTn!%{SXmGL
znMyG@mgH~}*vlpi`FVl_7)Pv3PDXDG3`8La%9io)B~vTiQ+jG@lgrkpHCkG`_MA_A
zg5{yZ)~l@*%Qa7rf)Cfc)&i$c+|!f&$KkctH!+#F=gQ-%fk9%!vW<k_7?afS2yydO
z-7E?tiFv7Bh^y`H4N!j9&m202cn3z4QODjvmFx*Kwh0i`)CXspz5G<lbxD%y_1w-y
zVQ!~yy$CZsRC!MEB{kNM)b%TdF)^iRat6YFH0i+=%?PuG9`?SiZ`D%JIuhj6ag`WZ
zksnEam(fLGg?0F$Q|NEM*lEXFTWG%2H8Csz$`y>erDM&;B<jSecKm`u;pZ2XLHrdn
zp7qoDqIQRw#E@$J)bWy?>XU5rJxH8Rez_^5u!ANzuT7NN+i!A;W!N1edCdD6nb>wM
z?)|f}!kJ5^kimtH$Lg}I8-5im*d7l=n=cf7Yvz@1G(izCAvqKmFo!`+$V|7!766*S
zbp<1O3H?^AA!Xm#wm}AkRgJ-xWcibu=fS*wL<HvC+?%r!=wT(4lo>hRu(#RkjbiIb
zggBM?@l(s_8j9&v4ILZ2btF8_(5vgh*bl%Lf1)*kvQXesZYr-yPad$XPXg!YH)7Mf
zTH>)&VoZ56(qvbUsiKcDwoX^Fd|kk%=gT_5Pz34=i1XaFGuYj=5yZoVh1lft5&a=i
z=l&Ga>!O9^Wg8mlaZoDE5i-zndP;o$5sdn-^*H&o@tQitY3&;ZG51Tq$?N_t+|4$u
zou7}7Zno)blA3>^>+G1O@(|$d7DXaGU$VsnUuUczMi|Rfm*(1^z1Ck?RO-y0>CUt7
z=07Tsa6?yL6Pw!}BY%7K|J}s<V4UYcA>K+$k!;@_L3EzZes=Vxp)M#S?7QPH)ojJ$
z1O{9|%CCZt$qn(r%$Z-Apsg>>xBC`zLx?te*CDNZnM@1W*;)22v)UgRqpDastXyfv
z-@Msen`-YfXd%JwZ}(W;NJ$AvJb93j%1M-WmGd%n%iJ1J@|3fQfAu}RblA=LD0*;g
zFi$h**y%C2sp?GF?`p2tDw1>UK`QViSSu1dl@zQ_&T^V&n||MZIC7ib-!a6|wn1OY
zVXKY2(oYnFP>WOfS-P(ad!Ee*K!)A8!8Hh+VlEw_FXh+0_mhlr2Z$gt5!t0%^S0By
zy69wc4YDGn_+M=XZ4zeA)$S)qJ{=9|Pa4;<LM!s}S5US&zU1n8=#VVD9k`PT>L+dw
zc5fquYa+x-I^RF6i5grvOVOl`ZGp3EBE&iUp?89m%nU`?wg>a!Aj6@y09FznEI@Wa
z&2oDlP1F9gyL1{Ep4vZ}@cLriucYg&@l~qncC37pPCeNy)AdQ{91x`(JZ*n|^>k`)
ztuAf3?cCUc@}HTR*-z*`txbcUjDtGsj&iE?k5M;Hk6Ui|Z@Wu<X;qb$?iQH58uDkJ
zMTT%A1+WOWo*5u3i#wZZksc2gM*ZW?PrJ+SnA%<*1v}PXng^LnDcdm(Q+jT%gHr->
z8j})IiRcm;5F+`^y>{^Xm#lGX2tWf9QP&?j)-_jViK&oCMtExF_{i!ls1OjgbninB
z*M-^}60NNqTki{YkOi^4_6+UpRSsu^+mydANO4;eGlzB9RT~7%OU^!pTic9|ena{5
z)$O77x}oD5l_&;Vl!k_$Pa=QJ<FTycr4H*|_wCK%>%CmRMWs(+eyCcUP(}Y$q5{K9
zey>Z_a1{*F{zzKobdF$>-rv5-^Qv^3p0{ov$FlNkoExLUHq!rqq*Ey9gTi0-akfaF
zNIr?Lz&X>h<nkw6&CAxG732^sP|}rKYsy@(^&b^4>I7NRuWR<b?T@lm!)4@$WUY``
znm;BXbE)fdY@$VQZ<Btl5o<=7*mxzbquh7*-ReMimrMyyY9o)2N<GS+%7qGNeyz!S
zl35iuo=lQuf-qR1BGO$pXGaYd0?xD3Y@)-onS-l;=vX~E%|6>`Ag9j?6*_k6e|A{l
zYUmM;qxoHHf*O4zeLfHV-sYWHs+pW+5|T$RsW*<7=}GT@rr6gf*L8lHOzskgcqJWu
zC-7T3BILW=+kbga__&=o_<%z|#9VcI6x4CIa<C)<F>00FZ=19iD}Hgw08}poU^SVZ
z&h3@&ws_Z`y4w+q9Is_Soz+J*<84nz_DsW;Pwh+K3f*8D7pKc!8shn;M{j1m_Lr+y
zk4HB_xv)qpvqP-Rs5HFScqVtn<{^>Wm6uJa%69>>4CTj~5U+Vd_V3^Qp-zsWqfpR#
zv79F#2i4p0GwH7LF<t`%+3VwmVS%8CaFsRpnjWQm1GgLXCEZuafPm<1vP|8_2FtEX
z?j_?&1%>9q3>;CQTCDG4gpGB4`p{ALrMk$s3LoEKSU+FO@8_t;ZPU;Yq9DrLJl9LH
zoB|SpEl<9-alBN*L{*jNvD;q@i-36yScUeOc1thnCl<u-x8>HsA!v3UdWsPJsne|#
zoevxs6&{HrKT${3#@sa8g)H^DX+=xlyRX@<v*^F{akdU|wo01i277!v*p=TE+_$H+
zEiL*Z%<7H}>J(V#JD1@)myzG|zUE{q%$3Bu&+IGZjBoMofQnE<djubq97M3PXj6Po
zO)A}5pRC@&5WTSzpA%(*vLy;??!eWmq9qOnpZcn>8$`Gz%g3ig0mLAGW_cK_{k(d{
zMF@LPJw~o(GJtLN8z>{moxt$yz{|~@dG=smS1{kk=R^QLUrE1>X%Ui1YT4NL-a1^t
zx=;zQc)yMIzs_RJ&^YhJ^EE!su+n;Y-$7y~T+@2>><TP^30KEJV)=O6{iYAs@;)}x
z`An|knI&UGeY|8xO2_3K)8GnexLVPXf|1j8Ns|efO$jvxy7-p*=SSjT22;!B<>e{r
z5<=8~P1rc!^9W{pL?QIAUIQ=m2&=GqXlhDN?w{wzyA&~!>w6t46>zOakDM2sm8H+f
zCuPn0z4mi-h1RI#7ylqauV;%NI3XM5a&S>r+|o2u1h02uJcFhFI5i7mD?ghQU!PAO
z<?`(9!aANA@X7YifSY~%@%s9bIUn_=DWgbDpm4y$U{mt_@hFM6Fi8@#B!Obyn=dgh
zUC>f+>l;by9Mr07i5c{noJ>i#UQ{QX<I$GnySnvMHM)Iwts<R!%q$z$H)>PN31@Jt
z=;W?E?yZD5y5wtkmyu0S(ISVg`m(IO%xy?B6_1=2G_6i8>;}b)30)?7Ur)Gm&_3}T
zCvO$K_|+H7Y#dJxKg@asHF=_iY&vu1aD`N06@8E!Q6d33I?RS#?HvN}0JD=o_W*2?
z<(7>V)<}3{Us7;J+EExk@5|-HGt|(iKq7wbs&?D!<r)0?(0^L1k*r(Q-7Q@IdYUiz
z^dQE)K;Vg4uCDUXF_-zcBiAl6?VNcp{>QARq(Rs1q#(Ssr>E^R5yz)%Sf=aMz-oh$
z_D6sdYU+4;0t>#bZU$UB@L1bF77hHqwoq%mUHc&TjHuydf)jx$K$^k%{y-Dr^LFhq
zC5U*+>-AAuKYN^M8!w-hk@Mw1&43Bt@Vz+^A!kyCn{1sKE^U0f&|B)!9?aC27btZP
z3_(=-V}5L`Utjga+qZuOUlf3AK7W8EPGq~B2|YvG5l{n`^T4BbL4vf2Ot-u^)Zn?Z
z5jI>}hk?3)92F_A!qq#*V;V+~e0EdGj@P8+DjZ#~0pxTGd6;Q|G(loHZ>2d=VtMa_
zmSn(giQ01ylgq#Gsl3&@`s%w>hi&&Pm6%7hIJ=XEx(4C`X#(daMyZ7)pqp`RVF)wZ
zIQYkF!*(`}(uW{AkM{Hu+TELZU$7MMGEO?fv5=d4QTVN;k-BrW?n&StW7Cl`Hc*#t
zx6njr2dsz0TWofyA8JO6P=&z>65!V<n+MUIY?klH2@rvUZWZSALz0bSygM$dJ9dEX
zGw7RyC#%+RJKfHQ5<JubQo(-H2|2s+)pnoyn=zlR?7PPKe{sE7xYXmi&(TPrg~4da
zd^^_aNsiByxYHB!Q~#C|(&C~LQYep$SkEVCXTVSgryZD4e}CWlPR0sF?<*G%Pve*@
z52b%ZWTCLgxuT~sQt<TP?bTUZTbA-vRh5H-Ll*6ihet6I2N-|xX{*xXKc&PBzT{CY
z5rjWqKVu6O=5-o=cM1(SJlYNlq%BW~2+#jzU=t;sD#SXJsu`T`rzj@>S6PzY-mLNO
zD;GwS6zR;N&aapT9oMLzJog)tlG*uJ!3KQ&`8tK6Bo&kqWIScxZkTQSrTK&vhdkea
zKB##qqy_0#n}k3k7>ZxcZmzS;Nc}1D`dL=ZNbJuneK{$0j3$^Rp=x-8EKgZZ<GlPp
z?gOC?y1%7Q2jDai(3ZISD4hmR=3eI2OhX#qaqgGAPT?S>Yr$QkD4*up(Qu(yu>7s?
zHt>h?!{g*l-DGkAuw#W37`YZ;ZO#Qz{V_p>6IQ6T9>){vBPHd=JlV?rBCOYU-U0W`
zVt<aBTO7m&;AkI<Wi=z0{qEuleBA%)NrO!=;k-w}{sEsa<-*er5ZNCPjF(S0lYRyJ
z+lD;c1mlSAR}Upx7gJJ%y+cSgh{6PDAx-v$PL!_vvFW4h_{kA|l>Qi*2phQS&GTbz
z85Wg#o2oMAQG2)_pYgm>a^f9&wOUDS;!}$6+`uSUk{X9(gFxGSdX)3=KvG1|$B>Y@
zq)iU$s$JnD4LXhhqD%JQ49q`*N@@*G0+V>Uq?Fj6(WqiFz9dGskXbGW^8T7?B7|$x
zfP6m*tb`)uH4(NS!i&lvpZ4OvCHjgi`@x3KhA#^nG1&*Ire~^WD*r{uXUzf&Q3%U0
zWdnU(z8Ft*9zyii--g)7FG8JMX5m|bi6bgM{%IiXTY%-maqNL9WE7eXbuc1$W0}@s
z-0+Na3nq%@Ndl;~7}sYNUFZwwe?pm<kT5AXu(R-FTpm^+mc)-h2kqAkR>f1Kom7p@
zYsiE_>3nc2VLNR0a3yMZB}$N(<TP;nJ~xkFt01V^Run#H6wZmJT`oG=J(jA|uG4Pa
z#^=Wy4UP;PV5o@6KTJv7q%S8#K;Md$v;K~oegCmGVY#@Q5o|_&=HBUGox=(g;SbS3
zdt!MuVng?NVVDk#AW?-$x}L*##CR_Rg`5&MN3n(*hbuO2RFnsSYGzpWVA6F{GSd^J
zof}ES;T6)CLsz!~EOW&sLej(*vU3RHE~L{R;GqDRAD!oaw+)ddY3SKOAtJ&wCOqS7
zmxx~QTY1a){z^lS84DK}qfi0z)G93sIrx|A#D?jyPx9qfPAk+8=Ca5H72#C#E!b%z
z#PJf+t5lCww34Sa3(1f?L6Wa6O8R|)80`v1Ilq>~dIkE&PE0Zjodl*qMONuI23JVc
zj#jdO;14Tmd?jfXAOKEtHXX8?eMW@2i207c0IGcd%_X8wDNqu<z5-fX#Elg41Ca^Y
zfwy<(1<dd=kjmoL-g}F`Q=%SN0Tq+@i{ph!>_Qqn-jiC5^8iPL$b?#f;@_4H1u#JB
z>2)uo3)c0uiEX~!@dlkDoyV#er*wAN{Y>`l{CZ<+L%T`_l#BfL(JH0HfRE83TUR34
zI1IG0Ai?@d2;Vt(E7Xhger*H;u$@tZ@lmGeF96Mprc6wUuHzp0-aUqkDkd1_+<FLq
zZm;NFRFAbuq3qm7xPI8NzCw)JVShO1_ul=`^~nxw=t$cw^^ZjG9vN_~uNL%Wygi5*
zPr-!AD_rs&BLDN7g`zBqZ3keGPAWUFxHq(?kTu}$@$+&B!drRVUdnfw@d&^<J|GMm
zAhP<ij80JAwRVfWzCvpEh@R3SG`ItCe)<4p6AXc$47}U3PwI@(E!dRYj*GlpXSY^}
z#xB{Y|NB#YN#}Z7upJ^8rg0H{cO-#r`}F+gB$?C4yX3u2v##!GV5EtUGf#fV13WN~
zd?lfG8iwiAxXxh86SPXG$m}iIofau6ROIK}S_>I~(}91$5(czLI{wXgPkolaK#^X5
zOwxx(9^Y`o74kv&-w73pD*i$Q_?o*N2nuH?Fj{Zvl06lG{iy`*G+*uI^cO&Xlo{A|
zJ$C;EnWVrmNw{E|UO}iI=B{G$3p{ccl$v$Pt)Kk=%$FTHosutbR%>E8+&hCbChgrC
z)0xuv3TYxxawZ-{Txz#K0N|AWUc_NCE3hoy0=`aL{Uk6FN-=N_5VKKfnyi=2K#2N(
z-wBFzcIeO!K+9iApgS;1lR<kbAv+g#;Pq;I@Na2=)L3Q(xLlNsmM-1CWpvh=W%SoW
z-~XV_|G5LJ=ElzMyb>UUp_bM{Hp#z?u22c^yv>`y#T3AVo-LzW_f6FP>CWx+`M=-s
z?c{K>x!Z-H>|@3bub@chHqtc_ZlnGOhP`$F=Z$!y4jeTCYfjl4>gRk+`Lc?RlhlH}
zx02*TK=l8H4zCp2d<ncUA$#yT4!_a>{x+m@X9x1_8^EPqg{F75ki{-+aPUP*Z9~qw
zfNO^Az<2Ab=t<Imv4BDXcEC<aUn(Y@T3YT;Ag_V+>I<l#qRL;-3H^O6wzjl&|8KaK
zjyBF(1c?JHQH~^c4?O=(Kon)@I=@mYGUeb32!MfiuNQ!gIg0}rZ_?Nnq3s(&0BFPj
z$0BJP4#*N);BWzg9Js>f4Un3&tNmw*&((Md)AA7p3Y{2{L3n@%`#<Ytonk_!4_NIv
zW^$7uZd0fGfb_8cgh2e4Rh=4N!1|bOYR(8tnXK1ZN8-S<Gn5eK@Co&*xAotW9kOp2
zEtBV{`2ybdycMc#W4&02<B#K3Hnd%M@d80Pf0FNV9df2qa*uzr;7Dcn?szq^;q)z)
z7au#m9;&VNw6(SnTh23`k#TG%*;#PEV@~!j7)DE@`{n!aBGXo&48j3WbFj>s?7R~9
z2Lwa^cfiTT9CQ%g&TTs|=|szhr#vIn@4^|EdT1pJ*zn_$N&_oc^+$(~Nwm<OabPI|
z=DiEpo>0FOfHLvExP<(U_z0{oNlqw*&G2^(lkcOd$o+LOgk?5Qjk(#;hbNmcF-c)x
z`vA%A{EJT~Ct`x1H0!17uHU1tM*rU-2vrO;ZKSr4l@J2!BxMtUCsMM8ZFvkMlb8~4
zwsS2T<z{5xreErazbi(Qsp^RPvH&}cFWXdd%6m3;dQi%>alj$y{2C(P)k;`v%HD)?
ziX^?ga#lefE47&mIrEgo1qmy#Gdc4(dz}Wt(C$oJK!IVhX#GH*p_+($Gb}jUx?L0(
zNAmQ3;^pD6-U8-3d7yW!ah=93*-G+%4Xv+M@?QXaQs|A5%(GC61I}o01*M3b44{?P
zfxY{m!(R>eUPez2lUvJ;2Pmdy+W$i_0U*KW|Jk>+_F>?ku3$Y^XYe`?7gux3ic7gj
zk3d(sh{%(XrPUIrn;7qH6Vpe7U#6g+%(~priVJJ6x}(U#xe68C+{8cnxt~tI|Nnc)
zrjI)}_P>!xH>EA3ldK^#jEyj{LH%x^?9$v&zmea7#XSwAf&N-_1Eioj$wpVA>^2*5
z3v{X+Ptxp1HR`e;D0zi!p@~If8II-Jr2-BU>IxeVBPQ3~Gi4RV4IS2A2W+n4fs0Mk
zI@+U)Unv><7F=sMzox-^d%Z3tq;$`J-oCSiX+!s&PX3hZlxK8wTFpAYa9c>y)#&>@
z+;%j4Wl&+zC_?m3FovA!h*=O45_En2nWa^)WmMCh`C{4r>|~|-UIgXo9P@p7!ozl<
z14v%yWU*uX{GRFKM<i>bfg?kkUZVFog_X%adHKv)KGmWk;r@oBchde^sz`UHJi=AR
zi99;-DLxE4X6t^^*24MshDHM=(I*x$e**2VCQz<$*JE@(LJXQin`UXGW3g5V%KlhA
zu+xX(FZf|=OPO2TeGU(dR2X#be!3JtBTP)`=H<G4{QS3^Lkjlx@shyz;Fjq=I(*dg
z`O34@_@e{k(sX^(at)61f8lTK!0^+w@IXChMBztZ696!y8)0i&K4Ft91MUGZ!OH^g
zI*!65U=R>~)Pj%#XQ`jQX}+Xwx*fO(bQ+k{BJ{=?Y-k5A032eC%KE^NDhj_+o`29Z
z=#NXNS4KdW^L~S^HHmeNuzATVTwwuo|4<qyy`j;URk!igiB2OU7T-V|9O1+3f2Ec4
zi%U&QrxUbz|9qY!I$lPf@|g(gG(Hk<6B5qvnY#AbIco8JCXgTzJi$YZ7?W+UPtfiV
zLI*v2q>T!LvTFRiUR;K&jSf;dEi^RekC%=?e=M6M%X3Ofwba$6E$HV~$Kbxbf=KWs
z)KsgH5W)|TSf2|?Ufmz{k|dZIn|^JPhr22osh^&3JHC$Q^Bfy$%kq)Q((n$3BXm~u
zz`$Qqaf5Zq3z3P&JI;1r0_<6Lck^||pEJrW1$1X}CTV>-6J{<&WSY(FgbR2wOu&_`
zZq7jGjLr0I2T_XQbE#e9`1De?{kqT)HUu>Swk0QGuG<MKdd8-mZT}*Cs-~&^(T-IC
zt`24ootONeoSwe+w#RLnQ_Z=FMWyL^m;S$^;IpreS7@`GP%Cwg(_C)xG)AY_^P%=G
zg_ImL*U_PXdwsIi$c%^CjG7Or&KYNXnd$F4Y-Eu@S67ilJSydibep+7@9|A8`0mFa
z#USdMcE3c)ZRIxzUrX4y_&o0%!uyP2E;xkv&91gS%EMfq?d?@{K{;RE^u*!i7t-{B
zIs+E#180d7cHWPVN(M&~5!W5@IJ~r%=Yv&GlSWcK^qil1az7}e2K4O?jQ-YTr@3Tp
zSC`ohU04{}#mcSV0vo05`2i_HQkYDZM{|PW)N=Si$jxd5S(cA}(#Ue-{GAO8)X%6X
zgpC0hXh;q_kBX3ONLL;e;*cCiHRITZ&8Tin{!H;=%7a+YsOaUiFL0_CaEji5(<6RE
z(FpbXT_S1WQK?!eIT&_5xDs_IMC3FVt^J`E2^~bn7cB8xd^|LFe-MDJX=TD)^6XTw
zP{8bV#sM@t%+#oj5Ruu?K`|^68^rwa=~T5FrzRjWv@kX%sm3HtU0owI;NQPLn0#4v
z>Kn`4bNvDpGSY@1z2Wzx)?OA6bAxxNc%ZBq#mt9Voe9$S42sWNB(vE<IK)Ef+{a<T
z1xiXDy}@iIX&W0?Ln?G2l=M<di!Ir7J4Vflp>ee|!Bcqe61w^#as9gJ14&N1{F3&F
zzKi#UKe80)Ng9n79Oo5Y*XM&T9yI6T*SRx;YaKECKRRAB@Xsl&e<WhjEwgx>Kc-if
z>}x7Xh~2p+RKt^t#r55CVJ*|taM-B{OZht%AWD#vpsc=jVz^KYp=6>U1M|aG4xk(M
z``A}0WD_Qi10A>8>tN5%CMOH6%8g~8`ThFGW>@Py^?xhC9I8%_d2{8NFE5nF)f#}C
ze#AC*cU+2&$q5Tttlw@Nh-`d=WPHuUxP+Oe-NY=&!4d)+oUExMA!1x>Hf}%LD}EQ=
zhCp$<s#T)QERwrx<tAsranM*a5wbXoY^@Hd=eZ$ji^3ssInr9$Y)Zb8HuZ8o`#v+}
zvQYe1fic1DSASKUKM><!-TnSoC=TR6(`tI=<~Fo-)D~EH40Y<;zjZNh{hEyxGgmQJ
zan4h)`I+{`0wtVzL^BQ!Z)S$Yp}DNWL8iTD%#KK{`fE$BV^(e*6F+Z7Q-#}k2_MV<
zM7*1?!vI|hsr(MW{HSvX7Rl+~d^<30<}!M|WRruofIQxzp&UsCo4=_6PWMwQAr>Vx
z_rTIZQr6NmNrw@NPyuvz5Rc&OY}q*X8<F+NZI9sh8rx}*KZ797mXD+trU|~{2>Mb{
zvEaS=oUSDu7Fk}E8#}#UG$8&71T2{L*Y@WK-a6QL(?9c)Ecu1SA-GP$%B3q}BTDwL
zPoFpXtU@qCkBCIYQ5<*6>;eCNZ(pHO`dk-W!C29f3J{y4n>c|5AkvO+_g%;llM0F|
zI~sM8RyEN>p%o)v0~Vw&F3%GA4UIj~`JEw?Y0_OhlmAxdrUeyw1Ro8w9~Xv<g~dHp
zH@kDt&IkFQDOAuuTO__meRT(3JujF+ky#r0I*=W!vi080POEouDyL#K`?;U~7-O#V
z^z)Z78HNE#%Tr=Lmu!89<&+G(HamR*86}WSc71tHefZYh{TnkM<eQt5*mt3<5or}w
z+-U@ZEcB8W{&nzRm9@oRRg3+j^%1Mt$n}gp7Owaw2MjAzq6Gb8GZD#F-H3izcH7cc
zzbxc_E2yO<l0PN=cc=WzYRrr>x-pr-QSqWO>kj$pT?6iO*q6|msz>qriQnAZWOg$-
z?(vG)jo+8ez87t5@T&SOogXUFKFQd6_DG+#sm(&Qip+N24g%&%KI$YH|B-3?EjLik
zm|d<`slr4nJuV&r=ZzVula!kH2_FLQeehSdrH6w_@cMX#=ELY9pL_G-hC@7_F`h9^
zog=z<zrD_n?ibwn(PNKE?1HI#Zc|<yZq1pzIdi+|t+!;za;hBl*NdMSLE<5yKdYGK
zxCUv43F9P<uXB9wl9(65^Qe9#&eeWp9D@f%z?lBk8d3I#L?+DD>XcbfAcj=OhF&WA
zE7$iFmZmPcUh{<OA%eUkGO`QmSK~u382{Byv1=!#BZ5RIc4I$$f@pBx?j<k&!SWEb
zT1r}|&tm517O-2Z3VomY3!+m}Cii__RKy}uwp2$kEj|H{0nM|+79O<q{&7QTM%$xj
z5}SI1|6<Z`*?{D8!)m*J_Stw@+<aidNkm51NZe0Qk=20?7Y$o)5dtV)vC3891zBte
zwo`aed+?IY60RYNqR(B?T5!F}AcX+-1oY_~48>JE#MahLg)Q$wVzjc~e>r<$9()|9
zM8*eByB!jTMPkUwgu#PS3RL5^U$(+MID?dm%8MXJtsXtXT@%>E21%Kjs&mVL5<!Vx
z(xmOuS(19C3iK9ziD;}7yqL7$^yKd0?l4~*@*_Ux%aCkFY%0!C`0@g;!`b)v(47lb
z9K>7ob({>EAXycThTCMcX3@T630v&MbK^p@5F>6tFCi%iqRq&7`k9DdeO0fH_XA#D
zQzYB^bO_eP;-k@Kr4q8NvQgn*3G3|R6~978cC<)!|AzT1eIU{VVt472A8x~)F)B@{
zZx9f}sI^_4wA3EI{q)bsp)Fm|=UDns>9F*?iQCh%gpBmq-%TE_TH|N5aIR3gS_G*$
z43|QgGgkq8<H~0d&d?rXTL&l_f%Ib7@?Ft9Rt8p3kBUpPk>P+P+9dv%+{~wcd_F@p
zqt7c81@hXe3OQfC_h056Xq5u0x089<wB}jR+TwyGbEoh9LE9q|1!f^2wCiy2jDyBV
zMADu7#!Re~i3z}Jp;F~e(z#?{fikuZ>3EQu#cFvR%^_Of!-BD<Cg;}{CrTCR6{`($
zaJ%Uuz~N{~<y#D>R7%x!u&E|OUopRd9SC9>eWS)6X%ivj7|GcBL;R>Fd$(6;;@v+F
z28}X2l9cTN_D|xHh7lz8&6L%_Gm>K&PDX}}!)3c;D%kMxAGA%z8h6Ll=<u*Uiy(B;
z5YGud*PibehOfQUpVRBIFsdI2eB4(vN(qd?nOR_~Xy%zUr?`}QstexxNKN5~U4MBs
z{kIb6JiAl*5kxAGfq|YYn`U!!ec|E~^5iaR&!*<NO7*orlHTy4=Q7XQM*7a$aD;Az
zj&R8}K<qH3C5J+~yZ?BW<MMR5wz0mrw9O5R(&?O~2EDb5z*yKDHhA-FA{oLe;Q5G}
z5jBk;ZmXaVm?VXbzYL|jMtQwq5t_Fom0!~{?Z<cXF=#ZM>feJtExC@Xa8@!gG+TK{
zNQte@H_n{Oi~aoyEV^=a4V$@wzF)>m(QF(b(v~klJ&rd9Y@-tv33%&Nfu-`;qmDNi
z`MqMsl>M^}4)5L#kIjZBm)~0IG#f%@yJBZlQ$-qo7@1f|g|I5(<fJS;j;V55{}h1L
zUsGA7BkXXLgKSE2Sg2XIe>GI<nKoCqi#SPS)mK}c?$=lN0C@E|uwsoF!FxBNy(V4;
z00?WXuAcU8x=L=ke*%Ep_K(!NaWbhZ#JKGls+_JDo$=52*>&F>V-()yjHz%~YuD&q
zZ~9W0nExH&>^NVZU*+Y5JkMLvv&Q_2%&ZKGG=z0ToODGH-+Fn7{L08QOm_;x1u@Rn
zMQR>lu2#DPhWJg-a;+UBD5?Br)h8Nw*5I)CyhknH{NHyqu_c7O+Kd<=^H03E20hor
z2u>mvavt`#<%g1-<+K%$153y$f;aH+AN}P}h(@cq!b_FC<9c!A$A(2vr#W<yNY+;G
zT?13ijAu@(eor+wxIE46KzIw#pi*NR>oD6{1~4&FP(K3ZzPsb_S<#M9`LHVE$dX%G
z_r8Hq|693%F+Z5F%mV;L5)zYXiAThuvZHOygit~L0Ura!7*52*`t##svZ<f<8slMu
z-8o?gf5)IVX<9llZZ`(@p2j(r3P}s*YhF(Vp2poG4UCvz0w-d=@yqWwFU-l0<J-vi
z&Ilj0o-<e?wfcl`KIM=QSD~!2mpKKoi--{k(tp@J=5s!g7M-5DUoe6lNWx&=TERw2
zZq`a}r|E<r%5^zm?v9~nRAM*b?(5%YVq6xW);d$mlXGA$>Xz-ZeRI%(k7mL+llYRR
zs($?<)4eeXK}|}zfZ+Mqs1(0*&cXU%Nf&mFgNuvf;jYT%ECU0dXS=82GToz@C@Anp
zn?*7MXK|&~h~<(;V=FDqJ@9&zB}HX^eUPR>4gw0E2l7I21Wl0p&oP3eN>xIey}R<*
zA{PP(>Rd(&z-IY}sFCLECEH<pJtV4&R%1o;e{K?9u9oirHO<6WtFjXVybyds)L1qH
z#xzKE(lMTVyom-H_2`gHpF&kOzDdfLELWZ&%lG}&*8!7n_0i+CK@&?HmNi_GD^fgP
zLaM`-O2+Dp@TnO!(hu$Iu0QaCey<#qam~cV5w{sywF?*TK?vd3mcuuEY%^f_Naz_b
zWVgQ$JV6I^JX*4xtel9T112X>XHK2VpgIc&Ov6ewXu6AY&S_jXBc2!BlwBRVbr+U{
zSgsSFL6WH(a}bLl%$H3>NqYXB8cH#dFZ}fQ_`n{1?kZti(~12-?A`0zeZp0e9rBOo
z*@M={FG00_2v4C*Kk4Y^eLP>DxaTg%)m?~B8mIYFI5cSK6i-&ROs!!6!h`dk{04-)
zr|lMp`@8*r2Q;l0JRiKaFz&aNXw{2|KCU-(n2ZlAeMB(V4+)KDU|7x;ku8m9XSW%D
zGJRTy3p$hcY`^GPiP$#$tCvMivA;*_x+Wmz3AYH2O7;mg0t^P~s|sf=!Z%|{Eqk}h
zv-GS|Yc47>$x_vo=5|WHe_1m{Q!zPi4`PhmB&)RskRNtozWR34xULUkagu+t=4kPx
zizF%)zG(71T(aV9<_L$ojsgh0TP=LCpaMW!zsN;|!<y@)-l@wLtW0(1jLZY2;<*qH
zGX<GnG@t<pDhS{ws_(h0qO+ZYE7Nu(Ui_160<+na3=TEjI+eKo7)xa96h?$%w3zK^
z1x-I6m*mk>P;mb!RhZ#~G9;(s6Bwhh9H@RBDYZJl`5U;hkz?jMlk?OXhPXiGS)@Gl
zTRwMX<A9JT-8l*Fo6N5{U>jg(2g=7nfDLaRPd?wh__u;X3Kfk<M$6%+t&X{f)HtGv
zo{ndULZyVv?~n+TeUeX?gyUa_n|?-Y-TRjHa)iDUNZ~Pak+E>8dlb}{MQNYeP5x4)
z5ne({|JIusjbT|oA#r=Z_F!{aIjD!~0K>CrX6Py}DWsWGcmRlMU1G?Kn|Dv9-f;hD
z<D^?=2ZQso%f%XF%jg+USq==yMe>|#g1-z%qhWGT_KEg>4@CLE!$`+2KrQXGnSw>w
z?x`NFni~>~hR$+;%t!uvjf>zDON*A}{*z_8YI;0QYW%0i=(eEwBiV54zu7;^YZpIP
zN3x=gGS~L(OqnY~Ew!#D%IV2_q_4|Y?CoM(9>xALu<CAAD{fXRZaHXN$GE6}?MFw8
z99|`%wtsC36PlS=ta){&@>JAn5i)>s&CumL%u)*AefWIS$uNAf+M4HODqX578c4wF
z7KB*b&Gg%0Whw_Nmyw!0&%smH@t4UTFzc|LQ;<@j!b+8GbXLn7Ml;JpAl{S9RV|<r
zrRfu`bwt;?81<}f)sep!1s2=sYODX&U4s+xnx>P&)1;e_e)C|KOhjZ@IO^w*pHdGB
z@j>hjxA`>vD5t-H6^8DLE-fgt42B~7*3I!R^cUqxbmIP*FS+4}CLgCL!Am5&!3~(8
ze8onSGelZcVAXEez<rZ+9XS}a-(?&#EjgAP4bxY5GMyN)Ba)wbsmYoxv4c?-vk%?n
zoz36<S*^eZiOWWgjmYWY{eO(T1yELP+ctWW0t$kpba!`mcZ+m)cO%juNOwp#NOyN5
zAs`I`f~2${{1-m&^Un9}fA5(+bB{AJvRvz4SDi<l>b}<fi=UIWy?W7Nc07q?tW@C6
zRUz;8JY#kcWBccZ-+R#n#|CEC1b+{oMhMa@9;KE3@e>y+^57?KM9j-58H8C&^)xs{
z>#UhKJ)3lj>?oHR6wx|?d(sXI$^i?O0oNro>Ql@ZkPDA!Q)~)ajmVOl>Ce>Lj*r|w
zw-8WM5;#H+uqsA#X=Kaae0h=omG%-ox<nb(U|$-rXaRow95lq<T;c2<eHnoV=<=jr
zdr!H(^{^y}?&p*4D+!dYcZ@xJ&EPBt`RVGCp~hnqxcTJyu3wDj)7X;x$tfAv7_#{9
z!ykmIwF4e~*v3RnVgE!>xqc%?bBl{}m86_q>|XVa8jmI>3u<}vKZ?n^x^4tvi&#u5
zm1h@46H{*z3EXzEo0ZJ<JM)^R(o(_#ABV?<D^(*KjcOR*ZI7fbaq?Tod_+;B#ZfMg
z$twSOfTszD<;bpizf!wGlIoXPq1uy0iJrBh`5Oz5m(l6vxV+#n5Ybij8DEH-wbN8T
z`LlSj#u%l4)NVkfWT84OI94nvKnZJ=KrtQ9=hapT%oU(#@&)y6_nBZNsX}4=;D5u(
zNUQ$4FP*y>bC#k{3^|BwJGgsmtHN)HR^QVlz*rX)7W~oLubcZFPH4{Jz~^nL6Tl-d
zkz^=w%)!5o5?kd1Qw?_3XG1h<0tzEs#&$C|^w+^x#7W_jy}cdggf&9ums2uPC&zdX
z*L-1Qy)UAo>MmM8>O#=P)B;KJ1y5ESO~A=S*4I?$`jbkvnI$gdgEt5?PA`&&&zd-X
zk$f)1#dLY}Qqgj5R5?LV_t#hZ;~zH1KhOtBpu!P2QY+oli^QX(OjE7mnM81CXN+JV
zB$6E!hk2T`g52tY<~1}p->g9!X2vC_UgymE1xeG?(n`?r)axZ8%l^>8w?etWLA#lA
ze)Gmiv|jhHC}>$;9L2;1u<;9d){gFMg$~jGOvW0N3>o!jN7(anH09^*#qbPB9sje(
z3a_DWo>y;+)G{t&JohoJvNovy(=0bWWAgdc>}xikp^wV_PFucxtuwt%LfmL**8J@1
zenUkPGY<;5NviE^QlS~}Q*-b>WYu&Gysotei!H4ciOq%QbucMf6(||2w=>Jn`t|UT
zwL^2M{OhXqRfT6=H|#8qW_rQAUSD!4E6dFXt13hsPp(A8!G*i{w-tr&cf^q7z>^rO
zLMQ11GHAZgn?h#@iFm$B3qJjj(~CZYF+0s-#cDKGR#(Z&hEjvfoOAw~x0&8S+Vmkc
z+W0VjCIb{`R4?aoMeBpf&Qr`}XgRwv@-VM0U(A1e5d(uND!sHuo4p-!sMH&`*nhei
zc$QD3%N}gWdX7GaYo=@5Km6{kR(u>bQ7&@Lhh;wP-+bwJA-6(G2xHE>EEz27bi4LA
z3fe4^V#BLi^^67#zHqNFa3fWz_wV7XdJ{%Ja=13W5FZHTC9qvOj@l}n`Jv$i@8)g4
z60)s;M3E3nn3hP$z>gIR1D%r5#$q&u@hC`tUoo-KEZILe{Zc5840do(S~?uWS}0lg
z-_j)**o~RwOt<J7Hlded{JLd2fO!+}OXe|T>OMy%9h21~+u1eo$7Q0Z^RBZq#!S{)
zyN1iTCbGXW30wMj;$qR&+NO%f<?g_5PKf8l<U9tPnZ-}ft*lmRj1M<EYn!GaZxulO
zt)R9C(?qXEgITEuGX&F~?w#em-)`IW2{}m7q=q-RF%ExfIjgE0rfw0x_abyJqHll3
zN~1R8m6|hZGj7LAUY{_G7kU6ioY<xw-{982e=Dr~Geno`Y+R11WMFsNh64jmvSYXL
z@;N|;(ngE^3^6@Hh#Rk}KdY|iYSILY;Jmi4U(VuJvYfgy3rjl{(7K<d2%cugY*sGU
z1RL{?r_p;ma3kx@7%#{KXKmfWW!%uEzJ6hEaJSkllekqN@Z)=#?X$J!#*QLn@XEON
zWmbj1pHJGzC-ekkDk4}*R!ft7Q2-2mYc&sa_40Mq+JBF4#Y!}Vjy>jt&y*@o&l&c3
zO&E$sL0dOZ(h*)8Fy{Q-Rl!|bS4EK((%y33>>;uK#&p`M;2EkXGZ8_r{O??qy4jth
z>lHR;(gFqqw$|*2xbHX8EZ=0bYgpN>j|p(}Kp9X|b<~+57xIAN4;^-~qHTxLp~>L$
zpP7fLpt7jEPx~Ss^$%RcP|vYrbb4j4ZBAYZYC@HVAv+1BE<X7T<?K8%0YGBi!{``!
zZFhRx(RVHhR)c145W~hO^hL_&Nx}(g9lrN3o<4KX6XdlQaLg-fZ!IjK?sFKqfA88L
zd-g-mroiEPaxFJv{m?&aveJDoa63sya|#AhDVda#O`JZ^-h_q(5x$y@ETT>?!dKK}
zCQtYCu$Wd_=TkB~mJ~LN3^;~Y`0^e}SS4|-gpjaSTp|pC?Q~P5?n{ANN;wYuu2aU?
z2+cf_k+~qNX-tfqD_01GazG6k8&zkq4S5|g2_wsWf1q{oYN0xvgi!eEaUM0Qvv8(+
zigx}MVk!4(yQ5hZjryK*?cEyR5W4;dH4;|A?u5ee5h0Dx+UJ8^uNPu_Q%Y#by4+uy
z!QW^rS-~|K_+q53dD*oKXOCYc!G{GU?dl@9OKcg8ZI9Fulhe;|3mQi$MW~mgnsH5>
z{op=!L!ZqDAE_|<q~Z*PTyM2h#X}Cjhl>?iL;}$WV9i_bM0|>F^qIQK5$meOcR~WR
zLLTqmOL!cAj(XX%ljsmw(aHiPOMw&pX78uDboj^CK;pW10Dl3bEhbxJ^LfeqF8k|x
z3^<hH^4x~y6Pusir_HBlZx>c5u-0riXp>Y$5Y)Z>8)nOr%s)18lTfx-wa6jxl{oAR
zde$OAUYU^fGjU-y*wwz4$m=^7wX;!gmg!-x%@D03RXFkk2T+{_#%55nW@t`!Se(!N
zP9{t*$|Dmk!{vo_+g^RCbcy@{e$tA`yUJg}PRH1m8`9p{QPJU}oUdtK)c@^Jafu>+
z3j;6#STTE0p9=Gt*u|N$yhc&#f)`Jbrq-z@7jnw&ll7!$)oo2JHT>E>6=`s|B7|XM
z<vASTqMBwU$8;hpM!E76@#wkS`wH|;zm{RakbrB=j|07ruuLgdTdd9q@URt5UGl~T
zqGNP|)Da6QhNO^;{AX0r&St=`sm;z&=q^2PsLbY*l-nRL>#&I3i?~R3lY#e5;I42l
zKK<#mzENVZlbBfII6IswK^^m%Pp?5C>lDp?At?*X<GX7#aj1TYT|PA}3#ak8ZQVC~
z7iTqaet4b+?OyzII4vD6WPhs_&=U;V85DL~IMQ}%DX|92e9XMutb_!wN&h?XoHe8s
zJ~%gP<$4D1jr1gFge=J*g@Q6*o4d1s`Oox-_2%(6E^f``IgQjTdh@`nO55bdd=z~0
z;CG&Ifao9}lpO8^CYlAIwM7e$W>EbUG$UlJzHSaKDh*dQ(UVI#Jv*BWE0!FjSM#g;
z$zBGQhQ=x=m6PWj`$335YI8JmL2myWA;`tcXym&hPx3+WIgYk<Gyxd0jucwD&bT$?
zoK8a47QEv<Pke+lo->WTWqd_!xVh8VmU2609)ZCf;~^<KS`PFa41K*XlTQ2+Dh$yb
z!Xo1JDq2pq{nng(TWX|;P+i{0M%IYIACTXMJ{zR@gs<3G=SIvwI$Xy;bjF*Nep*oH
zCCuIU?fKDVQWiiQhC-kuoao=Et$kIVm-wRY>Wc%o4dXu2Xn`X!`Y~0E`BgzJwKYiu
z#3=U5`j<Qe^pFoII)m^N#>g=SW-*^0q<t!yGi?JF!Ue^}W)pi#j`ndt80vQOuUg6S
zrL}bd?<;8mB~P_xeTNxde8tE-b=q(CE@)Oj7V{5VytR5dvFhj%7Pz!b$;lXlsB6ir
z3SkEO8>^Be>i6G<9?cKuYbs|spu#Cop#w)fuqN`7ihmB;wV>$iI+6ES|J*lFL@9pf
zXQ!u}`Y_rS)+hQRBKx!pjPUb$hH5(|7*SR9{2>NTNH_u;?nOHG+PAJeaxOX!Mk;~L
zXo8_cq)^mas{vgIHI3}Ln&w&cBY`Tjt7$V0ujrr-Av)Tx6OWf{?4Zy(os|-m_uME#
zZ7%zx_KOXDAV5+ol{<zAhj6_<&vUQGg+oCv7&TXW(P1Dy@1kRfv9tCFK|zhO!+mzt
z7^0;g-v&;>9f~H6i*kDwV~l7c(lKbVLiM<qLuY_-JIh#sN2!bNy#Pm8gLVBPby`>4
z`OqDg_Y5n|zLS$;d*uKYqfbf0&q%;xN)&Bx+nb|XMk!Am{qQ{%aa6i++soen03cV(
zZO^h8Ikix>q%sfdn`bc<%**{O!P$@0RL?5zaJCGW&(?h}zU3|J$)Dlaj5kv+aZFzO
z#AvoRc6`{o`HcE!tL1HP(yG&juA2$f*e|%Hh*iHn!Gx0FlCsd4lr_Om3s$UZ#)Yp(
z&`a<Dhq2mVRnu%LV)T2>1UsZuMcbGimgy@f=~o2IFlFJkU2DLxyU!%~;~|cgN_<mO
z#n$=>K9;;jh9<@=yIWb_7Z5DXIH}uF0D9^=i@w`wzON9^&4GisULu2o$3=nVCc`6`
zQno02p=K`koY`@&&evbY&|xBl%{DlB)kqd5b_mJuKDfLNLJBNb+n0QL5r78=peFv%
zkVIJ0<QUXDy|BsZx2my8xLmB}e&BHM-iSI~TSwdSLR>EKO_OQi;C_R3gREC$t=HW{
zoqO@v6nH{QslkdzualCf9Z<LjSLp{jm_}>ARZTn_jA6~!x2fZE(B|NBM1<Jts<fYP
zv^?jq)65_fVpEx>Ec$KU<#lxLXNIkm$n_Z?o6wm0*AI@sVSjCgteg(OMS-QbLy;jp
z7k0~}clUb{Sgz&sHD}n9lCYl5R;pFVPhnj9>Wuq23d#DmrVmm{r4JoRU2C$wKxWry
zCRQj{bE`+GZ@OT5o2J9ewR2xuBu1pJ%w9NO21?#fma-+oB`u4|YN^BMf-D@h_ogON
zE;(zTR7#VwZ+Tu~h!2K*)o^#FKXGl2XUiiqk%uLwAlv=12GX{2xvcAXIUoh51DQf=
z+>2a;wYs9#iK+ty=5ome;$?G@jtwM?JX`&NxS_d$!bUQ<aOzr#BrIgVzdu+P%8GnJ
zO~6p}J=dhLM`&sq*fIThQu?ZOO1wXqyg(94Vkf0QpMQSk%i@Xa=d%$s-XO_xwQCRL
zoRv4_%B)Cmm}r=y2oZA8WpoZdEq@q%W*wWtCfi#j#*n!4<|<gA3-{>LJL*-#m>9bi
zv0uc=uqMK8VRwQ}(~xh_Jag61QPG6fy%yAAOewFjgFs||C2V?MmMoNL)b83PZzDhz
zI$$fc^$jrBtD>p*kOy;TR;=5`?s&#*!z~mNF|{{5K4i#o;3ka?lxd90*;^+&wU!}6
zY7@wkWX%j|PNH$i6|u|JsVS*BHn_8?`W<kzjub1kY5oupJ4VbA9lOGHG}rch*!F}L
zulSm6nA<l(oAklJEO0T^(ONrqw$Ko#N8$rn|4GwqKzqwIpdAq@j~<T%-)5$yXOrhY
zKje0__mZia4#O#$*$F%Sr2bp)ZOVJ2RN|DrW7pE8NSUvQIo0-GN)lT-5u1Zi%U5Z3
zS-Z(+&}ony$hyyiw{Hz|o}(0xovaa_!lrQ@J_{S0O~|WL-9AJ~S&tU|2XQugL3>}(
zq8-$~vxNhvAji))^W1+#<Q4Y|P$KeO<@o(*#AHm)r<V0jN%kW{7qvx6QG7*&)hy2a
zs!(+Ey3n%B!M$y^5NUCk{Fx9*|E4jA$Rs?8p$9jN*tGo|f(*?aCM2=?fs`cp{X2CP
z(O_AGh`K(i-dFv)@(}3$o$u<jaA(<wR>c~<=b56psPfNyEA*Lh5JGT+pJ9*DCL#5-
zk>E?~n5^HFa0KX=&F-txCJCd-rqaM{@?^W6(MF5%)_Cx~l@ys}XP_+L&7v1md(ro9
zh`#5XfA2e{wPXp`FMNg_S8fe!vu;F3AGvVqb7_8p&Q;SuR7ak-l067yQq*Ld+}YdQ
zNwPFNP4TD5Pcm^R#7EaVruK*e@o$?FTkIqtH~=WwRuu8CQAX0yr~Vc6Z{%n81QHJ;
zi(}uHx33qV@$aHECq@$8;KPY2@k<oY(4LMVhfqv&A#}BF3FCyCe_v@y(Iw^hq3Gyj
zMiieFILw%sG{Yzc)cA*v{IGQN^H%eh46FMxEZbNaOV-ym@HFvBxO^IJeSVKdrdtWs
zUk8vl4$!xIVNQ4w)VYFjeemJ8meY#T5JjsuUzILKMm#s7bosZEaBeuAO}g)YFQ*@Z
zD98kz#IeN1Dxu;pM(QZ@nJn!f!|&I1UU!d@${cLD+MH|q`LGuk5JRF86&8-9uoqsG
z;Rz#5vk$bD(}G<JV*-KARpzC-%r6Q!LN~FQ%b;Ih2fgn;oCfF7L>9Flg!0Y6s9P6K
z2lVITA{c~)*TaVuS;_8@%^{4<<0hqMku0bU&W7~AfsUi*1_u+_oHOBfc~<GhI6FW}
z4f`<^5C=OsOC%){7wXQyqkv@Jp8VIP#1=aKT`ROFk`p$~Yo)d7`}jZ+&=qwk*1205
zrP8E!qdl8t#f4OFxKax8j&r-|y$JjmkD8N=5xoah6t+PSOG_)?y#tgP*Xql9L?piv
z!XI0~?dy*4m1AGyP(u*cV2#FjgS5BuNiaNVIXoZd5M$@Q+}z?8L|_IYk~!NWRLcOj
z`00KPZ3Swq94QYWw6ILM_DXvAGy%m^M#RJ_!b+`&j3KZ>r1a<8dtzXcyupM6uJ~A)
z8fO*4Y*^T|2prdRji_H|{KN~;xzFL>!-`dFq)blroHG+3%;7SowUPX0f)xtUY9TRo
zpJqS(g&Uk2HS$an!v`oo(VTfn^F(2b;m%~THg*!xs?#?Vvpxy0(TRNNCnLYPWh(l<
z3TbhJVN(#_2_N2TQKa-R0rFy?t0yOYDWSjv1!Jy>4J?`e>Q51W;E4KmAZ}dQqpr8U
zczpuz`MUt#n|j3tt&}bh$jsZb;T-bOaz>*dIU!vDPjn&isGlLE-pX88iaPt5CJNn-
z_aGn(orTf4hP-uTx256LJ{k8eilrf&MqH8Qj8_IBE;H~orK5aUI6Z7jQNz~1>P=t^
z#(v((gCY#wHX`fHSg-~Q9sdp8s+A)A_xowQfpW#0IU5Mmo2IQxS?RBrly1MRkYRn>
zDQD8U<T=88^sIt3x};=;qfD%v%f@fd)dGCwJbYuMc0;^%@v=dFhu(3W0%;16&vwQ&
zt9Mfkxxypjzwj1BO<mO+J;nczI(nD`gX=r^X4oD#fU@k8Ae>G?(4(*N`HeI(I%p+g
zxE4(Zlwh7*K;!u2O4!n&A=@_uSA9wVQUmS`Z<+38Hi_|7N2a|I<j0oOY;R4TPO7-2
z7cq|i`G#90XW&WJ_)*rBx=z8RuI+~xY^2-qR3G6;Hu(0Q<&aN8y2L(tz(D^LZwFuC
zcG8BIm0M^(MbBLXoPPr|>c%QaCxO788Ni;~cf$fD`NrxyU~vg=!jk;Kz1<}gz+hg)
z!~OXs8Eab)TFieQYe9NF6*xw~+hYV>Sad;t`Y=dmX!!#_0o?o`2BJK*4eAX@Nvr}f
zWH~-&l!*B3$O*@HF~n>yvT!ZwRlwj#i`KG3X`2n%Gy1yiSPOV(<gP8UZOxWiFLG-4
zurb>PgUgBZO81Pu*NbB&j-L14oxDqZ-7C>@py^7N$2M^05KAA2&Tkp=*n<M4w)3M^
zN?Xsff3j5`tbt;`iZ7wH#8N#~?Ok^Ty`oC_DZB0)Ptik^Ob6oO4|_=-FJFFqTXZXu
zoK@bYyh<BM;5onXyG-tB^Zk8To^NqFoQB&)$H<oD-dfcPAt89Pe3f}{fHx>7<b|v4
zqxgnh|8fGTE30gduXKJm);OF9dI=b09U65@)kcjb0ZBc0{vMw;pXR2YpZWS%qS?Z1
zq~IAq;Dz)b6vzC3?F^?t;!R-W2XwAYhkDMXE65*#lVitT`Wk_m3=Rdtye|@@CSr<}
zs}iUZR=nvwE5zM+C(V=n3|6EH20*C{w3DuMtjjSQh_}*uXTpN~&bbbj7YD~Gyj4IK
zP}aZb*p7q%-MN-Vvuhta2JAoLjC_53LR7FD!(mBzDW<nYJZN7ec^D+;xP3o*yk9|n
z#ShF0wLt28A{o1#M(qJpG|e_3<RO-40E|NKrdqjl_my?8(zQ9LF*jVHh5$q-f=vj`
zR!v4P1|t?EdmA^2b#zR`<63LIVyqMsrKO`?U}y;`sW@p?o*hMx&p_+?M6Bm&z9E_&
zn_p~$3v@!-m+yNoK77X!9kw}15pW!1HA;e^Dyvo728YqLH9zMsnd3lFM4<Ra#z@l0
zT~%kH`(ZoDJ?!WFbqvN{5vcdKQpIDJ#LfKfLee?0$9By7nbH%MW|r3H`E+@O@E~i;
z9+V6$t;~E8dm}n+G3$P_uhQKE$hN&|AH~gpz`!-Q6p%-zsc4XIZO@eSEpZ5%il`*2
zbyL@u_~rm1WiAu=d9=+(v06{NWTEV3R++W^3EOK|pp#A5A{`uW+}`_{uuZ0vS>5H=
z*BjbM*rAz_j(U0Zj4G4y3fyDAM9Aw4TyRoP%%ZoozTW)Ra$EWZjl}b|3hlB|Am8L`
zXU`X)S^9o6JRkM^Dp|wz`eOmPcoiK(9?il3w?68i{a)QD_(snXg44A4GN<hL052wn
zxsYlA;g0uTL6=uHzM$Uf^tb%kvJ?!9LJA3o^?=4Y56hd+5|yee9xkPaoD%e$L!Bnr
zfN~}6{Q!njD2^LsdY;R7%lFT4GY1)uInd!jVq?kyYw1qF+huC6sTICv?Sjw$c7C1@
zAJa&?k(i5g4gv|xiQwi8_WA;(BW@F`B$BInJjc(SUcV{s@Hw3e3EgCoGncKnkvGC&
zZ@4^gO9yI?ekiN|A*sV_T13ezJKo2Oh(^+Dp`I#PfM1KFbouzo-m*3<5CtV?CEBpg
zV@pT~yB%)`Mblzu@Qs0`3-=PB%<i`^AT#qkwoSZ;nnN4iH^1CM+{4bd_LJjC>R80z
za0_WT%%O^gKAS++$kMD6pd_Ie;L3*P_9_W=bCSB&e}T+}HLk=H(9S|9B;qi`Z9AF%
z{74LDdo!-6enl%^<~fF09dFs#vg9*{+|A#aTjZ7ceNMg;w~Y_SXeK3$ZOlEWc?q6e
zz~4bFdjaBa+VNO<Q7CfSNK{CRGJ&rJDAPHB&j`ZdbPVs7-&R7sF-reu(HUCAoSk2(
z@k9s=FC$}H(48)+m<~5(e8T$p2cOPTz1gL2Xwh||9s=9znS?wu?BuLU0=8u!d^KIM
zU3UA?E>azV#DyH4K5&%5z)3X*-94PTqYH!+9M9pU20aLPbMT2?V`FNnCaNsYwYXd5
z!ZR2lu(ny+pMZ<Ed(HC~zP~*khHH>bi^F#T=rUk*%O?OQ)_Y#S%vb8*sGe&m?gj(o
zLOw%-l|*fJ5+*t)XXlqX3*$g-cPymeVswiiq^RcJ*m!7r1gdi)e8H}E@;9Z1p^_6=
z<*OwNV1&R4gUS5sxO20^3=^n9de3}y7T!gH%yS0zAMBbL3At7cvNcW;XBm7SfnZ!I
z*Km;G3ZU^w&_h3(8$2A@Y4PWyZNmFDdEIi2`hM}q?U|hbIX9S5^jRq#?c~>eWFTp-
zVQNH%Q|HKyVYR7}u4WO0CuWvg|5$AHMHxyUxSOIJk`NDm{W7QOs%@IL(i`9*5jAM#
z*n1vV$VA-wX{dN8kY3DZ?*Jy#m!Axzop^+Ghd}7Exu`*hwR^<v=q{onsh)}mfo`&z
zw(2)o^Efp2EHT>twFQ6&fF^j@Y4h9H1UNSPUT)o|hQ|U~qoM{oqd_bg!5av(bz?2Q
z6vC4KhOMmcTslQav|Y#YbxucsO{r`t!o55|Xu0_h(%Yh(<4?L;>gyal!Q#-y#e~Rm
zP~`0f7M9hpu{VsPa^Z+f)m9zKvyG<uSP*<3H8x)R4wqTuw!VgItq^YFDSg|?k#K{$
z0w4&Bf!T|6j$Z(+vu!OwqQi<GSIR&0NLxQ1?~qyWSHlRu!k3xXf&g}9b4>r0^#CIg
z#pYtnvP?IovzJ&vlN5RI+-@FQ`+Tpc6~Ah?HTxzp{QYey?8eqUR*;NNJ9S-0OZArg
zd7efKO2*ILk)nIA5fY=;(1YWmZ^tV<G7`^cmGDa#^%HZISs{iE+}tr_!I^w(IGA|p
zZ!%Yw1ysFSz4lw7W61VCa!?jZVUElFv^=5{TC4Z8(+{`~pRi@pGXT<>8RdBn533?_
zz94Lin|`Xt-tACS1sbr+`@Z7^NB9soiAOjHFx--=kcM}C?LKe!L>X|C=m<*r=_7i(
zTM!PcW<Gi!(fj>6q&F_#r)lNACmucoNR9&CE>N#g<4|%5<Q50O0y$S(^7vQ`0!MJV
zD_-)1N;yUk)>lsV%D1Y9(^gw~eUay?c-r2Siwj`2&DRIZIwk?yj1YT~IxBpKWUis8
zf_F4h+XC@$MP6fz&B#i{FtbUxN|UjXK7f0fscOFAXLX1HL>CxZwr`Ig(1h@W#+(_G
zw>>+F>6|9Epdps~Kc>c{!=pfb#R0}QSK}ouro5=UxX<;wPX(q$gV4fY-i?NM;Wn@`
z(D2eQ=2hB2Ai9k1Ku-dsp&zLDKjf7tClErwjRYy8V`IubDM(=69fVH4uPDI#Gd6oj
z#YxM~M!`uho|E>fe4z};W&lPEFt`U1j~;0eb1<4oXc$Q;S;cRL!EHo;L_}v)+Xx~2
zf5<!z9&NmUF7~&XgmyG7B`bS>2>=+mUe~|q!?{dXPGDTzKub$VXm940D>eMZivIiA
zkf&%m-|v}M`LnO`-Lx-j;aY0qNc^{Dbv-=iwp^XS-pOHYCZcJq72a9yp>@TE_6#2K
z!_E4P*Su(uv*B8Qa^C7hPAO(YHhR`-9(*%+7sq2@C2Odvr|vI_ig@uB;5_y{rqhfW
zIp}z=dD*Qs%M)+YB5)g=MMPTrMq*-gU{0hHTBH!0D3|&mu8#7+xB;xq!shnAmd!ne
zbCYQ~Uzd2PU1`7UtG7tV7;VBsq$k5CX{A5CrX}HUwq2A(xN!d{J`f^46jH`fmYLT-
z%`AY*jMD%yWVYhaPHOHtW8oWf-fwZDjb>%xU}fN1+c9O>)(nZ4k&ad`O}ohSOo^&{
zi;oW|y(#qgRID^Et{q(9aRi|lTMD-q;E)cC)&p&5i+yn5xO@tRwlTwtaouOYILb!w
zUwMMa*1WYkgc;}&xaahm@QvpXL#Mh!urgq%r@emDhJ@jc1`V|!8r%g7^~!tmnMaTf
zSC|`m>V6PHc**f1<^wu(M9t>vA2I>~F+kdIw$&8}6tp>b+WVKe4rJEffTcO0%Y~bC
z{4;oQ)oTA0K_Dt^cxLb1j3=fRU3CIA5g=~e3MH`0`^-H$FRq|YVQ~P94w?SRPP;?V
zdGOtg{42Y=Wa#Uk+N~!`wXoHz4V3-pUKIYF5aDncCPm$y9K$(48Z14ZV0INxZSoXk
z9iRIuu(1r$KkLc;#S*2^Gp(7?x4EoMvA6*xLwIF#LbSu3T|^VJ_cj?1pYY=gj}w(r
zL!cO<^dv*zpxN><GW6u<U_lZ>H;cIFh*|y9m*V0kIhfz8;J?hSbHuK&FR-pf+Sjgx
zaIX6)7tO`uWI8IFT{oM`#9U{Cz$*TldZ|wsSX767xGZ@;eTC^Zok6q?mn}EOsGmQ8
zK>Wg!Q61j@_#%+RKcvP!aLzyVYZt8?aP9mB%CyGleKe6<h}fR$$toE=C1?alEN4a#
zLqa?PLL8y`eEfIN#Qad@ON1#HJgk<C%X(G_UrfJKm2k)!d9Z>wlz54E|3sYm5&Z%_
z+wL|I>d320`x`4%XOO;eK*N60q#z_P@bg*R**EEPslPFh-m_fX+Ou=FKmi3LkD!Ci
znTs0)EKm5^yOhBY5<v8HhiEs94mi^fJ+C1EZ|T#*G={`%V&4c7*2_9_)$BncNwn`|
zK_bO9S_GRU@VV0Z)$__2fH`u#M!vrISfP~)JbZlK@ONQ@#$;kW#dre$7nA*$gFgfo
ziJ9U;N=YIC9X|V-I(i~P;|;GoO&Y=uo9GKpHhy!XA9CyNz)4`R?nF<*Ny<s99yL*4
zB`_07zBC1wLv^DsQYne)nG3{Q^zl=;a>7xWWW_eMvs+-#g4&qK8u~++v|8l)(7tCm
zkd=WY6^yG(e|^1hb>k-s{qBZ``cX2LFk>DK&7ps)-%xrgX?~a4k^{W^i}dcZPqQU@
zK$6jJxEn7h(k}PI?EoC8b-ps5E=R5Z_nq&6qyqspVb&TCZe4g$1c@{J6K5yuXz1{}
zRdEPHY^0h()SI2x^0>)6*Y<qRh1s=}#zrEOuz?f+*YvIuyv5`l@oLzqa}0^{hS6}G
z*?Y4kLMa$12oiCCzqLKf`Z}Aof4kBAgbNKJDEWsq0EWXEo92BC4<$2{W)s)8Il{8D
zDY?G#SsYGeBY(AZs&pQt>%x&Jzg<8f<Z=kvJ3-(3Ii<lh##mrQ%gI__)=2>2&aSrp
zfm*TqKX|&2sYZDf#)V79L*?&?>pljjo<;#4Q^GF8(M9@0G+=SRTB{?4DuzclYb_9B
z<y~j=5dJTwlt<4Na7KDADN#F+Po0H#8zZz&?gAi|%(t)(z7R|=A{C8xW6<k8`jPcg
zDH_&6r`*sov}hnEo41mex7YR56cb)x62Xc5R8%S?15k^i5rwP!Wp)P_j|Fvna8%Mj
z#gS8tDp{@>qjQ*o&rd&AgKq(l7GFUMn~XMHAfpC_mIppJ9(NTiX<sy%36@bYn41<;
zhPvw1`a^~n$R8pXYFca9NI36Vs}zmp#lgK!2X|T+7BmHjH;)4OCbspe;OwvT<n9h|
z2k@aoVNwhbW>$N@yC8Ial0c6FnYDb=moR4vF&l+0K3nB4q<?#R?q0w`KDFe&IrXdO
zyi6B$d(kJox0o5V&8=Ul0WIOie))W?FYm+ZQ4swYx@hR{!6}0BXGj1(wH!5aiEN{U
zl{fl*hL&MAjslzMzEIPVgg^FL%ym1T^SmTFkNUj%=pq+4I~Guwpw9U4J|gmYA$6o%
z?N)()qXiP8B_k=wxL~yy?y`vNy5Bz9d__!ob14ZD&o+ZD<<Ed)`2aglitLj~mBUmb
zafdk+0kH9}ypxf(y}3O|UT92#A}NjdvW<lYNyI2R;nTeReZ^X+nmb#<NuPsmyE(Yy
z;!enGu)4T!+%o=sF|*ziqQxuZa~=1~MT5aROPhHMo{V(da@t1U)8;WUeg%=f6XCsl
z08oGzpZb0Q4wl~k7jkgABnh`c*77}=TCTWmqQXQIpmGJ$7Kal;*H*1u96=IF{{PKZ
zZl-~41~}>rbPp$wmYe_bkJ#4VDmbP5&5cWBgz$B@Qxg(?<y?O>FCM6-9)WwewK6AG
zTn2ofr@V>*&`j(Qpuj)Qu0<+*@6@_jF~{8{*Y%0n@1!Q`{a{=&4g>x8lq|1j-Y;K`
zF@cPfVS9A`kW3e6Rehf>`C^TbFq{wG43K`{y&RG8vRQD7)|Q!_8<n`N-ImqzJ1_Gh
zBJB92N=u-)0DeZYm?+4dR$3DVI#=;Kcr=40D8y$Vv071nF>@txp(zFN4HezQpCjY#
zUp!AWh5e!F+fHJ>nl=X<=ty^9wyitg;AxPxs^QUO9L)!idkp)CkNW36VXL54@nd+3
zOOUTOn(u@#^#Xa8=zarQL5*Euif$tDHxmL0QXwf1+3w;RZIYxBvvmVtxPql{<7Z8j
z4y!fGFfrg-T-1U!;%7`ouQUfJCB9=)wY1UEmbA#RF=bk-mf?sJmlKQR76j%Y$;~ik
z+Nx7yqO{Q!b4L`Fe6L7-PL-~Bp;1SVo%5=6h8m15M3B)=Ilc<{1Pp=M=w!f35B#OD
z_DgN#%pQFUa$9Hip7Lyhz(1e2f?U&ef;_aq97H@k$D=o|nV1AwXuCr^ac(*I1`qi}
zE_933WbV<76RP<e$XmFxAu7x%`ac|NWhun&v{u9W28>;QXb@R}22A*+>a<qros&VZ
zJ!sCa5nkJlmU`&c@#!Ij#(jH0BtfAnS25VC+H!17M1oULI>Ii<x3B>&^2|(Ad~&uO
zPEwy-JNIJA%J@IGv8cukd;<ufr6`2S+giyl@%@bjc1;B>n0UOMV&4rp<!jLW@qd<m
zFi!$|h*He?Nh+gnUzPbqpZrCut@|V9(<!iB3Xbo?#|=C3!oxQZNB4m}n%fm*4^b)w
zIXbm>H=3r0t4^J+cG<G|Te_L5g{T%aTby3m%IpI*_(QLf($88YJVjL!`!-ceG5xWn
z)3^2k7T&$@SgMYcLrB4Y;_NItb<pda5|vM_>?yb{E(aqq%POFTaQ4#&L~@9{Q+^Oo
z>xa2KYm{g75L2cZhW(qpAN1>+IVAuIDy`r8{NjOFGW_{Q{tWR`5R6D{dDLMO<I=}~
zrI0{_6Y5A&H;|MPn#)w3;k$txoL4e3{&HTe>%3W4SI^}-sEK~)Cr40h$27V;8BJum
z)@rKfDK*ZZ($dSTGp@p^x8hh?D{h$w^SRWwXUu6j;v13wEROF9;C<`cN&xw?!UzLG
zY&?>lNkBm%QK#ow%6QiYT*5+y=DrRk6{gN1R|FXksE=+UD@?iSv=WB0;j)#nzX>41
zxrV;5NCqc^8X(%F6Y&#BI7$6%F**<SJfB2}x#K@L@d_${Blh-+75s}L!B2DvL0arq
zMjI5!?IBM>^R*SlnP~QV-CwK^^L>`6-R(8M@&?{4jUZAUt7y3HB-|!Vnl;LGD;F@X
zf^3#gz{o#*3F3Vo(V;*K=D+`gGg){vQuM%z6d*rrrofjAq9a13o@m;gDY-MY;pUDP
z#}AZ(ZwoOzckg|L4`302wxd4%a;oK2gBo&Q$5thJ43D|73SyF;0t4ia2i4p00`*@#
z1-dBFc=UDHJ!Ox4r=|6Zp~6?<&dyO)ejx!RHv2+>g}u;lIzRY7csMgMK0bK1CRX9u
z?lBwGt^1V>4Uur4t3!~nbcq6z)Czt^qCfdfwoEAEuBdY<V&FaO!`b<QZY;S##6_Tf
zJjk|~N-hL3Lcj30)XdmG=tqE(lp(;?ckOS~k98G~Lr;a+mG7ftZo~s&(%et^Yk1zq
zP^I|%giYRlivoF<OH*k*YUT1@?qeQh6M?$D+4MMcPo=s`800gWctX0sRXIq&x%2xK
z-PeJ4>Z`=C)By~GAieJmi$@<Fj=aE=MffUx*ZvgT6$adFo*Ml_XS6(%F1<rz8>7zZ
zY0!4W(y?<5f40_t=!ZbORhq9&0YiXN6Ha$Qiv_qp2)eoSlV4v!7WDkf3!E;HdGtMs
zOS=_*jO{k617eS7oi%ZW+;7)*O{*WeU1}BQ{tb9B^)A6zJqaxl0%-HFmM{WT4-EuE
zp4THNwtJ~fy{NeYq;0!J0OC#_OfEnSt+@z;KaDXXl#V4gk~`!8jS~JbrGI;scm|~b
zB!<v@w?}vrjNJsO>l6>!lQEIAuv7Dq^LYs=pd8pOpfW3<G~9%2aVZ`y2(Lms+MG2-
z=$wZClSwihoxoWFlBnN-e4JR|;os=0N(E0ADxcVf7MmpkUCUM_c^oQU9Qckl9{iJL
zgYr~2X$TYqA|o!MKAs3jALuVhd-gY)v*Y@K`NaXvMV$>*rG1;Oz>Bo?ULI0nWoc*s
zQ?p!sX+NUnElrJz(d-q2WgQ=f_53^o87WxM_7c5~UHBd9cwDuS71S2CVvA&Ur@wdL
z)lvmM318=|=g@DsU9I6HatHrT2R5AY2@$q>$->M7u4qvDh^L|{5x-wqboc{e)Syzb
z+C=UbF0bTCK&sF?Ku6t!6Do11Y(EGXpgc@-<^X3_FoR}$+MFifVhHXO*&AJF*t6nZ
z<zytq$D=Z2{@i)~T!-(@`ap;7r#7v1I;$#rV}%}n8ZvKI71x@OvfBEt@zVHQu#bZt
zy78RB?8m9<hf^k-l&LO@pJiiO9r<mKIn^iejEIOVz7I8gYinMXQ@Lzizt_~fv&`c&
ztdD;D*(Wl%T}vT~Kw#4wAyKgKga$Mi@&v)Nu}RH&5D<@-GxxK>jzHkiYp<{K!KhMF
zul2L#d8=w9bn^DY-P%JPW&{0LNLc!Dmx-99^?O^wXG-rx{QhQ5nX>}pn!NW>-qtux
z<<4Ke=62-n>n5UjEZ%ig(ZX}$II8fuHj(h^H}7viPFXHY8I^EVSHz+Nr{`3n@JZ-`
zj1$EgvNh=mJXB<MiN&b+8nUB<i!4yctsqyoigZ^>dCn8*|8OEZS=~TX0xFSUhI7Ha
zWJur=z2o9h4Co8E%$Z!~OW_`wr;2U@KADOOZEa(R35q+O4?=wD-&&8`+!)|a*9pS>
zZ&MbsZ+EvBj&A^ZlI#}s++`*>p!4cjFi5}6?a$1Je+;i)WmboWgB~W~)<dOmr6yGO
z`#jqua3r*@x{ozS$7jlkQ*m$YHTOUYr~_40K$lKp#@XT@ojdqYgS+)()O`P?tt~Z+
za>cA_@B1Dd6O-QcC8r-dTps?9HXp}$Ik>YeEa8Rpo;Y07-CBDqv~MhEu;!-dnAIoU
z`9e=QSVycNn_Utl^cqYJn*qiOteY)(bHO0%qB<DlflYhe`(YhxXTMvCE(P>v2RZRE
z3s}c<tijwZUy1(tCa-rok+wNdxlolgVN!g<OI2gN7Bs~Q8Q_5kf0;9QY^W>_pys5#
z|3>i0fG0c9wak0BWkOce8q%9tAG|2NA3s;H2tMV`(si;M8{c<2!%mib561^~8yO)#
z4)>du@aa+}qhelwkDSa0KBq?Kr7h$1T&r|NnaFu74wX0~0=+*y2g=+rh8Ctzi&@L$
zhcvsPsRgPbscde8fV<ET$&Rb((z4wv!32?}5^gpcMra5CsR0|s=MzfW_aTI5M8K~P
zAjN*37riU(b0v=G5Ops1Zv<6dx1|>4=@;4x_TKl)ZA!_LV?bG3#?3{+MV1R(=f-+?
zB+7|dx*#gR*9VyNTT6kTf0jNoArKo{WJ7YHKuHj=aNryXJF$8yzY*laH4K(l=zHS+
zA!Mh9ztkafAy~>MEWz|}oB-klUvk)(a=M$>uHPn){f#gfs7D``r@Cm(B?)=nI(;{l
zcynTCt$L_ngSBH(h%ojsr;^vTy}izYm`|XzzQ9o52n*7F`Ow2sw}XD|fR=p@#-OC+
z#7Cjeg`F+iJ57T3b3=`topwTEvj)GvuTI@R>~IvGV@-|SZ8{j>;@}<~?pNE{8t@7U
zak1SFaJdWkKVqqr-CQpdeLI?@B5c2nXDT>!-RUH==(;QX2*zXIdZ+7pr40%pUA2w%
zM+CN2r`gE7cGpd-FhyN%@7laJ2WAQu_oZG@C%4VmWCr>bzaOp^9s%y&GtZtWM(b3B
z@L0WEuTv>ih6vk8o%~$BYVf#RCQyWgN23IM&sIn)MQppu;djkjG56TDC|+}#{WW|V
zyYJ%n_F+a(F&L)G#x^P{;<J`**6JVpO(;Wqk*k)-Rw4dJNn3SsKeam;5Bv7`j=x(w
z^qb}4rLP<t#!J9gh|D{&IXe%T0|o_P!CBMMbh_T9_#eE&&VP9YMrty~WOPnoVyon&
zf@s+(h895?nvSai#sqi@1$irS8;Uzy?!LNFxQE$*`i3%ylY!<p5DtHF`U$X)WrC`X
zA=*<>pz_I?27-Ynh8<)j1`Qu^fh0#vz|rc0w7F_S=1ZVM;Q3~g4o)jP9@~;Shd<KJ
z{ogHfGVmG9-*gyse)c;#>)B*cS><-!>J3<1Z8AQ~toHxC*56zr)Op%CUA42AHj1sk
z{5CP;VPNPa@?-S<&#`6R);lOe&vAZkeoA{U(>Z=-b|i><Sb3YnDHBsi20l@TvkVJ}
z?RlA2$r+k^vee2uXF4n$0ap2g7PvI4ku%8WyA2wn=P+XVVKD}%4Tv=Jmz8^rU!Om=
zXkkIdHFZ25Q6Z<n7Z=DKr{5;G?mrY0c1~DM|JgA(NoU~P#O%2LdYn1_eJWsUGOzt2
z<?)Wh(?ut2ToVuSAzEirw}ekk<@&6RYppi-VmzeP!<_&Q60;p}e$55ehps;@&lak+
zAdru1E^5}Qwtg;q0Ur3RZrim_kL^@<8GVf+-xS|2m$zWGH!<SnaJ{)MbUirrc<<04
zS!##_`OJggmv6GY{k11orLAviLCBTD=dYCId)c;g4PXgmBBKm(T5Bpjc6x!ED=ir#
z3j_PhR}N-&WA~Ot;Ex6%2^|F|om;K`0!W_$#CD~m#=?qTEAddtf@Da>?rsr#{Ut=$
zPHmy}AM+xssSz6JbzrK^9!`<%)mT7A!*paN>U$5@eb+*M-~KAzt>cgRpL%$M^=Hx+
z53KX}$8J4MaTOOTub8W2f$Add4TB2$y)TyFP~W*TQz9wIwu9Ce2-*A7C<AE8_TM4>
zg<A_O3tc49^3`vr)b3p=pv4n?`WK*oY^0LQVPkx^C_WbO-ThG-=^@13TI72Cr>U}#
z`apQ8Wd;sz;Py4-v)R$sc@i?!q((92z_EaHBUm!dzYRcQvtQ+4VDC6KGq$AYa3wRQ
z<(zPp?S3!ps{85anQ9dyHPCEznU}J5zfrYW6V5!F-De@H5E{Rg*<DG%r&g-k8s%C$
zgANxKG8L7c)8(sz2C-~7u<*ZjmXlI4QvCLizn45d)#Y-I1R0i<bLGxlc29w`U)gu|
z`_)qkhzL4{+}bLzK*2zMKa;B99Quv<+&I72VZGk>B#w<UOst3beLE{Re{w?HJs8@~
zt&3@%YVD6#mk~88M|vG{SQxJE*B;j>kZ!OpfnUGwx@wj!T=BTMi0K%T-Q7uh;eG$&
z>CMMlz1J^Rp}~Y0*6;$IvYZ1E#AB5EDJU&8?usko1zUsLOL_A;BNF({k08BZH%2f^
zlEQZc&`N*(bQjtU%?dz;;k=#E-#h2b<ykEy9G}Iqzk*!4z8Sh>4-Ol`>1~^BRa|g=
zR8KK~YZNJ?tEWJT{)8b;u7c1}W*<3qcHD+JYA6xjByssdWzznVE|;-UKF(^e$lb3$
z{$Xb0FzU(7ysCNtpU8B|Gb{6`=sg*qHwIP_P0eDO?_!%HS4<1~m3F1Erl#)JtNMIU
za$3y9_Tv&Tn{4SZSK|GBw;mY$U*r4t`w(Jgb8_16c+D)a5tk4`Ta7r02+k=Ow=D%P
z4kzrDK@n5Z((}*VT*ZLB4>POUTD>$;lt95>b9CtVo8za$`!*u{h!}+BR-@9K7#KF<
z;vgZXqFQDqlgrv$$Z1<w7a=wQ6husn46#N<^qZWlDn5y+rz!rEfDNdE1jB1=w4-G!
zRr$RaaQ9#2)p-mXpBGI=1<>J0-n)(3x=lmX5j)kLeK9J0?rcmdT5x6uC^hbEBg=hG
zG}x9+tQbSECq@7z3%du*{Q@Q^z1E(((l9nzjADQ!`3uK1_2WShunY<-Y4L0uP@w5E
zIp?!MRpoZ0p_yA-A8mQ+yYDjjo__d{R>u}kS=Uh1c--}1v%E*xM#e*uo@Y28zs0r2
zH$BhS99v|Z--kUhfjP@XpolFt%dRjW8FKwH#<OYqTcKw8D`T=tZ8tx)u;%ur0Il3p
z_pgSjhI*X7gPHG*I4h{V9F)>zOCd;_jM*+;77-}iJmB}mL)@-WBIR1i1MURWs@7={
zky*0aw1k-1L6hFA%i?3MAN2t0G-n)E)N3eMw03E~Hd=aKeMCR5fKHf>a?`{X|Hr<6
zI!r0EOKaA3XjcQ<CZpB+H&L@m5V5td=f-zndtv#4_ADk_g%;yXM4Vz=SL$hu<2_eU
zL(3g(O|AmyVa(q8vX437wEx;)3X22CIcevPUFSL7BttVG#Ps6p-#B8EF^*ho7zq4;
zaI}Xr0~JsI?E+yPJ1hjGCq=yA+9?_ul6>;WWToW5Lv}bAJb$5?wqB@$^#1=}g@_pt
zQ1yDns(G0!!Aogsladq^buuiXmmO$Bh^hQkp{1Nf*~gr!JL`(`+tzIxjs#u5?Yr)n
z6+*h>Z*PeRd0lE6m#piE`1K!JPVPHPEAb$*a!4-;n1noP)~xGtXsiDW80go1JA}lh
zV{q~FcJ7^~#j%_p2Ni#7yQ6f0e2L3#h_>TEw#x_T^vEd10ERN(RhCwbWsGKiXu0+W
zmz(b)Fhi3sqd#OZR{K5n)s9rR**uOEeXU}!!Cr6oANhJIm$025va_QR{dkhXG{;_F
zsxdl^3Imy*Egiz`lRq#dZ2egjnENH?aev38nD)5Y%S~RL8&aXo>tJtm_4DNLcA~D@
z{TfB^YGWd>P+0BT^S_z03o+4jk#yF}Yb##&z_*|nj`)&eUqg04fo|`ZrrgudXKA@j
z(UiQ6jT_|uHF~^kuRS^i;w206q3&QK;9Bi!>^Pja14ew#%@N@6u(Abx@H)sIf3N2*
zmMGgYMiD#a|G`TDU`rMEKk=4Ng0Of1UV|DQrU+EN6{63~bArhD=Tg&>wcLLjd&}x>
z+^<`^BxY5O%PPHKQ7B6US!e4HD?w9Tt$&8P?y#p4P!k?Npo&>B6?FH+&*a6!m_7X^
z`-Y_k+{>YpHER0xdhgu6{oe~ZZ4+2Jwyrk<O%;=}au~32qu+MHL^~byxr;hyTS%Nl
z7nPyf-F1`84sg43czD<a7h7qxdJVDUD2pzaU0ZjNAO6)IY5TTq(YWE!VQ=%z+8QWC
z*X!IayVkx5jJTyR(R*7g#DUV*w2-3S{ldE8fJxB*jjHd(uMmkW0hq3Uhc5ad@S?(w
zb*pEs4RQZui@^-R#rYtmFgm8-QVd81?8$x9s^IMC_sLVGA!@hT_G_wcS|;%BaF_Le
z{TC6b;xMB8Bi2-j`dGS9cG77D>U33Fj64Dk63Tm%rpnKJy0{Is;PfzO3kOLMxjS2a
z1Hxe{wJEAP^T^-aY@>TrpZWKz%>hVXD~61pI?0}^O0m4t=loUJlWspW7sNhoHwdFP
ze_4A{LN>cWolZP8$%0pgN+VbRxyVST_CWstf`LIx4inn7XkjKqfSqkr`yazAA;1w6
z9w9p%INF&ghDi<@c-{4(=07xMB!}U2hz<^?-e&1ZjbkkjoqXe#3501MNw1jLMbM2x
zWo0!-;duQg0~QU3O{c);nNl4~HWlv?CJ$5R<Ie!fesSLelcw&5eGCD9Yn10K@-m1%
ze#;MF*>v!`5&^aOj{ooCH?Owy2-_UkJb%|m$E5X%ewbsw!|WS4;~e6c5|}T;l-)hB
z!7ncV7FqkM>iqTg|7<bfZ|aZ1tvCPQ4g%H$D6jBIxJ6@M^Gbt6BS0!OR-}ieym*Gl
z$|or;yHpL?82>c|2k3Tv?02B?6u{nmk3(bM%7Ww2{a57VwjT7zWT1r%&a=EeLzOv(
zKU+5kNZa2S{o_#2Pg`FU1%cwx9u^Gy9+2f%-Ri^xU|Y(+O^kxwLRPDUF8Lw#$^Lfn
zL9ph^8H=aN+Y05_(K@!(U2R=uRT^5JHI28Ic6SV#ci`s=8mkZxLPpYtC81(OBFPi>
z61EHv@=2w<N_n-U!e;;A^<uO2X2UFZpIC8)I5p<@VzZg;3TZeu2(tM7>vcNHOAeLU
zsr=GUr8au3Vrq%+C0%Hr)&hBt58eu*^4vfSnr4Ptx*m7~%MYZZp7$`Q?a-tk=I`fS
zvpV1+fJ9kE=jkv3YIEY8woS|zMIiN>a&k3Rh8E~lW8bj}zyAmDV+My3QjKtP7i`Sa
z3rP-KS0a4wmh0iPsD_E)Q$H9o${_pMBC{G5w!8eF;AZP)UIi0U%!YA{?Q+$-`u|Dm
zN`KMn6vaVBc3Z>|WkkvSwcdKr*rK}7FDUo(Z>*=YRFMGCK0e7G2~kZO5%K#M=tO*d
ziah6$K|BtSe*>^3+(WF<BC;uHB<Vsvm+~M@RQPKfi4T9hd=>&zQ`JWNCo^D;{caC_
z1=?PqxBLM?@Hy$fhztJ#Jkv58#p#NyVt2)H9_cGQf`{oWJjLXN%ns#e!VKvdO^)`H
z^wMIUTRj;XNCU2XWuH;|xCGC;7n|KIUFmsAUA5utx+!pnzu;n;csMT@Z{uS28AASz
z^X^8zlVAg#=uR#Xq-&pgtCF1Ybt8|ho?hC&14$SjdJagT{{bQylm3%6KRgfO$DIMJ
zRuDDnmYze0A;16r{rf|8q;Au>shFl87yC81;Ugt%uie;=6U#7OK+HV!&4|J@3zcb=
zSB0PO7w~ERB8XD@bt9u~bM~tkh;jrlo;O#C;lop^&=`ma1z6NcYo5NaX$N@%I6HcC
zf#^|T5EDscFb)F0-+@5y7SK3hd@17+I!t)jHjeWtQ+^sr+sdUDU#TjTE_kM_9r5U2
z?0BVwvnKBaNTKc%FhT(#^8bK_81hdO008%E(E!K(+pH2i*+1~1AqbgU7o>k^!OJFO
z1bNBC06m^7aN+XoT8T#dy*+LY^4<+q8BAz8BuCJDoq~5flXKEhq*XqBvVs$18|Qe*
z_-|mgY5Z?VFc%4w1z13q`cp)@DIl&^qG`Oi>~%qF2pH0gHjyvvLdXYdKps(4GcKZ1
z|GszTZ~FxBRRu03^h2#-yg2>o!x{oAWDl|Ne}mG+022nVVj#8oM^{e_!0CWX7p@yb
zFf}fexvIP}{>8Mxh0Zc^#Du%F8~_Q?p=L{3SEW2J8m{E>1~i{2dG}U80)Z)O`q|Z|
zOGE@j5PKfLz@OXRig;FD5a-E7{K=@wQ@wxPYO6~@rs26~7LzdC;gmtt*-MT%{sR|M
zX<-FaDAET18~fMNpPD2Nyjs4z#;5)dWAX$#Ec5|@xs4>B<HiRH+;L~;M>&ur3&v2k
zH8vn?Sd9RxzGv?l#9REId0grq_kYb}z&?@e*+Kn}=ycT7`9Eq15>O`#S^ZOVphrM#
zGaGOOyj_1r!cU<#vAO-0*!g2TWIYhXj}MzhNYBB7Xlo^uVG3WOJmi7ZEb*^xn+a{3
z^GxKcMutGnLbTd{o{0Fj*~L@5`YJ%Dt^@y9^gWt0KK0YyL=sr%Q7Z5B7CeEv3V4F2
z!2_(e?NB7-AcVfi5X@&-`!wZR+~7So*>-Zmlh8NoBoBYl`&h8a#R6^wNaLgNvitw%
z^`RHmdO+azQ@p(}@KjU-NEYxv;H|ouwcrV^MH3IP0p%^MH`mid{lWyOfsH{Bpz41q
z_&>jFW;}FBDln$rU;i&${1gERw3~ujpaW2g$T2(-@H2oHAaedR>i#n+VMWY4Hdp`-
zCu$Bzq^C{-Dr%?px)b2}RG%6jDGFakgDyK=Oz=;o4Wk%bF%1$#mp;tG<SUu3S!7XB
zLDV*J588V&*dCGh8^j{^Hwa%?WFa_?X(Ho)`(7@9VW8#o=WmuZ{8<??h;L8(7ft;?
ze0>KrTwB}lhzKECM2VV^5CqXXAxc6JJ$evC@4Y5EK@ddmy+s|pMDIi|qxUj;XXfAT
zy}9rAed}HSEXz7`=Ipcge)ir^FL;10YrFtDe4u&_F#7PV0>vvye)bt7Iwm;=8%TnU
z2`O+OP6|>Bvx*|*@Vzm_-gII0?Gd}Fk67+K$U7rSh|W!12+a$}SBs!P0;sv*4T?-e
zt$<np^<*!A{b`611(Z&}m`H9UVrR19ZuJ?F=z&1Q^1uF7fio*ep$p<Q3U5{1$3K%=
zxD6=W=l|W!@&*k`${5=Vun0H7Ayh1_nP4iw?y$@NYL0+n1mCuzK-mNU-5Vn{K$wqB
zsIkXHAf4P|sW-(C-d2c-XRAQGup8yvJ~k+<j|9=ji&}r1$M|<H+;%?S{W2gg6Ai5L
zKxtQiEY85|L4kp0ov;~f6RB#lW;d$RS!}T729Bw}G|8L1ZNDiNmz8Dl?m^~o9^`}5
zjEQ3ky&adnW0gdEAtYt^nXj}buXk(LVr)VoPr~z1yxV}QV7hbH<8iYkjSbDmYSxDk
z9Bi(N_kJM#{NrQ(rVxN{|3d#XkE|7$Z{&BMh|x#DR4H&%Pzgl90LH5t1XSz?*-doF
zeyv1pVpIIRjD8oa)0ZksMv%KET@T~4UnmMfLXwDP93$x)xE6hxuaKkMor^F`lc(o2
zL3=znF&n1;QAHGE1bVuJakGxxPT%H<?_Y7<ck}tU{wu~mi_aOZQBk{HhxPFq2c+nK
z9PxH2(Dtta6Puv011R(*5^4mD{69oNo|hTyKo5MdrH276!9Wq!^tlvip`;rq#FUmB
z_D#PrL(}u~e2NRj8AkO2Db2PinupmKH`Xai_%$EAw5v+W+5kfXWrOT~gr+sETG=1r
zES)E~m!INHQ!odmrCIqr;(7gzjQ8~()?E*>*iSxJPs|g8^hlXrc^V7Cjaa_z#){H{
z7$;D4;tWIzE#N-@QADUks()857XqaZZjS68v@){rL>Ig8?9FBkJ$6Js)}c4m6=bdi
z!{({oaag<94~vmm<G3_>y^1oT_~DJkw=R7l5z^uLI0KPm@Kl5@J4DQX;~pP&%Zp#=
z?IU;YinBf_nNSPv%T;>eQiwUQvrYC`UYBoal;p7!S!|p46WX_ygSpn<9*vv)4O+Ix
zv=WI0cPBZOJgw`X1G@Bg-zfdQ7v5*R_qGAm2qEHz{@{!-V6YsNzq8QtG-xdp8${tH
zj)?V~-+zaqj=FO!g@Jo{tPt*Jal7VmE2!e2sVYD@#f|RcRmGBorw)`pDkh(Vcm0&|
zQVbaFTFqVhQ!UlPu8vEsiiFFf%&BrvyoA?g*ybL1I(y#+IOO~_7WpF6tIQ8xc=3@H
zQ;DcFMD-GdD)f6by>{)-Po~C%%0^Kj__Q)P@{DdugB<P;y~T1rU@Yv&T8x;15DOU>
zrj`_MOG9?%hmRL%WhMy2@ajT(FQ#8(;M`v(#l3$e`ejanmh!P$+#X)$>ilcz!c0#|
z9hqn$1`$(gvF*>)ceLJ>(&OR*+QdTxHq?WsU2TsV!c$*@a(s^`WUfxvXK^7byD$u=
z!~>W_MhDFj5lBktbt~xX8N+9I)CYUPdB&$z&>h85QM6?XNNQ6pbNB#j;xkY)#>t^z
zi_D&%CC(Kxe`#zA59)3FDq_Q#{rYy#GTw4G;QnviQMj}8qVYs|LiN=gdiA!bO72>I
z3X#$sH2&&R0rCPekkm=Aqh$w^L8m&HLap;*Af-@P?E1Sz`C|EJ5AL;S`c2C5y_RS<
zM@{F_t(Hw^TOW}~oJvt#dK4={(`r@`rnYUE-vWR5SU#0+Sef+k5|PGSfYzCw7ZkrP
zWd0FA(mJoLd^CgcOD!`tu#Tsh60jf<6{&}!_g7=}q(vjszPs$vI!mqo7Lb!K&xj0|
z1|fDT${4k&&!*x(qRj3oG@2iv<i?8aS?tvn&owg%;N5>GzQ~yL?m^$7fVgV{DZ-gt
z&j52@Q6FQ0K4`VgTtSciYpZiJ`WegZWHc7VQR)I|;Ine8oD%Bl>yYj5!bvWdlw(On
zv>3lHvhQ<L`+OxGMz{*cT1}F@B!Q4T9HlCQ7Gb`r-xj&4NR!gEaQL~|Isvw@O;s|L
zNUr^T^0Nd`H*Ip55VpKfJ&=D)@kFIozjyJ)w5HQ;GTNunpd7ryi@Z><N#@M~8U#Yu
zlg<jt#}t)AyX9~}o|&)Njt)N=p6?(P#-5tIDzf^P0?_s|D<|O>PD#W<?9UytVa-!o
z&wCEY!z`_T$WNA}q|i%<n106$QBNJOYJ98d{4R3t5%Bb44F-bX^PXCsdv(diG(M@L
zQWDw9n<L{UKA>Yu8lKly-vIpaZ3-njyY~C_^><dHlejKF729g=**#*vC7AwIIW~eL
ztJ<&XX?v@9yH7sn>l-rtfTxa%<d>13SJiEn!MEFCG|M4a0nz|>@`&P*KLMNmwj>CO
zLGL2`(kzU@=4!zzszoj{>_J6%7R##0oHmEvK6;(dBmxMuBzXAW7JcYly?8vp{*75W
z{E0MP{Bh^;H{Lx0JqI@%&ESE%<WG1+t$hC4FE<p|=h3j+w<Zo^9-zAV>Y`<$@EqsX
z?Q@LTPd7vOi@bdCzJ2r9c-+=df`i%26!(kY6H|fNWPfq~fAjx8Qg2DR+oD58pmqlW
z)m-~QAIkXYoW6{%TJbOoM~xdgYIZG@JntwahggwYR!$TR`r3C92mj-n0ys)4ks`@J
zDSguzg;Xov$rE_Pcb^|Uv;A_&Gt7>CNQwfz;(h&S=4Y>E1MYZ19Vw@5*L#Z_PQPns
zhimOa2kJqf%=vmfx0X%MV_J808%-A*HxCEQs^M30$h|P62ZF${ze~EYt_9InR=h8O
zgt2(k<ux4RBF}aQ8V@&sbZn69Bi-;nxN8(UD^2_MzOh+EYD6`!R8(4O^^z3V=+q<`
z8AXHPWZkcXk-UpB9idBgS5+#=^Jm?&r4}W!`PC6j9c^L-YFsRw^p%w**Ec<!)OYy$
zE8N%TDpva*$0P63Ie<7aF))|@DLKxR-00EvrAMfeU@Z@Mwuo%?)IJaXBWM7?zC=fV
zTP>7H0I~TU=_lE~rNIYuOpOuR3>)<OJw!yenx<9`8?U^DllgQaA5bO6J#byw&ji}=
zU(qP@on1k|u<?kC!L2#LEK<aAEjo&zpz|;zx3Gt_?yJFmT^%Fu&!mRbhR?eD$*L=D
ze+pCq!9Ask_338Zls>Q^-_cTWQIL71p<%SE9Gh%9k_XI`3-as`piG-_T;6tUJhFyV
zy`R2134L|#o&GR)KVF5Yw?`_xh*N+MG45&J)AzPP|1jt-SA(1UP}d=6$AAjck4V@k
z|Jioqto!B?w7o;(1UIzqY7SRps#ZVk7cln#@D&5AZYH<zqua9+m7de^bljOrW`4na
z|3>!>#PnDakA{6}%?9@za@%uuQrgRHyC3^k`*iJvwv)M}hLMhf+Xw&*@dE?YrdTZd
zT{o-c4jrV=UIIIz{q8p3L3**^$qeJJ>R1I|LO=4fhZq=TgfG{3eiQc`F2is`6N=4%
z776GMc4ta~k2pERfr<|{2}@2)I%@u`xI|<MOg}BBW=aeXcxL|8eG|cJx*tU^uQhi8
zAYr-7Ga}3r5gQGGbnOqBL`iLDvRPE#m2-0KNZq^`qc@*vD+Pc!KEl5H=AmJJVXY?y
z<bAa3iO#eQTSVibZ`jjTv4*n?+3aAnH|#Mw$YX48ZP%Xm-_meuCi=?idW{KHxw&tV
z1}O77mOHD?2#sWSE7-w#vHA4)>?jo(p~rOA3gqWU5rm+IDqXAi!QY0=WD1`q;HN+z
zL`q6QMf#8!dNsi9z!VpATHRq07J`YK?%CDKF}V#1?wcLvej?OiXbbG0__u&}%z&&M
z$HSvjGp%}S<-nu1TTRlIa6YR7x1O4(a)NG*J*AB<C-%CM`b*L5#GCy}Bkou55UANR
zLEBU~(AQZP(EO3xA9>+~_Rv1&Vq;_irnERIxj=$^rA-Y!KG!?I5|LeAf!q<O1KzYH
z){Kyu66ZEx-uo@d8@k5p@v*n}@Cv4(Y7Tps_km>LaquXjOt_Jh0{>#91saG&*OW4@
z{@kIll7%_CVmc9I@6ok}&wP37`$hi6TU}WO$P>C&4El^O8EkaIOF+}xWpQ4_#2CZE
zaLa4^C}Z~X0#KC?bPZrQkO0fP(XTC+3;$a*vgQtJCG1gQFsRzI&u`>Hk-u>fc9m(e
zotIWMn#pcf`6}t%Qqn*{mfKi*MDRBry!n3~fJyGGM(?rm81fCMpta^0lyXP7D<mcT
zWXUb@JKL3?W<K>rPCHknWf{wCXf{fYnye5fSD9YUE(s%GJ?e!n=V@uvT+FB`kd&;{
zKDd>T)wH_rm)PFW8W;4)`)SvUqDfBks{jom4uz2&Hg4A17w*tPkeJgzb>MZN|GX~M
z;@n1;wLvzcNEY#Srbbt#<1zlNH~T|ytlSTaX*BBmF20_AzCS<~B`1z7U@-e%OZ1dM
z)pz*}6e$`S{LN}nd4l~F=%Qupv0M_lsC(^B$CPD>YcJ=G_qaKEMBiQ%yKT-23my7i
zT58nV&IJO?-a;yxZK<U;ba}V9Zf<PSv8(>*uQP@BmF`iAf7Sbw@LKL`xPLP8BJy;U
zt73P`^FHJ@N}F87hcEGBV1{jt{I2Lrdeo4Y#iNjy$oZU~z&1s~oaxvq?vLvAenJ#u
zV~2`}f>kwQ`Nn1QpFgi#9b)|HxxL@d{Kkr=+PQ8lvQ>3EK5_RLi3iU2_KeHgXhG6H
z!}D1d9pJ3-03zlW3-L;;JG=tE2+5Jj`<H8Tn^fd?XI4Acog^KRZBwhKr{tHTI&-gs
z!Wztn*)|BC1zq&b&ARO$Cvw%&JRiwXVDJqA$?Cw_tf{Nat>}SUX&=n%%vJ8{nIAR{
zt^>T!qQnVo&bSczKvu{eBB>NuQ-U_L(zBU^2Esz`ZIO}i0%MQd@e5KrG~Qgx2G5_V
znYJH39kq=+;)|{l8ZP{h_*asLpoN;s7@DN@bR{tq2ZPvJQoES?#Q3r2tM6x*QmqJp
zBC%62zH*lrF#`3x1XRJOZIKsvq1^YqMOk~A^&{u!oX~03x5dW>YlukUt3GL@o4cyC
z>p)&+Te9mmPL#qzcE7-Jr}+-dUFT|+s_`V<2&4pyS7CWTS#uga%CrL$z8=nJ+7XNq
zIN-NX-v<cP^D=v2hu`J|oFw1b^6-Vnr?8sUk@G1_<WV)WlB!Ps&}Ppewy$qM>im*%
zxAAC|xlu;&c+VU_qY*JpHiy`-Eu;|Caan}_$az6N{O?kBO5&NYS>vkWC((I&9t*}q
zYE}OH<S|rHN_H<Sl<a8AbcDoy#>{{OuwXhTL_DEX6x{y4Kc01aR!^E>MQ`EXi(Ub)
z)*{7iLvHDR^W|P^DF5;*LVP$lsZwY~DMAKpAUAz+cnu0f!W%9%f(`jV!Y44I1H+4!
zyHSYyei6BGZT{z6qim<yBzC=(CMBh8jJSC4pVJO>pC!Q9=T<&x)}|QtpACu8J9wWk
zRVwoZH@2MMpIr*(_`>#YJMy15zXY1cKb?S!|EazCzu*3suI#o5<p1}g|L<%6&x;;7
zVd8y^7QxuR{C6nJ48W&+j>_vsTV|!4i7krJvkx+0RJAR9PzzmhrZo7=7Jf7EA{-7G
zdJ^@_cOcRd&)ZM;Q&3t~VDF6@tf@erJ3-drL#u#*#jD*re_$|vD~V1v$+m{4tZ#^)
zhsfl&m>(&y584g#fVqEr7}nDESyCqC9=Et({9eKzc-p|MO6&Ig)w@9DK5C3xs?k;d
z7Nb0nPfEJs>)D0uPzO-|^uqJ%ri7>A$xe%j?Y#3Jjo3#%P?tphMnT3bN4`VFwUqmx
zUtYX0YxqoybEA(mENWV?DK(5IkVE_PzTwZ-`7JAYf3?jrnIkEg*i-s5I5u~ZiV4f_
zfv8|XKF8);|6n5dw^n8+hu(~y<W1P*3uScwmbQie^ms9EWwU-WmaIJMy$PDX%ntyd
z-;6osQ0_haA8g=l!wcLJZnN>AtxCGkHA#sMlt&z`orBK`9(5{PS<S!sGl$#R3|8*9
zaYQ=<ZAa}xcJvMN_o(TE*d87`$96q!<9#5$P;p~Q|MQns)}&j(>j38;8s*0$qX<vB
zPet(%69UXAuzGL6pMY9vX6p6tvgMZy{_O!Y&dLVO__f`QaC>aFRG)YDNa4pAWz(U&
zG|=ivT_Q#tHrC_Ll)x`c$pHhi!jq_is`}1a|Bs8X1<SwZ9OFw<2=+sm>)E{?Yrx>i
zzT@sC(r{MRcUGq9v4On%mUuBwv872~i(IdMW3iX*>9!)rf*2@{_QyN$_q;ka^7OEm
z>ZsglDWyWfR~Vh`3n}V#5Y5T_u6K$ywEs*J4EQtIGb^QWXl40nfx0HS-fz^Ga&v>h
z#k&G_bytJ?2Y^dX$p##l=+_J7;NW=mS`*SK+Dv-8lW0}Wq~d}YW&vew4f)}j*-7sG
zntIfhxyzMcqI?P#-alId;|m0nJTjv$Paafuh@uB>ufRADxQ6p){xSSVQ5Ai^4(bXX
z6sov4l<FR6c<i>YeJf9PMz-ijs+l@{tgE&Bw&Yy5{2#E~`q7LMxs`C^8I+jxj9E>9
z#d5z+0P<qJ!g>f_tKNI@Ro6c2F%yN)w=O#+wRhj$v(n&h1}%Wyf$+GeR@Pct=~~MI
zAUdV7BA`oqzMHhcqtQ`GP6K13__|pzbh#Z~w>uCI#G0ycoX5o>?p-+{`vyb6ebDHy
zUTu#^?oMVX(4#b&mDD$wdz$N$wY)f=%srhgRWDS)91sR>dP9+fFn4eIz!D&X1WC62
zH>P=Jx6|9avLgKy7#XK(FLrR~AgvPq!Zrh0s0M4safsIIcwhTkmpe)B&eQ3qv){w-
zhrRl90Kn4CU-0k%fyX&XE+}kYqyO+~;~;Le(qcnQ@G*15+S!nG&&SGy#Bil=i3~q@
zFg^oH&DcNiI>v0LZQLO#zo2oqk~0}`#w44)rRwPpGX&CK&od_a+g=)6-)GD0E2MI7
zdo2v@(_}MH*6CkUa2Hm+8$CPeZ-LBPRe79`kJq}QQ&pd40iH$!aP*gJNJcxTAeeZM
z<xYRsTf`L|{CT&u=XoPl5Wo9IpB8#(l%*PUIoIFPK<z|zph1X(jahK}L;MO4g4@%R
zMu_WRI@#6gItUH2w=T$?N!v!WW<<`fNZ<Xk7B`XBCxb2><j4JY{m13!@#;w4zI4Se
zYjfCstE{fDUH9v`b*e%$MpoDxi>uH+#wor_W+l#~`uF27eydBF9+BTsC#}_+fG&qe
z;1N&}I0IqNyG0*3h?ER1<i06^d`nK`qhkS8D<SjFh+(SQr~HD}qrVq{qq5(sEGR`~
zvb*{4tT!D>_%R!dO~3;geX$xE3ip6acpl9Fe-%dy?eM7RDr<u-U@pewub52i=vSKc
zoQ`WdJSZKG6guqOamYS26Hh$)0hZm<s@24{K&RvpnE8oJ4?U(Cj{g^3qTa5+d${L&
zgT@dNGANMY>U9mep4?;pcj6eg-ly4&Vqmila=?T+BA(_dpg<z!J;7Y=mW2QIy+%#P
z^t+42Dr>U@I0&qu(z(k$k{;{e)zzo%;(-q{DPZo9y~Qp5kUNP#L9GrR0h4H$?0b-+
zex8(yY;t4_8v?iuzCv1oktfgPqymWYUf<VC2a-oL3&VX?Iq6UW#HZa&n%fbJ=`cE_
z=2me@;D7N&u7~ivk6GhA38jgfYsUg%a8SQ0XP%OjNI<Hw$x?R&h$^t^SS7p+O&ZNn
z2D0n?2k|V_ii(hXuZ#?{w4j9e!m`P{1En(&ZCF|5L<5IL{m~#oSyDn`o>%N|6!mW2
ztBao}jau{)T@sb*K#?1gV)^L_NZ2kl-FTg~GIu!|%pvZ+8a|!Tqn}O#nGcqmiAqem
z4e{}6*?54d&_sYkjgXPPN1Mh=Ekyg<q%17H@Qc`QAi<Hd%P6wS>%t<|@k%_NF!O0T
z8R}_%{~0`sSU?k>{EdoLsh0F@5O1kE_!#)Xf+ux6H$A*%84F6ybQdaN2Eep#f27nF
z_uH8v^A<XzO~|vjS{u7wEv2Z0?>yN&$atMgO(`3NdG?O>zIe;(WZiWvBU}@~i}{Zj
zn$~7B1quwDq{qwL3Tj%l=c|{#jSv00`ua6%%9rDHkYCgbFJ5aEv$(GyLqbDU5`;PS
zhsklWTQ)dIkG^EW=Tl21h4#;%1{2rqC$Cxe{v$v>vwHh^@yl01|9&8uwn_NQ?UfhJ
zHuu9n%j8RCmG4ii@6}przZteu@(E+pV_QEcRX`l}HvsqU$&}%S+RJsI3=qCPp|e-F
zxBEx}A?MQ;qGO?X%1S#CZOb0{O2*H#u5t;e7iu)Ofq)wn7Wi8BD~eYp7Ut~r{A)e8
zk%YRVtTFhhV4o&Xi-^c>#_v*r!XrS!0B)c7q8Xe#1ZEE7h)9`2EfCi&EBh6s3JMF`
zN0jC%(2p}GL(LsyMVo<c16Pv4M&|Ba?DJ(h%0-@r?TN0_xjFaE<?5Z?dQyrN7Rk7;
ze*VH9Vd}YY5jFT#i|Z3kLo-pho>vV<9%qHQlqTA;W1E~kOhjAgRNJlyU)8B8zGUR3
z<v!+}gEE~f1Qknz3u2^UFW?2_88btb^WlXI+4y|yKV<*i{0~yzjW^hRiMu=Wwa77h
z32&lh&yfnVIosznPy34_4A{&xE8aPr8&Ov8RI5UT4{Kx8LW6@au752#ZkC%s0)j)|
zL){R-Rkm`6`SOybfz+(bC2=)hZuT-v)zJ;Ok_|pcj7mD|LWi<(U_$^XD&Ow_Y4<D&
zdg?=R473Q>#ZU(<(;G<uc{UKLgWSQ6URl(qZa8X%fn69mxea`sfS#sQe=e|~+-EFQ
zyHMpC_{ZMQ*BUE+zqgRej<xzRUVxAr!=~^yPUHqw^5qkV+j(#@0)FawQXHcr>~geB
z0kypAwu+0G<7T!b{!NIE?#F!jE;tyg;W~r`(uCW1dMqw&IaR;b1fUzx6+k=`h7d`P
zB&Wnb*-rKh%tregTCr{KBIQmK7`SSeMv*)ACEJ^shc@ijJ8<RWLjTa1{O>{N@b|^_
zQ#iK7JyT|~k^2YsDEWQ;FTPGZB6=du+>*Zf6YtdrMU8(1lEf=RARad67G464&9^i!
zgX(0&MilUL?||Dn`roKaidif#hsLRbgWKcIjr%t8D$@#lw(1m<*0h*awWcAEkJ;_N
zqM~wqeEcYRf6AP#)lNHjAf)9y5oL02*ZIly=h5iVEE;tdusr1Dh9wr(A!1i@uHp1E
z9S3P&qxMzg-f|+?Gb^LWXq~F}-;!<DD7fcbp|vJvUkH)szdg0D#!dVB%yk!1t%ruT
z#*5XV4sFn6kF0XLh0}&hPTk|OHD-b9MC9~O-DB0ps|RP%IWwNSJB??Pr@l|+JXTHl
z9d_J3r}J$w4>2BlUi1h%?D9@bjWtw#oTW>4avBna9vj=4U2!*F_N2CSXvsPpW^ta*
z+PbQ!)a(s*u1~OdUa!6K53_z=>o&Pq>~@|z@#7Q3X{7?$a8=Chv3G5GwZX!YAm}PY
z&${3*d}jFRQ)igRRen&gGB0ne4svsih$T)q)9BVqaf3b`Bw|3{AUi#sTBTSGG0Gwc
zLVi)^HRObcXNQhq*&xW>$V1Dzgh5z%t#<C*L|&xGi3@RZ8q+PC@FpnidfO=ZY-7NK
zB|2wM02$NRaMoW*0n@5?cAiYWSZ*O3FE&(j*eb-WaI_1JXX533c(3j1uuXW%{De;U
z@c4L3)qRIC8Q;QS0CC(#LA7nVyRKPkg&+v?G}G-8SiopR9PfHAU?t}j6gWFh%Zhf6
z#dCXXk?G*UotT)+=dKY0J&X*Ik@vX@G|tZlgqmO6n??DDqYbZ#ri66LhAJ^camchh
zUr(b3RjH_IY~5XKuKfLF>(3FN)9F~oxE;s1DyRhQ_dz(pwxAm=Bhx}EKi8*Xk?T5z
z)T;aTs1Q4KnG|643-<9RrLPX9#YAH-0q908^UFgrC<tSKG{LQ=DEjfzwcYGaQ-{T?
zjdLs>jT1y02v68TAP0xGkd)FIi_0SSFoBb5+cid>XjHGb8b3cj+J&xZN4WE5nNFis
ziOv46b8PHBoy&Gy#C3N(B`fuM5JQN1@#rltsZ@@*d+H%sPO_gT_1rgBxGyfzeMXVT
z2V}~e_B}C7N%QZ3r~{TmCHFh8+C#|RHP!WEOe3O9Dp#}C<b0?!@}_4jLS@K@vPmlB
zGO^CpnrZ6e$6Z}_2O7^d_2t}}EgXRZfQjq&K1<!zE;lvJugHk|+OA89{*)djPM>Z=
z?x6eSnQT&eY?tBq3kuQ{)>I-Q<=l^x(340gs0IcGc%3(A2$B&8O-=LPlO`u74oW1G
z`0UQkrZ{^ZW-hV}H0(tc*G9!vR)#Lo$qHWt4&;w?pH)rhcgT4z?z6lvP=Vy+o4PEQ
z4D3wR3$qI<7Y?~0g6H5H$A%=x?X^Z^TQMR-#nhtOSy54OIy?DdDlpOrrRfvfASN2f
zHsq4t^>Vlzwos6lyS2HAuW~g6LJ=ofkY~ur+Mc~<MO^oqb_;gfVZJ^--|$|4xs45n
z!<o&8h%nLApN)BZDp|y77Obj$`Wl0E5nfuWcJ1-@{jDb=m=D%%b<RupZC1BqV<QtC
z!<JW9l}`&@Ho8MTdw2Ny2+&f;DiM(q37wuIDfrxe^^_^NNUUyF#B-ZXb-_n1=YP1K
zeyO#$Ff}l4aN3A#a+kCMP8Z<gK0VyJ8Q}AU2;0=|lf0Y`HBQLayERr@M{WGN;nsIt
z7G;^XxC?c(o-HF|q#LaTg$Zb`>21f~BFv97=2T*1Nh(Y<uf&KcV#q1tl~m-&y}}p;
z1>HOMsP5oAT+_&(EYZ(4RXR1E`8gYGw0kDv?cys`Q~6=`>-b3=w`X8O((-z<`4&?9
zzMUI1Dzk0(FeYzw^T2U?xU8qHnmr)L`B1{u(UOGU5W~OaAx}!SLhek(+9Ujx<z-4?
z=l0<it?|9o4AXJTFjDsFT`yM7tN4|VYlwqGvD9~XWW<fmJ@7H6`0eR3-HpZSTE`;B
z?^5GMb5dd*vI!0DYt2n4^*He9I@{^E$;P)Txg+Q}RCH-ebOSTBRKJR*%4}iZ-{{j&
zr#Yfgj!@*wzl7D-a+C9y*BeLPsphSYn$ZlUoT)TgtC<z#Ut3)j#BjdS)+l;kEyT}g
zbQ)UW$sFf?wHKNtLrN}W!^XhiCnJ)pghM`Idgw=(EqjN{<UI=~)Ah!%6}5VaiMxe1
zqHZpmY6f~f-_U1kh|GBR%)UcLdcbVD^1Qh|p12pe;_2C|l0RxRpuN2B1c0(vsNx$i
zR;*R$c<MLqrx+;rdg`ZfHWa!xnc_}1&NN+PY#@?)H1O0^s#22Q<Kx=YC~~^YmI6Pq
z(JCsSl&x%Ok$_RvAz8@$mtSKHqQt7Qx|$wNakD2<EIsbwxY+BdI%p0g)ZOwUp?M|v
zou5!nIUl+7W7hfncfpK+G`s$rz|Ukm=Fg*hDKE!pA48~o6>@`u<vx&PImqbfG@4vr
zI>gld80_fm-0OI=G;3DzJuaFu`P)d9yr4q^p{;G11ojqu()FxscrQ<xA*M_}*TrtP
z%BgE}hyNtxA?I0BGl95x5DKcR!iM?V5rx>R?ol$aqpe;lbewf@vF7Hmz-Q}6zIP)%
zbh!yI(N5uhctiEBxPdvYF%H`YpHW>(YS&flw`QW<r!#G*g%QvLc>M=hNgS7XXG6}8
z&f&~CqfFfGpM~33rpj{_Yac!;y*(r*tLurz6{W-<s<EG*U}9%03taE7|DdXB<nU&C
zOlFe!c<WrJ&W?$VAxpwO8NE5|_({a9AYWO&%kj2=(X5^p4l(k4x=V2_23f&O!(N;6
z(<>k?siUEye0L7_ahij<#!rI5k-Uwq^$*B-kpPKwUG5x>?5vU!eEf5ze7#R8R1_4i
z#Ig)&kGC##>OJx;yemUU$ING{M9OGUsvK|DX1<Ydevp-GL^4p3p5X24+3j~U^M@}u
zpSy8YR&p76pTsnDPvwm~68F$X!GH6Fg+;4G?5!BuIoitZ>&!44lfgm_e<lq_^u&gr
zj8=`|CGu-H=2Eay-Is~tScVk*)`q=RRF-qDFPz?4Qg`?D(NHr=W4%gW9FlN7-TWns
zpBSGkDR$>h=2y`;)o*fQde-}rg9Oq6IVmZ721Q@*O%h++xlhgJ5?<BtnG!!&Iq!5T
zA~9Gs=9Nw|LxYg=_KvyK6TQ}k7cU0Kca)zoJqYrxfd^|ct3JDLqSV&+(Jw5)X>}%Z
z3Ne~Uz7zb>#>Jj(yL5St7%yBqFd$EiTIvmx0z<HHcu8Ptkzx|~Se!@8FoseH+n)Sd
z8D3-F!4ViK(h64YAznNI@$wMJ1&f_LidV6gng}LXLmK_`%Tub-SK`m2y2-eA_nZWh
zO_aOm!UKG$ALGBl%6v+ULpc~6u!?9nn=H%GhVgwDCNPgzkx5J-mrda5aoFG6FO(89
zpXRtUACqhByD(ln8?rYUHyh7F!ynx{e4GaG&`>Z6zvmC0>$9#hF{PGq|9~RR+ODD+
zx0O5i%Ej6{1W_5uVccOIWWpA=<GVt4G)8l^%G5_0R(4kuM;RH}FHaKDx2H9ryJhJ<
zc=B$dzhiA<u1wF-;OfYZUy~v694V@jBGl9;+jU6<jV5At$LiLxPiUV?iV2+-Ez&=C
z6w8=6^MSeI)YR}4YF5sVjiyLNY04$=Xqa5wzyosB2c3s_S<>&Z{?rLu@hsdDwldpN
zkzvuSyVzD!niGQAxodPUY%cb$9m*wFzc^m2#wHsxhn3#Nudd?ZG<m<fm}z>i<!Eaz
z{ptY^d4J9VYF6Lbb+Iy8^p$0(s)3{MTpobz{k?PMB0>lF6!Ov8P@J;o#k;7n!ngvp
zTIc?{Hsg(02?;;X;%SB`DI<hHV1RmsNuA417Fuw0W~LFw*;Poq1IfdO4jU6E1X1sI
zwYB<ns-`UG*AdsQw6wIvn)M|S@uvAiAw6^Xmb(^fESeNTE_%h3iGiQSlTd4v@3^>#
zJs_gAKU&Ydm3uTGtQs{l)Y5XjoO`%LhfruK-ozFD>SCar8B}qd4^F|}wa-RU6e#B|
zkfM^0j=iqtA$#wMOPR-I%dZ);_VT;;{39dcbPbGC>6)L6-9Yf=r)Ct04z!D)<0~2a
zk+a!M!W{CHhr?_yMY|EnwWH<m0OL#=nV@fIQE7YXQ3<<kx`>+|kON4DEY69gOonO9
ziQ#INe`vzj5V?7qY7MUI(SkQktLCm*R~-C&v=)fn;puV{DX~hfv0BHg9kuG;K~Y<4
z{Tkbwn{{p*0_?Vm4x|0%rUHzr>X)a{U<qv<Y$h6<GcE2+h7~yv`$;1bB6Xf!8&6p>
zsuUF~*0yH>NKFN2s||bk9vW>1w&jnTUAV%=8tQ8|+qF5lSTD@S!hmmGiSXOR>*=&N
zkrMIo^$B*yo%2FW@!XiWVVbob@!O*gMC3R|OBXBV>YRe^tH0{dq?M$O)6mNJ96o7z
z$iD4+TWNL?Jg^pWt-JYS*Mo!Y#rtYK6!@(hh@IKI*!`_b2I;ou=IEd9gR@g9r4NB4
zxL0+L+QzXG;VAuxm40%p{Q@RA^Q?!ZjM!qb#<e3_8Jlz@6_=bzIW{g@*V5>4HSddP
zu2d$Q2kU!@H_qp1q!n=#Du?W^Wu(W)$6e<taRc9UwYN)H!a;x>!TtMvOufP>tbio-
z_I6iRmbw+!1ClpNTG5uzUUoAo2%fytTTJ|F{<y<)H`q%X9|$_+ag&ISq}Nh<XIEdo
zR&i8C#fmRGI?}n|_FoOwg^A{05)(qssJCa_Uou2tZ_W`6VgL2hqkC+a5FL7CTmvAy
z`HI<hg8rI01Oo*JawesGn(rt2*K-h2(EjhwquV_HT>bUbKi8sOsQ+Af;m!Z~{lDJ)
zukHWqO~`+3|6gzZ*Y^M8W`mW$1C*w5W&v6>-@ixaLqz^(m^YVuEO`qX0e?@{%M%70
z<PpWf`SZYky1aqQKcD~H{2w#^PnZAo=KqA)#pW$?%uK2LQIFrRK2>BW<XboVh58|o
zhBtL#QSYQA`VlD_+oq_3*2=h&$=&@iy8`Z%$zzR*5dW43uUDpVv@JBJds;?ip{lal
z3tiI9YSm~0%pD!WlZ|m?_%PS|?uQ~i7V&YjMHP9<0yc09Hyc{~H)6LWH4gm{Nxr|+
zcKnO&KB>1fw||8lT!nN@R{LscoX@%5ryz=*fa;@CGbrRR&$y8%C*&&Rnisy!Q+9Bu
zEPF()^`$_z&vZ&HcJa$Uph!X5czKUzzj6=vLh?`}rs|D~LRCiVHIu|z{X3qxR!#T`
zgm4ZL*Vax%&mdG@XT0mA8p@wMJS%4(r&O^k=VE7lL`{SG=5(wgxU6%flx2o-V&pjg
zdz7Npg-O6{%lcG<g^Hm>cnQ6k*Q@j)iH_{j$M-2hR9v@z2}Vi5ib|5-Ke^{|akX6`
zdCkX(clS(ec|lL3(GR`$Y4SkJ=s$yeiD88o{%wFD`1XlP7Bnz`L@;o$r*8qV^vQ@n
zm=1p*r9y!Bo}!JbpRN)^g-X7C@dw4`*@zxSI9m(eU9_w5`)h|)E_$g+?>`wBevj07
zEe2<<bQGl~yKuE3p%vnNm8zs_SIJy0ts*NT<szGmb1ZZ3I3P!)ue;sP1<luntEqX#
zW>x_6pV16@3N%^6+x7i)6@Hg(0l)S2z<?YH!kEDTADT6|RO>G(LNo2@+414?<;?j$
zbmkiV=`$CV7i`~t_Fx%^XBYYWEZ$Ns&S1gEmrpH!M$gGF$jI`TlQG56fZE2kw87=n
zSWhb2JLKW?_gBv!e19v<#ID-3Rx*T5y=cQD6qRUix)jMinZD;dLu;QmZ}QKe!0rv`
zY@Yf$uoj_0MijNYvifNL@QGe(Ol?cc&j~~O`dHO?OT2L3TwO4|WN|t_pEkdaCytiN
z9j&j!0;)7aGh>HLwUiXtY`zo$KUGYf0n8-Aoxs=6?@wsNi?=?RR*MCThc=RTrG7!~
zM{jhdQ1ZHo(zm0{jP0Kh_^2tp=6>rJ6aOmTPiWHFw<K_5`xoX(wAiwl<@xGKYWUr1
zXJ2g#9Kop(-GIPQIfIzs+ip5?MkjJlp2Ni#H$QP^Xy_Br2*zs4F9uW&?Hdme{N^AH
z3HBZ}-O%{)kY0K7>$clTp?bPA-i3f5W0<?Cg<ccoui6M2X0(5XAnN7)ltn?xKwOT7
zphCUy{gVt;zv*WNmp^k_dmNLx3A^iV#i|z$5n$PSdv_B`oycX54KmiNGx!M0b+ddg
zv(%y}P%=5La2;Tn&^U0O8UM}A`5RisCTM%Ct7oDDPU_0E+^(R9MGA}Ic-|-}Or9gz
zDM|gG&QpprgS(6L#{*vLQ0Fb|m{?w)sHu{T7ujr@bow<NlH)9`eq7Q{bqbBDyEO@J
zDCxz$XBc|Dyz0G&o;on8%X8*tf#%xNIq{wQG8+%S<z2i)!&;HBkoEp&h0Mwd4r7&Z
zjU&AeLqFFuey%_H#ZmH4zdF?iemQ4m52OggdRDA{$T?yZs^lvepSdy1^19hMzFMk-
zZ3`WWaFT{7<bwLtkJ3n!*7g5}m`-a8{y)?R$N$hCI)C=!7J_czPRok`3&?l5>!aMo
zE9W98_dxS!R&L495VtlGKOXW$D-xmPDorIU$R57w9hnPrWxGe?HOw6oAwy*%)wkS6
zk8iOG=vB1_1T5g!<UpFBFH^snPp0vBXj-nmEs7`WMxD>k9*t0!F{x0=ee&50A5)$Q
z(j=MlaKvWCySm#bUaYUurZ+ED45i_-%ja^b-wc7vt@s3zxHp8YCO16|bFF_gBWv^e
z0E<!|vaa#<gNZVO#Pcji3)&zP6bNTaJcn9X5c9o3qV~Wz3kf^ad9sY~a0wBCSJcdg
zH>~*yS-&q<oX_p{!EdV7Y*OI&>+ZB6hNv7O$b9n1z0LKP=GwPuI2PWIi7lYGrH^EU
z6J!OVc@<aSxE^FYd+{y6r%(eK39o{@)VV6I$QVjdhj`)UKjbjxjtYyuk3XP44;_-H
zf^?g8h?oG1JD;y)w|dXGLaenARBuGtGaqJnaMM+b$sOfoS!yPH>ppk+PmrUX4xSqt
zl~QaC30<sdnjits_Hj!}RzM(BD(s(1DN9*M!qK|#&68z|0|Ix(m%FqS+*myS<_;u`
z6}<2r`}YcEStskhM-pDB^BUR8kDCD3nEmV5;x40$%d>l4mY#mEZ&pp0)0?gM%(n^8
z;LhI80EIM$)jwMaf_LjblojwMe}De#O~AMOL-HU1JO63_e{MEOrj44gm)T%qW>P)n
z^c9VbjZ##~I1AWVUS0*-6c1?wguKvD2g7EV2X@n1BZ-vqvnWHul}{XTmZf>lAySzP
z-#uP;S393q-D)hsJTVm_KIi3irrL4nxmq+i7R}{gKdfiWoT>W~rXhss%f^1VbbZ>}
z>M3_a-{%<*IRt8~*F<(MLV*TDM}3wHE-+Yi_~@iqW;Z<22)Y0K;M_IyTVkZ@P~+%V
z=N=&`kAAIsHSncDKf9-k?vh)#{fpz<?BS-}TYT8ht8Xg2hVbLYaXId*x`@}G2MX!Q
zdwP8lH5Nyz2qP}&EKVHvTaKK;BU6q?Bc?ss{pUJM{oa*#D9^8mU*)c{Xn~HD-SoQY
z7|?T-xK_r6O)IuHMpIrPS%t+rT9LsqYKN39f?JNAEYASvXvm}~pDGc|$i3@cV0Lvh
zjU;uXEWaG=V%bTPdDHX0O3%HvAzjO)5@Y?vhmEO1w%990ozF;mT+v^o6_ou5PIF<C
zku&G)0hrsIn7ZS2(VI(os;9zezHH+r6xqG+PsY{`cWUMCk#TpF8A9{yU2w>G8P9aj
zvKccc567xiwtmD#AH!>V6Kba>^I=h2xB)r(#dopQv0YEy!_c%IvRjLc@(Jdjov!oS
zU0ly+w;=^tU=D?2)^n+4$%P3hU?Y36^c10Xe4+B!s=c1Siqg=TA0M0V(6t~;xVo-;
zdcSKG=C6K4lJq^|#9*~d4=r20VRl>RDR&I6tU2t&y*aFf3(of=GTwiSK&UKWeF8LX
z1TbV<d`L-ncv^Y$fWk1l(8iFY+<ArgsjiMF@4bh@`qwA!6>jzX<z{x9i^o|oztt7u
zD~(uV&0-Z)Phr8ps;fS(U7>aLd;<wXuFJ9FxR^#AWl8?{un7O{?HQR`Tr^=E4XF7p
zv3;9VW~nv}Ez|o3Av*3xV{g9wH}s8&YLm{hhdQ!bNtQ3QMRfPltpo*2Jo^|36ShMW
z>t^)l<>&@9FMpL?Us92^%V;|t995Vo&tPL8;ZikDlpapRJ5qY^@)p1~CL1LPC0(~p
zVb;i0+iSl*9-FH)OJ!VB>9VElqRQ<nSYd6LRpBq;j#v1QCRLe2m0dxXsg^>~<-;>U
z$uDu-d6#I0Hdi?)N$?`Ea;vrrw4QODdizGn4i%jbLUeVVYr<fEJMX1u&ql$h1hIwf
z4rWrc6Ro3utq~K%{M?<0O=7VqZ_DR4t(Y3HnpvOlNnlA)^%YI6bGnv&nMmr%^g~4K
z!o|h2Xv*$d)+(R&7#Vfdo4|3Q#T6_k)z#fU`YD)do4?ZJcZqUjSd_mv-2i=*)NVKY
zl*&&+tfQuy$Nlm6W`<g@Xp+FC{@Akabxp}yk@5Irk+ov&I)~af-cwaE!fB!AWT7N8
zQ2|A;d&bi{myt$A6&BjN!F@Za`osv$2Bwsxx!FQ2Ur`kNomt15{oL5AX1m&%$CCA$
z%-(Ez-Tf5Pm5ANp;1_1U1F_td`NteNG4wD^5&^@LuX8G%yj0j2OhDv85XKbEy?N6^
zGLvsRd<W4np!xe+%=x@s3#n3n3m3ft&iT7YeTi1fUjQfg%ydb%F$*?h3Vq0JUnH9P
z5$Z-xG~_(**gqP7$+f{}JVsqz7Z5<(`+j~dF9u#bw@x(~@+wJSi`^zjx{nBZ>Qtvn
zPw=u+=~>hTbhARY1Ci`;nJfvb^pL47ocLKbGNb+@_I`LngO59z6HktLvb?NE-_*%N
z`}v87FhlNLUpp$k=4zM2J3E)j^=_}AZs2g+PoFrGQo@Xz9P1@zX{kdb%08T5T<ly_
zkC{w5j)dX9(&5r}KjNrE{zzuHfSOF%ccwLRz0NEhXDf4`V+E7!?q<l>nj3mWca`Qk
zT{GUfKwuQ*DRDxML!GvA=)uLsHsih*l{N1#o3J(LY357HRD+xNQy*CZHB?R?x@!1n
z?tO9%aLqcHBYapeEM%AM41I0050&rU`=4%t^`AZ<uLl}ci^hvg(q)&j2L`%5>c=md
ztcTkX9Ba$xjK@<aT6Hd1_y$I6q49j<wYu3RA^e`)<`%gWFhCx_Q`w-QGMPOocg2x;
zH~nToLLG{Jwo1+rbxMnuBC$3?{ry<3=a!l)38{9m`5Zoh5irrsAPj~gU%&l|jf9#I
zT$1sSZCly=bYC$Ma4wS1{(LeTH)1(%*%#eZYQf6D`arY;Wl8;nBq<_Ve)HkSt<Upx
zx~%(e5QQ!wNe7Ja9}>Ch2efNuQ`|iz=d!f!Agwmq6S>(Fq7wOCx{IT>Ds1y%HK(0j
zci+(0+}R99Obz~Af<UJVC1vC6kH_3$%(#?(rS|gI4%bA_b&%?3e!8#asAXSE>1xPd
z^H{v@t!J0nyd)SZ@MXNxIR35d#lFgPXgMnF$eXLQX>3dEI%c^$UOqiw8?(;E@4DfV
zE{jUx9`8W@qG*{=V^ikZkTvw$ShmdKm0f1}(XKgx;q#n#>Ed1K_sF@;0gW*eT$;-x
z#xI;}7-&>34p@KBH3_`be;Ujd?XCm&yy$|>0iEhe)7B?o%>a;{5K<djxDHeTy1Irn
zPW^IX<=J8^Q8t*>1q}HGCaEI|3>6J&_gOD!vRTFoH(DgP171IxXF<A8Wej<f_&LX(
zzoIjR!nFXU?0i!;;i<4E_x{I2g75~hw5_J!u6qN7b<^XfLLU)Gt_^tBNO`aB(rVSE
z!%6P6>qa+44U9#nRwsYoOL`n05?j?&q295$b+~uVrPXL#Fq35t-NmJ>erK~By6dUA
ztO$k5)e9*aF@*)nxYet8lFLIU=NIPs+zVCa%8*}QKbfg>;Ua@QO4Ej^!)MMeC-7mM
zq%xXrQibiPDn*P%wR(C4rks>NU0Q^+tTJ@BbRFP@o19dohAoIiGTW6<zP>wx*silB
zYpvSe*(Kgfy%+8>eG=DN`S#@O)}P-p4`a8>gP~$;;4*2K!17g2$)HrxQL7hB=-{n*
z_zxwEPYTp3T~v>~8v2!|a7kF%d6p+lsd(47IjieFP5$aKv-1w%bNnQ5xfYJSb-980
zn31j#xu=s*KgIcp_h@7?M#twCZh~%4waoY~4!IEWpm8lSz@x>mN@Z&z1C}E$4gG#F
zSN7HB&W+}#;dw1?(y~pp))d$7Y(u7|w%zhb+oI<Ho0^kSZ<TT5`044^aOO_>;2x2n
zU-49x>4#$3(R^q4gr^zez<yiNdP|!|pCH0BmM8C3j|7<`<&Tp~1?oJ-;cVM@!^CNh
z{O#5Il!PrF(|3cNW{u|^<$lq0U~gzl_8BxE90QI?M2s|qOMt;}HLWp1aaa-;-nV3J
z#Qa|SK>7sGa-!>s1^<o1)#uv7sRm0~$EIaE?<HlE%#C$Vrbl*L_4a=Tvg4vB8lf`7
z{ADpbfWg{w+-qu-u3s}lnvRD3(%8xF5}{veV<X5|eSat;HkhdBy-r*D;*aKfDqmkm
z@)yhk41NJg;zGNFo-^q`14_JIU0tjCbSf=|bjYNlr}xWZJbwrcltpY!G}qf<;Zh3M
z0_2O$e_}bOdZjGHKr6&7^ad*O@vWwt9$VD3F3+CTH`UA_A!Px+3JaGlM9Yt=+YX}*
z>Dhi?lT#IPX+tS96mr{T5?xmpj}OZD7GltX$IXn#e)h{P`3Z)}t@C`CIh=5!Cgog#
zcF55n5(KN2BQLO23jnDl$7fQjHJF}FpTpkeHrO6?2ZwPDnla&%v1G)8OMwh73I7~f
zAELyt#j{s?-7#RdJ6I|mZ|EA91m{?H)oOHv#nj27HuBr=PvwZzU)UKtF3zm<dwV+V
z)XJZW3p(zb@RRi{T-Q9!%D}lm0Ph-iwQNM8(T=m38}#u~6vJrU#*(u@dGqtgmrZ2C
zHXp?7wihDT0zY+46`EAIbWc34!7iGu5k9-zpq21DG<s`Q3QYuTEh0Tzy1wnbjkA2R
zydvCBAolVQcPx4}Gf6}!Y%bM6-(3*cPODz^wA-7Wm)!Le7oggM4IG=Ce<dGWGImnh
z4OfJt2|Ej3oWROoiL6QDtg{*)&6`50>?n@}>(9(R5vBHkUC~EB_1NPn*j=Ym9A*!E
z#vzb*I8PNZ%x)-4xujFS`HOJN6XE`*>-M=D!m;H-Fig5&tg7d1<8ar{hx8#S#%(uh
zDXBh;u%IEqUr)2LN}}$VBKO&$R05P^(D>}yo=qlKKe>diu}Jrht0zQ((F2#06N4YN
z%d58s9~;0%EQ$2p6r`39owUq(*F5v7gs_nopL9;1(a`o$r+M*lCQ$4I<QSy8P^fd!
zruA+o?B$R+%j1*DlkzPPhe+^SA3cha614lpvQ4j_e<3m_=a@gw0XA|~>oQ^~tNvlY
z*U-R5f~zX&=`7AXXXS!<5~nAxRc{#(+NdQL0o)2)-6|S>-^C7#kTS40y@=La*BG^J
zZ<P<(x-7GdRQRoGF)>-}>YB_Dg&LL+2eo5@@8jB@EbahA@D^!rFwi_Kz`z?uIu#Ni
z+LFe9ob){*j@5J%14*h(#5^freu8;Yx;x>z*qly0RbeuiuhApJA1Z|HidfX~el9@m
z(D`GoXx3?7webGsh~UTVV$u+Y->28g41M298sWlrp#d2RY8~1H0443rq*_BmWgPC@
z!6xH|eq2jmW4)_&d7Yz_yE;I6sb1)DiHKx~(vp!0v6KIC*(_Jc)JMKkh?QxRsX$1H
zAD<N7QpCid;3wH?`0*pb&?s56w?rQoE1Txt)~PHG7r^L7?2$>~haB6^wMk25;Lr;)
z;0-w{BHmZJfNDdq30+uv8bRf*(D~vx8fI8P;%TEy&-k{3t@R5oj%SR0y#+IS0q;*}
zN2{Gy;01HzBl%k9U3G!sL;L!4EN<oj<@~3wsx>VNH?^M<hf)n2wTHFX`Mxk(;N#Z_
zUhw9lqs_)8=M297RC}68x__-HEj`TJ_!U36?N!IM!`YcQwF?pDaKl=wWNP@5pX2F?
zUE=9lyRUR*9YDt0Hg`mcqfR3jSn8s~?dUm$)GtmfCYbNH_^IF=_nH@qx$v;=kw&Sf
zk9`^?1?npL#wgYnyqJ~+8xm&!1#A3Ym+gcPq{0&GM>0H^fH&co4B7gdC$2b&>*Ixq
z7T&4ud~(SzA_Az>^;xtV%PjUS&EwI&QcjeK_7QQzZxe(o(Q0rxs#h>jjzt>+33>fj
z1=hF)KK``t6Z)rx&ZoMR7KAFy2_j<PjlibBU#TAju-x_#6v&}F+1A@72|MP{E6!wH
zk~s!S3iPkF*4$#_HD}E&?*s#%JQW1GP`(NELnlq@3)g9FGRENZVY(OhhJVV2_)(x+
zOuLrr=hM34Bt3ujopPeCE=!J(I!~ode|dTGsqpa+k$SpN%1*-%(+%l68XTbVni;hT
z5r_)N{tPlSUKuQ|1CMeb`cuFfN`w5#fc^4VcA#@aFm|qrpbl`GhA8$3ge{kU3q3DS
zj@JMkH330-MB5p>Xr?aaM*?4+rz7>|Z0gD?4Be3mGw$O01+{vaL0FXU<Y$>4aq5Kt
z515L@OjK-S528TbM8)7Bt?;uXUxhKB$p<-V8;9~OPQBj?DOgLAIGtTR<DWRm{n%YT
z46u5;9H6;TcX#y}d3xgHXbEm#lqg6h^!4=!6IK;P7js`~Y^7%}04zz)`4b&KHa@=p
z2XuS29uM{k4PUF4;)>__;=rWhRK+JTF{vn<{Y|E3IpE>Ds(fIyU=vhhIqm?Oe)NpG
zcJG?{MyD%-y7}FHvqz4BlP2F7ntI_9;T<0nA0In^!ZNqlprvX#b-b1*1E}_nfK{4w
z?W$RBDd2FqpT`b!q;TPL?wtx+!w-B-p|zEk`%_F3ZH*<S7a@r*OBS8Y#Eu4PMphR-
z;gWJXO8KK^73qhU<y3c0;cvwfr#K4dismZoCG#%p>U@BU-?v#U!?)xsODiCOddsi$
z%G;Eoa&K8#xn@Y6GPDl;@{vEp#V9m5L6yL_%ZEISSY?7>=~h>YHD9#!wpQ6k-oYO#
znLee6XFtA-(3$B7Tc4}bO*Alt?g)DrO3yDy9GjS{u?`HrY`n6u{aGed=^pj|IdvLf
z>M42cAM<i1wk$k*AmyuItY=nbv%tcTsX!h6-BvM1{p$+(iq+ux^2kxDd#zAN0FKAe
zk$*U9!Si12>6Kmc&ww7Ga}!hLt1mHoT2ANl8`SebW7&6HfpWYWu;qB<q_a5|GA`)`
zYGF8q6M4pf=8Rhi=j`rws4Qg?{f&j2o5yPYVsd}K8R(>@wpENgaMgoPSB-T4G81cr
z6Pi?3S##g!KJyO@ee*nm5i8^OMAh<G-<DLX=t(RuckzeO#azQIiNg5tkbt1+hRfC&
zop#N7O7fHEhGQcO1ntK(X$^wvs`=AfqdZEPO-xu5$W&AA9cU#RfBBXtb+}b)O26{f
zk#_CI%W+wm;yKK_&JRlF$9E;MccjFyH_vAqE}uMR?Q3oQ7N9U(8dpwLSWG8We(1Tn
zTC9o67AwHW2(>88t9i=A7ox}ztf53PS=QR$URn?ap!w5!r64QB6kp!EW)%1vxgfd|
zixT5XP5&QlZygm?*tU<FpnxFVphGuEODPQ9-5}lF4I(hKbO}i3&_kzmcS*<4-ObtR
zdw$=0&id9me;t;~<!sq|J+q&>@9Vm+>*+?_<v(ul-rJ)BmOS&{JwC%5FTrfqhQkQZ
zKt5z2{DXBnZWktNgUXwAGbL`bW=g6&Ur4M3O!DPzrKk!GR$ugB6oi_AZ?5%|EICHJ
zL&eR7X%o=qU@>Z}0qrXObvxH_kp~M-;<9oMUFKVlz>L82`)3-cbM?F6?&@&oeV(|O
z7#Dh5aqQs`u+sQ29Us{)+-JC=AOG#LD;fdR*~4;c@d|R8@0jg2I-G9l{*c|^uPHz!
zJ5=QI?9RljikwcNko~ty8hVJ5dANi$xC73t|32Mca(m8ced1-3)B`h{=f+n!7|6SI
znw$jqSvuQFTpQ_zB|0P7fT#nvbm_Qoy^r5q#nD-85a@LSp>~h=vbjUr(NS@OaC>Fi
zxTuV$4U#(EpD!~oA*P2n6kQ^LV5~bXDQc`TfP6VA+HgC$iyJvIjSRtt^fXiu0>|4I
z=JB8dhbP(2Hm1*(GXPLR_z&K>#UW$xqjhAu2*5WdGq}qI%Rh%~jgG&{kZa`^MVI&T
zX_@ACN-=(Vmgx|#0lhdc8EA&?Y!7V$jxYiSm9!YIon#$Lh3TA$c|U`*5H6Nab*~GX
zT-u{gx|dydsS$u2;9VxLlCa{^Pn%YOtBi&-3YO5uP1(?d$Oxti+PpK+kzUqQrB_tk
zaP7TDC;n)6u$Qx1T>vaK`H5U0jhd?(_0R``^EDd);L4Sa6RxDZRXR>&@y?c_d~|?!
zsUxd$anB4TGFNEc#+Mom4@@M6Tfdb*iZKBzH6>HsR=X?9a<Ec7CwedY3u1b*Ct&<o
zu8<I95;ZJ|z}3fOo=)3o(%n$OLzq2c%4U>$QxQW8$_$;hwqQ#}WgwWFRa;r~p(|Ho
za~oLht$f^KH4jlKy1x!Wr!YZcV`W+NIGaFY-H<f0zqrm`_pPnh3=8oQkTpO=u$F81
zNEk`IixMBO5Cv(ZRb~SY&U@{Z)Anb>i0uVZ4dV2~Un{mVGg>k_I{FfY8qku5OxpbA
z^`92sFiyySK!EgL=R<1kH$z;LplC_p33ndHr2z`tOvoyhznyINr&^;2)pX`3OB;(;
z6a&I}%4Yf9Z}fX&OrXgVOI3T9kI=<=0D}?C_~|r`5Na&*ft7`EH<uBH*Dui5K4J@O
zmLFPP|Lcc|k|7dFdK@=p`zAXkuqs*kB`&%fu4+qCsj?Q3M!e7Try3##T#nqdK<F<?
z_|=z|BB8=d^y~J8#rA~(oRYo22C61*cHlzxaed&kb#*u0L@Ox6EF|(%tBZ@1O#i^I
zHxGIuC_4iYZRnT@N@PDDuL>ULn!T-ivR;AAN9_jaTogU~vPQ%}g}ODhcH#a_aWQLj
zYYWxpDnU>_VEu3Jj(W3m)7;3<M>}78DpoX!AQ18{GugZI(Uf4SXt7Mk3Dn2*y@G+5
zjX*kR>Zx;eyv@`Xzz{Do4ZIVd4Ne1Pt}G2R%ra%I*DOUpZa+hVK0b5{E2zuc-N&EW
zfBDJ55Q4b+`c3GRIqcj*b@Dv?q;y63L#uqAiZVz2@f4fxc)51FnY@3^9&fdU&G+*1
zm1XaJ6DfQR`{x4b5-tY<;!+YGr~U~LQn$w10=kONNZ}%<Tx=2rN>i`4G&2vR$upOO
zhQXlsf3kn?rr(WfrPM7y{6>V~3(#=)E1l7B)n>hJ(c*AHTLK6qmR8zN>iA$Zd^(@~
z_p>Cyf?r(gXZshj+@HZR7uAu!K%@cKK4`CaF_cz&SK_X4654ZC<N3p^XX=zwTp~#(
zSkHUm>!P?$0%3G<eZVG0L7sQ8P}Z?n&84-vqLPs>mf;coI@EJ$#dcmdOi8tZ2CQDF
z<V==1VuB86RrFs55ll9&`VUw7xX2);Ei|M-=IK7-V$(QQ_Qn&bWL<d-hm!Kq)^TA*
zS@-8By5=ZsZ*K^K<7hwj!-ebdshM;dns%38FO=c~gYM+Ggx7MlIB#VXZZgv`!~Bua
z&q_8WE;S`7P6$5qvNceq!r_D@K$!n^r2eK!ozvrcO*wg%<NDk>zaak^78(Ew)GPyH
zpfCMYCn_VU<9^8AN%?Zrby`Eo0>+(-JealC$K#N#?bCP+d3TkIbryevgVZ|PFEJU-
z4=w`39+k)?>z%CF=x()jWeX7@!^U7XbY*Y$=Cy+zDex@^z250t_wy~_xqQ0B@2c-I
zH=0dFa~szCxX<BKla&TVz_xDvnwQ9x>(%8$1KvoMe~kZrj7gMNeU+Wpd9Tmn7z}`j
z5lVEU(Vh2KGX{+o^y@be2or`VGJ7i@s2@=<&=cC_3v_JwuuizbywKAVqvKLFdnfDG
ze}Bu4J<J`10wBiavgOTq(S9-~y_>&iGoBxamCgiUZ`vZ$Dqt@X`n}xu@lyQ0BO@NB
zE@*zJx8qz7R`o}foU(im;tO7H$nb(dQfa0-X1+r}Y27;;2{cJbK!)!KO(zNDCj&)>
z49(8gS(nIAIYWc%y>=4Bv(QqxYJh~u-g-wNwEQkh$=*p{G7{>o`&iw#0(^+@B<UxS
zgsKDq=)AK7jh$xPrD9ij!}~q2vn%!Wtg@bG1z`|p60Y|#z5TT7_WauFlY#{~N-AFG
z6%p(#C$>el0L~Llr9brx8$dOIrRoS~o^2@o?D1O@G^ZeVWi4+Myne9J0k>~IAQf}P
zi9Mp<S_$X7EIqI-_;RQ-8bw^|7h<x~8!9Wt0Lxsq<%*mC0m@p_(MgxLi(5#=4=h;U
z0E1Ve%Igz<4YkII_ilH>+^2Db5FLM4oT@GRvDz3{$UqBO?8Gf)-&Q**Xt-ZQttB`O
zvO%an&>nP#6BW%JUkXekrq(sP%w-PDoF>RT+>301uU1Kakf8_g29I<;CFPIsWav4G
z03r(-?k4Rbgh-p0z$pNenZb|IEzVjE_$R+b$ub4vt;QLEnQzejadZ+zi&3%9M^^Qg
zpgC<XNx~J!@$w|XK~x1(p2CHyu2Ib8E2B<bgN4mV|6>|Fp7mYpu}rk#ORDJfg!;mW
zBxzx<wVGU85I3c`itqR-X`Y;!VMru1>UXIOg?C-YrDNn&777ad?iB!}t7@}wIGO=3
zXmvv5WD=-#a}$|iM`j(5&gyPb*2{>6U?`4}1OTW)og63MO4U+=PQ6{8^f&@=0*vJw
z-e0J=(=abdKVN~PhV)A!)SL6jxLW|p8L22Q=@jLbNo%OsT@E(dt&aS`mI9e6q2v2l
zRZn<gxbx#NwZYTi?(7<XmwDVbKA<~UkB4=yos)1Itqnb=<J>3Uags?IMa0bFkbVwe
z^~sg4=LbSmh!H82SV;BN7Bb+4k5w42uAa9%UIQU>3&+78yZy;vLtFjEE)ZmP7XrLV
z%Wc_f_^`TWQ=y59^FfC$4#`J1>t&bmS}kktaIT2-CNQ|)`!R`+82I8X-kwxVc*CW#
zHO|9p7$UOQ=N)zZ0PM$Nf3i2<cxPW>Zfri!_H$@wuwfdQ!cHq1o1d4IUvDMGMh~qp
zYa>366mCN1+9I!>@h9|ShjxP5Y_^x2eqYSGoUx%FU-9xss(K5|Av}0rR8O(umdpSI
z!;<E669$d#y)UYzQ*?YQ&+m#fHIrqN@4GWFH!q0!l#7gpr<z2~bl%j(>rUj*?oPC@
z7rbPpd@)hL;=D5t1Ql8OZgl+VEv6gmI;k3uT-I9_MKhxF09%-HNfMFH{|FU#vYy-P
zwiDt!<o-jG*$=%#SGF&Di<!=4a=e4N$++vB&UPCK-*vHEbjY6@IYw!BJUo(^0~JUO
zA-qi&=GCpFIO?dQqp&#wP)kOw@`sruNq+!mwA&D@juhYI7{m+2XSV*m9XhRQIkT;k
zH#qQ;P9j%*a9le_;j!F&yidB}>yYlfQ5({qR5%E7SLlv0T2&{BN+Q4m@XIFhEEI$$
ze4(C;HUqLAsEE?3r!D)p5!biMPR>=b;={#2);4m?s=tOQ{LJrQw4@lQ3DYad;f(yV
zJ*d3P)CEA&7Oy3XhO>j;9E|VXdeB%eNcs3|=c}?~tD3c!V1(Ms88KkT!vP)b$tu$g
za+rqK$^2ieUshEGCTC6)r>q-S1)vPziHye?{L^@=dABcD9qM!(dsWP=+w=8}_=c#d
zT&guz=>P$n;zIhTMW-`Y0xH&)^KNp^&Ws2574yibb1+WR_9-E+Kp9!dVe_ec9CWAc
zkwm@3hjx=Reiw(%-+b21sXj>!fskiAH?wLf!-<tQK6KSKb55Cx>A`Rmnb|ziqS~w2
zwk)3opRIXcbk>;Y@mY}<PtWg&_MpZO&Ca_+Ykr7BXGCmHv&joM8%(4DI1d-vpZHo>
zFmbgS?Jr?$CU;yDMHRa}$EVGYcB31_qTMnY%S*1l>%y+TCMJ4jM=$1cctTYzmzoYI
zm>g6wqvET;N^;a>nUJ0<fSA2MT1z*A&khXKsvA5Ci84hzZu@v#q?2&js~okPC>cjC
zyGT@C@eC(foF}6tRhoL~=wyhIzXJt>mF)dx_6aU`C*4mY$QBUqY5{&>>2YSH{Ia9!
ztXN*C!LDxJUg2Q2?s@?+Ltqd%0B03S>V4Oq<(`m5Rf-{hIW+k4*@JHsE5H(8O)q)4
zqb57A4Yfx<^7Yf0ymORy!`)O^Th!VjXW28|BuGwx8-E#FXuB8Gm>(R#0u}x=p;jzX
zSRdoW+&<h3W<AqANCK&PR>?=ek+37_KIz5{3&>~e9k#^P*jOMVK_H{ko72TKB;3(2
zzD7phEdp*z8dklcFBuc&VA_@Jn$He{c-^|e^)9AvXJ^9BhJzwb78koy2V2{c;Ik{U
z7wEtN1@@P~s4_G$n9R{W1!9}(2iTXJ#+)q5;i(ugcV|o3-evj{oZ11m^gYPW_i+25
z-tb^T2AYB~dKL9N`vbtdB2HN^6j4PDByxr9N6Y1jz}Q2LAF5r?0m`^Te{`?cz?ku-
zs5o|->Dp?3xTSQlQ55hft>fC)YU=53_<#-oEHE$lukF)>H#Y|+m<H`7Rw<7kjp&<x
zZ@6_A3R~TVA8<I{^=ccTs&iVL%!ta80SL#U1Nqji-o2wDZLIla#ydY>0MsU1i0(UJ
zROX#WP2=M9x%mdbLA^%87BvV6B;4>l)5o>ijJ;1(a6_m5kfrWBuFdI3Xmsy7hYAjl
z3X{Hx^L)Aa=vKP-F55B>=)}<__3{)ATxB|y-T3v_sK7(+sOf-IxauQ|<dM1V<uo2X
z0nx(6G(^18=WgEzrG4V8;N<ern|);3gW;Q_;ap#oqBrqhoOw-k(qTWnQdjZ<Dtw<?
zA#<-8vwG~Bl5oG6JvZ_IfGA6Kf%_=Jx|?T1fT|!Qf<##q{OZ}Wj<s%|%(W_0r5a%~
zMbSqt=PiFxJprlo?iJgvH`@#zL1r|$-U9UWAa{V!;ZTV;O8pE<zPLY1yvl~}Is>cf
zXs($ZX}F!x?cMQoAW-_88a^3vJ)VLvk)cY66izs1GC0)=)Kq-rnUTKto;j2ZvFUvy
zx#{_M+K9dDf+LXwVBS!TBjh=$ESYd~!uX-2CR3x~6-)q$&Et^99ZbH{u-$ZAu9sKz
zPK6yY!8EM&jBj>jm&(ah&bCHQe#NESMx@p`-+u1zIv07fRc=4dxDavQP!kD>AY^yr
zi0rl)`*{)A*;2uIqKj;NSMkLyrbLK~NM_FXsnCt%`^*aKof`9n?9Ule9OfsM{OL=;
zZgulG$QW_&Wa+ehlUkWz{e#OxowMi_cI4KmByAjYfxwk(t1+i;wwT61ckbr^(~}b*
zH5*ng-B7OxkOY?Z-1}xg(}=14o1LlXd;g82kuq{lJVs<U9juwQAS7sR@r@)7FgmT4
zMjP**1?v5-F+H1;UBV|Mj61Cx`|!bFHOBtrBu0@{A2a#{*(g}N03e+e>gK<NHBTLS
zZ@a|Fau%+A#VgOL-5rcfdq}&_yWA5PWDY9|y-(Cz@JZ#5wvsNhn;cL-ow~rg!c6Gj
zpJ*N>b?C;73JzZJ+xLk`KDzx8unWo8Eu9hxM0hP;kdw=6tmaan)NH)=(B93Yp^-TB
z;I>}omm1vDBll>!JQlSyoWi{Cqs5qK_bJ>AGwA5r(=AFtwa7;O)MCv!>*h_0o&IA;
zp|TDtwxOk=t?ef1xQ`~W<3`t1YWHmSRp9v@P}tIAeRLVJ?G^NJGWW}gk}|L#M}~x1
zpR(aDj}(FL)$2dGAW*wM4<Uh1*rccolRPZ^NcE7lUbM>&EZyvRuRUeWE4LGWm_~{I
zW@nE7!$<G)8!yR+-|w-Ia_^Xb*2}`DtJSM*Ljvl|MrL;bwtxzxNf?@gO!;PKdWGSU
zuls@_wvW?Vpu&0WDPQnaLV6&u_$EWluiOvR1THt1RDf!x{*I0^i|*W(d)^(`W13MM
ztEWezEDOV3t;eQ;WEib^>)NHm$+~^w(cRuSP3N2ZE~VmX+7BJ_mdsNNqCG1SKDNh$
zzCF5=DV{sSOfhs2G5VWVk(vtXK>mS_bX{A>A0p`Hwq`A6bP_E+IIEj(Xdl2>c2CI|
zG>YjJUFq;oci`ajdc-tV!pKz%0f4(5@0K0ylR25ZXLxLv$xP%KnXb-N&nu^W-Ylz>
z6bqQ3+BFv+>pGmCAm@D0+;!RikrW?gW^Q>VkFW~l(c&~_z`A2|VJj{n&dSa~>x0GU
zKAJ&E#gv}vf5DEQG}|SD@W@=WounRkb5ozR^N=xdHoz(RmY%BUPjMX2=HSCMkhy4p
z6fv`=5smwMy#SwC`_q#;t&--n>>pMqC&+B(PS?YPhnf@cA2*TqQxcD*HeZfxRFL=J
z?)%ArXvfOkj%;6+V3}Ii-n?Fon)<QIdj@|ZiN$92Pn<JMYFkz*BRx!Sk{Fx`5|+>i
zY=Tav2z)72Dx7b8#;UlcunQ9My0<s~^S{Q<Ln(2ZpEHzl6w0%Z<J@C*#5-&jv4Ahx
z6^MWld_`=t!wJX5`gp^!zfd<=D9l<}>F`ppISqWGWAvwpLx#n>>`%$U{~g9?=r(aD
zn(Esp!*blN+h(KZDpmVanD~VU-z_Nd3PQ7e2D%?rV(yjf3<@bLYssFIl|NuTji|XZ
zksW4ZqlR1e4GgRtyVbvzUb6SfHU6!ZqG)E2i79{mXxfLK{v8N?uQs6F7l`HM96ptY
z3ic9#YUIou9G<sHaeXHzIa4Y&Edfh>(ii4Z5<_J$7N*DKfq{YdAXe73%Oa1MajW7%
z$?L<UC@V`#UpEDQ)U;~>H!cv!Mbv>mefWBB=~|$7JJQQ(2n$W9vfB;6w?Yv2e!9r1
zP9#p5oXLrIbjBso)#xFF*c=uJ!9z8$(%aeG-?&YCS_hkpJaTI+_y2f*D%)hZpu=Nv
z`k7B-#rbM;=Cz`P_W73C#A4PaGP037hFwB+xMyK4`e>454U<-rYPMW59{$Dd;@E6k
zZZTV(Y3FerwZH%D7DB1Jll<iYn0%>P`g}e3W?Rt-{Gvu7hl#cZSYi&x#=+fV^Lqxw
z$$E(uX<bWv%fB{HB>{+VR5ZyttGGizN*ztm$VmC!a>5O-fx_>suWIxa9_%;Qj3$rJ
zxkjghU^MC-dzt$hKJk#92QO{MwWV{k^q78bf16cXE;y+SH5PzB#y@C>chjA>-D>ZE
zGUVjUr4=6hRn$4n)Z@l@L^v1WINlaXJ|SBo*8y5nd2~e@)Uen^c)NX_mZ(RH%W&mE
z-SHr<F0u3!=AY;5t9J!^Uz*qi>PduK-^Gj|G~umQ6)RVB<Sd~Z!PliRf@>#6dIiK|
znh5%PFA%W~>6~ov+XM8Yv97-Phc%P*$Q2oxD_3Xc=fGk@7yD`Xp<)+oOuKUW>xd!>
z7>fIr1Db4wv#l-WpEE2c<J(<?(pIv)F`uGJ<1<)?RKH9s)@;AsJbvy~SiAqxwq7hF
zEJ7OPqfe!DWxYW7u8p;I<L1%qr8EwIFYACmVh23>(>r{=<lTcICl_4jeT_z1&@=e+
zqow<el^t3F=1(VUk<>^}s7r9jr|xL8ga=)i^&Mgno{ZpfNn4787!!n~GK=5ItBj0R
zyZXAbX7tSUgh2)ZGP~<`&}8O&7wh9A5z*Q6;e191$=^rv2_|V*8ol=?cE(a{dP1?F
zDU(petPnBkqx>z${fqX-MnOWl({vxa)`uey&WQsIP8rH!ksj)LW_r9eN|BIH!l$om
zYh@|N|Kw5q7l#!@Eau0Z?p4`%7g{>A`On@4*wzEn$aD;N5$Q(leqlMKt-N5kyg(M*
zu^dVOw3&E$%TQH*0M3H)reHZ|#PrPd?q{qjrCMD~T=cvCN4y~Y7oKU>Y~ekL9hjTe
zBAt}#$w?ChE0fte$E{b~ZZAC|bx=Y>Fp;j#E!=mV`Ms{KJ@qxt3l9+eOQ!O77MtA`
zz6#E!k>REZciPoy$+~Qk>=V8Q_`Wf7n5c}d&k<MVPdSy&EWsFe?+EA8s_4F<LEXx8
zh^TP)5R`Bk>6W?hL$XF99zI*iW_L4cWCUhtKyGfJ7OE&c#-jII_x-8%v*NvGZOtZ|
ziX-uY_Fqb}>4kzq%J1KUJ5EnludjZp0qWULvLLro7RqKfl=j$3OhDPSEQw~zR^uGf
zGrVEP^`3iMIedU_3*Rcz>t@3^4n+!*pH`QeB-aSPj`?<(^p0cI?O8iBQqD<lB_2t_
zbf%s(C`3|9v))@5XmzS4CnQY#x62&{I(xw;T@2kr4afI(W-lJj%~Q8L#>EKFv@Pw~
z00^+U3khcFuPWZ%(|XkL0O;eRT4m5M9CdG0B1hqn+g@+>=3Y_c(h$$Me^Ieb7If=q
zZETtEvT@QhsfqUZ(d@f5S3aNye4Kirp`KV}BafSa>vdHYYBT$ef?@Y2Rdn!~xxH?f
zCRqZV5&^pzP3g}g|Cj*T&u*92qoEl{*X-tElrq_+)iKO}i^cCmpA(_T%XUj}0)9I7
zW5nkud*n=_1|P5?P2sxuSlv4MNAygR170okMuzYcH?25{)bBrZ+C~G1H_=DKJ!I*n
z!Zlw^0EqP@El?s-?|v&E<KC<X=#0$NPjgW#nOP}8F1WYiEhU*4YdiyKY$Fo@oJYbR
zE+f&a#^v?mRz(-2Q)X`>XkTAfaD3hniFj$*ei3R{QPYe`6raKbV`c?q3Kn>_^`*ue
zcV!_uuCJgU#6(HJHJ?S!sU@?U$qCgk|BR6RM4S!`OCnz9(NYNtDU(z97a)Darp=Fu
z5oc6gY|^a#;<tFV-O>H}uQt!Ov@o>qpw=YAEvcCjXEr3W2S^oFB1{z5Ak-iM4--qZ
zUWWaSn-6gxB-PJ!wx<hp=I_BplSA6oR+3*vE`=JpsB!@4d04wTTnBZ%|9$4Sb;n>e
z!(;s_oeW<aO?|d6m}Fk#xJ`xzm<r_jQ3p`}R0{M?%Iv;%Bxt;&m%_Ja-uD_zw{_oy
zyLv;hns_)?j^8f)l;x~EtS1(YMLO?!nmS88c3pI-zZQddX)Ova8LHl7T<WExu6mpK
zaxXz}rXE)2WHDwAM?}TipUH5)lJh?LnJ<bKi}JTqJ*A(bG75pu-tjEV_3+XQ@X!mS
zKsty@QvAe8snDDWMT1vXI(j^FR=u(a&&*3@s62MN^+v&lR%R057}0Y>RT^blsE8yO
zsBBP3;^k}^>G>21nIMohcgMNCfz`n*p#wP|+`RoJKIsaAfu063P%CR|b1-;2iQ9Q<
z1Dri-+74Q?gbs$iIS<ZvS9UQFx^HnIO8HPfZSmZp^|tzcG=9|CV82>u8-Ercj;X0*
zv9bEX-keFHoJR%;FV)`WXI8euG|@Ui?>&+wq;a+!&Oaz<)d^}aOpirt)_w2@4XJmO
zC*sK+98?x?`-<_OUZrWZ`$$n8qb<xt=Ah`eB`<@}P*xC^#iFZL@iHh*?!!XAZqDd{
zr)Sfr9M4jrbvSNrHc-I2bF}qs4lQl!?D$=#20uyY^Z}p4wRKan@+!u-iVfdbv7hek
zh7(-_Hv#?*bip}WG^pzt|KnEDu7djZd+f-Nh_1jJLg)0Y$?{-@g5MRKJyU%Hql+Q^
zE3O_&GcI@0!BKum!FnSBbJK@>NvuW?>+T4K-8>UGqh^cEPAxx<u_^e-uU1P$`8Sw$
zMc(eUxY-{v@p$!_4Yu4;i-wlM&Pt4GENxtHR9kDB6<#0>oq8;TSBc#^RuEcIy1*va
zM*@278~e9duw=-Hz&}M%b2AQ65C++E`aO*7YgN|hMwCGUjhS>Qw}(b%n_!zPei@Q#
z{rl4byQu3~yD`sw#PBC>ck_d5o7NanIdyixm#?p}0R#FxR3Y~oZrfG+<xxPZPX%nP
zyOa-LKr<IfI%TzX5YxgmCj)+Hj<dLNrH-SeHJWi4&6elm*yCk6jSMFWT-(qWXq4q~
z=Ixii=dql3upcedmWV6NtXwEtv^pox#E5ias}(Kk^g(1)uW{L#X%0ld<GB~I<@&Ko
zwW50M+HmXI&{EfEP~_{(u+yJy@8#92867aJQg?NgpDr-n(b@a>pgGdahmK9m^^<}6
z9Y|-gkec-G9JuOxMg%5TEDG+?Ah(OfD-J=@!>wT8+DVy{sBPqpvv&eRB#Ic_ht+wf
z=@Zqa3W1)7dGgwyAf26eP;}o`)s!c4>wWs15!Mff2n#NpSX&V~Tg;UiB2D4sj{9s;
z#q|R5y4=wTq6vUF7y2N^X)rJ;Y)N+1!^c|=Rkd<?4<ZfR*M8qn)e>#oyR5{LE?kuv
zuK2&!sFGW3ED)DrL_(rPLUMP*(b9eyPMGESx6#XMH&OzofD1BK-I<|87`pDV-j__x
znV~5d6dDR?XHcSB;;cVr1g4c_>L6HGR_jB(yv|T(X7uPAVv+=aLwQPyo8G^|Ov;Vd
zriaIm%fQ8N0M|FlY5DTBMTU5cj$|W{<-;oCi>=|bK|H*>2Dg~Lkg>`We%H%q1-x`M
zPxA1V31falL8+ngn+<XW6XM&m)Iz>CQqI<T-hO-jF2g;2Ohr7rPexQHzP5|&<I#Ct
zAH9uF;BK9*%xt#vlh`h_sd|57cU+E7DfE8a9L9?p#J0nU*|vSn6a#U6`2pT7{Wj+&
zi3I^6nnn>IJISelRJy$4rgnRCL()g9exYwdOj09UMYDYzrnr_o!1Jx^mwvQ0KMLu1
zB|M1uQpeQMQ$nQ0`6*ZD6VfmP0|Uq9);zK6gcj!_m<CBumRtedjK-M_?mP6BaajVN
zLmr-NMNCACN;J2y-d^3N&50j&O}55QA70x{r=){s=h{Z+P#2gvV)NMv_|vDW<tG6<
zhQ|Jg&j}>ziTE5vo7Z~Xe6~AjvPRt+{ES?cPjp>;+m{CF4SmUUbF}dBR{<b!Uv1mi
z*j|#*gs1!=psMx+I7u!=eeLWnujTebm{@BZ-2@=Hit@c3P5IW^fX3BV4!Z}N5sHCZ
z!uQ3&fU!v=gD7$FfVpd3X3x`ywdTWx-@oV8fIxuP?R+GF$LsfmXws9rZa38m!qEnF
zbc!6q$L1YZ3S2s}uvkPu@zt2(T+Qfryi&>#7PrChszI@T;>KM>!SFL`Lzx_uo(la(
z+9TJ~NXd>K>_VT!2({L=(-CesAr*S46w28I!5j2~iJgVd)BfpvoSYn%OJ(&5MbFWV
zHr5Zho%nb;W@m?f<wdhLOgE2nY7s+A`CqYejO;EkzT@S%J__LJ#h+EyBEG3AV8TFx
zP;=_m(`}i%T2_d@Y?wOtlzgZsL{ISCJGmcSNU79()|zmR9n=kDW0x3aeCUMlK}8b|
z_(#oQ;pQr48;668ye_+=ISm=K;kibs=6lg+#f|L=2k!MVq|LS_C%(?l_<c5ei&o0T
zWvX!&k|(QcK9B(djE2jza}U{c&13?O^UI5K*K0*voeazU#qlQ1X_J~4zD(gcb?+1U
z^)@+rdis{U_M8nZlZ&#14=)}zauL8-1WAr(mbMZiI_I=9DA<p@)u#KwB~bG{F8eGq
z;$e68dBz2A=Z71`00r&tX_yczsdGwyO<HQhG2mh_b?#ubuoZVaA*<^Z9i==197)_q
z>f7AK!X@=0lLYl3r=&hLE;H0R*1)$iFZk29@#oJ-x<AohEw_EHBkKA@|H*NUFjvV!
z@RxyqdgqI@dYyN4g*yQM=a*;A46YPCH&q@s>5q~G6zS&S#^;OUfPA|p;y}JsBgcR9
zu&lvk6BpR0#^(mhg;ULwxUYQ<1;&f3FZV|IUOao~62hJ7PK@*Tx<@bVLpVO3^>tx`
z4A*I#&&Y5SDq!2}u$BxcOFhkg>0=1}GLY5rvgKP>UrW{jJ6?)Uq;^LMoSCsUN>=W+
z4S!AVd^>udH!QmZh-4JkUVF{)qD1Nmy*CfvumjKg=Z!v}<7AsiD4uud8ya&Qn$hu&
z(^h$z7T+5R*=n6l!RNjn4|G15sht{%QFS=Y*|SqNKi}cYEA*%b)jvJT>FtdHgzYVu
zC!YHylHSTh;cqC+VaAgY$dkN88!|guqrLXP2g{zdL+u2D>5IgBFVSEz+xyR04Ibtq
z56v+ya~vfb`+B5A1h|gd$7Li>F@xBAh|*jyG^o*E26esEcH?a{X{~*b_7_?s<qe)B
z{>a64aI$YgtlRM!5QGvLR@Gz$ed~W*z7kXQ;QT@O6PNXHC-~|{zZsY*EkdH0f$#Yf
z$Z(F%Iz9Q&Nr@GkkDmldI0>-bc$=R2o3LQ-(a*g1I}`{%m@O=62Cpmj*4e*o7}@%k
zT~(Y3GD^q=Y(>f0i<FAhGYKW%$R>!eHx>_s0bTAzt9*2x|0SR5V4+?|O)6SSCpI<>
z&`ej`s0rzUkdBJxbNx!C7^y&Yf_3)81=fQWJag)+^gx#hW?>uzi7fft%+GupmXj3(
z*N}=jTdB;=cZ~E-Wfrtt-jA4q>aUp_CC4=wo#SzGMV^0T8w+RF$d*Ihp6D2#<R_!j
z)ydu($*)By`@o76DG7MjydS=)u`t!o-`p_etI%{XlRtj<buL23xs1a`p$JLlX=?%{
zovQnx-QNAk%uI)rDx&0{;_rCKi#O(VyOLlifl6E-)^?Ixo9x<sA=l)I9m@wS7c=FB
zi7g|}_-g4wmC{wqe5U5(cZCkf0*IQ5$gJ%;`xXnXZ^gktxt){sfr*WQxse`MvB~rD
z{HyNBZxef|qSjv1ElFu$NF|`}J!C8AMKzIKs4h79Wq~iAps<#eW0PLiDy%;<(wC7|
z2aOX$qe9pUf6vXui(tjF%#M-q#Wt@CoIN>qqD{rPfP7xC{zH{IrQQ;;!A~TMos(t#
zxb{NDxZX6ODbCFF^D$Ei2TtedM~YmdS<U3JQ1u|_Kp4h&C9A{9ezBBOP?1hu?XH#>
zxLBg#qDbp$-jikIiJXEKSRD&`YVFMz)se}lg=9p5(AVBL2Kh{sps{FZ4h=d*u8C7c
zVef%{HWSMTT^i9~hgiB7m$=wqRi&r;^BMI-%53A0vx%%Iia)UAg%K@461_dWJ%h4?
zeW{OLq_G06xILY1o?@3bV5Mxihbr6j&@5qn^P$SESn*TmO2Yif-)DPYJ0>heQxaU7
zn!<w*V9*>py8#eIk-_-t2A;D@S1=8?29$$^y-3kP*Eu5~DI-Ar*z)zJ4X;x*YfVM#
z`s*jUZod9T6l1&khf^;HS)TavyGfEpB01ajZoj$XCD&ge#k@)QAp=*JQjqzaabTqr
zOtVzW#KFq(eZ3jt{uU6;WfWwjiDc2xv$Um1KsW5U!0U&~^0{&cd`?ZO7AQKej^HPb
z<qbFQ!XWdhmh~LxrC%QVv}7m|+__&WaLfP-4`id0>B5(oLQOyJ5|l+{{3eF_lypG~
zfUrM2zFlvIkzr56fz037sjy_h#kue2g(u0z{<AAV06oAJ4Xw?lS2Sp%J#ZF4vDUG-
zGL+JgdFW>XEDpvnh|}vR%n_2Hu-AZPT(4Bv8D1a@%fz^s-iSHOJUp-)4iJ7E?891K
z_J?*-=d?rAo=<Mv8}gq#@st7f<+kxnXBA^!#_7eev#B+)i(t5qW@N762A4)kj`4;_
zXC8)phLSfQ`Q0EEE%)5w>+tBlbs*!~tMeUZW&dDX#UU#;C?(Yo%DfYt-JA3~$z08d
zLaai56)N3~bB7Xuc4VYbFj+$)QpQjT+^_BSwu=#s*Xh2i-S(nHz-Jeor)=oDL6(hR
z--3oqEh*0!-bJ2^4pai^%$$A;xlrL{toaIs$05qjZgoXlb?Zlu&F&MbTvk=G&3f;B
zKq6fZjf;=MB}vt{v062?AV`mn`w=e$F2Hv~p8g?c!A4Rt#Yqar6@!DZh!b##6Xg4F
z5pZ`yYtqV<y8{Si`Lv+HJ?)bsHAl<aw<aaL8LJrw*9JEnvu^9gg7!E_z&>~J$NVK-
zsac8N0Zsx^Fk@4u`^Z+ZA`EV?XVb=Xy}5&mx&>6Y^T!nrh6S4%)@%@>rQ*JRX&>;b
zCB(wMYd4FyfoGPZL>+#4j!2=OA(D07>_P~_c>U7Ay;{p<`A3>q{-|j^M-g;anGWkn
z^wPB4bX<=R851|G<LMEFdh;%MWV?L6(nWmk{TwHGCdV63PU8Bbx!+#2u-{$t*#>LL
z;EC$b=h8t#kB$0N>D^9M94^&f_aZo<FS0zUW^A__)u_Msh2B(If6+6~E;0my%xUu~
z9c*IleW-$t5)BY}>DF!^&1yzEV#1!ZCM=Iu0%aSdhJ-4PHk#vYQ?Zc1^H*xHwXb0E
zfx(0ev%_Jy?L3_tCsfsKC?v}r<9)))#0gCfllffNB*$UPM~B|ej0pzD#heu`LLl?;
z{GIsc(;IhAVDe@Bt<a!Llo2Z%3#0jl)W^PkT;njSpeU{<{Olq{lbKjg9)cS(>=vz^
z)31LLgo_j?1$G;~m474KjV42t=VsS0mGvBPE5%~`J=Uw*dDY(qaO^%5a!~GGxe4IC
zp`?;c<>rNxCs=Sd81O`Q$;a!t|D!$ZryMoA#=ZqBDGiWVN-&@&Tu#Wpi`#9Hf8Mh$
z49f6rQ=2+k%E!-6Ih)0eeqdRe=^m#0j=vQwx!4D+CoOU%gyungcpF+-qZL^x30nD+
zrZ1oIGtyq|91lG9{+F4B|DRDp>Ic@6;Qb{hdskh~o2c*{|4;1kT*7PT?UCEF2hC>G
z?F5zQ5aBBdoMp`;<9Au>pMDw9IOP+EwLJfX=l}ncDH1<x*G!^U1_M3V?1|?tC$B$X
zS;1dy{4UDq7+IJEaCb;4#RY7bd`mHE^o1`1C>h=WHW1-!wsL?+2I3To@nR>t(C24=
zTp+rS{{7zcB<$)|!u=y)WTDxzQuiNgi3l@gTI;!he-2ZCLqjXB*i1e9u`4*+`|gjk
zM7WRk%IP2Dji5;s-b=rZ70jrQa7v^%z;n_68b_F5e=(sV;Q9{1N??qV2zd7N$~ax`
z+b<VONW>qP4Ivs$0+sdKp?9FkQ=x46%&jNQ3*FE8K#YKe#1RbRe5=jLX>wze&SsSp
z-`A!lvgwmAaNC3UVCyBxFbh;dSbeAV9TrI|XNV*b%U@fL+uQKA6Zo$*J|m0i!uED~
zk|#?9e!ipQLVy9rW0moj+Dzxo>qX2E>%kGj7g?{KHrE9`V>y;;zCb%R3qli*!`0~*
ztB)lhW$?QFrtsf-oZ9+jc3PMSbhMCN116F+*=$t7${5rRXVyY(Uju!+ELpPeXb*h7
zGpVRm`;&%#otuk!V}ly|$xY#=*SamFUGM77h3NC!$!AZ@18deouGlwhQ-2p_UfPGA
zaCKRSrM>CHUfxYZk6%Hz3nsfM?8foBcB_I5(0fydt2FR&INEr200w&tZP4@>svtev
zx~J&>DQ73O&#>nXQ|sCET$S9mHvLhPvardB^Iua<REz3wetuNiKu918K8V=x<WFy3
z@g&n$niAo=E89Xq-w%&eBgFnn_Z%WtFoxBGMT)cV4g?d?e5XjQOb|={_x9GB{g@YA
z|BB-tW3Xh%yUBZzY~3H$uxP`jj?od05@?i=I{xDg)@+uZoibQAQLB(J%~4rkW<IEw
z2mm%jfv?NTs4^=H%4JV0B&4%jDyfFv-UoT)_F$7*xeL|_cCI0DZC(7cE&G!oR%#~E
zlrj|jG@0ow$>i5%-t3hI?QANkOa8`22izn=y*dMNE;J1UbId0#f<2p_q6P>SC=^lX
zqnDJSQPL^IFW3m@Oh)?-dpJoUK^1Z^kgnk5`BbY}U;g=yym}hpf_2;VgQi`p(Z|c)
zATgBl_Cnpe+IrIOo0v!W1CtIckFQa~8<f+9{wz`(B^07qsDz!m@9t=7X?Qeh{6$<$
zW~q@XKRLkyK-nZ2hX;l<o8Y#cNX|_kIcO}F$V^I>Jn;B^e%os4on;u9#C|*wk&m*!
zefU`h!2>+x?DnRcU~1$erd5bCT8*R_xpK5tQ2HBZ3o|1<4V7fAs@1=*{>i(rw&M&8
zqnAkGfe`aVwb{mx$a}RR{KR`&!t-daVZ}>Mpeu31Zk6+f8Vg`gyz4GpAY~aAMl!P0
z-w8ggu|GwUWE8M_P_fiE*AU?-A-VbXG-51hfXiW9MZ$dJlFU7VaEyV2<@^`S1MIln
z<^P=u{obQ0?L&2XPR{m{CK`Y<UP|EnYYXtsYB20-^%)}}D#C#?!RMW&T^~-ALcaev
z>$$T;54ueoH#8R_(@&l_EmDUngqz3J!z>b$qf(>O&h1!B6$)f^YI8hN;$nREhsd-z
z(~~u{Z>nf6IO4VEIPJ^I9qr3lSUCpzfLdM1)>X)mbKJrYD7_R=)dye41~BJl)rx=Z
z__UR&(7Zz#?@g()ay@IHRRqruL2>>1Gj`KHydEkYu=VwaRDh?26g4_UKa!|Qu{$^4
z%4g>rp4<WEux9X&#2+P-80~USHkUADDmyNeKUhM0Udh56H_Eu)RN~@4%!QG)Ao!)i
zY_(Tjx^O411pE)kOt7pAbNduN-}tN502jCnScB2V(K^~pL%QiAs+BICTRczo0G!cs
zGXZncCPY}!gAiGpBdwd_kk6ThpJuS5=V!GpoI~0oVIW%qx>$RgEto+xT9f*zH8M<`
z*Y3br$uc@8Nj#N6M|$TPV|2UUWesz@P}NBQ&k-h~d^zpjamQKEXKKE(wm;NNO&?2<
zlY6TI1%q*nMPz@a^{)%-M;)mv5dl%-M$7+sRi<t7s0Pg=-81&8S~H{BTXguZ10>+T
z^MjtDa*C^zQEZ4)HH3`QPMaIU#lWKhb^X6cCz#7QR*@IETR#(PP9dX)Ctr7W0SK$H
z@ur;)N~!JD1T1vg-^1CI*Uk_P8jn-@#xTL=x7P<I-H&>%m-5d)zLihi(Rp)M)VCfY
zFnth(OVfq2H<9Di8grEB#1pw4G1jQ}Cd1cfXO$QP&}A*ow{|I%4<J1|%A60^q(zsB
zNq92&3q{In8UVxA;=IWcXKHYAd0{ZT7Jch%M)~$=4P!jMWXZ(Fg4<1LxSqXePr&Z_
z4u%MhP0+=|Ab>qy!2woBxj^YDE(N;T($v_h+=x+z-16b3IGEk53CZXrfUcTByJ7R<
zUXC%L9d0K;ul}EL<(uWmPZ{q|>snsvT_`RDCJ8jgoWFlTbP%{12{%`^)JscjXUB#>
z^5vk0TYO!<#fl3SixYay%CtHSr>4K}oElJ50r(KSzNUPfSKib_%S}kQHC+l%jf+W-
zj}ij29MiyxJU-59DqlJS=fwhO16Z)FGQT#qs@PjQSv?tF)!xYzU2d&y?G;c!N+L*(
zRb{>7vn^t)<9D_mFo$px-R0!9ZIpmGnE09a*2T(NKl>1VU}<A;%m%vXtgLe0zaT4r
zT>x+)Y%Cw%WfESdsU;HByvo<pH<YW?$k|!6R<*&sbdKr`r3~AeDp5~Gir}cFUfQ`y
z4Z0-d-<>K6RwE||c@Tz<KIidJwlA-#BpN9KL`E!}EH_NC&)b=a0^fs-@C_pVy)RFW
zJ^$D3dU%1?91Z!rJu(YdcfqB>!oC4QX%+d&<(;X;Sm;5Tvm<*lDt*yMx8SqXl+yA~
zSDWKJq~DvP{B#mHo~CLdYBgh5cs(Wo^PSy`7m$`L%|*gDa0#}8<7lzb%b$k!S<B#-
zA_5}U3i}g%Oa&fTp)C0L57}S~XVgy4?F!shudA;K-@W<K<jHx|6X1c?4$R;_y3voH
z$T40B1Z&l-C5ln6pVk8PlR#;RJIkzuv9r#-#-cH0;9m4qcGb7_v%3E3ZRbt<(C1Q=
zA~(PzYe^TkL)@?ST8~2k@y<oTY8PX0u;fth;NfD%YjnPF$a|0j>)NB3nJssi2sExQ
zPUJ>Qi}3GTIbw?LivxGuUK*F&tv^Mr6Ojf>z>KvggbFm+%N5RRe>HMcW22ITcdEIg
zh_riK9c=?>tph2kqSIOo`bO<~EviZIIcqDkQYqTy+J8?zi`0>l7$naOZ;(}StR@^Q
zdec4vMU<UB<Q+QDx3KcwZ5s#XCf=50;HB9v9MEb4<QFfa%R!{jY)^m&RK8FNl<|(1
zBX}WncnxNu<1*JguChVtWT8Tn6x8s3m~jc^+N$rZ1+pS2x!l&@I<BrjzJ+lx!Djw&
z$568+o|9)C5nY;OGA6`dlXgEeNv=+dH?{feds-N0?>=INU(m41vF*97i;S4eCUY1R
z=H_huaN+g2gL%Wa3-HM)(wX$P`k-iDu>^R&6)9O{+XqB7ze@P$Kzdj76!j(g>nq+H
z%I8GfeV_t~$;rh*EovM)H<wC9Zj|w*SypQ9+;wC5mvsg91(lVXsl~BGMx#8G2c{;#
zUhhKkajsO-!GP?3*Cm}As}C3`;A}ZsqZ3e$LQ+(m$KJpj=Ud2TFruu^@o}MAmIei~
zA{io&q_Z15BmyJY7T~G1=MZ|}A#WOFU%m9y#`~&VY8*H7O{s;}T5E_d)g22dPDS$i
z<p)JFIItLxe{i4&>>`Md3fJfJ94eu=GP}FMUX8R<C&y}y&WB0;F1wS(7zv5h?z>UO
zZ|<10O$+|AV_{UdC5z+c+oR+8qOw^)9T>(?D#ut}h^CU|YRU6FShiEq@<_R|zkT$5
zSAD+NH{Jp*nix9U!M~%aHR0{@_g8L9mbh_3!BJ0foB<%IVYXo3lCA@HV?P+J6o{`%
ztPJ%YnK{WM-<MjNUQlzcNw}|i7^e28a+D0;q;_x8FBFcNhNGM#INNL==*xn=K61`A
zQkm|Z8G$l>ngn%eUI20|VES$3iU7PlHj<I2eZ7<l+fR@FkCS}o=N&O3XKF3G9kJXN
zke;l}wUI@u#jRJZ+e@(P6t|<xqPu0gj!fkSNYD6Sfj7h9^v0p7T7!nW$k6Y7QL2co
zm4j90Y?qYhRE&ruO+9e?XLm)_)~k^oKb443gC=sq=#Ix-?j^m34yQ`&@}{2B#%XXq
zSS0m&3yr=B)Fan_3h%2p&9M)VAYWeT`y0CX`Upn}#>FsEfPx{z{LnjOS@GYp%;n%)
zx*&;Wqjr3k3I%{ROj|dqkR;Ifo!6TKR73!u4#M7yTPfOiXTAB@)W3oy5htZ$XqYcr
zI*^bt*w@R+_Wj7MQ`QT30f64O-gOGETr7WbtfYODBv6Fm%I%wVf?&aqet7KTH!a$v
zMnJK}#xdd3z3=dsc;j`Hq)AbLMqw8Kf)M@pk;C^_ED`^b-?KWZ<WX}rf;b86gk&-%
zh2Q{BSzN-vHrT)X@a%fC%@ZS)o=G9(B`>0d0ZAlKY|HNx=6~vz)-jI~7Q7{{lS`6t
zsP{z>oG^w_-SrJ2r=!f@x)vYL$2MQMb+hSDydJ1GAcf-e$KvzU)g15`&IY_v0h*Wq
zzp)}A4Se==^i6eEM}sIQq-REsbTs_rxQ=M3yBVJg<&-9q@T|0Y84&fvQ(^?ZSC9Je
zo}EzjpVO_U_i@4O35cSd87J4>(sWJNtnFC*ca<ijW7|IIV1Hpx$-vLH-UQm9UU1H^
zH!TvV792u`tU88i)p<jvU9{LQ)0C2WqX8o2R3)*FIJZ#NKAM(!?iH+6!u(-^kS8CL
zv4bfd+(Gx9M!@>(*}gPp{|e;AGh{M5jR<;nI$h}KM~xI)F4LZW0eiZ?NLILHZ(k1$
zIY`nVSgiF?^|!U>FGkw__QQ1Xa1X1D@9o=bO5Cyq%*)7zz}695%UdAPyJ>&X9fWJf
z2G~B$_Z@q<v_z(HCTT^*Ct3ZZVqxcKg<S<G=1<rM++>kcVA#HFl$|u+(A~~F$>bQ#
zpEQq?h>N2e>`TBz2auR@R?ZR3)ti5VP?ok-?tzy@u|NScsvx6hLhjevajn)t3;WFq
z)wOg(PWWlc(+E(w@%Sm#6iD1pLj9)#M%2^D((bjqo}3)YvEGu^yq**_a@&f^UjbLj
zZ;xuhVOqzsh-+_=T|G%QQ|N(Co#76Y4kzbjq~a6JRVqmD%uObcKsgr%J=LYhupRyR
zZv^pUz(mMm=-^03)_%M^vJzkvq4+NS=X@-L3tt|ZGM);E`({P^nX%G!SK4%NLGlf`
z01|LOHEt0xBRI!DEA2fa@!KOV&yr6X*-94t*#$s-s@S(X8`mxA>Vq!^L?Q_K8NMlL
zWB?(k?lxA;OH=Y6o;thZSz1838a0+}ofaU;gudj0Z1Hd|ec!8c47huK0ecJazIu_W
zxLo8FNX3V)n>ATDsR6iJjG6Wws&q1Utl7G1p(ga(K0F@}+0rLMX@}r<4SiLmR_zH@
zvd@vo8Ovu+&%`D8y9nO7kdC+#1@^B&u6WCV1O+>Y<Ds)$SYRKI=;MC@>uxp+Gyexz
zw|=GITl%Yo3jr}Mu?Ujm_POQ-)vLcx+cJ>d?vZhC9b>poU=7?PeR6a2oaoFvaSgVG
zU=18N1N{7qobYZm3|m8fZ8bu*pZV;`qY8Q48<ThW{~3xOXWBf)+n>E_ed-&6@b`}8
zqVCV=fByyi_5ZT5{CD|(Y%u@J@bZ5yKKWzj{hy!zx&ME?_`lx&zh3<RdT8tP*Gq9l
z+5dq)20eDW{u}!Ee_D}@n)lB|>p}WgY`IYq+K*~qt^9i*cT~*3Pe^eDVnvD;NC@jW
z`B$G`>>n&o4fn>hGjs8M0uwOwhQyi=25IGMp_1X8aHn4>)DseH?i&ZO{;T`=w4{R^
z0h33QB^P)s^SbO3#VU-=qPtl>^Hs=+qERAkY|zMJ_)gRDj3oV%)VwbvRKq*-h~n?-
zy6a|P(jaHnRT%#!i?J*gjU9`<kZ)idqeC7_-$Nr1fZ5AJyifZ(<lJuI4!|i0t_2|0
zTRm8`4971X{qTYSZ%=a=EsV1CQ@pO45@6W`!1oAx{}#Y2E-oSfZ-3>=`<yQ-su|J`
zXGS><_{PmI?z^UCKA(b|N*+kOuO)O^F^?iu&r_=_7TS=Mq~Hy@Pvx^aAMvR*=@SjM
zE?fU2qgiHNa&;8SkTY7xGTiJRasJQb?TtwmDH_SgmT>Ybre<dyo{=-Owgjw~o4?_8
zQ@ysGcW1ZPYh6RLy)eYvQ1_mioltXLNer3nL$jUlllttt1{?vCO>e?5$M%_exkdG>
zJLrK^T}4=ey$O<=oI(Kn`OkXw<R%PyIEyRDpU_<XM0BsnA=ecznQvfFEFQalhtSIw
z1P6#_ZJ=^7uR#$A%hU5FCd>yr3EP14bmYs$G0I2!7wW9WKLYWy))Xo98~g7H5o~4Z
zSinrcjR*%iYW{=B65-sGF0LQ<9@ezZ5x#Q+vr%uEV5?iwqC;i-dkO(y=(%~ku4~zM
zoFqc=y=W4gO;M<)Z=|S?GZS*tg?$#{W2K{*mBfE2<o%_^O@IvmC4j6BDd0rW(ED=b
zw0mfgy3TMj!vQGG#KYe@H(de(j_r;6JfGrO1|VKy9~VWoHSN=I0zizio|%<<o(JYk
zRb!Qd0>Jx78U?Tz>3w*!JM9Mn>bsUWXG`5j-e~=+CG@3=9Y$Y%YgdQC$W-xe(@~-r
zs;1lFHEWm?2XoLQ#3gH9jx>MTHft7I_;PEN`0${siOQ+agGRaVHj<2A_yNdAf%+Rq
zo6-e0&uinJ5gn@=Co7$~;Y!&}V}JK5De?Y#=S}ny;~P^e!@fp}yCRSKGcO-bTtrPe
z2M~zi*o_yFhwg%jf&ozctDF~JHTQZqO$I5cd_(@Xwlu#`s9V)Vu|48HfBJD&8Oy;9
zMM#L&m4=OgkK|EF;`jxfilAMg7VWA%zCMmXL(Na~dy19Ibli<5)f=Gm%<#FhZd?G;
zz<S<80ce%s^4eKWL(;6<2RC4?FK6aVW4C)3+27=TJ32WR8LhwyKp>jzCGc&4)c3Iw
z&?x`vC8Bb$znteu!t}3@iZ<?MnnLqKg*~R?7=VLJAD>!|S6wW8H(4aX_AIL1MqStJ
zv=S@j0PN4}aVT(YUQp#20!c5sja*Y<9v!+cuk1|q;Q+*Y|AMHl6>i&wb{L<cis!nw
zTA9z4;j5dY5OA<haO|ozk4CRNE6sp%eh%5%DxiBWoB6`iJImdhBJE;(qe;|TneU2s
z@s{%T96@xv64??eW%r+;xrLFep|$Pz`qEDRiJ9hqN@Y<8`{(fqojK{)bqmx8&&$NJ
z-h(7FvVC5bvKEwYj;{vQD#=^0OOhQRZf3U}zPFzD(zh_$_+p_xH+*Ua{!vmOEG5|2
zwLnEUeR^*v#bn}P0TW@h1G|tUcwA4lYX=Q;9+iGHGeiT@XKX^Wj*h&y0PS_q7Nh!q
zG56j<Q9WI|C?@zR0s@kgfPj*74oVP3a+EBRGed?Us7OvCISU9#7}Ai_C^-!|rvb@1
z3_0Fb-}`>wsq@zP>eT(`?xG56GkZ_(-rcL$diq)G5xmdi`K;Y4tq4oez~h8Bse1`v
zM!*w8jdWH*>t2W(5CyM#c$I}lZ&^=#SDS&CB@=?mKxlWsQ`2CnyW%V?h)x~pVhg19
z7h|IHh~gGva{?^!h|0Jd6$PFD5o4J*dqS4~#4tm>Xau;P3K{A-x}>L~;`BUYsJ;!q
z=u4nKAm^X|ETB>4j|ttC>4+zO8k_H1fZv{r<G?8`M#VA_d>GuJ()U9#vsjm5ey>Ul
z52-@T&~?wXHK3x@#nM!NzTpKe16{0~H`C)V+lu*xHRcDqc4F>bMIqrze7v7;pJ-K7
zm9F-eQRA-#%Sb!#oq>un4f!6mNr|MDmcQ)ZnS7mU?VA3kTNhBISUEE#@FmC}zmJeK
zAWvsPhLs>8iBuD|2?E?A)x7L7x?2t0?Su`0KrusZV4HMOCp_V5J=WhmvbT?XFf)nE
zw(e?=>gb!=(pJ}#)6oP0EGsgMrAD~?pYMBfkWcE2?U%a|o-TG*=ugi<<()vkqW*4v
zk;pAuwyiGG_kNA7jkZGm+<JdmsJlxYY%$lm^boIocILW;H2-DOv!pjBEFpC0g(PjE
zG=*?uV;Vh0h`UVIh($%q1It<XKay!LUYW{Fc-#SuY1+(8x~0~QpKKJPkLd(R&YL7p
zGrktENATye&p=$ti2gYNWe~-miitnHRC!a*9`%tVGN?A{X$@sWMYgtqkI~bm)`iKb
zH!Td=DrAH=+nKUQ@~+D6eDF(M+QKrbtt#S3@@Zkp#vf>kt#dAr562mTJEm?*SJQM=
zG3<VV#d@FvDyk_XvKkI&=6;>1`+PWnSg5a5;;bQfeUzTlV$S_}<?lIO`eaP^yo_vY
z;1Vq7ND2b*%`rbWUUwgEcON4iS77pEmQ|A#&&OOLQt~t_UCEg=xx}y5E<tJeD9H?Y
z#qP&+KvXTPaQfsMFP83WvEY}mfs_W%zOLyOkPhOsaVFg|&p8^G1GtHk0>#}q%HNdN
zf3c=;Gd(bs!!(#?9-o1d&K7A?5oZ0ud<uY>*H^P+tY1Cf`)XKY55<(T&a?r3E(66w
z2gCa%R<@RH3yv#Sf-zKXQn1k{8q873?~|X89px6jiI;v{>r6jB@$&^M@g0c>hms1D
zcoeQr*Am3Lfh9J5Q(*LC*2}y$u=n!&FpQw{Px96|y=Zpun#5>Nj2TySB`P3IPQEKm
z%h5Jw@ow!c-2)=a;VI*E*K(I7h#*BKO*Tn`+w1d-n`;XtE4OMZEanVj4S2sMaJwBI
z)+u?qmQ0sy+{SmYq<U-j&cfb0g99HvHGG5?b=gzABTGRdn=C@xSGgm>W9rNS2<48r
zCYE*=tjz4J+`VmsJsrx$Y6X~J*n|4QW3><%faCUpEzQ|c8hImNg&|PcS~rkY)OT{J
zJp8`uF0eS!oU798S>?@x>>{FKAefJ9$gQo!`P@wec)SnpodDdg1^KKs>d_00wlF5!
zq>;|vPQ$vx2T`Lxduw0Uy=ZL?o%P;aSkm<Q9Mo;vSV~Mu-h+?*w`Yc(?p<2*wEBQC
z|KAC?qBsi4Z-l9pBE-{)C34<Xh-Nnhae%BhydaRUvo*&VV3e=reHtnj*gU+S=OuDt
zdF&dVB=G$T;F04K6aY*ENFBRkB?@ni4nK5~AI26<0-J*9F-M2WG+oW;0D9@8%t{68
zVw8v19tt|e51T196)Szo>EmA2Aj`2W;gd);G~C+hYI1$F*+T`R7-MEu-4yp~RAv_7
zAKn?N(Pl$++2`aHGo|rnwx8)U<@9I+*p`SY@W{?jB%>v7@pJ7#<y}vLy`URZMEA0F
zvVg8~GueHqp>{m4T$8`<>l`YX``3_>xQt2mWvmnfYLvHvG1J{Lt+;flGluk!zXi5C
zs@EtA%9F}+0>mc24q>g#S25@os5@>CGQJNgb3*&3AsT(Fh+VAR*L==;J6S-P!IMA*
zGXPm0w$NpKzFsCnA~`q#WMF;IUsWi+`}s=D*pm@*?WpxECKlrTlj%sBh3Y>p@o{44
z%m1!5)W-MMRlKg<O?U`4j(Atlr|H*N%YDwGBw|^A3AePr3Ag#W)GD9VG@Tb{exa*7
zEw$xhLxT42eX|O0>zG^OWV+uB(oinYxX*LiFzsImjAP!}App>USnxjs;i`%>@y(~>
zmlb~zfj=VxW0&FNvA%lB<ABn^c%#sg`ku4pN;Ofdme*+g!|+jAF`stnt5?)uho{<S
zC3wfY@bk-0{{H)BIDjK3GVkRp^O(-ygZwFkP&)7L<O8wJPVc{2s02Q!SMSEBN(aNk
z7UTGPUEf_|TSDv=7Sk7h!aiPpOb;|STLC7OUo&SDgKU>*p7ReWRlJv#mhMJ;Gv^bH
zzm1f9zc5n)cexve=WA<J$ZP+6JXI%Wbd2W<9k$~vLzHg<0FinW!W|+I1~;kWgQ8fj
z*4|RSyAjzZwes-K9p2kdFnO%=;0JjMR>#+_yJ~jTNef^KLX-ZH78H9l2f5#JlYQkD
zg&_cXKfHOr`qv`^5#FAWr-<jvYOk~Ye^c=2EB{Xvyua=JM_*lBRR4dcgfX}NJ97PB
zDPeyvdoOPOztEljb+!?}AAkSE_!H`RDS{0tAqEYgEL2IKlWjiTKyo1zdEx<nd!a|g
z^!_aO=}DTe^PW!nroDUtU}r7ews;e{R|5npW^t9uXHkf1ABUv8r#k*0yZShP2cp-{
zfp8VQtWy4_ejmb)r8xgEw=bnwomrw85*U%tpM5?D)YHoBv9kw1O0JzVa(gY_mL)-b
zTa4kz6>V3#Fg@wGTV3?Kk>YVufidlod2;MRPC71c5zIVNaA!*ul>rI4i*c2u<?yZ*
zm83!A2Z@sk6hzX_7YXYVYDkG|)<H?wdaLZ|9B-AK+Bb8H?*F%05(?*AKq3vM!=Ea!
zvT~2Tcd8PL{mi)4T+r^iab~j8c6&`b*n0|g{#jA~e8Ks56Mk4<TvXH2u77#`QEJ#{
zL}-~f#RDxPIWHk6dXbnT%h6a&bBy+i+nUk{zDu5>c1Dgxb_e5ZaO%*qc&6I+omIV8
z=g$3RUR$seST)khGL}2kqU60wJtKUyItoZxV)R4fEf389>|q-$tag9|o7=DkF~DES
zo1_yG5`ru`>cDlld_KMp;)a(8;yy`lw@6J*=+!^HDQ-KJL&@{vnKYA9zN1rlgC{!J
zV#U?eFF+3~@R#A4+m<>bqh&n1%5YwHfp)ahMnJ8(y?C9~-gQWux0b=?Vh4V9Hp9x9
zh6Z?xuha|}@a*R7WDKbJY&xu`Kb@P!^~fh4Zah>`N!ps?rNdW9qI(QVl$;;ynChjp
zb%zeYNz$8XE0Q88RRV5XgH*a#YK@Uf5Y1veP5rteO_pGVl-T&(8H5rU5v-zW#d-Ay
zyuws&nUh(L&{;M1Oa9^Roby%}NpMh5k%5MO{ny^EL4v4QzM(=g4$!Y|>A#e`_dX`|
zjg1!cN&S`{VGi~O(ywt*QLm)=M>X+w45#a?{p_|%7tGIaC^xpIO3c&e>u%xUt0*ek
zCA&7XU2$quDa<uC!zK?zJ=R4*A^0WvbRmhauL6Y+r{u37u8wldb;#lLm7{F|Zmy>u
zE#HG}r;ZsjYtY11Rzo}td|Ow3f#72KzK*bP1&fiKmG?gvK&{$9_DkpySrL$YqIxq4
ziiSCKRJ&aRnHjzK;YAwrvHYPjo$$5@_C}<x+s2?bXWjZhbO{ihJ1m$e)JRUlzIv0f
zk<SAJ2feYvJjjU$a#2t0)8D6g2S|7l<h<Sm-wEc;{*m=?j(#yvX#Mp^VeMqq>#~~m
zXDjNypWjGhqh0`Qc);Kwuk<&~p}6pS#mv)|YIlhA1a<kD@83@-WMva6Ys(5;&&?o@
z4H>rb+*h|XJ=}j<tzk_a|N0i@ZgSNeF_9&_%<$;^<!fm7TZoX*Lub{Iy2!Ubo?Rsl
z<->Fz&eWo@a2L}>isj^n8xtAm)~EgLje5&%+bKAee=s^;rPNyTY*#}*ev(FRO<7fT
z%bNwbUfh13+k4@M6$2?HrvqtPPV*mY-R!SA1}>PCcoWHV=msq;nmx0_am**xpI2C=
zC{R4)p6K2*HMOj=Q{n$-?(!t-*$;EqE%gT~j$e*0gbsu7KL$tpOAjN`zseD9FEFjw
zi?ZQcRyZH#=YPS%(pLwh<`z!*+z8mxerBAlC!0YnBR~7>_;|<o_)8Lc((_9t$le|h
z@(T}FIDxDei@0v{@beD}^aBO<7<Ttkrrlk5(082??{BITUyV>Z<28K+jtqE_A?LW1
zTLKR9ii+&`t*s1t2#9%q|ISB6!zVGFK~HFDpYpQmWhn1g>)n#_rUU82m;q;=X9U60
zo6GBt3(GS@<{YJgf}WesFFTBZOymyrj62WDX8v75b4p>y%;%SrF4kj@GtK)lJ&!^4
zG8GlBOU#HyuO+kSw!<2)+58a-CdI_oZ32>b2lVL7bE!tce@=l$qJZ5j75BlpWL`{A
zQ*#y;E;WhsnWPMfdB)3w8N4A?RW*qIZ^xvcX(O9}vhWC6A^XZPMDwwc)!6d-8jnKK
z?l<nPj{fR8$h%BF4-cIWpZC7^1c#42X0Wue6}<Vgn@T~R^fgOcQ;4xmi`TOvaM|QI
zcPul6ib^OgjZ#)t@eWBu0e1A~?@#$&o0;8@>`O@CB#vtZWZ~3}^{&!NBQNio;JZ3>
zwN6??Sxl($1PEmQHt(YNKbnLCGa~t}TkeXAluk~HeFk2xp9Y2>+D1uE<?|^irRS*y
zS{ro+NBB&fG8_cg$`RR(<Wt_dmGfH5K>E`Q#;ipX1sSb~Y$9X(_G+zP%On<`B=a@H
zp*v{-pd&`&;=oP+=p7vn#q2Eir4|i-k7GBa=&xS*&K2!c<}{(<w8B<d1sC$PXm2{@
z;YgJLq?UU3H66P3;XEAtJ9ko<GKb3#MBHd@^M1EAv-4aW&%^o|X{MN7@3};iJj#)N
zG;|Uaw7S65+aJ2k$v-+;WuH>(ex%%aUmdny;dYFfq5Rg|91gUJM_7pQ2fjXU2)3B2
zeCC>*T6c^-y%2AxtzQUaW?2Cezi5(TP<&|L*Y~3KtXQT|d{$8rcc#wuQ6>?~n7R4V
z=4|OvpA0;bW_F<bm0z>0;tQG9lDo{YT_0{iZD&h<4R`(kO2XMW*%IF5iqb5aus&pW
z`tkXJ-#I^!Q}*cHOn-Qf;m_LsKC-(j1pn?++ULn%3YQ!@mPZ;%^E#6{{y`Qd%D~Nt
zk!c{qKeI<3mQ2AUtV2PT0dZQWu7S|e@eT~=2vkL${$pd;yK1m%pqs#R$3NRVZ@BM}
z?hfEYGYV*RbDCJZsqb$Kh>rQjkh%D<tb(n#CWAK1{s)-0Wo>O|rb6Ry)Kmw%F=SQ0
zjJ8#t@WsCdOJ<BoIE;;nTP`{&UqOD5vBkO&CM2ysl@8sB2nn*A83bz-L)dS{Q4ZX|
zp(>>+_SC6V5jT%RRI<|T)KDdPaUXYCD;;4Gk<P*i><PBRmS3M*7RRek_+d%Nl!`g&
z{)wM{o>+HM=`-0=Cka#>c8%$Towk29%PIvukwCl;+MdSQp32pQa4xm)6v9|h3|g}W
z)D>1|1`R$ebaXm-s&}v?wuei@{ryktHgy$ysi-y?Jio*Y^M=33(kvJn;_2x@j@wdy
z5~a&@*{CeF|G$<@)>HrOOdRY%^L9V_jp(tTo;F@Rurq0KcXxOZ_Ao{-A-%W(<nyRP
zfTfR%>p{ZgZr!qapu9|9^1kmScBt_K)u&G%?(EB)Em^a#Y-uwy-2t?U!6D;^GQjN`
zH)E`+(IGSr2nq{-BA{e!+YC^akZ~_^a;};hj_58V(*^;AhJHb7ba}}tT%OchjFCyU
z?wx<rvvgs%Wim1@>BZHSfd~G9*1r}iF3%vGq4zMnV2+NC_9%}BgoI4Qp_3KX5C;@7
z2}!POq~rqO7e}Z43ETVO_s0=tNOD~A@zCxiG72(&+vz!=?7Ox`#`Ljw?bTysG9O*$
zbiF8DSqZ0kRTaF7jJHG!NiJU7JTdVG0iDIfTbGj7t;E`%_I@9PiMM$eArcqu6kz0e
zyy~@ewx#2ub9O4ABriwCU#+xf;Bm^}ws)AvZSj@^3QZ=s&JKZYlaj6yM(JdO#A(Y6
zW!A;|lQB?|(4UUBhz0cad!+|+bE00~aqp^}*K;idr;0H>eU+S)$&h*AycI%puOjLG
zebVr_rY2q@W{0pa(i%MqDwvBSGa7$<@XIT?(dA{U;MFU!5s4n#JZ(BUF|n>*b|)J=
z>d2H7Ap!gRiDzxF<n<6cN}!>*pjT69)_%LjQwBEh0Dl4`n(~xGAmntw=t_UGW>$A6
zn{#kkx{YNG;z>HsgO|-DoH>j=^HR)EsM#jz&y%}N>wE^pS-xzuy;NOEe1ep?fB31I
zpf+$-npD0<f#c#2%>bj@Hygt%G@P9aU%>L;3{3PtLv;@L9C4@#QUbv-G3XU{;QaX1
z!~>OFMO&pbVTAX}RdUs~%l7ySI()*Y;>hDYLi5Q=%h@sydOFW5QFd0*L3kNOEGasx
zFy$W^I?Ig0#V?w_3+7Hz3Od9zgREZY*_k^67%-+40IClx<Vvg06z9WWF7O<jjS*Pu
z_R`9N_uk;)-olH7q(mT0eohN?k4N$~L8iaBMni8Z!tuP<PlwMtcy)B^d_r3YRP(4V
z|2-4L*^Q0cIzFouboLw^7RS8fI$Y~U)oard@SJ)~_UfPLvExTs%P3lf#I@7YIYO4c
zWfN3wQj>a~$q(h!-$92K777y02)>}<Wp3AntJmS$qYRc>L#<r*;{^^k+EMkdJdP{n
zioRND)bLq31b^3dn(a;PLah+*otjv;8<~H=54G%nbQM7*R~i)6RjyyRheQeimz%^e
zSO{m`DV|Lws3lAjM#ZJ~OnSsiP{8hc1eKPVsnzMt9A61>5%QPeIw?Hn9SHt-P6d#v
z)IdqK>E)Gw8%u&($WwKp4JYlBc%AEIWo}?ybTmEw;o68PvKE%ru4p-1Kd{6ifJY_H
zW%0H+M}ho-O7x4v@cTGdIu*|gMqJmXa|9m`ly&A;B>SWsS?lTDjO^C0FjKQLn9W89
zq8OOcsO^6H0_aPiQtuv4&h;J$Y1&<1i4n8vy|A}#gzV1Ur3V5gA4`KFb^OTguG3!q
z^CE*f8R_k9A}Xpa)*fVq4qG#)^l+V4Jes8Fh(fT|_c|>&xRXW8zHo7QGGAt4A3js%
zRt5fvOCwgQ71=9YZryj|ul-8z7>5+!zVnzMNx-nB(ba9`f>#4ru8}cwXGEUMcF&mY
zbT&5F!pW8Qn7F7^&^3TBi^AeQNm`9X$VzK!_LQglOY^?{u~8SVH<-23J+>vh+uix4
zN}zp8_r&bpNIoQAgYZFA1}*v$?`B@ir>6LMQry6^!v&Uy-&CWdB^i<}<&zm%S^I%c
zQ~O+O{63+|GbuYij3W8`*j1w92Cr9q&Iv!dL#3pjGii(!<q5ki6ROyRRlbv1rfGBj
zO<ngz9kCVoo}E@<lN4d5Ha>cI?<V=M{t-fGGv89J9VnAEU`3{ix)?lpcz+e;bT)i<
zlQ~1VztRPr3dMbskUUnfQH&kGIbM6#o`<*;_YHoLm8bj@GGd5rTL_zFpg{DVSq?_R
z6;o?>4=e>K<{o8!xP%t!SNR(y9NFr|!FQS@w3LH?icD5m8ff-Hop*TAV=~eYtB)P*
z4ARt@tp}^GYWYG>y?oF)IPn)k=6hv)AY=_UO7L{CzTAm4BwJ>y@Pg;uz+UOoYy7n{
zV$BcA{Hf4m%{EX_5)*&e_^lT^hvwlt$&FmS`I96n`-@807Y`ObXzeOyEVnt`S|)|G
z$-5?x3uRmDZje)z@CF8Aw#b;*BpM3I4u}uf?>)Mw8!>kI|91^fIydu;$S-dt-<5?|
zFr;65I_MOPlohy(&ek1!sXQb~M35rTepC`3t_R~!joa^^TJF2il$<9E8P?fN?Vw3$
zgi4U@xgnAnDLnRjaj?4Mt%(j-&I}UcnDvc~wb(PmY@5Hr);o11zwN^h^DO0lf9(8m
zQk-<9Sh1Q4Yp3Av%K2gty%`uq<S8kRV3V<GP{+(bO5cj_6|GqR$6FXdLBI}X`RS8E
z4BLLr9yO@)@b)v^y7WyeIHag_5=`;oU^MbD1fg2CI)RF`dU>Q05pLj9)+Yd$HqQDo
z^+sFA>qqIPjjaRGZ(sUHy!@lDacqWoH&<UJY|kK~Ixv3QWDa$Q-392e)Of}V3C*Nb
zkt&FrTOzNiCPT4sZ2kJSh=cR^=SDj__9wQ#9|NO_^mp#i$Bc}hZ7$uSqSNB<l7KtU
z6tUUpvC)fOfq0&I&Kjh}GS_7OB?|nO<9x5w(%RbD+8QkG(=6)q%&+za&U)sjKfq%n
z!z!Q_{5}4sjsE|l1pH4M{r?lC;J;n}|M8|j%$tC^pw||7dCGsO6@P^0|31*4Kd-?+
zvwryZ8T)<fT!eJ~E%liJ+>(DC|FIeW@#KGew*PqYKXWktFK=oe6`dL?iGh)N@lg^y
zh1cnyy)>P5AUE+eo+N{EmYD;AK|=7m0lT*U2z&p`HH!v8pT{|$u*0rkU4Q3D-$1L@
zaeQhl+!p#ZE7acIowx3TX2D_clogm+z;2^DzEIFecvLPnf$PF4#h!|=1O~;yPNoK0
z<AbgY5U@pd06(Bf*g@@OM@X>{w3qJa0gtc#n}IA%fO+)dd!bYGE}6CR;-k^rz2n*E
zZvpnETeTDK5?ac5EeLMowoxfo%dn~Mx<Bl3v;~$TDt)h5IR<D<cK28u0tX+aS5c}0
zS2WPr7{j&@@m{{j1ku3*3@>V%t;N+}8{67-uaAG?(fAV#z^0C0kA479h_L`5!cvI2
z%2lj~H+YjDtqH6TCx+HKr%6O^4EZ_}rDGIZ;nW_HI_~(q>^va3s*$W(iY*WTUkp8_
z$P-asvGa4bb^@9`4I4r=XR(J{LHgsB-u4wbNV|n??PLYRW9<toehTi3K%N!$Qi_-}
zh%+{eR^AxAZ<o*4o~<BgUBJe0|NM>6(%hQ<PQ{Lnqes+sGU-OK1_e3qwsN+P-{hgr
zweSkwOzx8nsT+W$gK^;BehyX&f%JR>bHAgp-GZ~BKEztnwfDKRh>tVLxw(Z2SQwnx
z<DnOeWUgD6Sa{KDs#8_=t&N9AN5i&y#dd72Mnrvb=eGo|_R%fYWA@jea^aWut-(Cx
zURGTk$7yQNa?jP;$$-8e)}d=j)z$!PVOuP)4DJYij&4)057iZfR}d)@UXVPL%La~|
znIWnXJ-6L3_r)5BW`%@21c1w3|Bq6#9}QmHE*IVbs<lfrrNg#y*A;g2=`7@Yg>{gb
zG7y4pkJs2wgdiZU7;{dOG}VySvO9y4YoCoIR*BgYuCaBoiVXI!@blF3Gn(5C5iV|%
z!!)BsSJ6R?@+oP*0k@}lmJR3OJsllyczu@*yGa~sQa<>#i{XU!GgR2>el0=*?={&_
z<P5lf0`@b;hW0bmZ<J5u;6Y=JRHfK7Vt3D>%}1&d-9=m0=Di6|=FqZXNzP}Rt!3i4
z)}tJ1aqOoJNmVNsp!y}!aNo@8m_{@#RO!LJJAn}?Z{uUsaL;cFP)XEwBjVC!fv!;L
zC&{1I^WS8AuSRk-hNyJ4@K#aA-IYJmbC3ftwiT%xUi_jDZ(!8hzxN9QbllX2!+fI9
zd)U}AlC*VQU4zq8-BMNAd5N!{`Avc_MgGL-F+P<9qzwqiST100>fG{f_(A~(v5ocU
zE=;@m7!)&(V(_tgMCath1Abtducdo?acjNX!>MZBuA`7sN1XR9d6T%ZFc&C)`hH52
zE`xLz%{QNIyn0+PYBM|*9dn_nzs}~m-4t7Y@i9;0vgGZ2*~zEJSWw*=<^ZGRKEv9#
zR~$=};KhyFPYyI#2TmX^UP>dAFoz4*l9S^D;kPi-)sW<k(hu?RD^~juj*g)Pk4VgO
zzl_WcnMb*8i@&MxGOBZB3+l+tA3F;dX`;_WB9R|I_A)T!Zla(~y`up^>tpERv68LE
zOIe>p@!%OP*r*Mv)UD?`n5N=2o|kcrX^Rz;?n~<m6_*9wCi~&Ku4@~w?qze&O#Xg_
zHifV_R{fcrrR%A>os%c|6?k)fqb35$Hj_C5lK1j%69{MceVUD8eiF2mKjyO)WZ=DJ
zKt#0G5J)bZ5&v24p5-$Fg2D5nvn#GL_PXQ;&+re9FLz}VQXQ95c(xLqdhZ_{AM>0C
z-+dKHA>ugwt)@WBo|?<%^T>>m^ryh1ZKCt>-RGWuMkA9*`}!*m_T$QxI(;ba$*E_1
z`|$+)xSyi9q2EXRQ=tEYsD_4@u+cYmp+TBO6THS}E!Xv@1o*ATJFu}0iR=Bq<5_Qw
z&9|s4#TyU6y7HqrxO=Jb;9`h`J?Cg!WFJiMp>=1#F+R0CkMQPM5#@2}<w?Idwl?ef
z1j)L0uZWn$P=NIQE3AlcFPras8qe$uZt$Rcg!;&}X8ZfyPgaAoC5mfflBiJ#E!n|^
zg)JeMt`o!f;!Bs)TCzx`eFrxwvY!$y-(DF%bZpH*2774Ti)2bq6f!PbE7rs-6@%hB
zZ;_w2q*zu~@<WfQxKppQTJ3G8%g`78!>*MULQ0ks;W=$)%dYjcIY;L-@rHmW)W`A8
z0P`k>C~071+IY3;$}(GBW@ZyrD{fB<!}Vp75Dxc@C5QP6fr?%v>9SUE%b|pQ<8YM{
z9-UlY&))H|X(omIdqHkdRx$di>MPJly~cNbs(EL7xv?tv`k7hu@>SwaZQr7Ed(Bps
z?PtF{iSA-lq%=M&Sen7dS4ib%7ksh{a}&2j(}p7>wy0xMp{;_gHf}vFZEfGx*PAk@
z3~<++YrW4S!W2pQJ%>xmD3(Ck(5)4zb2+&#a*8C+;}9OjwHcPUAa?U5XNO#j-;Nyh
z3#Hz4E{A97BO8@A6SW)t8H-Y{bSbG?r5Bf$K#4P6{L?c}9w%HH@t2QE6olQ&eGvu%
zECp?m6t5VI;}a9@>s;ez-RE1YV&pWgeHu_+3$3_0EB-5K)0N%=$w)~w&WUVPwXjm6
z==Rvs#^4~gpWm%OT(T0I(^^;D(l|}a!Jo$0K5JyerJhGYGd0%fYqUI$EpwmR1L{wY
zWC`0N?W{vJm$^v85X_4q!{t5sT}do=WTXOG>S}AhhGES8e6!y<mYpqd`{q>YlolCN
z!0kJpP$)rEAW$HKj8iTrq8uUA@dXI)T7%++Js)3Xo!#Nh5$h^15SU=$F<qa`m~RN!
z3Z#0he!jt^n0kJ7ZYorBs+JoTUoD(`W#!=}Ev?7C0#`!Oi1>`=um#(0#VDH3ISAQq
zMYQ$^16?XRXtfA*`<=e`<=5wz^z_Z2B%lA<{$|Ievb896E(l_4OBbDmhcHd^l-ZxD
zHy@RQ$S6?GTfceIMfVNs=odWH#X35YxgeioX8jaZr4%`4;IUnym6j~-BFZCU!bB<T
z{Nw6U_K1lJ;sW9FmY7>vY3{k0Wa%Sga@`?LO?P5{^g}B{IiaHTn=1vxIW#ydH2gW}
z^jr_K`IPmf$xEyVar6NpD{=P$Q@7M+|NMgV0n$yvEqD{Ueo)iYWPRt3mI8_P#eDLi
z3y$@uy`_1m8T#b>Jh&AX%v1uEXYWx-u@YeG_^Teq+zpY``jtIP!f{sq^mZP_6mi>|
zPPis^5}8>|!5!n6u*%A9I7g%T)f5}!{)<y&f!6DUbn<lyI2>KuDt$@)ZTBF7lig@!
z9og6@e)p~vo31Xaj^Od!{9<zKNGNeH*ZIi)b`U<%fa!cR{OWv70F-Jd^zLI|U|{1G
zEriW*IUVVRJbOD;14pd2RBTk@4;&<7(`TM{FNJ{cY{R+Mbw9(qQQV-2ot;T3T|iOD
z<BT#H$#2^?_-`Zh!h%U}A5{!(ae*FhX_dj9f;$#Qzou!#@@ZEkJ$)hVY()2vu#JJ$
z{R|~gkk6z*X}Z}XDGh_EF7#YoHOf;wSY|i+d7-`Ivpdlmb6_A==f<gF!#}mThC7%3
z1BJ5RZ{gCO5CV7jmTky?*}4B<s^a_+{?=5(2Oz#Uu>en-tq@p4_WP2N>^ZnWH^NC!
z9@j&^?M>gNwwjM#?chXfjs4Czz`!?Wd`XvXV&KiHq0Q}QYps#BY#f&xmS$Ze1!H$A
z`K3*at*01xpYVQjLNtnz_#XI|Ypl<&m3ks`3Ja&1R*;V}!5q4(x7oVz=V;uWR=Y_t
zWy&%JuK^oacA>JO=!1H&=Ouc*={1y0mKD4p%ck4N&nVo5>Kof+DsYnx^F>_PfVpYr
zCqSbluBNRK>pXWdVx8Ug{28lTpj|kvj)sOeEranw&Q@{#MVRGejNC|+G1K`$1aw8>
znlY2doZaiF^?0Q>`(SGd4)dzcl2MY_>&!J25fa9w9_OIvfvzbPEcc|D@zVv5q~3h?
z9@rw)n;*6!QP-%c9WQRj17~Q|jCHZ7Ic0#=LR>0E)uzc+ubhIbqwC|$=eN$l07W9%
z2;0KB^_5(EV@nBrq1}5!k%qwdnO#_REkX>v&_j_Duub>(x8`Uz3OI;$Q|(-X4#Pr)
zpxeK6?dv=0>*zD_n=!X$psUESE7RIx@Cw|v<+y!l2AJU<v+jp?!gb)@=V{pzFlQHt
zcDchg-fOKt(*PT1OY~9WP8VM?vH0Os-j2kM&%2AYjt^UuxGO8!hK;AAzc>&E%+V~K
zN2^C8@iaBB^nyEDM?9J*X|B=Rz9{c&HJB#J5TD~#*N%uAE~mcl%a?DLvlnb_Q`;A)
z#HyRul{9xENF_7o5Htue^I7a1bRTrx5RB`YcXaWW2O3`2vu$f;b<G!-6D!wn!h2a+
z%_#5l*j$nxE((pwx16L(=krFi5<rXDy6@-7iMZ`jbLuTh?3LB>B;aqrwCg6CXSVWA
zdB8<PaF4?6hd*vLb0-|6-FXlFoTNoew5fo1p~grao>Nj75hQt2^y&+hy^RHdh;Yfo
z>KZ17w6u%MVQ;UZAQQ$9DaG8OP9iyIRO*tFRRt(5anJvwue<oPikcd{bc^kMV$&C9
zx_f(0OMC8kS49{=uzij?vGF4a`oCvl?7jr4Ew*AKXh45V5A>?0mlk->+41E6_o3(C
z2L4A>;MzgY<i?Mz?O0!ysJnkYw;K;#W{?CM>;F0=!BGEu0J;groJz$736{y<DEwkc
z6`k}))c#)|01(CB<I!)4=)cEr+~Qxyf8FXmfZYC1C;#L1|M4Wof8F$}Uv<Y#jA{-Y
z*mD?T>Ndw~jKJn!=-^N|*`Ke<xC3$`W{d%E{)8oqLi*bf*~5E-Rw{q9LVkD74>8W~
zBQO8<!k;kQ;@o=5PBi6djRca7J5lfSABOR_U%QgdBrI`M6EidNK<Lfa462nndx~B9
zC7G<*X^u&#zf#TPbHPF4ZOspjPfs$(5~{f9XB|a~V3WChE6UI=I$=@z$I(B(vhlQN
zP|rZy+H+X+Q|!GtpVh;F{jSM6F_Ftsrf2Z1u)X#){{v4cZ5ah)_(KNVKW}e(pzgZr
zmqhy2+3X67#Fgtzl5JqV6?wv%$QMOwu~gT-f|0dD)x=-Vw_n<N4>4Wq7OPq(=yGMt
zc}rMxM!VKHTo0g+Kj+7Uv2>5_@Le72XfHL5Ay{GG`4zRRfa8rS<kDTAGOW6`Us7D~
zEk=E3Mrb!1NlcP-)iKA^1}tY6xQVH+DIuBP)SN!UGH>hy8EusEiZuxk|DeVzQ{BD8
z5LfPtqI*r%^dixUON)lr*k}nvwav!tVx1gXpu6%_c1U22>QB^R{@F59_w1F;=~Ox!
zs*LHhFI0ggCciJ<u5n>vZI(S~D+ME2*92G%S+Zt#VypH}Y;A1A>%jv<9oLKzp;+d_
zFZN^9;vRQ3u>bK3yNU5kw*Fw)1W&*`Toao8eY1{8BrQ>-7d7R5b#R+F)TM8Om92Qz
zX?3$3J6E)%!NJMp!lyG-J}ELC`N)sf=w&g~pgDa})vPhSYAU<O%h%p*p(R=4aN=|<
ztJay@O#f=6Z1*$9!u^^%WAyfyXREbUk{<2{8~76f?3sQ%sFisq32`XY=v?-vK2eKd
zHU06XiagH+@&Y>l5VQ%DFSEI9q-Ro-#oaz7NlU%@>{PtQID7uC^*XM8JPNKX(&Tq5
zEs-bUR75QI3By82T>+sL?r)?4!xz+8rl2Ao?;mztZ(0(H4y2J+gggvAYk6Ta1*Q8Q
zeY_T9Ba1aK{gi(H-s@vZaa~>1LqdFB<6p|`fl|`B>?Twq(M4kvXKgZ%@2|zGIe5<;
zHLKR_Uvg;TP&^R%s#OkQkyXm25{>%xh#-P|P^8HE3H}Hlul=ldef76YIASd9u9SXi
ztMu?R-Bk64#eBs+`*WYHfP<sMFO(wDy-N<5M{9D@L>ey8$P}nqZ}scMQw6rcv$nX4
zUu9JW38y0*x+o9G(JcK+M0)4jQtg$Yed1nn_(p$XY4iE*6ZZ#Ea@nV6W46WYNo^~a
zt^-^%b(Y3hT-N>T&Kqu&ogGhccU{uCJwF%6w<KI;ZY+VX@!byItK|2pJx^m?oABr8
zNiTOs7IkJ}lG|T<wm82McKt~@H}1PBS!`znW85-yyeF3vNhK}K)N4*HuQ;%QbIVgU
zl58|E=)kjiw4u{79(zWQDzLTPHT1rnb*8Df?zWkTh+TzpLNEnEB(Xu={LX^7OV1-3
zrB}Az=(J|@TbH7Ej}0H*vssa+9uWG`U8tOIwH|)wc)kFAuQ+x`*gdB#N1VHSsPI+u
zWY^RpoGeh$Am1LSxhV<6YY{6DP28>AR8&MVKLD~Nq!SX1bl)o*J;r_x{rn()9+6U2
zv4pohWovQ0Ej>KWs^17Pl+n;vkN=TK7<kXdwxj-15nUu@u9r%wn9}Fy1kvL)x7nWv
zbIPmPwo?o>i*zBFS|N$gHYe##5$ti)h*RsqO<yqQv70Uo4!@Tu<{=o`YGoG-n~qUe
zHDJ*C-h%6T=_##1Ie|*}l0&?<4#O&rojur#=}C^8TVA)Q*e6smP+6O8Udgwjc$X#h
z=0Ml`%yKI&`0k||{GL3|^qZJ15^2b**0z?c!*CdW#tn2%I7p3eqvB#Lo?8z;6p8$<
zp5!A&*Df&{Sy;h@DnSE1o+$OAN13~Cuj7g3wJ(rKt;M~@W^WJ+FZ=BDC2xAO9S<J_
zUG0u|9EP(2fhUf7P3pOgUUg%*vFmmWejJv+X_7)}LyXhhiOjo!ui{+Izl@!*<y5(g
zd(zW>TzH<SGe>q)O$%UZ-LCeP{9x;D@$3|-Q(!&^1}5L30)s$)(Zl!`0j^16mM8ga
zSRt?NUIgChO&0%RS>|@&JQ<8m#Pl<AK-q!Y2EWW50+lFO>2o^<p7Xl88`h3A1`CN;
zx(LJ7GAC$vHW*6vn6hM;4J&<ito!7dGG_vN`T47Qlli{{Y1+t<lcV(W)N{>ABA|t+
z>&xm_8S04Z*8H!Evrf5Tk1{s|n89=%ql;y@zulT*p9lw{+!gi2qykJ3{MULdZ3StF
z$hycCTdfo|lCp>tMYRIHW~`Q|SJn}SA`y!Z^{T1}al?1Szbo~Cxy5cue6i6POh6(_
zcjkKP%Ab7sD>^zN^_97f<KZT;ndiqlK)2}z##wIoQikefG|!Kz=86k59DKg2t^{$$
za3oCkI4uYl+so!{<m6e7iwLd~8P9HNycw{_ROd?gDrR<jKM9{=n}>TCUA6Q~{|ZaV
z{ED$N(0q2{Q6nZ`?`5Ojv7^)hD-#RsYdE~<@faeg+!o6iwQv!>9OSF33vjzSLFRtE
zSs!0CffRjoSt2~pu2!~q$khDtQp;B8EvIs*`Ydxa&&Gg7xyvC^`mxq`+{d|~{&9`k
zi`7HS9AD&*SuU=q=M8m%5(4)1fyruL(^n>9D9wJp);`@XQfyldn3yFS`y8dOu8TV8
z)KzMI5y(g_s=%l)?K@NAt15XRCM}RK7gX0WG4`6ywWLndbx2U`$q!w7&WHNNk21lE
z9+E$q5cKHGd-aB?g1#}6MBj#KERYF5AB&Ej^)za$83uJ)ROu#5uTAu&&{G_}X`I|X
zQomGkmP(eS3r=lnl5Mx#b^SBPD16?;u5Qhr?NR)0#8tH?Nc0|Db55*jjjh1hspn-X
zvR>U+IA_CdEuUMb(Dl(qn4i2KZ!JcG`uHsT4BE(sko?+PoliM9QueP9D+B{W@b;iB
z8Cj)ljS+sYll6Ks!hoVl$M+MSFBBnWihC4&NcZ(Ul|ZE&Ze-dqjTowP42`g7n{yb?
zWjCmFUEN?eUAA^P!!z`j{6%+laE>EavFxXnzU%BXQNAIF4+@`|Q4)7+Xe)Awc~x$S
zaB<OIjmQjP7sndD?4!?AsEcsfM_=sdVndyAaCY}d#mcKJ<wkA97Pn|mH@9T;=|5`P
zDZZl?Wo7XN{Ze)a#X1f@-Hr8-)J=A>tZ7TrBoFUpZ4PI#&wW%bJaf$A7C}9^GIY(_
zzi}X+&bkmm3PV9m!21C`+SSFv{<OHPr!#tmhayRb1R?Hw^ljctd?&GH0mtNfVG&Pn
zfB$f%dOmDB&(hP`^Y_S_W>BPQ;79mIeouXs%ND6!@W(vx&v-s%xo*v6lsG*3PM<rd
z3cvSJ#KU}<m<KE3=UYJ^MltSk!lF;le0zRyb(MGfr(QM`rhQntHv$ZurwcZ8rF9~f
z4~NF9CSTWNSA?UtsK{Cr!X6z2?xV_$HZ<T|TGKY}GwAB<VPnjML8GlVl4m`AmVv<!
z$MWCXH1Uw*6<LH8MbAGX7!|1Gl+yoZPGV+QlQXggTD`=g)iAA}sPK=iZF(9XDD4PF
z^u_qRci0YFTB?Z8Rr#kDzubZi@^Ew7g0Y*gfx-H1yahb)C8Z~{ia@r5G^3VhZQbTe
zVbhdGu00DmGoP{DUN3RC=H4usvF>KSTg=w$eR^F+?1VLU7(V!<2^6gJ?}%^HLU8ep
zl!RSr&pEaXus{hmjElP}p-oN8ucGhcAi~)*gk17H&YbB~x2Gr0F3<=u#7zBD-TG>e
z-jwAUCsP{lZ^+ZFsA}*LWFCsWC?FsJT<PrZ@4HZ6Mshb<rzdbfWP@DzyHZ$P%Ttye
zD^zvRR}6b|*}zv>nBVl-A7_F!icq%g++7a5G;Fg7;_=Dx$=%eJBYv;6z?KO`3v0bd
z9T*?!ebvM!ka{%}zg#j=m^|Vl`9Z;}*dj`q)6s#WMp9cB<qWS?%u|n~n$<F4BJF4K
zJSdsHXPTTvQ7asp8$m|8dVLP1#e!y}_K(gg&e1}aAvN9$bgCRAoVU_a6+5X-_UuNh
z-4MBISsMAnIxzM|^MjO5`qk0UEE-J)MJkaeKgRs*HtxX0T^VOicH~r^RtQnc`q()C
zgWoC>XwcOoaB11{qxzdM38?J57utN*UZxN*)xpM!gS~HD`i4$q9zmkG=jaBO`8pX)
zLpInWP^3)ADOYs)G4UO@eIK)4!5URdm&_5b%4vlHk=_!WC$W5oa<QHl#+M1f+XT5y
z)=SdgMlEt8$evVIQE-*Ws=?J6wUUTJEPt9V>4yjZvrSC4`G^3l@4Sd=`3!Y!sxJ0&
zcrob0v2Hfe7DSCk+dCBtbJXb&;igQJqEDJ#k)nXzC_&VV0`GT|F9o#P!8x_|`=ZdN
zfv>*EXDm7h!WnTkNJuO%Uwmp!O6W(uvXS_1FCVHd?lFu3T+9Benb+L~3g&P<jdPYA
zd_v;Ym9-6q;0<ye$1Fh5n=V`%qwi9*5aAWC)X3os2Z}zQeP-Igg5S4tw1cmqqcWq3
zbp_UpZ53LvI{#p*O~!EYIo3*n%MtG8sU$nre?a|ei{9$-)d$p(Q%vl?tkx6?rZlX1
z!8mwsa(o7lguYB+Gp|<Brl6n#PAcvyl>+9i$ZpGxppx3$wu9-ye6>8@Xjz<xBIAca
zYlHMTp-WuWhhHrMe?Rd0jtj`G#!c@F4aIFph?14|kjbXD>m?xBL#}%c`ArIP<3Gb<
zLsegA*^f3JT;Wj@<lbn=f~9>3e$tO(DYE{aoBUeOIcWT6k#FA<(02wiO$koDtzj%`
zFYugQh|kZf@j@d_*{fHE99NW-K35B3o_R#n5WV9p6J<!E+SeSj9A@Y!KJoN$3hikN
zpuwM9^VD7nPv#R(BUlg$L7LUPPI=R^|5;FEMtB7{=nN2i*-x0xN9bA=6=T<0&N|{Z
zRAGL73rAshc~afk+2XsG>e0V8<4NQ_-mM$AtpUqL(nBfc>)A8}ZzE6v-g)m0gETw#
z6*Z^(m{M|P;-RhUWAyo@GIG*jXzkIT`|dA)#Gr8-e)ZcQc<=jAO3Lq`8L#HXjm%>d
z69vV{_RPM0W9jv_NZiW<rS6c)T1F)S5_qt|HhWvus<~>JQcB-9T|)+C>vAHE3PQVz
z>zHamZlpBqOLY)a*yi<22$kdqoFT!=%={wY|7l6+cy6%OHdbcTXfPiiIrFibPGYuv
z;j*=b5KLj6xSJT(EYB|&4p;!6dZ#+TV5T|bHS_E#f=HaYXn}fT<uNh7%4lqXPIwVi
zy`<G4UwEi=X-lT5@`b*b2kk~4Sr&+SY;8~4d%r2s2#k-vu7R5DMqD!SIEFZ4%b6*W
z`(#)5IAcTv^(#u7a1cDE7SwQurL-?}5#={R@D<opi9?s(a`0B(rll(&<oLFty$oNn
z)0u%759kuhxn8;0<7q`NOMKby(s9#bGMB|#o=@ys5EhxJ>RQZ!u)}RQiVF`LMz|B3
z&FWsKFz2sJOMaNRXiWP8TqcbXUW@YDFBBs^u6J%G8;<V4>}`N0VuNwlNUl91n7nHn
z{`C0JwP4)sV-RE5Cc>)wrxq~>up!Cfc0nDAZ?p3SCwcUXru9<6O_kp^U$8Zdcz!gh
z$v@Jv3%luFEo8o=&p>C$QN<Hq7Kj(r@Hx(W6fY=`ITT?48(0;jtkf(}E2tQL5lt+?
zA+X@<%{n^tyzOI2MQM$WYN==UbN=M)p|z>}PINAl%}dc*o;Bylg#OMfES=uDjiorx
znn%p6oW&(A6P+Krm&%E<N^5g-%qeJ;f=ij=i{l?xJu{0l>-NjMOs)7%;R0y*=EIX)
zfwK2EA^Z$b<#bZUBuh_amc2du>emZ28!JzUFHwUEz<Vuy!&;yv3^<XOTaIhX>x;|3
zOfE#K=7b4bdV1KdwoL3Eao~-$Eo<T?FRVV|rhaHPRUyitgZTnEYI$b;ro>m}mH+J9
zf3Ww_4o)?y>WmM^o$u~j`<jOz-v^_6bc#Z0W>4p<a=scjdZ9Mpp3SKlzAYHOBurRz
zA-LEV-n!fDb+~D>G45d=mOsl!LUxEMTy}y}K7M(fsFm4tGqr^d8ubYHXQe!A?R`0c
zx6gVLMKfW9<QTsh8OPtmebbzU=dFwJ)0L!~R?>#d%%fFbUDso@$Nu7m`;_z;=W@N_
z1U3`CH<;3L)HcSA>GwQ$j7KS06K4zM{SvV~)@659W*3Qw42&NC9U;EPW=!r?bKeSB
zgHpp3+l}C-qD7?>9>z`urjwHc2(96oVLbt@+~?l4I#*UTnCyY*mf?0YMarZ^wTq#o
z8I;e#P5i@<yP)8V?(yTk1kPb+Gq6s2PtS?u&?3Hv1#vru$h*Qt%i$bofzVcRVwx&|
zLg4#(?w*Pc-2p*U!pT4<S{pNyV-_0F`py>RtC~9$x_O%%rdcddGQqkGi3%!IEKll_
zHmOXG6R~5JV=C<^Q%-528#)pPvxi1$43{|MRW`R_Fg&YaNv)v(UR_#q2&WO44E@Bz
zc;CowuWI|%_6(bi1Hw-Fp!0fk2(}Y!Rj#vKR9hp{)w8y_y1Slf391qN*o&!{!fU9t
z&^hP(fV6b_B-*V}fpEl~^3tIF(3tE>CE~s3sQmu;VvQb|cB*Bk=($is225zI4!TJM
z#np!y7YkM`)G#v-8SN4^BEw>OV{ktoZCMj)n9NjC(b<bgbDt|8Ijy^W%I0y|`6tAQ
zpcIPjx(|I`g^-#}a6bU{zgk#?+g^Kul|LC7$D%IZ6J&YI-bD%7%dY@a9in~9I%MOa
z+@IRW2R7#)OcAOuNhme^{A{SFscKO1cA1p!-T}Hi?9)x>l$O?kW~7J3^|%xhyBMEw
z%m~kJXKl_@pO8%`p?_ZtD2A7)E(24{RkfC1FX^$tFUV~<8nbkD2FMPGe;R82J*tJ$
z8xxiul~Gu6E6Sd)JSZc5a}Y81F_g^1s-msX_a44b=vKGg=&G|PZlFGtWzvF^^mo|t
zYjJmzZ~=IuK(D7meut0*4CI5#1}3YG<lIP#COy@3FHxiQgb!pwty9OT@}lmOf?uCv
z{H9J_*mhi<8%{8#cZi=#UtJ!XNvstcEMa1D58x=sg{<!y>6>O3{i+)6-8bz{xMO;K
zxq}k)RcA(?mQNSf{{lm*oKNZH*FLZ=_5`Y{aTnQ)d&JZ*2t&k&-aev}6Lnwi=v1dG
zt0Ej0sNf_F2jf!Qu(tCpr}NSA{?X@`rj8Q!RTQy&z!8#G*B?9am9QIJJM@{|UW%;%
z$ddFhbFA;~5_7iP!u+yV_V*YMODC>Nx%2aP_Dm)LnI_ISJ6@MBOg&wVitXm9Iz!l?
zUkLG1fVG{;k{q|G+`9!;lJ{o4UdPGlZl00rtmn2KEHPh+FuzhD<LNJqmqSoT`G{{z
zow;O9p$4b!+9t{#ENdnfz!O^EbrN;GPP`-kC?~pjWi6(=XW`cv!iKFz#q_TOhpco>
z2`VHGDUOG_=+h5vWmYx{A*y36IR~R8xxA?xV`BU2Eqgkif(+W;2wcs3raO1Rla8f(
zUjX;^V4K>Gazy6W`b%lx<jdKIV;OOh0+8$xo!^Iu6ggu937-RG(sUC+l=1@-s;1l6
z`5WXK%t*0^*-QDXxyp5hKW54|#?^RUG#u|wgXa;T*j9&)TJQ>!FmdrD+?laDGt&M&
z;tgJQ8)NR*YkHz}EKRX^>S1e07&lZT<Hu;*Th5f)&!&8P05D#{^ZDHMkbtCp_pNW9
zyb<SvA)b!a^H>qAqwTX%G!M%C2(paB6DqS!u#)m|Lt0%^MNL~DHJX;Rk9I96vaQ!~
zj1Dq!TmlxWz>;6&$*SV5OPx_1x^)!2<7v*N_dEJ=8!w+bSDaF3uCM!^TG`lDcw#m#
z{K`nZ47-JCI}z<A4xF3$+h<VnjgqCR@31ri1w4;#mn8P>M+D^e1ExQI0nvmkR+MBO
zJM&Wk>?2Se3pa3Pn)zI+Y<2OJ6@aYW*s}4DB=Y3<y3ZQSIhG1*4?T3U<zUMBHa6~b
zBF}3(r*1|m_p>oqm*p62z9ku9_#8CIP9lDsZqH##^vU(8qGBG!b#V6&(=c*Tn~^zW
zX|qSP%Nl#Ko@i7{W9_vZZ(d%#K|{5E9Ra?;<4+V+$ODrB{ko&$?!+C<%{fOwQR*>N
z`{mLdHOfi5&I#c6x!Ihwql)0A^J|9zGVpeSf$y{pV>Tkyi&GVq{G!k(hxs0mU$O8M
z0&#ZV%E|^=<ZB)UXfO3QZ#`WHunddJDwd`ucR@%89s%1d%%Ik+O8M>7G+nBY(UU;r
z^7w9gx`5F{fVb;S-39{*(}QOp*d&BmflNoYz0ZDVw4b-lnDP+jVqC2ZrZ2*AW#hGv
z5Bij>sP`RvAR&sUR)evsbl&B$)QkIJy0vC*1}b@~c@aBgrkm_W%`0NZEhpFKkm%gH
zZvBS25i6I(8ZD+sa*N5<h3IQoI@jKD+arFjSzm($%gVQkKV23+2j23O@vV9%yLSkZ
z(nt6%su=44VsvVW+y<5yvw@bbT+Q6KxRO!lx0_X2u^???4O0$Utzl~8K$RQ5wWim4
zVy-~R4uRNM|F}6M$z|Qk`OWY+5~0iSaD4UfEIzI5%5uJX^)tZ3Tpy?A!|coE(Zs!!
z3+xbbzHi3>yPVOZ4E}EI{<)M%UBk8+%Mhknz?bSJ))u}hD?QYXqup@$HTunP|FAIV
zDZih)BYnEW2>xs82oku4cIqImmU(G>;6_`EvCpg>pNoPSiVlB#^8WVN7FZhugFdBg
zBdYo<3opQmB(+e-acTxjRsLZFhq`VIUa2^=e_SP4bX!zk|5ZH3sasBd8-L<%+x-pr
z;*<-!A});k6z<d>uQh7-QgnY5jnJ9_fy5C_U4Q?yj*2$P+{V@7LYB=*edpahgx$37
zs&okO5QOWUbfH#qZ>`ZiDG(NZrisbjSZ0l4JAG!h{J0UnOsYl$;G0e!H@?XmSr<O_
zh^RZn4*_87F;&CcQ*yF7pCGEucUd1J)8vwcT|Y08okWC2QjbEHa=x`177wgDgE&E6
zt<j&S9mxKTO}rKY0y}SaiU5Y7KvL={$14UPj3L%vdMX<2OO6Rz<QjZ9DO1UDC2x4Y
z`5xmTbY=>4#}^g?r<JbsSPEE+3sZ&Lx`dn-=h6Un63>kWPB`Y#c2}4_b4dl+B;tGz
zPWBs7QL_0|%EX8tPWr&@DG$Oh@(JUM2{G<!!^n=7Z$n^J0zs87KkqGf&NrBF0dEY4
zcvW;)=Enw_-4}<R4Zj683g|Pd9S{gB6b=kFy!|L^uxi%vO=HSk2Mfj2FV`no?%l*o
zy{SpY?VG+ADiyv6t9IPLbYC-a2&s;a4l(N-9_17FtJCGRA^$#!J_^qFcOA-E-#j|o
z<WYPH&5|tH+`69SQz#bbAd-WBz~luxiT0cu2G2*ao(@}8=w!@QMpUz@)-<H{7kU@S
z7x8Ws1C2{SZ#dqKJ6zZqMJDqPmK`gInEXGzy=7FD>)Q5@x<o|<5eZ2J1?iHMP(VRa
zx;v%2Lq!BcKt#HvL6~%>h;+xKL%O^BJ*Vzx@3q}~{GSj1cf9k1V=S0!GUJ~2eO|}$
zJC4ixeqaL|5!&Xtqs1^pqW3QQ%K6a|a-6{{t*e~4q9KUuads}d$}vU}9iioerva*X
z7}(GCF)|WWMvxq~GZ-N=kqf)_=UVeORs{`lMR9E`5dB0dNi4aQK7;9BBj15k;eI?T
zOH&AQTg1v!u?#gmDy@9wWL#u}WGerG<9A-Ffs(KGDN6Dx8kOcp6AqfOwcGq2CsT2J
z9)>}K6JHcedI=HAp(==DbkBJC6wCdovM{k33{vl5_XjVsIYjg^W)~*c)8!t$HiOG!
z{dUE14OU#`NdfAj@rBW2%=B<a$E&--2eddR1+kf3`}24iZ66AqU%V(MkuM=GT4-9_
z3^9QPW1Nc)kNLfyQu;fh4&JmWDv2Bft$d^R6(2b9WG(F1q<E(;Q0Go9xn72*G=yY_
ztr=@fnv6+neeZz7_A$J8{*w-Y9<3~e)L>dUOaiwlvNKB|p}X!`Jfwkb28m$k9?Pz~
z>?y2_P@nCpMlJMQw=Q*_lk7GQqBqmdR}RIxr?6I#IagHZZJ1GfCp55pg$GTxeB5xx
zn$rPyv}DfgBzIPVXu<ZVpBcQ6(EJEH8zVz7fyT`!RZn*Kz$N~nlRE_G@I*mp$)Lcn
zD9O}n1$$No?p`G#f5Fv=yj(mJ)~XHN{DCWi&SO$<Bs58j*y?D6bJMDF?^l<!g3dng
z>?QIbhmM*r&hR#EK_ovN-cn$tTQTt%a`E=Jl6;V_wJFbW;`!Y#!cW$lbpRL2$n>R=
zF&pONMgvu9oeY<upx{~(toQceyo}ggL9*#rJY6P6Fg=P~I8_j&cMR@I=hyZuQf~w-
zxe~0k?ekP2eT!2yGkWgFwOq#9<?uIWs^r8TMH9fsMcX&jDJ>bO+zOcN*G$f?5_RUy
zcCgUsh;0n5_Fo*T&n+HG;8&p=UOCg1AbB+3>HFDk7;DRMq-4Ic$Qfr~Xj7N`P1*%@
z+|#cl*u%rT{2t$ZZ6aWpkm8u@kBw;8;r%|v2g8^t`^=1&EGBVvc%=N#dw9IeJIq)d
zbKb7_(-_I+8L~<_`~fVlgkgqqbF_SwOL7~nEDh~OSz70KrC+o9iwBKbcP8Atj?Z=h
zHbC7vpL+cQ|BTO{+x+zdw99e6zkB}B{^tGv4Jbfi0zbQIC+_^N^g~4yzESws%~9O9
zj9Vm(oWYn8EVL^XkXIcy<$g*d`|#oD5r-#Xl&Wg-rgzchW?B<F=aW%}WEm5<^8zV9
zwsCB2V3v1<CD^gQG8mW>*2?E=G)J7@)M{V(>qi|&Jn4OwQkje%W{)*-Zs?;wF%LUT
zR2p@5w;BY8F+~>Uj8%T;)7WBbCaxKsdfa^9Hu}8koXg_Hr)_y=GU=1%{U0OcbF8;s
zy9}4<WAc|};;jnGG{dX?W%`fGe-M12H#mHzfA&^Dh=Y_1t`Uj~8Yfzz&PJ7cb?=3p
zm%zoVI$gGvoAoaJ3{Ug)B`2Bt{$1;HKix+%&Fmel9KR8PwCY@0Ri!K`q;Zp3^xSGQ
ztPG|xW<q(JV1ZSwpm2MBj{4TXO=+<6urh8skaF5g8A!+}-SMvNTeLMPCetXK(Q>y+
z4@`|37;Cr2z@EVk%^LXp+3}|>7$!nSXi;tErlF@f#&bn(R3L_Ye{<qU`6O*kah2{t
zRgkKZH3OTWR$Ms9?Yra?tF?w4E8H6Lvg2$#K6N^5g(4mr#fG|*UCYNNH8HL$Z;K4X
zB39eeuPW1Wkbz(?m@IS2VN;tjw&G)<@z(2FD%lwfc_Twja+O@_rn;t@t|vl5aI(q1
z6?XBWW2!pCwx!MP?&n^PqRb&{EfB^J>XO?7b_;hTcy-GNIHXlHU~*g{9E<P?h?P_=
zo%sd}C3Mfbo#TE!bh2V7jS&9qK#=X%toVp)_wsO<SaHC#RN7oAOEGw9tWe|MJd`yN
z19$@JZXX@DMXl1a!=gMZV-_$~Bo5}pI7&HvJ(NPiZI92#HC$ca$%*`=YuIfe*UMC`
zAcr&)=NY;`&|$jdEv2!!Wu;l9Jr0|qa}rB_iKD_^*gizKd{VS{6#gm5g6fuIY59#V
zct9r+HFu@L;Fg(Y+-8bY8H)11+}CHmPTNGZ^1uF8-ykc~-&p~NkAHapt~%q|@>*SQ
z)~-#s517QqPNT8#e#sk4h<sthhCvjTM=*na4pF4LHQ-oQdPCaA54H)vK!g(*5~^5U
z&dti!Y3)anS*F+B`#tkAtQ|R4xl?3bR%u2M;9&o_MO$k;5vgDG`kKLkX<_Wg=N8mG
z>RP!2nkRYpxhwLo$2Aa3@amK;i*xJmG#09OU}TN$o7V++Hc<oeBK9#(!(xAZiOuuq
z)P6a0-0DYPXm)?_0^iWUI{Q6R)$)@UU=M?s5ambF9*Tx$iG?LBG)<0Y%}I>s_tXeN
z;Aq=0gXY*DO`P(QhgF;=!E`ER;;>}vjF8+rX^w#_?ZGzx)opIx9tsMIa&Xocf{SC{
z`(sMLVt4WLfAcoGP7~)I9XOxvAubYQ9`)9>q^QO*Yp0d}cnP*t!r)Xm^`%cB_O6`F
z+60D$D#nSm-A!Oq#d2~H0pLTr-{(t6RB$FkU1KXfpCh^cL?$x;3E>f{(Lu7?!#}1!
zUu12l*xc@gH4|VK*wSW#!77RIs+H<0;)j^?+lR>}_8<ZCIh(nkkxBzGBRhP;@~6jC
z6gdRsjsDUe<|@(F1nt(_BKEm%YY9d2f<iavJ|#@=laY!IUGF_W8~8Itw|6a1_We`A
zt@lu?6pNROXt!XSK^FRZOR61$nF*?BmA(`UEAcyhQI(`kg+U7nA)|*wWrqg&2v&X)
z-k9Cxk&Ug?`}atB)Ybb%gkU7gL|8b3B?haL!IGu<ojg&4#NoX-V%|(CIi)WG>BdIJ
z`nmI(Qj*90!8mczL7n6wPNn6Gwy4+UaDDA~BT5Rsl#J^6<rG}5m6_HZ6E<hg*4?U%
zt(;+zQHn~ULXURiGEI!!kLm_-p4D53@C=QR_n=;jB#;Pnpx5MRoyn_W5?s@>^CL+w
zd#2#`IJF1RBB>6BXb!WaL?t~!-yD?^g9r<lrjoZ@t``hkgoRL<*v~9aLmwl<?sTvo
zTuJ*EgN7AOl&hy2liuzZYet8JD5}Y5=-(04w~MjzyDmX5nmlAmR=g}}fKBgi=l=a?
zY(_D0MVyr(oQ6^08?f6xON2xDs^J4Q<}v~m&l1a}l@q&+@Y`<V6OnwMvO4<lRE@s!
zxsb8HLb{AeVcC9cmkniL4)^{4;)cPVI25uExQN@qG(4<(8fiX+RBoNIR*NPEcdYgE
zSndRz1}k{fT<UG9>9Z*l?w*wSdt{Qub*zk2d@V>&N$po<sDt<Kk(FLWVCoO`$pWoe
zqt}S**fCNqG2u6WO$aLC<l}R1JQ$w38fvb9OqYuUMCLuoG9WSwRxT~)W${_F#BcL<
zB9)f`aG~Q19aL`VHJHV72*fy`_ZGfxi8nlMzo4HF&xcOONhBJax_=r~LiTUYRVIwy
zm-Omyek9{VfnHzA$tC3N0IUvUMp|y<O<MfZ;o^32ae{8KN%DZp*XNh#>=F~+HPx2N
zlG%Xt@32XVN9I7C@hZXw?7Lj)yO`whR$hQF`1<Jr&ho@f=eS}NV7e<8**7W^o(j}7
z)>KYo=mXM5Vxy!-b-eeTT4Obf{E>EX<Ijv_sCQy#GhF@L5d9<Jr{q{i>uoAU8ViMf
z>X1c%j98r5oRuuRz;yd{^qAqk7EN|HuAg7O;n71WVuqWgJWJH5722`#IRL3n0ESx)
zGA|fEui3osS{ZWl`(~pV?S`@cGa6Y=pJfe?T`MeK8`Z)_TiA>DDp?$pkRFwf?`4du
zyB)N2HR(6e&`9a$OEA&arKXo=c8|u#%yC2PPRB?U#b^{PxEc-eZMh+aA|g~-=8YRB
zSFz<m>&m0nz}wgHoGvd~Mq1v1^8V3}191a06@(<BOOjyF0~zX>O{YPKH_hQTaw90_
zOUw@@bu6Do^+`4R{C7TJC{Jc9nmpvj^hO{TdyNs_`VPIVX}%hR8)I>pBq0P6+LZ9N
zE~T?e30!(^UwdbN^M$nh+!Qr4d&2h4r)fMTG9nh%VouiLff@}FAw5vw6*JNiX<xTk
zo3zOouM{3(<A4t`<x$Cd4<1Y0A$+%V+}U`?(ndS-rBX_g=T1%1<!BZC_bGVPeoFO{
z#ABpc;<N<hI)`7wo2sl41r^TipRvUa@YE_d7KOzY6o%gpy_*eHP(I=^{qL5{j;aC<
zoG@6=QCf72Z_%*Ry!BzwEHx;t3y>S#_4_u8Y-;Kn%bP5eFA0t4m>Ah5Opj49W9zxc
z5CCU?<-(b7tTqi+1ItALYOvE>;VEE2Id?ba+mm{Dbp)saNe2|Vi1u=Gm50bfst=kN
zZ8PNkGFT7!foBDkA8ozU#5^eSbY=by4ShCuTxj`zq0@QQsO94&-%FA>P;iU#-B_tG
z+ghnlLD;b1cdoI9wYvLe+Bu3#dk@vC^Al?`{8FCJyuZ*O+h@+d4FdPdy?3=$J3m_v
zSGX)^W|KH#qb8=PrPJ9ME4I`hwQ&2c=vyaSnG(imz}|Ua97xc!P#$*nk^{<>uSCZe
zXc(QJTZ-KO(U_T(E<Y5+sQLD<L-^w61jnT=$Y$sp!xvKm!IDvGW`-{$LCN~CP{d6<
zcEUFe@i}T$K$Uu8s|1|X64T+QmL~Fac-X$nfBo8hY|}}N@;MAe#j_93j6Vsat5k2z
z+ica_a1k4fQwTn)EYQkZ;JK)1Q4m*4)nRzsr^<2dHlAOh+u8FNNya=JqXL!6v2O<X
z;g!0Z&EdGP#pnX3X%UkCW*12Y!(Jc$mm!+-`NZt$^s`<r4Wh%R*UVM~MC(K5*W1Hb
zHX~jHASuEcrj#UH!|qhy&*lePzreg92qqh0td&}Wd{_a4>GhVi_5GN}y&D*&RjzA;
zm&P@L)P2?Y6lVX`L9cC|*;2q)^`GjizseT2$!Hyue2`PfOmGdDN9KG`6r&w~J`8MG
zA;tY}kRL)*IP>}A<2b+DigL!+w|I)Q=cLIG=cCw4z3!98-(leXvH!|U&w?t=!t^Dr
z8DQawT`<D=&QBxW-8G{}-fvukFJ+3`v&kA(VM$1t!00*k1JFM8H^)AWwQUgx<e38L
zWv(+{7ewL2_0@zZJ9Ok8d4!r1Ltz^OJxb&hd~f<o<m@*#{;kOdH^XTQu{~SZEt<cx
z{tq>i0xZ3~#j^TOMDjv_GDT~uH5Vu_8B@(Tv~s{2iuP%8>zo~9ie~OenY<b%Rp<B?
zXno?r(LMN#tWHKqnC0DcYELRh{Ue&TqwXZYBcUWb$?R%fOpfAawU|0OJh7}78qIWC
z-JJjm**5D_a<A_&s*0J*9XOSPJ_Y9pZ0QWS)0(i1&our>di$is?zQWYt1td4R^+1f
zGGW`2*eXS+j7p{?8{it*mEq4y7@3;4RqZhAwovpNPbRa}wU8a(3899s<3!D=OvIZy
zatB`<&<DwBGSbpBvx@0#$)v7qHK`&L_GUU%fh)B93JrI^aC65-JGl5PH~0e*0tY0g
z$%mNEBC(I-u;v9{Q&6Z&`?dH3ZJ;k;vY5jSp$S>skCi5m|7I-;M-f~y$vn#2>))mJ
z6XCUyiv7FdSC`=A>Y6<dKq4_;$YHx*K79`*=u#uu!+<<n-MGR#st(uQA!Xy<k7Fi9
zBx;*0Dyl@Wl_DjU;Or3c7Ic8TICiFU-@De{%3ABwLms}>C4JTL6IZWqeJL(_J}*;o
zUnAOBZR!yN(RwDeieKd_%k0uKb5D&poR!u>qCVkyR6fh-aVjenCm0-m*O4!7Ch}#i
zbAMH=O4)?!mgT^5>}acZv{tT>$k{5HdtsSkaZW=6mJ^_^EgUQO14E6t&B{35V&-Sg
zPajcN>sCGWz8G8Oc+e*0Ze^VlxI)<c;i++vU51G&r%9`niG5t<=R}zd-9$kb2drZ5
zD1mft7i!^2a)Wmiw+YAHUc`l8WPJuBnd*ZaGxMPKXr|A#2II`$m$u)Z!mvKM1l^`z
zO&q_xBy3NeA>4ik20D-iKJy1oIH6_(hEzGor5%`w^~w~L%yTK^`|mC7hdzCQd`1Fe
zm;&oKT^yp%Sa&dD<&6qrv}kP_e9nBO%)wyqvkG%5qd6yqKsE9_6^}pVQJk*nxBHqL
ztNga)b<a)7%n(?&f+xV+FD__4-1}f`I1Mp^SKc`1{tBN%Lu1Q-F7!k$<HWoP%~Cks
zNng5V49hXmxl$vs>sBZn!)hgDs5LGSX&_oS+g}ZCzGaZ8D}s`^Omu5mV;%(4I`J^{
zsKz6xohzSYy@*60lI0olaB>Fsx+m2UeQ9h%yO-9Ox{V6aD_?iaMM(56U1u+rG7V{7
zkw9;J*h3yNJbYz!Ku8nOH-8;nmB{@l9TwOK7B9i!C{|r%ViGB*BkG{05V&}_Jh)sc
zps!n-KO{R9pps+_-ixwEQCuxV3W8$3na+b+u5VJyp$cGEq?-Y95$}<V-6M^^9Oy<K
zDGWVo*JA78ww_jzsL-$gho;_2Je(RMxtV3joY6M<dYpv<s`!A!gOfbr2EQWg_hOLW
z1u;o9(i<&?_j>w=o`nVqhRP0@hRzI$$7QbK#dWY=RVt|6rodm3GUb2PS)=t<|9fUi
zXq}E7PnmWhCwJ`Tu59<|1+z!t8-%O=NH+_9K~To@5c;CRi%G~3honXOip#4?B@USd
z4$<+Rxb?=|^i+9+bosg;+YCl?SuS5J;^cs<srEJaxE$~OWw%+ghmB@A4L`b3{}Vnz
z;UVCIK3+lNv_|PEkgxg2?f+d&<bV51|B9LXO;mCevI@G07FgC>!Savr%ddoph~L#c
zLCW7R;Ur(PD&e0+6u(~W?_d1u0e=Zd{~tg6?}FC95-xvxLjT)?k}^ZE2hG;!iG(xP
zZCjyt!govQbgX>n@8OX>y@YxSznreeLV7QPv%Ibi3EwMwB81Lj^t@jHolO)Ab%$Sn
z><)Q%OOQ3{Khb{cY6hKmXRt<NZ^Pm`Jy-cqt4Lm1)}zC3=~sH?==o!H!F;v&AFuZt
zLa!!P<SC@~pUpHme!L~hCVN+&#=mBrsz@{=%cOU4b>kL<3WA%?^0>2+i!kg@-MFA7
z*VmiDHgw4{%ftldcf!WK{iaHcWOBC>@4zGLNH7lRGtv%ZrNVznV?3RtWFiM~nWay6
zw}~_>_YRu(_%sg=x+P%QD))70Ni$#ftO>3b`09)vXfHDm7KhUwOY+8Tm3&fP!Gb<8
z5Bt;<QeU10^r-b__7vwm@)!-q5bD#9*4nQ5rcrWV_pfF&T<9C1b6eZOy%a3#Gry!+
z98>Xery*;+V9fobr3lWIdquG%&#3}qC66+`DgXuBjVxcar+#(mB}6S?bU$oAqxaYf
z*5}U}Lz1815Sao4Vqs^ddo)+ZKdr<x`c@RdJcdFfM?AKVD`W1<8Mgu1s_A%Cjz4y?
z3SJurx+p|^st)Xi{np&hx{vr>i(Q4y+-x4va@kIHLkxySo=}bl6-Y$mZXT1&nf9j&
ztJs*nx<v&XhURHOa*V-Mr>FP91kW@S54-e{2{^X3unHsa_!>v{?WU^oHjR5RSd(Xv
zEgY+7S6gQ8rjzaky_N?X3^+~71pK(@TjR8c9T~-Om6bVgJ+4F;o^HS02;6}e+!t4Q
z>l>NQv5$LPMd{CAj=0T@&zVE6KeKuJPwqCnS)dGvYZKv%vN|*Lz0kmDFny~noN0To
zbjm^jX*LY-Q>3b%CgZSu{#W<I{TkV4*B?-4AI|n8WVqghJl=l~=eFaGx95i&(0AY$
z&D0MTZudOR=rJ3DuyJuCa?onTrwaS-xr`#>607`Oc(2F?%9oa#YL^HjIo9|z)MUB_
z$4%<r#%Hxp{tl)zN50!$765Jv?AZ6qfBCm{&k*g&%ORiIU5VzhO8W+V2p|bQLV*iR
z*C2<X<eG`xejvY??LLT_8W351i{#uf?merzx4E7MU?#x&@{}};nr_r)-_*=aR$Qp_
zgRdZLhXvZ|c~@S^RK2i~G>nzyM{XlpiiR7&KjUf8pB36ye+xZ3t&Y0`BjUlz=1PCd
zR~>S0erCISQElYG3`|7!q|ZATbj;hod!C$~Z1?_WG{X_hv#Q)=(6?k1UWa+NluVp_
z7d-Y&`+MkOZ84}jPYnb-$QcmL&pF*WNO+<3$Z*pK7{OM=biKMTVBQW_Hi_7hinGJs
zHZ}cD?WF6XC+lfM@bkV_UYU?h=V9OgR4L0d)$@YeE(w=~Nefg;4g(ZwgOQaz?5;$k
zSOuvD?F%{}RcJSR`TUuIF*VyayPrZIYH}yxKe8}(HwGhScJrk^7=G&N!=qQ6oWDcv
zhbR7DayO89As0ArPr|cxnBQ}sA)r3OFDnd{wJ9rNX6M#h_NjvHx_u-y8oAvm)e&90
zzWxLp35?jv3jJmEv;MxqGor{N%}gByHk-*#2r#uF@?a(tZO)j+2m!WJGcavF=Nk;s
z9gy9KSedfuuiO}!Qg%}GPu_)C58YC@a^=bI+zaoh8mzhD;{~FabI9-JyKPVx?<PQQ
zjgTW@e0H<}+=cmgH%LVpN8W`q260^iUoLj&PLFl-dx__eDmif*@tqeJEfSB1v;|hn
zVH5G%C8;FvmmyRYutaD)60MBHSeUNOG+qm`VRt=+qZv{$zG)>%I-rjq*7x~zzH;h$
z2EiolvR<@cBa}KULCR(+I2jawqU&OZl`nqf8`&;X?aU7$^cb-=v!#NHrOw-mRNgpq
z`6Ft?AXi1XvI7*GRUXxoFsKX5M+HW4A=_o~LvV9cV$7$%#2SQs4<No8+OMzs29BM%
zl?g&3lJ0Jrv&}hrsdkae>l-Bs3Qn7@vycsokXYumUfqwlh8JbWM{fc8Cuj&m6-WDZ
z+qAK(41Tj8aEFI)cibG_jlH}$?RIQh5A-VtKKWEwhPm$5Lhwm}s<wz)5I;0!SIs~&
zd%Nn|Ecr=EzQ?$Fk31+w3-|`b_s!1X(Rh(6NuW~Ws?je^&%LyudMMe^NIhh;ujZyJ
z_Tp7PPS3OVD=Sr+rLqvTIbEKj!z(Oku0GTkQ|s@1d$*FElC-6f+S(2efZY`&{WUw>
zU$e()Qw6VDi$&j!uF%mYx&#O#NfC_L?1Xw=mp}l!*rA;t7t3qEox=y;`i00*_1Z@s
zV7xv#HzwA<Oi5lUP`EaK(0;11c6M|H767{^RK7+Ku>|Vi?5OWNrnlSTq&~T58;wX)
ztA|s~=Tt*~UKeUA*5dFX0-?mODe(xTN}-*FH3(a(9UakZFZV&Gu+7+5DI@Vt{cwA~
zT`V706d7=m>XVjRYPYgmd*UL*;B@j_${{SSZ?$h>8!$V&Fir_kAI*m@#QDpwr$2WI
zx>O&GOu^ZFPR2&O*lyF+Ku~sRvVX24_8}Ca@v=JbU?T>d8;1oq2Z#O2p8bUwiT-iV
z9S*khuiHNL#}N-@A7vBmGSgf4uW_<a-#uNyH`JfO4g0KUSMiFj<!Ne<{w$tiAA7}C
zcXUZsJgiO(t=GJfzI?HtU?G1S55=;c^L#yxfqXrE3)7p`q1gvCImo}jxJ%ALaIK*u
zN%);TL}GwKi{PrW;Nh4`ZxANoi--(WC%E;K*I9{-pRssu)<4i6gE>^pO}B+{Y3~}@
z4NzhZT=^{OQtpxGMTQqCsS7@pABEQ&hA-)KHg4lPzc8r#W0$;Tgq^Z>5f72|Bk#>g
z4o%l^?amYj$^kgB+F|gL0qPYl^bpE|lvcMiT^W7)(k>?1jlHqzIb*v+H{o`iUs<QW
z>-OULW-W`0GpmOKUt(XoYjm^`oq^ttxhs%zaX&@90l*9J4!n5F-l6Y1ejpuEP3~jD
zzFmgAFrL|)*~gsk42jI7u6ZA$qpDyqpw=olT@Lr}5;>4mYA8Gx`cs&<R<AW%sf|+A
z7q@X}Ief{LTonHt(M537SWwWI+1D|vFc@1qhYFiiyu1RLE#R>0+al!YXTMcwC>-oo
z8|*D%H&ujzVK<&V0>#F0QfK*(vwPO~oyV-H6T#wLIg$z>?W3Zh>twmlSy@X45w|$0
zww2|z!M>LV5PwxjJzGao-D8-PsviFW8~8cyT!Gjk#DI$Jv_(4@xMAQpZotuSayC}b
zurhNCUPxXKXn2EM$_x5Y$DI0;8+%5R-o*H28~ua33CEKx08LL(qVERy`d(Wc<vlKS
zn&KUa4);N%MztJex7ywED_VQ>(m50)1Xw5j`0;jM5nlolf9`jAJ8W%MZ&Hy-HNh!$
z{Iptg&~$e`zS7s{ws#}Jj=^b(vb=D0AiB;zoRvRBlS4QY#!jmkz;^f%qX-UyNpMVX
zLs_W2;kyY$3mAhpr59)3L?L%TvXRn+jTR<nNSW2);snm-Gfnnibq=>9qmwu7&Xs*~
ztLD$@)%cWs^@XNuoX<3o!1U7j4`)8tT94t^?^k%`sqhzQJD9}M1KQ*@_px5ip#HC@
zRQGZ#>QO39GRFqQG5w(5TVQ0NN{7MK^*ac+cPPmp&<*gTpz5x%+O|Q#$>n=^qnTMa
z7^aghPyOD$3G#G-UV>SL)|Syi%|H=D;Uf_JLq^ib|L_WKcKs1QkSJFZ5pwcMhNUvm
zS;TcQgVG^*ohe(a9ESfEOSnDet<3(17r_(-I89dkKY|(ef0#Th0}vBMh=ol}PXA=E
z(wSW#AtD`VYG|n~gz2$+xIAklEz{p06GW3s+X0lGuN!7={F(S@`;fTs01vK8FP63X
zDN;~p;O%GuO4TG5FVDu+9YeCckDO6ir6-v=bod5l5JtH*JnT;}keIFv9Tfi*?qNOy
zq70BF)p)s^K^ggufUdqi)o|rwWZ>S`c}5Bjbck~a7lb8+lDdrJ!r8mqkh#HebG^(L
zAe@z3IPu7L#cZDk%QqjgK;fS<D>9g|YevaENrb*bnsydH48m_2zArQKl+^{D^vyui
zgS%#jsXF?2*kpXD%ZnX;7OGlMb~BIQn^d|?AlNU#fIt2Y=*XnUMKW{q{D^BfsjPWv
zU~VNY^g>+d<G`5t(7+Q2U5UFz{hJF@pq7CQ>6jv9?G&6eH8pkzYrUFO+FoEdej^vb
zaxt#o;7CC?T^XSpx)W-}NAIxO3ueY{O-uy@lhvDPv{C{I2<9fIZ;-$~>iw0O3H6J3
z^h<`1*osaL(-lmvqkGDwtZ&)7>?L!hw0)t=2z{0j#pe#O6>}J1#j`-QU?W^f;F<zg
z(2>VHuEZxJnPd3t#}8e#&JEAJVE9l7{G1<V{XsZ1w*qaoIX*ZHR!0jF#Z?St8hpCn
zJBuV+Oz})~1U#s6Prg(!)5{!8OJ5)+5fVIdFl4w7^8*}cpsn8kguu$m6=Fs`Mt87B
zH<XN)%36VoYxvME`$CQVW$!CECy>)Hq%*B_&1x|g;0z57U*Wme-g>38rPfX>E=yA9
zDE_1@Ol5m~`ENm^X0^z+-d>KT85$zKuq*G1L}uvl{9ZOb7qS;PhYc6`4_k^zb~V~c
zt{jJc6kJ=YI13IWL5E22P4tQitxX8W!wZLKiLJBSIB5_7IHscP*f8X7SlVE&PLB?d
z-%pUNiUr?j4<eVFj`JL7Z=o%HUBrva+GF~!4+kr2%gHJH8!jI8J7i8v9(3e7gGYmy
z<E9@K7tM(kDEajt>ERA1uDO}dtfdxZHTAS5|I=TncNk5fSNBc(XCTJdHB5fEQ(UNC
z7@*ZTg^1|?mjCz&26BYzvKHe#a+Z%_-n7_-BKj$e!EJoG+NA)snsHalAk0n8XL7je
z%`aDJ+|-rnNYabrjC)>;Zeh4e=vF!M!SBeqTwbp4;=W_}%sV*WBL3nG8?9K8?u3}w
zj`b5@Of|H9^MfyhwP=5;++TuyDg$b@O$xaSRm6l)>7<^*>|&^MuqKb>=hYUR?1Ck-
z%a6BEGSO+<wxah`b!KvT{@ch0un`QYjuav)627(%_aIBYY&<RAa1ZhU#ZIOCWZmaA
zZ+nU!)*_D0Qb14Nf<nthO^f39Zd7S2jPd)<r=d;6?8EAla?<itH!<jNbPsL~wG+DX
z-Umnc>(`f^Ms`3(SMsVMW{VaO)ibE8y7f{@&u=RVz$wXq-SetdgRKCG*JJ3`&Oz3>
zK2sakqV*|K@UvE<vrr_G23C9jO37qqDMW-u>XYP)(_;g6qWt3~jHkhd#Q2>j3Xb1v
z+maE}%6%R7#->L*vXkVoOnGMxwDy-Tvai@a*Dc}XVtP%A>AkW@XC6Y$Gpd#qDwjEC
z4Z0TuJ6(cuPFM+o70pPf!ArLGYF0v8UH5Y7EO&A22xrJBCRy$(^s5vZP|&xrE--YC
zDJkXleS1Fs+q(l*nqauPeogxt!<om=`qb3IP+{22%yft!FH<AT|71BFr(7=O0YiE?
zySe4&;I%>(Sq16Q!SNQlPu53II|m(ci+I!>kKI|U+MCObOZQ=PmU$q5b~66%x^Dws
zHFt;Lq#hFiVWf(BG_g<G>h3T)IZbvZMM5J(Ot|D@?V8ipun?Y+XesrIV-Vz3lC7Z>
zr)L3aj7ao+z)i=*n>t_LHk5InBQ*d@6g(mRS!HcDGkcFTY?y-bv+v_yg_wbtRTbTA
ze6z?Srg)XcKc<#DebS#ZI}WPDy)nK~bf8Qe8iU``?nm#7EDklo=pVMd_pNJH;nV=?
zO=^%tQ_r>w@vpo+AH_KC5~_bNc~q==|ERH3l94{#lzT%@9mm^j>{-WP*90V!ldS7r
zPf^1~+u5$G0303a#7p*@TMx_imq&R=Y~OEiy>&WdQ#Jb%XZUjkRU!diS0a+7qfC76
zDrGvP1PQoGs3HQZ@35T=TfaglpClM(SJe}Qyd*3V`40{JGxDb(O2;A<OUpq8i@<A;
zc@jl9O~kByxWKDqo(Ad%%*a4Qs1#2%f-j-_Zs#Qx?fl*@n?iH)*OVF-4^%uR1xF<&
zAfmyx9io=bo_DKDGLtHdYg(D>O*xtbmj-o4go2-wvKNZPkgUM_tgo|bd>!^q|F`VS
zO|6LGVtkz8ye7{X(bW<=GAYFjlk$)_j9_$3l@#@7vVI?YJK+F^<(qh^Ez>1fBLY!n
z4`U4k^ACE2S<VqoDZuJ>BfYldd(mR}{h*k~FqtkqoHbJ&)NjgjSCO39a;)d>8yIQU
z&L8Hsxb{azN!T)#T`Imf*}slF;XlJPwnx-+Ib3k83+Zt`#QIhVJRqc20*SgTR*D2Y
zkL;HkUq-ZPD{BbSGm67WJ*974k{T>+`=j|N2OiXMZBcG|@c`nq#W4TuSHN@bp&kSv
z*<fRm9qTz>p@VP1dNuANXvy<p6~1a}24V`NM#B5dglwr<;|4cC%@L;v8n+;Tpw+ia
z*vPR%&)bK#&Ec=(QF$S<Y6a)u2)-|hwhCiNO^)R$%K<lC3ZKTBu~k^jKsGO0vPqIJ
z3j600SBb?n8hW4)fe?IMS3HL<(W7@JA{052Og!G8w0l~w$#!5Om#X<9#{G$lerZV0
zM=?b=!POIsnYE;3`6@e$yhNp2*h9W86Z?*$3<hf2=J{2}PGa(Ao(rv@pK;KbKpNXO
ztt@Nf%zZ?!Z}$5<z~s|-p+0Zll+52q;V?Ba<Tqf#Bp-qXoIv9T(5G_#gg5Ya2;{?B
zhTwTO)PwT93j1WG4;)+T_SFR^ap$ZMc?Hy|-I;0pGc(Cw@g%5eA1;2yv2h3W`GKt2
z<47PD5^bz*vQpR*%+Zxf+Z9ezVmD1ULkJrN;6GeClC^uT4c5%mclH1$fB%)6+&H9}
zf8RO;$+)t!hF$8~a|#kheZU2D&zf*=Vaa4>MA*v8Upo@?=$=kKb218iTWv8gg!2V1
zEzdtTbM-G7Ov1K4G8xF*dkb|sOC5Ztt70}EUX!+rn8zVQ<oeknclY4RlAUFu7b)N0
z#{rEc=obqPev%9gt_e7kvf4j0*S@mF*3;Qu1*I)4gP%aJ$f{CDF>WvWb5jjIIIqo=
zcC?dp6b$ZK+Aw5i>VIc2AQ|$wnpq&-K(|B>ecn}$5$QCkj2f$sn{-R5NW!Iw*;ZF!
z<#;*uD(gbTVFb`wpb`W7oL?PQ>@DPcB&L-i-(sqC<6ps;9jDPp49E?Ni$BNSUOIvt
zMh^r2h^l_Rv-Tp8{>!$6vblkAEuBl(9qi~vHp+-$<qKLsjut=p;?3piy~a`|zn(Xh
zF*%<2Ps#+3hfZZ?Lu#oQ)kQj5TImh4azIHqaw%WqwKfMp$;?HHm?x;4>l-cI{+<gB
z8KdtDt#Wt>oH<qp%9t|O40#dR{LfcBz}y#;IQ%YTf5q1JhJ0Ty(831K$i@qn_N&KE
z;^b1a>?ItQjt0@*;z43j<fj*-+%jPr{ZJ;YM4rSzvgFzF-nX}vWW!w1K1$>!8<#x;
zl$MXio5vq#h;Klj)OEd_VjTP3J!j`#*dE#ev>blKpxd&zvsgwZ#Gmsu_Q1{h!#FHJ
z^nd>|TLFe?=3cYJb1-cakqdC0q#Q90ayf&n25fn%4%wVEw#e6&<#_6hhUT|j8s2#v
zuW%C)#cEh6Jv=JjJA>F3-;q_~^|;g*U!g0gwm>m(4Y$&LE~qwDCgSeWa2Es*PId7K
zBUNc>md?A5#<{wF{?=yzAwx2^{Q4*Nwrw4>BY)nMwso8XU0&YUUoM59x0q-PH-x$N
zknX@f#xGbfL;MstH;3FnyqWJG_;u?0-klv+Txnrn&c_*8+&P4+ipol3XSVQkRU*E4
zwF-?DHjJ3A>#(`EN>5Y2?ud`OI3sMw>D|w#!tHka5iVBs=$9cvcD7%>Bk<Z^Bimyk
zo!Ttf>7<>)^T>|XK8(riyH@GD|C(OOYhBs3X|ld=o)w^ZQlY<LvL&&|boQUIn1aZN
z)}BT%&-hQ=JsTwfzJR#QGa(f9Qn~XD<jrZz0mz!ve??-$0uGY2{=N-BBN#76hD!y*
z2?s<llwl2tcBPMT`nADuRX{qo$c4b*FK29LYHOt0_NGx~2`e9T2QQy@4GnIUrc32<
z**6A;Yy+=pm(3~lNhumy{Si$PFV<HnJQjEM4|=Zp2>=d!kIHvG3AN`Vgc*C1hYpSH
zjtrSz9dWom9*M^ZL&0Z1Uk+yKsA_}*Q<-mV)9t~hUO#1ZQZdr%EMY&bWOP<WJTzGR
zl*TZiCg%=+gxbs7d&_vYj{)w?W;{4(n=>4dniVHx`%;yze{?Dfr=*Ty{{zljVJ%Ju
zt0j;kCF2TtMz`2KxaRwkLIUSy?OY|3$K-p7BaUUB#d~;lcGo4^XznBcJ_-#+U}jV0
z;cN$7=XY5sX09GI?aSF80EvV!TL&)eRm$>vJ9%cUr@H~yg`av|^3*q?TEs*n`Q12p
z^6iLmo{dmKTbTsA&g<x8VYsJHy4>@Fake?m2PuUZx2F#DK`VnD_5;o{K@q0jcigiB
zK}j$@bgx->IA-l$##Z!TqmF%JJR_h@f6!^m#e-&iC}#YG-n{c6dG~B~?{qe{IOpK0
z!jKqG|IV6p576`1<2oh^ZeKGFYF=4+ONTd_>x9aRb60&)L39yaYc+gww*GL-QLP7?
zJYtN)+N*otZ4j{0dZE8yFs2Nl9y**ieRK`I76^^?!C@)5tX@Mu+?;CzRT{b~SdWtX
zjQp2)ocJ;_6Hw3=Angxwn9XW4`-zfR>MV4Fj=N@b?gi5h-!}RA&u~XYuJR7x;{5Jg
z)FCRhI=TBK1hH*eOpUl-?b#vE80uQSS{XK1B>%j%@7u#ZAIvpzp>nJk`3LfF(lDnj
zP9NQ6OQBuB!M9qrJq!+{`dEm5l_c{5`UO~<r!bzZ&EcWK$OPV)D_^=d7a@*NeY8nT
zF7p7H?Qz^Qw?=mp!!&|M?~bvdmx0}~r2JE`*_Rxv<LwvWoIgwxq8e~fOPL>%B?=k(
z_UokoWB(s*1>AbYe`Nh~=K*UaQv@*`cm7tZI>}X%3I={Opnm`%5yoYUkzCQxp<BD{
zlUDlFz|gSegQ?Co)R}>|1lq1Z&k6L0pkGkFzEnGYG~weTaIEIULmJig42lyS<u)kr
zsLf-ih51ZQA0z|?f88iP8{ovoUMPImC*zqZpz8cs(XGjT-?`_2YnAum0qtNrwqEB;
zj6UlT7kfQg4;Kg5J61RB<_|_TnPWk;ZG4zNNSA^2cJBu4vHD-4BErpcTbZko`j=mU
z2d`?INHNphZZAQ?6%xr*5;n6Pz@G&G#x6(vi?5V{gq`h(qCvuF5|VD4_pTKqw%jL$
zc~Mqf@hj8zs&tCq4RUebZ6~o4(%Cv1Hf^TY(tYlG5}+duBD=d)M6tI?*A7O|3oTdl
zlBxJE1rn3QuLC2hB>9<f3MQFIX@2@8s<?)k@rJo;LIO2$Zb@jzgJCV08sS6yO5E0T
zw(DibcUC)xIAupSt{Lo1KCsWpC#L0wg22hfQ-iQ@{;AO`ztZ-va)<@JWP9jRGZ;^W
z-8T5EN9|inC56xzuGeL~rh84K+TCW~Xk9d2RC8?R?D3W7pn~Nk9d^_d??<w|C&ESN
z1Jk}p@)?YKm8wFKlJ(F1y57w5RJrrM>48oq$`)vAvx|+DCs8TeOqCY44t6XnXQn1C
zfxedyYb_2b1TJv%o%QB=V#bI-Cn8f|gTEi9J|U?CQ}M9o6<)omTYP^eUz`cXilJwl
z8#vpYRnoC+;ahp<fl~uk&5Lw{fyQI#nf{N-8*^2fhbQVVYNBpm{4h{0;}kw7-aNm4
zfcD)`2Y?9F?GKax=h_>u&%Y};Q9Diqvg2K%{$=3*f(1x7WW8=sUn=1MI@j2LH%R2G
zC?eg&=vffz!G0AN)J@_vyjB_!PHnj4r=&K?dBZQT+q1flacNhfpPldKb2uSFn<Ls*
zv3OSRqAiwIA}IB8K(eCUaizpVn}1!;d4mpZ|It!EMV^J)Ut4?GM0@^3V;r61OC4kL
zE}EJ9<Dc+@4&eTlXa8&J<Y&A!7)@W>E<wV1#;O#S_hrIfy=)KHxLnyO$$cUwz<YzY
zuzkYveO6fZNHi*50!JQX?fC+syu~XSI<oGQa;nSr6JQg5GdLR?f!GaV)ZGy<SqORX
z#hUB5lo!qN+ub#pnZ3}^p$ARlKPCBu3Up*YK_E8K)5oVhNl%lS;VQ=Zsp|qImTwDI
zhP`#ETB(53w4AY=(od8}dutpDeYnCRrxuq>&IS(5gKEUjW5$UBd9X0Oq%GbJmKzrr
z_i+x5)p*cW;dP0LyVdu<tg9S=!v|!1W?JS|tc^KqE(6~=%K@<}_5NNuc#lyHHpu(y
zwb}jGR*7me?N0(Iii%wEsd8UpRPw0(8GoQ5g2vg}T?o4|=-l<L)y`G=wY$suWwHNM
z;c>9jdm|6)@mOw$*J^zM7gw`yg@o_UYNba9a&a3<1*sDLOY$Kii|3DoL>c0M)y5Ai
zRzw*fGQbCb1~;6(_0P}(?+X<bJqYLzm$;oZLHC=G*F~DoU*DxDkVpPKF!7J7Et2PO
zrP*Lz2#Svp4@Uh@%p3DKvScnxUJ*Oj>A}0Wlkn@AuHELlV-GXWf$JE&eWAYiLqmML
zCUoAl?&f3rV6PK2zED;-R5KHl^^-|w7n}IQrV}?t9p}HwWcQ~~@H>z5<1cZkKk8uT
zbBf{H+7E$k2IZZST*TCZ!)*D>V}2>}=H~Jt4hHfE--ZXfw7b*JK?S4)zO+e!Xb5av
zRJZpbmeol}bqkUnF`O)84YHFARw_(35PeLE`3uzON9;5|o@^iaRQydPpWJeS6DU6G
zrq6@ywBFh_<w>0}W7F0gKG3TnQ-2Uh6)o1rOz;5IcX1)h;zq4YL6);W;t%Td0p+6G
zFlBF1pZq}{3MEcZV-a*K#Sov5PaCf7H*m0T;Vs80D!n;GZ592N8AVH-UPE>72=5x6
z;tdaj&0yA{JhwDce{A+!02Aj4{^U04O3A98flOyp;ae+Svddo8uDg%Bc07(jhShHs
zxMOqEFSA`!TK>_50wIu^pX|%6A!$@lEqvng4E1gL@r~3_Ht*7oZ*Fu=2|mF2i0gnG
zlvd>R^~-)2pUxQs9UK;lEk7KX#3F97vx})FZF2A*ctxc36RE{?Jwf3^zbLC${9eHW
zRq67xGZW2kiS(>5VsAL9&0>*%f`W~FOz0Eg4Dtzo{O+Fwb%FcftYvKY;XtdeAgj%L
z50(6*;XsWX?&{zH4NAps#9bGt+6}8kNf*9QTNte>=wdk#y}OqNH1wEOBO?PXbvArh
z*OZTLzApyd6ok1_wV69NxqY948#8qc{xKAGY55VA^|nnXf6%m4;Qp-vrip7)QsNjZ
zPeG2GZP|-;TPJabqv|(m{4*{EM4#NAm*^L;yEbfYJ3}=($Ym|GCJ~0Guo`cT2E3Oc
zX^vXnn7o;uPPxn(AKUA%L$%hD1Q`<_D06Lo7b7g82%#J6$=5wR48<;Tm!sMgzV<52
zt-(4HKB(Y#KRgWsqQ&*QKL&fm_}mgjLPy;2_*IujuNS`DMLE9X1=Uife?^(yFR|Qi
zMV#<Pt<J5~&us}jI?`xv4x{}n^f^fO$DCCR2?-re$CNb}u{{_VK1y`fVVrZf)Tk2j
z-bXesI_F(p{Vh`5CI2UU`(hkEDOAZd99FkbD~VFB1^zgOsf`kM4fAt+q(b*@VgTdd
zzPE)7>Wuai_tsQ#kec3YFP$#z5eeC!XOH4FnPj45?|Q_34Cn5_fpw@=1*||qkxxf!
z1VE;(_o5-9cCH-{U}&&Al@@f)9<;Y?DmF1QbA%w^_Xu4dBS+Vf{+6PuqXUfB2#LMM
z8y9ebjRgOV*7Z$;fVi75<Bz@fMcg)2nt=|d7F>ZX6B{KR9Z`>kP?7vU)?NxYQbK}<
z4rl8bNN7~yg(S?s!KEZ)gVuuoXeWSZo~nvI9QlxPkw(2A-+Yj#C)d$Nq>VL{<#P5e
zjHPL0_ZvO*(zg@3g}>@8gXTDp#-@T$XxJ{=cS}&wy#qxA^F`Tw!2;<lQL?|X;{bLp
zHtYXNfn&CI^&Jx;`o3_iTa2q^$c?q<+%YS4of(SwygV06U~$ls;TKkQwnimH4#^Ze
z4AV9~BYMTO<+nvERAZ(MxT0H6TOo~3#1~ilgcf2*ue>+@XWWckNL{`1>%$|Jb~Wi(
zH^@at_j_v4b)8%%U)k&_hfm|?!T91aPgY0<ssYnyzA?S`ZB6A+#OqpvDEKu*FO?|^
zPkvsEYBTmgC(j$XfjS!Mf5Jbn9(|<!jLIh0oGN&L-8ZqZUWM9;{IV`I2SSUw#Dkm|
zUMEM@YAB++ri}UxN^|(f?Qccns8GeP+ut?{LxGe3xc%#%|MiFeSN7fd{igy6%#Af}
zqnOiQH`13QC6@ft=f9oow<Ny3Ec?69+!BR&a=)eib+1>a8x|hS=)XrTxW=Hv?(M&C
z{~LPwzX7KIKX}d&D*w>W#@!2z>srMvu*Y;`s1#3h)32xXi)WdyN+6QC_>#=g*3;*j
zkP69j+@!9A-)}eSS-o;eeL->k*WG``q7x;u1qojPgvV04iS<CVGQJ|OXlg5?Hxm4F
ze*1P|aw4drEaV>5RFc7pDr(-t8iZC2hy1cr_dd&xnVkoR!Yg#gg1@Lu70=h8b)NNJ
zFD&#eduIRx6@Nn{EKC=+6^bF!zgkivkPaCD=?C&@*B+lmqj^8udZF2xWSuOKe43~_
zyQHFzK`!(4p^V9%6nD(nV!BXbrH#fYGS93%vxWq{^TIsUn}^5GJIbW0H;^uI*{*O(
zvhdhlYQK<r{ayKhG>~+L{JLqqgfob(#ek$>h+B@HaRWUA!<vKZX>aD6kSHwMdtNIY
z2mO2z<AUt}pf^3VpPvkdoSEY@(`)uLdvqLS^eiQ_cx`m)EG()!l=t$6^(VHM<eSZ)
ze<Pb5JyYHIx7u=Lz+0V$5A{dK0Iq-`OX{?^3Ss$;OlCrYL))2VIKq~O>g=#GMoA@k
z6U7i_@15>JWfh7{AxL_W&W3Us^7b1%DvzpxxcF$6>n;mJ0nCi5mOJP)q@DcQAG<zh
zPG;yMojqf(P0y^3Jfc+6YVkmO9!4t%)tHwIB|9n^itz1MCdd1(xdf)>Dra_imOJpA
zt4o$YP^6^{m{(R)k?$X1NmG2gz_mI*xcrVXeN4;JE|08_@qMiUPM23}LPoMY9lKx4
z#E+*J(GSa1dHGe;i_!{cc;_NDEIOBV?#5I&3ptn@&cf4p$<@D&?)fZ{1bZAg`t(B?
z=6YjpF%F&6)N{C|e~x1uU7nl4>t`$QY&k8n8ZVh}yKqu@S}{$+AN2%X@cTy%p@$yM
z=l$xO*Ohy-h4r8$G$1MGgzHRTFVr7JmrmV2W%}H!?zHBId#1WM$=m<eug^pkYAohD
z2Z8lD5DYEL*mUl_?XWwxdE?8}X{F_R?<gRS)r#E5gM!l`g>@{;F*m!ofAR@`m^<|B
zBZftp?<0+dM~*tmRWCj4%xa-gcM)RH<$;XjpSQCQaIT}PlsPLx!#hlyWt_f&G0&k5
zrym-f*NzRx*kSvmXe|EY^{Um@_PK)QTUR{G?6B5uVK1wyk4G!2k#;w2oxA6@(;l1~
z^qQn{u0+|;q;|{FuHZ03Ci!_wDW&X#TJ9rDE)p{&xt0C=&G|MRX$dz!wRDViE7sG`
z>Mv5dprORqA9IJ6F8v`vBeLnVdnQA^&>!d7_J=E1p{JMIbvCa&Be60DF=&inP}Pw4
zIP4B#_SBt9;C5J8cB4Lm1>eqRPL-I_s^`uyckahqjedXRRLT`o5{{3(>{oU=SE@X`
zygIr5io=+RVB6WvEkD|);+}^-n%IHm2am1^qd5w}<nCy|ng_m+3jLU}%HPa#b}2h_
z6ot;-cRzH&Z3B$O+P=WS#_C=|Vroxl)~FjGI+738H!V-xXWHLP5<!p(cr)}}U*@bW
z83Xs-5EDQG6ir2&%dC-uT~8(_MTFqsn7(UuppBGd2wR$4v7dCE?O56+=8O0$V}e2)
zMY1^{BUNEA9G_XC6aTHgr%fNIG-y6nFPC=Om63cw6=##q1v@KLX_yPyE(-KD!!k0i
z=|y@kWMzFCjU$_qt`7m#ib}VCvZ_NWLk7E*=Y2oh!|V}Pt*I<s0D&S@vpPJ6MzV$P
zMS-vN<3cL*2#94Y!*ww&=P@~pSdlUYZN`$n&7VaBl!j0>*{;zH`NGHM+Rts3?!<MN
z{8@J}Qto(PtJD|7d`Rm+%pMFmcSI&jXNN4rY-ov!S9rSyM#`L*;z^#T`qbqWPMlcO
z1yp)>-1dQLY~T6RLKoMHdtoeB70kH8T^U#p)MmXt&~ET1!lwYBnW7n=CA{g<beono
z=BY`Ulro4eQ*oZ6U-+P`t<smlQ5z@##f|z@w8pOttwN-e9W&NL>2i_*n2-w}ahP_6
zMU<lm6g3o;y&F25g|Yxh1+OVmqF*|6-D&CjpKb#cfG#^G@|m%pwD$3z+N-avPF$Dh
zZYvMuC>HThDL-0HCe~!+06qy|juh86nzNeeTLvBoh3{`NII2{0r?jl!tHpyyVmQ(U
zv3EGbL36c+c=h)QRJ<9&?Xc1d%y5XQ3SU`SSe(2^nK1e3Jrvrk@>tH+w?(Gqe50*P
zP7ymeIzGkpq-IQ($+zmy&D&gz>tB(mRwE#ttUjCf0&3fE78klwFPoZiJHCy?RfC>-
zpaG$lA;JuFYgH&ai0d$$`;uQa1y=&Zi1p8b2wTsZZ#=Tfr2C3u7Ao}Ex>rCMMGV>x
zG>FNlXqZJ3!EO&wTmfYOOjj9(b2^|`LYnS7{a+(ewk3weOhGZP8m5XGrvWSgh^UQ$
zSl~6i&AXR#CHX1`zVibS+wxIZs7}EtYe>^UkS%v&3m_V&$Js_Lv;l+9YsVXSvvX|g
zQj*}PgJuy50gp%LSgKU3DDHI%Ynj+^tt|rRxU+V<&LAI{dBELwZEXzLwe4xd%GHb*
zZ?5vW+V^Bl$+PXK*Lo_^;o0cGdDp$lHrOwC-&@}Ic?09RQ^hOQON2J%CGZsj$BqL1
zhm%W5UoTs-p4#n!)C{?l0pN0d&hbLwC<MfPF_v8S^=Q0n12C7wDPx`$FF)6)-1&J>
zzynh_97wUu>afnqFeY?YDR<dgodVz;mH=QdfY}J}uflkV2%evc%FNk`d!<~;Jn_#$
z_qi^lDpra*L&3zBE6@G3g0nPl*r6NyD&*Wf1J};@aR%~A+U0spQS-<1r;<Wh0$OkW
E5Ap=51^@s6

diff --git a/sample-reports/security_assessment_multi_account.html b/sample-reports/security_assessment_multi_account.html
index f8bff1b..464f232 100644
--- a/sample-reports/security_assessment_multi_account.html
+++ b/sample-reports/security_assessment_multi_account.html
@@ -1,192 +1,10 @@
 <!DOCTYPE html>
-<!-- saved from url=(1821)https://multi-account-aiml-assessment-assessmentbucket-dxohodc1r7fe.s3.us-east-1.amazonaws.com/consolidated-reports/multi_account_report_20260507_154415.html?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Content-Sha256=UNSIGNED-PAYLOAD&X-Amz-Credential=AKIAIOSFODNN7EXAMPLE%2F20260507%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20260507T155858Z&X-Amz-Expires=300&X-Amz-Security-Token=IQoJb3JpZ2luX2VjEPD%2F%2F%2F%2F%2F%2F%2F%2F%2F%2FwEaCXVzLWVhc3QtMSJHMEUCIETfjHDihBQsDhDt8cHPbtZwcYBhEaIcgU%2FCgia3%2Ba06AiEA0inUV0bcO4spJSsNzzQ%2F%2BOv9ZSaKWBp6cJ5SODVFn2UqgwQIuf%2F%2F%2F%2F%2F%2F%2F%2F%2F%2FARAAGgw3NzY3MjMwNTQ5ODciDAOfD4dgOhj%2BuNjfqyrXA7V7OJfDACKe4X3XiO7nnC%2F23FZX5llWEJOuj8CV4ZTjFONWJ4H1m4hNVfXCWiE8l8tsMAvVN5qcy%2BwNw0G2ZbyQqIm4Ws5nuhgvs%2BbsRgRBDkW%2Fjl0kf%2BTFwhrEN7g3JHVVffrbt1rJK0bu1oMDxkO44qyd7raeyzxLe2CdIsEDNWrUSCH5vEjB7c59pUpwdY8PFOQALObVTKVl1IgWXtyt8n97uCs8apSIc7N7dNAce9CQdaSw%2FYkkXKbh6AOYI8pyS68V8rYdjWySgvl95mEmZM0zjxsOy3sonjvVhL4I9jPdY%2Fk33FERgwiG1Mtvzf0wRLqaDE5jm7Zg3RVuB7O4tfnX%2BK%2BYWkalloc9j7XsrycMb45K%2BtrxdKHHdfphWR5JRBBSCURTK%2BoBV8Pn7XbIGjBuEI7l9qV3SXE%2BNT28RDl3yJVI3N9I2y7JrvTdwA28gcib1MsF52g6PDm06uYMArC2VEeluQ9k%2BkosMKlCHcBPIxOJOfea1bY941t7vMfgYu4J24%2Bgqe2cKqrasB1XWqW0eLj52Drvob3Ar9uXwjnGt3KKCeQkX0tSZs4Oei3562G6tYvXaFXANnc%2F3AsbzBy890V9bZSpLqoV8D8sKii7FVo1NTDq4fLPBjqHAuvrVj1iBRDJyN4w4oX%2BOv3pU%2BOo%2BoAigbdt4BWHjqHeMr10U03cuTnAijfLJnTj38oczrkIZXgSO2fRx%2BZwpIewfrEIlyQeVsq9ugQaq%2BI0sjwPaULOJOGbYERcYNmj1qe8nTdMmvdLrMGaxC0IADal8ptrI06SYr8FTOp43LMLAUXgsx287f3pTfLN6s9eTFfZa3yfb1VyeLRi3zsrUXmY%2BO%2BGtCQsOpsE6gb1u0m5875VcpnTnlgnBBcTWd4cDuP0Na%2FH3C1cep5oun4zC%2BgtYM%2B%2FVSvHHVry7D%2Blzwj4610FfJ7R8VfFMIMeYr49luwQT5S7N2wQcSDuPfzvCjJSwG0IF%2Btw&X-Amz-Signature=2fbcec503952d370e8138d1d6b3c22be2d86a4ee0252a1cc6295822f35311a8d&X-Amz-SignedHeaders=host&response-content-disposition=inline -->
-<html lang="en"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
-    
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
     <meta name="viewport" content="width=device-width, initial-scale=1.0">
     <title>Multi-Account AI/ML Security Assessment Report</title>
-    <style>
-/* Google Fonts - DM Sans & JetBrains Mono */
-/* latin-ext */
-@font-face {
-  font-family: 'DM Sans';
-  font-style: normal;
-  font-weight: 400;
-  font-display: swap;
-  src: url(https://fonts.gstatic.com/s/dmsans/v17/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu6-K6z9mXgjU0.woff2) format('woff2');
-  unicode-range: U+0100-02BA, U+02BD-02C5, U+02C7-02CC, U+02CE-02D7, U+02DD-02FF, U+0304, U+0308, U+0329, U+1D00-1DBF, U+1E00-1E9F, U+1EF2-1EFF, U+2020, U+20A0-20AB, U+20AD-20C0, U+2113, U+2C60-2C7F, U+A720-A7FF;
-}
-/* latin */
-@font-face {
-  font-family: 'DM Sans';
-  font-style: normal;
-  font-weight: 400;
-  font-display: swap;
-  src: url(https://fonts.gstatic.com/s/dmsans/v17/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu0-K6z9mXg.woff2) format('woff2');
-  unicode-range: U+0000-00FF, U+0131, U+0152-0153, U+02BB-02BC, U+02C6, U+02DA, U+02DC, U+0304, U+0308, U+0329, U+2000-206F, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;
-}
-/* latin-ext */
-@font-face {
-  font-family: 'DM Sans';
-  font-style: normal;
-  font-weight: 500;
-  font-display: swap;
-  src: url(https://fonts.gstatic.com/s/dmsans/v17/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu6-K6z9mXgjU0.woff2) format('woff2');
-  unicode-range: U+0100-02BA, U+02BD-02C5, U+02C7-02CC, U+02CE-02D7, U+02DD-02FF, U+0304, U+0308, U+0329, U+1D00-1DBF, U+1E00-1E9F, U+1EF2-1EFF, U+2020, U+20A0-20AB, U+20AD-20C0, U+2113, U+2C60-2C7F, U+A720-A7FF;
-}
-/* latin */
-@font-face {
-  font-family: 'DM Sans';
-  font-style: normal;
-  font-weight: 500;
-  font-display: swap;
-  src: url(https://fonts.gstatic.com/s/dmsans/v17/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu0-K6z9mXg.woff2) format('woff2');
-  unicode-range: U+0000-00FF, U+0131, U+0152-0153, U+02BB-02BC, U+02C6, U+02DA, U+02DC, U+0304, U+0308, U+0329, U+2000-206F, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;
-}
-/* latin-ext */
-@font-face {
-  font-family: 'DM Sans';
-  font-style: normal;
-  font-weight: 600;
-  font-display: swap;
-  src: url(https://fonts.gstatic.com/s/dmsans/v17/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu6-K6z9mXgjU0.woff2) format('woff2');
-  unicode-range: U+0100-02BA, U+02BD-02C5, U+02C7-02CC, U+02CE-02D7, U+02DD-02FF, U+0304, U+0308, U+0329, U+1D00-1DBF, U+1E00-1E9F, U+1EF2-1EFF, U+2020, U+20A0-20AB, U+20AD-20C0, U+2113, U+2C60-2C7F, U+A720-A7FF;
-}
-/* latin */
-@font-face {
-  font-family: 'DM Sans';
-  font-style: normal;
-  font-weight: 600;
-  font-display: swap;
-  src: url(https://fonts.gstatic.com/s/dmsans/v17/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu0-K6z9mXg.woff2) format('woff2');
-  unicode-range: U+0000-00FF, U+0131, U+0152-0153, U+02BB-02BC, U+02C6, U+02DA, U+02DC, U+0304, U+0308, U+0329, U+2000-206F, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;
-}
-/* latin-ext */
-@font-face {
-  font-family: 'DM Sans';
-  font-style: normal;
-  font-weight: 700;
-  font-display: swap;
-  src: url(https://fonts.gstatic.com/s/dmsans/v17/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu6-K6z9mXgjU0.woff2) format('woff2');
-  unicode-range: U+0100-02BA, U+02BD-02C5, U+02C7-02CC, U+02CE-02D7, U+02DD-02FF, U+0304, U+0308, U+0329, U+1D00-1DBF, U+1E00-1E9F, U+1EF2-1EFF, U+2020, U+20A0-20AB, U+20AD-20C0, U+2113, U+2C60-2C7F, U+A720-A7FF;
-}
-/* latin */
-@font-face {
-  font-family: 'DM Sans';
-  font-style: normal;
-  font-weight: 700;
-  font-display: swap;
-  src: url(https://fonts.gstatic.com/s/dmsans/v17/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu0-K6z9mXg.woff2) format('woff2');
-  unicode-range: U+0000-00FF, U+0131, U+0152-0153, U+02BB-02BC, U+02C6, U+02DA, U+02DC, U+0304, U+0308, U+0329, U+2000-206F, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;
-}
-/* cyrillic-ext */
-@font-face {
-  font-family: 'JetBrains Mono';
-  font-style: normal;
-  font-weight: 400;
-  font-display: swap;
-  src: url(https://fonts.gstatic.com/s/jetbrainsmono/v24/tDbv2o-flEEny0FZhsfKu5WU4zr3E_BX0PnT8RD8yKwBNntkaToggR7BYRbKPx3cwgknk-6nFg.woff2) format('woff2');
-  unicode-range: U+0460-052F, U+1C80-1C8A, U+20B4, U+2DE0-2DFF, U+A640-A69F, U+FE2E-FE2F;
-}
-/* cyrillic */
-@font-face {
-  font-family: 'JetBrains Mono';
-  font-style: normal;
-  font-weight: 400;
-  font-display: swap;
-  src: url(https://fonts.gstatic.com/s/jetbrainsmono/v24/tDbv2o-flEEny0FZhsfKu5WU4zr3E_BX0PnT8RD8yKwBNntkaToggR7BYRbKPxTcwgknk-6nFg.woff2) format('woff2');
-  unicode-range: U+0301, U+0400-045F, U+0490-0491, U+04B0-04B1, U+2116;
-}
-/* greek */
-@font-face {
-  font-family: 'JetBrains Mono';
-  font-style: normal;
-  font-weight: 400;
-  font-display: swap;
-  src: url(https://fonts.gstatic.com/s/jetbrainsmono/v24/tDbv2o-flEEny0FZhsfKu5WU4zr3E_BX0PnT8RD8yKwBNntkaToggR7BYRbKPxPcwgknk-6nFg.woff2) format('woff2');
-  unicode-range: U+0370-0377, U+037A-037F, U+0384-038A, U+038C, U+038E-03A1, U+03A3-03FF;
-}
-/* vietnamese */
-@font-face {
-  font-family: 'JetBrains Mono';
-  font-style: normal;
-  font-weight: 400;
-  font-display: swap;
-  src: url(https://fonts.gstatic.com/s/jetbrainsmono/v24/tDbv2o-flEEny0FZhsfKu5WU4zr3E_BX0PnT8RD8yKwBNntkaToggR7BYRbKPx_cwgknk-6nFg.woff2) format('woff2');
-  unicode-range: U+0102-0103, U+0110-0111, U+0128-0129, U+0168-0169, U+01A0-01A1, U+01AF-01B0, U+0300-0301, U+0303-0304, U+0308-0309, U+0323, U+0329, U+1EA0-1EF9, U+20AB;
-}
-/* latin-ext */
-@font-face {
-  font-family: 'JetBrains Mono';
-  font-style: normal;
-  font-weight: 400;
-  font-display: swap;
-  src: url(https://fonts.gstatic.com/s/jetbrainsmono/v24/tDbv2o-flEEny0FZhsfKu5WU4zr3E_BX0PnT8RD8yKwBNntkaToggR7BYRbKPx7cwgknk-6nFg.woff2) format('woff2');
-  unicode-range: U+0100-02BA, U+02BD-02C5, U+02C7-02CC, U+02CE-02D7, U+02DD-02FF, U+0304, U+0308, U+0329, U+1D00-1DBF, U+1E00-1E9F, U+1EF2-1EFF, U+2020, U+20A0-20AB, U+20AD-20C0, U+2113, U+2C60-2C7F, U+A720-A7FF;
-}
-/* latin */
-@font-face {
-  font-family: 'JetBrains Mono';
-  font-style: normal;
-  font-weight: 400;
-  font-display: swap;
-  src: url(https://fonts.gstatic.com/s/jetbrainsmono/v24/tDbv2o-flEEny0FZhsfKu5WU4zr3E_BX0PnT8RD8yKwBNntkaToggR7BYRbKPxDcwgknk-4.woff2) format('woff2');
-  unicode-range: U+0000-00FF, U+0131, U+0152-0153, U+02BB-02BC, U+02C6, U+02DA, U+02DC, U+0304, U+0308, U+0329, U+2000-206F, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;
-}
-/* cyrillic-ext */
-@font-face {
-  font-family: 'JetBrains Mono';
-  font-style: normal;
-  font-weight: 500;
-  font-display: swap;
-  src: url(https://fonts.gstatic.com/s/jetbrainsmono/v24/tDbv2o-flEEny0FZhsfKu5WU4zr3E_BX0PnT8RD8yKwBNntkaToggR7BYRbKPx3cwgknk-6nFg.woff2) format('woff2');
-  unicode-range: U+0460-052F, U+1C80-1C8A, U+20B4, U+2DE0-2DFF, U+A640-A69F, U+FE2E-FE2F;
-}
-/* cyrillic */
-@font-face {
-  font-family: 'JetBrains Mono';
-  font-style: normal;
-  font-weight: 500;
-  font-display: swap;
-  src: url(https://fonts.gstatic.com/s/jetbrainsmono/v24/tDbv2o-flEEny0FZhsfKu5WU4zr3E_BX0PnT8RD8yKwBNntkaToggR7BYRbKPxTcwgknk-6nFg.woff2) format('woff2');
-  unicode-range: U+0301, U+0400-045F, U+0490-0491, U+04B0-04B1, U+2116;
-}
-/* greek */
-@font-face {
-  font-family: 'JetBrains Mono';
-  font-style: normal;
-  font-weight: 500;
-  font-display: swap;
-  src: url(https://fonts.gstatic.com/s/jetbrainsmono/v24/tDbv2o-flEEny0FZhsfKu5WU4zr3E_BX0PnT8RD8yKwBNntkaToggR7BYRbKPxPcwgknk-6nFg.woff2) format('woff2');
-  unicode-range: U+0370-0377, U+037A-037F, U+0384-038A, U+038C, U+038E-03A1, U+03A3-03FF;
-}
-/* vietnamese */
-@font-face {
-  font-family: 'JetBrains Mono';
-  font-style: normal;
-  font-weight: 500;
-  font-display: swap;
-  src: url(https://fonts.gstatic.com/s/jetbrainsmono/v24/tDbv2o-flEEny0FZhsfKu5WU4zr3E_BX0PnT8RD8yKwBNntkaToggR7BYRbKPx_cwgknk-6nFg.woff2) format('woff2');
-  unicode-range: U+0102-0103, U+0110-0111, U+0128-0129, U+0168-0169, U+01A0-01A1, U+01AF-01B0, U+0300-0301, U+0303-0304, U+0308-0309, U+0323, U+0329, U+1EA0-1EF9, U+20AB;
-}
-/* latin-ext */
-@font-face {
-  font-family: 'JetBrains Mono';
-  font-style: normal;
-  font-weight: 500;
-  font-display: swap;
-  src: url(https://fonts.gstatic.com/s/jetbrainsmono/v24/tDbv2o-flEEny0FZhsfKu5WU4zr3E_BX0PnT8RD8yKwBNntkaToggR7BYRbKPx7cwgknk-6nFg.woff2) format('woff2');
-  unicode-range: U+0100-02BA, U+02BD-02C5, U+02C7-02CC, U+02CE-02D7, U+02DD-02FF, U+0304, U+0308, U+0329, U+1D00-1DBF, U+1E00-1E9F, U+1EF2-1EFF, U+2020, U+20A0-20AB, U+20AD-20C0, U+2113, U+2C60-2C7F, U+A720-A7FF;
-}
-/* latin */
-@font-face {
-  font-family: 'JetBrains Mono';
-  font-style: normal;
-  font-weight: 500;
-  font-display: swap;
-  src: url(https://fonts.gstatic.com/s/jetbrainsmono/v24/tDbv2o-flEEny0FZhsfKu5WU4zr3E_BX0PnT8RD8yKwBNntkaToggR7BYRbKPxDcwgknk-4.woff2) format('woff2');
-  unicode-range: U+0000-00FF, U+0131, U+0152-0153, U+02BB-02BC, U+02C6, U+02DA, U+02DC, U+0304, U+0308, U+0329, U+2000-206F, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;
-}
-    </style>
+    <link href="https://fonts.googleapis.com/css2?family=DM+Sans:wght@400;500;600;700&family=JetBrains+Mono:wght@400;500&display=swap" rel="stylesheet">
     <style>
         :root {
             --bg: #f8fafc;
@@ -248,6 +66,11 @@
         .section-title .service-icon svg { border-radius: 8px; }
         .nav-item .count { margin-left: auto; font-size: 12px; font-weight: 600; background: var(--surface-2); padding: 2px 8px; border-radius: 10px; }
         .nav-item.active .count { background: var(--accent); color: #fff; }
+        .nav-section.industry-nav { border-top: 1px solid var(--border); padding-top: 16px; margin-top: -8px; }
+        .industry-nav .nav-item { background: var(--accent-soft); color: var(--text); box-shadow: inset 3px 0 0 var(--accent); }
+        .industry-nav .nav-item:hover { background: var(--accent-soft); color: var(--accent); }
+        .industry-nav .nav-item.active { background: var(--accent-soft); color: var(--accent); }
+        .industry-nav .nav-item .count { background: var(--accent); color: #fff; }
         .sidebar-footer { margin-top: auto; padding: 16px 20px; border-top: 1px solid var(--border); font-size: 12px; color: var(--text-3); }
         .sidebar-footer a { color: var(--accent); text-decoration: none; }
         .main { padding: 32px 40px; max-width: 1400px; }
@@ -264,6 +87,11 @@
         .metric.highlight .metric-value { color: var(--success); }
         .metric.danger .metric-value { color: var(--danger); }
         .metric.warning .metric-value { color: var(--warning); }
+        .scope-industry { margin-top: 12px; padding-top: 12px; border-top: 1px solid var(--border); }
+        .scope-industry-label { font-size: 11px; font-weight: 600; color: var(--text-3); text-transform: uppercase; letter-spacing: 0.5px; margin-bottom: 8px; }
+        .scope-chip-row { display: flex; gap: 12px; flex-wrap: wrap; }
+        .scope-chip { display: flex; align-items: center; gap: 8px; padding: 8px 12px; background: var(--surface-2); border-radius: 6px; }
+        .scope-chip.industry-chip { background: var(--accent-soft); border: 1px solid var(--accent); }
         .card { background: var(--surface); border: 2px solid var(--border); border-radius: 12px; margin-bottom: 24px; box-shadow: 0 1px 3px rgba(0,0,0,0.08); }
         .card-header { padding: 16px 20px; border-bottom: 2px solid var(--border); display: flex; justify-content: space-between; align-items: center; background: var(--surface-2); }
         .card-header h3 { font-size: 15px; font-weight: 600; display: flex; align-items: center; gap: 10px; }
@@ -280,15 +108,16 @@
         .alert-domain { font-weight: 600; font-size: 14px; white-space: nowrap; overflow: hidden; text-overflow: ellipsis; }
         .alert-category { font-size: 12px; color: var(--text-2); margin-top: 2px; }
         .table-wrap { overflow-x: auto; max-height: 900px; overflow-y: auto; }
-        table { width: 100%; border-collapse: collapse; font-size: 13px; table-layout: fixed; min-width: 900px; }
-        table th:nth-child(1) { width: 11%; }
-        table th:nth-child(2) { width: 7%; }
-        table th:nth-child(3) { width: 13%; }
-        table th:nth-child(4) { width: 20%; }
-        table th:nth-child(5) { width: 20%; }
-        table th:nth-child(6) { width: 7%; }
-        table th:nth-child(7) { width: 10%; }
-        table th:nth-child(8) { width: 10%; }
+        table { width: 100%; border-collapse: collapse; font-size: 13px; table-layout: fixed; min-width: 1000px; }
+        table th:nth-child(1) { width: 10%; }
+        table th:nth-child(2) { width: 9%; }
+        table th:nth-child(3) { width: 6%; }
+        table th:nth-child(4) { width: 12%; }
+        table th:nth-child(5) { width: 18%; }
+        table th:nth-child(6) { width: 18%; }
+        table th:nth-child(7) { width: 6%; }
+        table th:nth-child(8) { width: 9%; }
+        table th:nth-child(9) { width: 9%; }
         th { text-align: left; padding: 14px 16px; font-weight: 700; font-size: 11px; text-transform: uppercase; letter-spacing: 0.5px; color: var(--text); background: var(--surface-2); border-bottom: 3px solid var(--accent); white-space: nowrap; position: sticky; top: 0; }
         th.sortable { cursor: pointer; user-select: none; transition: background 0.15s; }
         th.sortable:hover { background: var(--border); }
@@ -331,7 +160,7 @@
         .page-footer { padding: 16px 40px; border-top: 1px solid var(--border); font-size: 10px; line-height: 1.6; color: var(--text-3); text-align: center; background: var(--surface); }
         .page-footer a { color: var(--accent); text-decoration: none; }
     </style>
-<script id="fortidlp-file-access-api" src="chrome-extension://gbojkjpincgojijodbnliimgeggnomai/upload_fileaccessapi.js"></script><script id="fortidlp-input-element-creation" src="chrome-extension://gbojkjpincgojijodbnliimgeggnomai/upload_element_creation.js"></script></head>
+</head>
 <body>
     <div class="layout">
         <aside class="sidebar">
@@ -340,51 +169,52 @@ <h1>AI/ML Security</h1>
                 <p>Multi-Account Assessment</p>
             </div>
             <button class="theme-toggle" id="themeToggle" aria-label="Toggle dark mode">
-                <svg class="moon-icon" xmlns="http://www.w3.org/2000/svg" width="16" height="16" fill="currentColor" viewBox="0 0 16 16"><path d="M6 .278a.768.768 0 0 1 .08.858 7.208 7.208 0 0 0-.878 3.46c0 4.021 3.278 7.277 7.318 7.277.527 0 1.04-.055 1.533-.16a.787.787 0 0 1 .81.316.733.733 0 0 1-.031.893A8.349 8.349 0 0 1 8.344 16C3.734 16 0 12.286 0 7.71 0 4.266 2.114 1.312 5.124.06A.752.752 0 0 1 6 .278z"></path></svg>
-                <svg class="sun-icon" xmlns="http://www.w3.org/2000/svg" width="16" height="16" fill="currentColor" viewBox="0 0 16 16"><path d="M8 11a3 3 0 1 1 0-6 3 3 0 0 1 0 6zm0 1a4 4 0 1 0 0-8 4 4 0 0 0 0 8zM8 0a.5.5 0 0 1 .5.5v2a.5.5 0 0 1-1 0v-2A.5.5 0 0 1 8 0zm0 13a.5.5 0 0 1 .5.5v2a.5.5 0 0 1-1 0v-2A.5.5 0 0 1 8 13zm8-5a.5.5 0 0 1-.5.5h-2a.5.5 0 0 1 0-1h2a.5.5 0 0 1 .5.5zM3 8a.5.5 0 0 1-.5.5h-2a.5.5 0 0 1 0-1h2A.5.5 0 0 1 3 8zm10.657-5.657a.5.5 0 0 1 0 .707l-1.414 1.415a.5.5 0 1 1-.707-.708l1.414-1.414a.5.5 0 0 1 .707 0zm-9.193 9.193a.5.5 0 0 1 0 .707L3.05 13.657a.5.5 0 0 1-.707-.707l1.414-1.414a.5.5 0 0 1 .707 0zm9.193 2.121a.5.5 0 0 1-.707 0l-1.414-1.414a.5.5 0 0 1 .707-.707l1.414 1.414a.5.5 0 0 1 0 .707zM4.464 4.465a.5.5 0 0 1-.707 0L2.343 3.05a.5.5 0 1 1 .707-.707l1.414 1.414a.5.5 0 0 1 0 .708z"></path></svg>
+                <svg class="moon-icon" xmlns="http://www.w3.org/2000/svg" width="16" height="16" fill="currentColor" viewBox="0 0 16 16"><path d="M6 .278a.768.768 0 0 1 .08.858 7.208 7.208 0 0 0-.878 3.46c0 4.021 3.278 7.277 7.318 7.277.527 0 1.04-.055 1.533-.16a.787.787 0 0 1 .81.316.733.733 0 0 1-.031.893A8.349 8.349 0 0 1 8.344 16C3.734 16 0 12.286 0 7.71 0 4.266 2.114 1.312 5.124.06A.752.752 0 0 1 6 .278z"/></svg>
+                <svg class="sun-icon" xmlns="http://www.w3.org/2000/svg" width="16" height="16" fill="currentColor" viewBox="0 0 16 16"><path d="M8 11a3 3 0 1 1 0-6 3 3 0 0 1 0 6zm0 1a4 4 0 1 0 0-8 4 4 0 0 0 0 8zM8 0a.5.5 0 0 1 .5.5v2a.5.5 0 0 1-1 0v-2A.5.5 0 0 1 8 0zm0 13a.5.5 0 0 1 .5.5v2a.5.5 0 0 1-1 0v-2A.5.5 0 0 1 8 13zm8-5a.5.5 0 0 1-.5.5h-2a.5.5 0 0 1 0-1h2a.5.5 0 0 1 .5.5zM3 8a.5.5 0 0 1-.5.5h-2a.5.5 0 0 1 0-1h2A.5.5 0 0 1 3 8zm10.657-5.657a.5.5 0 0 1 0 .707l-1.414 1.415a.5.5 0 1 1-.707-.708l1.414-1.414a.5.5 0 0 1 .707 0zm-9.193 9.193a.5.5 0 0 1 0 .707L3.05 13.657a.5.5 0 0 1-.707-.707l1.414-1.414a.5.5 0 0 1 .707 0zm9.193 2.121a.5.5 0 0 1-.707 0l-1.414-1.414a.5.5 0 0 1 .707-.707l1.414 1.414a.5.5 0 0 1 0 .707zM4.464 4.465a.5.5 0 0 1-.707 0L2.343 3.05a.5.5 0 1 1 .707-.707l1.414 1.414a.5.5 0 0 1 0 .708z"/></svg>
                 <span class="theme-label">Dark Mode</span>
             </button>
             <nav class="nav-section">
                 <h3>Navigation</h3>
                 <a href="#overview" class="nav-item active">
-                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><rect x="3" y="3" width="7" height="7"></rect><rect x="14" y="3" width="7" height="7"></rect><rect x="3" y="14" width="7" height="7"></rect><rect x="14" y="14" width="7" height="7"></rect></svg>
+                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><rect x="3" y="3" width="7" height="7"/><rect x="14" y="3" width="7" height="7"/><rect x="3" y="14" width="7" height="7"/><rect x="14" y="14" width="7" height="7"/></svg>
                     Overview
                 </a>
                 <a href="#findings" class="nav-item">
-                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M12 22s8-4 8-10V5l-8-3-8 3v7c0 6 8 10 8 10z"></path></svg>
+                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M12 22s8-4 8-10V5l-8-3-8 3v7c0 6 8 10 8 10z"/></svg>
                     Security Findings
-                    <span class="count">345</span>
+                    <span class="count">723</span>
                 </a>
                 <a href="#risk" class="nav-item">
-                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><polyline points="22 12 18 12 15 21 9 3 6 12 2 12"></polyline></svg>
+                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><polyline points="22 12 18 12 15 21 9 3 6 12 2 12"/></svg>
                     Risk Distribution
                 </a>
                 <a href="#methodology" class="nav-item">
-                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><circle cx="12" cy="12" r="10"></circle><path d="M9.09 9a3 3 0 0 1 5.83 1c0 2-3 3-3 3"></path><line x1="12" y1="17" x2="12.01" y2="17"></line></svg>
+                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><circle cx="12" cy="12" r="10"/><path d="M9.09 9a3 3 0 0 1 5.83 1c0 2-3 3-3 3"/><line x1="12" y1="17" x2="12.01" y2="17"/></svg>
                     Methodology
                 </a>
             </nav>
             <nav class="nav-section">
                 <h3>By Service</h3>
                 <a href="#bedrock" class="nav-item">
-                    <span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"></path></svg></span>
+                    <span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"/></svg></span>
                     Bedrock
-                    <span class="count">79</span>
+                    <span class="count">209</span>
                 </a>
                 <a href="#sagemaker" class="nav-item">
-                    <span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"></path></svg></span>
+                    <span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"/></svg></span>
                     SageMaker
-                    <span class="count">163</span>
+                    <span class="count">252</span>
                 </a>
                 <a href="#agentcore" class="nav-item">
-                    <span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"></path></svg></span>
-                    AgentCore
-                    <span class="count">103</span>
-                </a>
-            </nav>
-            <div class="sidebar-footer">
-                <p>Generated: May 07, 2026</p>
-                <p>Accounts: 6</p>
+                    <span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"/></svg></span>
+	                    AgentCore
+	                    <span class="count">123</span>
+	                </a>
+	            </nav>
+	            <nav class="nav-section industry-nav"><h3>By Industry</h3><a href="#finserv" class="nav-item industry-item"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#7C3AED" width="80" height="80"/><path fill="#FFF" d="M40 14 L66 26 L66 31 L14 31 L14 26 Z M20 35 h6 v23 h-6 z M37 35 h6 v23 h-6 z M54 35 h6 v23 h-6 z M14 62 h52 v5 h-52 z"/></svg></span> Financial Services<span class="count">139</span></a></nav>
+	            <div class="sidebar-footer">
+	                <p>Generated: June 20, 2026</p>
+	                <p>Accounts: 3</p>
                 <p style="margin-top: 8px;"><a href="https://github.com/aws-samples/sample-aiml-security-assessment">GitHub Repository</a></p>
             </div>
         </aside>
@@ -393,41 +223,41 @@ <h3>By Service</h3>
                 <div class="page-header">
                     <h2>Security Assessment Overview</h2>
                     <div class="page-header-meta">
-                        <span><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><rect x="3" y="4" width="18" height="18" rx="2" ry="2"></rect><line x1="16" y1="2" x2="16" y2="6"></line><line x1="8" y1="2" x2="8" y2="6"></line><line x1="3" y1="10" x2="21" y2="10"></line></svg>May 07, 2026 15:44:15 UTC</span>
-                        <span><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M20 21v-2a4 4 0 0 0-4-4H8a4 4 0 0 0-4 4v2"></path><circle cx="12" cy="7" r="4"></circle></svg>6 Accounts</span>
+                        <span><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><rect x="3" y="4" width="18" height="18" rx="2" ry="2"/><line x1="16" y1="2" x2="16" y2="6"/><line x1="8" y1="2" x2="8" y2="6"/><line x1="3" y1="10" x2="21" y2="10"/></svg>June 20, 2026 01:53:07 UTC</span>
+                        <span><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M20 21v-2a4 4 0 0 0-4-4H8a4 4 0 0 0-4 4v2"/><circle cx="12" cy="7" r="4"/></svg>3 Accounts</span>
                     </div>
                 </div>
                 <div class="metrics">
-                    <div class="metric"><div class="metric-label">Security Checks</div><div class="metric-value">51</div><div class="metric-sub">Evaluated per account</div></div>
-                    <div class="metric"><div class="metric-label">Total Findings</div><div class="metric-value">345</div><div class="metric-sub">Across 6 accounts</div></div>
-                    <div class="metric danger"><div class="metric-label">Actionable Findings</div><div class="metric-value">119</div><div class="metric-sub">High, Medium, and Low severity</div></div>
-                    <div class="metric danger"><div class="metric-label">High Severity</div><div class="metric-value">17/40</div><div class="metric-sub">42.5% passed · Immediate action required</div></div>
-                    <div class="metric warning"><div class="metric-label">Medium Severity</div><div class="metric-value">23/72</div><div class="metric-sub">31.9% passed · Should be addressed</div></div>
-                    <div class="metric highlight"><div class="metric-label">Low Severity</div><div class="metric-value">7/7</div><div class="metric-sub">100.0% passed · Best practices</div></div>
+                    <div class="metric"><div class="metric-label">Security Checks</div><div class="metric-value">117</div><div class="metric-sub">Evaluated across 3 regions</div></div>
+                    <div class="metric"><div class="metric-label">Total Findings</div><div class="metric-value">723</div><div class="metric-sub">Across 3 accounts · 3 regions</div></div>
+                    <div class="metric danger"><div class="metric-label">Actionable Findings</div><div class="metric-value">268</div><div class="metric-sub">High, Medium, and Low severity</div></div>
+                    <div class="metric danger"><div class="metric-label">High Severity</div><div class="metric-value">9/61</div><div class="metric-sub">14.8% passed · Immediate action required</div></div>
+                    <div class="metric warning"><div class="metric-label">Medium Severity</div><div class="metric-value">39/190</div><div class="metric-sub">20.5% passed · Should be addressed</div></div>
+                    <div class="metric highlight"><div class="metric-label">Low Severity</div><div class="metric-value">9/17</div><div class="metric-sub">52.9% passed · Best practices</div></div>
                 </div>
                 <div class="card"><div class="card-header"><h3>Priority Recommendations</h3></div><div class="card-body"><div class="alerts"><div class="alert-item critical">
             <div class="alert-count">1</div>
             <div class="alert-info">
-                <div class="alert-domain">Bedrock Knowledge Base Encryption Check</div>
-                <div class="alert-category">Bedrock</div>
+                <div class="alert-domain">AgentCore IAM Full Access Policy</div>
+                <div class="alert-category">AgentCore</div>
             </div>
         </div><div class="alert-item critical">
             <div class="alert-count">1</div>
             <div class="alert-info">
-                <div class="alert-domain">Bedrock Guardrail IAM Enforcement Missing</div>
-                <div class="alert-category">Bedrock</div>
+                <div class="alert-domain">AgentCore IAM Wildcard Permissions</div>
+                <div class="alert-category">AgentCore</div>
             </div>
         </div><div class="alert-item critical">
             <div class="alert-count">2</div>
             <div class="alert-info">
-                <div class="alert-domain">SageMaker Full Access Policy Used</div>
-                <div class="alert-category">SageMaker</div>
+                <div class="alert-domain">AgentCore Runtime VPC Configuration</div>
+                <div class="alert-category">AgentCore</div>
             </div>
         </div><div class="alert-item warning">
             <div class="alert-count">1</div>
             <div class="alert-info">
-                <div class="alert-domain">Amazon Bedrock private connectivity not used</div>
-                <div class="alert-category">Bedrock</div>
+                <div class="alert-domain">AgentCore Stale Access</div>
+                <div class="alert-category">AgentCore</div>
             </div>
         </div></div></div></div>
                 <div class="card">
@@ -446,1442 +276,9173 @@ <h2>Security Assessment Overview</h2>
                 </div>
             </section>
             <section id="findings" class="section">
-                <div class="section-title"><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M12 22s8-4 8-10V5l-8-3-8 3v7c0 6 8 10 8 10z"></path></svg>All Security Findings</div>
+                <div class="section-title"><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M12 22s8-4 8-10V5l-8-3-8 3v7c0 6 8 10 8 10z"/></svg>All Security Findings</div>
                 <div class="filter-bar">
                     <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="searchInput"></div>
-                    <div class="filter-group"><label>Account</label><select id="accountFilter"><option value="">All Accounts</option><option value="111111111111">111111111111</option><option value="222222222222">222222222222</option><option value="333333333333">333333333333</option><option value="444444444444">444444444444</option><option value="555555555555">555555555555</option><option value="666666666666">666666666666</option></select></div>
-                    <div class="filter-group"><label>Service</label><select id="serviceFilter"><option value="">All Services</option><option value="bedrock">Bedrock</option><option value="sagemaker">SageMaker</option><option value="agentcore">AgentCore</option></select></div>
+                    <div class="filter-group"><label>Account</label><select id="accountFilter"><option value="">All Accounts</option><option value="193047247167">193047247167</option><option value="230266523520">230266523520</option><option value="472057511786">472057511786</option></select></div>
+                    <div class="filter-group"><label for="regionFilter">Region</label><select id="regionFilter" onchange="applyFilters()"><option value="">All Regions</option><option value="ap-southeast-2">ap-southeast-2</option><option value="eu-west-1">eu-west-1</option><option value="us-east-1">us-east-1</option><option value="Global">Global</option></select></div>
+                    <div class="filter-group"><label>Assessment Area</label><select id="serviceFilter"><option value="">All Assessment Areas</option><option value="bedrock">Bedrock</option><option value="sagemaker">SageMaker</option><option value="agentcore">AgentCore</option><option value="finserv">Financial Services</option></select></div>
                     <div class="filter-group"><label>Severity</label><select id="severityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
                     <div class="filter-group"><label>Status</label><select id="statusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
-                    <button class="btn btn-reset" id="resetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"></path><path d="M3 3v5h5"></path></svg>Reset</button>
+                    <button class="btn btn-reset" id="resetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
                 </div>
-                <div class="card"><div class="table-wrap"><table id="findingsTable"><thead><tr><th class="sortable" data-sort="account">Account ID</th><th class="sortable" data-sort="checkId">Check ID</th><th class="sortable" data-sort="finding">Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th class="sortable" data-sort="severity">Severity</th><th class="sortable" data-sort="status">Status</th></tr></thead><tbody><tr data-service="bedrock" data-severity="high" data-status="passed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">No roles found with AmazonBedrockFullAccess policy</td>
+                <div class="card"><div class="table-wrap"><table id="findingsTable"><thead><tr><th class="sortable" data-sort="account">Account ID</th><th class="sortable" data-sort="region">Region</th><th class="sortable" data-sort="checkId">Check ID</th><th class="sortable" data-sort="finding">Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th class="sortable" data-sort="severity">Severity</th><th class="sortable" data-sort="status">Status</th></tr></thead><tbody><tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-02</code></td>
-            <td class="col-domain">Amazon Bedrock private connectivity not used</td>
-            <td class="finding-details">No Bedrock service VPC endpoints found in VPCs: vpc-09d33ff6cd2e6f900, vpc-0a51882084eabea86, vpc-0e8782535e520e650</td>
-            <td class="resolution-text">Create a VPC endpoint in your VPC with any of the following Bedrock service endpoints that your application may be using:
-- com.amazonaws.region.bedrock
-- com.amazonaws.region.bedrock-runtime
-- com.amazonaws.region.bedrock-agent
-- com.amazonaws.region.bedrock-agent-runtime</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">No identities found with overly permissive marketplace subscription access</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Observability Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-04</code></td>
-            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
-            <td class="finding-details">Model invocation logging is not enabled. This limits your ability to track and audit model usage.</td>
-            <td class="resolution-text">Enable model invocation logging to collect invocation logs, model input data, and model output data. Configure logging to deliver to Amazon S3, CloudWatch Logs, or both for comprehensive monitoring.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-05</code></td>
-            <td class="col-domain">Bedrock Guardrails Check</td>
-            <td class="finding-details">Amazon Bedrock Guardrails are properly configured with 1 guardrails</td>
-            <td class="resolution-text">No action required. Continue monitoring and updating guardrails as needed.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-06</code></td>
-            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
-            <td class="finding-details">CloudTrail is properly configured to log Bedrock API activity in trails: IsengardTrail-DO-NOT-DELETE</td>
-            <td class="resolution-text">No action required. Continue monitoring CloudTrail logs for Bedrock activity.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-05</code></td>
+            <td class="col-domain">AgentCore Encryption Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-07</code></td>
-            <td class="col-domain">Bedrock Prompt Management Check</td>
-            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
-            <td class="resolution-text">Implement Prompt Management to:
-1. Create and version your prompts
-2. Test different prompt variants
-3. Share prompts across your organization
-4. Maintain consistent prompt templates</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
+            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-08</code></td>
-            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
-            <td class="finding-details">No Bedrock agents found in the account</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Configuration Check</td>
+            <td class="finding-details">No Memory resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-09</code></td>
-            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Error during check: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::222222222222:assumed-role/aiml-security-31838310361-BedrockSecurityAssessment-fuyjvB591V3M/aiml-security-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:222222222222:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
-            <td class="resolution-text">Investigate error and retry assessment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-13</code></td>
+            <td class="col-domain">AgentCore Gateway Configuration Check</td>
+            <td class="finding-details">No Gateway resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-10</code></td>
-            <td class="col-domain">Bedrock Guardrail IAM Enforcement Missing</td>
-            <td class="finding-details">The following roles can invoke Bedrock models without enforced guardrails: agentic-rag-stack-hosted-KbRoleStack-2MNNE24-KbRole-PXGd70qwQlaT, AmazonBedrockExecutionRoleForKnowledgeBase_9d22x, AmazonBedrockExecutionRoleForKnowledgeBase_b6im8, AmazonBedrockExecutionRoleForKnowledgeBase_ftbfo, AmazonBedrockExecutionRoleForKnowledgeBase_fx5tm, AmazonBedrockExecutionRoleForKnowledgeBase_i35i4, AmazonBedrockExecutionRoleForKnowledgeBase_ij8by, AmazonBedrockExecutionRoleForKnowledgeBase_jl7l5, AmazonBedrockExecutionRoleForKnowledgeBase_oqwbk, AmazonSageMaker-ExecutionRole-20250904T123250...</td>
-            <td class="resolution-text">Add IAM policy conditions to enforce guardrail usage:
-1. Use 'bedrock:GuardrailIdentifier' condition key
-2. Specify required guardrail ARN or ID
-3. Example: "Condition": {"StringEquals": {"bedrock:GuardrailIdentifier": "arn:aws:bedrock:region:account:guardrail/guardrail-id"}}</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-08</code></td>
+            <td class="col-domain">AgentCore VPC Endpoints Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-11</code></td>
-            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
-            <td class="finding-details">No custom/fine-tuned models found in the account</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-10</code></td>
+            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
+            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-12</code></td>
-            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
-            <td class="finding-details">Model invocation logging to S3 is not configured</td>
-            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-11</code></td>
+            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
+            <td class="finding-details">No Policy Engines found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-13</code></td>
-            <td class="col-domain">Bedrock Flows Guardrails Check</td>
-            <td class="finding-details">No Bedrock Flows found in the account</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-12</code></td>
+            <td class="col-domain">AgentCore Gateway Encryption Check</td>
+            <td class="finding-details">No Gateways found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
             <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker Full Access Policy Used</td>
-            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20250904T123250' has AmazonSageMakerFullAccess policy attached</td>
-            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker Full Access Policy Used</td>
-            <td class="finding-details">Role 'AmazonSageMakerServiceCatalogProductsExecutionRole' has AmazonSageMakerFullAccess policy attached</td>
-            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
             <td class="finding-details">No SageMaker resources found to check for data protection</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
             <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
             <td class="finding-details">No model package groups found</td>
             <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
             <td class="finding-details">No feature groups found</td>
             <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
             <td class="finding-details">No ML pipelines found</td>
             <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
             <td class="finding-details">No SageMaker Clarify jobs found</td>
             <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
             <td class="finding-details">No Model Monitor schedules found</td>
             <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
             <td class="finding-details">Model Registry is not being utilized</td>
             <td class="resolution-text">Implement proper model versioning and approval workflows</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
             <td class="finding-details">No notebook instances found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
             <td class="finding-details">No notebook instances found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
             <td class="finding-details">No models found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
             <td class="finding-details">No InService endpoints found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
             <td class="finding-details">No monitoring schedules found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
             <td class="finding-details">No models found or all use default Platform access</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
             <td class="finding-details">No feature groups with offline stores found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
             <td class="finding-details">No data quality job definitions found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
             <td class="finding-details">No processing jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
             <td class="finding-details">No transform jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
             <td class="finding-details">No hyperparameter tuning jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
             <td class="finding-details">No compilation jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
             <td class="finding-details">No AutoML jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
             <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
             <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
             <td class="finding-details">No InService endpoints found to monitor.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
             <td class="finding-details">No InService endpoints found.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
             <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
             <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_workflow_agent' (p2p_dev_workflow_agent-qyDVmFHwq1) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-02</code></td>
+            <td class="col-domain">AgentCore IAM Full Access Policy</td>
+            <td class="finding-details">The following roles have BedrockAgentCoreFullAccess policy: AmazonSageMaker-ExecutionRole-20250525T153161</td>
+            <td class="resolution-text">Replace with least-privilege policies scoped to specific AgentCore resources and actions</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_sourcing_agent' (p2p_dev_sourcing_agent-20pbPRFySM) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-02</code></td>
+            <td class="col-domain">AgentCore IAM Wildcard Permissions</td>
+            <td class="finding-details">The following roles have wildcard AgentCore permissions on all resources: agentcore-wildrydes_gateway_role_ab3991f6-role</td>
+            <td class="resolution-text">Scope permissions to specific AgentCore resources using resource ARNs</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-03</code></td>
+            <td class="col-domain">AgentCore Stale Access</td>
+            <td class="finding-details">The following principals have not accessed AgentCore in 60+ days: role 'AmazonSageMaker-ExecutionRole-20250525T153161' (179 days), role 'AWSServiceRoleForBedrockAgentCoreRuntimeIdentity' (179 days), role 'CustomerSupportAssistantBedrockAgentCoreRole-us-east-1' (179 days), role 'resco-aiml-security-19304-AgentCoreSecurityAssessme-w773pPsFWNsn' (62 days)</td>
+            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-03</code></td>
+            <td class="col-domain">AgentCore Unused Permissions</td>
+            <td class="finding-details">The following principals have AgentCore permissions but have never accessed the service: role 'agentcore-wildrydes_gateway_role_ab3991f6-role', role 'AIMLSecurityMemberRole', role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-a6ddf3fc76', role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-ed660add8b', role 'aws-api-mcp-server-execution-role', role 'CustomerSupportStackInfra-RuntimeAgentCoreRole-N188nLB5RtLO', role 'IDP-AnalyticsProcessorFunctionRole-H3gwkJtNqrqW', role 'ReSCOAIMLMemberRole'</td>
+            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-09</code></td>
+            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
+            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
+            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_requisition_agent' (p2p_dev_requisition_agent-bkd9UOEhEP) is not configured with VPC. This exposes the runtime to public internet.</td>
+            <td class="finding-details">Runtime 'origami_expeditions' (origami_expeditions-TR4jDoHXe8) is not configured with VPC. This exposes the runtime to public internet.</td>
             <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_receiving_agent' (p2p_dev_receiving_agent-cMNmY6Bk5o) is not configured with VPC. This exposes the runtime to public internet.</td>
+            <td class="finding-details">Runtime 'neoCyan_Agent' (neoCyan_Agent-yAFXSWFaA3) is not configured with VPC. This exposes the runtime to public internet.</td>
             <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_po_management_agent' (p2p_dev_po_management_agent-GPXIlDCCZG) is not configured with VPC. This exposes the runtime to public internet.</td>
+            <td class="finding-details">Runtime 'customer_support_agent' (customer_support_agent-ZP4e8z55dP) is not configured with VPC. This exposes the runtime to public internet.</td>
             <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_payment_agent' (p2p_dev_payment_agent-lr2fGW7wE0) is not configured with VPC. This exposes the runtime to public internet.</td>
+            <td class="finding-details">Runtime 'cdk_agent_core' (cdk_agent_core-7FqFlD86LW) is not configured with VPC. This exposes the runtime to public internet.</td>
             <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_invoice_matching_agent' (p2p_dev_invoice_matching_agent-Lt1HkbCPzm) is not configured with VPC. This exposes the runtime to public internet.</td>
+            <td class="finding-details">Runtime 'awsapimcpserver' (awsapimcpserver-mJrqgt37GO) is not configured with VPC. This exposes the runtime to public internet.</td>
             <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-02</code></td>
-            <td class="col-domain">AgentCore IAM Full Access Check</td>
-            <td class="finding-details">No roles with overly permissive AgentCore access found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-03</code></td>
-            <td class="col-domain">AgentCore Unused Permissions</td>
-            <td class="finding-details">The following principals have AgentCore permissions but have never accessed the service: role 'AIMLSecurityMemberRole', role 'p2p-dev-agentcore-execution-role'</td>
-            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'p2p_dev_workflow_agent' (p2p_dev_workflow_agent-qyDVmFHwq1) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'p2p_dev_workflow_agent' (p2p_dev_workflow_agent-qyDVmFHwq1) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'p2p_dev_sourcing_agent' (p2p_dev_sourcing_agent-20pbPRFySM) does not have CloudWatch Logs configured</td>
+            <td class="finding-details">Runtime 'origami_expeditions' (origami_expeditions-TR4jDoHXe8) does not have CloudWatch Logs configured</td>
             <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'p2p_dev_sourcing_agent' (p2p_dev_sourcing_agent-20pbPRFySM) does not have X-Ray tracing enabled</td>
+            <td class="finding-details">Runtime 'origami_expeditions' (origami_expeditions-TR4jDoHXe8) does not have X-Ray tracing enabled</td>
             <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'p2p_dev_requisition_agent' (p2p_dev_requisition_agent-bkd9UOEhEP) does not have CloudWatch Logs configured</td>
+            <td class="finding-details">Runtime 'neoCyan_Agent' (neoCyan_Agent-yAFXSWFaA3) does not have CloudWatch Logs configured</td>
             <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'p2p_dev_requisition_agent' (p2p_dev_requisition_agent-bkd9UOEhEP) does not have X-Ray tracing enabled</td>
+            <td class="finding-details">Runtime 'neoCyan_Agent' (neoCyan_Agent-yAFXSWFaA3) does not have X-Ray tracing enabled</td>
             <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'p2p_dev_receiving_agent' (p2p_dev_receiving_agent-cMNmY6Bk5o) does not have CloudWatch Logs configured</td>
+            <td class="finding-details">Runtime 'customer_support_agent' (customer_support_agent-ZP4e8z55dP) does not have CloudWatch Logs configured</td>
             <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'p2p_dev_receiving_agent' (p2p_dev_receiving_agent-cMNmY6Bk5o) does not have X-Ray tracing enabled</td>
+            <td class="finding-details">Runtime 'customer_support_agent' (customer_support_agent-ZP4e8z55dP) does not have X-Ray tracing enabled</td>
             <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'p2p_dev_po_management_agent' (p2p_dev_po_management_agent-GPXIlDCCZG) does not have CloudWatch Logs configured</td>
+            <td class="finding-details">Runtime 'cdk_agent_core' (cdk_agent_core-7FqFlD86LW) does not have CloudWatch Logs configured</td>
             <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'p2p_dev_po_management_agent' (p2p_dev_po_management_agent-GPXIlDCCZG) does not have X-Ray tracing enabled</td>
+            <td class="finding-details">Runtime 'cdk_agent_core' (cdk_agent_core-7FqFlD86LW) does not have X-Ray tracing enabled</td>
             <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'p2p_dev_payment_agent' (p2p_dev_payment_agent-lr2fGW7wE0) does not have CloudWatch Logs configured</td>
+            <td class="finding-details">Runtime 'awsapimcpserver' (awsapimcpserver-mJrqgt37GO) does not have CloudWatch Logs configured</td>
             <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'p2p_dev_payment_agent' (p2p_dev_payment_agent-lr2fGW7wE0) does not have X-Ray tracing enabled</td>
+            <td class="finding-details">Runtime 'awsapimcpserver' (awsapimcpserver-mJrqgt37GO) does not have X-Ray tracing enabled</td>
             <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'p2p_dev_invoice_matching_agent' (p2p_dev_invoice_matching_agent-Lt1HkbCPzm) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'p2p_dev_invoice_matching_agent' (p2p_dev_invoice_matching_agent-Lt1HkbCPzm) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
+<tr data-service="agentcore" data-severity="low" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-05</code></td>
+            <td class="col-domain">AgentCore ECR Repository AWS-Managed Keys</td>
+            <td class="finding-details">ECR repository 'bedrock-agentcore-customer_support_agent' uses AWS-managed keys instead of customer-managed KMS keys</td>
+            <td class="resolution-text">Consider using customer-managed KMS keys for better control and audit capabilities</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="low" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-05</code></td>
-            <td class="col-domain">AgentCore Encryption Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+            <td class="col-domain">AgentCore ECR Repository AWS-Managed Keys</td>
+            <td class="finding-details">ECR repository 'bedrock-agentcore-origami_expeditions' uses AWS-managed keys instead of customer-managed KMS keys</td>
+            <td class="resolution-text">Consider using customer-managed KMS keys for better control and audit capabilities</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_workflow_agent' (p2p_dev_workflow_agent-qyDVmFHwq1) does not have storage configuration for browser tools</td>
+            <td class="finding-details">Runtime 'origami_expeditions' (origami_expeditions-TR4jDoHXe8) does not have storage configuration for browser tools</td>
             <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_sourcing_agent' (p2p_dev_sourcing_agent-20pbPRFySM) does not have storage configuration for browser tools</td>
+            <td class="finding-details">Runtime 'neoCyan_Agent' (neoCyan_Agent-yAFXSWFaA3) does not have storage configuration for browser tools</td>
             <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_requisition_agent' (p2p_dev_requisition_agent-bkd9UOEhEP) does not have storage configuration for browser tools</td>
+            <td class="finding-details">Runtime 'customer_support_agent' (customer_support_agent-ZP4e8z55dP) does not have storage configuration for browser tools</td>
             <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_receiving_agent' (p2p_dev_receiving_agent-cMNmY6Bk5o) does not have storage configuration for browser tools</td>
+            <td class="finding-details">Runtime 'cdk_agent_core' (cdk_agent_core-7FqFlD86LW) does not have storage configuration for browser tools</td>
             <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_po_management_agent' (p2p_dev_po_management_agent-GPXIlDCCZG) does not have storage configuration for browser tools</td>
+            <td class="finding-details">Runtime 'awsapimcpserver' (awsapimcpserver-mJrqgt37GO) does not have storage configuration for browser tools</td>
             <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_payment_agent' (p2p_dev_payment_agent-lr2fGW7wE0) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Encryption</td>
+            <td class="finding-details">Memory 'CustomerSupportMemory-x69jBq5GLp' (CustomerSupportMemory-x69jBq5GLp) does not have customer-managed encryption configured</td>
+            <td class="resolution-text">Enable encryption with customer-managed KMS keys</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_invoice_matching_agent' (p2p_dev_invoice_matching_agent-Lt1HkbCPzm) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Encryption</td>
+            <td class="finding-details">Memory 'cdk_agent_core_mem-uxfIagADuF' (cdk_agent_core_mem-uxfIagADuF) does not have customer-managed encryption configured</td>
+            <td class="resolution-text">Enable encryption with customer-managed KMS keys</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-07</code></td>
-            <td class="col-domain">AgentCore Memory Configuration Check</td>
-            <td class="finding-details">No Memory resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+            <td class="col-domain">AgentCore Memory Encryption</td>
+            <td class="finding-details">Memory 'wildrydes_memory_ab3991f6-9FjiHOHjT2' (wildrydes_memory_ab3991f6-9FjiHOHjT2) does not have customer-managed encryption configured</td>
+            <td class="resolution-text">Enable encryption with customer-managed KMS keys</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
             <td class="finding-details">No Gateway resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Missing</td>
-            <td class="finding-details">No AgentCore VPC endpoints found in 3 VPCs. AgentCore API traffic traverses public internet, exposing it to interception.</td>
+            <td class="finding-details">No AgentCore VPC endpoints found in 4 VPCs. AgentCore API traffic traverses public internet, exposing it to interception.</td>
             <td class="resolution-text">Create VPC interface endpoints for AgentCore services:
 1. com.amazonaws.region.bedrock-agentcore
 2. com.amazonaws.region.bedrock-agentcore-control
 3. com.amazonaws.region.bedrock-agentcore-runtime
 This enables private connectivity via AWS PrivateLink</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-09</code></td>
-            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
-            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
-            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
             <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
             <td class="finding-details">No Policy Engines found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
             <td class="finding-details">No Gateways found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
             <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>AC-02</code></td>
-            <td class="col-domain">AgentCore IAM Full Access Check</td>
-            <td class="finding-details">No roles with overly permissive AgentCore access found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>AC-03</code></td>
-            <td class="col-domain">AgentCore Unused Permissions</td>
-            <td class="finding-details">The following principals have AgentCore permissions but have never accessed the service: role 'AIMLSecurityMemberRole'</td>
-            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
             <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
             <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
             <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
             <td class="finding-details">No Memory resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
             <td class="finding-details">No Gateway resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
-            <td class="finding-details">No VPCs found in the account</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>AC-09</code></td>
-            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
-            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
-            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
             <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
             <td class="finding-details">No Policy Engines found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
             <td class="finding-details">No Gateways found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
             <td><code>BR-01</code></td>
             <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">No roles found with AmazonBedrockFullAccess policy</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="finding-details">Role 'IDPSageMakerCfnStack-SageMakerExecutionRole-aqrHz6dVkoHC' has AmazonBedrockFullAccess policy attached</td>
+            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-all
+https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-02</code></td>
-            <td class="col-domain">Amazon Bedrock private connectivity not used</td>
-            <td class="finding-details">No VPCs found in the account</td>
-            <td class="resolution-text">Create a VPC endpoint in your VPC with any of the following Bedrock service endpoints that your application may be using:
-- com.amazonaws.region.bedrock
-- com.amazonaws.region.bedrock-runtime
-- com.amazonaws.region.bedrock-agent
-- com.amazonaws.region.bedrock-agent-runtime</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-01</code></td>
+            <td class="col-domain">AmazonBedrockFullAccess role check</td>
+            <td class="finding-details">Role 'LLMEvaluationPromptfoo-SageMakerExecutionRole-M69xCHJ9c3LU' has AmazonBedrockFullAccess policy attached</td>
+            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-all
+https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-01</code></td>
+            <td class="col-domain">AmazonBedrockFullAccess role check</td>
+            <td class="finding-details">Role 'myAskMeAnything-role-kmsizqwf' has AmazonBedrockFullAccess policy attached</td>
+            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-all
+https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">No identities found with overly permissive marketplace subscription access</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-a6ddf3fc76' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-cdk_agent_core'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-ed660add8b' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-neoCyan_Agent'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_knnc9' has overly permissive marketplace subscription access through policy 'AmazonBedrockFoundationModelPolicyForKnowledgeBase_knnc9'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_qxqw2' has overly permissive marketplace subscription access through policy 'AmazonBedrockFoundationModelPolicyForKnowledgeBase_qxqw2'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20250525T153161' has overly permissive marketplace subscription access through policy 'AmazonBedrockLimitedAccess'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">Role 'IDPSageMakerCfnStack-SageMakerExecutionRole-aqrHz6dVkoHC' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">Role 'LLMEvaluationPromptfoo-SageMakerExecutionRole-M69xCHJ9c3LU' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">Role 'myAskMeAnything-role-kmsizqwf' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">User 'BedrockAPIKey-20pp' has overly permissive marketplace subscription access through policy 'AmazonBedrockLimitedAccess'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">User 'BedrockAPIKey-yhc3' has overly permissive marketplace subscription access through policy 'AmazonBedrockLimitedAccess'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">User 'BedrockClientUser' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role '193047247167-us-east-1-kb-bedrock-service-role' last accessed Bedrock on 2025-12-22</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role '193047247167-us-east-1-kb-setup-function-role' last accessed Bedrock on 2025-12-22</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'agentcore-wildrydes_gateway_role_ab3991f6-role' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AgentCoreEvalsSDK-us-east-1-d04ba7b68b' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AIMLSecurityMemberRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-a6ddf3fc76' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-ed660add8b' last accessed Bedrock on 2025-12-21</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForAgents_S0T9VNPP9D' last accessed Bedrock on 2024-06-25</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForAgents_WNCOPE29NZ' last accessed Bedrock on 2025-04-27</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_072pr' last accessed Bedrock on 2024-06-25</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_byjin' last accessed Bedrock on 2024-11-17</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_h9718' last accessed Bedrock on 2024-11-17</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_knnc9' last accessed Bedrock on 2026-01-01</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_qxqw2' last accessed Bedrock on 2025-12-28</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_semicon' last accessed Bedrock on 2024-09-01</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_xtwwd' last accessed Bedrock on 2025-10-13</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_y9m7f' last accessed Bedrock on 2025-04-27</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonQInvestigationRole-DefaultInvestigationGroup-8vxyjh' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20231014T200029' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20250525T153161' last accessed Bedrock on 2025-12-22</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'aws-api-mcp-server-execution-role' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AwsSecurityAudit' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AWSServiceRoleForAuditManager' last accessed Bedrock on 2024-11-25</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AWSServiceRoleForSupport' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AWSVAPTAudit' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'BedrockCognitoFederatedRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-193047247167-us-east-1' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-193047247167-us-west-2' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'cfn-contextualChatBot-usi-LambdaExecutionRoleForKno-aHg3J0xel6VU' last accessed Bedrock on 2024-03-25</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CloudSecAuditRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CloudSeerTrustedServiceRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CustomerSupportAssistantBedrockAgentCoreRole-us-east-1' last accessed Bedrock on 2025-12-22</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CustomerSupportStackInfra-CustomerSupportLambdaRole-ujGGiNU6KEnI' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CustomerSupportStackInfra-RuntimeAgentCoreRole-N188nLB5RtLO' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'e2ebedrockrag-KbRoleStack-2YO19O2NS6FP-KbRole-OgMxcvrnZrHZ' last accessed Bedrock on 2025-11-18</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'fsi-genai-workshop-bedrock-kb-role' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'fsi-genai-workshop-lambda-execution-role' last accessed Bedrock on 2025-12-28</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'fsi-genai-workshop-websocket-lambda-role' last accessed Bedrock on 2025-12-28</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IDP-AnalyticsProcessorFunctionRole-H3gwkJtNqrqW' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IDP-BDASAMPLEPROJECT-SGJRDJI15S-LambdaExecutionRole-MCRJbTEDuyKt' last accessed Bedrock on 2025-08-24</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IDP-ChatWithDocumentResolverFunctionRole-ATyH7GeR2ad1' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IDP-DOCUMENTBEDROCKKB-CY8-StartIngestionJobFunction-NjNLRuUn8qtp' last accessed Bedrock on 2025-08-24</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IDP-EvaluationFunctionRole-LQdnEMAdwWPe' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IDP-PATTERN1STACK-TNHNKPK-ProcessResultsFunctionRol-8z8mNwa6RahP' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IDP-PATTERN1STACK-TNHNKPK-SummarizationFunctionRole-MY6sxSMvFNr4' last accessed Bedrock on 2025-10-07</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IDP-PATTERN1STACK-TNHNKPKJY4Q-InvokeBDAFunctionRole-pLHufEKQ0Nu4' last accessed Bedrock on 2025-10-07</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IDP-QueryKnowledgeBaseResolverFunctionRole-p9Mcpfk0BA6z' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IDPSageMakerCfnStack-SageMakerExecutionRole-aqrHz6dVkoHC' last accessed Bedrock on 2024-07-30</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IibsAdminAccess-DO-NOT-DELETE' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'InternalAuditInternal' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'LLMEvaluationPromptfoo-Aurora-Bedrock-Role' last accessed Bedrock on 2025-12-30</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'LLMEvaluationPromptfoo-LambdaExecutionRole-umo63kVrhIoy' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'LLMEvaluationPromptfoo-SageMakerExecutionRole-M69xCHJ9c3LU' last accessed Bedrock on 2025-12-30</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'Meeting-Note-Bot-Role' last accessed Bedrock on 2025-10-22</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'myAskMeAnything-role-kmsizqwf' last accessed Bedrock on 2024-01-04</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'ProwlerMemberRole' last accessed Bedrock on 2026-03-10</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'resco-aiml-security-19304-BedrockSecurityAssessment-kgYUbi1MIbbb' last accessed Bedrock on 2026-04-18</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'ReSCOAIMLMemberRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'SAT-PrereqTest-CodeBuildRole-SATv2Stack-PreReqs' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'threat-designer-role' last accessed Bedrock on 2025-07-02</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">User 'BedrockAPIKey-yhc3' last accessed Bedrock on 2026-04-19</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">User 'BedrockClientUser' last accessed Bedrock on 2025-04-06</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-06</code></td>
+            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-07</code></td>
+            <td class="col-domain">Bedrock Prompt Management Check</td>
+            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
+            <td class="resolution-text">Implement Prompt Management to:
+1. Create and version your prompts
+2. Test different prompt variants
+3. Share prompts across your organization
+4. Maintain consistent prompt templates</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-08</code></td>
+            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
+            <td class="finding-details">No Bedrock agents found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-09</code></td>
+            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::193047247167:assumed-role/aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX/aiml-security-aiml-security-193047247167-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:193047247167:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-10</code></td>
+            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
+            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
+            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-11</code></td>
+            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
+            <td class="finding-details">No custom/fine-tuned models found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-12</code></td>
+            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
+            <td class="finding-details">Model invocation logging to S3 is not configured</td>
+            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-13</code></td>
+            <td class="col-domain">Bedrock Flows Guardrails Check</td>
+            <td class="finding-details">No Bedrock Flows found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker Full Access Policy Used</td>
+            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20231014T200029' has AmazonSageMakerFullAccess policy attached</td>
+            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker Full Access Policy Used</td>
+            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20250525T153161' has AmazonSageMakerFullAccess policy attached</td>
+            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker Full Access Policy Used</td>
+            <td class="finding-details">Role 'AmazonSageMakerServiceCatalogProductsExecutionRole' has AmazonSageMakerFullAccess policy attached</td>
+            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker Full Access Policy Used</td>
+            <td class="finding-details">Role 'EMR_EC2_DefaultRole' has AmazonSageMakerFullAccess policy attached</td>
+            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker Full Access Policy Used</td>
+            <td class="finding-details">Role 'IDPSageMakerCfnStack-SageMakerExecutionRole-aqrHz6dVkoHC' has AmazonSageMakerFullAccess policy attached</td>
+            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker Full Access Policy Used</td>
+            <td class="finding-details">Role 'LLMEvaluationPromptfoo-SageMakerExecutionRole-M69xCHJ9c3LU' has AmazonSageMakerFullAccess policy attached</td>
+            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker Full Access Policy Used</td>
+            <td class="finding-details">Role 'SageMaker-EMR-ExecutionRole' has AmazonSageMakerFullAccess policy attached</td>
+            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-01</code></td>
+            <td class="col-domain">Non-VPC Only Network Access</td>
+            <td class="finding-details">SageMaker domain 'd-cz8qi7j81si3' (QuickSetupDomain-20250525T153160) is not configured for VPC-only access</td>
+            <td class="resolution-text">Configure the SageMaker domain to use VPC-only network access type</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SSO Not Properly Configured</td>
+            <td class="finding-details">SageMaker domain 'd-cz8qi7j81si3' (QuickSetupDomain-20250525T153160) is using authentication mode: IAM</td>
+            <td class="resolution-text">Enable and properly configure AWS IAM Identity Center (successor to AWS SSO) for centralized access management. Ensure Identity Store ID is configured.</td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-03</code></td>
+            <td class="col-domain">Missing Encryption Configuration</td>
+            <td class="finding-details">Domain 'QuickSetupDomain-20250525T153160' - No KMS key configured</td>
+            <td class="resolution-text">Configure encryption using AWS KMS customer managed keys for enhanced security</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-04</code></td>
+            <td class="col-domain">GuardDuty Enabled</td>
+            <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Model Registry Issue</td>
+            <td class="finding-details">No model package groups found</td>
+            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Feature Store Issue</td>
+            <td class="finding-details">No feature groups found</td>
+            <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Pipelines Issue</td>
+            <td class="finding-details">No ML pipelines found</td>
+            <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-06</code></td>
+            <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
+            <td class="finding-details">No SageMaker Clarify jobs found</td>
+            <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-07</code></td>
+            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
+            <td class="finding-details">No Model Monitor schedules found</td>
+            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-08</code></td>
+            <td class="col-domain">Model Registry Registry Not Used</td>
+            <td class="finding-details">Model Registry is not being utilized</td>
+            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-09</code></td>
+            <td class="col-domain">SageMaker Notebook Root Access Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-10</code></td>
+            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-11</code></td>
+            <td class="col-domain">SageMaker Model Network Isolation Check</td>
+            <td class="finding-details">No models found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-12</code></td>
+            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
+            <td class="finding-details">No InService endpoints found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-13</code></td>
+            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
+            <td class="finding-details">No monitoring schedules found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-14</code></td>
+            <td class="col-domain">SageMaker Model Repository Access Check</td>
+            <td class="finding-details">No models found or all use default Platform access</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-15</code></td>
+            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
+            <td class="finding-details">No feature groups with offline stores found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-16</code></td>
+            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
+            <td class="finding-details">No data quality job definitions found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-17</code></td>
+            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
+            <td class="finding-details">No processing jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-18</code></td>
+            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
+            <td class="finding-details">No transform jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-19</code></td>
+            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
+            <td class="finding-details">No hyperparameter tuning jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-20</code></td>
+            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
+            <td class="finding-details">No compilation jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-21</code></td>
+            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
+            <td class="finding-details">No AutoML jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-22</code></td>
+            <td class="col-domain">Model Approval Workflow Check</td>
+            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
+            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-23</code></td>
+            <td class="col-domain">Model Drift Detection Check</td>
+            <td class="finding-details">No InService endpoints found to monitor.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-24</code></td>
+            <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
+            <td class="finding-details">No InService endpoints found.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-25</code></td>
+            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
+            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
+            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-06</code></td>
+            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-07</code></td>
+            <td class="col-domain">Bedrock Prompt Management Check</td>
+            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
+            <td class="resolution-text">Implement Prompt Management to:
+1. Create and version your prompts
+2. Test different prompt variants
+3. Share prompts across your organization
+4. Maintain consistent prompt templates</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-08</code></td>
+            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
+            <td class="finding-details">No Bedrock agents found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-09</code></td>
+            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::193047247167:assumed-role/aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX/aiml-security-aiml-security-193047247167-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:193047247167:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-10</code></td>
+            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
+            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
+            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-11</code></td>
+            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
+            <td class="finding-details">No custom/fine-tuned models found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-12</code></td>
+            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
+            <td class="finding-details">Model invocation logging to S3 is not configured</td>
+            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-13</code></td>
+            <td class="col-domain">Bedrock Flows Guardrails Check</td>
+            <td class="finding-details">No Bedrock Flows found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-06</code></td>
+            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-07</code></td>
+            <td class="col-domain">Bedrock Prompt Management Check</td>
+            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
+            <td class="resolution-text">Implement Prompt Management to:
+1. Create and version your prompts
+2. Test different prompt variants
+3. Share prompts across your organization
+4. Maintain consistent prompt templates</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-08</code></td>
+            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
+            <td class="finding-details">No Bedrock agents found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-09</code></td>
+            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::193047247167:assumed-role/aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX/aiml-security-aiml-security-193047247167-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:193047247167:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-10</code></td>
+            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
+            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
+            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-11</code></td>
+            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
+            <td class="finding-details">No custom/fine-tuned models found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-12</code></td>
+            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
+            <td class="finding-details">Model invocation logging to S3 is not configured</td>
+            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-13</code></td>
+            <td class="col-domain">Bedrock Flows Guardrails Check</td>
+            <td class="finding-details">No Bedrock Flows found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-01</code></td>
+            <td class="col-domain">SageMaker Internet Access Check</td>
+            <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-03</code></td>
+            <td class="col-domain">Data Protection Check</td>
+            <td class="finding-details">No SageMaker resources found to check for data protection</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-04</code></td>
+            <td class="col-domain">GuardDuty Enabled</td>
+            <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Model Registry Issue</td>
+            <td class="finding-details">No model package groups found</td>
+            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Feature Store Issue</td>
+            <td class="finding-details">No feature groups found</td>
+            <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Pipelines Issue</td>
+            <td class="finding-details">No ML pipelines found</td>
+            <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-06</code></td>
+            <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
+            <td class="finding-details">No SageMaker Clarify jobs found</td>
+            <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-07</code></td>
+            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
+            <td class="finding-details">No Model Monitor schedules found</td>
+            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-08</code></td>
+            <td class="col-domain">Model Registry Registry Not Used</td>
+            <td class="finding-details">Model Registry is not being utilized</td>
+            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-09</code></td>
+            <td class="col-domain">SageMaker Notebook Root Access Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-10</code></td>
+            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-11</code></td>
+            <td class="col-domain">SageMaker Model Network Isolation Check</td>
+            <td class="finding-details">No models found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-12</code></td>
+            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
+            <td class="finding-details">No InService endpoints found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-13</code></td>
+            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
+            <td class="finding-details">No monitoring schedules found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-14</code></td>
+            <td class="col-domain">SageMaker Model Repository Access Check</td>
+            <td class="finding-details">No models found or all use default Platform access</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-15</code></td>
+            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
+            <td class="finding-details">No feature groups with offline stores found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-16</code></td>
+            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
+            <td class="finding-details">No data quality job definitions found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-17</code></td>
+            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
+            <td class="finding-details">No processing jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-18</code></td>
+            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
+            <td class="finding-details">No transform jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-19</code></td>
+            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
+            <td class="finding-details">No hyperparameter tuning jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-20</code></td>
+            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
+            <td class="finding-details">No compilation jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-21</code></td>
+            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
+            <td class="finding-details">No AutoML jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-22</code></td>
+            <td class="col-domain">Model Approval Workflow Check</td>
+            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
+            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-23</code></td>
+            <td class="col-domain">Model Drift Detection Check</td>
+            <td class="finding-details">No InService endpoints found to monitor.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-24</code></td>
+            <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
+            <td class="finding-details">No InService endpoints found.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-25</code></td>
+            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
+            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
+            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="low" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-01</code></td>
+            <td class="col-domain">AWS Shield Advanced Not Enabled</td>
+            <td class="finding-details">AWS Shield Advanced is not subscribed. GenAI API endpoints are vulnerable to volumetric DDoS attacks that can exhaust token quotas and inflate costs.</td>
+            <td class="resolution-text">1. Subscribe to AWS Shield Advanced for DDoS protection.
+2. After subscribing, explicitly add resource protections in the Shield Advanced console for each Bedrock-facing resource (API Gateway stages, ALBs, CloudFront distributions, Route 53 hosted zones). Shield Advanced subscription alone does NOT automatically protect resources — each resource must be individually added to receive protection.
+3. Enable Shield Response Team (SRT) access and configure proactive engagement.
+4. Alternatively, use AWS Firewall Manager with a Shield Advanced policy to automate resource protection based on tags or resource types.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/waf/latest/developerguide/shield-chapter.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-01</code></td>
+            <td class="col-domain">No Regional WAF Web ACLs Found</td>
+            <td class="finding-details">No AWS WAF regional Web ACLs found. Without WAF, GenAI endpoints lack rate-based rules to block abusive callers.</td>
+            <td class="resolution-text">1. Create a WAF Web ACL with rate-based rules (e.g., 1000 req/5 min per IP).
+2. Associate the ACL with API Gateway stages or ALBs fronting Bedrock.
+3. Add AWS Managed Rules for known bad inputs.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/waf/latest/developerguide/waf-chapter.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-02</code></td>
+            <td class="col-domain">API Gateway Usage Plans Missing Throttle</td>
+            <td class="finding-details">Usage plans without throttling: myAskMeAnything-UsagePlan. Unbounded API calls can exhaust Bedrock token quotas and inflate costs.</td>
+            <td class="resolution-text">Set rateLimit and burstLimit on all usage plans associated with GenAI API stages. Consider per-consumer API keys with individual quotas.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/apigateway/latest/developerguide/api-gateway-request-throttling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-03</code></td>
+            <td class="col-domain">Bedrock Token Quotas At Default</td>
+            <td class="finding-details">All 232 Bedrock token-based quota(s) are at their AWS default values — no quota increase has been applied. Running at default is a legitimate posture, but it should be a reviewed decision aligned with expected peak load rather than an oversight.</td>
+            <td class="resolution-text">1. Review current Bedrock TPM/TPD quotas in the Service Quotas console.
+2. Request increases aligned with expected peak load, or document a deliberate decision to remain at default after review.
+3. Implement client-side token counting and pre-flight quota checks.
+4. Use Bedrock cross-region inference profiles to distribute load.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/quotas.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-04</code></td>
+            <td class="col-domain">No Cost Anomaly Detection Monitors</td>
+            <td class="finding-details">No AWS Cost Anomaly Detection monitors found. Unexpected spikes in Bedrock/SageMaker usage (e.g., from prompt injection loops) will go undetected.</td>
+            <td class="resolution-text">1. Create a Cost Anomaly Detection monitor scoped to AWS/Bedrock and AWS/SageMaker.
+2. Configure alert subscriptions (SNS/email) for anomalies above threshold.
+3. Set daily spend budgets with AWS Budgets as a secondary control.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/cost-management/latest/userguide/getting-started-ad.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-05</code></td>
+            <td class="col-domain">No Bedrock CloudWatch Alarms Found</td>
+            <td class="finding-details">No CloudWatch alarms found for Bedrock metrics. Token exhaustion and throttling events will not trigger operational alerts.</td>
+            <td class="resolution-text">Create CloudWatch alarms for:
+- AWS/Bedrock InvocationThrottles (threshold > 0)
+- AWS/Bedrock TokensProcessed (threshold based on quota)
+- Custom application-level token counters via EMF</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/monitoring-cw.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-06</code></td>
+            <td class="col-domain">No AI/ML Service Budgets Configured</td>
+            <td class="finding-details">No AWS Budgets found scoped to Bedrock or SageMaker. Unbounded GenAI spend can go undetected until the monthly bill.</td>
+            <td class="resolution-text">1. Create cost budgets for AWS Bedrock and SageMaker with 80%/100% alert thresholds.
+2. Add SNS notifications to on-call channels.
+3. Consider budget actions to apply IAM deny policies when thresholds are breached.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/cost-management/latest/userguide/budgets-managing-costs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-07</code></td>
+            <td class="col-domain">Agent Action Boundary Check</td>
+            <td class="finding-details">No Bedrock agents found.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/agents-permissions.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-08</code></td>
+            <td class="col-domain">AgentCore Runtimes Missing Policy Engine</td>
+            <td class="finding-details">Runtimes without authorizer configuration: origami_expeditions, neoCyan_Agent, customer_support_agent, cdk_agent_core, awsapimcpserver. Without a policy engine, agents can invoke any registered tool without authorization checks.</td>
+            <td class="resolution-text">Configure an authorizer (Lambda or Cedar policy store) on each AgentCore runtime to enforce fine-grained tool-call authorization.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security-authorization.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-09</code></td>
+            <td class="col-domain">Agent Lambda Functions Without Concurrency Limits</td>
+            <td class="finding-details">Agent-related Lambda functions without reserved concurrency: aiml-security-aiml-security-193047247167-FinServAssessment, resco-aiml-IAMPermissionCaching, aiml-security-aiml-security-193047247167-SagemakerAssessment, resco-aiml-CleanupBucket, aiml-security-aiml-security-193047247167-BedrockAssessment, resco-aiml-BedrockAssessment, aiml-security-aiml-security-193047247167-CleanupBucket, aiml-security-aiml-security-193047247167-AgentCoreAssessment, e2ebedrockrag-OSSInfraStack-BKBOSSInfraSetupLambda-031La8JAQXtk, e2ebedrockrag-OSSInfraSta-OSSIndexCreationProvider-g56en9UzRjII. Unlimited concurrency allows runaway agent loops to exhaust account limits.</td>
+            <td class="resolution-text">1. Set reserved concurrency on agent Lambda functions.
+2. Implement maximum iteration counts in agent orchestration logic.
+3. Use Step Functions with MaxConcurrency and timeout states.
+4. Add circuit-breaker patterns to agent tool invocations.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/lambda/latest/dg/configuration-concurrency.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-10</code></td>
+            <td class="col-domain">Human-in-the-Loop Check — No Agent Workflows Found</td>
+            <td class="finding-details">No Step Functions state machines with agent/approval naming found. Verify that high-risk agent actions (e.g., fund transfers, account changes) have human approval gates.</td>
+            <td class="resolution-text">Implement Step Functions .waitForTaskToken patterns for high-risk agent actions. Route approval requests to human reviewers via SNS/SES/Slack.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/step-functions/latest/dg/connect-to-resource.html#connect-wait-token" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-11</code></td>
+            <td class="col-domain">No Agent Rate Alarms Found</td>
+            <td class="finding-details">No CloudWatch alarms found for agent invocation rates. Looping or runaway agents will not trigger operational alerts.</td>
+            <td class="resolution-text">Create CloudWatch alarms on:
+- Bedrock agent invocation counts (threshold based on expected max)
+- Lambda invocation errors for agent functions
+- Step Functions execution failures and timeouts</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/monitoring-cw.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-12</code></td>
+            <td class="col-domain">No Bedrock-Scoped SCPs Found</td>
+            <td class="finding-details">No Service Control Policies reference Bedrock. Without SCPs, any account in the organization can access any Bedrock model, including unapproved third-party models.</td>
+            <td class="resolution-text">1. Create an SCP that denies bedrock:InvokeModel for model IDs not on the approved list.
+2. Use bedrock:ModelId condition key to allowlist approved models.
+3. Maintain a model inventory and update the SCP when models are approved/retired.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-13</code></td>
+            <td class="col-domain">Model Provenance Tags Present</td>
+            <td class="finding-details">All reviewed models have required provenance tags.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/tagging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-14</code></td>
+            <td class="col-domain">Model Governance Config Rules Present</td>
+            <td class="finding-details">Found 11 model-related Config rule(s).</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/config/latest/developerguide/evaluate-config.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-15</code></td>
+            <td class="col-domain">No Bedrock Evaluation Jobs Found</td>
+            <td class="finding-details">No Bedrock Model Evaluation jobs found. Models have not been evaluated for adversarial robustness. FinServ model-risk management (SR 11-7) expects documented model validation/evaluation.</td>
+            <td class="resolution-text">1. Run Bedrock Model Evaluation with adversarial/red-team datasets.
+2. Use FMEval library for automated robustness testing.
+3. Schedule periodic re-evaluation after model updates.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-16</code></td>
+            <td class="col-domain">ECR Repositories Without Image Scanning</td>
+            <td class="finding-details">4 ECR repo(s) without scan-on-push: mlexplorationrepo, cdk-hnb659fds-container-assets-193047247167-us-east-1, bedrock-agentcore-customer_support_agent, bedrock-agentcore-origami_expeditions.</td>
+            <td class="resolution-text">Enable scan-on-push for all ECR repositories containing model containers. Consider enabling Enhanced Scanning (Inspector) for CVE detection.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonECR/latest/userguide/image-scanning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-20</code></td>
+            <td class="col-domain">No SageMaker Feature Groups Found</td>
+            <td class="finding-details">No SageMaker Feature Store groups found.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-21</code></td>
+            <td class="col-domain">Training Data Buckets Without Versioning</td>
+            <td class="finding-details">13 training data bucket(s) without versioning: ancbedrocklogging, bedrock-agentcore-codebuild-sources-193047247167-us-east-1, bedrock-bda-us-east-1-dda43109-6557-48bb-993d-3f97126b64b4, bedrock-bda-us-east-1-logging-00719114-debd-4487-85d1-09cbc3fc8, bedrock-kb-bucket-f736570b, bedrock-video-generation-us-east-1-h5ltpm, fsi-genai-workshop-bedrock-datasources-193047247167-us-west-2, knowledgebase-bedrock-agent-agasthik, llmevaluationpromptfoo-bedrockkb-cozhbzbrcmd2, sagemaker-studio-193047247167-huo1mvme4t.</td>
+            <td class="resolution-text">Enable S3 versioning on all training data buckets. Consider enabling MFA Delete for additional protection against poisoning.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/Versioning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-22</code></td>
+            <td class="col-domain">Overly Permissive Knowledge Base IAM Roles</td>
+            <td class="finding-details">722 role(s) with wildcard KB permissions:
+- Role '193047247167-us-east-1-kb-setup-function-role' allows 'bedrock:CreateKnowledgeBase' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role '193047247167-us-east-1-kb-setup-function-role' allows 'bedrock:CreateDataSource' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'Admin' allows '*'
+- Role 'agentcore-wildrydes_gateway_role_ab3991f6-role' allows 'bedrock:*'
+- Role 'AgentCoreEvalsSDK-us-east-1-d04ba7b68b' allows 'bedrock:InvokeModel' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'AgentCoreEvalsSDK-us-east-1-d04ba7b68b' allows 'bedrock:InvokeModelWithResponseStream' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'Agentic-AI-MCP-Strands-SDK-Works-VSCodeInstanceRole-NCTUnlnRBFO6' allows '*'
+- Role 'aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX' allows 'bedrock:ListGuardrails' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX' allows 'bedrock:GetGuardrail' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX' allows 'bedrock:ListModelInvocations' on Resource '*' (no ARN scoping to specific Knowledge Bases)</td>
+            <td class="resolution-text">Replace wildcard bedrock-agent:* with specific actions: bedrock:Retrieve, bedrock:RetrieveAndGenerate. Scope resources to specific Knowledge Base ARNs.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-24</code></td>
+            <td class="col-domain">ADVISORY: Knowledge Base Metadata Filtering — Manual Review Required</td>
+            <td class="finding-details">Found 3 Knowledge Base(s). Tenant-isolation metadata filtering is a design pattern that cannot be verified via API — manual review required. Verify that metadata attributes (e.g., tenantId, classification) are indexed and that Retrieve calls include RetrievalFilter conditions for tenant isolation.</td>
+            <td class="resolution-text">1. Add metadata fields (tenantId, dataClassification) to KB data sources.
+2. Pass RetrievalFilter in all Retrieve/RetrieveAndGenerate calls.
+3. Validate filters in integration tests to prevent cross-tenant data leakage.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/kb-test-config.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="passed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-25</code></td>
+            <td class="col-domain">OpenSearch Serverless Encryption Policies Present</td>
+            <td class="finding-details">Found 5 encryption policy(ies); 5 use a customer-managed KMS key.</td>
+            <td class="resolution-text">Verify all vector store collections use customer-managed KMS keys.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/opensearch-service/latest/developerguide/serverless-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-26</code></td>
+            <td class="col-domain">OpenSearch Serverless Collections Not VPC-Restricted</td>
+            <td class="finding-details">Found 5 network policy(ies) but none restrict to VPC. Vector stores may be accessible from the public internet.</td>
+            <td class="resolution-text">Update network policies to allow access only from VPC endpoints. Create an OpenSearch Serverless VPC endpoint in your VPC.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/opensearch-service/latest/developerguide/serverless-network.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-27</code></td>
+            <td class="col-domain">No Guardrails — Contextual Grounding Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured. Configure guardrails first (see BR-05).</td>
+            <td class="resolution-text">Configure Bedrock Guardrails with contextual grounding checks (grounding threshold ≥0.7 and relevance threshold ≥0.7 for FinServ use cases).</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-grounding.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-27</code></td>
+            <td class="col-domain">Automated Reasoning Policies — Access Check</td>
+            <td class="finding-details">Access denied or service unavailable when listing Automated Reasoning policies. The IAM action name (bedrock:ListAutomatedReasoningPolicies) is correct, so the most likely causes are, in order: (1) the assessment MEMBER ROLE in this account was deployed before this action was added and has not been re-deployed; (2) an AWS Organizations SCP or permission boundary denies this newer Bedrock action; (3) the region does not support ARC. ARC is available in AWS GovCloud (US) and a growing set of commercial regions (e.g., us-east-1, us-east-2, us-west-2, eu-central-1, eu-west-1, eu-west-3) — verify the current list in the AWS documentation.</td>
+            <td class="resolution-text">1. RE-DEPLOY the member-role CloudFormation stack so the role picks up bedrock:ListAutomatedReasoningPolicies (templates may be current while the *deployed* role is stale). See deployment/1-aiml-security-member-roles.yaml and aiml-security-single-account.yaml.
+2. Check for an Organizations SCP / permission boundary denying the action.
+3. Confirm the assessed region supports Automated Reasoning checks.
+4. Re-run the assessment after re-deploying.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/troubleshoot_access-denied.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-28</code></td>
+            <td class="col-domain">No Guardrails — Denied Topics Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with denied topics for regulated financial content.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-29</code></td>
+            <td class="col-domain">ADVISORY: Compliance Disclaimer — Manual Review Required</td>
+            <td class="finding-details">Application-level compliance disclaimers cannot be verified via AWS APIs. Manual review required to confirm GenAI outputs include required regulatory disclosures.</td>
+            <td class="resolution-text">1. Implement post-processing to append required disclaimers to GenAI outputs.
+2. Use Bedrock Guardrails word filters to block outputs that omit required disclosures.
+3. Document disclaimer requirements in the AI use case register.
+4. Test disclaimer presence in QA/UAT before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-30</code></td>
+            <td class="col-domain">ADVISORY: Compliance Dataset Coverage — Manual Review Required</td>
+            <td class="finding-details">Bedrock model-evaluation dataset content cannot be inspected via API. Manually verify your model-evaluation jobs include compliance-specific datasets (fair lending/ECOA, Fair Housing Act, UDAP/UDAAP, AML/KYC edge cases). Whether any evaluation jobs exist at all is assessed by FS-15.</td>
+            <td class="resolution-text">Run Bedrock Model Evaluation with compliance-specific datasets:
+- Fair lending test cases (ECOA, Fair Housing Act)
+- UDAP/UDAAP unfair/deceptive practice scenarios
+- AML/KYC edge cases</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-31</code></td>
+            <td class="col-domain">Knowledge Base Data Sources Past Review Threshold</td>
+            <td class="finding-details">2 data source(s) not synced in >7 days (a configurable review threshold, NOT an AWS-mandated limit):
+- KB 'knowledge-base-semiconductors' source 'knowledge-base-quick-start-qpvuv-data-source' last synced 702 days ago
+- KB '193047247167-us-east-1-kb' source '193047247167-us-east-1-kb-datasource' last synced 180 days ago
+Confirm this age is acceptable for each data source's currency requirement — slow-changing reference data may legitimately sync infrequently.</td>
+            <td class="resolution-text">1. Define the maximum acceptable data age per use case (e.g., intraday for market data, daily for product terms, weekly/monthly for regulatory guidance) and adjust the review threshold to match.
+2. Configure automated sync (EventBridge Scheduler → StartIngestionJob) at that cadence — see FS-61.
+3. Set CloudWatch alarms on sync job failures.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/knowledge-base-ingest.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-32</code></td>
+            <td class="col-domain">ADVISORY: Source Attribution — Manual Review Required</td>
+            <td class="finding-details">Source attribution in GenAI responses cannot be verified via AWS APIs. Manual review required to confirm responses include citations.</td>
+            <td class="resolution-text">1. Use Bedrock RetrieveAndGenerate with citations enabled.
+2. Include source document references in response post-processing.
+3. Test citation accuracy in QA before production deployment.
+4. Consider Bedrock Guardrails grounding checks to validate response accuracy.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/kb-test-config.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-33</code></td>
+            <td class="col-domain">KB Data Source Buckets Without Versioning</td>
+            <td class="finding-details">KB data source S3 buckets without versioning: 193047247167-us-east-1-kb-data-bucket.</td>
+            <td class="resolution-text">Enable S3 versioning on all KB data source buckets. Enable S3 Object Integrity (checksum) for tamper detection.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/checking-object-integrity.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-34</code></td>
+            <td class="col-domain">Legacy Foundation Models Available in Region</td>
+            <td class="finding-details">Legacy/deprecated foundation models are available in this account/region: anthropic.claude-sonnet-4-20250514-v1:0, twelvelabs.marengo-embed-2-7-v1:0, amazon.titan-image-generator-v2:0, amazon.nova-premier-v1:0:8k, amazon.nova-premier-v1:0:20k, amazon.nova-premier-v1:0:1000k, amazon.nova-premier-v1:0:mm, amazon.nova-premier-v1:0, amazon.nova-canvas-v1:0, amazon.nova-reel-v1:0. This API reports model *availability*, not actual usage — it cannot determine which models your applications invoke. Legacy models have older training-data cutoffs and may produce outdated information if used. Review whether any are in active use.</td>
+            <td class="resolution-text">1. Identify which (if any) of these legacy models your applications invoke (e.g., via CloudTrail InvokeModel events or application config).
+2. Migrate active usage to current model versions.
+3. Document training-data cutoff dates for all models in use.
+4. Add data-currency disclaimers to outputs from models with old cutoffs.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-lifecycle.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-35</code></td>
+            <td class="col-domain">ADVISORY: Harmful-Content Test Coverage — Manual Review Required</td>
+            <td class="finding-details">Bedrock model-evaluation dataset content cannot be inspected via API. Manually verify your model-evaluation/FMEval jobs include harmful-content datasets (toxicity, hate speech, violence/self-harm). Whether any evaluation jobs exist at all is assessed by FS-15.</td>
+            <td class="resolution-text">Run Bedrock Model Evaluation or FMEval with harmful content datasets:
+- Toxicity detection
+- Hate speech classification
+- Violence/self-harm content</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-36</code></td>
+            <td class="col-domain">No Guardrails — Content Filters Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with content filters.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-filters.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-37</code></td>
+            <td class="col-domain">ADVISORY: User Feedback Mechanism — Manual Review Required</td>
+            <td class="finding-details">User feedback mechanisms for harmful outputs cannot be verified via AWS APIs. Manual review required.</td>
+            <td class="resolution-text">1. Implement thumbs-up/down or flag-for-review UI in GenAI applications.
+2. Route flagged outputs to human reviewers via SQS/SNS.
+3. Log feedback to DynamoDB/S3 for model improvement.
+4. Define SLAs for reviewing flagged content.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-38</code></td>
+            <td class="col-domain">No Guardrails — Word Filters Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with word filters.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-39</code></td>
+            <td class="col-domain">No SageMaker Clarify Bias Monitoring</td>
+            <td class="finding-details">No SageMaker Clarify model bias monitoring schedules found. Models making financial decisions (credit, insurance) may exhibit discriminatory bias without detection.</td>
+            <td class="resolution-text">1. Configure SageMaker Clarify bias detection for all models making credit, insurance, or employment decisions.
+2. Define protected attributes (age, gender, race proxies).
+3. Set bias metric thresholds and alert on violations.
+4. Document bias testing results for regulatory examination.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-model-monitor-bias-drift.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-40</code></td>
+            <td class="col-domain">ADVISORY: Bias Dataset Coverage — Manual Review Required</td>
+            <td class="finding-details">Bedrock model-evaluation dataset content cannot be inspected via API. Manually verify your model-evaluation jobs include bias/fairness datasets (demographic parity, equal-opportunity, counterfactual fairness) for any GenAI models used in financial decisions (ECOA/Fair Housing). Whether any evaluation jobs exist at all is assessed by FS-15.</td>
+            <td class="resolution-text">Run Bedrock Model Evaluation with bias test datasets:
+- Demographic parity test cases
+- Equal opportunity scenarios
+- Counterfactual fairness tests</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-41</code></td>
+            <td class="col-domain">No SageMaker Clarify Explainability Monitoring</td>
+            <td class="finding-details">No SageMaker Clarify explainability monitoring found. Models making adverse financial decisions may not provide required explanations (ECOA adverse action notices).</td>
+            <td class="resolution-text">1. Configure SageMaker Clarify explainability for credit/lending models.
+2. Generate SHAP values for feature importance.
+3. Map top features to human-readable adverse action reason codes.
+4. Store explanations for regulatory examination.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-model-explainability.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-42</code></td>
+            <td class="col-domain">No SageMaker Model Cards Found</td>
+            <td class="finding-details">No SageMaker Model Cards found. Production AI models lack documented intended use, limitations, and bias evaluations.</td>
+            <td class="resolution-text">1. Create SageMaker Model Cards for all production models.
+2. Document: intended use, out-of-scope uses, training data, bias evaluations.
+3. Include regulatory compliance attestations.
+4. Review and update cards at each model version release.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-cards.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-43</code></td>
+            <td class="col-domain">No CloudWatch Logs Data Protection Policies</td>
+            <td class="finding-details">No CloudWatch Logs data protection policies found. PII (SSN, account numbers, credit card numbers) in Bedrock invocation logs may be stored in plaintext.</td>
+            <td class="resolution-text">1. Create CloudWatch Logs data protection policies to mask PII.
+2. Enable masking for: SSN, credit card numbers, bank account numbers, email.
+3. Apply policies to Bedrock invocation log groups.
+4. Test masking with synthetic PII before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/mask-sensitive-log-data.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="passed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-44</code></td>
+            <td class="col-domain">Amazon Macie Enabled</td>
+            <td class="finding-details">Amazon Macie is enabled and scanning S3 buckets.</td>
+            <td class="resolution-text">Verify Macie jobs cover training data and KB data source buckets.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/macie/latest/user/what-is-macie.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-45</code></td>
+            <td class="col-domain">No Guardrails — PII Filters Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with PII/sensitive information filters.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-sensitive-filters.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-46</code></td>
+            <td class="col-domain">AI/ML Buckets Without Data Classification Tags</td>
+            <td class="finding-details">18 AI/ML bucket(s) without data-classification tags: 193047247167-us-east-1-kb-data-bucket, ancbedrocklogging, ancknowledgebase, aws-streaming-data-solut-outputaccesslogsbucket8b-1o7m0kb4bafm4, bedrock-agentcore-codebuild-sources-193047247167-us-east-1, bedrock-bda-us-east-1-dda43109-6557-48bb-993d-3f97126b64b4, bedrock-bda-us-east-1-logging-00719114-debd-4487-85d1-09cbc3fc8, bedrock-kb-bucket-f736570b, bedrock-video-generation-us-east-1-h5ltpm, create-customer-resources-kb-bucket-193047247167.</td>
+            <td class="resolution-text">Tag all AI/ML data buckets with 'data-classification' key. Values: Public, Internal, Confidential, Restricted. Enforce via SCP or AWS Config rule.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-tagging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-47</code></td>
+            <td class="col-domain">No Guardrails — Grounding Threshold Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with contextual grounding checks.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-grounding.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-48</code></td>
+            <td class="col-domain">Active Knowledge Bases for RAG Present</td>
+            <td class="finding-details">Found 3 active Knowledge Base(s) for RAG grounding.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/knowledge-base.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-49</code></td>
+            <td class="col-domain">ADVISORY: Hallucination Disclaimer — Manual Review Required</td>
+            <td class="finding-details">Application-level hallucination disclaimers cannot be verified via AWS APIs. Manual review required.</td>
+            <td class="resolution-text">1. Add disclaimers to GenAI outputs: 'AI-generated content may contain errors. Verify with authoritative sources before acting.'
+2. Implement post-processing to append disclaimers.
+3. Test disclaimer presence in QA before production.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-50</code></td>
+            <td class="col-domain">No Guardrails With Relevance Grounding Filters</td>
+            <td class="finding-details">No guardrails have RELEVANCE contextual grounding filters. Without relevance filters, responses that are off-topic or unrelated to the user query will not be blocked, increasing hallucination risk in RAG-based FinServ applications.</td>
+            <td class="resolution-text">Enable the RELEVANCE contextual grounding filter in Bedrock Guardrails with a threshold of ≥0.7 to block responses that are not relevant to the user query. Also enable the GROUNDING filter (≥0.7) to block responses not supported by the retrieved source context.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-grounding.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-51</code></td>
+            <td class="col-domain">No Guardrails — Prompt Attack Filters Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with prompt attack filters.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-52</code></td>
+            <td class="col-domain">Bedrock Lambda Functions on Deprecated Runtimes</td>
+            <td class="finding-details">Functions on deprecated runtimes: e2ebedrockrag-OSSInfraStack-BKBOSSInfraSetupLambda-031La8JAQXtk, e2ebedrockrag-OSSInfraSta-OSSIndexCreationProvider-g56en9UzRjII. Deprecated runtimes may use outdated boto3/SDK versions lacking security patches.</td>
+            <td class="resolution-text">1. Upgrade Lambda functions to a supported runtime — Python 3.12+, Node.js 22.x or 24.x, Java 21+, or .NET 8+.
+2. Update boto3 to the latest version in Lambda layers (pin the version in requirements.txt and redeploy).
+3. Enable Lambda runtime management controls for automatic minor-version updates (runtimeManagementConfig.updateRuntimeOn = 'Auto').
+4. Refer to https://docs.aws.amazon.com/lambda/latest/dg/lambda-runtimes.html for the authoritative list of supported and deprecated runtimes.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/lambda/latest/dg/runtimes-update.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-53</code></td>
+            <td class="col-domain">No WAF Web ACLs — Injection Rules Not Applicable</td>
+            <td class="finding-details">No regional WAF Web ACLs found.</td>
+            <td class="resolution-text">Create WAF Web ACLs with injection protection rules (see FS-01).</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-baseline.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-54</code></td>
+            <td class="col-domain">ADVISORY: Penetration Testing — Manual Review Required</td>
+            <td class="finding-details">Penetration testing evidence cannot be verified via AWS APIs. Manual review required to confirm GenAI applications have been tested.</td>
+            <td class="resolution-text">1. Conduct penetration testing of GenAI applications at least annually and before major releases.
+2. Include AI-specific test cases: prompt injection, jailbreak, indirect (cross-domain) injection, system-prompt leakage, and data-extraction attempts.
+3. Consider AWS Security Agent for on-demand, AI-driven penetration testing (GA March 2026; available in US East N. Virginia, US West Oregon, Europe Ireland, Europe Frankfurt, Asia Pacific Sydney, Asia Pacific Tokyo, with cross-account shared-VPC testing via AWS RAM). Open-source tools such as Garak or PyRIT and manual red-teaming are complementary options. Verify current regional availability on the AWS Security Agent page before relying on it.
+4. Document findings and remediation for regulatory examination, and tag tested resources with a last-pentest-date for audit trail.
+5. For DORA compliance, include GenAI in TLPT (Threat-Led Penetration Testing) scope.</td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/security/penetration-testing/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-55</code></td>
+            <td class="col-domain">No Output Validation Functions Found</td>
+            <td class="finding-details">No Lambda functions with output validation/sanitization naming found. GenAI outputs may be passed directly to downstream systems without validation.</td>
+            <td class="resolution-text">1. Implement output validation Lambda functions in GenAI pipelines.
+2. Validate output schema, length, and content before downstream use.
+3. Sanitize outputs before rendering in web UIs (XSS prevention).
+4. Encode outputs appropriately for the target context (HTML, SQL, JSON).</td>
+            <td class="reference-cell"><a href="https://genai.owasp.org/llm-top-10/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-56</code></td>
+            <td class="col-domain">No WAF ACLs — XSS Prevention Not Applicable</td>
+            <td class="finding-details">No regional WAF Web ACLs found.</td>
+            <td class="resolution-text">Create WAF ACLs with XSS prevention rules.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-baseline.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-57</code></td>
+            <td class="col-domain">ADVISORY: Output Encoding — Manual Review Required</td>
+            <td class="finding-details">Output encoding practices cannot be verified via AWS APIs. Manual code review required.</td>
+            <td class="resolution-text">1. HTML-encode GenAI outputs before rendering in web UIs.
+2. Use parameterized queries when GenAI output is used in database operations.
+3. JSON-encode outputs before embedding in JavaScript contexts.
+4. Validate output length and format before passing to downstream APIs.</td>
+            <td class="reference-cell"><a href="https://genai.owasp.org/llm-top-10/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-58</code></td>
+            <td class="col-domain">ADVISORY: Output Schema Validation — Manual Review Required</td>
+            <td class="finding-details">Found 0 Lambda function(s) whose names suggest schema/validation handling. Structured-output / JSON-schema validation of GenAI responses is an application-layer control that cannot be verified automatically — manual review required.</td>
+            <td class="resolution-text">1. Use Bedrock structured output (response schemas) where supported.
+2. Implement JSON schema validation on Lambda output processors.
+3. Reject malformed outputs and return safe error responses.
+4. Log schema validation failures to CloudWatch for monitoring.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/inference-parameters.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-59</code></td>
+            <td class="col-domain">No Guardrails — Topic Allowlist Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with topic policies to restrict off-topic responses.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-60</code></td>
+            <td class="col-domain">ADVISORY: Contextual Grounding for Off-Topic Prevention</td>
+            <td class="finding-details">Contextual grounding for off-topic prevention is covered by guardrail grounding checks (FS-47) and RAG configuration (FS-48). Additionally verify system prompts explicitly scope the assistant's role.</td>
+            <td class="resolution-text">1. Include explicit scope instructions in system prompts.
+2. Use Bedrock Guardrails relevance grounding filter.
+3. Test with off-topic prompts in QA to verify rejection behavior.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-grounding.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-61</code></td>
+            <td class="col-domain">COULD NOT ASSESS: Knowledge Base Sync Schedule Check</td>
+            <td class="finding-details">This check could not be completed (error: An error occurred (AccessDeniedException) when calling the ListSchedules operation: User: arn:aws:sts::193047247167:assumed-role/aiml-security-19304724716-FinServSecurityAssessment-G8d5dEiMJsZB/aiml-security-aiml-security-193047247167-FinServAssessment is not authorized to perform: scheduler:ListSchedules on resource: arn:aws:scheduler:us-east-1:193047247167:schedule/*/* because no identity-based policy allows the scheduler:ListSchedules action). The most common cause is a missing IAM permission for the assessment role; it may also indicate an unsupported region or an outdated botocore. This control was NOT assessed — verify the role's permissions and re-run, and assess this control manually until resolved.</td>
+            <td class="resolution-text">1. Confirm the assessment role grants the actions this check requires (see the documented IAM permission set in the README).
+2. Confirm the service/feature is supported in the assessed region.
+3. Ensure botocore meets the version floor in requirements.txt.
+4. Re-run the assessment; assess this control manually until it succeeds.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/troubleshoot_access-denied.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-62</code></td>
+            <td class="col-domain">ADVISORY: Data Currency Disclaimer — Manual Review Required</td>
+            <td class="finding-details">Data currency disclaimers cannot be verified via AWS APIs. Manual review required.</td>
+            <td class="resolution-text">1. Add data currency disclaimers to GenAI outputs: 'Information based on data current as of [KB last sync date].'
+2. Expose KB last sync timestamp in application responses.
+3. Alert users when KB data is older than defined threshold.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/knowledge-base-ingest.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-63</code></td>
+            <td class="col-domain">Foundation Model Lifecycle Management</td>
+            <td class="finding-details">No legacy models detected. 10 lifecycle-related Config rule(s) found.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-lifecycle.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-65</code></td>
+            <td class="col-domain">KB Data Source Buckets Missing S3 Event Notifications</td>
+            <td class="finding-details">The following KB data-source S3 buckets have no event notifications configured. Unauthorized document modifications will not be detected in real time:
+- semiconductor-demo-9999
+- 193047247167-us-east-1-kb-data-bucket</td>
+            <td class="resolution-text">1. Enable Amazon EventBridge notifications on each KB data-source S3 bucket.
+2. Create an EventBridge rule to route s3:ObjectCreated, s3:ObjectRemoved, and s3:ObjectModified events to an SNS topic or Lambda for alerting.
+3. Integrate alerts into your security incident response workflow.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/EventBridge.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-66</code></td>
+            <td class="col-domain">AgentCore Runtimes Missing End-User Identity Propagation</td>
+            <td class="finding-details">The following runtimes have no JWT or IAM authorizer configured for end-user identity propagation. Tool calls are authorized only by the agent execution role, not the originating user:
+- origami_expeditions
+- neoCyan_Agent
+- customer_support_agent
+- cdk_agent_core
+- awsapimcpserver</td>
+            <td class="resolution-text">1. Configure a custom JWT authorizer or IAM authorizer on each AgentCore runtime.
+2. Propagate the end-user's identity token to downstream tool services.
+3. Ensure tool services validate the propagated identity before executing actions.
+4. Do not expose propagated identity tokens to unauthorized third parties.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security-authorization.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-67</code></td>
+            <td class="col-domain">Agent Action-Group Lambdas May Lack Transaction Thresholds</td>
+            <td class="finding-details">The following agent action-group Lambda functions have no environment variables whose names suggest transaction-value threshold configuration (this is a best-effort heuristic — a threshold enforced in code or in an AgentCore Policy Engine rule would not be detected here, so treat this as a prompt for manual verification rather than a definitive gap). Without explicit limits, agents could initiate unbounded financial transactions:
+- aiml-security-aiml-security-193047247167-FinServAssessment
+- aiml-security-aiml-security-193047247167-BedrockAssessment
+- resco-aiml-BedrockAssessment
+- aiml-security-aiml-security-193047247167-AgentCoreAssessment
+- e2ebedrockrag-OSSInfraStack-BKBOSSInfraSetupLambda-031La8JAQXtk
+- e2ebedrockrag-OSSInfraSta-OSSIndexCreationProvider-g56en9UzRjII
+- resco-aiml-AgentCoreAssessment</td>
+            <td class="resolution-text">1. Add transaction-value threshold environment variables (e.g., MAX_TRANSACTION_AMOUNT) to each agent action-group Lambda.
+2. Implement threshold enforcement logic in the Lambda handler.
+3. Configure AgentCore Policy Engine rules to cap financial transaction amounts.
+4. Route transactions exceeding thresholds to a human-in-the-loop approval step.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-engine.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-68</code></td>
+            <td class="col-domain">API Gateway Request Body Size Limits Not Enforced</td>
+            <td class="finding-details">Found 3 REST API(s) and 0 regional WAF Web ACL(s), but none enforce a maximum request-body size. Note: an API Gateway request validator does NOT cap body size (it validates the schema and required params; the REST limit is a fixed 10 MB), and a WAF body SizeConstraint only inspects the first ~16 KB of the body by default. Oversized prompts can exhaust Bedrock token quotas and inflate costs.</td>
+            <td class="resolution-text">1. Add a maxLength (or maxItems/maxProperties) bound to the request-body JSON-Schema model used by your request validator, so oversized prompts are rejected with a 400.
+2. Add a WAF SizeConstraintStatement on the request Body sized within WAF's body-inspection window (default 16 KB; raise via the web ACL AssociationConfig, or set OversizeHandling=MATCH to block bodies beyond the window), and associate the ACL with the API stage.
+3. Set the max_tokens parameter in Bedrock API calls to cap output length.
+4. Implement client-side token counting before submitting requests.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/waf/latest/developerguide/waf-oversize-request-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-69</code></td>
+            <td class="col-domain">Prompt Input Validation Functions Present</td>
+            <td class="finding-details">Found 3 Lambda function(s) with input validation/sanitization naming patterns: resco-aiml-CleanupBucket, visa-bulletin-tracker-prod-cleanup, aiml-security-aiml-security-193047247167-CleanupBucket.</td>
+            <td class="resolution-text">Review these functions to confirm they cover: special-character stripping, format validation, size limits, and injection-sequence detection.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-injection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>FS-00</code></td>
+            <td class="col-domain">FinServ Regional Scope Not Applicable</td>
+            <td class="finding-details">No regional Bedrock, AgentCore, or SageMaker resources were found in eu-west-1; FinServ GenAI risk checks were not applied to this region.</td>
+            <td class="resolution-text">No action required unless GenAI workloads are expected in this region.</td>
+            <td class="reference-cell"><a href="https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>FS-00</code></td>
+            <td class="col-domain">FinServ Regional Scope Not Applicable</td>
+            <td class="finding-details">No regional Bedrock, AgentCore, or SageMaker resources were found in ap-southeast-2; FinServ GenAI risk checks were not applied to this region.</td>
+            <td class="resolution-text">No action required unless GenAI workloads are expected in this region.</td>
+            <td class="reference-cell"><a href="https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Observability Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-05</code></td>
+            <td class="col-domain">AgentCore Encryption Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
+            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Configuration Check</td>
+            <td class="finding-details">No Memory resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-13</code></td>
+            <td class="col-domain">AgentCore Gateway Configuration Check</td>
+            <td class="finding-details">No Gateway resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-08</code></td>
+            <td class="col-domain">AgentCore VPC Endpoints Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-10</code></td>
+            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
+            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-11</code></td>
+            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
+            <td class="finding-details">No Policy Engines found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-12</code></td>
+            <td class="col-domain">AgentCore Gateway Encryption Check</td>
+            <td class="finding-details">No Gateways found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Observability Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-05</code></td>
+            <td class="col-domain">AgentCore Encryption Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
+            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Configuration Check</td>
+            <td class="finding-details">No Memory resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-13</code></td>
+            <td class="col-domain">AgentCore Gateway Configuration Check</td>
+            <td class="finding-details">No Gateway resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-08</code></td>
+            <td class="col-domain">AgentCore VPC Endpoints Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-10</code></td>
+            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
+            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-11</code></td>
+            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
+            <td class="finding-details">No Policy Engines found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-12</code></td>
+            <td class="col-domain">AgentCore Gateway Encryption Check</td>
+            <td class="finding-details">No Gateways found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-01</code></td>
+            <td class="col-domain">SageMaker Internet Access Check</td>
+            <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-03</code></td>
+            <td class="col-domain">Data Protection Check</td>
+            <td class="finding-details">No SageMaker resources found to check for data protection</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-04</code></td>
+            <td class="col-domain">GuardDuty Enabled</td>
+            <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Model Registry Issue</td>
+            <td class="finding-details">No model package groups found</td>
+            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Feature Store Issue</td>
+            <td class="finding-details">No feature groups found</td>
+            <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Pipelines Issue</td>
+            <td class="finding-details">No ML pipelines found</td>
+            <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-06</code></td>
+            <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
+            <td class="finding-details">No SageMaker Clarify jobs found</td>
+            <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-07</code></td>
+            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
+            <td class="finding-details">No Model Monitor schedules found</td>
+            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-08</code></td>
+            <td class="col-domain">Model Registry Registry Not Used</td>
+            <td class="finding-details">Model Registry is not being utilized</td>
+            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-09</code></td>
+            <td class="col-domain">SageMaker Notebook Root Access Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-10</code></td>
+            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-11</code></td>
+            <td class="col-domain">SageMaker Model Network Isolation Check</td>
+            <td class="finding-details">No models found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-12</code></td>
+            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
+            <td class="finding-details">No InService endpoints found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-13</code></td>
+            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
+            <td class="finding-details">No monitoring schedules found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-14</code></td>
+            <td class="col-domain">SageMaker Model Repository Access Check</td>
+            <td class="finding-details">No models found or all use default Platform access</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-15</code></td>
+            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
+            <td class="finding-details">No feature groups with offline stores found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-16</code></td>
+            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
+            <td class="finding-details">No data quality job definitions found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-17</code></td>
+            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
+            <td class="finding-details">No processing jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-18</code></td>
+            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
+            <td class="finding-details">No transform jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-19</code></td>
+            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
+            <td class="finding-details">No hyperparameter tuning jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-20</code></td>
+            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
+            <td class="finding-details">No compilation jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-21</code></td>
+            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
+            <td class="finding-details">No AutoML jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-22</code></td>
+            <td class="col-domain">Model Approval Workflow Check</td>
+            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
+            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-23</code></td>
+            <td class="col-domain">Model Drift Detection Check</td>
+            <td class="finding-details">No InService endpoints found to monitor.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-24</code></td>
+            <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
+            <td class="finding-details">No InService endpoints found.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-25</code></td>
+            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
+            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
+            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker IAM Permissions Check</td>
+            <td class="finding-details">No issues found with IAM permissions and no stale access detected</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-01</code></td>
+            <td class="col-domain">SageMaker Internet Access Check</td>
+            <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-03</code></td>
+            <td class="col-domain">Data Protection Check</td>
+            <td class="finding-details">No SageMaker resources found to check for data protection</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-04</code></td>
+            <td class="col-domain">GuardDuty Enabled</td>
+            <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Model Registry Issue</td>
+            <td class="finding-details">No model package groups found</td>
+            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Feature Store Issue</td>
+            <td class="finding-details">No feature groups found</td>
+            <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Pipelines Issue</td>
+            <td class="finding-details">No ML pipelines found</td>
+            <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-06</code></td>
+            <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
+            <td class="finding-details">No SageMaker Clarify jobs found</td>
+            <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-07</code></td>
+            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
+            <td class="finding-details">No Model Monitor schedules found</td>
+            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-08</code></td>
+            <td class="col-domain">Model Registry Registry Not Used</td>
+            <td class="finding-details">Model Registry is not being utilized</td>
+            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-09</code></td>
+            <td class="col-domain">SageMaker Notebook Root Access Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-10</code></td>
+            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-11</code></td>
+            <td class="col-domain">SageMaker Model Network Isolation Check</td>
+            <td class="finding-details">No models found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-12</code></td>
+            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
+            <td class="finding-details">No InService endpoints found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-13</code></td>
+            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
+            <td class="finding-details">No monitoring schedules found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-14</code></td>
+            <td class="col-domain">SageMaker Model Repository Access Check</td>
+            <td class="finding-details">No models found or all use default Platform access</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-15</code></td>
+            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
+            <td class="finding-details">No feature groups with offline stores found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-16</code></td>
+            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
+            <td class="finding-details">No data quality job definitions found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-17</code></td>
+            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
+            <td class="finding-details">No processing jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-18</code></td>
+            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
+            <td class="finding-details">No transform jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-19</code></td>
+            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
+            <td class="finding-details">No hyperparameter tuning jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-20</code></td>
+            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
+            <td class="finding-details">No compilation jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-21</code></td>
+            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
+            <td class="finding-details">No AutoML jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-22</code></td>
+            <td class="col-domain">Model Approval Workflow Check</td>
+            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
+            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-23</code></td>
+            <td class="col-domain">Model Drift Detection Check</td>
+            <td class="finding-details">No InService endpoints found to monitor.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-24</code></td>
+            <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
+            <td class="finding-details">No InService endpoints found.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-25</code></td>
+            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
+            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
+            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-01</code></td>
+            <td class="col-domain">SageMaker Internet Access Check</td>
+            <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-03</code></td>
+            <td class="col-domain">Data Protection Check</td>
+            <td class="finding-details">No SageMaker resources found to check for data protection</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-04</code></td>
+            <td class="col-domain">GuardDuty Enabled</td>
+            <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Model Registry Issue</td>
+            <td class="finding-details">No model package groups found</td>
+            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Feature Store Issue</td>
+            <td class="finding-details">No feature groups found</td>
+            <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Pipelines Issue</td>
+            <td class="finding-details">No ML pipelines found</td>
+            <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-06</code></td>
+            <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
+            <td class="finding-details">No SageMaker Clarify jobs found</td>
+            <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-07</code></td>
+            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
+            <td class="finding-details">No Model Monitor schedules found</td>
+            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-08</code></td>
+            <td class="col-domain">Model Registry Registry Not Used</td>
+            <td class="finding-details">Model Registry is not being utilized</td>
+            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-09</code></td>
+            <td class="col-domain">SageMaker Notebook Root Access Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-10</code></td>
+            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-11</code></td>
+            <td class="col-domain">SageMaker Model Network Isolation Check</td>
+            <td class="finding-details">No models found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-12</code></td>
+            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
+            <td class="finding-details">No InService endpoints found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-13</code></td>
+            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
+            <td class="finding-details">No monitoring schedules found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-14</code></td>
+            <td class="col-domain">SageMaker Model Repository Access Check</td>
+            <td class="finding-details">No models found or all use default Platform access</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-15</code></td>
+            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
+            <td class="finding-details">No feature groups with offline stores found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-16</code></td>
+            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
+            <td class="finding-details">No data quality job definitions found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-17</code></td>
+            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
+            <td class="finding-details">No processing jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-18</code></td>
+            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
+            <td class="finding-details">No transform jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-19</code></td>
+            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
+            <td class="finding-details">No hyperparameter tuning jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-20</code></td>
+            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
+            <td class="finding-details">No compilation jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-21</code></td>
+            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
+            <td class="finding-details">No AutoML jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-22</code></td>
+            <td class="col-domain">Model Approval Workflow Check</td>
+            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
+            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-23</code></td>
+            <td class="col-domain">Model Drift Detection Check</td>
+            <td class="finding-details">No InService endpoints found to monitor.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-24</code></td>
+            <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
+            <td class="finding-details">No InService endpoints found.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-25</code></td>
+            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
+            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
+            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-01</code></td>
+            <td class="col-domain">AmazonBedrockFullAccess role check</td>
+            <td class="finding-details">No roles found with AmazonBedrockFullAccess policy</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-all
+https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">Role 'ProwlerApp-EC2-Role' has overly permissive marketplace subscription access through policy 'AWSElasticBeanstalkMulticontainerDocker'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AIMLSecurityMemberRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_7erx6' last accessed Bedrock on 2025-05-13</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AwsSecurityAudit' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AWSServiceRoleForAuditManager' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AWSServiceRoleForSupport' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AWSVAPTAudit' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-472057511786-us-east-1' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-472057511786-us-east-2' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-472057511786-us-west-2' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CloudSecAuditRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CloudSeerTrustedServiceRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IibsAdminAccess-DO-NOT-DELETE' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'InternalAuditInternal' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'Nova-DO-NOT-DELETE' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'ProwlerApp-EC2-Role' last accessed Bedrock on 2026-03-29</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'ProwlerMemberRole' last accessed Bedrock on 2026-03-10</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'ProwlerScanRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'resco-aiml-security-mgmt-BedrockSecurityAssessmentF-espswsHIf9by' last accessed Bedrock on 2026-04-18</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'ReSCOAIMLMemberRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-06</code></td>
+            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-07</code></td>
+            <td class="col-domain">Bedrock Prompt Management Check</td>
+            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
+            <td class="resolution-text">Implement Prompt Management to:
+1. Create and version your prompts
+2. Test different prompt variants
+3. Share prompts across your organization
+4. Maintain consistent prompt templates</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-08</code></td>
+            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
+            <td class="finding-details">No Bedrock agents found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-09</code></td>
+            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::472057511786:assumed-role/aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b/aiml-security-aiml-security-mgmt-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:472057511786:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-10</code></td>
+            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
+            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
+            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-11</code></td>
+            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
+            <td class="finding-details">No custom/fine-tuned models found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-12</code></td>
+            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
+            <td class="finding-details">Model invocation logging to S3 is not configured</td>
+            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-13</code></td>
+            <td class="col-domain">Bedrock Flows Guardrails Check</td>
+            <td class="finding-details">No Bedrock Flows found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="low" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-01</code></td>
+            <td class="col-domain">AWS Shield Advanced Not Enabled</td>
+            <td class="finding-details">AWS Shield Advanced is not subscribed. GenAI API endpoints are vulnerable to volumetric DDoS attacks that can exhaust token quotas and inflate costs.</td>
+            <td class="resolution-text">1. Subscribe to AWS Shield Advanced for DDoS protection.
+2. After subscribing, explicitly add resource protections in the Shield Advanced console for each Bedrock-facing resource (API Gateway stages, ALBs, CloudFront distributions, Route 53 hosted zones). Shield Advanced subscription alone does NOT automatically protect resources — each resource must be individually added to receive protection.
+3. Enable Shield Response Team (SRT) access and configure proactive engagement.
+4. Alternatively, use AWS Firewall Manager with a Shield Advanced policy to automate resource protection based on tags or resource types.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/waf/latest/developerguide/shield-chapter.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-01</code></td>
+            <td class="col-domain">No Regional WAF Web ACLs Found</td>
+            <td class="finding-details">No AWS WAF regional Web ACLs found. Without WAF, GenAI endpoints lack rate-based rules to block abusive callers.</td>
+            <td class="resolution-text">1. Create a WAF Web ACL with rate-based rules (e.g., 1000 req/5 min per IP).
+2. Associate the ACL with API Gateway stages or ALBs fronting Bedrock.
+3. Add AWS Managed Rules for known bad inputs.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/waf/latest/developerguide/waf-chapter.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-02</code></td>
+            <td class="col-domain">No API Gateway Usage Plans Found</td>
+            <td class="finding-details">No usage plans configured. GenAI API endpoints may have no rate limits.</td>
+            <td class="resolution-text">Create API Gateway usage plans with throttle settings (rateLimit and burstLimit) for all Bedrock-facing APIs.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/apigateway/latest/developerguide/api-gateway-request-throttling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-03</code></td>
+            <td class="col-domain">Bedrock Token Quotas At Default</td>
+            <td class="finding-details">All 232 Bedrock token-based quota(s) are at their AWS default values — no quota increase has been applied. Running at default is a legitimate posture, but it should be a reviewed decision aligned with expected peak load rather than an oversight.</td>
+            <td class="resolution-text">1. Review current Bedrock TPM/TPD quotas in the Service Quotas console.
+2. Request increases aligned with expected peak load, or document a deliberate decision to remain at default after review.
+3. Implement client-side token counting and pre-flight quota checks.
+4. Use Bedrock cross-region inference profiles to distribute load.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/quotas.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-04</code></td>
+            <td class="col-domain">No Cost Anomaly Detection Monitors</td>
+            <td class="finding-details">No AWS Cost Anomaly Detection monitors found. Unexpected spikes in Bedrock/SageMaker usage (e.g., from prompt injection loops) will go undetected.</td>
+            <td class="resolution-text">1. Create a Cost Anomaly Detection monitor scoped to AWS/Bedrock and AWS/SageMaker.
+2. Configure alert subscriptions (SNS/email) for anomalies above threshold.
+3. Set daily spend budgets with AWS Budgets as a secondary control.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/cost-management/latest/userguide/getting-started-ad.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-05</code></td>
+            <td class="col-domain">No Bedrock CloudWatch Alarms Found</td>
+            <td class="finding-details">No CloudWatch alarms found for Bedrock metrics. Token exhaustion and throttling events will not trigger operational alerts.</td>
+            <td class="resolution-text">Create CloudWatch alarms for:
+- AWS/Bedrock InvocationThrottles (threshold > 0)
+- AWS/Bedrock TokensProcessed (threshold based on quota)
+- Custom application-level token counters via EMF</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/monitoring-cw.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-06</code></td>
+            <td class="col-domain">No AI/ML Service Budgets Configured</td>
+            <td class="finding-details">No AWS Budgets found scoped to Bedrock or SageMaker. Unbounded GenAI spend can go undetected until the monthly bill.</td>
+            <td class="resolution-text">1. Create cost budgets for AWS Bedrock and SageMaker with 80%/100% alert thresholds.
+2. Add SNS notifications to on-call channels.
+3. Consider budget actions to apply IAM deny policies when thresholds are breached.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/cost-management/latest/userguide/budgets-managing-costs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-07</code></td>
+            <td class="col-domain">Agent Action Boundary Check</td>
+            <td class="finding-details">No Bedrock agents found.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/agents-permissions.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-08</code></td>
+            <td class="col-domain">No AgentCore Runtimes Found</td>
+            <td class="finding-details">No AgentCore runtimes found; policy engine check not applicable.</td>
+            <td class="resolution-text">If using AgentCore, configure the Policy Engine to authorize tool calls.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security-authorization.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-09</code></td>
+            <td class="col-domain">Agent Lambda Functions Without Concurrency Limits</td>
+            <td class="finding-details">Agent-related Lambda functions without reserved concurrency: aiml-security-aiml-security-mgmt-FinServAssessment, aiml-security-aiml-security-mgmt-CleanupBucket, aiml-security-aiml-security-mgmt-SagemakerAssessment, aiml-security-aiml-security-mgmt-GenerateReport, resco-aiml-CleanupBucket, aiml-security-aiml-security-mgmt-IAMPermissionCaching, AIMLSecurity-Assessment-CodeBuildStartBuildLambda-Ul2QNob2S042, resco-aiml-BedrockAssessment, resco-aiml-AgentCoreAssessment, resco-aiml-GenerateReport. Unlimited concurrency allows runaway agent loops to exhaust account limits.</td>
+            <td class="resolution-text">1. Set reserved concurrency on agent Lambda functions.
+2. Implement maximum iteration counts in agent orchestration logic.
+3. Use Step Functions with MaxConcurrency and timeout states.
+4. Add circuit-breaker patterns to agent tool invocations.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/lambda/latest/dg/configuration-concurrency.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-10</code></td>
+            <td class="col-domain">Human-in-the-Loop Check — No Agent Workflows Found</td>
+            <td class="finding-details">No Step Functions state machines with agent/approval naming found. Verify that high-risk agent actions (e.g., fund transfers, account changes) have human approval gates.</td>
+            <td class="resolution-text">Implement Step Functions .waitForTaskToken patterns for high-risk agent actions. Route approval requests to human reviewers via SNS/SES/Slack.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/step-functions/latest/dg/connect-to-resource.html#connect-wait-token" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-11</code></td>
+            <td class="col-domain">No Agent Rate Alarms Found</td>
+            <td class="finding-details">No CloudWatch alarms found for agent invocation rates. Looping or runaway agents will not trigger operational alerts.</td>
+            <td class="resolution-text">Create CloudWatch alarms on:
+- Bedrock agent invocation counts (threshold based on expected max)
+- Lambda invocation errors for agent functions
+- Step Functions execution failures and timeouts</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/monitoring-cw.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-12</code></td>
+            <td class="col-domain">No Bedrock-Scoped SCPs Found</td>
+            <td class="finding-details">No Service Control Policies reference Bedrock. Without SCPs, any account in the organization can access any Bedrock model, including unapproved third-party models.</td>
+            <td class="resolution-text">1. Create an SCP that denies bedrock:InvokeModel for model IDs not on the approved list.
+2. Use bedrock:ModelId condition key to allowlist approved models.
+3. Maintain a model inventory and update the SCP when models are approved/retired.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-13</code></td>
+            <td class="col-domain">Model Provenance Tags Present</td>
+            <td class="finding-details">All reviewed models have required provenance tags.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/tagging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-14</code></td>
+            <td class="col-domain">Model Governance Config Rules Present</td>
+            <td class="finding-details">Found 13 model-related Config rule(s).</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/config/latest/developerguide/evaluate-config.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-15</code></td>
+            <td class="col-domain">No Bedrock Evaluation Jobs Found</td>
+            <td class="finding-details">No Bedrock Model Evaluation jobs found. Models have not been evaluated for adversarial robustness. FinServ model-risk management (SR 11-7) expects documented model validation/evaluation.</td>
+            <td class="resolution-text">1. Run Bedrock Model Evaluation with adversarial/red-team datasets.
+2. Use FMEval library for automated robustness testing.
+3. Schedule periodic re-evaluation after model updates.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-16</code></td>
+            <td class="col-domain">ECR Repositories Without Image Scanning</td>
+            <td class="finding-details">1 ECR repo(s) without scan-on-push: cdk-hnb659fds-container-assets-472057511786-us-east-1.</td>
+            <td class="resolution-text">Enable scan-on-push for all ECR repositories containing model containers. Consider enabling Enhanced Scanning (Inspector) for CVE detection.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonECR/latest/userguide/image-scanning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-20</code></td>
+            <td class="col-domain">No SageMaker Feature Groups Found</td>
+            <td class="finding-details">No SageMaker Feature Store groups found.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-21</code></td>
+            <td class="col-domain">No Training Data Buckets Identified</td>
+            <td class="finding-details">No S3 buckets with training/model naming found.</td>
+            <td class="resolution-text">Tag training data buckets and enable versioning.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/Versioning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-22</code></td>
+            <td class="col-domain">Overly Permissive Knowledge Base IAM Roles</td>
+            <td class="finding-details">710 role(s) with wildcard KB permissions:
+- Role 'Admin' allows '*'
+- Role 'aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b' allows 'bedrock:ListGuardrails' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b' allows 'bedrock:GetGuardrail' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b' allows 'bedrock:ListModelInvocations' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b' allows 'bedrock:GetModelInvocationLoggingConfiguration' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b' allows 'bedrock:ListPrompts' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b' allows 'bedrock:GetPrompt' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b' allows 'bedrock:ListAgents' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b' allows 'bedrock:GetAgent' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b' allows 'bedrock:ListCustomModels' on Resource '*' (no ARN scoping to specific Knowledge Bases)</td>
+            <td class="resolution-text">Replace wildcard bedrock-agent:* with specific actions: bedrock:Retrieve, bedrock:RetrieveAndGenerate. Scope resources to specific Knowledge Base ARNs.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-24</code></td>
+            <td class="col-domain">ADVISORY: Knowledge Base Metadata Filtering — Manual Review Required</td>
+            <td class="finding-details">Found 1 Knowledge Base(s). Tenant-isolation metadata filtering is a design pattern that cannot be verified via API — manual review required. Verify that metadata attributes (e.g., tenantId, classification) are indexed and that Retrieve calls include RetrievalFilter conditions for tenant isolation.</td>
+            <td class="resolution-text">1. Add metadata fields (tenantId, dataClassification) to KB data sources.
+2. Pass RetrievalFilter in all Retrieve/RetrieveAndGenerate calls.
+3. Validate filters in integration tests to prevent cross-tenant data leakage.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/kb-test-config.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-25</code></td>
+            <td class="col-domain">OpenSearch Serverless Encryption Policies Present</td>
+            <td class="finding-details">Found 1 encryption policy(ies); 1 use a customer-managed KMS key.</td>
+            <td class="resolution-text">Verify all vector store collections use customer-managed KMS keys.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/opensearch-service/latest/developerguide/serverless-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-26</code></td>
+            <td class="col-domain">OpenSearch Serverless Collections Not VPC-Restricted</td>
+            <td class="finding-details">Found 1 network policy(ies) but none restrict to VPC. Vector stores may be accessible from the public internet.</td>
+            <td class="resolution-text">Update network policies to allow access only from VPC endpoints. Create an OpenSearch Serverless VPC endpoint in your VPC.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/opensearch-service/latest/developerguide/serverless-network.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-27</code></td>
+            <td class="col-domain">No Guardrails — Contextual Grounding Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured. Configure guardrails first (see BR-05).</td>
+            <td class="resolution-text">Configure Bedrock Guardrails with contextual grounding checks (grounding threshold ≥0.7 and relevance threshold ≥0.7 for FinServ use cases).</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-grounding.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-27</code></td>
+            <td class="col-domain">Automated Reasoning Policies — Access Check</td>
+            <td class="finding-details">Access denied or service unavailable when listing Automated Reasoning policies. The IAM action name (bedrock:ListAutomatedReasoningPolicies) is correct, so the most likely causes are, in order: (1) the assessment MEMBER ROLE in this account was deployed before this action was added and has not been re-deployed; (2) an AWS Organizations SCP or permission boundary denies this newer Bedrock action; (3) the region does not support ARC. ARC is available in AWS GovCloud (US) and a growing set of commercial regions (e.g., us-east-1, us-east-2, us-west-2, eu-central-1, eu-west-1, eu-west-3) — verify the current list in the AWS documentation.</td>
+            <td class="resolution-text">1. RE-DEPLOY the member-role CloudFormation stack so the role picks up bedrock:ListAutomatedReasoningPolicies (templates may be current while the *deployed* role is stale). See deployment/1-aiml-security-member-roles.yaml and aiml-security-single-account.yaml.
+2. Check for an Organizations SCP / permission boundary denying the action.
+3. Confirm the assessed region supports Automated Reasoning checks.
+4. Re-run the assessment after re-deploying.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/troubleshoot_access-denied.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-28</code></td>
+            <td class="col-domain">No Guardrails — Denied Topics Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with denied topics for regulated financial content.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-29</code></td>
+            <td class="col-domain">ADVISORY: Compliance Disclaimer — Manual Review Required</td>
+            <td class="finding-details">Application-level compliance disclaimers cannot be verified via AWS APIs. Manual review required to confirm GenAI outputs include required regulatory disclosures.</td>
+            <td class="resolution-text">1. Implement post-processing to append required disclaimers to GenAI outputs.
+2. Use Bedrock Guardrails word filters to block outputs that omit required disclosures.
+3. Document disclaimer requirements in the AI use case register.
+4. Test disclaimer presence in QA/UAT before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-30</code></td>
+            <td class="col-domain">ADVISORY: Compliance Dataset Coverage — Manual Review Required</td>
+            <td class="finding-details">Bedrock model-evaluation dataset content cannot be inspected via API. Manually verify your model-evaluation jobs include compliance-specific datasets (fair lending/ECOA, Fair Housing Act, UDAP/UDAAP, AML/KYC edge cases). Whether any evaluation jobs exist at all is assessed by FS-15.</td>
+            <td class="resolution-text">Run Bedrock Model Evaluation with compliance-specific datasets:
+- Fair lending test cases (ECOA, Fair Housing Act)
+- UDAP/UDAAP unfair/deceptive practice scenarios
+- AML/KYC edge cases</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-31</code></td>
+            <td class="col-domain">Knowledge Base Data Sources Past Review Threshold</td>
+            <td class="finding-details">1 data source(s) not synced in >7 days (a configurable review threshold, NOT an AWS-mandated limit):
+- KB 'knowledge-base-prowler-findings' source 'knowledge-base-quick-start-9lb68-data-source' last synced 403 days ago
+Confirm this age is acceptable for each data source's currency requirement — slow-changing reference data may legitimately sync infrequently.</td>
+            <td class="resolution-text">1. Define the maximum acceptable data age per use case (e.g., intraday for market data, daily for product terms, weekly/monthly for regulatory guidance) and adjust the review threshold to match.
+2. Configure automated sync (EventBridge Scheduler → StartIngestionJob) at that cadence — see FS-61.
+3. Set CloudWatch alarms on sync job failures.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/knowledge-base-ingest.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-32</code></td>
+            <td class="col-domain">ADVISORY: Source Attribution — Manual Review Required</td>
+            <td class="finding-details">Source attribution in GenAI responses cannot be verified via AWS APIs. Manual review required to confirm responses include citations.</td>
+            <td class="resolution-text">1. Use Bedrock RetrieveAndGenerate with citations enabled.
+2. Include source document references in response post-processing.
+3. Test citation accuracy in QA before production deployment.
+4. Consider Bedrock Guardrails grounding checks to validate response accuracy.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/kb-test-config.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-33</code></td>
+            <td class="col-domain">KB Data Source Buckets Have Versioning</td>
+            <td class="finding-details">All reviewed KB data source buckets have versioning enabled.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/checking-object-integrity.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-34</code></td>
+            <td class="col-domain">Legacy Foundation Models Available in Region</td>
+            <td class="finding-details">Legacy/deprecated foundation models are available in this account/region: anthropic.claude-sonnet-4-20250514-v1:0, twelvelabs.marengo-embed-2-7-v1:0, amazon.titan-image-generator-v2:0, amazon.nova-premier-v1:0:8k, amazon.nova-premier-v1:0:20k, amazon.nova-premier-v1:0:1000k, amazon.nova-premier-v1:0:mm, amazon.nova-premier-v1:0, amazon.nova-canvas-v1:0, amazon.nova-reel-v1:0. This API reports model *availability*, not actual usage — it cannot determine which models your applications invoke. Legacy models have older training-data cutoffs and may produce outdated information if used. Review whether any are in active use.</td>
+            <td class="resolution-text">1. Identify which (if any) of these legacy models your applications invoke (e.g., via CloudTrail InvokeModel events or application config).
+2. Migrate active usage to current model versions.
+3. Document training-data cutoff dates for all models in use.
+4. Add data-currency disclaimers to outputs from models with old cutoffs.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-lifecycle.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-35</code></td>
+            <td class="col-domain">ADVISORY: Harmful-Content Test Coverage — Manual Review Required</td>
+            <td class="finding-details">Bedrock model-evaluation dataset content cannot be inspected via API. Manually verify your model-evaluation/FMEval jobs include harmful-content datasets (toxicity, hate speech, violence/self-harm). Whether any evaluation jobs exist at all is assessed by FS-15.</td>
+            <td class="resolution-text">Run Bedrock Model Evaluation or FMEval with harmful content datasets:
+- Toxicity detection
+- Hate speech classification
+- Violence/self-harm content</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-36</code></td>
+            <td class="col-domain">No Guardrails — Content Filters Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with content filters.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-filters.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-37</code></td>
+            <td class="col-domain">ADVISORY: User Feedback Mechanism — Manual Review Required</td>
+            <td class="finding-details">User feedback mechanisms for harmful outputs cannot be verified via AWS APIs. Manual review required.</td>
+            <td class="resolution-text">1. Implement thumbs-up/down or flag-for-review UI in GenAI applications.
+2. Route flagged outputs to human reviewers via SQS/SNS.
+3. Log feedback to DynamoDB/S3 for model improvement.
+4. Define SLAs for reviewing flagged content.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-38</code></td>
+            <td class="col-domain">No Guardrails — Word Filters Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with word filters.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-39</code></td>
+            <td class="col-domain">No SageMaker Clarify Bias Monitoring</td>
+            <td class="finding-details">No SageMaker Clarify model bias monitoring schedules found. Models making financial decisions (credit, insurance) may exhibit discriminatory bias without detection.</td>
+            <td class="resolution-text">1. Configure SageMaker Clarify bias detection for all models making credit, insurance, or employment decisions.
+2. Define protected attributes (age, gender, race proxies).
+3. Set bias metric thresholds and alert on violations.
+4. Document bias testing results for regulatory examination.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-model-monitor-bias-drift.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-40</code></td>
+            <td class="col-domain">ADVISORY: Bias Dataset Coverage — Manual Review Required</td>
+            <td class="finding-details">Bedrock model-evaluation dataset content cannot be inspected via API. Manually verify your model-evaluation jobs include bias/fairness datasets (demographic parity, equal-opportunity, counterfactual fairness) for any GenAI models used in financial decisions (ECOA/Fair Housing). Whether any evaluation jobs exist at all is assessed by FS-15.</td>
+            <td class="resolution-text">Run Bedrock Model Evaluation with bias test datasets:
+- Demographic parity test cases
+- Equal opportunity scenarios
+- Counterfactual fairness tests</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-41</code></td>
+            <td class="col-domain">No SageMaker Clarify Explainability Monitoring</td>
+            <td class="finding-details">No SageMaker Clarify explainability monitoring found. Models making adverse financial decisions may not provide required explanations (ECOA adverse action notices).</td>
+            <td class="resolution-text">1. Configure SageMaker Clarify explainability for credit/lending models.
+2. Generate SHAP values for feature importance.
+3. Map top features to human-readable adverse action reason codes.
+4. Store explanations for regulatory examination.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-model-explainability.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-42</code></td>
+            <td class="col-domain">No SageMaker Model Cards Found</td>
+            <td class="finding-details">No SageMaker Model Cards found. Production AI models lack documented intended use, limitations, and bias evaluations.</td>
+            <td class="resolution-text">1. Create SageMaker Model Cards for all production models.
+2. Document: intended use, out-of-scope uses, training data, bias evaluations.
+3. Include regulatory compliance attestations.
+4. Review and update cards at each model version release.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-cards.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-43</code></td>
+            <td class="col-domain">No CloudWatch Logs Data Protection Policies</td>
+            <td class="finding-details">No CloudWatch Logs data protection policies found. PII (SSN, account numbers, credit card numbers) in Bedrock invocation logs may be stored in plaintext.</td>
+            <td class="resolution-text">1. Create CloudWatch Logs data protection policies to mask PII.
+2. Enable masking for: SSN, credit card numbers, bank account numbers, email.
+3. Apply policies to Bedrock invocation log groups.
+4. Test masking with synthetic PII before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/mask-sensitive-log-data.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-44</code></td>
+            <td class="col-domain">Amazon Macie Not Enabled</td>
+            <td class="finding-details">Amazon Macie is not enabled. S3 buckets containing training data and KB data sources are not being scanned for PII/sensitive data.</td>
+            <td class="resolution-text">1. Enable Amazon Macie in all regions where AI/ML data is stored.
+2. Create Macie classification jobs for training data and KB buckets.
+3. Configure Macie findings to route to Security Hub and SNS.
+4. Remediate PII findings before using data for model training.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/macie/latest/user/what-is-macie.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-45</code></td>
+            <td class="col-domain">No Guardrails — PII Filters Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with PII/sensitive information filters.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-sensitive-filters.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-46</code></td>
+            <td class="col-domain">No AI/ML Data Buckets Identified</td>
+            <td class="finding-details">No S3 buckets with AI/ML naming found.</td>
+            <td class="resolution-text">Tag AI/ML data buckets with data-classification labels.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-tagging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-47</code></td>
+            <td class="col-domain">No Guardrails — Grounding Threshold Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with contextual grounding checks.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-grounding.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-48</code></td>
+            <td class="col-domain">Active Knowledge Bases for RAG Present</td>
+            <td class="finding-details">Found 1 active Knowledge Base(s) for RAG grounding.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/knowledge-base.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-49</code></td>
+            <td class="col-domain">ADVISORY: Hallucination Disclaimer — Manual Review Required</td>
+            <td class="finding-details">Application-level hallucination disclaimers cannot be verified via AWS APIs. Manual review required.</td>
+            <td class="resolution-text">1. Add disclaimers to GenAI outputs: 'AI-generated content may contain errors. Verify with authoritative sources before acting.'
+2. Implement post-processing to append disclaimers.
+3. Test disclaimer presence in QA before production.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-50</code></td>
+            <td class="col-domain">No Guardrails With Relevance Grounding Filters</td>
+            <td class="finding-details">No guardrails have RELEVANCE contextual grounding filters. Without relevance filters, responses that are off-topic or unrelated to the user query will not be blocked, increasing hallucination risk in RAG-based FinServ applications.</td>
+            <td class="resolution-text">Enable the RELEVANCE contextual grounding filter in Bedrock Guardrails with a threshold of ≥0.7 to block responses that are not relevant to the user query. Also enable the GROUNDING filter (≥0.7) to block responses not supported by the retrieved source context.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-grounding.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-51</code></td>
+            <td class="col-domain">No Guardrails — Prompt Attack Filters Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with prompt attack filters.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-52</code></td>
+            <td class="col-domain">Bedrock Lambda Functions on Current Runtimes</td>
+            <td class="finding-details">All 16 Bedrock Lambda function(s) use current runtimes.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/lambda/latest/dg/runtimes-update.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-53</code></td>
+            <td class="col-domain">No WAF Web ACLs — Injection Rules Not Applicable</td>
+            <td class="finding-details">No regional WAF Web ACLs found.</td>
+            <td class="resolution-text">Create WAF Web ACLs with injection protection rules (see FS-01).</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-baseline.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-54</code></td>
+            <td class="col-domain">ADVISORY: Penetration Testing — Manual Review Required</td>
+            <td class="finding-details">Penetration testing evidence cannot be verified via AWS APIs. Manual review required to confirm GenAI applications have been tested.</td>
+            <td class="resolution-text">1. Conduct penetration testing of GenAI applications at least annually and before major releases.
+2. Include AI-specific test cases: prompt injection, jailbreak, indirect (cross-domain) injection, system-prompt leakage, and data-extraction attempts.
+3. Consider AWS Security Agent for on-demand, AI-driven penetration testing (GA March 2026; available in US East N. Virginia, US West Oregon, Europe Ireland, Europe Frankfurt, Asia Pacific Sydney, Asia Pacific Tokyo, with cross-account shared-VPC testing via AWS RAM). Open-source tools such as Garak or PyRIT and manual red-teaming are complementary options. Verify current regional availability on the AWS Security Agent page before relying on it.
+4. Document findings and remediation for regulatory examination, and tag tested resources with a last-pentest-date for audit trail.
+5. For DORA compliance, include GenAI in TLPT (Threat-Led Penetration Testing) scope.</td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/security/penetration-testing/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-55</code></td>
+            <td class="col-domain">No Output Validation Functions Found</td>
+            <td class="finding-details">No Lambda functions with output validation/sanitization naming found. GenAI outputs may be passed directly to downstream systems without validation.</td>
+            <td class="resolution-text">1. Implement output validation Lambda functions in GenAI pipelines.
+2. Validate output schema, length, and content before downstream use.
+3. Sanitize outputs before rendering in web UIs (XSS prevention).
+4. Encode outputs appropriately for the target context (HTML, SQL, JSON).</td>
+            <td class="reference-cell"><a href="https://genai.owasp.org/llm-top-10/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-56</code></td>
+            <td class="col-domain">No WAF ACLs — XSS Prevention Not Applicable</td>
+            <td class="finding-details">No regional WAF Web ACLs found.</td>
+            <td class="resolution-text">Create WAF ACLs with XSS prevention rules.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-baseline.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-57</code></td>
+            <td class="col-domain">ADVISORY: Output Encoding — Manual Review Required</td>
+            <td class="finding-details">Output encoding practices cannot be verified via AWS APIs. Manual code review required.</td>
+            <td class="resolution-text">1. HTML-encode GenAI outputs before rendering in web UIs.
+2. Use parameterized queries when GenAI output is used in database operations.
+3. JSON-encode outputs before embedding in JavaScript contexts.
+4. Validate output length and format before passing to downstream APIs.</td>
+            <td class="reference-cell"><a href="https://genai.owasp.org/llm-top-10/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-58</code></td>
+            <td class="col-domain">ADVISORY: Output Schema Validation — Manual Review Required</td>
+            <td class="finding-details">Found 0 Lambda function(s) whose names suggest schema/validation handling. Structured-output / JSON-schema validation of GenAI responses is an application-layer control that cannot be verified automatically — manual review required.</td>
+            <td class="resolution-text">1. Use Bedrock structured output (response schemas) where supported.
+2. Implement JSON schema validation on Lambda output processors.
+3. Reject malformed outputs and return safe error responses.
+4. Log schema validation failures to CloudWatch for monitoring.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/inference-parameters.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-59</code></td>
+            <td class="col-domain">No Guardrails — Topic Allowlist Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with topic policies to restrict off-topic responses.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-60</code></td>
+            <td class="col-domain">ADVISORY: Contextual Grounding for Off-Topic Prevention</td>
+            <td class="finding-details">Contextual grounding for off-topic prevention is covered by guardrail grounding checks (FS-47) and RAG configuration (FS-48). Additionally verify system prompts explicitly scope the assistant's role.</td>
+            <td class="resolution-text">1. Include explicit scope instructions in system prompts.
+2. Use Bedrock Guardrails relevance grounding filter.
+3. Test with off-topic prompts in QA to verify rejection behavior.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-grounding.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-61</code></td>
+            <td class="col-domain">COULD NOT ASSESS: Knowledge Base Sync Schedule Check</td>
+            <td class="finding-details">This check could not be completed (error: An error occurred (AccessDeniedException) when calling the ListSchedules operation: User: arn:aws:sts::472057511786:assumed-role/aiml-security-mgmt-FinServSecurityAssessmentFunctio-pwj9by1swQWa/aiml-security-aiml-security-mgmt-FinServAssessment is not authorized to perform: scheduler:ListSchedules on resource: arn:aws:scheduler:us-east-1:472057511786:schedule/*/* because no identity-based policy allows the scheduler:ListSchedules action). The most common cause is a missing IAM permission for the assessment role; it may also indicate an unsupported region or an outdated botocore. This control was NOT assessed — verify the role's permissions and re-run, and assess this control manually until resolved.</td>
+            <td class="resolution-text">1. Confirm the assessment role grants the actions this check requires (see the documented IAM permission set in the README).
+2. Confirm the service/feature is supported in the assessed region.
+3. Ensure botocore meets the version floor in requirements.txt.
+4. Re-run the assessment; assess this control manually until it succeeds.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/troubleshoot_access-denied.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-62</code></td>
+            <td class="col-domain">ADVISORY: Data Currency Disclaimer — Manual Review Required</td>
+            <td class="finding-details">Data currency disclaimers cannot be verified via AWS APIs. Manual review required.</td>
+            <td class="resolution-text">1. Add data currency disclaimers to GenAI outputs: 'Information based on data current as of [KB last sync date].'
+2. Expose KB last sync timestamp in application responses.
+3. Alert users when KB data is older than defined threshold.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/knowledge-base-ingest.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-63</code></td>
+            <td class="col-domain">Foundation Model Lifecycle Management</td>
+            <td class="finding-details">No legacy models detected. 11 lifecycle-related Config rule(s) found.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-lifecycle.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-65</code></td>
+            <td class="col-domain">KB Data Source Buckets Missing S3 Event Notifications</td>
+            <td class="finding-details">The following KB data-source S3 buckets have no event notifications configured. Unauthorized document modifications will not be detected in real time:
+- sat2-prowler-2025-prowlerfindingsbucket-wc1k0mza7lpk</td>
+            <td class="resolution-text">1. Enable Amazon EventBridge notifications on each KB data-source S3 bucket.
+2. Create an EventBridge rule to route s3:ObjectCreated, s3:ObjectRemoved, and s3:ObjectModified events to an SNS topic or Lambda for alerting.
+3. Integrate alerts into your security incident response workflow.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/EventBridge.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-66</code></td>
+            <td class="col-domain">No AgentCore Runtimes Found</td>
+            <td class="finding-details">No AgentCore runtimes found; identity propagation check not applicable.</td>
+            <td class="resolution-text">If using AgentCore, configure token propagation so end-user identities are forwarded to tool services.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security-authorization.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-67</code></td>
+            <td class="col-domain">Agent Action-Group Lambdas May Lack Transaction Thresholds</td>
+            <td class="finding-details">The following agent action-group Lambda functions have no environment variables whose names suggest transaction-value threshold configuration (this is a best-effort heuristic — a threshold enforced in code or in an AgentCore Policy Engine rule would not be detected here, so treat this as a prompt for manual verification rather than a definitive gap). Without explicit limits, agents could initiate unbounded financial transactions:
+- aiml-security-aiml-security-mgmt-FinServAssessment
+- resco-aiml-BedrockAssessment
+- resco-aiml-AgentCoreAssessment
+- aiml-security-aiml-security-mgmt-AgentCoreAssessment
+- aiml-security-aiml-security-mgmt-BedrockAssessment</td>
+            <td class="resolution-text">1. Add transaction-value threshold environment variables (e.g., MAX_TRANSACTION_AMOUNT) to each agent action-group Lambda.
+2. Implement threshold enforcement logic in the Lambda handler.
+3. Configure AgentCore Policy Engine rules to cap financial transaction amounts.
+4. Route transactions exceeding thresholds to a human-in-the-loop approval step.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-engine.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-68</code></td>
+            <td class="col-domain">API Gateway Request Body Size Limits — Not Applicable</td>
+            <td class="finding-details">No API Gateway REST APIs and no regional WAF Web ACLs were found in this region. There is no input-payload surface to assess for body-size limits.</td>
+            <td class="resolution-text">If GenAI endpoints are fronted by API Gateway or WAF in another region, run the assessment there. Otherwise no action is required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/waf/latest/developerguide/waf-rule-statement-type-size-constraint.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-69</code></td>
+            <td class="col-domain">Prompt Input Validation Functions Present</td>
+            <td class="finding-details">Found 2 Lambda function(s) with input validation/sanitization naming patterns: aiml-security-aiml-security-mgmt-CleanupBucket, resco-aiml-CleanupBucket.</td>
+            <td class="resolution-text">Review these functions to confirm they cover: special-character stripping, format validation, size limits, and injection-sequence detection.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-injection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>FS-00</code></td>
+            <td class="col-domain">FinServ Regional Scope Not Applicable</td>
+            <td class="finding-details">No regional Bedrock, AgentCore, or SageMaker resources were found in eu-west-1; FinServ GenAI risk checks were not applied to this region.</td>
+            <td class="resolution-text">No action required unless GenAI workloads are expected in this region.</td>
+            <td class="reference-cell"><a href="https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>FS-00</code></td>
+            <td class="col-domain">FinServ Regional Scope Not Applicable</td>
+            <td class="finding-details">No regional Bedrock, AgentCore, or SageMaker resources were found in ap-southeast-2; FinServ GenAI risk checks were not applied to this region.</td>
+            <td class="resolution-text">No action required unless GenAI workloads are expected in this region.</td>
+            <td class="reference-cell"><a href="https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-06</code></td>
+            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-07</code></td>
+            <td class="col-domain">Bedrock Prompt Management Check</td>
+            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
+            <td class="resolution-text">Implement Prompt Management to:
+1. Create and version your prompts
+2. Test different prompt variants
+3. Share prompts across your organization
+4. Maintain consistent prompt templates</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-08</code></td>
+            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
+            <td class="finding-details">No Bedrock agents found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-09</code></td>
+            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::472057511786:assumed-role/aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b/aiml-security-aiml-security-mgmt-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:472057511786:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-10</code></td>
+            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
+            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
+            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-11</code></td>
+            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
+            <td class="finding-details">No custom/fine-tuned models found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-12</code></td>
+            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
+            <td class="finding-details">Model invocation logging to S3 is not configured</td>
+            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-13</code></td>
+            <td class="col-domain">Bedrock Flows Guardrails Check</td>
+            <td class="finding-details">No Bedrock Flows found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-06</code></td>
+            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-07</code></td>
+            <td class="col-domain">Bedrock Prompt Management Check</td>
+            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
+            <td class="resolution-text">Implement Prompt Management to:
+1. Create and version your prompts
+2. Test different prompt variants
+3. Share prompts across your organization
+4. Maintain consistent prompt templates</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-08</code></td>
+            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
+            <td class="finding-details">No Bedrock agents found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-09</code></td>
+            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::472057511786:assumed-role/aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b/aiml-security-aiml-security-mgmt-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:472057511786:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-10</code></td>
+            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
+            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
+            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-11</code></td>
+            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
+            <td class="finding-details">No custom/fine-tuned models found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-12</code></td>
+            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
+            <td class="finding-details">Model invocation logging to S3 is not configured</td>
+            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-13</code></td>
+            <td class="col-domain">Bedrock Flows Guardrails Check</td>
+            <td class="finding-details">No Bedrock Flows found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-02</code></td>
+            <td class="col-domain">AgentCore IAM Full Access Check</td>
+            <td class="finding-details">No roles with overly permissive AgentCore access found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-03</code></td>
+            <td class="col-domain">AgentCore Stale Access</td>
+            <td class="finding-details">The following principals have not accessed AgentCore in 60+ days: role 'resco-aiml-security-mgmt-AgentCoreSecurityAssessmen-JrbYHkz9UslU' (62 days)</td>
+            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-03</code></td>
+            <td class="col-domain">AgentCore Unused Permissions</td>
+            <td class="finding-details">The following principals have AgentCore permissions but have never accessed the service: role 'AIMLSecurityMemberRole', role 'ReSCOAIMLMemberRole'</td>
+            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-09</code></td>
+            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
+            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
+            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Observability Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-05</code></td>
+            <td class="col-domain">AgentCore Encryption Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
+            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Configuration Check</td>
+            <td class="finding-details">No Memory resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-13</code></td>
+            <td class="col-domain">AgentCore Gateway Configuration Check</td>
+            <td class="finding-details">No Gateway resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-08</code></td>
+            <td class="col-domain">AgentCore VPC Endpoints Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-10</code></td>
+            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
+            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-11</code></td>
+            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
+            <td class="finding-details">No Policy Engines found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-12</code></td>
+            <td class="col-domain">AgentCore Gateway Encryption Check</td>
+            <td class="finding-details">No Gateways found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Observability Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-05</code></td>
+            <td class="col-domain">AgentCore Encryption Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
+            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Configuration Check</td>
+            <td class="finding-details">No Memory resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-13</code></td>
+            <td class="col-domain">AgentCore Gateway Configuration Check</td>
+            <td class="finding-details">No Gateway resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-08</code></td>
+            <td class="col-domain">AgentCore VPC Endpoints Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-10</code></td>
+            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
+            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-11</code></td>
+            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
+            <td class="finding-details">No Policy Engines found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-12</code></td>
+            <td class="col-domain">AgentCore Gateway Encryption Check</td>
+            <td class="finding-details">No Gateways found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-01</code></td>
+            <td class="col-domain">SageMaker Internet Access Check</td>
+            <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-03</code></td>
+            <td class="col-domain">Data Protection Check</td>
+            <td class="finding-details">No SageMaker resources found to check for data protection</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-04</code></td>
+            <td class="col-domain">GuardDuty Enabled</td>
+            <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Model Registry Issue</td>
+            <td class="finding-details">No model package groups found</td>
+            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Feature Store Issue</td>
+            <td class="finding-details">No feature groups found</td>
+            <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Pipelines Issue</td>
+            <td class="finding-details">No ML pipelines found</td>
+            <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-06</code></td>
+            <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
+            <td class="finding-details">No SageMaker Clarify jobs found</td>
+            <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-07</code></td>
+            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
+            <td class="finding-details">No Model Monitor schedules found</td>
+            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-08</code></td>
+            <td class="col-domain">Model Registry Registry Not Used</td>
+            <td class="finding-details">Model Registry is not being utilized</td>
+            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-09</code></td>
+            <td class="col-domain">SageMaker Notebook Root Access Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-10</code></td>
+            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-11</code></td>
+            <td class="col-domain">SageMaker Model Network Isolation Check</td>
+            <td class="finding-details">No models found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-12</code></td>
+            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
+            <td class="finding-details">No InService endpoints found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-13</code></td>
+            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
+            <td class="finding-details">No monitoring schedules found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-14</code></td>
+            <td class="col-domain">SageMaker Model Repository Access Check</td>
+            <td class="finding-details">No models found or all use default Platform access</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-15</code></td>
+            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
+            <td class="finding-details">No feature groups with offline stores found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-16</code></td>
+            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
+            <td class="finding-details">No data quality job definitions found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-17</code></td>
+            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
+            <td class="finding-details">No processing jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-18</code></td>
+            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
+            <td class="finding-details">No transform jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-19</code></td>
+            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
+            <td class="finding-details">No hyperparameter tuning jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-20</code></td>
+            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
+            <td class="finding-details">No compilation jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-21</code></td>
+            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
+            <td class="finding-details">No AutoML jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-22</code></td>
+            <td class="col-domain">Model Approval Workflow Check</td>
+            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
+            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-23</code></td>
+            <td class="col-domain">Model Drift Detection Check</td>
+            <td class="finding-details">No InService endpoints found to monitor.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-24</code></td>
+            <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
+            <td class="finding-details">No InService endpoints found.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-25</code></td>
+            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
+            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
+            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker IAM Permissions Check</td>
+            <td class="finding-details">No issues found with IAM permissions and no stale access detected</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-01</code></td>
+            <td class="col-domain">SageMaker Internet Access Check</td>
+            <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-03</code></td>
+            <td class="col-domain">Data Protection Check</td>
+            <td class="finding-details">No SageMaker resources found to check for data protection</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-04</code></td>
+            <td class="col-domain">GuardDuty Enabled</td>
+            <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Model Registry Issue</td>
+            <td class="finding-details">No model package groups found</td>
+            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Feature Store Issue</td>
+            <td class="finding-details">No feature groups found</td>
+            <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Pipelines Issue</td>
+            <td class="finding-details">No ML pipelines found</td>
+            <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-06</code></td>
+            <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
+            <td class="finding-details">No SageMaker Clarify jobs found</td>
+            <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-07</code></td>
+            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
+            <td class="finding-details">No Model Monitor schedules found</td>
+            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-08</code></td>
+            <td class="col-domain">Model Registry Registry Not Used</td>
+            <td class="finding-details">Model Registry is not being utilized</td>
+            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-09</code></td>
+            <td class="col-domain">SageMaker Notebook Root Access Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-10</code></td>
+            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-11</code></td>
+            <td class="col-domain">SageMaker Model Network Isolation Check</td>
+            <td class="finding-details">No models found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-12</code></td>
+            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
+            <td class="finding-details">No InService endpoints found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-13</code></td>
+            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
+            <td class="finding-details">No monitoring schedules found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-14</code></td>
+            <td class="col-domain">SageMaker Model Repository Access Check</td>
+            <td class="finding-details">No models found or all use default Platform access</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-15</code></td>
+            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
+            <td class="finding-details">No feature groups with offline stores found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-16</code></td>
+            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
+            <td class="finding-details">No data quality job definitions found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-17</code></td>
+            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
+            <td class="finding-details">No processing jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-18</code></td>
+            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
+            <td class="finding-details">No transform jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-19</code></td>
+            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
+            <td class="finding-details">No hyperparameter tuning jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-20</code></td>
+            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
+            <td class="finding-details">No compilation jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-21</code></td>
+            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
+            <td class="finding-details">No AutoML jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-22</code></td>
+            <td class="col-domain">Model Approval Workflow Check</td>
+            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
+            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-23</code></td>
+            <td class="col-domain">Model Drift Detection Check</td>
+            <td class="finding-details">No InService endpoints found to monitor.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-24</code></td>
+            <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
+            <td class="finding-details">No InService endpoints found.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-25</code></td>
+            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
+            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
+            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-00</code></td>
+            <td class="col-domain">FinServ Regional Scope Not Applicable</td>
+            <td class="finding-details">No regional Bedrock, AgentCore, or SageMaker resources were found in us-east-1; FinServ GenAI risk checks were not applied to this region.</td>
+            <td class="resolution-text">No action required unless GenAI workloads are expected in this region.</td>
+            <td class="reference-cell"><a href="https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>FS-00</code></td>
+            <td class="col-domain">FinServ Regional Scope Not Applicable</td>
+            <td class="finding-details">No regional Bedrock, AgentCore, or SageMaker resources were found in eu-west-1; FinServ GenAI risk checks were not applied to this region.</td>
+            <td class="resolution-text">No action required unless GenAI workloads are expected in this region.</td>
+            <td class="reference-cell"><a href="https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>FS-00</code></td>
+            <td class="col-domain">FinServ Regional Scope Not Applicable</td>
+            <td class="finding-details">No regional Bedrock, AgentCore, or SageMaker resources were found in ap-southeast-2; FinServ GenAI risk checks were not applied to this region.</td>
+            <td class="resolution-text">No action required unless GenAI workloads are expected in this region.</td>
+            <td class="reference-cell"><a href="https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-06</code></td>
+            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-07</code></td>
+            <td class="col-domain">Bedrock Prompt Management Check</td>
+            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
+            <td class="resolution-text">Implement Prompt Management to:
+1. Create and version your prompts
+2. Test different prompt variants
+3. Share prompts across your organization
+4. Maintain consistent prompt templates</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-08</code></td>
+            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
+            <td class="finding-details">No Bedrock agents found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-09</code></td>
+            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::230266523520:assumed-role/aiml-security-23026652352-BedrockSecurityAssessment-UZzmVN1xrMwf/aiml-security-aiml-security-230266523520-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:230266523520:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-10</code></td>
+            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
+            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
+            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-11</code></td>
+            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
+            <td class="finding-details">No custom/fine-tuned models found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-12</code></td>
+            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
+            <td class="finding-details">Model invocation logging to S3 is not configured</td>
+            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-13</code></td>
+            <td class="col-domain">Bedrock Flows Guardrails Check</td>
+            <td class="finding-details">No Bedrock Flows found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-01</code></td>
+            <td class="col-domain">SageMaker Internet Access Check</td>
+            <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-03</code></td>
+            <td class="col-domain">Data Protection Check</td>
+            <td class="finding-details">No SageMaker resources found to check for data protection</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-04</code></td>
+            <td class="col-domain">GuardDuty Enabled</td>
+            <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Model Registry Issue</td>
+            <td class="finding-details">No model package groups found</td>
+            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Feature Store Issue</td>
+            <td class="finding-details">No feature groups found</td>
+            <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Pipelines Issue</td>
+            <td class="finding-details">No ML pipelines found</td>
+            <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-06</code></td>
+            <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
+            <td class="finding-details">No SageMaker Clarify jobs found</td>
+            <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-07</code></td>
+            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
+            <td class="finding-details">No Model Monitor schedules found</td>
+            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-08</code></td>
+            <td class="col-domain">Model Registry Registry Not Used</td>
+            <td class="finding-details">Model Registry is not being utilized</td>
+            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-09</code></td>
+            <td class="col-domain">SageMaker Notebook Root Access Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-10</code></td>
+            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-11</code></td>
+            <td class="col-domain">SageMaker Model Network Isolation Check</td>
+            <td class="finding-details">No models found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-12</code></td>
+            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
+            <td class="finding-details">No InService endpoints found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-13</code></td>
+            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
+            <td class="finding-details">No monitoring schedules found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-14</code></td>
+            <td class="col-domain">SageMaker Model Repository Access Check</td>
+            <td class="finding-details">No models found or all use default Platform access</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-15</code></td>
+            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
+            <td class="finding-details">No feature groups with offline stores found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-16</code></td>
+            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
+            <td class="finding-details">No data quality job definitions found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-17</code></td>
+            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
+            <td class="finding-details">No processing jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-18</code></td>
+            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
+            <td class="finding-details">No transform jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-19</code></td>
+            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
+            <td class="finding-details">No hyperparameter tuning jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-20</code></td>
+            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
+            <td class="finding-details">No compilation jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-21</code></td>
+            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
+            <td class="finding-details">No AutoML jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-22</code></td>
+            <td class="col-domain">Model Approval Workflow Check</td>
+            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
+            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-23</code></td>
+            <td class="col-domain">Model Drift Detection Check</td>
+            <td class="finding-details">No InService endpoints found to monitor.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-24</code></td>
+            <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
+            <td class="finding-details">No InService endpoints found.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-25</code></td>
+            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
+            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
+            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-01</code></td>
+            <td class="col-domain">AmazonBedrockFullAccess role check</td>
+            <td class="finding-details">No roles found with AmazonBedrockFullAccess policy</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-all
+https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">No identities found with overly permissive marketplace subscription access</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AIMLSecurityMemberRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AwsSecurityAudit' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AWSServiceRoleForAuditManager' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AWSServiceRoleForSupport' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CloudSecAuditRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CloudSeerTrustedServiceRole' last accessed Bedrock on 2025-08-18</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IibsAdminAccess-DO-NOT-DELETE' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'InternalAuditInternal' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'ProwlerMemberRole' last accessed Bedrock on 2026-03-10</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'resco-aiml-security-23026-BedrockSecurityAssessment-xNwSsmlzindY' last accessed Bedrock on 2026-04-18</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'ReSCOAIMLMemberRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-06</code></td>
+            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-07</code></td>
+            <td class="col-domain">Bedrock Prompt Management Check</td>
+            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
+            <td class="resolution-text">Implement Prompt Management to:
+1. Create and version your prompts
+2. Test different prompt variants
+3. Share prompts across your organization
+4. Maintain consistent prompt templates</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-08</code></td>
+            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
+            <td class="finding-details">No Bedrock agents found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-09</code></td>
+            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::230266523520:assumed-role/aiml-security-23026652352-BedrockSecurityAssessment-UZzmVN1xrMwf/aiml-security-aiml-security-230266523520-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:230266523520:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-10</code></td>
+            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
+            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
+            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-11</code></td>
+            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
+            <td class="finding-details">No custom/fine-tuned models found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-12</code></td>
+            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
+            <td class="finding-details">Model invocation logging to S3 is not configured</td>
+            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-13</code></td>
+            <td class="col-domain">Bedrock Flows Guardrails Check</td>
+            <td class="finding-details">No Bedrock Flows found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-02</code></td>
+            <td class="col-domain">AgentCore IAM Full Access Check</td>
+            <td class="finding-details">No roles with overly permissive AgentCore access found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-03</code></td>
+            <td class="col-domain">AgentCore Stale Access</td>
+            <td class="finding-details">The following principals have not accessed AgentCore in 60+ days: role 'resco-aiml-security-23026-AgentCoreSecurityAssessme-2AEt2MTxg4AU' (62 days)</td>
+            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-03</code></td>
+            <td class="col-domain">AgentCore Unused Permissions</td>
+            <td class="finding-details">The following principals have AgentCore permissions but have never accessed the service: role 'AIMLSecurityMemberRole', role 'ReSCOAIMLMemberRole'</td>
+            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-09</code></td>
+            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
+            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
+            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Observability Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-05</code></td>
+            <td class="col-domain">AgentCore Encryption Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
+            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Configuration Check</td>
+            <td class="finding-details">No Memory resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-13</code></td>
+            <td class="col-domain">AgentCore Gateway Configuration Check</td>
+            <td class="finding-details">No Gateway resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-08</code></td>
+            <td class="col-domain">AgentCore VPC Endpoints Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-10</code></td>
+            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
+            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-11</code></td>
+            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
+            <td class="finding-details">No Policy Engines found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-12</code></td>
+            <td class="col-domain">AgentCore Gateway Encryption Check</td>
+            <td class="finding-details">No Gateways found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Observability Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-05</code></td>
+            <td class="col-domain">AgentCore Encryption Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
+            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Configuration Check</td>
+            <td class="finding-details">No Memory resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-13</code></td>
+            <td class="col-domain">AgentCore Gateway Configuration Check</td>
+            <td class="finding-details">No Gateway resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-08</code></td>
+            <td class="col-domain">AgentCore VPC Endpoints Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-10</code></td>
+            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
+            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-11</code></td>
+            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
+            <td class="finding-details">No Policy Engines found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-12</code></td>
+            <td class="col-domain">AgentCore Gateway Encryption Check</td>
+            <td class="finding-details">No Gateways found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
-            <td class="finding-details">Model invocation logging is not enabled. This limits your ability to track and audit model usage.</td>
-            <td class="resolution-text">Enable model invocation logging to collect invocation logs, model input data, and model output data. Configure logging to deliver to Amazon S3, CloudWatch Logs, or both for comprehensive monitoring.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-06</code></td>
+            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-07</code></td>
+            <td class="col-domain">Bedrock Prompt Management Check</td>
+            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
+            <td class="resolution-text">Implement Prompt Management to:
+1. Create and version your prompts
+2. Test different prompt variants
+3. Share prompts across your organization
+4. Maintain consistent prompt templates</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-08</code></td>
+            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
+            <td class="finding-details">No Bedrock agents found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-09</code></td>
+            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::230266523520:assumed-role/aiml-security-23026652352-BedrockSecurityAssessment-UZzmVN1xrMwf/aiml-security-aiml-security-230266523520-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:230266523520:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-10</code></td>
+            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
+            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
+            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-11</code></td>
+            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
+            <td class="finding-details">No custom/fine-tuned models found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-12</code></td>
+            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
+            <td class="finding-details">Model invocation logging to S3 is not configured</td>
+            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-13</code></td>
+            <td class="col-domain">Bedrock Flows Guardrails Check</td>
+            <td class="finding-details">No Bedrock Flows found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr></tbody></table></div></div>
+            </section>
+            <section id="risk" class="section">
+                <div class="section-title"><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><polyline points="22 12 18 12 15 21 9 3 6 12 2 12"/></svg>Risk Distribution</div>
+                <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-bottom: 12px; text-transform: uppercase; letter-spacing: 0.5px;">Pass Rate by Severity</h4>
+                <div class="metrics" style="margin-bottom: 32px;">
+                    <div class="metric danger"><div class="metric-label"><span class="severity high" style="padding: 2px 6px; font-size: 10px;">HIGH</span></div><div class="metric-value">14.8%</div><div class="metric-sub">9 of 61 checks passed</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 14.8%; height: 100%; background: var(--danger);"></div></div></div>
+                    <div class="metric warning"><div class="metric-label"><span class="severity medium" style="padding: 2px 6px; font-size: 10px;">MEDIUM</span></div><div class="metric-value">20.5%</div><div class="metric-sub">39 of 190 checks passed</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 20.5%; height: 100%; background: var(--warning);"></div></div></div>
+                    <div class="metric" style="border-color: var(--accent);"><div class="metric-label"><span class="severity low" style="padding: 2px 6px; font-size: 10px;">LOW</span></div><div class="metric-value" style="color: var(--accent);">52.9%</div><div class="metric-sub">9 of 17 checks passed</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 52.9%; height: 100%; background: var(--accent);"></div></div></div>
+                    <div class="metric"><div class="metric-label">Overall</div><div class="metric-value">21.3%</div><div class="metric-sub">57 of 268 actionable checks</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 21.3%; height: 100%; background: var(--text-3);"></div></div></div>
+                </div>
+                <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-bottom: 12px; text-transform: uppercase; letter-spacing: 0.5px;">Risk by Account</h4>
+                <div class="metrics" style="margin-bottom: 32px;"><div class="metric danger" style="border-left: 3px solid var(--danger);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">193047247167</div><div class="metric-value">146</div><div class="metric-sub"><span style="color: var(--danger);">42 High</span> · <span style="color: var(--warning);">101 Med</span> · <span style="color: var(--accent);">3 Low</span></div></div><div class="metric warning" style="border-left: 3px solid var(--warning);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">230266523520</div><div class="metric-value">14</div><div class="metric-sub"><span style="color: var(--danger);">0 High</span> · <span style="color: var(--warning);">14 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div><div class="metric danger" style="border-left: 3px solid var(--danger);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">472057511786</div><div class="metric-value">45</div><div class="metric-sub"><span style="color: var(--danger);">10 High</span> · <span style="color: var(--warning);">34 Med</span> · <span style="color: var(--accent);">1 Low</span></div></div></div>
+                <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-bottom: 12px; text-transform: uppercase; letter-spacing: 0.5px;">Risk by Region</h4>
+                <div class="metrics" style="margin-bottom: 32px;"><div class="metric " style="border-left: 3px solid var(--success);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">ap-southeast-2</div><div class="metric-value">0</div><div class="metric-sub"><span style="color: var(--danger);">0 High</span> · <span style="color: var(--warning);">0 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div><div class="metric " style="border-left: 3px solid var(--success);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">eu-west-1</div><div class="metric-value">0</div><div class="metric-sub"><span style="color: var(--danger);">0 High</span> · <span style="color: var(--warning);">0 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div><div class="metric danger" style="border-left: 3px solid var(--danger);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">us-east-1</div><div class="metric-value">80</div><div class="metric-sub"><span style="color: var(--danger);">28 High</span> · <span style="color: var(--warning);">48 Med</span> · <span style="color: var(--accent);">4 Low</span></div></div></div>
+                <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-bottom: 12px; text-transform: uppercase; letter-spacing: 0.5px;">Findings by Service</h4>
+                <div class="metrics">
+                    <div class="metric"><div class="metric-label"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"/></svg></span> Bedrock</div><div class="metric-value">209</div><div class="metric-sub">107 Failed · 3 Passed</div></div>
+                    <div class="metric"><div class="metric-label"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"/></svg></span> SageMaker</div><div class="metric-value">252</div><div class="metric-sub">10 Failed · 37 Passed</div></div>
+                    <div class="metric"><div class="metric-label"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"/></svg></span> AgentCore</div><div class="metric-value">123</div><div class="metric-sub">37 Failed · 2 Passed</div></div>
+                    <div class="metric"><div class="metric-label"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#7C3AED" width="80" height="80"/><path fill="#FFF" d="M40 14 L66 26 L66 31 L14 31 L14 26 Z M20 35 h6 v23 h-6 z M37 35 h6 v23 h-6 z M54 35 h6 v23 h-6 z M14 62 h52 v5 h-52 z"/></svg></span> Financial Services Risk</div><div class="metric-value">139</div><div class="metric-sub">51 Failed · 15 Passed</div></div>
+                </div>
+            </section>
+            <section id="bedrock" class="section">
+                <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"/></svg></span>Amazon Bedrock Findings</div>
+                <div class="filter-bar">
+                    <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="bedrockSearchInput"></div>
+                    <div class="filter-group"><label>Account</label><select id="bedrockAccountFilter"><option value="">All Accounts</option><option value="193047247167">193047247167</option><option value="230266523520">230266523520</option><option value="472057511786">472057511786</option></select></div>
+                    <div class="filter-group"><label for="bedrockRegionFilter">Region</label><select id="bedrockRegionFilter"><option value="">All Regions</option><option value="ap-southeast-2">ap-southeast-2</option><option value="eu-west-1">eu-west-1</option><option value="us-east-1">us-east-1</option><option value="Global">Global</option></select></div>
+                    <div class="filter-group"><label>Severity</label><select id="bedrockSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
+                    <div class="filter-group"><label>Status</label><select id="bedrockStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
+                    <button class="btn btn-reset" id="bedrockResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
+                </div>
+                <div class="card"><div class="table-wrap"><table id="bedrockTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-01</code></td>
+            <td class="col-domain">AmazonBedrockFullAccess role check</td>
+            <td class="finding-details">Role 'IDPSageMakerCfnStack-SageMakerExecutionRole-aqrHz6dVkoHC' has AmazonBedrockFullAccess policy attached</td>
+            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-all
+https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-01</code></td>
+            <td class="col-domain">AmazonBedrockFullAccess role check</td>
+            <td class="finding-details">Role 'LLMEvaluationPromptfoo-SageMakerExecutionRole-M69xCHJ9c3LU' has AmazonBedrockFullAccess policy attached</td>
+            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-all
+https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-01</code></td>
+            <td class="col-domain">AmazonBedrockFullAccess role check</td>
+            <td class="finding-details">Role 'myAskMeAnything-role-kmsizqwf' has AmazonBedrockFullAccess policy attached</td>
+            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-all
+https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-a6ddf3fc76' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-cdk_agent_core'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-ed660add8b' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-neoCyan_Agent'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_knnc9' has overly permissive marketplace subscription access through policy 'AmazonBedrockFoundationModelPolicyForKnowledgeBase_knnc9'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_qxqw2' has overly permissive marketplace subscription access through policy 'AmazonBedrockFoundationModelPolicyForKnowledgeBase_qxqw2'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20250525T153161' has overly permissive marketplace subscription access through policy 'AmazonBedrockLimitedAccess'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">Role 'IDPSageMakerCfnStack-SageMakerExecutionRole-aqrHz6dVkoHC' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">Role 'LLMEvaluationPromptfoo-SageMakerExecutionRole-M69xCHJ9c3LU' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">Role 'myAskMeAnything-role-kmsizqwf' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">User 'BedrockAPIKey-20pp' has overly permissive marketplace subscription access through policy 'AmazonBedrockLimitedAccess'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">User 'BedrockAPIKey-yhc3' has overly permissive marketplace subscription access through policy 'AmazonBedrockLimitedAccess'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">User 'BedrockClientUser' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role '193047247167-us-east-1-kb-bedrock-service-role' last accessed Bedrock on 2025-12-22</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-05</code></td>
-            <td class="col-domain">Bedrock Guardrails Check</td>
-            <td class="finding-details">No Amazon Bedrock Guardrails are configured. This may expose your application to potential risks such as harmful content, sensitive information disclosure, or hallucinations.</td>
-            <td class="resolution-text">Configure Bedrock Guardrails to implement safeguards such as:
-- Content filters to block harmful content
-- Denied topics to prevent undesirable discussions
-- Sensitive information filters to protect PII
-- Contextual grounding checks to prevent hallucinations</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role '193047247167-us-east-1-kb-setup-function-role' last accessed Bedrock on 2025-12-22</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-06</code></td>
-            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
-            <td class="finding-details">CloudTrail is properly configured to log Bedrock API activity in trails: aws-controltower-BaselineCloudTrail</td>
-            <td class="resolution-text">No action required. Continue monitoring CloudTrail logs for Bedrock activity.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'agentcore-wildrydes_gateway_role_ab3991f6-role' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-07</code></td>
-            <td class="col-domain">Bedrock Prompt Management Check</td>
-            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
-            <td class="resolution-text">Implement Prompt Management to:
-1. Create and version your prompts
-2. Test different prompt variants
-3. Share prompts across your organization
-4. Maintain consistent prompt templates</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AgentCoreEvalsSDK-us-east-1-d04ba7b68b' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-08</code></td>
-            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
-            <td class="finding-details">No Bedrock agents found in the account</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AIMLSecurityMemberRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-09</code></td>
-            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Error during check: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::555555555555:assumed-role/aiml-security-77553044806-BedrockSecurityAssessment-vhBoFvWpLDwH/aiml-security-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:555555555555:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
-            <td class="resolution-text">Investigate error and retry assessment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-a6ddf3fc76' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-10</code></td>
-            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
-            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
-            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-ed660add8b' last accessed Bedrock on 2025-12-21</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-11</code></td>
-            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
-            <td class="finding-details">No custom/fine-tuned models found in the account</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForAgents_S0T9VNPP9D' last accessed Bedrock on 2024-06-25</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-12</code></td>
-            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
-            <td class="finding-details">Model invocation logging to S3 is not configured</td>
-            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForAgents_WNCOPE29NZ' last accessed Bedrock on 2025-04-27</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-13</code></td>
-            <td class="col-domain">Bedrock Flows Guardrails Check</td>
-            <td class="finding-details">No Bedrock Flows found in the account</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_072pr' last accessed Bedrock on 2024-06-25</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-01</code></td>
-            <td class="col-domain">SageMaker Internet Access Check</td>
-            <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_byjin' last accessed Bedrock on 2024-11-17</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker IAM Permissions Check</td>
-            <td class="finding-details">No issues found with IAM permissions, SSO is enabled, and no stale access detected</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_h9718' last accessed Bedrock on 2024-11-17</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-03</code></td>
-            <td class="col-domain">Data Protection Check</td>
-            <td class="finding-details">No SageMaker resources found to check for data protection</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_knnc9' last accessed Bedrock on 2026-01-01</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-04</code></td>
-            <td class="col-domain">GuardDuty Enabled</td>
-            <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_qxqw2' last accessed Bedrock on 2025-12-28</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-05</code></td>
-            <td class="col-domain">SageMaker Model Registry Issue</td>
-            <td class="finding-details">No model package groups found</td>
-            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_semicon' last accessed Bedrock on 2024-09-01</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-05</code></td>
-            <td class="col-domain">SageMaker Feature Store Issue</td>
-            <td class="finding-details">No feature groups found</td>
-            <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_xtwwd' last accessed Bedrock on 2025-10-13</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-05</code></td>
-            <td class="col-domain">SageMaker Pipelines Issue</td>
-            <td class="finding-details">No ML pipelines found</td>
-            <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_y9m7f' last accessed Bedrock on 2025-04-27</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-06</code></td>
-            <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
-            <td class="finding-details">No SageMaker Clarify jobs found</td>
-            <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonQInvestigationRole-DefaultInvestigationGroup-8vxyjh' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-07</code></td>
-            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
-            <td class="finding-details">No Model Monitor schedules found</td>
-            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20231014T200029' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-08</code></td>
-            <td class="col-domain">Model Registry Registry Not Used</td>
-            <td class="finding-details">Model Registry is not being utilized</td>
-            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20250525T153161' last accessed Bedrock on 2025-12-22</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-09</code></td>
-            <td class="col-domain">SageMaker Notebook Root Access Check</td>
-            <td class="finding-details">No notebook instances found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'aws-api-mcp-server-execution-role' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-10</code></td>
-            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
-            <td class="finding-details">No notebook instances found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AwsSecurityAudit' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-11</code></td>
-            <td class="col-domain">SageMaker Model Network Isolation Check</td>
-            <td class="finding-details">No models found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AWSServiceRoleForAuditManager' last accessed Bedrock on 2024-11-25</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-12</code></td>
-            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
-            <td class="finding-details">No InService endpoints found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AWSServiceRoleForSupport' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-13</code></td>
-            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
-            <td class="finding-details">No monitoring schedules found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AWSVAPTAudit' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'BedrockCognitoFederatedRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-193047247167-us-east-1' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-193047247167-us-west-2' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'cfn-contextualChatBot-usi-LambdaExecutionRoleForKno-aHg3J0xel6VU' last accessed Bedrock on 2024-03-25</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CloudSecAuditRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CloudSeerTrustedServiceRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CustomerSupportAssistantBedrockAgentCoreRole-us-east-1' last accessed Bedrock on 2025-12-22</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CustomerSupportStackInfra-CustomerSupportLambdaRole-ujGGiNU6KEnI' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CustomerSupportStackInfra-RuntimeAgentCoreRole-N188nLB5RtLO' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'e2ebedrockrag-KbRoleStack-2YO19O2NS6FP-KbRole-OgMxcvrnZrHZ' last accessed Bedrock on 2025-11-18</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'fsi-genai-workshop-bedrock-kb-role' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'fsi-genai-workshop-lambda-execution-role' last accessed Bedrock on 2025-12-28</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'fsi-genai-workshop-websocket-lambda-role' last accessed Bedrock on 2025-12-28</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IDP-AnalyticsProcessorFunctionRole-H3gwkJtNqrqW' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IDP-BDASAMPLEPROJECT-SGJRDJI15S-LambdaExecutionRole-MCRJbTEDuyKt' last accessed Bedrock on 2025-08-24</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IDP-ChatWithDocumentResolverFunctionRole-ATyH7GeR2ad1' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IDP-DOCUMENTBEDROCKKB-CY8-StartIngestionJobFunction-NjNLRuUn8qtp' last accessed Bedrock on 2025-08-24</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IDP-EvaluationFunctionRole-LQdnEMAdwWPe' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IDP-PATTERN1STACK-TNHNKPK-ProcessResultsFunctionRol-8z8mNwa6RahP' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IDP-PATTERN1STACK-TNHNKPK-SummarizationFunctionRole-MY6sxSMvFNr4' last accessed Bedrock on 2025-10-07</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IDP-PATTERN1STACK-TNHNKPKJY4Q-InvokeBDAFunctionRole-pLHufEKQ0Nu4' last accessed Bedrock on 2025-10-07</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-14</code></td>
-            <td class="col-domain">SageMaker Model Repository Access Check</td>
-            <td class="finding-details">No models found or all use default Platform access</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IDP-QueryKnowledgeBaseResolverFunctionRole-p9Mcpfk0BA6z' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-15</code></td>
-            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
-            <td class="finding-details">No feature groups with offline stores found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IDPSageMakerCfnStack-SageMakerExecutionRole-aqrHz6dVkoHC' last accessed Bedrock on 2024-07-30</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-16</code></td>
-            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
-            <td class="finding-details">No data quality job definitions found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IibsAdminAccess-DO-NOT-DELETE' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-17</code></td>
-            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
-            <td class="finding-details">No processing jobs found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'InternalAuditInternal' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-18</code></td>
-            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
-            <td class="finding-details">No transform jobs found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'LLMEvaluationPromptfoo-Aurora-Bedrock-Role' last accessed Bedrock on 2025-12-30</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-19</code></td>
-            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
-            <td class="finding-details">No hyperparameter tuning jobs found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'LLMEvaluationPromptfoo-LambdaExecutionRole-umo63kVrhIoy' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-20</code></td>
-            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
-            <td class="finding-details">No compilation jobs found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'LLMEvaluationPromptfoo-SageMakerExecutionRole-M69xCHJ9c3LU' last accessed Bedrock on 2025-12-30</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-21</code></td>
-            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
-            <td class="finding-details">No AutoML jobs found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'Meeting-Note-Bot-Role' last accessed Bedrock on 2025-10-22</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-22</code></td>
-            <td class="col-domain">Model Approval Workflow Check</td>
-            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
-            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'myAskMeAnything-role-kmsizqwf' last accessed Bedrock on 2024-01-04</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-23</code></td>
-            <td class="col-domain">Model Drift Detection Check</td>
-            <td class="finding-details">No InService endpoints found to monitor.</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'ProwlerMemberRole' last accessed Bedrock on 2026-03-10</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-24</code></td>
-            <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
-            <td class="finding-details">No InService endpoints found.</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity low">Low</span></td>
-            <td><span class="status success">Passed</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'resco-aiml-security-19304-BedrockSecurityAssessment-kgYUbi1MIbbb' last accessed Bedrock on 2026-04-18</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>SM-25</code></td>
-            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
-            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
-            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'ReSCOAIMLMemberRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">Role 'lambda-ex' has AmazonBedrockFullAccess policy attached</td>
-            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'SAT-PrereqTest-CodeBuildRole-SATv2Stack-PreReqs' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-02</code></td>
-            <td class="col-domain">Amazon Bedrock private connectivity not used</td>
-            <td class="finding-details">No Bedrock service VPC endpoints found in VPCs: vpc-040ced065f45112ab, vpc-0b91dc842246be2fa, vpc-06f3042cda6805eb1, vpc-0f51407fd491cd187, vpc-03b9196e61e0b1901</td>
-            <td class="resolution-text">Create a VPC endpoint in your VPC with any of the following Bedrock service endpoints that your application may be using:
-- com.amazonaws.region.bedrock
-- com.amazonaws.region.bedrock-runtime
-- com.amazonaws.region.bedrock-agent
-- com.amazonaws.region.bedrock-agent-runtime</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'threat-designer-role' last accessed Bedrock on 2025-07-02</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'aws-elasticbeanstalk-ec2-role' has overly permissive marketplace subscription access through policy 'AWSElasticBeanstalkMulticontainerDocker'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">User 'BedrockAPIKey-yhc3' last accessed Bedrock on 2026-04-19</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'lambda-ex' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">User 'BedrockClientUser' last accessed Bedrock on 2025-04-06</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
-            <td class="finding-details">Model invocation logging is not enabled. This limits your ability to track and audit model usage.</td>
-            <td class="resolution-text">Enable model invocation logging to collect invocation logs, model input data, and model output data. Configure logging to deliver to Amazon S3, CloudWatch Logs, or both for comprehensive monitoring.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
-            <td class="finding-details">No Amazon Bedrock Guardrails are configured. This may expose your application to potential risks such as harmful content, sensitive information disclosure, or hallucinations.</td>
-            <td class="resolution-text">Configure Bedrock Guardrails to implement safeguards such as:
-- Content filters to block harmful content
-- Denied topics to prevent undesirable discussions
-- Sensitive information filters to protect PII
-- Contextual grounding checks to prevent hallucinations</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
-            <td class="finding-details">CloudTrail is properly configured to log Bedrock API activity in trails: IsengardTrail-DO-NOT-DELETE</td>
-            <td class="resolution-text">No action required. Continue monitoring CloudTrail logs for Bedrock activity.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
             <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
@@ -1890,948 +9451,1249 @@ <h2>Security Assessment Overview</h2>
 2. Test different prompt variants
 3. Share prompts across your organization
 4. Maintain consistent prompt templates</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
             <td class="finding-details">No Bedrock agents found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Error during check: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::111111111111:assumed-role/aiml-security-29812900782-BedrockSecurityAssessment-yPL9alDPWqUB/aiml-security-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:111111111111:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
-            <td class="resolution-text">Investigate error and retry assessment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::193047247167:assumed-role/aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX/aiml-security-aiml-security-193047247167-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:193047247167:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
             <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
             <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
             <td class="finding-details">No custom/fine-tuned models found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
             <td class="finding-details">Model invocation logging to S3 is not configured</td>
             <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
             <td class="finding-details">No Bedrock Flows found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-01</code></td>
-            <td class="col-domain">SageMaker Internet Access Check</td>
-            <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker IAM Permissions Check</td>
-            <td class="finding-details">No issues found with IAM permissions, SSO is enabled, and no stale access detected</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-03</code></td>
-            <td class="col-domain">Data Protection Check</td>
-            <td class="finding-details">No SageMaker resources found to check for data protection</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-04</code></td>
-            <td class="col-domain">GuardDuty Enabled</td>
-            <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-05</code></td>
-            <td class="col-domain">SageMaker Model Registry Issue</td>
-            <td class="finding-details">No model package groups found</td>
-            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-05</code></td>
-            <td class="col-domain">SageMaker Feature Store Issue</td>
-            <td class="finding-details">No feature groups found</td>
-            <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-05</code></td>
-            <td class="col-domain">SageMaker Pipelines Issue</td>
-            <td class="finding-details">No ML pipelines found</td>
-            <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-06</code></td>
-            <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
-            <td class="finding-details">No SageMaker Clarify jobs found</td>
-            <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-07</code></td>
-            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
-            <td class="finding-details">No Model Monitor schedules found</td>
-            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-06</code></td>
+            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-08</code></td>
-            <td class="col-domain">Model Registry Registry Not Used</td>
-            <td class="finding-details">Model Registry is not being utilized</td>
-            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-07</code></td>
+            <td class="col-domain">Bedrock Prompt Management Check</td>
+            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
+            <td class="resolution-text">Implement Prompt Management to:
+1. Create and version your prompts
+2. Test different prompt variants
+3. Share prompts across your organization
+4. Maintain consistent prompt templates</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-09</code></td>
-            <td class="col-domain">SageMaker Notebook Root Access Check</td>
-            <td class="finding-details">No notebook instances found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-08</code></td>
+            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
+            <td class="finding-details">No Bedrock agents found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-10</code></td>
-            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
-            <td class="finding-details">No notebook instances found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-09</code></td>
+            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::193047247167:assumed-role/aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX/aiml-security-aiml-security-193047247167-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:193047247167:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-11</code></td>
-            <td class="col-domain">SageMaker Model Network Isolation Check</td>
-            <td class="finding-details">No models found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-10</code></td>
+            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
+            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
+            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-12</code></td>
-            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
-            <td class="finding-details">No InService endpoints found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-11</code></td>
+            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
+            <td class="finding-details">No custom/fine-tuned models found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-13</code></td>
-            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
-            <td class="finding-details">No monitoring schedules found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-12</code></td>
+            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
+            <td class="finding-details">Model invocation logging to S3 is not configured</td>
+            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-14</code></td>
-            <td class="col-domain">SageMaker Model Repository Access Check</td>
-            <td class="finding-details">No models found or all use default Platform access</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-13</code></td>
+            <td class="col-domain">Bedrock Flows Guardrails Check</td>
+            <td class="finding-details">No Bedrock Flows found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-15</code></td>
-            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
-            <td class="finding-details">No feature groups with offline stores found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-16</code></td>
-            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
-            <td class="finding-details">No data quality job definitions found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-17</code></td>
-            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
-            <td class="finding-details">No processing jobs found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-18</code></td>
-            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
-            <td class="finding-details">No transform jobs found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-06</code></td>
+            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-19</code></td>
-            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
-            <td class="finding-details">No hyperparameter tuning jobs found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-07</code></td>
+            <td class="col-domain">Bedrock Prompt Management Check</td>
+            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
+            <td class="resolution-text">Implement Prompt Management to:
+1. Create and version your prompts
+2. Test different prompt variants
+3. Share prompts across your organization
+4. Maintain consistent prompt templates</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-20</code></td>
-            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
-            <td class="finding-details">No compilation jobs found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-08</code></td>
+            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
+            <td class="finding-details">No Bedrock agents found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-21</code></td>
-            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
-            <td class="finding-details">No AutoML jobs found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-09</code></td>
+            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::193047247167:assumed-role/aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX/aiml-security-aiml-security-193047247167-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:193047247167:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-22</code></td>
-            <td class="col-domain">Model Approval Workflow Check</td>
-            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
-            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-10</code></td>
+            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
+            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
+            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-23</code></td>
-            <td class="col-domain">Model Drift Detection Check</td>
-            <td class="finding-details">No InService endpoints found to monitor.</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-24</code></td>
-            <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
-            <td class="finding-details">No InService endpoints found.</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-11</code></td>
+            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
+            <td class="finding-details">No custom/fine-tuned models found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity low">Low</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-25</code></td>
-            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
-            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
-            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-12</code></td>
+            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
+            <td class="finding-details">Model invocation logging to S3 is not configured</td>
+            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore VPC Configuration Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-13</code></td>
+            <td class="col-domain">Bedrock Flows Guardrails Check</td>
+            <td class="finding-details">No Bedrock Flows found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-02</code></td>
-            <td class="col-domain">AgentCore IAM Full Access Check</td>
-            <td class="finding-details">No roles with overly permissive AgentCore access found</td>
+<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-01</code></td>
+            <td class="col-domain">AmazonBedrockFullAccess role check</td>
+            <td class="finding-details">No roles found with AmazonBedrockFullAccess policy</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-all
+https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-03</code></td>
-            <td class="col-domain">AgentCore Unused Permissions</td>
-            <td class="finding-details">The following principals have AgentCore permissions but have never accessed the service: role 'AIMLSecurityMemberRole'</td>
-            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">Role 'ProwlerApp-EC2-Role' has overly permissive marketplace subscription access through policy 'AWSElasticBeanstalkMulticontainerDocker'</td>
+            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AIMLSecurityMemberRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Observability Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_7erx6' last accessed Bedrock on 2025-05-13</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AwsSecurityAudit' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AWSServiceRoleForAuditManager' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AWSServiceRoleForSupport' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AWSVAPTAudit' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-472057511786-us-east-1' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-472057511786-us-east-2' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-472057511786-us-west-2' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CloudSecAuditRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CloudSeerTrustedServiceRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IibsAdminAccess-DO-NOT-DELETE' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'InternalAuditInternal' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'Nova-DO-NOT-DELETE' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'ProwlerApp-EC2-Role' last accessed Bedrock on 2026-03-29</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'ProwlerMemberRole' last accessed Bedrock on 2026-03-10</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'ProwlerScanRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'resco-aiml-security-mgmt-BedrockSecurityAssessmentF-espswsHIf9by' last accessed Bedrock on 2026-04-18</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'ReSCOAIMLMemberRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-05</code></td>
-            <td class="col-domain">AgentCore Encryption Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
-            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-07</code></td>
-            <td class="col-domain">AgentCore Memory Configuration Check</td>
-            <td class="finding-details">No Memory resources found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-06</code></td>
+            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-13</code></td>
-            <td class="col-domain">AgentCore Gateway Configuration Check</td>
-            <td class="finding-details">No Gateway resources found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-07</code></td>
+            <td class="col-domain">Bedrock Prompt Management Check</td>
+            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
+            <td class="resolution-text">Implement Prompt Management to:
+1. Create and version your prompts
+2. Test different prompt variants
+3. Share prompts across your organization
+4. Maintain consistent prompt templates</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-08</code></td>
+            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
+            <td class="finding-details">No Bedrock agents found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-08</code></td>
-            <td class="col-domain">AgentCore VPC Endpoints Missing</td>
-            <td class="finding-details">No AgentCore VPC endpoints found in 5 VPCs. AgentCore API traffic traverses public internet, exposing it to interception.</td>
-            <td class="resolution-text">Create VPC interface endpoints for AgentCore services:
-1. com.amazonaws.region.bedrock-agentcore
-2. com.amazonaws.region.bedrock-agentcore-control
-3. com.amazonaws.region.bedrock-agentcore-runtime
-This enables private connectivity via AWS PrivateLink</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-09</code></td>
+            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::472057511786:assumed-role/aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b/aiml-security-aiml-security-mgmt-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:472057511786:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-09</code></td>
-            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
-            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
-            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-10</code></td>
+            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
+            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
+            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-10</code></td>
-            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
-            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-11</code></td>
+            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
+            <td class="finding-details">No custom/fine-tuned models found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-11</code></td>
-            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
-            <td class="finding-details">No Policy Engines found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-12</code></td>
+            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
+            <td class="finding-details">Model invocation logging to S3 is not configured</td>
+            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-12</code></td>
-            <td class="col-domain">AgentCore Gateway Encryption Check</td>
-            <td class="finding-details">No Gateways found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-13</code></td>
+            <td class="col-domain">Bedrock Flows Guardrails Check</td>
+            <td class="finding-details">No Bedrock Flows found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore VPC Configuration Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-02</code></td>
-            <td class="col-domain">AgentCore IAM Full Access Check</td>
-            <td class="finding-details">No roles with overly permissive AgentCore access found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-03</code></td>
-            <td class="col-domain">AgentCore Unused Permissions</td>
-            <td class="finding-details">The following principals have AgentCore permissions but have never accessed the service: role 'AIMLSecurityMemberRole'</td>
-            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Observability Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-05</code></td>
-            <td class="col-domain">AgentCore Encryption Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-06</code></td>
+            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-07</code></td>
+            <td class="col-domain">Bedrock Prompt Management Check</td>
+            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
+            <td class="resolution-text">Implement Prompt Management to:
+1. Create and version your prompts
+2. Test different prompt variants
+3. Share prompts across your organization
+4. Maintain consistent prompt templates</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
-            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-08</code></td>
+            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
+            <td class="finding-details">No Bedrock agents found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-07</code></td>
-            <td class="col-domain">AgentCore Memory Configuration Check</td>
-            <td class="finding-details">No Memory resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-09</code></td>
+            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::472057511786:assumed-role/aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b/aiml-security-aiml-security-mgmt-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:472057511786:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-13</code></td>
-            <td class="col-domain">AgentCore Gateway Configuration Check</td>
-            <td class="finding-details">No Gateway resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-10</code></td>
+            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
+            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
+            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-08</code></td>
-            <td class="col-domain">AgentCore VPC Endpoints Missing</td>
-            <td class="finding-details">No AgentCore VPC endpoints found in 1 VPCs. AgentCore API traffic traverses public internet, exposing it to interception.</td>
-            <td class="resolution-text">Create VPC interface endpoints for AgentCore services:
-1. com.amazonaws.region.bedrock-agentcore
-2. com.amazonaws.region.bedrock-agentcore-control
-3. com.amazonaws.region.bedrock-agentcore-runtime
-This enables private connectivity via AWS PrivateLink</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-09</code></td>
-            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
-            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
-            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-10</code></td>
-            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
-            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-11</code></td>
+            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
+            <td class="finding-details">No custom/fine-tuned models found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-11</code></td>
-            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
-            <td class="finding-details">No Policy Engines found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-12</code></td>
+            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
+            <td class="finding-details">Model invocation logging to S3 is not configured</td>
+            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-12</code></td>
-            <td class="col-domain">AgentCore Gateway Encryption Check</td>
-            <td class="finding-details">No Gateways found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-13</code></td>
+            <td class="col-domain">Bedrock Flows Guardrails Check</td>
+            <td class="finding-details">No Bedrock Flows found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-01</code></td>
-            <td class="col-domain">SageMaker Internet Access Check</td>
-            <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker IAM Permissions Check</td>
-            <td class="finding-details">No issues found with IAM permissions, SSO is enabled, and no stale access detected</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-03</code></td>
-            <td class="col-domain">Data Protection Check</td>
-            <td class="finding-details">No SageMaker resources found to check for data protection</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-04</code></td>
-            <td class="col-domain">GuardDuty Enabled</td>
-            <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-05</code></td>
-            <td class="col-domain">SageMaker Model Registry Issue</td>
-            <td class="finding-details">No model package groups found</td>
-            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-05</code></td>
-            <td class="col-domain">SageMaker Feature Store Issue</td>
-            <td class="finding-details">No feature groups found</td>
-            <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-06</code></td>
+            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-05</code></td>
-            <td class="col-domain">SageMaker Pipelines Issue</td>
-            <td class="finding-details">No ML pipelines found</td>
-            <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-07</code></td>
+            <td class="col-domain">Bedrock Prompt Management Check</td>
+            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
+            <td class="resolution-text">Implement Prompt Management to:
+1. Create and version your prompts
+2. Test different prompt variants
+3. Share prompts across your organization
+4. Maintain consistent prompt templates</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-06</code></td>
-            <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
-            <td class="finding-details">No SageMaker Clarify jobs found</td>
-            <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-08</code></td>
+            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
+            <td class="finding-details">No Bedrock agents found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-07</code></td>
-            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
-            <td class="finding-details">No Model Monitor schedules found</td>
-            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-09</code></td>
+            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::472057511786:assumed-role/aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b/aiml-security-aiml-security-mgmt-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:472057511786:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-08</code></td>
-            <td class="col-domain">Model Registry Registry Not Used</td>
-            <td class="finding-details">Model Registry is not being utilized</td>
-            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-10</code></td>
+            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
+            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
+            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-09</code></td>
-            <td class="col-domain">SageMaker Notebook Root Access Check</td>
-            <td class="finding-details">No notebook instances found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-11</code></td>
+            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
+            <td class="finding-details">No custom/fine-tuned models found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-10</code></td>
-            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
-            <td class="finding-details">No notebook instances found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-12</code></td>
+            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
+            <td class="finding-details">Model invocation logging to S3 is not configured</td>
+            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-11</code></td>
-            <td class="col-domain">SageMaker Model Network Isolation Check</td>
-            <td class="finding-details">No models found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-13</code></td>
+            <td class="col-domain">Bedrock Flows Guardrails Check</td>
+            <td class="finding-details">No Bedrock Flows found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-12</code></td>
-            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
-            <td class="finding-details">No InService endpoints found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-13</code></td>
-            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
-            <td class="finding-details">No monitoring schedules found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-14</code></td>
-            <td class="col-domain">SageMaker Model Repository Access Check</td>
-            <td class="finding-details">No models found or all use default Platform access</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-15</code></td>
-            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
-            <td class="finding-details">No feature groups with offline stores found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-06</code></td>
+            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-16</code></td>
-            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
-            <td class="finding-details">No data quality job definitions found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-07</code></td>
+            <td class="col-domain">Bedrock Prompt Management Check</td>
+            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
+            <td class="resolution-text">Implement Prompt Management to:
+1. Create and version your prompts
+2. Test different prompt variants
+3. Share prompts across your organization
+4. Maintain consistent prompt templates</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-17</code></td>
-            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
-            <td class="finding-details">No processing jobs found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-08</code></td>
+            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
+            <td class="finding-details">No Bedrock agents found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-18</code></td>
-            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
-            <td class="finding-details">No transform jobs found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-09</code></td>
+            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::230266523520:assumed-role/aiml-security-23026652352-BedrockSecurityAssessment-UZzmVN1xrMwf/aiml-security-aiml-security-230266523520-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:230266523520:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-19</code></td>
-            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
-            <td class="finding-details">No hyperparameter tuning jobs found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-10</code></td>
+            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
+            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
+            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-20</code></td>
-            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
-            <td class="finding-details">No compilation jobs found</td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-11</code></td>
+            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
+            <td class="finding-details">No custom/fine-tuned models found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-21</code></td>
-            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
-            <td class="finding-details">No AutoML jobs found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-12</code></td>
+            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
+            <td class="finding-details">Model invocation logging to S3 is not configured</td>
+            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-22</code></td>
-            <td class="col-domain">Model Approval Workflow Check</td>
-            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
-            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-13</code></td>
+            <td class="col-domain">Bedrock Flows Guardrails Check</td>
+            <td class="finding-details">No Bedrock Flows found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-23</code></td>
-            <td class="col-domain">Model Drift Detection Check</td>
-            <td class="finding-details">No InService endpoints found to monitor.</td>
+<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-01</code></td>
+            <td class="col-domain">AmazonBedrockFullAccess role check</td>
+            <td class="finding-details">No roles found with AmazonBedrockFullAccess policy</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-all
+https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-24</code></td>
-            <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
-            <td class="finding-details">No InService endpoints found.</td>
+<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-03</code></td>
+            <td class="col-domain">Marketplace Subscription Access Check</td>
+            <td class="finding-details">No identities found with overly permissive marketplace subscription access</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity low">Low</span></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>SM-25</code></td>
-            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
-            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
-            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AIMLSecurityMemberRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AwsSecurityAudit' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AWSServiceRoleForAuditManager' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AWSServiceRoleForSupport' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CloudSecAuditRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CloudSeerTrustedServiceRole' last accessed Bedrock on 2025-08-18</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IibsAdminAccess-DO-NOT-DELETE' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'InternalAuditInternal' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">No roles found with AmazonBedrockFullAccess policy</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'ProwlerMemberRole' last accessed Bedrock on 2026-03-10</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>BR-02</code></td>
-            <td class="col-domain">Amazon Bedrock private connectivity not used</td>
-            <td class="finding-details">No Bedrock service VPC endpoints found in VPCs: vpc-0f27f5a2e9ec6679a</td>
-            <td class="resolution-text">Create a VPC endpoint in your VPC with any of the following Bedrock service endpoints that your application may be using:
-- com.amazonaws.region.bedrock
-- com.amazonaws.region.bedrock-runtime
-- com.amazonaws.region.bedrock-agent
-- com.amazonaws.region.bedrock-agent-runtime</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'resco-aiml-security-23026-BedrockSecurityAssessment-xNwSsmlzindY' last accessed Bedrock on 2026-04-18</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">No identities found with overly permissive marketplace subscription access</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'ReSCOAIMLMemberRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
-            <td class="finding-details">Model invocation logging is not enabled. This limits your ability to track and audit model usage.</td>
-            <td class="resolution-text">Enable model invocation logging to collect invocation logs, model input data, and model output data. Configure logging to deliver to Amazon S3, CloudWatch Logs, or both for comprehensive monitoring.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
-            <td class="finding-details">No Amazon Bedrock Guardrails are configured. This may expose your application to potential risks such as harmful content, sensitive information disclosure, or hallucinations.</td>
-            <td class="resolution-text">Configure Bedrock Guardrails to implement safeguards such as:
-- Content filters to block harmful content
-- Denied topics to prevent undesirable discussions
-- Sensitive information filters to protect PII
-- Contextual grounding checks to prevent hallucinations</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
-            <td class="finding-details">CloudTrail is properly configured to log Bedrock API activity in trails: aws-controltower-BaselineCloudTrail</td>
-            <td class="resolution-text">No action required. Continue monitoring CloudTrail logs for Bedrock activity.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
             <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
@@ -2840,140 +10702,123 @@ <h2>Security Assessment Overview</h2>
 2. Test different prompt variants
 3. Share prompts across your organization
 4. Maintain consistent prompt templates</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
             <td class="finding-details">No Bedrock agents found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Error during check: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::333333333333:assumed-role/aiml-security-50498124355-BedrockSecurityAssessment-P5zGBYCeQeZD/aiml-security-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:333333333333:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
-            <td class="resolution-text">Investigate error and retry assessment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::230266523520:assumed-role/aiml-security-23026652352-BedrockSecurityAssessment-UZzmVN1xrMwf/aiml-security-aiml-security-230266523520-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:230266523520:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
             <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
             <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
             <td class="finding-details">No custom/fine-tuned models found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
             <td class="finding-details">Model invocation logging to S3 is not configured</td>
             <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
             <td class="finding-details">No Bedrock Flows found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">No roles found with AmazonBedrockFullAccess policy</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>BR-02</code></td>
-            <td class="col-domain">Amazon Bedrock private connectivity not used</td>
-            <td class="finding-details">No Bedrock service VPC endpoints found in VPCs: vpc-038ace59e6d821137</td>
-            <td class="resolution-text">Create a VPC endpoint in your VPC with any of the following Bedrock service endpoints that your application may be using:
-- com.amazonaws.region.bedrock
-- com.amazonaws.region.bedrock-runtime
-- com.amazonaws.region.bedrock-agent
-- com.amazonaws.region.bedrock-agent-runtime</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">No identities found with overly permissive marketplace subscription access</td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
-            <td class="finding-details">Model invocation logging is not enabled. This limits your ability to track and audit model usage.</td>
-            <td class="resolution-text">Enable model invocation logging to collect invocation logs, model input data, and model output data. Configure logging to deliver to Amazon S3, CloudWatch Logs, or both for comprehensive monitoring.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
-            <td class="finding-details">No Amazon Bedrock Guardrails are configured. This may expose your application to potential risks such as harmful content, sensitive information disclosure, or hallucinations.</td>
-            <td class="resolution-text">Configure Bedrock Guardrails to implement safeguards such as:
-- Content filters to block harmful content
-- Denied topics to prevent undesirable discussions
-- Sensitive information filters to protect PII
-- Contextual grounding checks to prevent hallucinations</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
-            <td class="finding-details">CloudTrail is properly configured to log Bedrock API activity in trails: IsengardTrail-DO-NOT-DELETE</td>
-            <td class="resolution-text">No action required. Continue monitoring CloudTrail logs for Bedrock activity.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
             <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
@@ -2982,4608 +10827,6004 @@ <h2>Security Assessment Overview</h2>
 2. Test different prompt variants
 3. Share prompts across your organization
 4. Maintain consistent prompt templates</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
             <td class="finding-details">No Bedrock agents found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Error during check: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::666666666666:assumed-role/aiml-security-mgmt-BedrockSecurityAssessmentFunctio-wExYSLdcUmwT/aiml-security-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:666666666666:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
-            <td class="resolution-text">Investigate error and retry assessment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::230266523520:assumed-role/aiml-security-23026652352-BedrockSecurityAssessment-UZzmVN1xrMwf/aiml-security-aiml-security-230266523520-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:230266523520:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
             <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
             <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
             <td class="finding-details">No custom/fine-tuned models found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
             <td class="finding-details">Model invocation logging to S3 is not configured</td>
             <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
             <td class="finding-details">No Bedrock Flows found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+        </tr></tbody></table></div></div>
+            </section>
+            <section id="sagemaker" class="section">
+                <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"/></svg></span>Amazon SageMaker Findings</div>
+                <div class="filter-bar">
+                    <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="sagemakerSearchInput"></div>
+                    <div class="filter-group"><label>Account</label><select id="sagemakerAccountFilter"><option value="">All Accounts</option><option value="193047247167">193047247167</option><option value="230266523520">230266523520</option><option value="472057511786">472057511786</option></select></div>
+                    <div class="filter-group"><label for="sagemakerRegionFilter">Region</label><select id="sagemakerRegionFilter"><option value="">All Regions</option><option value="ap-southeast-2">ap-southeast-2</option><option value="eu-west-1">eu-west-1</option><option value="us-east-1">us-east-1</option><option value="Global">Global</option></select></div>
+                    <div class="filter-group"><label>Severity</label><select id="sagemakerSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
+                    <div class="filter-group"><label>Status</label><select id="sagemakerStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
+                    <button class="btn btn-reset" id="sagemakerResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
+                </div>
+                <div class="card"><div class="table-wrap"><table id="sagemakerTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
             <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker IAM Permissions Check</td>
-            <td class="finding-details">No issues found with IAM permissions, SSO is enabled, and no stale access detected</td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
             <td class="finding-details">No SageMaker resources found to check for data protection</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
             <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
             <td class="finding-details">No model package groups found</td>
             <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
             <td class="finding-details">No feature groups found</td>
             <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
             <td class="finding-details">No ML pipelines found</td>
             <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
             <td class="finding-details">No SageMaker Clarify jobs found</td>
             <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
             <td class="finding-details">No Model Monitor schedules found</td>
             <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
             <td class="finding-details">Model Registry is not being utilized</td>
             <td class="resolution-text">Implement proper model versioning and approval workflows</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
             <td class="finding-details">No notebook instances found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
             <td class="finding-details">No notebook instances found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
             <td class="finding-details">No models found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
             <td class="finding-details">No InService endpoints found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
             <td class="finding-details">No monitoring schedules found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
             <td class="finding-details">No models found or all use default Platform access</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
             <td class="finding-details">No feature groups with offline stores found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
             <td class="finding-details">No data quality job definitions found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
             <td class="finding-details">No processing jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
             <td class="finding-details">No transform jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
             <td class="finding-details">No hyperparameter tuning jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
             <td class="finding-details">No compilation jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
             <td class="finding-details">No AutoML jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
             <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
             <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
             <td class="finding-details">No InService endpoints found to monitor.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
             <td class="finding-details">No InService endpoints found.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
             <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
             <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore VPC Configuration Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-02</code></td>
-            <td class="col-domain">AgentCore IAM Full Access Check</td>
-            <td class="finding-details">No roles with overly permissive AgentCore access found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker Full Access Policy Used</td>
+            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20231014T200029' has AmazonSageMakerFullAccess policy attached</td>
+            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="low" data-status="passed" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-03</code></td>
-            <td class="col-domain">AgentCore Stale Access Check</td>
-            <td class="finding-details">All 1 principals with AgentCore permissions have accessed the service within the last 60 days</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity low">Low</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Observability Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-05</code></td>
-            <td class="col-domain">AgentCore Encryption Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
-            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-07</code></td>
-            <td class="col-domain">AgentCore Memory Configuration Check</td>
-            <td class="finding-details">No Memory resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-13</code></td>
-            <td class="col-domain">AgentCore Gateway Configuration Check</td>
-            <td class="finding-details">No Gateway resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-08</code></td>
-            <td class="col-domain">AgentCore VPC Endpoints Missing</td>
-            <td class="finding-details">No AgentCore VPC endpoints found in 1 VPCs. AgentCore API traffic traverses public internet, exposing it to interception.</td>
-            <td class="resolution-text">Create VPC interface endpoints for AgentCore services:
-1. com.amazonaws.region.bedrock-agentcore
-2. com.amazonaws.region.bedrock-agentcore-control
-3. com.amazonaws.region.bedrock-agentcore-runtime
-This enables private connectivity via AWS PrivateLink</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker Full Access Policy Used</td>
+            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20250525T153161' has AmazonSageMakerFullAccess policy attached</td>
+            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-09</code></td>
-            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
-            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
-            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker Full Access Policy Used</td>
+            <td class="finding-details">Role 'AmazonSageMakerServiceCatalogProductsExecutionRole' has AmazonSageMakerFullAccess policy attached</td>
+            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-10</code></td>
-            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
-            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-11</code></td>
-            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
-            <td class="finding-details">No Policy Engines found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker Full Access Policy Used</td>
+            <td class="finding-details">Role 'EMR_EC2_DefaultRole' has AmazonSageMakerFullAccess policy attached</td>
+            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-12</code></td>
-            <td class="col-domain">AgentCore Gateway Encryption Check</td>
-            <td class="finding-details">No Gateways found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker Full Access Policy Used</td>
+            <td class="finding-details">Role 'IDPSageMakerCfnStack-SageMakerExecutionRole-aqrHz6dVkoHC' has AmazonSageMakerFullAccess policy attached</td>
+            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">No roles found with AmazonBedrockFullAccess policy</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker Full Access Policy Used</td>
+            <td class="finding-details">Role 'LLMEvaluationPromptfoo-SageMakerExecutionRole-M69xCHJ9c3LU' has AmazonSageMakerFullAccess policy attached</td>
+            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-02</code></td>
-            <td class="col-domain">Amazon Bedrock private connectivity not used</td>
-            <td class="finding-details">No VPCs found in the account</td>
-            <td class="resolution-text">Create a VPC endpoint in your VPC with any of the following Bedrock service endpoints that your application may be using:
-- com.amazonaws.region.bedrock
-- com.amazonaws.region.bedrock-runtime
-- com.amazonaws.region.bedrock-agent
-- com.amazonaws.region.bedrock-agent-runtime</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker Full Access Policy Used</td>
+            <td class="finding-details">Role 'SageMaker-EMR-ExecutionRole' has AmazonSageMakerFullAccess policy attached</td>
+            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">No identities found with overly permissive marketplace subscription access</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-01</code></td>
+            <td class="col-domain">Non-VPC Only Network Access</td>
+            <td class="finding-details">SageMaker domain 'd-cz8qi7j81si3' (QuickSetupDomain-20250525T153160) is not configured for VPC-only access</td>
+            <td class="resolution-text">Configure the SageMaker domain to use VPC-only network access type</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-04</code></td>
-            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
-            <td class="finding-details">Model invocation logging is not enabled. This limits your ability to track and audit model usage.</td>
-            <td class="resolution-text">Enable model invocation logging to collect invocation logs, model input data, and model output data. Configure logging to deliver to Amazon S3, CloudWatch Logs, or both for comprehensive monitoring.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SSO Not Properly Configured</td>
+            <td class="finding-details">SageMaker domain 'd-cz8qi7j81si3' (QuickSetupDomain-20250525T153160) is using authentication mode: IAM</td>
+            <td class="resolution-text">Enable and properly configure AWS IAM Identity Center (successor to AWS SSO) for centralized access management. Ensure Identity Store ID is configured.</td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-05</code></td>
-            <td class="col-domain">Bedrock Guardrails Check</td>
-            <td class="finding-details">No Amazon Bedrock Guardrails are configured. This may expose your application to potential risks such as harmful content, sensitive information disclosure, or hallucinations.</td>
-            <td class="resolution-text">Configure Bedrock Guardrails to implement safeguards such as:
-- Content filters to block harmful content
-- Denied topics to prevent undesirable discussions
-- Sensitive information filters to protect PII
-- Contextual grounding checks to prevent hallucinations</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-03</code></td>
+            <td class="col-domain">Missing Encryption Configuration</td>
+            <td class="finding-details">Domain 'QuickSetupDomain-20250525T153160' - No KMS key configured</td>
+            <td class="resolution-text">Configure encryption using AWS KMS customer managed keys for enhanced security</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-06</code></td>
-            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
-            <td class="finding-details">CloudTrail is properly configured to log Bedrock API activity in trails: aws-controltower-BaselineCloudTrail</td>
-            <td class="resolution-text">No action required. Continue monitoring CloudTrail logs for Bedrock activity.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-04</code></td>
+            <td class="col-domain">GuardDuty Enabled</td>
+            <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-07</code></td>
-            <td class="col-domain">Bedrock Prompt Management Check</td>
-            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
-            <td class="resolution-text">Implement Prompt Management to:
-1. Create and version your prompts
-2. Test different prompt variants
-3. Share prompts across your organization
-4. Maintain consistent prompt templates</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Model Registry Issue</td>
+            <td class="finding-details">No model package groups found</td>
+            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Feature Store Issue</td>
+            <td class="finding-details">No feature groups found</td>
+            <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-08</code></td>
-            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
-            <td class="finding-details">No Bedrock agents found in the account</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Pipelines Issue</td>
+            <td class="finding-details">No ML pipelines found</td>
+            <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-09</code></td>
-            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Error during check: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::444444444444:assumed-role/aiml-security-61755615766-BedrockSecurityAssessment-gFAyGkIDfGQ9/aiml-security-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:444444444444:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
-            <td class="resolution-text">Investigate error and retry assessment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-10</code></td>
-            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
-            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
-            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-06</code></td>
+            <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
+            <td class="finding-details">No SageMaker Clarify jobs found</td>
+            <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-11</code></td>
-            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
-            <td class="finding-details">No custom/fine-tuned models found in the account</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-07</code></td>
+            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
+            <td class="finding-details">No Model Monitor schedules found</td>
+            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-12</code></td>
-            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
-            <td class="finding-details">Model invocation logging to S3 is not configured</td>
-            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-08</code></td>
+            <td class="col-domain">Model Registry Registry Not Used</td>
+            <td class="finding-details">Model Registry is not being utilized</td>
+            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-13</code></td>
-            <td class="col-domain">Bedrock Flows Guardrails Check</td>
-            <td class="finding-details">No Bedrock Flows found in the account</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-09</code></td>
+            <td class="col-domain">SageMaker Notebook Root Access Check</td>
+            <td class="finding-details">No notebook instances found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore VPC Configuration Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-10</code></td>
+            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
+            <td class="finding-details">No notebook instances found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-02</code></td>
-            <td class="col-domain">AgentCore IAM Full Access Check</td>
-            <td class="finding-details">No roles with overly permissive AgentCore access found</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-11</code></td>
+            <td class="col-domain">SageMaker Model Network Isolation Check</td>
+            <td class="finding-details">No models found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-03</code></td>
-            <td class="col-domain">AgentCore Unused Permissions</td>
-            <td class="finding-details">The following principals have AgentCore permissions but have never accessed the service: role 'AIMLSecurityMemberRole'</td>
-            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-12</code></td>
+            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
+            <td class="finding-details">No InService endpoints found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Observability Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-13</code></td>
+            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
+            <td class="finding-details">No monitoring schedules found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-05</code></td>
-            <td class="col-domain">AgentCore Encryption Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-14</code></td>
+            <td class="col-domain">SageMaker Model Repository Access Check</td>
+            <td class="finding-details">No models found or all use default Platform access</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
-            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-15</code></td>
+            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
+            <td class="finding-details">No feature groups with offline stores found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-07</code></td>
-            <td class="col-domain">AgentCore Memory Configuration Check</td>
-            <td class="finding-details">No Memory resources found</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-16</code></td>
+            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
+            <td class="finding-details">No data quality job definitions found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-13</code></td>
-            <td class="col-domain">AgentCore Gateway Configuration Check</td>
-            <td class="finding-details">No Gateway resources found</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-17</code></td>
+            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
+            <td class="finding-details">No processing jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-08</code></td>
-            <td class="col-domain">AgentCore VPC Endpoints Check</td>
-            <td class="finding-details">No VPCs found in the account</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-18</code></td>
+            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
+            <td class="finding-details">No transform jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-09</code></td>
-            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
-            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
-            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-19</code></td>
+            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
+            <td class="finding-details">No hyperparameter tuning jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-10</code></td>
-            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
-            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-20</code></td>
+            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
+            <td class="finding-details">No compilation jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-11</code></td>
-            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
-            <td class="finding-details">No Policy Engines found</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-21</code></td>
+            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
+            <td class="finding-details">No AutoML jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-12</code></td>
-            <td class="col-domain">AgentCore Gateway Encryption Check</td>
-            <td class="finding-details">No Gateways found</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-22</code></td>
+            <td class="col-domain">Model Approval Workflow Check</td>
+            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
+            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-23</code></td>
+            <td class="col-domain">Model Drift Detection Check</td>
+            <td class="finding-details">No InService endpoints found to monitor.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-24</code></td>
+            <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
+            <td class="finding-details">No InService endpoints found.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-25</code></td>
+            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
+            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
+            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
             <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker IAM Permissions Check</td>
-            <td class="finding-details">No issues found with IAM permissions, SSO is enabled, and no stale access detected</td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
             <td class="finding-details">No SageMaker resources found to check for data protection</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
             <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
             <td class="finding-details">No model package groups found</td>
             <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
             <td class="finding-details">No feature groups found</td>
             <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
             <td class="finding-details">No ML pipelines found</td>
             <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
             <td class="finding-details">No SageMaker Clarify jobs found</td>
             <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
             <td class="finding-details">No Model Monitor schedules found</td>
             <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
             <td class="finding-details">Model Registry is not being utilized</td>
             <td class="resolution-text">Implement proper model versioning and approval workflows</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
             <td class="finding-details">No notebook instances found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
             <td class="finding-details">No notebook instances found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
             <td class="finding-details">No models found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
             <td class="finding-details">No InService endpoints found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
             <td class="finding-details">No monitoring schedules found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
             <td class="finding-details">No models found or all use default Platform access</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
             <td class="finding-details">No feature groups with offline stores found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
             <td class="finding-details">No data quality job definitions found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
             <td class="finding-details">No processing jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
             <td class="finding-details">No transform jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
             <td class="finding-details">No hyperparameter tuning jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
             <td class="finding-details">No compilation jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
             <td class="finding-details">No AutoML jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
             <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
             <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
             <td class="finding-details">No InService endpoints found to monitor.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
             <td class="finding-details">No InService endpoints found.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
             <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
             <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr></tbody></table></div></div>
-            </section>
-            <section id="risk" class="section">
-                <div class="section-title"><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><polyline points="22 12 18 12 15 21 9 3 6 12 2 12"></polyline></svg>Risk Distribution</div>
-                <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-bottom: 12px; text-transform: uppercase; letter-spacing: 0.5px;">Pass Rate by Severity</h4>
-                <div class="metrics" style="margin-bottom: 32px;">
-                    <div class="metric danger"><div class="metric-label"><span class="severity high" style="padding: 2px 6px; font-size: 10px;">HIGH</span></div><div class="metric-value">42.5%</div><div class="metric-sub">17 of 40 checks passed</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 42.5%; height: 100%; background: var(--danger);"></div></div></div>
-                    <div class="metric warning"><div class="metric-label"><span class="severity medium" style="padding: 2px 6px; font-size: 10px;">MEDIUM</span></div><div class="metric-value">31.9%</div><div class="metric-sub">23 of 72 checks passed</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 31.9%; height: 100%; background: var(--warning);"></div></div></div>
-                    <div class="metric" style="border-color: var(--accent);"><div class="metric-label"><span class="severity low" style="padding: 2px 6px; font-size: 10px;">LOW</span></div><div class="metric-value" style="color: var(--accent);">100.0%</div><div class="metric-sub">7 of 7 checks passed</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 100.0%; height: 100%; background: var(--accent);"></div></div></div>
-                    <div class="metric"><div class="metric-label">Overall</div><div class="metric-value">39.5%</div><div class="metric-sub">47 of 119 actionable checks</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 39.5%; height: 100%; background: var(--text-3);"></div></div></div>
-                </div>
-                <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-bottom: 12px; text-transform: uppercase; letter-spacing: 0.5px;">Risk by Account</h4>
-                <div class="metrics" style="margin-bottom: 32px;"><div class="metric danger" style="border-left: 3px solid var(--danger);"><div class="metric-label" style="font-family: &#39;JetBrains Mono&#39;, monospace; font-size: 12px;">111111111111</div><div class="metric-value">10</div><div class="metric-sub"><span style="color: var(--danger);">5 High</span> · <span style="color: var(--warning);">5 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div><div class="metric danger" style="border-left: 3px solid var(--danger);"><div class="metric-label" style="font-family: &#39;JetBrains Mono&#39;, monospace; font-size: 12px;">222222222222</div><div class="metric-value">37</div><div class="metric-sub"><span style="color: var(--danger);">12 High</span> · <span style="color: var(--warning);">25 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div><div class="metric danger" style="border-left: 3px solid var(--danger);"><div class="metric-label" style="font-family: &#39;JetBrains Mono&#39;, monospace; font-size: 12px;">333333333333</div><div class="metric-value">7</div><div class="metric-sub"><span style="color: var(--danger);">2 High</span> · <span style="color: var(--warning);">5 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div><div class="metric danger" style="border-left: 3px solid var(--danger);"><div class="metric-label" style="font-family: &#39;JetBrains Mono&#39;, monospace; font-size: 12px;">444444444444</div><div class="metric-value">6</div><div class="metric-sub"><span style="color: var(--danger);">1 High</span> · <span style="color: var(--warning);">5 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div><div class="metric danger" style="border-left: 3px solid var(--danger);"><div class="metric-label" style="font-family: &#39;JetBrains Mono&#39;, monospace; font-size: 12px;">555555555555</div><div class="metric-value">6</div><div class="metric-sub"><span style="color: var(--danger);">1 High</span> · <span style="color: var(--warning);">5 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div><div class="metric danger" style="border-left: 3px solid var(--danger);"><div class="metric-label" style="font-family: &#39;JetBrains Mono&#39;, monospace; font-size: 12px;">666666666666</div><div class="metric-value">6</div><div class="metric-sub"><span style="color: var(--danger);">2 High</span> · <span style="color: var(--warning);">4 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div></div>
-                <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-bottom: 12px; text-transform: uppercase; letter-spacing: 0.5px;">Findings by Service</h4>
-                <div class="metrics">
-                    <div class="metric"><div class="metric-label"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"></path></svg></span> Bedrock</div><div class="metric-value">79</div><div class="metric-sub">27 Failed · 17 Passed</div></div>
-                    <div class="metric"><div class="metric-label"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"></path></svg></span> SageMaker</div><div class="metric-value">163</div><div class="metric-sub">2 Failed · 23 Passed</div></div>
-                    <div class="metric"><div class="metric-label"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"></path></svg></span> AgentCore</div><div class="metric-value">103</div><div class="metric-sub">43 Failed · 7 Passed</div></div>
-                </div>
-            </section>
-            <section id="bedrock" class="section">
-                <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"></path></svg></span>Amazon Bedrock Findings</div>
-                <div class="filter-bar">
-                    <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="bedrockSearchInput"></div>
-                    <div class="filter-group"><label>Account</label><select id="bedrockAccountFilter"><option value="">All Accounts</option><option value="111111111111">111111111111</option><option value="222222222222">222222222222</option><option value="333333333333">333333333333</option><option value="444444444444">444444444444</option><option value="555555555555">555555555555</option><option value="666666666666">666666666666</option></select></div>
-                    <div class="filter-group"><label>Severity</label><select id="bedrockSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
-                    <div class="filter-group"><label>Status</label><select id="bedrockStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
-                    <button class="btn btn-reset" id="bedrockResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"></path><path d="M3 3v5h5"></path></svg>Reset</button>
-                </div>
-                <div class="card"><div class="table-wrap"><table id="bedrockTable"><thead><tr><th>Account ID</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="bedrock" data-severity="high" data-status="passed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">No roles found with AmazonBedrockFullAccess policy</td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-01</code></td>
+            <td class="col-domain">SageMaker Internet Access Check</td>
+            <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-02</code></td>
-            <td class="col-domain">Amazon Bedrock private connectivity not used</td>
-            <td class="finding-details">No Bedrock service VPC endpoints found in VPCs: vpc-09d33ff6cd2e6f900, vpc-0a51882084eabea86, vpc-0e8782535e520e650</td>
-            <td class="resolution-text">Create a VPC endpoint in your VPC with any of the following Bedrock service endpoints that your application may be using:
-- com.amazonaws.region.bedrock
-- com.amazonaws.region.bedrock-runtime
-- com.amazonaws.region.bedrock-agent
-- com.amazonaws.region.bedrock-agent-runtime</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">No identities found with overly permissive marketplace subscription access</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-03</code></td>
+            <td class="col-domain">Data Protection Check</td>
+            <td class="finding-details">No SageMaker resources found to check for data protection</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-04</code></td>
+            <td class="col-domain">GuardDuty Enabled</td>
+            <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-04</code></td>
-            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
-            <td class="finding-details">Model invocation logging is not enabled. This limits your ability to track and audit model usage.</td>
-            <td class="resolution-text">Enable model invocation logging to collect invocation logs, model input data, and model output data. Configure logging to deliver to Amazon S3, CloudWatch Logs, or both for comprehensive monitoring.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Model Registry Issue</td>
+            <td class="finding-details">No model package groups found</td>
+            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-05</code></td>
-            <td class="col-domain">Bedrock Guardrails Check</td>
-            <td class="finding-details">Amazon Bedrock Guardrails are properly configured with 1 guardrails</td>
-            <td class="resolution-text">No action required. Continue monitoring and updating guardrails as needed.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Feature Store Issue</td>
+            <td class="finding-details">No feature groups found</td>
+            <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-06</code></td>
-            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
-            <td class="finding-details">CloudTrail is properly configured to log Bedrock API activity in trails: IsengardTrail-DO-NOT-DELETE</td>
-            <td class="resolution-text">No action required. Continue monitoring CloudTrail logs for Bedrock activity.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Pipelines Issue</td>
+            <td class="finding-details">No ML pipelines found</td>
+            <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-07</code></td>
-            <td class="col-domain">Bedrock Prompt Management Check</td>
-            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
-            <td class="resolution-text">Implement Prompt Management to:
-1. Create and version your prompts
-2. Test different prompt variants
-3. Share prompts across your organization
-4. Maintain consistent prompt templates</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-06</code></td>
+            <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
+            <td class="finding-details">No SageMaker Clarify jobs found</td>
+            <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-08</code></td>
-            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
-            <td class="finding-details">No Bedrock agents found in the account</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-07</code></td>
+            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
+            <td class="finding-details">No Model Monitor schedules found</td>
+            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-09</code></td>
-            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Error during check: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::222222222222:assumed-role/aiml-security-31838310361-BedrockSecurityAssessment-fuyjvB591V3M/aiml-security-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:222222222222:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
-            <td class="resolution-text">Investigate error and retry assessment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-10</code></td>
-            <td class="col-domain">Bedrock Guardrail IAM Enforcement Missing</td>
-            <td class="finding-details">The following roles can invoke Bedrock models without enforced guardrails: agentic-rag-stack-hosted-KbRoleStack-2MNNE24-KbRole-PXGd70qwQlaT, AmazonBedrockExecutionRoleForKnowledgeBase_9d22x, AmazonBedrockExecutionRoleForKnowledgeBase_b6im8, AmazonBedrockExecutionRoleForKnowledgeBase_ftbfo, AmazonBedrockExecutionRoleForKnowledgeBase_fx5tm, AmazonBedrockExecutionRoleForKnowledgeBase_i35i4, AmazonBedrockExecutionRoleForKnowledgeBase_ij8by, AmazonBedrockExecutionRoleForKnowledgeBase_jl7l5, AmazonBedrockExecutionRoleForKnowledgeBase_oqwbk, AmazonSageMaker-ExecutionRole-20250904T123250...</td>
-            <td class="resolution-text">Add IAM policy conditions to enforce guardrail usage:
-1. Use 'bedrock:GuardrailIdentifier' condition key
-2. Specify required guardrail ARN or ID
-3. Example: "Condition": {"StringEquals": {"bedrock:GuardrailIdentifier": "arn:aws:bedrock:region:account:guardrail/guardrail-id"}}</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-11</code></td>
-            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
-            <td class="finding-details">No custom/fine-tuned models found in the account</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-08</code></td>
+            <td class="col-domain">Model Registry Registry Not Used</td>
+            <td class="finding-details">Model Registry is not being utilized</td>
+            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-12</code></td>
-            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
-            <td class="finding-details">Model invocation logging to S3 is not configured</td>
-            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-09</code></td>
+            <td class="col-domain">SageMaker Notebook Root Access Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>BR-13</code></td>
-            <td class="col-domain">Bedrock Flows Guardrails Check</td>
-            <td class="finding-details">No Bedrock Flows found in the account</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-10</code></td>
+            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
+            <td class="finding-details">No notebook instances found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">No roles found with AmazonBedrockFullAccess policy</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-11</code></td>
+            <td class="col-domain">SageMaker Model Network Isolation Check</td>
+            <td class="finding-details">No models found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-02</code></td>
-            <td class="col-domain">Amazon Bedrock private connectivity not used</td>
-            <td class="finding-details">No VPCs found in the account</td>
-            <td class="resolution-text">Create a VPC endpoint in your VPC with any of the following Bedrock service endpoints that your application may be using:
-- com.amazonaws.region.bedrock
-- com.amazonaws.region.bedrock-runtime
-- com.amazonaws.region.bedrock-agent
-- com.amazonaws.region.bedrock-agent-runtime</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">No identities found with overly permissive marketplace subscription access</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-12</code></td>
+            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
+            <td class="finding-details">No InService endpoints found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-04</code></td>
-            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
-            <td class="finding-details">Model invocation logging is not enabled. This limits your ability to track and audit model usage.</td>
-            <td class="resolution-text">Enable model invocation logging to collect invocation logs, model input data, and model output data. Configure logging to deliver to Amazon S3, CloudWatch Logs, or both for comprehensive monitoring.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-05</code></td>
-            <td class="col-domain">Bedrock Guardrails Check</td>
-            <td class="finding-details">No Amazon Bedrock Guardrails are configured. This may expose your application to potential risks such as harmful content, sensitive information disclosure, or hallucinations.</td>
-            <td class="resolution-text">Configure Bedrock Guardrails to implement safeguards such as:
-- Content filters to block harmful content
-- Denied topics to prevent undesirable discussions
-- Sensitive information filters to protect PII
-- Contextual grounding checks to prevent hallucinations</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-06</code></td>
-            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
-            <td class="finding-details">CloudTrail is properly configured to log Bedrock API activity in trails: aws-controltower-BaselineCloudTrail</td>
-            <td class="resolution-text">No action required. Continue monitoring CloudTrail logs for Bedrock activity.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-07</code></td>
-            <td class="col-domain">Bedrock Prompt Management Check</td>
-            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
-            <td class="resolution-text">Implement Prompt Management to:
-1. Create and version your prompts
-2. Test different prompt variants
-3. Share prompts across your organization
-4. Maintain consistent prompt templates</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-08</code></td>
-            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
-            <td class="finding-details">No Bedrock agents found in the account</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-13</code></td>
+            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
+            <td class="finding-details">No monitoring schedules found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-09</code></td>
-            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Error during check: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::555555555555:assumed-role/aiml-security-77553044806-BedrockSecurityAssessment-vhBoFvWpLDwH/aiml-security-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:555555555555:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
-            <td class="resolution-text">Investigate error and retry assessment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-10</code></td>
-            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
-            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
-            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-14</code></td>
+            <td class="col-domain">SageMaker Model Repository Access Check</td>
+            <td class="finding-details">No models found or all use default Platform access</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-11</code></td>
-            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
-            <td class="finding-details">No custom/fine-tuned models found in the account</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-15</code></td>
+            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
+            <td class="finding-details">No feature groups with offline stores found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-12</code></td>
-            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
-            <td class="finding-details">Model invocation logging to S3 is not configured</td>
-            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-16</code></td>
+            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
+            <td class="finding-details">No data quality job definitions found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>BR-13</code></td>
-            <td class="col-domain">Bedrock Flows Guardrails Check</td>
-            <td class="finding-details">No Bedrock Flows found in the account</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-17</code></td>
+            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
+            <td class="finding-details">No processing jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">Role 'lambda-ex' has AmazonBedrockFullAccess policy attached</td>
-            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-02</code></td>
-            <td class="col-domain">Amazon Bedrock private connectivity not used</td>
-            <td class="finding-details">No Bedrock service VPC endpoints found in VPCs: vpc-040ced065f45112ab, vpc-0b91dc842246be2fa, vpc-06f3042cda6805eb1, vpc-0f51407fd491cd187, vpc-03b9196e61e0b1901</td>
-            <td class="resolution-text">Create a VPC endpoint in your VPC with any of the following Bedrock service endpoints that your application may be using:
-- com.amazonaws.region.bedrock
-- com.amazonaws.region.bedrock-runtime
-- com.amazonaws.region.bedrock-agent
-- com.amazonaws.region.bedrock-agent-runtime</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'aws-elasticbeanstalk-ec2-role' has overly permissive marketplace subscription access through policy 'AWSElasticBeanstalkMulticontainerDocker'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'lambda-ex' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-04</code></td>
-            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
-            <td class="finding-details">Model invocation logging is not enabled. This limits your ability to track and audit model usage.</td>
-            <td class="resolution-text">Enable model invocation logging to collect invocation logs, model input data, and model output data. Configure logging to deliver to Amazon S3, CloudWatch Logs, or both for comprehensive monitoring.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-05</code></td>
-            <td class="col-domain">Bedrock Guardrails Check</td>
-            <td class="finding-details">No Amazon Bedrock Guardrails are configured. This may expose your application to potential risks such as harmful content, sensitive information disclosure, or hallucinations.</td>
-            <td class="resolution-text">Configure Bedrock Guardrails to implement safeguards such as:
-- Content filters to block harmful content
-- Denied topics to prevent undesirable discussions
-- Sensitive information filters to protect PII
-- Contextual grounding checks to prevent hallucinations</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-06</code></td>
-            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
-            <td class="finding-details">CloudTrail is properly configured to log Bedrock API activity in trails: IsengardTrail-DO-NOT-DELETE</td>
-            <td class="resolution-text">No action required. Continue monitoring CloudTrail logs for Bedrock activity.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-07</code></td>
-            <td class="col-domain">Bedrock Prompt Management Check</td>
-            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
-            <td class="resolution-text">Implement Prompt Management to:
-1. Create and version your prompts
-2. Test different prompt variants
-3. Share prompts across your organization
-4. Maintain consistent prompt templates</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-18</code></td>
+            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
+            <td class="finding-details">No transform jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-08</code></td>
-            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
-            <td class="finding-details">No Bedrock agents found in the account</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-19</code></td>
+            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
+            <td class="finding-details">No hyperparameter tuning jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-09</code></td>
-            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Error during check: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::111111111111:assumed-role/aiml-security-29812900782-BedrockSecurityAssessment-yPL9alDPWqUB/aiml-security-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:111111111111:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
-            <td class="resolution-text">Investigate error and retry assessment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-10</code></td>
-            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
-            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
-            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-20</code></td>
+            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
+            <td class="finding-details">No compilation jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-11</code></td>
-            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
-            <td class="finding-details">No custom/fine-tuned models found in the account</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-21</code></td>
+            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
+            <td class="finding-details">No AutoML jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-12</code></td>
-            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
-            <td class="finding-details">Model invocation logging to S3 is not configured</td>
-            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-22</code></td>
+            <td class="col-domain">Model Approval Workflow Check</td>
+            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
+            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-13</code></td>
-            <td class="col-domain">Bedrock Flows Guardrails Check</td>
-            <td class="finding-details">No Bedrock Flows found in the account</td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-23</code></td>
+            <td class="col-domain">Model Drift Detection Check</td>
+            <td class="finding-details">No InService endpoints found to monitor.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-24</code></td>
+            <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
+            <td class="finding-details">No InService endpoints found.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-25</code></td>
+            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
+            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
+            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">No roles found with AmazonBedrockFullAccess policy</td>
+<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker IAM Permissions Check</td>
+            <td class="finding-details">No issues found with IAM permissions and no stale access detected</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>BR-02</code></td>
-            <td class="col-domain">Amazon Bedrock private connectivity not used</td>
-            <td class="finding-details">No Bedrock service VPC endpoints found in VPCs: vpc-0f27f5a2e9ec6679a</td>
-            <td class="resolution-text">Create a VPC endpoint in your VPC with any of the following Bedrock service endpoints that your application may be using:
-- com.amazonaws.region.bedrock
-- com.amazonaws.region.bedrock-runtime
-- com.amazonaws.region.bedrock-agent
-- com.amazonaws.region.bedrock-agent-runtime</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-01</code></td>
+            <td class="col-domain">SageMaker Internet Access Check</td>
+            <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">No identities found with overly permissive marketplace subscription access</td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>BR-04</code></td>
-            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
-            <td class="finding-details">Model invocation logging is not enabled. This limits your ability to track and audit model usage.</td>
-            <td class="resolution-text">Enable model invocation logging to collect invocation logs, model input data, and model output data. Configure logging to deliver to Amazon S3, CloudWatch Logs, or both for comprehensive monitoring.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>BR-05</code></td>
-            <td class="col-domain">Bedrock Guardrails Check</td>
-            <td class="finding-details">No Amazon Bedrock Guardrails are configured. This may expose your application to potential risks such as harmful content, sensitive information disclosure, or hallucinations.</td>
-            <td class="resolution-text">Configure Bedrock Guardrails to implement safeguards such as:
-- Content filters to block harmful content
-- Denied topics to prevent undesirable discussions
-- Sensitive information filters to protect PII
-- Contextual grounding checks to prevent hallucinations</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-03</code></td>
+            <td class="col-domain">Data Protection Check</td>
+            <td class="finding-details">No SageMaker resources found to check for data protection</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>BR-06</code></td>
-            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
-            <td class="finding-details">CloudTrail is properly configured to log Bedrock API activity in trails: aws-controltower-BaselineCloudTrail</td>
-            <td class="resolution-text">No action required. Continue monitoring CloudTrail logs for Bedrock activity.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-04</code></td>
+            <td class="col-domain">GuardDuty Enabled</td>
+            <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>BR-07</code></td>
-            <td class="col-domain">Bedrock Prompt Management Check</td>
-            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
-            <td class="resolution-text">Implement Prompt Management to:
-1. Create and version your prompts
-2. Test different prompt variants
-3. Share prompts across your organization
-4. Maintain consistent prompt templates</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Model Registry Issue</td>
+            <td class="finding-details">No model package groups found</td>
+            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>BR-08</code></td>
-            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
-            <td class="finding-details">No Bedrock agents found in the account</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Feature Store Issue</td>
+            <td class="finding-details">No feature groups found</td>
+            <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>BR-09</code></td>
-            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Error during check: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::333333333333:assumed-role/aiml-security-50498124355-BedrockSecurityAssessment-P5zGBYCeQeZD/aiml-security-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:333333333333:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
-            <td class="resolution-text">Investigate error and retry assessment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Pipelines Issue</td>
+            <td class="finding-details">No ML pipelines found</td>
+            <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>BR-10</code></td>
-            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
-            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
-            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-06</code></td>
+            <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
+            <td class="finding-details">No SageMaker Clarify jobs found</td>
+            <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>BR-11</code></td>
-            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
-            <td class="finding-details">No custom/fine-tuned models found in the account</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-07</code></td>
+            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
+            <td class="finding-details">No Model Monitor schedules found</td>
+            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>BR-12</code></td>
-            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
-            <td class="finding-details">Model invocation logging to S3 is not configured</td>
-            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-08</code></td>
+            <td class="col-domain">Model Registry Registry Not Used</td>
+            <td class="finding-details">Model Registry is not being utilized</td>
+            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>BR-13</code></td>
-            <td class="col-domain">Bedrock Flows Guardrails Check</td>
-            <td class="finding-details">No Bedrock Flows found in the account</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-09</code></td>
+            <td class="col-domain">SageMaker Notebook Root Access Check</td>
+            <td class="finding-details">No notebook instances found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">No roles found with AmazonBedrockFullAccess policy</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-10</code></td>
+            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
+            <td class="finding-details">No notebook instances found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>BR-02</code></td>
-            <td class="col-domain">Amazon Bedrock private connectivity not used</td>
-            <td class="finding-details">No Bedrock service VPC endpoints found in VPCs: vpc-038ace59e6d821137</td>
-            <td class="resolution-text">Create a VPC endpoint in your VPC with any of the following Bedrock service endpoints that your application may be using:
-- com.amazonaws.region.bedrock
-- com.amazonaws.region.bedrock-runtime
-- com.amazonaws.region.bedrock-agent
-- com.amazonaws.region.bedrock-agent-runtime</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">No identities found with overly permissive marketplace subscription access</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-11</code></td>
+            <td class="col-domain">SageMaker Model Network Isolation Check</td>
+            <td class="finding-details">No models found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>BR-04</code></td>
-            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
-            <td class="finding-details">Model invocation logging is not enabled. This limits your ability to track and audit model usage.</td>
-            <td class="resolution-text">Enable model invocation logging to collect invocation logs, model input data, and model output data. Configure logging to deliver to Amazon S3, CloudWatch Logs, or both for comprehensive monitoring.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>BR-05</code></td>
-            <td class="col-domain">Bedrock Guardrails Check</td>
-            <td class="finding-details">No Amazon Bedrock Guardrails are configured. This may expose your application to potential risks such as harmful content, sensitive information disclosure, or hallucinations.</td>
-            <td class="resolution-text">Configure Bedrock Guardrails to implement safeguards such as:
-- Content filters to block harmful content
-- Denied topics to prevent undesirable discussions
-- Sensitive information filters to protect PII
-- Contextual grounding checks to prevent hallucinations</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>BR-06</code></td>
-            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
-            <td class="finding-details">CloudTrail is properly configured to log Bedrock API activity in trails: IsengardTrail-DO-NOT-DELETE</td>
-            <td class="resolution-text">No action required. Continue monitoring CloudTrail logs for Bedrock activity.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>BR-07</code></td>
-            <td class="col-domain">Bedrock Prompt Management Check</td>
-            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
-            <td class="resolution-text">Implement Prompt Management to:
-1. Create and version your prompts
-2. Test different prompt variants
-3. Share prompts across your organization
-4. Maintain consistent prompt templates</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>BR-08</code></td>
-            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
-            <td class="finding-details">No Bedrock agents found in the account</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-12</code></td>
+            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
+            <td class="finding-details">No InService endpoints found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>BR-09</code></td>
-            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Error during check: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::666666666666:assumed-role/aiml-security-mgmt-BedrockSecurityAssessmentFunctio-wExYSLdcUmwT/aiml-security-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:666666666666:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
-            <td class="resolution-text">Investigate error and retry assessment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>BR-10</code></td>
-            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
-            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
-            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-13</code></td>
+            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
+            <td class="finding-details">No monitoring schedules found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>BR-11</code></td>
-            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
-            <td class="finding-details">No custom/fine-tuned models found in the account</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-14</code></td>
+            <td class="col-domain">SageMaker Model Repository Access Check</td>
+            <td class="finding-details">No models found or all use default Platform access</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>BR-12</code></td>
-            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
-            <td class="finding-details">Model invocation logging to S3 is not configured</td>
-            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-15</code></td>
+            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
+            <td class="finding-details">No feature groups with offline stores found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>BR-13</code></td>
-            <td class="col-domain">Bedrock Flows Guardrails Check</td>
-            <td class="finding-details">No Bedrock Flows found in the account</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-16</code></td>
+            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
+            <td class="finding-details">No data quality job definitions found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">No roles found with AmazonBedrockFullAccess policy</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-17</code></td>
+            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
+            <td class="finding-details">No processing jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-02</code></td>
-            <td class="col-domain">Amazon Bedrock private connectivity not used</td>
-            <td class="finding-details">No VPCs found in the account</td>
-            <td class="resolution-text">Create a VPC endpoint in your VPC with any of the following Bedrock service endpoints that your application may be using:
-- com.amazonaws.region.bedrock
-- com.amazonaws.region.bedrock-runtime
-- com.amazonaws.region.bedrock-agent
-- com.amazonaws.region.bedrock-agent-runtime</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">No identities found with overly permissive marketplace subscription access</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-18</code></td>
+            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
+            <td class="finding-details">No transform jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-04</code></td>
-            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
-            <td class="finding-details">Model invocation logging is not enabled. This limits your ability to track and audit model usage.</td>
-            <td class="resolution-text">Enable model invocation logging to collect invocation logs, model input data, and model output data. Configure logging to deliver to Amazon S3, CloudWatch Logs, or both for comprehensive monitoring.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-05</code></td>
-            <td class="col-domain">Bedrock Guardrails Check</td>
-            <td class="finding-details">No Amazon Bedrock Guardrails are configured. This may expose your application to potential risks such as harmful content, sensitive information disclosure, or hallucinations.</td>
-            <td class="resolution-text">Configure Bedrock Guardrails to implement safeguards such as:
-- Content filters to block harmful content
-- Denied topics to prevent undesirable discussions
-- Sensitive information filters to protect PII
-- Contextual grounding checks to prevent hallucinations</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-06</code></td>
-            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
-            <td class="finding-details">CloudTrail is properly configured to log Bedrock API activity in trails: aws-controltower-BaselineCloudTrail</td>
-            <td class="resolution-text">No action required. Continue monitoring CloudTrail logs for Bedrock activity.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-07</code></td>
-            <td class="col-domain">Bedrock Prompt Management Check</td>
-            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
-            <td class="resolution-text">Implement Prompt Management to:
-1. Create and version your prompts
-2. Test different prompt variants
-3. Share prompts across your organization
-4. Maintain consistent prompt templates</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-08</code></td>
-            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
-            <td class="finding-details">No Bedrock agents found in the account</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-19</code></td>
+            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
+            <td class="finding-details">No hyperparameter tuning jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-09</code></td>
-            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Error during check: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::444444444444:assumed-role/aiml-security-61755615766-BedrockSecurityAssessment-gFAyGkIDfGQ9/aiml-security-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:444444444444:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
-            <td class="resolution-text">Investigate error and retry assessment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-10</code></td>
-            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
-            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
-            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-20</code></td>
+            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
+            <td class="finding-details">No compilation jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-11</code></td>
-            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
-            <td class="finding-details">No custom/fine-tuned models found in the account</td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-21</code></td>
+            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
+            <td class="finding-details">No AutoML jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-12</code></td>
-            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
-            <td class="finding-details">Model invocation logging to S3 is not configured</td>
-            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-22</code></td>
+            <td class="col-domain">Model Approval Workflow Check</td>
+            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
+            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>BR-13</code></td>
-            <td class="col-domain">Bedrock Flows Guardrails Check</td>
-            <td class="finding-details">No Bedrock Flows found in the account</td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-23</code></td>
+            <td class="col-domain">Model Drift Detection Check</td>
+            <td class="finding-details">No InService endpoints found to monitor.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr></tbody></table></div></div>
-            </section>
-            <section id="sagemaker" class="section">
-                <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"></path></svg></span>Amazon SageMaker Findings</div>
-                <div class="filter-bar">
-                    <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="sagemakerSearchInput"></div>
-                    <div class="filter-group"><label>Account</label><select id="sagemakerAccountFilter"><option value="">All Accounts</option><option value="111111111111">111111111111</option><option value="222222222222">222222222222</option><option value="333333333333">333333333333</option><option value="444444444444">444444444444</option><option value="555555555555">555555555555</option><option value="666666666666">666666666666</option></select></div>
-                    <div class="filter-group"><label>Severity</label><select id="sagemakerSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
-                    <div class="filter-group"><label>Status</label><select id="sagemakerStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
-                    <button class="btn btn-reset" id="sagemakerResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"></path><path d="M3 3v5h5"></path></svg>Reset</button>
-                </div>
-                <div class="card"><div class="table-wrap"><table id="sagemakerTable"><thead><tr><th>Account ID</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-24</code></td>
+            <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
+            <td class="finding-details">No InService endpoints found.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-25</code></td>
+            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
+            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
+            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
             <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker Full Access Policy Used</td>
-            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20250904T123250' has AmazonSageMakerFullAccess policy attached</td>
-            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker Full Access Policy Used</td>
-            <td class="finding-details">Role 'AmazonSageMakerServiceCatalogProductsExecutionRole' has AmazonSageMakerFullAccess policy attached</td>
-            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
             <td class="finding-details">No SageMaker resources found to check for data protection</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
             <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
             <td class="finding-details">No model package groups found</td>
             <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
             <td class="finding-details">No feature groups found</td>
             <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
             <td class="finding-details">No ML pipelines found</td>
             <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
             <td class="finding-details">No SageMaker Clarify jobs found</td>
             <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
             <td class="finding-details">No Model Monitor schedules found</td>
             <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
             <td class="finding-details">Model Registry is not being utilized</td>
             <td class="resolution-text">Implement proper model versioning and approval workflows</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
             <td class="finding-details">No notebook instances found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
             <td class="finding-details">No notebook instances found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
             <td class="finding-details">No models found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
             <td class="finding-details">No InService endpoints found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
             <td class="finding-details">No monitoring schedules found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
             <td class="finding-details">No models found or all use default Platform access</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
             <td class="finding-details">No feature groups with offline stores found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
             <td class="finding-details">No data quality job definitions found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
             <td class="finding-details">No processing jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
             <td class="finding-details">No transform jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
             <td class="finding-details">No hyperparameter tuning jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
             <td class="finding-details">No compilation jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
             <td class="finding-details">No AutoML jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
             <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
             <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
             <td class="finding-details">No InService endpoints found to monitor.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
             <td class="finding-details">No InService endpoints found.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
             <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
             <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
             <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker IAM Permissions Check</td>
-            <td class="finding-details">No issues found with IAM permissions, SSO is enabled, and no stale access detected</td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
             <td class="finding-details">No SageMaker resources found to check for data protection</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
             <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
             <td class="finding-details">No model package groups found</td>
             <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
             <td class="finding-details">No feature groups found</td>
             <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
             <td class="finding-details">No ML pipelines found</td>
             <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
             <td class="finding-details">No SageMaker Clarify jobs found</td>
             <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
             <td class="finding-details">No Model Monitor schedules found</td>
             <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
             <td class="finding-details">Model Registry is not being utilized</td>
             <td class="resolution-text">Implement proper model versioning and approval workflows</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
             <td class="finding-details">No notebook instances found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
             <td class="finding-details">No notebook instances found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
             <td class="finding-details">No models found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
             <td class="finding-details">No InService endpoints found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
             <td class="finding-details">No monitoring schedules found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
             <td class="finding-details">No models found or all use default Platform access</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
             <td class="finding-details">No feature groups with offline stores found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
             <td class="finding-details">No data quality job definitions found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
             <td class="finding-details">No processing jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
             <td class="finding-details">No transform jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
             <td class="finding-details">No hyperparameter tuning jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
             <td class="finding-details">No compilation jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
             <td class="finding-details">No AutoML jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
             <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
             <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
             <td class="finding-details">No InService endpoints found to monitor.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
             <td class="finding-details">No InService endpoints found.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
             <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
             <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker IAM Permissions Check</td>
+            <td class="finding-details">No issues found with IAM permissions and no stale access detected</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
             <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker IAM Permissions Check</td>
-            <td class="finding-details">No issues found with IAM permissions, SSO is enabled, and no stale access detected</td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
             <td class="finding-details">No SageMaker resources found to check for data protection</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
             <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
             <td class="finding-details">No model package groups found</td>
             <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
             <td class="finding-details">No feature groups found</td>
             <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
             <td class="finding-details">No ML pipelines found</td>
             <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
             <td class="finding-details">No SageMaker Clarify jobs found</td>
             <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
             <td class="finding-details">No Model Monitor schedules found</td>
             <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
             <td class="finding-details">Model Registry is not being utilized</td>
             <td class="resolution-text">Implement proper model versioning and approval workflows</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
             <td class="finding-details">No notebook instances found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
             <td class="finding-details">No notebook instances found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
             <td class="finding-details">No models found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
             <td class="finding-details">No InService endpoints found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
             <td class="finding-details">No monitoring schedules found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
             <td class="finding-details">No models found or all use default Platform access</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
             <td class="finding-details">No feature groups with offline stores found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
             <td class="finding-details">No data quality job definitions found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
             <td class="finding-details">No processing jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
             <td class="finding-details">No transform jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
             <td class="finding-details">No hyperparameter tuning jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
             <td class="finding-details">No compilation jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
             <td class="finding-details">No AutoML jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
             <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
             <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
             <td class="finding-details">No InService endpoints found to monitor.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
             <td class="finding-details">No InService endpoints found.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
             <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
             <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
             <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker IAM Permissions Check</td>
-            <td class="finding-details">No issues found with IAM permissions, SSO is enabled, and no stale access detected</td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
             <td class="finding-details">No SageMaker resources found to check for data protection</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
             <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
             <td class="finding-details">No model package groups found</td>
             <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
             <td class="finding-details">No feature groups found</td>
             <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
             <td class="finding-details">No ML pipelines found</td>
             <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
             <td class="finding-details">No SageMaker Clarify jobs found</td>
             <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
             <td class="finding-details">No Model Monitor schedules found</td>
             <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
             <td class="finding-details">Model Registry is not being utilized</td>
             <td class="resolution-text">Implement proper model versioning and approval workflows</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
             <td class="finding-details">No notebook instances found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
             <td class="finding-details">No notebook instances found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
             <td class="finding-details">No models found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
             <td class="finding-details">No InService endpoints found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
             <td class="finding-details">No monitoring schedules found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
             <td class="finding-details">No models found or all use default Platform access</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
             <td class="finding-details">No feature groups with offline stores found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
             <td class="finding-details">No data quality job definitions found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
             <td class="finding-details">No processing jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
             <td class="finding-details">No transform jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
             <td class="finding-details">No hyperparameter tuning jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
             <td class="finding-details">No compilation jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
             <td class="finding-details">No AutoML jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
             <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
             <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
             <td class="finding-details">No InService endpoints found to monitor.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
             <td class="finding-details">No InService endpoints found.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
             <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
             <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr></tbody></table></div></div>
+            </section>
+            <section id="agentcore" class="section">
+                <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"/></svg></span>Amazon Bedrock AgentCore Findings</div>
+                <div class="filter-bar">
+                    <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="agentcoreSearchInput"></div>
+                    <div class="filter-group"><label>Account</label><select id="agentcoreAccountFilter"><option value="">All Accounts</option><option value="193047247167">193047247167</option><option value="230266523520">230266523520</option><option value="472057511786">472057511786</option></select></div>
+                    <div class="filter-group"><label for="agentcoreRegionFilter">Region</label><select id="agentcoreRegionFilter"><option value="">All Regions</option><option value="ap-southeast-2">ap-southeast-2</option><option value="eu-west-1">eu-west-1</option><option value="us-east-1">us-east-1</option><option value="Global">Global</option></select></div>
+                    <div class="filter-group"><label>Severity</label><select id="agentcoreSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
+                    <div class="filter-group"><label>Status</label><select id="agentcoreStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
+                    <button class="btn btn-reset" id="agentcoreResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
+                </div>
+                <div class="card"><div class="table-wrap"><table id="agentcoreTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-01</code></td>
-            <td class="col-domain">SageMaker Internet Access Check</td>
-            <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Observability Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker IAM Permissions Check</td>
-            <td class="finding-details">No issues found with IAM permissions, SSO is enabled, and no stale access detected</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-05</code></td>
+            <td class="col-domain">AgentCore Encryption Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-03</code></td>
-            <td class="col-domain">Data Protection Check</td>
-            <td class="finding-details">No SageMaker resources found to check for data protection</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
+            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-04</code></td>
-            <td class="col-domain">GuardDuty Enabled</td>
-            <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Configuration Check</td>
+            <td class="finding-details">No Memory resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-05</code></td>
-            <td class="col-domain">SageMaker Model Registry Issue</td>
-            <td class="finding-details">No model package groups found</td>
-            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-13</code></td>
+            <td class="col-domain">AgentCore Gateway Configuration Check</td>
+            <td class="finding-details">No Gateway resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-05</code></td>
-            <td class="col-domain">SageMaker Feature Store Issue</td>
-            <td class="finding-details">No feature groups found</td>
-            <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-08</code></td>
+            <td class="col-domain">AgentCore VPC Endpoints Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-10</code></td>
+            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
+            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-11</code></td>
+            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
+            <td class="finding-details">No Policy Engines found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-12</code></td>
+            <td class="col-domain">AgentCore Gateway Encryption Check</td>
+            <td class="finding-details">No Gateways found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-05</code></td>
-            <td class="col-domain">SageMaker Pipelines Issue</td>
-            <td class="finding-details">No ML pipelines found</td>
-            <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-02</code></td>
+            <td class="col-domain">AgentCore IAM Full Access Policy</td>
+            <td class="finding-details">The following roles have BedrockAgentCoreFullAccess policy: AmazonSageMaker-ExecutionRole-20250525T153161</td>
+            <td class="resolution-text">Replace with least-privilege policies scoped to specific AgentCore resources and actions</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-02</code></td>
+            <td class="col-domain">AgentCore IAM Wildcard Permissions</td>
+            <td class="finding-details">The following roles have wildcard AgentCore permissions on all resources: agentcore-wildrydes_gateway_role_ab3991f6-role</td>
+            <td class="resolution-text">Scope permissions to specific AgentCore resources using resource ARNs</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-03</code></td>
+            <td class="col-domain">AgentCore Stale Access</td>
+            <td class="finding-details">The following principals have not accessed AgentCore in 60+ days: role 'AmazonSageMaker-ExecutionRole-20250525T153161' (179 days), role 'AWSServiceRoleForBedrockAgentCoreRuntimeIdentity' (179 days), role 'CustomerSupportAssistantBedrockAgentCoreRole-us-east-1' (179 days), role 'resco-aiml-security-19304-AgentCoreSecurityAssessme-w773pPsFWNsn' (62 days)</td>
+            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-03</code></td>
+            <td class="col-domain">AgentCore Unused Permissions</td>
+            <td class="finding-details">The following principals have AgentCore permissions but have never accessed the service: role 'agentcore-wildrydes_gateway_role_ab3991f6-role', role 'AIMLSecurityMemberRole', role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-a6ddf3fc76', role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-ed660add8b', role 'aws-api-mcp-server-execution-role', role 'CustomerSupportStackInfra-RuntimeAgentCoreRole-N188nLB5RtLO', role 'IDP-AnalyticsProcessorFunctionRole-H3gwkJtNqrqW', role 'ReSCOAIMLMemberRole'</td>
+            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
+            <td><code>193047247167</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-09</code></td>
+            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
+            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
+            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
+            <td class="finding-details">Runtime 'origami_expeditions' (origami_expeditions-TR4jDoHXe8) is not configured with VPC. This exposes the runtime to public internet.</td>
+            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
+            <td class="finding-details">Runtime 'neoCyan_Agent' (neoCyan_Agent-yAFXSWFaA3) is not configured with VPC. This exposes the runtime to public internet.</td>
+            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
+            <td class="finding-details">Runtime 'customer_support_agent' (customer_support_agent-ZP4e8z55dP) is not configured with VPC. This exposes the runtime to public internet.</td>
+            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
+            <td class="finding-details">Runtime 'cdk_agent_core' (cdk_agent_core-7FqFlD86LW) is not configured with VPC. This exposes the runtime to public internet.</td>
+            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
+            <td class="finding-details">Runtime 'awsapimcpserver' (awsapimcpserver-mJrqgt37GO) is not configured with VPC. This exposes the runtime to public internet.</td>
+            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
+            <td class="finding-details">Runtime 'origami_expeditions' (origami_expeditions-TR4jDoHXe8) does not have CloudWatch Logs configured</td>
+            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
+            <td class="finding-details">Runtime 'origami_expeditions' (origami_expeditions-TR4jDoHXe8) does not have X-Ray tracing enabled</td>
+            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
+            <td class="finding-details">Runtime 'neoCyan_Agent' (neoCyan_Agent-yAFXSWFaA3) does not have CloudWatch Logs configured</td>
+            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
+            <td class="finding-details">Runtime 'neoCyan_Agent' (neoCyan_Agent-yAFXSWFaA3) does not have X-Ray tracing enabled</td>
+            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
+            <td class="finding-details">Runtime 'customer_support_agent' (customer_support_agent-ZP4e8z55dP) does not have CloudWatch Logs configured</td>
+            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
+            <td class="finding-details">Runtime 'customer_support_agent' (customer_support_agent-ZP4e8z55dP) does not have X-Ray tracing enabled</td>
+            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
+            <td class="finding-details">Runtime 'cdk_agent_core' (cdk_agent_core-7FqFlD86LW) does not have CloudWatch Logs configured</td>
+            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
+            <td class="finding-details">Runtime 'cdk_agent_core' (cdk_agent_core-7FqFlD86LW) does not have X-Ray tracing enabled</td>
+            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
+            <td class="finding-details">Runtime 'awsapimcpserver' (awsapimcpserver-mJrqgt37GO) does not have CloudWatch Logs configured</td>
+            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
+            <td class="finding-details">Runtime 'awsapimcpserver' (awsapimcpserver-mJrqgt37GO) does not have X-Ray tracing enabled</td>
+            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="low" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-05</code></td>
+            <td class="col-domain">AgentCore ECR Repository AWS-Managed Keys</td>
+            <td class="finding-details">ECR repository 'bedrock-agentcore-customer_support_agent' uses AWS-managed keys instead of customer-managed KMS keys</td>
+            <td class="resolution-text">Consider using customer-managed KMS keys for better control and audit capabilities</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="low" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-05</code></td>
+            <td class="col-domain">AgentCore ECR Repository AWS-Managed Keys</td>
+            <td class="finding-details">ECR repository 'bedrock-agentcore-origami_expeditions' uses AWS-managed keys instead of customer-managed KMS keys</td>
+            <td class="resolution-text">Consider using customer-managed KMS keys for better control and audit capabilities</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
+            <td class="finding-details">Runtime 'origami_expeditions' (origami_expeditions-TR4jDoHXe8) does not have storage configuration for browser tools</td>
+            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
+            <td class="finding-details">Runtime 'neoCyan_Agent' (neoCyan_Agent-yAFXSWFaA3) does not have storage configuration for browser tools</td>
+            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
+            <td class="finding-details">Runtime 'customer_support_agent' (customer_support_agent-ZP4e8z55dP) does not have storage configuration for browser tools</td>
+            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
+            <td class="finding-details">Runtime 'cdk_agent_core' (cdk_agent_core-7FqFlD86LW) does not have storage configuration for browser tools</td>
+            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-06</code></td>
-            <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
-            <td class="finding-details">No SageMaker Clarify jobs found</td>
-            <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
+            <td class="finding-details">Runtime 'awsapimcpserver' (awsapimcpserver-mJrqgt37GO) does not have storage configuration for browser tools</td>
+            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-07</code></td>
-            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
-            <td class="finding-details">No Model Monitor schedules found</td>
-            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Encryption</td>
+            <td class="finding-details">Memory 'CustomerSupportMemory-x69jBq5GLp' (CustomerSupportMemory-x69jBq5GLp) does not have customer-managed encryption configured</td>
+            <td class="resolution-text">Enable encryption with customer-managed KMS keys</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-08</code></td>
-            <td class="col-domain">Model Registry Registry Not Used</td>
-            <td class="finding-details">Model Registry is not being utilized</td>
-            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Encryption</td>
+            <td class="finding-details">Memory 'cdk_agent_core_mem-uxfIagADuF' (cdk_agent_core_mem-uxfIagADuF) does not have customer-managed encryption configured</td>
+            <td class="resolution-text">Enable encryption with customer-managed KMS keys</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-09</code></td>
-            <td class="col-domain">SageMaker Notebook Root Access Check</td>
-            <td class="finding-details">No notebook instances found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Encryption</td>
+            <td class="finding-details">Memory 'wildrydes_memory_ab3991f6-9FjiHOHjT2' (wildrydes_memory_ab3991f6-9FjiHOHjT2) does not have customer-managed encryption configured</td>
+            <td class="resolution-text">Enable encryption with customer-managed KMS keys</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-10</code></td>
-            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
-            <td class="finding-details">No notebook instances found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-13</code></td>
+            <td class="col-domain">AgentCore Gateway Configuration Check</td>
+            <td class="finding-details">No Gateway resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-11</code></td>
-            <td class="col-domain">SageMaker Model Network Isolation Check</td>
-            <td class="finding-details">No models found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-08</code></td>
+            <td class="col-domain">AgentCore VPC Endpoints Missing</td>
+            <td class="finding-details">No AgentCore VPC endpoints found in 4 VPCs. AgentCore API traffic traverses public internet, exposing it to interception.</td>
+            <td class="resolution-text">Create VPC interface endpoints for AgentCore services:
+1. com.amazonaws.region.bedrock-agentcore
+2. com.amazonaws.region.bedrock-agentcore-control
+3. com.amazonaws.region.bedrock-agentcore-runtime
+This enables private connectivity via AWS PrivateLink</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-12</code></td>
-            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
-            <td class="finding-details">No InService endpoints found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-10</code></td>
+            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
+            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-13</code></td>
-            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
-            <td class="finding-details">No monitoring schedules found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-11</code></td>
+            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
+            <td class="finding-details">No Policy Engines found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-14</code></td>
-            <td class="col-domain">SageMaker Model Repository Access Check</td>
-            <td class="finding-details">No models found or all use default Platform access</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-12</code></td>
+            <td class="col-domain">AgentCore Gateway Encryption Check</td>
+            <td class="finding-details">No Gateways found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-15</code></td>
-            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
-            <td class="finding-details">No feature groups with offline stores found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-16</code></td>
-            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
-            <td class="finding-details">No data quality job definitions found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Observability Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-17</code></td>
-            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
-            <td class="finding-details">No processing jobs found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-05</code></td>
+            <td class="col-domain">AgentCore Encryption Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-18</code></td>
-            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
-            <td class="finding-details">No transform jobs found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
+            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-19</code></td>
-            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
-            <td class="finding-details">No hyperparameter tuning jobs found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Configuration Check</td>
+            <td class="finding-details">No Memory resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-20</code></td>
-            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
-            <td class="finding-details">No compilation jobs found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-13</code></td>
+            <td class="col-domain">AgentCore Gateway Configuration Check</td>
+            <td class="finding-details">No Gateway resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-21</code></td>
-            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
-            <td class="finding-details">No AutoML jobs found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-08</code></td>
+            <td class="col-domain">AgentCore VPC Endpoints Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-22</code></td>
-            <td class="col-domain">Model Approval Workflow Check</td>
-            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
-            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-23</code></td>
-            <td class="col-domain">Model Drift Detection Check</td>
-            <td class="finding-details">No InService endpoints found to monitor.</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-24</code></td>
-            <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
-            <td class="finding-details">No InService endpoints found.</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-10</code></td>
+            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
+            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity low">Low</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>SM-25</code></td>
-            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
-            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
-            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-01</code></td>
-            <td class="col-domain">SageMaker Internet Access Check</td>
-            <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-11</code></td>
+            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
+            <td class="finding-details">No Policy Engines found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker IAM Permissions Check</td>
-            <td class="finding-details">No issues found with IAM permissions, SSO is enabled, and no stale access detected</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-03</code></td>
-            <td class="col-domain">Data Protection Check</td>
-            <td class="finding-details">No SageMaker resources found to check for data protection</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-12</code></td>
+            <td class="col-domain">AgentCore Gateway Encryption Check</td>
+            <td class="finding-details">No Gateways found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-04</code></td>
-            <td class="col-domain">GuardDuty Enabled</td>
-            <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-05</code></td>
-            <td class="col-domain">SageMaker Model Registry Issue</td>
-            <td class="finding-details">No model package groups found</td>
-            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-05</code></td>
-            <td class="col-domain">SageMaker Feature Store Issue</td>
-            <td class="finding-details">No feature groups found</td>
-            <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-05</code></td>
-            <td class="col-domain">SageMaker Pipelines Issue</td>
-            <td class="finding-details">No ML pipelines found</td>
-            <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-06</code></td>
-            <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
-            <td class="finding-details">No SageMaker Clarify jobs found</td>
-            <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Observability Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-07</code></td>
-            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
-            <td class="finding-details">No Model Monitor schedules found</td>
-            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-05</code></td>
+            <td class="col-domain">AgentCore Encryption Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-08</code></td>
-            <td class="col-domain">Model Registry Registry Not Used</td>
-            <td class="finding-details">Model Registry is not being utilized</td>
-            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
+            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-09</code></td>
-            <td class="col-domain">SageMaker Notebook Root Access Check</td>
-            <td class="finding-details">No notebook instances found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Configuration Check</td>
+            <td class="finding-details">No Memory resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-10</code></td>
-            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
-            <td class="finding-details">No notebook instances found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-13</code></td>
+            <td class="col-domain">AgentCore Gateway Configuration Check</td>
+            <td class="finding-details">No Gateway resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-11</code></td>
-            <td class="col-domain">SageMaker Model Network Isolation Check</td>
-            <td class="finding-details">No models found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-08</code></td>
+            <td class="col-domain">AgentCore VPC Endpoints Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-12</code></td>
-            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
-            <td class="finding-details">No InService endpoints found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-10</code></td>
+            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
+            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-13</code></td>
-            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
-            <td class="finding-details">No monitoring schedules found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-11</code></td>
+            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
+            <td class="finding-details">No Policy Engines found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-14</code></td>
-            <td class="col-domain">SageMaker Model Repository Access Check</td>
-            <td class="finding-details">No models found or all use default Platform access</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-12</code></td>
+            <td class="col-domain">AgentCore Gateway Encryption Check</td>
+            <td class="finding-details">No Gateways found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-15</code></td>
-            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
-            <td class="finding-details">No feature groups with offline stores found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-16</code></td>
-            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
-            <td class="finding-details">No data quality job definitions found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Observability Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-17</code></td>
-            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
-            <td class="finding-details">No processing jobs found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-05</code></td>
+            <td class="col-domain">AgentCore Encryption Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-18</code></td>
-            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
-            <td class="finding-details">No transform jobs found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
+            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-19</code></td>
-            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
-            <td class="finding-details">No hyperparameter tuning jobs found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Configuration Check</td>
+            <td class="finding-details">No Memory resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-20</code></td>
-            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
-            <td class="finding-details">No compilation jobs found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-13</code></td>
+            <td class="col-domain">AgentCore Gateway Configuration Check</td>
+            <td class="finding-details">No Gateway resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-21</code></td>
-            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
-            <td class="finding-details">No AutoML jobs found</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-08</code></td>
+            <td class="col-domain">AgentCore VPC Endpoints Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-22</code></td>
-            <td class="col-domain">Model Approval Workflow Check</td>
-            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
-            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-10</code></td>
+            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
+            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-23</code></td>
-            <td class="col-domain">Model Drift Detection Check</td>
-            <td class="finding-details">No InService endpoints found to monitor.</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-11</code></td>
+            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
+            <td class="finding-details">No Policy Engines found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-24</code></td>
-            <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
-            <td class="finding-details">No InService endpoints found.</td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-12</code></td>
+            <td class="col-domain">AgentCore Gateway Encryption Check</td>
+            <td class="finding-details">No Gateways found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity low">Low</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>SM-25</code></td>
-            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
-            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
-            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr></tbody></table></div></div>
-            </section>
-            <section id="agentcore" class="section">
-                <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"></path></svg></span>Amazon Bedrock AgentCore Findings</div>
-                <div class="filter-bar">
-                    <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="agentcoreSearchInput"></div>
-                    <div class="filter-group"><label>Account</label><select id="agentcoreAccountFilter"><option value="">All Accounts</option><option value="111111111111">111111111111</option><option value="222222222222">222222222222</option><option value="333333333333">333333333333</option><option value="444444444444">444444444444</option><option value="555555555555">555555555555</option><option value="666666666666">666666666666</option></select></div>
-                    <div class="filter-group"><label>Severity</label><select id="agentcoreSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
-                    <div class="filter-group"><label>Status</label><select id="agentcoreStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
-                    <button class="btn btn-reset" id="agentcoreResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"></path><path d="M3 3v5h5"></path></svg>Reset</button>
-                </div>
-                <div class="card"><div class="table-wrap"><table id="agentcoreTable"><thead><tr><th>Account ID</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="agentcore" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_workflow_agent' (p2p_dev_workflow_agent-qyDVmFHwq1) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_sourcing_agent' (p2p_dev_sourcing_agent-20pbPRFySM) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_requisition_agent' (p2p_dev_requisition_agent-bkd9UOEhEP) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_receiving_agent' (p2p_dev_receiving_agent-cMNmY6Bk5o) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_po_management_agent' (p2p_dev_po_management_agent-GPXIlDCCZG) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_payment_agent' (p2p_dev_payment_agent-lr2fGW7wE0) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_invoice_matching_agent' (p2p_dev_invoice_matching_agent-Lt1HkbCPzm) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
             <td><code>AC-02</code></td>
             <td class="col-domain">AgentCore IAM Full Access Check</td>
             <td class="finding-details">No roles with overly permissive AgentCore access found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
             <td><code>AC-03</code></td>
-            <td class="col-domain">AgentCore Unused Permissions</td>
-            <td class="finding-details">The following principals have AgentCore permissions but have never accessed the service: role 'AIMLSecurityMemberRole', role 'p2p-dev-agentcore-execution-role'</td>
+            <td class="col-domain">AgentCore Stale Access</td>
+            <td class="finding-details">The following principals have not accessed AgentCore in 60+ days: role 'resco-aiml-security-mgmt-AgentCoreSecurityAssessmen-JrbYHkz9UslU' (62 days)</td>
             <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'p2p_dev_workflow_agent' (p2p_dev_workflow_agent-qyDVmFHwq1) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'p2p_dev_workflow_agent' (p2p_dev_workflow_agent-qyDVmFHwq1) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-03</code></td>
+            <td class="col-domain">AgentCore Unused Permissions</td>
+            <td class="finding-details">The following principals have AgentCore permissions but have never accessed the service: role 'AIMLSecurityMemberRole', role 'ReSCOAIMLMemberRole'</td>
+            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'p2p_dev_sourcing_agent' (p2p_dev_sourcing_agent-20pbPRFySM) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
+            <td><code>472057511786</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-09</code></td>
+            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
+            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
+            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'p2p_dev_sourcing_agent' (p2p_dev_sourcing_agent-20pbPRFySM) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'p2p_dev_requisition_agent' (p2p_dev_requisition_agent-bkd9UOEhEP) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="col-domain">AgentCore Observability Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'p2p_dev_requisition_agent' (p2p_dev_requisition_agent-bkd9UOEhEP) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-05</code></td>
+            <td class="col-domain">AgentCore Encryption Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'p2p_dev_receiving_agent' (p2p_dev_receiving_agent-cMNmY6Bk5o) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
+            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'p2p_dev_receiving_agent' (p2p_dev_receiving_agent-cMNmY6Bk5o) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Configuration Check</td>
+            <td class="finding-details">No Memory resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'p2p_dev_po_management_agent' (p2p_dev_po_management_agent-GPXIlDCCZG) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-13</code></td>
+            <td class="col-domain">AgentCore Gateway Configuration Check</td>
+            <td class="finding-details">No Gateway resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'p2p_dev_po_management_agent' (p2p_dev_po_management_agent-GPXIlDCCZG) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-08</code></td>
+            <td class="col-domain">AgentCore VPC Endpoints Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'p2p_dev_payment_agent' (p2p_dev_payment_agent-lr2fGW7wE0) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-10</code></td>
+            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
+            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'p2p_dev_payment_agent' (p2p_dev_payment_agent-lr2fGW7wE0) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-11</code></td>
+            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
+            <td class="finding-details">No Policy Engines found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'p2p_dev_invoice_matching_agent' (p2p_dev_invoice_matching_agent-Lt1HkbCPzm) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-12</code></td>
+            <td class="col-domain">AgentCore Gateway Encryption Check</td>
+            <td class="finding-details">No Gateways found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'p2p_dev_invoice_matching_agent' (p2p_dev_invoice_matching_agent-Lt1HkbCPzm) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="col-domain">AgentCore Observability Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
             <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_workflow_agent' (p2p_dev_workflow_agent-qyDVmFHwq1) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_sourcing_agent' (p2p_dev_sourcing_agent-20pbPRFySM) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_requisition_agent' (p2p_dev_requisition_agent-bkd9UOEhEP) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_receiving_agent' (p2p_dev_receiving_agent-cMNmY6Bk5o) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_po_management_agent' (p2p_dev_po_management_agent-GPXIlDCCZG) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_payment_agent' (p2p_dev_payment_agent-lr2fGW7wE0) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'p2p_dev_invoice_matching_agent' (p2p_dev_invoice_matching_agent-Lt1HkbCPzm) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
+            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
             <td class="finding-details">No Memory resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
             <td class="finding-details">No Gateway resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>AC-08</code></td>
-            <td class="col-domain">AgentCore VPC Endpoints Missing</td>
-            <td class="finding-details">No AgentCore VPC endpoints found in 3 VPCs. AgentCore API traffic traverses public internet, exposing it to interception.</td>
-            <td class="resolution-text">Create VPC interface endpoints for AgentCore services:
-1. com.amazonaws.region.bedrock-agentcore
-2. com.amazonaws.region.bedrock-agentcore-control
-3. com.amazonaws.region.bedrock-agentcore-runtime
-This enables private connectivity via AWS PrivateLink</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222">
-            <td><code>222222222222</code></td>
-            <td><code>AC-09</code></td>
-            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
-            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
-            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="col-domain">AgentCore VPC Endpoints Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
             <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
             <td class="finding-details">No Policy Engines found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222">
-            <td><code>222222222222</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
             <td class="finding-details">No Gateways found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore VPC Configuration Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
             <td><code>AC-02</code></td>
             <td class="col-domain">AgentCore IAM Full Access Check</td>
             <td class="finding-details">No roles with overly permissive AgentCore access found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-03</code></td>
+            <td class="col-domain">AgentCore Stale Access</td>
+            <td class="finding-details">The following principals have not accessed AgentCore in 60+ days: role 'resco-aiml-security-23026-AgentCoreSecurityAssessme-2AEt2MTxg4AU' (62 days)</td>
+            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
             <td><code>AC-03</code></td>
             <td class="col-domain">AgentCore Unused Permissions</td>
-            <td class="finding-details">The following principals have AgentCore permissions but have never accessed the service: role 'AIMLSecurityMemberRole'</td>
+            <td class="finding-details">The following principals have AgentCore permissions but have never accessed the service: role 'AIMLSecurityMemberRole', role 'ReSCOAIMLMemberRole'</td>
             <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
+            <td><code>230266523520</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-09</code></td>
+            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
+            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
+            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
             <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
             <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
             <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
             <td class="finding-details">No Memory resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
             <td class="finding-details">No Gateway resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
-            <td class="finding-details">No VPCs found in the account</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="555555555555">
-            <td><code>555555555555</code></td>
-            <td><code>AC-09</code></td>
-            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
-            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
-            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
             <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
             <td class="finding-details">No Policy Engines found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="555555555555">
-            <td><code>555555555555</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
             <td class="finding-details">No Gateways found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
             <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-02</code></td>
-            <td class="col-domain">AgentCore IAM Full Access Check</td>
-            <td class="finding-details">No roles with overly permissive AgentCore access found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-03</code></td>
-            <td class="col-domain">AgentCore Unused Permissions</td>
-            <td class="finding-details">The following principals have AgentCore permissions but have never accessed the service: role 'AIMLSecurityMemberRole'</td>
-            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
             <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
             <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
             <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
             <td class="finding-details">No Memory resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
             <td class="finding-details">No Gateway resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>AC-08</code></td>
-            <td class="col-domain">AgentCore VPC Endpoints Missing</td>
-            <td class="finding-details">No AgentCore VPC endpoints found in 5 VPCs. AgentCore API traffic traverses public internet, exposing it to interception.</td>
-            <td class="resolution-text">Create VPC interface endpoints for AgentCore services:
-1. com.amazonaws.region.bedrock-agentcore
-2. com.amazonaws.region.bedrock-agentcore-control
-3. com.amazonaws.region.bedrock-agentcore-runtime
-This enables private connectivity via AWS PrivateLink</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-09</code></td>
-            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
-            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
-            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="col-domain">AgentCore VPC Endpoints Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
             <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
             <td class="finding-details">No Policy Engines found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
             <td class="finding-details">No Gateways found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
+        </tr></tbody></table></div></div>
+            </section>
+            <section id="finserv" class="section"><div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#7C3AED" width="80" height="80"/><path fill="#FFF" d="M40 14 L66 26 L66 31 L14 31 L14 26 Z M20 35 h6 v23 h-6 z M37 35 h6 v23 h-6 z M54 35 h6 v23 h-6 z M14 62 h52 v5 h-52 z"/></svg></span>Financial Services GenAI Risk Findings</div><div class="muted" style="margin:-6px 0 10px;font-size:13px;">Scope: this assessment records findings against each resolved CloudFormation TargetRegions entry. These checks are based on <a href="https://aws.amazon.com/blogs/security/introducing-the-updated-aws-user-guide-to-governance-risk-and-compliance-for-responsible-ai-adoption/" target="_blank">the AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption</a>. Severities follow a documented Likelihood &times; Impact methodology (see docs).</div><div class="filter-bar"><div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="finservSearchInput"></div><div class="filter-group"><label>Account</label><select id="finservAccountFilter"><option value="">All Accounts</option><option value="193047247167">193047247167</option><option value="230266523520">230266523520</option><option value="472057511786">472057511786</option></select></div><div class="filter-group"><label>Region</label><select id="finservRegionFilter"><option value="">All Regions</option><option value="ap-southeast-2">ap-southeast-2</option><option value="eu-west-1">eu-west-1</option><option value="us-east-1">us-east-1</option></select></div><div class="filter-group"><label>Severity</label><select id="finservSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div><div class="filter-group"><label>Status</label><select id="finservStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div><button class="btn btn-reset" id="finservResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button></div><div class="card"><div class="table-wrap"><table id="finservTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="finserv" data-severity="low" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-01</code></td>
+            <td class="col-domain">AWS Shield Advanced Not Enabled</td>
+            <td class="finding-details">AWS Shield Advanced is not subscribed. GenAI API endpoints are vulnerable to volumetric DDoS attacks that can exhaust token quotas and inflate costs.</td>
+            <td class="resolution-text">1. Subscribe to AWS Shield Advanced for DDoS protection.
+2. After subscribing, explicitly add resource protections in the Shield Advanced console for each Bedrock-facing resource (API Gateway stages, ALBs, CloudFront distributions, Route 53 hosted zones). Shield Advanced subscription alone does NOT automatically protect resources — each resource must be individually added to receive protection.
+3. Enable Shield Response Team (SRT) access and configure proactive engagement.
+4. Alternatively, use AWS Firewall Manager with a Shield Advanced policy to automate resource protection based on tags or resource types.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/waf/latest/developerguide/shield-chapter.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore VPC Configuration Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-01</code></td>
+            <td class="col-domain">No Regional WAF Web ACLs Found</td>
+            <td class="finding-details">No AWS WAF regional Web ACLs found. Without WAF, GenAI endpoints lack rate-based rules to block abusive callers.</td>
+            <td class="resolution-text">1. Create a WAF Web ACL with rate-based rules (e.g., 1000 req/5 min per IP).
+2. Associate the ACL with API Gateway stages or ALBs fronting Bedrock.
+3. Add AWS Managed Rules for known bad inputs.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/waf/latest/developerguide/waf-chapter.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-02</code></td>
+            <td class="col-domain">API Gateway Usage Plans Missing Throttle</td>
+            <td class="finding-details">Usage plans without throttling: myAskMeAnything-UsagePlan. Unbounded API calls can exhaust Bedrock token quotas and inflate costs.</td>
+            <td class="resolution-text">Set rateLimit and burstLimit on all usage plans associated with GenAI API stages. Consider per-consumer API keys with individual quotas.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/apigateway/latest/developerguide/api-gateway-request-throttling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-03</code></td>
+            <td class="col-domain">Bedrock Token Quotas At Default</td>
+            <td class="finding-details">All 232 Bedrock token-based quota(s) are at their AWS default values — no quota increase has been applied. Running at default is a legitimate posture, but it should be a reviewed decision aligned with expected peak load rather than an oversight.</td>
+            <td class="resolution-text">1. Review current Bedrock TPM/TPD quotas in the Service Quotas console.
+2. Request increases aligned with expected peak load, or document a deliberate decision to remain at default after review.
+3. Implement client-side token counting and pre-flight quota checks.
+4. Use Bedrock cross-region inference profiles to distribute load.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/quotas.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-02</code></td>
-            <td class="col-domain">AgentCore IAM Full Access Check</td>
-            <td class="finding-details">No roles with overly permissive AgentCore access found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-04</code></td>
+            <td class="col-domain">No Cost Anomaly Detection Monitors</td>
+            <td class="finding-details">No AWS Cost Anomaly Detection monitors found. Unexpected spikes in Bedrock/SageMaker usage (e.g., from prompt injection loops) will go undetected.</td>
+            <td class="resolution-text">1. Create a Cost Anomaly Detection monitor scoped to AWS/Bedrock and AWS/SageMaker.
+2. Configure alert subscriptions (SNS/email) for anomalies above threshold.
+3. Set daily spend budgets with AWS Budgets as a secondary control.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/cost-management/latest/userguide/getting-started-ad.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-05</code></td>
+            <td class="col-domain">No Bedrock CloudWatch Alarms Found</td>
+            <td class="finding-details">No CloudWatch alarms found for Bedrock metrics. Token exhaustion and throttling events will not trigger operational alerts.</td>
+            <td class="resolution-text">Create CloudWatch alarms for:
+- AWS/Bedrock InvocationThrottles (threshold > 0)
+- AWS/Bedrock TokensProcessed (threshold based on quota)
+- Custom application-level token counters via EMF</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/monitoring-cw.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-06</code></td>
+            <td class="col-domain">No AI/ML Service Budgets Configured</td>
+            <td class="finding-details">No AWS Budgets found scoped to Bedrock or SageMaker. Unbounded GenAI spend can go undetected until the monthly bill.</td>
+            <td class="resolution-text">1. Create cost budgets for AWS Bedrock and SageMaker with 80%/100% alert thresholds.
+2. Add SNS notifications to on-call channels.
+3. Consider budget actions to apply IAM deny policies when thresholds are breached.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/cost-management/latest/userguide/budgets-managing-costs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-07</code></td>
+            <td class="col-domain">Agent Action Boundary Check</td>
+            <td class="finding-details">No Bedrock agents found.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/agents-permissions.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-08</code></td>
+            <td class="col-domain">AgentCore Runtimes Missing Policy Engine</td>
+            <td class="finding-details">Runtimes without authorizer configuration: origami_expeditions, neoCyan_Agent, customer_support_agent, cdk_agent_core, awsapimcpserver. Without a policy engine, agents can invoke any registered tool without authorization checks.</td>
+            <td class="resolution-text">Configure an authorizer (Lambda or Cedar policy store) on each AgentCore runtime to enforce fine-grained tool-call authorization.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security-authorization.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-09</code></td>
+            <td class="col-domain">Agent Lambda Functions Without Concurrency Limits</td>
+            <td class="finding-details">Agent-related Lambda functions without reserved concurrency: aiml-security-aiml-security-193047247167-FinServAssessment, resco-aiml-IAMPermissionCaching, aiml-security-aiml-security-193047247167-SagemakerAssessment, resco-aiml-CleanupBucket, aiml-security-aiml-security-193047247167-BedrockAssessment, resco-aiml-BedrockAssessment, aiml-security-aiml-security-193047247167-CleanupBucket, aiml-security-aiml-security-193047247167-AgentCoreAssessment, e2ebedrockrag-OSSInfraStack-BKBOSSInfraSetupLambda-031La8JAQXtk, e2ebedrockrag-OSSInfraSta-OSSIndexCreationProvider-g56en9UzRjII. Unlimited concurrency allows runaway agent loops to exhaust account limits.</td>
+            <td class="resolution-text">1. Set reserved concurrency on agent Lambda functions.
+2. Implement maximum iteration counts in agent orchestration logic.
+3. Use Step Functions with MaxConcurrency and timeout states.
+4. Add circuit-breaker patterns to agent tool invocations.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/lambda/latest/dg/configuration-concurrency.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-10</code></td>
+            <td class="col-domain">Human-in-the-Loop Check — No Agent Workflows Found</td>
+            <td class="finding-details">No Step Functions state machines with agent/approval naming found. Verify that high-risk agent actions (e.g., fund transfers, account changes) have human approval gates.</td>
+            <td class="resolution-text">Implement Step Functions .waitForTaskToken patterns for high-risk agent actions. Route approval requests to human reviewers via SNS/SES/Slack.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/step-functions/latest/dg/connect-to-resource.html#connect-wait-token" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-11</code></td>
+            <td class="col-domain">No Agent Rate Alarms Found</td>
+            <td class="finding-details">No CloudWatch alarms found for agent invocation rates. Looping or runaway agents will not trigger operational alerts.</td>
+            <td class="resolution-text">Create CloudWatch alarms on:
+- Bedrock agent invocation counts (threshold based on expected max)
+- Lambda invocation errors for agent functions
+- Step Functions execution failures and timeouts</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/monitoring-cw.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-12</code></td>
+            <td class="col-domain">No Bedrock-Scoped SCPs Found</td>
+            <td class="finding-details">No Service Control Policies reference Bedrock. Without SCPs, any account in the organization can access any Bedrock model, including unapproved third-party models.</td>
+            <td class="resolution-text">1. Create an SCP that denies bedrock:InvokeModel for model IDs not on the approved list.
+2. Use bedrock:ModelId condition key to allowlist approved models.
+3. Maintain a model inventory and update the SCP when models are approved/retired.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-13</code></td>
+            <td class="col-domain">Model Provenance Tags Present</td>
+            <td class="finding-details">All reviewed models have required provenance tags.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/tagging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-03</code></td>
-            <td class="col-domain">AgentCore Unused Permissions</td>
-            <td class="finding-details">The following principals have AgentCore permissions but have never accessed the service: role 'AIMLSecurityMemberRole'</td>
-            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-14</code></td>
+            <td class="col-domain">Model Governance Config Rules Present</td>
+            <td class="finding-details">Found 11 model-related Config rule(s).</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/config/latest/developerguide/evaluate-config.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-15</code></td>
+            <td class="col-domain">No Bedrock Evaluation Jobs Found</td>
+            <td class="finding-details">No Bedrock Model Evaluation jobs found. Models have not been evaluated for adversarial robustness. FinServ model-risk management (SR 11-7) expects documented model validation/evaluation.</td>
+            <td class="resolution-text">1. Run Bedrock Model Evaluation with adversarial/red-team datasets.
+2. Use FMEval library for automated robustness testing.
+3. Schedule periodic re-evaluation after model updates.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Observability Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-16</code></td>
+            <td class="col-domain">ECR Repositories Without Image Scanning</td>
+            <td class="finding-details">4 ECR repo(s) without scan-on-push: mlexplorationrepo, cdk-hnb659fds-container-assets-193047247167-us-east-1, bedrock-agentcore-customer_support_agent, bedrock-agentcore-origami_expeditions.</td>
+            <td class="resolution-text">Enable scan-on-push for all ECR repositories containing model containers. Consider enabling Enhanced Scanning (Inspector) for CVE detection.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonECR/latest/userguide/image-scanning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-20</code></td>
+            <td class="col-domain">No SageMaker Feature Groups Found</td>
+            <td class="finding-details">No SageMaker Feature Store groups found.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-21</code></td>
+            <td class="col-domain">Training Data Buckets Without Versioning</td>
+            <td class="finding-details">13 training data bucket(s) without versioning: ancbedrocklogging, bedrock-agentcore-codebuild-sources-193047247167-us-east-1, bedrock-bda-us-east-1-dda43109-6557-48bb-993d-3f97126b64b4, bedrock-bda-us-east-1-logging-00719114-debd-4487-85d1-09cbc3fc8, bedrock-kb-bucket-f736570b, bedrock-video-generation-us-east-1-h5ltpm, fsi-genai-workshop-bedrock-datasources-193047247167-us-west-2, knowledgebase-bedrock-agent-agasthik, llmevaluationpromptfoo-bedrockkb-cozhbzbrcmd2, sagemaker-studio-193047247167-huo1mvme4t.</td>
+            <td class="resolution-text">Enable S3 versioning on all training data buckets. Consider enabling MFA Delete for additional protection against poisoning.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/Versioning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-22</code></td>
+            <td class="col-domain">Overly Permissive Knowledge Base IAM Roles</td>
+            <td class="finding-details">722 role(s) with wildcard KB permissions:
+- Role '193047247167-us-east-1-kb-setup-function-role' allows 'bedrock:CreateKnowledgeBase' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role '193047247167-us-east-1-kb-setup-function-role' allows 'bedrock:CreateDataSource' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'Admin' allows '*'
+- Role 'agentcore-wildrydes_gateway_role_ab3991f6-role' allows 'bedrock:*'
+- Role 'AgentCoreEvalsSDK-us-east-1-d04ba7b68b' allows 'bedrock:InvokeModel' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'AgentCoreEvalsSDK-us-east-1-d04ba7b68b' allows 'bedrock:InvokeModelWithResponseStream' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'Agentic-AI-MCP-Strands-SDK-Works-VSCodeInstanceRole-NCTUnlnRBFO6' allows '*'
+- Role 'aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX' allows 'bedrock:ListGuardrails' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX' allows 'bedrock:GetGuardrail' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX' allows 'bedrock:ListModelInvocations' on Resource '*' (no ARN scoping to specific Knowledge Bases)</td>
+            <td class="resolution-text">Replace wildcard bedrock-agent:* with specific actions: bedrock:Retrieve, bedrock:RetrieveAndGenerate. Scope resources to specific Knowledge Base ARNs.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-24</code></td>
+            <td class="col-domain">ADVISORY: Knowledge Base Metadata Filtering — Manual Review Required</td>
+            <td class="finding-details">Found 3 Knowledge Base(s). Tenant-isolation metadata filtering is a design pattern that cannot be verified via API — manual review required. Verify that metadata attributes (e.g., tenantId, classification) are indexed and that Retrieve calls include RetrievalFilter conditions for tenant isolation.</td>
+            <td class="resolution-text">1. Add metadata fields (tenantId, dataClassification) to KB data sources.
+2. Pass RetrievalFilter in all Retrieve/RetrieveAndGenerate calls.
+3. Validate filters in integration tests to prevent cross-tenant data leakage.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/kb-test-config.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="passed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-25</code></td>
+            <td class="col-domain">OpenSearch Serverless Encryption Policies Present</td>
+            <td class="finding-details">Found 5 encryption policy(ies); 5 use a customer-managed KMS key.</td>
+            <td class="resolution-text">Verify all vector store collections use customer-managed KMS keys.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/opensearch-service/latest/developerguide/serverless-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-26</code></td>
+            <td class="col-domain">OpenSearch Serverless Collections Not VPC-Restricted</td>
+            <td class="finding-details">Found 5 network policy(ies) but none restrict to VPC. Vector stores may be accessible from the public internet.</td>
+            <td class="resolution-text">Update network policies to allow access only from VPC endpoints. Create an OpenSearch Serverless VPC endpoint in your VPC.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/opensearch-service/latest/developerguide/serverless-network.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-27</code></td>
+            <td class="col-domain">No Guardrails — Contextual Grounding Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured. Configure guardrails first (see BR-05).</td>
+            <td class="resolution-text">Configure Bedrock Guardrails with contextual grounding checks (grounding threshold ≥0.7 and relevance threshold ≥0.7 for FinServ use cases).</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-grounding.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-27</code></td>
+            <td class="col-domain">Automated Reasoning Policies — Access Check</td>
+            <td class="finding-details">Access denied or service unavailable when listing Automated Reasoning policies. The IAM action name (bedrock:ListAutomatedReasoningPolicies) is correct, so the most likely causes are, in order: (1) the assessment MEMBER ROLE in this account was deployed before this action was added and has not been re-deployed; (2) an AWS Organizations SCP or permission boundary denies this newer Bedrock action; (3) the region does not support ARC. ARC is available in AWS GovCloud (US) and a growing set of commercial regions (e.g., us-east-1, us-east-2, us-west-2, eu-central-1, eu-west-1, eu-west-3) — verify the current list in the AWS documentation.</td>
+            <td class="resolution-text">1. RE-DEPLOY the member-role CloudFormation stack so the role picks up bedrock:ListAutomatedReasoningPolicies (templates may be current while the *deployed* role is stale). See deployment/1-aiml-security-member-roles.yaml and aiml-security-single-account.yaml.
+2. Check for an Organizations SCP / permission boundary denying the action.
+3. Confirm the assessed region supports Automated Reasoning checks.
+4. Re-run the assessment after re-deploying.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/troubleshoot_access-denied.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-28</code></td>
+            <td class="col-domain">No Guardrails — Denied Topics Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with denied topics for regulated financial content.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-29</code></td>
+            <td class="col-domain">ADVISORY: Compliance Disclaimer — Manual Review Required</td>
+            <td class="finding-details">Application-level compliance disclaimers cannot be verified via AWS APIs. Manual review required to confirm GenAI outputs include required regulatory disclosures.</td>
+            <td class="resolution-text">1. Implement post-processing to append required disclaimers to GenAI outputs.
+2. Use Bedrock Guardrails word filters to block outputs that omit required disclosures.
+3. Document disclaimer requirements in the AI use case register.
+4. Test disclaimer presence in QA/UAT before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-30</code></td>
+            <td class="col-domain">ADVISORY: Compliance Dataset Coverage — Manual Review Required</td>
+            <td class="finding-details">Bedrock model-evaluation dataset content cannot be inspected via API. Manually verify your model-evaluation jobs include compliance-specific datasets (fair lending/ECOA, Fair Housing Act, UDAP/UDAAP, AML/KYC edge cases). Whether any evaluation jobs exist at all is assessed by FS-15.</td>
+            <td class="resolution-text">Run Bedrock Model Evaluation with compliance-specific datasets:
+- Fair lending test cases (ECOA, Fair Housing Act)
+- UDAP/UDAAP unfair/deceptive practice scenarios
+- AML/KYC edge cases</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-31</code></td>
+            <td class="col-domain">Knowledge Base Data Sources Past Review Threshold</td>
+            <td class="finding-details">2 data source(s) not synced in >7 days (a configurable review threshold, NOT an AWS-mandated limit):
+- KB 'knowledge-base-semiconductors' source 'knowledge-base-quick-start-qpvuv-data-source' last synced 702 days ago
+- KB '193047247167-us-east-1-kb' source '193047247167-us-east-1-kb-datasource' last synced 180 days ago
+Confirm this age is acceptable for each data source's currency requirement — slow-changing reference data may legitimately sync infrequently.</td>
+            <td class="resolution-text">1. Define the maximum acceptable data age per use case (e.g., intraday for market data, daily for product terms, weekly/monthly for regulatory guidance) and adjust the review threshold to match.
+2. Configure automated sync (EventBridge Scheduler → StartIngestionJob) at that cadence — see FS-61.
+3. Set CloudWatch alarms on sync job failures.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/knowledge-base-ingest.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-32</code></td>
+            <td class="col-domain">ADVISORY: Source Attribution — Manual Review Required</td>
+            <td class="finding-details">Source attribution in GenAI responses cannot be verified via AWS APIs. Manual review required to confirm responses include citations.</td>
+            <td class="resolution-text">1. Use Bedrock RetrieveAndGenerate with citations enabled.
+2. Include source document references in response post-processing.
+3. Test citation accuracy in QA before production deployment.
+4. Consider Bedrock Guardrails grounding checks to validate response accuracy.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/kb-test-config.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-33</code></td>
+            <td class="col-domain">KB Data Source Buckets Without Versioning</td>
+            <td class="finding-details">KB data source S3 buckets without versioning: 193047247167-us-east-1-kb-data-bucket.</td>
+            <td class="resolution-text">Enable S3 versioning on all KB data source buckets. Enable S3 Object Integrity (checksum) for tamper detection.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/checking-object-integrity.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-34</code></td>
+            <td class="col-domain">Legacy Foundation Models Available in Region</td>
+            <td class="finding-details">Legacy/deprecated foundation models are available in this account/region: anthropic.claude-sonnet-4-20250514-v1:0, twelvelabs.marengo-embed-2-7-v1:0, amazon.titan-image-generator-v2:0, amazon.nova-premier-v1:0:8k, amazon.nova-premier-v1:0:20k, amazon.nova-premier-v1:0:1000k, amazon.nova-premier-v1:0:mm, amazon.nova-premier-v1:0, amazon.nova-canvas-v1:0, amazon.nova-reel-v1:0. This API reports model *availability*, not actual usage — it cannot determine which models your applications invoke. Legacy models have older training-data cutoffs and may produce outdated information if used. Review whether any are in active use.</td>
+            <td class="resolution-text">1. Identify which (if any) of these legacy models your applications invoke (e.g., via CloudTrail InvokeModel events or application config).
+2. Migrate active usage to current model versions.
+3. Document training-data cutoff dates for all models in use.
+4. Add data-currency disclaimers to outputs from models with old cutoffs.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-lifecycle.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-35</code></td>
+            <td class="col-domain">ADVISORY: Harmful-Content Test Coverage — Manual Review Required</td>
+            <td class="finding-details">Bedrock model-evaluation dataset content cannot be inspected via API. Manually verify your model-evaluation/FMEval jobs include harmful-content datasets (toxicity, hate speech, violence/self-harm). Whether any evaluation jobs exist at all is assessed by FS-15.</td>
+            <td class="resolution-text">Run Bedrock Model Evaluation or FMEval with harmful content datasets:
+- Toxicity detection
+- Hate speech classification
+- Violence/self-harm content</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-36</code></td>
+            <td class="col-domain">No Guardrails — Content Filters Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with content filters.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-filters.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-37</code></td>
+            <td class="col-domain">ADVISORY: User Feedback Mechanism — Manual Review Required</td>
+            <td class="finding-details">User feedback mechanisms for harmful outputs cannot be verified via AWS APIs. Manual review required.</td>
+            <td class="resolution-text">1. Implement thumbs-up/down or flag-for-review UI in GenAI applications.
+2. Route flagged outputs to human reviewers via SQS/SNS.
+3. Log feedback to DynamoDB/S3 for model improvement.
+4. Define SLAs for reviewing flagged content.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-38</code></td>
+            <td class="col-domain">No Guardrails — Word Filters Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with word filters.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-39</code></td>
+            <td class="col-domain">No SageMaker Clarify Bias Monitoring</td>
+            <td class="finding-details">No SageMaker Clarify model bias monitoring schedules found. Models making financial decisions (credit, insurance) may exhibit discriminatory bias without detection.</td>
+            <td class="resolution-text">1. Configure SageMaker Clarify bias detection for all models making credit, insurance, or employment decisions.
+2. Define protected attributes (age, gender, race proxies).
+3. Set bias metric thresholds and alert on violations.
+4. Document bias testing results for regulatory examination.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-model-monitor-bias-drift.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-40</code></td>
+            <td class="col-domain">ADVISORY: Bias Dataset Coverage — Manual Review Required</td>
+            <td class="finding-details">Bedrock model-evaluation dataset content cannot be inspected via API. Manually verify your model-evaluation jobs include bias/fairness datasets (demographic parity, equal-opportunity, counterfactual fairness) for any GenAI models used in financial decisions (ECOA/Fair Housing). Whether any evaluation jobs exist at all is assessed by FS-15.</td>
+            <td class="resolution-text">Run Bedrock Model Evaluation with bias test datasets:
+- Demographic parity test cases
+- Equal opportunity scenarios
+- Counterfactual fairness tests</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-41</code></td>
+            <td class="col-domain">No SageMaker Clarify Explainability Monitoring</td>
+            <td class="finding-details">No SageMaker Clarify explainability monitoring found. Models making adverse financial decisions may not provide required explanations (ECOA adverse action notices).</td>
+            <td class="resolution-text">1. Configure SageMaker Clarify explainability for credit/lending models.
+2. Generate SHAP values for feature importance.
+3. Map top features to human-readable adverse action reason codes.
+4. Store explanations for regulatory examination.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-model-explainability.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-42</code></td>
+            <td class="col-domain">No SageMaker Model Cards Found</td>
+            <td class="finding-details">No SageMaker Model Cards found. Production AI models lack documented intended use, limitations, and bias evaluations.</td>
+            <td class="resolution-text">1. Create SageMaker Model Cards for all production models.
+2. Document: intended use, out-of-scope uses, training data, bias evaluations.
+3. Include regulatory compliance attestations.
+4. Review and update cards at each model version release.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-cards.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-43</code></td>
+            <td class="col-domain">No CloudWatch Logs Data Protection Policies</td>
+            <td class="finding-details">No CloudWatch Logs data protection policies found. PII (SSN, account numbers, credit card numbers) in Bedrock invocation logs may be stored in plaintext.</td>
+            <td class="resolution-text">1. Create CloudWatch Logs data protection policies to mask PII.
+2. Enable masking for: SSN, credit card numbers, bank account numbers, email.
+3. Apply policies to Bedrock invocation log groups.
+4. Test masking with synthetic PII before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/mask-sensitive-log-data.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="passed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-44</code></td>
+            <td class="col-domain">Amazon Macie Enabled</td>
+            <td class="finding-details">Amazon Macie is enabled and scanning S3 buckets.</td>
+            <td class="resolution-text">Verify Macie jobs cover training data and KB data source buckets.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/macie/latest/user/what-is-macie.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-45</code></td>
+            <td class="col-domain">No Guardrails — PII Filters Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with PII/sensitive information filters.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-sensitive-filters.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-46</code></td>
+            <td class="col-domain">AI/ML Buckets Without Data Classification Tags</td>
+            <td class="finding-details">18 AI/ML bucket(s) without data-classification tags: 193047247167-us-east-1-kb-data-bucket, ancbedrocklogging, ancknowledgebase, aws-streaming-data-solut-outputaccesslogsbucket8b-1o7m0kb4bafm4, bedrock-agentcore-codebuild-sources-193047247167-us-east-1, bedrock-bda-us-east-1-dda43109-6557-48bb-993d-3f97126b64b4, bedrock-bda-us-east-1-logging-00719114-debd-4487-85d1-09cbc3fc8, bedrock-kb-bucket-f736570b, bedrock-video-generation-us-east-1-h5ltpm, create-customer-resources-kb-bucket-193047247167.</td>
+            <td class="resolution-text">Tag all AI/ML data buckets with 'data-classification' key. Values: Public, Internal, Confidential, Restricted. Enforce via SCP or AWS Config rule.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-tagging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-47</code></td>
+            <td class="col-domain">No Guardrails — Grounding Threshold Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with contextual grounding checks.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-grounding.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-48</code></td>
+            <td class="col-domain">Active Knowledge Bases for RAG Present</td>
+            <td class="finding-details">Found 3 active Knowledge Base(s) for RAG grounding.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/knowledge-base.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-49</code></td>
+            <td class="col-domain">ADVISORY: Hallucination Disclaimer — Manual Review Required</td>
+            <td class="finding-details">Application-level hallucination disclaimers cannot be verified via AWS APIs. Manual review required.</td>
+            <td class="resolution-text">1. Add disclaimers to GenAI outputs: 'AI-generated content may contain errors. Verify with authoritative sources before acting.'
+2. Implement post-processing to append disclaimers.
+3. Test disclaimer presence in QA before production.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-50</code></td>
+            <td class="col-domain">No Guardrails With Relevance Grounding Filters</td>
+            <td class="finding-details">No guardrails have RELEVANCE contextual grounding filters. Without relevance filters, responses that are off-topic or unrelated to the user query will not be blocked, increasing hallucination risk in RAG-based FinServ applications.</td>
+            <td class="resolution-text">Enable the RELEVANCE contextual grounding filter in Bedrock Guardrails with a threshold of ≥0.7 to block responses that are not relevant to the user query. Also enable the GROUNDING filter (≥0.7) to block responses not supported by the retrieved source context.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-grounding.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-51</code></td>
+            <td class="col-domain">No Guardrails — Prompt Attack Filters Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with prompt attack filters.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-52</code></td>
+            <td class="col-domain">Bedrock Lambda Functions on Deprecated Runtimes</td>
+            <td class="finding-details">Functions on deprecated runtimes: e2ebedrockrag-OSSInfraStack-BKBOSSInfraSetupLambda-031La8JAQXtk, e2ebedrockrag-OSSInfraSta-OSSIndexCreationProvider-g56en9UzRjII. Deprecated runtimes may use outdated boto3/SDK versions lacking security patches.</td>
+            <td class="resolution-text">1. Upgrade Lambda functions to a supported runtime — Python 3.12+, Node.js 22.x or 24.x, Java 21+, or .NET 8+.
+2. Update boto3 to the latest version in Lambda layers (pin the version in requirements.txt and redeploy).
+3. Enable Lambda runtime management controls for automatic minor-version updates (runtimeManagementConfig.updateRuntimeOn = 'Auto').
+4. Refer to https://docs.aws.amazon.com/lambda/latest/dg/lambda-runtimes.html for the authoritative list of supported and deprecated runtimes.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/lambda/latest/dg/runtimes-update.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-53</code></td>
+            <td class="col-domain">No WAF Web ACLs — Injection Rules Not Applicable</td>
+            <td class="finding-details">No regional WAF Web ACLs found.</td>
+            <td class="resolution-text">Create WAF Web ACLs with injection protection rules (see FS-01).</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-baseline.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-54</code></td>
+            <td class="col-domain">ADVISORY: Penetration Testing — Manual Review Required</td>
+            <td class="finding-details">Penetration testing evidence cannot be verified via AWS APIs. Manual review required to confirm GenAI applications have been tested.</td>
+            <td class="resolution-text">1. Conduct penetration testing of GenAI applications at least annually and before major releases.
+2. Include AI-specific test cases: prompt injection, jailbreak, indirect (cross-domain) injection, system-prompt leakage, and data-extraction attempts.
+3. Consider AWS Security Agent for on-demand, AI-driven penetration testing (GA March 2026; available in US East N. Virginia, US West Oregon, Europe Ireland, Europe Frankfurt, Asia Pacific Sydney, Asia Pacific Tokyo, with cross-account shared-VPC testing via AWS RAM). Open-source tools such as Garak or PyRIT and manual red-teaming are complementary options. Verify current regional availability on the AWS Security Agent page before relying on it.
+4. Document findings and remediation for regulatory examination, and tag tested resources with a last-pentest-date for audit trail.
+5. For DORA compliance, include GenAI in TLPT (Threat-Led Penetration Testing) scope.</td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/security/penetration-testing/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-55</code></td>
+            <td class="col-domain">No Output Validation Functions Found</td>
+            <td class="finding-details">No Lambda functions with output validation/sanitization naming found. GenAI outputs may be passed directly to downstream systems without validation.</td>
+            <td class="resolution-text">1. Implement output validation Lambda functions in GenAI pipelines.
+2. Validate output schema, length, and content before downstream use.
+3. Sanitize outputs before rendering in web UIs (XSS prevention).
+4. Encode outputs appropriately for the target context (HTML, SQL, JSON).</td>
+            <td class="reference-cell"><a href="https://genai.owasp.org/llm-top-10/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-56</code></td>
+            <td class="col-domain">No WAF ACLs — XSS Prevention Not Applicable</td>
+            <td class="finding-details">No regional WAF Web ACLs found.</td>
+            <td class="resolution-text">Create WAF ACLs with XSS prevention rules.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-baseline.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-57</code></td>
+            <td class="col-domain">ADVISORY: Output Encoding — Manual Review Required</td>
+            <td class="finding-details">Output encoding practices cannot be verified via AWS APIs. Manual code review required.</td>
+            <td class="resolution-text">1. HTML-encode GenAI outputs before rendering in web UIs.
+2. Use parameterized queries when GenAI output is used in database operations.
+3. JSON-encode outputs before embedding in JavaScript contexts.
+4. Validate output length and format before passing to downstream APIs.</td>
+            <td class="reference-cell"><a href="https://genai.owasp.org/llm-top-10/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-58</code></td>
+            <td class="col-domain">ADVISORY: Output Schema Validation — Manual Review Required</td>
+            <td class="finding-details">Found 0 Lambda function(s) whose names suggest schema/validation handling. Structured-output / JSON-schema validation of GenAI responses is an application-layer control that cannot be verified automatically — manual review required.</td>
+            <td class="resolution-text">1. Use Bedrock structured output (response schemas) where supported.
+2. Implement JSON schema validation on Lambda output processors.
+3. Reject malformed outputs and return safe error responses.
+4. Log schema validation failures to CloudWatch for monitoring.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/inference-parameters.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-59</code></td>
+            <td class="col-domain">No Guardrails — Topic Allowlist Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with topic policies to restrict off-topic responses.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-60</code></td>
+            <td class="col-domain">ADVISORY: Contextual Grounding for Off-Topic Prevention</td>
+            <td class="finding-details">Contextual grounding for off-topic prevention is covered by guardrail grounding checks (FS-47) and RAG configuration (FS-48). Additionally verify system prompts explicitly scope the assistant's role.</td>
+            <td class="resolution-text">1. Include explicit scope instructions in system prompts.
+2. Use Bedrock Guardrails relevance grounding filter.
+3. Test with off-topic prompts in QA to verify rejection behavior.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-grounding.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-61</code></td>
+            <td class="col-domain">COULD NOT ASSESS: Knowledge Base Sync Schedule Check</td>
+            <td class="finding-details">This check could not be completed (error: An error occurred (AccessDeniedException) when calling the ListSchedules operation: User: arn:aws:sts::193047247167:assumed-role/aiml-security-19304724716-FinServSecurityAssessment-G8d5dEiMJsZB/aiml-security-aiml-security-193047247167-FinServAssessment is not authorized to perform: scheduler:ListSchedules on resource: arn:aws:scheduler:us-east-1:193047247167:schedule/*/* because no identity-based policy allows the scheduler:ListSchedules action). The most common cause is a missing IAM permission for the assessment role; it may also indicate an unsupported region or an outdated botocore. This control was NOT assessed — verify the role's permissions and re-run, and assess this control manually until resolved.</td>
+            <td class="resolution-text">1. Confirm the assessment role grants the actions this check requires (see the documented IAM permission set in the README).
+2. Confirm the service/feature is supported in the assessed region.
+3. Ensure botocore meets the version floor in requirements.txt.
+4. Re-run the assessment; assess this control manually until it succeeds.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/troubleshoot_access-denied.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-05</code></td>
-            <td class="col-domain">AgentCore Encryption Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-62</code></td>
+            <td class="col-domain">ADVISORY: Data Currency Disclaimer — Manual Review Required</td>
+            <td class="finding-details">Data currency disclaimers cannot be verified via AWS APIs. Manual review required.</td>
+            <td class="resolution-text">1. Add data currency disclaimers to GenAI outputs: 'Information based on data current as of [KB last sync date].'
+2. Expose KB last sync timestamp in application responses.
+3. Alert users when KB data is older than defined threshold.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/knowledge-base-ingest.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
-            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-63</code></td>
+            <td class="col-domain">Foundation Model Lifecycle Management</td>
+            <td class="finding-details">No legacy models detected. 10 lifecycle-related Config rule(s) found.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-lifecycle.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-07</code></td>
-            <td class="col-domain">AgentCore Memory Configuration Check</td>
-            <td class="finding-details">No Memory resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-65</code></td>
+            <td class="col-domain">KB Data Source Buckets Missing S3 Event Notifications</td>
+            <td class="finding-details">The following KB data-source S3 buckets have no event notifications configured. Unauthorized document modifications will not be detected in real time:
+- semiconductor-demo-9999
+- 193047247167-us-east-1-kb-data-bucket</td>
+            <td class="resolution-text">1. Enable Amazon EventBridge notifications on each KB data-source S3 bucket.
+2. Create an EventBridge rule to route s3:ObjectCreated, s3:ObjectRemoved, and s3:ObjectModified events to an SNS topic or Lambda for alerting.
+3. Integrate alerts into your security incident response workflow.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/EventBridge.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-13</code></td>
-            <td class="col-domain">AgentCore Gateway Configuration Check</td>
-            <td class="finding-details">No Gateway resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-66</code></td>
+            <td class="col-domain">AgentCore Runtimes Missing End-User Identity Propagation</td>
+            <td class="finding-details">The following runtimes have no JWT or IAM authorizer configured for end-user identity propagation. Tool calls are authorized only by the agent execution role, not the originating user:
+- origami_expeditions
+- neoCyan_Agent
+- customer_support_agent
+- cdk_agent_core
+- awsapimcpserver</td>
+            <td class="resolution-text">1. Configure a custom JWT authorizer or IAM authorizer on each AgentCore runtime.
+2. Propagate the end-user's identity token to downstream tool services.
+3. Ensure tool services validate the propagated identity before executing actions.
+4. Do not expose propagated identity tokens to unauthorized third parties.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security-authorization.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-08</code></td>
-            <td class="col-domain">AgentCore VPC Endpoints Missing</td>
-            <td class="finding-details">No AgentCore VPC endpoints found in 1 VPCs. AgentCore API traffic traverses public internet, exposing it to interception.</td>
-            <td class="resolution-text">Create VPC interface endpoints for AgentCore services:
-1. com.amazonaws.region.bedrock-agentcore
-2. com.amazonaws.region.bedrock-agentcore-control
-3. com.amazonaws.region.bedrock-agentcore-runtime
-This enables private connectivity via AWS PrivateLink</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-67</code></td>
+            <td class="col-domain">Agent Action-Group Lambdas May Lack Transaction Thresholds</td>
+            <td class="finding-details">The following agent action-group Lambda functions have no environment variables whose names suggest transaction-value threshold configuration (this is a best-effort heuristic — a threshold enforced in code or in an AgentCore Policy Engine rule would not be detected here, so treat this as a prompt for manual verification rather than a definitive gap). Without explicit limits, agents could initiate unbounded financial transactions:
+- aiml-security-aiml-security-193047247167-FinServAssessment
+- aiml-security-aiml-security-193047247167-BedrockAssessment
+- resco-aiml-BedrockAssessment
+- aiml-security-aiml-security-193047247167-AgentCoreAssessment
+- e2ebedrockrag-OSSInfraStack-BKBOSSInfraSetupLambda-031La8JAQXtk
+- e2ebedrockrag-OSSInfraSta-OSSIndexCreationProvider-g56en9UzRjII
+- resco-aiml-AgentCoreAssessment</td>
+            <td class="resolution-text">1. Add transaction-value threshold environment variables (e.g., MAX_TRANSACTION_AMOUNT) to each agent action-group Lambda.
+2. Implement threshold enforcement logic in the Lambda handler.
+3. Configure AgentCore Policy Engine rules to cap financial transaction amounts.
+4. Route transactions exceeding thresholds to a human-in-the-loop approval step.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-engine.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-09</code></td>
-            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
-            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
-            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-68</code></td>
+            <td class="col-domain">API Gateway Request Body Size Limits Not Enforced</td>
+            <td class="finding-details">Found 3 REST API(s) and 0 regional WAF Web ACL(s), but none enforce a maximum request-body size. Note: an API Gateway request validator does NOT cap body size (it validates the schema and required params; the REST limit is a fixed 10 MB), and a WAF body SizeConstraint only inspects the first ~16 KB of the body by default. Oversized prompts can exhaust Bedrock token quotas and inflate costs.</td>
+            <td class="resolution-text">1. Add a maxLength (or maxItems/maxProperties) bound to the request-body JSON-Schema model used by your request validator, so oversized prompts are rejected with a 400.
+2. Add a WAF SizeConstraintStatement on the request Body sized within WAF's body-inspection window (default 16 KB; raise via the web ACL AssociationConfig, or set OversizeHandling=MATCH to block bodies beyond the window), and associate the ACL with the API stage.
+3. Set the max_tokens parameter in Bedrock API calls to cap output length.
+4. Implement client-side token counting before submitting requests.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/waf/latest/developerguide/waf-oversize-request-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-10</code></td>
-            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
-            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
+            <td><code>193047247167</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-69</code></td>
+            <td class="col-domain">Prompt Input Validation Functions Present</td>
+            <td class="finding-details">Found 3 Lambda function(s) with input validation/sanitization naming patterns: resco-aiml-CleanupBucket, visa-bulletin-tracker-prod-cleanup, aiml-security-aiml-security-193047247167-CleanupBucket.</td>
+            <td class="resolution-text">Review these functions to confirm they cover: special-character stripping, format validation, size limits, and injection-sequence detection.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-injection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-11</code></td>
-            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
-            <td class="finding-details">No Policy Engines found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
+            <td><code>193047247167</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>FS-00</code></td>
+            <td class="col-domain">FinServ Regional Scope Not Applicable</td>
+            <td class="finding-details">No regional Bedrock, AgentCore, or SageMaker resources were found in eu-west-1; FinServ GenAI risk checks were not applied to this region.</td>
+            <td class="resolution-text">No action required unless GenAI workloads are expected in this region.</td>
+            <td class="reference-cell"><a href="https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
+            <td><code>193047247167</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>FS-00</code></td>
+            <td class="col-domain">FinServ Regional Scope Not Applicable</td>
+            <td class="finding-details">No regional Bedrock, AgentCore, or SageMaker resources were found in ap-southeast-2; FinServ GenAI risk checks were not applied to this region.</td>
+            <td class="resolution-text">No action required unless GenAI workloads are expected in this region.</td>
+            <td class="reference-cell"><a href="https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="low" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-01</code></td>
+            <td class="col-domain">AWS Shield Advanced Not Enabled</td>
+            <td class="finding-details">AWS Shield Advanced is not subscribed. GenAI API endpoints are vulnerable to volumetric DDoS attacks that can exhaust token quotas and inflate costs.</td>
+            <td class="resolution-text">1. Subscribe to AWS Shield Advanced for DDoS protection.
+2. After subscribing, explicitly add resource protections in the Shield Advanced console for each Bedrock-facing resource (API Gateway stages, ALBs, CloudFront distributions, Route 53 hosted zones). Shield Advanced subscription alone does NOT automatically protect resources — each resource must be individually added to receive protection.
+3. Enable Shield Response Team (SRT) access and configure proactive engagement.
+4. Alternatively, use AWS Firewall Manager with a Shield Advanced policy to automate resource protection based on tags or resource types.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/waf/latest/developerguide/shield-chapter.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333">
-            <td><code>333333333333</code></td>
-            <td><code>AC-12</code></td>
-            <td class="col-domain">AgentCore Gateway Encryption Check</td>
-            <td class="finding-details">No Gateways found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-01</code></td>
+            <td class="col-domain">No Regional WAF Web ACLs Found</td>
+            <td class="finding-details">No AWS WAF regional Web ACLs found. Without WAF, GenAI endpoints lack rate-based rules to block abusive callers.</td>
+            <td class="resolution-text">1. Create a WAF Web ACL with rate-based rules (e.g., 1000 req/5 min per IP).
+2. Associate the ACL with API Gateway stages or ALBs fronting Bedrock.
+3. Add AWS Managed Rules for known bad inputs.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/waf/latest/developerguide/waf-chapter.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore VPC Configuration Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-02</code></td>
+            <td class="col-domain">No API Gateway Usage Plans Found</td>
+            <td class="finding-details">No usage plans configured. GenAI API endpoints may have no rate limits.</td>
+            <td class="resolution-text">Create API Gateway usage plans with throttle settings (rateLimit and burstLimit) for all Bedrock-facing APIs.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/apigateway/latest/developerguide/api-gateway-request-throttling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-03</code></td>
+            <td class="col-domain">Bedrock Token Quotas At Default</td>
+            <td class="finding-details">All 232 Bedrock token-based quota(s) are at their AWS default values — no quota increase has been applied. Running at default is a legitimate posture, but it should be a reviewed decision aligned with expected peak load rather than an oversight.</td>
+            <td class="resolution-text">1. Review current Bedrock TPM/TPD quotas in the Service Quotas console.
+2. Request increases aligned with expected peak load, or document a deliberate decision to remain at default after review.
+3. Implement client-side token counting and pre-flight quota checks.
+4. Use Bedrock cross-region inference profiles to distribute load.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/quotas.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-02</code></td>
-            <td class="col-domain">AgentCore IAM Full Access Check</td>
-            <td class="finding-details">No roles with overly permissive AgentCore access found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-04</code></td>
+            <td class="col-domain">No Cost Anomaly Detection Monitors</td>
+            <td class="finding-details">No AWS Cost Anomaly Detection monitors found. Unexpected spikes in Bedrock/SageMaker usage (e.g., from prompt injection loops) will go undetected.</td>
+            <td class="resolution-text">1. Create a Cost Anomaly Detection monitor scoped to AWS/Bedrock and AWS/SageMaker.
+2. Configure alert subscriptions (SNS/email) for anomalies above threshold.
+3. Set daily spend budgets with AWS Budgets as a secondary control.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/cost-management/latest/userguide/getting-started-ad.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-05</code></td>
+            <td class="col-domain">No Bedrock CloudWatch Alarms Found</td>
+            <td class="finding-details">No CloudWatch alarms found for Bedrock metrics. Token exhaustion and throttling events will not trigger operational alerts.</td>
+            <td class="resolution-text">Create CloudWatch alarms for:
+- AWS/Bedrock InvocationThrottles (threshold > 0)
+- AWS/Bedrock TokensProcessed (threshold based on quota)
+- Custom application-level token counters via EMF</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/monitoring-cw.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-06</code></td>
+            <td class="col-domain">No AI/ML Service Budgets Configured</td>
+            <td class="finding-details">No AWS Budgets found scoped to Bedrock or SageMaker. Unbounded GenAI spend can go undetected until the monthly bill.</td>
+            <td class="resolution-text">1. Create cost budgets for AWS Bedrock and SageMaker with 80%/100% alert thresholds.
+2. Add SNS notifications to on-call channels.
+3. Consider budget actions to apply IAM deny policies when thresholds are breached.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/cost-management/latest/userguide/budgets-managing-costs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-07</code></td>
+            <td class="col-domain">Agent Action Boundary Check</td>
+            <td class="finding-details">No Bedrock agents found.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/agents-permissions.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-08</code></td>
+            <td class="col-domain">No AgentCore Runtimes Found</td>
+            <td class="finding-details">No AgentCore runtimes found; policy engine check not applicable.</td>
+            <td class="resolution-text">If using AgentCore, configure the Policy Engine to authorize tool calls.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security-authorization.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-09</code></td>
+            <td class="col-domain">Agent Lambda Functions Without Concurrency Limits</td>
+            <td class="finding-details">Agent-related Lambda functions without reserved concurrency: aiml-security-aiml-security-mgmt-FinServAssessment, aiml-security-aiml-security-mgmt-CleanupBucket, aiml-security-aiml-security-mgmt-SagemakerAssessment, aiml-security-aiml-security-mgmt-GenerateReport, resco-aiml-CleanupBucket, aiml-security-aiml-security-mgmt-IAMPermissionCaching, AIMLSecurity-Assessment-CodeBuildStartBuildLambda-Ul2QNob2S042, resco-aiml-BedrockAssessment, resco-aiml-AgentCoreAssessment, resco-aiml-GenerateReport. Unlimited concurrency allows runaway agent loops to exhaust account limits.</td>
+            <td class="resolution-text">1. Set reserved concurrency on agent Lambda functions.
+2. Implement maximum iteration counts in agent orchestration logic.
+3. Use Step Functions with MaxConcurrency and timeout states.
+4. Add circuit-breaker patterns to agent tool invocations.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/lambda/latest/dg/configuration-concurrency.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-10</code></td>
+            <td class="col-domain">Human-in-the-Loop Check — No Agent Workflows Found</td>
+            <td class="finding-details">No Step Functions state machines with agent/approval naming found. Verify that high-risk agent actions (e.g., fund transfers, account changes) have human approval gates.</td>
+            <td class="resolution-text">Implement Step Functions .waitForTaskToken patterns for high-risk agent actions. Route approval requests to human reviewers via SNS/SES/Slack.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/step-functions/latest/dg/connect-to-resource.html#connect-wait-token" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-11</code></td>
+            <td class="col-domain">No Agent Rate Alarms Found</td>
+            <td class="finding-details">No CloudWatch alarms found for agent invocation rates. Looping or runaway agents will not trigger operational alerts.</td>
+            <td class="resolution-text">Create CloudWatch alarms on:
+- Bedrock agent invocation counts (threshold based on expected max)
+- Lambda invocation errors for agent functions
+- Step Functions execution failures and timeouts</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/monitoring-cw.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-12</code></td>
+            <td class="col-domain">No Bedrock-Scoped SCPs Found</td>
+            <td class="finding-details">No Service Control Policies reference Bedrock. Without SCPs, any account in the organization can access any Bedrock model, including unapproved third-party models.</td>
+            <td class="resolution-text">1. Create an SCP that denies bedrock:InvokeModel for model IDs not on the approved list.
+2. Use bedrock:ModelId condition key to allowlist approved models.
+3. Maintain a model inventory and update the SCP when models are approved/retired.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-13</code></td>
+            <td class="col-domain">Model Provenance Tags Present</td>
+            <td class="finding-details">All reviewed models have required provenance tags.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/tagging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="low" data-status="passed" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-03</code></td>
-            <td class="col-domain">AgentCore Stale Access Check</td>
-            <td class="finding-details">All 1 principals with AgentCore permissions have accessed the service within the last 60 days</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity low">Low</span></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-14</code></td>
+            <td class="col-domain">Model Governance Config Rules Present</td>
+            <td class="finding-details">Found 13 model-related Config rule(s).</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/config/latest/developerguide/evaluate-config.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Observability Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-15</code></td>
+            <td class="col-domain">No Bedrock Evaluation Jobs Found</td>
+            <td class="finding-details">No Bedrock Model Evaluation jobs found. Models have not been evaluated for adversarial robustness. FinServ model-risk management (SR 11-7) expects documented model validation/evaluation.</td>
+            <td class="resolution-text">1. Run Bedrock Model Evaluation with adversarial/red-team datasets.
+2. Use FMEval library for automated robustness testing.
+3. Schedule periodic re-evaluation after model updates.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-05</code></td>
-            <td class="col-domain">AgentCore Encryption Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-16</code></td>
+            <td class="col-domain">ECR Repositories Without Image Scanning</td>
+            <td class="finding-details">1 ECR repo(s) without scan-on-push: cdk-hnb659fds-container-assets-472057511786-us-east-1.</td>
+            <td class="resolution-text">Enable scan-on-push for all ECR repositories containing model containers. Consider enabling Enhanced Scanning (Inspector) for CVE detection.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonECR/latest/userguide/image-scanning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
-            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-20</code></td>
+            <td class="col-domain">No SageMaker Feature Groups Found</td>
+            <td class="finding-details">No SageMaker Feature Store groups found.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-21</code></td>
+            <td class="col-domain">No Training Data Buckets Identified</td>
+            <td class="finding-details">No S3 buckets with training/model naming found.</td>
+            <td class="resolution-text">Tag training data buckets and enable versioning.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/Versioning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-22</code></td>
+            <td class="col-domain">Overly Permissive Knowledge Base IAM Roles</td>
+            <td class="finding-details">710 role(s) with wildcard KB permissions:
+- Role 'Admin' allows '*'
+- Role 'aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b' allows 'bedrock:ListGuardrails' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b' allows 'bedrock:GetGuardrail' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b' allows 'bedrock:ListModelInvocations' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b' allows 'bedrock:GetModelInvocationLoggingConfiguration' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b' allows 'bedrock:ListPrompts' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b' allows 'bedrock:GetPrompt' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b' allows 'bedrock:ListAgents' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b' allows 'bedrock:GetAgent' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role 'aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b' allows 'bedrock:ListCustomModels' on Resource '*' (no ARN scoping to specific Knowledge Bases)</td>
+            <td class="resolution-text">Replace wildcard bedrock-agent:* with specific actions: bedrock:Retrieve, bedrock:RetrieveAndGenerate. Scope resources to specific Knowledge Base ARNs.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-07</code></td>
-            <td class="col-domain">AgentCore Memory Configuration Check</td>
-            <td class="finding-details">No Memory resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-24</code></td>
+            <td class="col-domain">ADVISORY: Knowledge Base Metadata Filtering — Manual Review Required</td>
+            <td class="finding-details">Found 1 Knowledge Base(s). Tenant-isolation metadata filtering is a design pattern that cannot be verified via API — manual review required. Verify that metadata attributes (e.g., tenantId, classification) are indexed and that Retrieve calls include RetrievalFilter conditions for tenant isolation.</td>
+            <td class="resolution-text">1. Add metadata fields (tenantId, dataClassification) to KB data sources.
+2. Pass RetrievalFilter in all Retrieve/RetrieveAndGenerate calls.
+3. Validate filters in integration tests to prevent cross-tenant data leakage.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/kb-test-config.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-25</code></td>
+            <td class="col-domain">OpenSearch Serverless Encryption Policies Present</td>
+            <td class="finding-details">Found 1 encryption policy(ies); 1 use a customer-managed KMS key.</td>
+            <td class="resolution-text">Verify all vector store collections use customer-managed KMS keys.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/opensearch-service/latest/developerguide/serverless-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-13</code></td>
-            <td class="col-domain">AgentCore Gateway Configuration Check</td>
-            <td class="finding-details">No Gateway resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-26</code></td>
+            <td class="col-domain">OpenSearch Serverless Collections Not VPC-Restricted</td>
+            <td class="finding-details">Found 1 network policy(ies) but none restrict to VPC. Vector stores may be accessible from the public internet.</td>
+            <td class="resolution-text">Update network policies to allow access only from VPC endpoints. Create an OpenSearch Serverless VPC endpoint in your VPC.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/opensearch-service/latest/developerguide/serverless-network.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-27</code></td>
+            <td class="col-domain">No Guardrails — Contextual Grounding Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured. Configure guardrails first (see BR-05).</td>
+            <td class="resolution-text">Configure Bedrock Guardrails with contextual grounding checks (grounding threshold ≥0.7 and relevance threshold ≥0.7 for FinServ use cases).</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-grounding.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-27</code></td>
+            <td class="col-domain">Automated Reasoning Policies — Access Check</td>
+            <td class="finding-details">Access denied or service unavailable when listing Automated Reasoning policies. The IAM action name (bedrock:ListAutomatedReasoningPolicies) is correct, so the most likely causes are, in order: (1) the assessment MEMBER ROLE in this account was deployed before this action was added and has not been re-deployed; (2) an AWS Organizations SCP or permission boundary denies this newer Bedrock action; (3) the region does not support ARC. ARC is available in AWS GovCloud (US) and a growing set of commercial regions (e.g., us-east-1, us-east-2, us-west-2, eu-central-1, eu-west-1, eu-west-3) — verify the current list in the AWS documentation.</td>
+            <td class="resolution-text">1. RE-DEPLOY the member-role CloudFormation stack so the role picks up bedrock:ListAutomatedReasoningPolicies (templates may be current while the *deployed* role is stale). See deployment/1-aiml-security-member-roles.yaml and aiml-security-single-account.yaml.
+2. Check for an Organizations SCP / permission boundary denying the action.
+3. Confirm the assessed region supports Automated Reasoning checks.
+4. Re-run the assessment after re-deploying.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/troubleshoot_access-denied.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-08</code></td>
-            <td class="col-domain">AgentCore VPC Endpoints Missing</td>
-            <td class="finding-details">No AgentCore VPC endpoints found in 1 VPCs. AgentCore API traffic traverses public internet, exposing it to interception.</td>
-            <td class="resolution-text">Create VPC interface endpoints for AgentCore services:
-1. com.amazonaws.region.bedrock-agentcore
-2. com.amazonaws.region.bedrock-agentcore-control
-3. com.amazonaws.region.bedrock-agentcore-runtime
-This enables private connectivity via AWS PrivateLink</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-28</code></td>
+            <td class="col-domain">No Guardrails — Denied Topics Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with denied topics for regulated financial content.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-29</code></td>
+            <td class="col-domain">ADVISORY: Compliance Disclaimer — Manual Review Required</td>
+            <td class="finding-details">Application-level compliance disclaimers cannot be verified via AWS APIs. Manual review required to confirm GenAI outputs include required regulatory disclosures.</td>
+            <td class="resolution-text">1. Implement post-processing to append required disclaimers to GenAI outputs.
+2. Use Bedrock Guardrails word filters to block outputs that omit required disclosures.
+3. Document disclaimer requirements in the AI use case register.
+4. Test disclaimer presence in QA/UAT before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-30</code></td>
+            <td class="col-domain">ADVISORY: Compliance Dataset Coverage — Manual Review Required</td>
+            <td class="finding-details">Bedrock model-evaluation dataset content cannot be inspected via API. Manually verify your model-evaluation jobs include compliance-specific datasets (fair lending/ECOA, Fair Housing Act, UDAP/UDAAP, AML/KYC edge cases). Whether any evaluation jobs exist at all is assessed by FS-15.</td>
+            <td class="resolution-text">Run Bedrock Model Evaluation with compliance-specific datasets:
+- Fair lending test cases (ECOA, Fair Housing Act)
+- UDAP/UDAAP unfair/deceptive practice scenarios
+- AML/KYC edge cases</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-31</code></td>
+            <td class="col-domain">Knowledge Base Data Sources Past Review Threshold</td>
+            <td class="finding-details">1 data source(s) not synced in >7 days (a configurable review threshold, NOT an AWS-mandated limit):
+- KB 'knowledge-base-prowler-findings' source 'knowledge-base-quick-start-9lb68-data-source' last synced 403 days ago
+Confirm this age is acceptable for each data source's currency requirement — slow-changing reference data may legitimately sync infrequently.</td>
+            <td class="resolution-text">1. Define the maximum acceptable data age per use case (e.g., intraday for market data, daily for product terms, weekly/monthly for regulatory guidance) and adjust the review threshold to match.
+2. Configure automated sync (EventBridge Scheduler → StartIngestionJob) at that cadence — see FS-61.
+3. Set CloudWatch alarms on sync job failures.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/knowledge-base-ingest.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-32</code></td>
+            <td class="col-domain">ADVISORY: Source Attribution — Manual Review Required</td>
+            <td class="finding-details">Source attribution in GenAI responses cannot be verified via AWS APIs. Manual review required to confirm responses include citations.</td>
+            <td class="resolution-text">1. Use Bedrock RetrieveAndGenerate with citations enabled.
+2. Include source document references in response post-processing.
+3. Test citation accuracy in QA before production deployment.
+4. Consider Bedrock Guardrails grounding checks to validate response accuracy.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/kb-test-config.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-33</code></td>
+            <td class="col-domain">KB Data Source Buckets Have Versioning</td>
+            <td class="finding-details">All reviewed KB data source buckets have versioning enabled.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/checking-object-integrity.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-34</code></td>
+            <td class="col-domain">Legacy Foundation Models Available in Region</td>
+            <td class="finding-details">Legacy/deprecated foundation models are available in this account/region: anthropic.claude-sonnet-4-20250514-v1:0, twelvelabs.marengo-embed-2-7-v1:0, amazon.titan-image-generator-v2:0, amazon.nova-premier-v1:0:8k, amazon.nova-premier-v1:0:20k, amazon.nova-premier-v1:0:1000k, amazon.nova-premier-v1:0:mm, amazon.nova-premier-v1:0, amazon.nova-canvas-v1:0, amazon.nova-reel-v1:0. This API reports model *availability*, not actual usage — it cannot determine which models your applications invoke. Legacy models have older training-data cutoffs and may produce outdated information if used. Review whether any are in active use.</td>
+            <td class="resolution-text">1. Identify which (if any) of these legacy models your applications invoke (e.g., via CloudTrail InvokeModel events or application config).
+2. Migrate active usage to current model versions.
+3. Document training-data cutoff dates for all models in use.
+4. Add data-currency disclaimers to outputs from models with old cutoffs.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-lifecycle.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-35</code></td>
+            <td class="col-domain">ADVISORY: Harmful-Content Test Coverage — Manual Review Required</td>
+            <td class="finding-details">Bedrock model-evaluation dataset content cannot be inspected via API. Manually verify your model-evaluation/FMEval jobs include harmful-content datasets (toxicity, hate speech, violence/self-harm). Whether any evaluation jobs exist at all is assessed by FS-15.</td>
+            <td class="resolution-text">Run Bedrock Model Evaluation or FMEval with harmful content datasets:
+- Toxicity detection
+- Hate speech classification
+- Violence/self-harm content</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-36</code></td>
+            <td class="col-domain">No Guardrails — Content Filters Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with content filters.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-filters.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-37</code></td>
+            <td class="col-domain">ADVISORY: User Feedback Mechanism — Manual Review Required</td>
+            <td class="finding-details">User feedback mechanisms for harmful outputs cannot be verified via AWS APIs. Manual review required.</td>
+            <td class="resolution-text">1. Implement thumbs-up/down or flag-for-review UI in GenAI applications.
+2. Route flagged outputs to human reviewers via SQS/SNS.
+3. Log feedback to DynamoDB/S3 for model improvement.
+4. Define SLAs for reviewing flagged content.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-38</code></td>
+            <td class="col-domain">No Guardrails — Word Filters Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with word filters.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-39</code></td>
+            <td class="col-domain">No SageMaker Clarify Bias Monitoring</td>
+            <td class="finding-details">No SageMaker Clarify model bias monitoring schedules found. Models making financial decisions (credit, insurance) may exhibit discriminatory bias without detection.</td>
+            <td class="resolution-text">1. Configure SageMaker Clarify bias detection for all models making credit, insurance, or employment decisions.
+2. Define protected attributes (age, gender, race proxies).
+3. Set bias metric thresholds and alert on violations.
+4. Document bias testing results for regulatory examination.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-model-monitor-bias-drift.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-09</code></td>
-            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
-            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
-            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-40</code></td>
+            <td class="col-domain">ADVISORY: Bias Dataset Coverage — Manual Review Required</td>
+            <td class="finding-details">Bedrock model-evaluation dataset content cannot be inspected via API. Manually verify your model-evaluation jobs include bias/fairness datasets (demographic parity, equal-opportunity, counterfactual fairness) for any GenAI models used in financial decisions (ECOA/Fair Housing). Whether any evaluation jobs exist at all is assessed by FS-15.</td>
+            <td class="resolution-text">Run Bedrock Model Evaluation with bias test datasets:
+- Demographic parity test cases
+- Equal opportunity scenarios
+- Counterfactual fairness tests</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-evaluation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-41</code></td>
+            <td class="col-domain">No SageMaker Clarify Explainability Monitoring</td>
+            <td class="finding-details">No SageMaker Clarify explainability monitoring found. Models making adverse financial decisions may not provide required explanations (ECOA adverse action notices).</td>
+            <td class="resolution-text">1. Configure SageMaker Clarify explainability for credit/lending models.
+2. Generate SHAP values for feature importance.
+3. Map top features to human-readable adverse action reason codes.
+4. Store explanations for regulatory examination.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-model-explainability.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-42</code></td>
+            <td class="col-domain">No SageMaker Model Cards Found</td>
+            <td class="finding-details">No SageMaker Model Cards found. Production AI models lack documented intended use, limitations, and bias evaluations.</td>
+            <td class="resolution-text">1. Create SageMaker Model Cards for all production models.
+2. Document: intended use, out-of-scope uses, training data, bias evaluations.
+3. Include regulatory compliance attestations.
+4. Review and update cards at each model version release.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-cards.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-10</code></td>
-            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
-            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-43</code></td>
+            <td class="col-domain">No CloudWatch Logs Data Protection Policies</td>
+            <td class="finding-details">No CloudWatch Logs data protection policies found. PII (SSN, account numbers, credit card numbers) in Bedrock invocation logs may be stored in plaintext.</td>
+            <td class="resolution-text">1. Create CloudWatch Logs data protection policies to mask PII.
+2. Enable masking for: SSN, credit card numbers, bank account numbers, email.
+3. Apply policies to Bedrock invocation log groups.
+4. Test masking with synthetic PII before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/mask-sensitive-log-data.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-11</code></td>
-            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
-            <td class="finding-details">No Policy Engines found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-44</code></td>
+            <td class="col-domain">Amazon Macie Not Enabled</td>
+            <td class="finding-details">Amazon Macie is not enabled. S3 buckets containing training data and KB data sources are not being scanned for PII/sensitive data.</td>
+            <td class="resolution-text">1. Enable Amazon Macie in all regions where AI/ML data is stored.
+2. Create Macie classification jobs for training data and KB buckets.
+3. Configure Macie findings to route to Security Hub and SNS.
+4. Remediate PII findings before using data for model training.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/macie/latest/user/what-is-macie.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-45</code></td>
+            <td class="col-domain">No Guardrails — PII Filters Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with PII/sensitive information filters.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-sensitive-filters.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="666666666666">
-            <td><code>666666666666</code></td>
-            <td><code>AC-12</code></td>
-            <td class="col-domain">AgentCore Gateway Encryption Check</td>
-            <td class="finding-details">No Gateways found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-46</code></td>
+            <td class="col-domain">No AI/ML Data Buckets Identified</td>
+            <td class="finding-details">No S3 buckets with AI/ML naming found.</td>
+            <td class="resolution-text">Tag AI/ML data buckets with data-classification labels.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-tagging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore VPC Configuration Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-47</code></td>
+            <td class="col-domain">No Guardrails — Grounding Threshold Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with contextual grounding checks.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-grounding.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-02</code></td>
-            <td class="col-domain">AgentCore IAM Full Access Check</td>
-            <td class="finding-details">No roles with overly permissive AgentCore access found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-48</code></td>
+            <td class="col-domain">Active Knowledge Bases for RAG Present</td>
+            <td class="finding-details">Found 1 active Knowledge Base(s) for RAG grounding.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/knowledge-base.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-03</code></td>
-            <td class="col-domain">AgentCore Unused Permissions</td>
-            <td class="finding-details">The following principals have AgentCore permissions but have never accessed the service: role 'AIMLSecurityMemberRole'</td>
-            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-49</code></td>
+            <td class="col-domain">ADVISORY: Hallucination Disclaimer — Manual Review Required</td>
+            <td class="finding-details">Application-level hallucination disclaimers cannot be verified via AWS APIs. Manual review required.</td>
+            <td class="resolution-text">1. Add disclaimers to GenAI outputs: 'AI-generated content may contain errors. Verify with authoritative sources before acting.'
+2. Implement post-processing to append disclaimers.
+3. Test disclaimer presence in QA before production.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-50</code></td>
+            <td class="col-domain">No Guardrails With Relevance Grounding Filters</td>
+            <td class="finding-details">No guardrails have RELEVANCE contextual grounding filters. Without relevance filters, responses that are off-topic or unrelated to the user query will not be blocked, increasing hallucination risk in RAG-based FinServ applications.</td>
+            <td class="resolution-text">Enable the RELEVANCE contextual grounding filter in Bedrock Guardrails with a threshold of ≥0.7 to block responses that are not relevant to the user query. Also enable the GROUNDING filter (≥0.7) to block responses not supported by the retrieved source context.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-grounding.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Observability Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-51</code></td>
+            <td class="col-domain">No Guardrails — Prompt Attack Filters Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with prompt attack filters.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-52</code></td>
+            <td class="col-domain">Bedrock Lambda Functions on Current Runtimes</td>
+            <td class="finding-details">All 16 Bedrock Lambda function(s) use current runtimes.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/lambda/latest/dg/runtimes-update.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-05</code></td>
-            <td class="col-domain">AgentCore Encryption Check</td>
-            <td class="finding-details">No AgentCore resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-53</code></td>
+            <td class="col-domain">No WAF Web ACLs — Injection Rules Not Applicable</td>
+            <td class="finding-details">No regional WAF Web ACLs found.</td>
+            <td class="resolution-text">Create WAF Web ACLs with injection protection rules (see FS-01).</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-baseline.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-54</code></td>
+            <td class="col-domain">ADVISORY: Penetration Testing — Manual Review Required</td>
+            <td class="finding-details">Penetration testing evidence cannot be verified via AWS APIs. Manual review required to confirm GenAI applications have been tested.</td>
+            <td class="resolution-text">1. Conduct penetration testing of GenAI applications at least annually and before major releases.
+2. Include AI-specific test cases: prompt injection, jailbreak, indirect (cross-domain) injection, system-prompt leakage, and data-extraction attempts.
+3. Consider AWS Security Agent for on-demand, AI-driven penetration testing (GA March 2026; available in US East N. Virginia, US West Oregon, Europe Ireland, Europe Frankfurt, Asia Pacific Sydney, Asia Pacific Tokyo, with cross-account shared-VPC testing via AWS RAM). Open-source tools such as Garak or PyRIT and manual red-teaming are complementary options. Verify current regional availability on the AWS Security Agent page before relying on it.
+4. Document findings and remediation for regulatory examination, and tag tested resources with a last-pentest-date for audit trail.
+5. For DORA compliance, include GenAI in TLPT (Threat-Led Penetration Testing) scope.</td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/security/penetration-testing/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-55</code></td>
+            <td class="col-domain">No Output Validation Functions Found</td>
+            <td class="finding-details">No Lambda functions with output validation/sanitization naming found. GenAI outputs may be passed directly to downstream systems without validation.</td>
+            <td class="resolution-text">1. Implement output validation Lambda functions in GenAI pipelines.
+2. Validate output schema, length, and content before downstream use.
+3. Sanitize outputs before rendering in web UIs (XSS prevention).
+4. Encode outputs appropriately for the target context (HTML, SQL, JSON).</td>
+            <td class="reference-cell"><a href="https://genai.owasp.org/llm-top-10/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
-            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-56</code></td>
+            <td class="col-domain">No WAF ACLs — XSS Prevention Not Applicable</td>
+            <td class="finding-details">No regional WAF Web ACLs found.</td>
+            <td class="resolution-text">Create WAF ACLs with XSS prevention rules.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-baseline.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-57</code></td>
+            <td class="col-domain">ADVISORY: Output Encoding — Manual Review Required</td>
+            <td class="finding-details">Output encoding practices cannot be verified via AWS APIs. Manual code review required.</td>
+            <td class="resolution-text">1. HTML-encode GenAI outputs before rendering in web UIs.
+2. Use parameterized queries when GenAI output is used in database operations.
+3. JSON-encode outputs before embedding in JavaScript contexts.
+4. Validate output length and format before passing to downstream APIs.</td>
+            <td class="reference-cell"><a href="https://genai.owasp.org/llm-top-10/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-58</code></td>
+            <td class="col-domain">ADVISORY: Output Schema Validation — Manual Review Required</td>
+            <td class="finding-details">Found 0 Lambda function(s) whose names suggest schema/validation handling. Structured-output / JSON-schema validation of GenAI responses is an application-layer control that cannot be verified automatically — manual review required.</td>
+            <td class="resolution-text">1. Use Bedrock structured output (response schemas) where supported.
+2. Implement JSON schema validation on Lambda output processors.
+3. Reject malformed outputs and return safe error responses.
+4. Log schema validation failures to CloudWatch for monitoring.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/inference-parameters.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-59</code></td>
+            <td class="col-domain">No Guardrails — Topic Allowlist Not Applicable</td>
+            <td class="finding-details">No Bedrock Guardrails configured.</td>
+            <td class="resolution-text">Configure guardrails with topic policies to restrict off-topic responses.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-components.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-60</code></td>
+            <td class="col-domain">ADVISORY: Contextual Grounding for Off-Topic Prevention</td>
+            <td class="finding-details">Contextual grounding for off-topic prevention is covered by guardrail grounding checks (FS-47) and RAG configuration (FS-48). Additionally verify system prompts explicitly scope the assistant's role.</td>
+            <td class="resolution-text">1. Include explicit scope instructions in system prompts.
+2. Use Bedrock Guardrails relevance grounding filter.
+3. Test with off-topic prompts in QA to verify rejection behavior.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-grounding.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-61</code></td>
+            <td class="col-domain">COULD NOT ASSESS: Knowledge Base Sync Schedule Check</td>
+            <td class="finding-details">This check could not be completed (error: An error occurred (AccessDeniedException) when calling the ListSchedules operation: User: arn:aws:sts::472057511786:assumed-role/aiml-security-mgmt-FinServSecurityAssessmentFunctio-pwj9by1swQWa/aiml-security-aiml-security-mgmt-FinServAssessment is not authorized to perform: scheduler:ListSchedules on resource: arn:aws:scheduler:us-east-1:472057511786:schedule/*/* because no identity-based policy allows the scheduler:ListSchedules action). The most common cause is a missing IAM permission for the assessment role; it may also indicate an unsupported region or an outdated botocore. This control was NOT assessed — verify the role's permissions and re-run, and assess this control manually until resolved.</td>
+            <td class="resolution-text">1. Confirm the assessment role grants the actions this check requires (see the documented IAM permission set in the README).
+2. Confirm the service/feature is supported in the assessed region.
+3. Ensure botocore meets the version floor in requirements.txt.
+4. Re-run the assessment; assess this control manually until it succeeds.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/troubleshoot_access-denied.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-07</code></td>
-            <td class="col-domain">AgentCore Memory Configuration Check</td>
-            <td class="finding-details">No Memory resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-62</code></td>
+            <td class="col-domain">ADVISORY: Data Currency Disclaimer — Manual Review Required</td>
+            <td class="finding-details">Data currency disclaimers cannot be verified via AWS APIs. Manual review required.</td>
+            <td class="resolution-text">1. Add data currency disclaimers to GenAI outputs: 'Information based on data current as of [KB last sync date].'
+2. Expose KB last sync timestamp in application responses.
+3. Alert users when KB data is older than defined threshold.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/knowledge-base-ingest.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-13</code></td>
-            <td class="col-domain">AgentCore Gateway Configuration Check</td>
-            <td class="finding-details">No Gateway resources found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-63</code></td>
+            <td class="col-domain">Foundation Model Lifecycle Management</td>
+            <td class="finding-details">No legacy models detected. 11 lifecycle-related Config rule(s) found.</td>
+            <td class="resolution-text">No action required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-lifecycle.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-65</code></td>
+            <td class="col-domain">KB Data Source Buckets Missing S3 Event Notifications</td>
+            <td class="finding-details">The following KB data-source S3 buckets have no event notifications configured. Unauthorized document modifications will not be detected in real time:
+- sat2-prowler-2025-prowlerfindingsbucket-wc1k0mza7lpk</td>
+            <td class="resolution-text">1. Enable Amazon EventBridge notifications on each KB data-source S3 bucket.
+2. Create an EventBridge rule to route s3:ObjectCreated, s3:ObjectRemoved, and s3:ObjectModified events to an SNS topic or Lambda for alerting.
+3. Integrate alerts into your security incident response workflow.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/EventBridge.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-66</code></td>
+            <td class="col-domain">No AgentCore Runtimes Found</td>
+            <td class="finding-details">No AgentCore runtimes found; identity propagation check not applicable.</td>
+            <td class="resolution-text">If using AgentCore, configure token propagation so end-user identities are forwarded to tool services.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security-authorization.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-67</code></td>
+            <td class="col-domain">Agent Action-Group Lambdas May Lack Transaction Thresholds</td>
+            <td class="finding-details">The following agent action-group Lambda functions have no environment variables whose names suggest transaction-value threshold configuration (this is a best-effort heuristic — a threshold enforced in code or in an AgentCore Policy Engine rule would not be detected here, so treat this as a prompt for manual verification rather than a definitive gap). Without explicit limits, agents could initiate unbounded financial transactions:
+- aiml-security-aiml-security-mgmt-FinServAssessment
+- resco-aiml-BedrockAssessment
+- resco-aiml-AgentCoreAssessment
+- aiml-security-aiml-security-mgmt-AgentCoreAssessment
+- aiml-security-aiml-security-mgmt-BedrockAssessment</td>
+            <td class="resolution-text">1. Add transaction-value threshold environment variables (e.g., MAX_TRANSACTION_AMOUNT) to each agent action-group Lambda.
+2. Implement threshold enforcement logic in the Lambda handler.
+3. Configure AgentCore Policy Engine rules to cap financial transaction amounts.
+4. Route transactions exceeding thresholds to a human-in-the-loop approval step.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-engine.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-68</code></td>
+            <td class="col-domain">API Gateway Request Body Size Limits — Not Applicable</td>
+            <td class="finding-details">No API Gateway REST APIs and no regional WAF Web ACLs were found in this region. There is no input-payload surface to assess for body-size limits.</td>
+            <td class="resolution-text">If GenAI endpoints are fronted by API Gateway or WAF in another region, run the assessment there. Otherwise no action is required.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/waf/latest/developerguide/waf-rule-statement-type-size-constraint.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
+            <td><code>472057511786</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-69</code></td>
+            <td class="col-domain">Prompt Input Validation Functions Present</td>
+            <td class="finding-details">Found 2 Lambda function(s) with input validation/sanitization naming patterns: aiml-security-aiml-security-mgmt-CleanupBucket, resco-aiml-CleanupBucket.</td>
+            <td class="resolution-text">Review these functions to confirm they cover: special-character stripping, format validation, size limits, and injection-sequence detection.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-injection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
+            <td><code>472057511786</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>FS-00</code></td>
+            <td class="col-domain">FinServ Regional Scope Not Applicable</td>
+            <td class="finding-details">No regional Bedrock, AgentCore, or SageMaker resources were found in eu-west-1; FinServ GenAI risk checks were not applied to this region.</td>
+            <td class="resolution-text">No action required unless GenAI workloads are expected in this region.</td>
+            <td class="reference-cell"><a href="https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-08</code></td>
-            <td class="col-domain">AgentCore VPC Endpoints Check</td>
-            <td class="finding-details">No VPCs found in the account</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
+            <td><code>472057511786</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>FS-00</code></td>
+            <td class="col-domain">FinServ Regional Scope Not Applicable</td>
+            <td class="finding-details">No regional Bedrock, AgentCore, or SageMaker resources were found in ap-southeast-2; FinServ GenAI risk checks were not applied to this region.</td>
+            <td class="resolution-text">No action required unless GenAI workloads are expected in this region.</td>
+            <td class="reference-cell"><a href="https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-09</code></td>
-            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
-            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
-            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-10</code></td>
-            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
-            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
+            <td><code>230266523520</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-00</code></td>
+            <td class="col-domain">FinServ Regional Scope Not Applicable</td>
+            <td class="finding-details">No regional Bedrock, AgentCore, or SageMaker resources were found in us-east-1; FinServ GenAI risk checks were not applied to this region.</td>
+            <td class="resolution-text">No action required unless GenAI workloads are expected in this region.</td>
+            <td class="reference-cell"><a href="https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-11</code></td>
-            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
-            <td class="finding-details">No Policy Engines found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
+            <td><code>230266523520</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>FS-00</code></td>
+            <td class="col-domain">FinServ Regional Scope Not Applicable</td>
+            <td class="finding-details">No regional Bedrock, AgentCore, or SageMaker resources were found in eu-west-1; FinServ GenAI risk checks were not applied to this region.</td>
+            <td class="resolution-text">No action required unless GenAI workloads are expected in this region.</td>
+            <td class="reference-cell"><a href="https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="444444444444">
-            <td><code>444444444444</code></td>
-            <td><code>AC-12</code></td>
-            <td class="col-domain">AgentCore Gateway Encryption Check</td>
-            <td class="finding-details">No Gateways found</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
+            <td><code>230266523520</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>FS-00</code></td>
+            <td class="col-domain">FinServ Regional Scope Not Applicable</td>
+            <td class="finding-details">No regional Bedrock, AgentCore, or SageMaker resources were found in ap-southeast-2; FinServ GenAI risk checks were not applied to this region.</td>
+            <td class="resolution-text">No action required unless GenAI workloads are expected in this region.</td>
+            <td class="reference-cell"><a href="https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr></tbody></table></div></div>
-            </section>
+        </tr></tbody></table></div></div></section>
             <section id="methodology" class="section">
-                <div class="section-title"><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><circle cx="12" cy="12" r="10"></circle><path d="M9.09 9a3 3 0 0 1 5.83 1c0 2-3 3-3 3"></path><line x1="12" y1="17" x2="12.01" y2="17"></line></svg>Assessment Methodology</div>
+                <div class="section-title"><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><circle cx="12" cy="12" r="10"/><path d="M9.09 9a3 3 0 0 1 5.83 1c0 2-3 3-3 3"/><line x1="12" y1="17" x2="12.01" y2="17"/></svg>Assessment Methodology</div>
                 <div class="card"><div class="card-header" style="padding: 12px 16px;"><h3 style="font-size: 14px;">Severity Levels &amp; Status Values</h3></div><div class="card-body" style="padding: 12px 16px;"><table style="width: 100%; font-size: 12px;"><tbody><tr><td style="padding: 4px 12px 4px 0; width: 100px;"><span class="severity high">High</span></td><td style="padding: 4px 0; color: var(--text-2); width: 45%;">Direct security risk</td><td style="padding: 4px 12px 4px 24px; width: 60px;"><span class="status error">Failed</span></td><td style="padding: 4px 0; color: var(--text-2);">Remediation needed</td></tr><tr><td style="padding: 4px 12px 4px 0;"><span class="severity medium">Medium</span></td><td style="padding: 4px 0; color: var(--text-2);">Defense-in-depth gap</td><td style="padding: 4px 12px 4px 24px;"><span class="status success">Passed</span></td><td style="padding: 4px 0; color: var(--text-2);">Meets requirements</td></tr><tr><td style="padding: 4px 12px 4px 0;"><span class="severity low">Low</span></td><td style="padding: 4px 0; color: var(--text-2);">Best practice</td><td style="padding: 4px 12px 4px 24px;"><span class="status warning">N/A</span></td><td style="padding: 4px 0; color: var(--text-2);">Not applicable</td></tr><tr><td style="padding: 4px 12px 4px 0;"><span class="severity na">Informational</span></td><td style="padding: 4px 0; color: var(--text-2);">No action required</td><td></td><td></td></tr></tbody></table></div></div>
                 <div class="card"><div class="card-header" style="padding: 12px 16px;"><h3 style="font-size: 14px;">Remediation Guidance</h3></div><div class="card-body" style="padding: 12px 16px;"><table style="width: 100%; font-size: 12px;"><tbody><tr><td style="padding: 4px 12px 4px 0; width: 80px;"><span class="severity high">High</span></td><td style="padding: 4px 0; color: var(--text-2); width: 60px;">7 days</td><td style="padding: 4px 0; color: var(--text-2);">Address immediately; block deployment if unresolved</td></tr><tr><td style="padding: 4px 12px 4px 0;"><span class="severity medium">Medium</span></td><td style="padding: 4px 0; color: var(--text-2);">30 days</td><td style="padding: 4px 0; color: var(--text-2);">Schedule in next sprint; may require change window</td></tr><tr><td style="padding: 4px 12px 4px 0;"><span class="severity low">Low</span></td><td style="padding: 4px 0; color: var(--text-2);">90 days</td><td style="padding: 4px 0; color: var(--text-2);">Include in backlog; address during regular maintenance</td></tr></tbody></table></div></div>
                 <div class="card"><div class="card-header" style="padding: 12px 16px;"><h3 style="font-size: 14px;">Assessment Notes</h3></div><div class="card-body" style="padding: 12px 16px; font-size: 12px; color: var(--text-2); line-height: 1.6;"><strong style="color: var(--text);">Point-in-time:</strong> Security posture changes as resources are modified. <strong style="color: var(--text);">Scope limited:</strong> Passed checks verify tested controls only. <strong style="color: var(--text);">Context matters:</strong> Adjust severity for compliance requirements and environment type.</div></div>
-                <div class="card"><div class="card-header"><h3>Assessment Scope</h3></div><div class="card-body"><div style="display: flex; gap: 12px; flex-wrap: wrap; margin-bottom: 12px;"><div style="display: flex; align-items: center; gap: 8px; padding: 8px 12px; background: var(--surface-2); border-radius: 6px;"><span class="service-icon" style="width: 20px; height: 20px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"></path></svg></span><span style="font-size: 13px; font-weight: 500;">Amazon Bedrock</span></div><div style="display: flex; align-items: center; gap: 8px; padding: 8px 12px; background: var(--surface-2); border-radius: 6px;"><span class="service-icon" style="width: 20px; height: 20px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"></path></svg></span><span style="font-size: 13px; font-weight: 500;">Amazon SageMaker</span></div><div style="display: flex; align-items: center; gap: 8px; padding: 8px 12px; background: var(--surface-2); border-radius: 6px;"><span class="service-icon" style="width: 20px; height: 20px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"></path></svg></span><span style="font-size: 13px; font-weight: 500;">Amazon Bedrock AgentCore</span></div></div><p style="color: var(--text-3); font-size: 12px;">Based on AWS Well-Architected Framework (Generative AI Lens) and service-specific security documentation.</p></div></div>
+                <div class="card"><div class="card-header"><h3>Assessment Scope</h3></div><div class="card-body"><div style="display: flex; gap: 12px; flex-wrap: wrap; margin-bottom: 12px;"><div style="display: flex; align-items: center; gap: 8px; padding: 8px 12px; background: var(--surface-2); border-radius: 6px;"><span class="service-icon" style="width: 20px; height: 20px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"/></svg></span><span style="font-size: 13px; font-weight: 500;">Amazon Bedrock</span></div><div style="display: flex; align-items: center; gap: 8px; padding: 8px 12px; background: var(--surface-2); border-radius: 6px;"><span class="service-icon" style="width: 20px; height: 20px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"/></svg></span><span style="font-size: 13px; font-weight: 500;">Amazon SageMaker</span></div><div style="display: flex; align-items: center; gap: 8px; padding: 8px 12px; background: var(--surface-2); border-radius: 6px;"><span class="service-icon" style="width: 20px; height: 20px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"/></svg></span><span style="font-size: 13px; font-weight: 500;">Amazon Bedrock AgentCore</span></div></div><div class="scope-industry" data-scope-service="finserv"><div class="scope-industry-label">Industry</div><div class="scope-chip-row"><div class="scope-chip industry-chip"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#7C3AED" width="80" height="80"/><path fill="#FFF" d="M40 14 L66 26 L66 31 L14 31 L14 26 Z M20 35 h6 v23 h-6 z M37 35 h6 v23 h-6 z M54 35 h6 v23 h-6 z M14 62 h52 v5 h-52 z"/></svg></span><span style="font-size: 13px; font-weight: 500;">Financial Services GenAI Risk</span></div></div></div><p style="color: var(--text-3); font-size: 12px;">Bedrock, SageMaker, and AgentCore checks are based on the <a href="https://docs.aws.amazon.com/wellarchitected/latest/generative-ai-lens/generative-ai-lens.html" target="_blank">AWS Well-Architected Framework Generative AI Lens</a>. Financial Services GenAI Risk checks are based on <a href="https://aws.amazon.com/blogs/security/introducing-the-updated-aws-user-guide-to-governance-risk-and-compliance-for-responsible-ai-adoption/" target="_blank">the AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption</a>.</p></div></div>
             </section>
         </main>
     </div>
@@ -7612,6 +16853,7 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
         function applyFilters() {
             const searchText = document.getElementById('searchInput').value.toLowerCase();
             const accountFilter = document.getElementById('accountFilter')?.value.toLowerCase() || '';
+            const regionFilter = document.getElementById('regionFilter')?.value.toLowerCase() || '';
             const serviceFilter = document.getElementById('serviceFilter').value.toLowerCase();
             const severityFilter = document.getElementById('severityFilter').value.toLowerCase();
             const statusFilter = document.getElementById('statusFilter').value.toLowerCase();
@@ -7619,12 +16861,14 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             rows.forEach(row => {
                 const rowText = row.textContent.toLowerCase();
                 const rowAccount = row.dataset.account || '';
+                const rowRegion = row.dataset.region || '';
                 const rowService = row.dataset.service || '';
                 const rowSeverity = row.dataset.severity || '';
                 const rowStatus = row.dataset.status || '';
                 let show = true;
                 if (searchText && !rowText.includes(searchText)) show = false;
                 if (accountFilter && rowAccount !== accountFilter) show = false;
+                if (regionFilter && rowRegion.toLowerCase() !== regionFilter) show = false;
                 if (serviceFilter && rowService !== serviceFilter) show = false;
                 if (severityFilter && rowSeverity !== severityFilter) show = false;
                 if (statusFilter && rowStatus !== statusFilter) show = false;
@@ -7634,6 +16878,7 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
         document.getElementById('resetFilters').addEventListener('click', function() {
             document.getElementById('searchInput').value = '';
             if (document.getElementById('accountFilter')) document.getElementById('accountFilter').value = '';
+            if (document.getElementById('regionFilter')) document.getElementById('regionFilter').value = '';
             document.getElementById('serviceFilter').value = '';
             document.getElementById('severityFilter').value = '';
             document.getElementById('statusFilter').value = '';
@@ -7641,6 +16886,7 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
         });
         document.getElementById('searchInput').addEventListener('input', applyFilters);
         if (document.getElementById('accountFilter')) document.getElementById('accountFilter').addEventListener('change', applyFilters);
+        if (document.getElementById('regionFilter')) document.getElementById('regionFilter').addEventListener('change', applyFilters);
         document.getElementById('serviceFilter').addEventListener('change', applyFilters);
         document.getElementById('severityFilter').addEventListener('change', applyFilters);
         document.getElementById('statusFilter').addEventListener('change', applyFilters);
@@ -7681,9 +16927,13 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
                             aVal = a.dataset.account || '';
                             bVal = b.dataset.account || '';
                             break;
+                        case 'region':
+                            aVal = a.dataset.region || '';
+                            bVal = b.dataset.region || '';
+                            break;
                         case 'checkId':
-                            aVal = a.querySelector('td:nth-child(2) code')?.textContent || '';
-                            bVal = b.querySelector('td:nth-child(2) code')?.textContent || '';
+                            aVal = a.querySelector('td:nth-child(3) code')?.textContent || '';
+                            bVal = b.querySelector('td:nth-child(3) code')?.textContent || '';
                             break;
                         case 'finding':
                             aVal = a.querySelector('.col-domain')?.textContent.toLowerCase() || '';
@@ -7706,28 +16956,32 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             });
         });
         // Service-specific filter functions
-        function createServiceFilter(tableId, searchId, accountId, severityId, statusId, resetId) {
+        function createServiceFilter(tableId, searchId, accountId, regionId, severityId, statusId, resetId) {
             const table = document.getElementById(tableId);
             if (!table) return;
             const searchInput = document.getElementById(searchId);
             const accountFilter = document.getElementById(accountId);
+            const regionFilter = document.getElementById(regionId);
             const severityFilter = document.getElementById(severityId);
             const statusFilter = document.getElementById(statusId);
             const resetBtn = document.getElementById(resetId);
             function applyServiceFilters() {
                 const searchText = searchInput?.value.toLowerCase() || '';
                 const accountValue = accountFilter?.value.toLowerCase() || '';
+                const regionValue = regionFilter?.value.toLowerCase() || '';
                 const severityValue = severityFilter?.value.toLowerCase() || '';
                 const statusValue = statusFilter?.value.toLowerCase() || '';
                 const rows = table.querySelectorAll('tbody tr');
                 rows.forEach(row => {
                     const rowText = row.textContent.toLowerCase();
                     const rowAccount = row.dataset.account || '';
+                    const rowRegion = row.dataset.region || '';
                     const rowSeverity = row.dataset.severity || '';
                     const rowStatus = row.dataset.status || '';
                     let show = true;
                     if (searchText && !rowText.includes(searchText)) show = false;
                     if (accountValue && rowAccount !== accountValue) show = false;
+                    if (regionValue && rowRegion.toLowerCase() !== regionValue) show = false;
                     if (severityValue && rowSeverity !== severityValue) show = false;
                     if (statusValue && rowStatus !== statusValue) show = false;
                     row.style.display = show ? '' : 'none';
@@ -7735,22 +16989,25 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             }
             searchInput?.addEventListener('input', applyServiceFilters);
             accountFilter?.addEventListener('change', applyServiceFilters);
+            regionFilter?.addEventListener('change', applyServiceFilters);
             severityFilter?.addEventListener('change', applyServiceFilters);
             statusFilter?.addEventListener('change', applyServiceFilters);
             resetBtn?.addEventListener('click', function() {
                 if (searchInput) searchInput.value = '';
                 if (accountFilter) accountFilter.value = '';
+                if (regionFilter) regionFilter.value = '';
                 if (severityFilter) severityFilter.value = '';
                 if (statusFilter) statusFilter.value = '';
                 applyServiceFilters();
             });
         }
-        createServiceFilter('bedrockTable', 'bedrockSearchInput', 'bedrockAccountFilter', 'bedrockSeverityFilter', 'bedrockStatusFilter', 'bedrockResetFilters');
-        createServiceFilter('sagemakerTable', 'sagemakerSearchInput', 'sagemakerAccountFilter', 'sagemakerSeverityFilter', 'sagemakerStatusFilter', 'sagemakerResetFilters');
-        createServiceFilter('agentcoreTable', 'agentcoreSearchInput', 'agentcoreAccountFilter', 'agentcoreSeverityFilter', 'agentcoreStatusFilter', 'agentcoreResetFilters');
+        createServiceFilter('bedrockTable', 'bedrockSearchInput', 'bedrockAccountFilter', 'bedrockRegionFilter', 'bedrockSeverityFilter', 'bedrockStatusFilter', 'bedrockResetFilters');
+        createServiceFilter('sagemakerTable', 'sagemakerSearchInput', 'sagemakerAccountFilter', 'sagemakerRegionFilter', 'sagemakerSeverityFilter', 'sagemakerStatusFilter', 'sagemakerResetFilters');
+        createServiceFilter('agentcoreTable', 'agentcoreSearchInput', 'agentcoreAccountFilter', 'agentcoreRegionFilter', 'agentcoreSeverityFilter', 'agentcoreStatusFilter', 'agentcoreResetFilters');
+        createServiceFilter('finservTable', 'finservSearchInput', 'finservAccountFilter', 'finservRegionFilter', 'finservSeverityFilter', 'finservStatusFilter', 'finservResetFilters');
 
         // Apply initial filters for main table
         applyFilters();
     </script>
-
-<div id="amazon-quick-browser-extension-fab" style="all: initial;"><template shadowrootmode="closed"><div style="bottom: 44px; right: 15px; width: 40px; height: 40px; position: fixed; z-index: 2147483647; cursor: pointer; border-radius: 5px; box-shadow: rgba(0, 0, 0, 0.2) 0px 2px 4px; display: flex; align-items: stretch; justify-content: stretch;"><button data-testid="amazon-quick-browser-extension-fab-button" aria-label="Open Amazon Quick browser extension" style="border-width: medium; border-style: none; border-color: currentcolor; border-image: initial; background: none; padding: 0px; margin: 0px; outline: none; cursor: pointer;"><img src="chrome-extension://innkphffipcmiflfibbeghfnkifiokgo/quick-logo.svg" style="width: 100%; height: 100%;"></button><button data-testid="amazon-quick-browser-extension-fab-close-button" aria-label="Remove Amazon Quick button" aria-live="polite" style="padding: 0px; margin: 0px; outline: none; cursor: pointer; position: absolute; top: -12px; right: -12px; width: 24px; height: 24px; background-color: white; border-radius: 5px; display: flex; align-items: center; justify-content: center; font-size: 12px; visibility: hidden; border: 1px solid black; box-shadow: rgba(0, 0, 0, 0.2) 0px 2px 4px;">x</button></div></template></div></body></html>
\ No newline at end of file
+</body>
+</html>
\ No newline at end of file
diff --git a/sample-reports/security_assessment_multi_region_sample.html b/sample-reports/security_assessment_multi_region_sample.html
deleted file mode 100644
index e20cccd..0000000
--- a/sample-reports/security_assessment_multi_region_sample.html
+++ /dev/null
@@ -1,873 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-<head>
-    <meta charset="UTF-8">
-    <meta name="viewport" content="width=device-width, initial-scale=1.0">
-    <title>AI/ML Security Assessment Report</title>
-    <link href="https://fonts.googleapis.com/css2?family=DM+Sans:wght@400;500;600;700&family=JetBrains+Mono:wght@400;500&display=swap" rel="stylesheet">
-    <style>
-        :root {
-            --bg: #f8fafc;
-            --surface: #fff;
-            --surface-2: #f1f5f9;
-            --border: #cbd5e1;
-            --text: #0f172a;
-            --text-2: #64748b;
-            --text-3: #94a3b8;
-            --accent: #6366f1;
-            --accent-soft: #eef2ff;
-            --success: #10b981;
-            --success-soft: #ecfdf5;
-            --warning: #f59e0b;
-            --warning-soft: #fffbeb;
-            --danger: #ef4444;
-            --danger-soft: #fef2f2;
-        }
-        [data-theme="dark"] {
-            --bg: #0f172a;
-            --surface: #1e293b;
-            --surface-2: #334155;
-            --border: #64748b;
-            --text: #f1f5f9;
-            --text-2: #94a3b8;
-            --text-3: #64748b;
-            --accent: #818cf8;
-            --accent-soft: rgba(129, 140, 248, 0.15);
-            --success: #4ade80;
-            --success-soft: rgba(74, 222, 128, 0.15);
-            --warning: #fbbf24;
-            --warning-soft: rgba(251, 191, 36, 0.15);
-            --danger: #f87171;
-            --danger-soft: rgba(248, 113, 113, 0.15);
-        }
-        * { box-sizing: border-box; margin: 0; padding: 0; }
-        body { font-family: 'DM Sans', system-ui, sans-serif; font-size: 14px; line-height: 1.6; color: var(--text); background: var(--bg); -webkit-font-smoothing: antialiased; }
-        .layout { display: grid; grid-template-columns: 280px 1fr; min-height: 100vh; }
-        .sidebar { background: var(--surface); border-right: 1px solid var(--border); padding: 24px 0; position: sticky; top: 0; height: 100vh; overflow-y: auto; display: flex; flex-direction: column; }
-        .sidebar-header { padding: 0 20px 24px; border-bottom: 1px solid var(--border); margin-bottom: 16px; }
-        .sidebar-header h1 { font-size: 18px; font-weight: 700; color: var(--text); margin-bottom: 4px; }
-        .sidebar-header p { font-size: 12px; color: var(--text-3); }
-        .theme-toggle { display: flex; align-items: center; gap: 8px; margin: 16px 20px; padding: 10px 14px; background: var(--surface-2); border: 1px solid var(--border); border-radius: 8px; cursor: pointer; font-size: 13px; font-weight: 500; color: var(--text); transition: all 0.15s; }
-        .theme-toggle:hover { border-color: var(--accent); background: var(--accent-soft); }
-        .theme-toggle svg { width: 18px; height: 18px; }
-        .theme-toggle .sun-icon { display: none; }
-        .theme-toggle .moon-icon { display: block; }
-        [data-theme="dark"] .theme-toggle .sun-icon { display: block; }
-        [data-theme="dark"] .theme-toggle .moon-icon { display: none; }
-        .nav-section { padding: 0 16px; margin-bottom: 24px; }
-        .nav-section h3 { font-size: 11px; font-weight: 600; color: var(--text-3); text-transform: uppercase; letter-spacing: 0.5px; padding: 0 8px; margin-bottom: 8px; }
-        .nav-item { display: flex; align-items: center; gap: 10px; padding: 10px 12px; border-radius: 8px; color: var(--text-2); font-size: 14px; font-weight: 500; cursor: pointer; transition: all 0.15s; text-decoration: none; }
-        .nav-item:hover { background: var(--surface-2); color: var(--text); }
-        .nav-item.active { background: var(--accent-soft); color: var(--accent); }
-        .nav-item svg { width: 18px; height: 18px; opacity: 0.7; flex-shrink: 0; }
-        .service-icon { display: inline-flex; align-items: center; justify-content: center; width: 24px; height: 24px; border-radius: 6px; flex-shrink: 0; overflow: hidden; }
-        .service-icon svg { width: 100%; height: 100%; border-radius: 6px; }
-        .section-title .service-icon { width: 32px; height: 32px; }
-        .section-title .service-icon svg { border-radius: 8px; }
-        .nav-item .count { margin-left: auto; font-size: 12px; font-weight: 600; background: var(--surface-2); padding: 2px 8px; border-radius: 10px; }
-        .nav-item.active .count { background: var(--accent); color: #fff; }
-        .sidebar-footer { margin-top: auto; padding: 16px 20px; border-top: 1px solid var(--border); font-size: 12px; color: var(--text-3); }
-        .sidebar-footer a { color: var(--accent); text-decoration: none; }
-        .main { padding: 32px 40px; max-width: 1400px; }
-        .page-header { margin-bottom: 32px; }
-        .page-header h2 { font-size: 24px; font-weight: 700; margin-bottom: 8px; }
-        .page-header-meta { display: flex; gap: 24px; font-size: 13px; color: var(--text-2); }
-        .page-header-meta span { display: flex; align-items: center; gap: 6px; }
-        .metrics { display: grid; grid-template-columns: repeat(6, 1fr); gap: 16px; margin-bottom: 32px; }
-        .metric { background: var(--surface); border: 2px solid var(--border); border-radius: 12px; padding: 20px; box-shadow: 0 1px 3px rgba(0,0,0,0.08); }
-        .metric-label { font-size: 13px; color: var(--text-2); margin-bottom: 8px; display: flex; align-items: center; gap: 6px; }
-        .metric-value { font-size: 28px; font-weight: 700; color: var(--text); }
-        .metric-sub { font-size: 12px; color: var(--text-3); margin-top: 4px; }
-        .metric.highlight { background: linear-gradient(135deg, var(--success-soft) 0%, rgba(16, 185, 129, 0.2) 100%); border-color: var(--success); }
-        .metric.highlight .metric-value { color: var(--success); }
-        .metric.danger .metric-value { color: var(--danger); }
-        .metric.warning .metric-value { color: var(--warning); }
-        .card { background: var(--surface); border: 2px solid var(--border); border-radius: 12px; margin-bottom: 24px; box-shadow: 0 1px 3px rgba(0,0,0,0.08); }
-        .card-header { padding: 16px 20px; border-bottom: 2px solid var(--border); display: flex; justify-content: space-between; align-items: center; background: var(--surface-2); }
-        .card-header h3 { font-size: 15px; font-weight: 600; display: flex; align-items: center; gap: 10px; }
-        .card-body { padding: 20px; }
-        .alerts { display: grid; grid-template-columns: repeat(auto-fill, minmax(280px, 1fr)); gap: 12px; }
-        .alert-item { display: flex; align-items: center; gap: 12px; padding: 12px 16px; border-radius: 8px; background: var(--surface-2); cursor: pointer; transition: all 0.15s; }
-        .alert-item:hover { background: var(--border); }
-        .alert-item.critical { background: var(--danger-soft); border-left: 3px solid var(--danger); }
-        .alert-item.warning { background: var(--warning-soft); border-left: 3px solid var(--warning); }
-        .alert-count { font-size: 20px; font-weight: 700; min-width: 32px; text-align: center; }
-        .alert-item.critical .alert-count { color: var(--danger); }
-        .alert-item.warning .alert-count { color: var(--warning); }
-        .alert-info { flex: 1; min-width: 0; }
-        .alert-domain { font-weight: 600; font-size: 14px; white-space: nowrap; overflow: hidden; text-overflow: ellipsis; }
-        .alert-category { font-size: 12px; color: var(--text-2); margin-top: 2px; }
-        .table-wrap { overflow-x: auto; max-height: 900px; overflow-y: auto; }
-        table { width: 100%; border-collapse: collapse; font-size: 13px; table-layout: fixed; min-width: 1000px; }
-        table th:nth-child(1) { width: 10%; }
-        table th:nth-child(2) { width: 9%; }
-        table th:nth-child(3) { width: 6%; }
-        table th:nth-child(4) { width: 12%; }
-        table th:nth-child(5) { width: 18%; }
-        table th:nth-child(6) { width: 18%; }
-        table th:nth-child(7) { width: 6%; }
-        table th:nth-child(8) { width: 9%; }
-        table th:nth-child(9) { width: 9%; }
-        th { text-align: left; padding: 14px 16px; font-weight: 700; font-size: 11px; text-transform: uppercase; letter-spacing: 0.5px; color: var(--text); background: var(--surface-2); border-bottom: 3px solid var(--accent); white-space: nowrap; position: sticky; top: 0; }
-        th.sortable { cursor: pointer; user-select: none; transition: background 0.15s; }
-        th.sortable:hover { background: var(--border); }
-        th.sortable::after { content: ''; display: inline-block; width: 0; height: 0; margin-left: 6px; vertical-align: middle; border-left: 4px solid transparent; border-right: 4px solid transparent; border-top: 4px solid var(--text-3); opacity: 0.5; }
-        th.sortable.asc::after { border-top: none; border-bottom: 4px solid var(--accent); opacity: 1; }
-        th.sortable.desc::after { border-top: 4px solid var(--accent); opacity: 1; }
-        th:nth-last-child(-n+3), td:nth-last-child(-n+3) { text-align: center; }
-        td { padding: 14px 16px; border-bottom: 1px solid var(--border); vertical-align: top; line-height: 1.5; word-wrap: break-word; overflow-wrap: break-word; }
-        tr:hover td { background: var(--surface-2); }
-        .col-domain { font-weight: 500; color: var(--text); }
-        .status { display: inline-block; padding: 4px 8px; border-radius: 4px; font-size: 11px; font-weight: 500; font-family: 'JetBrains Mono', monospace; }
-        .status.success { background: var(--success-soft); color: var(--success); }
-        .status.error { background: var(--danger-soft); color: var(--danger); }
-        .status.warning { background: var(--warning-soft); color: var(--warning); }
-        .severity { display: inline-flex; align-items: center; padding: 4px 10px; border-radius: 4px; font-size: 11px; font-weight: 600; text-transform: uppercase; }
-        .severity.high { background: var(--danger-soft); color: var(--danger); }
-        .severity.medium { background: var(--warning-soft); color: var(--warning); }
-        .severity.low { background: var(--accent-soft); color: var(--accent); }
-        .severity.na { background: var(--surface-2); color: var(--text-3); }
-        .filter-bar { display: flex; gap: 16px; margin-bottom: 20px; flex-wrap: wrap; align-items: flex-end; }
-        .filter-group { display: flex; flex-direction: column; gap: 4px; }
-        .filter-group label { font-size: 11px; font-weight: 600; color: var(--text-3); text-transform: uppercase; letter-spacing: 0.3px; }
-        .filter-group input, .filter-group select { padding: 8px 12px; border: 1px solid var(--border); border-radius: 6px; font-size: 13px; font-family: inherit; background: var(--surface); color: var(--text); min-width: 160px; transition: border-color 0.15s; }
-        .filter-group input:focus, .filter-group select:focus { outline: none; border-color: var(--accent); }
-        .btn { display: inline-flex; align-items: center; gap: 6px; padding: 8px 16px; border-radius: 6px; font-size: 13px; font-weight: 500; font-family: inherit; cursor: pointer; transition: all 0.15s; border: none; }
-        .btn svg { width: 16px; height: 16px; }
-        .btn-reset { background: var(--surface); color: var(--text-2); border: 1px solid var(--border); padding: 8px 14px; }
-        .btn-reset:hover { background: var(--danger-soft); color: var(--danger); border-color: var(--danger); }
-        .section { scroll-margin-top: 20px; margin-bottom: 40px; }
-        .section-title { font-size: 18px; font-weight: 700; margin-bottom: 20px; padding-bottom: 12px; border-bottom: 3px solid var(--accent); display: flex; align-items: center; gap: 12px; }
-        code { font-family: 'JetBrains Mono', monospace; font-size: 12px; background: var(--surface-2); padding: 2px 6px; border-radius: 4px; white-space: nowrap; }
-        .reference-cell { text-align: center; }
-        .reference-btn { display: inline-flex; align-items: center; justify-content: center; width: 28px; height: 28px; background: var(--accent-soft); color: var(--accent); text-decoration: none; border-radius: 6px; border: 1px solid var(--border); transition: all 0.15s; }
-        .reference-btn:hover { background: var(--accent); color: white; border-color: var(--accent); }
-        .reference-btn svg { width: 14px; height: 14px; }
-        .finding-details { color: var(--text-2); font-size: 12px; line-height: 1.6; word-break: break-word; overflow-wrap: break-word; hyphens: auto; }
-        .resolution-text { color: var(--text-2); font-size: 12px; line-height: 1.6; word-break: break-word; overflow-wrap: break-word; hyphens: auto; }
-        @media (max-width: 1024px) { .layout { grid-template-columns: 1fr; } .sidebar { display: none; } .metrics { grid-template-columns: repeat(2, 1fr); } }
-        @media (max-width: 640px) { .metrics { grid-template-columns: 1fr; } .main { padding: 20px; } }
-        .page-footer { padding: 16px 40px; border-top: 1px solid var(--border); font-size: 10px; line-height: 1.6; color: var(--text-3); text-align: center; background: var(--surface); }
-        .page-footer a { color: var(--accent); text-decoration: none; }
-    </style>
-</head>
-<body>
-    <div class="layout">
-        <aside class="sidebar">
-            <div class="sidebar-header">
-                <h1>AI/ML Security</h1>
-                <p>Assessment Report</p>
-            </div>
-            <button class="theme-toggle" id="themeToggle" aria-label="Toggle dark mode">
-                <svg class="moon-icon" xmlns="http://www.w3.org/2000/svg" width="16" height="16" fill="currentColor" viewBox="0 0 16 16"><path d="M6 .278a.768.768 0 0 1 .08.858 7.208 7.208 0 0 0-.878 3.46c0 4.021 3.278 7.277 7.318 7.277.527 0 1.04-.055 1.533-.16a.787.787 0 0 1 .81.316.733.733 0 0 1-.031.893A8.349 8.349 0 0 1 8.344 16C3.734 16 0 12.286 0 7.71 0 4.266 2.114 1.312 5.124.06A.752.752 0 0 1 6 .278z"/></svg>
-                <svg class="sun-icon" xmlns="http://www.w3.org/2000/svg" width="16" height="16" fill="currentColor" viewBox="0 0 16 16"><path d="M8 11a3 3 0 1 1 0-6 3 3 0 0 1 0 6zm0 1a4 4 0 1 0 0-8 4 4 0 0 0 0 8zM8 0a.5.5 0 0 1 .5.5v2a.5.5 0 0 1-1 0v-2A.5.5 0 0 1 8 0zm0 13a.5.5 0 0 1 .5.5v2a.5.5 0 0 1-1 0v-2A.5.5 0 0 1 8 13zm8-5a.5.5 0 0 1-.5.5h-2a.5.5 0 0 1 0-1h2a.5.5 0 0 1 .5.5zM3 8a.5.5 0 0 1-.5.5h-2a.5.5 0 0 1 0-1h2A.5.5 0 0 1 3 8zm10.657-5.657a.5.5 0 0 1 0 .707l-1.414 1.415a.5.5 0 1 1-.707-.708l1.414-1.414a.5.5 0 0 1 .707 0zm-9.193 9.193a.5.5 0 0 1 0 .707L3.05 13.657a.5.5 0 0 1-.707-.707l1.414-1.414a.5.5 0 0 1 .707 0zm9.193 2.121a.5.5 0 0 1-.707 0l-1.414-1.414a.5.5 0 0 1 .707-.707l1.414 1.414a.5.5 0 0 1 0 .707zM4.464 4.465a.5.5 0 0 1-.707 0L2.343 3.05a.5.5 0 1 1 .707-.707l1.414 1.414a.5.5 0 0 1 0 .708z"/></svg>
-                <span class="theme-label">Dark Mode</span>
-            </button>
-            <nav class="nav-section">
-                <h3>Navigation</h3>
-                <a href="#overview" class="nav-item active">
-                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><rect x="3" y="3" width="7" height="7"/><rect x="14" y="3" width="7" height="7"/><rect x="3" y="14" width="7" height="7"/><rect x="14" y="14" width="7" height="7"/></svg>
-                    Overview
-                </a>
-                <a href="#findings" class="nav-item">
-                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M12 22s8-4 8-10V5l-8-3-8 3v7c0 6 8 10 8 10z"/></svg>
-                    Security Findings
-                    <span class="count">16</span>
-                </a>
-                <a href="#risk" class="nav-item">
-                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><polyline points="22 12 18 12 15 21 9 3 6 12 2 12"/></svg>
-                    Risk Distribution
-                </a>
-                <a href="#methodology" class="nav-item">
-                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><circle cx="12" cy="12" r="10"/><path d="M9.09 9a3 3 0 0 1 5.83 1c0 2-3 3-3 3"/><line x1="12" y1="17" x2="12.01" y2="17"/></svg>
-                    Methodology
-                </a>
-            </nav>
-            <nav class="nav-section">
-                <h3>By Service</h3>
-                <a href="#bedrock" class="nav-item">
-                    <span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"/></svg></span>
-                    Bedrock
-                    <span class="count">7</span>
-                </a>
-                <a href="#sagemaker" class="nav-item">
-                    <span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"/></svg></span>
-                    SageMaker
-                    <span class="count">5</span>
-                </a>
-                <a href="#agentcore" class="nav-item">
-                    <span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"/></svg></span>
-                    AgentCore
-                    <span class="count">4</span>
-                </a>
-            </nav>
-            <div class="sidebar-footer">
-                <p>Generated: June 06, 2026</p>
-                <p>Account: 123456789012</p>
-                <p style="margin-top: 8px;"><a href="https://github.com/aws-samples/sample-aiml-security-assessment">GitHub Repository</a></p>
-            </div>
-        </aside>
-        <main class="main">
-            <section id="overview" class="section">
-                <div class="page-header">
-                    <h2>Security Assessment Overview</h2>
-                    <div class="page-header-meta">
-                        <span><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><rect x="3" y="4" width="18" height="18" rx="2" ry="2"/><line x1="16" y1="2" x2="16" y2="6"/><line x1="8" y1="2" x2="8" y2="6"/><line x1="3" y1="10" x2="21" y2="10"/></svg>June 06, 2026 14:30:00 UTC</span>
-                        <span><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M20 21v-2a4 4 0 0 0-4-4H8a4 4 0 0 0-4 4v2"/><circle cx="12" cy="7" r="4"/></svg>Account: 123456789012 · 3 Regions</span>
-                    </div>
-                </div>
-                <div class="metrics">
-                    <div class="metric"><div class="metric-label">Security Checks</div><div class="metric-value">9</div><div class="metric-sub">Evaluated across 3 regions</div></div>
-                    <div class="metric"><div class="metric-label">Total Findings</div><div class="metric-value">16</div><div class="metric-sub">Across 3 regions</div></div>
-                    <div class="metric danger"><div class="metric-label">Actionable Findings</div><div class="metric-value">11</div><div class="metric-sub">High, Medium, and Low severity</div></div>
-                    <div class="metric danger"><div class="metric-label">High Severity</div><div class="metric-value">4/9</div><div class="metric-sub">44.4% passed · Immediate action required</div></div>
-                    <div class="metric warning"><div class="metric-label">Medium Severity</div><div class="metric-value">0/2</div><div class="metric-sub">0.0% passed · Should be addressed</div></div>
-                    <div class="metric highlight"><div class="metric-label">Low Severity</div><div class="metric-value">0/0</div><div class="metric-sub">0% passed · Best practices</div></div>
-                </div>
-                <div class="card"><div class="card-header"><h3>Priority Recommendations</h3></div><div class="card-body"><div class="alerts"><div class="alert-item critical">
-            <div class="alert-count">2</div>
-            <div class="alert-info">
-                <div class="alert-domain">Bedrock Full Access Roles</div>
-                <div class="alert-category">Bedrock</div>
-            </div>
-        </div><div class="alert-item critical">
-            <div class="alert-count">1</div>
-            <div class="alert-info">
-                <div class="alert-domain">Bedrock Logging Configuration</div>
-                <div class="alert-category">Bedrock</div>
-            </div>
-        </div><div class="alert-item critical">
-            <div class="alert-count">1</div>
-            <div class="alert-info">
-                <div class="alert-domain">SageMaker Direct Internet Access</div>
-                <div class="alert-category">SageMaker</div>
-            </div>
-        </div><div class="alert-item warning">
-            <div class="alert-count">1</div>
-            <div class="alert-info">
-                <div class="alert-domain">Bedrock Guardrails Check</div>
-                <div class="alert-category">Bedrock</div>
-            </div>
-        </div></div></div></div>
-                <div class="card">
-                    <div class="card-header"><h3>Severity Legend</h3><a href="#methodology" style="font-size: 12px; color: var(--accent); text-decoration: none;">View full methodology</a></div>
-                    <div class="card-body" style="padding: 0;">
-                        <table style="min-width: 100%; table-layout: fixed;">
-                            <thead><tr><th style="width: 12%;">Severity</th><th style="width: 44%;">Meaning</th><th style="width: 44%;">Recommended Action</th></tr></thead>
-                            <tbody>
-                                <tr><td style="text-align: center;"><span class="severity high">High</span></td><td class="finding-details">Direct security risk - IAM/access control gaps, missing audit trails, guardrail bypasses that could lead to unauthorized access or data exposure</td><td class="resolution-text">Remediate within <strong>7 days</strong></td></tr>
-                                <tr><td style="text-align: center;"><span class="severity medium">Medium</span></td><td class="finding-details">Defense-in-depth gaps - encryption, logging, or configuration issues that reduce security posture</td><td class="resolution-text">Remediate within <strong>30 days</strong></td></tr>
-                                <tr><td style="text-align: center;"><span class="severity low">Low</span></td><td class="finding-details">Best practice deviations - optimization opportunities that improve security hygiene</td><td class="resolution-text">Remediate within <strong>90 days</strong></td></tr>
-                                <tr><td style="text-align: center;"><span class="severity na">Informational</span></td><td class="finding-details">No resources found or advisory recommendations - check does not apply or suggests optional improvements</td><td class="resolution-text">No action required</td></tr>
-                            </tbody>
-                        </table>
-                    </div>
-                </div>
-            </section>
-            <section id="findings" class="section">
-                <div class="section-title"><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M12 22s8-4 8-10V5l-8-3-8 3v7c0 6 8 10 8 10z"/></svg>All Security Findings</div>
-                <div class="filter-bar">
-                    <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="searchInput"></div>
-                    
-                    <div class="filter-group"><label for="regionFilter">Region</label><select id="regionFilter" onchange="applyFilters()"><option value="">All Regions</option><option value="eu-central-1">eu-central-1</option><option value="us-east-1">us-east-1</option><option value="us-west-2">us-west-2</option></select></div>
-                    <div class="filter-group"><label>Service</label><select id="serviceFilter"><option value="">All Services</option><option value="bedrock">Bedrock</option><option value="sagemaker">SageMaker</option><option value="agentcore">AgentCore</option></select></div>
-                    <div class="filter-group"><label>Severity</label><select id="severityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
-                    <div class="filter-group"><label>Status</label><select id="statusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
-                    <button class="btn btn-reset" id="resetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
-                </div>
-                <div class="card"><div class="table-wrap"><table id="findingsTable"><thead><tr><th class="sortable" data-sort="account">Account ID</th><th class="sortable" data-sort="region">Region</th><th class="sortable" data-sort="checkId">Check ID</th><th class="sortable" data-sort="finding">Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th class="sortable" data-sort="severity">Severity</th><th class="sortable" data-sort="status">Status</th></tr></thead><tbody><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="123456789012" data-region="us-east-1">
-            <td><code>123456789012</code></td>
-            <td><code>us-east-1</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">Bedrock Full Access Roles</td>
-            <td class="finding-details">Found 2 roles with AmazonBedrockFullAccess policy attached: BedrockAdmin, MLEngineer</td>
-            <td class="resolution-text">Review and restrict to least privilege access.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="123456789012" data-region="us-east-1">
-            <td><code>123456789012</code></td>
-            <td><code>us-east-1</code></td>
-            <td><code>BR-05</code></td>
-            <td class="col-domain">Bedrock Guardrails Check</td>
-            <td class="finding-details">Amazon Bedrock Guardrails are properly configured with 3 guardrails</td>
-            <td class="resolution-text">No action required.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="123456789012" data-region="us-east-1">
-            <td><code>123456789012</code></td>
-            <td><code>us-east-1</code></td>
-            <td><code>BR-04</code></td>
-            <td class="col-domain">Bedrock Logging Configuration</td>
-            <td class="finding-details">Model invocation logging is enabled</td>
-            <td class="resolution-text">No action required.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="123456789012" data-region="us-west-2">
-            <td><code>123456789012</code></td>
-            <td><code>us-west-2</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">Bedrock Full Access Roles</td>
-            <td class="finding-details">Found 2 roles with AmazonBedrockFullAccess policy attached</td>
-            <td class="resolution-text">Review and restrict to least privilege access.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="123456789012" data-region="us-west-2">
-            <td><code>123456789012</code></td>
-            <td><code>us-west-2</code></td>
-            <td><code>BR-05</code></td>
-            <td class="col-domain">Bedrock Guardrails Check</td>
-            <td class="finding-details">No Bedrock Guardrails configured in this region.</td>
-            <td class="resolution-text">Configure Bedrock Guardrails.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="123456789012" data-region="us-west-2">
-            <td><code>123456789012</code></td>
-            <td><code>us-west-2</code></td>
-            <td><code>BR-04</code></td>
-            <td class="col-domain">Bedrock Logging Configuration</td>
-            <td class="finding-details">Model invocation logging is not enabled</td>
-            <td class="resolution-text">Enable model invocation logging.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="123456789012" data-region="eu-central-1">
-            <td><code>123456789012</code></td>
-            <td><code>eu-central-1</code></td>
-            <td><code>BR-00</code></td>
-            <td class="col-domain">Bedrock Service Availability</td>
-            <td class="finding-details">Amazon Bedrock is not available in region eu-central-1.</td>
-            <td class="resolution-text">No action required.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/bedrock-regions.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="123456789012" data-region="us-east-1">
-            <td><code>123456789012</code></td>
-            <td><code>us-east-1</code></td>
-            <td><code>SM-01</code></td>
-            <td class="col-domain">SageMaker Direct Internet Access</td>
-            <td class="finding-details">Found 1 notebook with direct internet access: ml-notebook-dev</td>
-            <td class="resolution-text">Disable direct internet access.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="123456789012" data-region="us-east-1">
-            <td><code>123456789012</code></td>
-            <td><code>us-east-1</code></td>
-            <td><code>SM-03</code></td>
-            <td class="col-domain">SageMaker Data Encryption</td>
-            <td class="finding-details">All training jobs use KMS encryption</td>
-            <td class="resolution-text">No action required.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/encryption-at-rest.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="passed" data-account="123456789012" data-region="us-west-2">
-            <td><code>123456789012</code></td>
-            <td><code>us-west-2</code></td>
-            <td><code>SM-01</code></td>
-            <td class="col-domain">SageMaker Direct Internet Access</td>
-            <td class="finding-details">No notebook instances found</td>
-            <td class="resolution-text">No action required.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="123456789012" data-region="us-west-2">
-            <td><code>123456789012</code></td>
-            <td><code>us-west-2</code></td>
-            <td><code>SM-03</code></td>
-            <td class="col-domain">SageMaker Data Encryption</td>
-            <td class="finding-details">Found 2 training jobs without KMS encryption</td>
-            <td class="resolution-text">Configure KMS keys.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/encryption-at-rest.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="passed" data-account="123456789012" data-region="eu-central-1">
-            <td><code>123456789012</code></td>
-            <td><code>eu-central-1</code></td>
-            <td><code>SM-01</code></td>
-            <td class="col-domain">SageMaker Direct Internet Access</td>
-            <td class="finding-details">No notebook instances found</td>
-            <td class="resolution-text">No action required.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="123456789012" data-region="us-east-1">
-            <td><code>123456789012</code></td>
-            <td><code>us-east-1</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore VPC Configuration</td>
-            <td class="finding-details">All runtimes deployed in private subnets</td>
-            <td class="resolution-text">No action required.</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="123456789012" data-region="us-east-1">
-            <td><code>123456789012</code></td>
-            <td><code>us-east-1</code></td>
-            <td><code>AC-03</code></td>
-            <td class="col-domain">AgentCore Encryption</td>
-            <td class="finding-details">ECR repositories lack KMS encryption</td>
-            <td class="resolution-text">Enable KMS encryption for ECR.</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="123456789012" data-region="us-west-2">
-            <td><code>123456789012</code></td>
-            <td><code>us-west-2</code></td>
-            <td><code>AC-00</code></td>
-            <td class="col-domain">AgentCore Service Availability</td>
-            <td class="finding-details">AgentCore not available in us-west-2.</td>
-            <td class="resolution-text">No action required.</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="123456789012" data-region="eu-central-1">
-            <td><code>123456789012</code></td>
-            <td><code>eu-central-1</code></td>
-            <td><code>AC-00</code></td>
-            <td class="col-domain">AgentCore Service Availability</td>
-            <td class="finding-details">AgentCore not available in eu-central-1.</td>
-            <td class="resolution-text">No action required.</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr></tbody></table></div></div>
-            </section>
-            <section id="risk" class="section">
-                <div class="section-title"><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><polyline points="22 12 18 12 15 21 9 3 6 12 2 12"/></svg>Risk Distribution</div>
-                <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-bottom: 12px; text-transform: uppercase; letter-spacing: 0.5px;">Pass Rate by Severity</h4>
-                <div class="metrics" style="margin-bottom: 32px;">
-                    <div class="metric danger"><div class="metric-label"><span class="severity high" style="padding: 2px 6px; font-size: 10px;">HIGH</span></div><div class="metric-value">44.4%</div><div class="metric-sub">4 of 9 checks passed</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 44.4%; height: 100%; background: var(--danger);"></div></div></div>
-                    <div class="metric warning"><div class="metric-label"><span class="severity medium" style="padding: 2px 6px; font-size: 10px;">MEDIUM</span></div><div class="metric-value">0.0%</div><div class="metric-sub">0 of 2 checks passed</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 0.0%; height: 100%; background: var(--warning);"></div></div></div>
-                    <div class="metric" style="border-color: var(--accent);"><div class="metric-label"><span class="severity low" style="padding: 2px 6px; font-size: 10px;">LOW</span></div><div class="metric-value" style="color: var(--accent);">0%</div><div class="metric-sub">0 of 0 checks passed</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 0%; height: 100%; background: var(--accent);"></div></div></div>
-                    <div class="metric"><div class="metric-label">Overall</div><div class="metric-value">36.4%</div><div class="metric-sub">4 of 11 actionable checks</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 36.4%; height: 100%; background: var(--text-3);"></div></div></div>
-                </div>
-                
-                <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-bottom: 12px; text-transform: uppercase; letter-spacing: 0.5px;">Risk by Region</h4>
-                <div class="metrics" style="margin-bottom: 32px;"><div class="metric " style="border-left: 3px solid var(--success);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">eu-central-1</div><div class="metric-value">0</div><div class="metric-sub"><span style="color: var(--danger);">0 High</span> · <span style="color: var(--warning);">0 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div><div class="metric danger" style="border-left: 3px solid var(--danger);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">us-east-1</div><div class="metric-value">3</div><div class="metric-sub"><span style="color: var(--danger);">2 High</span> · <span style="color: var(--warning);">1 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div><div class="metric danger" style="border-left: 3px solid var(--danger);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">us-west-2</div><div class="metric-value">4</div><div class="metric-sub"><span style="color: var(--danger);">3 High</span> · <span style="color: var(--warning);">1 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div></div>
-                <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-bottom: 12px; text-transform: uppercase; letter-spacing: 0.5px;">Findings by Service</h4>
-                <div class="metrics">
-                    <div class="metric"><div class="metric-label"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"/></svg></span> Bedrock</div><div class="metric-value">7</div><div class="metric-sub">4 Failed · 2 Passed</div></div>
-                    <div class="metric"><div class="metric-label"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"/></svg></span> SageMaker</div><div class="metric-value">5</div><div class="metric-sub">2 Failed · 3 Passed</div></div>
-                    <div class="metric"><div class="metric-label"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"/></svg></span> AgentCore</div><div class="metric-value">4</div><div class="metric-sub">1 Failed · 1 Passed</div></div>
-                </div>
-            </section>
-            <section id="bedrock" class="section">
-                <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"/></svg></span>Amazon Bedrock Findings</div>
-                <div class="filter-bar">
-                    <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="bedrockSearchInput"></div>
-                    
-                    <div class="filter-group"><label for="bedrockRegionFilter">Region</label><select id="bedrockRegionFilter"><option value="">All Regions</option><option value="eu-central-1">eu-central-1</option><option value="us-east-1">us-east-1</option><option value="us-west-2">us-west-2</option></select></div>
-                    <div class="filter-group"><label>Severity</label><select id="bedrockSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
-                    <div class="filter-group"><label>Status</label><select id="bedrockStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
-                    <button class="btn btn-reset" id="bedrockResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
-                </div>
-                <div class="card"><div class="table-wrap"><table id="bedrockTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="123456789012" data-region="us-east-1">
-            <td><code>123456789012</code></td>
-            <td><code>us-east-1</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">Bedrock Full Access Roles</td>
-            <td class="finding-details">Found 2 roles with AmazonBedrockFullAccess policy attached: BedrockAdmin, MLEngineer</td>
-            <td class="resolution-text">Review and restrict to least privilege access.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="123456789012" data-region="us-east-1">
-            <td><code>123456789012</code></td>
-            <td><code>us-east-1</code></td>
-            <td><code>BR-05</code></td>
-            <td class="col-domain">Bedrock Guardrails Check</td>
-            <td class="finding-details">Amazon Bedrock Guardrails are properly configured with 3 guardrails</td>
-            <td class="resolution-text">No action required.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="123456789012" data-region="us-east-1">
-            <td><code>123456789012</code></td>
-            <td><code>us-east-1</code></td>
-            <td><code>BR-04</code></td>
-            <td class="col-domain">Bedrock Logging Configuration</td>
-            <td class="finding-details">Model invocation logging is enabled</td>
-            <td class="resolution-text">No action required.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="123456789012" data-region="us-west-2">
-            <td><code>123456789012</code></td>
-            <td><code>us-west-2</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">Bedrock Full Access Roles</td>
-            <td class="finding-details">Found 2 roles with AmazonBedrockFullAccess policy attached</td>
-            <td class="resolution-text">Review and restrict to least privilege access.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="123456789012" data-region="us-west-2">
-            <td><code>123456789012</code></td>
-            <td><code>us-west-2</code></td>
-            <td><code>BR-05</code></td>
-            <td class="col-domain">Bedrock Guardrails Check</td>
-            <td class="finding-details">No Bedrock Guardrails configured in this region.</td>
-            <td class="resolution-text">Configure Bedrock Guardrails.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="123456789012" data-region="us-west-2">
-            <td><code>123456789012</code></td>
-            <td><code>us-west-2</code></td>
-            <td><code>BR-04</code></td>
-            <td class="col-domain">Bedrock Logging Configuration</td>
-            <td class="finding-details">Model invocation logging is not enabled</td>
-            <td class="resolution-text">Enable model invocation logging.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="123456789012" data-region="eu-central-1">
-            <td><code>123456789012</code></td>
-            <td><code>eu-central-1</code></td>
-            <td><code>BR-00</code></td>
-            <td class="col-domain">Bedrock Service Availability</td>
-            <td class="finding-details">Amazon Bedrock is not available in region eu-central-1.</td>
-            <td class="resolution-text">No action required.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/bedrock-regions.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr></tbody></table></div></div>
-            </section>
-            <section id="sagemaker" class="section">
-                <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"/></svg></span>Amazon SageMaker Findings</div>
-                <div class="filter-bar">
-                    <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="sagemakerSearchInput"></div>
-                    
-                    <div class="filter-group"><label for="sagemakerRegionFilter">Region</label><select id="sagemakerRegionFilter"><option value="">All Regions</option><option value="eu-central-1">eu-central-1</option><option value="us-east-1">us-east-1</option><option value="us-west-2">us-west-2</option></select></div>
-                    <div class="filter-group"><label>Severity</label><select id="sagemakerSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
-                    <div class="filter-group"><label>Status</label><select id="sagemakerStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
-                    <button class="btn btn-reset" id="sagemakerResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
-                </div>
-                <div class="card"><div class="table-wrap"><table id="sagemakerTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="123456789012" data-region="us-east-1">
-            <td><code>123456789012</code></td>
-            <td><code>us-east-1</code></td>
-            <td><code>SM-01</code></td>
-            <td class="col-domain">SageMaker Direct Internet Access</td>
-            <td class="finding-details">Found 1 notebook with direct internet access: ml-notebook-dev</td>
-            <td class="resolution-text">Disable direct internet access.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="123456789012" data-region="us-east-1">
-            <td><code>123456789012</code></td>
-            <td><code>us-east-1</code></td>
-            <td><code>SM-03</code></td>
-            <td class="col-domain">SageMaker Data Encryption</td>
-            <td class="finding-details">All training jobs use KMS encryption</td>
-            <td class="resolution-text">No action required.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/encryption-at-rest.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="passed" data-account="123456789012" data-region="us-west-2">
-            <td><code>123456789012</code></td>
-            <td><code>us-west-2</code></td>
-            <td><code>SM-01</code></td>
-            <td class="col-domain">SageMaker Direct Internet Access</td>
-            <td class="finding-details">No notebook instances found</td>
-            <td class="resolution-text">No action required.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="123456789012" data-region="us-west-2">
-            <td><code>123456789012</code></td>
-            <td><code>us-west-2</code></td>
-            <td><code>SM-03</code></td>
-            <td class="col-domain">SageMaker Data Encryption</td>
-            <td class="finding-details">Found 2 training jobs without KMS encryption</td>
-            <td class="resolution-text">Configure KMS keys.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/encryption-at-rest.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="passed" data-account="123456789012" data-region="eu-central-1">
-            <td><code>123456789012</code></td>
-            <td><code>eu-central-1</code></td>
-            <td><code>SM-01</code></td>
-            <td class="col-domain">SageMaker Direct Internet Access</td>
-            <td class="finding-details">No notebook instances found</td>
-            <td class="resolution-text">No action required.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr></tbody></table></div></div>
-            </section>
-            <section id="agentcore" class="section">
-                <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"/></svg></span>Amazon Bedrock AgentCore Findings</div>
-                <div class="filter-bar">
-                    <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="agentcoreSearchInput"></div>
-                    
-                    <div class="filter-group"><label for="agentcoreRegionFilter">Region</label><select id="agentcoreRegionFilter"><option value="">All Regions</option><option value="eu-central-1">eu-central-1</option><option value="us-east-1">us-east-1</option><option value="us-west-2">us-west-2</option></select></div>
-                    <div class="filter-group"><label>Severity</label><select id="agentcoreSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
-                    <div class="filter-group"><label>Status</label><select id="agentcoreStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
-                    <button class="btn btn-reset" id="agentcoreResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
-                </div>
-                <div class="card"><div class="table-wrap"><table id="agentcoreTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="agentcore" data-severity="high" data-status="passed" data-account="123456789012" data-region="us-east-1">
-            <td><code>123456789012</code></td>
-            <td><code>us-east-1</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore VPC Configuration</td>
-            <td class="finding-details">All runtimes deployed in private subnets</td>
-            <td class="resolution-text">No action required.</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="123456789012" data-region="us-east-1">
-            <td><code>123456789012</code></td>
-            <td><code>us-east-1</code></td>
-            <td><code>AC-03</code></td>
-            <td class="col-domain">AgentCore Encryption</td>
-            <td class="finding-details">ECR repositories lack KMS encryption</td>
-            <td class="resolution-text">Enable KMS encryption for ECR.</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="123456789012" data-region="us-west-2">
-            <td><code>123456789012</code></td>
-            <td><code>us-west-2</code></td>
-            <td><code>AC-00</code></td>
-            <td class="col-domain">AgentCore Service Availability</td>
-            <td class="finding-details">AgentCore not available in us-west-2.</td>
-            <td class="resolution-text">No action required.</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="123456789012" data-region="eu-central-1">
-            <td><code>123456789012</code></td>
-            <td><code>eu-central-1</code></td>
-            <td><code>AC-00</code></td>
-            <td class="col-domain">AgentCore Service Availability</td>
-            <td class="finding-details">AgentCore not available in eu-central-1.</td>
-            <td class="resolution-text">No action required.</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr></tbody></table></div></div>
-            </section>
-            <section id="methodology" class="section">
-                <div class="section-title"><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><circle cx="12" cy="12" r="10"/><path d="M9.09 9a3 3 0 0 1 5.83 1c0 2-3 3-3 3"/><line x1="12" y1="17" x2="12.01" y2="17"/></svg>Assessment Methodology</div>
-                <div class="card"><div class="card-header" style="padding: 12px 16px;"><h3 style="font-size: 14px;">Severity Levels &amp; Status Values</h3></div><div class="card-body" style="padding: 12px 16px;"><table style="width: 100%; font-size: 12px;"><tbody><tr><td style="padding: 4px 12px 4px 0; width: 100px;"><span class="severity high">High</span></td><td style="padding: 4px 0; color: var(--text-2); width: 45%;">Direct security risk</td><td style="padding: 4px 12px 4px 24px; width: 60px;"><span class="status error">Failed</span></td><td style="padding: 4px 0; color: var(--text-2);">Remediation needed</td></tr><tr><td style="padding: 4px 12px 4px 0;"><span class="severity medium">Medium</span></td><td style="padding: 4px 0; color: var(--text-2);">Defense-in-depth gap</td><td style="padding: 4px 12px 4px 24px;"><span class="status success">Passed</span></td><td style="padding: 4px 0; color: var(--text-2);">Meets requirements</td></tr><tr><td style="padding: 4px 12px 4px 0;"><span class="severity low">Low</span></td><td style="padding: 4px 0; color: var(--text-2);">Best practice</td><td style="padding: 4px 12px 4px 24px;"><span class="status warning">N/A</span></td><td style="padding: 4px 0; color: var(--text-2);">Not applicable</td></tr><tr><td style="padding: 4px 12px 4px 0;"><span class="severity na">Informational</span></td><td style="padding: 4px 0; color: var(--text-2);">No action required</td><td></td><td></td></tr></tbody></table></div></div>
-                <div class="card"><div class="card-header" style="padding: 12px 16px;"><h3 style="font-size: 14px;">Remediation Guidance</h3></div><div class="card-body" style="padding: 12px 16px;"><table style="width: 100%; font-size: 12px;"><tbody><tr><td style="padding: 4px 12px 4px 0; width: 80px;"><span class="severity high">High</span></td><td style="padding: 4px 0; color: var(--text-2); width: 60px;">7 days</td><td style="padding: 4px 0; color: var(--text-2);">Address immediately; block deployment if unresolved</td></tr><tr><td style="padding: 4px 12px 4px 0;"><span class="severity medium">Medium</span></td><td style="padding: 4px 0; color: var(--text-2);">30 days</td><td style="padding: 4px 0; color: var(--text-2);">Schedule in next sprint; may require change window</td></tr><tr><td style="padding: 4px 12px 4px 0;"><span class="severity low">Low</span></td><td style="padding: 4px 0; color: var(--text-2);">90 days</td><td style="padding: 4px 0; color: var(--text-2);">Include in backlog; address during regular maintenance</td></tr></tbody></table></div></div>
-                <div class="card"><div class="card-header" style="padding: 12px 16px;"><h3 style="font-size: 14px;">Assessment Notes</h3></div><div class="card-body" style="padding: 12px 16px; font-size: 12px; color: var(--text-2); line-height: 1.6;"><strong style="color: var(--text);">Point-in-time:</strong> Security posture changes as resources are modified. <strong style="color: var(--text);">Scope limited:</strong> Passed checks verify tested controls only. <strong style="color: var(--text);">Context matters:</strong> Adjust severity for compliance requirements and environment type.</div></div>
-                <div class="card"><div class="card-header"><h3>Assessment Scope</h3></div><div class="card-body"><div style="display: flex; gap: 12px; flex-wrap: wrap; margin-bottom: 12px;"><div style="display: flex; align-items: center; gap: 8px; padding: 8px 12px; background: var(--surface-2); border-radius: 6px;"><span class="service-icon" style="width: 20px; height: 20px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"/></svg></span><span style="font-size: 13px; font-weight: 500;">Amazon Bedrock</span></div><div style="display: flex; align-items: center; gap: 8px; padding: 8px 12px; background: var(--surface-2); border-radius: 6px;"><span class="service-icon" style="width: 20px; height: 20px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"/></svg></span><span style="font-size: 13px; font-weight: 500;">Amazon SageMaker</span></div><div style="display: flex; align-items: center; gap: 8px; padding: 8px 12px; background: var(--surface-2); border-radius: 6px;"><span class="service-icon" style="width: 20px; height: 20px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"/></svg></span><span style="font-size: 13px; font-weight: 500;">Amazon Bedrock AgentCore</span></div></div><p style="color: var(--text-3); font-size: 12px;">Based on AWS Well-Architected Framework (Generative AI Lens) and service-specific security documentation.</p></div></div>
-            </section>
-        </main>
-    </div>
-    <footer class="page-footer">Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. Licensed under MIT-0. This report is provided as-is for informational purposes only and does not constitute professional security advice, compliance certification, or audit evidence. You are responsible for validating findings and determining applicability to your environment. See the <a href="https://aws.amazon.com/agreement/">AWS Customer Agreement</a> for terms of use.</footer>
-    <script>
-        const themeToggle = document.getElementById('themeToggle');
-        const themeLabel = themeToggle.querySelector('.theme-label');
-        const html = document.documentElement;
-        const savedTheme = localStorage.getItem('theme') || 'light';
-        if (savedTheme === 'dark') { html.setAttribute('data-theme', 'dark'); themeLabel.textContent = 'Light Mode'; }
-        themeToggle.addEventListener('click', function() {
-            const currentTheme = html.getAttribute('data-theme');
-            if (currentTheme === 'dark') { html.removeAttribute('data-theme'); localStorage.setItem('theme', 'light'); themeLabel.textContent = 'Dark Mode'; }
-            else { html.setAttribute('data-theme', 'dark'); localStorage.setItem('theme', 'dark'); themeLabel.textContent = 'Light Mode'; }
-        });
-        document.querySelectorAll('.nav-item').forEach(item => {
-            item.addEventListener('click', function(e) {
-                e.preventDefault();
-                const targetId = this.getAttribute('href');
-                const targetSection = document.querySelector(targetId);
-                document.querySelectorAll('.nav-item').forEach(nav => nav.classList.remove('active'));
-                this.classList.add('active');
-                if (targetSection) { targetSection.scrollIntoView({ behavior: 'smooth' }); }
-            });
-        });
-        function applyFilters() {
-            const searchText = document.getElementById('searchInput').value.toLowerCase();
-            const accountFilter = document.getElementById('accountFilter')?.value.toLowerCase() || '';
-            const regionFilter = document.getElementById('regionFilter')?.value.toLowerCase() || '';
-            const serviceFilter = document.getElementById('serviceFilter').value.toLowerCase();
-            const severityFilter = document.getElementById('severityFilter').value.toLowerCase();
-            const statusFilter = document.getElementById('statusFilter').value.toLowerCase();
-            const rows = document.querySelectorAll('#findingsTable tbody tr');
-            rows.forEach(row => {
-                const rowText = row.textContent.toLowerCase();
-                const rowAccount = row.dataset.account || '';
-                const rowRegion = row.dataset.region || '';
-                const rowService = row.dataset.service || '';
-                const rowSeverity = row.dataset.severity || '';
-                const rowStatus = row.dataset.status || '';
-                let show = true;
-                if (searchText && !rowText.includes(searchText)) show = false;
-                if (accountFilter && rowAccount !== accountFilter) show = false;
-                if (regionFilter && rowRegion.toLowerCase() !== regionFilter) show = false;
-                if (serviceFilter && rowService !== serviceFilter) show = false;
-                if (severityFilter && rowSeverity !== severityFilter) show = false;
-                if (statusFilter && rowStatus !== statusFilter) show = false;
-                row.style.display = show ? '' : 'none';
-            });
-        }
-        document.getElementById('resetFilters').addEventListener('click', function() {
-            document.getElementById('searchInput').value = '';
-            if (document.getElementById('accountFilter')) document.getElementById('accountFilter').value = '';
-            if (document.getElementById('regionFilter')) document.getElementById('regionFilter').value = '';
-            document.getElementById('serviceFilter').value = '';
-            document.getElementById('severityFilter').value = '';
-            document.getElementById('statusFilter').value = '';
-            applyFilters();
-        });
-        document.getElementById('searchInput').addEventListener('input', applyFilters);
-        if (document.getElementById('accountFilter')) document.getElementById('accountFilter').addEventListener('change', applyFilters);
-        if (document.getElementById('regionFilter')) document.getElementById('regionFilter').addEventListener('change', applyFilters);
-        document.getElementById('serviceFilter').addEventListener('change', applyFilters);
-        document.getElementById('severityFilter').addEventListener('change', applyFilters);
-        document.getElementById('statusFilter').addEventListener('change', applyFilters);
-        window.addEventListener('scroll', () => {
-            const sections = document.querySelectorAll('.section');
-            let current = '';
-            sections.forEach(section => {
-                const sectionTop = section.offsetTop;
-                if (window.pageYOffset >= sectionTop - 100) { current = section.getAttribute('id'); }
-            });
-            document.querySelectorAll('.nav-item').forEach(item => {
-                item.classList.remove('active');
-                if (item.getAttribute('href') === '#' + current) { item.classList.add('active'); }
-            });
-        });
-        const severityOrder = { 'high': 0, 'medium': 1, 'low': 2, 'na': 3 };
-        const statusOrder = { 'failed': 0, 'passed': 1 };
-        let currentSort = { column: null, direction: 'asc' };
-        document.querySelectorAll('#findingsTable th.sortable').forEach(th => {
-            th.addEventListener('click', function() {
-                const sortKey = this.dataset.sort;
-                const tbody = document.querySelector('#findingsTable tbody');
-                const rows = Array.from(tbody.querySelectorAll('tr'));
-                if (currentSort.column === sortKey) {
-                    currentSort.direction = currentSort.direction === 'asc' ? 'desc' : 'asc';
-                } else {
-                    currentSort.column = sortKey;
-                    currentSort.direction = 'asc';
-                }
-                document.querySelectorAll('#findingsTable th.sortable').forEach(h => {
-                    h.classList.remove('asc', 'desc');
-                });
-                this.classList.add(currentSort.direction);
-                rows.sort((a, b) => {
-                    let aVal, bVal;
-                    switch (sortKey) {
-                        case 'account':
-                            aVal = a.dataset.account || '';
-                            bVal = b.dataset.account || '';
-                            break;
-                        case 'region':
-                            aVal = a.dataset.region || '';
-                            bVal = b.dataset.region || '';
-                            break;
-                        case 'checkId':
-                            aVal = a.querySelector('td:nth-child(3) code')?.textContent || '';
-                            bVal = b.querySelector('td:nth-child(3) code')?.textContent || '';
-                            break;
-                        case 'finding':
-                            aVal = a.querySelector('.col-domain')?.textContent.toLowerCase() || '';
-                            bVal = b.querySelector('.col-domain')?.textContent.toLowerCase() || '';
-                            break;
-                        case 'severity':
-                            aVal = severityOrder[a.dataset.severity] ?? 99;
-                            bVal = severityOrder[b.dataset.severity] ?? 99;
-                            break;
-                        case 'status':
-                            aVal = statusOrder[a.dataset.status] ?? 99;
-                            bVal = statusOrder[b.dataset.status] ?? 99;
-                            break;
-                    }
-                    if (aVal < bVal) return currentSort.direction === 'asc' ? -1 : 1;
-                    if (aVal > bVal) return currentSort.direction === 'asc' ? 1 : -1;
-                    return 0;
-                });
-                rows.forEach(row => tbody.appendChild(row));
-            });
-        });
-        // Service-specific filter functions
-        function createServiceFilter(tableId, searchId, accountId, regionId, severityId, statusId, resetId) {
-            const table = document.getElementById(tableId);
-            if (!table) return;
-            const searchInput = document.getElementById(searchId);
-            const accountFilter = document.getElementById(accountId);
-            const regionFilter = document.getElementById(regionId);
-            const severityFilter = document.getElementById(severityId);
-            const statusFilter = document.getElementById(statusId);
-            const resetBtn = document.getElementById(resetId);
-            function applyServiceFilters() {
-                const searchText = searchInput?.value.toLowerCase() || '';
-                const accountValue = accountFilter?.value.toLowerCase() || '';
-                const regionValue = regionFilter?.value.toLowerCase() || '';
-                const severityValue = severityFilter?.value.toLowerCase() || '';
-                const statusValue = statusFilter?.value.toLowerCase() || '';
-                const rows = table.querySelectorAll('tbody tr');
-                rows.forEach(row => {
-                    const rowText = row.textContent.toLowerCase();
-                    const rowAccount = row.dataset.account || '';
-                    const rowRegion = row.dataset.region || '';
-                    const rowSeverity = row.dataset.severity || '';
-                    const rowStatus = row.dataset.status || '';
-                    let show = true;
-                    if (searchText && !rowText.includes(searchText)) show = false;
-                    if (accountValue && rowAccount !== accountValue) show = false;
-                    if (regionValue && rowRegion.toLowerCase() !== regionValue) show = false;
-                    if (severityValue && rowSeverity !== severityValue) show = false;
-                    if (statusValue && rowStatus !== statusValue) show = false;
-                    row.style.display = show ? '' : 'none';
-                });
-            }
-            searchInput?.addEventListener('input', applyServiceFilters);
-            accountFilter?.addEventListener('change', applyServiceFilters);
-            regionFilter?.addEventListener('change', applyServiceFilters);
-            severityFilter?.addEventListener('change', applyServiceFilters);
-            statusFilter?.addEventListener('change', applyServiceFilters);
-            resetBtn?.addEventListener('click', function() {
-                if (searchInput) searchInput.value = '';
-                if (accountFilter) accountFilter.value = '';
-                if (regionFilter) regionFilter.value = '';
-                if (severityFilter) severityFilter.value = '';
-                if (statusFilter) statusFilter.value = '';
-                applyServiceFilters();
-            });
-        }
-        createServiceFilter('bedrockTable', 'bedrockSearchInput', 'bedrockAccountFilter', 'bedrockRegionFilter', 'bedrockSeverityFilter', 'bedrockStatusFilter', 'bedrockResetFilters');
-        createServiceFilter('sagemakerTable', 'sagemakerSearchInput', 'sagemakerAccountFilter', 'sagemakerRegionFilter', 'sagemakerSeverityFilter', 'sagemakerStatusFilter', 'sagemakerResetFilters');
-        createServiceFilter('agentcoreTable', 'agentcoreSearchInput', 'agentcoreAccountFilter', 'agentcoreRegionFilter', 'agentcoreSeverityFilter', 'agentcoreStatusFilter', 'agentcoreResetFilters');
-
-        // Apply initial filters for main table
-        applyFilters();
-    </script>
-</body>
-</html>
\ No newline at end of file
diff --git a/sample-reports/security_assessment_single_account.html b/sample-reports/security_assessment_single_account.html
index baa32cf..8a65452 100644
--- a/sample-reports/security_assessment_single_account.html
+++ b/sample-reports/security_assessment_single_account.html
@@ -1,9 +1,10 @@
 <!DOCTYPE html>
-<!-- saved from url=(1850)https://aiml-single-account-test-assessmentbucket-uk4fmlzgzylt.s3.us-east-1.amazonaws.com/111111111111/security_assessment_20260507_151809_6af2c628-3919-4b58-adfb-7df06cbe6f53.html?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Content-Sha256=UNSIGNED-PAYLOAD&X-Amz-Credential=AKIAIOSFODNN7EXAMPLE%2F20260507%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20260507T151859Z&X-Amz-Expires=300&X-Amz-Security-Token=IQoJb3JpZ2luX2VjEPD%2F%2F%2F%2F%2F%2F%2F%2F%2F%2FwEaCXVzLWVhc3QtMSJHMEUCIQDaXf1gCehV1nDfmdhX1kA%2B92%2BxO6nnALG%2B71ri89152QIgfye2xurzWMC6Yw%2BP4%2B%2FJBrc0xf2LN1OMAuk9sBN5QGcqgwQIuP%2F%2F%2F%2F%2F%2F%2F%2F%2F%2FARABGgw5MTQ3ODc0MzE3ODgiDKc8AEd0ITegsME2wirXAxLtYCgjfoNDSePq0WgwXF5nesY2GxBmHdD498HSuCJs20JSyYodXTTykWFSY%2FGTRSUBrqZ%2B9XPGFOYtX2zHj34sSFLztAFHkD2HWCXz%2BcK%2FtV3KkHDfPfQ3hojXrfUeSmViiqgyXQgGE1AJdlog8DvKHxxfeq5WWIfqlNvMjdgL11qV90xFtxLYTLP0G1W9AdMTmomPrj4cLN%2B4q5tSvFBM5ajNVSMVHZ76h1TzgaTqr0Rd1gwwfwyKB%2BYExzYXwdU30kZfgsDxpSYATqAgfWfChvOvGOVDQ%2F%2BPIHCd9t4bdUPVVem1ppkx2wTuQMZIJv25J7GY9NDiKx8caQ7GaP2kYN4N0JZM%2Bk7jIzRHiEGaqSO9cyeH3l1JfSJJmu5%2BBzLqkK7f20i8urxdZdfVU%2BOk51oL6vOuJuU6a0t2fx0ILgHetPxBIqiumcWszAo2ZvqOKUrzbpAiQ9HEvBuVGABLI%2BDrTfjddEuJygkHdmMw59bH0F78RqFhI9oKbO%2FjeSaQ7XgzZCsCJxGJwoceyg4qmxozOsTJOvRj2SXkaLfiaEhgpaOk1pX3rjcu7tqLbUfUBDt6zVcE2raL%2F8gshyuVNyvho%2BcYgL9J%2BgXS8FCTP3vzH0OxeDD3r%2FLPBjqHAisxdfwrlv3C%2BgkIGUH%2BrJmZIlGPDE0oZRm40RkhyAHGAergJYI4e%2F0ay1Vzl3utS5OuCP51mHmQCacyfsmLy%2BnU8of1Rav3Vx3YCZ2mjZjq%2FKb%2BqlaG%2FXM%2FOWX8fSuWzrAoIBq%2FeyFU0ieCrTgZVxaEpcaP0BMaNCAb1I6mm0haica345rXw5segY5NYNMp%2FQEQBOAquoI6Nf6HUpJTxnvfgcAgcyDtoFk4OuJT4ubzg9oiEir7uMnLfHqF5KlwIY8J%2FmBncCTmHLlp6J9TrQGtPYj%2F52%2F7dRnBu55sJvneZmVKkB0xxzMsMe2gBXidj8jx9WYngVrY3WwyydysxRfAnkV5o48j&X-Amz-Signature=9661aaf36a271f4163a0ac04ea92777d87d221b23ecdb48e731e2ab823a30ce1&X-Amz-SignedHeaders=host&response-content-disposition=inline -->
-<html lang="en"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
-    
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
     <meta name="viewport" content="width=device-width, initial-scale=1.0">
     <title>AI/ML Security Assessment Report</title>
+    <link href="https://fonts.googleapis.com/css2?family=DM+Sans:wght@400;500;600;700&family=JetBrains+Mono:wght@400;500&display=swap" rel="stylesheet">
     <style>
         :root {
             --bg: #f8fafc;
@@ -65,6 +66,11 @@
         .section-title .service-icon svg { border-radius: 8px; }
         .nav-item .count { margin-left: auto; font-size: 12px; font-weight: 600; background: var(--surface-2); padding: 2px 8px; border-radius: 10px; }
         .nav-item.active .count { background: var(--accent); color: #fff; }
+        .nav-section.industry-nav { border-top: 1px solid var(--border); padding-top: 16px; margin-top: -8px; }
+        .industry-nav .nav-item { background: var(--accent-soft); color: var(--text); box-shadow: inset 3px 0 0 var(--accent); }
+        .industry-nav .nav-item:hover { background: var(--accent-soft); color: var(--accent); }
+        .industry-nav .nav-item.active { background: var(--accent-soft); color: var(--accent); }
+        .industry-nav .nav-item .count { background: var(--accent); color: #fff; }
         .sidebar-footer { margin-top: auto; padding: 16px 20px; border-top: 1px solid var(--border); font-size: 12px; color: var(--text-3); }
         .sidebar-footer a { color: var(--accent); text-decoration: none; }
         .main { padding: 32px 40px; max-width: 1400px; }
@@ -81,6 +87,11 @@
         .metric.highlight .metric-value { color: var(--success); }
         .metric.danger .metric-value { color: var(--danger); }
         .metric.warning .metric-value { color: var(--warning); }
+        .scope-industry { margin-top: 12px; padding-top: 12px; border-top: 1px solid var(--border); }
+        .scope-industry-label { font-size: 11px; font-weight: 600; color: var(--text-3); text-transform: uppercase; letter-spacing: 0.5px; margin-bottom: 8px; }
+        .scope-chip-row { display: flex; gap: 12px; flex-wrap: wrap; }
+        .scope-chip { display: flex; align-items: center; gap: 8px; padding: 8px 12px; background: var(--surface-2); border-radius: 6px; }
+        .scope-chip.industry-chip { background: var(--accent-soft); border: 1px solid var(--accent); }
         .card { background: var(--surface); border: 2px solid var(--border); border-radius: 12px; margin-bottom: 24px; box-shadow: 0 1px 3px rgba(0,0,0,0.08); }
         .card-header { padding: 16px 20px; border-bottom: 2px solid var(--border); display: flex; justify-content: space-between; align-items: center; background: var(--surface-2); }
         .card-header h3 { font-size: 15px; font-weight: 600; display: flex; align-items: center; gap: 10px; }
@@ -97,15 +108,16 @@
         .alert-domain { font-weight: 600; font-size: 14px; white-space: nowrap; overflow: hidden; text-overflow: ellipsis; }
         .alert-category { font-size: 12px; color: var(--text-2); margin-top: 2px; }
         .table-wrap { overflow-x: auto; max-height: 900px; overflow-y: auto; }
-        table { width: 100%; border-collapse: collapse; font-size: 13px; table-layout: fixed; min-width: 900px; }
-        table th:nth-child(1) { width: 11%; }
-        table th:nth-child(2) { width: 7%; }
-        table th:nth-child(3) { width: 13%; }
-        table th:nth-child(4) { width: 20%; }
-        table th:nth-child(5) { width: 20%; }
-        table th:nth-child(6) { width: 7%; }
-        table th:nth-child(7) { width: 10%; }
-        table th:nth-child(8) { width: 10%; }
+        table { width: 100%; border-collapse: collapse; font-size: 13px; table-layout: fixed; min-width: 1000px; }
+        table th:nth-child(1) { width: 10%; }
+        table th:nth-child(2) { width: 9%; }
+        table th:nth-child(3) { width: 6%; }
+        table th:nth-child(4) { width: 12%; }
+        table th:nth-child(5) { width: 18%; }
+        table th:nth-child(6) { width: 18%; }
+        table th:nth-child(7) { width: 6%; }
+        table th:nth-child(8) { width: 9%; }
+        table th:nth-child(9) { width: 9%; }
         th { text-align: left; padding: 14px 16px; font-weight: 700; font-size: 11px; text-transform: uppercase; letter-spacing: 0.5px; color: var(--text); background: var(--surface-2); border-bottom: 3px solid var(--accent); white-space: nowrap; position: sticky; top: 0; }
         th.sortable { cursor: pointer; user-select: none; transition: background 0.15s; }
         th.sortable:hover { background: var(--border); }
@@ -148,7 +160,7 @@
         .page-footer { padding: 16px 40px; border-top: 1px solid var(--border); font-size: 10px; line-height: 1.6; color: var(--text-3); text-align: center; background: var(--surface); }
         .page-footer a { color: var(--accent); text-decoration: none; }
     </style>
-<script id="fortidlp-file-access-api" src="chrome-extension://gbojkjpincgojijodbnliimgeggnomai/upload_fileaccessapi.js"></script><script id="fortidlp-input-element-creation" src="chrome-extension://gbojkjpincgojijodbnliimgeggnomai/upload_element_creation.js"></script></head>
+</head>
 <body>
     <div class="layout">
         <aside class="sidebar">
@@ -157,51 +169,52 @@ <h1>AI/ML Security</h1>
                 <p>Assessment Report</p>
             </div>
             <button class="theme-toggle" id="themeToggle" aria-label="Toggle dark mode">
-                <svg class="moon-icon" xmlns="http://www.w3.org/2000/svg" width="16" height="16" fill="currentColor" viewBox="0 0 16 16"><path d="M6 .278a.768.768 0 0 1 .08.858 7.208 7.208 0 0 0-.878 3.46c0 4.021 3.278 7.277 7.318 7.277.527 0 1.04-.055 1.533-.16a.787.787 0 0 1 .81.316.733.733 0 0 1-.031.893A8.349 8.349 0 0 1 8.344 16C3.734 16 0 12.286 0 7.71 0 4.266 2.114 1.312 5.124.06A.752.752 0 0 1 6 .278z"></path></svg>
-                <svg class="sun-icon" xmlns="http://www.w3.org/2000/svg" width="16" height="16" fill="currentColor" viewBox="0 0 16 16"><path d="M8 11a3 3 0 1 1 0-6 3 3 0 0 1 0 6zm0 1a4 4 0 1 0 0-8 4 4 0 0 0 0 8zM8 0a.5.5 0 0 1 .5.5v2a.5.5 0 0 1-1 0v-2A.5.5 0 0 1 8 0zm0 13a.5.5 0 0 1 .5.5v2a.5.5 0 0 1-1 0v-2A.5.5 0 0 1 8 13zm8-5a.5.5 0 0 1-.5.5h-2a.5.5 0 0 1 0-1h2a.5.5 0 0 1 .5.5zM3 8a.5.5 0 0 1-.5.5h-2a.5.5 0 0 1 0-1h2A.5.5 0 0 1 3 8zm10.657-5.657a.5.5 0 0 1 0 .707l-1.414 1.415a.5.5 0 1 1-.707-.708l1.414-1.414a.5.5 0 0 1 .707 0zm-9.193 9.193a.5.5 0 0 1 0 .707L3.05 13.657a.5.5 0 0 1-.707-.707l1.414-1.414a.5.5 0 0 1 .707 0zm9.193 2.121a.5.5 0 0 1-.707 0l-1.414-1.414a.5.5 0 0 1 .707-.707l1.414 1.414a.5.5 0 0 1 0 .707zM4.464 4.465a.5.5 0 0 1-.707 0L2.343 3.05a.5.5 0 1 1 .707-.707l1.414 1.414a.5.5 0 0 1 0 .708z"></path></svg>
+                <svg class="moon-icon" xmlns="http://www.w3.org/2000/svg" width="16" height="16" fill="currentColor" viewBox="0 0 16 16"><path d="M6 .278a.768.768 0 0 1 .08.858 7.208 7.208 0 0 0-.878 3.46c0 4.021 3.278 7.277 7.318 7.277.527 0 1.04-.055 1.533-.16a.787.787 0 0 1 .81.316.733.733 0 0 1-.031.893A8.349 8.349 0 0 1 8.344 16C3.734 16 0 12.286 0 7.71 0 4.266 2.114 1.312 5.124.06A.752.752 0 0 1 6 .278z"/></svg>
+                <svg class="sun-icon" xmlns="http://www.w3.org/2000/svg" width="16" height="16" fill="currentColor" viewBox="0 0 16 16"><path d="M8 11a3 3 0 1 1 0-6 3 3 0 0 1 0 6zm0 1a4 4 0 1 0 0-8 4 4 0 0 0 0 8zM8 0a.5.5 0 0 1 .5.5v2a.5.5 0 0 1-1 0v-2A.5.5 0 0 1 8 0zm0 13a.5.5 0 0 1 .5.5v2a.5.5 0 0 1-1 0v-2A.5.5 0 0 1 8 13zm8-5a.5.5 0 0 1-.5.5h-2a.5.5 0 0 1 0-1h2a.5.5 0 0 1 .5.5zM3 8a.5.5 0 0 1-.5.5h-2a.5.5 0 0 1 0-1h2A.5.5 0 0 1 3 8zm10.657-5.657a.5.5 0 0 1 0 .707l-1.414 1.415a.5.5 0 1 1-.707-.708l1.414-1.414a.5.5 0 0 1 .707 0zm-9.193 9.193a.5.5 0 0 1 0 .707L3.05 13.657a.5.5 0 0 1-.707-.707l1.414-1.414a.5.5 0 0 1 .707 0zm9.193 2.121a.5.5 0 0 1-.707 0l-1.414-1.414a.5.5 0 0 1 .707-.707l1.414 1.414a.5.5 0 0 1 0 .707zM4.464 4.465a.5.5 0 0 1-.707 0L2.343 3.05a.5.5 0 1 1 .707-.707l1.414 1.414a.5.5 0 0 1 0 .708z"/></svg>
                 <span class="theme-label">Dark Mode</span>
             </button>
             <nav class="nav-section">
                 <h3>Navigation</h3>
                 <a href="#overview" class="nav-item active">
-                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><rect x="3" y="3" width="7" height="7"></rect><rect x="14" y="3" width="7" height="7"></rect><rect x="3" y="14" width="7" height="7"></rect><rect x="14" y="14" width="7" height="7"></rect></svg>
+                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><rect x="3" y="3" width="7" height="7"/><rect x="14" y="3" width="7" height="7"/><rect x="3" y="14" width="7" height="7"/><rect x="14" y="14" width="7" height="7"/></svg>
                     Overview
                 </a>
                 <a href="#findings" class="nav-item">
-                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M12 22s8-4 8-10V5l-8-3-8 3v7c0 6 8 10 8 10z"></path></svg>
+                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M12 22s8-4 8-10V5l-8-3-8 3v7c0 6 8 10 8 10z"/></svg>
                     Security Findings
-                    <span class="count">164</span>
+                    <span class="count">172</span>
                 </a>
                 <a href="#risk" class="nav-item">
-                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><polyline points="22 12 18 12 15 21 9 3 6 12 2 12"></polyline></svg>
+                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><polyline points="22 12 18 12 15 21 9 3 6 12 2 12"/></svg>
                     Risk Distribution
                 </a>
                 <a href="#methodology" class="nav-item">
-                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><circle cx="12" cy="12" r="10"></circle><path d="M9.09 9a3 3 0 0 1 5.83 1c0 2-3 3-3 3"></path><line x1="12" y1="17" x2="12.01" y2="17"></line></svg>
+                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><circle cx="12" cy="12" r="10"/><path d="M9.09 9a3 3 0 0 1 5.83 1c0 2-3 3-3 3"/><line x1="12" y1="17" x2="12.01" y2="17"/></svg>
                     Methodology
                 </a>
             </nav>
             <nav class="nav-section">
                 <h3>By Service</h3>
                 <a href="#bedrock" class="nav-item">
-                    <span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"></path></svg></span>
+                    <span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"/></svg></span>
                     Bedrock
-                    <span class="count">77</span>
+                    <span class="count">54</span>
                 </a>
                 <a href="#sagemaker" class="nav-item">
-                    <span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"></path></svg></span>
+                    <span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"/></svg></span>
                     SageMaker
-                    <span class="count">33</span>
+                    <span class="count">82</span>
                 </a>
                 <a href="#agentcore" class="nav-item">
-                    <span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"></path></svg></span>
-                    AgentCore
-                    <span class="count">54</span>
-                </a>
-            </nav>
-            <div class="sidebar-footer">
-                <p>Generated: May 07, 2026</p>
-                <p>Account: 111111111111</p>
+                    <span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"/></svg></span>
+	                    AgentCore
+	                    <span class="count">33</span>
+	                </a>
+	            </nav>
+	            <nav class="nav-section industry-nav"><h3>By Industry</h3><a href="#finserv" class="nav-item industry-item"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#7C3AED" width="80" height="80"/><path fill="#FFF" d="M40 14 L66 26 L66 31 L14 31 L14 26 Z M20 35 h6 v23 h-6 z M37 35 h6 v23 h-6 z M54 35 h6 v23 h-6 z M14 62 h52 v5 h-52 z"/></svg></span> Financial Services<span class="count">3</span></a></nav>
+	            <div class="sidebar-footer">
+	                <p>Generated: June 20, 2026</p>
+	                <p>Account: 007564470903</p>
                 <p style="margin-top: 8px;"><a href="https://github.com/aws-samples/sample-aiml-security-assessment">GitHub Repository</a></p>
             </div>
         </aside>
@@ -210,29 +223,29 @@ <h3>By Service</h3>
                 <div class="page-header">
                     <h2>Security Assessment Overview</h2>
                     <div class="page-header-meta">
-                        <span><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><rect x="3" y="4" width="18" height="18" rx="2" ry="2"></rect><line x1="16" y1="2" x2="16" y2="6"></line><line x1="8" y1="2" x2="8" y2="6"></line><line x1="3" y1="10" x2="21" y2="10"></line></svg>2026-05-07T15:18:09.725498</span>
-                        <span><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M20 21v-2a4 4 0 0 0-4-4H8a4 4 0 0 0-4 4v2"></path><circle cx="12" cy="7" r="4"></circle></svg>Account: 111111111111</span>
+                        <span><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><rect x="3" y="4" width="18" height="18" rx="2" ry="2"/><line x1="16" y1="2" x2="16" y2="6"/><line x1="8" y1="2" x2="8" y2="6"/><line x1="3" y1="10" x2="21" y2="10"/></svg>2026-06-20T01:48:33.485086</span>
+                        <span><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M20 21v-2a4 4 0 0 0-4-4H8a4 4 0 0 0-4 4v2"/><circle cx="12" cy="7" r="4"/></svg>Account: 007564470903 · 3 Regions</span>
                     </div>
                 </div>
                 <div class="metrics">
-                    <div class="metric"><div class="metric-label">Security Checks</div><div class="metric-value">51</div><div class="metric-sub">Evaluated per account</div></div>
-                    <div class="metric"><div class="metric-label">Total Findings</div><div class="metric-value">164</div><div class="metric-sub">Across 1 account</div></div>
-                    <div class="metric danger"><div class="metric-label">Actionable Findings</div><div class="metric-value">137</div><div class="metric-sub">High, Medium, and Low severity</div></div>
-                    <div class="metric danger"><div class="metric-label">High Severity</div><div class="metric-value">2/90</div><div class="metric-sub">2.2% passed · Immediate action required</div></div>
-                    <div class="metric warning"><div class="metric-label">Medium Severity</div><div class="metric-value">5/39</div><div class="metric-sub">12.8% passed · Should be addressed</div></div>
-                    <div class="metric highlight"><div class="metric-label">Low Severity</div><div class="metric-value">2/8</div><div class="metric-sub">25.0% passed · Best practices</div></div>
+                    <div class="metric"><div class="metric-label">Security Checks</div><div class="metric-value">53</div><div class="metric-sub">Evaluated across 3 regions</div></div>
+                    <div class="metric"><div class="metric-label">Total Findings</div><div class="metric-value">172</div><div class="metric-sub">Across 3 regions</div></div>
+                    <div class="metric danger"><div class="metric-label">Actionable Findings</div><div class="metric-value">37</div><div class="metric-sub">High, Medium, and Low severity</div></div>
+                    <div class="metric danger"><div class="metric-label">High Severity</div><div class="metric-value">3/6</div><div class="metric-sub">50.0% passed · Immediate action required</div></div>
+                    <div class="metric warning"><div class="metric-label">Medium Severity</div><div class="metric-value">9/28</div><div class="metric-sub">32.1% passed · Should be addressed</div></div>
+                    <div class="metric highlight"><div class="metric-label">Low Severity</div><div class="metric-value">3/3</div><div class="metric-sub">100.0% passed · Best practices</div></div>
                 </div>
                 <div class="card"><div class="card-header"><h3>Priority Recommendations</h3></div><div class="card-body"><div class="alerts"><div class="alert-item critical">
-            <div class="alert-count">4</div>
+            <div class="alert-count">3</div>
             <div class="alert-info">
-                <div class="alert-domain">AmazonBedrockFullAccess role check</div>
+                <div class="alert-domain">Marketplace Subscription Access Check</div>
                 <div class="alert-category">Bedrock</div>
             </div>
         </div><div class="alert-item warning">
             <div class="alert-count">1</div>
             <div class="alert-info">
-                <div class="alert-domain">AgentCore Unused Permissions</div>
-                <div class="alert-category">AgentCore</div>
+                <div class="alert-domain">Stale Bedrock Access Check</div>
+                <div class="alert-category">Bedrock</div>
             </div>
         </div></div></div></div>
                 <div class="card">
@@ -251,3387 +264,3886 @@ <h2>Security Assessment Overview</h2>
                 </div>
             </section>
             <section id="findings" class="section">
-                <div class="section-title"><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M12 22s8-4 8-10V5l-8-3-8 3v7c0 6 8 10 8 10z"></path></svg>All Security Findings</div>
+                <div class="section-title"><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M12 22s8-4 8-10V5l-8-3-8 3v7c0 6 8 10 8 10z"/></svg>All Security Findings</div>
                 <div class="filter-bar">
                     <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="searchInput"></div>
-                    
-                    <div class="filter-group"><label>Service</label><select id="serviceFilter"><option value="">All Services</option><option value="bedrock">Bedrock</option><option value="sagemaker">SageMaker</option><option value="agentcore">AgentCore</option></select></div>
+
+                    <div class="filter-group"><label for="regionFilter">Region</label><select id="regionFilter" onchange="applyFilters()"><option value="">All Regions</option><option value="ap-southeast-2">ap-southeast-2</option><option value="eu-west-1">eu-west-1</option><option value="us-east-1">us-east-1</option><option value="Global">Global</option></select></div>
+                    <div class="filter-group"><label>Assessment Area</label><select id="serviceFilter"><option value="">All Assessment Areas</option><option value="bedrock">Bedrock</option><option value="sagemaker">SageMaker</option><option value="agentcore">AgentCore</option><option value="finserv">Financial Services</option></select></div>
                     <div class="filter-group"><label>Severity</label><select id="severityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
                     <div class="filter-group"><label>Status</label><select id="statusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
-                    <button class="btn btn-reset" id="resetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"></path><path d="M3 3v5h5"></path></svg>Reset</button>
+                    <button class="btn btn-reset" id="resetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
                 </div>
-                <div class="card"><div class="table-wrap"><table id="findingsTable"><thead><tr><th class="sortable" data-sort="account">Account ID</th><th class="sortable" data-sort="checkId">Check ID</th><th class="sortable" data-sort="finding">Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th class="sortable asc" data-sort="severity">Severity</th><th class="sortable" data-sort="status">Status</th></tr></thead><tbody>
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-dev' has AmazonBedrockFullAccess policy attached</td>
-            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_596' has AmazonBedrockFullAccess policy attached</td>
-            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20240718T155356' has AmazonBedrockFullAccess policy attached</td>
-            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">Role 'dev-spark-gateway-role' has AmazonBedrockFullAccess policy attached</td>
-            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">Role 'documentAnalysis-role-3cf0grlt' has AmazonBedrockFullAccess policy attached</td>
-            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">Role 'SageMakerExecutionRole' has AmazonBedrockFullAccess policy attached</td>
-            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">Role 'StepFunctions-MyStateMachine_EMR_June14_Ver1-role-778c3479' has AmazonBedrockFullAccess policy attached</td>
-            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">Role 'Text2SQLAgentCoreRole' has AmazonBedrockFullAccess policy attached</td>
-            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-1283f02bdc' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-p2p_dev_requisition_agent'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-172fa0f4df' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-code_generation_agent'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-719a4b3125' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-src_main'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-898ee147b4' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-preprocessing'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-976e96fdb5' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-spark_supervisor_agent'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-a7ee536645' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-ray_code_interpreter'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-dd1908825f' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-spark_code_generator'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-dev' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-00e8b7dece' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-registry_search_agent'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-0eac208e7c' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-shipping_update_a2a_20260410093300'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-1a0818645f' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-inventory_reserve_a2a_20260414075052'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-1fc50587d4' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-inventory_reserve_a2a_20260408130800'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-247de8125f' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-inventory_reserve_a2a_20260408142640'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-2673ffbc7a' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260413102236'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-2f52cefe03' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-shipping_update_a2a_20260410113054'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+                <div class="card"><div class="table-wrap"><table id="findingsTable"><thead><tr><th class="sortable" data-sort="account">Account ID</th><th class="sortable" data-sort="region">Region</th><th class="sortable" data-sort="checkId">Check ID</th><th class="sortable" data-sort="finding">Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th class="sortable" data-sort="severity">Severity</th><th class="sortable" data-sort="status">Status</th></tr></thead><tbody><tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-06</code></td>
+            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-07</code></td>
+            <td class="col-domain">Bedrock Prompt Management Check</td>
+            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
+            <td class="resolution-text">Implement Prompt Management to:
+1. Create and version your prompts
+2. Test different prompt variants
+3. Share prompts across your organization
+4. Maintain consistent prompt templates</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-08</code></td>
+            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
+            <td class="finding-details">No Bedrock agents found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-09</code></td>
+            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::007564470903:assumed-role/aiml-sec-007564470903-BedrockSecurityAssessmentFunc-188U9EAkRKkw/aiml-security-aiml-sec-007564470903-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:007564470903:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-10</code></td>
+            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
+            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
+            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-11</code></td>
+            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
+            <td class="finding-details">No custom/fine-tuned models found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-12</code></td>
+            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
+            <td class="finding-details">Model invocation logging to S3 is not configured</td>
+            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-13</code></td>
+            <td class="col-domain">Bedrock Flows Guardrails Check</td>
+            <td class="finding-details">No Bedrock Flows found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-06</code></td>
+            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-07</code></td>
+            <td class="col-domain">Bedrock Prompt Management Check</td>
+            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
+            <td class="resolution-text">Implement Prompt Management to:
+1. Create and version your prompts
+2. Test different prompt variants
+3. Share prompts across your organization
+4. Maintain consistent prompt templates</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-08</code></td>
+            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
+            <td class="finding-details">No Bedrock agents found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-09</code></td>
+            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::007564470903:assumed-role/aiml-sec-007564470903-BedrockSecurityAssessmentFunc-188U9EAkRKkw/aiml-security-aiml-sec-007564470903-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:007564470903:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-10</code></td>
+            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
+            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
+            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-11</code></td>
+            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
+            <td class="finding-details">No custom/fine-tuned models found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-12</code></td>
+            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
+            <td class="finding-details">Model invocation logging to S3 is not configured</td>
+            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-13</code></td>
+            <td class="col-domain">Bedrock Flows Guardrails Check</td>
+            <td class="finding-details">No Bedrock Flows found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-01</code></td>
+            <td class="col-domain">AmazonBedrockFullAccess role check</td>
+            <td class="finding-details">No roles found with AmazonBedrockFullAccess policy</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-all
+https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-30f5213efe' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-inventory_reserve_a2a_20260330160258'</td>
+            <td class="finding-details">Role 'aws-elasticbeanstalk-ec2-role' has overly permissive marketplace subscription access through policy 'AWSElasticBeanstalkMulticontainerDocker'</td>
             <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-3c541594f7' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-planner_executor_live_agent'</td>
+            <td class="finding-details">Role 'RescoAppStack-Ec2Role2FD9A272-UB7xzDXt03Lg' has overly permissive marketplace subscription access through policy 'AWSElasticBeanstalkWebTier'</td>
             <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-3d2b76013b' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260408114023'</td>
+            <td class="finding-details">Role 'xray-sample-SampleInstanceProfileRole-1WB21O2X8T7ZV' has overly permissive marketplace subscription access through policy 'AWSElasticBeanstalkWebTier'</td>
             <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-3e67e4f442' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-inventory_reserve_a2a_20260413102236'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AIMLSecurityMemberRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-4a098d3d5f' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-a2a_pricing_20260319170225'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonQInvestigationRole-DefaultInvestigationGroup-ma74at' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-4a706ff22d' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-inventory_reserve_a2a_20260407170120'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'aws-elasticbeanstalk-ec2-role' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-5066e98ccf' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-planner_executor_agent'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AwsSecurityAudit' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-5187ed27f6' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260408130800'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AWSServiceRoleForAuditManager' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-52bb2e43bb' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-shipping_update_a2a_20260408114023'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AWSServiceRoleForSupport' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-637e7c6466' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260323154213'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-007564470903-us-east-1' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-6e8347baae' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260408142640'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CloudSecAuditRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-6ff375fe7f' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-inventory_reserve_a2a_20260410093300'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CloudSeerTrustedServiceRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-7e8b6d010a' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-shipping_update_a2a_20260407170120'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IibsAdminAccess-DO-NOT-DELETE' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-84ccb169b5' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-shipping_update_a2a_20260323154213'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'InternalAuditInternal' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-852fb81a81' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-executor_live_agent'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'Nova-DO-NOT-DELETE' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-86fa212e48' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260407170120'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'ReSCOAIMLMemberRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-8f1b8fff63' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-shipping_update_a2a_20260414075052'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'RescoAppStack-Ec2Role2FD9A272-UB7xzDXt03Lg' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-97fe9e80f5' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-shipping_update_a2a_20260413102236'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'ScoutSuiteRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-ad328e166e' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-inventory_reserve_a2a_20260410113054'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'SecurityHubGenAISummary-IAMRolefnCreateSummary-ulVA50wgXCG3' last accessed Bedrock on 2024-09-06</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-b13f236cac' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260410093300'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'xray-sample-SampleInstanceProfileRole-1WB21O2X8T7ZV' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-c552f21a07' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-inventory_reserve_a2a_20260323154213'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-caa535c28c' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-inventory_reserve_a2a_20260408114023'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-d23a62e8d6' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-shipping_update_a2a_20260408142640'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-d2c64a0d7c' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-shipping_update_a2a_20260408130800'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-d97a74ec98' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260407162243'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-e0803b3275' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-planner_live_agent'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-e37cc54f7d' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260414075052'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-eebb74e3c1' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260410113054'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-ef4dff8fbb' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-shipping_update_a2a_20260330160258'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-fa4b848707' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260330160258'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_596' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_usp39' has overly permissive marketplace subscription access through policy 'AmazonBedrockFoundationModelPolicyForKnowledgeBase_usp39'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20240718T155356' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'dev-spark-gateway-role' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'documentAnalysis-role-3cf0grlt' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'SageMakerExecutionRole' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'StepFunctions-MyStateMachine_EMR_June14_Ver1-role-778c3479' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'Text2SQLAgentCoreRole' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-06</code></td>
+            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-07</code></td>
+            <td class="col-domain">Bedrock Prompt Management Check</td>
+            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
+            <td class="resolution-text">Implement Prompt Management to:
+1. Create and version your prompts
+2. Test different prompt variants
+3. Share prompts across your organization
+4. Maintain consistent prompt templates</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-08</code></td>
+            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
+            <td class="finding-details">No Bedrock agents found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Error during check: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::111111111111:assumed-role/aiml-sec-111111111111-BedrockSecurityAssessmentFunc-Y0UusK2qLzg4/aiml-security-aiml-sec-111111111111-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:111111111111:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
-            <td class="resolution-text">Investigate error and retry assessment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::007564470903:assumed-role/aiml-sec-007564470903-BedrockSecurityAssessmentFunc-188U9EAkRKkw/aiml-security-aiml-sec-007564470903-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:007564470903:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-10</code></td>
-            <td class="col-domain">Bedrock Guardrail IAM Enforcement Missing</td>
-            <td class="finding-details">The following roles can invoke Bedrock models without enforced guardrails: agent-bedrockagentsworkscommendationagent-09509a29-bedrockagent, agent-bedrockagentsworkstinformationagent-1116948c-bedrockagent, AmazonBedrockAgentCoreHarnessDefaultServiceRole-43djr, AmazonBedrockAgentCoreSDKRuntime-us-east-1-1283f02bdc, AmazonBedrockAgentCoreSDKRuntime-us-east-1-172fa0f4df, AmazonBedrockAgentCoreSDKRuntime-us-east-1-719a4b3125, AmazonBedrockAgentCoreSDKRuntime-us-east-1-898ee147b4, AmazonBedrockAgentCoreSDKRuntime-us-east-1-976e96fdb5, AmazonBedrockAgentCoreSDKRuntime-us-east-1-a7ee536645, AmazonBedrockAgentCoreSDKRuntime-us-east-1-dd1908825f...</td>
-            <td class="resolution-text">Add IAM policy conditions to enforce guardrail usage:
-1. Use 'bedrock:GuardrailIdentifier' condition key
-2. Specify required guardrail ARN or ID
-3. Example: "Condition": {"StringEquals": {"bedrock:GuardrailIdentifier": "arn:aws:bedrock:region:account:guardrail/guardrail-id"}}</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-13</code></td>
-            <td class="col-domain">Bedrock Flow Missing Guardrails</td>
-            <td class="finding-details">Flow 'document-processing-bedrock-prompt-flows-IDP_BANKSTMT' has nodes without guardrails configured: map_to_json (Prompt). Without guardrails, intermediate steps can generate harmful content.</td>
-            <td class="resolution-text">1. Configure guardrails on Prompt nodes via guardrailConfiguration
-2. Configure guardrails on Knowledge Base nodes when using RetrieveAndGenerate
-3. Apply organization-wide guardrail enforcement policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-13</code></td>
-            <td class="col-domain">Bedrock Flow Missing Guardrails</td>
-            <td class="finding-details">Flow 'document-processing-bedrock-prompt-flows-IDP_CLASSIFY' has nodes without guardrails configured: classify_document (Prompt). Without guardrails, intermediate steps can generate harmful content.</td>
-            <td class="resolution-text">1. Configure guardrails on Prompt nodes via guardrailConfiguration
-2. Configure guardrails on Knowledge Base nodes when using RetrieveAndGenerate
-3. Apply organization-wide guardrail enforcement policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-13</code></td>
-            <td class="col-domain">Bedrock Flow Missing Guardrails</td>
-            <td class="finding-details">Flow 'document-processing-bedrock-prompt-flows-IDP_DRIVERS_LIC' has nodes without guardrails configured: map_to_json (Prompt), analyze_doc (Prompt). Without guardrails, intermediate steps can generate harmful content.</td>
-            <td class="resolution-text">1. Configure guardrails on Prompt nodes via guardrailConfiguration
-2. Configure guardrails on Knowledge Base nodes when using RetrieveAndGenerate
-3. Apply organization-wide guardrail enforcement policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-13</code></td>
-            <td class="col-domain">Bedrock Flow Missing Guardrails</td>
-            <td class="finding-details">Flow 'document-processing-bedrock-prompt-flows-IDP_FORREVIEW' has nodes without guardrails configured: analyze_doc (Prompt). Without guardrails, intermediate steps can generate harmful content.</td>
-            <td class="resolution-text">1. Configure guardrails on Prompt nodes via guardrailConfiguration
-2. Configure guardrails on Knowledge Base nodes when using RetrieveAndGenerate
-3. Apply organization-wide guardrail enforcement policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-13</code></td>
-            <td class="col-domain">Bedrock Flow Missing Guardrails</td>
-            <td class="finding-details">Flow 'document-processing-bedrock-prompt-flows-IDP_URLA1003' has nodes without guardrails configured: map_to_json (Prompt), analyze_doc (Prompt). Without guardrails, intermediate steps can generate harmful content.</td>
-            <td class="resolution-text">1. Configure guardrails on Prompt nodes via guardrailConfiguration
-2. Configure guardrails on Knowledge Base nodes when using RetrieveAndGenerate
-3. Apply organization-wide guardrail enforcement policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
+            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
+            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-11</code></td>
+            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
+            <td class="finding-details">No custom/fine-tuned models found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-12</code></td>
+            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
+            <td class="finding-details">Model invocation logging to S3 is not configured</td>
+            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-13</code></td>
-            <td class="col-domain">Bedrock Flow Missing Guardrails</td>
-            <td class="finding-details">Flow 'idp_paystub' has nodes without guardrails configured: map_to_json (Prompt). Without guardrails, intermediate steps can generate harmful content.</td>
-            <td class="resolution-text">1. Configure guardrails on Prompt nodes via guardrailConfiguration
-2. Configure guardrails on Knowledge Base nodes when using RetrieveAndGenerate
-3. Apply organization-wide guardrail enforcement policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker Full Access Policy Used</td>
-            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20240718T155356' has AmazonSageMakerFullAccess policy attached</td>
-            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker Full Access Policy Used</td>
-            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20250904T122836' has AmazonSageMakerFullAccess policy attached</td>
-            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker Full Access Policy Used</td>
-            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20250904T123002' has AmazonSageMakerFullAccess policy attached</td>
-            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker Full Access Policy Used</td>
-            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20250904T135264' has AmazonSageMakerFullAccess policy attached</td>
-            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker Full Access Policy Used</td>
-            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20250904T135344' has AmazonSageMakerFullAccess policy attached</td>
-            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker Full Access Policy Used</td>
-            <td class="finding-details">Role 'AmazonSageMakerServiceCatalogProductsExecutionRole' has AmazonSageMakerFullAccess policy attached</td>
-            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+            <td class="col-domain">Bedrock Flows Guardrails Check</td>
+            <td class="finding-details">No Bedrock Flows found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-01</code></td>
+            <td class="col-domain">SageMaker Internet Access Check</td>
+            <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker Full Access Policy Used</td>
-            <td class="finding-details">Role 'SageMakerExecutionRole' has AmazonSageMakerFullAccess policy attached</td>
-            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274613' (text2sql_simple_agent_v1759274613-B7B0PS35bM) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274400' (text2sql_simple_agent_v1759274400-PDMjxY4Xhk) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274210' (text2sql_simple_agent_v1759274210-Df71lAGU3G) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274021' (text2sql_simple_agent_v1759274021-PIUlTqB0B3) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent' (text2sql_simple_agent-st6aToAvPC) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'src_main' (src_main-kED9SX6C3I) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'spark_supervisor_agent' (spark_supervisor_agent-LUFQfC7cMH) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'spark_code_generator' (spark_code_generator-Q8EJ8p53TZ) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'ray_code_interpreter' (ray_code_interpreter-5OXxb1FQfD) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'preprocessing' (preprocessing-wR5DQzHFL5) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-02</code></td>
-            <td class="col-domain">AgentCore IAM Full Access Policy</td>
-            <td class="finding-details">The following roles have BedrockAgentCoreFullAccess policy: ToolsGatewayRole-20260323134736, ToolsGatewayRole-20260330152147, ToolsGatewayRole-20260330153357, ToolsGatewayRole-20260408130204, ToolsGatewayRole-20260408141949</td>
-            <td class="resolution-text">Replace with least-privilege policies scoped to specific AgentCore resources and actions</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-08</code></td>
-            <td class="col-domain">AgentCore VPC Endpoints Missing</td>
-            <td class="finding-details">No AgentCore VPC endpoints found in 2 VPCs. AgentCore API traffic traverses public internet, exposing it to interception.</td>
-            <td class="resolution-text">Create VPC interface endpoints for AgentCore services:
-1. com.amazonaws.region.bedrock-agentcore
-2. com.amazonaws.region.bedrock-agentcore-control
-3. com.amazonaws.region.bedrock-agentcore-runtime
-This enables private connectivity via AWS PrivateLink</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-02</code></td>
-            <td class="col-domain">Amazon Bedrock private connectivity</td>
-            <td class="finding-details">Bedrock VPC endpoints found: VPC vpc-0a68ff189164b7f73 has endpoint com.amazonaws.us-east-1.bedrock-runtime</td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr><tr data-service="bedrock" data-severity="high" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-05</code></td>
-            <td class="col-domain">Bedrock Guardrails Check</td>
-            <td class="finding-details">Amazon Bedrock Guardrails are properly configured with 2 guardrails</td>
-            <td class="resolution-text">No action required. Continue monitoring and updating guardrails as needed.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-03</code></td>
-            <td class="col-domain">AgentCore Unused Permissions</td>
-            <td class="finding-details">The following principals have AgentCore permissions but have never accessed the service: role 'AIMLSecurityMemberRole', role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-1283f02bdc', role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-172fa0f4df', role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-719a4b3125', role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-898ee147b4', role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-a7ee536645', role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-dd1908825f', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-0eac208e7c', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-1a0818645f', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-1fc50587d4', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-247de8125f', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-2673ffbc7a', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-2f52cefe03', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-30f5213efe', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-3c541594f7', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-3d2b76013b', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-3e67e4f442', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-4a098d3d5f', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-4a706ff22d', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-5066e98ccf', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-5187ed27f6', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-52bb2e43bb', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-637e7c6466', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-6e8347baae', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-6ff375fe7f', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-7e8b6d010a', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-84ccb169b5', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-86fa212e48', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-8f1b8fff63', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-97fe9e80f5', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-ad328e166e', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-b13f236cac', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-c552f21a07', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-caa535c28c', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-d23a62e8d6', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-d2c64a0d7c', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-d97a74ec98', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-e37cc54f7d', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-eebb74e3c1', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-ef4dff8fbb', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-fa4b848707', role 'dev-spark-gateway-role', role 'myresearchagent_myresearchagent', role 'p2p-dev-agentcore-execution-role', role 'ToolsGatewayRole-20260323134736', role 'ToolsGatewayRole-20260330152147', role 'ToolsGatewayRole-20260330153357', role 'ToolsGatewayRole-20260408130204', role 'ToolsGatewayRole-20260408141949'</td>
-            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274613' (text2sql_simple_agent_v1759274613-B7B0PS35bM) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274613' (text2sql_simple_agent_v1759274613-B7B0PS35bM) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274400' (text2sql_simple_agent_v1759274400-PDMjxY4Xhk) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274400' (text2sql_simple_agent_v1759274400-PDMjxY4Xhk) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274210' (text2sql_simple_agent_v1759274210-Df71lAGU3G) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274210' (text2sql_simple_agent_v1759274210-Df71lAGU3G) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274021' (text2sql_simple_agent_v1759274021-PIUlTqB0B3) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274021' (text2sql_simple_agent_v1759274021-PIUlTqB0B3) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent' (text2sql_simple_agent-st6aToAvPC) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent' (text2sql_simple_agent-st6aToAvPC) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'src_main' (src_main-kED9SX6C3I) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'src_main' (src_main-kED9SX6C3I) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'spark_supervisor_agent' (spark_supervisor_agent-LUFQfC7cMH) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'spark_supervisor_agent' (spark_supervisor_agent-LUFQfC7cMH) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'spark_code_generator' (spark_code_generator-Q8EJ8p53TZ) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'spark_code_generator' (spark_code_generator-Q8EJ8p53TZ) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'ray_code_interpreter' (ray_code_interpreter-5OXxb1FQfD) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'ray_code_interpreter' (ray_code_interpreter-5OXxb1FQfD) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'preprocessing' (preprocessing-wR5DQzHFL5) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'preprocessing' (preprocessing-wR5DQzHFL5) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274613' (text2sql_simple_agent_v1759274613-B7B0PS35bM) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274400' (text2sql_simple_agent_v1759274400-PDMjxY4Xhk) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274210' (text2sql_simple_agent_v1759274210-Df71lAGU3G) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274021' (text2sql_simple_agent_v1759274021-PIUlTqB0B3) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent' (text2sql_simple_agent-st6aToAvPC) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'src_main' (src_main-kED9SX6C3I) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'spark_supervisor_agent' (spark_supervisor_agent-LUFQfC7cMH) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'spark_code_generator' (spark_code_generator-Q8EJ8p53TZ) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'ray_code_interpreter' (ray_code_interpreter-5OXxb1FQfD) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'preprocessing' (preprocessing-wR5DQzHFL5) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-07</code></td>
-            <td class="col-domain">AgentCore Memory Encryption</td>
-            <td class="finding-details">Memory 'medical_document_processor_mem-LhFLMY3S5p' (medical_document_processor_mem-LhFLMY3S5p) does not have customer-managed encryption configured</td>
-            <td class="resolution-text">Enable encryption with customer-managed KMS keys</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-07</code></td>
-            <td class="col-domain">AgentCore Memory Encryption</td>
-            <td class="finding-details">Memory 'src_main_mem-4lA3j7DkLB' (src_main_mem-4lA3j7DkLB) does not have customer-managed encryption configured</td>
-            <td class="resolution-text">Enable encryption with customer-managed KMS keys</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-09</code></td>
-            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
-            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
-            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-03</code></td>
+            <td class="col-domain">Data Protection Check</td>
+            <td class="finding-details">No SageMaker resources found to check for data protection</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-04</code></td>
+            <td class="col-domain">GuardDuty Enabled</td>
+            <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-04</code></td>
-            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
-            <td class="finding-details">Model invocation logging is properly configured with delivery to: CloudWatch Logs</td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Model Registry Issue</td>
+            <td class="finding-details">No model package groups found</td>
+            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Feature Store Issue</td>
+            <td class="finding-details">No feature groups found</td>
+            <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Pipelines Issue</td>
+            <td class="finding-details">No ML pipelines found</td>
+            <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-06</code></td>
+            <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
+            <td class="finding-details">No SageMaker Clarify jobs found</td>
+            <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-07</code></td>
+            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
+            <td class="finding-details">No Model Monitor schedules found</td>
+            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-08</code></td>
+            <td class="col-domain">Model Registry Registry Not Used</td>
+            <td class="finding-details">Model Registry is not being utilized</td>
+            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-09</code></td>
+            <td class="col-domain">SageMaker Notebook Root Access Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-10</code></td>
+            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-11</code></td>
+            <td class="col-domain">SageMaker Model Network Isolation Check</td>
+            <td class="finding-details">No models found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-12</code></td>
+            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
+            <td class="finding-details">No InService endpoints found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-13</code></td>
+            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
+            <td class="finding-details">No monitoring schedules found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-14</code></td>
+            <td class="col-domain">SageMaker Model Repository Access Check</td>
+            <td class="finding-details">No models found or all use default Platform access</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-15</code></td>
+            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
+            <td class="finding-details">No feature groups with offline stores found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-16</code></td>
+            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
+            <td class="finding-details">No data quality job definitions found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-17</code></td>
+            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
+            <td class="finding-details">No processing jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-18</code></td>
+            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
+            <td class="finding-details">No transform jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-19</code></td>
+            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
+            <td class="finding-details">No hyperparameter tuning jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-20</code></td>
+            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
+            <td class="finding-details">No compilation jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-21</code></td>
+            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
+            <td class="finding-details">No AutoML jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-22</code></td>
+            <td class="col-domain">Model Approval Workflow Check</td>
+            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
+            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-23</code></td>
+            <td class="col-domain">Model Drift Detection Check</td>
+            <td class="finding-details">No InService endpoints found to monitor.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
-        </tr><tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-06</code></td>
-            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
-            <td class="finding-details">CloudTrail is properly configured to log Bedrock API activity in trails: IsengardTrail-DO-NOT-DELETE</td>
-            <td class="resolution-text">No action required. Continue monitoring CloudTrail logs for Bedrock activity.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-24</code></td>
+            <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
+            <td class="finding-details">No InService endpoints found.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-25</code></td>
+            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
+            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
+            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-01</code></td>
+            <td class="col-domain">SageMaker Internet Access Check</td>
+            <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
-        </tr><tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-03</code></td>
+            <td class="col-domain">Data Protection Check</td>
+            <td class="finding-details">No SageMaker resources found to check for data protection</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
             <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
-        </tr><tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Model Registry Issue</td>
+            <td class="finding-details">No model package groups found</td>
+            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Feature Store Issue</td>
+            <td class="finding-details">No feature groups found</td>
+            <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Pipelines Issue</td>
+            <td class="finding-details">No ML pipelines found</td>
+            <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-06</code></td>
+            <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
+            <td class="finding-details">No SageMaker Clarify jobs found</td>
+            <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-07</code></td>
+            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
+            <td class="finding-details">No Model Monitor schedules found</td>
+            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-08</code></td>
+            <td class="col-domain">Model Registry Registry Not Used</td>
+            <td class="finding-details">Model Registry is not being utilized</td>
+            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-09</code></td>
+            <td class="col-domain">SageMaker Notebook Root Access Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-10</code></td>
+            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-11</code></td>
+            <td class="col-domain">SageMaker Model Network Isolation Check</td>
+            <td class="finding-details">No models found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-12</code></td>
+            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
+            <td class="finding-details">No InService endpoints found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-13</code></td>
+            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
+            <td class="finding-details">No monitoring schedules found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-14</code></td>
+            <td class="col-domain">SageMaker Model Repository Access Check</td>
+            <td class="finding-details">No models found or all use default Platform access</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-15</code></td>
+            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
+            <td class="finding-details">No feature groups with offline stores found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-16</code></td>
+            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
+            <td class="finding-details">No data quality job definitions found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-17</code></td>
+            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
+            <td class="finding-details">No processing jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-18</code></td>
+            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
+            <td class="finding-details">No transform jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-19</code></td>
+            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
+            <td class="finding-details">No hyperparameter tuning jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-20</code></td>
+            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
+            <td class="finding-details">No compilation jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-21</code></td>
+            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
+            <td class="finding-details">No AutoML jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
-            <td class="finding-details">Checked 1 model package groups. Approval workflows appear to be properly configured.</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr><tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
+            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
             <td class="finding-details">No InService endpoints found to monitor.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
-        </tr><tr data-service="sagemaker" data-severity="low" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-05</code></td>
-            <td class="col-domain">SageMaker Model Registry Issue</td>
-            <td class="finding-details">Model group 'mlops-model-registry-5c8007a2' has minimal versioning</td>
-            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity low">Low</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="sagemaker" data-severity="low" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-08</code></td>
-            <td class="col-domain">Model Registry Empty Model Group</td>
-            <td class="finding-details">Model group mlops-model-registry-5c8007a2 has no registered models</td>
-            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity low">Low</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="low" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-05</code></td>
-            <td class="col-domain">AgentCore ECR Repository AWS-Managed Keys</td>
-            <td class="finding-details">ECR repository 'bedrock-agentcore-ray_code_interpreter' uses AWS-managed keys instead of customer-managed KMS keys</td>
-            <td class="resolution-text">Consider using customer-managed KMS keys for better control and audit capabilities</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity low">Low</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="low" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-05</code></td>
-            <td class="col-domain">AgentCore ECR Repository AWS-Managed Keys</td>
-            <td class="finding-details">ECR repository 'bedrock-agentcore-spark_code_generator' uses AWS-managed keys instead of customer-managed KMS keys</td>
-            <td class="resolution-text">Consider using customer-managed KMS keys for better control and audit capabilities</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity low">Low</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="low" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-05</code></td>
-            <td class="col-domain">AgentCore ECR Repository AWS-Managed Keys</td>
-            <td class="finding-details">ECR repository 'bedrock-agentcore-spark_supervisor_agent' uses AWS-managed keys instead of customer-managed KMS keys</td>
-            <td class="resolution-text">Consider using customer-managed KMS keys for better control and audit capabilities</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity low">Low</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="agentcore" data-severity="low" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-05</code></td>
-            <td class="col-domain">AgentCore ECR Repository AWS-Managed Keys</td>
-            <td class="finding-details">ECR repository 'bedrock-agentcore-code_generation_agent' uses AWS-managed keys instead of customer-managed KMS keys</td>
-            <td class="resolution-text">Consider using customer-managed KMS keys for better control and audit capabilities</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity low">Low</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr><tr data-service="bedrock" data-severity="low" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-07</code></td>
-            <td class="col-domain">Bedrock Prompt Management Check</td>
-            <td class="finding-details">Prompt Management is being used with 8 prompts (0 active, 0 draft)</td>
-            <td class="resolution-text">No action required. Continue using Prompt Management for consistent and optimized prompts.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity low">Low</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr><tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
             <td class="finding-details">No InService endpoints found.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
-        </tr><tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-08</code></td>
-            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
-            <td class="finding-details">No Bedrock agents found in the account</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>SM-25</code></td>
+            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
+            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
+            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-11</code></td>
-            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
-            <td class="finding-details">No custom/fine-tuned models found in the account</td>
+        </tr>
+<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker IAM Permissions Check</td>
+            <td class="finding-details">No issues found with IAM permissions and no stale access detected</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-12</code></td>
-            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
-            <td class="finding-details">Model invocation logging to S3 is not configured</td>
-            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity na">Informational</span></td>
-            <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
             <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
             <td class="finding-details">No SageMaker resources found to check for data protection</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-04</code></td>
+            <td class="col-domain">GuardDuty Enabled</td>
+            <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Model Registry Issue</td>
+            <td class="finding-details">No model package groups found</td>
+            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
             <td class="finding-details">No feature groups found</td>
             <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
             <td class="finding-details">No ML pipelines found</td>
             <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
             <td class="finding-details">No SageMaker Clarify jobs found</td>
             <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-07</code></td>
+            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
+            <td class="finding-details">No Model Monitor schedules found</td>
+            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-08</code></td>
+            <td class="col-domain">Model Registry Registry Not Used</td>
+            <td class="finding-details">Model Registry is not being utilized</td>
+            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-09</code></td>
+            <td class="col-domain">SageMaker Notebook Root Access Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-10</code></td>
+            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-11</code></td>
+            <td class="col-domain">SageMaker Model Network Isolation Check</td>
+            <td class="finding-details">No models found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-12</code></td>
+            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
+            <td class="finding-details">No InService endpoints found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-13</code></td>
+            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
+            <td class="finding-details">No monitoring schedules found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-14</code></td>
+            <td class="col-domain">SageMaker Model Repository Access Check</td>
+            <td class="finding-details">No models found or all use default Platform access</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-15</code></td>
+            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
+            <td class="finding-details">No feature groups with offline stores found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-16</code></td>
+            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
+            <td class="finding-details">No data quality job definitions found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-17</code></td>
+            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
+            <td class="finding-details">No processing jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-18</code></td>
+            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
+            <td class="finding-details">No transform jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-19</code></td>
+            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
+            <td class="finding-details">No hyperparameter tuning jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-20</code></td>
+            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
+            <td class="finding-details">No compilation jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-21</code></td>
+            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
+            <td class="finding-details">No AutoML jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-22</code></td>
+            <td class="col-domain">Model Approval Workflow Check</td>
+            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
+            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-23</code></td>
+            <td class="col-domain">Model Drift Detection Check</td>
+            <td class="finding-details">No InService endpoints found to monitor.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-24</code></td>
+            <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
+            <td class="finding-details">No InService endpoints found.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-25</code></td>
+            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
+            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
+            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Observability Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-05</code></td>
+            <td class="col-domain">AgentCore Encryption Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
+            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Configuration Check</td>
+            <td class="finding-details">No Memory resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-13</code></td>
+            <td class="col-domain">AgentCore Gateway Configuration Check</td>
+            <td class="finding-details">No Gateway resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-08</code></td>
+            <td class="col-domain">AgentCore VPC Endpoints Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-10</code></td>
+            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
+            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-11</code></td>
+            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
+            <td class="finding-details">No Policy Engines found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-12</code></td>
+            <td class="col-domain">AgentCore Gateway Encryption Check</td>
+            <td class="finding-details">No Gateways found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-07</code></td>
-            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
-            <td class="finding-details">No Model Monitor schedules found</td>
-            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-09</code></td>
-            <td class="col-domain">SageMaker Notebook Root Access Check</td>
-            <td class="finding-details">No notebook instances found</td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Observability Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-10</code></td>
-            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
-            <td class="finding-details">No notebook instances found</td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-05</code></td>
+            <td class="col-domain">AgentCore Encryption Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-11</code></td>
-            <td class="col-domain">SageMaker Model Network Isolation Check</td>
-            <td class="finding-details">No models found</td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
+            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-12</code></td>
-            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
-            <td class="finding-details">No InService endpoints found</td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Configuration Check</td>
+            <td class="finding-details">No Memory resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-13</code></td>
-            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
-            <td class="finding-details">No monitoring schedules found</td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-13</code></td>
+            <td class="col-domain">AgentCore Gateway Configuration Check</td>
+            <td class="finding-details">No Gateway resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-14</code></td>
-            <td class="col-domain">SageMaker Model Repository Access Check</td>
-            <td class="finding-details">No models found or all use default Platform access</td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-08</code></td>
+            <td class="col-domain">AgentCore VPC Endpoints Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-15</code></td>
-            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
-            <td class="finding-details">No feature groups with offline stores found</td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-10</code></td>
+            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
+            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-16</code></td>
-            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
-            <td class="finding-details">No data quality job definitions found</td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-11</code></td>
+            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
+            <td class="finding-details">No Policy Engines found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-17</code></td>
-            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
-            <td class="finding-details">No processing jobs found</td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-12</code></td>
+            <td class="col-domain">AgentCore Gateway Encryption Check</td>
+            <td class="finding-details">No Gateways found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-18</code></td>
-            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
-            <td class="finding-details">No transform jobs found</td>
+        </tr>
+<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-02</code></td>
+            <td class="col-domain">AgentCore IAM Full Access Check</td>
+            <td class="finding-details">No roles with overly permissive AgentCore access found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-03</code></td>
+            <td class="col-domain">AgentCore Unused Permissions</td>
+            <td class="finding-details">The following principals have AgentCore permissions but have never accessed the service: role 'AIMLSecurityMemberRole', role 'ReSCOAIMLMemberRole'</td>
+            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-09</code></td>
+            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
+            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
+            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status error">Failed</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-19</code></td>
-            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
-            <td class="finding-details">No hyperparameter tuning jobs found</td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Observability Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-20</code></td>
-            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
-            <td class="finding-details">No compilation jobs found</td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-05</code></td>
+            <td class="col-domain">AgentCore Encryption Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-21</code></td>
-            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
-            <td class="finding-details">No AutoML jobs found</td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
+            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-25</code></td>
-            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
-            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
-            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Configuration Check</td>
+            <td class="finding-details">No Memory resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
             <td class="finding-details">No Gateway resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-08</code></td>
+            <td class="col-domain">AgentCore VPC Endpoints Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
             <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
             <td class="finding-details">No Policy Engines found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr><tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+        </tr>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
             <td class="finding-details">No Gateways found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-00</code></td>
+            <td class="col-domain">FinServ Regional Scope Not Applicable</td>
+            <td class="finding-details">No regional Bedrock, AgentCore, or SageMaker resources were found in us-east-1; FinServ GenAI risk checks were not applied to this region.</td>
+            <td class="resolution-text">No action required unless GenAI workloads are expected in this region.</td>
+            <td class="reference-cell"><a href="https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>FS-00</code></td>
+            <td class="col-domain">FinServ Regional Scope Not Applicable</td>
+            <td class="finding-details">No regional Bedrock, AgentCore, or SageMaker resources were found in eu-west-1; FinServ GenAI risk checks were not applied to this region.</td>
+            <td class="resolution-text">No action required unless GenAI workloads are expected in this region.</td>
+            <td class="reference-cell"><a href="https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>FS-00</code></td>
+            <td class="col-domain">FinServ Regional Scope Not Applicable</td>
+            <td class="finding-details">No regional Bedrock, AgentCore, or SageMaker resources were found in ap-southeast-2; FinServ GenAI risk checks were not applied to this region.</td>
+            <td class="resolution-text">No action required unless GenAI workloads are expected in this region.</td>
+            <td class="reference-cell"><a href="https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr></tbody></table></div></div>
             </section>
             <section id="risk" class="section">
-                <div class="section-title"><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><polyline points="22 12 18 12 15 21 9 3 6 12 2 12"></polyline></svg>Risk Distribution</div>
+                <div class="section-title"><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><polyline points="22 12 18 12 15 21 9 3 6 12 2 12"/></svg>Risk Distribution</div>
                 <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-bottom: 12px; text-transform: uppercase; letter-spacing: 0.5px;">Pass Rate by Severity</h4>
                 <div class="metrics" style="margin-bottom: 32px;">
-                    <div class="metric danger"><div class="metric-label"><span class="severity high" style="padding: 2px 6px; font-size: 10px;">HIGH</span></div><div class="metric-value">2.2%</div><div class="metric-sub">2 of 90 checks passed</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 2.2%; height: 100%; background: var(--danger);"></div></div></div>
-                    <div class="metric warning"><div class="metric-label"><span class="severity medium" style="padding: 2px 6px; font-size: 10px;">MEDIUM</span></div><div class="metric-value">12.8%</div><div class="metric-sub">5 of 39 checks passed</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 12.8%; height: 100%; background: var(--warning);"></div></div></div>
-                    <div class="metric" style="border-color: var(--accent);"><div class="metric-label"><span class="severity low" style="padding: 2px 6px; font-size: 10px;">LOW</span></div><div class="metric-value" style="color: var(--accent);">25.0%</div><div class="metric-sub">2 of 8 checks passed</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 25.0%; height: 100%; background: var(--accent);"></div></div></div>
-                    <div class="metric"><div class="metric-label">Overall</div><div class="metric-value">6.6%</div><div class="metric-sub">9 of 137 actionable checks</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 6.6%; height: 100%; background: var(--text-3);"></div></div></div>
+                    <div class="metric danger"><div class="metric-label"><span class="severity high" style="padding: 2px 6px; font-size: 10px;">HIGH</span></div><div class="metric-value">50.0%</div><div class="metric-sub">3 of 6 checks passed</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 50.0%; height: 100%; background: var(--danger);"></div></div></div>
+                    <div class="metric warning"><div class="metric-label"><span class="severity medium" style="padding: 2px 6px; font-size: 10px;">MEDIUM</span></div><div class="metric-value">32.1%</div><div class="metric-sub">9 of 28 checks passed</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 32.1%; height: 100%; background: var(--warning);"></div></div></div>
+                    <div class="metric" style="border-color: var(--accent);"><div class="metric-label"><span class="severity low" style="padding: 2px 6px; font-size: 10px;">LOW</span></div><div class="metric-value" style="color: var(--accent);">100.0%</div><div class="metric-sub">3 of 3 checks passed</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 100.0%; height: 100%; background: var(--accent);"></div></div></div>
+                    <div class="metric"><div class="metric-label">Overall</div><div class="metric-value">40.5%</div><div class="metric-sub">15 of 37 actionable checks</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 40.5%; height: 100%; background: var(--text-3);"></div></div></div>
                 </div>
                 
+                <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-bottom: 12px; text-transform: uppercase; letter-spacing: 0.5px;">Risk by Region</h4>
+                <div class="metrics" style="margin-bottom: 32px;"><div class="metric " style="border-left: 3px solid var(--success);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">ap-southeast-2</div><div class="metric-value">0</div><div class="metric-sub"><span style="color: var(--danger);">0 High</span> · <span style="color: var(--warning);">0 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div><div class="metric " style="border-left: 3px solid var(--success);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">eu-west-1</div><div class="metric-value">0</div><div class="metric-sub"><span style="color: var(--danger);">0 High</span> · <span style="color: var(--warning);">0 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div><div class="metric " style="border-left: 3px solid var(--success);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">us-east-1</div><div class="metric-value">0</div><div class="metric-sub"><span style="color: var(--danger);">0 High</span> · <span style="color: var(--warning);">0 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div></div>
                 <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-bottom: 12px; text-transform: uppercase; letter-spacing: 0.5px;">Findings by Service</h4>
                 <div class="metrics">
-                    <div class="metric"><div class="metric-label"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"></path></svg></span> Bedrock</div><div class="metric-value">77</div><div class="metric-sub">69 Failed · 5 Passed</div></div>
-                    <div class="metric"><div class="metric-label"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"></path></svg></span> SageMaker</div><div class="metric-value">33</div><div class="metric-sub">9 Failed · 4 Passed</div></div>
-                    <div class="metric"><div class="metric-label"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"></path></svg></span> AgentCore</div><div class="metric-value">54</div><div class="metric-sub">50 Failed · 0 Passed</div></div>
+                    <div class="metric"><div class="metric-label"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"/></svg></span> Bedrock</div><div class="metric-value">54</div><div class="metric-sub">20 Failed · 1 Passed</div></div>
+                    <div class="metric"><div class="metric-label"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"/></svg></span> SageMaker</div><div class="metric-value">82</div><div class="metric-sub">0 Failed · 13 Passed</div></div>
+                    <div class="metric"><div class="metric-label"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"/></svg></span> AgentCore</div><div class="metric-value">33</div><div class="metric-sub">2 Failed · 1 Passed</div></div>
+                    <div class="metric"><div class="metric-label"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#7C3AED" width="80" height="80"/><path fill="#FFF" d="M40 14 L66 26 L66 31 L14 31 L14 26 Z M20 35 h6 v23 h-6 z M37 35 h6 v23 h-6 z M54 35 h6 v23 h-6 z M14 62 h52 v5 h-52 z"/></svg></span> Financial Services Risk</div><div class="metric-value">3</div><div class="metric-sub">0 Failed · 0 Passed</div></div>
                 </div>
             </section>
             <section id="bedrock" class="section">
-                <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"></path></svg></span>Amazon Bedrock Findings</div>
+                <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"/></svg></span>Amazon Bedrock Findings</div>
                 <div class="filter-bar">
                     <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="bedrockSearchInput"></div>
                     
+                    <div class="filter-group"><label for="bedrockRegionFilter">Region</label><select id="bedrockRegionFilter"><option value="">All Regions</option><option value="ap-southeast-2">ap-southeast-2</option><option value="eu-west-1">eu-west-1</option><option value="us-east-1">us-east-1</option><option value="Global">Global</option></select></div>
                     <div class="filter-group"><label>Severity</label><select id="bedrockSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
                     <div class="filter-group"><label>Status</label><select id="bedrockStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
-                    <button class="btn btn-reset" id="bedrockResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"></path><path d="M3 3v5h5"></path></svg>Reset</button>
+                    <button class="btn btn-reset" id="bedrockResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
                 </div>
-                <div class="card"><div class="table-wrap"><table id="bedrockTable"><thead><tr><th>Account ID</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-dev' has AmazonBedrockFullAccess policy attached</td>
-            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_596' has AmazonBedrockFullAccess policy attached</td>
-            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20240718T155356' has AmazonBedrockFullAccess policy attached</td>
-            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">Role 'dev-spark-gateway-role' has AmazonBedrockFullAccess policy attached</td>
-            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">Role 'documentAnalysis-role-3cf0grlt' has AmazonBedrockFullAccess policy attached</td>
-            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">Role 'SageMakerExecutionRole' has AmazonBedrockFullAccess policy attached</td>
-            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">Role 'StepFunctions-MyStateMachine_EMR_June14_Ver1-role-778c3479' has AmazonBedrockFullAccess policy attached</td>
-            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-01</code></td>
-            <td class="col-domain">AmazonBedrockFullAccess role check</td>
-            <td class="finding-details">Role 'Text2SQLAgentCoreRole' has AmazonBedrockFullAccess policy attached</td>
-            <td class="resolution-text">Limit the AmazonBedrockFullAccess policy only to required access</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-allhttps://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+                <div class="card"><div class="table-wrap"><table id="bedrockTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>BR-02</code></td>
-            <td class="col-domain">Amazon Bedrock private connectivity</td>
-            <td class="finding-details">Bedrock VPC endpoints found: VPC vpc-0a68ff189164b7f73 has endpoint com.amazonaws.us-east-1.bedrock-runtime</td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-1283f02bdc' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-p2p_dev_requisition_agent'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-172fa0f4df' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-code_generation_agent'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-719a4b3125' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-src_main'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-898ee147b4' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-preprocessing'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-976e96fdb5' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-spark_supervisor_agent'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-a7ee536645' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-ray_code_interpreter'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-dd1908825f' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-spark_code_generator'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-dev' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-00e8b7dece' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-registry_search_agent'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-0eac208e7c' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-shipping_update_a2a_20260410093300'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-1a0818645f' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-inventory_reserve_a2a_20260414075052'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-1fc50587d4' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-inventory_reserve_a2a_20260408130800'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-247de8125f' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-inventory_reserve_a2a_20260408142640'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-2673ffbc7a' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260413102236'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-06</code></td>
+            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-2f52cefe03' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-shipping_update_a2a_20260410113054'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-07</code></td>
+            <td class="col-domain">Bedrock Prompt Management Check</td>
+            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
+            <td class="resolution-text">Implement Prompt Management to:
+1. Create and version your prompts
+2. Test different prompt variants
+3. Share prompts across your organization
+4. Maintain consistent prompt templates</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-30f5213efe' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-inventory_reserve_a2a_20260330160258'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-08</code></td>
+            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
+            <td class="finding-details">No Bedrock agents found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-3c541594f7' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-planner_executor_live_agent'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-09</code></td>
+            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::007564470903:assumed-role/aiml-sec-007564470903-BedrockSecurityAssessmentFunc-188U9EAkRKkw/aiml-security-aiml-sec-007564470903-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:007564470903:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-3d2b76013b' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260408114023'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-10</code></td>
+            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
+            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
+            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-3e67e4f442' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-inventory_reserve_a2a_20260413102236'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-11</code></td>
+            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
+            <td class="finding-details">No custom/fine-tuned models found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-4a098d3d5f' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-a2a_pricing_20260319170225'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-12</code></td>
+            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
+            <td class="finding-details">Model invocation logging to S3 is not configured</td>
+            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-4a706ff22d' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-inventory_reserve_a2a_20260407170120'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>BR-13</code></td>
+            <td class="col-domain">Bedrock Flows Guardrails Check</td>
+            <td class="finding-details">No Bedrock Flows found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-5066e98ccf' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-planner_executor_agent'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-5187ed27f6' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260408130800'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-04</code></td>
+            <td class="col-domain">Bedrock Model Invocation Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-52bb2e43bb' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-shipping_update_a2a_20260408114023'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-05</code></td>
+            <td class="col-domain">Bedrock Guardrails Check</td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-637e7c6466' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260323154213'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-06</code></td>
+            <td class="col-domain">Bedrock CloudTrail Logging Check</td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-6e8347baae' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260408142640'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-07</code></td>
+            <td class="col-domain">Bedrock Prompt Management Check</td>
+            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
+            <td class="resolution-text">Implement Prompt Management to:
+1. Create and version your prompts
+2. Test different prompt variants
+3. Share prompts across your organization
+4. Maintain consistent prompt templates</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-6ff375fe7f' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-inventory_reserve_a2a_20260410093300'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-08</code></td>
+            <td class="col-domain">Bedrock Agent IAM Roles Check</td>
+            <td class="finding-details">No Bedrock agents found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-7e8b6d010a' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-shipping_update_a2a_20260407170120'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-09</code></td>
+            <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::007564470903:assumed-role/aiml-sec-007564470903-BedrockSecurityAssessmentFunc-188U9EAkRKkw/aiml-security-aiml-sec-007564470903-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:007564470903:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-84ccb169b5' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-shipping_update_a2a_20260323154213'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-10</code></td>
+            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
+            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
+            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-852fb81a81' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-executor_live_agent'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-11</code></td>
+            <td class="col-domain">Bedrock Custom Model Encryption Check</td>
+            <td class="finding-details">No custom/fine-tuned models found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-86fa212e48' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260407170120'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-12</code></td>
+            <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
+            <td class="finding-details">Model invocation logging to S3 is not configured</td>
+            <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-8f1b8fff63' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-shipping_update_a2a_20260414075052'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>BR-13</code></td>
+            <td class="col-domain">Bedrock Flows Guardrails Check</td>
+            <td class="finding-details">No Bedrock Flows found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-01</code></td>
+            <td class="col-domain">AmazonBedrockFullAccess role check</td>
+            <td class="finding-details">No roles found with AmazonBedrockFullAccess policy</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-agent.html#iam-agents-ex-all
+https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_id-based-policy-examples-br-studio.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-97fe9e80f5' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-shipping_update_a2a_20260413102236'</td>
+            <td class="finding-details">Role 'aws-elasticbeanstalk-ec2-role' has overly permissive marketplace subscription access through policy 'AWSElasticBeanstalkMulticontainerDocker'</td>
             <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-ad328e166e' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-inventory_reserve_a2a_20260410113054'</td>
+            <td class="finding-details">Role 'RescoAppStack-Ec2Role2FD9A272-UB7xzDXt03Lg' has overly permissive marketplace subscription access through policy 'AWSElasticBeanstalkWebTier'</td>
             <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-b13f236cac' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260410093300'</td>
+            <td class="finding-details">Role 'xray-sample-SampleInstanceProfileRole-1WB21O2X8T7ZV' has overly permissive marketplace subscription access through policy 'AWSElasticBeanstalkWebTier'</td>
             <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-c552f21a07' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-inventory_reserve_a2a_20260323154213'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AIMLSecurityMemberRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-caa535c28c' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-inventory_reserve_a2a_20260408114023'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AmazonQInvestigationRole-DefaultInvestigationGroup-ma74at' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-d23a62e8d6' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-shipping_update_a2a_20260408142640'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'aws-elasticbeanstalk-ec2-role' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-d2c64a0d7c' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-shipping_update_a2a_20260408130800'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AwsSecurityAudit' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-d97a74ec98' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260407162243'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AWSServiceRoleForAuditManager' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-e0803b3275' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-planner_live_agent'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'AWSServiceRoleForSupport' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-e37cc54f7d' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260414075052'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-007564470903-us-east-1' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-eebb74e3c1' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260410113054'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CloudSecAuditRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-ef4dff8fbb' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-shipping_update_a2a_20260330160258'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'CloudSeerTrustedServiceRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-fa4b848707' has overly permissive marketplace subscription access through policy 'BedrockAgentCoreRuntimeExecutionPolicy-payment_refund_a2a_20260330160258'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'IibsAdminAccess-DO-NOT-DELETE' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_596' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'InternalAuditInternal' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonBedrockExecutionRoleForKnowledgeBase_usp39' has overly permissive marketplace subscription access through policy 'AmazonBedrockFoundationModelPolicyForKnowledgeBase_usp39'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'Nova-DO-NOT-DELETE' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20240718T155356' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'ReSCOAIMLMemberRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'dev-spark-gateway-role' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'RescoAppStack-Ec2Role2FD9A272-UB7xzDXt03Lg' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'documentAnalysis-role-3cf0grlt' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'ScoutSuiteRole' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'SageMakerExecutionRole' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'SecurityHubGenAISummary-IAMRolefnCreateSummary-ulVA50wgXCG3' last accessed Bedrock on 2024-09-06</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'StepFunctions-MyStateMachine_EMR_June14_Ver1-role-778c3479' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>BR-14</code></td>
+            <td class="col-domain">Stale Bedrock Access Check</td>
+            <td class="finding-details">Role 'xray-sample-SampleInstanceProfileRole-1WB21O2X8T7ZV' last accessed Bedrock on never</td>
+            <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-03</code></td>
-            <td class="col-domain">Marketplace Subscription Access Check</td>
-            <td class="finding-details">Role 'Text2SQLAgentCoreRole' has overly permissive marketplace subscription access through policy 'AmazonBedrockFullAccess'</td>
-            <td class="resolution-text">Ensure that users have access to only the models that you want user to be able to subscribe to based on your organizational policies. For example, you may want users to have access to only text based models and not image and video generation model. This can also help to keep cost in check.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-bedrock-marketplace" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>BR-02</code></td>
+            <td class="col-domain">Amazon Bedrock private connectivity check</td>
+            <td class="finding-details">No regional Bedrock resources found to assess private connectivity</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/vpc-interface-endpoints.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
-            <td class="finding-details">Model invocation logging is properly configured with delivery to: CloudWatch Logs</td>
+            <td class="finding-details">No regional Bedrock resources found to monitor with invocation logging</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
-            <td class="finding-details">Amazon Bedrock Guardrails are properly configured with 2 guardrails</td>
-            <td class="resolution-text">No action required. Continue monitoring and updating guardrails as needed.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td class="finding-details">No regional Bedrock resources found to protect with guardrails</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
-            <td class="finding-details">CloudTrail is properly configured to log Bedrock API activity in trails: IsengardTrail-DO-NOT-DELETE</td>
-            <td class="resolution-text">No action required. Continue monitoring CloudTrail logs for Bedrock activity.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td class="finding-details">No regional Bedrock resources found to audit with Bedrock-specific CloudTrail coverage</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/logging-using-cloudtrail.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="low" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
-            <td class="finding-details">Prompt Management is being used with 8 prompts (0 active, 0 draft)</td>
-            <td class="resolution-text">No action required. Continue using Prompt Management for consistent and optimized prompts.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity low">Low</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td class="finding-details">Prompt Management feature is not being used. This may lead to inconsistent prompt handling and suboptimal model responses.</td>
+            <td class="resolution-text">Implement Prompt Management to:
+1. Create and version your prompts
+2. Test different prompt variants
+3. Share prompts across your organization
+4. Maintain consistent prompt templates</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
             <td class="finding-details">No Bedrock agents found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Error during check: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::111111111111:assumed-role/aiml-sec-111111111111-BedrockSecurityAssessmentFunc-Y0UusK2qLzg4/aiml-security-aiml-sec-111111111111-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:111111111111:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
-            <td class="resolution-text">Investigate error and retry assessment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::007564470903:assumed-role/aiml-sec-007564470903-BedrockSecurityAssessmentFunc-188U9EAkRKkw/aiml-security-aiml-sec-007564470903-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:007564470903:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-10</code></td>
-            <td class="col-domain">Bedrock Guardrail IAM Enforcement Missing</td>
-            <td class="finding-details">The following roles can invoke Bedrock models without enforced guardrails: agent-bedrockagentsworkscommendationagent-09509a29-bedrockagent, agent-bedrockagentsworkstinformationagent-1116948c-bedrockagent, AmazonBedrockAgentCoreHarnessDefaultServiceRole-43djr, AmazonBedrockAgentCoreSDKRuntime-us-east-1-1283f02bdc, AmazonBedrockAgentCoreSDKRuntime-us-east-1-172fa0f4df, AmazonBedrockAgentCoreSDKRuntime-us-east-1-719a4b3125, AmazonBedrockAgentCoreSDKRuntime-us-east-1-898ee147b4, AmazonBedrockAgentCoreSDKRuntime-us-east-1-976e96fdb5, AmazonBedrockAgentCoreSDKRuntime-us-east-1-a7ee536645, AmazonBedrockAgentCoreSDKRuntime-us-east-1-dd1908825f...</td>
-            <td class="resolution-text">Add IAM policy conditions to enforce guardrail usage:
-1. Use 'bedrock:GuardrailIdentifier' condition key
-2. Specify required guardrail ARN or ID
-3. Example: "Condition": {"StringEquals": {"bedrock:GuardrailIdentifier": "arn:aws:bedrock:region:account:guardrail/guardrail-id"}}</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
+            <td class="finding-details">No guardrails configured - IAM enforcement check not applicable</td>
+            <td class="resolution-text">Configure Bedrock Guardrails first, then enforce their use via IAM policies</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/guardrails-permissions-id.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
             <td class="finding-details">No custom/fine-tuned models found in the account</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-custom-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
             <td class="finding-details">Model invocation logging to S3 is not configured</td>
             <td class="resolution-text">If logging is enabled to CloudWatch only, ensure CloudWatch log group uses CMK encryption</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/model-invocation-logging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-13</code></td>
-            <td class="col-domain">Bedrock Flow Missing Guardrails</td>
-            <td class="finding-details">Flow 'document-processing-bedrock-prompt-flows-IDP_BANKSTMT' has nodes without guardrails configured: map_to_json (Prompt). Without guardrails, intermediate steps can generate harmful content.</td>
-            <td class="resolution-text">1. Configure guardrails on Prompt nodes via guardrailConfiguration
-2. Configure guardrails on Knowledge Base nodes when using RetrieveAndGenerate
-3. Apply organization-wide guardrail enforcement policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-13</code></td>
-            <td class="col-domain">Bedrock Flow Missing Guardrails</td>
-            <td class="finding-details">Flow 'document-processing-bedrock-prompt-flows-IDP_CLASSIFY' has nodes without guardrails configured: classify_document (Prompt). Without guardrails, intermediate steps can generate harmful content.</td>
-            <td class="resolution-text">1. Configure guardrails on Prompt nodes via guardrailConfiguration
-2. Configure guardrails on Knowledge Base nodes when using RetrieveAndGenerate
-3. Apply organization-wide guardrail enforcement policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-13</code></td>
-            <td class="col-domain">Bedrock Flow Missing Guardrails</td>
-            <td class="finding-details">Flow 'document-processing-bedrock-prompt-flows-IDP_DRIVERS_LIC' has nodes without guardrails configured: map_to_json (Prompt), analyze_doc (Prompt). Without guardrails, intermediate steps can generate harmful content.</td>
-            <td class="resolution-text">1. Configure guardrails on Prompt nodes via guardrailConfiguration
-2. Configure guardrails on Knowledge Base nodes when using RetrieveAndGenerate
-3. Apply organization-wide guardrail enforcement policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-13</code></td>
-            <td class="col-domain">Bedrock Flow Missing Guardrails</td>
-            <td class="finding-details">Flow 'document-processing-bedrock-prompt-flows-IDP_FORREVIEW' has nodes without guardrails configured: analyze_doc (Prompt). Without guardrails, intermediate steps can generate harmful content.</td>
-            <td class="resolution-text">1. Configure guardrails on Prompt nodes via guardrailConfiguration
-2. Configure guardrails on Knowledge Base nodes when using RetrieveAndGenerate
-3. Apply organization-wide guardrail enforcement policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>BR-13</code></td>
-            <td class="col-domain">Bedrock Flow Missing Guardrails</td>
-            <td class="finding-details">Flow 'document-processing-bedrock-prompt-flows-IDP_URLA1003' has nodes without guardrails configured: map_to_json (Prompt), analyze_doc (Prompt). Without guardrails, intermediate steps can generate harmful content.</td>
-            <td class="resolution-text">1. Configure guardrails on Prompt nodes via guardrailConfiguration
-2. Configure guardrails on Knowledge Base nodes when using RetrieveAndGenerate
-3. Apply organization-wide guardrail enforcement policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>BR-13</code></td>
-            <td class="col-domain">Bedrock Flow Missing Guardrails</td>
-            <td class="finding-details">Flow 'idp_paystub' has nodes without guardrails configured: map_to_json (Prompt). Without guardrails, intermediate steps can generate harmful content.</td>
-            <td class="resolution-text">1. Configure guardrails on Prompt nodes via guardrailConfiguration
-2. Configure guardrails on Knowledge Base nodes when using RetrieveAndGenerate
-3. Apply organization-wide guardrail enforcement policies</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="col-domain">Bedrock Flows Guardrails Check</td>
+            <td class="finding-details">No Bedrock Flows found in the account</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/flows-guardrails.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr></tbody></table></div></div>
             </section>
             <section id="sagemaker" class="section">
-                <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"></path></svg></span>Amazon SageMaker Findings</div>
+                <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"/></svg></span>Amazon SageMaker Findings</div>
                 <div class="filter-bar">
                     <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="sagemakerSearchInput"></div>
                     
+                    <div class="filter-group"><label for="sagemakerRegionFilter">Region</label><select id="sagemakerRegionFilter"><option value="">All Regions</option><option value="ap-southeast-2">ap-southeast-2</option><option value="eu-west-1">eu-west-1</option><option value="us-east-1">us-east-1</option><option value="Global">Global</option></select></div>
                     <div class="filter-group"><label>Severity</label><select id="sagemakerSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
                     <div class="filter-group"><label>Status</label><select id="sagemakerStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
-                    <button class="btn btn-reset" id="sagemakerResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"></path><path d="M3 3v5h5"></path></svg>Reset</button>
+                    <button class="btn btn-reset" id="sagemakerResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
                 </div>
-                <div class="card"><div class="table-wrap"><table id="sagemakerTable"><thead><tr><th>Account ID</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+                <div class="card"><div class="table-wrap"><table id="sagemakerTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-01</code></td>
+            <td class="col-domain">SageMaker Internet Access Check</td>
+            <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-03</code></td>
+            <td class="col-domain">Data Protection Check</td>
+            <td class="finding-details">No SageMaker resources found to check for data protection</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-04</code></td>
+            <td class="col-domain">GuardDuty Enabled</td>
+            <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Model Registry Issue</td>
+            <td class="finding-details">No model package groups found</td>
+            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Feature Store Issue</td>
+            <td class="finding-details">No feature groups found</td>
+            <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Pipelines Issue</td>
+            <td class="finding-details">No ML pipelines found</td>
+            <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-06</code></td>
+            <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
+            <td class="finding-details">No SageMaker Clarify jobs found</td>
+            <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-07</code></td>
+            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
+            <td class="finding-details">No Model Monitor schedules found</td>
+            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-08</code></td>
+            <td class="col-domain">Model Registry Registry Not Used</td>
+            <td class="finding-details">Model Registry is not being utilized</td>
+            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-09</code></td>
+            <td class="col-domain">SageMaker Notebook Root Access Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-10</code></td>
+            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-11</code></td>
+            <td class="col-domain">SageMaker Model Network Isolation Check</td>
+            <td class="finding-details">No models found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-12</code></td>
+            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
+            <td class="finding-details">No InService endpoints found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-13</code></td>
+            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
+            <td class="finding-details">No monitoring schedules found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-14</code></td>
+            <td class="col-domain">SageMaker Model Repository Access Check</td>
+            <td class="finding-details">No models found or all use default Platform access</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-15</code></td>
+            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
+            <td class="finding-details">No feature groups with offline stores found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-16</code></td>
+            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
+            <td class="finding-details">No data quality job definitions found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-17</code></td>
+            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
+            <td class="finding-details">No processing jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-18</code></td>
+            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
+            <td class="finding-details">No transform jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-19</code></td>
+            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
+            <td class="finding-details">No hyperparameter tuning jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-20</code></td>
+            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
+            <td class="finding-details">No compilation jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-21</code></td>
+            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
+            <td class="finding-details">No AutoML jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-22</code></td>
+            <td class="col-domain">Model Approval Workflow Check</td>
+            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
+            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-23</code></td>
+            <td class="col-domain">Model Drift Detection Check</td>
+            <td class="finding-details">No InService endpoints found to monitor.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-24</code></td>
+            <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
+            <td class="finding-details">No InService endpoints found.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status success">Passed</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>SM-25</code></td>
+            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
+            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
+            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
             <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker Full Access Policy Used</td>
-            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20240718T155356' has AmazonSageMakerFullAccess policy attached</td>
-            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker Full Access Policy Used</td>
-            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20250904T122836' has AmazonSageMakerFullAccess policy attached</td>
-            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker Full Access Policy Used</td>
-            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20250904T123002' has AmazonSageMakerFullAccess policy attached</td>
-            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker Full Access Policy Used</td>
-            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20250904T135264' has AmazonSageMakerFullAccess policy attached</td>
-            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker Full Access Policy Used</td>
-            <td class="finding-details">Role 'AmazonSageMaker-ExecutionRole-20250904T135344' has AmazonSageMakerFullAccess policy attached</td>
-            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker Full Access Policy Used</td>
-            <td class="finding-details">Role 'AmazonSageMakerServiceCatalogProductsExecutionRole' has AmazonSageMakerFullAccess policy attached</td>
-            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-02</code></td>
-            <td class="col-domain">SageMaker Full Access Policy Used</td>
-            <td class="finding-details">Role 'SageMakerExecutionRole' has AmazonSageMakerFullAccess policy attached</td>
-            <td class="resolution-text">Replace AmazonSageMakerFullAccess with more restrictive custom policies that follow the principle of least privilege</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
             <td class="finding-details">No SageMaker resources found to check for data protection</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
             <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
-            <td class="finding-details">Model group 'mlops-model-registry-5c8007a2' has minimal versioning</td>
+            <td class="finding-details">No model package groups found</td>
             <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity low">Low</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
             <td class="finding-details">No feature groups found</td>
             <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
             <td class="finding-details">No ML pipelines found</td>
             <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
             <td class="finding-details">No SageMaker Clarify jobs found</td>
             <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
             <td class="finding-details">No Model Monitor schedules found</td>
             <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-08</code></td>
-            <td class="col-domain">Model Registry Empty Model Group</td>
-            <td class="finding-details">Model group mlops-model-registry-5c8007a2 has no registered models</td>
+            <td class="col-domain">Model Registry Registry Not Used</td>
+            <td class="finding-details">Model Registry is not being utilized</td>
             <td class="resolution-text">Implement proper model versioning and approval workflows</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity low">Low</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
             <td class="finding-details">No notebook instances found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
             <td class="finding-details">No notebook instances found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
             <td class="finding-details">No models found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
             <td class="finding-details">No InService endpoints found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
             <td class="finding-details">No monitoring schedules found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
             <td class="finding-details">No models found or all use default Platform access</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
             <td class="finding-details">No feature groups with offline stores found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
             <td class="finding-details">No data quality job definitions found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
             <td class="finding-details">No processing jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
             <td class="finding-details">No transform jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
             <td class="finding-details">No hyperparameter tuning jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
             <td class="finding-details">No compilation jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
             <td class="finding-details">No AutoML jobs found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
-            <td class="finding-details">Checked 1 model package groups. Approval workflows appear to be properly configured.</td>
-            <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status success">Passed</span></td>
+            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
+            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
             <td class="finding-details">No InService endpoints found to monitor.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
             <td class="finding-details">No InService endpoints found.</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
             <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
             <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
-        </tr></tbody></table></div></div>
-            </section>
-            <section id="agentcore" class="section">
-                <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"></path></svg></span>Amazon Bedrock AgentCore Findings</div>
-                <div class="filter-bar">
-                    <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="agentcoreSearchInput"></div>
-                    
-                    <div class="filter-group"><label>Severity</label><select id="agentcoreSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
-                    <div class="filter-group"><label>Status</label><select id="agentcoreStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
-                    <button class="btn btn-reset" id="agentcoreResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"></path><path d="M3 3v5h5"></path></svg>Reset</button>
-                </div>
-                <div class="card"><div class="table-wrap"><table id="agentcoreTable"><thead><tr><th>Account ID</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274613' (text2sql_simple_agent_v1759274613-B7B0PS35bM) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274400' (text2sql_simple_agent_v1759274400-PDMjxY4Xhk) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker IAM Permissions Check</td>
+            <td class="finding-details">No issues found with IAM permissions and no stale access detected</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274210' (text2sql_simple_agent_v1759274210-Df71lAGU3G) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-01</code></td>
+            <td class="col-domain">SageMaker Internet Access Check</td>
+            <td class="finding-details">No SageMaker notebook instances or domains found to check</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/infrastructure-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274021' (text2sql_simple_agent_v1759274021-PIUlTqB0B3) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-02</code></td>
+            <td class="col-domain">SageMaker SSO Configuration Check</td>
+            <td class="finding-details">No SageMaker domains found, or all domains use SSO with IAM Identity Center configured</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.amazon.com/blogs/machine-learning/team-and-user-management-with-amazon-sagemaker-and-aws-sso/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent' (text2sql_simple_agent-st6aToAvPC) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-03</code></td>
+            <td class="col-domain">Data Protection Check</td>
+            <td class="finding-details">No SageMaker resources found to check for data protection</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'src_main' (src_main-kED9SX6C3I) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-04</code></td>
+            <td class="col-domain">GuardDuty Enabled</td>
+            <td class="finding-details">Amazon GuardDuty is properly enabled and monitoring for security threats in SageMaker workloads.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/guardduty/latest/ug/ai-protection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity medium">Medium</span></td>
+            <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'spark_supervisor_agent' (spark_supervisor_agent-LUFQfC7cMH) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Model Registry Issue</td>
+            <td class="finding-details">No model package groups found</td>
+            <td class="resolution-text">Implement model versioning using SageMaker Model Registry to track model lineage, approve model versions, and manage model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'spark_code_generator' (spark_code_generator-Q8EJ8p53TZ) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Feature Store Issue</td>
+            <td class="finding-details">No feature groups found</td>
+            <td class="resolution-text">Utilize SageMaker Feature Store to create, share, and manage features for machine learning development and production</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'ray_code_interpreter' (ray_code_interpreter-5OXxb1FQfD) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-05</code></td>
+            <td class="col-domain">SageMaker Pipelines Issue</td>
+            <td class="finding-details">No ML pipelines found</td>
+            <td class="resolution-text">Implement SageMaker Pipelines to automate and manage ML workflows, including data preparation, training, and model deployment</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mlops.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-01</code></td>
-            <td class="col-domain">AgentCore Runtime VPC Configuration</td>
-            <td class="finding-details">Runtime 'preprocessing' (preprocessing-wR5DQzHFL5) is not configured with VPC. This exposes the runtime to public internet.</td>
-            <td class="resolution-text">Configure VPC with private subnets and required VPC endpoints (ECR, S3, CloudWatch Logs)</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-06</code></td>
+            <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
+            <td class="finding-details">No SageMaker Clarify jobs found</td>
+            <td class="resolution-text">Implement SageMaker Clarify for model explainability and bias detection</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/clarify-configure-processing-jobs.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-02</code></td>
-            <td class="col-domain">AgentCore IAM Full Access Policy</td>
-            <td class="finding-details">The following roles have BedrockAgentCoreFullAccess policy: ToolsGatewayRole-20260323134736, ToolsGatewayRole-20260330152147, ToolsGatewayRole-20260330153357, ToolsGatewayRole-20260408130204, ToolsGatewayRole-20260408141949</td>
-            <td class="resolution-text">Replace with least-privilege policies scoped to specific AgentCore resources and actions</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-07</code></td>
+            <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
+            <td class="finding-details">No Model Monitor schedules found</td>
+            <td class="resolution-text">Configure comprehensive model monitoring schedules</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-03</code></td>
-            <td class="col-domain">AgentCore Unused Permissions</td>
-            <td class="finding-details">The following principals have AgentCore permissions but have never accessed the service: role 'AIMLSecurityMemberRole', role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-1283f02bdc', role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-172fa0f4df', role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-719a4b3125', role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-898ee147b4', role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-a7ee536645', role 'AmazonBedrockAgentCoreSDKRuntime-us-east-1-dd1908825f', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-0eac208e7c', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-1a0818645f', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-1fc50587d4', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-247de8125f', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-2673ffbc7a', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-2f52cefe03', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-30f5213efe', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-3c541594f7', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-3d2b76013b', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-3e67e4f442', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-4a098d3d5f', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-4a706ff22d', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-5066e98ccf', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-5187ed27f6', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-52bb2e43bb', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-637e7c6466', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-6e8347baae', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-6ff375fe7f', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-7e8b6d010a', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-84ccb169b5', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-86fa212e48', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-8f1b8fff63', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-97fe9e80f5', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-ad328e166e', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-b13f236cac', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-c552f21a07', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-caa535c28c', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-d23a62e8d6', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-d2c64a0d7c', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-d97a74ec98', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-e37cc54f7d', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-eebb74e3c1', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-ef4dff8fbb', role 'AmazonBedrockAgentCoreSDKRuntime-us-west-2-fa4b848707', role 'dev-spark-gateway-role', role 'myresearchagent_myresearchagent', role 'p2p-dev-agentcore-execution-role', role 'ToolsGatewayRole-20260323134736', role 'ToolsGatewayRole-20260330152147', role 'ToolsGatewayRole-20260330153357', role 'ToolsGatewayRole-20260408130204', role 'ToolsGatewayRole-20260408141949'</td>
-            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-08</code></td>
+            <td class="col-domain">Model Registry Registry Not Used</td>
+            <td class="finding-details">Model Registry is not being utilized</td>
+            <td class="resolution-text">Implement proper model versioning and approval workflows</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274613' (text2sql_simple_agent_v1759274613-B7B0PS35bM) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-09</code></td>
+            <td class="col-domain">SageMaker Notebook Root Access Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/nbi-root-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274613' (text2sql_simple_agent_v1759274613-B7B0PS35bM) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-10</code></td>
+            <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
+            <td class="finding-details">No notebook instances found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/appendix-notebook-and-internet-access.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274400' (text2sql_simple_agent_v1759274400-PDMjxY4Xhk) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-11</code></td>
+            <td class="col-domain">SageMaker Model Network Isolation Check</td>
+            <td class="finding-details">No models found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/mkt-algo-model-internet-free.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274400' (text2sql_simple_agent_v1759274400-PDMjxY4Xhk) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-12</code></td>
+            <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
+            <td class="finding-details">No InService endpoints found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/endpoint-auto-scaling.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274210' (text2sql_simple_agent_v1759274210-Df71lAGU3G) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-13</code></td>
+            <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
+            <td class="finding-details">No monitoring schedules found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-network-isolation.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274210' (text2sql_simple_agent_v1759274210-Df71lAGU3G) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-14</code></td>
+            <td class="col-domain">SageMaker Model Repository Access Check</td>
+            <td class="finding-details">No models found or all use default Platform access</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-container-repositories.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-15</code></td>
+            <td class="col-domain">SageMaker Feature Store Encryption Check</td>
+            <td class="finding-details">No feature groups with offline stores found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/feature-store-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-16</code></td>
+            <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
+            <td class="finding-details">No data quality job definitions found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-data-quality.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-17</code></td>
+            <td class="col-domain">SageMaker Processing Job Encryption Check</td>
+            <td class="finding-details">No processing jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/processing-job.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-18</code></td>
+            <td class="col-domain">SageMaker Transform Job Encryption Check</td>
+            <td class="finding-details">No transform jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/batch-transform.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-19</code></td>
+            <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
+            <td class="finding-details">No hyperparameter tuning jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/automatic-model-tuning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-20</code></td>
+            <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
+            <td class="finding-details">No compilation jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/neo.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-21</code></td>
+            <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
+            <td class="finding-details">No AutoML jobs found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-security.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-22</code></td>
+            <td class="col-domain">Model Approval Workflow Check</td>
+            <td class="finding-details">No model package groups found. Model Registry is not being used for model governance.</td>
+            <td class="resolution-text">Implement Model Registry to track model versions and enforce approval workflows before production deployment.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-registry-approve.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274021' (text2sql_simple_agent_v1759274021-PIUlTqB0B3) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-23</code></td>
+            <td class="col-domain">Model Drift Detection Check</td>
+            <td class="finding-details">No InService endpoints found to monitor.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274021' (text2sql_simple_agent_v1759274021-PIUlTqB0B3) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-24</code></td>
+            <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
+            <td class="finding-details">No InService endpoints found.</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/model-ab-testing.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity low">Low</span></td>
+            <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent' (text2sql_simple_agent-st6aToAvPC) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>SM-25</code></td>
+            <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
+            <td class="finding-details">No SageMaker Experiments found. ML Lineage tracking through Experiments is not being utilized.</td>
+            <td class="resolution-text">Implement SageMaker Experiments to track ML training runs, hyperparameters, metrics, and model artifacts. This enables reproducibility and auditability.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/sagemaker/latest/dg/experiments.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr></tbody></table></div></div>
+            </section>
+            <section id="agentcore" class="section">
+                <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"/></svg></span>Amazon Bedrock AgentCore Findings</div>
+                <div class="filter-bar">
+                    <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="agentcoreSearchInput"></div>
+
+                    <div class="filter-group"><label for="agentcoreRegionFilter">Region</label><select id="agentcoreRegionFilter"><option value="">All Regions</option><option value="ap-southeast-2">ap-southeast-2</option><option value="eu-west-1">eu-west-1</option><option value="us-east-1">us-east-1</option><option value="Global">Global</option></select></div>
+                    <div class="filter-group"><label>Severity</label><select id="agentcoreSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
+                    <div class="filter-group"><label>Status</label><select id="agentcoreStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
+                    <button class="btn btn-reset" id="agentcoreResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
+                </div>
+                <div class="card"><div class="table-wrap"><table id="agentcoreTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
             <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent' (text2sql_simple_agent-st6aToAvPC) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="col-domain">AgentCore Observability Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'src_main' (src_main-kED9SX6C3I) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-05</code></td>
+            <td class="col-domain">AgentCore Encryption Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'src_main' (src_main-kED9SX6C3I) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
+            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'spark_supervisor_agent' (spark_supervisor_agent-LUFQfC7cMH) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Configuration Check</td>
+            <td class="finding-details">No Memory resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'spark_supervisor_agent' (spark_supervisor_agent-LUFQfC7cMH) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-13</code></td>
+            <td class="col-domain">AgentCore Gateway Configuration Check</td>
+            <td class="finding-details">No Gateway resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'spark_code_generator' (spark_code_generator-Q8EJ8p53TZ) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-08</code></td>
+            <td class="col-domain">AgentCore VPC Endpoints Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'spark_code_generator' (spark_code_generator-Q8EJ8p53TZ) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-10</code></td>
+            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
+            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'ray_code_interpreter' (ray_code_interpreter-5OXxb1FQfD) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-11</code></td>
+            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
+            <td class="finding-details">No Policy Engines found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'ray_code_interpreter' (ray_code_interpreter-5OXxb1FQfD) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>AC-12</code></td>
+            <td class="col-domain">AgentCore Gateway Encryption Check</td>
+            <td class="finding-details">No Gateways found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
-            <td class="finding-details">Runtime 'preprocessing' (preprocessing-wR5DQzHFL5) does not have CloudWatch Logs configured</td>
-            <td class="resolution-text">Enable CloudWatch Logs for monitoring and troubleshooting</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>AC-04</code></td>
-            <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
-            <td class="finding-details">Runtime 'preprocessing' (preprocessing-wR5DQzHFL5) does not have X-Ray tracing enabled</td>
-            <td class="resolution-text">Enable X-Ray tracing for distributed tracing and performance analysis</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="col-domain">AgentCore Observability Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="low" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
             <td><code>AC-05</code></td>
-            <td class="col-domain">AgentCore ECR Repository AWS-Managed Keys</td>
-            <td class="finding-details">ECR repository 'bedrock-agentcore-ray_code_interpreter' uses AWS-managed keys instead of customer-managed KMS keys</td>
-            <td class="resolution-text">Consider using customer-managed KMS keys for better control and audit capabilities</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity low">Low</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="col-domain">AgentCore Encryption Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="low" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-05</code></td>
-            <td class="col-domain">AgentCore ECR Repository AWS-Managed Keys</td>
-            <td class="finding-details">ECR repository 'bedrock-agentcore-spark_code_generator' uses AWS-managed keys instead of customer-managed KMS keys</td>
-            <td class="resolution-text">Consider using customer-managed KMS keys for better control and audit capabilities</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity low">Low</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
+            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="low" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-05</code></td>
-            <td class="col-domain">AgentCore ECR Repository AWS-Managed Keys</td>
-            <td class="finding-details">ECR repository 'bedrock-agentcore-spark_supervisor_agent' uses AWS-managed keys instead of customer-managed KMS keys</td>
-            <td class="resolution-text">Consider using customer-managed KMS keys for better control and audit capabilities</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity low">Low</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-07</code></td>
+            <td class="col-domain">AgentCore Memory Configuration Check</td>
+            <td class="finding-details">No Memory resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="low" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-05</code></td>
-            <td class="col-domain">AgentCore ECR Repository AWS-Managed Keys</td>
-            <td class="finding-details">ECR repository 'bedrock-agentcore-code_generation_agent' uses AWS-managed keys instead of customer-managed KMS keys</td>
-            <td class="resolution-text">Consider using customer-managed KMS keys for better control and audit capabilities</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity low">Low</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-13</code></td>
+            <td class="col-domain">AgentCore Gateway Configuration Check</td>
+            <td class="finding-details">No Gateway resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274613' (text2sql_simple_agent_v1759274613-B7B0PS35bM) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-08</code></td>
+            <td class="col-domain">AgentCore VPC Endpoints Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274400' (text2sql_simple_agent_v1759274400-PDMjxY4Xhk) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-10</code></td>
+            <td class="col-domain">AgentCore Resource-Based Policies Check</td>
+            <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274210' (text2sql_simple_agent_v1759274210-Df71lAGU3G) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-11</code></td>
+            <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
+            <td class="finding-details">No Policy Engines found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent_v1759274021' (text2sql_simple_agent_v1759274021-PIUlTqB0B3) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>AC-12</code></td>
+            <td class="col-domain">AgentCore Gateway Encryption Check</td>
+            <td class="finding-details">No Gateways found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'text2sql_simple_agent' (text2sql_simple_agent-st6aToAvPC) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-02</code></td>
+            <td class="col-domain">AgentCore IAM Full Access Check</td>
+            <td class="finding-details">No roles with overly permissive AgentCore access found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/security-iam-awsmanpol.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity high">High</span></td>
+            <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'src_main' (src_main-kED9SX6C3I) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-03</code></td>
+            <td class="col-domain">AgentCore Unused Permissions</td>
+            <td class="finding-details">The following principals have AgentCore permissions but have never accessed the service: role 'AIMLSecurityMemberRole', role 'ReSCOAIMLMemberRole'</td>
+            <td class="resolution-text">Review and remove unused AgentCore permissions following least privilege principle</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'spark_supervisor_agent' (spark_supervisor_agent-LUFQfC7cMH) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
+            <td><code>007564470903</code></td>
+            <td><code>Global</code></td>
+            <td><code>AC-09</code></td>
+            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
+            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
+            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'spark_code_generator' (spark_code_generator-Q8EJ8p53TZ) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-01</code></td>
+            <td class="col-domain">AgentCore VPC Configuration Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/security/agentcore-vpc.md" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'ray_code_interpreter' (ray_code_interpreter-5OXxb1FQfD) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-04</code></td>
+            <td class="col-domain">AgentCore Observability Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/observability/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-06</code></td>
-            <td class="col-domain">AgentCore Runtime Storage Configuration</td>
-            <td class="finding-details">Runtime 'preprocessing' (preprocessing-wR5DQzHFL5) does not have storage configuration for browser tools</td>
-            <td class="resolution-text">Configure S3 storage for browser tool session recordings and artifacts</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-05</code></td>
+            <td class="col-domain">AgentCore Encryption Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/key-management.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-07</code></td>
-            <td class="col-domain">AgentCore Memory Encryption</td>
-            <td class="finding-details">Memory 'medical_document_processor_mem-LhFLMY3S5p' (medical_document_processor_mem-LhFLMY3S5p) does not have customer-managed encryption configured</td>
-            <td class="resolution-text">Enable encryption with customer-managed KMS keys</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>AC-06</code></td>
+            <td class="col-domain">AgentCore Browser Tool Recording Check</td>
+            <td class="finding-details">No AgentCore Runtimes found to check browser tool configuration</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/browser/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-07</code></td>
-            <td class="col-domain">AgentCore Memory Encryption</td>
-            <td class="finding-details">Memory 'src_main_mem-4lA3j7DkLB' (src_main_mem-4lA3j7DkLB) does not have customer-managed encryption configured</td>
-            <td class="resolution-text">Enable encryption with customer-managed KMS keys</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="col-domain">AgentCore Memory Configuration Check</td>
+            <td class="finding-details">No Memory resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/memory/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
             <td class="finding-details">No Gateway resources found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://aws.github.io/bedrock-agentcore-starter-toolkit/user-guide/gateway/" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-08</code></td>
-            <td class="col-domain">AgentCore VPC Endpoints Missing</td>
-            <td class="finding-details">No AgentCore VPC endpoints found in 2 VPCs. AgentCore API traffic traverses public internet, exposing it to interception.</td>
-            <td class="resolution-text">Create VPC interface endpoints for AgentCore services:
-1. com.amazonaws.region.bedrock-agentcore
-2. com.amazonaws.region.bedrock-agentcore-control
-3. com.amazonaws.region.bedrock-agentcore-runtime
-This enables private connectivity via AWS PrivateLink</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity high">High</span></td>
-            <td><span class="status error">Failed</span></td>
-        </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111">
-            <td><code>111111111111</code></td>
-            <td><code>AC-09</code></td>
-            <td class="col-domain">AgentCore Service-Linked Role Missing</td>
-            <td class="finding-details">Service-linked role 'AWSServiceRoleForBedrockAgentCoreNetwork' does not exist. VPC configuration for AgentCore Runtimes will fail without this role.</td>
-            <td class="resolution-text">The service-linked role is automatically created when you configure VPC for an AgentCore Runtime. Ensure IAM permissions allow service-linked role creation.</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/agentcore-vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
-            <td><span class="severity medium">Medium</span></td>
-            <td><span class="status error">Failed</span></td>
+            <td class="col-domain">AgentCore VPC Endpoints Check</td>
+            <td class="finding-details">No AgentCore resources found</td>
+            <td class="resolution-text">No action required</td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/vpc.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
             <td class="finding-details">No AgentCore resources found to check for resource-based policies</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security_iam_service-with-iam.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
             <td class="finding-details">No Policy Engines found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/policy-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111">
-            <td><code>111111111111</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
             <td class="finding-details">No Gateways found</td>
             <td class="resolution-text">No action required</td>
-            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line></svg></a></td>
+            <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/data-encryption.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr></tbody></table></div></div>
             </section>
+            <section id="finserv" class="section"><div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#7C3AED" width="80" height="80"/><path fill="#FFF" d="M40 14 L66 26 L66 31 L14 31 L14 26 Z M20 35 h6 v23 h-6 z M37 35 h6 v23 h-6 z M54 35 h6 v23 h-6 z M14 62 h52 v5 h-52 z"/></svg></span>Financial Services GenAI Risk Findings</div><div class="muted" style="margin:-6px 0 10px;font-size:13px;">Scope: this assessment records findings against each resolved CloudFormation TargetRegions entry. These checks are based on <a href="https://aws.amazon.com/blogs/security/introducing-the-updated-aws-user-guide-to-governance-risk-and-compliance-for-responsible-ai-adoption/" target="_blank">the AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption</a>. Severities follow a documented Likelihood &times; Impact methodology (see docs).</div><div class="filter-bar"><div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="finservSearchInput"></div><div class="filter-group"><label>Region</label><select id="finservRegionFilter"><option value="">All Regions</option><option value="ap-southeast-2">ap-southeast-2</option><option value="eu-west-1">eu-west-1</option><option value="us-east-1">us-east-1</option></select></div><div class="filter-group"><label>Severity</label><select id="finservSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div><div class="filter-group"><label>Status</label><select id="finservStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div><button class="btn btn-reset" id="finservResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button></div><div class="card"><div class="table-wrap"><table id="finservTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
+            <td><code>007564470903</code></td>
+            <td><code>us-east-1</code></td>
+            <td><code>FS-00</code></td>
+            <td class="col-domain">FinServ Regional Scope Not Applicable</td>
+            <td class="finding-details">No regional Bedrock, AgentCore, or SageMaker resources were found in us-east-1; FinServ GenAI risk checks were not applied to this region.</td>
+            <td class="resolution-text">No action required unless GenAI workloads are expected in this region.</td>
+            <td class="reference-cell"><a href="https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
+            <td><code>007564470903</code></td>
+            <td><code>eu-west-1</code></td>
+            <td><code>FS-00</code></td>
+            <td class="col-domain">FinServ Regional Scope Not Applicable</td>
+            <td class="finding-details">No regional Bedrock, AgentCore, or SageMaker resources were found in eu-west-1; FinServ GenAI risk checks were not applied to this region.</td>
+            <td class="resolution-text">No action required unless GenAI workloads are expected in this region.</td>
+            <td class="reference-cell"><a href="https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
+            <td><code>007564470903</code></td>
+            <td><code>ap-southeast-2</code></td>
+            <td><code>FS-00</code></td>
+            <td class="col-domain">FinServ Regional Scope Not Applicable</td>
+            <td class="finding-details">No regional Bedrock, AgentCore, or SageMaker resources were found in ap-southeast-2; FinServ GenAI risk checks were not applied to this region.</td>
+            <td class="resolution-text">No action required unless GenAI workloads are expected in this region.</td>
+            <td class="reference-cell"><a href="https://d1.awsstatic.com/onedam/marketing-channels/website/public/global-FinServ-ComplianceGuide-GenAIRisks-public.pdf" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
+            <td><span class="severity na">Informational</span></td>
+            <td><span class="status warning">N/A</span></td>
+        </tr></tbody></table></div></div></section>
             <section id="methodology" class="section">
-                <div class="section-title"><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><circle cx="12" cy="12" r="10"></circle><path d="M9.09 9a3 3 0 0 1 5.83 1c0 2-3 3-3 3"></path><line x1="12" y1="17" x2="12.01" y2="17"></line></svg>Assessment Methodology</div>
+                <div class="section-title"><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><circle cx="12" cy="12" r="10"/><path d="M9.09 9a3 3 0 0 1 5.83 1c0 2-3 3-3 3"/><line x1="12" y1="17" x2="12.01" y2="17"/></svg>Assessment Methodology</div>
                 <div class="card"><div class="card-header" style="padding: 12px 16px;"><h3 style="font-size: 14px;">Severity Levels &amp; Status Values</h3></div><div class="card-body" style="padding: 12px 16px;"><table style="width: 100%; font-size: 12px;"><tbody><tr><td style="padding: 4px 12px 4px 0; width: 100px;"><span class="severity high">High</span></td><td style="padding: 4px 0; color: var(--text-2); width: 45%;">Direct security risk</td><td style="padding: 4px 12px 4px 24px; width: 60px;"><span class="status error">Failed</span></td><td style="padding: 4px 0; color: var(--text-2);">Remediation needed</td></tr><tr><td style="padding: 4px 12px 4px 0;"><span class="severity medium">Medium</span></td><td style="padding: 4px 0; color: var(--text-2);">Defense-in-depth gap</td><td style="padding: 4px 12px 4px 24px;"><span class="status success">Passed</span></td><td style="padding: 4px 0; color: var(--text-2);">Meets requirements</td></tr><tr><td style="padding: 4px 12px 4px 0;"><span class="severity low">Low</span></td><td style="padding: 4px 0; color: var(--text-2);">Best practice</td><td style="padding: 4px 12px 4px 24px;"><span class="status warning">N/A</span></td><td style="padding: 4px 0; color: var(--text-2);">Not applicable</td></tr><tr><td style="padding: 4px 12px 4px 0;"><span class="severity na">Informational</span></td><td style="padding: 4px 0; color: var(--text-2);">No action required</td><td></td><td></td></tr></tbody></table></div></div>
                 <div class="card"><div class="card-header" style="padding: 12px 16px;"><h3 style="font-size: 14px;">Remediation Guidance</h3></div><div class="card-body" style="padding: 12px 16px;"><table style="width: 100%; font-size: 12px;"><tbody><tr><td style="padding: 4px 12px 4px 0; width: 80px;"><span class="severity high">High</span></td><td style="padding: 4px 0; color: var(--text-2); width: 60px;">7 days</td><td style="padding: 4px 0; color: var(--text-2);">Address immediately; block deployment if unresolved</td></tr><tr><td style="padding: 4px 12px 4px 0;"><span class="severity medium">Medium</span></td><td style="padding: 4px 0; color: var(--text-2);">30 days</td><td style="padding: 4px 0; color: var(--text-2);">Schedule in next sprint; may require change window</td></tr><tr><td style="padding: 4px 12px 4px 0;"><span class="severity low">Low</span></td><td style="padding: 4px 0; color: var(--text-2);">90 days</td><td style="padding: 4px 0; color: var(--text-2);">Include in backlog; address during regular maintenance</td></tr></tbody></table></div></div>
                 <div class="card"><div class="card-header" style="padding: 12px 16px;"><h3 style="font-size: 14px;">Assessment Notes</h3></div><div class="card-body" style="padding: 12px 16px; font-size: 12px; color: var(--text-2); line-height: 1.6;"><strong style="color: var(--text);">Point-in-time:</strong> Security posture changes as resources are modified. <strong style="color: var(--text);">Scope limited:</strong> Passed checks verify tested controls only. <strong style="color: var(--text);">Context matters:</strong> Adjust severity for compliance requirements and environment type.</div></div>
-                <div class="card"><div class="card-header"><h3>Assessment Scope</h3></div><div class="card-body"><div style="display: flex; gap: 12px; flex-wrap: wrap; margin-bottom: 12px;"><div style="display: flex; align-items: center; gap: 8px; padding: 8px 12px; background: var(--surface-2); border-radius: 6px;"><span class="service-icon" style="width: 20px; height: 20px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"></path></svg></span><span style="font-size: 13px; font-weight: 500;">Amazon Bedrock</span></div><div style="display: flex; align-items: center; gap: 8px; padding: 8px 12px; background: var(--surface-2); border-radius: 6px;"><span class="service-icon" style="width: 20px; height: 20px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"></path></svg></span><span style="font-size: 13px; font-weight: 500;">Amazon SageMaker</span></div><div style="display: flex; align-items: center; gap: 8px; padding: 8px 12px; background: var(--surface-2); border-radius: 6px;"><span class="service-icon" style="width: 20px; height: 20px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"></rect><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"></path></svg></span><span style="font-size: 13px; font-weight: 500;">Amazon Bedrock AgentCore</span></div></div><p style="color: var(--text-3); font-size: 12px;">Based on AWS Well-Architected Framework (Generative AI Lens) and service-specific security documentation.</p></div></div>
+                <div class="card"><div class="card-header"><h3>Assessment Scope</h3></div><div class="card-body"><div style="display: flex; gap: 12px; flex-wrap: wrap; margin-bottom: 12px;"><div style="display: flex; align-items: center; gap: 8px; padding: 8px 12px; background: var(--surface-2); border-radius: 6px;"><span class="service-icon" style="width: 20px; height: 20px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"/></svg></span><span style="font-size: 13px; font-weight: 500;">Amazon Bedrock</span></div><div style="display: flex; align-items: center; gap: 8px; padding: 8px 12px; background: var(--surface-2); border-radius: 6px;"><span class="service-icon" style="width: 20px; height: 20px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"/></svg></span><span style="font-size: 13px; font-weight: 500;">Amazon SageMaker</span></div><div style="display: flex; align-items: center; gap: 8px; padding: 8px 12px; background: var(--surface-2); border-radius: 6px;"><span class="service-icon" style="width: 20px; height: 20px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"/></svg></span><span style="font-size: 13px; font-weight: 500;">Amazon Bedrock AgentCore</span></div></div><div class="scope-industry" data-scope-service="finserv"><div class="scope-industry-label">Industry</div><div class="scope-chip-row"><div class="scope-chip industry-chip"><span class="service-icon" style="width: 18px; height: 18px;"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#7C3AED" width="80" height="80"/><path fill="#FFF" d="M40 14 L66 26 L66 31 L14 31 L14 26 Z M20 35 h6 v23 h-6 z M37 35 h6 v23 h-6 z M54 35 h6 v23 h-6 z M14 62 h52 v5 h-52 z"/></svg></span><span style="font-size: 13px; font-weight: 500;">Financial Services GenAI Risk</span></div></div></div><p style="color: var(--text-3); font-size: 12px;">Bedrock, SageMaker, and AgentCore checks are based on the <a href="https://docs.aws.amazon.com/wellarchitected/latest/generative-ai-lens/generative-ai-lens.html" target="_blank">AWS Well-Architected Framework Generative AI Lens</a>. Financial Services GenAI Risk checks are based on <a href="https://aws.amazon.com/blogs/security/introducing-the-updated-aws-user-guide-to-governance-risk-and-compliance-for-responsible-ai-adoption/" target="_blank">the AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption</a>.</p></div></div>
             </section>
         </main>
     </div>
@@ -3660,6 +4172,7 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
         function applyFilters() {
             const searchText = document.getElementById('searchInput').value.toLowerCase();
             const accountFilter = document.getElementById('accountFilter')?.value.toLowerCase() || '';
+            const regionFilter = document.getElementById('regionFilter')?.value.toLowerCase() || '';
             const serviceFilter = document.getElementById('serviceFilter').value.toLowerCase();
             const severityFilter = document.getElementById('severityFilter').value.toLowerCase();
             const statusFilter = document.getElementById('statusFilter').value.toLowerCase();
@@ -3667,12 +4180,14 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             rows.forEach(row => {
                 const rowText = row.textContent.toLowerCase();
                 const rowAccount = row.dataset.account || '';
+                const rowRegion = row.dataset.region || '';
                 const rowService = row.dataset.service || '';
                 const rowSeverity = row.dataset.severity || '';
                 const rowStatus = row.dataset.status || '';
                 let show = true;
                 if (searchText && !rowText.includes(searchText)) show = false;
                 if (accountFilter && rowAccount !== accountFilter) show = false;
+                if (regionFilter && rowRegion.toLowerCase() !== regionFilter) show = false;
                 if (serviceFilter && rowService !== serviceFilter) show = false;
                 if (severityFilter && rowSeverity !== severityFilter) show = false;
                 if (statusFilter && rowStatus !== statusFilter) show = false;
@@ -3682,6 +4197,7 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
         document.getElementById('resetFilters').addEventListener('click', function() {
             document.getElementById('searchInput').value = '';
             if (document.getElementById('accountFilter')) document.getElementById('accountFilter').value = '';
+            if (document.getElementById('regionFilter')) document.getElementById('regionFilter').value = '';
             document.getElementById('serviceFilter').value = '';
             document.getElementById('severityFilter').value = '';
             document.getElementById('statusFilter').value = '';
@@ -3689,6 +4205,7 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
         });
         document.getElementById('searchInput').addEventListener('input', applyFilters);
         if (document.getElementById('accountFilter')) document.getElementById('accountFilter').addEventListener('change', applyFilters);
+        if (document.getElementById('regionFilter')) document.getElementById('regionFilter').addEventListener('change', applyFilters);
         document.getElementById('serviceFilter').addEventListener('change', applyFilters);
         document.getElementById('severityFilter').addEventListener('change', applyFilters);
         document.getElementById('statusFilter').addEventListener('change', applyFilters);
@@ -3729,9 +4246,13 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
                             aVal = a.dataset.account || '';
                             bVal = b.dataset.account || '';
                             break;
+                        case 'region':
+                            aVal = a.dataset.region || '';
+                            bVal = b.dataset.region || '';
+                            break;
                         case 'checkId':
-                            aVal = a.querySelector('td:nth-child(2) code')?.textContent || '';
-                            bVal = b.querySelector('td:nth-child(2) code')?.textContent || '';
+                            aVal = a.querySelector('td:nth-child(3) code')?.textContent || '';
+                            bVal = b.querySelector('td:nth-child(3) code')?.textContent || '';
                             break;
                         case 'finding':
                             aVal = a.querySelector('.col-domain')?.textContent.toLowerCase() || '';
@@ -3754,28 +4275,32 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             });
         });
         // Service-specific filter functions
-        function createServiceFilter(tableId, searchId, accountId, severityId, statusId, resetId) {
+        function createServiceFilter(tableId, searchId, accountId, regionId, severityId, statusId, resetId) {
             const table = document.getElementById(tableId);
             if (!table) return;
             const searchInput = document.getElementById(searchId);
             const accountFilter = document.getElementById(accountId);
+            const regionFilter = document.getElementById(regionId);
             const severityFilter = document.getElementById(severityId);
             const statusFilter = document.getElementById(statusId);
             const resetBtn = document.getElementById(resetId);
             function applyServiceFilters() {
                 const searchText = searchInput?.value.toLowerCase() || '';
                 const accountValue = accountFilter?.value.toLowerCase() || '';
+                const regionValue = regionFilter?.value.toLowerCase() || '';
                 const severityValue = severityFilter?.value.toLowerCase() || '';
                 const statusValue = statusFilter?.value.toLowerCase() || '';
                 const rows = table.querySelectorAll('tbody tr');
                 rows.forEach(row => {
                     const rowText = row.textContent.toLowerCase();
                     const rowAccount = row.dataset.account || '';
+                    const rowRegion = row.dataset.region || '';
                     const rowSeverity = row.dataset.severity || '';
                     const rowStatus = row.dataset.status || '';
                     let show = true;
                     if (searchText && !rowText.includes(searchText)) show = false;
                     if (accountValue && rowAccount !== accountValue) show = false;
+                    if (regionValue && rowRegion.toLowerCase() !== regionValue) show = false;
                     if (severityValue && rowSeverity !== severityValue) show = false;
                     if (statusValue && rowStatus !== statusValue) show = false;
                     row.style.display = show ? '' : 'none';
@@ -3783,22 +4308,25 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             }
             searchInput?.addEventListener('input', applyServiceFilters);
             accountFilter?.addEventListener('change', applyServiceFilters);
+            regionFilter?.addEventListener('change', applyServiceFilters);
             severityFilter?.addEventListener('change', applyServiceFilters);
             statusFilter?.addEventListener('change', applyServiceFilters);
             resetBtn?.addEventListener('click', function() {
                 if (searchInput) searchInput.value = '';
                 if (accountFilter) accountFilter.value = '';
+                if (regionFilter) regionFilter.value = '';
                 if (severityFilter) severityFilter.value = '';
                 if (statusFilter) statusFilter.value = '';
                 applyServiceFilters();
             });
         }
-        createServiceFilter('bedrockTable', 'bedrockSearchInput', 'bedrockAccountFilter', 'bedrockSeverityFilter', 'bedrockStatusFilter', 'bedrockResetFilters');
-        createServiceFilter('sagemakerTable', 'sagemakerSearchInput', 'sagemakerAccountFilter', 'sagemakerSeverityFilter', 'sagemakerStatusFilter', 'sagemakerResetFilters');
-        createServiceFilter('agentcoreTable', 'agentcoreSearchInput', 'agentcoreAccountFilter', 'agentcoreSeverityFilter', 'agentcoreStatusFilter', 'agentcoreResetFilters');
+        createServiceFilter('bedrockTable', 'bedrockSearchInput', 'bedrockAccountFilter', 'bedrockRegionFilter', 'bedrockSeverityFilter', 'bedrockStatusFilter', 'bedrockResetFilters');
+        createServiceFilter('sagemakerTable', 'sagemakerSearchInput', 'sagemakerAccountFilter', 'sagemakerRegionFilter', 'sagemakerSeverityFilter', 'sagemakerStatusFilter', 'sagemakerResetFilters');
+        createServiceFilter('agentcoreTable', 'agentcoreSearchInput', 'agentcoreAccountFilter', 'agentcoreRegionFilter', 'agentcoreSeverityFilter', 'agentcoreStatusFilter', 'agentcoreResetFilters');
+        createServiceFilter('finservTable', 'finservSearchInput', 'finservAccountFilter', 'finservRegionFilter', 'finservSeverityFilter', 'finservStatusFilter', 'finservResetFilters');
 
         // Apply initial filters for main table
         applyFilters();
     </script>
-
-<div id="amazon-quick-browser-extension-fab" style="all: initial;"><template shadowrootmode="closed"><div style="bottom: 44px; right: 15px; width: 40px; height: 40px; position: fixed; z-index: 2147483647; cursor: pointer; border-radius: 5px; box-shadow: rgba(0, 0, 0, 0.2) 0px 2px 4px; display: flex; align-items: stretch; justify-content: stretch;"><button data-testid="amazon-quick-browser-extension-fab-button" aria-label="Open Amazon Quick browser extension" style="border-width: medium; border-style: none; border-color: currentcolor; border-image: initial; background: none; padding: 0px; margin: 0px; outline: none; cursor: pointer;"><img src="chrome-extension://innkphffipcmiflfibbeghfnkifiokgo/quick-logo.svg" style="width: 100%; height: 100%;"></button><button data-testid="amazon-quick-browser-extension-fab-close-button" aria-label="Remove Amazon Quick button" aria-live="polite" style="padding: 0px; margin: 0px; outline: none; cursor: pointer; position: absolute; top: -12px; right: -12px; width: 24px; height: 24px; background-color: white; border-radius: 5px; display: flex; align-items: center; justify-content: center; font-size: 12px; visibility: hidden; border: 1px solid black; box-shadow: rgba(0, 0, 0, 0.2) 0px 2px 4px;">x</button></div></template></div></body></html>
\ No newline at end of file
+</body>
+</html>
diff --git a/test_consolidate_finserv.py b/tests/test_consolidate_finserv.py
similarity index 87%
rename from test_consolidate_finserv.py
rename to tests/test_consolidate_finserv.py
index a1b95e9..f01fa0f 100644
--- a/test_consolidate_finserv.py
+++ b/tests/test_consolidate_finserv.py
@@ -1,13 +1,11 @@
-"""Multi-account consolidation: FS-* Check-IDs must categorize to the finserv
-service (not be mislabeled as bedrock). Patches S3 and the renderer to capture
-the service_findings/service_stats passed to the shared template."""
+"""Multi-account consolidation categorizes FS-* checks as finserv."""
 
-import os
 import csv
+import os
 import shutil
 import tempfile
 import unittest
-from unittest.mock import patch, MagicMock
+from unittest.mock import MagicMock, patch
 
 import consolidate_html_reports as chr
 
@@ -79,9 +77,8 @@ def fake_render(**kwargs):
         bedrock_ids = {f["check_id"] for f in sf["bedrock"]}
         self.assertIn("FS-01", finserv_ids)
         self.assertIn("FS-44", finserv_ids)
-        self.assertNotIn("FS-01", bedrock_ids)  # the bug was FS-* -> bedrock
+        self.assertNotIn("FS-01", bedrock_ids)
         self.assertIn("BR-01", bedrock_ids)
-        # finserv stats counted
         self.assertEqual(captured["service_stats"]["finserv"]["failed"], 1)
         self.assertEqual(captured["service_stats"]["finserv"]["passed"], 1)
 

From 3ed453c6b4f36916378cef28c27ef34ab0d64e24 Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Fri, 19 Jun 2026 22:55:17 -0400
Subject: [PATCH 20/30] Anonymize sample report account IDs

---
 sample-reports/dashboard-overview-dark.png    |  Bin 146347 -> 145186 bytes
 sample-reports/dashboard-overview-light.png   |  Bin 147899 -> 146593 bytes
 sample-reports/findings-table.png             |  Bin 186723 -> 179514 bytes
 .../security_assessment_multi_account.html    | 5922 ++++++++---------
 .../security_assessment_single_account.html   | 1396 ++--
 5 files changed, 3659 insertions(+), 3659 deletions(-)

diff --git a/sample-reports/dashboard-overview-dark.png b/sample-reports/dashboard-overview-dark.png
index fb2fe7147f7f5a2dc11b7613be35212c3aeeb65a..f868852368986497f391d9ed0caacb979b2ed37f 100644
GIT binary patch
literal 145186
zcmb5W1yoeu+cta%X~7^xT0rTLk{Cgyk?wA!yGuk+QlzD%8M=n<?vU>8ZUzSCJO2L9
z?|I*6t?&ER`>r+2n%HyB*?Zq{UDtgdzAJo`c!={12LOPFQj+hL0N}xI06?S0LIpq3
z%24tFPyj&cy{L-&?EZp_`<&Voa7^d4-+|9<+^(@1V`!RFWSnEy;5INYU&PGK&HXho
zG4UYb;*LgwGpL$q=xAqcOD)b+vq`OR&1sl^9<3Wy%;Hhbux6=wzqk-S7ERzIF)W&M
zDx+nZxBvAf@R5N(+J8R(`z1%q=f6Y#8HY}~{C_(N70;gfpWpuf9_xRMLc!qwe?Q~@
z=cqsc?fHLS{r}l0F@F^N|GuvO{fz(PSpQ=bO$&he?@Ih1j`|-<>Bc<icYFRZ0w3jG
zBumR@XIIXf`+rT;&B%Z4enLjQL?<RH@yrf`Unlvw;ESJ=lT~vo52>+?-pdAxL1m>s
zb{~HG_eZUMg6})0y19i{ygl3CGPzgWiL#Ae(0VmC?YwI5^E^_Z#+Uo^%~5ou@Y^Ez
ziB}1^$k*l)H!Vc%dEnWJy1Ye+-^TvurhS_De)w{Vda*9Q_i4{%!4`h1NS*OuekT%6
z&f#>k{;=5_wi9{O6-n`V;qkwQ5rE`v;dGl+$v3pI5%4s5eQx6&QXMY{=rqUvcAMHy
zEGsS^^2DX`u;&qdgtpio-t1Gc+?2S9>gyooVP%yRo!MT%E^>hwBS2Q$y;WAO5KE8g
z-H;nB8h=7%7nu|vx!B+x)4gVd`QhJvU0%YoA4q<T3)mb`037C<<4r;)13ebN_9Gdk
zF|Lb4Bd$b(#bz<D@AdWl=g_B^4PNOqpTP%kJgZGLtnG;G*a;oht-%49<5;il*08Eq
zqr2rbIehy91`2g7zgI+m@gF8RhEEGV{&$bB`K;{UiwD;63oymz+xcFvrSRz`2z|nf
z?2eT-6^4X7OM8;`BSR%0?<fW0)@A2s4J|6jy}uo~V<rpx9Bj-oFbECOVZ#Jsr7tGE
z(tPgP?SS8E(47ee`RCj|eOZch8N1KO?dD~tYi||gY*H>=yTZvh!S&|M%#eDbG*;nv
zV`FS+i0v}vrtfR;>ItQQtLIUx@%YcqGxOmj!OX_YwH=a0bpP0X;-O^T9W$NP92>7x
zPivq3^)lqu?roOV#jMOQ(2{iItEQ-Vu}6?r$1kWzfLz;RpJ2L}r0@!r?qBjfcmPaS
z+FZdyr}DhW@VbVVe5|{;>zy~c^po6-)W!c@eUymSU)*%W!0OZJNJ_|EAFe#sHA3oX
zSF(@~iYH64faUww7DUUxVU?9?lj9f!XZp>y@Lc_SEC4k3tHD%!V9K^5oI?1A7LfzC
zR8i3ZZB(b1UE{uio!55H&LzHsSFnaxN^M21@990c%G~7So0lzir-5aAl)iCn5^sEF
zv)CcNp_B~VtgeW_GP)zbbpa+g?dumULzBETuVNQ}M_0U4F|klq#=X!dG4IanQ3&wg
z&O453r$h0lZkcbRW#S?P+=cLgz#w#N*4JeT-%1StewWL(#4~kk>q4P<U2F_dOn&jm
zuyp*+$Y$FP->`q3%>G*+b(zKh*%$*#%Z`(JmeNe@p2IA?fGjpPCBqX<paquX5Oifb
zTTTuTvnLoE+dKdW3U#~8D!3|~)>f4<s-mT{cdH?M%!JZWBdZtjX^r-lN7^OAN3*fa
zD8PNw;!)!T7mzIC2LCLPhFlLlA}3F3Y@A>6+cVwH&$#KmEqRI_6`O=?c7xoW#D^Pw
z5A5IYz8)$V8MclG=che4>vW2f&2{%8p2}}V5;Ld?2_I%}zM~hQM+00BgwcVh6&l|r
zz46AgO<6SmjMeh%4#NHJfA<v(oL^p>nS^C$OBSi6HM>6mhLY>i0b}upB;NytAvi!E
zb3tE!0p5|Y&!v*7%frZS-Fh=<IBX&VUV&n;7N`4VW|(#EidFl}!bs^EkdSy1$C~J7
zv9$EGI}&4XI(p?fZ+%0<=>#7{QdWAdX>WPcrXIy${hOqv#lSTuoq)A#u*T_mh28Tv
zp5P)?d&4i-LB}Ld`gLG!a|>e>bfrpo?KApEHFBg~yYi^cQ}^k~Ow(CQPLWr+6E3hk
z5~ZAyq6BDEU5fyZj^Sm|T_`Pwcfn;(>HdxF?;b5Da9c3}CR>{_*<2z^ES#JVfobc>
zb7-`u`}p)ICt$xO9x&>q$}|yo;DurUU-gg|E=%oRQ&Uk*6Y%o*QLm+-aoUnO%&v7Z
zviPNY+>$4F@c!n^?cl%~g_@uL5imcmbAP{9UqtRVUw6_C+OTpux}QEffQ5~X?ms^t
zaMLAjY2`&g>2>`b`S-8D&SLvk<i`v6Ab}q#tKgq6RhJQKxx;8J$(m!=-WAZYH7FCK
zL_})W$N#p$hrBI@W?f0bPB;KMCdPc7_x|LD@s|7nN>ST$@kHF~bQ)0u>i~_}&+izu
zwC4sNAhL0{P+KMsye2F!el%<%0#>g?5WDTeO_%_Fl3Z*{X$36jkVs2I0ja^F1_opY
zDS`O@2Y|K}Ghnfk-)(s6Z>cI~S{4?=|H;BS%aQZO>gw<vU|`6WAS`^@Brt}u+_7^u
zUdi*X6+JSD8g2cJAx%m|LA1HPt)Q!H<v#UoC5nYu8LHCR$(ZC>^Zrk*IWj7Essz;^
zOlfz)AMwl}`aUO6o&w_j_0zKGtzHvHpvHRxqv2i%;1`@ld#k3VXX4&7Sd%4@>fO6d
z%vJ7~N&D`uUfKZgFDP)*kfa858Xr$h&MuCRTbf&uFCV=tSzg;Ptf8nCn>j1apLk)h
z**Ad=G2PhA%`yKPj3Mlf#8Fo_2c{d3ur3Y$wGS+ev{p{@O+uh&pf8+K_{%-tryHZ)
zMa?lra-Z>O#dZ{GVLBN*%BR9}u7~lx8$hYm(aL92;gRB{5KMqA_-x=QL79duP-8dr
zdbfCeTo#ZV>_PQk8C{8H2uq(t!0Y9QD3>nQs;QI<va@o~{F9RU-w_njVzueCAg>qH
zA-Bhae0m;gOi`$B4HdD0_aB19gMxt;FvxX>lL`3ivc6)@eRg(~v|?aqZq}7~Gz;5$
z1S3EfHQ8J@HQ6*E5I5j}JPvMea=OyDFck6GeZg!c<IVgSj~4c0&}>Zt_$Oa;e91g2
zEM$?03`6nHWE}1z!twMlRz8chss@v~fY)YBGw;!B@8xYpPI1O>5AH^v%P~(0xAJi_
zbG+<=%Ds4^_oh+bt9RJXI>QL1^15UEJZyjDN6YOLi*B7ou?|~xB_YaNB}Y$BGhQHB
zz-?zWY#K}rh~takjab#H$w@OaA(+<PVX(fUHow=(?n(5P*>LhHnEN5;Ez*?n{bm)w
za;`oyNAEVffX{q5nRfY%4+$6Mp|>%02@j1n_KURC^EC|CFk)M7K3!EVX}BH_PV<py
zj#D;gYdS|fot%sVO5NCV?0(zEsb!d_dh-jh@V|WN-@UQEL1JoRW;fTwE<k^W?@3g}
z%d5^#v2r#@h|_sK(~skYSSF}#0h-xG{NgQhvrU^$CcCFg4ykq6%!dj;^~bYf9iNp|
zmC;I-7dO%HusY3MHj=RGGD<yxp#Ed~{$$UE6F6O-gm%7=I^C~j_H;`Ta3cdy5kB5N
zLKlaQE-tQ4E*SoM)lbq1F1Wy)-th$c{5l#2gJoYrxY^Y0D4;4;_oF1PN5b>d(*s*c
znpz>x$dd@3i=1qau`6GQ#7a*f8*dg<(IocBpUvwe4-U9@(r-ix!MTKUv88_6HJt5C
z9^B^VTd@v2u;wjjDm!V6Y+5Y41z>I9GW*`R(8Wf#Z8%=;Lrza}mmV(X^_iSvQu&Cy
z5?J79{7|fbxZE-WERG&g3A*6dvu9l2dQl0KZbSu7hLKW!Vq31zDE$2vX)3dMv{+_%
z(pKv>f=kBj%AaP30a)`U^<`%qyU(jK#}{hV2IgO%5ok7CH<gZ1?=FRG;1<~wmRj90
z&Mz$FRSPn46-E+}5ifgPuBX~H-`j)ObT^z1tF3j>_GVlv>Hfyys2Fl9I5lx_`S?E!
z!$-6RGvY2j%@O_wj`X^yot(VH9wWwAT^R8#tALqSB&trpa@6cy9BlV2?5u3~U;&}g
znZI6y$C1!rwY4w6%Ja2GwTr?(hl}u6`Bi{k7qNgTa*x2=Z>s*j<3zkaQ+@(@9{tn)
ztTH8q73kRrsR?}XGcX~~-qU_8WFk_p`LUnGb15ejWXC84CFS7+5A2M%um}Wrakp@f
zG(i{v@Q2%JbH4gC&D|2?%VW1SLY~|w8!1<ix$CQs`-{jXm{pw5`TZVn+?}Qkx!x|&
zn~Ds<n`_!oXJUK%>66WxBmeB$t)=DOCaZ?FvbI~WFZzEF2LktlIHtis4+!4L($3S~
z^8vr7G<BJo3Ox1F%j+;?hf%eawC)KG;OpOw!PEovhtjg9r;EDk#&1|rxu13oqBGH!
z+HL8_snG%noHnN^PnJQ5+$EoSw6><HqLMG1)6%+lpXR%JvL<dN!3P+e1k{o)U(53g
zT&^8dagcal9Z0A+zspwgL9PW=Y_Xf0m{iOZCTxGZ-IUdDw8RGZ-%R_RO<)#Giufi)
zs&ZcZ*M`}9VesqSEd}FYyh~TDK)V>7Rh0p#1?U?AOtVb3wJuA`nX1>-i`)5D(P{eU
zTT64fa)|)odMW<%EK%0X!s2&mg|dx}kF;fw5_G?ot)<k^cak?wHJ0aVC;gxttHBSV
z4?MqqC8;tIHR`l%ox#0<AI$4TMK(Z-0f%*A5iI@~Zgzh!QvOlX)mB9G5$NeQMHJw3
zxSX6N?AL5ST3YUAV5iBSVb!IPmaQc0YgFaW{i#P26(*z4N5**<tF2Fjc#|lIiTC&R
zR23BP7??z^Z*M(4>v+cbHi-y%cwdw0%Dt$>!oevmgB2I%4Gl8?kbEO|;GdROom-!z
zlr1YMxs!f#`a`Hh(xP?69_4p!_6Mj+`OH4(5fYg785w`}=e-ZMa0qZW&)`y0P~ibd
z8$&iMd`dGb^XPc>AMxrY&gOZ!nf1ZBx!MN)`kvyhA539Gzv5`|Ll0IqXD{$i^QyIr
zRVu40pZQz{Q|i1cL0)>L+0E1?S@v&)?D4IZEPYdls_ad&VfvRDiw`7=z&oI4Dtwu0
zRyJ0#{Y0K0QuwX$L0d1Mth#LSGdYi70&41OuR(imwx9ST-C<M;{H{>`LlZ}OkZq~J
z2hP|R{bo_Vu#gpM{>jQNlL0r=jJdjee4N?l$Rb|a^t`{Us(g1X_djX@+H;0c{ZfTy
z^lLZ>Qk-3--42DrB+y3R2+}*JjIMA-onZfh#y8)tTpjsdFLZPweAt`MW1=(BoaK6x
z6Jl<5%$Kss2l|Z-*{=7a-OPp(28=!p5lLq|4mZ*1`<>yY2o0|}JY5@7IM8%bGcnux
zL*RG%{bE??f&<X0^R_ualUG)+A{nMc_pc1wuRT*M(ym8jZ>5!1KDk5m>(A(~YtLzn
zCjH_!^>uKVF^(+ux}WLZeu#m8mZ_!yRnhb1q-kxxJiH05v%08bEYWF9Z#>iYy<eQ4
z83U-<L_B&=G1I#pP{wjTX3Qq>9XM82r#%s*{EPW-XW}8GL8Kx#%i$kzH%GePrz`9)
zx?SH9G>xb3_jb<g<Wh-D6w{8*kDsow``w>xsWm<f`uf1{bQCG}C0G%u3ROu=6d>od
zg}85DL(Uth8j)QM9^5Df3pcqw4Z?apa7{{i<?5GgBJi25rM#j7<nn@gJge^8!JbUD
z0%av`O3(cVjqW(2kL;T6+jdn$A9#zvvdYqTW-n^^mhMypDMcX*`8<)_nuWs<pU^`u
z(~a2S#$z)hC8modh%el7yvO3^bAdXWW}_oEpi}E=buruB>b^lJ7n_(;Pw;2-p^aVh
zm52Rt>2{typiyqJ_+5ER>Zg#iK}A96Q^5P~pk&DxnRI!>7<u6A;EL)mFLHYrzjS|i
zD-q<INFZ{mqvv~qdDO(^@rNHcrr=#o;nUZuw8savg2&B97n!s2S0|WuN^ZIh&Mpf#
z=6DcPpCiUJ-}A{rvNGVfQyp@5JcePp(gv?+zF8H{zdN(@^SepR;TjM76zzKlmjPZf
zF{QkAK}nVTOWn~mObG9i9M5ni!qS9|5c_M4WeqQPUC+d6@3@a9<si+MyH1C;Y{G@j
z?kn>pP41CRDrkVnk~N}6agG=H?Dc^DQMupQ5@axiJG?0a10W8CIl|i->v^ZAwFu0r
z7j%=;+`aFDj~d0pGszNauGh!M@$&Ds+Y4Yv<z=u`PPwNQ(>0$YhUXG_oS1mJXxK|$
z3i2UGqN2x7;b-P##SKn#NBwaFQz8u3yj~X}olAbV*o_@Cy(inPMV>rdMTM+Oo@Yo(
zt!5nOT-%wOEBSL(W`HAcptN+^uKDI|$=m%A5%!HDK0WWPqWGO{3;@j3@LM~5yZgOh
zo`U#4XAika!}5Ac!<+qbbtg~(5%{%Vq)0<tgsnob&tgO39Pb^=6D?Aag@6YYzQ_%k
zgQl&+&C@NrC3p9lhlOa@*Y1CI$Vu4sc<LgwikiGPau`fFeDOpd0dFxMY!3X&X>>Gs
z|B`4yp<n_NpYrHPB51K^$fj9w^kLuPodmQiFKX2J6brED--jwQT22bs<9Q~p=1%!K
z-Xly0E5g2Is3&pw5-z0j8&*z|7h%6hskeVHobeY-wSnr|cGZuRB;;AiuP3=?W(|x~
zUdy}LnZcKKdUfuUKA)wNo(SIe4=-gGpWr_iy6@mF@jgG95~zIu7<{6i1yk$IZYcG)
zX5>xO%|d;Jvgh*hNhAcmxnJ8q{s@hL;EEmMLxRCqa$v;{8QZhm*_oMhJCK)@{akFw
z558JzvO*3O&xHCel-BO8+7vc7^WD9*Ouz<IRHu@KT$;Ab(|yG-{ohG^1X>cgNubGC
z>Lj_GnZbLy=1Se~nPP?E`vo8%^*y*C$U|}C&XIdYyew11YuxpM35bbTue3aPTCr6;
zeLTgxTb!Hb{;k!(d4k(@whnG?*|&QgxIU$aT<(ltY;xSdkot*-u~xvoNY3Xv4moM~
z&9j&ex^r$C^5*h(X?K@rjj&A&wL6k(Vdm9BgXxq6m7lJPiZpBFH!RJX--4T`v&_TA
zT1{Ah2^W008F6u($&R?WHM68MOcy2hMNS^`vuktdLzQe0Ufs7;zKL;Ba;%kAWuEtm
z5<4>I2lbcnaq0@l!9munMO)=oT*mH0kD9T1UW+UcOpl^G$PYde{QaFD9sT<H#&gta
zD6#0fn@&BYgzAd}(Bm)9qX`suXezCy>=d<)IY_z9yDUFYiQ}>kp!_asTsz;vH7GxH
zNxSKV<4)z3Q$#7Q$TCEG?$>bA?Hr&#Jj<1Ee@OLMiib_7Cd6FvFH1wgR}{rsU=Tr`
zb|V5Z;`O{ke)%WfJQU!fJ-<)~Wwk*9`IK78l3L3Rqusu(l5oMryJaWKm7Jn_J3RqI
z8)H)&V;<Xi$=&V)5a>Vts|da5CDHf2oj&0Pj`ygN^nG>`b5p$^0Sxlb_O=Zm37=l6
zFik{4kRHd!-+%pjQ)dEf%k%r}4AjbisWtL@1mK_lYZlzCw_abLG7iPYsw+t`6BO&q
zE!A6gishG?&QTteQwJrdJl}cQl}?unyk&_>7W6YcO#TFv+P6MGcv56&D5{c~k+C}t
z#l`tb3q}aO=8?rA44^}IgQ!g`04lB|Jv(8=heA!qeAN~1P8^C22vNo}g>YJJ66U|P
zR&t!(b&*$Szq&kxlsmLvDI0ZzK40sUt4KgKyOsTlFa(p*Bcd+=z7yZ9^n`t6hZNKU
z1tlU=G5nW!tp$9H2#DTc<DX})>8qT41l%`kr#_}O0YL7so{;1Ic-gx-090sRGD=`J
zLUUrIH|Qc8-%<=e^s~7=+>0b;OLz!~ilY3opP))YS>B?8<eqXB>qcgJK^0wHC(je2
zPI00;)6Y&rVY{6gQ+%%piQ}?z%mRah6{Mb@8x+q}<S2#v=n9bdAbb2Lds4t$&EAA~
zMaQf?Pm^Qm{hZ%<^}ECoroTW%j_pE~1iRn*_4f*4yv2QE2-MC(Qhpc*7nhgh_{*2z
z>}=B@^alzkCF?QgJ>L`psJkM`Ymv*GxK5(>zac=S+c&#T#+6rue;F{y)3DO#x<7yE
z?v}4RT9MG_cU+Ir$f%tMnHc<Hi#?t-QND!uDcMJ!awo^&?)OSav3CL6R@YH<nRUL)
z;k$k5JsBC~F(u8nE}Q!s+~(|Q!fx5`X~_mekWGgDQ%m<+Dk@A-&X>=>Y=71&y5F;t
z``MNOcPg|g1PtaAqCf%xP{;OF9nCMD5fif{$lZyg{raV-mXnCOa~$>b9Atx75$og5
z`73*SF8BNQQ~F-MZP%QdGqsE#Qy>nzLO$Us^E~!uo#hWOuWUSbdokPF-wo;3h!u%T
zkY!}j<%v5uXj(`<x{K&=Gc63Ge0(M^#Lmjh98bAM7u~y7U+kj&OB=e4;hfE_5Z>~3
z@LL$*N9FlQ+E^L4aZ89To{gMS%<6aG=8oejEc3$_n<a+C^^LpI4)5KE3FrebI}UI}
z2W&19U84bYwl9TW1P;x93&YChV()m;+dH;(dmA<C8*)J);<a-M>k49cV_k-9dF&a3
zL*%?{KRs3_u1LW@J$4<_bQSHSyF)tuGWKMR$5=_^{#=_Wh~J@&6!;br^81fRu}<Un
z2hIN^@r2gTkLnikCU(cn*;7Tl6kk+o)SJzO4nu~F$`WKZ_ezB7y^d&r<IBs^^2veR
z<4*IVXU#FYb;;ypnY{+XBTQgL4RkGLMmtH@>zJKngzpS&Z{%!P#P-#bQ}=n7f_R_X
zJG%lk7F0R$E~$0_{c{#Qj$Eq<^O~b3GL@w6QFNX_;?1!fxi^mMgcnN<4H;Ju#OdIa
zz5!PvrERgikSFqK<RW`KbMaEm#R}unh|@Rgr7}Ac*%vSvn0&#9x_&_1WR)@FkoOIo
zz!_yI!D4V!ufgJQ^@G#HtHJ*Mg}&MHTBxZ-8cAI@ACU!;k5$;~Plp5WBU=5ppu)=n
zW@E9Z@BgmL(L(ht`%|A+=OZgmJx>S^kU1~RM>^jZ7P0J<!+g}07gF95KH=J5&9)L(
z$9+g9?kB#ToY^iR-*mSb3PKDG|B}c^bFhv;vBU47^b~J*N+RdhB|D33Nakmfc0y|6
z(`Q0qy(UA+l=U{ZdY<0W9v_H=kx_~u2HRrO@mQ(t&fETTL|zp}&W8g$d-lw(lfJW)
zK7tD3iKvMJILf`eafts@75rPat9}?Yf(q6yvy@(4(AijN--2;;W_<o;N5T%(KfK80
zt-rjjEseyU#3{&Eper|?=Us#V@QFjwlpw)6MHwfud(Ut~df}BArYuVoxS~hB-BV~S
zbv!a|M*^>XZcKKIn~{gv4Hgy_Kho0pbd6VYk3@KM%zN8vo&C`OUIgr59eTzb$Nn5*
zt70KZ9oo5SKOM~wLC)>Djz%EjbaBH9C@{s!3t!C!h0n#YHQAl#t%!)E0$_cmSg*{z
zYh0>~o4ERQH7bw<70>}oP0o*6sck>t!_WS#b0r@Brg52iUht+r*76SV3_sX3VJW@a
ze&E~U7<3|EwCMu=wG*VODtJa6$CAn@5eX~5_TcL=&TrK7YM~o#*;Zq@A5s5CHjr9V
zEvzZmF*)Py(<vKf7*p}v$K*eGV}3bqGk5i8P5E5BhIH2pA|=ybSYlUNQ9<#TqIWAP
z{M&bQ|Iqjnw3e?jQ(ci%Hda<opAd2giF4oVBfeU><NQ-B`)3<MA;{|prZ|W5?H$H6
zpIAL#RjVNtb&{?5`L^WwfVeode3g{~J8uOot;KdTyAJxH6hR6AjCqyuNr@*x-4>3g
z+~ws-&yup0$Qox7wo5B3WsCHO(7fDnOw&s2c5r3dxe|Z9?aE1s6simwG@F~9McmI#
zsklsNJ4hwg?Jyd=@G-V685S`_SZI?c1$BuZFi*2L-^2S${D_a?Yh4l7OXTbz;&kHQ
ze}HSI_!;BI@r?jI1+Z^zV?Oxnw5wqF1a4MU#jDIHKV6T+0_LS9Qw4mufWLrG(3N7_
zMLuZP1C#ww?TL>^v*V!gyZPMuHmtD4E(IpS5YYG+n{6KeLYF;tdsAz$NHo*I-R!X(
z3p1vfile+s-P<dw33Prl`FigQ3?7l}x|}%tne#omF$zYdXGhbR1S#HYuq{oN$?Ygk
zuzq!ZP536&NV*w>ETL0z>?wAi=(XxCvE%zk@$DP#n&Sb3-EpbMD>T55)F_*TPXT{*
z9CVE@Xf)^g0#iJE>sh^PmF7`d!Ak`y`GM$z8a|#Q_fEq?VkMvK%x}BxmaG@A+c(1@
zct_6?pOB<U^0bM4$&>yO!$|36u$PloWqY$z0%^)#!`GboCCaRvE1Q*TM+&iZc2=4G
z(a^POH29uUWRa3qhHk8Ha(t5FP`VszFC-taFt=YS%i!cYl@K$i?Wzd-u<hrxS+uKX
zlWGQ=((~QyC`)0CIPgA!ccc6TC~uq`_Np4k8&P~kRE+0x(x4MLA3=TQ;^D)j>ivvh
znrpa~TBenrkUdhmF6%*bFXH+OUtYB_xUR^Kvo?i+g?B_1_KwaPO_lXM{U8Y#PeopI
zyU|A3``fvF-#nO1I-1Ob+|SQ0(qI6*Nq7Cj`W+uBC3Gjy{72fnH%`A&H57cmiH(V&
z5Xw^CUEPQGv$7TekN5|UYIAwGYe85bCa9cwM3tz=^O{%b=_FU;K%|KKmuG1|fBqC5
zRyLMiy8V7>QpSF_H1<1@{t5#CVMh#z%-93pyx(&0#sRk^5a9kBprX0A*cvbUD$qp}
zaIXd3toeOz#6%TOIQ*7wH!X{M!SFWvm8jZgNzh|e1LS@tqduSsfP4rnZ6*u4{R*xp
z2M7rX8R>IH)qDNVNQ%2YQepy2z85QniORS*Apu`dK^%#x%bovcgO#ho5&B&cEbDr#
z?VfxI{s@+mWmDcb7{t=G_L!7uzL0u?-fC8{R-7`>Hxw)RM!m#KY)j0oo%rAsJyvys
z(W~Hu^V2G6{(Pob`t@p(KAwz<^=w0QAHGKAb`ylp7Slg4Yn(C7{SgoZzb)6?mr*aC
zo7O1NtPj&d_QABBZ9*lwOCI=_K>R>T<<~dJiiM9)DlDyxecBhBq_Wo0>l6v`Y)(nB
zS>|X)^Wvj`c&N?Or1IK4;V})<DZXBsOH;JMKRCmul=?YWb&&45GZwk@OwjDTkz-wR
z$rJ)!0o}U<*}@pn+goOO`b?{#U&}GqXJ8PNdbN}0eN!|V+uz5$<h{3c)C|W0-iw7c
zBN3uZv7L-L;L?L!#JNU}O<m|>e$UfXZNss%Y|T7x#~`O80&~Ig_uXC3d1uoX3Ft5(
z(Pvcu#>Q;B^MW)5mv<YE4}#lsGDu%R$<AxCWa5j9bSuI{7`E&KH2$&$L$G(nS^L$?
zm%hhQTTQo{#_3;czt+Aj!7$Vkzf>M>6h~emz7`BOU2hUBc@LOybw`kKx(;C76xZDZ
zA-y&z4rXL2eO5ccB{N$MEJGIsRW!0X9BtsOqx21O@jmeWNWS@=$EFWmUfvC`cP{lq
zjJg0LG;xU2TLw$Z0Z~gEtEJl8<-QGEl$L=o5(*+){#-M)kBjWhcAkhRm+_dFN!5ot
zE@s4@-hJ8qe0Z7U<Ar4^{&cV16Plad^z=r*hE7GK@C%wxsxU;u$D;|9xHpwRec$y!
z;5`gETjSGqJ=%`y&06%H%I`Snk{7hsg%Fvn;N(J$v*}`+W-t<itW5a!oNjh%(XRPc
zQ`6(Y#ZtP@BF)JT2?W$g3Fe!B_L{IIK)hNJGqaCF*qd%XwP-haFw?NoCG~ZH)sAPM
zj3;Jh#=M0w2`JQ|s%d_wygc2kk=+y!*B9Fi*Fq=b%;E*=`wM<CsYh`)4I@O_n8#5&
z6Cfv^n-$C>eI(q0al`Q%8hICZGY?)Hn2HG(oVM%Pbn2>H!x>&qj*R39|HAvHFlGM@
z^i11OMJ9D(7CpE7wuzu1@f*xbP%E_&yeiUw+Z(@&zU%{;i|_vT_#yoo>0B2O*GHxa
z@i|@M<lBF_gpIXFHr9MP`)G*;P*`2B7Nn^adlXhEOS4;BTI<!{?{s9TSoTT%e8FAe
zMCE%9r>l#$!0Rd~X-4+uE_HP>R>Ry9v=}*QzK)D*#~w^i^zWC7;hurg#h>URQe8$G
z&aZ5wwHB>904Nd43tgOgQF$wBX^9h<Jd$|<@}*>MKOWu8^!z%r`wZBe>wZzmQL)3w
z^vL;b5G%79Bwv`*+}C$BgeQ_x$hjfEE~sf+?xU1`&H3j8!7EWW_%MwxxG$iH>xby&
zJHhUCtTpSuxOfObUS4IG?p=85HiNTOFZ6cbs}d&DtUZtOa$WC%COWAhU=9+YwzHC|
zE`#bz2rj3?5OAJrJ`As5Sy^HCC3-jFeh{w4pVFqY(QIk;_NpcO1+RSe8FfVynP){G
zj^sy6Qw`(B7n2nwhWyP|&JuKBXV|LZTMLf=w1#!fnV3JP*k72}IX%VM4&{ud@(sYk
zKacO*`1+MzSbz7}T}PgPkD0l@ukTk#9}{fHLv>)l{c}44H&iB^;XPu^)du<HSwxxB
zRjaz5*HN198z+>drKRd@7_6qIFc{6k+-h%QLrqOhN?yS-q&}%2JN6|bW64&*4UOMo
z>)J_;=x3CP30RPF2%?`9F9>YTsi?@*NzcnKgceZs(f$I-BO>!=TK@0F2mb9)tE)hJ
zepNWKY}g%PksmUY+$hA%NDztr_iK>-@$la;J6^y1`9k@L?Sf%RD)lr=l^D&Gwvg*8
zVL<DP2}{5tuVip=$UptQETYq_Kt)<9oU9G&VK}I=qy56c|4zE_Uwv<-7~MeW%=6E+
zUlm>&l})=%hLVJ^yratqUyOb3b~l?{;V{LHjlP+xC-UxoJpJ*gSUUYBBrquOOXGr%
zQ|`MZv*7<~XhJcwCpA4<*U?uVG~qg+NXch<Juy4q=q=Rfv%#h5AgX607duKXlsZ$o
z%pqg7H@TU!ANCqr8Ex=Ll;*K3{zsdlL5~?tii4scnSlXx5tR0<C*KQ#)pIqHe-UmS
z?i}pzvJqG3(lhpCDFOCp=dNeRv{*0M!D=!aI)F569UKflOcfy(Gt_laRTIw-Pw`QZ
zL{Dlb;})r^%qlH!7(f0iBLoG#!NrXlZFI4B<mFyFgQI#ek~m0c8|vvP8&d#)C>}0e
znVVyrOm^p2_;_fxYfI;XGDGZXjgFO-plH@trSuw)3))MuK#ZNwF3fqaJ~1<SrBM+7
z<M}k`39W`P(G@Z_a;kE2v6&UPu)y{W&s&TR{pO#Ear;!HVjQGFGFSmvkz|_s+CCSn
zGn+X%#|cq@!O^lw*Oq>xdrnndpPR<-QF=U#mF;zKIA3w{(LQ11bHS)yBi&}l^vp~;
z>X&%H^XDlk$-2?Dy7KbU&aMvCPWI?PYNF;_14&<7wYI@MkfwcPvt^Z&`|zOlps47T
zl!FQ$YS@e1Qi^09E$v_7hpb717boNl>P)seZ}ioa2#LvT%ou(fk(qhl7g@!ZS8$<<
ziG8K*FQ&k<$t!rp%F@#-8!!3h)QM~C=aW)g+Sl&p!}@woNM)--Kg+xJ;d2EvqW`r9
zIPvXkXAcJD<j}uhJ&ZJ~5WxAG+-vX{y>-)mR!iGfw;uiNGd9lZQV`h25}5)DItfR+
zE1$ZyxD#0zLOTsOnERyn_AF6a?6Cm=`+<jM)-M)zR##`&!QoydCZY}c505!BftKD*
zR(3{Zrh^!1L77n8=g)O_t*n6Gb@}B**<^sFRem6C|8AcnR3%^O75yrH<~vErfJfh1
znEPdz`$AX)#o8Mm0MJ5ih+ru7Z*bN7W+xYWp_O?pGZP0l8)uG*vJA0tL_`8_>Z@Q?
zz*`$R(+{7po#k#`9_+_RzWHYfau`tl%kmBVGfVbUQozbic#$xWry`BX7#~u;I`q-O
zP|tP!cvL#Op)jkaA*;v!dy9^Ru@#@;E}o?zUVvd2iHdrxw$@x&(rZ{|V-Yoby%YnF
z4l1DZiBUCGnT5FDlq*{a1u$~JjBiH)yd)R}F(ndpz?K=Q%Ia!Gc~MNR4vGU6EeQgg
z({fX;PXpU0pxpun&UPrj8;ioJUlV+?vx1dZZQ6Uh4bWl8BzCQ=_Lzn{!{*A`|Fd0S
zD5*B~Z*Lz<>NTqObO(UoeisLql9$XF{^dV2{;bl<Fc%!>t=JS56%B@a%9tp9^0BdT
zY<t-F&@7vN%Oq=7fM5K5WR3kMKa}Aj4s7dn&HY^<3ZZC(mWi+nMoa%15x-<~XjG<s
z94gos5(<U_Zl&n3L)N8*<o=CO<i?3R7gQzv2WKKnK<n?+i2gMxK|#z?w0~mU-=_e-
zTnx-e^DYxE_7vf$IKs3zLcf)B2X2(K_Kg_<etasP2<mT>ahsP_u59tfHCc^ConkKt
z6Oz#U6W?-pkGoTU^Z%`&k9-T$(p6V3Qj3;l=(m?D@tT;Q-rimL07DB9OVOE^ErR~&
zuQ4+d9sslzm8_4p2R2T?YXrW%SBs0A1X_$LQgjx`$)8E_%>4PYzIiA`?^#ph@tS9n
zoLQe~D>2a!`R?BfUWN=W+dI2XunkN7H1V-1`V#H*L9^^jW`6>9nRK=oRE2kPsz54s
z@ky+7V$@GkVjl1#$J+V%u-DYRKQj==d5`I=4>VX@RXw0e=^Q$38}?p{1#JQIBgc7)
zYYb2E#ApwDh6lM|W)j*-g%wVJ#uEiJcVH8-LCihtf9ifo6Ue7EB+G)f?O#{-tl3Z$
zk2t!0GcKN3xgsws_eG#YxV@u`d07H%VqzkeNL-B3l>T%23Z-5X7~_rE-~T%cjPLdY
z&u`^zezh8KCgOa}2&M;GHtpBB1ax~*0S)Ua>Fht0BZf6u>UbDms7aY(9WC@@E*I<S
zys*Ev6^5x0Cl!tRD1z%&7Ry9`{(~yuka%p1WxB$YjuP`Pp#8hAg4Gxj1d=eVbn>4Z
zpuywReso3y@V-0<lJU$|D`@>K)V)l0SOi_jluo1luiuDa9c}~Ny7IKP>IJIq&;N5E
z@MtYScS-@Y421yoKe-X4s%|$dO#e;>OqTy!U-bXzcz*PM-Io17+QsX>aDH$-bSHfD
z437$FsQKv?5^n1bzh=>E;u4@q)jJ(oldpQs2YbzTb)ykL{hT5N3*#MI^v;6m(f02c
zW>qFts;O#NH6|*d;|KlAnSp_UKeJl2#N>;nG=w<ln}3FeXy!dW*9t@yeCah|ik05g
zlVN7&4bH57%oZ&3C{U}2_ojiEm>4JfiR4c`3-hCvwL}+J>99j4ed^MR>Ud{qNgin9
zeBbP>*vpu2^ui6Yl*3_zW@BEsfLMA@->f*xW2+<ouU{YB?Sfk>mcD(luy0r`@Vq!B
zrEz+i{B@wa&|+TMTGz*9(r1*0ugdd_ih1YXMf<gD$cilK(8MoonqzZ|=tC8rRlx)`
z^k-%Nnwmm)ZnI53=B^92vgdZRnRgReWcP-n6gAkM3q%A}m!wH&|0MG^_@^Nm<NMcO
zAYJfRENmixzQ4i8hYXJaR6{nVJQWFks*r4MQO(zPt7Ns$OxO&f?Ik7sdLIWiPY~5t
z*(knJ1vqS1vpAnJfDuhwOG_;#9&G24V~RR2ZK^Igntu>V=$HtD+1T1%-s{$nTSmu2
zX=VDenbqfJXI#Dsy6aS&nSZ43>>f=IH!YY<(AMBc#7mTI@@PLgI5^0u8Y@XjYc_#q
z_x$WNni1qzQCCBKE2?+6^R(Lsf!G?-ZviD!SvB+A^_J8HRiX{>&`@r(Ao2Hy3uVG|
ztP{u3+`$B4huxT?W<*0(4hHZ%C3#BZTERRwu-D`<y7g>ndM#8@@EMoi$)6wJj=SpK
z2x4{%&sCY4n*zX+jy>`VL6SDshND2z;NtbIUHHQb@pfU5-#IEOwnhvl<+Y6D-%f#D
zvX#|UGt)B%i%qN$#-xzthVxBrFy)VD?(SMu+ssSC<QkK5T$8B3J&=jNy}ps^pomjb
zo4a4s&{9IkI~xR0Q+l4hGB=OEyyOKtJ8=oZv5*_LM>p5U4o?~7k_2uG<VCD)E$>T2
zzOe8n^>2I^47*ZtBN%?gZGLkD_d6fbuBvi%P6928qOhT`a>~`!%xwRBr(GgKT3$-P
zcip~uRs#PpGK@^b(2)ho(2U$YOV$5a;^VmRg+LqYt5V{4+k8f2=G}3VkLle$Irr9L
zJgM8><b{<xs>EO4{p*_xw3!kbbJK{sZYoL;q2&xuANR|j>k>dt#^GbRebO={ESk^A
zgb{5sW8&4N-V?h%f^LMw>re5z+U14Fo)Jg=jN$hl-+r7afxKV4VjUdB!*IH6@VJ6p
zA5%e)S!xAg#q8ykT9wut5k*N%{e4&g8ZOA2o`mg=8h(zG&^xq9p}6FP(v|o$6iErj
zEwBbvsm#(l)Mvnvz&y2(_A`dm?d}Z_78#zxYc+JgASl;}@I63WHuItS!@>`g*&D9U
z+?FiFUa+zCtC!5cY^)4@DS<!<@e;4&^d(;erN6B7H#ZQ8-Zbbfirlw;p5@GZAQPw8
z=zY=^3zo=THVbFYHtlY2*>4t?OF8%mB8M0K)M?bw(I2pCl(XF4;Q<L;HsW$FgP)I@
z!IbB;C6~x)d{tExBwuaPnI96ub<_Nmq1)9}y6O7Z95_C?&@MAu=ss$Gmp^fNiT~jN
zJc$>PesxT_D5qR6>@%dpn{+XeOBH1a%dNgb(98H;-^eHxQJ&)OZ?CWK?>la;e-AYu
zMs3N0D(4O+o0=af=&R3F-%}|osu5EXIi2h$B6qp@S@`*1vlw-6His`3C>0E)2<_}`
zl}wp&VAXxO$d-Ggpr%Fp=ooVZ!~e3XYEPXll2Wi~Dt;_p!~=2MS{Q~0(6Vr?-Um~`
z*Bjkpd}Q#_5r_jm;6-ZVKSASfDBphgCXc1$<-joWz_6g-P0XdPUDG-3MBYnwCwu4D
zH}(Oo{4NL$Ls1dnhoy^;O-d~6p^KFF`7+8bs$P*Ag|PebMD>!3vtwa#F>jr(#(Q^H
zaZgiCvQ~p1mat1$BaOTrRjsTi93imV%rl|7^)W4kQh-*FxxKeDv3*5h^kG12jpMyH
z!Q9T#kh-ecGuszJOm8?vB0_9|x0a5pr7bPLe~ehgv-9xr6x0O;3Z0IReXq8qr|(eC
z{6Ng6-DG^0Lu55IIv3Szssi>E<f&TL>R<q4=0lG)5~!vtnCW<U=v1RIXqRzKlm<tV
z=rAwGv>#zzb3w=L3A#TfOuvdUF*QLC{%V;j!;l$_kvCykEB5g#rS-u<0W-7D9UAz;
zDxXOvBxD;1hN2lcSA*T@+noB|*CJ3gZqk9D85v+)LQw6tfZz_0tnrAhTa{~Yahe^_
z1mlAbwtY=qJveMl0-s&4NldVXljWuRd{(cktE-2=Ogy_@UP)0l{!o~JlaO#jf4{Wd
zVoh9pO3`=X&X3=}g>0U<*9y#Z6Hux25aCBefX#N(*K;M~IBN{Dw4@!ep(G6QDT}jz
z_BZwftu+*smDkdJyz-ft8D%3Vgndzi+dU4m)s=q!%r9UzA56JgAW0h)RMylRGAYNK
z8<ZP##@v(9hN^6unR?WCIe5(9SE2l-W}ljZ{ANFr)W0zy;bIo{IXR65=kd_R<>L_B
znAxDK(^X!6KEL0M$|na-V0uPyK)-yvbu?;tt01PY{Li0<&4^0-o$|tg^Z7y+01FR?
zjL+j|W23Q@)JiX%1k^eTwntUxyK$NY9Ro>MzqItF^%6s@>*+P(Lw}r?mzTP_s=km{
z(9QBc{rM=wWFN3Tu_=u27KS-{mikAg`DsdVwi-+e@{dn$>ljW>s0h9hAlIb=tgR0O
z-@H*1F1;@z5b?Y?aAWNF_?gnLvSf6@-Npr$8O;q$&(83SPYfprZ}}bh9XDS=bm}a5
zLI)}HQ}~*=hla*UpK8h3fFq+9El>DtV`AeJ4&b5j9Sb#jy4g?J1YEb@o*%E^#<6JE
zS;DH*mJ*+KqfqlPGSdl%>oHnhe*^m@Ojcu{x30VESp(ondbjjS%c}(3c4J!094Q6N
z2Ee_kBw1{54evE7(nKyN!*RD*G)nEJ@JC|)ltz9d6R}-=Pi~d;p<jLI7hfa}+J*hw
zu)`{a7eD(=nov;Kkw-<<5XAKgV_H>J6+GC}Aoso4fxrll4j@a!iSp$<JSOY?uAH0G
z)o)@?cMn#by8X5t<t5+yPr5dPe_{(zu$pR@KL=AW_YEU=$0CdM8_P}L(&-B5z?!jf
zJ1w1?_2PNI+tM-r{6@hPDiGaS1%vH1^;C24RhI$)Zn}L}a&4`q=8`x3(<iBuK9?)B
zw}_%7hpCeISVBAa-te_HpJhQoiGHm&W(o=d4GlVK;|XGx*~eXvGrJ{U{0yq|baDz+
zy(*CpiM&0{BzR)iS=8j$m>o+56l%HonR)J#Q2E-!5w({QmvVmhC_vn#nouzr;O^<g
zu2Z$&mdLH|b84vRZ~`WguC+6imf1<yOT+`vHxTeSI}Pi}!rM)hmO$+238o1WDj)ZQ
z(`>j*+#@^$>X*OJwgnGA@Q^qC@ni5IToRr7$BS(IB-(gROB)CG)WcgOX)sRmP2~|$
zXeX+ZQ|2BTm~g_8rG~kYRCBc+72zodvlj%?9TeErwwiOZL4iS^Y_jM$**+TB(mW<#
zs)50Z;v?m?z2?9(gStH!ma0G}5T2_hTNpBMZMr?3nAfp0e?jr&bMDtg%U4q0Rp@Bn
z1lh6Gc<y8@;>4*<dVhWpKh|SX5h#`}X)^O?zEHh7qX-6TsFXGNL_|oerl%&&ZfB8)
zi9yFg+cq|*UB8GK+No7%dC}VF^~NQ%=oIcPW5p~LoY1~<>~7}zHyJ$uMqceSc&@Zv
z6vU$}|A9LVH=R2g%@<WwT~gwI8(pZXDl_Ct0P)5BLGTg%linKar&QjE-Vzb`j~Btd
z8lo<$u{D{-hixDDiggUj6X?VvLH1h!Ek3;XEX%;mB6J#01t!VL^{k!*(%m28onbY;
z8#oiJB{~h$3QGoNU1wKRlhX=*YrCqz%bxy)n=5hrcr<`cJYu%q7&Df&+-|tI8gkvE
z0!fb{BvG^*$v)fa3QKF@BawX5VdN03Q*5!zRQts5tSiNFxAYOtl<@Vj{E~MONzq=q
zyqNmq@b6{Hx(gtWB<H)kCkJ+@NHx^7k`trwft^pU(xX;<QQCh#U9~wlh_>zQ-6;Q?
z8521aOAz)Z=f~h1lJyNGyUEhukMtoBrm0u=o8i0pOiWdzf<71khlVUJE{#5QPj4R!
z>nn^Wn6>}hpbFkWy5J%m8tQdF>OK&N-Duk}1u;0UIcY{-Qvj0mKO-((wY3FzQNI{j
znWx1iTRZyzKYC4KiHKAPe>YWKo_;+Or7;8zh?5krN(~1iv=hVsrcSHb5T&ldeR^tY
z0>xjJ$&`z%n}7n9T9iT1;kpMzJdzxw;?>;CDO0sS3W_RV6~q0#qrb4ahQ_b4n636e
zoP2+B7OB;b1%Nkz?u1N$Xg-~7f;PjLm{t3Ja4T(BxPh9znwtG;HaoPW>C9GIOw1;H
zlPeWxa(!#PP^aSKt&!v8yoX1vfXZ=zFB_1+W9RFuHnbDnoySzc-f-&qQO(RsCe$@C
zHX`Ek&mSXozR0X=er3##aoheZE-<2WM74uz24H_OKLh$Xe|@cLT<k-Squ72^5E|Dw
zF5Kb9v!eZlCN_R{`!b@z{w;>yPM<3(LcxbL^qGL!e%ZTV6{hUyP#IS<jK*gZu8s~+
z=%FuMW%hA=Kdh=OJD!;+q$>!6(VXOahsizGgbd2t`O(o=aS2IDGH*KE4xymZbI@MB
z81sxg&?sMCi7f>ZpB63Xwdf6%)lyb|2;hH=c&s>jNU3-JMs*`rI=j5C+;KijN(%dg
zt}Bd{oppk_G5yMHVp2s=uvQ5L-_qc*OC1LvAErO9`NzRJyZh+j#+Ss^OEsQERx$sO
z=f8&V6_nn>Kc0!=ViN=}<|OEr8*NNBBQtU{@}R}17gxFL-$7B#%M0^HX=M9`x2ozK
zBNm4~x)<;ds;hI#y-=RF%Fj2-mD_TxDK8Eo5b?d|QB?)N49=?la;JbgR=O9wzZ)xa
zj%<2p4_aJ&esY#e_a0r;{q`mihx9`vsiCROT_18WCtm3GPk;PSYQ4i9&TyEvRtD5V
zQAeZ39qx$nMQWIi+pV>2KKZ$2@zX?|$?@@*gx_~9ttdSay%gHK%1`Z8R8>!}&8+d0
zZeo)RIK;!rF@dKHaye;-ne5HJw-f676wkK{>Nj&X!B|YLT|XHYmk>o4ii4B%j6AR2
zU5DFpQX4dd`L?!gTd)_rXTz~}a=w5m_NNp=nGRK2CIsSxT(}ouvb@FujxVmpa6Hh>
zOtbiScoUM`7?%^0w4J5t<-$RkIrTRWq)e+QuGeHW0-xC`sklk>TVdg^XU`H?;>gm5
zP0Cf6=m8B)&FZSEx9XkI_51tjBn#A78NnjhT4<rOvs%NcBJguuq}$3sBB)+%cI5=t
z)SzKp_*+@!8|MyVVMpdc3+G`j6^o5>;Sbe#Cw~*Y9mpF=?i<g#PdDQr4Zb`OsBw!7
zj^COMretG&#VIQ!`Y&g?sx0m4*{RsHz26(o4{`Kdfv$B=L2fiOKYaobkUq6WxudGs
zyj;F?_UJ|Q>RPJz;Rh18tG;qBZte<@P&0Hba9xC%X47ZW)1Sq$2sGH0$THyKV26JT
z$;sh)#nhwTvjK+I@AVET)Zco?a<(>2t~eH~{oEEuimaxL#lxNp`yvLdrV{YP_s<h8
zW0_d#rR;d@^p|dCXDb-xQ-x<J%smbc-0tu1_;yM5!O5@CNi5a4#<o(6M?6#3Q_E2+
z01+&B8>OnLsf0v#)+=S{5FA3sul2d{FqoW&2bt7QCYYtz{`%8k0<@NIQJG*EBy@am
zm&d1n1KCc+HjOFqYXNC8&;ugf?G?H{8EF$o&9@3a6kZm-WJUwX1#d^b^-v_;$4O@|
zHu+xS<Bv;*|C3<i`c<J)Qe|VgM+>!IR0`-aj1yQ~O+R%0xN7`yY_H!8Sdo(lP;Y;I
zA;rtXy9rL*GM0U`odnApfq?j4**FB7ZOgsWeP=RoTo`t~KM?jkI@io3ON#ypqj`Mn
z738>GU7v7$LoS80f3&wYr><{cV1G0>ZK2Ud#zj@tRc&(p)0nI6jO@?#!0BnQGLVxa
z9zacsPRGH|4~hyyt*ui_?3^M^!Rn)<i)Q9_!$uXcIDh{)LP0PiQE%PT#NB9db=$mx
z{=uPCQgSbMWK#g5K}tDiR`AXE#5kzpNu+vOjs-#X_n&73MNU^cN!ZA_=<243F`J0@
z_V)b}a?!F>`uU#a^7O>P<&3|<uLSC&U3Ph&5fC7=HLMmB>lV@}L`g8b_}9?>b~fiF
zfgHD7)oR@lUKdQ65myPTyhkkXfr1EVo{9AaQE#aYI7kI%G#MkF?-<^JGt!-_0z-Jj
zi_h(bjPxB>$#0wdwjw~n+jKm;_X4|Ua1hJ}pAMM}kFThjS@j!j|BQc<#mLNP@V=U4
zeFr-;K#=SY*^u)M{et)z?GvJY>pMM7(dHX{8aiS&m_+4v=ZP33_Y}A^neyX9UTlGv
z2C|Kh9N+3@pIMp>g3(?BYrxHB$#Y}X1N2$-`>T(+?*|M@!8LyoD+w4ZMNsrl75m(!
zT*WYD*EAY;$H~n`awSMdXT>G+J6epM5`hT`yf;v}2fTNA{_UWz<Kg;u@ah{8&DEV0
z2eJ%SAoEti9{$IcF#I!v@mcih5U}b+MX1V?@9tw%&5ApC?<~ajW5_DD@?!c<%ef8)
zuo$Arh@NtLkLM|OM~*5VY-3i@(uU&V{%wQL%6TD|A`r^{D2st!Q%h4AK99?ls6rD@
zHCv%g6VJyxeze%+(m4wQHMJKshnp@;X&XKFjWTM5o*PAOD$=If+Iu+=-(0p+f`g@c
zcX$Yy(`F^Cs&k>?LpEKaQbHQU(RwcFsL5|-KQZX0t`?WX@4nT`?NFfABJK4Ch`%C5
zF3vkE%*l6m@ek(e&F<QzzqYlBx!-h@1>M}l#Sz1_C<J}PeRPWok|Z1)Rt{~nVck^O
zFBmkmv_#JQ*ummO0JW<%JZY$%%lUldGm+Kght7`D>HXD=wkHdyeE$fvz+3R9xXw)f
z5d+z@3WMReaO6ZqiAFuX<n*T>w+l-yvYcyYg7hgE>az^k1B3KN4paq-Pw+4z`zH#1
zORYH8TK;^E=)Fpt^S}=-V3^1$fIRY<!H+Z-&!0FSA#cRwB9-M9Nt3>x@+f=G)=KS+
ziF<zU3@VlVYh;uDpo)Wv(%jhCc!b$8ZEJ<&;aHRW@%wt(b{z;Leq||_pHwfcV+{AN
z*iS(&6A}|=s{bFx-U2G>u4^A2LXbv~ZYhx#VMr;JZlpsRL52n?L1__CkZu8`kr-k|
zN=l@Wh5-?Tp@#1IAMg8qzW@DvYrWt1x@0Y8t>G8v?0xn=dtcXea)QMgd@X|qi>q_}
ziH!NEV>(Az%G#c!?)2m7TZf|0R({vnm1!MDH#R<0Qo{GfjfiL5gz`N(``A*vcyiub
z$t>#;mCj_a6}8iU5+pqu_);!Un|QY`<gbMPsr3zoqg>7C0!u^ZUvY8GgK+thu}Ap~
z5Z1&VykHVgluYThlNqn$I5QZ|{lTg}bOG8LcC@J65)WE4mBUM~JB8oTqIo9ecj-~+
zg%H{q7md}};M)i+$St+f(E^UfsuhssfEDi6yWc;#bH{A<qj-{3+j;#!iN_IZ7-{80
zW)oDcB`G<*%FasdJ2^c~)W;8L9ntOh?QZ&p+wpCX>?lPQZ9c=FiNj|6@M_4sxC!3h
z-ySLub-l~}M{RAbfFOUHO*oAA87Z>;0c!+8bJ?x&`Fo7xlyREoz(Bmr#l4tLYPAmT
zc;-R}(!Z+pf38FRlbp)D0)rvDe~4S(ttOwQez@Y=a!%<P_@C1M6Fhtc$L%}czu)&i
z<2Uq$;<X<~iGZGtj=}vUs#|{*hQJX1>6+6k+)1jgrRBc)Pj~yT4LNw;zi;+$<(3Nv
zBhZy-&Hrog|9l}&ihg~+DiqZ7U$ymrc!iJk&!0gei~g_P%fEG1{;L`Aztd>>-+k-9
zIu`%F<Ns2l<=@&d|8=eZ?tVN0z@q>3R{rN6$-lq#U(z}M){glvRha+!)_)Ds|9Gu^
zttSg?a%cg?1P<mfB#u1!qzd^Vc~};%6}SAP;!x9+%Aa>?lVO>DQZ)(7&K7_%Q!Ctv
zA9SdhdTxuk38I_cEsUdc>22Qf+dMiYHx)0Tp=%uWfiLTWL$q)I$^iBBa7I!ZU}5Ca
zu}`?$G+$-mN)enw1Fq|}R%iXP7ik;oL%niw?)tTuw92H&qw{^8b7VIzB8G}&<@;FH
z_ZjZKKkVI3-|Km8srMb)viTWYBhh#%4%D<1%bPT<){B-=QdfeJ3OcDN8Cmb{r1V6r
zkpa?+f|{BjOYnS%99K*<K3%}|>_?vy|GE9enM{~nzo#h!x?w1zr=8iOThIHBGwID_
z*B%40URWe;_uFgYsp>GJNy30gRt9Gl5fR?NPs5wVH8qV@Rk?LyQZg<`)$#@@Y)1W?
zvpr)jfL6dLh7VbDDgi|TknMvsbLlQ!^Oi3mX$tR66T*kLK-*_-m;eF-c7HDos1f4P
z(R`AO{uDpIEo?*Z3Jc;5AKNVFFXx|B`5gK4DHtFhiVcoQm7$gi#j-95{4dbgoKJA%
z)D+4KiZskdr;TSnI=;JsE1$rDg{zW~?j!5^l2xvS#M}jfT?;E#TCG)~xX$kK3b(vz
ztx;oM_Y8uIuEn~ZYmr|i*5ur@86Q0{x9E<BIiq|wLt#i~s!g#bNpP|51e<04yGPW!
zO=080hmc&f_EM8~{>h_*;Oy_h_pnG=a(EWIE-d{|vkwo`laueJl~HMtpbtBKzb-4A
z?Z0+twZL0xc2V;AXI~cc&)iG>WBhAM9dB?U(GBb}oK^5by7_gftinQXW!rl>f{>5`
zQz)TF4gNVkFc>WPyanO*Kh1Md5z)r-@@r(fS#ydC>^6PJfe_`_NaMGOqTiTDg6Q8x
z{Ya$TzW0|E`B0oIyoxxViP|fHY&oz)<P5lZF7H1~s0^A?hP;(?s@Q(XA%Eu7BIT4j
zl^tE@b2AjzUkmw_NCpl+G6<$}$~QMWHrJAa$dhgms55akDLG{u{1}f389ESDPT(Ne
zO!C5}NcWkT$sJ>Eb%!*y6GN6SlbZ*_JU5?1w2!@Y4>0FfVqI-Fry9vTC@(K-zBF-X
z$(;G<>Af>D`=o2-MU86KzhkVVWUlAw?sK@X{rNX;=+vmb_&1l+W3paVwG*;@28_jh
z;rwoFxra~PJ-+fkb>MCu_Qfi$t*QR<rhg&oL9%8AY}2KDbfV+(vTewV!ZjyV#|Fa6
z%g)Km|Bx&3*NtXge`TJ?UaHr8S!QO%fthUw<fr#MD7Dyq^|*&KADNj&{`z~cUa+;f
zvg2&A)rrWQTf}08oYwq)n8W>@!8YC5yT6>vA~y+|m!UX37QsA|n}oD_3(xa(emf+W
z+RS+{otspN)dh={wmTxlA|E<1DnU`j4K;51KVo-rVv*w&RHURDX%3%*#oE0}H8M{`
z=J~C|XI?)tMumGMU+bPVb(EPdt|>Fuojhgf631isxqX=ZYg1-tx!-boFCHUKMYUsP
z#jC74HEZS(i6;(`yIq}mFNhlQKKbTv+mBW<P7S3cT_p@_PLqsr-$uTVwb#@(xIJNi
z0+&*8e<8p;i7bvBofwhna8~vQe*XU$$G+A+xrnRIBv~RP7i0UhGbgR!by&p)q@P~}
z?rn{aV88EWP4Y+)8?TtO3x>>25DF@#w1eoLQP+N8Xp(-}V|tq8<Dlp`pMd95{!$d>
z9$8_<@yHWe3xiuGz%qn9oS)-*<zx+@SP@5W^%MA24*1x*XO(QFrphs1Y1NM}Ew72w
zhL$0PUz}fAdEuZMVYA0pU&AJ7iN~{~98}#Na6pthew}X+2P$r<o=Bu+Q4m1F!juku
zHAPXHBQLX-D&D6g^0YC(`ka_MQ<(UZhT>ez`b*?<X$ow}2)+C7aYojA!^9M=xf-wJ
z)#Xb`ANn%9LA`o0^BMDK!i{LCwg=;LRL+%xTl=Wn3*MIN@)ju{oBk5B!-y-o+vS)s
z$Fz2RNQWw`?gg`wVRM8J29I_LHpCuOlrK;J)VD>x0A_kbP61wBI<CU!q)ys6h#S%%
zOR>wMi6dPEQF?y7TU%>>{8Gucc7GoQrf+K~Yi0L&1tyzA<s(;T@t9K}bOFO?SO|KO
ztSTe@KQh`E_FEED8xa8s1(N(cSW-RaD&@L%UPt5tf5n>%nk?Lww?FIOWq&U76H7Ex
z7B${Azf-J@qe7v76LOtZ<<&+BT&0kGXpv8j*E0W;kKxh>Uf<ByG_)#VkaBn4bXwe`
z8aay5)Ek?1T%H9;5|c&8dsVc#`64KnHG-m`{9Z$Ht{L-2hV%*2^yegUzJ*%oxQ!5l
z4BTAj7^hgt)q!QSB&n_MUqc~d_K4dzbV%zU_f9^#US(6v8+Y{X<F@#x94gZq-Zlgh
zSC1{3^h4SQ1d8(WNoBXuapQ9qHm)qVzV@dP8J}q6$w5DO)5U1&2sS=4J32k0P9B!=
z$#<Upmw8r4B5PFgNBgon{;vDvf*WktK{ynYB>2leWe&)ZPcgXiUQ2b#uV-qjsSu0U
z4}39?e9Z|qXGze-U=s5TDQZf8MQ~}o6v{@*gNJL9CM~ZL$xVV|`8P61YL(@55BKuR
zoPN~uhPFDQNQUS;tS3Ku-m9I-4N^nb5>!hO=4T+WP@5I(kYBUoajy(su|E5RxH42>
z3?+1%oII|peZTOD2{oLaq2}Upff>sB)cmTp_TIwTbHTvU+<Es6j_U!}ziR$5OR1vB
z$u0zTNJH+!M5O$Dg1#xQB@VIu>uXsEhL130#hk`(ScpY)1k4ob8;WN04IS;B80tp}
zHH-}|3i*{rvk#rnPuGVTNGpgq5awketx~)5^b~Aby`hL|lYI{;L>)!J@s{a?AM!-1
zlLXU2ObSAA<_&7ps%^D_h)AiF*9t#SZOEl+(VE3E$;g1n+1kZ|)P+nQWHCMzUJeK3
zFIzYvQF|u2^WIReJ#qE%X(0n&oKsz2MQA*Ze;;b75}DV-`7*c=^Joh$_GZZ)y;MW|
z7>pXs_n{{u4re%fLbYY_ih%ls_6>w*mGLu(BkWm+qWeVt3u>Dxqkkn!z6NAgX;oNq
znW!Q?UmUav!xL%Cb}xpAG7KJi3>9)Yj$*~v^$lfoL&a7kof`S#>^r#-*J1GT41GgM
z*}Y>Q4cod2HI_-;1!NB|K-yY*PLA=vTYM9es?Oy@5hn9jLZ&jrG^IFAb?OaO21DG@
zx(*8&MlcMSgI6;0RjkD8)*eL(>4t`~;+gn{o=2|3<h1q*ygEa?)?nlak(oR6g^<>t
zLKqaJyTq=>fIlOAg(&Ql%ptY=h)Igz>z}2Db%O&vfMyG-K;}_xp`B4A?Q~X1H7oKi
zXScT|qFls}x>L)L@`o*$h#q>zCh$_=(sF{{&?mRoU?Jne!kHqS4^SjFk(aVkBIid~
zq*780;J>uWKZ*R1InzzHQ*B>G=Z@C~K_nl*Uq&^LqK5jXhl;^v4S>`2qK=i;VQ(e9
zq5h?9c^Q>?GkCOSD3a=K1cM1&IqFLK*NH2>xS2T<_PMmYgRULeg^QRU3Iz)~IN(cP
z`_Fw)FIiu144{S{2<HxZL%*?=BIVb{P^@RBzBqWg;K$4tCuBnlMWP_+YxCI~nmd7D
zFn4JpjtgLKUHHAQ+YYT%dWbio7MI=de81!2X^Zf1n{40(;uBI&@T{M;D>nM(cK?1d
zSv={DXg+lrr{`W#+KzK67q!(CaSW8JD~lCPZ`-Zn!LRG6PZF*`B&<RB9Wma^mAn7s
z{j+;?j3)WAwa#wDz(StZ0v~V2li#nxMC?fD;XU@vPno#{W)s|i!JEoLVnsAEK)`6D
z@6)5M>0r_z-AT?WIf2a!dt{bi_Xi0{E&6#wn2p_9;RAapq;*<#e=1Ti@OagA!u8|+
z7bby}J@8pvVtS1~_~LhD;1_cZnYCC$mcyNq7AW87)j<l&h$(t&{RDjL%UKIIoF<Ni
z;Q)N#%akn?tQ`GnwhcbGO+J%O`DfpPahDkfv$lxVLy_b+GDN_|_JJ+F`0K+dT<p}?
zw|&W_(i<xG34=GRh9dC*=HWGQ3kww(`vOeEK|Ic^$d3+-21ZML6P1MR{uMzbCA^g6
z$5<heNKXabE-99a>dWD)q@)Sr=Zi50Uxwx*agY6sj9<5YyQjQ4ZlK^QIPu{Zp;OQM
zo_wcuw^QDKhV|78dtj$yif3MG6RAT^I8#9`mB7K6(-bClAzzhEOUEBoZeoP_Q29c&
z)A|EZT$OFP8e1l=XFnz;U|-4^wsN~Kz3P!lZC>@OW5~l#NSAYQ+Altm4iA2O+_S_q
zLhwOWVi2_3wkHaYt)Y<~X2ak@h&(U#;wzt@oE*5eTrEDSJ8w6vysEbHHSn=|VAR^a
zPILCW(Yz&10o!jucNWgT10iRk+W%Fv{>-JUVqX1Zzf?BzB%s_>bg=Ku(Sd_t)A3r$
zbcSxpduYX{E=_v*YvO&^?Au<>K^I5lc=K#9Wzkl7m)EY@&0p3QelEg>P|wmJy@tI+
zL@-s9DXXGEU(79^+h^reD!I5Ux&~uD9^(EpX+JG`enJ*c=s(T~*@CI5#Nh4MWAG&2
zA{drJ)?r@dqrk;-4W0k^!(UFB)*3O&P>+2yey{3f`xkbFi<S#_A}SOl<dC$-SJs8$
z2Ia5y&HJhR$cD+i=ZvNdrSbCtha+QQW9ydAPOuEopv*=IOUfi#%7bO(yzIp<rC}X;
zPkYU8-+5*mk8DjIVXo#xD2yb0*#vxkDVNAtne`oH6sv|)Ain#ZZ^63<GFz%nUry{2
z^){cJQ(?_Nd+zm(eVyiNyZ3O#@{;dvAT69LXYlNB&oEK1I;G;WWfK|KbkRj=kuC82
z)jz<{wkCtn(9s-`LfOBgA-V#I6;uX-Xs8XaNZR5ypeS07l)r2Tt4$_%_-HwN_!EL5
zU0xiQ;7FY$?#y1xAAK3VJ|XbAnu3&QTXm4{ZO_eVUN4{TBO-f|*Pa_26HHW^Zx3A%
zZDq(jeKIKO@!T=805nj40R7S6XS2LXJ*!Bcjr%$V7J5ed?jizXsD70~-QM3Gg}VIj
zlu7CnQ!{yL$+aIp{G>tWeR!^MS}`Tkg?g<e8*pi_=eaHzyzwg|EtZ~&S?cM7K<lpl
zhT7`g^sE3aU1zY)Jj8C?8ZxH%=3K9vpjYjn$r8ye{-5<lO;j92(Ar0~f7X<D)nr~g
z#9yD2km{Cpg|(H{a)A~0q7rFUji&^>^g0M8L%>UEUjqa1RwrIjr;`I=$`l)uM$f2_
z7m|L_@ikMcL?y|@r6JCw&|Zj+dO6T(_r@9<&d)XLoJ2i!_-~JgFXVZG49yiO#~fXO
zfYO)j`h0`Ll!}gSP5P;!(O(M-neP*rq};{5Q)+51ruLvk0Q%TBz~k{5?&0bE#Y^<1
zNow*tEzwLymuuLUmMzU%u622NbXsnIRVzVT9)z2TJX#|Z32FulL^+FqUp^pY_&E5G
zUzwmtn&=r(-cU>%J>!fIbN&oAR`9`h31YlF1K*Yx)QPKGTRYvB0lnXyFK4};2n{Bs
zXG1xC-rLvkeLVb3ql;=`e}U1R?H#PFEOkW$N>n*_+<?gGd1kmya8v_E!1`iyz*X^D
zy1#!OvXp(y5%$#831*I1yDGXeF^w*`OPBrg?>d))Tcw@bK8RwB)d+?H3lOzhKxkwI
zKOm>c4F)6KG)v;~7W@tZpRyjvbK=`&j6>O_J{2`I>=t($=qlw%?rX_b-Id|5%q{w|
zHB(i4bK1yM_bN=m)89`)_haEV>$adOYU)>KhJzv^i-(`zX-2ExzBv@|fm?!8iS=i>
ziP-u^c*b;ZrI`k!$lb3qy-BQ5jWt}=Mtx-)AJ(CIO7Yh{J-uyfj6EH+a>w7qXw_F$
zXNq`YQ=umJyCZdOy!@B%q_$yQfH9^oM-H2tD^Sv{Hev9ndTB=x3{A6#VEH%)ZljDC
z$D=JpVqE~wGWlalCw2=K84o)L#(_xWi{O>mZqRTFT^ePiPNbv%H9s`DkLhlio-!Fb
z^26=+wQN?c|1q+c{T!oMQm$Vz7q}AXkZp7@*{)WJQm!Z~OX^MfD3*|IzCF6g8_#m=
zH~xzIO(3bt?$^R&;e7VH)r7SvEVAC6y+3|eTF$#VZ=v5STl(#-cYRDIO8NDr$t?J4
zm8np{Z_^$iw>4ba16ZzhM?8;YcYj(Zse12s6qZgT?%+oLJ$VRU+BDfhEpO<XWf<-F
zG)N7xK%xacpeLr$4k(hudJusjz*TVf&A<!;UqQi@<)D@}x!%xPurGAof<wBO2->fX
zPHkcgo4122gQzH}HWoKa3`zwpRFsv!gX{n^yW4rja^bP+WIf2Ry74|X*4&{XaQHP1
zq;<TD5Hc=v4p0SYZ$gpH&Q4C(Lc)8qKTVvk)@KcgI&5x)Ywb2LZf?%L*2-wvmngaD
zCo^q6u_79~{57L7ZF;;pC<6>*d0EVVAt!iizV_fPUHr@(+sS@!OHp`A1&0|T;fV{U
zlM}2{j{!jfzy+pKQtnETMtql%*<Yu-BH9;5^$p3+pLN<B8&BOEofr=747>F%DM{n0
z%J37PzV3+@1VVQ=zG)i?$r*GYCvGyXE!16Yty@NKl<D4HUtdRas&oB#<M7clBE_d#
z{Fxz5{nuCL_hI8bQxEgB!39a0KjpOv(WJ&maTZkFHI=zeOKp^zQ>o8`--7e;{%{1-
z;7tIP?zD9}@JZ62Ud1d-jRINKxw({}C)Gw+STBv!Ru#`iFt3_H*d4k=wlD5*P!LSK
znb?bLig$R*%gX?=bJ!P|tFXK|S#kA`bc5>1MC}GM0io;04whHw<Kq)ULj!;?V!PUR
zpEToT$XM=r)cA{q?%4~$Oo3D500ofNg1(+Yg?7o~Klx3$=Wrx~;h9+X`1iWJM)|zA
ziCpU%#9uHGkuipP&NcwW^A_Z;0tGvjV<_}@y45NS9#a!y;;#6k*y{loNs*R8dl|{e
zJ`gbVecyR-Ax;#D%gc3!S4aKaTQb~1TivERPjOxV&d}ji)8V%`6t}8s>Br8v3Kz%k
zeFEr{_HiDjZ^f#``cIXh=<rP@iuNR7#7mgg{pL#%`@yG0l{M9M6_u5;flqRD^JsS+
z2;!rv$qC6=Ch;L=BFsf9#yK&=M#fVBVm33~RR=G8c$*?AB?)lf6~=kIJ=~+;ykWKt
zv9aEGFTx#f6Oxbr!=e8MVK`uFbdA?l)Zsx?U&jboetF_$_fC0qdiqDBz`c74w^oOm
z2fRFwj2di>Z4_mimiBuVu{~qxYV5DhFMNae9#c^>&yA1IX<L3m{TOQL>+JMCxL60u
zpqXje(|hUD+*tQ>WIYFhX6m1nRF*QG-%mY#z~CdTM=faDwz6k;w|`9E#bvX2QHfh4
zEj>FSA@luEN|4avuKhezkXIzg(Q-QL#pdafr(odK0gczQ(Yayw%ded+7yF^5r2&I1
zhZch)$>ZZ{$>ndOI-iL}_FHYCnraG*R}W7pBTm2dqim+WkDVQE-02(4r=cM3LL87m
zq0mhfJU@OWjZx}%$4)*(s5Yk=Ah9DN9*T*LN{NeeadKK918+o}*5ht6VGiO~nR;ze
zBxprcES0CBrB-vgY3dIfuw?{`ATXL#aVOme+WLx~P5I?|f&S-(88pfsAOa}=@P>Yj
z&&bY9d;gYME1@9iTXiG+;h*%l<-fA75U?F$_3mn%Rm6&mh)AZfxRe$_zO|@+v57tO
z{gbkCU*JO0pcMY;46B!h^KNkE3(=?6eVN9T9($_I7k;I>#a~+(uhX4KwLj@=cAd-4
znsF*ACBU=U8TqX<EbI<-B|f1v7x#^TX{C|_f_Kh)^7(Fb*X~$prA71mcgc8ica6)Q
zir8!92%mjxyEs0)kRrv*;6MPd6JWQ$Eyo5Q?q8_08Xf&)mkr#r3(on_SUmiscT9F=
zg)Eo6-bYLEs`}^95I{ixd^==;!wBX(`oS*B(DHoc;RM|Li<_7%)G(lDx#g0vm3b~g
za8pb_H3#~cOp0I3$H_$X?m>$4{-k@A-lwhkraiGgbM~-UH;zG8N2>J(1--pMEpYHt
zSJ@y^(m1OH9flVt#uabVc23BokCm<DEi@jFkvIEnGBIzn{E(8LUr`qpW-o)$y>9MP
zvknxXVkKZ@++fUqW%FY8yh(u#Dk2i#)k%5M+4va#_*84ENwLcV8f9^~a+KAgr-SGD
z@}#|&`OKqz1r+^=;}yy3yDYMz#{zmMguI=XhK`!aP)T}Qc@QOeowQ5l&-+L6mD8Oe
zIp4M$$rVn69YzaO3x9buLgY%urd!?u;CLr7%TqhM#|9?;m-{?-oZolaYo&>`&&+(v
z&zAwGEeKyyL&{9AhAx|s#Y--RzDGsqg-EiEz1_o|-NUC&PK*-%eZz|QE}I*D{rnZ?
zjrW3wDaZr`3l(nMpbNtEt!{t&R@V3Cm2^M6V{(VGP?ra8tg7wkC~sl$D1F&qrBFXx
z#_wx;Z${^6rsRhYk=<_?A0{l7uTPBVCa!K06A@Zh8J#pX(hTGjQY@FdJmb>L{<XGd
z@c40BW~#P+k!J}3N&NP~foz~-3mo3xH|5D!UZ$q@S};pCAmuXbu928nU840TaU_tq
zoajb<u`qhOg;|iW8D|80&!6n^P^c)=WIZ4=Xr$e5@9s7n;ZadhSKb&r2nh{cJXT3O
z!b~sx-dtSW<j0_+UNcwd7FSpzRV}6CnPjbuw1p!3d%pLDRLI|3c&DSU#USDnXlh!D
z{PZb4-cn7i7tlkToSlnga_&3Fm1kvv6<oErq@-lB%DX1338#5g2%Uq*!49pzY;p&D
z7XGlWhjn6-=7AmGhR4OkI>WEk!z^5%ISxq?fP%Bk_BK1R-Ze>?;~6Qp&zhGji)EUA
z`nzmZ^Xl|9oR5;J;o)w;mjo(cK<)`zY01OSGd%M+e<d=zKU0QVR<QmvD<GHrCfKQe
z6wl-efcnP9?i)k$cP82g=B&;OdMX4eNMcE#mF9UY%1!s+>1MUIQ?cuY+?sJz*ZBbb
zb09}XV@qAxu_1gYv+ar4=!7NGUjix>@M~!j_?4!LgOi7@?l1EfY#PCn8bQ)nt+TTL
z&G$G?a{wUbl}MT2s!Dl_I3#6OyzGKjm=~tZNQuA6p<UnjrE99^xw%#dkQ-;zeBafz
z`0w!HLhwSX{86W&XGgX5a5|spyi?$Cg~fUD#kzRJM1B1|9|!K(bj1!TYfu@R9B%gm
zxp+-rvj9~(J>|F8CEBEw^Wc{734dodjq+Xbd+L1DIg&5*Z{Lh%lFjb4=jP^^MfjNu
z?tTU5DLmu4ovU~2<ahU$dX|<E-*^d}Y-6qpu6HYMfH?7!`b?7zZ%S{5WKcw8N=k!b
zX2Sc_^aNZ;Oo~8!JW|wp)Dfg>PqtuAk-+}pSE*bb^Yk)4vlynC-1W#X&R#>zB*K_2
zr9I0eG(R5XY!9KWpHK1J#4}eH9ZvmERqRG;H{P$SOnjOB(vHJUnk6BJEg|XDCp4ei
za&)eOy}HHpbBoGt<NSuCDR}q0X~fhqoQB^xva;r3=jn4lqS?8xo#EG{Ze)Jl5SbYG
zY*coj#ysoqR#Tv-0I_mi7YdqvQ;rV>*d1d^2R~$hud*b?2nB@*B|!+4r@^dxqlBdY
z8`Z*TZ?BavJbTqK9`998GJB488Zx;JWTqxZo{RimK3-U?XPi}dNQjHQH+EEh8E`f4
z(b#9y+{L;EgE)?{2&anJK|mN0vhZE3D{gB$9+X0;bEWhwJ=au1w-CCUAp@UYe&rN#
z81(ku%GRE0|Ka>Ktj9qs`*`oj5-_!>`7P!7Ek8RFB=$_!y0=H$D7CZS3cNT6@aXAe
zQYa|y0FoQz=XS%(HZ}}~nLCcTxU}^5-pMjGHN*|mR}2hibZO}#z~`|+a!OKC2QiDh
zOmhFigHB?>ZxbgAqdh&*2!XN7Y#pPwN+h~~<UwI<44XP$`AxL)u|L!0sf&jBk)(vw
z)^xM?VBDs`xENS2AR%-)EnX*U)d|1mgHMEo@52s*_Q3Lnb~!!8e?up=a6YAXr_kfH
zZ%V@0xaD#`NX_%dBmrer4DH>;y_5>0$GW=bXM?h{U))^|XZ;2S1Rg)8a?s3r+e>wJ
zv?1wviVIQCx*ytU?Q(pPqIh-`OD|%945hniWF;josdp82>ju07hz_hNv*j&FGrKNY
zwpb!P{KhjSZoT7#ykVBQ&nk3`Zo@GZyX>*A!NCb#<+CjLM9|02)uqYbH#on2CYVI^
zdyj@c&mgtMQ3X)mDrJL$*Skck3Ty@|m>?mpr$0|lPXJz53<{-Q`hD$Mq%M*9?5zDj
zcEH8jZ`t6p#=N{217EH|!sb*UkY_F~e|UI(mJO*rwg5vIuZVvX9v0F0hIUGkMQE%I
zU_jN>G%hwLSVVs4t?-*!J3D`3KnZ!gfLwG4J0leD(h@_+Uq3JtAcH(G7_ZWE$dnE6
z-|Hgb<8t18U%bz$WaoFn(sCL2`&T&64~OB54;J*HJ#HR81o3ZXk<Ke^7XjE2*YG04
zu;t{QXt#cD%>wG4JL`k0NxS2*&VYfEZDDcQjt#wPTxh+N$?u9Q94PX|cV&?kWU*Y!
ziH{dN`1pgxM~_7dLMvtUHK~^ddT|hGqS2+9QBgm2d~BMRcS9|?lK48Ywa=K=jqA8X
z)PlXrYA2iBEF*e))B+ZFZbmzmlqe{$-wR&;@`V6zcy8RjR*iTpM`+Y?qSB06>cuT@
zDhB!+!;?c`O$GIX#FLn0;EClKV$71C1^J|PZ`Y1q?jLOPbKa3e)aX?&OytB6?$YoZ
zQ_BQ)R4~oNGfCd_=rd}PHHsx60XXJ$mKV=v!&LO)G<qwP;bwEg<Mcx6B39N<+^&l*
z*)Aj$0_t_}<>C5?$S0*Y^cq1yz@W9V?u$UV&ql&M_es|;gv*O=*H^(kJ@<0OXm8vY
z(>C;td;~>w*?A4deh4Bub!m!m?w95nlF@o?Kk%NjCb`O}OxEWdakZ5Fxiw1XolOZt
zN#qIcT{?B_DApEo1~t<FQ+({}vVvF3bzGY#di3dQp07PvEDx5Jbo795GUW{wav}Gn
z2Q*44{P<$7Qnj63-|g2XiwVQOl;?{ML8JWH^02JnByh;*K+NmpxN(;HbFa1CV&P$%
zNIx=mtTMiG2aU`u^S9oI)5fn@A1J(|i!{_RcmFj)(5O(ghmKoJiAx%LKVv-Ohj^}A
z^(HkJjp#CwMC7H(KJ?ALiK<(E?$n>G;53*v;=O%6)Mp}-r{FM?Cw=I~u*`AfD9pD%
zuaxd>{yc`%-wVFA1L>}0@VP=*L9>T$oK^x%oy*+uCj|i@5Z#mRz21Lq8A8rT@4w!4
zfH;*b*7x81&Pha+2gnrR+UVuw7rT=>(MGe{mi58&*_x=FVPYmJkD{{L2WNurN&!fP
z3iQT%(3Jv+@4kJn0DL89XNENu-rimlQ<K_yR-t;d6&f@Kn%xf79X@eDxslDy<2?X@
zq0oM7AX|cyIwr$3z0$mymi8t#WNz+0kg$j**a3isf(CT!oD5^!GL5XSZ~Ur=!zQXG
z^c0odV|$&SKaIF6NsVUE`{Mg+uL|8SLFwuAl#7eDKw`s6-orz|%`sIs@0qJJyGnIo
zVcKaPA1CMPXpaqHxB?&Mwji&!x3>sf9vBNjBA3op-~|qGGg+~q<rmiV_x5%l0oGYU
zQUXiP==l<W)Pr<JvV+M%D<{E=zBo`{$09i+5ykUv_REXMwoidzLrp55GegFk_xj;x
z*|ap>G}qq~ayG9j-r~5&$IH$HslNN8xYQSNorFZ|O*}6@4*=YP%-^iVKfHT!EejXT
zZ*)BzhGG5`#{yU^u?Gh$1DS+G@f&$$scTO_Vs_#uQLXv(k-v$BCN-1G@J2$_UTAh}
zE;&N6+S~ap4&d79n!C6-tEoA8e5i>bf;>Mv7K4h;A>7Mr^mHu@{1tgaaS*)mcPlLr
zqr<}%#yZ(KDeFtWupy+Rq~YNwz^}@|U_LDdKq8d{pxD}PA5&IllAbPhe(I@YdS?DZ
z<(0ypf5pLo2BE)QBsKK(*CGK#C7J+0-vNgJuwn)V2K+P1E6UFI>MeVFzjwvu9Dk$K
z(n<MfalaWX%D}w|lWuWymsWrH+B*Z45^3-4j_kC@0V|ufy}$pUx%GDNSM6Xb8mjNV
zcUyCxP$!D|_Z<VWN9Z`Kc)Kgtt#^enr87J1kpR#G^anH<WxiS;iOK>wg(mk+Cty*R
z<0K;YueuIO0XXCL??Qmu2GPf#H%A(%PP7FX7#NUApMNWp*t?F`uD{arO__|C5F?p}
zYiC~&4an361``z)$-GNcNxyqk2tdF!pKnX}p{JKlkBnJdyAb9aTN^Ft*e<$#XY=-7
z6h~4__Mh@6YN!})1)67$um#MT-_iz~%BP0rD$MBb#dq>LcZ-4U?s)%He_x+^D~*{}
z^V-U)7WV4zHFIr~N$>KCH16Nura}X>FjW-BGKjTkKd|f(bEzmi&>oFe<Cf(3^>KVT
z1}YeK8i^%mqG=M<vK&ivNTk`T0l#TtVr*iL@YczDpJI^0S<sDt7O5?j{XQ)<Gi`Qs
zR&H#S1M8-$owI3aI!A^{#<b-0*qz7LkF33v?~&u;M4^XLO?m3oLE8rur13xl4zyoG
zHv&+xm`0oHk_WgL_#XgfeNuArGN?&fesP0=nE1nf;QnXVdLZhe?05{=@N#++kJxU$
zPE|Ls(aT5hW+4lUi&qq2{rwtu9t-|<z3Jfx?De_+Xn2johYt}sQl7f5;im|CK(o=i
zb_nOy6BE0)eG*6-$$m3B8I(rJAo_Qb7)iV5+Nzo>kj+o*9!j9%nD2kc%WJM`&c1vk
z#p5%*s3l`)Y3ciWB)ocrVuQ^ea2((<qT>@|-C!rzK%dcRfrQDBhk-LoK9kqgrJv8u
zkIa5?Sn<(2athvae)jC=-Ze7;LtCDb(mcHY<$Sv(dItJj=VvvwHHm`c_f$E&;iBzI
zvEP-|Vx!_JD#{98;I=`T@XVP9y9Z@u1qGiNu?k%W6*_#SmFe_50ZQHHUoZ>%UR*6Z
zFYLA^Cnx1{?yaq_J$okFf}}ru$t;=b<4{ywd~mRrf91S(&N^`+v40Bh^%oWQI(=-T
zcqF033V}!k1Z+O2kwg`UwBrLPy)MlHARU3-_KLlO@b!q4`mLS(NUYq?tg>vE<C%U$
z;6xuygXQ09D+@3lcAxzrEX22>{F=S<@ECch)F8T>5`y0Iv`Jh>O|Tn&gP|IH*1O=T
zH`r+eEDqbDmQzzR_>o}<$Ii#jrKM6GOh7`Qx%tI4KR-~vq8ZE)8RLvt)1svhSvM5y
z*37bJt95)<R9R9|TU(ds(0g~cKdjT~*|S^+=BF+$@4goV30^%A?Xa#==gPmDnH{yY
z?}Ad?6XXTJL&{XsGNUH0JO0o8ovMci^iorxLCep8tdjEW_q|Kra5&)10F{Mz-8py9
z_eQlX$%2mA*4}YvgB%hiBV(G8;jEEq^)s%#&B|%uJ%-2$r6P@RawF$Zk(`!*ij9?y
zIXS7A2W6GR`4ijt?(pxs9o*dJCsZRMR3o$p;WRn%tCc5U{<r4NJutRYF}5piYz;(x
zI8zEE)f&*GHjWw>Fj8u%AuLSjUs$4A8Ay|!n4MLy6-el@6Fm^cn!CK^IsC&pr_j<u
z(Nl&BTI^hwZ^;fRj>h-0%h#5mkESCStO!UR6xs9GgTY)%U`2GGw=nJbop$^utsIJE
z(@)nQv1!8e=hVXEt=Gv)kGi#!7J$Zus_rka02Q?~fPG-^_o1}DZ(ReLtU?pn^-1l^
z${ZBo3T))pO-$0U<R(S6sUf2!_k(z~RMd@{FfXeUC?G<N{FZu;naF9q)|W|6Gb+HY
z|5&9;iHrpTfw%qiYc!kV0ivqajZNi`w<xBk#;6buua*GpXRTzpV~3rRtMkzVrB57O
z6u4{{^kjVieoPM`DN#;~V^2H~ILt9rLu}r%?(YZU0{g-I50m-3?zHwdyIz7N7gQY~
zPv%~A;=GV-_ci89^j75n`8boqjn{l64sIMO>~Jdjwe{|}9CC76eM?i%rPdc~N@RgQ
z@Ogy9Z$dINv*gz6$EVXvl9%mY=AL=zvyv+p>gv(N@|X7~f51>ieH$qO5<Li*4g+tZ
zRY@oTT+I3@kJIq!L)7Sr)mx@&cw;B(M?0Dn{o9_Q>t|V6xx-)<cVcg)Ws~~D@kvHa
zT{E-U*mbam?@{v+#z!^#I!V&Lkk(-G+)R@)EHg(s&lr@@s_H777fkZpdRGK*<m4Cq
zy;Q~SzwTgHKt@DpQ2h9DQhKq2hIcd@C~)EB7JYs)8y3CD-G!O0Gp-DveIZf>hf_Wc
z`t@9zIlfmUHL$g#{wAvB##)8eZGuzIKiKwu*6Srgkq!AW+`PSQ!)(HHOD7z%P;OSC
zAywP7w0C$AK<NPgg3ovJtM*j3P+(_Hv$PT!5q@@h%FWe*n%aVa2GpO{hW;!BC83u-
zL(d<cyf4jTaI3T~PAtj9SUX)d=qs@rQEBFfjp+#byl}@<ttVE-F9A-BU<v)L3OBSN
z`#A{&WGQKWX>o^|yQ8KFnmzLY&^m8)ON~VMlzg+i0ky$XiKn=7YHDhF&U<7T&G}O5
z69S3g2$h0-vGkXsqw8ZG?#c-p==V$1D-UrW;y%ZlRgL*^hfop?nk)d+;<YCVfGmnq
zzU>|5hiKXc&&VP#A2H9yThcf3rRd|i6O_|2Qz`S4+FOh3E33ar(mg_6z~O)$mzqN(
zVvQTwe+{A~xOG4#+x0|<ex2baq2F`co8H!0G7k5X!i+5~8OU#{lLM(T0-_l7g_gGx
z5|oQBF7k?ttLp0P$7j#p*qeVW<e<du(9F;z388uY0942U(dRLbhUQI6qqnk%b(-v|
zMec!28Ja)E@}{7`%?+j^LAlcL@=r>2YEp$~K3j}ZJ|F7i1w(rR_lq6O%uw&|*r~X)
zWpvu#O+6MK)-%!FSjNczo&<>hulXN{cK3k9JLacH<E?j5-wOau?rtM71O%SIz@SJU
zmfbxMZuNBa*m^Qj0(gCWWb;@w&<~M)u{5;Pj<3Zit4dYW4rPk4zI=}paFi+Oo_Sh-
zQb{7;)<%q%&ngSG?@+Fwi(kY0^LV?615Ir6mJz6zkIy3#7Wspm;l-{MXN`}!R|lP5
z_%W}UHIvjn*HwYC-|bOU)bL(AYtl`c#>N0dV}Q2GEgMALd@0y~y-!KXk_lP^yX2?E
zJfmOHsW$-aos;$rV3$Qi;4!BV9jVjNw8uMCE)mjUb!_XTbKC{{#bW(wfRWbKUD^bU
zatD0K@-lV&{hfQFZ#kgQ?*4um>07UxH8HL!=!qPmdqOD!nOYi}qXY1J2mJ+kd3iN@
zcdhqn*D`uKda5E!*SG3#3MH@Kpc0u?xQz|riut{;YHVtbQe5fjQzj!M++m?kO-jRp
zkdTnzLPX8t+Me(kH{a#p`_dit=!iv6)kER@n~qJ`Egg$FCX1y`<#G}m02KfQe$Y`q
zh>gt}8MtvHUm3#H#t5~xhUt(JXg@Z!<E%a0+vUB(dn@F&fMB|`ld9EIdBXz|4FMHB
zwZ*8<?-V@Q<RLMgyB>QL6{XnNyRSXF<5T52^|<0Pz2@Kh=}U=n^LNPd4MA_S%Vyyg
zIalDbwqt)){!@?hm|Kg={Z@e{@Upu{J|r6YOvwR1z8y|sJQ7X4^K@tNLzgije+^Mh
zbcK=Dk;@TBxgvm@`GejAXzBmKGpvpO9C}?c+f!3?PmJ2gxN%~%U=e5zHuCYyFfb4S
zcM*K2e7HIHr!-5Uj2AjJJ>s$S^FHL8vKFPWvF!fjq6g57vt^PBe0z%JaunwRR=K!1
zI#M}(0|O3DE=X&*r$Y*#C7lqTHd_j3S9j#2{oPGAeo?#251oQv_P=AYW{N8X>tSXY
zEp96I_VlzF_h47qC_RV1Ky+32<2y+Td3<-iwG^AqnGF^vc5h|0Y*%sTaMBKe=Q#d}
z^{0U+?T>E#5+0+k%BiBD>S1l}QtqSrbs_W&6bTTXXUUXGaebDxMz^SmaH(koGYcs#
zZ<H4o?@TU)dam$ujNK87WC&izd%R<DCy9%bOL}|ThRUuGw0sbO3$qD!yfZT<Dik9l
zy1<<VvLz)PF28c;_*vxX-xC!Zriql{6%f!Z9kbz9fA-7~6i0Xjd1XA%A*#h4&>*2A
zOYIoKJvd&3z8Xgs*k~Bj(JACPqHxFnoFiP}#c79d2|8jyCFFFvHlVxCkB9~&iaplC
zYB4c_sTGkQ3`#Y;KNo~Gh#plM@;rV<dN%#LSO2xr;7Vj$@U1u&8EI#XbOJ}C*#J=M
z04gtIDfk~bI0sT?xNqJ0<1Vb9#oagDbih{A`b%QX-lEohpvMo+o&)DIZoP}MU0a-5
z$2r<UdC#ARYe_S)CH7)Hna7wzZ1rpwR};CZ`Hd@d@8B*|10fMdCnsD;p@NQ)5jb<f
z&Fw1trFZm;3j#%<AtC>#Dphj|dh_as8?*O=7k;HKu%{B++duM$w{4VPTqIi;vC0mP
ze0SQ!SqJ1WGv<2mnTMw;ascp0?~tcL#l*C!iXq=nQuY0&4bS@;-0khpXJ<13CzCl_
zb1R+)0?g>1*u9%KmyhhmKg}>;g_a_P9d?6$bUAB&?n#TDpb&7CYVaHGvt$3NRAbcl
ztNO!_6fFw5x48nvx5a2ud2f19<mT40N(+4`DvKIG<$mC3>})hhHX!2<elWtbu=D(+
z({E>$K<?{KOgGJd(f$U`ASLmKLb%_2Pta&#kg;8~gyqnX?)==`Bgk8h#?7H|PLULK
zTH&@g-Gc&snu99qud|1S@ihjntH^z-6%mlR+@aEXZ;%9&t!BFZp$ze*x%htNJuS+w
zLU)4+iFHtaK^Swl0GtXyTyve>9OsI!suLUW<CwNX+1a<auYbt>$(J2<W429}PQ#Gr
zcX6>P{+IB7PK}!vR3woT061%KW~&c*1Z!fada>>h6$(A|<v6f;GPjF6rC0CvlD|Yd
z_Di{E2ztjs>reeab3R2dGjxt?D|gv^orpT4)AqA1o{jri!wr!0KDgCf-mC&Bec(Ja
z*GtL}*3<0?n{QIlY|V14t2-JFLbO1&!oO>Xt=qOr{F$bMgJr<O=MUbe#2>W<1z-VY
z9<%@c4w1v)5S0b29eSa;#Ww9g`_xr58lKokMHpT}hJ&l_EA(}C_Dg<#Q_D)E{9T$<
zHA&93`@VTV9R39;?T#v!=Dz)$y3h`FJx|OwiR!mLYI2>wmQ}D4?_fD_!pAl9IfDQf
zyUGZ=>EeTUs=#o!tkrWax)Q%fvB4t3i^cEnY$7_l{9ira&T+4LPzIeX+scaU7SX$N
z6DKM!gQ$-sa3gv?__At?dt|0O@(r>P8$ywiB~*m8vVLTQT4O+XbH17NkT5IME!O8j
zrW}2m3zL{vn4KC<0#G{QkWSmXbkBg4W7B9O>vOYg@TJ>S9}kE04+x1~cIr82pTd3|
zW$E@j0jufwG_5TvHv6z`^wM$ehmMp3q;*V3>TFWw=ONvPgmi=q-?M8LZ23|q&nI8k
z)^0v$EEv&jLgO7kd(ib*Y3feLBrjU$85+zilpT#ctg-hkw!g5<A0!bL4!bf0%|<ok
zUkqGjEwON~ZfY2oj$N4nAwEDJZK;58Qbfby{EumM9j(CWZ^gx)+ZtCi140+Z#wBZ}
zCpbTt-fXZThTB293i7YDOE0$Q2fx-nro{r~Is+v14%KV6c-ZVEUARo3^qI#1bh^L8
zT6mw$(!bUG!&dNDa^hh!>8_SEFV%o381b^{>p6$n&#9X8Qt|rJ5}%3NqR^?pV`tb9
z!uq1(wE!g-0}FY##_+(G8NXPD{uLr3rN>Scp5TO&=Xn6zp!Ukfiy~FQS5Yu*BG6C>
z)h$lwDKrPfQ<!KHmvX}QMbMF=QoV+?PxZpLUq69ErMzy=MIF7}_o__Oc!hiv1u3_&
z7I*j#S%bYDssyO1WykX)QE@!c2M@~)%$m<niiWjNUv?<7-G;Lq`%)bQ&5pl0aw_as
z?i`SP>+fM!@0SfbEy`sboNKc>n8r8aOD?F{`*q?;V)CPnbze~G#gg{M=xTn~o5#gt
zaM7_(T8!QCD@;c_9kNzvmUsdo+H8wC?s%3aDQx|w{<IO%F8NZIyT0v0T6wM~M5BpM
zJ$MnjqJR$crhe62WH!fQSGCsT@tazLSKIDK5`h?@AlrL273f-k6_qml%If+-$~XT=
znlyBx;>WmjWpUk35UY25SC(vys?M+<UZ|+k=ntstWfV87SNB8c?w(f4d$X^KJM*9+
z*RQVCxfpU8>uTV10Ow7qFmKb6LGX``je~8$wfJ_Xi@zS(^4ReiYJUPnQBJ1}a+I=I
zj2KnTP_eMQWsjnvxw-}b+XKY#<KkK=%TS>yJcR1)VX6<qFkd@?p?9w^V#QRAL-ad&
z5~Lih5i$&j#rr6@SQJ|c07d?RUpE01GHJ{^1OrF$g)V0MsWlOyX6e}O!x*uG!Yzzr
z<x`kIQjgG^*q?P-BAp{6KfZot<9qhIQ!VEvO;)$fUxyWh4Yj;&vy${}|6KQQ>*R)_
zfvbX)B>*#9IP22(ObD6HwY$i!!5mq5+h=33m?N>qQ4Ili#pM#a-Kz?goQx(_wJHgO
zg`4f|4USJ9x@C~=xHvuID=P0lKii@czkBU(B<t}6mkt}?7W{+KLU=>fm;Ru%gdY2b
z4roA{0!b+A{Q=+~CaS}*3APfcMaVqS&$dGVZ|D3j1lHUow+?e$f&D>79xm0Hw0)4e
z---osg5Tx5_Ji*~q}G?w^o$oJ$h-`wa0r5-YhB|U`X@1DR`M;64bB6Y%0QAIE~m7I
zX1<C6J?0dDpIh>W?b>Qf5(nV^kR|}CoCnxiIbhj16-fDgeP5jG{V#lIN{33}!jlMw
z2bKUkKM!!zFigZMg2Aij-Ia7`=u4J+|KWyS@tszi)N72;p!AWv6yRJ=Lua@OptsEB
z^-Mr=*;!3o*tOIlLp4giv8#}*VjWTUu!=e^1^N1DjF?J1XP$Emxp^A>kPI&&`exCP
z>yKfqO)<xL3NHq<`z>7BI?+mcG`nIw3AP$)fe`(g@@ZVeIKRB(LtO+md;0Hbwsedb
z)}O<3{-W>#5zs?=M#)9JKb=+D(uO>9-~6-j2LR%D1%`k8CmIg841ZG5VkDNLjxSDa
zT=YUF4^9zMUZDlNA}}iRdJcQH{}6g#1#pIjevcmF&?N`(3WSJgE-({h7j70ZZ)_Y{
zm>q)Vu~dZmD%MDaX<{N^8AH8`=<gFl11Lz=EJ=AC4A?otJvv5|F+%~^lIA5Mht-(z
znflof_*ZYIH!G^7)8*n`Af?cGNyt1(*AF%VCW{95lyc9W;QZ?ukW!)fDgXaK&2P;U
zDD;5UDqusD``La5l<0pjsSVtB#Swd=*FS)s^Zu@Q#0ShH!TJl3i(k2c!c0S`6$VcZ
zynHM91d0_YBL45c#J?;4X7v99WB35<&%fmXyOj}p!2KVHAs~5#q6>l1^8evw|NRho
zNF#7}z-`Ixo+Y^eP@=~+*q6YXnt(ebbmxf>eAfm%f;qs>=s_?%a&kj2yVC-MQ2_9F
z$4J}1&awFWLZ~MHG9(son_Pfd{q_=k2Oq#3(UyOZP5*CmeZ&H;2SbtQN(tfo+d|fe
zNjK>k|3K$T+k|g|3d876)~J_&C33X@oZ*KwPXVkv_CBZtM*v;}dd2+-2~ZXM`$gOa
zZQcIbzr;nb?!z>|?awTI+igimHKt#J*9p@EkgGxr9`Qr)Jd#`yo*#*GK`G)7>J*?d
z0XX=dDGB?@T;7(Kf*j5&2G$t5Q4WkF1-TOsp22$!wr>!s2(<(zFVuiwuyqA+)kKiF
zwV;^xg@DPPf*<F9S*T!W{@ERq%JD~6Yp_<}#jOA(F9&`n2SlsT@_(<HYL@FTa<Bn&
zeAMi<@)`1P6B7^32Z-`60IAkT#ah7541IAf!C*|g<G0U}guIwQg|LCOfxfgs-chFE
z4E|r{DIOYn&mbs25=^WK!$ld=YPSyXRC2+4{TT`gFu=9l5$Gjn;#v$K@I7Jy4*>>4
z=mn8UsL{V>woT@7=s#p9EWqLUnNxur4k#yK_hXby%>Bc5LW5BPv>vMhyhs>xq&%Q&
zg#1DBx?TUjX2#YKBO<O0_QdIk)IXSD(gN@RKfxLX#v{a{JhlxCFsSR}oLYdgjVBaP
zd~npk+OFa3_8;mw3UmMZAu$aBB-gyyB8Ycg_KGwXrpVi+I<Ed+d(%P8h<ainiF6i5
z$LQrklvtlD8uPl!l%4%9dKPQQ>?I}2rCgqaW4kFVTPsXAzD&k!_Bp&{<s#4X-W!3f
zh4IO8^)k(sa&i;TZsKL}{aUh*hmrR#bg!2OoOv-KZVA%<MBhm4(Jg*2WLu^9iuF3&
zB-VlMkL~5nutc&hOH8F!r9#{gbp-hg--;xLN8}8tAosk<IS<sOS>2@U-2jIR-7KmD
zEGifvfknk1==flh5v^&e7-v`k77@Vl?Sr=mD*&D&6J<M~@M!ynhW(jc3t%%_An;6g
zm?yTeRoBu>_*nb+JNX$4LyWFJ%<tA}4#d3IpH?Xs;uG&f{gA?R{Z9VKC2~Lbd});c
zS_u^$*Ezxqe{`KMY-d6+!2hhVq0tiQMGB!Mex&W#5L=ED+3Vu$Qp_g^D&Ze<-t{hM
zq)Gx2aN(VCQ3w!2Q;Lrtn=4E&d0o2{#v`)TtFBQ}T!9M_dC7X4V|HYO{`v=ap@g7R
zemNYRany7Xh=c8Fj+~qu$Ae(9=P(w{hJu-0KgbcjxcJw=sb<JXDni1T`YlPvhS|Xh
z=h3L5pRFNpe_ADgb|GjL*ki^Rc0}Rc&-J(N`-q9f&<xbo*I!Eryh?P%dNTSAy{gBx
zf7&{rIYl#nUe?5Mi%<N{UA}v^lb<2;)9I(+_`dx&WeoKcQXLf11HQGwVqb5o?P<Sj
zozJx7O!`#sQ&9g}aI{`oAJxJuz9X*XFLhw&EK6-L_WdTfA(z>!DDTgNRJ)4&{pNnN
zf$k3eYD!L}#~wjyWL7b>yhL|^9*5zYDTyJi3%l7b>vhhb#-5W?E(uG?aRteTVaue_
zKYeYvt=`q-7kJtfV0=_PnT;p9`YNrNUyC3U`ZpJJ>>0h^R4#kDi)JV$NTO6Yv^yid
zwM*YzU?x<<N;BwE6|m>N>2|kw>Z6$Wv?cX&-gS3FJS5MI-2;0Gsr)xUo~pmHs{<6R
z@gl9V73Ozo<V3Q=0XOzm$GCK>?oZyko;7cwUayH}Iv(=#M|&6OqX6+MSCobDEr(IW
zj84EU*96tx&gq)MRD4rY;+mV!WBO+Kmq@aHeW;5A=ff@GJ^rLC72p0@V?`BRhxAZE
zcybc&a>+SAQ+D-ZoUTNDF88z0b6Gr-TeEja{XT()9W9E_YS1w@zm)g(7Ok$xjqv$0
zFx>M{AVor=5q?h;6yEv!HAn{r^g}{fuY)$!tJ!Bw_z%0@{MzXU#}RN?M>pl`JyCWH
zFjaF_6Y;JLjfqjn10}-+H$RWG+NSc0ud6mdEqbK(>v<+P5FiN_hZor!LnjR6A~`W#
zRB)5cg-r%gYxVPkUZAs2rA|N^`^9h5!#9sU48zH8b1PW@Q5i{9VTQD${n_ApxPLU~
zAKj0+pNNZh{Pk-iIMYe1W!v7#pBfOrA3X`#N`D;Vpc()B^VI01{+-r^mBlH~!MxhK
zx~KT!%t4O*B3jbQR}*7XJd$^aA-hDcS^RbjyFS{3Nxy~HYAVlMief@@3It-@oQWXc
zo>9ssyq#g4;IJ`qH|m8OthXgsOA@=yYVaBNS$??4FXyY3>fw-5gNSPzUp;yh{k;Ra
zxZ`sR5d_!aZe_C-Zi(NfvvF1tbQfFHbpMPUV*cCP)gk#O4N@v*NWJM~YFRrTGwTxY
z?rw)hqg%nVEs{BgnXo&eR=1ehR=k2(8Z(P23EgXSV1XZ}dYjKiTH7tWE#JK1=sEHs
zsyF+!ZpkV<#!?BhlvXWi5(1Y9B)<Ka$#s()(+rE)x=Ab!R{PYyc$h;aNO^J$8QzqZ
z?^ayYRGKla2~J2ugXmS_1G`d2<#NXO3gT-YLpZmooSKsh#JpBuLUb@PVo#yEwzyy8
zU$he6^H*nssPaDsJT%B*%8_}G0}f#64-50*qPIEv+<<-qQ)o}$;DDE#&&Rn{F!%UM
z+-nCjlheY+e0O?YaS7FbuBy?}PzNWaBq~d)zTTyTS%A~V_X#yME9^SMDWWHbd(!?7
zTW<jrSG05s4{pKTU4tY+26uN2uEAZ0;1+@f2qZv&0D<7{&fp#(xV!7%F8|5>@AuVv
zRj&%Dp=RdH*?afy-MyxJE#CqFZ;;HU3DGXn1|F2vy#w*{^W(mvqZh~qzI0j|&rC{Y
z{{|6kZq&F@6k=q@>hB&VR}<M=0fYh;RwINzz6`~$2B`=&k3SL4Xx6T$RLI6gb|Lr?
zpPpUcUd&cNTpj{eev)c?e)t-O2#A_`ER19RRYARfh<BkpIzFvjb<;z9B-n3Qke;K{
zW0~W9HxM%1hv3EKvEc@Z#hQq7wl&<dxH0^mRh0G2G-tO#98Q^$l;Q3xkTrNq&m=C?
zobA+<{sdl!vctzeQFezGtXzIk^^{sn9G_UFc6qx=LTxQdtB0J%19xtZ6=6cP#kTt7
z{te<O^`JJ<GQ3EgF_WDlR=uA})VBBe{Sktw{^a$aQiy+znHedC$e&cnv2QsdHt3#X
zsqo?;eE(-IP2dwfp7t2gAI%7c(`?=tA)tohe4fKmMy6c*D@~#IDvOw&LfP@}k`lq?
zvwR%pm>Ft>d3qd{ZG*%^@?SgeUdmTH%Cr)GqXe2QWxRZHF3$vI0$QkTKAJpLxhDcz
zJmxrwf648o?0YRdcM`@kwEE1X#CH>yl6d*ut0z9l#sbPN$&tMa!;~4zWC!*@+4<-2
zPr#akr)Fogb&(On4HoD4c!7fYCP0b-!14Z4UgW5=Ei4+K!GDreN~q%nu@FYb0hH)(
z@KL4Tzb7q<dWAeW*jrYbTR0m4VAFMV^@W2cHHHoz-vBDu>Gwt20{W!58r_HX_NPZ-
zClXZ7oZ7z|b6Z=hhg`$|lp1A-(fR{@nPTEEU;)Ob(<*Ms>|Q_xy!$Z#6x_dAuHSTP
zZG=a)C}jM%G8p%5LjDN{JDZUI(f9F|AFp<P>TB@^QJ$k0^?g^^1a$h;>V$d{pHSip
z@~uAl`LLVt_m6i{frLet-k0fJj@-1bC$!gmsV35FPelkeDibxGb<eLC&>P6wwA}32
z1O=xDgZl?}DiX;+wmK}>+B4}3Q_@084p`)%1;U|dRZ^<OmOeIbKdz7+Zx~Vdxvh?r
zrbj=b(6}dxgJ_I`%v;G%p<f_RZuW6T^;u0jA-ZIq6JV25kJwtC*~ce5Z>n-fWk)+|
zD~{H&!9JA^gy4DAnF9M#)hP>;xs3IceuFMy-tpK8!JQ~e=Rn@q13GVo40bH@kb@Oy
z&vl7BTN?~*Z|BZJ(v+e~(IEkb-f(eTCoVO__T`Nm=kxt|J{GLF<ZS7bWdd!jJQW`v
z2m>RuJ@$q8)cJ-?zwysZNl-*{3w;}^t5R3PNEwYve3yy{5`L?7-Y*cMJ=)Rm>i&*C
zV*fuetn8t)-lsW(-Z?Ept=Cg!3SJ`(_IE3Ehi~I39H>C9l(&2zC>-LG|0U|@#PS-m
zw*;Ch^#x$fI}D=EnFVr3g<^+ho!6(h^Iv8hzwUN4P#x=elxq9IPXpoSUYyYXmD(eZ
z1NmBY7SI&f3`DIk9!-4{)tSn*)64IOzO-STmEN91@+#Uz-!Z-F;((&;t2*?i)}ri{
z@%g%@qRy4^x6IsS5hL!66bbSS1p04Dz5s3v<m&Ej=i-7NBLrA?>l6H~zeiN=?}o3m
z3VT+id&y)@r4?l*C1~gvKp$Z*K2Gy4JcThSMf+3J_FPm=Te+C8CC}4`=b7UN(T98H
z;x?y#s0TA7Mp_a?LPZIP_Yt5oQmwQ|83%;r<;inJZQhUE9)dSx%f$i~7z8`2JQ}S1
zCpW^=G`Z~S?(=3>+9C9D_pnq9U5L|j((pE@BXZAGc)|Op0%Tb%TP#b{wZ0q)6sHZQ
zDsf%{Gf8{gnZM3~r%1{;*PV=sb?y%thK>y;+fx@h{w-e$IZ0Ec(<-tyRrvjxowCes
z=<q8P@7G`<r494DSFT?s4~!S!uxzMo!qa!6^P08l_k5G}^5BEhRgND@$W*^zT5*$t
z-b{{@Ay9aK!U6a0fmAGM+rHm*V87?UV**ip;a+rAt-G7I7Gov^u~RMIO`CfNQc1Wq
z==egmZH-1wR98`NzGHigZ+Wf`eW-Zo)GV?9b%gM9r&fEd%d-L<anfJnA1#>T4LJC6
zh05=*a4#rzc@XsCn9mxIc1UsEL2K3KU)mr2k+D~K_e_!Hf&kdE1Z++^pRuWbX{@Lu
zNvV*iGFzNpu8R^NoMyoJs-aBey}h22B#E<B84ahS4uqv}J6U6yoc&R>PM|!QCNke)
zI(F7xQj|)DgE)L~hJxemTNnBNLO(P9Z`-Dq{|bJ7(FF4Rd7U**vK)92VICu%Tgz%C
zjc-(27=BD|bR?C4*NiX<vyBZg82K9-Xj+Hx8cP)dQ3V8uet^dpCjMAgaeSitCm1#?
zuQF3!v`&s=X-@l7&|#&}4Id5=TFRTHbg;7{GB9|T$}SjcYv(jMGm+D#>TKPtZo9v=
z5e>kIYHztW=NIkDS==ws@6W%!{hedw-lWW#qG+`Uq5PFHymdag%c<c6=q`7zP+`L|
z%1c`}Cb@$2DjlD`>kk_k7(6_8c$FmEathnqkC`^h)*(Cw6v~=Nyrl#hy}P>b1eI7^
ze`E!Z_0wZ}8#rmCDl%#nMGFd!O?$mKsknS2h~Z6YYDH=@eN}qqYWB8}dU3$XO0VSh
zWPQNO@4QKySwM4Ip4bvDxH}2cbJ3QW)P?>i`b*(v+QQzp((+NG@(A`7%ql6mu8%22
z!E%*A+oaf`N%~3_55sK<t`F-lj@{pT>SwgG`hh`ednTT`6C5#7{7l6SShP?G|1t4B
zT%35yNoM^Sd=~JU>(!$ZNBYNRho_GMwt|U9XmT4~f?F%()(bkqryOAtQ)_!|C!gOt
zOX`w;%I0HhQe@Qidhf-<JT-pB#1LLKVLt+b&x{f9R13)gD(t;*U7Y~_R0l<b07}kR
z`zvNz{v1FlZ*HZGO&IdO{`r|c;9CM506B#V0D486o5%wS|MNBMkJ8R;fOKFlI=I7_
zPla7V{Jrl%;n}x6Mpe#opkQrZ;q0HZQNMCzU4wUNQF&=e5f*yXDK>g}Ny*!vNbdp8
z;we39GSZB10G-*ek&%crol;aI0th%ILGoW(IGtSpkx+99z-fiwHHpCVj8&3S;!X9o
zPD39ZHOsCq&py-$09>F8hXdQytw&$hPFbQ5hi`xTMYfbMNwes(C@K!mJ0_<@0R1zD
zUMj{Wf!WGTVE=)KEPtixA3R$}xul;~S7^)M@GT%M>uXNdAggon@i4p**2dposk=eV
z;PgJYWIW(9g*Zc3q_)t*A?UBE?u3Sq97xS9AZp}sOoz-ZZ7J<#!pK!iD)@wLGjs3R
z6E;HH9Hs^cvTg7HqRBOH(>Ut}g;zl_<R5+)y&+p&;?(+PV9q;o?jCjN9}u&G04C6N
zVJSa(_KkM-Q=M6+4coGKN)%C$SysxA80Is^v0W8<E00fsJ4{p5_yAwf9Nx6wx>L>9
zByW@MUIq$>yfpqC%>G>Hs<&oWF~su0HtAvyYS#3<v$x?DGG9#ezK<r*<UU>kPPhxw
zZH7lPCf?RgA2dVbO%+N^<fHM-iecEl(*phCC`&NOyqn<leb)UvbN`A@%O*_L9qj2&
z^va#_OTO==7xafoyp+p>nSGG_=7Y6xywq#@?n?)7Gq$%Opdk%tgfWIAi3Y-HOLzCp
z&~gY!aGRFa)&Qz!gS~b6&6;_dKs6!1V9S;@31yaKKEo0^R!lUBX!M9hLqi=A@s0q$
zAVTo(7zaN?hYxK#5gCbHp#V`ZMtHK56NkuAk|d{EtCz?d2LGPDGjVZ44<+}d*iqH0
z6??*ME7kH7VeZE>oX$2LQ5pO-7FJf%D#uRlc(H-q^zm)G4Lr>iU)aS$^Sw#K=JB?u
z%jjj*Z#nfBk;$Z?kP`_9UCz(txtUK9ag)RQ<I2A5e~`u#(#WRstdj5)n5m>1FPL?r
zYI%a@h85;?qHir#w8pSgVU7;-b?3>N6r8>{o7|-IW#JW&Sha-WDdJc8!I;Eo(#9Si
zjAo)OP=EY+lfAQOkgbOfvR3Y6mpcSuh{ktDI@q^NPvvJYhdKuxC!VN>w%4$g2Nwl!
z@d5)NsF@&b?XxbDL$VG0(v;Ax!$P_+Pm%I2R*ud>syV2AkR1kP68tvg=a%^+E$KE@
zf1?3nFje;sj;2SY%Khh#i`ILAl0q!znDCJ4H2~`i<Iw>iYIpqRFb&U9fcO7aUvTuo
z0*wc*G?|>&a~V^m4Gk3Is#08CEw!TY_x$Ck&HE$$t`{sQKN}p1=m*=Xc7_=nS8p*5
zxAj(iOXsi3Fm?aN4~=qh_WjAP>VcQi*ptY(SUp|0u#(bp)b@=A?kfv}Z~x;n$#)5Q
zxRY|oph%WY)_e+r*_)5My?<I!Rxd;n*k}=l`+BI>c@YQ5+@mw2o&LHz?PJ|KgH9ji
z67BOHJG{ffO9Q}W#;ceEqu%r@VPUJ-hO`~##>PGmb$V!nMP~^`XRh<J-YbuUFR1~`
zZ&lob)O3T?jLxr*E_;qVZ*AJdY5vXz0Et01>1e2@g(nH9Pi`ZS$$hTuu|d@P0Q32G
z!Ky#w0;J{VGPwLJA{yf9GWga-5y$mnfl(Na7MsAzYQ47fzWG4x_WWf-Oj=_KDk5ZZ
zpY?LP0ShQA@TS=wPA5NrUNf5xj%c_sC9FHV%=MT)A2(FGP%ERK^I~W4ch#*5dO@tL
zyp~fa1RKEy3A@&6)Yt3zJM)?&9#(1YQSzN7)t8Tt6T^bsrFWAn%&*aN#0Ijs%PrKL
z&7mts<K>C71JdyCgo!afO9s8;;ZA2*Tqk!m+8}i$h$3M-Umz{mt&+T=1}E)ebhkGK
zHVRXN0-<J)zdK1U-R9Z<oJt~R37)j_j!3`mLbtpA)^E|SNVJ3KL&#_*=Os>tW?{5O
z>RO8CSIxnGkBXS>$8=r1Z*{M=s`+%WTgt}jSH0|)GcqYMvNbqwtExEm>LNTycjGKn
zXs<Itv8Ll9GxDQhPs4@kcYD=j42+&}c|;I<RvOrNig6D&n6|090%S)12H(*>9&IG*
z-N@iOjS1utVy}H33|J^kHWa1b07_nTvu=F8OjBQp(!YGm#z3Igq$24UNxdwN!%(~y
z`A+n$2%jjSh*XjGP{qq2Y@8?QeA}Yvqu~b;vF5W3*vpul*j+jmcCy$<@w?NA%&53z
zKym53d2CE)_i+UlNJSSN|8jp4Uxf|ky_3wBVU3Xmw|4#|_G5zb2{)*IRr+0=6cP0G
zCF{<L=)p}%i<J<}$}qmy7rOY6IULrmOb9RZlQ>i1U};6chW#-cuZOAI%3>Y7Q2cv5
zmId~D+W&W3a@XT`m9F$Q$p~iuN~-<SfSaH)(W>rc^`ju`hKC5#S_<1Q^OmT#0||Z3
zJJ{g<6EG*14Z+%NS^rPo@b%!{7+q;Wr6tPIX}5LLCnF+4%A-Ow>EGm7*k{`?R%Hl!
zJh7vES5+JgIrnrqa?;^+;fo?m*?Z|QTnSUxb8-=n7ha01<;c-f!V!B#9MQ$n>$IE;
zS0W2REE-f<#;?6jZ+OnI+iF%xqi%i#-(DZzI*T(w$sKo~<mStYL{M^RgVk96ir7~H
zU^*RlRDih_)qTvNC;2?a;^)Vs`J15IS<%ykF_Ft2j~Wm2thAx%>YMhP!B^nh!T5kZ
zuID3cD^2AqUmV=1Pt+fogthNcK1aySyp_*kIdFM7SL5+9Ki+#0e!<9~^1!brkc@u3
zNG@J2H}1!J)WW^{%uM2IHy-(PEv~^v^!#vrFGrX3`Gdx*G<zLIEuu)Bvr7qP40o2q
z+B<~ZFC}7`reu|ZQVF1^O__riN`(-K6AvSk^Y}n^Z0UCzSbTTS`!)5m?e=#MYV(jO
zWRTf7MS4@CzqEVET&k7(N-b3MN&VZ6cc!bfh!FHHjeQ->^eOm>OUzp7&LB1NY5Rpw
zY$3$wJ2`#v6lw!4lrm$we_`o6C5T2qfc_aGDXtR;&AScrVjq@Kqsg(L$+^-3SS(!P
z_Hl17E?hqbw@XwX%r+1P{X*X8LKxozwPQXq;?6SVkjK?VxsqEP%VVEz5Vz{7)xtaE
zs(p;hZDo`=rDGlcfmA6S%F8w!(_6VNuQKs25d(kK`nMeiZXPoEDpT-W8Wja<Xos~&
z!cS8@L{NPH1@`LwSm9IWMD-aMdK=;LcrLe;1vCKqulJfVwfkGx?=%G7#OJ=VQ_<-i
z+>9tG8L~_BJxbW5OW2Dsy<>yG!utF&{iTb(dmLxAHbVV3Z`vQzTOgjU$03~wL3cMW
zb82UZ$#{B1>8LQR7IR8#1HT&UFTz((i*<~n;$L6mrz@9fd$J@(okp)XUVZQh<ro$F
z;^2X(TqND7LhIAaAI}i^u4oUo=#X3yf2sE&6&2<DyX97Yhte64Q~9H<yR{s08-Eyv
zp2k1M6Kp*O_+b{{+=<(*fSHLX^xQvkpDu7zafv@p+LVRn3Jifwlj?QumD~eBYiA*|
z)L4+M*P$a;A(8$c0yf7E9y`SR7ZhcSd7qwxUdPt+3-mo)H;M%;^^UxeBQARRXegLn
z@aff2`BlI(Zh<B|I@;qgv!j%OtV3U_HUy`rm9P48Ig*1T<?4i#{5M{-qLq(av|Va&
z@;gTALbRr*&$>1~<@lx5^pEt>4l5_7XXhh)cj#CbjBO4JqlJh$noT?MZ#h2LvTEIj
zEPNHR{pbXthmuz{BJ>>c@*T8v&N^G}wMdj6wsczWw!qm1fa}vxP(o?aQ(PV=8zx0+
zD+|-JOj)?NwuPm&MEkAlfcDT>hnIfupv&2y=V|<YEclKp`UmWz#St!~Xkk?Uqo&HX
z!ui(onIaE|^w_6C>VW+)T&u6<c6Z*;bKZ)vh=9iVR1cqBBlF(d8yn2k)oFEBLWB<3
zbc#rYF(fa|Ms^ttT9flYKI-Pc7K=WsL7MdT=0%m)6i*DA(|bO;O4yT%pu1xY!SS1>
zxQS^VrA$G(d%04R0ocJ$XC{W6%g#0lkw7$g`?BF%JJAR&0a~ubYL`c=-_#s$j+{=N
zUSpOv4?OGdWUYR^{)0LiC{lX-ZsCJwT$l<F7Jjb-uW0VPoVb+j40N@>dD$$f2K)7%
zshPj*JweKO+oS{6T&A6=Nvl?HjIs!xFNdw8=@{s4mkWNH-iZpjb@Ykw=L}B;;uis~
z%83Tlik#vyI5M)1Sup~%ta5535P%d#Co27YX}7Rk4e{+6Ha05d`)6!EUsB<(FgDDt
zZ7h7AwIP4`SkMTBVtLd>rh#(g=g6zPtFd}47C@9?LcOB28hbm2^dl#fX5i^hj;Qdw
zI@{LxPk0p*sv9m^?B2txfR_j^=@&-_yB;k6U;K?h-a1x#n9mc#757heN+f@It{Pro
zYB}SvR=@Wz+OHmDYe*klx#{Sl{NcKv@Oxf7e_z}NLT%BhJriv;<iDAg=M)tvbs;@E
z8ywL?rUG3gzVi@LGT?BTL8~la)t?H!k0`QA^?m-^DU39`XIQrg@77Eewn$7US#ggr
zcxB~cU;&o^pAEw9WU??*J=JYj7rxN-Sqv;Nn}zKLU7LFNS|ds_X_FPv4|Co6el+Bt
z+P><pi>kxAEEj~u2YNH=QpHsT-qdbot;#E_vW{WMc2je$;>i6br)cB;b82zByMC?s
zs=vEWm>;i>oc*6Mqst4*$(MXmj>EA{)MZA3CyL)+viKONgqx@+Bi)XZl2yInVCi$E
zB~L3;f>>)HUGxc2O6HLXgxclep3d3B2OM2Xw5ynO_&`**<c+XVM@|ZyNWd9XOGR<`
z;0(e&L=i^<_Q(xEk@R^sw&+M*K|UY?-I{j#X{XOOGB@WFOe^V}+vWMYLzYMoBQ19L
zFl3#Djje+!@YijRoG57honB`a^ir|8V9;u!{h_1+5G9Ct&}#YhaJBmQLgeXt)S)s|
z_4v~TGUa~UPLlc%=pQ~?n1%p~mSN4O9!uJdDLiH0kh@@6olEmCD!-)1%^2m@MUL3q
z#Pv`e3lU}n0sDpC%#(^5#52%ym*d*kDdUkt8=7LpOmX7dgb1=EV9c|#dBX{xIE-Ph
z_oT-K;g;^q?KI{!Cslo6uW|hC-#Mpjr<RfR1+l$67A@yuJ1llxynBR|iI%E!HvuvR
z7Iliv3;`-J2OCztGK-Z-;*-np5vS%SJK=zaJi^vZ|KiRCqsZk1(vG{(CB;cK(YNn-
zcMFtVh>;lkIwe;~oO1S#vUT}aePC!cA!WrOzeJ||P=Yhbg;RW-wlILa`|RhrA1eS|
z>vV{8Qvb>v&8nVwMOIWtemEO5SV%ons+(vXG&l8-Y|!6X5}0^^bU35j$;O5nx@5|4
zT#hY#ahnqO;9+`yJodC~8dz3a`{QM=n;GkM(mM6uzW#!y&%M?5-k+v>h3Xq*vO21`
zHwr+Ywg9QQZfq=G-lT`?ldXk<F%u)cG#W4cjScDmm?^MfpdssO{?{=i%fTZV-!|44
zMVOXgu)(MiI_I(ld=n-7)A94uR`0=0KR-L92M?vLikEx!)>Ia_%GY3j%JG)Af8~T&
z4i@(>F-1ejFSdaKY*@ZI@*_c!bdmk&(;7OD-zUQ&)}H&RX`pwchYjs!PuIkyLDxn`
z@=6S-Py033g_@g3X8h;V2J7+YoSbpFylc0n@dD4=v${=tpT$5yj~{%70I>{q!$C_Y
zd4eQ{IZZ08P7)^qS#ULTIEoxHlzhEjjyi^a>u4x`r`S~xOJD1VVU5HXZS2BMas}_b
z>)dB{+Mutnmi4zih+zUP7<!>LnQ$~NJ5H`kX+<#Po<~uwDdqWK7&3<bgL6kSl>BQ3
z3^{$lJ1o|rKbd4r9A}H_!n%h=f&uUO$@C?wpIU_Wn_@2B;BRc|hYPW%)g`G;v(stt
zY7}%UgPXYVvn1z3e9+Tk^8y>^zS(MKhUr5$mrNGqNfr#m0Nrv~ex|h<qb8nX<)c~t
zFQ&f(IaA7wUY^A6+u4VAial;$DiOzaEP8g*;+1K<O9+GJ4U8G^K*68r#Pl^z*Uukq
zS=GygG^U>P%$+5+<fe&hhvA4?JRHtP&+Xq3sAArZ9Bim*6R_B#gLou&Dhx{wEzPMv
zl@JMy1=Al1Ih@_0e0!%3T1yf9#=FsSW-~&VRmie-Zc1jk5wu^roQE}L#+B~mi*1eH
zkzbhO?#x1w`?0b6rmCAWj{y<nB@@#A+{j^2cqO;nJB(}imtJM14wL^A&jWUr$<w)(
zs`CWU=$g`A;a_0-gBhFYaZ?jNKe;emzASl@11jd5rNZ_~riU^l=%G~yw@J{Lq_35E
z?nfwnwl#W!9y6mcxseB71MMS1daHu*UHE&6%pXWJJ>Pe#q8}r=NvlnMFE$+Q5TH*8
z5^|swu<Jc2BdVo~<9za%IfxtJAy5&RHnlaMlB5a7Nkod**%BjIq$${mtVr!TcgUBv
zz?0S#(&P@`o>fMZbM4B^=(vD=xp$DR(Y1K$s7QtXs?N<wrV|y@bb9{2i%`?TX-!8p
zr01U1u{e$O(aLD#yDMTuOxe<*#AjAuM|N<T1{}^~w?@>=**X_K097U*D#qmS7`k6~
z-GouM^YBoV+}tg{1U}y;ApC^<ZpuE{9SiEWufqt3Phh!z7;M7O&3UFANS4df6up|0
zGV*iuKX~sQbnaoPIoKX_=wh3;;R8AHIZVo85WC1rF@2~Jd+|G(R`KXZKaE8@1}``?
zg%ZPF5BixZtW?jY4F4riIA4-VnW-ec3YX+!H}jg~7zR?Q$It|=Lmb4j>HKIhdv>r-
zz+G#}zt~@coXAR^#oaHC-9U_So3ciT<i6!Byuzh~0X39vu!2v=zpki@5;fX~nY3;3
zA?UMp<qH@?Opr@-{9yY;^!Z5OL08OdwnBZowHCK5^|7JB;=O1@T6cCyo{qb6KZDDu
zccy2njV?PX9d2hs;7Hne+0BdjNn#Qf;$Zu8_#?Ggo1z9H$p1R`L95@WSw~U2hRn*5
zB<*;s9m?9fiA1jJYI)ECcXp-aIi{u^RFy%42Kr0EF;2m8R^e+WAf;aAFmj%LF;3c8
zZH#a1a?IV^Vht~W6EhY+D-HgbEA5fn({Nz50dBn9c|5-R-@L2J{$1+5GY$|AZU6!3
z#WKx?KiC32&QD}Oy)%Rc_0I^G|3*!Fnemj&EGiOwpy%fCB=Ph1qFb+!&2BCA^OTF~
z*dMuBmLzxJsWPoy=;gx;%ENW%dKk>_oggUl#m@c?SwZ7*54k$&<8tNs-HDsf*glOZ
z%bFbc*}{^uN%jaUsZ@n9vj=KdNzxX0G|2HM3v=vgvqzFgB%J{@(6bvCHSl_8uWZ`2
z?3;*vIL*62PSUdd`n#^sv*7?OsCp?6wper3)>%NS1CKuV(^7*GCGm4#L((`moD_ms
zv$-Cv*xATWLYrHh*FD*BiZ2Vk=(rhIV}ljmF`{>66ft3uBmnn(6K$a9@1W$s`-&+&
zdLn13PTY)X1hsU~nQ!cOrD2`!p4AofMvGZ8S;j3C`kkOR_8+~N1aIQVTt6loo3wHB
zDaHRe<(N(Gdtq`83%$i0eZDDNubcmPjC@*0o&aGu`C7URf<nT!8vqeMVIaoKI;BwX
zQKFM*!Nm%zY;{HKY3LrOkgxi()z#DRt(N?)&5ZOh^6;$lr^Wv`+ZApR?w2aHml>|W
ztG>%W{w(eV1Jy@Mk6nPEQ&zw>_Vd)CN~^?_y%+Vv<;#6<#mZlM;=4l?rr{v}UAgv`
z{vfJI?^e0`H#{mL#8t(03rCNROk17nt>gFEhx9-;n}5sSo4b6K1TBIUB)a&A>QY|!
z7i9)JzJ2ymyjc|a2Ihd+(C}rTRvq!y9OHv!TRtWkVaps8RI>ZcTNr*wuOMa5+9zwV
ztGa*{hh_g=R7#FtCQ0@7sagaR+eAobJ=#p~2TJhtfIw8#kGrgA--5C;!M$DRC}eFv
zN8v%7uP|VaKet7KQXfh<*IN@d^gnfcO@6*!OvHX_GiVR(^qngVMWCSv0y8Ct2D?j#
z+4n86(CJ1)t(2L!Pi4@&S!;T9q|ij}#A4Utw7UKt@71;RPy@e_ZqpWMVrwT-|5n3&
z^6C%6RqwDYa=e1sxk4DSX-h&j47sWtIM;x)E%$nPjcfiB;}S6y1&OaT4r0zsw&}zD
zDtxduot=Ft26EUY{-kP(Lu|?%rRoVIdQ)jtc3ck2@4+7I1RBFH`0*m??g2D7$~QRF
zfP#7R1wUky$a-S^`O0t;q|Rb_u#KnoCimvH_N12k&+2~qeFl{Er~xIqAw_q^#Do@9
zoR{MsWjno_<?S~D?O|h%phu>l=bLSw$RvM#9lt~}Nc<)bFFQJ0*Z-Ncz=kmFC_T9x
z&3yI~4ygDXfiSHjCp^<IuB5Qb%{E=k0>96M>Vu~9!66qb^f}Q2;o+BQHuO@25X8cm
zy`$OQt@MTC&EP|@_zY?6`uw}}VpT;=p?9<K6;JCkf=n+vM8lypY7Cr75&jZcgU8&y
zc=kRl3l}-xoDPFYHypxG7c-IidrVj1L(Qfn6`F+i(C#^?V2MJlVpU{}3RjB3Ddg2A
zPv3LLMk|Q%i!>6UBa-eT1bk4NiD?C(l|{@?^69&meLh1_xvLPF&ANr&KMO}Zsc2>c
zw>(t;t21hJt3heOlE48<`CU#8s;Iy6S_^2Ysx@ygSy@OlX(O(~SEXX*T4e>zN9d~>
zMyFc&S_>RIZoBrF*9MuGd983Lgip(uP!excHA-0?x8TNwO1}=nadXNV+ywjN;Nq<5
zxLct`?i752r(OJ&da)civPJtg0YUH7u=RZmm?(O_5r&))1w*zx0sQSk>??mTO&Ltq
z06Xp~;NK(U*{qu|lzt~9eiqFRR0f8@uLLT1g;SDzq_lh_=*W_^?W?=!pWjFTQUr(+
zCm1>Bn4m`69(mHl(B>R*4OKl(UtEl|4kj&EhJ9j9JFq6ZmL0k#hrm@x4lkGHmRHgh
z;-nKn;w8q}Fprw4T1A3$Djm1gQ-FMf7<-kfY2HZ#uc)8(L&vOVj~zG%%8<_0(OFG{
z$BHN^0Qc`MUNcA}@F3AxB5G#Mo?I<dssVQa%x{3od{W`!-ly(Z%20+6dbC-OLH6Zs
zW__#r<`*pdG;RMGp!_mUW|oyFX*$3KyR(FVs1o-iLk#xA=6`gn@m))`>1ogsP!YFZ
z#az>|Rw+-dhFirXs=i(h_5vnGXcd#M4kl|cLO`d{f?KgU_X!Rw@fYKSQKH4EP_$!`
z2L~+yo2~2?#6Z#!B=ql|Bu;3ROkVJkrzB>2PH5$bstn*ARgwB-{lPPT=@}gGQA5oT
zXm48S4cnvSHwKI^m*r2_^oG6ZuS8o9q2zWV{E2nsH{mG#vZEMZ#6!n1Ee|{MjLgMo
zP=O*-;Ae>gsb3IEUYQR=R%=PvYU!-7CQGj>xLT&ct0iwZY=KL?b*@Z(aPHw@|G$sG
zcjwEELBjk4n9A@-k^+H32^>-4EX-)0D>DC?N(r3C3v?{!AuQ0>pFa~U6r|}0#v$xt
zp<>u-nOXhXXpaPOTM!<>4i|(Vg`PTkH<ZYFG*BkC?Z?6M#nvT?OqeVWyySoUf9RTw
zX3kp-v#3wn<jKS_=G_Ttxr`VJ<e`Ph3}l2Ga*<v7Zyq6*XjObKS~832>>Zt`40|mh
z9Wx_3xTsch*#8}<`!1{wKL9+zIeWDn%)g2m3K00txb^7UI?j316L|-JZ0nN^0N(<Z
z8~~04mTK+@u;@A%a!~44OG55uq^WZ?2t^@V<!yBmt%5cHy8d_m?4AH839RJWHh)ho
z`I!@)Nk8r+Q_nu{L>+z)3C^^GxLyVTD^>a*%Q9d|Fx1hLVFn5%n&Zb&0<VeuVG>rc
z9Es>>k&u9REIT#A!)eq#Y>0LvTZ$=+gu-yZKgSQe&*5{!mm`JTkx6H9O`&|7Cax}W
z@;9W63bm}V_3sGohyV9xe9AlpS1}>oP;w2^s6W5}IvqA4z<88_haRh#kpR54_8(Yl
z!q>GF1}rYHuvch~ibyCSa9EZ~Sw3!`=>PwL4J<2aDy(-(;E-P}o58AKvWX`2E8bxv
zKz7pzT>fj}ru>vMfD6R_fFJ-!gIgAn8Gdrq|ExV=xC0B;JY^{TKvpFE6DIo;LLUx8
zUP1#lg;gZO?EfokqOSsC`NCzI#9H!7Bw_ylS`l!iEk0p>zKxd7zB}jA-A>$!*+>_J
zrA!!d3-FsT<Bfo~SoKSeY!$O{68J2(RZJ-410`@@aR|3m6qN!Z|HqXO`A&eCh1Lcb
z`TU(T4%$NOB47-_<jnmE09%kHD+5zi3nh0mA^-O@FgdwXZk0EKZ>0X=8~<H!cyImA
zgr9{~03^~l3?+YTl&Xdx&^Q490n_5h){jZI;;^ZD>)f+2XhO~!06syX>|fS&Wg*C8
zv$E?N%G)*vM5J9*_1f)?E9Z$$h2sDB!iHL%Rk*++0rBO`88GReV8~)%2GxoxjeldJ
zms-XAhk5Y<E=2ygrPGw@&Y5AK-wYV)gG9eu13U$Aef>M=mN+tqp(5h0<Uc3IKL>(?
z7*bZU7U`qY7fLvIJT+X{-q(D5`%#X+A$&E?s<UTdyg=@nc?L^YDazrZmCs_H1+jvT
zy<vBMk^NMRGAL;77Q5=bY1tw+`&b5pOa&8gCXrj*Np!^2NZ&L3+{7RL8)C~ePIR-@
z=zm8IWU=}S3+J7C_aPy~zj0#`P@tY-LD+T%6sV17{-6GLunpO3X5gb12}=NGMKk&5
zX(TK+{$r5htq^(yV2p<?2{U0I0{(+K(U+?MfX9u3=ZA~bFYmtOHs9+72G(fmH(R9Y
z8&G9tijt$>!B!SUuBOCPR5K4?L2zmc|6Q+8no4sdIdrG4dnG6zt<MwLu(qMn#pTr{
z*?uzXJFS`32+xP^{1+C7eWRJ%qts&r)5)sO5PCOK!0xrg;BDVEuR!spfCRp@#Badf
zcn=oTd2BL2^Z2LSxE*q{G7j^O{nA=&yw`Ps`@c4_RR2GQk6h^hKm!@4%ODf0nXNQd
z^3!EATEJNJX1x)BM8Zt#!I@!3nHJbV(g%X9fESiMr>{gJq==3jE7Z<euSgl<5w~os
zyN-+B+S1MteX@bHV1agaEB-iCP>P<TV7@<|+bi+jr~mS$^$Roof6j}4E8fVB9@nzb
zl2EGuk=P%MC(J){zAWE{4Qu|-0cLqDONJfy9ZK&1lE6W+w)WtBT2wCB98#8)a!gJc
zkQC$W`a}6c&E)Rz@O5k~)Ij&f)^0GaX7@Sta5AUsdZr#=9C=a->X=@*@9fHfWQ$w#
z#9iIAueqm!%wU<TZ&I0U4K%epF0F5F77axC`L6pO9|@g@QLqDh9WyCN@3y1xg9LfK
zd?D9#psk%5UOthef^skZ6l)tUHI=sRH;Eqr2KLD(so!ph!TfF;4uS25UE%FW!4nh9
zv9W4D1)i>O$a^M9s~Ho9wp0rcP7L}ow3$4bj2u}!v;0k>bHX}lmcTktY8KlxEJS#3
zODzT&G?I}1upLDhvSbL$05U>g5StDYKs%O!^<cb$B*~N_bX5Pa-Z;tA{RX~aF$#fx
z1dVUm`zMV&-MT^L&IN4TmN-hX^Xn?C`?n8R_4bg;Es;Tr9fRFZEa0nh`#Bo*9UrVh
z6Z$Ahn)P2O2vH#++wAM^TU;W$Hw5^o$P>5DI0Q1EBx!*JCx1_z<*Q^%72v<pn_$S~
z)0LK6Ewp%%lG$HpVM^OAxVv=;K(w9E1d~;y{O8%A#DmGNT-iCWJ$SWl`7>leBqSf-
znzzk57<z}f`&5au@TN24&7}XqpXTi+k*#hOo*F+hkIf&qrGN`AKKM;FRy+oqYkRn`
z_ww?-!Pe(fUp>7|pbv6An3{!$YmhFso8l2TYL1H1s@Ey&t}-$X_>SSqlC&)&<3vy2
z4i9Q-Rj2t17p$n`w)a<;iFuWj;v*}#qQ31)0Q4ixmzm_0h}fGfmcFT}&fbd`G+>E@
z)vxL1R?z>Udk@+DMNJGV<Kx`Er}XSnt1oN!;p(UeO1ZJ{?v>9wXesWi5z9a~r^6-Q
zzl+C}hA<zlsGf~$$`;l{YsApryZOPh1Qgf8uZTWd*>VL;eLFV!D<d~$rR61s<yU@f
z>~H~Kmqw$w#U(Ry4Fxy5yAg+!)59PX0oN^Q*vR2Hw}Ot7h>Yg9O?odC70whtUkjc)
zMvJK25B(>@yJ{6JR+Hxwa|1MD(q6Z>-P~IE9+Te=SGV6>j<%tUW%xb?@}C?Ssc0zJ
zncl>rczo5?o_#+(g#^F;kW)fD>UuGqcAwvsW5L&hJiqp5>$X~AENjx);ZU7Lhkdwt
z`J`$+u%NrM`tM9rSiW6|_|&XN_a-FeyAF%TRQHp}%{2nRvesmzdVIu_iF0y<)?VFQ
zUfbG5eTvV130XaD>^2|DNt_ruXr3k<9xyZ2m(elTKvU58w)xw7Gf|t#VHNr?)LV1I
zw~{cZYr>>k4{^js43o@OZ~v8%MzTEcq=VdGb2E6mHLW(d;4L)}N%lHj@nTqQ`Qzl_
zg*wlq{%ld=E@-&9_2hZbBx131<beEjni4N#HV(OE*oTYX$Tgy5RM~cEeuTr-&J`^#
z)wBDMcLX&BRuy9~dinGFH63^}zs*sr;Y5g!sKaWkbX%X(o%2-6jL_1k-IHhYGwyho
z+>P*ot566ik%mY)Mv7YsI8aeZLd4dvcXt@}_$Rm~f#^e2DD8_iUndSLT*qb=Ba&Px
zq6BI<dWnuhm9p-8syAeEi10od8V|ALtJWk6GQH0wx-V8<URWSx6cb^e^TV`9*|u^N
z&|~229Y#=hH7)2zsz}gjM@n9zaKW&)zE6ksBqO308{4%|M&H?41ISEbF{z}ys92DP
z_i8k!yr9()8$>|p#m>G&fSM~KlYx)#va{<#PStlwWQo6ab60M{f5F+BAX!vg=5Tb<
z+`Qjh2z5&jbTbdMj?OKVlB1sBus2ri593pHzql~wv@zEhY$09yI<%EXsFO050g&Yq
z0$tshu?Qky7mxJjaG&Ka;lQ(1O5}%=j-NG!wf?^D!erze92L2?WbqIAQfvuWmyq;W
zrN^Y{x+_JU(K@Bwu+Cs@rqwFHtg%C5<0{v7B*@Xy2ji;Cn<aQNjOb_~?~|6myH;@)
z2G-);ovWP0>colY)S|QEv}SVMx0X$Wmf3^M{;5X#dPeTsU8(9U+9o<$TC@BFQI>c9
zqLbAj)`%eW_xb_bkE98DQxni-N26kgIX(eVche$)iSelg(YJz*?>IFG+IBl|H>*3X
zjl(%kI{(F800@Q}>Am!eMX`lP_or?b8sRk`tZt4SEawd0nY@*B<TM|Y{qU1(&w<57
z{q@vt^BA%uT&i^7udCp(f3I7@I-0Nd?zP`1Yf}Ij{?x6muzI=6^vJu*i|OknUDmdF
zx;C;Z7u!pTu>z+wqtf~PPZ&hk20#&zrL{wTf4EhlWf*Aq-Iq1jL)wx6ukqF&6W(F%
zTXZTy<dC?L*fh%5tezB=aI3MEh~dE;2b~&USB>67xy%_0mTjF>{uqvrnr6(J82W|1
ze$Ab&&ca-fm<5!|7XM_cm_2bN0hw9f`x`!ZEH8_(yk6YAX(1wZ+1{Cf?-(_1-?{oM
zQ_0yN!#=vcKs3xl43wiXb_XxkXqvd0d0r-+p9g&S;KFbOxXmKXq%8isf~rk2bWpI#
z?Bc?CU;;})Vc`e=4NN$C4%QPR6Dp#ZB;){Ulk%@4@(<U`TKFG+dP-`k7yi*ui^EEJ
z53rKV;)=7|@8&c2=cv6ec2^u?`;6k-Bz8l^@4k7^tIm=;qyctzz>i|Io;)`*Z4d-k
zH06ciqFz%Aih_me3Ny5JcV?%+@(h}riGh}lS(sJ8qHE~9*HF>iI?|3_wMLR0udm0_
ziCZwQ!Mwg{G*$(v1AGKmDw;)qe$A?=d_jJE4$ZO1R%b|%_W)RfOoU$(M3NaUx=%In
z9Ujb`(lAGHRTLMMmS6d_aev!XLN*@a)wrksW}isIl7=2mC2jTI+-?7|N6&bZuS$;$
zcL@(uWf47E(TKDE@rdW9<*>XBg;_R&+;CyXI{z|eA@O`DddNO8Cr3;f?Nd(uDCN7R
zuG&^%!6{-?#Kc+Y)v5hTQ^5y__96MJzN=O}_A)zL9`e|_t5|^Y{QTom?1)oZmt@1R
z2(PHcThgZW@wp`?JS9Z<kY(p|3UVxD_`7hK-%<#mudRMdYY9VyNZ~S&^s@GrVc1Ps
zRRn73jbG{P;W(E)T;xu2{bQF!h&n3Bdh>iwT?|B!k~}-bi;NJGkPRh_5!jYh9{zk@
zd{A_zp{k&5qTf~;A0Rc%Rx-?1j0#`tQDbx&OB4BdXXY`7uA-ltSCr_El{a4KWIJg(
z8>i)sShq@{{Q=p%pYsgZ*+Y;L@ER6XmJs_cM+1B3Ljp9J8g4CCFFHg89-cZPqNI;)
znS*Dzn~5Rhk6QS@F-OW?bt|i>y1LNf#gL~jY9AP-ds+D?ywG4HS84BD_(m%YhlK>Y
z&EuelgMKxZZp_rZ{`tLozj91fjfg149S*BXnms|@#kidUsy2Cu9-}nf<U>@WK$oOJ
zz@f{Mp(-ciRVGn!;e#J^$jQP6P>$n8@w6BA>{qJ9#vA?_X04zHZmhx67CqW=Ch07}
zJYqSm6&a*yQZwa~mbM@prCgtD+5>xVN<9BWefseE-mh_dqjHhwE_{49J$4u`O1lpg
zL__jQkwG&`dFRSENucSAct;An%zWL=+SHcb2ang?sL8LIs}kT&_?cGMw+b)F3>R#p
zO^kl*^4JbKpeD*g_beZhY@}$TbN*e(s0l}_c2K7{?p`)qonMIe?bskEYED%VV|(G;
z?%5w@6?RfjP!F`bKc`)T*U16AM|{gX@!;yu<l}0&-m>l~^plEt7#{AEG)r=HUdjWP
zdpu_vkrI!Uk3gEtrlgO=_BK>0L_OF_KVn$4JcDKWduo|=C{2%Klrlrxl6Taw@_4Fe
zUfR1@#m#G<=qVXQi6KV!__0Zo#kV}%(m=ZQ-CnU*vPzrb_4xNWqx$hCjm=`*U_!Ls
z46lqP^tx%gV=9<iBPD|bWX6kNhp1wXLyEim{VtnAB4r(=OjGac>!j>d+7gc>8q`?L
zN$qh4LZvHfW0)m1G3@V_ZQ4+pCEk3F9j=}#UP8UvtsRGG``ED;K0{}3f}p)nj5~%g
z)y?TrrQ7rXyrHg<p`pR<g`eDRzo+#wbf=9hPj;N)2IaA!Wi0o40hM{$a;K&9h9acQ
zP{zt^P3C0v@{hpt{r)~6IP-2vn`TX4Keeb_KrvC-vA$dW^=mAW*!4x?vTH#cOSiMQ
zp&^6|4_&G3;E{ZU;NcYLS>K`Q`g4ZwL%dD?m@Hnn#mx}=@aTw9ap9b)-d{GHft?*r
z=A+={d_xneSm)g`@XJk+RuDYs{bB2*U2(Z+j{0|!%K$-RHD?nk{rQumB!QI0FDb7r
z@uepfG|RQ!UKsF5LHrc;fP*?2&)LvSpDtD}wg=>}n#;Y6TlBOw^G8SGp+9r%s-%Zr
zkUrDMhcXCypJb#`wELeBz)1tTOU1qKL<FoG4E$PL02=`!#HO+U3(vj#qzj(zDR4bV
zJW#?7s0cL+x+yzM;YC8iTd@|XuY(94T?0Lx99-lE3k?z9<OID(RMm{zJmVM!(-weg
zHWG6kC#g3CWK?@dG=h+mszpa2Brusc6!bpMvooL}ct6YMY23s=wW_r`CHd9zoJ^jb
zjKg+mrvBz{RZ&z`q3CsI2*cpdC8HWQABBq7ESw>gm3jK?34q#5poL?tn_;>-4Lm4H
z`~7UAldt<9OQQ(_g7-SJS2s(|UQh1jOzoxBWFUKc^3vBODPwK;=txRKueHh*RN3aC
z4yGo7fs*-vc&$%bXlPeX_OnSv|K#5(bao?=APB_1HP5L<oxxh)b`@&l?s$7}$L*Zr
z;1)Pj+bTU?E6=bV>OI)f|E4RgS@tk``=Hk&B)A=FXUOCi3BoxriWLOMKNP4JHr4?d
zjX4R3<#h!?Gy^~iMMbrTfe7E$;0y|uXLw)a?ra48WjIw2Ig)SK4{w@JoN$lMf%{ch
z>fh^l?%TGm;Arlq;bwPp^%`NhAzEpO7bzU1zB)yhpx9DwL_vB~;bI$?S=6{WiuwsY
zgeDPA!fh9bVT`m^`RDvf+6zjW%d?#x$`eAM(3A4wG{ID(gjOZOBwo$b$Aj=1!2NSL
zE!w5+AP33l7>|uO&?5w3s&H6TA)@94^gBmP23|d;${ZUx1zdy)OEcivDfI)#V{>V>
z@9s(%qQqAMMuNy&EF`QJDW((;r&Q(4Ur8Pd$M2e!U^jNV*4LDxOn6aWls+d`N6#0X
zZ8dB{hoQkQz&u{mOgd!<^;iHcO!9#e33_x*o+nd@Cc2Ar-`!P)9Fq0e?GBfUGSZ=t
zb;mbrT$~(gb0~Ri5ey2#LYC<=17hob!p<!mKZ}ar@6Ny1Dj}DRKn859yu2)ngtXYj
zF_VN+Q3N%wy3ff;>PZA#Zh{k&ccoGW`g)F4P?Q${tmS<Y#vM|)dmh_%+E&bHv#C#%
zG!sG8ox_ebQ@X(-c|)Co)p_GLWgV55vhr+bX4+?_D(#^tg<ibDtKnU_&nV;u284=)
zI5gh|bGUF7dU#|m0ul6V{8tRI<Ldmu8xHvlcg`S;UtifMI8oYZqL;0-<hOZbFp%g{
z#z=Ku^BY0JwL3>vk~EvTw*ll~&X})B+xgADq~qS!XvC#;n=}IwX!F3m8ip*z9ZRSJ
z{RO)mnVgK#Y9aGh_=E?_si~jbscrXp;%J+%{2hn_C++53CCwl*eN{i2>r!sd6wLCT
zSV?B0p=D(z)oY0?N_|3qRp1S`YyB>})Z4P@GWKCb>BQyOmV&EE8|Mr(#K-M$!ZTmY
z0i7+TTj#Hc`acY{zZ=fIpJX!ognWSqs?}{k7|w)xS^Jy&%RONwh%;D7$8N_G-*YZe
zz?@5*8Re^8idXmDUX8vorruY)UWmMp7ynnPd)(IsAYv^A#_3KW5B*Iprz8A1*jCUw
zaxj$R8xaNnX<p(6rKWzM-TaDFL=ZM=b-^ym68<CH&4#3|$A#b2!9nUg259YS;nnBt
zxVU&Wf;_qe`~GV+vFD!E$y)yHYa45>Axk8u<FS1&k->VJh44ckAArL>9+jjB;9wps
zc&>szyPeRsLA@92Zw%PKnN%$A8$tMAsi>&!Ux|E7lH@}oP?-ihZ$2k|*98SjH2g4C
zA9&JB`#s9dLH;NjbQ3#_)v|ne#mTj=BT(#Bub>$qVhjX!Z%C#%?2`lz%-*b>eGKgk
z9^Oa2eM$?Z%YZn0^=`Pe0Abt(Ml=v`)H+%?&eb<>K$?J~KT&6Ip{WQ+=gn9ufoPOP
zM;s^ZvCAr~v)1v{r|koM*vvHHNvd;-hlS@rb2DAiAWK?iCdt)9K+J+bL3g?4t_Fh&
z4kA6yoYTx<${0fBpaWizhnaqS|EA~M1rHMT8fHoUFV|j2tZ>QU&%IqauED<>OZ`9o
zn%%w9)BW?bY+Os@-<n_0myGG#KBlX!$@iA;sM2tmb9V1k+|7;@q|P&liqxrY>se@8
zkfGMZ1Q$fJR=G$b`%9e(OE@hD#n(mu&v3SS;jhY%p1G^A8`6|l*5BT$ed8hkfT3T5
zjYn5LwHGz;*^xmys!e_%;JscL7bfulKlVu5X0u-;4ugh?v9XCx_fw3l{O^J9LyX-y
ztGk9jvS>m4-N1naY^+w%v86u@-KZq8pdzLEhvei}R)k3)X&tX)b~Q~6;Fd)Nx6T@!
z>ZhAh2SdB?PL$ux&2B=P97|qn2{+9zu>TnopoGK>+SZi+NKSE@nFfG^=w5bRmTy^(
zZ_|+<n%hKS2gSYno&$7asp+Ywjmxr|i6hN)x`kWr0xIM9^xY;|HVPGfUxT)oQM<O?
zuUDJj3jba7y3%}u!@|x<_$E}mgE*+P4PKTcP961=XjaNg;n=Pfq9jP~M|zXzwRX_h
z$U$23-Mn35j?RIR^Skc;O)oj2)nBH6xY!hZD6?78a_kawiFS5BKllm2;y>}SR_Ld7
z<uHb={4%|~7smfUKUf93&S;r#A`=#~lxfC?inFkBRQ$|Ra-uaierwv~y3?10fu1x3
zyO?*Xr|_c6U`uiGwfNKg&%}@)TnJN=tJrf}yR%soJ5c>iU;r3oge5n`J4l@2)qV~n
z;Xu&+$lJ%*4frvI#3hflf%^K<y+5wj_Djc*G?n4{B*Ji`!HoIO$i8h<@m{^cVj{+R
zM$Mz)er;!HHxprDx+&jbL8Q3YIKn_N&X2CnrvZ-3y8z)Q_>WH}a2%Gl5;SWuY2V<3
zXLs@6NIE0Dq6ePEb%Mtc|A=5h%VD9vm%bO!a#(hD7qv6AlbtHjB%PgD4B{7&`~#jk
z_P|!b_Io^$`R3f&sQ%ORRfp<ff!xmLP)FC9HznVT^x#?2@>$bz3Q3=o$E2|_*c(3Q
z7m_ZsH{`Q4*p9wwv1n*)JIS8U-dM5-4F>*XD72dyogxcM)pS$E3r&y%)lSL`LQ{}P
zCOZ>0jIRtjKMjq38funu0t6C|ogmP6+vtb<hql0ql~Pj^ea=6uG-%N@sBj#W0%bP7
zqwvFmZRO%`_Rje;sN~qM31X!rN=IVU&SuY&6VU4%=Tg4QV8<!D@h6XFy&NVd-yF}~
z*=4JrxR;T{(jz=^`3k?q?n+I?NJ>KCNG2`O87^z`y~?^idhQzh7Nn^0Wf|&uw;^`>
zRQ`R@TQDWIZ~XBw{~5abjhdHCu445zer5(6;_1&o^6Jl@p8!A|?q};(RZxGOt4f``
zcjzgCE>opC8>7o=sfBZT_nU03Q29HJe3c&HMBcOKtH0U1@Hr$C0y5Q3vq<Y7URv`{
z&*G|azJ?CW80-pPS8mg_K>%Q5wVjlgq_ZB3DuK(u`fd35!+J%{*kSCm{BV}cv6%lC
z29{(ig~VKW#e8+yphYyKu+IY{(zQHcM%kWoPOVue$L`@>wT?f?sP~uZxNuHK#zt*z
z3YML1y3!bMQ-dJ({t$FQ$T0^StKrnBh<aFVY0l8TYoW(Qh#8?`o;KSB3OqZ;_&y3V
ztJ;A-Qp)=dg_tJOF6Mr@bVH%|O#eR?@8U4A@1LMsyl60IKF-uwCEq8D-BA&=;t%n&
zBT<V;k_qYzf}W4-1H3;j8;wokBXSFcRYFFrrwIr~ds`xMmqb9Wg2xFlabdXVnkU?u
z;6$C7L8jk01);S>1cd2dl$w0*I2&H~d<J!FLOc?%lC74VQ^Z-6XB#diwOXzzFCU&%
z3&Ko4GPYOBYpD<T?BlYVH!K1gMgJdVZvj<Rxb^*R8tK@efFLamN=irw(kb2D9h+`J
z1Ze>Q0qO3RmIeWlj!j5|bf@>hbI$vn^L_98-FwH_I&cVswVt(}m~;OBze#4C{Qxt$
z3F^Y=09kV7Zv?v*Um8xP(nlFJQp>qkSr+1VK~$MaQe$!_wae#j{EspNvWQ@*to-|R
zbES=fmvh0~VwyZ&nN;YS+CQ09UtD#gq~OQUl7y>D#Y*Lr^#wXMeg5S^o*~Y(2AYl-
z7i!0s@3hp~>?1S{$*51AEi_XIZ+oOURIe9IfQZy9O+9y5$m1lZ6GZw?Dm{eyZGP%j
zLt*J(0{lyt8(_<yr*`Pj1z(wpZWF!~t*LX!NG3fm(?fqxX}xp5NV@L|Y*x%c2kOW)
z*y&ZB!WTF%d|M4EDPyHn7M8J2-Fa<oif!i2f3Sau#(7#U?K%1&B*?~pO%l~BSh{w3
zo^9$tWWQ_r0OYu32AGLAED+jB1TbevGL<Ny2$-#XzOkM5#XrVN;PE?ABi{K-_r*St
zN2Ba;rxESNPg4>Q!g=37>cRcS)Hr!;<={e)i}i~%Q(tI9{vfT&JAsl}N6*IuPHxk0
z;vvME$x`bF)7ji_WH4oR?cb^7m9P|HpuF;`ws&@l+ix;*na<KiD;`VCS4F}@#_M(e
z`~{t<E0iHFM_RjyE2CH`WBxJ*ZbhC>cIqW`>}2!0S-)PFx}2$~h^Z_pO$}XzO08s8
zBb(x}dQt+=z#j1Fx1D)WLO*z>5QtN5?x%0Ar@MYJGjMZCSSTTUARfKvM@yRE=nc2e
zu(7l^^&foc|3kPmHGN#3@LBnfRer{p$o<zWZ$i;`_<(20G!S0a1l9lq5!!)65B0bV
z!{?DL7r&koI_t0*TuR27A|pN!hB~i*pNco|ySp)<EAhNsWAE}?7}eMLp-=eUxmlk~
zxW&xVGv-eo5|S|aqYFm;tQh&BIMIAYhK~b8vR>r8Z77t(8Ge`$YqC^nYI-Adl;F?E
zX|gG6rVnKjiVAXmZ+CMBico62QJVYlvBEc_m-FRwKC+DYy~BnOYJ6UAst3=%&P?CR
z_nwhyu<?__;<6M3k7ywmg7$Y~=y6yhNz}Y}V1s8MI2_D*@qq{ODI+aCHCcUawZ>u5
ztXjL2d3}`|uYcHbcY4Nq2h}~drnD@)i@>9u>8#L&yTh=eCJQmk@9`TGT8W<Kf`)}<
zKh6hLvBT%+A;x<F7!n{`)H!6;<e-~Ll2?@1T3Fk1-IK7&JzCGkSPafvpXtKk=0qG~
zL9`7Yw>F#kuR6;YH<}KHbq-&le#V(QgI^2U*DK`fMg4iky0&+ClGq%Z?1vkRrS&W|
zMQ8S$f`1#<h~{N4;l<zeN6VpfGkC7?tF_hq<fO~7c5~b}zL(Ft&R1!qg0eO@Kfib(
zh>wASf@pN|HbyWJLRqs=u82Lv8j4a1^FxKe_JzOC@skNV3yQ^Z!0zzFml4=*l9LQ9
zf3S8jd7%bFN(Q%-ipH6V3G4Nfv)3ga?W!~iYQKy(6U|j2OERIzt&Nl)BQ!yg=qAjj
z8I=91=Z*UeF>rBX#jPQ1Lyi5&OAyRz+c5IIeG>BDV^ApU_q6ZX_)fnK$TKzD*9Z9f
z;$sk&yT1HjZ`win^k#h$Cu2lFK&TexpZHO&q(t*kpkcQ$1sO#_p@Zti+SAXM+4;Uf
zl#jHRPQ3=0ZQ}MFS<J^KFfF<Wq+M(zCDew#uX=n-nb~^38le!y@333$6BH6JLTPKi
zyV>HFhS{)5yq<uuW_;8C_F5jkf35;0Z|TPm7pJIC#jd1E%(bG&J9yd#|GIMQR}9KG
zCe&(VkoNVeemdur9K=jYja)TW4Kfz5MC=!EoCICFy5t7djlKz-`ZVvtA+sdeRj4%D
zD+FSQCbeW4k0#c<U<M?svib06X-zM(sSHaOCsa(5KT2*Z??TN`0#SL~L5v0ZwS|Jx
z&|)RZrDcPh4NW3Wk=z3pGKe@Qv@pgyq4DWWL%!8{v4#PXVN-7tjm=rJ*Qr|c2q%XS
zM<ZW9rz+jNe!Ub!_?3MaauzZ!jzK$`Q?kHvA7Z`vjJ2w?T6L&a#^QO;DesEcqiHMn
z`06*)vghuKV`W6|CTzJSj-`KX=N}01RUN^Xp2$ysWn@Cb@p*qeHA`T@G7GB1o3F^`
zoCh|0NZ*S20qra7z(XB$a}Kw4!}=N$^et{)H_~Ya0zu4-k&QQhlvh!}rLS$4#0*8u
zM2CdS3}mUOWQ_Fc^$k*|qxfZLFc7;u6^fWqRaJSd0!?z9YbeEru+W=Gm~o%K{W(zd
zRt_&EODgUcS0dQTKYtmu<snM==+u9?EhxVcCG_A)mwByB&U1w=CSutMPtRgzb9vEa
zkad0#R8dwoZ3oL#ifImYKSKx6Z%`Js{a(%}bh=dCqvGgIIQG}>^fDU|Lx7J4dm1wX
zlhLaZJGX>EE5xAbMvJ!RjQ(B5&lA;EozZHVn+J?}5ZV`lB_}*n0v6kH3|9B*<E9Qm
zIEf}|=XcHhL^H>%EMD1?q9EAR>qN-NG;U6VawDyZmZ<W3mE2ap%bSD<3wp_SoHH#S
zODf+<g}Uy|7pJ9deRV!upNOz2U}6X-eww`R_+3FUC35g{<P&y#W46+QaAb1r2$_Lt
zyr!?#jO8WE_LmK)UCiU-jh@KT5D{f3E%R-pnEr%AYtPKVU1UgzO0H_I{7m(nI-N?R
zOfD)U#VE_74=o1xuYZhZ4UajFM*fO(t_Fb-s5pSEe1l7aZXpvB<Jj<!5|lNeAIY!H
z$SJe6FeD-)QA0gMlZPJy#Yj-4o?vI|qK*^))h}B3{k@x?RpX4Qf+x9^rG06s1At@=
zqWUs)sX)`3=})-_ZCRKYvq?g$=fLuCA>Y;_3i8B?T=g&xEY9gE@<{uzZUWJtg`aW?
zineD94@WJ1;?M<nyOj0GTZb5m3#w++Uu7yCk>hltN4-3G)QLXNmNe7A0!5FX%4xn&
z3!h&$4?K3W*Y_K*>F#(_K&QK+uE9EwO(Y#dXGTO^9ZT81=DKcu^rEGRWubfJ?r{c?
zcN^L*Mmp}j;(AYwht9&nUNc^U1mrWydb;F@lMTkS=*GGNlj>8V%3Pv&GL1zgUwmHk
zz8b5M%R)!KnOzH+OyOZ;&MV3ZM}c{oC6BqPCa99JpeFSWg^n<=j5tsWW{kvc6s%c8
zf-*lH1!1fd#nM~FeVNw>&7O$V@R1QjYE*0Oi!JZ>@c48yt<XH3V(of0F0^3L7OmbY
z7WvU0H4{(K7raZdM>2CZvs#JV+DU_4YgnBXEXC^!5n&!i2R^*iUWtw{T=zIAM^N0n
zaq8eeRmp@E>kvB~dJt`2r`@|8W39@sn~rl-akQ+kh#@1w=ZKW(2JOuF($kLm(p6D3
zvWwVdEg?jYiziV&wWX;3oIr)l=A43m36|3IwFH5h68TGt+vD{KS--ZCt%@<k9&^1l
zKNP*s8N2hfin#;1B(pV-lW6b`uJfNh#d$2WTr;Qf{q<hYs4<Va>cnp$j}MgX4W@YE
z-5^MwX|_KfjgOAP!DZQc=oT^Cf)<4ui~x|Vd#Ml(A%MATz5Q|cE~w*6r+IBz3GMt7
zmmcSr<x@uWPS4lXBD4eqsyEt=GDgTSDotM9KFDBugmvO(;IK7~e{fBLz{$_C1Zxze
za2GY|zw7Kp0wFyf2U#Q)&!>veHjow6Dcuz)vL<^3o*D@#GoWotHh%kM+<N#H{#8aL
zN3QJm{?_(%Ykorxh$gC?URVbZn0Yy8<+iM}#}cxT9X06r!u22=Jc13SrDHoznBBkL
z$7X)Cq0FQGSv>BE7L|T-*#eb5E!U!{Yuixoje?sIO^9Vm)pKk(^WVIDBB2cGH^_J&
zL^${b4YhenTD%#xOu!C3x>LjL7Af{#lm5+g33IS7oH0XPSDg(HJ-<gX?nzZ?nPZ#F
zQF6*-8@t8U^QC7&w7LqtUDF&8th0IR#m1(FoDVsLAeZ{sjje0KREvqRn9udbC}Ym#
z#|~}WDT<bJNL68OZG=XcE6mwgM<;)73mLKkIGfd1cY9@ayK_h#kXK`}{H5Yd{)W9G
zK=_b&M&4l<V1yij>7rX;EZxSCAahR6PYNb86|A6qZUy!*;bTIgnyX$D7mr{?sqb}1
z_ERmMRVQy$aJ+D+0&M_$B_+`jiEC%;b_E8Rn9^|23|bK&gM*=8d(7kVkUuC1@OG*x
zOSeXW6%8DnS_BkdjeSrMczAFfKUJbB*FRN46yfOyvtH~ldD(_5Rw7#7?Z7{u=*rdo
z03^7JYMOs;)$9vETa~xIdR2Zc>sUFY{mj5rWR3MzB4f(r@S4eH8)W-4Nz7qh)X#o5
zeEk+#V93#zrUJJ98^6Vq)r<6CNg?}(G<c3{H3XAj?SP2X8C<596|;iT2!u!|E4=eH
z^5cPXf*eqt!=j$5w!#=l*p?gULIV0@GZTl?61Z#i>w7J^y1M=M2M?1~Iy$B-Y0DM0
zLpP?8#(dLG1t?}ufdKHx1FqM}t7)i3OdN@+5_>XzwvwsD(NzUEsh`)^(DL(?P+sd^
zzzqJ!k3_Xv=S0jghZ<YUSP#2rAQ|Qp)8p1qAO{q77rxc5@T&IHIpqn@dHcapo7b*}
zR4XxUa^&;0)BMh{W*RKN_d&Y?o5FAVSr^);8F`;xbbcP$&(Qol4X@d-^cX4;UgDjT
zbCEsn6^Oom<%if;7E6XK`bmB0%~c^`T5pS=@L(0@Yr7g%TQT7Ze0Kr_R=&ntT8I*~
zkas7aI6p9eEL-n7<$N4E5r&dAldF|K2a0DhM>2}`!ppc<NF4!A-RO|&tC^^;QL}Ng
zF1{P_%!`NzJNdLituXS>-ei)@4*W3_n9y()K@=LD)RJZggr()D>7Ix07QN4plM$vZ
zgb%eq+s4|Y#WY?b4Dpw3ylYkww9=GeN<Ku2DMr(HgIcsX0w~Y0;$z$tV`wE*J}*39
zBU6T^9S|g<gc|*9q18sEyNt99KRT{*iJzjir&@aF?LO&u@!kTmlrMaN0}(aFGxl^x
zl~xtO*<!Asjm8cX**w1Vc=!Wq6JVhzHR{^FKf++x%MmCNKnAL^+@O()k1IOFdE66B
z+bOoRA=7h}sve4kr}G&!Z&#*YMH>iS!zl3#wWe$L+vmSSHMF?{qsYB`LeVbGxGAfd
zgpoz*KU+TveSjLAnd5rCIm5VwYwE!@SZsasGQ;ngk(UViTe0%qc<BaCDz{&v6tq}0
zU{mRz!UuPg=KUauQrdb*_JO;|ioU+Key$QjDB5-0ll!b13H>9iBhG|4u<Mz_HG17K
zvEt+uE|hsgOW3X;j;meSQ*7zSS1nlbPe0VFy7Rpip$v2XDz8uIK00#{^X2}hbK)6#
z3|x{$IPm<L#eRI(7J~KmZuGqF>#!L?Xdl{GSf%snlH)ThHEZ57^GU`*L=Oi?SrKPi
z2@%fL0AbICVJixi)^PX4FX#b=3|;<uYRb7PMcZk=%`AJK92~;X8G>>cW*_dS$c@P{
zK(Ru_l&5f0!b{%MdEz049$xxBXkz#h(i-sa!k5UciBiRn-VaRzM`-8*2_bAP9wGrc
zGN2&dy=Cax-Ek&Jy!Jc7gXqp)`-BFs2A=)3SblqPDZ0&40j&<hGS9I+x<w<yK>7Jy
zx`7uX#7Fx4RRs+AOjTNAh3_Kcrb=2+XkTRWbyhCR9;M0acee2kZ~*M?jkkLAoSr6V
zx!8Z}XOR9n{--hP$Gb3#)^~kZ7P!&*Um9Fzz7R&xQODA5|9bFVEIPzCn=Cf?k+un~
z?dET2=bEdw++aV_*v6@;$6Q^4d0V~oSHdmQ-UzcPoR8%$BJuZ6O4?7m$gYa<{7E$X
z{OF>?<gJ(aQH#z_+)!2j3hM+pPO9syqJF&Brnvy^b77j?uX9@Yy?e!n{Z$n}W!>c=
zDc%NQ>9`8MlQK)R9LB^$zPP#jl!W|HYPl9EQzS>eqW#DX16lN~SVw_E;KL{Ay~sBR
z20`cI0obTWRKyodsOZSIf_g~elMsJwQ6RvH@NyIvE*D;k=m`kx`krQKmaMw{V6VD@
zMHH_!Ao`pn5VG{^j<K1Cx>2}(rOD|J10P2_@VW)HtDg?gF@liveI7%xo0}!1*nN@H
z-c7HxsF0a~<;)Wf%1#Ov+mPN{EvbZznYXsYx(eP5Z=<ZFzDXE83(NlXGRz3S&^oVV
zt4UOReHtI(wHR5JB9*3;5C4V^{$i9k7vH;x>5_C5N==^3mr{IRmmOzJQg9MAI1?f#
zso&SoJde<{4OvSKtip>`6KBfln#C(ju1eg0oug=+;M$oXq%y_xcr<MMS0vb8nt8H(
z5y{TsVLDZs5-9g#=sk)n2|E>Y1jKW(j%5n@sy@+}re4yzjy|Np%^wihHzA8xtz_@7
zLN3-w3t1Umu}3#we>Ib7dtj)QJ%p^jGP^)1eO>(;1IM5@R#~_t8!lC^TdW{6*-A#z
zDuDXGq~<ZK6bn+5_Ow%q%MUmR=ETFz=HE<v?7rrUrBi6apJb$E9s9oBX(nMTOMM&n
z^jp9*TBH>(rD!?+qQbcSfeFUpEVe=|emR`dV-_1YMMQJT;^P{Sf#QiE@fj5cD1hES
zkiOq$5(U4-3}rDl9REwVulH;jLX4iyLnT4xkxcsDF3eo9;&4}!3&Eo@R5LXo2i8Rs
zACb@{$oI=SMBL&6nYPYEG+K%nt0SVQt6SH@lX;mUtk%;P(dicHS+}@YYW*rTV=T|Z
zj%8zJ2;<!H$oJR6!W~mnw2kn$NK!29jA4;yazEq3PN&x&I3fpG=Df8v`(GCWXCNFj
zUuhDhwdA!2is$D*);`0xiyAw<eraDZDkYltUo;!wwg>|ve3flJ9^g=5R3)n%X`O*S
z&iwME?Q<V7swCe(#ntWb!=*4LZt7#0ABLo}04e!WePA2yui4nYI{b@S?8L>;PbtA0
zy!ZgT^KbS+aj_z7Ky2xPK7KGL#U|$?Al=jvfk$V_s|lp_lc-X+52#wpSn%uFq?_>H
z3*}l%s*){_`0azx7RT}8X4soe0H~^UoYrDS_PhLm73=<8ifLNzhy{j-7DC_yn2+K6
zzdJ|*B7vc_O5eop96K>YezOA~!%K+g#*4aw+xO0nWfFIAwM$f)I`+{uf@qBVTP4aY
z64Yy>L2wq*WNF!u)MZH^pbdOS<MQY=Wiw_yu~=-F5pw@A=oEBVmhP{zk1AL|@wgBS
zBJwlTc~KxRA8`j_LZ`|g+QmpH#p6T%DB4BrGlgq=5#W$8G`Xz+c%l&-8iJpF(|?}}
zc(u?Gc{0$@AQwJolvhy7iqm=C=9d{r*HnZU5i;8RFhk%O`sTFM_n=S}ma%WD_vVeK
znLO8YpyaMz6dU=A!_B5+eIS?h9jkjwlTMBEjl*3K((yz?0QRJ>zrXuc#tRe)I_}z2
zcc1En3AYfsTxrRSg~s!xrpqmrJygLMjHr8m)Ia?yuB~KZ+K=p>Ov5-73;X;2PwK>d
ziPh=v)V}vhOgB?J2F-G-rffQOiID50%rSOOXFuc6z$8LJzQ#en>FsR*Wgoq9MY)BS
z@kg6|VXwymtAYH#`fFgnfgsZTjQnzC`{ztOt2rSB3bM44<Gd#r!D0mrvi;f)hm3hQ
z0_rlTgL{jau3l6q^Ipk5Dsbii&Axk|J58km1~5(mqfpM#tY)wKO6%d$7v9Id$6j^_
zZSU}<q~fR;Q)n4(hN)8{@W`-GkTQXa+y&*;%U^-2apB!RQ$k-?k80{HdK_QTMfbv|
z=kpj@T$|?Ktk4k0<3m)f-Ar6krC2~edRUX4vn}5v^wo#NkvP~85ou2|kok~SzCzg@
z?_z*Jp+uM=)P=grN}8tiGgnPbH+~r+4AwjIRPoGmgM-<xd;>)wl9WNVb_5DIo+*fG
z_Is<F91z#NSsPs*mhVFZw3XhA%OKM!zW)wA&eDGC2NXI}!n{J$iPJ;`8E?GgKE)<@
zKi-h@gk*0-d4mX=@B!<@nSG|x;*XMl^wf?tpD*3#MGOqtX8mZVnF^alsuXh|K5VVB
zKKu%Q+2&wmPcOK&JO6@L$f~;R*K%;vDYI{-IMW*@7w4m+?}M^5!MCitX#<~ifh60|
zpSQx+cZDZ^Oj%o*j#$<_pZ<GZ?s}a<tP+<1CpWK9e`L(+&POR0dt3WAg)VlJ32Ssh
z;(naxUP4zAtfD|#SQ;Whr(bU2?9<g?x;ft{Svn~tu!hj~XExV`v7SVN5^4u@+G_>m
zJadNr(Q|97Wgq?}b#$6~dDlQnvS~Nh>TT^az2%6GlGQT_s*PnsU-@|iH(jR@45t=?
z|4n`e>aI)E5J)2BcB*!GxU3#q@AySSck}1HuySA5e^bJ(?i`S%=p09cH&cv^Uue3D
zV1!V=7f*>#bwB;36)QF0P%59RuA{*MMgmmqE<b$ie-VydxdlV|5ghyv!_s40VJ?2&
z*}vL^h`jEO!aKad#PtMp@Z6<R^2a~#zGQ`>3+&WyFpaC{*Ls)CZ8=r7uQR!%GNqUq
zClA-~J?F(}r?3|md-MH0`O_gDmwoa5y*zlQOD9g!tFEv)>pACyM*3naTfh1B8Um3p
zlwWlzbwGmKZN8QI+r=9W>594<{x+Ybc0JJk{R`YmZ{)u-vHZ>R|NI!Zf=V{r^<YN}
zJyAX^%QhW?Cdsji>BXUeBFgiOR(jP6!!n#=d;io+5InB-ZxhEBYSwPDb7wmmY##G_
zXS?2^SN1cdb#OEs_TiC~#H6DmOmXT55K9b<;-Vcd2RJ(FZ7I2cuU`fXmSXf4gv>xg
z0P@I@bJ{zpb=arp<KsM<8tT{f@B*88brt=7cs@0Hm74U+7c68a;0Pa|-HDi~RHzb9
z+sMINtW+S@LHTDY{U(UIQrvlKzA)(9ui2iwg)*CeXu&GZ69JOjVP1W4`uPi<p9_sP
zwjPvFEEzNBK&4fuCLo%j``k(}>>!rO0mVSQ2@Fiv@y4Op+ik_iLhUk^c9BJUxP&L0
zBV&g1ns;gMiUr-qnhb=K08CtKx7hOM;P8Fr^5}BMWE45bUCuV%tC%!ZymqdLGNr~V
zO%$a)FGWUJ<7fq7d(X&{$YDB1ZUZ}~HT%<cJS38+SE`NMd5KX()ej&IG&qp|QaBML
zmjI(fgvBBSIq4?IQv!*YeJz4WxSiMhsPDq$>{i7bh|z)gqo&4T|ErfWEpfg39x3T&
zwU!3Zq=GB#c^!JOf&rl=V3byYi1!W)y<Yk0=<ncXq`Xnq0>TPxWJH3(lB}Y#jdkuu
zxzRe``k97RSd*g%lqhL<MBbpuLm{Eqey(-pYVFuQiFq!YhFEr%-#rTFto+l^nwpwf
z0ym*a=l_y)nIeBnoE+W^C@Hf0!TKE+_k;j>wAE$g+wT)Ye|IY_v+H4@DfTqkmo#S1
zQKV!PQuSm7OJP^`T^iw$L)+PxIJ!{EZPSjb5;+!!V!M5krnS?{S?f8SqB+#OD-vxb
zgGs(Nu0?^-&Z-|;_3-tY#m9|W%9@qgMjIim#{`+C8Y_DX?-z(b=k}_`%4Q=&uL7Hz
z9m|c;oz5wcx`!|m$w~(yQl8n)nN&RTqW20vmZ_U^5T0{MgiMb$yKD2pg+}$Xlp6Cr
z_h-_pb3MBWVpqq9>LZ*Z>eaXn$eT%LZZ*qfoCPkc%ja;dlG-EK#cRn5=SEr5Ekkj-
zwpg;LNWz-g+gf7jYzLr3$f9*vToSk^3ss+zK%P_7=x|f2ZE>HIjpRGMNjkj&13^fT
zXuQ+R&avf&1&SEHKa<M;A!?~#Fsk1nUT>kOhrzTnRS_T(@gJ1%utHwHyK<ZL{0&2%
z`9+wJ6CXUaf*M4G9%AjbkOfm`fW{*is%+5rT`-2{S*Fky0*LSOojwHY2U|5R#mvOf
zb3)JfKN~1Pu~5I8ze%Tm0=iXTB%Sg@q+Z@{0a@o$3i;%kjxWgdqb=OJ5otSenLd70
z1FPh(%BH!JGVMex{`}6$5`z;jA>fCoAGG?x%JA{UJRuN<e8y?&Hm%Xp02>xim2Zce
zbsHx#e`Lh1(PhhL^fES`-Z^I3a_etP)cKy*(Q02l0+QWM{N&F=e(u6hf<>d}cAa1R
z#7<}Ue^VMIymcb-Emft@w)FBc9^XG_wZ8w=GHJa+T)dnBcNf`1m+B_rmmhD&!>C^_
z;Pn_(06@7S@^RXK$W<uZ`AAiCwR!$ah7)fx%G#he{C<>bXFFVu4fo<U0`nN5&EMQQ
z$mmg}c%0Acfz`(-kiTm>O#*OueSu4@G$BAtT(X(Zh?1r}ZEn;(MLomJ0wGDgF9bOa
zD|G?_K-Fb)UWsxwLnlRTKvg6Lr7^^-dckni`?fW(@Q&yjL!@sR2EoLsA6s#ICnSlm
zO2GK)naQ!qU4Z{Ehd>@V;g1h0MJH%J$FeSdZT`9fR9{GvHDzMC<VR^mhe^!6d%WZR
z8`~>@xgt%T!3|gD@J{JwnlW&|3kjhpPrYuGrUbh5tXI8HqG;D+De4Dz4r8DR`HU4a
zB`HDQ8j~6CY}PQk$1f~t3ydPX;snyp!VIE;<^W>o>{HWNd%W4-%R;|0eeh*5`WHL$
z%s`Id3r#tCwJ83liq$z|&pwDGXAk%Hr=`6gbJ=p!PT)UZ8jZ&RXCI%gU#C)LM^#4y
zpw{Dv{PqiaobFHd^@mV4vXe`c?%-QEqoTph@f_)9jZ1f~S)GxMkyHPv?8f0V+)h_P
za#d#eBY)Z`%-;0ZfEkG+vtHC@Jh@mV!&)FtNDxpXc*)w;>$teAthWb>e6hP`tJHjq
z5en>j@|+J|;4q@$I>@}<`%e|fteyH^hZ2XSR7L=$1_Sw-=Ar02IGYB8+#u@SScnFH
z=R+CVJ-*qJ7uKh*qoQ<;4D{Ac8?hmO6%)Stil({TSIBHu=#ZS}687oq2mO)_!qP!d
z*_?ih9IO##Mt7vZhOZUx2R~{<?f|xOyTU2;@Y*-fP=r1a5&$>DEv5~iLqD31B7};D
zOyfz!L8X~;nTkyk#@LZxWumNz>F$ni<{^B1o-kn+$t3BTClN$xN}%PZaF^}<BoZ4d
zQ{3kBh+5H;+0%-@8i2zK!9&oXA+nP+Lx^U#XO=(eWUyfW_4Ysm*_2Jr)rUv-xfXqW
z8){+Ot6TlH5%=Y^dIGUsg?Dz>d%hI)I{9O4y^B4bLKK-w-{FtZC9<YR)TQ%zqUYeg
zD;Pr@YTQ7Cx(lGah9flSwrfRmj0!mB)r^v9`2)()IH#D%ANbi7%apV=SPv~|VGV5-
zt`&-Jl%^|9&S&0~Ukj!m#&*nHH1n)fWoBA|^Dw>Dz*YqzZLH5#oQ#>RTtn>3_R0dd
z`$55sZB3ab$JrIzkRxSCy#JBf1Blq6qLgRafbzxziEo=3Vn)V=qoM1>ok8jX!bp&&
z^Ct=(Tx&d+8esF?<t@{7<^N49k>;@~4LR_f$0~=gipFidPMKOE4i~@C&cw-P-9`>I
zp+d;ynAD(-?OQptU)uD5+at7%gor^7E}Nke@wEN#8!sH7LNNX4-iDfSmt*U1skEPC
zp9@On&SN7JeCFmnfJ;?u;bBU^-1+c&ejr9qAwfVQ_!pAQZ`*mN*7Ih#S-#YEA<{kq
zBzmO#hn%arVw@@i^uy{iy!PV{2Oe-lZM?G2-w>r^SO&d(^@C>|-8QX#1Os-HH}}$h
zv#LMbwVFMitpx)7+GZYrX$Tkx;i*|1u<%DA@vJu?^m|2u*p2`=-go7-K~^ND^wE~#
zF3d(*n(^U%NERT@1WKIBMdMTK8EwvoSQ|Kfz5gh0@)obHsoC)L><f9QrsY4lxRt$<
zX#P&qm-uw8->BP^g@NtNv&ELd^jYe_K(Vd@8kz7A(1QF&>Cf(2DyZyAg(C)h%ZdXc
z<@u5I;$r60NLJl(?zJsucxy-yRU-BS>ZjBhQ#N{fcGgx?#(o3q%?dMi#RP?*X)Y3E
zh(m(T>_IsJdI(!RAp|OuppqNj#qC2~=>hL}^#&@fqU$HB<w?go#E~iwz7r~e6u_@I
z)@Y)5)bOi9tCXPdgX{z}B6qvFd4h<OqSuun;YH<&rndbvGG0el7IPD2X_6rh$QRW$
z1~uzFhVnA)hN=!0OvW9wIlE%#TrsA2gaAz@c<nhJp7;?7W2cMi09?f5^v$pEFBPLa
zwBvF{gw}bgNs|!S3YPJYsygJwREa41L(r5jQbEq1aAZ6+3AOncj?$C?i~-AV1Vio@
zDBh{(h<F`_99^NvA1L`dEfCbn)k9RNl9)6NQEHaDh6$k(<$UTNpXbU^)1b$M(Y>3)
ztwgSwsNqiFt+urs%`wqRq~5v!5*wwbbcJc)ujWvB-Ov^MQP@BVqwPIxg!Ct+hhK)%
zgwBH?1J000n`#?&8kuCv-A9QU0-<#14I6Ii$^d00_2DjEhg<-bq^1g@N%*(VgIfpJ
zK2Qm6u6hCy4#bYl14w@9+Nbo-mR9?Gj;qLnp@Q}r2JRYPS);LWf%o;qYhJ9<!`KwP
ziBz=i(e9i(+6?7XtLLfnKz#7x{_*t<@!0e8;G&TY?o@&u7vMws&w`Hz3q3pwwjY??
zVF*Dt{&G!!E*GpnRp~pmc1*LSVDOXc8BS2Z<xH~gyC^c^T5#Zpa0m-bOwZR@cO-A*
zH7g*9_`6Tlo$Ur124rs0rKwXV^kNtFzqhkXv(G1le2|sJgI#^Hv$iWQC~9$96C1D-
zqivB8;H}<2c$P7>Q!%H@_7qa0{e5;OSqKg1+Gjy2jGSy+@kQCax#)i{EM_KKYGYk>
zU#$}d(V~115#SvnlIuU)EYbXaT>a)6hvN9s7ta{mi}if9BVA`#!2My;$5^gf4&K!4
zVR?^p5lRl=Q2=YF2qh&HqZjo$&@6sLiX=Vz=Pv4(Aeu@)j1s_jNb-UNOtd;XPrYIx
z!+IOU8(QAYlz`ZQNQRD*cRKbI_W9sSkS8C$1w+IGVVgFuZ_Y}^)V_&UoqtvIn55iJ
zp5kx5%8C;5PZX=`=YfVxR|ls+N8;o6L>lka*el(*m7z)<@04?pYR9Mfo%)+5AWiep
zBD_W;KA!yxs2PDW5$>R<3cz5TE@>`;G!aOo7RqKBMPdUw2H+ZqkS<1AUh6+pM#yU3
zg7{70t-?G&g+>2n`Fsf;6;KWNU7c~k0%^XT9dvxBx0ftJ*`9{RTx9)LZ1iFi4|4D4
zO3^9T<HvlTt0@I)I~)yri71GfBO6WUnQ(c5pZ`^=q5RWS9E{w7k4Q3MHE^;T1C{_V
zTlCKqIk2kjF&_LmNqFHFIVWhJ1hYp)>o<Q9nIrh)gUHf(E*aHZ5rz{lK^vb<Zd6?9
zIH<%^EaAj8{a+)t?@&_d5Vq5C<3847%uuAct^^u=GURxq&FLA557fg?{$xMRh<z?B
zS^9$I$(ONz6hk6$Tap3f$o9d(^g{2*g5V1Fm1X#^o>$-B1=Z6&2+Dip&^~ycYN!>I
zxdo~zNn~;6Pb|Z6kdYo-(?HRM^l_zo^qCAliE#8)WpbUq*^ArnA$3y$XrR6;IH%6u
zpZ-pWqt*T~2@ZjrGQghf{W`zSKF6b|7m!SQn$V9TW^`Yfpksz&nDGT3UN%31i^QP4
z`>u!sObmClZ;*K6FR8##P(dZYySDxC;em(U&mC3UHSIB}$&J$z-_(|#r3WEm{hiU2
zl)#z))ZkloA{C<pQI!z?Ru7n-xTO|DE9aL4p)z1uJ9Zf-j<9dvW#;?KEK=C+knevL
z7?6<<4_kE-PZZ@@#rB}`Q&+^Z<@<^cXyz>MbId650t$M?X|FqXj$@Dy?6`dV{KK%j
z!FvJ&WE5*q#7JQj&w>R@={-fMI)qbZy%!<jvp=xO`->Grc%zDk+~}b7d{ZjCsL&yc
zall#+#H}4KMe$6Tsgjt@^PX~M6jB4KM};!N^VkA|0LzIuOScJea<sQD)UG`e{tSJ^
zWZ&rPXz;PAx9#v3aoQZd!nS=4S0+eeUYFzByrLbWH4_lneeIm~@zm|HI2R{fS)TOx
zHO;QY2rRj*9D)R}-SbnM4{NU^zLQJfnc7r+wbqI(U%k&fx9j0McG>VgKY%Y?%bduc
z9&%yYx(Yp<TH1nURbPFwuuug_?m7fx3PKUbToamB0>QTT1@lyb@zFN<00MtJ3mPH>
z1AHz`ZdCBl!at7I;2f~T__wN3p-w^1YH0adWDH9}Ik}k@igj@tDANAq064VS&#3;D
z`u0_ppd$k&=$D9;TKB}ONeAjTLx}!QrccjUPmiLm?s+gj*#Y0EVJwP_(UljR*<zqE
z&|IZ;4n)y2_M8wXD>6Rh!uKVxiJFis{R@!NPJX)7_syL~JK|&hij?Dgm_c6hge3Vr
z3yEv+LZvQt^R-+#f{lkApj03f0!Gpx$SKp3quG9UM*>uqokj=1%SMpi^%jcgVkdQe
zLQU}A#hIHd%w8nU#Z95?H3P9p(*1M0|IEL^#aR#+_`KHP&`XWk9>Lu;iwt3>Kxlp(
z@8}wkKec2-oW*(5z{CDrOg!nP0E27;Nepl`8>|8O`|T8M4Nd%A0WLb(V9GKpjW>bS
zI}_&iVgy1PNnuWWY%9FxFJihA1k{tlx-T)yhss($tPYA_2S#>hHozLte$9$N-csa1
z-ia_k(L*lauP0wKB=)Jjpp{-Iqz=I_i&A3gi24`6sG*nQvDSq>s9StXez*e?_aNVl
zR}Sw3QPIz<e_s!G2&VxEt+Eb)(6*X7cAvhbz{14|qLh`99UNfBhzN(Yf0?q`*dTsL
ztjY6s(S`N}rv#fuyB<gX`E~QB;(tC_O2_@8f|8Y{*x$8IsjXzmUizkMO|i4VE8v-y
zC_kkGe1(!lAsbvAbQ|6aff_ob$JTE4o)TtSo+vbi&HDS}UC5A+YN}A8hu6M-yEpSU
z^CjKJq1RK(Doah6-Nn^#7STBB%)S+;Y8LM#*w&qB=65QdBDiL@3pzMix~Q|#H`m-h
zp1!=-40tFrhV2=4W(I$$C_KMKkORF7mhO2q9wgLGvyqWk_7yQ8-F^Se0VSydybuI7
zd3f(Zoysi@+SlVwLoeRn?i6gmX@(7`(INY<!=`R^xZ5ke_wRmIJ?H6SW3%2cw@AW5
zEz7>X_QJ%#WM*P6F0v`Iv3XcCOEy(zT2qeY`}^V*Q9=T=n}yAKr1iLNY^ymUNilPi
z*MGyk$pMxo?Ba#QK4p3I#QTWxj`SV;?l{TMYjyf?w+Z%Vr~Ynq=ghRB@Y}bnX#Z`_
z#q07v;MiAREqgA^)tPewXJBEmwX$MmW%j=FzuQPYZ&hS@?`i!gvPZ+<Qq9w|`wj`M
z%eb<4rPXU~;P-EqoTC*`CcnO>`djnaquEYL(PcY7>9R~bfAmjM2)O{B=n@4ppUOBK
zAht>X42*sZ8NV2D(Ba(##@1}%d0?c5Mb4NFs8#lJNzV)`G{x#ZHS;Bx<a+hAN;p>7
zFw(Dq(@jOil9xKeSC*MioI11Hw$<mbS=dRYpN-^17FDQoUeIwfOzLAHb1$J{OMOGm
z>URMLq(O?8uwR`|uDkqwuNU_g?z~&lcaqo@N93IRDTFU8=5|}XE{#LkE$+3I7r(dM
zZDGvyJ^QB!?bDl5?N9myzgG6J*>yuCtu;n_^60^mgTlAycg-4yg@zhUF5GHdiH;m(
z(hJ}|=ZbQ2H8nMl`JKg^D)6w7RqUVKFPD_)RfQzKcRCbA@TR*kqHIA02VlZ^0BUTw
znHnrr)L^&#JoOr^|KeZ*F}gjrJp-&cFj<=L0g(Ylb2L-`6-|->dXk@^cy)WH#PI3z
zJhQ4OnXC*If&hU?i;Jpm&n66-&~(l#`>fwSQ7v}aw+<a7(&x+mQt`u-%e*NhxllTu
zaZe4kW#P-zVyxb*7y3_RzTq?>9gRgLB~5h5C{225>eKlC-rn9vp^ct9lNXx>!b=94
zx|Y`Vi847nsoZMg(n|<W_4V$HdaH18mc&Ueu9V20*{hz^DRxi6y`FU*d85p^wRF-a
zm7hL9D1q5NMH@g69>a=Z_ViDmy1ROO$@T5M`TlXJ4g=Diy9P8}yh2)9dK;%+0A&CK
z%?clIc<XA0hUB&$)|!EUoJb8BVYYGRGMRC2uQIcdyRD#a=TI&(dO1)8ub~$MM{{wG
zTC1rNP%GrPF|{u3bMzOK@0VQ3t2Mw=bMLjG0VG1&Lez`V#8T_$UinaY`+A-DjFH<H
zFL|!&{Vz904b^PCCBetuej!fO|8_f}afZa+_qcBIY<QP6^0k1lFyA!qGagikWK>$r
zKu&qv5%b;)$td!qfmQJJU|dy|B!%yd2K%317ya*EWiH9G->j}=T-hp~55;D7DEh6t
zFsVhojyF)(e<sMq!OMF+y`tE1x6PiN8UBvKQ;rhadRCk?bxS#?J?H*={xW#q_gz-O
z{f}8FW^8ZHE350<*J`t;3v&t)saw?4y4S&6SJ&4`POdrv7d8hQ^+<p3&oz2Szkc&2
zEd$=-o}o#dmX_|db2^0xyh>1FVse4YiabgKS|~z5zopMk<P`D4nx^wToBe4vJPZqq
zJoYqUi`udU2g&5&JT_Yslk9HeXQYu34lcg-QWiG0LocB-E|R*MfDT#A`!%?EForfZ
zpYaQ$S3%p<&LN;JAYy8aWT+KR0FQ9FK_d{0&(`nrq(){3-xle*x!AnxHbsO~ip%{p
z?Xr?(z(a?CO~tt_MmneJYmePnya_Y0i|D`1%ZPy$jiqC|&ZJ3Lr}C@>g*7_^60a$3
zt#-SR0x2D%i5|zyy3?p96a6|R1+cv(aLPCV1UP^nt3Li8Vt4SL0d79L-)6DT(wX`C
z<WCYBT$g?9>~1amZh6o4gbS3IK)0K^vth!gPqy~A{0^TA^RThE{Rtj%TGIyle+vKY
z!otG$5B;wQvz;!5MtnrF`_UlDx@AfX*{KNwt4z7!O^)kUM~l~YxNPhsS6*Hak+f81
zV%eaMAB~**e2>q%yF*+o7Lq?bnqp@|Y%deKZeV3d7&sdq-s<mP^<^tBDk^nYx*LUJ
zLyRk>N{3fk=RHY>Ruo?fy?AkVG-BY~_<5vxU#n8{n{Sq6hKGuPz<Kq<jEwXYkBiu+
zS!AoQ_e}-7T-=kq+-;{lI~weIB@VXyj;rVzM5i;j{^O>)cZayGi*75Vkml2?V$_zh
zoSNU8hw(}5`X0;vezXZP(dizWF9o}x5~4jMB5D&8D=RBE3BdMIS?OeH`AMFTZxsjO
z@8-Mz{Qs6^XG<F65_<L=m^%|s_=D}AbpnHbBrDm8Uq*RBj;)U?*iz?gi(NS5Q9|e-
zO8=1xE&vI$hK)8&q{TMEEU(D7JP6I(rOQ0|8t9T}9$wh3=2ZNh(Kg4_G|23jp-YX)
zN4_HH`U@ButO--02Pto1razyYA{d!yaW<QoDpK!$%4Y=Z$E)P`mQuk>D7Xy_(z=@r
zDgjCV2<0!IkNO#!I5Cuw?*%r%y4-0LnmXvw43#=6c{+n{T{zzez;^BJY=k{79M4O2
zEEHO>+hKdtFTfhW{o(;+s!X@6wAf*G()h;?n62E?i~cLyM35isY@|s^$Ry~<YzF+o
zf_$G2%s!{5oOreH6uWsbJ??IBy4}u>7IxAvtkEh3zrbmlJUhFyU&qGE4)fxhG(YC?
z@#k+rBR>rPh#0U#JcQB}{mxuMBqTV;-lPe*W8<6{@cE-ch-<YGX!tx<EyIH)Im=sb
zTrx)L8@`m56frTgqCwOYqNG?_C)_%XpBa30^y?jlBW7|u!urXD4Z+BD_On0Bedzb?
zw$T&3&U8}7)=b2zAT87zO>Us4MY6fyyYrXZIIrQ+yl2R9Z#0l%ARy<zb6oXH117l+
z!yoq55)M-!_hoPIN1y7(|67;luf1*a)Dse5_@D_6obl6mJI7ws`upmF80d)Sv%xeb
z|8p~pf0rcy;%g*;zJZMnC|)Ypg!lw0%2f(=uV0A8PJd02$a)J7HI93~!91E1s24t(
zCX9%fJ&cVF`t}WcfRT1{jMn&pC?4?Yze1{P+?(F)BemyM1_#OKGx1;zekB>TJ6#JH
zU=eoY<lx0OeU-VI-*Q)MK=0v5Yxtb)9T`1MJ|KgNW%rXUkyvh>e*IWpJ7+gqR6w6y
z=%j-H(fm%lQ*`=cbOp&5Uh8)1*Je;YhR{C$`@4=q^JJrMZ%3!3x(15|n}J;TiY@&%
z8QHq|hL1kGI5Ih|@CnDz4~Ldh_4OXMzX$tf0da@;8^3>gkZvSh#y!Q-cbb(Lq8b`Q
zK7|P<DKW^YTUK=(kVeb^Z;|Or?jiv#kkL!WWh#XgN4=9o5Z$8z=-}-ffFh19+>lTQ
zZN`N7_6q(jLashrlG<+)J>X{1;c7Rk*8xZD?5PCRSQHidc&m+#=QG;MPW@y1zJEpx
zyo@}p9zd?VzDAS#gJwPcAINz~Kz+C~iCr%&k<{!JRic>&i@BPDf-NQ;onQHg>2oik
z^s1_(O|M#Qax7%eo`S;jM8aKhAl9t^TDC9X$gqT4!E$mATZ~d+Hj3=F?H`&DpITjC
z%Wc$<dgg^5=g9XPJ2Fxx!Fi(U=qB24>97Gogee~6w@y!8F+;L$-{A<|t$OD@&2M<O
z_avypkY0<4G?HE;&3okvJIs=o!tVk<LB?(Qn`bO|K_8^CB~7hJH~RkbP%aedS^;aS
zEyz)AYY-t=JrlYPMZ5Z4r}kd8Or=mmgO#fjn(%R^v>3AF$ai#v@j(_fB@du7219Fj
zcA3pxtRyBJ{c#~&T=lah#a9x$+eNv}RX_|KWR}@ng(~nwbV=Xau>uIrs0$Tj8e0BG
zTJgOG4RHp5P2V#7BWy2O2F%VCz-0x1EeRn$;u`HB$^mAkF(Gh*!+_Mdkf87-CSgG(
zGJGyZ1?5|%XcxeaF2e9BH4QajIkN+t)iu<n!o;({k;LGtMVNt!5h0)>u=Olz_-iO?
ztkn3A@tfFaKNSXIgaG|=4Tgj{_ua&S)h5_Ju(X<1Ar%wLYDt)RO61BhtxN)Bo^c@D
zeaX<@Aext&u7L&%8>hz26=u6grNKZ(ntJv`@bjh3`ER&^iniD3QLYVm6&hWQtgPPa
z80cu6&lvm}ItrHoOzH}OB|oVc8R|~bvQz9xp41^c{5t5vBug&RP$PxUe3vJj`@UDn
z=js|$^TTKO_aQ-}H$bs56&EakI(}gGQ;qNRNn=2-10*<gwGN9e2b*QS?-H?>Wp8dy
zRLki7|HKl`x$hfjSEB<r)gy^GZ(NEw_lpK87X9a&5W|WMbw8ugyH~xq<o=d!-C~AQ
zH0bj-D7{{-WWT{5(E1Hq%C<L%!pett35dDyfZ~h#SqK&&*iKuldpm*%y~F%h6Mkf!
zxb@^cnH%tAse$j3Po^qCi0?PgT#)+Q&)Kpu)~mSnKVq2$xwXEc0{gD~l+}x8{wKlv
zFE3BLg)fswl%ZDjbBi9k2_cuBkOtUVoCt%@(bjo*w{iX4?c`3m(~g5~(*Vc!&ghp^
z2{Q7pR~k9<!9qSfm|gVs>f(KTuc9E=i)RZiJLbwphhGI8cemG`E*>vf2;amOYn17>
zI^sZlUM>#VOr4Pn`V{Z<r0sqMyL?1fR;Of?(9Pxw&b!<BtvAsx522>ok6X_VMoq49
z9*+-?JR~OeYF@~=J$X7PD~sgY;+b-D?!WmWCF|C2v9NyOB<CmJyiO2;u!uFvR@cR}
zcuxD=nygc;GdK~p@p7ge{^N;xYJj3~(nv<s-PW;}y>4SWha4qdn2eSNOWxqdqS2$k
z#r;8c2I3?sNc%2KpWi)Phs5`CT8gjt>}HGik~2SWL5EhF0GZ^2X1b^EGA{;@bSqiH
zybz;Ng4%^N9CQASDf}(yzhesjtGLPwh_~Pg5rY(Kg?Nc#U0MHT-+`f()=cHfQ+7SR
z5nR(g)1zR?sGnGA3D|Gl+)jJ{+zN%~b&JK)ykv1+{=J21G19mC{2hGQ!2j}B$lybE
zsa%!(vHm9{<#$I99op{rMG5pBY~zGExi5MB5B)FM|Ew?m!S14^m0i3Y@mHMA4b59W
zti(^{4zWv6sQ*;K9hJ&kw%F`M4haf`{CUt}81rWX-0(=o3mT2ST^<3*+~QPfh3v!O
z^j1e6Sh?f!4ax9F*Qr+D2uw`jyN+{6KvqGt-_aNls(7x{8ia^tjybe>uBX+TJ#U1Y
zH{q_4L6+JEF))Rh{z_$6U$$-@BazsY%Skgp5z&_?z+!ZFx)f%OwglRWin~2_{|P|m
z_nEB&AxRZ;IG}Vnxq}WIXYjBc=IO6y#=AUokv1B11Y4EyxN53uF87Iqs5Bob7J|hF
z82777)UI3fCyqIOM5%aiNIJLGkxa(oV6?q$z(A3;yr19HX|el0ZAGAzI0s&gOs*~k
zw#KuCt(s%j*55okw<K@~BxA(;yh;kuuWdidoPg?nuS0b2E?6+D{8aG-54rA3P_X<@
zrySS$zVGe;<lXnfJs4z4f`^9Pk-#%ONRn<Pljg^n{saVrJKU2li+{1d00DdnDsptT
zYtJh&XFc-=8@)#s$OYWhG}MqpR|_T-@>hP=x-b(D=G}$w&9_Jj2s>zU(wxBauh)m-
zejc&koITWIOVVVS7#`7Y^CIF=)SWWd>+heybH7Rj>X)If&Wo>M_rWakd*kY|qn%7}
z(K?0U174?Zvh>MVQuWJYTZfK6N&TRy*tzdEKow^dSJeV!u$L~Spg4pssbcIEDP;#Q
zpf}zHc?qw`1|ALk#4zSQS#e+fpQoL~xQ>wa@EM=&Qr^^*x(Qw$#P-dDgUvpruf}w#
zVH*CI&XgXD?<vS}t`+@G76}Sf*)%|1_dIhHwWRn*<=iU98u=b^6YC@NCAYtlY;dW2
z*o;8B`u{>Hp9h0G=Z*wW;G*KdGLN(vSzy3ed5ZKHf`@_n4)q#LaxFu>LW0+ZZ?>Pp
z&v#oJKMxPhjZh@Tn`tHMipH&yGYWwskI(sGhuGiY5sg8k>2jL;-xF?`@IDZb?YNI<
zkHr@5_xNshh;}yZWJWGp(-Jn@CoOIyFsmU3;@OXkceZ}5LRl62djtZhkp65kY3?^b
zzuX}<3DO*(X$GKMcjTSHrAm^;Xsvm}#@$pX$pD%hj}EC9+i&P2H@ImQa4W;^E21YL
zUYIV}?zMgvPfLe~{wOns7~L{_n5CZ%@GFpB0_-X-$}`q~4cL-jVOCu7zdEwocuF@%
zw369ON%waJue2V((Ir79N$AZY_MJs91TCmUd7pLjutDgP;oq1CTyMpU5a0C06(jIG
z{$-#4_v=)}41ib9f~^O18=wRPb}{o-GC?{_@mop5;{SlX|BKv@7pZ%2OP_@g3EGev
z&>^VgVMjvI)aOI|HMjg28+2}wJ6V~t<$8oSs$Owuhj_8uM_|0mmpYuo)8_B7<1u((
z@pQUoH_VIrW`^dFTt9UKiFA)JZ1cG>{Bcmj&st=5&aj7c@6V)7<s0O?vQ+Oi3HPu0
z{ihDdK>k0+&S1=^UG>SpnMZ%bFyP+e`H#=cz%q8aK23={WteFT>b-&-G^Ua7qNV|)
z_-VP+4Lebgi~c4PsY&L6fg=Uj@E{-hNr5U+o^T;vDm5Pt)b%HvgrhO2!l^WDY$70g
z9Ow4fDk;_{*;2Sd5F68=9DgbboS-J;mg#!mX4B%SIfCz@EP^+jgN7>qb~j6Upov50
z--=rRa1EdW;QpjL4Z!JNfv*4-n#;BQbtfqq=)wy$I{yqau)*p>bEEInO1635l<1#N
zT2PAO@qOb4cOdg7aC`iIHd0`<2_G~P$b!)T4!P7??S1aLWUZ;g9(>0yUtV<T8F!?A
zhvs`gg!m=_s{DV(mftHr<-+2C;<L?sfE1ikh(WS^qbU|3bM~7$2BSp(9iNXI5PIK8
z0N~vb-tTJupos)+0j$6&1<0Wcnn2Us*K)lGKDbdIz#{_dfpIJfj}BnsgFp%-nhill
zSqd!v5;{MEkwjy#4XAGXgdxB<^*e$U*Zt$IpRj4tOjt0oBzhDcGH`YWBRBTa&@P=J
zL9(H=V2=d=;;y$S|63o6bGTIDiedFRJfId#1`x7|bb&tB-vKt=CJ&<61lk*_e}N*3
zv=aq*oA!V<3CJ^D9`kIF80L@DL^>3WVki)bdP4BaXplQZgO(^od8W`0lZ7CZg&)g-
zwhN4Vu>4wsXqUGg=zb8XDKKM018#^1bVC3YUQsac2xRv%D_>rS%9Xvi3EOhPyBrl9
zh+jO}eQznLIv`?&h_Lluzb}mz%Y+1|4PxLBfExt&27aAw8UC-78pMDcF)(ufU9+Be
zAKo}{JbwnpZPKP>qxHU%57<S)qBINoH{=|_!?yWy5}YB9a%IL~BE*zvP3}NMGP|xH
zc!>CMYVmA3#!&K!;XS5B$00CviNv#+A^^~mDH|}FIS1eiCjfh^aGwR+9e}=(4KZkq
zxCd|4;y<u5{r$IfNLP~sC}niquOFahP#Fp`zjgbsRePyQ<B$SQ*9q<|GySB&M)(je
z6bXVtsJ96wO{~;C=&vGY%+5Aul?W<L`}}u*X}BiS5HmwN{{0B=?NWA-5j2xY_sS$8
zK%8Og5g6TqRH9&({I?~VP@HK?O%q`2=>khx#r=sG9J@%a?B6ajkGdmKd)>$9cyGTb
zmF$fJofS6HKd$NBP+iWHGIXNVWJIXE|Lr{RPXiI{yDWyzUqPKlbM2JRHi@mmf#o)p
z(kaHa8()kdP2lVYwAA3A*EsW!Yt%v-Y4%+U4J1%<GuWfG3>$O$&#4Hy*M;QYZ#YOQ
zo_64kK(GM=3f_nS5744SY70z~S!}}xkf6{!_WC!7Kb__GwH)u4teD?yob!Kp%k{zO
z)44ILwGgGrOjc!ao++LgF;HY`BBJ@1wH8*K&J-IOl4zr@@?u!9DRWdzo_ew_{sEf3
ze&;_%@?Tf!{Z{VQP2&gI$B%;pFXzGJ{r|s((d7PZdN5ygWP<(kxz-QDPd5={TG(*{
zn7QL0S9pm<?cb$b^(@~lc%Sb1WlUMsC#b6yI*%j9_8If^FfPUnVM&b2v)Zi@sX-i1
zZ%86$YATCS{9`<PDN@~tu3<YLVkTksZ*|*T7i_g#Z}EfjV@rKV8yzhaX!xWYW0oj8
znqsj(#00=MCSDvxCG_v8A=dWsTZU4SP1xfJ3P(vjMo<CG#u$4-!KMq^u7o+{>mjnY
z;!W6h)l-pjQ38Yo`bL|G^KZ(vIC<M+z_tc>etZizg7C9f-)(}!YzS{)^8_A^98R}*
zHu1(q>(%lSPh}AdPl`1jzaqZx!i~yj*!ll3_uf%WZPB}E5Cs$k0Rg2d3P?wKk4Td)
zUAoex_a0DDX#yf5(gg&h_uhLabO^n75=tluA-NmRIlpt>c=z4$#{27KFf@U^vsamG
z&AI0M<~Ny00OTih2cUV<V%O<lwiL>X&71gSZwv4+)SWQA*sultJV%e$Z1vnSVm}Ld
zv`Bh~D$eGRSZ8~dGMw!;(JNM`P_nOtAb_}WP$gnvov3A$C`JBH@1)<)jsuIm6ipv+
zJkRtdmI>ipVmG)h=u7S@%oGL+smK7tA1KpgmDOIM_02leqUDz@umMQ}VMV;08GZMg
zAmv9DZBo?DN7#^B<6@V+?vl4Q;wM{YihK{AtED{9EDsH_#rJNcjlNjg5d;*$w;9(;
zh(~ZK8zCsG(WUQfdROwZBM781?+$9JC2|#)z_j!8VE6q_R||ZaB8oqDFrP;zy}C;P
zq9ZvE>!`PV60gdVIvLbuQwBs#0EZB}N1;J7M{EyXGvdftG|*SEDBOg%tifQPP*Kif
z4~`#9^!_SnXS)}G{f?WN=$9<shY38C1!zLu#(iiq*%i0}l0pC);<@x$y2@KY{y9Lk
z-k8yKPyQ_+2<|ioDF4a9)F+!RU+yC&{$6@+AAX-u3t~}t2G8){DsL1=<xk6Vo-9$O
zcEtQj0i~?IkBBqfkF(q2(QLd={1@g?Ii$lzQ!-`z+^YQZmdIJWxMDmT8~VWxb8)&v
zNxep<eXoW<PP?2YXkQ#-9_a6LT>H8$=;~!C3@@^s_|r?yxeDB?*NSWm-wNIV1Q|QM
z%vCc!iE%fu_cb27<=XDp(k8Gav@*=^at=c0YCT~qE(<MWOjOEVaPb$~2A}5Y1c!KR
zoJ<=0t=0b$>s#07BWBl$$nHG1#W~0MI+1xICYoJU!KgUnM&?P$D96jqKnU{o;nI6N
zPy*(e>g#AR^@nkNa^%-f#c4~~_Rk@Xaec3=ihg|VBWQ4eHG3^KCM(Oe-X{ys9KUtz
zMvW#@Tpy*<I}m`Ip?RQIH)m!bwCN6zh#S*9@TLL8kA$4=5wO5M%<hq;Z}#iKyW^bt
zDC4?+NIc2jdMb1cPp{e9-N#+6>x<9vL}|fB<lL9b7V$PmYirU@eN(k?d-@Bza>7G-
z`5lWyfX@1(xE6_|;YZT0iLa7wN>{3lPjw3hJr|o<lrujvehfeJxI%b6@;2Rr%Y}Vk
z<T>!J8zS}mmDW{}TsvFqEY=d;JMZhmUq>FR%XDXn{QPqT(9lbj|M05MPlD^S8+egn
zz3g$LZ+JHk_8)fRdxS~<N0R|iqWAUUUl6T+&wq{3Rn%7BoU8of%lXR;d^bR|_?U}p
z<+~Tp^D58l064RKRz3pw&s+RlUgM6O2I%S6UoSapAZwHp;{TeUx4lobw3U?l-nZOW
z9YtM}Q?826JRDXJNMHiMq~{mP1Z|5?7Y;|rL3E;?{^x~rICMcEvR0DK^sHq=%8ZY@
z35CwvafEF-Z@P=kEicakyy!1<RQCwM$fY=wvmWHwYNzLU8{@@Q>91f6)(ar&0-vRk
z;%2~sqmE?`)f5vK#s64+z=`koV)aT$$5*-vUw3aHK=p0b<hzpe>ok}>yb&hIFR7!U
ze>~eI6>a(g1TxQf2q0f;lCK8>7xY+cH^MB3cKUkz!23Yf&ne?7gTcs7p>a)lrC+y#
z)Im;f?zVf>d@alaaNK-4Ey$@^gD`pvp*QvdU;bl_-@b~c?QEf}?;{H8hYs{mhK-Dr
zrX&hGW`7S0aB*?|$q1^gbHq*{0%}Tfe0<*Y{G6mkR@s@_4sBI);Xk$W>oQlDs4#mH
z6%ko&R7kur*qQ(r>F8j77X5gRLjDt>lXcfvO-(MHhdmh49{dkx19*5dNJ018_t>JB
zoQ_p?(&DBj8u~9@xGUJ^oMGkxKFk^;JkY-pNkUL=t{n-ZWMRL?78O-(p=okr@>-J;
zOC0#3k+dH=Xd=<1+i&)>s4B<DaJ2G!$#C>+eSP-A`8(4_41d}1Z|xigpWRTP0!TPa
zLSSfN6jJspe|NYm^^xM?S!gf`orFJnY=(Hc=1<sj-lwi6Gczj-p4x<ppdbZ51Gxa_
z=jw=!4Qi=_vC#y~m6b!y(}BW+5)F`z4G`?w?DoPPE!1p`2@5bt_#^9ZsJ-kIA16y4
z!H2J;j%s-FUvf5`!PHTV-|vS61xHPc3x_a&y;g9tT*FTleh=gcpU)V+1LTHyA?8@W
zKex`#p7*_|c*^^>jsAa*J9sJ@?>Ki_8Kiu70S{YlQqr|O2@vPK?*RF0`S&ncrnMC3
zv(1vQ-rRg4H7$1_cq|cNWo1PGYB!5ENG1f`k(0cbC$-tw2tZyS5<Yi!rTCM|jbhBW
zp^#N`hPa*HOyZr!k0#k1?A%N99O@ZqYy==+#IApR6o_d<crEOTVTT?99S?{3Z?*b>
z?lRDbc&*dNxLhY<QqS<g<YZsJUuaa@T$=x^@C!%mFc%oz9@7>S#M6Xa4(q_AoHiC^
zRg!={Jkv;#r+`Ghc+@*;Lv*Fq$&;%eT1PhsgePlUR@iZESDJw!)p!Y{YrHQm;P@zY
zSm09d0iZtUDO0TA|0c*7>G7`^0}-^>DxGWB3II+np<k0+-@ku9o~`dGO#>q2fKR)p
zI%#}@gh8_Qv>7j6g#@$#O}WRgy8%|xydzD<7oT*$$IV*Jw8s6xotw|vZ>(l8;>LQz
z*49#+?tIQS!jJ1?BM&DJ;~y2^x_zU=>|nEdX!XpS_YM(3P}!&!2tXr>P-}Ak;u91-
z(4|oy1=hh$<nfiay5eyegL_kr=C-a(bB>(cHU$x?qP8BT9XU_$Pfbjt(RoGAY`kJ~
ztxgwky=~eAAUU59lwf57L2XE-I=M(2>g(v}8bq4^D+nzhg^B)wLEz_6zR}AcJVp7O
zk00~iMP_DN0&b}36RMusdQS)EV%$))xu9T0!<;Y$!|}O4*l!8da84SqJeqp!;}5uF
z<G54I^{GI;>>RSshPSkwtjK|)7{D+M7q@qwf2=>rGrg2G2qN(Nqs#a+fA+kqSTdVw
zp`p=Rq!1G(yP~{;70ep*tQ7U}<0C~N@>~rLYWWGXVCUpq#g@-FNTrgtK4H;Xsk}nB
z^Y2#oDy*0Obx-jfqN_^1y)`53;l$JSRRA}!z3vX+mVT1}tFZ>4j?dDDwwy6YRxmod
z2{$vEJwNNW_|!v{>vZU>yF0dzI>mn-Vzd-np^>W%M8l>(qN-Dv6ce%*{8uUh(ZNjs
zRw&?wu1TZy0v>4b{r&3?LSLYHmAH8*nR(RB`DpN(caA}Cm15fpfaF;D)V3?iU)Y!!
ztYWT%T-`FDk6g!W&1K2jKE0%y{ZG5!t~fTArgeP$_;qCDuvZB*GzfLF7gq~zsH*bY
zD4a7Z`Osv-9s@Z!YAUgVN`Z=}^Eqj=o2%Win6dVDLMbF!rc!LZYP?a_@G1~V*%f!*
zuZaqnt*&p6x7+tjft<84LUu#5KRk<`vpPD*pPhh6rH*dd+dFczvyt((dU#<0YzN>l
z{id`we?e%sL;DHH{s!P`C7gAL<_DRY`o>zL(+n{l0EwQftLrum4e&2&#-+|^R4Yb7
zJ&BWz3$Sscz^FUY<P_#BB3b`x(B?a_bpz?1jp?POX(jO-1*J=Sv(>(t4P|bp^AKQ-
zL>89+7;vgT=^b8SjbZ?k-6(-HNb--mOi(&Cp7fS6VyDWW5M&n^)5sxJXMw;50b0mi
zWY;&ju&VCdYV!Ei{V%r{y-^!Hk_Rc-O=oKh_-}!oud{+<R>oSr$?a@&I4bavABsB*
z4&RE=65&n}KN=fFP=<Dp1h34-dsR=D>*gKzi)RCy|HSmXBOeV<iuh^win=qDk)9^E
zpdfHt5;3~t0Y(i69tj@<cm?0(9BV1$Qq=HG2R@p>6O6j9ZvTHe{Dtr~fPikULkC<%
zjqxKg-}n|cMdf|*75>t*#t?VTO({>Q{3z{Jh%!6u?juDYYqV}4q27d(D*Nd8IiZ}!
zm3RA|>2lo;hx-)J`m;8~ztuV4H{*XzzY@(!Ssj7-rs6!c=fwull{m)jc&5_=UeAwT
zGiYbg02c}9_DzB(wf}m3Kv}=*`#8D#0jzLR%-<CqF9q*PqHuGG#Y-h#!v84EtM635
z0X1(pX%pg8S_>8aafShELdXd)<^J>eF9wi*d`nmU>#@3h_5b)syvqa9Kh8&@_n`k!
zWdOFq|LKp?e{i|~-YnpW_ul@=%kLck=IpP1de!*teWGT-&3WJ1>lv-Uz&9OTfcmkU
zQYl)tmG|b!&3_*2brndU^b`e>zFRS~t-JR3H-pbv`Y$~?@3<)DZilr4r_XVZTLM9*
z4*w_sxWvsiUZvP)IqcjV3ypq=v9qb}S3n`A21YYF5#ncGRMj1hDs5)AJV}sV=BfWQ
z@(}()!;soRorDxG;WHD_mCfq^nHe?pKi$bD{pSf^2tB^OzjP|iKK{nOd-b1R!wD^J
zT>JSR82zai7Vd@$te)5Y>BcEOkSKrpqWv#d6p`HW$f43M;lDTbvgcj9^5D<C-I|RW
zy81q;+DY>N%;E#0^!(ColhD6#$MGu}I#bvGnV7{#*Dfb9ktSA*S{(21iT`p=Xc<X!
z`TOTUY3!h6V66YNr27J2b@VOJ@_z+HNbru_TwYbcDHF#d#a;`*t0c0U_JSx%?ES0|
zCopY)-+8*G{c-9m9!a{-Ol9fejZp30Sie{L6Kn2+1B0I<KQG?A_3u~Su7={%0o+T_
z#tR=BAn<NtWc1Ql9}mEVsF|c>)nw|#qz0}`>l96f2mjOH%br$)FYnr4ZHpQbfRycY
zVs=&BFW!4HfB>U;M!YiB`)n8pOrhXiA~v70*rrzw?7fMvDu#Vvit1{R_gI(-r2bF0
z7UvT_!>4Kz)3?0l1H!`{L*$kdrfU;weZQuIUO8H!kuy#s0&_KPdY@=9o2+2KCXz@j
zPw>V8dl-P3>$hD1g3pJc>bU7W|5^Z(x_}+gI}|{99sdCw{{5VHes>oi7v-~aa>Mtw
zJjLiiUlJ2fr?e1n5VQ01!>G*_b%5UZl3p1AHH3!)bv)SlVOG+wUmHVYjAifxEzPyG
zR2__^rI)6Q0MJ@0YIftJ85x7?zr6s~n8kAk<K)Se2&*iBLjo`#o$3$sE_(#}otv{Z
z0Ua0wAUe~v=$pcQrMp=C;0J2VE;bR5q95O=VN#D#Cwoctr&jY{f&}=4`98d0*EZNQ
zLL#Em(xTHIfSmnitzy`CgoV*VhliSq0C!}xqFgLsHg{&NC)A>ILR|pM)^>1oHR>km
z_{4-<!4ncjQC%%V4svB6_ZNU{I+PiB?akMjpE`ohx>=<tZ+r^C1R-419c>)vt8hP!
zSW=VY16Gdpu3$kR;ApeL$_RwriLS{2MUt%5nke?qYc{I>uTa9NZ07&FaV+{8I_gka
zT)a8e6D)WQ#RQOzs>rWgqFzcM0C^MuV=StkT(=ca2OnXDP5tDu4ci}t|FgE=-`|Hn
z7P)gnRGJ(JL5DiYf4!wTAjixc9v)r~>f%%U$`{WW!^P7NRaaMK5V=F;vI};$G4ogH
znwefvZ_F-CTLScs3918n@7-cel)n*B4P90BCJ7R+IX0Xcn(WhsIK_Xf^1#V%$9rQ>
zm?sIWr={n$+U){*b@ly*6#4)-f&gtgM&?v;u;*Q#|J;uKW~Rj%A<K$;yR%Re{{Uax
z<t2rbkjAb52ebFAF4?i{k)qW3QdGj{zRRd>oud){+bWa5aiG$dTBMVmL*GE(ib<p0
zB*Xhhy#LWE_Yt;lAGViXDjxEQ@b+Z~t^$GvM>BuUTE4qPAb?V>_CR?9N_pqb#29cK
z5m;YeGnNP>@z!}$RZ(st;pN%$iZ}i<5Ifd*ObJvrpelp?9K~<m?H@yqJ*qN)B;9y;
z2&G=%IQMl_RaXT_1@WHh>({V=anxYHH=b6$wyv0Cy#Re(lW5Z~q@e#nkXdQuHTbNc
zfiQ5jFeTB|83RN0R9`;}?-zN=ekf}mzRy1!(?S8FN};^o9<tDms#?b%5uHE;JNVgy
zcQ5YVB<NC**VWVWg3l9!0BB}T=GuD1j>yY@ZJDd{19vEc=UP6!%v9>o`4F+}D#nu}
zZpX)cq?haJ3Q$wdIYOOR2!aCa-7Rn}GI!)6Zj#1-?xT#=nUz7Iu7UQ?Vh}F1Mzb`D
z1KfJuT8>?gRdU4D396mT%j6&citbuB=b0#oF;OM}J$}r|$IW9W;DZm59FE&Lt_^8;
z{y_0-pE3a)`ij>^DE<a9F@;j$ui4$Frl}s|zMGo|?;7FLwZ2UYMUz{gx0bNP$s&63
zgP{&L>q^Az)+vgB5baXTbc!EK$(;7eCO{fj*l=6%m7x~BoW?~^hJHiX{SXIL4`Q*l
z?c7`ExBuF9fy2OhF_7mU%g%~=_hFL&w7R;QUzl%EaSV(aWZf;*T4p~ywV~V8Nr)D2
zF_StaYB~@ISArLVLK+BLD8h;#q^uFr&b?RUysQ{j)pre4Q&R(aCBR+AY4^m?)lG0%
zPxeTmpM~PIzgyv<>)7@|N%R@La)bW+M|329GUgeYnMM`)61WUTZwW^@Gd_L;AqnGr
zg_o(Jp~7iFV$$F>X*fZXKX%47{+k`oc3dZ`6?TUZJWl&PCY3EV1h<li<GFi7@@SU2
zUdnXcDH`)EM|Ss=(4Q<QQRR0II}Yk}acz?1Y7oC0aRa0ccN|2G!4mGw95gjyu6;B*
zLAs@yp1-*%LwvV$>qe@kr-Rc)9{BuX{#`T=ZVA`+<nMaTfQ4l-xY{lo5FkwgRS{sW
zsqq28C_SME`9h9Q5&^)3+sUr@#JCRDH?B`moF9T&QaC&m;LF)v>Pk7oI9*gey?^!X
zI3+R2-5m}{fq{8nnH#@n;$CQWif*3U5%CQM$TC~ZaJ2<5sCj7dsiA^(*9kp9-kDbN
z2G>$d8Zxt%kdh$byKJHOCSEhg7t@nX^!3MGTBt>t-wB+DjjO>IHB!+R2OOY_+ugXX
zpIsK9gv07mUtg81s&)Rw<VBe{a4^T%cy_^v>$fPSlPupz47|{(P>RI}WcOY4O{(EA
zu~lVZj*psNu*B9Mj^Z$_*5LYg#>ojOxSsH$dUWR&T_&(SLw41%i&Y2vnX7K8{_xmT
zY&IX$YudygqF!5_c23D1DSs<-5G9>{+W27Xx41p9^X9I2wh^~=?*`z1gAkHz0jNgm
za+qUk*{aI=TAYdR;Z`;n8xQ3ZC^IX;?0!u3ZeRfMCaP398ZDIAoxW>Rz^?OPCFZOe
z9HGRxqYT#hBP0NQCbkb5x7{$g81J)xd=)fVWI`1x7aT?BcQ)JwfDvj&vw<<q*-yk`
zGFel6*JT*7cL#=8G7hYvI19^;q#i56b6-+M$x1}C^d83l_3N~*oeP+HAi1D*1Iz;g
zIP6x;GYX$~-g-aFOsCcrWpc(0!Yr~joh<_%oc<V6FHeC~DKBPJJnk?RJUeB$Z~9x4
zO{hLEBW4tbTHpaSgK?KPAp*sUt?N|ST|^GVzdl#<XEk&<DZ-6|UswIDV(u<Z5zQGJ
zvoiW1+aE?DJ-ndM0Tu}Z4gK*6*u8y#w0*AMIcVW*r%9y-t2=pYX#AQ~Ep_1>$beDO
zDu4ROU3BFNNA`lxIa1uoZI9Sm-BiR+3_Y}_OwDat+g!m#bwt{PGmd@^cp2~y(5NG8
zwN$X1eBqZF2TxFCQ;~3b<v#9kgGciY07969PsxVkxY>m3fO4}PAFmbKbIEBiUaV#V
zDB+_{yQS^oSe<dE=*{(GI}w#=ub7tTQ0o-`>iY7#AS@tPh=Rs6yGcJOT>J)0mQ@qV
z33n0EgfTCgJP!^;d(Fm>!e>xp=3O+~wpm#l^HOf8g3%?!Fb$9YdQb4e`Kk=ad3R|3
zyTdKLA`jC#*m>pxT16eP-vrs{n(a%Zv28*crZ&13oS%cS`n4A~KRyd;TTvj{<>u~Z
zOij4<HcILoiItoQ4?iUQ)M<k0pv7-{&2JvBeV7x~7-((HA*U5rIP1TXd~{@Bj7)<D
zEC<cXRQU!s;xba>xi~=k?GL+B0uEQff#<=DkdvJCPT!!GvjW`NyE*vT02GqnSZQme
zd!EeLD8ei7eViZfXJPHK3?i^JqoAkMwqbbu6c_={+c&Q?#|7;0%U$!qVUtraokfsx
z;6_(p_yTUHi(=Gmc>ZkYJayCN4c}c=+)*pfgL(axHb(#L_UMZQiDP6xMm_KV9lJAk
zM-e+CjB|S3NC3iOd9aV$KVkQAnB*6a&ql%M<#D^Yg>d(+VDSD}+J$)d4FQOZIZp$o
zb8%m!Dj2sA7jO{_M#(vNtc7NrU%xVFQjaxV2z=+K=%Uerz;v?G*xDhL`}7=<n6r<j
zEQyN$oEYs(?oeK`8f4G=8#h%~yPc*y>{2f;uZa5|8yl-rUS7#49^l$lI0vA=5cS8O
zc$5qLSTMNVIZN+5db9+KUUR~5cso(cTtT&X`A2rsoVpQBFR!21Zj^s}R<bNDbN^j+
zou82Y=|zAF5!;75k6#c$AqVFC;%-*!ySt@FyJTe@{u;F|6#(SCW@Q-9o;~xh^(Xz_
zOU~~nTb;3Y?4Be76)Clun3<$Zn>UUG6NrNfPT(_5zl(pCl;Fj&%?i*7`Mqc|k=1^w
ztt2b`E})IzBw*v%nyL0<u_ztWjs2sOqhm8&2C-tO9ghSJ4c(9L@jE*!s96e9l}5We
zN7}5k37_SYTb|0Yl<8+oY)5n^)iXuE5OEl}OXw$Vb(BLPPe^!{tlG1=`XZCuC2G?-
zqet6FS6VhoqSzbu6=qe2ayPTJS6LM=0#lIFJ(ay8g&WXINqS<Lq?uV*n3E{#fSD<h
z9N0JrdH#5@>0)|Ri#1Y1fFsXtoAvX(la}0#HCHw=(W$;5e9S!LLSHHh@Mlxr**xzI
z2izNjeVU=wKYy3|X;<m+fLqFCY7PY<^^)_Z$3}>$%~8c1sxr%#BsQqzuvp}$>^eIY
z?e-atRH68O508kFxrg(<du(Yhp2`L^njjjn{fpR!UiRG21S@?|EVKhwQa}!GvYv-1
zuLEgu54$Mp8)o$y0nRduyJT<14DvdZWW|zAGA5?;h450T=@vJ(r>7m9QIK%pra~3=
zo_@B?QGRrCEcC<2tK`uy9^WL{_d9F+n4xf!^D(<eag`~r-C=*u%8!D})>?Q^VcS?~
z5)%-{B5s)9Y2JOH%h%j>E|HLK3qIy#QDa>Ln%j3bHyCfzOhkm-^o7XCK-Nn>SH>&A
zUv7N;T3-)gG&uOJn@1V?Xw8y2TRqt<<!~Q)cz808>GL(paHbFu6RAh_#@LgHGYP!p
zj?1!MOA$@<#VYunng*P^tvHE$Y*^FV9xaxl#F7J0F-1C)W3ZXNCfx1-Vcg(C15YGM
z2j@x)pAY<1{0p-aWg4X}a=Il9enO0!g}ef~%@Rr5xHJjQ)a)sK03i-jo}rN{pX6s*
zuApX!4f!~i(Tb9ow_d>5^TkWf8e6N}^Wv0pS(`~E)94<2i;yxF^g@3S2A|oUEe6bG
z)H=-6;KC6TWW!^j=Ia9qB3A7`=gy;U(vI=4GnMb<e00m=Hsteb{jro-1vfj1^%mNz
zr~)&mSD8R;pDs+5e@<dG@$R!KldLd<wYxlQl?hTyR%|>J1nh41xIPANWM=C!pVfdy
z8)4y0eL;PCLWs8n{3Q8Y*lA8x7Lo5?Yl>iy#%qj+p~BZyVilPgAted-q|8UoqSd8J
z$6nbCe5Bvoi=<QcKF@F(usRCWQUv5@x4BVrl;17Ydx<OSi{3o?L%dMOpxU%<uw&t1
zSylvefX5dJ6INkybC;d6Ml`u1(&M2`C(?F<9ZQ_&3&ge+EE1fXc~K^a$-J%!@F}dv
zG6i0^rC+m90JAAE=!#;PPS;*)z`v9WFQw*|-+2YEOK;|ATb02CXau*D({%HM9L|8s
znB5khTm!0T&(n7v9u=nkhr?i@>v+{tj8}~!gX{7Jtd#rudwP2oN;bY=F<j-EnI;X6
zeVK_OqEmj=H7t)Zd5;PNggKx|%89&I-p+4%MqjVG(t6q;-kG0rCJFkq{#G^gjHDNR
z-n@aUIeHpw=PE*%_I5$MQk)EOFb55UOFflcdMzz0P#svbk?I|yKk!OGUjD;v4Ov+t
zvORJ4dM?G+LT~(RaZ42ase~k{FDorPwPhbCBdFZA`$gBKZG9)+HkMou?Ew<aLNxhZ
z0kK-z*@ICz8}%dr-^)p5cT#@6KjFmFl_~57DHj;*0UwSjXuF=OJg_@i7hF_jZRHu@
z{qm=7_Cgts=x8kELV=;tN!rk%{&dSrh5!ki!EzfKj5x{3qNAz^jay{PWZhTK-dJ5p
zK<3Z(Zcm3eK5#fvVa~S58K+_D9puusE0>aDkR40czTD)-AKI==t3#7i#gl)Gc%m=o
z;&L*Eu>lN%0c-{GZf}Bt?2i1lv0~@4v2kHwUXSRdbW9h<mRv(+Wo3Pn(;TiJz2v0w
zXk4<C7afO-d)uQ|OM(cIDZHK^G;^e;hHq!fe)HzO$bbgY3H?S~?#c9Il@1$tOkb6l
zWygNo=%xm8?9J0!3mJwyXCb4A&dP}P%`|&Lwsor@yV*VIjd%c)nd4#T^NewdXr%&4
z@ave!5D}w6or0eJjv3Dnu$pVYkDv!N`e%-I!BUZYfq6O|6Zv&H`Jm`f<&bXM3YuH;
zS(Bt>4F`u5LFi)@MQCAe4kghU^0cRTtF-JSY-X@ZkaUC=H7Ef`@oVPr_%prn5aX^o
z4h*9<Ie#_vB>*4YPO?4Ywmh}u(nYS@fMcGQx*Vpb#sN1;K$}<WISqsRfXdK7u7|8Q
zFTeKHxVEif$yR%zja5p|#s_3i9wLZ7ww@4I?M*wC!5C_tq<=O+O$j4Cr6~4F&f0r(
z6Vigve7C4vU2lW{hd+MPfF^7oViJe!oA`#@eaNatp&{=nMRxo-H2nzQvvGe_Muza@
zL3)3Z1k?6-#&OPkiH7XA_++mjTRx7eW_zKch5BUC?zS#+&5<%UsNUq->MAv`@nt-0
z{Q=H+*tWa7>L95~aJ&<rkaDp~>;yT3MP*ZHO*`4}CWJgko+?@KZcOd?Cs&J!qtL$V
zYt;O=#JGX7MINoyWNVb;P67Mlvwn;K7KTx*n&)Wy&+;8go_LQBs{IP~VtgqPi1u@m
z@RN`#aVq-pG%%IkkEHV0VM|tDuA;|+LEz^kMOJ30^{85s5>t9uZvwxy*7-5~b%lY~
zuIQN0b)m$)N$`mTs(a*`TUPz)f!DPTOJLXH&-yH=-w*H<#dJo6Y*HOg&!n!e4j;sX
z9$BgRd&90M5Q@hd@LP9Yjec=<yd5Fyj<Fc2kB_<3TroinJ@!@vOp>>~4heK7;SiS#
zG}7B?+)dn*-rdb30c@?LsDI53o;-z`Obci*pZDG>kvxwgAO7IdHe=vs<Kde)K()BR
z@Bcio<b^k4S$|KMlbxFuurG+!rGRm7avZHZQKyX4{q@V5^xo8YM>YdcS38;4@oMnE
zeB=4k4TbdaEe4-g8d`3BRe8cNdtGaV;7*p0CQi+?KsGc8M8qWmTCA)*i7TKDxEP&j
zg8;hc*?SCbssvHy6wvtf7O)|UGX~Dg&hovPCCZw+y0Q^56Y}`Mlg!#mI3qDEaI^Z^
zFrV$zQ&M5Qym54EFR2=HmP)F~I;@Lv{{(rq*(cbw5)<;fv1BVJZl3KiyRnGZwoD(@
zw^+S~;}$(GE~WLHY}0_M;@|Fr{h{IOY6ZE45cv4%jMbM0IG|<%PFI|mnU+SQ=Bk|G
zW8cd2sr3SoQHIQqviy-9w#hBLfhVglewN*7KM}5n!Gm6JP|J14{!)nX4F;dpmJT~%
zdk0N{Du=VKNC>MMGwR$2nk;&d?nwnqb><{k%=fVWCtd@CLFL=F*MVoKsNkrSZOn6n
zZ@C+$=gsz&_2}7$MUuGRN*Vgc4Cw630c+;^utqCIQ~}y|`kXA{(1)%N_Q?iz*KQ%}
z9zG@|DZllm0z5tI?AlMAfu@6DgmEgV5-0I-3*w1i100y0Md?@-f~V0WEP7PeKhlvH
z77Tj|uzU>Zu*w@xNYpY`BRQc-hTG0a0Ska_d|SE7tPBQs<W>z^x3f`cS#t)~PlRe%
z-gK`Tw|N;XY@Mq9^l};(nMxYa<ik!ox)dda7TzMys3}3!nMQH$GVEkgjQr*K>F9*f
zTTFb0ob*|=vhG{JhzJ<W4dfSgdhT&zA<Tva6F@~AyTZaeRpAh#vbHOiJxvS00cu`T
zp#eX8bjNYQ1EljuU_c+J=s?biN`3u)2gjsZBV`(tmluPc5&?oF6dM~8rS#`B=&}ue
zz3yM7`}-Z}!`nYg7Wnw~w(~!~ynTh_@3;TIxw1-xI~TO*Nj;Ot!~R#dFBi(+uRm)B
zTpoDpsr_f5K$wkAwIq3)mcOq2Yb^e{_J7+;(6i?M4_8(hH@B?0hQ1WWXv3bn{oRyW
z7WgrH_uzcm!q3<J<^{T1x<)T`HSbWt=Elb_+N1G>5>@ZtA-N|d#4lM>TUzhHQ6ft-
znpdR4QuSkix#QYLA5qy=#=GP+46sTyX%jV#05zx-ev<KA$aAM5!HIEe>t944S|2>@
zWMOU>7MyruCog;YrF%8>pbLX9Q}6Gu&LAl(YsAgNR2!U8MjY4XU~BuBgWLXh5p#Ow
zm3yJtYL63WoTdM6>rgVCGp`zhsExoqh(CU<oM%y94mWrA(aC|^DKe*!^N5&eVyk>y
zhjMR{l;oB$Z3N*d+}-17lVPT=vR0`;lRR3!K#C&pn|_yB2`_0bd+(7eUnZYE033Sv
zVD5%%Spuc1V@irjbBkHY?5rfQYZ=b-DW|S|YJfe7u;^BK&#Qgnn_=6-JHW75#e{~i
z_w^l?j>c1}TJZza5P!X%HA~A{#lS2CgoK2yQjmpz_JzplhX%fIh8R~=6`6X<)4=Ta
zCaYli_T0g8`3bpU=xLhp@sX3yJr=dUo%1^E1vV3J`dWrR<BYzo;bH0X!lr8Xvvw&g
zDalyG$Whh9@?6z|FFq*asOKS}AdMi|npKvafGtpyk}p1_+p5B-miq68{1lg14B2F`
zGl$Xb(jS%bAB)kG#ok%<J4c^x3lF^-($mv5Di3(0@%q#R@+p!=&rnChNc-og?T<D8
zv|>Mdr*#)c&n)R8b1E?rv7X&sdU|8m(vgtgS+#teOw+?XH92YX18sFBjq?_Kl{}{0
zRl@O~RcfVWbrUP{tBd#a6|AYPc&x&iIk@iW{j*?Sf6-vFwaw2fDtP1Qc!)e%a;=fI
z;N9j>3g6qM1FE8g*i#o2X$z%F_&(-g9i4B<!7VP4=X^7uwR>r3kPsg@ab&E$yGLKw
zb+Sc8W^7>aQr|>LmL;PEXv*AZVuw{tZQZ1HoT+x>xRrUyOCiH91v>$nc;nv*i7sq^
zj|#9+$g5gfTIwrq!}!fY$9gh7h@j|N8m8Q$f*N-SkCSPrtbxAnSLef!0V_9`qhAw+
z+?^xoSJq7pGd|ZQ<US-k1q>xT(;?kw9y%ZM5`)9T2@^XC^J=`Qd%s(8$FWw$RHbl*
z?=jwGikW#5m>bL0&)wS>_TT3d#6eexubRvU*bB{A2w*OHNTxNsea}6@cL&!FWX-Mz
zx4o`SzfBh2v3%&=57w>QGS&xbl5y|vBY~2BV+p?6Zc|A^AwWH9n((#dch3ZEb<AZT
zfC!UB4w{7uaOTzpz6epvcHoK_cr!y>^0J!d@2(S>JKrAu`8p%ydG<IE+7c2Hz?j>7
ziH)Y4%YcSFp~%;@bMUZK^^luEmOSiI`{g;>KJrnXiLzy`_2P<*EB|Onx7m})$?<AG
z-!-dW9@XJvW!VpFPj`pwc!Jv;bOo$_rSPXRz8vf8n(XU}<5lJS>#@xak$|$>1cQmV
z<LpWd>~&{uNotV<yS<?xeH-Ys+y2IIqNt%qyaHw~TPdpioopC8H*>)L=icT5XE#~d
zrUFCNcC$HT0Qsz8+KvA8#4qAgUmQX1g~1K(x!GD_&y3Uf1!xWe@Tw#9?R8_utx92I
zEa5Gldrgc;B3@NQhBEj1cVSl=9Xf5!=DmxaR~7M`oH6lZzL71T=V73yn*hqd_{-Z4
z1F~Jwg~`1R<g!r(3FQ^%x|QN7I+E+5zl_wvdq(VQx4Si)D<p*!D_(`bYmN_Rl^AmG
z{N(WGE7qqIy6*FcGTu;N*NRJ18FZ<EhBDn_Lc!tJ5AR$z>3v#@H#A-xVhLRd6V3Mx
zg1L97incbWr1IDuxC%8D&y#EsJe|Z?e3@#$;@0rhp|n`z0qE%uxoe=>Pl^nYc$(28
z7K7ThFK9u=<f#ME&PB`F(>)O6J2+M5_ZW>&jL$%|a8~@dM^|XK@jyg)gdq1@l6#q_
z*Sv2JN9Ga`H?D%*jXfnu5WNKG?Rz%$f#sh<DpRRm=5J<_4rPMxJ<?_93iAd1(J02v
z0_v<n;c~Jtc6T+vcR0snJXn`5PsfkmnzE-Nvy9DfyU|R)-*f*`{ah;I-*z{fTO@4w
z5-wXud)jN@{K2mx@_Fuy3>3lTg>NHm{;2hz%0%D73=kG7RAU4nkArBD!cFkS)6<E!
z8Hy1+*Fj#*toT`)cz?CwebOYlEu!=DTl}}R=-CpzF(#S$>B4XU0)ItNHN|?Q96bp1
zVDWFE{xjNtzyFVAa5)Trz5cZf{@>`#w=?u{eX%orJ`(d0kBuC8s6#(g4fX(K#cCRo
zI?U!mTA4L_1noPPia$PEq7NXOx1H>vSAKk_cW>8mh<24_SA#uP=~rnXdfTY0Y-gJC
z8pt^~AX9-7NZH+4VU&89PP*XTlv`g4(Jnb`(=iJ@>pPX=V1HcOn(lkDhw82407K4K
zWc)}?7J}}C$~Emy`P(2`)EBU41mi)8*<B-Reb4GXZn~q9t78?WMZ-JC$@xvMwwAY!
zvKE9l=BE>;cl;hf2#}Dqxk;fyl;shWw#c@Pv=KGcHe<Jy&n#8|UtlB%ZVNby@w&>i
z#OegmHqrD{HZGS=lWyz!ygSd)IXqlaT5mR4Y0OH(SSLE!lWe|?gtdK&^7QcFVPl)F
z^f-e38r7>ny_f6Df+qPbNV?hC<>6e`7QYm)aimx=7;=5@?JZqVAZ2A{F&bw;G@iC7
zYFW)UILm8kwKah+bP)bbF+GSnYdE+N)hrX`86GlUb8%YTcJ7#?H`LPdX4W{SwhM_o
zBF=aEEgpaz8U$C-M10B<tJ`_00hmRX7Lv0}$;<pN#b1CQSonImsgx~d^GC{)2d^JI
zE7|<S(0rO0P=C5)iSv;Jyu?vW7b2BjyV3YAmK~WCS*pGV1$x-Lpq#?oUNtCt_dwnB
zw6da-n!4KP4svph*X;ZxY@3XpoQlsCvuU`UetdZBdo=3B3QbD4)d09AKFNQOtU5$(
zxmhpn`O~YWik>zS>e^IHL;Spae9jwze2wnkch_@Vyi|eVC#gxk@R&^oDg<1=KDtv5
zi{BC)kG&wg2{}GKMW4`m@92HgW?=-swtfD5>KEInQw}}_(bb~H19)pk-!Dy{!y5j=
zLdR21$R><hcfMap@bCWbr`~;HwORyr$jvEyz(f)(>9(|+IGWkf)_0`4`QkP?14~ua
zOtJ4p5!i_--K)vJ$q#xrR6AY6&Jo+9{Y_Wmw3~nOh2Ksi4kgCW*<F(HSzgP*V_^SD
z+a#oF!m4bJY3`>9#F{x38n~U-MSOH4w0mG~FVACvyA}s;5XZIBqI|c;{oW4SyhQc#
zTa}4&9nU5r{6~s#Kl?vxGr4+r#LU3T^e1tX$uX>v@Ocy=nVft_{do&D<eXH@O$<v_
z^t(kye&4&kwG}f|OvK}q+8cIgxZ3=^$eUe6WH+%$3RY%Ed(?^AEJK_hGmbs1^g67O
zHCh5JeqhU~&7V#%5caCNM{EtbSc;PsutyS+@<b)%+Ip#ziY*wv9$fZmlaDI)D(B&1
zM_CS_%iZ3{A~Cc)+wQem3hLaAxReaSsBe^U<*}mZ!YBOeP>Eveh01}Mmz)!=nc?W0
z+Z(&PNy*U_E(4#^->1VR>v#fPuaVulC&-zrfP_2Lkz9D}uOPsZ$Vq8op3{~#f;{cq
z_OtfXMq_iKL>@7KSO%Ags{{Ws3{lEaQj@4d_c4B!ryx_z{Ob3eXNQ4S#zOhC`fQ1Z
zf`g7AnTI!Mk9f?^Lw0oo0T`u#Nsy=B(7$p}PQyjkZ~?0elkXsOs_)82!Q&9ZV-tbZ
z+xY9yq3+^rQ^>>&6u_mPo|;zjjsp%OgyF%fB5VU-wYV<Vcr4)ZZ8i9IpbdW5w-4}>
zlajwuK=%Nr@k8c|5nB~SrGUfC>`MDHE=Sx_Jh4^8U2)ri$vi~BCIc|C^}9(0O_&s4
z?&Fc^nFfbRa~_GMm5n2$j5=So1TN*;Met2`SI>SW=ydrB_4+q!?jM5g$bBa%tSt-&
z2f`OXmHG4K3+T4p&gNI?r|4Vo)VqOV!W@2Ehv#*t+tCT%R0@pY;)Sby$@FB`f<N}x
z`2~1u%bLrWw;r5D*ag1+4*enQw)^YARb1b|b^80QCdzfn+Zxcu25N9|d)sKnec?dF
zV1vp+jL^F@=@coG#DMAUU$p(>=RM+#*9fjni%$u2B!q^@<@+(1h}k2Z%X-QKC$U_#
z0UdrA+pS{*?zoM;6+=y<ZwaoR^Z9i@s+Nv;3bq+2lw}c+v&;@Nee9wc6ODlPRDMl(
zeZ9YJZXW6GLd6lZAdX7JzWv96m+A>A5jPw6RD<1lsClqB%uhM|eaN)0LC@YU-1x-V
z{q!Z1lCrAFMVlT?MOcUk-C%kh0x{|I#fV#7MZ&UTdYWM6?5vCtAUk4@e$J|rfL`*;
zE9Dz~|NhxJPpz<oL~U9LcC05OQP|`;{>EUFU-QogYLSCI8|0^mndIn{XMv37%cwZr
z0~E$<-d`uprhfB<LIgv$jV&4-9wh}pzoIib3vj5e$^y9liSy}?6pJ$E6ve574Mc^Y
zPQO;rr<+Z7t>w)>7iW|DDY_!*#Ln~#!O1?va1v60hQR*0h=={kr-}lnnE0d4$W+d_
znaoUPCzOZGYiVw>8b5EYz}3(%L;KUy3H;Ytr**B0VY_(v!Ir<WdAA72;s@4wq##bs
z%@6j1ddVJk4J4Ee4GzL*VSrx{`)=4~ca;}wDF+;0|M&(5G`_^7dT;k{)^&>1)fT_Z
z2R3w}F=1f1n;brhhHr4atbKfJbeK>Sa7XzO2l(aM^170&V+#C&kks31?Z`GZw=yfs
z;UXaD9DKNIo+-yX6F8?Pi}SPU$d_}2CaX;&k9goI3{C-um346n<}xesXZ*6-TE-NC
zNDH|)qTvIF2dBoEW=ZK5=|FpIMtQaUcG4U5hQnPs1rGA-3+LN1!laWPU<_U0?&^m(
zF>up^`()QYyw^!><o8F0P`GqO(o2XP77nX79SV#x)V1N;m|DFKSOT6RBY*26U^FTm
z(KIs*Q_Ps)b)b@f)Eh|}%}gK<Ppk%$OO|0>N3MrnxRO!fW?Zb7-lq@2<ikL-yHx1T
zyRsGnFW!t6YqU|%*L~6VLB-$<%k5p>XdIj@V2R*Vha)pZz`4xGAmU0|bJv0%OB{K0
zazl{m&jn(q#vjpNOYC+?7C^YT1qjz83FOH1LndlrJsw6UD^pVNaTDs4o0I$TG<N3X
z?U!a@u+Pj4G?9&$S7bjYE>%q=V0$%sWzMft;%K`p&V)SZ6X`nfnF47$y`*!$ZAB!V
z_<Q|%MP^g@F6PRGE(G&Eqim%X5!gG}o#X|*vVOchEPgV-*2gz8(u6(Z;9*2`r3Aho
zunL!LjhheX_&FJPfVH-bMIUUW+L+GBj&U)44&l?{pXQOc=Vf*gwUf(X==MD=BiQF0
zy?f?RC+%c(*gV%jh-?AY?%ou(PA&T!89vU_fIeAFdkDl}TVCByANy7&IIaV@>DRR}
zJr8B?P|mFY%OmGoFJt3HePt#3T`&VJpZ%CzX2e}lc#gG+qpm=~#erRrG_K#Rh=fky
zvzU$0h!Y%B7dL;}q-WxnUH;2^BejYDO-F7Ocx%+UIdadCg#Ikgv`IQ|9{Zzh>Gp6~
zS8B4LpR|X^+KGdqgk(e4=j5jal87m(#sFgKIdSue`mjU33WKecovQ6*bqpq`5_q7#
z;xM4u8L$f!1&CgS6r*wr{WprkCk{>5g5CYL#;fS*=(e712x9w+8YpO}O3=YY+zoF|
z_mSIF3?7)NrTW?Yu*1^V4?D{}NcE2gS=$soOS*8vr-o%7DntdMVR}ERdWM!VQXm1$
zaec7E9bb~*^D`|T<n~-t2nK_%+i+2mk#SU;+6Wy~N~~H;IcN0$7UJ7}Qghn4cJCgW
zY2a~mT-+&;<OH=U3*GF=HbtJ2V%PJcDAc>4rrwC3ErEIJ;3iP?^Y-%UntjpK)H>`2
zqt;i$L?;pPI<-X6(`KykwQDsG<s%HM&l=T8R!nv8fIznmoXbm|UnMYA2r4Rr9i$TG
ztPAB_wY>GdlqItBEj7XPRLE6-Jm5@xcxJ>Mg|eNx4md&h;s*dHijBbCTbspxtW*1K
zweuI}{YhYce#yQW=y@J#(;Xs|1Jo+hy5V>vm!DNVyo0F>hG|z;mpcuSsz=-=Q?wkh
zW(Z(s<xdPjlk6(XMoXr5s@zTd_T_9Tk#WjiDEg&<=W=z7OP7~DDkj7>*Ve=jaV*_N
z;4pV~j-U-plydTw_MHDTz7tQz6#Bcd^5kPz3O~(fS!8Q&96{7wOxuQ<SaRjwtE<nJ
zs2TlDzUd8(4YjYiqDeMqGSoTA<UFHDNN!=VM^0YY#-Naqn9<hsR%0V$ZT9gslAn-U
z`Mv>`3-2JT13&oOu=)DL*0>T>RBDs)QPgqedLH8`d`d=^HIfczwl`_c8qo(GjOl#@
zK-b#Ve<dq7_@SQ(1-Gs80e^`CQ{j4M7%7H(GFXEnY1X$^GHo=Cv?HRQXi)E29>-B5
z*78UjtAC$x_rC2^yGtF2TxE3%l$G63V};bB!^zAQ3UF!1dOH;h`JrInuOapI4XqhW
zXZ{SMSJzwVx2B?j`W*+_=`ef1LZ;<)9};E^ESTKkG3-%VTN`w2uh!6vN0xbkHH0{z
z?Wre+$M+;(_a_tu0_>eCeW>lQ+-$~x_kAlcd!e-F?JF)mMkxk4=-uQfm{H*pLMCiV
zT<o@nvYQ(#kCKkhxFJvD>oS;Ysp~v$yR91@t(ZN;g4_O;nd0{fhKVnux=AlpihJ84
zD5wKuX&CwFZ<*Froug2}A3SGj*Qh_HhlY&VuK6MIRiyk9LPkb3(WH0jX3C%k8Nt(W
zLO$D{J3Buinl9dVfB)`#62qelaLGQwt`3JET_NRRh+-uVotu?}CPe~Ce=2Xu@7~26
z$1$?DGd^VEjuW<?U;epR+#5CmD70i%rI!_lK1|ctu61am(aO$7;L=Xa_~8(K_&7T=
z*<1rsI$j04>=yO?4mDZyb4~{FfWztW1wgj}{7GGaC%-4yi63I|iG+4-YppGbCb-S#
zAXfNchM7sgLC<VbzOvn$_HGwh_eYLkGWt;QVw;}Q-<u5gw%DRIB;N<MHR4YAvz{pX
z8o0i!dQ44SRa=|Dre)1>C!(kk`EA%{wqhkJXLO@??L=0<Y|J}H`vk^{cx-4em?X8e
zwkPbn`#}&K;IZVOsegc^Aa(KaXYr0zTC*4Gv#q$Of%E};k$!)mA8uM)gj~a|EIlUf
z$ADFlKkCiL^f!}{U?FU!I1^uOOxxlS3YV1*oUri-$)Y3V5^NZae?eoN%sjuv(_1Dm
z;HCGwD*B4{ebOTg8CdV$-9!1e=-9U|-4HRtyB^wYBLKMM3UrBWOYMNuuh=~=f56(4
zJU_`T%m-j-3%~Bg%%qHOxqE@#5oH{y)@4)eW@ORY6Jk+s!qekxxSaT1XKk3KODuys
z>>s4RU3^LvF6g~Flyc$A&tW5Ipw3v-N3ZB;#U0~#TVuLr>|GndwNC_<xDJy7&ESv0
zlEur?;)LRP<GoAHKce~Gx4jQ}%*r3E&vk5MyIrHr6t>CW^O4Y*1=|m3@j>oEXalx2
z|5_ROin?{C<w!?cDfU8&x8_)Q<ZCOrrJM2#8(y*koJ+&g$4P#t7{Kr^%F6Wx^cY|m
zY%|hzFS#BLGMcDb9y{#_RmHl!5yY;Thz-{kCDm7+u(8C1=A<4e8~APBS)-Oa4*5O<
z6C5-B;oUkg$CaxfK*rUGb7Z=4lLYVu0Azh4rC_*gEFA;AOHCQ^jq6P5r%mYJ7i6`y
zb;%O0%W>nhovIANwip|oa96}&lMtrbWcZi2)0(&&71Z#!XNDzXtH0-i6ZpJR&gH>i
zH+1kJ6Yl5RudQGEk^^3w;JHz}Ofnt&9@;#vSt(Ftd~vL9*LY75T?ph)Vgdc>x7GoW
ze-&ibSPp-E!olFDd;fM))9H6(fv+WjPkE!d&QH2br>Sb|y!HuZD~?F5ZjyL;ML7kW
ztp#$V1Z)h%;RihnwLv{ppD#nEO`I0#?yRhIt+~SNJ$(&q4XHox?jld{6s+XMF6ZpU
zi{HaGuSRY$_4W<GCj*O91MepeEIEt#h!!{<C2aRD2o>3Jw7_8FFj#EJh!)i2rCiwt
zH&glp83hsszLB}Mm=O8TG>OqE<aFdpvZAnpDs&FphNjlw6CJX<cfKZkZFeVl60g#P
zt6aj6eY!n-&ImcGstQd!?^#g@I53ff7xrYxFJx-6pJFS_+iDpdgl2*f4FS-R;8cG!
zGk08KVhn0eFO`bQ<nDJ7FnH3c?Ale&6Y1fpm(X?!tFoH(`fok5++KH2P9pzZB(-{P
zrP^1fE63%~Q)fo{nomqp#FJh;{@T6wgQ~ziqD+~HF3ET-mnujt7`;0!l&=qdHT4P*
z<*0eg+a8u_iHlx-I_^_!jWR7Q4eLM>X3?CqN-|T}Xx3!64%&E+|8+lqk>oih%(^$M
zkG;1SX!AsbVE`7+%Cvmoty!azJxm@wZp+Lhbn2uUcI7=juq7X9zp}Ya78|EqZu)w^
z`@!hC8g8quVkYn+$i6bQ(sA*yTDD!qa(iW`Z5IFh8v5GDPrq20y<9;KS^X(u5cp@H
zX}k}a8`2t=n&B67>8+9t5@jQNI$Z4PJnB~VB=N~cj!t?oN2$4=L-(zGjR6a^romYA
z895nDeCh&ylm(qfJ>q?2)8Q5+iQZkwR)6#@?)!|r5Kq$t_aj$79|RVn9Io`^9V>T%
zJo-HUcN{#kZQ7jo{P6h55{pD00R768+sgvjF~wnX`z{aT>x$m~1Tg`d$ah!|z#8pg
z5jeZXUK3N6_n0dRK75gKFWg;BlB{QUl}@Nme|UFy`>Qh(cG4qpc6N@6(^$Z7c=p?`
z)%5qvy`^Crj6R?GRwC$x4;vL29`oc)Ra?o-lvr9@7;;Xqm1Q&2iFfp`0C=VaEM~5G
z@n<%JZ+co`N=UxY4yw~G1XbknXtJpBqNctcIWTEj4znjD-PNzQ$jOd7McH*J$<nFq
z#HGr4@$5_n4!Nm=zsAO|Gu}Sym;@VZCk$BS<v*U>@qkL8oM(`k@-Zbb_`i#av~mot
zT)7hZ8xXD#6Uf%qs+)Dl^GD=BL7dD|eWqA)4QJ=)GrI5IJ=i0DLc>#j!N$W8u?OoK
zn2Whb)HW&HY*wQEEv|HmE^%OeZDmquN&zvCucRCv@4{_smltSowCBcCj~&9LV9?>D
zJYwD5zu`vQaUqzCpy^vZE|XrSfx0HT&t#>f8c{wlm8PhlKZ^mYJ0jwka?LU&Wxjvo
zI@vASC-ND(%*-sngXF!U8mx!ilhqVt`D&8d)`f(HMaAn_lEkn(Sssp#aAGR1WJxa#
zC09*dtAuf@i`9%O0UA~JQwC_`J{m$Qb=X=KRjK?g)-sbBpYYa9rH7lG&kijv#gbJ0
zhls~Olqq7aEGUGNs&9eTmt1Rxp5c>HX6<?y5KFyECo5|ezwf%$31W@%4Jv#(H|uj9
zeVbInQBW_li^IK(JfyvJ=Sd7>;=uPA(Z`{dLvJ+laFnDEpz`@N4F{cj>81IH8wlOH
znmR^F=hcy4pW9yho%;rV2p-fIs5)}}?AvC@Q;0qbR@ZC9b@G#f$ESw8;r%eSvMfO%
zfeG#Legob*LyI#U+~;>`zGi_o8x17{eHvfm?5Sktsw2lth9Wp?Je%NPU5@<dPE0HA
zVx((e<)BmXd(OTBsGl5SWMq6LD5z7trf;w%@=Z(h_at3IEkCG?a*a`8i;a;#jy!14
z8Tl%y!@gz~uRJzBI;qheb-|GWaUWHuRh1td6CG7$(V7M{S#Mtty|~NlVK$?pqDl&{
z!`E>$2QYN`kd@KJ({sYMTx&z6%%DJlgziE5N98yq{TSltRI1=HS5*QRfMGMMyo<~o
zWhIx7q}S0i*3;CMc(eX(zk6Q+?sKMOl0b6ms<HP(T5)GDLem2++Zy8XkanAvU8&Ey
zKh;v;ZWM#WGd;1u-fr}CZDtwbjp5<!4i5>P(9m#CPK;9HEQ~%%Tq<Du1NFTBo38I*
z2nGTVc(pYgq#)&Uo)Hj)mPEE60v;PlmopK!y1YqRx@5Y>m**ZMIqjws_OE;g?ji%v
zP4o4KF(|)ODQqhRBH&mWGaMryl!j;yh@Q(>j_Qbu`xeR#&O4YR<%$Rk^+$zLGkWhn
zpw^p=h1Or5pSK03N%b0{qT<4v-u)Qp=#UE{Ag#l-D8xXMLqm4qySues(A54iOUq2z
z@?GrO)>e+6rvt@xIoZ{{JsH{4|3%zeheZ{=ZKD>TA}t`TBPFSHqcDKd-Jx_d(v6D1
z&?3zc0@BUU-H3EEba!|2E%o<)?>W~w@43!({yF>NADGRaz1CiPt@Yf`ecum@TSYU<
zF{EXy-egVmMEKNHQNO97QM7%AbLl{CTCmWoS1iZJ*LOoanBcyc$2m3(1{?R7#{tNY
zl(l89Ufq00(ujNK94u<OeA4tKlNZdtIF07T-Vg|Dhs{-tja_eUi;9R;>ud*wQ1bG4
zHboHYdKz3%)t{YVJR*B_ep<v6EG`PoAdn3q=giM9tNK|18;H=D11vfL_qpG~ADMba
zx!+$mxy6xgOoU2FLV<}XO$tU-cR{}S6?H6+OPgpX)y{;M{61>1v~(Dt%oRsgwkICw
zwR5XsccJ#X4cj0-JoL}d6>yn<YuPJAK-YV^d!+)XN$QiQ50vzrU4}!p>Mu^ur#yB<
zB^Izf_xrW3&>wl4o-Js3PQd`%?7)Tqz>#iO-8fk2&1y+r@43LHFR&4|7hQ`p<F=51
zBjmL)B^TO8k)53l4_Fs69LpRZUtegS=W|(Ob$VhRxgW>)5Co7gTs)FH+AKP&bWw6g
z4}U9i`TQa`zWCZU97)45f~)WenvaaJI2@P4oJ)^fAgp39;<e0@_N2g!_`OJ*I&EH*
zVr@e!6sY>u83*>g(?uJi7}xb6_;>FCV-WXp^qLi-+@azUtf3lvn+7(X=OL=8ItNGV
z5{Vl9F1*25!8Uaj>r=fmdS`(8tR`@<&1fThJs<8Q>|7vEZ<%T1e2~UH-sDptd~FNx
z&27(FN{IfQ5b)l7h0KMs3R-a?dJ|>OXM+QGghMIeWITqmU(E>UWRoJ|W8B~OUVjz^
z8))%7m$M?`MCY}vB{@O;B2A_5-?{TOdO5__7H_S(;{eKX&Hiq9XOim~2_&1L!2Jp}
zx^BJ!UtQVpeE8@Asqk4oo`LvvkqcvJyVdBUrmBxyzO5%y%=m$%>+AK-JIKWrBosJx
z>Ph`fq0@B_X#P-6A1CZ`@!S|a07uu$sTCR88zZblkH2iZ<i6k2ZndC)J-AWqFfEAL
zg8$LOY6^VM@6Dx@aSJMtK?ZR2$(Ws-bgZBX{o|<UsQR;cGU7ZK?+3go0C0KU7<JC9
zU%sE5#RL8yBp^o0i_QT^FJMbAV=&ItUL?Eex!qs|qHH1Cr%p*8qEI&{@NO*#8jX|y
z?2i<yty|cptMfNa3P^i7gB}$+n_~}bbzMKrs=ux|<vQJ+_BKQYCkR+iPaU`jB+6#Y
zl%0iQ<%~Lb>TYl6Z&OkV2+d42H@9~Cw6C~0S8X_y@7dfUFSB}E@p0sqM@8t_YlfRC
zVZ+g)-B4lY!S{W^B-|f<muT=M9PcLA&Ujt8Y_#H**GpLLB-UP>YzaH}=361St{;=*
zm(B03fCUFcNDuB&be-2Ybc!d-+mC*IA#Jwdd44@$?+q6Zq2#tb<jEP<RM9B93Z3!P
zJir=!GMBbO<+UCgo#e93iR~92jW_~*$YzsyGUIZUWuiv{vJiU&>C1*D+hf-k5oSm}
zfdqi`0A%+Jq?QDZx;p>dTcd}b=k$5weq%MGn!xd9kj8<Jh=R532pv`JAd&h@E^GCL
z4dO!BUU7Px@70B4d2kl5^RHhZoIGZv5_UYj#!w3)6})aKYGxI_IVF&*FL7@j1WGs>
zUbBUBPU%2@iV3fk10SXIZt_>=+72qM>3W`gq)wmU0G1YVc3PS`5jq_w+tFf*B50ql
zyI3ZGj90J7$;s`!7&PuptOgOC<@BkYt~C)}?b*4MoWRjM$OuV7X<B`RJ#Uu8GPD&H
zEA}HzjC*wij3=R4%I2k-a;;Q)7Yn0Z_c)^MDw`|*EZ(0c@H)BO`y5zH%-n-o-wYgQ
z1a)dH5;uN8?kfjeai(=OEj7N<BmQ|FV0eSM_3XVJrJRuMUOAOd+ee#qtoqvv2mbIi
z`E%9>_e65K&Dlsls$59{v+U`Pv+TC13VhmBut#su*SS%UXqSyIGrAf_=t=!I>!6@A
zzGlxut9M>~{76vbHsZ+I{{7E{#gwHr=5-UrKx^9}P=H5!N}KSZ*u*Uo`=hPtB}Ye@
z;Ao2XdelT$WlkH(wHP3OYmlXF%oTTd-Z||h`4c}`er&AojTt2D8{9s6vif@A_Dj1T
z_+TE?b;o(X^1eXDLYj6k4YBJiz<*I6{GtCGML*lQv@aEH$7AU)oo%VA`!0=H$MfdU
zWpD>!XQN}4;GJr)f-%!5_%ix=WXE{uhmW<|`QQ0@`Q0$w0NuIYG#%uSI$A4>>Ke~a
zblGKlWX(&*f9&M0guJHz)?o-HG>S6PA0ecvuiQTH-7j$<sL-St_X-hvSf6i18RXi%
zCSF73CqYX2B<Ca2M(}!r5>`^Xkr1y<O15!RltNCCfF&-v!rcp9+}s=(8-rO5vk(Pp
zSoWk<<KDlgUv&7;WV^83NjXdNdYa$6(wY|-?V<*3YiDR7#*b2^l5AlxL*Isq!~3P0
zM`ANs0Ease(LUq~`@P6S1n}A(RyPxq(e!j*sg;TCniLknATl)t9np7!#F4jdjqWYO
z;htLMad3y{)^*q3MC4n5kho6k^jn@wd4uD#Vs+rikXE-0x?pwcU|r@nZ04E^U2KF5
zR5d3rE9(_2cg9oJlWc5<--ofrNSBKd=9}wWlU}VpdA)L{UKZ`a8~o7TdhIHJ;JEEf
z6Vu8}*1D<bSXoUZd81=tV`1{U9==uh@Ij*Wp|g8kWvZJ%1)eMauNeCUdxOrlVplR$
z6q<9(m{jW4&nd%srpRO3l{clFrH4D?wR&e)XK8rNVjSjJgX~L+Rh^eiUNjg#>ZD^6
z4DZo~uMIr*h6kY=_;oT9Z4joD5f9%C1B#{LD=lkiRsTB>aXEHVQ1}m<=N06ohLGOA
zT6p#3(6@)+o7BlL%j8ds>h3zR!w0X*(#W_Eb!PhHooFn$I61XD%(1YJM%`a(TD2!R
zqkA{LuNdh3QCYdhHk!92K3THCBJ8N*x7M~4(q~>eGU~LuH^CKPz7p-BqtiW1c_x!j
zf9uu{ev`N{%s0NRDaaT?@n#;7OIEQ9OFt5h;qzwELPZp)YHJl)Z*QYWVq3+~-0PlF
z=S~D^*j-;PoJ_`B*5sF;h;=OJZNI40*40#v3mX|9`4pS-eQs@SX=BA^%l_~U3(oEK
z?ngX70d-YBRqlX+OvV^8uB=LCz)F+yGIo^~1MoyQe&x(Zj@V@*co<i*6vzPP1Vf;a
zi(vc7<Vq$~DP|<Dqxf{o!(TtKT7g1)?tBpMEbX1w&{FD_Hjavl+usdn{~{uS2b<h>
zPPj+T=3=Chrpy3{uY^lWw8%C04Ug#`jo#nC<6}G`A9Lw&9r)pE6Vm%ITZl2!yq<cb
zu9VO<tq${ealp(0Goy>0r0?C<mtc#Lo4P$UmB5E8x3{ib#NR>_v11zk+}SD@CQrHx
zS|E=$QD780lr&HEL3DZfvduv~E!VK}YJTUa9s*^^mT0pMz_>xL*{7_mHa;mY*afd9
zQBd=(a~85!<|PG5Ngbw=a#Cg!6;3mrAXwt%MTz<a|LX1u5O&d~#t$VIY-{iBH7^1H
zBc+i2?q%pr?i*1*pRc|Ft@9~gzSx-%Oq_gw3dxe@a%jsf{{DSIVgcr((<#=mqO<)X
zR-1Bbv1PfC*D^#r6;*5Jr<(CRMabjalw<s|X0qpQh^(Y98J!4A$akrftrkHFLukZ!
zu29ZuoKwwcpHr&EARwJQg8n6~!uZk14JNPlRUWb+62`S>rh0f^>z5~&crO!vV8eir
zE^aPS<6ddUYa~|(aOF%3)u|TmS6qH-cpcap@67iZu01tr+?|jVA7OuK8lO>qvOAaR
zzY01+C`s7qS_HyZ=v08x2LRBg=xDhQAB6DyX$Bf*ak+7NH@kx7=S3)!gl*>Z16ymH
zPFS%0_-zkkP<AUe<AsU8xICL$zV#K}y|^C8<OG?b1U`e~ajJSwgr;9Tz7+KV5tAYZ
zXKNCVZ|4RntE6muG>u>Ll5HgjHZx>frKpSFh12;-h$qTO+B!MmJiwZ&G-&6He#EWp
zMRz7ZrMA46CB8I)N+TjOM+49N)-CItPu^l2qufl%MSP`|(`t|de5r{<+r_|?ts5>x
zZn=6?jwQa%5_9HcPtV|d>l{o+donwRq05*65F?yy%v7lp-#ty4%(ax0E69wA0ng9l
z3NUE3>n_d%qn3>!46KYEi$!$f0r(Gng!8W7qyf~k;m3Or$=K9g#-Aw_46=ZkPK|ri
z*awpB)}>eN`0`30)UIoK4oSn;utR=<Lm_)jtta%4WhQP;uLeH$%;^=YcaeFa8U(D(
z%<}VrWq|E6tP;dOFIX4=-<K^ms1*XzJSzvmF+Iys3I*JRnfAJnI(R3^EVbA3ft$1-
zd?ePhe-x`pRUKun=q2M9WCj%4kHtklXIqvab{faoAivdKa76)r&Y%?aaIB0BZL>;b
zQe^+g)z?zPwc<SjI-4siBmz;LgSeP?i|+UNT)_-oTwYHfT#EsFsV-V2(J7xd{VEJJ
z1SYs))zyBo85S4F^fF&Kpyr<5xsB+~&&x7nd?t7#B1}x>C7k@)d9^|JCmHvb*H7<<
z!s%HU%+1W6L0Cd9xMJfe5*BSMwOMem9~i4{Oq5fFwoAQ}6%U?*II41Q=UP)EtP(>v
z2407%W1zIDqV;~S%d`J|w10*;IT4;haf;A*53fYpFNGKIw=K(Ge~}ZNIv9-X5q93>
zGRemVsUfT{6Y|ol_+HY(;iP1waMJ_U4OV;U_XK#H99*FP{h=xSrf@*g=jY?i;>;7&
z&yB()fB}*)_$*94chKDbS4W3Ge0^gh2G%m&_&Js(q*edy9F2oxh&_B_#mFRwGyC13
zvE_8(cFJeoPx&cnzCO)!@)(0_B+XS02Zx7%Sku_kGu=GM{!FN@GVQD{*?Wl3m)>Tz
z??Y@Xn4ZO=8A*nvxGi)?!mP2GQb=oGDP_?>^ozKnM`aFd9Ut%NZ&KI)2>9FTS+0jX
z$D<Ll2M<F^>>L*{2N7B;u~bXT7QF-|HjQ(%xb=@wy_ThQad-t>dQ(h^`dMTB{r=5!
zr>Ey)P;p}uBRmCJ)sgr!Ot+&oL~P>n`mzw1iI66;ApN1Mshz8s1@s*br?a<_C?3<@
zm!IXwJ`~ZUwKAmH&M#*9;cTw#S1i!US_9N8FRMr+&j;<SSv*8BN12(K8BmDe0U>95
zegzX;0v``E6B3$pD=|Ga%FFVy?rRewJBB_qyfNgr-<>V|&`c*6YhI*j2dd)j?^|+d
zX_&n@;Lv;eG{x8VJgQULK9pDAhLXr4D%!44T03_{(3$1tl8q>|8v;osyi)qt6OI;*
zMYYB6GXvFpR2@>185FlUx>_#^;^y^(_ru5LFfXfI0)F~gbUsuLV9WdMDC4n@flbN>
z>yt-xr^|ByZ$(N$_iymuol;IalS1|_nF<DNvCPXQi;IH~_MksUH_9xhc|Pn%(44Rs
z6{*LPtnq5Zl3Qa$zVBP}nyUCPACV<R<qT-uk<roH<3&@(rTG0x6P`&gKmNWHlLCBj
zBeB+eiV3W$dKrR3r;{Gu1LE%3^4;hoVKdH{h{J4+F4~k3?+oAb^SpW+Q2vD$ndK2k
z=G*^Xz1sLlIPwv9hlUTIIxY6M0Lll)<EjdBP&*H8BLNmX8txng;eT%cSZtv`k?QbY
zI`qecopmhIMnr7PJm~yx0leC2s6!dgY?SdU^*l9|{q~(&yUGmPVkG#XR*conu$p<5
zoLpx;6-OloDH=9^^@QaR&P(L9sy>-~OvAy+nSWyzEKkp&#kA#h#*OIWFS}`+gE<S-
z=@wXM)y=JNT3tN_3QCgE5l;3iCH}x;*2yDglKfPi;b8BCC0+fw$8s4j5@oGA50uBR
zN*@m4{Jmjqy-fs??3JHZ>gctKl79PwQ#fx4bNnI+M?bs#uVquFbf8el|0<rh4jV&D
zkahFn?r^QGYxcw<3QY5;x;+}!pIMLR@vh4_y#I&9(KJUX`e4A~7XycGbGr?<!jAWR
z+8NGVd2fxbLor0>_R#S8FD$0DpW^!)vemTQ(g~WJ_UWF}Sr~nREn&P9#CH$uqVh+-
zc&GNMlT%xHEz^@lpGw@5+8Q=i`Zi?kpdh|cr;&@E+GC9Th_Wo!WMRI?+Dq|U{I{`B
zEfN#aTBR$dX;l_wTtZrb8Y0?2@ERE+T>|bAA@W9G33iOhP&PA^Xtpt0AedRy7MIf7
zlb)Wh^jPNu8UkL}9)G#sglFv+Q3`FHUP``C(NAXMR9^6;>e^M|(adnVp#^rAsWWM_
zlxNj3tes+q?*$BOU8fo+gj}Sit!cL1kN!oD9vXWy8pXQ%8!Y(p#F#wyRAj~-Z~OhW
zJkNeQEXS0zLl)JiF4)sNBSjsY!?;mn67VDY0V~c_B|%mUCqtUFwNvfGq09(XBnhF^
zP5-A<71sqUhKV18TUzD5aOXRXaMS_eQ7Pe>OQ!87{>eR$`ph`8F>=}7&jhKiq0%8U
z-h6;51PIlm;t^`8!H1QmAF@=>tY!7}Bu-9!v+p=;970F~v%*0&-pP(b&0s(p_`PV!
zb)hHAm!tY3cvWs_IQ9{Go@A@B9ULSgTd=9t2%qFCFtE!d<-TBk1}T!J<hT5Zj4n^f
zPcJU~gkmuMwR@iZyCKswLDS>7&(nl;XZ5zXQAh}98qEqe6$c^+N*(dm6`N{lb4f=}
zA<=<0IW4))Dx)WH8t)3dZD+hE_rb05$2qMj=4KJUDPo01Q_eAbPK=Aj&|*#Y*$HBN
z8pE!>G+n@WCgX<)?CY4tm3P8834Qu&CEB($fpvf@cHHXxc7bWGq+o55*$mL3=%0t4
z9EZv?k{z%UFi6>sJ2K!(qKCw~Z7*(HSUmW%53|n+ZfqPuw8Sn^2sxx@r87^hex)vr
z$ZL20=EUbMn`4@J!F|`{36`svsNg^_OHlKiGx|Ljbo7%ad?NJtDul%N3SEVGTx44p
zOBtI#2Wurli8~CLxGee>%_M#FXM9V=VoCb%`n^O1{w$^x^;IJ#UP_d~?_9jQ6Bi#H
zUt)75M--m5bNZmms_VzQLBs~xah{%*lIFNmmkzN|`r`ie0-bRSm1xy%SkA|z`@4r&
zn1LkZxTIR&Tzug*cOmX~Q$u&AzQInNZVJ`qW~`x$OH|W&7e883CqlQ+P@SyO40eX%
zgRm3qJ?zye=S?|pSwZK?%c%6K+IlYq-3U(8E_X`3*U+hpkg#8y*jHzw;sbMIp9y>*
zW*a9|Tqb>EE=xWnZ@EEFRSi8&oez2#wMXi9uh2nU!I4In>?tH?cs#`vs8Uoo84vmL
zQ2KRWG>n<~@>GX&O>+w@6gYt5QQ06Go2O#>S@Lvaa^jn3GMt=5K>kzXEvghk35=;#
z#Lyg;(zffa9c5X7l<8_wp;lZeELthiX>MgC0NDDKJa(`PH+e5_r0~Y*!{;{{f=-J+
za>{Y!o_^!!wL`niW#2<j$md~aW_<OT4i^_Mn(hgQk@))FbD2_83v^iL#{=wr?E5DV
z;6rASuC>1K%P$6sy_=(%afDbZXKNWXcbolx3ICKBkG(5%L`WJ5*&B0Y3GKD)S=f_n
zzf#cBpbz7PReb5P`-om!#&eRJoz~bol?1;O)ejHZ88C~)DmBW$wwl9)cKO!&Nvm=w
z6B{NpN`d}*tz#Ca9yPpNa}*>7d3nl5>YmUYawD*CtNa}ey#;Or=SL3onwPsLG0iEX
z8!xS}<T32FpY&|r1iA<qj^{S4#$-3$2?JBq+TA>hLJd-*z*c>0>(SDmmC4gG1AMab
zQcBMc8hTJ^X>}nkmdJ7Chdz@X8j$evop42sKE4J&lh;rEI`imToT+Y=ryRC;XD_2e
z)`{4u9UF8W_?0`KIUO8gvab$74WCCTDo8<XF`}2#M}ia!23JeXmy1+W4K<BXyj3p<
z9jsc*=+`&Nr{YMnEe(wVASrENd-@&4A82&U=C-1P5PEY3G)nfRpS&CUpR}Nc=Qquj
zIc`mwmKvpD=UcautcllJw};M@CCRq7PDs#)l_YtlZ53@@K9&X9NBUaa)_|XEe`c8?
zG?5PzB3uZAQceF%CRRi{LCYhOFx$hI=9IG|SL&Hek2Xib;p^D}O1<RrLpOOInX;*m
z0}Lg_fKP!B>tnscq922q(C>~^nED!0N_h$eOE71EIT|DJ@HQ@AD`=|N>55-A^dlD>
z^GnrV<^n?aEr$dapqAk#kbAoO0Nctevs{z8`{<}{s_K;!Q?p4=I4=*!=x7HydAxvt
zKb-FIxu1ltrihMMrJU)L!Mm;O^ey^aYs!*hI(Z4mz=Uviygjj$kAXXL`z~GQ{un2f
zt{3ML(B%Ew*8K%MmLYnuljU?xpp|;@V0|P|V><Q5x&GS|+N1ly>%B~mLRQ_@Vnzbm
z7_uh&`&+}|)NB~sy`OyJ*m8ykl=V6mX_>g(#&o2}69i+AFp<4n+`}iNY$TCj*?z54
zfCgM%v1oAp+n6;#ev~UCyQ1(Zvkx5qc$<>PO!BQXYcf>vdu+ZUJ$!X2F~Or<<|SE>
z_U(EmZms22dj*A~$R)HFE8@L+mO~pT%j3N*FWfMcp+MzEujc|?>?2nqM1tddCdyPm
zcs%fh=Sk9Y6IOXHPOjk}38W3ohQBI&hyr~&mr6N?X(?{P;l<xWk0`hdx`O;bm|R>b
zB)Eo)XOuy{!S8<lwNg%<nO4j|M#-a9Y$-;j?bN&em_n%8kYg7u1xe>*q5Kdc$#Z$p
z&~NAAZJ^HNXl3-qK*y(RIu=EJwwNEL6y*awwn1e62_3CTqijx}4&7;}f8{t|!n`p$
zy_hg=$px8+r|E>7-fVA;YRgWa*5#ReWD2g*Mqnd543U~QlyEo}pU%ZJW3(s3{?|L<
z*YkjrD>9dcdE1&FKzVgRnDy2Pw+)9ZWOX(Vd9_&rd5jNce9!gmoXN4<4L5U*?}-$>
zDX2X)_{{o}Bsjq{@zx}5(xao(4uV_xE8Tc_S7p|mKz*i<rwQb>mu|G)$<391H)i}=
zes9nRus*Rg=yMV12=Mt1>lbTYe=t6m`XdV_c}2?yTJ!-p3jF8z|D;g;Zwb$TD|r5h
zeLmgD*G~Tu_y*(6#QK!qt&h~{Zx_MLIWl<jUM%gl{goVgP5<pbO4--Z-%<zIa3=2w
z3;|J<aiMO%hqR;7M#ksrTC_;?z9V6huFSjtBwB=q<p4(#GQa!7f?cy96HUSqt^CNK
zaoSh%?&^8cBU&OL+x;u2x~;{q9<0iU*E;s@kIX41($f5Z@JjwdtLB#}Eo2?<y-4kC
z`#m{ygpAee|LCHsz9{C+9b8I6NSBry8o9|o<>#PGx%4!=gTC`^XH@@$a`3e^d`NW?
zdL4aj*azz(ngsp!r=2YG?epu>X>B3x6q|;A<6!fM;%&|5&};ofDol=R5@EO1Qub`l
zwB>f61853U8urPZzXGdIRr1XaaZU^y7fsm`qBTv15as)?)%2fhAv?6w*tLyv97f`C
z$m=IqJ>84>x-dyFUaMUi_7!Kx!Jgl`rGs_i8)Y4K|505Cx}FI#bu$Sk?f*Q(-}t_3
zAcma@fMsQApC`VDmZMa&i#8mPNMeJ<z45Lj3*e2$7ccAQ-+LT9#*ui2_$$hLmC1K&
zs)xNvQ$`ihVXTB;LPrFv=jJ4-e?Gc)L|rS-l?Z9#^{P()GE@G*X7*{qLtGuv(Zm+3
zVJ_JI-Wacr`Znm3iY9(VBC`|^`!FH3I)9Xcv15dp>peJIC(YUtQ_vJP6xw2JXLx+<
zUN<W_x&lKZ&;RrlYREyV+}*9pXv|jwdC|QdVay4%aV+jkj}H_B`dzTV5Z&HnVOZC_
ztrlrrk`Z{QaPqLh;x3f>aR6Z9<O@ty+)rYK!5s16eOrH_u0L9HZBC?gCeGd|H_fW3
zKo{GyKLnoF)KMsYz<>7|z4ev3+zuDsk}3CZ{EHAr=IGytt-)Np=t6};wk?S^U{)lE
zR?_u(87PK@6f#nVf~ZM`@ed_I-)>AX_R=+yHnKxTymt7@88+DUg5&<}_DD8oKHU=P
z*N~)TLZ+oXH6vQwen>rx3|03_jy8p4y0KZiW;D{!j2V<03Y#pujS&rKRTZwalxkz8
zMJP+Q>Yj1yU9>x?jj(rqkL&tPe|DBH$a8QNsy~s({QDh$8ip6>y_iCCf+k*{=(1kd
zV7lC^9htI~CCu=!Mr=S0a#8=yG37vnuM1B+h<ssXr+03bfw6M|dwbNBV|0T_TU&c4
zj-&FW@XeyX!B%wV)@FKljEaV?=j!Zrrxo!3F0`I%s=ry5(*7{&+rFY_JsG?UhmVb^
ze|~NHay2|$sTj%T|7&#AX7<M$fI1b7CIo~6t=U?p^zG1IZp6!(XMb<>&rlGL<SXqr
zr%9Q{wvGfb@8IrR7!D)qYrF;TcmMDVH&+)5p^7BSvgGID-FhX9?K^dq)+b{EiPe4?
zNTh}NK5yxA)2kDzmwi*s2Yj?I`V{P2cVLwX2|72|cfa>00E1C1tOsi|^<FAQX|fp<
zuk@jsnwp-Tp32HY-##=0ds`-BJHJ-Q?7#bY`iRZd>Z@f4yqPAY08_CRs@Ok+e3XWY
z8Q0ePp?Dt^pTiIZFdU3~@luk&#Qt}8hmh;(kJNBvYU<#Tpfh&#pi@IbnXr+qi?TEh
z0?Te}TD_+89=U2xB%G9V-9ghzRP;HXMjjDmXte#YrMPRAW?pt??yPMEe$irfz(45m
zmI!7@&yg)`Yi%|vLy-w5z>JFw)FGda)2|(7>wo^^?bM{{Pyu5HB*i>oxp8*8eVy?;
z;gNl7GY2T=L9C{>+*>mlk2CEO?oSD1DznMWBGqE>uTAUg*>^8axVSm-fKL`F_lJ~%
zf~2=hv?%~c7>WS+Wba#=fe)$T7w2aP>9&-nrc^&1O(vrBvB~(&n6X6Qb!8Z5c}Vs0
z*AMQY(cw}G-|CDNcvz~=<m8Z~k*cw{$YsYdM#mhCRywX}Y0vTc%nxOFynnnV4Eq)x
zT`tle5u50_Z3)3U+Mej`?iQq@b6YLMt3+w+(S<HlE$+Keu&8Azo0*x3`eNth=I-zB
zOG`<qWGMp|nXsPR*|jyJm#ZoaODe#}^6vrcCK3u)9=MKGTQhW`G*s+sl0^*IJk(;^
zOzg7l*OR2!GF;H=ai^V15UhBFW|~5sQrlaz)=r%DMM*r496UVsYj<%@sCd+^O-4rw
z^>_O|yb^S4rI@_gXu|^bN82@GL*r>i0Z=AXvCG17o>olt{9%MLK(S34A-9w2JvO2i
zB<Anjxl1RLFkKe-bMOIec#+M`XDD@KM~c2a{=8gFPpILG#}8LnwNot3P&FT>*1mpy
z<LxKr5Sr|0B~2@nFgLg6@P0-QP~wNXtwtu#j!GRsNmP)3rQmZn?A7&vzhw$TNB0A~
z5C%H_oXiSbVj8@UtP@85OYd!f*nD$y)7kyAcdh8f8_})Jt!jsjsMuJCN?I;$Y+{H1
zOaq@5G!J30TDqs-0gJ8pTO_=yBO&qrR)>k5DzV8b^Ri;FV#_kmz7O<gQH;7hVYs%T
z(a)>ht!OkC-u@{AO6OCr=j}ny_3;!ut+&%1grgr5nhmX&L>ThBfy^WZ#P(pft4q2d
zE32ooJ1aZ)@k2E6@W%Gu8C0v$O<jE)VL<V~z|X-9QIY1aBF~VRsr@myUd0lYaz*Ns
zHVsb`#1XcjD0#INmmA32T^w(#W+|tM`5YaUdS2hQ+G~qgW1kY7<hIc+P|bqVvsJlC
zAt8IxUnH}BcmM9`><kI;H^Y<!P@D7m;$B=fgLXv1?$N=~-qDrCNqz$V^(4|QIus1?
zB;kZ4HKRp%SocFQSIuz>B`T)yj+S`-{67oEty`xyuefOeXBR%qS)EDEXg>Pbq>ZoQ
zk;9%s+@n{=EdDZ_B3yLZ+Yw{R2k)kNA)0vj7QMvoF$vCCOBNh)1`_ij6#jw!TfE!(
z{*jSOl^PmM*lznRYxr5x8N)Ch0opfDQwF}zk0sWYkmhyCZg0<d&X3_iY@O`rQqTf-
z%ovrjl*du1@~c?eW6PboEAb#ovhlo$WDmCq*8<$Ij`xqSA0!AkR5h9w#&omA)>!Q-
z@bmM#xm^rJ7#c}oB3rt<r-r*d_G&v<o8b6S2ZF2-3`UsKI5%$rrL}vxt&J9#Ggz`|
zbpiMv*so2Gy)vj2*sk-q7&kwX{V{6hBETOznO{_g9sLjZzw|S-b%P9SaOgNb!mb?_
zfzk#Z`89FmwO$&k7qA7}elcmFB1E&=*vw*i7|uIQhD!)>8dFkn_n~ofc9lsGItZQd
z%FD^4Nf}zSdoCUVIBDH!xevnARaGN)P-hf)J`zxw#F6o(pUHJXYz(dqvyGa;#w#IP
zG_7LLp}w*AYzS4a6V7n$LKLvlFySBpDx8?SE+V_jy#;_CgQmQdyV2VC)VB)<bCN~f
zO<7h}7<}7pcdjf$GY)aGGsSM#bD8}+;Be?M#N5*KX-ao}ZhfE5y!&0!oYnwtQ8y40
zG_SqyL!FQFu|$)Rk!i`R<B~t=T7qq?Z=Bv~94lJb+}aAI;AeRJ@T<sY@f^<8BMPF4
zR)%b`<Zm5YhHU@wta*KNhBE*in*6yMcUuD4@q-g#;_AnP2^GQSey7lBTtsvsv6;tW
zR<D^{m8M#7bQ1d3GTV%cB)@RCYMc}#wp=$)uiS0`{H-umeSmg3@Ermuy%l#pf9hNq
zNAW*;BJfpXrgOq%3?6n?S;>pi=w=Q$kJB`E(Rk<orU0mm2f`|v@7(rk`k4iC&7;8^
z6FZE8g2PkIf~+88RI1An$pj3d{9CnEq>}3HZc>mx4!|rhdiSxv@yaW>+Tx394k%sI
z*#Vrcygn2Nd9V)-g1lWuPmIHHm)WBi<Iny=?h0CJZp&S<F)=aQuK)}5)vG;eE16)g
z*FORSG4X;)IpZ{#pFMlV&xmZ+uT~cuR#9`gI0G96Sohx->(<mAW}bEP>?%vlkgZ5G
zQJos|qd01@E$ZG+w!!<O`!!(y)P-!;sTtHHjSD)5RVukkHSe8ER>e`Bap!8Wo2?%L
z=~nMtp$fyWUbT~IL?m8+qla6&T-@a%JL@Xed4)H|b{tPEoPqH-f-vA);Y-S-mHGKL
z;{B5yR6=Z6{-BxH)L~~!hf;Kba}ZooDgdDMAN%V-t(NOrFCEuMC=!xq$;p^RGu@Uk
zQE|TyV@$*2+<T^{KdhI;)?1Iu>*`jytsH}GM=&XSkL9Zj8oDG|c)Qz=1>#Xl2)^T~
zvaz_Uv3Qj{^}vR`z0g}tEp7YOR>v2doRNS>vHXlks#KFR|DVIrsT`ad--MeRl6|!!
z9%Xpui&M4jGtx^nb}dKS14f2_1iujjSu9PncJ0RD_{&()^x}^OX0j7}Tio_2d$E%n
zauzje+-y$bsi~qxN83D2gR+>|dT$Yt3|Yk4@Cp^#BXkHUr=z<(?AM8&SAW^(*VHAk
zR&9*dBDNny|BNY%p=?HNJxJu5!+8Fv&X@d^Sq>3?42i013ck1?^eYEe$Nw_zP_g$+
ze=^b6zc3|OtIS~3<j;c`_6__uIaoUuHyC3*5fEVrS5s3a7p@5<F)X=?h#uku#n-o6
zL=2Ci5m}ZIFy|>lY^Z%nzP`@8k?A;m<Gx_r*sG=V<DXvF8q@CYfT0YRk(88HRby`3
za$!PzeC%f~YW<?+9W4_3bBnj!@L%s=YP*25NJ}5CiLV5SUpef^>T@9gb7C*a<4cLB
zdSMT3d`S#5TdY8d*5m*5amATPb7~q}CCX4%lIL14jSSjSWVctl?X&K!ZCQhvpqG6}
z%AM?7rxz2`tTRjHnVtMwhJLvSm8NMFtGYyw%ZwB9LY_Ox^i+$Vs7#f$C$BC<VmQSz
zOw!1pZH90HdGh0#DB7LIeBpA7Qc~@}a@z2IdfdQ*(ds61Bqt*&E2+qm>w|||QIS#m
zGb#~pQWae<(8l<|;@Xtnc5c!0@Zat~pG9dF)|^^(agK)DpJm{OASJtQ{<Prx2kpQb
zz^K$Ik#8_&-NjUk3u2?xGvOi#`_?=hCnJFEX5o@J_njZ)%=0#-=NyE&gpzh<XETS*
zR3vHgTeaflnZh~>dUs<Pi~_HHeKc;~5fh%fNko3z{WT_Z<^Q%|Fg+t)iGy?Y{O^5y
zBKzIn!CNK4`dR*uY%B?QCY<98VpYBI4tj`b!HUK6NOfa;UfL;H-HI!#n-=o@qYFMu
zfq21IA+Cb#aPZp2``o;|MjvObJ_}BeTV@DHf^dm_Ay+evW8FcgDqH;w6>FYWeA9;~
z5?0assc|@RNe1i4JXk!{{1u|RBI@r9F?;^?zIGy%Hd>Nemc@EIQ5QsbBm^Pk`C0jf
z1Hm`@W7g2*8u8K}g(I+cZEv7k3y&gEKdZWOiN2(0<}3P1VLal?>-Z6kLLHzrS&U7Z
z_Aw$5R$LZpc~nG!4t01KIaS5(JI8so7?1XMkN0->!B6ASKieX1Wfd2*fvj-X+I;4z
z(}FmgzF-8cYLvR6ZMariip5w|-bhE!<2jMrzQg8L3LHf!a-pPNg8LQjLeb4z_I(<G
z{iZL;u*AbV%-7C?iN{UI`4W~-=dM`tw^_C+LwZ=)Vx{Sc4xHV!#s0PwrV}GAo}ike
zn)Mj#2&h_vk4n3`e|aTZ_XT6}sB<9(dkh1i?{^(IPWccNMmO&CG7N7tynp2Sr@op^
zxn0GxT)29~S4+9&di`wSY07z3+<Dc(RpHBNK<5F6_6q;EkegE*@ccgB#_&#k1xMzz
zqJ}E~7S)tnv}F)d?=}8(<?pGVHsY-&`TEhP{$MiK)iDc6!oGh$04~~sznJd;hZQ0H
ze}AxcvsC^!W&vCGe><`Lzwul7_y7NYoH@x-!ChkiKX#?h=VMFgow`q*D?lU165T!r
z<I_Na0Vxfb@rGQ$lJhR+@V}W3xYp&Lg+%;6YT)2wmLXl!iM_<yYv%x;XeRvj4IU)!
zon47CFa1IKuj@dt&nbWMu+Ps~d!nrBEfrZ3qZC71=UtKHw~%rJWI+)t;a^NbAxHBO
z-&BGUi1Y^D{O!LA5_Kk3VjP|>wz;K&;M=m4N9a1At11uh51&z{Oq%CQhITH=(&G9X
zIUXO{kbNp#a>SO@C$S&rryifRbrHJ0))n$(t4xq*THbU1ulKF$Wvnz`o_L-zSWHzT
zB4U_ntBmwR$narL{zoRZz3zSPJaV;Oioos<Qbzk5DsjrR+$2Y;fu$B1WOtJ31+v}V
zzkL$j-bw?KqTm>%2yI_Lp};mk(8JyBcuOxP8j%oY&hf<BCupJV9(iKO)=k7m7pcqV
zpn3V(YwxXIAYm@BF5y2P;ol>7VnB4$BJC=)dmnT8b?X-~1DKN-=`4`gVYvB|!Y`$0
zF3SA1L+w2YXqn*1D#x1H3hcq(u5Rd_BPJg>u6W9b%t0e3!gzNfT-}i{ph=qT5cf1|
zij#QY0Y86r7Q1oeV`2(^d<kx|F)2sOUfnv++lji<KvPnYN&oEnt7>Xvq(|-U=_R%V
z;gT({x8I|KgCiQEocubL?cEQxK>G4Z&=o4-w6f=HUb_BvGVJ`kD&+U$-BWjD2lUCu
zf3wSM+hpRUpD+W`rpNk_2$LOUVuQhrGv~7iQ8%Z0YPRLOYqis_xLx{)2p4a7YN{D&
zvLnQusd4?Q-vHwg>40a)YS98Z4jJ$oUcjcHXJ!cr3P>z}|0=1seb~Jg=0c%nY^YpP
zUVc({b>Xx%{vx`=z^w&8EC-?0n^@aJOLJ9pbP`3hG~4K1P^SL#4}}dJ<rgx)yYKUS
zB@c;dW|rsPDR^=8_?-{A?1a+7)D@lUz45(Ms+LDG3PZKP7m|6W!ZxhGpTsPS9GjJc
z<5HZw9#LJb%wToFp6w<bnpo?!b9n%am^EV8Fiv(rz$I%!9Gw|MSrM^T<*>2N<NvF(
zW2)-tByOES%z%I(7Eb{wvUd?RQ;b9c@I{*TxsDL);$GGJ`!qMB3x)r{IBjCZ%J`~j
zjv}l73)!w9-Qik|`*Wsh0ii7qlfFm1+ws)4w{Qo)TCRew%2{HfZb*nMf0-3wKr6Uw
za8pD1MiMigSBAFyVQ&HD@^L_V(&**;BJ~slS7`eo%+?mLjD$QG>Pmjbz-i?W3L3iB
zCN?w7kO51sjP!VZJBGyOxyjl?Pd7IVVq!Haz53j)!>^~|AEqD=G50a|Z6_R+zeQKO
zwL6w-I(XJA2<p4>@>UOx48_X`=%{~_gX#(iEwssv6?sg6N1CVFxl?cbUGitMc<}Mj
z0kG5)^YM|up(;^lauzPpjlK+-*k3*5gRBo`6nK5AM_G1sy`_Vs_M38$dW(uQH9udp
zJu6C;0MD{2A-w+=Wf7o&Rv7<%sI$VvgaioK<*L`P!ctq=?30D<=mJH<7i8Q~%ha61
z+0t!04+kFsl)Lg_OW<7y&QKI(KBFG#6Qd#x;cnsR0d23NZf<>2Ku|KbKn@IEUS82C
zqRxzo6T{P`1*0QM%$lp#vn8>k4<?rNn24lKV#X9w+tX;0CW_ah&#S6pkt-lefg6^P
za5X#EoTs{xq*eZSX$6bw6~jyVG5sP+UU&ICRTWiLa$fhB!os0&0YSkW21ZuCpst|9
zf$#W`fPihG4+9ZRU%uqkTW9BGC34xxzLtN9w|92Ogm`p~-DGrl<R>lN!PzA*Ceee_
zOTaK77se;XeZph5ZeK&fLX8*SlfwP^^;;$)L@OZD4dpwaBf5=?)J4Kp#{+699(;w^
z=y_?s{M%VD#@#)fO&CvWJ}#^fzI^WM;{Ox6$Qb70&uV{&Yv-~Nh>Vl*l}vC|GV8h5
z+pxENTaEMK3%rj!@c`Kj3gUn;(EnnO?ZOLF=u!fb1oKh`X3omwy6u)dU=bu!Fp8&O
zSujmPlI4Sj1~^R*_UKd?j84yF;t+8mf7LJo?x#O=GY<BSXo?95i9kIdum@K7@W#MH
z(61TqKAL9Uv8~@@;1ne8dcLMamy^u^L^OaUxYnO)GJ&L%BNwzieebCo0t^L^ft}YL
zUYv}NjndNIWytw`^)0Q}@so|``M7y9<EfOT;&E|oqZN}7dA4$F1&CsIF&=?6!QRB)
z@?h^|=lem^-~MRWf&(P;6ys9u`Nzp!suJ%1JH8+7#cX`iy&-etxMd5ZSl5W~9-7~M
zF-WX5D3f&yf`9*Bk)Rt*qL3Jra48KkSJBw)tD>fQv^H8_T-;>IhE!+bc5>o&I%)WU
zIXDIv(_elg>S1w#hZr6o8>6=-ZZ9cPXL4`=;=%lAH)frwNp|*u@u;DpA!rGr30a)-
z#btJTSr!Unw87&D#jFw}a&*IDH)^$IckVfOsfUJ?5#6eKTEvg>rJ)M_{lHku4~K#}
z1%%j+p_GuKw`m;x6k(z0v)O+e{7Gw_Hti*=U)A&z^0EUNC;(0S9ea2g#6l$BKp|Wi
zk{OB1ge9rP-(+&puIDTQ+03yttJbeyO!>pxm-zVj@WK>P`e4(&zO1UIl{31=qb*x7
zef9W_45vyYFx>gT_7gy<lbgA~AS)qB)!PKA8QVT`fWyLzsdX{)i}817wU1wW5>G$Z
zs;@FFg5BoLKrFjiR!2a(xCC8BStJOA);CxWtIa0FL=C(<EH$sDM!PD=EV&S!b0jk8
zH6*L<-&)MLpIDKlc09o&(NR+~dHLk>?p;z+GWgq^{?qewUmqV8wb8FWejpx<RCK8P
z6PBa+`R2_3u8^O!{1UvMJ9NAe#~J!d11xrOoX1q^4J~*zFx>u`l|!AGOcI&livAI`
zIV`qzgg!M)#DX7q_pbNJ_H=AioX859yg<!-(XZ8Qhf)k$*;sLCduU5(3CHO0@T)5&
zI6WhKs$BiGib~|LO5}$*JcD+*vBS=)fZ}3V$DzrgMUZ6JSeY5>`!SL!M;;99U1J4p
z8rPKeRE8t1^Q~(yj#gk58YF7~@J-}`t@dRH{2mziUbwsaWA@t=f0>@9@&AN<>>0n0
zkx9qC8-jfI4p6o>PxlN{+kAb$o;pJqSXdk#9oGg6ghM-3a)v(o;UpyKrFsA9n7!>!
zJ^!qGVPwFwRL7Ah@*hmWP?Al6rGjVM9+qEMofC*X8p(<iq7WD4C~(`ayUG{PSOEt&
z&#=3@!%UdrjiaiuGjuUb6eGNc`V`|H_7e_hnrc;56)1drS+t~9tDA)D^@SBzI*w0=
z8h_2c%EQgkDG})5o3g^eB%8$U)tGg98r~iPs$a}-+W?^spzS<2vgO57QB~d?D;u_a
zMbN+Y)j9DKw|SR3AeAaI;B3zz5+Ys9Vu6HcRHj}!UclijpdFqG{B2HpD4gj^iehA-
z6hUwGUp~R!oatS%Rc9(&bJqke96j;82{F#Tthi4O&%GFk{=O8qtRt|!a_V^1>*l=k
z-I9+EFv@O_p{e|Mkrt6f$N65v5ic>LG1}dAzL7#oxhHa?5u_tVN|&5e&EL~bA|De{
zg1r<}F?RFX@232wpq_0|X+l<;Av{|p+sh@Ltx~&S6cN-WmGu3s5$Ta|G%M}{D`PUg
z4DGM1xYKY)8Rh_>-|?CX1d`VAs3VIt;U|Ve|7DnsKKkhI9bT^JyB*P_%#7sG>Q7ys
z;f`^eaDT?HCapa#h{NX%osn^zYva_La<8=azCL=29U|M)Rq_MB=xej_ji7bm)dhH9
z%92KYz{X1F5A=YZK)KeI_J0Hw{%zH7m46`{5cBzOP9Fxpo6umMQ>7{)b?HUX%Y}!S
zXWZ?u#a-Zin4agnZsx7aiXYHROA8qL3rBTUV{cKpg-(ti^fJ17&5@-XjPeElI{53S
zh2Iad<4U&fU`L`30f;PI<X&epmgT$tk@8v>Vy3Nw5+>TW2}v%lxvVaz1Ct!VeKZ-Y
z;I3OFugeFa493BdFTy8uq6at_(uRX9{$2D>h7V0aH<)W+CB-LAbE%rw--BXmfh_ys
zP`8@muX-U|Eh#DX(pi-{owZU>5DsJ^0fVA`E%zs&(795q6a2l*pQ{j-O;h(U)pLNr
zl3hmavDRBfDU_?U^KHXEGa2;SuAW3zT;1knac^DJq$N^AA^d+giWJVyVE>Gg>$)_e
zcZ5U?73pmC30UT9J(jWL^6OnWxOayosW*s1DmnpkM4yASOWeEPusFp6|KA0k&7Kmg
zt0E3Y*opibW;aZC9k}>^U!TdxDSs(Of1^Pl;jJO|iN&9n$+cECG?Dh-KfUIDHTxdM
zf&S64l&6}M@E?K?h%(q@D*sNn_1D0(>J~O)Yje?={bbeDhKhu8;K-bfP2i`SGPgFc
zn*`^7R-QlG!3=}z_%wyoKR}|ivxWizXWN8Q&DI0wI<7N9Qh?Xea|J{Ck9j#ZHC~`<
z-RW5VjMwGXO0U!PakBx=O!pGZy2(?mcE5#~s%GRlAE4~hKZbu*6IAOVV-@st9z~Bv
zkagQ{pV3ii9_<rU<p25N)vBvcB`*c+9WQ8}H7cb-qTsF8qUd>xuzNS@yKw6R*Aw@y
z{%0l4CasWYp<2r4DR65$9i8f%3%j|!pG-t2m-z)nUDJY8VQ;7Sh2Q@nV>tcDP@Uwq
zf1gCK_b$o3v@E6Ab-m?PXH-|^gNv!6mA<fr2WVnxT}er`H|x<<c`coP2Rm_AF5l7|
zs^AKrHPkawC8K0~y#83&wCFPD9YcIVs^XxUnhM=yyxkgV;R8RvS53M-KQ`OLTjh0Q
zF>nxBXi<5}Kr?!%Z;lUEJX{@athdt1YG*wBLO|t_AeKY*Fh&*9n!m^=ENnRn0x1r^
zD5aP3f6K5p3-bwBc4v_otDiZbn^(gRd%H+ZSUJ}J44O>;wpZJv=!si9s5y1W4?M&S
zedSjpzF*(PYi$!ySFWiS)98wrOue{!?C2?qQLn4*nwc{HvtXxisDvsu!x!6gVKIw4
z3+YI6ppwntb<?k3B=x2-zv}#uaw__P&oP>qTVTM6w(DCy9nqO-IX+&84H^w=HjB^%
z=U9*!c~>vgJ2rtaGD4e?eq)N%&}az>QlFihZhvpt!8)d*W9N&~`E>KdtG?fosNjdG
z+Qh5-Xvh6wPW*g6r63_@WTTk<dx9!C)u7xuncYyapz6HjFes^;ND%MrA{hH&{8PMY
z+%QFzShd}Z96Ni-@slpv&$pd4a@z(5ME?x3GQ*doOTYrWHX)@l4OHIyU4t<p%x?*s
zd0^n@<8zOYD4HUO|7`Sgs$$k+bGdG2W~S$XcR`FpTQDh~-FSrqS$P6aBz3eDsBDB(
z3pJ$-bz|YQ+w#rB3YLL_;%-v40+Z7>ix)S7g=5{rYsu|;E~aZ=5{trEYmSq10tX2~
zCpX^P&_znt-OT5;iMMX-xL@~Au&!gZndo|snwPRss0+Dnv=T+Gw?<Ow&bjEgE?Rkf
zP!*{7>C|f~6m4Nb$I9?x)U-5IusQ%Pa_4HfCw?f^%^6geh;124@<f@JsmFMq!0fIa
zkJ9~iw4RWX%gZaDZ-v$`CfT^*QxXX{Ew@lA%yAxJk$GJar~!wuTMZ6sDkM8=)6oxj
z1OzYCR1zUT*pQ}(1JOtFc(@9xD!RVpJi^eM!2`bl^qNs53@N{wIm%t>b~tyCmiveW
zm1~_ZI503;Mu<R^4^LP$pdxGt1KhJ(M44=p>w~xZH9|3x`}zk{y_#Zi?%k=btED<Q
zB5`C{BI80#WSlG<VXcum45#@;gjLqb6|^5<I+f8&#fW_IrcIQ(9x+rsS>F?;DtKl@
zDDk{$#lJPbU9OIWsQPgI3@$q}HmSY3J<U%KYeL!Skp^e~`qipm#E4g<zA02oRgfbm
zC8M{nJ)I+0Ko`^ZwFhUnpYhmhjYOFH#eS7fPtexh`*~Eaq2kW$5B~=lGbYHhX1_WY
zt~18GvNE?t{Nx5*8&g_+w9`;thjWU*H63Iq1n^lO?|Pli=T#GT?ZTW?ayZRP)0v+;
zFQFs^CMQGM>0Dhagbv28K&=wx98S$V>z2N2EAQ{JPx!lLM)?I9<^I$KTUQF-CRLHw
zR#jFMavb`0GUF`E5Q!TGYI=pP?v|?w2^zk)NtS;LwYKhQyzME#GOAx>I;06H*03Ti
zRm~XOz-k-V&mP;xyL)kD==e(i?aglCkIncmjB?y8g0{<9#EI_CL%W|%!r8wM7W>op
z&6xB~KZh<ZZ0%iVuei30C&@~d#xP?pOS^3QkL0!wPI1yQ%x^`?A*7e9s@lMHZEBAr
z<msP6g!Kx5d5JOX1_UH3;@*2pCO0edn{ZH=0@S=X&o&*EY8_0~6C2Jt?v+fNHV!Y#
zz0B<Y$wEKbvG9&sf3&TQNy1M)xnWv=WOOuxcMPLr$x~9Lven#jLO#PrIVXoR&b+p6
zjWi@XcRo{6r@t>I%k)Klo|KvO3v<OqPR`|V)R~j>TTPwXR`Y>%QjR#%^sm1IPHDyR
zB~>&O65gBa$U&#4y_E(>R<UGc0w(9@JrXIe;J?}}V2(XRVs^>mTG4S;ah-%O@g7Ap
z{_ehLHdTy_q*AcRrl4pZ59#ja1eI5`WvssUXG-^;qB>rDX(#MlstXS0HJ2$>RMAvR
zVtG8K!PJ%=2W9QO4PBfk&r(&hC_VZLSfen6=GB1>C+87Z1M1uwgIW*LDTE^r_o6M7
z894C-ODx}5c{K0S>8V(h2vDAsCkfTN%?0VW;ZOzeqn`7*|7y^kaHNFU7KR4g7xdsN
zO%rn&jR7tIB6XLZQ&jxN1pV=APT(qYyNy?lTY}P1ORnm=<h@F@85>K*65&rZU*<tk
zFpJ(1&Qb>~xtd)fBy1wY16W5V@O?Z46}+GvW|#NFJ8CR!CJ7UVmO|p&7mhaw2%H4w
zuH@?JAZo-C{FRn7a|_TC*s*e@_HjchE13K6`n3v#IL%KR91!J^YRUw7q3u(3b~np;
z)&8pqk#Z*+Q_txexY_x=`s1_MvKCWWRe{)70t&{u`+is&x;Ne^;olkM=LiTG`S>f7
zhK*?vDrxzqH@Tn+=qC9q<00Z9zVQ1J)V5hRzwGVr8x@Tm1;?5@1P9uE?f;o)(*=@2
zY5ha5a7xxmgUiZ}<V!j4)YUYL4w!DRFuY02vSyalF<?C)yiX3dL^rV8KxPNrTKNd2
zj&@mDv`QX19_@DZz{KlVs*@b{ah1>dy~H+Cw%Q`QJea~@KsoU%yMO4H;k2ZRnR7Wx
z(H{fRj6`C}XEXR`=3bgg4-GWU*SmZ8PSqtS{V9%u7uIb&QF^lbxtZ?#Brt*7ZlLgu
z$COS2mFK()9flh>u?fU=@iR?V9G`dN)NpI_)X{1OJ0oSC+iF7{c(zXj3ULBk`JOm^
zhgbQa;q^Co){1!F@qY^;Bv4RxrY8Vy5TU|1j-VPM@0nPd83}K#EA;H#*_Jncw{X_`
zBOPHkvs$qgorJEAQpVt#PCU5=6OmuHqkV}QeZ<iCAT<CLx)ZrRpAAmS_K*wwxm<s^
zf0wsiR_vAQ$?nl{S62@X4(8DMq1!Rlhs1H@&9CMY<_2Jl4>Z72D$0rbhpQ&YI9Btz
zH&9m(B`clvwU+uLqveC8#y14K<hn*GHIh0D#MRn1%0$FF_1b5uIsWYy2_=!8gzS0L
z*K2_#OHBqjOH?>nNPNJ$WdkJwLcTRGvv*716LG7}_lMh`)83xZ6^rbG77Elwzz@-V
z<loB?S9S4}^zz$-Urc8_ORy92J4_V=#Cp8Z>-0J3+1W<P9zBGZTeDCTb#}aHnr4~R
z{>}YWLm5=Ip^21CdEO)-IQd9?p?@JmP2kE^L(D<_?GHo_Qkj-FDcT~&YwyATqU<f8
zqH4dk@j)d7q$H#T1f-jxkr0pu=`QK+21P_bKtQ@%x;uuDZjkO8x^sYGzT@xldEfuL
z{_k4f`ew0ajn0{K&V8Rd_P+Ms*R}mHTL~2R7V*q~{`F(0j~&&g8PM0Vbi2LzTrK%3
zR_5!^!onnNNL}4S6!{%z)%m=;rtXU8R__&{PbA50x4!dkLmFqiPXDg_B9}E_Q?kYf
z5uMHv4T0aoj`tzXZtn9<rfk(!@{CrHckcEbz(k$;%`+CPtfx>4YXYRn$gprjKU3#)
zSOQKU0%FON4MX`eA)YC#$Ne#Kx~dJgXpurxwdoRIGPLQEuW*~6k(_Xb&r0RQbel9b
zNb)e8JwriGpm%mfv$JorO|YnKl4U)|1%`Xyg3TC2XdVkY^y@deIIT@zSWDMp$?KC#
z@{uRRZ6aO!q}71R6NezX5m|L4WaR}`ii9K!3$1EsbF2PKKqZ@1Q4trtJD6=bLV@3a
z0`8^v6t}VYvPwrmz)!;LrV|QXzj^OKDG1Z~pzgacutm`84OoL3UK8fkct9$1`yq+r
z*KWYLm36mYL!^60d>t}(kuZ%duSX5(Vqhv)wW(2`sx^dHd~EzkIR>6Kubr9(<BWGS
z!~$|<Nxn0Ei9hX8H`XsvXmCGl6JSzK9Pflq(ko@qP_rr3gG4Fwd!_Hpnk1xxR9@fe
z%KKBV+1lxMB}PjCg@^Y3D!?@f($(mtN4A_Lg6>0Ka}{Kkm7V@ha_P6y9@5ZmME3J>
zGlY2ggsZ-l1eQ=T@&o7d2jc=@UOm3;k&^zLXR(E+;%b(dmZq22<N6<zawchcEEoJ*
zi#bwp#&P^TUG<gTo(EvzSaVt-i{D)gx$#!vshFBZ%0umHlS6-2a%eJM*32^}zy+*T
ziSUoe_z#5Rnu;np<UAB|obNZN;^N3dBb(^ijfA*hgLxx#0h7%$=#<A)dXW`PxAGsR
z-T|oQ4Hqx;qY8~koz6Fw0oAuIQ~=*|)354`-Yd^OvxzgWn2Vtdo_T@7UpYLhmP4$J
z{Oo2Y`*g8iy4PR5@|TfRpDKXErKDU_m<XE_S-!Y1tg!3r3=BqvJW*m{5)@CQBLvwS
z^0-|Big;_r9p#Xlo84bOR$s0F`#ExV9`JZ1Yk=LLCF!}L&)PUJA6iXwq@!M303-kD
zI|fNt0fx7E)6A({al_`6Le4P^hd2GXFfMvg_>Lcit~;R63ah4*%bTFZ7V@K&R@G7^
zTo7K5v!LuBX1ldpprEeODFxILPug40LoF9ZMv@)AQSi%@POI8zmHkoq+KTiA^d^Bz
zhW^a0$!=;YE7Z?OSh`!kz1%%rF4}fK5ZHn4aR-e2h^az1fAU@N;C^2jvdrPoaxn{N
z9)?<WHmubRhWrOdI&t_#-?H?eRIT0Yfe6|@-mYGc6dv6kjF9@UfKIGUIxlRnVw@x$
z37Ng(qd&gB?<ALG4)6Y+c1Ma^$TQ_6ok5#j-EXKLBdMnqlU$j9=;S_9o<^psa5$Gd
zU!4%Ite>K#pCTiPVtU^HzPLfJvb)5B6PLPbu4G%aZL0#t%sXQ{U1v9y+ZQ2t%bY>a
zm8|CKUx5b=4E@<)X6V%KPoZSOSvWfSNKl08G^eQvABbh7;jV&{3#p|;zW3zY=J%ol
zVcv!a;kyAJrBbcwa-}G$$3CRrdU7{w>P2rOz4q>EQ?w*Eq@EEAR77=HF1FbqJZ!)m
zN=fq29C}41645G^abH%RY8F;6Xq-oe|3w>W0_$qU+#i9ymTOurg#*#svu3wZk%#tG
zq}HHEzDa>WU+a!V_&j<fQzF(Q>0PT1;U1%T?h^47!d_5k>9*_kXlY6vamkHdOh6x$
zI*Xl(V`~afL)B#lyids8Y5g^G;^~FywRY(=u)iD!+;)jlxQm+%NE?<I2nEdF&&3WC
z4wmbBybTUPLAhCP`V(ntfXz!ko#`>*SVj-|Ez;fKXsbb^9YJ0ztfJrcN>>*^hy?s{
zLVO(Js#1Z%?pah#^$h!GB9D$4UoXxfvx5E<ceFeMJw#MKFR;^w#M|HYW&T4qqjEOK
zHM3S7*zN4%WN!)N+zD9LZA14K$HvSm4XhG`LbZNvoF}Is4g=VM#YY>qZVI`-+TL^1
zEi3&T9+{dn`vK5{-P$B@Zd?pWU`Z75IxrnAGZ9D}gK^0603x^!4MpUQ|B-(yUixF`
zf>!g_Dqvz_&&dyhN(kTE`N?X-RH)aTXqTFX6-RG&n+~Y!G!3b5?Ut;m2>~kQnpF_!
zmJO;}SlE2<V+JtKG}V)(ifKv#`H-m+E5H|>PV>Psba_fd&L1*JOD*a!n%W|sGQ~)U
z5&HA(W&Kby@N}OE7TH+-QvXk^x1KY6Dlq{P!Aij@>C!s!?2jW7h~<XyEDSImfvM#-
zgoQ;R!VjcJZ>Rg7RBl~6@{v(QHGfzz{II3|)9z0T{*xo%Nb{2?naB`P(U7|?5U;&5
zd$DTDcKsFW`pk7^*VQYyn>H`*r}cjy9;Bu=4gBd{n*g#1s?Of3&H~mi{(POuWSsM#
zjsZRc$ku;;0lfXM$qWBolk&eF8EDf5K$0Z?0O!Ct>}?j|&Gk8ipoeF<pZ_`WA7lIP
z>%UL-KMP#`e*M3y*Ztp)oCyqP1T`#mU+sm<{&OC2jQ=jf0Y2Vf(`E<<{r#?~S~npF
zsJ8m&h12x&@2CH##z*dd8{ERHJbCm_6dSbov|*<BrJzrUf6y0>s9GHbZ6{;xcPd(D
z9-5lh&!w>dqMwh-d}cSZLl>KS17~%m-dDsxN@+ExYSM7^<om(FuuvJgdQx_?UzHMf
z7v4)hPh<JXBD<|s>R%HmJVW-H`;!%a`;2UQR?F~v%3Dbxihy6UPYX7p>R*#|<5|g<
zw{a#dn(!vz6X8R*`ZmvyB&6y@=K*!Kn$6sFKNLV)05^I$)25_&bVO$D>_$TBTmP_p
z@oRu)#y)x}EmdEMLQs;IwCs=R|L3)LhJ?DY866}QJKhV<)HS<qO5R)lB;-IT>Y<de
zH^2!AG)hy{)mI<yhjy&ty1DV7v>s(|%@JEYyR7AG6yjqRr;ekiPunZ`KIT|G?&)}}
zs0ofbs%*6>E>@FOUwl}S<o3Kt?7UCi8*mPv8Yt0IS4mHZWdQQQeJ-#tcQwAJsH+(4
zQR1tr81!tMxA@*yO}vk`|L5L7W8_nB0fuw{EAQz+p{6Dzes&vHg@?#AVvX89+}Bk5
zzTl;mX>S$!b<cm-87N|(v<6ZuCr4<T8XDi_Rw<%a{<rp=gpWtz6eD#?KOiY5&sznU
z=dt}}wOWaBrG(YvnGV)JHS1pg!h4EKK(q<ON5R<GqKKERiZgAkPyfA_G#p1s*Qmqs
zf`HLw_}PD{%!PNy7{F0TFmLw;!bZTO{j&8Qu0RTS%ObjU+=NM8-{FA(LvGE_@4Xw?
z<UFj@j6k5lm7?$@SR7TFekJgwv~)txtpH$=U&MW&r815dc|dxL+$d?;_7{JD<Dt<$
z{##4aP<L{1adY<&U~dWSGy1LhgK%Mv9|$YMO|^`Elb$(OHNEWt5;O)&I;jcgO48zT
z{(s_fHL-Dr|5H(JfSH-Kj|eSTDrb%IIq~0iW|k2-{#Mh_h>y!n7p94qNz+?Q48C;Z
zkyJC(b)ltI`w?%+Q}o>)_xGuC{uLRPbfGO3b($g*K6>KTqpYuAF9e?90`fqzuO<en
zVm`-81A)5m6bt(1;^IO9XUB4#Li`hCJB(*ityS9N%DUmuzlj(iS5y=-J&`Cj98a%1
zpqeLk{N$Rx{57*t<!dHkb;j6w!@lQe0MkN9f|9H4F_1wKp`#!<9418sR<a<{tkfdG
zC&{0(#Pk-%_4*(Ba*eKi6LQyDs(PzyyEOQrtp5L`RREy#NXpv}V-+frxs%oy=Pm%%
za2X5r*iUuZU}P~WV>`J{nr5!aU(*_z1e+f?y5r;U0ZN|4biX;WNS!=+McXtTS|%DG
zRWJkBluoO3dVX&pc`uB~(o+?8k!6vM{S}z&*~~w=KcIHIkUz3;yrPc@6S{yrKOz>W
zb0cAK-ubuys4V=S4fBfb_%~4cItOLemXhqZ7+w7bxer9>*_O9SUMw_CNit6>920c3
z9qx~sH*+t&1T+A?xjtU~64Rgi^9jh3hVZG%Q_!3Gj?tWwx{vp)om-AKLKJ&zl<$5~
z>&d+F_zxcT9P?;pzh62YkQk1Wy-W}-5&h%uVjXGqnj7}X7qEC*-mE@Eu|c+%w?^aQ
z)j2W1hzo5E#Wm7n|A#eQwu^6}wz^(`ZaR6mlCAD+wpyO~rtkfhb)IUg=W>k?;RqRz
z*XaQOgtXWi-*wI2+>HQRXDQ;L3(y+A-3z&tyy$xzPQS$CJnp9iP{pi$_*8bd8tLX8
z<h0xxRX9ar-VaEV<B{WD&AJp%aJdNjhI2$^cpW@6_h8;#q-3}si1aaQ3pvcUhMTwE
zP8R?QwYcMeflS%p@i1HHk-`!mBsdLkv0AuQSP;+-`3fCP7qb7YZ0HcRH{ZnduFw#1
z6W(vuWAg+AMmpaG1hIoSAQd-*$KXvOd}-+~epky(cKi5oKUS{$Fo1%UuNityhNFpS
zl`@IR(baz253vQK9Q&SLO~O}W!Ya5~WLWg{<tNRxDb>zr3j>I)dQr{th0c<>YU$r0
z4k7`pJm<R!%f{|MqT{Z2svXz?$Sp>}Mugxga!vvB?#V(lpt#*&sxPLp3&2hQH?3ri
z#eQ;Wz(cL~Qhc3@l`1zNNqx9X<gq8u2`DEC*kRNP_}Tl915Uz9-QjLU*fioKIw3^&
z?$|V;I3x`McT{oa@V{+!u~0N?3+0d_97=MY*~v0UKdQZa)~iJ4*KAJXLYN@PpqKqe
zS!#!H^e#iEl3B2P2WSCBgT?ZDrg#7=&z&LtYT26})O_8;QCv7R4_L6GXRGVRLAPa0
z3sQgFHNCX7Hi5cyZ7MKiXM;_HE2`LLKMB<<m==&F9vNIZ48UeJIBk!q7rAe;gP^V}
z=I5FN+SIKV7iXhwFn%V%@<Q#o+1#7`)yk(EUrG^fq__$%1bt@=Lx4qpiGzhMUx}jG
zf0CCvED|j|63qr-8{)u05hZA5L>V;BXFVHO7Z`N9BO#|cQT3a|j^5|MG3~8O0js`{
z&wj>Tn?77F5HdQ^U9E0?n0$GoiU9(T=8U!()5k8iT0$4fMfiRC(aqPSGZ2ZI%JPyZ
zIniJFY_9+mZEOGVv}=A?VVDJwul9K;3?ULdQFE!D=pSDL;tFFw-6;J}f!w2Hjt`5?
z<)Y^|F2!N814-HWie%NWYkiW^NMN)jyN)mCP>VN9yU7jqQDs{_mzMiQ4W-L)8n35;
zidj0gA6R+7Z+nmAMz;!yRsd*-QYiC!pG~;!>~M5_RGOVA4Qm4s6Q7x$mIjp99FK*3
ze43AE?3;epoKzUGVT1qE{x{Ir##nF9gE=s8<7an7{kap@BCvP>Wthx!n&?^aNSEu!
ze0FBo<QXqXeY;vs`EZ&G0<6Avmat(H4m&=ZeUfF*Ym8_uOYXXd?U|pJ{cMbOy47zB
zWn~p91%4hkDJ*=ooXu>rj^L%@2=>w_25^ETo!%GIW@cL-%(fy(M8-x(i{bBwhX<hM
zw3E^0RYi4n3lWf`7oyfXHKC@qk^r5?<Z<%}Ne8)j@#JWtko#bruy?ER!$ChuX&Ic&
zfxNBz_Ij5p?kmKwdH2Bw+Sn)nu-+&)7miRgcr5oCmhGBFk(Y6~?A^4YMsbw>#KU{f
z$$6d&u*j2xGE?~2wWTyDaA7d7m3p&CwTW9?H3Rj@2UGU36?y^AgUjnSKJR;OT)<%%
zPUT%*>1E2(<_E?OATbRa6*8C^labt3<@DEv_s^<GK!D-0pFqj$bEcoe>##&XLN-<`
zjUVe;gWxt`_i@&diVPgh;P6V7Dt=zOfBWY#O6f~%EMZtsh{ma@>-&s1zAE^DJHD1v
z&~|INb<uCS@F+4|F+@dKEjd2g<?Mo=H=M`sEOAN{VQrOAiZlMx_;Hc-Ud#xf%`>0z
zluw`#m2Pa@(hUHdC;V{7zxA7X9EabX76APXRLKq!jy^zp4HH-IoavDRIe=i;^oL5F
z8AMa7^!15h!0kQIb<VS?br}pjk!1Hkq+r?baxv(7#3G(d0FQF#cw_%iOi}{%nx7(L
zcG^++^;ncP3=U4WVOmsVrJOC_1|-+Bb2>-T2ODBG3QHYkeNJ``cAuLoHQQV-H}udU
z8_+aJkn#EIy~dX(0}G9<6a-{Y*g<gI&j?BRZH)ko=V}S{nbhQ0D)>S`-otuI27M$c
z?sM|xewJT(`<@NW^Zg&TRk;AFuMYpU)WW5lCgj_@`GvvLM@XQhlDa$~7Lv;6exq;t
zWeZAFTg&MKD8oZd9WTC$N#c{>$w(3>c@0&ELE|X{Zh2^hQ@&Dnekv-mNpcN(%6x_)
z3;b(d1nzzuk-}pql+mlpZXs(R=49Zna`$+)7F-6X*?)fn0oIq$U!4FpJ1^?9TTeqh
z@3E?7<+T+X#eBF)17<3C`Kk|M*Z;P_CHmWe5K_kR_FX+?$gJ(v2^BmtUC8CaEE`x~
zJ++j#FUR<mu)%_YUUxk2C#$uYHMC^L2-5LEe{cZ;c%><#O4@+$g@<$J?3$rpiz;Ir
z``|ula+M1@@FzQ{E9lijp9(~QBv3D(VPm+vIElDk;OpNsO7xbbrs+DaArzJB6EgfZ
zKl*IvS!_PsoR@2Q3XujZ^aI(nLafOS?c{ld+KtDnm2;Ey%*o)^+?q2r6HfRcQFr)?
z30|e;PP<4!tZJXR+~^Pmm$T#DrP8Z=Nb4O|)OyQv)Q7Y~g?V*t_1`|ncxX6iR8+4%
zOM+2INxwP0BcoSr)N}Ue-#SWI+*)tu3ni_q?C9ZDzc7%LeyOH>+<IWGIlt@?5P-=%
zcqIGP1oP(3>;49}n(MgbyzO{s#P`~7rBEOMb}J}4-)_WCH=na1P*<J9r9IRz`?ayU
zinpbqvr8e6;4_Z5t-;F4y`V$u`WoHM@bOA5>%kG}OSYh#997WEfT%3hRH26#3Uug~
zWm{^D!KtQSYl`o`7GoSwC1j-V2p{e*U4cn8868}&F-!dH`@?A80-Uz7k%M-kZY_e3
zKsj^wM?M*^Xn)~vji#OOM~EjXKtr*5vAp!$m%ysA>x)ZI;%01gbp*L}?3Pmx`Uj1j
z>0+OPEb)sJ7*vqj%{Ud|nK+#wRPmku&h2Ja)^vwTt%s}eX~Zogszpc`&xEEws%W32
z-nZ6gP_sEIT}YaB+_E--sd#&6D4B~%PJq|o{fwo8g{6#SS<6=O(sZ!GuwC~c_yQZV
zT1&o}%__0xx%7KEABp#*?kjIZxdpE%P8~f`1ewkkmQY#Zo0rL<o?*ku>54eN<ZR-}
zm*Lt{)~YgNHLK02pWugGrH?+^XgfW;@~P3aaI};xQ;zWyKnan0fO#M$$EU(CKjD1p
z6_nfx)(r69xzVof&IT_hajo~AqMwn-xC>ZX?LP_J{H5zRw)o^;(?IW?L0htpfNyK-
zqkP!%k<uO>F2#i9`QvX|)WYgcR=exST{PL}MCEfI+HEU+o43af4qUSedh4;c`~;TC
zqvr*Dfbdq8RhKnM1p3JGcFYT+$>}+s@wM4^@4}|6-TdGZbr?iMqo{!h_=W@4(f#LP
z6BhlJK=CYjRjliVCA<jP-k!<#&r9SuRiDe7yU6Lz;A5jxwe$1gh%1ql0#(*uwjFqD
zd~bH$s}gc96P{#+=&DJ+hI#l%gNd{F)SY%kAGR#Sv+nx2i0rl(*B$w%<50gyl{kE=
z&|+@BqV&7FOu$>uw&$&p=g>3{?-tq$L=zwV){zzcyns#e?dSBO27J=z#&^*h4Dktq
zT_%++SCawAAl8)2Bg%kSF#Upim`|wdK`fhl3%o}z_F&v8?Xk3CskSyFX~N8+?SQP(
z$Z%35(B<Cu?#F_vdh8zk+4puUKVsz`6~J~~y+LF9m-@o+rPjw_Ytm)kOJuANE&)bu
zRaG1U;yMe26Nt}acYYx6Eds`N>|1LJQ7ku9sT;H9q-++XI2}Hc(6;Jd@E~*bhB)mV
zbjQhsC+iA+`SRAClD}1u+ON{jW26K#VL{j!De&djl8aYLN>Th=laKRZZ2>-bIK5p|
zL_Jc$7{W`>H?n03p>{Cqdb{NpuHNqEvTphtAsK$pK)d~?q=q_iF)uXrXV_Kv7bhcy
zLkt!wq{@^vG^TnagUbyJst_mdA~bB8BR9mTJ|kg$9*dPLm_e*T9v&vah7X&^0cu6R
zGwc?u(!N-$thKxiK5vJ<wFD_^tJ7<~*4OteU}T-ke@;Mg)`56v-VkI)TD|Fa*`Hw!
z@PFH1UO=|`W(Rd2f;cuU7(7(0Oo=FEcz2p2il{4X9TZr81-AIIBzS*CDZ(FM?|y%1
zudO&&dcHfI=1St%aX&X&uE$JHif|vzsx6kSG{6y$()Ji_uO+SB{5`mdw{M2C>7zbu
zet!J0Vz}b9A9u;dY*CpACe?Y^4-owk8TB|&o(?eudAMExVCq<~LADBmLMb`q0iJQ_
zEpc&y#jJnVBk2Q9mM2}lr!V+Vms`2rBH(x12zZF$d>Nv51uibYyZn0|=74|&fUS>)
zq|H6}Hdo5q?#W=uv)CeV>+NM4$Lo>_eDtkYHhcXmpd?v?m1Q7BFsBF#mE2;Fvky{Z
zEcNV2rKLqS33a`0Go|#eTe2rFKn)%<m3Y!K^h@>4jxj!d!r@{aGKG(WJZNx$2n>4T
zroMIUyjoT!6fFK>hKYjeB8V2JVZaQ%h3@6&bVq#j;BK>@JUYEmKyG}5?D*b==!tU!
zJw=qwp-=etv>!F{pxMgH_n=PqGS+qqGPErEq(dcOE8zCOZt+H=x-jER8GbH2MGBOm
z;SR1Xvp0PN(G$N#qxy^^{^#uzeFbVry@!dK8g7Q@u;m2yGYuwu3C_7dgYtHhw@S#>
z-DbSR!{$NbnLNogS}*_p?ulp(2sPNq%-rr<C_|3&>)P6tx;l!UY)K_@bg{g#pCEaG
zpyC+@SAhe)h<~mle)1UI(bHQJI&ufFHHd=vyw*KTH}th4cM7FI9cE1vJIoQX)^#r`
z-~2ru%^%Ih@pH&_?07^9*u&WMu`t(9e3Z0~4(B(2Z{mjP37@ZTjHyWiDA2W}xDf`5
zf9W01p2&*-$dKi4^TbaMQ2D572$f$y0oBx}{aTke8H!LhX7|#<`nM^gzJXoC!k_OY
zvR-tqON_2Eh;;zn_)q^_JVtYDXu6FJ=-Y&A`R>d~<V{rK{Ck7xFc9j-74tW`9IS9`
zVIQ<lVZnj_Hdewj9Q{B2`{!-!`Brn9ec;nF3Y<N$&n{w~qjBml<F)2##|j_wYheD@
zajQ?!9C47o?<(ag`aNbvYy8ZPV~(k1e<4O2h+K@SAQ1og<m%m-BQ`+;a`V$qv$jZ$
zdO5_Tl>5Y_$MG`FQeSLX2yJElZPtrb&o>?H3n5>9D(v8)YDK~0&$cVQ$0Qr{jLo5R
zN~37KQM0yS-i6^AHe!&J^a3N3sA}OaEt7wL&xhIzH$g&t%prY6Nu7@DTSBp^=Gd2d
ze~)k^S*qCBC63NOP<C`wSC0MLAMEW;5Fsk>7$t31$un{DGjY1XV9!;_F>DP>OM9tX
zZ-F$P?#o?Q4XGZctgJ>Y*Z;bb<W^gQSjFU4+47H@#&2V;0<h5=uWyn2U%pg(!@ka0
zQNtYxY|uLNY2LTQ;Ax7se|Z;LEG<Q%#)unF^|$koQ26q1@nstpSWd(9yEn)DXbwDx
z;uW#w3b5-)QW!BMfZa!u!qr`dHKbJ4hGLTDI`=MHrBIJTnpIOIy^xi1`(ps**P$Uz
zD_5u_C0A1Bq=GW8tGRhk50?dkQqds%ZzBVdB2jS?W#kx*&RXe7F*b<aormW}V5jUW
z?s)Hid#`k#13@swN!99~4H`n4onfEU2ML)CVDaK*w`EaBwGmA8E1KRqi-r#u=Xu5c
z0@U$~ZhdVAqTYUP@~&T1v)Wv1-Ome}0e4TryeGJK4zlmie3gFFE4?BV8!@#c?3(Qb
zcFuoa&1Hot(6?D}m)RE3_YS}7{fpfr3dT5hAs^c622WCh!M}IA(%iNN5gtT}yjk>-
z1eZJ!`O%;U^+V>%rv4O_)}-cjnC}*<Q_Amilx$ECfI0pQ<XPdTQurh4;fhVzPXci%
zngMuX@SEBxR-usqNb?pISB`Q~y}#S)Ky8!7rJ9omwo8-HSVp2?to!DV%IcXGM+&>s
zN4Iww`}DGFNtli=|IWhOk;i13?lwE}CSgpZuGhl8nYFdszmuBt_blyqt?hTcg}See
z?!wTpojtY@w}uFvm02v%$4Ou4@UZU<2o+>Ir}2OZ)=<LUMvBC(+;Yg+=`|w+jqQT;
z=;X3m$w$5aUgr^}<09A!LJY#gcwwEC2QT`l_ae3n6qxT)?{AJhn(cBUx#R?=ncL|6
zq&*l9g`CYp#&>H*MIWNBmsbqxJPn-1e^*#uY$$mcwCSLNxJfPny4vBCl-<rP-g@_k
zt=3XFoF=ve8-#pbEl0HV1x2a2anAW-78Zt~UU&BhgzeFxw5%7KOqK(FQB*{_0^iq&
zn1+4Eac&$isr(#*9D@{zxVuX@Zbc9*9xYbx#>LHPzw^~JaMK?Iq}#ZJIAzTb5DyPi
zpYDl)FPNs=&L0r)t6~RiN>Q)S#l3)s8%00UyX}Q5zuS)E>jOczogIGA*GNn+Sa;Ru
zhLiN=taBm<+ZCroJ$@>Y^=_W<4bx6k6zNDZNJI1elSbd+qU?#cjbvDNI_hxfs5>@R
zct%ano`_hWL;-5ratxXDuuPVB1FjDi@ew$<V5uMjx>k$%cO`6Pdd(VSallg<iFcla
zJ4rkp&@*EEYa~k-LCl{PojB@S@uN$;U~5R87IA*&3Y64l5Rt8-g7DFC$u_SS4DDJx
z3va=Y00&>ahYZNw(~RRspz@X$+y3<yNGk+>Xn0QqI-LQ0>9b3Wa|`&DW;yT(?#>Mn
zN}8Go2x1|sQ{u7hH8LpRzDwyI-WqV;41xCs_@%~^+>I>k(+!-jezzQLi#@(KTk;8j
z6?BI?H<H!O`4;aFIQYY?M}~ew9!&2b4{MZwP(v%^K5Wo9miTVQ5F-0$aFwZA-Jwe6
zh1<7Yb5k=rN@=K0MM#0r&`#Exo%>B-5CkkvweWVz0dc$<4VXJD47#bPpy)NR0NCW{
zf}r<`_jXiBWLkjV#=wUUFwplz99U2Owg}ARSjqpC{$u;)@Qg-R><v1>+N%uCq&Inw
zaN0NUu;U;7yYK_s_DaIVkJ;5sU8*mmb@Aa+dG1VP!cM!Z(dZy$2A&MRi{tTVD$VjK
z{RU4U<9DzX-o+|()RD9O0Izqrx$}vLj8v$32+M;>M`j?-_JcrUW536z#{s%U+iUSG
zoDBcA`r=~4(sA~rA(!o9=w_}`%%R81g8NP%EboI?Ii%`Lx?K4B$grMV*r_A9SNnSg
zd|?IATH8tr5}9w=sE&I09z*6=T0{Y2H7I<TMEFYC`=9j9i6S5#_r9Nly4HdDv?Lq^
zCY`sPWE;w$B~3u|2G{|Vyukn5qDn0;>Vb^J9)_~0PQijvkJ@*u<D58*yD=<|Sw%aH
z#*o^37pj}`cZnbm7_t4Hdpey{r1`~Q`9?0Qx93*i6a|#W=}Uh%i_b`rfWOilrHiV~
zH#N1S^e{dSR4*Udmx12osRmpxfQ1%e8=SO3Vvj*Y6bYD)d}T^mIBRPkL!$I6^1br2
zC+ykGtGj13Z$=@DZ*V@#=DE48acW<G#jUAvL!6FgJZzQg2AobN_}?j!ma9*pqTGPm
z9sFyZZ1u3}%@e+(1=lY(>aI9ixDOT2*oV=YBE#ku>L_3LrJP<KuF-3#M0ePw`AvIF
zPA}V1A--Z_qhn*-Zw9Ss&u|kffE-(k)*vfORW;lW8-s&D$A}=R?q@^gl;lYJMlw-u
zRN9s-K!NH0=LfrLM66Wgy)zxue^)jXzH};}VB2ZU;lXNSIK?jDW>OmTJp;Vq0rB#S
zxg0i^b2$DE$w+W}rzf8%RlI+&SI>HSb#~Leu>Wu&nnBLzO9=9ZRVQFTEtG!b5e%Zo
zGbh)(ca;Nj)&>r<`u<gx9S5r~AtOirpquV;gsT36d|CfmMU4)5n&M*+fQ_c)(MYr5
zLq~1x4&B|h$oZYd?TMCzAD=pTEdL~7AMRa>F!ZU;EAYSp`QMLF_HSXLq>1BzR(IDl
zyjuNNI=FxxM2_tT9GdWFUehNqW&AAqZT*3naK))n&o~slAeUCP`F4nyL9G;vF3jGt
zmQ!dO_n-N(lOzc<rr-_lUv-{irlWZ^i`c5oyVgVWRbqq_4X1H24R;3%I@m++0^p?>
zQ9hcVm{C9tP0m)_*6tdrVg^^Q3a6HA(|Cus3q-v;76!WpC*h4-!Hl)}m4&9Z@&;b5
z5A>osq$HffUHT`38Lcfocg=cO3s%&qQRx}bV>r~Nn9ZP!f;4u)&wKqMuHt)Og5hfy
zx2^7;&+y9t|F|D7kU<3_1`6_D^=f@ThGT$vXw6q5A!P>IPe5E2uL5eflnNO*NFo%e
zi64V(j-%*%Z#>H<x1O;;nbh-<8*3;_EpE^l1h0T47x`bKHBgu@UFx{4{&EH~>$%rQ
zFB=DSICel>vhm8dJzSB8%-KTO{BNsLQfxd%S64(A?a431_IAl{_ZGU!%M2fSii=TD
zq(u<UD{^e|FThq-hYwp0%kVi}HfEL-0RCudLS4R{%jnZAyN7xl!xuy$54)%k3-%p2
zybE%(?Li>R6Z_6X-ptW)Q%d2zj_iS`$o>53WXh!-;_MF6+PK@OX<)z@H^4YzxbiSe
z1^QWL_i!!hcQMbzwCrsf(P6Y0urpLwjty$hqS+Rg$cJx5i55&+kwhG^1;E9#l!cv;
zA}c8<GoJKr5n_;u+6bu_n^nIlZInj$9HIHA55~Ac(Y_^l8Is!0I)>ewZjU@&!Q)Kx
zT(a*EYNfjh+X^~9>3iC_Feo8FH@SaoDj@3tZgaKmG{$lj7@q91ljOGcV;b1h(`zJ*
z)h?_Gcnvg8h}9y7Tp=wbW&ft3vr_O&LC8XbyghfaEs<&=K7as5Yu!F^UjYSLAx&Dy
z2f&S08+^Bd9@?0$^%Pi-L+*T^PmI{<Qn*-YF%$mdxV4{3Y<aRs{IfE3#GWS4lIw~h
zzeM{KXpxB;GC;kBcU0Gb0a`r?{q^XJ{_n?hSf73}PaNOE96il0{Ogm2c8u6xgna3K
zucScbu`DNE4wku$GOt7H9cRi_=}+7ckL?$tjuEOX7&tMyyz$I<gL7h(GH3>u2m+sk
z1^sJ~N~q=EDnDD&Yam$tnmXc`!8?^C@(ONl6KIOrRO$VlCFh-{Hq6*y`MB`+ojpL{
zayk%qtw1MCNb~=(oGqW&D+Z~Z9d`w&3p-M438RsD8~>j2ONpt1`h!b~?=)B`+aF2(
zU4q-|f6AvJ{f5VfkYJ2qXkupe?1@FrFGOkTub8k~7BsXemN$93x%k{UF$?@_mmPFC
zK~Pqcv42elo`M$k#DpyiJDS9v?;Z#UG8c`?tn6$N2*Z-8RnDi1DXnWwwJiVj4FE3&
zM96Mf?>q2B6C3UFWoP5dmTfvl969Dgyq(`4$(T?S6iZ1;f8NkUZErAqJHwOm_Lg#L
zte;Pm<zXbO{}x&IEld}Gz?hlo-&?_S6naJ8hnj`bY?^ueRh7R)4G{QMH&XG9npH#3
zP|SJ$hW2$-z%gC;oDot|$4`!=O4fh68Za&adsax<wJW9nhJp(?Ozn}De9u?KC=RTD
zP7XNMX#%D0srNzM>!zn!7E#?Mo#KfCB57av#r}?x$rr2NBi&ZKQ&&-q{v0u$+Y1~a
z5Zs<Bqyuo0_L~dqdtIHJ+()V!Rr9l!m94Bq<01!RJVoCMaghRO)3B9B=^5p?1=2>h
zMJo%iN4o)zeo$chQkra@$k{$9W7MLuZ4~2CY(E~_;t|tmx;WcHHT0>i8k+ELqQ_!r
z!3NhpZr(LSZ<?#WU09ZjKN0iv@;Ucp)!IM<yxHEw-1BMeS7?9SV2bMgz+gwpD2X>l
ziWEakDFy+Tmz1Tz8<F91MW$tRa|mjqki~M##YG7!ga!}?14z1sa6YCi%qL7w?zo<5
zd=s+}kw<r@&M~dB81W9&>;Baf_k*SOVRB{^k$|{oTV58Kro|v6EY*dK+ZS&YYq06V
zQinDC#T_WaVY?K!u7+`)L}>BMx~Gy`q5^bvKXYBfm_#>s&q1687QMf^AGa4x+1wW(
z%d4(ltK&{T?(ZMQc>3&)Vo;R*wWs~^{oTO%z?4k`uVxl~g-Vvi1ki+)3uqL$?F!m6
zvz!WstTu-$aA^%~Pq%rF7EcEGQ7JkjZ8~{PZ@F6#_j?m0ORCE5u_0iFwuta=&JR-J
zC_%7^FPdEWO1=5P>2Q9&<Ya8gUgmsNt1RPl9UUy=r`Z;v$V1*i=z~bY6wU6wEO9cH
zYC1-aCslF906P~CC#UZXP`ozyxL|i<L(s*2q|5>0Z!66q!h1CXxd$vW9i1=1fdhjH
z6nw$QGV->ICnw5kwu^mzX<#NVZ*+;y&Sru6(ziq}$QGBTKIl_%bC)#dY*;y%V{0%d
zMcy{e1LOn@W%u6;M!RlyC<8L?nH$Q(ZYZ!fKMF^9NsT6^t=IyjLjcXA%5KcJp^^cn
z1W0f3Bu(Sh{E-Pfe`dw!dh~rGx<YnAvCT@l{^rVBw2IT|Q&UxjI<gB1Y{x#c*4kRb
zg8a7j4ey>_w(|0o;NY+6!~&&@COrVaE3~Yl(lZk2K2w|!tEw7FDICLZ`b9O%wxm2o
z(7`_-z|h1wOf`$oe^Xi6ac3x%>|=XrPU+U>sp%iEJ|^b<Bq!&`mwOJ=8U}6ncqAIi
zT0`d5GY*TctyNWJb+;pF8d4h23u5cIy@5OomSF`@`}X<v7F!}Oi;-g{V)HbIGYJ#q
zsb{eKsnZJSqo1&F0-HWgxYWc1*Ec#BJ2wJi+`e=kz%fYwIjcpHK);Id=u=RAz-jlu
z_KYvA+hUH(qQKltYY2xj!_mkPc96<X#HROxnBoaYAgJ=Jk!Qtr#hjC*|9+NYX)cz&
zAOEMCwZE~7q}lJ2vDLZBf?wIVHV^Q}kIY8~7*=ZK9LAOch@ay|kNdd$>DJkHH*yt}
z$fcx^m=7gdJ##esFlt@oVB~UqPe({b;(q(v2_&PaFqoRIK=pM#d2f(tG}h0<<@_us
z+q9=ASAB+QK}Uy9XGd!!GK9bXqhKk%^V)r9XJBCF+FBM@fnsFX+eaUDuMSePK7K4Y
zur1Z_S?^o>_|d;v*6I49LSu0|!&iuf9jL+4^S~Z08;OjSj#5;sV<_Aup0q%F@(A>T
zAiNFk-K>!_l9oY9{=8U?kxebt&cTKN4bZeoT3DG$5w@vQEGRB)GH`>FfKEJF!(|6Q
zi<d`6UcK*)+H<`E^zs(Xp+nJwX8na$8>SO*ACH3E55MT?WNBmITRuO~-x?`9nyFm?
zn&jlM&Uz*ux4HQrJbirX>$u4Uou9OKZaIe&CBSZOs%CA2#ht3_pq-7?)2WVLtblz7
zgDE`^mz2gjq@*NunZH4L`I^rRT0#cKj+%zj4IcJ}PUH;&_Zu1(S;^vPqpoOx`!M+k
zN`&8Z23txa2Z#~ai6f>TSDLfEWPcsd0nA~i>aweK7<vJ`9|N68O7g7>pB`xEXm1fV
ze3ii4(geg0`v}g6@Oi+z7nhfO6orSxaG;vC`3&ZDP9%?kNk&0pYh&jmWD!Nlzv-#U
z2c6UK6<@zNNFof}BUJ~NsiTB^?)lY2$zPLk&n?U~XvsOProIM#<n5_bTGw1WIXJkm
zOTfp-JFT#Kw7>snE>DdE<e1~xZ)yD}9|_DaM3M=-ai5bL?vsC~K!cXuR8+J#uMWyo
ze(eRrpw7<zA-mOmzP;*>pgY@>%u_vN4RtSQ(c)fDqytooe*9p$bHC#SB_?srba!v<
zWIYBc>#2If=XvO2afu21*7Um1*-A_~llH;(d&kG3{+l=;&pQ|kAU(8o#>i&)s=R(v
zz0Zu3-=9d!11uuKD<a~4r|SS6Tg}vBu3`~BYx|^Vp;zDkDrjWLuz{VMTRu-?rNKbk
zC5O=mdayG)yCevSi->yMex_aw<RGV$ujJ-g<eHn|f+C(>))8raUVTTA{RqUvqubll
z1bRuA|7%zn9|KpIRNg$up!}C};PLi{*X^DfbmN}vCY3TfhY}(URddWBM<=(mgoKs3
zW%t7Yg0?rx6%{|%FAD840(y+9pqo&nH(HWrz~XQ>czv+cNJGuZD8y-<S&lgCKF^L`
zJ6mej(MdTHYIJIxt2TF7xrIeb+yT?8keeh}oI$@XJEzp`JmmQL@;Z)HS4`w(9E%|X
z1u^Vk1G~9dfQXe53B(%$h#T8`G~_*9Tm%Jnn<-^*3|jI6WA|$&&QUrANcp`>PHAmz
z<(fI{NZ%B%e|6PJT$Ot9$V?EZ4ap&Om$p!#5@M8niDUb)O39+2P`wS+(S)AEXu}gy
z1$}NmW|QLJ;PCO%;f718$p&X+K-|0n0z}2KzLR?k3kd}qbk@}o?iT=5G^<cvZuXsx
zZLrI9s<2=i%zA<7^l7MAM;3^k9t`Bx+1}k(pA%SY6EVN?!4hP3)%mkzjDJ*8V|XIQ
ztX-+fj2Cb=jtbm?Tzol@CyCEUE5tdmH0iPsucVut97dSHuMuX~-FOBIAB;DExVsHP
zu_I9Y#@D+Q<whspC-Ttv%zzg}5f`Q)KIJyeJhj{pW=+jL{%x=gU?m`6(UCtA{?qx?
z&UbZeSmd(_={#u%S3;)HgRG8@VakUtTTWWK0)a-1EL9T|QwFtxcqI`MN=n0Od*L9l
zm9u{HP|27CLo^U3U2JMdHwQy6ZC!!VQ44IFX~ef0E{6!roV|Gh>Kim<=bJ^0hXgoS
z+rFS6Y4P3tWT%K84iJB4M?IX@U)5<;DK$*?jBaBPCa{#YIl;q~M5cFZPEX%WM{B5&
zOqI3U*{9N#pfScZ*>)E(C9ndI<@iZ(jIc}H;YY14BEqy{zUsqp7C?Y{S;Rk*HYqix
z$7L<x>NEu4JDJ|U*lPB8BsQz)zc%3Uft^?}>f(qiS+&kKSdww>>@);Op{?HD6iBaD
zR6_3+T1Y*<-<fUD7i{BqH8PYk*HCkn4+wCOG}}C6y_U50HusRG_b14f{?u*q_H8c~
zCMI9&qw2(iq-tjpQhR?G%z`4lGXZRGZD%)k1uHnRKVm4f0^tylKPP=&zn^l5I(Xef
zPY2M;K5AcV@db=8O<hq@r;EPS1x>5{ss7U#OOF9Th1gt;VwkT8|I}MGHCIb5zBpOh
z*FP#wzK*NlHevv}QAR5Uv2$u|J~Me3^_@(+#M*b)2O`dnh!XzBM;;#g>V3N&A89BJ
z4S`3sKq(G-$<171WQ?0K4Cv~)Ku4-sGYlJE((%@{mJVBT<Kq(oJmD9v9$x6JczCh>
z<)LF0Cs`l;v9s9AGnE;mfp5%5lgaT2BTI3Gd62NeyY<?xBfi`U145?$%aFHHgvR{T
zo=wvETCM_(svMu*o>~Ic3X$8dnz-yQ@dpXcut&b32C5@<j!xwC1wYtADK{jp%zBTL
zaIbqmf0q<V(DQdR_boe_{-tw-Ie(h^>jlvWm!1YmTyk%1#z1jiV<l8-YBuqe5Oq;j
znR_Ngi7FvY&?VW|^_!B6fXC6$Pc3d<I{pTSa)W|NQdjgmafdOvJiIh18-)->3mp7U
z!^YuKQg!|h3|h?T;#rEt#l@xL);w_uY?WHJZEsfB7|hs{5?Iq`EPuPzPHD0lB$~NP
z%-v{p@4lCK{Mh4YLX8oK!>JbMs)ml6l|Zyf3CQIXJ>wI9sQTqtXXiA>Dv_jhn5kOT
zGy(GAAr8+z=5i&<X_N@K+-{zX;Vkk9B}ONw8^hUN^Lb{MNcHwar)dBTz&WNHwxUh$
zmuD9T+Mw@oY5MBgRvat4i=_B?^9z&DjK+(21R-#1SG5w2VjbNSI2?}jl8R$@Hd;b9
z&m<G#fLLCVCmh@b(AxvgL`Ce>%^Fo9A)#GNX!kk6W+z9Xna&#=(3sV?u=fDHlls=w
zpb!y7>~K{v{z4cAc9gAyot2H1O7RqZBqatWmN{n{CJ~Xh*Y)L<Odj5NpNysjK;{29
zaCteMCgiI4cTq<NQlT2-#T5!jAkF_`tmCw@at(+h6)5)5(>?~JiJ4Z;NyYANR_0u~
z)sB?6n>Q#sX%s5|R#QLqYzgDCP?PPBu!$3C6R9iar{nQjSBQ8f5%kz(Tt?0%HmaNr
z<O#d^Ju|(_Jzq3XOolbXyN&_^sCkG+)L%q=X=<{jbXW;RIRQj50S+H95ASRB0T+wW
zJ_6?jC2|bk?5*jr%yCPAmfPOSo|EL;GqA%gOv$CmP#|K&xO$3l3v6gt`z&p-kip@2
zI-agpM_<=3=w;x+=GKo%np&vzYkba~3m`|6L46>;rzbuirPpP8_Z`R6ySnH^Gwv6<
z$)x?ea-Sr`b7RI&PdTualon#=1-Nj<-`7|=&4uq9dhJ_4zRSL<odTyCd_*#GtbpV-
zzN03#v$I!ahy&Z$^z`;5lkEHX`XasLWnDX%d(W9<>*@Kk=uFnk6>|=G_oU--)#+(g
z$45D$k%hyVzw>{xsGwj$ls&L_YuBymXatK=RFsX4GTQQ&cSMyIvufezdx&b*OCp0-
zUngJRlICI;AenJt@a||Z818|@m-LNhICBQf^Seu5xHLvVYO;<^Wa;v7<`0=0E9DL)
zUqktQUltto>IgXyFiJmud{C);Ey95t_%$+uD@6ggYkf~v5IbF5YB}HCDQW;E1<5bo
z(AB~h+2WkK7n)@cImLIrYMbJQE0S577h^`X;vC$p`&>It=#MX4*>&Xs^*USL#BTyY
zDiSzaucA^=)2<AkQjs$rmOHpxD?sCrIt`^!ZCjR$xRU}b-%>d~mw9DUaXig|UJsQc
zqN6Q%RgkyT<oMo7jYMIGw#8A=RdA7A(fzrbwXg4iN%!0bCe3}<c~bQm2fgBpiwksg
zfK#KizMtSHe$kuNo;62lI~3`fI&P(yHI@FIP3c^<*Iz=uh<A16<=`<!2ypYUkB={T
zQQQ5z&LFICnj~FU8Si!>kj;Ap>g=SkR7*BBe~n*sI7t4RaZ0kfEI&7od{L7EpR8zR
ze}b!8F+<3hJa2J+f|DN1CdA3e_v+wgyh}{X<M!2;&!64h+(CgldFjGn@JseFOLk7}
zlG~J8z4Y)olgcBfOb9k8mGxVMoFlVEZ<nk0YJIv+ut8)T9v+E^^<*IcQax>L>FIfe
z-uTVelb1LGy)ktVI^WZHz&J8FC?~|}EcnZaB34E?*nlKr-rg_T(@gP5$O9XjF%G)1
zPfr+*^rn1@g;f_iu$}TviZx--tm-#ooK$HY)K`+5b7m3)G@_}-%xrLxQ|~`LIq3%7
zeA;_~^d{?jtkT8=N1;yX#BR;zN@{b#n2Wsi*{|N*`fSj|`1r|JG!V`+>|T00{qh!)
zl<zOAk|MU;-)FVm4-|7V4%_kq&q-hy_AI6VP-|$bKKv<jVN}pkOYJJKRAYsN5iU1G
zh!H2QQkYi12`na~Y_Es<(`FWDJ*Ulcr_z$~o=Ly$b*-yM4*m?(fyDN6t9<L(jb65T
zA)eI-&6K28aYP$EN_7)rIKpjro94B)u|X#yG%Rk3`Tj%CB_}NP_t;f#zUal1h@Fr>
zK8S3d^X0tT3{yEsE7gAzDbQ{DX`z|`ulwC`W##G^JLv1zF!ZQzYK48Qt-pS1{c>^Q
zNKq(Su+utloE9{|JJfKLKR@!~5GX)?q8d0cImr_D4FxsCvbJgY=%^oC!}%^XPWDw@
z5EIgB`U)~83Jo1yS!3b5@|gww6)9SiMtKxa8o3?s9p30je;Oq7yErhWQo2wA0T;35
z9+}G6n4{7u?eI`GPdrBj4Cc+ZFwe`kxVXNg5cJi`(J-x+R8k1sn6CdVv(zU;PDm}j
z(=mj9R`}%J!nA(*5$MET&af&4BSjVlM9x0}!ivX9C0w1a3C^kul;(#M^3{N9+`7x8
zVA(wRvlP3jOB?l>au^K8X3%77W+{{P-J_=dc=_~lNrL~AmTes{z!m7K$1Q8FCbk<J
z1fX_!V4LEN_2<1kxwT;Xz}S_;!}kCUYcCe1klTT!mYUgI)mFgW3Iz1V#Z)+`V`z9#
z)NlR8BF}&hu+g3R5ZNlTd%0L~C5RaT>HR!J>NAXT1Mzyz&fS&```7n?AoBS(Bj_bR
zOB`q&e*J)M1Ykcosth_2$v}?F6XQy)z8B~qKK-4VRHXJJc5>`RojBRx&PvrE=*Xj6
ziogmq`j#2*aiAA^oC%A2oIW)xt8-(jVgbMVl+)JvOv_1(Y@UGI{R^+~3_(#y<%9WU
z#6GCPeaYKdfiC=A&O~3cHBni(YTnD^Y7bvHL3sDbzzD0BR?WtKIa#$?irx9I;}WMo
zqn<o=?|452lF81%?`D*F-PiHh{bR*?%*5eB8{l<Yy51@UJTQSA=WpWB`R5{#?S~gT
zd@9~A>)?vCwN;)z)fIus6ifzx4jxVCn%TW=6<*4)d-%?V!>py18lB_@TSsmtxb^l%
zC&VvZs8Hc$6|8VzBd!Nz59H~>zY#}=tX|02o#%XK^7J6j3^z?DR|@OLo^G>yO#osS
z;*-Jo0Vpq1QmzEuT|H_aTMaaQg`ZVON=XS|L_mLY6^!x$1WS`l745@ICL9Yj*3}!0
z?pH&FYaL<>7;I@H6?MkF)yuoIPG{VQBEzZC3OVD+Bzv@Y{p*`*akAQOrDqf~-xoY&
z<KM9rDR%eJvnOIUpE7_l)fhh;EaRhh17TR$qkUxO{;D|i#uDFARwP3szhb$r;S~PH
zbLZ`?#>VCh5wAy}A;Q76$9E&CBE-1F{1yhw2mCI5Ug1F6QovUr!A4<;a{Utmhv*`t
zA=6ND4${gT)@%RXx__q!6MM$Q5Ica-lw^BaiP9nXE|&CxiuHz=l~N!Gmo(!AA+FQm
z-skgHz)b1s>5gSnjR=hZ9u*GAyQw+$y~E{hUs7yJd=fH<q;_B`4jU_NPqSQK8t2#Q
zYM|CDs3U)Nv@x5512(o22&bW06yi=Umh}x28>6*FSU4Ee4s|qGZV2tjl%vi0*wL{m
z6Fb{*(;xM=Smj*5v|e&-d>OjGO-Vp7Ijbcamz@ZP7+t06<@C=^FWPb@?Yg2g-uJBq
ziHUWbhQ2#_d8`yF>VI+4CfwYI7)cc%CU=>69oN)EGJYcCHpSE6v;H(fLqcT8rBNu!
z7PGw*5ZW{`?SC^gwrXVJj1FsPu)ZWQq%<tRNQ<xDFjjP31+CVoN=bcLTwLroCIX-%
zWyg~@0mt}E-O%_ZdI7q4vS54);t$*}@ST%lW%~yyDJX7l2TOHD5jB--`Im+1sre(l
zGYLZ|a|LufG>`2^iQhfkH`v2_R=)$hr;`(lk|-EYj*eVWHjs)Y{y1^5tLLzDB7BNP
z&4+G_ltGW<s+6N2Vg<lT-)Kt)QdONm`vd|NL_q4B=~<~heq*`4y;~UB<MjHdRFgXB
zregD3APp-}#+_H;DX3yDl@bES0$h)XC=U;}7(d<59v-rWb?c3LMMdR+S$>&ds6`JZ
zkCl-Smq2PCTv(Xwa>=Htr6nPDcey^f&Oial^D>E0b!ev_Duwwh+AJ^edN(<=7XK`(
zYw~o`?iv>0Wd1rvqw?Mj@MMz#WrYiL-_hYaZ=V?ZjL>r^(XSr*WcmD#k4QG8ii3SM
zqBN=ccy>x&z1((S&ElyiVo#qwCEq!I&p?1l=c4l_P`_f-j9X{OoHgN2ChRo>t(_V(
zoe#<U-qF#zb0h7C!S&~OMDdHsiJ|>wK!$6pLAgq?-3mkTl=Zx>4&eBs2Y)&^!X+Sp
zR~y0w00_Lkpf_{oeId7P1X_C2pByz;rKt_s!eum&JR^_$x)=Ao);DEVrpcwtDoF$3
zvL}JSmf)?23_8Np`Blw_)O!|J904%+TLQr5GHlrW@|Q5bk53cn-oBwPj3CHBNg2%<
z=O9jw2t8cZKo1cn=Ac}xzNwUH5)J68w4P2YDP{0YFaDOXU!EGLASQsH^~_uVCEDft
zM|+$*mmyaP39R~Mle-N<%Y_@#EauhAB}^-=)w#BX8pTwve}r)rTzLCg`1qJO59EUb
zO4MHKBq#T2TFK|u=6UUgZ5trQmFgVs#OX-EN%C&BJY>8Jjvn;0p=t)LdUdXEl^xN7
z`dhShbEd5OwxoiLkJHm^rrTZ-led;rdKRi#dzzVb&k4d|x+$bHZ8d9~p*hpEQbB9Q
zrMd^am`^c|o8X^j=aWeXHOsE9v5hJc$?fW!4k#Au3v7488g8C^65l;KctJ*%Xqjco
zFGvBEM8yJm2gS-F1)d2D0`TN+jR0Ya+xm{m+|7;TbHZ7T0e$ePpRl_6jDe?BkVbKy
z^6Ta{c+V~rz^3~PclpoHp7?(3FanHYUt4+S%ZcvJ^_bI24p2pWf1=tR^yu`ADFxU7
zPR3rs@}nl{qu7{PRbJx*0Uv?_rAIiU!VvdCXcWb&uanF`KVISixg%$#%n!|qH{6`-
zP^kGeD_)wS=6m)3)7w`@McKCP-k<`a0wN&|Qqs~LB7(Hi-3`*+f`B-ZBP}fqh=6p1
zfOLa^bhmUPu`lp>zW0guTWhcVWBbFklwoG>x~}s)>MXHt%&{nudVm)e1_ZDJ%~Qj}
zicY!q6DJ{rxuXVP>eZmUH{N*B19$gIP;L&rbd7?fB|NHbO%1Z{5{8`gH{D{%n<9^C
z1LRF@O%+&}k8h#Bgj-lu#|g5x1Z;wFFhN0q0Ld}sxZj;9sI8?D%}c3C5#!=mEa&*K
z6clCWHB~SvDJORlc)gWHmdoK*v1SWsc!DEl^iz8+&zgs`I7YXoeVwAe1tvI+6xoB4
zYYT=gC@K|ISW-eKNV)cN1s<w8?P2Y`G8+JPMkgYj426dZE6Wvc*&$oAsmVfP2Jn!W
zJBrIXDT|1ttkcM`1eYSJ2RL5tA3A!V1sF}$)J~Fu`B5!GX54w&J}XhOVCI72N)69V
zU11*^n@x6Fd7fjuTF;SzMs|8GE;jm4i_LdjxG{I)ZRa$MrQA;fRdw_8b4p0W+;VrM
zWVBAZMhV%(M}|ffR2381X}P&=&X0cFKlY}6O)C80kqHe@?O>*-lv^#8GKIMz@L)H-
z7Vb3NfoxBoA0ImXtS82k;cHvgRcuJE>VJm9V;^wp^57bt_GevOa;@q0+H-g5?BteJ
zC?B68p;eC9lh4URr87HX+hyzo02>$5mQw@;?{3?AvI`#24zA0-Z9{Qz&ME0R+K(p(
z_1J{iH4gea5B0dK8;%ErLc|e$#iLbH0QluWQHiyRo^aKsNyr#pC7o6s!q*wK-RniF
zD(jUEZ8IUbBVKiroUAA+XIQJkv7ih=WHmYXX((%bgC|ZVQw~wKMh=VsS2zAV>V_H}
z^wq@SL$`&UZr9s36TZybE+;oWf6A`y>zhOYnuZ>Iwz&Bk&c|59%sqS$L6p1U%1%_W
z=N?jsTp1V>Dp5aU4|3R=47LvrBs*FKJZ&$onGVN)r;`4#v%Sp(3MHow1OzN4Iv3kx
zWM^}NRRgcUp_t#UdXSj1eUBJJ^K3aVrbx{SKEmPlFq|BXE9go0Ze&ti#-Q1%jYiPT
zdp2i#iD8o$L?i4A6`U+ubt)s1?rZB!x1+sq`2`hzr7hZiw+JaZ--IXPz!OJhqT8&B
zYt#Y)18Au-evTF0v!UvBX<y-<m^X7IypiRczhO|I268%`&-KOz1`Z;5_BoP8IQT-O
zQX`&>ZB&}|g1y6{GnUs<rF%SV>Z0o9qZp|S;4<gzuHE+c;X(GjV*TH=2z5~$OpBm-
z*)WH;C*8t2r{~-1(778UrA{#Y6fs@S8%y<R;Yh@QgP@)xqf1tt7PCjr<}opu3#}WJ
z^x8+nx6P_Df4TYE=2{;gh>s9uF8d|fE2-jCNyqHSxb%z32$3x0=y(lcgm0?S#5@%f
z4;G_TLLcmzs#|a_BZoE3?x{?gJ>ua#9dpQ!XNt~=VG)#ZCNYI4nt7|+#<qWt>cPB?
zjt6@>ka@#`gD_WRDcmjH@UyMoPJzJan9G<oKU@pxGb%p~$=XVRSN^A`U<zGJb4dvY
zpg!{QJXh9lqA}soD*xPjhOoCQUy@{1CmI?tr4)2Hc~Xk{I@58Y{Gw>k>=E*Pl5WLy
zD#X%!Ur2DjCo;J6(w_*CumG_xCpA+IqN;<d@^R?ww`CM$;xs?36Me!#qKk~wrLISH
zhl&rfaAvDrPiM1k!xrLZHa6^5PAd?sOY_7#Xb`A;c)i@6AL|#i8JU?|d`{5gcqNCh
zv3yx$YGKfKc)(>HB~{`w+&%xDgE@va>Yewm!BWW+8i8ZJ(RFE$r7~U9uGY}Ep)crh
z0dVo2&m-#Ry?`cz5XlU|iA2|Eiam~<t-YTctMSWcQ)oySFCL@WzCjnT1mcQNSqfir
z4$Q-y_om*LCFi9al1J>u7gXRVlFVe)Oj^}d{6nean;-liVf}Bpz#k%uM_*rIiDEYI
zeS62iI)jG)hg{$q*uwWjZkya%y#8BcdHp`PfdmJQP$(C#3sQmUD+UEgSvBl&jIX|S
zIp0j^va@sYny%T>()vN%eNXcSVE6s(rw*_EmIM4CC6PW_*?+Cd3_kSgol>)VV>>DN
zYKE-1)H|o7QDpFnhO9{YR>*d6i<Vgp3)PkAqfYq&_CUq))4R-F>BENL6?g7AMjg?|
z3OG^0EuG(F`<U>32e+vu!-}p+)jXX><EcYRcSjkk7m_Rf>k|d9lXc`64sT`~gX3Bb
zLeaek>hqv?c4ji}jHr&fQg|#Ct~2AkU%wjuSPd@m26~;EUrPv=O@Qz1J30M`O`g{f
z2dCBBEXz}${BnJzWMr!>$XoOnane$tha8JJ4VhAYvAIlo(j-KIT3P2DS=i?ywH_%^
z4iy4)Uo^9B6uV1OS(%H3L{*bjrb70uw|Goi#XJvr)EKd|mFZikAuJqXjp}koP-eTh
z9B$;v!I~Q8Dj2m3=($;@6qg6b241qoefH2THBbg*rR_5{Q3HjS`ypA&_e-P%8BFDL
z9;XHcnM!zoZq1E3Lpr)k_sb&=#<aS8Q1y+zH1^<;Y|93bEp#gcjwpsHb(=#C@4tiX
zZ13}m6;}?(<$~TyNr8+Th3xCTuRqR%aPRt8=itq=#n|ZazytOaCbfGDALRxr1CITx
z1WgCUbSHeFT5kc;{PdbTkODg!ObQQSY=nK?7(jF8)|V{kN7onTa@I*A<m70*W*qbF
z&{u<k%Q6mMb$B`UerlP#ga=Vr2ZKg6k57F=$~0DA>l=;SLO~G(uWpTVq85#2p}_*6
zEde2F<l1U32Z-|OYOgkV(7o*5LiebwT0cmN;52kKD*tFDdGMJSHp0Qdg9ZVbBnFh&
zTG&MRh(QbL^mOQp`+6m7u+hp}Wt#MeCKFR5+0CD3x^;GnQW|{6$#VICz4a8T%lgOx
z+F){WTicXmD{XkpBZvx-$)r;#K<U7jSiiivb_4PwU+iLe$f$usdN+Gu?IZS0Xsf(B
zfEu=hk8^TzBAKC3c!O`l?yW4oRi(xc<yRup(W=kE%&eGPwZWmGv;m7;2L4>Fss>c@
zpY0>&{74CX3Z+3{`h|*MU1@qvm)@grQ$<C^xepb)ACfBM#^goxdO<l{WMagw{uxvd
ze&jmd#)@4b^!6^tx88!Fi2%_8LGkqZ@VXS+$9-w7S@#39goK0wRi(i_j=5!f9lBF8
z2wi`S<@-bl$b-BPT3XupjEuGFnneq9m>KDj{l*LranPfrv`Y;JK}pT!v*qF^+Lpvi
z1U00mT}Q58#60io|IXoIoi{-3`6@+E{{`R(#)K~3)f;uSbzSo%U^m6QgJFHXMP>r0
zW91!m-lPp9BZ5nHD}R`*bHS{jvJ^j9kj5|dISwexm-jTlhH&thuwhTZhHA6^GIyQ_
zttHpmD_C62L@v3Y&a-DSk^jMi^ajdwh+N<So2C1~D=!a#UKl@nre+~d0|6xfeWJ66
z+#Rl%juINt=MRlLRGxi|WFqrXQ&na6klPS@ivMrgiLZ+(nMF;jwD_cXpGD|c4KdK%
zLOVi}HeinVbIg)0q1|P((s73PF&5x3aA4m+jqq4naUgPm0aP99CvpxOiyN1BSx>hO
znDoGA<1GZ{0>$40d~1c^lj|XJ_sT0q))P-33Q}5LBuz+QY$S8is!nfUKn_a_fQv2l
zI$z1Y*RqR_cXV_d!Ji0Ea5<hm1{xF;xMa6<Az1XQT)aU5BocEBH$9%>!}s8t@QrG4
z`y6@e`sl6{;wsYVlL^<w6)pZ8+3r#ut9>K?>^3^a4PV|0H_umkV@t`2`8@n}dK6(D
zfQh#{mfCJ@H6`=;F)>(S3(`1vCgzmlHxf~%KchcXk}^|sHB$NxBJq{cGi0e6+!jW0
zYe7LZ)SXzx8uSDh2NOxwix%gRMdUWBOQQj(y}Z|%m~}S)54uqVi!>=|NU(B8n?NRT
zf_1UGr%de)Q-W}<`|&JjA%fyuP{3A!{K5YkuocaLJLvoOA1O+7J<1<4Uu282kb$61
zo6U{rMVj>bAGW)h$rl_@%D^&URHf1f2UW;~JzG~Ix87t0R*t?p7YfjF-soIu%`$^h
z*v%NZ#?06f1)Pg(^M;&<*+$Cy%pyCC3=OgEB@MmKM0AtI7_F_Xz)UeD-_=j;x0dMN
zi9gZSE(t4Rd7R2){q*g>__J%i<*&avn99SRQUX#!kv6P_mP$^CP&76CF(R4YK`L9J
zl!L33gHxv1#7e7SqzGZeHUcD1$_r7g%l8o#cf#ITn48xsH~gk&#2E2lO7s*L`AQG}
zhnpe{smv>Nm!Xft!{UgNs@8E+XNEf!m)*g<<L1WC!rhYl^FWTd8l1VKBQ+P*B>-}j
z#c)I4T4+fHJ)dVkzrA+|1{O4b`xarTQ|p*olA)ffGL_xCZ8vh{YN6rowC@BKO~mu8
zfz?$D%VG`Lg#~Faa)kwJyy$g_MOU{?9U%#B4k)9COniKNpl8oy_?+j%6|(OyZ;sWu
zaKoE+ws6>DJEei1$Jl9M_68no!7)tHyi(<!GLnBcPjOu}qH4gbl09TwEXq>#NCeAy
zK|peyNAR_!YW{VU8`K#e-93Jdmrv|AY<DI;+;t>OY&6MHZnvo&<)ev^`To`_jFpXk
z5#$np(@>LJf~aEPp~7K_0y`<R1j-1Cz1R1`-l<)X5)j;VzbO%jijcjfrlw_3s+NWG
zRw@_SH#5-v!W@Z+yM}@kS6e_eRf(QB#uYt4vW>3I+`Oz-HH(8j#JM)jKz}=ptY*I`
zDJc*1Qf3^hl5CU_Z`y>LKPs@W*g)hDzsKmhMTuv`b(zqINFn<6+?Nz<&}v@ecL!S~
z7bA%*FF4J3Hsw;{!hpXKGUy+E14gMt>?c2nc*yhZcs%^>ix)Ey5%jpn9zv}2c)VS?
zm(V|HsWqnsyu9ei7R^9`iQ4kQQ;fm54@&ek+P>+;%q`|}nLkLWBKtJWrKrHj)DDLN
z-=|I<SV3xxQkZR(PK@d4p$S2O0dBueh^Oq)ATUqW&(D9#b?xO2C4B%rR=J(qc$>6Z
zu0l^z0uk1IGmiUlj4Eec8q7USRt0LPk>UPf1_pByPhH}zEv4C^*MU!YHtgtSU3Td2
z6Ttyj*b>P7Vu25@w#{>Rz6D-vfe4@>BCGS<Hn3}(-I?HLDude#ILL~_2M!$Od(V$=
z1OP}go`|R?iI?-mpk`P^3rMziO_)60Ue{s5iL)ZUx@cD=;<9AR!h~D3qn+IgdYpfw
z!1$01I3JCu@+AC(c)04NR>xE4hb*De@6nGzdH_SdR;jEmMa=rq2?HK15%9oYzL>QP
z>&iwF?5+oK!<s}fOdm4SP1LT#UKG3$M_lYJ)x{fWW{B1s6y%15E73O@vC-k8lMX+9
zfCsnPR%*qC@Y4HQYinr2mJCYWj=+BiBp}c1Xwi&n+sGe|up<IdQC|j?@hqxjhdXRa
zg>xTMY-w%$1jlz5_N|mb=Dh=~ZR2=EQtq92y3-r<9^;0)s6!taL1^7z7C<?p#Muc#
z=H(XbkJmY6^)9+qO@OBEI4^Nth5<dGI=#m0Ff{+=@J+Pa@zt;40}40ECw(^aq393e
z0`yU7gIVSrgpaX?RP1spM}G3(3w{BH!j7zv0yaf<n2)nlOj(aL;lp4IyuHRWJ<&5D
z7=z+cqfkQ4#}#^efk*J_`g9&1IQo<xKdBY@qNi^sZZfn0!|%jnhqnRtsx+kD{T*S5
zMowS2vajkhu<ife>IIn$=CFTQfh@X{V-NIzCyoAEc`%Lip%q6+Y-e4a9aJ%~g0#bC
zY^9vs2{I;pi8JLN^UJuon3Kd2*F=D<^Ylgl^yM#jsgc*$(tfk=d7eTtKTMP4GF~hc
z0!5&tBv6nnIOZg6Y|MYxOq8%+oX<2i0jykC!}srdlS$T4_%kYs)S3BfZfdTtUp@eM
zG`9<;&xQGXhuPdcY?^jWT^spG*%^RX@^!tmago;&MJ90D-akCt-7S-Dxq>C_xk4f$
zD7d*@fVcw!Dn9U#pq_Zl<Za;ITRcr#paFyx3MxE*IHcx`OL44*-<T~91r;R{uGmU0
zYG5yABR?$0u++_BmX%LLKv0U88B<mk6hsT5jZY-&R)wZK-%xMRVwR^Ny7uLZ+UM9G
zYHXNK{QZO5=!_io23I+2g=#4q8%0@c<mD-#FT5Xs&c)!-vfLq0ROT(0O40Fj^bK@-
z-W)ANfQ@GNy^>W)bS8SfK=JhTk&=O?K~5@0&ouU7^TiRX?yxEEpsvN%<`$sX;ssac
zo#aO_<QAG<SYKb6Sy5Yg(D%&BlURMFC)cfhV&dBGHPYi!&F$V$QpzQGF$+?ozZyNl
zd>^yMF$xyCz0S`7iK716-#59@;Bv#aJtw9kIu8vUL;q16ciT;5;^@5tM=%k-?r4Vr
zr6wr_>x%vU2aGqmUQ?P`nPRIi-n_?Bcht#h!<U$s`N?7;P<7BEN{o?|j4atG2k4J*
z@S>{A&vE@HQ&e&=HpXs2K)b3|o@I2FlMiN?1jv-;dvZfc$~xK=?p=Yh`D?|ML(wK<
zv@(fuWj>o5X^{$vIxR+z5(rl(NJuZ9#W3rDhg`dCMwvd~K~!i`4v!(nePV~Pe?f!%
zG){A)`z2L1sSw1~Cn@$=DMn}H`}gNQfP(uM=&AkW8co}=U`K9IjUX$p@j!yG3Ox=`
zk|DqPYPTt;$X{+F4+<)~V9DDk=_T0}1+|ka7BV#KtaNTN^daxw-tZ+FX0WtYA{o`y
zsdTK6L(J{CB0|YZV!I9*XZ{Y$z8n&G&!l}9KUw7YLm=Vw_Xi@zS`Smn5rtfpC(j?^
zn#x5qG7w+hC6*IaI{7Z2kzFvC!VcvaT++lXHM`|hzYHZ#Q1qG?SGeuEc>Ut^UHI15
z2#aAH>mOL(>jYk%^`(E{p3wC8$UswuaU6RguDzQ?5S;Zn>OoWtlV(zUblbwt>YBwz
zg_}C`pvf21e)BapP7NJR@SWdmVd7Y+z+$4tU+o}jx0Y*x3iBn9#8_AX1;2BV;g?Gw
z%c$IA5{V`OuqthR==Yc?(174;ETj1nDC6Y)HtpTF3;-wA<9QMnmCSx$WPnELQ|NQt
zx56*vB@S_K-~bVl8o3pw_+EsG;z*w+Q>s+0Z(;=Hs^lPCTSEs~_dm!d-TRIGr96n0
ziJnX;8yAfEhGWM=++vtq{n||{Nh6(Ws)nBio;|R#&ZS?dK3{Y;@9{xuAkiInyvTlY
z#B8&|Z$LDmJ#LL-_xj^6yu@Spv)I?`^;k(@8yhf48jLg|%jyT`Ak}Y{?J{v-U~_@9
z;KyYh>RnEp9AV`%RBG=@4D`JPYQ%~~UWJvq;3$~&SV!7vC}T5=ZFlb1<M`hd_rLp<
zCtzG7lXSvXgG90Cc%C=z^p!LAyyqRv=9L0@9dfCte)FF9*~OBGVEK#{xf=8h^@>BQ
z;zKR{w|AP&g-Gx<tW3;Hm@7;Tdo4;_UjkRkbsm7lprs-jM0BTkYRQl&1RO2_nXA|l
zG{G)wCGAF05wsqyOVs5Ow)t(v0A;kEFZlL<_-N3s_TN8#bcLS$`J?~4SN$9A`ET#_
z|L`in&;R)qf1^5oelK^azAtE4?xVOkG5QpLIIST7DWxJtfiX!9?T^nt(!V%*d)1`=
z{>9&C>(4j&Uk~mpNX+^Fd!qK<r|RD&f1T;q^=OyZgs)4K`VFmc84avSkIKm6t$3LJ
z)dd9A?bXT+K?(W?iwWwEuJma{kO(yz9!d4F30LF0!Jyx#>*~lL-yT-O?mywV%e)iC
z5V<0~?qm_qSH3L{ZUVn{wzfQ{U*7b?La!lReRk}L2MaKrP0z)TMD)T^p4T2)3CP_>
zX;fUk0Xd>vo96!+MPuuNP{_sv@PCJ4VO<%Qe1?LcfZ+D2Xsdg0dcRrNlE#uFz7<zX
z)8M{-9yUPOy7hRpg`zredYYO##(weF=soxi^L5`Pi{0HM4D0xHEPS?mqN=NVvAUKs
zoR<JkXh~tGRriszo{ThR$h>h~Ag~&=yF<0bpo9>f-lc*akB{PSx-ftRrDm=D%J<U9
zeiuSR59nGHh;*mO)v5{f;IH4za1+?L7qYa|ZfRrG)r#U9)srhJC+k(bGFCdKoHKkR
z@9~wL<F|)rGsk@Uh97l@%J`-VnxGu;<<uMx_2{^*hsfHTms^dXV=VDo1yM^!1HrG1
zcdiH3lHWSBnPcTX7daarjmP3=)GDdo<-Pt4hDq-wRhzoqj*_(@&1=+PW+X$B$9Zn@
z*=&o=h3827Ao8m*s$e6NE?4u$oZBcQM5LG5OlYau3OT^%d|D40>@P0EWq_TkD6ynn
zDa9hjcHi5oU(9T72`>Or!MgK>9>D9_MT@u1QtJo_{h<GObaaHr!hA-$ws6y&6jR5y
z_Oh-3bmX<Kd5OBiLrOj_>j&vRr!{4WU-kXGp3`4}tZ_<p;3Th1bUC8jwssbdIdw7L
zcnBDahNl@*n<X0&A8wUaJ(KQuCMWN4l=E%x=g-!xEHL3PYIBkr2OXdf*PyTt&Es)G
zdHI<Ycnd=}U^e!(x5sxG@ra0Ukv%W7KT;*+at2j&Dt^w*;S*zz0^T%3VRz>iKwymK
z3SmnOl|WsN$8vD6?Y6z3`YGp=95H|AzdS9B^jy&`3vRCH>1k;a;^G+ZH~Y-K3nX=<
z^|Ph+=A@^eecw(8^!O!2sHiZ2=9iWC=~Jcipt<*bN1)ugvbM;<ohokzh_-d;V%^2f
z0Pc<?VN-1&LE~eml_0lWGqdD%JB@8Kis!dE@7>Z<P<UGwW}|D<69;cGW*aHQ%|S-?
z$79k-8(yhBvSNq6sQm<1tzRd{Wo4zHiw2<M4~$oI54G;!#qFB0MM?qcLC|s7{mZ)n
zdmFM)wKFk34*X!$>9eq<o<m0$WDya)=jVO_w^8OywAZ}^75Ii=0M`@bH#O5EXW-Y&
z8BF4_chyTtu8!)|e9pr}{v{u=w3Bhmpbt$w61kR~oag9gHk`F!8~8(L;j%rQZ1L|V
zND_+{JJ&bYx{^3G5d(ut+WD2<OjI17Q@+G@ndDEEueci<I~Y=`vp|pjVT)P4QyI+0
zezye&BB$mQG(5TeN(6$^4f@J-ZB%pKJ7;LuTH?or1RpHNzLCm?f=Fd{Z{50v>=zgm
zbV*Lo<K4V&&F--1=;GAX9k;u$s%bnoHxza03R>!PI@~g|wy1PG|DckC<oogc_u@TJ
z7Y(WDN^tSEEUvcWcj`WGH7Xpk85g5*+Bqr!^*wWpW_5XIOG`|X2?NgCgc8og^_QS_
z2J8ius>k-iow2&p2aFH;H7t{Tb_xuMiY&`Aq+@imcqk*@VdJz{yX{gM8YoLO4R*u;
zg)pQClx+Ats+}Dy027U2(fOR4SI89JNx=Rd-Pq78(eRg}mV%Ok`<%wY))p2-MMYht
z_R~_8g}+oDde+g}{z2$Tu7Y-j<Eu`TwmfstL_|s&_jIz}cccv^U0+*6f&h{LaAWP`
z(~a)X#vqLAC@3S=%Bmi;8pQw~28vh!n15Lv9n5S-Y573DmlZ3Mc@VvL^!jx$a|bwQ
zt;U7(-;1|dR{)=^*v~e5?_LIW+xd<lP;IT?--AA8ngY03G5b64tgY9gBkY-Zyje8a
z1%QVxOKrS={M(FuvWNG2>NQmHKvb`@Q@CQk9Eq^_#slC=`Tp)Uj9_-|9>z}wROl9#
z+wLuc**O4Q|2o`I$yOT5`8Mvh`|H;)g#oteni@^b_)rpFWZNZ%!qmLli~>nUygq{4
z@Ftm5kYvZh*csI`wZDGQ9f|=xw;aqc?(h>8)v)sB1TFCnJ|o)g+oZ(Ay;+-{!$4l#
z6`wda+fGKjEbPAQE0v*9YJltCb_#?v(AUdvdma#-*~}2bvWSZ#E+*dA+>(>0%*8om
zsQDClzb{!78Ad!eH;-!~8>gPIfFFg&bAZreW@H8oP>t>R=Qgv^GMB>z*b*I%6sWsN
zUgjnUd)DRG<vWg`L!jnjH(j`mvFCF>Vp5~SZ>mEI0shj%%+_`{=;Bd=OmJKFe=`yI
z?IxAIu0phkwefLsv*=DQ9t;lkTmrME*39D@hdTeX-T1<C*8BpRfWo)b^EA~_Nuko}
zMt~?-PJYBH+2_sfo!5A@z61!nZmpyKuNYm|Unjs6HnPFMOC7S*Z~+W9VI;hthgX0i
z=(=x1+EasqWw1);0w^o%<M(*C5S223r00Cfi+UdwA!xsQ3kIO?k%Ok_tvAnX$m+6H
z!wqYmXT9HQedZ$H^HNg?RNV9$TH?*R?a}!-VedSFUjxhsx`iJV9v3HM7~N+D(7ESV
z-U}*#=icJy6fCMrhl^&2iHQRPh4s`yQ|h%}{Y9A);!iR6_H}DrbvW3xYCTk?E#W0P
zTF0kN#?tw^Rh7oOLE`?kX4?jkZG2oXk8J&aGsf^lmvR!x9WHa+ZBf^V{;Woa7c6|d
z>>r((N!_6esAKdfY(hLBp>dk;eH<lfo-o)?-I1rPb2dBB#X(Q)F=Pdyg}v#FPx8{6
znk3QnA;89tj*nO=t_Tf%OP{YrN=W>0swT(tkU2_97DKA%--a0E#CqF>TVG9-1Rg)P
zvg|UyTpf_Px#>gD{~L6U<eO0CAwKj@kiSk4m`AFQk3AD6BJPrLB`g$s@iE^;yRO8y
zexT+Br~#)@p$aYQgU=&lW!~NZ+XAi=dpV>??Ez#6%nTP6uFJ1I`h0GpZD&q*yj=cI
zd(E7RiuJ~ZgZ(bEuE5kt-$v}c>gsff<3~?YztK`*VBD5*R1Xaf$#_l&l#gbfo}OKm
z`?pcNI%pH9u_bl9XT)@6fTuD}ojsIzyl!rdrIGT%_;u@2-GD;@{14tN{<7R5m$F>&
z9L`ph2fhwO2D{4_EsC;@w9G|uO-oC|#x7t6Yo@{mkvSnGQO|@f9E%iEW7%zL*OeOp
zqTn)l3fxn*Bj*`DBG0Wn{nj^te%hemp^bMva14KmWm09<hM?3Kd?-8s1@b?;Hve9x
z6o0WWqk}TtKrHQUtq2xK2q{DD1O2NU*8Awi%<1Xg*(PJ?(W726tot}P#K=%zUqO<n
zzKe^hfr6C1lm%e=bn-R7e7WCJNO5T|Pa^E;>i=+3V`TlIyON6etL^GxWZBy&$acOg
zQn9XXm&`Xn>*D(+^;9k8*#y0t)SIO7Re6@yDV>i-{apxe7D>#isL>BR6Wcx{HA_0v
zBg6%1;9Ni=MoOKaPT?SQ^3b%DcTu%{mL<v@^GqTGJ6Ium3kTgvLtFc0h)Pa&wP$dX
z!LH4j5_4XDj&kb)cb@Ly_Wljvf^9Y^3ZWTjGn4>h)Bl_M00J|zGc!%qE{YPOJ6Y8+
zfwy6QLQnuA2ZLAsYD<8R1xko<ejmixJEWU01UmzG-rya;eilzi^qzj9;_Uzjz4Gz`
zB|L;Egr-7<i;IS0*!*)o+436vO;cCMok<r=?Yr)m=F#lI)zMX=>qzrqHh(vG=-QLY
z1}NBVbkb!=jr9NcG5#G?CwHK~0O(Sa5`MBiaLKm~1v-$goT1VOzHEhT`h1<miY*|d
z2||R|8|hTK>ZHFI9#qk-aD7GWMny!H!{cRPruWtCQ7H#^Gccfw*gkus#KtEigaSG8
zoh_&O&lwsv`um&8C%%)H8v2`is7un-)yTtAT2mUPkt<|(s-|cA2;SxhRuIC30URK_
z@~RP3$Og*#{=t#@g>4%8m*woa`DdhwG{_k6)jonwP%ySWAcRYSZU71T4|~8i*=8YT
zq$zDFp_v0j%U-MVz0(l%jhZTn-$R3u5XdBx`P>A~4{FM_9XKyd0HXQBz|WMeWWX_A
zdGrsfj1h;N((@q=htX!@F(x`8q3z`vf2jaq5X%2l$VNjGs^wj?Q>aC=W@bY~O1QIg
z5T}=E^y`3E5|&u))xUDvPxK3~RbOlCP>=A91ncLavM{OiBmq0EYz3YC>UNWY5n_xG
z@v$-&7hu%s)3Yjf8|d*F6}uDZc-$WV0Id>@^*xzj`DevR>IK`uN3w58MNEeF1}%rr
zPLsXo$nLxD9QA=}0gqiPizi3vp~a_9t^ztuaqRRNv&|(^WV*@0wXr}d25NDzK8A;c
zkqJ6}-I(?1anMiOG**yz;pXL+2U6FHBE&U+Kcuh1<SAuUYu$Ii-rQ%VWDy0pB^F=o
zZL^n7Q3|Q$c4zTnjYnOX&4EB>P+;~kqayg!qO{S)#k5cj#Xm{T5Q2glITK_x)^k1R
z3)yMHItnTnJ&xoPRJ4`%0hK6pF+caB;OL-WpeIqVW_N78C5#xbS@B#<;VI9phX&)i
zGJy_2^VR(V*OWTY7~(<zN<WC&JooGXQH#Dzcvlh>L0SFKk@%uJWhRa8LK23*`g9NM
zdN?&~Fwmg;?-jgDo0MC*d*1b5)RpY$`n2V*qzTXKBng5BYkB!$*iysXHdoE@+*qBH
zqEVsU*x+ASkYpwFsGqUqQIqaF5znaRe_Adv(Bt8;ob+i5udS@`IqbX^PY?am-9Ua9
z@G?jc;Dr;d-ieOmqPxgM*Xxbu$s^d^n3+wA+D@L-s8Lm(HDKr~*h|@u=00u$%+cu`
zbpbYm2~Q&<v1Mvv0@7lJJHhiq6N5ngxUlf@SHv?8VqB7ekx4upY#Ml5tAw?msMm3n
zs<~49h*f5PmZQBynFBJEHWOj~3JENKf2UE56LzSc&J^pQKsfdUZtNCpgt+#+F<rRm
zHR4ZQFus&z91j(h8GWz(Qd*j6tG`{+&Tvz*jg#B@j&g6-VEdRc&jZ4^HQt#7Gl81w
z&&Fn~2`y9#@~JW6>CT<+<`kEy=-zyzbg*Bl@Nj*e%|WIs3`Uq17n>LJ)8@~CN76uI
zc|o>R&~l18HD>rntXN+7+P-_saP1qh#`!66|J3Y)SErmi4eK+Yq-j-rNX5b#+BHbm
zw`J>T(7)fFQ*iSpuq8`&OO0tbSQ&;^P*=HWeoa%z{yZWL$SW@{NgGp}_l-_Tf-QeM
zTcKfL+Mju<tQIVQSu=h01lZr;#MxRjwAX-ZQk@14P`<Y1<-hr3l;OJd;t~?H?KeRb
z(vCWCXf)!A9_9dxvZCP={l2utOz{v6!5L$93femSkA?~*8W{uTZFRg>-C&ai#>VCG
zT<J8a3<bJPi*>$4>m7&smBT`(4<v5-rbWC!awDH85D_2!IDMeH#tQ}Y<RuH@K-Vwb
zV9m+DYi87o&-s@IEeXk;us62jo;{&9u`-MCPHRgn565@fB<2+80z{n_s@jd&Agrw$
z5P8(ImvuN$N>NcF@%8TmgDZ46k^J_Ol3vzbw}>%ffHE)(V56A|^uQcXNtqs?GYLK)
zG+ao~;GlBqjD8cW<2K3@2gAASxt1?Y4}R~WhEix-kBpx#=a;fJRNo=cKba}u5A)Nw
z_OQf7kSd{*JX*2I-olV<Vydy2=Lvrl)H3hk){J%i?tL7w^UT~qvrDF_^ohkwI-H%*
zgM$hF+FB19XBSwLRb8f5De!p!nWKucbA3Y^sLp_R$m_Q;qDr&5IWVDAI<}L)?v$T~
zpMyu_{4GXletJ5)nG)ggXUnrbo$T;rL9c$kq>;s&Tiy95%*@R5DQ5g8MaRx4KRZ(M
z5eU7<eU*2JjOPlk{W^#&8o`fwe_5Mmsfncz_?+zO$`+<iCT;X^`GCnTc#MqQt(}#g
z+YMAt^%shD#svjBP2dypplv!Km%s~cGeUu2UGZQ~0?PE;=m*=|g5@@wxdx`JxyH*4
zPA@*;+$+J05`FA^077HrnPUc4I9fW#RnZAU+M{}OcN?VXqgKCf8ybCUFDTy3qk$X7
zptgt+!<O@EcD24eDA2w;ViNU|{T}HRktY@4*WwiMrpag#*Zzh&3%KR8&ueRepco#h
zh>GGKMl1k9;^`4yRYL%v-api|jHa<L3@s+)OzbA#l_X8nVy=sdUzr?nuu2Y<283aW
zjH>{C(TG5w6S(C|KCKO(o}S{fXmhb~aP&@b_j$j}i4<7z^z<^EyH^SZp2{I^-Mp17
zXu2`aTNW#GFOd$iU72+|T@}NW%vO@5js%DU(?bm<Z6`1K7~?h7;I93aHhj1!#gd)d
zJT<U6jp{UB_LXNkwZANL`1xp5(q9nW34C=v`SBx8Th<R|9V;JEb(&LbM|Uli4izDw
ze!^U50i(JapZG_-cmX})qet;wj#b<Fnm%Wcd&>qFriB3wh0+cQEA;md^s|E-c4T-g
zF-CV;_$6UQbzUZz3H0e>ai<X%=Xmu^$RcW|qo=Ig!<~vM17s%LzJm$;uKMXuuP8_P
z7TLgP`+1bz;}Hu;Eit{~M*}fo)vm@qwfg8(UigJ`fal0<S}*2!)a4nW=AfyLqSuWJ
z-5njO4{@{;6KUX*RD{7HVU#vSNt(NURaHUj?f){b@DexnRqhk{KM@5JucRIB9a}mB
z`cPpfci5;qL3b;Q?`^`R?co*ZrgxIf3F68?W~YbY+-w{EG|2Vo(tZAnIV?n)Tw>|u
zPf~Q=A%Y=UIBJ4Pb6d+vc@P-WFHSmGKu`*#*Sn%bsLV`+>ihmZ$LztFpO@F^=@}wo
zbLXAxv!5#)`bE6L-oHq=5-5qtHaAx1W!%EI1lO7@j9h^ZV10$|ItXOg-D#GUn<`dS
z)zq#o|2$)oxW5=BnyS(9NRU0JtcnQYu!zcGn3^FdzcREOWB*}jA&}YPGO+gx%>MX@
zg~i9!b$N}Y%=+w9(K4l_pqO@v<L;}fs+TdFze&+T%@UDmJRD*$9fALapJ2@duw>1T
z-2>;Stt{@q*@YG{d4j~n$$3^gsoemOJC=t6zzPfN;fmRud@5JVKtO`)?go%B2+QTr
z*SVZ?B4w9r@rQNW00l2^fE7K!a%u#%6+06E_A+V!I-F-_JP-(I1jhW}QBzl=@2e$i
zXnw$wfCc;J>?QtzE4PZDqauqFYyzkvR8zIq;|@95$#iIfu}K@uH9GhN_jdI{x>oQN
zZCqSV)@}0M7dz5N+3PMf2-d{_J)cQu{KUZE4QOIw0_gCG^EH55Zj;{ix{DdQn~ar~
z_~PD=^4D9ft*P}CkeQ7o2`S+RUItoI>kWX9up>+l5BHtN-bE1H4Kd@0S1+;$fj#z%
zi-8j2^|@0hT1X;!;owMxgj|{%9G#09=I!NERXwB`MravW>ZWs(FZ{Yp0N#fLMfnNm
zP+p}}Big#9f4;N{!_TmAFxV45d3|AVp2*zdZ}|Oyf)KhbnfQ$|3kNo`gLbgP_>Gh2
z=YD>z99GJUY*dsJ%;-((WGBp@3@n<Z0-Q|nj)lSDK{bzw#`W65f4Wfaokm_-3c)-*
z^Z?M~mCWu*LgkLzqIQxim3Q(L=y0+f_q3YgB%Bz74%V48OCJbPM2MSyS5m!k{d#2G
z)4y}PlP70&B_%7z_`?LZQE2?#QmQ`?i@(rR)P7$6h|-Xc*Z7QzkjTcQr_*kx3Vhs5
zYATp{xZ+qD|LGH;la+Inu?t*Jom-|44oZQDfzQ9&#LmK6i*_o_9=IRyhi$?;jI6j!
zrzW)(g~eOkDVE3z(z%y`hK`X=^V6UO8hXZTCmrG%0ipGfaZh`8Ztg37?a&PC4N{i6
z!eDU(Cgz>U%?>P>n0>|1kTP%glWzri-I_M(%WG@dpDGU;q=||(m;yvc_Sd=ZEx38l
zG^~DFqX+n8=>QHu2*Cw)SX{VygzR5$YpZ+wBla73B3P(RgP&bOYtda~6Lb%1YCU_p
zK|{-z8`@-&$m6cWCA3le2q~qmtnB1uzl5a*<O_6~u=8%61CSOVFQ0w(or*?2hPQ#r
zHpyME-RQ3-7V+A6v7A9*N7#;%&6gIJ08S*FvR_(1l3e7*Vh5Z(Y^RcdUT+o~e*d<(
zrJ{r3nbH(ZN?+FcC}Iv9%KB7YX}=$TCqZY}+$oo-%c!`iz^mP8F5*QWi;bsj{=mw9
z<wjmr{HvD(*u1y2_xBt#Oigmfw&;<fLl2zsYjY-4?$wmI?=ajK#oTmX82tR1fGH$I
zv6^wrDboJbpwe?i6lj}sY)*feJ$fTX>0E;YHV2vWnsHz#o7--sy_npv<_a2^!<sgG
zX|7W_TQTgj2M4xJ*VqPLkAq?ugHLz0+x5o;1O!6v%MgLvc$w*;U)pSOCu4)?p0f++
zO?tWDz{LcVkHB1ni-Xs;P`KFKy!=BA%F4+BX-0HRnn1@)xVnZ7SDbdPi~O_}<*?M1
zpId=c=5DUNwYR5H;m*Xn{tP(Qtg@E3$&n3B4Cu)B9-+VOaJC-XiFL6kP=gp5bjKm6
z1vAQLxat-jA#Jiz@uR1|`lrUdOT<`(U#Lzzy;x8=zxWK_4^^1r|Hi+g*_M20CqHGx
zn}=Dpgr{uw=3;zd2Z2A|X!!nuzjbVvVWp*oS0YCp`r=rb$*A~i*25aUX&m{}36=~z
zVz8$EwSBnblLcEIixPMGi6<NuB`?WTFDYyKV~t*kB-8YIGyW%3yeEN82AUERF@GV-
zF*$IOUDptso_pt0tz?tQn!64AmQm}uO!IcY8DbePNoOu3GzkJ&ObXRO7(*#0`(rFC
z42fI?FZ_LjCZi&ncrd_Gw6Wn{q{6}a$j!1UWftw)9e9{fO5X||%sA4V<t5Co%|x#7
z7Bt(mPgLrC(1xR^2IStd`yrtRATo*90|Ue@dhL7@%eZszAiqHV<BW;6hWO%)|F3%W
zpn&W$BpUeB(2Tl)$ZU=jEb+!OS>vU-IRM?5twqZt`PS=IpU;7Tu`M1NxzSdl5S-d<
zxOpQ^zvi(GYXX_x*LdyARUV9&Yo0-${viayhZ4mpF}Ge33XFk#{SP-*NC)HmdR@+(
zR`wW+&I}5Z7=ayrgU<o1-#B$KWY@sUGoH6emrdBiZqOXRwW~ITAkr8_pT$p_IGqaj
z5RvHvkgX6@rOS@_`l-)_>g~N^VPd4Op}EP(SVN?tzw3xZ8<sB%gzdviBL|pFw{7(k
z+AgexgM9N7Sb4u~sYI|*^nN*9)n;+YTFYcgNWFQ;Dt1C3#a>b}v6uaGAr6#0v~}7E
zv)b=9G775{Sqa}wJ$3Z&EYiL-rQpE^P#aJa&3e<6=+g}6c!)#8fUAl@*WH8gS$h34
zhb)Lt;U@8IGI0B{+zeX4jWfB2f)15V?tN93Essi;Q6M#%sT*LVhs)yLcg65F<GT?r
zfEy0^RYG#z1qfx4G?)Lzdbg;_et(BLHl?xQyY%FCcB2{Fqz(9V9P|o?WU~7>or|`>
z%Fam`vfqU)-YAIuAuB}oy?)0v!AZblAedC<eqNq?S@F4R5@75?&ftC0Wp(3KQ*_a(
z{o#y(qRwqC5R`E5DR-tTvj9ckogIUP`xE3b^5?j7u00S0gbB=*6gciTf?f{|s`x)4
z6Mtt-{*{6r5bjE4v86xjCP-o~tO{05VKx)6rLzQn=%_NT&Qp_%o;Lo(yl!Hn|A&hz
z+T6t1xQ}+W=Y?|IjW_LFC%+_k6-RElOWoPq51BgCiTzcwJC+YXbC6{4FzRi35T+EZ
ztKH&J>^CE}2Kb4`T&$85MqI_&qtC$l;x*5G1~6_#-HXm__yEEb9|tc%CJ+z{m80?5
zF$eR(0xy*42Pd`p;fe$0T1iT5C+n(XH1WOo6tBY-0StN8Re3V1!H9kx_*p2xk!(3)
z0{tE7@v=!#Krc~n5N4Gg!*4^&avWKj-{Bb;F7bZI*Kqj{L4vQt|0KMN{#!pGNGXGN
zYmxX5)xmFP%WZLFhtS`@eI<oRvS8!9;Sk#EzrD5fu|Fx4uEyMvFS)0M{wh`VlEUBn
z+`mjm$@X?=>-)Q-N9v3k*WR^0Box$H=so;w)TZF#5{7t?)5luylsaR6N`?ytaxeoE
zcgh8<s4mqD$eyx{qG+Us@2>gZKocATQl7Q7)z&)c|FNXF)C}x{Y|G6FVZ)ir=-K6&
z7sm}Ej5l7BimMqp8fteP7Os_lRDzbxESoh%mV+bXlL~BKn7c1J!rSK8mWGG=A57me
z=}sD$9Fof0n(ZJWB(#q2GP&^e1@?~*<8I7(r>XUi)BDgM5YyEJlQ!*Xb8>M3Wo_|~
zy$_)2|GQJ=Q}B?ylpGT?ovdU}3j6(QXI{{AC52DnV4frOB`Jq`BM8ts`8rkBG7r=%
z4Wio2j0#2w)Cc(aM}ZFl_dX6WF?Mu#EWj$0Ssk1`G;hVd+UsOwAxoY~rLc@v$=61N
zcf{nnS~q_l0mg567yP(a=C57>;|jp!U+d@yYERG<wK4CSz>k|^bOF^A5*mEh{THa{
z>Q37;<B61w3a`u&HCoI?U8!Ph@&7PKgxmqA+`XSP6iP`gCG;gnLk`Ni6sE`*ylGwT
z{7e88{8QWeF*A4XS|f7<&H4R2Poy6*osY3_RE6ps+X^kCRO^l$*+Zn-k~oQ=Bjm@R
z!G1e{06KpH|F(E|f@y-QtI~TB@*k)5!oWOi($ke_cJ}2>Yv&64LCoezm4k$sk&>$s
z&Xt?tOr=MbE1_$_9tk8EcmXX1V9UUHB9O_1<uE`W1iY<e=y_G`+%F~t&(3P@MnsgM
zMq*{J!~p`iRNdaeCAltTt99m@?#qc;K+kq{phBubK6WGhYr}cgBd4i-DJ&Y*KUjD9
z5)Zxtg=|r_=V2a5-9dWn>guim2lxgX2s|MEhkhTMt?WuubNMh(ye6$Vdi@R9qJvOS
zjppVgFiF4}xtB{odUs@~f3$DtlR~y!G9NDon6o}}_r)Ej5^y`9SNt508vs>KX+p2L
zBk(z7^sQRtgpmnx^qp+qlw9ggB*29M)&li#eQ?bYZgd0+F;E^^l#Eu20b@0xtbLr7
zm5jkv6p`WVED|{nl^8vN(@$=@<A#9LS4hC!9O3^9z^F*%0s@6KB^kLHPjgk0dAu1P
z@c@y)sPQDo<;%d{xd6B@J@31BZ+XE4Jn?jE8_V^T4Rnl~O$ULOPxo)>RqCc6&~o!}
zi=O8yWGhJxezSBB{trYpE<ndi&C9etbjShJ<9#yXl*c{)mZX2kW7)&j;i0X>&Am?+
z6A}h;c>4PK+QPE_itG(hP?d^NmW7JussJQTNOyW=fts{J84a(<P3FNqjytc3_uHpZ
zi{XFju30O>$se+f@RV|2s=s~<tiYGO0t2uM?n7Bh^sp`zkb2$<&`sP}8N89)CmGMb
zs9UWC8j(M_LU0Oq+KmyxpeZ&C!c5|G=3t~Rv>Mr|JKNO#kOwRZYAy;iSxRp~3Jqb%
z(8RVYfJu*4pa!G((>DO<z3GR29|!0{K#i-@f?F;S)AxcEdj1dx50;_8pbSDvnwlz+
zdzzjy$MBm>a@~cESe3@c$wbQ`Za_&Li8HiD7@UM9D(P+)HFd~pU*fJ-SYTHKCw?z+
zb$vswr<LkLPEs17KnIckrwav&O7GEuF%qKWuPN-8R~|fZxKQu#7!eV^eEI+q$Z)eh
z_Y)oaw)8Irv*X!s8L}7OA2MWLu?IJA-a&<E-~@Q2tj90RI4o3!rcQc5Y#Hbe?r^U$
zc2D9aM!PM!N{9!Bpcn#;ucHhjtO?n7tMy@eeM)!-F}n>LAroj8h|vD7*S(2RPZD89
z#U+FRuEVN>rH-q{WZl*HmCL>nxLy=5B_LqA&#&D!Os^-$4hd(sG%JY*LfYEG6{ogk
zGaLCBQD#)%^U2B8wc+8~y+Vy#FartLr*8NH=q&K$1Yg&?DP{N`&g|F8DtDQG2Mm13
z^I7N*Xh@61AFea#CHiiGJF=ekX=fGW33FMwYa<3rKp>P*f!j-2r^ho5@7}HGdT$dz
z9OIumlA;tf*G@xTQ2P55>3R$pu@T%3tf_K=M09oKl?O|JD?4S-f)1x0ME}~wyFul4
z>nGCrRu&dn!d^Q^fSQ0wcd(fnG0g9ThN`rXko-{9DYbI5(4dLw$jQ%%kfQ!EdHHx5
zJ^lMIsRh=}?*;{sno4as5)?{C-vV|j$tRb*1|jcg!&`9#5|+4sy|wXL`8$5yp6fvF
z5AL6VZ*f-9eR{=moveK)SGIDF`!BEbrW#&#LH7vplEU8?+Vse^giV6NTvK@BbAMLc
z?Ld{BlBzDf!Z^MV=bg?m5*~l!x?mD;;|{OoKC!y|a(iNezY9-qmi*wR-<K@il#S0V
zunfkjHu9AF(y1teGXWZtB_G5Zk*v6Ftj-(~5b=d4@t&<NNW(t^<vt1cx1L?+>U{kz
zSQFbZIy7x1akX?_X+0@k(=-_rG=qv^Lk^K#%Ee7Uvm6Q>wm=JdrAP%^4%%f9?vI&Z
zA!-E1RrogY&-$xZTnRq^{|G$)SLx>8WT1b2)$2<E=kJOM6fgf7paZ1GPt9&L83XC@
zpFef~)OUHQFGq@bZoUw`t@!7th&wPS6+se6_lN3n%l~2@|H=?_b>y$Hrm52Z=S@U?
zfhO|uyj}hESIy^NzsUdos=rBS|JV2W+pGRoDE{>mdlkVjJYOvLXG(;yHpkTGW;lK)
zJcpL0v7ILAa)?I+C2F^Rf6uEEwp`EhfCDdR?zrY>yy$Z}CHjy?r5uTn`*VLx2fJDi
z1s|de+}QnNDA(_Ta|4DJ5a=fIJ8RvO@A_pXx}t8fIAZtsRHAB8@x?okc}X92A~^IN
zZjyH5Mb#pGDexrwlstNEcz9qL)#=MJYC~fqFw{l(2n2fZGSBZGGvcl3cXNUsE%iA~
zrT3(R0}Xs-VZ96B9jqy2&wc%+ywb=X#WLb0b|2|DuNNC-s%a@sMT@5L)L045?E57J
zz|bBy33y8MR0>}pd~|>gl!&XQcDsbzVX^ZX`NmvYi;358&wb$Yeq8624`;X0ad#hT
zM6~I#CTsqh{XQHP8q7pbmnelntGoNli_OQ^K&!+(<f7Pjvmmo}t=Xq8;m1(^%Q>Iv
zIqHWvTnP?qeWK)Qg;q^x*85-g_lt{2e~M+i>ZROn&m86klwnAIO$GRHun&+woSMlm
z{Vn@MyON-Kr`dj`G~X(%DqmBGPQb?|JkZ0(;|eMQQEADiKUIZ6Mpz7^uK67WpaxBg
zY_d6@Hw9`?80VS}2Ega3B79S(LC!KC(<3w@Qa@8~3=G(fh6m|ho@bz3gtC?TC;QEM
z*T^I~{p$Ny5PYjbJRD$G-*<A6E0mL)^vl6#a2%E3iWKJIFwoEouQwxSeC`19H2Wam
zvV2`zHL5643N!<=l>DNaeTuRStoKLrN_j8_q}K`*`T5x(8Vi_0=7<P^R4+h0eMnh1
zrlYx_f^yIC#g+IJ3CJ5igFJX1Hn#8m;~axk1x?b-Iy~GQkG3X^S(uoBj2w6XA=|4M
z_c@ld-<j*#^R_#jbrP5=?|}DqQ;}thHZ^mj<3u*U?r<ZStepA>*Ey<?4oKRHD{^oK
zBP=OLR%=(+%uNM<pfWspooT(qJ(hue6V{}mR7pk2p0m@wu<7Umqy#=^9m%wOF=Ued
zWfM(;bu9>2ef8q<&WXk|kz>G?wso*vnz@QBQ6Wa{S~l`WNBsfl6*AHBNfp42ed!Y9
z;qhHZ7hDIf`sqe1vY7V`i?$Y@@(vtJfxZdtx}W*0`o^$@@zyqm<qflh+4dw+8~=K8
zGO`4t#FXBxSGA<@zN2S_pk@jZ7t^V*Ev-W&h^8MOoxmglfv_WeF47`Tcg4bngmC#*
z$eT>|`-QA4jaK|jJb*h^)~)Iv9$1*;4oP|b9-Sa&37aTc%V}LfUiDYG5+OYH`_#Y_
ztRK^L_w*zBLYz3KI`ZZs6_8TWbB{d)JZT2@C9`fM%ALO}VL<VZcpvY)z6v7C2t)K|
zBGL`E0TTv<wD>s84>fQIaMQy(T3T8lawf_gtC7nfpImWD0uo@l{;QAwj%ECdf&zX0
z8IYC?3J1`C*jI>h0oevnTNA;bMdzs*vk^W`ivSwLCh2HXBRK^7{WGr`NCfL!HE{1e
zg*8w<aB@#ndI0>}{DKS}JvJJm1_r?N>1pslcbWz-1QJoOx3H5mmvRRK3W5KV(&LDK
zk-&;C<<im4sDpD4pM{7l?9IDR)%G``BTw%alIGrz^+iOcr$vMxV*y*z_F|XD7d7ZI
z2JEtD*<mZpba5`e=Br)0Zoj-jSDY93K2k$VAs!?ucbV+(AB0oiBPPC#Ed;@#Ag#bu
zqN>kqdRq$|NmN42Cf(lZ`U+Q^jAFh}i*{!scXFG_0;uU?>b~|&`Iy;?AO>WW-T^q#
z#m<R|QRh9o3n`M`qve=f4M7KI42YGd7Zb{mR(<zY3`7h98297H48+HbmS)<?&$+1z
z*={#(y_LcP|9psxp6%ElZyzm5m?%`IHv@!Y*4EY}>+8-foJ^0tlz(&t0R_DsIfxv9
zamn^);n*J+;`VgKa%uwI@yZ6s9+guBuCpC<bb{N9Kxypm;Q`$GLqLheM<c$xp8g`o
z^s=#bUW@U?*PZO`wH+9Y5@zv13R?nk%Wj?qk*-E!so|(7H{ko0!$<6<M(~!k;=3r<
zQJ8cq_$<Y_;7&Q$pHZahgLDOuqir}h2Qmt^m|?*o?Ds>YqjP1X<VbPD+85ZMEs)*m
zc>D=u0{{&uKi{ao{}Zb+LSSj5c{YR(Z|h`uxCer3v?~SZ`6>}P4$Yk-AOauU6IGRb
z`|f8rJ<qG&-a^M{i)SrLKN}+H17+gLiF=6n92ITiz%}`<Rz`aD577~lSnq+D1VLL1
z621or3x@PGHKp}mv}HY;pIfukBut&To1}Be8E8Jv>Zi7^kjYk>WxDRJ2ZH)R#4TY+
zvl)kdxfW1;=aw{Wz@8umB2;4~yZI3z$ud4OY5jYhD?mpv+>@W1(UirV=RMO@Icm{j
zLtF)GZf&)FZfmwZ+dtx959l9Yl54v~ZVsgQXI@_JiOh@wX&<dtK<p8$DKb8KW_^i)
zBr3A%OVxXjNS&p;s?O^Gt`InZ{G*z=_;?}WHSX(t6*8qpP3<cq>~~P+TDQVwdG7`^
z!3eD<tG(Ah87VPhmA6n+eIL)7wJis#;C$^G&l#-%HL6uBo1WMtV=m2B8_BhlKJaXT
zyX#vM?egBq*RLr+Y{Q!UZK5&Vab*YGV<4@7I`Tz;RxMBwf(P@YQUjW{tzfAxe$_Yw
zK#(PTJY2jOv8OHfZwJ08KqFemT%AFK2rY7u&}IvS{my+Hu#Yu$+BN4P@JI5goLHWy
Hp5Olg0^M@e

literal 146347
zcmb5V1yCH{_BGms00|I6NN^1h2yQ`whXe@j?hxGF83F+kG(d0<I=I8&PH+ZycXwxa
zo!`CpFIDe*^}V8Ns;4<MefpfW_u6~y-9O}I#h;-Qp#uQ$Oyct=MF2oa2LNP>Cy&4@
zn!gpj0VDvB`1C>9ZDw!Y*=<&J5;&rA-0KK$@0TI!V&~vkov`no<<4>K$0T*$?d|WE
zHZU;}>t@@%{TRMN(5AJ0mn!IEV=NlGZaK{>c&Xhs0C`36?Z#lI@Y=J+rft<1Tja^>
zZ`dNP*vQY3{&fm|2arkrx%$tCFA^3w;NRa{0JQ&{{$Gy5*7rsJdx!t;-}+ypp0Kuj
z{eQjV|9RA7f+gYqn)3g=<Nx}t|266nrX9t9=JkI$3JI0xzvlIS{;mHx>VGX#onG0&
zUOOM})a|uLG||AiWzA9Nf6sa@1Svd7l}V$@(7-}-146iD=i>D9bGD4kfNML3Fm}gq
z9&5HFZrV@3`4|6LPd`4sPo3SfRBtXsB=-XPOtDxKq#He<^{R|I=`~&*M{j{zdxqGX
z!%;aw>7wgxG+QFUZzU0G4*l1^rZCthWp|1p=X0&8d#~gAuD2j1I?ZltV{p>RL2_P4
ztIeI5kb^4>R_~o}Va+}j*F)r8p+v#|^WMZu@d8Hd<E7>0By5a09$bQ*eWT9+o4N4u
zddrQoAI!|M9vI}1FSsADy%*YLnjzefK_^F~=Je7mD0CX$ia3u;b3dN$KG?&M*IP_i
z&R;_p_5S#>s$;hAej>)GrkG^)xOVEpi~r#5iUpZuG*{-a?*`sepg&O%MhjtgP^Shy
zYi3LIn0vUgCG?AvX%^Ra3=FvMtl4`nG%is*EKxuJx7B&MO=cgnxiQgA7F}fDb*at8
zX`Z(I_-|~{8xaZbgqQ?EG*{NlSe8yvyaX>~{|gj|J|dE3gVw=tEc%$6`ZUDdq85t`
zflyTUYVVhm;)h_OG@O@7d5X|yhbi2iGlvkHqWt0v#O>Bc27=J0AS1^90cfB|1^`rP
z-XEapdEJg40_h5tTjMmL#P6L)u9iPi<?rs;ECkP2ZQ2>DR2{g8MUe1<>mAunC4m#A
z$nJCPt)#2_+IjN19^?xh4w-<D$zsOpSd{3g$zX~=ktn76MRpC6e&-0vXl`gTE@_SX
z?Sg5lHn)9S-h=1;N5xE^)tF6SY5%hMEfd4Te(q383JFx`!LfaksLEt^(ED2S&0*s)
z4q&y=wAq%uJJyJaYSjKbE%CUYS+DW>GFE3Q=0B@%;G5ZOB9rt4V6%VPEt~AVpMCyF
z5OOyanLDWcjXA^;i=5~wFA9%YSeT4)jLKJk@5v&ai|a`tWZz8x`{V>Aq@|mIEd{C@
z#R5uRt|ll{l)C(CX<luA-wKOdV3g9_I<j)7n8R~pZAj27#A0?z9p&m-BCE^TOm}K-
zU!-gbJ7QOEF*~S7I)TSzFVEn)0OC=M*9($0Q%j?l#A%;whv7Yfl>D_#O_4Vx7119*
zxv_o_{_<(7^z||zjID2D@Ztp-CcsaI2Kf0u`i3{7F0KBV0!S8gJ>Cl_n3ynh<;M5>
zFpL!bqWyQ?$KzAmq*8LKf5YGr$?p+4Mm)!vU&nym#+^!nw9mO%rHurZlHVh=kWYAk
z-Mwn%a${1>0g|uisi}t652U4KPN``tRZTHfCuze)7sYJF2gD>^w&EKc&4%lpQ+&BY
z&&x1;of*eBK+9zJuD`1uiZ91z3IAP3NSgP#k&cdkT<&bpVH5hkin7q{k&GY3NQJ|K
z`$I??WPXf3#sQWb@o>p|#y)F2_46oaBes8!KS5ilXMIzT8~!zeocr$l{IZ#bI_FW#
zfp-uR1^+v<pAodqhjSWA07Y{;4-NB+TekmLRSO_46h?w)Y)&^~_70y}2gSEylLfiu
z&+^Allm?R!6yS~V`kOcFftRW8U15d4LF^Z6G<M8LHrOpl15=gGu8<4I-SB%UHK7;y
zX_$bCNkewXCfUNnP%RskFyF<OCqV<ubabBg`w=TE(XM-fmBzPZ00Gy#WFjIClQmYX
zBqsA1!P`5npokR2eMylX<aQS{%(@#?E#f5I{hmPqv~D?_+Ar&?XGeJR^~LkUVqPwL
zytVGL3!#PD0FT$1lU5QY5X+p141j=Kxq<_wn=LQ)I{rfj!@y%6lYw|lfKcN-dqVOM
zcSwj7D!`S*>3nj<jIbE{4*E!Uj)|>Ciz<)ZaBra03O;8#Q3AT2>~&nzA)W2b;*AYl
zL2zp@;)LoBhwa0}+6^k2?@zq>w1|Nxm}h8!n%X7=ac3}_lU8GW<9^W(Resw#+5Hmm
z^SeW$U|^`pDGr~RY5LeruJr(kD0*m4oS8{IM3#tJyg$o@ms9DO*+eGuI3fYyG}|_l
zWKwwo^Bo+{rU?K0A><**B;d*>jM5?rr#CO|Gj!YPz4uu@(;cSkH~0nfB`0|WbkTgz
zCgt}kheA8GTlC8Hxd5x#GPz7R<{!tw9;U0MRa-&Cia4-TI<5Q^Q;V2kM>it?<vgO(
z5cgH=t5>mhFm0f;3<p`*$Ws6-8cjJDhd#tOt3$$ChcqSxuH|__f(l?bw)R6`ZuTdl
z1GGch={ZFo{<F$JNazI`r+i!9pYPb>Xt%+=^zHS5SWivM;^|{}d1+e5(xkGjJ)e_!
zTg^)XW)>ELc2{2@7pEWtXf!%RYG)8|8Wd|61HKGuwrxo)k9?#3Nr9|f)1V;K`QUKK
z-L_h&&1+5p21@>^n#RYdKy58gz~gJ=mZ~K9fDF_5xlA<|mrv8e8Tvx%LEx;yTNRzd
ze6f#yF2!@Q%eiNT$yvY7hL?Onb~spBc?@`7kav=W{)fmvJaF)s$fP|6%(pcnsdC^C
zU2-~~=J||v9%n*0Ev~SE&k{0|N!_1@E_Be=&{2TB1=lQFjpvobHAaAM-!gv<LIE%2
zDd1=#lW`#VSrXYdYs?8Cz#-)I+52oU@Jz_d<)Gsrt@+`XCKDSS3ZSi%LhkMM<^%S|
zBSh|DGorKGw)uSKlpTr*oSa}FQBd;p@V|QkbcGXfd90NR?pYYvKOK+fHcf0yDM}!W
zXtKOqXde^AejFK_kdhetLxA9G>)j_3tlNcoNJhZ*SkG#wYV4IF<(9a`>!g9M8sHy0
z*GCl}`q3Fn6)1|-Ql_-|O7cx(Lvhpc&iSm7*t4Yf-Xn`zE`*5X@5>5ewBJ$g;Uwn_
z6UCcJ3F}0!R>$7pJY`9HpI-l^JuL~U4lvO$)4k!O;`#HCF)kI$m|P_PmXS#mz)t%a
z6%~sFm=5VRy|Z4qDx-qjT&zZwI}kH4aB!rGWx7AC+U7AO*Sqa^Ku<Yx<vc*@C-Zhg
ziRd$~&;XA5Y#-!@?oX<;z<=Q!U27q3A`_#k3xAJH!!v5cIr(ViM(8>5kMumR6DD<i
zHda}D($o63E8=wB?Hgla-T-^ELEFT6{@LnhbE6RffsauiUme#b?<L=jRfg{KUC>hJ
z%zYec>zcWlS<m!pN>GF*^E#UA#@XH>Z60!O6|gMk&h+${+cw_PT@-jeiR(+?H0mwS
zKD|eE*U|`)h$<|G%1Fx2HW@8u_i=xY>iF-4#m|u;8!}{*h~jre<S*!e&yNHM>DiLo
zK5wko)=t*eNd}g>_Ib8GG=_pORE55(yX%?h?Nz)?BaADk374kPyX=tiydZ@ZST3Co
zfJ^D@{0uE3*=uE54eF5w1|AQ(5Bi6#Mx0eu#e=e-7w~I~>Q3{CNge%0-BW|Oysjp_
z?PJJi>_@TUD#$55@Rw_vhiy_+wf#`qgj`#{jEQbrceo(qx!K+nI$O@`T@Mydbz>8J
z-O1W0nxTvUi3u=^tRxfiCaY)peRbnODo}fVEUxyP6vu{nsY1OFfGmO@eSaEe5BHnC
z9DYgo-r`A`Eh=EemDHR4`^arBh5@fcyDUEc>Xb#J(oFWV9dK@YU5=tUVYsL1`YkDm
z;oL#|ThQ5&9O~_LGGEo@t*sCl8-K9J@)N((nu-)&_q&Z|$U@C+$-<zsb4?@4KZYqU
zhi!w%M63pBSASXHD`_4c8)J9r_4}GnJi`DQyA@YO!|&cPbml?XfvDJx96Tik9zI^P
z&m(5;FZ?Lx=Cyl!8Gg-=&uq<Z`LCi?*VgeK&N&{9vOwAnJmcbdEfEVvNe4^uzoxWI
zt*os9;S71P?yhL+Pom#O{F7o!JXX2};yqVBCt_UDM(jJex)$UWCh|dKRGgnxc@0yP
zoaSC43rlKl6uxIbgaw(f62Q6TlpN_55SPpNNr>ry`P=3ilk*WdL9dqp;?8nbJk4u#
z|K`Q=YrblPSSQNcFqr{uEOA#aJ!6&gxob=Mg8W1HzY*p4kp9PvJd^|v1*kDxIsEK|
z4AiBJS5+1^?Be#))3=^6mIjEvc^FBRBj6qxA15qrcsuffghYSVN26(DIoEa}IGgg(
zt?Rut9Uf9kCEd$|7$7K1h1aBw-_|zb?v8Sv4duec<>BIE1fhTkcO4QCvN6;JbdxS`
z4Tr?dwrL-=U#7{!pMfFk>JagePHj|TVyj8TZ_4(K{=_<qbwj|ewC468DMGc_eTSL6
zz;K7@Un%6$0j6C8Vz3(%^&?cN0{MJ6F(w3w;x*eFd^D3xmrQYU%V{pIck@;ymeJAC
z50gTCInqQJK(&il)M<jWiCt-PMYNHMij1LRzGU`J9dpZ4tAAl3Q(qtbDLOjw4sk05
zL$Jjd_q)7t3lEs@(B|nikS<T3n3#y<+p4dwrLoPtd^+Ie-MDUj5?V;&M`2Z1l$1ox
zH8J6Qeohn?IMbH?fo$d_UbKXes*E*Lnk~%|hBOLueUsYIN<f9M)~wsZh^XVVmCNVP
z=@Aj8Ha1A{c~?ujyQ|B~np#S6DM@;2TDDG{k;9Y}EkiS1`Gu8~418+z)*MyH{;2Nm
zwXpoL{Hdu9=6sgte^!IP;gMkB14Kl`D)hKX16WV7z%?5fV(I<U3->M@{wXY&MoykK
z))_j6x8c{)(#lmmF+B~Np1u}y4fNot^K^5oy}5lRDKYStsbH%zC;NN5VSRmFWwRgu
z&bn&eFPShIG4gx3xa#O`^JQzCR?U9K40^x`h*)B7qcMx~8O}aHf9y}jXs#@e`^}^A
zfxPj=#H3f~*}4j}SV_nLdO!mdmc409*qDh9*c1<f51>=)HlWC8$fgbqPte3vN`_r1
zJ~P{~*nPJ6NZ^pxkU?rkAyF$4+S8Ud-P;*E<B`o2g_j^LD@4jrRvUEqFL?mdF8&jw
zRitr+`w!pnVo8xqwdLXqexmOa6ExYop;$lABYup_Hr}<%LGF%5$!VB3HXCkwIl{3n
zh6Ud^YI}`r>fQY`WMzp6fGvd#A-KI~9^*-Q7Ry7GJuk`cFY5KS*WAe>i1EE+Er#N&
z_?f6e5U075C7uTf-N4dG%&sMwPi$RzqtgL4K%HySpIYy*pJ-gtP`jYWICHeSNT|22
zt`V{=6PEO@Bt8AAhjyar>Mr^W^&ai{Z&mq%@l^lcU^ss`d(Z7WnO`NR*XW|;y4j34
z@t@|%1%#cX+g6MtgyU8p<w%psRn=H6?CYCyo39W6>hB;I_<9dt2n?^*GHdV#(?rQ%
zW-G!>A0nR%-DtX&)0)zD>-pSh*93q1=)F4Bj5y!an?2(qz`?niragR&hLwXTP%Ri8
zVdu7)vEMrS0ok?}x;`p`Ip!j_%s3Buc*2?yJE#1q)iw&?Bu-hHR8(|M;kP9$I_znQ
zk>Z(fYMN}pn>8tq<5zwZ3qGgWDh&8fue>ZIbgb{siQ%@*4=@{kKcCu|f;7W&bv+*h
z^ZaG7RIjev_I~XZ^-ePcaWima5P3#ktXbwZ9^47oo!{)MSf)N&jZvypF>%>{|4E$N
zsS(84*RTFmR3b?F$15;eIXw!AlcQE9=D~2_2uv@%A65_RcGGy9`lfqc0D`wGL3)sf
zTo7V6=7J|z7}M`j$QvJKz8z;GwU{0aKQ!L=wxLvjv^WsIUXVKMT`MQ#kyN)kvTkWP
zDPVeqx8*K$eHZO&Dh=kFdfumfa?Ms*c+BzKr%5G(=`+MW51Xefl`$DPGK3Gafh9;3
zLd|A(Yu9d+qJP6t{YZr~z24p)VqTMtVKxrA<hGOFdF@3>_Gd#4vs|`rtLON0+9~zw
z5RlFmz0Q%mp{RgY({wz%y~g&MNx!sY!T2E-;*%g?iS8}>3}D2w>?}vQb+N6iF54Nh
zsejK`1hJU!CU5u<mbsm@75^<OOF93(!>GXNu)Mk~kxP`gVye>JbaFO<&6}OG>op&r
z5EaAb5nO5P#QoHSpt!;EmRt&dXjFj4ipz8SL{!M<fv~Zo2fjR&VeP@m4n}W>P4|$9
zVy&ksxi-@mLo8=13;=6F|IeQ-ht1cYON94Y1ew?8YjhEd^(7<lX8-{&^<Bhb^Zd!B
zT!9)>#wIaHM<CNAA+A2u<f8yy7u$St{MCWsHu6E<2XouA+_u<HnJ~$15O;)-yPGPT
zMMp<x#O~$c+`P{11X4qzz}8uqR9rEk4hSx7n1>WGI{`-&#S<Xi|51gBG+gIBKVy8b
zjoG_I{~+133#N~@UnVaWp<AfNi(ieDjjl>R^SVC<ct|eRdR8lUN%*mJWRFL!g<y8e
z!50dFV#5Vtq#VgM5yX5Vn*kH3QG<F7!KMm-Q*8rKCUjE!^QU+ED5<&wnm~BCO-tV7
zay_+-tQE_cD5aM^LL);0rVNKllWu6wQ`8^kEYrMhtW8vz0rg<fzs#!V{o?WQ(4vr1
zvu90J4;C5k@wVw=3LhkZ$Z+Z4;NpDq@Z-ZqmG|oSW}Obxn>R+?2gqgiKZXS{O~Erh
z7xJlbK~K0XaZROOL)gjr`R|9HL?(}bb=;U-S-q_rg}k(3q@^QxG+=kJ_lBOft#jIb
z?fYww$%HYs$euMhp@*Bb?T`hxQ!0y=`AWJ~wA*X>0+}SPRCK`DbhAXe!e?V|o%mrv
zcK&?tMw}2+%u~Rq+ggiDUP-mPgQnqlL!71gWMRC3TO#TUD**`2)-8qhhp=vxlw&OC
zs`F;6tJ_<0NJ%j~T<OWv6LJodPg+S<eG~J47s1EpMHN3Iqgm@+czhpmi9oZ%v<UFC
z50}{I{<e%(_hvtWX-rJS519*b+_-G7Tj!Q4S+sCAH27Qy!TX-mU(?K($>$hGyCro-
zTL1i2%rC`<f!^LsT^prV4Dq0F_gbYHZnG@>?3_^~l>DGWp}a7jt84e$E4LBL!9-}7
zt9J7X85QdNYpuYGz0nB8?bnsN+%`&DMyv#*xpHGa1Vgbk<B^3OL)Q8eLiEcIoFi^}
z0zxLC<)q6mGNfsuZ)V|CLGan91bb2uM?~!Jk}b3w+@1~n{%g*l{NjgQC*^g0KJ*@T
zUD9xe$%({qPVC^Oew0)q^sq5Yo+jw|L)URVSad9AXfes9=>Z-$);2JEF<0j?(yM7@
z%tR*OL2$lW-MpBd@v#lbm%1lT&-?J|M+I;+o2I1;S%;aX`aA|`Ldn<lZ70*r=|B!0
zB1Z5!t$i^z=G0*a&S;aHye{t6t1M$hMFWw9-HpeIZGE!p+j^omL!^51vSP$1ihdvJ
zz`T&gr|P^*Y&5Vx%7$Y(y;?njj{?K=F{#aV&KHGrK&d{0aUQ4W^=l;M%*x8Uv+WSc
zY<AE=FwhPSP7nc_vwaNT9-}CRU3IKkPTC>~TX;+iB(X8#y#(C&nN?mHb)88lf1SGe
zwx(h^snmXXLCRBSz8Vot6K=ptP+=;Uf$-8NkIPY}C-=ESp~u*W(|eE&t^b^Bbho(s
zz~{1u3EVZ=?<PchLJ1_(A1HVcqPT~TeK&R8R>u-TKy7O-JF{DkT&RH*2z(Z1=TthG
zWFeWYD1ca#8atl5y1XE7y8qI8mjGa6FXcW{yN96wTz7YGV&d%Y#oo<Jg_T!T{q7F^
z^(&DPD<wrKU5TYDKc||DrG%A^j`Q8S?~*I&XpRHPYzY>7wnMP3Yb{hKu>+8*z0S{B
zpxcB+QL6b}-L37klS0SXpuEfGK6}yVaZN=lo4RXwWb*u0LdM!!Qqltq&_KO|fQRS(
zd#1N75$JAjsB^vrp}c&|W^z`F92Bk<kMZc<8!26M#DkB9OfKUe4E2M>fq4PYA+VX;
zC3mN~ZEwLxixl_Qi^IasZHb#edmwAnRCaqi{^w6W5e}~GJq8wfddYIovk<d~uiU={
zf+$mhZRDHomut2;;$+fbRvUY`iqJ}-+q>?rqD7wvEgzpq<(Ua*%-<M9VH<~#N(pp~
z&4KcAJmi+G$o9GUc|e#Z`f$oQeV3^}O(^=tTab>fs#cv3Wh63_cH2^F{sqZX2|DHW
z?(Wkz7_x2C@yZk%)hI`~Y-*F;$r;KG5nqP)QvXTz>GS=?yZ+ILZ-J;O&2BN8Vd3nb
z!~zw<{QOpy(t#V?ALc{qglzA27TvTpJv{IPy2P2)Ix6*c!N^+y{>)6yG@S^6n0Z0?
zS1Y0TRd*xiG32hztixrPHz@pczukCaODtqiZv-p+==dUi#M&byUkL*w#{>f!lz}3F
zBQ(HiUf$#Lla#6#WO&lXx|NdIp!~bFuO)W*dP3mjZk=Ir*J5|OwDYUK__hMQ^6=Mo
z137bYQRgFhwN)jL1-ZeRTqF5R<*rb8xWx6@=^>P0rM8R;6g?<IB{yLn`*?VFV*hYB
zDw@caO(xuIFuC4oWA07lu;IW?HcRu>tB_7Z_5|Cei@Q`%*=*_S)3M4<ky|ccS>X1e
z8~1t7%_y1Fnwqcl?iKJ$(%8e~!gue;eDwWwW4R}onx#Q{6{**bYc187?h)OKYRr01
zW<o=i0v(&SG~Pi}Z%Kw&O$XoQ53HK`6NzA)(kXS33wR{n*t)nNg2*BF7fCE^3DT}=
zap!XUm53ifuh7@Sl4^tydwd>Pk)(W=&qL62tMOit;k+O_xnUTd8uPkan;vSu`@!5o
zhzk{%3BeoGt+cCNZgTgi`%%OQW;JLR_8CTAO2r3|XeIWp2;yfz!Za)e4L!TYRNBn{
z$%_{TXN|X)ch<jIP{;)x6j@S#-!681Q?85u9y1litTpQxgG>7K(}xfKEILg#PE||k
zt!JL!2H*2K?2UQaHusxUfE?uJ>AAL!I}#bLlv~-FuG?tLo2q75zT7~qq2W$vp3wT$
zKS6rq4EnO>a7sKvj*gBgcT<QxfAfCruCsup@rW8%=f-Gt0-hO!ENpE(zrS_0wN=Yz
zBo<02fC&UThsw1+`lnXd1{MalieKYs0v`ZhX_`!*ENcs!Yxj1&^Jg+?kP|LIeOCSY
z+TGN6-QLNEy4jv1kf^vs+*TS1_=);b#pP?yfs^F&v71hz_Jn)zu%Km(r0d??!<o`9
zpufNK#`A(KmDl-^^Q6#&lalT`9v=N+3YNOA4i+IVo7%w@l!|Qt4Y0cNyoHY9$FgX#
znw%Yhl^?v2&gIhX2x0+;j?y4<_k)?RSs+~zn(DqB7M4`aqVdkO<LLFm0vVuBhf}QC
zWHz&Q{4$rx!piIsz@_9_o2W(YgxyMEBZ_skI`YcFee=V|#EbW;d`xQQXQ!4tB(VlQ
zL1gW0R36WB;d!^$Bb#fu@5Z<l*}j7`BZI>8JJ76T^CgbbmUc$qO;<=<iChXl*<X?O
zWOWGQ5-Mk2G7PV&k%s;V_dZ%;%a`0LOo;y1Ccuf84f8hdso%dZ%E_6Sm@qN>!jopp
z^^TqdVAg>l0r)I>ApL&}3v-tDUHtiWf2#rmzhsr})!(w<-#X|#6XNC+EnmH>%m}15
zgtNyrXUcmeo#d4A@)Pz72V!EdXcbV>e6FCNAc3FMNJz@<d7%tE!9pL_u`%f)#>pP&
zk&_w9E3y39vvy{ZN%=7<deq71{pI1xYh{6^rfe3*XMJBRkO`Aq1rS>nTuIhOM)%!^
zi;Ckaw&LBn&ay&CRNKTA_1<S?Mq*RyT9Xsw+q$hj_xph*&GQsXr{WPrH-lO%u=;v?
zp1tc+Q~9r`Hx9h7*-!v0Yb%rf__K*!mZNJEF0P4a+R%B|rMJLbxJ<mD^CQ6PWV?pX
zm3+@d4t2-=mgUBU-`l;}@H`rME_b&5N$5eBJbg?rRky4_rOSJO|N3f%nA^}P0@?UH
z|BVujxheg0{X_hL4jLB8C@PPMEX-k_hEp*6cX=?@^w|#6=nGm!!o#T`tTd0^FnkTh
ziSGsqV0wCX^@=yuP_hIJS)?Z8m=a9s@QO5G@qO!Cs5}dvo47zczq^;Z88(oWWkO(*
z_)ke0Y2xoL&~46c29gLFR30!!ogH~rX_68bkQT^2pMfmHy0<y^t*jAu_w`IkJ~QRp
zxv%%Blztnn<cWd$nab0sazsy1jWxn}c0&(=IQ8T`_?enPTFLG{!sBrh$d)PoN$eXa
z>@&U{mR(!kUuQ0V$6jOwib;_d)FD4F@_L2l2eA6Suy0mHNKBVIbE{~5LvULj^oEab
zSg3h|@vkh|B3S<@j??o(2Q;%sMon3)XPYAGCT)Lmk54tZBUjC=Nf;re=Ty6Z0p=O&
zw+~G-<6DXN&xI=en9W<iunXO9G3~6YH(K;GAJ?*CJ6_6nGLn$)#W8KaJz@7!r>@$B
zJY4&Krrula)5-IOop020?hG|oSAEt*@*OaFs9P@h@ls4l?Hr(}WYsIPY85}U%=8He
z=nTSgrFXVJXp8CUq5+P``L_a0t2kgJ{9cOON|~Fs2{z*s;|eb)*c1BY1U*8C(xT$y
zC5M!ZB!_N)9DFG&xm&DAPkD1m1Arb6FYcFu+&A7&_;z0Ce?@SB1FYS<MuXL@=Hr>u
z#~<P`uIgQE_#HP4ZG2kw_0rx~R86kcWUg+v1<$(fC9&FoT%*}w7Y^1hv!x~(nV3w6
zQdbT(&;b|><@jmOurB*jTc_nq+E7$qFfnuMI_rVKuD>GryzGhyydYHBKEVSE3S*zB
zGsUs$-S;~(+H;dh_i5$GCTn^l^}m!)IYm)F_0zAIhEK|6n|_hVwl0_`K6J{cw=b}9
z_bWdMR+=BbA`r5nRyk0BD*K$zmju3{=dzs^HAZ99=GiQf;R7hR1h==(BY+ltJ#wxP
z@9UjsmX-zMma&SvdW}9w#n#6i@tk0K9!KtTz0abd0sH#ZhbqvL;e&3YM~Fo-zcT_#
zO9lpQ$KWzAH4V_prdY;Q$|kU<CbElV$TyuX;EyFD-`3uXN3C7#dqQ<??nYh3!$^qY
zey;4UzPDYF-l_8j^Cl;h;RQ))Y3sBK8dkOq5n0_2UWUD<X%Jhd^_8gd8nDRKeJF?o
zL=LZ{HTy*Mtg+eu*m&dvqMX!5>FuwfhNB$a1eE|0_qz@a3*LB%m)*jf7U_-NeP<nr
zkKK8fuW-LU^7Wq2wmr*FlXw1zi~c64J?A&U4+-d5ZB}1gNr^_|FF~43dq4I6P9l2-
znB3Nm@qMlilrjQf0WjebR09W#E)JH44-c2%rh%M%A-Cw=`-L5R9$t$z`J3XM#F+=r
zeMntJ0)H7|y%}+3GdHF1_=9vBFVYN#79cEQ*voh5E%tC3w}?n(H!lndA_jP-W(CeW
zG=ZO$l8}2N4o*%JAx_Sky%|R{P%!}XO}autpKvBCaR_kSP6}}eonL8MNd97)y>Q{<
zzz`5zKZ!{Sgg>*GP^WKsLBcaNImy7s_pp+^+bx%x#A(DH-Q%^fEuKf{NCzgM^_OHh
zGZ5PuHkbbItv-UWhVWeS#_almS@<ys*{#>KeQH85&s%cPX9^0Y4hh}X9#ma=9zqnf
z6(#Ro^~qg@y%6Japv=+!yhxut;dFB#S;#iW=G#hvt<UyptnGZbjO;)<yM19{XM16%
zwYAQ`q~q4n(<-t1b<;xy$GH=?IkwEe51WtE&W9RIDm^-zkh{08ZJ?JJI%QSQLAy*5
z@PxudMLK=AUULomXGjR_(T?37xH!#$y2^Iy$3^GklXK33st;u|GraTgFMoqP5#Nu>
z*dlgnp^7kG2z&;lu<?lrxKQclCcgDz734a&8&n{j)dXGk`lEOCV0OnuDHCu?a{>FE
zyR(EoXxp>8N!bX2>yr(p`n=bGQ{giBEE;7uJ=I)<jipV+1_O1bt1HoYbhHvt(tUqC
z_I}_;xTJo{6w-y9whswD2=dZoz(fr#Qfj9@iD=oXG&#C*SG1!u^@BDlE>~^nlrmNO
zsZM{b?YaU<xJb1GvN8T#@FqVmFP`kr-<<BftNBEOic?tNNpP<_#-!CEtRyEVv+DyW
zypa>vFzcOvJLpJ$|Na`>nZLr`NwDP2Z|>J@#;s97u6r}jN!NwYuI$k|JjuPTL6xGj
zgXZn48K%jxF`KLVG>~bw&+Bx}BP*Hpj;E^kJ(Wf)wwPS^!L()6l<C29bg*mCoC?In
zqSxi_*>oTHoS~NqS6OXshBwU~+r*&xI7!h&@5<JBAyzmW%S&?3O4BOQjEi?rIfZj&
z>Am?`ben7{P3ZqR#$kalyHoN2aik2ye<~wUDfXo`j?T`5gM-;DUD8e0Pbr5N)pF!P
zx9Z{zZC|w)nA7Pr>?<$t9VvGR+jdv!?{`D^d!M2Qhthnyn{_$7iY5v#vmDBpT)0|V
z^Z|?8i<6VNWl(5(dTj`@nWfR{_O_<BwwRo}MQ~C<NVfW~goOEXm3v<yn}=h!IRMfe
z98BL%CyFq_L~ZYZFZA?$$WV@rQ&FA7{PJQTwb>Y<0s`zG5d9PH%p!%OsoE_qt%_Hv
zh~^Gy$EGHPbwB=#u_v!vh)5c71;6k}MExkMIV>}k!?wcHf+}w@k#XAKwCYC@Jp;xj
zl#PwE+Jqm}yA3PGEpVZ&m<HcayD}pRQLRyectUOd)hG5?-9PjBlvQ}koXFc(W$JsL
zyFD19v8@J?VuzC7o9ypTU|Ym-D32VU%N-&?ww6jiXAI-ql8Yd>EeyI0?m>qurVakx
zPUA~RA~yY=cU)N&Y}n#M>poGmuHxdBvwhA&9-yuJGf789!^Y`pgeeyfYsW}$J~Ts+
zic^Eel8WGyuzY+`qmiT1M;EcWtn41U9|;L9v$mzuAZuP)Sz5~kN4T6GIXKu`T3buV
zevj$<0xaz;ukRd4V9P5it84#61DgDiiHUaR_#2qMwe19-oQ+XiYSsIuvvLJ-IP`b?
zZfhuyqHNCvRRoYsm>55aT}~{(d-_9%HZk@{QncO-xKB@?JC6gvW40-wKZ9_I*U`9Z
z>+*83Gf1Y~&tcMCs}4nlRw&DO^w}p9RZ>$JFLrW+CYf_{vY425eO&(W(%{DEqXsF2
z%MPl<tjENxW62JV;b6t>uCL-du3Bh1_?1AgTlEQ;Uq7LIXQ3{m(pe?7Nwl;3F*6X!
zH>EL?Fb%RlGMyjnkk*P2i(@7D=AX&Ysz2A@kx^9SJe6lJjknu19)k0ugN5QTut%Cq
zlA^t0yZHG>grkE?MU^W6q$VV!LF8psJ@$%-V^z7r2aChb&#z$`OfoV*j^WCfk3y+)
zOZQ1rl8A^y515h$&dJ`XXDBW-cxBYG3Q_Zq^h*nOviD!z%}%nIX64?Xpnx#g=fl?4
z($V-8my{4o86)YyJ{q-ZRE9x02H9lR*0>+$C?NMRnKv48RzSx67cd{kw;G_wwXdF{
zJUc&s?EeHS>`TRa$!xzK{TGj0H|!FVh-~$mF@=ek*=kDV>0*qtI|2EhajPo_23?yR
z35+x$o%*a&At4s|1wf14Qvi4ho8Ha}WTd0FvvcU_kyeBLdJ}MMpwN!g0-xsO<B*}T
zjP98UMt9gJO}5OZM@s+QPzWnS0`lqm0x0`}%W)E<b5skmif}SNe*Wx-{e!VjGFUPM
zgYlb4dm{>v(7;4Xl|qr8|6AM2*l2T0{a4!V+KR_&FG_$mb6ijG=_zTlHaKOZ^!)O|
z$~^2DTJK*~RT9}adwx&O)1VT<|3*H+(iR;bEp4`>v9%EzU{Te(0Ebo9rWX})vhY!P
z{dp22si3VcuNZGz`$?Y}l-x=A+=;44QCnG8G3a}x7>f$UBhnbn%?Aet^Wyq2<G@sN
zLM&zztl_HsS*MS|0W`JVXk(!Pdn6>*`=o2=ga9@*d}Ksg;4$eRvzSVGb5fl@1A{;N
zj1{Q5Ug54G`NA7fd}B9E{Du({QjXD6y}|A4NKesW$(nD?&0T8FZES1wgFgP_Xuywy
zE+D8r2tT^h#oiSS00FzVqN=G40G$EXqA1s~hW2J1KR0r6asqi9-#8=`=H%1AzQ|cX
z9gTj;t`u#xPufNqq|5K=H}=y*3h<@oQyk_@PYc)8Q;SZC6ni7HMd=w`yFe3DT`d`m
zaU#&*r5L>ucEGeakleQpe^@_ub4ZYe{sMR2uQi=4yl=H<X6B|8`9E{R_It=dMT;=)
z`ohkV#+N`s9!)~-c-;S#11YV2eR_rulTa{`;(Jb4VC)7SbDU9aRyGVSLj5W}3E4M6
znDxsQ0mYMMUwv{tNSK(Cjz$Ljr!-BUokWf2xV+lt%7H}H{Ublp6djo&sPZ3}iHS}>
zprxs<zq!=0ehiuj@comaloSJ?Up5`iY~x(zoE2zgRp{z`nvNrotTVs6YY`g5qH@&V
zU;6Mb?1P@!uA760Bw5?3&oPQxLrKN>a7$TJTmNv0-(l}lj3iVMx?^GSE=$w)hh~wa
zOen?=f_z12t+tJ-1^dr020pT89m5%1)r@%c4OySFm5G>_9cpzBRdj7s?aVrk;4hz`
zzP658`;wicsWdXjXlqF<<nCeOA*mvou#D~yP*_*qKi|&B$1z}Mi<Dkh=P<kkpoa7q
zI7$Vh=V>S_;uw9T3goS;EmQB$4-O74SER~_UJ-d%l6RF$+agvg#i#s-TELI{Pqo((
zH#J-X`la#G*^1MhIDoz*4?4`R_zM!i$fZ@Jx{I~Nsy)Jl>i+>7vr3b*R8G>>R%ebs
zK*Yeq0w-iZ)!9c8XfZ5PvA}hTB=<YOS27(~tapA%hW77U_<7c#isOF{0||rLp!PBF
zD_9n+`mkc+5ioDZie)1CpOD;}*4E^>M9_N&|EH<xb!{#($)$j~Wr$d2*MBv6KLI<F
z4|L9*tK6{vd*Gz0!hf}KVgIk5=>OHn{Qtit`+v5I4-16Sl{>d*`pQGxZn0$LWE)oN
zm$&yD&8CCDO%ZtXWXcK5PsuM%4G-@x;yhknTKddNfDY3>WadNjj1kFJE%2;u3QHly
zPFH^GSw3W9ViK#WIx?Z!UJtsbuPxdW6I{N0EUes{_Iw8H3G^|+b(4yWCXPHF#2_pl
ze=vJTlo?@ZV345<^`+hpsCK#FPu0*$8rv#9L3yOb$7i1OYwTxTU#F@no=8Te%1r0z
z+HwDs6<1>oK=CTLLv^BPM0K9Dw6rumjTGE5`k48qM4dgZp!TY&Dof6bN6#q8BDlTA
zwiH&oP=W$Af;&`jaRWWgPB=n4*G>mw&^rZ=?EAh<^YLso>gF8a#A|JxtHemkM18?8
zVflcK6)x)#Af3rIqJy%r0c0)foH>vU^@E-KmoFp$nOh8ln<7ab9-e$oq8P>L_RYSH
zQc}{CU+CF3rUw@SHit`p49nKo6Cy{!uAHt_dzkjf)XTje=|6{W>UcA49si<eUQ6BW
z33grXkD`uKe3tW*V*}QB;HYPEaYt0(vto2yw4>Rgu2LixE&k;A^AgLv5_}EK*tnR3
zg(j6EMNq=FUlk80r8PG%tE^;XqMNR8te2+WH}qy9Pn$l)r^j_*U`Q$~3`MSYwR}gz
zq9hs{E2UakURDJ*61ZtsV3^8vcYhkq2+L+rOVUzjO~8a{ml>~;GchscRF4*<q}90n
z$o>=6V>mrMtM)4fN!Z3^A|aZ#0quG)l{*d88WIYtxwcyyJ$t33KE=jH=gK_C!dR?v
z6t{4QTK*`Pz~wl%CL!c=Z>(bc2H@f0EplIjS98%t_fS5WYOpu@=$&$aJJTR4<<};%
zn_mF3!iCLZY9v^c^Kxwc7{PC1^IG}sE3g(jO5Qv<K0)y8lK<hP;QAWIS7Vh^%%vt+
zIoR7(mkphsnQ$2j-+!M#IM%ttVB0*at|xb|;w&?MA(NC>4OJT*vjJ-mkREp1v=1Yy
zKeE*u?$cyM15h5s&}g2lz;n~=9UN@T&2yMJ{o6$#_s2nGh-+|RbEVU+2TaMi$GGR9
zmlPob8xHP8QL)S-#HVqL$HaS!@_H=Q<&wb>LOyHqldep9jbi#X#V@~>&mP^^3=9n9
z=q|p<1obq&rfk^s0{pnY=VeW?&iFhMxn46US+7iG_}3Kcaa4KDWl8uTkj`{s4Ub_;
zw6@xfBb{2~LKJ2TQJrDuVH<dOD!A+Q)wbD`GCKT=c^U1d18I613I|I|Zl^Qj9JF#y
zo^C1ga}&j$m9T6Lv)6@%c~cidiyp^?Rp1i7e$~6ij^P-BC(##qe;eXCss<t%BbNF0
zG%k&Sq4yXW1@!v=2*k4J5hNDI*7rkckUCEf*+gFJRj{|qRiGM?fMF_&kB>W`*Feqh
z@Tb$!G}Ojmx>x1ab-%xF;59*L_k<8B2~I2lIro>V?-^8LcgLp@Vb7jnqB?HO!JZ48
zOr;U~z|F?QCh;|b!8YbH$JveY6+=G?Rl!PTetLFhULxr`!-u0)Ihu}6n>%M@V0&rn
z4E$PICCM?OM2NW&T=o1-SGVY5EfQcvBb&@_H1SoSURvN@cmFON!iD4;Q#HWB(%7&Z
zbXfTs$8^)UK=p8;iHU`l7!YZvniM?QIuv?%BHY#8HO0qE=&dcsV!J2|nU9CxbxIZM
zz?@EZR6wQByQ?2|TK#a!?QN_7`FlbAEk1cuiSpa~M~^mGbQ6ya=mF_O_M-CNCrc4R
zK+D;*BdttQwdpNadyrOxm$A7y+x=qMOPcB`iRK$OWWenfQ?toqKbIU4F=n>6w|DC3
z$Ypz{bU0M+#woLZF{V*5Z8gE21`)A%N2aTLipO%jJzLTPS*Eo?6BnnY-K@x!)#Y`?
z0=nc<`HgQdwfJrmck)xuAM!?4R))XlNo@`;Krfe;T3VKVmZoSS*s8!Tm_7~d3$-+#
zLglw^UWktof?VDgb4uOePWF>}&DLArSKjln=-t|hx(DRO#la^hSt#`X97PiQT*=PN
z(6e$wR<=zYE7&b9D<j#PVEPNcMFXy{Js{aNcW1{&xe?_47Y*@hi$2^`Ohq9z`F|7}
z^tVTZAotlh`N2Dlr+CZ@HJ0M|a*}Uf$)s^?#vL{n6&2&fYc-r~XxX!|iBWmf;W2Bt
z++3AiO%eD}q<UQhlpg(wpXENEcyGTZ?_og?yucy57&eN4T(mx5a!5*>$9xv_*t7<4
zgk=6Q;@>xd4p{lnZp))a8j|<G14QNS!ubUQi&EG~l%XdYS|&u6l^|D+WT<Zd2~f<0
zLi6#oG?d~xy0J*Jn3p(-&dWZc=|K*?(Zqv-gV8g0gT4irWaa$A#ea#33Waa!&Jv#-
zov8jXR%1@iMQCX#_#pbX{}_A(F-V${!b5_EJ5NCnT7b{&RF<-E;N`B7uq-A*MY(GD
z8*H%vsNZxvySRM*1ii^;-QlCRf1N-G;@C7btlpbXkSmagsa$`%JVlF(MXw@uAzb@)
zZj?A6oH_CKl>-pZ>mA$DcDJ-J50#LBO3b{&M$)5*GY?uI5peTe@Dpy~PW&olu~*9l
zeJ8-l$x5w$tM2eVCAb7`_DT{3*Q2zoqTnsV>G635c*4k%S)x<VLm}o$3<QP|T#t8?
zgITnHD`WrA!|^W5LpBy;`731My&|nKT$8zdEv1~H(pMp#I7@c+jz+BUwBckLl~ynt
zUn4u=rLE(aVDMhS!BMPT_gUxb?9{YO5@%ogd_h+2*2KW>G$G-P8N5Tn;6)@q84Cl)
zYDeTp$$*iCR)dX(>m;9tFinHAspH4~wI16m-+Gk5gpJ?Z3-vixUP%dG1H{%{V|wc8
zOYu;`zGXXIxAm%yt1B>?Bdpj&9F60j4cfux(o0Jt7TlA1`F=`dgTBUVCjeiLly9U{
zr%ukXBfbpIU5xw_bg~BR;;DSjA~Q3+`m9=Sq7Iwxv@eJ788tl4N8X5=nl@&dTD-^I
zU|^uL&MP4%!8Y3|0<&%n1qE4BE#Px#i1$WzTm;FK9Jc<B1SdDQ_uav4I_Z6f0c(P!
z@ug9S&&>uy{)ea*Zu~!MI+$8iqe_Z+Oj-tXc$2DXXaNCXL>v<{Gc-ahmsc77%9QH*
zc7MJ>m6-a$KSnSuR*H(2CFi@@d$?cBS%g@|d<I+bIRqi+?Gf6%5Sy7o4LrQItZ!E@
z#j%v8<uGCy%gU<<`UV8O@3u($U;h<=u>Zc*CftcKqNKFd`e?!5>-qk?3@d@l#f3^t
zN-=8z0|N<3N^f5;<|G<mNn9Uza})Et<dkrYA+FC>w_Z~3)z>oeeFi?;hWy`#a~%?Z
zzLBMtmJWyYM&axBpqH2?CLS{&eM{dH%m$@!mvhL<J}oP&lcF!6Cm|s{R}F!=S5$sV
z`p9MrU)f6Hrtjsm-oIM*4~b=Vb#O6ooT8LEZc3R2U!>qjX<vo!e!?UqA|V1fq{4O+
zYrZ*!%Q5znLN7q1%yJjc-)Q}v)!H9D$d%8}G@-_$iSyl%*b?=|gUG-eR5{y{`+8TA
zTj9X;VOCoFxWxRONTV*3tn6fdhpb&>L#LVm%19CB%j44|LC<hsTU|{}2mQ%GkCYeO
z$aymK*%#WB=I{wSBvzG<$CxABIIF9{7#L4b+s6kQvud9Ja{>Y&9_mbQt53>D@(kKz
z3)QQZZx63F?t;iYPi|sDZe0(Y>>c&$9L9$heMaZz-kGd){5(1W&9!ePi(|82tJ-3q
zS_Z<QVMR<l8{QHf@ZP@_05CG_uJRPbpOf*p@BO*@5v^9}y_Ga17zXnW>G=Y4uO%0-
z6Q+qPo8BW<E7@xFd-m*^)7lfj!qP$mGj>Xn@s(y`T}YEA=p!+)p78sul|m=+0joW$
z1jdO`mL@Ax+eLXb*ORHpy?$xl>P|rHY=9V~iLZka0%CDBLCRgp?|m9}Yb=c21EMoI
zBD$k{Ks{-7w@;t-8)b&D{=#{*!{r$Xm&321xXVc7+r*^AbVr-G=nzXEoA3pMy1Ke_
zGS|H6PdytK6G=lw{1-zYaZ6^8%<K?>QIb;b&{UPPl#$ZvR@uu5{+p}7!{#b%bo>%^
z*!Jb3g+;!a(A{TmoqaG~0a_LoQhW3t`N9z``m8$hbAg!TO~$KYQVa#_1(UzxVrja%
z2ec}A-muZ#Obi@H)5s+AdOsAWTz&Ne-TL3ovN63@0|W5TDT$7n@+KT(dr8B^&AG9@
zadhRymBbVy>2zpqZ9UF}o?b5qsB385Vv%`mbR6qwRjbc}CUp6|QU%BJwmK$EM&9oG
zpcu719RA1=!@S@)OiN?h&BK$s<{jj`r&}7&vUMaIG_v`6qk8!Mndzpp_|oovs4^w4
zoBCD}7`}*ewoztYZTMNnv1}LV(^aovFxDpX(j>ikg)U0j*A<A`Scf|xBlAYIlTylF
z`12EI&f>;Lg+)lHRMd?9?R`=;3us_ns@!2b!`pL~7hh}r^g3465SkU!zI^0n0;V?C
zFc>gQV_olZyb@-q2KL4VoDMagSZJT^Z*0UeV||CuSC?0tu*ZK447<9|CC^se-YQ!q
zbKlvv6}*k7MiUHc{@u`^LYdI0zdTT&mcY0%{DMj=F^PeJJ{^sd@1saN<o+5B_$>SV
zc|`DUEb~ue!yxn&=TCOBrK&iqOicLo7F(UGIJrx7kbUR&3auZkR_xvbtWHx$-h8f#
z)0DTD2R?_Ha?<B7B@I3Zo<GuQvh!JsFY|KzsyqV52nuh1IRS4sCS)41CMID1NI$L1
zxtd_2_^xoIa04pwoNQ_(6s6Fnrtz3@LxzH~m$alaH8l-c9YaF;J-y=)n=5Etd2iRC
z&E7YO=KC`N0_8_sbtE$wmv&Rh$%WGN4Td{KnkpKRDJj=e978nS-CDt&E?D7Fv3LR6
z2BwPx(NR@ZD!*dT`v*R@Q$^$8IJL($ArOxEjCWU!uIDZiP*pWGRWQ}J)e|DtBKA0Y
zW_`2wew9Yn#on=?pkVf{`w;k|t~?flfzLos4=lA!k4AnBoSK@}&<qCsXh;Y;($dAi
zE_e;TE%i$2{%en6ija3c3<ib4=%_fy$L9su1jBp2XlnjQknWmRq6M{<D~Z23++PsC
z1A@`f&wSoZa5(Hu*>JC{?s6NR#S8f$zV_0`RaQ<-O{xBJRi3XXtCEua%vvW1{8<N`
zks>|1ypoFZ`bvOr`p>D^8bVCeq=5;Tp((PkjPrPUtIx1G-t+pz9Sg8w@QXCfYR7Ur
zK>cT(HiG0YZ9PS8-*UNWIIXiN$hWrI-_mP<F1E{rMPO@b$fR=J4?PpwWuyXpDZany
zQ`=u?;^gKFLHA?Su9LRS0-ViLl2V-SPqHT;E`1EGtW>fu*i+Fb*1nh&t2e50x3C#q
zfC!PMcl#iO2lU7DvCs;f_Cr^dW2WPDJvlf8ilAi*HT}V#MiiBmmsWPj$X{CT_{Psz
z!=wkf@ss&IzTJGiAGvn?C?4wM;LOCpOm?(TApfW4p~Ad#CJ2vF2OVG<7?^#S9*cg2
z?t}2Z-gra{_G8nUR!It2t>vu-Jueui7dPDutyK2l%-`SIE7TH+q8I5|2Ni7Vt#$hB
z^5W_Vc#j4>XM&K(xnjQEN3DXfxjAk6ZIj>xaJ?+G_~zeeGf%d){jScJd>x%s7lO5d
zNy@g8CWJ^wSe~616&FVJ;XZ}4jTJ;Eq{gNsEOYau7w6b)_l|dCk*AC4%A3oMafLCX
zrMzIPvC+0%bdR=G0jBDW#O1-{Ajs2LwDX!H_u+7$CMhYY&aG(-Qb5lD9woYUXHz$(
zzXP9576m0H{}g^sI`Sr361p^&Wj>nQA8)LFum+m_`veV+&B5p%<Cqv+une$)_k#1w
zTvpHiytKJFUGZC%imDngmduAjgGtzxOYopjgm9yM{_JIQPR>kw9|mx7F!OhZ)E3=K
z@_(=FL0|G7D*XqFV``w263e|#M+pcNaaHPP)@?GJ6@rX56RWBIy1lv?iR%Ehl#~>K
z`|-uCn+YziGgK8x+~^*_cV=hjG=;$*5H@zd?x0hGkrX!wM9h2sv^92r4=AguzWqgC
zx0I$?WQhG3=^N-mtvAn=m4CTEKgp*0^!S6@H6}YQYcL6~vX$}q4BsJKDiyLm-nTip
z*kB)H+QmdaHu350pFXWhD?<O)tj)*-0muhc6B^FRAKI@=N=jY^e;QYbi4Z(L8!Xbw
zd&<+>*XQQN!4)JUQ!d3y&@LW<>RYx-JN*0-6i1paZ!EzWsK!=1Hx}&cdB?@6F+0V@
z$tCuTI5sUwO;1f~zH>EEp<*GCmjX<n#a!!)t5q}P-#TsN%NM9f`yJbgZlPlcJ{;XI
zAXGYjW`NAe_nCHWIW09&QBTd%W+Bqo$i@av6Fo6G4s&<&9lYxx3KL_FtC6HOWZ1oE
z`tZGD<z_~cCdBw3y}wEm1psA2B_*m#HU8~=pNR?Oig-p-waM}*oVprNKmd)M`M~dD
zt#Bq$vu-!h$D6@vGem_>1(T+|eROoX(|DgMV*5baO#KRE)G+3U`%Q8vc4}PB(ANt%
zo=$_xG|AwSukWvpPdjU?d~SBm#wwFT+>{pI1LU2q+urlKi&MYa>1OAR%doezOJ;Q@
zB8BI@WguSLMe9Q41%uiYKF6KuIK<(~bcIaVGnJT_xWP2J(2((@L$Pe-L9K?`swz%e
zhFy`(w#u9vWHScepB@ztpA(a6?#^jLI?*GD$_)qF)0!R*nj=^Kkv{(>V;--m`Mq{R
zr?n7>f`-a(x^6ceKb+<GHMEtLmE~LTpWv0K6B2ue<SUvx-CxCT<?6XjPY)Co)=u^J
zTdhsm+rw*Q1PtvJ3=|BO=Q=|o_7-X5`jGwn+9@fa<}xRaj=#`5L3+!yU7&bk*!Bym
zkwB;;%{@Dt!tHc>69&p4V4Iuc?u|2zKb!rIQ<!E-GC@gAVqAorjLJAnDR(es=X*uN
z@xlY*dewCYf3+(x@O8V`T!T+oD@EWlat%f8LU^9_-X4#Y3z*1#q9hbDS2XY`R?KiZ
zJ*q4(2j7dPkx(pBh)Ci2nxFNTAx}mWvqdBx#%D|J$emuv5FD)T);RW=0OhPgLJoh1
zquNAZA_w@`6tB?1!Vgl*%mgzJqu1sJ1Qf~QhA8+vJuR}t@X<Q9Y#3hcWL;hTP|7`+
zt%@Eq14E8@Mi&k9ZQskr^kMn54?e0B6W?TUkR+ncot@unB$(6n<RE^sV7om(xj(zV
z+<NzIW@qLo@AWp6j?f&sN+T^RBlG_-_7zZ3ZvWat2nMA{r-Gn#cL+#HN;e2dH#1Ta
z(n^DXfOHNGl0!?0bR#ezQbS8Oe4BI5z4!d@T6e8)maIj*zVCi_{Pr)N=h+GJxu9al
zOznA+@7VmKe;`f7J~$v-{f%^eQqoVtL9rIg^NEjpd*KHMchvJXrx8K)Jz#t08=C|l
zP|>0#y?Xy1-XmXgbR^as@Y~cB;Z7WzU;)yv>%V`3bY~|r;G_Al%Ieq$v#`XH6U#*!
zrHBaN&$yDXWqs^@>rC<ncnR8UZ^tS*56`-05u9(o<y2Lf!*j;lhOM2Rw~G5-y?QkV
zzh=>|M${Gf{RrTwri27Xk*9tkP?04=xEC=IeO&vx5>20!{HcSVq%T?c`p<iBLvc6)
zF>U?TBA@;VSciA}ST8Uzq9|wQmD~$zETYrXeV?n!crvw_yuc&VQ;l|XSzcc+4i9%G
zWTX}>7iSjr28|+n_RJ+{wtLdC>q~vhyW_1fGH$eAznVpH4`ICHyun}5$+qx;v)JAZ
z7&zC*N5cAi4lHaepbnMB>n0Z0qftFc{}<}@CJb}C$uo__7ZKg<oR+1@P2l0@vp-pA
z*c*v$KR+HwYf+^o;2;g}3qOdHje1+*BjtU$y``^RY@`s|x=_AoW`=r*k&U-GE$F)&
zn>gnlN1qALe0_XWg1hwu=jwF-_)XD7WV%RDkIAQmPn$n$U>R@co+cIBpXVuYuk=&!
zJ3l~sp)220YM*i_vx3nYUcaB^I2&3IQ+E`Sue@vltI!tgU4#rOPe@<DG@tO!Y=G6n
zin-F@X4l}k=0El0tlI5rlEMBBhfYI{1E_y(&eyyCOy+gG+QEp|8=rpsvmW+!+n7wz
zP+m<znOd~b>E|Bs4Von%X)|f)Uro!6Lq&Yo0rFJA*n71}Oa30HSbp`U(ERo_>?S}%
z`!#hF7_xXRBCp}&Ht;IgetL`g8V-ilW{3Q!#eiCo#*@xYMACgl2JXj9HsAj&fJ6<y
zW+5LvOCv3NnOXF$=W3=GOKaRG=n`u08gq3n4(_q{EOX^bI=k;s=SsfP*8ghRU9)UE
zQJ}#T8;H{9FL;-bjeW#w)Vx>icAc*UPfkhUyFSH+eegMHZI<p$P)Xq}s)q}nP1rM0
z^?Yjl^5u1QGQfkkhpi3(`#fk=j_QpP8!}v&s4iMr@dvcs1QP<L-1YU`Fz9ApSOW+e
z`&n5=)YMR0pFO?d`4``=n;5j8l435N#7J!sIl<2G;VDKY?*v2IBS^UpqKtjk7xZD>
z3BCy>M#5%C2Gx47^DbP^@L)KjriQB1+QrYq!Ir1-HGA%jDU)SnRMA-qxoY;O8-vol
zS_8@A>HQWYORK5ku*$GQc4L9-4(>sa|6>#5ld-eE{AOFm{LqCVuE}lnZG;RJ4V5TJ
z2Z0E=@-vGtc1X%(>3YA&n<{bAdCuIu)>1>}39&II>xy!MG$Ci4YzmM@7()8}Zyd>3
zHb_Mg%S~0=D~L~Wc7_i+#?_D+Sf|i)@F&*P9C2u-m~glolp5VqvZBE+dnBJLIh-B<
zY67cHb>wPhh%=1gxGfOX<jBxXCP_*j<CEd!k)^BP%B>xk3mW)KK$Qn}t`<JCFeG+!
z7o)YAaNI%{<9%j<j~`lroS5+Y<s@jYw$?HXGxprVwN8PK?zAxDP$#x8lzQ#Sb8~;)
zX}QSqEo;6?Q-33INL;DILL8RMFW_&&(RX5jOqfDxYIB~UkaOevlasTvl8>!VwVRng
z`xJrL07j=I>Y+v~`C7r%wd}2*BOCCXgJZfK-louEqPw1bW-+Wr<P=1|)V{C(!PxV%
zL}kt^gqmOs=F8D3`Sg<<z4=Zz8_2szqUKv$rThr|9V~V?J6rd(KIE)o49iD!p`H-l
z`0hS3{GJW_fUns*ogg|LsW@Rlz<@fDijYCtY@Vr?MpGCl!LFTb;-^vL*)rLDo`*A?
zXq+`O(<2nuYJfNVBH?$=iF;5*x8~C&`Q6>eF>kIJGsevhLg5-r?M1q3*=y?1?4rri
zFx;by3WU4&buLO~(os`=ID#!r!!es;EYFhynK7acjgl|Q8Sm^*?J-C5i%6A9(O^ns
z_MD;tZlpsO3Jau=Fa=)Rdc;Gkmz->fM6UUVn%MCvDJT@hW=V=@p-R84ls{o*VE_Ik
zmKZNFO!f|LM%e1$js4A?oTtBSWoI?jxEp08?RWzb`0GxskC?6*Ncd}I(+mc;_S96_
z60Z->%dWd9)BmY<1L(wig7p@VrUpGb+1Vf8X7X9iYVs3tB942I++W@UU=H0l5LnTA
zB}`0DTmP#Diq69IKSk32kZ?k%>wwa0clLiNV%^U4BH!rSm2!Vb;D6Ph<&TYaGh(0t
zkdT7^(T)0djr2cm_kUMX|1GZd|96$-za_Z-{lx!Jm->&Z9{s!e`tK+H-&g&IxYoa)
z_#gNBkE{MeHtXL{{J*dIk52kOg}M$LO%@(KM~O+r(o+YXV@ME8$rBtA1g2uXW|Wwc
z8VdL+fAdal7&Ox+6;q|u)B~m4#FF=;1}(q-bT{87dYN0PG|gn~z{bkP#LA)pkH@%5
zl7KznZf@<JRC)Svx4)k?P!caB44cO5cA89ioC#x_vVSV(Wuj={Gn1c+F4fc<rYjb0
zHJoO<yFU)nGGhxL@~Y{6$T?E8-a37tl(N2k$Mr^^;17{xfq33Pa*NwWUc)0q+j7z=
zc91*no>|2%;qSTYB~_;V%CB5%aSvTipL?4`(?6@KIyg8w+}*dV{OlfG5%S9#Q~1u?
z2b=U$@<YD!QaV~9le|}W_ZmNoY(6>`fu$7gnHcp<;AjS1ID|Um==cTnECmO$)PBV;
zui4|{CR}8W*jBc;$A!V_H8she^$3rVFJIpOm67!;lC8A8D}1qB5Ta_RJ3Ko!b@Okw
zAi8%K)}rlHXOKCh_VmFWX;WcrS%~V>hqa{!g)Hn_mIhze>8a-eg2O4L32-0<rG-}3
zHg+~0%KoC5Ds)rw|8&$<1NCF-t)=5OrvyJ-NJNF^$i>RUMP7}+#hdIew6_7SnN}`#
ztj5dZ9wyqEy_F*dL58csrDi^#Jo@V#rRa>W+J?1j`ZhFve#-U`^nz8ZVx=8Dw{x@K
z^==-NLeoOETjxXd$mWj@DMqQZ^08(;ocj-wyzZQ)Nftd7hN!;$^mAv<u1?pvTU`)~
zp><(P)cOE*tswt%W<>4hlnzTG{{kEhnObKMqqAwjR(|h}q4VK1zem00&LIT*@YMnZ
z0Vy#r4kV`}_ESe)UKiH8k{wt=f|kTW%)4d?1R%xw`hTGIv9ZSGFVOt~<_z*&!Bt&P
zP14nsj(W+fDFib_Hfi@1LO|oq%+KAFE}FB*^VnWVKD2Z6_TNMK=iVLiKaO<D%$JR6
z_!tn6>Z)JeFRUZC-_W5wM~63k!;Zy77F|XbynpM(FpYSH^8h7kkIxPrpFrwgY8FJ)
z7%$X{L(njP)?#zOJ{?@CotID77-0sM`bxyo%cDxip3!F7*S6pYZHZB04+-}{Otx*;
z_6?p+CSXH6=DV~vd+NV(;^lpxC`nKGbC|lY%zHIkf4si2udiP;ZWBI`)sU#inkZMe
zL2;LhD>5*cg^slE?5xqpVRXjL$<yUGRk%Z)ho@`==`BdE^sPG;wQub0PbBBD%`0mv
zV@>%&=pN_-XiN<c|0`ocuk-hrTl7YAui9nNpL^Pvdb(s8u(i{@Gd_rZjF-s#P*+H(
zLG@JNa^ul~^%8NK%yzzVmS}`P15U@^Gyg);e_rNnPRcH?0pC;fF2rUae#w_CzaZYW
zY`nU5+Wo!q+>2Gpk4JpapIE80xB<lx%C%T`a0A!$)yi;%PRUI+C%#L)-6VjZZTTux
z&$Qo9b(o<UmP?t&9_r~Gk_m!3W;W=XCDAfyO|Cdt8GC}<r?QcEMc|t@&f^Dq5l(i@
z4lygd$Tm`0ps-|Q6xZ0;g+v@O0}iQZeiaV`y}6)#AvyWoonb&Px-Ffsm_GpV%ldZF
zS7lx-i+ij&uA^iRdy>+AU-zTotmwzPduM#;TD5Txm&_O5H>G>ZDG?#1M6h#i*7<*}
zABk%jd@!GbE_kRRg(^hxSMf51@>YX*Lvyhj4eFa2`=L?F6<FDi&;m5D&1$#s<v%xX
zJ$wUEJ0^x^Q6NS9di2kd-kM9H=3=qzQ{VGaIfop*rk8Q$hdRL0)mHglFHQWp4fTNv
zxdou6q|~JOx+cp5DP0|7`Y|WhxjPFPI#cgDah&P8ne~0XZbxAu+>ni@qf-@*9Hhlw
zZUdiM%bg(6H8m^dIlu3D8vp1~w2ga-M*EbfvDUQ^woMOA)p71-AJ4PDj4_fm6|*J!
zSMB{p(T>YqT1d2JO@e(drX)o_EgH@=J!!{7=(;Mjs%?rDRg1gfP=#L$u}|5wa+|er
zm49vtRrI33nZ~N87%Lz{kq%0z(m96LtRXWaAyk@cV-tgmR)dp6{YXf_EUsq`K8#0>
zZYz=`baQt5-R(O8HOkboUJd46HH~?=kXdScM8GKIn7Q>nIf6ydgTHxUSd{h28x^_l
zAHATf^&)9uDcJI{^1H+25m?4bb>iKcaP<df^0CmvKfj#>ns(?d*c_<o;qsADoyso8
zBL(AdD$&3&(VN}IEi3L9$%6~N5uya5LC;2R_@jHia*yN5Y32PtqC?Q=<)gQ%`QT7Y
z&o8%7OSaH)hbV)pRR`5wbh-}&8Qc!i6ag77#B%=R+*vad7Lm{@2}{ZdK4J_gG%s68
z6jJR7J-z$Qyg}4W>U>s$q6`gHaBznzhHA(<4g$4*mHLX2>L=w^_xsK7H(ikt(hL28
zq&-j<E%@>D%wDZli3%;kAobjpOFp(H&QMnpBqWM1?>bFQW69Bvp9ISuS0yC86mEdj
z@sIKwh>G0tw<<1kwC?)ReEhX5_zc)Se_8|4Mo;Sdjyv?!m=Zh_{3e>i*x4cOruY(I
zOG-u2p9EpHL_o)-?DFgGV?OG!`9#dKVa^QgxD^^X8xe_kfT*V!(ww1nlPaUP@an|1
zPeXq#;ubLE80QI0xtZm2Mq7*n7k(kpavy40{@Mdn3iUV=k`3d3Zb=aKI%QyZ$Ub13
zbr`M`P4(*Y0Jzt%gE;z7@;H5u{o~u;EGlPGU;ajE`?XI`=T}sa&Tpa8CWcha&A3t2
zNRM@9IWsfS=1BZ+wRg{mx|RLQLufbYZwuc+gm{MbzaW8F_1llFI1JU&k5BYWLIRRZ
zGu4r}>a|<iJ9#er&)JQ$T^n4tv4*9$vEYei!-8(@zqG`o+LucBBA>6?qUIh5?cUz{
z@+{C{JNPxVZ2kjs@6v|hwDGLO1~ilP1lsqXmUz(p`suanNVo<1`Z@&YSP+vv%Ssj&
zzrmbiEh$FJxYME{0!b!cM|)0R^X*^ltMv?Rodj6buN0Y+Fn*y`=g-B}uZy>_4sy0-
zRz>hoTy9b=+rfN^m{)NK3gqN8M{M`-v-CF^>kfVn4Wh}TK9r#en+#_}Ep$33GSaBI
zPKye(jLcFz{7&zvGu`k`)4#kVg0~NV!-Uiq4Sdsu<u?(IP=@jQl~$v5?ei+uzHS9K
zGeY8`?2)*Y>@fcCVv|TKV|WM{nX(BP-wg)>PZ&RnL+#w^p*<FMTrYz0FZvWluG)L-
zg=WS?kjU*ZH@$Jj{&`HCXpS`8*ezgF16Up}Brb=Z8-~!j!*l!%2h{j4(oh72jExh)
z3*!xk=xZ17T${8{N2IFx2#Oc0N%rwDE{KT}DL%jiERT>eCl0jk-;!(!;qF`9hy*_0
z&13|RfjS;UQ%@p?KDZrJZ3i!ems90(++O4rkV_>e#L6~PoIuig8N0Qc<3>7w_NRh}
z^TYT}Xu*pPaB_a(?tFp7H4C|lOeNcX=hr?lF+DLsuJYiYhyrSiEgecdh8!ZR$Wk{B
zK*=L<vlzkHSlUAi8zkOpgE`%cJkbWN2ls_)2V}c8%dGM}zg~BUHk?2X!KEc<cSBcw
zsQ|{I;+SFyEtNrYqF_8Vua|mrV{OSiDj)JsRDuvEppT}ir<i_<bx^mBC1?WUmuo^$
zm^*GbJU0eSPTz2VL^r`3Bv8u^2esQ+P<^-Trjo?AT@y?J5oD_G*>-=Zldoq_MO<QJ
zYU7J*ekQIz`Hu4kPOh64Eo2?2m<9Caq`AFEF%pksg5WLW56I{rCLf!NcbYDMzXdcR
zp(HK>o5OVN-i@9-tGFrs<f2?(+Gzh61pgJ>5cp$@1xQ&QggD?vHjg7|BPNij?~}Bl
z)DuV!G0T@N;N@Ls8W0qJ*e8*+!Y=%+9BvpHGYASQ+3alE9~gwc>O4iSzOwWCobL7}
zBoIRgi0%vUFj-k?sG7S&AUYqUjo)32bf;hYENYof&MdeHf}dlv10v@3_>H~CW_mlv
zjGGS6%;wV0j)O7Jn@`uXJ@0vYi!`5{<Q~s^=(#O?es%xm7XBV_o_mU{eYe054?_C8
zT*>}IGDxD(Cf^_<20SQ53mabZxV4v01p6Ryhsth#kZPHbVc&50+_+T(`V|Z-RNXCr
z63k4hYPk$Bo@HP#&$`j5KU<r!8-3_uXQGoo+3wY*YsU!t*o)SR?0?25cIcaaf!O}w
z_ECZ9ym2?E*LZy^{RG#AME_&!cOE%bEz``zd<7qgXVvB-feV`B0+&R8x9he9J2#l9
z>zSg6Tw6s{)%(r5n#rODi73TPTMx+VoDy~0?3uUSqzRF)NQLZ~EMKHdnhfQ+l{8$g
zt-12gZBy=KbYDTMgk{>GRcqrj$NAaz7XqXrZbFtXX7cupsq27)@{lOr_h>jQUK0ky
zL=&rO(ENe~uaoi<TF!nWj>RtO#r3b&Quuw5b&R5P>?|ES6|k^IQA5Ysm-O!&-38Ci
z`d>go!*9Evo>ucs{HCaV0Ms?g+M3gBwFh{)7roCrnb}*es<-nrY{vU308bA;7oBni
z{p)kzGX3G6jJP3Audcdillj@%-#flPlM{{aLiSe`4Jw@qlgN%wdYBKA=Zx6cMQh(i
zM|o*#B6obZGLQbD=mh?f==lX%JSESY;Q;I5c^NQ;V2FMuf^`AbLsi*WJAxuZ+cvue
z#vhtChD7na$A$Ad+@dbFHoe653c7XfbG@&{1jNi(AFScG*wK&^EiEojq_YYO&+NKW
zQrPb1(}?(<>TMRn96=#x@UzhL?3c2Lm*L^==a)3;-luWjL;Z9|yYnnpwx->f1bH`7
z@xw8-28_eg1RO}msfC5syGrQe)oyJqi_Cc}_IxFADD^yv_|o`$r}>>yD?h~pvV#+Z
zwD=`ru~WO{Ha?YNNzdwj^Yz|gU`P0qqASPl?Zus@>bcQ&G8LzP437JdjZ^fQYu-WL
zHWq0~0~!^KKLc3b0~;qCV5jJK1#V}R0kiB|zb%uvpA(&GYkyF%9sHI6PvRSfdVtwL
z-)@vxl?gKW)U?8>Jl*o89?;JmGt4YeN{db4o*GnVAuiSDz8(%C?n@GEc8ub+lPiBQ
zUE_A0bQYW^&c7AcLv&y$eEfxl4c^zw-b9qTw6b2HW&7}M(97JImv4e+J}Af$>fJ6V
z%u;8-6?a=8_MYss&UWn1`O@H2)SS6CDeku4-xrLJpDN&ErD(8Tf?E0=`@`^D`IT)X
zHJJo@{q-Ng2j4ep2?-x?=c!OdFbe!*|3u_?1%O8Yl`%gk-wuwc#D_k^`R0y`r<UIp
z*j8M{04!`1Sgn;<vbA8a!IqVgf}r3a0JCECGwDFmNC<*rs}@s)gI6F>5{>u#Ly%zl
zShP(<mlIWlUb_hwOW*0(65Uw(!TYeUh87lR<Di}>STB8GI9`3Ik)133V|5=f7bzoU
z)J)Fpd{I7qCgbLof6@{DVKG?MO;GS>YJ*dp4Rd^9c;7oOii)DJ_GR0Ov2RObl!Xf@
z6FP!F*H>Foo?ol0aozp@p@jghH>w#=dLCHD<}E2C?qW6Lb^@5VvKH98>Ep<uqPF2z
zZi{HeZ57^=&Ine5KiVaqJ5314mAdyWIg^^3w|%dg%Ib3V%KEX-_jTl-{fuM4n{-I%
z9HTmtwDEN77&MObIqZau^B!uKc2q|RphF5At&XhIUnI2AzH3AtQ3@Eo(v@O|x;kf&
z<3_LoxdjESE1E-N<_bB6#Kk*!e`l>Q@%6A|-N1xG14d^Z7<MmxH;gki@MYkJ;raLW
zMtiOczE^V#;L&u;UK9|C<`v-L+P`=AN1BJrE!Y8E>U#5x=vmLt`qL+(^O3o^L(@NE
z&ln#jkM^1^j<QG-gXLaTP9RccQ<_9p8x~O|zbu*QH%BOX=R*=Ynj_fQSJ~!941Esu
zX1~9FZIs4_Dbbh48QE!?XSp<A7tdpA6<QRAk<y<m>dI1W0ag51J>@cSP@w@e+fS#F
z4LtqVyO?5O->e(!s%;rr*d2TGoO1+)28-GAjeqY>YkCwWH%=8|8w)jtq!sFCzlT4~
z!c@ceJF4Ym(brKFNSf0;p?_2Px$hV4{50b1Sp2eoLdIZp@jj*ayGtRYvT~2n^|x*f
z{am${%a-&s{g%C+?gWFDBvmb~T-5?ad-^AI$4U8GUj*u2cU>IH%!SZ<?7H-QzyBJ(
zR*&da`O>_;ws3LmNW)hvH=R>CId@f43Zz|@t=Lr(#eGiGU&0YS%<uKSRu&!wsQ7v>
z2Zd1kn#bssh`rt0tERZ~-!n{9AiOVqBpY~8uKYN*_NYlD<npf{4uDap+z#%U0shW&
z;7Vaa4gX_91I`v|#Q`-ZW`!1c$1J3Ae<dzVtMS0s@f{)2ebm-+*02?uVMIiP3Sn4K
zLygbj0%MC&Gx6l1%=Gk9HbW_|L9^4T0)X?eV)<1^0TLJhhYW4gtZ$@1Oxi|B)_8qS
zy-BJDb%kBqMn%|U-Gpn+Vpmx`-rM*dk526POuwvdIrI6tP3&`RTNV_Qk(rrfbTTQ9
z&F3g=*R@z9my_;$$zT0vZ+xm(+pMG`>nxZ-q&l;KAfT<hqS`)QPETL|Iya=evS!6e
zAfAZGTU@_F*R%p=uf!{=qxkf}ht3HA9=`m^=}0sG@gvt-%TdP;#yhce362Ac;e;M@
z@0sL)xHvsHz&GS20-7avnr=RKV{t_1>jr@a0Q@>|`U=XKAX8YAhqwl{x{&(T#%iUP
z<jh~kZ?&{tc?b$JRTo|ho2*mWPwgr$?Dpv><|#XB_nO-~Y*QZ|!eSE=(l#;TI`{VX
zRa6wnrt;s?9N@|qy*PFa>0Xr2RVyVc+u--Y9~?2Q;Dzw;j3HBLUKgD6<HcEbagT1%
zKV(b1ha)*RF^W&MBhgIsCRYs(ZJqa~<kPmZN2+S)t6nh&^wR{6O0(OlfDz~5=2mC=
z#1w((MNp(}7#w750}xNe{h2X7AP9bU#JuT4^CZ&A?WowX(AL44IvPQN2;#Z=3XG*7
z9dJ-HvbBK$=>C)W2x#X_Z8-W)PEDahDt4{ck~|>Kl}ty5hAz&8=e>{G?p5OZG*iXR
zuF6{5IC!i^bh~W}>gs5Sz4;wlIDJ+XK3h6(XJ6U;rBH*Z+5sA1H1#-!yfl0m7wWcm
zv<uLfTJ}oSQ$Gsx@>agLT{7jmw9-7`VfiNcRK&$e9OBgPp7Cf|lud??SYIVYaP-G?
z9)S2feGvbUBvsT^ZH~be`W6pAYSYrs3;;<jRZ@XEIZ58YX8?{%QcS3hPy$6q$V1{K
z<9g^Y>c``l0yw<L)zHc5vj)>}(*P9aYFzGaZD^0%v;=gj(Otu=xh)({0M#O)@a`R4
zdj|)234CJ98YRB6xmmfM3G0rcmRFEp_f$g0LDC1)#cT&6OHynLi_Ti`^X7(wsRlnu
zD<tlpzN<Iz;?>mDgq?L%0Bm7CJp)5W_mMeGUtMF8>q=gJF3zTU!(^FZy3ax`P0QuS
z$cSk{fj<3m)UmOTi?j2_S^wOY?)1nHo86IRKw9EUX<sQn-ugMNW9)nUE-;hY1+*Js
zI)2sEu<ug27K9m4@fK-@i+gzfc4u?pEra40=w1gWgmlVn9uP+SrM_+0*luo7{a#!w
zHLl0RxYYOG#&bJ=?K#MGW4=}0%uY8o`5%<NS$^{t{Nez_6p1kYE?gQKVuDvQs*5Iz
zq;U^iPbZ{fHx-b$BT!@nJUgEur?We+10<-4b@_OB-vZzGpcI%*AfW5`cOaAjf}!uq
ziw4vg5LtWsMTIh-q=Xn*cHLSFG1QWJM^|ps!E~a%_oY3-bUyEC%VZ0gIGfExc!loI
zpn1osJT>@k9L6KMbZ(rkK0(*x?P(+3R}vhgpq3jJ8vd~v=Gsbw`hEHp>a{ub0S4pU
zt>6?5cL0_A_38Ltcux<6KCUyF%f4&OnmdYG$d7&AcX8;d3CQ*kiywSn)aSb#A3x@P
zZvp@=*9XYSChySTGob)hZM*M1Yf_IKkZHkJX7AhDmUDC8OSB=e1fVMDYVd;)$7aN$
z^d!s>;m*d$tl-v@&~m-rPCXZ-vc>i(F%DVFFKqw2qo?P?oiWDA&{x?&iOkbvu(V-`
z4(IUW%Mx-?i!Tm-bWa6346KHSRDCVM>N&!DlzE@R7nz~@qyGc|e?3Il`5P)5-$BwF
zw(*Wn+ks&FzM#5d-|d-t9BGx6C!Au5ccU>0j%x7kzkem}cnXw0J|`uKR=o38meBIh
ztiJ-e&FG3*+^m$#Q?p4LjZbX`CRbA<j4g8~xx=%#?TbU5B^8#Iria^myoyM2!2{%u
zl<e{t_S4pw6yxF+Y?e#!p`y3LtJqxcSOTN3R>OleipCAtNFabtcuex3#m}$cQG17}
zv-7LrAnts4@hjpKQR^Q(?Cg#oa-N8?va+r4L5dBJQSZII3YP3aMK1LFBU!xd<Ac4U
zgT2zSG73J^rHb|tJ3D(&Q7JWU5^-EGbyHD^S0f{)_PE+i8v66+plWQ^ZmYVZfOFBD
zi>zAr<#Q(|hqrHSDvvznOVm<@VI#=Vu+FhGp~sIyUf@zF$1ZJAOvc4MKy3lUvPp%G
zpsp?n`<LtoD<#Dx-AbRAe*e}pGD;vINlBkv(;%cIUs+uATKa>=%)GJ2ZK?aQ<m26Y
zY{mj^=~sax#();M$fyk1@FgYi56v(-cK+^uq}g=1t^wO>On16XL78}+FMeWg3J)x~
zwl=CtDVdanVlrg|&C4r<bCGd#rfGDvcc#6!Nb~WBP|7T=B1eN38Do(sa_+ZI&uK&Y
z<y91djwE<87w&7QPzc&6y1K@tgoM-{XLNOSaWh6~Yig=_iNU&9DD?HYxw)%f8X6fP
zTxW>&g}vSlXU>ZcpPynooLi2rhfM0;4gyd`DB@)3HC=IW$-O-n$9V*RBNVwkc*@l0
zds5MTyg9`X{}N!dI(pQb8oigebZuTffc4lE;(uN@0SJF-g#^KdIxP@cA)KoV%2ge;
zBhqLPeBLX?Up9*yXTN~IcXrKEbJ~QLq<ZV>uI;vm6d2$G$`5$aI)R3<iSapvPyChC
zI^3FP>076Q<6Iq|!?zdjTOZSj9)7FmJ{Z8f6{2^$pA5&sUa9}kR=bjmt4rxKDJkVF
zgT2Db(5R?}LH3+A{swq0Bjj_6K8tSiNZT;HGV21B8Nj8hzuKoul<%Ff+rKf1S_ZH>
zvo0m5%iGez;zpk>7l1kWa(Zu6Ep~5z58~HmQmogoJ@mc_bV;zGX@=N0)v~e4iNY}^
zurC9M)|l>_B@`#%u{>7jWou3XEDm|~JP&sdK!|ogHkKZ5$GyyDXvuXyhsa}Lg;dql
zq=`8zK79yi6v3Sqj2&Hb%`hqUy>CEB&W_<}rV`WT;VO+{s)`QF#1CHlouBn30PR13
zL&%^6n2r=+c8I`|8}coSa(Fq#*q(7xLx@>*i3z>EP=D^*RG$Hy&luj!)byIq=dQo{
z_aH5GCi5~Ru(MZdbGAkruG-q97my7?yKrg#*77qfCxI_;v%GV6oY<Z>J!BvFf0ub7
zJcG_csKmUYF<oACd~Xv&yWYGE!yK9H9h@B9ISI;!*7(0HG36p-Ay&xzq%bqxJb%F2
zl)o4pfq#H&&iOORgUqrl{Y{0=2C;bM)(|nEvqHWNbos2KtY`4-7o6R>yZZmQ?8nMI
zspzS2wsyvB-P7%Ld@@IVUr?<?Ye%fcb~~q@>=f{3O(y~cMc6Daf8=kFZ#aM}xXt?}
zr1ar(@1L7A+YA)?;$38`eveqTJ;>h1@>9ONA0ViHrs@`exd`LmP9~=e7oHnlb_p^l
zZFLorbYtppzWlN5agSIfU2vwe#7y#y8~$L08RHjW*j|~qkFA}ZL7kmo^}DNYor(-*
z`*{(JQ8f2(?*V4XJ&2YTAGGd$y9Iz}Ls}P{FEIjUXJ=KYh4l;#J6HDsXa@4@;^*j_
zCr{+>+`&HDW&_k4Hnwnbu1{zBd?AGQdFlD{NAdF`BO}LP@a^O9##uX?=)!>PY&pAn
z*r>5KTUt7ocV2Eh5e&J3TB`Euu4xi>3oR+`R{4Snv3PeC`=$u6JFZR+SL;5bz$TxZ
zqCYfquzLtr`DT!7{y5Y4*cvzY=&0}cayQ7NzcTB7O~Ps3waTvBTv=ZJD+*T}iSY1V
z*{oMq9#~$^wNy#hc=`#nQ_O3H9-^2g6wzsFf3Y~(j(vnrBPdfFK=x4Q^^CB<tLwnW
z_p4v9)MN>%sX9H4>Yh0`rkN}=O5(IlkTbsnp_7T&-NzSsi~2R8<XiF6&iDGcP;cV8
zHE?wRB5ief$qwAKawOK{9*H`0pMISHGxK7tu}`D-zGsm}rQ5MGq?M%U`W@EkgoZXR
z&)BksB{n9O`n^;`!~DT7-iy=mEk5(Az*yOCzk^8b&_f`6e0(@qgpd_hoep!Z+KbE8
z1*!7@f2pisyp60I!$X*_D6jnT?6Ni;EZ!A19Xm6#89~JBr3=W}2Qw{b2oSOb6zUIk
z2Go$y4lP1Pl?JEnz62!-UB!t&`M5QO$jaDQao-uI!;wyTb<3fYtTgg~9w(>^9xncT
zt=D8GhSw$5IX2cU48L?=zj>2u!x{eT(;2LIfO}dw-0Z`_S5cX7y8_5D_dl(33)wQS
zEXU3R5|3$B9BJ0mYiscjvql}?synJcNO|9Gjx#6nU0>$QNC9@IrsG#m&f0*0c4Bt@
zg;knXyR!7h1h-e%0fgnt$@!poF8vcWovIg4A7~~dV&4j}7GDu*x{WnFGHX|*fHNjb
zx?TcU58>q8k%*7Dc=w8mN?5@Tbe7W77!(GS<7)a-@Mvaf9+0y=)LU;pN1P-)xKH+T
zf&qCl6MQlIB`7RW29FHkwHgU9==c<ZFLyACN^AIpg>8{$Dv{K}X@y6o>+iBOp3?U#
z`2<uGGMr&!y^>NUW-%HW8#|cXX)zS=vH<31Y?3i%%4TnD4H(5l_OyIAot^fos;Z9Z
zu8HyS)M*nPofr17Ls4?16;0wWC;!K7P=`BYE3MwodEPDZY+6vAcu?nuX~os->CAg|
zFR6?6;E<@|f)dirtwD2+JGAInw{-QVr+!WmKF8TRu(v9mOcl?qX=dOS-+;%fsE~^F
z{D>90AA^YoERpM5r#Vlj-lKN?lFo@ZStTtdqW)M0-*m|O2h8&zjd3ls*2<r~6i<}I
z9WR#;;z#M|WO0wk712XkODw`ul44SPw$B9pX<tajkcDXLz4F}KlMhm>-<TR8OpGGY
zPMFgB=_%l)S`l90_kA6~B!tKWP1zTDmO3-N2<O(n3m3M0dEQ2cGri@S7maYuvyzg1
z(fx}?trjU3Qu_9Jq)!7KYIx446@#+Hes+JROVnLb7NsozGJL*rjXhVA)3NRMxb0-p
zy*@Nr4uO-Seu{D4ajvAzv+-VHVo7FO+k2Tq<KtUnyJjPxZjii=aeiC_yCUl!+RY9D
zoDP`yhbOG8FM}#el%}VqGSrwx)zmgOsfvq>;n=Lq&m3&*#*qH4vsq!8lQz{Wzw5u+
z+m96Yg(oL7$pZYvZM-|eZbwjCTU#l!_Cw~x3k-h<P&RGI%w%KZ19)%};w75d+QjzZ
ztKX|DD`K#-aBnX+wU!y~B%I9LCvk0co~I+HM}V!JU-XcD=j;qo_t~l*s0bydL=#Yu
zQf8?Y>LsVh$J*K1W%xW*Pz)FMUawPw+u6r|dPq`VSC>4UQD1*LwYv!S6>Ijvnh)X8
zW;6U$+cPq%w!X1WMM;H5OV4uwXc?NC@v&Mx_1yWn_A*Q~@d*zt-&j=1=K|sap{`!?
z?kNjH?~iFAUQT(qYKOG!{w?%)wIKF0zuR~5<W-c={0^!fuCG&p^S7h`nKkV0J##MI
zgOU{fQp4rlI!{J4&wGF`P?U1MM%WDk{|y_Pfpk%-2jp|oG#uk?fNbYl$-Qh}IreF3
zvkxjXorQd2wu&u!g(d-Pj9aM$9z_1m?l?F<A|gWmj<fQ>0OZ&5)~Kqn8!!_!eAe>L
z!%C?*c&GxAAB}HMD*>TIOD{Gqbr}UTk&lj!JUj%Iz$YTYx<?+sh=5)gLtMW_SjX?K
zv$Kd6`)HopS^iXd+Na?2`HY0%q2#S7A@o#+xikO*A<@@0nwuT_L`t)|w3Ji(^J8UY
zi_djQPM!PMXXmIg-(UpK;la@}X4am80ky*Tq@=Ysxw&aZVgOd1HaEw@M*+FOKnDm=
z#P);B>)TRIn$hX`s!zf1fQbx^F>^3zLKh17h0~H0`XXU~trU=FtsQI%i%LX2HlKze
zM=uWe;F~LlK<;S-@SH)=0eZBWhaZeB5eboypx{QyyY&;Gu6-2N`5O=s-*pw&V+On~
z+|S9&JHf`RNmm5Vj+1_@pipsgR?U1jH>;|c{*l;(I7h*yu#V(QHB)axS!aVLe08;K
z`HxZeB0@7pBLC(iFI>UfhP{yy%GG>0>kha3S!WGIBGZIf>}^ZnMPlB|FWjF88ZZ<U
z7P-J&c)7U=|J(vWDem5%C+`oSyFXZe*tTd*4#c?}%w~G$AAOYm&8StHF6==K6uIaF
zZ@u^e<Zm9^mpIzgK{rgx9dASEEg7&+ZH(($CEoYw$|p!FROFuQZ7IBr&nn0g;CsR_
z#2-4nds0;wSQU5{tXHVacqc;x4$i&cq1T<)m}jvbE*N))JI6@GJSV`ReH@VOz&OXJ
z`Bzo%Cd9p|_f@Wfdf!UqBh(n7`%vBo>Dx$6atexpbYa)E->15+t13xi`@gP4LDEQ~
zEwf!V0?XczB3JdPDVHwn5SDxd-3GIz^j<yKSBu7xpITlqJ%m5&$-IA`WH2=%l+@*F
z^H~#-O(C<rot+ZV)MSaGuC{*f>b@Xlq$<5$jVX~RL^W5<S%6a5D<pY6^34BD?h~jm
z0R2x-CnJ){&nUJ4oIlNTB`7(0y(p2Ln1sj_f7r}&CquuuA`ih}^PQu8e2V2Lxq8D7
z&;x>kg394NOUGA$lF-!f_A^5JIK|k|kTsqCmrMO)g;%gAsnb&AtaRGi`uDcXQUJo|
z-TMq>rjpV^O0IYAHZE#9=H}A6WQTOOn^8kMd+vY~>{|I1?8O)XAURj<=2Te7QtRsU
zy=R+LS;caXVn_Qe9t>7}AfKIwn4Xq7Zzy_AgUSk6dmH@Y2UEI40O~qfNc^eLHKpg`
z8Br5CW$Kxxp?$ZYEG+~A2mr_zU)KlZErWe^jJ0JA0~6yDl)s4ZGSj6>aELU$Q>GL~
zhj`QrR&dr@_NNY-R&b4umKroejupr%%tG)-q-ChSd;uN`X6o1d@McjoKQZyiaa&_=
z(Yv`9fNNLlXcR>*WY?CJEAD+9QIcwCqFVk{*`T^GOLBzi89VdgF4?D))UB;WueEO;
z>VJnDG_!SY-~3*BMl2bIm`>i?<5FO@^{io`n^)8+Mj-S&S7P$=WReUf_V-jYvH@X`
zEphZ3Fu(b^7b)%}laM45licfLO(@f&x-Uro<XM~5YESP#nvi!MP>!R2$h7ovy^skc
z{UkF{yZLFH7w&~6@b}ag1cxVQmVGDh`0=Cif`gd|ElKMvZJj<RbLTGlBlhX3w?IuO
zmY&Kkb$#8Iha9&$2az}3^&_~)WQAn8zQO(W39*NCy+=?z@b(o46qm{c$9dyTR2{SG
zip%SYzZ;k|zg>`$3J9S$rw?U$VY^b6Ypk35vUA0$@?NEd(r1tzd&EW3L$voJ`K36!
zaZEkxC-2~>N?A>2@W&L5NzKv0`+j3x7}H;06;MXhjZLjiiVdzNc_2J_dB(NJwD5G0
zxJbb_IJQm)ncKnJBF_wwHD!@EC&$j#XDu(pywZ5%Uagl3<U7nJ4Au#cR}MGU;HeDU
zl{M8wxBFnL_RHmhYH$s>#$8PRt}ZMHK@I+=TaXBZ?EDYHMN{n(@4C8j0tk+5uXcj=
z$tm`1Gc4{Z&-Tq5QHzTXGg&-zzb=zMjgpyGaWCEMkRv0rIc|5hmVTpCaZBuhzJh7G
z?sW_UW>>JZ3`1AveavB|n9cdGah>M3f&&Ni>rPg8TIv_aW495ZI#K}*`HYvw3Ndf8
zEABc0Vz#jJffHb=Li$o$3I_2lPndd__xRu%^p!b_ERr#~3pkPV);TqjASy24G`qaO
zuqkAUq8536iF(iODSnEL1&+XsqeERx0NUx?)DSHJ)FARMCOSCuXg#Z<0^X)J=8O*T
zV}N1{-yn{t;3CTt`mAb6mynPplWIJsluC2<^HB;pIZ|XcV%yKiq2@J?vfUeA*CT^^
zN$16BBBsi&6{p|X*?_|YL>5*Dj7iCfPk)U;Io^3C3#}ly-Pnx3S{xtQYjA!#nfkm-
z$oSz!R$g$|Qcj0@chq_bAfs^!(5jZaN=&rQPvaebf_0PLlJGIw2CU$&@RT~+bK<7$
z*C+iQU0qr^`;m*g;3$GYlRY%Tc{L$l8LR2}OnOuz0V$UqW&mx$H%cI0({}*%!alDf
zja!Waj9YPE--_>Cth{6Z2y^qfx;V5nTaDXp&;<^UgR-)dTtQTnqk-K))8#ribEn;E
zTPFV_#gNCqr{EPKh0G_SDj#*|9TIqocnfE<K;)dSs~5_>&s}K497LSeHh1OGSr0Hs
z^wD(RWbfnrmYId!$gz%8j#6$?63N%*+K>1i+1n(bS}H-5j3$O=de7O#f(vbEYD#B*
z?9b>54GM3xxi?29`_WoK#9I^G!*|url(F<rfP?10S?<Rnj^8rVGb|)6aSlo=8KBIv
z`Yxgw06zMW9L`0;LRj0#M@#^LYfySyr301LwfG@t<P7_04JZi#ahAP52k7>KtrD7=
z%aG{AI4WM~(~$mK5PX#~Sd?gw2?tO(i+?F?<&Ft6O%=4Ijt|sTS6?O}kR!lMX}@#l
z&c;=?-iWEKrHZdF(6cBiEd0Xh6**koyVQZ{@ApAHPYvT&(BomiHnJ@$8e@th>|9-5
z3AefqvIL&TsO12b-#34Bc1IeJZd$)L^rLzM6|+^z_w!1$K_-HHb$JU^OViy~1T9Il
z<MlLkqPs0Bl5iNBl@1;f5!WH=)di10R5=v-efEnT#L7M%oDUfz_u|cnOFfu)co2}m
znG+MkXuuczscY7)lF>B-qO_TxKP3j&Utk6WrU`hS0I3c}70T?pV+&z;7@WR8+Pu9~
z(nTaLXZDV}{92!51;nJp5%EGvC&Oi70r9qzuRM^RjPH+(*KB8|rymF7<em+N4x70^
z8Ptca&rA^k(l78be>?%)eC&|mW!PNk@V=Bd5%E$3!sDj7@{j3eYUfKp<eT`A1nk*o
zK>Dah{=?X}?**Aa^a>~lfvs?QT8}#M9=;+ONqenj?ZcOXXdTfD)AU>*Tuf4&7#q{j
z`Mk5dWp8hL53;gCtWxZoKrR;>AHTM~PE1ZLVa#}3qj0be)<^$x7)k7d-%wXpC2wwc
zNr}B}93B;C?3o1@NSU>l93JW4CG9;74J9{y^bida*XeTnr=YL^m9?Lfn}>;sd5U)g
zN=CQ*Ky%Rj$l1D0I6xG7|KWq_H!rdm+dst;P;lFw$YsiXO7)H+@!(XmZ3otsLl=PT
zuw<1C4O5Ekt)`qF_{np~;!`EYr^};%(vA-c(h3m4UM5*3eE#s$5(v(ol|8L(Is+)O
zoaPD#tM43{_0hC`ou<HIYicB7p#8k1YZe@t`}-LP-qN|P*~XQBDB|tm?jGNf>z99o
zR!Ct3`A*P6@ZcsJ_ql<Ig|<=D6Mc&e7qe=Rmf1S)kAOkN_gLksQ29tQD$Z#&tE8Aj
ziK=c-AqQawYpTx(iXp?ln%pjji&yE2i<esPqe&#}rJ-S|&Zd@bl0Ty<I4`N{prEMN
z+a$eNg9+JUIax*aRgM<q7uC%cho#QZXnCLL(${z%^yC8xnz$YzpCy7rjA@Wv14iy4
z884>aQ)cFfsIXgpfK9?`RP)WTyhZI%RM>|*cpED-QZ8!0K`d_Mxm+#U@K)8>*kQg=
z3`BW=G04GZJ^Q}Ni$Nvj3KgdUcx1V1@#!h9MXnyMqWLPRpSc~|;#9;{I5OZByWcYd
zAVWi{ZkvDF>hBR3Y64bRM_?V;zLB2-fm6+{Q)NCGS;81aom%S@Q&p`=TV4m<rA$5f
zXay>S-BFauqHbvLS6>BZfpZT3c+8c=BF1*K(4EG@$~N8Nb{rqJO2TdkvI;L^qrZIN
zDL;4GK7i})6N_BVhP{lhY%Wb}7TDC2kZ6|4CgXi;U}#^G9p?&ync;TqaVDZ>)TP9w
ze{y<aHaAC(B$NIA!4ZhGi0(?;()cI>B69pkkc3v3=EqS%ADhe*6|NmLEPo0dMdC1B
zKo%Q@iav~xF)Iw{?3O9>u}am;wQ!x9EHlVd6G4cHA6!#8|DK8gQaQ2ofDm75gy4B|
z7M^zT+VtIQRnpgQj~|y57h|G_#dSw5tu6yiEde1x(Zd5*U>@KaM$PUEXlrtLb7{z{
zh4<bKK-{GK>L*9NBpT%WcoU0uV`F{bix5zB=Bj@AjH9;BWzE#vn+j6!=|^MZtVFX<
z2;SzFej;jImejvFco@Wr2gJ!|7L{(3ksz5UjZ5~!oMTi?oe9Unacisgp;W!#PatcS
z95PugKT{{-;NzhD?wtWiYJN_g94$v#QBf|F8d|j1Tl@3|li}~f+5LSdx*%a<4L20|
zG8gg;@+m%kVtis{W%<B-BENwG?XswW)Ark!XJ%E5Q-M`=8x`6$G}Dz%XCs-JbUG{+
z63$mi%=x!z<%S+65P!bc7yt6sooM|}6zenz#$Qwb^!HV4u|ErlPKMt^Da_;m*`j<}
zVTLEfastk49sbt$(tS^){UrdKd{ewS9Z|*3#>}&N&xXQQPcQinB$mFGX0FEl?01D!
zck=EDnFrakq@Jx|LZP#aezHe*tm3Mr^E*VU-+90C7>>*q_M`pC{L*IKwlb`;`VkJ@
zets(iKsx}01H;n@z%N%F2%xxlTg)&<;iQ!70<mjn_Y)~hiKUgac0x{nuM@^>xJ~@y
zXV&`ZwH&aCiza>k%i}i%Xy0>fX~2Qh-S}+~^UBZgv6qM}3egmj^g&17g593wy-zQL
zj0Vb|(^~Nw;#S#$6reg>17uV~wi$LZRtz`p5T|sSmoH(NIeXRJe_tP@G3}}C9S5YP
z#UPtM_edZT2fs$mT7^G6YJN_;wI^-KL5l9`>e)4f)@@!PV5h9Fui_<br4yK6JDGWT
z4)HVLp!WU^2cFFck<s=yl1rnVM+i$&T{qqjusG29xd?0wOhq@2Z$OygvGv;4X=Zxg
zt(6fzcwV<5YHihcw!syfcZ7-dDZS12Xx5agtbAhAuT!EsGshB)YiC<O<6OnUdiXXi
z(BEfNYu-g(W=*BD4Yx;eh{WNHiDY-RBz@i;1C?&1shMbI_4UrKmUYpb)7LaNYU)A7
zT#chg!47O3zDqrazIG?|tBfNJB_ZL>fOz~nA&sY?;kBvE)WA5u&}2M^OYgFiCR6;&
zl69TA6i>pHcVQEJ@?JKWL>v%eAgfcpe3uNWzUu$W*#lezS4*CjQXgk#!6Y6m_E`z(
z7q98bxh!dTtz(;=4&z5mW2>KMdn<+PBx6A)gLl?nGrn)I41K9K5*Z!6>>d=pZJqh3
zH!jZYmveN_^g$NIm}Ts+BZf<T-ye#1=`H+D^^F<7q66!6P|d$Q*qb+sJ~3s_^Lf_A
zXvz0BT?_ZLC{H89N{6kknt<k5fo7qRAsRRcikX?BkRxa4n}7R)n)>Rmuq&D`uRXt3
zDk8t`Vdn{x{*;Dhhk-3wUhhfr9P|-fWBqqwY6Qra$<*=}e)@qH<uH3m7G&5c>g6)P
zKiv<KJek<1Bi`E&L_ykv<GJ`B(rb$mhK<LF;dIAmo;%L%rb41SBA{|K&xP6kIJ=UI
zdpj7_^?dx-5WL|v3j$51(2;=3gED8^>h?OhQE7A$4^tuTi~J%tv)ZAx*M8A*Pw4M#
z9Wqqi!DWiqD~+zk??pk2N_Zq<HK;=rC-O9&-N`8XBW#lgI5q24hYs2PAvw!=wLLRf
z09t{fBy9h?vJq$m7F4zD;=trD)Fc5>gp9}XkHmIa5!a0scK2`6$5}CS=`HTNgxT@8
zhkd)cCxJ#;wm9!K!FuNGtevpexuz|(MTO2tO^pJ{z~s6jcEFJDX2)<l$b?ggxqQ;g
zh8GqKxb9&#i|*9dGWrB&`ie5Nnz*}rrV2T4UfouO@q@f3DRyd252*Hv1f?yrtK#SN
zmjGr2AVzV_<+=4c`67ClhkG<RM;LB@o9RFQeoA)`GdzG8fg_v6sp=nKc@P4$F>=+J
zRODFMerqw=hGHJOa(}q)*z#4+U`wk>c`&~35#S2#Vg_#4qhyo^lD>WGb$_~DT=glZ
z>JvSHqqm$`<PICOc%GhVzMIT$kc4TDmu~6r3e1i=s$ATbx^B}qn^|euNwiV|0A|!1
zduSE>vvfW=;X%Ae)nw<`iY;^iNjt+F|8~iifMMpj_MIowQap&QqrO{0YD2>eu*W1q
zbYfNA?=h$9+{|QW^Rp+gIG+RH-wos-Z4%&*UvmOb8a*uihp3p6ox?U+giM9gLf6tK
z(b$9^!NHH~Dch%RZ-aC;3#%v#%chj1mI2~ISK{iH2*clC%S&uB%Dfxwls+__hSTJb
z0lLqNsNbq#2#R@!+rDf#dz1xY)(WmZBx=zaWrmD6XAHoo@}Nw-d#@}gu=vj(N(!Q7
zGYf{UV|M=rXsDyNp`nAO=Ct^=VtdT9zaP=&%lF}~HPe3qj!_0~?Ju^2eM)fE0gQeY
zbEtO`#0%PP*`p<VHre`a0T4nMKNKtBpaCG*SRbIilnqY;$WA?lXmLZPaD9n#IVug`
z3F0S{{Zg@mN8umrq@+m}mMlOiLkCh&H%P-nhHXXQWhHeFzp`Bv2j+&}xE-1z7HkMW
z@`f(ym_Se9AG9flZa_A`Q~qycEdh`Ug-AA}Q*|;O*x28|&4&TwU}ztF0XhT}iHlhJ
zPBr+;<QE0*-!Q_!p_Z`b;_X?6wJ?W5B=rZ{nX)3-bdG~Q#m>-*EoA6EL26A5HUk9p
zGkc~R`aB>0s@gg5sD@8cqV_{1pM2DlOxrMmtt9dxPUgE%Ce_UOylf1F{ZP{r6yMO|
zi`yJ_w&}b>vcV1%m<dAPh=!;cN2qaA_5FuF<WynHRQ1B7c&O~rIRY^LX$`^b4zGYv
zgbG^wI>7q<4t79BMCyZ{{XPc}Q{a^WF#QF<#SJMTac>w18Lo;rtBPx&>mGO-x?zNm
zA+1`TaQ@HTM4pmSYA6Tt#rSh1Hw?$X(Wp+zsdyPsv$&}>bF7Du7uu)fsjmE04N`!H
zgPLVH*b|uE=Y_iRXQ*!nD>wW_39#Z85US*pLjur-`nC+e2PKpz1VwrwwO%vRy=R3X
zc(xUp5uyx&Tz5h$*I}~SEKzhSY>I!s(mWX@65tgN0UEst0E4~Z;H$I&tqA}(0Vg2(
zvbX_F6z~I%8o|`TQ&0gIzdpJE-v1u!HjJ3I;g~WBf}5$7*v$!`vtX_RZ~P<?T-rs2
z<H`@Yd3!9tKKL2a_Ws}hGrH|{&i@Z!9$_XW1d71b+rbXoGWdXO0UA8ibnE7ry}w5W
zO0!Y<FD?rJV1D-V1#|tlnlF6G8JdiFLuPpn@Tjfke}SC=2Zj{9bHfeqA=vz{qk8_n
z6S4&X-WPCDGQjlx-VCleHvj|^@H#_9)x+~(d{w}W25$oM*$BYj@EZVp3S=ve2{=LS
zpSIMMaSK3gouGfkPu<VQkQ{0O0kq(7-hd0xBhR(}8(odX*$S43coc>$AddeR8-gL=
zuMlS6>bB(01VCn29>e$*Cw>j(QGG5241&T2H1O_z?+Y5xgt|MN20n>_Cf=}mZb%V2
z|C(AEf5D!GxOj!YhSKo&SY8y}fU3aw0F1C8pd(Ra_<~<-uR9O`7_{F_&FXa)0I-6u
zoAadp?paKHBP`i&%_^gkh`Dj3ALtQ3u}P#K_?{NPs?Pwb_Xfec=>b*(WkMRD!~j~%
zP~<zHF^cv-!-IM3j3uiLAPIv>BV~YMG<yWlUKhQ<BrW0v*Hb{6z<k31{mi4~958gc
z7`cjfL%9E^L$?=k@J4hFBiLN{|2F{j1wUv%=!;BYz8v*tnZNO;0OyT03}{A+wHe%@
zxBfNLMO1kOGJ0om0hl#I-3<L|>%YlP)(<|tzv)?Eo#H?%$9|!{biW2TgH1DlMpGBS
z{MSupyU8eXjBxSn4g2P9X2;FTyMn9SZmiwkOeU~e&_v4`(7@6K@Hh<6A$1D2PXEO{
zM{bGTJ-AJD2a+M3s|yppjPwnWam!rJ&ME4ahab68u-+@&eTltYgM){t3F^@wN|NrJ
zDv7yI2Hl2Om9>6|tQnvMhdHN7Mjf_|8Ea8JD`?P~JG>eaB$r8abGEg!Wzfps*Seir
zZ+7NN`IqA+mF&Y5IM5_2gtrw#g5w1J&|?lCXCf`1dL%&*D3jgx73Zd-hmcWH1g=yi
z{W^*e0d>u&VO;aEV!5Q2FmlNHlNYaX3Gr{wMvzg0l_BJy1YZ1a<`dqlz>-#^KSEt^
z)=mek6Ad>E1bBOlS8f>4$PWu&o_QBENJy4}X<rMbC_qhb+5c|t`9+}nF(iUKF(y_+
z4IF1cEIAy?Nm%+toHefc6*CSVj`RMXkIf#r70q+ugEZW)ZNRY^hp_RnCbYKK==Wat
zMKDtv1pt}<Qe!cE2o4q<t-#oHS6cfr5Lirze+ZJ{Ls8$C|8yy*=^1O2xSb0@bZ!UH
zbt#S^bARlOECo)<kFMrC=>)oAX#bC{w*ZPOTG~Yif;$8WPOuO>xVuY2aCdii1`-^C
zTYvz;-JQYRCAbdm?#|oi-2dJuRj+D_ni{6op4Hu}ZFTntKoMYJ;aXc+!NX0>EW~ES
zEv?KTfq>P0pPvCRjG2EcXdrtsefvzIdFITnX)JF?ID~tqG~wDvJm)JE_hTW`Cg0eY
zz4L7BAFp81AA$M6jp6m^bzPYaw+Ve|$wkqczioLr0n=|Q3yXKu4;vQHcb(@(alkmN
zlUvN?rELShMo|x0O&LQ8PZ`I_bpUBeEs1lenDBG)0k^||taiTVpEE0}@?h-b-7d->
zmAoCg1u|Cgc^vinWmbtL{9p~oZKupz=i{L{@Hj(dJOl8+Z%uGtru0b|w-I&HAm>fI
z<#wN=;`0jT7&xQ!f|zo8@l}CI9TjsNgcYpa+D!|K{VJWcn^o*-`N&c6_x;HW2*_mT
zJ~atdgQ?gxi{II}b&_~v%IwW|6WKAP)Ah#I-7hrENfZ-fZe5+20>$GqS`uXbW`4*+
za?%KCVPJwcb^gMT9YC5sBFkWuzO;^H;1vd88&t&GFR_k$Z$)!FV{EQ~!CeUZUi_~C
zAxVfAir|O==)@EMC$(%O1+j~;{EwKy(OI$Y%X4Y-D{0V$4;qTY9DqX!;=9TQ$^JAe
zVygcX;hkERr{>XsdnLjU*_8~-5|^4DoYPRw*`XD`ypX6=YOivz>-3@FKsS8+<W@I6
zS{FI66?u}7_@5qG=&1|0tqu9S>hir%Y(_1+!j6q=osSdAX(1X0`CGu@p`4eGk~p{i
z-uix-(jY0R9`Vu9a^AoG5O1GPpXfV*6Vn!`Vy_;u1^^hL?_G@ji{HvGR|du!y!~BI
z-t7lkTo3hqEG+Vst<3DkHZF0Uwd7q!`q&3x46pA$d-0~?nb91M^AeFTvsmvJ6%_RE
zr)zK$ML|-&^-jip;jXA_kSj8jGjzN!KhoesnWea<AjHROFx~jWtls4P(qI$-G~yJK
zw?3hyuR76Q++F>EuO%i<&-6Pu$xCz<sJcV<7tWexAW+QWi|YaMS}Mh$0Sbqh3LlL8
z;$kiC&WqmM(kz`fq!$B%PXmKtSfIfnCeP;sjl)CY^8je%2hbTpQ>AllVG7Sxvv?UJ
zh@!mt=3=2tJD7`5Wz>jiTB{sYC$jWQr;~8C=@<W~>nL2EefRi_hGdXqRoQO&j97iR
zL%)fwr0bKmULhznw(t4Ns83!L4FEX)i+@NT4Fr)dfyy)Vvbf*jXQ!HvT%mWJk~S~9
zQ>w+5T6eKNw5PW=HlWTDbxR0{by>X$In$J@(Dlx0*B>+^e1k;Gzw_X~`9sGm8&7_W
zZQnLJ-yvdbEu=SFW7(wOVFWC(D5F$Nb9Rb*+H4e3iF?f(_^##mfBP_j7)}(+J_c?<
z(d{TKY%xviUI#|RMpR|o!l{H7K9-M{?1T_S0Y-kEY6i?CTXHhEYRINbPG;+18yNqy
z;CNz7E$Xu3KTWF5#6Vd5|M7?ZV?A9<>Zh6kr|e|*$qFA&Rz*cbDQp8kzSKcTNKJ?{
zKiigQ`v>s;79)D*s<ENktVUBc9$wMV-pI}d$RF$Ir~o5jQLbE!9afb}XRlGBqnZ2Q
zy_Bs=19RWs$T0wE2W45<V)atsjg*BMsH)L}`h$eEm@P0Vq7<l{<rQVNadC9dKTWEa
z)gp<86cS{5PX-Rnj^#J{Uk-{h2)&%6ukK3?XlTk$^&4~$3UR<<9{Y7JkGxbu+ZStJ
zVw!6UzE4GgF>rkMZU|g+0eAf4ewJ`YV`FV!4|u`|`&|D1uNrMP{tvOPQzMvLT`saB
z#8j%7S|5o3dsp#!Sc_#S6+-IcfkRn27dY;d6@!h+<j8|Uf7W+!%M`lai0(-{>WvY$
z=kXaKzQEY-9-kz)D-+qrr>$Zs_UH?vU6Xe^e-+<TRGK;O@4zre2v*J=NpZUh$FCX8
zUH0OJ>%R`}?h)PO5c5@I-rKrexv*=W_x)@)b9DV;fdbsvoc{Sd3A_WrD4f4`I08E@
zJd*wv_a@z=r7jS-K_r3|#5$N}$hHp(<=X5t_Us@rcQ6jz&CChF40S5=LJ;RcTXuC7
zX+&>nlqhufS?Mwy$Hj5oQ~2n%%xB_qz58t{l|6Ve{gWiI{NZnQNn(VL$ZgqNd0!a|
zrUlqC_7cA=U`;kt-<hFDk6tGhZR8%4X5^KZw~PP~MK-_`R)%3j#9-~^h1oe(HTA>?
zcsL!cWuU%vfxl&Dc7`qqWnW-dvRD}yaDfen6r4=SzyJc^mw-`qAlCOt62?x}$|QkZ
zuCDG(%%f-SP~Za>mE4eH9tbDr3{b783P8SC6cmO?q7_$^_10o~gPI|HDp5bX<Kt_b
zd+`4KtL5_xI)9iDxM6*P2K6RV4NRZ}<Fgkik{lnQg9OMtZXzTbbG9xP){bBip3tLE
zxZND|!548`g;8sLrmPlYzsp`+2gh@X68dBG8%)V&lk4O#N%-Ot{~Ycdv|DyDBKq)y
z&K*4fH1Z7(;n!&C*EO~kIhhx83=m4xu9(}_Vo8X|NB`v9dchdL@W8GyN*{HgGQj+m
zE#}iyH?daPvSljg0j_+$m&h$|d)l56Gprs9z%N1Dh?7c8cIq$C<EtBTif`3@@e?A9
z;gI2rnI5-hNScmCcb9})wU<BpZRLwHZzS(7O;pY`P?@<oMKSf12f2`x>%j|vejix6
zwJ7`6pj>sIqIU=_e%Q>8vd2|p|3>TRLazzKJe(TmEM1KN>PP&npU(1N7&Ce9FmP|f
zLi104k#md`o~PZrXz^=N+h)YL5qZp3{cu=#*JWzl()0*}3k`q8B@Nq2{u!PBgQJ1n
zre<3Z4~d;SSGbK`b}9~iI^IVUHe`^du-@aI*AIoR&J;8NUOe;w@ISSQrH<@1;TFSk
zkBiE!64MIq4?~vKd|BdVWe}tBFhNbXzDIEwY6B<-fW!2FnpfoKi&FeiNBOYm89q{k
zVHKULUt=Cxf#VrjCT+<*Si7ea<ya)3pT`fhLIJ9%m-Ii~#s6<-xF!Xtn1v9LES+(%
zdAXZEu6Ir*_G)^64D70Maa2%@P$^ZbpH;&cXRhZ|lMBviZ|LtD%Fk|}8}Ita&eR+^
z=G;UQCqs=JPKYKYsf7&U;p1zp<7jM<qh}ayLwLA&*i|mhgT#K6-8U<9W#-h@P*Ky<
zBgDedR?!RoL~-2-&$GnN1N3DbT_o(a==t|n$vh4`+wtG}U!1V0`aF%l?0q}M4i5sc
zQnURUGyj}KFVK1ydYGmyFCV9mGZ3Zoh1<UGgP#9k;)QE~$voM~eSsuuUA{gC(HMh+
zujh+7#|^ZWpz?I>5~!bs3CNDi_N+VO-Lm5ci}`=~a;NJ?1tKXg;@AJ)=x-W(d)Xr;
z0nanMgj-pN`(ZU&Fhy`+D#V(cv2?b4<;Q9IS4xdi3w_0c5Ju9{vWetD{i|v7ndk;Q
zLIfVEqig0>Q0V)Z+7&gQKIJJ|15c_pwQ__2of{^^VViH!DCX>hAlB6`6aWn=h(cor
zN!ZTxV}97f`L|7}&+kDPlIeB=m1~#2JrvTMAV#98+c9hxJ~C0K+V5U<dzQK*`!Z0Z
z8znUNxm{Q2xOwHvkaE5`sI$wGy}87yixpTpRU)x*Q<*46+s;@?TK8r-cbC7?8nNn6
z*q+lO`gAugsMD-R#-J})m8{)*5`q>D#3-!l4&7|6R0Hg9p}qYJ*74Lwl^Qe9BBXm)
zxO&|W)+%nTgH_2vtTSoa*_@TKG~bm+n5g);e&3lWi@V~9V%^L$99C!``0@SGW=5$m
z7Ere|UW<*^CVmrLMbCIJZYhOiyP&-R-GVK(rJa5p67V3oNR<3?ra%P5NqL|uQHxPs
zbGvGYeRqi;s1Jj%{Z;@K(XrImdeqgsnPQ>!w1xvt6IY}iaC0eQr|4#_{L@|$oxB5t
zin_5)=n@)3h6sutA74GyG%*RB{1-oDI)yDE&v3NcFSY6h44V!Tlb5z25P-=>j7TM%
z7+3d^j7!Q`P7o&K6;Q5F8pHz{x!V2iM7^7Jvw2)z*=BdI#*R;p&(GJ6BIM<S-yRDe
z<mVOBs_TH#h&}%%_Z{PtU}>}2;F0;_hOA2N*}-w9zq!QcZ^vyGo>Yr&6%cp$ZHZXJ
z@l@OXao%s4aZ+B1OhYxUzJI76mIf}C+J&MAzBk0=QZs1gTFNG<?2!zbk7HAVaDGUP
z7d_=-p@hRNu1+i7dS`)4xKTy2t88*hZo3=X;aNF3i8YXcO1eQawqvga>$RL$#|3hX
zZ;;kA#!nUH?=U8Q@gI(=F&Ox>orjlDhHU!VZnd+===Uv$8h_DYdVdwTO%upzKL`sF
z)~V}VCPW;H^HpPH!)Z2h>7Dm468lt;D?IbIasEdqHeKNC;%#hu^I>Q9>e+I8GRy?k
zv4|I2>mHJV=j$41vH11virBfGiJ%7&Bk%Er)Jl=AYXTLGM|&8D>g3464EWC8z&uW%
zodeJsR#-sC7YqB*^T7OH!1IP$@nqjSOv065#DT|lVpuz|GW3$$XGaPWjG#7z`Qh@N
zCTNhw@F~00dn9Tz6q!VkaBs)3k?qZ&`x~{;>fXJLl7?OcJMNTCH)R2pQdwe!tJMJ9
z$|%UqDn;|Xy~t@hactS@V3)_cnn!!nn{}CsRf=jPB->iH>Y&bZ5$G$`z?O~N@UVuu
z?K?qkm;j^2K<RJz`1t9+B1dQekO&Qvqv#zo6>mJv#u2mHv}K4#6viz)>}$;>eZBUU
z69goZ{}0r8Laed!^%H1@yAeMn>6_v&0RM7?R$Ng}T>36^C>)y^r?|q#P%F+zl*RWe
z#X31T;mTC=^p+^G|2B3`jQ|lP8eCwli+8daP?u9$%J8dT=OX-bhj8p`yzt|6$BrQF
z^k=4U+6{ia(_n=~=E1of2Sd;I;OY}Qri_y*nY%miy|OOzU4Q!C0|Rt$L1I`Qw(GA_
zcZ6U^z31a4g=z6=DoaEOSnAJ_t_}_EgN!5xz4zkb?~D5?lSXt}|Eibr<<v@|nqF7e
z-VNC|rc*=kjM4RO#5DN^oKgM0ciVtRe{0%hw|~}`*QZ}!oO~h#t`jZae+*npRUOI9
zJm^gu;D34ZQfKzP*0kZ^*}N5>P%!>!qMQGArQoW)%%4#=7C<5Lk%XKeM8Y>BBJ9Uu
z_xZX2P1Ti*g6248#6@h^Zb^|T0D7R$PSfXLyw5;j@*`*=?~lVYZf*p<hd?a`#n4%w
z)5YUw(E5I3|2*c)<BsQxhTOStM1BI-Z&65Go|eqCoN1!>wl<6TDp=EjyygTm#S6-I
z!~+-c>o`krOUSkn7(UUYH@;Xr)Dl7~loMy5Gz0Zv&}Nz2(_<q7_^;UC=g4EK&xMzg
z9EEN^`fcNMrKLUB#9}`4g|UZ^^ftBlB4<+>M90kF!FR0gavhohECq;4kt$KBiCa_~
z3Ic3nrGb^z(TdMH5|(3G+3i}>;Z2K5X2ahsmd}-mG8Y5laAf(<iIxE-?&@#dp;>P`
zEMRrog#HsN`<0d}AOCv-`H@|>Mim{EhfE7HVOK+zw>_ONpAj#SE{9^kAmf}&^0({R
z`$tbM6%@H(Uk#6$TyJ~u)YgSDdG{Pk$-naN&%TP`^yZS!Ekg~r@@qQUf5QbIbX<Nj
zx4gtn%?Onra+^GSZg<?a)ka?UTCYo58s#L4)fYSM8cOfo$hC6|6OdStNk7N+*$gM5
z#mGgskvE7BdwXNxKsE@6NWO=g)@mcy7c9p?mz<K=+RqmEqBuovQV|^y_))HCmq$2}
z7ssiF>EdZDR_Mzo@6vCVJ9kYFCA}TbiBEU>s?5t)Aj?uD@U`Rh5=WUuK}xkIqwRPg
zRpc2$%9zJHxTPQoR{9F9zhSMSD$kijQe^0c<@%g`e%v|W_n_hNB30gPlqOmY6E!iU
z0h(U2DNZ<CMK78O8ZJvngDa*lHwf;P%8FBkYXj2N72?Njs0T$~_<bf-gBV&x-XI>(
z)82Bq%Mgweud+p@vNcsx>Co}YzQO+Fjgz+hx|aUZCOfoTJN>?PdMfKiEL+K70-Ykr
zOmpq0tFh|`P``9MnAVy1q`Oh*ZqBA#8tV0u@40;BbhpwZhK+)Rw8|aiAcwTl;*R`H
zWROZyQj&wIv^x8iyW?3n7;}ol&k$Nc{yN|BI$Ze%KFj#=i^ajt`u+v_BnQq6;ST?$
z|1?1Rdd<=i;rC>ztXkxAJoBafrC-NFLtTB|Zz!(kX$#NG{^r(*+}=t^x56h|OyhGx
z5u94G{vU(K@Gcaa*SfodlAL?Y%e~Rkg@onb!q(-7GjvC|IM{d@ks(xZP~x;y#e@?i
zbRK48G#)u>MpB=XU(0u@)wdqn^r(GP2D-x9T1X&aeb%?zb+pGOTRd~PkAYeI2knAm
z{S4g^gs0P=a607h_k!W^Xbd&%WXMpBb+JA;mLYqzP|-gk1!r5(UX&b|?e4XgJcLdx
zb2^{87QU&5R$8PnDLG&KNn9hmjeINX--5rJ45Ugh7hM;`zG{%MC-_4@pHYEJAiEWZ
z1kwcCtT|7`=17B*H%HoG157&Qnnuaqx2WK?OykAZp=+}c)mY)L!9$~PF{A5!x!KNo
zAlnephHAutmwWm=T+L>AN?nN$t0Gv`73*Q_LSF>Agz$vLtvC*aAKMHpKJaag<U1ck
z?@AfDZV9(v7yxI9<<VF3bsc*rm)uK8NW1-N^V^&sxSi{4-v0y@OU3v3X}&$suPOgC
zZmpfQq(I9CrZhO;WAiR_Zw}e{fa7L(AM^5!vt!gq*xsgO=O2C&BiX9v`6JZD>%1^k
z%upINhg~*sUijc^kT6G1uW6GQ{p(TmlBX-x_|u4+|EktE6Ywzp#tpx53X6AD=01w=
ziGPJq?Z~n!kuSLNPN&0|f96ls5Z0I2Pv2HX$?X(Z9CS&>KX+cpe``L9$c2d{*NyvN
zE9=3dG0^9KYa*%ZT2;!78)M((yFFr{q4kG@jAbD)$b=M%KDZ8O$a$<fttd_X(g;MV
z?jPsd26y8xPmU`dR6;!(_10G3uWf6+2XL}NU1BGlKp)Gb@?@3_O*b7*M_&hIY6jq_
z8_)VZ-Z@{at~=kYh8?PNtwTfsdrIwPx4jR+E{zulpf@Q7-&JDkFf&Ft9TsEyujdNC
zb;bC-R$J)*&WL=RQPoiMUH6;VZR+~wze(kP8QPH_Yf>_w8zw>dx_&j4{ZE)xK%gdC
z6i0E||Dmv>kRi-k`t7LijqAe~ZX=zK1;xVlr4KugZpWSe%(T$+U@Bo<4wDW+<wW_u
zx7ON=aLxP;3EaT!<=M+$@W!05ev=0|0%<uUU6Z_5haS5r2*;-~j3RHY;kW*M%7(F_
zBr#c!Cuelx)e4C{Og}o_{%p-c>tALkc-?11L55RlzneW_soO-3N7*<Xv<$Mqd3|rC
z6HS|$r2cmilsm{BPojHS;O@AKdKBcl={GaK8q_N~ZfV_OY&&shexcHDbq}BUK_cGH
zQkN$|VHK}pItQUdJkc?kA_{#Xn>Q+;&M61Qee9sCD@#w2Cee~z0{2946-IpbyNmsR
zD)ep|S?h%R5EDBbJMkRSBN)+VF|4C-4a2CL@Xk2ZDryNV+3*3z0IJV(MSm#pdnBni
ztwuDN6`a!}3+sCmiFBRQL5rDWBuGCy)m`HL7-+%)qXX`^4PF|XUb_C(JorBkJG9+S
zJ6!pbtu#LQ2;W;hj(jRG2OrFXbt+=#XH_$Vyy_YX;*ItTGkHG8$$)nlIwDt}iY_uO
zvXn}be4ik~ng;C`#0IZ@f{>Q`+s^et;n%DAYRpDH7Q%9IcaI;x?UaVsG_?QXf1ytX
zxW?u|H<}WzSg6m;i!&nOIb>OnSS`@Swdc@(<3-t^OS_gG-_}?cK$$1T{7^dHvU5b$
zb}K>Koej&0_w?ml**TymLs!gm<>29Xta?Y}TKe@<#N}&AZL~(1Z&mC187;o9rn4u*
z`LLZ8g#>_v<Nke#Wamsj*+Ug^<nkS89W_As1G+nINq0G3_HSPkzpaU-?n$U`|JS|}
z&X<1wlCfxN-u|aMFJYH|Jrk_b1PA_pDndqieT>KDn7$jxjoJwGgwH#LB;wxc4t=RJ
z{S>LKTwME*IL#$y;x={+b*kh<29)R|HWX|sixDABf(ryimI)NyPdsiK*V4EXt?W&k
z1Zj3CcqDW3QWJFvvtiUba;w$KQeAA$4bOo$*bWQV!^h^n+&E5%GIKVza~|SFtAkS>
zfn`UKF1ykHdakzIm>6)P4b1*8cW?10*};-M&(C6JX1r$~(=K>1AXm@%Hoi{=9k(aK
zZ(C47w@p^iA0GE}pg*}=`R`zE=O_KJrAX~^28UKRd%N0d=+g;{A6)?&8xzypp#~UA
zj$}w~@3t%O%KJ_A%WIU@H1{os+DJa={3r^K<uFAsbvM=N4jpuV`v>{Sahd9u@v~*u
zWxb#xWdzRm83#@c@cpCAb2e4=bD~lZ#9HxDa&=vC_~*0#W8o%%1MF#HWmdWNJXAsn
zie*=*m2<c03tnxf@dR9ijgFkm#e-!i?!tF6?Hi?++GF8X+OrJojF;S^hLK|h8D5M=
zxFC3?xiwE6$#a{Iy0pTu*Y4*=76$zeDn&5L-7>l3W%&WkVW5BU4MNfHn~?p-y!$7E
zhJPG!vg`AiF8({j`@Jyfck5v+>`#iOx2s|GKS1}2nVs<|Sv~3csdlezg7G-KphUki
ztA~u>Fz#Ll#j*rh`CLj;=`6e&ABFprR&YY7L%M#3-D}3`KV{&n{$)-Nc7DC&;CX;$
z*<o&e+;D#P6n@<C!UTp9C_gDM*(3Y+O~uQV`(036;o+Y<5(RKOgwLZK{8(Nsq;=Tc
z*Qxq80)1>sa;?wFU$=J*S#6Ntg=D{7`oHN5v{c(R_->?tdu;2C$?YYnaX;f$KMQ}q
z{Kk!7us#r(yf0cPlP;I}>WnVl(a5OXd6qoJyD4#U$0Y%D`ia60!R`_>jHfs3C)TJj
zSrqqT@#+5EB=#%)DorOlZ*qySDYidrNY~bW%%np}p-hdx@o_;6Z8ZG#xI=B?O{*)~
zfNAN9I5_L6uyu_v?srt;z~LYYYCG8~HoDtGprf5}`Mb8luD25dogob=lQIJz>08Xo
zeA+@){GhFkn5>o9{#;@K5A%hMzWs@wjM)#-p<`Z-dDh%K{}E@L?+Tf}r@|HmzOW|#
z{fZJ~D>TyFxBr|>TVt)J&=H%MRpUJ{ihNk8WSlk?_MtpzE(}?I;F%VLgsk0~j2ezU
zY@>EJ=n=TR34v*TvKOgwr$Pjb+aV-wHqgWmicS#@2B|tyAYF>YjhK=@O!_?B&Ricq
zL~5vHPA;t=RjVfM`;};W?cSVSoz(7C=51%6FER_z&`2)y#NcK<E+Br?Mqqe;A#YDS
zv62gZetTX#BVXwVeN*W$ybm^b_Qyw)I__i|4)1R5I4ap&_Ge?ei`qu1bmBw=CCafW
z2<sOyCQeRi^)~K(Z?6`7P!@j}Fy_nHt3<>2G(fex(k>2f4Z`}K__deF7Y1ahEQ3lj
z^(!!PPE{OEctEkKHA;>UL}#fz&U)&o3`cE%HB*IHt$(Z@_H(Gm=P-xu&#RXEq9|f_
zc<R6Q5DGk0upTi`Og|Eup8F$2N5xi7Ky2`RMtjHWFF`QE<8q3rfuCaPYaP9wF)puw
zYO;2N5vXVsQ`%ot+VDLYN%3Q_YDc&NAI42ZcZ)&fZr!-Qi|av>RyIOcM<P#Y7;1h+
z+`hM4nTYKIxqDQ(m{^Ah2fy1*H9C-V+y7_dBGwfMO<ed}BoeRmH}8m(&4zofk|04v
zxJ;{(dgRqH^^U1FT3qRcdKz`EJoTrVDi)kqlcSFSx$o-%%gg0n$Ms0oo3Q`m6VP_v
zEln=$rdl5T8o(taG{$Y)pjOCG!n{^rOZ5tux%x#I9@I3=9VGa?ucV>jXZU8{{xZH8
zIbx1#$}F$@cvAUhBG59$&H7wC@q!}7ZD_NXcOT>)^ZD-S=@O?lY`Jtiah?rMNS`p{
zj`;!Bfw|n!-(EiG#(-R&>pcy~=Q4L5J9mCUnj5rU#GL)s@w?deym2pOYxA##TwQml
zr5F$n^{ZW|*prj}49zkOdtS9TdApQ+>hPU<4P~JYuA|NwB==n))Uf_T`b(;Psr08)
zS6^RT83M`M)#rKP*KT_9Riu!0kM`Wr538U6GybFs^zhuc;AQ&Uj~{9S`}h0%ht|8|
z0?(xCPS|NFF}!?Gwwmc%qs6D<d61i=G;*$dL+F-sP%s8!nQ+ih{kVM#f(%(59I&O~
zb_qel>Rku}C(V!cBHd@~;$w-5_x6reMo@Ikd5?EoyO1uk+tu~>rEnSmvjxtpvz3fp
zE>@=3|7P#)Z2DWK@}QY>>haLPx91D;XO`D&N1o@)BZmQl%iB~`U-5j^=Of`4GjTuk
zELTTE=qdEAoTV?z{Y47X{Vca<z`)bLHDgTQ6`FZ^2Hwir1T&{p=)OfkU*CA5N9K2t
z-;9tm%lpE5*vZpHPG?JA>)IM5C}BZ_iheC6`?*QM7s`LV9ZHIxiZ`Eg7Gg@E(=4Gp
z$KxkM%Oj;5G8~-i1UB-*YHE4LmY~V-MPY|ZJ0%G}tcs;Su<xRa&dQjuNEAjyU;?s;
z7;k@{^^-TK`<0Z0P54_W%e+-Xz%g8Wfo-;KAN+nRf^>2shMTi3V>d4<IzL5w&(t7+
zI1+<ipA(`zv*#SLQkVy9MPusk=egFg*jJ#w<~Jh~%@49E1BeE%A&)0uryp#8E&(K^
z-`Y6@#`W4?8{olDFBr`{IPX1zUe5@QOBQAix><JxyLNF&K69$bSZ5^K+MSQ`wifJT
z+79E}-4HBG!YgA0$XKnas0GJJvzxw{I~XpGFyL;Z6G`DKYE|87g^8q#AURDewS7qq
zDWR#njkGIMM}rIdP48V&a$enw;KeEJJcj#Klbr@Xfx_xU^MAc3>I(OE|Jm8Wep-n=
zp)Y$KSY?hPA~%-ksY>&CmvT@iTwO-CPE?5(UiqldG1a;NDMgl3B?p^CsNwQ2B4I%h
z1rn^V-$N9p|G8jmpOlSCPuAPT+5J112&J;WNKo#MtDfu)iMEN#m%YeOF{GRI#N~?U
z!r%+xWA{Q$#&{W=jx1ovBF!oEhpi6>(T&SD!T!d9{zCh^>q24ak0~!#8gD<1EPq%G
zv~%k}+CQ@U-zR9ip2xhQ__&R%RKq^s1ie=BA3gjeIAdY(^w;XD5ssZ;<B&vN5l@+`
zB0!g*gz9u2RxKyPSHAVZvscc240^VgpLO8Y(0&H46V-YMqMt>`@yrG-tt~Ps^@VA+
zNNc%C9)!10{p)hmu*6hm&Kgu-?B$cVag$NLvPo6Gy^*GMy+Y}IpIWa~Az2+y_dNuE
z04KiCDYybRFKWMh=FN}FXvZawlc+^oJHH>z_7TDVMr+>Zmii|J8?x`s-U%V}aou5u
zWieIh_v6)@`s;~>x>XvebMLE<|7p-bm7M&CuZ3UH#7h$%3+Hz{TMe&JqILbaDVo6%
z8-3wR1_#tYm(A)0+v-KldP&yznxL<`HpvEAF%zA$87=qTK3O!2obQo7MzTcD_i=lc
zDR`7IRvlU-a5r5)KCeF5i!iqn>jJsVaBDW;z{i%g6U*uo6JM=T$hH$B!w&?KnHH^!
zV8QL~5(wQi8_cl~ZQArw#<8|s?D7-5UKqqjc#Mx92tT@X@CdS#8|11p1W!eAukqdG
zL+|~o9mq+Au3s&--mUkYStL6saWMU|r&tcxP-HOJC-gx1gMrdV353nxq;~(=^q&5s
z<Kvi;JwBpMUnK9%T<L$_IA4K&W$c}<{VWzVg|0#O+^mz^sF7R$_0~!)XW_otw83I|
z_YQy5;4~dY0w>=qXex@vU_F6bdfH8VP<&+8>Ei94!0lO~la1n+{crW6Z!dal5&Yg^
zYX4+3+#Kx$gM${&Cx$9-WrSX41=1sXf6dBDf`L$fKg(?G$wIpf8`UFwJ#6Ao^si!o
zX`57k{z-||CW}L;K)4NhDK=^#_7#+bvrXWAmd^k>kM9Us$5h7e`~ma(1{?V;|F}BQ
z@0SP`Z!R;}!?rc<?}C=1H2Lv8WajMylptNm%Rg60ew<0=e1nV5`$;1^WiQb~@rQy0
zX6VF{1Cfo<q?vW-gyTf2JC#!n_;x+<6xV;X?YY9lsQ)H=$2C;g$Ijba2nV9F&0}v5
z-e7n;!tA(A_g}v&T%$O=3Hj!`>;HN;p+9{@5PZahzufUU(CEMA@ye5U>=|Qg@*xEL
z(Ok{OgC}@VVKBGHtM-LzUV1!LgK5YqLbh;^!A}J`NDaMD{L6Rj!6pc^X#PB%xRK)X
z$zk!&sgf}t_C}M9`aq%muQgm%XF;6OtZt_jvviXvyLRImzuVmfrgRlg4bo_dHQgG&
z&HlmGftc0ydLDl2hihTWwF81aaWo)!>g;Hv@w@$2ca<!mxuH~>HLnHg3^uxGi>hti
z`*!8;t|H)20FVEXHP7O8M{!a5RnA7Y%TUl(y$dEb;Y?~Szioi+@o8S&XY|Kxo{mb)
z8t2Pwd%lLb2@1RzgO-*ehuYYh4R(tIlA`E|M_EsYzaNcXAZi7`Z>A2e#`d!iR&Hw9
z%4#hrdbT^2G!(t2;tZkj3*h)2Lq6&{f0p;86X0RJ4x>QoEf@EHi+RNX0duG1UBr1v
z$g+OB`v};y_8vH2v3&mwK-QvjD5f*v8->9wn*Z@W>>->F72B}IM0Vo&a{~Eh%x!N%
ztG8y*B!~g(Gj90)`6`%7%0T37jIZZ;w!PTkB)uE#ljrH;wKKMZ2dl)8qB=}n`eVIy
z-T^&NotKx0ef@)z=Ume5il!6zxL+naj436Yld%>DX}rm=^n)q1X5|kS^bZz*Xlhg>
zN1$Ez#brbmPt7y>7^&a3yJ^J4wqNmO3RBJhT6~uFwyR0Z|KNxSq%=ZVz9X8F^^2+M
z;3=Rpgq<k2){I#tBeBliwjxXSsi)LK@wLw``rY>*6518N;JRTVxeaggXD*f8@OwWk
z-@-6Z&!b>B_@P#W3wNLgRcTk3DHGlX2XbZk4-v0sNkqlhdDBn~qH9%x<(4c6<|4yq
z>4w&JDca0YQdZa(5A&#(4zdLE!NYu<D*uEv>PTa1&%ZDNs6|Mym>POXI)Z-0-r+q5
zEl#Bb5DZZ)vIJqv%jIhFSWa_Z6?=n*O<FwV@A<m0Q?S*|7<oG)j=TX{Uza0N&CJbt
zk8F1=M~&+I^-VpXEV99?;(DY6Th&d{whJCqMDXDn2p?rn0{RH*?l-ZquvDFQkb19F
zD6_*%CWoKwsm(8A(*|Kk;OxMVu`HxM+qM7yxB!R{y6*OR*1McEU@+2fswoL2t8vGa
z;F7cl@u|9lsWz0TanKM1HjrrdDUp6s42p~Dw!?r3#y)%&XPZ>Qp&yDImSiy&eZOFg
z63y`<MtdR^Vn(YdT0m1Nq*PDP8_`<f-0s*AC6)&M=#{#2aCE>~!^Cb{P}YIDcpFM}
zbgi}v*4e7vYrqs!l#X|&I+d@vfh8e9#0i(9R>u*^$FEV#MpFF35%3#t=pDEade$i<
ziUlW%<$2C&rm<<C`<|J_9VtHAD%kth-{#@=C!W7WaCz=}z;QdVmLQL@n>ZXe`NGUN
zlRP8!3KJ`Y=qVxn`B-opg?8*v)G#w{Wqg|hCe@EyL@AZC&3u^Fmz!sy>I?x$Ex-Wg
zW1a2EK5tIpWARdyDd_+{nxj%s+|bqMw7xUC8ohB~%9Hw+vfiTx$tEm!fHX)y1w@jc
zyJ#4T1IxmvrK1>)>){sCP@>1~?aQ*IW#(zI#F~_P`OlV$pc0Hu+d_}_d7h4CJCHap
z@-;VTR2dn`!BSLccc2OT9=tj=fb3E8vaV85MgE`d{^xa?^7B9WO3i5x@xQAwSF2d+
z?24lcwSc|DJ?UQs{M`RBg2?Fd745{-rDsy{^Zot4+%jL=i7{gk5$nTc|H_p0I(({O
z!VXWu72VVOpM`(;RIaZV9)my!LxhCM)cDz9jqe|@yS+Rgp9QkzunHXW8n>okjEIBe
z<7cA#NGaB6L9pbL`|<A^;G212p;4Z2K}aOB@bY4CafzOzusrec);-9^UvxQ?6B@QD
z?8LF=<9l<(x{<zfph_)7Gku)G2bXyIM8flE#-aIfV=c5d(^FQ%KEeF2ZHk`0w7Hi6
zs&S_UxSRx%*nrJ(C6$g3?l18B|IGmbj6zDWYA3ehi{9SBM|D)<Si+@RCX5h+NBj?C
zfLCYRoC8ul@em(|XtcN(ByNRvh%Y*b>!WOCTzLj%e?XJ|yPQL`Z1=$T*4)NUNbz&g
zRvbYmnjwlD?y-6E6v%BMN)T++TWU(G&r4BF=~l{3Qn8IVCs7i_a3~luvrdk(fN7lj
zWk|T3psDkBHK5L2Y~oTWh?~oZP42s;$}d|B%j=Z?*&$Zbo%VrkJMjvzqs?}lX25}o
znEww8V|9JGDLkO)GIRFZ>kt?%KkgcD$Fj5kM)cG-$hNZZh+QDWn(~QOo^I^_#l3AX
zO|j|uI)!O1u%6%Ts?4+v^^?6L@$D+b-GawEWj7K)dVRJbag+8UCGJ!Q)3CN(Y}NlI
z$$tq0OWZ&>cGy)7*bUjsRhfVGrst~xJ{u62pJ;K{X`j>2SJw@D+KH=x|J#mw1dbd-
z;<VX=fuw~@n)|zkABg{(zQAJtxugd2bWPOIs2c&E_#2`jy8sAqisk@E4A=@qeFl=Z
z=>@R*2}G3b!5-ko(Y-yjD+$H*dO-O>*N^|jsQ>(}^1_V1NAubOo(tHr_?*=y9l)gZ
z0gqqxpvpEHn)L`Yy;+sHTmmk!5Qc!ya-#!%WI_n(fmrVU(0BqR`dT7N@xi_mAPZJM
z>A!kn5I~jypJO2Sb6%ks(kH&__Mn>jdbc#V54m97=K)Tbcs~7n(TIvVGZW@Jk?%$}
z!;flDKYOYJpkDuH;f2iqo@tTzGX$*xk3a}PJ8}0)EOlGIxgR$mt0aEhgMj3&04I;4
z_AJCPbr%v>uod9u%T0zrIsjn1SkCO=B_aNMM+k~-C)=$w4gkQ>{%7%q%AZslYN<%-
zd5!EWTdzb%4GCMMQ!DsJ{BiIJmIGO2%UKfq+DtUXOy^57rny+6lA7R&+D2Y1FyF?j
z;}E%VdAoKaInNJ%*${ojH{B^N>dQb8EQ|0PS&o5EaoO)K6mslNyPO^_q37sHEv;=Q
z;ukmX-U)|Eb6}7@{_A-bH2q*jx7~Mz{Xd6>0%;}qXW(+(8Nwn!=sZumm2!aIeZXDE
z-D-g8i4+EKLT5dwO8;A&5DPhzQqBSr9%S+R{d4SuW?EWyC*j@Q>h&$YeO$G50s?}5
zTsX*U9gRMx%|L|YTiWsF<0&Whzc>Fwk%5QJ^8K6vN<H$y(Y&Vll6G=oW#Rl_!)R=3
z&8v{<GCA{;w3hr{O~1v29eGe%G-n-g@kkSJMf!j(k}!31n>2}t`6?&gW8(fK=Kprr
zx|T#*K5@2qb#-?}8Ynt3I5_ecobD;~e?Jj&yAGrS0;wPDL5&S(2rH;ibSzbK#mdwg
zWGFfY*D(a<=+V9t;AGQiJ8>}(!j`xPnpPyh+5oy+7<O5yD?8%h*RUDihIg|VqG^xL
z(eb0EzWx~h*>m=^6)520f#K@WMmpxjJV8&G>+#a>5s8XQxGUlRL0)3`0l$k?nR&)m
z)OO;}WF$5Z_NHs09)L)fB1*ToQ$-?5O98&!+aMQ)BN8BAGjk-+-Z^>(j9=01qte`-
zjLFrD2UkgWi2YIq_LiPCt+w-vF8<wjz`!gEpMlVcjF)M{!RfWv?9KSE)iOq0F*kSq
z6I<1w&R4&;9^(wd4_bPw7dnE_eak0cqK3`YmBu|2xzICSshhLuc46Vym#&!^{@Pjs
z7z*Kz?B<<jSi827HV%FtFY80Q<fIIq2S}SBlr3EvG+3<CL5}9lta~pHqGN$BuRM>Y
zdc4wg2Vb~`*vfCC<S(E6d`fouq(LV@hDi`EK%JFRkm|^ThN+lzCXEteB$hoXxQHt`
zO{u<pmEHUg@<Wpv*=0kC^|x%2tn7|+<A_(5#}B$hxs>S(RuYd8BQ5pqn-(WSQ{FD~
zr|9=$afvovX%qe;xq6i0K~!CapqSkko{dVM-p>&cjwFsNJ=dbnz)(!zZAfd!@cm_|
zsjoet9p`{D7+gikZlfOq5~_J!|7__<hBqOimT3}{*nla>PF12#6opi00wM-ELm-&1
z+TMnI#FnLu3lsh@2<X)9`s)AaCqVF}NTu-sJ`oHxpgA%!VP0{n1U0RigFbw?7ajKQ
zfL5O(Bn>OaY1-F+%`0ov{A7LfwW`e4%d4pLD3?#Kc2NKp#92S!*FGyUS?_U1P`9*{
znd#u9TU32;U@`!{DsKb}<6aJLx0vfij#&Nv?Kx6i;?bOJV-s@)gHhj7lb2^=x@`ga
ztBM~ffdZPeEQuz07~bAq4tys(%2IS@>kk7eC|JV?ea_EcHNTPpgWJ?~P(dh?aU=Dr
z+Dj)_ysRxh1fHj3s0ztEAbJ;^jTQRC7mtlT&}<umiHCRXe^_jS%obKyDo9s-5Kga~
z{@fz2$>S8)xy<XQ8EeK_I)UAteYdem=y9{71#h=!dKaEYXCM#lv-Rj|^*5p&SyYoA
zM<D}SEhFgoDTztR8f!o`K*#G{toXp!)n+$AFl}+ML*8d^XWzW+{JyP=uit(ZbV$%A
zxScHdJUsIs*)P_#a&WQHp?xP6e7GN->0P<re)QmFto3=@aB*mR1SG<)y&|uywQ{dN
zmsh65`pD*x2pG=fH#LiDasObgXCm(;`<Y;)Ti4Uv*>}+tcihUu)wOtrD0-_^|7^jr
zV|izjXCHuJV*MpUeQ?yaapgTiUozvhwDG!z_ykjGLo7hn2zDp>hIDruWT3aKq_2gC
z29J#B;cb84I>l-xtL5cp*K-(QXIfR6Q&P~B_bcaM=;C{+mu!WS>*<Qm&gLQ_@!8-G
zL#0y5GQ>Tk+o)R8R(BF8g|gp$r4L=M1>_Osun_R=#Yg4RN_B=&8K5l}EyC-$gbk2v
zo!rrP(O36vF9{yH`UJwI4i(l+^GTAFy1!9l#$wXS`aL~^j6S@okqmgfthEpE+gGON
zFZ$U%z3T#H7aav^Aa{=Mu8uU&yj(tq_;D-W5P9rCrZm^~FIx(urWYTjyTh_p?(#;C
z5MXgXq9*rcr)IDCaZ8lZeL#_NaZz?9Sxi|3Jg+QLMJbnbLzx-S`W5fLpH%K*VVY$%
z%Qsxhu5LFUYrQ0>m6H=)*P1R^7#T`S_&je8g)1t?VLI14F~4TLQt27hPEDeMy8iAx
z2Y0MDA%R9mGlhNkN1U~OESnTp2yHulQ2zN@O$~9?{_6go7*zGQBek-;w3wHT^X4`u
zyRpWY9F&;o%EY*W6TVGDv-<vhB?12F2eSTad{a~`G`I?Vo-5|oIJxp-2g}oDFSil5
z?<Q9mTblsXAD~sFqlL{iXM9#Fr0xD}6X1IboNmU~c(8YV)Sw$FwPw!pVZcREo1L5I
z<ixyQYZ<X4!rukP*xvW~dwe*CAi9jlUk(Ed^|Y;Ptw}TgAaJUK(X1fkSU6y<k5f@r
z?x1ROS)s>AjuE<zvQyE92n&8YjEH(;s<OEgdWtCTxZ?t8s46eDJ$2rU>`5Abk(_R8
ztVl^zOH9%jQ;3?M;aq8o_&9PxfvPCH!H{^k`LBk7U|fPSZaA%_C1f{SlbQhwNi$gy
zjR7_w;&6#!Z$c(7zF|B={YqJUI(q0LE>vzTE-LwUJbcP1(kr|m)h{$UHANBQiQd))
zGa5*S{l|-@Sab?3uzLBYYb8p^qPhTWf$mnV5;emIF)+|AL*38CCYnWfCRG>n)T}0M
z{-8^Wp`>0aJ!OkbI=C#{lP)xxyhW_KyIkYLRMh=F7Fq7PYTFw|9U&NtWDhAm?az2P
zd^Y4MN~E`ETBSAx{5G)@sc0Yw0ko#6`wG?}4{UblvY^Aef$B2A(qKbe+@@N7PkD$p
zZBr>i(%oamqO|oG2wh34kfBjUaKW8iH|uotw&g_vu{H7Y_H~VgyXE_PmE%X1<!xO_
zNvSf_@hKWi3g2NsiuzH|GuLJX5G%W1d+t>*pf=T2k5Lf>BO@EHu8v>~?=rLQo^mNQ
zW9Dg-b}#JG?b2fGL7nkdoku#wWqcfbkIH5{KdP(emEA>hi{~uqzh%4z_BurcfjTXl
zrq^y^!l^6s@@#xJIk6d77*6!{$&%$}X-&w1aRucvd*f{??@d}=#WYmQ#;3nVW29)P
zY0PtBQA9pA9}HFBC(Nd`)<l$S{NR7idcq`yINcai<4kQ^rF*!_<gt~Sc~w<PryEQz
z&Gkh{AjbUplb)eHGhuawdPJ0N%GT^P#KX2SA;|+ODk>>1D#^FBcBk)gsHLnnm6lGS
z{dVNcgYe|jM#c@YtXq2Q$8Xj(Vk0V`l@jkV{4QIp$rv}Z?eze!!IFs=Nj-K#>b2w>
z>gQ(b8Jp6pF*l<&KZp4InmTkrlkjmXjpwCWmQxaGY%*>zw`i1}nJFvtgN^0d$E0DC
zpF00$YI2M6Mz@^CCca*EKu#C^J&j$Pn#)b>&4-(cSW3$(N-FX#`CfYxWf%|k*YcH0
z7)M5O#r=TsHGYcEimS|f`Lz!H_3ayu$`kVWmn{Y6rHi`I1>d7bnyiWCm8EP3=3DPp
zpzw?<GL@Wcteh05Sb-XcHzRtedc%=URa2LZj{^uzAp@9X&B|)3x|^;%k3RMYfj>BJ
zv3}fuV{V@O`XvQHR(3~pjLdl9eIP?lmKcnicOq6^W_sc-Jh()JhXC#fyM1qsZAn>i
z1`+vAl0?#M{YZZ=cU?|PLrzHu*5t(4<rKG=jEaqqk!(10FP(@y@+DEbll*S@a7iXe
z=Xch|Csj9e#h125qI8d@)r!j!qGDApeomu$#(H;G`QG@&)Z$-!*kW-7$+w&FY#mT;
zULj+Bwu?Z2Yva1&`V6zhgCXQsCTe9X7n@M2^s}l;MixTyoi2(b23W8G@Jo4c*;vvk
zfl9ALb=B2&_uv%g|CD1M3~l~%7V7+%Bx}a@aB`HAduJsj?qt=>)zN8QKe&yOW}Zl2
zzkE_sQqE0?4&#65uqsIdz>omLPYIF}oAsiLFPzfdc(>ewl=AA!<uz0{t15rRph5oJ
zUUPzCFVgavCTC~4M{px(wkW~Sv-n@1o|RZxXP_f7_$kxb42;pjP;33<p=}g(IM9Zp
zCT+q9E=mWqa(u)>k}?~YZaniPw2*cnO=nq4z0Q>FR}|X$z?T<{Pv3MVSLV7VM>o3#
zDn;cD#OdO}Q;Yi=nUNBfX$S$1Jgz%pVp9b(mMui-ea08ZGra;V5Q@C!{PL<ij`gcC
z1x3bGG|+bE)cXr)k+!>Q+Aq}Z_XpxULel~~KxNg&ZOe)f_W%qG<$L)Z<%gZu$miV1
z<UTe%NzqLEsa7Q|Rlnvl02_IeXMD#g`smZJ8=g8O35ybM1Q+LFr(NFHJfh2(ZeDGl
zgU_K;BZui@kn(V1dq8DvyN#uJnB3JW-F%XKpK`Or_W}kNPm)}h++8(x&?jtp2yx4m
znl@y4jeYItvV~3z=(Wb%OR3<o6KC&nzoVD@u6LtH^N`Olo|K*X5#p1Cm7{W`U823M
z+&pF7#J)H%!0+nSk{p2_tWa&K1s9znVS4i3NL!xb!}()d5T!3kacMh*x?^GM3S$C2
zU1N;I5k3FrW(WPpUw>Eds39kb<!YtMkt)-$A>IAgiPTYj;;Fo}6<_Y4OsXos(jqjp
z=YThEL6@&hVDCrW=WG&gJd_7@b#v>ZXcgS_-zQa<hb7|XF4wn`l^qyC^h~R2dVZGR
zQ)_A*XC5?=<HJ9oJmyg2-ru3^fuDWa!X#WQ+{Y|>YuB7vO^uY1*_t36*Tp48#l7=@
zm60W;zwxU7=<NvbOEE#mw_c6Q$~ry@`Sk3BPiP@)&p!(yBH9=jT*xZ%STqLl!wOUq
zmCHBYhD=dFj?E;1h(71i<nLfW^z!FsIP0$0THUXf`r>O)?7&9PI~+YSX3iTdtU*da
zl&g@t3593_p*wsSWesSZb*<vJXx@`senIYJ1%zUSxuq%IFMO^q!(Jg~#OceRzg0zb
zEe%Fh9ecMoBP}_UsfM)z{7VqMuX}y$4oocROMD(u3DPZhqhG)2wYf&;6tz6kf(*5s
z6#Z0qa0tno-ifrhpSkdnq)fEcnsT_FElvRbAY(<jLyOnWrjoydi9B(3(KTnRHi!01
zYp%&#+<QR%JNX^wzLWg!_3)s6bs0aUq^gbZ-AKMvmA1qE;kkFg@+ummS_T%x)|`{=
zHE_NCyRS8mfxe>HZvU*!@9A;JSI<b&jR`a}%e|<f&XVQBkAs||rf#8|kf~bZGV$YQ
zcXy%!Vgx08OHR&aeD*6pIIFTapOmM``}O#E##3kDYqi9%(`2&?bbH}^_R6A_Y-01d
z%*-p?{6n}zKjPUxj~KH)H}tVvyye-*J+W*<laXlMTPzrgCEpCLj)1p9Wvlyo<LcjL
zT7a1;!<RQrVQFO-m?S_6K3xIwyg1>ixkC`Aho45@p=<RF%LN3x<|D%lR%tK+@e#v#
zrG002(x0mP@&R@V&R3#cuP`%}&fwv_6ETrbS77b{$Tn!`Z=z!Jtk6g9p-zn-E>Vq!
zlqL)~F#lTmcf0t3`Z|X>E)KWj6?V4C`FWSxf(p@W)%-JMHMb1i>{joM<NZkyV3Q$6
z_gw~R(~~|&OM@Z?D)Q;7^zX#@JWkx2Gc+c$v}Pt|xf_Ir#U*GH8r@F*ZCf#v*m#@?
zD<EZCYBR<ok)r5+O%W^JUPcLKlVsR)=fjgTWBmXqeG(pTG0M2#DGFwIYPBj`2Mz=N
zDetn^0Xptl6!N!t$mU=Envd(w0Zfwn!HSN&l(?UZd_N~)rIvDWS*}kb*#2=TxOPLS
zs;-sIjC>|dAR_1dxN3?~Yy%m(cg06KrJz>c&{>_PwaUuJF<I~9VCT2hJE&yha@4!8
zv@1%d!Ev_#;qa`@>E@>@y@Rb4V!$sC9wxht1d|?MjvE~#y?O~J;e4Kf>)gxmh$%|7
z1idahH~ZqhwZ+z4@d_o{3{&gFM+Yd$;ZeDbb=>eyD*&UEpx5CGHubD3E(eYm2qstz
z+do`_*344soVb&3>#7S#C;~ZWU3MCvuAB#yq`Pz36a@eM4_T;Og{h?!W4tHqX_I!>
zj#J4tJ@~dFnL&>%WzwVPz=>{0E};)=gR;;=*u0L&45$kGt&uYA$E_J+S7D7D^zLlM
z+rrz)`r8#*swRR+%Mpase(z`=%BrmhA@abc$bZOZ3x6(8cOYWypG#AR%~RE(PZ@-^
zJ`{9Wug?$m)|~dA{z&~%+h(DaW>;yq$Mcmo?!<15-|ml)%M*b8QN~yyH)kW#PA?3k
z0V!3Tz_PMnCuzOVFue3KdC;WRGBU~C_zC+K>K5=gSqU6u2CE9&_DPS8InQs>cKq2z
z?Zx262~Hk%SHErZmU*caf4Kh?>soV@wE{KLf+u_=sL#S{e&Uw>*#2~P<*Ps(gW@%n
zEp9;1uu7wWo2+px?0h}{L#eF|x}AlE=0!kY-_X!5U0R-z+6DrFJ9<os4i6uj<kXns
zEZt9@N2e#A@p@#~?fuPfbHu*SOg;RZnoPGx%`s@wSDKuhJP!&>Izma$@;h}PCeGR=
zXCpd0UbqlSxBGYI(Xu+ioKl>>!<$=8P^mna9ALiRzf1buQ8P>rVkN{!jf{98m%plm
zPc~Cw#X4?wTHJAce0klW$)){PJI?jFrSfh!eh3RA6g|@0Et87`<H5Jxk!RZpBG&b{
zqNw+8mX2QaL+e`j)CM5fAUdYX-yewG%PKqtGqYdUT=81K_SVk6)FjAEhkL5l=vX-n
zjQU)uj3WgBP+=}MO9Q=)tb?1TPg0@Br3}u&Kh1w1gijf=RuyHrK>iTf!6<$S!cwPp
z<~yEe$wFNJH=p;q+vy~fHF4sMzaK%?MXav({UTzPC|n|0F|v<l3M6eMxpUr`5dgI?
zsJ^{hF_oCw;uPd;uw_Gd_anY0BD~rtW%~5SQz{fuZiE38U{0sbh$2myEB=D;;@i*p
z8BY9T%5+x^WfGs;`WFs%$GwKJ7Lss@hzNOU>BqpX0Iwm_`roLo!N%d#I2bykBd-D9
zgoPP!<byPJenAjH%!SictY>##H?`Bx{1uQ;q-+^rlD3&5=^G2#$EaMT(iDZrE)hec
z|BJ7;fU3G{x4t(aAl=<5jYvs%x1=-*NO!k%HwcJGOGtM&0s<o4-Q6wU!uxr?^FHT2
z=N)6~U<_jCf30g>bI#x86AU>Hjtk6|42HjlTAKe!Js7T~0h=mU3!j`UkE1>T$<43z
z(I78;L0^ndMsj-7jM}$5|MR_yJ%KMR!T#Qb2Y>WL621Stl{N0>);vqWkg?0OCa9B9
z?{-1gpvP3bXnaShR+~A%Ti}nMuk*yFOA~g**3TjN>t_8b_kJS-l_Cz=y!fotus9>%
z_PX~R`~yO#SfU_o{CGgr1><U?--3-A6fQR?QSt&Ck($i1EfhzJ3Y*fNd>K!W5aC)o
z4j+OG_VNtx;<hUdYrU@feGZ9Ngw}#WsTiwgo@*Jl>@2v+iSL`Ee{qPtLY5dsI&<uL
zaCJM1Nqk!E8du|K5=P(ap2K@#y`$QxI2vB?thwRk7qSYqqVtN=Qq|WM5K5U5?QAt}
zaaaL35j-_Q1vYd$USjuIXxcX{bLZWkyq$aYPLMB`SeVO}d49Nsh>cZ;;yk<mqcg?g
zu3H*u`J0t@&u3#VEse3*GRX3$T>f6l$Q$gMqhA#yBnv00D?i8Ur}k>!CX+BSGUNeZ
z2nx#l$(`3F&ffjGlfC&3FW%urFCD)$8mfq%YSyEPJijn3;<Na)&W^_)%&4$1&=1hp
z0X`U1rUWW4utU=mp#6l<(JPF7V3-)ecVAjVqm%!MHTWsbgL+GQ*zA55b#fCnxjUJa
zDv~Fk7iS4^6A<m>9w$0RRY1G@xF``})X}W`RtvFRfv7-gGZ-|MCOL{VKJY+ubg^-W
zjh#o@=euU7z(gB#{W^~{N;Y^CZ@_Mrre{Cf>~r*MU)kJ;o<cdzz@i)<?<dlqSlbUS
z(_3e~9xw<Lh+(VJeHg*Uu!T&*Do*A;=H@=yg|+W{Opt=bAj<iS2kD1b@DGy3_U<MP
zJY}Jj92DZ+p~N<Ksf$(Z_BL&F*r=XfHgzLOp#nW?%CR4iR^N0we>5o(WyZUp*#H3(
zP2JMGv#rPG?*|V}F20gX8Xo+Nre{BdAJM#81L0SG{tVjP?c$n?Tqxa|(rvlDy1Vo_
zIo}cbYCgH6+vs&-`%y%x_n>KE(Ddwsk&&G5Qp8S7+EC7v?Y*VvT}Wf2ATDZ%sp)W3
zbZfUzb^WxCf$ywgr0h9Luzpg}xM6*OCjEOkbVS%S!sUATM08n(q<)-moOBvYRCwq=
z!JDQ0);>JMMp`ZlYL|v=i75pOql-gOQWyi7UI~a0hoH*r%EsnKT0(RRj;t3!syoCH
zJ{d4RzV}jZSD1E}N3pQ8UPtG=2+#izBunyWO^1n^Zp@8!@*7z;X?DX2!H3j|L7ic+
z(%ix;*K@>Q`30L0UruJmrN;uj<!|x#9W#X|GxXcDRc*N?#wtQr(kSuaMTB*Oc|)wQ
zorU8T4Z0Y}K|H9dV`%!SUnXxD1i$;G;GVSwDn-ZC*1D1jJtPhplM<04!@=xWsxB^A
z=vSttME3R^F5IcA^$E76;MGNRV^)Yetgo+CSh8)LdE5(<NsK*fqzvgQWn}mw=YrN>
z?+ICU;d_Tig2#w!GH=Fjn_FBmrXWcn^UR!;fxhNb$|(|}fWA^-1jKJ-Z-a^ibo^RK
z<Fr11x7{iz0CQxCk>M6>Qp%5IjqJlpzkRy;O+{?aOJW=r7-4r37&NaJev`-zv1?km
z-+u;~w@J}r>d$3B0mT<pk}TCqC_tm)bN!j!zH8Jg(Gq{fP|$^u>B^UJ>E(ZaFiJ>4
zjMw%H9a>IKGKqGizP`PjGCZ5I0+F6QbsmckT|Y)Atz<2se?wFuM2%r;7ZJtP=4i(E
z$4>d1nhRGOJtb1-kHfChXVtTjz*H(yHo8eB=mXvq`RJJG`_^+#?NV)q0%2wH=E-B-
zCcELIE3A)Zp(wF8flAVzTf?b^_K&kcu?U5>R$w)qaa=AR+)*y%1EV!QsrJzOjDY@M
zXI88{?Vwx8tMR3=>YSV`_mKX2HbLIct+Z<rbePY}9+Joi>ai4yQMNAJg5eM4BT<eP
zUB8u7TG;#GLgvG&ViRy8B#fWip@%NuHGGa{&|8=lXgIv~vO|of1}*;eCMbF!(C|iI
z2Z9MT{kb*d-%_(<8Ri93SeM`7V~C9!v2+UQQ6w}qt4sv<ZN<x2=6p$m<ypqY3>w^u
zoRX(!WpMS-vj}Qz%%#PQ#{VAN-y@TC6x_8DYDuzhBjx`VNf;qEp-FKxFxn0yEgL_4
zlyzvUxEd5&n@)2fTaphxOJ2XzFxr-i6X`8wEi7a$vCMElNn518WicPnbyxxHueyR$
z#Z&qy5}nVL-iV5>7><aeJ?4s8!&}H%Mrs6zQ@cAHVV!&noI1LI;}>(Jf}cZ$?dmY^
zI?pvqqiz-*+skd21eX0&cIu)va{T3Kh+@IY?u0J{5=K3;r6c3}v4{OKfXs`Rrf%aj
zsV(n?26g;%F$%NcdzIV4k<7=cL{6cbempFpqwO;0?J^l^cb_(~Pm7h!{4c!5{QZy6
zkiE!QRemI!_P_sygEN>^M3dv6xda`1cGL_7xfuG6EhCLjxx&UOvXx-!J`?mdhn~K;
z-s1$6egjiD6WleqRzk~XQ8CEFv~+cMUiuZ{og?}$M0>c?>)Uo_-PZ;r>IP*-&kO0k
zJoED#Ve}%*`nK&w?*g-O<=%rCRxY15xDN!mnVp7Ia|M0<tziMwriE5x1p}Ch{m9GG
z1y`G;<+8-+3H2~FxEQS-LF-l);-_|=$b8H@i^%N4Ks=l!zI$6*BbLb<!3wPbGUW>K
z)vKH9*VZFZjL3uF99vuMdO2So-%9&u5}YQo3}frW?RobpHRNA(7RdK)O`MSV1o*cH
z)h$VrvM;;5b~zMSKJ!3<dvG|7F(+_U`dWt_`E%bhbp1#8#P8Y3hQ}ZFWqo|VJozTa
zFjhu9EG5XA4=2=h&Z46ib*AEzus2WQD6;6tfH~&X$!kXsH%iRs5#p=Y&ndi_poHJI
z7-Xisos&oMc(_M~><hT5l{>SzuU~g#+OOVIC3jNkURQlBpMI|;t#*za0>u+EmpA!A
z(+bz8g;$9&l#O>o)}+~sw$EQOhm)0#Uv@8DC!el2TvnD&QYtwG+4GXjNFv*ioP66Z
zti4ztybSF6QuPSj^GkfZ(*=wShqE<T`#NR$W&LhLr=Bg8D;E+>iY>pNu{BmeP4cYN
z)w+U&_{>gW&0SSVwuMPgZ@4%k*WUE8u-?0>+OKRIKgom+utc>a*RSpviuZmW*;#1}
z0v#upUE9)AQ(a-<=epZK+RRSad4%GZTEl}fukfG*X=)qmqejO&UNXCvOh1d&cYD?o
zo<F90ux%HZ)A}S(B};qhv*N8#68EuLy}*|DZF270>e7&)$>|f%=Ysfkttk&AB1?o&
z8nwz6YZP+ML=xlKd+HJ9P41Q->kPlK(9@@TR1N7XOr$pte=a3T46&nD0zW2y&z}i-
zI%x2_xhtK0VT4KPiu+Mf`tD6Iy%CO9m^9{9dTe-)ej6IXzRjZZ;jnv3pTwJS$B;#s
zcKh~=$g4|*3!E*SBg>h)(+N#T{g;z3(`nwU2HrDx$0+h>@+^vo$m(HJM@gYH_Dd*X
z(($Vu7zoeE=^g0^wU?)u=7tCxOeZ;r5a9Hi{&=XO!EjrDO4I%HQ*#Ua#j4dxor7dI
zK^fHt>@4`cV9+U&!m70m9{^{X)yJAT8iI)0I^P$6er?u%e%V+77bmTZzfe!))rx}}
z(MCB(l3<ket)5B9z)YVD%1@eUb1YXonVE%NDOuxn5<`+S6X*a`hSw)@pd%dPorZrh
z6JcA%lgqo888NL%OjK9q7^0i!I@*Rn(tC8(^#+Bqz`jj`6_{lnp6woGB4NVG`k@*)
z8BB1z99nCIr&=rx2H@?d57-+%YBtK|IarHy?1rmrsx_NE8i|I2+HuD&yeIpd^JA5i
zc&RdOQsS{AT}J5-^SZ8_q)b%{cBae4=E)_;s<y4o3AwFs*@1e5EiJtb$27m#g*()u
zu~R84Tt|0xPG4b0MoTLVB*?yym#)rNq-Ozgy%K+X7`>yE0i#c6WXT2>7pG}Kk)_i_
z1>H`upe48Db4>KXqOUZqCU#O{A?GY8OAQ);jOfIZvM~6A5L~g+SBDR`GpXsCEQ^gE
z_9*Jl6kh%2I3oekEtz8X)VdR_ZiSK!b<T>fVxBVE&+t|>G_8{+obQ>*mi*oarGYMt
zGAu+^meJu2nV)E(qQ+o^fIc_m+c;qjt>wU%u?mI+MovOz2pbcTkeJ}dK+&xHWG-v}
z=op*CWc9bqgAg`>*NdRvn%R|Pp&+9j<YN<@PtYJrfC#4$ffU7T?R8&W*+|=Ie**PY
z)qI`3!QP$%BaXU|4!(w$b@XN<Nh5-D%{jNQrlqxl1~ZH)Ju(hKYE1q%?dKFzaYJs&
zM<eY;8?o=BtK1KVa5BAEg67so#@a6BWptzqv9c!F)o*~D#aVOlW-aIBnmUY^n_5Mi
zsAULf7WO<ERB_U`B&dVo(L$HlgW=7jF%!*9xM5>c@0+)+&Kb!Nt|#1Q?>~0dn@7lf
zRhDb${a!kIO~eqc3>HwX;#BnG`h}ZDQT?(aX_pf>o<1`T;C`EPrAoU)SIR~R5=9zB
zvUbh@Sk2tpYA)!{?mhAd1XD5298RMgVhAdXoH!CmuYw7Jjj-9(Uto{3vQ|$yA8Wtl
zG~pz+8)O`8&d<p&nSB4s-AkXvLvjVy2W#}k>kGS5@i;VkvMFOk(a&PjVB;5}o)3bM
zZ}f!}fsokRv`Z3o<~Y0V4=){v``G0@74D*oChd5vszG}7-G|<0i&Cbdb$Bmr5qC2^
zx;}f;JBOgscoXgDwd#A%xKDV&?XFb$W?`mR$8<6nj0}UU&Tjj}eKQM}r=1R>2om3N
zNTk+PB?@cTKlEXQXIm+zcWt0oQIb=mpAJ&9v!rRpm#$5JJ%U?W>_v=Lzk~j1puo7Z
z3xRmg0+SN-mr0Cukq#gvMSqEWbl=;}Gh_qX3<1VodD&^(N0#9cm!sETN7r95z0+14
z0INvASOQi^bfyDe2BXF+-?a}_X~h=1mt=w>2%sNkT!;<PMGaZn6Y#n1A6@aMS<5z3
zX?y&2V#fm;2-<wmemnhPK!TJ~d@A_$P@B9>Xg2<Q;!Z}oeqbpGNO@T{TLLZ#AVk7J
z|B((PBHC5DaaytaR<`A#GgYe0_9J|H)E}y>Z|%%IB76{)RDb~SnOIirgjKZNN+M@x
z6!Q6k&C$I2o272{NcVmqF7T@g4FLEAVieuyOZD)4Y*}aDqoLA_JK4d3=UFA28}(4K
zpZ`9jQeY{t*X`cAIKP;O^{ZIv0H;TvOiiXF#YkimU6|)IaVj~?JWlsc<l6=GjlM&K
z6+qN!ayj_^tq3QACOGJI%p49f?1wZP3u`)IU~O=6Yp=9=>v_dq*-J|K+L&W|k1(x=
zy-+mEVOkUJ&Vya>dv&%dHKtNjOs>$nmfni*7B)NQ>&e9i$Hx_{KuXd&OJgg12%M*_
z>mguHXo$Q#@0_>#!bKKuQOT5~u150u#;twt6#)wS%<V^}JlTcclRj^hL!De4jHRUN
zrVijBXTN_FR^9&jlFrBL8r(^dY?O@bk*a(1Big_93z2n3Q|Ai$U^p(`=CyK9yuAub
z3K@?BKW3OX<-D>%%*Y-yeesL3Z;kE;zo(DeqlYs>Vlp@DLr3<Awp&Qr`b%wXNXSSi
zU~w;QqcfTqi;5OlQj|g4cW^L2cvB-hOQJ+eh`UQuMW!tp^vr>ip{Y)|kF7*R2oDi%
zY^r3MX=kbgC*9e{Ww(6=%ij<}`MLjFpDpivk`qVQ^S129{N~Ep0~b;r%oddf_X}fd
zv4oK=xz{Rc6XU7K5m0R-xX5Z#oK8oJedYW6=i(OA_Rc|MDl2xMgz|EiR$v4Cf#&WV
z5_8u~szJRvXr5Qn?=}kM7v;0zX{&F&H&1{V^dZfq=`+$<)y$XIc3T=ikEPj2LKb5s
zi0bWm2KhuxV6nHTr>A*zb^Fuwjq3eX7I7v44zXyI<n3*>iBq%y+rrcW7!M&3BSndk
zx#a114F^x$*OBcm!V;G`?aq$*T#BdEY`=EusPIKe2}5D4+g9hYlY#46Y2R8IVMG5B
zj$D<qiSw4{FqGXJq=b-JG?@1BRW(^=t(=Ma92a<nQDY5$>rY&BL&SXwL}rQyygO*u
z`!)r0TX4&?cyyPw`+UioKYs0hHfKRcR%BA#x1Mq3Z#3n?M|?|?+>m#Zus|0OM-H{S
z`2$5X)MSF!<TLMt_ir*}2jV)z$v(NB{BsyQM>>p`*<*Z4Fc5_|petZuPlzy&-{St&
z*+5SwLybCBFU{Fg&!()n<m>(U@S6@hHf+>X&7Tl9%g+ZE+eNI!LQ}4SEvL+W<-p;-
zW;xa2UT$AKkSs>z;V-KmU10d$vx?$K2jX_0y5)QPy{zr-<|kx6MCjr*#O*98vzgD9
z0apfE#J6`0S3*Ttnz|vJuB%cvaE%$WGUFq#Ec7?hVN1N>D69K<Ey*#I+Z?#&XEI~O
z8kQm=<4YBsAMkO1{+zQ=2jSUDM@9{q@1{HC`VaRbj9)CVDAUm}c^J|U3eRWB=M@x~
zVKDxF%g|{?C<yz{&4Zsm3wZr(UyBPH@g%3ZC|{8&IWh(nN*Lf|3Tqx_^Qs#5^(7~#
zyFvm(90QL(yY25pm@Od(i4wzmq7tX2r>@Es=l`m)T$(=qT3!OTuCWn<&ak1@RcXaT
z9G#oj)HkA-W%!~mM_c<19x`lX1pOEcC1%8fpaILuaN>BFlzVLXQ=2W{KuRll$mNhG
zP#L>rGcQo+s|+h^SqT^c-xc7!gJ#kk4fbr*kf2oA9ZPooD$=60CKNas7P|X-qOM?;
zTZrBMcmkl{p1}i#PHtqKyep45H6{(;LVlS{<F=KD^xxmEl)+9YYXHVH*;X71<R*=n
zg|m}}1`LPmStN+vUeMID=VZ^ZP_-;mt-z{~9{|as=f!@WC#5QmOoZ@kZ0n$TlVYtH
z*6ev2B#;VYWzRykXu@GAqo0qd3r-BG0~Jc)MVcvee`!B*mn7wi9W|!wgW>jcns_`s
zMuinQzVwU)1{G@HJ^6ld{oJ$u>(oFJY`$}3BIF?QI3;Kf2^DM-#Ak1^@m<RXWwc4J
z58pxT%pW6OqsB|k2Ed5K!Xq55!>3lYv;U-Y_!Q@`b48|0jXA(hx3csC^Lg$9TE{F1
z!2h_G>{#cPHK@A8jXjTCCGL|XA9CgLjyhg^(FdkiARK9X>)YDP0Nfa8tvut^lZ>d5
zzNGqcM@qSuDd5$b{rl7;L4+YmhPtvof-V<P0GEq!A(W*12O*Ww8?ypf(z-cQZAG$A
zP;IPzbF~K?cP(<28PZcc`owiEU%fJ5(*7v-?n&Q{v0En$)<3#=t$g|8Q*}7?D&=V5
zZHiU29GPwEp<R9Tm=7q4#9VX4D6d|r<~L<Hd+cWsW)j1v1JiVrYxg-)I|d6rYA-`o
zx1+uvIs$CKbJpjAv6LS|D6_QE?b@F^BL>DwQxi|oBdo%VeiCNGmOlA{U=JJ)o&L%_
zkSsgpua<t(gy^Ldu+SaC^8r+U+yk<N`QgM>U%9R(nXnhqU5|9y2gVA&Ais_jhFsVC
z!j(m79gZwq+wk)vqCQ1VfNff@#eqJp)Y8i6!>o+~31R#00$Su8cNsXHV&kO1-7jYS
z(XZok^jlkD%4PUzC0dI}TK5W5q>qDoBfA{GSLFm9U<C8i=z+a8cAA)vwq4p>?4CX_
zV7%b06{r6|OFY1}Ui#<mYe=U({e?*OC`w9S>Mtj|k7<Rv&A2ipBnjHo#*CkTAtwfW
zDxuV%pcxI;8cGB-8e{MHZ@EMd`xT9~qoI-|xVHRU37a(-M_AL%N0PteyBHXr{OAsk
zY%IHD>`3Tt=!mFCAJQaHKh6tHmZM0LYD<Q|m1B|eJiXQvtkkSi($@W7EkmWaL6qcH
z0n(RBf?J+Gb@@elE|XK$E|53+^Q{rdfn@E*TW3{Z;*DEtdiQ^rtY<b?qMQySJsz<A
zAyhRA>`Vz?I%zDqv%{Exh5wr(g>|Zl1{pJByjJ|aoIe5#CK*Q-V5YT5I`FACQAE;H
zTXMTiNLIQ8AXF1ks{<$dl#GlXG=eiR{a_$^(EHzi-w%tmN=h{sit_J4j{oJ<Z~bHk
zffxU(@Z%SpNWP>6(drDAt^*&20z{;QVw5&^GTQz9X+?Y>yp-zq*lXlWVGBNt^H7rx
zbdi6jRxgFKnYXc|cgdt*(5lXUq#=_DtGPiyCDVcWF&*t=%JSzXOxYk|(*+BK-2P)O
zIm_ZJbGi8Kitkv<2tlLL&u5005v2ZcTgTq1&?e7?0?+@b&6B4aPy;&bWoA+0XK_JH
z`b1i!^gj|Lhpj{e&cq-K;D=lk)or$9ffy~#6KbINo+yBd_+Rez<v(tA-ARNM?oDh#
zR4pVis0ef9y79R#Ooy?h3y`N^MJ+|vCi=Ak^*JH5lxjzO?g#E{BlPIp+*!MiTJoYD
zag~u9oz!(>)kGf=RKouTF)*$DerBS_?+wJ~I-7%h#XkKTzWmuxpG)|oj*1nC6#2H#
zawQh5{~eBIH0(#4efWR*=o`pLiBr9~>p_lz;wOsC@Be`s@?VJ&)alQ_+rGy+>9VxU
zGyRd2IIetYtG$d4dTwlMsl(`@Tvw5pgE>yR0wi%}L_;MogH0;PY6XzHWb;npeY*1;
zUS}bYM$a2*$6X7~zYV3qOvcF@slt(+X!7{e-%ND;&BN~f=>j>uF>-wf2sC^-3f9eE
ze)kNdRR};z!kHL+G2a4m3G%H(?KI$nyM*FDCCQW<SM~R8p%}MEht?ShfPp|mnc;gQ
zqEGuA68#Zw4|<42>Y*{Q)@yo72(7$!+E3Iib^GC3nU$AU*~mh=-=1^HB9#)I;c>d)
z&I;VI6(&*x7$fNLMl+tIe(2G~dY)(-8yjm`BN^H8m5sN(o~<*xv%#yCr`0(l`-{HU
z3-?Y0t}vuB&-$KnIIA`Gb>JhBeiZx(qi-(6g_uQo&*Aic3jwrmf)E66E0NArKtSKd
z+siwWPsJbGx%%Z-?tMb$OnOUyV03lff459|dh9cz$d?zu@q2m@(5GY^!mldDpK)2L
z$B?wS*qURftH*nnKV;F7<3~=980`tNFqRWCEAcH{fd^xrief*LR)^AUffBv867C67
zTZO#QY6ranV4?V)K>5oCIBH?o-K|U3nofSX*|DWZx86KNEC1>Xe~;ax${~h9*jDvp
zlJftExk>x+$IF5-rutLkR-Ea3MCrDAZR=<5={kH)Jw5s{t`=V1rY~XqB#W(W4q~NE
zDC2(YfF3qVh*(zVYW!#x6y(Lf3~{sdUo+G2pZR6St5#@HY8C-S@-wQG@5qoL8#$&N
zZ=)-HBE#V6>9(@L3+zseQ1ZF-!~`+_Qt5<Dq1U{~kOj}n^b`do$ErX|Pc-5d`wh{1
zpV0s2;&Orf+QggW<m!L#a29X>zFtU4M_Emki`_27x4+aIKIGQ(!N*`=hjHUxLrr({
z>h9-Yz5skQ8?xu|kNza}^rbx%SQsS7SEDkvSBDKdG9lhLXk_zc20L;l4nc1-QZ$tf
z_4Ek|_HFm}HMTZ%l2d@)&~NR3_rHNZ;S-o^Q1G87H;T*jhNYudEW6Jo(%#NS$PL{4
zEUjOMy7!N_cxGx8C%7_-bu8D&ZL!<Dik4=Y86C~*A8RCz?)al$);DB8ut%h`?hw@f
zVY$q^)1H&vuHfC)V&REV-5?FFOxhgZY4r_|P(c|tw*l)XaEAsQ)m$~TRZM&WuPfMu
z0^Y$ucti<xW@Tju1xTmHuj_{zKOcmac{^1<YiztVO%<(puZz8Voc?wWNlx}&aB2Kn
z%S$-C2QyXvONxQr#j19g_$+W*<V?(JT2Tc&2xf9WL?#Zt4v(;#ae?_2Ah!KCCdf1I
z{@%%^I;T{uI~<QWBH+yfMl>Vq3#<qlhp=Yh?|gG-(OT4pHuI@vzh@UNzf_RcjSNAh
zlnvV!TBu9ozzwecn12Crtv<sSt158GsO2qjr9A{k0X}~2{nL8tlIomRDuWE$3Z34~
zJ`x)~C`ud|zFpqai5sqv@3xgAdsoo0dQl5KH#Eh=N&cxK1#_(+ukhcpTARG|<rqs*
z;<@zjeJCtxVOSGY=+Sav*;W}4cqJZ8ggZ9PXCk$1*b<0N639cy7fV1|RbW17?*LX9
z&bQV&eZza2EZ5D8!x?wMw>EqS(Jdj-pr!COIRz0hf*O+mvK=07X+Z=$Ll~&=z~K)6
z5$a)|V=x>Xmir{(3g~*%T&uZj_kq{td$Db0S;^%>>*%lMoRZ44HYEx4_f7FW4q99U
z;C-Nz3Xw3bc$<^=!otW#Bk#9(r_oB8K#&BDYU=*)hB|N+foAmKd^2rQ|64v@_@nvD
zo93t?KEm`l+CE9%rmIL4H1I18qV$+@Ui!A6Tb?+kIdG%Egeye}!XzBOJUy3Ia)50=
zunWvLn*`2Vc%EGLhPN3ZqbT)lf=H{4x10Wab+o;~yr4nvcD~*{eY|~a=s8syK49@M
zA1Thj%);2_{SdB2xiec+R#NHk^@<BP|C+9}hXz>+s2+GXuI_*@spjoZDj4rHFKaoS
zsqhJC$UO$UU(qgagQ)vOr*^97XpQAjPnB&nDvHy=BDcWn&1yafc^8-W;<ez>ha;EQ
zBrq*?gAB#MueR9ip+cGD;&Mblxa~Ntxl5R~x0~K8863EV2zk%`T4EHE3ryx!?&kH6
zibnP_S6?2$i2@}^6xhv*^0TfcIrBs(Djdrun%6Hp?A#I)lSf7r44T{&6Uq*z8}@ED
z&h%r<a-^gflAN86NJ;h$D&8_$S}+vtfmZ<PYek*{ZOT%!LmW=n+-%btOl5v+e>s~F
zzg-CW?*`AM&i!*kUnO@5=dDBUDb@@*A*v0BXhI^=AGJi^mP0`dSu<SW=kD4Ksuwo-
z;rkBz&!R>9-;VZ4nhwxld3X8dEcoE^Z?z@IwMO~dIDE~rQ`WvV85MLLG;=x>7u8#6
zjvXR-Z<!d+eA#RPS40VqHS@&xp(F*EF)?l_Thb#zAMfk8FEHVj*HvFje1KHi_6a5o
zjq{D_yj8BPvfr9ntb#Q(*!yGN<uoF$<g9YhI{9GcIg*T*I6z%lXVan`Z_t>Nf3dqf
zF?~qqp#FPqC)0bu=SL%~h!;ia!jJiAvy<*uPUJFX7-;>%``$qZLrg|;PiT-zYr_ww
z%fr^dS&JD4>gwp|bNB$Lv-p0Cmw4NVJ(x1o#I>JN9-uOPd^D(&5eg_llN;+@7fZpy
z-bo}XT4J*1@t&SyfsxVT(b=w9fw~0><QH;JxWtO|d#7(pUo-n`q++cFRb=>HUwiA5
zf0kyNv_QhWs4}idq)e1d&!k){Fb_7x56{Ni+zP%sg82P+Pft7`wbr~vbP9qfYpFF`
zaX^G`pY{OUwl<fhjCTLNgVQ^&Vn(j72$@C78Y(qxLJ@t3K2?ntI_w1VEK`;CqeoW+
zxSK7cb^YaERku!*v_3sqd$=NIj0`H6So!t=g0~hYUA<7%jQ`hvcv5m7-`Z5Y1x>Mg
zsK?!+p#v9sHH)$-EYuKhu$He4aJj8+Z{^eWNp;5k%JxwN<}`}N&Q+6y{z@yv>xXw#
z0hbd=iS{_Y-*vOT5}0}zbKoO0?LL`hBz4+_IJjSdP|naMO^COIds%`>?F*kaZXaTW
z;GXQ&$|2&6|1hWs+Hw%8zSVy@J+*h?MqJGJCgI%)vzx$S*eJ!_Zn$V6^0R;lq_ZqT
zJ5!5~CfbGa$v%<;8^q5be;0MCguhiW2&zK-DjG&{w!-_4S_OQXD!;LJ+6%X@Iiigq
zPk-hjXS4o9m_dXn@zGJP$|493K|Rp`^nn$)a)j{lKkXXWmqNrrTE}krw9(tgcH9wL
zm_DJ3gO5uH7x~$ieAT<#ml$0|8@q-t*xESokm33+uqcDor8hWwfPDnRVwhu&Z!!Jw
z-x$fK)qMT1DNd!Y0t6F54?IB5Mr=Oi{oYgHbq4PGUjNS)ZJZWmvUK!kFaG3DQa8<{
zZ6i{nPX47oR?7Fn!?#TH1IyHl)IgWM;%hL~q0Aw$8TbgWXfQ$h^`DGRULLL$WL9eb
zeAgAwK_1?Q{+=)4WZkezi^F}k8G0eUqrH+6SjkvfeO+i}Moc)iIcM*?`jnbJgY*eT
z`Vt8BF)|bn7F%Xxpo?OKzXe_*TpZT)$RLTlfCm8rC4<hhIYRt%$Gi=kXd_R1^O*~|
zt&`~mTYekOec6@driBw1AFI^?GlFAAfzs;)J>v@MHUDVwPQ?%^AGrgk*|W2R&Gszi
zZ|}B93)KjpOLZH+>?)^!jY<F?V<;<0!te2slB3TaTVfRZyK-R$D&M0aH8GcolCW~o
zIEz{K_1D22wIa1-6RgLbY{rFAB${|9Vv<Y#?=G*TqzWBMOA&A9p&)-v5}-#=`<v7k
zI+FtyxJ?+^gk8_ivF<amvvS$pZwcu89MyUkgvkq8tajORaD}h2A>~cP_og2^gkKP=
zN}E8I&v|kfo-ZS0Dem)1VDWZJd<f5`mt~%s)+=uIp&$-p`h*v6QP9hc@>S!*KB=ef
zYvXbzOi^rh2_yZLgu6_6WaJ8Y+b<)UmSl5h^<&m#Ux-egdG(W-Fh_L}W(v?9^v?1|
z?}Nar<mNzq`jqAS+emzXwOJR@w=@>Af(!U#NN%@sz^y8JV3PvMBpAW6DZ^i^bW6QA
z-cOSC5^*R^eD{ckc>!1E)STlQVpk=na}@JIh5&b|;RqFi)mG6Qfg-9#F^!VW*Z#3+
z)Qbr5lG?Arg{pI!*8OJGHuY_;PUT9PYV%<CnyJ%Ax%OJ43aILLx85{)^JWk=OilJ>
z_1p$Ewv3Q>{{|up#rzM_Wvy{C9<O-|&N)phd{6HbQ=Zt4exZjVSV-JD-TP+64Ra)*
zN#83~@YIZdcw?DvE>f163FX%UACu3YW}n_!47T23B2AV?J;m^RC4mzr2&|XBhO%F>
zvRZB2=0DQD#<#)!P(J?^Eol)Z#q%U_%9ES>bRJ%xGEM4z#|nIKZW2;>g)MPn%(6n%
z6O*yD^@^4GVzDvpl$PEsmv}@4oO1lJ&4!4*xK*uqbB)8sh)@D6B7baMK?zf1M&J0w
zFAOyeFTFlG=P?iWIsD}bX~#P*M<&Xgc!Nz67WmE`85Z^nhG3g!cW8Ff8=kKSJ@%i4
zmbtYRG($>h`(Wx9!@lq(xXRYh+`YYQaX8qJe$QMM_4z-;;X{A`(5U}T;3`TD6ltCj
z8Y&{-5|rfSDHzjN)fnz80A^<D1V$ihjuRe$3|W~je^(O>Vukk44fTopAqx|eA;RdB
zJ2bK>+-=d0<#>Ax)-#04gMK#$t%^?(vT`s!LU>`*CCT9fgfVkHG)iZ{8~`e7aC)ii
z#}BjP7y{n|{`>HJsIT?8CGJx2k5xBdaML?SA~NS8x7&eQ+c>+xHOlPiuouf$bDEku
zv%D9dGAlXD-YE7J$(N3QsD`wcTghlk3>1qSSM=?{L6Y9)Onxx7kMa{|&~rUz<4{oH
z$TUz^(H>HIRiYsWWKe}ykgv?YoR4Nx1WVnBU7F-em)~&asW#MpHFWL??|VsP;jF*P
zldL&gvZ+8!l0KoUs?kx-1o_74ZV{C%G*Dd3)oR7oC(?V{0Um<t_jpEZ2zk=r)xHpP
zU~Xod1HY8XJc_uo5KSQhBA%_7><~6fo~f+0I|+CmUrS3S58p=F5hGaSvjyfO9GrMQ
zk4=jw^pV!mV8)TaK^}s(Yi!Pb_<jc^4I09B7#NJ<Bge1()Km0mH0d`OP<b$@cx&#k
z6<#rx;?#(KkEKU|N>y{IK0}cDnp2vSSDCa%8G#GaXV1|?JtgCx$V+d20R9{0)ZJw#
zj0vrKH7UQMYMCGFCLMrqFPKnNhe=tI+DTK>P?Pd9Prlg&neH1&7X~z1^Dx8H`Y!Wp
z$+O9FYB9X%ZH1Px)~B<2y$)f&{GI$s7wABoFyM@Jvt}MSUl-Rgo634uz{9e7=5gy`
zV>)*_eY_kUZPPZwm<*g7!R5sm@6$&c9Bn@#ogL_CvYPR~1`>-Q`G+c|Gof#A&_2a9
zHG)?_hXFE*Cz2C#7vZ@h*du#PUo!1pk@1qEhWN$$f6=*rr64IbH7t-a67!zVyT7WN
z2f_blCKX0XF%9<u?BWpMs+*Xft+41y-AZm&gc1g4UXlzxF(6a1$-%YAm&y~WC1COK
zHn!MsLq4S>lkc9tocq0~t^US$Z6GLeE>O!O!pCM4#DAdLmNuN+_-!CsHQE<dukKJu
zP+;%l5V*O<GwpSugn5ANy<u^(h7lXNlG4S=uzgSD)o975$cU)#)`8jLCDKCNLwNEt
z+oReQ+FND?sKkO82yo<`sga;96VOt}=X%7<T>KT^!^nn9DLwP_FiZKv@$f-(h9?jr
zwU|hW_Ti(SN?Nz*fm$Lz#OU!``tsVNVC7vXh|AW%jzEmPE)VweCH&UpZ)%8vFf7>5
zffZEgfOiA!nixntdvN5qO(wH!-X(kAgz%SnN_{J1rljPF^1+YPl$VfwB3<9Q%Cg(O
zJ-!ea@`UbyNc{M9j-I*hX1RaaI_ce^EZrG?M|+20hlRA}sdKq^iYURsXO@N%{88n#
zwCP`5%pSmeg3jD?XBqyI3VOhPss(AwlZDVaGA9fi@+9Vv<ECJ8*RHh@{>K1YZ<56W
z1RnTy@9Q_2Fn-(yH_zwarFcFGC|eyxX}lF$?1H?o5ck=S`IDEHDZ`=`^tgx!VS!zH
zHrmvf@X-G7WU~vER49<v$Dv0EIW_#vk~ax8LNxl1Ld7?wbRpRI$tWRR{gu9*mHUnK
z)SY9Rha4P7$L<2R4Fts0IvX7EC&E>fDr~XVf#`8s`&T!U*S{>0NyD>0q{$HY5cjoF
zf0{#$sFj5thasaTu*Ko>aH@=gPd4dVv3ozX&Z$9-cn#AT^92-Y55zT_<z9h`R3T-+
zc+V|(dMgRi$#Q-LmqOl`lLWpz?Y}sLNHGPmKhj7bh*beo?>2XbeW1xFWuC-DqIeTB
z{IusmV)S=ZxMAKtWD+#`48}9cJU{K@m@eKNCLHw={_Po8thkO?yB{~jz_jN*ux|25
zvq?M?iM^9!!;f4N0|#M#Yk%D=?696EJtCz9<WbjPY0;10Il+jKk~j#x&P4|TsXR)(
z?q&#hDS)Z^&07r{UETJz8i}$uVM&$>R1JPhb(hwcgaLGzVYz5RqU1p9U^VE>Nv8Vu
zvkx(3!`B{3qr*qYMNT?@rFyva%^G*XuSwJHFOh<}5MGETCQwww--Rl<4?`!oAyjBR
zWL;Z;LYJcv14J8`WoFs25k=<TQ6@jEpk2R!7A1-jX2V~h?EeR=!cui4X)%NyU$j7;
z`j7Wdnjhl@=nohTB?8<<C(S>&US>I37>O}ZC?G4$9Tbbfv`o_>e6*rVl%4o_{{HZl
z`cuo5i&2=i@b+1#CUcmkrox21Fb7?yp+2%?=f_40T?;<kQF43Rh;^59@2Z+tM=&WR
z!+uO2fShBTN=q<DG-i`KC8KT7C$gGKFT<&@x=5xibSIfIbBp*Fn=Te*uVSm)J+A@)
z&veDbwG->IEKhR5JRX$PKakt3GVvv~OyR2bo~bi?6n{kuKp1y(>8&B6u0e@C{siev
ziH^FFMYyM3bqLv(7c9)^aHZ<EeD@CYGhLUWB6(45o<K9;;z<cO3Ks70heCz*uQ_ES
zz!)s23^p=P8{VLavwMLL^urEia&(023bcQ*cVJ1w85oF87SMO8AipmNXOguaXdNb)
z5U%`nY?s(sj|z_@)1s;F9Q2l=JP+#6FfXeiP!NcWxQJSuh-(12n|_GI7=tq@Bc}Cz
zP~<1mZgMC;L-OVFGAkCCf49}q>kCMUiH;XSrzml@c~ptH<5RRvFYNoCcyEL34T;uF
zjd8y$+X?lFUV|dSbO~jJeaMwcp${q@OnPx@>Ge1y0t^%3w|62VlqV6v{DIQczni@l
zXtRl8H+3^o%CO|}rt_X&PjG`q8xIg;8;v$~N0<xy0gYgc62=9E-c2PO`wlY-72%vv
zbV$@IICC6VTvFPLKC;M8Mvz=QwyslC4yT%;kv5Mc{k+dxxL*8U7$iPI9Vii$PvU%k
zQf2saMPNmOa*JrFM}@ouBfbuOZ;9L(?7s7t>(07%sfLfA6^2m8sQQUf<3@BF-`h}G
zQY8;0J_V`{)#F5yc$JuvjQXAcWKTDKL$qj=YnvwlAr)^AJZ-QF{>K;_t);(+8tL69
zg$Yi34iI0rn>vo@#7R-mP({C0o}Pve6s^W%f;dgo?M*{Z(6i`><tt*D5qT8`bvrWo
z(*P);&7!~e^>laj3=Du&l<R3dpLZl#`UQ{Zbm7N-hrN<F_vE*PN~5JHl(xHI0Uq+A
z1@yyT008o#<|avf0w+nmB=q9$;SClRL|H{$UG*&?GVH~f<C$X>S2_-<eu$jPvLJTZ
z;<o8?37Kxp%#lI+dGFc05cnkC7%PpY3dt?>aMi*y4Qt%y>ZgbDBN?Q#0vqgJ)Q=9d
zif5@cen#CFhV_U4_QbG(fhC{>^3~Ao{{^{~{+=qT3a$mm4D9L9BT3QF_<*(Ga?=4q
z@bL#|UGZNJbDZrJu8$q3;fO4q%q+WGre-Pfw5>UJcZb+Gcu$G;@kxM2VBNmpF4gNd
zH_+bf?(ZuqDmG8k(;d(BzEh~1^Cn}>H122pvs-pC-{}75Cttc-gQDj3c-6@Bsrt{u
zWRJ&peTtvw8_bS`yf17Y^bMlZ8CY0u)<?WA_a6V0p*B6(xa_Qi7|les67}@-SX&=#
z;NY<Sner8QY`u~*d9H*~HFJL|CsbTg!t1sjtHy9~)2vyho0^dkB=19vJZN+8gYYCn
z#fF3iC*#KS@d><a?C?Z3z53I&wdjGvhc2=V1>i#C3jnNDQnt2CHx@`;)Q&i(QX^XH
zvgy4XKS3~aP8i13&91;+%bmX<U6xSU8cp>j3u`WOnyg$>Xg-~no}ikjVx;vu4l!of
zv}uigtDE2_-n{i>`CgiYI1^hEUI%%~{)wcu)GdJa*KpZ9;PzjO{=#!Hs^qo1^tkc3
z*!FOB2l`|NU%sTSKJvTY+LujvUYzz28w^)k*~{$AxGuWz9NedU6@ozC<xl|w!qs*!
zVN*2;3~{QSM7qvfz@#Bt_BtEle!)P9&u@Ra9zH~i8K(G|XLM;v=;h1N$w`;>>6Z_k
zqCD6G_1^y|!oY4_UWUg9C1Qxg$iuY@Kw?1N19<S`O&qXpJyE&h0jz(sNd#o!etcV7
z<~juW3c!b@gE9he&@#Q7Jnh6OR}3$2-h-V_ytBcVtjN-$RIh=bi~T2A&z8_J#dog9
zR?~W2jKEjn;StQHXOeYnuQ<&ss9Of!bEHM~dREHKp{XQ8`WmXthzQfc&p?s;bf29e
zVIyu_U*ivgR@@RP840LskRp(nzkhc~onI+83+D~<TJ9}Idb-}5)2094*Z=|ukR0B~
zdFuQ451LPn46Sc$#Gs;8J0GTHraJIwKz*%lj>iex%%=k!mwTT~dzCh`#}yEN+pLXl
zNTpxPZv8I`!0?FtiEE6)_k$oB8lOyC3om3e*pKZn8g}isi?}<pQ2-*nUZg!83y$C$
z0)Rj^X8+!xbg#+Yx0$Q*&ZaxwLKxqArj$14N_G@9T%Ci0?lafk<$#eLzQkx6HLfn;
zwy}lBlo~lzrk|Rgu`*S6_~B@Ov2bkX{Ol|sz#Howa8T@b(>I9z*_9Jo%XHlDmT3^Z
z0bes0e{);yFYvugcocNMJ&~rq?>h3nN)WngSp1?xB^HqRXMc+`jX$HbJiF4u?Sr9>
z&1GRhrsu^*X0I4djKB$?Gx%(n329#i?0-0#ukpO%Zu>*Vq2PO4l__*LtfRNk#K6FK
z;Bwb<24-Jo??y%sA6}N0-rqwfjPmf<(fx7o0s7CK%h5u?7|za?+0~&Cc~ZYwLBXQi
zMUpZPETpH0hE7ok1X&V8X&{C#)0f;1l6sy!EIz>VHo1g%ug;|I$Zd_x92BF?shD!9
z;?*`Z%$QcC4gp3IA@Q<ia&q#`gP>V5vW{f;YTmP_i+R!HML70$IDQ(zZrj?`4N#B#
z1B$msEUIT~qccD}_V~^_gYW9?_s!7`ABEQ1nwCM+3W%Q?Z5}?uW;G3n8bio&BW?_S
zymycgJBtQ94xIFwZ}ru=)y-SCIC0YRv!e$W^+R&`y~$jux;|$E5*pMtmPfrX{^ZAg
zIK;6tu2d?iIDlf8ezAaV!R>IqKn^xiJAj4sd#a91(w;VV7_O}*s2z`}i+OIql6r!?
zWzV7<`ZMx;V?Ix+cUtlC_FgmdUGd!)a?{Gw=*uA@$yg{*6dGNcI}14S>1%Gj_eX1K
zPq75_3b)&at^9mipW}z4w4uQx_dfx=dK3^qyh@TKSt`-Z8vn+5A5<l*dEJWU^#RCd
zQ*%g=*?X@-HC$Aw;SBe=4F?t$md|`=m)+g<_VyT%%YD9fTaoV?t}d=hN{abMjwT8U
z-tVv;W3m8vPL}4aHPqt<%ded;K9?;C32Q<(CujnsS7%3$<!TITLZb;I{Kc6WccW<f
zpTDHJ-G`a260N(2wSD6T1NCaFTTf<-HCgqntZabpjBkK*(M9%9-_v}bVe7ND8D$AM
z?kxuGzu?N#@HILmgI2c{&&Lbv23?=~@pot|6#3?a4#SY5!tW$xWO$`&mK;MvLt<iG
zy2<Snz6gK)3GOLI|Bn`Xk}ORZ8x~d9A3xjv4<HchIKO{BJ`Fk<$gr{l482kzUV>#^
z6};T9wAFOsAfV|O;N7Ah(^t{R&KZUXYCHHp5u6AQd=#Zq(&kv`YPM0e?k%DmyyU+u
z5jc@f2z*p^&<Q9$GT~F&y~4TmLl;>@G+<W$6}+96=wkJo><VfHQ~T9N6DuX-gTMlM
z;kW-TZ#rNEW#h4V!*P~3;%Db)2en$|o5||MiNkHBJjn}5&Ys|kb~{k`YIY?<$A*vd
zKgUZ2Jm>g$(Z~d59q%qv>lR^`8(j}biTBgfKEwK1YO+jmbJXsCctsG^1oWT%qc-~s
zL<l|}-q4_2HZd%83Tp<iImq9zD=I16KKO(z2nygt8PC`IT=W-YzAn??+rQNFylnVf
zIy$;?{=KHgH4u7~IwR=DUEhe}{fBbjuSckmYwuPi-@~&W8k$#QZvbrp8TH(N#}^KQ
zd*Ok>$m_N5797x5&ic6C=Pzt%FJhqg=8cN}b4Xe<f0&xb-6l%<kjGBv4N$+p1#ZXl
zlMNZz)^~3jX2^Vwn(i}oQW_gQMB@qz#g%2KaWnbt9h^-}zP6E-kv$c0r^+j5o?R>G
zkkJ1>6?f-6uyqmG1vDUxHa%C~gPWV62CK;fhtsIeRZKmV3ZZ2fNGC?Y7)7#lJp$hG
zow5Fr3qK+#TW15P%s@yBOiKe@a;Sa)VFdj(06^71i@pHhNl@kI3i=P-*~Hd>*=Mgn
z;RBeAxeMfTive9*XT=k{HJKnFa!^bpoe08lc*7Yjc86AGSHpB)JWTCXgap}D)pT{i
zO=k+-H%*>_Di9kN2MvXKvk~mmmh}tW+PYdlOq3*p;bMsSDlA798Sz+MoSgMq-Qps|
ze`j9qj`*alcEo+`X(qPT`q|79fSx^ugN%S&9Vsc+JH?w3?WV34G4s1Q2LWQGk?uX=
zvwqzV%)Ph4y@qTbIPf8cHZGe{Q~EoL4SUC<?|}Nkn8KRhV_%CIHKgEJ<p|YAX8bX_
zkIeJ4Q7ZSM8<p!jyuUV>MUvGznU1eQ_z1dgcPJ}4Ac|Yj?yS$0+&e!{Y4tNxjtRGb
zk)y%RDQd`ql#IXu;kWH`i4SR6FBmYxjweozUjW$edPjwRMk30c&HAo;1;tX-Pg3Hm
zao2ZIy!3#iIepw@I~_m;7*7}$TD9hWT|3n&Nhy70jH#4JiGb%fGO|%w6aTyNs`Us)
z=+DYka!NAfYgyeEC?63K5&P<mB4$7t;dS#n$gNO?1#^YRrpI(*eS@Y}Sp)YRo(Z>V
zX{-3#x5%<7i<%W>EyKt(cU$*S#m{y;UU!=pFd@-_A1R^({_qL7=8Vf~zpI)(J##+c
zym|Ia`w)jcl2jBUWpHMEzGU*7rZpq0&t1A;CLRRvx%SW13~Xbxm|nZB{}>x-HS=%?
z_uXEhAV%Ga&&wX$Ijy<jE?x5b<g#|sm-*`h2Oi7k6zOhI@*SLjizRZdPwsC~!v9Me
ze#>cAZeSoP0tq|I<&ck!|JRmN$-ug7lw?z*#XGIq+>%angJ+PGL3L&2_xkKFk#iUs
z^tnuG%z?-Xpku*zo>0K8x?p6$$+D~YHxdFy>=DC*Xvp-<-_LY_+@wuxHE0}O(*AE;
zVwCs>MMSG^S1Jne{tkOFtyd-}pbvzxgu;@w=4TDCu3x9HL>Y>Ussyqc^Wh-pj<28b
zB&W!841M;w?}ygQ5~o~fam|!wN=wgx^IOU4$nd<J9G{e-jvqeEFu1)~Vxnh+@$2w!
z9WFf#&Zi9%|2_Wuwj##&EmIQ2Z}fv&;RN5+eiCD%=jGuP4$ej;Ofi>^gu1hddW~r5
z^3?oJ!w{6~@~@RYt@^(5vUW;fr{CV*J)CWjD^%s?tRv?4;<%bRobxR&X};gxkegyL
zXmr@={QVoVt+h34#j));0vw|{4BI!HI=W)XlO&@#b&1l`NKixQX|3p)na6gVm<GS_
zI^VX8v>kzeWwo`3HnlN-&q@zDZC5T5>IaJfQfMSXEygu&^QFo!#+Mu&rM8BFr~K%(
z-TN8rmhKTHrHwsAG*Z4A$D@us&WK+M3elt3HIK((Fj7jgxxZ-=pq|Y8c(^IV{0^r-
z`uj9Atzer-MV3Vvc>ve;e`DKr8za63m3G(&)A{m`e!#8mait=)4x1<euv!>numD9I
zNpi?mW(e?nM(z8kzcjgM&c+1yd-Kt_BKLcXqlnOvOA~qB(q-GjP?^Bp;*~cj(+bQ7
zcAQ!-2jq~>&LDON12l13_xqkpbV;%;`bR`%t(|3U_6H!|93ylSsmoILX=rP>x#ru{
znLa6JO%0tAm|C`5(I0lQI9DedE;qH{Z>h;Dbob@T`#OiL$zx++18EBax*K3l<3amM
zPMz&yeVv}`!>&n~n#1{YSYM{s?1sY^&#mutneM0#%&5Lw+b3A?s3emkBY1dtclUqD
zydRqe<>X+zU4isWcKrhhc?h(Z>lWP>Qe@VS4WEa6grwr+Vy(Tys(`jlVWpWE$jC_j
zbNkb2c<!$$ab2(Hz(r5+QSpAnZ^?CS0N^devXpfP8jY)T1s}Nv!-33Zq*7Qd4+qgN
zy8~X3>!g#Em?&{atC6;|M!QW8yDi|v2vlDAw2>-=?ww=D12_<-1$4(+-~?~?ObUdD
z{!I|3VEXYt5QN`h{nG`iBUnNSy|J+a6<`2WnBYt+Z4Ome0637+DSl~nT4`pB1!yxg
zGQQ#RpTSnZ7+t({Gg3B&Oobz-+iw(yWVX~`cNr;KX!km!^CE>+zuxQQqb`eU(*l@>
zcdGPwH>7DmgMD&`m2jV0*xz=Y@Thcs+ICmm<`)?Fe#i3ha)iEVeEc`BAlGWSS^0N%
zeB3v+y^edm7dqUfFv2|8n1W!bLVD!)-OM;M8-AfKThR5q{o-mtW+w0NU31x&*{$3Y
zEG9aQ_`^gXAuZi(PC)^+AjbFh6(}P-50Ww^DC1lgy&itf*)m{*Uq3+~;D(U9W#Zt9
zJPn9?V!V5e;=!>`>ZgJM<<RII#X=w3yY@OTrcm1jKqG38=Mc0({+@r(J)+<LY@G2s
z>U}tw1>kf^RfCR8W~@CY9vj^zhJ=2l&pstZ`N;;_Z**K&&)=zro%hxhzaHQw-;uhG
zWjrgcPuzw>D3KY{g!|}Y<n#_pZEAcM5y@7+&EruKIz3c8P>iBMcX(^`7-wz4rr_7=
z;7+;FXJ8pefW5zBjiAOxhC4K;{fDM&XArq7z?J?CV8jiH7<lSANTekDqMrCz|0|OD
zzf?D8P!_<n5`F#!h=hR$y0k9f0=%rhI-F~>y!tYm_LiJlso1$mFQqg?r(&k|T+``l
z(fjtseJqV2>qt<b&L$~I)8{0`7m!P(^Bf-T_b-YyjrO{oNiLI`y+|6SmXM>@h%b{u
zxGDplUSDbA5N~xYG;qk7R#aD;EY8Hdnq98n_lVlJ1{~UOQh%K?McHhW3i*V{gNquX
zolMJzG<s@68JTTP;~M9+w9uNnmBnq&_*pLrt#~y6^z-Jeyy)UWvxBsUPuxxtmDN@6
zf3UKF^BY}R8I8-b>XEHQXMH@U%Q_aL^KfeTy!3GCJFxDMr)q6bBM>MF*xsUjJ3uSH
zs@M4(ZTBK@3g=%oT6Z=81OFfAME?&BwzVb^u&~8~mePD#qSYf9C@kIyc9cIesphCW
zO8J2p)A6@5M`BI3q;;NqmsKNcn>>nHYAV>yO0px3pQGEwyvqO9{vzn>qX_o%HUGWS
z_Sek$uIs4PNI|L;5bd+z;bD$SL%4j3<8+Tb1v>l;3MWIwjqCZ|pl$6AaK$1~JXM+C
z(~KKqlRF_l6L<s%|Aha3dapt2R~Kj~<KSie$HDC%1xVz9FJAN5AXw&?tTc%L&>WOZ
zD^W}~0Gzj*stdWKCuM(#lkN`hiIndCC2u3cvLf7021JPtL+VI#`hV^U?AmfTN#HZ5
z%Fi=-x}Y^Ex2ku(pw*-(%R)+w76g|3MvS}thFcp1AwDn&<$aWgtx@L4UKcFZzg}?v
z?}r^7G*e3bU?{@|@Oz-+uJ8We9*_>}d4Mhk<EyyVnxI|+P_+XX2Jk|g{170iYvh^!
zKI^{^2!h}xoFk_=9qhI)y3LId13~wvDm0YAv=)IwwEJiW=9cEXCX6*ANZ+QbYj9&D
z&;Pz0KL;E5|1tO0QBi(h-|#33Dk7nPw1R|4cY{bMDIwi0-5nw#AW|YAISA6-Idn>Q
zGjw+k1H*gp8^7QEto1zizwfMBI%~M*I_EmE_da`n_GfR8<Kb;Ti|;KhFZ8*!d8=#9
zlvZohSw;{SAo$NhlNtAJgq+-MaU=?|4i!;c*P!gUk0<tK!3$6Gp;e^V_j_odvgY-`
zgLlV?apXT-phntoENd|EK&-y11ZBv9@1$V`nCaRDMM=mufH5w-0nC>8F#xT9)z5wn
zZ1{UnUY0w!zDgboG=F&K&6q{_Cmm4#G0=(<mk40jpP5YFw86Zt=tR$nXN5z@^W<H7
zBlUZ3JU)LhE?Gx;11n!=w86>!KADB5So&O&idr9l*Lcv0R6VB1GuBnu_9j;F+k%MU
zP=xif5gFWP?P96Va8zx<HBa(qT=&RH|GOV^+Iw?q&Hs1ua{<SO)@EXmr0@i|&>BoY
z<pofk68H@Q>r??(y!#*7`q#LGeZ#n3!%O5Kf|ngi^{&P)3@|TDV!a;u7qPqz9C1Ji
z#e)@V1jiB`^y2OZ88!cmiLYe8pP}IYlcOB?_g>#ou(zGY8I@6QcJZ@pa6$V9Dg(P;
z^N8P?VEt1O>F*oP;r82tssY!9lfozEZV48jSvLSk`jgl{;uCl^@c16!xZ48u>&E4U
znutIKTN2>yxaQsm6zLYAj(qj51mz@v&V$I%`90kG=m0uFV5n>9ah3`wN%Re4LwH`>
zeww@U(l-1F&+Bju0a4M}Cy+vOh3Y@d+7hB_;W^-DpjhF5Giqa0*!=}|n)<qn-U3YE
z4iMQWGr0#6FM_=1#LQVCp9G$|ikMtaQaIz+zRequG^r5nqHREy1W1aj?LcFqIHb?+
zJis%u2nqi%f&nQuUk0#r+c1zDAQMXRY{Ftu2W<Swbx<wp7?k?}k3CsOV#EllV*}3n
z81Qi61Hf=|2$B#q8j*tB(Ww0Z90)JDzIYkm24xLvq2s7bWqJ^w&YOGk()JU0Hqczh
zDDl&zH~f%}Y-JEN096inK{^ePI+Y>+j{r>r`ZdYC4oTKzh)f-c9a%uF#$8B$=euh+
zZn1uJ2s-3#*1q>m@(8$0v@AM!rcj()7<WJV-I~y#YVmdmQnh`y$q5z-n=AOhGYD=5
zsw~_9^Y<ax^n31V&C|WfKz|N<u$r_yxxdYDbAhRB{R2Wlzg`@gAgwxoF?@{fMuRsf
zw|PB}k0amXLL9}Z*{VoA3`wXWJDtQ^A%#XPmZ09qqo@v}dt05`UzC}c>FAqqKZ3_6
z-+IzWf>%q@+4fuZA!KQr>H8z;+oB(@PvYt|pokwjsMyc}P9$}I4(YhqWVZW-ZRwue
z9bm)@fyspj9BZI<LdtFwa8t9wB)&PL-ND6|E}P+lsKNA`AQ&H?khCq^G7y0>MJ_v&
zrwtZtPfzcPz8>500(FZB2(_5nY0!f@3p@H9S9f5anqC%@N!}3$4i%7?UHO6PR^!W$
z0);O>azAtBE=I3&Tm6mokTHd%Zd&&7>p{D4P!!_-mOJo&>_j#YP0Myh<GCsF*bHG$
z%a~$0_O<Rd;dNoFiE-o4S68DW(ts>AOBpbN=vP=u6KhW4OMwLRYPaK*<jP5O^v-RI
znC72_idp8CZP%TAEnOp;1=61@^5_3-5NylvIjp<0A-RI0>8J~naf;}7^z=fL-@%Oi
zSM7H67~r4;o8irfb$GXvq8=3h0z8#^5K7Vn^0&^c!$EuuRH%@UzzzjV@67m^Hf{<3
zOCd7{f|i?$<Mj?>sfKD0T<umB$p&$J0CHC#(*+y-!a5_hHd`Vx1OLr4t{mPsh|iYB
zW^wP|Z)WCZ-}nH0uK*_0qs{oquZ3cdcPnSSV#@SWsmlS?(s|mUO4q?m7>+=Q<?2v}
zzlQ@c7;ZnXLT5uP4L*HJxKZEu&NfAKA`|yL^~uW@pQ<WB{?rAJf!(c+;gxS`kFSO1
zT^RZsYg6ryPwH^Ste;gpCFgho0&RgS^&;+DPZqyPTVZ-~2R49e4eE(v3zy-0lTY4Q
zQCiY6z6{5V9L5gfqE6cs8dJ2dCWT0VGSn6wpFw~XR7<hcXwlczzI%2FV7TUG>7}_%
z`W1&Gli`dZT=jZ=s8^GoWRN4RdOmK!svv29+we~xe=ZENY3mnB#Mc{?d=h=SwPeLA
zdJmF(+BOoKwO>Q})Rnk#2*?!DXF!x8`9uYjPLf|_&gfDWDBzPa9(VIznCMFFNXXzq
zf}DY(#;YUQ@BaSF`SSro5yKCeZ6HmrQ)9xbV7{R@=3Z;?Z#dkzxf=%3D`SR3$uL3f
z9jM%oXAgakmWaOnlr_l4!a1{UIg!j9dwnwVcDG|{zourG(G9|KJXX<D&@I#eQY6Dc
z!tU9KczDhHzG>1`V?`ZGWL9Hu>W-?GhV$I`^JwE64a@fV<GDFp!6OED&%9i}mfyq6
z;s7weffb7~guOo=<fCsx)Zs4JT>F?S5(NZJFBRWu)}Qv{iqb&}3-WXG$5pIGqwq-{
zd}Cx6eWn<~rK_2&WO49a3LkRormqEI?~nVzr$(P1#e65@@&0Bk?n*o%mk}ZI#CH3F
zC=wUr?twKHUhUJyng~wGz!kkWhZGbBM)x7E_nB5ZvJG2SNOkUxd%oYei}RYP(g@*i
zTNRC>T*Tx`o>9|mkMO!1^jJ2%o%^Vcm+>Lr1N{{_4HK!)-s5|CJa2rJCvp`kma;TB
z1_2@EE$zl4cvY?YOzHZ|kAG%ga^v<Z`lwxA*UHLVQtaO+4W*T~hrg){#=K%;?#(|@
z$T~FNAlZo5c>lSLe0GDOw-0bHPplr!Hsex8{dS??QC8IPov9IIVOq1%hI!h^Qvp5p
z*Y2EN2GXf>!^a}b+2^kF?n#4l4-X=P8%;V1gM6j|NGnSOMDq7-G>D^rYxM%2m9Jcu
zvXl`U%7qIMpxs9YTo_&JT17u%WF-!Z->fxwamRf5{t`555g(^4RVI_AoIOm5``}w1
zhv>9iMo+ON+vD8mWh95_9>>QF-0P(W`f;ZUP9-*?ojLn1b2@^VQK|5@qRx=7<z3OF
zw+&nSMAP|CH#fG8C3gjDo`Q|=QSSp)-Y+g&qWF%{4@RiP9cKK$wDO;=3jP85nf&0T
zeT-hh{g>tPBje+oe!mi}_EL(DnI4^9@cH`Pk_2k!y6tPF8j7>@l;T+-^-a<;r(^b^
zNVOODUV;J&?dKU!jigE6{+Ehs#Qi9s=y!|!03!L$DWrXyEB34F8SYX9U+W)*`4sG>
zYh4DKpC!w5nHMy&cS};y)bO>Q`qz-WuGNlZ`#nZ=uM0`|OS9(I2Q>!$-4qG%UtPRc
z>if9#_mE^dKqof?JGi$=_P6<Y{qtJnb9&=td_XFo|D!48TUt$rBH}DV_?6Nl$SuD{
z>d5!D$u@59??OTod8!=xW_`{#;ODTqugn+ym=q;HVsw3umz^rMoU87m`{~=+Sv$x1
zWTxk%UQr;{u<K7}*0VZ$wofF5QO`vc;OA{VfZ4!%jf&#3{%X%fF2Haov2Z6q{2!z3
zC637Lc0rJ9vHZR)wHY`!GPib$l|e)_PsO4yFCKW{-;HoGdoC#Xi;F{8xcKZBe@E5C
z?h)b>YBEG8X>!X-7>XM&V+da~q5J|60nuMSgBU^HHu*u3{H2zYtW~+B4ZPY7xe_9~
zt0`?Ug%m!UKZCkl>HmXP0mk0j#v%m}=ewcjZ7r9j7!{)msvX#ImnnY@4)#O4g!DTc
zjxt|P#(-#ZOiZ+lL~5sN#Yq~CpD&yZQtIL?c--x9&D69O*uGe0yTg#X9;&3FK@<JD
zSWw@{b<f&aCLUVQIYe`EsN<>jkM)jo>&AUs%Rqp*z>n|QJZ4y11?3@vzew%8VT=;#
zudl97QO<_wNqVg2&(zc-j;|me;wGz8+vT$lIX?UQ$Bz~C_VnJ<O?yiZN20KM`+9W*
z>Q%Z8l6U2#H$$Vztbhw1xO{iL;21vVkre7ZCS?+bElPbr5>4ig{`5tG=%_J1zP!*S
zgSY~%yrA>i-hj)jJMgfbuJ?JPfDfd+yliBI^P(Akd7RY_eIhdJzR2ml=<na!Cvd8x
ztsmj$mbE(CvtOhDF*66@uBGuY)HW2c%E84+A>@7m95&2-0Hv@Ir=il~eR8O)RWyM@
zO2P@f)kHhyQ`<qv`xo29M;)L2X`=X^dytybouTzFM~5XIrxfA8mr90|Y--P?=t!I9
zL;qd0ko3$3^vx!6LGK0NV~eY;y?rSFVTg_X=&M&7{Y8dm6>58Q7L>gahh>%UGj^10
z`!?T9clUkB>omN)atOpM&U+UrlnI3*Pq^z$SmUAYCxRT!cY>>G_lo4t1d?9FFy$f%
zB>aB<D*ftHa5FLVr#i%SA<LBR%Xx1_-GIa9N@sggKR&@k?x-|jFIvN1e?t|!jb^vB
z$ZKD@(<6snYLR@c>IS<6sVv3pk$pyCM0ZKEpPw*d9$Uq7^t5*O(&-or#9pQEIaZ%J
zwBWt*m6N=4G+kZABD`x?)tBgoYzxV0!p4MvNzoeX)mCNJJ)a2kX<<3Sgr5CUOuGq*
z)fyNcoE{%MZ?h=SfjJfxRW0`y8S;$&XCZ@)ln#U^;gLIJt}<|-5L8_n@Yp117ynI9
z58RIghX<d_ozKqpF9RMte<TIr@j2<<)2rW8_>z8C_R&4+pP3G(vsL!%qR&V_|G@8P
z7e+X|cu@|$I188`|INAQI*ph0ERBb~nT4`QjXo+g^uBCpSO68M0xiHVcpE|!8RYVG
z`4zoV<U<>yeGU*T>K1{MLHajWK{}!~zl*G_oY7QB>ungUidsHLwt@#gNQ{4SO4kcP
zEp)q0PwgyC7b#_^)U_QCJahWvF+K;2B2Nk{lMC{*vgit0ivF__^gb9iclY#y_pe+n
zwI2n!`AqcmY_VULm+@b4O--H<tOIwgm2KfwN6|wkr(=-UmL>o|M&3s-!cz(XQ1;uC
zX$})`=~OxHleXId6p}VIuJo+i=CM`^3FK|^3y%2cN~8L4RqvA_u;Xg4&?wUB+|A7w
zx;1SoXLi0ab2BiBIFsPc4^8s%4M8KNpH4I_7<@?q5rhlqyzRJo(IY~_Lmv>q5_tj{
zcpRDLCW#yB^q-B-BEFndXryt^U(^^s%Jcm-9zddE?hrxhjI3hcWw~GD0r&kb*=kTU
zwS10p0r(i7<Cxvr<8#!j0Q1caL_nLQM7~zt-qzvnDrP}$h(;=??J~^VO?&)Eob^7a
ztW|Jv3BQ06UTwzXM@1nYklus{-T8+1Ezk%%bqP~Z;odz*f)XOgg*OGnjKl5X9FU7%
z@RHho`i-++sKEdUhf?^^bPk#Ku!`R&oVT^5`d8b0xDkrH(JoFvNbvi2*NdE-8zREO
z^;O%TA_KpRyYueEi>Tk9Hka?UuGZ}dgD^V;;vA5;`0df-m|iF}?#J1jq)_^(*<eN1
zTYAUpCLqnw0v^=w?aRl-#JD<OHTF7Cpw`-<?kl`SYM_|K$3~p`W05Cw&NcCxnjoGe
zmg_o`C=4JTag%&y8nCOm`SZ5)`NkUntA<6|PR8RXmZvf{I#T9BV+5#h%WG?EKc}bH
z)_Tr61Mc^u;iY}048YJnY~C}}CnQP7#>y3HNc^wg;D(Gs6&z$$<z(l?$7v!4>Ema6
zLvmF4YJgl4wnc66??-Xv9G9u;@Od8`?MG%%;^yzl?RGnU1LVC0wMX+|-V4plo)`S^
z^Ut)rHAYvB%}8u==c)t=zj--%pu@(Rf4-Iaut*ESeeAn#y9J(zu^W0XuLBeJuKEGO
z2}sN{TH(tH!urF!)~(Lx0)#*w?7(&-U#Bs}Y);2kASO$lYpz|>WP;u)u#zDIE?oha
zouCZpJXDyELs=JoHtjJB(!1)A+gFdQH~usP<Zncn_eXuA;E9V=!upzGgI3m%f2FCw
z$7}O=cLRyLQMC$hXX)1Sq0oJL?4A6U-iv(Ki~cL%prxF@163~OrTg;j#do;?K`)px
zeb35f1Xf(SIOYC~Sa5jF(%+VK=;eoh?tC-s^_P1s#maL`2TJyh%Z{@dz!V28+BHGe
z5Rf_YCd_(olbaZ1k=gQm9l-h@yF%N<PG2WYaX#T+lqdM}c=e4?>LJB1ymbG#&#o7w
z<<Cd>K*n`+A3bsw{I5S0I{lZQ4P5vE*t`Eu^Glp-3-q6k{x5&LqxWCr7~mGysM~+H
z!vFh^H~-r`hI3255EI8JzR`}<`Q|^3@810MS6^&>L`m*9t0=3+yi<Pu&OAt_t(f8D
z{y&$Ue$r!EJFe7z(B5=0-LwVhZaxLjbpJu(T0NY>k^aSKMOKC-dp}s$>Yu0F5oG8p
zHV=`?d!Cm$UFC8$d^X;pr`xdW^Voot2U9ehQQm7a)OBjx3H#_&5Bkp&9qhb)2gk9I
ze}H`>?knY;n`@Q-KCGNP<a$Umu>WZxT+->=^)X^%5|Ht2-TLQia`Z>^_{krEGj3ej
z$Wc<2+xhlCkAaP5l{ka_w&l9x6HS5Cg9pFO|0Sh(NsdmRZ6Qv{`qyuhJyTPv&!1-T
z{JT^|?__1>yS=6S!{%bSd}fCApK;`Q1FWcP2xw|gyWBsn(WUv9i5a*5xQG<gKDYkY
z_rCg%|K|$OB#uj`7}l)!h`|4n0yH3`Qmgm%vyYNwFL#I^)Ik1TIpG2J*`npfAN)#p
z#uXIQsUy1(_Sk@AczUO5B6c7GH{s{sPW9{caTD9^!z+g9Eq>cVk&F`cyx?HWoEI-3
z$(>y<==#gb%QitIN2_Mz6uHmx&*=a8l_~fY0o42A?q_}LnOat1{)f8t$xx6V9XHvV
zpO``JbCAfb>vL)daGfk1i-!m<*lke-yrP!X!+eFA(;fI9aM<5AwQC_wDu`;O5dpX*
zd@hwlF{m`Z?q~kbh?Mt`AMvr?t36{xpVwz$wCz~l7ei1tIEHXSd7S4Q5Mo=A(AoYv
zG6BymB`5+>g8=*v)b$r>1&`M5?QYimj~=r$D5z^IX=%7;RJ3n9-w^TkZdB@nWt4cB
znyQ{g$_vM5jNJS%wY{;q4WiOHx!JwO@#3wmSRt}lva(H4J&cUNAQBgEwWwD~9l5p<
zaipnTJN{$LfE^b>b&Q4O4HZs`RaDa|H7J3d4ED`>A7b5ntEAdj0F6%s`S{0JA-vYn
zi<N!>p`zcU7CMOEP}(U=z4Ofvr%@vy{LkKp2=dr}%6vx*^JYSwcJ%jm^y5HWy>xO~
z6|Xg(8L($_Yj1v7QdBUubOcp*%JP5OnH!Ko;xse>Pd-)itK(xVJBzQW?Q+8-W75Bh
z{Sj3Trf|FQZ4l&#m$@)Qz<>!8-j%F7>?t^u2Q+ztwtIz&KNAvTy|+hVL>qB{9a<cj
zL6MW0{pAx?3A>W%tQ-HM`v-lyYg^X48^8OQ0qEKf%>@q{9o{S%#?8U?#<=)447E_j
z&K1vT+*e{%URk-+vfl0_?vGb=3&LP>NKybBEOQ_v45~dp=sO!**>v3XLZKDZAAD;p
z417iKpGTjYQLxQamJ*FvPD>l+PR&e@9{pBa+}bMs@`GV)3Z1`bL{~IOo6g9f!6pm(
z!t;QfkBwEx1jllF-4s65KkT@&U7>TnOHo2OfJuS;_4-*{T-;;QHM9=^(38Y}=*;r?
z7Q|l)a8w+h#1{aZRDS-?`SGGi5Oxy-N-+|gLqMMn_-$b7@3fIW!#uwiz^4W#E|=K*
zHcVH&kNgNh!{j~-v1jo@h$9DJDFUCux~VV<x49o2`yv6-uX1XFOIl$#K=|A)*bTuC
zzi8_r8H3D)sOoYNVF8#P|0F-406&Y_ohS)=dn=XXKXUpYADxGi6axZ6w#G0q`k8@I
zYc^t<w)TY=%|CG<fJ3K^IZ;?uSy@XJ-akH^p!?Q#|AH4sISpLsy+1uc9ocEXs>|ac
zk*4xa`Q22mN@U|52$;MfrO1m=g-`D5w8A<+pu3weK|#)UDxmNhK7LenQ_~e{0NWG*
zMrqo0z1A}T;@w}|AJPx==$jL{@;@{Myn-NX4X<?e_fd*?U78BJOstqCB_bc*T=hOk
zr6|nJEXoqE?3>`q>Ffd~0012n#`VN7C4`AlQWo)$J_rl@nwy`$Gh0Ie0ZsvF&8a++
zF}uQl(g1)osf~Y5&y*1yY-=9!x!?{-`=YZhkISfm4nh9#(y~85k`2W!w#m{gj<0nz
zHcOhtkrR;@|A@)Swm1v8hZzi+1M|Lk;(EsUAV4Wg(PTPwXg!e77LYfjr5QusYH2MT
zyC**IID$pXK;9~A8R+PYuHQpHcVA@YCdOj*i1<HE;f(KEos|>5bwbGO%Z~j>G%rE0
zXB+kU%~&9icDssvU4FZbqTtout!Wtl<2wLrx2Pvhj-H+Kn{vM6;^V%y$J1|3q0#7Z
z=|~Jo?jw59j?n1OxBcEbjre*6{w0ur3&*8$1V3IPG6p3g<%kA3I5<#IRpBZ<21hk7
zAX?@q_u#_kzP7LtbMy}YhSyqo2}-13yt)xM;eq4(_EYd32I0yx0tP^FLm%lTNDk@f
z>%)MQxWz8=#E(Qn3jp<RlCVLU+L>va5HT>0+uJ3+xiB1p6a_6NQzeHIjZ~eoyxOyE
zn{!Vc6g3)}%L6jOYSSy<(9ry(sS4Lb%#YL9-scPTbolmlFf%P;=nurHjW^s(L(V5%
zi{^5y9tod+y@VjFTf@F(?-P7P_}h3;kL6Jy(e#q2w(N4f*RlMWGaYGCtY+m9_r)&!
zLWkwd%!?m27E_<8NI#2gA{_N5?qZ{icJfHc_%6slb+v`<v)J3v5#zJzv-sn0dMk*M
zvc0LjK}umEoxC1RT*Sr2$D7*oOD$)gxd1~!AC%YOWNYeV<lVe`SUWpEyVt=!EjTRP
zt6JF4NJ2C*UlzZ9hW=p$p9JFQv<ngy)D62z9N6UouCe_&BP)ai_=1RT2Le!-!|3LR
zpN+nu`8)ZEHQ(u-lpMMmn-wT<3fkEPIo&RX*NYGCm1!IvmGt3$k@*_3T0G%}#Ey=-
zy4spC_Eb`(z}WMdR&sGM|Gu!pHBDCD_-X%Z)e8~_mjJ6Xy-JIs=s|*wogG<{Qvqg0
zDU38Ubj$DX)8^o#m01UQIcw3~0!e|s)})XyK@yh}N2?lj>96R9_KJ%2C^TMD>jQr=
ztt?y3&gI`_n-!Pkb{?-@4edR>th?Cb^w6BjaZ$?RtU0BC7oB!srIDyo&=K4{wZ3#i
z6eGA5Mw(KJd!|ly_+6)aCD=U9y$b3p@oaPh$m@J&XY+)ov^JWe<8?g`ESpfxtY$<I
z@B%fwE1xber;*R<pkZJI@j5H#sW?@Jy?sW^V)ptS;CmKFghbmUemgX;L0vcu4rc|&
zFfA7H7N@6g`&f>ymx>LK_uD?5_bd?d!oVUs8SvQE%27*{K(?o2J<O2NKJTy(o>0`$
zskZ533Z9S=TkUH-xP9@nS>h|1@XIXa1Oacyi<Ztj+L?WTE*x6v)oocRB-z-ku$f?p
z<kXQbBFcLHDj@7Ji<zyPdTdTkjtXGOadMbi%6${G>T$9j9}}Ni$FYDu$EA?{odh*5
zE4InC>uG@a_CB&r;`9!`H`~sJVEv`rWlv(trEhupV0^y0+{=N!`m2{>@Qc#<FnB%j
za6yLJGv(|(qN;B*x+GQN`L0O6f_{eU!TIoE(L_r|hE&k{BGYbBky(e~1!L8MI)!fi
z&cJ|#A1gw1(23w|B4F30@=|mGff<zNV7q};P3B{5Tr#dDB%gOKU1)zX9<kUSszw0~
z<@M%Uah*~sGL>&n614J~9v-elRg`%O!Ohr+t|om@!$FG~atYzDsqa;N?D!TPXP;H!
zuYVe9#Xu0;wfvqV#-?-<n$~Q9y#M&Ex`MuTd337*W9?O=4h%^)4X@_QEr1F``{em3
z!nz*q{QA0e0S3X{qx#_hwr*}+cpQ<B5Mm(h@BmY~?gDiRJf`n5hG4ZD4>x=LFpiQu
z;ep}FADU7Isb~$bDQqrDo$TjI-xy}d6TcFp`g|022b-7BhgInL@_Ks=O@@(Iy-Div
zUVnH)289m`6KcVRq(V0*$)tpr>V?gCa@|gTubV%$SgCFAu<xaNbq#NZ>5BD~8;f9$
z6Psbt>$8TYSXe5Ry5;CZ<uAW>IRL{c6D+grwA@r8RAlp+Duflikq~>>9`b|l{Smit
zzAlfcy;{XwT-<qqk4DB@I#q#MI-dT5%3q#6=T_^nRotbtxVI6=?nK@!$<zMymFQ0`
z!*DKZ?l>8-qoYOX87)#DwGu>800BD2IsT(4)LvKHMap3L=nsAegRsE<xbx4lK3nPa
zy}7JDCrb*==zP4Bg!nO5Gj30IF2o5U5tlJJ+KGvQYeT0xteV}-^@zJ+?b^q`AFeJi
zqujIJtoFqT80pz?6J`u|PYb({b$9$O8Qnu<P^j0tnI_loX3nD#-T%VtfQo^m3dt9C
zRt}a7rA2R|Wm{}6;C<sp6(Kh|e}M!;2qZHYOW`RcOvmM@-*@Bp?^!P-76~tXipTei
z81Rx8Ga3$zNcA{g*Hl-q+uD11iFM*sPc9L;|HW}p;(eKhVS5Rh+9P|!@*Dn1)>xVC
zp^(kzqedKG#3+ki%ZO<)g>@}wE631kZqHQsDCoa5G(=-ksx(xSSxNSW1!fjzeh<8P
z;q@77>k_5e7vO|xP^>1lw7R&yxUE0qw$>nIQ+FX|o9v@ul3x*n43-yWL)0mZX7KU$
zCy!Y;@=>xq4xvxe$QfH*!oPcVz4*o_Ce^T^eEN>b&_4g~U*)pt3GRA`ecr$VY<2f2
z-7g|qyP~_fh(lH%Dy612!F@In$s)p(3wBkzwW#i|&li{O89RZh0q+;#9*4Y40k6b7
z$xmV2(0D$(ues_v+DgLu-GyPQ_0OWd1a<VP5U;HsHfl24@=hOo$%gpsR_MBI9G>bv
z4E}UmJZ*-mI?sFiy@l}iP54mP(01ww^GRr^0Q9>#TO2`m?7_lN-l17#4WFd=Cs@S>
zuV15@>e%BM!L1o?=<=bP*wW(mexqg|_6|HJH$|#osQ#qsDuHx+ig<n=V@0skC{(9F
z*o|g(sM%@c1;CRB;6zAeam9Cw{TeWPCso#JId8}7>n+sVo7ar4Dp0xxek9eB(w*>8
zNRSGyd+hl-To`vBaUmiMZ70{@ac^n(n4-w9Id!{)rZ0i7*L_$rNB2H97O(w+rJ>TH
zAEs$21?MA*KjJ&t1Hh?piSB>?_36+!EzKK+5~}lVd^!{OI%9;3W7ssQ*G$uGDancT
zd1v#G2jVyFuz8ut6ME(sygoY#$IrQ4u(9R)7)iz!iT(K-W&wD3460xJL%-2iF^fm=
z1^2w@Mw;+sjrDZ3$IvJ&PCDm7nVaK;CqPOs#B%3YY*<>Q340-WQ>9mTg-H!Bb5Lau
zrhS%-^xq&{pfG$wpZ(xnpAze7*wxyX00LQ3ZqH_lnpT5>!lz!CU!<q_gi6QQ>9=}f
zpg4CCGgP8gq`filD{Gd=Gg^tJGDI$XOm-t4x_AoxI`tIwYJx83pIn4c&S!JpU^cg>
zJ(e~p#&8FQgA7-C;&@D2k}oCY9*_((Q!-R;XZbs%GikDUH2s*@EZ;3jda*A$8NciG
zQf#+wf9pftz<VNI`TC3eRs%QZ<>H`4iBISl3DU3YP=bWLN%T=t<ZcTiO$%(BNvWT)
zwJMBF-NZR@?Rd7dJ;E#}>Y#zMy2o1evw}A-YS~K;343Dcaf5{}-9wztzrI<N6goUp
zOw8vbEUzfzb)!MS<b7C(LrnXqz4k^i(U2!HecfK?%Px8TwWyudQDY@b%N8rEwS_Gn
zi^;R;ixgTN*C{;~iO>F?h=EOPrZ~i4JVnKd7Q<-q6)aadTlCe<y33<HZ<xC!+-qEd
z-p<8IuJ8Ay-8N0+gn;)^KS9+^DA~0jsZ_oBAg6kg*dqEV0mv5!mP!+=(R?2DrH90u
z@QWB;kgT*rWciGjp0@V(7}V#yLR%DK-9vaIetBiXvPf-^&7s)-;FOdnALfY3s7g1M
zJLP=*^nr7^HB;~Yo9Cm)Dsl14cL|4Rz7mnIty+<>*yo|~JFcy*V-WPl3Fr^6Sb4OE
zlC~_`yX*>1&L@HP`xZ|^cjUx$ug;J=my$tr9M3)kqMz;_4-R$Z)vO<#?-f3wyoZTN
znbO?eS4#bS^wne%pZ!AaaeFFlFPKPvN`@aySi!t8wgcx+I0Y?4;A>|sM!~J3Vp&AI
zKu_$QIND$W%J07Za0t2|tH<Q6&7^WJManOCu$byg9e1+EN7p|wr<<H?&NNRA39|DG
zbF}E@4UqHL51tSEQqfX)n7!1r@H}e`dxd_aBjA#qm#0jJgA);xL89F*S|a9n(CxN)
zlVe@I3KSsLpZPdB8Y?B&sYw4$?0ceSrg9dnb~-RqJijvh+dz(FOS*3T>&kFvA=b3*
zWwh(rn0|3X5{YyxJsTOO9~nV22LU>C>E@<HP#d*y%ZJ(NOxepzDPT&R@&@jE&gyc;
z(RR_F$%kkKtX)~>dqqP-v|(fd$)}%+sFv)Pi$c?Rs8d>k*P-6WU4<{b;GT$}j>7On
zk1)IlH3rHQ3H6eLLCN=5KOd(Kh>77vga;~<^$fotxEJ&~$HMFGs4u(KF)ih$tPpP2
zum+_f-AD|9<sc4ja8LD5!90uo@(~vPiYNRP$>}=>k2(BPI4|Bk=NzRA2)yO#tCLaD
zMlEK<6@SbJa~j6Rg<Vb#`JErjyy?r&&RX8DJQ`~)T#w5+xi_U_V?q9F#DR==OS<6o
z&)SQSU!!K@TccOcb-WK3^<SN1tvwXXwCM{n3}{aX)x8|xK0CV}Cx{b*mj{xJS;)db
zX3d<F8Qm47|I>Fgi*lSnC2U7uB9)c4pzshasDtnD0kqGi-fp#yiXhk+@e1?83kHf2
zj3A^+GZyh)fFz9v8y4Gz;gL!rVi~>9JP(J?ZM-$ErrNfjuTRkSCDEpQ-SVW|Ai{qc
zL$l?Hh+Te#aq<)hWC6;Jk<{a?*#TU!@3Dz4@fvI|DjLi<^5Ml@8l4X_7L^7|9GE%B
z%9fT0Cnlw+nniPkfwUhVe?27;cYkAyol_7Q8w0;w>eB6{O)nLGo576}F;@^`Y3vmO
zV=4<ON%gC!0O_tpWv|-HDyw+pA9JVFrkp2+)h8n79*R?gZk(3YA^!}8W5Mwp;D|Fi
zMWqI>%3tkm6ZW=HpKRkV?{1c@HWZZ?F(%UGWO6<J>W6;hK3T{CB;16<8!=@C^+?;N
zWxBiMCM9ltzKe-5dPQoeal5(L_86ug?90u4-VAh1UERG<R^!}8BL?PzI1X<ywTfhJ
zIFgb!tha@xH=cLD$QW~L+wzgrNCMHrTb?Kv3ohJ&*zsR(?6iUx4O$rdntlUjiGfFE
zGFw*W`IiBP=f~^&^BaVxTl^~vTP!}k-vKGnrp0c{tY16wIMf|ELW@nxD=zl14a;V;
z=jW&yBSA1UYz&-g{5?^A!KP)xg_)I>z`|e_E)iho_nBEq+=kLK<-LB>N6uDw`l3%r
z<*hQG{`4J!$SRAgfnJN0Q8RKMBL#45!?xhkWH6ERsA;2#Rmo|__+v)h5#)i)<)3V}
zZG$tx_WDZo!cXy+H|qFLNKpq!c)_Yj>cAPw6mZj3$PjZkP1-bVoXYYC(SZ$HUA|+3
z$!mY{Rc4gUd|ZT^(DXWiJv*$AI$Z|Jv*MpYzVGOQJc=(fUHBH5Sy!|^p$Z2`I&B`8
zjRRxM-@kKaFVCi;3962>R&|h|tg&NncTn((TwZp**M3OYq)Iq!xtIEx&)x(!<&CQ<
zS_%yw7jr3%(HA*Fms6<=50$R<h(t!bu*bm`(ZdrmzKH0ES23SUJuesCnPLvxg2RMS
zYYV#EmNwrwE66Gh`{qklzj=BItoA0jiVI@~w;pV0LX*D8KITXs1N~8BSfSOuv|kvm
z>a`f8RINQ)X_rV{4<V%RIZUH{L_e~D%_?;JdbOcmJ)ZsP*MARk)iNG5RGxQr`~W&^
zP=uqt!k{i8)=7wmnjx@tcFeReyI5V$^>pk!>NJG<Y&T;*U*}f68Q*GOSdo*rt7m6?
z1KMZ68b$9U>7aP$u}r#RRyBLivYu(qpqX{)t{+(cT3NN{bTpCc8w<nFEb4-KA6XJ~
zwMk5lKdbqfYWWL~Ci1z3b)zZ8b*J)iW^$Nut+XpX2ige^HRFEHgf#g4W_-ilLOFlN
z`l^dQ+lFuE31w>MuzvMRF;!-VDT%bv>CP2%%dx%%D0lIMWqx)(49xz3qhDYl-=7m5
z4!8+KtLxW36<F5!UXlZku3LhLtbsV4OIB%jt?KOgGipH+*+1(D^63K_WJgh*7h!hm
z&vj4k0}t9?FVTj7K8f7n`TIM_of{bce0)0h&!_*tT)9WlF7XgDy`AE5EKc=T=Ya9}
zPcN@OUId43!TlxveD%R+1}uf^o%HwXKhK79^T9t~{x8q=zg@YOkI6G`$%VUEUaw3u
zNcz`ZKja5_<=iVSD%<2X`*B>Pkw^c6iQ&cbdv|wtwzk~C0WG+-Y4I@NK1F<Nl9smm
ztn>G`&q6mwR4F3>ZNayNk4?3tln2My_a0!`Ol3S_&Y%;{FooU-?PU`CHS(T#bEAY^
z(bW?bj%ygXuoy?Ynd|Xc`~>ICuOPb&uS-9H+FC<-GFnQm_=f}&&9ehRJqFyIoZs;Y
zxrWE^6f}KRf>wKf#}V7U{CfoYVWhTdtw{pu+-tDf%W8j@f}AWSrjEm-13RbF?0km9
zeavCA;gNUv+o#y~A8>9Qw?Ei+a<<zfpQ$OYmdXl$2u=zzf&9iZ?M7_s6w2?uuPz&X
zq5jrE4!iWL#$Phw?26Nxp2@p`;n!$u=fvF6gOc`t{B=#}@&|*n{h*tl-0C6)&Oqwe
zM5JU0IvVb~=$K{W3{4k~$03!(|Cu;kA}k3%9r*Y-&TFyzgBE4@#?*B;e2<+*l4gY_
zh~66&mBQf$tn3pE=&a`1^cxlyGA2q>?C5^;Uz&PoQgt${2H!6;vi*E5CN>hae4}xu
zm|d~cz|PjuplE_~Bx)NQIIo>gLW^j_09KCjcaMx}*7uvfBKj;i5v`Wh=YMt{=#0pz
zYXk16;AB%FI2o=Qo0@YHQ_?^0I6XSq9<fQ5%gD>mtu(kAOljJIo!=+p%rDPQsmv5f
zRZ*{SKwRt$!1BTzO4yw=LYz_)VSX)bqqDQmX<vi{nrFXw)kL{XMjB7Np*<}?vbl+c
z?u9%^Q`Gc(X(P)W*kQ>UgHKp4XtBFyBp5tk^jk{0ZRGE<5&2>CJrFDc@W^rT@za8^
z>(#h^H2G!FfP|zb<wAh63m@6F+*6bh3MOW9lJ|&0K<gQSl7%UjgS2$XF%&U~gRiNH
z+!^qy_7{(iCQylv!HalVU}K)?;&f`nLe!g|&pEQJ`rW2n?eYE3t%G(}$L_G>M_*P<
zwC?@ghfg1xv(t-<i*uhHi++6j%-PmFv8kjk|8pSdRQ@cyc}Vjao@#VdOM6nO8iO3u
z&M@DwxUPn>-sRZn^VIzGjisVjQdJ4<%Vkk-wcpKeEvzgpwHdK&n&%7n*QUkxth~1R
zl~)kmcyx^Y?X^{|F#R&)sM7Zs{6)pT+kbM4RK=1hpli|1^_(SE#!u&TjFx{*a(-uh
zh_RMGz8Uw9I0Hc!-y{FP$M@0Wn~P9}rJA!*jmh5@ZgRUY*NKSaWl3@dciww|S&);%
z8k?U$r<|tD!8I&-vSwwvOZO<~6=gLN{nmSqjnTm$x#cA|e!e+>%gzrh;Pi?`%=IOZ
z!`w;V+uHC|GyF5UI#FkYAmGSkZ?xnZQ&AmNRxM?u;J4orGp~?g(B65bh&#?W+%8PV
z%^ngcLu2Tr9g<TcX)U1<kntL3E0pWeM-D?4t8JO68%k`5FQx^F3)a?x_ua0Rn}0p>
z^zya3Lmf*MPFO}x7_n+vZ@w@tQd4!=hn%gp$t9FqT^6{U{UQkV?_e|SWTWIO_92}8
zqbMO~%+sW}1EWqBfseoP3(0-F)HS=Ay8mG50l_a4NaCjci=>U6a7rZ=Gsh5jPaVjP
z0Zs6PUio7Ng0#k8CDRvhZ1*#w^wWW7ge6@h>LK?ChzaI)P$n#z_h~*izLsK?Hf>q6
zgj}nc4@`mWdb#%<p}X4$Qto#7ihk%fDyNDb%Mb*gi5YO^wCb62P1_oE8fqpb{8D2P
zJ6v#oZ%vIMd#@kAj_AjIg2*#cJj}0*^d=?5S=5kgLA<6|{pORd#O+E<*8-C#Gmtg&
z$1R1+h5if@uwJvuoqW=t<ev+o%UpSgb#-j~9MO_3yx9X8M3ahidO3dlFvEd7$xXQl
z(Qbam?IBzwV$EXm`<)rq2d1Ddqo8r_y^P6DuToS#O;uc!!e`-65XTuCbgm#*f>N}<
z8Ygz2{6cZyK$Rl+4vXgE8(P29gsob_X8c-CMm=hNfSz*FDan-0@Vk&m49Wy2mY0Ej
z^2Q&1>Ud*ln(W7YbX?;XEIhYAR6B<`K3}cov+G{V&}SnO`~EJp@j2wQf!hxPl<)O(
zCg-!>2snNjIs0K0vNkzBHs(h)oa!W@7>hT<4cYOvLBB7C2Dw&T+8^uH`rT;_S$=W?
z&s$%Mo%Yo_vZfrJR95QZ8^jjdlU?sQJ_KwJNI&&!-aMa51tMHq$Xiui{*!8Vqt}{9
zrwFM4T|CH+f0^L`I^=(|1D^axSzg-}f4x57*#7<LPv8IgeBI>Vuj?!4tlLdW(#jPd
z1UT^Di<y)HRXBZCTMrPPS$W?Z^`=9c#0>^yNm~tA5uPYPZ(P(^exwHhv@d3Id^#Pw
zgN!Ft4HWOA);^x8@-N7@;C=*Y5Ilb&7zcsu=s+(osBygxP9)zgM{TEmc?ZoU`0@$v
zd1kEea=?jTq{OCgOjzx>)dNZ<?6@_mqWI*I<#fsN*-t~=+S3Uua|}Y4inJHew_Pv?
z%}Uohv+BJoRB}d~i?2SW1!wfdqxustEG*1ztYpvcuOZJdY^*hE?7DX2t=AgD>aV(c
zh78wpsfo*0psIeY26cxBq`-}<Ll<F2=I2Ox?a~{KH=5hOZq2^<Jv&=hTx$UD^)i)D
zsAC`Ngc)ueO*DTFb9Q!SeExj0%B#!&*CDs#*+=oN^u7dSKbnJuMb4G;YD023{tIY{
z5LdiRRFtu)T;gk~uk}CKXRqc`Bh$NUedfQWr+@ZA9jMk{Rf$o0t@&2@)T~l<LDvWf
zs$9mPth5iVGG<@$^9R_S%5IR447In{*Zth-&RX<vu^HQR;y&82)_(;=*|qJ|VAZO}
z@=^37c$+ZC4S6Fo_fu2dC2srQ+V}rBrQr+Zx;mIM>_Qzo&)M@rFZa|Pch@2%4S#=;
zrj?05`dw3Sr5Tl#pZ!~|kG`X)W?)qMjg*|c+>m)`#V_IkFAwpf!29>^67zZ=`D~;d
z@13}=24e&7AjoZ8HCaUu@UN}hNLzO>om=$8l!fx1{*+Y79@%IPIB|1zudmzi+Y6-I
zR9f7LFShF<&kEUQ6i9si3~)INm=6PfAE3f7G46XU=3ygGNY3CkbVXu(-c7^F$>DF5
z(yub;+ZOj{K~Tg$I3}oda4Gn1Z!Z%zgEp$ED`&?D3akteLxMogRDr-g2!nHtDUShn
zLTduZrcNXpTv(Y$={|mo^N5(TtZbst<dUM^h9(8O4w326M;D>?OEG)L)0kfBg^uS1
zBHj$<Bz)<OnZs(oMF*RGtEtWI*}dl^j4}sDSgPjaSyvzYm@Y48gp$9Tzu3~k#=&+q
z1%aUF)lV44{>!>|?#JZGW1A{4RPBJ7j5O@57YRMx6sBXRiV93f)c(a)F4LBGwJEnX
zp@cl$d6Kdhn29Zfs<yd$d3SXYwTQ*(+HnWOlhuAukm9Y(ufJ1QKv86ke~IctNB``3
zwY`dQvR&$JD|C5~;eCm59JrI{$%?BA%;P8EoX(U}o<7<-V%*lG4);31!o?yHZ0c#w
zOV6GhnF(PEQTb8gI$JnEWw~u79W2F_uMKr(4GGk7N8*P_IP55IEd)^TIBglJ+r80@
zP2DA7H$-)(Vm#QLE{<%}W6-M3>`V3z4Go<jQjZ_CrlY6Zm@PqmF;&4E2v=yPbQjx!
zSM8oP8bU9RTKE0hwFI;<ut{>?(%~)Q`5^W42Fz+xn(9z>(pRUpZ!4boYegiu>i2L9
zZyuwA;%MU7xoV?=d|x`gJ&vg~MJ7#Vn^SHS-rU9<&gKMe@6BdC7NGn|`s&)|ZHMVO
zabc&+7{wA3?KVDUGlzaQLgtxyS4PL}qZEG4uaZ0#Z_85@TqH~jb6b~i1&cKJm@TKm
z&QF1lzcYw%?DD84McjJEXXo+|<37>a+*){o>wX8SndtetDz~AO;sJYsP>ogd=npDd
z6Q&=W23whB@VqJ?1R7I5liLLE6gMi?o%MKQbgJF~9?2}cy}WolePEi)?1n<aJjVt%
zG=oMZl_ADLMq>mV8gqZ92KZb}RCJ+E!!yEMyq#yqD7@5lH6>MLZw}hnUbR#nR;f=&
zs|rlRRKtdU8JUyW!|kYaH%D+4^j`PZB3A<>K5=q!v_XTWjy5GWPlygpLK8W3%&Fc;
z%T1N*Tj=ZDz&+lY^4O=6o}Qk$XMc#jEoemMG1w-|(=gLzcxV%!yZ-rj<MQHC{u1rN
zYTGj2xJRtzNgG-iBN>-_<$xYf@oq;smd_l!cWS8yXME58(E-zQCMnq}7MoG8(Xe^x
zg8UtFd|5FH?}Ly|BaQtv14?2J*YVt{U;%+z^X!~3@`(zU(~}%bQZ9q;Gr&1}emnXR
z;TF7Nb8G!!Vgf8pTtdw1I&*{zo5_Qr*n<N%EsdrCfzXUnd@062U@>rseY(m0nm&q#
zCW$?s(JIo;^JKZt<J6KcsO2Gz?B!DPh<fb%8#i7a5(+*hCZ6b5^I<v}j+TuXYN$Hg
zrC>1&^n)25w6;(MoSOd1=+|BS;krIDqQ!K2=`tJMNnDV*kvXtvBr6N|x?IoDy<o8)
zt~{>48gw2;>muJIABkj$ZuxX3SaX$|msKppY1Xlaq>(wqzSG^)Dd2Iwv~P$p)wbTP
zY3pNVW@Kpi>Y{2Wp6g=roHdr$X6vj|F-ulM<Dgua>k+{cUPMlO`<Hg;gL@D1^77sU
z3Qv`n;74|nve>FgxPRfi_7M!69TQSKc+B(5>n*RrQl+{B!Q}Y3R&DrRk1ECH@wr^~
zJ~j!k$M3vS23qm!$ApU(hr3`SF0O60=&=BKKJ^xEYXpxdCtG1is?b|c84m8WsJ|4a
z!^=B&EsG3h$E~WYIiV1kL%d^tj{jvcF0T9%iM4ZehAAIS5Vdt~NQis6i-;;A=z+Nk
zy+7O~(Vm%^MO+A~Vpp_%Zu?Yui!wVaKZqY+Q$eFwkFC}dMkstBBBIw2%E&Jj+?C!N
zd$P63tObsrAFk#rpp})p1xUnc<xtVXbXj-T<y5hj#X}XJebn9nRc~8@kk{652U0@#
z^xR<-HBP3I>=o;e@V{$!_mu?J<@-bCV2V2U?7+)3WpyM&rH30&4R6Kv`uzHPuWgkV
zx~}xhv_4m%uvzcA0-r*9I*uQKCX8|XCJW<a@mCj%6+O)oSh{C(qMN-hk`V9|<6!CF
zFD_Oyz#?B8Ih`#msi>(Ya`Q}zDX0*mr=cX#<frg~#=zaEsi+O%CxX{^_1ZH5gv}#)
zl45d9z2rJcqYi>6TURT>l>kX^Ha4p5{Svk7iAu@{%P14M61g(f^<YAESB*!SR-Xa}
z=n%sEx@YKE6y3{q@?;^rPDiB^mgKz7pPW2sLp<|TR~L6n&P!aj$+m&C(R7wrsl^~r
zgBOs)QYo~G7^oO8Yx?Sr_YOP{(lTOY(t&_FhK)ICYy-)VrA!BPUtd4TlNFn35)Gtd
z=S;n98~;(V>7%ZyJrP%OpG>fOXv(5*RGTl)yOZkll)N7Ux=&JOItC>USqUx}s|BUF
z0K~7~ybR##0~M8+hLu%u6%3lHD#s(m9^p<brm3pFSUQ0EoMo4npGPdqKOo}T_%bN*
zmGpG$umGI%y)T#f6XlQ>!8Z3vIll6(aSht+Tp(kFj_SwYp7o`_Tz7Yb^WL{^oC@s@
znKmS8PlZwlju*g_M|Qp142lBHmX(;h<6z0v)%Ih(Ry#XMhHY}mqY*AL%r;Q}VDbc3
z3mtK{SjFe32Pf*6s8yl58~iR83Mz`Fw)@5Hs8h$yjDvks0!DQe4aHK6)zOAz>w>!d
zq{Ku)ZSvYSukD^wzgJD87Z=+j+}qYW<TIjFy$M1QG4bydbhs>Aew5EY&4FKeo&{c`
z8xn+^JeSt?`(S(3$A)Z<XPJaL8m%TJ<(EZCtp>u!TU{{sQz}XTqX1nuvDvNMsel%j
z46ZP`&dp0gpQMlvc#(UWiAzZQc7c0u%+Dj1hL}M(o6>!yO4ZW~t^Vqyq~*}=kWh%n
zY)^L*SY`50aMV1ewNOcYecD$@=I5PxGu)(Pi5Wc!9!DK@A3sjxrnWI^UA(0oISar7
z=eSSgq*gMNNxf4#tJ`L!SI9Tn6SDVo)X@rZgVF})LwvaiD9K~mSM0}0nc{njQ0C)z
zO8{Zr;}8iyg@Unlr^kgJ%;S59)w7q#?gU|WcEPTp_QNUpy7~Pot3H!7Qy6k%<J0(|
z=uZ$j5W3tbi4dfeCl!(tGYC3Ev?uj+cGINPp&{`UT*CrcAGXo7(t02Cwi5)4KY8>u
zk%x(Er8~*0CMYvKd!+{(PRwE1e<JIHs(Qb9<Tiv^e8`onZj<=*+qH8**ZV*mCMPe(
zT;T1r7uYE5vz$DTIYr;Rcvz1*%SoyInEsiDD}Ka91WxXi5=2+)VWej}C$D>1c-ki@
z_B|<q01tO#Y3tWpy8L&(Cya&XY45x+P7*l`e|IBFOc)bjhFzg>A2npfcKOMa?t^V!
z5iwKwB*gjHZkrr&3^b88`r087+$mM_!~N>WUxuJ7uIp<ehtQ7W^y;pcgji9AK|m<+
z%Fgmri*MQkU*{EYRTGSRxK)#ur^4#%QjYUGKD5a_CUl`cIXo4jP6=L(tW!HY4lGI?
zy_!B(-PEnuC2^sT4ipd&6s2ma)Cw)b>|W*{ETY1<7hk9nOC9);l)$C8mb@#Bl*<{>
zDT!D<uz*$LE=mMZFE9(AY0Wao2lDUEZ*#gg{V0Q9GDHXF39jb6$WHRude0SLSfqA#
z^F~1PN+GXQ)k4>)uwn5;b-mnk0}C5TF~**r#M<ZYmf!8x9hA2kbawtmtWC)`)dbKc
zzJgwmL`J*sM;HSZ9}O1Avknv*`q;2C>~bY|**Fd3boXF?AM4&ux!06LY;I8CcPT``
zZh=&tZBpRipyE09W73(DzF4L9sTeM|jjwHOpP}AoaRBV&K7Uv+20&4)K*dJ6`Nm@e
z0Kdy8ru-dXo0jtBaf<ApVqfgU_bn{SJ;aUgiDkF36VZEZEWREXvB>nSwLs?>4|jXA
zXt~Q~)E#-IgF5cC)IfC@q>0LjoickVQ%2MsEIg!c6&HJkbFV!Vda)U|OLV_&d_Qv0
zK;8${=`qU6_9`I6{&cUnj)Nfh`1j`SCrL5b$#3>5UUk)qLC{Lzno&0{B_EN4<G?p#
z+z3IoL8T@t_gm<nFOHgHMtd37-*-Npp-f27+So8pmq}!d<gDA@C~=2*!;{FAGWw#V
ztb)v1GWQLNmb&`jF%_lH62gx6j)(-En<jPZU>B@exvo3w%a#wuh-<&JD$+#ib7?y7
zPL^A&szmNHLv=OzJt)nsqn!>2*kilj6$sKsa&AwR7!HkI>d!|cD*JUUqar^8|IRH^
zF);%4EJ_&1yv~?U;DC-nX-ua3*<H3S@%82Vn6qS0Xd<bL%9icjxNYwQ_ZSwrwa@~@
zO@^5@SG=rQXMSF0G9B20<8Kx{PPX4^t2-Sv%)eo$sSwN=Fx$~Z&0*%~7_j|l(F1Jw
zgVmw$gL5a`HD^thDhI?$O{d5sLCn?L7j+-qaIfR1Ao93;Cs`$H1}2dIE^@kC%L2qH
z-V-WeJRn)3*n*>&Po(_Wo^dQiM1@U`PyFaH0kO=)=Ts~pHg3=6kXw_cBO?p@Atk0i
z(_Bz;6DV--4wVaKt~)-+y<LL0*lU_*JQy`pj5-!#sXDg#MeR?0uoC@YPJ~k9s>_`m
zDtwAU0IUD4?7QQ0-O)rL=il7@&{mUW?Q9)c<Ks~$&B@<Y)kIe(42fofs&YD-SC9M}
z^{k-Mni`U8kCq9+k@NfHILENAj%!ov2z83&Gh9aRGjGZR>?6WEw?T#;kK3~qjSx~|
zBIi6+LYzk;ViaD;_ef&Cn(CG$ff~D>&vudRA;iKO1C+w0r*ofmN4w&TDDvHXdKcVs
zgnjywxu3PPUF|JnGZuH*Nq9Sx<08<{q8>$SZ7vh8;H%l(3_c8=WW%jgIEY@+9rHY$
zn%tEPsoU)|)p0jML;}Qi_ef0{M+Jiho5^w{^PX$1^y%!k7ba{c$CyjDJi-^nMOLXf
z78n!_ULG!Lt8=zaPDs>h$dx8y8o67$LV+VA_JZ7J#W$@>Q@Gx|EG7m!zQ=?ucKv;p
z)hm|blA$RK(paMPQ4l-2dGjN{69YRkrFMD?oc)kz=j^cn)DRUjbk16kl|Nl=tgU%B
zG_)7Ifn0SjYNm-3biu{NBI2{(3y;XR-Vx(47#{z6^t~ZjkMeh?HEcv)w(3Wm{lMfS
z)Qy)}&)<wTJ^{}5zC0495thI}q4OhTy{C+pmSJDQ^jek4v=?yh*U3MPq2Q}DZLZb@
z2QpfUy5oky_9VBRcU<v_@sWt;3f)HpI!Vzy!op()MP~??6Y+s@HJcFHuORu@EsOJE
zl?tb&)%Mk!Yk$Sf2b7e?%)(aTQ$1ukcTbCLC%*kMs1-cr5z>9~ZBosnbWk>*sj<Yt
zQITH5kr->T#A2$@`SOFlA6UskUaN){TmvgrV^Gtg3G6=Y$?<-k_bW@1P|w`$=XpE7
zQ3k@^h|3>$4U>Eh{bN*wbXBxe6jZE>)XHrpPmp2txVS*HNmCO?#RYbou;a2$_^c}~
z5w7(avE|7lFfecw+}?{L$p9rMo7K({-21|5jDo+z0AYnh=L(P&8%_KFXnX6ZDBE{!
zSRWNsLTMyrkS^&4m67gdDCzDTQstpbx&)*<hi*i=ySux)-b?*`d++tG{jKk>Zx+ji
zFx+$9=Y7Q)$8nsJ^>y|6=S>240uP(t=ZJMCD*ot=oCG^e;^8K5vVM9x=Ljd!tY^A9
zG`rT<RT-9<`f+h@(K0bXNS8cnYD%#}U54{DS5r-0VMHKeWQ>wVz~9e&*Zl6n{Wxad
zbB`3e_^6dC*?BSN*l4+1q8pT|ePy;^V&)W-Io&s8e54rjrz*4*zS_>sRsm?tF+^!n
z_jLR8Ra$Kf*t2OEOe;t7CTBV~eL@LM>aUMb4#-otx=j6p0RdT#D)g5|UKlUj0ViWM
zjK4<ktzMXL8U@5ZII>lrqdT5BF>$HC?Y6`c5t!EvGH4*~NC=PAP?XhBQ$8G8?niKc
z4_g)%IJqESHNXLx0OLI1;Z}6&C$YG~ZZ_@49Ngk0*Ic#T7fA6Bc8;<Lx3>I2?L&L3
z&L{Ss(#ZDq%y+)KTVfu*jT6{vyR-4dTOzu~)mf{?u?PA~xBTu1v2kZ`d-cNQu(}<=
zGVFGH(|EU6Nhgj_rH{f{1$xbwMkHqH4T@F+PV!%_u6VptTl@Qy{b;)+{5OJCk|i2q
z-$DQR@~t1QW3?Aj66^QRBd@8Dqw^Q0+J0J|)%!AVH52=O0dS;^`M<5Jzm=p^_z0)*
z>MR94TeJi$BHT~*_<xj@P4M)8w6Hj}GV^pkT&;}0-;djGxLXMj_YtuNwRq^tHsOG!
zc*wQK&0hCWDJBHq===J+D?+ZHK7A@CRXs4Fsx7Crwzp?;D?pa2L*AAh8Ib<#BH(DK
zV{h;UeSG1dv7aa;sx)?IZH-byWc|X<=x(B}ueH^oIW+^Z&L}P>-PI+@s@?-YQHA0e
z0XuWc-ZAqo8-wlI9*h2tG{trKW%>(0ba*SRa;U9t7X*uUN}ge572dAa0tm^=uulCe
zGZC563P;~jS!!&~S=rwpVlTfA>P2n3S^R|s<)UG1>I7b<_k=5y9R-GTWzN2PYJ6X0
zZRwPc^jPBL33<7h?Franr}Il~>#BZoX`}NE3X0K6cX!JKcq-!xA~HbMwM11?#;X6v
zzyf#Rnxj^TR-Ws5)F{a0w&sS;dEAv45fTzGQEJ4pn8Eaf^rVz}!C_JB?R&TXWi`qm
zO1%2R81?pWV}Fk~LIE=(kCxWIW4ix3%1K+0(2gfty<@_ExpaudEHC%Tu5#Wg%46ut
z%FYTY{#%bOcMeC6F%lw^PLp!>@)z{lU4{q;m)j-Zm<_fXg?3#@;o)-H0cAsB+p8g*
z7e#K1{=JPBEE{MF>yn)KsNmf5r)HvZ+WBQem*mPv!3_UdCT18>eajO_mjs^~9F!}N
zmq}#pHRnj?a|!puWz-yUl5H#!xJgYdn=xm56)YSvm_AI~mmEwAK<b(fnqqQ?>2V4l
zT7*bF7fQC_W;}e|I0Z&%;xH?#l>o4IMS=(?W#?t(U;=t~^!3u7TN7e6bEgWzW8-5C
ziMQ{jqw(fl3>J#NoS~y9vK^Ic&Bn#D0{pe}WunTt`SkAUw!=NSgbXq7<)v%#8R3Z4
z<uF}^#l`ZDKkL}EW`VNN{-^WPqIrr$i5Z}Y<1i8=eI0Y(8gJ06?S9d!z$AFvTuIuV
z7%;kR51eY0eG&{Op2E6xN$Xvu;C<}|HVExad6qVOrE^ufuP-mj^A<$U1KA_V`FBsX
znN;qOblGt6@X!eOc0fcV+7SB^cW!oY@N(eG?3ht^m$<+2WDDKUu)>R-X_^HTzmDPI
zKtB?VGgaTb-S0u%M@>VkF9ffk^13%o%|h+-oU3{Lf?O^uO*pkrkbO;sgO?AVxL=_c
zBkU$T9g#s+h=P-2tVs2;2P`^(7Lp)^rHpSX^VLA-hQcGAEe{65#4{kQto8Sw$=)~5
z7M=!3C-QN4{EUpzc6A*ODFBF5fae#m;}On~#~8f4m<UU28y!`S!N!x0XQ5-Gzd3AY
z)V>5^p|k6CulB_|1wHp`xR}53MMnwrq@(n5RH<P84Hi|uYQs`a!!0s}HkY=#`Ykx!
zV1ktAg6YFs;N!%h?IC-f7lTwl_B?6=L6zou7RLo|qarP!Ol8f|Ym<q+Ix@>U-?<v@
zo?gF0j!6#SKD*4?KO=nWd>N1h0?$Q|6N?d`gaL@m7;o~1eT`M))r2uyd@p6<UYGWn
zz~#a2x!~Q_?28629J{*QTnHrf`kPLgsaanC_mIt%f<|Tb$mf?*pm+lEy{{odm)x55
zgCf+4TNvLcte%HY^qxHr$)O9h$|r*ehAHZ?j2Vxr;Qf@QYv;AM(k+eE^*_PIrH&Rw
zb19hA7oMII(?BXfJtA6o9c4QKeZz^rOt`AOs<L6#ubt^+IXSs_M%sAev5F$oaNK%r
z8s)O<WJcoYVX(f+#=+Kb+_m+h;mUZlJx?2Ud4pWkcs@ecKXbp~<tEUW(y*AQGH;23
z*Koa)kU>XMb03E6*Fj+YU68OJ?;sg|%AGdoyy!O6Zlw*shi@78G?6_5^#?AStMrv$
zD{06fs6;$|ev0CwW-<*oCwcva&Sy3eli$N5>r8fC%v2(!Y2U>NZ{)k&owg^b9qyR*
zW63GOSJj#7)Kt_(ppEwz37)b|7oF$9_^h_=(Yr+GwVIqyk2AG7={+_)zQ_*9s@$LY
zYEx2ay-p=<ypVo_%Xiy_0E*Ec$8NwfgQ@(uxF~p`+;A`wbjf=8kB6ml-}=7i7zfkZ
zd_B|jI)CvyYD}<x-A|kG#t<5VF1wG=Ay*f>FOuC3H)#-AN0&E8Lq|?p@aq8LLW(!}
z3AHip$%K`+8NH#cs3gqJ7qN@H73Ph~zq7ms83rD8TVB^Of){HdRtZ6w2xcRXn<G~U
zPucm8+L-l7wPA4n=8bPw-ZaoK(Z%>RIPW8XMXzqwnWQL>t6A64_Zp5kE`Fux>6Zj0
z@>$N^9&;0g2&c_f8?^hdZ}WI+78dpuT3Qk@j*s^CcDDMrtX5UmnzB0`&OcC<?EWTu
zoBwc1mT7rVaSxgIO=a;xzkr8G)^N}(PMxkYHG<%)Uxz}1w+BkwtuO7;MeO&J>aWjt
z1uvQ!5)(LYaq+QBk8<#&D2IWxDZCC{*?q3T0xOxR%IYV!naQ@t_2w3ET!lkOK>q_S
z#H5CjT8UZv*!-A>)o#$imV^xd^^IA7;{|14Ygc#g)yc9`K52I7oago=o)#(hRl^}x
z=9<3I-sI_eqzQt@jT>IAw%>R>B@~+Pc6K?=MsNy{n~j&br-7@>FO&=1j=WzX){ZZ~
z&V0}B7j$oAC@!8V(<!J7o&VX|9Zx_QLNqtek+rr!Ms8<UI<@b%cH-|#s>yA7a)HQ_
zsXH4|kP$rJ0(BOUk&9eOm)ahOxk~O#o>IkhC$m_r`N=Kk=FxIk-Rvs%$U(sAe0|}i
zbS`+YkznPi&l1;{6mofZ-S58v_C}EOQpoI0;&%$uDw;0cJg=Lfhq$a4s3e0;!)fmR
ztDkrPis$8K0-ctvnAl?Ocycno(_yR)7ErR7G#9{gS{v7HKrp_uV;IkE`?J(%f`0=A
zEa53q%W0C1sTHIY=6#Ulx402uS>K3rXv!@$Fz`<`-{)4oJ8E1Y;iKHnS&2}&J0n+^
zBo(jU<@}_<h@plYc_+k2GH=dIc;cd=bpH)}n1gj)3Y@dh_kB?WJI7o6N{_L@609r>
z_51BaD+);WcZzPmjgC7_PEF~#i-v-tCHtv@0<zG~i`PSfGs5<*XD7I;$2lLJxJ-55
z;`cH3vBc$Dd_}D}^w^gtOvr3AlP+d@`MiQ;%Hw9BglX<tl0FLm6sh1W{yZ5{;@7{<
z$zd-W|E`G&(yMe{=&Am2n;`p_KJBW?+@pz!$=oPffHXP<TE*>cXH0ggWgeVIRq{C}
zTf6kQ3U4sF6IREEjX}|b&wcL1ca2X~Mcv5AY97AITZL?h0Gct^-1L@FX6&|9MSWv^
z$_4V8%n39Ro%YtY=J{4{@4+$YmF6X%Gh)I^SPk-2Ky3lID8BVb*=c>oV+d8`r)6kZ
zRdN(tjiDc(H|CWK;Gbr;>|XGpzZmCdQC`)ZhTW@^SeLnP5fgnUAl$yMNZHvXc5u;L
z=j?~BY;257Ojz6XGGae}B{?>lwQ%VCA?1QcWv{rrT!k8T$HUX&GFuAzT-If*Dtk&k
z9^(!w^yupAo8x)XHp;G;7o~C|-3p=*t6w;zSS8S|Pv1T;?%$L;+1p#1npU~g@Ad(Y
z+H|JDXNy35YZ4#=tGqcypk)rT1dz7fs>>@p7wa+^PQUDg5i+4U*#f!CK#Rf&1v3tg
z&9a^ltuq{Nd*j917p1Y15S9c6DXCz1HTM&EHK*bz&9D(caGU0I<?XQwzw6vrpQ{?+
zOfJUX`EqIOl@A4X?9IBKH`Ey~-Q8YqnVL;|5V09sTZ?w&C{P7HN8zQ7ZeO$wCZ1hx
z-W`~h)|KMy<E${J&8z%o5SOeTS->?UJR=3^k<Z?@CQ(#ZkhssEzdoH$)+T1w_+0}K
z$<&at3l{9wmU$96PK}5NYWnn6BT@Hdm{!)lb#149L!bR}z**yO3?*>zc11aPOje||
zH0?y#nG<?X%N<7KsD3mScuD7N^F6G-(%AheRZ~5^bMGhc{;I-$xx!<MkYEb{^Fg6~
zd$J%U<t~#hP1)%tI17lt*KF6L0@PKZ&1}47yHxGkl%0x0tffYtk0GMEp~0(YzCulr
zw{d5C%ha-L&8aE{_|kic2D(hhuP7th^dmPNmNnduaC$%Hj@^ISvX3{1D>TSE+O^hH
z)fgJ-<Kp31SJ(acX31*UJ6XTnKl9zZuE^>9W9OpQHcgHq45l0(Ha0chR0GY3s;%{{
z3@xf2o<yD`dQ9ZRvhb3y*D%7np(D?n4d36`PR$~+AlC20o3Fe?K&#nPL<=XYEJ<nh
z7mQuTe+&RMKG)JOEFe@Rbrnq`qX<?N&&Munh@Edl36UYTD~GHwOAnm>sd&?ET|<)`
zn$Q9_me<ty58G!$hQ*r5!jzSj0$Ks^RZULI@+|@5>D)Rh0UtFDjZIV2m&BNS3LMx)
z-$m(<t?sY6XX>dI>aHm&rnL*AjKMI3br+u(y4MKfbeZFAa>AW#8TA16z}((r0gUQt
zorhLnWIw>jV%IRJKb5>fg>B&#awdE<?@Nhq%)gJHP*g~%rf9r_1%VF4@+vYfWQy({
zA;X=WyY!{vHaGE@-pFqcICX*;q~6^P)kVk!CO+L<e|=_WW7FH&Ny1|ewRBY0*m?Ek
z9hdD1J`*V^qEka&!+GhVM8fmN2$g_`o|;RQ8g$&i26eUxkI2Uu{uJRktcFohk>9y-
zyy$ie8O0gbVKQRrL!!vYl!2YPrHZtpclE9#1ZWtio5La*^6TrXjwIIh@+>m~I`TUI
zDq@?E@0d`LrH&Y`K2aO5TdwynA=FGz&fC?8VE)F-e6FQgz+c{qDEd|s*E6zqwZ{?S
z0ZBm1Ahs`h8a9D3_*&!za?-;2QqS{Vv=g<{lOv9ZxR$l6%j*QmwqM7G(3PDf7PGyZ
zmGpGhEZrG?e%}|QQcz$B+v=I>V?4~kK_TBDN<Bc+1qImWD98Sy)R@=ENYz!<Mn;A}
zQOUMy29AOUt|fGRUZT1ame$^r#OrzNa|(?<#G*uc;!DKuCYzynx;5>z6*Sp+cjPrV
zz;hcV`zF5fQ&@fu&EAfQh88DWu9T;NUX7k3p_h@4f!m2u`c1fGJRdh3-^~a4@Vq=T
zS?hy2epkyH{i=d1UeR?pw>oLES!833rfKO9rQc=%*!SmL_)xogp(VmRg@o<;kC-n~
zs&;8y3ttbNG39l-Jg2BWqHIQ+`zmf>J|jg!k2~GjnNgGb)0pk0oU{IUw4s{r2R@8d
zLxb8{S19zOX5F`q-R<>_72qdmSF&+p$-&h&mt_QIm9dli?=5=!pTkiwE|DMeaPxZJ
z_o|GMmJ^)*ye74Gw6Totgw%)-&s4VaFlN?d(z4NO(1){ecKeCGe#xkD^I3AN%&a|G
zrQZ(y{#&R1Oqq?>sf~n$or6-8mlt_pFA1BosEu67pz$}+H>gO@9{<A_lh<y`asTQR
zCiLaQGTFlOiTsD?LzOM=+P&1wu$Q)f?!HNr9cmz<W*J?_Jk=+bIgUf!C0y%Fn#Vw%
z>gH{(U?P3Z&;M9AcyK^}U{>~0?UhA~48BA(BcY(p(OH4IhK5F>rUss1RS=`hFAE3+
z&j>GASnoHC)c7sih-MPDX3979WmJf*gTt^fn}r}~yYVtCFpn^%9mMbD?Ccg4=~-GN
z>r1QKE$fG&r2PNdFFS&hC`Cu7_2Wkd1_mf#I0qwnrPX^W0;XBUm-k=BX0Oh6+ZV0n
z!y^WD?=f8S2+x%{!&_PUyWu&F>Sc-gg)zfzr95S*f9`HZ>LGIAduSwmUTB$3k6ec>
zHVXvvt=fCc+9v|D`Pa@U8MSmM*hsg*nS`DOIXQ)AFP^?mZSz5bOqJT)u6}tY2}$*7
zL;CXWHKxBJEe-~AtfVV4az?HLG-%Qu{xGEN&+lG7XE$ZX;O63bDd+B<$WByJjzBQt
zwSRhB=YB&#uvHK^4dA<UN&#ZShUSySdjbC3pDll6`S`c$${}}eZVJ^n*g2hxa*<l;
z>20s=k&xnz&kVWUTris^3PrNoZxr|R^em;OnneYzW$>0WZj0jaBFP0SC)224VKC#X
zcWr0Fxu%Y}<Tz4;jUj*Tx+?IW5OVg6VZMJ_EQofiZ%)?69M(jtou_S`cU`Tk4*o6j
zIcJUUwbK7Z6U<o=kR?lBR_O#{S*<w%oyEmTH8p5tL=?Nx-A^s|E5pnz?%FEpMCR=e
zKQF5$STkB%pL^?eov2ZT5VI4UdLg}7KD;ExRhNh5f9nRlBV3j?FgSdHsNagu)zwry
zLExl@>Ni3273z!+gF{0@mG__hI<mDr?h1FC5Lwcb6BE7hwV#%2w5MwVn$VaDP>GR<
zpwWN=jz-Agb`+UIiQwj>;$&j#*DZ;RiiRbx9XUfs24v@LgT41kgm)5KKJ^?~qeear
zjEWawTGO6tTX_2ln$D@`_7^WaW5LhmsDz8^aFi`e*T<pgEkW$V4JXN`VN~uE3?*r3
z%1Wqx=ayQL|Bj4KfsUS&ozipRM+)Hfm#fmVs42iqw{o!B{j%%o?C<9^g+zh~*bToA
z>Pt#U3y_kEKw$-j)6r5`lrm~Z3-U-_VR2ze5mBAGP6JPQg3m&w2q~rGYEHsdaS<8d
z0`p0lxQIAE$Nd|-pTB61@fdVUCZlk0uFrOcOzui0n^JCF*L$?tjOKm@Z+j}_6;p4b
zvA#ls5+lo?ot{qL&j4H*s<6;C38%74;@)_<*<GQ2l@Mb`<QL48WYq)bAMJesE|B=`
zRr<wZf9h&A|Fb`+;opbtYe;Y>6k6z(QYm|+sgvuFR*u~MNyLdPkb#q+p<jj_Cdq@i
z^bx<?X*n-CRg`vAmUfI5r3YxYU1UnOk?{ic>%e!f*%G99W>+zov-Cm$H-E0--^|Rm
z)5e0;<4fU)oLlX?V5H?FO<sVV^lce6Ww)5-ylJSgAo{h2*0?-XW8%}eZ8UfnTw6}j
z!cbOJV^f?qBGi$*wD-1kHpRj<>4ST^vd@18tR4tAk|x(LF)Q2hVyECBvgGvFoNg1_
zdx$lAdnp;+rC&8@zw81smFQWT1I8oc@QD0TQ(mI+Pb_g$S%lUoo2OIL%+bG$*)|+t
zZ2QCtd93-8j9i-I`D_&)ND1~nSPrFlLjl-ro^Tdy^cbqrlKRaSIKbaSn$=MUT171q
zW9j>(?s!^t#mtEZeZYDeId!ov)~Ag~%-(G$f-hsv7r!eh7&3nPayp-;%b1_jYw*W7
zxNnXKF~i|e?}goJ5jD{{dW3_$E(?BTt|+2)XedbQkyHGTz6VuS5IwHb!+!meku6Ib
z%T_#pN(S{p<7j3-d`ZKPT9z&|YN?H+J8L_uyI8m+l}_WmiR0vNC;BEYe;%ee2R^if
zMFp{MN%>C89l0Y^SYjn3I)51=61MWf`*xT&is)wd1Wm^-V~H80I9WxiM0Gixdv3g@
z8`^kL0G~h;xLr!@Inz&wo~JENe^n$+v2Sn^b<;cL;?#ceg)6f#|2T}ME|;>7-+rGl
zU00E21v96&fL1o+TSBlf8~v>WR*166X=RRiqOhIwEDW-A;7o4VA2T|xyt1Cs`Ebw1
z2;EANjq|Nqe$pc<;S-WLBBuuypvDN0zLp`ci-d{y99rAt%Wu5C|7tiZv_VsP(lxgF
zQIS%J>bKEiOh#z~TOrY+AS*AZVXvI?ZJRkMJCAk4-qibRr#=QoL}vhrz)*{zEJch_
zQfL7U0~sU*O2BWPp5~jCUzk~1+~lG-@@?@{De4X*j3DFa=OK9rNmAG&B#E6}GjR#V
zBrZd?4Szo-%u^zPuE7>WLn<E~Swluj!)|)WUXso&Qrqsd!7SE;JB1#~h|~-@`tr&<
zeC$EN*JYeu&Ga3T9sNO-mZ+%vcrT}XTXomdlQJaSnISHr`8m`<JNzt$^F@?tDeFJ{
zr3)KM+j2*aMe=WX@lk~p?+=q2bj0C$9)@lPV$#!MaJRuGW;>>~y~gUK*I;_RyD#VF
ziiLT-Mbx!qVaA(I4Fya4$xFn+dXV8o!zLr8J~f^!Ha=QeQS2k+vl~BE>7#44Ki7JG
z3QZxu_~*Tn4H?EqG(w${fyLlP1FFP*ewVs;5S_QLyeMTNy7hfIZ(xye7~Ix=r`BIo
zhx9rQww6+7P{cm?+b_6B9EV4s7v1;jzda!qY<3}JH6A)yyYgw-_5|kL<y~v&)>e==
zxj)2WU6LlBeQ;4^<9KX$j{eM_U<Z##^IP0IXp)D{++COvx`m(MVV0F>S*;T%<mdox
zcg$UODMvF4{bp|w3lcq{ZZvFtih6Xi9qsH=DV;{dXXzoKFq<OS$jH=1z-B1m+fAOj
z=icu3hNIo-{(G1`#AN~6@NVYn`b7l0@lM^*PgKAcc<?~eG+a(c_=%8b1o=O)1of|L
zG5674hE1AVhOx7cjnc*&z=EfYS+v?|5tPBO0^?}*vGMYbczRsc_!0?ZBJ=(qpZc3V
zoqzt38BY+=3<m$DnI=nmgDpNc^=r+Myo!}JAu<(5LIjDcc%Hn{%4+1g=AE6{M-NLK
zSU_oY=d9q5((E6lKn6}un-AVIIULxsEJjQ;$!Dqj;k$GiO`l}9c+mQRGw@jskfh?m
zT-Njz7_Q<U-mF(SBROAryIgvkjo20_e}oErk;{1|q8MPPCZyzX#VvC$3pqmD3X8Tb
z%W3$K@r@#Bu6512z}Jpz=9rn+ln&)1CNFM644hdwO9^jXOSX)StNIEv%u3dND9)Xr
zye_3;XXemCBdN*d(>_^*0ov#jwP(&?#XrcVW5DWut4>r&6$|A{tgP>w9yGo`r$aAJ
zz^*Gr(ozFmv0Dfqc?NS!!U~YO#~wHouZ1u!cD&zSCL1=q6cJX!!F>u%6_X$}nf2<F
z?NkT!5xd$Hie9u+#?&$RS6Dnj!3%SuMA+7Lekg-s;0MYG9<G2lLuY#Ov?wsD3+wY^
zQ1ry{j@^H>&`8aH7@J!C#joZgnm>uP_Km*<NyF@n`v-dh3Jf(rvY1iKu#vu;>Kyj8
z5mQB2`OuYWLAbiB;p9YZhk=7dYemPF`Hp5hK`y<11@1>^aJd2WO^E}xxH$!=W^s6i
zoB?XyhUr6J9El7pLlqQ6-r&Fk>)O%is44DRY@_t;@_7Enn*k4Q94Z;62GJ3Z%czR>
zXbA}}lPK|q3tMcuml7k-pF}jT99~)w#z{s`np38h)|sRG;<4*PyK=CM;h*pK#y=RO
zcvdDs6;+hJ$6G5Z-^bjg5JY`v`qlyP0bw*i!!@AjNw7HC%kpd3OL17d=_!mouvO<R
zKA^_<;m1%0$kW9ivn(NnBoQOdRU)1Z!vL>AcKj9KiC9zFIP(=XEkygcASOpNwD)HV
z5>7)5E_&dYytQjrJpPG^UJ1MyHWzO50|$8$*?H9G&(TXl-r2l(%JK@0z*|FE#cX*)
ze|bR^s`2I1%o6g1Mu@}xFFoHx{(AQo$iT&e`$27+So-9qy<VwusG_z4=0HJ=gKOyB
zvisN6{2UQ$sONTDQ*nbzzX^j`KBmO(ZsLr;=$jHdn{%^l8rB3Usne*jnSY!0(QB>z
z>(go-?tku}^h%x9`$!5e|GABAKnk^1KYaYvMj{#$Bd{}<mXTgmf-Lny=o(o%9us>s
zkO?zNKa)-$Foc{wS<TyE1@Z7Fv@>+~Mo;i+$SJxTz~6VZ4j$uem%}I{;D+Pq5Eg=y
zl559vLcz`-!z{5qWr(aGm)nd<EmWIpr_k^9@8(7(6umr5AKa4(wK1^8Nt$zHW#n*d
z_E<u?#06%ZCW4q*N%WZ2j@GVD(wBkwfNjnG!6w$4fCa}Z{a|*fQyi5@J+_VIklR70
z3sf(y_SI*MzxGsU^r6_EOZ{Kc)?JW=nelt3y1us6Johh1JN>pY;ZB}KkMewfzC!l*
z0-Iq*-5+>w{N%Hz?#?fh>9KnkUl{<u_oKIqrYBD&zjm6n=Y}s|S2P5GjePaW9v=+}
zsJD*4gJusKPlak#U#W++tiLK#DV%Kqh^D!x*5fpC_qPTb7n<A8U#HF4Z|E`s2nws8
z0o$EHE)!*7i*5<(RUgc!9dD~_i>?v3iVyG<H_x9nX&&{;h6=*}X)37WhNKp3kG*6D
zXtO^|3qhlSO&$%`i~SIUJ-+^LCeuHX!sLTd2)$S-B*dnba%SUiVz3v9T`G8vFV_~p
zef@d;U%Z;XKm2cA>x2L1?Ea5;LjQ~2`+sqDF7QUpPREcT94G}32g>8<qqnbM#yVvl
z3<o{NY@ZA7dq2P6`OAI6w8b{veuPJY{QHfYJ>w3f5t@@%77M0kAJQJ$-&!G&PXX*P
zpfA}!nY4I_oE-R@xOB3%z11A1*=%_WD=z;r_@L&F)9cF@K+gR`U23WbaH$7^T5=qa
zGNgBShLnLr&YGUtvjkKFg#LbjWHw;=K=US{SyyiBH^T_r+2_I^iUrrSjp2U6)e|KL
zgy`?aNAo!eii(7U#fYy1-2u9sI75$_nTPa;gePmZsxX!%@`K;E{0{F>!p0#}!=Ody
zg=6u1GqAvkzUxL4T7CKuoE-X`wQG{&11M+MFFn|(nMW1&(eQG8_=h$1PBVL%r<XV8
zR6%DH>pck>=0k$VKj=!nWlVm`AKI`i9_P{PYd;et!4P0qd$sf>=+O^457z8gN>WuA
zV6;B&>Jps(&OBDGiIr)CT1V$fCh`Ye1kMIh^ik+ms5hsLI!iWiKwRuyES)66%|kqq
z0$kPRPizEe!T`_JUNy9xicl5kEaFn0=WFdv>ev56%9G4Rf9G@@P;BTmsavcXi4@VN
zONO-EhNt|=txUr9O_X3kD6FX@lCzWmM^%zw!BQJzO!qA_xGnkap;xc|)eiq{6ODCZ
z8ZX5#t$6FAZNXp0Ow3afiu^Z^<5p8oY?0P1ks%OW7Bx(Db;cN{`fJ1lA8vw(8)RtP
z0nk1Xujq)iVj>L<#1WXg4<5uc;s$WjwBpwxf!TO|_7cZ{sgY2eb87fsR~pyL#rlVk
zrQ;`#A=2Z?mKtBWS0}l74j<z?{t1NsxS_FfKgW@(ZzC|v-dhSkBem-1521P~ZoV4}
ze9r9$KLLR2@bQN-s=rfR$FB=*@RHl1s=m=nozzu@(#s~bBB=8d2qxd8>Xm0q9%Z7V
z=wwAL6W16qt4WqXUGl`SB+`-U$IO4a`2M}dzn_;~HfMH=CYGqerH`Lt+g0VUF8dpY
z$z*%eYp+vb4Wjlp=}0GSi<gd2F5`In?M;35>eWH0nHMMr((SDMrlLt1fu>4)Nm^O8
zrthAs6pas;U)yvL5aOdsX8$Ew0{^-&uv6N;HQM)ve7=kC{F`U`X}gAZ{%#I2&Xc5n
z4!0L?wWWEd;bg>XPsxQt4i8TaO1Pq;R+-yFvK4dHPien@|GuBV29)c8&iCfobOr~<
zuwhRwJ(HlvPDgnNF_*JyrDcks`#oA=aYD<YZ4vvvu(7JDy**oK`}k&AXD7|1S{!s`
zcbC<A;PsbxKSoUfL?kLQ(q54=v}Kh5O?Cg}A8UZAFq1AGEN{huC1=GOBi^eWZQ{&V
z>>Ee#Hr6|$zqGQsM?wP93S@x>8-8*iLcUyW-?y6N=kQ(LTHD*$_#W>jms6v$4ltxO
zHP!P!-#p<7D6As3tSl+nocDZp)EZa~uWo+-{`UI3C^sJv$;pL-L?tA;`};%v{P0=K
zRpB4KJB@dWRsSEt;J;$RR_Mu{n8g#&6Hu4(eMf%*B!D=#Ko$@Mn?)ePL8z4lA5~kh
zF;L9EdQz>LdooL!2;pQ6vL#jJQAQ<d?#QU-*K&|3Vd!bGYO&AmZfmu0lMY9Me|AcW
zR+=&=8yhBYPeIdYF+4{7^enolfPk*&9Dxj&0hZaSe`g4wgKcOq@vbL1GQyuv27Jyo
zOq2e(Mv_Z27B7W0dlL}Z8|<=M6HX7w9m^&`+wrJrfT$_UjPpx*38&fEI#%4p#v~jc
zUhk`>A>#(JJ8u*(SnB*E02)qgZG;K+N=ZR~t)sL_#cu5GlD~Wo#?>IezPjZ7>v4%F
zpZSQf6{)t@du>Hk=dEAN5uN%B9Gq0Vv^DFOb|qtsgn;HYWa4n@;9xOo?chYpY+Du)
z7%0!!-__$68fc*{20l+`2%Ezf;dG9k*1WN}IqJFa8c1Zt<<qe8-!6GWAzQPR$$^1p
z($Z%GI^?zp#FB3RLXEy1H?gG(HMWU~iI5L^L4N+xfwhc;1ZW-wWMslDXPakdg|dce
zv5yF8asS!~=qm8&bT6J3JIrZBBPw$@B!#@YK3$Z&4er)gG6Bh4eXzFNxXbp9@vI=U
z^5t%EF*DPBqie!<Z60SQIZaIq8KHb*o(rFHf~C~k1Db_=Kc4R3*zI(XCV+xsQ1vmc
z-1fI<8c2#UNaxg6SRv+cva-@a9-A8l_poXP)S42xUo8XGE|aa33WYa`p`7?9K;rTZ
zqy&nIfrCTpG-ho=DIt(7=(&gqm*|d0+wN;`e?h=UpX!QTzOBb%vW3d&6q@Gy0&KQM
zcrj{r>*M2N7L#QH{QM3Z2VwlKry!OU-66$iGyj$SeJ4M4>4Qcj^jE{$HwvG`0tVl1
zL`lh_HQcenahD3Myrg`0tU%q+aICy$qFBwmjNz}5{s~DKZ0Wmv*k}!5QSX2nLbfO!
zoO!CKVme_8-&5FMNhsMqj4<e5#R}`v|1^L`ZyOdBc6R(?9(!dK>KN*>QgR<m#2VuF
z9(q|_oiKi@C9jw+Pdh9hZeea=zPsbs(b~%oP%W96JWQNfxuxO#>zimiOr+W(R9WP{
zFF3mOfuI`D_CtQ+dvNKtO>^Sn?xtZLx{>rDrFj1Hdx9t)FzdRVrX|-3cc;-wr;22$
z#RH#jZ=1Qh-A*k9gQ6Z-(w38DS~;@+omH><P}tGi)z{q};um0wB3@xJY0r2jDW!zN
z*d^_J?d%G7C7o%s+E1EAKHEP&Iy*Z&%#hg54I*MLRil)Uk*GDA@&ev>ei8Bb@AKlp
zgPYoXPD&)NFMfmUzS(cOO~-MKgr~XD9FD>X?d2+@{iWF5DCrcpzD+0|!{<IiV6U((
zx>w!96P>YE^AvN3sr00igZu;bxc3_T!S-3LriO}Zcl2u$OoKG#5>+CzukWB46s?2&
zt~o&ZJ$Pia_jG470=lxbBo0Nv6&z5`1PzNzN-VCKSATi~wZdS0evT^j%4Odd<-uBH
z5HD#`d~81WmVKg@5eoqYrpfe58V3hQMMXspP3KWG?l!<UsTkpnx4vLZ>t+>?Wel$S
zMz_Ln!FR)uqiD)TKuDP2mz`76Y0M)21``4{9liD-1G@=Oma#M&b^W58wq|YqMn0kK
zibsRwk2wyQfW!e1x{`C4<mM_f#KL$bxt5GF3{E0evidH?qi1^_ytL1!&bVbYu^}a%
z156N6Q>P!f7d#S<cIUA??rR}}_t|*`6saRCf#6)RvA6Hb$bS}*sjM7HI&n>o;qCKL
zGHHxwB^_)!d=T5Fg=W(z)BPmP-@y8jfr(FV3C3<N64|Rk=FS{f#A=|r)>So>B|gZ;
zs4pm)D<`LfjQ^IY{?S*Vmef?&!rM*X%uHd(Z*<{QlBtQMfbB+85BG5%E!~iUf?sw?
z$``*1a}7^;)vpY6Hp7Tlq&{bolvshIKuG`;Ud=gpd3b7m6u%x2{MM^GK00m#uPf1O
zpPZUX5^xXbUq8I$i-HvloAT0E1hOjzN>YYRiN5)dFZ=oKR8SO4&MqR~42h^0DRIj9
z`{t{a4y*&Uoi}O>5zVSQgpS!Y>9>~NUD2?Dsc}yFlAO%RAGLiyw@uAd>CZMwmP3hn
zvK6TzHBReCRT&f?p}!W3;d~?sEfpo@0CeT&;0fx9I^@D@>uUf>!d}_2WoBA1-7PL|
z58J(X79rjCec`YQungJpQ9aFJ^LHAXn>mG+h4AWXT*PHShW>AM7PUSd?COO0lbI1!
zgr*0RL_lB&F*ny<!!y(Jnzw>XRCH#2H{SJEC%uv~c8)fQJbGi^{~pK6mkEI$IW3>l
zDhfHs$jE4Eb6pi9wTfgUC9?~14o{DrY;7T_a%sZqPJyAJ{e4|K#S@HUvJRt4NdgV>
zgoGNbe`eCV`!6I!4(v*r70B&{U0+kANy=eL;rWi?wc6F<cOq~t;6805S`zt&VFd9f
zQ?fZiE)p$qSK>8cf=5=Wm5xIrn}Bx_+p0^89pH6+t{fSKF<8>#+a?o#({s#Z<}ekj
zC$gWw73W7w*Og#U`s3S6^qA$9m7lA2p+pnOabbmn+4mE5HcKlxbjku^zZW6kELSgS
z0PA$5c&Ut&@sg8Mb2&FJT^Ar{W@N%dB+JC48jQ`%I31>X1UamznV4o9oyG?+(u9Lw
z8L_<@4v*+>Z(n2`I7~2OdwIy~M$1ah&q|)i^wOA}pa%QRElk6Hw$+h_ojnR5DV8X)
z14d0L3jfLwT&O&SLPYTJAi1~ahSB=YzUVcp-ediw6L%tJ-@_&pu^1gXA~|7|sCH-h
z!?{9l9OI7Kq%ycIuFC`mOpYC9?-3K`4?~L-HEo>QzfFmbiboCVm)#M)#O4EI1vos(
ztYM77?2_e2|9E*^?QK^)a{i~G)p$_b2`{`G`N-KET_r;i_()(=%9C@dU&OShqsm&G
zo|qgiARQP?A2+drm*`OePVU_}?+i3XIiLh^_2x!rg;Kt?CkL0rGE_PLd87-{R49^d
zpPR{lVVZ!Rm~mLX1rb3N+DG9vZM3vwyd|&w888gG2tU$GbNUlwB<AL+s)RdaXa3^Z
z6#n+>3?|_^G=Hx)=d1)s9Jp`^3H2JC+2BrH9xg5z)zr&p-noq=8N<d_5D<ALN;}<d
zB4Ol2K2Il19NsRkbmQ_LG_E4vY->D28@e)Ru6jvo#uEPq)5N;+sRs9-(OIuQ@f8lB
zkWXul#r9mA7w7czGgw}6??xF#;!@*^L2gtuQDSskbW46o7FgfJd7>c{g`(Y|!y++y
z#8Un<iAog%U+IUr!1O_k2fbvua;&;LirFZ{3L}t0uWcT07IFTAObE_5*DzZ<Vv1AP
zdQa)4)sOYuYBcMoc?nxLK~e07Rpn<-_oAbskM`Lkr8B;{UR_KANx93L%(kn9zUO~K
z4oiB4PbEU+HLlke7=zWrQ~=#|*ZO(60##1#1Z@DRN~0vKU7zvbSrp+3Cc26q8zx3_
zt1=-P5w4vpJZUeNSH?r9;7!Uw^muUh>eS?99=oZxMu^#=U<eboSbC-5m85swN7w0}
z`JM)T&u<-mh|3x~+b7=v;il|i1;*dHOSgZF)ns9?zkolPh8N288W6|&fl$(I;3m>+
zrkL=hcex5O5h(wRFG;F2$eOTG2O~kki@6~jS;BdH#V_AWkM6#@{!vs=(CqE3GLWkT
zh<Eg1EO9-arAztpWaDP+nl(B2my>bg)php+7;ayR`#(1W)gvjiQ=s#oVa!YrTowIy
zK8^kR)I3BKf)fZumj<wQ5>TbvSe8l3&M7R*B)m7AwG>JDE=*BWtn8%J_8z*sjOso3
zqpB?zw=NY{q2VQgY)?@BJ}YWs!WMp$z@<?%+?9~PfNQ5>L5k#MlY@nvR#SR2P`F!<
zjB0y)Vtaf5zJ8wm)eWgsQi7WdRjU>#4@X<xsLyh4fbQ*dV)QIkqP@D!QbgT~rf;5o
ztdec&GUur5h>w-Tjp<%Ja5iU*>D6`O*~}L!8h-^u9GgFJINbK3?6RT<3p=d+!k{uz
zp;F;=6`}Hn{=|FEO~hFEpXw_GDpI|0fif+2sn1pXR&LuBY`eFkG0AdZ7ljMt0$b+v
zBmA<CE5_lx1iKWT+EJ8Git@jxjQx_|v>tq*`N}S~3>K^$=)vz9VFN14no{nw88)i1
zR)59UEDwoA+XZiG!SieQ+!By6^bC>bJvmwhnAlCZCA)edjULml*Z-LOv-)?78>dvX
znnxg6a^uR}KJSV4cVgZgyMDWW3c{d^fWJSe+GZa7E86y_Ui0VA!9V|Nw&%ZvS^mE?
zT>k%kr*-A0`LQ9X|6-=b+_)>n|Iftsu9}~-21!D<j$M^G2dLRNlp-ee+3<se)0(r#
zw@-MG;$Qr=6NpPs{@+s+K2P@1Ut%!F(fb!L#B|rr-Kv?B1on~(U~Hc9e6&MMntxyg
zRW9&)30&|WJF8h}wzbuI?2B5sjOyWvL6yiCZeK)ATlD8vRB0JwjMg{O70W=;!8L1;
z9yi_V&tF<ofiQ%T#2TOC#w>&I5z)++L;ODmcIy<zUNeuYN6o##jI0m(ovJY3Om=*r
zBW|&?@@v3k<Xp6@+0d@e&7Hr_?TtKPgKP)r@Wt@wkv1^^*O$#SN}jQZny!GFhB+Sf
zB-x+aQlcs4*sjJUEmW3gl>D{C9QK=%gk2mW1r^+R)nPc<PMNI+|2aKnAWgKWm6D0B
z|HzN=c&W9*M9YJVuLFL2ckju}(FtSz2J|zwMCiVHdUWL_4(CUEla-!2T9%H&xmsD*
zO!}bcuwY$jb)WWcui6q}+o!j-I8yDV5(R`RkA-igniegYJ~Y`B0XhpNVXaxPB+yYt
zMH<#;yK`XmYFWfby^_BAo#nVwAkMaoYAQacXr~RP<==%clKnAQ6|37nUQ;A^`UZ~W
zpIh{)Oz-tLbA(_LLgm6ZuPdrIKk(@2>9IPr<%ch&0>6C&UCOmHXm1j5kNRg@6!M0#
z@o-w(6P5B5t4ghK&|{_-^Ha?^%nrWk2+Ym>`UG0Sw0`GG88!B!&J_vm=-4Ad7XkA7
zLELKE+T(I@eCRP|Z1_)EE&mMV!A#P0gy&&sR}ZfpK|!a!<_@AVF_7@y))s@h;uNbK
zUFag^+?e^=kP_u-;Ktt8+8n|ud3uDwb7iCC5fYk7qru69jhAn*ENv8XduTK+p05bB
zPrW#{dv(dQL22T92q7yUWN3K!_#lk@`fN8!JbjQq)xTr1HN&W13oks}(fl5f@ln9}
zV1bYUck^$c(=_W5VN3N7x<DX>ehErsuZXGm>=Rvqz|pf2XO($>%R3IDy>>Yv1$_t7
zk7yR%yoK7%`uf5!P=I}gj$TiE>SW^pSWgy$!uFwCgNXCH`r1$ufp1Z9ARm+h{4*XN
zAWwSQlp$GZuBy^52Gx?@JKOaH%43}b3Hf2KFxb2GJuRo>6B9>=hIHR<Y)-++e21S1
zQEv(+`QrRB+Cub8iHwocXnzaVUUJzcT~_?E5he{Qj=+iUE$ju`jWq|4%VF%vt-3Fl
z5i=;H_M|uPxmMk%8=o#Gr}N@UrwN1|uQoMmXi!g=WR@d8@738hRoK+i$NxkOzKLMJ
zZ8$TE=)`_CO3sq&>*b|qA$59bX9K)KC>wk#sO!j<P<`4`XAvmmvabTk0WRD?hx;L4
z3yWQl2&=DiFJ&2CUe*<=@y5Yj!CP6aNX&lC<aD2;DW0)31SfZap4(d6=N9Bte{*gq
zex2+GL=fA8lZ%bU`v8V5zBg0wegdTJe1i#gcbCoHZUE4!Od=QHN*=(C>lv$w&sPVH
z*`Xs@GTPdL+G&Fz<sl7qsn;qRM@D+$?c*bsF*KYdJ!@QI&q<ZG$e#)Tp*FpLY}VAs
z2%+V<>&fvn`_Z+#+sxcHN~KNK9nNV<+bd?8tAu|dh?}|DV+gTbdxm%IO<KUfFQ?Kl
zBKT9E*)z<OIivcnt=0<4J~BQ&I%b%Wb$M|W@GD$mmT`tk3Mj?Um>l~6w?2xV!)!Y`
zm@*>ARq+HUk_?42Sx(oLG!$B{?Z5#(9}3h(c%3h-5tDVU*A=NZb&KS}0L&IIxfVec
z0wlA$x&pvAtLy6+VE_)N1bWhrcJzocG0>2u`gQDq5Qc`Hdg88qZ7P1tgmwMm$zx26
zm~K0J+av)yM@<VUQ(Kmp?nJ~VjL`1ca`)-D2xcJC9+4^C?z?D<*}O&XvV3>}G)7*b
z3M9+yx)=cgJ|wSZyr-6h6SWwjOa~`tt)Lh2@7Mhkt%f^d>8uHyf6$QzHTGY=_!8?^
z2cUh6t6xYya2UDUC?nph<j7ev_Qoyj3C@k~`xuf@KyU+b2ymmr!i1qup1^@NHa*|Z
ztH`{B1o<3M2`S6$B3{?EG9bxr$_~Yz&2thKHr09mUP3~`O(XvU*^7F6Q9Fg<oY-Y0
zr6?+CqG3}ut+_d9bn4H45~ZoEOlWB7jq{6)N>uqkuM1`EJn_N$E07dS7Q|Br4hrp>
zGh9t9l!SjeDVX1NYsFvh63(q9&=4XmErL#J9^DCq7$f?Ufl#N3XDxanm+RR{vU(+L
zWI%)ab)`j5U)M~%nUSI4TGPWv6Xxi%gpa1du~55G^Y)K9tT_SrU8}+4eoT_6^7h4)
zdY3I?C3w(Lnx($*ogBwh>$R#y9Q*YrP1xfRb7pn=U$0r_KVdz7jCA<qAAjgn<^2Q5
z(xEfRY)~W#ia>EzGyb`&YHsmSQc*tL9B(Ww{b~FbWJ>W=RKVB$=kD%_r%yg?d-+_A
z-I3!Ws!K}bCKy9Z0OW6LYfD4pd(o*DPi>W<VS2emPEO7<v&w&s3_g0Fe#r}@!(dRo
zc{i;9a&K*I%6SFNBB@v{zM<bb<K-0;7;q)rEi~WBzQ*_n73Sfs{m$hP<Od+$vHUJi
z|NX~%=G{3|V9Ph}?_qqWz)9l`=N>s-TPW7pf`tEH2tXx*RkqO2{88SLy7UKVx8>An
z%2}C&B*{aGeq81i_4SW1I#(Gg93A@@86C>YVZlDFhNoMzGPnbZ3QF*+6)`iP5m{}}
zu?z=1hYSODE?mUq)r8w-vr^H|p*yP;oYmFY4?@d*NfrtALiAxhah0!W$jBJj)y77Q
z_ZJ2#5MEwF?zgKpoEBNe#^!JF(abz<`grz{Kn@nc<>G}-iUgv}k|`<SX<@4YUvH7I
z(a}wN9&OJ?fJTJK=PAz3&4Fkgbo3=lN#RM9CR5SK`yH28oS|32{ygx7#+J6eq?(mC
zX(DFgS@6fg6FfZDmpL(O<M^992JNfcJ(*}3lM1tsCM4J5Q%_tH*Mw2<o_gQieepfp
zmy(c5kszifQNPp&0N0wSG|-%eJe8G74+e|h-rCAvR`8>yV@;E3yaO{G>=|S!I(qFg
zAOP3=sHR3mWol`9baZ%nc4%R0ESno?B-85b0`E<#T)3&O%H0yjGm4qJy+Ww&<OkV9
zx+G-?x$KRVJ{p*qh>02-zxy<B$6s5>h{#WeW{rj<zunaDc}5b-t23nN)qK#Nd3y0y
z^%a^A`lApOF)>J(@y^AeeoC8<&qWm%gqD%f(cXS*xJb~qSD7}FnJPpZrk&xXTdOK$
zv-hQ$>+edy(?LvXI^slWMm-Tq<f9!4K%gn<$X|!`&0XgON{>VpJq-#cJmDZB3GA%$
z2RQx@EkAqp`+7S~1nJ&8DjOQBUUV+Ehhr|e-`*gj5~Rv@B_?X-($YDaUkl}pwzVg&
z9yx;z3-9S;Aarx^<u);k5R{V{9fu+}?bevM@bK_luhO-O?(MoWfzAplA+tOr3RBMD
zV{204bTB13Mq+5_@&Q*`TM*7u@8{K^9gYwvuBgQ1{BIeKW~!9nPUF{GpM)_%5Pi~t
z!I1!D_0VF5o(Hyuf3p@~X8zK>yjeEYNcW#ax@8Rdy|TN}+d3iS*`p8J>o3gj^+0L{
zLaWl9W|8<}EK-%T@M+Lh;cIqLbF;G8qH?zU;kBxS!j|xi7g5+aNdm8gfG*3*V*8!b
z%0hF`$w&nrW3*q?^HxE(49pzGyitOatGr}Pe+t^w`IvsJ0|sFfq%2U0Tb>W`kYXsM
zte1A}4kYHanW{K#9BO>qnQhP)ZUBvRBYQah7q5G>4fK{N{uZ$JZd{)J_NhF>q=J>*
zi!-5Ji;fW*4K}?h9DpAD!;{b7tKKWkK}|MH_LnZpJprfc9UNpEo>$kkfX7xy^*gm7
z9B996>Qa9e{ep^_0Id>$nEt#z-+!HEfqGLY#O**W1lKwUk$Gzb=L?*wVHmF~E;HUP
z^PpT(IdH+3Cemq!l?AT9OXuMnc;jJWfvno0$2>dz8>{F^9v)^ZxizB-Ram@%vC7{I
z1E2QRSxIWk@uBZe;|sq1RN!XM^R8$J{TIk?$LjZ`v+0@c52vln&CQ+Nv=oHW9KNFd
zs5K$ONfRfF5w)-sGokgKG5^K>_oBZ6bf5os0NvU)%?hc?F958SWN?nzSB8~$0dXS=
zAP90PgG5JzV_UE6b@m@M?#D!&|K_kiW$iBN<MN|U*{sn;ku#-H2z<iy`G1YASz&)@
z0>3M`GmmwIy(v3-f7Ztx#r+3(r3%Dyan-OQI+tv#iAX|wS7GZR8D@n~%s}N<xL(@o
zZ7eg}v%l7UX?^nu713(r`c>@LFnoHujyU)%ys=0;;;YJ76P=lEPI2zj0VQT%vAj`Z
z=Ar+@p&RH(M9TD0(y^KhJ%z$Te~<MCO}i~ntiNXYTc>CI+^WyRGcn)EIyF7z<BQ}_
z9}T*{Y>^D2sr(L@n}}cIR^K0gfPOF%Xk4EEH%_ubb>}@`-jn+>)RadxZnCsOoNyzi
z;oi?ckUZlB{m`7Nk~DL^&ZO>nZ@NF0ob0ya!4c?y+*f;b3ba=*dP%}k#z-&Sl0JL3
zn61{`ZYfZmSy<N~1|`?ETnsO_#*^9{e%EE+RqnhHMG^8cs+`Bf=3<AK`^#>y=nv51
z2A<12f3eL`<kU~KyZe>bO_|zyYj|4>@_d_Pe6spl(362EB)0jJHqWV4^knV&GNi<8
z9fuOc>eeq@99M+^*NK}j=H#-nQCU&>w_`aO&h4~N=Za1Qdg?U%$R4>`jv=i-?9IwM
zaQtnjCLG$lzUu08v&Pnz0&Rm)?(&+mg)kAROwTe=?=(HA=~aC0)&=h|%;n6vr>zZd
zpJp~VBIutcPi=ceRf)ixS(yg%RJ&)Lz#O?UMSFsGHJ6Ub=Ld(wzM;vP-Q>#Yw%*UJ
z0Qd?B#ivwf`1zTq3osnX1FggvRr7{??&RL3^ZoOo$toqFrNbrsFH=P&N_gk<A=dFY
z$*Z}+`#|1%0SpI}_~v!q^z?g4=%8FEE)J<l7@oSs-ry~UI$?5(*E}sFzm^=v_AWm?
z`!3$Lf)H{evFjf3R=#$pn|Es0xKo+zhN5h7QK3M+$hm=AgT?#7l+>k1Dk@@WCL7b&
zuaJE$>!Eb0!l#>vBA};1zBRrMS69EEnpzn-0rDWMUa^ZhC^H(@8z&5xPp)&#F!QsH
zkBOJJS>rnwu(5Z|@*X7{5x(+htQP{+WHIG4!|K#JceLHzS_hOQG7Q&|(X0%k8%s75
z|Bi7Z`_K1}!v_5QRsy=}zRvcAgwdD?s=YWoukF_#i-{%?X#&dm6p30)QKCEM7W%ym
zpna;s8voSYq>k6MG(Io=8|oj$RXeJZJI!fXzjOzw_8T<h<Zk=g=V9lsI88S|d#5pr
zDfpR2xFW5G^<s|}KZKj;taYU4cb5ZWb4Y3ysrJ_5+R@;;;O%}`D`Ovece0E7<<JxU
zv=(iTV=N;oU(kbWpl?i=9{2X-v^F@nv~uo#3$*GQ+&bxRJo_?fUV;AU@?=&8h8>`y
z>~5P_w7nHy8SJfgxe-3cPhM?a5gc5Wovx9gEO`0T6!QG&JdW2+K6Ecds+ZxJe@>&t
zj3rxKew34)&5cg)8fef2I*Y2vDqgiP5gs$0@;^g+_Wggh5o^Qwy;iKdm6Y15YtPD&
zi1zkw^Jx1q0MkOZgb;)IRlY!d5<Lxnbo>>f^4t&nhtK`Yp`j_PzjE9(L1XsHx>{El
zDS_S)Z=J+sv#|mvA)#`1Sg*-Dl2pIct)xSW+B&tdXK!%Q4_RP-ZnnVF?Poh*lGOa1
z4BQp1Hui`=qH}NfI_JvAKB{zUi`GEDaDR9^=jLZU!x5$#*_Ve{OqBPZ-qO0BUL?n~
ze=7}8&`CM|_rp4CiPbZ2>3SD|!a)uWPQ03$GxURG>%}EbmwE`FTZ!z3Boq}1A+w*g
zwKXh1JPv*jmbi(T@rM}7iw&IH#*?7=1bz7IS0mwbXSTziF_<MrpPGJM9FsD~%`6Jd
zSAV-HfN4(iyFE)b${S_JV!m-}{|*+4j^FbKGZ`U?LCeQgf}Xc~w<v~H)jV`jv>EcF
z(HM1iKbI{T8I6`OXJ@}Bdmb%<{z|k_wB;~XUE})-F)^wj;<fGFxTL7|b(?wD<w>#g
zU|MQMI$9c1UegW{t43<vK);UJ(P|O>4cELRLY89A<bEm$9$x#q|3lbYK*iB?U86$;
z5(p67Avghoy9Nm^3GNWw-EBw+0YdQL79hC0TX1)m!QEjPY?#}5p1j}t{rCQB-Cn&|
zFm!iKRoAIHb!wlzMJX^+>^PFt<hZf4hw$T60G8Am0Y57*byrw9pjfA)%x)}$7>f!x
zO#OVI%v)Lt2zn%Bc-c;!ej<qBjG3$q?Ssr7v}Xcap<8=b<NE|Y($eY5a@<6UXxj>2
zXL~cnz01@5j8um$>Z1V7R%2t&?(xTy)*I%GQGoZ(Arf=N+uspkV1}peo%T>e@UXLK
z85#B`zhiZ#(2`fKd%48$-E_m%=(p~4sldkK`yVSmnHiP_*Fq%4cY1o5eVU9!MrTZ?
zW@hu|=aFS{M4aC>^cOn_zR$K(V=PiHv@WULqqA1maFWX`wzM4jQG+`>lfzYq%iVvT
zOzdK3>nm6sqoeA;K{Az$99P(*BX0IiFP2#|Gru@LqOJl;OQk&8QD9|L)0j)AZSQpU
z(WA~Es3<$1phZe?!~2|4c}4wB^NV7v7b$Q0h8Ht=83qQF8P%t+t|;x?T%00GOIoy4
zQ+~}3PICHtI6m7b4^k=cFfoZxQGcWP14zuh@ZzD1Z7rl5@ALy<@$-LWikr4}6aKd=
z%-pxu<mUR%$IQc66DvGdsyTOJMDEN>#4~BKwg&O1W_XJ|x6yOthS$pL9<HY0XcmWp
zuIru(wvl~fl#hJ?S+J>&5gsb$>-(Uoc>EhbldnN;Xt&#WZh-g;WfuSBiEgXy+Gz(I
z&{h$XRG_PB%{=So6|uIBsVRGFAa*v%+U8?)x3JLoHP6t0w$W)Py>mkvGflwh@{hO<
zm(~5Vz>fNp_d{;2`8Lz3ogZNbICw5}5815#R8$u9J|qR3r=gsH?%|bMf!cW=P8mLa
z0@iqwgOH&0b-SCcd%UI^4nTjjQUmLYKe`Lug{zN350<IhM+G?r!Q-g~*cH2zWwVE(
zq!N;`J(0fKXE_3C<g<SQOzm%esi~8M6O$A~&KuK&X#+17Q7pN>woAxkJ~cbl81qd2
zm1ChpUv(XtIa?w$JW0+hJk}&}<!7nGP-{?)O2K|H=F|XjTw`rb;XX0B=EBD~wf#mW
zx%c^nx?w6ab8^jILV{FbN|2@7;;i4JPNZ0}wCVg_i}^JOw<?WAaY>beIz6WbGTd*@
z1zk;V1S+CEYZwLqkhG~rfi(@bazhqZ^`dP>UwHre+}w3PUYw+whCd^tvDL>jF^95`
z9w)1~z=Z!+(zHSgXnLp1uK5Re*3NJ$m+gB)O^e>%bpOtdk(uuP=nz2IC)7<jTxn<j
zaC3X#myze=mI(}#Y|dk6B|8x13Wx#s8XJe^>&k$z&<|&s_}Vi<B#nWLfiK9qf7l?l
zU?rNrNM>UU)so|*CyS)N)FlX}bfcm_7sAJ3vaxSSHxVrGa#Ku`%64-uw_qb=rkh+@
z(V&Y}J&=k0k9JrjpdDtj1&D57rF~PZ7O786o-gyjbWny39o~<<1lLIUtoF$ssG>xq
z`W|LJtp_A!Kp^{uZv!sJ_HbtN4ZLOE5Sb#o!V-DmjO&DoA-z&AHY2LA?t<cPsth*1
zS(=v6^YwM=Sw@I0k0W16SZ(FJxD9J)+ugeb*PDv@%R2S_;wJ#W`qKMpShodx!;C$h
zP%E(2BPmI2hZAX2^i%FYyqvT&F{E06D8oWNA$Vx6W>k<1_`_k*zZN4rSJoj4?P)|H
za%<^qKPSiRfhz|<oyS6h+}S}nG}CipJOKNmt_E6Vp~VlQ>J(pE)^qiS7jW)qioi6q
z-?_;|wS`q>Yf&}+NGK{stgo{k&$-OmaxkgyUw8fJJAEmro01uLo6o&ae~l(dgB1!u
zGz#V$!FG1=2;pGP%8LahO<jm5+-<R9hYd?Hh0lB98cVX;1rmMW_hGh_AL~fexza-I
zdIr*V>jJMEiNIKdkyaivV}&hH#H8t#1ENOBjmV9p-<S%x4gaAMr=mhK{5iY#27fRI
zK``v?3i;FC_2`9#>&tp~^$oD1X2#X1!NFhHtQCD}zz~@r_SnGWrD|CMC*ceFybwC=
zRwa59mnT>59mB)3r02zI8nUzoLg{2!UfwTmgKLh;<$#?#hA)qLZFb0d%(Xw&!5nR(
z0OH8zR`#%veUd6Tyhj^$1|{k=t_;b~$&qAsuBkbrr^+1b@1RtmYq}5fFj0*N)&*ne
z0y$|cEkovkQj0Ii8_OFS_>Px+@=PGb#oufe8=BW$NAslz8BN~cbN<0GFO?t#zrWs+
zF0<Ide>j=v4ehf8=v{ccd>SjXiYw0<bL8{^Ir5`Xl49P|$G1|tL-7l@$W#LOID)Q5
z834t~_iwxI%yddclQ<vT4LSfZEu}PJ3ZDlmEU)^e>l;sPY2Rw)T)|(ndpDokx;8B~
zSf^&VzZ3Cy0St`W1ZF$<20LN<zqSDw3153c2!{*m{yy<2t)7C?U?q86obFhiCJd_U
zUekvsi97SAZ)Jpz_ryUdIo6Qtr-Q4hmW;Os3)Z`Tw9oM5m{I<$WgNq-+!S@vzIPZ|
zaiMDpnXwhJ=042j&Eg;jCim7Uj_O%Za$<4wY|GF9Lb1^y#3U}=#vWDOuEU1X=mVdB
zw@?TB<-gb9<}tUjx7LVgD^by&@9zsixrg`Y5`Y^Pf;LZlU^;tS{9lIGH8ttgG`g`r
zh;<zA=1WV3Uk}+%)b+`m4F^e@a#>@u`r<8{G<5vjc9z^rYAc#@Gmh4^X&+D2S95ml
zTdjM6j2GDPP5J&yNMYgV-R<`m2Rxb#t{lm(1gfod7*?-YMR9QXYKjkOJ|<~_>V2lC
zrhzx~<?EAH=zuDqRr=_0b9PfO9&Un$`YiT%s|5Rnxsvb27Cm4omk|-9!p38O9c;v^
zgzWmNd=oFw;j>_j?H6+An9*4PG}LZ5=|y2(684K%i3+(lRR9CaI&GwohcNeR=GS4z
z<X5+7kvrQ2fc9(vK#z9;h$T{ZIf`H%EiG!p!pEsmUdLHmqYvWc8RL|yUjXh9pkhjs
z6*KW|f4?!;-NfLEB4TeguQ#~JaH;AfF|4Zdo?lgNfU%e}z}5JqV*~Cj-2&f_1qLpv
ztmhkFbxX<C|JYKyC>8<2;Ep0(3YtkBY0#K4`i&osoxn7Guw^G`YHDW*^YjZgOBcG3
zTii%(7QH}&y<}IQ(|14Cpi(I;G*N1KD@hR3*1{NC-%QJGVz;<)m?|nzprUvbl)QkZ
znebjeMN2<LMpD4f<q+8Vs~t0)(&5CSs?-`HQ1v%rZ+JnsXsK35Hcc}a&JTT*Ks`=^
z>uObrZ4(rlU%%<-)Q^QBZOX>LTJlIxMC5F;u@RRF^?CZ*4(Gyx<dwTvxZ?Z_783w$
zT4lNVeLx}7<gDE$BK-BmVaen{Y|P}!-KF$_swliMNsP;WDk}3auqe9Kzl*rPJ}^H}
zMGichn!f<%TH7Doh6=;BVe$YKSKv;%=k9n8nwEmO*E{GUg};eD-Iasi#YQ7Ry0__R
zzzUN8$_&8j=6)o~<Iy7-7Gylq<>3tEnvUkUtHuNJYxNq#m}J5?UFWotT>eAvL$zpD
zFE(&gS3GxIvin_GC~pEs{XLC3zVD>__Sy0P<=*dxWgu!7&O%>j__vs!-CJE)DDxyM
zfNdcJSj2}XJK+caIEN!P6tqjEv9bume3d)g4d>+{Z;k`OeV?p)ciH$_AVkEqAjLbo
zg6hQ|*k4_RUR)>wA@;q7XuhwnL(>EON$j{L1l{BO3zpGr+~5qv{vU-m`wkDJz_s<w
zxv@D@F1Ine(eC+*%uIm)V};U-Dl?#Si;EXAi7@(#aagq<N6%}&++x05o5HmAEm@bq
zUHfb(h2Ja4mgf#o4$M_1zuQDBDtWB1J3*Sm7%o*by*w70N=CLRw-rwQ55n8Aw>)tv
zARyGe7Rfv|vsNUh_#PL_X)eot**wqU-d$b^>wl!*I*i!<h>!(5gx9E9@0T`gy4mS>
zqQ~W`*vORJ?9?Q4ABn`yH^bUPQ&@oS0w9g3&d*#&`<bc}hs7x~LUeG!{mmo*?XXi;
z<5wxYcYnJ3si8T?!Ns`;z?~YDZx7&k2!VX1u}u38B&?4efMwZ#bay<IJltIiH1ORX
zr`Hr}H?H6#y{b(^85}4Y15!1B;~!lX_xFWrWzA4oC)w^d%vFFI;5fbE0T$8z+Hv8y
z<vD7Yyd2Z`)PFDMDabDd&W5dSfbQkj=H;(V*Xn;ZGu~?c{y#!M|J(u)jR79h-{Vhl
z{~rHW0K@;fk~dh`eVwcN-z@_mpJ#eb`szfS33%-?&;Lb6{6lj8|9;s2pHka@i~aw*
z(*6;NBFM2W?0A|W{NGXly6wMT{txpu=#*8iH7Y>r-;WyWd=j#O$?)IfA9=pNzy9Au
z=Kk9Ze-cyvbJL>;-S5NZIP9m$e;a8DZLY5H6^U+>f8bYbilXVl%JtusF<DWk$0H-9
z7Ruy6D!h;gxbL(gX|ErE_Si{74>{i!eXub5rGq)Dr2K}JiH<6C%Dg=aD=(5_#+p03
zN7=kWi>^v`o+^Qx8+X$TV2Y*M=XKOFG4T_##|N~5m#|FeQzHc@scdk+b$w{Lm7`IK
z9oJIPd!Lv<9W4i_UCg)Ea;xK6^~(z1y>N7Or=%)Tn$*(FNQ?fx?HK%>Fg7Jg<AZ@5
zKt10i$S2U7E~12wR{HP8G6=MPjufnZ*l*$;xH7m{rt1l7Ox|DrETqgzq3Kb!KfpoJ
z_BLEfUtfK^f9+G|M>jWafs*ZSM}V#yI<yA6fQyYrfhL}gKJB15YW01#0r+stz=EI-
z&{MN1D#CSsHxvz*<N~PCe&46=4>-rp+b%a0W(l#<t1?GRUhN)HOqIOi1<1swcwgmb
zHGl8i^7Onh&B>$s8+Qi%^sx^4Hg3eV3k?rPmju-14yylEm$Sv_om|Yze^qx;{&s!>
z8-E<We}vqkl&vv6t(K>+;OguI5W=M48doF&SlK{ApmlmNk5n1)B=G?jV!$sq1t{Nv
ztx#JIZ4aK5@7`&(1(^mbR5;%xCDrtzdN<JYmX>^dA6FAA-aXL$?FnyT;(r9@8l^KH
zgneLxgCkScT#{-kQLMP%yrCrdlU7AcOah`p^i0b$D;?d#a2-JgJZE5ky{2OCSJXt7
zI7YCb>r{Pt2m?#xtk<vKTNg)%WX<qLhev6|2L~ZCWs@55aZiH2_}tv$;ca4P-u(+r
z0D+cuk)%~k^!@A<U0h<D@(5Cf>8R2S05Jz!6BErJ8L+yKpA3oy2mAN&$-9AMlM1vz
zLQ{4RjR?IJQlEWK1Et)OGzmmU=R0F3dcnno1&_$%$v4cE)z#&d%~OpP^{+B|cMhP9
zZHlIU>lx5!(EdSHTU%Qr#+y=%0b7u-L5p{0b{fD|*$qQ~0GyXu8m~V$27TyNO<Di|
zDGkj*AzZ}V8KYJ9J7-V-py@*T{y(yEX{n|ETTISwYOm%TNawYC)A)x-=+7}GOz2qN
zK*|!iv$of1%7N~^Y?#qpS{~5xv-nc2LUO^MI=B}nl-8cyAR6dgg+*#|v;c5|I8ASf
zEG;!i-07`jh)&LgRgL84{~;}Ru>V@VOvFUi=~GG*f#IwA^M7OP0C|y*174h1rxaGS
zR0+$_sGY54eM89G9JL>~_)ne$RogvBKe5-RtF3J;e8oDbW2-G2{YMCLKB3?EHQxDV
z*G!IjB}WXk&m|GN`DZ{36p$AzD6Nl(pvU{PEbez7=*&6ksQ7QqKud0ah~AFRHQSA<
zw4}1nz5zU>i>5qoBDyH;Z`j?}tL+ZJEuHkhz#$pWFCUNf;XLR`^PhZ4U^XcOhPs51
z+EQJKE~BNh4_HG@tpMA6(Ih&M?HMk^3$kYlmHaLR3g8h(q5wujSAu)5ALBgH5Ig`>
zk<ck7c>gB)eE{0?U4uW<5bSdY+(-E0nnPE&K(F+Edk6YwwYxi)?xwK4HRQVRd8-oz
z2Da{gj9KbgQC&RI=rrhHXugHp3h&U&XufkE%|ES8(*#s{_UgN8!{0c+vz8jMfD}g$
z#)a)D`WUSZeTXF(P4|bG4C2?8_2i1ej)fh4;mR3@E8zRZj9HxVjY#HnS4iJGOyR|`
zxi59k8*5E`W~|(9y)Z=z)C!ArTkm(FfZjB{p<Y^g(&C!*(CzgNz((ybRL<Ipup50a
znR)Z4B**b$-WB-zVFL|SGOx=zHRcF~Ak-i5er!h@A-pGgZC)1icQ429=l@WI?;q`H
z=<6m#{kUCbB|%4~UZDonKQ4wS0X=o^0xhiV#!A9p%*oWVFM*<UrB?Za?2SZZn}Vcq
z^l4HYCiFWh4(c_a1KxB+9x4nTZ;T9X8jKyJ2ziDE4BCKK0tEPJndsX}?!$FG%Czf-
z8!bl3u`-%3CV(LGj)5P<JL`LK^B>{$+hQ%|h2|?Xqzqo~ffx+1V9a1#?^Q7qpzjO#
zH|7A<35Km<lOL>u`=GX_C7w>(Maf|Np_6?FJ0>*0Ghwp!L&^B|HbI)Q!hGY!+hE1&
zhaF|%CA|fNh<l0qToZJMDJJY}k^%@9XF++{58|J?<Sy}g=La|0*!gt=O9P4-`^wgD
zHZ2T#SpmR&zbl#!69v3kcZ2cBHhcfgPhO*?dhS4=T%!n3(L;$i62&!HRxD7<5b$|8
zlP16<nexz|R|0lj@HY>4PmlJXGi1&eVIp_l;ZP?xyB4UJ!N-1H(b5Y?w;M=yn5IbO
zCa@D?BX}~NIQL_U*})-FGeh@m3)W^~w!_UmNRncT5}B6HW<Pf;>W)4BrJ@r?CiKbm
z@oxGaJG<Zc95lrP`vb5J1kO7P!TS&=zC+4?eCrRL$kk6tHI$hRV`AcS)CvUoO@i;3
zlLg)O*5?;JC>}lzONknm<%C%<{n)QLIFo+^TH;r3KCKOx^hIPPowS?{9nvzDkch(f
z6PiC8Q%&qa0d{H*h~I{`gK}L4czI%KiNj=|J|W%D_KbRzhj)<d@JPf9W)`P%(LdX^
z3;jx@+T(XRbD`W)-<bbvNoQ&*)TH*lK{;mz=x*AvrF=e;T8^*~dn+P@!%1srO5?<r
zPi_0t@p_w|olchPKO+UQv&<2uV0`)lLQ(-hPW?a9(&m?w(%|mq9`2PX1~QL6JrU<^
zA(&(*gsn8a(XO0sx`aE4J(K0h{Q~j=E2j%>@5j50^22slG<Q-LpMkocy71fLpG7H`
zHwaQaJVSe~rz7Mr`;dLLbABv}$SYz3_f&6+BG%GG;X8MlCtr<hm4Z*l2^NFD0((bm
zB(tTf7hZ<8^Hx=LK=6gaLAgXJftxAKGO4#e*zo=e^4jz~g+xQpsR03P%RmZHDyze!
zKbrHob~n@4a%^u*NO0sUZfk41`9vS|5}EI%_$UKMsO04uDK-Y;4kBV&ktDF3#wvOi
zQk~N>SedIv*QWj<mR;CwapW<G&BnV>yr9v)D&|@ZkW(#t;jvAqF*CzEJHu-+tOSF>
zDjqCd)p!ILsgcj2P)zOG<%)y%1{zXMVzop8l5{{Y_Q~KgxMcoR^1C2@U_WotvYIIY
zpHbcVz;K1sz*tokyPoulK-b;g(=8}3_%6zku-L$@*6HXQOyt%(m0Cd0!s)|GC?`Rv
zf!eGCP%yVkgDo@JmzP4_q5akeDM;-Q@VQMH^M>;=mzXd-aAw%(eSm|l>vaa=pmRc=
z7xc5D!OzLbAfQZnE8o`K`&)3+;sB(XniT(W`_aI{N$V{nwfOsJ>+SK#FlLe-AM3%L
zpY(6>N3qz(Au_>kHun<~zxNlUkkeZ8*)$7Os*1n*&n=N*ed%21F2Xl#bT0xM^=<1h
z79Jq2>h0A;BF^%Hg81V>!NYqmbrzcnZAi+N>J{mt@$t>U&|#Krb=#+)N^`{n3fz@O
z{j?<ZxMz;vV=*P)N*Ab1TB_ZdAhl=xPR*tt1vj`6M9Z6^dcg<fMd9ayRHwo-vXoz3
z9AAA&*O!X5x+{(OQs1YqD>`?&?~Iyce3L{4q!%F`22URDSla+DK-!AU!=NHS@Z3MP
z1?iQE)Id%V?;En&z`*;^IN+UwE#~=0=lO--ICZbzRIsmY)!ER;q*IOqk?S0Jf^F6}
z=^mF|UKOVQyt`BpkI;To+|3aT)YG)&7^9mY$5eUSk>bm*xwSFb7S%w`)KI}p-4uoY
zt)iH{xv%XeU*yZH10a*_G&Rj$a~dfi1r0o1nN^<{@)IN~0wF?sM)^d!$id26$5?FS
z&}+UbS!dx*%g~Az0(<<$$Z#qK=wqfB=)LZ&g0BDvBi#9*bRZcS6oQI*OhHJMMIzar
zl~cpXC^R>5OD62(FY82}Cgo!_|9N{RVmsdb;0Y<elL+@~5w1Q_Q4jpEVIh}?N@(7d
zhcw9X{Ia_=z10wIyUeF(?`L9T=@?)ZI=nZRZ)a&fw)fx<gY!w!#afIiFtw;?cyHxK
z)>)W(o?hRuwaTuf3#C^<lhwJ=X|P`lae03Jk11urgOy4U^CzRJZ7~^~cN?&Wt}W+~
zt*no-5+*jlsX3Y^mabU_nX#-UnpCCkln{D)Y$0FP(UKuJ)ir>wSORMmr1yF_s}o(U
zcYmj7H<<uAOg8d%KNL~O8@J?QbcehZeI4^*zMqpIfn~_B#rUIzCZr|>&k@4<tu}!$
zcz8fYxxuLjduThk@#`T!XYp*CZ_E8ejqb^Vt#FzW#X-o`f!1gQpedG>Ep9O?ql*|&
z;Uy5ke<{9O;AH}rKWT+0r=TG)!TzI_<yCo+mdL@uw4k^5<PwyEp7-p8;idzAgRgNp
z*n3}obm(`opg-=ZVKP@xTxb}*GT-o?KN=}*on`{K+7rR&m+$)Xhi+Bxny5i+i3%rv
zr)Ivkrv6ul>=~1NG_m7cGkbHdMh0{5q>O#5i_qE*HPlsIQgpKWljB7EMZS+(ay<gY
zDO3#5qJjv+zlLVuiW9EBeI~5yDYWzSsmrkWMR110T^ZtTsdM=a599ai{H#X*L65sy
z-@22oq_8gR8Y!2OV&j?1YHiL58tUx0X=ptB#fxX5adp0RK;<$ka*X<KS6amYVVMhB
z^bPlQOH1n#8_SMklHELW*ryG90HI~^>v+MV%eM7o`Quf>-1mZh8tlDk^{~jJI{{jD
zkuk7yJN$8n$h|E|#)+O@l<)|a-OL^ZVN5@sWJbipr%dp}B%<2Q)uiFom(@Lt4_;my
zWs&KPMjR<_UwvGpNJZ7<sy|8Q1?I-PgJeRQCQ*iiMtzRr%p@<S$ELOc2{ys`JA1H7
z-dI$-cM*k=q;dcJL{S+2CI-fHR{aL6SP&5ButAIiYt}~|b^7j{ehUyXES&|w?cr;+
zg3B?+J&IV_!6qP^pIBiB8aol2B4^yv#~Y=XfQ2Cu4TQLx6(ya&pbhKStA3TBKo=Q{
ziCMpljUg{36^mo?MqUNmB%DrFRlfI$GAd;||DTzHI9%tV=QhE5KUw6?8fAQN{9OKX
z`!KB#SIBi!O-XFX`_wlrw-ktTrcdqAp&O<d7yAl++ra_9#}e_pVu{1sEx}677d=H4
z<7?b*iZ}{!{kA-ce6K!_p=E=Ob}t(S*D}QbYmj>PRR?Se4mC4V;!GJXL!28T1#}v>
z!e&KHhvn+h*A1A7Zq8GdPnvJ``J}52cTUf$isJEPrOo2F(XINQClRSu=)DwIhO`Fu
zqB)zhre?Ij@34(SA)B%~B^V%A0exvr2MZ6#QDI{pPwS9*Rd8@O8k)=R&d)Fkfu|sX
zvK75r1_S~=*aSHe0UXYF{83IKMf#ISY2UUJOC6Qp5zEq~D-NkGj%M>&_dVOSpTshU
zr7=z-o<R=h64<G`_w1FmK(C@@toqN6kL{~+>F<=T9yX6@UR~u$Fn>qI#Hw%Vc^6DD
zGPrQQEOJmiZdH9b^%`#)n&H=i1B$^h=4o#9mD6*5=eDeMbNaRkM&aiNXH3%jpkaVV
zL|*AEyOwEUF-05>6}bA(u)|WK1WQ2N?j|^tz|XVW7=IL&)tyu*NN|ffjNCW#8$qeK
zKnzS}@%?xsN=sEank6tCa_s9p#6uHYkQr%pDk<zh<BgY<)!GR?>FV2E`hzya30m-=
z9ZN;>?e^<4_LRC~YpbL3@4Wp(iRKp=Z4$jBLuqN`E_J%`5<CaKHFlWca)W7t7dd8V
zfT;n(hx#qe&jz1TUjA@%hb}kkzf)*YV6IR=7Hig=Hsyfti9*1zquH63<}dxGQ&ZgV
zS%g0w5!q8vf!b9Q7=Gfh;tM5kXqC%}B1vBKN9?pMUVh!(Kh~|j9j=G~IB{p&pvoAc
z&Ym8UW0r1+yYU%du5&1vMI2=KQxg%{S=uA&5HN5Z)5);3xr;y-1aO&N8Q|RQX+n<p
z9Z8Qf)RPtHz&FEb=4~x4Ho!Y9o}V0GvgsKJ4s|8@^*;Y;Llr*$c1Tx@ABwX76%-@I
zjWiusTp7Ke)mdQsk$5C^-cQfbt2d`pJ|>S66Iv?CL5u@~{y%U$+_wj|<WdaIo@Hh*
zi$Js)<4jTlUV8TcA|P~ur7AXuqFE{hYN*=T)9|i~wNHS8S<cBDah_b7oJZ})c7{k%
z#XI|t4m&=*^p4j?Jo)reJR3Gz6bzUhU2H$sj4F_w#YV_RLH;6}<e6j4hc7S1pHcqv
z!xP!Z(bKypD0t_>GZtNH`7Jm|PvlkH)t;;KkjAARTT(bcgJL>Ca!DNcA&}_v-}_Eg
z(Hx^>FQ=-}qoV<q>xM#WO_vMyA-T&X%2)<d#-{;d*)Fa+4H{u-MOc4J@)t+K@Te;v
z;zz6>3Oxsnq&`gcS)y!HdzVHBbQ$rfS}D}17;})YN&M%l`J=ixe)(dGGajCt+(Nkg
zmh}Z{l2UdRJH>x5K*C@x`_h*m1bRiZXK5?+oj=5Y24FBu`cj7fKlM9%O!_gi!Ia}U
zNJn?X=!(*Ft*3B|NN)(`ZyS6j5NTgqCziRVOu#g{$|N|Ad1Zo$@%Nv%&!6z6rul`4
z{;D(>61iN@d~ccf{BO%WVf76N^!LD*$`%Wo4>k~@!G6k#^lzhnS<O4e$NQf~&a@c7
z6kG;9PF;T07moWIspGMx#%CE@dpwCId{Zs9zt8*f^0UROcCqsyH42sWF5cCE0152t
zj%tyMBXWkvY$j(voqA)Ugj#@Y%D`(DBo<#VewZ?|W|6d%bfc7%V0TPJW(Om{2ZQ~$
z=19nV<R3somsIaW7ivX*Nq$ROd7e=2Ii|%&DrUV;=K*_v7pcWefIrynqw)y!0<-Q%
zoL{NhH@4pYG_NB@L~!?$6>4eTX9m9r=}yZ%qa=_%RaI6YIzPI0er@uxbiV>Wc{0?c
zAn~^b?V#RH=im@05i@~k>}_`7OjP<Mz4H9F9~E^#LDoPzo1MO1B)msK*6R%e15Opj
z-_`;J=L_KyJaepHnvW&rOd<cFK>a|(8NA{yZ|EULPr|{!B+I(gjxFv8>BEh@u8)f>
z|LD6k03f?_R6@K${(j#8q=-<Fpcp;7c!h62rOd~gCG0Q>QWemYa-qB=#B$Kb!^n$i
zLi>kNq&)HkDxx{k$4-&&a^Cal)hgtA3aILf4C5f!qf}IRRjj^Oh?ujzEh5W)W%+&T
z2l@`{J-w1a*ni8BUL}wYAN_bL)JuZK`TDy6a0*x!ij*9c@+kQ3WPmTra2dP3`yIfD
zl}g%%L4q9?t*ctS-22SYV<`GykEn*T%BAST)xo<#Fh318#A9HET-3+J%vAEHcqx#2
zW__XQgD$mULe~>IC{hjUY(Y^1-`~JkP0ifg(1~qU!oL^%xKv|ILslU=6wEpxb9~wD
zNbseh5m}bTj@4iUNFa%@Bl@=&>`KpaUay6bu7>pczIE;VeDW@0#8gNvfLe%ab#uPR
zjMs))UX2kN6vpeOv#c6o4{FaQ3lpaVKdiO6LSNj^B7B9dVtPjn4fndt5HKHIa!z*V
zAnQes;4(<D{|8n)%~_-1LAb9>Ri0{O26web%Jy(3OJ9y(r8@5nxj`QY<!@)qq!4O%
z^2<o>d8O!R)^e2@jLF68ktPg=sF8&${yCND@5qm|GASQQOPe8xgS#4N322pf-e%-*
zsuvTWNsm9GWpy-j^Kc<uCB#k=y;tF-;(i>Ufws!ELaw8GRw(`7E+`RunGAZx5?mUS
ztn08F8Wc_B3bL&C+_AWd;v!CwE)>b}p^{Eb;50eQI-E5?@DhhNLc<W(tFdI=XxlVh
zUolaG+peugYe=R+Z*x=(belX!4%O%}@+unO6cn}xM`XknexSaj6ay|%P6i`qGsVf!
z*aSJ&1YHU=(30Lwo2QMsvG^~gGS;$u@Cn?`I(*|fr71_wye-D_E9yt22-tWXh3`4p
z($P}IUX9tF)tQim{X4fw`V6orAD05nAwuMqh1W;NTjzda`o#Yn48FIYtx&Zn#ny$7
z8bV4+9F`m5tC|@PUWkq=X=S}90U_n>HD$QHQo*inn0k%QKE1~#T>};DnPtT~FL8(_
zW<_1^r{er*^Fp_Z;&%v!M@_4=c?WHH!7XLr_m{=$8nf(=NOj08-L}72$_?OtOF^?j
ze1LZzuX(|yHMQsB{~D>kEC18()6Xq*GX{D*)UJ%n=cD=Bm-*UUgQA_e6C0I8k+nOk
zKl_O$aY7M7OZrFwy&K5aN{>JsNw}+`dy#F6j$78<6c6_uyZMI*_#S~!Iu5A0*8S}F
zQ*8?W%8fM0JppJB-iENhhh9`#+@E=nlr87qLQfER+1W4%;>dzhtaYaMQ9#?n7J-OJ
zI{11r7;$E3NJA^tayOD(F|j22Y6*Ng)YPVR(INU^)p4(Ykz&TNyw`Xh46z?dOuv5U
z6?}lQQdDVu$9y;w#7KEZa|k4iL_aAv^9fZc*aH}4hubbzCdZ80tgHaBumhy_+1aq2
zA<D`v#KVpUYS6g{_`Z$0m$g*4s@ziyAM_>Y8nNNfW^V@wq%60Q3w!N_qYvT}SUi5K
zXFHdYqTzcp{K@cs+rhW>Lbt5!i^Ulp<7Z%KWD5{SdWDoA;ax5K>hBBz%-d%svgz1(
zt6=)BQ)n&rT6vdw5KdkhIlloaNG|C1U=$%t#eCW`yg#UEpTX}_(&RA~I>_(5zTSp7
zQ>37XTw9B-m@#Z*xVtWpha3w%0=c2vy|G(n#-F@pFy+`QDnStt@K(3x2JmK{1-=?m
z=Y0MCCxJ)Ok%l^Isn8yqLI11UZ?F}J|N5mFJ&Pc(AUqQMkl#>)0}_EW-vPyQ&{D3O
zd%XeaH5i=LA#RfA?)%Qrz=%-~daviVDDS-ZIR%<-ZT5AFVHpX+5(12Ok%$Fbo)q8{
z@4K%+N)zZ6ug`6J!0w$eJ!o|)sB*V&^|KczEG{*7(h9V?wP)~Q{xk)G2<-SN>cPF%
zW495$*fX>@b>A?RER}5#smc3yAo&=uaZ_Ofc|G_FEm%OnCscGnz#G&)-Ax2yz#YhV
zxXw*sa!@P$IavT&?b>>YgmDM$H&u}dfmFmMytxxH)G>F#jqN`?dUL%4DW#8=k<00s
z5A8G(c_lSAHE}cB28Kq$>fqZ6We;Z=JWI@F&<p6J0MUE<&c6H?$3rZX_|J};UFvF&
zR}K?-?Po%|sQKsj7ClHu`jcxfj!$vIPRj%0ugC|Rtct9YLqvaz-%EUk1JXyz@!a9a
z)SxBCvbz&lEi>c5Lb<z>17vK*L0&1n^|pEH(<Sb=6PokVKyT3QKKF2{oYQ&~P4=~b
z*54lT8`O)|Wy&$ndfzE(mtSCYGYAnu2{<ga0^fF$Y!o|iBsDdm_|kc4#Y;*f7jZ9K
zMHmcXD`VC{nya=Q5Esxj69Uj`U7Jn{C$C>I%^UsHD#wS^=>sruqniM{HHP!1f%EY_
zeT~P}qjm>>MC7+ZDPu*Rl!9?fD=tP5K$UnvLni9P&+6mt;*wXz3A^57;tAe8+z$(F
zg-NMH`VC51nhTS2OOO3Q*EdaI+W5&mE{@PApksR$vpQ=`a{iMpv$k93GYbEvvxRW$
zB!x2tyc{WNGY+q-K{IC;&u9FvBPPa8<dVe4Ek73TewCu`wjuvJ@EFK!W^7w=61ido
zcbkqqe(XC_%Hq9x+pBC~zy`i5CX!WBO69Lo74<?yD(Q{*37SqIwa+I><fu$cuDeuD
z^v>(LDPC;$8?@ce52lmblOLBd#c#e=-@pA@8;zwsU$S6$Z|nAc)s$EB!2w+34vB#A
z*~WLK0kI#e%E%qSbeo+^j7=rYFZT9aW&<Dl&9>?t9u9?nd*P1&`x8(QV1O)GmqNnO
zbz5m>`$J>-XwO%VVVW$1C;@wu*sY7_bzQHct!p%x$&o<vCy^GtyOwpGTW*TE2U|T$
z3j3oo<1J4%mr<aYP5<#o#RG)-(xp%Q%8y`e^Nv^738*=@oyzX_54;DxhG1ZHXU5;)
zZPPngUtgM^MvPksG6#x0(_elJITEOKT8`o6WjQ&ZShzjv&@?3Hv<D*GH;bapu%bFc
z12v&pTOJSBs}^`s8&;X#O=pJ4bsgA$qevM6(586%pnxw%Px|o~kps=!Vjmtd7vs=n
zRkK7MZ1doG+%<0y=R25?h3fU1nlONEWG_couvHWlgr^>kc&HmS1l#Q`I+RWvpa(~!
zLs~D`K%~O{><o_Qq7Sz=#NmY+Hi)waUgw7MBs9nGu3lc<3#_~;Yg11<_f#H-J!gbI
zz6zKX`fKGaQ8NC~lN8p0(1THI@Zmh?wyt<?%u2cTxn)^si~YkTijWI-|752k2i5c*
zxv_wpCPBKX>Ci_EF5>CsVKW&%TQ8=8>(o?!^K9A7YCnd&Nh>`JpVY^SsbOIkyZKA4
zf?u0b2J_X-*$7JrR2WP>cnLCP&R@7gKmq-&s(Ffj8%|e_N4I$`!m||h$qF-Qm^XC4
zgcs|CwwBmZhC$nAWyL4~s?zf1Z~nTz9aU$^bIXgZkARgsjVF?~Bf~H@M*p;cClbh(
z{54CkJq|RWBJh=5)n>522q`JC|6EBArU0<L@JVdE3r3f~e@vS>xkuYb&#C(bzKi#}
z+_TF+bKH^``&-7myjgjhv1@hkD9o>VIA>zz)5GH2`hTX5)t7OhB5D%!D92Cue&<f;
z(<{5?Vmg)eW3Li^Qeq}I9X6VZkMoO<gIb_&WgY;)^m>0dPWFf3`TylMKPUd2+#e-#
z?|108MSb!l4CRwP>-YVAebwAz?>Y3MB9DGkzr;`fS@m4w$AwM?7S7&lnIJW;HIl1o
z3H2G+92A`E>Rx&eKbf7~|G{f-Yi}nUqzx=T|G5k3&*T~uOP8Ms8OJC->XPN(4##Qn
zSTY}x5g-TEyzVCv5~AucRAsPjcG}<!H-Ey3{-1@xW75d>7rDCIWrVAT$YS=tUSd2W
zuMfqRG<GQ>T&Q`~`B`j3^>whkJYrzWy8-RD@RN_n$7`e`X#%-w7-5o%ot=uES#%A?
zFE3F4*Ar#YD*f}jjtO^BvfjU7#0^X%%Spr&rNR#y%Kl(Q^E0YX8L=x>CF_7(u=0~9
zxt#gmT0D9Igv?(GsknB=iXpIY-cm-trZM8!mCzyU0is)f>iH<u)ODRJ`NKLUU2O25
z6`^?*7U#!xPcFvXC;t}zWYi=;f@8vK$LaIVKWj$hYz*KEOH=IJO(0LK{ssQUja*eq
z${l7kz*cy)d3e8(M)aEAfjm^<VNY)y7qxqM8J;AE9VfMM<~e$})#>I8h>d~TJ=}8M
zGblHc0n#7}+mZ9H*a#IwAX}Lehb*V%t=8!sazSGze(X`eW>arxt&(yrQgy??Gv!)5
zs%RPV^mM&aoOr%J%V2gY`!*N6GdTO*SXi&=lnI?s*T%~zHrmMT8bt?N-wlfcp4PL0
z1!%*~h5qtV$QF^yHVu8A@GaT%q#@&qjP1}<eLan~#t6A=tU6;?V!()usF|ra{BFNX
z%cz^GxqdvO8We4zzq!B4Ky*(|4p!257(67qk=WMiRQhgZnK2dDCexf=a-^i6WGZ8-
zGXSufwe_4)wOeYc>~pj*y83ey1ChvAZr0wWt}j5$h7AK2l_z{e5AUCT<d6P7RNVe^
zm4Y1szkh6QG3=Mm#j4xz&14!?I4};iCCXs&vM0CBzjX~-$J6{UliI*9s%M)#Vp^;P
zA9$>rCw(VQnuoOMTpz#1qe;{;ff`QjFSqW1xG^k7prLu(ONk4lo$cR-zgEpNo)%|)
zASFc)52mIfc+W8PbCq9FQJNiPJgn;lU7A7YO+b1?OOuCOmoa0|KEca!&-npB!UqE#
zom|kDu>HR8?(+ORU4+x*q%=+Wh*?TnY6Z~?3FV@v%}JDf?|!sTeX@pvO@t>5=%tY3
z33Iug49guKe{Nrmim26)pSgMZ#MRwZOXC?T>anej&q~pJHr_y0HUL|wZS?-kB)YwI
z!6$;a&OR&q9LyL(aVAMVf01Z@`FZ{VjuEOgWXiEa@J2yak*Uf5NZK|nU1rh7FT^cn
z<$ATHP5Bodv9zXiFMt^cZIk%@JKMxqng+X=e>abOHA=3jsL-8`u61auzPF3Hpkz5L
zDa3$KCw$2EHxS(wTK@3i>s77B4$16#o&vwyy61ki6>39PYpwTHYC}tlu+wu@T<4pD
z4Qcq}&$$++r#CEiZxk(*(zuAjK`%3+5`V;?(x})es?XOHeG=>7_j<~VZ?pVWv2I|X
zu!!+^*(&E(j#65#3S*gJ%hJ>w2qZ-ApyYnM+20EHYXKe;C6@zg-*T*SzM#9ig}S=w
zH+gH*kjlv^u@eGxh+C49ul#z3BxvtCv$N_+Su%QI=+EZPhIt1Kbf8DPhIz^vNr^GW
zJYot8hiiefoSf$R4ZdEM<rE-G*V{_GqE<-7vL)Ngy$X>gG>eg!K0n_x%zNEreq0ND
z3?~>#!+RdgyazzK(?qDVO-~Hc4DL?76j0H_=Gr_o&(?DYMl))d?QHW?c<dT!+oR(}
zvNLNVx*K3AT5sQ<HdN(-UQx2YcC!{pk}NDNu6N(U9{1qoWD*1z0Zk=U{ELcn3apBQ
zu5N6>$s4Klo#K@EBg2CiP$&f{DIfT1s9dIRr|H+|5aI5Dyu9+PB^LlPJ2*I~d5x>-
z!7JZk2R{$%_xA^?)YRDEQ4J7vIvE!?r^O_ua<~y^jG_d5jCPzIAtSC~bg_4rH2oo-
zS+D1vS(B4A>XF25<L;pBar-?<r=+&>UgM@D1!!Y|VOB=`XF>}LI-}_VnbQm8pMfjW
z+2!ft=xFG|BV;hh=6Gpe)6%ghQQ=cC&X+|E0`~a(H}y!Wz{fVGJ6fIuWn-0Zd3hEt
zs+~ZhIMNU)MxK#aMM45^Y<JAy7Pop_0;@s!uP>c$$(n57m{HT{_n!B=nd8w|!EqFz
z`^S&+M*AF{Tx{%Z*&u$Y3_8`D&U-hfAu<Oq>TtKNpRRGvd)O<bb4Je2uecxXegr6-
z`LX2B0r}}Fm!0vwOMq{RDM60xihi^|g@BkGU<U&ItjhKqg$Wwyw>b?aWZ*EF?ra0_
zC+MZ?d`1BjuLU~Dn(EbD+|UpUzeh&7)lE)0ESp#Dja)Fqy|Svs$06b6_G={ix$b^*
zlwyYTNi6yUKvP3bC8DUL$VrGEx3zU09zdQUmA!Xp2|GP?oqH54{jT9uzXccv0aLE7
zNf+^=0{gH1>Tk6xc>~-@*LX;q`%6hy0T`SCnuIN005FxLFfuTLj*bbi!fLYUe`$iJ
zgv^ABXU=hj@+36N@R_zLKLYf<m<^h3dfh>Z>Fj_4*Iw6nC+PiqE!Tr>MdUzod~&B7
z<2`xSG9csSfX8<K=t$V@o&n^klw56TjvU<irpZ0X(jim>$QoDx6KG-Z3J7or2sp!Z
z9d6%(+hk~}M}*f~KTBmpD&=U>div6NSs56#3RIR`)iu1Dg#2!YLh|$deB5QFrIC#K
z&*SK-yb#AHu`#OHsuMCGs9VhpI<xpGGv)`RfPn!!YHBjjOCs&vb>c6;Ao4;g)*w&S
zNTfaTf&=$w8$+z65OK5&!|5dzxt=yN9f*%#aI}BG-odWH3oZ~jI+~PV=zV;6Rbn_v
zG^CxR4SGpR953LukQoC<xjMu^N5g!Mc5<-S;=UE*XjyIwS;^i0>Z5E=sswao!CE_E
z|I7F08azRAw6Xo~!V+q0xEvl1W7AjCv%2L&QGTt{4oXT$7=q8VEu`<7Z-PMW#z4Bt
z)iOq%T5A{@h>fVYVA7mWp(nOCGNz9PFfmYmar5%TlAfWaYNf+Th}IGWLP0`-;vqO6
zA=4GV`*nC;`|2e&`N+-%FZk9;RiblfJ}ExVOUPjDa}WV*s?V=o<m=np@b4k-epBX%
zi&(`(nt3@mu!bto30yWdG@uDRdGkgwUO7pD4$^J*vkYQ0@oSIM{0IVvdn~qvhK65Y
zK6?}ZGy^bK-p!P;#u+50a7OO(+qR8;6j{vJ)}j~D$c&Qt6(pY!`X!516j5COj9W2g
zFOUNjD1*NQH8eIkK+e@wB_tj`8{dgnu<%)sJBXcS>GC?*&fh1Al?@t}w|_itXhNIF
z%{hVl_s*2Hf&w~eQGTF$smK);72VAY8>R}oaeyBlt?vSl2DmN+Yr!s;ryZNs1(J0;
zR+APOmoT7>O=8Ch6QXukS-yxzeE&wJ+6REYd|h2#r<2`W1?&bBQo4<uG~CHSV?-~E
z$?@;>=UFRSeK~f9TGYHB?#Ljw*SFH$U60;sxZ8ulCp#H_0KW(?-x&C4-|XPW=GG`d
z=$8!e{YM*l&T;ysk6Sxu*J$4e)R$VJ!wH6#HOYyIo`W(>sBy-zYZ|;tCiqW+#I>7U
zZ=gj9z-z$@RZz+hnY@)`uDm#BjZcR>497=}u_>3yUhyZf(S{y$-Q9+bDv^ukPVUQH
z9U)=&d!M6Oq;sZ;d3ff+497RuyXCvF&*E7{ib_jU`I#mGr^fTcT;BY?_s%=XcPGnm
z_;@FZs><YVYAPR}CW+49$L<aEv~+pywKW@>l-^W{3g(`G=!9WLCw^kTkzz*l2Sd$^
zqnWbhrKdK$w$}Fc3$0KlO@i6ip|YTt<XA*_L@ls8GHE%CuCDIjFJF<`4~uPE!vOl=
z+H?^o-<f5Ng$V&51qc`%I{mN#VYbL#>fFX>n32y=F*4sX&~Whc(YShQ$&iW{O_Pdv
zwp((<A1?Yp&(lujoaGiW;dc=f{9Gm)bdc%k2~_@jmhzpgqob`YJGjI%(37VqJ41sO
z6?4WFmNSR^@mnqz&eYjiI=VV9ko}YlS|iIGG%bRg+NpV1K3yjR1rqHZxZymjbUvps
zcG9%)0j%&-2c;ItxC_oITZ$qr%1Uw3G7yH?HizqKX^Cu8f8Oyi{ia<M_j*$z5l>m;
z7tWoUR4Nl(Nx4D+>7?(H5Ttd?bS=Q2s<qo`e9uki2=*R&uo?%4qkrFU3fYp*?KMR`
zRw&+*%S#^!33D}WYxm00D6A)4END(9K45Z4i2NQRA>MgVSaj>{v&pg7eX$cF-J3Xf
z9Y!#U8TN&mdYu{tbGKS2&45X>&&@kcl4_=qJ03n}>584yWnA?|LSnJj|EYOZ6Tstc
zSyaTxP3#8vEDCgCy*o_}XuB_ZrkN6^tkvDryP-@8y-CaO1q4)p;p(j+q@{@~N2NrA
zNnI{f(w2?b+NSU~bympp(e?E_wIvpcgTv#TSh;LYLR`k0#=`Zf3PFiiR<1q2a|TB<
z1UdQGKrnR7Tza}Ztp~v537HD8K8#D|#pU+&gydTuMB1;^^KknigMQ`YB_zZpDZ&I`
zw<ySN9&V2kxf!A9`Ve%?Ff~Rq7nkhFNK8;yPj`lpzglJ#40=T>P#)P~DxkN^mT{y!
zxfY5;ivKMoMKFA%-nrn179SOs@)Z;XL>y<}ef3?XfVs&j{GiLMJdr2JSl^M7@?*)c
zA|OA@7`J~}5bKYG^x`X!_VEaFH2s(*RFavLc;C`t!?6K0w!G|ize|}THxGdTVYesg
z>7cjS<4UB$90D91a}e;_VN&At6VT7`0tNg*BQ79UG^@68zzNOv^I#4EuCte!7k|Rw
z8)2|PK@_A_dwc81tR)#<+5_>D@B?-%Gi3Otrsh_+j?h8m1_m|i(>gV|&4<V-z=m%<
z(%W}l^IKs#$bqemjlTyceTtFpDL<|Oin-`eH`JW<^`HxmhCfJ?7Zf%PIj{27_B$Tm
z0Ys#LMybByFil23Mx=c9#2j<HT*382lif^atPkzh-u%+kPnCi~M*CQqx31^TeQQZN
z6VxxC?Q$)2Us&MDy;Jq`Q<X@Ab03^$5eC~WhlKI&qAP|&yDn*wK7GPIJKfz4Noi_=
zzOze8dY1V-x$Wn5oLd<Xm4V1~trvb<#LzVY?Vg<2S=+u03r-;+`GNXQQGIK-Pe#J8
z1n`tVlJ9yA>K!#0<1jEVekAB)hK0~Hz9JKJ))Ej97=w5~&uLRO7XI45j;os+fU0%o
z*Gtn_oL|}Iwu%W3PI%8}YLyMZ7bL0Z9snOLG>ErUpNNbMa8f9CPcAM`o7)=7;VdAO
zSSOl2x5lrHI`w6F>YvArmL7&ReLRkYoDM_GybK*6(Sfvp&m!Qv3IYMs7z_%<2>ZhB
z<OKQ!^vc+NEmifcF1JSkSfSS{dqJ!sa7)LZ6bCe)cZ@?&J4|Qv+s>S%cXCe4y;fG7
z9z}+HdO&UPHBwv1o?XL5-n}v6AW@VG?El3}T<sm0Ecu(+YhlT93h@oyR@K_yaI%y=
zIsOLKpJJ_PO{40!<!yo4Q%Ddiepq|0ZZF$X6082p3^rQI*LzBxikT|;YM+8v&)=;r
zJ9aXRD^6vOk4H1*5a6@w7ED{)CqNqgs)m-AJ4Iiu4%a~_HGW3D_H9K=878VFCLLdz
z;#2w@+}*j65iQO_K}z@x^?CG*u-9q>Z@~~P3y+h~>e3lt9r{(#;oH|BO_q2@TxZZT
zjORHj`B$Nov9D)XJ>I{LGZ}6apnbj9*MW@)c$KD<lA7#(JY+S<u(h3=3(Vd?k3{;^
z0jMWjz}jZ%+1c3gvs=(XYI4(nx6tbEkKFPJXs#JGr+Ov2s(I(G))jJ)V?7(Az>LVh
zMho$>#`BybkTZJUSFWCC{KtJdB_zTcG*ek$o3~`^GvmMrGa=ile9h;9i8($tw)`^C
zN|M=$z%zfEF$Efwm8qTNqPM)nfLoXVqXFy_BoOW{c4llrK5EJ4$VZACSfIi<%@{|!
zCGk6R{un5{pxV`-;~oIV05e|1g@w}M2?c1=ndpp*g(x~-O|C>k;(oXlj4FJmAKrF>
z)t|-?VCu<7!-Wg_5*WztbXGTDFWKFLT4HX}psUVcW4I`j^Ink-CrB>y0~zF11KN|{
z9X^W~XhD(g{ko{YETxowC|LG$%#=s9&opPiNm0cAa%?HJ`TG!mI21}yETyx|^m@(6
zQ_|GOCJby;t_BRt;U?Xdr0IJt-zZ-`D^ZeTz(s!IY*(s%7q*Usq$ll`U0BHBV9+sK
zc~EioJg#mqR2IF2)q251c`U@=n#HggSmSAw8n_f43Ixor@sfeG%+mnfSZZny1Ub?3
zXQ;>lW2dK4<!m`IyA$%n_|F@Zl;~nVc-3Kq9hQ3E(T$rwz4KcUWtF-!H5BEDY64#V
z`dUB$kXf_1JkS5o|Lw$}3cF&?+mRL|blMc4lqW4E#mmFB>nf0PWv9g)Bbx&nTbVI-
zV;&#+KGe|QWs3R~q-Bc_Qd8G3HQPZ(Mv<0!S65dHbhR3tX)VKy)a3ZY)QQDO07}hX
zBNsG{EzFA)AqY{Cn3j;3P7HmPDb1<ho*lJ{nD*Eo0)bArp)~b;6%3mhMgc&l?|Vq^
z=b-*B&eG&~{C(ILSh%P5n`)<PGvJ={wav#v8nyiowtvZrpy9tECnk&<G_xxyxpO~h
z1~UYU#&%cwH)M}n0`zwA2Df_j7I)R**|~*O0(ADk^40B*hwplM#T^sKg4nE}wop!g
zhJnds(7f4+fTMu8W@ab$fVj<}OP=y?zwF}aosm>;$DUi1m%IrYE=1Q*R}XEK5B^of
z<(_N92eat6cmAW8FHl=uD{w*BG1#(iZ#M&BNJB(P+PDBPM&m<)8g{5Dpe{m)3gY`S
zpCPqxa~&x!sr*1~SZaNb>&!p9X8@*PnU$r%MGCNb6lC1*o-?eJnrg~H6fRYBQn)d+
zQR020o}=P*H6^=_FA6M)fh?TvBVACr_ppGmB66%)&il|NYx;;-@z?anRURkz5&fn)
zIeCCb1ZlYtyra>kU*x(Hv^n(Pei%9Om|mRZ<mF`*p{yt?ySt9=<oQ(o`F9rCVjB_u
z^8&5~Rxn%;<fwIn=S(yn{`7cgsl%^YensUaz>4^Ry#jEL^@^sEk%Na)xfj=Nm-W*O
z9Ui{-?(B>($;c`;xo=etqYCTm^Eces%s50v$YD|lz3nPdFvkh(pfQ%}dd(-KdT`li
z=6vi&ziXOdeivqZA6rvGg31qiaRrN&F%?CCSXoa1X9v^{%%FZWxS63OWMpw6-CMka
zDtStR-q$|?Z}eo{nkS{$x~Bg@r^)f*&<Nb-)+wJo{>E+Yq0nQFCZbI_MOig3N3~!I
zm?J8*nqN@@Z{Y`o+2<{ZGfb&p$Ub}jy_y1ZnphoC#v>4FklyN=EL|*M>XE&5Tv2EQ
ztg(Z?XzyU>UcQ66`uo<_92`5QBmK@!Zo(ehT%g3EZIfWkbWsmFE@s=A)Z(NnbF2$|
z$|s`_F9CE-a($a5%02A@f_40%?RlM_55R0boi+AyJlx8D<mrmNh{CPuRa%C~3dY(0
zL)=?ORn=~BqZ>gKkdTxXL|QsGrAW8rrjhRMR>VyRNH>T`Nq2)tNOwp}cXxUp^gZXi
zan87R-0_X^jo}{(%e7bS_00LJNx^j~?f3;PNr(d~Ku^uY!*RGA!n)$Iv$h=?6iT7<
zi3s3r+}xOu8YmwQ_Ris2dt7vU6i^DAM-Pt2-*HY}S1ZtYP8oiFaUmjnKd~7f1Kr)#
z9kgeNklB%=j1db7!~OmrAHFmXO>09Sj9eaDZ)F{!vXo@UXm=lqC4lAnoevXHdC-bw
z_2btSqxd_Lf`G9-Ix5HM2;y~cFz)T-c!2&SBt$GdP%Is%D~z0Peuo?jhX6Bd|2is8
z3C#SNYK%SIxg2M|AAS;|m{U-Ii-DmMHT&j*CPl$wxTTpN-W)9@4(XPmW@n=hy4!N^
z@Z{TL845Cj*g~zPt)(s7v}Vr=p`Kzn5(o)?XMewMa4-YwCV+1CFz>EzY^CU>!KM{m
zKy2jw^!LJFzoNU>Yf(EX(5jF7`62Q(PFGlMs2w?R#$>tcCqS8PY$ypuQWILDaI5%C
zsP+yP0EBz%mLCU^lac}Aea0WPHG`{%;<QpXJsjbkuy2Wpi7tzJ9o)J$OyiYf#x+XN
z5V15x!@(DjIJU=uB9uU&**QBsjz>x?-GUFs!{?be5ehYb)99V!$r+~4S4Dd&Wy>Lp
z0x5!RrZyfh1-Hh8hB`Z!;dp5xow!Kp);Wrbx}AaEXZ!M)xN9-<k-ns!0v5y-+@RX(
zFsIDXH_!c;3akYMBN2R?^xIn6pi-q<qI<p`Jr^5dYAeYucq(ctxQw&~xjEEdU*8qD
zAH7s5+)P;|Cx@Z=<Bs*r&@`UUiBu9hHw`^?uPMjz$&vcHE$Dr>@aD25%NiE9PR#17
zr7|eP+h4tU=2b5s<)756Cv$vMj&e+hj$GQ&GH072f!``GNrWF5kn(mE%E!k;BKLA{
zKJI&!o4*USF^B+`p;pQo%2A=;aOpJXSRc)#c6kNYVxp<>cmo%|Tz6><3wXD_y*{|%
zh>MD60a~PjJ3v_@pwOBv{1Hr;@DmOs@*oS5lyS#`g9uSiS;pK4Dxkm?)@J>T1W|)>
z9*QRU8g!IIBc~7O^<$!AY@d0<%{Nn$z)J<BcNXS($rcWUw^Qk3ZGwjQU>{9a{Ukvr
zOD!j=Mg9Y2ngYnzIXh<VOBNjet{`tYGcZboPgd;QyaCNu%^Grcc3gF;Nry`X;XfHL
zFDGF-+04N)j+8VR1Wlz9tWF~RMP&Qp;DLz~RNKSCLhEaktj(1cMJzWb2Ug+W18E1P
zg^w8wGpFOsAgNi59t_P60g;)O_|iT;G~bJ(rmIxzOmlpmK1^=P&iM?6R<+ps>G<gV
zOi{_z#lyrD8pf={MSV=gn0NTK{`#^f<S18H+h_R@r3>3n=jU|A6E0%#3U!?FdS<Dz
zwDq`4_5Ad7F#cUd44<}h7|E1wovE3l3}c|owx!L+&JM9fn%8gC1Oo!C_Y+3&jkxka
z#mBYa)SwP_J8wZ*TU~|W;KK+yy}0)Tv;jD$>+Mu8mQE4b;o;)7V|$R<_V!K7A_&6v
zB-1S%Bj<&&u~9bI9ZBgtn_F$a3xVw$ics3wIcZ)@P}7HS@$}2rtu0K&D;=PsF4<Q{
zmO89evqL`NG3U>eoE?Z)>1;YL>7l$k!Qjb}pzZGLz{5bVuB!T87c7!Hq8bxhsNVP@
zLorD7<G{d+n{~v)y{6M9CSSesS^kT7+03_ZCjbd>2VX=@P2ApmBH@TwQqS7L%4wc=
zl13+ARlDB)EZS+qNRckMRnS$h@Jlm0A9tU-+R+i`+7Nq^YwxXBdbWB$fNveS{(9cu
z;kIaN&d}fzo4Tgv0nEf)Hg|*!TEyH~B#}GBw)zgd{nfZ#fY?<Bci{mM3GQ9~Q7hME
z;S7x96Ln+Byxbf)0BWeH1nNeuqA1eh_4J^3(3t`3yx8UydDR){nbA;#NAqSSC?X$6
z%mrtxApBTuLTn9=1z*<}W`~_Y_8<*<LzaXqaP$V#(Ad~ocf`3H(BL63t-ZayeeBh5
zJzICQZjnf|Zca1kVMj6(>B%o3(3i@)^+WS?g42cjWH&pzXm_`BvQk@nDu8S5xTl1!
zqho`+;f1EQkwCz{@%T~uYFxr+DN3>N!6{{J^>9`Oc6N(xaNG90AHPWvjL=<l?7sbm
zOkD2SUdonc%Koz+V|HJ+aRy-686Jor-<Sefu@77#22Qfx<W=d&Bk{1^u5)SjT+z+Z
z-ezb&a@2Oo%`uIbl+q1T>m&-0BjG1964zK9Pa8PVa1WCSI}>;4a|@5UYwIb*xlVwW
zkG{W$?BM*FgW1(XmJ+1vCk7&C<I=xxGIsS}$nv6(7RxZ_I9b9@?5V)aV}Z#e?$zAG
zSIQa?{92gD+*orB;9oAAG-7hUR*qG4E}W-=MqR1}HQq;3E^0Ke`dpO^)$u7iP_*T%
znhZVrJ|}!}vp(#}gE|S~+p5o(G%}y|8PBh^XqJ6ygP^FcWZqfR0u3UQ${XCIhjlVa
zg&o*4r-7USScNAVC7WG+LK%am#--!SjNeH@H8R)|ds0$#B<XU#g_5{0E^0V)_F}{9
z>gpVpmux2Y@gV(chuq%Ry({ECdJen_X39j-){z+o%HH5~6a}j1mSm{AOxZ%oQ9&=l
z$dwqk@|c%XHeGdW6!sP+a^`xe7R0wv46qxuevY-7X0)(sI5^ga4pjt@rsP<umX6a$
zPrUefvd0v($7F>(WXcBPR(;k)QM{*wu|4a@jlFtjX*bc@6MX1B+(b1O;0*Vh(G&0~
zI$AQDrjqka?R!WMrqn70rdgeE5^>b@BoPf|_Qi#>UIfbvmS8L^f>y#W?dv$V_dcdL
zq{w4Z4MH`jl)8-N0SIDm4z;%#44$_egLf|~G~3hO$DX<OxARzIv;~@v3%!5v4w*&H
z)FHj8skyXS6YJvJv>lo6x4DH43l2hZ`kKA=Z|)^>Bz%;y9hTnMj_;N8onNDE9h|*n
zAD_z#BLyz`gVS%(ou2^CDm;hfFB8AGFyvUN`F`Be*_FYje}gpXdb(Oo*7zXALXDiJ
z`na?sl(UiXyR6ZA_rlrPodA)q9g$bV=H+7P<<fOcf~q`X*Kw(vAgHl2*-it})e$No
zR#THVn`^F0y9n^5C$b^Ez^lYAZ|`zTxODv4eLnu7Kn@JdI@-3}W{pWhsw_FL?sMP%
zHxnW7Mh$d#MBk=u=*T+<w@~uw2NvKug6mo&o#mDOEKMPk>amNHGfbR2;6)M;bNfD5
z#u65iZH6{C4m;K3@vlYFrQx!zMVKCT7U7mI`OmGdJ0A_UuCOk(knG=u^ri~11KL+k
z=hZ;Ajd^w<nE}Tu)m#fRYwsU3B45e3tfr(g_P@*spae>iV5m`&%^Xc1+nrPMUrcCN
zIe7FHB%2KlHb0`oLp=*L5T^>&d3+)Bk}dubwxpT~pN`R8fv~BmX+Az^oBL00;hRId
zMe^|$^90aV7=%kcrOYAUS)yaUys0^Fh<@7uR6U>&?=O|HViOu`%%uGNV~8%!zcj+Y
zm3HGd`a^SorRR%C@rEp9FP>0MzvVvD@1FyGHZV?wugV(Bp!^|wVfg~&`vsCm$TBGI
zGW=v=9fpER;wCI{o(;iA*uV7v?c#G#-s10@CKY$5Zj({%KcB?}Q)$S;PE5ti`sP-~
z*mbIIcK_=WsfDdL(9N8PB0EgEu4qwM5@d-Y%_MR?y4AWrX1#0D2M_Z6&TrZrKD{n!
z=jtf*(|26mAwTwws7R)K>R!9JWO4!-A*sQIUiaK}T-cJTxNe0#9{i|3Z1sNli!*=G
zFlWaL5^rx_#wn9eQ9$XRmP!Pw58=CH>}_dW>n!B`&*`*^b~~4X5xu<RU*?*O*2vm;
z?#|4n&Zdv4s*R|s85nuTNE3o1KF>+pMe>eAyDJd-qbT5fy_0;Ye_$^V(my&Fkl{<#
zxykE5$Y?w|mBc$<9qH+be11`;@dR=zbF5uv=+?H$o05`ZWtDFn323p!<-SyIpI1Il
zeI;m>>7tLNK_t<`Y`td#fG#R1C`cyV0`BWBCyg>kH)GX`+Ary~xkIKL8lerYYxdv@
z_<s5Ez3LR8aC7&==`+m5+Vb*}__?`HDn^YVKWvkO@R?E)`Iu>W$||!o(+9p=8hJtY
zPy%oJiz-DZnL4`b+Vmy+D`A86EMh1Vq!Ixn6w=Pj7|~^j>VFHOzkmZc%!><m@H9Tw
z-z$<>>|R*vWA5xtTp`DL7~6Hq!~}rJnCGr;@*p=DFoKZxaS;i+RS)SNM~hHm9-i>Z
zfU~}Xgx}5F+1@>Wa7KllJz}nJ1kqzt2X$Oe$2cz~o8phPk<p2-OST6DjP1S2V9&H9
zM2b04qcp25OAKm-;gT6>u}p~xg4%`L_s}tTWF!^sgWy@*dpWhWde(9}Y9?7d14@IL
z=osku_{=h?;V-!e@0?#C02i)_k<khsu9&E}1qadIE(;`2tKL|IQK!tYdO%OF1V(43
zG&!j;X7!!pF<tzreC|-t8)34rSY23Da^%X!#@Otb^l-tR!vhF5b|gNdRzw6eS}g12
z*bxyDD3SmwY-S&C3DY>$EYODD@cAovOmT^kD_a5}${dTc|2hCCuSRcV<ZI^LQ_om%
zSD?wou50@-G1U2D2I}K4=OzpVAsy7Iq@y@RL{E&oP>oC7&ZKiEHGncnz>brXW4JFt
z;M-jEM$z@@`5Ci%1)G%y)URW6Z5wc{0EAL@1DW|+&ejb&S&t$+MpsPxH%bA$aj*jS
z7w<GG85p>4`2;-V0$-c&LxxpUAOH};{_*RrAVf=JvNGj%8_?I94W}|}j7%DJQJ|=&
zjcS#S)opZlJIEprZ(lrIV@G&M#h=u-Vsm}C04lWjQg%|NxxF*qgMI0~<mrYZ3#cD2
z13MZdQ#O^if41?gG)z{^Kuh@J(Li4kl$Y|pE~9|U>KAW)$%(Q<3pM7Q(_><Jo5DCS
zl&rlgl^GjF=;vwkXpFHw$(t)xmj;pN%{Q&Qa>>sxDbrxl05Bs23!5m0i}Px?39;72
zoA|+lq__xFh^JtxaQaNLl3(kbEh8UAcn2uGf*#L5(e+dX5QBs2GEAM|pS%-z7Q?>j
zD%54qALrXNTmqb~rKLr42UMqjW|c&-1IujJ*uoVKmsV1_I5`-#N<gX`tZ;{AiK(D~
z&TQy-XWZ$$WsldP)Q!KPIjZP8$?-HHWi|)>Y-{WCYKu6i6hY`dpZ8+_JN0-^H8n__
z08Q}De2LeFnu&aBXJ^Mz0!JXvYF>Aqg&I?NW%(dr5OpE|8@)AIy0JRfOoHJ8qoVvL
z-AfbEtP@Eso62edxa!8qYgrk~B%h~PknYaz`MtBrN^h^6!>?0GZdw?zB9wT{>eNI;
z=YR)<@=dJtFe5?W;z<%C^=b$tcnI;r7^oO1XqZCYhXINOML{AwOj?QEm3<}`gViqF
z#xAJP<bwKqFm6W%(%zmlG&pR^@qk39+F&Ggv+fd9yOlnrkEuAihb*w)OIUAj$2@`_
zB(2@6>ESi*?cqw4)a3H9TbPJ;yX_ywzH<*O7Dzld{a;#EdQMteT7z7gvKFI&c!mNJ
znGP^>{CMRB$PMKBw1P}ypr3$zcwy#<>?fR|s-}_zbsnCJc;CNUv;G-i$kj6LdzaNk
zyLbOiyqxzdu4OmrMM-8ndZe!}>1Ac5D<1}<GS4eKINZPG8?;~2MIeoi?B(R-ADhJ;
zC{r;TgoQ)wvp0VR<Rpe7o{K*al2y?l1I2cL;>JONe@ag`=}QU<3?UZcM!JQNELQ7!
zohO`Q`neD+=EN2~*{k2t2zsS52Ai5*?U!u4ydRFCM2w9;Gd%1{17}W(?JyeUV@>SA
z4vaf(6lQV(8sq^&HKyp#BcInl2i*^JEh+pdg1V<V&Ka*fF*?D<!}4Qpjc0bVvV<2}
zybDam>FJNaTOaYtD}^itf`x<QGXMR)zt+syq>_#*J|UrOp4-+sK;p%srJM?%ii>BY
zrw2-Q;NevQwr~3um<*a<aMO7jjTNxPGm@qL{6aFCJ?!D^#m&zM-l{!4A%cQ}5G-N>
zpZ(Jp{=#6l4y#`Tkt5fZnLe;TP%G4;++RPB?vkM%n!8V<==7wG{uVR@$PhsBQQPEd
zL$pwgI!1l)N~EM?#ZKzm9Nko%-E`lqkhj#wtgNxES^?(G!l`0x`9HBxkM#Fo<?ZJr
z&0in&CG+N}=4xmr)I#|H2vd|J^6$sPB+1mYegC8%Sb(3iaC{eXE7_@gEgU&6LlGHG
z{}{qCJaR5`JYBRVI{=pGRz-hd>&6!ChXL|&5$~fMS3LZMGZb=SrKDHzx_^#OHiFS4
zJU+{18u>&ttRO@G)IfxCZ+907f*oISTppr~3cQ&wvT=!`KM(Pytc(7jsPcSadi4n%
zatkx8D^_YJDMw<J2@CSR%_}6}DJ`zXH61Q0;w{oXbV4FBGHm=zW$eb4$hV@x@Ej+C
zyMQE!$$y*gyuFIcA9w}BX58I<_;&rBJZ1P)&zF~6@GX|dIC+@*d%MYAL9L7!iOo)I
ze(G*6Sa1m{84Q_P2d3uc<HS3+?|8U-Bv07mLZ+q#z^Xgrc|kh=2sQreO08{G(w+k>
zL%Am@d2M6Gq@VbKjIot09(==)E%6DWWI&TRknuEs^-!s-&bbeH{rdS<7*F_TKJWYQ
z-US%h$9uIB=h|+u&zjcQ>@V1vmp98qhKB0Y+Gl*Qeb&(+uv}YP(r6!ooZfuy0JKZh
zyl#Z?4j}Z2IZ235bwIN>yvqqJ?uj$LQuF~32%m<e$TQ{hvuT|thB=P7iBh1P{8c?3
z<}KLn2<Sk0dFdAInQeBm<Gw%9^)47ONA!Dc+?#+7`7fY4{0iG&%Xw}pzGP!8?}Ry4
z@^2V*tsS;O&Bd-UK*{Isftm$qHP{)k70t?Yug_f;EOXy?#mmGj-H#BaAPy1p*Xmv3
z2^6KAf0AM!Px1xKVS%}fE!ro`sA8tt$0u1tQ;-x4!QdO)>vg}e;iFyri(&djHlV^^
z4D~_P%JL8gn~MmCAE6p#Oj(w>c{{(y27z3JAHO;gIkdboQZoiYP}wRRL;xxvLPwte
zz!tx`ogh}^wZia-kGaushfF^cuUcz#bfU)QL~g?g=(xW1&As^~g8g3b?1vY`LChH6
zUwAZIMVTIyN9yLS$@9j=+p<(*X%9lE;o?ZXcT}~zhFJ{oUX2?%D(hgNp1g{7zQk*T
z`nP9ik1l5dmXb1RVYic$=p6>m?DWXl(Q==wr}uW<>!{%}u$m-xgL%k+BFtm(TOt`T
zj~2_P4uWV(fIIZ7fw?Qd{PClKIwKdvRes-&;4U)q1uqFrv_{5=If4X=i%Cx$JGaSl
zo{Zl>|KN91js#PVnyZME?d|N<2lOGxknk4+4h{zpy`CC$ARGfew4CCmeP63I)!ZaE
z{s*Of{2{^_?Vr*iEJjihM(*@*O(!R3YO0wv{s@3g&~c(eYVz@^si|E6%kK+g#JGn_
zLDuf~TsYr_l7z_7&goz;UZ(CH7d4l2UKyZLS~ZR2lx32dhn-!VMZdLShZES4r%Fb8
zS{@s4Jm{vzVNGoN1q|oLR&qmtK=T>_!K;4SR`(=`Rq6VRXJi2U>ej7*u??|luf&|A
z0aB1hb>-!Sf}#}gP#B<k+XbP;s=Y~xN@|({92}+{GMMu6+}th@00%dexuXZlc<W&}
z@Mz^YB7FfWR3I4%;P?Zj{)pJ6R<M7(PX=%!SJ#?aG=M-D7fu%i%4PBL&x?F!n%Y3!
z^QEj}ZePl_B{gnv5)4zx{nk+iRDbl*H9k9Jp!Ndt*x~{$cpwm_2>GmN;|D(>CEeOI
zH7WfLVWEscLcWdQ3(v}`O|11wL-T+Bf^|S7tq^uplABA+6%86D$W8AK+}51j+;xYY
zMD;p-AJ{QsqfAE<0KK_5T*kS<9r0yqbYi{50ok{Ncr1wE$r0w=PwWpkTaXZ(rE6-T
zV3e`0`UOBuAB9W8F-ai44kmIv475>QOLD!v87sZtN$NkBP}11wNOca|G@eZeTHUBB
z>pXkTL+GOw8L>k`LqkhP{szB_V~|07L7CT=s9R;dKnxg0rf4$8@jH+uBkq`dt#a=n
zVvUfB>YRad6s3RSakbxszWx(g1K7To`9GjSjSKDR2DgooF)q&GkrY0M&xSu!Uf*uj
z2#M*?2bv;bsQYZcubm=z4lHb}LZstL*78#s7WXsXA`7P4_&CBn`0Q<c2Ieyc?Dia?
z_0?&`4Hctv=J${vF$umDp+rFoyX8As*-38`OD>?SSY{fin!99MZ6cq{k|=}OJ@>hD
zQaUF85X>iMC$xI<B!&Z*S%ZiaN18H{Z*mflE|3p~vngNaMTtTZM5tp^grx5k772kT
zqhM(jn%vuPS8JL?Xoin*s+d0CNsv#gNzs`r>uI{8iAm3Ntp$zm*<qjo8a~s^;K<r;
z=WPi5Xk|URt1wTKIZ{fU@wf@m1L4PC0M0}|Rs}d_3@)=yL|jzooUKJJ!((jLUk^$O
zGgV{z+OIY>>Gk|CONd`Wk1^z+L~RuDOHTS@80u;oE<Urll{J7V42r*Vl^U?bGp2WB
zH~P#VAP1ZE69){S8a$y0mjD=-v5h5$c)sHO=l96)0igF{Z9#s<&c+B8uU)U7coRS3
zo_qa~Fn(gbYDl#_S7N?m4*7S{RH^icS09Hg$fGoF(6St59DbvV`8e0kZ}KR9t;1$z
zVG3CHkd?B=;&)P|^<RItthlNUOKsKybB|Tyw}nXjn)=P1xDo+mI6v-v`AF{5x?J5|
zGFTO6UKyrV)5}cR#ZIR<SL{F_cFNZckfsb@m3iwmIz4-r#R;0c7LG~^n)OaPT4Y~f
zcR7EdgA*)pgJWcMT@!Ykn^>V;e51H{41hpyn^AdH%&rgI-;o&GG{;RL3vcj4$sfh(
zv3&i&4S7KQUgMx8ofxPR=IO|V9xn*>hx)}8&JFPJpX{-Vq$%@k#<PV(*KAjCa%ymx
z0gAni$gqW|7N_TL7bkb&Z=9>H@kE*oM#w>gUJ-Kh1zx$qTMo5WH`WMSPaZvdqsH`~
zI(cP$Yd;bA_UEE+02+kjKS49UT^)bmFTWs}-{=h3BO=Ma{)+YgZ7X44gn#7*fKR!B
zcmB15Kkw`R$5s?y{%xfG>v0M9(a{?t2=~<{z1HtW`VB+<!hR05_?*g+{uM`nB(z1Y
zYZrj}pX2#;wf@-tf1cc5Fs%Q%)&J28mBOyved|rXNYN@a*`!E%0v*+0X{tv0cpmrr
zPxK`k@RwS@5Bm4}8UhKn-d~K5<8WpANDKjvoH&l%#dw$_4nFzsQ~h;AZb8T<-_ZSG
z5dU>s`Z$S3-qHCW@11%wjjgSbboKOHg;zcfzwyTyB-4d`Gi2M7@+?^rwk2?V-@ZsL
zKq!v`28a>3LLeb>cTN#JGWN8!>2N#Kt-6+M3G>MFdzEN$xm{f98n8+@>~QIi*2<hP
zFq`y?larFkv!a2NgabM~w;#x%q(wu6Dc?t4)+BQG7uc8ZNRVYoh=U1!vEg&R;zT?P
ztK18T&K(0S=*OW43wc5e>=twL8IfLIslpQg8v^8(c*X$Po?Ao*toS?{J{{Dgud!Xj
z##VaE@AaP4O*MYw#F41R0?R{db!{_whCBZjTFA!X#D-0#tn?jUBL>ySRMdjwSDIs!
z01G;k@or(@Fz8KMTr4BcHQxi1E`nnPH&yQn$W|Zh&$?fz71m!b1LKTNohx1972;^~
zSN~uw?ddj~jg<CsJ+Hg;A;#6{cY_0DQUw<VG*IY6RLe})_;#+hlU;mjfoekfL(52y
z)ml*O%=L&3fcy&ym^C|AYTuPc4wsn~7R*Xy4HeB({PI>M&_+vL9TB8@U$ti4Io?*x
zRbfyqB+Hr<21D-vY)eGEo+|wH55Ek$`_)i)$k*Fw0(Esos^53__nBY{hmT^q*cAoH
z1Q6@%;mCKw$mkJ#>ph%RRa7r+kB$$*gaC)?S$0Lj=Xu(hF$hlgs$Y}hP(-Ui`FzPF
z)$?qe229MGx%^08neRb4_WFn-B0>>6B9g2zIxZmvNa($n4?6&^aQoJ?<s?hU5BsVv
z)jWF_0uaIY`S4O5ROlHDI{IwtupF!(ngHIuD_}<ylDT=#$y_K2>N|kz0j83HkA{j-
z3rb&apHl{m2Rco+<e3ZAMjJq2ulM;PD_Iyf4WG-t;p}z8411QGM8@E5HZ2o;W0?ua
zcOMWDLA6SB^HuGt<qm>_Zr=*4s2DBHk~1yWfJn$l0#}C!WjKhF>9U!zjU$7G6mMpz
z%z7V`H%~*S-pBy#ZsqM;I0J4FLoAa<%*7of*}nE42ig-F3Ba6T#zAD#7thD?ot#{#
zb*QU0t9IiuUP&>>ac^*`!TTB@iNj{)v!3;YkT{vqh$RMKUnt|^PUUg_Zpo#I`KseD
zc8ZhU9UiSLx7!CaXEOLG{y-r}L`sMf7BtU$prxhtmGWat^G9$HPEHkwzJ;ki&f5UV
z(^1ksQV5GWUIOjeKm9C^tsno*+(T&}(YJ7cjHJcmLCr?Ld^+&F#X3@H=$_bf6U~cv
z>ZKkYHA5!dfb0Ntey7d!y?dy=9SnNKFyMZuQBfU*>B>g|KI`}(F`jjDq^CZ;eyckW
z2U_o(*Yd8_8xz9vn3dOPokK7c6VgmMSCGu7Eafk29lJR#O=XbxXktes=e?gcW@fdU
zTSLP&P)V%xr2tjWnP==8VJVakYHZv+aW>7hwwi5ZM6Np<Pgn{Zb40{M1v)j^1K9`<
zy`}UO?dkoc@(c5+KPLeoWqEI9d71S=w-Yhf{aUEQx*_1{;LUU}h0Ud<9>d~AdpB7X
zBM%E{P-)|Q3&qN<FLAyKwP{4bKrfA&7zI3Rp#j%Xh3P;<SH?=~{7dY3ev{s*qITL0
zVef^Bk<2z^2&~$@Ct5ngp~N9hX1Sa}?K6F6K0B4u1c$%Y3tdesU7@YmMFRZk26ZkT
zFbWc=;$)~dmP0I#k3g=J;vm2gmFS|!3U#O>o)zV2)Ynh96bxpWtR77a(a0ShIwJV?
z8P0-Ex0heX#AC8J9e#CrnP2(2poZXy2KZngi(OgnWoUFuPiyEEe0*1cPAt8+JcsqB
zIWcx~Z)1#CPIw>30j1=1)SHd^6cty+6A1InHoSp*PFs;6fgN-xfgQN08Q|-bSok$i
z3+;HeD+UP|w^$jmIXStCc#{BaF6e%`3-TLIs8Zk1NrLK<3L{+5%UEA3XdH=^wHTCi
z5MM$Gbq5DZ1O1lfW;n*C5`A=xs{U__TA(ByAQ5_G(P_fS?^K=OsjF#ED$hQ|Mlo}&
z8L$L~1qc=v$!7P$)^vG#eLhfU5~;k{)BpM93w5rpEO^{Er?i9`eXp+t%hzXIyd+?!
z@8SvNdh5U!8AlwGA-WSF!9#@al4q?EAzbj%`HWaVRu}5lMnp#v5aBbCl0IovA63u|
zcEbBrproa;g-fi?t)W2T9ZGwQ2V;74r>dNdbe^R}mL4og6TCxS07B&g?P?G+7>v(s
zWnngRIZh)`F91v}w;+*C3BZijSm?4bmgofS$>UXruvndUzq-EeN%gX1BU-@5MtI0i
z$wtrSzH`DC8buNi7>tR6j`&T$MzUbr+F)xmZCrialOT2nIA*-&PxHp(Z7XLzdh0F+
z9ZV{1t`d6ndON#sLH;Z1oyzNEFGAS>bKmZNb=6V<sJB88>9sIv!(U&oKR=%z7X4p5
z6~1+sXO!W);3aKoW!B5gSVE<fKVW?}U%J1a=-=8Z5;pZWsC2Let-V339oJq07MELl
zar{IV0Q`&0wAAy=t<o`pZ{Idt&zJUw9=jc&1-8f}b2aO+rSN-~RaWwGFuv=W!;Vjm
zOPUxTmCJk&{20Iy0MsYTK<v<ArUX#6b9eVb?P@9#BF6E`%AD#ZMW$Z<nb-58mDV%g
zOU~H+bYdIz5Fk7<-7u2vrfKc>Tu;2fb*%6{x(y*=;{Bl9zU43(aStx;ScP+;t^pzq
zsj-6^E-!}w<nJ#X!}{PJn?DII2{u?#E?4hoXuV7x{^%cU6El6foZF*}%Ino81G$TW
zE}fX*efs0oG+!h7y?b&pl1?yfINaZ8tPuV1BzkjFv&5!QF^3X41H9OePfonA$HjrB
z9e5JQ3Uo3D)_VB`VIe^@;q9Xt%SEB%!<xXr<S&KbJMK^dDhU8@I~^b9<RxhpN=8Dy
zw2p8-wweH=W#v+N1Wl~D`qphlTHvkv(7e=R=~GWZf3bQ#)l|R^kc`S>z#|0>mP4&H
z!^j1q;-h7|>7If&0_4ZyBEQ+-Coq_-rXsWELw10xqt@RoHr@<q1ZrdI@#<p*TIMzu
z<?<+8JFAj{-S0bCi|qiKV8GcG{^A8lD+Nxxu+Y!~jnYuLEUPp7QWzs}z!7f*({V6T
za#~I7J%T&$Tyjxy4EyisU#Xmav1pn*VS_mh-38KIh>(y^L8QZt2<-IiPWvKT7X>|o
zO(h36nCu<3Imt(fkN8wXdAJBxca+-$6z9MUJevOosBe~&s$-@4d>R)t$#s8b$H6w5
zZ+uylF9GX_Uf5{H6%X8}_W+=Y33<qd4mtO@2%wA4BVL{tl?Db!|F0BespO=@cU<la
zfc90GGCYw8$l_iD`4Hk$UERXM)JC9Uf{2KS0C{tAGO6935_TpP7uWEH;{;%icw*3B
z0-E@63dZ`}>$q=zd_bcs!c_NaTqt;!NdfX@PbjGG`fSDrVyu5v>Vv=IuC|}GR6_R(
zs-N3f&*)*&@cJ2h@>MAh?`iLhv8aXo)y6Jj*e&Me0KCUz9VifRfPX`Z7un)rY+z0j
z9%}VJyeuv&S@tiioT9a;YrQsNZt$S~Rb}d6BNn2*Bz_>6xea+SP)xv-6fKnjmcAvU
zv1Tw;36QL`th}xJsXb+e$F)ulE|og7BR%L4ef@<{QeH+<Qqt9(TK6;TVk-$#S8XR1
zU7Ij1>U!5}Eto4(aos<dj6X9F$>$Rj4Jl;B62mav6}O-Lc&~2!qkd8upFda0QX=dv
zX#UmYkr*egRPbJx-$yk~nPX&(n`;>URvZ-XQU;|k`i%LDor?P>;d&#phDmuv%mjcT
zS<5i#qmAwa$WE1<7IN^vk$X^sj;P>`6>3q7kpXX`R9`ab>IVBSFGu(QD_9U7(B8)c
z4=UKV7@yr?`)Yf;p3hJJQWO1o97p$jEsC)<C+t92?kG$V8ykCcVrqDB_>&?KLqXRF
zu)gTAkWd@vbuQat{=+e2u*5Z$I68J5fZ=k>IdXkq^&POS1~L+b2hd!cBSMnJgxs?~
z<(5wCaZE{@o5G}(95kg%6?6Dqj=P`wkV8biwQ1Mc%2AO-godUFIM6R|*H_6paT49L
zkJri?lBCiH7Nq`JGf)1yI`iDm<>s<(<LF$800(UAq?OL$%`-SYiuo@*31g#*vn+LV
zMR~<NjC(*}8N#YmVs%B5)fTENWX1svl+iC%|C*L&rP+8Z*IMCNC0IBkiPuXiO?isG
zwn@JPX2}&TCE%*3t7PE!%qBZGCw`ILEe}<)%K6CNK`C7-!`?NcrKL^1ATK+P=aO19
z>>;Psdgq9R_m#ZQ?%n~P!+Hy>r(_%{R+^c1aldolo+(z-{kl$(q7m3Px+X31m@|Q<
za`0dUr~?4yL=#F@VRlLG`sCeFz0B(RCYA9Dkh@m7&VlKVz^-z74uH_9S_B395%Y4z
zj3|i~5ky*ibTySI0BlWGTDy;j%vxp_60hz61`9ZX0t$_Z`PI~rBXh<!OqHRKqH&VQ
zj_iS{>MTmAfjzHfuJL$}$^K%{{yrcR8-Q*2t?0+v6}ej1xv3OwJ~>jMiQ!=uw-WL|
znSz`GuK0JL!g9IAO8EkO4<aMkZ&cZ&V6}1TGOm9X#)*%B@#5KC0r{7q@#|<#F2>F7
zbkD7>281x|nMO6OF(e@U%oIP(gG+r)637ZJ`bJ7-eY$ctKL{+p(Bb!N=-S<7iQNF{
z!QAyn2epk(kr{(8Hb(x$f~4ZI`LD)344-n_zaQM%vT5;Ocpg-AOkkx|q7Qs{-wZ~D
z1i^qC2#i07chsew@~(7*HoJQfg)}+Yv&FxQAzv32o|`6czB`YTNkuhHs4N3?^0V(n
zpFfZ3fxmr=MD{wZ$vbfhD|ly0J4Awtj4Wl89L3)c2rRbppIpCc0xX*AB6T?3pN$~*
z@6;q>L$EL~WRDMS`+~WNJv|*=fINli`pjLbZwQ1%;$d`UU_NDv#O6*H^Lxe=X$K>D
z^~C_@x`ULMNVLQ65e$EVmiw9hU>R?Uv6hTDRl)6|SK)TKR7O=I{Fjf#pdqkry16+5
zZXEe<H_S!LcOn1K(mQFUrmD*%YTVqY{_9Hul2q8d-B$ERGp!arB5=N9irrnR^^}aA
zh%e0sh9ZoSU5?P?D+}E>U!Tp}`030l=!#zwxt(qA0$l-My|83MK!q>C!}9=#z$bT8
zOxZHe*3>pBcd%x7b0f~nJkWZ^n1vx)N_sy6acEmdHlntJ*w}%Drmw*}RLS65VJhG+
z)ufmibt)8dN2Zt>oi2>WZ{~n?20R5Cp$MrA(1P*v^Z$k4TRMI6eRp>kMuz|~F(JEg
zX;cZXz8o1F;TRrUTI#d0%vQ@)HsI<4o}K!K|MBb?7k@j~w+9Ry!45~DREA<sRbhoi
zIS`WGhJ$+B&RL|nSHIYc`XX7t0m@3}FO}}@?tXM~q`{q4q5Ha-QW|{C9V`V&t0zY#
z-@=~@Ki}e>ZM^V6_A55;0dje_8_%yYC2&Rc@|(mf1Kj}`IRw0njzGx@Dl=?9-x}z|
z^zB>oPvw-b)$-iI2yGw^1Z`5fVl=9oriBFz_6CUTf!pe=Gz;Ow$B+E9R8=57K&Q|q
zuTaQiooW>J24Hag4hA9!4c2XC3ezF@?nPOGk73+A_B$^W((m{$H^2?kQAF5+B*b!d
z($1;~2|k%pgS4EVw9F5%0~c3z<S#SxU*rk_c4>p6e00%XUDINtVVZ9zHE?>wl54zx
zE^>S3j5M-CN?IOR(HlKhT!4z2pf{CtbEmS}D6cTLSm&$W)Wy=QcO@X4TMAe8uAoq&
zWT`alzM2^FEj;^ie+LuBh4}mw$j;U0oyA3wdqEXIjJ8evg^S$1rpDg>U@UL;A!#(3
zpsR0OPs4{I({IN%fElF^IquT^X`O@!T%F$aXY6FDseFYGA9HR^M0YJ1`ujHn*MtLm
z{5viS`bGOLKay}>v2+wjx2gru;Qra~G1cKr4W4;95*mL+K~<|4ol7Dn<Xsn+zg;l$
z-Osn4<*PyuTyu52RdSS51e_uQVB;&tSFMI+JNtT#I2VjHJF8kW;R=S4qN9>V>OF77
z(-cF1!hmVTKB<NBez<G3j9gSOc;d4wvrMe5bv%Xjb#+fb$%X({yrS(GBEP1xOK%Iw
zL6}o_idg=~fmIP`U}<EBq06zcr|tgcM%L90N!WqIG}d9r7BXTT^*09+a4ZmRRE>&C
zYB~PXE8}q)l^D`iT!0Iya$myscKZ13lL9S}T186}I2^2~Ma?Eilv<wA7n}Q#c(QgZ
zu`$7=IRF>kT7#b2UjAd(<LtUHzc-+rwp_!gf8)Zvc3~ka04~b4r$33-$-f-?q4}T$
zR%huimd@**4U{ez7>96wIO3PxqPq}E%Jcx7uz=7K#=6KSY=jUPGzE4Y7ZH^dm1KXt
z8K1J<o43iI+7TJJG!l&m<T(DKtzwbI1)0de>DOARSy@$6+u9~CDJ4hvU^ADI`I}TQ
zNJa%Y{b7ms(9ce-+N9Z4AVqA?y)pt>S?qVp*U^SJe6;8<78J+l%`ncjIF1K|>+Xg5
zL=m7QHpfRsKZ)()o0tTq5(OSyJRI36<NRNYSK?9U*R*GUW#?E)nrHs(;@GormUmI}
z{F*#w*c+dC@Ch139MX2(&;UFi^Ql1A>telDQ=9(LAb{Y9sF-M9PtT(manWzs=?(xE
zszO6T^t)<t2xkxD4sU*<Q}gj--DRznri=GQhy)K3#F6Mfv?li2_T=mOdg`-N8S0rO
zLOkNJk?~gjVxQ~YT1I?LD0E_cpf_dr;oO~=;MTtzY%pfa)U;Jz6n&^F$egf0kfK&%
zbc;($7@ZzR`R&^=Ik`85cb`!7ohJ$k8u#jveLQZPD={nUvu2TF78(W*TU))A%E=0=
zt4{3I;=Zjt-YFE|c(3UKiisP4%s_s^zx**|7I5w9WMIl_nZ!Z7<rh#H4@w8X#GWB=
zv9g|}&1ipJ*jrv+Cgp|g_lzY<A8$RTo(1LvG=6>_EgDEbgU?gGsd(#tJJQm^%9f?~
z?^*n_=|Lh6pbe?xxGv7uirRu&=f8Zwf`E|bCW<tJk-qmuy8s3T!3_XU0N=DBla`kw
zHI2_BBc<{O&C4O5-qdcjAyy`wM!)V)Ut8boUn_eV9v-GTPU6k#1P*QXYB?byN+#_+
z`MQSdj}v<^6t|3!y%q`uX(y%ZUSe;(ax-4!y7peu*utq}!7a@CBo`7CijIOtyh;x7
z9gSITdUd_V&c<eJ(woB04Wzdq2_|dgK|ICWdyV`Q)<=&(W{rWfu>_1~>dfj3A;i$0
z4!*It<YdDr<Dr?WMeRV~TE@kR<5f~p;xKc4WCLSVRWrE*QD{Fch5nAIPT8#PoVe~a
z_5MixNb#hU*^Rh#$BB2FJgp2v0YUHS{6n&56p6CSG`3L$6a`Jj`ID!}fk@^Vp9>35
zBsvi0)lYVtB0%l}cBCRNiM5qeM#h-H)E0vWkkt%)e5{cl)4T*;U0?azn0bM#FhNa$
zHnt1E@jzvV;G3()M1YH*uih9gOf5~-Od#DSl;gnbzWWrU^?*K9nW(<x<J8z#*y)p+
zf{Nql^1?MID0aN#>6hf$pNWaYI_^dxI)x_vgm7u8fS0%`(RjRW2a1ZB*h-^e=?x9k
zUhZ#k`qUp{ff|`az*FIGUX5B(KTS<dfY_Tl5(Re@)OiKF26qCQR#&}JhdR0hwh6`(
z%UzOeb@|8nw7iuod@^2{Rpc5jmQEesk+ISTC23bsQ@V*7`urJt+le=(s;Va6%L*r2
zjF@DVW+s*b8`X$yEz#!Z{?u9|>6Xik*uc<`ijMcelG+&1Y_i4Ixs06{WVl(+)CKKp
zN@Z*zRx}H6aB@*mQJZvk%paV(*I&0cMTFlk_OcF3l@4{LRNot1f08KF7%K|Z?zk4X
zjTTf+^dz#C-)sJjqvP;P<6BQ{TwGf7H32t~t4If|eXP6J6C+&*%LE0Jr*At9qogzL
zNFU4Ak$`IAPc{~;Lh1q2VE`z)Sq%}-&&_QYV4O`05{!-|H$#_;X2^J}8cp{GSF2p1
z$um>^FkQZZN|YP7^0`?f5~Q=sno+ab{3?^XjL6DC>Ct_w;=)wLHB*>t%LIDi28eHv
zn;f^(<t!@D5Ef6n@hJb5#IG1P&#P1on|)1jcxoLzEg_vas;n#2WIUc38FfW4R1REF
zXu(_!XAXWk%(xiihl)w<<t*1H_AY7!v0aZ-E^GPt)GeK3wSCj8bL<8N@oX+P34oO5
zfG6Hz?kg{i$xI%vg9O!nfB%obba-I<LetfS{Q+8p;*f-~qKnB&V7ho7j#>Z4$<DY+
z(FYzHW?kw?uF)}Z5mAJvPEJO^#|)6g3`KP{P10DF+uO$sbd4%p9=%h5C%4Ut9W`=s
z2{U3)!x;)49#J+B6_vm9w{&^=vk%6lgkS15qmLlA>!ux;UR97+FE1s<4l+%3uKJf;
z(3Tt)%J4|bW~~>l`iRU<SeE?Krxtv0e_lOY(Lx{c_NwBm%+``U_wh)+J}$AeeRJs}
zUUlI^b2g8AA#xiBf-kE=kY%oO_QmKj{as|8+yEMOhY?#mG}$`IIvZ4@8H%!>JivUm
zlI;blj29hGDRj`zTZSzAiStYXsKjOgBi@yL0SJAN9swXLM*NHLxAXrtcI-7@1gS8C
zH6QfLB1r@xQk9$R-ck{<u`3`j>H%Y>YJT~4Gl)lmSyo8pTvBwlzHZVF<-CmyvPs}A
zZSuTTKA2Nms`aKFB_Qu6N-7;xk#?E&Wxc4#!K}R$5DCEiH*Re((^SC$B&()61x!&0
zzH96ztPkD+(MDMGB#ZG+qRC`%ZD}$-k@4BzC2@kqxsvL!#I?ZAJvifqZ?koL@Ttn#
z{I7<V4+EwF^hhi-7*^}w5pnW{HoB>Y9^HeL=A>d+Fb4OiPL@NCk0OOL2D6ptk;rqt
zmcFA-pLy|qTT+|u?p42TEJh*Q1~YY6D^TBAO~k`%@TpJhFL6N`j2bV@G0oN0WBg!+
zq3t>a0a8U$ppjk?Z|FYWsRDXFK%60+G#Zmh7*97>K3H}0;kk9g(cgNg?#^@TS2yY6
ztZm#eyqFvdtH6BXXsaI|@N-)b?pqm5L80)|xq)(2-seY~7qd(D_9v#4OpLujxa=T7
zhWTfx84hnJntb}eJD*yvrdrx)MKgyi{eEKafK}vh<HS{DNL-IG9P>>Wbl`(}+I#RA
zmyTNko2ZFN%HlT1d*u42Il*%CkRC^fap~E>M`9eh*o!c}%*ElHm^INIX40z`K;P<-
z{lt=?UYI{~z?t<^rbb6cbFp_`KF|iW!M)%&3ya6FO&5K(L>sMIR0BtFKYAyHoF2S;
z3lFh|_-ZjZEbm=jB7!Hv=P6jAD(cj~eDL{#@$IvL!Q=0j5@9FDM?)_|RQSvhKy^8w
z=eh`v*_6Zl>XAUM%%#+`Rrqy{qigiIZkL!Jh@WjkD)cv@s(HqtdOU!xe|D<NdVF#Z
z@<D;#@+0xBSK?3g6r5CUe?NNJvWg6hBCoOB<(z`DgMUtrc%K#G)B2SE=&g4hZLGcp
zt}I9g{?yE-_?-DDj4x^3V;k*dolC$$VHa+yWmLi|<x$~_MI;bM{;V&jAthztVixV7
z=y-D?p6iJKKc!;Yd%&-Wu(buVi;K62r6Z(_%o2k{KK=IYY4}TRX@>)x#<iVI)6~;*
zz&^!8IR$76znBhla}KMismSqHew*!J7tK*7`(8^!!5Y{+C)Lti+b}6O`lbQs5=cOk
z2O?-JazC>$VBLt=L8<xWKtN;(?!K5FFJm0h`_%oi2yImHH{q^xN<r^B8;0dBW_HN)
z_K)EH-!kMsTrU66IP{}^HRUqs{A2#Z4He(-AZzpR<==ktnG$T{&S7o6jk|upn!)`m
z+Y)AYBc1rAInYryCv}sM8eL6IyiYDxs-6y~pi|FpR>in#M<rmgcXIMziXggA7_AEv
zx$Mzn1+=^p4{dC7tJJSq6<@|$DBt{`YvW;o`Su6r|B6XWIIXp9`pOW?jB$8$)qh93
zaxDaN=7P^y@J2L1M($6u+pP6;)eZ?R3NGX|Ej%<-9?7>NMvU?Hn-n@gM1hs<ah4qL
zsm?@FmveCLxm|*nM|lMY4ntjuvzNAZNQdG6-q90U#?JPng~e_FAaOsq2l+vcrCjvE
z6sQ5!)W&*4ol8~v=urJ55`}zbE^h;^9q`#^D2JANgKp{B%YmpxT%u&4Bu0b)myLbA
zOqv4Zsio&@pQn00x;p?86Keseb1WEdNF5v<!Bq~#<$$O42D^FHRBX35I4}Tmw<;<)
z?xRS^$sX+P6OlY9qB2`r=d_Qv+#AFjGVWeH&<1Ar03^VGGSD(6M8`kg-CbQ@<w$tP
z7068}`xh_C%xKMVx$I3y#<cOu@`e*MUdB9GxY(74kDHm>#~bGQNsAg}2Q+oQy&=6V
zfGbWxO$Fg806%y{ZiD;i9_s&A^i!tnjf8(YdG_s_w>7)k5MQw@zJpUePS!htBF@Wu
zz*p0t?!1s#$fZQLcu2?&0_0aft^%`wi!%r|Tf4WM*Uh+*41WVZIJ@jg^`08;XK`>|
zhHcz|zXj2d&e?`PUkThqYk}ZOz(uYonYy@JgK4E0a6|~O8I-b>0<LU$W>m_AB`GNx
z;YW8)<Rk38)<Flr0`6>Wf!w%SzV~mUesMz9$y9))0C2^(Fw$%5NqiGBA7@oA2+x5l
z$P}BdaWm*z?z`u%ef|3Oap0IaCmfTECE?xUi({R7&-)ToKnT)ho$S`@h&)a0|2OiE
zB3$Fw_vx43L0Dc##!_qT%mLs8;En;7aA@_gc=R3$x`mm!wS^hT_gU#pAza--^!=w~
ze?!((nJBsGgF+4fsIx*zNiDAa5n?rAhwb?<VY`t!WppUfJ+XLYC>tf$-w^D{lf)|L
zv;C*Ksg90^r{R8}2nIfp|AJRrV%u;f0xjI$&6JpM+_(PXKr0ABt-#X{+<iz$$S=Kq
zB_jVIxe-tGV>W3&#L^+5yauNt<!`^qDexzR%#!SPK2Prn2grQ^2m<0>AFvUpb~F%k
z)zcB->r}%&E3}gqFz;e%HPF`K<Ub&d1|rGGA9Hhadwtn|&TomKpaL#`mtNrv#WhDL
zS=i3@90gHLB+9>Vz3(*MuhpeKz5hdZea>6_UW8IQBONw-qtW_9=j46Yz8VmNL86r4
zRZlB}j|RDij2PTXsR|Z;kxGmVtzP{SMq=z&_x>%gCfS}c<w)UoUfk@!X_|WpJTsoB
zjX!Ox8ibilW+vGKe~G98lEF(73xwtI+ei=Jwe9tp7B!}dP+pwfadmSe=XL$!eH&xU
z%oT<N0h@Ff(yO3?Pja#^$@}7DAJJiW99TIMI1YX#3q*anBM`{g+RQEvrN4Q(RJy9q
ze$xfSIM4Xk%kpL=625!&p@xqyQb{qeF^lT460IQw>py*HXy9YPt@Z79L4g@V4{ped
zGTS{x$m*{UjI=>hkjZ$Hg3;%`;;_8jofK`xLZm?iWZ*a<VlGwQY9=Pa^T~pwgr#he
zibIg6jQDqu{XzCX6UaIu{mD3N9?c$Ra%SSBBHHwNz9zxEG~Gp%CS!(gHZAR$-%S7X
z2x!H@s372fVx0Og29k*`TEOe8v_qsD`4;3anGJs0w&JuTK|z7YATXpvf26Cg>%!$`
z8A1B)2aJ?h?%P_m?!1jfrVEKepsfc^Sk}_FV(AUuN1YalGvIuIAQ~hdK~}f63#yzf
zj&dzj=rcMDfv5t24=zrlBclx^$DH+Y;*^mX<W+^=M8-obT7zTG?;s5lz5@>M5V0-W
zs|_{gl_i3Pl5MbIp(0(NHNoFBw|19-J-PG@_WR2jpJc9%6AKYO6l6lZ#Kcsh7r4dH
zk4|h{ub!k2WRGoNZcd^@1pXNpz_JIiy;#my)14evQ1jUC&Iu;y#lywRl9P_@GPJVl
zIlcq+Ec)cS7t!)b83V4VsZAFiP~32{+_t}7B;X}=KuG%*uB1?BauJi|sZct8PfzE#
z(;dPClz-9)X(s6Y0Kd&{F-1e84?%s(wtB?HpxI_Lb>U7O9w!r{k#Aq+@Jo-%h~x0C
zTre6`wGR%FH~bm7H1ib&HrM`LOov^G+caEtS?OA-epa~$)drr&DPtDcy?hOJ?|Cb^
zq~5aW7Ual|;Wft?3a*<c(LIwa6ry)hQRp2t)}sGwmeOhmI}r(g^JEJVBdDPudR&R$
zf<WDNb<o&+gf52oUAA!V?f^POLN3`Is8#G#fh^b={F`Nx#_95h|F|WY&uxgU<L}V(
zq+bt#@Phsy2Hx6cc@U9yXyEwmm*e&qx&X{kCT{>l2l9|$sn|;JU;p!e3qNnPc)t~c
z|9%_%{`db>J^tU&Mm`$8k$K+!U66s}6Bx_R3XRcYdU(j=eMn33mhO*ID<DYSxBmd6
zIqK$SfYUnd_<0_DGw}0Y=lGWaV1L$@{`L+3vDu&1tbb9U{$;CQI>vupyZ^bbzijoF
zYxm2k{KqG*@;+~61Y;VhQKLKbc)~lB*#h@D!Yn`x9JQY+12+)|4E6UZ{ZetR4iMj`
zkL+>&`2s_h`b9e~YIKi6&Rg^c3x61|flV7+BYJ2v%8>8x5BPOAQ+CAO$h2~R0YP1Q
ztmHmIRM?UacjHdam5D;WEeMQrrUqLs*48M}Mv)hPO5rq!-ofG3MfIOwzJ^^5lU3KH
zhzsRJiVEGosaNTvPZ#J&y1XgEz8SE^hdJcGFjHoW=U2Tr`_e;r?=3uw#;@s1r|-?=
zGt{McZ-9Qsa}ZsL^OiLy#p^lCdTIi<OVPM{Ti5OSyCHW2Uz?r2N^$bJlK)u;#Qq!H
z^~E5poXxlg;h}&?`ZxXS{=Ns`AmwTu3L{xf<m~My7Iq?k2bi~vfq<A!X2t{w)Ni^6
z-@Mp--dJii*hd3N7B~y<)y|(qiLls0rzM}ogU8_=px^FIzn$7>3p%{%_3*9@Hxu6R
zVtd3in)#ccclV7IVjUlg<_(*k_{8UwKYbe~@R_t0*Vo%z?9{K;Yl^=j$bb5(Nj~3@
z$;i&YLVG$ugpZ$CZ@ILtdy`djdSpYuq;8C&s9;uh`SrHV)x6qH-9@5`#VAN(c~^>~
z`_or#%qD4bB@7R<2~Fq@eEeS1%lkSrk-i`bNP=p9G}FCa?u0`h-!W5_d*H<h!m~8`
z=#s2buOuh75_=mhx)Jk~?-JL(ANo7IuigDp4BvK68WEKfLHO%wZX>~8v>Rdva`cZ4
z%}iXzO-4vA#=Q{<jbulWK&{TJD48<k0#1-v7X{k~@7tB>Giv5zWS~JKq-iU`QW@9h
z!SV>c9fk!U6TZLysggmn$W9wRW1aokJjn0FjII0h36~wEvq1Z{FNmc=j7#;#2Nrhl
zN1n=mq44aHdzt0s<w6*B%3PnYq(IakvFbwhvPA`#VV(^-Ix|Bi#+%dS2Z5GH3QI?I
zrAeFVOBBL5l`9vd*u`-jhP})h!0oN-d^LgTUNsONe)4ngq_|*-MsY45bMMQ}9ts!Z
z0Rb+^+#q8b2dh_Ui32KX@bS(xIwUxT@!$xp%Dq|{1aVVmF=>?@0+qwj$;r!l;XXc8
z`5z}dlj7gxUlxx?FLBpQXkNJ2oO)gxHu^SY*;^SJE;&||%h(#Zyvoukj138WR~qW0
zAfYQC3tDB$js@u6YvJYs-G=_j5y?!&`Z_O>=Y9p&+xG|dqALqr%D6BOkC6Pu`d1y-
z0v7Eml1Z>6G87rCb#~U)cM~|`MW`7T6*0!>=&92#mq!XhM_&X|u`xAN<_3#=Mg8e_
z7b7^ku;B6q1}SOkU5M3_5TW@s_6NOv!gQwPB?NgoAhi3m<x?Ve0Z5n71GNS*ejp&j
zK<AX47@H_0#K^D66bZ~Tkf(}L8UVi?U@ayp*Wl-``<t0R#_O%P=<Pdjpf6Y=!1sUi
zw$splZT0S74D48_@c(yT`r42QbykLK0tYV_Q$b}VH#Jk}H<$Y;aL7ZD^9IN|DSOlq
zxt)zI3is2=EW$kKha29SA&#7o^bsj3KsA_az40Kf{5sw*UpUL96c+0G=rRY2XcVtU
zCnV6bBqHd64iP^XD6N12zoN4ImalAymE!6)Q&AqF&|~lcw7gdI!L2u*b$jZE4_UYb
z!L+v5AhQ6Z@B2OLTY^5(sNrX4nAH9;Fg*f9y)-(W$M84-6DGgb?u0~kATEvw>jQyr
zs=1^L#6a=8vACI}#v){JOoHvJQ>a<zxpWv$2>Eo~paTKn>W(nlckhByxEpPy6!)V(
zEoR46fdUC!{OCwvNqR_6tx6FqO|=jcl`aB2gw?zU%iTTBc6MeKR^_~fAa@=(3_<6G
zL`J4fnk*J+mn8K#wgaD8o7Jif45-M+Ep4{s;+sND-2wX(&teC^nVFt0zswi`o~irc
z;XoQ)F2(7!{QqptwQ1J-S)iTk&Bnl!|MjN74%t)T=@YXjBf~>)I`C{0fv4HQKY=IF
z2|s_mLFgA^cYmciI|uMafuEnd@7%ewI4P;eZL*JAZ%@}XX&&I|bKU+P5@NikQ-T;i
z%zU#u<K(BFo5jF$gKpo7VrF7myIo33YRj7m8v1O_6Q@po{`6_=mJH7d7ngAN-&<Z9
zKNlATp1oXJvgLKjF3z}xW~{(-7G{{`Rz<&_YYn{1A{=;vyfjZ+p`KN{`aHBV9QJ%r
z_x)5Dp)^e>Co}WZX?+<nuDyHqt}Ry9P`Pr~*}%e}K%FCW3-H`6EfKCgtq%P<hL%f#
z`@GkNN%OFowJQr$Y%wvvSyKpH_r0i9^7*dfh@YK*fqTTJ%(1$fVN&Hk3%JTC<$`3`
zzCT{2p{;+-`+OH0nwY#m8-Q5Er~+J3uxa~p_vKgF+FO7pJ*--}%4GIg&^p-3dsGh#
zJrXeUjjV84;<a)X@GvB8b>KAL-nCnAUfQtY>MG#m)QKgRTD_<H`p#c>UAm2pea)xN
zDd7hD*DZT??X2{pM8Wy*rDUa}fhQ`Q1*VCUyDJ~x0-nOFv~a`Tt){72vw*jn?o-um
zcH0c>Y0Qq7kQH8i_2r*Gf23c%c2h|TH{ZU<)%)3#Cv9!69Y+s?$1I)#k9OI5HI(7N
zvx2y~Qrp>Q-@Si*_T1_7+8R9l9amm|J*=b{c5D6>_{j|Ze+9q%XEuHrHfK)6%qRvR
N@O1TaS?83{1OTE@pt1k}

diff --git a/sample-reports/dashboard-overview-light.png b/sample-reports/dashboard-overview-light.png
index 2231d796b44497b3ec3736b6ef55dde9a984b820..f55f4553d2a32ba65eb1592dbf66e7e02d4b67cc 100644
GIT binary patch
literal 146593
zcmbTe1yoeu+ctb?6e&RvDFp=S?ifH2=?0PR?w$b#MFc@Wx=TvBy9K1XbLj4FzT@xz
z{GRuHzO~-<#ad_0ni)4|@3Z5+uj{(6@tcx@6!zm6j{yL{mVPgx0sv@f0D$rm6B+#G
z<4+ZD00{u3CB)P`W_IUYT?n*@fkVMz9_jhUvBoUIHy!l*`z*ctWxaLvW#@&gjJstu
z_4Tnv{v#^9Gb-+~qg{O$oiwB0qQ!fSF5LN&TsUI76Q$SJn{F_Jegdz?kS0~I#JzP7
z`Cfj(6UTh@W$0~t>s#M{-u``Q0Wki4`=8GSz9|2`6~|<2`Sky>73%Xv(f{Xr{f}12
zPaOVhTwq`SdyoI;R!Hc4|2?k%cdfnvC}jUVuK&^F|9-Fk(MsGG3Fp5iMI7`0U90~w
zl__cs0rgkE1z&g5Tata|^x6cxIRDqE!;H~8i{ZC|&I`f%@P`|C?eOjApWE9rQmfc6
zrH^<0Wr<l|D-rtl<Nv!Fp94r2-^&k{xjd<Id2)`kpP|Mut*A^W2|1gDkh;bQxUN$H
zPqr!FK3uKwHjg-ql<zX%$<N93r=_}{em5CJyk^T5hE2^e!S1sz=DcBFFP?8d8x!Q?
za9h*gp|~b3u|8OGj3f>rgIrv8pG=YA|GOnTYLG&01#yRP^YW||QbPjH&lJ0R22gy(
zP@p?PmBtt84YOzh1P>RZ`sCAX$^;wsGj%!XrQMygqa!0ff7P7M<2K)422)b(lNy+t
zx2+tZA~zL=JQIE`Ox@X$UmvXLo?Age`sUx>P#?5>{eJ#RuE$08t&K<h&>C8mEI^6@
zJT3htrN+1EI(K;#3!hSTayq%#6@(&S9(&M{GtzFL#A<DFav8@AA;4>O`4aeWHkchi
zDz%BA6JWhF(!1{HDoQ_%`uzJRZEl4$L&wCoe;1+^PO@0zvi5E%`6)~6O*cj{QcF5@
z&I|!JpEo$4r+f2}gBv@Lddt~`pUW!igOom6<KYa?TwTvjQPPz#0U-+ewLyJa9U+(f
zb{v-2-afa(uH4sy&1<A1#fU{|O8EU<^3SKqXJio1``WdG>wq&{OiDKMC0Wa@={{A?
zjYdAN-6U?(Do)i2yE%67y`^(X&cp3aYDin>z}0qrbcp<jJLFcN;N}PEw`x1u9QpXG
z-OMdn`we2`miDc|hLa`D)7zD7rWYb^0}CjfBO~PjVac4}jZgv<IT$r_)d+GRe?L;f
zuSjRv|DEL)Wi<i2n<5loh&TJDqT6`kZgYn=_w;ahG?MoF7oK426n<h{zz=;>W2mI8
z%)#BYDL(0Z)IPuYYFQU})1X>rdgD{a*_+Ghcu^W~cYRt>!B$+D4_{il2oCNwQ=qgr
zv@<ib`;%h66M84B?~&-EqpTI}!g#kBt}1n5TT)e(Nw>cMGie=}jJvv^6mZ;Kt!;x%
z40jVh;*IF(VT4@-8JWFdVrp_(s|(3KkoFN9&SIRT4+;uyhKlSz29yZZH8tT|J+8nH
zo?c+_<M00KukWDu`Hy&!41P~78B1Z)7ys((XM8E`bQ<{KdV18HbtGW9v0AU)?fbtA
z&*qomNBFp7-&+bWn2R%{3g7x6=8a@9TU39lQk&wDUsXf_7-5_b!_PZ5h=G>65WyZs
z2BgJ}==^9IQ;82s%?rZ&_H<WX_oT%ly(>rC+oTK72ifK!pW=qA?!C`~EqMmlzZofk
zmMP`8IQx1xXB!7IGat=OH--t2UUCcX#1k)|`<DFhMflv_&hzTy1xqk9A8+XU9HgAD
z9*>i5tQ38SOY}#*N=!)D7P`5g?WOxpIv{kvo5A}N_U<Wasl~kuP~*hR{+c<`$L-|Y
z8(7>K%{sWFAo%Z)#nysU5UylpwT=1txiAM2@F#@gF+iu-St(4&nC!i{w7)#wq5Cj>
zWc;<ZR-oI2x%sZNs^O>8U3M~1a(m@ZK0RnEyOAtdnxQ%P9<Z>BxvRI+zF5e>r4*Eh
zz?R3*{Kc2Hmd*z$5$F5QDqW5Wh*Oer0rNq9m0UHz;da&2U;Gt*aFy+?@x<vP`=;wT
z;?$<;YIj^g?Zk+YW7te&2bP&hPExajm8OAj*nsLFQv&w~f+MXukMrQceq3B^R9~%8
zy10Y{pk=#K8!0WlbZc=b5-4$4;Ie7|H<T;Uq4I5-gd7fus;Z9up|w1S+XvFr7%q10
z^JzD`M;#3;ZV6w6b;5kMgn&!){utJ#Ye`ybM|WomUNZ{}ckVYW7l#XHjydjw$=u&w
zV)~1-yALyVyfy_yV_!BV>+>1S&9zdSKcV0^-U;;vhG?R*Gfk01f1l9+nAndTTuL$~
zdEn<!cY+V|%_sVFQa7-f5JeG>af9h_o(~`66jRuq0#$och$)(R_r*B52_qw_Bz9La
z9;1I3=~o6)C~dCG#{OI2M_knQ_Wb;KJxufxFnG4k_NyuVXy%NDjbah-<>#c+`WVN{
zBRy$1hXf2lIKy<YE2uxC-1*!iavpBBQ2?bkgh#PYfwYQ(&puUEMJe|=N^iUygu%;{
zg9M1uR73Kuj5eKRq|=I4ik8W`e}Z#fWfZ<C;szVOB>{$prYejtTA61rkXka2sF|7j
zO7W@x9V9un1DTLl&y?y>Y%%cyJ^STYEmo{L!?W1ly~&)M(vH_g!^rXvShBLg{N=Q6
zCJ@BEfq#~9Nh3_cx%_(yhs}HVwV0vuBfupD6W!Ox8>$y9`0J!tN(~i|c=rVmmH9}-
z87I52_j#`##|Gh=mYt0Q*w_{zy}Z&8C?7uUBfAsE$J~#oZ(VYTb5xlcrT+c-CsiA;
z*r|V?ZXLyv6nv-p@1af~z;v*g^#lN_-+sNv_G}Lvk%J?H`*YrSPc9T|0YEw2P+%o)
z)5Gn^Mu4ouVxi)u7i#ci8$k-JI(2O5-xVmm0elrc1HPLSx=3lTY6qak;b=QOBL@(r
zwT>4$nQjUEq-qY48k{JX(gbRf^)K57;gK|2h@s2f-~$%V`@%`Yy$%frny)WF2?RDr
ziG~F^onB6_&<!Fwi>|L-(kX4`%IbgBfJq2V;|K>z3A_~ID$zE1Q)Pe(T_LEf=%Pg2
z73bUYd7Zkbt7A7sZ#GG1^*hxfD<b`~8ZCxKv&Cg)*Qe9L0GsQGMY>XpTy=FhxzMkJ
zZ>k&B2LhMJ!NF(5Lf-2?Tak>!ig`P?GG-GJGCv_T+4gCus&0@Ma1-_l7PDp;BYhWP
zpQo<>s@EKTJDY0#pxZ3}hH%J|cvzUK-W40o*D)htf69BatCSN=Q=3csDtgM}b4=8j
z%Nq~gGR1~{U9DiQn5(@R%3<`mU5ZujFC(hM=z-ZczHdHXdV75^=lx5Xfn3B5N0_EC
zF+Z}DjL4!KBSeD9$|j=eVwm^9`?TMkalu@#_e*IT;^va{I`{yYi8bg$UcNQ_)>M7D
zKT4Z^t1N~Hu75Bz)KXhcCnfn6@~-%2!_P9QgYf=-4vH}M^(h>E{o)6w9ePWW;)Zkl
zJ3b+y%h_j?2KCVIT_(&oI25xDrtVNP9^K`c)&(9aA(Q<AdO!4YGme!*!hdioa^E7G
z#YGdf3vW<q#@9_D$*`=5h?w|<l&llAg*{}b*96aFhmwPHn1p1Ubi3`KhPry&J>B@}
zTf;z!>;Si7T{ic;!oo_m868zsb8Bm1>+3J`+M2^>B4B2iQHS&;a!-RDH>dro)mmTK
zt98GDyfwPv5SF^XHSH*uHLI`V<L2U_kCuT6&QdntZN^KMZ<1uok=+fD_HOD%S61|;
z3a{1Q)QNF$bMx1j>$-%!ztdzUe7xYb#t*PX2Ik0-`S%kKk8qX+gvDQNAa+>w8y9Gz
z^VIUjPWuXHFBIa+eiTLD)PURg@%%TrT(uMd(oQ*hyO_e+67Tu1dpEcga0hKfmG?vc
zs@gT;Pk%iFV}7ZnFk!Vl@sRz+_?LD!mWYIuY5T)=VlX!?XIb|FdZug9Qemm_-0<ld
zX)G{ZQ|_n&|De=L46)K6qkG=_d-s!_11~#E!<0y9dinO(g~*5zCx7v+{dJqu9ao=p
z|JvH<X#Y}@W2_)Pve5isYB9XDNwJr7yok2>v!Y6##U?1F#Q6(P!Dfe}&m@RK56Z*?
z>gA7CV!w*9gc?NX4d;y*8S(+&!HtXE;b>slO8lqXg!o{Ib1%Xhdf~woYVy`tb@wp$
z>dIds^gQ6g-slfqPgmC#uLm;l1sx-auWV1u=3|zMqzk2r-Y}H(_NvpKdH4(KFnkM9
zslDLyAPan`^BBmXY;>HwDyF4Th(D6!WGu2Zw40!c<;(#9K7lFnh34+*?j?3%wEsjO
zp-mQsi;c1PU|^`({`BoPJD^3knF9)~sTB4LsFx*uEgnzxB6)vkc+>?c)PD+sW;rJ(
zlb%5el(@E0p7QmRknkJR4Hg#`qWHd*QWR!E!r}aOd3=R3J?*)$kg_X+mSwtz3mr8d
z>?r^HN8Xc2PaK2@Utb)%P4aSyG~bd7)PWIF&)ahA$5fMHy4Yj?<L%0J;hV4`L`^aU
z-Hv}OV!qUKoO(gCV~YMi<Zp5KiNo#P4KI!4qf0NL>kF&3RBNO(^NS)eTcX!uiqXy+
ztbS%CuLSClfcyIeS)u_Uw`DRQDpqroHA{`bo;HVQp5E1=BIG;fTD7N0jHX(4mZ|#q
zSPh@xwTEkIY3WG(r|yU9(yG;?kHriilFg>22QbmRWM#1crChaWb?#kyc@<0OyQ**B
z*!YH0X}W`Ytemk<z*lWjMwVFF;#ZuEn&q<$X4+t~0$UnqL|qY_qL<pOXbly{Hl+Hn
z!Tw}|Ig25>CsCR{KAzvlXTczI`7QLF#=@RBOi&vFVHMOS^(!Br7|+QxQB%{XtrI{)
zzpPSb;-{vjV{P{BTszww9-os#{=+Em;#FVidgk)_qctOzNGfYA<I_mH=ok$T7z`ET
zy1d$TWu4hl)mcr=gA^@&hxA3HeU`eK8rtQ}<&EdgMkRZqae|bcosSh%<AcQy1zKHs
z`DC5+8t-~Mu1fK(YVDQ{QrX-a=ke>$pQ)~oVpE$M4HjI6TsC(`>!nf`gllvL5?r;B
zUV@<Pt&~Ct1%I5K*>?G#-$}Znj{z&|osX-Jq1d~QH3!h1O)_<$i?t>)Je-rS${y@S
zB?}n{?^4S-cr_}+PxgCY;@tzG1za#UFE72?2t?vWRGD-PghAU00@tOr@$F+{Up)EM
z6PkqFg$4iFx<LJ}w1McP2oaZ4CgAc4o+=m5_W~EwfcP2kmq`7&fZQkeG`MdhY*K`~
z>zeeQH|l$z$VyxCtDa}Ust+#^-mitY-ajmyRq~36c&yTJTCm6VCi9r?CKfXrbEGFE
znx^<{KM5z0s`5w2U<)q3T#u!MYoP%s*PS-=hZul~`NkOq9}e(a965|~p$^)=Ui?s9
zR#mm%VH&&uzsU;f$@@`+vSrGeGQF|4ch&!(aevSWX;I2kllC#XUHftrN$g7tGZlpw
z)^!A@dWRHE50}GMn{=(y`hAen!%?=Fd{sNE;8$mZbP6dLzH6*ZJ_m(s*RQ_vBJR98
zi%|O5mySF}bH3l~uJCRlMO*m0%fyI0y!#zOV-^%0-60FM-;ehcU~CAFyZtkp`Z_0*
zla-l^<}kjaoKErinQv9S%XA{_oE*tl-dfXaW8M2`T(Pf9P`F;I=+@Lf!*5=YvS6yg
z6<2tjPz)~|KiyjMA(KGymGp7sV6%R;W4+o;L8!y@hqJx;ll(!1aVK?Lzb&FcCReH9
zdc9L_*4f!v@9HFoLRohU(y6G22j>@iz}}v%-w0*SKh04k9M2ehFVMnnJab9ed_(xe
zRpf=B<9+20$b~k4-0x^Uh%2k96)(95$pDLInklfA@r^0QT_WLvUp0il-{~ceWwv^t
zZ)@mt&4-^~oIy9*iWQQZK!s|0QqOxOgB+ydqH@K*=4Um^-R-B3-8Xa4aW)%G?+&hW
zL~mxhKfh+B6mWVBEI_@d^I4hI53Z_&SsTw^-Cg=`5P2Q$GoG&8VT7^zoO1(*$H#$?
zdP>%nzwjNIi6iJ<HoX<;wdW)7dOj~|!_KbUXTLsb#(cNiOL>g7U%~z`L4KnLJwsX7
z2nkh6s(0|*?#rrH8FjV0G4J!SL$n(Ak#l?3*I4%MgW3h#ozcExYw~g`{O%?hS7YeT
zVqdX1WuEHy+s)4A;*Xs^c|XgxL5`bn6m4GBnBo@@Iy#IE(LY!eeR#C;Ze-MbPvjRR
zatfF2(Zn8Xx>F)o&2FmUq?Q<AmOV$$K*9qR5bOZ}Zf;jf_<1wrK@WH4ZM9tL9hvi_
zj1;yVZC1nKNWB1>k)V5hMVQFLew$*GX&9r|)%F=$uzm{r#g!{*71-f*6=dn%ND^9a
zyePWx(OEU*&Ujqlyge^3LHH(AF0rzrsz?v+Ea*o5;joW!w@UNF2O;}mSx-;2i%FoY
z{3Px)Wa^VQ_CVX3Q+(It7ALWE1P!K9ME3iWd%w;pPP)1GKQl;C#pFhGEN9_8Lq&-9
zDO}!<$mi4KlZ9e@@Zj{H<_Yq$Bz;aVN&1D1)B0ce?9V8CZ9mtv_kTts;LJi%(aD;j
zTlX`?yerMe<C)~&rTVM3g?$012|PMRKC2IB7jW1q1;5d50rTv6iM@_xXK1Ro)`|0e
z=26D|$E&@7gT@z&2Pi;grK_r$P}`h$I1Rt`KF77YJpsWI*ha+TBKnoz&9E!d@d=i`
z&s|&SuA8mxJhA?R*W~nXaTN3ZxT!{MRExT$z65s1iSOUavlTOQgqqco;~ds^J5Imb
zn6)x%Ukst}3kvdoCu7H)nS_}Bu2}-uyf#Gz+8z{?rRO^G1uo)G+3_Ev!SB!erwQtt
zZm!?f&31$v=ctZyZcXD*@=M}w>~8Ed+ODK_;@W$g4clDjruy6^K2jkhBvMSgVj{=d
z#2-JaFNWN1-3(rzg=Dv3ur^+|YW2@sZrH_!M@L&58&}@?cN90?7BnW;rHYRfR)8rp
zJ`QtZF!_85Rt)v@^riJP_#0x%^u5kTL3jm-zFcgsu^CQihC@M83VqERsk*_eWB0PA
z%9}N;SGU4oosP1Jg6Jt`0)A*bO>%4Lomqd}W)Z#9>cNJ5^L(k_^>eS4AlaU{&g(0w
zT@BQP`xh=7QS=03t-;^>lKT3{%m(f-Lam+NL5H46gFArD=hpODGR5!B*_@mVKk~aO
z3IVT(XWlhaLsO`L+0&!I^mp2pg0s@QFI@xaUcLHecS|UlT<`F09vV-f7t5+|9?GvL
z`Bw}?{osf4>NL>fqJOPPL{A@nBMWL~>%6Nwyb%!Xqm^n#5i<UUvp<%1>*O@j$SuqM
zoXwXKcfAk4Jx8fC0yH!y!7HWSA%4I^QGT$&OWhmmwD&^)J2@vIpyy%N3NHTbNiiIy
zrCXI4d^`aTCbZaI@2ig21f3xcPHuRQQPDR@L|hgR(@`{wr{%()Z|`m%-tkhFn?DzJ
zDoIRqHZ)`hZqEkMueE}HPS`I<4zk$~sJUt3dGEgY)9y$Oh*A+@hwL>UEV2VrO*=rn
z#7=)=ZrZ-~5{HvVfoMw(mLdpjkbEU*%ov(SaO)($o*ztN0pflr&`uXk2K7_65f|m}
zegR>l-`M8szS_>7(&<tfUPn2Wud@m|9t%k-!*I#6h!5uWs(gS$57PTP?lS8)0F!>z
z8@2|@$k3zF2N6<;8y~s&3pSId<U)1P39aqT6GfW1<|m!Si0?1(u>k6?*krtBQzgTk
zNQ)!UJCYq)ECZne2bVK&pX{)Wa@lo}hh;&*3o=w+ZF&+p%Exu~_{p)u)ryMQ(J$1B
zq^UuY;K-|YGmV(U`lt$HAm6q1_HG2j-&6YqWM6NLu*UrhvUwXEG8GKIYzrrr8F-I{
zznVBQ!t<nKXh`(i2f4}1I4;96dw4-QFE4zbOI}Da8NvY_!^;-<+T>P6fB~C5ELjAh
z7Kp`;3oDB7)4S=nTv`~*tT+E^uny;5w`0=A+oUhHs#U0nDsxmx{}CJw&@sd}A)Kbm
zo4v$1g;zH@j>ccvpOJt}gP7Ud^<+Z0&qlNO^=I0H74V@?n-jZpy^Y2$4v&r|MQ<<`
z4oeIK>cn6x(HjaB^KQqRRUnQC>i8MDdvYSX(Rej;A|j&OPNh7{9$1w@BNy>IR2Kuh
zGt#2hT=ea&IDq#U&Dl)B4u&o0PM%3A@g=|mS~nWj8Ah5u3iE&0i7cusXR@24?*+e>
z(|NDdvKj6t6-L%KXUth{yHIDoIyDWsFWY{%T==T=ZgV>B4a$j|hpS_Ad{R#XwQyao
zwTe!I3&<s6@t=~lFoE*UZf@;lWkp3A2+>9HBoHFPTb;SN+iKybeY>DWIW#tJaIP~!
zbuiMQn?rzFVMcmYnjz_jk<W=!=5!2d5Z(<pG3)DcsrYwtk1h6a)qlSb)6gX|+0Go6
z<9<AJs+i8nDnX?xVB)Np^Q3J~uFP=H9;CCS<&}oNiB!3Sm6lmw4-E&!5M6;`j(fvi
z`%ZNRq43pWgngM+AH%oYeB4_F48G5xtH+$?EXXaD*56zZ`S*8F;XwTUe-wX!6O8rb
zt!qwFPe}QUrdnp|uHln*SLZhfQ1FqCNG-fHydHBz6$3HbxWyk;kF}7nCq-ZOF~lB_
zi)%5?%?DrN9lrgHEMOWCfJ-_>zZ1{zz3h&7(9=W=jZi(f&rk5`d52Pv5CXK{Npm6V
z!J&KgxNPpn^%oTAu8v=bh6t(nopw)A<r}D55F3%W`VXro2htHtZ{A$*g>i!l<yVmM
zZOyN&T<B-OSb&x!tw>hg+9vl0<?AYbFs%mJ`;@Zrl5$#Y-W)Xa5iT}B_h>n3_S`fM
zaNp_aiK(lHgoLPr!5jbiV%t3@71QNuJRg90dNI7ejNkq}C&P{|K^Vi=F>;;MPWF*>
z<R9xS9#re<EIa)40(@bseF5KU5xR{D$%x3&kTVm*r`njG9h@puJ4^nAULKAfM9G*!
z-??dM6crZ}k3vkx4nGJycTvodvnFKXkb~<)h{6#=i@vK-E)g`i<RbiFe9DFgCFZMw
z=!yr0Y|oa?5991=KL7!q{<SX~u>*pz`=`Lv%*TuEY34ffYB0AXH{vNOkG+<6nlNDc
zPi^jR@r;5TBrc-LfPs;bxMpZc1smM-ij!wT!@l8!1W;2S&ono~xW4I$E`&sMo(7Fj
z4iEr3No20s4uP<)6BULEp8)d>kxge;$Nebkm-xZ!11ZP7J>x)$+1&)m=%4BsVqK5e
z<DcJn?M*HJq&0#lco)n5Q~G0aIbReYMVG^U^{_RuYF7Xza&M-RCzGY}hA?NaT{p14
z%yPa5)ccTu)WHYqwdz5plt$N^rkcxqe*S8tw4x@%w)JGG&{Pq)Q&?r?Yv2vnL14TD
z8If7d7gXKTOy}xeyvP0m>>RGoWnrso6pHR8DsI2gIQdF(l3y8|@k%+=kbCXic{LOk
zFl|0>U$dSJLE|gZsZYnrb-^}v^0%=m00sPXYp;DlkKOUu7>+yDxP-I|_nsOO%c)4Z
zknH>~;J?@`B<0FIL`f68Bh}%|xZ9(l5^5iq$Oe%jsKU#u(9ieUC_OBoinZhHI`7|R
z_4I6m>qiR-rl0*!X%wsx4z=;Rw>n+(nC)(+=leW_#w)}cq&*`d1m_(6`sU-uxY4Y~
z%@5bc*^HmW*oT#GaL7=6GgsBlU2-d~%4ln;xoCzaCT2idrnNWzB~h0f(!0Z&4?A0`
zy10+2y`!cdS$u-EF?e}b>?)I0R#paWU5?#ag8YO@lyw$xcP$<)2@E7Pe$Z3y9$U<`
zpGWwt_*Wx5(o3bG;CRCz5Bfen>Eh{Ar8}Y!d3zinFz88G&=U;bvf~~Q0mHA?aQpkq
zz{di`2ZdCQ(1o`GL?=f9#e*sATSc%Dt=YYrO$%3ZB2e7c)qdETqm}nv-=jU?2&xrr
zp@g`#H(OT&E%wdDTLhz#-eeZm6Sl%`w@h~)Gf}0xIoWbA-eT~bQ}T(V!Jo`SI=Y8b
zwxqz=C1;%!XkKHeNCr6`W%U8I0OFP6XU}5Gu5;#04GPYy2|m9x!Z@2RvsDCPVS?-I
zCf``gr$(fgZlbASB6m1ID21T2FgpqG`>o$8r~H3Nto7f65c8^Z8)2ZBQs)r)Oo=aJ
z%V%)O0eZSAgSZ{S1r~2o?@iD}nVIwBsyDN?oKq4-Hu$s6Wn5f%uUkR=%Z+ex67i6=
zkyP%$PvDOE_&9@-OxWiuMboE+Phf3HaE%)Z^Bln~bGGBuMW0GaCZn~mdPg%alR?Q;
zH@jIPlNGTQ$pNO#x+=_*gQ?bjIWc*&s=?-K%b_89zpn~c>u^RS5QT)0iC8S`(x;I`
zy!GxCI3a=ZT;GEtq1)0eiCi`crwxYc$?^f5hkYdv)HQe)uD*+OfwSt32d+dK0CDDg
z1Vlx}*w2(D##0c(qZdx5vGi&VkbL7EwVxKzZQ+jQuhg2a%d}Hn*DyoZqgUt#x=ptC
zC0(|AKpL9%aC+)u{w^R3n|uy2@|z48;V5f**iuy5Q2lOHX12c-Rm%uUkw|y2Vdm|^
z3z3|g98k4CJK7pK|GZ~Ux647M?|p-H_Z0m!1PRdBXXWKJzxE&cgi8iN`>O!@l8|Ah
zOZAkzLJ@h`rUNV@Wat#Mz%=rbGL>bEWE$ki$^i_}cO&kO0Gs=IRAdgzFSR^d!3*N(
zs6RNn+S;1U?uhW)&w{|>%IIqbj_)a)ErWD!N~vH&paqMy5q3D_2!R}|YH#Hz=mY(}
z)N-D|LyIlJN0Y#!_*}Hza2stXrIwmb500A)USv$M8Ur=-3C^R(c;Doz?DaZQHm0+j
zr$0R>HkUd-WJgaHAeRbbZ(TWB@VP^~d-@D(T|TEArRrd++2x1~*j!+~jYZt2+kbl|
zv*zp5n8#o}QGm$nPWWcF|M2jk5(kKBzHSw?Z@|M_gzabuaB9dtG;OaYC{usEJ-<l+
zMT?5>1<ETM-%0o-n25-Q-M&(AfY}RvcU6Cylw3a_y5hihvaXQfzExQ*!Vh0^QmZcc
zUNEOyk2`X)S8gU(QBhIT9PJ*0X=r7RDtUTwa<olE@|RV-NSX#!(w%3NOxpK2z!)#r
zfZpL}r8gi~sg!1rZ-^Ji^%bY=gTU`(a{BU=-aO}oKG!W>Ywtdh`-lNcIZx#nDl%#@
z-gMr+{N|jdyHkM;F09KoQR<-P8$uUCY7VNXtynG#(bUSFYW7YOwsS?X|K@;%;N+j>
z!##bjX0b!$L*!MGMTiYweS#O>##}jfE&4FR^^WF(?IUSO+>aQXcd&qSw<^fpfoirm
zk{I5@{n^T#Wbc;Tk2WbqPJiajVS%RWW#RR~wO(*~9M8}9kbyVM`5&$}J_2Alv^OPL
z5jSL7EQV;EGe<Fv6V0S7#(L8Jv434#&sS8m5?<a1yNovEmUG>kEesTl_Dv~XzyKtH
zF22<KuZ4xF1zQkwZU(8t)EJa}E}v<-K~*4;f}NO4i-t4%dk!V57S~Q+Z7{eiL6&OY
zc!6f&&b#@Hyu*cm8Z6X*8zolP&@eaOxH~-2@3Zj|fp?hO!#rw+;cokGf*m*Z&0}LU
zx{YR>(h>FN6f>0<c#Pus*8_>H3l|B-P*+^6N12?CU?l?tCw6%x&%4sP3EnyKCut&X
z<0w|DK>97R&jCZ1!l+k=dlBPP{A}JG>&}Res5rfPnx<<|d6y#xdqOENBuABPEb3xn
zdpm_c6j~&`XF~@V(BfZglX&ibzQ%m=Vk*&-!Oeiu%t2pUdnfSFpuvagZ<(kh__6qA
zIETyohqo}^cARZvYisNRp@(Ts+P#^knSqI~!Y7xdZJG~fZ+Fu~T!>MCAAyn?@7hy@
z>OxrNfC5DI<o(^~XV1~s1xp6~{WSKCO*Wk|>QocLIfaF1F|LdmRBiEzji4R?Dn=9#
zI|=i~Ka@>(t9R~t`_sZBa#TD#iWk3%`cej)z_93ghV25u0pbiyATSA6S64^m{^u2^
z<XaH9&%>6KeThB2B-N<lTXZtP3jf^U#qDJm55ym^-dT>@6cREHlAis!YhIXv0vvvj
ztbL!tXO~$XiQ+s;I?a9BvR~<JCjV)IBQ?2UUZHfk-2Jbz019PSUS|n=Hnx9x<-M-8
z%g1?PcHYR{nI`D|F8wPpq`rh%9>cjnRjDdgJ-*T3b5AO6SQ?MEo$11C4$>`2ukG16
zdDu$Oog14~*Nf!j<^O!A=-JoLRy`k&16k0E`UC0RmWki_V5z|%)O^=hL{5?H@3g1W
zp*v1e3}B{L>B=%=p1FETxMkO57NnKDX+Z>R#TY%2j;L1QltV=ZqoFNgn~S&i_!!G7
zZ%0R$OjkF#_D`^%OjbWw$r91ieL^cCWI>S4)Znr80_cn5x$is>@g7RFwy=>I>?$iO
z0hKh16(A;BbA5dcR#VSWo&9HZgIHs73?1!yXCp^wXwOZ@xqMf{s;)dTBe;B}&GvyI
zI`3BvDEdjfT&(94<e!?Y5*F<iwtS#J5v?pw{>Oo32ztLxJuvuEK7y)5KxmQzM8wlY
z`@ItIud4vCc9_e*%X!L&%5G(_x^lKG9Td?UO)EZ6xETT)%zqzo|7l>fgC#o=l5^sN
zlG(lb7%8lC32zD&f140q_)!tEIbKfsj`yF0jfY&&>Ik{mW)4cI%MMDoCaOI?f*w6n
zKkH<9PVvV{&Sq@a(L3jRU{R5^oLuAlR-%Z{tK5b<oLNfo<e!-pUW4};Lruem|K(Ex
zGY|S2VU(L=Ip}$*^*8;ruq|<yXn8fMdLlvl+3uB|2t_D*4i^`9YJGynN4*^j^XX!#
zwD_qgn%vP?)#Jy#d$xVXRCl(8eWy8Nygd3ceH^iI3q4E~Y@Fl^tW@-kFNLeSMs$P<
z>}w=UkOAJ&6MIu4CBiS)wE-AVKvYNkYh<Ik3e-nk-mf~~?E^)t|Lf=+)~v3Ngo)?+
zn7D^e&Rxghmf}c=`RS^>?AFBvv$a?rE}ltVnR2_>kJ>WOFIP4E)1U`X*>Q5D9IK~2
z`!_h~g?*epoJ=zWe&XY-er8G2aqf-8FUSiO%Is5*@wd~)t*eLLj?~rhftJA!e|I35
zgALFF#I&kqy@kjc=gGl)52<GMGiyea(P8iK|I&O94pc>Q8x)_nhvG?fb@t3dc6Kc6
zJvaNXfi8NceES~*6qA#)^G7O1F|G6r5q$%!%HgZ0!|dx%htJz$31!w!hZ_r-X*P<p
zQAFK*EH(7Hr>1@xdbf=_1%s1_l%~uOEc^aoeB6HS$G)T~H;HG5f}4hN`hwep8TF0(
z**Tlemtx7Hu5MQ6l1i?cYG&r3eCcUq5%|QEh#?Y1C(B%cy$!l=@FeFpX(G7z`=rkt
z_GPTJ)XB?HQdrz{{pwElC@d^#x1VkC7TBZmh<y>TdvAka-hm^^?k}*d;kFs*4FBbF
zV)JWzZs{y*`!+H%`L(oi=SoC^_G-5HClyH*(e96{=R8EJ@6MO;zT8J`*S$;krCeQk
z49tISRN*)n<9;746D^*r5^hpboSzd+4s0qS0my-R_&#Jf_}d#P$@(+-`OQi#SSRif
zk97gSWIejw<%E|YG2xp$HL_3{mP~!kG>UI=PNZKU8gS{s7o$0j=D{!9PAfz)Iih1z
zg7rvJIhq?ANspzq$xgiz`x=G?7==sAWl{o{P(Gqq^$o%(SM1}yF8UPq?CLJHH~8^i
zFra1#7S|GGd){_M;dbiSUT%WK4++5~kEq5R|DYrNqtuFH8v155mL1EY3F#S1KLZXu
z=aO#A@F2X--z;5f4(?SSi6cSA5W+$&Z{aeow#Ld@XU&2Ne$Y$dyr$CW=3r-O&;GB%
z8@2^B!foCiRO$DGU~Z7#JWe87ry_Wz|7H=%*T1$#ix$JTL2%8}y+@K38At<cm|maK
z7I1xf!svXoC%9(YT$HjTView8lo3mfER2c#WS<$B`WVk148Fvwjd5{T14vY=uY`wZ
zRGc`O^&54u9`W$~*ZvjXRDR+>leN+NtS72K9I%M#9(CFul70;C4)Dr)Rw*?=H=~^>
zIIX=Uhadc9f1t`3-E~xJDNXOy9Sn7Cfga*@{%1M2lnf`G6AhR$PS^~yU$(J-Hrk)6
zkYG@s^Gdd_UqWMjxdaF!&8^0`z~Qc`cEujaUMDhmT^=a!4{i`};q%^8#G(N5BShb(
zzNCB#HqQQUhw9<x_@ae{l}28de<TL>0Wo`nemmIR8Fs&XKXa}BT79T)`kS8NfssEW
z1+|hzkdA?whO+GR?4n126=`ODs2(l-_V3D5*>74pES<CcpI&0tiswSsiePKY7ReD>
z?;%YN%)-LeQ&UOV;y%Wa1tIGGSM}g-;Fd8(zaRp77<XhCt&l`%H8a-;YXxQ;_`YNm
znp$bR0)D;c;JyjX&!}vb=dGx<{C7GrTj7zd;jZ;#U|-Vdiw>BIn)SQ4BTA5qq|YPr
zH!G-KDZYcQ&Sh&(d;+SMLi;}!3<Cxi@E%`+k8=k_b;6{g>N+``ZvP#@P%BQdx?)AO
zx}#`m7hc_{2_9>@<%nvshWB~z8L=D(G4+j|XFkMBx6|gkCxIt-ac3(N;@73NxwquN
z$=vMD3%_eb0~9rHf_XWjWz@^%D7Ft2!hUj8C{8Vb`;%YtaaK>~{BUz{`F(<)*ZhE<
zg0x(tu&D%BmH59;^UDu(G*b-aMKh>msXRiv<;ey_%jN8>s0<XtyPpZM#O^N}+Q<l2
z75#j_cp~U2gm%6F2JwP|T*@KN544(?S6<0Y9L!FyQwPTn#Qai({%^);JfS9TzL}5Q
zu^9vrL#fDsz%VwzHXQ2vJZU7f(0K{z2~loy^&ht|7Vn_{L|ZV_cod+JDGJFt<Hz>4
zuKc&D8uSZO=of|Zc;Nl7hI3NN|3K+~;?w`xgZ#f+p#Ohbvrm7Rt}R?`9qjGWL+%=d
z87~xIF|VcbepUReYEm{AkQ9^F$|{gt7`Q@8D`==oSDqR0j^XL;>B+|yQP)O%&{ChR
z71T$(Da^MwdWhudjWf@;+CI~yvJPjAk};kIzg7vSfdyx+sXvQ;=U!i$Tbot`dP}zC
zit~yX>GOZS$?G>B|Gl6M{K~a%P*rJNKmrV!>;7b~pEo4h?z+ha|NK?)nI;!w#wF2|
znQlP;1~z)%%)1AAWE1Wws>E{D#(CdU-i?+k&-67k?{@B@Po#9pWaVkmHaB+?q6x_V
z#I~*IerL%!-vUaecjO^`Nxu{7&>JlNI@W%T;@iTr-eJy<SB`yF(vJ<OJj>gz>xU_r
ztP(~LN^T0vDia2@9bGskvik&vMAx=*uM$TWeQZYj>G_#m)Y{+S(^?TOL_rKFBsIGU
z?AOJA(9xb;+}~!i-^MKM$_%;UbbegDC&)~A$Y^clcURY!z!lZY{X)F3$o50^-g{5=
zN(q{X%8Kvb_nyr&$33zwn1|LhDd$nC(;~MzpU{4Y3l1sVNO8L_#=fz#CVj@BZt0no
z7>NR)Ue<+?PtXbH8{D*x(n#k;F@)!KfB)tutV5P>O^QR&9QPxN-F`c;D81=AalxHw
ze=45wpoyz<x|Imnk5ap>wJYu#lgL$378QoLHx!1v7JO0WIrxpVJ07QM;`KB2lbldY
ztYdWFukW@ftuH2cc^;v9`HNru{`~FSO#{76n9)b?U}vq)WBs`RTZL8Ieb4qsEa&pF
zpzW*Ccjz~;5&R_FCOuPQQ!&;x1M^Ck0lw?fQuom*yGWW!%ZsDFB;;@J)pWI+J<gv~
z4q}XSNk?2?PliZlJzIZ@fA>^KhfE*tgDzHKeUy>IdI0e`iku{#`JgRS;H*@n)MMi0
z%o*Nl?tBuAn^Y4QuX;HS8;sGMU<+G&{Cc!SXpZdQnvbh%=dfGWQ8R+N?Upul8?G3Z
z6H4x~1>HU>*W^b%TIhA2_2GB7jeNK<w$}B|_@<<Um@;9(S0sgW&8{rW{F!XF+Z|`F
z(J#ilz5MI^QrcKvdL_D9>UQ<cO44<{?25qoI2b3j?sR0CzNKgJImv8qZ=2`IK0$18
z4!D@64%pV!6!Dy%am``%K{W7>mBO$1%grZSurwoBbflrKTP~!G&e1`0o}0UrJLgRe
zCXZu#+4<nEws&8XrHBWfuWhYMM2sOoG*}xx!^nX8{nqGVwz(eag6)<2VDkATxP}Ef
z<+3JLPl;9wRl@Um$-f6-ZW5E@0G$Im)9$;!le*i!H{QZ#uFTEC(0qe>W{Q1g57)6c
zx3~!jV+*ID7WWn5NKN~I!)x}vL06c*wg5TsvmT8&TI0o>ord00VTBGO7N=QHj4&O>
z**CH&!Kc7EWpmBWAwSf)f|OpX8cVj>YlGyIFPxFt{Un9J#dl?>TUH^Ir&uvb46o#7
zsP--0%7!9kZmMCaPp7iGCWcwhk@KVkRpej{6O!-g?q_&4+3oRsmJUu%!Oxz-Ufb!<
z-vq2JR_3{?W?^A^N(@nyjZHs#mrT~?r^{|u1zG#oodh6T#b8wWRbe!?sMm&Zj_OOD
z!%8WHudkuJW??^Cbe<ZwzP0Z1n%%ZNZ8N|Xhc;(TM{z)h!}@!xd9BXCW-B{l!)Dx5
zE}UkxW#%mIXI%~dF#Yq3>*oMdUptC%T}p^z!%nZIVqy|k9^9h@S5o<rGzsJ6uHMmp
zIr6=*SF(rmwA{~Re5QXA45+1_p1z^acXF@7J#+;xO70JgUygQSi-&N9bjW3T@}961
zQFWKT1wB7CC_rqRV@Y{YUJ;sa4P&?JJM7Fz5zxjHHH?CI*e?EA_Lx{o(C<WFvF8ca
z@sW!&7&2qq3=y+Cy#tIK_?Ta@H^m;dwoQ0BswO+WXd8+xxXbituLk)HFA<{ANaBq5
zjnWGq?C+*EM_7L&8J_>VwTTX#24c!d56a5*hwhE`|C#w*Tx)xCKUm1F{K_TaTScwu
zN)bV@dFZwIiI|x%GE$fV1rop#fOmWalpK7}@qRnHEB&_K|JoJn3`PEH^N@rnB!$Ng
zuSB2(Q~t{}%!7eN%*N{Ji&byV*RqYwB4OXS9csUT9y>fT;7$H7N9QWV-X7NcUv7?N
zCwt2>gQI_t*lT79(Kc8Sx3`5IIyh2URG=55>7i#1W6alj=LOQsY}gy`PEvwr&_f9?
zSKGHRWHL|x*EG`d&!^qn28?$BDHW@MT&zb~&&FGQbkQ$@ot#S21r_)Bp(4D^Q=|Q*
z_Je^xd|6KWqy}|rq13t)BTrWmrpLeTk&&8f3Y<DWarP3+XPfhR-oKDmd3)^+ap72)
z84+TvKGb-Z5)$2U`lxh&0H<?6PZ)OeRgUFhx3hA-4Mit;*PT-2;=cDJ?#3NgQz}a)
z>tPC<OiP13&%TW#apXoPELl)&f_XmyJ~dHTYF+JlO3jSYTB3@5!MG_vI96n5FSIUP
zD@b28WjKPzMmKry-Jf?i9(Bl~mY(C_`3ja{1QQ#04ub1XdI#mEYj!*&eki_ABfc|B
z=7SejG|bG7dj3B2ajEJ8W5tv2--MjjkCT@lvnp<Qs=f=9^Oskd{-fJjcCuf?H;qj?
z#M#nGUi|Qv-GQ9>6P}R+e^MYG<&X<eR~P-^xr1`JiL_R9WCr$*0(ugeO^_@D_5dzm
z8qNK*bW5M~yzywO=R)Jw^|UXVhX<OInbhb6IJlKCv*cz@u7I)pV$;7`ME`2toN>}l
zm`U@Ep!LRVBPY7q{ycR-a6Q4D$4&}?H}p%Lz;wBJ90#-|%Q~0Tom{{E%)v}yX)_&^
z<+}#Utph1J2eZCJA@1j0Pj{oIBfpl#&cjZB^ETV%<>gY6kQP?Mo`E|hNkk+@xD;Mo
zBon<Ib_T0HfHWFEO!G$u3|EhuKI4wH&rE4>C@ib91NVm@Zc0|0s4W?uU%jq2!hmWu
z$7~ILc$POQa&^|(T&1otE}TYWVa0&zdo1HhA9LLE0$>|Q^__8BgMJJP6t%}Cj>vSv
z3L0N3pLOTi6A|%JIt?fuaCa)vs=mXNRK^Y&K}_r(U${M7p82CdCGDobl`X;tLX&GF
z95{`S3Y6`IAmv$-P0*cJpuIkNH;4v1q#s+pA5cQPoOfRJDrug)VI4d<ceyej6$1jd
zC`Rg~e#O?GI6MEj*ur1mwGd>>-dTxA7FBj&6jsclI!m?6kT0YDzQH;l6)3m2SFrse
z;eMtBBEWGu%1e9}^!N(a_9-s`3Vf*C67?t<+^}aR8ELMsjo+-jT0u&ytJ0epK?bxu
z!G{qLF;Y6Evu8RzcerxxFQUzT0x;xlyO9YAI+{FG$MmbciK@p*M)Qp%ep*8|05+s}
zPEc!l@F;nk^Y1qLN2nJ@vYYFHF3nTUq~ur!9_UUw-_EHsI&;D)FKBb+a#f@yvUkm2
zQ>i9zr}y0gN?N*!F`lr#5|LoD?<~aySI%vEoTZj>7emKA3GGofX87Qz;$J`hWSbc?
z78m68_tYEP(cZ6ybTC9)trQt2x|65!+J0$0b1~T<2?^<cs=627k<EYAAy9s{`vNmT
zL=1ameM&@GfKzRpi|c)s6G)3x#(B8L$GE3H#P5t1mas*-IJ)QM+BU>TtgP+#fxh=r
z8tHAQ3RFQ)+2n(@s6@J2(Y%|<`sFJsRf2P9rizxjYomnG43#EV??;*5{M&~4&6<|Q
zCS@0R<g2^-;!8_!Ikl47_{<O#BZq3n{2et0j(wSt{6PicU^&H<=JONCEX2nfKVbBV
zci&Fo{Au`BmA5&1yTq@kyc5lc{(cFTnO17QD2DN~)$fxj$vA-W5|XA}=5WBNiukr~
zT+!*^jo*#r^z;Xw-j6Ef$9pz~=<P0OzM_z@*Uo>s)|`OAdN=EVRYNcg6iB~CT&`AM
z^T@7VyEvvJ(!c?xhSo0(z2S}w?4zOj<ZEx8!Gb)JV?MRwwDrr{;?{URrCL8}Ezi9r
zq*8ijpL!!SrB+2r&CJ;L==Sp?RIyCcg>yG|9NZ%$-!7%*9cdEF_-dFN7DMr`{b$dp
z2#+yNx1rnOpA{5idM8zHIwerAp+oi>P9N={3P{O2V>wd463d0bAHd=J97+fQ;3Hq7
z=c>(+5v}g6ZOH*{PX87KpvxY00yx{Fg&`ygy6<atWJb!42RrDR>Res`fs(XlPnESy
zvAzAo81oCZh$svkd;m6X{JMI9A!UFLBQgE1jxO7z(*-x{y-cf2YZ|5CjCPLMf|-3|
zLD`?-g#^7YnXCk^JjlGE;d0=;{#})rWCZ%8GeU51-NIg1LyP>0?g!4v7dw>7>bmZS
z9=Bk$HTC(Kv%>|#QoEaQv{9*%YAZ0P*v+`!wrOtcFi~u7;BRiQ|5B`W*SsCiu=Wkk
zAQw)?nLxeqyf423Zp@r6(w)V8Qd|x{-!~>#?Ho=o`mz`YoM*dljUG&XL4|5-CzSRU
ze2Dv2@4>f*pby?Rv)=W6K5MH=AQq{{W2pwO>*@*=8wP<YR*;PFe3C%p*<=6Pj`Gfe
z1up{-P67sYv>%16<zSBmGBY>0rA;MYM}wCRj^mQk$m%ePhmM`Hw4}!mTuyBeuK<M6
zYHU)Zz-C2;S$soYU1&VZ;)#tdbFd791XV^d2ifizcAE~>(_pz5iJ4|khgV=*C0wyy
zH%lkkUj@>iTSrzHf~v?RbYH|p1N?OdM#-;=<L&;_q|XywY2f;%b~-yd@p+2865!aJ
zTgzmz8xY9i4U%E_jocUyNhY%e-);f{e#w>BakJXoJkm%8muZ{20RujFv$WsZT|`|_
zC*J()5QHLYX(enSKKW_{Nzu;P22P&|hBCzq$B+d5?il8wuJ^5dT~uh#L|^RWR>3XO
ztSf1XT`tZNCKW*g@J(s&sG+Bui+F8E6iC`psa;6C9~{Wh++Vin+&GD=f5{Ri8&0V7
zb<!CwSX|9nMN;c8_a%@fw=d~4QX@6?09on}6|gwH#0%$C)wpdi-1Mcm``HGj;0229
z%qIwzB2qUp)!g@HWbw8)iWoPp>74?gG0>)vX?r^{Y1bBh59|C*lCg=zr<1gs+0Rj{
z^9t_}NmMdogJmAoH*%wxJrM?mNuOIAPiaqeM9NYc{hEQLrG}QewXLPwkyV*JF|VNZ
z*(Nhbyv`fE3P({;yL_@=m0bBOwUglRvVb@0W)VI3?8xQnI63R0PVM%Lux^b_)h=sI
z^2_DaM{Q7V7PF2JkDMB7pXd>)PDA~$LO_7pIVSNEKVD;etX5!pxHK<e23^ovHcMuD
zj7c?5O^AgU$g|omVCs+8Q&yZBe@j;<7NJIJ8}W*RyR_`b_n^JX<ydTL^s|a8uIkFF
zz<r{E(TgA)cM1{LEvQp=e&jrIqfu7X1d%$oYXR3U0bF7X<A8*pT_h_QgGp?Bbj_P#
zm9R#kWZl{DEx*4C#$TIB3e}`t_JJVOaBI$yf+e)CoxKhEa6QPP=q^R6I0@2w*V(Xk
z@F?f2y+{I++U5>|XP$)#guW3xy#wvK2U#TN>Z!2-&cyB;%rFH7QetZ=!a2F_ri8fr
z^%G8@WwKZP<zi~HSGoP5LqsOX#Rzv1Ss_bi2d*1uXCa|AaX*{{_My#s_%zZKLik{1
z|L5;pSF_$edY6)N3U0oy<mR3S`OPuRahtmaQg{ZorantDDi3i*gwnb-5px~=-+I@g
zqBX1EJOe?YnbBy5Im?ZkBR=LO|CMAkw<|?aC>c)c($mgC-DJKph?wZyxCyU0#wXuF
zrn6pRR?gX=`iP{M<Ytd`i_b3`gmqYS>&H9hrQhIz$9Q6#8(JfPEUIO?SDE?!b@`vT
z1WZsTknPF$YSf(-d5P|x*t;eniApBoYIz=IsDra{9HN$`(oOLPO&}L&Khuui(z=Qs
zuWZ3d!85S7C0X4d!QZtmh?6u{b$+MO8hgOPJxQZ9HTzLdS}p|h=n?j@h|ju}L`m@n
z6Q`U^ukk-92P~-siz|+c61T|_k2UE8Ez5V|aGPX^?U%%I@Aqkw;iIuc3Y7gzcpw_C
zEG;XkEPW{*MAMxamDI)798s3{J?ZnN-7DJ$Jm+sU1r6_tlpbFSS(Y;ur$vRD2#0>J
zl=kBkoYKa?aN&15-#&FLMOxSgK{*S3zKc^yVXpP9<9OA^Mo3QZ@4ghSvFYK7)`5?|
zs#AW57K41wJq$A{P`=#hV3jyVo|4qs25~>_HB=qEbNERZjF9a{qh?xIdX4{7azHzc
zQa(s-xwUbzP;ViV`)IBcb<>HgeWwnNNg{@ap?Bsl5)-6@o}6DK@RjM4p3HvGW{Tr+
zI$M7$>Z?-}82ZFc@RJvqR1@7(FL!U?k3N@_ap|*pXM&1|?!&SF6@jKbzsu^WX>`!3
zgR>5st%><wgBX?S5@&hmu8_z1<#axcq-Tu)Qv!Ps$%ikcCyUcf!fn^5Pf+$!9#GR2
zcs<<)YAR<z_prDB&-Zk&S<lgTK+6@QG>9g_Y=g5k*_fAo-&m~it%Ei*NQcWi>H}CV
za;C+7aPMseQ%?7aQ(ybCB&Sqq>`2cBo$pKE6b?(Z2W-Kx#_DC(bl<_1lay45*qc?9
zmd#g<JO=_t_mlY`0EmtN$4a9M&G-kbAQ|+;eIj+IfZ2EG3$bW2ap+bVP$drxeG5%)
zEPMDs7TX4%IwQ@Cm+E8DJGn=bb|EA)u()tTm!}aNUX42aTJvw~{4sVRKBb^`CnaGZ
zFMr3&$QzG|DvkvIbJ+@(sTKyT?kn)~tI1ZKJyC~0A`EA0#CEF4uNHUIby&a>#_{d#
zqf`0&(<49LU7@;*DKuG5X%Gumm1}}9tG}NBaesTU<oA=@rm$)ca(1OXDAbgZ_QEFe
z&lB>Yy8uWP$ZAGg7oam!Q;>;+6=%=05P2}mx|Nhym2uHw^0^#G_%*8g7{)6S$ASV>
z*$pKK64i87o0m7vkYA<#G&t%TmZOMi>drtfSa90x3E={NT{hb>-rI)8y7(92j);N(
zd4d#DdT33|N4)Kup(d+`@+|;hO5m^aJ9$3(#+E2C0dKEKH{U)=Mk0H!;9V|NcMMUj
z0-F5Ca=C#eJaK9WIV3RI-clKl?DvN=jG&)0<rJ3ASOIU@bnRV;)N;FMbH6Lxn@3i5
z(FYm16Il$dM}d-dfn+oK7a2(&9&YWp;90onse2;*D!q014&j?Urc|HicQ#hXzkf@+
zxV+nFymUPqppD;c(_C-6%MRe;=G{5q*CkRj|0$lU#-J{c%&kU4AKkN`(f&>_v4>ir
zSza8570VMZD{+b+SRWCU5Z!Dt@%-Au=YC~In)-S)qivh46b!;{6x$#M7fGFLWkmU_
zGy?(OBr%2kX{bhFb=sV<fisW^^w>7`=kovnVwTPW!+pyQe{mnuO6J*Gitt<|I=L3T
zAH8dT?G!B%Z-#0kZ3fppgo;{W;w-VoY<0tbkcJVqXS6kQ7=-hH@Ak~~uR!2#6a7vP
zjBjHTJaZR4kNz*l{yHkkuX`WIhY&Cj5D;)E5drCR=#)+gX%LZ;&LJcO0qGV&>F&;<
z6;Qf+=#Bv-CBFxs*YkV7o<BZo{nm0^i1*z0ea_iupS}0FuIqpepSsp39c%lCyUTUt
zeV4@ep6KaNtm(G`+Fybao=`sw>SB7g3C)D4=uQvN#OP`#kO{uo5gB<<_Uxa{VSROc
zcTVju@-`%&Id2iP4wxs7R^jT;B<*RXNe8RuaS}osi{fNnIP8=;3>edM|18L@Ts&{C
zW*}xP`{^|EscE~+>Tlg0P@AYRCnWu!mZYA>k0O>GB%ud5m=`M{bV8pvg#Xz){wq52
z+9!jHK_h?K|0$8hGVPjA&R4Y@%}+1>W=lXKg_RK}txqtlPLE1iQ}F(Oe@m0`&rdfg
z)xXq2(gOYAELD&Q^uMM4zoQTmN`tBOmgpw=y7>+uSN-!7_~*Z?{QuS|`Ja3K&sF%Z
z|0UD%?<fDiulgTpm483+f9~}^SN)H)%D<oZ|Gw&fwl)5}lkq?I`k$-*Ev@qZ-&G&~
z-AVt?dwt}G;^Co*E0YGNJ5i=~-W9{=$19DZwt9>Mz1=3|Tk4;hQxpXO+!o&)fl9HL
zv8s}wDh}hWs$__}fjXZi>`#F0GRpWT^ZPwN=pH^GWQ~`=f3fCeIuQ1vSY>QPUYCf`
zUpx=c&?aO`{pU?Ep|_tuu%exi8StJK-;859XBrCEFj<i)=w8NEWV}Ur(dqxC8&34a
zBd9Q7`Yf#MZmiv{q*)mh^aC2#NB;G{?AGoKd}L&ITwGNc4{ookfyiw`Hk`JhnIB_A
z3N35SW7t@dFI5v7s+;n%)5xZAs_`2_Uq5LDZHY<^91@o^!DZUj(=mK6A;q{)ErL?u
zYvAjP>ekEHQKXF!56u`xCufXiE&@C3pJCn0a>PNq-0s}_wd87q9}@Bge)XkSD76Gq
z&ZlO~JBRhQ6FVRFKlyB$O+)x$LY<nEV9!nO{Tvm^oh&)V7#L4?7N?uF1lJ`~a7a>C
z-H%K^d;9t*^>JBw#;x^d4<D$NJp+C5*p&>tT-e`^IZUaJ%!t!w%igtA|Aj_9HYV_+
zjYH-Q)td!#HvC~OG{`Mcd`!tG%+@r9Xlk5eA*Ne^EJq|uK#tA;fv8rX`AVqJO5$V6
zzQhz8uvDGfQ|;mB>EA4gNyqV}{xxQT#^9cVb6+fqmJ2V-D|$%#^DKXRp~kSEAFZtK
zeC~L*TR8Q|*2s3znTF`rD~6+Ta;2@PLEX>8^^!;SHu|4w_%H+c&=0-IeW^Dx<Ww=G
z&nHxg0yCU38B%eMln96<(ZnK&w6h|!dDJs`KIgz*eJkk0fN&MRHkq&0f~Eu}cMbBP
zh38LYPd^=f{_4Tw6ndgPSG@+WH0fB?talbKyNJ8Grm*nnp}O+>OQ4HI7`qCfjPD+y
ziT+%3tD6c|yme|If_n5-*I`$^i<l8&SNa+3l_O8E1L~tjxYgBR=stOobM5U?Z$WqJ
zep=}M<kNrTQuVzX=RYR5clY+@;ltn33oFWw%4j|XdF>~yPoA*ouX~uTeokrP8=XlR
zUg5)0{3a$qiH6yDul?iQbqC5slgWkK=8YnnbJrC%ryF)?DnybHF$-JS3eT~tO4fpe
z81t}ax!0y8A7`m{oK+9`M-iRd5&Wqw{OI-YtysD@=|S4;(h+XSuRD21&cz1>Zev<{
zPjsqyYxjzcSrOo@PN1h9>DY_`s;+%yWflQM_=v1wBJ2Enn7y6I)#=jx;`D~>wEW^<
z!|h}04ETF)<oCmSeCG*J8b5)#Wz(TU0n1ba1M(ELXKi3FndBGtM<UcleVivw0|xO)
ziu=)tRQlOD#jlKxmSSdRlC2VbSi&I4+Nu7tIf7HEC@eD{4I=ohP$<cI&#aO@*FQIt
zQ&O$sTmMR;Q>ni>>yswbu`8Jy4cn9Vtk}@oXZ??Edp&NoeR9U~)<gTZfVMQ+>qPkp
zDx)Q#7q7MjL&ogT1faeW>m58e_uISRsiL;ejw=#BV$;F>hPsij*$U!hTLrscu0;>j
zJy0NTd5sF7YZ**r63cUhi88_cG8#pS(6HJju2d3_@*QEkI^E^bB0BLaq+VHxI}Q^G
zbeNK8odf)00&t0~33P~0Owb>#z!n`1d3WRXjZHmewF1$yONm0ksX>UehP9f8bxegH
zaq{(gnKA40XC?V-_#Z7g-;m?MS{_^503^>Xh=(N?9{rYd{wEIK`{UWw++0~)lF%%c
z2T_szOS7GtcU+#>S68%PoWHHYCqRln;?Dy<Z25K*@F-%yhe=#Kj~>(Fc;a>!(qq4K
zCfo8FEj}ksR?K{b4j+@^EA=5fAkI*fO}t-PB{c?NG=HVHhSHBgh_Tl}b^3?)u_WvX
z>7I!*^^2P!AZJ@|UE;l*`K4P#Gdl*Rjm*8*Cj$B^iaKR1wIw{V9IYk=UMT0xJ&^FY
zOLR+|wWK7@tV;azn3h*9r(>ahB+uNTkv=9bMIpi-k@+YCy1u_+WgDldE-9Q$T)M8s
z8-ug?&Nj$)o$%Lat7^*{x~PfblgsQm_!E1_7OCHu4vwX54{uzgbWYSf$%BjMZ%X~&
z$9q#kW)xZG4tJ#2NX*;W7#c6ok=*Eaa9*3pnxkf(neXVQCm~ul6T}}V^b;XHyk7sN
z5G|n({a`ZLsP-lKS!R7n;0F`!Npc01k0XaJ7EiiFqiIQdR3FQt-(!}y$XCW!NWPUt
zs4?iyvi&`k!rJI;b|COu5N=eDd?xn>v`0YFERp#n)c!#tTFdpFzB$V$ZtCddPvee~
zRNEkFfj`H(3M<o59JqEriMu*X`5>-!Qx3eRYQJKFx))sQCeTIwDkalYX16r&`0F8M
z8jx1|C)}>$od@6lwlr{B26zN7s0G45_Sd8Pnx^;=5&zKVE5EC_Zt3h^@JwRULeeTe
zjGf-P6<eR5oBisR>`8JejxX}=iyT{j8x&T1pZP#=jtWt``hKQPg-E4<>H4yb%9Mtr
zSV7k_#1DUiIYPw*RTqPR)i_mmf;)|uMpW24JdiAn3ct6VJ`9Z}zs4F!R~0!v|7i=y
z&C6gERe{j3?y6lshLn~F7UgGcl-;wF`MQFRMy2eE8R0f3e)i;#y~13sr4<$=NamAd
zL$XzmuHHDUrT2?($raVINSV@nhH8AP$6%?AO2r<zX<l_?weHWWE+@#RN~haZb|YQL
z0a^^wbvH4<&Lk~HpkZy<sJzZZN$J)>w~3(zlVTg&5nd>%ty4PwI%v<8&#Yyd)0Ph@
z>Z?RFCM0iK4U4;7>KR7HcNK*=wTwFGSsm?W26mA%%!j8X<al;dUEd$aF$bRu8#198
zcU2nA%l~jb@|Qn)A>~I(Tk*%rj4|Jr5?Ti*M$jP-)E+lQC|}jwQF{#G=Kh5`f)Rqa
zK)lqS+KLtgAMUj*%c2@skQZ9K77?W48>2`SO@x&u3JdgcY2=hMN2@CeOLl{(e4r0W
zUF8Tn?0^kY5j+fCw!v?i(naEg+aPg+(RWm-bSBBB(r}XMp_?<fawVt${x7WtUxet2
zz1|0=-|PH(xF{Dpmdcs7ssypirCBQLnODh|At!h!gmTp@R+SXaCL?FLLkyWOd8+)Y
zpAIrWqlw(IrMn4cUf%^S0RQ=eLpxm=Ib*WRgC;K|ZmlH}x62iYo9^ihYXNU)l<6X6
zHjYfaH-bz><)N@97wVy@UlD_Y_0ThEJRBPJMF`}XqDh3w4gGJSgLnOR?qMLVdwGzg
zcy`FDC-(!cvfGprU`WMFqkzxBtGt<=R*$8yCtp5;qy|<^`{g0fC~^^E&V?wf(N{>^
z{3_5z;9<keQ<`v$Lq`~Y26*a+dgx(dl?2CT=ofZJdPrnG(SM%!vSrPPW;8~*WvM)n
zJkX<0y{$m#|19Y51OXPLeV~Xtj-<vNL#jyAOuYoIya0i=Q;bMUL8PhuO2@cqDiW7n
z2QC4F`{}Rw3ZZ^o-n6#_g_WfVmpH#vZB9CL68L}vAsUg8kM!nE(byWZ-67+8KQfWv
znjnh9AKCf=8*L5_MqU@^ChUw#?ac63DavAY%2(eULk|3SwC-QIX``}}hp-=?!97lW
zR__e^gcw2kV1uW^dx%s8Vtms<2L~uM$DM<>gBKuLt>h7%1K;a7FUFsW$H}c=Q+YSq
z58uBb*tZn?&H6x=Aw-cz;Bw)ck=K-_0hjR9?0-B#!RmwVi*bk)7Dxniu_@#1NG#N*
zb{&+qf;mk<O4f432gFWAd9u=?m70p<ebhMj&jV716xP-ybq}{}@X5nXOSO)KH&78u
z)i?zxtiXAdsVIW*Y)Wj;dsX2qw=e^PzNk2*P>UzA4(q_b|HNV2H0~Y@k@{e&ODijU
zM<VEY94#D>;e|a|!@UIE7D)v=|4G5tH*jobbiokw=%uQ`{oa`&agWM%oMBpISU)^L
zS5$A>tangrIm6cHac+U0N`uMW-QrybBRA3-^&Gs~_IvzZ@e>u$&U?6{NcKpJ-?5my
z&#h+qUI13W`oISY?ddW?vvq7x+UT0%=N*WcMm^Tg99q3g!iGm7*fL*1E1S&g+&A(g
z(>BHY`0&6!{x<sAk3*||I##^~^7%CYq4yi-{3m65BMlp=doY4@fN^^Y-2>Bddj>cB
zN`^+t0mjfcgZqkA))JV<u<}RrM!nmYGq}#5F=frAbr}?y1NGscRNLBzR9TZNZ6n;C
zB1=@b)3xWy9pC`tC8w5^aE47RZIpLpJa*cQX5YP=rRMgLCm=+LAc|hN<)zN6t9`RM
zPH!C`4JZ49LVID+%wYfcm?)&3Q`=G2KA|Y7_him%iiNX5sQZ=rD^{=7xQlOFSW5~H
zb#L~$O7Jo5pI+tqHBtzb6*jy%o>{ARvKMiDqwMi~|0<A4`2FsY7{>X$|Gj^5)WNW^
zM1oXJ_;)Q77AZLZQ#x(hL~c)|)B}6T()}q8Vj4_jJ@jLg!kta8O&feT7?$|ybR?HQ
zI(6s>5(4H<YA=V{1k&+KJ@oZ!+ptkET9Y&Zn>K=Xt`IaCU!U(rcN6!dteQrLmmGX0
zrlOpvSojf@Bn#`izfN_qePFAuIqEca-^0D0LioM!pM#dxC8hBDu15b&s%zJVG8Oc1
zClxal8ONGS5-|7~XPb8%4N!623XMn*Cxvp|V!$xY7KIvTSF&2V_7KV0hCYyMMg<IV
zs6h@bT?P`U6p*+{%*1!@kz)tz!!wT7ITGlIJbH+Ng-q|PhbO$*TNksWl-nxjcY`T=
z`7CYMg`~y}yc`T-T63sNd4Kx3Fl(hH%^0GhIkz_^kRo+LNkBB^(YE|2&msY`H%W4>
z`=_(H@htS4kS!TvYt)0P*!AcL52&y8@dJ{v`}~0YYJcN7UIZD>$3I+rPcMt$!eQ&e
z=6idx0DPZGZ&3e@-D0z?)CObra$Y`5TvEBPC{OpQ%VXgshQ|@vpRF!$ndlz{{~=k6
z<0RML3rBz%q3wnZtO;cRm$2<2dWH7@$)Pr-4dxV>u%kL~3^0lVlMF<o$zV`Y^BGL2
zD<nYJ#-X7U2AokBGSx?)uS(w;_H!)Ceb)f^!%(sFN=)AJ3dc!rAR_ba+jJ5lsB~by
z@Y^(GubJxA!`Ww(HD;H;mJo$S%*}sLB!I(H0=SA*R9<^$74mE48PL2uGAi#wx`>=<
zU9*Wuv|lwta@}2M)XjTJ*4Fx3=Iod1l9DSueEs~q6DfiX#`|r2-G*LkQg0mGBv*z^
zN+L)pJr;l7_ocpbXLo?B`EbgkS9Rlq5VZLkH4Jn@t!B&bme~BK4wIH6w{^)bz?mBK
zV%>y$ea*()X6Kp2ACe9SSm=u3dU%ca#&R_HwMvoOLo7#_4Env5H1lyJdm<u@j6>5h
zB=*b%N=hLGdWt=YAee`;#DFzub-k+NjaD5r)&><|U~o^8tQ$Gtm8C52BQeE1oKS8y
zx6p_D7?a`YtcVL?{svph*%hg%skjB9vh8<Jto~WriXn9m`a}Kp<sndr({HM_>9xf=
z@0OvBzVh^-;CFfexxX#)+~v@2H4iW_f4k0T8tA+;wiNQ*Jf(aYrCYNb5`v(a-zQ=F
zW@2l0-cis$T$GksxqX;WYZl)JBMiZ~^vqG9tT8z^XsG{Z;?6&lUl=Gtv_6VgXM#&G
zLD56Uk+r}hc?=LG&EQ6Z|FVzgP(u}=ux7GQ0jMv}_%k9^h<u{zp|M~wbsyDu)(BQ|
zHF(C3m(Y|mjC+B|*crx9boJt<(di^FP8~<51SFp()dmSjwiov)K~hztb{kG4$0^H(
z&4e6RbZBJr=eS8o=#MYr7YT!d<>Z39LyPQsa*do);yuqJN-@Z9-I7E;`JMnP@i-~Y
z%F3#9`$Mp>NrVTKp@3u)1W13<;k=m)vBjej@;qJN*c!9eD8Cc+UktXOvqXogDCE4@
zpaz9iS%T`&cYx(yr=qYdz-LActRmlm8x8z$|G=pfg=Jsj469`PDNKQOUm9CC=^3YX
zceI&7)Gr-=lS|3=r{lJ?N5Lp8h<tqG>f)yB1t?+DpD2;Sd^2Sf^X?aoBRr=!wYlgT
zkH@3|9dn)^yZu;Eu^Z^AaY6>r?j|M`DZbNrc(7KaYoRZQM9zF09;*0qpBH{d9?~+_
zk(i!a^!2))2!5(Mvyc&3Q)GA!H5mL)1yEeM$OS}C{3>t^{#S5}seA+)2sUq`xx*{a
zsDN1pmL#wgZi<4XkYglY(BY&Wx;_3I%td#n-E0vc{At{=odw8iCpCSWiS^~bgD-sB
zD%KWnq>Hr72YjwPA*pFidAcuZi;5H_jE8}y4YB*J7Zwl7)~hsAN{aKZwo-7h%mC94
z1N+eJ9Ld%ZPF75ON;;5Jn;FY0mKYoBz;X3XK_Oy2`6Y3jMyJv@G#?7YeQwz-$o$5}
z>hA94dCFGikg31;{!BSc^J<^%|JSm;kyQ|ZYZ$%lAu6hezCeIL{LIrRw=W+dMpgno
zMIeYF<MO|0T5U5hH4x1?c}!NuA&gQ@v2Ot@Gu~b|!pfo7Yo7GpJM|v7vayPu-QtgD
z_RR7)9Qfcz-*hlbf~1kqyuRcTx;z?BzW%+H5)kq2xl7wNM@AqCN&L_Pmfz!0HWBZW
zbE;R53S9Z!M+SU-+XjsT%ISeB%f%itXSd;6QoaANBT3`wnPoRnz=6XZ|NQAB-fg@#
zd3(~TTeFkKCCp3SR{}5~TpV>~J*BgkQeS0Xlr)|R8jSxlhCU#-sE5AwxLFxVKZ3;R
zZ`cmvR<Ia~2@Zf6Wq=A8`|^zF#w-VVk+muH&=JpZ<N&l&)A5kf;bVq`iBd_{!&5i@
zYVWICA@M1K&a)F0f|P7Df*(7VhP<UtLfwy6%oeT!wX+!+3)cBF_EM!BvVj)u&W=@8
z!MMt(2G8^AF@COb_3_{zG-)b6BvsNXt2;xv)F<KJaMGGsulI#xX!BGUIPWr|r9Kf*
zR?GXjST5(tRpy^?ine2C;Z{{BiP~6oowJPWCN_zyVhyh*4?hbn$j<{<zuUhL)_;a0
z6?!)oSKr#uxgSC|t3ZOY=UB6H@Q3{VnusOsQJ8A*$XVw6K^=`+%(<?vf!OVoen;nW
z<7|ewe7d|>#P7-`GP5M391#r6KM_d<y(|o%xKpg;LSbtWQ4%;RJ^^;&X&<Pu20F4)
zW!nkyaWVf4DS>^{rcWL`!|nefWl<qF$)73^-x>8uVYuQh`F3F;bI+7>nJPmGy_u9W
zmNQD;V+Ja#?-^5<@a0cOrfQU8FQ;P=P@l9se{0*Xk(i#^P>u!Jwl1Q4;c%$tY~-dD
z_VJ3jlzse?a){aTv8){PyWK#gH*(eSffWf_BO7KZg^~t3FL%t%tbaqA`bB)>L;9>A
zQ<5}e_=HYqj+SACpY?qkY4GyR2p20&znuuxP%Qpfsok-3fcd`3h38JN##*}b<XF@T
z-b2!-J^K8YwC&7HF;zf_VOs0!*DpBEHv&!3v|@G>u!|x-3VtDziKT{jAc7)SGEj;N
z3#&`;|2UxgIb)PdlBr8nl{RpmUE1d=A|tO;j7s9z6G+XFhmR4Y`q1cbDRP%Rer3>u
z?1+6l()l?P=e{R7j>{Uk99vGn?WMy|-P@2q93?dsQBK9zheT(l?SX`J{cH@(oDTYG
z2J$j*ubkkHJM-+_c--}3wr#DmO5W*SP8g8FLKcp2A4)}-n&X(Y$mX`Wu7UQ};#-8%
zF=?95+=eb6oG-6F`)abz7%f$namfxxjnGISo~0mHyJpE87*tW1iH2fQbNqDAZNGM!
zn3;=3uKgg2dv@Erb}q-6k0T^~mW;HUm$VeE{lv2v!5%W)1>!?35)t&|ob1Bul?G7K
zv>xo3S}dOBgb`Nka&bA_^*)D3RQTa?nSk$C9ffVdDbG=UYg5`G0w}rixU7VN7z#vI
z+O<~S&LY4?SH7P5^d)z`dhM+t=A*>SYa4-!u>&sTw;lc_ypBHe%K)<;wgNbe`+1PU
z2wcsE_4pwB-n7@eLJBGk!vk*JFU$?A0sD#!{G7RthEv9hd8&<9le;3GXXu1b76!(1
z<IAg(IS)FfU8QOIbN!MbfVC94t{7IJ0Rb(GL;G*Z7;>v3%A^SP5hZ|C5h<Q3v${I{
z1c<un!L%ah_Kl5UE8X&RHP<wNRlp8ep8<%6sJkS^bOMvpL=WTfLO1wrw08SE|7>?l
zdI&2l1pP#&>U_TiA{M7D8!Ii3Oy%ZJsq?Hw`ugi8RUmZ)Q7kox_m-B+3Sh-%6I0rs
zKdT?DlL^|{!HzwXfLFRjl*ZL|7px|!7>sAmFeUOja)J#iVu}~4Dw@;g7EjSYl5%W0
z2z*v9#&hd2B=tlcG|?ZG2GVPORa;B!l;<G-TDDnV3l)5EZQ=91ug_)aY|gAl$9=q2
zO)7%&>?jy-PbXr)FPrAqsP6sd^0(zVUo!wqUb}Itr~QW!Mm_v2AUm9_<zp~_-tI2H
zCY+`(PZ|unzN~YeDHY~;*@`I!3SEi_WvdzIi-bwzy`6Jg=C2}@fbV1}a%sN<aF!NZ
z=h_*E6;$KbhZ}cK>ThEUFkSKlV!O?C${25d4!ANVAyloe6=<i=oZ)F{ZNm8?|DySQ
z^+j3)W9M^|L!aWuP210Qo4MD7kM{`PTSTOOdYy7EFiAFjoU$>__3dhz-;Ty>t7*8K
zMCttt;kE&x1qZ(K@OFRfKkU7auXN;qt%6beE_D7oq^r+R>1=VQolaa#BI9tFYRvzZ
zyR$uf^T&AK?85mKyXPTT;nKc>pjsle^x*DD%?>C<Mb<aU=xpiXlSk9=DS)tL)rN>z
zL$CSs)gqIcqQb|puptqz>7A|J)lJiqzBqF@3XAZ;>v81k{9smh8^NT!$JWu8jSeT!
z-Tue2jT~wWMUQC6eMfu63qV}}g_X31PJTZ!z!-lARH7Z;F&wiqD=6VwymcaNZ1^Jm
z<mbL2y_j1qVrRPX3M3f<UcU=l$(W0nXWb66Hq<(oNYFoCVUYXI+w%bxU&y=zFB_Z9
zrT_A~H)lZyw^!n-u4ZkxIy#56Gk|e_Zp^XCTGLLHcbCGtkDA7X2w&S@mfu?1Sl;QG
z5y)ZH0~GlQT{5?4WHl7qg#g7<{&p-keW+`yzQZ2ig_>+^-<dXvwg?cW@EYrF*U7^?
zq_8+o9(Y7_1WD2zzO#rg&XK}AKSWWAUq72aFjXY~mYC2_geOc4Uz(UKz!VE59jP$v
zXFtnt*wvaD{kn0-pOJF}{(Jq(sqMXm+flfmS%oc$Tb%&zr;SGs*V~1ONQ!Ca6neEe
zEuFL_d+T?ky9?f7c+SvApsrtBeH^lXx}qU)|66a9{`R6d*L%^3QtDm6WpEY<2dGWq
zQ<tiYq@(gbOMrg+_2ip^Qh(ehMeGiz#+>sH7wP55!2ae2S59OkU>oEt+U&W`4ElL+
z!1~X_^&6tUj18r)Px3^Lyw^)<bc(UDIFB#{aIF5H&t&AftE#HMaJl6MhF~<VZNbSA
zYO0gWmJ1HN29$la!Xk~Owdiw)_f;7+#%)X+&KC>Wyk=GOr(auJbYzB533yaxHt=(|
zSe~{}_T7KZPx1lyPUR-U^Ua~W)dw%-L*8^Zsr}lhd!rU(fb<Q-+eU+QO!<^yy;2+B
z>)zC#tO=R<wj<pxg?;9}{yvD?)zf@>YDfBs#QX2Q4PeGv+RfQuD;qE}FrI8Imb-Q^
zMCIW_?u0P8Q1PWWB7XjwHC4CbuAsgg;w4|K@jeNCMBaEXUsoTHove?M6HX@M-8<>Q
zjasbI<#7%plH{Axji8tkVC=D7YjxZoSEGIN@_KzwY)2mI_MU?tQ8r8ndA9}i)~XUJ
zNv#Y)EJbT)0L=06qf<ef3R9V;oBkZW8`2G@;7`$2Swy`NaWN0IB^hsizP&rj!pl8y
z7oyJS&|U&fNrBCFwJ9{qI*mz_*3&B;KYvfT>+WD$!!E+VZ+5+ZIx8g3Sg<*DY6{l;
z$%Zv`In(5c5vR9S%1IUddNiEJEKm7Z;;BEKepGi1GDpQ4jaD6<N9e~g5n*^phm%f7
zAj0-z8RNv$xC!p`(5BmpxQ<O6y~tDXJetndOi6e{M=+=v0N{nq)lQ6_jdH#9)<$%c
z15D|LPP~wda`*8_ub0w&dJFb-Y|LLockS#go}Pbq0zDn5WZ=G%@a*v67Bo}jvSO)s
z%@oJ~qH~|c^!HsIM_6U~<C_8`$l<@d$CeEFJ>Obe*n<w%TUX8IrpqVg6{wkpC_amK
z%#x}kY_wT3UHTW>n0Kg!c3i-L2(`C86HNXHCId+(Mhzk#tv6>=x?DU^YNh1b&(Ys9
z)T2L$QA$W1sxzt=Tu+IZwc<og5aFcP)^7fYl6QO<{_b;E1bM@kua2DxZ>EZ*Ro<RJ
ze5s$82n<!g%`g7Yvc_{+9}i$4`mr(He&4$A^XRMkxy<A}V`OPL_=JuYrLfp@>xoag
zk59JL<mV&lRn|wnBzrnrHa<5=riS1VsM_&^>bgGMk6pDt?oE9bWKar;D+kwpT`f<r
z4gZtJz}Zz=RrSYgG=e^S`x}R~uV@Q4gf)I^b8#dGeh6e|-T$;jkqy(mcEU)z-i|Sy
zDV_BO;uWUTQNR)P9F7!TAf@~IzwrWe{lkeVt&0YCde7_A^ZG`{xJ|$KwZ5<X+cR02
z0J{!h$jb#%357M4Kbi6^H)wa{$JIcj`A`9hT75e=z))0Vi|Mnmg!RY89;_Ab|Fp@@
zCih(lqv+Z6#+eIv-4@(yU6i*Q+8)43u#<Ml7Q|+q=tnOEOo%nAz=~rA2rGav!B$X+
z=5yJ}wo3fDq1tJasb7JWrDWEAo*8Tr$lcigz_@X{fc%?tr*nAsLSns?X%fuFWJkoy
zern<ay0Go{;w9vhi)J_5yvCxHCS&^vnHH7o4m|H2oIU&NP2|%jSdt~P?f|+u(T%hi
z`}mkn{OY%VjH%M6TRwpO$Vk-HKdW`R{jCg4?Kd#?fg<hHTF;!=D@_eGJcvVGd4no4
z5(HcTswwOaQjjzb%W8_e!eR^`4En_qx@@)tp0msN)t|({OhFqxO@k~&#Z4BStrbQe
zW>Xr=Zoqti$uh`QsE2@Yj_gjKq)-T#1_I_nR(lKtGItm*ukg#ox!k$5V)N0W<Ayt<
z5C_w4AMiTTctL*_izGqPacw0m^D?$i5&{YC&R1uQZfXPh1D-)Lh&sQ7jH`wxA;zSj
z>|-s}C?O=mV?ExMZDW+>^u+l*SdMA(++y!6HKU>Yvqj`#IFO*0H(@zc(>+c~<~N<k
zX6t{+5DV6MQyaebg8EIamir$GJYhS0zY2rBEHZ<;m>Brr&n*6=%l7v};X9^So}Y?m
zduo%v{poNVZg#Z<#9lH!hI-vx!*{Q|#2r=x+4?=aW@{zr*#_y`Vje$Zf$<4N{K=uw
z*p5L?Y}|%`s3DAMY%N1`%^s(3tTD&=l|ZGT`pl@V$W`OgX79Z$IZ(*6G(WTMO`b(c
zG<oeN2n&g87EkJGsO^G0jN`HYpD!5<T~k9nuVdB=BiNlvI_`x{!kNRbcFrzV-qL$m
z+TyKMHz$C;)+|;5tHZY0TDXumUtWH7vgdKtKFi8s`-`B7!;qSXATYVCHa!80cnND#
zx$A1~_Z%mY(r*-2^#P||7tK6~2tB~;vRHBlgn%NJ-UrcK8)U3=GR}_G*gkQVCtA7*
z-p3v3!15{h9OJIe)D5%|_9sEP?AO0C&bR~$4~#a4+p}^DIk{?72!AL$*;jffWI$87
zPO)MtAnwN5Dxfa@-Pn<R7-q|#ts33W`jy+cBl5>qf;~y}w{O;JYPQ|P4!%CincMkY
z^+Sttke@varPa@KAYVAtwzruveCsc+y8B`}OI~S=am<DFf2)6`r!H)}@RRRufaa?a
z3X%5-Y|FY@!D^}w8#~#wCIY-ukd|Y`PG;t({VXY*R_Y}oYcZU|2eQ$HdGB}|uHU?t
ziJveMf}|E#mt{$!7T<8aQLs&mgc<jh8fAFYx%0+qjx4Xm4G{QkX{zl|6uO}o_c3LO
zp755cX|2BiOrnT@cNEzH8wuj&j!X<Y9BMKWm#?Nsx%_$3<+jenH^ORukKE!l_wq6@
zEIDNtxRet^g*6mflJrweRbHL^BJBJ!YrDYzao}=;gyQN--cj+R@7(y#<?r|~=Oaak
z-LuCgr!C1KGp339HIdc`Xun;IKtl*x?y%eQm2+lBVR`dyjaBO@;^C!^prg7^gur>s
z1X%MJh-7|byF7mgq#d$#?ZjScTS)Ri^b}<Fj~uFo`(6OLHfQ{&(3}bfusSmke08~d
z0MherHs)JCfV^rJ8o>i2oSxJQr<z>@I7&!uoc(lbAAhxSW?m5c#GK=#?>>tIUt@I7
zOdBpDyt&f+!6l+mE-$|@Pctfi|NFTTQ~*c!Q<LuBa4+C6gp-FL0LzJNfQd%<u_X1p
zu5JPWW@lfA?^Rl%q0_{-UlO;_oBR_d=B8N$c9o!`*dQTLzDC$H$)D)2+R=q?(?3jj
zA&td1sXNCC-tZtkW<B%XUB~^<{W8-xY8X`92E{KIt^n2Hlb8_T>^ypubtkL5Fuh(m
zLM1Iyq*l4+Oe)W(|2wQv?FW4(xDlFY|Ibv{UZJ;O0{Wf1-2HuopOAPDI^cOYZvcYb
zq!36&z~)o{STPQ=?^m!B3J6T~k&3KetYkjFiJ8VqG+p230-W^_!b9f7?z$T`Br2dO
ze|?s^1R&hmVqH4R{Qbuf_u=renu;=V&}vvSCM0^;kz%J%`u^rKg0E*Dh_V<QpHV71
zus*$d_<%||zWA|l-Jf=dikAAr2lFPD)<$N=lLCyH_0`GWAFIp7=@sYZ7FX4joo)9@
zzWN+ZpB<$qCljVDV{|nLOSxy9Ll3zZx-r#`{MFI*UR2?Q!3P_d85`bO|E%8n+Di4V
z`3!>T)nH9_&CmgGcl7~hzyCDk+Iib5ujy{M2_dka=B!o!B!<}Wa1?3Q%vXPX(J9h4
z(0FHmmj-{Ygf^Qgw#$!xsq<c#Q56-&oC0IPmV*rmTO!9$N7u|`t7&T`0ifb1O-FxH
zl*U6nCHQ)uVxUo$5lRfTwzfd6t*q|u6wmdnDpNE$^-TolPu;|&yJO!Oqq)ai0Ua5z
zpOxm`8z}aykFw;J*B3XGn{E$~rbX`VY;aQ3`C6D>W_&+C#Br{)Et<<YFzQ;dJChDf
z32T<kp-5_U;;Ob?Hl~;|r{IzVrC*a$P$i|P1?4p!9^9G(xemomTT{Anc<CcPe!2yn
zL@le$`Pa@lsSRafKwWVNVe9(J6ir1P)L2SV3XZ=#W4C#8{cG6RGJnha+5`}|%+!e_
zRY$@;_7G$k|1hOtvOM@8k#6&J1z+@|)M+;D%Ak;mYV<)H&HH!x(ENg}bKFfv?gd1x
zzza!iWPO6fu5}FxO&{@RdP4i%;xlUeJ3TBfMD3W1dV5%C_3qPic3q#1I{8w^%8edb
zlD!-h1Jzy~f$YkcaEysjjxYXGhHwcAee_qa6u*LMdzTCfiz)uc{KJJ`sB~X^cT7Md
zQ=o#GgIL1bmcQ0$eBb1tbM0X)Fmg(Mx1eM(hI!4=F{U_1X%9<QO$t)y(yDie$gh4y
z#1Y-r9>d~~o55ID?89=xC|ns)XFdC6{9Lts)1a_R##9Ot@?JejiXH1mi9oFXcVd0O
z?)6Nc!rFmbFQ=Q4Js+YeHNtGG1xDXT&&xN#E0Ev)fbAQH!}%4L?fa`7KqmRP;EDcz
zrp$kRfbR>dk_))b=felvSSGJY8MLQFIPW$eSuyv9)rfX$epcX^irm)ynvl`xERj*E
zJ*KKZEqcu?<=p~hrra>M{eEcu5RjQ3Wtl#RLR5So<kIwj<MDZN40a<Eu1GszjeeWZ
zELn@Xg;wF)vI(@ZpFeBPHK}cGY-(xg^|6|!sZEGC>w}zwiv*X19x?R$T|HN#7t}oC
zL!IR#EJ!VacSfN%U~GZ(o*|WjVr9n*QZCx;Fntpn$uB~6YN`tzQw-;2N@qgDoPfTu
zad+^uXAUCpyg-JNPsn!RkN|@Ja9OC<wx$_I0T`CZC+KwH>*qfzV*n-JG&ppXIQF8<
zOT^r4jZ9Do&8JQnklA3|vPa`qG(@4~BaX|d$(?=r=V0BZ647?a$z1#$R=GW0<i8`N
zN5S0FK1<mL3T|L!2CtYT_|B({Zcv-bXk9pz>_LU~+{RSB6bZJjEuNYCdvXZ-Y43|P
z6@JjpClP=_RO$VRa8)4GKS7IOSzt<=Yj{IVSHv95MjhR`QzVtHawl>fDKzqWDG2A-
z02JP=J&iRK8-s#cdMAZBo+7e~_Zv&D#+o1T3QSb51?HYKogva*CMN5@HnZMHOBy@V
zx~b<Q(A=G2yqlYNV4GVenvo^1ysBc^qA77oU`qY-co(sQp~%V1xAYFFyoi#5i01P&
zPm(soS=Y)PY<k_JOFmCLJR*pzi~aBIMRm=&N}HorCK6lcorfxh<Fz(NMy5S#lqusg
z%m;WNLRoun>{nS`{gQfFfOqn3HaOakr|7~6%9Z~qDXISDq=j(x`XxQ&=h!D7{yT#_
zjPoZ{aPH?a2M2P@EWO|Kw*fpvf?~C9ydL^Pf78YX08$deSwP*3;WC#{OocY+Mzd8S
zCQ8kfABCk)mfX2?|5MN@e9H)8XJ1J{3{||YZ)adF0x{Z~h-t<crk<xXX+DN?18>cY
z(I9a=M=kje$C5osClFhj%{F%q?E&;o$<__B=j2%L!sU7DgX(dvu1t3yPdfl){B-Z}
z(S$j`<$9RVP-RtLb-YuVR3+)+#c_~RsV#+1epYOHHL@Upmn7iHVgFhIQ&#o!>SFvu
zWmSeal9KF;CYw1tDmG)RY{{Nhh2Ac+tHQ$K;Sz}S%To95H2+~~AkBf^k^()RJ6XNg
z*ewneO7gSAgDeMrt-<vpo76y2>uRd^9*pEXtD+MEY1*KWzJ4T|qw*n}J2j^uBdO}?
zdHT!o0ovz0Mjd|Rwwizrw(VkKVk9+Jv)&wM&0Q*YEcb5HN;_<L;wa4zcc`y}QwZVn
zC+3oI;t(1a<7X|Yv9rk%sHli(9B`Qa#1iOvwO-bTff7wa`7w|<>DO0scYnvfo|0_+
ztvi*h?%->ju7S79BmH|%tKrMx7&pQ)J66nKjwgsX*Y;fuMzv}Z4*wA>jz_q!Ya1)3
ztASFSC(hl&DLA*y_=2OYAS_7;IS-2g1trEY5<H6v1(B_;i5j9LwdmJZBP<%XrTYz@
z$_BIc7+J7xP*SR>s6Vf@g&Bv@bB>%$^@etB)*D2L9X@Rvn|cG1t$Sk{jaz7C?1Z3>
zXxQ*M`b+fXsb<aS2$Fgl6iaDEb5H@<-XHn9A%#V~TkoJ>=4Gs{{p$Q*w5)lY*Ha1+
z8EQ_GlFk5G+xp^S4wj?pni8fM6VZs=2k^&1G<m|8ZD=iRdJo7K^>tKD-n7ApZ<DZ+
znb=s2@n<rl5lP;{^2na;D$29D7qW*2k+<YxvaBF6NRnDV>YlgbD@q_rOw67N{J_aY
za(;$*N^feGy#n7Q9sx-*do1E+TQm0@0F_{-ci79Qc6O>!EP~bg>aKeChsOyXyIS2{
z+OPeVbG!ni{%EsSvfs{P^+uKfk{j@0>z<46(JxsZKRq~>zShl9jZ(V*TpaCsJL~JA
z&_eTcxSpZ{Hbj#i!4zacD+}=Oi^a4xYZ*ZB;MRfcyt&!V!s6cU*b^*~>ht4!PoKT(
zo>d!KeRwA9^1W}#rq4xTvpj8AY8G2b?~Pnj(WDC|#P>qbHfxReq2_?0&#Q~_ymUF_
zmhRhk<?k0VK|)NIwZf>8U(<BTbnZfs(s}pyK_nBA6Px{yhwE!m2_AucWhF(ng3uJ1
zh)pviI-AeG*3WQgWjRGcNgl@2XRV5wMKqM2@420EF$h0C0`FK^qV(duc-KYVcanZ`
z9@{SVdQl2s`0#z5E=R}C-UPwes}m4>7thFO=KcJHpAxf1n3%~~Pxk(3i;llUca5e+
zFZ>4$AwN_miw5u8rwE*Vj_UU3k0$c&j$3X%TCZ;-VWr<1dBN`Lxt<CNZ=hHh`t7e!
z8Q!}wZ_VbC>80s*lhuzCPb;KOcF3fZ1??X%)bMzy(^}YCZY;n49^3yhCp9$WYQs&F
zP8<#5yuGb)rd%&x6c*<eSt9M=ZUbsVkdYCdriwSj$S7LQ5g167Cr`gN*55)J#?<D3
zjL;h>;Eap#e@n8o*!~(+;TQJ8%HedxBp5w9(}hwnr@7kW@-upXgOHMbt%1HS$nX6*
zSp-u4l)o+AKiquy{*RQ7xT<OYPtp31*pPuZxH{wSP7MK&{l7zmaZqJfiZwpLOKH;6
zP@Cf!IkAthC4Hnj0*X+V9DLkMp#$(im*ZF2G)C|BI4?&Jd-6W|P%8(g&&+ItK#Gg&
zPD4WyT1)rzpXL36*{0&nd$)S6>%zkRtenQyPht5|FFUvy*hE!?uz-_>JiZCV$Vf9N
zrPNm2o@l#!x6xcg+pcD2E&B&}VE8op@komO?zM`h)c_hpy-^@<jO`<3P29H!D#`>^
zKXu+&K3Z47m3)cJ@MBAE*47+frdpl^vtytbA?8$z!n*kg>}EKR=myhLo*2CWUW$c9
zF8Nak$(zH|=wHM%gsp1lzk8pi13FOgw0$f!PF!$hRds5h;SN$Lv%DVVXZz}||NAV}
zD%VwpGwA?O<~!>=^Q7-Lq{rF&ZAVEuObp2mrQ9195dfL9BBt+za1=@L?8>x63T2vi
z;q*zHhe+e^9-_0YZoqWB(rS)CwUqevFEy6FZd*mti(I(y#CH?#xfy*h_>OgGZhTom
zkE>m^-=b@HA^S46sA`3)LV6e@iZy{}vmf{TRFG0k^x9wn#ad*sd|drm-Yi19&ZXZ{
zK8NMY^Ti0~b5NB8McA9nJgDT;g1K3vdB;zUulF7J$P@I0E4|_Mi;X`=-o92Ck7zbr
z+FdzbYzvB!Iy&D-(I5M4iiy_f@zDh(+>^-bI@;k^;(dnj>31xxKn*t?VgGS^fVnN;
zGWe^Nza({}zuWm&;UKy&9w_TDFcyIY$rw+5d0~^9;459u8rYE47$5Pz8g?g46J?n1
z2h)wUKFymTwb^4(^9$h`A)v{nmULEfV6>jvMRz>XvP$_$+-$YHUkmmYK-sC)D;eG>
z>~s;T#q0T_Sr?BG^Kr~C`q1?X5b_=~^QLP4I7{m6*Hd6FD9p1oPZV)>)k+;toz*|M
zBR6}s$VN!`L8T>yJAY1XC^9rD8Lq$Qe~a*Xs`fgp|0?yIuA$bPMhrjvc&vi{{-2dO
z<a^4J;xvoJPfbqPm_P#Z(Y*7Mr(1vAmQW?KGsB>c+}|<3MUWYP-+24$ukH}~>pHLN
zUw6mj7&V;UMg|u6UA6R|9J1WH=RX2A6`C*HGPJCwW|;5d9#Y~H4oWTUA2<})nmbh1
zWHYG}VD5KCKLhni_`K`;j7mPvk%;^6Niz<Nz{yF;eV|+otYC-i=r-lf)bR~`OBL=%
z#&yeQs^;WkL1O>#(B>uDCAL&wlE}O1&xHFVF&c7l@ipCh1cQf2L{7ZCT826U5yYn?
z#bfbE!O##^kHT`Cro>;@)<^E0P@OBhpkpb2Xy|>Cn=A%le`mFuG_7=bxMLce&Ro<(
zuS6lb8xfdetY%yhR^*>h_hoi^@<7^V&SCK)4?1M3Evgb9X=iJiNsxU9i!hm;gIMb5
z-r3f;K4o&ani<|xoVIr4>{#DWXMdQy-Ivf$fAN?zxV<fP0FdctP~kEwt?LX6{gDZf
z!mmwS1h-AcqBwITSE}TQO-vql+~sh8uQASZ$Cca+ab9xAg{6vmWPC+r);gM&_>QEh
z*i*=hTh8K*J^%>d(@BVPI;EQi_H-Yb*00r8)=4tVZ!K$#@o;bSPbz^On&ksGCt`bc
zeiwf3=d!(_B;>b{==gWCf-_@2i+Ny19v5a-Hw`M#xMw!W>dCV}AR=&G;go)GfRVHN
zlR?cnY9O~UB_j#wo%I29Om{1=V~ZIy8CD$pf2jDs^y|~FcVk+5?rEGs^9!$8U&y*g
zG`p?)$!WF-isd7p+t<Xe&H=|(ewEsE_<OrLSE*rGQZLo5J!1etO6xn93s^7e&**|C
zVy97sE#o4Wmn%<WHj-cM-+l&Miud&j-=P`{I3+R7%6r;t2Kq~1x&K)2U_~y=i>tuW
z9F%ZSI)}wi6w`&Mj9i~?H0+85G$(M&ng~*AGO+VE$VfM3mG;|n1<B;t%AZ4(L2kt`
zKPP>!vAAi&&-NNf4?Nvzjud{!@?&Wc4v7?A*8m_XnOD|0H=BuL`jxA*$#1-W;FF6_
z(GuhM119`qoct=|pt178dT3D{9w0`^mY0dqeg0y{yLs;Dp5&k%5{#L4J0;FSTyy2^
z4xS_d=40!3t9M-mDI?5_-ikdS7tfIjaK|k)$-?bzzHYeuqnSN)6vW_?bQfTPHWO3H
z0iy`(jf4(BSZe_kW^g75&@0O&0TjA4ya=GZedpOdt<slXp^JL;Z0%Ul?yWn$v@fs9
zEwpG6czdW-P-x*)Ue&S$G!pI{Ha!G7n60)LG-_#Au+#IaS!!#WAY~b{5d_oB(@ngc
z2pfoxXbbGrIwOgxj5}Ts)f{ty4Rk=Q=YYf&`5E>xHVEmE!xX76m>COli)|y(MZtcr
z0$oitXD5t;@>JQyPT8<aGMjEE$fk0z1qYDIBP$2@LiMTmf41rMG{y@@JSekxg`zl<
ze`~KD7goiGcqf`84Wm4YNPGTw7;&F--Q}|PkUN`$$C$54lWtb(l02DH_(2o%JRM5$
z=X1Ja_!h~qh4&Hwx$Lq@?2WWTk!=@L{_9emB6z4*f8pmt#k;9T%%kq!tPc_#_%K`F
z;;X1{@jfX81Gw`p2Q#<E+|;J4p&~XLi_wt5Jj_M~E1iW%k^mz5k|yf*W#7BGgDn7E
zclu3%gI;W)go}e}Q#Ty*%+hhgi8TPLW*)+*)Gz{|024X0I{>Nx3yg#xBY^9w6gg`w
zl<lOqE#N1!K5t*)={tVq+A0~5k^cJ;8_Cx|FG}H+2WsUA|3C1|RVwivBFb%jExoHz
zTPX3JxEEIZZcg5Q-%F?u=d`$um%;Y&{iOPy6$c=wwyN+bIA_fm?!G8Z>OP=On~><{
zF&k^7+ya;x4mUeP-$hXYeP5m>n%o}9b4-gd97y~M0q1Cx#y^#frsmy-ddYDm8NdFh
z<MQ;bFChATx9BxtuNC26(MYT6yA?PO_`Dz?eQA7Nxf)GM#pOTGP5?Bu8QS}hsW$+J
z@$bUbn==mq;*M6*Zha}0$Mnu9C?=iNK{3^0C7Ne9mteucVg6re^U}*7kzj|~r*<mX
zYlkJpO*}f+60!oQ1@Om}e8AhMdm$7$<^k$^t_%YiAgMMm`-USZM1>e81f?}^yLSyW
z@1F}kyX{#hBaQ&Q%K2!*{sAPt%GUoCV3rRBy&&yDLUxil1K!{(JjZPOJ!X#11ocJt
zJGrPIWzZ_|KN5+bXV&BYoCle50q8~mtmYQ7th6+%M4+(n-FXB;8&nmY{9LyKgQ_Z`
z?f71d?WjVTf+G7#?zrvrFiYZ4c6@opStnksqA|wpWM5WQhQGk^j}qxshTwf?f_sYL
z5NZ9(1r&g}8lbSGV@z85knCCj5sj5>%np}GdMfr{YVe_R6DDA%vHcgn-sxx3ewRCe
zXlnl<@FgQ2?F$eKUMwRJbr}K1MixcLU<o4awjyaiGIa{jI7)wuQJzDvAzHehSb8O&
z5<3GaEfWogtl%GNBtnU<df`8T;K}W4KYp!$NY(n8$CrHI+tkmH;tzEI>U<p_Q$m+X
zRQR1?PL42~*I|3&rM9PlyD@NI#oWxy9Mm&WfFV1@!&%9sZO(Gf{Xclh|6<QGDoG0v
zMhtL2&PshhKqXKhyR6TTump$L@M12!u?;d~`Y*D4pdZQp3P7d>;20=yOVM)xe_69(
zhaK+}BGQr&H%*k>Scx_VNMi6_I&spd3{-%ZK~Lit(g%P#2gs)b4JYxt+y8rn_8Fcp
z`3bkFoF$R3kZD&Vn1ulDDOS}%4KhruTd~Kv#nv}~c@4>D7zq?aT*X`ZTQ=q^HY)rX
z_0@pm(r9W92b7<o?(+eDcX$cH$j<x!sMYJY!)+pa8Y>59a3!i3!<OlCw`?F_m^>!O
z$Z^ek;i*1x6$AWjA+Kb>gu=KdET3<9*L-ez*a&|ok>Yjk4b(Ymi~);jEL9ht!Shgp
zlPxOUXDI&xy8BYQYOH(6rrrZ~?goAj?IaF0pCm*YS1@kY1`{T~vmVEPP9OrLi1pjf
zYyb%<rUs_1jCc(|<aQ|3)zm}n;=xw$B~K+634<K{TpHl-n4|&}HQNKgR=T0`41^e(
zw+B>$#<o4XaXB5G3TdeTd@c$=z27P69%7LHV+tSV(Z=V^y}|bx;1~=Tb<hDRz~m|i
zfs#zpdu$9cTuj+$DMwgKOSu#4tr(^>!sgUNgS+SK14fj=#35-uvdR_!bo%kt_yd=#
zTNb4$pIQN9ie4b&XyRSiep}Zdb?BIeiM0HUT);mZ4_|s=e*o%+r5b||Sh4D>M6`j;
zTv`}{MCct+5{S?Kf#&8V4WjCyqU)pEwV>j(S<H@kb6(<qUc8kssdcaqz(4_iD!<~U
zg#ZgH1@^!JEOgeD=>&|(4V7qp6bV5ZJhxu4A<dl}Ohkwwv;Ko-MzG!czncmDnmGAY
zf5X0rxdY(Y7&kGZYbq#fHO}A`fkmJ;=Pv=vUgSTO0W{#iRRXFlE5UpO2791%Bk%uD
z>jd{P@<;)@EHo@(=oh#Ha4ESSz$9J3h3l&}PT)HrdkSc6hycG$BerdWVE@yiv>fUm
zMgUelT2>EL2Vq_A*k7!;pHhW6=ov6^)<Xdx78{TZEXRue_Dtb7f_yOD7@{$qMV|ai
zc)*oEIBXM4mVV?w-rGR{3V7WBh$erLQ?130X+kucjQ}5g(>;=8`ALKIC9$B8_xfh)
zS?t<E!3~#y8*qTJgJTK*+bZY(7$HCw0Q@Z)UgckOJ668Zj0A`<yqHb^&=>`LCNM%N
zO9y#?+V$B7&i{6VXg|@7z|nt3%{MR}A$Exkq9f2N^U0tSDT)!T!5+Ea1px*1Z)Q1~
z2O2I-4afLD1HJmX9-xH8T?es@Ip7ae0#|jzw5X%qDL|wdhNY|B+$R^2CLF+D#We-S
z9j7soB1sFrL?E;Lf1Q$sEf3n8WeAK5#9guA?QR-v2jKd-_W=#+hW-Vdny78V#B&GO
zy^(G6UeH6p47d&87?i+DN#}30ZExCfI5+r~OcZp}JS(7+0V>%INqOKAm%lF<Q8Zvh
zC!oSrzk5Rh0UctF07i*_W1Qgj48eTv|GE(^S0d9s1ib!@J)Nk-{kHA?Vwu;?L36>6
zer{Bt9e%Eu`C)JVWnt@gG7_hkL4``JN&~o3F#UkrUgr)u2DW}V6V?Y-1Q+n=MpNVz
z*$(L7F0wRAJtS`1&w|s4{XGSVzwL<N-M|yc9U6l8;D<b&^TxwF7vOfse8zR9k$EXA
z@|>(Pnf;{Q_;>C&`BT92k0ko_7)R0KzFZB-ZBM)s3if#*7!ZxwY6KrMFY0U!x5+IC
zLx*I-G`u2RVksL<nmk4rJiL!9Hcj|G+BDzWaYd7TN$!&DdlP-qJoA+(t#805x<wvt
zV~8h*^v<jTE@xJ?-dR>Anud4#;%+bn^bMP3VYaO0Bq6fQ7Q6s^=jWtpanf#UqjV@g
z+0*R?(tCC@05i0BP?uEoJUWvhc+r8w<L^;P>-(py3?gn1baWs-a|oCeEOG%NJ$pZY
z^&!M(Ab|a#0|Pz6Jntn00Q|7hbm4yH9zC%h1qd-<SiHIkUnkWi`*)v|a|oISdyN9Y
z6+mJU<iD3DbXWvDjW}3U)^}LIToN0oxcPg7b(-Jwj$|dc7b%$K_yB-7`U-_5_>zn~
zE3Qf)LJu`A#6B`d0YoIXYAAwJ1kzH#(HO}K+i@eh3I2ou$9B~<`IeD36CPexR<U1W
z>Wz|un>EzNxh-7#KgP}+Zl`N6ouT`vX7M}nRi)OJYtz+KJjeTOkGt<^T+Lu@^9R00
zMuNSyFHw&H$l2e={75Dd%S#Kqg|?@=U&C?3Zyy~wq5Di>ZA^COWfAkx0@Rq!F>2M;
z78KlXKdXx;tjG!9HnB7T<Y0@Mn4yC;rS%9Bpw(OJ^~4R?k!0P2Pdblq+GoDpcxI7c
z*4I8KqfnRph52C+%@gr@7hE#I(ujf(LdsEkWee^0Dcos!xvme?UKhttAiR#OUj0oO
zaD5e8&dcA!H4|#AhK=?dS2}HB%bB_s;QY;(QARJ3ZP>>V;0T#{d#?st_F_ZL?95zF
z&R91$Jr9rKW|9866e<eb?ChesPhH(#VK!F%QwnQ6kFBitbA?|5&6)QNoKGa;qS6>y
zR@~ixUtGGOp*5h8(>S^eG12Ql)^`s9hp~STgR%tT#lTUKRaJsiR5mL3Y`kAc9tC%v
zmt{sjJ8;Q!sENUKOEsrfpuj13oqWPw+&%xiL|E}{!kK~37AFqQ&K#$1ejGeJnt1$Y
zu%)^@PiHlByh)%l4X=}KX5#E;G*^Dt*4q`_a>l6nul80nyw&=3;hs3%qVGde9UWj!
zzwa_26BFG*VBAExoR!!HJ!*f3yON+7rzC#xn(G|@ZfDagN>jnd7PTeVVlPM96W^aH
z3#3gLzUl5mek!T=tZ3rSDq}9l8<I7re7lPO#&m8xJLJ=MvoIcc2b}vi@e=7z<iHE8
z|BtD+j*6;{`i6%NrA34x6(j`&3F#0Jq`Q&sp}VD|yHh~A8wQ33rMriej-flgb3gC%
zzUy0S{(|eAbH%=P{C4rm_6A`o{1+P%J~^6{TkpgJWCa3j=WF<y#g>-8=L|ZKM#-KG
zo#5;KCIxUg*86`Z_Pwir4mZr$2-0>n690~}aS@zwp37t&Rj>?y!R3CvaQoZYKajR$
zxw|%d9mZGFE^ZD1s_G3~VFTFy&g<l?_IN96(`^fL>9JU#6~dQJHl{L&6$EIjV#`7o
zQG|=^f9W-PiFtl{?YM1UUug~WKJbb$09^2?yyf&MJ<_t!c7#cH!Mb3@aG&$dp6Wvd
z<GVbp2RV>n(rBNaR-K_2nDZs&w1#kJjmOdoiNPb#(vCwVUS)C)vTSH-TI2FKNU22N
z{ypanPr{V%vo(BFFq9Y@O)wbOzM#Og5$<S_oc#I_G|(jcaN0N5!S46^)$0KR7%nIP
zNyw||+1M_Wr#^;0-sb6YF8T3Z$Bt)kD5(k30J3jyr(;&fS6AOBJvi73#ceQ8>OS3U
zd9&vJLlG#MN9CO>BR6A3t5FH^|NaMm!nz7+&c45LW3geDtx8Er`@qJ==I%meD+*k}
zsiDfSv56$Y?pUz<JH<ax8XBX4S+4GC@=|N&E<}06R57byaAEj7jc)fGj30t9P^H`P
zSG7PU7q2Ii?y+5{aZvS<KN!aGC~czvQU833Cb=nJnUST5(J35W>4nA6l_gMHQ{d~0
z4vz_Rc-%<30Qwt0p!Wd}Q2(u}9kXGSF;drgYu&7`f$ByrVsx#u%gg^OwFRq4b0P>m
zNuZ=MQJ=PdGXF9Q?S|=mx^cr~78_hOM~vd%(R<u9?!fJ>0ta$Y`4;j<TEVFNRA1`G
z1*d^5TP?sw3VBLpT>Sj*8W2NCfGl<k954HZtgymf(>S|r&Q`Rqz{XOk%Jf%1&iC`}
zZ(3<2|C|&jh$yK~D)u*~E$pP2qIX_#>8<_U@ulmJZv}J@Sw<w{y7c<-_C|Lad=E`m
zSaDyRRI?MA!dZW<0tpgquTHS2fr?p*o#taNK^NO0S2%Tb+)a&%FC%f|eg=`Y^j*{$
z#VO9_HK!%Vq)=Ws4~{^0`k#Bo%CdEySovEgJfCK#qq5pghHt+CBm>$b{hUufiV!wA
zOFp_!-Ic_E1pL)ly-TEkfB*JvjPfG{qU69xc{LEDyl`<kaJU;X8zm(#-*dL5YD!00
zRCKpe*w$uv>*(q%eo%RJbJ~Bsit%pinpmT%w4<f9#etk$JI4Y7@xImrMp$Qs;&S=i
z(!IIM6pOKP&X;#}X5nxB<&ySyW!}*nn<3++f%!4HIi-`Hk&duiX@Us`Mom6g8{Br$
z`t}wh>wy3$RSC?%m0$huW-=q8#+nz}HBd%lkPQSVsKwm<vcEQw9h1(IbTH;8aDZx{
zQN&I}O-T)(_D#hVfgYP0I|=DWeVWiRFtK9Q%Hmiwq}ue8`Y^PnLU-lMelHsXVE%q*
zidPP?as|@CwXJh&fj2r|z1DvBDx_a<f{L?GM3|t|<w6Je+Shm=n}+^fGyvby^f45%
z8%~r0#G*j+%V?Mql2^3B$RJz8C!(4n^A*-p=Z5o3dp<Y1irj+9slL&<p40Az`n*Xi
z9(pieQjaRbcQ$2pwSgUnJ)w8RGnW7Y0;2wRZc{!C%54<Y)>jj5c1sPX1sKv>WI;r$
zooSNG)$F#e+^Zbw&WX|5^4jR9gt4uwJxcd~hd69*7;P81MT+v3e4Xo?M+<#Za(*F|
z>okYLV6qI@!xhi=ST-Cwn#$K$SP0q4?g2W6fkfV0-vZq~QSKx+YkZdB%^nBceP#XG
zI49@XLZ;<$VEvhBIL6+<udb(yK$K90N_}XOFUx;@T+^5Hy}n4AjV|KwhkqN~Exg%T
z1q(f%xCorZXnDW;822<n4)Pz^l#)8Xzfv<b8yw60Ray%2XZetnBlIDY0}X`9$=MZ4
z)35%!**mSY3Il{6)*Kz}Zj<w-_VNC2-rLJLc3?nfK-=2)zL~PK7bGI@Q9xS_)}`ev
zl{q=b6s8hrX*qV)elq7B&yz_~NdB7}Z{G-{l8~3n$|mOUNhBvD`)?d-Nvy&ip5_rZ
zA1!I=&0~}1xS|SPj5#3>Fe$1f6$~y(OGhAys5$HU9*K)yJikQc4VN$0`QgG~xOnFS
z+gc_pZP9&96t~k)3G3uhA*NJ^uT;RcX}x>#G*P{sE<M8);(qVUym(>jzB1)Ona`m0
zo5Qbz$&Ox;7Q_$_+YD_(6(E3_UaxRUII;Nv25V4PD_Fw{ky$yYW`Kh!@26AM)wlvk
zLMbK=X6<xPZgI=gSFLS<>#uN`->+P1T1D!Zel|K5@p!cGJ<F<5)^+<f>eq1VmjF*N
z*G)4g&QLLqWgg5nM74s)w^JDb2tgDMnDgQQ*7EC!4A9Qr06CFxCpZpvb~z|?UiA&p
zp4*emVyuv1g@LDP>GF@Wu6FTT?@DNdt(ksUQAAcrSm(^d`vcdoh(H&Jp+^U$t&3R#
zcay5>oQCQQvsx+0js)~)kh!KYRx>REXaq(C*_xgG_F)9!7)Hap=)nb|m3H8*unP&T
zvnA2EpGr{{&}9d|7Hmg~<}vVr0KKN&vYsy%B8Fpb$5_)IXUq}fF*#ml5Ru-_#YH|4
zFO{1Fs|F^jw?Lc1e;o`<_qDTVqvr#BfM&ZNd7qElrBXoy@xh#X7}h+8--T4>%I|zn
za$y%a#!@&G>^3srBFI6b;FzLZspO5btywk{M8_Bc4hDT6rv@kqhpnyif+H7&oE!sV
zBEybM7f(%#QP@M-$NZx+1Jn`2(~%4-$L?uN*g1vnDOYrvRWDtm!iX%)*FO+096Yw4
zBbJ=fM9!NFE0|wQuhPYOO8`1)btQgDq1|CYP^=1~7Iwo$A&)_;-AC8*l&1)*4r3>6
zBnjdMbzWwR2D7A4kjl-Ng8VtG19O+8WCg^gu;@~({>&8E)hF*$Ggm5eG48wYU40~N
zq~i4kt=$gWd~VWA0<yjR->R9O>dqPNgQV68%p64jVYK=8?az41+bI22y}d^QseUMp
zuhVTJxT)-FcTuwR157C3*zq%+)SA-5R?%Z38_s`ybxaiRwD;=Jnwt^M>7DsEg@jwN
z2xJ9%SMYTb7#&-5@%(ZkWvy1fksJRR(6|C(?_Tk14t%y5!QQmS-fnfZ1#H{C@R#=5
z1BNYQ0P>O~gJ=O*-Y}4JN;D&Z2KwOxXBn0_<>5$U^a$PpD)9el=}iL1Y!N4$!&#LW
z)Ie)<eV?1E1rYL|rQ`J>tsX=`lQit#rL~1X9WC8M^nsw-Kmwqb91wP?0TF0CQWOA<
zx2qnX%`DI6wUtJ%e4>B@k@ODL4d2J6ioCu{xagVbW9j>ktNfN`0=n)h8eDL7)HfYX
zr$rzm8BnhQsgOB(0vTx#qqpS3o(zwgOt!2*KQ#0hK|8jXDj~0($pxQ1p0RmNokqW|
z)hFF=!uAfX<XqnPk2mTvt#>_d$78}EAd&C>cnNgQoQw^>YOrD+j9n3)k9;S$ojXpt
zdbjPKAE#QLp2$f^E^Wm{yY%MXEkQ{>rB!y<7@u|uedggNCjOVj@BEJ7C0Xw)6C{u*
zOBs)-p`i{M?~S*<<{KymwuM+_9*IFgK3JAJbgw%Y(Az!WP!tK$gWDgJjHMe>6>;U2
zh^YyjOL*cRY5XTX6<O7^h84{_bdbGXX!TuDy{q6F#)tfT@V>B*HgiNnp$#b3MJwH`
zcgI7))Gm03KU7WeJ$RL)Ip^trSVIj|pWV1nx0DedUl*zC@>2tu#X-g1foO0#zh`P`
zN8Uf_vV}C<i|5aBNxy5+JwsMzDTlLx;U?<ytFtdY-I8<>-p>+qt0DCrr%nRS@QP&|
z?0JGr*BN;3+)KdD7FF`}pwgB?!1f^)Kut~niuw;^C>+EV@aXBqjl?y>vxraA*s!qv
zTyOUV^k-}E0|wg)Oy&3h$nV;=-*%MI6_X^<@XGQe1%0=radoH`a(&wN&+aOG|6}@)
zKZy%xn@|M=#IIube++EZ()x)+{UoU_sqb)I4UI(G+S-n_XGQ>I2dL?~xN))Z^wvtK
z?k&|j1ZkK?Zyyy5WIhsQtZ`v>si^wri=5BIAr6ihQ<ypGoa*ZApsjpp7<XyuWV{sr
z*>0`<1+X9d`;**egf*d1X3CWTy_n*k_r)Y$N1l@n2m7qG5!-S=p^gjs%^-)Ky|IC6
ze0Z<m`-Po}5|!Y^v4<SL$f#rK+1b(#r<<GQ4{bCFRI28WC#^1<%`NKzK8_F@AO<~3
zHJNT`NXJgDz5SB;nxU%fp5>&wTZCa6yR5`7&F$Yn?=A~{CZ8Iw3lrt-03-ISdr<@3
z{6Tb5PYvR)fciGo8rla=UH?G(?fE9x7`oodw%nbIIS{Cmcz1dF<0*klTcB#J%L4h*
zSM_LVLhDAun`C&|>_<@`^@kzrREu#OoF7Ds^+SBDqiKMAc9*u|7WYFzsrG~{8!>f_
z^$45d0CjQm{;ZKxd$|BZJS{H}KL&-4&5nLlx^9V8F-a1WQMll#n*%T?PBUx@Mi8!4
zQ&ni;mAN%MYE~CZrim3xS{XI;d!H*q_)Jx3dwEUz`&ZVvS^%Pm>tw?p4@I(#PRomq
z6!1X8wSFOOQa#u3j~o>Hml&-tN&G&fY#@SIoP_6oxQ)<2fnF#FsK6`4-!c9D`PC0<
zN!(q}4WqMwDJ-C^TfZ_P=`tOEM`CoUrjE>V)(nO8+d!y|pnFYT>k7~zFRC2~8;=B&
zyKFlS0$l?cbIEO3`uim(2#6Y~spcY=H$n={+R$m-@9v6jJiRLK+|G9l9$At~6_9X4
zr+5kn26H;>9bjGxH<81cBTLs=d_+>upCQAFZE`+V6%W=FM2)HZ)`U)m=AN8;#btKQ
z?u<yEKEEUU=xXCjh_0seyKu14Ht@ZR5N?M-M`KEC4zDOzv7aGPG&nT$<nP>a`Bzz+
zrvtX{l_V3bNg1kpd#c9y0m$Uf=7_eQ<;Kc-KT!4DUi-Das${#4UgNS3A-%&LWZ$eV
z!{mDCJ=78^&HcBKcf{3ZKv2nMA>Kx-{hA{m7!Q=rxV}fB#f)FGFr(E<pSTtDBqXC{
zWhY4?X%0nr#EkUM%y~i77#Xuc3lsUe-(EPhB+}7^*K(A|qo$!Ku_qy<v#Bb6ZK~gn
zFyuGDB=Tnr_IjYr`U;R2L>=fBNwhC(!lV~zy?85~a@afx_aZi#m0g?JeDN?bK*!9&
z>K~rzen(({d~dLI5Mlo&*Ci4^W3VmQydqb*g`m#L5_t14gqa7i<pf__@VNVzZ3_AU
z4Qc**GD+J-j$ZA(XbV7{@b4*BBq22poWU3Qskk1zbzAxuChVqPU(LFn<@L6X`p@6D
z3=u)Y-EJsmM^I7Z>r22UoH~d5kHf$ZHr_mK=3e*AeJk}KDP7fhVc%(zKf2244F%Jj
zuV5zx9hRm`WCqw%+iJfvG;Y;$^fgm!s@Z#-GE|rvD;RgM99lG^w6Q=#gHE9Decj8%
zYbp~`!QkJaPt*Aazj1umrB^3LB;li8ubl)GFqOXU$4cX2gYaxhJFzfZ$}B8TW$%Ct
z#nq=#KaA-%UeAr;K^#2T*^U95POXURHFFY|!R?(JdZ;97!q<TKyte1tt`5W1l`QA$
zi}uG+-}TEt{w7HY30=38M~vujVh?o|y&xanB8MaRf%gtYWs}BBTadri{S{-RMDPy%
z!0Pkyy{PYB!o$BFkw+vQYgX1R(YOX-MCr3WN7l~D%Efn#0qEp`fkxa!35oxNJg2WR
zR%0iW#;5_q45VngSa5$gS0j6vsr8s%=QG#7-LyY%3Jb5!?9n@qr0tyep!e?Vv8Zp7
zNp@0jil5AI>DnD{c)W&iBJ{IV-L37wub2Sq#DisPKOZ)Vx}bTCKLrEf@zMI_D<^#V
zRSWhMt2l2Dpfsl?C#Vwc*+q=|BiW@qUZt(%L`D`UAWC@#7!S9?1sp#Q?3&%qd+flg
zPnKMcpU?DE)L7PZ2MmS`+!XNCBZ2Vxh~eN2`UB`X32AQM&%Z1_JQjY4NUa-4?9u^L
zbRydrew--Mm-Q@>%P8{`vdr?PZH(rp@Q5gv(TlTM#_-ZgTl^uI@2T~(@AmGJ%<tip
z39AOZiqa&=?S6{TquukF!~)(sHxxhbW8&!ZH<UidDpW1UI~eGpPmfSx0>7@uI}PDb
zA55nuM*CFjc#|ULq&qv`^VTz*t8TOv>&ag*gph9H=(*_ROkYF&*IGQIm#fc0S=qS1
zUi2zYOgLMWR-yfxjvf&CHFh_vgI^HgdbFyLDgW36LwgzM<GYjpb!m_9(dGLGP-jEO
z=KOOm#||SOOAJ+s<DB3S-dC%!bBO)R!1sgJoirctp$>cljs~}O9P6ixivPSbC-3Qc
zCr+)^h=uL5ZZPa#&uIPCBAd3(&aeOI-fm|5iEPmg#l(l_q30cJIYBg~VU~jdR+g7W
zwQaZZCW%f--2JMZeRgX@Four#tqRIA!<P?#bElMdR@bhbcvgs#d<0i<WJ)nk`>D*<
zpz9M_vP*97n$5yH%uLi_V8SEGY6LphZ$yYjSkHaVm;eW<1ir~}VKJz)m21eFm5R^h
zUqwRbv%b&XcQeV-8`7GmK9}1WyPW6c6d2b>%Pv^^i<*T)Ki@sM^~-LwzAaOUIjz~+
zLwe!+%clUEkJRz;nf`FzDtl<f^L<A&iGJ#xO0*udR{(7$`NO=en?{@Q_s+8{L~{%k
zo-VeWtUV4+Et*jnZRfg>3${Dug{Oo>@ZE}6S|<4^){@Uf@#A&J0A=<&0^C5)t*U^t
zFZnmw;-l|!syiB{Jq|g=oC7Dnp$f?e-n`@$z|Bu&OyDRqxaQTpM!Mdj`k75JcqY<S
za&XuYJ`t6hk=*xmg<W~{p-s0g$sV&CJ<PRdH6i{dAMy#n!yxIeXatD6%ZB=#R?CD>
zWS6vrETViod(9o%Ke0&EvJr^0ez7uGw>=RC<2_bBmTUMS<sAp!NTC1QFCfHs5_j*u
z_x|`(6}tZS67<nd!bojDYV+m_jWD+W^l?$_XO3vG0u(9HJ4(Mqu7n5thlJ?V?Kjp5
z++T6V&&PpC)t(yD5vtWzP5Vv|4OFi^a{aVACvhLx8`KOG4!f_V)9D>#%z64p)CDE^
zXWDVKVfX$+a_ikT+)K#9#%hZfGN*HY$UVT!_JD26d(5rxvw2kGFxI_Ur(j?JJFP%G
zT>qWQCd7I%81Z~$&=KjwJEv4(FlJ(&5Jyni4sY-iuF>qYa(UQdOO&Ti3`^2lZEUJr
zks&R;JYdWxfI9f*``lUj+C(A_Hq+B}F>paN-Ud0Bp~9b@4$Wmn1MEI{oaWtRei#9|
zBg^dUOp6!&CiQzTW|~xS>+yML1_r)5GswKZvJ`%D7(b|4LU^ZMgwE72di-NtgCp57
z4t0#+>93XRfk2VyZ(?F7Ypzf8=YG8C4be4>;o*%D`cT<5UFNG``56AWR*tQXtK;-#
z-HDjm>0I#%^7kX%XKA;su}&`BW2~LiF{^h&48~;owOap*gT_f>_wFH>W64WKXJ=6#
zd*rR_Z2uj>7NuuD|84c1^Hm>U5YBEBSuEaVPyZeBbL!3G(q#!@WADFzr1_y)jjxyf
z96terEe-Yjc6p1;RTb!xyxtQ0vM!XJatj<@bQ70{ivEiRPr3zS140cl?e^{~Ngxs~
zswjl&`I2fC^HN>g%F$C>###ph1i;WkzV8K=+f1jl*Dr<rE}e3ox_PeJ+%Q2`N5bAG
zCs>w@ivL&@v*XR5c1u=Bh>1@-eRK*ha{qN)MIqWxYNbdM@u}_ybNqf!6xV=v_?(UM
zG|AK-$HkNVZb@KJFzC?lF2QpEcihSl`xf2*?&-b;Z|9k>F;_&EOv!e^=yuKzEg3Dj
zLGV2CRHNg^8gk923I?|8s*?4Tce&5oJbi!zf<dD~*>3gN``)(8JJHrs=@p4_(^ynZ
zoM)BUJyN3!$*NZnRVAtmDp7-o)|DKeS=i%<*qD`EJWaO?Ri>{mwy<|!&9kq4^v^zv
zw0eK6(B@H}p)!oWlgGTM*zKA@!C^Xk^G<m9l$sd_lYS+00ugi8+v`!FRh-m9L`c0^
z_{q9z#b-5=_w`qCy|rU%uo*)t6n}%pY;WFQUk8eV#xD8jmkuf2vbP8<MU$z8D!!z%
zE~}6wcP50H=2Ur>O$nicp66W8x|)##m5+9uMEwi<cKZR*Q!G+6NqP_Iq}YV6yC}6h
zc32yQWB;I@qnXKIW9Q?>UCI2h0z+Ci5TOiLFS|Vx7Q%sP|5BR|a3jXR&9bn95b67E
z<j4F>G7x=l-Sv2}^Q;vK>Ftwze!LX!?~^p98kHu;<q%+bKxyLtPF%WJ|5pQ1SEIBY
z=VsLH(wWb09v*Ij9sKtEyCLW2JuvOlhPi}vSYAPIou;i-JTA@0&aQtuD(Hc$<Kb6w
zB#9G$OiWP8mB=Qj#l_vRw(*^(#b!3BEROk0ysW-nn?OCMR`*irIv2uzziVDAs}f<U
zFxn`(lM6=hug^CTlV^A3G5{qh4l_hi8q{9;G1O+`=Yv<2G(@G``-z2}k*Zz|=Y`AU
zBGA(Y-2!in@I{o=XSsH3ad|(WL`%~T5S&<&5;kn#8wt96{w!uikI~2V92UoYikci+
z^!1ViH~Yv<7PqzhF<P2rJ&ea+6ht^JX&HDq`-`z2j9M^SGIa*WCl~y_2m=S9?g>43
z+5s}hNKNB2aK^wrLAB%&i4Q<6UK7Fp$IW3`^R(BZ5j5xFp{2u9@#04GDSS?(o|;W3
z()nMChft%-RI7%;LxVF3&5}fJT^WYgP2~np$Mp>h`^)o-0jd|5HK$>J6}-1|aH$08
z9?Z36CUyLLxIfTg@!Lml2zkxkJtAIIHRL?E-TewJKyc`DVSr8^AG@IZt3D*UltZ34
z>Y-Uh^ErMim!tgM)|;GT>{?n#rBuz%SRjAX+X*GntgeRo*f;_$6kHG}DO~>B=F%d_
zU$f$SQ=s1@Hlm{V?H7>~!eOM$ce>Avb_|9DzoSt4i}p6}<bQq>eeWA}{V{mQ6W7Bv
zOpg*jCbqkw<4E9+agAL6sK0}8$Ye12oajS*ZG%}_h^iq>5pzAD+aSVFl0#u3oiUq?
zZf*)fPGxy78CBGb;Nj5l`&2Sq#70dkLGqq^elt}QGprkyhZGv3o|r-Odxdl$MCZBT
zO3-j<j#J(DQ^_)keQvQyR29Ub$=E31^F;nMwa8RJ3uSMD@Wwg(#FFlzjniGhB&d+K
zhC+;%lC(|tw;JgYI<X8?G{VR0-6Bq^40L@-qdx^zu`7W3k8PjDc*n`vD(t$)z#9?T
zar4i-gViMeXWQfP)5j|N{Nizy?9Y5mlNKie;+X<Iz9uHJtwUi6uz25ZuTzZiRt2YL
zxhOunYP<U&8odZNj7^1SCl?*Y8tHp?`}5G~5FPg%l04s|cM5KPP|z!&zpAr0XlH_{
zzj`eeJ5ug+4H-jGF)47|k~tjn2>Ud;CFJmyS}&@i{30@-nBn7f5RMYH`WL5FAEOtQ
z@1!15>N4+ll~yNIl!3DeR?2gvybU^E+Z+vyfy(>L_~li%$Ui4s8(Y2ih|rL9kbb2r
zYuLFCyIUO<r#k(@!w_tBTV;|D28jTbuIg!E_`~eN&I=jui6SO&Qj>lFiqzmIA0B1r
z^$lofNXAdq36Q;E`8V$-78cR@QKZj2`yRD=uaXN2NxODb+<DX{*VflxuXJ<|^*O9o
zIh$^y=8V1_cSAw;=J`48)?)xA_y?ugJl(6R!_?!X>vZ~*h(P~y3;9|P?t+0$WL9xv
zui+;lyqJob5@@2aOQV6;cBg~GSyay#b1Tc2$GrunlSYqAtJl8kL#tPX!c#Fq&Em^j
zFbc|%+unk$Cn;eyAgvP90SX5Si9YP}z?gk)MoNFrx4YqWoVVJ6I?c0vm9IFZ6f(6s
zE>HUl)z^i2%5`p+5q^?N?CiX>kD+w#+w-Ng?*gM^u35xOOKpT78A;!OK-EiGP}i`I
zrKyh}oyER~k<Zl_o49MbSFFG&UKM}H%3;tb$N%=sr|-MaVog$`3G$DOoPXN!ySZ{j
zAojO7(2V5Xzvt&~mYeC1N}S`Hz8W&%b2}nDGiXkJec;wHq<{WKf$24Cfl+la{cso)
zlWhFX-j4(Kl!`~eW=SOf$QeEb?*Lg(2zhwhnDSyXAj`sOTR<2)_LPqW_mh4e!UZZ-
z9?8-R@`or$&;BPMku;~i_!`~0`%0%(<m&>Sw8{mC6KQ(|+12q^Sk!=StdN1P$SF}i
z%%o+!LzWl+iBfB%uO=HY?K8epe<EPF1^3%)eUOZy|G+0|EIScGkX-~~jk(t3ZJP6c
zr*_eWzc@T8^%F;*3~>wT>7pzO&SQ9S;QssmETcUeeRHPYBueX*_E+m*eEgyA8*iS1
zMeGd&&ft_GowPi&@B$_o`;k{2p3GuCq?iEryuv9@d+U*cIwKpmEA%rmCY&~#kURl9
zGWGj^GOH<=o~r$MVaEWRlZxs;Xzh}78|tT4k|>~{nM^Ev4j}YaqAhGWw`B$o)7jU!
zSR2v680J|)d^7IPnew4MjJ{?=g$*T)VE_?e_4MRdJ&)8ye;6Lqs*&B^nGKU33XJhd
z-sE){>gu7Fc|GLbEqECh`h+ll4r}K#&$T?7Qqb|c5nreId)b9ii6@lX-ShXRS#^Zw
zfO7v~X|*ke7W?w*Xg=lKHL|y_q{+_BGhgq@JiF%k*iF^FIW=gb1i#HTW2XT=s;=P`
z(w`?`WZ#PyC3(N6u;hFD4Ft+=5<ZW7Ofwg$Krcebf02;bgGDx^ZOc=$JlE+C=u@+R
znn%6iE>{MO;)H27=X#3b;idl$CVy1v3rdg^v#KO5``q5^4rNd){osx9*1Z~E93W%R
zLmroz*+B5e_$vQ&tDfmFvi23<OTat;4fvZJN-%zVCa#)`#F~Wsxq+a1`h{Czim6Pe
zOs4qMT?ww|L+`EJu4g1mo%31w*%ls8dpR5~eLbh?W%UW-2&)^-8SWzXhG1K^Cs|L6
zZg*Q`vJ96qesMPtMa~QONiSOA5tKj~y3U12jY5Pda?%C;ALFYDIl9AD{6vGeQtKzB
z2pYx@YASB6G|T%{A1$&-`<CU&-F}}X9^ZQd7%iL*sBkt8o2#w!p4lGgr!Sa@x<|kt
zChIynVeMY-PrrG3kxtSS{tofDM<)RBLmmw*TF}`OgJ(J}QR@8s$=#5v^BlZNf+0O<
zKi4OBZO!)d@SmO8nFAIb52hpZLhIK8AEF=@4IxyIUzPr8<+oPpA|Y(Qatrqn5iZn-
zKOfoMWBCCe{quEG!H=vQEOxB9d(*IwQ*~R;gLyy#AMdknJVcU9yf!qAq`LUyol5H=
zh_;@|zNy@RXUUB~cPUVC`Mwt`$+KIGws<f9Jxa5g6wMfmssK)%SJ=ZQET;L*F6{5E
z+Fu`ZNxDYP!&>P;g6GVJyOLfGYyoYo8WEcx{fT*4L_Q+D*zYs)>-@Cbs{)iltWFL{
znT3;8Suby1MvD56x%CvmsVCDJDId{pb}C{S8^9cwT0V<78%6Ng3!1NO0+{QMoO;Mk
zhSXo7G?(z$G4>5{YaZ_p=Rk-X{=ch)j0BJGh%zdVhk(O!=e^~uxa_kX;Ri&-*ppb<
z4C-NgT=v_;_~djJI3)$~?PZns)xzrIml9Q@ffc%D__46ybLq*V4Tnr!S}YW!FP^T@
z;7M6YNi;b4R?w=TU>9~-0oqZ*EX9qu%5y_WkMaKUO!eILia0>>osX4zVltWEok~qI
zHmI7!n~o{*1&RDbp(C8HC&q916){?Icp|g<8^0^g6493&^xxx~EV$c8Xzeb8-+=rl
z7{XzBaF2A3J72AJPuxH^Mi)484QEuHg<G}>2jyvmks>x<o~G7=+DIcFgW#Pc{HuvE
zIt=_ofF!0gU3yYaLL$)0@%Dq*mWH!{ILT?x!w8k!#pf8@78{pj(UU(s$|$wm0$eJX
z<>6nwU>6ff1eWUoI3a$*Zc|c(LuNZrQ2@}R0k+<80A~*>8hiz(=9zFqDS(0Fo3Vl!
znJ|AW6MT`9c-kge#qgJoxU@2j66<>P`d_$NUTvzJq+tr6!wr^dC!20=7&+E)z6t4i
z%1oKo6MWmzsmLVWPDjTwEHJAP1?P?VH8uHC_y!3S+a+4rK>Ue}k59XP2UGGn3-P@O
zZp)xisamOvB{1gZ;sA%&FUZo<qN4VR7<G1;nCWXQ<}-ZYdV1I~aZd$o*nxq)YIZ)x
zFpjk9rX3rxDH)e#84xv5)Weq-wqJiml1_#*1-#FFH9}jSU@Oz`kG_;nIIZuq;vMZ}
z`VJCEH~-;8O_6NxByY`0<a;9|f370!t(LLZ?C=H?pE&p_1L*YpHOIJig1h{8QVp4S
z?VMX6eNZ6-GWCdp7G*Y*6`e(Ra^(q@NF&YJGq#)Js~PJYo5mOm3yJc@*ng*R>Q5ge
zd4jxO=Ay3R7?_3oMG*qRqK^cAGADBql=o<z=zgwmVpS+ooX!Zte$S)K8Ju2fhK&?{
zRh708VT78ECr7|S6hV!-?BSxO&T1f#uh%_XIK!OseU1im!$UPZTK$WZu`spDP2)Ht
zqw~*=_udM4Ks$O5RiJS3JpnQ4-!GCz-ah&xw1qbPi4^;K6aInG+L-$~$!mq!MVoUQ
z4S-uDO5_L~Nle;F&>IF86G6hnx(K001#Nul*Nh_gq01iRsu1IOrt<1lI|Ivvf+=+f
z;TIm2Tuho%GUK-XUHa}=3m&s|C`~>2Zq`TJ)hOzbKSw9P`XK&*PUL5h3-NQ_ltdwC
z!C>XF7qAyt#`1glW7ysmEd)ITJ&EwujYtqR(Cx_${rG_RrvyHSy10#?=D5kIY0)_6
z1mq_TQVvXn5Pss7vcssIE`h9!CRM_?Qmp8eNYT5xqdF~f@+D6Q|1H}8D8ygl<7jRm
zH_=}o4!SYp2-43;zq=1syKj(9`k+`3er*7&G900QNDgl&I6{~G4L><zmW=*cp4{s+
z>ekDi;p5+Pj2il)qv(%rwh2}>c{MpNJXa~;wOS}JKTJoAT<sb$XRztyWVLwgcLu#Y
zvmMKIF59nNxM}YsRLwS^qPN~W-gn4;2C~mw9R{>NHe1ZY5g57tvFu5+V{YQ3|AFST
z^8ma607bcV!LcxKq7*X$V7H+jAC#qu6<gjy{4)_DU!VksP$ZQ*h~gOx{AGi1V+ZQ6
zQ%qq-w6^A6Js+@h`Yn8zik#KHE_V(&upjzAbMw*=RZ@~weRYMxLCnNSp%e)RIUNp2
zcpRaRojd0uLNa+!<%X<z9ynD{--M5HeTe|R{fxbuPZu`<aes$W|K?-bZv;9;xkc(P
zz?39{f!*R=QOxut`nLLa(K+ze-R)ay!1$=5|MP<cH(BJmqC7Y$v?1dl2L+wLV|9%0
zTa?^iR4XHW0L8s81hk@u2Jjbc%NdRLChuWj$}F_6Lv`|7P|>fLNBvPZ5chm=Eey>5
z8zCuD-{<sYgKNv5`Uo8hvuwBlgfV1jhK+o#InZTzg8P5ID7vQp*}+}o5&-qkd~XS!
ztS}W0QN%pNL8vo2NL88ve^l8|&*30a11#xsnsK+Doq$0Azx&#`@FRz)h}Pt-m9+nv
zaN3#x0np6hr?Wx#`Ky})Husp2x4CvGR^vbX^cDOOAvWaUC-J)qA~zTXi&34{%!m8~
z$mBOfJRBVkMi2jYA`sI^@fA0e%1x-~k9x3g8Y8VDV(lDGO^q;FZ*l^#SkxN`ep(&Q
z7L<m_8gtqQFp+;QJBR~^=?DYsKL(cr+dJuo^3R9ITP*qD1`=d1-@Zvqesj-_d@i7b
z_P@)G)yacnw)7{LU?KnVrbBK32izf#$z+Hqs=r_ptn6^@QK%DXOH%H;L5{QHX;UIO
zwTn|rm;D8gE#~xI#L<F><~jvXui_Z4iX4Uf(<3YZWafvs79pg{GSL!#LMr@JvFne(
z;sioh<xqiOcYwP8`wg>n)7(KsfUTgeOU(vMm*(&lfNMRWd-DV(qqK7Z$`8#%WbD#5
zbiE1=DnX!QISSAOz`))NNrPEbYt%sXl5MXe&HtqmQHZFS4CX2h<{p$lmFUZc)A}<=
z*l87qgMSrAOl(>+>3sBL3gX`ekibY{i8s$zi&dQcet>Z5!8D`v^@xxHyT8k2dH*}N
z|7OS@$i!543dbx>AS>5R4FDco89emn`92F=lYX}zdPrI{0zK#ozGjyP>~aZ0a?Pa+
z1n6S_yFLzs^{v@?&ND!y9YSfsyxg(#Rsi6{r3bLh<N;3x;JkuG{^A$Ij`<Jt`+vk<
z^P^|gP2AoO*b&KUaGxB&(s=+NKI{dmyE%ZxqZCt*MdPgkw|WwSpOZ<e2oQ!3&yNPM
z(|91t|9gw*cQbXjCm5Kv0D-PsWQN^>1Ry9`0JYpgL=@ZS0knl9n?k4yr3F|472q#`
z47&y5RlxoC0L>H0huNm1y+_s|V)5u`%gYPpMWx9O11Ps90B4?(YOHs_xcL9l4L<62
z*^i#G!RBa0Ncml-!5jhLq7&oQ3aU)o;HL>gpnvt@>3vSQhUW&w1YH0Z25=C$E&s=e
zG7;z!9(j}ikph<zoelv-0v0JsYyNFy4us*hRm;yCiv;RgLi(>q<Nw`JdlFR@0QAna
zSj?#3(7N!lE>sktsRx8y)ogigQZ8fqjd{cPBr)%iL4FWO4zRdC3W)ZqwQF3{lzmz^
zoqn6A{)7IN+-aMg!O5qi6fChYE_Krfm0J<6pm|}{;&hIc;aAUpejLK$?Oz;yPOdt}
zqVp5_L`;i)T2ESCh0mFX!eP3t;xE3or?B@$bO6?l>u^77OZGAEbh)mP|MuRzDNqu{
zE#w``|DEq2-4UhJKS+f;P^7L!oUsgGv56WPfWH-;ZU*A+mL7lz8L#a)HfCCl0v(~d
zsCe_B9!UZeYz0{EASMwg4U>@x;5^k@jao|%`!x15y$U;8hZs`bmBu+*Xja)2`c2-9
zqmFnexioQ5$G!RaVJwW8S(X2IW-ao6MBINH=O{ji<F|_Qv6Y}0p35jyd{#Wo-;;lM
zQYQNL4sufuhGo7+{zQ>_AWBP0YP22P`vyQ2x`@IHY0)g&g|gZTLLy{c-uV45wj-7R
zo`7_!F5;}hIAFBC6F5R5mdGLu;oE3(7*xgZlPi(j6pY-zyVLgMZ6|q`y;vGHEbWi_
zQJ*7)P69SB=Z>1>(eh`y?k@M^3F$_q{@=m!yx#op*4A(1RlXtYb_@K^k}{2p1vm=k
z37lGa702&LG8PdMIZ*VxFbK$7)mKxea1a0rN{=Ld2W~h(L4WQc?oc~!7+B~CeVKF-
z=LY{3d3!r$$84OE@aAkBf$!^zqm`rG{eQ3<Q*m7u9MB6AhM~d4j_0gPd*pWC_Pf`Q
zSYVzKhxcOt_aX*>uSm0^5t52#gMf?q!I`SQnIq>vp;c^=TJwK|7RMq^6{4S_3Vy?m
zOb$$w(R{4=`!=ag3LA8`LgU2*PC(>Kv%ktSzrP({9?T3xx0aSJKcB>Su3OE{)_SeD
zc&}4kkl{4g<>WUeH|R)vzOOTeatr)G_V0M;%T6BT&HOh^Iwy{|cXiZIrB|k3J^pU?
zW{S$T#B#VlYTw{#vel-g)To9Kw5Z(@h>>+fVWUc0XaCEwPbLYD-tiQ*^>p8`u<(-R
zr0luQs$tq(s0_uwOamT@_qpT36s2cPHDp*JWPoMeOwecOM??OmdcJ7c_v2T;(uPKu
zh+hUL3)q7>T;VKb$}5@R<cuwH`4pw9zUW8%>V>RN;?}AhVqc?o2Iy@G%z7$VrFl8b
z!d~*MV9mkzjIvmp{`wm$JVlhKvj1XzJCNY-)%7Z;Lr>ENH{@4?6|w$EhS0jg4r`}_
zfP~6LmUB$@lg7%HSrT@z`!UarHy!kzf<vfi6VOW}KL#Vvk-8nebd3X$7RwOht4KQo
zfUn?ZZ({X~16v-wN&Hk7zWbk}^8d#l_iiD)hpg#^s#aTa0K)(zC%~bJ0h1AU3FkN@
z_Lgkz&!`e6mrB8xFXNzU7oFUk;4b$^Hv4CgU6ZJ`_8L~vZ;m2`mP778qv~zv(fK7|
zL!)LvZ^9R34=$&f*_QbETkfgG8D34t^^C4QuAI$Oku_+)q1evIm`{D<IV0oZjZ8r-
zk@I<z5Sbhf_x2I=8k6J#y~MS5Wk&KpW_?odtF6@hwNk4#wbFmQunF=fW>&KzR@2!W
z9W`5AY8jQs1)+!D>@u{rrgOcqh=fqPJ)LciL8C)}c5KNQ+-ernQ!+!I_no%`O>A?P
zMP-f~KpexoB{wbzLD5m`AR(>VeA;+DSuj(B*fr%D`kZzA<FMej>4Mw3;=21&3lAO}
z>tB{3g?siGuaeeF8MzF}d{pG6SyoKWJ%GOyUcp+okAcsu%{{+AJ6jrPs?ebxr6nm%
z*NQgKPWIV%43w^_U>Lz(G3_>5b^CWF<yzSa8Db2ZD0{snt<lJK%-5RBkl(g;CqA)f
z=5{1}oi@O|j5XH|#LU1N%$L&7piZ&6m6lNF3W<^nfj5FR#=lSQhLifYuY|%2U%jj=
z=6(0>vwG`3zjvYMclXRf2B7|fr-Nv-79QwcLA4cLKC-@C+qzslr^@4ci5FF2pziGT
z-1%*$!Yse?6B{voPzL|HK`EpHa;RFC2%N86ixNUhYP#u4w-gc;gR28AsIG<Om$b*2
zw$Pa_lwc|4Z_Zvv>v`A=oGpP7siPXc7S3mZ2}w-B-Bxbfrteh~O-43ut@vWh-TvIX
zyaITSE%K2@Ln5IVDtAU*Nnuf$u|?0Ua+2hpYn>X&QomHiD+x=N(jSwm`C81ojQf=?
zmo8C?pV(g}q=Bh&UeRoOHp6XZem90GF-s_sWtHaA&U~NcBOe_yPfub(10{a=Yh<y%
zf1A9^>m=qF1jtH2c%DeIi&^vhaRGSICABS%k9OdDI!?)Sy|*)vX7b~N`zp&zGEg@W
zVFrF&GKtjG+$H=Zvv{eG<E1#~g{(JEC&I?G0gO6s;_Ue%5(^oGF206F)TmkR?Twt3
zIjq~dJ2*P4T~SaO?X!VZ0Y?W|nDE_4TV+BN&{CtN?~@bIR7Xd%7zC<FzB}Bx5PO-I
zCw6&Q*BEC=NFc4(wiX@*7}yU#h)CF4-@e_Qu~r4)s}~;bu8ronRcMwlF(~S`Y@qw6
zlQlML8rCH&T5(%7l-30FUA#7t&sAd1X?E)iwa@KZ53ADvBbKTyMqMWUM!0<5J2kzv
zgd}_IRTz7aVj0HAj_Zj@UB@l}9Uc$v*-^-QjFYW#D5%=~l4MGnb*Eg9tu_nQe)G(m
z`I;H&OTP6z6(;9qVTPSvO6WOVZ*0hZ<kkj?>l$gb9XmyzN*@R^e^VyPD*%saa9`s^
z3AXyQD0f9h>bO$1<<1mu=Jy1-T~oG@lTb8Tnqo;PMIHGdC}B5$W=*-F37gGF2d}3a
zE~dHNJ}}63sKU?I3hCy1*so20brC&{@0u9vAQG-CP2SvD+1|I5$$^u--fC$#Fn##A
zxaWu>qULiC{I`BS6GL9T@cox8*m89NOGNgI@S%Kj>*S=J0y;^k)^SvOkqS}1@w*Xr
z#JLJBpmoYGtXCbJ*w70|e~mf>3e(qvNffw(rN{=EIT+KAkI7;7rG~ey$Vu7@ns7mG
zBdwZWiobH{=?`}lrpu-We=@AkaX9Wdt7sO$%HIYS?jDb>M-+jRD?jWaC?gcYzm7y!
zv`+JJ3zR5wa7VnO`P{Q(vQ8ub;sSW^9}AwJIj)<YFt941H@`(de<?C1uc(M%8p02M
z6Gfrdy?_5vm&`5>a1S|qAN558u}~_h5Wp1s;@Bt(h)GHlUvyqF@H}%090`neBx%1Q
zqt)Wr_2b~7I3sgd@s+cSQ%#L8SzjeYz9>I0&jJYkRD|7EZU$g9Xs|+OtV*lDF070q
zb%LvwE?541)#T+8>W{Du$BxL<4PKDdYx}3&q3^R*>ov02IsZigZ*FPm`7GtN!wYd0
zkfLI-_p{H=4R1+_LzPy3<C63xmz#QHw-F86?XG<Iu=EvWyRK3^-B)^TK8!o`fn>Hn
zEwkeuC9O&L%CTAX&AciP_N!}}aw;h|Qwv}(1>xovu`c%ZK;wbY8Ch)##?!ci6q4(U
z7;+(%Bl}hZkDV`;`r3xB%I1iZmchbPX&p(&;r%`|v9=a~=aj+%H*e5__qyoK8h~<r
zuvs47*QAi;>heD}(?F5g&fNv(DC302;l%myc$O&bh4~fphR^RmTva~B(Yuxdl2>YM
z=HenoQYu}YWjNv`C#Z8~@#-5_1z(hvp^~J!Rp#OAxDRDRy*gM!j>CG4BUUyCda9Wo
zcaD!ieXN)eEE;;&S)Qirw5Zm}2i0}AIlcR_4{T$fJu3@8v2n3+*0k2t)mHY5IBwvn
zsAo7mhn2lEPEPDC<|0O8`u)~D!hQS?dyfiUIa18*97QfgR`vXtuBEK>Pd=~Tr%zE4
zQJzON=Uf$8DDML+^FA?u7E*pgIWRUSuT3GJ!oOT#pq`zt%B0PAr=juh#kVd0DI)Z-
z-R6eh`NAB_&89ACk`<X7FXKvDRHyRhtj;(HF=>F+esa6u&xC-!M#tzj@KS-SGN5C6
zw#rOt4aC7%HS4ue1@wKo71lb+={O+rF^yRllfoO=FO7r6DlTVy<i5|0zi&%Go#+2<
zf)|scecR>hnrWx*RrY_{!<i2jEz?;CrP2N4J`MpV1#FwVemNe`LD@e4dzPzU2~tKZ
zrBHc;y2UJj3)S)wtmDfa`S4YET3Wh#I!3bJFw4|N8x*^=E=PoO1d9Wt04(+DWn}-C
z^n%48XlxBuhJ1dh?Xfyj>P5kukYB+__Rsx&Vztsi3)Q*Q?Y|nNFztbdHWM1}d01b&
zj>$(^TOAzjgXJS5-egp_XhGbaIfe_M%2U}{WL0x$LXBLF*K*p2M6Y#>bqv0w{>tm+
zq(@zqa?d6g(t$62#wW7WhEek{Ex&0)1DPPSvf6ugm@_2l%aPo0OkV$yzp+X(daQkG
zSpOx6R2z!kJ61&dB}#5F2o(Cmu%G@YpXhbFI-H-~%B|I;0|LFu(b3KH*bvKt?+wa^
z=`}DIG)H$S@WLP8NsY}mYq1J*Dvjr&*{ypJdQYY8X=E2NCU1d6O1=v@uF5!gJ)hhF
zJdZon+R)HbTECP!P|)L7Wl6q4l^Pq%;2+sAx}dhJW5!dS(s$<8j*}a|iS{UXg^I5J
z1MyJrAQqQQ?V|5kvTeCjMm98S`4mpzUuC0r56H<VGk+?CAKFl91AqMW9h2sL9qT)O
zSdkO&+d+`Xf(>g~pHdBzhGq^ut<;qZ4j!Id@u$Hq*vIJ24@9mFl3HF3oJH($XS3qO
zmzeE(?_4vc3|+2Vqu$6aMz-A)YjT2k$&b?`Y>nT&4%E`9r<N<zAV8i;Sw#05kTYyO
z%%jcM8agl7mRV9nG=G#$QOPu6w_*q<BTKa?IcU(y{D`%k8UHHemq#`gX{JrZL5)10
zaY8p%S_lv<N7BRara@A|9R%u52q_)?wc=2rpO6d&6Bxe@a&CC(^69c{Iy~_(HMRGo
zwC;m(&+DaN?%;T>W<L7PhTa`0LBTz~>IY}QHdHu7-?k%8s#yBe-9h*5kpsq*%+S|V
zxR5A`@>hB|ZHl#t*2btV?i<N+T3V!i($Ju4kjN$1bzj6W+KWVNwBFuH(8)#7#p+Yz
z>C!5<?}1Lg-yQwtq-l0SoDkF0Cl>93R_6)$c<17wNmm}gN@ZCR(*9x|dEYPf+j;lg
zH286VM8uFOUdv|*9+2(soSze;p@q+?AMX=4Ra4k${K>)_O9)uUT3?+Hl5_uKalA{i
zVry{}7WN5?XOZIIwLr6nw9hvMa|HX>e;Y)v`EMdQS%N@g34)<)tW2X1^N(fjVyvoM
z15%-EOrw#}><}H5>@+fdA<O?X!P_6pQjM%mt@A1=`$)Mh`Ol6n2ZBQpZYy=g71rO4
zCSTi^0@pPHlT+ZbGyS3<6{V;&h(7E(#^3|<S1+3-j_jQ=4K5V_sXdr;MUvUB%eNO;
zG+xoV;V(ITO?FC$6Ptlqv@Dm891CbHT#Rqi9i$LvwP}tydY>fwi}Pn5=kHkQdtFa&
z#Iq<-d0lrp>bgCDwGvY`lhHNSsj5Dm{vCo9aTHfEl$>lzC8%Lt$B*>grrUF0`7v)}
zc)E9Yb~FIcP{A6>hi&FcQrF`%t*#(mgBfzL>C^6G*_-rA$YDI3kX&cM=R{0uY<wfW
z+`l|6I{VjlH0*LH{3YMW>5B%?G|_dXu41b1iE2{cHpu@vT3<^$`SD*n^GiNCC3#0H
zqxzu{`NcyJwU?)S(Y=_Oldki;F@JKIT6jXrevwlMCerRc#qs|61Ncqa$@{Jrz^JSC
zO|9q4Zgbm84@XAp!4wsb7?}|MboFQU_ib9(y@Ec@j63jVTc@U_5hM{kCpRPApcUqJ
zh!w)x=BVASCvT(-2vKX*;l}{2_4c)%N-qUwq?DI1@cOhMwf)8Ic4_*o>ss`Ue7^g_
zwC3}uzU^Xjp2^UD?RnA&f&yCWD&3VlW13Rg@G?doJ!dj$v2nuTfQVncTtCzA#5rkb
z1UvBAQSKnx<;5H;qkuyVq}yl*Yr*ZpF;)5*SoT?6d~ZSkRJF^H-@dlg?R$MGY!h)m
zb}HadmpQVYNR}Uzfdg2!>z9A#3u0plPb$?bm<Hv1FS8O}XT1CHv9PejS~N~pWO>gy
zr^-f|F^Q_h&Qw}||A|N=*qXwd%JTRyC$-+k`G3fRQ-jR3>CZ|XARHbCs$TCD3e*?}
z%ajybA7k-`!n!^tZ`%8&TC(f$t%ENYcQF%A)BysKEs%Dtnu$2SrfB!BDK%aAk*Sgb
z22>0j0@FH5euFxQ*1C8`imc`#Aeh5`1^Lrw0z5G}c}Jkl#nO7Nv-2eAFnKLw)TQIh
zn239Qg;qH^$MwQyWWtH7$N2T$RawK4&Rn9Mrn>XC%;tOn4oF_FG^cu=YN6G6Ca=wS
z$LcP00ITy)vmIN+469m`o||{Kt+M@}JBWW|8AF_stNV2pdDEVpb_pV+tDsJvS2Nj(
z53ZdhqZ<mA)jlW?$9$>TZ;PHF>G`Ey+B(a=_kEDcE0>Kx>yM}FxKObFm;Th?<lm$u
z<q@_eM~1J42csnZrhQZ+(LPeA2TkkROl5px=1J=94c3Fs%P6V(jTOW9wQFh^-qW;|
z6oNtMo>CO*bG2UB#zZ|CrO<%9^4C&FThWKzz2Ppm5Ry6PiVXaX>XynZJGsH1TCKnQ
z4R>MD1OO6D!_N1K(Tb<H!=c&EsM@^zRvVyB$^JA@?z%QTQmK)TucNv%d<z#kvgcT9
zd)dClT<bIxpHb%ZIeCmpesW)J4-M<~#gu>iB^*<|B)0Po<||?B&855T<o`}6`}Gsn
zF&Os7mi8Tt>v5Ly`KPP<Prs+nK*%-!r#}WQhfe?qBY=k|u-n3ARj;U9F5up|u<%z+
z6^Mei$gQnQYg%o*zC0r$`d8)G@VtwWAn&oGqFJx``BN{#V<0Z4iXDBcJ29DQX|dUO
zK$jbAX|(}+&PkAp;SFxW#!jR<bSo@iM@JzhmKgXl6^i@$1-23_pp(4D)mTBVl;lZ`
z#|2qL-OAhAyrbIxko1k5T;y!2+BLk6;q5SBw@fA&14?Wqlyar5l!cQ{y^Gz0G|VT^
zSccAc-1-&v`{9DQ;zV1$K;UwpP8dqIn`wDO<13Wd?P;lJ6M;>+!7c#bLz5zvaa2i8
zG-D=~^;O?kJ3&?WYCR|7sVwWM94TL>U&GGEI{5DJ6KOs3>wo<c!BNpVdJsV6`<Ac%
z+KfIp<5KW3pJjlE8n=j<ulwRpqv<CJG&?L99oRYDz7B{xh~2z_+Q!zq;=J#dWPh2J
zL^e0Sg0a#Y;PNfvg3rZU_6Fby@+mtlR!R<LW-{gK`K5M80HdQIhI|6Ml)c`WYr4QR
z?pb%9`qW;SM-3<=uHQgRNgN!*yY{UZAp<B<RT=Q+JlfAf@rJwG(NDnr<FYdKbd+`U
zHjx^OojEpn!^ibeyGV^>i+1Ud)zYZ+a1Ti&XdyNy&0^d#+({+)o&NPpf^7Q#^vGGy
zC#(SUlQGUQnW!l%)!>D{pf5Lq$(y%H5oa#iE|&V~Q+uyBagmB=1|$E?mxkbq{rSB=
z>nI(sDsGK93vTHqEM{SAD9KkymF8w)1NOH@$*g4A#tOSG{%!Zmzo&6PtY>}iZt7Pj
zZ)Z(0o10u7&3AMkSvRtY`?RB&xS57+rtv%iskhK9CEF$Eee6w)OolgH>xM}FKfc~N
zEXua)8yygkmXuDVrDG^*5RmQ$DJh3;5Jb8J>6C6nO1eQBq;p7-?k?G<_x(KI_a5)D
z_ddjb44Ap*y4JbYuhy@vnw`DL`n{U^CeOg+s76-XfoXOYFBA13`Fty@T~~fXn*=pM
zxXq+|TGy$Ag?l~EpWx87CeRZrzx?KPS~C86iZ$P}7?!w8LcDR^zKnS;7&UvXTkO~w
zMSmsIS(To)!Jo-Kq@-7uhXV=tTlw^a9&@RgR!^+C>YZ1ekV~rUc`uI*8u~ut7aa;!
z!Ec>9D1+_2Kzl=jONIZZyM={vsnNy3T%uG<I*6?4_Elh?86+a2dM&4ONCpm0?%mWT
z1hEUW5DS5jiTsHo%2^GXdW^sK$+p2Ii{F7wE{+0`oN~0M$F5rR`a|R4P>1?VH}YL)
z4rZKq+GiX>A__hpE(FN=@XOuAr=%{aSII}?cQpmyTXz@hE1)9w_6p>H-4VOfL^DN?
zXnPxC@0T=DuEvD6+T(+hAMVHxhb8G3YslI*F>9h1PSBB0ZkTH_=R@lP9;3%I2Tg3F
z_;;SvOzF#Wo#K&xb=`PMrx?9J-)r~TnGjD}tXy;BDFe$?_*GtLefQCy15SwSNaV<n
zvIb+y)nsUxDp~KTaIf==QQXh*l$t7u@(}*$O`T}S^8%Tt@%aetD$7z5^5!1#s=1n$
zM08kZk%;XkhaL(NI(BM-^0`CI3L3ld<6vp3X`4?@tn+CrDO=zXIms3Y#U2USUK&Tx
zHVHBo<m1cr2D*N9I(!PMr<Cu=Dbj!OOZb0-)p07+nYdyrPLO7V7m(CyWkXRISEM#I
zZ~#ZT(?lcKa6=Y{)EEfya!~lV#duTwW#-Ut^mqok&qv0YQZ%H{^L?K*w>!7SG;C*0
z+E$GV|H}$mhVZ%LeQCuk&{<&&N@zU4KPz;d$9d|is_J6-bYijlU7NNgdf$*arJq5Q
z`<L|$ICk&{y4RY!&9&AT=mdpIjp*nvGg6GRwx}F7HgkhXQpk!l<y9ZO7?2Xk1gBr_
zdSYO*Lw*24?atXoaOMY9WJw`IJ0r_ZS4x%m@Yaq>$-)Y>6TWi#pS9lRi)s^-uI1T}
znnio6$wh_v8fq5Tmy0J#KDM-aN`MyadG9fgqNDI=)#A~Xxkg}bkVdgd)x=uR%<3By
zM_oda-z*b2xR%7E849n%jr3CQN3tVq5~}#2`8@1X=08#F(01s0I&&g}AOP>tm>E}3
z&T!Gj`n(f7!V#x*WoYZ+;^fj<qQ>lxm~lA}E^yjeQD(Xsaqt=UP4H@^oP>#-^+ooC
z=4gv2Ka+^*RE|%S9!WFZ$`*hb!PlJiG3YtLOogS>j*9k7D{bPyq2=3dD8EJ|O1V+#
zZ~oSDZw|plAbDl{#V(t)*irZxlG7nyuY2fF4_Rq^8_K~$XvekV9umdDS9_UHFXeiM
zO?IvqToANu88lAJqnLsz*wjThu-f)Q^xe$uTTu6s<)~<`W$N6pK)pp>kAX-9lf2-2
ztf-#T{fv2$XINBR))U`I)@awFi_Io~?cPkAq09|ga$!$N{P`i&L%}O#qQ}V~ubW<g
zd2w<~$i+PxC$%6CntJvt`NQh*;+aR`#IRF(XWAw7P35iNa^4rKt$02z&TVh)D~DHy
zKYtL?+3$-Ik-(aVYGKB8?e>$`?(Yv*iuQb;LtkdQo1C%RQ+&dNzF-=j-kt2wmw;DG
zIf}QhB2g|>N)&eFFmp?~b#9^wc$C<@c@r!Sonp>l__dc%fHfH5*5b#<HRNHJckyAE
z5J5A&doXXRC|<rNu;*)ncjw%<=BwF;)QKdrD)sdw);_c)TJMQB#9liUck}r{Jc^H%
zMZiJF$};M?+kTx|@U?T#d==$aie{u&(}YE>&<DgZC=czBL+y8puj|%M8ONRrX5@Gk
z!_+fqfSN;)(laL%vmbY>!IZZxn0>+4B3?dLvdEUW=?T%Znt(a)G<Q&BsM^|+;G~{5
z+dA%G+EiM~yWeIl6_HR?yM4#x#3aP0N=(FOcdUW{jF_1e(-J=W4H*@Oa)i8ORlw-z
z@rD527jgkX9?zY7TL7<di_)kShQAIcCaVh7r>&vi&1-3TSJdR%{>+a$aNT1taG1CN
z-?o7GpH^-pOSiHiRBK$V94R;Nl*oh9{%fZ70gNm>8pBy=PW@0j3|>4|TH|HmW#qGw
z@-#>-HW@b|nUb|U8Dr)co?K-qZ$k0({gRi%BJG;#cA?1EXGrw)p>r=L+(}4=l;7K+
z_r1IRH6d6>MvhI3738zc!bSPv%Y)C#kHd%d=jZ55EZWhZ@LMv~WWCs++B7e>E+|s>
zg?Kz7B!2UN<ApWjK6gE{dDu3J0&*1gct(vNy>YS~e|cOw+oU_hyD)-Ki}z92x+^PO
zd9g_%U!&#{GXqV{ddGFgVnYByh72X+hmAA3#WR6S_xeSICu{&ieF^4D^W=_UCqIvU
z|8EgEUXMRH1rklaj=T)<`lw`9E7bEu=iNvj(lbc>ul&Sc`4?ExE$(;n3V}=_^uity
zMKW`KIchHApTam4_4eJTOdJ~K4*uXGOKL;iZtnQQxdft#>`x_Xj8s~$Tw5;#^!Aln
zv?NtcCT-o8s%KYSjLX1MxZm@@B>LF?7+H(7X_7gJ12va65<4VfGfX3hhVpf(YO!Xx
zvTzOC%2!g@^r3){T!rRl9s|;In!(J>Z+IA6ADBjPQs~1faRIE@+PWFvpM{@cT4;}8
z#bvdg(-oarI#&tHcJY=_xB@+enz9JZ@rQK}@#nPnH{R9iBq31CH<beUEDm!sRq6FA
zNpY0M>1l`%`val%g|P>A^mM-frQcsuW#$`EoX6LD!ZRg4$W+VCi1K6-lOZgnV^=yk
z)XRx-!5kZWd&F;pe~f?5>ERnSfaw^dPc4qM)d(|i)473ivX7m_lgYO4kOnWFDX}<w
z#-j+xmzsi{tbAJ&&<cEc?;?5h^x8Y|kKhbZE*W=3UP$KAr}X0KB29}KmUNAUNpNWY
zc4%BT>(pi+5%sREEOqBM`CT`kArTY588)#oZLO(!&ZW#R=ZLGkROjR~?)J-WcxwK;
zbWaL`{!;==q-B@J+gAmYcnD9G_(FF3Qg+_i4hA*pyqC#gBso>2kMC8T0_de=^we*j
zEnXh!F`f;VN}B{k$csNAO$S%a?;NqN8!1m($%I#}!|BD(wa&b1EyfR=Dw%5~Je=*i
z@$kPOiET&jjJ<iS5vgls?J{f1WBno2TVRo`PK5&*@<XO<?D&mD8hP*c$@9dDzORDI
zRSweFxmlx>#fpPrmsWHh5~?dM^)0aMm8vFQQo2`twGrhJTAQguf^}&x??wn$b%HR)
zPhQLUE$eK|{hnGFBo1a{RPJY2JUAq4^ZM>Ne8E+#m7tlNoJqz$t$+ZjRoZZ=@A=~>
z2+y=5sOXd~SCu!DL>Q<&VqE`~%*x5Cmu;SC&vqe2C)}d+nJWi>B9}qt-4u~tlw}5!
z1VftSFChN|2vU`0_`^ARed;NP^hU$mcb#nzvoT+9iZy+Xv@_P2D44<rH8h#^VKn-b
zVL<F7r6idb{-||1b3ezzP>$nk8Z`f@M!;`)Pyjan^iSqdk!BFU(y_{4ny$5I<*G3e
z28z{QGVqt{Syu{nPbo>-eoEU2oH_whDkO%0NOwB{rZwe`v^c7hXeOX^)P}R55E)Tq
zzmNO*RLDC7kSqj8AyU%Bz4T=P<F1{ihX-WQpRjGW$!BXH$Z4Ll3BKSOvT|<>sFO{S
z1Wa8b@J)LbwY*iiiR*)lz1{@F&|>sCMqL@(LRI4)0ANTLZmd$n!+2(RT+zm&>O}cP
zId~|W3tE1+sA-;4fLjZ4bd#wL08-LgE*9RA1BZTCtW^SGlI=Wy=41cwUq5hEi%bs0
z6%_Yzm`Un?!lCfq{dj7IKmFtTQfqc)2p_wrPjC1JhEsvFSCxWea39Z{^Of2gw-W$-
z2!AU!4X46`gD5PuKOI@k)Gz61<i8!q6@-UYcZ6ZMy0X6HQS6Zp(wwgIW|dt)oJWK1
z3f%?=g-AFKG_pzlQ6lFHc^!j?iTUaATct3mSIIxXHCcnNI?dF%EZ05~D^^Lb*I_7X
z=Z~(i-Ifdcgy=6VO#&(gdNI<YF8p)Wm(l`EY)~OC%dw&aK%X(NO`;u74BTLc=X_oh
zeq;iM2fJ~483prQJZ#LUhz#R}#S8)>CT}VM$Lxcl1exG$?l?21aHod371oo>ve~}i
zY03_0oxN4rgI9kVssV$5v}GqlAi1C~7_678n~9&VQRx44f)6_-mFVY77h71Im<G#Q
z_<Fkp%5`u6z!<ymb`FXykPfR>O#+4__xitcgp1`(!i=>B7)mK#N}8gwYeezAu`IRT
zBf!?4n50{*?u@*N&J<rI<J>u1bL@>)UOOy90E!Rl_sfo%IJJ5yG32V+Q%nlK-wof3
ziJM1;<rI~rU(J_Nz@V?e1Ih}g=;|lod@-mPJ*Pox;o~Ibt69iVS_6HeLLeoTh7=_G
z>eR$MUAJOJh5E&c=O-tG=2BludYLi+yFwfqW)GrQkF4-lJ)+lL1$k-mnl$U<^IEF_
z%bR9dG#luU#TdP@Tj9ntb)kYuflno)O3-_<sv6unf?JoC&sb7nn|C1p7$PM_dMo&9
zkuCb@ZnntPbQb*&uX@03FVQQvh7hkGn3k+6-6rDzqkbgqDD1ak9ye@CwMPP4eKd%|
zs^CY}U8hC_Mlhnx!-0qk$WpI>yrraTXq~I__?Sx*1ycqcGBA)Zam@jg|JdLfPq{0F
zKU}vLpo3l$*V2I>&KYYdE?^Loadwa$(efx)37VEj{OFI|7)At_(feDE`ni~2ybrG<
zBkI)_F6J}U#bou=BB?z?F`=YqshfYiJOFsKS97%(*$utO)M6%<==-f{0r^(MzusP4
zLiF%nq2s42ZUKayGeJ%DbK1>(Q=yBVX5bw4)i_;uVA8LGKj$snq_v+5il+#XJK7TM
z4AuX1^vfrxZM!sRYZD|#3FaCtERJ0c2r+2N2g&z8?|sF|L-9>|z7KSZROw~H#&dg4
z)z)&H2)cL<L^`d6=GSUYrnHLWy-%W)U`Cpahg%zsiIftdF%0D2)^pY(KNeQBG~XgA
zs?)c)o$jbXbQ%~Be{S1)W&AL8MHLTOVWmxBstiyuC{=YN2Z0d%1e*=kn%k|pNi4g9
zc5ZLQwbYX3DzsQUGr`&U%AY^|0L=E|ai#?#FLev}CCyWR<@FjD*;LMwKQoKtjQx%E
zxi&mL^*38nS8dG;p{w#)#?y;hjDR0HzdyujR_qJ(IQ!J=w&lGbgYcEVnDhPx&{OE(
zNsxdX_$bB=$MJG)QyYzDU8O1}%=3T9z5HAl3L}51efrbVm}VUCPLGw1@lDCc#R-KU
z>~sy?Rx}dSI_ekg-1P3Y0?!Y~Aq2<(^P}R|1@ao~LLpHW)lf}~!k$lxvqsC#@*Nxm
z;7m3$pS0c4^Rh{8q+Hafv{C)jp|0uYxy!Gpj*?+{TB63;?FoQsFvCOoMismst`c^B
zj5x%JP*ZTRGX0+1KuO%#!`60$g*$Yw+{)^T&$s4k3wnnb!oE|p$mMFG*vmymp|-xI
z>kdx(mH)R}ad<S4D5W2xOD(jjJ?#!y@wBK$?d5afBH{XmH6P7t@j_j-)Q!V|xx|d8
z6*DDM%o_kB0eHKB!NE$nU1jX=wr1b-Z0q1`<ZY=V{AihS0}Ze_cS&8QW%|J3ov!-R
zX6cK9M-cA&0ej=Nm7m47Z!7pJ$%)?Z5p3oKHur+7?7k-tFzU38Dz!Byunyb=Ag%Wd
zUyZ(6PwY;r`A%dAi%3o?&_D=cCw0!7U!z_n#UWR;$-L3snL1^CwN#pCC10wUplQy9
z*>n1whHk*dF;iGak()<ay$55$MbP!_t%>%6O3%*X-FSQnMtSdYX^xeAu4aM;_#cX>
zqm@41r|nhe$dH&sup`R+8APr>9N~-8hsWqSYh9!zO`eJF0&q~3R4XkduHuJg)gRkV
zk_IgmO>Ip=Vp1ub&+P_}#3%-x!mL&0=`vC&+|TV!1(u)E)6Nqlkvks9Qgr<klO0=A
zK*V`!0dNKZ_j;{jQ^wSAIqWBqPl1k)68?DCbd<7;ka<$-M+&}LE@RdSQGwPM`+XRR
zlfc|nJZgq`?pR5PSMLZ#i8>>3(C6?_P6RO@8x1pyx7ri!0aJ4X(zmwIycw22w~zi%
zhM)^6nZ69pAAOk0QX`7w;=c*Ght--@CREciu2yH}oSNWR6q2AKP;Ybz6b&Ct7HL+A
zW>=HHLS+OTj$k@0IQtRbjgTyEVFZ=~kBLC$x<{?N$lZVw`QS+hJ!+1Wb2xwW;s^fP
z=R#1A*J2pV2?4FXVL?PTf)Hv3I{9J^6o%uaui|S?)$&26;YO?cnGDZOh-b;!%JrD;
zDX2Xnc(&U&EDN`NR$Ur^Zj3{|VzNeee}oXj86m6553s$BKpFLAWV`><!_T)KAr5b&
zaaP?Y-!2PZO+K<k@&udizOW1{56UKnVeGwh^4!P~&c@~(${TpHDqd`kC=(FyCQynn
zrJ{PUT#LEDlec2>yS2uEu%Dl<MCkA;-mpl4%+X*o{*RG&RL`*s_473V5u46d=W>uh
zihUxy>hXR+AB`V=04WW!#mbP(#kWl&5Hx_*j*kv#T!^eWG!SCu#$YC|uvT5ZkZ50Z
zvEEeW8`!4+8QDi~T_zs;g9?0gyg$fGny@g8vbg*4ivuc+TcLjHTLJ(i6maiWG<R)i
zF%irtM&oC?#mfg@IEzs$K}*q&x13mhZ0^a(?i7DPY@ez%rU^t%P^9T|e<W72cU1lD
ztb89Kuo>;sKmddAC=&suzs8stgfVHbT!Sfa4~@2L+<G)kn1;NUg&<O8vS<Bx71#tS
z$sY$Y5}+eeDl2AXRa-bXE$XRc{&uR8&kxA)y>${Et(Gb_g*4MZ!kq-+=)u_}=*{|u
zY+BhSff%d@gN^+8dNeMfKe>?@>n8FEP&jBlA4L}>#3<jzrn4eLU`c7J9<L%+WC!r0
zH{zL*k<3#<Z!qks@WN8*i|kuk$*3J=vw_4M(HuS}iYRt_;+OfG`a{zkkUGaKgtDFG
zHe2C7{<DT%Z$uz^#f=`U#c@XP`18x@$uX?CI5d%;lOZy;a;V2-=aW<>#Hq0p8=W<A
zQ`V`e?>Aq6(Z%voH1j^}tC!AIb34P7+qWzfX;INLZC>P9Fg^sxu9?2QjMHA;6s%GJ
zalkL!ys&4Or*SpKFS%GIU}#2{_hW@~vg#KCDqLY-Mearfh#tA{Oq%SYuSqVek`n|k
zH)i5<3L3LI?E9Bq1&IDFV42dY9=@x;Z^oA5oAwE!ei9H0iz11xst^!z>_4_g<DD9E
zkyY@ML4QA=&1e%2Kdd=sDuma!0tIAN{zwuJonG`fkF;v!iVThGaGpP70=i?ZGODuY
z`YQ>oAc>C9=;RNYdJv>I>Qx=JPnZb#@-zo5>D-dskpoRvmp_mvZRl1#t+QmxwNSR$
z8N=0z2%q;QNfm1a_+f?uG5OUwmGrH5Dh@>c8!1h99lIj#k6k@P1mN|$4d=DmPPu}i
z;wCPL41t{yK;ho*b3S09d$5;44;}m=6I8CR7wGHMR1fIDh#9@q`P(zW;TsF-)dCfS
zXd%^KRMdAezmeY1gDN)rBy?GkhA#RI2RkLqzFnwKQv($hn3h#C^S?8o&=jZOeXD>r
z(j5GX;1Y|`4kEt6twEC*M36@fI}Elr&Jbtq*77-5zjwt_>kT&v!4=>QRIa3#f>LMw
zDACrz8*uMpu{@U67v{vJ8IeSMDI_*T3!ECLu(>+AS>Tv{y%q)Y5c&k^U<TGQppGu>
z8&tsTdm#qH0LP+Yj5Kz@qM($J8WOIqVeF?22XC}!UWHx|bN~utCIt_cFjWmA1NCvw
z*)~OYFmMNEs_@YD2hntox^^nF;F6fpip-#K+CXy5JK8Q-l~rqW7PPed#DDq7A;z8k
z@`0MaRP64<jlFcny6B@8ZzY>3O8J|Ygm$7b8A-um0@GCezXJXkv5kPXrH<T^n6j~#
z3l^ZlCwzF`D2`Yq5UP<N1}qvP!-&WEiL%`60WMEF=PC1SP``xJZrO?B5#h|-Ayg96
ztkK#)Wn<i)eUp*<_PNuzN!+Ja(MOf?i_`Nh)1fj;^w@~xtN7=EvR)?9$ovN;-n>W+
z0u5{b6=k=Vml0w75y2J<DD6LKO%BjV6BGOFP3u~R1gJs{eet^!UVmUgKDMTNetQ!>
ziPBAqdS$Jc$Ksb_hdtUlj#!Ft_&ICs2Oj)!>~@>~)+fK6=;iCayKJMWVBlzzt-Gz2
z16Ran4vLo${``i!4v{>0G<3+`A@JG1ub__=3kF2pvRZ$#eW79{LOAZJt%t!3Y%4@I
zz}1fP@!83I6xlI6#tI7T4<<k{FLxGlQei?1#P(JHw9H7ha_!pO(m*(Ax7q*hp&>c5
zL0jNGL+mwXw8MYw77fzbSQ0+($v+S(-1$I%)smfDlj7|MYxs$yUR7LojD~T`9^#b2
z{eh9^i`&O5YdR03)C?L`xg&&*0Dl8w)NvT_H$Wt|*d?r?Cg{LVG!AP&uO;hF!sx<B
z)cARfXvXQR*zv&?FZLSifBewnD3B{7mgQy!<m%?YOhOIJJ^v#J21u0`{SQ$ZbX&;~
zb`ly0R<f*<-Qey>DP~)fVrJn3JPy^1c~jB%{?vWsotEz4T-gip{4~*{q_bCdAO1;k
z{@3{L*ckqFSj4d7L|W}ExmzJiePZv?)~}H3nf^?a8<@ci$PlO{gYGmT(D*>@v={~*
z!FUxj<-6zz+%-Vo7jq0uEy0H}N3G7q;o&ktBFLyigTDxB(VO1r@zh>Y@aqPFA0OI2
zXir6z@oj09!E?t+(&Akc@m_l=3Kh&{yP=Kpk3;m-6x3(U)Ucf}Nmr?95&9BBL!sUD
zB>j+txaYNK?yCq4&0%QE91uldmA4>}Wx(8K{y0<pHfHc9b<oyQZNUB43*=$!`b4=&
zDMbAYUhmQT-fmVf2;6~(kh;OY5eNusf87(oI=H~{_N?AwIdS(I<^gz)5qC*1DSrWy
z6$m7blBb?P>NhSaA+hT$)&!j>H_)mP&OQMSBpM(O{mM9eB4zIOr5(GW^s5I4ReBLQ
zF-cp)tN7^BPw+N+CN{(h!~p*`H_Kq~ak+tHl0MJ3SJRt;ko2o8y~)pIiw1ZkX7Ld{
zp`6$cry0P$04zaSz);hr+=RR4Q*Z+JCz(`0JA=n`vx8f;-F|t2a$9A{OSzmh9^Ikg
z!#enth5qD2gEnqr_J?fo{ATYKX@(aUKy9Fomos8y-R!q+nrq~}=c8!5>EEAK$~Y_^
z{RzoG^TXKsrY%D`cHtleY@D5CRF#>KmEyjX<pd$?zbZb@6f{CQUC7UWRD?3U<>2pQ
zSAPJZ8;?!?)bB;VwVl3XIyz1pMd=Un#qGGE)Te3w{n_Q--wOR)t^>#+9-BXVfRH99
z-8_@Q&-ZYsOFwbEW-}~uvwyXE3dsC8V+#NblG_;t`8g-#^R>#_XFM^M{I66SC?C|l
zmmBkgI@#>0>c73$jWsI8PHsi~T~`n-(xMfYNZhh}U(E)+1tZ{EZWoqUluY@H5jot{
zdA~awU2#2yJQDV0)||=~d!J4|4&kLKX!>WIS~s~>FvkGtWijB_5{V`VTu)4W>vfGa
zmpR{50%@5nP$IhAq)r_GZ95CQEWV8Fk+0484*&bs?{7_b=*Qz@$yvyE)f6L)O8W<8
zS3I5WB;Kiee*uKHUTQ`rdG+Q|{=uKvv30Fl`QzD(jjDIyI{PDlc{<06mJTL^zF^@Z
zbM4GH-b?sVDW?y3X@|qO=u)5~S{8D%u-0{}*R`(}`jlC^y-gJr%~P(EOhjS{@dpx1
z&3JQ)HkDnM1|mX>ryI}LXK|*bf!>3+<{~w!F&u9+D7j~9dyhiIc#cQ#&9HnFz9<vs
z$N$O|)yZSD(#*z94|k|MO?$)TO7CZ{=UYEi)^B~ABD|Jq;q#D59U-Svu&OHjfQ~J?
z9Hmm~j#n>2R6|zyY1(p=Zc@vQ-_XuL!b9Ae8M3`i={lQ^o#yOe<+Kq@8#3X#FR?HS
z5|^e4S!E~4cmrbq@~N&^H@p_Ah&kH#ItwyFQECQX?Eg5^NgEl2p;nP@J;EkCnZ~2k
zRQk2b+1!eYb|5~J=q*4=bN2Y&?oUM@zp>Q`6shCUEuC>7H+IiA`{q7GTrkKa&y(y5
zs_S3pSJ*rjSAv@)eY9jhDDkwo+!t{FVqd6#>VW$r|I~S~QU<Q6K>%gk?){99%2l}P
z(VF|VZ@3EZH6$*n>qIsPMGOaqb3z<mM;cRI`bmKL1wtr5_%H&o!S7aXX@UOYu(5aW
zk8ylLkQz5^p!$b578n3^BEM>}7SrofwG5@pppxH&7^hE@%qc~Uy-(EcgDs>tOH<8q
zhZd$2zclL@!)NJ)3u#fgjL|a5xztUS4T|(zse3Km0d;UJ%rqcJNeosd5_5vSZ#d%~
zKkoad0|S7R`vDma&?^04co#CNVQ-*o`qLUHaztH=-^=M<-1b(K8N?TAa6DUoS~~n@
z(iWilXn!9HXd1ldXN_L|Y)#48uy0{qIg>VHvRvu<QHrgEznRbYw5Tv8#fPyd{m_YR
zaFf(HTJ%?)r2lm+Y-Her<Vr2Jf!h_SjoRRm&x-^=zV&mu$+?TR6y9*zw*javMV8n6
znR_pNnCL{fxE6_hzKmN>-9{TJg+~}P<z;!BoB<fUyB-yS^OYZBQ2dUJqE4jJtY<6G
z6(IV`J>|N!{C<bAuQ4LHbGsCQvg{Cl^csLGfbIm}7$6zg=_OuPr=P*=y<gV`Dy`5c
zo-d_#g2q$LPH(=t7$CIQ_xx}or!gOmeO-(;2B>;o_cK6%Y#&n$YRdP_2A=<`?+WRq
z2hR~59nFCG&$S~ft9{lHMNgmGlY<XqKyD?{>{>iml(s#U@@@8#s;#k+R+N)(&BoB%
z!mxMz#16s_q+vee7c0N%035cm&Fm;<)Ht1*mhuf|O*0zT@`{aUv%pSA%K$$4_oDQE
zXMd6zTfqIQ+#sH4hv&e_qjQ3Q)o>LbqSuI6$n>xwssij@3|bMnH#Xk=IWGBXs`_)_
z%Sa{hw_Bq=*$tlBGYq0UTz^}lc})6u*3w#Ucg3c9ro(wXm71DP3|@<Sh6@<XXe=zK
zEvIRJHfZKw-;13e4_65Ki~vcS>USik`E`==d#nB%fD`^KRqkMv5AqQ>kvBLs3J5%F
z{3hH|>btU&l1R6E`q;a7?`iLeH~Ovjk5n74fkX>AkiO&?q<nYB-fV-a8c)04)bUvQ
zF{(<<w~C@RNY<U<>*ukkc*M3Vo<@6;j>eoz9fMOZv+sP>q?WM;sw=e7)*6hSUwL&H
zD1d&`d}+n4noK($KyX}`a6t8VIkw7_D=0_HMSt4cBB`3sz?3Ycm)Wh^0jEG3oX#*D
z*l1p`4o0IxLG99vINjCv3f#xFlzeZQBVNcfqDVnZ`52P8POb!1oUmm^KjFr&T);Jd
zk1s5MYKxZ!pM#64#mCuI3h-whQjlZB99O^Cv=oTm#Hfy&W@SPG=zGWAQ1{gqN3KzI
znQ&o4u5qymp4l@%69mf2Yw3|gkd%!PPSdVxh%Cn+i6zU~|Fj0@2P)0SXZR46g-OHY
z44)=H&(w!*=@5(jA3%u&2uH7SK~e58yUC5b-Y3}JcryPV%A0zJlmPa#zT}>L%Ov)`
zG3%+hV#hh_4{eDIKcp9{b972odt`!AqHeOs<l@8!IU-dn(73lHuqb0cFUHg5&&eal
zeM#Ww7w*6xpXZIqB#6r-$ek$B1~UB!uE&uqj>}_?rGvwo@s`$;1D$($KnGR0Y&N87
z6k|DQ8z`!BHG$Kj#A?)AR#Tri@@LK<W8_0*{On$hM}`(iW$w+oG>E=Q%mlReu#BNy
zyr-jM!E8W(mSH6|l#SWWd@)Ch38U&WkIhDBCuU&;#g`i7QQ3)<+`wYF3mym|If#>?
ze&0$KlaPe-^bH4bEgi;q(?Up)Je^<$a|OSEa3=)9l)^a|6viV-S0JqzIgk1Q+?HD&
z&I&%sdbtCvO6V9fj}ShpVn9&hv~o4WdehP!zP(6_C8`)_j2q7xKgC;Qn-;WIXH4m?
zVN6Kv?^ASW5@?$0uO#n17N(KgR=u_;uKW2P*Ye=oEH}v??q>A!Q7fcuIH2Aq9m8>)
z-<TXQ^Wz|;5RKxK(!A-mah|96O5{d?pd6n;jHTD2HSFl4e`(@UUtDhcjYkxKz(2S0
zl2^%rl7ljhz*2Bk;0dI2*ej$98S+}b`boxDuY=((xno@5NwfV%$sRCdYt9goS0B36
zQTeqswrrBWscQ<#KP|+e_q$?qKv8*%g7|(=zxP=e7WnVyg6Dnp`31$hdXkSlT;IOv
zeVhN|y9>7Y^WN_+7xp?vFNA#MHlfJ_8jQtX8-$n_XMaxL_I=Oy*oX02R%|596`i*5
zZTAF~-aY=SC!q7rCJBzlyrdg_6_h6E6>^8s&ax!x=Gtka%~3Oa;Bu3sg~sdAewoJY
zxet#c@15Z3ITjvt>dK8%#m#)iOsD{$Ujkz!8V2b*Hq0oc0y^niIHRK1<LQ|r1EIFv
zSs{MGv{G(95{ftIRuiVqKY8*mwE`m1FMX*Oy+6qOcmZVlquy`_&%a8W4(@TDO~$zi
zF^MZ!pDol%ka6ZwyZJcU7*2v#52IDuFdD?GIuYl~$F2THQ^LLKJUyqvqbG@+X`Biy
z&G{<KYoBSs0x~orAFXM}rj8<9Li9?sRftInF%?Cs@b^n*2(p+5BCrpM2-w)oI@$Qu
zc9iwMkkzn_?_4#nAyZ?B0Kp4?voN+rz`(^3<n~d8V7~&68Y<ogq6>(Xv#<U69<4En
zybO(;me~;v_$LtaQKWWk_Ega%a}NWh9uY@JaN4;yw(+>_l)yF`f@j`8f&iIhED6do
zqf*?9gc4z-NUveQ#skrI#1w1DsKJ8gsOg?3Qc7>161JRUEP&ww`2=)?Lg`<>wyt)>
zhSe8w9F@u_|8Fw;qfw!eR%Ue;hv7|SO<pq4P=kg$apTz#N+v_c#LQM;LUzT2q?(aT
z=dQOhC=)-VL#!*4r^{b?eazZ;zkPb^|3DbuqU?J4Nr!IZb(uJwlafKvpxh_+5k&-l
z=w$|)2XwMU*+3M4`RCy1ihY9u9lT$yebjm6Cg`h*m$*(yvx7nELfYnBE$|FKQvGh<
zU0}SmYAyq%+>%fGRRtR56TztYVJGrl3{$r4$KART73#p(0dIQ$rd<`$GS7NM6?BDx
zU<P5bE$}ygbLi5D6^IkQCa|>sdy*6xXS6O1f<vvjsh?QZ4^8HIF-W!Oi{@`t!(10Z
z$j$DN`IDz_T3^*R{>5OJ9$MxmQ@ECGLTqILGK*7lI0_<!K&&I6rdjR%H~YJtlmgy`
zK}JfDG|{IBhHk=`lm-A?$@Qe@uQsiob8f7<DZ`RMyh7-q0MKcI=j9Rb>$IJBTvwvm
z0;FyE=Pb}c3%8mDtza|Kfumhdvhb*}q}2?)_iE-ceP@qix+tNOy>4~^m8&f_gZ%Rv
zE!l!sEonkPHvT#-F#CXe0)b@~pJ->qz#7Oqxdjq)7?aWzBcnhk;aE)$;rV_}`BM84
zL>?KRh|ulCGy}&qA)}Q#?<4W>&l;UE^+L^FsZ`LAiRbnTczp?v=7>_%xkc%PwEx4s
zKHjr%u1BKlYd^a3hvLeVY5`Bv42AHE!AkPCleUnod7(V;GIsR67h%{Cz?A&uw1vMS
z<<Lf&;cKmC;Xn0uUv}_uAvWq&!34zXOy&0mAx<{ar`ilmd{x=Cy{j&d#Fl^RJgg);
zB&_FjGVi{$_*gMri%j)Wu#<;JP(Tod>|ZIj@bz-^BoGNy_ViqH<wwWv(JT43-fL7O
zF_Y&<U$@a9Vz%mSS+`d9+t8qG;^5e?l>*RS$7a1!r0^XZ5`ym`ugJWGLUa=u0wXaM
zj6~q51RR*dKjSA3@SZ55CU>64nYrx-K0*b4(uv2V0*TzIu5s&bgY_9XjDvaiot1)_
zF*gGv1*tHZ4yoP{Rf3*I9Y<AmeeNJ6LL!h^hLb{xUY3GK{O5Se0S%oVX;LP3T47ak
zN&z5nM?LIPQ8Fq$1`nxBG&aMCe+zxXzMbAbRNg=%b{bqaCV{|mymU%FlL4^SxIjAW
zy^+%loKwfA5#ij}nXMNm2lznVb~Zm;`dYHK*-3RNdt&BHFsf$<6+509m1_pL0;)Q1
zvpj*zsw(cIOgZ2rByf>3WPr33|6@*$1+q10dcm0G)}Tv6BErc>3w?GBES3rA!8lc(
znkh&9Ws~*5En=vaN?~(Dibb)`*sth&4vzyx2Am-XV%A3Uz}<$%x#~f&x#o)w`Ci5*
z<WM4CY+?Z86Jixv83z+6zsF4~&N`0$8|1nESEE|S#n#^DyJ~ZM$Qts}a<CoS!_0AO
zO<c>5sujrofyqao7bn|V-DPsM#(8QRbHv;X(3<T37gt)z=xbFqz6P9T>z+%iE})G?
zb?%9*P_pv?K80OxB{XdYA$Xiv4PZ5wo+a6)HR&d@56SIN5M%K-$`{W9vjynlZ4$<9
z+`oS9D`a8@)8cP(!W|xt8gWAaZGN_aqCz&J98teuV$4wawtX&ON-Y>ndMkHM6o><a
zVV_C7Z%m@(b3xCbmq7}l&B0_MaeVt^hItA-JfN9N`Max=%wF+FUdR5}>-_%AopAIL
zJ6)}f>!<nQG)Pq#_=NJLj3rj8UK<UTL29cm_0F&3ti$E|qsxUCoZPY!EgAwR853kk
zN-X974Hid%5N5%T+#<o4NVnUByI5ua`rBb}TVi)9{3zTKz;t~YAQIMhc_F&Z1Vub1
z#W}kmm;biQZTOex(!Lwi1rwn?Cm=p;p?+dRi<zKvv_#uxzRYbiJg5Qk6D|q{e)#%A
z(qkW^Z@OwqxkaCcSI0{d2zH#_3XT7VcpB&N^?r;N@XTCL!Osa5JpC-hGR(IOf&7Mh
zuKV73;Fc5cEM6*_N&Ho?LY=}g5xN)jUC4m6R{jE8617smAP2ci;qj9}#}|W-pNJMl
zXqFb7n`L)xXR`cOuk(%R6JZ`Y+rdG^E(D4&WMd2DE{-7$za%(rz1dMD&#(aVr1fIZ
z#J~JazNT>wD5t{M89c1R3J7aoVjUe06E=2FHAx9Ke*=YbeK_I5FHeavf?g-`*BUlI
z3ZJe5pRy9*qqL9=sEZ>CdtCz%|B*c3*~A|;FZ3|AG+`{jVbM8at1Z1@pHadKENlvJ
z@Ki4U#zaA~5p4@X8FmWarDPrk<K%;kFBpz47#SGSQULVIQ)+SF@P9ZMguk=HuSC#w
z_Pj;?Xf(mi!NmouoXY@$4z+3?+~DlO2LCZ@4Pv-hOjF3VGB$#h#sEb9QFu;4wMe{@
zF$Y{;%|O!D9_EE;Q~}B@Vpy6?kr1Y|s`@Kv0i`f{a4g09iAWgg30<?zgw%!Vn*!~S
z95KGKEG?$OXc+3F?Z&@dOp!_<g1b8*p}>CdD~pxGrqw#4Y({D^1ZnknwKYnL<d@?9
zZ>$pZ#P7J-QE7mxiMCr&tRxr*#QG%A&eBP3P{ARPpa50bL&v}B3~+G812FawWO28<
zn+>EgNqrqC>jr6A=MXfIPIAQd?|Y7>W8saqXsFgsU3@`CM))0OjeCI>Kz$mvTG@|`
zyggxDObZa~YP0ZErktnkX`c`Xa2z$+uVCGD!4r|Ml4$y8j;!dmvi8u9C;>>dI_!-$
z4U@GER(UT%r17mf*k_pFaMJ=r+o*#b7dRkPr6L7DC69#Pq1ZqR%2Gf$*J=a|hdTbP
z@sTyus?8(n%<DL?kS;b>2%$OS8LAV-2^an;hHGF61OWn(lM>h9!mp$PO?46&h<dUQ
zp9N6&mA^$_#sWDjU1V@-0%^kdLKIYUVLcROUwqLDHFO|`5s_uV1qr^aykuL>t5n$#
z)U%O#G~oP>ag#jzCryLvUxa<e;ltkz9FbrHhy35w$Fht%(VHHf$ARnD*7H3o1ROlW
zKM5q&(NW^Q{Wn$R0D>G6>GrYUL((Vl&|T*+tpE?LQ9v?{f2QtMZUFDszqp3%xong8
zYv!=NE%8v}J^DPiM+JbMa-li_!NRd1g$Ywasfh;gCfD8|K#=C{2^N7e2MD+on~n{g
zHGI(<m!h1}?j$^j0O8=t*BqXG_uninoccL>a&ctkM?TOZkS%lAB;xxa@-X;$We<Rk
zIZ|;zK8RB<p&^49DV!Rqs9h&g8Q}8&k_+-6gA3dhA7w|hK=PCE6FiVOGWGc{HT2{J
zp2b-IjJap+aG@_FG;M<w`|?E&8G?gwCI2EUv6oHyKX1Jr4*a*f?pJ5XOPv(d#j*n*
zrQVC*ogueBE_#kwgZJ52+7|(-oAl0=irVmc(A?SMBB4GWrS)~QR<0AU(HC$d8fbs)
z6vbmj^S3KQ@M(OqcDjyg6$hxZt2H7(qWJxit*W4g#TN7K-iPvhbs<9L-@`71uXeNZ
zaq+Sx)-}zh2^<-eVVM0lP|4}7ltA7*7Uv%v5Kr|Cfd&aFAA$rn^@4!7n3bs}9tBR8
zzX>}8@0s_5BSH8U_zZ6RLB3e`3p@Zat|a>EgGc7hw*D{Lu9rP++{F248EZBC$P|O)
zP+h|#lc&xVh}OQlULc6+IT^rYoGkTd>9MJ+a(f)rbIDeiv`3h&=&%L;%f<L+W7#}y
zCHuQX1P>&ZAzl*tf~eaVkkn<V&usy)cN&{|g+X^SQeJg)U+8m$95N7YJX(;_h7jG_
zG1mCwA~=z)a1g}X%VShSvc49#)aHUb`VI5v8y1D2EnluQ7H{gxS1pCXNO5Ua92zY(
z@YB{ko8ZM0Hdd*PgoQ4z1fIY{-MTE@w`x+ET*w7$19CWi{N*~Sor%-na@;jC`RUu-
zKLBFRwHQhfN?mv9=?7jghb?%)^%WJC=%8%=pE$7NPf|mD|5OnuNc&e<ZE|F=g2Fug
z%?`7xhu^_@6yFxm|FS47p#OpD+v4P?>U}9@Xy)xIsjq4H+EQ=r`}ymFiLAkm_v`Ry
zu2B@Q#9{f@K4-12mbrftmqgnBv@Cx$Zdi$>u(ho8);?VMV(h2f*ki}%vmN(jZ{B^c
zy)r`deuM~+usmrthdU2r6-IwXW<)4SV2!crji;+<zyQco>qha?wYVUAU-V&v`{8sU
ziS=pPm6n>s(2U5XhvvJ}v_tYLy?w8Yi;jKU!SE`Jdwvf@%pcIdx3f8$^M5m7Qpb#x
zpiQ<94Wq)}5rlBWVaxU@BCP(;g~h?WC2?1a*A19QREqeQ2u|mU-CosT{{fOM)JHxX
zL`kWrTSHM*&NO({!2|AJI80&<1qZy(7#3otM<Dx67X~j3%!oj#>$e~Llk0G%4heN=
z6B5$38W|C`*kIi-Alj{@s-dT5r>9m1u9f!#Q*Vu-z@M|7rNrpW-UEGQgu8c#m0#{I
zY7ZZF3t{kUfMUHPOC;DRz<9WxUkJhU+K={5RJ;_~ajJ8_6m2$B44gaF|Dacn=pWQ0
zz?^T2p51Y#Z2hO>_(X}MkWFKbf^GHut?2i-O<^kU)pOr4$1%5%(|qVfxpA$PqvxM7
z^(13>t*9u2BI{)rcJC?X@Cy8&sI=c~WQl~i<oMzyN>5dfx3Qa#Lr6d<p$5vt1soM*
zrB#rmB>X3cQCx8wloolwI0y18XN`2m4dVZ5;=~7gR}zuBpP^jCj=0a^{z3!p>s_x^
z-&n~L>WLMpF{N00(;f*ITiY#sf4{vpZUD)$+Hq$;I3Obri-@jw-Sj*Bv9Y!reefZ$
zzAxpwN_<)-F%cd7b0T?CBDuS|5_pSFC*o~|lyhD;YqitSln~j-h^KsR7iXWMm0#%U
z09W1jrD~tK9NH+ogro$o6N8QJKwd#+1^V_5+_K2XzYhr&7yi@R6qYCun((%QXQ|Dx
zQnlixTWdkBbG!LZfO^sOzCvuzn{ot{i~F*yMtvnCG~eFDWoqs2iIP_0Mxiv=_?Y#*
zVPVxJi73yo#Cpt@7i7Nt4I(hgbUrgsv^KIavRs>Lya0(WfnttI^49N5j?O&5w|o7n
z&8Se<;By!eqWFs2+gxRkj@S4%nh%VjY%3t9_it!Uz!^ATupFyFd=7veo-IeUCy%-K
zLRS*6VL0_Hh~y6HkKUtXd~b4BA(qC7aDM-=Y)tg>nR0rmpySt)LO*_10oY(;c)*^<
zo7)ty6nn&A|A1_uU)HF#2+$5>kUuvEV`vfQ+r4#YU#=IH%*@skm0wntSJv+4x4l1_
z`*h&pd-*1~pzS6lr0roaX_}SYSS|CR<x3j}57!bLs<XV<U?(naq&0AA-+WozTNjoc
z-nMtszUtt6)4xA+FR5f$B;v9*-sX31_F~ZYaFbowZMiYGu!66~MJ70na<;03UsUpH
zwz4{bVN~-R8?%tUr(DP2`2kz{czBQW?I**n1B#)3+4m29*K(!hjL`eySA0x_=n$*J
z9Y5d8?2%0IkO^dnBPTAEpSiP^-kNvFD20&s)PV!xue_JvEG#qvua%kx$e|zg7z#&?
zBO;;{6vH3+yRtk*B_q=ltkH9o3X~J^?=)j2{9Df(u+WF2GijiMUyZfQe_Dgt1vx9T
z-reG`eGBk+PwWj#CQ5)II-P*1;d{>iB_L?H)+`0GaYH67s+%C~mhPN9SP&q)R!`a?
zB795V9SE(x<o$lJRQD#fYg+^iTK!py%FzP<3;1uwL3LUna+$b<Q&(TWV<uoY4eP<6
zZIQTz#iW5_8-sXg@$W%?k$3~1r3-jH98bvWz=z6Y^EaWkO={a|+~x(jFt@NEjSMt8
zqul3wU$QhY-sj%=6MfIChn)sPiH5`pqS7zk?~EOderSuFt4J739vaQVr-V=;x%i2z
zV`!Bdm5zfy`}iS1NV@c4b-DG(O<rPXCqEzZ6UuK|IY$!w-n@67BaVifcNNs|LG<cz
zbv%g4!`P_=hUByL-Vu%PN;Ib0sQsi0Ui62>7Z{MIX)W#!NDvQ+8x)yL@RO~@e-mZS
zTk~wazg=5+T55O|VRW<mXR$1v{pG!h<NF`4{ca&Xt>w?2rcprX>C1^&$k?=aefCxr
zFJT7nE2~z^FO|?a10L?X$j}^Bmv7eMF3a>#AzwVqUxTCC%=U8mg0jheBD})yU`#Gz
zKgvCNu|J{m4e6f>@QPkAvB$&q$cP18TW!wAxmFuq@f|<;D_n_rLRI(wW4rzNzmfHc
zsYVd`Fr*MRWupNU0E0xoN&ouh)pd<*)L&6SChN}Zbd2oyc1&{tgsuuUNw{}+i5!2e
zrX!T|v{uAlD`ba=h|%F@CB*FQmO{yJY>#Gq{arTL<Azt~i0&}@<(KKichNywT<moz
z-B=(bBWU^hsCkh}9(SpZ9l=;QX!FthbI@D0UIj_z<Ed~$zfngil<OY8LR^za3MD?k
zeRwK{+{>f;{o6NchW(Y}2!>JZmis^bu7iV=%MF=1Mb8S^*o}2`^kUE;3)AckYH*he
zr+0cziyin$iR{dajqlMQ=6UphSrN)O*rnWPRUAxWV?-s^q`M}uZ*do<UDQ~MGPTpy
zKkiIB6y*`bC4mV#+?gi#e=FjF*4KiYOjBO@vyz+4=d5o>x4BOV%E}l~Amv*3_r}eW
z(^J~<Y45LoZRBI1Q!X~5L#ig?(v@Zo?h6CR+#BFuJe@+catD-@%V1U@rvcHwW0f-v
z?m1c#<T!?VX>a6t)GggKQEWm?)669-7@L-IlA!$Zms7Q~ms_)eX0P*I&bY8+#PDyA
z)u@-poUyywtes8&M4K+EZn=^ss3Ac9>s&<jxa$cU%hKeCtZ4<YbH%ytR)WL9X;_^R
z(_cSKe?`cUp%XTL^&iWjSGk@YK9Ex^{-Lep;9kaBD#VTXC)QN5#J&C<(3;I-#eiJO
z!(Hc&qkm;v8z6GZXg?U_*f#XHl4Z_59$F?KjFMp`lotz?r;Fv5i{~Iae*)9LZ=as(
z9WlBeTo&n*e{G=id0~!wc8*&|bB6Z)kZJ9y@b(^wPHSJ%A`O{;Oi{S7c>%q`rb6P2
zzK2`y-Y4X39^iyz7}10`SvQo~tbjU>?BReEv*N3LHQSvRwJGPm9D{R?BdZ+t#8Dj@
zwqc3Co-<<j71@7w>nN0C{cB6Fwk82Ud$fw<B`6ie-F9A4&3pWsOsHEH#l<ISHCwOp
z=O0;IJG-{+K~530rz36ZI`2(#Z!%om%=8lL$cke8n;N>P8~WW=FG{{#&1Ws!b(~Pj
z{ULPfz&V4+7=RFWt^=md<Km^%m2&_&+Q4uI!C-2)e9%Eh@==bO8bz=;swwapSOH=H
z#u9M$`M3K@FJl$+nS*@MxoL%z>_eGQQZ}$*Cs}5g0L=ArF`LuZu+W)^MVPX`KJf|=
z|JT-BItWuS8~bne&j!*laC-`t0}s%jgC4l?-LFSXVVnfWAe*A~cqBIS&uR}3ArZc+
zY9d3Uy`Uj1xWGC!JR+Kyobt5x=Tfd#Dc*X{8PHI^PO5M5bI`~>Vhu})88mC-EHp`u
zDt+4Gyb>>83_;goXG$?-9}~}zoY1gy@vwjRR-gasL~td}DM3pvdCucnZ~bSVhn>q6
zwDqW7ybyq(Xs_QW&8Oz)^EI7jJW+aiIp3Po?6O)e^w`ErmwDgN_vO9h<vU$E8|eFo
zas7{yxt~P8^_$k}mtAn=E}8u7|NiN3v(oo2@IUSzWdK3+o*t4n*SpDyy98R>b<TrG
zuD>R=hF$%}Tv`PP4s5#a5;LEn7fA5+XT)Tj?25prPg_DJXqJ?Mu+kmWScIx>BqL#<
zp#zLBp5lTKkVn-u@+w9sKk;uMadIsfo)%}cxq}o&K|1a&><C2Mf4q7{YY7@Vi{bb*
z5PT2v%sVjdsfjjHL@CMVw&en28h=EqP!(BQJ@Q|Sv_|Gv!!y%~_TDIeWZ3fYX`1gt
zB?eoPkf;zLB$18rYGt;^_Pm_0X?-gNEbgc?{_b*y*nT1{4Z4&TpYkzF_w+Ws2hld)
zVM})in8oh4u6})3C+ektar-IraE~H+1g%>tXbS2+$?F=atP{jqnv|#}w*S(_O;b8d
zD>pbTHPZRcU?X-yTjmEnn?bqX<wy02<x7w+r8n>Wz1+C!J~LnFKsWI-&NI6<y@|Vr
z_a_F1>LGghnA~I#|JGBRGR~nIrR||0Tin&(WiF$A)*u&Xhs2?Ak-fQfbF<C+{O@ly
z&911Le?OdZvx$=NlACBikX!>s4&Urqr-E04TBU{S+y`~dibH|g-InSUCdwz#Rd+Qb
zOW8^8RDQSZK|}F6$>Wh9H?C$b(!DG$!{orZcvO%;H@tse(d@j|(?%5$f!(!Mg^F0G
z-^S?+;-7;7=93O0W`V?zkz^U`<jobV9iSN!7F+Fi>JA_%t9m?6$*?{#mXxabPu*Mw
zm;v6teV(FtW1Yd+<+B^1{AWAi<->Udk!NPI;>{<~DglOPXpryrIyUb74_7CYX>h<=
ziC!Ghzq$Qg8<D|w8Q}-Fubf{urKN0ef9K})83(8MtG(}f#xwh7=lU9ITlk4nN4$#-
z_zpLP+81|+R7;DkZ?;E<Ss-Gis_*owx8RQok=aMn`oMr##@D-iN#W-?gHWyd&=+0H
z{>Sx!=hCpD{tBG#doNx1gkDy*lp2?6`faE`p=0PSGcZ_$L(c|9@1r*OYvr$FA0Lic
z^E&k2mq<S94MM#kVAbD}<M-P8<DF-pK)4xCxH+W6{_&rurJQ~-@1bu*bIot3b|<9n
z1;{*;50Z$_1?e3=E}P6D6XmKbX+k%>tb7m-k{YTezgqbAc!}oPLFrRZ^7_p89vO#E
zl~vQU62FnZ@=#%ZX=9L~b$>LSuau<U!GS5s{$i-z_5-y;Q!Uxw*vf9?_GKY6umemC
z+0)JE>i-3JvX!H*IYjY0^@Vy!FhY*)?7dY(^lhC5x%jS6zCIa}xgTL=8J01oHnZzI
znf7LQp>^9!InOf;d3=@5tJ?%8X(pmEx9h~S<U)ChM$7T0QvMV6lBt=nvdcV~n$cbF
z=$~|Avg^4|OBi(pYG+&Zbc=S$s?Yb%;UW5hUTxQ(l+_5ny|~OZZc8Viy6^A(9#E&W
za1{vtRo+3LG3O$=z59~HrFuDVX2RY_u1hGsa&%h@S=1IDZGs;JN7F!bG-3kkhMGQL
z@KQix;_&h{m<#dCyTk*YA-zK7di7Y&`IVoq?dW&j4Uc|@80u5Az`V>GCWwK-b&m;v
zV+#?FF5xj6hOs~fEBrbv{ZOX8HQNVVi80X21OhfyfQlBF<vzSaxdlKWaCO|mLK&Dd
z_s;-oG8TmcLczfqar_B3^y8nTWsry-{H?-a)_ddu4KknfaLV%-Z77?o68FsyR$CVO
z@{5^e5rc`JY<A6B%QrU%T|kRAI3J!O1BHm?YxEsRt7_EGF%}+uSOFUVttLyzB4HZP
zn)5R(aJODf_wYaKv?LExVNMQ{+wIQNL|x-gXWRZV`qM=!Ijm8gHx)g#(KQUXY?!PF
zfY=HY=8S073Scg3e=io}i4wa*5&EU$BUn<PEegrzrUpU2e;Pjlh3DUN`z5Q0|B-Hw
z@G%86_&`Kvo-R)Z-eb{YS=nVQ5nz1)G4kShxH;Db(#XxVs!=HL+gBqL!j8v!zAQ9%
z?LU+Ivlf~?r47y&TU~t}_9WcAa#V7Ejl6+}BP+gxFJJvRR6v2}O(mwKR9V3Bl7$+1
z%Tp@_XZ4>gn=lTw{zdm<gfc;R3s5ZHB8dOi_Xlcmx=_Di0%I2t<o-<dEzNWq7Kq9(
zPgyH9aeBt9UQ`S)_n0YIU*;3mIEK!_eU_r<R$yxzkY}`Rp&%#=cM{#>x;&LK0zurF
z7c+l%7c|=q$FH;|xU@Ha&7s8u+dpF;Lo=K7+>5Ia{7V=IjSUioo-E>s-2ZY*kZ>%_
z(5#<3Vt+X5?#_E>?n6t@wTI0!@4p)#o6F1mV|5J%t0pDv%0l>WQhocoTUKsxOB_z1
z$~ONSx-ZoJ4p4Ug-Kg;eBlydqjKg3n>kRl)87P3?`i8-H1wI3JS;B-T*1lg=I0pY8
z*1j^Xs;6ytBNB?VNP{#YE#1<MASEf?-I4+lQYsRX(%sz%QqtYs-E4ZF!M{Gw^Pcmb
z_;CFBVYBvLYi8XubI(239T)DCCu`}75b889FAuT(a)LZ1S@FcK?D#a|JSAqx*H))t
zM<R_V;hg3T#6Jbnn|H_TBn?nOhNG7eKL`eYYO4#vtRH4Df%zR<@DJ*HhO>+ysw%_E
zFprw-d}rJMU-rRpTTdV0xCOo-aIiOgXETSyb-(ABs{H-TB_2}2_b6xF?!%S#lc!%*
zR~<|x{@|}bHo-Wp7$D%84`mIMpr^Fe)$M&O{KL_MQwRhL0|EpPg!l|>1a9-FOQgX7
zX-1UYty|O$qyhvFnyp4W;FeAozqm?JF@K?sMa(ndf(UT`#J=oOmo8E~^0y_@<4#)5
zB1BE6eKk<-n}WagL?ilcO5gowO*_9M&IK?S%WF`uoCb8eoKR;z3?N?C$@>8t@E{N1
z<sh3k(n{7_ANZQ(R-(sZ&uL|u|K<b4qRSI4IQ;POsik=VxK7MCMgK(t5cH3J{3o2|
zEyIJ~gajaGL@)!G%r8<2tLkO{RgoUq_kMmqS+-7o|GMu%BNfNzNwrRMvY$oOc?xxK
z$^*Gc<o+>?8-5l8m-zmGDxed_z?b4-hmG|~ieeBD2mH`F%$NK=L|H5+Rf%%`l}QMJ
zn2Grbwy8O}+jtR$<STg$IPxg3^QuRb>eJ+-^)uG!XuvD*M+5*N3UH?AbP=H*!^lPe
zvGeEK0)>D8s0+kvmucV4seimLi!ZhkK;*zTK#)p3Ee2RleBb#1Yj(j8FfV{T0eGrJ
z<frf5(JuW#j$gjj8CM{CjNl>U^aWBN3Y-+FeLzBnPNe<^Uu8K0la1eZHpuuoB4L5T
zwaZlG!PKCb?X`zcVcHdj5pB{IW$6^EARx=R7FHrg%uJg-2#I$UWc}dW+GKO%ND96b
z2F2h1v%R(Fz7g;U0J?ih>3YhD`nm^Xoov(5ZT}`w`Sf%*p#P~qz{y2%AN|J3A5anc
z9o!~jF$Ajt-_8Cfq22aJcT?9BWM_aOO4@I?a#?Er58{Y>RXRTa$JA3YkoYj?Lh;@B
z7jSt}f(_5f04$ZMFpTvVfI|SFsCNVz!MgVWHR&#(Sh#oO`A=@nKN4>S(FTcy!1UDq
zFNS9;;VZx;hUlT*NVo!sHqOD0@(G-@Hj{rx+We8J;T#eluuflgYW*>e%n_%;fSn2l
z*epKv4?OtQ2zVHfN7}$#efjB)=nu1x_aL0zdNw`o{&}*4BcV%6T#~l_3&=0Q_QfUn
zX<9(oF%%0DF!KcCH>=0uu=RazRS(zSGuQ7t74`iTD*k-fH;~IwL3tMr)^q{fO8Fj~
zKS}V6cOl<RzE;WndJiIjzO^#5AwW0+3G4LdD71_a<QAX4wDku~U=UGu&Jd6d(!oR6
z)B~Dz@6tBFdIs4ccPio>c&TiG>^w|C=uwA@$cS`v58%uQ$Hfb&q43}o4IDAv#(@0H
z4)u8mm^h3-Ds@48dKX&?t5Hav0Vq|8?(Q{&K^w?uSccYNpFBJtLq;?ML1_OSqs3Cz
zhiZWQ<A8q8fC$TKK(%qC2XNXuLJQy_$p+h15X)!kX=cb{yi}IE?5Q3$F|jOFh!1fx
z&0d_u!$b`h14UXiEF!YMjjU9Le_CBrhL{$k^^dr~uL0V(JC+Wh@y^j(fer#*FxuI`
zd}om{msa<NAdCfdYgs@C2KxR4c%!7VRN$I7(t8(06*oNE7ac)L2t+7L@nMV?hu_aO
zeT6=?1jZ+TeZlX34F%!@flmv=K{Lp2%w*ww3|bki#y$fQ5Xn<C+q&OS=~GZ4&wl3X
z-C_LOt5OzZ@WMsTe!%PWDgMq=+T$WpPp%yvT(+DDDQ@}7ck}Z1JmMSvD4sErjVJs)
z$0Dd{HoC2o!Ivf-e8w2aeQX|OpV{=yR9QMq<0Uei3)&Liw-}6jVTpdfU%%6egz{X-
zSAil$LNb$4-$*?!WWDhXEXmKsFMsZ3>g-d|rDr^MM=G$b&&KWtfNkODh3qPro7vxh
zTkg+-AO?9r{tz<j7SF0ppOE!2f0OiW^51Nvp*TcravlELa3Jr}1sb7O)gx1T*#W{;
z5iqb*vdrFrt_`peV;82;7W2+(-=s|>A4l}vDh3YADJrvtW86o2V9$&6TWX!k6f1$7
zgn*60lK8^v>KnxEJ@DSL0{(R5-MSz1U@q7Q>2Wj?9)Q{KiSPiZFyKrCD(qg<KG*mj
z-sr$b(oCz^!KXDf%=0&UE{B96PdSDA7eGOyO=sdn5Qjm|fn-rpr)AxjK0Z@u`^<iL
z(QRmsmzB#L&L`G3@nx1Co_MuhkL9OVk3}%^{3@ojr4iD`bBk@(=aGZa#_?_1k$;#O
zlAwQ?ux)sm)&A0VCikT;I^{VVD;2ePVk%1$=a8#asduxPwxPVz(4)_%b_a}&ermU5
zj!2L1Qw9w<f+$Vv`R2|b8myN{7g`_{>&LnXLK}f;vZ}Bv@Av4BBaRg6sDQ%f)l%cq
z#lWq=)B8US4*l<F85Gh3&<3m}MR3Y31HvaVtI%(T->nqIL^;58J979%oFE7BGw!&t
zSjL=^cRI_($wwrCRrw(za!H+fd@DPf@u<ZJsM=E0t!2`(m2E>>JdpswFdOp6uV^Xo
z&D?zR2rI*v%-^ND+AhR%Xp4EX;*sCO#+u%ALx0g&wna`pVOxT4(BU9_Fjygf25W?Z
zQWING)jT}BVpJ0eiZ)`jorYaOE&P*!HgynzYWoNRGV**`TY%G75li>ck`4aD5wIiq
z&QKl%B`rf<y`KvE-t@Y0D(J++aD-fd;lV2*%%&je;&)WaI_T$tSbSDjMisBXGlXal
zc4byPWwQVqCx=el#zjnk=QzD5<bZT@o8%*1Y}?bCZ!(m=X7<ST23pyhw0-ja(~&GP
z$RO{wgq~Ng0zG{40~2sIGH<YnH%z6E)8ahRNvrYg?v<M&id0<(>)NrT#fq9*76hI>
zeh30c$}p~^kh&()JxymAEkRuk#KfuW*MyGdM3fGu{_2+D5As^|9eC;~D0yT}YNaR)
zhs;Uw9FWlwxxyCMfD-sEALJSwij@KN?ifO-IyWaI-L&;rZ}4hnwU}Plpfvw^0w0xy
zSyC3QhLY6Jv@Z)cWpw_n;H2SD3Q2Y|6N>lvWI>HtPRO@k<Z^JI1o^=)@<a5bSC4y-
z`NZ6#2;O@U=^H<M5Y&#*^7?Uah?SB)U8tzr52Q_|`-uolk)z~0GBPh-`|9(PoIc#O
zLqBb^t@ld3by5#%>OgA4X5FaNA>J=2JyF%TtR)7C{f5d-za~rC6F9bi>zW^sz<E@^
zWv;+sb}nOwYOZ?PWB9O-!Dz!~BXj|J)+?%H#FQL?4lP^d6SG{<e)w{8vGO;0jX4ze
zvoI6HZ9gqM{Q*|S7Uqx<DXi+uPeMYo#C;vfqGj0oQ!Sa4MI-nY>^z_qP$BiW-nPG(
zM+=Q++qR6p+kwxkO;6sf!`C+x51~Mjj?Mgo&azu<wOv}K&t2v^wrW=V@|$QE2UAzU
zadBjkyeLpQb0o)R6f8^7I1we-BtI=6*NjrE%osv9gZuKv8qqpjn=F(D9G^Pe<4+5H
z{p|~TCacJ`l7Z3(mP2DytUGfGk;{Yg(P9$WQ|linY`ELY$X?6$mY#sk>9=wM1NsBg
zw`c#Qz2Emkbl;xjXX2e9X=XeNs_&tpHTIbB)_9yyf%ksks2L7+wBK7N__TsXO6fq+
ztf(@s6dNf&tWN*%r9db%(j3`ZN8+;T49#6f!E^6s%Rep5ECL$21Bis2NW5Z^j7)gz
zOP{AMi=uuD|K5?2!GX4B)B~^0jE33@Uc{hxcXnd-U)CVVAtnN)0V<v0gbXw}`y(|C
zijbWHEk2@8?8s+1oE6ps*Q&UDgb_C=Ebg=H8ZzqTN0+~STk`J**yA4QrDwBML1}Rw
zR)y^D5KGF1COYv7UXFGXb-?>bX8<3Sc4aX$6$>K7d6(B2z+}l@>nQIM#hp8nVTZjx
ztFsmOYFBF+;^i(+zMhAE_4iFsKBx{Xznw4hz8V@vk6tn9*(-;we;apAf<cQs@-s_r
zU`aRA-mvL)@|MuDJ^%mGpL^L0)tj;!mN$MBA;0XS=)_)IjEAv}&drkIVwYHpxhYy}
z$QfKIB)JuonLr><o~&C=7mH?%&PaA2mVDk;{hCG90YJFB#-|+)LJw5Um3GFQaLlA$
z*92alj~6MASABTr()tSl_-eSe9eCYq&eZy0+SmPrFaylLwlD^u+=hG6rvPeK&V;TE
zmUOjO?m2bi&PXyug^u{+goHre-uyz)z1p+s)6J2Q50a7zud}-vI{E6FVgzz%3b#IR
z&PRlVtE+!8VBH{@seJd5*e$8t@nk|ctAzepf755|Z9+VJJOUipapv`Zj0G^rV=++~
z5=#^p#r+t0DQZBu_p~}#W_~}rxr(yCo8!zq2tdzBdF(dln=V-()vEKg7W*YX77u&M
z{d+B*tea#>LkWnJuV+K*j!TtDCTh(;wyUW=POejOSySq5`H}z-XA>QdD-_Z?CNf5I
zTi2b8CeMMfNkT&65)Zw_TAbCe0&S-H3jwl&_Py3RXtIa?dO$*G`u@%JhYpuQLHC@@
z(#lnD*fOcE=k`;$qd_FjhhZ*fkNBWdbHFdY;=ghF9G9NH56&kf3e~2;d#S1Mu>9a#
zhzj__Wl0cr5$Wx5F}oGuoYj4L2XJaR{uK0D^4cWrK3>^{Drn_c#}!Wi9}JKg9V5>@
z$Qfzfz$|ZU<mc<#&&QFfnu^w!uOlp#=pJ*;{ClvPA4lOUPERxfNoc!AprS<>WzgIc
zk`@lt$iTA5k=58~L2};ZSDl^^NNb;^cVAPIn{N(U_^MYj>5e1;SmtX?bY>EP@5V;=
z)>Pke<hW?xq2|q}#|{^h`*X}26;NvpuUV0FnvM$Rvxgm9gm`u(^pN`V@f*H=?_<*B
znPU4N7Io-OXOG&&Bz9)%u>hD%?+QGVKhJ5CJ~h7oysk4VgFI7b$1SEvu^b6X-{^OH
zdo4G7Ji2D`I=Zdi2%2v?kvEci0a4!#Z+wq=_`<oa%;v2>hI*6zOL_4xUEjUI!{jWU
zNWs)0u8Y0U@Px)%tJWbVJ}1)dQbEr(r$r&`$T1*q+&lt-vx7``PR1tn$pe7c+2#L9
z0|%?!=VADpNIcxA#H9NWHaVm8_K-JpVOH9+o+80^iZ9G}_pieDxn1As4<SO(Eww8w
z^-@l>!<XH{N#lzT_+SU&?7SR|YRsVr(W7hUhc-IF!H=$5Uh}qvy?#4jQJ^XzG>OaE
z%|pZ((pyr^R+P^ylk)cQqt{>K5h2flOMFpsFqED>>%2avh&R&oGM(Ov!f6AT-RBuW
zws$KhQD1y}US)lbigsm5O|h}1oLCy!vrTMNzXJsyK4S(161q2gMNBH}$X=w3RaY+*
z_6E$ACpUvfQLVx_*S!AVAb00A7c(CUL0<N!{P!WHLy_i$(;w)g+N1kovx{?f8GI+p
zjRygq?>+BQpIc}&dsOP<GHSl6CU7&5<Y#ibjmu<Kan~_k&H~8yyVxgC8JWMtp+WeE
z?79&DO>0*$3!F1qvX}l<p=XEp@p@Akk#1b_;Y8o5ahi@Zv}fc#veg+`W1nQOpi>Hg
zq4^J;rmvPJ{SdNG2^h;YpB_>RP?rKE`Mlq@Oe#<DJ!iY)o;^dj)4z2Ns418E=?g}h
z^0T<9T55*M_bDYiCoA77zmJ<yw929Ht1sJ^T}9~l2r2pvTMog7O-OG>p-tE4eWzDw
zi3Pb9m~$HHU&=gNhXm`dttFt%P7$nJe9jrQQW!}-q9jYklM#aT7r66RL!1IIbx)af
z5S;+$gCX<)S&BJDj2yh-()Ql%;`xLmWWa(Q!pz0TXt_^H^kKV=cgcVpA|z``=6`}7
z{_$fhp`HETcs$ViW=MxJQd&;_h=1l;(&ZW&q*GoYL7P{Px^;_+ij=77ZOK%|bO%lT
z{6*LCRYW3^Pqr;cGW%+i*yM2h3k<#P?Pif*tHBSe@Gu4EQ#74C8&7ESX7cS`*ouE_
zV!WE9ppfDS?Dn>IU3cEZg{!qSlrBTb6cnMtKbb;N+t!?NCz2m`Qn&@ca^YwdT39HU
z$C;&>ZkxXMAd+$)5qw<G69@?Ki*l{F-EQN~FJiL~fMmPJ3E)#n#Qh4HId^+qA~-6X
z(8EFnVVCaypN>*3iH85ZLB91_R*j5`UU4p2FXH$qE`f(y`=+W4pqSyS4FnI-|B3cE
zPJ%aSJSa$pL2Y!kE7H?xIkmA;d=vy~sW^D9*S$Sn+a7)@1ynZsH~T2wUN;SueU0qh
z(oN@GNFbzL$Z-vYbbfM@_aJKjdMg=r{LQvZ?|7=MMKfZquCkyED$(SXQBbyDYjWEh
zt#YS9ZEiLq0_C;dnNFLha9Dw`l9H>j#3m(J0qM<Qk$bp6u@lvKZqFKyVb<;9s*A4c
zaf450<H1PZNcu$b&28A-?ZC;WdvnrSGPuZ<`7d4isSd-O#~Gay6z%qQT_vsx(JrZW
zeR){$g)lT+f#76HQyI@`NZ$ZYJWHj&79o7OgN9+z7+Va%x@ux4#e-k?M`=RqChJB8
zSDXzls6zCy?04AgAN*}$Ptg|n4V^9g#j|0u8OwUHK~xAcfg>jt2p|qfp=i06M%Z%p
z8xl`>%Ut_AX7KkYKvWekK6Obekl-iQf4+YF?*;P`qq+eu{Hs4+NLzsRZ>QIvQR^9e
zj6)`qLCZv3NAef^1GmN2-Q_|33-JOo_b+<;8|=BmVg4V#y#JpV(NpCA0;FO5pTC6r
zPcRSJm$n!M!!YS3@&ng@y|6uY3N76N!td@>=YZlG$lZq^DlC0;)9?*Y$t10RV^4i&
zh)m;@n9HS8n77!C{Q~q%Kc?<|Vn#v)X(4NJj;*Wuf$j8Zk<KI5f8j&>=L>F2OWZN>
zWfO@vt=M|ha>}ua8Ok#cSne>!&V-K5wPr%Ou#e1QVzI>ve}!=|U|UjuAY5PwkrT(f
z|DMoc=3lU3O?(UuK=nRx+tj`X#Vr2FA0XM_JnG<n38<FtDn$HqedYnEJazZ>_sUSh
z(ZV%~pZ{&31{;r{Vn!VEpPpO$wC?INIO94a{8jBP_aZs6rhE181}HYi!=T5!qwsGR
zfRkZnt6H1<H%Qtuix=4T5%J#wdI`9JvhPq%<6ID}%DwaO@A&T#B`~7lfFCx?8W8b~
z0S@bbzF7&^$b!U${)L=D5AHeK1Wrslo3;fyQv#~Sb{e>+J(h;1kMf^(%Du9EOY`@o
zePwXYZSN8Je=3WyAdKUsq32kPNT>Z}II?b%K~LA4LHn?X|L+R{k=W88aalUAH;S0J
zUj{DelfO{H)=zDLynSn$U*&z?lMz?gn9^&3yUk`^|LCs-K~v3%_zT6{2}Sizz;JO_
zW$5Xb$EjL3q=Xl85}7V}5mj`1vw)3md46C(#25og&nK$FbAGZjsN!|fK$Ux4wMYA(
z&)Q|j=Xbp(@3vFenRzP82|RqGacg<(z4YC1LLfdM65Z0)VP`QiCTnsb!t3;?C>iE1
z#E4F|a%a9rcpv`??X!X+W!-I^vz@x*bEB||{oBksn~i9ae{<V{MH&VdKGlA9r}AW^
zd#U*$C#a!(u**gRlR^?+hf`oH?-LTiLCO@HjHS$E+!eH6ca-ZtoV`)Ah$~X&l;%uo
z($G~IpPJ-nK5e`aNxR!eRO8{9xc@Co2qITz*Jzw^fhvP>X1NQrL-d2^QAvS<K=FGB
za1G;B0>jw6V(a;++_23Bh<A9Oe%(_?nvm3|lV%Xv0N+Z~zfASl!vUs&5IS0{&g$32
z!Qg~YO1thaN7q!V7Z70REE|x6!D_2g!qO+4u0<vr&dDw<=33WRX^q;-EN!8ORKI#N
z&&yn2%?34>d*NEZa@z=XHL?mBHSX_|d<V?9PTS$zv~>_DgA9S)#H*Rc-JZn=kb9h8
zN7eEp^@qx-KeQhbIP5fzl70Yrl6M2PwC#9ayntt&Qtl^n6@ZA~{Q7?mPE5k-j|A~C
zb{Vy1E&AQ^3h!*EbAeIm^8$U;(p?R<{o6F<NnnHog#@1i11ut;R(SYiIKl?!Y<H9J
z-CD+Mva6$vvH3l;H-Fa##{Ku`5<ggYIJ%BK?1e3xos-s?Ks3hgMik=+_HvqQIB9aZ
zeAa40&q_-I+smIXk?Y+T9L-)D2c%c5>rT7W)E<^3ZVNz5+_f2@3f|D#*+sgpeyzrA
zWXRrZ^)-mqQ<0{EfDI*yOZRjI9?Dm2q+%p@46G`+=1oV~ic1mn4Bh*BkRf7UOLuzW
z7WmrbvaQ{BELUZ`XOrWjjxw@H>HGR!H*H9RkUakzi}>_&iPWZ9pn3H2`Tr(34@CZL
zhK%atnSu}y|4*Th0XOKs)<tI^-U3EBp6n|(OmJMj)R%i_ujQs#S*@7!_Woc88=?2x
z?Obry`4zV&GfwdCDsXSU6pK>DtY4?l^KEzT$j=G?iEN~*0uqwMY@0nGbV-?Tcpu+{
z@-Nqq0#e|7)-U=!Pv*dx3he(O_QUZSb#UJsGs?1THb@0Z%9v>i%AX#;j<5mYW?Ngt
z_kCJvn3%L*9W0EgfPj{GRi>#@=Mvjjb*)a9`lrjh;|$OG`@1A>10&}5ZEF}+*d_b9
zmCJxN1>$;=R8X*&QupTTzoa(rInv=7>q%JyOTo_o7XoOWoX?bY+ebq($!z~~&wCsd
zFCIH7G<>qqsa{Dbg8-2gzww(^1v$A=oM>oa&+({dEE9~EbEHZ@bno270$aBoj?snG
z;b5wSnc6-C0+zKv+DjVCVB{C!;hKii4>;q0-YW#rkqpEQkb$|;tYLHV7TK1wm7jQI
zA(SkPwRJY8Mq(w^?(d`l*KwJN4~C?C(4k|tZ*WAg<^C2@)0gK*y@l#pk1>sBDxl}N
zAD5o9_tHfvA^#j;t1vrF<(%U`Y93Pwl-C)`R_T87Wa+Kg-u<oZc>I9AU(&DvXVH7r
zwucY9?PX%<69#qo`gQ9a+4&i$=;*MnF#dUOz%?$b`va30pM#5!<XTn85gvjl-kzG;
zVmxwtqp9k(p4C76_!OOV{@E-EF7^Y6?!}1+H+~mH2$@Tpk&FzXe(mX!g$6k@W*g>%
z5=D+WP+|sKn9>uTqJ?{y4Tq3;?s*9s=CK5@p#2p<=qpO#1}TxYdIAN1$*bNYfB$b`
zAQlwZtR3Qk-peQvgpL||F#un1-WNOtCteULS)i#?2wW${<W)gSrK8K(N$I&?SJJ->
z`Fh{1Gi7E{B6-{E50#$Ib>IgS);lV1hoQ>{E)dgDGXNtwO;Mrg^VZa5!89qZ&WlHp
zF_9IPld0Y}?J=X~quNdljh6~A8xN2AtzRWMf@_Yo35+p=-*G9OBq9<o&xdt2Y7G|&
zi*6ru@cq%WaN+o`G-BNV0tAk=)v-a(1jdF1XJ&cJ-Fj2;*@1Wt56(u}<Rm06#l&S1
zwY{9T@@$ANPa>yLd3L7(2Ufo2`Cyd*DCc01+5)#Q@hy+);v1MsDH?s<(hpwXCwW@!
zgDG7%yMtoW7=uCh?aN~n2pH7Ho7>=Y|BWx#q0wh^E)8v3p@`ag)>HBOB&aV4TVw-f
zuM{wa)491`vt7+CIxy_=gD_GlsgGeH;gUh8H>J5s&&G@B=Nn*Og@5F0Duz?w)MUiA
z_9VMqQV?|{^LXyfx<Hc!UEKP4i++kC1yIO|x4tHI7cEfkrLD!RUq1h7Xg9f)C2%$Y
zZG!fGOEUMeKAUoSUZ6UCwNH9E?7-yW=m^_H7wmYB*AoF-kLeeH{fascBqwi$`(9pc
zdo||HVWSbq|2qT-+4rrFf$@qlC1-_mlf%NuGSrHhp!_K;t<b6e{qVP(L%47B!+OJU
zZKcz&#bsXD`LCpX*b-Iraw<h@<8=;_lLkBFXNRb@dd))fVF-X{E?Z$9{K{qT64$nq
zy-z09&b-!X`Uf8;CVoEoM&rT^BENwwN~VawnfH2C8wtepQ1Fg50_>tiN7vPSy{u^O
zW^#Z2?Hfiij-$L}FD?!q51!saEv;*S9-NWz#3v?A%#9X}<~AMW1pc&)0rti<82t}a
z+|)MhsK65f3G6yqW%5FVG@eEE-&}cLpSQ*62)Z53z(Z|NZdY7j^G!W_7(>K?f#SxV
zxfvNB<}YKI;G3b1$6+6hG|x!6SOr+jIPee25t+Gm#=9^-FZN%r(M&M>ql`QG0^%C$
z)@4h06N;{HzQ-GlGd}O{e)zR+oUM|S*FhyineVWfe=5F!*`+Lhc8?X`gcP@UlK4?;
z5Q6^8FDtA()(<!deM6>7>DO&*L7K`*yr(C0F*<zC=5{&qF#>(}&BizrO`C-G5sQM;
z1VB)l+|8f>n~6MRiGATM@jEG&_fSNDw*T0=sxHL<83Je)7uuDSd-U{Z!grqB9`DXx
zHJ*&xcyE$|c(5Ya@|k<GdX0Wp0IG%8L0U2{&MIs{u<3LIJ9*5MjY$AzvDkVwCwOx7
z+`CT0t)TcR^aoO<;AJt5h2=+L*mX-@f77{!g@uHxsJe%24?i@2ve;|1s`2J#wHw!a
zeIE8^;$~>|mkn$hox@t|>a@rc?)tSdiTBAZ?BdWHSyKRp4y%VY`0ej`Wu((4V;pVI
z3)I1y2hYO$s6u`T9&cvRJ#kN0SjLWoU4_h(@OriH>Q`CoKsP9$CMG7xHeq23*DEGX
z+|Ji*9i`9J=r6L0Jjob25Ft8VyEaS>=j|@AWnHfu*ks-I25lh+TJwI-W&7+0TFU$S
zT=!jE#+P2vzWP2;B!tp7CH#zGPu|wWMd1_1lK6~~cB3GNCA|M*+E*)3A~X}1wZ24N
z7h?|IeVsRzdwa9YG!lWNCUWfT>=$NdMd&2ruI}!#No<v>z0I7`QljW2Vuk7zi&LZ1
zW2#TW2*#67dL>CBBt+-sk|PtoTsCcD8~0!A{%A!eCEbU43U>8Zl{Rvy7EZaIwiDC1
zPqP>V^u;%c&Wnkq4bp3tc)@<8ndRWC<hr7ga(ovn6Q_&H)edazdZrNaQKr6Omiv)O
z>tzOOj^)ZmS8p8qweyncti<FI&UQo+SA4=zxpP=^itcG1Ceiojiz{6(I>HEVHxyUi
z`*oCSSk+ZBG{&>aLxW>JeL89ShSEaHXYXupI>)xM%_720geCy8Ng)s+COWdjp!x&`
zH$IZ?(i8li)Km(rhnLP~YipL?TT2Dnf&IEQ7tB1jn~~Kk&#OoRNO-*0hKT#6(L8xM
zaT@|}kNFs(^P-$VlJr=OM6&~^O#0U5KfiLOJ&5Vf;i^5fujFIQD$Y(X&h`&7wErMm
z$jrhzP{i+cSgE@z9c0}cn68u~pCF(hDj+Z?da_|R@_E?=35~>^Y3IF026bv@c5G}c
zm-Z4xhkOLVi;LS<i3;=k?LU8d^BRps7t|#oQ0UZ<>C!S|1P2B6uj1nqe)MnI8ubW~
zp(NxCG&VBY=9n+%W+P|K^=i<-dCcDQ{a`C>+C!j!dN?u2__q8YX8v~R*j0{TtjYd#
zt@($+zF^Q(@*L%}(c;5x&K+iU7CUEW^)j#Ng_LDOR&Gow%Ap^+Vbk?gBSS4SU0r$-
z8@G+{;;XA`*oyMb)}n?ZK0gdr?7zjkXLKl}28P9rG(ZP@Q^~<xh_Bj1C1xSx<y{X`
zYHz1LA>`Ux%Gj187+*iA?v5^s=c-{-iv0T3{-%BRrAXr%itCwk<#^#d$<b&vR<M6i
zYU&aqkjnK6H#(=<`&Z|u=VqJu-Vu6y-ao#4Xu5rdfjnJhg^wG<raw}}X+1|pPGKMt
z-AzRfU-JHQ30Ze3YYjO$D;+z#cGaSSgI6M~d&t+f<-3nLE~7Rfm#d}gxd{0e>2%D`
ziVj}4R<QSJjRJFTCb_%Stkvth;;r+%;3ej3u*V7<Gzl%b#hQwcXFV~h9^K8Kfpvbl
z{G?aSHiOL7A|dYr^c6*ATMivK<&&Cl@FNWkpKgtmdJSK`ya%^0Q+U&UdaqaZ5l#P_
z!(D}Lnw#>TmY#H#<sq8d>h$vJpCf9gKjB=fN=r)v9uW%Kc24-j^`emq;1jLPSL-#H
z^v`wqA)bD8wKck(fi)D5&bWo3qW%m#v(hOuKRl%1wahQ@N`lsD6coC)3h>wUBpwTr
zo6pq`77|-@gp#zB?li;kM@g@qC0+&53N|ftmb?~-YB)h9{Z$LbzH@N?jF_3HTD9!D
z-j_5};W6@guv8Zz$DZkIY1dw&g|{x7Nk`=<6;{_T_V}QUgTY8nn^{7x@8gZLgq2o0
zEZc!LDs-oF@Df2A;K43?0o$s(z}Iq=&N4V?H!T9)gpSgt?}4tM@6QjFOZoX;-?LGu
z61n2opQ)^M>F+~8_yBDoZB+b~;a$+x-8*06v|5B>Ld;!UVHSx97DPyx+`#I0WjZ9Z
zoeI6(A?yxeLiYTa&)-hZ?H*$?Xjf)_FE-ulpWmNu(3{^wEi;i*q5XP!V{E)yZZ+*O
zUx<3VeseI*R5oIMx;eaFqjlF4_*^xrRQBh%yHh1+9~PCryjB7eZf$+t;qrXXDKExS
z1EyvdyfWVQ{8yy}uf6T`uhk~-N^wDbNp-TKHQa7eT?%>1hnHSc{uOy%Fry#zGBOS`
zyuX!7@(mu*$@R~|T08z@ln{J<*-+G1`^r2j1&dz?8&E<hYY;w+J;_{Rh3Dj%dc%;!
zzD64F52?qN&Y*k7{Xs8wiv8ZbdwJ0PY3*xEVNz`D<!6!YjWg!YC|*40rmC<@dslm*
zO3%PRz@A^{F#cX5A}v>?K<P)o>egVxa%x+5mE|n|yOo88tMFf|AK~ELl`gDgN3e2s
zhE^>^PnJWU!6TiJrxq6niaK7e)I5mv8lb{PK6kMW#2!rKg$8H4$2ixng5L~TrRt7?
zDL*^Sm^giVG_6~;?+=Et+)QLPWU9hEf!jStDiTBcd7TEkU*-M`E_VFD^&8)DDL1BT
zILrc_hBq;+yfhI(*0T>BTwF#O%%*E|_QY=9RrKjrV`0Z*5UqGK?WDX{pQ)2Dna$PV
z=j~6blhkbyYr1vZ`8g?gtCg4-sivhQD_U|G3{#(W*$=>01UlUjdtf9Vb75!2bzi4i
zJZ+FFTQe&lC+7j?g<6rhr6C?}jF9Ns6XVnEv09H)@mWMGFi)nd?fi`8gl)m02m)!2
z!C4r1!OkHX_L>`8Hb{5xRqMJP3p>3B^VykmR>b}@@2CQ~nwK9_TlC4XLST)KV)~ev
zIJh`!^<+_kzj73-tcf|Sr|f{}c2nGCW#xEWOkZ373LtZO(wFRZzL7I%kTp~9U~}+&
zPE`5TD@jp~G1YeJjI^+`y-_hvF~^sRWSIE)Q7;~v>Dggo28(6{zI}>?t!QW0HJ`!C
zGS<M%hK2pPtE>k#>`{<pfl`B_^sH9>B^Khj8tOsO)`qDXH8%Dv3I&D8jVjd_toM@N
z_ZvGGZSMo}Bb6yx<B6c)tUj%5?dP3slZuQ{gU6A2P11^rESUITgR?)jwVXVvQF`-E
zG}E~KQr-;_5%F@BaGZ(XV`XI10aqcZrkKLfyUv**`lbX@g?=ZjftUd?1c-oB(L<%`
zy1Ka7xS0lbT~1|xrJQ=_n<p{dr$ssyOQ^w;Pak7^P8U^jUR;1{2r}*K4@u$+-W@Fv
zX?rnPX*N32*0#AZI9$s}atk*alx-DnEZCcHIoy+j-Gr}_<s9a0rGcSn`&|%IyXKu=
z66yrE*Ai4BJdrwe0pd+w>$qBLJ=!KS9z;u<ed(UtCFCv07<1J-u~;kYY&oARze_Nh
zr&8eh9A@4KRwYnN!wn5~$A#8kG03ImrTCrJgbU){r%aDum%de9rbgYkQ2Z1m>Ef(I
zFZI@myw)S5Ts|o?Q>^3XmC7lmG8eg$zWuN8#H*QEty>LNSo`Yo+}xf-L=q#X_nkl>
zmphuakmmKr=XeuE9i-lcdxEyI+p2Q?iA~olQkL@qvnQUKbPIcHzm^Z>lX#%BC)}un
zV^*`J4=`(LYS_%x_pd)Zf7E)iJ)gEjq#jMoZP{E7ySZL3tqAds-_>k;&is9<7Ipf9
zF9~d-R@2ZK6!&8N$)a233a32k=c?AR{4R>ds^P)Ghq<HilvrJ%n~_1;DtYbQYK6&7
zwo=Bb9LXJ;RbF|)!FDm>R`ajJPWMJvcWSzC5W~0To7RW3%)A+N*LOGPa>bTER&7n!
zO;0++fSr0GPr`(Js?njyE9&!mI7~6|HWD7kRCV%;({Ups&U~%O?TO&BdD&|+uHvcl
zLyBb0)m_Cp)q%sv^>(@QxvY=S@PP*NigyD(NjNb-B`ukcvvl+68E!eP?zNU~;!lD_
zfT%C4k9sFT|0hI{1G6jVrHzubrjH7;aW}^{=oI8g=v$}93d1@kA_B?KtD-UndWOo~
zi8Kq&loxi_lH}%7>F+}#mj#W7DrDSIWR7o;BB-ddY`GG`wqcfIl!mQqiIG`-A7v!t
zpvO=v4R$JWciw4YO|=W<L!Ha<IBo~rn!38%!z(Qm8Hd?it9Z3@@I{UJG8jT<C%dWA
zMW&larTbdPnW(rhp1N#NR;MWi8JNcFEa!tuC+}+mrX*uIktaRzdQY(!bW6NOx8ywC
zT}C4s%*~CDhI^hptnuhM-#5M~w;f7XjD7-&7qA)HCP()Yiix%5Yn8pZ^x#E_HX1Lu
zNR!LUq)|wW=k+d;&e7rWHts+xc+MDH^I@|6)ceSFhGn^l@aFU}Hbq)fbYF+|oxmWZ
z=xa_qmheId))JH#Zaf|fiRNqs8A|w3U*$w~3M*k&sC;sAWmRRKH<+9{tATG&fPyM<
zS}sLI-5SsgkIwDs>~VH1c6U>;1Nuhkn*bqwT7FBaewao9q3SVwXJ-#98=LEJCAz}v
zVOcpjojK_O)vR>Bit<vAkoL#Y8LTv%{bTKyVU@pnyIxz2sP^~w+`H?Rkf`E=P0^KA
z%dX|a6ZkI7dqfa_2$ClOT(}E))AwTM2Gz>Sv32>~D`*MU-R~jandqC}Gtxm06elVT
zibTnYN1A9-34ebjglG5|BA^JY+kDN2bos=$$_T%&V}OSq1V4P3A1?j-Z-_81&OaX@
zPw#X6`2<0RL;L$t*a!a4M<0xZ|Kr8~_Wu9&BIN(yLj~-$l;N7Q80pA}qyFjL-E#Qz
z@At|eeRyUkPWAgrv-h5}C{_vr(%&DDHUB=efIoqt|JRE`$hLnk-pTEsfB)^p|GeMR
z9uDn;QpTwH{5E5`hEmQb*ZiMbld1OVe$n#t0xDI)+HrBjRP(6Bo4jhB`cp0e?lSKz
zjA)~eRHeOFj2wl#nv=6Hn^e5?x=K*=Y7pAA(6;xNHS%g{FlXH!yWHrM3&^1gLgPmH
z(UNKs6QV^#^~vTZ=SuY$lCgq4y5GwX$071gzS&SpYB*yq`kro)r{O}<Cf3fkJ6!^Y
z*@ctqFiuLHwVJJL?oL>?rJ|)xoF62aoFbpK#!h6}WB2k;hX-Pa76vwlQyM?@yW=H#
ztoC8Mn8ZKTt&$k*QhZ<*HM`SFN<)DEv3_Q!JF^LsgaYFr0BZguIl*n~mnXW3Cdvy6
za#j{B7aQ%m@*tw{y$@<sb+zy3YA)Jnm;woBBJzkA%nbCfB4Z0tY)#pws#hLq2Z<`A
zjgknsNMtBgSrE};J!~QANNzm(uA7A@ED#YyS2sD1UYIY_wQOg{{-={*XhbO&?8Jl{
z)50#~$jRG<=nqZ-2Ox9b=#MQ$M|(**(rCS3nI?GR8A=uv8b#91QA7pYGee9o9)0%d
zcPDcoi7|MJg%@<6;|cYJ7!_E6#@^5QGW8h1ZC{2<ail8(^Q<Q2?2ki+%Z{!bvu%tm
zg+x)!m08$1Xc<3m-XkJHyE@YO(;1(}14zd=3v~Pdss3Migd0YNPbpIua;-53pCR?n
zJPEl!7qz1!NxHE7Zbx_`pkcj1YxkZ9-8Z~or*4__BkY(Kr=o2HH^Pq}M3u=uXBn>;
ztv<;#TnQM-78Xrntc<Y{^omQ`HZ)1G_(g_w(7l%Y?RE3Iof9ZrwN#w%jiYumwNg$r
ztK+IAAIYQgUnI0*Xz^p&PBJenRPOZDap|~P|8w(r_okPjep#(o&v7qjQ0K3iYK6c{
zg{7nb32JewbSE2?j-H=BL0m**Q!OhW80j`AFFKe$NEv;EBufjBgo{#Q9T8hGq+$<&
zDYN|Lg^0PT8<}^s9vxnzGUdwlS<C8M4*Wl2X`!b}C#7y3AI?z`fz`Ks`I+^m_5&D(
z;Lg#(%heN1mS+ebs2Y>x`KLzof`VoG1{iRU+~5QXYrTbEnlWL4Sw}WY5dRHN(&!_r
zdwGORU#LRYh$)-3JO|T?jgelea!%RtM@O4cg5HLp^ZXg%SxuQ26tj%i^@(=R{yj~2
zSZkEXqXfg<a!1X@gyHx(XT-TTDGZXq0#wg@_2h}nsCgK$07;3IGhc1p=8O=$D^!!o
z$UYxQ#rn2aP!|c(t{d&wrKlt<NMeqKZ`Y^;&^Xqz80Wp?KF8~-+aIni^P(?@Jrb*}
zFs~4A!tHfW%6jsr^^Mn?siijuIOMF4QT%RZh^=65W25aAc}dkojT|TR-K<HB&N@-j
z>*~+wqYF{_WsEX|Gg!k!3+F>>aWRVs1N=IcmF>&JrDVNpydPq+JgP8zY`eDAnzp|G
zOvT*YqRiOo#=jr&Nm!^1_)jH^jq*>s2f=x!K_Ah@Q<UwviK30>=7B~kkj_{<<l<UA
z=$j3fJUVtfZ{{5}Wdqw1-Lv>0U(bP#hrjO?_!vk*eq>*{a_CCm?KQ=~HHVfAoeKfk
zm|%;+c`fLb&*dJyyx!qtuTRgQNCrt}4j_xBiZ*iPTdKcF7L*&4Q_-UBsARO*>cX2y
z(SZ{<jX>0|{%IS8iPb9R1c9W4JcM`zJbt*@9`=z!;*oLBg6q3f0f>N`21CwhI;bKl
zy>yKKej&`^Rrgou8f|huF30pw4P}Y2dmbdDsOc(SRHY~>R7LaQ%<uo+ug(*)4Gd(~
zdIk**@vaZxK_^eR#hEMUa44__EjY19R|GyK6Mkoq!s3|q*+6Vwm!hBw^Q~?dHC=uL
z@qeQXS#WSW<93mc{L+F)=#Z!U(hA~{slZB5pmcHBHENeK)nY3Cwq0XfXcf+*aU}h7
z$`i=lhUnA3lGmFiaWwFX9IM>=#)fAL9^!ej%O#oSmgpbXv;7OH2^+KONa$n;>3e@8
zF;b2qDsZm=i`PWRYwNLDh3L=2GjY(=T=~PcZOYeemJ~x+m>sN;C`2J$(NOr`Z9py`
zAuiC~&@;1(fnS~xtLWH3!mny^LkAu@As$=|r-BXb_rA{kiiRdepzCQf9B2Xq)9ffs
zTJVV|Xw3tzoNff}&yQ%IJ@fp+(yV0%(QTe7DH3_3e(7ry$^(B+z7~$~f3*T2|1u5!
zZ(IBSWJD~y&U!`bV1K-7-^SbjCU10YWeqn*QXt8X;j^T@{V_X1?^S30_u>tPN~IiS
zfQ!U<Ab9zYcj4xVl6Q5v>2h`=O&EB+RP^#%Tz}_0w>aoIhlB82ln@UMbpJ43bn_Xv
zSF#>h{G_=X1KzUBeSUiqq77cwCXBk!>``;*V&r~(LK_uUghoN;_4)Qy-berRueWJg
zmmC|f%8dG@Uf|vuq`#fp&*L|*koJnZ?US*;-Z2{gzJ?NA=r)WR55-%1-6W!D*TwrR
zKsv*G+QbkvL7uiOSh>xyqqhPTgw1{T^zNT3m_8vXfga?bJ12T@-)ay~RqrB0w}^R9
z5^T42PB~{i_L#P3^IT-*yId20LR%;ZD@Zc0#>;OyKhO8@yRC&mxh(d~!3{519p<|h
zU3S=0Ugo6~McV&Dmm#PisWgBFN9;bzG+CinuTQb6vWvQ&;xxS&-S@VNk~Xq==eS>-
z3YISzBp)cr0<t?E{u#6V;m0te7@KLAm7!B!J#-2g$|0zRk5A^TaSv=+un6g!>|FV@
z+Ir#4)?kSWjzX2w^w}99`)LzhXncr4L9;oWmw=6id)W4<<*VldLiF!w+PEAx+ebC^
zz_VO-c#jmd%Lna(iIGCJYusXLzDe0S%}+04>dKujMzCwz@ivLbsO??fb~J@PYJ<Nj
z4-1#u;x?U%+Fq<xA*>{F%o_tJ=05RWVR1F(&daaw-)F0a<wj`{p^?^27%Yq!WEFZ`
z<3z=%ReN=(6eB6-aqL`WKcxOF>5dl1vtM<3fzT#LI0mE{%WgBeFevEN$pH+5gW#pq
zhmeKWRmaVTT?T>GJlq(cr86{2?O%9)Vq|zA^{j25JK%_CZziI%_jxRb*TmNnT};Jo
z9STOBrq{330SD^IBFggW-aC)=+^Xyb{7CVJVVNbo<bDUca&&%I{r0M~H_<newJ%Qz
z1f-~AlII%6n#_&JrDf#{W;3DvA!?8IMjvn<)!85Qu)p_daz7RpNXAuS%6?rG+##=%
zqgKa*NyRVM-^(yyI)CF}-%*Jgh`uK+s#X|Swac+Lk@LJDe*CKQx%vE}gLKAF|M;@?
z#PUWgr2_hTMEYCoEG9H>jGOKL`A5VPZ(Nqy%s7wEbMn@iX03;csSAP4`n3E`Get%E
z6=)QUA+b9X^L+bsJ<`^d^y@@57S<8Bur`|rA6L1>eZ5pM4Zx`mdBPV?XC-AZTNS%?
zrWX!YLX|rLT6ro(85UKTpT*NI+zx*s?q1c6nhu)$G}Nw&2^qH@x0((NIwRrM20t5(
zcZrgutk5{U^c-D#0E^dsRxS2+*m`)KUX}JM6Yja5q2u~{-8w{ebkiZHp`H({-x8$V
z{cyu!Ue-d9g>Z6pa`9!fWY5H^>SykKH8On)fcjY1+5UL<ai-upr<TqEpP;Ez;?q%o
z(vxSJPy!aqCE1(lX+3mJN75~Vk^1h1!%OpLjGsf}ZyloE?dGy?o%BMF?T;UBym9~b
z!Mo6E!p_HJcZ`C%x87sfx@OdM-%GSWwZVBuP+YXBXhu0pZhsiJki&F-p8LC5%#URz
ztvVI!UChDQoU(W)!c@VP3-A1#`NCxP-e^w=`9ad7{pXzQrt`4&*{j|<&sD66{Nv`L
z?p-4=a~w}j+El}~q5Fd@3=}fnrZ~z+dEwzfd$SQ6FZ4?_!=9W@pT@&F2ntm5WSR_5
zqrpf#N2tQ%a@Lse>!|&i#iV65V)orZXgD0ced{V|W7eApCnol&_W-VT0}-=^Ym!Nq
zd3n3&(%5KyE5dWlH$&ib`igV&X!;1X`p3L4!2eQSiFZ(ADz?6RAB-uH>CGD(g!m}A
z#CrH8x%ueoc3c?J2G+iyN1@(!3Yt#A7CULF{%(@}i$}BWxpL!0iFxH_!>8K~NPVjH
zF3(Y319K(B$;QF{NJ1fDU#%`scbCL~x_3O{{JT<)@ojyoc-rmWC~r6jcA<;hLR!wA
zbZwrJyTWCdUD7POs)&aM(_X)H-2XBB{Gy_0ekl(jgmZ(jWoY{h8b(&ocyzGO<}s7d
zJ>IgB!9vY*k}#0E9D5R)5ED}CIsV|e%yHW>4d!4tKg};|cI#ilu-b;3?b8eEHPQ#c
z3a5Ezq&(w|9h`-YyS1murB3UEr8ka_RQcl`o%Qo$Fwc1Ud6LIN;}zytaIGf(9|Q-f
z!WASpXVx`wlPgg*yx4*2VEPIU=A?Y@N~{aa@1%QpQJ>Kyn{?tN7@&93<-8-HnAar)
zG;v@=d>ZUALlqvZ@vm-0r~Gan^(1V|de)tiid`Ex-!vM3^tI=DL(wkpH!)5Zzuk-r
zaI)z6#?e?@T|KRa?WoWe{47U8UiW${o>W#YREuc$WHTb6k?Z!VMqqBw01--_`arNp
zw_M+#EWjx<oR}avVaTp|0(j_o3G={=!v35W=@}Ru*1)I5PGF^M*|IYqJ?~9)daCB>
zSw9nPGsEpMB>T>cFMO;)oH8^0hS|;#{Cdo4ns;}7K3J0cvopcD)5Z_%#A%N0vBHbW
z28lqqgd7z0ubMukZmQ5z>&fc5Mv5%>c&GRVQ@3}<(ZMC33wwnvh3%E>a|MiKg_Vwm
z*>0xoVDY%>1;2{DW=SO4&Ik^76N@E8%UxI7d+X3V`Sa&jSaf#<Jj~}v^PGZddbPN0
zy39$Lpe%mw^X_<)E+bz<^Alq76v-nc+Nf7>9%Csw%j+0AUi%bfjpuC&>I+45D3&xx
z$Tni1ZLCgFq^^vd#GVf=$FUhK`es<<s-EHTS3~_ev%%sJZ=>E|^}xgDUz&bn70<ad
zQrp$G?Gh0EVE+2%k@I!FR^i52icytwFMhye4GfRp0(zS(?KL_mCfepq!Y9D++#Tp}
z3j`I-V#nT-WL)gQi|3ps4A*5ky*^@s^1;Ch1iZT@6&l)F<eR+jawTc64fY&g8>F!e
zuhnCC*WjFe3fdYuV5%#A9iIt{=NjrAm4Z6=e;!t}3#LFi#d?6?@T7ptZtvmVAt$@J
zDW?d$qGX<)XMjf&Y{0EV^68V1plrPxAvIiga`VY_`M@zUQO667iSM7wdSpY_VO)J}
zU3+!kymuzO*FMaEnaJWXLu6rbJSiCZBv@28>}Iq1^D)!@$;m}Liue5aO@#L;5nn-R
z)plo5?Pe+tvAY6~-P%-k%Iwvdsl&-ilzanCjxrtj<+~#$nP?jq2PeE2<?fbRzoLmd
zlEkWM>3Hn+Y_?(QC9T7~T_Y2;M^eHaI@ly)?Oy!#COG@j$6lI(W|#WfOToiWdT*Q(
z6^x)It+n%Yu=M^<oA}?jjd+VrN%(fp8af2~iL5LP4u#(@FTJ*&^&H6%Nm~GLn@iS!
zXO`n4Bv^E+WZZwCA&b|=bf&-{(ki7RFg!7>P7cHb@w=Wx&_$UKRo~KOnD?Y3)E<Jf
z{4&pJ(%0zE{Ks{R6~1|l>h*e4`5B^)w?n(%1dFoO>MoaRunm^Jba>PW6{unl1|1%g
zi2uCha1qWkcEY8fD~27^lp=%#g+@xIJ6WiB?>RKSTP4jzvmjCufpV}j0N$;X8~2Js
z=rP)?`_{VdnCh!g?>CA7irYv{jUjtp^Cj^e83nieQNN#ZU2quT6xV23c@-wX!cU<$
zbQR(SgSqS)72?M`&{#Enyrp9LKqD^t*43x}P_c8bmd?oaqT3Q<i``~(mP4r!uQ<BT
zT_+Y6NNV%-mM^!dPk~F`m2Yq3nV@!~Tb0W?2XJqwJCZv(^+E*6d7RI%FtzJ&DxLZl
zjmex;Z+JqCCR3Nb$fY3hR+#bFzf~Z&cXHlf_ZWJ=yxxe<vJj66f2+~N-`u}`^?)Ks
zl9MMh(r<T>p<9%k3=<Xac=r9W$uMiFBLls3a!JMzl|!aVk;dfMlyHtRv7pQ9OcbH0
z<LOw#frP@^jm=W$d;XwouifT&7t-`}<JfNmO}UVMe!qgt-HAz=JdRzBQuFR5ocMOs
zU0#Qy*wQBFXp26VWkl#+zI%J&JaGDHBl%r>9;18=lFU#F96|e7|4tn$q@+bY`S@M2
z_HjVB_ctj~Vomlr&vRv2k1t_SZ78Fzt7{FoXGh27hfF)G(B!O!SME$deK__7MjFM^
zaGLtaQ-K@^oCvCqn@dQkqtEm%?0!vz7sO#G%6bfi)u9`**1V#njThOtH2@`Z83;$0
zkKItsk%)QR7RO1c5cLo9=q6`+R#YUa9OegoTT+|WVErvU<xY`^z;@MiCQZ7T<<e$&
z7DdOYmi4-B4Di_o=t)y5eGtxhMb|4E2Gcn3lg@b@(q@E`X_2XCq^J5r%Fe}Us@4N|
z!`b0;EBDx!E)x%;!?qVmyeY^|@9k^PRT^HLfyh@9ez(cCNk+$34;!ZOB1FfJL80h%
zu$6cgPs@CUpw6BV(^=gY@f?LxqNrP{g71!wCS|H>oy|2ks-m``Q<EBf$?V~JKwC6_
ziWcFt5}YcrO2b`7c%ZP#YE&ZnCHCuBt($g<q!2J3XT9+-kEdrI>}s$-CI6sQV!Am7
zEas%WK3?Z!)2ZySKGfr2)19CsR1H*5tf&KM%nLO4t83#IFAT`z*j<dgUJibqmGQ`{
z2JW*G!{IZEGH<+`(V@&;3E-YAUV?7c3a|ol#;{<SLE<=#f=%9&KnqUNo%vhMFroPv
z3$u=-NYRlp85HuZ!J3O1-Er+25}l@S*eK!RB6=!NYSt@i+QHc`8+_ucNHh3)9i2<H
z8=b4dDlQtWnjU=cUG(FDRnW1~R0-k2)6vrFRBrI1I7E*1ZUcM9YSPZJ4?XSp7=)bW
zDA%dj^Lg5S6HXcNq+P{*VpdKNttWxLD`2edLXv!SZS_S$R5coBmKr!v`lCN^j6G>Z
za<VI!x}EAp!g(x0t#%y`s!>4ha|H#lY3xS-4ASlzENYTUNM~le9lSi3m`&unsyQ!)
zos1GS-X~y?T9vL4m$6|!pah6eR9sL{D=Rr%L|ev5P2Sq_XpY=4Sd@KQ^=n%@6GfVJ
zDw@u(znyIf-X4vAI)n|IvehQj9w+x2nCn^Ry3>zOH}2D7h7kc{Zy9s2wG)qg%KM~e
z6J`9Qrj44iA(!&Ut;!vmXa0(JW1#C8N|Cx1ebF{IGI1_{p0>Y6-`Cf>Y|BL#CC#ZM
zK9NQvs+{(2b9_6%$($|!wO>%-ESh)ky>jcJ?_gRh46`CeTzPeEF)+llWn*jItm?h#
zZnS#ED+z5GpKhJ$q2yb7fO)eYkExWiGu|}Tt5pn62)EwY;*J*cM|y?;C_+0b%9YXW
zYBM{ECA;*{DQx$ikwI|0dU%kRDp<ou!nCtEuc-n(94e}P_ne-FY5qr_coPQ;_vuyv
zGkIK@DL3XUKx{utq9xZ(lo{lysT`g1E*A0B9!MyPj+Ay3mr}_}OKnfocDdMzaDE_}
zY244w2|iqyOKgG}R|BPRNhJuY^bpB{(?z*|Jtjv;pTN@ft3|6RW$!zQc>DP~_xi1a
zyerpDjrntxL(0@1dbU_^!suvYFl}#^p%hggNJy`CeV++l+r3>+jfs2{8y~Qz`vO>!
z!ODesXV=&3)Z8F+4V^+CoSbbXbuZnAQnQ#$*gamE%;FI}kjnW%cGGmRSH)nl<}VmZ
zo+>qr+kfrWR(7R!LP_^BN7<}m>arqlu#6F}!q@YE5cU;7adh3bNl3^SAh<&y48h$U
z5*XZq+W^6RaJM9Qupk4$gUjGHI0^0qcXxNU*Gaxx_ui`iz1P)6QC-tLr_c21v-jF-
zt<#IlyFFT%0~qfsP2SNwd8|(`_d4VINBT|$-H_lg4fvR46+dsO)7u4^;)s~ehgTPJ
z^1U+hy`T(aXQZB2>Fz^mIw9r<KOF(JTd1NORYr=Z;%LbV`T6U_U`xT?YJ<k_foGqc
z)a)M&<XW#k)wyN7{gHO*+&nz9`i>K;YLoZ6cIFLVqfvd}h~abFSr@mP;+3474!@hK
zhlSOWVDtWAa?{%e!!{mA;9h~zs=w~FqTj!BFq5Ti0`j=z&G~#{Wowp=s(5%M$bzxa
zw>yjSB`P81W*op+9{DrV^D`J7G%Gn}76L<s!Kl?9`Zj+UR~F9}ch2pTb|zCCeJp)g
z{ry#vuuqM0{uf!fE9mTdU29R>$+m>4+A9OI3u8&W1cAGxa(LU|XDkm?Gr8jnIJ?tw
zU#F5i0JyJ<f)~OFzmmFe^X*#qg|8qK0tX%pKv?#galxtu8xm7)m%Q2&tDl1RB?T!!
zwyyEzFV0^HR9Lr0DEWDq3f6r)Uu;;bAU|moqQ_EF^~%_{0jur;A+GWW2LtWL`SO<n
zUL;PxUXm<*FdHfHd=B~|FGUUFP+6(T!qq)Fo^AM?JbPPC5-1Wj+9(A8>`5Andq6g>
zRqMVGL6&T{F<RTW6aMmLbE>cgD9WS07F$UUVsQk3R){^J405;SHOt%1##kNCY_+9z
z8L*<EOs;FVyp%dUOgI&K>dL@Wy}TqI65P20tXSoaNwl)QECm)ge^vB7nt_*}1w#Wp
z=;X4;K=&>vZN_!ulo^<SMo;@(n23dHN+0H@gqVoOwHgdpU`ZFp$0&kxx)D%)EYFiR
zj2MYM5f9V;xQz~{JiN`$^4%{l1x`;c3&ysA6o6OVHY05yu5~GvjGBT|)|MyQ>g}Cy
z<8wtCP@KulnWd4f8D7%Y<3bND-4T+xnKWNr$J@~{-6VqbH>r(wg~>ndwc^g~T+z@E
zrQIDM7YFC<MP}&CCEp)KoR6=Yc3_ZqVnxLVabWFDmA^;qtq6G9>d#JBSfR4Gnt@P!
zaf>i`W_>SbPa5+2gw&>H)R;9kpSQS?;tiG;#s`HWf*7#20*QxSo|iG5e)CC2rIAcJ
z>ovt1%CZR6XI`yJ!f+BYArp@9#>CQrfT%KT(rL1k6A-zmSmNz(wgtkhQHA0X<Jx~;
z%hB5Fiw}Ja5K<~6H%Wl?QkhB7X^!{x<_zYWt55dVil8u3m638_0y{jEFrOUTV@e#=
zzTFsSm}tdAp$cj(hOi6KEgu%kqmqe)B;BtJmz!{Ka1`(Ec^r1N=WT-TT8JFu1l+2$
zo7X-}om}oBrJpLetFhh7ivyKIppuA{EfX4<(;i=65D}mo2O(BT*0)EO9Kq)2cbg1F
zvkz>VWyz-xmrM7c(UQiaXR^P7IB8rBnhy^L8))jxTp&;tdE&KH076Tai|xX4fEpDQ
zc9q1dS7~k+KUc&D6=`qS)8CgmPkpA=MRq0UUozgb^winOp>U3~oiwmA+1lPMH6F`J
zx**dNsOul;Z}01C>uI@Ny|N0`u(pPj<akn<%^A5j52*lAqszg4CR07e1WF+=Rpsq8
zX0V`P0T`4QCRUZf#{F)xpe|~}*Xef(=+ztqxB03C{!i|c+ZozGN*Cu$Zi4f0l<$KT
zKK(z)*YDV%*R%O6fhd;^COe1|w+7%WFs^F9S?_);j<4pgJfHq5oeO|UP#(@p-G9Ai
zArV&=^%Hpc69#V0r&D3|-+7M#SX11<-F$C<K<~<N4TL$K0Y7w_^W{|8!#4o6vNai0
zOA@u6_q01Zw33Hv@9XL12|bwYaXG<%f5?5Y#;-9vH)&^hOy}tnp9z<K{S%qV+J|p`
zDgAz^H)oMTeod)9hi$c$VTCC4S89?Iwel5bGZ!xj1#DJ-q$(QX_}s3QK=%?$E}h5A
zIO20|PiOq2kOZor1vl?>81b{s)<$h7O59udM><~O9AAOocr+b^Rb{siyDvm0@Yg$+
zMD6Kt13b#kK}eksO#=|p!h{%LjS70KR!eCb(0PH<t-<^XUs>t?$;SPQrpz2dV&X!r
zQygJEy&oGVw_bwiWR0xO9nsVjTqO%WUlZfF@@%)h3&I*9A)CIAabqQWB2FL7=KQ>!
z<k+$9SnF>~#Rmua&H8n?fRpg$EdkKNex<rq);D3g*)@qEdhSK&Y|~B+m|nnsUE5T>
z82YjAYu%@6ZhQbLytkkJ2c~`3Jk{$jy43GT!o(<-#8q7N@axJp%onaQa?lmhYjB}I
zRi3YtYr4ZtPReT7@y$SpTqI<n;z15z69HtqkUaU&Yaobpa;ZEkT5fWfOHFbm(-pY8
z_?D6)!0AJZ*L-*p?&1=sLWAb9&pqY%Ie1@hdRx6)31NH|*ckJGSe@*K%acqvIaDSb
zoycS>GvOYau|SycL+f0j5@2u7>Qv#KK>z^X8!aA6I6;g<r<=DUAF!0-(ZeTf`6hiQ
z!<6)$J+Wf|Y`h1Wl2{BmzAIDFpnkCJ_Am1mKv*&29*0OV;+HdyWFH_v>2}>L3&)p&
z=s}d&jl6uPiP<8Rd)!UlgSK_f*6aK00D1aO==nem@02riBJZ=xLxJJ91fpi=-(wmm
zCWFn`dn|<aK-~MAi)2dQb}Wp?=el<wro(5+PM`wg4~%N?VUy^1j;(`jKaSJ(b2)d7
zp_i``MBCR6hcwn&AL8hBt7P0ya;gCt389#nUN~_E7G?0DFS+N<HC%X&S)bQ&xMs^y
z;N|7?ueX9X^(8d7rQesmc5R9f%sP|R3wcm|Z%6B!o^V-TG9i=m$Y!P(850+7b)9&Y
z(dPvC{i)Zj4I)0*Hhfq>@wq68lQv35(nmm+;G5>jOd$dL!F>8!dd$WIbgsf>Cso4P
z>U3v(|5rCE7(lh1>`wG4oA2zG!=90%&(!GkA9TDN;S$gP{^+zYw`0F5l&1gIWED{n
z+|}RC=F|@|lN10YUhRE*9+}A#NH*zycv+Kv*E6u)!rJG$64<X*nE?isA*$|;_Alhc
zwl@plr8UN*v1y#d;Q_T<$NHwnSArnzo10zxkqu_uiXt%RMe%;U^*zS5JsSh}Ib68;
zwzj$ky!^qe!bxun803xRkI_MZEog4ph_7CgL9QzOiId}0wbv5r3%xb<$<~^-Slhr0
z7J+*y1UeH2sR)V3VcVs_ot|1Z5Lfd59Gkco_8f0%_CQYpNPPTN7Ik*(2ry@!M((74
z)*6Wmqh6WP>qSK}jyHLU7_F?n0}l%rCl3H7{ZDVXO;P~b*2r1__W9OuoWVDF0gT(@
z36E@LI{eTM^ev9Nq$NCZjpdO_|5(*pNYvNl#OOqdc!uSeRARzlktK}hMKURFa#wCe
z)B<5E<67?zbno4o9J-y#G;2&c%V0a_#KGc?bybkVk%>Arp*l_x->reI3Z9768g{1-
z8~H2G=TIYwc}#$8(kSTSt8h|SW}$7zDN|I}xD8)k?_N-T>-CwXu7a`6V0VhA0z2Bu
z{yMLRIk3(#dAe1Yo%zN=Yv+TYai1b_IQ6gQo&u_c9cbQJui48RkMnBXPHt-<LefPJ
zL#cS6C2^j-KOYMxY4oSwkEBs{JXpWRKii#Njtq!#hL1BP9i6S}-)lByf<Z6Q54D=i
z6NNvdbJz?ocIElIHy0r)%7}mE7Wv5adj|n5V^zAO8pryMh5lQ|o75Fuer`V8>ziPE
zM;f`C@Kytopr?vSykOU)FtTY~YFLRTg2w59PJ<wbZUJp~D7&^;tiR5L!*oD*%4ks)
zJ!mA~I}?aZ#lU{o)sZ2xdQGMm%OVJrr?=fJ&!1jt7!aDyOxIG<^zBVLg0QYsU6Obl
z`%r@*W1U79aRJRtbLH-xQ7swRfd<nE^n|-+B_IOEOTN&+TPb1yYTCl$Vd`-2jf99s
zNA9w|ybKA5o(KUsdM_AnEk%yS#*TM7^Sb<-omtcnA&c+h-mCTbt9T@kFEW?=LMIE1
zE?DY~*Yijn?EK``@+XfmG{%}WKq~i1sdQ`0rD2~A8<SIJu%vxb(aHIdvxaD4J$YHy
zAb@)0v*UG~6o1bOEq6T-V9t<Jzg>ykreV2f?9Nwiw>!5soWg+Ub}Nn)G4+e%x#Z;4
z%y}y4HKl})!Lf1i;(4EQ?#<Qqmj`eFvESvB)K8bN!L(-q;#AoAjYVg@@Gr7&POaA`
zc<4Vu(N&8itV~UhTaF8pAx2_ipS~w!@B>dO;4<NY7CJmAk<ZA}ytuXoNJ74sPPWXR
zI@9m@I>z5t`FKuFH3G9fkrp2w!MzDU1ZXbJ+a<(5=z-JMe$MRe8(`z+^fKU70haem
zOf|8!%0AG@h)GPfu(Zxfs$GHkvcDN__$(?w!f<}J|Ex;8XeLx5(?Cl-bBGnKwc+Z6
zT3FPO$OE5_{<N3!tjLo0Y~;3o>z8`RDyr<0n}(A|LHEUq^1bDVn+;+G*+KjlS9l_V
zR#nrZm5c&9vgbv@^(dh-oR(+3^<Sm30>q;yl4}9pcIRxLfA3nH;~YM&j^;O?Z!`YE
z?Cg$CVjmhHqDGm=(3nbVPk~+nXiP(cXpy=V6smk=^1#W}JKg~h-aO>j@K^5CM$JB3
zh44T6=z3`f2I~#P36e#cObw<#lUzP=%u(g8cGLWpLd|5);dM0lO)j$s*4y(+k@JX)
zS}y_N1lKO200o*@7xf|C2_hAEG$|=*K>4~>96HgqPY)tJj<$8ttK<AUDqFbjY@2T^
zD@(pWlWU!BHn-rX7c8xF^n5cr3xQ<3jw}0_!n)c|)k<y)toh8_kJ4#dTbzboLf?Na
z^>hVA+sqewoJ!qYmhtl^uI$}WpthD5hQ<ip)w>*&Jb2wZ1TQ@UEVk=X=~y_t+6RwI
zR353s9H;%F561fE>1})_Awbf3@u~+E*}ismA`IH_{=pVlx(q}Xc_ExZf~V^6Ow!Co
zYhZ;msMX$~lnH_LOC;_cBfc8xV|RD`>z>hvhkT!|+|&t4p7|Z!gUt^o{B(QP4_8AG
z287Q&cM!~BKwQ_{j8<60sOLV{6cpsrs=<Rr&r^3)fbGCb3PknC!ZhLf8|AJp9xF}Z
z<TXI~<YQB^h2aCbao(766}=*bt;G(uZY;Tm@^_t7x_DvczHsIN&t9pXkudGYYF>>D
z-K$?bF*4$91X(lmZx*-bc}vpVKCZxwKAUc=-gszODvM}dRPUDPDX~dkkaw!zI_79+
zE|rpw9tNe?xkmDmF59(bO0cc3gWqgUtDS9PVdV?E0gOgrvcdrJ!L}GKhd6!0fa%|a
zm+Q(Wq@w6SRO|Vbm-&@7nciE1X82Fi(?XtMX`%RIppM$6)P`o-$UpReN5AJRtnx9m
zP#R(_UXJFEmFy-*r|7(&YUSf;eqS_n=~jo5##I~N3rl}K2#7gc50)GszH$)Y-F^y|
z2*(ch*xwRATl}>DtaD)hL_kjr$sR~~*IbaU4CQZ3CxJi|z#EnD4rh5V4nBdim}K6n
z0nPhCgTJ`Bx=68XM-&*SdaP#7i42)PI^Cewtc4||f|xuA>J2Xii+wo5zxn4%4niX3
z<*KS#;W)c9S$bQi>sJBo_2?;)Ve;6A?q^n)TRg(<M=k)-_PeFtO@uyr@%mVk``j}2
z)_~teY8$mZFDW_81lb<Ri%UUW$yq;|l6g-;pcGQ1U8@}9@o4~kkV~hZfmXY0>w^i#
z#y}CtB8n$!0gATW>Uvsja=yBSs%2Gv+0f;Zkkg(IMoOKvq4j%#Qp@(o5hxCU7m}}t
z@;z=f@vzcSFla!<B`gyQ4<`b0fd=y#2OS&zZyAdL3jgn)<f9_pkD=Ldsyf=p-twg@
ztuZ-92BL4)(q6X??6#B~paQe44-}X-VZN~-CZ9W9aAz(nTIPFtav|wOhZ-Plew~q(
zo6uY`HJ7FLVPpKIA-1wBdF@-U{Pr_|N4B6ISdKP=aC9V#^jyB}|8|+{qc$6ySDN=m
z5X4Qv*QovhPoG7j7IM}5B}EY3>_a4w&wFhAbd(+6O%N=gX=NpGP5H+YcO=)5L&eBX
zh2Vg3!D+Em+V8Yg9}i#JM+eK&$Yi`pTo<BeyP>u+4<IDj%4-@^nO5}@?$5+!C;asq
z$i|D^8^2w~0yw)jN5g~&I^u#%Vl==vr@>q2-ukJEo?WTiGI;rWCg$(nc;u!07(FmA
zx8mX~x$^Lq(F}?5d0Dy-j8A{n?0WW_V}xNQO+YPZAPJ970P(RCAa`!ZRu;+(xCoNP
z1JIzmu?ch<^yXWzrRqh5qD-UL$-5Yj$5Ct{TM4y}%_Np41~OnhXhe(;M8bD450u7b
z@x3;m4GSnh$0w#XF5WEFAp#ADZkwyKvrM!Slk^(z?Cb`)>wMUlBdQTCAk;5!)bXi*
zvljawtdgn%w(=gos&(`CoVXO+Pqv_RDzPc-6Qbt>PVUC*NqIhSdE)`pTX$!l6vcg!
z$->T;yRD8f`BDEsT3WiOT9Bn6OPL_&e&f=8dxgB<t0>sV^Yl+2q^T0XUP&v0P#mB1
z6&~Xrf6K@+<sQi8hz_Q$qqWsBG@gn@2Z`m&B*0^vmF}HC%hactS55QDa@(Q_3Gc&;
zyYmz1EVLZstaF;5FPnzYQZdOgVrvVLi0S;;n2IM7nCoi;R5$uZZLv;eQhB~Rs~_aS
zA#_B_38HW+?=;-UX&TMz3wIEZQM9px_(6nx4Ft?H--sP@dK`Z9Sgo<Js4rNm_&v&1
zL#_n?A3Xzh*Zp`s1;EcJx)+a$WI{CD`_0oL9aL=ub&-0tYl+v6`q<q~x%Z8~kjHn^
zKexE3f?{V!2+Htu*Ycr`ixPJScJLcRzEnVF43XJ5cETqicOzEGQf;ts@=HB<bg*oG
z!^$2JY+ckJvN;na<P49chpA^$fpn};LsZq@s~Q>_zXe-{Q&TcbtWK@kn3$O(5M{Aa
zCgSbblwxdH*=Fn5QGP|)*|jgQOx9KfCbh8v%13yZbUC7mm5cjL2Jnu^=?H{Zlcfq4
zOrRn;{vhGHr9&`;XufH1*?FgGt(-efL8RqAWZ$hj!&P3!PBIEFV*Uh4pKQ8N^_w08
zX2(W)v+o#VLsIrz*cMelAyWZHU#FuwnH{=(Xkhd1)AbPL=)aG+%;Sidt&kK_K`(j6
z{;QVfS5tKX@;1rx?w`w<c&(o<A9!2kb0!jDl;Fc-Z7V}tGNMllAuyR&c<~M=^DD&n
zu#mhQ-!*Xt*OWT9dcE)hX+@5BTmH$ycOP!no#Af$NrWVYvtFf=K^<OX2fy;+*cMk5
zupY7j;0CQ+N%zLeLX`8TYj$cH!viWZUj~`n(Q8b5uYOJli3&(K0(6Ka^X{CU$C!74
zuXM%-dzduKO)p%HZZr+*&JZn2tOdu^%0QHAcTlZ!k$USrrVwXh`CP3CPZMTB)J&hP
zaw7GH9pq4s7~(pj<uOxb@y?^*!F!ILx3Z#TW|q0&`{0R*Ta_66OXM$EU$_yU^d_yt
zUz0CO>I<`3?lrLvXQhK+92vR3at-fyCGz;5b5Lsqku;mQyL2>YPbd75`)c1ArCBjf
zR8_V`Be7aN!WIZ^pbBChh$+ug!_D*)Qgjk!xb_ZpRdCmP#%oh^gtI`zU4t<y))-2j
za%*$Ba(;#b@&kba@s!bCbtZ?8RwsKQU{YEtyvNHZ3#Pnr)kK_3wwTPo=wU(d)?f2B
zFWXw!Bb_;GB;n$4QG$~Bv$=0g9TMN(Erypd>Rc1vViVBRZ>>C!lgfG`{IKTp*0Agl
zLEd>MHgNb;7;<|zc65}O^=7I-?e=^xM5@WP<agFwGggr9^LH@J8CD(`7>1n3pT~Ra
zw9du_M^gnn&Kd6<#&JTG^i<Wy$I)9DP7MZnhuF@IzDWE2mN7Mm*y%c+s+)z8n-jB9
zaNf*5B(~K+T=b{N`s=73Uebt<56c(>^i|r_8iZfOYXax_vb8B;@OjAr(Bt?{_Y1a&
ze<S&tI3ST#&JUC6q0aa~zJX|#OyrqpWOe5r>K0%ykdWwB6tNf{*3%rYcjfuU=Eug~
zl8t^yemmwHuA^Aq<OH^}fAGK1z_wBP?Bq)cTCQ=%AJqv{K|0i5*3LkGwD?Mx6aY~x
zs3JRW4n<gfzu$%M%{nElYI=Nr5vf1bCD&Y<(&(w<$wSdgr^KKi3~j&xp3=1eQ$zFD
z9x0oF(Al8)OcHS0njPkxo1)uqdat)WcAUYyq!W^!))F^&;K|0x_9%tlumO}12S-mT
zc&Sk9!QDv=1T$O1Z#r9V$JT<rV^d)JVMfiwp`Y&6dsruvt<c{k`3k6x{o0riZx^>t
zroFmZq9|uI`v{K=O1CJJ*@BvvbMG5$H4#zkPykg8NE}u8^_rZWN0X)@1wymHYr{Rm
zaLeyOoiSA~p;B93o7kSWFucFMzxlfq``QH)_d2!quw~`+2l5Mra4XgltXH9OQjI<$
zmQI6lwul7*Ec@=Qsk`ZbMO>uY(81>u7o(!9zRi1TR+SKR`1=9|K5g_(WevvV=7B&4
zg#KlLClZb431ZU11$tD@WVRu<{h0&cKEF-V`j{CPU^DedGD_x3L#`%tvIg;I;*4`C
zMhCSzCP)X+uN`k5#(U;$a{S!7GAu)*Ty-=?Ijiq^-?h;YsZMd2h!jzNettk_OIdc9
z%O(VHXkd5cM_*&Y#Y;;B3P=}Gd3-)_=vd*vWE#&F&%9~&&-YYGoPn+b$hQqCF6Yqn
zZY35*xmetR$Og5M*>g)5OF4TBjsfhd^3T8f%h-!KC^(94{^ti$kZ^pb_(tqtvgR93
z4)*s}oZu{FxGQNh@%fwi;n5oJ*4O&3G@zbtmTC88OI5=}xF4(;0f)lpXi91YX7ri}
zEG&(GHS0>L8cu(5L=2ao6x0cvS*YmKF5)P?i!#1B>QxG{fHCk@785KQTcs~pI4Msr
zg}O>Q+ZM~dctk#-LCW0O(Zb7tkh(ZOg$1ARfU2}@R;JYw$4-Wr1Rc4SZ_jAxt8&z&
z)aIfKlQZse53W2W4@8`8k4xjc$ZU6h?f`3+GNa?q={y&hPQU@CkC#FYCj+fuE7VNW
zGp{FJx~Bq60I_}2qgXL$x-J$N+HcdY2}w=83@~U)95m+o<bfQ6p7qCAXBbP{*445R
zX<=0Gpus}Z+Or^&Ft8VxXS0GVnp=>bZC6@!GX&nQ?9Qb~074P652r}vDwl+N+>>DF
zburPZTXFWfrc{=(UfHWgdW<z*q%>yF2$tj-Pvr0Tqz*7`s}6RvXjg5hR!sX;NSrO6
zxbK{&jR<wzR-M%NRb44&da4(%mM$&2-_`U@xd&LCr|!+xAOmD_@}#cI%EQj?&Vhwy
z2c8`1y&kaBjn8fW;iWAy7x{d}5KMs0081L|bYZX@5*mr@S|VaEb#mA#t;Ht}2I%Z$
z!tNdyO3UAi&%(mNzEJ*^4@UfEh8y1tihXVPXaIP@e6Vb0%DsI=60tK1vIDyGS%9(!
z_oJ)w{*BLYHBrF3=h5QH3p-3D+l?MW^n;=mO5ImN_Rx>Pgn?-Of?`;TZ5zjWCGjs>
zF(X^QTtdXK2H$pxb;b?~{zzAz3lFX*!E!y27NvU5F!%L`D|zRcwc5mc#?uRzBIRxh
z5Hl4QhX%8Ti-q<~n-nCoKr)<tPV=+(Eb+6OY0Yo`l2q588Yp>??#Z{K_0El5{;K(M
zsfjR#7={@hG;Ul}u_pj;5c4&xJ6I~`{e9I57_nXjNQ&(79|?0uW+)#B$~Bz49vYRh
zwx$JTkSra|X+PIVB&p@q=7j640gnl&&V{Ag3jUghhJgWf<&*BtmLwsp7p8yq&(Trk
z-~dw`UF@r*=Y+)nh*^3}X%b7en_&*YfYqe=C%8DUJnN>zc1NT@F+1F|l^2OIDei#w
z#qPI=VY6Z@Llg{&o6|zr1QxE!xNHZ6t@3t@C~7WJb3@HnR0oIWCCoqKAf4WRC1s3%
zCx+&hp!tJ*76^MSs!lu4GYR&=m!9?baZ=4X<$yS2WK27e$g!4Gk_6SevUjLMFheuL
z)5c7Vzhq>j4<c!GVrJv3NrD=atL4sjC63PR`+!ZNnq9dAadXO$$wx0#ev$iVk#e-k
z<ZDsY3#?Z{zP>Z*JCrw^=%G?5p;GMJ*w|PWM4lunAdkeTiCXuMP#he}vM7VCRddrE
zWDrGUu=4N;ptU)j;-CDMowZTRtI3LHWUZPw+1ef$Jj{Vwe)5H*9Cbr+EASdnvt7<U
zA?4>5^<$1m)%`_^^k}n@=R6<MO+m*5fA_(pOzN=L|K225#Xb6KqCP~_gui=7-!YYn
zgA1ELFw_H6$ww)qw(OHcCS6p|8LFBkSCC0aUR+6#YWl46vSrEmnbOrGawc-c8(Bm~
zNEbX>9x?tCmR#6V%*BDfK_I)=Eypux6#~vVnAc4F0Z!J}JU4o`Y;I*~{`!4^Dsgz6
z2@yzHgoJi(xUbY5X#r1XP?2crOJ{q-Z-wURm6OurN0(pUC{HzZ9-(vNL(n^irf)l1
z3FmNnZIjTmH&z8^w2fDB+o;Vjl|sNST!Pzcqz$@zw&HCvS?r)X0;0hU`+oVbWE&<G
zc865cb!;W25U26u_X!P7=BtnQL_s(s#r{I?){wlCRV~lX>dPXkO~I>srmjcoTj9+o
zhy7NrM!|XI^>YafSaqMA2lOIG%_~_}7mdxLqEx<pjg|)k!#b)gpNx4Nf}R_lIhH-6
z1kM^a$1mbbmj%>eRvrSA3D9}hmoPx~{WeV>^*0~CKnj#}G@$@ew%{BSOeTJQgFW<%
zSzg0GRnT+gok2)tYBQoJfDS8sbKGn0zC!e|e$M;Rg6-6}yJhoEJ?8UpE7d#qe&I5y
z??dJtXHYS)=wn}C(u7~6vSFfd63b7RR*AO^Q;0wFn$II+!Y>y2U}mx&7{&WYm|B)Q
zb=^TTKzYsFiu=2)F355wYr5{2tjN9n`)u_YtppcKthZnr5)FOC&Tyr^%ZVGQnSi6l
z^In2utQYQ?H(Yu+9!hT(WsQ%UUTte?5#kJ$>QVF}lIvY~)Zs(d9(*+dI=N=}o7`J7
zW#_kel8X8vzZ6G-neY)gTIQIg66&Lej=kVFB8ov64JzRhnX2@e(d8kulbu&ZC*8L5
zkc$@M1HJ3rX{UcKz0fymT`U8rlqt);x}Qx}Xcwu2U?jo%$?f@Ikf%GvkK7B5g|5xC
zgOsztI)df<7im*V47f7kasHn-kl$(0s?ozF7z@n#vzD<F(tn1gJpwW}+C?_PUSeS+
zh%BIiX=wc)vZmk4nI8hL@nJZTtlXG)BbsD#wV%+yJdcEtynOgh>W|zZ_agE)=MGMO
z!KZt*zzuz5MgD&aMgLn;`X7a&|MB1-_2?}Pp^C~Js*UsuOQc1|=B0!Q8R|-A?{r#l
z%44q=<S+A{{L$tta{M?t{MGo&*ffLtk?=+HRmquTn$eQRb=mvm&wz;MmJI^jB_IKM
zl!g>h@3|Etr;h*kf_x=s{XZIrVcffb{PvHS_qT#)G3K@TTw)Cb7>!=R(~mCu(hS`i
zCZs#gh@}`KgGaX}lq>+9(8xzjK(h5mw{(QHxcHis_iHdN0rOXx0F=j<5Vj{jtz480
z!i3x&KTv|yZheMnm7E`?on1Ua0-+ZGx})D}1piV=jEMUB>O3j;SIy&3yqYp?53fqn
zk~c11TIq$a)^2C5<OzNpBnZ;Pvi$dy?e5OaNRg*Po-!K6s*>XAfI5uFOW5ecp=lB;
zsX={(VDpP(l7|uFpmdbS!kx|cpykAL;zx@dCq9yRJzrsvZiU9LQKU3i8~N+AZ5=Od
zlDD;{Xa0F<XSn$6zuB9aWB09`!K86(rD#DWHKhKBdKXucoKCdOdP42Bj)~FO#W6TW
z79rY?zbkr3X#P>SHB6A|oQjiDu()w|W;fD92_*Hp5<S?FUGg+OD*8xh2FkWks0Wvc
z0}j-SZr;R2F0zJg#jBeW3vU#Z2?-v|y>B!36;kgYUYf`;4u1REpnORFxVb(@qq;26
zu54;R%o!&2!^oblaeYM&MxQ~i_8#NW_fGAxRh==g5bzZKAea+3G1<N2`2vltV&L;I
zvF06ki5aDwO&3S6CsKFxq)I}EQH@rOc=QeMX<(!Hag?K+-7Yz@{2>3Eo&fyME2PgG
zAVaCv;O8!sg#vrR_OIkylmN!#L`|7LyH>@tYx!-a9L<rNGQ{K?CW9o1KPBq2h7~a@
zcU^zIh&Dtp%ORfQW>yi`gG<jG6xl@o_sjerb?($h#oV_<%OH0EsXUtd?Nnqjj*>_`
zz4kD3c#|YpmsE&Yn-3}z{54OF#rSv&nHLu&Tc!v<)W4=>K2f!}@B>gP#0k|e)B^yF
zcPX-KGDs8{cz-pGzoYA%w)k~9qV4sIl}szKxmzdOG~Bf<jXn7gdt9RXMIF!SyIwpq
zWhg1d>ETt^=9_GpwWaM}nPNsbnXcSOvNGD^fhnEvn>vK89%A=6xuIo^1j9|$VRNjk
z8(uBsw!NKlqXZZiwBkwF3b=H@JLYPfgm&AmNR;y-Z?G%PH5sxZM6iV1Nb7fgO+{np
zf6^SywxN6|NG<7!@l*d-Ck}MNj0ZiFx;ZBp*V^>t^y(*9hsULr6vJwRy!5!W2yuMu
zbcGmBp!wiXXfxvso7uL;K|!BG0Q-?e$4J=jSM4$Ru!o2wQXx;uBa6VYC_)X4#?D8Q
zS7N5drfYj5E@dVw+Et&uZ0Eyy?QSy=K@|WLzy8Zep7`m+KY0#I+l_mkit0xWc!%z5
zro9GydH)KOTV7|{zUy)TlQLs5g}!jbB>IvXX@XmT3!tk2h|t30bqq{&SVJ!WjC4G2
z{}p7eUZ*~gXv%#{tM;J!kREnDSxa(_sJ#-`fC~L^K55DyTjN<+1mG$F)nH>|cXBAD
z1~CW0y77vV#%xqsegTF|<w2n`Ma+zh?wQtq)%G8Mea<v|XFC4Llv_#MJ#!Ae0biAX
z+#j8~B}mMT7b`>TeIi7w=_o!24`)$P3Kr=0$<)TjpC$5fpc&EP3(5BmTZS0Wb`4ss
zeU@hI1%zEi!gk9&dxtdG`F&&E)ruRY+;OI0RmLdjy!WxRwL=J40$e@5PEl3Bh4F%!
zmhpv<*S)lL^v6N?wr;*>y#xemQAyP`xU+nAQ<OA1?Citmab71yYgbt@Oh742XEU*c
z3c!Y@)Dl%lK$xptZ%v_Qc~<wT6BlLeuxanoOHZz4B-5<8lR8IR=iAtea~oxrkHHFh
z4Jo&r9C?WoO)K$!aQDVvl<U1&9^$CzsE#9mZx!M|U~O$57cXhH#^-B5EgcqDF+rXz
zCSE*Hu<7d$U!c|bJD30|SKdcD#YJ1oMj^W6_m;ESyRq2W4ko+a!oAWkd|NrU(e9r{
z+OWia>*NsH;;awSqm4jXibM8Lg+w}9X3|(1JW14CDB!T}p`b@`W9=4zL{psHOgvs8
zwh}_=VO~{fZjuMRx_;G(68Z)w(3za?I}+B|i({Mj@I=*|OXoF(1PGhQhg{|&F*0$g
z!g&|X=J@rOen5~Ba)Jn^E&0CL(;sA$IEsyOd9B3ctJO5p(&u)Zr&mNgA?S9z4b#EM
zmm`T$(?Rc~$v)c~4jbH{66(M8?uSZx?$}D67wTkgr)Cli>eWhufwJZjR+(o6q)=(D
zzQC0V5(~~6YqG56rex5dk1;XXkTod}>m!v<Nar8sa4ebkz*L?|Yc02pW%{?PejH)k
z_7^@^J09!5&ZmBfrN&+TZ4s}_jL&L?yl1qaEm{<-mu&+zBoAC<y!o=@V<FC}z(sxf
zV>O}TSr1m5`R%=%LGvnY(DB9DH~t(%2?CxUWpJ1113c~tQ&-^FugQ7>U7hVi)LnzU
zW8LcXF{saOX#hLkgxb40&WdW*GZ$A&ENrg>gGw;{$Q}@PAfVbiEmfs0hTUb3JmF~V
z;XBB`7IeutGoL%}E>zVfgrt|m!!uLHRsf<|=4B7la~u`+rdLxVeQm-2jo452wdF}T
zAG{VB?B$X5td}x5e$iTAWu=}QUGa*!2Sw10lmH9HdJf;mkvJz7$kG9;w)l0Hom%U`
z!qX*p3z-r*|G5{n^fMrgGYFQ-S6=y3?Rxa_A#VStzX4I8f$$(R{lzi+c)JJ+YXwS~
z1HEbwJV|@5N1mWOnZ5%b;V?oVIY*UIB7`J&^;w^M!6WomJ`Am{^2OFH|LSu1A(N+q
zdkz2SVM*bTxw;J>1OS|kUn>`=*5%-XRoh3_ZpT<Dk?f&928J>cx$0*jw0vAK!T7gT
zx@oz!`S$A2Pxm$}b@#a}^XNiu`vZ4*!YN7Ho+X%3@4GNOaVtD_4AS5JSaCQ;`Eu$P
zxxR`A?BgX{W(Mlhx*$F-4k{+Af$09zi(u^R$J87+VvZ_CvltJwG$kK<*LWwju%i4L
zx#C;92N(b!KDjcFop;%yLWXb6m^V;~C1P9IiL2B>Dv5-KhpK;`p-UENV;Ru$y(@=C
z)5W78xlC$Mwsr;oc@wxOar0HIs`6w<)9`#Op?6}Yh5fw5x*vnu87H?uBJo2aUnf;|
z(WH~z?&81z`Z$`{ODhcwAtzxj%Anx!J>K=DZPqLelE8G53$l_a7ce5Ev1l#aGcq!{
z*3_7mY&^H9B%T3lN?XT{FPTrJX;_?j)G}N-8yHn(A^CMhZV+hwx--v#u!WI@IznQs
z+@$8!{p#}BVH!0?Srt1?#siZkT;Ie3I$R=qA~L>b?^;%(KcdL9`W(w!pqvJVj8L66
zn`7W56-*HhqM%3cgoI`SJ^;e@=N|9R=w0_E3q~z9By~c-)ea~3g}V)UDLT0EQlYY0
zITFZ$fxt>tcYTL$qyS7BMJI<AP-Fe4vlc~O+R*|&i7UfqM2lS-Jyi5+8j^~#pQO5$
z<_CH|5al$(2ahWK%exIjQQ3{LH8j$6YPYUruB=S=cRv&<!x4KTb0xBlDmblh1UVgU
z4}B^#IO{!qHsI2b-#5U->$RQ8?Co?r;@!!7b>s0=<D#0KXQ=<@JFuEya=YQr4qckM
z>X%X7xBzeuOmo+){t5u%4UC{CaE~U|8b8tWVaxnHO-pEoAW-WxRcNZp&i5%QL0F{?
z^mFeCTbREF#(CbBzWY#*ZZ7kDu|}rl@JQcU5<0gPW-x{L7G6bmUQg0dTYr0#Zs@fc
z^E|)jRfJTR?My>zJzQ+kFE4gf4m4d;!5KYPrY0rz>On)kMKn!`0I%#LLlj*$`?KP|
z?iZJYPe=_PUsUX6ls{O=1;fMuD8fZgLf}TGn<_vcCKHIUw#T{49UAn%rog|du~oah
z|LRS*vqgfN(we|sJ(y@CY5LG4ojH_9NP@OIKiu0N6@2Xktv1*=Vq0LrLb((Y;GD17
zd5Q&$Le0b^f1xi*w6Wb5TFUueZ!hAUKYO9Q1jhtkXja^9u1+xkS#8jXM&nGwDAvcl
zg{rGwlRP}lwfWY~fZl4HsK{Jd;C*-XOxy&Avrt!vLBMw{P7EjL;?Tj7c(}fQK9fKU
zBW1&G5(rPUdGZ51ze5;%qw8+%sfZ^~tyOtSYcvhbX~*Zd?tS!ty(DSR40rAWp#<Zy
z$|ueeDUeE@zZY}y-w5eau?w%@7W4uuBtUR(q{sI#Hp?3WN4B!LvUyiWmv==ST31rm
zp4mb=7acerk-#2;h?>f5Nwx`zy5=<D5gh$Kva_p@t}31FfMbN@;ZqkrdkZq6WQ)|f
z9wj)ZH3ixoY8rw6;+Zy+jfma44|w->tMx1?R?3(Z9iB$9b|!7&P%8>>SS}N{08hb}
zFToHeS$D3#l>qnZ|6K_<O{Ym50z9H%GO*YvmKZqrNor)$tJcNozX8ql;mHT#FS0S+
zFp%&>_jqjYS~=s*k`d`{kURDXu$E$mWB?yBsh$Z?vab7@P)<j&?B?+q`s<}4<p=`3
z>d<|bAOpbhS;GPn%7p9Qfd!d0iqv<Iw|<#(0#hQj#GsAIYy2j0AO{7D{@jrSoLWXF
zF^9sx9Pu*V6x$;ILHzyhNAO7*d$p57hyt@5Ok^a;{;Qi0qdAU^9jIDa)z^{hes%Z`
ze_m;<v_N2gDK}OIMAYs?IbJ_6gt=@tOh*w85F#8XC1W@vq{qXOg`IRsZ%;w5W3M5M
zfZZLDU9h_aX*R98@`ZA+<MtY(;28O_`SCA_-kOI5%o^q&&zVZ4EpV1GGOV5y$$=BD
zhQnq-RT4YaRvqQ$U4MIu{If)+yv$(#01E}kN~P@U;Em!mw4sxk-WNP41dBRt5q;cy
zZlAB5r%HHqsSNuP>`z(@&R(^j6zW!T2wx94?YBwpbbr=#QV!VA^d$>YB9+zVV->eY
zCW~gr(TyIwVW3EB-DoON=Xj7NfSILH69arC<$MR!H?`vIpk;eLD0-X(@)L;2pBLDn
z9$sA6a@snrnk9&x2S1S{v=+h~)OuASA>zf-Y=NkB^yd3PF=0O5DN>I2B~-1)5EdOA
zRwIbS%%V$8#}lJ~PIi!K4Wd|R|A|bnO!H}Q4U>(%z4=v`7=Xpr?3!tbqqT0X6LRxl
zIr3SnH>u_;i%9pe^5Bz@pagiON_A~~fA<$mXrQzVm!Mba!R`5MsHK<g4`8~5^5PQ6
zAYCWFtAjvfFP6vXwv;EoE8Y5E>@k(5>?EROw6f@%F+_2!Xv~m|ApAcz$_3H&K^g^I
zwj-l}M9J{+0SB3f%EeTAsQov>kf&Y>>P_IB_Z#>!4yaT${}$I8v5#uib3mUy4lda_
z4TTRf{dfn~_eA#JFfpYwwk<2d)91Yxa#HxDcutfGfXw0QaCIv+%W#>@{2Co#rR;c<
zTGF^ygGrVT+F0IUK!kzS%ByKFYmAZrp;9SOr4QFW5%x&`^UME;zxmi<LWCZVcU%K{
ztij0m(&jeED70yTjrWw@m`bBug~j+yr!>j~TUpX%O?tSBkgVq&X4a!L{|7rXbb1br
zsEBo<JM84we}1^{u0q+F&|#!kchL_uAKdPN++5_xyTKqny<q4f_uoGCklgF+?cf!T
z{)OB)@!KR#UtHOF3GFH14gqY7-p>WTMOtVADzHa~@BUhx9d;Wj{Vlxysp0(j9PsDA
zt-t<<%h!KA2&CD6AM^ip{(n69AJ6}f2mgN;J<MNhnwaJIzw{wV`eOyOhPT<{dB2sa
z@Nx6X=`YIcXn?S$m7O$h$pN$F@4a7wSf{^`<1fTXz~`a~%NY2s0k^>Y)v3YuAQQr5
zve%&SxGaZk?GtVS`XCeV6SA9Bmh8V(QeKt69d&wDwWvwt`CzVnJ7ZJNz*h&(CS6;K
z96^$SNff+qJX^O6uhuNUJgODkCm4+tBd_vOT$25B>SYVtp!OS9a+MMP3+zQH7=AN-
zol<8Dvn+Es-9QO%P^QI;SFZ$j#RF@gO~xoNiF1|=5)b778Cl3Z0p`jtOJInrXOH9J
z%ZAFVI>2O#08!UJj(@KFqyA?(T72tqErb#&JtX~WD-iEqNwtt3Q2nr{rrcT!U^ZNd
zK;Op-s0GLsb14l2Ce*rv(j~kx_r=0B9-FB93C9W<B>e0FUwW4+`pn4Y-qWg1UA4Q5
zD_73_`GSuZ$5}Z;zt{Ct)@6j5t>PvUqcX{d1Duym%oR75#}OohlFVT>4Udb3(OL!R
zdW2G<@^k>AsRuxXBH`Qm$Ih!e%V7<!zBNtt&t(Gv*+DjYfaaUL*J4N%2Ni`3waW5?
z8ToPR9l-wYnEfdHVaIb0^>L&aP~xOKy5duzC()T@=~9S^t075jaHhuV8eq~a+xi|E
zFB{KIL7p={YT18fWe~+C4MdWEOuwpZM)*4<3?btOg@Iht4w86)x39o?iU%Q4?vN!U
zc^CQ2+{*Y3b%qK7G_~GKviN;s0^!BZ{P0-!zM8v(aJ@RIdEvjW^TCyF-^th&q;Q$n
zDsW&m5CG~h(lEu>#1I>iLC$XGF8K#)+U1=@K3TF5F6EVIf8HY$AbKT?(!BCxsx`L+
zrdw|Fkl@|Pl0ZmwYQE6bIkI*=*V$Y+Ndcp?;~EhFY~gxzeU_#hyS}v<+zCXG&oj^<
z7TW?yz_{_3r<YSZHi=^?{MF6b*;@lhxeJ^#ir&9oLRkO)G&HdoSc{kryoTsJIlK?X
z9vO{Y@4K$*yJZ-3CaPVa)PnacV`44G>;&o<L!AP83snM<+fT3P)e7n{G8ZJTVt}#%
z0shW{UhUZ-5NMZpRBcUEx$nJA1M-uX+e7R^92Y%B&ubF5QmUfp9^&%wRt20PzKT3F
zo+Prv?R~+!){ME4<nNo+ovj!+qCQGa^9-EF++Ti`TC4f+r-6$`ucPShTOU2Y@ILq+
z;};a%YC=e?+^vy5L}=$uGb~G^S%wu1#LW~zt(X;?-6>aN+bj`vB>Kvi5?27$U~0M%
zxx0|A32JoNPy(7&{wXqs0J^b?Cu8D(-m9&ZIFQWywRZ{9bhUWg|2&_FuUMfPNXk!-
zoG3DYblhFl0f@0{h|a%tt_6-3jMqss!DQ}MmcyrNpDB)103^VP7pE2@mFEDi;saxN
zrg}DdK>NL5<Ex&HT=>gVCYb?!R9X2!d;3a@`PX@gkpfuaow?TY-j;67E&>>-E2X<U
zt#x>~asFh&4{x}oe{86o6^}ORQZmQ;-Mo`L`;vp-5r_<S+HA`{lq~ZiD^Y5E3j%Bt
zK<SI?jlm2&`(|tFXM5Az@)dVkewkYC?dRO<HUILXMB-C4c8#sh^_^ASo0)hMXX?NN
zYvQ=;*0Ny@DM?CMs)b>VEEDFzUD~hr^}8=rC6=f9Rw<xrW7_=(L$0mI74uF66Ht+I
zM44SVqWIP32`|6&!YGJ>%6l%tD17Ic9MN3w*pPbBkR0iJ3ebZM_P#ftDqdQuC2?j1
z0onSnvnNjUNC+(h;=@9jEMsdJ@vpMF$eVei_<fOx6}!p(J>mpnlDhgySKEoMg$cjl
z<(QFK$gV!EM9S;5-${<s+ITBKyHSHL3;URB5Ij$6=HB<kBvJ&k*RnHlm`!yc4V;ft
zRKaCUzUXW0$9CgoK6lw3=3iA(ZP~U7vge3(cPcTr0g7v5Kujth0xr;}jiFN|=Ca5y
zty$eGzr#f$l?f=&{L%zC835a%5^Z!BOlHh?EO_M(nU^plbzmMK$$=cWSsgG*wlzX(
z8~Ts1fW%D2;^@4si~Af}WX;exM4JV$5b|vUB)7F~E^lg1u4aMUbw{0w+KiASM9fmn
zv9e<OS2-CLQLsPY$gtg5_pWKodzPs$Y=$%6#MCfrp{--M5I_(2na}5Dc(6mC4js{<
zwW`9Gsj-jy`@`UB_7#XK)qKE7d$wy4wi1$B?@<CRwN0X~n$_I}01nNmxvS+fySr(0
zrfonRNBe8=MA}-}!xY-g++WBf*EpA=?f(?86=90%u@h;C&`U{DOk?e8nO*&HBzqk|
z;e1OIxv$e){m|69vF1SKP2@duESptB_IK>9D7^>Wlt?VQ9q6jMyb%ha?R&vm(WBC3
z^d&lRiZ^XQYPemP*V@8OJaf#vstwa(z7(Z}yi+FYxS?ekXTugN3Q{cS%T;L7N(^4z
zTGvzt&G_DyCsoXapdx_QUwNehajrtYj6%N$CQ<HS*5wpsMq^R-KEP(MDPlqi?Xmdh
z$C?A_USYH{#}*#W6PjGp@fXKqEC36;$(=>{Vf;>OByttVFSQRRT<+){RaOdTpAbB!
z*bhRnMia8MHJWNLkVo(37nq($_ml&hu`Ec-DUi(8zrw1mpH8cF19UiTG9Rv~+IYXn
zvi@sr>IMEHV~kIYe0mlBGu?X}ysD=cmlk4TtfXhGM1~cjsZdZ^6XSRD6IjNV%^LzQ
zjP(3Q5&tXcLXiR#Aes=DAO<$22E0_B0a&QQ`8cv+x^^a?_f<rAb^<&`cVql4B-n&V
z$Lb{U9yY^M0`GlS{C<0dahHJx)1(JkPmqCcww8RXSnCx>%rG(?z<>?a*n{F@<0``w
zi(r7?OtG*%@Taw+<^`60>dR6~E1REdcI$FiGCcc%+C@qQs-lm{dHkC86l=?v%ig;!
zX@7&qq)5F%^Ca9ewv`8)b_7a-R*L6*7MHf2);heS-hZ%w9v4`PRN#|3WD{%rtsQs?
zuA)@!TdcKWv>y2&k>(EL2=KY7a#d9>qPC`mmkhN{cZadWT8-*ple<>BZj|p%*F4uc
z=7C!1t1`M15{Z1*2}Q0d7^*<VjoDyq_P9|RL?5?8kW*y<=qO`<*sHxFw04kg;`AqB
znt_FaRqKs)YgdNb?l_@b>d0+iSqIIZ5rs_hX>HWv9dD+zbiNUiI9ZOp1{T9OuyR2_
zAr;XTx&S9zg}@d*y3PMi7_2JLb+H)2uwQ%*6H2xX5~+RQbumAvX4%kcZ`ESNx1M#*
zu$sY4kSlZPRC=6tvDcMaLzKsf-S!)|$da$%cfS&6;Mt=Y=I5Jqv6u)BF3>oWk?H5P
z+l^MvX6Ildo~-DHL*JkWUG-_(nX^hV{uvuys)KZ=Y5ll2^YwYVzQj0&YhOWhb;&8)
zM%MFf(^pd3v%u?gh-?fMhJus&v6bBx3y``e8APGAK2<vzXED&q$?=6H8AR42tVSE&
z{aV><17`Y!1VZXu)4JNpNRnZ3M(k=EZ5{d;0Kx@>U?KjW@8`5tNr9_W%Uc29nDJ17
zu1(VT{$x3jBR!aEB6NcW4)`3DcyjWSLhpj__uL`OSXEGn3bV#8uU$151h~)dj?`-P
zf23#G0AQU&&W6s!JxQ8Dy?0=s-<r4QkX=O+RJx<<lB-`J8x9>leuamUt(}SY;_CWj
z9>8wu@z1h>a&h`4dHLV?|Ko#sPw>STck(FM|ATnAZ(&|AY^le^wVRHdGGB)#!Zfcs
zHd7^=gbC_lpiLCEm4ARTZ6n`o`(6(KTtqJJ>v(xnz(y7gEcyuu9Eq4{>4Af{ouo2v
z*wKRk{ucr57;!%2Y@h<~MUCJ<eWd;DzXqLZSwrTrGA63Z+*t0l)60o}qOXq+5LHor
zEO$PgW48v32c(nd(`iYcr0e7y7=?a*>nyQ0F4ia0O@1iY>}YOVaTsQIgwf++;o-}U
z5{HKjEwm;B<PlTD(*uF02}#6_K=*?J(<efpm{FfJgEuAkawA*I59*rndsz=C>;6q^
z$o(#c|78UVSYv5@Q&|}Haadb4mX4}V?@pWyDoN;WrV~TByqvHW;NSO^Z8v-;9a5;}
z_nMrAAo)NsShI^Mj())=Fz>gb0oX)8uAGgPmokwo(kjydD6=yb$%V^#Q(VgU@W9wR
zV>f1wEpm=49+ShuRbJog(&Prfx&dltR7~<3NtlAM^`9%!gyp$DY|yHsX5hP`--Lrd
z=~_uiN~4as!zd~$4pqPjrR^9eqA@WA&}KjIC*1ZLvZ9?7Y>6(#{Mc{^CQMjfK<}Vf
zc65h0Dg3?5%jCxRTw#u;(x4cPS~zq)r&+<t2%tX_=?9M>c`;kPS$3R6SbP06Afm(~
z2bOvLvjKOqcj{8ixPG{4^Iy!Y)bL5m*Q-Qd+yHtXuyVOPVW1nSdfNu^7dK>4GX9*u
zCt}v+HF!5M)>lAh(6qW?yQ8Q?-S*MGsr2pg*0aAl@>8=L!+$-ZLEg-!;L~LGt0w$=
z+FNq=AL&MvoSVy=Q_uR@{vLevQTQj2>HfR@wzT$=qKDBl35mhSd`g8(O-&X6XDy10
zOM}@a9GAO}SCBse!a<U{EYa4qZ<@4AHFfjbn=dTgv8lyW8Oacvkkwbd_TD>!9K%&8
z&(t6vej9f;y$uj=r<9N{Sk@>}pHpud+x8VPN>$FkeROkYdFjtQ_guf;N9O_<mw+W-
zg9UY~gq)oVs+7F!gWL8=Qiuo|3ESfdJfM+3>dSqbkGl-irl@ii3eNYH){L!u9(0-G
zAK-l$<jPRZ+_1>8SaQFvp<?~q*BO*SYKml5_jhGdGL;2pLC53n(CNaio^kd6YL-gw
z-S4F?)R~e7QiK|#lXljb(ouc2t{<PzG}|JoZIW&--FD_(c7(H3ChmD({qCm2&p+NO
zxYg9{Mwi+-f55b|Xdg(S!Tsl6ZCy!`Q^@1!$rC>Eb<JvPB_a8t#pK~!-Y(ilzdGlO
z6+PFc<vAQjMDQQ_Smj1?D5|!r`F*#xFF23959%Zl5khs&qs{$218iIz9YnvMtB(Y{
z0u|uc=nQ8k<6v4!F^2f4P*jGPp)YG+Y^e`JXlXR+eM{Jd-|cL-IPLeWoS2`Ou5Au^
z0ZveIYF|tC#*!q#Gu5;toU6Qiu>0X=@1$dkg7b^^FZ|B6T$ZIg#rdA+>s#tf*Yd*W
zJ6{ZGo@3A#6-~k8)%a?sspV_uVSMQVxB&s9r4$HzoPl0(fYCc%sNU9LS#3T3PXMPy
z`N!Zl%6kQ{o~$?FB`h-)1d%4vMLB-YVM_+YMn;yyu^R{a+M}`rY8u4_V=}`g#VVS4
za}_#7B)P!-2skZH&v2N?5|Y6AeB@xM=|zx)y=fQ?F5qF+RLJkEkdg$a0+HzCXmLPC
zapVt#vn9RnlM_2f#^HlNLG;n(n~<lX`QXHq6fv+%HTT6q>Oz%wk<Z=|W$yJ$(iMVV
zrDkac0-_f<fcxvaB$vjHum^=SYNv}&>NXx^0`_si#||gWX>2T6(n0)ZGhPBF>e?QG
z|A(=&4vXsh{yhewA|N41D@aI6H>e;;cb9;4cMJofQc}_l(%msIFobk>4nueMP{Z8g
z$Ith7?{n|(KKGty{$Q9nG3V^P*V=2Z^?tDpxQ}g|?(;2MTFo9t62fZ_<RzTf*{mjV
z&AlYo5g?>)%~oP;YIH)vXrcVjoo`(-uSRk8uaLW3azOM|sJ!}M&Uf)=MVYT2d%Rxy
z1Vq(rqIj&*%fZAP@@2iG!F5Yi3$ops)eQg!u!~2E)sxdse6<S?3Qqt;1sE&Thk_K5
zxA0L6{WA?5AmTw(Fm$*Ny9T<=F}BTku6`Lnpj!E(LWJS50W`8Dqnw2&ZNJCw+@T0~
z85Y3F#RKGwj&-^|UMNhlTsUH`uOOd#9U7W2r&nV4ISdOq5kbq%^sHdwbhBc%bNwK1
zQKO`u0vG3bi}n0h+IVZ{liPh{Wa1^>w~n=qu_Kd0KxymVgJXqMHQU+z&B;_ghZhI^
z+Unb?dwm~hG6(fNG~(poZgY3;T|(ss)0FvaJ4uD&(vQ`gPjYppOz9bPuLth?<PA20
zL9x=oWHeA;L+AYzsJs1qkaD9`1h>G94$Y{A#U5EsDy7h#kk8rn?p4j>g42WLwRI~#
zTQ%N?OA3j<H%=1v;6xHJafKovNfB>;-(|>Mn(c)M!y2ZIC0bXbjJTj`9jLeVnttL3
zl4n4p;CM1tU}6oZ(^krt0g$MVax%O;JRCecBV7+WLz9zYQs#2i$J*OtUN4~PT;X=A
zs)XXSZQ_9no8L%;#PNiK!%Ik4*&{z<;ZOpSwss3l^RdjJ-FZ;{Ld(eIC8k6SfX6zU
zEqP}M1_SUJf`XVJ6%`d)nk=Hnbn$H*oV>39rIfHx9GoW|#ueRTh`re}ID?|$@ZR$9
zQZ%4wb?;sw%*SPAEefEOBwRED{0!cF!v?!OGKo_FTykKL8qCPco3YTMOv0{jKUyam
z*ri|VjcD)Ta!r0km!sG02paxbc6m1qmbzE70}1rzDFw9JGV}B60NfgtnCD>Ifcgs}
z9}yoNFUbd`%zp+eFMF8U@89EoLr6wx*{R1Ja(lBB_r!Ch2}>npW@gCP6?tDO0Nrv8
zJE2#7x?Muvs<3lDeC-51KinT$QEOCeqoqo?&MKqcz}q#Lc67cD3`nA)#Z_FoJz=iy
zCMs!Gy{u9Gm~CquW@e$Wu3P(Gzw+<z7ne{HK5g+#%B0KGh46@Y9m~m+^6~LzzuYiL
zND8uBP^q!*a&<IfWt~Zbc|h?c0ZZZJU#o6i>i1GL54Wo~DJ<l=;Y7Bb)^(yV#cD!}
zmNr*b)6S(@k}0Q}J1kJh+O~~f@QuNI3c$~J`*xzpd4F!?sj^zk>}*m^wZxxNO>I>M
zUlIF3BvaTnQcNR&d!OIw6msc_2~`KWvy)4?P_^&QS5Gds6p>G6cF;{^ti*VMDmjgy
z&kYN{>1Q(p6wIFe&K5wNd<#?r@GoyxuI=N|XMI;ZzH-S|@-8lOky&}0+V0PVbm7TU
z3Mpc+W}7>O>L-XAlajYB?hfVf8k4=_9PD6=VE{o??dhD)Hc(3m@(?yiH_$gY`DLK)
zRIlfFezSINt9yIi7tx2-d%k$EvAjGEv&N#)0az)Gb2k7u<reBN8F^1Pnb*=`aj{~0
z`o2COBki=<Vn9C0CgR9a4JfvfCTd4eOW}`<np!`89I}3Ug92z^=X>*SK$B|z?}Gus
zbRckzsH`yhepg0%Bo`<#i`z{*2#Ji$4Gx~{PkEUxATDa1t4E)gLQ#^(Ku(eu7Ch<U
zRhgD%<5Eq}rm(Yh$wuwR%1VmDMp-k<=GJB3(8PlDhMYcy$Z}(1>IA$rSsC?rbF;B3
zj0+ka?U`??UhV7*&A=Czu(Tu-f;aE94#ugdqH!IvbFKDvWeuJAKU;PHm$ADylb|Ip
z8E|e{$V;bfV%<leyr+{Q1W}W4SqaEh(8o1;0u1sl6)bRwA_Rb6r3yGZUKZj=MWjpn
zB)P4&OosNeAa-AInX?Y(a6b)JNz0|9r-N8d*mU+^0$-vM&PN`tm<Q#{=G96N5d+ej
z3aJ9V=vG=9CMG6&pjozEoo{K7$t51wl!Tq_#Pkk9oCe75#Fxzng@*&{5P(j#kgJV}
zsp+L4TtmspoI$F>k6(mVHESe)V!OE523r<eKMAyi7i4j^JphHw2zW}k>?kBOG!)rM
z!zblk*|(>PTyKBJCQN@{e1QfT;o-C|&x;7|Xq;`&c%ILFsLTJ;J2w$Xm8Agx0s)H0
zPdtuZ&b5Cp&`YEg{c7lDq#SuZr|mD(@!-BwaY^D%a*U+p_>0xph!$@u+Sjkc-hF(P
zt<*S3vej(pJnhS-f+_Ik2|hp#%KB;j?C~fM*K5Y%q(n}M&sOg-{mFENaPbS&vYGQL
z9;qrFx@%y5_^eC6Z(@8kH~af;NieC2Ma$}jbv&E;b5fO!K|MmkfS?q8EgYan(F<t9
z%cw*CNZqT(rW-n(Ov1i@e--(0x>P>|+`tE|uNU@s8krKM^V2X}*2Km*`+BNayY1aQ
zkR!jID&b0Q82MbID?2mu_2v=R17pV%v#_B2U*$i8ii=rXw<sz09^mY%(@q;U3t<Vt
zr`X|(@4!J8D{;fNLgxe{i+(Tz=eEZ(gKy*xs8Y-HVA@p*eJwfz>AAUhlyiA5MZYsE
zlkZ<>QgWBaXJzRpHml@_xQB*52?mf|_{zcA5-$kKhi<unx@144FFXJA1Cjgu)7Qv}
zr6ntLyqU10!)I018qzHtn%>?~HvK}SqMq)c5sTNHDyjtp*2cfPKhM_jmxS~&Q~Q;a
zB#v_fRflmw`}4}EzR@_{S2Ub&el<2~hVQkmMTIbfP*5F`?m9>Py`>(4$UFwnR;CUg
zefOHIRaih!cdOq(?<75)We}r~E+J)3f!fvqMqq;wIdSgmNQ>aj)_XV+LkY<oSm#9)
zl!+W!mkV-F?_;9%!)mOYAhzn056!fRtMY+z?xOPiI^Cg{6GfULb?$_1Zvcwq;3Pd8
zn{t+hr$-$bIVqH1Xz<F2v#(O8<ot9dgr!YTa2j7ZPr)`KmA}Chp0>lc@3KEF$wG{;
z{H1vT7{q34E$1seX=#2$DE<ijaa6D@ZQ6O`p)P&@eMYu~j+=B5aTw+9-ub>rdu4HY
zx+1WXHI*7BohD-p9+fD4=C2m3^Yhw)B;I08NUmMcTi@mrl2RWox4L?NQhY=`d0Jwu
zDokhM2Xf7D0NFny3y{Hzv}wNt+08X3$0yqx+kBV(6J=RMaPpYSg_71JvGg0>$h;;{
zPH$?&At!o|ud0^6H|O8A^c24yR1Q2Uws=5hCUv0y#b6QW)AQ$?^2tscL(%Z*a;miA
z9^J6sqlgaxy|e)oe|+OvV|NUs0Pb|b%MCoQb7gXWZBOvGwo=eoO{O&1CLeDII8jCH
zQfeVs-q7IVkhR01>aPhn2?}bh`O<Rek|Q&~=dlU4O6gUfE8a62S6l5J8hO(c?hhF>
z<O+IABqnFA9VOnPJfI_Qzgk!3DJYlBQvBwwz&P9j5T}R8GBV<GhxUBwFmgT*qNCN`
ziDZEEsHc|_oUd5M#;jpa#sf_2*TdKhpiKah7U(fNwxeHylDG?jn{o=E$aG3-WjA<p
zUIxd>$Cc=bna)N?OTX5`HJ|x$hUxE5GDzi-8g-#|4j|ypHyu@r)XyjdyfN?{`BQFD
zpnk*h@3#e)olRgVc{v%A$GK*?d$ZiW>OBzK1@L7r4$blLv4fjid1dvuRn3#Or^*Kg
z`h#f=bM}k*z}}+Zr1Pm`*ZH*l5*_Z+x@my1B?Q_(E>|W5oo&iVz}@#d03IDM4@wIq
zz1CBD%aU7v@*O&5V6Z!WaR0*x9dU6<bh6IIpfGruO&^eG74SS>7_f&|ukl(BPFP95
z_~o`&C-K>&O)i=3MdqD*26K(OQB)#mA4KWBvad9kmlZxfU*nzg4N^-CQWYgSJNxU7
zyo0~r|JvNf!6J*gIwE?kQt*)_w{n0xSDrA2$QtJfDe4y$^e&<DM{$L3Ps7zRpOMFu
z!aUxcO(->$vCB$yMHH0kDZ6g>(`L5cFA2mtVK)){la}sl-`BaOnum7TpIcjD7<zR7
z=H~;~_#0kbh}Eq70#E|3e~n8m<f!pt5pQ$h<obYqQv>);ZAr2{ynd>8w9){fbLG%8
zDc_gpjT{>~A-3jDl8H@;N7c6sPOiKDI9lm1h|cX7c3hrY=~9MbVBzEJE|{!shdpVl
zwue`KwI#WM#`Hd!A1ReT(Tr`BLMm|i=zWyPXuu^RA_gWF^kF+?1{Ht=Admg5!%<lk
z39B{-07QGzHeRHA0x|UYoZx#AV?W9LxwVnhmqowEyTc1NkjtsP1rBMWq0MsC|1*X3
z_K=iBpW~+vp&5Uu@%~V*wOJ!pq(=O5T9<nT2C_r?`=<ku6X)llIwkTS$FHvA&p*~X
z7)(?@+Tg0gNbpU7lVIHT{GW9g-F*}1sh<;$xd#R(le$10{3R1su0?fv`#VT)<?gk(
zq0R$uYXBce#bb7yFe0AobA6_3bL-TjSvr4n()a-jX?Kn+D^y}MAJVUO91BMXO>GG#
z3|Dc;-~hgJFRJL+>MsXv-sK-J_6tCx`Q^N!7W{~eDx&bh!D?##PYn;~GzhB8$9BR-
z<{&|rP57U>SaGjkf9NLo6)ZcutA{`8*jH99(316}<fKuNOU>*PNj17!aeGJ`f;hf2
zryg|~I$#;9^YU8LR694j?t4(boP2L?MMbSw2v}emzQpur!u2JBG+mKZx9R!)H&3|`
z4Zie|cltB$Vo(<V2+u#D)c`WErl;HfTxVaO?dWRae3NS<cxQheWU=|PDJ{(|-xfFq
z2FCB_KpNA*w~C4p=!7hj=DByE=PZ1NN~CV(Dopq2Ncus*10R5TJHMZA_0RYJL{1h(
z9G#tkSBCq-n+TH8Uv?kALGz9NeEenT5%eD~;?JA^N5a7Wy@ce?&Olg2cX>Yi<NJS;
zVgXANM!vfes)KRC_mu9hh{B6M<yC*TKP4c4w|^=^{`Y_W_awOgjqLJ&?C*j7|Aev~
zJJo!k`@17}rlfD=>whS75B2|MVgjH2x2O4U|M{oRqKil-R->rn(SyH7y&!N{P?rRd
zRiN;NVHhvxQ}v?VUBiyE<&v(Wo<x+8e>saPOQh|*dxfLzLhnBARS7^+v$bKgQtQ)%
zczz6H@|ho$h>6vG?sYo*W$+~cYg>aWSaIvbnF4|S-I4+8YmgH^3;v#<+d$7`rP~(<
zeCf3xt__2(mday;vn<W!tJD7Fb6<_w0?&|+CF%$+p)!k&$RbnOoh4&<<-4<Q=5`Eu
zYfmG!y4`CbHd=jBY?`*SzAv)_BFge;@%8ISBU9qW^2EV$Mh+!^e-Xy8IraZ1jg5Kw
zW)_w&qc9m@yoB8+Zl&f}3+W$ZhEfs7>MG5ZIx1n_2_#?QxO>Omqs$Dr9eJg5NQYWL
z?SW!8>k+=~yl;gW51u_AD2~+@x~$$)YWK_C&gZD7Z|MPY#R|*g%1aOdCfZn8dJ)Y`
z-6d?R1}FJX92Da!6Po|f0}x0%urN`OkO=kDTHM(JiegjbO1+6vDRwsu9Lrlq=PrJS
z1;xi>V+sQmjty1vMGtPJ3xImtj%S~LzX_GenY5}gh}{i9+L)PHb-xMyGDLXj`GiA{
zO{!(%sE$J4_#b2&|BUvuR>CSt>{DeWbqGPQF#T&<Va}1^x10JsxSEgty=!3QJK<bY
zQ~*;B39SCR-h+ic`7S}EH&Ifq<#pI^3)DeIw0?ci8mr26l1Vsb7~3)jq)!=DIbkz*
zziR1Hr`NQb2HoC-Nf9JAF8`DXmPkvAB)R41prf6dnU4y3B5~JHv1<pJNhK`(_}tli
z*!$mx{H3WJBQUz;1DzDJuIyO%w3@%l2Z?{uFJ3c4$~&#^V?UAj3iUIHw-b%)i7oq>
z3DnX*>tZSH4+9W$hU~*aJY4o0BSoH=bZSe(F9GhFeiNbg0KB8CO&RhgzfiYA0$4^J
z`JZQN!3fl(6EalH)4)NUJeDO$H`^lCaH^)K(UjVm>S>)C>uJ~W-ZN0Ex8`yJss&48
z>j8)@Y0!@xPOr(Q--1G)e2^f*k5*CATHe_j&yuGMNT^#4eeAZeZ^M<XYr;i%uRt!t
zkdgS24U4=!Me+agGl3J!mBxHri!ez8GI1i6-VWh}9YGVhOZSqa4b|L$RcfFt+lL_D
z>v$B*$3U)Xa*w7G!W$wx2;_sr8Zy?qigivaWs|3JbDnQ?=th`6HZ`hHE13j%eCWC^
zfHbFkRPceWa^rDm(SP09Zf&(%>ZbP+0meq<=?z&WmvB>KJLBh@J8swSihX+4;E_;E
zV}!oV_62B*_{y_k^;sN6^YdI4>wbA0IM1WZ(Tk50gz;@t0cob%onsw?MNuL!$+l?V
zDeix04;;_`YW;U90Vs}Z16&8iD-7;G)U@>zgV1rt7@*Xtt<oa!&H>_ITMAyY{trH_
zQO_1Adj7L5ijl<rRQQjqnD$k6L%z2MOIzcgbr#Wx5P(1iicQ!2B7=be%UmW<yNls{
z^Uqqo%08eI^g6mn84nF;5j`g%@WwX*{G0g2iyr4&o+LGFt5uR|i-RUws6X4j-=N){
zD__t0%VfxR!3Io;4;>>_0za)LY<aBuKhta@>?LN}0n5$SP_Cntg`Y+Lhb%u5l~a_0
zxEo|Kku+e+=jeu=0Qn^CBvY8I8KzxDvhBvP(uGMCYn_{8zDUt(KGY#nE;HeEdFk6l
z+TcRHyG!h_vX0P17z-{aB(Ciems_4Fpa>B9ZoBQ;2)HRTAAbWTW2_9qzz1z&+F=>A
zS!TLJ#<R1kTjB%zS-UWlz!1;u@D*dRZ5S*l(17W2Iley%K15;R1EGR-L}j|)fUf%(
z-5@(71>jSk{p$3&#koEu_go(L1d9Sz6?_#@xJ|vR3wt+3CB8q0!=8-(Y8bz*Y5?^{
z%&`7)Z^pl(blvCu*vu=|+|pH+76Mu<YNFgCuC-mz1){p6!1*TE%EaPY$OZr=yzh2D
zrv6taJgMeCzft7+iEf3}SW#iVPusa^a|BRyC+c%%a8XJZ-E+3k?sBVFTl;PWSG|ZY
zU%%`uqRMxKx}ym9@gLUKuL$9JG1n`_+X-()>IFgyE!*wW^wTAD6BtS<P_2&~nr_dx
z-C3u=-2h<j&>Hsxgre+_#X?i;eo1<Igs3A7%HxV%bmejINFUjD8vMtzTFS#TMZ$Ab
zlW7BM(G?fwG)W@X+mYgM0PDNAYO#=|+eIma+*n%&UI$MQ3wiFELb~KB^cMs%A77F4
z?hV75Ja^{zgp5q5;y@uiYd=;P1_4DlAWGT%6CRp)g8evzY2KvX^7g{{47h{5R$A_e
zZ91@*D*|eZ1X_rL8^)seEFsixE9x?epyy}C${F^?(DgecX`S~L`=7*+CbIK^335mt
zn9pbJ*f7}Qcl$wAm2(iI2yGSc7-nW>ur~%SP9iQTaD^NWr@JCYu8Mi>aVH?!T201n
z*q~--zMHEsA?Q?c?RVmM;VG77e|ssYKOWVGQk{mJIg^<t)3s2v{OXBEo0Ni}=haOS
zu9W#YUbL^_jkBv*x+k_zx{&=*Up)fmF7{gB!;8fOF%LCJ_E)cIO6YBO#$Jup1C8_Z
z;XT<Gi_K3JbS`$%0f;dIYI*tPR)p6MH&xKK*2fkT3-fLI=8G(hLpp#4@G(P4fPa=v
z7h0a3Ey2i`TGZV+J30iZ6wRsk*Z%lz76?Tpz45t^PbuKlJKbGwx$*#7BN_0(lyK*H
z^7E;OxcT@L<@V@`1WqxYr;#~1{=my_`h}(@1FF`f%e%&Us1+yKo%4w$chU$g)(S-{
z$?vx;1`x;V@(dIZQ8HzoBqa;#^C@CO5(_!+s~9OCxvO>!8J52ipquC!Y3l!M-rwli
zJd}<U#{{wP4J4iEHn{J-*$I3tF<xx>F^udEFqh;P!Z>_6@eub#=H}+KfAejkq0$xp
z>iV|Ixyj*Cbb>DAfc4ts9e^Yc>TXUtNOIN9%3NV#Weukmi%yDbGM`e$0twL+8kT9m
z0&Lw61TNZ;(Jt`9i6mBC_b@7fi(8Zw5LJ7_{j~Ye@@DGzti~EsI;YZ=970YOB>PGQ
zHA@0?w&|H!mRqoAa$K0c9#Hq6gDvfDu}~-;e}|lR*J7ktxjry!WoJddK|`r;Jq!Ra
zT*(XN%H1aQf%h-%(5)te3b;6A;{qO=fYfW3h8~`%dSg&`cehf8Qd1*4jSj>SbdZ*s
zCr_ye;4-FwR8MSQ)JY&(o|A*O@ZuN7Lsp=qd8K{LsVjoi2i3VZ>#94TTPKmD;ml8g
zC`5p8ky~Pwis(qOA^mLK(E{;g21R2N<K-Hiy%7_0of?}$^y@|Cc0&DSQIymc*U-R#
z5YY50pY7Nqn&7{DN~T^%WPQ^|+EHqj%~X30tk1)s)3aKCo@J(Nyqij}%XK&yKO*bT
z1U%1us?xd-)`3eUtO4_y@I!$f`hOJ<RE&{Fk3}rl!t0U1g2J=iqc!ee>7GB~?6MUg
z{tF<oombXVySptA5q?1Zd}q(t24rup!DPcnOpIEU&;;>&#+hVG^nokF5@_)f60JNp
zuGS^REWjNxgec(9K*`UCJ36FE5W|>3MOSL|paVZq^gK+kOuIpyJ{n!)otkdHW;Nm6
zw+~Z1U?X8O@H}L6>KX*ob<m{>L6{rP*X*Sv#$mcxig=KNCiG=2o+S%8(I#?n!~_*Z
zg1dqF?%l0ZJq^=UJ$2x?)!9-T5O%Vgtd+0IUX1}lqfDiNKj>b)0u0Sm>9b-(l?IKc
z_y|1TizF<}FMl}Y9Aunz?rlE>$$1avNTKNVU}uK#eQq9}moy+ya?2MhiPcp#!4f$j
znj%57G_sPnGgTCu6gOWX&dhXjQptAY>?=eV-4%YVKp#C-rU}}PaV*nLtH=u6odtg}
zCFNfD!u}&R#}mlv(<qzq-cU%$%hMgBe_1qXQ@TjZ%)%t<b<_X-h?dmYYVzT11KMFm
zH&;ERvqYCSQ4p0kNC|JUidf5j%|()|Mgs#gu!yjp97S)^%adv8=qys)X$j=G-uMt4
z+(Q%TaIk-N<!?Y`hl}eb@!8s1UV<Vn3$*U*3DAU#JbmgVv({r1yFP7dqIhj)1?-m&
zx)jr{t$S`*;qLMBbJfz_mm!+*Z2D)1%AbMORKhaQR|>v_<KsKlr(B+xRUb^dUk`%I
z1Q}~|`j(swT>07QGzjtIPv+VXu|<59&Q4@Jg@!d&&nmR44_Zbre48I{XBble0W~$N
zSf60Pe`fa`_;&Xn3}A$eg4=%XfDmawB49!6v3+G^hw9FXH+&I-JWZ+mSMcC0klR7N
zE}$x9H_N@+9jPi6o>p01&Uk(OrK&26?Fd3BwL|jYfm(>S$Hc^hG*fKTaAy>gO*{Ug
zArF5y^#I?ZESHlOI<&tSSksK45dCSCmMpZprn}qTQw5;GdVch(?-(??@Gvp$_e4)u
zCf{73&-aDceq@E+yKsg%IGoOBKYp0`iKIbt7ctE<l5n1jw39ms4lX#K2Oa3+V`hI;
zz4OjXfWI^z88Ol4>HZ?_IZyLJmzaaSyPKPt8}ht9aVBEExU^8a(p#PjRISDEqQ#KO
zl^;x>7<Bg@DxT#=fQIJD*<B3eOog~EH8tPY0pk--;j!OGE0S-f-mdRR$+^73PrUl2
zuAu=wIul-R-ZO^lu{ODFsoXhHmUp%F^3rIS-faFxWRON1K*y%jI6E}N$5Bz{Y9BIF
zl?y}$Hgzm7cePbnL~Cx{+JnNaM0SFu)4{hejUrmz17~R&!6|yq%!0NGhvm;vK*|~}
z?i<58ml;7CGBHODH92?x_w^n<RxpDFIRWmWp(*%8#~R=!<kA72+vlp8b(D6J7$e4e
zJX{Qq;h?>CXR+&2aqkA?yeFNANOX{}z1+68hEAkgR<g00nl=4<4r8t5{yc*w4GmGN
z)fZ!*h-s`WekN<+K0GwJ`toLhz-%z#bUx59MOtv7z~q{E{l|crt}x=x4axoc7ZFqf
zuUJJ)+RNLWH`o(=KZAeR&Q~S})!J*nlW_7}S&2@YZM5A;UP5!(E^jT}PLi`XUbk)x
z?2dS)_C$ByaQbFcg*Z<QI%45bFVvc_Z)0NYH#3;a8Nl35qD-v~ZWdJgqh#YtgTCLT
zA$aIt(kA}9?Q4VU9{<Kl*&2?MBKuH>tVT|bsVE2dE<T;;BoZPPH<)nt`(#M;HNiu)
zR$a=#S~$70s_^nwUM{t;(@nj(S%PmO2dRMfFtsmhSXeObA+qYCdmTdC*~czY<&3-&
z(vyrwC1{|dQR_U_DjSb2AN@s(8W)iuUR_*#<D$|Fv`s_LEz6U}0<~>0R=CR+1$rOO
zPB?P3lGl9UHQy60t>55gQ%GTFd9FGpin<YEkm{NjX~@aW9YVW~#PqDNn7yj-RQg96
z<DSebf?LjmKKFT)%i`kEIYGmef#)PQ&O|Q{xn}81_f2Y?cX!WBWRTa{CVi}6_vbU(
z031$529cHJ;m9f9wTrX(GAxF3E-<&*X?a;Q`Yhg%q*l1)&SCo5-juTq8-%|@u(K<T
z-*df$&)}0!18wFVl$R~Mc4J`b*1TzARoaBlZr;*MEK{C%r}1d}L?_G*byafWtG~Iu
z%n6ztPv2mF3&Usu6H`&m(Pr%YrYkZN@kEUx&q3))qO%Zd5uo(R_Lk4SiDx7EV4aUC
zhEk~d`aC%TfzS)??wIiG7&V;tIjBO4Ug+hGb=BHdxhyp<F1|fEZTtOIWr)hg>Oh#v
z9=(slD^_{A7xa=iMD%(!_4QafpP}znG}_tK(UJtd9%0xlzd1isJ-6(T(A<2n%^+04
zPfvdgb2sp`S|<w8&H?mcwkoMf@z3Fgf0h_he-7sqIMum+F_|QSDKt0@tkcPAg1qX)
z1WcAe2aU!R;lMywXRjq$HByD)fE88sBU2o_+0@)C0U(Bn)$x_Jer+^6E!Ob3sz_n+
zlG7qEz69kL7S7JhJes<X;nA{n=H;(q%3e`*`!Q=|+eNTK>y(;3P`9usI`L}$E|9Rs
zNSpb_SCcBj9o_uw7Zw)A+{=^n7Z@0CiWo73iTEiLR29#>MI(kbGAQgGjo`eH<NUKa
z^=EsF_X#h&Q5aPbom9zrFMa4o=qeQCAS^QD=9aL5M}^Bm>^MDzessYINCf@au7)uA
zt953}rCk?)by{S%ihqZBEp0ue5|yOgI?Wy<#3v1XMeyt6-!E^95iK$@a^BqLWmf)v
zE5Y7qv9ZzhPT+T&Le9&Q@Lh@a*7AP?fLHeYt&Ufr0l{`p<cMBC??gO-`ElzI{X3Zk
zSVa^9^;h?>xFuG1`u5=@;443>3Lgrudq4h$2)|IFFuHnFb+RIZ@^#%M_!jZACx1Qp
z_aa8{9Q0U6xP0sCO-k?nl5+a>?{6QbrCtOw8K@QyPg{1$|7XBbB=in$?C}-#-B6`F
zUfc_mf3tEiP7OW&S=;_|)Ruex*Acm;`8;u-w||WBRF3K*uj9Qcz*(1~%6b)q*w6kG
zC_F90;tzcQ^-xL$o$}6qe96qyEu)?YdR>eqmKpKIe~@mN<(pq+m8)jRX-CIZ6aiSg
z?W}?h7njAJI=qa%Ybat2$`c<J@HZj~T;f~-w$Qld;QZ1xuXBVIw~WcI(#t}uBo%#A
ztr{6^t$fIBe$%{`VOd{OK5ga~jKS}ZXh<~g3;ewk51k$6cs*;D!n4RjzgFpZ^30pv
zsijLD@j=7p%v{>u8)e*HAFN4B>kyIs-Qi`6W5W*>mjQ34YV!{I$Hs)1??IE440qAm
zc?wpOC8~uJtonu}xvti+z<VW^zdL;gDz|gE;chm+TfZT4NyHe_x^5uy)VDdGZP$(D
z!S$_XG?A!_{FiSu)lH|H^j)#Y?G{QO<E%i9i~oHvFIz^8ah}DQU^VJG(|R2?zGrnO
zp%}sr-_Y-y&=<~R9hl%r|A<W**7?9Q>l<uUlxTq!nKNNUPPQ5zu5u1e+^KAOXUAS)
zQb9E^HT*oR+ACINOhWSsAl&j^g~`^paAY`XqSrjV%4F%8$iLT&(Y1FHu~bX>;-?ok
z(&K=#^9*-oGM1EWSCvG+E-dmjZI|5ej=c`LOw32W+GFc?hwKoA*z)EpR9?h>k$scB
zk0FCXN*c$`7NOKR2n0%GXJ>+5ZEYCpe;g`zFFzOq)I->tTUL(tIk`Bs!Cj>yx$=pp
zgSus6QDHUt9~Z_O$;BUF6HpUAysxHjdxK){SnK1}U}hX9dA4=$E`NkUPvddr<0;O6
zuJ&R|1hq^{xo9zVO+11_D5dD8X5VUy$<JBE7XF+!TMB8HOGhBo;CJr|8%S8oY6CMi
z3BltP^2kN(RFsq!H`2ZJT+X)h487^1Cwy<WQX2Y0)wU0J#}v=xK6<Dr#{Q;(kAw|B
z9Sk!18e62MJp&Dn08m)ZVCcxk0wSs&AYt>L?Pldp_!xPN@H<&4OpA$5xV#t>r*ZdB
zi4!_oxFp1u9PIn!VDLOP(X*ludWAIfwOU|{3t}^TJzZ}-B+@e!f(D)A+ZBJ1cUfR$
z8)-(RHCB$km5`wm5a3CEe|OO9?@54+)!GRn@*qYt48xaPfNu9~?O+g<Hx1O|^vdS(
z%Ty2J*E_%GK__V;XXJeB`nAS8xvo|<X5EJ)2QXCU4|VJ4sAzB_%n-EJF%R>43TQr}
zZo52%-1bV#?1O^sxHj65I+zc*t3-i#awT|eo2TCMl5%B5DvV6j;jP#S7+=}*!&+Cm
zkI$7$)Y})Ev-M*s5%X1qA-3zoJw1^@YzF;CcPXfw(C60&P11aV?%t?9JixCgDJt2S
z=D6MCGdMXrGvhqJZLqhUfua_dXan(fJ-wI5XR6XDIJ_TLO`I~M1I>RAdq|ASX1uP4
zkRg;Dkcno~>%Q2EHylb;e1!XWd!cMdmCO8%v-7KTA#`7vZ+3PrCg28<iQ3GLOUuzT
zqbfd4B)K}(H-aFgWlc9<o6`@zkt~)Y8l(zd<%|xOFqbK^Hw9vC3}OC&%P$!rrw(xI
z;{F*pTbkJfio&TXrrLEvw%8x;-5{BjX+X!cpj(kO2`zIUIp5aQoRrk)2J?kG>kBob
zoHT_+MGY>OkMT*L1l-8R8-h<#MZsPJ>Bw&(Atziz&04CevJwkue*4Sbi38ZlWMv0-
z=!3RZOGV!1+W>i81Mte;ya<TpW(QJU{&U07W6jtt{IV%%bITm9sit+hGbHA7vS!Yp
zkb1k=RxiIcv#?;_yZY$Bm)m_ghO|hd%=Rar6aQ3~eB*g%0|-g!fllSyKwXr)&q&~Q
zl>~pg@#-}2g<Ehp9o|&oo=3G{pks@shR+-YXQaZZb|!1M@b&Axb4p9YU&r-~rMr|v
z&^t)O&M-<8u$rn_tS2r(nn+?UEFeUadG;eGq%)M_Xacgpt_}SfG)SM0KHfPn@L9Ti
zCQCA@rs;dzF@?8SprQ-c!=jG-*|Aos#p2}f38DS(Aog~%^~hep^GfbErw_=?4uHhx
zbvy<hKgfH|0*Ea`sCk`iyu2ib(jK9%&q#S)9Ew`rYJ*XA99h6!Is5vR1`iLJJ84*H
z(~+RumhS0Aj9(LBOFjavdGDyocL!#G9z~~N<6y^5&%9PI?7Bk2tK1E_W^RFCNM|?|
zur%At-h6pm#olzg*@l#ipkRxhu%D?#ZBRE`6F!rcux~s+{<&l__=?W;U^X`B>U8UJ
z&3x(`{Yq!JkMShe2h9)^%A3z_mVkhQXsRjI^NO6$*3r%BcD-n5+Qv=q+Rg9It@^}-
zM78CKhN0m?B3CZ{$l|+us$*=$@N!3>Sy}-K(LZEm1YNhw56c!}n9jtf2+pa;cg6Ba
zIrQFmW-@LSYm{`(;QZ6gzhHE=tpr=D%6((8d5n#1bo&qwn=Z3=+lpp%>y*9m#>><+
zwkkSHC+j6mqFm>F{^F^roilCinJlR%d^rLh!zRR_B?o@Z5ZQT;YmuzTR|E}$iE=s6
zju6&NxP;H;C4;l5HyVbw4zwB}M1w2LDd$U&f$t6_35mHGrM>-7<*3v8fm=mIt}W=5
z%gL$3LZd0XN^xiwYTH$u$i+f1)ZPCh^dTQCxz;3*e?6i&grv&ZDKLTx>5jeV5S$N!
zu%-LlELA=$YPvQu`1A#hPV+TeJ<Pz9C4bKUg_@!twWf)QzqY;=_=Kh)Mqk;eW$V9w
zcUBwsRok4keG}zWDZ+ihyVba&)&_AqT4c{#B^ucF=<#C~Ca9H;lPJ%C0*e{Vi_oa3
zQKVSX^<|zj6*XT#(7X?_jTK(Y7n|cR3#4t-n*l<k6u451L~@DTMs2yQm+@>IkJxTb
zAcLubPa}Z>4L+uJnhZ%mcwIEzJS}G=OVVbxu|{6)bE+J#)#{rN{qNuJr;DW<UmdJ5
zW2&o9PztqUVqxKr6t0CN0#ugSPj8+oYkPipkF*1Zs^}h|YUFZiYThGHGvdBk=})Xc
z*!PJS5RT65+(~{YE5!V+n2^*|9*JSb3$x$K$*&hv{u&RDR~6{wz!H_hwPVQ~mDuED
zv4i*pyZYPBNLq~&eF*5lM?2M~D;%-HAQ#)SJ)o&n7$c#kshc-q0nC#sU9ZE<RCb1&
zP_bWsN38p3sHk|ARNJ&h<q!xt+Q6S{lEm-p3;EvkYzWkQu04xAXhbT%FS~W}%o>mY
z`i8cW*6C&Z!s#AjY@(xMdCW-s!P@FNFl71I+Um>9`uB{b$q6RQNr*q7qfeK;v>qYQ
zPTgHC;7V;k-a5C^&<J`QI-uKMGAO3vhkTGzB<9`m3jvl0rhVFWW<KxTeoH!9`JO%)
zdvWRLb6GNC(Fh~@Ys$V1e_Js+9SJ;Wx;zId+pf?NG`KJLob0)aS@@s;d!WP=3xu+i
z<>hTZIt&Zh!|cdTTOU5c^|D$Iwf9Xx0t#l=*O#K`{$0<L<j`aZDJj+q@NFQqZ>4vK
z70qKD9D@oM{FC0;%jTQY<0AVf<N^TO=E21^`;Bvx+V(HC+2?x%PZt+*oV!%>qUU{1
zcy<(5R%X#RWA5p`M+10bsO9bD<7pF=*^t-QAVK%-Lxg6!?->G_?sNVuq6_4GlVEN(
zM3Y%zBDuc0Hjp5on>8{U+~F+dWw^}<9<~~QC#NQxnADGaw4N-SEYS?^V5y&*_I}L2
z@z+DAl4i*|I-h6ea6Ugv!#4CCTTOn==R5qVVs+4fP-xlY+IPPj=RsSIwP|T7+j}Ef
z!$o6mGUlQ}U|N@~^R8r4O-;=U1e&EFF)1n4=v*(Sq+r2Q%~9d&CZE&OKe&BUR9KXn
znj#nNm=F`I$uA_3hzEK}ld7O;V6e5eW(2$a_JZd_gR%dyok{|?G!Z=9y>B9A*B&YV
z@xw@lD6*dW$%AhiMFXsbG?^D4ef9eO4okPFsdgZ7Euon?qN@Qt6pQ|dhYNC75cf~(
z|4Jh9Dz4J_!Qs|=J{Aw<{R(%qxfEgfjE$k;0etp*hcOQ!u!iRM<zT~|91j|<Pz#a<
zBCBzM`bp*@Uj9p4OLkd24)vm<26(##1o%BCrz-KW^GmxKR8+g&j8vun<~snsH0$a_
zlJ#SU@2=}Y*R|X>s`@r>F!>vGoRvl1@^wU5EK3|kh;^TNK~eQ)mc2wA=@Babrcd1G
z*I~*hWJl&FU4k|u!rW6H7Gkk@cvfKH;M>77p$Ht{4=)enyZ<UG{?=8q`!<~RY;vVk
zQcL2L<l)|tq+)r7)Lq|Gi;Q0#d$Np~M-d@juYR5Uo4b&K)n#jqNcI(w&Qc{k_@wJ6
zB2-LHC6yta+HlzR+tYfAkxd`k@hNuk)8O}D;{u}AzuxPgaw>&#0q#}G;LJ&_r~+n%
zscxM&9NFU`d*lPi;N>5why0Hri@W_^SELQSGHtPaSAFp=@nxG<)?s|PcBYs$%MUOe
zbuk_15F9N37Q#JUtkX4S(6DefuyF6sy@P(p$5)$7-awmced)gCA{iF2|7m*)<lkm=
zblKif-Tu$R{Vo99<4xQwa+$SeQs7a+=JVB}6axS1jsXcLI)esI;G2))-|#!IBB+QT
zd_>@8Nq$TD+n4`L5vi$hPo$)Sss4P7>%}v&cb4{6VV_kSY?Af<?5XLrMfT{AZC^%A
z&#cPa(xn9<?v+YlmGHqmR3P;8R#~j3n3A@Nb+tNACD!?AK`ak<_cIAK1NEW?cg>e$
zergllM7_QzUw;8&@<pbQ*p1~;nUkvZJ2q+<?ropm5XWoG?@w&a8(^>wa(2RCk4c|&
zW=8$cNu=PxJ?+Ng_ePc4t9aqu!S%TBD8P8Hj(YyusTH1%zP#1M7P~Z>iE;(?GFc@6
zusNz3-`zP%h9bV_t6{y@o-bl2T+?r>^-4xK4Lj7V1`yewmgfBDD6bU}?@FUo*lsJl
zlee1VLuAZhxAI2P^_D%AXCSd#pWqG+v77qaJb!X|G|Z`{_(BIW5al2xVqc_EX!ZGo
z#NOxEae7KzmBU#najAEF-Vo(9m~l(4_XEw<KGOA4Qzq&4A-wS6n4is@CpYbNZ?o3z
z%;g7b2qm;c*caUeAi^$R@G*I)9TeL8Ty+T<-kc4R_?FCgZKj9FGplcxt(P^eO>7O?
z1r6w7n4X2@t`VD)wz)jB>Wmz-tTI4%-YnFg>LptjjwjWNu^>RJEJ?(|SJ9#8a*Nc0
z*&{$QfhADzb2sLNu<`wb3ZngZl5~o_t^MMOEw=S%sJc&WW2%9e7asl3)4QP|ek%SQ
zYr4o356j7fYd50(((se@rk2&q#b6>%GQw*Y=nB#8OLNsK6nJhZ*9_~zBZ1g}xkzEC
zi2wnOE!eDNfA%2&GfAVnzkYPRGY_v!s3-<Y3W943?Ubr<SZfdl?{|_M^jqDs)Rp|W
zAi-M=7YX$Ykm~QN>hypLF~<~&#n~^ozw-Qa5RP7+*h<p_4Y(iOPGS2bUB8zteLoQN
z1jpN}_s#mj38|;_YZ4K?)M2N^W+2LO{27mmWg4okuWK?_qngV9kOSAlB?z;<^Xap?
zW<a}5PC`juA2l*Yk{i0;e619fr8Y{(W`(G2ds*TgPM0Gj_%Sz}^k=MYo$Enx?>2Ng
z|K}sxYbOB;8bL3?y_Tbs2j42Jz157<6-Wg%<4P8oHS<L;yp)@%97O~>63#2p)AfkJ
zXo^?M@4$jx5FCcgLb91{R;&|jnXmU68A3OAwpr+Cw81OA1J};%BoN#q>hZj)bO_vU
zWuu-#VTjE(I6u4C3f>g0s7UI@%hOP5V4$y?o@#hHc|zEX0`E1j%gxswthTPaX5rl#
zuP@e)4zQVb_O?K?`8B2e5w~x?c19Fcbsc$5*$b{q@!46h(_^L@G<&x-#f09x6^r2b
z2D<cYNIXt=&+&jasSYWSvk@I`ol7O9C=P*rI`c1Oc_XOC$4<}6#BFv`u@sW;QV8Lu
z?2of$wicshB^6pPGGIZQhXvz^z^Eq=Od<w3#IIam(tK;JbAx9%lQ<#tDX;0;Ype-p
z$KUTb)r$6;;m(=myusGAnN0^>T74<&ntloMhRrb*nF3&zhsVfS*UeC^S1FucZykO?
zKIFuxt0gn-XKChb7_iMZUVB)6a7{kch?YFFF0{c*{W#;iYU64v0@U6%G;)H9+ZC$K
z`Z89lDGI(Jg8UG`padKjU^rpp93z?zVwAcM5H<P>`+LFp8uV!EwezUT!p+HdK=|U>
zBTNmH`{!gNg}bX0zc<qWqQmh#CL>TGJ4J5r)WJPT#4|s7TvVue)7xvmJrY$MU1?zK
zcts%`>2#*^LC<A+bp)l&5?7qzxKx;m*<lJ4F>imGDiJ^J_Cv@E6coj?8#G)yE%6w#
zL$+3cqzp=1ULPPIo_Veo`B~dkUQh0MNGT-GFy4+baau%xwX3m3UVX;<!zxKk@mzH?
zwDu*Fu)|fIpEuQ%%ZuFIH9aWQdquQH2VNqcycFR|tBdN<w3%}k6;UizB2fNp(GtSd
z)qm;JlcJf&#mur$US`rTY4px#Qp(Cl()V=xbbIz{LKk=4fDQNb<Wo{bhk%f4KgLe<
zZ^5B;g_MD5*TW|j`I_<5K93v|1u&%xNX$bOKZ_zj+=*Rl=lf(KLU-rB9XQb#efIct
zR3ig0xvL6ho=v!7YWA_Mlhi)4=kZiSf3S92Bhd>9ewZZc^J2^tSbcX6RLmg@>zvnz
zpUDQ%0=B2zs?RSbR9FhDXZTisOA<}LzMVa`!^##+oY$BRNp?*N^{QWvSc4mYyoB*>
zXPh%NCf|VP-qPrlTbVC>KWB<v2OdUw7ZiNi$CM*;(mECLUguJdlIu%QsU9l=iu?>~
z<fw3GSoiAF^RJ^QJ%hDW3-OTvmFnXzQ`m=RhiA~OaOYE(*(Q?>ZZcam)zRn4WRuGP
zFwm8E_u9dPv&e0N2HS<6ssaHt$T&MWgcculIOWBgjQUNOg-anebh^4d&G!4|F7{iz
z3thE<SC75H(-JO+zo7X~@2P*GN}S=dLytV#OdI%>p@ELaZs{7U0c-?*4;fh^2YpRt
zKn)zXOX9u=AoyzPim1c^bv@a-+z*M4WjYI>lnQ3#;qpZ;WdmJWSj^<Jm6?x>q`}8u
zLyJE8H!wtcs;DrV;O+s#YCvZRNU`Z`t{rGtQ+7hdBipB5Z8vnfvyu;dkJqDL`iY*z
z+Za*(^f74cnd-CM-%*tK{(wcNs?Q?Zt3ESBxivd$V!N==6cBhUbf=VAcHmd-dh+IZ
zX#Yi0TB?Z&{JV=C_2usAQrf=4yITW>D9!|&p<Gi?onT@nIkA+v%u70vvP$Uw7$hw;
z<k3R)_47nmN3?TCxN`8L-$H^PPD+VDbpqF(4bqgmY$W<ztay)3Ii81kYRUxVS7$=A
zi#d6jzTc*Ky;WCMhxab*$S7}3!WhuV_IyZMx&x;G7c=B%5brL(iaIT5!@r020e$gw
zb^4Zo4Q$v<K$qG~6>DBC=lPS)bQ0U+BNx<a7{iM3Z(r?3?E;mZv#as`o6+7Rcf%Bd
z1>T!7b)jPBj>hFe>m6UirW)UfI)SnQfHQ)vu~)6_MQ5tsfJ+DCw(iGbSES3#qsNP!
zl|82x(bUjB87UeA2I~fk0XDOP*QA#Pq?h)>LQ6eeSbHK-{Vt&S3bY!tSlQ5gQqNL(
zL|Xl)o$;x3`GLtT9BP>0z`%#A%f@F+Vdrg{dB8YTJnQ{4D29oL3opb~Wm2|ZG2Io8
z7a=F-;d*{C*VmCZWDZO`2e5Q5LE!VrVqDv{dtebP<ep7hG@UgP02qRg26t<fUt((>
ze5MjECihhj+XecFmwOm$Gj_{3V{x@!ZtNp-iH5!MVs3kK!NXJoG5e*?R&ay&?YZ2y
z`IgWgPRgL3W1MSAI{L<w-`Um0H(!@IccO%y0FF$l(clgjpolTFagvrMIQOx0^q6Vv
zF^}sRQ*7sYWYUI|{hNNn%9*x-t(7S=mxHG;#|@4h=gD<xqg3-MeZCa=KA)wY5k*l^
zi-i&A9!r6Y5^oi*lSINU3vMc5pC)+^=DA0H`vdJ9g@A4NcCXRa!0(yNSuKn~s3yb%
z>EDy{jECB%DqlZ&*xfKe&p;h?@tFyqE^qBsj#)FebH8eIKpKB?WKyD{1mGqW7MFr{
z>VpAez?VvtTNHgpH?kZ9Nu+OkM^jo_Vx9}-PfttsIjU4Bn<9S#<Wn4<JD9q?Bz~Np
z#0^lV#Du^Xz_=sVtSijrdJ*avoa{!;Tvo`V?{71YUHnXswZW@|rgb;)DUD3Chv!TH
zIP7t3d|+Qds+4@6rrm6MOcH{ZGht|>bh=LLK*sU2#V5-TXGc|}{kAk*c`v#bc678S
z08=l5NTC(K=SIb!dRvBDcJDsFoijNv?7BAFP)s!B!^t`im1t-@NsG8*Hv^UsQ5!5=
zXLY?-GK_OlFJ1pV=rrHv#)C%1c5eD`&Uq?*p;X^Gg-eRp^oPy%cxQyzq^X|otGF=g
zG7&G-x>a#OWEfe_&;a;*U#|g8X%Qr)m$}K-ql~SB%1*&jJ09@0{O@1!3kimjjjzo4
z>(K}%rU*EF`dSvB9GE=TAN=jZdq1TX_o!Ly3t>e*bD@gim~hD~F0wEnUeO$J4PsX?
zs?wh7Eo!HE_df4=uoic@JA=Q9y0*T1Nux~8=##w#bz_F@k=JGp&4V)P(N*M7LD??c
zEmERG<iUH~b7SCu^9q0_PydQjL#Gs-VYd;zuuxpgeBU-idu#-is#v0sGr8$<^*x+J
zRTA$Pxflhi(PC^m19lfByp^jwoOG{iDEU^upE;X;W2HMh<PmM=MZzIqd)BFOHc6XL
zS}bX1T@U4&_Z@AjsPq!+{qbMkvJlG}Gx&H;KDWoy3{I^B8kVd-orDXGfXQ}3S4wu&
zu!bn$TIDJg*sxV=4^9SJp0tqiGUrrh>f}s5@hv8=8g3hSjdTLAGu5*d;$AX)dk;=`
zl^CM=nAC`4jSU=u+iINk9$xdv^=A-6_-=BlVYXU<t%4~D)$YdD`tHUa6)EuxYm3hn
zjKb6Qofi_I;JVo6_=cjf3F}xuLwgIT-P_#Xp6*?+-u;=zFlhEh+e)pFpJFgu83pZt
zRG@Occ911bBc!bsimYv5fZn$fo)nfe;KE>s^bKfMDHL9|3$;t$zx?CHbwF^~>vSX~
zG|SXocAnZY5TDBjSzD+jNdfRoMTlD)^-kx8bAx*j8_R2ZD-2)2qFis5hwss3<GN)%
zICF@bP4>0YUzBI%Q~$0}lq_PZ1-K;<U3&!7t_6ol11PI%9nY-McgDyot_ToRK)1}H
zrkazDzW*J~{)j+8sHDLdq0Ef1imFd(ta`!3?8rAS8OmM3_S*fY@Y$=B8c!8&@uD$#
z@@scEe_~4O#>ukD@1g9^_{tgv8F>v=$swmYo;8=!wn>Q(fBE0))UT`@#5Y~E4yD;C
zhzNE~Hv*MMN?+W);STKX@fQhi3V>v<@DX4hk~;h0%~T54Ym%-f`&-*AIEQDO@lU(v
z928UgQaD6M09tzYf^~P;({I85jt{xgJ5SL!%pH|il73&PpUrOrCTGI>S(AZXt~F8e
zz_Ej~F@E3Jz|2-B4?~3_10RW{n#ZT|X5>WF<B&f84p__jX9{mBh>6Yj%iqx(ob`Hx
zfEVs#xt?HYLJgQV+`~ix$HUO0U`2T{8HxJ%kZ<>3usMANI`ijYo!R3y#32(U;x4wZ
zlpx``lmNWl+pT0SV2B^4_oMpplIaOm1Qj)NXvi9+SOF{{2NqKn^3URQqwtKeP-x42
zFRl59eMW}pz$S9^V-xwXo2-aBKffqE(HDMiVWuI=*9UvPH<5IaH&Z_{D+>qv5FN%D
zkid{F&C?a>Ex-XA4TBI^R70aGd-3_Me4+LHoCpb9C+EoU=hLVzO!9V`J7WU1*~Ls7
zqZ689X}&9(F5;$P#qUZFkDPdHP3N)NlV01)J4Vf7U3ujiHtznJE^dFlf!QU#&pXGz
z#H2g$sc)GYbDcIpq+}D&$TWCJ=S@H&aBGqj)a^wfjWCJ1@!}#Wg**`fBP9*H45bz^
zhnt%VBba<v3>@+ZQNHpK@N&!)T33}(?CT_niY@rh=6?k3(q+mwgaiKS`cd8E94Ij3
z(uV;;(*n~W@*?koy4Qb?ZB!Na&0M{)rK&5~E@7q<x&9H6SEP-kh5#`HJWU33DXjIS
z#Gw^Ip&34Irv4Q@;tm5noh|n)bI!nla|dUp*F{l5ABcCZJ?m|!9jl8oC5y&L^jOW$
znF${G7&etaH9A+EcF4(|$;5t>uwfuha@yZmF{nhn!4G>r4IW8Cl=UZ4<1dT(Xi*2J
zc1x-{R+|Ut)i(%Ax6@R7Y`I}=9szwdN>w`vPR_(g+aCl*jiBx!IO<~N^j2h9A-%8i
zIaWJ&tiS^6q}3S(u5R9#HMgKurff(vq+zSMNn@+}X93OkyRA82qdKhJs%BVV^TTSg
zX&j=C9l0oScdDJI<f2{<iaXD48WGX#s}fT8P1lHlfS^NtO0F?CZ^ZbG)ymGA8ClQT
z#$H_Fm_?-dPITtww;C&Qbs(eA<aG25gmt>>K=T@=8Lvg3Wa*<)ba-rECl3r6>x{A9
z0>0{icg#ZEx1JgvG^by-z=qIIozqW|^EF@BGy0lPka#)8zAkxu?otxV<1kGjg%!M&
zT|Qj~bU48`R*|`vdH5N3fO?4sSsXO&3uA~iV}nSoR~D4Z3pcGvO<W#z0z7kbp4)NA
zyE!t^F-epQyn3%zbtS5SZljk%5yVJOvv~matOGO*Z6<Q>^+yoP8J2uk7y(>>!S2`m
z$zB|SG~Lon74bpK@BnIlpWDUY6JWLj*bs~DuMZAi0K$4187ad`jm~#5_J6LAzaHJ`
zD1%9Qi{b~TgEivQ6quf&kasCaPC{5ZTR9_Ab3e6iz7t_tmvxSsP4<c7APe*Q=I1F>
zU0{zq2SaO`^<4Ilrn>jMMN+fRZGY>+_?@dS1?%I>lF)-$V><#iyy;y$u0mz8JX#wi
zqzIu8>2iZE?ylPtIjl3!i8^b&0`bjfr@QC@YmpR*-icxr^S%+rcl{BjRLElup-Os_
zS$5e=P+@UXJ`d>^cQe4p&-uKXNNMKiQN9qy$WUbX{)V~_g10&0H`Htyu+*P&m)^%^
zRV^uUa|fAjR-v`yPBF5BLm(8Xk;nBs)P^_2Q|}c`GPZ3T7ryrYAnmQ=qTIVZP}Hq%
zQ9wjMNd*x_LZzhLI0BN=-O}9+Dk2~vA|f#Y(%s!HIfQgK0}LSyop+7C=bZQ5XWx7N
zxbxW`HqHPuPyL>?zO|^5wq7CAe!$Mky2_Z^P*E+TSvfk;R_GI|*Pp^nV&hm)?3w1|
z@TI?%qH5P5u@b?ri=dsqcRZZw%Uc|<FqTP8?6KctTedDJn<?Gop8ln;ErK(Onp!JL
zKsxLBDsOm!{ZX{CQIJ^`Lk^GBv4|e-oVOeN^33P#Ugog-<Y2@_Xh_(<6BRhmYnQm9
zDLbWqZrRG46?9e~&|}SY#&%(!IuHaJvL`gJ*+0K^@O`<+Ai2Y!!^HyTeu#Be<(UjT
zKw<zWi8<IO0o<;QYk9<pBO+q^wdFB^%UseCtygtJ-%#*gXedfAf5_ZN4%P5JT<|Ac
z1JkDR12?#1PJid^>}NbXwxpTQT}Y5BKwP-7^YB_AAaBsOvojLjjJx5*h7r5-xUIDG
zk!u;>&I(O2`sWZM<E1>8vx0JpPFPM~3y0XB)a)fj_wticdN6$ynW~hQ1%nOq47qz8
zEFG(Wg%qf1COZ<trQXz$z$3Q2ABpPeKID9paht4iu5waR{EJ9@;k6iHM2Fl#oEfQW
z<*RyK<#9hQ=#Qb1v9+;vHXQy5cvGX96MI{EgQ&%*i#dQ&p?!Jl_51gWdl_kDsQ40$
z#6^zxS41H)-!QW4>PwoRH<|G8SO#{7i~?gkhj$l~-??C!1s`gZH4xzI#Ze9?+}awi
z-2Wlx(Xut(@lNPihs*qMIbXEIz1MUl)h@zBb?=O;gRyB;&W#DUpGJ_U-cHoe$h8r|
zh62K)06HV%p4FLy54T8yE2C1%vZ7UuKYa?`={r;uiGT2@W~8Y{YCPrVj!m_inyi|v
z6k<-XQ2RJf-0J@Bf%DZcr7xdB^X09vKE)lNV49g+j%}<Eo)<;3quIE;n71AE44K45
zMw%z@DNA%Fqa97jhd#xr<ZpE)X*K~)cd&4u3u)n6J6@0*WT0Kvdda0k6MzXuNFHhL
zoocUs@WfT^z1(7dY+!Y^XpH5`!o2q4N`vq`v1WhQ!V<GVt_ptQlDR1%iJ!?F+JSlT
zG`3`SY|ZRq)|Vj-<NU9gMER*_80nCq)94jhEycD=<tZ6o4AA5csYTS}?#_4C8};Nx
zXj8~P+<-~$`SIR?;zN#u6HP~3Ml@b)jd!C)L?aCyZ0sCv#l229@Zp~KzE2T&J}4Q;
zN3nws(fXdAhr0(15v6CZ<lYgy{r&>kXXU=MzG1!;aZEx+*z<g=8qLDJnh=t6l_x)X
zjgkn9!&epJyG;vS$r<mmN1Pp7*w-D~RrlSE5)5mUoOLPvIXqYQgN)2szRiFj5Oy78
zDsoT+MN8*LxVXe`BocXj;bt1spn}F@79zoe!-N02jU}^O9x7c?@04<%iD-(@4p(J{
zN~fc_R2cD;fi!WhPl`H~$BTAnqjgx~?0{d2Y%FvKChVPLaH*KaX=951LX7bh?3wj_
zV6~Ao=i)u76X;1cD+j!_Fz*~dK<bvj;#fuAH%9e8feY4_=j%5-HhIb-Px3;PMBLt8
ztEi;CdBQ8X-Nx<hcmKSwX=DHKj$&lRYrOy++Mu>M>%qLY-`(U8qSA>jWqj%rkJNm3
z+bBb;*(MyP&A-P{W+yAAa*Btl-I#o~j6kD2Sw8wbU5R@laW5^A(6Kwy+iw97d!vct
zDRVVx=bV`5HPr?SBrj=dXuu0xT-AyY&How|A?l(j9ir_+U|{g}^=S*+huQLsmLo-o
z27-$--y81Jt8Rv|3Ar+0XI>L%5c)RFoZEG+;IMoDq(^`U_Px`GfWui|gVU!vb?$dW
z^MCd`x3yUDVr&(#by9ri?JMgU{!jdx2ij1L-BX1@=pfqh<e9))Y&Y>==pL-#p&?97
zA;;ehj(r8*&iOaB0Ll;tyvcLjYasT3TZU+jm*u{nkdk>Z$pxSU!)pbe3VTW-x^mgc
z#}7B17|$P+6iv-jH)jHr$_xGc0Qz`)-i|~gDp7-wF;-vlNxX1Z-T)iX!gV39mM<9<
z!lB|JT@QviG=yu=0(=&`VbvLsMo^kb>+HbmVLG1()p;b*`tD}(9Er&B*mXn=y7K4{
z5kSChn-!kKzubLy9;(5O?9X=;mx_W1%9lGLIc5hK)TN`^I4IuBPGtgojZ`z%gpO&b
z_Z3NSmr~;8?);v&CxxcIVt1b3Q4A5;cCxcEH?2F370+Gh=t@>Uknz-DCA)CxTz!Dd
zuxFvQyX0VZj|q@5nHgE&A<e%{xNdDn(VL8&E-W9@r1DR(c;RPqOF`8D<vYO&>FAk<
z{JsPWB8VB^E!7Ig;t&Nn`GNa})-v(kyDL^^^A%h(gdOAo3FfROZ`1R8M|vFQlFl3p
zu97M`kgd@XUpQM?UU&c(A)JC?O%nnInUr2CAGHBSw5!%OWdy<J@`n{QZZERYJUTe_
z*7zd%(d7*7G#2Ony5$&m^Qf%-NH-!N<jIrx>4?<&0Ev45VDI$Xd2x?Puh2PCJ<_B%
zyK^@ae-rCGz5dr}K`VQ`x|n-T%RFCaZxsglU$R^hLqVEma`Gkh9M|OMHOi@dQNx9-
zg{Ep;GVcs`UCK$rl&Vg)grlS<pcNbp40~>m=`uVx?&%kzKQl@I&5nls!f`zMJK>6f
z$Jwg6dG7-UtrAo8*R?MTo33n5<Vp7?;QaGc&D(1jx)i81l5aOsaj$V6IaqNkGG>FT
zr@-$~*k?tXQmT2zz`S=99Vkr+73QU$$|KPURzUNo*QY#IliXR!LxE-cK&>|u$&=&M
z^y6J5bk}#Uy9n?V8_cr;NbXTyEaXf#S8qk;;2-cXu;EtRDS>Gqe4H?sQ4M#Xf?w&6
zMI}Ww^;-!|FEJOc8lSWF%6U&#y?Ls}LcD|N9pP4KCm-jvOKO>1#VPOnrs<DPGWEH+
zIG*Q+yl<UwZJWxj4#)G|UXX2Ms}>u`khK_15wNZ~4%6=Cb4=kjx87ahP9pKmt*Y{z
zm-Ot6jzdR>1k$p3uJULF(MZ0Ghi6;JwXN$Sk)*EyayBmJ@UBgHp2mEeqHD=s#JgM1
z`Rq`1!t>;w#fCWKx#|8kQdm3#jxzz;X>=YF@e#jub+k4+Bj&Kg9MJauc&o_nl;`Wt
z8UYt>tmRvIY4ep>8DVdBLFWin{xoH>Tp}6%ZU!=-bN)BEF;6sFCg&$Mo>IV*-e^(z
zL^)PLJz0`_=b}z@VDU0ftU_wUT0c-mTH|*L!|tC~RFcJF<D_CL_7c?M;TA<EDm(G*
z<DmbbxsvX)y;u6^7-#<V5A5dRX%P%uq-0@i>eV}yVM+IAI<-$`2eQYbENpm<In)A`
zjARqID66}T&5ad!N6V+?Y<)g8O>xoUb6k7BA;N&Q&)qT3ixL~md_pPjskQ$T%{J}=
zn|dv96J?c-n$XHnP*uuB(HAnCme!3+H|TMy=5Wd2n>v2O53A>@R?#eR-gB1Qhs%2=
z;E%(2^YKMXo2Fi40+IN}^zy6Xpp@W@5gI()<fy(?#E&}vQ6#=^k)XYc3+rPV*smuY
zxN;x^=>0Ud*eK$>or7zoaH=C{k5Bes+$TQPX>Q%woQqNb%wg59Cra~OXG9u_g#P><
z#LaXyGLZ6F@{`=>AyzqhszM(J50eba3oHcqM-K7zj!H(_&)nxc@Kj>;wNvj7<QpHT
z<OFsg89DLcX5m&OLx3(Jin)LlJ;L$=88dDGDI6-yO4tJjNBc)H!D!4%)&M2o(E&jh
zxC=#kKD*8TQKV;)q<uKZ?5G#>!6`%+OG|`Q(+i1Lko(2B&CV=FIwd0L$W#Ze#&qU?
zART6=B@1w{s;*L(Su@4r>+q@&DJTD#k4F{I_-R<;lUzQ4LYb+V*{Nptr5-mMj-==z
zMTb8H)U&_^ufoqp++7vl;$O)(HB5L?!1qYqBKii|P1%5+o_U7#FD8P16R2JODwGd5
zT041wmN(+cbqXDtF&z;by0TLskih#n(O_$n>$amg7vt5c?GbwEoEEyH;sdoTbI^OZ
zg~xL5#|dd<9ITue1yT>2bxtK1V0Jc~M*%NO5+V81=WsCPvT5yeA1}<~gl)%8)HR#k
z7ik%>-ECugg~?6%Dn#oQL>BbkEMF=B56|*8`qX0!U>N`$SbHbW8lt~q6=0;%(>LcP
zna?<13;m)j`u1Gpe()(BKYTo0KYW3uC!nj4dnQ8fzs59s(oFO_)S~7x=`XL$H-E&P
z-&*k-6}NwTvj1NqC2+|XFMWx8|4V{^%ikd4B#R09TBDhk7JT<}+IiD800i>X466|1
zDH*BdSf_J+trQfq@6H$DzmvGPb*_HJGO^z{-SmaMZ}y*s%u~JtXS8tRVsRO)j{~er
znS&R!R|RUPau9UW(^1cfLSPk09$@#f`pwC&SUO}6j=DK|b`M+lwugN!|5&bnlFB#U
zw)*6mksPZU^XES9;{ZjSs-3kH6>v~nar?{`eDz6p8XFqVl-Qjz$hW2as0QkhUvVA_
zMS4_v58B3$wGSA{=*!l-_Uz`i<EA$b^83zUj<U)5d)?Mx0mXE_7uEOtXa-ZNCad3K
zyG3bZui~wKFBFgP4XF1RPwh75xOS=U;aOr}Rb($(tM^;*Wjs&oHy0={#n!exO$44s
zFZiS1#zk>YtpbyotQkNA0TZx!WDeA?{n0pZb4F<Leb-Wnm6eRJ%d$$AQ?C{IxL0_U
zWECk%X_^i5%?vi6578(-vVNwjh)5CYWd4&As*bOR=}^QnhOoOj`U^PS9MGa0&)aDL
zwxW$GZA9d4j!H(E>z-9xQPyaIkidbh@jW5HeD&^O>v>#xEvA+<p(IY}i|kUWYOkYD
z?jg$@FWeE!6HX;0+NO^?o9<Zli02WnnBM{{HjRgIA0Nj6Ngyy5<xw#Tlnr_2P@&$;
z@$#Xtk>~-mMjvuBrONLxvxaeU6a`+o9e32!!J?6m0Ztyekvla=zYIGGgsO`V5GBJo
zSYyS&_wR4zl03La608yX^`JhFH-evs1#N0#Fw(38418T*xsv&?*MsV=&XKX&@s2}0
zi}}O!y>yMQ2|{ec1=vXw!65Plv<W-o`42JGYI3#iYH~`2wmrxFvBzX?6K=B^)!9w7
z_lm4Wygt=W0U%2pJg%cszSTADP#z+ex6(joMMO@wZ+grm!yN|ucGk8OKhboedzLHH
z8>++Z*pSqAp<uB|%$$-Uy?Tl3Kr8C}M%LBy=bhOz)Az32j;l|W^HMKzSPOnpC_+g#
zD~dShZ3DHoME}aOwpQ|hKeSd^5x3H<Gzts{TBXhdR0$%82r}c!CNeI~hZs{`*|X3+
zh9Zel`i5ODayN?j-0y46Q7t9&vAPxilxM`8@dcM!>)~Y;=I!F@Y=8etWItWnhk9=o
zZGDdtwTLd|8j<NpOc!Du%mI~zaH=KswAKA<Li?7_*0KgVqvj~LFZj57ziJPXy)g;1
z_H-8a1)%KxO1%Q5oK4{$crW>!AJNf~r-s*0<)|>@mI1tPUe5h56EQoEYh8xGN;<og
z9G2M!XjyeFZb7p`HCo(;w(8_qAZYh{|9P_lj=0Q(E8xxUJ*)a$VG2qEEF(Ei?H{Ap
zsvZH?XEkW^+0SuVsIRpXlV5CT`)E1dh&6o8qt34i$dC9dB!)6H-<gLT?wD9lbXW-<
zIP2Q%wai|kQ_FJ<3Q8UU?TIBNX`c0#G*bNmFjh{q(vh4d%~*DkB*XdS7qgn$&UZ}a
z8*XOvb8^w6TaWe8Fs&^~I==5mU^nZQq5k>JbHKSG1xCLLdRmC=5OxD77oXH*@OR$I
zioF=bPatN&jB#$qD<=i`yaosvMM8Yh2jJq?sT|;Saq5k8-s|Y6NOyisA(xq!lJK9}
zWL8RPz4Mrnb{7|emFRjS96{O=zn?wi>K8#+&&#-F`}E1o)^$3-9TW@O_14-&4}zlH
z43~ahpSi-lBB-RLD1pEf)20Gt1~l7@?~ZDz%SmXQoMAG+Mb}5OCF~I&<r1?}&2(}X
zyky=VPLR;Ygnv|Fv)bIY?!yp3w_-wh{jdco^Y)K@U;q;t7~B(6>@njZz>N38h<JeX
zBSO{15R{HoscFHL*t%KbGbC_9v87u<5hBDkK8u;-+Sy{H6Fx(hIb^``2_;aJuoyX*
zak^3~CfH*RnEXwfGt`M!uwrjet%Y~oK`fFLRjvN5@220I!|?vUK*hlr7swY>6ht_K
zE#c}MO&ad}JBdkuU7{^r(k&x3T{)G5tf|DX?Iv0GS7oDH+p8tcsMYcaCs>GI-ba9f
zZZ&APXo`B|sTlP#@Sw(p`{{|KYMGYXpLJ~>=<?GPOStzY)|nv^x|bA81ErH?7Ot@y
zY~mp$e&n$_1P0+l|LSOejWeaG^kOOekSS#-6QqKfC{$anTeLf^EHTg7^02}XGE3?9
zPaQVFK!a8aX!3n8Vr6D!j1wFiCID(FrgLTdCL|hYSlw5#YJ?s5H!kiJaTISD&%+0`
zog*kz<2qF6(qmNGIgXhbFi7bGO|LvCOl}rA_#)lN!udjMZQ3WJvpRm@X$OI9qrFxQ
z&Be)H?O{K-b%mz4Ue(mACo}ASxQ%C~+G?_ya%OLZ`lWtxcHe)|Ts9I+Hjg`<$r*ja
zn<qgX6!!@q$&+g{Q|+?WUe_QPHL8&yJN2secwAY6Dg5DA-t7mBsUF7nVmvRb8}-<R
zbDrP9P?1y5-ylX_vA45<|M>0c5&=>MT)}KkQ7`yLto(ZfGsR$eh;S;fx8(*GB$gZ4
zIw@vWrkHX`ip@w|Q*++<N#8P(q{fDaC|ntCMK9j1zsl5CxWN=E&R*c9oRo2H2a}<Y
zYQCDwAT^MX%Je*)Q%3q4)patR@w2I^xHE_TI!kM5#Bi?5pJ!Yhn@bh!XYJLx3*TvR
zyK1S#lu8+B#rL&Rh7y7YG{$AL2UVJ?^uqH!y2p-|wp&z>@m(Ok|DOcStt>T(SMcy?
zSg(~3!ho__^vdzhgy1SeqT(sR=rDY7vg{$0Vg9D8cO^m+5j89dN}Y;>IY=BD&<%31
z`y`$b_W83SwT!rsJ5%U0DZuj!%81XDv#I4Dgz{kNg%6vEF!Z@3oFUf@7f!)=NFH*{
zbdY1#-ba@=s%1vk>tgI(14S4Y#!i#t;qgCzhWHD1hNrCbGu1iJHKAe({8LH_Y<FK;
zwhPnB41CICitiqjJSX0o22v`?s5?g$V-M}jI|(8pBVr;W)^ylz(>?rDoScpt1rTlz
z8Jd$_Ov!n0g@jf{xyQ?ce+(+6h^hN1Y{`1>(&B2JeNRruvx_6%s-%xNIhZg@bIf`X
z=WIZG@UT+H&+mG=-p!-wxw`3%yZYzu`$X6+E~V3UCR2KlFqysBA_zo<<y3-4VxSw;
z4E!|E0yzZ+rKN}Et7KrFN?pCOQ2$4`d&Mzpddb3lx-#qaye%5_ANI)X(?HWO!sy|*
z0}69$<bu9-J)L5x0#l^V{QUHz600yMS_A|fuKA)Ym)ha#;u`4$j_n@T%0vlP#dq*$
zx3?RY;#QJ=MraFW?j5(#QIzGTsg1+;T~Y9RLc$v!jdPxB>E6T#!cTS6dGhFo=n5{)
zTUQf|w1)~X*NAO+zCv}2e3WNpDsr4HQFQoo9osMQHDNpc{MNO>@_3j1jt_*{9W;!}
zcbupt)yh0OK~)EbkMQ8THydW(ZnCbAZ^GFT$EB;qdmN9^B8U2cv`u*)F`v{;c}at?
z2`)M1iDm@t($bu?oEup{BYIuZ3~+WynfH=(4g?!tD)#7@o1Ne)&OEGak5S9C!`v#&
zHZv|z9WEmLOU|fB7zfoaUyt^SY%Sfp$q`B-7<A7{A+pG#4BzrrqaJZ^gLFc_F{c`J
zOp`(0?6R?!zEoTB?YoLgbCf$Ec6bz4ulu1=$~m3f=mVEFBM^M^61&Z*9Q54-YeFc!
z-2SykaRZdM9O*KpjqYC?GAFaMmsE{-_u9|iRlpZjR4PhWX3#S??tDf;UQtK3&M>nv
z&(><l7^xkb`b12;^cu-^cP<9xg}Fg~I~V>BsP?~O^e)yDtma(mu?hiCPv8EkE4#IQ
z1xTRX`6Hv%6K4~s$m=e{=z$V_5Wqa>tOT{Kgm^j-|NjYa>MN=LCnOAOSVq{JvwP9c
zN>locBha~|lshEdO%rS_?Kp^V{ef=Md2<psK3N9~4|$g!;{vtJ@y2K32vJM>OD3l2
z{Wp(+6n%Ka4j6jXn%F~PpYsP1WHh|NKX@Br{P@SBBDm|A6qhcNvqdmYugz#_sk)_3
zQV?@8DKLg0seW9+L7s9ienXza?G~8J)jjCES$qa!P1Xv>(wts8YMQXNsT|k{1S}zd
zEUQ}=zV`!B;?SOtq}ACFLtD=_Tj;5(!j+pVw07F}0{Y#G{oAJgIO|N!XZLFHlihOr
z*`!MrYWZ8w!%CX*Xo=)?AI{wNOQ}fPZqrs;BzUX-B?tPpKGjye+^gb!L%meDi82o>
zJ}_wN#GRQqsw$c^ji?S1wJ|Yxrb<f8*-Q%Z8nMLw;Zc2wNY<mV*hMl$YrBwq*;1~H
z6BS>PrhTZZYPM=0q_e#|_x;pVpX>*QU007O<zi>EQmERT>I5kWGC==@@yiO?7QJ9!
zq@73yDTF<z-eJiu%CgsH<DL&K=8ZZ=PV|3P?4Oi_sJAyb2=?boGg|8HMz(ur-J|6a
zqd86dqErTX8@!<Y1=90oT)5wj+n?`$Gdcv}THXe}B9oMGld-?bi^>ECKQDAivy7+8
z?aMzeots&1dEyVum|(!bs^ced(<O@UDh@$13s>{qXR0biLnb_Q^Bl$z!hfw<t_Xrc
z+Z(YwH#I#y+tse*y>G9TXSp*<`vw0jzni~vf5S}#2dpbVv3UI45+?LrnVzkAk?JLU
z=;W2*v6c=4&%Sve?_>YE2b0g>E<~0we)sB6MN@}l$4rTP=0d{+s{<~e_Oz=~kL$qz
zRVi|5nRODIVF$(e0C()s=vvsY|5GZia(%wGyNrJa+oGd>>Cs@`jBsisM_%;^$|~FV
zHoBO(INa}>z7cE1-r|}x;kJ!MeMG4k%eEzZA?N@P%U-nk=U+Dsyv=&M!tOu}nGRPs
zi4i;8mfP)b{T3|p+0{+%Nfh}#6;`cupZ2Sw;yU=kFd8r49(0jwR{O4OS}*kV?O5w2
zjihd!_xM(%RFhJOPAS^;rgtljbg{KM*Vs!K*(>T?gIG+;44*a?XT8q5J^T`CGSywO
zIrDr)<Wk4<We$q5vK3LSuRM{BdQvoFC&dQp_1?)N{C57$h6mSwWVgX?E`7wq!NC+A
z!TZ%ugz@%asclnq{WEE~gKO&g-@;D=@9*yML?1L9sP<8?%ly>Q;}l}Pj%Rt7C;bj@
zFIsS|SLZ%Nyp6^&L2UA-C`*mSp8j4D2(Ur10<1>B&;z*6g6c{Cbe_LRNy<bM)b?J<
z*wnvPN8yelS!y5m9aze^4y0Wx%y0<Vz~L<QZMCQl<NF(X`~g1ayk)Jib>{%?GJh?3
zam&`HGHT(A<|ZdaX07p6{9P0p;)}RAn5ZMiqt0TMj9ogAozLQh8Lr^3exti8Uii2s
zpGR)y%hDXa8(;2IRW9wi-;ki*5`LmM%hjJOTqX)B%v$-TcDTLBlKom;X_bX?g+)0>
z)tH6H&cbk9=RVXRNiLG%4C0}~Web*B_MtC3i&LO7efdR*>R<L7{rsVYTG%%`{#)#y
z_Bw}e_Xj=cml!nv;$S*2qf{KwiB|oCIa2rdQ@}hq7cIT9?)^GmeJ;B;y<9b#u^d%u
zmQEKekIC_?qU-JM1Ww=QbGfx|$eriQ>tj!3u=rs({hy!BSl2r@LI&ew&eb+e^&(%j
z*!+@S@Z|v!z%JTxpMuEeqf(W#&}qC54cux?g}bbuV|p^F@lW9yvBFcakiqb;$N$fu
z)PD<F#o;vnUw`!fc&C3J3`=yE^&Q@%ZrE4FH^RUFI4%U1#&kXS_|9)9(YKTBpzLc9
zKKuLe%Q*A<+kcEX{l_Q&F}L*}pZvc9RbTpEB7X|hu3qoQzy1;t2wvB1W(`oG(hKl!
z6z%)vHM{I;4Fi^luX843Gsdsp#0`rIe$V@3AVk)C_!rjp3xD$SyM#Xr#|<91PwZTB
zeXDuzjMEDdD8|!6Th=<O#P6l8Ioo;Hs%WUWa9>ZsVQfra{dS79t~Dlxx_VD(cYZ%g
zP%sHUm#SnI_}wc<S<OW;Q`*Zn>;}#QG_7rhh1DNY7Nj5GiI_Zvxwhp*17%5$H?0)<
zdpSo@io(eQ>3wQQMmGsoc~C%uf5&U{^#xoGMU4mb`m3)e^)I#pWh&QK4zyX^Pttv~
zQQC!`2gIRerR$u~TSipBkQfi0KKNLS!vnn3vignJHeKY7`VRYw%N65=4fgvBZP4BC
zm+w6y@)xtZ-%J_0lc05N;v`p^RrxpoH6sX{IdNiI3-BFcb1Vk);j46c@glN#WX)4M
z%qwxW<Ht}Awi){S<IE&QMS5hlGj_%DthEpeK<`kwPaJJzLv1+|)`-N+o#^<YCc-T4
zWoK9%t2xPZoW*LwEZ?4imjGKiEekmqDPJfQ;R8AjJ+ZgGx8r#TY+KUfXR1$8J6>6C
zQ%5dro<FfcUKT(#bA~iSQ;$B*QAq5Mn>uwGj!~D~wqsnW75{^sK*s2p2S2pvj^_tB
zQTFQ1t@pyYwsQghT6^++RFfKw^7yL;J=XbS_ZOIGTY!HNygFW)qw8$_ZD)S)ug2lE
z9eRu!NmEH8*!UkX#mct}4Omt?8!3Sfj!(kq`)&hx2o8!P`-Lh=YXly+KQ5M;_`0`<
zlmUd0MXeGuQQ1EhVpr=<eqJVliZ|GHN7-NVJV^IurLJ}F02`Jas+c+A8SV#1ZsI6+
zRZVqkcdD}K(vs|RjqRftvpM`f?!Ed+hAZxN8tA6<D|xS84KtX%YX9CMvj?MWAs8MR
zfnHjEWd3*{C8q|;e9cOwy+xTeH%Ci87yFa{?U)fjMrtavv1O+4#6)AzD}rtt&;6tR
z!O?*z0Q(KVW`QF5YgsEWa&f3VNIY|Id#7-%>i&>n9v3(0WYUYM#9Er|>_38hb!)9e
z(sByq=S=AsP<7sZzYN4QfU8ssXcy+Ym6N8bAi)8#nr2iYAXM#@3Wr8>gux$AYTJ5n
zg!%qd_LlOyR=xPw$$``WqBfiV+5Rr@pd%UmK)ZwP$r&wAQ*+Hq_x0hiu#4GyuBB46
zVW9nV23t>AQ58t&&DA~>C%5GskI~hi_PYZGIu!08q_m_S9_^=3bf{ENYAae5Af8<-
z#B^QH6?<f``Ev5H)qMKw-`qo#@}K$&w?NRM@4G23UinDhoi1c~JidjWwHV5ORC$ok
zxjoAXC-FP8JFCN4AZq%%cZphGoqbCfr(NV;6Vy_Z9lKr82ZGc$r#<B(Ox`)*!*Ezc
zYc#!4x*5j5xovDNbV#52mLpl>QG3CZBv<5cyaU|_!Yg@8wFP=T$D?h^AeH(~xHt#U
zrYg%w1=?9bWpaM3N!!b?0vQl*G6zH@pgU~Y8G!*8D0#o7Bbe#p03If!5z6jfDr<O3
zK-m@Qmw_}>%rpmq4}R#rcQ*NhXHrx{#SVVe|I2b?|C=>W3ZiVz*lr<e8+YDbFUXKc
zQaf1aTkN-Jj~hEKv&S?ytO8)_>a7c^nig`H_sQVz!Q0sQhPYc9s|;^wvGv6p@LA|t
z1j-9I**=1#hbr+CNFVxFdR$uoEeBWA*<IJm-RlXPB8f}6(bO3ujCNIPf?sEE5ECu+
z@Kjlpm^hJ1-OC7N3+XNLU_9%73?8An*N1+0s=vK}?dU5c04$}aiJ-mGz0W<J#;`jM
z9DNi5Dd=}n2m6jem|np;UPio~W!<-J{uU&*4|(!a+cxF}nlz)R2xG+UoNT@d7%aq+
z+yyvZU^EKw&81s~#V-1EaUheX6^uyh!JOY-GPb#A-cqXLq0MCg6V^fmqq6|t+9G&o
z<*ANsc+>D$yA${V5M4-L>kb=ggwIJtBcq$E3JMNXB*z=S_lWdjDt^1;I8eSX-+hv}
z?U<C_P-fx#L~ZXsy-yj{R>7LnaUj4ua4k*kQ{zHr_AExoS1I-X1hY&W{cArlJ;r_g
z#_a%?r_}AN7ag`XLXm{C8ce2hYX(+~Tr4sz%_Cshfi_L-+fISa8F(wW#uU;xvW2jZ
z0-oYNvX?f=1Q&m<Ofvi?tUjf@5^xY4Ovzsr;s0tfP7Gl48V8vCj8R{nFvsy^cZe;I
z*{ny7aXJuylCeWKKPHmj-nyFAwGwJ37N~=TT(B)bGeEt3IaoM#yy`^3`sEJTKS(Z|
z1z7ZE99TdLH?aH5nGsZk2MZAw5ud+)0fFMtkM;)u*Sb!di<lY;az5}EQGF^U-!fbP
zo;SEJ6-Of<nJAn9SlJ!eQ49(-YW4(lIh!;fxNr+&h*MLo2f<~zlQBC0q80oao|<J(
zv$-X&bq~~|OceC$mRst>Ex?LHF<Oj8b_!~#Xm~#4sdv|g!vr_cb{CKDppM;h9|wOX
zWCj<yx$}=zIU6~Sq<jS4>0!h~(OQDot#HuCd6XA|6UQ-0boFmYY2Fv*j}Da!|JxrE
z{^P)9{WiGNO0$KCi79fx@e&_=ReUS!$ulZKqowduzYQJWHbuPPpdg|Vnz&sNs+A1~
zPX^WOH8XSpXZ=_Up0!&n1)U#=6xMefy&U&{0@fp6sW8xgQsr)TLStj6g#-aOS;p`)
z1Q&bHRpea&%T{<lZ~n-5KwH5d>K7f!k1%D+Wwns!GGFaBr0XYG{s%bRwNemVvwNGP
zi!<kV#TmE_9EOTOPCMb{k|u36ShaSQIMHx^P4F{^-SkK0XbNPoozG&C#h6B=fCeq5
z4`ks7LyPqQxR2IqwQu5S7w$d2=Y=!z^u<~@f6GQsRz>wuu#g1DQquoqF+~|t<{KA-
z;t=3DKae-bscP=5UJPj>TFbY^9^ZSK2u5brau5oh2s|*|NI5nuqDf0DP4z0thz(v`
zwHy=741*HLq(H6bTEzao2y#WfzY9#IEx41#Lt`4)MNYLS+=>yv^C0_bXce})WsJ8#
z*E6jDZ*&OXc1+%QYeGey<Ix9t*u(xG{><yRz`ABlw7B(Fz9pjel$Mm{7tmy2Hs1zm
zMa|FC9l4L=hl(6brT0{fYARU>4)z8vy1R};!C}N7z1u3U-;=j-FCEiv<x|X0Zaxkv
zm>N`|1G+4`ofucP{}u$Mbgdn1wvP7qSK^G&gM(Z*LGLEW=TVYePC}BqW$Uyz8JhY*
zt_7rs?b%nLs{6a4DPj#~rs2$Iu&A!N?=d1#G^54r#1F8SBjU!}X$M-<7S@IyzprK;
zi~I!CJdOclPgIpv+`;@{0nIRYSd=Vp+S&X`__L#2&iz64N54;Ovl{oZEvc_qFK_xl
zyKL`g0c}@U)<i(A`Ag^+_&Ex$V@caiZ=D@E@zhA=PgfyJ;lZ9FzN_@+?w7NX$Hdno
zw&3MZ3}0GMJJ)9#qar!l@HCzyuEneG3|{S<iDrA*+#StQp|NkP<o~qHFkR-#LmUN`
zSa$>nyzg)^-J;{Taj&>$sC&F;YzWK(&zMS;v>3=PT;XjLYlwSQ$p>}we0q4XuNjz}
zfd)IUH&ezzKOAZn@p6q**0%$f23V>Hh@+mBJ^~SwvXRNlY|-jBB~Uuz#+UyD8Z*g@
ztml&|qg!Uhu)D{6+Yl%;*}pS_WdGcr8^Pj)&kz?2Ms8p?<>O;oBT-*jZ`b>fJNUm@
zjjRqi*07oB*~zK-hKwE_)`tb5*~Q6bO@sYD+(eqCYHHWXNdU3mS)h6%LLbz2^Y8S;
z*9g%bS*Gg(DapOHSzrQ&cR;h-M(71|Gr>(CR_BsrWWGx)irmMc@_uR{^$&SdEADSb
zzPu3?vaw}KT8VNdZ@1R~-rrid%3h*vlqmib0XzkmY0jN>#_m;sB!T^|DhzZ`URYdR
zo~L5~0Fv8c^s$q2lhUyklra1@Tu<&y@;zGt><Hc}O2xSKnOcA1U`m&xg)sH4X@B|y
zLp1qaMN?#iNm}lZWNb;nL;k@|I4GSX0uPxV_jfhx4Y68~U<8IGL4f;HK9v(^g}Dmo
zmHg_Q9-Z8OF$gs?$753*oa{nyc)6Gmuo;%d*&qf^stlBr{E2mh2_f$8&M|-;TW~20
z2AMHE2A7n)GB$mHsm#Hzh~(nI?FPWh_bP5fG5u@7uq=KLKb`!+qy3pF?Qm-{NVkUy
zs0{aBMy~@q^dPwQl_w3TFS&M%#{`ikxu{~9KoKJjin%~>U`%$jzUqw=w3eBeIP9<2
z9{^JYB`hG11hzi^%bueqPw?qMi8dP6+4KH`^AWbw=5H6<ANG;gfbwQ`8EP7VqkbnB
z<#%9X9O*TPK<NcaF0bAyT<ha3(#pCfkm4KfodA_!duGFY;9_rSJHY9{VS@r%nv%PV
zpF#`)OG9KC8#`#@*z>Wov*dvkz4Uz5emIdqyJ!J8F+gqW#uuE7WVbuDxoy8Pl$aUP
zTV++e?V~iq{qGhfBTEz+QyS(fe&NebgV(WJwr2wx^>}Ts1V^bL5I`R!ZM89(v65?H
zK&^`D<Uj7d*8>Z-q;i6+zkpUGk1O1Spo9UdiK}<4nJ*VJ83rN8OU#g{wQ27}XfY?R
z&c+z0<f#R&uI<`3c^Cfol)sQ==af3=9<5LNYMk(SRPBi#c4%9lIXAvb8{nt1eOz~(
z9{3L0$jY=QGWZ9~dTx%DaN)Z$r7yvfX=<<mMr4$X7xz)W#duGsAMh-;tePHMGkZxB
zc|dv~Ubr@F*gIJoD_rgddIppVN3CD?z<mZ<#o$4I;FDp51@&?x0)g{LFvPjK#P0>Q
zkYx|%NGm1whi7O1Fg7(HpyF!cxP&A7KKK2XSEpqp!Ya^n972MR+(&VExQ76Xcs*3y
zBImvaWQ}d!SwOEuyWeEwrGqu2W~k*=+uZ%3XzZ9?rc&orjstI{NIX3qfU-S3g)u>H
z$Dw+3k$?A$U_T@8zDrta9O{0x_plXh6BV@#HWx6%3TkB~5l9KyBdgf1$O23!F|bD6
zm0$0lu&Je~XXQR~m3M5Rbn>?ghV$t5RiSK*PrGhDP~fn8Zs`R(7-qx>BcIiFwprAF
zh&LdG+gsJ7X(`xpP(Qd%maHm8k^U-cWA5;bx{XPqZ+b{be5F`(u}Wz|Mr*ImAMRRB
zj>MAq_2=!`9X!CFqi1+fY?;LcJ~vt+<ao8{=%Sr!(!6PiOQve^1I*|ZS+E2>WlpV(
zy6cwYa!SDR4I}@UW@Kx$!-08HBiDrBm_`EqImZ*5+H<*LUF{z^-Ufu6Az7HR9)!i{
ztw>^6dE39aYjoI%xxLQnx2C1CCnjZS#VQ~pc~@ht&+`@sEngdPT`wD>9xf^h^Fx}N
zOMlpIPa$zqX7pFNMRp;)dM@x?lBFbrK`8xsN24!dD=W-u<<D;zA8X{eXmbVT>$5Iz
zh!}YO)l#Bc2>}M(#syCq=4wxklLdc9TD|T_D$m)PtHZ7Z_}i)VGhk5K&U&Ba5|5XY
zN$+t{hhvxQWw;sRyH(@|CZ}f~BNVy4EN;Y2|6rms?I|N=|MLzV$4i&|PoS;uW+$)O
zvyk%Eh{gHAy+z`o!)-wP5!KlYw$=@~+QQr?Zp5<LtQI|NT3RKpj6rQHmnl0C-|&7Z
zuHJO@-MH5kMm4>=$<+(NE!4V0d*OmFY@RkaRhW2?`5K^6d04~p#_JUL1*L6gSuR*}
zl!uAFuhnTUwRaeNnf2e)j!M6fyY@-i3n&x&0@y{7Z2WSHO}gsa-FA-lV0eC1DqM=u
z`2p217)V(EoBd+0dgy3LYf{y)Nma*xq;`vPc8%2D4xhJDE3@0wfp=at?7DmH3x~~b
zG-uqLZnf=^&(3?P%XB?PQ1xV^lo~J7EEj_?C#YI`dTDvLHzBq?1pRk<PKrc8Wi7?Q
z?__i!CM6?Fy-0Tg^mve6VUl!bVeOccYbh}!?t7U#xY)2+B)pZ;s!i@FxF10|!dIR0
zt;8I}AW3@M_nwS2>J2}QQoY{a*A_*+!buV3U}$;otiOuFJ+s~Euu#y2zajPrzoZfd
zGa0}OxuFx)%(AnJnKNZCq?}9Tz)XJA-#6&(<9<k7R_0n7(i@!`M)u{g%Et*%Regvm
zy?kYXUH|a$?Z^7V0m7+V0uJF<%+mr@Lk9hODOf^e<cGKvHTp9~lDDo11{s;^gBG6<
zIo9hC|97j>6Ln6P3zc`RU?w35NpZpgbm1ah><xi~RxnsZcJlb5OqL{X(qU6w@K)dV
zj(7BoxeUIvlo(i9gvbmD);4p(wtX5?4}IHD!vmZe)d}F!{f;!6sF*9&!B)BVSlnw^
zGdC@YQn@vW6+Z0&(J5}F<thyUNPY&@-cgnxtuhz6{1A1jB<BO(ynZay3AqnRPL#w^
zQYb^hLvvHEo@cXbY?tKR<R`uTn5+(KB|Ufz#X5i9s8&=b)MBmp&b-!r_cjaWN6ft<
zyGP4eHnNCW9jl#=iy;u{18+vl8+>H}-B)hLOu=&bEevsd@~W{I{q}uN(upu)xP6bR
zx=CgGRFX{LkVJ1&v@)%mmeV>LW!TNIqPLOl<r8i32~~gPI*#0g@JOZ#(y;pVEnARO
z1n)&|p{&eWnatXixBu>IX^rdjY58}evE6v^r;eB5Lqa-W>$)nJ?sUvqzdl_-NF#HT
zE<RYYTG{s(P1#(5$98va8i1jQIULuySE`|)CZ|TafNrUf|L%U}jbXcbNv;vP$Vz~F
zJ<y28$kTJ+U$kXwdzY?S{-o(p;%hTRZ_4v1$qsYsD>wd=nS0!J{=!6_Ry$L3d`UrG
zLdH8kP(u<`tG>WWx&4oWBk9!{k@#+fw>Wo-E8ED3e;Q^fP^9g0=TL$9d=wvOz9DM_
z?g^33l)3F0B(~VQ8UNvUNqQXQV8Y#LNCzgL`5BMH3W3&i(+JBx(3mYB)_ttGO<Pg#
zeIygpsW;!z+|HsiZb(71?6j-EB+m??Dx>}75)hG;&PD5NTlZ~8J8~aPJd!aMGETV6
zr`yYV5566_>LmJe8ID;-^h|+kOj4f5abCDB-)KzGqDV!?$!K1nRXlVbGHIm>;bf`+
z=;R?qAgrT;(Uu!XuRn^03Ye45<`$C#yg41;?Y#LN<6u>)*w%UVB_GLkiW^sdc4{`4
z=6^TDe(&XNIH}3CldKnXe%PpUf4slcy6wOgVO+C)luRdl<e%bTTm!fWeFp2rZO3V{
z@jn*H*3Ay`Q^|K|c-;2gl>h;-^R=M7PBl4`3t=J9^=FMZIzw>B<l{BJuIg&}J=b#o
zr*#$w(lmmhWdKfJ<aYJxZJCwajfXTJV=l5JDa;M<bVIUDIah4^@(k>i!wEN`7Ru1}
z*hQ-fAxa3*19AetqFJ>SCE(zazU9N`<B#M-SMT!O*Iny$`~dT?8<hC#QW(h&R(Cf3
zG&WYKI_VRpzrM240DDA6il&Yq^DhGj#Fl7JbPZPO7c{201wX(4H?~mfh?(D0B?dTA
zzGn;oo9Lh0xfNG?#LK2pXxHH+VeeWA_enoW0o%3lf3O?0D}M*EQ_NwG<c&!P=Nbyh
zJ~^Hc<XsNXR>I%qPZSq0`*As`+Eq9iLb!HT1R~odRVUv6gMR{;SEph}oRjY_y6p{X
z-LlCmvXU=;Li9o}MP`NUP`Vl4JPQ*n))5Ew4?(Q-R-}<#-gn~r1GT=3>?eL_V_%+(
zZW4QC3|cZ?p}6!GGLD9+n!6w?2bAc@>cU>sQ#B=3>{M|8Cxyj5p-$a1We?)bHK?ey
z4xEp7r#yz=6hCx$ywH<*#3;lH%F1)zQ;m#G9HD6V)LX0l9UK~U6&Jl7@IhQ4DwAw6
z=u(hZCS8L@MLuePHn*$*$;N;|05D&DWP$oRU>IJgd;GtxF$JpO?LA`PR1=CR7S>|~
zuOe7x=;I)#gITK_0|=+>BXe@b^YT5W7nF@si<2=R>I4-3UfNQ)atO4TpvIawFntwP
zE`ji?c4!Jo8V*M}wt*_dh`pBr0)?FA$6hxptq}!mn^eB>+h=U>+G!fzsZzUf1%J5s
zg8o~yN-=bui+h_Dur}Pfy5V!$^M&!Zy{dNPm+GOE2M;k4d27ZS;4ir>D~Y&_T`;Ip
zl()*XJjOp~y|cgLH(|GH?mO7eQo*dwVUD5fnXJ+z%NpO?Mtl8q*6^}&3Xlz9;USN#
zX7fFN(AP%V&U1};8q_eVO#&c`k1DpF!Pt4ZVM{MK$v=YZft0Lt?dqA7ZsW}z8zU{k
z#yML^A2DCtuY~1^o~)2?JBG{ho6GI9?&F}yWK}8DZ~T5FE%(fQ<R@f3(JhU~O4+J)
zfcREo84)!@C-b#Z5Y3H5Erne!_G}{V(KHvU?f{UX>Oh~`t^$6b`}x$d&UK`J*_p=|
zZyAw3_1z!cS-*HLQwgcA@Du?g;K}Z>y<+e3t@ttt45FSWRi+}Yy25{@PioMr)N}$-
z^yJU#o~C!Cy05de?bHa0wPGyWS;XB_Z|Fwv*C>36BC5us-xaRxtxQb6eNRuPxh-q~
zla~GHQEQ2%?RJ{9fnSoIr~TnB=-cz+eu`FBPBBToihbMaP4MjQ9loXr?APIVn0>Yq
z?E-f9d3MCZcq^EoxOkN3#XLbqN%|vK^9@`Cy%I)9T@DKEzu7r{r){-Tg^8rIC%Vik
zsL4Lt`~2Vx1u0Xmn9jKG&@bY708Ljqu%-7S<vAz&K#fm8SP)~P5T8X!s`^%E0G9{E
z2AKwaY1CU+zb}C7HdeUPhgz;P=IA)m9Xeo>vPcV7NvN^!_wxtUHH(`xSj5)rUAYy9
zd(BTMu!yn-QR+vI$No(uElR#VWJRaqgK=p$Uyj$z0&vPADS6+b=b*lY47~|A6MW*k
zijf0Cdt2#FMgdQSlP+BMk9^h@7dV!dnsWBER$CJRXAi9SgFw~0vf^R3Q*o03sO?@l
zJ<fW*@kry<%bm`syLcy?D?jE{4L$WA@~Li;4MdFalB+puR}sN9Jz&~VOr}*|BP$zK
zyo_!@*jjv4)W?XShS`yc0j0iXK{vB6d+TYv6!F34Z?~qpJs;8io+{8}nBR?Cca;uP
zhFZ-;cP*lG-LG~tiD|kW37ux7qx0?<d~R&c+)cXrBP@n=Tidcquqob~%kAa}&%5`o
z79DaQM4P@W&jmZRoxgJaSwM7WChZJ>wny#kNL1e5W9ReT1ax}2Dspbm<V+o5<>xHi
zf(18eQEbmW8ucWf@KnxF248?>L4sD~P<E+@Xb6d$Q=ZoNMw0_1NF1_4x-gj3BlprQ
zf?wyy*YCaO*S2!19JelAP;-}bW=|Zuib4GLvh*V0Fwioq3OT5}`JvV<%aodx+1bGc
zX-TMZIXdD1$xggte$Gf!eJKvo+Ni<@m~E5%#^JA9J!KvnE*i(06&;W1$c}o9@N0xT
z%FU+&Q};p=8PLKP*V=YwDAh=m)6}(U&Bv+0huLrU6nq7NRD)yFWLTL)$J00{Zj_O^
z$$EXzuD^}bXuSWc%fbG@hr7yt&3CHPMn^*!Y>mnbNw)U_Rvdd?9KY^}N&mo~Jk0ai
z54FD75_FQo;P%Q_LF}G(z)sz0R+wSn5Cpt{J}E@up~bR(^lA}bO?f%5t(9l;T>-Ib
zZdXX93i2Yu-^-P~xpOGt1;HI{1GIbv1E4%<>tCB&FIj&uCD}AX_QetF-*tvdX3CCT
zgi0`i$;^1u*2!~aaXsVw)Q%E(PMQiKJ!6Hw+`&&o77q$aC@Q<22qNZaM@;B*A2pO>
zXpd+@advBXT#I`R8mFI^r-x&Ik6(ECGg9T(EB~^6{QmwI<F1hN(eBqjaeVyb)c5Hd
z=wJW*#ehHYOubBx#&b%7_?h@Vfvc*DxU9^F3g835yHRrrFNl>a<`H4Tv>-pdpi0B^
zm8MrJ?!7dJ<(}F_nH724vCXEi41$p%ycz^CQCeQKj!fxR2zs1Apw3M1)XP<~_h)KP
zzZ6yd9lZF!>!j57Am>=q`*g+0VifofU&qW>y{rSl#mn-hy@mLo=lFO|Gir(L^^H@Y
z$1&!Bo2hBUYrl%Igp{){&$mKKAvt(B){GwpwXu|_^$YT5q=|q<!5`d3hCZO#>M!-U
z<y+rUE>~f_)d2|}iUa+{8#~ijXMp?EOLY2vJ*Uto;&VQ4$jhm?cX10)2F(IPCr8iN
z?6C6Q@vPJ>ur=fC5D;-_T6nu4l#Q50rLd>5rMCMoVMJ5N4@e1tP$PFvuh3*<8!TS7
zr5ZkR@R4lo5nUBNly)20hVx_);%DvPIBGMg02i9%xosLLR;E<rIkZXZ4}ivacz6#X
zXlUCbnaOO4u0G4?#*XbeP<#VxkK~{*zfM*&XUqH$02ScpGo)|JNVnlo(=pzK__Z&a
zs}yaw%H8V)V?VA<-{S0y1qSz>)cG%26Lx|Eod6GyH4+Cx@b%<hZvW<gxP&uAIr{;i
zJYu)I{Jx1q+r`veP07>1ftom#b9iak^&v96-Z%kr`aocSnV>&D3QJzve7kZWO)UEl
zS#c;5nP;8p8CeILnYj2f5d8P|?n5d^IT0h!c(Z%g=>dQO^ZI|A7Kra`0fmEOEIgZn
zYmdsn9RyOc$g*>ExcCW3gGy<5GZf<MQ?&66)oyg|6GYc|H+2?Yuri2F1bbO1a$AP-
zU=Vcw8Cj{?<tz7z;mH1-+cAl9$$gG%zkxdgqQ!T6P4AYziA(6+p~y1VP;vd>dQNr1
zT)+7WUiw_8Cdf5mFU3XM{u1j>j`KON+HFqKfR)LT^+V5h0&~N+-H_%6`Y$-SQY*(w
zVk;qc#_!JGFmNzvnN|6Vqyxyy8zmU4-~PG#Or+Y$3)}hTR~I1S2Nd~`@j!OrEb4_b
z#8laI>k@vdHkx&C_+nd11@#sYH=|$-IW39jZH53pP$Gi;XiS6IEs$VwfZ<Nf2&&QM
z`;0#@uJ1*}+sdv|k`8A{rFbLwZC*?)AJQd?TLimsA?E;Tr~3j>H2|OtJp3`y2fKcP
zSNLSj6~qw6kCiM>4O7B)UY?(Xue*#ueSM%BjM`H-wK4+KsnResrkD>~{IU}>$og8<
zng8w)WG@(&N+%B(JGhT;9XR|$&<+v<=H3q_!RNWjMT-r6ZJpgpIK05GFT$o-?ew^l
zknz(GHwXVhty=r5;D3Hzlbsa`hU0yg(gzoL%!>dAf2JDhFt4tXAV~<$uis#&5gElL
z5oM!GT{!s=P9B9fNjvpRkqq#zK^;LLs9e`wH0Fuu<nHuI78638NWn+H@W*dMdOd$5
zGX)+a^VUg$9_G`{RS=n1%{sJE-_$vxG4V?n-5q$>4U&Pw>Zh>INj?BvbOfdfJTjNY
ziuSfnwCQjFrcZh`4E6QV8}rHwjZFZ%0*)md>-f<xD&Z4AB_=-bB|pB>VID=In?Lw(
z(&Bx;me@)JfN@nWClLoi-#|i-_vaG@_<C#x_%-b##}4CL5NVEU_pSsdm)qHxFksug
z_T9<y4V`mN7O|>Kg>U^H+FhJy8<#}r{#6A=zcfxYI&tyR61^EuY{LLJ?I4GQCTv8I
z_dUumy_e!wBneLI-%_76*0e+Y%y8plu!j%i{B1#X6)6Nd!Qj1woBz{)n->L6)*a7q
zf7oeo@uGEta}L^LE*6kS6U&N=(8M%>Pc^55|6j=nB2Xzb*Q0po(fGuqp$ebBD2FIo
zHx0C{;KGDqT)@O(QBp?UxfNW(KCW4WL-hcptw0A?9qrNb(+o_E2y_jE_}$Wz)r;v^
z^C+xo8)Kkrh;a#hrt;D1Z%v549tqUQkeD3txCR1b@)?OZW!xWk?gC5xVvaOTA@a?K
z?kl;?^ZWm#sO=THd0Z~kU$xVBI{0~4l~j1J|1*x8AUWCyJb-1_6U;}5-rt=Vqy4+w
zQd{W1oT?84n&y5wkD`-;Zp7u>s0M?K*T#%36s-5JX}R0JN41m4#;mRg?K|2)s7esg
z8awZUsm@ToZ7OMiqnZ%s)Ypvr6K=u@W;?mNxBvG0Ds?>M?sbpD?x=awceq1|SCTlJ
z5x4L>=Ac5}yY^e3sa-&t-yOjpw1s#-zjYfs@J2;nw^-j14(t~L0Ba$sSTIB`u}Gyy
z=RVVCCh&S2P6y)Se9lts-M#z2Wu#W)n%)}S?FBcaO0Cy7Kn7xzOi+Bh(8q%na(0PC
z;Akbi;I3((e*DB?X=ZalEZO-i1yxHu@XlV?btgPu`5f*6G!6f4f}YPVW89pCPwXtV
zZXr;w-av7UnM@VI?dOLw<Rpc#ZVcKBi2>`=>W0(hu^Vx}D?(GlvxG<sVtAP>z#yt`
z-kaQ<D}9gDuh~@;{uEv~?qtBT{BOVR;2{U=?e|UfYYg!8<KM5+80!UFZ!8>3dGOl2
z5V}eXul!OI!vAsK;<RYLA0X2E*W>>XUE+$Fe?9)~*Z)z;`HxTj<M035ll(7AT2!Cj
z!QCxz59bt{8TunxT&<!VbcIgx_k8i1r^I;t%a@aW>pAy3Pxb?F>F2*5FYmY9`PaAq
zCN=%HclbXx@Sjzs|JSzs&maByaVqXlyh&CQhlC#=wPd~@lxvd_`#upCT(@Sx9WcBb
zxHI8f`8&(z(1h|e=oB7aS=_v({7K38_l%%lYR=WKa^C#EHv{*liMYLKT<|{iadR;#
z?0jP)_&)uk^-Fg4FZ1(`Bg!}KT3foQgX<B@t09U^TH1-G%9c*9R?_m|zB_8;A@KfK
z{`|!g;zUx2GwS%A<8Ci1wGx*m0?q2`yasqDTq|qmY5FKuSh$tbdV#kT52Xk^wNOnm
z*=0(*fQ-<Hl}kJEp>+uq`7yX8klnYqwo-)q6$8wvY;xy6t_AygEvxRNa#wkPuoD)c
z$tbqt(GpB}w=?DW;gshvkLH?bppwH(S(z?680@@b9+3d?fd^N;%JX+&tM;jWe&En4
zrhV<(wdw;8&EwEdUb#ufi{HJ<k>LZ`E;H3LGkuhoz@)I)t#>?)DlYG%9vG<au+NbS
zJy#>JJ|1=v(o}++s&+B(-T>2n9M{=JZ*LvsS<HnNg17@>;44zCYXnSw&X?b>{tU58
zxM21uO%=dUL4R~mz2oHy<{mGtf|jcZ&&>+JT<mVp!FJ-dmfVTX6e|{=&;YAAh~MWm
z%HF*_zo{Mmg5xgBiJWX{t?><d7q>@F9|%Y<?CspdKteS0l>+NIY=m;c_H<F^nMhTm
z?zi>&BzzJLb#9^c@cct;7Qkk7;>$xF<I-XX7as#OJ1gZS5%1c|{jKFsB!6mJLWKQx
zj97MR2<3YbWyS-~u{g+*A=YGK5(={!(%~>IEIW0<LO>(IcomO`+>Nh$lsozcosZlW
z=w*+`SJy4-)k{`l?iCYZCOGfZ9K^JZ*OJ_Q!Et+g5rF`$L7qy+fi?nUD2o)deV?ef
zs^_a0I^L}ZI2jgJ)X=_(EMr;os+>$NWgE4TxNmjn<X-VVA@Oc`eHMMccD<9*TRfJX
zjf@A7h6N!^5LOHKN1DO%8KE*hAo*SFw2hZEsu&5z-N}n9f{K6EZ49JQ&xLXVZfSb|
z+JHIF?m$}93G%@Y<Al8cZX<0bis9<?fRN3abvv-7;+nQvNW(by^1vJClppKk&X>PV
z5ZKzFwK6PP^bUXPUiKG*Idb2^jWQxt?TU3V4dk~kp6C)KhO0mMHK~!Rj9YqtDWtHS
z&{PJ+rWM`fIr_0%s~KN^<iPtx>o3)hF>W@hTe<n<zMCHcf(R|Cm+iQYKB>iHZS5+M
z7Cm<F3V6r51Z^Hn9haU>6rnHW9a0`>A&P0C80W6id~wgpDY@P#FHZQVYxLyi0Fwa?
zE1`Wg-}&nV=bjWw{)HH~JTcr9-_mLK>Yg@6KY5bbPs0<nt&&ZMXqd6-$z$DfE(H<p
z;^sanl8{-m8tv{H4JA)GBvG#jIa(h7U;zeU$p7hhbQVsK+EN`Ep>F+<C*CMbMLrVJ
z_<`ILggUx5Ey{$Pjfao7r1a4hoWRkgtQ0yP`mnaG9UG`xw!przL-S0@tN>#3{-3JO
zFQ&;W4CBDOFe7TJtaYd)vYEi3#ehR8(4myclwq)}pjH^H3Q7gn;h<2(Fc-GDnuw6H
zbsJg&@~0O1VT9IF!(0&%ZHkmiOI^hl0!XVRB8`^%G`rg6cX#rgb8^n}zQ5-=Os?;z
zC*I^*{<<j>DpIX>2Z6e_XRq$4=CBWWOO5#V%Fu_<rJt3Q`C{<@XY6NkV|3hc|5Ns9
zkI$LDPl@oYFNX#TLbQlrz-~FLbSFKj&!3JkX5EoH#;>iBXhVJ3j^TB4IJa@8H31bI
z3^kMEBB`CRHw3m)lhkl~34;qWJncW1HpI1)|JWr_6h4rTOjg4-#AwWlxZ+h8K2t5!
z>>qAN#a=LJ?v2lO=7a16!3l2`3hHW3X0Xi(K1cG&z!~#e<8Uy!)6$(claa5u5by-O
zDW17<G!^E=WF{!2x%mZz?HA~Ox74J!gwTJhpxg7|M?!c4@)c4#%Kl_D+QaJcFu_h1
zD>kN0e=@6>-t`~*hY?*Y(Se+$$V^ITtJ=}_!7e|V_)%IDpI^Ex(6>OteKkIY*AR#a
zo+KPhFT0p=m0dJLoeT=Ly;*P;&2wFdkmzWxUmvdriwqFCp|8qymq0n9XwC*6v(9k8
z>Zr<&pdZWt!VsW5TFy~}y<pl$UYd9p;>7Y5Jl}v%L}LJvo!t(aE0WXKEhCoTFxyPK
zrybfF{;5Pa;~~ly6*04D_0!T1h7L!CxiLV|?Mu0RY|<7|DZ&th9e%m%Sk-A~+cKg0
z)&+ea_TJ)|-GR!>dHx{LR*LMG#$<0>UnJqS_jk;gbPAdY=;Fyu0?+GO=Snt(Y`Zt}
zog{9S7qSeho-Cg@V_g<B=?4>7hZ>i~?{`kfNUSvjpZ^$nsK;nD-{|U{RPPw=j)I=)
zaV>IV-+rV09<pq2+p65H)?(>hpJn?wGa;l$laX<dZGigHijpJOM`tx0e;6+jHU5MK
z$DP7ga;zi)r?}rhEa~$C7)~4_mAGzdo@H}(1PBueexPrDP8b!xw3}LA%u|vEz~QeB
zbRpu1LeM-KVI_zMUhKT}=ep`CepFe(aSB;X0M1(2Hbt#GfDG?0nN)R(yBh2Y4dHcD
z=s)qltzAJG;o%S0-3d8X(FT!Q)r(C8X865|f8La<*qMfH&79`|W7HYSiu?WkiS%DL
zKDOx0RC;JRVjb4jY}r8KF$znuWMOZ^#@+vMkS&Mi*l0FAvM6QJX=C#dc1c_V7&*HG
zrnc=!<oM|NsA`}mPtmH`{c=K$m!*!KzWN$>ZAz!*tYeS-yl(LoKe@?sAaOJ4^2N-N
er>7lNLa*0#EhjoUWw+0D>GwrSI#a&q>*{x+6h7<#

literal 147899
zcma%i1yodB+x8&@q*VlwQbbAt0qI6Uy1QGtbAUk+DFG?zF6r(VkP;ZWySrg%82<A-
z@B6&p_pSAR|N7T*&6*iEXZAV!-q(HI*LCk;MR`d)?C0130N_b|6jKI(2k8KS_5uqP
z{6;%d*#|%Y04XsMRgamyc~@PcZ8G4<g44)-+b;WqsIW*!$H77P=|R(J!>aqfYZ}Rd
z=fw2<d{6-O$5&V%x!&UFu)~DDQJCW>9esziPzm||oSsgYPH;DOPxV>Yd`%yM`c;um
zSB?eu*tPA>k5Clr<yS&cf=8I{DF1p3eg@FU|Ni#x7e5qyaKOJmw*r{|y#4<iMQG@U
z_SY}`zpwQ_Mq#~c{rrFZ#s7U2`m-hB|4jM6|Kk6+*8doVitF&=pLzX%jzYoU{?EMr
z_iO$4QUBv1c_|-L9_)l3#N_6hIbaPOWuP4y{?`;JyK%$Qpf`|>rcK!8`6Sdi=RrUx
z2Zw9KACwnTC-AFK5@uQ@qJaKK|2)kvfn-Y`2jS%|xHT@g=lJ0&`Ko()^dXsP*Q=#a
z7k$?g!~@{jn9xt;X(bCZchlQyn(Vr;E+JK1Xm^XWEfuC?Xd_uuR$sq9O|sy45r)6Z
zG4|${f`iy?uh4`50<Fw>FvBsLB#d0>Vk+2qiu}<(3-3{f5?;)AK1xtfXswVU^)>uV
zp{J)G(@zBLdW*l>XR_^fHh}jD>}ok;z-IYZ@F|zw^gO-o$?<trRTVum1LWq8Meq{Q
z7zhFO_G~=(Q-xb=tIIR<OwH$=j(4_K##LyoyD&ojdC+Yz;-z$YtL_psz|f8sMZGM`
zhi;Gt@DqEx^Ykf(7X??#{Wi;ajE?7n#tX{&L#8G#ruCUKRY0@)B((4$rjvat1&22w
zP;_m*+8*`_5fR!m*z_aK^JS(amOxI~uR1AO>!_YGSL%O4;m96?n_0g_-z6`mZ{7ED
z;SJz$bkq|rh9{rW0suZYVy9Q$cNScB^D4T^UAI^B3WdBXIhidjpM75tVWaqUuNL1P
zS7zg24pJ@-tUD!4<C6>4uT67#H(u;=d5mDDc|-E*R4sVA<&z=iSF^~BJG9>zaIH&G
z33KMtF}UX-0TrJ`|2JEBO!d7Dm7v=|70=)Z6nQ);)ZRUCb-NooLOVTs2z@l;{O4>f
ziA$M17w+vfg2<`G2>}dO5P1t;_s(8OM-^f`@H&IYEYgH}@DEAB3n4$y#Rn9Q?*xyg
zJqJHt2;BwmKl>+^mgpH%YHc@tfi1FG=b1HD`}@OC+JwEKNR?>X?_b?Qty2Y)umFFI
zE%l+YiV6pJ*Oth{<93!p*e${qpl?uV@SGKFVDIZ0eRxqGaJQ1l#01~nAxniE&qqa_
zB#d_J#3yORCzWqbSNJTBY%XL|X{f8^&B6H{F4rQP$%=}Zwu2kb$@R++PtB1&m=RP0
zj^{%Mt}Z9yBWE!uAq9fXS@EPHA=2Q&m}hN6lod6-k54#4G9N!KO_r&{1&GAQC%JT+
zyzv0jekQ<yV_V`wR!r)>^avgh|IY1lO6db5W8ujOj#L!60ClSG`B(xDqQqk}Y_pu=
z)xQ@W6~44ZlcQX3eP{$c<1&x`Xv%A<XaGz#oH947mb_jpDzpduE<Zb74+`Gzp#qv0
zgXbZ=jKHPix>c<7Q_AOKr3$4tvmXW1?q~WGPCc5gzjbjf+`(D07iCJJ9*sx%WsLEH
z7b6hho!i(Cw8jbF<DS`?nhBozD})#TZe!1#dM=a~RghMeMd-=-?qIMub-nKKUg+W6
z=uh1Sr#s!>W;o832O`Ma++5zlmYa=}hpXS%BZQEP)~v&i&_&)R3Q+*e26FO!e{$32
zt87_-%WIci2<!&^pEU*n53r_*nVIqW@<JlwJEoswRv>C?u*$=If=+1*Dv!EG4_D_&
zsM~G4kzI*A6Vr)-ua1tAR<-XcKA?%*`#oT@S&?%(K)JZU$BPOiCg~vcYpX5Nh6BS>
zGt&foPnwkT5eSEy-P+P?M7VZ?$Aq)OAf_MtCUe2K6~OJblB}E`6C|#4e`Py?cvuR%
zh38Q<FVrfq@aZItRD?igqB?QR*K$+%piUNseh~vI3QUO{noo|k8a&QV2jK)b57GU!
zM(N@c6M@#9Y8@b5X~tz~=pmrVZU3Cp_@C|j3kQ|lr9wjUV|spmewEY&T@4-ZOSNGB
zW~T6=*NQ6Yv*$tqU8~2bdb|VxQoHhMbP#G~8QIv#6G6sa6`k~)XbJLZ@cOGt<HkUu
z7~xmt{N%>1oTw2eAYJCi0yF({R=b0xNOp{f<Z`ncec)46&j_0n@M2pV8~Ex%;NVi0
z6~_rZkMZF{F4V5t(@EYyX1)_FLZ%I;Bi%H$;}ufhJqBv*7U^uG_UEBhIpTK4)XA)_
z<o|8{l_=q~2{zp&{=kpqsDqvP(eXwL;VHoI>BhTX8A@Jf+Stzs9Dvs3gy^?S@Eo}c
z5GFAFEYcFYOE6|g+dlgW`JN7QrNJ-(=^VCW<HtZutj5UT#5mW`eT;N$L~UL~t%ZyX
z4xp;4j^<Y#Yj%S}rxmNH#u$sl#Xqkxj@%ODgbd%30z>q+GcCKV8@3P>!;#C#pTrwe
zLH}fci~$U8d~#mPz5EWD$&iDX=iWPeS29-BiGAzmp`o1TPQjX0!lU=UM@EbXih@(7
z2e=k>jJBWI98xaK&50_Ia%KzNrT?lU0=&Lrq6x$5wm_VAL7s(RWBLUh9RNRmMz-T_
zL_r%JW(V$O-405Ni!lKmGHc*tb3#wid-j{3$e&o~?mhEM4%~2VhQ00O3=ySA8Nkt<
z0(6)|nq;68$?y*sP}D%@t~r<@0G5r~)*nnJK&SI9wk+KDc!6&>dC8c5zk(D~9A#bj
zn>{!w@HOAt&)k^_yu&y<L<6t`PND~)s*JIKFr5e>EL%zm46(D}0s{thPDg*FfKQf@
z3aM8vhL^4Rm1!9kp$Fq=fE@{u&&6sQjTGm5=`>&D{_DY(<DI0mAhBG4kZ=hN2quZ%
zQc?;h=X2icsK1#~HAu5V_(M4l8JQWtB;=>o<iCIcVBtLc{vE50_`9&Z_g@fjX$STB
zu$u8I4@|emikUaG(Hw7xr1>BGogjh0;QhLSf<zSyW}tOUDl0$~g?)Zu!0jl#rCT9&
zw&t`obdY5Nx|}~sf{Rax<JHU~Pcc0+MuUTUWNT3aLcyV7afarCmn$g+j$udV`S-0y
zPWxUvEU?l$$entIqHvyG2O=bB?-44nDnT&cvb(gLm1i*kS!kcn$*gFouMc<;L<PGF
z(*GSF=}#y3tlng@EkfP<9!!ggI%_TjG42Z<slJEpfr!QOUBhTuPVYT(uaDYX8gwQ+
zZ-?v%o(F5v*hV#<!dMos7UK*`J>ooBo^;_uH~m?*Sz2()n&^$eeSCw=Q|sXxvCB29
z`Lm8}S$O&Kv$KUlcnB8c`+~T*nOdpftE40y5B`PitXUtQW@LYLo|$PgqW6BQ+sLTR
zpxA?8cHAU8N4({tbyzOR-OPM*<aG(fo^5-3!(a-B*-)#XtT}lq>c1!|DLKae3?%+Q
zg4Jz|FePuRTy=!4VwBz4CAAl(_c3B{Mji$KeBQV8mjion-Q6^}D%1C-iN5r>k$(_N
zCDk|^^3~PVKYJ3bt#@s0i!J2R%B=es8y4u&1`Qf_8a*p%`KD%xiHNzlYA-z?2h-=1
zKQ3Ej2O}4u+Q*2f=@Mr7uo2o=X)}9^n>&qrh}H00uWt-bBw=SWY+folYbRHgdEPz-
zTpx3DX))bOL${x1+?NE1w(YVApaJHOk7I(f%C4xj&D9T%SlOZX&UZO)CKFBBs<l&6
z6PnFtQy;1jk5oHRk!-T)=JG}6s}@9CJdWS)?`PWOw9%<Gnr%VrrktCpwVQQ+#gT%%
z7|cykQ{$Mbq70d>#o2E6dCgGo&muJlKj89MIb~^aUS3f%2TH*V{i<7jFcD@mm;GS<
zsanJt!@mj(-Y@Bz;;i=+P-OG=c&%W0)jL?MZ%g6Mw}t4D3hW%^^@9x?#ICDIWI%m=
zY-~U|DK>T}4|#ZD=qnMz^huE=b^XtQjk|i*wyi#Af<apXCvGCcD-YOP^pBZ27bQE!
z5x)ryNIX1zlto{yz9}p~@f+Nfyx0)|9Km_!h|3R_nVhCM`gjQtLn@SJh=jbYL_{K^
zv+go{$P$i&D=O^H$oNqJ(JyG>R14QH)Qi;%+adV*zib-ukZb;2KR^AB+ge0i%=Fv0
z+>ioq_4qfl?wj2vuS#iND<mANvcD;@HL|1CppRDp0CI{w{QcRjy|ttGe+Lp4r3*>y
zjq_hDd~1<wBSVY}SSm3f6%d%4NoxbQPs-yA*+*f_?ni$Z8h~!my|gdy?Xt6nhw*@^
zie)aZ<c*>t9TU32(!xSaKYvMiL1q+u_TbBr`n&r2tA&NsJ;4WN>rV;1#w`YDE3(Ld
zGLXIDI`9+aTsYN{J<l0rhK7dQIdCV(8EEp-wAg?8_(M6r!HL83qUF`@{j@|x^x0gf
zz5Qa<&ZEOZ<2|B(RZmBsFu0MoXEITl=-z?{caZ9ni)w&yzEV=LQCw;W+B@wWC(J%Y
zNHGrpQ0U=n91BVTUt)lfk@3tRM>*dvJC|gU!P%iI42xj779yyws%~bwraC#%z|D8<
z;aXW<K9cac=f1YQX6<;UgmHvcOC=f?_=?(+lk))hHNI1@qkSGjoA8$X&18qzGx9Bk
zC{r`Fu=)T`@U=MXX<T1U+>ey#ylESbN@h&RENy};V=OE5%fgF^eSVyVv#5(<0`tN6
zD$iNUSZUW+ubKF6ex{{yJ<GrRkq{dVZTzz^FflmTH!#t)WaD~<XKASwt2SOzBL5ks
zWuHi9ptm8`K=IG&iPzZ<xT+|tv9!Ffg@$X4hR4O#u@BM)HRxk{7`Xa+8Jn90zM$Pr
z?>6|Z<`(7iFftaUd>O(E8yQO?jg1{gK?)*$7p^^R;XCmgk#QP7QWKs$f1DjHrJ<u!
zs>o=+$c!pita$B!bLnlu;0i0%Hqg|R6+-T1ago52@DuTUz<BLE+wNR<nkbq@1s;-=
zkn?*xA^x<vuv-gQzlBdf$Oh6&O7u$<M`R2m+I=QfBrHl%g+-QAz<BXry_uMpC>*l_
z2!mx^uPNDzW7=Qt+1Mf!K8M#v@9b!MF%fT=)6$B1Wh&<v<rn8sB_&D8%E`sosuXYc
zIZsypt5h!w#op1*w@mmTIf&{9!n;Fn$8g;Tpz#*~v=+dSo)`WsTip=1qTubPj+1dV
z3pJakEKo+KLc`t`#CKfC#eUpx(JzQYJp<2uf3!e_cmBlA^>dagT`kC7Hrgiz_4S>j
zr5qpDE|-g6wxPiLG`z1yFNBIw{ZQ^qYHcp@04L|u8(eZsAY&daf?}q^t3Q{eMN3OV
z<Nmfn{IKOp)J)Cwf)Z_eQlGnda(4E#&tBd4^v>RpUag?&1<$ea$Yl?XaC9?UI!t|j
zrBeYWI=L5gKw9p;`TSF@f$+x;VP2f2wPD*dpX1fzC!2ubm2>E#r%AnU(DGTW&~%Hl
zP^AKxOArjJg2*LTFX7kP!zm*<gDpQ@1OgI_&CHH}JBOxuTBQ!4meS?5oNsi4PYSMs
zvrTz9wlW<}_uWf)SFd63Y#u^@*4kD5#`*L_=<XKNd@W@w_0b!s_VSkD#RTLHr|q;{
z1dlkOn3%_(nQ@`54wa8lw@1<TlXsPJwAOZE4%3=v`%mt!=nl(PAHjEOY_)Tg84Y~z
z&~o?d>v>9V9mPw3Q6kb-=~zBC#biVMuFr!PT0CQsE+Ls-onhH%<m|a&_sHFdR>jS%
z@+X@H&2DJGH~ejw@0kLTxcC{RZyrd%^nJDyCiQ*4HMjnWH|l(C1{@tEvGBuel)4p2
zH*8CE?y_K|lRAe`-;*&<fF9m_ePVq-+p-G)9p~XQ)vg?n)1OSxP+zMhKf$EQ`vNGo
zOH;~Q&6Ab3b~==$Fpaq8+utJ-Op6US0U8T=R6-Z<FBc2G!M;t0t>xglpaS~(l))C~
z%Vy+%)hK@A62mYC8t(M>Liz879%hjRF>!K+T=jd;6y;Ds&-K6%ciUL3@Hxa`fpyOn
z3_l8~++>kUsYjT5<qp{1f1e)Q6L5&B&&stY;j&xcuscD`HGtnSG^w1d4nkYb7O)$r
z`tP<WC`c(MQhaZB3tac|7z+ysD0p&64Lr?n`gk0Uo>9ynou1+2Bhud4(Fpi#mY`j~
zT#_0kwx6yEY*tWZ9RDWAm+Fa>Gw)4V88OPrtIWa$6m@j&+qxHTk(*valnrLrdlvDH
z>bzDCuU_xhlPpXy5YATb=G+}dmoDBPy*aP@9ao~OQ+C-&>YS!mYeYsdpKgB>U6Kda
zDocK7I`qWA=QL|kz1T#dsH9}R`QoTbO9m{Y5gN5Vo5%+W%^h|Saq-uu#LYj_3_PHC
zFSxkUq!xpyrY4v8b(!OWy;FF7KGR5jc|mI#^8S#|Ax6M?<cx^7L4>e_ra!i3H4k@x
z=4?!AG;U}ZZ)U8=WE&Htq*DSJYfhb!CV3pE-#@zrUe;Ulkv?98xiS^K7~ZZ7P8aYc
z-CtRs@cf3m6R4r|SD|GDN_vQoSojD7<Q(;eBr*+p*Qk*e`KoJRrpcA-rYqJBF_l2V
zA+#y~TxcgE)}Z-*pbx}FKv6?O$gE2RK2IVQRk^{O1-;;8ee~Cu=30a2Y;{z6B<bnt
zTb&w<hj8=B@p0&NXM}qS(|a0+iSNMzui8aM@hrf1mFBX^96r<n>(e>K!4LBWb^pM7
z&GhR$`|P}4SXj^nM!v!j>AudBea1x&d?TRvXmPp7z${niAigOWy+9|Lv2<b3!td<8
zIcd<O;NHmXjZpP6=M<RDXs6p=PQLSQu0@{Slz-4k)qbDkyAzmpZ~BEOK>YQnxu9G(
zs+aiL<#p%<^zwYw*T-b*s11xocL`_rnd)7$wY9bBDNQD*-SHb1L0kLD8HJbY=3Udy
zByzG}PdDWu_bGABP5i>qB4s|Cz8lqGfzU3L<c8`e+zR!b&g6h1kM>495u#ug9n`6t
z6LzqjrKF5&{L}^~ScGy^L0){4;5LtP!RWq7;xNf<%>5GyOXKpXTgB`o<#%|Uvko`8
zyM5*M22~D<*Wlb6^RT!rv}jLfdb&2A=VD(dw}*6FT!Uu+lA-+)WYaEQSXuVERayQN
zKAHrSylo+Zx}Rb=QT!6b_>F%JtIxE#Jr?@K(GeXJBg*9)k~xqH`(xKEOHe8kSHgNj
zUYhwARYomp`%LI1)^vC6WI$EQ(sG@@CC_k5c2d2YPgQz}EPQ$xLB8O&TID<H7Da<%
zc>Fsd&3Ed$@BX*v=quxI6JulJV`C`-(BJ_Ng+X|WOU@bbR-U~O1)n)Rzz-sY0_^g*
zJMA9b?+M*tT+B~*b4_gKxSN$z8QO5N<+Z&RL|C{3?A}|g%O5aH^eclYS;wY_muFdo
z3<uwNtr>E0ZDwXZ1};}i@eq|n;>C+q(WyoY$@zN~FRrJQz6Y;L{3Rhif4&Gk{G9bS
zd2$P$AmbXzsJ0L2`?GwEijv06ucV}e2Rx39&%c!x3i^(<y;#Zxd_~7Z1n=i7=WiQj
zZ)ZNk#HYx5Vnhx3YBzt$r$=RU9phNJ!NTXeLN2ZZIj71nSg78$y#bbvIdAWr#Ucm+
z%@!LaLro!Ciq$}SK}sPvZVJ)o?@S+4@HZr+c6PufO6(~HHfqyg<Q&wLfCMfXw;jC9
zD9Zx1wX<(BM5b3anZh;vat7v`eX%(zvmtnMtHb9;1^6XdYROVzH`qT)i5uo(PPELy
zQ2R6z1g7@6uu0$Zi?c5^W2uao5FG=9(xbA29xgl7)&(?4gEPoCJI)(|8Vv5-PfpCd
zzP+CUR2wi`&aO|v8tZX+e91AZ<?mmh5cHwc4moF;=pk*5{IjL>A%5rCHSd%>Iaou9
z`rBt`bM%<zbFq7U4b09p8$l@zqI@}7l84%w;2f+%7iRe>W+YIVn%Fg4h3sz;*$@L$
zbjyI<Y-LMklc414G|<uH8|zcjf&wdICLhnypYw1VjS^aa+QZeAb!!BSEPvavy!hfM
zI9NmE26Lfo$Ph#{$bOE6Jo&WO%AbkVz}leB%mJIzN}0`OWN)RQ;Cu(Q(hY0Sc@~Xq
z)bI0@o5BJsU`hA)`j;=%03r4RXLETw=tDj?%5<u)fvy(_mprNnDlXBy3+%A)2g25@
zk>ylA*ZcXS59j?+B_hcA!FbxBOiHi?XZEUl0157&$!L50;6us5E-}*h_T};ZI|(aZ
zXE87Fnu+W>hvOZ8O_nT(191BI$rGch4gJZHkuTwP03br>vzocxy}ezWPn|Gbj~Avq
zG&XNo(<EN9HPNq^_XNGljO?mBOWYr`)|`B8t{0@77mf&~{{95PSJw$dLlaa5F&tlP
ztQ~*kM@z7e(+iIZ1q?KSRB!u7zd#Bbt}}bjw`v&f^Jf+o*6m-JazA;c)9A})W<7PP
zUpX39Nj$A>Mlw*?(|vfq{VX`H1f?~Bz1T;20dn)&Ywct-j|FHQFYIwyEJWUU2?ags
z|6A_?*g?-DrET3w5{yOTsn&+;Z?H)_<j$<YxD|&~6u8svuE!kFMb<VpCat<uJhrRv
zNp-R23BDj7=sOea4W^2`SaK)8-ipGb6tppnduy?Q2sVJ;So?g)(k;1!%>Vq0e^8PV
z0kq%A@`W}+!)+VS+1*b-HTcWK3YOCl5jBrDVhmlb=~e6EX8VP~9mtWSqTarJi(Iee
zfZf)78{F(Z+dgY+EFBUc0SpI<dPrCdW-AY|d}fnf1k5_)gh1grjFba0U#oA5?Vw-p
z<xd*rMpk%%`AP^@*3dA~)m30U*@uODWOPqT2})Tmr~vx)%_sL`EaR?GOIx}`CQvDj
z-XOD+kz$DMvd-Z|x310kb3`~1L|N@l(W;Xc?K~@^tim34W@_|U2kVQ2Q<Zg?Q5eNB
zQqrJMwE$i;mz>ORV8D_K?ftcU?DB3aRX(AHUQ_HBvX166vIS(oAb+HhqU3im2JuPu
zo`_2$Z)!nlAA_5BMjnG8<mS530A*<<C)*-!fY14W8km~Vz6cNh9vsdOIao<J4JH!T
z8>6wn>q7n8wEGP@bX&tp8jAqY1Avy6)@2<_2In;Hr;wS6?b(bD6`HWCtF5`4T{^5(
zbo~64r_CY#-7-H)YiEy=1$JOvAU{j2@~*pw+kwBJ2FWJ#G}`0xPX~JpLdCjxfc1oZ
z0;{dJj^}WII|ECi_o{igIquAEPricC1;(?2p*D1GU}^icvm`!MljG?C`{rX18Vbj)
za+E!HTz+4D?IW8k-XkHw1H1+AL0TYC?Q#Co7V_kA>0E;=8L&h4oXcj$@p3BPna)i|
zM+enU*;x!uvofUE{+ebhlTNQu|C=KHSa4+ZxAH1U`SoKL%r|Cqy6^m-><*ElszY7T
z17~|a9B!`Knwg1ozhKsDHh<gdc(rpj@k2U7kyhhRR~MtNA-UeFGYI)Cu(Fu#wBKXs
z%`la&{*Udc{Fd+aUb}$*bGjjG2C|35cQZ>-q~K;*Hk#kJu?3kTi(dT#P4sXx9MlIt
z5Q^Ql)>UpYtE-KJkjHkVB|H5uoAfVNk+P*8=jUiGtBE9m-r4RX+@%2>t@u|N&Cnv(
z(BkCC?__4R%Y726cX|(TL&Ab*8t>_W?Cjjiygt+Zxc5C2FXz!f<wy=J%R2R?8iqfd
zRyHB6T}uV$!WS0VYN0gZ&y$UoZ%JXua`_x(HMQ}#nzz&fx014@Sm*K87^JrXy4~CC
zB%tFF|2!E{e3MivaIs-MD3xStF{pRD6m5@<9TFqG4#MJ%rI#}xtSY9dD)tPB(NLw}
z_SnlBY_Ybp%P%P4@mhg{HP9AQwh1d$)BVmKY4kzEYrX1)fzV*fefY}SCzx}ef!=KP
z!y$6J6XvXV9Q4~`6Up0VH+JCmWH+&H>eIPzda+jR`c^qRVihd^D$)|!EO9B8rfTn}
z{E+1?_e6A(kX)+2pv%^gI(7M*faC3-2*Eq~Vs(R$P1>Npwv*-*_qm*RK_2T%5Y?Fb
z>BPLN>zVb0ZO*D98s<5Q-zAFU{mqs&!0m)URIjQ2rJarpz8Co~cB1*MqZWw)Sy{Ux
zEAsnoDR%+E4;(GjAh_NL^aX%L<Pje`V5Q}`-XzW<n|2CE@C?2aP%$>9-p1ro9-UV5
z1DS17s`J3_b=kR>^nW6J9oD8Sy)H4l&`N0Lx1uh#_SdC^{xrKLZL_s*?5({MQDLWE
zH^;a$9G;g5RLfVDO^dm5&Ks^4kB3SU*cfA5u~qt<ToL$xlP7)e(i^u}gboC2zIVDz
z_pHqGGyfPqp)--7FkCr&F$jwBIGclpY!vZEeDR4SP-Jx^sfJpPa`X8_H$q;&(yq^6
z(|+^8gUf^@DImS7$ar-_503cS@doj8Q2%JohX8<opN(>15{Jg?Qw;KRXiyUm-`EbT
zuu$;%*5u?=Lms6xoPcHMmXLtJe8RAi<p<1*+NyV$e&36d?V*<x+NTT>tXk|BF1>TH
z%_;kSpnykw*2R}Lbf*Gl`O8Ze>-zw3bL_E^r$Nu2+!13S!X5x1%5ia7T!#&PCLkAj
z@OMo|N{*Ew*<1D!P4Ma#^Dn=IR$dECBQL1Z>=Lx<LCe+-Pfbj6$lVcm=e`jGQa#Y2
z1kL5AaX&i=_H;BB%PbC;zx?I{mR3iZ7^!1Y*;@zcd==+{qc>5O!17Aa;V3>W&3&gI
z9-TMfZ{GSSw@Lh?!%{#;A>bgm>|_cr3tp8Zj*BVxr%36@UI+2`NZ-E^^Ffdp?JQ@p
z@!%<9q<&BMduZh=$mKJC`Bdrj?)ar+5BrwuWZ&SB2dBBC(<rkwhdK=&_y8zv+-%3e
zwseehq&d<J4tEM>ICg74RhS#c-`s;W8=Bub3+!UTdhh}I<w8?J&-d{Wn7y@A|F1_M
ze6L*PK+!@%ec;!zbJurrYU0pvasfF4()P_$*yWn7*FcG${iY*#vL_fVNr+xDs#HEG
z10&n}H+1%35sL7+DI$Hs#Kd%9zbx>(k-eJz%kP_;D-UsruPtC{g<)~-;C^S^3F-R@
zdjNn+)HF`&6YK}gnO^UEOhMgz3q^4&<?3cIZ8t{iDfR;s34*LQHRM8$;ZnPXgQLeP
z7`&>u9=Ja8U}z9mS*O%wt?qx7pI<q>lFo?=Hx~OE`0g$W120IY(f3WI0*1*w(SOx|
z$ET<Iu<JaFIM_73Z4_sZ%eC%TH-cM}bq#ph2aF4ytJM&TRA@9!&sQ9ccpU?vthVxQ
zIVmC@`vJPh?OpeUGYL~3y9ho7PbX1Ly5#QV?WlXaP#lYn%i3iEs5qmf7d1JpA6lab
zzkSRE@e&kxZ%(JB9Y2^X_<4W`bYMVL;{*K|g?bG{5rDX!9&+-&1#D*PBYfXE2p9Rf
zp#4QE<T1IGN7>jbozQN5RxrE5D0w{Y+g53$ke8=vh@krP9_j>EGyXe|o=mO0L4B~6
zEG{gBuBIr6G&YJH#?$Ba^@R6B<&#@}6%^2Naosmk-5Z*(o?g8X^c`()4?|X3PtLwx
z@Hq|0rJdg4NctExSHHP5Ab_d$DC9@2J`~v!M?TwV@##XC_eoxE?g2<>a}z&*#!cim
zB8qGGygDP;Vzpa$>a71NvquVw$m)0Jt{$51ca!od{D}-wGHEO*GY{1He0yCwz<!Z_
z8e?7zG0BOp2nrO6t;Df5H&jsccRbt*s@&AMXifj@6Q2j(Bdh<-%#3zm;Dgn(Cx7ok
zJyk-{h?tBI*Hm+rFMSo0i;FqRPHrtgvDA6iicg2^9KPC(Z*bS`e(b-p#f$;GcoZrT
z79`|o`bMt~MH6OUdUqNKZU!06_O`?%sRa+$>GS?Vu_B1Pj?QlXuDXQyS5_`a+h^pi
z`aQSrTu_Nu#G=pHa-)6ovw8O4vecZM3WL8W;XemkX1B`D@WNb#@PT+kQ$C3JnS-k%
zYX7q;1jV)i40<zsuWz!b93qz6{tcJg%Yj`bt8Kh<duRc=0Z)c6Tyb)$E3hOqn)IdZ
zedf8lYj(FmI<M444#?xf<?O{Ge%v)q3?y(onCbO)JN9bq2#HwqI^2%~Yxbp6oj4l{
z>(e=Qob!F%tkIo=;Q9p9&6;u0M%tz%YJFSp^Q0?`+tXuqC4ij?-Y?vEIAYBr<h*iJ
zqn}ul0S!th|NNOFe)leg&E3q(ip?CM=yuPRQc>FFQkF6_<)g5IS@TpsY<DztI_(&3
zB|eq=Z!bv!ccnxi`H|>;W1{}EmEDsd8(Aq!Pa`EqKN!I%Q|GfN8v9&}1T1v0V3~o9
zTiV(6u+SG3=exT)y12S-JZHgYjOGBHtSb*!_ISeMbh-G7qu-r{z&n$f%R?A)OQf_!
zX(lEi*2K(cd3}9&0RL_2uiieEBL{agJGn3hdisL=VjOJ5<e-9Q`tE+y#>UU2?SujO
zaOQz<g4#O}Xjh_6R-%+Y`yH<Atr^<SB7xTz*{gYQwDC5#FMr#MVC&b=D#g;}U_)f0
zpv#)e^>Oek9S}a31pm&lqF7}Z-OV%ZY{4H0voIw1_3cx$=>tT~sK?|!BP|AbIHX2|
zhCCalIwh{18xFXHwL?W2mX5i}QIlSX>a9em?QUZ>XT4%=_;<ILAzt`Ry++&{>)j+q
zYqB-$@zt}9H-%*3sa*Wu*W)jLO|M?dlRi>WVUd%E&94^<x(ViF=2Fg5iRxv72@o_k
zhRTPH{%unGfi~Ve<J;X0^HTM~(~w@YW}PQz_NGL-GJ_-uSk#S>D-Z7H$s<!^-sjR1
zTH+~LDP}PJ&*sJ|QQ7i((tRuiWwopkVMn#qY@=x-FKk=llTDaen-la*jm&wQ3_PUG
zjm-7SbLu@b7vBZ{K?m$iiRa+V+4NY)&IC9J!0&7JTRKQ#4E)Q^jD$TwAhP*OsC1#c
zo~(7`8?FOBD&i&5z1@QQ3DEm!th9Bt&1x&|XP~!^;pF;g##7r@#PqsZ)MqZ)2Jp-N
z^|dgeK49Hg#mLm1#ois$9Bst;Fi0+-!rar*Q*OVWHp7q0R`qR-=vQ9LvzdOxk1EhY
zbf=&o{%hl7y+n_1Gg2JbXQLvJw0G}Lp3OlJX;t1jNgrez4f}h!D}3x#&X>Alppl~B
z_i0Wlyeo3_q1b04NNvFfYD0R-o|{#6pPjk6H-Y!>5Rypaj3Yfx!{g&pR4-PwKO_z&
zLLV0@Yn-0?HwnNG9mSu~2E3etR+@`t-<wu$GqHgmz1okX*dP~2WL()6j-IyazQNHc
zYN|oCDb>?|kOEBtxFpNbZ(?e(dns&~@a&3pOPZph-YlJ3goWYY9dUahCH$*M0cPDk
zs~?;Sq>o0q7?<|e5hpud=4kwSdtT_SyR+;=BeG+BzwI>_9c;c}xh{ZqDyT&_c;1zg
zO(5sw@l^kQ4qpikF#=h^ho)x|9i8%8N~!y?a^gC+N``O_EknBY8a9M1l;IV`8A}u@
zE!V6{zl3>JhbnAZrlEbFaxIY{oughbW)+2d?t11@jt1N@0K&j9-&{odOVQgoXPjQI
ziz5<jj|}7irn~`~-`?%W)JG_Ld49swd;Zo}wPi&~Ndmy77cbA0HsBW#Xd>?F;}=&c
zX7hX1k*U8Eqw$9#k(%1<v!(UNd%Nm-lfPiqzzgDp4v9+?ztTVxDbN1m-zStJsamzt
z=HItpu|1U*qc!@RT3_2oZlgUpJ74M=B*`3SP0LySp2X;h*ss&?c&Ptwp!*F-O0E;d
zJoISF904_u(>m}`H{R4I$jF-f_P$7weT;qi5_w>RLV2xXwUgbs&H=R-dQjYcsDw9S
zes4FB^R$}GEv>RVN-XdyL|hcS?-!4fhSqtQ;NrBREsCvZ0FJYxb0{isa;Untm`|91
z1^A(smB$PfmW`mZ6~Q}e4^^w~TQb|dJE)^mB$)#+y$I2t&1nN=)odpE#@1%~+FG+?
zZ!uBDazRh3I%iEnLS)yAiDqi)Z~OsYG9+1BBcrs^6$?h3LV)yo@kqyA{FH3M=Sz>C
zFDa>OxnJs5G*{P0H^&YTm4Dniu;DXT%pO3+JUdu`X(%qFgnY0lVM%>HxJ<~a0{98!
z1|u(N2hP>YBatp6=(7TNTE=#?6>KDd7#_L`Fo8OSptj;-`xp+6zR$66YR;#L*bk&*
zwR31ab@74sJ!_B49}1w6bj$u5{$74v8ZK-bo*FAsj>e%Qc)q~m?EyRLR9Pi^o|Kfh
z?kWD1FG4?;zIS+Fq-&%|t7It6*uqv{ZB|of5gl+1s{o%!B#|r9YNK<FoH=fFe?yq?
zt7!g6n$u*llVg>9A9E&E8Z0p(LBrTaUgf31%-G04rs&<g{nMW^W=t5hp!Hg?)5o|A
zq>E?3>(uskKD93shS&Vu<`D<dX?qZJd?n!%7#j0a2L=E1?z}|5m&cF<0l}UNlQ!T>
z`%8YkeJ7k=Fp9y8+RnwjSUN@bE=h`JifbQE_`T^Eh<GUAveBT}YH#)PV)yBvmqAA_
z20vItfpGRzTJ1+fVepSqp&YG}Ptd|l(WVHxY&$`R&#KYt#4B441}4rknh8=Jw1u^4
zJ7iCncDJ*I{QszK?JqmL%1T$rh9M_V{qhR$0(PevV;kzlAFUk9M`W_SXGRQ7uYK3)
zl#ZS0o*#xKRU)JOz2^sXrDfz{0%l^kAlCgmI(|iCg=A6=WvW>z7pvnuxOK|~gq=fw
zkBPOWj$|sH)af>a29`5WXf`HNe;zzsIVPIYfv`9JDyT6Mc5wic(b}o&b?=|2jDl%}
zi~bk_o+Y^?-!2=LeE;bs_VBiLsH*+MEJ;U`A@l%n$s_{|GbvD5xpUC0H-Do&d#en!
z4zs1yyC(V<+Jf^s(!}IW_4v6#%^c@{gYwVUVDBA&i!Oz&1Kocbevj%RGXIrj|HkS6
z-oOlw{?D+#&6a=e_kZoh{vVyu|9w<O_p=Ls0>Rd1KShfe)d{|-cp*gppPt4_qwdJ~
zAVc$B0;pYOc~x0?!%a;jjheE)cvMWVVr#0rlA^j&=jN#gzn$a;rr$}(^N`H1sJ@al
zS`%~1DzhL8><Fn%z5p9ls3WCF?7aO|Cq^=V^u@x3qG+zXDer7tZT&^_$Fx3%>WZLr
zt~=nC)MhAkZJu(Yw-uE)ft^EIFF7lwM{+kR3Z9qeGe|-{k8_-z;mJKNXUNcs$?$ot
zQJ@N+Koz!au4<^!f6KXErmwa*)X~HjE6rp`fn_3DnbQBWFLqsx<8kD#6ujN04dSbW
zj<x8AQj^M+*1OMBC~RG8$|x9PwP(htiB72QZ~~-@nHfqac=Wqctv<z6|EZo~OzU2C
z2yzQ&ky7q7Q==6{iL*95<oIZY?uS%?yJ%JFPQ0}!jeLQXYVK>2$0)A!dR>hiU$S-6
z{pgO7sCT6T44XkaI0a9)8so^A*r%ncC=M>JH)~F>17F~_T%0Qr(JaEttIOYcB>vT8
zx^*n7NE84;$rz~n7aJ^_(AQIeSza6$>4?*aKf-8fR3XRjUhKB*x_sG1P4S@9tZ?G6
zvb^F~vAv6PxxqVI8Xt(~?cBJ^!%29@O2f5;yGEd=isTSiYuCnLi&~ZIAw!0rftn7<
z-lXkBc7|@rFxj`nhAvkf0u9y4k7Aj`_1>o5hw*<5X{*ZJ`Z6%`W#tOw(7#x0$d$b#
zA=4QUu)U=sJD(VrinVgp5|2%aMg!0<8zLx(;}TTr_FEaEXvP_<|BRV-b+l13hjX}w
zVTS8{l<rC7as_=2gFCfDfkX!cV!hTNes#|f2XL2u12w3XG_}f9E@VhgP2pRZ=!)_Q
ztO0L$H-8$xW+Eqc{4_5d3-1KOPa=P>wi@z0TMiY)AYWCW)-ba<CAQ6BFobII#;cw=
zmFHW_tZucDftp-OK)sfyS^ur&EB`xz?WFOG7ELn~GZ9#C+kn+}vLnL8L~?Y>JesE3
zak6|*CjbnN+!CYXJyyX~g6zm>nzPQqd!jhCL>V!J&XI$o_t`Wl#rI$2Jg%0D<v3I=
z4MSZsD@G~)*f|9`;$Rnu6<t-i<z{(R(d>l!21hlX(lSc41YY`LdU>9&W_7XB%p5US
zQGu_|^jjR~;PO?-_3yLj%~Gv+8R=feZrpwL7d4m=G`0#HU#&{#-uTaVkU+AemYbpa
zq=c)YBdzvdZOxdS;x*0%x!H>|O*eJ1Ii6WnJ=4Q(Z3rb7)5?^KB!}0oH!Y(j@@}1G
zv1rDS?-a!Dlk<?qUx<q{NdM~<49n=stbLWr?wt+=*p;n}kN=n${ih$C2{Ij{T?8lR
zb%8ZAFJgTz`*-3}6E}8D1F0;)!enSQJg^bS=$^^h-Hzor>)TLhQd9KaTI(bsRzOk5
z=>BuLpieoF<VFE=VX`&#w)dCOY+OG|?rFdEnH#6MYA>*r%AXz<KpixY=YjI9ujh=~
z7Qx4@oVwfCVa2njD^U!(%-u`39Ikj|Zsc0rCNX(QPo$Kgc607mUS5a44h+{wZVZqM
z(}j{tICpeU&>i!toYoUls8yneUf5SB>NXz>t9l5-;@<(>Ue_lJS(}@(l;(T;i=$ma
z9FVtws`|JOvhUkuT9On?Mp?FZ|4;wZyfEA&S4_XY9#UB8>}l`FHbD4<R99Es%%Pd*
zN}P-Rr06X?o*~IS?HLgXYncK%u*c_Sw3$(f*!eU$>SRX}>vKM#f{Jo)F0qh1-@OfV
zw>=?AA-B~};r4%FIN4T-sX#N3Ca8Q*vT-&WQP;@(P9;30nelOgca!Nuz;uHc*?iS%
zVb8Me#JwIn?yGOtM=U$0CCc|#EFSVW>F2249gYX+;?vRH4{YesEqEE7`(Fk())iIM
z6*-M9Ewp1wptUZm#Nm@Gye%zqtE$~ryipi9a&c}*PG&V$gtzlzs<7MX$@J^9S${7l
zov`Q2RAdzL_K5`Za#ZzgjoZb+2MfCIdy@kyEN?COB5`DT?`J$($9tGB&MEx6FTmTn
zlF2V+Nn&`E#QD)|@xGj6XtKR+Aknu*iE*~+;%h`+;Xt8FZUoh^`)yE*tUerEAkybs
z^8@+XDwAc7o8=@wWgVT$GU%s#w)TF`({0F8EDR(S6vrJ1x}5iKn)6KQaJ}ypyu2<2
zlZyW%ff}eAB^B3OW?Hs*ntXfTS#J)WEQM0V6i?c)9V+6z4@#=a(i6QLjp|KzRq5^9
zFE<_!Pad*B(s`u+DxClFFn)cI?kk*6*+=u92meXpO<)_{-cHLP&<HdFM^3E#Su~>8
zrZOCnf(JnBx&!%MQK9t?@M76%Cq@ZvJDY$xj@=B=>MnGjRo67qIXtj*JE>gp!QY#I
zK6#9$XWe1y;{4j_G!(=?BQ&pJXanzb*!M%9m)qu_eq5xCVAqRIv(SFe^vnK}k?7fA
zx;mdifgo|>;CTby5a{FymmalN!Ee_PbC-1=$*gf`Ly@zKwH*?!dC<n69DVoGp5DiB
zC8#ZL>s!eepLVa?)(J%gsep4zxlf;L5(O+jnFbk{22p)t+X<j8rZCD4BSSC3e=GWd
z^pfsLR7WoDOOXYx5hv}*&P~>G4CXk(qbu?+Xux`GwcWruDbIuTSPo`+x0ZSBL%rGQ
zml#}0nM-pyWNA(1@qNp`#<T6YCfyAZZ~UG+=rt1o#*lAA?(yYHFEPXECdN42Xj&r;
zRHdWFzDD|R?Q!?wJ7i}s@_Gv97gf+smCi2tD#_z>x@_jpOAf3*jqzyUIS<1>q#O!M
zz527=r%_@7cHoL2=V>E$SO||~dJAg~g_^yGO})N7*(`~o;mC##`qMowX6ko739&O@
zpVicoO(Q%!*mFR@W7$bcYUzonps*SXO~1nEyOIwUi$0E&&ak<;%(|b6XJ<Eq!=9MN
zkv)4oA7I+`mbXE^Oioz}<@U9MG`fdm6w-uWL5Mv#31j_W^4eIXI`Ms6&;ry`5W-?R
z=W64y_$M<;I;Gjdh8NInj@;hZF|;;GNQ|`DQ|)io+uJjhIn?>$mnwh?yYy_Yay+IH
zCxxh}6GxRU7+@4rs1aF3t>GLXU$3Q*Yzz@#eGzp3+O<K0Mg4Zl;_m!abu}LT`GgdM
zR^F2m4fV+@uX=e(fgkedjlS%gL&2eVBea$(mDM?(5rnXZudYij9owBlX@_~luJ=V4
zt@W#Y7t203pOXtNzOW6!#);>y5E5xk8R?bdi_n-DyMi=^Q7v4&+#vj$EdF)$?mG47
zlZAQA_bCr5?4AxJz7vy+%2^+m59ci6!*p;eV_+zDa(5d_qXK#htw89#pDN>GuN_jQ
z-<ss}jz6C200a2^H%jYt+xgb^8-x?MInK#>(j0ii<)SiB7T9U=S<g-Od~BN9!h*xG
zMi!nWMJdmBgb6l_3UKfc>9|ov>^@!DF&#`b>fJ&itD$=HwnULZt@<p?ITshx?}d;;
zy>1WOnU#Tw;dNm_jXoWn*<j?U7Eb^w3bgHeq*s!L=fOzWWLiqXPoJcODVTc%9$)xv
zjc-I)j;EdPF_=fTZkA7aXRPzJ0$#6&yK&|*>k{B0Qr{OqZ}>Wv%qKbCCt_V~^E`my
zr`Xz9ox8Xu3s}Y%_oLNA**Tt~3X7|S1tdHJOCKwg)-kc6$VvT{pTlqXhi2OYX!4tW
zKW1^a0RA-lSge+qfO)~iy&UGSzR_SCXkfspGBbADmzd(eLcJ+Z>f2amvp?~{o?mFT
zR}?gm*0ag9LM_7BI9R7WkKj8@m}#l(^7+bY>f<6hxgXf2lz^cjdOpZ;*BGmRSHzY(
z7}79K%FCnifO3IG&{+U`-7HO3<z&&ZbF2()2;4j}>xxEZdcWws?pT-r1%%15iAm0n
zVFI0VOdwV&vz^d}KR4XF9I*&fE=I0wLP5N<wRua6e@IgFa4{JcBdVmjxK$R`7+&d~
zQodaU(!OrI2<v-QSH~(Q=3*PW$Wd2THfJ1q?49S&$&wOhp(^#Yhsm(`DCe62gyZoZ
zIX!P};jg;igR^oLkR7r_{N#^tI1?7)%oH^M<5lV=^TLlH+5P<@@ER8sGMZqXj;)^#
zK9vG<_}z7d)>+sHNF9Y>pQ4&m#tY7FY>Jt>aDyNCjf8+FJ<tLF{m-f@wV~2aO0oq7
z?7ijm?iQ2q8+d0WFR<n+HciET+3S{;y~<;u;E(*6#`hmoS1DP9dmii`&ZOl@x-T{|
zZ%$3WQQt5JVO*|)I98kKk>yjOm>^lQ95(+`G+{M4J&E&u*7g<R{%3khYBx9E1k8;`
zr&3=&Rjcl?tcT0MJ93+|8f20Z!<d>18kp(s!|M|++b4-ZaTCly^Hrx)O_r~4ne*7m
z27gE=z0RFs50$fj8nXo_o_|I7-sj76v;Jd8C0=&bNlwmQQ|tg`aG5wb$0xYJ!gY77
zxa?iDi?e${arDB+M)Ae4+69yu%_tgIrq`$HzK&v_X77@ebF>@Jj^M{1#B#OQh0H2`
z?j&Lacc_*qa@PLoV=UN)h^jnkTWV2qfkwZ)gOpqv`PitI)hA@9P#8N@7Fz9$Td^%W
z_4X+!kc7%ABsX5K8q5lMxIPLTJ+r*ElRtkPxjoUGhuQJ1P;JLKPNlzJjCrQ*)jQ>>
z6>Y1DHwp^i36?UyzDf2iJug-UA7PsafXW?sHpkLC&{a_{o|>v+Xkjg`k&A^m)nv2y
zE}8)<lZ9L$oszH!g(tp8R1-ig-;KzB5}eoFLVFK_HyC8kbJ*B}|Hx85#=4XR=$Uz|
z?l2?>zfO&1mrG3ysL1-Q-mb?S9kjT#5&3sd4lm?3<StKbzhS5CXl&%pHCr#8_S#y{
zQAr`U>3d@pp4xn}!_F>T`narZJDowJNRa`}M_{{%+Jvclx{dkI<Z0t#twaFk*cb<R
zPD!RC7xlBSw*DwG>2X409q%mH`yOUG3$bqx%G%>BwXSq7Qg2u0EnKfdk34iOFv+T=
zQxbF(mDKtWEk=91-sfO~3g}$toFE=#ju$5Eh~3@(aDC?DScT>ndECrGo1>-*Hl1;R
zBAkaOH=6Kb{7^^s`xK{|t{MMC8cDnZTeFwt6+gaWcrG%(4Lf-BOFh4E_xX6X7vhIt
zKa<lf&0nocf1OO;K}{_Q2O(rOVR`K;yOEjZRo;?~@kyUd9*Uo)sWI)NSdH-pp4rM?
z@(GD=51u7c0kU#m4@&S|h+2Ev%s;_W!N@Ha_&^_}%&2DTz9;<@;GWURt2}wM6~H&6
zGuo$AI36u=mdE#2mVEgB)PVDs)X0+40c3TWe80G_(CSMDne_&*$=$00>m34e8Smr#
zd^p}Sy}SgPeAiigmUuz7p-F%IFE(?YvUz!ck2S^CCM!Mj$^KI)V&{?Yq7Mo{QS|Wq
z^wxUR*Ub++u2U)En+hkGk(Js?2^>JjbRpxbB50PP@@dS4q}NvGkT$|Y0ut(y0#({l
zPU1i6nDBK>nI|P;C7Lq*HA|==6)QdMvXhmOV?th%N?fge#t)dsdHi_Nx&4eQIRNh$
z12J{`BT4|smuR(Q94*xxEuY4H0P&5@69G`h>F8>c60fzxiHY~nfX<v)ICuoA0n5xe
zG_xT$HGz5Q)W()6ROXF1byms?@;#gQ-+0E6!BtY`w2!J`DdFepPscgZWAoB~+1ogk
zRkA+9{w~mo?l@r3a9otT^{s7ncg@h6daYXwV;IzMh6)>@wP5Y#R-<lRLz&3ym0oX-
zvt3i5T!<%ck=)==Y~b>2{`V}8+Cx;3;Q9)1(7}F<bq>3MWivsGzO5y5BpDQz-h<-k
zRu*<hb_NzgBqiAuyBQJz572MiM@zrGBu*Hrq~K1iyZH3Qw?5kF4)WmA>wwoof}Usy
z^ZmX2bj~iRq`bid;>GIZ7*_-LY^=rvNWZ|DH^j$u;j`6@Qf@JXC+@qKRSxvS&;T&u
z&bn^xH5%M*uYBS%|5)U^^6;N9Y_L%OX};HJ{O-p}B%V8&vD@8wyNr2+nJ<@{V^x1I
zlc`<s?(^)Nr{e?RHC>yvg+&Es#DCV0KSrSgm=Nof-WLdXpuE0K<ePZV=Xb{03TWh>
zIlki0U80KX&iRN<-`-ab3!9vMHe1w0O)DxErFvfc8^wnjcOW@FMqOp{2pI=uQ&GRI
zGuragzcc;~9`{<HEWVIwnb+mA5h_rRhI6y&T%=&1?@C0t8dDQZX={yfz2}*pMP6>6
z2e3;FqdC-ZPxmD15MjR-IL}L@8Psn=0q6$w%+xRDW*2?#k55KIc3Osw5JVusmXWC}
z*x|L7sl?Gx_Gzr2o~{XB7#YbV#75uW`vF$LZT&TsH7lncsFZ20!u2#)>EGr~j$N+y
zigPZm3p%VVUHU%PXeV7Q&-;LB4AdFm9oJp7<@v$Iv7Y)y3}sz(v{>Q!!NSyR#U;gg
zfrIJv1vMqZ12bSc;NYnJHD=}YV{B)}>y3<auEtoiU0!o>wQ>$~oyx}Y&PRowUZ$!V
zHZG1wSPvx9GVf)jdn#(HjU_JL`Fih9y?n_WArrM$e7lkv6|y*SXk;&|EPcM!){G|)
zUEj8JX?jan8ni7sK9J9-L9fDo3d+0Np$gjOEz!+*B2^c@AZ(3ueB8FGKu2MguQ>~o
z<873&crmq7(d$pg%=QS6M6&UFGU{E*TQ&|5yuODVHm~I2y}}UJ(Mjavo5Cd<deb2J
zW59#Uo6`O?b=5eM{?DYzW%{RmH8MK_L?!RG42_gld}vyVkVw9=p0xD6^D1(1(eqj)
zoBJO&ngMY*lh{~zwHY@+vAMkRN0ywuXmAj^k8p8E9J|DFa+J=xao1R2>E(<p-LgIs
zF}STbc2mmFONuV4Uw8Rky^vT=bLQ#E?e6Tp&~(!QQg2$(wy>(XH$4fZLVRd|ck>)N
zDzaXN>slf(lExL3Aq?;B_Hnr&rDUb0_Oh1&*?&==>oa^hsgu@YG5o+MPj^b$b<T^a
zG5L0t{7t4Ef4U3an@oQR9>8})M*)SJO_n@F#J))6*i~Qt{9JOKuDqvsm~M`XyW6`b
zNt8T3J+(=p!mThhMO`(W!{wbn%Y@|2j(dAg8_bP<$EtE!V1D)+Y}(0FFfg5nb>QK6
zRcm+*A4V7PfYj+Wc~vGgMk~Jf*at5xjT_;LURQI~P^tI{e{Nz$4R29X)mGZy-Je0?
zv(`=PGSe~gFAepCR_5WZI&sI9<Q1wip1)((`;xgd)4vB#{!)<0Ylx|URaRYtdvc0P
zaL&P56;PGW^Cs`8vNn#*66?I?XI%7Xd*jVlbWbWipV$0T8gJR^RkX`@((de8(w;1>
zmfw4<q>M;w(D7+G_i@2&6NGHPCRO@e2$#0!F*7F%Cbqu}Ppvlw9b#(}ktiamC<e<~
zYSBB8YF64k?GkefJpZ;#7^gAD7{iE?MrREg&~LL|X~DyeFPDA(4|{JJRb|(94R1n9
zQc%z>pn!lPozmT%(kRj`DJ>}=ARrA=0@7W3lOiD9%_gKajdX4J7T0w@_w&9#zCYjZ
zZwwj3vFkj~RmXA6HRoKDb|RIw*OFk;RfcbtTq-L*<otokw*(~+(e482>jo*TXb0P}
zFQyiyAz0^0a*_b>b1+{Ms&mXPiW7pPil@EHQ$w9^=7n(3@s;y$1fBm%zk3ZKHM3mT
zyuW`Al6zVl8jfFO0Dy4X?*j?zPRnzBXapj3P%7kXc3O`I<j9-{c~O)ub^Bkmq?N_w
zFG>JD#4Tsk=r%fg=GXx$vNkjXcsvdt18;Y~vQga0_5g3ipn%V50qNL-&F6E)J~E^b
zleM#_JQHgtZW9+vF9LV6veeAWL&pHVaol(Hcb<v`O?Y>fC`~)gnh?81<95*BBJo0k
z@mj7nwU0p()KX@LlA0Wu+df`5_pIkr&S3KZklaX~c`QvJs);@dfG$@c=eU~}Y0$Ls
zgg8@`(Ud0O@|e)UqRE+_XtsLmtZU&~i8v@e_dH;O*3Rzb#)4}`s)*C^T41P(p?Z-V
z5pUO>QE9jFPADD6ePM2|z9<ZfsPqPL^{=5t?b#1=Ts+q>TES~zesoHOq7(BU-$ADC
z=dXX(haV3C(CB%%OJ!X;uN@{N4W2f_7|)y}{9d-@+jtGZo_DkSOP;6WE7==4$U;1D
zJ2zg3AM13k2A1Cg2w93#rouRv+vOP=Cfd<gxtt4!DW{|K`+higys0uyx36$rl)8o`
zJRN2}Tp?JsljS6>?>Cst$in=^1#as!jMlI07&p`Zd}Y7hpyIa+n1e3-66E}zYX{9a
zxCVq>qy1s1QQm?)7GnjKMo;IyA>mH>ar)eMpny)Pf`x+24&ZQNGh=g1g5|ZfOTF<>
zB~0`ze-YCwlPrG+2Mcb$nNQ=XMEebb0si$yPhEt2tDOQT?1Zl7$&2a@N^^m;#yKfc
z|7c?w8{GT5!QsOM^H@+G>{yhYeSoK?GPIm`m$hSe@J;F2A>0q*c)z`+hM`pmeOKxS
z7+8F^EL8^i0&jRh*yzA*@x&#Y`ZI7AHcKJUe58N9-E|C905sj*IoLz@9cyNZ+N!lo
zM_1pQ{TWYHY^j2OD+HO1QPcV2ZlFbjpz;EeEiXExf_HU!gWucaNT<dAUWAgK9vO&@
zNfoxAmkvD!`=BkpmoYn+Dok20s8td{+tzX34510NT-t4wqYbmiw1G~`@UGK-vQnhE
z`9UMpxgjm-cP3c=l#S~1v}3>q1jeQ0=g*Um45v)I*koJR`@eD79(Mwc?hmmUE?*C0
zVWJk*+c8W;oi%#?;HgX5zdKrj#WgoIP9l((DX(C0hZMB&+!0DjIN3P`lLYF?lJ92P
zH0`+MdRFn$@lrB3h`?Uyk!;-Q&Nm(-7M**Kf4)A(4$tPVe5_lQ*8Vif+c%xOaQt0d
zaq#Y!pA$4Xs$?C?1AD(WHD9<oM;NqV1?eftr>1O(u?y5o9Py@}C&Q#lhn{mzYYAVt
zMNW;aGz7;@(b}_h{aGIuNYT@q_p=h7bMTbaaIU&e7&Q}frGEk32;@sfUx_Qla_IIN
zD%j3xXt39xz=g-#mKD^7p4eq$=WM*+Nh<{Rp8WdVJ|)y!gY3?6r21V>Tqjo4D^S2_
zkY@R=RQS-zar1O1`Ba)8imA9Wz|v$~l~ADz*QgHo;3m<uX}J)E#^e+3xKFz|d-rbB
zDk{t?S!tXa85)jfyQ|W_3}`kzWL#K6P4^RUK@N|Z{@H$RtMhK~m7BG`o8v1QjV$FP
zf0Q^&Vh%MB#FA!-uG<&V7A^m+$8rd3Fo<eHN(%@``c>)cw5<wfBC#N#_>c_7M#}Ia
zO-b%ksp?F6EZk+lVXI%oI;F_y8f{4h@bM`L!t!RSrm8intas|~GaL`m;m8veE$6V`
zQvy6^c{u1V`}de(Vyv4+IZzi4La&TZ9eH&TJ(||skgr-3;fhL%_}n6aJ8cvS&bZRN
zw>yiiEH7}fSl+y0$!e*DZi!{81EBN~yg^{8Sv;C7UfzzL$5V$j<`dbB>FSd)Ie<j(
z2|BLjI9%s3me+FSV}I>H-0o7Mxv7cawB-y-J!>gn$sZTEk7p)uh=X~x8bL4giCy@A
zwwG_~BNP7|rXORQvr@TaRx5Pt{<md;&L_!R2;hHir&KVq!GKytXO8H9UZu(T&;P)O
z{;&PZ&|r7&CgM}{+y1%zeh?($GY#hJcmLgSH6g$M?;HR8`v31w^`Cb7|KLyce{DPe
zUoKX#M?}CLOobvm+l4B#>#i6vKT&zi6WgaaP~4x=0p-D&H+r;aVAC4&W@iXXO6>*r
z^b<RK+t^;M7d0t#a#wvGwvK$5(Y+-59_DXJ?}p(f_CCeQwh`e(N@uGUT0`Hx&($l?
ze6D59&2!K8smH@M>3~Q~C@#;vqrKWMSn=M*W}U;EY5J8Z@1;!R^uh#goSv>7P~KTH
zqA6Oc^)=l_e`X+-$QyepZPJRLr40LbdzDd=mkdu!E4{k5;^E*H!_w9rvDYc7Q+g@5
zXN{#7t(lDS6WKp(EDP;yJ9z?_F<EJ+WN)8|4w+T`r81#2-kqhCwP9Yo(2+r8SMgQj
zs{xW;1Ji9Kx@hswIlbtQtz%yn0a6kZC}3W2hsit=O7SoNB}8kVCi0!duolCj1d-#A
z+P<fivz(a_>hM!;a=~xOCp`B*DPnq4kw;%Hix;T(>X9k+<LO3ZmsTWS-|y%c7%_M|
z(p}GokhR`4%hftQBD)(_FhvH%ttD>!Y(o2=X1UPO{~c49w$6DfKaL0aRCl~<zeGV-
zv1h+z$x1xRi3YhNN{lHLgV~nF82be0M2P7QnHVvd9LZyJMhHZ`3OztVl}?HnQ%((2
zY)HYnX(>0!%=+87F})OU5sI}dyOW8Gq~XJqitQ8B+=}};V6#!9(WlNW#3vg|hoihT
z!Zk=Dxy8Y)KYPKFX~(R&W%DYnRw(CGPkHu{{;Bh<&GT3Z$0Q-qo35ugvGYZAQjXQ9
z%u-H#dS3qM;g$%-fNaJmII%QE@s*!Dd+@EK@~RJPm4qQlPIs6vx;kdh1dlYMN^u=E
zC%F+UB^4F1IOl>{z*Xzd@m-;8P3sziQgucxE!RjYWuDrEKV3qtVt$&MV_e!3@@S&J
z*FQAOge%?gD5iEFG5;{1{vueN075u%PoJsk^19X1j;<y$o?9KlcK-n0F!f2XJjUcM
zyZ1wq{f7BcxBreh-=|`R^Wwftup_m3Ip8H#bH?NGE-3e|&tTu&!6<Kj%B3?*5IZZ3
z)3S@!Khs!(eF+_w7P?lmy^mRq$f%pYsj@%Ya70rjlY)p@mC054PMlOXX>&3RKhUs5
zr8W_JdQ~UN4fon21kJtlFz||nGQH}Qt!U^|lI~QUCavSTea>;!XY{1~Xktg?MZMXg
zT@}Y|gBdVgCu-T02qnnfGpBqWr+~Ido6#0w=qWr$fqhHxK(5fdu!a_Gr3xC_Dgh)u
zqibpL_e&hAC8OZSXc-pPG=P-#Rf`v0^^fwxTKvC6kY7k?B_E9sO0<wET{-W$ognYx
zl0!P;{SR*1=JNODZo+>qzgG;tx@24)n~*JpqP4bn&x}rE`AK^P=zY?g$hNiC-fu97
zQ?4cMH~Te-pkk#}SuqP5Ts5H;1M5K>E8Ur$WJ|CulZp@1Iu1n985hOu(ir+XJl$gW
z0gH)+gd+~39;+?u^*JFKvMC%@OuzK88<BbRo_DHjyyv^gx7F&k*rA4dijP}Oc0=e}
zhZC5@YS!%iwRf>(yu4=6@q;RMvbcKf`VotkO$qT=!zX%COYVibtfA>vfNJ50&rDkF
z%v*iJ41w?^Cq=vB6l?Ty=Emn+9|$Uypm&@QRUBAaU_2goRRaG82(>+~bGo7$roLyx
zK1vYhrAIgk&Ot(pb&WKQupuWC=2XfP(V8TtnCYcTc2?%{7UA+{@55w&uRHB6Gu?s5
z@XhKjM)_3gefnhoG}3TPe4pb0(^&f773HZfwEK(pfGh$Z;%wmMO~LlMb=AsDomj5{
z7gMZ@9tRcqW|e%1HEW%gai|-?=IB@Id|KL#c#<?nP-3y+5tvnv8%LHEZ;@4H1VNc`
zq$;!sqzjomQ8z_8Qp`~C*Jd5s&I*rsmSmNTOxJA_Wap2D{u-J<m-_gncgto~H^&xS
z{c&Lrl@0m3eqNu~<Y>waTlRA-C2dG7Pw!W=`m5wRanTlcUh+Q}pbLP_=>GvYPXqsJ
zyfXvHkHYv7Y*aHeEER(%mf=fk;Qd<Sph!$1{z%N0FN<{~fy^sg0nU&`d+T$Ug9v|%
zD3h<)#ws~7k3>}z!lWSXysj*!zjtqEjzD{mEY`#`4>^B`5w{2N6ncZ-n1B!n-bfa&
zJvnCE*VE>~CMA2y-DEfu#_@#?7pqEBHWq?WmdiEHfI~kRFcMa1*+hO~KNMBV=Hq}g
z9QYL?yT+`ZazwBuJDg14D`c7;WDeO^T59mJql=dJ&#5lVQjn*3azs3>mmIG(A(Dqi
z7_9!xP8;H%Si~F}C=xH2T>m&KF@hPw)w3d>yJ^&-&Un8h^4Dzt13#5O1{Xn*f8v{G
z{l8BdbD}T%L18(o@Fn_U=x&ZugZGZ&$65hDr4uw<QDku@v#%K1xSp1#Mp3|bFBMhH
zw%t3~qjloE?tyPDxGXy~7{lKddZ^n?Q_oOxy1eIQ+$qe?)LQ*&_(!~KFDy^-xd5xg
zq4M)4oZ$JB^3%YRd;TMZ(_)pTqF?82x@#LL)-ox2z29_&=;gc+RfW*7?9tvl1!@YK
z9KHFY*I0b-`td&cM>7ZpbTv9WMa5k4<vENgq@sz^+<Qw>#sGExw3VvIPeqcyUTkA+
zNB3HbOdqF~*p_Zeb_m0o?kpHnU-pvuov{`@MDjH(=ry19s=Z|_8vapZCYV9^lL$zl
zD=#CPx_eI39KlII<oI@`ORbEEdybtqY5E+2xtHi(lPb(r6#umUsT{ih*v@l|l(#uw
zKMucP%<Cx_o+CgR#7;C}+qv@kbGJsEOl)cz20J?E@0t^WN8mqv^UTSGrF9sfdF7tO
zo{hM{g1QmtRD<}0R&kFZba~=}Q7YGUcp6V3Ts$>%TMqOfPzRgb6`PVJ1{s2*{_pF}
zmk^vf#}O*_pphc@u-;CkL<2N44&EkiJ=uY|+yJG^)%Yzg;2t<OfEa=<Ncu^>W{ZW3
zL2PVXY58E_$?&Qbd@Ri@EJJBrHtnm|>{UHodG!JxZj)Da{Th$nQ~kQ+5ocr&Hu6Z5
z{?{BXgizaDDB<B_5cX+*W_M9W_i7b%cX0(ulxkuCPq_o?^Jz@T3f^(kwK+&*ZW|g*
zm^ZXyM0LU6<$5<VPLH?jTMf7DRXexri7AWVXr0cyIJ7mKFxW1ZS>`U5tBNb{Z)MQv
zh`Gpt3B=HXmniYmd)N?Jn-_jBZ`HU&yq#i+GPxqQLvczk?{OG%?d8NIg(*2wzrEY`
z;GfLNGxK)Pg6PKoJ4z21(o~F~QbZ6SB@qOL&aS*aPB!gTL1&2O?_#B!4_CmTnHlim
z`?pseLu4ivQ-)jhf5PQ<M~5Wqoxe7}6*K}wfL>kb98-|R>$g+=y5h6O8Poq>to+}L
zS!Hl9j5#6*MobWq6S9)n;3A+MGuvHxkDPg3Ug)}H?_yDu!O^6*?2&8s<y!{jT|x~R
zFz6U+9IX1A_LkIT6YX*;b)=slqH;pjnCGE~x;6Hw1mx6GPUpa{UQF?!Fnq!}T#vbm
z|IIzAq92IY#8(ahLB77b1gTA?@pmovz)e|1Bph4=TWPoiE;g6DizPS&gThSnzRV<(
zk=-`1%SFkYF@m68A3<PlI3pB7H4wkFz(P`}UNC>T7~#ibj}2jEC2HjV4-a$5kCy9a
zl(8e%IBzu=BJ<<UIBubLGyNAKK6Qgp^r~e3CrQu0e}sF2;MCoiFhrU2o!MGcL~dhZ
z>^tp~nTR|a3u4SrpLP|iJm;fq<_lL|96}k+*S1?c8}`x4wKzq)SfPumGchDlc~sa<
zL^UVOcQ8Z4l2lzXo@8?y=9TP*#E=;2oifX?KDv|Q8bf!^i2v-`0h{l^OW(hJ)0h{3
zSHev9AItok`)A!qJ1)=P_VE&WIt;3by=7nBtPL)~)b3v&4TBCDAqWr@nBWD<$61-Q
zpns&T-t1tbU{FaL$L|Oj6jOj&@-W-$2YeVtL@<tE`(kxKjq7N8W&tHdK>V{Lu-(k9
zWTG?jr~y(0)EbMTBKD!7E-~FHgU0n-F8h$c!C1NvS1Y<2q;bto?Asgb_gF|Ue|1Q^
zzq=27$ME(KD{5-mY##onq^rn*mNeWOL%iqZ@)5#cu_xZ1BZ#_|rI7}!Bv@~>S>*J0
zv2sUMg3y}`a8YxS6EAUNK@?C;c})o44N-OpOotDrFty>Sl-pQXay(~jUmm9D0p@`I
zbl~1iqVsznMTZO(DExd(E}wsZV}nngPD7*O?VnTJ_$M&B<?VHKIU8@>CxNQg4wa^r
zot@_oBJ}lA6cl>wc5Itbn>oKfl}9z!Ru)?S)nL6p2Qz0I_^!%GE^>TNj5v`rnr~`$
zn6#Jag~gyxo<8sCXqP*9$i3#4KPY!2N-j1+)_4D@$3ELvkAH?V!JwV*d0Q8go<lM<
z+ymcDUXS%7o;*j0KhOiq6mkOb<nudq)l=|Ry#j)uY3{+!x94P#H{Zd``2k1UiAw&t
z`>lNp0m0C>Dc;2zPGNrgW4AMBae;{g<}|7tEZ%)(Wlz6x#nEE$_xc(E1-@o6?@@g~
zY^x%2si)*>r(;*1pFf)=(UmN6O3k;ng7hb+|4;QC;KicUGZsIz0UP0w4$~(4$iZhG
zZf-z?V%KOrOL`tu!LH%Y!DfzE&1o(_YeNv7EWQz`CcZI=VB<H(^Y`s1<Ub57fM><!
zihulw60HDZZbyiIH0Uk(U`3ZA8iHK|e^<z|SHjAxM0vhHj(U;L`2^kanTw{|($5Bi
z-O#<3VVcA}5f8FkA^3vFR!)*IZGiZNVv?YU5G@oUe0`J}--1F2*spAV=$$ewoB!a~
z(OcGBre5HZ@XB*#2!$QZ?zcPbZrS(aX<r7=)H^gDt9cBH0hE>B;|x>iFObm7X^@9V
z6M9@W4Qk4B3sscX`kpK71xXQXQ}Q0H$NR<5h3WAAr#Y_HIrw&sKo_l2g3(m(1$u*B
z<F$~iOPAt?30Ox#Pilh2W2gWwW|5<+DYI$s|FJOp>&HGqrCqEJ%~#xd?h;Jyf#`0l
zV}#>~C$rL<P2e}=Ik9&9p0&oLrgmKezvg+EE8Iqh<k7t}=Pe$H_aUMuTOilVy-dW(
zHoqo*HPQG66JmBh9w@y}P^U&do*M>kF0?{ITY)!C1IrsH6AyXbiEj3Pt~|hlFaj4|
z9UbaN_Y_66balC%2Sy1APZ$X8j2j&X4#*c^-_rDem#fQk5p75pwMb+7lTSah1&;by
z8xNGL6l?uXMHYNf!%>Epyms^dZG<5|`B@a307qt+B+`rvxo&T1zw=z;oE!|{&#T7B
zs5<eDm00kys@;bNSkAn%==iHymS8}nz_T8*>)1qUZq4$r@qgAv5SY-=lGz9vH5uIN
zpSOwVC<jv;F-OqUND<DF0M9}x-!P#O>N-aZd<Cvqt~)Q%9`D##+n|{&H9i#azN~0U
zXNCZ?L~YATsSpAxHXt9)lSj&A`1<@E8F#huWuG#ZrinS)o4s6YBZZXvEeu!WgmS7-
z3OR*zEjJ(iREO$sZD@3zhKEm8+Bt~-G((GS@mPB4B`^!TClc%la?Murl^Fz^T$+<#
zKSu5em>tyj&z>xf6a0%fVct}b5rS2**h#MDJ#Tg8(^ilFMi-Ez<AS%`A9AjO1-I33
z(;gX>oXv@cD}_b@M#jS*@GKp}c#xH#@w@WQ>`mqvf*_^LuI(N;vZ-=pjO!?S6o3Ov
z;D9M~^<5pO{Q6(x)3}f^>w^+^;hkY7-;3gW;OR@>JrTI}=g+TiH*epnJ2_cd$u(5m
ziF(NWdH1l=ec_Fpe@=OMy@e!&^S<ZFwwktfLZUG-)kMmlH&#|l>+5$Qz%mLL1bbcg
z1M^NIY9Sv4jQNH3(|i9j@o(n7RFDz3HWy8nz|lZL;*>Z?uxb1QF7^nlIj5Q+oVp+g
zPV6(=1=EW`G_^qxl;Bm~L_$Jy0!s$ICOkNg%{Kxjy6)Wv5eo8UhAJDBq__};#HK%g
zHa)f%CpZ~SfEQE1cUh$Z!je<C-PWcqCw<dF=gpXPO`92E_+IL_7}x8c&mfr?54eCC
z@X_bTYlEr0oUjitc*84;cWZ2vj=N;>=>8><+)`@#JSZpjrJ;@>2^m5=!<G~B#_az9
zgV$C32H;*nl7lor5LlM&VpW5Q2Qs>$*-?<=c;-~QD1nJf3Ua&CEbY}8_$0!lCGiH7
z3Oa+bs4%OCx}4^$K>XX%Vm2{0k*K2yTsqTVrIsH}Pl`(fU>!wc_;-fn{oZHO*H4wU
z8U@Z3Up?<gTHUKa#wTW!6qKF=uOTc8;s{9$>|agiC;6sb_>*|v_@9`bGv_FL$@~7@
zP`2?Nbe4&pzp%3K0{M3o0*s)p>67sxf<lNZRFfadCtY!(So1}O?#V^Z!gVLpqyI$6
z>#7E5h>aG-Lry6Ww1<~q(67G66oo|~#Dg4C6(m%xhMkI8{A%tPyWp{r;~;l5;@MfX
zr}!}~)&|xacDEz8z|pu;1X9G~YQcsFctM=P`kpBmZ$9L7SzHWrXgaidC;59*#P554
z%SBHWu*PfOj~VS$P7*Rd+K-Lp;GZ*L3;H|F;NW+OkT<=rA`|^c@AYdg&py=?NmkbA
zz2<9ViMvQ-I2DKc@L^eVrLC;DpF3|Nb&K)e0eFVg(c?z5Eqngu!1kr9D-=0ztVWJ$
z=<x>cj3SNa>Z-+GSja!nE-`u^!ekQhL_i&^yIoIQz>*@L|0P%%<Y^!p{`olZ4?0i{
z9(C~>Sa0ojJ5eBE-33{|JYRE4)9Dx5$LTMeJ-M5P21hHF4_RL~Uj6EJ?)<j;*8{kC
zd=O+oStz=U^|A^RoQm{uXz6MxO+F09=8ommQqu*7t3`%QA%z8{H5D}z$qlu6%5)EK
zgV7s*2nAF+Bud?Ba9@+e`RjU~SO?r%a@CU!U*CbGPkW^3DJ6W>Nlp!8?)yb#8QA;6
z8i)y1c)Ko*0>rakmK8cXRj)eg4c2eYgaFRt6A@sFKNWeT5B8-2H743uqAA4)2jaV1
z>n)rC8pkH`yV#2y*%B2z;S44Y?uM4!Rq}*`b3w4dYaTA2YaeT+mGvM(Y32QD$!tfK
z*gU0yt<jqT|3PQh$}MjNFK?mZ2S2qJhUj9F-oHxoI%f;EDVWX@GxBa)>Vxfno^bH!
zlr`(O)|&O-HJ}399Q}RFF6C8~m26u>9r6XRgcM3rlCc_x9VZ7mpv74;f4c^a(^KN%
zu1ivoRH{rkQ8|e+$bF9Y5A||>VpEJx<|d!zB~ek#P{y4HYp?|gzyhI@3zMQm4aq6@
z9v?XJkVe3+wt?!k=Y`GVonj@b*3)yD{rAH)%)gd@PC~xizj<#{{BhLNLfLv=q|GW)
ztUMbx1*)Y~8dTg6+_jE-=DlN0MpiT+HES~~eQ#;V^edbD#!(#E;Y`AV53a6(ku?or
zVXC~q;Eqo2-fe=tkT9Axsu3bIP?Wce)wZ;<@S?VYoww=>v1i$;<+0*$IL8;V?x%cx
zRGBx+mYYsPmtTCSRn*8rb84^|Ge6ZTk}BDLiYIrjV>kOW;iI6A89Gmd33n#UP1I-)
za>^#vMi&*^E~2!hGu$#33T_5jR#5lh-H7l=gGo)DxY%S71j0bzRo?+dr2SBlV|m?Z
z#*f>*AtoDz&$O8`qoCurYAK!Es!M)=fl+D5@AX-=b?=}it?4TeRqY?mRX~R5Y?d5x
zG)UiI8|xeC!tF0(D#IV?Lwf=J#E-QunG`ERivGi$XZfUY0uL9bns55H<s_&gAYJX1
zzL&!@FzH-9Lp`I_-EH7D<x52>bHaIsDu&h0Pt0Ve=RPxN0O_Imf`$3&ebm9JJ>bxp
z_kizjKKj1p{up)9WWoPBLSX5AVSH|KQ5+>aH_LCjWcFFcO{G&?HA#h9+s<HjGY%I|
z_w~FdGSb2Vu-sgIp`X)-F9-&cGPL)szw(4B>h0yt8EmgBJ*>66*{J{a6yx#;`J0D}
zw^zqOnBw2zRgtG&WQ;nSq!#v!3X6R3An~TwcY%CQ5V*AFqX02nXXBu7hWcja4L!+o
zGWiDa2Jc}yZ2cmcby|E^Rc)i;)1q3|R1smpsnFyf^xe@d#tsgq=YL|mDO+&*Qu*;A
zu#@dspR=oTrUK;?9;s*dF-*NaLnrcW7KAU~562K`c+kA({ZZ@qv2Bh31aIgBRn!(a
z71>-#Nzq-DUI`3Jrs0n934{ker=y-@8{JyB1hd@nrtCm$!l-u(lN$ga5GCQKZDa#g
z9DioEvHSAblEM<nwHmt^-JN4sbp<9|kQ9|KM1X}Wo7-g69zhV04$t~9EHw5{B51d@
zI11hZ$O$SfCKPE*;5aoseO+}u`LHTs-gW=$a89Ui#UG)@3EHE~0=f6cYZ9!?$=e%i
z;8{T<3;I0$Fy;TvusOTH6pJnEk74M*t5;LMx};p#V1N7f^g9V6A|mnVam2GU0Wbb4
zBfaZeiVzmjLW}A2)n5ppOP&s&+5qCcve&}k_e#)sH|;Wmh^-fZC4Q9n_`!+~HEm>t
z{-cXTAnw{)+x?pK)ol`jeMw`&LV`N_dk`vI_;~i~FovhgshP@$)8JR&z=!BXeJ{*l
z?8~`@?tv-To=Xdo?IO<R=I<|NFBN8EzP}{rI1;Bpy{p?oDa3&5#})dk$g0LQ@`NXW
z=yaQjkwwJ)`RXVyc`DAGNcCx%g_64jN1JQAW5IjrO>L*BHy21wkWAkqX(6I-*2$~q
zYoQ<y**u}KDsmQclnq~DYk&?Vz|{;4KI~Yp9kMEMvy;f@RxbEXuWs$FZJIBnFbyxw
z5zy1MmcrXK?;9TVdGKpUOpG0@_ZXHn353!egNRaX{mBtWoA)m0e*Oli%eT9Ze4>w{
z#9Usw2X+@^O|_S^z2g2J1L$Z6Z>b`mbhV^ot}gA?x=&v4&R?8Og>hn8lvh`JY#o#5
zsZd56;}BnvJK_X%t#Z}<M)U7oYOJr{A&&)=r>?<gTAJg4^WRTFtzr?`bHAtGOL@Mp
zuZ}BGQU;T77m5qX@NV&)4*2VG;N~`;4&-D)LhjrB#aBRtM(CyuD0@Hyr0JxqW!U60
zS1#OAIve-R@Cot0G6Ve}1-akJpGf2<(KVyDgE5#Dzk`fk?)<4a+BeA%7J`rZ;hi<=
zl49pukh66Js?ZyVc&_1z5d*T=X#`<zS&vsVy+OmRB{;3PH$(KU3PWF_)|jn`BmJpc
zMIwCEe~K#WqtUjZ)AjpJu#PF1N3xU^8`kZ}O1T<lMqjQBqcVPHsPdOpXM0{=b2ii|
z7(BKMAwu4Nv;tVV^<W(X3QaHL61VCqBObrTV%=t|)3C8V!LTV86WeGn7&Rj!%YrL%
zE+T?ql%V^kqBqA9e{>h6P(82nVdE(>7)ZO`H*mmYo)nzd3p@YCLX4bH!cFX~zPT2$
zJ)<3*n0Y&}l10Trc$84K;CrNOrR5xv*1H6lzAe|=M?e`Oh)n;kUQjmw+w<~VH{-fK
zE3b5TX5_ORIcNoWD=8&e|H=K2O=*<2E-dI^<)rq7p8y(j|1)60-|%6t8{BC{f!yBj
z#U%_cH2(@7lj4tnC4OD)X|cQWme=A^?JxVsW-5MT8UiEgnL4-Gm`}USAU=zf%)hF4
zSougwem8>28`kjh8@v3w7nuIpu|0;Ng9w=6_B#j87s4SQo}woB9{))MVu?qOtCm}*
zFFNy(R3A0E@V~dLZNG|jT-xlP@q8|&7IiXV8hR3jcRcH~X#1yzE9~`{2)(Up*N8Ng
zabLIn_7SE(3~R%^s21c6uFmcT95&UG?|O{TGrH_1@Vj|E9UaU))#N$`0@n}l6cC2n
zU4)UxJ8KtRAwEsCffDFV5YZBPovW+Cs>4ow-J}iPu+j@KcYk%yhYT(Q{aF<LaSo~9
z38ljJXpxtetB=5fA_)1ZZW)Tb1LUbGQJ<qHUS0M*qX8~1fV_nhAgd_PoA_x>`5|D8
zmhU0&1gpO)SNZknV^j4kg-WhAQ~V3ktX4&ui_NC|NJAA(`Q!B#TkrFN=jQiFe9XX7
zGRCBkKQdW#ls5ao{0~}F`(;NETB}NtJK+Yo>)DYRRpRAb0PYc1;#aK-5k>6NNI{Q3
ze-u=dvL>g77%!K~cFIIJB^XykqC%6pSuJ}JLp>poWdQzlDZV+N{Q7?UBL?oPY2e)R
zvz*G;=Q4DCZLYyd$ZKTGBm6r{nu;7ex$bNOmrT^WbEmj3z=`yNqipri!@34oF>65H
zhHWr8^o<q!^Eq8v>uoZ}hvVZPP;k)b<!Y8)n=Yi?p_P2A@#Ir%?B;SP>wqp_p>7_Z
z_oDcGiGcaN(cea5BtjTC0aMkxjxHHremMilq{Ym3)}?#;U7UlJyJy&L8S!<D+P*D_
ziHU3-+tZ-YZcg&gkZ^SLl<&-`lhohfmR!cIHlVP?0yU@B-?1{d7!m+OZU};(vO+rH
z8wu!=0sz`ZOrlpAg_}^X-blu%g_M-^8y7W;_<D4Gwj#wu7lt@C80e7a*9)`XR{yz&
zp%#j%{=)=8*EK3BPVE;!w6m8|5?Xb*%QiadjORuv%<KGTG1^EUNUQ!XZ&DtimdmzI
zfOGq)QJR3mW_cC4M(pT&w9M*C>D-M<mPDo(Hk(MgoruX1Krkj(gzm1rTVRX_d{#7*
zi+VA@6uyuO1@WPKc65573-#;VCS~%4N?OZ<JOrr#U|u6S#MZr}Uw`36$ki+=e=u`J
zz*+l}1q*LP1fl`Q9=)~Ml>8t<-dLCaI5(gEcClLU!-71@t=!YLyL)u}`tL;SS^e)8
zUTUCI<mhem<+K1I-_cG&vi%QGH>$0NyEm%>3Ojbpr&LO<(&!-^+|8G!UjEUS>kh0B
z*%{4`6C~>J<QwPG&6OzL(yXu=^I5G0c|fMBFTt@e7iTrWDuWNb7Jo^(VPGIq?)1#M
z_aOZMe+!bS`r}2R9#s8jd}`%d!cCK)!}ib=H&9`Zk72Z4FNf*GawhgYLhaslCX-)X
zT~RcjMJ9lpy&Bb;JS4goZLE)+?LV$__1bu-U5X$j`ExoBS0SRF>YY<O`uRr=;*Z^Q
z2wK@N-Ij8@7)0R)59ai5NpXG_JGHbqp}%}DI%&vdW?OhD0mEUP1_F7udTZ2a{6_P|
zu@~zANICn0i>zb@jqLIXC~QphPtrC=IajK96OW?suU!%IK-PZZ_NY-9`Qt~S=_9(P
zH{g*fAG|`1tu^K6MLj&5k8u7fKR)4;pQKL+IBY5luLa*oE=0mr*dnqQ9u?#r+*KGf
zQq*m>905y+VN;CMUN#eNWofQ?%Sqo6`1G&U_tJ#nVfcR)2A|8y_xs*-d>9;ny6^vz
zx{&nX`2KDs*L;ohX6$>4PbE}92+d?~IOuQtpX<{DLBh7_%Jr`UZ$nQa<m=xbUW(Ki
zH^k(s7j1+AT69bCG$P;Ply&~Yi&CB6J=|V}Hc&ytV^+Fcc4}ubDP8@Phqm_&k4Zvy
z$CI)uK&TsPG0cE}-F)Y;v$HgJ%^MeQbISO&r!FG{1+wsUmRvwUC?9NgYtBuBeR)Ze
z3Ys;0NVLp&Vw>NWWdlTp2ZN7Yk>7W*6RHB0qIa9Ay{pV8mkxnMbH_j>NW8fwS6AJd
zN2nc0tbt||QvQC&-iGNAbS{_ATxNTI*^qGt@b0*tb`^Xv=6CSpx({p1JL$s3`8i8j
z&j8a1=HEEO$2(M`NGv3NbKA;G|M{fnWCHH(`%{nmj+CI$g<314z4S`y>~!aPZa>e-
z7%XOwj%M+41D-tLepUx7Y%cze2dS*W0~7u^#JrD8K%mz@)4t`pdihrc)40}gpZoGC
zLs<fuPM<#C`+<NZt@z_ELc>3I&mScGsje3EY_fXZKp4dXjFFes?kaS1_U7Y5$1i_2
zeBJItkEOFIf)ee(iKm+MugZ-es>TfQz4uvIcxXG1Nbo*zuHi#@V0A^I5>jS%V!qEQ
z+3Ve&A?Djs7#24hHSk<cF$98xm8&yfqbz^azOhdF_MA?jE?|U;Gni}4AvYa>th9yI
zl;rXbjqx`I{()=j>&G48r_P+L<ZFh5gAJZbb8V4Ze(8cvpEpnsN+oa*8NTdq_L|uy
zB^l3L5#I)VFY=qSa3L)8xdhY{JDcwq?j?VwoXO8C1-27;d8O<OdjpNn+kuh_sOozk
zd~UHBF6-cwxpP)uB@$NhvM)&dqol31h3QkWeN)=NyAi#;FKi%-;_4}7iACvd^wvHS
zaSf911k>XMT>C`Brnor92FJTgGk@Hk45XaSE<8V{Xlr5m%GYCVb?YI-k#nmyFx}PL
zAgCaWZEC?8<aO_Z1B_(djD|zfyNq6Qg<T_zO4N16fy(C?aIW(sDTA0L7yAFn^&~E&
zl2dRb&|w5f%5O<u>52DCO8RgDOf5{sZd4~&>0Lm^gO0ZFQ*nE5Cn41@KYcS0PMDr^
zW7v|M<Ms7bS{UtRm=ryr<SU;{0FEF8h=j@bpSS-s5H$5}Or9ER#g0t0(M)PdmgIV?
z>Y}COlcSlZS<u5|^T#t7C-|z(DF!es{Ri6v=bzn+8+l6;0C~bs!>Hy=lnexwi_I}&
z%~U|M5A@SfRCDkKsZwVWlLS?b$)t35i}|rP56s_M$jm-m#!iQS9Z`m|O|$|Ie+16o
z`w@y4N89t9eK#Y=_(KE0BvBYy?;@0L^@aI;@IV#H^yi%6_KxjK>?6WKCdNDdAoG$D
z*oq0v2AW?#2VS>(Xyq3eQP7F59`QfR8zVVz6(ccR2-*EaccT5un%eTJifz*Iro7UR
z?N7&E)QD#l7Z+63Ra~4MOKB&>GUUY=D9WoS%9~z;Q?l?)^BExcpLd4)5#60V-lDc1
zzFGFX7OX_;(Z<He_0`%_*`Kpa+QW5uyqt$Vf`*<!X9wqvKiK>nRMvrvXjmvfo%3)7
z?-|5EZU9O7aLzXlc_l*u(?Ou%xR_VH-O2Lto2_BLfL>X5r>m7Wt}x|7zfJ*Y8Ldps
zcDGHcOlEN6<q>VJa=-F&uul^{DTNXur|E1S-lsOTv)Wx>UEA9Ma>+Fn%4U~=sh&+3
zQH$Z_X@Z1xEZ2m`Tbe*t<H7F^!ew+8$5Hr&g#~3l3MmD+v>8{tykPjB2rN=`Z<5LZ
zYdY%0?)cJ0Sh3-;GI)VAj2Bs*!%6P&>on4%SORKing_O>GV#GiGaO^`5oc~~?O!+F
zje0p$f1l(Dp*F2d7rkLWafA}(<KkU1ZCR+9lG1^&Py74IyC1U;9PVFUG+0L`qc78+
zWC#j1*XAuvX1MLnJLxH@(McJq^iZ+$YunOSR`O8u(QTUdFr$C^;<!-#)f<+tsAuhK
zS+8QJWU8bj(IO@kMDI=R9{M9GGnLnVSRXpgnJM$VB{Dsi{u?@aR_mNNCT7>jOy8XN
z&s9g7?5i@vZaN(CTy<l3%KiJKW7_UHC8qKq;qf=54E&(h1$LjL6aC}0Zfoywj#zkG
z&olOVX^%?y53rdn=En12w2L4GWD*%rBHO7CwxBZp5S$w(w}Gu<@ZEwK?`+(a;6?n*
z@O(<I9l>Y*DZLuw-~DY9;a#h>E!J6I76drX6#qn8nPPuatmkp|ZXCe3A8_kf9q+{3
z7I^iVQ%6n4E44FkZS8@SozHSzi-T$2;W==qky4Yp18>fZwwP_@1%)6e+xY})6P_9I
znXc6O<QreExa%;$aod;Cz2_=|kweqTK;;iU_wnOL2TiaS5Q;9(NIZ6{O-+G1d`tkK
zz}xDl({<dOGG1HK1;q_gMjDf{H!r3ATA?qgHY^?5kL(^qDE_PGL`*OJ-eB_abQ5uX
zI^By%zNY95oR=d|*OiwxdR?xfF3%$uYj&TzZtv>{82^KK&GHCcBw6i{gAOP-`lQ-B
zx=V|*Lv}ysEnv-9ne3*7ph0$72zf`Gv+Ve=+9$C!NK4pBfIQgFLL*t9#9U$bt2V4c
zyT`XU&Udi7Z(CpLDA@9FUPGw;YMd@PCAr1%0tW(|U#RAI4+bN#zshS3?)!()UI?@A
ztQ1V=B-7-a2j{kwEMU(}f51{vftZvIg8PV6;y^tEAOS75RP<vqpQG(@5RR{}+s%OT
zgw=5HcN0Q;YQBBE?We)^&XPARN;`U2n0MrmKKhYKv7E~|n3+VTA;0VqUWKJbn}1BU
zc9s;QqcI>@Ey;}WFJ!!I%vVVCZ6czGoPK(TR<M!Y4fd81urcTNvEIV&M>QG%HJ$NI
z?W*R_V__i)e4cOnCVRjPWP)3^$OfvYhzY_x5O&raj{r52#*Ovjw#jS^b@u%E)u432
zOCZl5m>H1}C^@d^L$DdRV*tK`qh65+1=v86D=e;_nHY%8Kex8tv((U1%U6BjjhZ{O
zzps$XL2ax<?ROgJH5huluf_P4P`S3`bp1$3P!+N`-QQi6s^KFs3LD2}F|MDc<;cu3
zg4rKGHSg1)%9xy+`$LUv_B(xLl~Y`*{DSy^GR?M<6YtSxs<v-k{6no@1En=;(^kT@
z$Q=gA@7hnIHe}f{nyqCE4v9QHcn1p1%>8MG+x%c=arZfwx$=I3gYqKBm6wZB{|Ib4
zT&OVwWXj$Hb_H3X^jq4)1wmUbW*$`00#A6Z_LxH<tw1-a>5Y%tdXV$IxUjh*Ovv6Q
zLfndl1ozHWNGH7j^e*6**+H~x%A;)CTZM&$Z$6l2Mhk>Kaq;ZM0G#pBacFWo_R+i2
zDzkWQ0itjEg3e?pc<I1Z9zA-+@0Cci(UKa6{GDRv_jl!!M9lh`0pE4c`gW~cUYyn-
zkHzi`iK8>KV)1?Rmo8V{bxD2(lq$ZbZ5-w%dcU^&j?&QA1`AU>QFxAIcZzta4fuTC
zmA5cJuA1L0_>>I{sXYjnq93n0Rx}7y7H-+PyCIN^>LLa3!FyoE#P5X<Srpq7yqJ{b
z560ulMH4cl1a~q`9{G=|5SNpx(HCA=T4GVh#B`VQqFL%jwRW_%aO!SBNu3$Dvgu@~
zGLNhPv=^*qYbqyjlTimvWy0F{aaV979NZ+IAC9C(6?d=pw4rEZ@WV@g6keLPH&-R9
zUkh+k9;pnv4VVpmo;zRd=`Rx&iew47x4`fgKrSFrcjHL_Q#?b&wSE9d@!CM8aV}Vz
z=(ROe)tMrh=pB@GN&E;|1ESi1goUw}IlmXI&4C_xUyT>DQdO=!Kov8A!ret#F5q0F
zPV?F0SI)t7&tYt#xeebfUW>kQItM|&^O1_=r@e8gt`_%k6Kw!eA*iILBfKtwqPWO&
zlJe~vdcwO0&5qp6ub5B&mf079O;9($UXb$#fTz;Ur-_#s<+VIzWj5~uXkA?+*B;zM
z%h=o50tYO-^-1Sqt51!~arJ59qD9r#l`+MciAMj3brcS!DX8~-12K8Sg1ftGsI6!B
z_9yRsTymC&X7*MSJl|iUkxAXb^2%H2D=LWz3Au#$=hh_0*GxOJs?Z)?m^s#`)hgmC
zDQWB=M3a*vd{7AWIOi%(JkJwCYe0ay-Q1r9BqX0nzzyTPlQb25;yGLUfNGZIg&<4l
z#?~id!P?-z9tHz`Cp!YKrfv%qvjwdFFBMd!Q4r9YK34|!P|Q!6FHdfob#t`ifP0EK
z+D%^v^hjuFL7&K2ZU7SkR&@Yh(aC`>4eBkRJpa+Gq1Wwwk8eiTtDf(wX|=p9dZ&5#
zDV>zvytDem%lti4-fh0MHQTQ5EYJ)4m8P3Bsl1h0P>G{G`8{}OZtkll_Y8H%vO@*R
zRHX0a6QQV-z?xRQHx>N#vtYa)sx#kjWu9g2&;#IDc)78=&!VQ#QG%6+yF;%|TnR=v
z!@7@t_yRm-E#U!77+o&5k7yZy<j*(iGK*x4rd*MaQ4ay?>ziMFk6)XChW)wS_1IE`
zMN|r}8HHgcA(7|0VSUO;-<%WBljYttUH(i11_Z#zpb<V8<}3$n9AFQ<uMeg9%k<Z2
zS`DIp(U9^(WlQK!sa5dzc1>*~ceu&{stM4u5!c{BWBKudFq8d@Avtif!01%B?jMs!
zC()`a_=PLNe!-rFli?R@GB?b@g;D75+4*;{=4;1&Zz{=+3nb7GCcVZmGXQe}&Ow3)
z`H^E$I^;KU|JD>G&|3&3XYxITkjz@6i-~Y87n#^k#0zOx0v7iiK&=aFp?6ZDeuKPL
zd^}#}r$`|%IWomd3U)-ordEc!70B+;$?fntYWrE8UNGOmU-e8A^ef3LMT3yZYf0Oq
z9h!BUEN@Ug^xp84R+o2kk$htK69a<m5wPYyM-}ei>e$yVbS4pL%w!6agen^rmf9gn
z{#@2~@#04^TQ}~8TqiwFags*DEd{)oG-BA;pT=KXdtSU#7yZH@rDkt`Qo~I!ts87K
zKLA-=-SPf2b>G2wasvNOzg<IQ<azF|>I;~3061@2%Gao(3NTpD&b`uJr7OxXDpR(=
z+$SG;dWpBA)E(w}WP6El53wL#*f!w-W6%aVxk5SX<&^gB$;#*H>;_!R%jo`+G_iHR
zx2&NXssvJMLZ$(%X>c{;g%#?RX)tAnO5tKIfR}jtC$N`eH>Mv>M|Jw<t&$Sv`-X6a
zKYxNLgqrop<YU4XMJ`YJpJf9*Q0c61&=Z`Rl<Jz=%uwT<(JC)3C6t$O=>xp;7xA9J
z7wIS(pH+nWxbD~sI9^B-FRm^LvejZk6dwvLhPKo)<eI1AVE%O?SudMgos}>s`?4^x
z<FlJiZRBZ<hdMSpYc&Fyfr9(uWZU}RZ~AO+MoUTe{B94Q1@JZ~(Lp^@Q*|{R7gBs-
zaRbe`R#y93QnRX2B{PZ<!;;Lsc}n1QE=VONdNcoKm&ML%1&C}FETVNA+)e@3$ehIU
z2S6|VblCua?asO23@iJzWNFc4+4)-wO62$|?LqKc%bRa59bPd7-K|qp)ZXyUh2EX>
zU{Z$2&C_;c0bqTEgMM*@w=rXv#O<_S=ttOiF<gc&JlHnCUuxP*bZ|(AGv##@5Etm`
z`zARfaVu6g2aqeNjs_T6ia-)?L8P#<v<d7L^UT*eBr(Uwc)SnVJ%P52ad9wN@GA=}
z%a0_p#cNn6X?Z;sNbWMrx~kbR+RhwfJ0HFFHux2ualQ1n{(bO!fH|3n48o15`Te9{
zrV0N6F&QVo(n?K{f~4-vdPP*Dqv+oLu|QOM^A`gnE&YWlF2Buv(0pP(o-5=D&F34`
z^z^q<Oe@Wn8(9esH_!Rw;6di3vo4WKqsud1n8VM*2>N@NOO_5oUVpx1T+er`|J{V9
z(nlc`+(khK{S?gzIIDe2=iR+d`6c87LXRzeGnJU<23u!ya$~*6!QR$sI-j3Xu6CCs
z=7)NIB+-?(%7S{Us%%p>Y`2Q~h9p7>9O^2L-UQrF>P9`T8s{E8N(B}e8{wLmVvW`B
zdK|V+cSRBy<GE#m&W1k{nSv4rtrb9t-ShNZLq)VX!fiQ*v-7IEoq(0YW|{|4^*T)x
zaAAx2M)mOike|t~x$~S_d*N>$Pqj+ay*|M4sYxUjn!G$4xa7=$Q3?d4U~y$;mlv>M
zSKg%A6Mxacl$1^pzgZg^j+naNAdKW>2SQB7ri2A*zg;aADFKj4FIgpx-+!KpNTrM3
zsw%Q1IJqHderEbm#(viOYOZ?=z<~gTL9{m}$4Do=piuPq`Ad`HKIKu@pn#AdW&Qva
zu(*nVH<hI4MrS}17ug<?>;OjKR0A~Sqw`+YE>_dKoyKTD-lYhW1I(hfo^6k*{$fru
z<p`!tP3xW>@z3OMkIo7U67f79Tfi^N@Z7kY*nUl}8qeFt(gCMVw>S48l6PFinji(m
zx~<E&nBF@zsvxPp%ZYFXUYF!}XZ#=H0hV^*>^78#U^w%pGL(A!IVzoSgg!a>Z$M6_
zJ_LxC;#@{JETbVKF~MWpvS6afY^H*PSj8dx&ULGY=V^qtuM>Ii`4B_`7nvXFnvyjs
z#SXTBVc;dY5ssHDpQS2~uSLO)-0pz#R@sm8@>s`u-xQ6HcH+N#(I^;zjdF5$+Sffh
zHdoA9Z6N?oa|fn;rK?1s=m2NDb93pYD17D?yiK4A9V}x%DK$_I;CUbC7#kaKB=1_q
zgT2Z>b2aY9X%ZsObQt61wYp|cmgi-6Jw4r4Qp!{dj#71fOaXr5GMVk3Zgr3H9H*U0
zZqnz5{i^@F+yroA4o1&uk8oMj$GdzCIH4{VwJwc+0b>G0bm6y1K#AD%Ii9p|VBR<j
zK2o!JN=4p`<=-d93I(fVrL_by5>Op?v$;=C$S!F^7KtnAlSLU<9B~N6RP87gs*QRJ
z;ll}+tw0w=mmA6aHVij()YDIyRb!Y&C+-Q?QWb|1vM{Z9CyO!Q$vdTfZ?x#HWfHsi
zm$Cs8$g$s+hUi;0m7QzGesd?=3K|<1l4S6KU~NFPPRV?{W2TPvRzlB}xAisHR}TLU
z_{G(gQh=#keo_M1cL9rRKDKY~{g=G3k91LUs;mL|_b-8WN3V+t<N2rc7JY#o)E!Ub
zyL^v-F4m#N6sX=nuYCL*zHs-F#*JVdZ=kt{T}X6+qh`TwBZ2QMa#8$c|Fh`JJ-Qoo
zXHK<CcLD>J(Cd#VG?M)fr!LrxBoP2fdi2N)9FRCUHIiLk%h44`NOZ*@P@m7b3UH$+
zNnX&am}0MWWoN8BI!lSt-@Rd3n^(w?0jL_o9wF*k<@d&!&Y3hr?#$jCX!J#wDm>pp
zrt};uH5nMv&^|-$!R1``0VQC%BqGLv{%wq$z;NV%x5DtNuH%S}+m4gWJ57A*aq#o_
zx9W||Q`qqNU?6-PG1QO9tlko^6jG=`WJE~j84!xGJ;Wp%=NZ7U=_8Ye&pbyfvEkz6
zHH&(gTkx@m9B(EY`t_sbT`4t8i0W6_cjDB#J6^u&fP|&oj3L$<udspEhDh4%h3#oF
z5q<m**AM?>i(TDaLZfpG^hl2=g1}9+Llv;kN=jb{)*5PpHXiNB`<^{9J&(s)k95*B
zP}^F4dpI=MepA0vJqPZ0VC+ibN8rzZrU>~L!Z)kbx$4X$smfG{g~fd)9Fzb6ks3Y>
zb_X)BIyF27mWZ$7LjG)=Po;l5BMG76;+D&^Sop?kHbuH`#0Yo>fK<iy1)jxe9==wC
zi5zPfy4?*^f&gmoRM|7R*e873P+xh@bW@WcJ-26f1HcKA?N+^JZ1qC?t6Etl19w6f
zfuOfhzayu!vt~7xf|@gUk&T2j?<Hf$03!2teL8KQuPbR_1|&z>@Wr7^G0>2OfG-P(
z|2TP!p}tMyT@GaTp?BGV)9z{w3n9g_XmoPyft~<U1@}pX=hWMr0MncRCy`7)w8Zv@
zyv2j{Z+skeGG#udRy7Uqk$89tyX7<Z24(pzjd@s{+j^+qyLcTF1bDS3W?bdVbP!4X
z1-z0?BC=f4Ft#K(+KiAHe#es}TO7|NyJ1Xi9?Uyfd*`l2YUT5HxBOVzbn9JSYM@o4
z0E3qS$PPRwEGGw$K)CSa$l8tKLw*Vp>+cj1sg1?6rT3rGX3coC?>)_6B|G3x(hVmT
z{LHQa@||FHL#^4V{*H-G@t{l0e+h_Zi3fao5hj-JG5JcysdvA@fe^~xkxLf~@Yw?a
z`_q2$6(Gs#Rnf_c3(Sn9u(km;N`!qmc**(M)N)(ppF1gvcsm{ufZkW4-?0R-;=_7V
zzl-$-5WRCLBZkZ1S-46RgNV!-P*as3h*4caupzJYKQZ@9<=(E^{j1}6@hQJF$p2BI
z0<9?t?oBZN>;KTt4ZokDUV(4_-(2$*a#he}fM<te61gv4?r=r`U_e4uOA8B2W}UiS
zAmyFm=BQ@UwQQmQfCVx5Y-{VpqawIib=1h);@yy}If9-cPw=Ho;I_F{C|rt02w4O%
ztm)aelK)&dNL0kV9n673)Eq(m0t^ZP1k<bxc-!2Rd--mN+inPWT(aCmh3s^=m=%y6
zX;C!*iNeJP_ESA~3_$3VsB)n8HIsNr9{n#x5F8wc^L}nL>A9U6IPU8CDWD2k1J2|4
zgFpzFl4PngIj~wl-@(_spNs#_O|`GS)V&0r6%RV&^XAM)81yJMs~zl%%CqiC*z6&i
zc0<~B+WspV&tl+%iE*5cNCVZ=cp+D8>JYdIFurHX?0Sd&YrV1YUcb6)N84x_j5!6`
zVzKJomKWNNmlr>NwqX?pKHy!_bBsLbFzI;Y0uacKx3>y4GF3e-aZ!iH*WuQNrZz0N
z6pxJ3QF>sX!yj;hIKv5YH<&Q_T@BcQa{gbsClc3{wE?;<rU7JPvf_0hf9X_gsDnWr
z69I`8#a+!w&M42YkX7=JS}4Sb^`87K=W`4UCS%Kvkm@aa%b(9XZ>gbOidmTwK;~1n
z+u2S<|KQeH@?XmDBHH94(gS>-(H(;k1CVEwcclTPf7SjA|2ZKR$0HD+B7xBI<K##K
znPO>>@>Rfy7wa}cH1q?b_RA1-dZAo!abi6~g{gD$?`^&`U|2JzZ-1`!DdO(D%On%X
zrl%86$&9xBzy9Xm&d8#o#u5Gl;147)$cgKBK=f0WZwkaGMQSc`|K;T>?|dc%(kJmU
z^RA`|gyjyNgo*#Zhf;%k7aRsh<N)dq5FKQ~3c>w1g1>6;@T>O7$h!9nuDpxafENnn
zEkiqIqei<SA5$pp8lYn!0sI2C$;&T){_l?s#eMe4C{Bfosq+^=z`$N)0T36q9w24|
zn!qE@-~g{eI2x=0daK2N?ZKcXK$&G`*#x+@#35VuY%+NNM{|Zz%XT<|nQGhjl?9{%
zAU6|3XdnnGM?vHBy602@6%_a{{+iDmc(ufX6bp#B{_P7Cw)kT#fTpE`IaQ+rhVs8m
zaU@p+Xe|g3yOe_8as$Gtrgw;$hm?T7)blWlU)Md5M$U4_;{VY2W8Or*&AIr0m0DRw
zfAZV|%CAds9kmc^i)uTj+lHe6cdIrtI}0kk9*=(*X??)_=HF3*dD8&Iewoi<|3ZKM
zplu}F`^Ye~7<RLO?4~6i{1)1&p?e^Qs(TJ|LoO|t5a2grgJd!-@c#D++uC~(nb*NE
z=yx#r9D(xc2avXzbO`DF%O<}qEXQ-ft1?gAG5)tnum2ye-U2GhuxTG(LIjaeN?B66
zL4;MhJES`VX<52cQW~VBySsbolI~o(yF31m@Atjm`JMkcDx7uqd7i!Rxo57Kxn?G1
zCjfY;|38ttf%2dB&<o3y2IM>CKlMot<|g)lmc(}D;BG8G>Y<42`w2{~`QP=$iUVXp
zsuj3}3UKDvfxlV*cG@ua--i*d)&3KQ^<HwWINbQhl^%-&HV!BjGXvy`N7DiFubajH
zp2_8`{*T^{|3mS|#sZcuC%!3z!}!$;fFF+pD9|Gyl;i*iU>jiS0hJi`uaXClQb22d
z#jU#je=a0x{7G#M0iZ3v{zqLdI6|4*1?umTn#SgU!Ytrdlyg4dd!U@6DucWKPcM->
zkK&1O)b;;c?*C{zRp6!ovE2+GSPz7|2C$BTlkWk*e0S|{tYQC0gO6nw;;nB4`$ajO
zvaGKr{13mH#HR8XreyLR1R}?mhCSkwTsfIupeh<YmJHscc>efk%KPmo<bFe;?2FWI
z<aTnPk{>&9oG1p$^7f8Ims|fo$Q8|}^Qd@CHNuw|Zd$?#On8}7zSQk`<9ZQyd!&$c
z@HjV83yTxpxf&P^Cy2!D{<ckL3b62Le*-NAiU!aH71~yJt}fFx?;`+mzUhLdR2?&#
zBtWxG@e-^s6h4?CEHWEcy%KRc&;n4&Ak1jH7Q4q*>kl9eVrbkfC`d$3Im(5%?oc(R
zFiN`M%zEuX-T%zuaOHua)5|4;8i+tQ9(VfoNbfPNH>~o^tq?(|mZ<Dji{vN2;s{@m
z0hk#3pG05v{zs>ZXu-qSRb1v|r!F4&K7c!cWSCkCSsMTbI<q>l=Y^N|06IFb(%wtc
zK4U;(9B&BlZ_JU!0>Bvj1>g^mFu(!z0jk#L2jJc`^uAfeh0xwr=|@+TfSV>H0VCPY
zY2P3_nhSQEq;dA-hGb9nCew~lU0?voWmqMK+i+M|gsq*qr8*6c)$}w(mXIVRCN4ff
zi^oD+5A?NQDvu?HAWoU1j`pB<$k$yP7~H~U5d-v>Ub30*Zg+i%Oa*;aS*YJ^dvQe#
z%rnB=2Vd>?WceBjyYr@i(n}Q_w-jA9jF==9fSDj3A07`a89`)pOvj40N0U)4mL-EA
zvM=k7QpW9zXpg6eeox$`I`TT#BjJw5z%*2yM(4Pvi|WvW2@@P(&b^Mb9A1dXn^m~m
z#SWjdesWO=&e0T&JTN+O9%DgDn!%e4_Ppl>vcCJVcGMz%bSD(mcTp9wq%YrKzj+6Y
z<CC0GQi2-Sf93{eg^2-GJO`u}Q0n%_2j^vd?WSBQX(bb*g0u66t1E3Uuhdq4ergmM
z*#+1e73ELQ=knrl##|<t-z-AhE`u_^(&FF%6;6A_j1C&_XC|Vzk4Ml^S1u3c<Yt9p
ze+!92K;Fw$c|YHm>cx|Ci7Yh;Pfwk?yVnZ}Hm~UGN}wJc_x^4ajcrv*sSEot_|k~t
z+n#{>i}U6@8y%E7w@b4R16s!~>Y07LN1vFKbh8@m{EC~URCRMUIEWS`N<HMmg^7Bp
z2WQXv#wYd)Exu1VRB|P(B-#Av_)^PTA8zAkL`L#qCvg!Y<pEKuE;ko2Lb+uxT`FpK
zT!key4MiQ5VxvcSW(Q$S{)T!CSnR2hpB86)(`omFED;{_QobIrR2XeTDOHzYV_)N_
znMTYCZQmxoO!#6CsXDfpknLIpBKcHbkOMO>Y$btONz)HVMAQZyel)a>09rHKmijv1
z04|yP;QAjRZn~)<u%C&s0sX4a2o!7k#Sa5&&iybtx;@I77if>wBJw>`Pl38FeNd!r
zWSGUFwyu&D=gX}627b&K0_N}Rv*5p3o$d|>ZZGBatRgvkuaBVLsD~No`R%^Ir~eL)
z4gXFh-*!w0^48PVotR`KNP1<-NEMQYiRgXVG;;Oo^7Ptv%euPMLU!nkx3_e5L0yIj
ze`wSCH#_v0H|mp_b9HRPA58ufndUFRRF|KvXz9<{RcP@uKW3+gU;DnioWipHG2gg-
z8^5eppgb5eSv^?u{G+b2a<<abs4U-lu|ggg8T=k7j)V3d2?MhVQ-xlB9{*UmVD;sb
zv^2V-_j=K>=lw-U+8=)O5UIB;I!NAapfuivr^>oc@O&?hB<J%(mHRTRb|EbI)znau
zEvU4v?tAyEj=zNtJpm})?Y_hs+13xv%qX8z$&`hCFIuiAcXu_zHqMMd*stFMl`D8F
zgu}Bcx-Iipn;i5~772=G6XK)=rFvFL4V8)se^5a_Q52#q%^)I~d5>lxeFvt%-pDD-
zmoetdfr+@6C9*te8b0-U-mLD=nasTC*@`$T?=q((2(9Xfh{ZV;&666~^io=hLC9=+
z=ZI<3O^I}PXamX(;JNFH@3OBpijjO6emzEQL$I)v)i$8^0GytV%#-^4z;k`EwT5e4
zk;4==vlp_8i7av8iT2)v2A3VOip!8Vny;EY89&AnRC8g<T?tAvNn6zX{Z}*nLem2c
zbR+$r_jW?2fWql&YOQK5Ctv+-UsGLsETC@cobewb_Zq}KOpdxQ1i%P<^dIkVis~ng
z)gN^&i*xq)@yk4dSmgrc@5iXES}%+!B@w*S;_Y<5eQ8MwmMX%Ps)@*>xTgZrq?zM;
ztB)PL+6Rn7qHo&aJy^T_+ch2sM$61-7$@bdIGc;iIaok>1Q3=&#^xbWqg|;oK>@is
z2;T?HYb0rDNul)E$N%!vaG|=WGKeY{Ep3ic@Qx?BSdNMJ8VLjDG^+7dJy<&0XB|G2
zl#p_}tnS(o*!1!te5`_orG9RGj_gmWJ2c7!r_{fo*7IDaaJ2VjqF{IGs&D9~GOAx7
z<)>Gfcu88G1=fU+)Im9z_2g7kRz2_Jmlu?kKQZeKheJ)_QzYEf9@jdoik^Bdn^OA_
zH3%f!S9k$uXlT4{*;pJ>9p`eQKVg#gGh>AAB3}%$rxhM*1iZ}5-tgQPA&a0Ay}Cb`
zVmN46D($|oEhj5A@Kf+$Ct&&&3#?G)QI5tdd$Uj7(O$TTxCq$#n0|&6^>z=SwBQU~
z;Gc&LI1xMb-a;j=yIY>XyY|5$)wa;HY1;;67O>9;)DIQ8-jl^F)AKDg3J8~HLmme^
zC|YsVwo8{Kc)`?)G@gP$l`cprD(0hdl`sTlOcf~>Kr}g3HKX_$te=j8p8n9G+y#BL
z%vv@FB3r)?0C+FP0tC4__Rx`B4Rd+804&vRWPK6#YS!aGN=`5#C*c<_@4aI|UQtR}
z;Kba(d;c7jRAxsQN%(e|F>d@+{g=7X0-{_YgnNLLc<D|Of5fh+G4WMV0Uad7Hv+T+
z0__nR;Z0%q-uo3we&lZb#4~zcx}d77Vr6AHJSB39hDdbCI8d~=%YUm4)gEc<G%0m!
z;9kjj`S=q4*8;;Ds1bEMx1UJM5Lb7)N(&p$9f95X-?BHFM7&q(ot~aP2BudSyW)eY
ztNXkj4dLD}wt6d4rx~k79<SBl3KOJ<<~;fL78?O-EgmxncQz8`{Ezz288}5V&<s-P
zuFQri>g&Dtsj(gwhXIFFIh*!M504`lq%F_%N4LF<u&892XP~1++xn@Y!Hvg#VO14g
zp1ji36i6U0mQF6^ty}^k$S)y5zYp6mL{Ya<gyRzk^h-orTzs)kJ~YnbzHe=9y6l^=
zvCmH=m-hC*3~IRBBf`=^n!Hq3WqZT=@xlI>mVu$)2hsOYDe?I!sg&mxh=_ooeWe|+
zY$~>uYa5c4#jimzCd0J%SDV+pp1l#06kphUiyL#zDB;ejIG<I2?(G5N#xSK+5kY%v
zhQUS0=ms!0>=jzRrTMqT!l)Cq$LD8N()nA#(|JU9Cylbmu!P2)$h)i3X$!gW=Np6&
zZ>y!o<loWX=NhI7&@G*pCR|9e^5f`L+WCOXrb~dn=DH6ZKOvroIQJd3m;`U>-T`hE
zs;>itc?SMPC1u8ygY5I8WeduJYaWLxQR!f53<N>I#;$Yq?7-#dO=GMS-JXzahOq*+
z;ig>KnWAj_?w-5x&&MAvYnIL9V1{tz&1&ZIoK<VlEA2Xx!%4We<NuUn@4@z=Kqfc+
zb;*n=z<>t)kiAsEtvdPs;&WGS$1G~AT|9e0mw&Ctu0qlID+ZKnwAJ&5Bj(z<+Z;eZ
z0ZM_IcoHxikr{IunA!H|S~HU%I}J=?G0QK80x%3=i5V0bt!HjYUh$FO-uW{%e6YwO
zQX_GB^R2LT^|?7n;`f^MJZ3;(l_f;&UWs6WN1GLl|LBB7RMz@1I4PNR%=KKrPVk5H
zJWcoG{dvT4CMo~<<f8Y<Phgxi$eMYzQYZr#^`_n}?R7Y&;}nMjmn6|C(mF87^?kC}
zOlqf$w_$%r!i8@QxRyPwz(Uo7+xe^B-AF}N0OmVRQD!wz+n4oI+>1UyswS_DR^U#z
z9(N$nYeLF*pUY1hw*Tm&*n9h~uaLPuI`|G`6c*yr$W<?Cye9rzy7)6SS*&9_>G_fX
zZWP3Cie0Bwx200_M=X<cMgLlUwdyV}5)bd}@m`CCuC{iILCr@38PrU|i!2<-$*748
zbRDD}PVENu8vZPX$;G8uhKbDjCB0ri5(0x(Tu0IyS**VBBo>Y!f>ef41UH`lIQ!+|
zNRdqa$&*|*Wtb9F)y*)U(2U=GXY%m}sr3!0?L2{wze(N0f*k}BEgZmUDDBilA`%Tu
zh)4ghwElt-s#Clz($FZXQ;r1^U{Z@uU2P0&%R;%H7R>>iI|0Da6SN*yT{fon#N+w6
zG#vP$UjY-L^YGDF$KvspGNaZT)7o?@V8#0FK5$w15HZsYwLNpE%QRx^YeKe@=Ytlf
zWFocLCy&BHyX0iMVRk7BvluF^{>n}7Fv~V?$pL1@gUSQugJYv_@kU4ohy%Z~5Wp|7
z<$nLr_|h9?EEa7yTw&*=0>6&fD=j@LB^e5(v@o`Zk$R--z#WRVrVq6o<oUP1u+4$W
zX_&p7+@AtHFm(SMxG)=aAHcvOZ{MdsI;i9CG`(3<=CWGGsE>z%ziZ^=g9L1#g>%_W
z)-9ro<8#~{wu{_(Ru4Pf6e%qfB|5$&aY)|HgW2IrQNyq|soPbGz79AxW5!qmVX~Sa
zGTtv&KMNJjSl4VV7rLr1#aT#PE=OO0uq&0Jr=}!^B=6JkF_}alDB?8hhJ)iHKeUxT
zbFsn4zx=|%w$=MqwGbE}-VzNvj=!4w;(69Am7`n`Ll}0)!gu@4rb#Tz(|%cQwFZ9l
z?p>F*FO|Hb>Ydlaz8Z6?YgNJ4cYEcoMW=^Vc|B}hN*XGjYPY77J7bUNYh#5!G-41?
zdO4Z6G8&NKR4?W{xTUIfEGb3Fc^f0eMJ3wc*;1d<Kav+6-7*l6nyOX1?!Jz3LZ>qo
z!Q(^R<c`momF2FN#www_P!|%w2uhzP@2B25Od0YPE>Mn%m1GA{gDo&5>RiZPSlP}r
z%}ck!ILu&(kc?7$3%xRb1x4<LLWAKc4I6$^nrk0ac-D$DBr-R>>>q6f0!5#tQ}TDG
zxu!GTF_1T|K8_HzR{hbd1j<h8?gF9|qaI@}XoD9cBwicMpZsnYI#b%(X%fsXATSt;
z35n*V4^~i+3E;HVlBs2x@r_A*J6^LS9wT?}r@Tw{VAW*#qtEOOUpYCw4o`GQbc=zn
zmO*7(UMnqU*Dbg@3@M5_cW|xgO*)*6ENo@4-$~f?{nkN~pv12uiu7yzji%KQXx|-F
zz<C*C%}(RzrW&>5LZgA1V07GYyWgK*DM^1pZHLBse9o{UD@q6j8#l+(M$VnxOd`9|
zn$N>W5ZT{i`S1uX+g#)Qd4m$MsnKZ&ry1M(Y7i?I8xjc1N)OL$8mY~Hzho!{$>J|m
z0iB+K<7s|q*hy|#T`P59bh747E^k07GM4c%R4%JfGr?=kphcmq{R`^P`#$fi-s_$G
z!J%R6CSE2>VoOUMI=Y~4e;3V?!I@RJ<tLMN!;dkkd}TFZW9jnp((Ok&d&;Gy>fU+>
zQ+xA8Q%ksW^6nRA0pI+%*A4HT(64(df9tQN(q3us@Tv4IvOS)~uNJzUDJd<PgeNC!
z`9qSAe08TH45sM0IPka~ZyA3W7*ce69yp_*c*-$zbj-KI(mEW{_!<-YQ<E55_5A5$
zT6%Het9kjyNu|BK)Q(g=DFs%GG%w1o7c+k|)~AEZ=8o#{M7^l2+A>BbY@ROErP4BK
z?|zt~gFvD5rV2DY;?1X+OP%s{V{8mmgwdM)y^gC?Ni0u^WS)m8XoVwEWZ7b9BTBeT
z?oVNVBP0r=Z!R&JQ<F|U`?b7!UE%5R6M`Z*EPFGwH7%ZtlbUB5yxpHR<No=p;o4Ax
zHIC<^Apz$WcwNXH;$xnR8ikm?yP}PicAdBE)L9lw)()fOk*7`k-Q|cHwQ(tNjj?Se
zMCorVTn(<Ct*gs|duv$aI#W;#u(Z7~;w)wyZq%H?1j*Iqndtx6&b75_QRn@h+f!qY
zxn)dAA1h-lrLA=x`NQ*-sDfKv>1S8i(IL(Z4<iBbH+7BVxoKWX5t+;nugxTvM1IG1
zCzKKK@N==@fQ=G2i>nEzo?fb^H7k3qz@?ET+^cV+h>QGx1;u10$83cogbe+(!$!Q;
z^OS-*_KbKv23kG!KF=R6m4Rd@k_zd)E?S@ClI{0pZnomC_?xe`PNTQ|o)@1_<g{~_
z>K=AXTJbvZM?7}WYzzph5`6xoRwTDNW4I^2@g>1YiWgSEE6r%X-7C^R-?NEHf{efd
z?{^doPM<n*ms&}itZ&z?ouP}?4+kb>!vy<2DM|IY)CM(w-&xNdYTH#^tH#D{VML~I
zbvxJtR!&1TH$OjePb88G`-ReN+Qw}^3fDKKw$P7rJ9?ky5o7t9lfV~SwX8u}-l~!v
z*xU&*DV2fiu2}b3G-FSnVIM5hw&x+<)}WP!Q_{l1W2HtB&`PgW`OuOCGqHwH!uiQ>
zCXsfwq+>DbA>4K+-`~z+H|HA8Wsbft^AkvJWJfsA_e&@r^?#J=>8+qs{z4%V^Ka~W
zM_L#F67qY+!Z<Rc5#TxDHuSgA--+bc@K0=-kVwY2m7rw|_3~pBw51t6cK^X4C!~&h
z=n48M{3PYDr3}}t7m)~!?Ty#vH!m_fOPAq!+vBe{2Z4yWu|S~)olFyF?D0JAR}WVe
zo9V(e#$!vlg4rgc7xKRrhRi3WK<cd@ut1!}f0sd?cpfs@3a&fyJT*G=D<)}|r0^e;
zhhF*^z2|<|{@Iub7wMpr*<q<<@5uY$aLnWE<<ZHzsj^3tuR|e9CM?j!(;Mm5+ty19
zwZBK6S+%R^dUx|Xvwr$->AtEep6ESa$<NkZ(>x*xTQxg~I6vMz@v^Zg)GcoIjVT$3
zref@?8j>=bEe2vXEV+h&iExF%pmf)r42@7x|81J>wC96oLC-_YgMOpXN4Mp5LU2PW
ziB}L#;`HOt@+ckM>Rui)*g7;kcuqz}DtLR6?jFlaf|{nq_vEk+L7)ccIw!5y@v%bM
z_|jtdQtvu|v|xSao}t55PQEjO3L)HcmoSPHMi!^~O_Ai!!Wim;$EcHjKzRHwzCo8n
z9jng~UdW5l+Q;O*41qiKHC=2%jJga`T#jL`y$sGR_#I5{kYB~e0bO|=VBA%g)ZF|T
zls#Q={=VJtuM7;(jez2A=jn^g;{a^9^~phvSy|_4<1c0ZcPeN+HAudfWf+r}+<8o}
zQ4|nQ)Ymg>_n*bbVgld2@hPa$FW~7&E$sL!O@c=y$0(w15e{Wah<G8-Ap%M<*zkHK
zR_8R~NP&4_^Dcb64Mkj)<=GE$9*>L553M12OJC`YV4<8zKvjf7<7P<O^9KLp<Mwy{
z&_%3=2Q?O(<e8Hl_OzQ(CVu{pTmX;p$?}w7k;UVbeKxSXIt8(}fm714QL*5;*Q+_l
z-M7Ux_Bz2npVS4JAZNfm^5W8lnE3aB@8?cPtE7ps&<$dR@(;$8)FUfF+M0EaukR{b
zp1AyWGU4Lk*zwZOv1Oo6{WKO&-1qlz0vK{J9;p7PE?JyJZHrf29QOprAvIU;jN<qF
zdGpKU_4J_A_tp~VU3{P84PBrQGzq7!mb7PlQoBfR*LJ!}3jcc9r9DdP;ZITZYY<Lq
zd5W5?pSUv3ntp0NMga^Za)9_l15FlGE6YLIT}_mInSSw7UnX1xV-<eAr<|5_%@_CM
zmmHRD7IqC~7PEztzVGs&*U8U6i(0qPuZq0CSe{t1mNCkP4TfRh3=Snk4hr-$c%&&r
z$ODqE;Q?`%BH}x7kBjOD2piH6(HEdv%L4Oy&xeQpnURzmJCDnXgJSzrc7w+dtutTJ
z$2<14=f9!d!5(g;26fz?=S?$yGexR#rTMfC-IZ}h{7<_q7!jdC2vOCOlm|UV{=J6x
zY0oyWla7NlTawRYTXgx3$34)d)-_@Zis>?sA-gS^6Gc<w01LAyCTwX+1k91!^S1N!
z83uZWDJ=fMjm;qW*;J)GBK}9ZtCP1u*6$|4&selppMpt0A93BX_3rO$=kZgC08Q3J
zR<b62m%TgpS)~#x=?u4+B04WgFSVZ`V^zWpAJnb)U>8^h_7oerMh?vtKlfdUS!RT&
zh<wTgGvTNg*_4^#pocrev?OX#RC)i?J=^m|NMgiO{r+3h${rZ&YF)i9K@{~|{4a8X
z4>e^c95*Z_y<X!U{duh*g=;~?4@kBSifF$Y$az*DVedo=;U`<J-hb*oRM1~`+dSMO
zqA4nRzq2H#Y$Ka2gM*}CVr7%LlkpfE5kbg}<H)yAf%?7Hr+PH{&)CQfGsPMzaj^*~
zAkC63@bhxK$i44IwjclFY95}2Q%I~5-|eZ1kP{1ipT}(-f3<pv?9ibViF;X1N%VR>
zQW>e^Yzj-u2~zcH{qjv`k(G?B8v#k0=hO6ASeg4F|A@{>oP>Hq<^@2pE33eY=PEp0
zNLbYV$ky)Q)D%HPuF5d`V|e*Fb$r+FW5vh)g(K*+8l7;B2e;8D0|>KK^$7onyzHs4
zu(nnbV7JKpNC_)F_O*JRpR988`&#3g9cA5z<F@iZpd57Ty$tq`q0gtJ%GGs80o#M`
z7wTYC8?E)2q|=@kS?M!|bu6BL2C?$ZYW6qm+T47W6iaXD`CVhHE)hVig!;{Vu3c<h
z@=LFou)&W0yzn)y%jS9%C96BS91Pm6zS@>P&WBO%!4DxSIbOn|_z3$e0V6Kv&)~(0
zl?0oV+iK26pO3~XR9XVzQtvzv5}J+!PJT2%O4CQ*L5?bG7HF2<nOB!HqwhaSUQ-cg
zJ(%uEnPp{mnuhby3mU%uF;gZrOB}DJA4=>r$9;ffg$dDAkB@bDF5a$8Rp5=U>;MO$
z>aiPz1I|r53~W1(@xf`a90pbfP_1nf3{2km4(KF~YI}S$<Mm`)U-xlbiJg6%tH~7@
z{$8VV#U2&41?R4NRrY)ol6Jdc(&~PavJSGo=?gNX8J3d%`QiHKS<J)D_R^jQU{xY`
zE8SGFq@Ju`4`Bql7xccr->&Q34PkvE<ZxV943v|@m+mY~bMCmi_8PgqM)F=KX#IM;
z@KTd$@WV3bEB_ts)#{mEFFsz7Bt;>-spR<ttF5xF@{06%_Qsb~!1SkjqH3}F8+9cL
zGI4?Dh-X^Btr2K2i@wVU)V69S{}WM3OdLF}cyN`&#yL(p&0`;P$kT?Ey3uPPNZj33
ztgQM#L0mU|s#)PwL*0+PdKWRo%kNLxy2^7#TTk6(P%R@i>L<Jy-?}#8yJ31w{L){S
zv7>|Xhdqfq2o<XsuJc&7$JE-j&+&XB7I};^IOZg*$u4?h-8h|G8iK8P|JAnJ#9Z&#
z2H-_rbB}nC6^Qia`;A~UGU{NKam%YHi~XYdrN<DJ5poe1Ky~uNwp(wqWoiEpqWAM5
z*R``ylwbkoNduX{gn_-`Phf+}m3EswAo^oB&>L;#qsQaKKbbyceM}P9o9Hrfvc4>N
z`qri*Hv}<(nN#LZcV($By-G&84%+U6vwBBrYn;%^_^(!Jy8o7uMc1sjJh42<g+eL2
zdY^7%(`dSS4M>?KljT10F+U(h(3s*C&Nocx9aq(;Y(+U4_jpVev6@Ip0R#Fz4CsF|
zthjk8nSP_8pqfj|aL%l{FrO_f@!Fcz-#?}uo3+~DapHy1r;i#Mg5oh^pZaFs>H1J1
z6IV&qY%PC^NS@$@<hs>rwVaRGFKVt3b<N{wo=oWh2A?gc>M^$iE5(6i2}$l)|0}MS
zoW^McIZ}<%YcE>c)HhjRn1Y(5xJxe{zaw55E@OJI6ad8%hMatF46y|iIH!5{YQyS_
zDda*z)=_V2UiWLBQ=9_PG9vP@I0c&_FUL%2o}Yz%p9-Ej`l~wS2J#m;531|Y<lPZo
zBSvO(N`ZgWh7Dx`o}YtUO7wBS$_|3v6`YJx<oeC18(?;@iyHslLfeXAU`mlDgx{|z
z1zx=LA-l#7nYs$mYoTmrrtO=nveO#HI)k{QWCHD~46?JzJMJrZx$7QR>z--gqJ55U
zb`HU9B(SoZRrwY^^w*s{&tq5t_p=wFn}%t33pjbh=+6mJac6g=Uce6@;(C!&?Z)r-
zTM+-5`PLisOB{KLWg~ZUfZ`JvDD33a^2k}=5_d^hjM*e(^KdtFRJZh27wq+5NKHc{
zaft*3K0%BF@^Y{CUYBP1%E<H)T7y9O%JyO?%Tq5vUB*a(NQlv@&U&JF<cL1;`e-YO
zfEKzJLMx)PL}c}pC570lYQOpzq~#t##{;omY?5|Y`N|{oYUVLuf0D-A?yegAoLwAA
zr!_ocFY$Le(TGq{^hTK6@8v5mrT~|I9wWdZvWQufYO*oT+#kSLT7&5gFFmZrylRDc
zM}E@rn_cm?GsdGtzYj(sBGjztNM^ho{>-~{ixqZ^ss)RwIqjrlctCg=EH!nrkAKZ=
zqM8`pB87qYi8y&*u=$q4a~Y#m^+OxC@3okisnpvAa*?&D_5l^m*fHqW)&KL#=BmL@
z9!BnxAUq;epGBomlt*-yr(N*!-4X<L*%IM(CoRMo+y}NIO*lh?NCmfSCKwuKhM^p@
zcQv4^QB&t;Hzo6Kv+UM64!t^9y$|fkt&PrOK`kR)x))G1Xg=uW;&LOIy$^i{S8u62
zfY<4D?VvE8CgXaQuP-*F8{nrV5}wv%*1r?_VXR{X+x5^74p)UP{(5X+jOuCNF&RP0
zDFQmNF0o<bP;8}^e|yyxY)axH@}u43?E8vs+<7wBCcmpDp{`F3tCVtSG^ri2+q}bp
z+4U_8iX5)vwSViShs;p+(N#Zfp=f(IBMMP!;<G*Rb0pA?i%waEKQaso0+mQdjs@HZ
zv#vkPI_M?J@Q6Y51z&}aCeqnmz$GR`gO5o_ttb>lk=mvT_)g)$zbL<PzuY*>zV3H)
z5D88+MoyDoh1*N|()4iOw7p`P$$e}cSNRkDz!jpujDdOvCsSMw6F3z6bsP}dYmz?v
z!F?!(Y-G$D1}58XA|HeL-9aM(peC^7)Jd>LCh!dp4_WZ&O9X%80u8&9$3?W)`TWm1
z6Gm0w5ascc-W}+9O~pUS@L%5W*~E)qxo~W=<L_t5dt|~Y{IS<gox{_3uDe;hbRK5o
zWcSP6j!8Y&?3O{^^1RQ*2PSeUE%hEF6D5`@9bQMXwWn(Qk5<7xQDbbo{EY2YU8+<X
z8ukX6PVW`fOrD3G`ub2o-kqyl)&dXk)bNn3Xdmf~digZ!_4N*mOJS^^h&4F_IGX_&
z2D^IOAuNrUL}aQApvWM!d#^`=W%%K}j)%X@Pxa`a{vixYrOOrHm=UhYCx8))NrZi-
zS09eKFw;7`bU`RjuUeA1R-RA87(`Dm6MVhvv+t5*`9N1sgWxU0(KzfGr``;~6m8F=
zvlIfXnP@Ojac|cs2N0DW%V1c$0Hp5E<`p3V8v1*mfCLiGyMI?`FE<?x=pjUO$IHwd
z@mw)F8*f2PgOT58vUiusq8286P&JM%t~keFqa!RU-kP6mn@L;(+iJL^)}5v<U+Z`|
zv?bxEWV7X(QJ{_}foAev7AN<bv_&!B>7!b1?PPVK6y?2yE!qBPGs>a;`<F`(KzH-$
zb?qWGY$}HM{`ljX<j7r>tibszsP#dfmRa3AQ#CF~_)rl1R+F77eJS{>9tsdd@$>Mt
z$dy>4BIi(|Y{dGop7kLp&#x!jhl2V)MvHfKE|27KvrI2FwE`q?IFu{@xXGWdER{;b
zI1rq6TQtH`XY0?Ob{mp*-_`CEj=mN?pCk*e<;DNT`9+60Z-UCx_<Fcx*Q|fG<r-~$
zJ-Y0nzbTxFd2pdzcWZn4eaPi0mS^JnXPbcv9Fu|RKIabJ>kOKw>(=KNZVvqd6Z6|?
zbpZD35dMANa=m!mA}%WSd)KTWQFxkn@-mPAmP8VFFOZ}Ird?}DNiO&}D$J}`J#e~C
z%I$fEL;q1xM(9)(b*X9QetuPdf4@c8@Y0;^^ILDRtj7(S!{ui_5NL$k^TDt;!t1p;
zNBx7-2YPC;>lyVVvt8tlSNublM2H=T-uG+qi}6oCKW1Y~$3OcJjw>7K{l<5{+@*V)
zFOg8Vk-ERU!KI57^tQ|4EUPkb+Oyn$oC={tx#Tu?f3nx#`K8t~QtfJB44;3woOQTF
zk8Wt?1L=wDP!jfGK<Kep`E_1?0NE!|4?ep`eoh#L`^8X34<wK<OQlh=&Nu$x$==q#
z-nEr=mw?*pmlV3@0z2+w!{DXfDaXyU^}1H4Ee3V${eG*2J0#!b4(hy)2pB`uBKS#y
z6JwW?aDKwu9w*<#DW^^~1e&i+<TpjHW*B9#(tVHwBd?Q^4?-!dT4^!F>ft12_UloB
zBoBMbUb>CaP`RzsPL}Pho1!6k*%1kVRL<AD@6`H0a&`FFS>|<J_!-1^iRN;PGGa5n
zgHl->N2OIq_;jh4Lyh{~R*?`s`qZuGH~ni9y0oFG+067~Nk&xkn>@2&wb$cJVuT0d
zii;-jCUcDEr{mza$AnXM>nJx+;mTXOrN};*$6c8xhrkU*7*s?Y+<Kn!6^>nLnt@YS
z=+t~rw?y_sz+N~$f6fE@6B{frmd<mM;ryH8#wD(wU3;_i6ko>NC3Sw*V<D17#HU8V
z-r`9<TYQVIjuhH=(l^+LC~r835pLgfXu3LSFJS>i_pJ04DK>RFgrPT0$wMPlYF}5T
zq<+0Hi2juON!D)%>4Pfk9A47><60m_=tpf|y}$D}Q89Rm5hE+_kZ(L74*(`FNm!fG
z6VP9Jm7vl@u9P-a1}8(9$B-oT=^F6G=3||p`b>Z#R1H>K#<+b=!Po5Ax%@E#0TWQK
zytgiM;#iNX!t(raNzrsEO;sN!JkP71Zx2~o^QO#w9Q*&u;5hb6$j3q>!h)X03HTld
z(%iKQlnr{9Xq<Uc^&al9IxMRCX@`u3j!1DWW)fk~9->B6cyHdE<VVHj-v3qeNfsy1
z=3<-=S;8{qyC8q$e`Z%wL?jHmD9}*Qg+2^Bb!pOr+H^1D^S_pAa!4orwOn`&I8!o`
zl97cH4c~lETc5Sev3(iQ{!GFXQ><7E+#bkLK>DA8f3uig>!pW2>8aNL#97gjf>#P0
zxUVzLKW_gira{Vl7vmF7uM+2}P<72K6#-MI!<qXNcr2zb;{6r3hVJ8f9YfmuyVy55
zuV}eab3*P^S4**I?o-5j7q6)IX`MI0yMh|vr9?VpPEn(W#)pD1h4)eI7-F96UfY4c
z8SuB71o01=$n)T2w!IkpO@jW{a5AS+C!}l`_;)>;KOH@)592EX!%VN67Ar*WZu6o7
z%dfP5)-v74WR&rN^*Z>-!K<V-(^vUJNJ!fgir>jPn>O$}H!=DQ{dLaAMJ>e-9|o0#
zFK5FB-f>ZMo>)DjfWF(u>>nV91%!v;9exoS^E$McHM<7?4Fku5A&4XA9v<3W{Fa;(
zl9GagY?1G*S?A{JVy<Za4umZ~GQTI?4h*>2HRJl=BPW?5Lw#^al{8wdkW&5z)F;Eh
zKOqPnr!|bL&Xg)gqZMVBT=<@(Sn^nFepp9fjTyry+OjzV0v$<uHlxIdaaB@Y5Mit5
zFYGV@N_%>CiKD7Mcz9gwsr&~&_Q#Ft>iOQ9>W{jH5|_8o6TeYlvQG9bol4Yhrm9b_
z>F%pE&<0`VbDcA(sDdx1bd#ZwFvHqZ0B+eaN`@I*Bl(6Qhzf97*p(11Vj|lT>7I7P
z(p7zEaEaBky5g@tD6zljn36eFV{J%Dq?`P~p@jO?UVjMJ3zy=?-85J~K^<98|8z=a
zPQAuhw@KuWY!aljyHpsv>pmYBT=Xlf+f%^!)G}jYe22AL_U0#or}gN4exq^eH3dCa
zVo-R`&0S@pq)bC79b~a76X7Ls)vHM-rgm98Ng8Okg^fukxP2Z2(eL+`D{$`oyb-bA
z9$*Nff+$TxPYEgf>h)0%b^ly!<<Zi*I*8bM{}p&m^$VIS@J8q@M~_Gtn}8nxav0ly
zJkgg~ZbKkSMV=Vtw%YV29}X%w7F&S{!0&f@4pBa<V=j`cIIlRXzxI0VGic}dA^;@-
zCH5`ujQ~)o=|dKRG*a@a>jP?nIoTBgqiN+vrP9u=DWogXTThQH2#VZ1aE{9~^Z}v3
zCu=drR5`!pFXr1FJ9={}=MM^`|IJl==<maJhdhW={&e`}*M};5i^1A#q~2_Uu?uVG
zFv_0Cpig%6#h3103U@>@o`Bw5<57r<s7kN#Zi})F;*+dc*SGEV9Me_C&}bkszGQsK
zjAg2vE;>c-13V!kqB5BC7c@&o48;-k?W-K=>4R3X=3ET3S#s&@Uw_@*A+)W>0eX7a
zJ0b7ux3GSRSo2)3kBcMFl2HofV4T1s?J80GKcHR0(|z0_WE(%oi;qz@r=<MO;biUi
zcNV$W=5qfJWc=r3#Q+h+sCqx-8z>`5O{Wkd5fPT^%M%_?$*4`=2@Dea3r+n|X97WN
zK;a$I(^3Zn1+@c$AZ(PIB~<~|4|=SpErYMPq+(vdBhLfU&0G$}^o@f-!eh4q>SIp6
zue4X)YA8R>W9a=~a90=)<NN|nCf(s=$Yuu7Z&y)XBngF*4Pb}Atb5sn@b6B*pB1Qc
z2#N)SjP<&UW|T}o;@vVv1BatG*uM<KfH#SVZDtU>>_qVuNJz%2J{k#atv9VsX?R!j
z?Eip){rtwDi{ZxsERE#*O$b#$cvMuYS)7tj2@`b;8kt`HR}tO1oX9wrtUT0#hzRBQ
zf9{Bld=!ThXr&_mrb7uklJre}z)24uSuzA!K%xcjBnX&i_97ZcOGKW=Ms^YU0Jei9
zzj>L!7deFq`Lm6b5Oro8a(-Jh+7J%80cD`XH5HG%VEU8KwK=WN9cMlY6Y|z25X0;1
z$v|ZZdP4U15-5bD!fHEU(u{3C`E4i$zyv-2eUJ@k&*u#f$O`^{T;Mm62|_-Xm;eq$
zJd?vm;0^@xqCgBJ>dOLv{y$a(=)=W-Ir{byLx8QO+HP8%&;tU(|8)jfzBl+Ei@n>P
z6fIk6TdsSfz7+&$*MCO=aMSP(#b!BbWn{5Yw;A3P!%?RRoYm%$g(@|jcWsbrzzB&i
z){0{2dkB6h1Nqp-UtS@_<KOWQ14L3*XP|w1e8?&2em79mdtjR=kADMbDBCJ%@Dj~d
z2SXAbb>rQ}*cd^Dzq0b>0r~-$H2c4c{N3{n=9m)_Af3nw-HYxJfgY6$%p2%Q-D(qg
zHPJx|o5?apkg?w)`#*OFMZyCj@oOCo?FzoqS)h#X<?Xuy!O=LXF$5;K{pW%W=m~V+
z07(bZ2NJT_K_j9oNDmJlkiHIg2r8PAp~^5fg+LR+84N7Qp=1mkf>j`(y>Jdk9fkUR
zNjm}T4U9^<Ecn&`t_ZLwZ9Ikf0Pv#7mNU<{{YC<O(1ij09Pa(%9*X@QaE0rQm|<Y-
zB`4ojUm&apgMr&;UI1+V|6ZWa)<0g$aAd&Acd_<3fbwXS>6dE~3_NLh4~?W+Z4w01
zSU2ne`2M&g|Idd|7mZ$srvs6YCsxRE*jGp}_ga%6w9}~*On`be{HN*|<tuqA@p0=h
z3LX$P@%$oL?&u3Re17JTxb&AmY~;UpZ+j>{LIhS!9bi<54&mB@Vc>FBz<WG}dq=uf
zRGC7)^Kd`-ytGAM#^3`^{bK4d3aM@rg54>gE$&ojJ*@&0)|hL!Klfo_q7Z2J4=I5J
zEYQK#ylhdDGF@NM|L;bOYA*uiV{L%TXj}@Wmr{ftqxjiW0-?@sFQK=<3Auy*dS*Fp
z5=0|K1J2(^fbekyl(|7@zbs<}pNa8qxI^?+mocQ4oREMo=_@fDrwNo(9rZZKo01`c
zgzA7sH9&~_zj}Z#KlklMli*l2i&=Nm&h?Z`hO^L)_aLrUiH0D9pwcI_LGz3p25YWz
zF*Jlk{4B76v(K+0*R&&HRkMzPd{L1SWFVcq=JE_%vE(Ad@q24g{P!mBtlb>7!YkjJ
z!^k~>?q}4CIS;B;{CPJ<FF20Wle;Os2=1CCyQv<zvB*oKzl?dHz_#<W(IB7j&cNig
zD_%Da1Ce#L)@qim<Frl$LJUSsalm%|&m%|XBxbF}BK=EQ3e|v@Ae(^3PUHN>34C85
z;D7iDNV8;Y3cz~-H6=KYu@?>;p!qOXKtcdj3{sAC6jtu)yMcbK1oALUIA*DDYP9i)
zoER4M149UOEDsk~K=Fxxzi-n|mnqT3I-OcSpRurmIrFc0i`(C${qG}SZ`8(sfiNbJ
z$WU(*RC1TtR48x?P@8-6)mP*KeqsT6_`-y2%Jq51SK{Nxu0ix5HnDU^Um9Fl$ycLy
z?p!XC7z7D>tUv$Pj`>sn%ewzJzJr(vc8?rK24LV2dLkyDdeiFuPkk0Ff#|Wh)z8kW
zb+uI{@YB-^VJwTmHy2~q$z{!J^=|a<N-%4!)Z%05Z1{x!yR!`~@5I%Y!y-AnOuHk2
z1rX_RqM!`%12oEiv>Twb%^`q$`<;gmX+*UL;09#=2?26lw@?Z5-2W%qG2`(sD{KML
zw=spRczm^fjp_QRNkfekszpP6^P>7{D`^;}dt~QjDe)^0L4QihNYwu<kG~>CBD2m)
zZ8?X3wLQf=Iq1I+CAd=SA+`+=Q+_8@VlRh*;4hg<2MGY$%S#5rt-~h4I6ol%;@G*}
zRIyV7J{I>D-fJS?92bQQ@*D2oIb7Esnv*w@N5*y+>*N)dUj0}u<@5NfqqcoJ&^nH;
zR#g$jdsBN}<yA0an%^0i5*Ak6DfY1{!2`>TB8wJu^LR}Bem8VNlv&rF|J3j3guHjU
zWG}X;*&s~sVKFteo#!U~?tZzhq)btzQ~^;yjmGKVPf=4~Sdg)5i6V41-*$HO+0)eH
zLctQsER6cF;$^AHbXg$34@%GNv0JO(KlifKf0z6>a<l&?hGV=q?^v_k(RSYWlPTVy
z!JEVe-eSe}ucrM-*JOq>ot5;PDGlFT)Q5L%!Izo`v)2esoucg3VpJ4<8_u5d1`!{@
zM~;#mL39@O**0w2PVq?&4ZPGy;k>sjxr*(6O}~ibeU4sKxj*TCtKohhFkPtP%yE3<
z#~<GW>OIAk9Shkd;k_<vUg)I9dv&^Kb$%=5crE&o@88nziLn72jnH8u(mt9212YcL
z;f8wY1s$Vcr>>)QjskvI_&VOts^Fb}79ZKgWN^+2DIa?zyx|u5nHZXwt8BhWd;(7g
zT(->rQJBC*&PSn<n}jQULrSO|O4%Z!W1w;qtMWAecISPTlM~eAa$zyC6Eu@-c7ow1
zV#mHAmFCO1s*<pQAtS$cKz@Dya#EUw%hjzxoOFT~cd{R+H0@#XuA7ChM)MER_QJw!
z{b$z+F$aUU#5lrw%{%yrM30Z|cI@|UzUH8J#H&P{h@eN02Nut73*~|>ZV|anA-v9`
zXdp0W;Us-wMSFD8fW4DlOA8SwH2k!J&EA98f_3yATmb+1Y#s7aPBigiEw0y5)qK)U
zYQS}UCpM3?aNKOW&~^>YrfKdACno4Px#4srpz@EzI`1)6$dJp;qyyGKgLZ1>VvGY`
z!}aRdRp%$QvJ`ctI30yQr=BErjj(eu;drquWJG`#6Uw>^t!l45%E-NX0&cT5^Ne}6
z1~$2ZYS9f-s_oBfgzKqAxjngtNS2i_j-bJfdiFlMpWOvsSv49BnDtjAsS-%2)wc3l
zn;S_^2WM(wiN*)=T5p`?@zoo$X<x%KPPc}CwrHs?rulBT3aecXVdjkA>t77Q!aDXt
zAeswJfwYN=tb=>w#l@4(yM@PH-FH!^W{H`vU5B<fM5By(K}27)_D{<l^DM5n@Wfhj
zVKr9HKg{p%e!JbjRGo233~M~|u}{W6I`GreS=LydFH)sL&>x8d-s(g=w)o|%&T_&#
zaD{`VjisHu);0Ektp$VaM6>~Qp5<{e?6loO<(hMeExznwHhZ(hu7=*fW6K)vJB>=*
zCgaMjIdg<b$anXEJE(Uu=TFRhO(`^T#3uOEH0$ULd##~-gH+aq^K7Gq&O|h4aAq}^
zih@hySTWuOt}Ns};EtM>@LfRvu)K^+&|5oR9+KM9MhoL{F@+ehJbHR*$e$Xyy#2dw
z#~djH5T1qIyTrnV@i$5Oa#CTx0mxAf1H(|ooDWg{LAZ31>>?uxi_vVOUdbwHz{#ka
zusiCLEzw01a28sN&iwf5t?6AH47`MMS+5cB%`_l2;ur-vxun?97nB$}Z26N-7}TbZ
z3e)evFA9^F$y8EG*t0lV)GiqkOH7<KNgd-luzqaZ?j#+{&1MCaJC$uUE!Q~Omv?u+
z0*#s%$a{&gbdk|BsI)%hco-y$h$_vLHm<Mlgob*rbk$fK<<q*J;{#1Mlxf{u>lxG*
z0nrW)#)UwgLFpMknV3{&iL)zG!{&<3Ex)m~ywG@SI{DXxWa)&D$kg6_OHp>8f?JiP
zftkyxgpP&1B9pbV)3(*^(Oyth(T|eSK5cY@-<WexvngO{1k`&Ib7?F+5=aWqR-`Y5
z*z1&<!5a!5I2RZP<(T`VdRU(BJHsz?>RMr@=Er(UiA+6W`&w>r#*i70em2Vr-tr1Y
zUOKVHQz^^)li5inEEPJuL4YngWT;j{=wR@}@8l>WdIraU!V$`tMO#?owgWK6QWvY1
zj;w8nu19NQWr>l(4m}t`*o*eLNtPS%-QLB)7(dx}kS0}EJ7VzNpNIuySP(X`%v2xd
zpNUmgo2!V~77rXEcsFhxnUF4-)-;8u7Rky7H(0kAS&Cw|;Nr&TF>@5_Ma4%E?SE@f
z!_twE4-bpr?5rG-kGg?ke=!nIFYRnfIiaNEbxpU@9))UiFXO+rR98rl9kcg3zL`2_
zQdtOAHaD{Hc%Jlg=nOaT_o*HHT$*gDS`e$i)=_4ZeJ7+PQVq-e7?Qj5v~+4gpgC>H
zM0k`YB@-ky5?)qxluTGh8xsoOlaU%a<JP!&fh91s1^~BtjJN6V`dC1V0(iIY9!jem
z?0|*)Mo1k?%cFKmf4YlGTxy-k77)5{tLEuw-AMi5(V^adh>lYP@I!nVM?m5h=x*zc
zG^SbUaMU5K0`&~-hBJKrz1-Z7xGy{&wcXvl#VX3uCU*1xydwnBGsIf89=adc9ER<a
z)Fjd~D>ypYfll@qFk4tYzI`JpD}QQ`l-cotMeiG@(o7+Ip{~eE`})TmAyLx1cPl6_
zZ;!o}>7n0DUx9*yV~=6`iK)~W7^zHJlbA0HT6g>VRn$we^ReNQQB?gIN;3=tw#d68
z;>UfXJIYgko0FJYrY=+bA_1Mrku$dz7$}xUIDglbHmu8Qzj~?@`zqi)Q3{twL%V@p
zE|r*789nj4)Xz2*OS@;y7t?cRKA~%iF-z^I12vWt_-?A^i-779YHp})$SZ9KT)zR>
zg&8!)cJ<+U^<O@5;SrlHR=~P`Od_<k^=;&UOO){495vmIG{VJ7ejJii&ZXcNWm!3|
zC3t`jFlPz|FpxT<E5>p$ie6<>yas)pnAL%g7EI);#(v+-rs;#enQLhfYK|>u>|Kl>
zFP<)KpURmdD20ru6Z@>hVcTA5+PPgv&gC<($Pjos0h-x%D!5rG9{d-59KA9cI2;y9
zt~`u1Ppn2&P2tHU34bbcsd|4DFe=jFWoUKziiy8Vb^C$tTmwrbJKPDKvN;vA&{P}*
zo;rfBz9)Ys6*fLP$8GR&hkn3L5hu%k)n-d7t9#47fj5f!@ea>LDkn3`#M#a$qg)x2
zi}%}!jNAg3Yd{u7SQA7IPy-sn*a<0n0hleS0Nqvu^@~G8MvKYp?ionH+~6XY!yhy{
zyX4i7D_iirRu!M7Tl_EQ?}WE%6O%QyJOrT6sb!XX{c`7C!WM~*R<#${h&e81oBq21
zzkXwIswX`4TZ>#(F5|+r(w?6++#;#bERnfi`h|B8-Tvl$Ej)=~SjQs#)Bb*<n{jct
z3YCVLBwH`bV)YkoJpcEVTyIvfE#bmkC9XOyP-F9C)*C=%hP5q$Z&oB-=`XDQW0+ly
z@TC~_dZw(RWrs)KWT;M_0!QsN10Fy;CF&gQ06AZ@a|l&R#>|yh(pKfz37}d7A2JJh
z9D6x~+O(ZZQ|*9pg%L(WBO*IA%gYGiGYbN2@h5xWfA$>OBP>hc!uUmoJ?2)2gu%hA
z%5g5+exvuOBhfhVd)#i~Yniet4CjU)!ZNf#0#~V1+@C#jYAtPh@a<;=@VyWG%2erU
z%UIrsNh|whR9T5UxC6Tu)6I<h8TU22rH#z6`laUON?&&8X53>V@n>5XS+lFTB3aCM
zZf+*ei9MlJt^mH(3oQBM#>tg$4IKyH1%2@w{kJ7|WKCdtE{VD7aY&#XpW9IiaQ9*7
z`b50N{DItc;o4xOkG&v@+mX4F)=0T-k*><`*c5zuRF~Vs^EE4F8WxTXBT6Znana9w
zCf9J(NhtC?)bx_RMUa9q_0X{nzNg*PAaDYgkP9Q+BL<VENXi5q9g=7PFJ|bYl2cbP
zGeB(8op|VbKmv1z(4;Ai20A_UG@2YStjn;7h@t#Xf5$TD!q-dKF>A!;)F+bEl4Wl9
zGJ;+G+F@vc@XhK5lzZye)RwA(1~Sd>LCF9avZk~Et*E`2K_ek!stEPx-CpTfyP1+7
za~);3>GT<oS^XFX=V!~%(aqT0ccFyAnLT30T!|>es%qN5zmzeCeKSqnrV(RGkwxMR
zVc?_s9r*<a!P>Kh`Y2c^`@IB_@t76t6N8hd_c-3)o+{W-3rXnps>?5wOO;3rgoQ|l
z7dK6^aX@SI4i#w=RFckpw51>ZQG>7qr-T9l&!z{ef2*o6SEWYrpw+}owq9ggqUdfB
zE^GEFGO<IudF4u?gW8e10JhgZZ0uL0t&s5ndC$tVROh@{yFi(ij5!s>dz(Mwc~31&
z@3HWdL67a}aG7wX<T^F<LLnjd+oie6C5OB;x`k6@Y>}@aj?JlzBPT`m`BWKU>x0qy
z@<Ry%==blPUlM!cRM&m1dg}SK^osV5wj2<i4##F4@(|Kg8j5xHj@E+rO(&6KOYDrz
z3*%p~2`t}2tM6+|+}&s9x59rewcAAYb(<7po`6l%(GXH;fbPRuI*E@_;*e86?Gg+5
z&@gSCL}IYfVv~`mqw7O;x96IH$JE~kn(JbxhPm^pA<*a&yL$`l{Ac0#BUbUz9yp<5
z)>rQG#y?5nO~5wE0-zI|F5Celd3uzP7@Qf3b)++L{t(;f2n>GUnSyYe1uWH;{=v3A
z`R-uvcPe}jG0LMN;!!xfDt8Rr2MR`Tnx>(8dbUTJ>;tD6T0WSE_AYWdP-j4BE&key
zcpN+;4cI((;_OPY&6%MAr6?Ue=Tl7Vs`t@u(`7|{ybcXxN7e{!lc9(14(EI02NxT&
z!%I<ncf&6saR8s#LH=1?RtW;qF0hCIW_R9<$-b7Isk`cjqJ@<-yBwI0w9O_~CZ`uC
zr2ee9O3gUjmwwGPlu#4~nq<ea($+|JIdD&zIzsk#l7p+OMcp5Cf?spVO6r=s+7>T#
zY93&MB6)e^2kdG}dC57~eD49TqPt;lt09?O2y}<idmqsJEJkhYE@=(T8(=CXW#rth
z!m?Ua)X3I<M{a6b!yVY03m}|QR_@!rhD7VI_>COS+G{r+BG9LrYd|;cdW`P_-of;6
zySQWVQcXc~MOJH-6EbL6*CMfYmK1=A(ne$c`%Ej+j@YG5@Lk9H#kDs4T$UoZOF`~o
zJBAUU=(P(hy|ypHN-RPgtxEG@b8LKOXuLV#FrDa$T9Yfw+2-7nS%0p&Ks=P^%Yb2z
z1yxHOE%z(UiO{Kb9NU}8OVsG6xj+c+R`xF%r0W8oPR|Q%_)6b*9lMdV2<<JGwQpaV
zCa5^Xf<A!(RNt{5L>Cen`SzkzwS>N3{;^YQyV%i0%vM`iYx(cn1n>HR%?8DVTt#~R
zi@u&pp9=~T3qK2DS5mWM;?#;+{$?*FN6n6Ia7m@s_hSuq)!ry}j+|Swk%NVFMf$|~
zmp;SaOznd=KPQuJfo0<5Zp2zRIsZ~NPyK&<y>(QTUDq$XK|nwW2|+@-Q@Xpmk(O?d
z?k?%>?gjyo4(X8YmhNr@Jj?rjp7Wk_zA?Tr_V5p32iLXNT66wt^7FjGvW{D^yiDur
zF0RrmKm6FibozLmRF-(JpJ(-bN*(8WC4;xY+~T|P&7*qq4+*GOfesf+-OZS81oL%O
zb+$%Eo?_0@d$PMpdiP*GeYQm_rTod^RJuOB9ehqz?&u+Fc$-B><6Obe<eKj^Wbo1#
ztPJq^z?aZkQ|I%8efQZN3sg$V&8cxcXTiaDttk0MaYSSd0Lj^5k}(Y-ueB$cx2zT<
zKG<N(a4ki|8*?TP=g*Y(I5qw#sMp94`qar~&7Q(CNpc{oxfH?7M-`V>Qg^x%Asyk!
z#RDPb8m0Y4JJR@R#Y%h=lK+W~?_*pVzPd~Ol)eL$KzBWTn`E7xsfM;t&xmCvhA0w>
z442gj5=v4Jndo=cs~4REzY3;ybpHt0dD<IkdGRYGj2u|CuEuL+Xg5`kZ|*GG+@K3(
zINy%YWKwC^9Xextc+ES_Omw|M2t(dao98V2h}$1xBKERq(e}oJ$I8(k0itPhgO)?x
zfK{~9!=`g;H?L!ZwKT)iXdrCkEo$NMMA(19SxBYXMqNi)`dJn3A5e`N6HR-KJ;yAf
zBY4;z`7<f`WEcMruWo|;NRyt1oz=xDg2|}p^N#1l%Bm=Q+-*=_K5pzfXNB~?zg@*)
z)ug0Teb0SxaJ&s#A;6<5G&TLiwdDwgyH9<0(a+EI{Io_(@3yP_u}zGVt&hNSSmR>}
zWAIj2LNZNDbK_L;iZi#l<!1XmLy|IuPM4Ob=+JFc<K!fEfL~Z>?xw;1X1|VTFXfuR
zr_hfrHM`~MK|a^kZNQP4HNU`3OG^l9jj4FUdW#tnl!~Y@Ml;s3pVN)G6Qx>JAuiTs
z19IW&j53017vp;gN`u%}I6?lPoM5FkR$nvIceV$;jbgP%2eJH@ViuRzpy9wGFl57Z
zTAE7^6ni&xF*TdCON}X`FL$wb_gY@UbWH-7XH29r<jPmSmJt&5(Hyb7`-ZEwL(wAw
zD!AqMRkb|g`D$->i$v0{L3v8sk4`9;%*{4*wY7T9A{u0a&_;&qm?lxz-r|$6dH35o
z#_=YSykGpo>&*D9@kL&k_8vd$L#Zn+Cj;%RlMzh%hTA3!CtzpNY*ov*IKcz^94@*!
z3$9c8EC!p)Yk0%%{flvyw!+#HMs5vfX;kV&Ca$hMM>ny);sEjL5U<a|8WsjD-Q&l+
z-RW}}7SluE%1rm{W%+$b@9t%E1Usc%IVk<=xtAw<R2HUQ_)^y8GIB5EOeO3TzY=fV
zen-qBZ;{q)iPQEcP~Zj3PU>y}1-QN&%PJ7!$M?hMk9{*iT$RnOgx%X0U+h8%r!9=t
zEIf6jQHTnf+d+D?WLcrZR}0nluP|kl61Io$&`jd+RSQk>>G}F-6VpfJ?Bt|W0*P2Z
zaPjqJ#Ny#%S<6L4N`yt@UBg-ykWz^7e$7=WSM2Q<Nr`;;poeNCsu-+T{l=LfGX<36
z?mSjALp+&kndw<E>9L>rqfzS=8$6_YZ?4Irk1JG4G3ayx<dU^2m86QbA~nrj+zG1i
z<QmAwQ58KKSQw6*`q@qwRdjXM6m?@x^qc%*C9_bTM--~3zGP;{XAv%&37wMA4!eDf
z+PnunjJ0Jr6rp4I5pQ{&3n>j9A3KR+v1+wmtSNk`7XhDBo2?o2Ziw3(o2~{<?d!@m
zV|`juv`yk{H`nf$Hx;;<DHCO?A7cBS*Aa*=uzS)bGXhiK>lAMVRLzw=_#p#)>tAVi
z9h;nRW(>J$U|n*@>2ldKwY;}MyNvk5F&5l3lp~FPyGH^PJs#)hqDEgm)i`4&v#B@(
zGy{@8auXnp_WA^@fB|yx*jO66DHF4-j^Vhsm3_Nyk)guA&Mzc#s0C&85w4ETPEVcP
zRH(^_T2oN+R6fWh_ix@%CL)?!s~1YG+cyOTH0xAI6<%$toeB6U6@n@OqR>igczIHL
z<X@1K?sZQ_1@=ngA$m@AB1M>KO;vC6GNnoh&@oFy;hkhd`%WLtA9Wc8#YxIUr=@;#
z;2Cq^>A%1uqDuWBin$NtyXhLW4KHBt?x-jV2Z=x$AuSXY@55%*G`5i(8t5d2L?Fxc
zlZo~ei<GhqWo#JL%TYxhaa2Sdnrd;PoK~+3!H>np`VCI_l}_ZoQx42h90%4##!S7W
zG6klZ&^NI)eS?ax`rkkYUb{vBH+lM{S=#KL3d=}IJ!0Dj2`CD#V*irAnn9$ALDumU
z(s?qN@c={Qp1$$y=T}d$E*U<aBl->K@u5SbYDZoYh6%0-YE`N_Ehf^E#%S@ax$(Pv
zWq-P*Z$LvmREvr(%l}6*lPyA2N9J{AX7{%SI}~18W>_OrW_kWfUdQ?S*>t&JzxqR!
zCC_^E@G#)!Zwe1<%hdQ-fc@SM>up}}I}Mx?RVl?6v_m4CSwBDG$4|``G)ffuL)9O2
zT_=GrB&=}DvX!9oB;9+3gfOt7ZDQFVUa(b?&)0hxEG~}Ey3`fE^yKfY!{g^O)@bND
zTq~U_6K-pF6Vmnmjn{w9B5TJpR=a#xKt?`vC{(7x*z_*6>u>-*ps^w>>MYs(OBiE>
ztR|C^!Cc~QyVGNuW+Cl}JPm^c`@3&~T0-uUHD#ohn4L=$W$9dSVGhbC<$_9Uleqem
z2pyJ@@|xtPR@8;il;ihR6)DUNk3-bX?R)g^F!iysYf+&shaIBzN`B8+QYfM2vsKbh
zmn4GvF)AwyBOW}`V_iYT30nJcXfX-wngt!?;@?3pD0*`ZSj?_9S^Lj*p7LvAi>lfc
ziF^c`w~%>xA*e`d#3Sy-Q%H~o9^t^;Qib>lUv8^}no18!UaBI~&&wrqOe}PdY%~dd
zIp#w~<D3~MpOOE7e)Z*QTY(}CiOd7#AbWG2Z2@TcutQ)7xw<~pbDO83k-h&ATg3T{
zAT*SICUl|6fa|PCgL#@&m0H7z@!Hy@5hm8N^Vf&{OnUZVy9u=PtrQ96v0w8~oI+-4
zajRxb%9~)Py<|q$p+_0EL)2Sci<ntI^^Er}DpX$_i0J)Ob+(@Mqvj=hLYw!Ny<@>S
z*W5h-%b@b<zh1r+r!YPxxlff0Ac^nrd6ID~(6@H0(k(__K|9GJ3wz~{OmX(Z3)c~c
zwv372h{7`~#&Gvg4b$|UV_oH>n-D!n&r(#i2R6)!H+@s+k<rIxugf+_b;&Em3RS30
zDv&Fe(MO}oCa02d>9uVKW#zRym>9qYCL5x^x6pB+HHSIHg3ontrKeZxExLLrUd{6D
z8gsV@k)80g!eE+P+a|pm7UN5ME@&ju`fM75iU;ZXc6p=iBwE>owJAynkKs_wV^tw-
zl1oz`s4G(q8k(=+>cz@08a1+Zq0Dk+LskkeVO<=>D%%W2%tn7#%@i`1^rlgP*kt#7
z6ZfInr4N0KD%u7jV!C-fgU}Hsl_h43DNf3pYJ>u=jjpYJyRJV75_TmFEUvavwjW#A
zkxXQr^_9NKCB~q!vYKEvh?vW=h39uzR&+S@(D)DrZn_>utYGJ&TNYu<YL=b`kLE0V
zEe}+iRH}r@FL<TyPGD<6|NYh_vX@-MRr~1P<*?^udQVlejj4{X=EfjIs8nJ!OmZ|L
zQSE1t)}75ype1cYe$`>c%W;B+aDL@LF!KhQnYqU*X}_g{c4ukr1MK#9&que+{ugo-
zvB5%oe_-E5cXr%`|B76DWRIVwDKH4KcTd~9P7s=OxW7l-7bI9Lb~DR{vsE03Bd6fa
z&3AFNUrcXstE+zr;k&t03-bq^6VEw=4hEu_XQNA#hQ2B@6W_}8#GjwtxGGYjx1IC7
zsEI|o#kw8D3<GA}IaBjT^to1~{g-kL6nj6m_nMmfT`D7^7+pV}m@*JxI=>M*{iPap
z*5w|0{-j_#Zf=E~d<T`jf|+Rq;|q#=@BkZ%%joi#a3-=o(O{c5GnC?^vtjgmc8cWT
zBX)X7a19~H1X&7<j$W44Yti|n>6@<SYz!iYu-noCyT9p6M%E`SSutS6+D!huu*{$z
ztAB_>$Fe=~`6Rpd*5^}Uy?mt-d;lZ)(4J$nTb6_>_D0P&oJ7sSyLt2_|C6#<lcyi(
zGwzjK49rxN2pTt6fr%d#P=4A658z1xi@I0Sd1An>EL`Run0od~AYL#X71!>-zPsJJ
zykIGQgScF6TblPiu;*peCT#4NtHaY_Ipd7>l%ScDxT;QLy<z(s3uRps19NX2NUQT*
zo=<;g2c_#X0%z)P3!MD}+>v1!3>tStSey~^m9u$Adryozd#;|L9{`%``8IQWj`b2B
zCw)jF6mzN7war-8T+U<c4D=%l=I3BL+4|gEc<yK(vV>3Hrbg#MkZb;zbfHTW#rGl!
zk=OaNrOYkVFtAp4)zH|Ey^^9w%KI4Tb79aXR$11lx?a%ty*+RqzIYg%)J<-(>xF5v
z?LW?QQrC7qBM2&GQP4Mt7pu;&4)d%Rkc#mB9_RzO*j6D}gJ1<M2x_UlH4R#Id<da1
zAwUy+E9YGNd#m@MO-mi#rKYRGNReqLTZXbazbs_CCj>8j#dzG(EG*A_Xxn6l8W!^L
z1&Yh?x!c$V&V>^%P|~<|O<~9i9aQdJTa@>%JJ*3}S*{KiT{y`p&;lSWb<oaICPTx_
z+<w`D#oX_U2Pdyhv;re6q=?)KoV7yfc>T^SNLBMOS}ui#Gr>G!f_hvFDY40WGg4=P
zd7ax=cgsRQj?c_kq@rTd=eX2uN7+-I-lKSIRN{8kgsGcgB*m}imM%&krxTQY!frMb
z)zo(b3G|L5g*S94swMSh85>(aA4O_Rz+49>>f|Yso9N-~bCdi#40?-5B^+Etr7F=r
zY&zwet%#37aixo@2a!^)9+?G3z2v5SqcV$!)y_C0T*?V@Y$23iP5#QFtVR+#4>28C
zll8-fs=dvzo?+jGzvtV+So04mu=TTYG<=&N#fWn%!#HS#{KbZFpq7*!EL77*TQhCf
zv~S$Y<N-<G@4ETsgaRj1ME*2iAlhj6-4Xdq=&fcX2*yB#zHZO{_06JiW(Px^n=bRk
z`y_O=;bMAV36m0Xtdwuom|I47<Tuoa+UEH2N63nqlc=o8K|o^k6d#Y@u@)rYhlVoA
zjm*Oo9!AVe@UvuL<4#O)+y5Fc7LpLM5^)TiSho+ciKPz#y*z$fch{xDZD+|9MeJ`s
z5dD#H73j63e!Qw(<KfT?I^PCoqzM*GENdIHL-agc+g2B2BP%XPS&u1~!h<vqCA2)q
zFR;KoUiPzE7|Xf)ckd^y5KmCk0OrV!2L+<zMe@ePt1*#6RvDZwNmWopTsIFM>P042
z0OS!iRF*%|{C(Aq1aQ_Jd-vLZRxPJ%UNZ;#^|_8E!IB2&FiPlq6n5)aAI6W038_gK
zB=dKY%A!3Bzm8^#ilU&>iqH&*Ez(=O-WKQx9)nh?O?b0QIG4kCC9Xz*0=Z?1P67cO
ztisI2A_n;~%FJwn=O>OHY1|K|OHer~lmKEuQ~89~&+hcPfUFPFc@S3tj=3Ne|Jd_X
zfUCu|vNVKbrqqIVr}bw~oqBrUow>CGil`zL!YUMqx?nc034epW&>To&IAyTQ{{6O?
zRAhKnd{o!E*)=~=fA0v)f6ZHd&*m8Z$V<c53;^o05wIWNw5wi_LpMms#ipJi5CK3O
zAl@h{iT)z3hA0|U9v`ck!C03BO*L``lP}Y3F8yMu7_ZSE0yiDqyzdX}iiZu^4ge8=
zFXyuNb|HP#v*Us*(!$KK%=DAY>-C`W3G$y-NR@3}>wsPf^iT^_Tw`XW_9P*Hp~Lg`
z_>R<X6o(OO4GHZGe-}ZqJW;Y#QP!!g%V>3m?=^-<e=23z(4e$c#s0bLM`%V?^W)QZ
z@*`n}8lz0c>gEZdrHUiqmn$Y$_=FTuF)h(Bh<T6mClE~9bcOxC`tG(3!Jbv#xTU0i
zm5tPb0tq6&J^DxtWdk=kqvrOf17n`$)|KLR7FWLqd#B}Y#1s4FaU|JR?VDTT<zREs
zfAG(vjM^qKd@bCD{vJhIaav(bWGeDK<VzSE^0l1nGT!=qspQhnMkHv<qQIMI{-~py
z2qc+zKQ(i{{3yUbz<n9E;riUy#MUzNfs4`W$qE;eLhJ;WKYM%uQINviw08yCt(|;e
zG+sGV3(@E^Hb6%=E_;m~fdNseP#E3rhWBsf=g`UGZ*`J;9Q#KPFjN8`Ftr^T&h~0(
z9q?8S(R#Resg7>*5nCMaGGPFEzXm)$@klU6_Pw6H&~#*9RWeG}OCctu4VXb;$AXER
zxyOTO3Q)BUj7a<(lkx_6Ifed2fk%rfP>^!zx~Qz`-^bbVG}v6^Ll|3R05AhEfu8s8
zR=M&pCR`Z3=7Pq7+Q%#Yb_d0LwMmxxrdrCYxj0@ewN{rZwL+EV<*boJQIq`9lDY4<
zuiLI>ITMv~m6%FHKfIQGX&uXU0VE5zqcggt)-E3N5ebbsv<QtTv}<AZk5rs?6Xa2w
z{p55Y%HeO*S!(EuO1y>e^0={?<#0YIouS<=sfa3Gx5d(d6Jn*U^ZBt$woT5ko--&%
zc<*iO(KlB?%Bq<Xj;OV!8mpwsWk3+0l^)j1@;Zl<Q&Nz16{wdd^2mdAKr8?b^u8I`
zR4Ti=>@3>43?e4+3nujHS*MT3qoGvN+TYwlj4Fu>bKAz&9Rbpd<VC~R_c%VANMuO+
z8<Zm8dhT-aO;+e>#lC`YvnSzmxwX}_WgFjbv?lzBmE5O)H&}yY?Ztq{Q95UCKZ#!O
zey~o2{V%j^klcZ~Ulvzk2wI&F$on~nnLYp-1ra53rJul(WGAt+?{oG+hJ^Wp3yR09
zUarC@mt4$9q47m^+k_PCo_d_Fx<42(WUZ^IKOC?ES{l4h^l8QNx8}3?`{uO{@8BY;
z0J%C#<tFS69=(-TZ_)P<43pwkj~y{DOWOiTf&}E$STvVs_g4T2D{f)om*p_n^D4-r
z+&nAAZ4216LD5Qx&r_rkZXoR!4_d8@+aMW6oc#N)jZoWCd2|ENF_~wU=^i*szemJY
z2v%?SN_g7KFQjx@1dBDave5U27828AOXkXEsEwVxc0myY3b=2?S|Cd0);2@mEKT1`
zkn7DuV7?-ada_A}`(CSJwG+omOM^<FO>7&W@W94_Vy)-)_&6fXYE9cOnu-L-J^fQV
z++pPG_KEq`Q~jolZ-I|LNkO6q)9JuM+98sTd!}ZYt>({7W|<KTXn{A9k*cRHfdZd6
zHO}rWG1Lp@wD&pg<>*9}H7m>Vn9}trvnV9ZKd_Y_F4wrH<x-_l>m=q*m3p*@|8DN1
zX5Yn1DxT3f=DC!^7gffoEUN&|FcSieean*gtStkyZ^Uw-<*p`_gr*$cUE(Vq1=M)#
z38l5My4Iy_$&s+|P<HgLV&nd7{@I*a$}6!-v0^yitL4TtY5YwRS=wPT(;mu1M|T?`
zPzVe^)5)k*P!X{nTnv&2=laFOu`a+668FWV;k(?6<SX?muwW+Ryu+gdQn%J-l-Uto
zu31Wzl2AEDio$*c0n93?>W;~UwGTVaHKFE;TmfSFs?kVtI((}I3XF(kn3$%}zCBkd
zvx}?k-(wTg9jL;Pr)?yv)v=G^p!DPrk0T>udO!3H@W_jd%HjzoVP1|XwJwe;r=>qW
z&n;ZI^3d@bLcTUr9zSuGtgKI#sMhl5*5Qf6Q@$v7<<fZ{oEyLf$0hM5IUUKK<r8Pt
zrfa<v-{X)y-ta{(IeeaoLlQ^SvL8o1DL1>Lw8AUuME`b|&>(eOcL*T^omi<#F!}jv
zx!}glSE(R_B;9q6EDBOH?D<TaN=>RKe1Ju<>~|jP@9uf7+j}G+1~E$6vN$f_RUwsM
zK;`(jZv31n0)nWt;r+qrKWC<m5+5^2MDFmfldJJPPHO1<d47+H(<ft@7!?lnz#?b1
zw%a-RDTH9}C~t?H<)|<Tk_i4_6v_+xIk#{O8e)gmG<KX87HVU`oDN!|o)gD#6M{OD
zJ7fCb8i%o$p;Oz6fE2%dle|Qd=}{OQz$4F*m3^%SO&?7$V6ko@eLBDObGE)$u0g!=
z^;f3EwrGx(_psfRq%X+-B5L8NpPQE#jT0j6ZC?(yl0UkwTtWR(_u&D0NmZQ4p-ugO
zlj~f0jzH9qVUiJM#1%BhDUCDr)%}|ij4&<oegt`LDKg=g9E7OJAv1w)j!n3m4*Ddd
zPmeB;9Fs#Vcp@QVWuWzi#87iX)6za!dO(P5yUJ^SA&fa7!oDC>WkH1u9p6x@A`*G{
z!<RcQ{w9})?>|R`CBbkyclW%rEK;EDhay4@^7oxnMyK36#;%uH3R5#`)TvM^%`yAa
zjyHBmt5}8&(S!HR)25I12O=ZrHMNFxRZ8r2q43|eHgctE@c6`6uc3xE?P-FbWWJEL
zl30*!q5F`UN<;bfAM0bZPY`p&T?86(0>zV{26^6d*IbB5UJ=5+R`w~J1fCLQ2aqc*
zIPdR5#&xb;9Pmg#^LzY_NI;ng@=3s=+aOd}hH41g2=NyCF^(9VwJlKFpT^rv<iV8t
zGVN*Hj1EEHJ3s5`#cN?^`)2JFhgvRKWrtJGedcn(YV+gw87bc_RE7W~T)J{}RE#Aj
z9g&Rt_TjKiuH5Dr=ciO;!#ti^3v<b1v4o9SmuEii>U~J6HR*t7rt0M#mpJw{Rj6X_
z)Epid43pFQ!=XHsWzSs_i;qQiqRv~E%HsPgoQI?%FVZW++`qgLM$jDANd>_%e$&$E
zB)qI*?xpY^I<lyu;FR}X(r4un&yb#F(}MA0{IEQe1+SV&dCud$N-uVJ2%S@V0o8<k
zLJ?J%0Sr50sU<nANU6$~axWp*AuN8hT58ZZJNCS;nuI1yfkEhxb2owq_tZ{rJ>y-P
zzDj#<2LpYM8V$mj^b1ytdL{`ULB#~2N<yM`QmJ}0XhQ*&FU}-6e<-=ervf1g{xk4I
z&tB$XjC^xwz+?=+tX?4~J=X6c{N?NNrGD^Vn;R-jQn@<)uzj-4H@A;$eB=g8&1gsQ
z9=$-ZrPs1BG0R&pXAWcrp)5hKKGTZD`ox^!YM_avIKCD(<R^q;5BdfZ{G-*iu>tB7
zRb7#Y5ZILk-I5nqu>%WCq{iFZ_ktVa`G+7xx|jxg;^XA-bT6rhNZWy#+zGB8RqK3C
z9tjLz!lx0!7u%Xf_3lkWUGdGqDd*Fd<XA(>PU$7EKJOC=<Um2VIf8r$C+&10`DXkl
zNdcG#=t3Eq*AIE1VaiMX3gib?@(8&(DeE9j6xfbwbVP4C;q7lxk0suS7&#adId`>@
zvCRHccb2TgxI2%toOuo)X887CO;x*~;@()Yy9!MtkYWYLK;}Xrl_HKAp?5kIJta_I
z;(|IC8+b$~46L;@o?v4y$q?iw<1bfYu36py*U#!0>oiFK&@}(dH3<W8Nu&e9ikHrv
zzJ;oyu>VzS!wC8(zVdT_SzRVnD|Ty>JYnOi3KzErhcL85sH6&wFl%$i`l=^elX#>R
zenJD@(j%sf=#e@srVdt8TR{8rWv@Ztmv8{~5-mpl!Xe9*3Io20^EtM2aks~z*qHDS
z9cfe|^adO1aj3-me!!6NvFFAD-rm%{_rD$rzZMOKx6odAzJY4-+fN^0OWFK<NpD3C
zY!Co`{MUQDWeH(OZrGTUlDN6XDn$xoMTH+vlTd$VTEJWNDuh)7W3!2RBgugKc*;j`
zBD-@s)Aus=Uf8P)39RZ^8x*s6AltsHvn8d*l)N%Ehvi_*extGa3ts#`lKB>#<(S)*
zn2N{l-!{G~E`%p6E^A1(+JuDDgr_Y;aN=9_xDA{Cak>AsEXD1iV1E1|GV1ce=--NY
zCeF9R<gXxjWi;O7+2I4PPqqD{9P#iwy!HQhBkYrfa0Bn2IQ(f+fYWKfl6~uvm2?rQ
z^w}R3Ui(tm7v1#BDv?SHRIVHG-;ld;sk2rVZsEMRUjhEGf=!I5c`Lxx012GX3!Jj)
zqy@sbycJ(9OZG4PSiux9B{7?@{RT;C{x1$miHC9jk2l@Gb+}#e{dC+1l<Wh*Gb8}a
zy#G3N{z~eW1%Xim353BEgDkvh8fmId!70Yw=2Q6Ep7Bz@K8!@pU;3ONY3|9FZ~(3A
z<TK~W`=b!!=;4vkkNCHbVe%SB_U4!1yrYkvIceP-(L9z58OGNfHuRjl@P2lxE%s~2
zZMgd9?T>+H2so%(Mtbd+wSlPKi6DH`B>?60A9u!M=GhATiVKyh;zY@KF~rX}H6u?=
zpZ#YjApP@q555wh!n|=kk7SN#{x0erw_DvX&E_2b1G&}W>{%??`???fbgbqfxNl6?
z60v!MY1q7BH|ix}!REn8zB-&3`T6A7;lzf8&To9%@6GK%1jT5UKivJE!~Xv1@z6;A
z#mO)=HMqM!)`CyrPODGWt>?BKL)&rZMp@(|mrTxAVh-?s>E8c!0|*?nyeU{grRf4*
z<G}AnYxXo?3joe1U<rtZ|4RA-5Ata;04~{ofJrDHIv=@3zY4>Ig8$(Y+06?OTlEG1
zP?~1gq4iBF`<Ow<vbs7?!tLm6l#I;U0*O@rjQIPNxH!}xbtpkX1#V{fHKbbLoDte;
zWqv$#5Q2=ht20<gvYk+eM==le8uVa`|GFOqCLLhsQE1rxn_~&@z*h%SOL#1bfS^fY
z0}F`GQNNz@MmtizZ7o(ql7emI?L6;17f=Wa>6|QwA0F=<&rw?KSj_|cJ&+mz;ThOq
z`5u1Z<m-AoNC}&sei_UuryY}&jezs@iyZ_)Gdi~7;p0%2{kiG^Wok@(z;n{Pg34*H
zZ}?u?-)#@OAem^)2?5NiQ5`o0z)g6&Ct~}6!i~kEaO8x`{=136P+AgRU16<6p~^3K
zk(h1S@vZS0elA8Hjd~^&$SRjN9Wz-KDMRA!Ai-MGo!`o#+2U`JzRRti!Uv#bX*5#?
zdYlvq637*DlwOr}`uF)drA@YKssn;7v%~j`->W{(Z%5{<H&ioBSk4GesgFO-&N3Iw
zSun*JqO^Jp9_#D5A6gk$6$n;Olq7;eUPxJdbXo<&xJNYo{9=Vnvn8a+^oV40%1d|?
zTnw$bw*=gJ>>ON)S$K8%WeG(kAl#E=<e_;d>s`5_s-zmwvYo$Tw?<YM)$a?-d#xWB
zxLOQ^EvYn-FG%9;CW?TReEs7L625z75g|?J?jTUp{2yArWzdZPIZwQ)l||x40E+71
zcPfMbk2n*-rB9k&vzYb<w3F+r6!_{(vzQ$Y4}HyH%MyR}z?sd<jEp?*aIF^sLC)0$
zfxL{;uA&|0bf}-$zNw%e1axz64N*ln0C6n#@c@;bXuSHW#<zUxze2qvz`lAbVZ(uY
z<(_FGtMQ$K(Av4U_h1h<%hhBJ4uI1SQk&xgDneF0J3~VGy0}~<BgRo^<SYwQ0<hw~
zr(%sW+z7hauNEU;72`O(io>z=(6(VCqN*+7!S{WACC_zCU%bM~XR^?k-?MMO*1E{b
zs?VC{L`K7WC5A*~WWT&PJ8s*+wHZ%RhZslcJ6xRp5yj<Xe&h?K;rY-NF4mGmc-%F4
z<nX#p*>NUzok(vA(<`(Hayo^C?h}iO{nYmjq9Xg3!^-vUNd4!s?CxSOivbzg8fO%s
zK`~(i)}=xMIG5_o*^M?hfXy_R6zzlU8dAy%@M|o1vO_=y0DFmtj;N?zdYm^cryrp-
zPSmakTptf@i<eiZU@^FmZ+zW%)*}IL)IU1s^=XVNK<;w16qmb93V>zR`0XF#lGC#A
zmS*@ZYPcaebuNFYc%b{2g1uZ_(5#oz0DQN-Th(m6?MKzGMYO+vCiXeZjBw8;|Et3~
zU1<h06n7qG`PMlx1!K0Q_O@a&-}(SR9kA^!-K;EJy_W@~3{FO#nz^4q;0)y3E%MmM
zBZAeA(l*n(jmTLbQ<Bp<qM)DUZ>;&5GnG+o!w358@5Hw&%<ODc^a|7|q2}cyCoBi7
z02_so)f2o-Us*RX)2viFT2^^pTz}=!P@zDH4GbF_8?r>5K%I^fE#EJu@3=|70Y3LM
zn6pu1^%T|$QfXcHE9(x`x2&~w&Q=!|fmYf0-dwGvuF&%HpQstOki+r8L(u*M0K$%k
z(=m^W?gJOsB({6@r1=a0>g6TBtTuly@iDpp5c*aiB?PsK1F~#(l$P<Gx6ZbEE8-Y{
zBV%M%3*U;)#s?2n3m0l)$ssXqx1qb9k6j}r@ZF=4+u-HJ$L4rzEGv6=Ja1)2X6r@I
zCw73`S^Z#<y=o{qiUyMM9e71Z0`Yh>GP5vRtaT&-nE)1={AoFm5-T%*KSas|nn0ZF
z+E#}LF-@h2!JOXpiAm0nY1ucR19~Ef2Rni%xXX2l>}%!BhE8~#%5_b(jGTOBMWrp@
zOHEh8v>_ZGmF9~EKAv-$#lsFqLYW+d<+jc{rWDp%>OU{RJmW*4)B<;Sw&D6cm)jFq
z+Cifd4ypOzcEG#f+;Z})n};P;ogqNzbo{1Neq9hyYHFvV0~x8_l+Jf9<x&-v*&CKw
zXDn4CSM99Pq}+n5y^X|oFu!(Y=mR9RbW^96IF(!~>+GfdhSy8mmKDDdkKmPBTH+m<
zy{Dy=rqhXc+BY(EGyX0#2=QIn+2DvmwSO}3uo4o{cUwIBrSdd0dd(fi8MWLvo|T5F
z)k<7f?NP8}(7$*blpmmsTwZtJx3TV5`aRe$?3xqp^tG<`dOYOMt85%0j6z@wJR_Qb
zg2tdbqB&rIlnBhBNs{`*^y9c@Vf|KER*!Hwvv-m&5y-{>zUzyVLuG&0YAl2{-LDwR
zDyT3TY_2><0k}f|n0*&)bNX(zwMZdf&7`QW5G1C&j#$8>56%VJA}38JN!_xQ^(1=H
zH13zPs#|>`H~`%NI_wer7hO01hiE1`LjDD0*iJ4vq-Y;dLO~0I^T+VDtq7TTfvlk`
z>)=?R1ah0jOuR9aC^^`{JB_5vuXz2Jy-ie0vu|Gr{NI|S>NeAlrJv$9^8rpDC?O>$
z1_lVo{ar72->~#2UkC(B0%8x%kOZD6ADtN}!e{j|(%q|l+%%s_d&IU1C;+g|xsTvp
z*$gB-R@2+Y<WW%`=we|GN+8|0G<4$p!%oE3e509zft84oXTj%GA%?4-gqcnKa<!fP
zZwJd)fy)uU^oHZn^WM)Zl+BcE7!v;!1GGo4(Kyp<!)Z%mndZ*{;svz))_}NH`hl@S
z8XYxu76=qgMnyfwMLpm(fHoh^;HTiG)Uu2H;?B+I#BENT`dSWlvdIbp>>C`13d$kI
z1J*7A%184ry2Wp+4dujy#81zJs^m^3)HFS9#Pa0I0pmHAbE_K#kp2H^hgyqRw5)y@
zjoW-o%|=E4@WEQOJVBI`3a8#))h=mx1Z+RK%#+$Xl=>ENyhsAD{XD?_>w5~fg+VGR
z^6s^m^}^84=M%eJrBJzIYD(G22quVtrn9z<9n*-y;JXjZ@y<e@Tt8E@P2eSC=gyW~
zNGlT)Ukh}8nuhlMQ7~hsx^Yg+ESI!hi-@L*V=N^mV<H&WKe9;c3}i2(UldDID;`Os
zLmcL{@rLd2#?a&9-YI{K^~M6*I!J0cZ}9}qa3jxuFzw29Xkfi|1rF*DSa3;If8%S6
z&v|m+pov*ICwK3AuXjqGi7kXq<jh#k;Pty)NB4=PH9v?AznUui9VM&T^LiKTLU#$G
zDf@xDJdiIehnaHhkP5mnUhmu!;B1qSj9C2EtPpVR`o>6ugqssEibzp%V2myJZg6Cr
z00Q_&>|mGxue!I%<gbCPQ$2okd~=ZWT|QSzQB(=GHg+xd&SGvuPCg3W_I#jwVg>)Y
zimR3$U6Ez3ePUD2O#tS&6bVD=xnJ=fbL;gjODSGS>HypRvsi$IRdqqYcz{pea1>;M
z4L06v9s+dpgLinZXd%_Ew~iwbBe|c<TDrFpX)Doe&V2u{n_gTj?Q%pFn}=<>C2jXn
z(0x!`B?00)8?g;qJs2Vi(MS4!^(rrH63E-o4=r7*bvi**L8kV=Olob9SgQZxx5Z2r
z*?q4>LPO#wf-hG(Ilzkf=d7pN%chY>9+(-%-<d}_BpjI&0(U&<pIGqY4xv6V?FX8D
zkt#R9__lHa4QbPm{<0=`wLIaTwMhjm(pjc%hY3JgfVrwfiHSg^h#`6&_==Zi>09@w
z=`V;ucLfrVucI>ZQ5tdtWl%W~c==8nC-R~`nMkcMf>QPr)&<c)z*ll)L^ul{7`*`v
z5-<&WuY|OM6pRTQ)UZ4dDIoX(o)cvFY*MihOq(e1^j5!&omiB35(i`B2nTq5&#9RH
zhdL*pm#BOG6>8C@mYJN2ksxjXsC{SkgayK_9|!d~`g)~9!kr~^M?Rk-r?#8a*6cPm
zMu0T@N0xYuam3M9OdKjN2NUqx)SJuZPHmsy;s7n3<d;xiUyG}0Ae_^p4(EChL(Xn~
z9xQg=b2_-Dxd4o_6n_$c#H*SY3><1{35?m!cn~t%f&S;U*C9b1Vr`r*ry~(35f>4g
zP<ZdR6TV4Y7`j_&z0Q}=)j3CAWj?N5<WzbFuc%@j{x4SEV7z7h#B1Z>{{Pi31UC$C
zN5_4|tA<zB8_$`7$@oXMkg;vsF&2B1xU$Y<#`>y>%UyQQb=-XVebOd}E~<khKjA2v
zdnOkh)z12HxqlQI3(1IG6j=SF86X%_lNpxul}GZhAz`2b#@P9Ll;T-RU)K&<7+*+f
z%VdqSbncG=eU0b&^cjdqzN*`DMT*;x%fKSR@2g>&`9>OY(^6+V@`~Ry%Oj%LE0<$-
zl>um&0|`?z!AQ8w7oK9pTKdkTB6tq^a={ajSkU476QnJ`OHhw4gFZGpnhNFC-M$+G
zgwH*W#r{jELVmeEU*A^AjLd7cz=2@DtoizzeJ@-X7Xhllb49T3g65n?c<VU&I_%Fp
zPk%LvRbqHI^{$G=Y)Afc7grWpOJ+(iUT0>Ydes%OPgbC4{>W-ubUYWM=^kGwJ;xAj
z;<d8(RFU5G4cUg|)LWiSZ^J=A?FHrpfSw_+r2Oa#Rv*8|EV!sQEQ_m>i+<7Z!2Sge
zFa5-C6{`eui#|3MF4(^j@=f{tW(<Ilr4$5=thi?=qh|f2fy1i(88BAaXDC)f`MR&g
z$jN;H>eMq=4#?iWWVWL=LXXJ1ViT(_LDPz;=iKw2dHB|-b?kTPV3RlW@BzFVbd{Wx
zrz7})Q`=C!xizKh6IAQeKu0^x<}nO6$Kn+9o|kQih0Q!Q<2zJmLa#TFI`I&JeI0L?
z5>)!onIx|Ji&-#YaHLMWo|f*=knsgJ+C9Ez?qJzBT*3MUmR6(Pc6imZ)P8vnTw+1T
zKpgmE)h=lpfe4)>=@3iP4>~yaU79`T@<uKKlybo;)ArX94nN<e{ie?qS%#eX8m6hv
zAB*w9Sa-Up^5S$?p)^a6C7g$Mu;}U7f{GZ2CcUC<RwEc_O4=fz<u!7rY&4PjeAlnn
zO-7o6s)8%3$sB~D&P>+n(oN8T%8EmT>F@#&prx#@N<iwzR#u&Z^8LE<959(3A*(CO
zNd-z)tI@b+Wwb4d_yRgJviud3vP4Ew2LuWNkrWYB+2|RorXS&QUf&6~%_=k>DwsQ2
z)P7&J4So^0=KzgX!Decf10xtyI0{}Cv;F0WIDt0U^UbEEA~ne{1jo%)xFWeYNvSmz
z6YTD$BZ2t@_zL3I<2Um!>f-cx9R*8)lc<GF6+Zi?q`WIAWfw1&KTpjW-C>Jscs~%V
z@+BvyelvH1f+S!WWwcMmU|@yL*-@<)Lq6T^gyruZCLs15>pL)`1<*hJZ~pH5ty)65
z`+?F^WN;NQt;Aa^3lyp(Y!`Pt-neC|VH&exUu!}n!oopL=$}n)ELICLS><$^aHIaj
zufKt$f0bLkT!~u8W^8AOnE7oXioBdyS8BN|&ltB(*5o6LepSltOlUMMjfBtkFSqrB
zEfaV2FTkM6?RepC=)pgH(d$M9nj}GSbt+608%l1^gJ#V_;9>&^fq58WX6z1!cn~+z
zYiorDV2lUeVQ7JS1H3K@65{LP)yhKiu%dlTRZgWRSR#>J6<{#d<Cx8vq<k$_sRjtE
z5^P~jwXQ<+NU3`Nyquh_bnDDCOrPhE!a^2~`fg<n&3XQ1AG4J`3WZAz;Qf|2fFu?!
zj9Md8!=p(jSEVr{>+wP*EpO6((~`kS8^_#8gPw|4tWYtyJQeMrMR4Sx1xf(coZS<j
z1OUT>Ak+i^JKzUzO32Q^|K_EF#2u#e)8LP5w^`_vDT1g*&)U{|R3ly;I?QfaxBtUT
zjk2Bm!w#L*9YhAxr+3%utMWnqy4RW(uRwDln2lwXl;A*FX5`XbZ$TE+yc`t80vV7F
zSENp4kzHF7^#28)`pO|2&;N5XFJf@)&@%!NJ-dhW@AvyxtS+Of?6}v9wT~=#q|(MX
zv2EkX#aj7lgRA=RM9#%p-#(?B0-!F+_<nqS*S^kTCc~T7v6)A@*Yh9?1#Lk*=w26J
zsB_=mlC^BSyy6pfaO&}?Jx74c>;K%C$lsrFB>Df~LrPY!+(0Ty_u;tY)Z|YLLce$K
z`jJ;k7IjM|OE^%9Rj7JYE9S|^(8G#2k~Tl)DKUH3!^=~K**Eb}*AwqSOX~2nRiR@v
z>by^sdZUmZxXWuJx4)z_e{%jA0~T?OS1y4?frU<)IVdKlnF8QbFz}e#%%VIK5bI$O
z#1lvfo7xM|$p;$+?}eYsUhD-LbW03>@F30Q&o)s3FpL1Pj%f+gEX2qr0?z!-fgT_r
zJNbP5Izn<}QUp6VYZF?mSW(~ch2ROn4j(5>t|C={3=(Bn+VFz{m)8$%8c934%mAPQ
zb!|)9^Fk!G!C60H#1I{Mzmnp0Mu{!vd^Z9j%m$Lr%0}M&d(Fb27ry#y7G?l~=XHS=
zXyY>SyE5UH*Hl%uzTxU73g(=Ob?OG@`9feZWEG`CJsdyZz(57(s#?Gz{A?u*gb`u?
zg31n6iX-&8tVAVDAsJN_OiP6T_JpXdA9hv-gk%wdY$#ulgwuqy776Bxpf*w0f&3b@
z$rq#`PiVa5-@jQ@TFxE%|KUH-VFZ)VH<gnTMN=L0N{Io;{K_yXjVkYLXL2+Y2CAJZ
z!<`K&srY1sdNR@A+?fU0Ud$1~89t2w&HAth!i<fCWv~JiAC^i<U9jf}#@a5(@Kvar
zks(3_DNGfqOzF-qTCG9xY*Lwu_N!$*+6I*{!9@>Hzk9x}kyq~LfyHF8vAvMh(Kj$n
zu&@h*;4zN^!o#G2NFHtc_KhIw)(JBR(LeyHSmA$5uQ0WOmk36!nsByW@sMgIM9*?B
zJ`tKXaxLpLthh%GZ?JPA@HeB4FF^M77iVEGfdQmvFoD<%5G*_U*$?C-J+^v+DF7HC
zuUvxTW7Mu|*LmRPJ?CPt0tO??$T)_uG9q03*Z-!dy!G=J7Hbil>KyJT?740dp%H8?
z-z8i_GM7X}%h86Pwdu6_2SLvvOB6A>A|xerMppwlUFPhM%_wfia6gA#NGRbzJYdZA
zO3WiKNMAyI4uK1!_?u@+cqk!)XOpx!_*g6lnC5K=1UqfAZ0DFQ<i9CM%jW1&G5*DZ
zfB%%z;8UHBb^y8y$IXKa`36rG1c0G7ZH85$6GqygLaThH?E`U-7wx!=<sdu@z~LZ<
zN|4l)W)o~cFG1?mnYrZ7M$3;7kjR5U8zxnA_nWO2`}}L`%)W+zBME#Ig<5fc_r-kS
ze^>_S+h!%JPfy4l?Vak4FGw*Z-C_n9Bz)T;cZ7)|F=|4!)g=tRIUj{{PF@ty_@r7P
zpSGhVPyTWV9kWmYc>I8)Sj?e?#GQB^8B|OptFPXz;G;L5pfwuj8j{bWP@WP(1fJv#
zW)B@xy@?k=Y+vF@J|v`j-=0I~u2;;Yf8+w0-Gky~R=Sg6#Ebv1OK-&!gv(Y?H&MWP
zXF@|25>P-CP-sg8@EbgWPMdT$#@{&)(=zL(Q#Jr!hyfv99VimuEAW#T0gwXL3ms(B
zE+k)r!{tHH8m0xP;4jZsP^;h>zC(ujz?2e64|N|0aa;9MRESXl`Ic#+i7Bb!285Vf
zGsA_Y8EVyjyTV^>BS!c?M2`p7Vh$MW0R@gBLJ$Z==&A>T+{=(aw74OdI<d3g@}?+w
zI0JNy3e2LjF2ZPp&0cGfomOevxWBM*GOa9*ZT9yZnpSWk%UU^JLedtSxjo=!s8w~<
zqy%l;g{-#no)Eb*Y$7$COsBrULlqD6R;SJ5jdA1AXQ~NLO|Nhiif;2baxWsabeB$9
zm`vF1O(TYNVgHk$MXP^=j5RWjlW5;QhK;T~yC*^7Oz6M7wEF~mXVVF&8;P^_=QJuK
zoBv7wB4tGT!0^w;u`CHrsqoW2gK?YXYe;|YX7XaogL&GhoILe_th{^_`h)vsTHMKV
zY|-q=LsC_9QPfeyR@>6tXrW-k(&fPtMY^U34{dsU?Bg`a5<nhw+Pu8?arqb9?Y858
zf2aL)+x}x>t@R?xF?_-5?y;YM`}5t^#ME5-W&PNJQyM4R%nJMCDZlHvrO)NWp2XB~
z#^go_1>s@K#O#90fv1zO^jyc|Q}OemID=-T^Lb@LL1V}L&nc(K<LWl2WfO-zr^SAP
zMNP#xn#2Ad=${zd{r)Z{>D0?PEg5%fW4F=P8+*6;7vl6j2Laq)U%c5`eM;J&gO=z*
z2SY3fNfl@Wq3dx2$B7ou3Dws`D%f$`O{7YkyQ>Qt@sHtH(*dO~I;O^K%ytatx|EUZ
zO!Bu<Tp|1wDSnsF->R@FrrYuZJqrj@;OQ=*yrg|QfiI6EvnsH0?}@uy#gE82EDtEw
zn3XnGY{qcKN4a;8hR(zJ@ecOh-Tfk2qVna(=XyFOXnP#-x$9Zs_Q_OhbLn4<dz4w{
z2h&a)1*=zXJ0F@>#aFUUp4U;1me7oEp4D>H$|0Xr&9kIRQ$)=eZ<RH@Kex6j_uZE}
zfur5^X+QdCm-Dn=*LC}|y--E>{=-UnNQ13rn~CUp>E+y?&%Y$}b%QleLhz$@-=+O%
z`6n8URtFd}MLEg+JL72cHs<i}Hc-G~IV*b&2AhG*Xfg%nTCfL(I+INQ8|Yh{2;A@R
zc3Gb?gV>WPdRz?o79$nt5Wa}NK41B@3xd<ahg>$Fq!sneq%d^_N|dNlIX#Hac+Aa?
z7hAkm(k?t9Ic5hG9bOJ*j>JT42Pc_-x>3|Zt34jX<IwVUmxLs}P3(mt9Hqr9gv2bm
z@Hq>&Uk(qxe9H2$9}BW%2P+2*#U@glpXX-e;pDAzR;`)ZUcD5Ud6*%?sV^g>cv{|G
zOns+iB@-y)8$j~$-Mha#%Bm@V7C>eX@M8g6h8IXT5No@+N(>%deG@OJu8|d=hK&Sy
zn|=wh7oKxN0bU~My*NIw1>nQe%<@XgpI;)Gpacv(I;OTY6cZFz#&hQ^Kv#{7*Q8xf
zd<tBy7yeiNM_Xw{C+T#&fdb~bnr`~dXIHK}7KY*=OrTgpIVlngTJV>yY5v%XOF(lF
z2%fuMIivg4ZOJ|WCK3sO!$bhd4$!IK3&{x9=C70qZ4jhbb#H^($N-J^S^R}JT;_M5
z&nnoW<x-d457~NXyd-0~Roos;HlJL1NLcl6zYpatJL>=LJqVt{vU~{XyQozvSHr5N
z9EA1dZ}+n3v+#J{Z|gFBcHFy~{&tN%c4U2g^m~P1?e|s4ZQI2TLU2*XT`7v^<?oIq
zwR(f&ur6EA+n}1z{pZ|?otxEbns7w>N$;lv?rc~0YV5MRC%@Yaxm${Cue~Inf&237
z{xP*b9Sq)q#!Y{phr(BTJROvl6txPLwP6c;;#(600&cI;o8|51AF=0G34utKQavj{
z%8Or%wg&dgp91pTG)hmiS`BIzq%WAWJ?x8>av{Da?d$5RJgeM{2aZipghccQ`SK@2
zgA(4mJ=;^s7I<<lin@K^)%!$Jv6fVK8r`P3nm%uv2zffXOF=`dmcA;@&reR|&y?lo
z$y`8Tytgd<M^VA6V0QC5!tJB;?+3I1Ifoq!638|1aJ&>JkIt<A-I?XYRrvsj1uBFI
zEt>ELadLUx3VFFNXv8EyE{<c@yzCr;3pqk&7oLJJvKn#&=A@a0n~J`+(xar_;S5Y$
z%cLKxdBrXZXKiA!ykIFi_4fB>%Pf~pmLb-`nGk@B^u|ZPmw<NOMOdyya4QOT7Q~JI
z2bbXg#OSkzM9jI=a?tW)Y{_L)SNdqL@Y2iosfBIX%<Ru%gOAhMeD68HK%4Czl#U5j
zIoi#w7n1odRiq4#P`sT4DCg|gHJ_?=`Ls1-u7l)xViQm=<Ja02*f|g(@yxT}nKj#`
z=7;k=ED+Gdf_p*Gb_O_&<sGMO2qOy@NIk<2_O@S}g^wrV=G`Ck(xM4-V48}9{2C~w
z5qf2aK2^*x8&-or6<N75XZs!T4-f4th+2!`XGds=t5C2Qx%c(O`bFN+7+=Gh+4$35
zgY8Fa<aLIJ6@uuk-2$)Y`+n(Hb>6qdx1Fa;f8Px9sn4KAZOOi}YMX>${{AdLb<RRd
z*Jn2amE<lvyDbfT`ouBb-<?IOkh2;J7t;drZ_YP=_Q&_doo((WO|xo09#^+J*?&;)
z3+BA*(Ct{Lbr!901mt7SJ&jZPoGSbnZ*8d0KV?qqpZ{MbK~_eC_x*PZ<1D%IQCazc
zk(BaTr~mEi-N&oYOthW0G|ZR5gx$C16^4v2fB2eTHf=TC+n+L*kOzR_x4qqb=aqG2
zpn5WwMMukFfbdC>y(vhHIXbLn$HlOOpZ4-~+-8U$Szp0|el;kyMn-gq2;$*l@5{+1
z0tqukJMYh0mkFfatadO!`S1ko1}u_-jH2heAdx~el@IKVgpo3p8f)VI8&WV|uutCn
zc?)oJJdKXBMoNaw`Bcl@s_C}#lO}6bO!?C_ImPM0OEA0&Ga1YHMd#|VrR{WsPV;I?
zY})4|E2o)*4c?_WXaO~MB@2TJkSegP_<lj7-o{vQyo8$Or~6YTvtn!!lOBfQ?d%Yi
zuE%ZYU@BP16U=kOGQl(3_qmlijcV0O?(vTHbxJTnqMZcwwPuFKR1mZJ16%J?7acEQ
zvinquQ60U8+P!n$bO<3kbMLl&hufB?*``hOuJYK)l!Z!D>fkk<PGzPSu!!;*yEML^
z|3(cCgb5wo=*+gA&rKMwNdndTC`>QvrrOU!DVE<mOO8d&9j3WP>FMYa+SDv%GPJrg
zexP^%T{Po*`!}dHMl?vb7$_YfpXyrh<ZfTRl=Gj{%fLp`gzc6%Oz#m%bBF8SnY1cc
zAZ*<`!rec@oiJDF5_WbB{9)lT$x=91*2{KIO*qiTfcEP0a^=?(4pgX1Uj}F?-9tQf
z{wK8A8!G~`7CD~uq-C=W@}mAu{EXo~YFUr;>b#IuoG_bK%7qCmRYBv;7D1>}{ByTD
z5`Dbj`Jgm%`sYelPVAzr_Hos30z8_Fkk1X((gSuSPdg=MEPU)ktRO;p)E9A?SuDxS
z8ZEVFW2YIM?mLU%gv@NyzC9bI)|lzMls`qf_ytcqcw2Q=^DaDdSMtwz3hFiLfQ<BO
z2W9rqZIgI(1A0AM7~i}3ffD#lKVefg)udH3GxgF0q4%<iHV+}$u4h~Kz;xolM$cux
z7H}A_!66;~O5G;ut?{8}q8Ye$V|t!bn>&1$%Z7+>)*^o;S4MV3i&f^V)b&#5H5A_^
z)lq>Efh}asN!PRT6ZZKWRr!i&NQHlo$-m~We)06e8|%N=Z<fB9c{)h#bwCgY+P6k<
z_Wey){qZ}j9aqVE0OX0js!U~)UyEd9)!x}^`4EyuRSTq2gkvk9f2zi6n#+Q?eCT|G
zZ+@@`60-TU+aY7|rSB|toe#7%5BJ_Z4%)6gF832iOGo8X&ev8w&NRp&zmBfXEe&ie
z8481*@S57bVPuh=0&0Zmy}N{tpcANi&BP4U{JAnM?uVY^?)-SfARoz}fjaMBMsUJ*
z^E8@YYl)AQCm`m0x?HRcx<<pF<YbZU?H5Bvjt<v?BdreLqf$3d1deyG0Y=Hn^!JN-
z-`C0GI%+~v(rVuB8e3_o+qg8Yx}QG&-G-H7s9Nh?b9RynCs){67<q06PGs|(H;X$w
zyd14A_WPYRt&z(|-sn$*Y?OtYf3$5)A>%BV`1)4+I0Iucz<W_?IQPAZE-aD>q%8%D
z6@z9u!$#gg+(#w>0YW_TaN<|<bD9H~0S|Bor6N)0tn7tUyrgX(-I*Z(ti(V!rXG-z
z`Vv}VeWI%fp1~@sGk*_X`_ZB_5CrUkeBhX0UQevb0{}}Q1ek))OVBfXA~n!$$E}-{
zX^IDF!BFkEt>Y;6idoy6KVs8Uh2YICjuCGCf|KYW17m5*z9e*<QQM8ly8Mgm92WK5
zQ5o$A&K`&kQ&68)hVpLZfZTG~+=WA4r{aE@->W0v6ctjYmYmW4(c#IYd}X~=Y3fmr
z-+kfaGqix1#m3gR?Y&e>W#(Cu;wm87`MC|VVL+U=<dL@MUSw+3l{9iVM3sY#-|?-q
zR;FCB8(+4M)1m2RD+m`|nOWU3ZO!}iarxE@R0vTgexOz1yXtKALaC6K4nzMw$MWru
z&)T!9vR1TaVFV*C#8=mobr#!1uGsPXV5CICL9WOJWZB<dAw@JUXJP4b-mPRmuD9^t
z3p?oyAAgJfSC479TXX^BJafo;k57lDfcqtuaZgnG>*|`gbONJTeST$1FPQ71M1^%l
ztp2FMTI0Fwn<xj)M8@)WFNe<=2zdTXrkm2Sg`BNt;tnsigaCojk?kK(z|KI24->;L
zTR!yx7^`Fn43`37;{k!UD>;CT9QeK70(A+ruF1JChUI^}!PNgbD8uP<ZKCFGu=lVA
zWIY|4+3AS}Z2P;8d9VLDHN%sUpAT=nhcA1qCVj33b=)+lAZO!Ipj9~BWqALMJ3}+_
z0i3#2R%`W6k;BLL#{|(It)sxYp&(dIOHU<+5jjZb*7G{tD!0v~WEfgds~2J<%ghXM
zuK3+6{qoPQX*KUR!<A<pT!=uq;_-6r!*M<q48s`r061@~op-ZQvfa)*6~PX;)n3{0
zv>D5J(qbpOe|Va~>-eZ-V`A^J_EoL?xr-u8LN;uvvFMwR+0pNgJM>{Yi^Ts$+gnFf
zwMBiy2a!@*It3Jw4(U=-NofHAMd|KNkrWW6yE~-2TUt5}-F4_X#JBKX@4fGMp7DO)
zKOf@^#y<P(z1LoI%{Av-bIvt?2cn_E$-~C)hOTl&5j#JlU4-ZBtjO|Q%%@?!oXe%_
z%cJYl1gPn^w*A*y+4NU8DOYiAHzOvaloR#+D<^dL_Y^{6$taH(uHrzNA*fCVBTlTC
zLTLIp=)OGEhZ&`rry5Xep|N8(?|h9oeOc)kI8|NzWre5Zlj4TT(q`EvDCe+d?ShBi
z%6bH#SnCK-@0@DXT1nsLcS7#ebAYuGg0jCsCma}VpAEUi<}m2RYN?iL*(i4;vLo-_
zqP{wSOvxuccd!Re5((|9YPqr=C`A%t)fsSYp2B7gxh@ci0h5o<@tTzL3LUid^CI&!
z!ScKL$O;GRQK`UBsNdPDUSfL@=gB(T?%|UzIi(KIMjk9C-N3oK_lJ_M_gXC-=*8vb
zG->*Loy1$Toesq$2j+#ZM@#XL7<;bZH}%oqh~WEJy9hc76&u7R>60&+e(JCZkijgW
z;-^Xl8Yv%lUB4_Di^?0BAHZkS1O{9L5+f7YAaAt7eJgw6UU?XTkgrh$Y0C6#xCN~*
zylL)AqLzrEfb1Aco3*A{CWgIl3lCpJcB1}v0#{Y++W==xxDFEbdM#B>4K+xCb&Lcq
zpx|V;)>~AFR8UeHHHB`<Md&sh<2{WI{Fu+_0x^%E*z(E()72pTFqITUeP04CfeQe$
z{DEl%b_F=iVZ7H__<{BI90_8pb_FFvL1Ro|FIK?mfNC-@adk3S#2XrJ5OB?!?z*n@
zJ>aUf0XEC|EzDnra@Vf7f^zyKUDlr0AjpF<9Lb&jVm?x7i-8^t*mZTcohOZYl{^3h
z-H3zCI&>d+^MG<B7i%2P$noE&668rJy-;#svGUENLkeD0zD+4t-zGYaT|T4RM!Bo5
zkDW8?b(cusHb?jf5nBk6S`3&7@Y}kRx8>}ED*jW>o{}}X5kS#F9Yi~FltJ%BoISw;
za9$Kt6z>Nmq)DhW`c;&h)JR7S2kTu94vI_1&AA+KTSC9c#-P_|)p9**W8TpmcgZSR
z)u+ABDMf%a&6RJuwRv;E?EwlHGIF`N+fVJ9nY`avA1gENSp5hKas8CS3MaUo9|VF{
zL#tJW93Y#Nu@ZuUHX`*0V*@7P-!B5(9ul=wnjGyq&CB-2f4OrX=0U#-Qfko3`$SEv
zy?!-V0-#j^a>NkEomod8;R~8|M*licd0T)y8@eaX?Km0xG{uc!!&49B#61G5G%$A^
zt21+IDv&&L^Xc9yg*BqjU<;jZi_(AAElyBLpWHk3IPd+^F2pAIfRMZxHJEFjKyTSF
zIMAx5ntwW9qMg+c#MS@uO<E4P_n@!UHp4mZ;KIJ}0wy`av>f=oP=0s}6930x-Z;QR
zI#uG)Qvh7OLm28HFL}+4+dm%GL7kI&AXG4be=pNm#mY(>8R;GSW>lw|ZSm-v2wnC~
z83`!v&YK8tgyi^L{>-JpTs$cx32s2K-=E#`5K$5nu&EK1Zi{N|)?m3PCspQg1Md3{
zP$8W)&c3y=h=}E3iN-fxzyal?3qXIy!z4VJ_1^=iiX~79A3y^PyYvV(QN7b<PQh5-
z?c^~;DzL3m4|!6Vg_2T6-zduer#Ag*u1r3WFDmeRYq9!)iSZZc#XaD}MF496Tp(0H
zkQ~IFx`DcGdf5iN+VAXvi;<7985G+kVFsn}!A=R%5n!vHJp``3%_YV)2nqlNkm^u$
z4*vGUX9=}upHX<+@S(VucP2i1AFIPq3Ep2Feeu<){T476xcURmfh7yd{Zpku_s-3G
zrE9HVuH0gj*np;indjnPle`fyKMwiv(gmu%j(+#&-G7k91JUJ;@WM`hb)gnuEcpLZ
z^dI|oN)3RU>ToS1P0_$bg@J@=Fr(c;9sLrXR8og}8OA@4LG`{{FhG^Aoj<qcy?6bX
zD{NA&%b4m>a#fxVkhNX8iPSz(%<G~igUCd;)z-Uim;_QTtsdZpzoHp3fBv%h?SB5t
zAHN<|$-b(%e-^>={4*H~55WUdV`?YvWSW;R<**T`Bi!#+pg&TcrXH=EF~P#TMKS%;
zI?T_W2H;lFj$!8`0cZQ&O(9_0zvu=dTcQQB^}9g&K1d!|;NFb?dm__Li~o;_{AdKM
z>8J1fiy8rtY1GH%sqm0oU)z0qSRe*G)T#X-9s&~CefGj-xFkLGy}Ih9MQl+({Dykz
zF?9fKmm&8Z*XQObaBMxg+092KQ^AnmUUWrr<W+#?>mPR}#2#c%^TPtsma=3DL*$Mv
z<$v3YWbh6}MEVU(X?x6!p~Tqb(7HxX4=ipFGrIMY&pq_<0SfEyB@EhQ(ocI=3AjuF
z@*rLV`wCM21%R!=1Z+Scf2$*49fA&vO@NjDQ0k6@PV;STGvEdXpnWvi`agjM{|MNP
zb}kL12mlgbjUx_tw~V=ghNKG60Tu6?>VW~{ec*PREAxlkP1d$V2_STV_8*jVfTYw)
z`1)4t*XcBnE_1nZpS=bZ-~i~w)-B)tJuSgHWD-SS6^u=nBJjq8<SaU4im71!jo-%6
z*MUK_?glhqC5^Se^90FSNMg-Kfp;KSJ?||TU3~InhDPcZ7kOS<`pl!gu>AUv=jB%y
zAradzxR4G3RqWqt9q_LYk7}LA?~u}`vos6<|3f?%4A6E&${+m(&^QEPC2v>mHVPsG
za!9g4_^H%SFYtcqEv(OwAof`(wYrluZ}pI5fpWC;0Zm|&J?i>JLRCzU2q}Bh`S3Li
z8$hUl5Ru_;-`^RCQdt7pxq^b(z3mR7BT`M5Zrmavgk(YLcnzefqQ<pm=#WKaiQjOd
zhvGROAx*osAJk@0Lh;NYub<-IHb8}niF+3Xt)xuiWr`3oB-ZQ$Nb2_l_!ek`A~Qe#
z@h>6IfXxa{jexS#fObGzj{uq37X32LjSLcqUi_PnR^w7rl^7sRUIPzK`)EGP6+~Ck
z;h~^~{L_fFyyVLWUUG<r>C)jb)Dwt{X1`M?gm@0)`U-^U!O-Byol*e}0z8~rEYx>-
za=#e;hV;8kCB+lpD5Hl&mrW!v<9%i}0DG9j+c6=0!HQK!_lX~w6S!DcFIt!Kh}@Da
zmFUsgb8mSXYnqQ~Y#0!^PzT#dS|AXqM){lS!3d9-dx98Go0U@k?dB<w?v97RN_GXn
zXdocJdm9`ToWs};JmNKAmOZ`GgsikVgMxMo(6KMaKoX&t27>+-4Q$uinglcsXo+9J
zvB>j0#cY+I=hynF3QswWk*Ee|`2#<ER2M-lI|*6*%`c~pU*{3ggo1r2sU~Z(gK>z>
z6XBh!4)Jv;ACEC{caW)Y<%d9a_)Et*jLj3Eq{>L&_Zt8VjcCcf@ON_<uP&)a91sZ-
z04Bg4A4k;F<BBx%#A)1^h@2piTd>$eRm;I=<b*jWkgT3zVS&%k62=YEMC%#>yytJj
z6Eio!tBDNTzD*BFZCW@u!jRYXU>0`vdy>EmN+%TmMYVdezo=Fk{MABl_qBpdt=Xa^
zl<?Cs(!u|^#&bpZ{24@u;9w@*qM2ZUp#<6$^|EZuy3$5bl%XM__=EPR<^C4et1X>Q
z3r6o5OvJR|{h>@3JKNYy!@!Az{JsTy7oP9hHbpHNUF3diuTJON*3<DJi=a9{g715x
z1z)zt7a|Ji;-+$AtCkG-U$paD8noPL9&sre)IFfNn-!)f@N$vn7&(Ci1<kq=8BOTx
z{BT!(G?86w$7R3RmTb?Se^13!d}=x|_14n7rmJ7!W$QX79jX*|%Er4L-<gKyFdU0V
z-kAH<U=Nn)fZx3U&O!GApFR86O!zq)64@joAR^r6)_$0R==L1dzjF~SB?A=weu+Vz
z4*lv&Z#aogUM#CaiJW=drNctHc0QMQh|(Dgz;n;Bik>}YGW~ihLUy+xemr_0kqdj#
zveZ7y#q?+9cs3~3q8*jd|D|toMo_oB7V>Z^J%H8tvnG=4@O`33Qb?kxFk72pRloMt
zXB*|{pYAne1dFqaq{_s0O;b?u1T(^o+P-|cTix^NF6GNTqmL&z-|_<3891{tYhumP
z{3K$nkBhrC03Z_v-q5=DH#;X!>^Y1V#9+HlGF<=*GFllrk}=SrFU)aW#b8#D>~}j7
zU2{)$%*339*o|=-Bk$5BzkDwCSh*gTxd`QsDB5fVVu?mJc*aA#v(v{1LYY81ppxbp
zAYV7E?8$CnLoRJrE1u{E60pA9UB(S~7fa?nLjm?VOWAy1nElv`D}vf-#n{t7L6)Y3
zxp2Qg;VC*_utE{n2B#F#r*Xra`4dZm+F@NA^=-MRIDB&sD;&Nw?KH4Mz*pUKLZ0ts
zCSypkk>3wcWSZF4I8DxMFvsdEV+xLLIlqCaTpo1gDER9HYQhF)Fm_NM8~X|#1-d0k
zvk{PIn7FPFn{lkUCA#)=LK@8l4VMHUUo(T>yqD8{FZG5zj3jU5(_FVwN#v?iU@8d8
z*U_U1vF3^Jpo<T=Ke@jb7lmBj?N_Cb`=Yk_5bRX6nD_enmGN8CJev5Bz<^Sjd=Acb
zCzXEY*JML<DzF!_Zi4o4X3NWPLRbH5kwNu6c6FwfhO%cIj~|UKsT2)rpT71$?_7IA
z^2YD;U1!(V0#s=fntey_66}7A@r}UZ5g;^a7cXWTm{z|aVd35y7sxz!%!$Z4d9`+j
zp4JZcEr_dA7%Iz{`pBiJvZ31mjP#9%#r#?vTv4M7&D9>n$tn!GeHzE)<bXxypLu`!
zO@U?e(62(BN5XcL{G5{k&{}~B+?aEV4SvP4)oHRvw;~(e^2~xrVBr2Kdff1iZLu6y
zPl-V1k{VfLxC0}dVW7ewNrp(8>N@AFU%)iC@ja49=2-k6Y@B!!^_;N$d{3p#d|1mg
zy4TC35-!YxvEwBG@n8IIJmhPwpa`?(1xxSI*o3ch{BWyzQ1Zs}$h*!GG0E&1#xnT6
zZFU{uQXdWyNdA437D3VHGv0)TPsciOE<2FgnEs=nz#3A0_R})gizUjt>Ox9iz7k3f
z+YT1ofe}luP$NTGcemZ{{H1Gvj=ojTK<ji-Q$CWWX;K&;QHYOvHT;J0-iz5#R+L$)
z$j*c%^O+}>U*}Pqaelur_y>*{4_@2}5@;G4{G~Ut#jg0k68mA78_&>RPy0(zf~=_*
zyIe3yt103jw~wZ|^|h3>q<@>kx7PogRD_VRej$kA&gPnvwZk@k^MdWb0l<=3v1Xcy
z7+<i3_HPt3c9xJqEXgd&dCiqR+w}<lUTyugeApG84aJK%*+s|@S+FXt|3tIVy?@_)
zZO&tlx^o|rtoU?TX>q)WUQRj$(G$^6o>I_lhhGPtubmYJ-LDn)VB)1({UE>7px2}S
zU5JB;je#kLj)lB#mnz`~-XnY)Md`U$N?<>AbG#Jglz8KzbM{iy<n-qHK>p@jJ}DrO
zmAUGH`FZDUe$U^ZWbdVr55-e{l226CmKjt6EBYIzjdE)}c&M0-r+x7spA%ygK<BRa
zd+HHsAU|@SS-?Wd`3hF;HRQg8&Q`n^2f<hy7uanJD4|+-vr_T_bEO6BG<sa8UvJJD
zqc-DeTk2~+Ed4~`D$v-g29budPdYd1mjlx`|3IDr^1g0HIP90-K=HiHAL)K7ZK8Hl
zksDE|B>k8{(5N*Q7cv172j*O_{M5{!Wze?krPIzdxEbkdqz<wJPv+ax784k4n?wP9
z4+pVrC=4pl6Cxnb=Zw6)F#Kk$kghJ_0Vzog$X~^~ISjch{<rVI9*-tuBCp?P3zPW7
z%*{}qQ;?PAaTbz4z-g=^6YgX^bq}&uG)5_`d3Doph6AaZoN<~T+!)&5*#45Pr8$PT
znkjt>_8eU<S6UD(rwdjX3^N8><TKX0rfuljwdR)8c`fWy-kbyvxG#sL`$P}z=geJg
z)ECY+pG{=vs<eZ(y5Y{Y%R;#WnwQ#~!2W8O&A|3tSX9J8Fsxzk=z1qAm(-Y)|9UOy
zW)rK3lIFS4<=H2ZB`^|=&gZY?Z(bTJZl44*s70(IG?h<9j?W3gi*($z&w9&iz!zRP
zi^u7HQsbGun{;K*&h<^hRi4j8cH_lF+ArbAwQf>aV!gr~*N5^o{Y-%d2PF|xJb+8%
zR_<Z>jD_JC`dtlp4_>*i+Q{!J)8p~X{MlUn0=o$>!f9w?$_<bL(N8WkM1JKXE#h+x
z#dwVjT$7wP`IrlcD3}T6raOshOB9jyZ=kHt*r|B*-t2@l51~Qcsqc0+x^W2e?<8Gc
zw07^aHM+0-m~Qn>kM8lfSyuU^4d3g})uf>2;7loXc+E35*yR(ahcI91A<%ModF#aD
z=PGnP?*mjwLn~H*JDA<|w95-joT=pGW%GUV(eUG<ng@><s=(ztd~t;b!;zqJ_QZjO
zwp*69_`;gdwIT5K%X^%vnu+p5Cdm3z!qE0PF#SvnKYC*WCezba4eU<#0AbDqO;zce
zHxNfKIC9$AleHh921zbHdXuorGyH|;90b#V;3jrVl;=(Tew6t&s?!G-{A-r^H2-jy
z=e-c5@A25*<6`bWp2_NEJPA~%FVJ$k68+GP#&&4DGvGHsCSd=*0~EdPJTcX1%zbmg
z+_^8%Dc|=7%-p61COAdDBI}pE$iCgnP|5~8Lh}8|wUZ!HgXZM%DbxPs5*CU`J3gpt
zt&ObH3vsIuk!Cug%tykAkYC@HkO&p2(iK(1uZEsDbXQ!q&GwNpNFzLCVX$*FJpdkY
zJ@Lr}IhrRl=NigAgX?11?K!O*4VDGhOO!J-=}jLq9=q*t-Kc4eQ=hq22`0)5*2?E8
ztmxB@SK5}(Cc@GF5gy(%SqLF5Ge^ls*pRMn86(pjf)Zs7e&;1!YW>PeRK2yxQI$OD
zYu7UwEv3$i+`wdqQR5Xtq4T!p4}>?zAZx;S6uj6eYzFci;W===53jiE-`Iclj_L72
z_U%;qzT~|vB6Qv>ih`MRzF=|PYwhavehlT*0wk}N)EZ<xdEr=!wQr}Yu?X@E9xB~G
z8O!+Sf+B(HHImK)`>f0wU^N7FYi;q6h?Ug{zURu8*)vXR_1__SO7GxPmd=wQH8eJA
zP&_5sk!j7Lv^MRnofRDN%<bJAL8YId^(Ot@Ad<KG->)r%uST#M&c{I%)&1-&1H|YS
z3RHlq+<9|aN;tQ>K?$Oz5}jGVkBHXt;A@wt03&<|Yx`oBTj*w`@$8+AB#i$FGomN<
zbF_P}SQo^p5nGoQx2_lV+s+IjgC?A}!A>SqN{R#@&31m=rBujs8B;1B^ia9L!02f!
zYw<t+Colmaou(*hIq^s76}w)mClrvbJ{j#d{5Z6&tL1vIglc0@EPXo5z*Gl*QWP5B
za0kK$c0VT5-SBzb6b6H_pSx+Nl<dqBnU0UGIKl|Ib&$f>Kf^AUM@Q1DKtjPw;pYk?
zH<w4{I*kB=%~o83NJT1Ruu3(JeZ3q+Quu37;+apG<gX*RL+4C)$>O4g9Jh7NMBz0N
z;*hV2xL6PiN<m>RHm&gqtKFZn`-fI+VKg6<Ku`=>T<{CBmX&*liA9p})+S|K^z|_V
z3|mAse0eci;-3ye5Xl_k;=ka9#?>nh<5H69JzFQ3=?891-pErUy1GYg;%*>lffA~H
zxvka!PZGXp%`DdgapiBQNUoPT(EZ}DxvO&%?;yYM)+fv!OCH*1eGD+$V@xx3o$KmQ
zVNmwVJC!5p3P1-nhq1Wspm?0J2!}i)wKvnEsXHEN)vR?!xw*R0-rOXwS&0#@a2W<M
zPdLNP_2H61UeZLZdbTX-1HEgIs#Q2+c>S~S<}wsT9teM$v%Fpcyp_zG?e<C?$DM@a
zOd<Hp^-=iQ&Gkl}&iQGQ!zqT_{&!0M(BL+<;6Do3d&cjzO|eVWr#*r5NofnGnQdRr
z3<haf<jgzkDcwO6nBsfopwWKTFJL>J<$bbFdCmMV{RiSm7L`-v3$B7K%_Z@}D_ra4
zJh3qRzbx}&P~YHhlV$!|!4g%S-jekEsSVXH(>m!P3<xWUZRG<f1mc^LM(v$O+H&&S
zC!X?-wdP+p3`AAIDXF_#CLy|PM$Y{|Xrd2MXQm;NK-P~McNYF#?&5cAk%obRUo#XH
zzXoXi4u}0M2N|LNaS;Kzal3H(=k2iX{@3;M|MKJi;XK2>i|}6`9qRw}NALf_Z-U10
zCXi4|dO<#Q{T~e1yVajw<KZ9O`TaUGLxadvJ}YO$d9AuO)o&t~91}ZP|M7D<Ajf9n
zp%*C9eQ^$+Ony%ko0=_-yL#&gYbpsauYzt*gxmdE1QkpE2uTOT#3$y7HZDAQt(*cv
z58nT369dz!UDx00mKKo$%vdM@*h?n-DeX@mw?8*^!F}UaJ`);0Ml@s(1T;@v`saCF
zS9Jo-pgBgTVGIy$_?w!RpKm>3>Qlph(1jNFKmGd1_RgV(?bf}<$jHOTXVhN!?=P%e
zM)iKwzg?YRko-FPG|0`j@BMim0U|+d&(izf_x7qau<6;nQ~SfQC63V*ys!v=M1c5u
zN1D6ieR&GPKlBMg4eATH2b^;68t!36`L+Jr;{Lp~&Fu!7yQ`#2^TiVXxOan$6Yl)(
z<)6-@G9FXv!X{JjVbfut8dYos<hjpe*C5fG7hn04=bPmI^x<w4{oeIm9#pERLhg#P
z)BZO*EtIbm!n?CsdS7X3CCV${X}kRC4;c1$Y$!Ycd}?7S3g{Nx#njSY-$4Kw^6sOl
zv8CgsuAS)I;6!18i7g4IHu8UOvqI+CmK&EYqSRC0^^(m4;p_Gtkdp>^J@?D*LU)Jq
z+I2go)4uM84YP8()f&JHcujXzS@FE(EAR!oydCiV^Q`&V*e?|PHo+@Z1}8A=R8rNr
zw9J(H%#;LB=z^}l$MK|?oFYWfYWISS^zxLl?#!d{+U7Mg7S*zc$9dMx*@E;TUnTb(
z|4q>x9J+I92b7z~;W6b2Rxorl?a$}{D&9F|Z2|@wbd<kL&#Zbf9mO*xEC9&zv!nJ{
zkOQdgxC2cAmKZDPvF2E$gDuvx^5fp8nS;V_hX>u$8dLz3oUDzOl7Yod*ESq8RMvfG
zy0Kz1!Lj>a6A(;XHc4ZWsdA0-=$KznVKTx8`yim`1Uhi{rJGIGk9t;atvr>vY>POT
z9*cShibpF3v+l5#w<odjCFmhvYy?81$o>@s5J8@I<`GJ_DLo~MZA>O=c!gRDs1W3O
zE|A3Y&hf1)1Jl!n^1M)N_NYL5kmp!9T0WC)kw@2$;F(w6_lai7<maIY$yBpJ@cx>p
z0Wg_O?Iq1se}YtF3CY-y_!{e@UQWo_0A+*N@R6GE4b?&`SV)iy*jpKQXoN?BtQChG
zWhuyyDYBwEr_}0tzxUCpbzib5W^+}aejZ3_P<Gk12H-4?&QdMDoR1gP_XV7mprzcK
z)B5=*Gri%Rr{+@r!T0zME&J?GF&Yn6_h-EnvU)HeXjTf8Zr0=7huns-?$;ZFEe(jE
zhSW7Qj?%^0!QL4cQ~h7w@H&-jX5-aca1!EtDrCq%a0nDFp9^xv{o~~}qQs>vri$va
z_^1Sp_$VrW9#pT&P;C%+@BdbIvK57;Q)F>9e{Gg@-qmVexyCQ-)V^RFg|Dwxz>MGt
zj8kXpIn@Y7G|2bi$Wpb<M7M3PPJ4@7Gecp^GjvGR+eC|-<%s5m{ZOHD_{P;Vsb+2C
zO^`6!sF}P@?$!TD&ujbCus6m3gk@wKTD)62AlOo}?cjd-vn^cQd1@hch3DGC{lr*N
zq*qPobQ>{F6``p!aV8-w_O*7n+k!?t5i+0k1wGXx28=Y)e=KFx10iIdyG+Or6t&xo
zZQfRmeT|9zk@`q&CR>@+d;LR5uyBQe5?Jk+iMky3MK&)KOFCHGeWfxbJx)qFUH?>&
zSLmtG>VAD(=Mw{v4gzL2SlR<~hb1kaHR!z|WZvnTgVLRcg+Z_9;^5n5Z$-a5#Bg_=
zoQMS86S~9F-vbDF-8Sr^$q&CkmPD9utKQmDB@k>dP%_v5+25DvV4+1rHnL!=Q>A)y
zbZrKhb5$?ndPS1bt_C`4$Mnkvb9@`*4?!24-wo%2Ri31SSvs9%)!Tc%>MD_x5A@t&
zM=Fr$;t3WNZlNltW3s!<|MvV&bgFfyKP#zWEJZ@}&xnsX5YO&x4_DagvJcTl$562m
zQma^Ou#KsJ;A3|cqghRu);r$9l2q2mY^q0eJEUX?p0_5N;UJo3D)pD|!>W_^)P1zY
zo+gSSGLi!iA-1O&8)dQCsNa7Ga`MV`QNNP&-=QR#expvmn-~*GR|kkdbyxBGVjX$z
zJ796v!hNZdmjhi(Nyoy)#EG!T_)2q1jwD2Dr84mDusxIAnW?)Nt&|r6>)d^tQIc}w
zt6W{O{4U+(>gt5|>+$iur)H9m{PV`me=t^>@8mk|v>#rUZ^rh1DT|Ia+!p<t*%8TD
z9grkVZQIt*Y}Ykk0E>huCOR-6AX*I`x;uMT4!exa%x=6~ci%YisWOC|wLD4c>XAb7
zyh*CB4GCE^UV>cq=UdD`F>vp^LM1`nm9z3&d>t6BXn4Qub-qqYIDx~Hs@mEoFHx-=
zqU_GECw^c=-a!hyOl)1)?w_f)S?llBUxPAeFm>bK)AGY}X6Nz0=G08_3TUwMsSnN&
zqi1*;u`co`X7ap-y_E682favz_v_ehH#qzzHd<1W{0va$66<@$pr$h8L{G`6VR<I4
zgac*U@+#rvn;2P&(Vo|gzsztI^QOEWsD&ieI-Rdx(H<k73otXQI!az5iUbAr@T>6h
z^Qsmt@UO%bGxy64WHB;7H5*PL^lP21wb4F$By>ifIQOF}J$zsZ?X$Pq!16*`r`go;
zFOd7lqf#fhHF`gh-6{Tg(@lQ=_*sB30X{wytMRoHd-Yo?HM%e87`C#T{W?|bmR)Lg
zTO;Vx6(r*V5b*b~X`jUS%qhOclAnWrZfpwFwb@X2G9s=nAVF$WU9A{fg-(4gVKmX(
zSN_;G@%rs(kKS|xhbX*^125<#smc|ueKeEP+D7eFo<WSGRYjmspX(Qt*4JZQxVT|z
zY+9uc57SPFrH{zP;18Xge#65*g{@E@>kbdqu`a93)gBcTdb%|Dz5DGK^mcclLVm0S
zZcesmoLmByi-D?n1rsP)-%LS%Cr(oMY=sfIfh4IWgN;jEqlfy+p_44>T?!tn&pj*8
z(9qf<?!iD|<nA9-ZllJ15qaF0<a}0#9ne;kN)1gx(vW9d>|}$DwVs_G1?wG$qy+d;
zXDB|H>vJ|I@^kg(3V9cfoaVoh^JT0r&tgVRDjz+`D$uS*HP~}HBw*AoH8(ly<5(ro
z7gKJXE7FQvEzsb4(RWKd$Q`nx&Q9o4E~=gR9EN&6E)I6Qp&*YDCa^gb&;iOJsID#E
zBT=qh<$Ba4msdfNcm=18&@j_`&$ruCs2k?#zn#w%%ZbWow|@dyLzOxDsKgYbt>qPs
zOa7$u$BQBpb>Cxa2ePp&K|ei^lQ+z#hdVi&Mp(JctEc;Mu-<JcxK?hxf`l`9IMz(k
zT@xo$F=xk&u>)&I|AXEM{UlfRN+WC{gT|oHrJDCqhJJvUcTwY|$lP>>Q)}!KmYG6z
z==9mEP*P6^{CQR`3T}HM9N9DHHY|=+vzfA`gB4OOzDhTtm0rq5w^A+T8CDkVo8Tag
zG~c-qi%y&&`Qazyh2s}(IX2?$k7+w3cmf8xx?OU=^)dBEUL7;!BHdC*=zVWq=<az<
zI{W!peO3g$%968}ia?UtE(P&-+XaogNu4{;jOul>N>;U8WyPG9iS@pvJGePtS{K%z
z_-EWpczZ8Us!s+zDQQGCL$PQ1o+#o_o<Z$W)8yGQNEA4FPo$VLVskUIXlTG$WpKXz
zqY@_0GG{x#*8OQGf5_nalRX3b<Xq2!AWS)Jh%Vyi`tn=q1N-s}k8$z#wvnS>)rd8f
za4fPb<IA$54)g>8Bbi#vdQzVeqp|!U78^p9Jk{f<q^y&5L1j8T^S7s2%=<%21{J1I
zax0iuQjz>P^NzDE1B_F(+jooGRI}2`MMR_|raC8~-0pBSIF{3l$8Ku-;@Cv?W`PvC
z>aaT-cXGwTr132A*?T-esCb52X#f4yzCk8p-itVzPB}`xALY*Fxf%s00~scA@q9_)
z@rqA)EGGsL%1t7;-RS9=)z9F+?h_V0#n0s`h&@`Lo$Tq+s?7b7eKtOKU1PbQtC3-h
zt!S|5qfo&$CRU~g-<2h8)$c#MeI9HE&B5CC%xD!)N$Go%!4>TK(@RRqf$r}eV>#qU
z8cze(uUoTM7{+z#t$U_^rdoYR{@xL~yzeM>1TC9<nzJD+6US<DVsT0-c5!iWxp(!*
zqmlk%>P@kAYs6M%!nRrG7h*n#SzR|m{9uVv+w&SXl#q|<1}X)cg02&uk$t3j%DE@x
z@XYkgi15hsGe=9J{tG+lkBXCBL*L`LEspxyhH64f^m@k0dEIFra~7BvB&X<{<l&QL
zGb}83b94lgUhlmhxki*M*D!<IGd05P<98phu(6%{5g*d*3In)C!y(3_JT_5YGE5<`
z%N_!G&ces`-M=n@$w`2sr{oB&H#L<8_uhrQ+3v2X$3aV9f?vN@!~R2BsvRrWpDS@#
zEtrY?Zu=EcaiVj~Ok%L)8-dWCEAAl-YTO{70ZDG#)}ZJ(5;m6DA)lTVWeTXHkS0Zx
z(pyE<w~7*C?A0Q)YSBc*>*I-4mOYJuq^YEPLOII0OIiImVMRq)ID)QtZf6rQUY|N=
zF&c|ha{}n-`M9{aw4=`UhLqAeWExKA-zR9iC@w~ubLF==j7*UC#$kbeWx*rz7ZYn+
zJNWViLtNy2@TPl)-ZzZ67Hey3yEuy(JOW~T=)-im$Kp(k^bOWm1W5yj`v(tGiG^9t
zjw>6_1hj`GFqn0!*(~=aTux~MUeZUn@osO~ZB@p_M)UCV=WAEm?G0M7$He<T!rho>
z0V;(|-{}4B^70QsQ=K`4w0j5l1L#<|h1uzy0dS6WbuYAaXJ{$<eHyJDOt36Fy={Da
zt)s72R8pp^ug|3*+{!B83ONLDqQ)>S29Ln*FFlhda?GJ4K%#2bx|<AsEjqiCSf8*1
zgsiVCZ=nn|RqFcs8K4RUztz|<ROKO_`|<HeZ+>GZYa+MDzW2@5Q*2cJG825tBmvzK
z?s1D5Dr%Y!qLDq1sS%64!iuSSO4zHZ+3EQN1(hln21;+ZVdIa*#oIX%^O71J?dIo;
zad5EwU($z3NQe(yuT;9hL(k4HmX}wVG>hH)Y6@x!E-=X4;P#G{%sZy}OoZ1B0;b~#
zGwi?lC+Xx_v9kz5qh8v42$Lv!durE2+XsW9BpwG2dalW?=OfiBpY$<|@7=8%s6L7F
zxf>HhB$rr!8J83#d*PJxIp)<C?TWlD*hRDdYJ+7f0CCTLWqBE$_~f{W>I0$)x3KNH
zm}Q?QZLmn9fJ+uS$q2*2^@@{?yQ6*{uMHtFi9gmZw9I)W^@CsK^c&49_EU#)4Xtxu
zH)s0<4mb+6@lfi1|Bgw=7Ybl+Hz5c{NUc<my98wa__4k>^u0l)?ihoTzQ%Q>qibmH
zh@6$LO75`5JC!m^77z98RrgaMuPlahHwwv3+;w<d;A1L!xZQ!Hqyg)LVGp>?XUTbz
z$7i*+D$O;74m&NB>5mhy`~q$tTnQ6fSKXPYF+NCVV`JN&ZaLXJ9px#z2Css-Gd+`U
z)C$0>DOpZGxp0H4avcVk!EiXxP}HgZeCz>=@UzS`=(XPv^a|8@NS9_}oKo_T5JqM9
zyvR|;B%3g~ihbM}>dR@42LN>s*A<@OFsawnWLJIcXPJXR%iUpx$EEsm3UuKYSNdzq
z<tF30u>Rx2)$6nAB92kx;~b^6s<*q~P41W|)1;0v5bVx0ti~)TD=H3;=TC3KU@n^z
zh2?n!0Ps-FC}!CsC{oQd)c&k#48O;Hy4VgMCxO=`!2jUz-Z!ORxvIz4?wdZG3?4Uj
z*D})5HZ%NxF~ubj+0jv3VU3mG{UB*#U70T!uVKnUDg_IbX)c6OFAstO3z%fu@sZ7K
z%Stt#+4Kr?p&>XjgiEPdOVPKo+L<6BBag1nRo0$$`v}p}cFf6<z+Lk)^0(u|M~-NN
zMQslY-e_n%GgtQL?7zaI6jv)!E&qn0lP!5Fcb|}Hx=wF=J?zuzwjgyB12X#dD;Dz)
zsgW=B2wAiqrzT~3@LN7-p}vRZ@m#D^E<S;ELsE;~%hLm{dKU-U;1=p%<6u^#DFm*8
z(q5=QYs!Y}ccwC+MU7W>TlQ7%I(@O6zv{C!v&J?!2;;agM$1d`lxkN2SAAH*)f9NO
zNB<NiG4mu<C68-Eadj0Rd#G=Efr6s2=JC$dv*CI}Y{j*i^PXa>fM!m_U0-2V>>!uZ
z^;FH#JcB588-h*gsyz>3N<sJ4P+_%|Rs8VC2wa7?BEN*kP7?TW#6}vlq@j18m75^(
z@$=5slco$A+M;ca=jj<6i-;j`<`R<<cXU3%4XggF{^`PwS*u#R@qKMa@Fus>uOCjs
zum2jIJtridBbi_fg{32JG}^WShwO#Js%R2|SyC65TBT0=M#qSPzWbl>9=B(RJtDYq
z+X!r<rlx0lTHq?`yib=U0j;r{`C$bweqd1fd54RQbK_U>&V41Wdj*y6X1|C^%7swC
zcY>!KP_Q;-#Q<B2ef(giXR0VPWeC&OvQrWxjKF&k7B+NWf{KZmiHbTb`w|;nOcyl3
z1g}-5?WiI2mC&VTcluVH5{7`2qmnx=l@k}Frqj~oY3zkCN=Cjz|4}#9<^9Kx*>kxv
zinQ2hM^HjuvXJL=gV{ghy3tA5_Lnyff&Ff4WgjlBcXae|f<;MDQA!LMpE_5!n3Y4i
zP&tw^EGMS8K`GJ8%gg=T*G?LfT*zs2`}2dW0Sm0@@dme^43FN<9mHE+KH{}iK=2HO
z_ITrgQKZeJb=aL5#=uWerZ3X2?Ow4)G*-@Y6{W^SMG|}T^t<v~9!J1ju~$7UouNz4
zc3W@GWy;Jnxoxbh_^g-13xgz|zq6w@9<Mkb;K;lb`0%rBKW%fgV6?$Zn))8*y@#ni
zYK6n!5%?Pu&#o5Ivi#|ISUvrjwHq=u?G_eQsB_gzJNR?ElOZ0=QT*=PmReN&c7|F-
z<^?39c`6Mm&+Qs7>%2+1VVkqsjaHJ}Qm8l?>6u9aZVhrf$v@2UJQ9RUUk&>n9nrlM
zOXuewh<ucdjH6ZaR{M$31~FSP+V!X_QbdS<c=)#(w@z&=hp0w^fm-*C=+My4Fq$mw
zXyIFeK-><Pcp&pi_gvAp$Cm(`9#isU%5Lc!3}`uD@)TMmnO`(8MeJERtn52JkxRTX
zpW2oP-mEkl4fmgcYLRf?<8`=ZZ)Lr@IL#J7iPV$CBxODJ)46_Iqd#O(dYS8tf&|Km
zyOSn$+MHTW*O;9`_uxHI*DRj7<wj83^T6ZMRmR@_ZVom!?P}vRG3pp0GhCc<bLhv(
zKs&Gy>F@7eIdn7`Hv@8acPa<UpIbazUz5n|k~7z&a0Ne=k?uJ&nbe?U2_0jKQ*Kb1
zn}znr*FQ5IY10<0!5#wB_$coSI=VlwJa*@smojj>Z>}rL7JXH69l@;BzigxY^eNZl
z>bNUQ_1tl+K<RKIpmd4W6{b0A;4(o`t|4gneBh_F?jx?~{lg;FNCIJ*gr*;+`l^M&
z<q=*)-{1V^sT3p>i0e#443G2nItwV4XK-~e{i!Rv`IGb2!QqJ7<kx|<tLsK}f=B|*
zO4wL=++fVv@k?ssv9gq)?@Pk^2jb(H1d*$7Ofp%iS1Xo0q+?f;bw=wKvi!92F~mvH
z0;f^1=?ZfRu@n1>>B{`0g3Z$9qS4Yd#-lyUtEE$3aBq!@CO6Y5_(6BYSNQtv%I0F3
z)0NHz@yEFuf<6+ai@E%7?A_rx!Yt<|cJ(#QTVvPzq4kcj-1ifN9csK@mYJT{MC5Uu
z>|A|z-&RrL0H(5Q-q)T^*DGjm5}{1&v!A~fVXvZm(RYV)#h2FCC-C#QUnQ9vG?#2o
zje3-sLATqwOKnz}6rYX)(|&!VSa#(xTP5rCk6n3+Q2x~|n1si1K|t7$j`ZpR^DWPL
zVxb(;lUE=l<5p6Czp5vjJ(S}l30BPcBG><z+CpvmrULobFOKaUQysUq;HYz})k_T0
zN{h)KW$#;^k9^ZI=u1m%$jP@8byPHH6>^j_<&k@`v#ZjT(^R*7M_sW>N^H<EFtjUo
zL^Yg!b8@;5HFHKcM@F83I?>#QGGMMB9^5xI%hxf<yR5rYE@5_j)XRALS`aZjP)km1
zwm(vULSFbQ8C4U)b5zU0PMmp1hI>JQTfSu#<>f*y*09FVh~L*k-1HGJZv_fg%h-+!
zFej6*1#v)3>GrSXVH#vFELVxaawoU_coQj&{`YB5?0JZ1sB&L2N%q~}Cmw?Pe;+^~
zBA&nb34FV~>hHgYcX|FCq9S1a-%kGT_y7O=(0Rm8aeRpDcIpET1+?F9_uR1gPltXV
z-lV+KF;Kqq`?t$Ab8*@S8kT>0gnftX??XW7|9KMP13~$777WJUhyUxz|J*+)NjU$S
zP6aF}6Lv-N9!F>dA7cD<>)xxyhJr8bHuoJUYYSb>K0eIVZs$$T-TE9CimO-xcfizB
z&s3(KE;|+ZUgNGJKz5{wPY^{eNSUak{Bz|8LPMdQu_MmVj^F<HZpZrY$iZp0R_kHY
zhUQaZC!kvo5_XtKNB5b&cX7iSCyLd7d{6kyyb_a#buaK|gQ3>iN$XkmL|H=u32xZi
z6h4=o7g7?5QW+JMY<UW!qod7%{zt@{w&n^w%^hTffAI#8&ix3O2}0zgsONPkY)_*s
zgikChayHhkS!o~hv84spy0xV}q7e<NtaWQY8mG}kx-+|{-S<GTL|(gLZNt>$y}p<j
zt;FK4*=8hRSnE*zo_%Q^<??r(H_nTSKF#%KHD20W1hmDkVrn3M5^2Hm-M>D+JbI?F
zlTuo#LT?ABeL<b_@KT{Ar{@%IXHK_#=${Rm{4`Hr6D~kOsP>0jshVDh-Jwu>w9G#h
zJ@=4W7rpI{FiRFc)}j`9K1D~m&)A6`ai*@b?|WtXa@D+J`%)X5vQ^8T+Fn+%J3_FS
zUZ=MqUN7H0#GQB(jTae?1A24S=RYA~=c?}es=G^tZZxs50-w8^g|V;q>Gp83S4=Si
z4rji~=*UEJnM~$=OG}>ZLzh3?anXxNmQ^J5j);~cE7|>PWti7jfA73%$&Pdi9ye)5
z+_S1l!S6zY<Hzggd&e&QPPJ1=7d0_N0d_q-=?6=MG`2;e#ur3^pT(4E!?FzUmzN2%
z^jG}Ga;3zynJc2q1*Lj=9ZE_EIajdJ&hQTh`WY4vt7_Jfajf2OCFkb3n}I<!XAxk|
zGO9POBKezR!NjGuE-9bi=Sd%xXwQH<@$NglEq*z_wqwgepX21_vAVHJD)v#&d?xF|
zr_OyN9EDdy0mM+vaSjf)ht!yU<rS<>nL$$e<_pC^3yLw+gX4YU!(sknA`NK;;xf9v
zpMsrSrR)uNatD?N*kvBKMg{t~Lba>NdTIY2qUX`#pO0EUo;mTBo8!HH{WdZ@GEH-R
z)lgQfFl1~X3+$s}qGvulwB8)5pb(XDm5Ma4{yK2~$ZquN!M&d@VU9f0=o@2gy=~9w
zm6Rva+(2U@#uXB2Rt_ajv>puiA7n@+XueK$$s04=m7oPA+nUvgCEl=KfGvHI{(E46
zNE;06j=;^iR4|QI&BI4SIvTMgWqC=79|cMR(!_|Uzol2n<3y(Ra<_aPBa#EpQZ!l5
z(PlCqLfd$(#}3uRdO{kZ;dXxVfm_mqBI;1)dX?4}lWX+}3sk!2CkrEUt>x0t4hout
zFEv!7TqA8RXq9|G>Hgm%a8zuoFloQejzb*yx%rwRq~b<k%lLcEXoybWn+Nv3dc-V*
z{1%l5ysClH873|LuRj~<=7`XQnK-1uBxu)t7r@Y&hm3)VGH@zSMeUnX5sWCW<7Bx!
zqm?0LW??o~*U-4v-IS`ZzX3izM!J7@TF5#ALt%fGE}Wj(ueGGNcKWkwo=VO$0Sc5X
zve_EVu<mPZOqf#^NiaZ5l6bO)tMG&6;?3`Sn^5*G#r{%7p?Z^{wMd<D3x~5#Y(%~<
zY!Q>KHzh;y4EilEud3zbzGOV6zdKLU!P-{RR)QWX8P9!lnAKgK5{R`lF=ilJPlU)n
z!qC)tJ@gzsiU^ZUM7Js%6LPC|JmtTNP(gpZusZwEe6&Hv!ZL!=Bq^WwxIA{mxIpoh
zs}K!#ojs;;%)zed%935nDye!9Nw$Kg{8E}%nba@(fRAl~{+!Q)A&^_yoP=xl_U+{M
zWNbd;CrS@7TSQNxcGOJO3|%p5=N0|b*h~09DPoykcZ>cOP?2ZPjMCE;u*aiO&EgR}
zS%dCDT<Hgd3<iu9m54ulFdxm$#_*IsdIjLF=ye3E`GjON$y!l+-)w1Q3wX*$#Xe&n
zxdXXX9(w_<<xXd>DF`IQyt&M-WhLDp$yg2KC`QkUzP<kLChK(LK)t9+?5}+RIqI%l
zddQiJ0J&A8XLq~g6CV{s`tt}0-8L1cn&KGoF?XUsOoMvy4RY!)$a<;2736mt&y$)U
zWGhKXnVGj&Hl+Q`!)UUSKlR4ZNa=?NxoMQm|E0QxkT%1^51tSMg?&5Wsb$~Wo_BhK
zL(c(E)z5r?F4EImk!MGaX26{1h~__0p$qEK*$Y-MfF!lg6hr=ZjrSkr_VE9+8vIvb
z{=VIH8}FW;wtLFkLdPwzr*^9DvgH?hx1Y@qJ=|B|v_zT{VGJRDR9&+w2wlifpT`$9
zVeJ8U<%n00oSa~r$WB-;jEwY885ysY2l_PyYUFEEA-_rK8M@{5<5koP*&6gf*_WAF
zqWI+SP@`XZgY{kOY6Ck*877H#8ZbWF#e%5PGMPp7tm8`ID;QKoT-Vz8W=QFh#6BOI
zyOvIT|C&va_4HH)T%DD!*KquejNhiaTtDbsTD5W4m&qCZ&}^_cy==PxPc%cZe2b$5
zw5h;`Mmc3idi`({uH$Yok<zFJ<uY>#ov>M7cBz#UqVy=ZXY$M3M>1HB+(nMZX?1GL
zTxf0Fj)IdfBVE5<YOxkaA$S^n_{wDL{c_j7ja<C@j$nU$>CZHYto-fEO6#)(XIaAu
z=k>hw%ahJ_aOrfz)|sC@GDqpbDvQQk;WQ8T4JL-B+c{iEGhK0Vivp^dPY2wvz>u3y
zK;dbj6#FdfuTkbI+P<QBO3~oBV}JH3n?2wtf#Bf}^~#OI>$8Ea7qs8Gw@y|jd$?U}
zjkQL5+;+wUuOwv8i|#G$F1~q^?VQ{Q+ZxmU{&fmt>n^dsxJ3q07K?VHHHX0Ei;<Ih
zKjG{kE?S|SVb5X)uAOJx9B73L4h+->J!rz$#m*q9y3(*akbLguC@L()@m-QVn^m_U
zifp|rlSrlU)hgodDF5mzL0vl(KPvL`TqqYS_GpeuUtjye;Lv?RWI0~vg9ASu1tg^Q
zEiOv*M#_5Yt63}%B@HNBOMYtOp{e#pc`9FFCwwG7#zqa3;%XRfsswZn<x}Qd5D2m7
zKcS2hu=mgVj)((1!|e=QLoOS?zD37tT!eg}D_T6M@4EC(&C$Vv+iypSjbx7d-yb&z
zOc+f>T7T2x=u$;7U3`FHY;lpUU~&A7=jYntTe6*2OtPfwKEp^o;jiYe>wV?Fb+2UE
z7ocUUe)j*S_-m_T=c*@l<&%qDNAP7uJdc~o!+F?LndiXTXWx<S8I#4K2T`J%V-Hi8
z%X%*_se?~;gr7JVj~kxNv-qzcl>6I5JIDo{s%3+|V%4RdQ1Im`(_dW)z<h)Q17uGQ
zY_Ff+<FcAc^@p?F!1XQ%y|iq(<%UmaLKEt&cNYsXgN>K&0gF}SK9DfVyu1^+qsDHp
zKLCuxfTu>xawp0ul`VC`swkD~yJQpjb^{B9g|okyD0%ERqn`p)&T67xg|HSq`ErEG
zx~<m<WA%~wlTu<N!K+c?3?%mJFzr0OB%JSdP;KV7^(u{8l+;r;XUgC*RkJB|+OQEL
z=+<dO9PK6R08^FT>r(S!eHKN!@BzZJ7s@hGUOLrdrZ^KvL9aLnx;|Rd!!Wcjk56sx
z#JS^4<WG-G-hc32$*xD|jb|V_Mw=KOeq1u#$!4IYeV;p&l$Zot0p5_-5Wkluq!*`6
z<0~7V;^D$@`J!i6RLi7do$t)Vtvo#PRfjA*!}uk9Gnha0#@*cg1&*K*OX>UoXD}be
zUhcGhTRL%6;hfWZ&e?iG^(?!h9e4=t5R8Fq%w!rqa?XIkf8>B^I%c;wzE(8r`hEvz
z2oNRKfizWk*~uf{e6S%&a!1uo(mhXjc}~sLbRy;EnEzD67XIsTwiD=H{f{VF1*`5b
zB|;5uqrpbWtS|XwS1Brr-7Nfk)HN<FB?JE5yX6{OhI1CPlzHVE1<Y5ADsi7QZ5{5L
z^IC3??7>5A1LPALe^nhmUu)7&K>jj%DmYYoO2;Sk)b4T*;nv2h=9y%P6TZr0fv+yF
zZiTvaTt05V;Jf>5=VH3#xT<;1GsWvo%Il7{#}5?Jz9y%4wGKBB%ZMTR%InnbLvYG>
zFI0AD5p4rb$@!+U`(C5K#;BNl8FfnGpNV~UcqdPSisJJs%;4>6E+<Jjt}s=COtFu2
z1Y5JKEBGOaJOhp9ST{9-9Wt?5l>09-6#LHfoC-Rw1dVM;1g#R4X-Ba-6l%LYIZ02M
z-j+-j*`MZd@8T%5T}97+%BnthFdRJSIS(4!Vs1IuIyuEiDQG-GUl(wl*_Kvo-Kb`x
z<vWQVEE$gO&97Svsxe!$Vvs%*KcvMOI)QdFm~-w<BOx5Sp!gh}n|DwKyfV5_fnz4_
z41TD~(}9~`H9||4UbegQ)!_P;5wV|E+Ih^;_Ee0b?`&xlw0bTKx6)8-;XZkkX}@t8
z9Ar`JThI^>pRO^G%23V2BCCGgC}*c-`^o>zb@rRi6Zwl=%2w8kkJAq1MZ>nqKy<fu
z_KkT2HvAyEX#gq*0<^d1>7ySSqmjW|7LztSoPtVeLyT`LX8SvGJx)U|?%rtDxL<!8
z4c;7&6+GTr{PoLRM{ZCM|4BwBfSg_E*%ywDC939`+8Dn5x&>Q1yKwwMJQL(kd&y(5
zaDdTAIvU4rZzv*VoQ3e=!8gTi(|o{D&&3MmPRKPm_fKp`4a<hC0!rOA?O_T>YC0#!
z$M!lE?>qNiajaMG^GqF)goVfMFSUh%tF>$G21az;pHK&gO*zf0y+;XgFdDDZgcE3<
zk`Z%R`7*!TZ@Ht~Tk4x6pGQmOf|Yd7c-CyJMK5NO7etq9xb9m8JneqEaS>h|(EZei
z_@Z*jJ(^Uxe)ESrltR4om}I|iXU|Wp%&^^8mLJQVGk<QGO=p+S)_RvR&o<ym-y2qk
zeR>^>P_|Dlb8gt94kMN7yiNmZX=1dYA<~R=^t7onb>7+0J_tIp_jAZub)Sby4q4Sp
z$~2H)@10N4q=p~$PWT)w#XfUuzI>dQr?O8bSao`py)K8?A<_AGlid{?pJOpDW=G@M
z=1k_sXOl`lRn)o5D|GwqFK-Li$BI=dPnd{&CyQZpf<~v;B~tE_L*f#hcEp!<5^}po
z782t*>TY19hTYZ0#MYSSqO0czzD{}F_qgEVqH@|E(HSweGm1%vtv{ts*$d?zmI)5-
zkV&|bxm?jdL!{1CV@O_X={JkJVzo-I&HKK)v)h`Ly7XNFbMrCoJ$;t9?w8woGfPD#
zBZKC?$f<*4trzI$?sLsHx?#^532+qBkY5xspNNg*8r6rGi3F_w8r^$AV-OodGype>
z5Bd&u;JBWshaGWLo6Xs|f>q<#*lMXe853?m0~!4Ax^*paZX?Hro8Yox0iJZd$?Is0
zPdOf@V?Qj;z;~QzdwDdfAX<C6Gj!4w(39XIub87Ob~L)IL&!3{y1U7$Z+KdDHqtj8
zDimO;U@P-0es1il*tIsQ_IpmT!pKsaTs^J8mq56&<3O&EIncA*MpM*Uivdc6{pWKU
zbMzD+{OlTCU{*;~!zCq$^!D0Yf{vR7wW01YY*S+$i!paPpQO*$9sV%s>}d9CNTiT^
z?;^k1f&kREQW4sF7dg9)iFD1ZOwHC1403)=hq&!22jji<BxU;1bgL^BsnO_HhjvSG
zViN5RyMj+?7#uo4@#?#3agByoBQetc>oe_|9Pa8Aij^IyybnGsDRsDV=oF|v81gS#
z6Y~E8H|zHq>)RU8DRZAoDaF4J0=6t+FSo{X_D9xSgXx9kh{qn4Medq8OY9~wv|gMV
zlg`5)RIDwtG#2Kh6Wx@6N$xo)F3uvYYR}7k<*F)Gx15BMV^2uRU1D{wxU3R~WWMdW
zIDNT9!B8%zM!Ce{@@aIGF45u-Mn63s#@3aGKBwwu?k!yp)(S6+ou#44o5g6|_dOD+
z!@7@5wvfjs%52@^GBKp2dK?9I*DX96Y?tI<%w_?=g}CfEkvrveEoOVvD^6YG%;5?&
zT%YJx!R4Gxq@J`?50@|b`b@=SmzQ8b*XU%*_}(jcXac#gZqpeK;<ZL4)8O1G9F4~R
zB{yH@_fI=1ebVC8R5%z!htTT}2J9u)woHsalZrEbwU=g%WvjN2O^M_vlk>ZrZ?9~L
z*{-ZY{ry6LYsYH2i9&27*?cgV|5RzXv{xorN7XYcv03%n{;0P-g4BUoyV_~!Ab835
zB!SIIrd@|$$MD2q3Hfw4)ujXI$+^q~6l3Hwe1Zt<FsTg80!@z1pHxu9S4J@(KTLR?
zFp)69?T~TojG-ULQ@#VzaH$duC@-y$IwVc@uqZXU>$5c8uph@vxzHk)8I3n%GLf>}
z%*jw2Q)m=ft$6{H?#fEni83;&fqXj0PKg>A{SEGG4KlQZ_mJ>yP^TS6M%t=Wmav7A
z#($XieR|S=1A7wS_2#lfii?}WX>w?1!X+J0y2wfRO>|6!(G)AKkkMhGXlVm!R^H<b
z#g*MnTkAFB&mzsNGBIMguj%lmGGcP}bq+n0pGN2wSLrs}{y(I>WmH^U*CiSyf;#~M
z4~2VhhbK_Dd+^}y?j!^#JV-(C;1upI!QEX7x5C|}Pm=e$cXapH_eb9v48}le*E#!a
zS!=F2=N@D)WEi01p(QDn(~4vKtWoXqxr(z%OuOOzXujm@gX3u|LM*4tv8m4f>U}}G
z&7NRsrXd&o-K}f41|OcEjz%iNS54h(-DhQG)&GFllryV*2hFCkH~~yaZw>foQ>Mkc
z49AL)x}r}t-9u9jiv#v3BH@HD0;&n??dPN9_6dam+(IU%KQ<dnQprIq3GciU^b}L4
z+2in|(Vnd%Ri!QbI|N6nvyD=#?NHp)o!fTFxlv<{mv3sAJfn=<gVRdj%-(5rNpFaI
zugEcJU?42mY%>`*K$J4bmGPor=OZ{fJ34$GZTQAMOHG=n=Dp2Q{mRKwF5;$VZ_byB
zQ&82_%%UpiaD=pEv9`r_-nQ!NU1~}8euF%Q;&3rzaGrQPp5sH!1rW|6oj)tqj)c^b
zvK{8ylegS`g%Ae5Sgbw&z`-~_+v_r$sKYt6=~?qYh4VHLedlDlue9+Fq=N!X1t&z?
zA;W;|TxA|9c6_7zZPct#1QP=TB`8~I|6tQ?=a*6d0MaPXF))pqaWJ$;kj!}xlpgR4
zULxkR{2+x4^bN8T7Uu_p$N<LxXnF^T1SW|t>1hLHim$kE0ix7vI}A+o%DF+wC_ZHa
zUGEq-NqeuhcIP+f4SeqBj>pE2hyorjG<MDCKBz@_oUY-rq!NsSjsp`j$QVEyL!}YQ
z>hS3X$9WT?_KUP;yUEGfGQFA$dalEaxBHX6H|Hf}dXGPWimH$zo?t@vMB9SO<)`8r
z>qATsAy4V6$ZqnCSBhoe%EKOn@>a=?W2m%@kA~#e=lO^XBJjlDkqZwEE7n`V_f$4q
zo5w_NNou0uYVm7d$y1?&OT1e_C&gAQBHYj`A(||h%+qBA77Y4TT;!1)^L9>Iq8wu*
zRFcczF{T!W^(W@quG98%HLv+n8(BEA5UIQ)TMVS98+_J&g{cJF^YtxCVet(Pjk!n1
z7IWGi+4-mvrdd?{PC+()aj?_;<OkV}S87R@?}9X?)9u@{l6;{$eiG)p)+MdUqw}ef
zdLS7r`8m=$B-X-7OL^ZnXa`DcvU`UKTt8Ec1aLU^NQLrlyy{8SJSH<=JtSxp*!8+g
zLnvkBfND(+!u42$EAahH^(6!re7wA<(@ZL~(A8%EU)A%`s%}2@D|zwEC&>gAUnb4S
zSig8l!Bqi0!{FYFU(e-=!>h@;$o8(l15?ojjc}mljkI)yhET)<;x-D{T*B{79%_Iz
z)VI5BD@Nl-QsBOp01!!H!L-%)0|Mk_9STRyNWfjR(7xr7=CjKzQS)I_4lf0KI012R
zFQPU5zT5Y5esi*doCJ(Lnq?kpa#w!Wdr$8{oRX)KU#V&BUq6YE#1G?b^}&5kd~TsW
zEy@L<xmz^+;#UIL<0}sS$`_Z{jR=!cD44XU;^ofs`d5!jy}MWM@%^RDaF6704_QXw
z`ExyP;nOyu8jR7@=cbn={7K(q<-mLw#I_2||J?bYU`~2OTW5Yx3>UW8$zNUcpAkd-
z>U0eL;wN-m;ImQFdrttem^D9Bu91{7$-M~A=|WvBJs+t~>6VcVe|5Qg)V|IfY<3<^
zn)_Jp)p5lmm0hm(eW|3P`<2S&!!0LFHvmGyA5ye_H#e_=Xv6jr9G)NN;p1wFHZa=S
zY_S&wz`*p-kfD%T&k|gCo|&oCKuGQDWFm!p_H3n2OHr=W^eHpx?6=u(*NS~_a=Zn!
zVJe-}**;u0c}$$?Tvn@L3wLctYz>Z?Ov4GB&8u|BF`vIJenrGQyDLCT;a*d8;>UDv
zXuuc+HZY~O;jC|I!A(AUo57{-LUI%!w0^88sq+aMB6O0@?L>Zz(I#NXuCJ{qv9vB`
z<^su_poPM4VGus+L0W~^iD7eOE)k|EH3ec(Osv})?#L~`))4({n^C6)UZO7!FU3T2
z;k>VRrO2r5zyYzcaYV?=O>!^~Gt>0-GZ)tCclgu5Lt}xo{40nQT^-cd%Y0>Ww%jpK
zJ$#^HYGrmcS;>PHJkbq@LJZdWL*wK1YMqDm?|)$rtFH+iYy?!P>*5|1gU`6Dy*#FY
zPsmn6>~6^U){Gg@lj_Do-1ryo^JZ=p%MO?#z?I&IQBrhu(V3?gPC&^ul8JO|(zj!_
zsYZU^$<<kEc)(_<{P_O#_8@f@Uar_A+RvrkY+v*9XHS3oMo;yIJy*mdxA{afd9J#x
zkA+MS@5cv*ekQ#Z9ihk)%_5s|%WsC^IX4I^9%8v`eJtUMGZXSUB+l(|&m(q_fkw4n
zN%e(`ntd=#K0khvqiMA1e#5r_fDp<Z$G<jav28^*f40+(GZqja_J8iJOiDU_-{7p@
zk9gisN9&i_R8^O7>@R){Uf)N^fE&1&N33tRFH*JetIzH-vTK6aFh%*pMuUhBfQZmt
zS7jwNe|3#6p8o8)K7WYZXN{@(@y_mXD8xx5d>iR@hR{VtXeb~ibFe;}E!b>qLUb7a
zWGDQ#K9v=C<nYKadd3*6(W%lkCD=fBe*h%IFy`#NSaslg+2J1j-)-?Qk*NwnC1+A&
zy5)6%+AT9aS`fCgY2?9&LmjyN))<~ESNB<1@<kDmU@ZxrkFi#Njx*kU-Ns4P>j2^2
zl~Q^<dFcrLO2@T3@yNB@`^qeXSztRXxT+=L_9Ek@l5DZN*)v94ESk0!R5<1ry#AM_
zMOjxZ%vV_vK-tV%KY|fsW90ANFl(z0w=sz`g)=f1@&}Q>3r->C-xm$!7D+pdSAmM<
z07oMfX1#^R)p{}27u=b$zkAp5p|EHlz~kc^`Uh;gsd95%4@XWCRE>?Xs>I&Me0SP<
z$PAE|r@7@%S12_`+~w%JawX+m0ngBRYVDe&pT`v~*;pDQcJ@l$HoAyhNwo#aC;Q=@
z0|Om>ZFe1Y1)*`aW>`w|?SmSZpB8P;Vu3Vesp--Vh;y93<~Q*2?Rb=IBa48|6J{^T
zGp7${;*->WTDD?p*8Gke!>)blpmgbeLY|`zWfBujBGM$0m*vm4PpuUAw!7<m!;&~n
z`)bpl3ECp+t$}@@(nc2GlE7Vo*0Ft)muf%mb7;9Zawms`b5jl8aWK+%&-8qrt=~s!
zcRHL2fo$G2pKK?DN^g1{?jN*m*t=^p#rNZeidrWH*etnD^tMiwgiQB^>vJ6}wm57<
zskppXbW>qXe$@LMP6czE$ndhqAO20@@eRAts!1=OJ>c(aHLgNS4VM&O@g?1ET_Q+5
zk-Rzfe;rr6)8K)sob*Q&OV4itz}))}E;~TzOxjKPaJH)lpR4)w(2^i7uXlH`wL}$0
zJX0sj21lPWD5GJcF8O%t!$>%p#B1~8`!F?VbllstkdZNN;NE8-R>RsOd~YPbOoD>n
z<z^Mw)AqI4^H(?2j(Od?244E=Hru;Cb_wMU+%R$oSWeF^-A3F@jf{LgZ%aEqK0y&o
z+dABJU+%f49mnTFEdtQidtiWm^zMJP0bAXd0t*f3&i%Cc^&8qlzhEh&1)r@I;s-H$
zxR|pz9`pfks<G0%{1t^vR869JvK#x*G%pyl=i)X2toRg4v&ZA=6^<v)&y517(95gJ
zesEil$}5ZKP3(}GFyg)q;2N?iE&X7<m^IYwztu(bs8&+_2q^K|4x1{Cm1~9ur)_vY
zeC{}7Y4;HHNG|nULJaK_B@qx|DbB~CRv+@N?3wMVPa1a4!MSXN8a;LnS@;?NlUy2J
z{nkUGy*-9p8G^G3>+)M}On6;wCwx$`#%S_JAjbET*I5VDMAm|jXHMqPI6w)8_x8F1
zuMjI#6yCs2ozW~XFOzh=1pwf@HMU+i3xfcLRCKrY3bZp<)>}XL>IOYYaHroU(lEwk
zNMp3fu>v==MF;?f*Gci@3Fd30Z>faI(jXlMWc{o<w>|*j82|AGHF9{(jvF*u5hGHf
zdt%sNqvyKK)2x-dNpcXOUc5Bl^jH}hqZ1GKHt?J?(+4Ib922SI{1#_?1UvEWz8uWe
z>F5F`F(~x3DQuvg&pmBWt~oAV5^RIirBp?yOyw>Z^HAIjOmOSr*cx2;NEEG#HX5n7
z>f)m<Yz#^d<+3r8mJWunu&+<%QxdX#y}ENPt0`&TJ8j!QHjyFZvX<L=ss|8GO}#HC
zzmaaKr$#mvoyTP(&z%!Z?)M*y*A&f^uE&oq4c#DWvVqlasLP_i{N>GZTbqWmPx5W|
za0??jNXIWzc0ABn3DIL~vhxhPz&GhyW)sd=&Fi+hkjU6DZ8Zz8^(pd!&yn)mr$S`H
z!qKd5EZ4b&WRnHc+VzvZO+45ve9%#jm3sTHyobe}W`)^Un4Y)~5E?G%5Vxx_JGoSn
zXS`bqt9zs|5t(^-|0*J!Xs%?nkO`&Ti_2zaFQC7l0t;A>gf_jF7%EeX>qDgb#k_AT
z#4^hO;o-$DFxbVxmOg15Hgn081vPP!6s;V0aYMI?LQEzbT|Tp0(?Zh#ZcDsp6*s`R
z)X!F>&I0s*0scL|%N%q6)Zuq2W8DKLt$0Q^s@DDm6km+ASY98u$B?y1r`;Kg$1*km
z(DD^1T<WL0HWpV0V%)?f(?RVc^<jN%VC&ne9>g2C3IuYH9pd;OjaK&;z&`r=#a*vq
z;6&j;|A&FJQ=cpQMN-)og0^z2hRt-58z=9aZ{GFQh6E;S5%(<*RdO(ukj{)UksBEz
zp~jOnAZ3@3kp&j3U|IwWq2W*mBI6nS_3s^~FSnWMPF7~0xFvht3h^b=*Y7pgYu6#2
z;~fSooBQJGg>b`v@XmLpEFOmS5NhY!bE^xT^SMLXLJoH)z)a8a64<r@pVivpmoo6V
zxS=Crdb#Ncg>q~Yz|}6NPjzg5V-_XqN%-I?m$aF(+ZXL0fMJ{&<noBP#jNjo{mS)D
z@NQQxFzi|*bM(ba6`i^(PdI9o&Fp}_-r!vQ>GlodtFO<!#ZeIT2K%Y_Byx5?4|AXu
zIrn#4kP=@Oj8G4s(UZuRG0p{3OeqflO7!@tx=99vigu<`ZI>_jIi1aUY&mbcqpqc>
zqN0p&BsaxJX0Yki@Dxg+CX0Rig=}-u@m4jwyWYjZ<HO!1=Gvyrj~k+(cFs4bsl4`(
z1I~8>l?^g<dd)7bz)oGvgtinxI+JOMtP_-2C7nC`qavgG7cDVbu47PF%Mgh?*#E`_
z5-zV%?J=DpRP+0Z>7nPnQ-JFKD6-rPOa73nJRA&O*Xr~>2xA#0cHqz()=9#@t2R2#
z*$)bp?js09j8HjEp=SaSFg?#9Gkw>esqGa;P^5M{#rEFwRz@j6Q8c`^(TAy-I4+op
zmODygaoMiYG(5Wua|o2lviS5_9NWV|-PUuE@08U|aikudGDeid6&^_qg%VGY@yll<
z#reJ^GC6l#0?N9Oc2=Y|R|gk>T6F8l(|AbmT@3K#&5UsjrkR<(4nL)}QhaEy?M)T1
zt%I;?AmoK$q(Zk96uB0v?HUyj<0VJu>?~tVt;A5eeHlgfhRepU!hA#p@su>QjE+D-
zqCt8-8#xCb2j}=D|MO$%G@;NC={^c2VA^e|L*pd3dk0ENRG+|!^EAV!1_ss>HhA2x
zy8;8BwIT~{uRDkWb&yULhCU&p?DD&|jIDS;6Oys2gzPx34yz>HWO%TIS0Ax?CKFp#
zIGoTi-<`%v8SC3i0&iK2i&u4^6pv3y`W^fZnB@Q|i~w8r;*``<37A@dZGK`#g3Ga6
z`q4-t>!oO?3#Zy%0UX()O0xz(T&%skP%KlQAkh83HJ^Yy)Azx#y14N=tJZh5p_X(q
zI0(me)2zR5>(YJqDcZeGT56P`?d32>a#R96)(O3@+muBW;vJ7mb=)42w+n83tog*w
zmMdA5M5r`H3AdxTi(G15!khSh?^b6m6$^d+8y_2NP+#BBIO>;UuQ%c0x=u+(>p(&y
z=$M3qgJW5x>F5~K$9!9PMyy4ItfR7x+f+($Sezk<sVzP6^hsl95ILYwss@BN4E;WD
z8M&iVQ`xdZ$~yg57f{R-8dfTNyNn1`o3$_6j=?dy`m4}7>FT^mLXg3yuBkr$o+bLy
z#A!=h=g!UN{7kL`KZhP4^6-o15T7l1^29B*#~&{mO2lr<x4RIbHGm3Q*!PijVQ_F(
z_mR`;5wYt^a)FpDHwmX>?vL|VBR&je<=4iCFHaTH?k%Q3jFLEEB!VhJ9$68=D_2*I
z!)>JuyQ@a>kHzrY0--b^QUkZZ;IgP<)4o#_y_1T&0-RqH>z(pu(2mzHo;{o@qJXf1
zzo9X|MY690PV%<lSAHxZg8u^o;yI=aBB%=Rd`+#dzjpJW1+A@rzHJlx_wf@_*(VkE
z7wgyF2zuqm$L<@lG#@!qxLdAkQ>Oo5K~`nO{gyaipg!?l(NgV)E-|FX2iDT+ayNwY
zEgH!js@@`aJ76?C9{Rm~g_~!taoch1N|njeG<W)7{wkIJ?UN_lrwLRShyMm@GO8B5
z#W_){W@4cXI5rlo-<WkkWUk)*82ic<mX&2Z`KEAZYmF*~{$Mduqh9|J;`9Ei<<)Yd
z&-&Ad_=q=&N$T5MYg3gUOAo9&^_qap;7}l>;BHH%N~~R<CvW9a#QBoRp1WfOA|7rq
zFc>Ux)QO)TgdQw$zW5yAZLEA|ymP10EsUzTyQ7&v0_r*=-MGsb4%`eZ=3`^*=H}G5
zC+<TGFNA%ukwN7+uSs!WOWcn5;`4J)RUvu$){ngv@#5evvR}t#$_09JJd|85c_F!u
zKKf;vnaAf2xPs;m%<=T?XvyZ&84sx<rjKN%OmtTQnBjz!gy$3Ep*s)WaO8*-c&=+>
zAkym0Zny3X>Usr-^Ihp1@>huogqd{9Fk2GA=fM(M(GZ}P4Uje&evQtyDtD}~qM+KJ
zDx0w*X)l%y<WhaAOGrzgV{|8KFu39`_F)g7>8K>nE$O7p*3$YhiF{#6s3h3ru5XVR
z^54o>jehB+>#zB66E3e^3yqG`si?nPG>rdR;OT0n*itD|56Jww?R$yQx~J!>#Dlt?
z3Cd4nUj7QE2eh@oPF<jCZ%K%?zIUWjG5IwkdV>gE<=E+9EQhSPl<Q}H)=P1p6@>Jx
z1yn3sEs2oGTc9zh7=G9q6Avghc92vH_<t!%4jmojWoD>ElE6UZs+gGIj`Pzsq!(Tu
zLA@Uah|b_wmG2;(P!#YVzUC3jOK#1X`i@u}I}Of^54rWh*-2k|H?zctsZUv0$ulsd
zUm<@n6KQK#F-H^}f~d%#`UC+=*GKlC_;%~rJUmRwT;s=P5B2fyKbfovyQp#wdA(90
ziGeSqj6;^xzLlYj*GMCiM0(yWgwK3qf6PAst7t3XVZMw15v@U;m!DQspj~|De2qpD
z#8xV936*LBdZ)9%Ri0!rM*jyOuMH9k+aJ%agO#=RBG<%QFFcNCeY{yI36Z8~VMMPe
zW8EDo7i22oIxV-i#g&38!A?q6uSIXWUW!sms|5kl-Nj~62`gcsUX9+3es~_)zTf1J
z>AaFgYYUGSde<6@Pt1_Y9mTy(^OucDs_N%Ywu9JnWMn4K_|QH3tLLLto}Td#{&kWd
z$7XWo%(lIKGvw4mv~Q4k)t-kA%F99CJvbZDy@oY9Igeg6AgdLK^cyl1eAA1Fw^^_y
z#3H~=icLrn+G<GuUF==oKj22>W}jV#(VZm3ASEUdVvjb7A0ra#PFqNeJuPYQ25&7b
zEyN<S>kv>abfinGf?fQzRWnaE{`@?!fw8_Y7!b=gwp43s{fHnO2@VyntqC7q8%pIB
zzMSjoTNodt<scU?RydgP<^46BG`zL3iEmz|qC^FiFka<KVR*jyu;mx<vU^ZACF&z<
z!pT%ox%(+f^JA*p58Kzk6aW|<`Al^4F{I*nTQ3teaB0@dD0>I3ljV(pg13xh>r_@=
z2<>}tpc0f-kJh*7Zg-O5&?jTk!jyTjl5B6Lmbpbja#(J#C!xs=`(6NpOBxJ&$72vR
zveQd2_e^lOxorkvLKV0ve-lETZ4x3Xe6L0Q$`T|cH5lE8qsfT4&3b*+h*b4>u!V)2
z#1KR8;cC&h0jfW~fJ$ZoSQK*MrnR-P7}y~|sb?$O7+@jdY~bU-o7H`I-t+q?GO1Tu
zD81si_<~VsPHr|HSgARiDsaN6rE+=DdvSn!vHd0S5An_~lJ-}tJ_K@rw|<rMNeqeu
zhT>pEK{njpC7j#SruC0&STzbUR)b+~@NFak_|wJC(Tk5N{Ft+vN!X)Y<eocfw5oJP
zV$$I1DLgD#VP4iiM~@$5f>2gXuDLg+cb;x&#KzW;HmXlbic&1l0Ms`yL=AeS1*oln
zEwq>3skDj$6fQ=Dn`C8csc&H=0p=+11m<$_f`i#fp6)Qpz|)e+qpbiP$qvxUWYT5k
zS~OqHo54O>NU;2MhPNRReZ|M7IRsV@Ziuy~9A}{xd1>NhzXOto-urMIeCBAi{<7*#
zm7@Fx(EyzWI<)s=c(^c9K``oH(qT8wGIvzM#BA&MaK~6ObEDpm0<D>WuGv`XyqT}<
zV*flWmPANpCOj-l!KAJ=8)%ql`v-c}VH1F*AJ>6kKCVIl#Nw5TMy<gXFd>C4RHfzm
zb*qp6Jq`T$UUQ;kXT!?Cs?=co3(5PWBlkvs>Jo`8W;7VEgmH3kYFFG#l*q|Kr6vPY
zy7#OZlHXf%GwkYhT2HT>nox=1nRImzE!H~Rt`zo)oDsQLO#VaNVs^ZvvlPB>7=V~s
zdL7iBr^_Dow*7;@XU%;1R>vW|Ybk?rjY$>n$H`A|$0eGA9FbrUIf&YmNC!I-e=}?+
z`;ucl$KcV&S@_xRp4Hjyp)dN^3^i=bo7_Kx{a5$&S3^Bbt30Ske%88@O?_IKC^>z1
zX2P2{#+{+hh%W762F$GdF;HSHrSA;1qs^nQzX!?d@p;`4Vrpn522SKpHHjDkk&P?i
zSi^oQIX<AaT?3TOyp!|nMIzupgVC#W_>_&%P5<g3ScSUOqR5X<Dmz5?!&QsjSPzM1
zHA%w5u4bHm)580pbMs++4G`gM%i7#~aeM}NjtY!l=Y8OXjp;vlYHo#@tpb|N+V85(
zCWiopI0t7N%CnMi<Jpt$<*i!oS=n2U&k10<<<qpoR}^^2zPIKJLhC4p`|Xtf{G0Oq
zr=(n5k#_Il$QQ`E=f$6_S*wY6=P&VokxA?pjVf;2&R(yxrfR@Cm_}5I*v!J4olUXk
zKLI-`!+!8K&^u3qa>w#F<cC+?OZB&WHKN;Al>p`X>6&+3oFosi8U@asA=)36`|GRW
zhvh=00%M1O^iSU`w~LhXIh5*lbk-TL?A()UNY`p{6ZQ@_j#4cp{~rPS+Y4u(Q_n0>
zWH@pRHFip46_$xH^!~1bihM0$gBTs%A2I%poLqb7$z!YDy?X6A#crSY3;auYFIURZ
zI0~st4k}QDC;rDCP%@$4Bi1yQ^OGmG$19M(Qt8Fp$1m3c`|<-TCVdp*Y}m4HcXVPV
zHv#+m0&}ws$Qp79n%6Q;YegS8IK5V^r~op7da%uQm$#c>{YS7i+N;rU*KghW8k_r<
zl=|;Bb--N9*|;`_hTOI!CAtEvG^Cq>EG#PlfrLZJ*J<Kh6iV)LKF371x^z(+_|R3H
z=UxV^<;b{wTqq?4Dm!O|!V_e`@bmW2QPJ+`l8kO4CCLamMXJ5=AWV$Qk0lADvRoyN
zJxtPfz*Q<z>o?XI%S#)6k-JqviRU1l-B*)JO&7O#YumZn8zWgTX=H>E)IK-U2)_%J
zqF8!pp6yxyOKXO!5$)}c)=4sM;$|2s1|y~qL?aJocLpy!`B()h*=qD|6_O47e2=e}
zZz41ycSrLiRbu@crEjz621gzKoxU-^d{pJsF5AD0hZFJ6CbhK6Ii5<#+X%9GDyb)H
z09Sw0@r>A+!HOP<TS}#`#ef{Rlcp5!;tk`<az|&3cd3JNOlq|8onZbYHqo><a>J&f
z#sp+(<jQ$VYJtLnTRN3*zo--2#a7k$in|j92M9$XB*9p)y=l}}DOL<$@A(xro}|^4
zyyC2>;#7o9XrXD(d)~<{4LK`P10VkFNq3UD?IB4V*8M;mh2(K#UQ*Sdb;){8cU&CT
z8iO)DeJ{{oj$K<05Q2nNMwBkHRY!MiC%Nm6U{PT<^5<1zB4D~IkJ~c(l}Ky`*>FDg
ze8koY80;QE$rqs)EZ1k}T>AFNe$u*Xw?h@(bY9vuQzjhcrUpG+u5ZTo!bHsGBL{k}
zpfwTT!v~_Hi?ZT#q2;B`3`r76`u;Dq7V^EEVKf_>PAyx$C$f&zldIC^RXZL|ysp`6
z%KDmICh^n;lI%%~q=}+A{toq;qcdoa<1|UZMB-HXq?5G6iPS|({qB}|%i%h_w_Wqt
zy^--%u_(1sJ@+RkTkJhEQ#pV!$hmhEK93$<$QYIwbcJ+Nx9zH_O{demVU-r)>`V)+
z^?rgEEZhTEZ6tDw%-YW6LdvA@ypAX8dTh-Yz)*^`FBJm`26>;x;S<NPU>#$^f69AE
z%t5xZj=F>OyGvrFHYS_2AvAkes)1&kJtRdU&p3&>)AUsGr_AE^`SlI;PsZ~|$T++%
zQtM#zjX$%jwt6iebcYysCwu4_H0o}RPU|1o#Lt&c-7POuCI!0gs@8t^S6vThdaBtw
ze)3&T_R-#4__{jjIpk!ngglDshc2rkEY^`3o4IwM(~Lb|X@d)@cV=D@1Gim$WDLBt
z^161hax-GZgu8!tx@&81g%imTkAYSd9prT1V8SL7Uqy}|@XHXMi9*Vvwui%W-&@I;
z%I_&vB<|`Z4NDon1<iS%so8u)RF3ZR)u7BdENd#3#ipYC+w3$xyS!rqu>r=F7cao-
z-r3g{9aw3y_gY65XHF*i2NX#5oNQR31N*qHQGM6A?L)^}DM)Zyp@R+MWQ1h{8{IBX
z#TB%62<}?)PTt=9oK1vvHI#XkTC__P67W>8SQSnTS_4=fryCB&(<aWcVI5WZ?o;_A
z;gmDeP4=Z};Q^9hCndi~t<ShzhR+obImv+es+7PlK&?lm?qY^xMS~ZJq-s6?L4hs?
zGfF1?&a(U1hH<B!_tP4~6E8CovD_t}?@qTq(XgnQ83izSnjEXX>P<B}mxFz!nQqI@
z{wtvUbDIVHBFlO{4Gj$f^g9q(s4Wi&yvxP&O5(k3d|)!^dlR6Mk$(v^=jXe|xOvG!
zAxulb??<wm6M|>@Crymfy08+oYgW1h)Km5blBNnml!5O0H%$f~7qnWw7jd&+Ze$$q
zI6iEe-68$p-uBG3%$}Sm7em^UDE+A%%E-8gL#Z|rD$BCF!BbzmEh=!<<QVCEL~_gf
zcgt&<+En*8$9QyU^6Hl6CIcG|#MTUFqfFvNr#(u+2URJm*Nt-Kv)2(*oAPrHrGT2r
zoaZGlQ_(nmAF;G5EZnE-AU`OeO7B%BQFEUxKR**KNUWZs0z0iQG!?xn3Evy1;AiFG
zXPupq093Tbd)6|+G>ip5r9=OPQ&EW-khh=ojt<D6f`v&ivrX{0XMP|moJ(1x2N~?_
zOFt8I&E)Zy<%XhS8k^v6;KiD3;0@na6YY>b0Ti{!cH1+rQR{g<oJAc`p8RxOoXG{2
z00%L-_MdbHQOnbB?&;-nPq<l{N-M+YoT8^&Hu)t@EGU>fu+IO<Xp3fbG<+T|rc4Fh
z#m}Fx04lMH?}g-H!gZ%tP+e=npC?ZRKQ-%K;M;a#MAan8)^N7k$f@B@C%y|smd?H~
z%1PR)k^zmo+A_$01~D-dUzPo1U&+D2jzObJ7cSOcj)DnGLy5I9H<`&uUpisjYJNYP
z*xlKv13b4g#BW8STN+T!fQ!FD<HXZO>mHrEyYc@7$L_Z!LO0pO<(=0w+Q9A1Ho{a)
z0J~6vZmx;FwD)brx+Jq$LG?t?Ut9KrvSG>AjLH=!W96s8d08^Njv7B?bOqT@{4UZJ
zCEvxjlV$?9AVXJmGnc|GuEhpAv9D>ctGMf0vfu8S<SPTKbhaOyZAid>@tPKknzPTD
zI@pz0^z_lo$qZ6vBsWF_3>A5NOQxW;O*7|XHFiuGM`A!h<SrJ5V&<G6noCa7g|6rZ
zKt&(Po&NfpjZYWVlk-^R4^bhMb(YViYV`rLS6WtV=u;1Ax9Dk8p}sjPtNK8hfeF_v
zgu9B-EcfGt@J{lxI;6edpPBD$mMpSpDO{w-d&5pRSi5K)EJ3pjY?&65spCk(U&J!6
zGu(BeO1&f$pQdr;i}%0Wy_nZXs57KM^F!}lMa``xR!djmnM*|7)=Y!UaTGOk?ybuE
z5-Y$aUDR??w2-hA8>l#@4jQ@7r*-&Ax@U(LCR<MuyuiYX+di^DstRb$uo4<=yFJwK
zy1?v(>f7amrX`EP;}(@Zi)bW6Qwg)8^|CiE`Fyt5QOfb;=h#)igZ$;$ZdRo^@$6TN
z{r~O=^gEzh^LndQInwlDwjxNdj`RI9peW&<pQ34>Fd@NUq$_w)s8#@#*g#q}HMOUU
z=}FaleRO<3$;EoJ<!PFdeh>hFiPSDvZv&JvDbtr>A4h-`TPhnflr9MkRw-j*cC<(B
zr;>y5)(xerJW&40{}OWn_B6kBqDOcTQD%rZ0TJZEoB@3^;0p?v>xtk~uLtB!*R|8y
zJKw~M{cC`EjhJ`*ouTNX{Fegu|4Quof0or=$$!YnsmGryXPrR$mFv^aRuU^?rt=`I
z7{>ejidc|P;pLOxDw<!^erpJrXL|3DnDrB{9p6(uM5JJMTg#ncIy<g2(h<V2Ht+c#
z`G??3V)V!p>V#zCzYRL-B9gwiJJZ?D1OS@W-`bo%?TLRJ$w9TR184ahJ*j$n6fD$v
z<W>?Lwkz=c6A31att5TyiJ*V(Q?eaEinRR1PkxpBSL;V^yMHightjB_Z*iX;!3<t}
zRo}~KBk(+V=KBvwwM}r0M$!36+S%ok=O8pd?)2w<-%7>NBZ7jev%v1CEmP0D>N9PR
zu1ivrw}etTO5{$woKIL(NPgvpiWI&EhR&ZmJzqCG>n8o0Dv(XDmY12SNctp=P%w?<
zgIkj<K}6~OyVS=Q*XN`_y(LfBPyV>11yXC0hxFvCqj6p_;D1{0^LhT~^`2iOdn)fY
zaTAaWR?hkUK#FQFCyrYwMTz&vSS%2Hgao2(1bw3!N}Y^_+NUHFNJ~$=ed0aA)>h6?
z#?Zdjv^tY9y!zU`wSt@Jy~;5k&xyg*L?}zCNYgW~GqyHXZ4g?Sa2Vs;-*I5UxLH+F
z49GR7qw$97IC}N!ThJ~RiHqyW&em!_>yKC>r)ez74XG-z+Ym&R=KsPk!zDG%SHo2;
z3h{XIL|`hPb19#5=l38K+-0JpUp;72bIQy}p=F_81=-p7L1O7-flPL1G~6_gV@?Ss
z3>*7N_4~hni=-l^p-hYd(NRaX4&2dEKbROh5!VB>Dul3A#(`Zj)jXWvQnTMLjQYIB
zoN<j_W^LW+w&J)t#{Lhc<<S~}Z>k(9GL$tWBSTL0en|SN>m`%jgn8!l-~iG?r3B&5
zjiXWZKi*@%mE&&C)2FOy8mlIs7l1_mdw1IT5h3QeBP^eCKl(=lcw%z2A_}_J)gckA
zc`idmYU?MGt^jN?WfBnjy>Q8mKB*}w3f8i#*&P5Df=<+_6tiQTC;-y5-!Gs~>7_hu
zhGNqX9)tuMc_-j{mlyVuUwkH0Cq9Wstwj1b=Pov=xKlBQk$-#7i;o*q_$O2KaI!Km
zIGZy0EIHVt(X#dlRVWgTaYtP{Rb8Rcs@+GPD+ut+YqpwyPF=Flj4$B2^FdqxEXUBa
z(P|+)bh<4vt$_*JCkp!5FXk+~`x0aHUfiA!J(ZR|h7cmEGtYsRw|QR9&tum4x5t60
z)d*uZhY4qrWqf8!s?2>gO|bj!Ct1<=Qz}Z0rhN%72an+h*>@Rmai+U^r`tVRz2+j;
ze%!vS%EHRRg%Ms3nXt!*Bw`*%0b0iX8HuohphbPZwN4Qeqb;00K96+O7+z<K8+a{t
z-Q&zlQh8HDa(`KU@gz=^V%$&XchH9Ui{!kWeIVo3{lOTt@zdi!1HnJ6`6*dHrhP5A
zlAW{dqY;e<Z=7PG5*TN*BM#@a-f1tOWDx73;6#0sui8#s8z^6M5nk?q%<6cuWV515
zcRpG%eQtY-EX}mk7`eNt0|4I(UjFU+ke=Sfu8y9O-qu72u+vbfSDFKcArjvKJ0@It
ze5j_5w)TbQ>>orIV3WNR->^v3c$F{<j>ieR$WzRVCbGZoX2mulbmrr$xf*NZ53n*c
zpujYi=ofQSYxy4IQS;9huA>P-mjZ)Sf6u5zuzp@n%Vo%Q%%?aq5LC12@oGa0Gm=s%
zp&-UOjcL%DVGxq10)kiWcC6LLvId7itcm~*wTdk!p|*-Pp3C;aTCLI3H1)ymBG20{
zZ5#K>Y@oRS%gZ_TqRibphxGxDD1~J+(`;rjVTZ0EkuBx1ib0t$0Kc}LFSO|t&Y#$+
znvbNz>09xhKfP}J-_Uj}2{1L&f|O)GVD;yDSSH;%*_4LBJat!U%6b_TP-h<V{in63
zyoV>ZXm>Wdxx#qcLM$Zl+Y1C1xSKi@{LImDZMqNd&tQM@nvt7MzYqJx4^3O?2;Ltg
zzARi-GB9mS*T`Xqv1}leCv|Z-O4h7$aU?PYg)q}=5_@ya3`~9N_T6~$%Gm-Ji{u^G
z{d5%o3iZ>|n53bUlmdO_sNUx3V#R6?MlXuPD}FuBs8@4uW*=<SR(e4G%84SwgX5lX
z3dRJbeW)=Ak|`z-D0Q6XOh?beR<{<&T9OVGYXwB}S9M8X6$KTC>n{Il*<B#fyw8hk
zVVc+1H{o|zDVdVBAmz5-I2nAUk{;gMHyDH!%?6mj4Q-u9kC*%EHT91!-Xui{>`v!b
z-}VHs#UElR+DmGHjTR2t@hv8gV4G`!q0x}axp>BDlZ|z0<MQMMVVF!DG$j}IK}Foe
z<pG*>DYA=X_vxal{O_{!<OTP`N56#gf4GF;g=rRJ7>c-tp>GyHdc{>xt$dLwlA@!>
zD<gJn{toGzkP6f_MCk!;bJL59y)<!aBk3}CNT<qr$-GES8vN8JRk`cz;?$mlgVjo5
zUZ|y%g0JQ~1WTE9ck0a9z7mEw+}|;xhxP_MdswSoAK1I|(MbX-EjMo5RVb*<xBrNN
zpa>T-oTGX60>=jnH+$In_AHTD;3{B0ia2CKPaO5<J%7vyNC-{`>I<1ElbJs#?lZ4K
z246)hRW!ew9Utg`K#CWA%#3a3SlMR=I`Y&|(-I$a<85LuU84Hdu>)N#ml{)(D&8~o
zNiF!|kiJXdzUV)|7P}zi%hED(S_PJ-Gb3Fns(#Qu;B?7}@*rd3uTK!C50QW=t<C)z
zSbmRj2d&@q-v#Om4l>cXB9~85@uRR;ysdJeQ|q(*p$Q)t#wkzE@519cWy2R;BFiXg
zd?tJS^--Yy8tFQT;GL5-(OkCdcEB!Xl55(TlXD)ff@tPw;euBl05|vio23GCl4XSC
z<;VBe(XWUht=_e*W=#|h6%k=5N_lW%4nA5Y3CcSvuO;7s?&pDik<+Qgby?oq_Z;=E
zXCJ@RB?F~@Cw=(fG8rc#{Kc<(0|y7X{fcyuo@R)i#ztX&sjaZF0W9U=Vj(uP*O|0^
zh)LP^T;?})pVL)K`k<)$5i`EuzO(`adgTd3=rLMA-l>#eFd6q;D!`+|k4byTls$|l
z$e7)t2%N*t(y<Kt(<?`M(LJ%?j{8HCVy~^IXbEDnV5uq-)dhiIO^(rA69)}@EzcSO
zSlJD`IP0o+*ubj>)l*hZzUb7W5FWtvm|@B7^WHMk5ZV;L*58?W&F97>KpzPK0M;GE
z&W9{@t-$nMSJI+Ik54thO+_2$4UuSR%@#&9BvZL5X*Ki!fUjl8lRUfR0}Is#s>|6@
zlsHFg(PPe9$F&O=j61e-&TU;|g+4_VxczqYtH%MBm_qU-2A0Nh0A)-sQ_tAkW~{_A
zRA}np!mi9#VP21G{S~G+TRAoKRgKCVHJqNCm_J1@fXqYR77Jfo3o7M(H&B(xk-ylC
zpRH7&^WK^gYc@po*1-YU!`WOzlZufsCXw(R0bz*VkA3RE?lqc8!eAMF1DX!wzn%_{
z=6)g{!CoZsg1t|~)0LPMVa;}D<v5UU#0N!R8RGPB8g5AXB?^Bq6j#znQ`tM8HzlNL
z<i)laYyv$5z+1b`%J=ovA2?VV9d^@&(+hVtgu!pKmFQyVp?wQ?86wmrJ7e7xS^EMW
zEWd`?Y6Byob-^}hXrTNZ1Opy2=N|uqXoEt6Oqt0o=F_xXbdl|E6ZvtmiMT3*y9urD
zao$4JqyaUDBlboxa!vW^+agBUbIW@#?OP}FX8Y+kBF`25(oFaL=#bU-_}y33B#JD0
z&1d^LNz4{MycP)=lQxl7Y%=S@cE!KFU?fUzwmTijo(GY&=!9aRs|Ow3j=~VL;7WaQ
zcZve#-H{QGr_4#;0tC~U=nS5!gOmY4N1N^Mm?C?@-SO;zdS2A{FOnZuxTp3}&C|0c
zwtV$H?I-|gJ6jTI@hsB!4XXF#6KX9m_ci^9xgZqXvdf9sukhGi(P*)qFsr2MLVDg%
z17P_S8G<^AB}?{J1DBxz&wPL|0_Y1laB4AH+$Plux*_gcV=1u+6*|(9Ce^0IW&kXf
zZ1*f&bTK+9+yIi=@$3FY>$Kh1zb+m#I!}%BuvN|v{C~WZt^qtV<E8!Q9sm^xE;f6<
z7CCi|UFW7hcF^U~e_KHC_goJ66i0a;+6^_s!kVb{Q80&fj3^W~SU$UJdVbfW$1yKY
zQ{Va_>{CZB$oyk4I7i{lwYE0T-)>3!POlO`i3P$!cCXKcJ}%Qr{=YDPy<OMfos5uS
zXi%qnJ!N>|`wC+$Qt}GmC#{%_Gjlo{Hvr&QpG^^lMN4e}{c?8ZM06cM*(GK`Qga7m
zzSG|W7E}Bo0!FO2m6~(ak7rFiweI79TP$r%4>z%zkVs!aOy9agz}Uph5$-rXUOXWo
zq;@;*!~uxI>C~Iftwf(OMV?+568|-a+V+-b&zv-42Pm;T1qxK^!7uprT=@c9tNzY|
zvxlu#FM>3(7<y5!;+P`ZcmNW=xbNnkxjd!VG&Yg~qlccNa5n;gKG;c+&)Lvmy=(vs
z|4F1PmSan70eIyNgSj9OeF9`QLvKKY>ZV<+Su}+@26*uSG#{C;)VaQY8NB>~6g2qT
zSM^96j3`(c89?1wv;TBqy@bNh-Wa-#bf3$}{VA@B6PpbMh@U44pZ!-iKV%!>_N+?<
z>K6{6I;Dp{X1(m@Gat91#M$V{x~ZvoTP}0`_0ZdLsc+cg^F}R*vrX(1iAL>@7!zhz
z;uXbvmyc6LUkgoH-5at2g6qOhmveVt8xB^SextY8hW;%6ylcXDpMwJyfXep1iA35W
zdl>`$`e~62cs5|H@D5-y?^;=Qm7Dea4L=Y4#WH1w28J0K$U&CMW#5Ny<>zb~+nMNm
z!Am>|(7OTQr~Mc9FwH_0g5xVCXb7;B6oa$Z?PuV$qYmMl31^H}$=&X+n$F85jYIYt
zpOHT=tAk+{ccLc?XUEY_*izDyrL}K07pSp4O5#JQ)2Ijml{Ii_p%mAYtRSEwet;Gy
zhV)GPukYNE9BzCs*4RlbAn8dULLLn71Zc?ZD|hOdq|Gr)m0GiPf~3peE!ly5ZSHMn
zHk~m{N)jxlo%%FBo;IfOL(C9b>S2Zzh-|5|6$yV;{LAnL1`BIv%lj}9z&f^ek6J?%
zrG0yofRhW;k;h6dT?M8jB-h8vg-1m6Hoz-YqG#*p$G;`6MoNotF*@ZwoW2YtjgMvD
zAOwMhvZ7*0AV8CReHe)3Mg0_wl>Bs)b0{}8)E+~z(@rc{N+ZL=p7dMJl-v+fSFMxZ
zu(3OFGq_mAaxn`A=#x60EmHHJ<s4Lq;IDmP!FqF*oGctHlRm^8w~jAucmHP!{^Fxt
zbu5w*efBgBFn-P;O4Ic7hcutO4WsE9QtVm$tVQ2^wCg&;^HOlm)QuJ6gk7^pvq%+C
zK!xX=*r=k2Xvb|hd_oJ-7xFh3J!3%&)CZ%ieePt8p*3=V%D|Lh>=uI!+X26cHBX+T
z9X=<FH|Ew>>sbqVp<PzWUwKR#!FXfSy*$z%4b>Tv6-t9*G1ESDcN`e3iE+x2#a-Nx
zNjw#N`?x|ttfF5GdOwJLL&^Q|Ph<budP<4IvtIGuP(IqX9^F0vm(<tKKNZc99~=J5
z`Y%3n7B?5E9%k?LPdchcu8zu+<(81Fowj$cE&jCds{zgB1L;`lZ=7M-|L-L(XLe@*
z<fK2Z|1(VU_wWC$CEEWLAoRz;<o`#b%Z9Dqxpk(!eN0<9X~R;%@i>o$2LE4ZN1qZa
ziv6d!c2)rJaKLE$yM$dae3<Ja#aoIMD}X2C)Ui=+qE_!8tWOSi#v2nPll%h;kIQn%
z);y)cr~9LQyNzJZ{_7pY{TpZpUT27^<xiNdhZ16KN!AT)lsPil#2fGY#-B?;#qt%J
zjyEmBt5xzbj_ddjOebPRNUOZWSET>E^J;)aUX$VjsnYm2SFB};__$_<dd2@vOHpeh
zX!;f^cEOxM<e?NGC9VBnim^5V&<%^!vZrw3rKEu+9V%5cWyb#6@lVUY=3C2A;@eN^
zw8@{R2d95;2jbo9f7^%;DSp}W(qCT(Fd3}Lp^-#&Uh9gPz*8EBO{n$y`wRJh^SWz2
zw%HC6PSi4pcv%BN`d2Cjs7c@oG%9rg*)J)TD*syS`MI8C<&4s?TLdWS&_PW%aFYm;
z8D+z-_z!|G*4(I{M(oOqGlkVQJ}quWY3FC^6@o&uw7BOg#5RCGxhK4~^BT%>*yvY7
z%uxcw5>t}HY}SBJ6nPXP&&dvB3hC>VWaTqpahqMhSFO*VTk=~p-1USbKaCVg`{YNC
zK=3H%6KE{}p~Lq$cY?%5dn#zpAhTxkv0q7z^mKLlVeZs~#b8~*ieg!>y(GdQ>eujm
zl}?2Ruv2PJ*%k$I%;87S0SeceLxJmm=yWqDfm%K4&gf8&gbbK^c!}E+QLUZM&c<>u
z-2^R&f%l)RdpQ(wkNkC=d?J|K9rIX9+wDmR{WnJqJ1UL_U}_Y%F_fkT=GY)@v~V(`
z+t~DY$B@pHz=LI^`gt9%i-ps@@B@~b9|zKv)#;gL>krQs4e@2eP&}N>_I5WM_J=a{
z;%(#maB33~MK8J80S*1b4m@urOaGn^Ad{)<`ivf*P6yKn((cbBSXw7dr?FPIWM?BH
z?sIjy<|DmFP_;k&?I`NlOU&PFJ_9u1Orj&ONpw?>LeF(Wuau?Mw2R9D75_sChj2S`
zIsU}!$!<PfIKYqEojg;{S8*ljXbe4}&NT+&f}JJZ=IiCQDhRV@)&8YuX#K}#AU`3U
z$W#SVP#|lx=NQ+rBtKo%%8-+7p<TQ2tm6X?T!>~e5i>G1<k{bSin=pVTFr|6#x2Wx
z-%4mF5<OTY0{QQHBlrR<VO0pl&Ti=(jhD|Ygj+i>oy^APZFrYoKVPbbU~5SDzp<1t
zuX%_Ae*{F@4i_wbRy<4jR=zsjC&WZ6z*l2u^cazih4_8pNY`p8Udi0P^d&z((Zx7^
zn(7;K>gxESjkYxwehU!2<cIqloy)D^S=A-+$e2Y7UL)g!EL<(yVprrO@kE-r9!WXQ
zfZeowC?{}yMz--Le}ps)e|^4M0}kLS_XV{t)lSC_X#kSzcU^1QaMUwKsUaOy`QZUa
z`%3fCQWIxAbWn(-1OT|KANlON5_9+K&mOne<Ko5#yyv~-X43ezrFv?=yV%SU-`{%w
zGt)y-8QD<eIfxfH?x~}lTQG8(n*suu$$gQaskP@iIXU;_xqj&lX#MMFeI{B*lfNo?
z5;^`?Je}6hNaI}2aa+Qh-#Cv)%xI-!AoUhdX;f2*!uy8l6zSAD;4zl$U?WD1OV?Ar
z1gH}gpE1Ofqe|`6b0FoYEqNN=IjMyX9NCb(R|NE&V2I=tSCxd!pmxK(S<Lrew&Ir#
z&XuZ`?ASrBTMpd#fK;UVQKp@Dk~(~Q#muzIXg{?hR_3=jaL)4#)c+w9$tizjw`^;>
z(=&3FhqxMmlybTPNtiC+^IT|0rxY3AVo`u3!Zbv&B*#{j86Q;db=o?&FJ7R2e&w-^
z&ji#7t!G??=)ORV9E`<W7ROL;Q}&BQcBj7g;XG=UiBPGBk<8RtCXED*1_P&Av<)h(
zj5d{58Dk}=6^xp(8)LzI(q(cK%qOz4SI5e^`Y#Mo>}YWFm1u9o{zP5BUZsOU>U64)
zs^k%_M9ZHc9=x~Q5R~Aa|Ii01H%~Yz!FY5V0PEFSQqg)Jt~FoZG)0pI&QgNeih&WD
z)-SF+j;<Gg+!dilnQiorC>Q|KTq`SfX6U{_P{6_<Ue^tq`$QiOF9C*uuzAiRLlc9n
zr4Arh)w&h?-4T53c%d&?-oQ}WRZ4c4uucXC!wS@$Yig=gU=vudg`VZ?wcykyhZ>(!
zz4;txe(k-6DqEoXcHLI>`hG5gaTid=arZ3k+G{(QxcIab4+37_-u%g$fk=R-2zgYW
zols+lu8t;fR6<YNg3)7H=uJTS`7^4>gLyzkwJ5T+?m+2H;ywSiKdYAH&*HG$uBbwF
zTOzjVwxy#|O)V6`FoeurL8s7TC>@<N&z%MU(4B(ZR_<=1K-gc^fnly&@fJkVDVcTh
zb#-iQ%LcH|EarEmY*fwE1g~!#d{U#DcioF_sDK}zatUbfU3;YhajxXBq~vfNDQ?Md
z)>$ukMpIGt!OI|H>mtSwY26VFzy1yGIStBO({X947jlxr#p>hoEgikBH(hX=d#y-n
zSs|sdieR$`z4^0(0oicJlTdBqZ?&X!Wn_Dhrf}m>u__*h-90nF0|^r|rOt_umeSDf
z@B+NPV&Qw!Hn=**O8*71g|SA%*#6|N!RgUcT3SE>O)!$ng%orli5=DOlIMXcPLc8@
z@CBwY;6aRy4WW^|8e9Eja8s+Mga7!CG*kNYVH%K>2e6X!MM4H-P#jM~fy+wSD?;rM
zt`c+H8M7vmW>cqb0JyannEkB4$u(8a^PS8T_2T`t(<iz$X5!`k=~F>zbgSb5Ky`St
zy8v6v2@)+pe+^YT0PGytD&?HD=uZdsyu4R|Z$Z@d*q~MZcb_Mx=Dzl?3_M&&!)u8w
zs>EPQZ(e#WpxjgoF^4$^2eh54x9g<rfkFCL{sh#XmVlI(lb;yZ_k7A*UOl&e`Y`z0
zGik?|c;nmPs^#zWleL=vdF*8BdCv0mhrR^AX99P^Z=PXAA}sr*9>KAZS2z$%n|P&b
zXD%k6<;66;iZ`C_SQ?IMagn}_R_gW7`}P#B$yunJlFI(`2fybmz<>30sno65e~syE
zjcs9WvS(&%OoN9Qn?OAg@Hxmysz?Dw#2};_K**B$^W$q83@Q1_tJ%GY<B0)orKz>P
zfz?QzbNi2Pl}qY}7UNmfNfkO$nil|XQN_X;NZi3HH91RP*5U=U_Y2&3mqOgU4iy(h
z7WY$!EAn$IJ~7Oco?hYa3mda`Chm*B@LB|@pQ|Q6Pb4rhJx0T*fxVHQhC!puo-}Hz
zx3${xwhOG1nds`^G4+s%52b@91dskowbpYXx91+9p86`{&-2$Za@pTQF8$FeXU28$
zzYvSR+{2PGcV)}1_IJmo<;r57Q#5LHGH%b%`Wrt2IV)gr$AY3<Q6K5^rk@oU0*kMG
zCxC-;@K7y*)s@$2CqE%rU&^DpA@shMOs5m1-(cdL&3c{B7zAMU5;WUOMaCPzkslV*
zg$FxDLHNZBvjB1~S0oG;ez?+yyO8kL+#bDz|HwIDx*)%CT?VR^6FHLBb=qa#j|r^7
z0~0f)^6|jPD-cY}P5)vxc0^K8^FD#!k_S`u*y*9%Rcql5t{kQG4t}L9V2>Y&zMZ82
zU|B^HJ=1BIaz!HZHCF#Xdr(k2AHOsH87EKf#FfPwl?NIig-*4#C9CtAo7Lc05G@*e
zm0)5*-tP#mYi#B<vxqWO?X(=GkIuPw*JXU=KH6m=SgbQ2h^6>ZvA43W;MUbrLuf|+
zaoknk9tJBLZLwmF(fefZ4;FBE#n!Nyq9pLk6`@T9swjJI2HsqL5!jT(Mt)6dk;JbJ
z`$eCyH8rF1miTthVt|hOA3age{3PBq%Ac#e+X5VqgL~#@qr2Cd9!Y;JjXx})%CH(o
zXC?%9@%!MCJKmrC7;B3c<$9nbiI0g&DN%tz@@iEwrp#o*9!NI7=@YPFXZkLY^(;(m
z|E_SepfpJV&l06W7|f+>cf-waTYYO;hH?t%ME-Wm5t$qHe{lla@f17V0pcaK`Wv~Z
zST};i!U)f!kc7J=Rwv6Pv-2tPHJ?u)JmkJUqd}snvvZf$>jwzrKR5wI^Dkr%WKp_0
z?~&(2o<?9n9Td;r<Codnnx+-hy(`+&23Xvt6)}%2F}})3%v{|7e6xXzBc0{IN8|{9
z^6m&z|D9OR7EpdPjl%$vepVC<+&>rjr~0_R4{uk>NYnU1L7R&2Tv1)O4_!E$8EaGT
zUDw0&*Z&bOi~pANrC_{BM-R@U%Lg>fwEndW$G^$nuiU*9{_}+60D<I2z1kfypUna=
z7eIbYJPzO%__bC3hnCjf^<T8KzdZxo$)b$y7M%fF<RZJ^NkAt45b8(_rWWcqei2N0
z01nVi&wSI45!oJcrTsq``wOVHmZ*;#4y8a_3Y22SDYQ_axVyU*cXxN!LUAilpm_13
z0fI|_;!xZrxVt;#J-xU0d!F^JXRY_m%4)+&ax!Pmo|!#+_WXY$n8Sj-B0a!X(?1Vk
zyhM)SWK;JE`{ehuP3dWV{Iu`&PKTBA>m#EHXE}p4=H{QFIT!_G62=E@Fk3|a8%P12
z^CJ>*vkM26$LQ&f68$@g12)!B?C1PlWczn<{|*?!nVBKgS_j_q#%}V5W%DaX&ap>5
z!2i?bOWl7&P(a7!mNnlJiyp30);FzQL{>B0#LK3nXp#31OeaY#p5je&46)EEmwfuP
zfkX)ii!QSOJ0!S`Ci03O-@5MBU6w2^-|aX992D=FqvQ@MmjnLm-5Tx2IzZGDpnbTq
z;IkVALc9&U#5Y5gv(~5{Ic++h>Zt#@bo&9QZ+}Oq3Qlr5Z}uESJ2AQB=E1!|=Ml^-
z;PR=#uZ;Pv{MqUo(M&g(77`{gf1cO9<k?ZIm{Nf%AJ;dIA?GzpG5PY^(<fMeWLWW2
znJ>0-dxop+CT)gFE$t4=)7V4lu3h`QXYAon*j$bE%HCeC_k7vi*CGA$o}E7>2rz$&
z<Va3Ffs_12;%AUmRg&6%dV}!iWqnhU2aWMuJO;+FGrt(qGc#4KV&tuF{M|z02m$=(
zZoYE^>h|AL(jF_f@j?t!*-*=rTQ3?S)uDyqM_$u>jjp?+WeJbA@^+a;DNIBEY+T^&
zm`!<~GoezJOCchvsj1ZvrK6*f5|zZD9F^5ZmDB8V0OjldB3f30I=+EQk_D{fQcJ{c
zVvUaG7Uu}tf){zo=NdI<D=>TditdviZM73EcjlJxsCOr~ri#1tT8j^7(+ag~jyY~-
zz%-E=M4UgWYt6tqN*f#2Y3ysaDl1=X)v@uEbHx`Z<+z6N`hKNrwn$^*70xzGQDBed
z^*tevm#m>x|B#Tt=I3WKtjC)KXz-#FeG>m-9Ti<<$)YDH=&8t{_emF;qed&0+#v5*
z>2^hLs?$6*8h0=gXKg>M^3hNyeRD=p)hwx28s{>S!9(~h=4if5v9tN)&5ag$Ri$Yv
z$CkLj)cK*Z-^A8Xu_v#sBqBYa#NH+$_3oAQ`>}-uUh*nPO@sT^!jP@?xitnc|E&G;
z8+e;I-`&f3lG@m?7pReQwMT4#p8vV!FSi4GSnU=-1`GR1)_M%sph%iq>GY2Sj-{dB
zy}!ruZvarl;)8fzzWGa1u1ej|MNwAop<h$B-ezW|OAX#&*ZEAY22UxeqO$o*B1Vr=
zQSyVC8vkMbjtQ$8D56X#{R0X*{@rfRg-_pwrtjIo@3{-D$!B(}`y?|ta&_e}lsz?=
z|C>LB3AAGSQ<P@?<n5+i9}ZhLfZ;?c)^)zaF(yD(ZJuR#MJm3-((HV-7^awTA4E`R
zyR-)YsOkZkF%W36v5ib#)Z>Pu<JiH~fGpHdGB<nQ1`S9Vtu`$C1tu`xb@$<Lck9p!
zj>AmI0#8PlI>Iw=74yXN$!k(c_?6~o?jNuh8qtzFvJntH=(L>HooxNummc`5AaKKq
z`d`A_ZYq;a82)X7i+xzd(S+Er#xrE}^$h-8X@zlq{deTMV~OUbebv^(#Ef6T1M9yn
zT_Kz4mBu$kmZ^js6OHsNo(*#+Sl1a%$CrnSlvI{s+lzdIvyk1z7EcQC6B7Q3^$n|V
zpwMh3iEeKD6Gzu<Ruy}|^kJ+uGC2zjs~4JO{C0Ox=ffX6TdOK0ioY|*QaITWdPe0(
zL6-CQa6MV<NW!avhi4rwS&}c43{ZVE{wPDozV2Ym;Hio0TQ8ft)VjVq&07Z;YFNP2
zH_G65Js?U*4RBCoq@^D&o3a2n9DuAbvM}*DUUu|7Hj<cm>|t`Ou|}4BHzp*~V>{b8
z04`QYq{(c$B--b2a4|H*#C#9Xu^PObN0Rl4c^qqHX@J%_ao+pW0#F6naEOXR3lB5Z
z1gKYtB9$5+Pfs0My$+_rmA71*I6bxjI9Sk+wp}p5BZICts$x+-Rvfj(g`n+Dfwd#U
zNCaZ`U?r%SU0v@l2|0Ivby>@$u`VCi%Osa&aC(N=C9JPcSWnxd5uD=aw?XP4Ex?(-
zGV}m4$D-K8!~y^{%$RD(tFh_DmtSCLW@<`e@ZO)HDPU2P0l=WRj*Rn3Gc(r+Gbz{6
z_q2Vrocl%_r({>&Js&9-HI0pDee<M1T9utzDj~DHvd;MCzLkTO#kkb=4K3l+#23#X
zrOC2^N{G3S59iQODVSkz|94{pgyc}xDs?khtg6DGp11pVRAm+YlI~zCu&rTgD(3mi
z^}Kwm@a;`Hx!6ozW#w*I2AXYW17SI3jy8wt!MwAsj)sg(tvN%c-Ivi)*)pAMTUdy-
zLGMIKPi2+a+8X@u{`Ji#-7<ngFW0Hwu$@~Z4oY!~L?!W%?(v|ST0<h@H}<6RQbpoq
zKM2@3>+G$=K5%Q<+74=IkpoF;q-E3zt*JbB-ihKDcciq!X)Xi+x9?XVIjnfr8JC-T
zhIpaQ^l@QlYj~f7g+urH?gjboLIWKpF^^kFSXGs?-C`r*Tt#_s{>^8Ro}-YZtj7nA
zfyY}{*sef<JU%HFmj89Hl-C$>_t4a3_vG4^{6UFE!0zOOo1H$zt7BrKec%Pe2IwFO
zSbuV0+RkAY$Ut20>_}p#3)QF9d4DD+>d>pFbGa9ZG^w>d+>TcX;5|jYZmQ>Wh38OU
z(gC~^A-|PNI@-rNgUyu(Z2(VL4{sZ-uNTz~k<NEoZqwVF{>bIWTI!hl6~IwR#O8!s
z^o>mda7Smqn?L9+Z}+k+Hs=W8>`t+NMr*g(8Af4*`~oW$mg<i(ZVFdjz5OGd-4<rD
z$;032v$#a)6O{Ebrv@UUW2d{jEt;D(7#P?o#j!}i7pGonv2967QIEloHHq()wJul5
zTaN29*MVb}5fRldMY_8;P!INJ&Rys*O-<rkd_DW3qwz&3Lc*AtS>0;=r-L%+@(ba_
z%aRJybF;~<n-0BW5re-+X67N4j)3aAtyUvDo0zdRkSPq~PM_yc6?J)NEYR~s|C2O%
z?NRx0zD}X8Tz4*u-`8-q|3V@rLtbit6F`!wxy9JI#pAPV?I{t2i56MnOZEL}+*$m_
zi*d$<$QZl6`!kk+7DxjzW^kwgSx!RXFsupwHB4Gs8ZgVUV<0G(h@uRA=%4DoRh8a2
zQqOlQYm-qg@9FHMRV_X~MgcmKnyM<FL|a<w21r8gj9_|7V%ew#pzbLz512+U{U9vt
zPPE!;k`gw*(ENnF(UWJPqeHbWPdCl15f4pxH=W0yi=CdS-mDFFjDl?BctoP>QsQ;7
z&ul#;tfTU$A3wkJE^_GTm?T0+LgK%BWoPtDrRWzrX*;;SB2U!&GD<k#2r-CrYU+1Q
zv@`{U)tlQf2?PGvxNnI)Wba-pebC#8JYNEH?F--)#S^^=3F~bOQ0%RFfwYsFf{kN2
zD2q?d%$A*F6kSFf8m2-smN-81g_`D;rzGcfRoSa6CMI7iTgSMm&L}2UgBPeZGD!e_
zwnzrAJp8$c=n#Er2+*Pu;&TqBW4k`mfQ~C^K7MR;JhL-0s*-$Xvjp8()FlL1N{36a
zvQlykG#^Lvnb?`e9;_FeM}K^7;Up?A3U`E1qS-GrrzIqKug_Q_R@RH10TW6U9a&K|
zwWP*#^cc4w<jZ0lq902cK^X@n$+pKo_<`kd=NSM?6J~MTrU$M!eE;73O@VtXeKL6A
zr!H9aQwFZ(PKpT174=eaecmc1K;uG2+uzu>P+tM7cn%X&P>7H#m8bw13~H>fr~3&4
zazyA7WZ27%e_UJ-6a@6kMLt*2FWk!w_zFZsv*#|hY6VGQPEOUp)lXP4GaIpLMMR9%
zH&jwmM#&Zc&7rZr`5bd*E>&uH1Q*9Le0#`tvi0KuYNV(rGP262<FQJ<dL1W6Q?Rb`
z-V^+3a1mdN2Kni!5#aXhbw6!zQ7jvMg~`QP!PPLgZi0rnv1w(L!)9makHX2zJ9F$H
zmm(@7dUa&&;nTekHQTDNvE3VmKS(Md^oiyA$f{I1t;sdAN{w-#>O0Vo`L%%E*)T8k
zA|O}%Gan&-$jX_gTP^#^i4;Li|M>XiOz%k7tm9^Ef@TsR90%xx7~oHhw#S5VyW6>+
zU#ARey8}$CCYi!oqsp+bCy4hLq+GM*wvlRd1Xzl~!cHnKr9h~$m~pdbK$`s3i}$8u
z5i(kJHme5qb>_oDNv01EzKDqT`X@hVs2hZ{o8iltn3FGy?d<L6n>BO4-qyHkBOzU9
z@%WqG&#e4m@VeZ|i@M3{Mek11EU5!juyH`4vfi`KtxS--(Qi#&$S*s*5|jSV>^Y!r
zVB#ASli7q-6{G(pZN8+a@9im|T=GmzR;sdAMx7*71PD^~nVDKO=#Z1UW3cl?axxr!
zHZ<sEweHT~P`5Mg@bappv}dL15x_07<2x+R=y%?lXzbI^oCcHHKX7l95z?dtTB&S3
zMR5-M>4|zcRo1U>HsHxy<!;~#X$uo&wRmMefSWJbE15UP(0KBZZnpH}K?1nbrUN;>
zD-v56Ggs9*6k`obF&cEat2&w8(SOfN7dw1@)H5E9{8}fC&oh2^V&hdoI8s1tG9Vr#
zC|CpZAQa+qR%3Z99lbq(^&Xe49;~j)iu!uF>O!s7eljI!S6le3tkwXe%a;T*C7R<Q
zq7&7Qh*-wC0?Fm0RyDd!)pQtA)mDuzU5)mIkKfYM`!^ht==IfAbbKCvKdMuQ+v9)%
zUUxJJN4^(ZYg`A)E6mW2ou$^E=9|c!tW^7bn0IGq9&dqxmDwEBHZnQUXRlT_nO>iY
z+}>Wn+#H2gMh4i5$M_QS;&Aff_pA)S1KnL}HP_PW)*qO<_3*5=o6S2lx;lUz0B?4P
z%k59*qGH<4SEAtknKrlaFq`cw3n5f~-~5fUtLN<vQHElD`(}ZLhW}u1rQ3LX9^T}(
z(ZUFDYvFc&^R>ivo~Y$&GEWd{?1$fz6B3&3vLXN?v&Z|JILYVRH&=U?#GZ-ReM?yv
zS9rWxfO4r#G=UE}GrL*0?_jc|B-u3&QAgDTm{cK~EHR?fsCY)!cvnS8vuLXA>nO%<
zHZ3D&F#9U&%MHo*T9raKbEsRY`sf>XH<h9;`#*P2O;xw(d4WyY6JB1-aOQ#_Ae;UE
zirrp=-E?l)d{~d$ZM9Ue4Z~K$|HK~RQc~c@p;t0_xZu6LeZukt!Cw%bx#Z6wR3}Zg
zTxUIQv=_stmX!4NVsE?Sy*4}j9pFs*r!-0Cj@CDDF+4a!Gs*@_u-6Lll_`CB)~-(=
zu_R)9Pl!ZWEBs?|O4u1+j%VwZNY`e-Ti>e~9>-kTYB!gz^EJ9>K8`;je=*<C`m<hx
zJdWLV%wX~~n3n`B1`&^Z<gi{@-B2!g{LLsU`7j4K4Okub9fdw;X4z+3@^It6egMep
z$eA8TfxOs=LxO`7^pF3y{J_F|TNk_S^N6CD7oivxVd`yoaz2XY)t(-n_a`kR1^;e2
zb8azHv7{zkYAzt)l!SU~xG0rv!{-Se=nTX8?n#?K!{3dq?!}`PfX<7H6FnflI0sF9
zsXWfSZ&T*kY#uZYtf$sR3~WHXhVg=R>~2i%hdA7>w~G{wDP!^ZO!_(WTiQ2=lYP31
z<ywF1dKe5B1O!;U2zHuE4<=-{TdFZGD-U|kho3t!GSapj?60Z^B%XInOsu=s{S%t-
zu*ZJE?X8yh?dQtL&tir`J6&|lM5$^C^pYmmHD>!<1PK=-N=#24?Ng8DD}g+eKd3HD
z%z>&Qd31*GJ7)QqOK@UZW!zhQ{Kq?`GCfF&>8zgurJ<+paI#Lm%4<bg9UnnKwj|Sj
z>4C7`-xGO81ccTl95cy5EyU&IfUSeBzn<Jo6i-5gK!{A^Eq7F}@!S54iJt+0r^B86
z7rURMb&2N5^tLT6Fe<ssl{NL@9`Iv1A4(`Xpys#{GxyKx9a+?$tt0er2now{YwD$O
zz;)jX0m5z^;yhTlHRbD98v~2wqpiKQwa>->e*O<bZ4uMm9S?YV-JzX%WTWkcvX{mZ
z{PXtpw;z%J<sSSGkqpRn|2IJdDE0raRQ}I{f3|Y`eKfy4EbBD^=rsR6d?xDKp+i5B
z0{jsbh5tPy{7<9*=k@=v+5RwT{yzTa;QyHi@qZrtUwI4x9Buz^K(@E`>e_#SY$IE+
zMj`+J`R^lO<R35h&maHi&-|YU|Lkw51E_kIHCpKgf6p_FaAj-yEk(QjZpIa6O@XL*
zK{JG)s>`t8^X+RqtkwC$0CWE9*@70l)QO9d)s-Jhy8uP4J0z#u_1+~7fNkv_t;vdV
z-E<jBl%sFIwlX2ps=fFko@=VvJ@&hIajw}e057!T_2^KpdWH?%9<mo^oJzSy)0xe5
zQq4i>;ETwCm`sde2AU108Ib-oH(Rq4s<aysRH?E$lfJf$V2ab>R!v%*1T#F?$J`s(
zQsA@UG}-ODC1QPZ>&f+c^oB4FAiDW-vm4+ePyc5azNi0RNo?=a^jioIHcf0l;POLw
ztJPG2-&hEYw_X{&5z9YFn<#y^?7&B^Mz)N0G|Bt+{oVS8cjiznZb68MH|zTxxjXua
z^241qyWy%0IrV1P{w~VRI$ly{J+`3(1Jv$Ea#r$qM(7DN6P>x?RMAFjt<mqF-Kl?S
ze#CrIOss7UpnpjaI+On|5SyvfM#uMW2L7@AK}bM4!xmVAzg6eMGJrkfOSjeHcqu7A
zO!tAl>>bwsFxm(gAq^=-Z#x(P37WPorcQ?jB804-H7A$we{gNfCg#94UnLCy1kP5{
zkSw)c*{2C$%R-QaNjZ3Q-v4U{pmR+mPI-M_hwc50j;+H9j8k^zSFaTv*sfNUc0P~S
zb&|IWAfpl>t4j^jhe`GOXg+aPra%uJ>|-c@mmsLGo}$y>H{9SnO)712+Al(5`r6Y=
zO{g;$$YloZn+!SgtLOL4L||An6wb*tvlJxsALkEr`}+xzd@ZhBj9P6{fuiHii~NYN
zPV&!Lb;|O7j%Di4aNmSIy$EV%SoC<8K&u}w3g`pV#%gM$5MJ%fkiF}r;%hSKiK9gl
zGga9cdD}xDqTfiY3hU{b9#^cZFk`z?3YUGio_q6eCIPTlKLi2Yo`VNq-c3b6c@Z%X
zKj!3u3L`25G~!2ZRh^E{oS2z#0h@UERio)CMi4#KzwkXQ>ZNGD5<Z`0n2;!dEF+Kj
z|3|Q?y>B{msKp;E3r`9EtWq$-fF1diJ*j{mUCjdeHw-P9Wf%Y~P)p~XN>o|`<HkGe
z5oHnMW-Cg$-P;YEBo!U<IO@|#Y0{p;ta^`OSYP+VOhDLv+2E>j6;Q+%k?%Q<x(Em(
zTyhftD4lNojby<m++^uVtLV>?$Fbfo&s`(sB^js__*4yai2r{#bSS6lV8oQ185=d|
zfse>`aOoqKGgb$gz?JsZ+PMrpEMiO!Yj4F!nW0U)Ze*z^|404)Ot3?uma(1H4AfGN
zCN@@u$B)`bZU#Tev{`2#Fz_85f=rzzLSGK%w?Jdj!TS4Cq{QMSlYSE@KSr%oY1p!^
zZ1TjjRUEm9lEipkdi>!?{v-BAtDmb#lQ`Pf0I26!MMD1lF1%s8Qx*{3_*YVFOadmh
z@nDR<`Dd900Pg`i3>S-l5C+f%ZYO?A%6<)6?kF6!=zkZFSFS{p$ecoSaU2^VBklOM
z-JA&-V7sEnWN;FGDzUssjeZCsIGXj=s2k~`=$+;J1P7C~I*e~JnqReTZ+mz#qbOzE
zmPtgX$cnbyMgRQ%2Xv2vrv{$&==>>#bQ3IE?a?P~ekDk*)!?PvC6^9E+#1qPk54^3
z)V1C$MQYTQg<C?+6X)<#G&v=X`<zdn6>HJuRU9928c!bvWxx=@OZ8_}+Ok_|_U7D8
zD0U0gBCVqC0HM-P{K{=7;$rCVvvj^vUGfrKL(!9f{MLGBu6vN@PSyU^>$yW9M!VsJ
zB>xK3OxmbG1(d>msZqBH1L`giA6C9puYAH%A(m#>*cmL=mD?>_t_TVD7tG~<5GN7v
zl+RKCrZriQxy49dZYM3S#bVzAOmvms{*UmaZDqY?m%&-S3inpbTVmH8cFES-ii+N8
zfzB?9ZPTR~7u0#z?J~6zSIcJKJwRceROVCJrbvjd@9DXxZXg~>jGy78)mtFOtPOQq
z8z}xMl#7nj8mp>=0eyTs>@ywTw|;AH#O+V7J6<8xW5q@=g=Tp+UaEf~aZ(lZ<PT_T
z8!`4uA?4B;m>2=LYZMgKEan4q-|JQYT^x#GH~zrF&SW)RfE3!n<#V2AcaYI^1+2+%
zyI7QY?;RbLC=e;N*4i1e>1V+Vt^L#4PfimF1s-`@SN)pY?7Xj+YXxv0ghc@YJC~2c
z{IXC>2GN1H%U-o_4>a)p7w{xDyt_Sr{53R%T=<+H1pvz5M$fx~fw{W(o|{Kk4MTI+
zx>Hx>S|Om53q|b7?6bX%@&v+5iAN{FmXFuYllO2s%Y~nhbE=Vd=eI@!Q@WAKrJb_~
z0auppGjs1Fx1{>tiG=u->2um2#x@SOnacRRCr^~V*r+%GR8&)MVbiop53ymCviJNP
z9I;`{kSgyh!nm}wCWFIs0r>Zxl?p_ZSYK?M++nNn0!H7oV8FQ*fLzVHlb7qZmU*`T
zY73UL%7f&YH*R^_9&p2nezr7ykB{^0;O~zeqWrNOKI?f{g+nd-4lZW*oHtiutrN#r
z89eYSE@wQxta+d^<CT^Exi$$G8JeO{UBf+e(gn3bw@)~v3NR?3fyc6vhXlWa*zTDD
z4nE;XYfp%rp>n~{7`SZx2e4#DY=RBq4+WuMQe)GgNX+NU;C@R?e2%o?j5DjDeS4=m
zTF6?*h-#~G)mxc>1tk#@4UJ7_WoNdT%FDJZi^~@3>g4XG?5+t!v_?WXgt@cU{!%~_
zHL<ibw6x47Wbd7vlxjVg0iZYwz6K8k#4kk%qRq~G+kw`V0xU*P+s&}sSojCQ>)f*(
z6^U#?ZCQK4JTZtdi+R#GPqD>1%V)g7;oY6<Y%Qr~QPc%J7O#!%!_a8m6!*ihcf^qL
zu7dV#moQ3_&khAYGFfH9hcW8wczAeNn!N88et%4Ex{bZyMJ->cvw{@P6s<d#*~Vim
z`ah)E`#0z+0+eQx<0_W^X?^(p;B=Ntg#=`;6jot7_GL87|C9s-Ol3KknPnH|B5HzO
zdBu}c`~v-`zwVAW^0&rZYIy4DRZpmg3~UB0FEA~AyqJ%p2n7_eC70(e<|88P=jP^!
z_`HgX8_kBx-<eZMfVQz<EZlCLhkPjfny2gyK!XHm+|xP9Te_{8-jAy|nMl*yR?WLt
zXo`Ft8%|xfawkB+RVb(Zt<Dd^*0&Ad<HM~Oq;pF!*x)t=^E*DTi3(ux$9|#Sxc7&j
z8Ad4fn`OL77N6~9KkmSp3eO(zqsLhJ)~y@6rOy<0<wHzNE$BqNmy0}LR~>YOM<}Rm
z>kOd5?m$7nZMn8o?)JTY+ylKDr;;ulFS~xMQ{ea0Ht0LL{_*O`e*5QFUfiQQ=hOPW
zJEw`&KNmZodMA<MCHbQk>k>^@M5+9H8#@p^y~oMe_4vx%P(0kl57Z4}uSCb<lsiJu
zC*as$)6^x)d3~p7Z#&acQ)9DuA-Az;>f>X^x99t^emd#IRB}XT({qFVWiV#jT@Ms*
zo>Gc)QYOE9$p%@HRthGD)@_&5o1JmWH-1)^*gOu)l67`M&Sr9E5KR;eVip~EWIm~l
z!i@KhlNO3Mt8QWGy_*c=`#rawwtB16<Q#3$^oth}eWZw(!rOhEey6`LzqIhYzC=Pn
z(Rlu`FL(fY8`u0YzQYo1zV$>9Kz`j6Nt)cP+<~tSah`*AQn(He%S~K@UcN#>x-K*~
z*&EMdcU_osoyUH$QM@#bg5rku{5k8w-MQu3aDh(m5Zz4N*AI!3J<)`g*F`&Z6rk^{
zj@7YsTPQL~b$4II^F!P*h5)5$1}1JIij|dY>HOlK*O{cDz$$gN2$gsz8Ud5fr<;R_
zsNefB1KGy;`5S|Bbc%cw=Q257A&6}krRnk{*upbGh;PqXy$lztXP_<Yc2bfv4M#JT
z>&8;g)zqGV9Gt3-NN}Hk%FEsLXjwcQ1kgh>T+U6hwlh^H*^I?85QDOk`x1{D+>>B_
zwkIerf~yo<Chm^t4o&>@w9kJ5+L}cwFWi;{;nd{Xd*N8(@EW&)8tW8({!B!ab6tp=
z3`(Jfb=td~?II3+|CA@+Na9w!uZWp>O+(OjNI6{E?nr%^?0$z`URszD2f0`FnVwc#
zr?5@B-UN3cB6rTr%^48C{gN4FI^YjrN(NUdt_~M}=x^^G?CkG91EHh4fdq5Mdd>aD
z2k~7R4;MGMGm;FCNrG+|h8F6%R`zfNNcl3Gca!aFyN}p)JeLEY=1TPCIt`Rmbp~Ud
zOyt_u9SU--#0a1a`MXUZ2RS+gGwbWjqL5|H(`b3?BL`WvsVATex8V+0aHKi`0pZ=n
z9v1fc@P^atE2`jNWcN?##JQt8Ai(cAmtiF+^Yf&_c=5K4gy>mzp|r8c_$J+RfaE#5
zbp)?ijoeM0D{+^21T5udNIP=T(|YuqlyUESUev?3&%PL>{EnPEU&^ARSB?<v?C96~
zkD6;FTPwUZB!z~=Ffh~`bnGU2UUTnvV&W2DW0FL`I7a*j2T;u>rzT1HolZBBH$Q#2
zYUcTUj?LqC&kDLfA0X8Y@+wSk(ok`MR2+w_P|67Sw^n9bj!%6-zqF{1X=+LnH1NEU
zCIESO)Z1#o(^^{@rci~qpYtU980@ZBs=P?-GuXzHPvK2!Mvm7P5C)_<1eZ|CpwN}H
zBei%q8Y)_&uA=LjIQ5O9vaz$9o1TWn@siLBiO|a2HFleYmEGOfcpM|ubzQ%ZfMAe9
zd2zXJy+P7wVZl<2Wcz1byk^F=60pBg37f&8FMUzbbl{Wwc^)DPJo*ABP8$XW_m1GS
zy8R~sfQ<XokaJ*llaS*8$YCe`Ceov$n{H!kGnCnsr|)#RAV!mDHItRU79{+v0tH2Q
z+p?o(nI2e<?hUJm74V|v;lTqD9m?-&D(fb@)}<L47^pJ~Gr74e+$S%V78el<*wy<n
zqJpYxq|RxZnwsK$1$*tEpKT3ZUqkH6^9ru^M_Upaa+He172Kaa;MF%Z$-UuVrsXl;
z->$dbnMM;}=Ia8$lrKP`m-dLDa8Yj8ZW&;IR?E?qzyl@vr5kB;okw4xzI%nlxU1RF
z_j;=fFKfcRMa7lE;dB9yYtBDa-skPO_?wvL%62aP_!h25p1e@+7};Tl0E!$u+}%3Z
z+QWf0^^7q<6RM?%h=|$kB8L0>eGLy;L1Bd4$FXc_TXY)tb2)fiA1_lcw2NGB*Tb(m
zDfIj-4|gD2`o5-_E6MmRj>aKi%_c6^cQdfT$!!V<a1-pIC(>i1%HjzeS@Qh)y2=SI
z>*vvFrngdpvKT0bLvOW|mA$#xjJ@v<>lQs`8SP&LpLP~OT5`yfe6A@$=>q;YfFbBL
zf1hh|kG<?)f#O10&2Od!UX+#I_K2ICn1LUCJ4#a$qRrkhd4GCl7yxub-&P%FO4R)B
zM&ma+#AR2`J_5}k&X1t@;JJ4l)&6_<khBc0mNtT5D|Gb9=X{L?ZntxX4wowDQ;F!N
zGuob`5-1@iha`No^LcLT-OiP2EBMGK05Kb0N($Asa%&i+o}wT>|J6kc)cW`P19VWx
z%U$>5<;tt2o2(Tz7IWFTCI%_EpC}}1%Jb-8dV=QS5Qd@#hb~Tao2>-SwwCFIUIf1K
z`gMQbeA|7l*Glcz9_dc+OX}CG10M~iXacltNK0D%;X(OJ@OmwpgsZTZK<Ce}FIo#S
zFt%>7JuAi#c-&o6Xa&?VvSESjVEvtq4a4tHFxY%^a{S;Rqun5#x3Onm!mO1zu3l$I
zUEhz@`p`OLZ`k+5zm}cdFk8sl5B|15;hSH>=*m}rf5@sjDm}-$cgt(Bi(ZzGA9FSH
zp9hZUUn1W7!Zn&amp<nLqxBqZ=p70t?(Z?HiFvF`+qveB_Qk_4&vAjrZMt07-@p){
z@G_Y34PWFduV<E?8}0l<$DR77Icg=5{e+;l>5dhBuH(%D+|P;c6C)^KuYlMW8d~(!
zlyEa8*_TWwV6sZ7e(Z@`Kw6{%?7jj#j>okP2Yos^Bi|+MFHzWuQ=kBF8eLGk$LZ3G
ze;VLh{Ku!CUkP)Td=TDF5zHN(^DZ`L#+Ri;99V%eHhu<C;fp<c`{kAJpML@iD^MgH
zD}h$5Di<Bom-qDP$icoPI=TufYWfxiAK?e=ABso!#!QvG|9)Qh*`qT8dJVzlI~w^6
zHO!|`Z~6|WF|yD{A)#b~xk%BtAVCRGXs}q|-;W=YzHs=KwD))~qo!Yo7|;dQu5TQx
zAR2|pXFsVy{>UlVVW|DLFi+vpT%7d!igBaShK?Vj?0#&8sG-oX;UfN1P~m6o{^V_n
z8hL!K(nuhB`iakol?noZTcxC-YN1^L|NY!O3Maju64q0YpbP1rQ+!nlHvQjk+NoRh
z35dFJsv`t$IsJI?_tbAa4iSl5UEQA$p<i;|AwPNPK=xn#m@~Cye_gr>3Z_tb#hY~$
z^Iz3Hg$LLD{O?o3&-hfg;TF49W;x92%5i0{)t6eATHE4wU;lPN&vOpOE`9U&e86S2
zk}Q+CeD&AT{B{bm&wHi5*Et!nu(mv(ydw}G);{$9rwBJOHnxRbvNbJDbz<UNZ7q+n
z%ttzE`5{(3ywnofGHZ2i9KzRsi;jTINiucO(XXvedg_}dMop8L{*1V*dspbd(q^Qq
zXJDYex`4E%_H|iVYM>7qsJ>~uKyGbj#^@{JUlRarEqfTmi^D`DI3)AcC*#F^(vX-L
zE+TFVv)-BI5{mctR|`D6laf<4&i>D63<B1K63s2RufGize(A0hUemDQ-^j)if@>zz
z7rPzA(<Wx<>KA>{<=FuKuGs$1avZ|?5sT;<Nz*E-3z093y~G)N;mBwPi;~J)nTj=2
zyT2)4Glqq;eR;{ox{Xe(#M>DXican0vs25dhV)-y5s5OU)XaI^+KOmltqdKbJs$3Q
zm@mQ4#8u-c;iZj@lH-o#8KSR5(?qTMw)j4;HXT8MwR7#X&VFe@Uvg*N+FGe=Uep&G
zH$G@+LTxb~4aFJdZ?Iof%#tOi!Bz4DzYw2_fwevz<M91wm2Z|k9PHkn+lgpAxr-q=
z%JA8dhn^=9z%H=*PxmkwnN1fuEwv8#_Q1MlcOlVf)AkEK8~2*D*~?k{jW|p2i4!Qj
zPCc)E`vBfhri+sktB#(YpZCo)ZMpf@G2IQ~Z5Q-m(+D}}BrF9pQrr9dkjH!~Dwf~l
zs==moV`J`e6ZVEH5QpPimywV$#mSb|>|mOi8ZF&qQnED+W;v|i*L+d%1Z?_mX|w%d
z17Lw^gqR<XSAguMCf6s#I|#{#wz#xp0k`vBsBg}Nj0Y}mN61UF%9$s$15}@UFzOhh
z#aRqbUn(fXf?Mx%?k^8EmP%hmYPae^&oNmjUTM&K-Q>@F|GsshLQTs-3Ohb2h$bGK
zBLVl)j>u;9XL6*S^=-vpDtXW&68){SFOMgno((=H<Pu2klL_fnp>d3t$D~}$Lk?1P
zcI~i6B!QGw?|R>j%}owg_Q#t$FswruVR^G`ERUjxM8;1KzLc|7Uzt=l?wgyVbhpwI
zf9pjI>fIp2cKa^;GV|hp-5CQp9B$Av{9oU~!{ce)7pHcXlAnWasNKz!j}QBnUwoL3
z70A5O*<Wn3KTEPjdF@V}SR7|e>2ts0J-_N+P>|2X!_{&&wfAs$fdopFei&z<1=gp5
z2_f!lqUv)<Y?DX5dj&sef8O8XF6IlMNKS%@xz-bl&u;Q{1q%96TmBfip|1~3?>DOS
zlDN>hz3IW#DW4^J5v&IKnx!v^%*lVZ-l34xjN#7X?sL^KTsWLp&02T9jd`--eN<o1
z8Hayo(uZ<~LB#F5xu2rkQy`z!;?N#x+!OV#F7<A80M^k+=Xa1ex<)me&To6#=?HRo
z@EQV___Zcwu59dZd5i=kZw^yzZAvyJL3gj%fMD3+q1{?fR3?iza!N0$^;8$te!S#6
z-yH8&z{)t(lM5Nz4599^I_ORf^o<<Gf&v9Cd<S6HDipaD&ALkkndYRwE$z|O(v$8u
zy@hg0rPm-yVFCatJP$KP?tJ9i_+pREV#2t$qD24UBd~^veFH9TL<VVTY1u6_BZ0Ux
z%GbLG>z3daZ2^8I>W?<Y#t;40U=B7m#5RT2(uGFfo*q))3ez=i;lebot*)5qrG$F;
z!4>~L>Ad^HoPdvSi@x@~nx9ZMP{qp|VsKgpTKGeqJ`{dgf|^Y4e>+=sdAh&3$!)z^
zt-!C(?mN|dP0Ta@PKn@Ps6O0%QQPUhvq*v8%YTDGpx2}dAF@?bD|KkH55ssK2)JqF
zGW@`7!uBraX+4X4;j&GC!}g*g$YF1@EGY@MO2cf(cQk%j|8A?eFM;y@c7E4(9t%W9
z#o@mgiTd!+WH;YzxLRLH>vwHAzG(|`V557OKl1Z&KCuSEK=xKP_qS<BnZK0t8ya%a
z`H9$r<qJQ3FtC*JtjGSZ6GXUNzOK`0_Q_xGmaFFx?C2Y9w+MDL7FWpNMF3s<JZ?KC
zR6(4LjE#{o2pGL4!stmzR;Q-=u&6%z?ZL*zoV>l8E~l2NP3JpLjP*P{5kM{&2b)VZ
zC9-Y`90&k3q#LexadNSusR5{3X9uAW^Z4Zi+4!H#_9Re7Ej8NS0XOD+l4HsDakdAm
zI~wS6u1I;$=NSZ$k&pouyrX6=r{A5lMMb_|SI7Yfh(@gsyYeF@r+LpAK6>Qey9K9}
z3@mm&Eb3*hz&c)zFQwHlX<0lxM1X&)Sb1DAVz}3Zbc=%|7u?&rx=bINxj>9Y*A>4@
z_nI#EGg!Psl!~4PMD+J(@=;8KA4JMO@jKJ4tXod@jTcuMYp@hLD}jp>rFok$|Bh{l
zM8h$7o4>~}su%~Rr_=5`hNn?LyM%-YfKx;7cLuw?MYhgPRLXw>s??B0=9HbDwyN>;
zM8fKh87<^8y8e{gGGb9ZkCS-hd(9*SiZvf4$EC%-@~jkd_|#UX@856^QQ&`c+2J|z
zouF#GD$~vf9Ur2Q&dz8g>~V5&O{h%A`-cXH?A9F+VjTbpDfaMoF$M-shvVbGo3p6b
z!+nFO$5-R6X|)n2oHr7BettrRqu-wci3bR*+@NznaPvNLxYi~TezKKFa%czlK1c-a
zGas$3!OW|IWIW%=BWBPCnyDBfbRa#UTt2jr<L_ky@>w_8qz{JM8CL=?F;MSL?(9Ec
z_dg<rE_&QOpicqu_smR^jg7hsnK2f~$9f&+C&I<0rH|`pruq!}+^(mhplgRd^E(U@
zD+ZZ84%=BM--^bVA3=1t8N_Vxdo7ite_u4AN#Gv*mZI4F9q855w{iXTM77fS$RJ7p
z7LfmZt%vfE=N0yw5pvvEQjR$byv0SmogMsJ_+qo_+{nlb1@pqd02XMq&hA|@Ew*%q
zJPL@d#+Au8r%)m7BW~T}?flVE^Oa&Nlxbb(tpWyr>=-2zOLtyT%J-3I62gv;A0}RI
z_k8OMNOzd9dEqfc@vm<*;v9av#A_3*Lmel%;UuQ0*w?S>zu^Axe673tXu<XTTFNo<
z`gkQ*xnK}CQX5VEEA2XHWNZPL8Y)m_@i}ZepcIL@9r=}1?*kQ~s-~u{I$b(nonqdO
zc7SVSZ9HD+K7pt2r>mi&qpc1f?aAsnC;S*EIY`ND`Kx}c>J;4i;Aa5W&?Y3zRgj1!
z($fHFZ2gmigLL?s)8<2-Ocz!JpeQ1eWH&nFgAln@+><UD^_<&txHSwJ#OZtcd$~Ri
zk3o0EiOWO**rHeziNwjB=HIb5$$9~pH+917K=O%>u4T#N*Vmmv`Tx13z>K*EvVAt3
z)C^zg`3xiX;EjAw3Wcx4EAZ&~uLR<)JKe-9@Y`EiU0$BvZwI+w1o2A(jgMh43m8pk
zTOS^&fIfX%PqW_1waGDIdAZHizx;7OlA+FS9s$J9uQ$(bPp02c<uwVmhdwL<eG3ps
zY)YHIZB;{kn&i}wGD;7O7cDtnI*sYKD|biV{Rl7@fxg!NPe11W=$cp-JvfpbgiG&%
z0Lt+af2>~xB07)N_a!(lk&So1g@ZrpfItb9F|;4)GdcW$_*m_-Q?l=4c$@Tb^<-)S
zR?W|m-%f!6Uos+en{agK0m3u4Ji@T&UtidZUh&y#`ywrq|4K$C>XPr$VH)+7@0?ln
z`idSF&n4=kfcrWyniLmzPfdjk9`2*+JPZ73Z&8gkTU!^XR8(A2;_l?c$V1<)0z?p{
zbG5VxNDG9sZ4#=(ZEQ&&7zqgo%Yua;Oo+Sy<D3%CUa7zXjaabO)Lg{GTo&vJpfR&d
z%-8mjz7NJ{;mkISx+|w#7uZhw+8^Ybp5<V<?ZRE7rK_?CBy}LzdC-ac>vgoZ!c%9Q
zK*z2SQ^q$6j}51!JMHatxiyoP?PNeD=^(r}d4_cu?In08^a=_S;7JXT&Tp*e<QoB~
z!TEqR3aCOuR(%@9W2EMF>e2glGYB`S+s^l$ZJhX^mW-4s!9pM;&R<g);ScI)SJYH~
z_zDS~n^#7Bg748K^w;lcdrOnCK9g9E;czX^RHn;KSZi52vV%wzqr0QQ_v|p7wEcW%
zLEkUQqULzndGJ@MrVb^R4CeoGpf_d{6u;%XgUjEF-HwDCT#!-3#7wME%%WV;lDKpL
zFD}tJ5m5e{UqHn+5Gro4m!Pq%zkc~MMh^CHc#*T*b~94R8bG*V&>5od%!%V1$UOG{
z&4vsxVo;`P1kTKgrE|$hjI?pHb_t_nbARe8wtR>BMP)p%BIGz^(dZh8WVhv3Cu=jn
z|L?bexeRh5GKIiuUut;2j+|Jn^g?*}TcjA3WP<`{vJBeJ9z_?@si|+t`jtPy)3C;(
z7Ecl9v!sHClzJXl+AatxY&>DHE5Xb>v_t8?0hh7u<Y&EbgaT=Z0%^J&;sb>!d9kGE
z!RPUs`zBTb;rzhR@3$9@*`pt1DMuW&jQ+JvU{WOb?5#)dc8JcSy*LL*u;l%^(}+a{
z`@d%eCWtO1S?=cdlG=oyyFxPsu!+bn$ety>aQ-{*4Fsl*EBmq(@Smj<Mkm=@7--&X
z?LilrZRxyvt7=6m1s);HvaderPG4i>lg0I?Y0W*hh)~q-b7fENEDKD$m(f<8zg97o
zDpKNL4bPezFVtL^qKrcjv=xDDp6CXjql}HbOX`CUq6W&Am)c_se9ELP-a{KsEv!&{
zd;Y<NJ13{{Q3xy_d-cS^B`J>NNL8|sqMvpzwd-}M<I`c^fR3(<A<9YBH_L*<Z@JM1
zKzz?h{hJOu!0=m>u3HBG#VX6`%G5?mr<=??2-UEz_qIt5cZMj9e>{rP(oEI;beVKw
z>OD=tr(%-#NEFlMc*OjkJ8zv5Q{!6A_Jkh%?UU3QJg)Al`n4Y7>6&8wPsS;8%lsa#
zufTg(yKrE+PfkpgIQrH`f{*m45<zNb3CE##@o83)YQ0}ioP7CxSmCe;XKK3FdkRvJ
z-@UVXUs*r;i~G+s!v1952}({c>>dEW`;!v%%-|Gp<ED_U>D}v_@r9owXI|>Q{x_+y
zP|dqh4r?s*cW~!Q%Ld^Fql=h3y$q7WkePO*PYX1Y3>@48lD8$FP=@q|w2lw2Lg3}5
zcqzKd*(!8*o@XZz^-9a^E&uq@nKx!mRnjHFGRdkBC>0e?N1a20S(0+7HZJg}IA=6V
z*i!FTPxYq`JUuTh+|BPil~+H+GJYy9&ADu=M796;{kk&-SnjmisOmDwRM77Q1%?rh
zoMkIthw1>L*v_?0shZ1&Heh`X)$#AT4z%^wc)p`J3m-6!FGj#$wLNIJ4-1FOLrcCD
zO1PMOItpw1w`Ov$H*=AQvyd=UFyX78d8^HthPS!SHUq=a-KLluj0UGfsD=vA_LkQ4
zo4NUttidbv{5N(m@Bps+Ce6fW5NT|(c{C+lewZ4-%hc837!3%)FF>KWh_0Q_ramL~
zZ&I#G#xvV-c5{xL1r0o*L01$~zzveeIJvU1vXpD^@tyk8E|H*I_Ow}V<#Q8y=E>oz
z4?Wv_e>{ix>euF+D#RX!369z?$X*JB9AD*g5d`};N|m?9UAc4IMGY1LGP#25YWMl+
z<EZ%`>^goxSA4xgwy&H{7ix0NmFPSdRuFT@8*dN<MG`!E9>?G3C+Z!_k9VV2*WiKz
z>Qx(km-=$jaCBQ>AsAs!uCFt=v*Zg$jl5kE1Nu`#f~e@Byw>NFzXOxhq>P=dg`{p!
zz;f`F;S3qvVP22b)txhZY?_U+nr0*x@k1Urzlmi%5_)vd50zs7d+X_WR4NvHcRTJ7
z2@X#c0cNCVwI<i$@Tm0H80vT76t@lB;paCDP*um{&U`WF?g~v=kK;JXomnyPAYrT5
zIP`gk@r6E|T%?IIqp=jjfr#I=!Th^_nh-oW{nr?E?kz%FicAVnb3jeltMv8?wSWW*
zDcne8p>8d`fRTKX_0agL;EgIbFni9(!|4D?6sBKD@~GP0v;{;Nq$uthI3somyHH~E
zk6oO3<9&h$42M%0I|n-Yekxh*5?tV1-OM{j+NlAWtI)=Bre5$s)Jf1B?fg0_e$SAe
zt&JTLNP;J=4p)9v)8X|cpc;bn;v-!*`W_a+w(io0Mfdac*usHqtmGLRGx(w*;++dh
zfLW!<!KFwd8(O<AUtug^uOUSC_9*O%n8%*Bn%9|n004cilq&Y&G1C`p%*{W?8zKU9
z08yp;$03mgv4ke6-*#T-j&Gd@N6o9cuCzm0s9qL)`moBrb9<dP7D14rLtRlF7W0yX
zqcoPEimog^nkRPgV~LX^_Fx8)xw*Az?Fpiwp5tu$8lLrT+Ak3wYKKC;2k1>(eLcUW
zW^f2nIk-QDHYcyz$$Pc0d$U$hAhsbPlnLME;qx{`-DB-?s)g#Cw5yBB$oK3~gK~kJ
z+7_xYNaTBFF3{8K`c{7b)v+vgI$v-4hF?>BR9;_PFD_iz_>?+WZqMqr*xBm<^i$)u
zS#W3x-)vO$(CjQ$==V(Q0#A0A6|14RarJ;F4_?9O5zhgQFuB3sSsd?U?$14>34-L0
zmUys_o^3PvB(GH<-t*EF?+)sH2Akndu+@HBEbn8WMm^nQcD`RmdoCd@T_SwXw<V7+
z?l#Ngc{m3c$Wx*7BVzUsltiFvE#3P^WqhtKwWManAny*?qulzWRPH2!?(1lIPj#v|
z%hWuzaGSxYprdA9B+w;k)5u4=G#<}4pwdVMf;Z#3*`M;w@uEox9uA5<8iX%)+zFeT
zIEOPipMvaQ<@^r!MkS&I)2&pVE$_j?E(EZ1Jzz^juQ*v1=Jt^nuz{UE=4!!FiQYVe
z(_JoK3FD9u0l9^%_K+)1*(1`vo%qdoi#~V+XmWakAMck?*F@RXK*wiuFclit6Vx?@
z3<WB0r;BH29L;UyPZe&oRm8h1b<&GK4!6}+%`Z`k$vo`LmOPFnsGi2!BBSM>w(5X}
z&}(s2T|s1a3Gv3Vsa>{!YVq@vD<T3yO<>G19X<)CFivjfR|cS5T<K3hDGl!>hV$sZ
zGo99Wt}#2yFgr!G@TE(<+}+qTsk1ozer&MRn)P))4`?v=%ac3KR6Pg09^&~^7B!8N
zX_xM($G4{sc)&N*?dKHu$sTH%M!OWN_hESVz6%`hh~7T4NbH@<V`e6<(HbB5fDB5}
z@qEXXD4si*$thY$(R;#HshFKDw5SL}#2qAFGoU(mac=&aDq`osR?@bp_A}P*4KW~L
z8MVK9+nuyQ+WdxOHQD2w=#7gb+<JcH#F1$~lv^y)UUeq2R5wHPiA-eLhU)FcBFPYU
z;0LJcbI_z~bRyeD_UFaps|m!2#*j^VyO_HE5)7i&>sGvO|KqvpNXrIKF;h^**70lz
z<%vY3c?>Zwgzn_stn-XZ_N)^--|tKG<`(JEov<bLcicQPem9GeD{uWu*bftEziE}R
zv()7^LM{9DAV7Cp7A;_-MIC}OJ+pATHH8>-7sB9cPLj~4ftO`cdro6b5c94OT4}Ia
zXg`D;kZcx%ee6l4Ts}F$;rn>GU}=nEC&?*%$VXB5j-_zDMQmIzo%{ZJmbGgBY$YMN
zv7X!SqTPoeI@M{Tu|Zkin++nEI|+P|C@y+=FL555=EB^5*s&TCzT{2-T7U7L3nS7}
zsX*qXLY8jmP*h~3r}xS?pwCYpKLe5ZEfoP3q3>HkR+W|&8rc!{Suuobw)*TlBxpM=
z7S|0GSTv#t_c>;?y+@N<Wz)vEJR-im(ROaInd-7`xQ$b@s+s!Pb`kFW36r4AZR56u
z0{Qaxw&RAoEQTl{U*J_snYVmYY~+o_NmOZbJkUvv$MbqqLyGckcbd-3Vn~0RFzaRV
zg@AGzYlT{cm1RnVvzfi~LT*NPT}n6(Ab8JPJ<Rp8dY4<Iwq%DjAymPZnP_e>H?|Uk
zlSr&T)gszoQ(Y>YMLz_X?|Qh%tInOX9U(v6WBIV<6Ir6%dSEOVfc5R;Xi%z?@cLDn
ze}~6+v6Sqk^56N1XnY+8{;(!Y9oG5%G@!cl*TnBYj!gw0%kH13>drtD02yqxuLJgm
zp_jpLd~fg|mEFpnqW7n_fLO+V^jzrPRC6khJm1gRzfU6o(ptuKhg(-n>}3uE2h3Vo
zjj^M}by?ki|7>qLZ`E#Q_Ws@6=NK+AJju?w2NpIvLMo89pI#_0j%2!i`xI1lW^Xs^
zEKH-!IXAyAB|XZpl<C3D2Kk{KfR`Y(RC{G|QWgRD8oQ0%XX?(q^P+Z!MTKd`s&XBG
z02Z<66axRDR3W`Nyrg6A72x$d5Yl|S`O0DODna;jB5l6;(DDH42utkXQyJ8cAw9%3
zA8203k}9ymQgnqg;>k0akwDnqSG6s-yBS+`#WXu(`Ky|cPKdco>$Px#^H!V&uW1DL
z#?WA*g%$8UFddCo%s|BOT5UCf!UoRhAXp##$vcjb_DK9FOwb;~+?saaq~lJnN$)8L
zZ``Q|Ez;2udp7dRSz+vQg{BRz@`q)}_m?PfHAu;23KIEa{{&26=?DCNzPO3fMa8zu
zP8v*nA|5(J6_0$TPGY{sGOD&g!r26D^&G>2<8|h}VM2;dVoeajIW1Jm=%@=9_?`P(
z8UE?OflX}(BGIXr+%14_G<PBF^b6u#H2Waymo`ZXTe?xP#s);`a-(-JnXP}ls=w<P
zwI_T{6}`K)vJ1M33RDBUpK^Gzz7F!iP><p(l2ud?=375?7Sxvl1g{C>Ty~j3L|ne6
zpRyc^g)qt&a+v+?IbH<+f-FND3~~}$=!OFcao3%5OJ9TN^EQ5Ga;kh-zHxE%^PI9s
z5jJ%Drw@^ZpvW_8Qv<!xi+ro!BNk5CEs`28kS8D&tBbt2$|umSuQR>4m7+AtZ&V`;
zyG%D=&(O}Fqn=i-I|2@a#wR6u^$&ycrdwMZyJS^vu2rbVu6T7))Yw3tZw4@84zIa6
zI#)w*7R!rKKsDkl=BJE2+9f~>PZ00ct4|d%lcG@vLU{OVC}I*%Q{YNM*-?>u6xhdi
z7wEQ$y_7GHtWEm}X9~SF#mZK!3Zz`qJxqSK7N+HvBz(w8)89ED0M+ZN;t}K9w3}i?
zJ-1KjN29O<F_LlH0GC3Uut>#RUs_e$f^ZKsMp%%q_m>+~z$L;svZh-m^s~}hKA@Xc
z|Dsi<$!YE45ylWCbcBQHkz3lo@26^2BT7@ZuGxIouL9V`&WpN|y$%r{z<q@(z7>2G
zbxHLN=oW78RVG<KB<=!^AyN`<T(&NSNK<Mi#7rRq{U=*0SHhzmAz*IbWyM9qmJ*|Q
zLA|u}&J_^c*=NO8glGy@55Gm9xsJ^pgtlH=p6z8lZj!yejDEr74FqZx+zZ3({9@eL
zG2cRgv4fv4@W7_bE953&I-M5(21}w7Fti2TeUz>*2^<SD(@tA*;aIa8o{d~F&4flH
zEG_Q{GEU9LC-!y^)SOC$7idf?zkl}AwM$fADlc|+#NGibs?c=ly~_i237OC}dk=;a
zjwqW@JUc%-c5-gi)iif$U~I(uo)Hz)_v7l>1&5Bui57i^ympnxCgB;?PztL`>%suc
z^YI+>te~?6=vYA5u+rmG2d8RC!?z@nSE5#C2*JYPF)!`x5<vkilALB5SsO>gR}Pgu
z?BPJBeU7jZqrvVwH;)f%_hPPonYZHMlw<*R<_gX(Kb+_so>B&yZ$wwH?q>MUxUcC8
zv9d|=!_yB}+V9Sl4JyCgT@Co%hQkLKut|<u)vzzn=zxk6N6px`J#Wp)QW)fSrp7vi
zCJN?HsZ348w#>toO^n6du-IfwDBkdt4m0dsI&giga<(y*6IqF#xA(8SJp^wz-cmZI
ziEi#&lq~gEV1!ZoF3tgV$frXD^n={MOmLDwfurZHU<A_SFJ-wAZ$I6@ITJ%dK!<${
zBBO<eh?gCZ>>D#@6i+$WdGg23FP4^=Gnlt<+Ir|I;-_`-y7K$>Z$I8D_QQgFE{XWl
z;*`_1HMjvM@jl+E<2mP(hekk|v`30JUdaU#*#2W+y?+t&GhNy17r{n-Tf5$Ypn%z6
zV1ShUGj|vysfX^$(Y|k5PJ#rL30;vYin+G5l#R^w$NxXXy=7EZYxnlOzyJ{i6+vl5
zL6J`B5J5?4X^`#)X_OKv5$P5w=`JY|>F$>9?tUh^_x-=?jprHf81I+8$Jnqh*0thX
za~{X<n5W}w9frAHe&<LTom;aElsoSi?EA{Ng7js+!egz_RW)hh+iPo$v&<GHCEfR>
zS5L&W@8jXL*-IA_uKs>1o%Z<*W2taujfP1@vw?%CGWH=^V)k>0rq}ks2eYk=#I)n`
zktAQ@s=Qxe`jm2x7WKi=86WDV;dE}8HjIqkxYzZCU0j*uf?0N6YhxJ-k|}O8o23Jl
zrSraGOvhu=+*GP#^903=#EukvKe@zCUJez-;i#ppQ)~L?$w6B;t95crKFOJgJ_d3d
zs$&OgyU|a@#@-aW<k3Eu+mUp4d#x_OjIaDfkLr^cyQhi0{37hpy{f)Hmjdxsjg<+X
z9>6#>@y{@zUou8a;=Mms?-yex*nEq)I?|Se<T`=f9p*B4H84czzm|HmHa#|n;&&V0
z`2H`aGInRPF?2ZDJ0Nx26xy1E+7!aZ=kX`2!{3#(uo)SPrdn&G5DK&*9diOd;k?|b
zc?pb!;|SI3V&@VB_3@n{q@${=m`a8YOE4No<k5r$jaN_4P{yQNkBe?L-ld_HWlrlc
zhd0Xc!Yx$q=4R?N82#=J!hOraFM^=2?;bg*?XVpB$M{HaK0VRn+v#~ffBW0!uW;xr
z)57=R+w!9Xv`q?FZE{$1A8&bBsY&!H-0;k|<$E%xk7@S7(NT|^d$0A9d;1e9mD2Ny
z)VtBPt_|mrmCsKjmW*CJ_*IGbtDg2DD?XYCx6Ojvg&Ur`%n`I=4}LAWgxo>rPwNVl
z@YcDq)aAr$wF`x+iwWDWl?hUuHMgVEZ`>|#$Jw8<ni8C}CUh9+%TNaK_1SWm;ueL^
zWSn!dzo;hKRFHRbXR+r>GbTnt#J8GvEV`ZT^OF~KW<DKN=%2Q!eY=QoJvp8h?rA;O
z0Ifcga(Lae=<Siy3cCjnXwY1Jqh7hyq{ADdoM8G3=6mm#dE4zDoC8H?xEL{KaYH_?
zC*+0ZqPwng+lBMTFL67{rS+^+JqA=JnJh&HW4{<3(ZP$L)<x*pMZ3=R$tS+3V$8sa
zch&75OHP!Xn9v()5T@6Y`RV;qX<aOK!8qeW%S556obl{tF&qqO<-{uI2f~{(V?6Ab
zNXTjF&6NrXnT(DPV_$1Cu3Lyf=}?3x9#TIgB%W+C>a?`%5yW9~Nk*}(GBAw1$9#h6
ztGQG~Oy>HbcyyV?$WRU3u^NJHM~k-i%8T?Od=g-zgUZ4wyp4gX{PoKhjzU;ct1%yb
z^diD}Ud~Zw+>&TmA~F`<q>-0<+2lSko371q=BP>2s8f7Jj&@Vb4GO8wdVShoqhlY6
zC}NH#lEn&p<)*UI0UZ=hY@8Bi&=J^q!|L!wP(Ct*#d{ow4!T#ahrgUxBg&JF(f5${
z+7?M6><jm&6K^s@v2z}gU=`|m_JBW{A~(k(JCC@Z;;277jaHn%WCz2sFn)T}@M_N#
z|2XW&VT9+Fl+s}kOj*E35Q1;~YUg9Wd4!<uZpV}i^h=D*W7Vw(!@*P{F}1vIcI@mG
zo~{i)KJS*}DL2$hr*;cYN+VT@RkT@Oy9}(E@C!~%@&ifF+LS?bYPE32B=~ZZtqD^b
zs@L8)1hp=+zfP)<<ka3mHbM@*cNae=(`2*|wjp7Ue7zOr%rEW!>mkW!&|RY`ju#%y
zZ%lViH)%hT$9MWtX708!|6Gu@J2ka&vaX<~XRwi@JX+hZ_XB}&<-r0Q4N0Pu)4ZaI
zoN5EyPs<sTi}M!u$zmM?4GaWNKrCp;640g5z78zWL<hXql2DMbw_W|6!Zh7Y^$%5Z
z*kef1X>BQV(E<f1EkVpvQIS{aLq`g(w2WoG?_01kY2CTmvkmGA(oP=ev~zsXLuy%F
zH(E_u@I=q@K3C<W=D3nsL+XR)BdFh?As26>S-6ec9{%~+;}21<rwBnvAYKwll-j24
zk7U%>tM(h3`rw5Y91+f=c@!tF6L9BLjPSN0lkk0ZhWeITXI`sY!-tQ`FNBJ5fA$&r
zQrL@%;c++UQKk;=$2Va#nf|j<SwR6lJSQc2TQ+_J9y(`liXjd&gih&UruYsV^i;Ob
zfuK3x^V<U&Ul@a7e|AUaG}og<da~rOhBzf9g^1KoZo0!!%cD-(3w2p-?-z*UVtbxy
z8D2mViwqlATG9B<nwi@OFSgm;Y5e`oNjx6oMrz7wb2cbaw6fz0;}ue6cm!l4$hAw)
zvpb$MIjWF`TkE8OAWtov>!)6+G>k-+Gc<NbwP3hhJhWYtzizv2Q|?F|5LLgaqtMfm
zyC9DH+M%h|SgPVeXpPRb^MMv@O-3{KrS=J8kI4fYpR&k7S8+Wxiqw_x_Lm}y<I(;U
z6OwQ2$K~=#A1mpkAE?vjwmt+xVLI5lr@(KSDD@7jZrR|$3_+qSLK^%KM68IGypHE6
zyODE!`Nr^GsE;dH_j2$+lS=L1$Kzr-XYZ9bi^J+O)U5huwX7sIG}8Hdocp<k(9G#h
zeI^N8AtwSBC%l3Ik<a4~O(T-VXF@n>_^@FPGqm+`A)F=rvdW4YI7^!C^Gx`%!{km>
zPpx*OLfoPY=KT`ViXsIlPc0X#p_5}7cH+u_9RnVHqQZ64t$xnBR{$G}xL-Jw>0<`X
z?roVpYE{AFQy=c5eFM4p*w9CjwckwVZrpi|;Q-uP`*9XSbv2Hm;fAEDbpMLHhKiV9
zX1+{x$j`ZfpwSEhq}|DB{?47LXSmBPk-!ff<(gnc3u@BMf#hS_9IFQ*<yKf^B*#(I
zPQH26zM8Z8@jW~NQQvb-5i9ejIkaPpto^lFd^ri$3p}Afzu;*Owe%PU9o~R4w^_)!
zf%wOB=zK1+MJq21g`1cPSMwzQ8Z^hV7X1@)4O=<q;1%Il>u9~w&pdQh!K|M>+GOJ0
z%d3&MCsyrN8n<^tPaoz_dD(6<F7cXBQq}81lfFuGIC(6eJfL`aj!988-~&slZ%;`d
zEta?6%W{1eRdZPP-_Ku5C!wi+#emy#dlU37A%{q`gE#UC9Xd0kVRW3mX7B1Y)QZFj
zc5QXBaf8;!4ZHkUnjd~kjNQmKZTkQc{=*X4hw=}~E)37-mZ|@&A7fpvw4x4ezXo;j
zx8dkPB|XK~B(H(dH|LNc<wT_FGn;1bPm-Bz1yJ077FXXTNZTQ&qD#j~SiwB^xy)t1
zNsh)Vv1?w{rQ;~ggN)x%nnri|xp1nfkp}&3ICc4Wm%Omv4Hj>vMEl)DtS+zh2DpDs
zH9c7J@}mqc^+~IlyVHTtX>YlLCW>+4TT)1&H`%L8Z}-Ln+!I%u9o}u$K6scX!me&e
zZDx@@67#yTWgs&%zIIOK9wAGbi&Z~7d%08QM9Zfu@y3IDPFyNzKdsbux^ynncnK!%
zpf3)tE0~SFpIcbAxqIJuJ|ME5E8@!AHLAyCXxoZAo45q=+L1CljZ5^ffDK)ja9mp$
z6DtBOVq7{j@`rJ7&lTd#9a>SM)>jPVKWdK(j@NP+Q~6PN?p39glQI9$$Wx7Bwjc4o
z$KsRvg3`g$I)g=D@vQ49X7{H2y2!I{QZAUVJTde5U`6D?XEL{|(cg>?7#a8j_|^5V
z5ieOXOb>pMJQmHW+8uHH5tp*P{#?Xm_)CWY(Xvr}rX!p^<pTXNk2E&Q0(O?KO6wUI
zHDb-G*RM!`%7Onh>X9M-oE83lkf4~#jpfnI`#2bwb6v-qBrH3ao3ZRVRSBQkS~eEm
zFC084Yf)zO+Fq4Z>9b<aBPC0I%<`3h&Gw;J3x0p{;r!*>u}+oo@~`8Z?~x;z^91Jb
zJM0W$zLGXr8_>E4i?SCTwks$ZzR?$AbdSNr(AW|o;h#fEoDN1ie9SW*z3|We@o8_)
z4P)c>@p}m$vADC9%R(^CQlzD{(&R2(zYa>qSBdC}EX71l$Co9#0n;QdAEF<>>+S8`
z-we;miIP{lDG~nNX<JrstU}8*!TJOSsE)NeazxyG`+b&Yj9M(2Ov}QfL*Sf&pJ)3u
z!J0=^NB2DN&q(26M(iTlyOT<0eg{Rc&r8C3sZ{ve8Xc}5S?Ovgx!NmJ8c7MJ?6CCR
z!Yu7L|3RW3%VmX-p03dhJ-=ACG4Izcr^!!`J{jQ#S(vVetNeKa*55?RVIa@GSmfm?
za<+3=X<H=fH=3DNA{zs*PjfC?czirE$>_S4aXr<wjSTB+Qs#Wo6>osIK1(Hn_%A5b
zF-ShC02}=ZD`+pLTF%po`Z>&DE(R^Adn;()EKsr`Io<P9nA+R4tvqt7{pcZ>>?WKj
zm&z>o)Sz(v#`zBNU?uK~@#*W~QG5xugc#lP=-x8o+$w|;&+~p|Cy=>q?b}V}jaBT=
z-M<?76npKMgadO-l}i4We9izFGmU|_uW5Dsi$Us_c@!6{9>4GqPrz4A&zv3OjEyMQ
zYrS=J_sxl<&Z^aJiRRaC_P2EQ)}f-A>U49Sn`i_vF`l76T9fy2q*A-_K`tEBDSnYE
zMbMIJJ~x$kTu0-0JdRqUo++3X+z=e{`0%I8$v8UVIAU}g^J1`Y?O7z{6hlYmlf|m)
zKpRh9lIR^RhMv*#xDNFk-ZInd&tcpj!j6-)EAm^oI3tfSV6yR0^*K7LJ!d&~za8EV
zKd;fgNoLy(y76+;I_xlqmX95DURQA=LN?uSa|a|y=u1%$APgpt6_pf{W^u|M59k+^
zLa7dd&_QoXtVJ7klXAM)sSimozaK&Sq$GpU-lT?uNOSJ>HT*~=@NA-qj6jawC?@QR
zc*Sr#DThCA8umIQUhT8(npbI2McG0#G<~$iie4r800$*DG(rIzcdDy<c(A)ODc1Fa
zFtc>6PCz~*p4VXv4iTNbDyr*^hx+En4ig1L$6dq|M$8UxZ+Qs#iA&^#{y0q9XL4rM
zWC+v28;x}FlZ$kuC#$L(p)2L{pZGC%5tR_CxdYSB{rxYg6z-lb(l!j4x{24ld;e-{
z?oI8+a7u<Lv2_vcL0)bC*ojLoEEWFI&qs0(AG`4dpsyR6GNDAaU|!ks6vvd^E4nIB
zRrK0=w4V`=5ef$(jzwG582)(9noVw4bQu&ke!le<5?6cPM2Um(+LHW=b#|U}BNiXI
zeE$%}vD5H6)sr~|8I_@1zb4~Xg*>sr3q?13hrzk}M26T^`RaL;VIhotp4}%hf3Se>
zcPL%C9%J)MFkeM$LjDjJ=l3FB{)7DnSo?1*;f_1<KfEk9zbndB_x3z5!J4SQD2lV6
z#_QsHH2jE)6Y4&5`)^A0jA~nGJ0<j+c?(dQ8rbdGUS#$e8oZaAT!;bdY61I*n@OTf
zDnZ1LwGUb7%rxV=ebTBWXVi!~WIx>5fkrfYd}^_J3E%JgI6^dbX`3pr5eGjb<jBEP
zN?5!)18ro%oW5-L?Z=I1w4f`Y%4MondsB&CqfH%C-JmN8UarmPbjiWM+&$@vP`U1X
z#3%i%iBh?8vc6_{B;P$&Md#7(!&L3FZ%bDN0faSP`l~dd-)Bz^Pm7g(O*k!22AxyB
zecov>+U`D>0&jI|6rNb9Cox!Nl1oB>`inosADoSK@lSMZPe}QSH#GE;dp!F3`S`AR
z{8|RY?E0l_-1c(=)@#0^nNTGYR<3TfY#2b(LgRG>0js#u_}Q?-)Y0<SQgs&ze7~<9
z2CS>x6?ew<_@0ORBt*NKYLuQwHr_V^6${Ojd|x}^+$>+BRAlYPF_xtf>p4+vF}KP9
zf*Mlv0;nFpe;g`#ng|NrD+dqIhJVbO?~+tvSFT!#sc04<kjClkq}<nRdb8|Jk$2hT
zz{<SfSFT?n183ByCWS>?P+qy8q{@JxdIvA2JgPvWE^tz}OUoh=>a{b2F87+EqQVC9
z%hABb`FTl^*CteSVBoj<fBres3)W!aGMB;&DIMe5EK{TTYlE_tKDqA|%_H+cUq_-i
zZH=A22ZF19>Ft`8Eh^GAjC$sj9uNub+)HF)@_vKFT<}u9jof3{&y6k0e|I1JQjjRi
zF1+?uN`zw@2zkv=`K7t1q4lGw#%os{%ZgXl-~3*z4SD|f(iIwx>FJf`HV_rX9_w6|
z>wlD=o1_62YbLjepaYNd&euqv;|OD~t1;hT_z>p^AqsC=*D~jaZ{~d+-M*-oY3dqA
zFCud3{<hcyM}-=+(c+;EH=$8|TWasTbL=_g6FvnQ$LWa&271?FZ!oRH3hCM+N~p2w
zdwa|;ojWthU5wbwj*KFt5_h((E+EnVaIL=qkdprGI*r$~p6)qhLT=vEoowiaM6hi4
z;E-Yvb-PtSv{9*gd(Zb23^2)ucB7>zdmi;scwV#*>Jes8DiQRMKs01pb%rk8@(p3&
zJdfdVP!oIU4vH!jxf^FBnD#4T!t@R^5ym_otR|<qCT-BkhAR*B48hx#`_x?ebkw#r
z8qA^W0nzBIm;r&cuZ%=E3+#4tww7KQKB|B!PL&#NV6GoE*N}enVkUe){&-~P3?e#z
zx|WUt`qJu++h_J7;j*#w*f+Jb9{v2m;Kg14Tm6fRShI`y>=puof;Q$(noS#6sv!nm
zFshHw;JE;w3?|mP2&aAP(nm0Ms2%(z2yd57ZHHTUShS7fAdek4r10eHvbe(}5+tQF
zm05=m^K;HEKm864<7Hic@=(I(;zaax3&&5Tn<x!vlctfXr0BXRB7rf-{A{JT-2<ZM
zIz@N2XF>?Mf=Z$6?VIsyYNl?ee^`-6$7X%96=+({^e}m?x52UxiK|F`nkZK@(m|7P
zQ4=knePluGaOvrH+R^Yn3WnFFoosq8%7O+u)gS>^Fllx}fd;a=j^$AMJ=MHz_0!S#
z*h=QmCLNV;A%<b-p)Jn(KOf-xm4Z_X=JveR53n}i9aQPKTDyi_DNC^1a8tNuyJhBE
zVZ}a(5T_0rN6qVQfb;})X@t#uk-cjeG#Y+~Kckn4>Al~MxU&@yB+wOyv$D~w&y@^%
z>LC42b4GAF!7@wsy`2r<h|+Y=l(;PkH^-|NS+GEq@DFr%3dUERs@~cKPqmzmI#c$p
zb#76Qfi<)%tGK_mrw?gi@6)W&{7T0Aj%nWxs@8qZjsuvIvapayd6|od!_`=0z3VRd
zuV?x-=%G@6uawA6v_AAx08gkR*H&$9*L>`QnLBCK5-~@Y)poPo8@aTWhsD7$;InPe
zJwj=tyRK1a;fFDnA0=iuyNau4flkQ6_$6(&B4HLq9Tw$Xbv1G~lbvSctYf1Q%U6!d
z&0zFuO$UFH>&E7l>0_DO?eFgV`Xa^GpI*a-;ez`7(B{O!Zhx5BmgG$I88C==orRR_
zVXOIlFyrxFDuTNSW4B;2fbDj^D<ptxaU0V<>s=Lrwk#4S^)H4~o=EP7$(BF*){a?W
zVJ;!hw^dl9;Fr=8EiU*8M$$XKuoCz%o(YPX6?==Io<8mMk0PJHpK}D>k*$9ReOXaX
z@-lMnbIngoKOKg7r@L-Vl!kzj&C7iO?|Ra+w)pXTxPSJ$gv|P>kYX!pTV-Y6w4i5N
zn#|VCt|GfX@kC|+%|BUPR#2Z47CiZJEe8Y+z+(95$ET_zX3orPhwRnp>%^mdidB`f
zy&{SIKJGYikKd)kzJt~(3H+(}j7$-_)$>D)KUD8gl`3?E3lm-^&>+jlyadKX0c}<~
zW8@7+))R+aaT?!$bvuMY#+RNy@j$JRz?<cxzb2oD(ZDQ(`5psnr(nu_`_g-(bU+^f
zf;rg6u(m8r`!9B2laol8ZncwTwE%^KQp^Qbs`^<$h5Lx|v!-w^^OP4=oAVP#8|fVk
z9-qG!^2NXK!yk^MO1tLvc?!d0fXgOnexX4Af^gzOtv(s5<H(gV(gOLv*E6DS|A8mB
zt`jJ{PB>bcPT%-i>TK(v8WvNstgV_T2SeyVfh)@rwZ>K`>U)nFK+jdCx6qHmd0AX9
zuBbA=K~?ghD&^U-rDXPtogd=0CF}#o$3=N6+SYDmc{P5WjeeJeQf1!DrNIXC$bT_6
zL_=kInWBDsDnX)R2_0X%BXVjEjGjF{=<Vz|88wj>#QLRR#$J!fwuK-|PkX0<?}+P}
z4>>88%;@dZlkpQwlhS`|v`O2Tnx0C+ksdG}#Dd7k^ab3$E=FTzlbw;SPm2E84HNzf
z+$~$t4*-@Z@tB$QY=%{;nL1|*wz@}$7MMA5s4?OqtJ`%O^Xq(GwDjgS**&Ly1AH=)
zDiT+{=EIIhlI74i2y!Dm^~Ko-h%vwN_LBz}<qJRH?ZBEav&p{iP>mpLa<$KFPFix`
z4=UX7`rx4e2+@#Qx@VcwjfKb`8OELdB4KTl_lTcAELEshZ--J0kh~DNOCJ0s(%lGX
zJX)>|1M91~aARC>UEF6C+wBie8Zy5LrKE?PW0z;2>U0Dyx1UX0+cTnkgFFxN+#G!R
z>^^vr(Y6tbB}ff%Sk7BT4D2wP3J(|l2m<Bvspo;%t!qQ7J&OT33RL>R^`mMh6vN9s
zuMGVrN#L@bMS9)ar6q<b>5l-wlb4gUoL5}ww4Jf&PhWbg<So<+!FoYZ59hYb&oNpG
zJCEg`&eEzfs@%m{qrhC{NO!@i*~-YE8dH6&a5spAExHt5Xdq{=kTNnYjG(DCM$cAl
zb9@|CVrr?Cgq?ELlr}`rhA=KTri#YLMhd2Nb?7t2yN-2I-cP^+Gb-LyBK}1frl)g@
zj(OyXccAE(M6u3rR<%9*Qc=QdL$xg(YpFd<Mf@n0iDCwY`7K1KS+(jOA#&b6)r_1-
zeyC;56FpiA(Tgf~gBOd8D=}8cpT;9d+uH=0R9S;7L3|W>TE?}NWl8HwK~oshKzHG_
z5IsrmsMo~WSll=`y5zZtGg>@iekr#6(^JH8x1kBL|GVRPiW&a8)slux>_kxO)hCcO
z39I3pO$-3nYk&*2$|;iOc!eNtFby@~I*T6l&tQi!!J&1GWg>n9LFZ?#eLcRY44*W2
znziZlbQs5ahKvWw&HzWF0m}&i;lX!r%2Q;%ie^q(ywrMJld`bSc{Q}=;3P;s=IFKl
zStShZ0@Sr$Hf&r0jw|H~swxU2zs47UaoV6RCS>s;eFxRzl))vmk2eCMKp6xZI#uQ?
ze=38@#BViPEmbP0O><}`=DaJd^WY~XnZ`+ryZnyZSpD{nm&Ji`bg%<K9jF$;2Z(DP
z?Dd&nBr9)P#2CuZaB>^qjo8PL7ZGRG%mWWtp-Sz`P+Z-jnfC=>mhjtgoqB5AHEFde
z*luAJPD6MprIkeuZJ+s^>6*fUe{{`=7GrtSzNWs7dqB+%Q>B$E$QggS>ITeZ$^^?p
zq?mo6kA*38G!w=3FYQ=~FUu`ztZ0~UDSgwYslIPf^?4iXNST5aeoNQL`f%`~R%n!^
zd}ffgp4|60Q>x=AE3G>R-|y9lA;30o7Nt!<7vm)Ia+tiJ0QbcMoN#53T|P8Fff~m$
zwXb2WD!^rhs$6Aq#z;+4MNOd#L5!~t=#H7fHYqx1kK1JzTfI_=o5Mp>%`%w--&v_<
zcNDGBJVHWb!L3k><S0}a4sqJm{+XnkInXTfWrLObQ0#87k5M|R<M4ecHV@RDyNglZ
zm5>*z3i2vLdW!Qj{&zQmi}3w+4tcH{EJUtJdBZh5OIgE&3FTe&F))gB>2E_dR_z;z
zt84?O9{OI8tIi{LPGYnkXgo9e0cFzWd$<>6MFZ4{Lp4jkq!lU2ysir6G1bVq#ZHuC
zHuC@pW3aFK87<_2swyoqBoMT+4m?TW3YR(OedC6S@Fcs*Y=z^5nu<OBp!)%fdZwCW
z`Ah0)fXcEgvzIQ-wiw~MwN285abHISF_#L=X9FcFm7pLrb`Q}CxmYJ~RID>w_o&yr
zKYfL-!qZLeu~BbRo?zBc;13=8o5I>{*_l1oGbGD`nC}%yV)M7^#PBnEJ6d&?vbm|q
zYnY0_zdEN`N_(iEcOmpif|P^%Z3#BM_$pWK5uQ^G%{IEzRLzT25sW&<M;ccn?*~27
z@g<-t-Ce#(G<8%ljr(u1F4^o|=E1UoZrtWu`-e%#c$qT~VDL3|Wy%VQjy#ZQ@E_h8
zou9J02Y+&R@g}>=;5)$eU|&-6G_8aFH%ye<759e$sR5h*)9_c2r$$gYuWXvlE7HW1
zfldCpgaf52&9W|Yz^49fP4B!Fzz`p69*Lga9ELBfM7t<c^pmfIWhm!)m_j?CR8X<v
zdzCM-bBWz*XM6t!<gA)6xt;b~RJ9pq4lv>&&4sanZuUTh`}nozicvaf@7zMdu<<tg
zc53QczhGQA!nV|mt4HOr<}NP~8%!25Lu0f(>)<6QgzIWPUgO^l4v{Bbnmls1{n|AT
zNn}a8bBMtCVh!pzv|OFV>UQ2$VvQ5nSxnCc(_6GPu0w&!a~$@MhxbcE2gWjW$2>at
z?Vl74BYkzN<E2QF>dJo0VMG$6@yWe<=tR|848FJvR_7N-J&dp49#elSN|piterq{K
zb3hraD1>c<n>RUp{kL#dSjj<_)YGvaWgB$^{)9#z@#ni*7WaK>={Te&D-`cDR9xsw
zq2i#?Fi-oWTTLHP%AffnS3xvE><fcOhoM}{N)Dq~(Wb1~SYx?qLis9&&gBfov*&2h
z%3Xl6uT7JmCh*axq^Gu~iH}~2CP`ACorh?b$Eb)JtI|a`SbTGSKQ|OVwr)49=^Ar&
z)!pg351<JXa}7lrS}lANR9qrD$A+hMmpS~eSuxzwh@j6aNqq4jI>00>!@qU*+hmm0
z5$_O+MTMuA=1xBc4fdPF3t@}lo#8C{EbFaIBdzk)PLFmg{B|lHS>;xTwIt8;QwG1X
zx+<0W>5%0jjhA1aARLpc<ypMnp8U0~dG#(Csk<%><WJ5&{(W$|gRXOQROj8-n$Lp%
z$eE$?w_@{uFW&s`{nni-<nMsZe-VQI{;dCl-})o<{Ph86qSD`=6|aj!<b%ZPswk?m
z;iCQ(xH*$)?313t{dniE@A<3pc=FMi%=JgTa>xEf_>WZgAC>Cw5B&e~;Qr;a{^cwD
zQIh^TntwiN?TnuOPhGJWaQH8<-^Nx%CKT#vE<9k0vv~9U$Jf8YTEEw66a<^Hy%06t
zP7rp7;zi<7j2~fBrgQx{F~2pq^GIBfMk~})XW#jc5a-wasx`Khj4ZAqCsBdQj^XfY
zrlI3p3!wWDtdV4B|E<TpzRNvoe@9lP&(ONmg^NJqqjLOR0@%lh{GCg-ydp$(1P?!i
zlA5Q<P#*RTeiKZ{_-gz^8uN}6^drI<cBp-&J2sHKgzOLTG-W)P>B0pALFJ60sXFFL
zcG@F6_SFKvzrFouGH$xrQ#$jst;AjDJqYMX$fc|0usiR@=V53IO&S6)RA%3GGNE)+
zg4A@|kGjca<f}|7$&Q`WS?~pIM3_=~uF`s0Ot|4;vB&HkM9-StTju2Dg2&b$8BfiK
zSmI^g%Z-Nj)(}rX`BhhG6I~v){kn_Qs0a+>v?;min#4Sc`6W;RPBM~uprJ1}A9FMD
zXb;NQ-d!&W$yD7~9^4JhQYbK2OPeBD%HE$1af7mgNNth0sYJc_a-wj?DZbgVeFyNs
z#4D7r!!%IWr-MS3-*(n%&kh&sQ+GG>@m61EZEU*Zao3o$LRoT!<S^gex>jYColPAN
zDZeXNzsubhy6e=Bn?@Zp1{`R=v6vFZ)*YYhx?e4&p1K(d<XOIuULVB=dY}k{n{e~O
zd?^(0U5t5TR3&{fzCTlVx(qnoX|27Ta6}y$j=EoD-pJ8B8KMrrx~9G7k>&CZK*Uzt
zHV(yBGh*HZj7$e(28yR!a_C&Rnw|o*E-oh<yJ}YEIL7_vQ)A`5Tp^a#W_Zc8TKClI
zUvH)TfK&ib=*fOWdtjZ(GG8gX8jXU$WvgQ@`)Yun>^sk6{(7wQeMIcZ;KM+T?CU5M
zPhqe{`()j8w%3jiRYpp~L#k!a`VxA6u5v_&D;XIYGuuB~<y8v+LC{3LhxXLk&`72z
z{KiE{h1o9gs7NW!Pp>c;FYziFR{u%8SgT0e+XTW6xZv5o#*O;V1PAhKs>JX&*3eOD
z+aDKZmbWkYK$hpI#1aY(ogn5iZ<tFn=0Zu9+z*i+1GCl2NrtD|0MVzI8eO`w6~kge
z8Z9^k60BERO-c7s=MXbgm(qf}MFqI&%9TZPg0*VfUTj7)fQq9asiNzU2q<ba<UdzF
zBZ@DWC{?A7-ux$r(Lk#UcD-o@Q);4YuK8?7q_!-L|L2mRNto^p)B+PrQ7>zuato!E
zMfPp3$Lv*oL<olI@M!6-yHu*bKc;=0kZ_lMswoc1W9RCwmi1>FH)*`M0F$M~qS#2A
z+Hs<QEDT&q0&ddAp63D~T7U9DUjmP%7&n23Bn#q-`S>%g3lJtq%(T{ZO}BfC7_sEJ
ztY*J)DxJj{9n3u}7D(FLD!bx#;JJ&wEZlqf3}fuK-Ey>6(fptm3RG&2Lh}wo7jYL3
zLb}iYGbc};AW{jXs-tx#!y|~w4p%VoxG{=ei)C;qLH{lg0Ce-!`PA!L9W6uPwFe3A
z0BYI8`X2H$By)>7t8@FdYT>Z^RA-j5W7?~+j!k%i#_v=lcy7&@vms_X7QMiVQx+u2
zzy39MryQj!zl4R!2e_Y44?o2^7rhZRI4FJt!Kfd`o#2=P(Zf(81%4{gZNfhl7-VAt
z)13A<Lw0e+S{lpZvkKbAVhjg=`VKCyMq&Y1JE^Ce&@*pC#2I8$-u}MLhoGI2^9SCU
zl1svM&mO{9V0HhfQq3tZy^UKB^5`R!EO1Bl51CYQX}I-Yh!&Uma3P=tgf!lKqDdw;
zL}6D!!WCrDFnN^(8=z~6N{)o2>7iN=(S={$K2+qEGwys)St2i_6ic|);qoZO#nufs
z)VwztWf}gO#h0&FyRZl7Y|;IgTm2N@bZuR_qDZ&;iFM}k+eueJL0VP``G1HawTy-#
zzq<Fg!2DrWT+Vjp@-^{@X2TO*Z92e&+oofnnuYU6QGwXbG07!bQJ+mS^I`>6ryZ#o
z&`=vx2szEyxArkHf-UA1N8jEiLvcm=b56H{w;Ta3@W>Oqw1<0;_9N3x7g9B`6(7vY
zzS3~^+s?RG<1~&H)k8S$+Q<<whr)>w!ife<iW{GRiKBMbaLlfxK)`A@EF@~Ar3qjv
zrpnJ3E~JQ|{3bbC+Y)G6-9y_}|L`oHqiLB|<kc0`P;=hV2c+W0n_uAu5sv3Ij9l{K
zxdDn^?Ugw=buxnDIT;1&kRNNKb1_Q$)14fLvT^jw$@HM`em~K|sOl`5t=(SDp&!?S
z{vs^iNl#`$gi*-vR<}r6PX_3lO0IpOtCe%h<KOJNoRJR=!CvC38y2<)TP<vaEQZiT
zBWB<P0Y;?eL>DWVkfdC46#-8nHT(h~BYT~`l2Ep5&4loB1nI#-UJ#nDz=1{H$65&F
zz!p3wt77bEwj5&+7;v1Z@4uhb26el`)ntS>uh@8VWfG*pkn+Q~3FR%Tk-LTkrI08Y
z^l_h@e1+ReC}!etkIni=Rmv`&7<F1od02>MaaLX^1H3jvDmYAM_Nqn6C#MHA5%sQC
z&DN`*O}Q2OsoNcn{qHesqDd%EnY{#DPD9;lx3ZAvuEUhczp1EJ6>mispQiQb%!J7F
zu~OSP$qBGl0`=3-d1$Qp*(X5{y8XSwVp9mXV3P(t3b>ctsh1B?ustjD)@JH!MZzeq
zr0=?B&z2Frf<fP?kIhjZ;Q@0nUswaX2U4YW4vzzFbvLy%m~;%&LkRA`Uf;;%*mChr
zwNp)K1!F*i7MMY(NM5*pzyQvFP1+<SX0&+@a7Bpy$bWNOcn9v<ou*w?umzL~%wu8m
zT7v?%3q=rYn-M40x&Lb<sD~O2ZP#yas$~E_V+9s9<U_cU1=ByN`M3kdL;0Ze4P9OC
ztLbXdhXeDO@dquff%q4Iiq__qN5FsvjvR3+6AEJbN`39t61ceHU&Z>BInTH`Wdzpc
zlpe+Zs;?t2l*SyFntM*m>73!xfUH3fu`*9W1Cg$g5wW4<`Hu%lxWS4UBxGHKl*~ii
zwZ@&07j=fa1QveSJ~ctgaI1{bKyk|34)pef(-vQU%)2h35ZZdww@L(RSszJjpT4!1
zget>`a8_Z39o(8^7q>BXc9~i(sg8DNe(71DNu0JX;V86KsEAOA>sa7+aqzDfT-$Cm
z#t1&hE1G>gIPhbYV`S9tAy?TRI18IeKg+i}zd+pQ;3sa4(zsLGg}hyDu0TIo@o{S8
zL9yg$=U|A^OAG`!$zHjT1C<|w9-bHNgsib%GTHjNMSt+^XCEAJJm@uggklOMnWwzB
zj`>jL6WyP+wcpCkggaW^H_h95mO(g3h43lIPVC9tP-TkD0z{V(-qt5y0_=laASX~Y
zmiGp`(v<r{p!CvjZ)~wE-B54eY15gA54hf@N0el=S0M`vUfG67BSN}tuOVx!DQ~)K
z8JZPaX2Hdf4;a|+x5LN&+D{<Xjn2i`&6cLE#F?Myb>gg?T1h!H5nsCT5UDTRZ!CO0
zcZz~Nb&yL<yfMP{Nf&S7Yg>@gLx~nSl@n|xh5=kGW7)=NS{iLHEhVnive4P<v317!
z!3eLtO-FamIjAezc}-nNcE5d=0`Cg|Hn)1k2ft){Sj^bc!(#4m(&)ZCjbSKxdqg>-
zWlBJF8)Q2YY$7@PvWt)#DUivG>(FETiS^ze9o6;U;tFbK861eUCATIop57J{(TOmU
zHBJ~mm<rANmly-#u+K2dzvXv6mYs8jR0P-eBS>4o;?Zreyu84!WQY<io_9?V7L+M=
zfZDiKl%oiZ9NcZF%WUTwmlqD!u+>C}i%ezEvCq4SpL0d&(9rZ0WDMWp4y@J=E|}ts
zkV74HAJ2i9MSXiFEa{z=@9ST|gpv?WA6Skd*1{rMGWnS<1COBq$kYptK6i2gsb6`^
zB&B>ce(^vi;o|O$g4w|i=56{1!kI4+S6He$>t9OPQjiB-yEb8ap9~8u=_b(2p0c1K
zFASM1$+7bC3Kjs5($`u76YXE~M{UpLM*Z4(W3x#~M2KzSjSqLFg-556&Y+=@j&w>&
z=I*8isQqQ^0~hv6fdj>Pzu(!*IFc|RP^E>+;~~YYqsOEmuya?VqXh$bK`9Fa=Cxmo
zt#PL#<4lZ2_n6u_nA(-9io!U*#wJIS4UED~4Ad4F9MW}|VA1p$S!y%P9iUoaD=d~p
zKw8AdAG7dRF4|A`qUY11f@Q}_+XXs>e&K~moq#UqQCzu+vB#|vg;py7mE65hAojAa
zDSDoNZC5-PD&HGElAwRM6jy6A%q>fKg%2Bakd}d!$v)lNHf{{YiUxi*jbSKo;=$#S
z3jZv2S2~UPvaa7%taWX=x$?WHrk`XB`beLXU3}_+cBr^ftkd=h=*cbJkctXydr}BJ
ztK_hsOk+7yRmjpCFIDZ(G|6CSD=U+LWSwQJmnOiX@mlSX$Y>S!NQ09106`ZV@eRSP
zZ7WNhftM}eoXvFj=*TV?9?Yx^0_8L?ZxbivQvk_mQQQ|oL|FLI6`_2EjS^gCma(^!
zq`Bm@uHsh<p*Xs9;pk1rNR#MKQ$f!Ihf=muc5ir92Nvm&S^H5lgnz945>(wT=k3cM
z|AB}NrRr@Hifb=Rs`GKgK@ya}Ig%r1fbFbl3pkM-YJorNww*Lj+~JMm?zI>4NzTB!
zbTp6;#u@V)upnP_W;ps44z0}3ax}c4kwUWnWUFNW^P)ciuj?6=(k2r|W_z<mb1J$L
zic{wwz6YKw+)FE`4-nq*vK+KkQmvlBp}Lz5w7F<TaqL^pKgu~>76=pxmyIH7KgxM8
z9Z$O~xGb_P&0`<{GJ`c<d0cC7Y^ty=_6lj|dBxVRQ1o0Ip|g1z3mwXsV(H-6ka6SO
znZcxE@?6Kn`+n?Ygx595jT*@p{^H3)PEh`;hDpIgO1rp%KhXfUs3V2xnC`qhMId+D
ztaM(Ra-(}$P*KnrKJ1yk6?v8~kz;*b{P<R|XF_z#2<FRB`H{^Ba|>FbHsy5vV~klT
z-HLk8le_ATX#XWQg17=$e`>Y7U?gvmhKfKdHx%;P!nCub{zc^_vR7B6SK=NFrr{Yr
z64_{a5X4u6yD{`77yKh#A*Ex_1CrA1F+7wwiGW`%WdU%<LacWrOMY&|G|FgvB<6Bv
zt4*+1EAOExzq$1{>3Sy09@Ts4>H5FS*^<KPoiLV3FUSjZ#MC@wwiYw+E8MclfDq0=
zC(F@-X{k`2ci75^SxKH-%IDJ2QMm{C6PEp=3BiCYZe8)L)!IVeq>#SFcu#R`J2f}y
zP1N#Oeo4gif|l)x!OpLW@zAX4`N%W{&jOvnpQ4tRk+b~Ii}Q|`op!c1Q3uDaNIdQz
z$PeY}+8N;USuS>ZZ*(4#Is4ip#E><q{=oFnul*zDR=b{zk|AHD%!;0_WkSA%=66ZT
z;Lkk^dz>b9@^rcBgB;Qkii!aBRisXG;c&TwEX&1TW-@Hel&d5U!6jAA8;a`<k`$1C
zAr7sX&aSV#FQwqXn$#F^U|w_ZK?Dvbp|@2hhn*X*c{Fr;a;g4unE)m2!wi_a>ayX1
z87!=#s<1e{qJ{IkWS3koqw;d3Dh=UDMc7N-=@GgSN9e?-F{b4!P2h?d%nw--3Glxq
zjZhpkat}e;%~ty^A}J{*h-+M?N<AO%3HQoWWH2n9Kt7zF1h}(!i=O4X*@J~OwHq$4
z?~1lPtWc44Nys<oOmRlqv*e2)_zKYr`nj$87d#B89uPf+X9T@4LtOc5hG-JoZXffs
zep;&(Rn#_#)EuF@;z%C1hhUD`=a-KqpN^LnN?CWv$?2jJ60J<LC3Ibb=OKW&GqP<G
z-g~P&b{?+|YIdWugpWuoX|md4)r;4Ro?P}b7#3<9Y}|lg$bE+Wz^+t4K^z>$wbUd+
z0qHF(X2W;V_FW)WFBUi@<mW!dzrQ#?GiPUt0r}iin9Yp8p%6;w$fsldeXXMAU>BL(
z$Ghk05-Hw}AWX+uE#$SoW~WQJ)~C*Z--1GWU@A5mERX%aKn)7r<wMzpzL2BOv2)c{
zLeLsQk<AZ8L<kp!_?It!gxzUwpIs{t`@&K~Vb)96#x;!Bo+=bfiqs|k;}I&ugx2RJ
zUr4DcN;0|}Jaft+_!PhYs$=zYZ5*bO;{9GZM>xw7;b_8d>ZX}|hAI>aqT43L2{>Gv
zUG??Hl*DAZXt0vJhizAB{0nuY%amd)+^$~5&s7r?N&Dp6UXU;Bj>@e-8%>1*QKdbn
z<W`lEmF00x(?&W5-h?q9(adfh>$w|7S$^R#uHq9VbGU@lK%u;Hk|@-W*U8=DO*LC4
zSnz`fN3Av0V^;vV9;3=SuxvuH#Y2mwSyts=Z6NSKMYL}+1DsFeq)X$~(nwPr{CY~c
zjxAYIe>wUgqW+i}iyup<stD3(#L(bwW@;Wgcv;WniY7{muEr;^lAl?dHnSf;cjzVV
zwpQ4USynGO?Z*s-6fO2N1Lx#btM%I9ajZy-O@1Ezd%PkCVX3$Tr7zxUeaqu!{eUS$
zc$hfzDhzPYT4h0sBNTXv_uzlb4XPhgyLH~t>DM`AVfBPh+=<;>D?K*Z@aUwAwdrg9
zGz>)1njYCR9J+(=H^{+>jZp35l2FG;O7~gOFmvql1DvG^G)=$WwO`mb-P;-8e4pwn
zr%20_M{#AhWp1&4;IW!{Dx;G9+-`+=x}=Y3->^m5)2MVl!h*z!wk@caWuVoqK@L?l
zP7ROUZ)V~_>Bm3`=avI_ej*OYYl0!zY$D$$+sBOhmm}wQpgiZa-jxKC)`&xIT$>Q_
z_uSsJAfuQ>T)`v^NK1GeEx2iA%jv{@4narVs+2#pFNK^Bg_>(9%mXrBeQvQoy~WAE
z!`hVgD2;$qnW)~j@s{}8_BYVe{uH!6gy9UU<qW|``znc2X+4Sr@vc$vPbzihmm~fs
zm|?SR6Z&l0)Nuz=5_khIFYFcDI)7MmTC9zGy9ASuU;#zq#O@w09bVBH%Lg1u&-iE@
zI`D%x=g#xZHLVFWGUx6x{7LU%|GX2Erf^}3!xpr<aLiKJU^ah~<y8(J#gxDFv&XN0
zLJ2Y=pX7XWK;;xym!Hp}!x9KMQO!E{pPY<V(ZX-9GrUNs3~SU`)dX^v^(BlJKEe$}
z;RkjlF(sd#<BDu}_@dd{K7SJQ7)BQ0C0{w6@*Bu%CVsLrV3VDfnUYCSLnC-@aP_?0
zpuT3(atJ38JOJV>!C;Nrayuj~cNzHrib_6~KqdbmYj#X8%SmSnC+j7V1h#u<Sx}za
zGmF)LDxJuXj(k!_xD#9MqTiifS+rg)lbvnDaVHjc4d8%Kh)wz0IDX^+fi&2X(zBU?
zR}QyoF{Axo$61b7>}o>+|Ac~e|F9T^SDs`S26-GrD&y|q4vUYTALm{-Jn3mZn$*ow
z6>kF~?9OU7q?CrEm$71si&-CP_f<2(@C|#r$NPsz$I*?o&wos3!;fCiNX?9X`Lt;3
z-~rH~)?PxQtdtHNE_q5?a`62um`X!c?-k|5={z=n>U5MQKuLim=CFG_fDS`3p<}sm
z3+3|E;Vb4^j(qLsOT|uKw@gp2imr{M^rAqy67C~}tr+*>>>hr@l6n+$bMX@C9<DO2
zZ88j`xEE`U_s39#&Y`IA`Qa8i3%+%mM&67BK@Lb7G+xvu!J;G_+2yew$-czd=ChLV
zu6^B|Ean1Ki0>_&0&Z@7h(RzZW<a6QU&duYGV*qwOx}3VcHF>UIK$s>LC!Jl?NQ^c
zo5X9=ZAvexJjI2mqU>gOPgkld#?l8N2?0m~h(rx13;(cg{i1R!&T-WoVa1jX-!n-|
zH(4_)aM4&WyBgWU!@lGb%c8JR?7zdJg{O?5Us@XsvVs*KJZb0hn);#?U&3y~fi@+0
z?-@%CJj$!%tfG(TzRY&|?i!2F{=#q$$Va)qvaQ)ifQ8aQV-OI!NW^Y8u$GZ{mw->q
zsY{o~NG7#gMVUwt%bQ#XMp`OVY}PJ3)Vz3p-@3z=_ZIfZag$o11sheg`0jzvjiIJZ
z;3*D-yym?`ZrNziiQT#TgLT@XH|EPH=!$WJa?}r=IRv)D(?D~-O8^vF=RGowd5%rY
zK|0HhD0;(5EX#hXaAkVUVRc9Z4Sc^BD|k`B_SAlw1wd5c#MWD^=>K6&A0+kM28s(p
zv&-Je5G-53SFD#0S}Tq!Mv)}RdO547JGr{7Gr0bxoJFT_<fGX1_a4GT;hV%0eX2#I
zbbW_4DNYeID6ZA?*LX4q_SfHAL-fVr11%e8UA`0K-$4=i=NyvfA%l^k$;E`9RdKWp
z-k<Ulc}!4Uv0WrKI-1PVc19IP)^B3Q3$YfP{>WjJhoHXAMy^qJwwS3XObAh|B%80v
z>Z7}5#Y(}EAQ=Q2B6|hxp<PL#u+|jY-0CuU@I%qb7!5vdP$`^j2S`>c*_S0TbdT05
z{HQa^u#&OQkIxthRS>=xPcG+l*qRxsllY>14#R5OB9hTAOoLoO^rzwG&kP@)Z?Ig(
zyW(}U&{C&iBL@N(6SZ%GmHke)+8YC_*lfEsYD|Vw`-SM<N{#NeZBC%uXD}9=mGgW!
zM^n}iqm;RZIBX(;k!$?XAO85xKk8`b{>OGco;>Vg;`IvhH85G4@O>_)`dY++F>v8l
z3vs@z`78FG&d7ny%L6QGa;vL)DnG+Av215?FC@9%%#*S+V5$8cetWyXNY_?p7i(@b
z2!&TVTU907n{mge&SCz+rq$4FLSn-d25!*vgaQIggW!62Ix#M+3~{-GnH;6|B2j7)
z{jDSQoMs!N8y{=bosWc0WI>O%Rzp<)57mpa4WM)JmKhxt(dFR9{sED`ofaWl^M0zg
zuB)g0^bg26VeR0g306#y*j!3X-)KC8w4P~W(0FP0dnqK7-ILmnE_p_5TR!((`~B4!
z{NfmwO-F+r$Z2hje03T6um><Fr7Ud!`F-ifmeF~>`l-gNHV|0^KH72P=h6<ow<Ly^
zuHOfQ7U_3cdaE2C#Zc<vka&e?CyQS6i@d<EKVg+~mPEMh0~gUz&j!_moU9u92tpxv
zkotrpHT|<q)5;`CCH-ZXV$)Nmc2e=GfuF`pjO7k$oZET7!T#fj_aAFtSve2CKs#ID
zjf3h%XHn^lV<`&+6FNSi?O_9C<0hz^bL(_C{B1jrQyG&($nDWEOmW<d4(pjWtsdf|
zp|LQgI-_TPEAKr%jn`FE`lK;PTn<wfWUB`;M$R3t&9=fYAbAohI!;v&si)ZLuyJS1
zsu$T`11n`HZ=N~YF|y579vfftn&aesNuG8yykHsI#}YwD;<~VnwcYcjq-_M09D=!C
zr;Q&l9X_+Jw*P8Pimhlpt`p%D(7H5TVmpR*T|_lGrcI1wGF<d$P%~q&F#RF#9(KnS
zB<{rnRBl?xN>SA(r<N3?CW`S8Jq&7~bI?n=gHQ%<n05HIc8j1LGF#ofPo3!^(KQ|I
zq6|}#iB^F&5Wh8A<d!uk`0(X_q*#bP**J*ah?hz+KWER&0T;n3Tm7J014nrA9vBfh
zB?WO`h6kz(_vG#eG<EQt8{X~K%knGel6i^M_Y;c70bE0yUWu-q2Ceq+fHn4W#G#uK
zu@BLYyNa5`N5j~;71%9ltTrl+?p4GWSSFUP-fUiKkyO{$V3)UoDRRXcPQE7er$0<7
z{%oV+{v!RTI4ComMqXwAh4pj|hZ={@2r9yFp;SQ|@;xWv{rCQJy;4tiMQ7UHA1Ipd
z$Ug0SfKaxuh1_0O(A{|(BRQ&~>^pjSGj8-H-Fp4}BaqVhQA}IE#9y_U;iwuKQ0!QB
zN`A;GR>?XzgmI;gCvTt`NRhgeM4tAxgv~_>{GQeR@NSr_$arh(9X3zyq&bC1*`&a)
zhmpx^J$9Nf9|))DIni?Zn4KNQwEkZCP1wSR2n<P>Rt0&xoCp61vP?daImw9@e#3um
zknD7B_Z#Nl&c9cRIu;~S7~h$^`FsBaR7WwYzqo<_!Ys6JzJ1Fk^v9_GO-i(}U|g~E
z|3eG>-cTWCUE~6urGI-(YNnw~Ds!8FTrj2elb~B^m}kEGZ_TpufoPlps>jKa?_M0@
zag|9VjxJ}Xy>hXQ8qIJqGS)ji36{e#bN3@9N@>0PL5gf?^E4cSOJ_%gsNL|veoKKr
zS*4D`-<CI59|sdMrpCbhWwJLjg@Gw9_Q|o1MJs*UJ~?Y=UjNpdUaZRrTL>zDz~`^3
zMy8tk?zY0%?&8UYI88{^^Ltf_ymP4*3yue#L_*LmLC*+YC*XMyuK_m{#@vw0?`_Od
z!ztBcQiNeg07_mDh%z)Xfn;O779B#Gm13mgC^ZpiX?>;TjWe;#!q^Bk*if+e!+bI7
z2M;aH^KYzC4=VA%dlr%#;<0U@$ALVFsH-?auin}C5e)%RWK*Q^Y)aXG<|&T3U|Tz-
zmlhmFDO;};{WA)BAfEaCtz$hVq~RWAr7un_#I<$4?^)-6)CAdjVs`V?iq!j6yW$t$
zo5+FbFzB>rq;37gHH#x!oUxG;hCl6WhT!JhqfT41v34?(Z)<ZI?yj_b5WWQC@%oLD
z{9dSsJ)uC0H1<wrS>+CiQ86;EEy~OJ{?ijKGM6!y5TZ`@t5c5&!{hDmKvcZ$OM9Dj
zc$?0O`8g~mK3A~24{!nuTTBI)v|9bu)wiw?b>S%@Bpha)2x8SW%rAXHL4(5kyF;y`
z@b^{OI1q*5owH`|H70Hk)Si(IJg@0Ff6xNpzth{+OwDFbZVlWW%wG%*SNa$zjfrfF
zQBxM+ulV!o8wW%G;<O3xNf-%tb7>XAy<iz3>Vy4ncJ7Yv6^D5+3W0J4Ce9tSkJ#tU
z4;<}3sNvO6_4KluN^r92cD7@wMvnG(mu~*Ljp+TSWy8?I`EMD9Yrlc~AY%i4*#|O$
zY@+?Kq9`v9cD@y#aIugR-naDm{Ve=Oa^}{{0C)fXt|G?7AELu-L0;B$HF_YK!D|r6
zY*$ly7(fZRCZxWxtb^lj`%ulmV50?;6EJG^wh5^2|1=ls!%lBySO|y7OJARadewVT
zJWl7mS{6ua{+2~gVgmbm6?v1ppp@LXdnc&j9r}9N$3Qg1u2vfYM|TM(RW%{@yJ2N}
z9c0f)d|P^IFH%y_*7f2fUVaF;AHd->T=n*&MG3$DCp)02Xs=7TPLSr}V(djXX#A%k
zU}So>2B1d4rf2Th2NY)`b_jaCjzCj}(D-uJz^?@@p_7(Z4EFB(L6_T-bz-4iqUqDi
zr!4SnD7LIz85pUAiH;3Li^_yXLRfyd7_W8uvVaYDV8yyi@JQ0@30u^XF+2BXn0W-@
zF7A6Q8~g?~m8$VckLCitf2`Ba3-fE4fVnpELf1-Q2RD%YLAXo`U)2iy2vWL;;{9Am
zm_Mh1;HZ)zVVu|5HTi=TZ3SRs>`@y_QJ^U?43h>optv@~1-T%uqM7%~tkExU9`hrl
z=Wg?(xcpIK=v;=9I)G_lhqD8oALPYP_kH@BGih<w5*aQGN9PLt#-l;1Q0u2MNf?P9
zbQ4Upb`<zGU4?F!97h*T328U5W(e>6Sa%cSHOP9$81N6UR`h4CoW1g7C}qjzp;l*z
zia&kVd?&VU+~Vb!%SK}mN&D}c3MN9sNpE)%`_t!LJC9V&``l)SZPnlcLxg*Z@f136
z3o#zrBCw(`5-||yR^?5H(U6K58hM6|U`l4tlBZ0E96IUNp{ECM9F{xiY~T;a%Y>^`
zrWFlAEK7^{dO!@1Ig4NO6Y*+l<in#+eVe9MjyR5&{l~xD0TUMz@hdlppCv|IqKV>k
z*?mp>rHpNeJ{*&WwhuaPh7wfd@0L4Jf9AFoyPx3AqUR{C{3s5A*1yfRtn{=@<MTnk
z{CyH2=E05VF%7PsK1)e8{l0Uy$lN*G-w<L7WM`DCvrwm(T9yXgoQb&2*$`J4UNmu0
z!0Fqo=!9s$$|8b&${V1up>&K?s+Rbj!IP<sKd;=?yzy^?4KQ!O;2&raPrgksc<|rs
zA`7dV4pVXYFVhbGqtoE~d2jGq7o*nV=#4t*&Je1YOGrl`A2{d!^S58wOw(ju6{%2Z
zitD<Cc>qKzs%uvAqU+oWB(H;;H0G^J`_!WJST+&5IEmdhm;QdnW|xI9lp7PTASDUD
zq)fak$@O2_r3o;q_5{Y{q;A6SrB1l(VR&Bu=-J8mA~e5uc!htiqI2W-$nrIDYxZcx
z3>r#P#PuD*nts7OhUIr@`7wd|L^Va~20}%CZpChqvHqrT0<$$cKWr;S^;qXdXd@2h
zMHL=;A%{iK8~KIkR!3AK1$wLVNta9hQACUK*gMQGNQ_0*OqzcZz8PA>Vjo{1nwkGA
zm!tJt$D5{`KO=7iHr%8l4-%|VO*y+8yY|e^BNZlvm=|l-WOsk(Vj<9q(>2WaO)~wB
zK)kD@)j0%m;0{nU(m9>5mT|k8%+Q>k)sT+^KjQXP>Y_brPmxKOyNCb?-j!}c_$^NA
zAyF2BByqsEcgOzD_B%{#MZ!?>eN=94b<$*~3(UNW=Uixi<BNZhi}qj5*_HsAD%zdj
zGIz^<cXsN|pY6%`4>a<3SoQ1^&p!5_kjej_fzN;8ApaHR#N?vRA{0US$5&`$vKMeA
zI4fl))B>)*3cLQ-Pv%~pN9S6k6Fr00;Xl1SJ<6*5&AI;d^MBb2?4NeM;z$4I?|%NQ
zHv9W;{a^mpzvP+!-~HBa*z(Vz{p(+JkD<4sLUnH^lQQIuN6o-}M^UDRf%siCBBxsu
z{=E`FrWxu}?6*SiO`c7~*-gM*Ly9mdeyHcmsJ8#>Xn$W<EQ!qToPWWse=^mP;y!k~
zq$a__+VAUL1fLO|6`PBXWEY@unpD{gfAAC3zW>$Mxd*eEuW>v&+S=NscJydjv{lNs
z>t3p=acNzmSglPq?zbiGk-8JQ?bvNu?RLT%Jyk91wt`Yg+(J=D39*E_$0cbKqC(P&
zgUWem=ggd$^Zx(Nytnzizwh&Wzn>=uy=CxvgjGi0B%bZ58p2hDtHGRrUu$YZhccG@
zhcYhjc{oqVRn$amJ0y;<^#NjT+_d1%Jhv;)mikxRE3eHa-e|JL`eILGbnA?cZwO`2
zk1UmMhUh%d<Mw6DJNVv0<TbIy;W_JT(N%DYFZHn~#b!`upLq4Ym7wiCTd|1zqZG;-
znndv!TZ<>RAfw>%?e%Te;89ebXRM^T`I944!^-6o;hb6f8KBPOKI5E|&YTwis{1cZ
z>GThTDv=+#GNXA7$=CViL&W%o=4R3!&V3B&NoF?+ZD=X{&6L-Rid6crHNS3SV=7)~
z;3o!xI&w24s`KaIYFEkNyU&|&ftnXkuqbr=i=eR8Us?=Xb3YkNKj2k>F$Kn?#2q2Y
z50XL*2y}k1IaG?G!%FStjQJ?!_`y>A-P9?f9W<>O>1^*Lj+xm-7^LQ8fBiWsI(KYI
zPW|v)aE$tqrLF*zBJ0;b5w!EWmbiV3O*GlGXj;vRI{A6PV1ZMt`$he&*f)k&5_I%h
z)IUgIvaAb8lQ%;s=a2r$n}&aTp(}5yThI8VK#4ZG6nEMn*qq`RCmV2vtC*!w<_;9%
zlGb%kri;2w#puHmMl;J%vg6ZADb&?HYpDz(n9!XyY6<8$=-kE=rrN2Rs#cA(@)i~{
zpUzS-zIlA%z<b%7ySR7dK9WK4C$RzBp`M7HY>k?u?f=Hv@Z`6{Dk=|(dJ_fdKGcn;
zUbg}`8GH^{n5^*2ooezrm;R{MsAzi}zj>S3XneUs%=R`M>R@{6V8|0G{Ff6A0UuMh
zOIpAR;Mo)zo5~aIJ?=&!v6ZCq2N;w<5BWZ{K$UBKy<X(2R`k9-nIpFk9W#x=m!yr%
zvCV8dD#c^ym`MqfalLh?xArSJt78p=Na^;2wgR8NFj609Gc#V1|23cEIi<@yQ@Q$X
zVMDgQEmk<OdVG+X&Z`Lbe|}VfidH9+3j9?0oX)hX!XO+j+L_U2^wVXbKhiwM9^>uF
zSq#UxvyxWAcV6wxD|Pt#&>z)?%zpou>AjOx4ijcA&%CRLep3ZDDG%-8>2lcr4A-3M
z$n@@2Gci1Q_DMFWaJ4_L)mjr1xg!1juar7^j`qbxrp<p<*!vj!T4lGMZI!}%371TA
zQ6DB4Si7w&`w+Kn2K!p(mvMpx-C-OBlDAQ8;#sSf@yV>1(4hSYm|5UOPu|`2?B>xs
zc1gdP+O!+lD2PD6Tt75go(vTVOX*u^`3n|E^`aOkI6#mS;ol7-jUNoesI3n##sM7)
za#RoonFE+{De9d7y5JYoAK;HCvuc7s&3G#?!0HKRMqnY&wE7UCRGg@ipB-lLl}jMz
zv?ao^=@A9y8L)V8;dyQ<DhR`Wh8ps3QXz^AB&E_2?v$szF#+|;VGWiZP=HjS<qvyR
zX3By@9d;5PhxQ{tQj&V};Li`SBEbA1{Bxs9zCn+fEsb4FwTS4tr`0o9*2_g94KVe=
zqAZkw_W+<6Ptht&U(S+xgH5xw+oQ%?1b-JmcRNGV{J=+<6@{{v@&89qnDI4Q0n!?F
zni|WivvSh2e)<gi8}za)lD1FE%)Oic5&`a{xrI~B53!AaR1kIdLzF+?L===F8_@ua
zp>p%(^8^d4LDUO?n65l2>kqkBiUuh~5&IK>h<m5Ke2B&ajx#*(1kFoc*qOs~0@rfZ
z1)RtK>eDd*zC3h!+UDL$oYgD6Mkf%90Zb2Mnn)$*;rc@{m@)C$^Pd&CWCx1z#mxsz
zDUJ!tNGS1dw<Sx#GXr4B*XV5!E%oU+s#5T(ijoG*Iy=>98CV(*M}WNE^3uC9WIsf`
zpdCCqV(#ZOSUwbHX3H4q-={;W3+J@mz|<G2M*)otp{rND9c8xwOK=QkbpKZB+x*;P
z(Qj4)Yu$b)8)VwjiL;fWtVtyGo2%`<%5#GB4elGtlw#=HJlV};{5aY5@l*RF`55nn
zQx+7j7lpIVP_AW+vGRKVOvDctSgn$HHPvqCq0n%_<}lYJZ}DyhAZ8<T_z{Mtf2Xo)
zIQp)|Kz`^Nex=`t#j?h`M}MBi4^Zs@40%RIvEBBG!(9c5oS28jAN?|=$^(sM0hlEy
zjx$FX=N>7$EoMe?4&DS(#O~WUshwj}4r#qbjb%olF`CRCqJ`dBRPW&z&#wd)VLYh%
zm-N<NH34nhy4_O6de|UB0@+Qt2SKv=&U8wJ+kO9U^9Y-^_F-3`PjaqFzQlO~BH?Ko
ziPANBa1M@*oJ){j1<VgOGc%?G+&64{-Hj-_z~M#4)dO9emAm%oKGO|?A8S`%oFHmF
zQjZj<dR~JsC^eqs_y(MD8pGxU2%Q0<(?6pY?2|at@H_4K^G}9Alc*(X(Br<l-xYFX
zhRj!*9PMB>16xQkumwK&Lh#JtLLn6A-IOkzaK_TLZs{uHqDVvv0h&w_5q`2+!i9KU
xt&c&V(J_ehMK(w)p(y%H2@exxN%w_P%`_LA$=kJG%p%}$y5f4d#@7GVe*hG0H+ld7

diff --git a/sample-reports/findings-table.png b/sample-reports/findings-table.png
index 930357fb6d1b4cb57a7c7dc9b3481270c8bd748c..28abffef37053ebd270bfcf32e66da2bcb2a0dd0 100644
GIT binary patch
delta 143145
zcmZ_0Wn5NWw>`W86{RJmLqb}*JEglry1R3u5&}{pARr*!-Hmj2cXxO5ZlC*p&N(0c
z@AbR<aBX(Xz1Es@jycCzu9YFy-6E9Ghk?wzA^C{FvF4EN{DN*UIu)sT$?_rQJGqll
z!vJ6Ns8t&WRP4`QB<7NS?;PB!UG98krUTyyh5owgi5OUj=V5U>931@B=(su`xD;n;
zW$`oN&10SW<c?Du3<>*+YBdRH^wviiBVDoWb_)kn@!b=9QZM5>&vSCmu2{BNEj+M_
z9eWSd_q?9gT%|{dDLaizQBjQvLfJJkvA8`oNs}Z;4{pbe=R!a@rHa@`*qM94e+Syo
zhvnmhqYaTS+<n_$G&5FnEebAOnLrGxtYmG9y&ay_68=<@QPEJASEnBFn@3&#yJQBo
z{A$nGij$eFV@bJ^qM}yWM{!>R2QAQ3EmWF)C~|uEG}DQVZ5;j*m7Rm-aDt_KtgU0d
z-+g+yX~@t}yN?(UB^w#-C_i_uY~-%HL^(XAql}fIOnif{^bXU<hY-W4jj}Ok_8kFg
zHHtL0%+dDY{4D&Rg^8W{o<{LNPo-Se4EYENdBd+rTm*Wqa>?<zBjrJH7tUa1^Uy7e
zZ~yRD{M6Iaf>MG0gHbEa6Dy}sGn?yWU$eF%z)yvS&uwM5g!G}z>5Qe^5!B-p5lY^e
z7%>^WHZU91xAj#rMja|lTDnwkWxV%vytx;Gtm!Y9w{4X0X1Pec3ATFtWO>(y7*^L(
zafW`rLM(sp8+GF#)7;F#0Fpe;|0+meTt3<n%~TjIJ6%dp<x9lBVU?2>5&Q5dCL#W6
z=%kNO*V;^$Krmgg`q3wF2*<JJ{(-9ag(uHY0_XeUl5;g<R$zS6sp`>5TvyED5cP{S
zeV7|@Q>3!Os<G9ku@%G6cl<Z|M+deM9R6>X1z-9Q^78SS4JFHFkAV>cTxC9Yu4$#6
zXIn#XaBwazF7Yy^)wT<H`T2dlz3ql4k)$H9aBvjp!L_xuzkcZm3Bdr8<lmco?q+9Z
zsHv&NBqZ)`ZZx&DnB)6fT3U*9>rdTz4Mq4o&lOZv*;rYf?d`k!`m7pIrKF^sxpnpQ
z^mPAzlB6<w7f(;Y)6uCZb#?Wt%ge!@9vHv%bz@}Yu;0H)JUl#{oX()T2}|qRd7f{l
z78F<;8m=xcM<ymB0s#R5larHqd3n3LyN8E|6B850%$juAhyks=y;3eN7XgSkc{w>B
zW6W1?3%wvSPJ(+3aEixvDjtI5DxLhRn%!(Ty;d1T;J^h^xVv|>)RU7FIGEU1#N0g-
zJkt|A?)#`t@iO8zx{Yx`eVO@g$<1FQLVP{W<c!yXkb$rAGF4^oGsi62n=h+kb1mX|
ziHHHZ0a=q!P0gP%G3q(*XbJgBY>osZ2CRL+pH(GgWw&#j&u=}s;|2-evyTq-(0BLH
zzh`1^@CF}$hgWT?s}O5xTaDaX#9~u^S_rDUyX41r4G>PPa7Ry1=^D^2`JTg-oOIh;
z{`2O!7(K%buZST$UBB#CoK4ftrzUnbhT<Gcde9KpO1gZ?rC(+8YK0G>tF!Z$`^YT3
zkX$&w%_XBPf8z_3l!mRNw``Rzz;L<O@;S9pRzIj=z47L_8F_BWZhFD)_aop3dGalr
zbae6()9_eQ^>+2-pq72aVDN`rv5rj06|pealL)N8>t$kN$DoDQdcr?d9%<+j*7tn)
zba|0sZboshRYc`+BetaEW1iN5s^V4ggnq8bpM3o=>Kk~gMUCrWv*1Ed&-zrYD^NHe
z4<@NIJGBCUJ7&`MuKC8&$Vj`OnW$u3f|jeN+$X_zKcq5si1ej(O-9aN>)z|YkT6js
zijtx3;G5@UW6jTuDag}OGE4}nj|r+r%VpPcY9!$Atst*(_=Sl14Z8{J>hh73XSf|L
zQpx?|bUU2CK3Q{eaxyYBJe;?9qm(R{4MJ<r%EDq}Ybz))u(zj2@f{|6B0Zv>xs_EP
zcf|DE6aG4-9>!Vu_VzYfu$GoqPfyRmJO@2J{Y>cXttaq~fnjoLDvthlcJ|a|NJ2t_
z=o%&lM)dLVF$y6!<R$Ct>nm+RaDIh_h0V=R!5CEj!l~uuPWJZiCxa-%lXy`<;Pn+z
zpHk7nx9zF=Ic@dvkx2zb#bg1q-mF3|c+~C8jGW(jdEONJUsFHXu60-!43w8SWe?nl
zDGK>Q>m})a@r`dsd-r>eVuedPIonT7$>F~U;DDTg&hC}7=Z{Uve-?PuRVVK2EZ2tm
zCJ6;99_Ba^U)<KIx1zZ1@qL#9Gj;eu1%3Igy*$*yLW<X+)wVjdHe-2Iij09_$(u7H
z6SJcQHy<j>OMgK&eN82`<69VDfvg1lItM;?7gJTlRUVl$frg8{owUA^E5kX+LUoh;
zFUz;+uTGtHZ~EkclB4CGbgCgZLB2#5o8IXZQ~AOE-Xu<!$3N-W*`Pe`UE@SbcaY)}
z0jI-u3O&&BahNKMnBQlRu`r1Z*q*Dmn(o+};qqvEarHLYKP>FrDBYHINYhnmHvJ*y
z*s3=9e4ishIMo-5w85&)b~aF~{oG;Lo0T2oGg9F$r_Fmuytfv-#0c1v?Yrt3?4<3y
zoz)0@mQl5)5BK>2M82qC-{)Rg{G+8VO$eMK_BkR*8AdbX5!vScC=0RlqKyu2`@*>B
z?R>In#A38y;KP%Mx3h^8tEM(Js9%Zyc(D7q+1<boj`SR>x4YZ@e0$_4lhM~db>80I
za!K4`&)$Ci{CR$U9*<E+Ny+i*Z~=-;G&D3)nWGc=>V1pfK|Z*g++4O~+p40X@E+sd
zgvX{XB6fXgSy_5MKHW<@C>-;skB^Q*(Tvk&_XiYzq0rnvFaYB>v~_oP2QBH^hKBp;
zQX~0f-jl1Vt`JgXMMW%!CkL%oA6aA<vX1%rbz^gPFIWQq*CKbt3pHo09r$p<o|pUB
zH5PrzHXv94>-S_ct*D{WVAPkugt6u6RmY&o**4wX(%${MXLnM~l!m6a{)wO2=JZXf
zLXE-Mp&s8Ct+~n2Y5$YxExsBbIT4Y8u{MhH{SLbwo$b9Hom%^!QmOYr@^6pSiDxye
z?$<qhn+S3GlXeexGm5gbw6&*JKkSdte;itpxCPI5^KwW)s?`-nT8{Z<kE{-gL^H`}
zoU@aLk2ZA0g}JYBo_ZH2cOMY4J5YsPT*AuI=m8aIK|3A$|N2D$?BCpVuVoL(6V6ze
zS{j>JsA+3I5l#~0Tb=DyA1(yDzrox_1g307IeBI(T_??1XG{J(s1?lUsHiyZ^}Yg1
zz*1%^80z!=%+xQpF9TW)j7*V`UJ>ybw$vy8&F95iZg(P>2seqjsIqc8p~N|qeVo&p
z`c1B8yQt|{>zZCygf?ql86D+MuLYnGXP8m^Ktj`WVB&Zx&F#TeS?U*<P!`ps_LS_q
zRm}GiWjCkA&@zWMF>yO=dnxn85H=O;9+~W)8)#}MqdYfke^gdiXZ)3uT9j6tUh4Sh
z-f#l9pY|E;HqXM!s@d~`hK&tNPaapAHN2#<(&u;?hUwbe(sGv=yeGvDt<_<Om&qF2
z0gl&uFxV3pctyOt?%+|0>^TX5cXV{~rAA#6b`=&TCNWV_LP!q1YbUk~brawq7K8u{
zEiGr8!KbLV60ZBxQIg)r%YRZuf*|M@7#J8EiyhGwEtPq4a$;CoQ&Caz`?uib(Uqpi
zV4&{F+0MKAyJvoX;5-+?-J!rWF-Y(R>9*ejgWY!KZHyF0vA&+3;?DBq#304?pY$Ak
z?4cKaAJ&5Sd~dy<{wSw+4uEC$$IZTHdeMTa(>tJCQtkHo$iSb%{JfCUCpCIY8*M#8
zT?v$<Bi!L3M)T!c0atom);)Y4LQ3%$P!!YG^)WXpbg_y}My_Ao9P8`IH<Lg$D-LI%
zPi|LigLgi{8y+c+sJA<+MO3$)Dfuj(URh&&hBW7-L%+Gyd0K8J1L|DPQHq3yAE|TF
z`=Vhp{w%#aN?-g$3bOzW-Eg9Y<7s=8Gv2^Rqqf9TQ|^xDnmFns%3efPpy&3;!Wnk4
z>jjGI={9!C&jypV5ca`@ln4n6i`tj~+>;z}%IKk_Td%G|I4JiP{DMWga0z}*ym)b6
z)r{^-|1IpiIrDZHTyL+u{$yF!zaIQH7c;~rND!xZ86~_*bgt!6|1<w#*BQ@~FVpxK
z`b#mJc22UC&R1e&Zy%~romU~in66~I7y;vl;))$%^u5e6wB4}h0DfqzX!_6QaoJhO
zR^fb1yt3poQGemrz_cb_oT`che;9@|xrOFUdE7(%k61VW+|84UnW)^Ed2Wq@nu6B^
zL%t&suM3}gq~WYol%DwrmhD_uz`F6gHP?R|&SEwgDM?<cQIM6zZaMz$`Sa&Mjqk&4
zx!KSgq(Dh>JSIc`;NW0UGA@r(V^2@+=$`S(Ny=IN?Y+HXy++TrK;$x{qxssi^BrX_
zE-vn*#YQhTP+GdLuCA`LkJsmxm5a+`zQ!TUZ7l_SbZ~GWo&9D#S5+txLB!6^j?ZCB
zz-do1GM-jb<35zkN2^{$4$FkYpaTH>DZ~T>-cTgG*qbslF$o9^WYBA<>DeUW_x>3l
z&t=;GGh03-na^u-WTdp9prEM8c6&Irs;Y{Y=x816iN3kHX-A157DyH)E7Y#Goh;B)
zR8)lG?!)cH+s7D}(i=}J^*gH$s*V-==fbHWW#}ixmC7wM(ID5fCR|JKFrwEJ7oJ0U
zz|2lwzLf@Dto8eF_OGI8Wv5cQg!B!w-dGnf01Zvv`cEVe?EHi1ci5qQw0Q|gK2xjT
z2UtMs2<)>bYvN}>q*P{r7)1i!uIw&XV%v(t&F*gAlE*`CK|yS^QHe(X6^~U+%mf{F
zwEI^dyMtnXcfK3>T@j-~pWg}k;Ex}e3GJ+N;Hz6C;-RBde#y*|wU*i+{S8<GVN)vV
zwx_lpCIh_!D6^XJGQ>EetGnJ!_M63X*!Li3|Li;(&}zq9hlSht7?&%<)tRXsVYe6o
z!3TuXeg_dR?%AJGnf5EUU+}NedN9!gWRl<0P0uXC0;_r^L;_%bT~@LT<<-vaM1Ckv
z)Y+mDj(+B54X2hI?!;DK^OMBif&-4AOxp$}Ox)`9Ib)RMv~^Wl+G^qwnfE6_aG1RG
zM)!GKpGo7|SVw(cVPQ;MoE?aI1Et5O<2F=iZ2)K(7-!3WzHm8hw(Q|*KnSX#p~3no
zc<`njai-ZF?w0!c*=5Rm*KNp!GL?4nma2_SH;5Liv5JY7Y<vVYK(tBtbHYh@2KnQ=
z6bZ{cPK>|{XNQs>nF0~=Jm4EoRm~48Q!_?ykY>I1n^kBE3)kM!_B4Bh(iY|#<-en5
zt!>VS4t2Bi7>}xZK1Bds&<hE*DQFj92bG!=b$@*S2I<9GVfm2n?)D4d9W{01*eUeU
z)YOD*SIVu($Pks4mA%AHlB23yWX1K2bU%46&e25S<yvs(F$2yHfRD22ib+ZP)z%uH
zOg^Itzw}Z6>3DA9)D@`rZQ5lURyjO1GnEWmnkLV(hF8eXEhyCoc5ckSyfSf=as(M5
ziT;q+i$FiGO;dKP1H9lwyOsaij$SHC6D!$){(%P{KT1-NG@9BNnz%G2`ycT~gU2gv
z&<FBFkyHf`2?^;13c**CQwn>>l3MRav{*Rdm!#)>M#C0HFI>(p>?H@f`{>`np!f7m
z49?CEw=2LS!o$4a9OjTAi*kHURw{aXC_64l9{aT&05F+@KV<uUL}Wd885tY9JLw`W
zC4gRt)W1o_RJ;!QYM{Kd$HqEOLJJ|k;9c<&<p2}Vq%$sfQx(YnkcmMj{yn<|=;~_S
zIH~33$L6+76eM3k5G5{OeI*L}&4J`UC-|d%#KF2AZhC<`^PD=~W5%Nc_-L48WMgV>
zn-)O`uMk=paHW`z|14Qhlwz!;_n*5$7x}I6VaBOaWN&1cZk|1d<>K;$2fYvhNx7k(
zUV6jf9W~Pz?6IBP3Hpb>Ms<<}!-bw|lxZb1Th<VNIy$=t`C_9p#0?qtM)hRKmrCoS
z<f`0~+Hi2{5QS1tiSwXff4L1C_#u=T89>GqCiTY(*E`Xtvi*ojfngG%09At+ZIamk
z0>;4SdQ=L@=K?02)-Bo87{rO}F?KTI!<RNP@}Xay869dP&Hl~GMNh@V#>3AwHZR(&
z9%<&qjQP?(HID52m}3B0R6y|Kuy0Zf)`q~sqf^cOO}^{%n_83|jANqwEu0uaUYA0L
zkg~GYf>&^Zx{ctTZ-3Ut*t(|UK|c*uv+=>DQ6GqxU6glDT7SL~4N9hVIB<-XpC0jf
zCjUrym`m%ycO}d(-s)at9v-{3*gd{h$IWJ3G$^k<rQ2*-{4^LwIT<Lv<{+6NcvEF4
z;)sM7M5UniakX+kv3=#$&m(?(-v8(8q7X$Cr)Lt4E@b!kcao#`v<uF)3u=>qXnHj#
zU#AWgxgNP3C|IiPHJVA#TV`mlI1agMO;0l9tDop7)75e0;jNTcm!feFAxFG(zOdce
z_5Soe`?s-u3czL}Mi%hrH=JK$I#!anO?s-(o!idb+t><TrOxzicLsUEhGb?+Q8HVN
z{o&mFTkZrMq9@7i2@=o^6=x3giqL~9!?wv@|B+GFS;Js|;m54j{yeFIUOe_iOYeM|
zycy`nRUQ^W0oIbC&+^B=5oH+EB|a{KJK{LLJx)#`Ij474OpW~D?3w?Eo;yk0;_By1
z^k7zM`g--qI0<+wfF$aJ7fKLLoa(N5o=@Gw(cFN<C3p326?usVP}j-6gneRa#Qc|`
zVa^%p8863Trd@>O{AmTXQP4Ai@DJU+^v?hvLRm7V;*yNKtjV!~<Sv|NZWkx6ZjnaA
zHgw;J#XBY@%h=ddv|ieO&0L!9@1_Z%Ly?cvS2Fos7!p@*C!_a)B3?#K&Dfw&5QtP)
z5~GYR;U_5&c)17H3f_ekpJVtpB?*ZOAfN|lv>0Mz#(c;WB>R+@KCyUlW@04H|1|_e
z!_wDKGBC^;D|eFMkv1ZG=sC-{lQ%>R=_~9<@|i!-C7^>@?$7k9yx0$J^LpI}btIeX
zvV2Fs>OojTVsQQ!bKOwxaXlup$Km=Pt17~s{k7E{!+Og;F!i)I;qz+Qk8iwo>OA;}
z>2Rr2l*mUEh^hp9ZqZ#B_wUQDv{Ba;omZ3KhrlEradPzHSx0k?=D{nXt}N5d+<Y43
z?VTfYD{(s4CyV*Eoa?kv1S2>?eN_0F-FAi>PtN%oVqFClQxj8nzEw@a#I=t$+^&*t
zcrge7*9}EB*m|^%6?<|G3k;7a;d5jJLC#fKuXvTx>F5E=LmLgl_rN;-qq(A-4!gNc
zhbkh4V%t0)AAcJVG}BinV`5{8>oLyBrLH6pjPm~Cl)G(_hZ(DChNF^0Q?B9YypM~h
z4;IUz$SWweQAT&yCG;NY(uVZrl_S!s#FVIg^l1Ta{Vw45P;Y-;z#MUx@O!6B1w|+s
zLJ2brjsR`6?P|MLyN~1W%CY>+u~J!G^?L`bT)-0HOmpa`qRla!;;JKoYWLfh7$Qks
zOu_JSy7<FmcJ@bp)9UeF;r@(?Jd=Xz<#|<2by;$;PA;-O9wx}Z@pWt3XozkQL(R1I
z&qQz=PS8QqgfB=sH8SY@74K_TZFOn-;Vv-|)eq|0aDeT+7rTkGKJc!%p!SK}7Mjoj
zw>woWISUW0li5F=Kg2U9ood8PVxToH6)H`8mD0fde!4j{WpAQh-i@%S<YbB%Ydszs
zPC_oHx18Nh_9=b^4Xba>>{^@Gs?;W(z#2e7yDL0cy3oj}3+XUfUBh#8l#fE}hSUcZ
zg0q{=!hFAM#8LOLaj`&JX4Ct~<j%lZ3(e<d#q%kwX>p&5Ot(9}4u`%T>k9C;Fw;ah
zdjGf=>Oa2xo5K?cD^88y6MLyL8a_bA*2aIz?t5~UlnY^YO+#!SPDnc^>7lv+Xipa{
zq^t@#HX~e}25kvHG$*%TF5rDW-}<=`Y7jRK?X`8$F!{rTgC6xWbDHt<;om&2=^k4z
zf|7iG1qD5elFaxj!RS4|&odnlCs<4}6c@ZBuiwDTG+z6#TpLmEV;@Nc{KVbE-L*Wu
zX|1-+)ORChRIjHDllWyl&{_nF<>k_FHQE}Cu#~K&j!nU<PUPj&EQEYhR8+D*`nbSb
z4Na`GmIxK0Gz(l>KnFhjhUM1O$ZO!IOlLx&MA=y=VS(%szxT?9CCB?|s0%5JeC;iC
z9VRirg7Y#UTH?~6cZ6Q{0z<ictn3u#cR^Z0+lJeP+t`T8-csAq<rnY`LyCN+f<M`7
zKt*LjD-nMno>h_r(`N$fO3b@Vl+NMk<6G$!d-ot=#y!hi_?vn#D8(2{EEYk}=Jh1P
z-+cBU^f$G^Ln9;)wHg%_RT1qHb44F?xuxFG_M+}jSP0r@-^m+ABsW?Zq#bP<C#h@1
zs%v1U{G!$_NFD%VBr`k$GWidmTo28e02pAD1DxdGn6w&7cCVXFZpQYYWzMqWNP$;8
z@u|P7n6~`5daNhgxoj?cbWz`KSm{C#EUKlTBPYuDGE2OUz9>JhfIQJwO<&^eZU-$e
zJgK6ptjOy|G1{EI)|Y_<1?Thh(sEWJz8vlL^f;U%0dQDJ{a|dM{sY0*-s!dG=kz45
zy$cyuo#f>sqZQ##?z_`4DhO4vqW?k@BztdOsA7ue3NQ@LsC<M)53Z=ITI`)K;j1;-
z#6I96;D?%-Z++;|U%@tT`|EvsN0)m{675_u&doj7Exxpl=#R-9FGIOwo)@F4@{}kd
z2a<jfnwlDkG-DoRJ~P>&Fi{;BC+vJz$WIiFCn21JDa8R^g;o=dSg4Q)QORdt(NZ{;
zw~|JGm`%tNqrfWr(JEe?NH;Soldptj(t-2JVk3qP`V(R{vie6RnBS0Xi@oG6`EWsf
z&F*I-kJ0Lc)-u7>O#~U27fL-nj0|)j_0iNAv0nAUv=@0nL4)PB-{FO|Eni}O+PmW4
zEtX8+zko}4iTpIXZ+3KCkS2yQd!wpKP|1=V&`7MLZ869wra%vk2wLc6q{-j1x0{c^
ze(7Ho+X*ahSh}70$_Ptg2ldrok-Kg(&M`ZM0xew&E059Bkg)^|N1&#4Z=fy}mktr|
z^Ubc>#5lC{bBhX_9gZ~h6fL}51*JtODBf~#@l|KV%4Rs9?h3+=#_-5L@NhFheQQOY
zHBs>nF<xIyO<jD#M8}=Y^vhze16vhSIRnTQ7j+wNoiEr&$H+#FqM2iD=2Lzp_x&DI
z`GE!a$=t3cUs3-6T@Oa1x1X`8njnq^CPXJhCF*PR;=Dvns%tPA3a0mx<BgDih`fLO
z7sNu?6sBr9Qc+p4;yoMGu>NRTFn52G(zYQGB3Hr6qM-KOZmERfM~Yea{nquygf^-)
zxsnORjf04%Mm#Pcc*LLwA&(=YIOt`S!<kI&-N+gxz~AutB)s06;?R(%XR>G5{m#sV
zd5!i#rU#+%&1=sSTX>$(L4F1Z;@T~ITGVZL<bqfT{cJC{6NH@=L_mhi^9s0<t|o$f
z`mRQ7incp?U?r&;&trd{-sC?)6g8!GWYFb-m!PePuf}mJH#65)&i7Sx&rcSM$kgOm
zFeS)H$l<0691LkUe38U%`B5EP`A|AP+?W}+-O!wCdu{n(a(KmD<EbcY$<eg}`g%5B
zGXLui{!Pf_JK4W9(#q-%r)v{?LrzKg9)4gwAseeqO$O<DDGY6f<Bm5b!Ju5b8Oy$o
z>$7W$g(|F~LUlzY>rn<FngDRt({-&7!`=InD47Y9K+Z--hycp2RX&DOuD3H(J>_NT
zscL>YXON|b^4>r{y%w_(dGIr`DEEVKqZf4v7=h0*jzTEDC(L@PnuwwANL%-jU`p5A
z%X8jRM+;>t^80>!%S}BsqC{Lw`LE5-mW*+*00m{mecb8NaBzUnWyMy>5+&+q<aZaE
zdxpfeJ>2ON-E@3FFk4YuCsdRymxh)dw5E#s?codutiL%&{boy^Wr~9x=Z1RhC(p*h
z@IiJX>FsM)n#`(jUG1(H0FgdaG2jvN2gs-?E8a5yy%j|?zit;UbFe6d5f0YBE(N=v
zcFGUZ4Ip7+X-vIMvlaOIL9*w&6h-F7gcL#n5udjU>qOITS-pqA?5Il0&-C@ak(ntr
zzWR?V34G8A-0WSm^EqZ_L&cerAIQ<8g$&L_Q?hPeY=nmG|F=xKO{>r8{wlhfGrhj$
zkPDDUpiB}CPA;{Wzq}w|fEc(j3s8T#X=2iW#>%pCT(zm?6Z@hR3HsTy)riDwf+XQ=
z-@F~8(olqdSN|V3^ktIq@zM`~RLH5u;mbwzwaDXV#D#?L(Q=uJ0tSM}a0LG|%HB9J
zoj;f=KFtQnQ7HGY7C|MVw*n9@Ov$vP!i>`R=|6QLnzXPV42u7<Ks<9SIip0hWTs)M
z3RFvye|KePCyVlvqEx0fM%chW(G2<LeBqbxTRx#xc<o{^$DDuQ`T5^BZM86b9T!Co
zgB6Y1&jvz2gpo6pETVD#HRt>_l&2{ffxq@$=cFR%s?eZITkh4mSo7<XqlZ$UzY65~
z_W{K4@lc`M?M$Pps3)f>6fR5}Et$bc-v8;Zor%G=FQ28I?%w8cGgK`I{&RO92so>d
zyhik2^<-$yNK+F7KgfxQMaiZ6zG6Z_vL`v8SVQbM=1#~<&B{p4^8Zhb4@Hw(>t|%I
zPCg5z11QWPXrEE>9pL`0RGYTCF#dBLYTc&|zklp%rNaDs$VH!@Q-}XQH9EA6wxwHE
zUi}@A&sT`yv8oeBivJl85GuHzZKz&68NB`b{Ac=hej@MCCY+vYVE$uqDx(l#5F=*D
ze=c>iX;K{6H2mjM=t=@M>qT(lD;zXdf2Q!)a?I9%e`ht7QIaq*h@KNo__&Ck^IDh*
z`}sdBW4rGU&eziC@WL+_**Z!8fLze{|K~~i<4y?6B<cUof<M~l;)fuOmcP?;H2)b6
z5$4|)j-WZ_f+INTiAR6M|Lxyn&}%oX0uoA=uC_w2usQx+f~5Y-w8-}3lMYgS`7DkI
zB{lzz%%sosE&Sfn(-H%tWgsHIA|qBVCe$v$N3^f;=GVVoym9ilN1fq|lB7cqh7qKT
z9WSpXp2poNgb)4i!tx2qNio33<qBY>QGJKDffa+dXVvV+Z&gi<5lR6?gRyVO6^#q~
zVds^=^8CbI^<kH_7QbvV#nftu_9K5`aXOQ)`B3#{K>;~vXPIGTnqg*Uf`ptNWc*Nj
zv|kVmmt;M#Xjjd#&rcmC>6^qtNlm{s<YPAV#H=bScG8Hr@_$T$(#-Yt?k*RFNzCEk
zBr7)?AMKM!SugdwkrAc6{k_$XHs625mOEVaG_)!K_D&VM6CKeVKkg!bxl~T@+|_|l
zD$Oun|NGpHIr*>Ekl|l=+*p~Qmd=F>PdHVUarLDwj=)sWqwP_n9fVeAeU}^dmrw;X
z{1-#I)(`{eIXv^soV1=w%1gIreGI(4G+zY>F9xv@-{H|tgWrd$)jfu{AkHD*$`Weu
z0ORA6!J=uKJJu)?WKrI`g&>$*NHVVBqKb^&+SRDzeK2<$4od)`cHraR9!<v8N~22u
zw+nAR0#BEdTaQi2D2@Al6Xw4N;QU}ygv@8yHvw<w){_(Z#RBdQk9?^M(Dg#Yh(iFN
z!1t+<o0_^zOIwjF%5)RkQ42&laW1`Ztn@k}q-7|iqc8prKHMpyV3PvfeT=NkP7Zt1
zvUJ#e=osIX0>iKW{Fzzm;4_~s5bL4dDXVT}(Ak->`k9noT&-W6+4rcftuCM8#5wPQ
z7|Y}JY=-B?1(nEgb=+fyVxqf$V>uP0y_rg+?OVT&lvE$kGCg1Ew)DE}Kx@XMaH)b2
z*eCD_>({{ppV)j`LA;B3=#rkXH^3VvPnuFcaLczGyrrP0KWnBDH!OzkAwxG`2an3-
zbVwFuYkfF-Etp4>AAFuve+ln;V0W~>HJ5wE*f({013Po7{WLG#FxcBm$Yq-F#fj<;
z<?&0P+&2%RId^SZUv2sOyHk_TQSs8o>ube1lVGLVA3S1TIk}>!_`ZPSe4xbUPCqQv
zVW#)upnq$l?-@RPil$Q>`ytk}A(m%Ey1Ap{b6A7uUp9o^XNVzR1G?mXa(z6$?o{oV
z{Npy=-Q)GhJ<lm(SRK69==p#W)ns)f^p*uj6D_;4_bkckz;d|Zw4I{C(lKC%!yc*h
zI39GufrcS#Kxceil!Kp9wyNG>3`JW)pDNDJkAW1@Vz`qvQ55P<o5X}&*Lz=J0~y(7
z&^WJd&-YA@xJ~Sal?k>D%w2f~eJgW2JzB=&^w^c(*uV<2GF=<cZN@b)-XyCJA4s~g
z5{yFwesX%qMdRT+90{%E4`^49&UQQlAE=CRC}??#KZ#JbcTiQjwvpt2YS(`fTGP4{
zwq_cl%y&a1x_7W6En2AA+kd^jj=jB&=YDv<G09IT5gv#aUz?F-+G~n*alXT4)7d&1
zE*ASGT6=li;w%`SN;AOj1U5NN-`sSg)bZklAx58iVRgxlhRXfMASB^%9C>5}vzi~d
zMvZ$a_o`t8?T=Oj<n)K_;bRi1>c3bXj6Rzd+i1%)-L$aEp`j^(@_+Q0lM|wp43Y~!
zuQt~UT@l&ZyeuMsNQ`RH<M@86)(9XWrP!N~xii6H+obg5gXM+fJ^00{s>;<{_BCMv
zBYq#B*qN{Pw%=SZ-}Ic3b5Mc#t=~fyf*57+$K>TD(hJgVyJr$-Jj7-bEctCOlYDd`
zoe^qM6GM!!`SrpvKB|Pjb15^6M&-uvapdppp=hYFZ>z_&COU0HEh&MzKY6U8sZsZ|
z9y9-0NrZ2JL_nQGf)@B1ER9_M`0=7OxSg5lB-dby=)US>>rxj3MHaYu{QR>C{?(p&
z-oTrs=952C<fDjF#0@es#f4iM33y2R8^!6lF94212^`EA&3IhB2zRxvO-_x(aKh0f
z@yu0qM9clv4lAS=jRg(&BWq@lzIvkFM*B6mb)K`@98V0(i0pO?jn`XCt%F2lQIge1
zqJv4z1@b9}(%3^%L*3xbQe9yP!l?jb@>?j@{=8Mz(OFG<&Jq@eT%^<Z_qrUF-bkT`
z*+oxp!&CjcaJfY0B8S!ZVK~F!_38<HD@)6#=?XmH4U(r7*Yup$(`lbP*NjJ({4YX&
z%iUU*yRa~%r~Fo(M#s|l+MN>&vn_g!!~OM-1_lT~x;P3El>g95{l1rx0r$0QN3w}-
zvcKN1PNi&RW@OmSHz;d<a2WX<Z`aN$EhX_SIWHrl#Nfb@`-{W!@`(e6X)=H1(q!j%
zjpgN3Wm2Cny1KubI)7?eVHF%;G3r~tjLyx^t)NQj@Bif>(0^+0w$R|9iXV@my8RHI
zdD4?Pk~09xf)6G$M?sfI=1r?1CWy#L=Z0ze1-i|ZWod>xL-hMCr&xR54SYXh7PtGS
zlY7q=EY~cDYff|Wa?qYoh`3Yjj)>Mek>kvm_2KP{nckewxgAbTlw)D7FV%IZ_gL__
z9^6?BM(EZ#-#X0R$K<pBLSBfVTE!n*4Okc%v0ZqI1z#h+!P|yu=@f8<7(o3-@6+3h
zdMJY7V~+PMO|hJ=j1gxuA|ae7acp&+hV;^FUwy-4IoOZ?f^b@JdDH^g?3=(tPq%-%
zbQiA2>Go499Ty+B!83+Nd$~~C;>7UtqqdpImAcx5^-P)9Dymaj%A)mSlJNX{prx*|
zkAM)|2LxR+Egu7>#goe>;*kQadr+GLAnGzS?s0SUkHOAr%B1ado%@a*pQm%IS!n{u
zO-^=ls*2B`-)LdNh6O-!FIpOgojErH{I1oHW{s8`tNXtiRGV!ew)mD%d#V?^ij~90
z7lwm%7@wPSeLc5?izN$a$sI0<di!E$7c>V;&6;mES{Eusc$$B{xIEf8IEac$=DN$)
zS1Z=p-`y<8O}&(xJH5JS2fE-rVq(u|=;480nmivq0-!}wK2#{%Y#kE~CcMt`aNus}
zYXGFUgk(>%l$gPWt4dIx&Fi@btRP>Iwu;&-04j#AR*vP8<&?!;zIx-iEsui}Y@y)q
z=BA5+!nONSDiv+zN;|idYTMRvg)IYT*wVt)QK?Uo&w!wzd5CqCHvQI5PseA!n-`G#
zDLhL{61BNGT<_emyquM7cxob2GP5Hy=1yLxw48ZoZXigMOm%Xc?eW#g$L&g(KaUS}
zcf3B2mPb*cEL~S_Wh`b+9vxt2OqofIj<177rV4_PZ;@~mC&WBRrU+&cG@kr{ZGrk+
zdX%Q$2!_Q}HCJXAa%Ah}>67@hWW`FW!U-|rw7Q_Gah?wnHbNa`sL~L*eYPBjU`a=J
zZz;L7yv4Z2;IID{mSC!ADL1E}!Se=cHc$d@@bTwsa1|9atbZ4SUia;q($Zr#U_q+F
zyH7B_mU%RqGqr}Lob-Hqf7-I=*q``+gN(q-?e#=`1xW1>T>XO6*`=b|dSM}7!pz9%
zt!7$MAr|nChUVonVF|CqDklXs#nZEs^Rtuv8NTj5fotLG${7}_C-nde8=IYtoz5Rd
zI!%r&d@PAIsFRc6sJSC1q-SC`R%njt!-f%@Vo2iU)v>fptg>r%J#aNpJee6&KfiE>
zX&IUt<M@3QU%t}k8!u1yJH4=SdrMWlRo>S{wI~c>@-jp=r1ZcW0vlc5Qfv*4Ys{uz
z;DudI(wzHtjoz=bXJzKTb~sX;4xoJy@nrMCtS-Mib>0I<=oQFfh&a6+M_M(<O-Ib2
zHkIqaq>EKtqt(WZZKVU7xnsgtklMJcE-+!g@bokU9yNtd>%G%M=fRZSJT7m^(VX2$
zCOUu?EQ;bfIaTBz^6a|pnj@zJu|DmyceE5ml%yzG)c3U2Uz*Wf;Y4JNjHp0YcoIa@
zPd7TfJpo}jI9P}{ja%2KhU#2Af)bg?<gTtySb&o9N?W26a8FIE;pgwC*r0kuAS2Vn
zdb%RLE=x^JGq>^xlLcdKGnn4@g0-hSY(n53`?L8=611=9$j+`dOD(458+z~xkh^l<
zc<I)<o@H|>!z`c1Bua%K=yKmxJJ3n>N)a70fY86KwxX=;rV-A#o*z~xu>4M)8DnN`
zs6<?1WKgFe{&CHp@n)Z+S*OBPXQ25fE9*EL>v(XG6b43H^&(ZZyG1L+L8ca`8(3HZ
zfH8AVzXk_={qOP!+IShMzCp%!3{cO`J$rsoKdiy~&cTKd9(eKW&Z~Z=4ZqQV0v#;P
zsH@T=i$XfY7|u>ajS>D7xHRUz=SnoCq#n=CE*d-i;<*Q9;(*m?s`xwf6Zg-aC`0LA
z!pa+;$4I3ry+fI#1U_aI%YGB4K??y|dIr7cBZ=rYd2`gMn#03^k0z!XN_to)*O}2t
z9#-`R25H3Uv06H6Gu~g7A&#4q(gAEO`6!R04ZLR=O{{n9I=faeY(V{_!0BO3oJFuO
zsv-b!iwAAu0zym4>p#w+Zwk)P$jAt{`*!<LejM|g^O|dNBO|!g)Yrhg4o^+3D~VoL
z2bIgtzP!i73@+zyj+51!K2G5H^w#YMt{r2wK-K=Hqle8=OXQ!2LvdaW@U-uUD*W)F
z#Yk~VfrW)hPSX8?IMz%?##+<jrZn0N5>6E{gp01mm&c_gHv)i{cD{b>U|-Kbeo@}Z
z#m-BBBGV)_n-P+iI@=EqE5w;x+?#wZEhT-uKw^tSuy38x{56ig#CT*sv-z>fYUr^=
zu1R0L&?@~iOv`4W*P%Gb`^@iGL)KJ&l#wsF-hG{Oa#Eq{+zkPb?+f7e^5Db$@AF`P
z{kr5IKVSjn>~B^L7lG2%0TwCz3u;9(<2^(5l?3zizn*TlBrUZlUr$->SF1{A-E%UM
zlWW9|4)%UY&__;CNyeV4bG~^IAdJgpIGj`;h0|JGP1RyxXSD!{8m|s`o@&v2UB+`r
zF*;GYTAwZ}+zsSqq&#$UCA%W_ArTaY#1p5JfuMq9HA9lAOyc&sF)A>m-|mKT9uvT*
z`->14>GllA;RtitJs%<sZaSVlY}w9-yerP(^`Pk=843St%i3%}g3e*Hn46Uc3xL*I
z^j4aat89fGyz1bS9m|Nj*>Ou#*<2Nr`F<<qI+@C7mb;e6$q&K6dCEUIeBR$Ixyeok
zoAsPFAHF9io7mbqZtNZ;^VPA2kFg2F_V(uCSCfs7l_!e{5DS=UcwKf0>brF>M>aok
zLBzi}5^+v?;RQv?12!WL@m}aoV|4&b_@!m3Vqie-A27dyAT3Tx%QQJQu(w4oX_0#F
z5ay8o5M`@aypzhz_0qxil;Mj|;#u48zUq{MMNj`8<7*dZq@6=VL0G@_b4c;~o{apf
zRAz;lNB{*EBpWt9#kWZW-;CVNPjo{>U}*bylq%CU;m<#?v{3@%@%M!GzWChZC$NqB
zU?#n!2m7DjT}DZrB1mT{y&oU*^r=nVw#?mH=Q!t9R#hX@@<wCI%E2i<#(&=Unzq3{
zKs>#+hLf6>_5ng`Jg-qddp%R^HV&@YsFO%lXh(NAb57gCV0z8W+8;_s7TsgaT-%{V
zzsD$;sWe%ryU1bu!@55ll{7Yly3o0mh9RGZ8Z5T`o>Q2bmY#e2y6>#JbSyxu1F(PW
z7or~stSL-RW*<QqA695K_`Wq&LtyLN-?y4Js!nYoB=i`TqG+L#Cranb@`BNJ{*|!0
zx)%f$ttM?p#;hvqm$tZe-6q7J!vPo=B54#+injbCJ}TmqKh>a13vY7ra;LSlAIp!x
z?qgC?N=osRZ4FG!b(f0@7{Q_#(iEKjM2`p0_PiyIN+x~^K!KWmd@gx`2mb1%R>OHU
z3~A$25@`cr%$79&U5adUzEE`USX#M(`uqa-utmjh!DbiyYV{xLdDSzAaV2|07jFZR
zc^%isXI->Y_`~>X?09_3y^XXQN@!`oZVrpZqm3PGhqJ%v9fgpe?PIrpbl0V4P5rR>
zc<0hLbVwx@HJVd#X|0Z+q;%J*<pt%08Ym~s?k;g`t*<l1J8lgUL{hLf8UO%*?80V4
zC<~b1^N#*!ffv&CpI^AZ2ueuoCE1cLTCV!PhDmCGg1ZY1>plcE!Kvb3&>j=pld+LP
zZIWnew~bkP0sW!YwADyozPW2hcs~fuLBZ$P-CIDvxFgiG+6gq3OL4#Lf6g2~E`Aoq
zxSm+r(bpkyZ%B5CEh%XERMphu6*$Dr@Fgl4J4{Y?Xi!~Um4?3f^1|MGieOz+#zi&r
zj}NTjs<PdDD9R4Fa%Y<UqN(ireFL>fhvCVYe?@bIE;GxhOI0-ha8S`=Q3N!H>uPb@
za5B|e<3qSlpEB#NhKJRHhzv8h6Zudmd(81Pw3?XH?Z9@t#5XAzkcy6cmU$sg2Dw9-
zEA4X%th(7<fMn<goL^Z8o~(-rBs|LZv}zDhmkxXL861by@ETbe1tD)n(t9$|Qa4?X
zxBx(o0a@Vm7Z(Q6{M+uHkw=~Bjrj)Hw<12kR}Uhuv&#pj^cQ=3JKS8e{GlGym<Yk_
zPX;(e#wJ?>$v0o5;U$0?;v4hvuYW}OzIh*yFD@qh`OWgi8B28|EiLf3wu3`1Z)j#w
z)@+T%D!3k;{#flAs&FmT#sh6TGBMdew%#}ls}baAas@;3FDD1A5D-JR2A^Wa%wuth
z?ILQ+vwI)e*x8lT)I3jFJ(v9!q2&uzFh6;YrXbIdEpv2m<@90aefxH9e*PIiLz}m{
z7A+ouH|iemU=);8Z@&TVRaaICq-^CZsp5lJNB{)7Wii#|<ZPpXuFoE0b16g9iXuTM
zuXaX#mP3}<D>xB4C0=80PhGE9jUz=?ZdRvI-M`nC)twlx3E=E&lTeh&`c>=Ex4@!a
zs575A*CHYz->AHC^L^-XYvkT?IOCKxE>Rr~KM?@fQIHqZ8Fg!!4sGa}(Z4GtcYzHA
zoF&E0#amGKhKLJKOIbVUE#ZHB10NTcHCLreE}4yq`4^YZ=rAcMk={bFZu8p8;pm^4
z6^n5vhPW={UYM3>suAJT;fapajX5J|iXbRjRa!;T#1MvrJX;=gFe4Qm`s#K_Y!O+%
z!g!)XnqxbRTamrifaDu7M=RJjR;YRI?a6aSz+M5KP0TqVj#P!5_V%gU-QIW>>eWt<
zwYl6Dhz%L)p@#)Ra0+u>6DsHGyl+fpWeWrA>LRKo=DJpQSDo*>lUs@&AZc;sLOML&
z_Ff$)&#-v~dxD)e>C!iPJqG^c(4KC|=H-h42-H$Lkj*w1+MOnYpYAm|#3?o3>}76Y
zW*M);`eo)m-fg6(WeoR>?U))n^CcqM$@sVFHJ!AC-3<YPBC5G3LmdDlco>4v&K$JU
zfF>_-OH)@lPG2P!;$?Ow*JQnfA*p_XsJtZk=w@R!>aV)qjT2Q>%pF#|C@$sjB9ftR
z;j%sb)a#W-GT@!^iW|C8Sud>>!;&w0+z%m{5<~0X$UvMeA5C#VFc@=ltohm6gC2Qe
z^mG>@B4yKvLJ;V@tfI%_4l~VgeyC3paJtCS#ME(Wta8A6(i*CTr)=K4@3fXm<Al4M
zUe$Ws>DlP|*xN@|#cr-s3+TRV_Pn*e-mjG=<_{Si11Dhon9>8G%^yQQE3Y>Xyu2Q{
zdF@sZP!eTR75WEc>s)uv=Mn@iAAQy*5AMo+wQlKdJAMQsuL*d0)DZDFu%Gt_ly5N*
za(bs3NyJf>Hm7XLDJv;qhISk|V5-JURNF2solUKjVwjp+=3E^u<%ij^*&xTr`%E0p
zW!G25f}2H+@Fvt9Vwt6-uiA;3B&N0%zsLs$7S7c?_^zkN<a6jWc&B^t|KY29gNrBg
zla~j2U?@&;#GL_qyc8i+(GFNqdptbFPN-C~J!|`$bw<UXTO}5}IXgvMN<a+|W@jC~
zbLhRUe~oIl*mMPzBRk>M(vjfN;sWHFi=ed<5svFh?{|G)0oVKfirh8r(7-)&D|$`V
z`jfhYTweXtnWv1|8a&oq-r-jJzA2dH=~UhJ3x(tk1jOda)$h5v@$LGuHoCGd1I4tH
zHgi=}Toin?v=W+{xqKqgX~lA9h+ew7jRi`o>QjKA#&k@|CZiYj1KI8jVy;SFI+%_O
ztaTwVQqw;e>^4|&970aWZMMivMddXVen_uIWku@*#jOkcD*Z-Zv#uhah!jz;<{N_P
z1PE$%{Pio@g!c&pD+Jt*d13g0uD+yIQD)-e*rmp6xF@q7h$Amzd95y<*q`bQZASCQ
zudhXcVGq6>vom>k;QR>Z9;Bh5KbLV|YFbF}-l%k^GiJUCdX;XN+{GW}`N%NzbG^FC
z>lVEUSGz&SyBh}saCdc%2$P*|a2cw^cLVjSRX-^HSzN4pn7gGs!sWl}$HS(4Q9SCH
z(vf9pl}Am}0K)GiC-EH#1lPNASlXwTvba=?cOvh+_GDUxDrRG5uxDwk=g(|~qCYGp
z(n0M_@i0A@qQ`8c5*@E!yckyJ$swhwxY({h)lx5_4szTk!mUO3WLT^TUnbS?n%%gP
zagV(%S=lo)Uurp1e>-)^$q()-luz<xqrEskf4ZBdK#42PXu%uL$6$iZ4@@|PGSrZ6
zus3E>PIe(b$uxvNW)h3d;wyt?WuEq?DU?N$#Kt682Q6o(BYmif?n^mT$kF#K@`oM_
zN-nQX@Ck31SHy~`scHIuvPa2f!?b+wC_j?muk&3Sgqn0HMAJ>)9k(8c>hHHJ<Q^Bx
z&16ZN-rqkoR$JfNY$ZQLQw~jxOyY5K8gKUZh%VbrT_S@5Pi3Z4iw}^isHvIaPZn;E
zW%HD#B3r4;q%^vp4CTYL%=P)~WwFUNQ)>1<6>4&u-rw~<JE5VlSzYJq><nZW40ke>
zv%TZebS-^!R=2?mV>g&ThVW0bcl`4HJ^*ydC-M01>a<n6pX;i!#fY7mAv|woF>7@@
zSS(I00{LA|rwQvXh02AVg%d8`oE1Oax!h<)N$$`8Svh_@5VZ>L+_x^wk|C0=Xum;?
zxc$5Lty=BR;^{Z0kNtZ~NrA<BwKaS<GKt)e{WHf<-wEmzeUCP(Pz-Qn(f6(s(W~?x
z`O-}lraWnLt(@H9=va2=veQ5<@Xf+#VI(~e{DoLgmPlU1_Yam+!B_u68Iv8bx6(li
zljQyIfG;i`FJO0TXT{z#3(q!LY1T#npU7T7z?`!*KcoCK<7NzPU96~NeVRY@I`j3|
z#vi_KB}zG#Qp<HcnxE#W*_&l+9!$PF`<;qm!K!tnw;&$&<{3c9r*pYKU*WNL2<DD$
z(sq|OH1e_+=nh(srx!Z7Kohh+y~0<%Nf*y;!yno~z~OrR<3svfxtHC7R45L{v!{pa
z%FU#EpG#tHCXdlK*r7A`fvFGrU+FhLWZd8H9hFtv>hYZwRihOeFmJfp>NlUqEqPrM
zW#y1Ge_V8)F^?M%AOz5+d(<^G!Q8B@DyXzM;EnzB<<@4t%xmlLA(>EDz_#aU>z}-}
z9{LLCjKGggO1zsA2;w3rijO}zN%sn#oIIGH<nS00v>dWWJ!XQBh<S9mPg5W{y|8z7
zxmOuL&a>RbT#rvNHyp3?L<tZ!V8T60`l3OXo13q$s%GhE#E31u3v$g*c3zl=Ns@1#
zKq7jX`_}7XQK}7Yt=%>=;vmg;m|2^#aDFktgIxo^`Zk~~hh+C7qOvwg-_wN8f|PPq
zAizL{Kbyyd5+qF)^|KI3_1K4ou~<P_+2$@-k_0V8lx%f!3x7=f`JMdf%_R-$Eic4%
ztD00Ma6eY~{jMqklZCQ5QnoXyiu95@G8AUn03B%OR9c!a5039qA<21Z!XS12yOp>R
z2`B))EY;9aAF}l&ex$CNAj+MAwA3aULg^#?AjQo*3<^+#h5JB5?{+_&Og#D-jucWr
z)d3LE`yZC}&lL9ZZ{J6_s`qRK1$k}TFa9~s1pRe+583|Bj>W{3Q_1%K;b_<BXv#*o
zAr(^T|2=9KhsFlW6t_qM10ToV1M?zUs{k*Kkrd{||NMf3w%ElDv%vD;rxw4#3I$S&
z7aCIBHD3N>N9xmjgcG109ohc|Z(8g*>3QX?Sur{`>_6sg3*aQFAWwge6JmvZ|Gy6b
zpXr~{(Lg$`x-1j`(gaZ(BNhBtP5^Pw2|$nvjnD0>s-?J|4W9%}3@i{Vs-*Ozy7Il_
z(MMUbsAGcvbM`s_4{5ACw=4`k)P~2_#g{^*F9Pr*Rvjlsh1VnbhrZ6@+u<)1T`gn(
z^7+CqLDFkxI06EqC--UkD9QPWrGd#&jaXX~)0aSS?#xw6dlDz;)$YfTBG5^S_EOA{
zDU=$Xcz7+aZ=?LDqcQW&n9cM5p~{b!P?$Y=n8nGlBVO(Zi*oGF%ui>0o6bOrl0*V7
z)hOS>JHHMQgZ6}*n*~CI_MF3Vg9?ZsTi0?Aal~~=T}u{At#<rcjThZP1iEs*J@T|}
z*qCwPXyO09;$s`om0$5|zhM;^Lg|${1r&6&JeJ2NAQ>=}iTIpvJsmVD07&x(@9x^&
zPc0)iWTP&V`kS1cdd<X8Ypva^l=`Gc)8l!jO|iBT6u{O%81|r`Y=Zy311yq#g|fBM
zi|C%n3z;5>>K;{ye^2MW?#G}MNttE*dIyq}$xuS~^1O3uazA^0Kj#g{u;4wPT$z`*
z7a~R5j{Yjy@xN-dm-a{~=1cw5SgMtfsJ{#o>W2Moh$%#x?ONvI#Hv8*_EB(5u5U0-
zD)S&-v14F_hLZon#IO$P!2zOOnV2zZ?#?CQvb}y&B1XTO(Q&V6AYqkO0xr@HMov+l
z^V(v$b`%p(;=AR*9N*wP`Oa{~j4_&V$yZ5N+s@2{*;f*kJLv^*VSNaxo~dzbF%dcj
zdyUPP1YabH(}Dj8mBIg2D(ijte-UJp#zWeD>{QL`D%VL3t;|IF0KlzfxfXc-)&2at
z45d5)kxYTMhECI+<n?tb-$2+!NiW%d2Ox#IMNw6k3Yz|lio^_Q^6y(Gxtg_NMd7h!
zqCUD|KfcXFu)iwgd#kon6*I^B$#Wb#e#ffnNU4?4!Y;!7{()~7#xUV<RK=zc?@BNn
zBc7>Kk6&pql)E7i=2XVEWq%WAC-9dJ==hO7W)3K*Dqk&Y-gm?3hDy=M>4$K-u{pX+
zqNOm-*KA>i3FC59WJ{9sWBIy4*d9j?Uz{xJPyh_$aoiNQkK9`3htc%tkQiM2aWL`!
zOARPi30loSJmLTt;K@1njcA&lndVW=xc{1zFATX765l?#>?;io5?)kHz$|w@nCGfk
zn);6*pN~MBVVV@^VkJx8CH#*3fP@zyMQUWQN-YlgpFe+6o|c@ZDqkF=g=s&kAPbW+
zU^dsv3!#ycX$ZQ{vK7dHjkFh}d2x-|Aq|WEyqk_>gsJ7^FhGLrwb|>0N<(*oXk*h1
zNRKgd{Z@+g*4%6p+EP4a%>$Jjq?n<hQoYdsnL&@=`UR2*`kYwq{(oe>WmHga^e%X?
zPzj}#Zjh2jS|lZ<rIC;Z>E@_NhcwdN-5pAIcXxO9y!`%mX70>giw}Ye4xHM1Kl_RG
z`qs-yh_O&PW3C)u8t!NZcmN~QFapF)i$U=?f^L%8)<z3kzPGb`9#E{Eln|g)y;Usi
z$bvh4-)LWSh`R6(0FnFN(y$B<RbTCUMCQyiYQs<=E8G0h;{^^v1SpaU{7Ub>d}bUF
zYUviU*zF|fTavH2tm!zdDl;`wpz-S3+uTb}$r^3&nuB)`nbi3b#FHvHRZP?aY90BV
z0M1-y8=KLmg|bI99QcIcY1vtfPZQ1;&i7py<R3X*(EJ3<)*doquX4b?;H94Qo1rFC
zoI0$t1WY9x3eQ&vES8%e{7B4=R+H~z8<lTzZns!I6{LYIcQU3QzY!BA&VTGXSV6FK
zPL6<z1?vN}MO{h7Y$6j7JE-5>lZ8KOiKbZUs5qj8e~?vFGBsFjeKKhts040KY@Zf_
zI5QL*HhqM^>ts3T9oSbbZc%$i`|2o4x%ypX($IELej6DYXz!+f@ICfg2U|YysUY+{
zsUCa4Pe@C&B(ZY3ASK1rR-Q~_QCRa!7I^=8I;o;O7Ek*R8;oqklg}@W%`5P7kM>=x
zq7A+!Akd=J@84i0eJMy8T5WIjq7IXZc>J!nY0V0`x*~>G6Q{rJAC7O)%UM;S9hb|N
zf7h!rOrYW%2dCh9grh$L6#5I^ggI(Vn$Qj%W?B>DV!v!j8^r^{L$%7Apl^KO{Ui47
z{a*;N)*1;_$~L^%H+t2A&Bq*iZ=_!a%m}zw<{C2Q4y6#=$p?=uNdksImye*``@%i9
z8yVp}&Exv_?`_0>jJdnFYlh;nF$S{*_79EDe{-}w!6y}xQ&;`C%@QR!II2Kz%xdFp
z`U*{ho=xZDLk%e%48Sr5ClwB`&n+{hkjwHdUiAA_df16;CN<(Q<VjnIs~Qc26Tjvh
zY<L$ZnhXx&T-DcEX*AJZy41d829zEeQaZ_N%*4I*Rt4hRoHfJDH?SBbX>es}a`gJo
z%O8NC7SlAO0QcQw8CXC5AiG3Zw$3jr-<2-+=8&%H&W<Bhj+!B-A0Cmr>pt1%R#53e
z^ZkfRLzL7!92VY{LqlsaVJv=lzH>1$=O)Ilye~%6s-iF}is*cFoy@%Wu^t70V2_1Y
zddpY$!a%W|oS%(*a`voW0VZQkPHikMW937$%Sf!OO^<M0-VSJKxD!U6%}Psp4uP7=
zZlpHwE5IWdy!qhzP-WjPnxp3ufD4hHk!P+45Q16r(_mRkwBK4l-!IaZuI|Je<(K@R
zYj$$^IL#TTWC6b#$Si;yI^b%)G<XL{MF1DP?kA74{mJIg$ke(m%S$M6$VkAAfn%3<
z3F#LgTkKnblAkxLX<eyfIb>my^r?O2kZ+~wJ6u|sx*cl%psX#Jg#&oEtj<w+ZB~2a
zoVg^M3Ad$h^E;kAWO-ANJ7LS1+i|oLCJfU}72b`ZTt(zx-Q(bPr&ChWeJFJfXLV=f
zlnf__d2OFPRQ=ycYF54>%lH&w#dxf`JoN57^Dpz_6D+7#vr5$8<8F>7C-e5EFU92t
zysx2r-RN{qK$DYg(BWF@fGrWIqSVqVcS9-GP=(^EhJb3qA_$}<fPX$RVy&i@ULNRr
zF{*2=J44B<GMVE1U35u+K`;F`lB~R<YRO6a&ygBHWigP!ZP#Ij-YZMg0U1bM`yaNc
zz*5UO;=YiWyQNR;F%>RLw{sN)`b_Z3stkb$Nhm@hP`D|>XJFLCxw{?fK(hBdeioL;
zW@hSL^y8GsSrFE|vX^!{m?nB+Vv=1>rN;jPV3Ag98$0cP?rt1y038-62#U+9FKYlN
zTr=OU*i!K2rHup6ZC}GJ;8j)I&5X8gi2jZ%FF)Jm)|Omq&NO)Ia_tPij;dmHt2SXO
zN-Q+oFZ2=l%3x1M=yEZ28KGWnv(&#38X*6*N27YL@u06H&#tqhhlSa?sBmNaZ{3m1
zQRK?<D%u7B?|O21=uElncG>5TC-&K`GV}9ab6$$hHS+ZmYUpKrro(=F;aKM9{7H0g
z7lW$ri#6ZJm_FxV8B;F!5rak%VFBS?mH+m?_3^O2LK3YPUf=<A^^L_^iORu|QZF$a
zEU<2ErqFM0PFpm(v5?IQ!}wCsg5E*Z3Eo3Epr0ewlzD}X4}?Pe{Ce~#;X647UFoPo
z38;}&sY86KhzMM9y-P?%3TT(58VXMZ>KWSl=J@Pxzb01r1;8F(LhVBbt#<i+(uOjB
z?3l+F8qCyU58aoGp9EIOmq0)WbRm(npXBt|c7HMRkQ;)Mey}$`i{S2z*gm^6)stbt
zL9|#Fm_GT|TEx1N=eft=G7W#KOe1(A!JMQRjwMDO(vX1>+?zNAZWA=0W}f=@0=IJm
z{&*H?EwE{Uuu#<NE&3>?5TOUbVzqW{MWCs|@MP;ojR^xfm4h0@N?kVLgung4{NpNW
z0k3&WEf*(Grohhd{A4ZRL!V|C#cVxBm1zr@N9hUpjg+Q*S}4+P5Cda4T}dO`?hY$X
z0y=toy87N;9#*6!XXE2w$SU{E78<qX&mfM%1sc++TD9MXXGgg<C;ZS-GVH$D6c#g^
zSf1ofon@P33KLW+DXS4p+y6>vr~qhgly&6dA_mcPjZnr=n@qIry4d=0))N1vY{Jtz
zZ5>mG+ka&zCJ}=N!Snnhyp6oqtz^z7^6ArfeaKl+7l0oHn#y~M6YjWTpn%1(E^I3`
zeu4;^bMRkuvFwtH!Usa*agjboxW+VqRWYs>1-(~Qy7eiX!cw%wXOIz<F#A*>4X(@4
z`Ec;V>IaQ=R7LiLJUCB<!AlE#1Jqa&*)dXfBAgZuiar2K(*t*Ni2E>oS~3`>0|KRF
zl|uIBhJOE9u1BFukIgQINe|TN(fwlf6onOcz*8s3awLUZrr#qhqvc=7IP%-y7qIkS
zaaTI~A!^EZ@e$h5va!sy{>ucS#-#Xk(-ffW19dr`k3mRDXy;9W1)fCU7Xy7Opw|)o
zj#xWTt8R6vBV?oQ>zn-HTTn(!sA4D<8DT@M9fvq+u-&26COkBP2a%&2t+&)LS!Su?
z(rDbwsN>V!d#$YfMM94{en)9^n9297BZ{W;d9$HO&lZ-Y)gF&au=3~4RYNwXPaJY7
zU)Fq7m1PxUV&iM9ZqI>~5GX`b4RHS8Z2^M~k9Fzr*myj*r7v!>Q6+V0Kk_|8l3hd%
zrWDms^P=bAZ(n$vPQQxc;E}oR@Sl3#GCSKi_qzF=ycDSMdg?kRD?CN`dr5=pi@+SN
z8&**J`!;i(eIvDR5Cqg4KqtXMRu^-Y5Lb_Rz(_+vpF>Q+vbRw33uw_Q$aLwXPDD}G
zTlHM7nWPOBjF;A1uUv|lR#g4Jgo=@~VF}AgutdY3vcg&i0#5ZLQsj)c#>;F?q4|Ty
z;0aMVm?N|S+&J#ZKlP#pV!vjaYB}Y{@-#-5kJi_=950voot&xzFo0VcgVwv<jg8Au
zA#@*`{l-(U3W2evF1>wyCDMC7udkysS{?s>K_rakQ+J8X@31bUJ$74n6=*o!nkrm#
z3KJr)qw6fqv)E2vZ$^8PlqHDp?#<Z$O0mv32>q(4sD$A&^Apj)fCIU78)v*AvvRpL
z@2P#Cd5zs3KfF*}W55AEd8^rqfrN>Tjq-|Twu|Gu01j*~x1FDVMs%l{PpA=Dp!(MF
z#(HImYM@C}%F^c9AI`Hiuyi72Vqr0W|Gg;5+peuX#kV<~rhp7})%JvB1?rt6rTetl
z%@Ae>np$ROxi%E7OlVtM>Tt&!Z~{c+<&}2^)8t)T&;eN(@3wvw2MbFd+izoQh>3&h
zE+t{niG6J`Tn)~>!V*h0;ULre9i_1_ku`ULG*<iI^0kT+gGzaMVWwVVVMi;hq<P~d
zN%Mx@g1R+#`c@ETEL~s6VcqY(=z?D2-F248^H0phUeJ0|RP0Re5xmmb!DIxkL}j)o
z#Zo*D$GK{I!IbQLOBvlwe9TZ{DlyUe622XMv84`poMuxNX1J>IR2hFrXY6oWt^~9x
z6ul$i+;Vi;1f!Z_7?!j~B`opaGaLNj+gc!^j7CmweyI2tz~cgfQ&^2rKuVaYe`;c&
z)xT>=S!oQRv8(ym#6HFC)r7%p7|F9YDnfS;P$S`u`)XVVMl#(_re5`WL<o@5fx<mM
zmfub2jsY|(X6Qe{(R`bWKE8g7F(l(LmuFxNXy^!u7n(j4aEON2zfv|uaJavHO$XEA
zo`U(=Sx9xS7W7O;$r@8y9!83#a-+s`^pB|5eM`<uJNO~5tRJA#MQd`)XXmJ02rohX
zYF%s2naZx!4!qvJ7FLA@3^TN#ztBHj|3V_r)?}`~Qja#((@Fol;lOaT`G>^UK%krY
z6BhjtGI$Hm(H7*Ya5>xD#oxB|&ShumBRX($bANWInv^0UN=`{rm2b;8uvP=W8k=p#
zTVdp<rwRPFpN+rXhOT|wUp>cB-V>3f4l8o6@oNEp3WH4{i&lw42oUh*3*vYm)tt4r
zyth~zL88i{?$D~dEsXC8|5=)uihsK^uGqEoj2uRPGf;M&XV6gQ<lT=53|8hA()sbv
zjA7YblwAG<vPJ~R3i)1M<u>Dr^|?Fsc-zE2Vb<FrA~rsUx^H`~slYD*&;3B-ZgXT}
zOi@wg3ur`;+@^Sev)N{LCoi`%`!vEDw*D%n9eiZ}5X_p5P{XPZpt33$57}u-OT(wx
z#xy%0heroXE6Q$F%TLgDrd=DmyO(8`!-In6M@()VZjRNWqT_A(j_17>9xCV0j<;?C
zYD|s&-rU_-`FchL9bGr+9{&?4Sd7)^Fm|EoiF%EdxPa`!nBtbVheQ{RPyt*Gcnv_m
zP|ruu=edi=<f1*6j{wM%aVRsefyvN5-cr|ibKKO}&COT@AgV@0Dnsu9S++b5CYo$m
znhXyuD)OO{jwdTG`??eHY)O=_(*C1>=9jy_y3LzcsDvB<MnQ8m=pt&Et8`Q*epz0W
zXBXn#EEC_VUS;Pz6fr~QiE4ak{y|Rs!-wJ=6R*)dv0unf$PN_69UbAv@_{6n&k-6+
zQgZyPn^Kj}cKPkBtuNOz&KFniDP3_7T`tcy+?ZL_*&X!6ja#$t%x+v)k~vwZb}p_m
zWwc>9A<)@Ax9crke1#!a(Rd=7yo%)NML+!H#X6gQYe?8IvaVoVc*AY!;aI|IPkd}#
zXhuF51K?e*!rR{(Fbj;|V7(Q6{%bjS>1!uDlf{9>(W<0oor^$oUE9{(xJM+Q2p-$@
zwlkRWbSs(4d4d|^=bjewzyyF&9UE0rKapJOwFkXt?UY(sX->eiy?-kJ;9dh~BsGbp
z)Zy*uY9|_xMMIPHTymoM9d-G(bXMH6TT98s@7k~+FDwOyz6BD2-@51vCw~^3uMI(e
z284b<Bw-Fl_(Cvt42vmC2(lFv=7vLF)RYWtpvxEj5S<l_dY~qDR7XR{uy*9(?(`V=
zl{mkfa(Fk@ZUr>M1nWDwd0CT-KX4+#jvRj0&$s}<I*upK$^K;V&;bJ4G&}rv{HYc&
zF_VwlRhL&6#<bhM`so=B{n}KHf(@71dzm}XW#Uos1%AZmPW8$zP6nbu(4ZSwoCe4R
z8Qics7RHx*{^aRu`O8d}0YQW!RQ?3hf{H4C2Nmwxm~P(j#D|bd#8YHY_YDsyq_ABw
z8|P^{zMG1Ey@9)FRBc~Kxv8j&YYcY+Vkb~WV?~6O{6U6gs2*dN7#PT)Mk*`G-Y_%G
zv<wud_~ii-1z-^Av0Rqr?Uc-k@Cp%W2>j4HV>sQ_*go0XdO@`4cERmJM@PyHEO9LF
zjDFJHEVo>}<^-B_HqqXh@S7Re;r%8N7c1%U0ICcIk@%X+ca(f_-i?%S>gr3sIOGO+
z>u(pp@}X&`m(Fx_KWC^bi4tP1m#1f9f5HX%3mggY$PI7N{Sb&3EnSxA2|4X6(gUrx
z1hzwQ-k4cju3va}j#*n$rme&^oK_B8|49Q!4Up)KNMr5Y5B<gX??GkcPlWfXF)f_t
zSFNrJMqy!UB5X$M2*hwNPamfaspK>g5CnuWv-h*J_dof*Iq8HR6vjWs*r3IysP6$5
zXF%-qKk_`iq0tB5f$l#doMm>B{1M6VW7QJlX9qg#^KK1vS9O)C3ZiOAfZ(>9pPkOE
zbKZEDHx(TkX<=&ExcV)kfw1}S@UY?P@ka>Q!L;aD>cfiRK0XWoE?B(n<%gJ!kT2I|
z1;KK?*^(^1PaQcgkfJ$+gI!Kh5m<k;wu)GY*zug$*dE*1#&W;oaXQY`YKRARkPolx
z=;?c)M2iH%zGSUHTu$H>q*>qpa`+Wb;aROmmokIeBM9?(RefO7(mwu<+3D`By8~os
zsYXu-<COAT^I2>qI7@VOPMqK?N5UD4ge-P|QkS2duX(WLLMC`qex!ccwKr4!gtgCQ
z?#B`jLxomCJkbqi0x}BGa05=1Bq3|!*!M4?v^3enBY2*gz*p8Oveyl;K?ykBq(#-N
zXJb2{py>EA-7^85Pk$7<Rxhq>!a{XFt3|;UQ)PD@B{)kWD5$%$uc21S*rjc~2Ac&*
z=$!+(%|NYDisuUma^=+k#KvQPQ%6T^s5^=&`19?-(4Wlp$a9~E5OWl3G8~y=U?EK~
zgoFDv@GZ-**}8`SNoX0HA~46Gmps0^d9EZ&UR|m%GCVeFjeR%!jhi}Hj13?iFcy}O
zj^%WYq#$n|0P886+*WYHJ#5axrCullMLY5y1>O${QHi|39t4OowCHTT#Wx!lH(XV%
zZS|WYePB*Yh^{1nfV=gI%;ut;Wpv_p=%e?r!o`{TN5aZT*@lNCCBHNT=4Dn`&I1_y
zvieS1mnvq9{#4OZjM~oDGzs<-m|7u=@CNl9m+jvrJ0g;`ZE5Wt`Ki7R*MUWo>-JV_
z`6U;w)DuKS1?~6-Cw?}T1d$Z0N*5ygtNXjuhulPIy7CG8m}=eNfI{d<&ix-@(jo0C
zVCg6>GJ8E|S7+`?_9iFy4K;%Wk7u1gO8!T)nZ$C()2U3a^%Qwnp2B{QAu^WE*Lxo6
zk=Dd`5a(lkM~@XxC#kjm?Xe#DK!N)cj0{<JO!&O1(qtHo#_d!bIr*(c?$?YiV?cWk
z=bt|Pws81pz;fe7N~rUbYV;GvH}ri?9q5pd&OwfUZEKYB=>2&IJ-C~!htH3Q0<SnB
z(vMvX;?jNa-qgrL2)D0rqBR}(MlJnW){L8pu9)uYr2W!wq~b^+%}$w+$CzeYHMogM
z%&~Jx-1$z54fRR(hbF{^Wwehis&dy)w=;CUFIj(*m22Emuom~tT_rFEP?<D}U%&Du
zzysX9WQrzCp_fm86=P$Icltu_lRg1RpeFty#0t~&%*?#T1*TBbsm6wxKx9&zfSpTC
zOS?6e(RS?!;J&hV_<<qG4-V*al5?-!9vaZluy-Q@lgMX6AE0@wstSv_v%Trx4#m%r
z4POPU!zLBefeysjeiuAHw!OAGLR)jE&J9H8;(<x*P`dQ1{sx@VNtr^ACF9_q$=4ma
zFpTit;k?X<1&7zIzyG)P(j}HUp~XrzN|P6gi%Gl}>NYsPc^VCQmWy>)FYcx<&Mx}h
z{eRD(F*hWx&$?4lwmw1p{Y#u&E?CTleY+DZbG_~J=p^wpKSysGa_~reR*Mdg2!HrJ
z7N4vkv7N&Zis?xjFk)k~Ra8Wg@u|6mxvtlZB$x9_6llugdpf#1ZLJK?HHKR!V?|P0
zS{e>dtsX*ZCVpcZ*stb;m^cQ8#zw&6L+%vggRNQJ_RQwwCFM~PI+-`di!?e)-JxP5
zsa+l0vSDC}l98M`zhS&J@b|K3jtVo!WWtFHSEx6;6U9|o-?8(T=iG@^5ye+n@Cx8y
z7QD~Vp8-LY^`YMlF98^a#YHr2HC&fE_@arV{SX;|T^YXS5((tJ!W(B+<stwSQ)o9e
ztP`OX5q*I7(BS37rt?0M|16GeaEvm(?EFE}dur0%{%GZF=ij<%5MJbs7-=x*&8e^@
zKpFlJ3_c6#AlG^N8ynv0nA*h33g9)h*~9`a9&6Y8BJ!2Txj#3#>{7VoUqE{3z$(JJ
z(nW{-Haq&#p6kkNSn!xcPG0!Sngd|exe6m92OS-xv8a5KeN$!sdv8aoul>5STGr4g
zQ>adIWK_ZE@RMLh9aH}oE0Ovf_o%F3cCbQNCYRf4&lKVig^_@F*msIH?G7enn-L6o
zT&`uB!ao}-9)Y8+pz(E5LJRn?;9fXTsogS(o9%npom;De@sJ)j{K5Mq*>-YtRw6ht
zKnj%ZAMcN8=;wMn3p+5y05g#<zx+jVC{6a(F#nk36ecgf?C9g{iy)3BJbc+xtg1v<
z@7dxa6{{Ca^mw4bUFfMEuAQvFQ<6tSeEJ*FWooyxN21Mnh2CmktgQUu228Drpf#jN
zLM3`!aqK$d&|-l}q;xTbC<@UrG3j-0k2O}fA|h(M;Va6xsX{KVHr@V>;)?~K`5h<_
zqQho+jqFen^}w+1XN|}#%I{jdTVm2!Lud4pZQ*6uJp%|Wgr=WQl`YMwd_YDywli0Y
zjNSjX@H0xn4Uo^&#zcm8v47{F{D`}G{@ibK6VE)%)~4+8cr!ge-HBn_3eS;w<rNUU
z3aj{trxkB;9*=nu;Uusc+!ohyb3{eGhJQk%U?obQQ)x+iI2wlteOo@Sf*X{yUJwAG
zEZn}F-qfC!`jt+j-mNWSgfmMfL~B;RKK{+VisUx1vAZrYagS#>z;7As|J2p<)`d4)
zBI^@%7=gr+)I3#wkw6_6ufMq=nwgpTIURdc(+WbP-!E3KfJxOQ7a9+p#GH%c7TRQt
z{&e090CT5kQW~sc(noPxwOm^Uh*CuA!-NOt6ayg_yG=Ok*dlp5a#93p@`8^c;2a4a
zhB-Hcg~Rx^jMwYN<(0}Jm#ScC@Or`nYFyn1%0%|Qq?U&qgJZpKX=te#5WiPD_4-O7
z>J2gY;|-E=lHCI#?4FFK^;B~*X@jGmZ1=Q}c=*DppR?#{=+u7>7Q??_&4)X(3bJ%f
zGT#751U2$(TmN~HZ&s4Io&rAF%y=zF*t%{qbzgR7w(FkL2q~FsUTyLq*qDMvQGsg1
z(XY>>MMaD*=%EUI3lH7{yN|EZXlSBCqY4sY9S^=w{~SyX@dZ!JPL|g?uh8_0v(o^F
zxg6=Oi^~S|5{rVzK7!i@el;{5dpJT69PUHt*WwT#G(pbG#c*ROdARgP54g&-tsY(g
z&LNE0J}jpkBAynmSOyVeOGp6wCM$`-;^!we!<wQAiU6uD7(DVx$G3~Hctl)$)a8G|
z7I4CbBtbJ3e_FXCCI4nQkRhU|fO%`&;uyJ;o(|lhl%A8(n{cO)L2Mu9JmWe;XVtKt
zr?TuWTSzR8%9P)^vT6d=3Z}diA{0)M<^9<7FK|m(Z#t;tA<=3~96%suJ}gQch};4&
zB~S_w@wjv@d;{7>wJs7qri<;WeSL{FK;%_bQ7N3jhYE{X-xg&0yPOZVb=`az*Y_H0
z*s<Tj{<Z-hq9Af_<tSTlb57=%u)5rsn3#BK)ha3XDJdA{C?}@4_arq@nQU!_V`ACu
zPFk3MnJjT$i=G5V??T<kR%^QrOG){2r89kPLt_~!H4=zi0j+CC2$)k1dF+Lpv94FY
zU%%eu==k#QSFrOPAFGSu-Do`U4&MP%&1s;qD2K~WS9h+aDsEmtR)>dFQt>rF2KiQ|
zLdMcpCKgqzSi3dk@sJO!)k^W$jwmD|KCM5nsUSNa0djPV5F(wZ)PFmGo{^pX^<UTp
z&{)`773O7TCVzTE(<xr({K)L)h=||fg)Q4iTGtpJ-Uj!$3NU706h)rI&5IZ*sM!mj
zf@Pq_&Thu`G25Q<6go;l(%|kW*2(}Zs^6O>SN$GSFXG2Wi*C5MHVv~oSXMwk0ap2P
zKBe(Z1fvDkOV2(z*&pz|a<aW>y}^90qM>L6*1LHt)3ohd+Usoewph@*w!uKF>uE8{
zl}|aAbop1XMN^%oh0cNTzbjQiI}^Ol!#6k7lAc*=6mEFXxbo`w_0kpCVu$d^OW$jU
z2#8}WJ^ws2zv;yQWN%=exI>q)m#uk%dI)a&;Yw;kJ_*n_nM;p?l}AA2_VPxl+1$i&
z?gNJ3bANkt4`{$#nTDQKSC&;(L<m*B`)oc3n=fqg`Wg5;{C0Yr=MV4RHF?k0plWC{
ztr#0`iJtBOs|#S~R&!pHKWp__Aig7UD3$=1W+74guHm;<Jt10JcJ8{K!L4*c;3=p?
zgvKVRG}#s|6KDegvMDNofy0+h8;oTI+mS}-&uTSH8RlHS8fQMX=&o)|l$-M&mPotf
ztB^>QbC_}V=vr%QhBK5E#<H@gooZ?ccRU`QDz(ZMWg&A(k)r{BWZ{-{w7sw}Wori>
zGF~YzcaaoX>*t-hk|(Njb>-|R(B<UjlWJTU&D2ekJLiF}URqFo$%7j|Ytg=;9~=3*
zcyvAbUa6moiIsfi?c8>Pm8UWL)9=UC7p=O*PKb%c)RP1)aLezG=(!E`*wj`kERtiw
z<WMUD`V;;m5fF9oiCVG;C^GG9?5~0|BFGHm*GG%g^cBND(>;NndlY}0J>D3iluoES
z-yE3&S_YbMkU{~Z1Z0Tz_?)=aE+bEX!AP)JyB>3#w1kw?pbjut{`z}X(1&CKShYk+
z@>v@v#K0zAZ>`m&o(uU1!+ZaxFV|-Khj3Wg*nqZ;h{tAeb44CF9D@auXaGJYwp&?d
zre4Rt35?d?hV(KFksQ{iA(;k!uaP~2ga3M#b<xvFBFqn_;dLpS%^x{>KDl(Zw;*q=
zZSU?@Ihbnwm8$Id#K{k*`|xCAyinKngyk!}BYaIRP8T60qR!es7RP3vWsT_d5kurb
zW2Fzv)#(P4gSHm*`KX~M$)HIwEL_q*0C4|^`*eI-7PE%1$um-OvT|%Tw&6?3b9d)R
zXdbYfks@<LQdm;uHUO*r2#y||ET2@tvbH+9et0#o!O9$Es;__0Fd_k70Z?O8&K3Ok
z;na><o+D3vB)orlN53~fU)X}5ZDO3!_c<&qga+GJBoP1lD0u?<w!J)&5SgD;Yrd*&
zU}DR8?Qmo}<>(vZa7)TZ?ci|S)P=oDSuA8fH+yqw6T|Z*HP3p@8!rQRszTc1e>SSQ
zfM^`#cx-X(q2RI9Rlk!ZN0*8_fsX(x3?$x>@8_zy?AG2BapQF*rDSwiS=(CHTA!r8
zCyr$|*hr(T`1L^+k*ek)eDg&|?~{W1qyxs3J-9;0HsHVx1m*z>G%MdOz-IfDu6yC|
zl?~Sb)mCer0bAKNiR(iIVou&Oh4UG#qgH{EU;zsBH%n%rk0i(kC!OH(;^co<GmkiC
zbKnA=6MSLEuXs`ps@&h$y~cV64cFpb62K<iUBDzS<D(S4nn3(SYGNf%J-+*Fypr-x
zuCkdc(}*?Zib?<nMa~PVf959HIWKiP#mMCt_FVZ0b_%>Q%dSMMo3MAM+08QdM%@RJ
z9!g=)Jmu~qU<z4TKaYTkQdthI=1!FMZ%mXWDtPx-iBsy$%Ry}_#(9g*VvQuhiSH(A
zKuaM!TIRjx?tH<BS7yO$eUTIZ%+eK`Nc2`Q`Q3tfYPB+yHymG22$Rgz#n(&H(`9YX
z&4db(&N#iyA%45IVTxsUW5nyV1;`wRx-I}#k&Z`gy^Id-gF}js#Px!a^o5lg%;TY;
zkl=)%Xm09pQFhAApS7`(ekW=iJuA=tS@0_AF<m@Z_#Qut&v3UrA}aLlmxK52?p|_U
z7HL-@um1Svj#p-FfPl#B*)58Zj>W}{#h*_{+m#{WyuLM0TOCiKAWXc|gu8tzOQm<8
zUJ+vlm2r34a>KKm(x2G)Y$*^SS~3*e0N~fn1gvzPyt{RW5HGzE0>=nM$OA;-{rye1
z^+r?)B>61N^_@!V6)Q*5qDse@r>I_CI!rNdyY)Kj&i+340KNS*IU@L?UME|FbzW|!
zoTB_i@~+|51U~1J8x4b2#|EfP6f7WDt*TU`ad+UTuJ2t-S=6)(qKDR6<GS+sqC7E-
zxf!)QM|OIW`nEGK$eeYH5(_kzz^_C45Z{V`>k|Soo1)D+u|fCehyaxEJ}>99^B+Ho
zd$Y7uz6;VtsMiuGD)*gOmKZTL28TtTk-ljfYEc!HFRLv+-SERi!qDIl1?GtOq@ACX
z`<}ry2g7qsz0IH0u*JoCXe7mYH)dMg1v1bPPz5yt`Xz#uzFsPQb%H*9mOD8X?rhYy
za7<S>K?tlc#|0icNC`YLvf3TMd@~LliHC_dwFbu$!-j=fNm*i~tL1Xk{j(!wN{V&U
zd5;<5&pGZ!0VVdeU-pP-zn^}4x^#<)!w-jTxoyt1^xC94=cT-Q^pPgiVeCnvXA6SI
z0l|}Zh4-#gu0Ks^%RJhE4TVwZ=`Hn`YGbmaO-g{rl#fUX+guSg$0NwNAOq>bin_g|
zzC0fDaA&)>NxPr_k~k}qcbfb2(c^!GTQ43zNXiP{9Vg)}l<endZ2qLYffskUss<12
zH<c7I*>);8>gqm+p8gt);W+2xv*EhQF{Kks3gV5+Gv_t56?@7}E9j$uo)CNVjxwr6
z?<I*R<;;tKV^(xID@m{~^-)T9lB!O?j8Fg$YTOcnoKFZKI>}{CO8wR4aJJVJ$8n%s
zMNm4aR8cg)>zTNq0H@WrAfu`jX5#Rc=-nOv`y3jy_5~l_$7m#RnPD=FUwvaKg=b{d
z4|7QfLmVSk8IR_&<wHqUB4kUa5x(adKg9G*z2;Pz!u#(e6+TA1oX5uR(KlEFX*lyu
zo67e8k+b^dgdg9U9aG(y>CgCv`#yi3`nKV5o7X(jFQP%tEt3iO*tvAxa6urE)z{vc
z$3!g5^yj#}`@Or<9QyMp@(69cBYNTE0i>bk=BG%fCOj?oT-!_J+nn`QxMt%_P>%J>
z6D^0n^(XUmG*6Q(wy)ep7WRcdqnhEMVN=HI+}l%?3=E`@H=w_1=eVh=NqnE1DHamh
zR>^aT<CFDR5~im^Yy?zd?>`eUEs2L7I;L$1^f!fliL#kH@stqKQ4Ih6A^QzpPKR1@
z{DhaD6nw0%<uN*bg)Ob*4xZDOAIx|omL3vfQ{MA@>tAl-F8_6p0v6M*#I<ik?|<9-
zuipx$T9^yoyNrQP0eLu*s-2eZs#1O!2BgdD<YJ4mW@F=t=4-#Ff6oT@LrKy7_?65_
zi~fkD&A*)4NAb6mzEoce76Lr2|JcM%eqa{Y$2--iI$9><1LEb#wz<MBa@LsPptd{g
z)oVWImD#-ZSGhdvSARoNkRB23G||3%y8Mb2KN+w72UBlHZXXt;4Ggqj!r<o#WoBm5
zFub7!A8!j>#%yy;jAi1g+84g@e<R9QZwL*EKKK!pYM>{|=l>7m5^ZG}2XDhfieM&E
z<YrkncE<615lnA$?~|ndBZ1)1zPNM)-Kw=i?C)^An6?o)#q;imBf8wE4h7|SbWh6i
zWT(Vz5~&e<E<37&;Gpk9kA2aD*1x;^-}6Sj84a7m&YLl5!b#D6!o#sLq;bm}ZjbHq
zfky(X?J9c0x*FXmVgUKsR%ZZ48%jwz^Iec+x#`{7tvl7hK*g+4-f*cTkZOXEigO)Y
zscY+NIRVS6lz<7q3jJe+3{{?ypZ2=1JxFQ?c^AM16^6#`7sY}8ME9W?<nR)!Z}rgW
zkwa|#t1n-&iC$wBB&RakeLE}7y)HC)A>Nq{VzMsn&SZhD<-C%fWb;xaa0e{;EdjnC
z66<K^cG{&(czb;E&G1?;K2EFlNc$B;H|L<e`KKOmW;5Q308(!zHO(VL$7)WMvT{5;
zyEu4#Z02m)gBzcrz#eB0+C#mc?xfW#Z%9d`gg+($(@{!M*Mrp*?iZRt?Wt`{A45e?
zKoWzgTYCU-oOIkV4-+EYSzZ~=$g%em9ayw1TiaKoeF?pDW%>uCHOw@8+y&#4)4<TW
z7uUEGc=vo6BLbX`UmDJZ-zE#!$1!0n{l^v@&b8%<d%v<tbIRkj6y;O0bFY7>0D}!i
zLvlq5?7+O+0OElkAKG-F|7O6auF^=W()1mUvVUIJIo=!sxzMbS!#Nva%j!wj-W<<W
zz6lBu_fqT5l~%8;di}}x@TW6a!Y%PrJ8<Cr|1XhYuth%eD(*D?@kuQA-|D`x$;3U6
z7srX|U&m;!=y%ckJvJFmjjff|>Cork&%j+%7xE62@^OmdIrI7}FLL5~PPYKSVhEqt
z*;>2sZg3(+Cv>pn$WPxnIU|oLF(Uzx^NtTl0JY=)+zVru!R2@WQy3$Q?}>i*?YPlA
z<KJF{@+kBk@ImykMt~~`K3m}wAYw`day52MO#J=VHDZ2w{*r)x1p9>wC2a-ub!&<W
z1|mZg=c25Qj-0VHxC%UJab9z(KVDL}oOh$}zwiRv-%aBj;EyXn7vbHq_-i>A@SvBx
zP8DR8GT|)Uv63nWMS(diT@A(O!g5L~e;2IgQbc3K=vKc~rG;aGH~ME~tS$^7dbsDo
z6Z!s4v_CvamCO2&<SjN)YFl8C;a1)ox7MxocZJ<Q=Fd5eEoe6>M`vf8eoIP<Q=oTs
z((-VhIAdc>S?o8zwuT>n_wSAc%f_hjbDKSwW%FMeUUA-ZEy0AryaNmO98o&G(=BOz
z2j4HP`VGKDP_%MdY6jsvMNT{ASUGo$B}XUwTP0tP%t>!9dz^tHwZ`@Ahw}Rd!M5IQ
zei!4vgKQ9^@pUeNGb(!5{>4ve4MdQDLme(&u{*xDJu%eXYY(z`K>Qb=Fn}~MSbuG~
zK)s|Y1)fV?W`!KWWBFXRkumTR0NOfcF?)4wAV7>+Tm@KN%z*8pWseBmbBl?`=RV2E
z%WLR6i1jc1X=Ycl|Gzhmmtbc%G5c>~_JfM78=$(gkZC{;my08SF9sd}K;#Ad9^hW%
zLqA$lCI0*n3C=(n1A7B~;S5>8Yz1bQHmoCt3Y*}E7703K($K0#Zvt0S7&~UL)!gRA
zH=ww-DrVte8t$d1rU=vl78g>sSS(~Sd^5E%bOovHAqE|9I$89mjF*CdzXZP&VQxlV
z5^<lEWnp*w8^Z(Y=#0{%`v+9znY~SsqEZME{AwG}zK?vxeT><Sge<sems(vN!BAa!
zGtYT2cB&${KILs`n9V#fefe{6(Z6=u{*soO{;Ty?nZoB+!29vP;!AS;LuV-zm55tS
zSqlaPFbFPyfV0ea?am&I8arNX37pq&U2hVGR_S=p$5x9EeM!jRQt;|DID<X6W3PoJ
zU@EJZKFx2kUWdA=gIKn;{J0yC7IOI_Zh2YT`8<JMCZX=n@zRHtCEp)$wF!LAOve9m
zCx)mPR2Y}q4@v<2#Lu^uoT`nO+3|9_CG53dg_)|piSB^InYegopqJ*;{j*Ewwaa7w
z*p(a(**C+E)|6wTBfJjBbTA98y|!3kP0r9nAuT881=RnyW4C{R1+2wi03r#WSYP+S
z_PW*O^a{8I>rJNizzAuLlOJ1gUcn3BT1@m=r}utFAFQZpD9DJ<w*wUZM6}yuy=h?L
z41E+5P>^>zLFRJ4Zi}%eZM$VWyKK?zm9|SbQa|3?03JnUj&P3Mgz77lEu2*1zV5d)
zNE@^LvL68d8!&eRIHitDM|^M|w}5SsDoPS9S6+%AJp>HI;HW?OsqGJ-pr7%9Paw%x
z*e=`GdDhCLys>$RC#Z%@Q~$F+#ahv?8903xJz22y0LZRvO{Ep32s|WZWsTRBEiyAE
z>_|!-;C6C3!MEnZk5?~p&g5B+j939Z{>-w%;(y&MQw%RvvK{~exsrfvRaH@ZwlArC
zz7flI=cX!Zq)csuLC1pa6W1e!@XrZV_Rl`t=bVuI`XnEvQdO}lRLnVDdYpTp>&f`a
z2CNfVZ8nls0G|PRPa5nW%^1_OFkK51sA%=^Icdl6_&tV9QSDnc`SmWY-#K=JU_ONT
z<0^@=vJ=GHNy&^Mt_w#>@^pMoONPSGv!c*7?hD78YCU$y#>SoxjG>lBQ9i*4ke=RZ
z?p&!!$IsUwD$T6k>-qCsva53DC@ZiG9VwZ(dXW&#VZaQ1dpCXKd<VilV1)0$-ND-f
zgnb@0pm2wT3~igz^=Va(QdRo#`01PJ6S{qcMePmPy|}H$ziT+Z7%(j5`>SEdnq3m=
znlR4*eLJ*y=kY<aM2Eyj$f~fS-f`{LLxO|P`n#Z%u+i;s(h2_V2)C?PpE{uJWM&uZ
z*wV*1;1&S$UqvNyurq>jrPy(d{<|)2yqjuGNQ(N8?Na_~J^p|eCsM}D@@ks9aagS4
z02^c+D7}sStRxHQ+&wX8DLy3h(Gd+ip>JQJN4=~`N>6?YS<D2CkvzlJBF6L;5_;$r
zt$M0P7^=#pH&Fv(0>ly68LonbNaLzpWauJF9WZ<3CmqktU>q?iGuNdtq2ct71N7(@
zZ1>qK2><OOe(_}?+&F;@84zbs*GHsvV{&&u*48&NQeu7d+@Md(d}X|&vuJ2I3hZ=L
zCO9uX77Uu^(tCsam&zJ0wqDUw3-xPSS_u}ex-Z%MqKGk-=gQE_$e`)J0}*1WLq?%g
zf#k_}Fi503{-D9@e7*jcem5yDfFg8aAFr||M&3;T<PV_)`=r#_hI&Z(qi|PqdwFQB
z9h{GuPg9UmX47=uO%*n^4-U2Dta<X=DJqV!&WV4}5!ZAJE|Z5Whc`AR934FpF4V8f
zS3c<&mp|~^*wqt8UIE0CSNE8|;nF?k4`Yi!i79CjL9ve^bwd7KMI?;=&oOwsj`2d0
zwb6f~>$bFC1&jG_AwZxq11?Cefi;MhlI>eH&dvd8QWfkDkHSANv5W?|;35JOvUi6@
z>fH7z2b=bUwGfnrscL$Y^gsB0-4Q+hVZ#>>u5!<4V1c~&&9P529eNKRr5GMmPFkN^
z&<9cVg?cx4PbdFOw!#o3sQnJg?Suc-@fZz{DCXsLFQID&5U`19XxMgnV%<2|JG0nn
zf4iKfm}mgmfB|!9LmR~}n?UTX{zjGKW3cgT-UNA-#mAMu^aNcs6czQM&&=>;z|>ir
zWVG|{vKA|D9^4VQvWmqzX;|-D98z42KJYW~z~YJ-JUlZ;eX^p6c-Vee;~jWVM8Pb1
zxcCqTQF{kdx%r*J3{ed(wpnSlPtlLKfRz;Q!n=J;<SiT<#^dPh;tybM2L%u6ukkzk
z+n)on8!|q%1IKuI(X+?j&2M*O?w;S+Hu0t7H;ur5vmG<AXj$BewZ_V(e!sa-7&^>E
z&_GDES1!1r%Fms25hKS2uKQ<u8*Pb0z{y;*?!>z~TaEzaD4L3yaI-rqB+Pg*@VG=Y
z;yeZIah>|kWC`9~K3{QPui%##2^3F%{eucn0Z&&7`<rFqbp74*zY%BbzE=Z_BwaR#
zu+3!oo+(fnMYio}8vtDMu$%IKbx@1G0aaY8c~g$D0vVQ$*BvRB?Ip{=kJe!WyyK3u
z#Lzwvt*Ypt$`D_6!}#%u>47(NOl#l^@eh9SWqdbxkGw0-DlX<~NHm=L8`?Q(mt^o3
zBp!kWXk*y+ljTPhGmV=ULooKqCchF*c)Ed}30@7IT3Jzc^{T#lNSz6ezFEz5?Z1D?
z=-?kXMLt6DAc2^RG9RyE`%4L@Jt^VlpGrbLJMg{neD)uw#wiZJgng#tbED~QA1uku
z{Q!&`98RX|uimSuc(|)Yg5w$$dx1ns<<au19as$vSz5J{h49A9^QGK`G&!Sn5a#)H
zx41>=#zG=;exZ5G*O$iDmFkY+VdQmngxIs!JeGhkN*YYfO*Qv7&#$})DR>u$_1odG
zunMQ+ha^UNUWvBmllg(64@vtAONJm$&VG;gQbt-Fz;<*ItkP&tJ$UL9J3v~&cKH!7
zqBcb>_(+-nznwok50G!x0q9;0FL&$eKG-qT?24p}R6R&4j6<q$XlEW_I{~_yo&WWq
z<YBeXk}b$2P<>1r1dJt3E-+$WIlgm>_#-dhwz~f);qJ||n#}uFb?@s`?@f9+AF8<q
z&^(kMjyVcGIYsy`WfB?n3eRqRe5QGl8>T1Q>f?8N2wAf%0dNz|?x5NS*xCMAf@68A
zTabGs0|E)okJb;Yoxbj3!0L<^r^`%ahz}a)5$YltqS?$3WuiTMYfcGg>w#RUwV_18
z&@hvLyK>2Ne1smpogr_6_zRkqv+mpBt3WGz+sRrt$0^a&^z=dcc76sD6_`D_E%{<d
zcPSK^j_b+kD`val27)ix*Q{*da$2_$s!TWnSQqhb^15xbj*HU#p_fcNi#7Vd<<gP7
zoL+E;MX6+xY!<T9kSD$GbBot~zl9!PhYpYf2Z0Wz*;i<xl9X)7br<X)KIp;$0~836
zoG!L_gH$tm!eam85FQWsgZUM;Do_3?{;e94kU+f87z#LZ2?$vMtHDo`PQ9f&L0fv)
zjTbIP4z4j<1wJ&r<G)WweC#oQaE_0vEG3op(aG{-RCToYQ9Zd-Sh%ubW)9niFlo3r
zEp5)o$P_ohJfIJYcXrAU&Z@|(iDnGwxmz~YR2<OJ(F}Z2hIJX&&EBf0D&^;=izj_5
ze300>%j5DzC(-O{u9q;__|1(pp+TQt8}%Ck@Z4YbzZpaebZVZaxMQt0rEF6r)#;vG
zrTw|zhi})P)E=bNEqdW2`3Mb;nT!Pm0f^CIQ`Q=A3jb3{|7U&v>!lO_CT=!;AUUv8
z#{)a}|7lwK$8;|GtczaW<0Z!g{{%$PBKt=WXyE!c6f24V>ujk22noms^t;DYfKK=R
z4qLAQBcm!3wu>zIzv8i&vv}z~8biyX66IYG;b2sM?-~F9{P^9!DFz#_C-UlI;)4k;
z7&mL^W5GtLv*+!_;hFVBt84MtR)lnU5u>qX(X*zXf==h`T0q+jzr5^~RmxZQN&DXK
zMNOA8prm{WE{Av;$SF$pd<Z#3cRFCdyhI%t9Wl^b0ahp&cc%obBn^p~GT$O25@O-0
z(yao)p$z}W-~T0tWN)hK>$eotJ$k1;>p4ROoHhZ60g7$F?N~T0V^xs;HN*Msa1&6A
zf!Y8-22*DVu*Anc3CSKe%($2HJ9Hr8BCf&py!&MBz{r@!S9Oyn;3!Ni71TyTE>~Xm
zH*qa`KuGxT`)AT;C=Jg0$7Pu~9fx%3@#S2Q>A39&4MoScA4kf&JV`@_l%8C96kyi9
zmv}jh@08}cfCMmXc~l6TN<iA?b-T5bcJnERJ#j&MRd*r=l6!1S#WiJB5V?<LyqZvs
zS&yD~<<ACeY8yyz&#pE|t3|z@b;eiIR7uHB9(M?@{Wth?@wvPpflddonUYghl#^9z
zlmS;HsqgyRBWSae4xrVf!I0YjT*<urIsaFjcIn%5&K%MfGnK_<9w4~W?G9d5Sv<Lv
zs$n;sJwXYB{N9LygmUI1pgj!d^Or7U9B8oRPp{0iTDd+TyR_&0wn-D&Ml{giSDwDv
zsC}1}a)r>Cg=GH`%2}0px;uR^pJft0VjFP8<9wkB(g*=saCLUfZ+DA5fUpc~OTf(E
z&`rooN51Ybo|ijK3Q@yva;garOaX5^1<{Th%dMieIK4%v=yUN_zXz(_stLACG2_4-
zNXSDInXufi1<c4z4-DXxdhZPs5*ovt{nq0{JRe`G1&0Mhos)_Eyk%9yiOKSf%a51P
z^ZPix&0)oG<IQmpcoM2;O6R`|U;=z$BS%{$^WdT%>~65+|Jx9LGAZBVTc2|L?yfdQ
z(KQ+o7J=b|k7~dBGaLW_+?QuFg^p)iubS%?bPZy8;g+U?-(Ux28-x4rxx47?D{ME{
z?q*K#Cgi;g>}~HR8Qj{OV1X}3(ghR2_-@91)>ZBRK>vgvOFi2zATWIW!p{L3hrtl3
zrDWRumTq@_?kqz%2h#rA*RaQJQw#z#xfz!ahSr*WnfjLM9$YFaj{NTk0O;!(H0wtO
z8uo&h*2;IsIUJUM7o%v@TG3KFyi0g{uG;J2jJO4oilCq<`P9555SnB0e~^wPVL_=V
z@wChw8Y7eJ2aP~=v~c4NI842#*g%T^F>4}##pP8T!029p#$7`GhN$g$Y2N|5H=x`O
zBFygejYz))BR_Dhd5L8I|DE5>n2HKhV_Wpjow?o={sB~ZtIFD9-_3s^R)jMB6*0em
z@|1*T$isX2nml}3YVzTa$O)v_MnnQkULi-9RiPDyzQq{i;Tpeoej!T9rrGjONQ*Rl
zc{vhlbO&P9S}vE{xt@El_YNC4MSxe9aRY!v@~0}TmnOAJSx4?FEZ6$F#&+gPfCq?7
zRAgLegY8mh^klUMe*vh@64=0|I>)c_4*t`&bXR1qvfPwu8)H{p!)1qZ*w@_|Rbx0(
z;Aaqk%ctE_&7aY&?sC=n5qiaKl>dpEXMb$<*nb<#<Q8z}q;UDKH%f3)D7&M1T^B<h
zvjpPvbGvocX0}W4RwL@IENj+ST3if*WzZ%R6r-%IotTrH44i=polcW0GH4+<mJ?PH
z)R0nCtjet=rJ^E&(ytk_Q%hr8bflwLJ4Yu!P-Et)mt25j#1k?=g;xbl3<TT2IC9L2
z3$%lydpt}$<m-Si?u>{BX*0hDQFpnS*`Q_usS)Z~z=Q~R0!+3z{opyI0`649%$upM
zg6eV*g9_~Ry<vJu_!tlUM`|v$4Eg4kVf&Nw;ZX%L&2_`9u_8`-%IClSh56TBG_W<7
zgAPVTUrK{lR7-hjF6CS41L()6Vbzyw;K+XND}KL@pEWs^%i_8b1_DX~(51!KNosPL
zV7jRS3Hg0;HmD|fllJ?={~Y-P@kc?16@9n)bamSrj0BXa7Sq)*IKLdqq7Vqmo+-86
z1FR5)?`=yKQ>C5bVhy1QYgsG{vI9jL?$-#!mCo}oFhrpD`idvp7qpKad;!hx4EVcw
zs<Jb3mNvJ8BH|qnZO&5<ntsRe%ysl_jZu^!B&O6HfyJ+%MAx=i9{AYfcbIhP4@iRD
zFY~WmkJ8H;LOPZU{l;L;cO?fk2yU9N36ZjrQb^u-N1rulaKXth2pJ;c^_eLC(xPm`
zr4WXx5RPSqBo0D{u%+=(p`-=-I(1VJ%m6j+!GvbTwaE`cTl7p-+4EXPQGj3|Nes-x
z9eU_Y$4`RWai0D+08=ayz{WHv^mNqA*sA~7KPo6H*%Y$J0n5x*pR6dyfHg-fpBDPB
z!hmJswkjtiteE$nd~j&MFom^tW=GkA)6~q|@M~&LX5&8@T2P7`8E6s`-cth_)4q|Y
z-md~3w|C&QYZW`OQ_*sdO>_jFkBy7LAnX|V2`|Gf7W8gh4Flc?L}dqYG->)PP@`Vw
zYrGAN4fav&G<~e%v1TMS6Qp1<1x1a}pg-V(&v>bF+7(-E+pMogB`?ZB-V$QF^M(?1
z0KEW46-GLG{jJicTSIyE@i+UH$3q4nDk@v>($3;4F<lZD%kIEQU;m_Dkm})0U2a}?
zLw@Mu?B7+mbB78TjR<x5MRS#>13MMHHLSH|9FAtT<tV^thTf-rLbhQ`sCRgL?}0rO
zFW;gcUYwhW`M<NsSh)*87&%ZGi0}oFDfzhIj!iC8(lZZ^b<)z%)8s+lLk_b~xMjR4
z(18dLY=eF-T0xmPYq{e#-`ilE!Aync9_sRAHj~Ov;=UTEI$!GissTdAis;<rTxtuQ
zOlyEXK^6wrrC@;q2G)aF->#fKO=p^#fN#Z2R^@C}ciW0enj3#^<J$G)c)jeGuWx!a
zPuW*5_bt>uosKxar8U{i!YnR{^D#h_fV@9;yBv~AmHT_8IJTi;!wVHDN4_-BcM4IC
z!J()7rMlMVqHl#xw-(Jarx?Fq$F)6EWZM?t<<&)J2^~Tb@i>17X%Sank&_f;e)!K}
z%dU`(X<+OTq~iJOc82G;Y^3l5=-rInfAUBO3g#7N3bF5s7&}G81*G{DAwbJGm{BpW
zAHFx&ObSW<=~)fq)?PTfEh#+&{QZx~K1C!@t%H@6)J}jSucSYUw-_P`1IffEEoJb2
zDnr8#!^Cp3d%;8G79gE*vW=aYJ8V-PMoIg`{smAtjo0jrXALdDJF0ghahM#UIiWb_
zzk#jDd4+P&*x!DW=4onzZQNwB+jwcwK459je;GNE0{@>(tonl;ncAy&l(ICzlWH;1
zcv~IlME@HNYG;l&9e>FSt<IjHx>2WdWO(%V_MFEDO8NhTTh$nr^6-67!WPIxcB&pn
zeeui~z4>Bmy(K8VzDHVrND+w131EJBs<Rv7&jW2QW8*=R$mvmN$`JbCAz^FkA3UR)
zi5QCXm9(!o6Mr^Z>N{l>v{j=v*fejAOu2x!Epx32xbQt*me?X(o7uilVs1Mw`ZmQC
zr-#EA{p_tJV+|Dzcu64FMLj*zFRi@V%1N3DZ9YgWHOi4f$XiH+G+Yy|#v?=bxw5g-
z?_|=f@2oyybhCkBPA(M4wEOsa8t=(g@<3q)DkyXnTNu-}TY;|ivxHoe(GrmbaCnFt
z{k3;^T9ijsN3mjzovDh3hI|cBJ^kecx!ilBl7pRt!^6#nD|<0x`I>SX8r)#{S6^3s
zQ|zDwuss%7mE8*d3=_SrkT+mpxUe<rPN9WBg#x?4Yx2#ivb3t~O}ruD7kJb5qqQr*
z`s4RWSBypbdo2#qLrW`h&!nV$9zWrvPm}?8w^Ng5o=>WItDm^o8VIR;ye&XM!u{R3
zu&Aw~)~BST5F~5`WWOLmRKHHuEuPJ{X@zOsM&-}O9K0X&z~sOm4cGw(3PcJ6v)`4-
zZhX+LzebLx(>ZDL-6$?=1=0<XWDtS@T0c<Bd=Kd+7*zhO7ew>N_bhajEbHYUBcBqz
z+Lo!+WU`2*n@Mpm1Bt8?4FOF=0m=y9&zEz-;_sXjL=XQL%fV!*035Otliob~7~cXH
zR<OFn2X!nVVGJEk6ZCXg+!_PhS|QRRz*uJ<iDS;q$rf)i-64m7tIu_ZIiI0|FHh)~
z%$)qZe02>F1V+nJ*F6ogp`JsI!YdDw#{UUrSl)(@oV4hV%-nE;X(5}s=$hAbhM;G2
zf@h+@pg1qcGSw2imv;&m&eD2eX**4X8~<FM66?cqbM=p;!9bpKA%7PZ7OwK{+!@jH
z9oM+&ROx2ieSJDgg4-y_V?JNKtF|vGDT@Y^GK5Un?+kF~CCa;0qxD*oy@ee$B@@F;
zg!kVYlp}lVZ=T4+-W_dHs@U#q1E(Md7l8`myH&hsMmy?fVzWO;;3NYEwp4#SV6k@B
z^nX$H6;M@m?be4-5EK*vMN+!ETcklsI;FciHwuV=fPjc}NjFHRgmiZ!&7m6(^)KJ|
z`|f}57<(ul*=y~+&Wb1IGiPAb{)?}dV)k}jlz_dqs(DIFzIJ{1k;T|fh9?REe$1;&
z|089UcU+5Epr#ochzO+!D;~L3bPm#i`MLje%lMJsD;H(9kx{ZJ=?=g@f@Q|+1|$>y
z9AT$6mt<!ERx`=dV{4~+C3P+D(*?N{(RZd$#<r1peqk4~|M&L3?-%mMzHf{O40x>X
zebc?zwZMqqF*4Uy*SfkewW7h+5x_)YR&-d}nQwZv_puIMP1@lMYTsVjiDQXBi~VtO
z9n3}-6YOf))CM+HYdEhqyhnVKvTGK}8pTUw_%CM{BGoe!K>7Yd&Q_oNBn7$`D9rI*
zv}^4!;ruqYIM1}F+johPa(tZ2g+IB&sFg54M&=(+UrnUrk8Y!*`|{Ym68!}=W%bsW
ztJ9t?=Dr>VIDG%(UtfMx#D^F8U!2j|CB%E#b;JJ9b<C0zLprOQAn5GdN0%3|9VSyc
z1iz^^TuvQrZjC=>LkS~YetvZE_sY8Y@}?zTdwCVm_oBeSekO(;UZ0B_r(qE0)4ldU
zcSnAg@gdBgPKswpS+SRSWKzAik70LgxJu^ML`CNbQ8rQX6h^Gr@6b<=#d2>pU0x(B
zSf|`7BcsyO_w+vnFbJAZJ6OwrQ1Hh`d%?ruCCRlRDYYRa&_6O`z;YlBip?u-%rYE=
zZRBgaDZC<xvam|K2cy2P-5;kYJ6MuuI;-;nYj^DpvWl60TdA#+OF~%kgF~85i<$sV
zo{<#Znu`2#!8jU=pAwCI4I_ouDk0)VX1Vi}5MVA&m)6x+le%X3Caq6t8ml&eb7z%H
zkCW)|^EX7=0xU$|obqyKOboefg%?48NAj;eINJ5><=d`5M+RBXq_b4AiBJ}ZHtTCw
zKYzFy)IUURo$)HxWQ;OrHwg$hLKRz9r2NLI-_bF^$yHFgcgp)>{o@RI*@dBeXx@AL
za9PXf=7jPOO;t1fXpZ-&V#h0Yu9QoRaLRG<pcgN0LOXD#)hSawQndfZJbF#6j82xj
z)pQ6k88N^I=tu(@<j%_@uVG5>x@!dz2sayiC&mZ#u_j5|_b?j)ZxCa+Ymq$RjM~J6
z^Lfz1d&$vuu}n#FfLm>n?t!lwV!}9Ibc~5I2<6mx-r)if-87A~-d(8&8sz%u61ql0
zOykAE5l$t9cr@nt)aLle3Qzw>t_%r_9q|iQ>`5#@?TY*nqz1f!l+i;LxPoiw4quf2
zJ{&NtK`ck)9{+C4{{0Z~*8kG;fxV9RejHgh5+(GX2#qj5bDTT8uOmM{0lS-$rg}+t
zN{vzepEmv?bU;)n70mx+erFj4{a?W*ICwWkXV+_*-~V>;kAUC5y@B!gi^>7Nt_~2A
zC%b|zzlye_O|9i*dri0E<N1EQG?p)Hlv4cOzwYp<Jxs$6I^E&<-TvFWeJUPAcn|92
zdKJUer|aE7n0SbE_7*3s<G?I94%p^QT2=UAFaGxSkNzK+6&M0%M7qF{`%KztJ6}Ui
z&wsYDwryfx1PpedoDI&jBVPFB{&p2gOMuj1cAuu8hiFMmusiGOX23^9z)J*s*E)6y
zMW(ddOqUu>oIDUXC*k+mDP(*aB7W5NGpM5@tC=w+JS+U~>x}uSG9rV%b8pUw1uGpE
zA}NAT(O`0z6@=A$hnL99MfaScoymGan4s?&JHnF)mL%w#Zm@4>EQy8e|EQV8^=Omi
zbSEghvZIplNp(q*i?b^#>@`Z`2k3*5*6ndzp@Ot*t>acr#s|S~-2Z%U@BVR%5S#Gn
zq{1Cta~gqV17nJt?x#{c3zgNC<oZ*Z@rz+T$gl??bSx{;#q*!YMhINI)ZJ2)Xpvzc
zbwNH{kZHYgjZK7=%<cKP>f8PQ+b&>**Lv~7DhQIGYHudO;^7kN9rzu65hs@Qm_?cr
z=diVXsx&jW_v2z5_W&go7YZy?uIKZ^Q&`&1!iJ2DnTg*Yy6%=16Qw>Uj&pUD$eD{U
zIt1PVxz$cJ*Cr$wWXI#MwYT>*nzdzbfPf==z?MIGyH>qAZ+0v-v8V#2j8H=26(uU_
zk9uguNdSU$8_22FlY|$sp_bZ>hJEjaW2b$-LEpcQA#zf{-@m*FK4QU}_XdkPsMc^o
zPAW>&eUC09ab@Ec@gIJU5OkpBzT6Xvmp^N6KA)-y<mBcS;Gg23n)Nx|W$}4mT3l?{
z`ZFjvB6*Bxq}hIIBeg-qcp$oP2Tc>2{dWcn{hhVxafYYZsZ5B?u(VHqWV6_7;`Zyf
z7A+9gE}V{Y2hk%(Y%v?)+ZNJGZobv+ShGSA?fb>VvB6yFhz05ehi@o^Z{O+9W(w<a
z3Qzzl*s*iw<Y{{ge`B@3Qz+0Y5U4Pe;y?BxaW9t@B<j<5%$ChERH2Sp`!<H;-&{bY
ze=ks<El-siC#<rPSLiypD6fczo86+iF@CZ&Z8T36V}j;yI}6`~DPRsi$8wZt#mS#|
z{}aJ05ulG9Ic@=3)H~1TVg4k)rT*#i@xZV5G4J~D<FL7q+5Z>s<q1xdffan*=vR1M
zXu){aJ+XzS?p3B%63?{);fXJXwLA=!bew`z(pBlc(g&&JsR$XGBO?L97r;IG<bes!
z$Af=c|GN|qcfQh(rz{t~&cgQclYak2L+N{MBdc>#P@5`)2KjscI5avnvgj^cS+zlI
z<vh`1r5-#O1fwK>|0?rw8QnkY8T_&IIM%$JPvj;qgV2_k-nW!b<Wb3^=<Zmbs1xwf
zF6~$PCTaQ@hB9_=9Q<<+==dkS`1NRP5TIWvG&dTY@HE26VF;ra_h}Hc=g8Bgi|#Ry
zRw2*R4Q2ZW_Xq9*acjXWxp69Dh)0{P5?|n=v}^3K@2H}l*S#%*g6i4QpP#q-NT@$7
z6%oXf`@I@|#8swxOGNzYzc2f1mKUva7m;5DIdy%_Q!l0@e_5aP$H=wJYX#Z6MCVlP
z+rt4LZ<ZHPCx)`Ro#NSA^-Vj+&qA_bEopC4Md;F{#mI5Md0&+eJ#)~bERTz#4vWx0
z`_B-7=)92H^+f{RfVLMwL!E3?%eSI=JH;}U1+pjZ{HYd>*!cRFTageh1{Lh_Csbn;
zJs@yT>K>d!4__B5!)5pU^BDlDC#>&;P0R{KjITv))COf5-^u2%=!G^rBbMLvr-qqD
zR+e#&Uwc9a7g@9J95j&;XU9%^^jbIry#Ezf^+$>@r&6aC$MDQlWp9~+zmj|VK258!
zQIfoF(AuNL-lxhWthWHgS9dPSrX9z!rxA_Nog|gV^?P&NQ+<sKdo<p<B$mwLrtbdk
zY<qj?H1)TnS3;cAvFynHhI{i_gjgQs6B$Ue?cZ+^97AZG9BDDq@;J4+?TS{p8BcXy
z(|d8&1y`kjOE{canKp&bk->RIe_`Oy`;;*A$cYIf5RF)oxG8x{TbIO?S)4xIGgp%y
zqA@#Ul9uy2r!s;mTG|B7m<2lo<E0DXpG|7he@?N#$CMCn9otA>$}5QcDLQNK?>G6X
z<y~JZ)FPQmqsNrgsI5GoXg$frEjQy1Z^$?rjk8;Ortuu^7;rO>_=w1@<~h6wR%kcf
zh#SiNx`0HI5HM&^|5jUnWn;@@XU7#%>@-w<>GOV5bSF0H8V4t26>cHqr%4$uiv)|6
z#q+*3ll_g-B)Yn1Gs**vO^)=H+VZ_f)VZx@n3!I08cSofF&q?Kc!M4BF<WlZ8rLaH
zH+^V$*@xA=0YCU2jD}fva>D4|WgV%I=i0Q2<bQ|n`O>EB*Rt_|Z<6d$-zQYJ^NQ@-
zMi$=sG_Tkx5HZ8RYTg=tE`Z6=n_~8U3N6SK75No?j48B^8zr;4`3d&7luoO9&0$e#
zQ8}RXD3l&6wGIR3``TCBXsaX<8|OhFU1kO??on+`dqb-eHsDWPsze9Ufnl-*$i8}W
zL`76M(+PLPX<wxGKa<kNF<`apYc;QRm7i0CdgtWe0ibdChGg78D$Mnd_EEN8rv`KK
ztE{R4NWa_q$t|KeK=S^a;qc3;hLrI9FgtvecwOokKw}X}@M3yu?x^!yz@%LkRyamK
z1EX9+;^m*Y5Y$$V>}vye8q7GN|Lg;X{wt>BF!@rKIyHm%303Rv<?n3M32`oY53z{@
zsss`_`1l&`-{0B_Rh=A?e;KptB%x(m1che-HPie4fvfT;ddZs(5DfjmiJmd9CdH$~
zK3CCA-%;&NTO`8**U%^uOiJfCi-D&#6HkqDk<nL5Lkbf%vj0p~b-W1SQ;bmLjyXL3
z*k~FH%Io=g_D%YdSZm^{IbfRcgfv-ZJk{urPJs3b8SY(!VM%(*fcL1>7a3k?vJF!*
z3kd1Bq#)cWQ1rYB!^(TKLsZ?CE~xBz0MW3@<WQl?t1wYY+>rQ(h}pLsx5eM41pl)S
z9k@Z4h>_sj9hUCy<?$<rM=!FX8@@%~N`8A*AO~A|CAYG$yi?_!z&1r*Tlk9FGyf#u
zMmsn)S2cfsavumv?kq#o#<C1nJ@nSi2F*GZgdyUn{-A&AfZ_-{7%W_tjca0Zr)}J<
zpp5`f{Hk}D3~@o)-wBXK9knW@8P)PcIjDmqvrhI-Et2Hi^g}eslQ}b3;y(|EKT{;b
z)oV`PTiLU)Xt@UqQI*V50SXL+FA~8OGpds~8sdBih^ipbRMA4V|13-7onMC;U(jJN
zy6{Sp8N@VGIJjUfWYI*tbKUAi)}Gqzl@W0pm0dp+3Fj@sM9IL=nwva>`In_L!+Zpx
z4+yGw-C~t|pv9`BNQ(o8{3jnHOo<lQ@sHq(Nd9BlgF$&wO-ht@e=zxMs9~z(oDj@E
zzO1RKm>V`W!2|f`Q2bT$dIlK4dyftqq4=lfWJcg$l|Ty2-u6cIA$&t`U9Y!XXdlG9
zQk1TXOEh42Qu1)MT?zOw!uFaX{9z3THJ0)|S(NNKapPnB)wPwqDYc&eEYLu(tt)Q(
zs2xgkc=Oo$>e1imzfJanj72Eqh%t(6v9Ty#96MKw)~Z~p{eIJ=d#0*&ppB|l`N*l3
zygH4MZOzXg%%zhfw_Drebj-=U!230EUngy5@McB&+%;7{0WO*<eCy-Asl&D_CAzOq
zpV?tZBnPV|?J~LkoYFZ@P2tTbk*8kt+$_wCO3A8y5+Z%#P{rp1!Ra*;Gdsumy{Qh(
zoYviY%`CBq*wWl>Umqiwf;AWu3b*J#q+o=Ie{rvxd+=WLJD+8jh}2-o)i&T6LO*iG
zK5?bNc|gMK1}6>_V}ogaf00-3;gZ0v&hnpC*%*bMAIG}CTzc^x<S+@p)2ZceyW-ht
zdp)_oZk~?;Vcu(~6poU4q?Y~gYz+=(@9)|(efn4{XFso5SZ7FS)Vw(-)M1Yyv0eB4
zBZ7ZVfqUhnL_STkw0ys?7ed>YB2t|EBbrwP>4H>aV_~`5>@7zY9vAHK=1PWY9?)87
zC7{4gtxHHsxf;!J<_yso=eC*muB&MXl_uk#N*ILV1y#e^P+@thRl6<m-shMmPPL7d
z(?ho}izC!w2W|V_K%3b7pB>HbYWv;O$Y!HIxTh~S^FEnk<jD`;XyUzyMLb;b&&9<_
z7V{!#>-)!=W1@?djhFwXqk_hZ_FsB*{Y*YyBBoQIr4uFX1N5|!>VCtN=%Lli&F3k3
z^eXnc@AfO%Sc<Bf=wP}f1@EG0onpm~F6dJffvKYWG;+|4jep?0``IUHO7Z{&ZzBw`
zsPE$B!z9en880<x+i~a;yIb(DTf1>(qr`97Rm_IEaB-gee+71XUH^b<t8&BWE;XY+
z@%iMo7~_EhDueCNFUqLkgqb{1*PL|iv@eaHea7D!yR@5~a<UGO8xfh{Jjf(uc@QN2
z^)Y(SGh#0a9CQ|nx_=z+ziW13jE}eQyLN|I%KD&<{*8;ZhIbW~0ds}1wLMdpMSr4b
zZcL~uJzl&tYF36ZxrgV1wmg44OLXG_XW4&5!9m>vYs;|nd#~TNC`3$7(;pi+8L}rR
z<#KdRV^QP_`=9SHa8U`?+KdMLjG%bS8M3tIY5n8@Dt|2HH+p^54=(f}(k%p%|H~A_
z{g^OA!q{(HU8dP}#V3##SA5uC7b@r%<7Lc4@fQ5&@|tI&ayKRHgC+u*dIfr?)Q!uI
zr2sew{=QH;&$OH;d<77IFcAs((v_vlKAqqE4c?16HX;sf;p{nDR9jl~r@@8e58{*#
z&s9I${e?gLz4x8}%CvmBi&-@7LE&K(+d7tq?PEao(US3Y>LEseZ1#!G*9Y%mxHzEf
zuYv#<Klua7+rKx)u|y-GK@~Z2lqBc`Dopruxdk=adfG!~vJu5o?3Lu78O2WDgl{r7
zu%eTsMh8e!zmt0SpB}{yN*JG7i<^gYyFU+~XZ!atK$EC<)4)yNJf+m2rD6{f%WKW|
z$2zVWqNQXH`4k%x_Z&Q|m*)%5))~nrX`o=1YBvvwV#K$nDL<?wB4)b3@VZI4nv|Z7
z7AVER8a~6RVDC}IsUPS5MTh(%#GijGyQ+zutU{|M7Lp`GaejdGoZ&dUxgCtb5T=Ie
zG;K_traYELqAYb(%8{hP%UD_KMDc!~sMtJa(DKWFTJ~V6K&Myge)S6_dLof{r3IQ5
z2wdRDiAQGmBcb+0o%;6K-%(Y}%FTF{M+SFxjd%GyD#-)$mnUZ<c<5VPtSdvGZ_}<g
z$OHJK>3k%DJWL7xi8UOAigjr|V95_HWj}0&HA?Vgt7z%HK6a)ij{}rI+Xm8}f#fo_
zHx+TgERVT3E0;`fCb^DLk<+0I1D21n_hPwDOPYwAf?jxt#eZlSpYXf=;Zj*?%C3f@
z=%1Qm-?|$NSGyOfit#VzrGzD2>4#E7o#HkE@jD+r1FpKdk2ykBdGYQ`2M^MfPLfP{
zefOLc?EExJj<he-#w&@d0ooe)*B#DX;ei4&-IjWd^f)2dM3C_C)CG&k)Q+%^-~6|>
z$P}Uk?Qg#4&0vF1{+VQZH7ICK?)s>o(7pYqcT;lx^(2di{gu(_#Gv2p)n>d$Y`#?F
z<7rPSG(}y{^=QhRjg-3Y{`O?al0@r_S5(b4Vil&HzbX!^NB;!f?`_A)L!49Ol<0p}
zyqz4Zt7_T;<lpDgKgx524)|vO=;T&K4gMH4P_>fh&#Y4RuS7^HH98Xf&CH(cKMA8s
z^*aoRP2N`&DY35i9TW*pn)?tOo-pBNY@{M9J@rmbhZGb(-uwnazCe&jYX+eUxLpt%
zr__9&N7n;-SF?7WcWr}Jc8gb5NAUFJXccgS_Xeb|f9or(jWBhT$@B6SRr*<E?BD2I
zBCMQ=MI5rrtUoj+=n20b>PlZgx|z{4f?b&J|4}wJr;Y7-=G|mW-S2w5yD`o%)6Fn4
z!R0buLg?*hqvg5QAi)49Oh~DCXy8+^-nw>Ctgm;oO>JJ%g&9XO`|{YYIKcbjO0Eg+
z$qXgl&HzrRbh{5+$M{9G%uIKaI^KTD9boV^z9?JxUjZw&;qzBM#^3I}=Dy87XU|CG
z<pz5c6$U#Lvmn4bHS^3_<}hPXh?99yy4Hz8;^wOFL4f2#^qWaVkQ3X8+{Yiy#ce>a
zfMSwN75%A)=&JN;j8TR~<bg4u+KL3?@H?t6R)`qQj<Byk%u(BZ8l%#5agrGzrC`CW
zUq^JeHYwtJw`<N}*1UKF=2}8j=Azcmci*HLJ#UV^+HhmPev4IWy7k<0s2q)1(Z2XF
z-h5r_IC`cgQYq}0%G=c0-$BPlXF4+GsZX*O5mA*)(zF-Z?}exfnH{V;xCnqgzJU|t
z6XCzeeLz*HReyNUR3yF}hP?(||7lQ+V*<b?^8tf+Hgg&ORE@>1p~<30*QJQaTtCAE
z5lFw{&l}s_;U~9c8}@a4)2y43LL963UptZ-^|jva@0oCzx<G)2WW5)@{@r<Uo~X!p
zK;PhO0ks&*+@No5tPc$s%TQb9Yv4g3Exj_FZu%~F8qOpZH8rK=-nZnyAMSOozqhJ<
zgR}%M`q?|VFKc@APNe$J@Jra2uL<+*D;g7=bB%G<hE}}xa8~Xxa28?_H9OHTN$G@f
zIlZ&D=egP&4C+pEuH=JnSk;ORm#LnHH{5ixY~X*@(s_PaBaj=(54n&JEc|8^K1_+g
z_eM-@DkwI@(@YUMvsI_{0gudKkqq-K%A0I#j9vv@Y0ZNH^f!2?Kl~PK<oWx@hY?0T
zNB*B+9);euM?)bs0$Y6iL}zJD@BLCDcCkLoNeg*XDd(vMp?PBMl0JmVX2F+27yw@&
zuw`!Au6^c+L6I5cdFh4mURqjuAc4cwLelMh1h>G{V9}^sR#Q!!{g1EeV;7#h3dBz(
z$R2Y}=jrJAQm_b=tR`l0z+WVslQt)5sM?vE@>`mS`0Clhx&|0RgrLmA@`>60UvuIH
zVQuiW-Eybhfmk{7+^5sdt70sq=5idF20WzKK8Ir|x;F~Y?8^@%icb&^kL_GINIOTF
zTR$vtMoW@CexD!Cg){}CZa>Oa13X3UPN)LTrdD3<54F6$s{Wpk@N?cGt;8FCvCtyA
zNMlF&7+s+1?r`8F<SwK^KdmPpevZ$4d=T<o(DgPvF$5kS5Uem)=4@bc7xnt%8>`vQ
zA8!eH_CIa%K&{h4CJWwji3vJ6V@=5(?p>uaBnyB3PWOvaOwqBlG6@N)q76L0hVp#G
zbqDWVOKx~#6)}L%h_Hf-p6WEkD>yW?2kZ%`L0AauUb{E?v+g^X4+wV%hwchu3pkUB
zaqQ;fc}<Ih727kgMVLG<@O)prI_z_QCQx_(6e8ta?;4JQ4ZYD<3~DozILB;GoM}Sy
zD1njk@Z=O;P3sYVPw|6Jx_;qeNN7aPmKa<#dTS-bsr#JW>=4B4?%L`vK##&DA7MYD
zjOk|A+WvafTsTYgTzIadeh^KrdBTOIry*6qa0b~rXDRn(3`d0%SEdAVTQCh(4k*#H
zhW-Q_z(oCC9j>}BRJ&n?knpcvbRQ?^GV6wt@_T(OvfixUXKGFyY4S2w)Z3hQKe^dy
zaGPxu(hHO8QAn*Xyye(kxN&|~B6)%}vg5GVI{u0xTT3ALb1FiA{YL8Mp88!CUD~<Q
zvwh*k>(Z)S(U7M(ELcRs{WE+fBPSA<_n?lF@!2^1L_C6JV&}6m5(cnD`n`=ZTW{3;
z1OdIh&AdCJtW!0JoTC0<uW^oG1r2Udflbsb2Ggu{Sx*yg1RRpHLt_~#zq0kpGVg!%
zy*iZFBUUgetq!gzl4ev^)Q(DscR!O|u8#?3ju&7Cg!Dp90DqFy@co^+DPkOw+6Qu8
zZ8^orEgja~z~@<HOlGq*Y2HN}_!-t>)wLQ53O~pC8c@nKE|8;g!iZrmjIm;Qb2S{l
zyZo<qJ2|}3Jcxwmy?Vj{PlsZ=C&=M{Lf<@TkCh!y6^MvWeC|_i^DQi3{0zmMbF!*9
z{c;~t2q(dv;D(*FBRmO(A^hMo%sSxl&v%mudsc!o@wnqH&F9T}o^>O`ZsW4~*65z8
zW1huSF0YOZ8Q|KRt>L4zM7`D6evu%eBj~!?QVK=r*{nYx|IpAlzZ>AA_pI-^p-q>q
z-IIfR8O1Yd#?HOzF^-w{gP4+eURI~=Ow2QS_}qqZXyAZ++esNTj1lCtGOz-;TNWYq
z*@YP!@DKQQz2|vI*Sr1wZ~YU)M#LiS0W6R6MAfwP&?4`<9kv_gspRG7TW)rb@8=Vf
zpCtWYzts7Ddi*q*fR2SPau*HQ{^_0Kk|%pLY=!QR<L8=E<8pEcH8gT)2!U+moNm%B
zgJ+{CA-8RHB~;l&0C}~4dbQ|#x7~&|^AX_fjnUlY6L=Ac`x7qC9<Fb8v){~C-BjKV
z?1r74RUJ;^z(kqj22+lIwLi!lND*#XFKyPmtndPiKwg(^C3aTU)_54E7SezOrCK3@
zw+_1d1b!mns~PX8Jr(#p_OtI1bbWnpU=3Z`zSe{EgkV2%%!?Nf&IfFv6rn~DCMM^_
z+e~;v)1BpRA3;osfl#+uS@rIPl<&m^u{R)@RN2$jzuLy$V9|||HJx7_e=S?PJh8h9
zutYcIZlgaAjb|DYqGDsBqIS2p$4`kvK1*hrE)3=s6qpZLvTIrM%-^6H!>zU#5_vL9
zOQ9dDRG-tO>*Ff7Qz;0!_lZPK8$Xq%eJUk`UD)0%>QwFPTy{jCHW$jj8T8o?7#w^5
z*)e8AE~}g=QC;!5fX$`3NK0EhHDEU}AH18I?)GaR+5|>n)Qb62^iu2I8E{foY_NpY
ze}loQV^p&Hd_;2N_KTUer74#`*UGhnSN>v8lhvnp(S3z!R>xbt|E$G`?O9*)?I`>a
zoUB99`ZkHvE-*g63^A?~;-1rgOGeoRolm&ha9f`Q^1=B8{B-WlS+=>G1&l{ht($wh
z`uOe~zVx0Z$~Zss14#O%oBG=y!+FNk18bQ2C45s90gcCD^r5}^q<Wc!KK48ih#sRc
zaXTO7`T;X?_X8#f%$)uB>jC4kUxEc6LUC2D^$?UNKSL`hoXc3p7mgP{awr?0Fp@y^
z22mDiTl_OQ=>Z}x+P>DY7Ewj><xfq3sU5zXEs01++N<MFYDyQD$WntXnV7RVw~}Ec
zS{hp#<qk3x<?fQVyi|k~27!3Rn{JPH#+HR7)I(*efaD%0#HMcv-Iht+zuMWqx`O&1
z#FEqX&Yl9rE{8^6Sr1U?1xo~#YJENs9ejBcAa2A4`$RP&QcX(8!#Fb2TB8?LS3(-4
z>9vK>>mR&9>#$$w1Xz3mE>;_ZzN{+3r_mfak%TSd>%3FnPa*7MMK2#4+{BJ+ivi8I
z6u#VHTPu5C40N$zJbNbcqyqj0{cfdfi6XW&N{kcBtXlH?!5ysJLs>rod_7<9o=5$Z
zb^-`}TzK>40X}&|-OS2I$tmr4b=65Wf}f?LATr2Ss+gukSzKf<+uwJ5=&-rAl2O$0
zLWoyaL#luV+E}<5-_It_cvjq?TWgv5ZdCGDzS^~(fJ6!O{w^ehfxbxn&S}@}quJH%
z)5)VS5JyXJCvD8QtaYk54GZ_4?qJ)nC+2+uoydzFH43_-a#K`mHqPEoSwAbusX7RP
zIUIV;h_E?+;HLPxZwih9udJHu;d<+xpxG<ql5RW*13>g@Cb>K3rAj!f(OL8r>tmxw
zeJ8vlI=DEG$FEF;XocL)hCfSmm~z!e>dOo=kJwlyF3CMGY#0BefQ1ahD^aSMTr0cE
zO%RXG{bnO1eUp>1^xdJllF^xC=`kK~=2&{p88mVs0ui^14TD=HH9cb+6LeVHM{#FY
zS8C`D(ap->cBou$A!FY?u|FCHB`W(i#>TZ4zieP+PeL$)GSbV2XJ(A1M}puQ&ZM|X
z7GrsDe?LJF)Y_NVF5QeNb~0y+XJn9L){r85tfi$TOfvm|lZ%a;i|y>pso9gm^5Wn<
zaJQZq{=&klg0b3c`u`BfdrKWj71Ny)QGFlc`W-=1ZZfU0=u=As0|Az130nM6p}8a;
zdxY8zY{*hSIpvv)@J*A){C=Xf)i$b6dP!uk+11Z2Oc_ce<F})e28@+IS+|Az2Zirm
z=0m7Iw_Y8u<hy#i*#QSz$9-pfbj|PNSHm;!5P)4^){g)(4cJE*=JJG6naW7-I-!(+
zR3@ldQ5+oxd>T5AXPAMlm~qROKEG0Sx3%P{0Ub$3N%NIj%)m9@D1Kiu7A!a-W%cl4
z_6`v)n-zGD)z{TG-MDXI;&C8y6&ZAng)r(cf^DwtH#!fd=O<`e%Q?fkSZMW6dw=7R
zvLvy(Y32ka33&IA5>}`3`VP-QV;8Mi7psXm>UR_TSL;nEoo(J|zL#5Qu*XE3+wjqS
z0H5W^4qq(WSSpWPAM|#|fCZvn)+5er8`*?hd@jD^TE=w3THvI@#}7X#$jdr9`h_F1
zo`wX<P+aZuIT<eeoS304D6C|)Bo2B-jsxPPYih1%6J`moYxs#yzkGv!n+Zp<T(1UC
z%)ZJ}$to!*>No7g3q85IhoAisfOdhQJY%Mzt|dTT=c*JPU*_kjmdyXf#H2;do|Ajb
z_6a(Y|F1OL1?P;WvUoA-V{KHiD9y0`z=8YXeF?nMjnN&5qTrGR*<-hgeNB4ycoRFL
zG=j8uhE`wVDLkI*3~xj0?c0Q&X4Hs;oohjDlqk#d<2Cl65-FOv@+*WgEuQVOuYX+J
zRP13ulEu1uM1@1gTbk?e0+r0dSu;Uy(auQ;E75VMuX64KJ4O&Au8i3Ae1eA$(7x)h
zEK03nD$OjOi7k6yoUNB-TA8Y+>Aclj0Czf)i}R~LG~^*NwS`_ggEz{`OE)t==6)Sh
zH~gR7Kp{@<b40eedGE?HrOFm$W7oBOG&2&)kNNh-Z8liy-iReGOeyl^n?dHDKDq}-
zj_gB|b~ej2KTLY@dPMD|VDBoPqmcW61Wxiv1EG64nj|8B)^H+V1O}vOzcApQAIr^B
zFAVi<K!-uN?6rmE3o~=9oGog3s=~DSeFF@H6CyBJ?pLX&{Vp+;vRSgy10-{uCA(>?
zm8~OIFJe_RwRg8{ZhGk7j;mx?^&lBtP3x>)26w3k`1je}be1&93^}T(&!bj*{>!(*
z(w<IHCg4W=7#$Tx7Td!q#Q5_k-`^VO?~r`9KMN`hBYt^*|54Fvdu@A_)6-MoJD+YT
zQb<onN5E&(KT8h(IUxZkRbj%?xuGk_EMj^r+<U%3ge7%@8SpBu#}r0}6T+-lhd*In
zgXpGbCl_yQixeqp#C6w8SCVd5>3=rqY^HeS*}vZ?hBh;;-N<9Vo*NZV-;+Cf48d^|
z+h*<t4S>{x_gSMv@6+Py2nx*#xOJ4~b$`$JQ<~3yMhODdcim=ekang1&BmTkaK@E{
zR}J5}16`;&tJOsd@RL#f5eP~5yIZ%aiA>3djC4hs4JQRG8pXptaXPBH-(2tBSHv{(
z*CD}fn^J5?hp*%P_M0*Tm`?vdCw?S*187*OFn>@l;D>E~o~A<QZ1!e?sD6LRu}qWQ
z7(P{ukyq3a&tZKuXwChckT8OnYig!P>{vzn_l+=i30J(ln`@O~y?b*I3oTvI5N^n?
zwEFt0v(TQdKAAUz{NBO}H#Fh0OpNrtMaV?3cjmTMW*MaJ9F?aJ-XzXL?JL&$w#$dE
zuDrJAG(t%rV{gVv@YA5lr(|BQFeH7CbT$HRQHJ8HhulE2P4;_yo%0Yi`!@pqwRVQ+
zwCo4g(<Y+NjX0|-BQ#@ZFux1m!KZ^CL}9>MST4^m6^)F@>gi^&wfa-7x0AWD<>Ivr
z2vT>&emDh*H9|mqNE#v+dhTrs@NK)YN9~As)`r2^13zI))#k-&k}^&X6%lKhAMAPZ
z3RzzSY*jU$j;O+{o01gC9)lERz7p*;<41XB4SF?k@>fDZQaQV;GP|KeZywC*dPUU7
z^rP(yPv9|^ls4o^3}yEpAo)v!c_N-J-D)y4ru;dl4l)1pHFP5A<h;fv)lunMWGo>S
zo)H|VLLi@OucY5d{{Sm{{n>TrN9E`6ZOZKR7X+KRccz@VxGJ+-HWkOcKJ&J=jNvf<
z{vQl#3Wp)_ek5lwQA${hg7JvuI<;3kUlEGaw7jIgVNh@kUb19AL*b7v(l}o#<DV7w
zNT>E1vSG*-6hi%v=uB{6ApjJBKIDisZ&z-{ZlRKQeH*|Ia*Q564}KiM5swYxw%yC&
ziP|S5&{Gdj>Fma}pw4c$6%uTF^fif`E#GPjZrXf1<+%;H{cD&k!DBjJ@xPj&f_Kqb
zi+4ZI_U~?9xU*6389hu^@IFbuC=G59r&n{A143+24E1M~J0MnFJnh`m&NjJX#A3j!
zy*O0k+u1Z>IU-RMjM-uIA~s)(RDm)ow=<R&7vp~TeZ^`OnCU^<?V*OzN=dtZWSH8y
zkc_-+NVDIS%T7~G7#rc8Zr1d4>zqp)BDI3Uj`7N4ICQYtdcD$Rw6cEm7%pj&y0C^9
z%XAG*5Ski4ZA%ZxJaMU&GFEVnp$<@ZiXOy2qiw>j)$&Zmk`wl&*8~llw7UGbvix|y
z@~TCyan8$2mqx1o<nt8~x13^Rz4dn8@|;crDbF)0Ylh?H=yE9@{f?|%vu2GuBU@8t
z?K6uvJ<%gh0y+$^(kk|n!u(+y#lfx##@;%}XzRllvS!N)k+Fw;TNc0Owj`)bfx?C^
z;@4c&ET}h^lOr|N(A73Hx6Tp{%2-yAwYD{7b3gl9mBa1*yM6MY*}iY-fY4prTU=mT
zi!#d;Q^E-F5P67ZeW`~hDN;xEy?JPtGpB(~j97!v@~sGQ-d13SGJx#b_34QFZ!9Rp
z!u?ZBvV^W!KEJ=)nq+82qp603mEDu)o7*r^WlJ?jt?`&eQSoI!VDLThxr;Wv97h{`
z=J$0521qe<0Eg5~K7I6QH75ssK_OE~K8inn)4{eumGw705A!+yo$C=o8G?Cv!>KY#
z`$3($DB;P)USQYjx~c&qHFq)$itWV%;o(_5#5(?akPCe;`Z%;*CXWyP+J;en`RVBR
zaQGrOscIzKpVIFjG+=J0kzCHn!B|w7SD1(953l>JMtDZ|Ro2`)Os8ARCmkJz5y}9r
zaYs%Hl=;s|Vt=s(d4<JLe!*gl+ozOQb9gfE9=rClXv0&#DAB_xA?lt8k|*J*Eu|F{
zHyZ<8!!uvIf6VvOT2$XCc<GBdxrsSdspMHb`2^@Pn-(%3u!FiG5J7!Sfeq9I)Ld=f
z8p@mov|_w9o(~>2XAbVDN!7^S>-hse(1c~=7Ebi^0czK@jJotI)5!Y41bOnaBS-0a
zgCTMc8xtiN38rvJwz7(qeP~o2`?seA64tSW=V7-SLqm_;0M4dvhVnM54!vKVtfoX2
z!9A1ga^Xj%f0KIY8#MSKrZ{xrV)y(nE>JBKu_wdgiZ4C9b(<Y^XmNoR>Jr=9*tbI=
zW!!vilNX;Cl9|~kN`?v$dG&ROj~9g1uRmNzb|yKw+e5_1M0j|PM`NDu8aW*1%${B~
zTU*tB*MtNF?J2yot<M~$3hiXK|Liq5Px|R&f{@-qsbgYtV}Hx0aK9i)l(f=0b&b#3
zuupD*-({w|^g9b_7J$~L4+0=@7_ZP^0U>g_!*&$}YN=+jSe@5b`=R|LUO$sgtPHCZ
zl42<+G8to^xNqf<S-0-26G4jf?y~$m&gZ9SV_VNY<jL1dA4W)+7(_l?i>U$BA)XB+
zV!;A3C?LIRKGv4tZWBhWTU!a!@jPRJEAc>|GN*ox#oO}LfLZ|16LBs38sb%LFk!3D
z>W<j`@f8pi72W=EhCS!cUCfAVN)j|Qk%qo3zHg&Z_c?rf)IXuXY=YrA`OVe$e#D){
zWsk_D-=f;}+Ogt7Ns+aKi-!$C!b_AZ=Iev7<7dHVSPw3|ubM)8@^5`x$7VI|s=8-K
z$0sJ>=Z|J(Ntq)!Sox1)2B9QYv+p^<#}mY8>Niz~d;J_Ge<0G}ej*ZLFT@BF%mMmY
zxk(7Wx<LrZ-+z;*>c{GB!-F;u&+alhuo73ixK@eob$$f=JyW(#r=Vrg9lThTj%T6N
z5BEpikiNdW`QT0@cs!n9ONpZ#S-@ovFD+Ifnd7klIhT)K{II1ptHplbv$%rlyeoB&
zx~a1Vhg&~YVXV;1LD7}ssHJL|IE1sgqN_D3JTbHtGHN*%#36ZmIw*r5P^?Pdi4`(b
z$oo1|1;2sAX#AruwWL?oH)^56)M~h%uk>OISa7xl%aSS|#pzFvT`-PZZR^cF(l!u9
zQb!oQ5=J3$1-7%VaiTfYWMdO!!jog^U>7w4*JZn#<@>ki-K{c%L&f|ZP}=B1GN%a$
zI?3N}jPFbpEGG?-b^(L(Z2f9}M$ZO6Kr+jtzM8w0Eui&w!5gltORkZ)vSoFydPgi|
z8N5kwkf6pt*D1U+HXKg(HlBpUMA(4q)w#%7Kj(YcFX4flV#;aF=dH%Q62o04(Pq&e
zryh^{3uI$4NFwx~$WV4e=SSdNb8+SUC5&zE{n9@%Q_V=5Ib1f10ncqBJH!%utVDH^
z>p_Q++*=g-aIy3+VZGMGw(|AN`tDjN{_#-&pMG2PRhJ`E%HB&Ni|d=&eN<%4cmgva
z+C$fBn#cMQra04Ps0mHw%%_Kkbiv(K#xQj3dV9*prw#snlmw@ciYnFPN7su35LIjM
z_OGxZon-~}kl=u6h5^+))gF`bxoCdafxB-Vi>HT}WoNiwW5$aYgm@VDV4y_DR1Tlf
z!+zpJM`{wEvrL|9zADJ+jR|mCoJWYb@AF-Z_l(oW%I2v8tAjo^I?=UYG`zO<9?Hkh
z8j9TtWRE|IFaLp1bZ&ea^#>bf)IQ<IAo^l!_s;v#u!(tChp@3R7s{L$<KLq7^~)oF
z$jFf=dHU2lyS&`1qr8K|TpmvU28bnE9EP_4sONmqKQiKTs%VfGhx|9+roo^gM`?uV
zT+yF6k-O1AOG|r;nB^kSI%n#8BXW6hGxSBj=$`c-79R+bXe|;C5+fjWZ=LH~y}=ea
zK66SHa%P7$a99tQrlSD&_&#j$?qc>AMHx7hC)B?sau=Gh#bX2+EqIffZ>(;?w@$X7
zx@|h_oEFd^EwyG9^r{#BcxwrO9M?5Z<V3tm3L3noaKq$e+sK0fbt-w(=BCBnihC;9
z>X1btQKgfJU8ts(H>4vvt@Kra-?f#fs!0wVC&<S!>ZZiT6nyEXQ6#zAI_lVUyI9^%
ztxpKZ434YG?Amn9+tPx2Q%IrB%B)EF)L3xCK6ONUhN&mjd#C{jS&e}G{7=bw%$2@N
zhE$(hV;RdJ{NP5PE$_cc!G+{76ZY<odPs5Z^7TSW5w>*PirwGMOj(8?uAuSV-iaw`
zzlQyt@5<RJVHG#mp>8tqH>P+IA8B0J#eM9A(}6&VV{^dBi2a<~^it|rL|brUSPQD4
zreazdD@)#$ZCVN#)X~1EuP#FKcZF=Uz{y~2ToIc!oj}_BX^*s6IH(p=gwGp#sX!ll
z8iGDNv0nPU@6mP>n*VsS?F?Y}5jIH6DLCGk+0R4-si}|u6bPF90w@ncDH*97X#{|o
z0jx5T7}r}X6%IvKJ55SZ6&XwPsqyGE+C8nUFHJTp-#B#x%YKrc#2~HTP-OOv!>o#s
z*9L$;G2Tz##;xafe6KXu2F+|5$}A{|MFmP`x^RvBh^GOb<1W1{<+mYARWa-rudrv;
z+)3qqUIusAB*tb7?S$0=fMsUNTgg1tkoLi&#o=SOPjz+nKPxs@2X^DeuXB+&Sy)1;
z>z+8vb6T>Gwyiucklu*<Cb(O)R8d_#VCTJbC?om$Mz@gZGiUP;6A1sS>KJ-ZwEjYb
zHqrWYO}#N%Fzd{Ty^s(5V?{tvz4103F0KaE4-=qr?k7^h*_`Vn?lQDHHWv#27&ZJJ
z75UHdDJORr$>#2J=RIx%+9S8hQ-`V<-xFDnwEEciS3WB0%9fSXPU-!ISdkd0KoGk8
z^ISArfEcIqhjOhGGKe&X#*7I^&X{Fkos|G5&t|OUUAnZ>YTujFNB)SH{QP~LU7}Jk
z?-b#sy|dV!dOR_oM?PrKC6?o<RpYHW_H~~liFU9&?Fi(MY=6RAv=%paA+7uzlkx@a
z5AjU>liWr<{11h9<%E1NP-^s+7R>%nfPoa?mRV4FhcF*HK!QZ989yqu+}Oxyy*AE7
zh<9vN>C?`Z2Gl5VKpZ5(mpoAHNlf=<4M)H$Xgwyj8-SED^e_PNAmAWuaJJ302YfsY
z>h3>%-hWZZ6yELO9VA-vr*YZ)f*wRZkA-=osx}GVf-BJ~)|^zjo+7;JcJno|RJb@f
zx3(M&F4`bS&-Znwj7lJ2EvDT2o~#1wy1#gH55fhcy&r2yVR8w4hGbzKHMpsBLt{sK
zt1mBpf4beCxz9UfO|X>a?HPqc#-q{X9PBXTl3l@}MgG1(gDNU2;aA>W87x>VUC@!P
zEQkf;(0PxuB`Q`YAvzYwBbwN>6j?9LD|DAtL)?eQrGs5e>QV&S7p>oqtJ{!ui@?-K
z51eZa{k*gM@&?&LwVc1j&@cl!Flopviq9;fgQ=?WEGTpn2+@A;NOQ+q@-Ui!9i-(h
zPs|f>#|T@!b5OV2n(u3PGW-gzxP^IWN&Rt-j5H@~a#Zu7Hp~9RWnw)xs))0HK&~wf
z^f~-~ttRo(m#n+u+`3nhew?@(E;Y}%HqE0w4NPBuyV#*!4|E|LUTB4(VF7uP^tgis
z*}YXqoqPE-!i!cec%_@q=QqtZNHUaYi7_WE0hQKO25ChqY2xXNq9xIs(HVt?jN!H#
z(H!S;9CXyiIHg^HIvL&hE-#s*kt$6IHBk*ef*qVYMN6BqZP-a?u@lP0Y^~g1ntkDg
zqN(%UqA^`=p@B}j*`unQd@#AQyqp}#Up2eVK_3T4EKB7sCfQV)(kQKZrDI!9;lUrc
z1wiYAI4=#QIR^o!>n9`<Qa=mJ{M4woHnxU8rZ+8&XY4LyBwPb@(;Zw((?)Y4*gN|-
ziv9Go%tf|5a+_~WAHlFDvV*9`;hqU$J^948{k(+}k<#V@$0s`(`uY*DFB-b>8gu-`
z&Lf{3*te+q;>CE#wmfO`W3*RZ-jkx;3nSr5UiSf^V3SR3n0PVA7mJ>{dhyJ6EidUo
z#TE(CX05k_i>j)sk&)3{l_DC1P}Kd0B6u8IdD!AlLDNn4+O|Ef4fmhZ{a=TIlq%E5
z4+jt>CN~d-c=<ga=gQz3B>W<Z%he(~+j@tM6*!a_C{9WH_4%}q7+&K+&(Er=_Rt#^
z{l873HzMDuyR0nsBc>noPJDjVnaWm&R1=CJw)yDlI_*m!4&TJ<b4V@lzrZNd&u?U=
z&)00!uS)8Bd+~^{-gmUt2zmv!u%do^If2rEfJs$qI%F0vTe(`k|8m}*Y#XorL=rz8
zkuB+hum5~3LN{HNRt+OdHeJ<Cq%c$zh66-?aHPeN3240ceYCvEV<f+I;Z8-O@Lw6F
zO1?a8SbJyM1Reg1%DQ*|(GR_lm?RMvyXxc)a{1)n?HyK+5pgI)vawc*juYu4XhI@C
zM7tPh`{wk&^9{5b=EpKTxr<b`)<KREpE%Buip5yP$kH7~P`0Hhmoj+eM6O-<2ginh
zaY&yGOc8e6(Y!x_A~v{XI{(#vKoQE{l++29C53DT6x*x=V4~C-M-n6Ew|3wq4kZ8v
zJA~`+t$zVydQTQ=J}>n@a8Uhpk;8zQN)t31D}hHY%za#)q*{zCW6-j5|9>hhSW=}K
zL2k#lOm2)WHov@QX7bNYf+zB+b_n`QkF$tW%33ib7MsV_AH=Bt;Lac1hx!~9Jk%zm
zL|b8<Z|ha{Mz+q#gksK#eS{rOPKPGWN7y_Te{J}pkv?OZ&yhv_rNhB4!RTw~%oCdB
zl=Kn_AkXB+r~2-kPA5j=>>FEhp1~f6P!;g(1!IN12&F3V>fiqt@boeG7gobEx)2I=
zGJR}QDWspLDx0J15DM9Opse%Kup6ks{2x4D^3bl{E|{?`Gqm(w-6S-%IqeMidRpt=
z=<;x`^7Pi@%TZ?lE_jklw-kAt%aD-kV6b4*(VLe&ny&al3KKPgl6?cle3RW%$;8l4
zm3)0E49Ko0!=mC0a3P8(ES=U_HHAGReGUs_hPX#^23dPYQ218{9u@t=2LnlfcG+L)
zbl;$OI#h!w-TYlzFHWezRPZNJM)uWmgG2FCFm+P$_V33??%7RnBjZVHi;^|}d`XE)
z_T~MLd#LnFl$nY*NQ;L3U)^nm)Xk_Hthdu|IdZa;k4J{f1)c9-$yKK*j+VHmO6NER
z2GFdOlYZ@5g`B*tD*$fT!dZU`gAoAO1+bD%ohk_N@s6g7Y$@!48+68P_EhR*7d|zG
z$pduVA%qLoEk|3$K=SZ-1L0w{%3#MlehB5m`%L`gtb$X7u)X;~5trq1Q8FVog3MrX
zuX+KOSn4JUiolf7?=sG4;u3y!Hh&lfz$uiKWe(NW@v7wE!ZfcszgbV(&(}LYSwJW}
z)j3OHEXhB1s7e;hCk;?Q@h_+zVK!)Hi0uxznfoXe3~QP2&AAG`)QTrWYB_E9Mvn3j
z6>mv@>Ife8Fy!3j=hSGYqzElz7@v1zUDfd5sH3I}dSW-sKkTsE@j)JaY`)?r#XD9J
z7}V9xGVgryL7W`(k;A0mE{dqK*7!$aHrT;<!tQbQBM$B{As6yJ1+NIKV4+<5wA379
zjSkI5$HjxqApj-9lmI8x2Z|4ke+Aw41pMfzR^CV8*U$T+!;)$oj*m`pk)ytRN#Zi^
zQNny15Rp>|==k;CE~=_(yNZ-d&3BtY@XcI+by&qy1ODN_ch)cBly2I_@Sa*9imaa*
zzX#hK;ooVI-#eViW<+q$wsp7xN07Yiq<{-ZX7pu8hTE+_xaD&LXr-~9Ig7a=Y3HW_
zGl>5Sw?Yvj_SqJd4(~NQx`_V0ZdP1%=1e_4G$)_=xJDb2Ptv)0^ePQGBy=2BvO$@-
z`!(!BB?||3T`Nf)S%O^OwcuS7Pn>+hnEs9FN+HK=J^cBU_uNp|hv*(IVtxl<>=0FT
zU437~(XLxEtD-@Zp02*$+sRKw8>aVp`BT|5v#Z$F`zjB}_Dh6Q@Sf~AU++}HXYNO7
zmR~K!KZYWqL1CZH*?B`?N8;q|<V8z>-O2#Obyock0YNcb1kyPjuf&up)mG4xFD+xe
zbnK`Hb%`^(E->l-J^_GSpYMJh*GC)|^){D8MR|6JGPcr>6Fty~L=n_5{4Yodu#;>T
ze97tO?s_A$L5?Km84heoL0bVbvN{Xik4P3UoeKZ)d8|(mHs!q9y7|g5l_@3qTdaoa
zS#EV+Ues;w`^NA`u79x|xh2jQtK&0>?7?S>$*dXs3*W<nsABc-GV7`ib#+IsDkK$&
ziCxLgWc6Niz=#ALv#OdbJ6gNnN=gw65ijl)Qv4sF2-LNE^7W7Mxny_9F%KxH5;hR5
zEYJP}B6wFd0zOS1R<3%+bNyq*R)uA?YeU^Npg`x_K;jo2CAV!md>F{sULZe-QAiaq
zeI6pN%WB+Sn)@zG<#glB*z7lAktKC^W9z4()Mo(1p~VHNUGDp91J6a2q!Pm);iXp<
z%GXc=@r|l<eOer$wolx(VlQz+tX{yoDYIf9JllSnu0gz%_EhE}4grjNJu9AV>T{<t
zfnY6XQ66_mR+Ivz&~B2B7Ir8oi@NW@cj?U+PW(byZ&Fij_P_{}C5~Z0x3=iAB0X<S
zazx06hefC*eY4>T)E~oOm~Sa;v1VKQ9>cmI$_!0%;xQ3Q_A!mff?XSXDh*l>y@wA$
zJsLQA?u!)PI-lAns^8WO3{#M^`doB#0F9aIQ)n>ZuFNbIpm`9zb^Wj}21<gL$>&AM
zuQP%b`23C<%z{A@6=X^cw_hOkynFYvfBH4y;(q%~bXOeYTe9FQMJnuu0b4Gnf*!sQ
zegyj%nT+>@3m;as%YSfazF2U+&v~d2cD^3fV}kq_YyXB|USw>M7zUy#QjahySh-k-
zM&o%i?8ThSc!ICI`6TXp6B0N8?%;;`oyPf{O1{FwHga30H?SqQo}04Q<R`9`MSbCj
z;7h8UjeO@-OmS_S2>>j8K`00%NPU)lNk|AMAl!UGxT(^$8o1gA>_3M}J}hoCko}Aq
zajK(}bO~%G(dZo=ADC&){m~%li_byx5JWA@Dme*W;LX`VOjt1;Kb$omzR{mgEia1A
zYmSQvNl$6c$*jUJaA(1O?VBu08n;{yx3gkwneCVuX$N49#ooN!6G)jhSeo)Vfx`n)
z5an94a;CS2ci?P&LQ1#6rw|+(?eb65QMwQNA5=)myA~|5yN>6<NO3P8ANE@3AIZt3
zz;hb1WyzKa;jC<+K%gPvCB5yX<0Ic%$y%mx%$<gWRUE8%uc~~dLe+<CWpqnC<8mGK
zq2;hN70U0B`MzgS6=POe&T-&VbX4vbWqqvz6{Pntz!H_H!9<1g0A90x=*$Cr5p)S7
zYs?kEK}xvgjO5RPyDRJ?Ow+6?gjQ3QZs(C^u37_eC^{UN=qmU<2$ywqFDKyPjJ|f@
zHxj|_1gTrJ(?_b<etf={_yG!lK70r_v-HQ&5Y$}&YDRQz6~2`8F8RIMB`=&kO9i+h
z=bVRGDs+IZBZp<ahozWxY~}t{{pq7qB>&^dy|3RUFFg541ia@LN6U;A$Ev?Hgcaj^
z)$#j^`JNNkFIkvJB^u1+RHvpCW5G@yoT}}E1>5>=$i=lX<==TdK3*vmnF=5g(A2j#
z1=Ti-Jl?mRe3p){-Zw4YG~9N^rh<&;*dz}LzZVdSFFHL92eiXyF7DHnrn?}LI(-~x
zxxXg<5p7XHHlF?XrUTQg=)&XAUZa#*pI-EHC|V&WJf3r~qx*L17t^FY<$zvIYg_*`
zfG6$MzZJf+8ea~o0Cn6*X;n~hQ%%i7Se<Oc=<?R4MYExX;cCmmEOwG!xl?9X<67V!
z-)TlkEz{jkn-ftKU{e9<`}smkBdZ@dw^<GO1Fd69Hv-|ZTWc%GFhEBIE^Q)em_LSm
z_$ku6^}ttmMD-pgE<XO%qu*aXNv57{UwP`EM!;=tR=8NKAt4|MVWUv}{^-SoY-sF^
z86rJ0Y_)p<((^FI7pk*|UmpZYy#^6~SCZRSuCWy>zrjAb9k>IG)lZdv9^eA)oOn1U
zCa*2cYyew`^^d_dxWjXo9qVwVxEk#~4Z%88K-e$HLX6R`)9GL!!)?HPJTy^Zy0ybJ
zu>OS(kNkEZqYtuFFaG%dczX+|s`_`|cY%Q-f|4SkBGQ7A(nv`+(jYCZARSXw1Vlij
z8$`N6kVfh5?vU<oI1j%6z4smG?0d&P_nv*nnByG-hA(Tax#pa|=l49{@8|o*NI|H#
zcJV9v)2+jiAkISaOUJWD;XjPgux~xS`=-6qM<;WT@Xy@sKTB!#7Ook*ZmXj3Odbrp
zY-9W6nT*zv#nx}-*!Bx=SB~1Rh<x>*{hV%Qemb5t0BU7W00pQXHqT!8csO!t?X$VL
zDW@HKg~?juUXs5YH30!K85^kM#K>rJoYPP@8$#kuoPgmuLl^{JArwqv%-G4+x86j-
zqXxc$ETOp{1p}a}TF>!s)Nz&xdEUdI^C&<fF({}%W7xXLDrGI@sjj04fv2q2rMIBF
zDkFTV{@e|QNO9RdkqK<<5~%q_ZKXs7<$iXrnyH}@ssL3)Q%f;hDa{Kfxi=-vq$vDN
zHsbKsN%(bpAgsj3WxO+{XNOy%5Jhfy(|J+QNz_jDCDS#Vz=6QIxwaVVsTL7D{pyYv
zXVvvG8xF@S$cbp8LX|Uyk-_Zpm^~{q&wlJlJ^bvN3mUEM&AqYWIXPwN%-s0jO-!L5
zJhs1eBPKF_c1s+VrNKd)Z9%z{<rmQ6bPTNEB?=9TTy{j0z3tU`Y$>d8wa79Px9YY$
zzOjVj*^}}8d^6^d#h&a<Er)R*1Q%KCo&tB}Xz^PQlVH`4@W0y1q-jwoK=bYynb034
z%)!n+m*p>4NSf>EMh3?=OAYf)mm=-%6u+88hN9z7-gAe1YSk0_&TLDus5cK6*o1ej
z+;mPjZmJYjX!;Q!&+GE9GP1<vkt3_}hc(#m=SsQCJoBHwE*O;NaT}iSEB1D)4?N#2
zO<ceAZK{<mN_RR*dq)vX0`;n|>!_hKRD#mtVapBrKeg!O@5Q<jyU+yUzTAv48X9<k
zfNV{rY-!pOxxX-$%zskOH2d|C8w0fKvV=0$HhF!MInH~VFJGFbrkbI@{nnLsmtTe6
z<~~2pGqY>@0jh$@@-~~2X{NW6{8oWyKW$)qlWaBi>xMu+IYzW7Sr5~?sUV#{6OYY<
zfNCQcKe#^=A`iM|^f`>3>JtdtY<?i@9FL36;#9Y2Dja3aU#soZZ&AbAgMy;fBrY9~
zY_+|2_9CqAj!!gY%aYa5RuhW#J$G>|?TI{witQ`!(*Jzfx%~Q0Yi!ZWz5x&jI`3_<
zEu}5<I5gGBWm|>uKgSoG?|o(cL-9<{M7PO++0<<5>cy&oP9Z&+s0(kyrV-<MKXSpl
zH@enF?cd}m%VJ}qKo7C7w|YUqNwhH3)5qyP_~}^8@(L0;qh;vnv$0mVn+EB-s9(OY
zv60l*x8X3Hr~A8BYrV7TUu|i5sK-Kl8sq2U4i)$^!xXMU@68q1VSyPE4XmLY_e<qY
z+#}s81KY01*oFLDMT}C3v|C#q4i()OEtlub#y~+2_3M`?aNF@6AIeq;K(}*x@kL_W
zO|I|{{sv}-xCl2H3Jk=@E8FCR2`iJK*~uwFThY6x6MqM!o*rv|f?~fB^Pf!OLp~-2
z`_C(=UsXLRC0X*kAE6ZFgfN(~A*^vy*j)c6;S@$5B<4D4=qBOx-yQk&jylj`;T9#E
zQl~d1(ZllZAJYno?a?M+_e(~%5_%-w{-uK5lg;VXe#+Cye#>OgSN$Fvf(2bIRq3=~
z&cMd!ZM9y*AL~~1Z;aT_UvnsOG8hTrWfx^Q!6O|dr!Id1mCnBWo?Qo{mz}31av5*R
zbpx*d_qi%xyKR86mP}lZj(Wqz#>TP+D(NnO6omH-jC2hJ5X4mkfcs-<v{|S-`}>b?
zNf~*&M?0mHou6_2E1q=qc2>>q3-9>0LPx!&28C*oy52~spry}(@~Y{oJo63~C)i5z
zrwDxIZuy~uUeI*wW5U%A*;_2;D{C4EbDnk9sMzsBsVv&Bp{A*hPQ?gb;KZz$XQJR|
zQ2o!!r%>F7V)1)Y;VJ+>$VSiLt;iK?TF%_cAPyTeA%?XpeX3j+W^$#|6KYxPrSYkT
zaI>Rsbul^A|7L+_w<yKUog($EB<u@sQy!g-pK|TjE@onJwf2wZBGYjM;O(x6ui!t~
zz=^B{g$M-NV7vugY2gZY`R31PYY&L=v4S(mN@w`;Y+|i%rEl7_;L3-H(-^YWe+Gpd
zUzsTtQe%@9zhs-qe%hE{ZxrHK{#+aobT7CObm8RqAqB&~>qjU3EuMvfw+rs<#qA*H
zRbp)F8%Ug$)wq@0=*{_Q=GVgGutW^xt>J?N;!};Hs0i`=0vMGijxL<r6CeG$_nZzT
zkR*2+9m}ZH5c=dG_=>}OX$!xQ8IxU3Ewzc7&S;bA)wo(-E%|}!plcFzXFuufI$PvJ
zj6PmO7ry97#&c6eUJC~W6;AF?_DHtZkK9qnPsLTM!C|L4W77<Td*(D%@+v92P1~P)
ziyL=gT{gg7IGV}t4Y=kZNE_I^z-sFD`V!A^gx*V~hSlmh-|gaiIN&KC6>l!KqhA>|
z%<q|2s#M*1Ded5@wUU~U;5Keo)7JC@D$t!hcGUXD@zq5#Xkaf+N~BP_P+3(<u^?}p
zx{VDj8DP7hRWUO+^EE2wp$bh#tFMRP#_Z_h0$X3aXChmdC@KWLSL@~uw#dM`bkE^n
zl#6FHnuy`FrM0%Rc90x(_|NbegwRZ3+$VMlO~49zezwku!XoRj>U^dn6Z43fvSIDl
zBp!XmKJCHmLS2#(>P2pt1d?doI@F3DFBhE=p86PoJvOiZ<e*X2eT-NxkvO(Uwcz%N
z<%_O1y9p}j9WN1zfJbIiFTiQ8l=c#byYSY$$=UWo6k)}e?%8hL)oIyHpe7uC*!QZz
zrFx%4Jop&){i#YxN~!Zd`W7gm{)Y;3=9+LsHY=+OFDV?Xh|aGJRaP~cb7E8L3tt(Z
zjivr;td+8NNJgEC2$%BrlA-Ly^Z;l9#*PJlVFOsoN@wy}5j!5k>pLa+rtW-<?tGci
zA9<oI;3!GUEeuZJGzAfMgl__d2RI#)PDg*&9mAJ+fPOQw_N`~Poy%FHxeLcRz+d#z
z6C}a_H(rykZscifU0h&;{q1zXE3lgN=Ld^e*f-B{sQ7sF^<{xaTbfxM=UiqIM33*R
z&nQDimYC35;Yh7W7hL>A6<X3%c-{|~!!xqt)ylg7fJDQ<Z$~vY+&VVi+$f-;QGOW%
zRWzW%9R34%5Wd8?jD(UuSNWwA6cAS3D+L{>y{SA?9eYo^3lfP6#S)hux&&kuE*}?g
zv+YPnIF_M)wKh6!rks{y#~SC~8nfIjFN;QoUFNF_xS<+)FvAvUSG$X|RZA-p@6)UB
zCpyzX&&-gEwPY{ROguE3nq|J{o_xGrpHb?bbu*nQ>cyOUpID!l`{d;BF+}TO736&|
z4e#ex^PM^E*y}Kvxvu5q9vdI6NroVh3}0zeJS0ij9?tH_iuz2(_WfJlY&7Q`w!ag>
zQ`MtrAPD&R^@Yj5$M6l4NsvDh`6#+=8C|OWOk=59Bp*z2y6~8@Uej{jt{V`UvI_Rg
z{V1cdI*}7DyBrqhjaa^v<Nko<B`jD^%H8|8AO=67b#gmKrOJl!`R1`%^viF6XaCSq
z=@I92b&C<($KT}0xX3+RA+bbT<#A8XN0D!&G_BV=*e<_?)k5sT*7j`4<<utv{b4c`
zwf!MKdDn#p8dh1-GOdR4_LSt+f)!G``t*EBJ2XaBC=Rq&{g4aBwYap=qS2tdYZID-
z_Cs&e$bNq8S(e#LJKG$(%nSl=%I^B>S9WbKz5SF{0zIJg`m`s*8f`JGs?U6)bu>4&
zVx241xDr-ICQM1}YH093)#lfO9{+6R6RfM~C>0EPUagg+*%0_ODW5GH<e(<Y&H?c+
zP=#r<2q`sKb-*CWujyG%NY3u%*o0{Yh#2-KT_KfcI65FgHR($e{;1T`rnzf_=2Vlk
z(*#PG-ZG9G(T1xA!46N#7B}kPn)wfWQX%n&Q#{k9#hslu!`Iotes}%4w3Cy6=5Bu#
zk(V%q(1nvZDN<-_3(hN-1S+E=C?NjfV|wg2QAfEEpkYftsg{;x3RKA+!_|GMeV>r)
zby0ZPVR`Lfgli1lFEpHFE+TKrA@z*iJs;_Z>ZD1tB;MdoYIT-5-rYgJ9G#@_yJ9-D
zD}NI?HP4#8;Vvgdag)te&RK>M0$-S0tu1AHYNqqmu%hU`kuZBGPzE5C>juQE%pSru
zfB9<XV~gJ;L=$%_zCPer#wI00HT>z#7sEHkCPHQP1+CCEacL-jk9kw=p0L#tPe|u6
z!U&>L;JNsx_ZC(@@Q`{=gTE-w6(sQ>TO>{`PTRNkJHODI3n&ndwI`53%u8+EyyzYc
zCB=paa#fu2hBhMl<}Y~pywhKnYV+z=2XVpFvunwtCK)hu;Im%=I6%oy_k-Co*85Io
z2KOooM}mIG7|(@|sJbTSmS|Bh6)Lr1hm<=zo*vI>V@J{wLR^vRHRI1UgzH0kU5zdQ
z%e7Qq1^*YYP|Q{zd(mA+lhPSITX7e}V$gs-w5KlOwC*_tDDcN}?eLlm@o`^kS>_3+
zE{8SvJS6ZIi{fK<f}Uf<p(wUbYI^nW<})t95xk)jXHYKt(lf7wd$T_A{`t9sPXTUx
z6RbzM6>?f#mI=bCFfB2WGTxkFuF$-UB4zdvNmBCmh^AuhYB@Cw@_mXVtA`U$dYs9|
zeHBMt%-wdRp8n6U05((eyBv!yebscia%6zkA}r2GpBL2;x+WPys7)^X0FM(3a0Cv0
zmfRPy-+$^n50E&2FXybONEl{drED8>_q~-k`_)O5ef?eEfu6faat<;6<zPf=;kN)D
zIvRW>?<I^_Xc)LIVI<xC&@r4EP7V4#vY(;KeRNz{pL<iX%;3?RUGamCK&h{Xe>m6L
zafx*C>^a)`D>>v}AQeW})tLD85KW%NV#GY0chN_;xhKM8y70kWQ;i9MC`L5fyvvy3
z4RHaSSZRd$rFXF3H^l|eA_f$Nz$|u(B;$15(Q{$u!LoZ<n0>NzBbI4#F$JW5P4o;1
z+XE$<V3((6;;?H1iLbx#Aw#}dKO3vn$jz-N562kvbI<<z<@Vq4y8kc<ELPtV05NaA
zRZeGIETMaVVb(`__pp^x|NaGM?xi`|w78rPAS)$aG(!rb`0NMU>Y5rmSHrvUy=!ul
z8HM+*%~=<m(W{t31L1>bz$#O}`N>IXEid?Z+h=cRE4!2xWpM3|_~OiczJ!9_7Jr3?
z)c&5})|t~kXQTBm{Gx-zsO5X{g>Mx6T7~PiRHf_H?I643I60l(qRcZ|IkQ{lQ&L1U
zvX$s~N1}}@SzZtQ=|rv9a+n#FvrIaolS;RiftaKwntxmU(h~=lN!W1%Xa*fc%5R^L
zTWnaj?~cl`9ba(Mt=O~ivHdYf&R7WLHJ*1ORGgMp`s}XetSJ1D=XEiaK#sk<b9K4@
zC|5ogmMXv7J&{rr^)Z#YW+sUBY?B4mdp--PAJGL13(Y^F+u{&MjberA+A8-BR7|Zr
zzxnGKX9<JU!%2KeZkt%@p-}KUXge2QGHlxod4F_SE$lW*KwJJ`OrL0pL<5lTKrIQ=
zkSjS_cdU>*hC#+j^@)=s_gTro#GFqux`5?VwU)spU>>Z>Anb~wd&%7?1v{-|&D|!^
zZ+M=kDxKJDSB*O3><ivR6>+J$vf69f_`Ddd=oT?l77P&9@FBQ8@i;}6$rkOaLVl#f
zaZ|*{(mm^kQrG9C$?A+Aqb8bsgKSg+7fBpZFZ5D=8jL+5d&pjK4=$2-KXtv%13^AG
ztu7u2E%mu<Aw0A$r#p+%$lB>ie{dp>C6Up1)MMLa&*lp83g@-!S*#D)^D6@S2U;-R
z!i%hpGJ$&mGm-hkts*tR4R$<CHy$r+7b|`Y5UaVwB8ugM`TUN<W4?p(h5JT+cit?U
zyVz>o=iyTjq5|>7CwNph4Sj6q51U<^`C&Lti^@TAA5{cLrH(yhV`(3dQ-RN3d=eI(
zd%D+beB{VwF>v!fu4K^v>Lpd8gSUa0b8~&yS(lBiNLQkfh55u!c9Jgsfv%oczdzrE
z{v}9o(vr|na2_J}YD7JbGLIdof+Yq^)>u(*)MNa(cy~<&5mO<><|adyWIw-e3bb3v
z{;0REk3-EFq}?<hQ~zpi92#*DtGp|X_JN|Y(dVk&^CTVDZS40l+%AiBs34Wz=;E*Y
zlTo=kuB>FJSsAjl*57~Op8sGftVn@GF<C!e<gm9uz-|tGbk^bilj7deew3mHLZ<)o
z?U)b(nUFXrBBpxJy*v6Vq~G+HXO{_z*Q=RO6VtNDK#2`M>bU5z9W+Vm2h&{7{Jnmy
zPg1vQDo{Tllq7UnFU~Ye@ym_$%hh<XzYejl(xQ5~23vgyd)86BPVCqlE@_|Yn8y~!
zZ4b>f_FWvF)EVqLH)li(9bS(Kiw?{l8$hav7!K#J0h$3|i%T5l-QVpd6^<c&&|FJs
z+|}w}G-&tUSF4IMi=GdhF7E5LDUQa@&1F@2Mlo+i6975@am&yK17)-vZKkV|xA40F
zv{2MJ7cYzbS@~<Zae)iG797-O+>+g0n-MaKAx#G0&jasH=S?)}Ru^|UWZA%2O{;&P
ziU?i6wC+8MX|5^4DOZ?FPavhl*fRi)<7ZsPw-OnK5Nsbzc`MQ`eu&~~HrRCR{s@<c
z0?nTn$j{>`OfKK1-r0^6e0W{Lt<JJ#FfNT*V)LzHtDDaPzyR{ih4sXfXBJdvW&9sz
zW`JC?M~|iYJ<rob<l7hV^Q}4F?TO!dT}K`V1y_V478O|7x^Q3~**m#?eTSAV6aAdb
z1)?wb`_~kOz&AKch~{T_4zBqdXFPwMRe$ws<j=tV%!Ao!oH>jA@wQlGFa;Yg<J6)%
z?GE2?>6R?&7IV&8(PN>=2**I<GJd0;F9}ENB*^>{F$sy=$$=+IPC;E;Q3D4By=laJ
zq;0yueDKFm<8Qm&WB<sA2(*c0HY91hv=Zt67+ZOSk8;y29_g)>SA6RnK4@J$(%zq7
zkqUH9BI2<jW8Kj^AZz3~9m|opr_!QT1W@F|WgMSR&4p(>!&QzfeO3c$ew8E8yhfmV
z9j9GUT9|P^z>8&;5jZ0etQ_WJ#jgFo@2I$KRvF)OWQT4B&ZnmQElJJghgzf=tNb*L
z^bGceKbKEw@Pv4Gm;fM0_;e1>Z*lRZe1ieZ6&gx3WqbsHU|Kdx3Ya#pny*a}mtmU^
zXOU(4nN4&UF-eeeUx-R?I6$C==I16G3_2EA)!pO|HrF_iVyEGl`$WKtQ8A=X&tOBs
zsJz8knJ3_%+p5QqlLK(VftokDSmf1`WeB5+j}#T!TaVPqo$t;r@$=8EL!2&3YlvRf
z++nH%{`6-CDJ<}NrJLRc)*1lwhGW>^`3Jzmb2ikrQ3{fg#))hUC3YY6Zg|WZjlm8!
zd*9)ysgn^Ce>R%@O$c(W5eQJtsMVz&sgS&TgRm`9hAI$Nv{y@hCm%1b#1a&1u0Y}_
zE-E9FK~Gjoti1tyjVvr8gw1;Yt@i0y`Efa-brvc|30@D2W^h~;acRkXd2Apze#s{J
z0?HrhXEvUs*312#RWaGr8%g`KEiB^Jky9yu1N{I(W4HU+`)rw?aEyE2hrkCdF0^tF
z=+J4VrY1^sunsz&g4kLQ$I9k)AtFsT4xQEIVBv5n^7&~!^Ar+<TiT~}k!ZI6L>}tR
z&aNrhkz`*KQ!<R;p;6S_>nCvcRRIDm)QZ_&D)R9W;n?(6%i(gtEV(bxoz7c?L0Ise
z_7@!{dwJLVqrKPY#{End7hio>aD+RlF<0uc>sqeQc-ClYb~=lF)1w_pze2(zJ;vH`
znV-<z;MASKYuD0IDTTS|+;wM8^V#nKuCI5`E3<Q)5dc&L&by4r+tSFuLs=aAxy6VQ
zh<<^rGM)Z2+vR<=+tIh}AL_RH$Ab94=R$zkvEisr{O{8<(kFxybG?tBwwlL<5GF}c
zB@`BtqmEB_aPDx=tj*c-A3fDq1k8}xun@E;2rxyo-E#94=UBW=OPrr@4$=lUeXL9R
z+(L@-`b?fZ=!sP8o_9L!DjVc>2<d{Ejr$C2QI}BcCj~xFlRYjT{9a<c?kSN7Ccg;g
zH2!cYT<=84PO?eDvM9yzkfI9kYJG@qfxX0;Zv&%&*XtPysiXrSf&oXeaz7hk@N)p2
z^!ITX&k^{O-e}Tg(Kvd2Yw72@2fx+8Q7uMyqy}=46qxPFpk0O$nL2$`ZHm=Ys*=Bl
z8Z=MsNO`#LGQVw%OE%y+zo#HTb?|XaO1D1$$-<h~-E6b~H257Q?oHG=jHFgGg4ZM`
zFgg+R57h6av7@~5Sy`gkUgv<TBvabpI+Vkpp*z3oXTgJm@iuQ$0{l1#7(_BVrgC7r
zMn+~{tJeq%|6_J`O;)6CKwbz1FK+gFfd4G-cUKiF1M9k{Rj9qx7hwt$H)?^UZsS*R
zYuQU@>f4h<(6K2k%mOE_YZ(@yX4Y;%Sa&S4S>fcPkQ&8zRIQE1=R?$T5w-K{BB~?f
zf~kce8VauU#YJTC2RE7RlLR)GzyJ$fqi?6KOJ{Be6Vus<>W*g#Qg2q(*!Ha~O~&<|
zU*W7W+x5lz{b#mfZ!5}OD-Ud+#rZea+;oklW}*m~STzrf2$*}JkB!3Ovi;3{zi^qm
zHm>^v#YT|4{ADl$<h-hDs66Ft)awYAm>IZt6N{@CZWsi581%^SRa6XP;bMUpxP`Xg
z{NOvaoBnXqbu`+X^>GliCdaeKs|`AWBxW%3>-m(A6Q^^b?UT$nYWmWWHajD~@R0%r
zEezcD$V&}Oj8ql-@o!J?=?T2tqdjuw(k>0Q`?FmzbVzj@uC7hF)<=YJ3(T{96THG3
z`@IFx1G?=e<b$4xjn7@${3o>ex0uibvlWDU2G-ovnF7Rm`I*C|Qk4!puwqzU<y~F%
z-Ja%Jt;d0Q8TQsE7_!!{aQJOjn@*N_JOtzUjwA2%nUWNf^H@_nU=yOjH~H#&oB3dA
z4N**0@(Fce0}e{7og&Fu^)uPtevZX(N5n6jb*-u3!`H4)GS}>;wnelQ{l_^hnHXu?
z+Zr`?2XT_vPYHrSM&CsJa^g;8VY+>DLsKWa^~3BG1seP@_Y31Xn-6sE(!gK<>&`B8
zYtog{z-Mw>?Vx5{Oo;~H8K*{->tbJDpNi6RGm_$@?}lS#!5LPo1$zQmg&zvlk^L$^
zk^^-4qtT0kxvE2f7lS1X!2+GKk}HvDy%AaoI%^1;Q%ZYoHDbS~Z7FZkYj0+sYJcMs
z<u!gC>KlCbvcae*-rS;iMsBlv2m~XCP9W0R?z{>LQX3hexbZ15`;_)7H8FH8Kg6`b
z)15@!DIFQp%83%VOUj*-h?EpU8W_V9>kpo#TZcN&(SP+cCV<b}O?9V!pmB?V41JH>
z3+?Sjf+zYfj62BI7)Gob*X4%?e}-fJq@<^_JffSLn%QTow7^{A7-G3g2Q(PFqw}U`
zb;+84ZOjff=?%^oF5)H!eP@}EAG0r)u%K@Y{I2X~$;*ru<T*}&`5!62Dk}-9&hPf-
z;O5?V_*Q_s$6j4)>A!kgvndk-<81tHg$@h-9Js45Bs)MLPR3EFMUrUCLG@mAsdFD2
z-MwRDo!r!!!CjzZHV02J-_b?)wVJY!q7R4={Mbt?0z#uzx~hoA5V;m3=38%u@YLh{
z`bIxvT$e^3!p`H;1A-@wH0MG^JTQUlKD@il^S8MZRz4*KXJ3k{`C;k>6rv(ohIyqN
zJ0ijniz`|*A?<8?mF>mg*8@c=KlHbt(myHKiESwjC3M|}OL1iT$RG8JV@7-YDW0NL
ztg=7hf+#ouj0Kd`ryL=Y*F*5J;jEqo0<&O#Wc7`)_O)1v_>S1^hQpKr=~g8=P+I?3
zni%Zp_@3-pedBcNc7%GHW`&mW@ULDY&;8Q$(6B~&I{(t}p%IElk9&Omu5|SGuJYYX
zm2zWb%#ADhDtHeVwjVAz>D9vadU0{`3hLhokTsltDdT69WEPqA$Z1b!iQS3aS%t1J
z#l8D1^-Wz^DDdB8*Nr#1%Dpf!_!1N)liZDkwH*_dN9ZX+71*xjMZ#~Vs--0)E`HGQ
z`=oU2VBvXD$Ab9^0lNF!PG64qz}IS;-_5KY8)_Llq!rv!!gN$sy7HXr`~;Jpi<s|y
z(EfCN2}#LFTQKZ(ekrh~TNV;h$&q#W?E{~=qEgQ5BrM&7^qU=>fzNhNYW0}oF&=xt
zY`4UwT^9=Vfa&q;*qa)Mzcn*-|Moe~rM+nX{9R~9#B;p#!rcA4#QxI+0SZK*P76^e
zKPx&`=ot$-G15`_@mN7IoA8=tkFsVa<HH-9F-7?g73r%QD3r!~yxOX+y&npo5Be*m
zr44FY4P~dg@m84ftJg)`00Ao9D>$&0obMt5tJ*G;s<1-a#-(%^H|L3e#qp9y`0zEB
zdbKA~1=bI6uQ)i~K+*h*JdU%c@(+0&LH*ar<LIbx%|;?|XY$dP&;DmsETkRyB`e>X
zip^qJ-cEeMi|1U}hNt*MOHJwC)bxyFv-pfefYRylg4cIz+Pc442<LAZbpJt&%1G#&
zk(aeS>dO<=6pBLI()_jy1mBI1vApj(M2aSP=?K3Ol4c0zH)Fc-&&Pz`N=V!9*QFI{
zE3u@^h9w2`5JqBRQlzStF;?_zY^iU$)K<zMqJUmI{%437#nR$~V$FCtIuj*K9`>D&
zVC7&Y{$Yu0&`GPB3n%S{AOZy_Afw}_>ieZ$_jO5HWu@a^T^<-}j}qg6l^mu<eZ8Hg
z+Y{?5ie{J|%#8QgxU(rMi{3TH6?3ZNED%94s^{#a%a);J%eD4ViEbEK76fvcLgJ6S
zN8yj%u6R~oe0xm=FI!VKM9fgrA~SXRGAP+W1bWq&^!z!9oPT+6(X>ls$bnSkSFD*q
zml1)gbD`gLNy(F=v*V-u#`euiN13H+wKKgyK@&^N3zgpoxn*owSchHnSeRseTb-GW
z>a?dw376_<i8IoAw(C=)U@p5}g-#kR8~&Q@-UIGzhqfO#@3cg#j(51ME?S^yXc+mO
z5Berfk$bTW5lPwEHWT}`$<l=Xx|q%zhu-s)xPiiL(;U&+bnJ#X3zT1H6W#0jgrv+1
zXnWYSCsTdd(#xyZHvD3Md4siU6WBOo&q7}Ic@uDrtQ+L54o>%Jr-w3s4B}zPlHn2j
zS>ke3Is;}F4Dm+9N<3GtYOCG}Z$qeCu58;J8Emj(Xn+*X6@?-|z4Z<_HNGRYMmBHw
z@|R%;O`OxB!M~wR;oe#p19b3ZZ>hV#7)Ur$6&fiN+ms6!bM%Dum3%zj;CiDzj9Y(2
zc9+Z9_blVz?kO$I5vla_u(igrM={|)pftXGP*Ql^C92XXxgvlX!Icyf{^nlM)-O4B
zFHo!>Z%s?K3?_qC7P>q+vP{shN9~)nUv(zgD)~5D({qH+%*oSX1AFOW&0K)V!7n${
zhN6zUUg-4yK6wYqEQcq<U@d&fy!qNb3<^F!Ldos~O2&Hy-_pjKMri0-+PizPQ7{Ds
z#g^`BPdtL5mklL8bnh%?uVTl1Zf<0Xm#6)U_Z9uxNNFBmy2)6g{xVk$^=eAfMcs%m
zSkN15=MtnV)x~w=D&|>^$Yfi*jAAyL=%)Jj7?ca7qu$JgP90rhRJh#{ro06^7OF$e
zpVrcKn7=<x9xSqGtgNR{G=lC6Ez+dEH(_b2xYBJD@QS*-N36Z7=TSqyZS$BSY)1SD
zNl@S_EnMM;bnPFRiH&XV=iuj%7P4nl0a>Fm{5PBpHyhk$sV>9l^bG8j)Yquat88}G
z@n*))S2mrj4!yp^G{bnRRSFAca&^~zM~G}1YveeXYo5iXUqX2xiNWVs6N38#?aJMi
z`g8F%_c3<KIarxz#@=7&)+cNwU70k$AJPC)JdRbK)oCLuV+$%=No3IFmt1V=M09|!
z^h3A-I97NM#<p(`P{iBTb*yR=T&V?Qcq-+U4-~GWecoC?3DZnP5v=dOGnU+~T#_MV
z<ows;1OcsmvoI>`#loBP3g*nzzOS{9_4C-69ybO_JDR|tFHkBk`-yW-YUb7G+CcHG
zgH~Qy9Yz%}x8r<XzJwafvQwfv0AVBAO*9~bt7q2g0)-j<*E(8!r4?_LUI*IURU-+n
z*vQayG8EP-Nf-d&xMwN~JRYNNE!fm!`@-`VgnY2Q0~9@!y>L7>p0+JkKQDnvJt(ev
z_RhF`Q?X3?uwQz8mE;Nvx?Z5s0}8z3li?H{GIFwStNLFf!c~;Ja|~9WV1}EgB!f_;
za&G=oyjY7tN3J|yXN|l(X5wbH*5ms2Iwm*!C?|b~9D9eHy#>ju^)g7^K?!%~ORLUz
zwC6;1x__1_!T(31dQUD6Zm#X+8;KIB3TS8o2SMXG$)oK=pD2BKPK%2u!3}Bvf{R`>
zYzz$>cL7qH-4eKRiqpm6y(`g)q$&kJ?}0wmSTkb>Wfel?)l(UEdnp~ccheh&>}4S`
zT<BjKDM7pa^;3jQbAnPDGz;FHjIe4jv|!;W=CL6|YT;=JZDtDETkzYPXoKV;&EjPt
zb2aLjy&XA^h3WS@1f4#@l<E;A<KpEwC>VMYg+6bKV#P--XGk+?NltBCy39(J!T9$I
zKwvNdxOKr4@;1GQF4d*@%-GScu+gq7C@hLp!J0cJMnoDhvKOli%tBW#5%=QW<2l*K
zM}3hngpM%^${*<bhd%FtEoNTW8xIA?4W~T73Jg^l^u&z;00Z~)bz5ggZXD>BCEpEb
zVtq}h7kbSLcj&S<sd)<sO+0rIoLSSKc48*xmTE`+lc$qzkm*o&xde7s5z){nX(6wZ
z1{%t%cgp%gyv*L)C!2$djvUbRm12ZO^#BE%D^Nvkq3fG|HMNhB3W6%xrrkYK@1b55
z3?%1W!(AQ8|5;e{nmhVwvPoU$8>xSPz+Zk6Gvtvr6@VD+u5ukZDLD;QAFv(XR)3ZH
z##<pbdH?i^A~$nDQNe_ErttO;Z`dY-WEy+~o|l}es<H8#E5_e!$;^J3{HU=Pefe$Y
z`>LH{_1UD$=2SxEvR|^7;4&bQ#M6)rgk)CUXN(NaR^Jjb9XW`J7ndND7TlR(w-!yz
zaz(KbEN3~@3d`onr>;(esu7?j)hx1mmL->xJPBBJA71<FwxJ%_8-hIj@Z{K@`uajx
zl27@AK=EP6`H`@DlX|&tmQK4_>1L)6@Nz^1%_zO@u9?>c{yuq65~<F<_6bc+EsWTo
z{PtB840s<9^wzi6H2<;AVxNn?`u^%gK^3G?Zxo8s^9t$)oD&f#N9`haweXx7CoPZk
z5KA4QX2sx3p=J_91I`-;3Kp2Y!jwGcLqtGVT)p@%HaXA;5<ll>R=$QgAuyFoc~p6X
z^GQ})YQi*MlHSxjQ;MklcB?^$=QhCP9w28n5;V9h^FK`V6H5IdUhIn-@)YbHhb!4a
zLWh@pZ{28$Q{<0g*#&^={p76FQ2&Ag=4cL!TOLxE-@*w3O5(ZC;)5R9!(C{lIv*6h
zkqT_pV~FN<Yp&>St~k1b`ezz_D^fpFQv9OFw`n`Vz{mE7S3r0nmv-w-+H8scty_Go
zB|pVzjPk=}#R!pqt@s_0UNBX^CW-ZTs{S_XF)9etk&o-6aoVRI68P{IEs{1bmKv0s
zvO+%c-elhlZ(d&+(pr`21BvDZ0RTH1^IL?ovvbvquS}ZWPNO1+hzlWy3af3B2z6B~
zr}_g1WxAJ^CR*)@&gk)=BA=QFvNOO;1m+Dg*~t9T0MmP)dA4)o)g$Lx<?l*#hRkY~
z;$-0B`CFvHP|uf&7?S59;3xa^+N?@Y>_f>?2?icT<?kZ#TsCjmhVQILmVC10p~ehX
zQtQ4O*bHg7M07zC7TA(obnXHZru<g$rGd3RI;-#LT>;r|B&c6{U5`sTk;a+(H@!a)
z@kD(PyIc18KjOd~6g^W^9~XS`@UJ2qEIS-KOlpogk@R?IXTI|AfS6b6k7Ls#yO%W~
z<;g_I21cMb-jy0y$TZ0^*PYHhA1xSEi0$g()u^A>cz;Vg)U)<Wi^M;#zxvT&XlAnp
zaXVCMTn~B>W$Z_}?D{#`JwZH=1LkPozxO?8k8Mr0`g2tT7w^8-&PC#Ret2sgsg$`&
z8-fZ6isDRVl2`s-ukfGqVW*I^1y0Cp;jk*hpOdKQ9?AZFBP|i~%2aA^9^=PX;2LlC
z_;z-YF8rdv4ar!0X6(zsQun4O@c+5!)o(ZjmIo#CF$VLERpoYv;*z8};f{t`t~4cf
zZEW793vbYs6R$B|b^&176D&GWj(;r>=jFROd;%76e22dMhFdlmW$ahT+XkBc9rXSp
z^!8UY(*Kp|e%EDFfwoX8^U8f6IakH|T-TVe-eD_R-)OwJ?DOwLeQm?HLaknHw=Gs5
z-7eKXAF2Lx9#8Y3$=|Ugo+T$?fa#&&p^Qd0YY{ImW`KK>9*^lU{HyIv*3AzEzAgd6
z&>9~7hPdN1dp}LMWzET@j#cLAl3>ZNq#%d+G!f-M+$)Jfzv?A*SMKpI_Z#mx7)tI1
zHRO_WCCa6N9}=8plNTO6pCv)Oq4ta?%1X(Tr&7!fBh6wDmZIRD@r@Fs3+`k0jyRy8
zSJZ;PEcEv;uWK9KREqoh{v8HoCI@$&JMz>1O1Uj1^QGriK4}ygQpZf^{ni)>d6D-D
zPkZJTnHN4M`$EP@xUe4ctwT+%;;%|dgI<7HZ&>kE*#CsN(Zmdc^Sd7=2t2;z;%X}q
z=o(HTXih$sQi*v`e9lP;GpZ;l^;dq`1hw_hp)nJV&Rx@&roWpHv(0AV0f%f<YGVas
zLiwcQ%I$KEZT$oDCHM5qlVkA(Q?q7+w97Fle%|p9!#KU^nB=MW|Fna(bp+$Z;vH;b
z`#@|Dz;-xnZLiBZn=7)M%f<xb=Q*2S9gfUIjkuI;L&o;{fvpBMzmxS#Q?=dEGi?QJ
z`z~v!8MmUmdyv1A@$S_FyVXsdO3m^WpI#0Aqk}al36;~xc?Hjn`aG{^!X-iM=Detf
z&K@swAKND6<g1Qm{9xYn#Nht$!n)vlLp^V$lcRuc6{b4svn69Kjqz>BqyR^3H~D_l
z%KAg4;RfTb1tvN+s%ZIPnqQEIkpf0d*b^gH;t^j}hJ$UNI~foof9R++yyASy`R5NI
zk9p4z0AL0x2v%Lz7&-(1#VSXLijrUSqvo!@If;>-e*SEZ#>T)o`_-XwyXK=iZiTi-
zV=93vI0T_V>O+SE+<TjwYg?UNOn`If9lr4Hn+4g0<!I*}@7uQXV&?W6?~-O46_Ghl
zQS2S;`Q+l7t3Ov&;eUIwpN{yEbMNT2+rvoSvf`x7Nrc-`WT@n0)}gI_yZ=M_?5LkF
zMO=ltZ9*n}tok&INd2ueO%Fr};H+vt6$O=7^H}6Mv%+l7t?`GkJ5UnnxIB8uOV7{A
zOT@HP2{V`#pW^RwbUF%$p;pLu&Ef#)<brzO{^bv+OUdRb*<1DYKCmIyJ_(hk43Vd0
zGQWJ0E|@N)A?NwcDsc#r@F(U!&{CnUH&LwrIlAASw&N{MtK)Lm`TIUKD+!a9-`VC;
zY{l7bK5_o|nw!3|ZEHj48iV>HNy?D2Q^#`MPZAQ%O>{bEWp9dx7Ldl*4_$sQ>YR=g
znH;6XRw!8UzjpDD^ikAPX!@SIRmL+yMrOgy>oN)^@oihYpRpE`8yMFkd$<{%FtEzS
zD>)REMtvGR+LSqfS)OZ&dAu+Mugz)GXHH4<<FZ51k5j`9l@GY8_;-(`IjBi4pX3^U
z9C?=)mfsH{($F(bLO!p`Cd&`IsEv}^td>M3*ut<MPT#NINuW1GMH~p|s2DrE@d8J{
zxlV7G$R@QSSA+%^Oh|sjq%z6!Yh%q|yW~e{mIvD%9BQRXkuT4&^Ke~6{ioypKbW=d
z(<-nFe0g5mEU&B>A>${-kBHyE1olJ|#GG6qX%zuK&-Q14k!W`9KJaFD<RL<9a5$`%
zdJLj=&b5vU-W*#OL01Se2hL#)>{Sv2UDLS6ZGggiU%Ps3j5t2^TTD-Tq_22#F_*f|
zXIb(aH&On!Oe*ADH|?o;pLtf3_i%Kycju0}gS!(k&ZY#1=lb1tkoKbqq$-i|ynevR
z+b^e+jD*GdmsWdU<6zQ}y?5j4)kZZKrL;CMc61tH92MIRW%Us4ZTbdveYy>%p;Y~E
zS1!Jz;<imsxB6o^7wnS%Mieq7PNze+J~gdmNKyMPCugT$M*%n&2>38ibSmWxi<~z@
zUaOXuX+6&xEw*03vZZkL(*)+Lxrx#C((L<KrkJ6?^l=kz;f`rq!C2ifaBxmL42h_A
zM2dD@xkw>bkV}O+PxE69ae1^h7h7S_LGH{mPj=hk<r$%(VqhW3^=(^OvT>4I^G7wl
z5Nuz+%Rd&*x4|FKe@#hE`DCohkR0K=8JOHw`I<$({PlW=H@DrY&oaL?fYmLI!rqup
z&yw9d5q(nX+2U+vqG+=eH1rd14V##~v6|bZZh4R7jvboUZPvn+l<zxb6rL*2m18S!
z&E2_G@VdKDzh3qLLlln0?_-K<a`N(=rpuq>I-Y`vE3?t;$j|kj?t9k@hX_(&9lSZ&
z9}IWDR1|Z6HML%+XKYANNIC~0K7PB4eQtu8+?l(+A1Uuu)aaibr6=ak-&C%brmi@@
z-NRgeZDZ3^5<A-KzOb<O%%4;$Uhd6K(aE95cxmV*6rIP{{i#*5(x(aX)j}5<4f3S=
zxDt<{ua5B%$9`jV>vvZ+8#3y{yf!BjR`_d(_6Z=wTQd5rX3drsFZ?@o{r?4Y{pZ1o
zq)+Q7tPMZTBh}E5L(wq^+>@VlqvwwiPgE#e<vtnEPZJCX&~n&Av{yfGTmVH7hM&$o
zRE8#(ja;lY_^K^ln#!lX=*}9DzffIq;*gYuP0c(oTn)LhAt}_E|Er%>=Po|vtV-qN
zGoLIb*hAZVQc(qMVyfUz+R#U<khU<^ym7#q4~e{BGq4r`qmQZ4nEL>|i#yWLU5kz4
z3IPy-<p{C9!LO6u>G1LkJbp2jyfa`jdQUyYqh*dEeDN=iaj~7O9>z`;8tl!rzfF(a
zSt6c3g2WN1+fBFQathJnsQcQ7JF-6h*D>kHe*-7|e+QF}{5NpY|93Fy$bSPT{eK6O
zj{G0sq=#dn@FgJoGmOtBAQXwsuGD&Pqhf!ss(aON<#4XyV=H&PtSb`*0}Tbk71TL{
zJY?nQxm&Km2@|~{(#<k{G{ItfSAXQsfkLWzb5bu}9k#~lAkO-$q{gU`<H0R{JG;C)
zk6BA9DqjEDAH0aZJe0?trZcd7&<vhj)Gx3&(z1->EY6ggHFM#5Kha;seH}^tXIPvT
zsOFoe@4^||cCC)MRdej!<VC==lwcMVytXnsaqfOFl0nFOAtd9w)~lx!0U%SZ>FxX^
zNHty_%Kh3vhuvp##b|BnMR2f2&qx(@pcpx0A;@{XUaWznCbhN74dCSf>jy>Mt@#Bh
z(oT+hoQmb6J!1T<zqC|5yE%H2Q+{BcJBy5DZq?|rSTIOq?Gz^x6lh(1@&}?l;GiW&
zaLgHed#f+P!uKsrh9bb1m^41K7IWPWd)=<@`^4G|KJl`J!LOC=8v3-Q8oh;_lpE|m
zH_7KYzawA77%ro7g%82N4OwUE8n=GZE9~un28~IpGX0?VEN;KmObND%J->25CN^X#
zCDs<jXNdwN+Y9|Z{ucg)ja+$igm5c?Q(xM5dypZ?zf{QWH79DMDDbiCGAfIG_;;Q8
z>5oa6b^25rJYFCrtR4^u?V7DlNw*`ISkW^x(bF}Bclg~>#bRN})Su+Gu9=~_yjHzI
zM-@8npj6#2K6k-@qQVMV(96|V$A|j+K=j=9#4E7p#Y8#psZ>VVc_G?Go7OW)zVD<-
zE~P);uwTJ1KfQEHO_i1ML;a+=V3;^!<w#bunJFv7;^mm@_NUporq(_t_Ekfo`lw3V
z3E|^TmaC0>n>{xNK9A__SOTY9t1M;+6k5M(mrTxTYOW4_ma7QWDm$7Fp4xo2mX%9n
zx#nL^r9y+c%Q&e$Oo{*?y=#P`%z=01xrEG~+8QTee@BbTTHsFH_Q2pX7D9s1-eo?g
z2fU?X`H2?qm>zt%iFc2S^9o9-OmI>=w0<?g6j%A1dfv|6o!C$B^s7eu@>*Ko3Ms*c
ztej>%TQmOD@OWS{7C8`7w)M>oxQD_b!ENpB4QGA5?a!Z0&xkzC&wE64#Y4xnT%tVR
z*LUXIrF=A)U(w-z`dBAwX69okNtCA3>MAD?FP|(!4BT>1oSOXpCR@@JU2Bk+!BDJ8
z<}P4hXn5dYK;6+(GXTeM^T}-M_sMDust3s;A1-k}89@I9bhfXn-(|viLZql-xyEky
z+~Rg>_-d$wxNgl@Lx#B5F=4za&F(9kv9bk~oeKiVj<!zP9S7S-Q?`{>S*e+L>mC(+
z<Pj^~NlcUhUcS=OI!JC$S5?LlEC124XUgf#2!6<CR}-1Br&pP`wk2dxcbnPVi5E)H
zS$@Ds!%*zNseKopw}C$Du?4BG=%u%0&e(2+$0vNq&3mXgCA#DmO@<qoOq!qOwk|mr
zW&@@jb@#@niqlmUX|Am~DUC<=Tqsg5r?2(XR%c5bbiue|+>anId9NZNVDk5WsyfPi
z*ot<yGR~owiA2Sv>{Zo(?!N3ZN?a=6<)3p69**7WX6M;ARmgW+{LB9)*&5V{G{K%+
zeAOeQemnAjr(!+uj=B{_utac0Rw275l&7E%gH~pe;mjV+mRY3MKUU|b;{RBk7fqf5
zvV74Oq+Act@1Y*u`T<h^9u9WJ1_Ny$0UBJh-0+UUw_a*^7^y0Gs+BwIy&5KCh~+Ms
zBur{yRb{<^&meW3+2$gSKE2aul!NR2_7-8C!06a#W_Oua+$uDa)_3L&yq@muB*@VX
zG162oEPo$ERghytw>#0OaQBPp)W+5Gp*m}5#ps_nQugVAa5K>T;$wnk2>RpaD01|t
zKHcj478);}X%*0eLQonhm1s8QFU^_l3RUTy`4h@`VmDoF`2>`&Fu388R1|7$o3;2z
zWt(u6J}%8I%oN2KdW%fDy)C4^R{VR{*}%w`+L?kx0$akQ!<9lDf6VXQG>h$KD6#)4
zYaIE%gN^?;v&R2!<hS)m5iZ<P{eCoe0TfChRjRvMP%`oYiW1km(ExK_5Eb`@_VjeD
zgKIl!he}yTXKkxJ)Mb04zo4L?+7nx~#K1i_AYP89XDX*RHjis)sJ)Ngy?QbQ(S0<p
zP>h9w+{Hx6{;ESP6@E1l(GMy1`y0sxp;K8PO7>PwJD756TQ))Xvk%Hu<^{Ml()VUt
zN!hGlsSv}R7p-TbdUSSh4W*~wUh(s#W7SUI>x*X3T_585RH_v_O?~K;m9hZ@+#tiO
zY<ge%85Yhp@zQRt#Ip|F3)5MnE|X|}^3@ms&$)*JGC;}E-p~93ayGpe;wH6Ii8`*u
z*1of)Bj2X-GLR#jsOaV1zg)2$^GLth_HE}qP*<hmB=2p#vgdoXe-Q=b!ae6FrEnvh
zn`>tWTrvE8YQGXI)=wc(5zz&y;ofdwaqpvMwXnnU&vq>Et_LydkI`6RN>g%)aI7IF
zor?Zd#=aW4Juo#w%&2<>Bbv6q?Tu+un+U`KT~XiFwn@{%?@(1b;x>kU_QiuD;2@yA
zz2i2%Rg-`B#;@AnX+;@y3>^vjsUVMxRNuECI+}OjijFCQf}!+ADh#mK?#!=Hd=<l~
z(++3N(<%MRlj{Z^&n@;J>Ea28ClxzhiQxf<YLXPe;)d2>gfU4diTIL)uDUgY0Du40
zevh(;AVAx}Zm5t-0T>Bd9xe-NSyPn{mJ$QAT{a`p=6nu&xmm9qJ!YgIzGJue2)HtI
zfZ$<@oO}2D^muyz=5ovhMAG|n(q(0uk<oLR;`34lHN6mYeZRS=EdJ^dTjc~l`{yb-
z9qPwy{lE!4VM=(K_yrk~F^-JZnO(9p(>J+@GN;l?wf-dAvb~jqfucYQdviMw02H0g
zEhc1NnvIw@G3j}tGUi!LwRInO2!DN>(OULGS@cj7+ecni-O$2P>|P*B48kJ?-ul_h
z+Xb=(J`I$Z*}D@28{uEml6Qku`aSncG%Ev@$9ul*?MMD<7DAX;9y0OB6q4*YI0(@&
zaY?V0isV0)xAmFg({Y-^kZXD?_WPX1_F>{6l;Pwwxd1s^>j!A}Ya;#mH$w?HwVu3x
z9w?-iXfVUo!Kxc{n2c1uYK;MzO))u<^FdYT;m5ia?%e{JKt@wuO&SQeQ))eYMd2;X
zn<X4C_vj_U>QEAlPV*jP$G;Mn1bMLQq?u8&CJr%y$2-Hx`g^rnp9lBn=vvzdXOl?!
z&Z44U>kroZJa;+OV#!X7%o>f3QQ@FC+Gfm7F`xW7Mne*L3!98IF}a!dwoO_jEAg8M
z0h*r9K8V*qulO=Fxox79CUuIN9NOPK&BZyCXgq?<<)}G1jc94~6U>cu9RpibT_c<*
zG>ErkgO1UH<EZ?Q$c)~nEAN?^0&Gf$2i4Ku76dyQD*GBagA!9;f2n_#K7{eg)y+uu
zBcYvNq!&^8mp#Xex`*x$HMUXEKGdMWy&wQN-f+<=&$%#rL#V_n7;rkxcQBoC%P9{d
zU&11^<TQ)*I{##cR<PKK36~1}%Ztt%o;@P=8kEavVj$eS;7W#~q06LWOn2HO@e*^{
z8@m8AKp9CxQ1NLEhv_Jxq0r;^XQNyEXkn`sVk8QDF5qvVI;x1=PMYmn^RBIZCixPr
z1FD0BNLnoJkUuLXN}`8|Cc-oaW{F;9DBiwlGd*WisTr5CvR{bQxCj9?uwc;OQYX%)
z;N<2$@|KlSdB)*3>>|fo_n}&^k7F~YSj!d|WjR0clJb(sQE5xJRV)UQ<>;bU9$G#y
z-teFRAw?D(O7)$evEHy)W1_`<FH6cRIZe%SlO4L}bon)+Lh1grhpqBuDk3PDiuw{p
z!|f!@>V{t3=C>WoegB!6B2}OrM?&1_F86}t)y6?Mz$zhf7ZTeKo&2d9SbMq^z_;hi
z1NqHLy#>-hBgDa^m-4l}BN|&wN;vJN9bQ83nO?1r=JhR4ou1_aJ<EH*fv$$~uJV~N
zdk-MZ_4iiXp88DWLgFex0V`eaP*sC~tOoC`If6@1S`ubzsfRPy>6kbr<7~V|pDyw%
zA1egsd@^UjY>+Z^y?u@qydl^w%YfTVsc_o^6Sc8%wTt~u77>%y*2Zp;+jOBEO<rE!
zJe>z9-=F!_xg88Duqfg^d*<vea0TUuZHL(IT;JfZ^t^a*$Dea%b&PA4la6lcPwLic
zmW*+m=H~XR?ry7-eGX=3FW%RM9!wKCYNJ7Y)uWDcStn(L6#%K#oo45Dj&$#Ijd0|l
z2#8yies$24a3H600_E<PUjXkt<<nNe1UEA3l@r`77X>H#EY4Kb!wMvIXImPP$g?rd
z*T)ThWWv2Xyqf;x+yrCXVfE8mMQ>L8clgnNjRtK)TFvA@0I={DrxMc@seE0p{(m8T
zXAX9lyjvV~Q~T)%1bqaOuCU2?3l2To(O%5Qx%u!NT5o;`xcAfzaxPRiYGoTaG`Neu
z(EicV=-VNFa+)whf2MiFd%Bd0A%W$O&Fi{Ah<Y-l4%UYgw-a)B7%S27hmC5ngs~XT
zCq>u8R;bzR=Jx80u6bOuUdIgd9|!2^5<fBFOWztxUO}fpV6M3K#9<a7X=0S$$W_e7
zdKjNw1u4M~-~$NplA+eE3)W`&j+%RidtB+E6>{`pAHe#kFn){uzLVqy)-+X$tJ|-$
zGEDB6L6qDA>mnpcpB>Io`aD&k3)c4(e)&8K1S`;%%r&j%!@JK5Ghgz)c8%VwkK5PF
zf}@b$LOM%IL$U7){Ibb+b@~gPK_8Jd?nIfLqe&U!P&`z~O9|V`M5SWR!2z{!^taHG
zgqRJ+qg5o9A!-|IB~1~FYh_eih<%l(&7dRF@woB+QGk~)<XVE+Y&>(c*68s|rB6Sd
z&F+)3&@8W&C%4r;urA<?$+DB(8Se~40JM*mt(I8rx?C+oHX6npyfFE6c1s!W&6)nV
z6yB8^%hN845?_5i?(r0A;`>TbnNWGF_+xaIr75LOOwJPo2!C~9%C1NiQSroE1_mDy
zdJ(7kgQS_R6#QZZU1N)guw8)@30ti|Ifg=3wzw|HgeWd5>+7uhu{32H%7#M1h!?^m
z=f@=)*;t&mlT?({^-YWf?!FBUhXfj29eZc=No6If01MH$1^Ok0J9lEO!_2uazg^Ec
z5=ED9zt$l2Rh~&i8NKt@*~+mB#gFn7Akn;{POqu{y-Z*XjO~90rKtT<zR^$~p7<Zr
zqLte6*L{64J<uV+sVfh8aE-8x!|eBzY+F<@3|5ut2)u<C$!`B}u8%F<BRw{qF+JDx
z(s>I*ELdY}N$*14$jCc1p}O>B12A0*Q*5leXS!8rXB%s;&<Xp9yUsRg?j6m(_w<9V
ztEcCswSnTbmedQgMpS4|I~A$?y}fxA)zr%M2B*SVsBD9i5HU*a9}XgVU0Sz&jZ91`
z4wJK&S1eEye;T)RGBqCtcs*=sWw%mKh}rrU7q`D;)o)-h`tuRT$)D*xAt9#%!VHhf
z^%H`tKXC~#4P8dA+OP!f@gKJgH@oh(G@{nqGDNCBV#8MN7Ru#p+6u$JX7Qz&nueO?
zP)<ax0qijyku}$-=)mOk<nC<Qf%xj&{_GeK<b`H2YUF;ENd&3?#<VEI$$WX%=Ay15
z10(HqA5xh_1ux-m2?;0u<F2y{lb9&@WDw{%IXgv3DEY4Ha^~SiI+}bybW%r8i$=~X
z$LBIxf>g0Qj?2l-MAg;z*z0AZK;eCJ^7nY=@ejm;KO(ujhD=1%UsAeVVVs1MYe42U
z{}kBa(F7PmS~Px4jnt+yhmXJ`Zz+jwQTrBT%pUyNx+5t;|KrK>jO6&yR3zKpswQQi
zIOCY>RNI}+U2|7~5>k8p#!V|9iKZgW6>zUG9lfk@I$9(7nLVCUkm^0RxSV6&cswce
z4MF|laOlXer(%fUzt4N$`Bx5YGk?Tc=M?9@<p|)C{!cTs|7V0Y^8YhK`+r7gBYzp%
zE{u2hY^w)<SB>WG;A4JD$5qIq#>T0PRf*71;-ui3w==aAv8`^H7l2}U!|8UU2+p?M
zXHNS_CVa=zA*UxAE6^d~=@@NlxywhJ4xJmk;*QxzkUWJhAmgScYS|d}^j-w#(?JHO
zFaF(l`GnqyxkOerVOZWu?1<@$963r(>)E8k%K|4i$jD~(4dN2SbEs_xW>!4QvLeMr
zO@5~bNe_NX8~(KUWcJSyDsC#&TMwSHQ&*z;HYF`xzSDfZgnJ!d;hQ{@Q_mRVwWoc^
zpfBlvNT|U`a%*Cr2%U8P(&Z=Q*tg`nh8Rk3-M}xmIf}(bcG>9&<eXp40gZnKQ>32n
zCg8Fg4c?4||BmC|Y6J>Vv1TXZrFglT7aiPV#q2#C*0#3V>D=lS0%9;X%lw=mNAt(}
zlCP+1n<SR(Xt59l{--zG4BLvzTItE@Lh(G4T@dEIw6su|t_?Y(=MwSyTBJo~uP!FU
z22fte><4!S!f6E;Yw&hL?&*tyxU-T%H0*8l%TMODwGB`Wt-)&}_oCRN7nY?$#3o=X
z@juu)%c!inzT01b0tyHMg0#|&(hbtxNC`-HcWx8`X^;{SknZjl>F#a;>Fz#@`+nZ%
zoN>lG#{R&E&ED6p75_EoZyIJ8+ipShzrf5>{)3d|a<I_N4<0mI!?oBf!!@KUPCNqJ
zZG6{iW&52%*&E&+7W?3FMSq;8H-B$-OJHhXRZW)qb#(~{X$5Xk7=#~F@XS{I`vwUw
z-oB~DUsH>xuovT@;J?MtpBlg2(0<IB{QY6=FR#XlBcMMc9RKBy7%g`W78?=Ah%4nQ
zA<u-s*Bo7)n*gnj<2%t??{xQf51|Es#b24vJ~2pt$M_zJ({QtyF3)->9i4Y(*OtkA
zXpsE4smGuGa9Xhsda@~)*60WKj4<s1t+Ct~GuJItL94)bc=<j(-$%4_LyUvx9K%m&
zQ@uov1s*m(x&Jn?f6MSO5(r8ly+t95-E`E<CK3w?b+2%J_b)g*#JWNMPDc(im;Ub@
zTCR$*ff=*c9IOEA1hJ&*&9J+0T!Wi(h4-PQk!Ugx6mDcB3UG8XPRkAC<X@yR@2Gfs
zBP7}cZ90P|>wjSW9v>FURRUT(If(&~wzP$Tz{`I#G@>FvmOVA|TcUgz^knk~Q9)aX
zwL;5VAKzsw!u?uENKQ}%V#itQ*rDtmd>CPYEQ)mA_%SPPj4IDef}MIHhs1#M-_2>!
z#s-KG?p1LOb8(GQqZgoLANAHCq!L7&@M4ck79K`?Cc{1#4Ns7BXp&NqW<CK^!bv;{
zR-<|CG{ran1SW#<=gAzPUDMLizJ2?4FH0ECo$p_n$5ud&X~lu+qW9?0DF-2Y;=$GV
zk}EObrn(`T+^Us%`x6r;@gk2w<UvgRAH$@_=rOJx9|CJOWI?<Xwp55Ee`=79tC6Ob
zmVWyk?mx%;qVox&t2^8`zO_UqwCMP`GWc>H_CfUV>l1%3Zv_dVK*H_RYuevEZPFnR
z<xl30tc;y&d-nX>$@#Ulr_Ta@>Fa#}l7^2j;af4b;obmIiBd7N)1MJZ!Tk7a#b=;t
zDqB%vm6!?3C+4z4S04<lH(tDCjc}%rv%hPonRmtse&d9Xg`58l`60A+kGS^`4xJ9`
zK|fUdgwN~GR4HmfK=sRaEWJCugB!B`9Bcp47JY%4lw3{HMjYfJ4q{6DE8)Npk_R$b
zX*$SUcL&o6Oep}S3azNZI9agqk%1QA=BL#WYhi!pC|RKbVw#4WvDK%K{bYXQ6)d5B
zhYz{Pi?yX>evrig>C2fb!%g3HEt6U0X%<*jYo+=kq=<gr?9D>M)Qk+<o0AQ1j{K^&
zt~>m{v8SPb;nO2(81Al*#s38>*n=bk`~;4@uPtJJ3%oMis<d8u_YF$9(Q@exf86Fu
zNRW7y7tts~=jMMJ|1W4~Lc)jZ9;tD@J)2y-kBv<RdEkzY6=_%gw>P)h+%uX?Z-UE?
zdhW|z78MnNrw8_H|Lhrk<M~29D-FBl*G8An`S0om1&RhC4CW#DSRVV0?Lld2uaq7=
zdbBxmeRg$Q`t_@iX-LZ2U07#%-#`PXTkY)iC8<%$rjQ(La7RsNF;0&*>AqZAZ`?iC
zJtN`OP<l^{J@pKIv@=di!O}c~$4sO+JYurn<M5{n<h;Leo$|NLb$4J<t?#0^8lR_z
zXL$`dXg`ijDCIek?0dHupYDq{tyTx3LfVW30mRor7&(Gz`fN9|$|s8E#1rs9)HEih
zR=kMEbyq*VC_7hekp8Jj&R*&&dLPG=$Kmi!JMk_&v(D?3)3@b<n?QDl(=oNAX0Cm~
zUVTvxLghw-Sqn%sxSf}Z&>o-L2O*=te3Al~oSq#qvrHiP)W4O#5K^4PNLg7Y17QPc
z`pKp_rQ&GF9<kcCe|zS?mC-V(&FbjESyCdvip1MR#i&3w=QB9sB;N+uD?YmWU%3|g
zrL04pwJwvt{J*VYW7|wSAi`n`=K0JFnY^^2esEk8icAaJsd=6&cQD>p31QPh7yt5@
zn9D=?753@QD#@RHM3{Z;pMz<F!|p-Wv8l$oN37G^fGxV%Kp_7LGi^nQ3KgB>?U<WG
z96=jphN{YVtg1>UWfsAfg{b2b#|kzCA8^R?{pa=vCzW!$jqqMS5;J~bA*<PN(L>mh
z;I~*=>9Lv%s=FEWN0xK2I6N)vLk&3F%qYx#29u>lgC$sI(h84^uHy|JBb}ha`GoSw
z)$nKpT-Eok9_ik5o~)cKtJ!p#=ag#`(i7Ma;OrFUWrCkKnltwNmS<KoVd)(G3f`8h
zPcykDFUvo_=#D8WuOK&75%~ifL^(k#R18nJ5SFEmf_zKxl0sx7zszlRFS7M&Fp*94
zG`l`=G~R$GDw%f;<q<t43#;W)+9eCO3o5)1j|<6wR?Sh%t^>?=S8VJ^m;LYR-+Ip3
z;!C5{@^oztH&NH-Qpi%hRDYZjpeGp!AUU^$(wn$Ybb~)u1q@AiJQc5@PPkUe@Ru{^
zTc<qX#8mAfNl<bU$9BM)U3gTVOlb4H^NmjvAKb@*a5_G|AK7w*kBbql73j5Ump1~B
zL9p_HkB)<h+#M-;XZ!Xr4khAf#|f7+|It8eM$v2jCp7VD*6lJx^8s?{H(nd0QSY`1
zS5@C@FhokJCW6TC8E$?ErZPT8#6vR8HrClPQ;?SDe0_IJcI8s~hK<wZ^v=&>SlHdg
zGx|GmRK(dW2f_vXaI%3~1>5+1QUUsphKXYF2*2ExeIEHbE`T@R&i}?XHo7-k=ykF(
zmTTZ{VK*-Kp+@_?Vxw)x*Q1^pf%BB{u_dsA!KxMVtt<~BHE4#2CW}jQb_Q?PlRz>l
z+jw|Vv+8?AK4_+dyUBKNm`?VLyKS(stS;<b_T%eXbGz|``8EHT$3lmf7Uw*V+zY<*
zFs``WEg~_|e}5|^F5Q?>u+`Q+%g1v)tNyY%UZ_)WFtF95@W$(Y>}{i&O3;U*sk(E^
z0ND9k-+EC#iJ3a+eCJzy`a(g)yGCx-g}hYM4n%J8fd#@LmW-^hd){h^R0aR5`gNRW
z1rU80sIJ^e6(uRd-FR4~Us{ou#mG}^+EPtM%qur<xA7-IH0tmg$qTO!wWd~7)hOl#
zJt9b@|0bE?LgXS$8hP*qo;$|W_*eUt2(m5eL)`{>!33%iZ(q4EymwA!+E;w+#}s75
z9G~tRYEB;((zi3CnY^V<oRSio{1|rmSkzZcW^;yObuLi*>Z%UGUrq^lu;Y38$SiJF
zxz3y?8e3a?dgu_JCDKPqxL9hjxC$1#p}c1|yyE3?83-3ZdGuRy1!#fqQ=`74c5E8(
zAfD{LwS#7EPD1EmUA;{73?5b@9Z=EYLeufm8AEf?t<iEvKhM6Xz!houR}tDZ6j5?a
zGuP&UPYVMu45GM^YLAG()UdGFj)(=K^c5w|>ABf{#<4|h`GCZTZ<~9DyL*O(1A1s%
zFU-x%VKDTSlxG`wX@$Ag#s!mHU382z!ZBpwOpuB}`CmD_wBq#X2<#Z4iOKPi$>Fid
z;f#pxVLO_1MCY|U2TS@8ZX`F*pj0b`lwjB}6eZ-R$J7Su=;-B|Gj%-MD@xDQGc(6n
zXm9SmGAE=AmRv7+iRM<>)Qi8hbH^t%Hm=UUceY^d93I7@((B=Tc5Gj&YQVB6^GSky
z1KI>M>7mKt)jS8C=x7$aidVX7>`}vozQuynwD~#S<s%7};|efYv}d1SY)&^PeGM2;
zb>0?tyi9VuvZ;;L+19s{P^(Pl%cTXP@o{y~>R!Mr63P4MzT1!vvfHr5^L$-gQo%_l
zu%C4IA{OV^k5?Ow5~y_H34I?}R_>4u8=I5oCqa36@zeF`V>L+q0tGg92sDT~Z#EN`
z`>jP^{rWWDe7-UBi3vk4k@IRSzIU4I5*3jMMk)U?*WB4|V*`&k9Qt@pi4*k%=K0BX
zGw2kJrsCLs@%Y^4A#65|A^8RNP?%iy^t7hcOx^Z7%Z8-F@x=I}OL#vaMM$l4f8;Io
z+MyG(-;pSBB>(&j$lW%YC@TcfD!ydgWf~!$)5;d~PWi+`PAXA?d$sV8ClutRPt!mb
z)~29#njn^0acm3o`4ZjtC0d5<85T_NiT~9M?2WVSxo>uHN*(sviuGi(i9~t#`^h6@
zL51}a{Gj1CUyaL8bP%OZAg9W$i_dup+?bIWsqYty7upoEPo+$q;|RnmVK4)PB>!fa
z5J#4Bl!To-ExN*z8eTp+=<KL4PhibnRKrNNJZ1tDq(b!l_+0@a;??T8lV8!DiyAxY
z#eLj=&p!MoPm#v(VR?BbVao{wLxsv74#)ZCceE`~AnW;nCjenw-D`*2kB6e3reyJ1
zkSrm<S`p9j*lPxZ(=e$9<qGGs&Ft@MakzG`Mcd-Y2Gvx@b3kvAT$D$VE1xnwtC62Z
z5E{pE86}tf0vqSC^G@$N3bl%qtgN=Gs%&}uS?I<YIoIy2MzAQU-6Z4d=Aw(p{ww(6
z3^ukgV|n~GEC`utF=X21PYNJ3+l_OLS9+?xNvn(PR9y%8!?b=QZ=Rc}$`S=icybkZ
z-J%q6CoY-};0LORWky&rgo4fxw9~G)V)Kseb9P2A#;@gd>YdjWT}|#eq(R}W4KtVa
zx$0Y1Hcr^Vgno|glnfYS#B@^|GFRv+eKU5!)BFxiWMsuoVsO8HE@>t6DSyDOs{CRv
z@h%kCcn!Nr!;ArmQwH4pa(i9W&H2bqTwbr(L^XANGh<kxEVrO1gUnaZiorSm<J09Q
zWI~S{T`%e)=tpqB8Eg0NoTsNe7PSl9a?)8q84nf~AN)|`xpG%HI;gx)#8XmeXRcxn
z-MVi6HSVZ&dyLlWV1KNuwYx^|vx%pH5?gR*&>A!sf@Joj`lX}0^x7)Q7YAcG?_~G=
zk<G?#noSGu*)vh%ur-3SEW_23cvKrTEn?jV0~TfE@RK|Q`)!?u#!4F4#<n?Swh@Al
z0=b-f!l^MgFgc+UXXjDs$aZ%r$|^wSCPwb-df&|b($}p;J2MY1e(%TKwXC2xRj?9T
z^{H?Pv6Q1m(D$RJ5d(CJ3}v|c_puIr)`gqD^R6%j+SKU@5<;Bvw7fH;<;3Z=4*R3v
za(kT|#Jie%>P)-Ni1$iABes#cU@&E}`J1$nw2`L|A)}g&Yb762O{+%mZJ_b*zLjP&
zzm?h8qoiKXY9-Ex$${q2lKDhXdiKHi;=}Nd0~_6X`j3Y8?*RGu(vLH%Z^11)Pcyim
zaVtq(^DB><2T=oL?*25<K|t4#kMmx2GU6*aViF?;G6=t{oHpe7@`zru%DMZ<sk|xi
zd!ky6`EIPST7F&;90bD&&Q+kEu$~&gt>C0>scJqW;&(sWYWKA+3hNL<B#pcX<|PCT
z!5){hU;aQ*L6NfT$Z&boeX>DZT*163>GR4O^E^qd`bTc}XOpF(7S7BYtnwza96W_n
zn)oiLCm$*=U;TrsZM}AWkEU3<eUNF?yc^TKhFGWRRaXgRE7B|{-Kts66}PMAub^aw
zY|SgRP@<wQR-NxOP8pVp{8=+!U*DXH)o+;bRKJLAG}&vXl+GBz5U4hpek}X`z_x0-
zVS8-u1$6hu%Cx+G?t6avc(-&lAVr2Vp`slq^rwxem(yS%50y5q%Wt1wxO0M6`7kk+
zuX>NK*AN=AFn4RcawL5o*#BNLs_>^`J`Q{E=0~fiFmu8z{D4d2S6PQusdsx9R=!|9
zsQp~?(oPil-K?>qUFqA;;rt`1DzyDwbV#rtC{I$u>G@x~UFOLSqpygNmKKGbU5y7%
z-c?y$M0iIv;Uy=W72HPzineFE*UgkSCvw^>GmS&-H0=~d2m!L*2@l%Lzup3ylc!ot
zNed>XIqORcuaCCuT-3x>%i@X`uJo3f+%B2MICtF2v+1wQcB8~6Wkb+-Z|lPe_*}16
z-@;x+byIp>uWXj9nX;N^5B;j+_6`{G+0PC~M<F3z+P@wB9lzMGqp9@X+i)=!0AzAm
zaG)E9+h;LSZ`qkSYpz`gEP|O%zm82jnW7gHMt=p1=m9Q{vO^JKm_jF31^-uHr6)p>
z-@AXZ=}<>XypW<u60<r%D_A}BJ2h~qka~qZY8p++r?8+IB9<6Tja`<P-lN4<-wU(l
z;eK0OVz}z_rb)2Pa0r><{M3}jZ!#}|Y6&X&9y$uX1kj9lttrdQB$)p{!E>L0nS>t!
zGq579OiEXNy`QH81S11LCnZX651lD%0)D`}dl|TWnhE&P?>iqAt{eiG0=Vs3C^XnX
zuAWT*vO`>4{9f1xAs-%qNpVS*elb3*B@bPL;Bv&Py8fn9eq-P}nt5q7G&$<F%}vN2
z+-h7&!G`Etgx`<tRq0sC)@6tZqNsoe{O!Na_@VXQmJU=pkmiK3L{A$x$O10{4Vh%*
zWfg@{nf4}7tf_*E9c5HAb?z^BVQ?<sarmbUkP=2$txwz`VAY$@Y$cE!udS}5QSLN|
zSHSTw5PT>`fIHya(@U3PWXz%SEm6&Nt8Wd8-%0P3R6N%&aTmaCX8iuq#wzI4=V8yM
zUFwe?u7s!dWDx3)X||S=^#DBklT$}hcV~?%SN2GW5I1Z<J1O(_s=H5YJOA%Ac)OMX
z`{`PX@+7f<TL%_0+^^vd`ZSA=W33r)ed}`HU%0K@xhV%I<VJ%&RXDp?O=X;GIzAk4
zEL7?>i2#Y2l^*tsV-ev{J}_U~DxW)6+sB3CRKdg%)92@mXa7X&t;ZKaUavxBk77ZR
z^{$OC;Igrw8kMA2xSBw)sjB@Ci+j5S6LH;ZNOC&C@&l|K!vsStV{HmZ;SV12M^m3y
zbV0rxsC=Wp0mTjU?YVXf1Ij*pK7GNnQIE&*Zz0PIxBKN$t^1h(wqwYShdUK2tFxY-
zD<!*fN>!qX5<kU}&Um3(iAIMV^PV~ec+EKWxyM0^l}FO7*!2RpSR6r6Rd&AgII`$j
zthTUc51qvww{4TK&$WDc$D7THYde~}e(9b(xepEV<>k%6zDCYE!?pS6%|w$ncPFXm
zB$*k;tMGyvqLnJNHeHN&-Q`eO&{oWGr$_BfQWK^h(!=BaJXrcz+|KQ^n+{#In2X*&
zzcIJo_cCcJd-^hy?D`Q_;G<;0iu;qKXWnvW@5PE4v21vi3|NG`l2j6rt~qO_;=u`w
zc1xv))2|R6)I+QSifFN=!0KxM+RH8TtJ>KJ2@x2lH`k1a?(ASIgb4eh-(9p)edSll
zGPDMUSxk#^IR(p+k|HkR4!RtPM|pMWxceN8g_ZH%ldq~BIEdG9Rbe3g9gISr9XeqL
z8(j~~Jv*~=EPIRSGy66dcv)IWXRw|;;#C9h8r-jm-D}D)0)D$2+wqilpLXSlXYS~?
zRdr*6)vSxuD@&oWGUK+ACTZ^*ol4vJj@?dq?SjHWlx^&r?Lh&6P=R4Q6-9|HYI45~
zi_H?-*U@fH;ZGJJWy^><<#pL<(-_ST0jWBK`Hd8pqDDGJRpyq)B`Mpb$JNw^O6B>I
znPrk>WS}q3V2*FD9<AgFSLp@0HA1)Za7*qgKeB_ZARcri*v2FoCqGxY-fVKx?T=l0
z7+AakF=f9L<h5v{fEU|v4TpOsp@m>jO+-IXh7#R;eM{da@SkUO6;hvr8f+?`t@JHr
zZ82E7ntA-#zD&j~79<fG+L(R6V2x`v2Ax?|nVX}hzh59@qNGh3?^I{Ym_mI+-rhSQ
zNX!V0sliu`4lW=dFrF3P=ugA|c+Qi16dH+J7G@>Qcw^6DXDPL#1LHFTBM}k>Hg)<I
zdKgP)Y8w6Z?i`UZCv$_X9o-$Pc0CT_7GxlUgSGt4*x-}&2b{9Xs=eEvs4+>VbOKtP
zWJa*%O~R*c3^t#Gu#3-A;!o(*Ae*x@$KBz|6`RDnh0^PTj!J>&fo(DQP|DH#XFli_
z5oSQuKQPd}SYm7@Yqg6W{NBu-4KQ>bF(F-S2skQ9c<6>$R}27sl%i4{c;C&%!YI{3
z=Y)KG<<gDTu=lv!{Upe{Km|21SJOHtJJVfJ{e!i6&TL7OU3w7(fV0?6g^b4S8}c&!
zROo_F<@`0f*&pJ`N5t&#6t`%>te}`^m@OiIpu^yyrSmF+dxr1V_ft9al+^$RL#C(f
zf4K4^2M4mGXp_s9T|zB%98-(DdGGHt<-Y3#lN8ua&y<r|$CloNe`wHE?H#qe4EiMa
zs>{$mQ_0Li@1tG;Buxt5RrpXTAVI+Z$<14p079<+)|4JmR$jWXE({%}GZ33Q_>}or
ziZ*X+ioPz%4=$PF;oh2CxB(}fxHyU?A*Rsb^_3A&`J}${7MK44op9!gPlkCsBh-4c
zKl|)8T;2=+@T3-8WOMVaq7R`BcAH;mIra4|)z#GtASn@Y>{Al%;e~;%YBuST0WA{~
zBm0e$Q!q9)w=kC>TtI>4U^DB!`f}wOrA`_H2cV{Qjvso;xD0?%BC29%G;W(GJVJ;6
zU@6Z*B@T|3t+K&?lALtY$mP2T#jlz6C=f#t7+eizJS>x{<RcrOv;$6eqa%LQTJ2AV
z_GUv-lH|NH56zBen1SuwSGgwJ?Zfu2PPpVMLL4GkLlT39+i&pEzs0MlMnw7Cu&W#W
zp0Ag|+Uzly)&`2u=NDK}JVzIIh*YmzS20{|#r`BQ=Pu#LgaJA+DbEBg1tl}{95fg`
zB6w04?>sxAPIzr_>EPKHfmQMZGcF&pHp~Gvis_N3sEG5w8@%PvJhbwUj(WI>1(@#J
zL#CxIwLe>Ff2NX688m+DV2_eao(<;{T;6DI)a;ymdwr(R7#8OC<6?EQTDjxf!NP?V
z`#$%JKkMwE2;`>hpCfiMHaSiYX5&R`aKC&zb5G%dx%mUy4TsF6GLHs)+c=<65E0;p
z5toObd*Zeiyk0A6Q>3iiIXR&MR><K~so7sQP9G8Sxon@TQ9q5}+0>UN#}w6nLi`Vf
znST_Akn&0s`{|SDo{9ooId)2wr}5oCxuz4yGuND-*}7Sj__Y6g>^dXX&bvFZQ0b={
zEtOez`rR)qYo_Gu+2$Y$7Bp(lVjqO)e7v4l{&Ou=xJZNoSrijp97Wv1U|fjFq<7Wi
zk`M<W(FXWr&3}*1U-n%>;PV^9@KSH|wh%Ku8?drSRSbr~6mGZdrsx?M_WaqT$=sdI
zj&ev~LDD@kvZ!!BD+(IY(q>u~@L}9v9&t|1h9t6HcdU_hh+RlSWB9u00l^%^0Ji)B
zCnhm*Ba~pox8Kllf1}#8Uk*W=0m(ucjg1{PrIn~te{4E!;{o?;yrt}rI)fIZv?qP$
zRkNJx)Mu6u(dR+G<~V+O<}_b%Y-sG9szC1SVCn4{T7t1(=rNeZ-wOci?{+^-$sqo7
z^EMpNY^O9|LT~U`d8AvL!{)je=*!=7fY3C9`HYGW4hHj88B2x+-_CAC9X-X$_hVJY
zsIjGpWZA|QvUpRGb=cb!oWdUajP=3uF*s2XV1a|oQ<0{u$GPTKbN0l=<m%)UkER~G
z_@${0s((jKNUrh^%fkQXy&G#gqA2G%CuBD`8-XMjLx#qO>uv@M$G5AA=8iq+5*^V|
zw43efi^Gwky1%p8Tn4B83C=#BnNgon*P_>G+6xaA2>z1RLYD1>d}#AB+VSuPk0y6h
zSWK?o{tlMd-ew+vL+n0RM{<81WCK)uN>8@$c)uk?t}I)QR%=}+6M4nJSZOnL!#|Gq
zI6#!>f1iB8#*7zBKiMUI1Oo|_?hNeDcjhU&^23-^44U%}PNlQi8$faE!|BSG1Wo?L
zc7;%vXE14#(D#iOmjQ>cU#jc$Ki+<3!ce3(r1cBw{C5md9ULS<4_GPkEGRKj6uxr4
zll~p17NkTsKWKr}jp_MU@))*;lXZxxNQ^=wVZ$t^6!uFY?wYrmyt<^I?mb3gbZ&=n
zju@3}FKq+XwF-IU#L*Y~+RyDj8`;Fs#e+k3aGgAdEgpB2gF?s<0ezpWJmF1wPECbY
z8#2=Qvw-j<?NUd%^O9$UmSxuC`VK5u)y{f<o$m(A${^qs9&cLdD<xtIl7i@W5Wp-%
zOXGY0rS(XDiV3M*XH}(spdskn?Q041i8Nn2Nhh_2NlN6eJ+Vg#qRZb#b=(dR2cxyn
zfH@^Skp7FGdHRSzoFgH#sKflLb;XzV41<4I@1F-7A9pUJoWp$jGd$|m@wP3RbV(Do
zEaj<s#pTQJW9Pi0vl2iJzei?pasGYfQ2RhZUM#dG_gSWBXzXKv%ZWQ4iQV10^`8L)
z4glN@jsH~W_qrl=x!d<5<YH{+BUs9!0-aLjK<oVFSY&gC5={!z(2#<SI)91o#V_w-
zO1|l4i>R%~NpiFG2EKr&3$j!a@X_dA;%(_R+LmNhfx5IZq`MGmquDHTDiqop*60Ce
zQSY=U|I+sIZ>xCV<_D)U&|aT9v6ae!6Qvg8yvtSbp5XbZ0Hi^eiGz~lN_Zf82eXt2
z@oJDys^6jX?bVb?lhErJDVC!ixL>ow*x?T=OrY!BP_E&EhiNHWJ@peJ$6PMAZaF-B
z{^X0X7WyasQH6)T^<ghiT8<lLg}04ccm;<P$KMTy7^PW&2AMy(T(rE|iRayF%BWF)
zmx)P8)LrLJ?&U=qEc(k_H03cooJ89d#7aByfW3S;PKz4uQiRm<s@ZU8B4#G0yZ@-L
z@ZlbYmv^*OME5&NBp`VF^sbfmfzbAF>Wd(FLN2$UT?nN|>ILl03Qug{lPBBHz4k;f
zBYJ$Gb{MAf?0=5@`hvS-$@M@XEy&t&Tds8j@k+nz#j8ktw*TP>c)oxOJ3+k+CBTHe
zVW)K7`eJqU+*5CtbM<Kf;y)(?18k<|;GSF4T%{*4j49%Df(;b%SXk6ue9R?SlOyK*
z&t3qNm9&c6qsjz1I@%S$KhiZ6j~NWBPN(_r9-i~)x{F*Aikg}vOGA^b!yEvu^-!4o
z=chh&r(eIEGMP>ZKW>TRa-sk41>hV1Q}X(Ex6gy_s9`RoIZ8NLT~CuG%!3vd_H^fc
zOm~FX>`7T_AMw6H{vV77#^-wvAK_e|Y>sw37jmn`j4TO7Wpb(7r&TQ~0b#80?2PXU
zm8f4a$i@OtCv^laPS5t%)^%)7?sL>oiH;6(EUa&heDPnYF#q#Q;1D?%)J8<@oC{WO
ztNLrmB9UYE8aG^B6{Kl<UId_{I5@1?G^uLkLj{E~nS3#DKJj>F8w&oh?1)_d{`QCW
zCCsHGU!lRpQJ8}2eNX<cX?lfYePSsN%Oy5~c~er5n68JwL@5>&<Nu$30XR9A7+fZc
zHEr&IrG=!w3rS+@7z;elPsW3qn7F)w%DURgtMp|U36|Jm+{f{Uy9qFEAngD*#ziT5
z!qZYnHhhCns`4Z&=gx6YqTiidHZXcDmO4SUt(4_OIEHya!w0+N&l`N~4YuzL4WuVJ
znjU8D4`&A~IMedFkt{DH)ZOl9E!YT&S<@PB$^{KHOw5MzHqyb&hJ{okVxWf(>r`7Q
z5fD0UWMj%z(FA4g(IEvY@90uSi)~jh%@@32&Q4XNUGCCL&G5^5`3Qb!^A$GxeUS*f
zcsO#loWXP3AmabL1%U6+z@w~Iru9-*ySQ@JLs+XUm7%syJ<?J3N8HIXKIN-tFKOeN
ztM0;@t9BR4Z6=ew(DxT6mh$c=J*ti8{U?s=T%i4ysV7nU^G(*KrbDi7Iy!efsutgp
z$sNWxiG+oX2Y<XvRk$<KGdDM%ef%h#n9H-}rdD^gJ0XtB#%wP1Ah}{s+l&=oMTNS0
zAA=WK=riZyI%?ppjmLW;aQ1(1jjP%K(E{eY>CaSo$1OpRY?!#z)+j$vy6r*;1hFL=
z1=f1nrmS^!{xjk^P3OJRlu@T7taBqHp5ueP$4AF%cXe4=S<d4<M)zfJwzkZbspL_g
zJiStqpO|a-n@+$!k-`7GLO4J)*Q`uWc*8*aEzW(L1<m7s0q*}iV4oE}UQU{fp_v&v
zLE86C7FTj%&z6_x378;Ylm^=+=lHp|TV@6?K%!1H?YaP#G0ZhN$zk(IfFy%=(TnF4
zg<s=X)3ixZf%@L=d2xXZ98Bo7ZEax|#+MZL|L1v>_rO1f)%YtuX6xw-I4yVLexwYy
zw3&1@j9uVGBjY4AGLFtN*dC~Ca<(hrx_4p+m8xSd)ZeF(tP}Bi(*GSMBNJ}rDsS4x
zz(<9FywKLHeq1Kq+`>W!Cp(=g$4I|g4Z3ZFU-9L*&xp7Z4(ZF2s$H7B8|(d?tbgFb
zqN8IObZfU-d|%>+0={znPPQmLW%)FweJwuh;KZzs_E)LnVR$g^9gK;<r9iv+(0CO}
z+REE<-fe(>aCA;hDX5mTqpYX!xhxy6?sgH}qvElfk9;}wau3L_!e{X=%MO?g*;FRI
zLc@P+x$zUu3+@#S&E+}6>>uJzEe%cQ%{jY290sZe4!l7g4MwxNhfe~Hjk9ju#Y2eM
zKE!mTK)bx2C!FD(79=m<c>G0G#sYMFreDLJ+r+6DUxY+I!ZHo0RprA^&gEL_vkqQ-
z>wW?7YefqBs;mGaV+zJGB5gfw!VemnTbDfZ$408Wsp_;bjk8_8|FBv%?78sGQ5*bk
z(ijDzF%^&nX^<|M@&L&m6C+;m=O5Nm5+4iPgwVzOJV(@2ZvO^+``;5#_|}ZynKw;#
zrpb-NuK(6zaGE|Wr>JPaJsA!5)Q^;9`*Mc_$8qOnozt-x14BQ}Xmfr+0lW`dB0CAE
zqv7!9%j@$U6<TaEv2Yu&+o<fpf#h?8fQTh+p1X?5%4B|niP4Ia4mY@8tGSDR*Zx{v
z8;sVCH_ruoml$pa#r9Z2=H|@yZA0w>g)iCdcb3UIw_H6jbDI|1ez>6&>(rOJwxB0+
z6yhR3Y84MHEL<7KwcHB_P~DD`Tyw&z+W5^>GV#==6uFsQ9>q^^-mr*U-uk*aO;rZ6
zju5pKTW8BfX48-Ni}zFR2SbW52{|`z=Nob)q-)=6XY`F(lm06R4Y-;f`Amt2s}<i`
z{SDbfI^WGJ$WcGto{>K^`I%Q4&h0Dr3e5B1K~ulL<X22v_Zp-3ATC$K-cRXOY&Yon
zWO&=aH#P*3XXoTKXtwFwqdJ`y%E&Bkrlc0}2e;7V<NR&PX|w2JT0at|fpcS^HoBJu
zwaw_C(VrS{plHlrID{!>*XYE?#(V*BM69T2Cy50^)h=xj?{49IT9-vmh%Qzo?Ik1>
z;s%Jw+)pdsa1`ej60!cg57BUNus=FEan#ZT$rru|SEtF$ZtyVIx_YjuS(Hb`Y*-P!
zYl{$1f5(J>zy1@^v?6Wpdxuj^x^|r=$KhXhx6cT9p$hkTe_e0w>(LQWFykxA&E@mB
z`%RMQ?ci+x$j8mW*#DgP;0<M#7x2M>x1j7Q?&@dv&ri3VvfsbO>3%fV_uM+su%MG>
zk`M3LOyTx=AC+Hg-OmIZZoQ+ebA1&JY49+)6fP4>%bWhGVc1Z)c=eaIj1?;RQ1D66
z;~+qS@AOiOiwBE{pr@jL2KQuYyp`>5vohpuX1?l$d{@s^57EtFz?5E7e_~UZ#?HUo
z*>m#;{U2V@r*r})+80m1om~$E2vSCNp&~}L<P_v~)8sL8Ed60yjkCQ>#qi7!qJ9Ka
zK|U*^Y}O}T{&G0|WtElh8%xS7;e5)1o<gvQ?o}4!0R}p{$yM{O6qvA_++4-SoC_ax
z8RN3EvQGC$>tFXL^VP9;`-zaQ;bIS5+eIopv1HG$%Mv5Utkki`HR&AB_XdsAVH!p6
z-#)D&{x`39c#vR!2XudCX69;k4k<L(<cOTkw9Yr`%`W{E^x~UmF&UIk;$5D*42H0p
z@Mg&mSEE(Lk?Q?x&1NrMb9FNKy%J)RhwJZuis?og!c0jvn(Z$~ZjsRMtL)0bOJ6;j
zeX={h?ZAap=cia$(4|%N1omnrp0@!hCm%~%`tXpx0#m3%>Ow*FOH5!2{K*UL?@}2~
zyq~K6HYcRZQbxtSS0UIkyS+X_{sQTPP`vch<hA8PKaf<a?CUFjcAuXWD^D4vE^~EX
z{ZfhoJ5KfGhPl`3@d2HR23<tYlNo%HpB=2@<GuN`bQYHh=JYqGH#<xM(Ij-P8PNu~
zF@svd`{5mbZw}JS(}g{E8WSfO`x9@ywzs1s$fc!^8yar>DZ;TZM_H2DbfD~#64OI@
zI%Ds9E18pBu&dMVNNo)1?o55N!=!EPhi4#6(rWb}6&4X6V`OFZ1Xh1{$Fen1nWHti
zH`n04c@wWEyzTp3g*MYJ^6Grs;i|8eNAWz*!u;wq)byKQWu>alT|T_P;6PwtC<2U*
zPFg^hMD<Fsx=6d;bNNp#qzvejO88^^2S<LRho$E{U;O*xtAFO@T`BWK6FMJz$<yXX
z?^&-#yvj>vECtQ;E7-VCx|KZK>k|zu<S%(PW8vv(X?Zmn1z>BqNt#7en;awNv(tHn
zao5ZI;cDI3T?|ZEVN=kbtqvk8om*0s$$ss_btrl=z3oI>9Adoh6#<p*sy(jJ)jQ`u
z4X44AJDL^7>z{S+`JK3=axF(0L^O>TK+$!fp4?6n50uGQXvQqt^nTAdY1A^|$L?@B
zQ*7yBdJcVzm-w(Kb+ei|JDL9HZr|fU-g9)0pdWam&2baAzO0s05Y(9gmAK+W4N&L*
zF(~wY9<2*~5Ca-$kR10myc74SC>~yXVs*o<R1UPr9}rH|Y=7!5>(t*KtcHkAq^hhu
z>k8<Y$gpwMam>JzzlF2wj2|p1*hu6DcYe&JyuVRWS3gP1aa~{Vvcwsk?^o55&iC?J
zJW5f^G~uNKmba3P?4Lu7ygJ8=8VJ|t{oVaqm5{r3_OsVBnzF6C&zJc|SeQAi7Bp2=
ziBi6^>YrSEpAv^*ETmtj*IW?QpHHYv&V_q#Og6PH^0*-U>Q9W+t_xTU_wF)eR$<Wi
z`bC}*=i|q*8`R>`@Qg_tDMa+N;twtCZ(mzoMlFuS=t<MOf?))<2{3A!8L!oDO@@ZX
zk#It;a|7MYYKxJfxE*aBNRLk6RGxsUcp($Lry}de15Rb>aIHuef!l^Aa$Lp_^Y!}@
zD-?^~%^%nIgh{BFOt<F-FSBBaC(d@~8hHACG;*FB5l(k9^^Ht)&NOKUFnWcj@J?zr
z{H!yc`r7>|b$O3JDS_}$+8<2Z!J(5AbdtvqsPm>pnNWcVyt8#`Y}lv#NgJ!{s>gn!
zQCWk<IXBhMS49O18=YC6HrJ?>+3WC1$=oC3J-*@`Ok%!hmWXfFFZj-}x9+xr>&3xL
z!v@ql2<Y4QxbZUFo`3y69O_mgHo7t0O*FcWZ<qSkpYP#cK#NA&R-yfL#zXjga>CI4
z^Hd3`OwW>M@WA6j9;;tSda~xI=q4b*pncIA9{gjjVcK%yHwkoMxBP8lGKE#|hXVD7
znv3k79$E{!-p9x5?2cCorB!7=F8ZfV2{?*%s$0g|T(6=f6RWFUa@g6~&D45rkE{uh
zaJm8)t7XA6ph8QqH`<O}G#N<79fn+ff&~W_w)xZZ_fAfg9o4pIeSI>ww=<#wUoQ^>
zxNMrXch@dE_nQl^oaQ?gt4%G;oOWm2M!wj=me#kAXA@L`+@RzrjtwkjbuGauQv&Me
zCxojk0T1@GL`lrR=yt=R3$xO?4ywtqp`nQHkqe&bJ?Whyo$_D5%fN?cLzaAxZ~CeY
zhe~V+cP+)kUXHmg=Zz=o>#yM6avlSCJ{pS6T!?0aBN&O}hTz>>ZKD8c+4TtlpVw9m
zWqO@wf}59~{m~K1(;)ua2G*J_NxMiV-n#@R$a22Q<23KeX64ufos(;-y{!YC=xuj@
z`}D*_*>pdL^+Hi*AznFjEv3y+>`|P$>wDu1@1<(Ppj&D^72)md{Qkb3aq!Z6B-|l8
zu>D)FnoVf@o8HdeLIcxR-k~?mU;JEC>fIN+2R^@pc9UPPxV6O7xdcnmfh89I^KF@I
zMFPHpBCg{>Z7Qu}7PY;BB<An=EnJ>|jfHwxtYkyKmcXdA9AK^xP^(__g$Ctue^SUO
z&Yx};f0HEUbwh5TzBmB0y?*znzdoEoDZV*QSwtNMdk~RM9tBC!kqC4HV0{v68g62H
zME9Eb;DUSf_oAYXt<l29`Y5OE>)(b$wOfSaUX?P8P`L_N^#j_yK3AQO)@kd@mgzHF
z7nc$iDCs%hAu4?H9YuuS3G;^uns=!zlPt-&pc;C%v0<X0Ga9j3zVrEbGA%o7Z(c#v
zDmR6RAWF`mf~}eO#UxuBl8%K=5vMo*5m+5T447|BFOJK%ib5kx$10i&QlyS<@h$=i
z1~|b~1!5lPLD#0HmF^G`7f{|0G>SG0p;Q=8h9SFLEdKziYykE$x%S{<^U%qCwg&{r
zmrPQPA1uXB_JvGOkfod^fOa;^=<hA7hs^)4h24^iiH&#J+iLur#_U2xV1Qu7_AEcC
zzO@X^Bd(t~U264Lx5X~+4j`#a*a%bsy=4{Qt?{7nBP*h8WjRX7t3=!y1mtQ{>Alm%
zw|jx{Rj}P!|3Fd8mRuW4z~jKYVPb6d+t_TeekdL~x#Z-6iA-0>*cT3@r3>S^@6m1I
zuwNgC%2P5=wy}nX+R3gpdVIXSU_ZsHOWJCXKrh!WCXR+TCUC70l$a>}Fm*a-$>MXz
zI6b)AwNM)fCxZCWBz0g1E9eg2u=Mvqhk87dNfSktLD>!`Xlkl(R*o$!>`Uo~iiTF_
zb)0hX{W{PNy-0_9eQOK#)Qei3r^-e$#N#EF7tc|L(Kv6J?9+**p}YC%K_zZyWHa?6
z^4HFPdJj44oHw!ER_u3tdC>R8?;0$h_$iTm+aJ#tAA<@lhFxqZsM;8H>m<gHflPp2
ztLzQM;qZLdw&Wo?!BxAbQV6Qn^;-q%pQjrgTFMta{a4l_#rZfarp5Eb73e2?-iG2)
zSn42{>Cd!qQ&X~yw!|xpvz-NA_pyjU(qi<SoEpQPidshE*R5hQO)dgrl_laA5quu#
z0nU4)<<R6%hm}l1rPFnCgk0lp5(1@cy!LHb<5cVSPCgGbCp&avmb=-!I9XVoBS}P5
zlv=ZH>T}U{3bkT!_iN|rI;+Xea@<C*de>{`KzY|R&E@vsv?hd(i^tCQ7M*wg4bJ;q
zgcxJ3quIybjPhSFk*J9YxUw2vh~S1tY%bn^kArk`G%s%4_NHu%r?{`2_9pIEb5USJ
zQaT6LL__L&NuNmoJppcEptH5RoAK04GgyF8QvUjM6O<)bD{GRt9}BpB%hU9xJF*^$
z8r#p3zmOMTW5s9V9Ey{nl+HX=Rw$mWndjjA-O||VQXa?NmZh9*j7rQkJ~z-TJ*Y>M
z3!TdU1)2>{Uo!m_Oftlf#IsvcSeJV;kL5}A-!nM9<<>!+nwf~+N&>~@+YWVZL~j<O
zg_Vn}agV(}m1jiPe6qba3C&GoQw1P@mqks-Vnj(%wf^>3En|yL@86J2B^n-dU2|qu
zS9{H~6)HRfM5j>&6B0g;U|5Oe+0-5pG_%X)4v3s`xnHcV2Tpf!Dm(|&Wzpnvn(Kob
zGZn~zt_k5m!U)6)O?Wu`7Jq)No>;2h!+%onTz0RBiC+dHVLZnfum}gYbd^-|r>rN%
zI2>;#dvq^7P7A*ktT9t%8B=5!67#tPcj5xjKisdx%x`qqTIb2bqsxpb5KC2KcyF%s
zY5fOPWtSb#jC@}spy@Yu0qlso()EhcPXj@<D*!s}Owu?vG*;SB_IKYG_u2{FoDk-2
zaqEe;uIftF47>mdJ3E0W)xETNxC1ZW*0^*En-rO>H{#6p572P~y>|7=ReuWq$z6K%
zSjYz$r`w@3Xh%NdkwI6EDBP}B?y?L5ZG-dk(=&skc3a;UuIlCzxcS4GEH@kS@^X2+
zUzgdO{{%`z6J93Q1I`yZB=>)g3SVLd0&)KLf27j|iRt5m0wLAx95Z$21zQ)^ixB_V
zqF4LeA-;J*`TZPF;7BRp#6-8|hiO-mMgqhFPTc#dwGF7+k(l&^NmA$TySJ*wy~pof
zFGDxA!<$PR1VX}jwd%-;ChW;Kw6HhhPm1(Z#s!`dQ9GJmMCHoCV3Tk1Dw#5;Med^b
zs4zoA(Kb(9z9+{DzS`I_t@bXp(AO6+cTjlmn_rYQ(YK@nQvAfVu6=j1s$$=_Dx`;Q
zZf`0rn)*Q!lu@A}s0rHl%1cWU!yK;nWt*GNiIPf|je>=QXPRr@<TR4R&s8MF<>zCm
zDW@}_oH{!FAl%`PYvBLMFzc+PnXnjMH&*X*{z9M_aue2ykBs-ano3R;zPhbQtBn5+
zV&JQ+W-GUgWy6Ves;jC(>afsY%<+~tU-tb`_dKAr5k>ZZM$_ryycp?TT0<t1`REuR
zf(!cP<4hI4O9-+V*9TsMzj)m&vwgj8SvtP7MKdHqx7WpJ+upNEIy!JLNlBW-s+&fa
zNfI?iB1st;F3;6y+Ts*7tCu{+Q}eU9Q}ky=d`PN^`*RLmV`J2J!~JO6YC4V1(xj19
z&^I*#8p9(b^c6<!+EVM*s#M=A4mS=iHa;${{?XCGH9Ab1P%&w@1RWinmY<_w9Rwzk
zInpkzhIDa#Q{mZPie+*iEd1kw+-b2TN~>z0h*e)oB0^Upf&_L`wYg7JkItmUYB5@8
z^hA<Ixk>BiQ$tijb`8?Vy{Rf=U{N@Ra0<S}k;!J67>1_sb}kImxwxu}imIl(TY2(m
zs@gy}PVU_b)nI4?xM}DHD*@rR6U9mEO+*Be<bS>gmWzb$MUZrK$p1KNtyb>jp3;JL
z7eC(ZX>c*wqe$rxrH|2r9ueJyfQ{V&SZd7T-DE$bfNaN`q2#bCV{GQj!zd`^wHMGb
zqq<O8fB@&QkRJ)$#PK5bb|orm27VXylVgXHp&gCkVbYtkd|hn{;^NW<68m95fu6VK
z?>_U1e;@(>N7yG~uFH1VM-wAvXIqzNiDm%%ncv?JDNYFa2;;;>KL=aNP2X=7-ErBa
zex*igM%>^`poYrHFZG1xcD?3y36u_;%TZ2UCP$aq>sOehdPGSjiy7f8amc17D@{xU
zQY9Y2NK044=d+Q{p0aV6aX-=CJ|)AJw4U>tJJ{bWpJUq30LhzP^^b}89nuefZ`4F9
zBGlWDbFt%y0p+=Y?mhuf{hG+V{Fsy7Z~T_;hgF$93f$5{`YNP|P-j0r4fcx?7Xz+w
zwr5f884l{GUPQ7|=_Ki~19Sj&Dy@uwB}`<)!87i5Iunzeb@l52Lz<-(mtsu@k)dlc
z2COJ=FVSHH_0Z;FDKYbXu$*z@1Q&O8iaar<VA0!D?R}!fg+7d=rk*oZ71L}*2c4QP
zG&TN~Z~g@#4T}6-jmy!QbNfD5a?^Fmqfsjg82#7s^X3;W+upanp;TtICPn<5?)+P0
zYa2CG@p;IW_F_fmm1OICADR<^{t))-v_23V=ZJvK2Kp9Te?L|@_gihTXuXJ!*M2Wd
zh7rl9YlAA(VGi1QFPpS<HQ$DGxLIi8wd81M1fj`S%59b3jH>B`sz-ykS@6#QeeX{Z
zighC|^wLD=3vL~PPZ_(GZP#+;cFxGl%#skxg+_kf+nb7y&9$sXJYewxz4ur02Q^Ko
z#cEr8oYi_;)=cyh>2Yes>*qI0!o{88AE(~@%?fQee+g3GK1Y(ptI$r6UcL0zVb?u{
z^oM-D`UR_j*JNvZ6JD@5S?_~v=tJvqwB0dx1J8nG&?E?ImFD9;I5=6O*<na9%t-3E
zUb_6ezJA%i1IbzL94pffPeZx&FMtX9jrGY;?kHqR<AM{_&CIf9&vxON8Xv#89Z94s
zjNk<}7moGoa|1Hcy7mqV|3{b5?36k<>p@XzIHo^3fgoiRQ*t4?IqJrw!^9kg07Eho
zfKElKfuX7hqukkSb)nikj5SfM{Q7Y}dNb3^#r4@pnLWS!(&q9=iRWsL898QYUY+}9
z+H@ABSYdYU$K@WzB;87*de2KS4Y%6l<f2$gm)$xB(p1y2E_7b&-_Y?+!!}3y1^jY(
z-_Bbyq!CjU*p$Q4)MvLvXXGa^7)ZGC+(B&;1U@S4@J@jekElEnQr%Y{>h!&Yxud8;
zesJ4igAhlj)T-F(>*B>66)9Vf#ntGO+W>h##A^~>d+wUXMc~VV{Y<L9UO?y!mhSD7
z4TXEP?Y6h&q_sW>#k0E#GTjUTlzgfeHxZ|s)kxRX3^g?^%iElNKT!5Qb*%AgUz_+V
zhL&i{#+k>+pvu;unY<JbGpk#L1av}q`3_UewY-~~4p_qTZDR!k?}|^Q8K`NuiQX^L
zbW7;gm(+Y<qt8i}yEP2Gs!MS4gnIz6?IH~T{iH(IDm260BuEV;eyO$3p0D^jsyWro
zRUEhNA_W3OzfEkA3?&}H2CJh2nC(bPt~ZAinpT#rfa#1FVlnX#*V-{8Qmho??hJeR
zIODpP6*>a;ehm#}h&pV)^}Qq4W3q$$laK<R(3~=4<XN~qdX?j#juz0=z4X9fJ6Yqw
z8$^MC8ds1SFdg%X)}A9jVw3Z_W#va$92;@V1kM{<9f~Y=BDI|5AzYleY?HM?ou*SG
z7QzRAg`Qn)ZmM-_Pe*7SWo6oF`eKjUSAI@e#<%n#$+48dA=uL7DbrICwSGpIOg*xw
ziTstJ8-Jv;6;%ck!KwuV6$RhmV5^)sq}7<0fJ>A@8AazgZw2SmukVO<2!iRtzcKIg
zNp0h7<#MAdr>tGq%)orWR4yTAk@K(zUxz_n@O2bQ5N%(m6M`4vi>K}7Khi4tKI<fT
z!F;6LP8-T&3P1*);|I;~XF6XvIw<-E9@2THFDZ)7{*n|j$2ht5Y&pJSZ;Xc`jfkic
zosgL8?|gObQ-11YQ#YZ@MFB|uYmF-<=Djfis@jUc`-Q-zIDB(_9+p>U$k{0ZbncUA
z9$!XJPwZgNP9i~usP$k|x+gyg_*Tq>QBc^N!pw2VDWkgApTK;CvRpmtn|Iump~$?#
z!b;oaf_R76*q9j6FD^-Z7EoSOa*^OGg_RQ3<}&=PEzg!~nb?8lF%CR~HyfDo*sw1`
z%b^4=pSeYH_6mfA;Z^8v%FJ6syXx(0KhS?;<*iA6<GosJ0omYA_4kZe_GFZLU7wiJ
zq#K{-Ygj(p?rLd<EzQ-^DQ67^H)$<~f85>56pGx)HnISNkMjxEb7=3*w_m?Vvr+PN
z-FK>!ug)o%#Ujr<oAE>4SqlQ87g^mcrwcwzMMZ_n!=<W>b$_;AOXn^auRM-kr>bgM
z!&=Vz-PWiHaGB+8Ai`Wd>e%J7mj^Sb<gKje3GgRsIcG`u?1*9CzKwD>63+XA9K4qt
z1$wisodZE4f8LTILQ7O~?L8oXLy+glTj-W3fxEsgcJjd5iJ`dLGbbai{{@#NV$?gW
zYFDYKe02ov{{DJ7AZPL7Bl4Wnv3S*?x~?*Lgmzk~O5-rjm1iYs!}^KWc`r64KsZ1U
z9j1PH4d?2irD$97wwHnW*^!f5xyq)-<+xKrN0e7XEl>X*R3ntSgd!3Ol7kEPxA$IQ
zONS-ZvsK7vQ&PBD+@gkU9I*XR6TWu7@>-WvCgU4#j0HM92_u!KwbM~s&W>rAA9w$B
zKZ0Kd-a;Ut>DQMqV)he~B*#<{c4hTQZrE)wx0*W_3rJqEG&!8-C}#8P?PDw`TH)X}
zaRo6m7=e&Tnjkgs@8?l>@DSa;9}qsVF*NKN_<<P{GkN}EcQ%d~L&E4yYMPSWb=A~j
zO2X+4%eGi*e&O?|h}7)#)T=JmpGp#;0p&o+bKqE2@n#$W#vWCqFeBQY;aaPX0E>jl
za0B2t9)W3Q#-vM^5er`YG}DKjK7eX7c7E<B0%7`A4A*>Ycb@^Qw#X!1OX~vZ|FYUR
zI)|(%EGT`!;zlw*ooxl%r^#$VTKZh%1IL<c>PiqPy=~B6A<JyZ)XOhjg@57hD*URq
zR%E{>UGG!F1zfvZ+3K*Ag2X3@7DieU)Fj~&w5;1iY{I&s4Z<J8SZrjRUuU3ZfuxDQ
z$H4<WEy6Eb-c7k8w1_8`ovf=8+}$~Nt)8+(P7bo}AyIix3+d2D<|I%k=SHXcUgzC8
z?P1TA{5^PmyDyep@3yNVYBavb7qA^5i92D#h!JSYG)wk&6E#)6U`vfOt{0DWhGzg<
zaC5lPVXV+Wv3g)WlsDVl0}~4(AaOch&U6SMD^8id>fG{=0nUkP%PTg9%Y`|v(RHQ|
zippA(Qlop|gL;ulG=tkjo#(-26W#R5+BKX}Ght5Igt6)yrLWuy$|L+Ob3^9%K`aF`
zR#=2&W=DsA-ir`f)Gc$j`}yUGkv}ujniLcQYb6?*nsZ(}9Dj{@O)sGJ)sGg|#y=9(
z4z_;NaWr>toaf;JD9`2N;=dVvy-XEltOzg%mX)+WBmQfW-Daw)r{VqUgUR?y>umNn
z=Xqg(_<D7Y+;pDPBwCRaBWbA*z;f_D7po@V70v9pG{o$l5?t52QC6Kyb%KZ)81q9U
zB|MU~SfQ(u%yMybXajG=5Q~Q{s%ztss`Ov2^FO<VvRbrCvP8P#S_m*;TXH}NTD*Hq
zip}SJ)HfxVJ*^avzZn~?YP8k>gEa{{-YfPb(y-RAWQn;y7BvE0<%1)HUc0(pZ^myJ
zp&lSf7lUQ3jgVV8q>oO2fViR$HXPTT^2{o#dS=Ey6CkGdlu_b*GUoOh7F!p<j0eDO
zudv%GGxFI>-@N@AB&j3{z;50$<DCHP_FiSY>D+Cc{(tdIf!KN=^y~q)g{6O$o_U-J
z$zjI!?(DEtV6Ti(X&4>0>2>?MAiT;@T1?`!%gr|4>?24E!P?p+<dd+U;rEr4UELsl
zD`(>{WHt+rO5xDBqo!fuW@O-IlucEbIP?P{vs&BZu=qMnb08xr%fo@K+8aq~I63Qd
zm+$-^*4{F#s<my~9)L<o2ojPi2#AEVG$PX7jkL6MGe87HT1pzELAqO7K)M^HySu&%
z*Sg=kp6_}8yxTT^Earmg9AnNguJbz2<Jb=Z-?Lc8)Lw8A?Xs2#3`aEgFO@+;(l29T
z!h&PMdICOoj%4y$^4^f$dYY+rSNFND%y_-`wBd;UEJa&fUQ&8{CFA&z`*Y7R!xy#R
zGB@YaZKHYhJXt%<zEa%Vi+rzF{95NB3m%?7@O|;oonsCyGvUOnxU0+ezYv-fs3m<(
zzqg+`F(DUBif3S0mtOKI63=Aic}6wYoi1#*7PYL`@<ktnQxF9d6-(3lL)H(89eJj-
zwq{^g8f=vApOWh0zr@5RIuw@i8NXN<ynSP4*1e1leIIGdsr|~lHq#98Z<iP|aB+_w
zJ8um<S!im_?Fn{>W}JOzZ#^(D;>NiW*i*Hy0*2?9al_&!TJf95Tio&*?F#dS73R~1
zh8F$w-$2|AeVC|h8C9k8`mj@0?x=+&`5a74*w-`J93-Cdu~iR}p4>ORt@CiKYCSpI
zUoQN9TQF()<#yexJBN=-pIevZ2Fzy<5_nIZkB*FJ*H|0xXXrrR+uQZK%C%nk9T*m=
ziUcPf9qpcAWhmh*DGj51Xo5l3ov36CyUBg%e-?hipvqJ&HQ)TaxNhXm!NgJUZg_&e
zn<`7)0{9gasDoVyiD6(_WP3({DByG~J!s58#$GAonKasuyS&V(j_24=ABG+yI8&jo
z?`P?4)T43K?whomnz=@E?;gI>Y8w(%SjM_axN^Fmfh2hce39HZ>dP`1K+o4|()Flq
z8g4JMzc|{|Jg{d~yIU>E!0)mZC7-f@`T;oWSQDXiW9n<(b_PbZngF54z~oL9^tLEk
zHYC`?HCU^EcmRSpMAnt_O9%?a(@ix1=4JfR_tbHDpmqqm#~q^ibujC3(b#BneO9T-
zx0G>GkUR!30H^D7xADF6Wohml+%<u}So;d60}_DiVN~-S7xk!&I~L!P3f5}Z#`}+7
zYMRdHR1(C|MTypGZeH+^5*Iw!Sg$r&?)bR@<nbFzZ^xa&S1RwP3$7X%>lzxNKx94a
zagGVGHNShwGcepk_H)z#1nwV}x_>(A{wXeo|4`s+Y%j&e8eIEk{TQxrA2cg1S8}P>
z4Q8g&FF$g@Dq|DJ*fQgH$XRLIxhF|Lz#NiE^6fN+O_&P%`)u>o?>tp>TrDSyY8s*#
zNmIh#vcu$QzqEYhQ5jteP+EV34I|#LeJl|P91@*chyA@{gpP{ITR8p4eVb>t&0pXa
z;~Yov&fMFN!?IH_BZX6Be}Iy;9N#xDFn>&Z1bUN}X=t8&`H-(!bbB~jTiPQ#I}A9!
zjfAVSd-r$}@=(ba`MiIyKkh5VTSP55mf?I^zJVp+H10+bo3(hyfJ&?&q4q^=*8HWt
zM+8a`mZ^ptOE%w3t;6)B-%}jLr|7VP!EG5zw%1lkqMH9y20C$nnn?R58Fs08#UpXV
zqoJ&n?#5~Nta0GIxrtbLA?4~?eJ>-zG3jLN-^$P*=iu{9lQ$98=7gNM>nC3&s(UST
z`)F@gD=I5>`~hi;+8RqGa2ZYwJ>b`@cY6gOO_Aa_{_qfApVf6D{}K6%a)WWAba~+U
z{P+hcC+gm}(G(cCtmTR+kI^Ch5E}&T_@{E$@l5k|*TyP-Bnm&9iLBZ^-fRy}8t(7M
z#N3-LIo??e5D5yp>vqxPi?t3fO)Y-?`uWt>IFOX3G@aE)u>at}zP=v$;9FJ&g?YBz
zC{+zu1N!cRt`beBL4hA285mS<rIAat|NC@*D!przDwB_miTy&ir@{+ia}8a&J??1p
zVg;GWrs^^6UTslWW5q1vJ4ahGeg{G*kc^{F#c34b(goprZ^MPd#sVjXJ)14dpoPXr
z;TOp&O+J&(_|gMODf%F3()YnhFC34LfKm*0m_M32?OIWc1)=k-g~uB)3hJG?L794%
z+8(lRZ$*kf!tpOJA8GieI=A*41>*D2b#<_Euqnj#Z}E6Jt#VzQW)|INq>z=Loxo+G
zZR+ByNlVOb{yk*hD2qWkib2PAZRj?l*WBuAwc$Pydu|K@;)K)3+51H7&mTQivbQjR
z&Gb3#WVeA86B!B<<uN(C0HB2^aYK*|z+I82RMu4Kb~u8C4tI3HDQ&vFalD58GG<9U
z)zVbqBvaf%+Pqs^>ae#R%ihd4=Puhlv`WpxY+RA<1WvWGi{rc+4vTR$Ev@ypRxFMq
z3m+2!QfIK?yt3arQ-&-&B7UT76y9-Wq3(@mLV)il$2hk{f{eG;v<gE*FIk~fc_sJa
z{F&gq>_w~%JTwTj&qR8s)w#@AYnhm{1XJ8fy7!57MmyEXbP}398Up6p(p?U_n{nT%
z-WBY6T3$Nu=9Lvx*5CHoE#a0RQ;@JpcBYsVeNwj`Yc@@aD3}nUTD(AoC!Dm)j+$G*
zU;S)TV~fY~>z(TBACL`t3ixF{Uyo1iN-ueY=(RZ1V_0n$%PlbqBvfMKh|?ccTQ8Nq
z0}C7g50Hr(FD}=ur_Y@yX?1HIeP8zuyyJ2cV#8MZQN}s(_^aYW><ZforTOOtLVRR>
z6rTNA?(6;m#~T)s@vz0Z<1c4RYdg1z(2sMOF{f&ruj`sG$fyizX|gwPmn0ry=g&$R
zl&sWml^b6<|G-6=CZ*Tf=srrS#@kpoH%i0Bi;E4{8NjZRU4BkceS#?9qWscESo?Yl
z0Ym?Nv6>w}R!xNw{e7_>E%=8na|@2itmPHp;Vvwm=b%HwQm~zBs9$2R@T>P0+0FQj
z{0578cbUZjVlhiPoPa-qK$zK&_crvTK){LWOF#GL@7atECo_`HN1PA)1sEQ!m8Cjz
z4(UDmF>!q;h6$BtOaKSxe6P;#?41|bXC&?kfY*kAM8e1&Nb@!*L+fA{eX`~pi`Wc3
z9Vg48(gqLhHOyRf(anAj(JQpWptg$H`z5@c0JxIOF|}f7;K|112Ioa}HM!Q|p_8=y
zx6W<|z}d^p5-dp-E}CXFGTeam?z;w&<Hy^GDNDq-m-nM1OiWB=X{<O83>Wbx)MKS`
zRI(M7m6gp*tarUnceey^2Cw}CNx3VD16nKZ;i;&>TF2dmiK_G~wxch;d+~KZ$kW|H
zccBLlitAi&QHU^YZg%J~P1Vz5Vx*U`s$Nl(&4qU1EnBq=?S4SeKI*>nLY`%BUZKQ|
zcjLgmaxt<DYkn}V8>3e9TR4l2lAJGB;@r<+zn6T$OH?ixDIb8bp~Iw#m;1CY%RtGq
zxkca{9`m8mkf6|zcm+Ah$sa!FtJ86W@x5o{J?Hb(kiM71696bcNz6h0^o0V;9(kt0
z5$3+arMOOjIBVbHne&)dL);I&zKN>I`uHi&6P;TxKCUUhx7B@!n~g{^kT$#6dc2}5
zqLb(Fm2`Mp<+HWOYr~usah;_(%7^{+O%QSqtO)3G*Nu+Ps$%@#Mkc$hUs`xaA>wz>
z6kW%G4Ye#y1PA(v{9A$j!J2N%a<4m8<N7<Zse>ln(gOJfqZu9Ov83UV0uSHV%~R|<
zl;BFF8DCXVhl$clVhCewe6oLE4}pwdQ=OFv4xLYD$h}5J3;yA%Mn;q%>osyT{}U37
zn5DR8Jg(|1^!TiLQoCXDcPMsnITc#^Z!vXCJ58eSmkK_FbB9}g8NL%B7v$zNqFd14
zjkDu-mII#JE>a806;@hEHEs}BK52O=n(e`pgM{Kc5V39ZMlH_pi*C-_Ps*c&Nt7>d
zf3AzPmRFbN=FotC{G{*vNiR=NJ^^!okvzj{lT29;E!A9jQgpZ*x=j7FXHX}Bi%m^j
z_kq|bG4xT>^<n@0#Snj&D^D%O8PlbWYOX{aD2i_J-8&N5gGF~rl;p-c=8axghUmc@
ziwg@62v;~P2fg?L{%BPjMYg{VBnM||UMWluB)u?a|21gUxNG(C$pAda39s9Bobjr^
zW3{D_C8DTi^5uM<q5FQ!asPG2oYV3}VBlJ_oR5#qg|DDaVnK?n^*U}(iet{#@&Xe}
z%TN6n7x!<h30Z2_1uJdW9P7ug=Dx60C%N~o+yNf&0v7g18R<yS{kqV}NqsDWgI0G+
zQJpKk0UAm#Rp0jNLx7}%|I*XCv!3~;m1Z)t=dPxfHwkk3y?RshoFPQ}(Q`Ymlz_t>
zT||;cFNZWLC~Y`}_(SbhM4O3(bfzqNN3mNTF`F0^DKe<g?0#$}#yT>&k5ko6?_9{-
zaPsHq-EU3T^jp6ERG^K=rq-i(PdL!vw*ec<r3wNjlDl3noLFkR+@ciO*%jR~?fNDV
z$({2H>qDG|&%U%mwT;c4LO0S<Y7jo~;thnfj_~N@hyFWAz{xST=-xfZa_0W>;%`wB
zl=?6I9Pd8d`b&r1Cn9q4oB4e&)%TZ_O-<zE3ET=`mQx!;{=lDwIk}fC0nL=|k6q*X
zlPo3N0m~ibD-1PiWOU2p-;Zo;Pt48bQz#Nr*H%N?=4N_XG6|mTz(eEFz;;W=;1^>)
zMRpaW3-5YLZVhpgd_Cv?CeYN*6?_Zl&WqTWDc?iA4xCHWyby*mvj-BmZ}lHPQB$))
zAa_lnI0-cR@Fd(*7=a3daBLI}99DyZQZuYkYqXpmhs8HHjSiu_{>`QlQu}}#+yBY6
zVOj>?An@tb1ZyhOf6HEMP<TvlQS+-{o+lAohVZ~%Zy+0|1NnSMoD%0ughT+-Z{-T>
zS?G@oRRoA?j*x`DsOZu7*qmB0@aLE*YHO=0Y3b`*^cPZc6g=OumT%yjzBcSU{tA=J
zW#5-^Tn5~`43#!XU!vvB!6rk%Siy_FbG!Up_O+lz*nhF<ZqRf(#`jm|N#-`wT<ZQt
z)V-K|e2_lSZxE@1`XvyHW$KO&<<MfWb+XF|V%rO9S+BG^Xb3cmQ0H};F`CycAu8-F
zKpedBU-UhTzN)I)8|}_E>CIC7RG%m<)XUI?-%Ew#&lK|8xJT<~I~8^EY9cc~-zd3Y
zeUOg?0`yUUFn+!QJ+~a1i|kseWAnj?bDXL=pX*3nC(jYxLFI@YvtAJdUE%=1G^tM@
zv?GG1JVKrJxAgrLmq2>ZJ$wiPqj`9ZWWmtr8#3gmpSa`m6|l+LdqqHG(Cb#7ep&qx
zBJ3l&nz^5mHBStcfC0R&2@zNfA<d9a0fEx8w2`EUJOBWN0M^_qFNM(-J(J`R+wFWW
zj3*sWX=aL-??QBHHLe3cv_az?yeyx%_~=|=jpM<gO_@bDp;<XuFba&$V{?=tK(jX9
z!QV2A0k-t5ze+fMhbMt1qpLmY+v3sXg6Rfljzj@Uq4soXLNZIeto<bh4*UlR?-rE<
z1yk-G*<x&O6v)y<Ta4A19}y1M0DOVjvaXex$$)tVsF^~N420}3G{ISrrBo|+s3`O4
z&qC16aWr#&-+&npC$Ts`hvF}nwE=qI%gbp+*NLY;6evHJmRdM?+|UKgoG-RW-MGt+
zTdeR74(DvXl<`<ANnxmHUFuLNsVTfl#jXTKVvS4mm&u5zBDY!qR2G<T?<LeYZN@#d
zg|)dHWv}1i2b?~n@>n?8K0L6?kRjXGWnpG#rs)hu@`M{4NzdHZ^QlAfE8Hh%l^O4$
z)PG`tfXY+j3!x<O;PTk%4{ogRYTpyeGz0A_JQjO9a;~7g<CFl&J9)ODDr$yhLbOU2
zO#~lJ*H0kXKN<#uQCV_ivyx9a6PxF~AuF@3O+#~2!{-F~udx7NMNZE}QgGsU_AY3<
zx(35q{UeHwj>UZM_S755UgBrmY1rmjT{1AV{8k_icv3Z16-WIc3Yo#Hd96y^*1sIo
zULOL)E>NsqPr=Fx-uk+xedbK!ojF(jftL=N4NYH*0Zh)Zm<5=8`5ms5!LMJKG_RdB
z@ro1xHX%0uapxM>odo=i<(yU}GlyuHSh?pfg~W!KH=*5HHGha&EYXBo-2KRihH8<V
zd|+&a`ph#xUKC)>iDk-=%$O~1pM&=!m0E9#RnTSxno`QcJC$o2psD5LmLkajyv1TN
zCBm2}5@NlUCX?%O)(XOh4D<yP<=5Xz>U<K}2^utjqwJ?=oQ9$jtgP0k_dHvXHb%&0
z)S8152UUh9S;61v&dK;o6u$3-H;j<JQIqu}5l${_2&!Eb6MCuWj@yor^unXk*O$vj
z5Eaebaj(z80(32M4S9P>+0Qg=&piuwei<`rD$&PtT8*zAYA6*ryLnl?6LJ$QUh8FR
zu-G>t-<q5Gl^F>WtCN4V`Ciyz+;h!xSmU$#-X(h=2IQrc*@kM=6dE>|D_Yc;&GvJm
zdt4D=`u#try}^Iu-u^**+h40xcxvFTMGpqh;DHuHLK@9%`bH(6tG%r$%Qn=}T+iiM
zD+>DV$nP8w9s&sMi+E8vM|vA`TU_cypnLI4>mu%3L7Og!b;k_o4^??q^YgzZ-x{>S
z&th==Z}E~czz8U3T(O$=((@I7N(_irrlzN?M8hB=gS&v{`gL}Z7iOfOrQzfjsXK_V
z1}MTjNsN7TiQRzP?mkSIqzvASH|@on{l{QK(|}%mXl8C>3kakBo6dAh72SoKlm@`z
zwY!3hG6ak=(QOj6v^i&YiM9di+o~P*^()#13I`?r7F3KQMmM>;1xDGjAlL@=!(-^g
zVsLhy-BPE>Aipefyu1NxD%j<D7VIQp2)t3;%k4>%=jU0Uir#b-^kb24U)Wk`k-`I|
zr$$u1`ofsB&kBBY)1MFpizZoaf-o^=vvFl)v%$uDq~mnLFXhy>3(pcMgyFLZ(6i0E
z6?pfsRFM%apiAnmy;6aRqWBFuLsYawQnW*H{y72^@g}PP1JXx!<aatd%a)Mi+j6*c
z^<|ASx2F$*ZrNkzrVs+vxB57GU9=aDyH*}oeR57lun?t5*6?vIK!BRm;lxfGBBpqJ
z^T3R=KHEzOT)qwRpB}>ZIqrT!km5eC)yTjAGN;7F`yl-r*wVpkWcKa>Z+Bgp$-2ga
z71O#YM@v$2WRll96!}E^6vqsIXuH7u=aOC?MGfHAcBSe%n@gLnWo5O~@Fig0yq`R$
z%1qnlccWz;Ye+vlCV9c`xU?WPdl%Ug;<pm%4bID)g?qZ(duJPlXMY{9ooz-G8D+HT
z`BSovZEM?2eF^ifPo(&oox<)q@Gw!p>D1_FJ?{0-MAnbFJ=yt-x$o}{m+|Ct`GN7>
z)BE)TLo3pWCpJSBX9Sw|><x06WdBZM^Bg6n160cVZ(m)mJIqG6c+j?|e(J)8C4?X%
zIr3u;A?Q&-PG(HnzLa0UGqmAyKMdYBPd(}0vT3fVNX3nW%m`$tuu-TPW}>?A{!01z
zpa+5_h}su;nJqLQ0ivg9I<pQIvb$DymY=_=xpJnkyFv2l?$O7B4Awu$p_;6la+RDQ
zI`?lf!x?NUCX)!<@A5jBz_enXbg*C|@oaSW1n{J4d9{>aKxr`+sTmoxQhfl48Vr22
zo>k+z<#b|S<FRfD0)$oUg`%v+;y#Bp8!^{vSvb2rf<PFAkT7)?k;POsL4m1wazSoP
zd=v&G81`b-WF&4C{BJ&|_?%cLwkH(E>xnQ+j*lZ5RkrdAmn~&GO|%fk3y)QDo_bjk
ziRS*cz)`_LB#=#GVuXG892Ha@&VWY5j-R@_#IfCm<SCEZU4AuJ_yx?v8PR8dGH_&N
z&zqU$;G*2}lD!`nnveE$W%VsprZJL$wyues*lP{u^w18VP{_zPnR^w~tw<aB6kg>7
zvwb2{^AyoNy3Fr;hgq`!hF7~L0L2;0^7R95Q|#5n!goL(-~Hp~OqGR2GZz@s0HTfg
z2@7LGU+2JGNR<x2zf78&qC?hiMm+Jtyy7-C`%+SY>Q9j(mC3o}Xd`hmE}rYD&bID1
zP++56`bnR`6PWFDAA><V_g78{@V|qeEP`iZ!o@L3O|8Ku1CD=ItCE7$#Ke;y=M@dX
z^y($yFEgFFChNydT1N&d^^=!#x{=4}?u3bw%v7*I2OAp||G`oFzhKnh|DB^I#Z3Yj
zIp#C=rdyx*;V<l^<64&3|K0-5R{zh=ZP^nAL<Fw#;|r5ZGQgjBRL5OUM#lV<jsYN2
zb7JWj@+j;0Is~8nq1eIXpK%@?Y`0`Ae4;E4xsZAId1z=?U%>`EcCjBGF!A>Gl-b>l
zKbvl9p_U2wB;mNp+sXE>{-9SXUEX<P!I?tBDqTM2kVj>93fKqvPu&{3f4H74C7xp@
zf{%Bd<I2!rm6SMIRZD^UEG}lvCD?Jhoi?)5%9y^~5#62S8cwUua5!Zo9zG<=^r$F&
z)ZXAgW_PqUw3F$lQ_(%?kgE-tAiOLg_QVy>B0J;4j#)9Z&ae_dAV>6Naf-t6qo9BT
z!`$q}uEkGn5|r}UqI4$3>K3F8hj#bTo`6L6Vp+N<u&rp5Sg?65Mc+Vwdmdc~v|O|T
z`rq272+>-=^PS)V_g*7Pl%%pMCIHcXI!2#>!LrWT_I})F4TW}skCf!s45)uyx!d2H
zrVd&f`N4^(c^&xf-S)eav2i?!Wjn0(J||KM^g-_$nE%~ML`wQ`WrwX%_m}53s{9a8
zYRei^pZD<kayi@GMKf=I)2FmvpjOof)cmkn3kr)yLpy4R`{U~JqUXTI(D8m7K&wsP
zuJXdW1z;h$;KKSu<OgQju?PNddE%bdl1zR*v_rWiiy_fZ7%84In6+~j@%WG;q#h&u
zr5SU*u*N5FaMh+lf$Rx)yEko+?AesVmGOigd$p!rcS!=6SBeZ;%3;+CwxHD^OvBdO
z+O|SrobxaJ>)79N0xR<Xk?U43@ak1vq&>jbmX@)i7GR~S%E_f?v}MS~&IF*{5=@az
zOK)`#`3#J=#6&Ci{7<F;&JFZamg6X(Lbl-ySsL=|&RY}*H$~KWvMf!W2nQq}QWJBk
ztd6GpJmxM{IQFi`6TrCpP6665faRv982xetfgl|F=iTTA7Q{zzO0S@tiH{Ji>vlK#
zr%n(PF2YbEkNP?tFJ}~djIYIjDKD}MZ@ZMjrb>`19RBWp52e)*k8Qic0<=0Au`e6e
z00+J=8adPd_05}DHof-GMa>5G7_G;V)@)+{O~%CDXVT?6d7MPfUz+Kk(sRCev&ob&
z3RYIpcZYu_(C21ppPqXiN@NUVMGV6vM$9G@XFji6DI=8>Wr+IM^Wyk>-L20$rvWSV
zu~$}J_6Tra_P1@!ZcC^eX#<*2A729dCJ!p4G;GgG>(h~zYpYs9g=y|S86Is3K+LX=
z7#9sg)Hg@}*WQ6GH!JIFzlk~ielr#9dhGG7J~6l~^0Yx_&Dnu0pmk_)*izMIH7QOR
z-^ig{c{>4|WiH2Eb=Ax_3@Voj+>h^RA-=kpju5XTIA170B8ciGJx@<`t)3u?Q~CK2
z8wFI-S*3dWy|edF`f>vrB#(~Du{dwHPGV_(d0v}YR&@_DSgai@zrMjQ55r^ROOhi)
zb98aMcOVDSDg$FfqLulns60UT1tW<ajoUZ)fInb{vlDP#j+IHQ0K<y=m_ep{!}IUG
zu9Mph7jZ%(mM6BoSM%wHcxXONt>YdSD~~Ar4v{>8wTYC&Wv2o4o#N<_bSxkL-rBCr
z^Y1Bw4?V-`%QfX@;nT-#6vtD;u7IHm1X(}`@;F=+dN;o{|Kl8$xvEy<Eq9g`uAJ>s
zQjK)^l5zf20=HoymCEMH=?@XHRU#6H<KTL*Z-u~j4*;z3q9cHGqo4CfSM&HC?ZXFh
zTQA%?#(Sn_yH>j&cP#87Q5UpQ8^^}2V5~ea)yu+-3x$>Clr)s(NaMa(W)<M|Kk4fq
zkt|#K#lnFrpJ-xcD)iy@i}6?_0V(?HzL<3&=K?jXtK9($)6hNtC+ijD8ZY!)I%ly&
z(+1Ml9deoXjvdx!Qb?gG=TN8lEqx!s2XmW4b*WbKO;Z74Tlj0KpDZEI$f{olOzy3E
zPYYA5{opWw>NV!+<zN{hCL}X8PY#bff4rtUaI;f=c2R46U7P(1XzpGsZQk(N6A5mb
z?)jlq!AT*d<<CETa{ijqM#lD#jwN%aZ*?6{$zIxF2}tl$<$r);<!x3;TpsUD&*(4c
z^@^?C`Py!f8GOd^luonSXma)(1~?hI>+$A|(sO;`yC)u7GS(qUZo5j+I*PGhV(pi8
z2LP@R9I%4@;uyTQ=D8E<GaH2csfC(x2EnskCh-#Y0k?zbF-SJ0$}j@#c_dFw1{vut
z58yBQnQRFt(6|Ja(MpPp@l1N}wuAk8G<$oVA$o=rSVgOh0B-nK8Mq=DoPg1xJ>p_M
z>tE%XRLA?~S64iM?f0)}zuPwncNb;nckfsL+-?FQ?=_#(OE#C*{*nq5sLLp1b0%dv
zF;#^&cOA6n$z7$1iB~`+*aK3GkNdmCpU~Xz{5>EJ5ptv<2Z<+eWgG(}`E>lZn+-J_
z8v5D!3A0ht&d#d-IaQiL8#TXcUX*qOQQeGl`;?H5$huOc_>EQIyfm!-sCT~&zy>YG
zZG~xY0-g+f%29vI`p#b-)y79}eTKz_YiiN9t^C-U)Bb5r`YVNhF&vP`Xx2NAW`n{*
z<?<v*Fu&4?mk2UlJArxXvH7pSo$GH7B`uIT9ou@?yxZ<$$Qq5EEoY;fJ!zLdcF@A0
zuVXt%aGUT0D)U=V{%j!H*3|42pTMixjv0EpiQ@q1237C4#fu0vd^^?ewwjE(Ebbq9
z(!%lLche$qP8vw88rsHJ=elFM!fmp`eR@ZPk}?BkH2|5X727<O_Vb<6q!WXytZbOB
zKYzS*bu`bK-<>lg58qW-ik(EZTVtZ6=ancc3~o;XyVp96EFIC74Eh=(`5Ffb+S*w{
ziT3YS89!Y~W?6;y274P0NqM~53EXHAf|~{^(*jSZdt2nQ6EO)O9EB3Z+JtZ2L9A>;
zXNNFKutX>13G~!gyx#Ou7<Q$s!dPn~&!1<i(meq8>(smlK9a$~5)ar4pQ$A1>+242
z{@`Y3B89ei#mU%`!E+Y+x~$Fy9|S1nEu0vS#Lo6FtY5iiovBU*NYz^(7p>`lq8AcP
zV-8aVS&-fnRlytN8582K5~dqOK2{Tf6u{}3$?h#{n>!GX$7iNA84(cv4G`*Y^rK?K
z_P?fSQhq*I!})H+^xj<y5X^Dwe-c0krBy&hqa&iABNE=MmxVtAM+{VGgcf-PCt@DQ
z>GD3XQ=eA{de3a@FL@!=v^Wwjju?uIS((k<PTGANv5cR(TJ=ntwNEN1E8x%HD&n+&
z872`Eq{c}RJ@~a~Dv=U;S(i|3qceAW=VsOTi=3Ki^s_~cv+6eS=#`>^2FG!G5+2&(
z1*by6^hfpm$@1yR(ZQ8cKBV^JjS=fN*E?&m6T15Kz~UL03?%{D*6R8?gVqTzw6I7(
zL`)0`h>4A7mqa7O7%OG^ld-@?0F12EyiD@1UbzoX@PAI^;Vri6nm<`M4N$o(Hcw3T
zws?h*n3mRIz<jgCPDk6GSyjq1-0$((Zy;rUsJFN_OD!GexO^rC5wcymW-C?$u`qLq
zP1IFwVz*u}Im?2s`NdArY|j@i%d2>kbF2gs7Heh6A=t;)uH1aK#&x#n*)pcvj-2R>
zhG&KC#|C1sO4W~5FaNB5qJSRIwcW<!4?2>00JQr=UQO3pZPs#ANn(hTuBWSrx{`?G
zPC^bE0=8#zPd54TfT+&7i=rmjI14;v{cwk<+KDEjb5La~=S(dtN>O<f?StO18Gbk>
zRG)|m$8dt__%`dvXz&Wr4<%zH&mu4B=44zd;p&+2+y6(3Osp;s$cPFw1{B^ZsaZ}{
zV>v{grSe!lt%mN}TgkyuzQIw#^NtvYrJp389on;|EIR839_TE-O)F54RWt%EG)>{f
zf=!<kX>qQGbOZ2vii|6)>dMl;U~t>|DD+-4f37g*r0xbq`-fWFmzkbbc>t0rI2cIf
zS_uH1X4GPe5AGTIkQU*fZK+lB0TP&<nf~xNjL47la)-%F;0uu8#7JIQZ<Qvv1_Or<
zhgfKrlFs$I9`u}pg%gwy@;2%~x&5JKi0_`(q;pNhzJpG~DkBW$(CP9-(OyE2t=ZH`
z9;O-}2Ln|OqUXd!HR_-Tuv0JMMOIkOhQRN}`vhhILQidJpQ61t2z;V*VS|mEm-yXD
z2+(Hj^fB2BZB2FIRC$EC4WHZwt8x3S76xS3b(tLj)mWlW=>wpA%IC_2L*^_=C+d`Q
z*W%Z>>QmtQa@vJPf}!KUhxgVsN`O%WfYQS{6`2Co)DtuA`2ADx2??-8KJ^!+#6e+c
zJDha=O|BuKuSAog6788Ws`}q(#@x0lPZfRb9gvzr!tULXoTtH)zWXi?1eqx9XR_a2
z?w9R}dN<4oW5fZOMwMU+k+V?im@EhHv)Sp@VXvBZyc0d0Lv2kfi%T18>SU~@yC6qW
zDm|2#7QmKsW9z`50+Fk*Yok@VB1UTuJq@@=sj(a1^_F)19OZsybKk=rbOI1JZnCXV
z+~vXbbQ?0J<{nN0x`QX_i|K}oeA<>+dh@VMQr%6h7v}iYy><%v-rwjeN|`@-qB2zX
z#al!MAhG+O6J=%lKML=ld6o-7R*a*#nT*21ykkelS2=4$90cucag|(?U5k4^zfDD<
zjrUD8_w;}T3&>KaGt-a+-i|%gh<>9HJy(Y;4Q3vQ0`fMoaRJ_@h9JU1cj`H8tDrxe
z1ZEHI$%BX&wS0}K$%;*>Evz_UElS3d>O}m3Fm045!b7U7RZt0lgsX`IVa0gB{(86X
zQ41srEM!1s2zm!%cnJP3Ukt1)#HqsQB=3IJ`>fa>G+R#I)xnt0&n4_~>3ZuLETO7&
z7UiNq<iO?5`ALw<wR#K&VP0XXh!F7i08<g<$%s7-N9b8u2vdaxV%Py{v(jSCR&Q#n
zVdQ`6A2o&q88ARO2He1k+)ki8H>)6L^Qcg8?FDrSuk)Gap|QBI^iVVP%}Djx7s9p3
z2$k$3&>f<pXBnNC64g;DNzRgl@lJr>?r<@99Y`+OW&+Adl7TPppNvbPiy6S$1Z?CR
zG}+nEm$(N=0B8~xnf?IWNgIHwysV5BD6wBZ-aWR32S!H|_?&;<#Kw4bB<EU>HRMm~
znd%YVU#YP<t>wU_WOLb(_B_ixyQ)uI=eT6MJbw)X81}h?<#RSBx4OGjn)zpdCy#%%
zLqBwECmTp~?aoae0^+t2p%_UQ&PkLMU0moR{O+}aLTblW)??DcUvUepxT$9zXx!JD
z$J6oY&s40G%eGI1;%gkX0isut3g`ok0@p<zVuLevSxW-XR3-_hf_g}d!UaK~SNaMD
z)3-D0VV(PE<3qBeQ>xe9Y5xNPzVJC0!|QBWu5mThn7SNim@yNeKDjY<;<>7O<4O{I
zeVnYOUD*%S@<l08O_!UDn4#~({c8YJq30jbPT+gTDa%Ms&d?fE^%Gnk=MD@x!IXdN
z<bV|5FQJ@nUv{3O+-iTn)%NbQXY5<4gES=UwoQdQZQD7vs)OxEoGx1<U~=^F*4Ofk
zv$4i$ngx|nue)6KYb!J0od6~&V#-^mS%#dbryx!V^l=6SRJs}`6ki2lKzF$;_I`X!
z5Mk&yQ4CYvSl882R6iYQ2H#c}c(W%JQ1Nd=D#%@J`q4Mse{wVc3e=;2cwoiz7ZvbF
z4DEfiY{l3x6-)@E6*=9<K6@+Je8*vnkkxAB{%{i5cndu~Eyb!RE588A31H;~QDCmF
z)t1-uqYS)$i%WP{^&T-me~=e+J52PJC+PW4?VQiTR$3PNu%WK8S?im=bt~UyKjahF
z>(X~iz{eXE5lKE?@w#m4$H4OOVHW_8j#c}9xN|O(#N5`|^s}WhChQ)AW<3*Vx$x7+
z4s-KJ(%j#gay^*)H5js`!`e4`c(Bc9c`&yc-VO<L4hDY5bXS<S0tP6j+Xr{i4%Eu@
zJnZc)u2XPf*Ta?K9X~6X`1%*_OTTgb%8^f;NqMb3uD&W+A2W&>G6NoEm`Vt`&)1I#
z^By`40E;z~bP^^{6M>lW@zUn5G@idAFk-~qRewed7FMF5fi#JavXmKvSsyr>39Xt5
zKHlKyC%ZORT56j<haokcAl?IAjL$$t{Z%fT62>X&SjxG_J0VIN{uHmXZ900!{x+G;
zSm^+z{1a$1NXpb15lDWe?VE5>o>DRg2{&5dfD7@xRWQ)bD#i(>VEYUGeUlv+v6#v?
zTgyK??jCXmW%NNm=@Uc4k)D@VDRn?E%aNyX2cqyjd`ACFr^;pDQ#V}F!VL>1<wb(L
z&wP-+JKB20?oA^qXf&wt(^*Lb1KQ+t^#{#{2W3YU7B3Uds?O}h-1bU4xPDD@Ta2IV
zuiC0ix!3qQkVZu7RPOhdfeV>l8v)xtGvqQMBHqZ7VD9&HYk%WW&FVbD8-dwG^d)z0
zmnKP4+~d5-V~d$WL5=g_9}zIP6_~+l&jC!;wLgS!w^<0Zfu^#MATSi+tww+(?`(D>
zFalVys}Kj|*_y_2S7^fNS6nvJg9EDmAm3f_$zVaM3Y^-vU1;5kM3I7Kmbh%}`&#QC
zx((j^;ds75$NT_kyo1W;1XjY8wG_IN2TfRW)?~nrV!0=l2X+(HfyPP=M|HTdGI;8l
z+?O6#X%>O>HfYZJB0PB7kCLbM>l*#Qr`ijGd_FB4{ruP%qK?JAU;4&bxz^>^yJjWN
zMn`tD?xQ70o0%2mnq`5;dWVy{D7vAcVObPD0oFS5!GW5kp}kge2#fM<P|un-BK&<j
zH89D7bJ@UwfhN>u&$J&{7=fw@B#ank2t&y!`HAtL6L&Y9r7X0}HE|N82mAY7%sNd;
z@IjrktZra0W#J(0p{<=V-sQy~rx7!K1oS*_-)3?6TSAbR!1t9l<mET|zWo?CJK(>!
zSK8&~>S~Ib6Z!6yGUwW5_V#MvDnx=xj3nPV6t54%-|940b`=Pu$*uxg4FrkxuxqZ>
z8;-xDx>oe@dDrhA@5f$F3w_hQdBs0<`QHI7H$VRMExhTD-K-a{Z$~q9AmHB+K%@D6
z5FY$Nfj-v9yBQCx?AtHD{2f#i0+M?@D-=Kn1A3@J1Ge;T5fS-~x{li`>x-tYt4pug
z1MY3Cqd}kw1+jEJF+7#Poc?1x4wS6QM!v7k?FL2^8FRD#odF{FXq(ev(Rm9UB=~?>
zfpt?e=sRF+G#gtg!ivLS=mmxsSG?~*PCI5&RZQrfq=o{;V>+PPCBZ`b^UnXQbb?u%
zIP%N|LT!?SWPI-Cv%sJa91qaD-%XofU+%*qe0OVl7j#6%onPZqonif!Ct~j(9ggV2
z1Gam6+tM>Y)&*UE@WXAWN;5G&>heUa?F;;JnssR0HRMu1tzdusy_lu+2v~g(p>&+`
zP43YOjlMljeKxiiAo7FZC<+iq9z&ojRqpEN;2Nx*{Vl(F{-%}!+|8Ra{9$4XSncbl
z--9aQz^-!k?s`Y^AoP%n!Eoq%zNUR}kdNH*!|kyaJML$LpZ9XO5+Mi&{+x7LIo?3?
z)R_70%ldqCs#FbR9WPKR$zeeMVp^`!PZj|h2SwVdx)2FVU4P9KF!cx%qa;9<0FBm<
z4X#q8;Fiz#Uz<hm_M2YW-zDFpA%~mIL3No*-AMlc5L{;EFT(f0{zNw$pJ>%gC*%_a
z4(gUPyO>N8sDeOV!o;6iD>gBb-}O{^*c9YYek&FR^!4Gn=PN^JK4`7Qvqz%oHaPw?
zU<ZT~!{tXG-W8t62PS_~lHEY#p`_Fd7{4B>Ra#~Kf+<5IitYb?x`K0i;9uxMIiup~
z^7*obf7jUnjt&8T*G*2*+`N$^FD(!rR&lBWqav6GkN5npu{z_B&Z{i_EJVpJ!~yz)
ztX6BX`beZjLR{{@sGx_~-vv}`_wyCNd`CwHnVf?=MiXR_kI*Lyg5Ke~n=d;Ml>Pa<
zX1wd*G7|&4_cyiUU)35orxGmQS$<+S@hPcfRO1?Ph@N@rVlU;!o7=O&02F#-nidDv
zYDIMf2*i8jR**zJyC0+w1v1mKH3M=nAuzR5MAyd|NL&WH5I*zOjeaB-UkHj3VrK7i
zCcIXRoCb0O{Ai`$);F+R7~BVM-V#cg){VeFL`SX2nmj@HS78jUFIWIR{Q5O{lvwvK
zYJ3DwQOXyS8kCgA6RLz@nUFp=dfN+d+{_OSV%28~`4WgGEVG`klwx|3b#ZKfWHXF|
z($Y#(Xzq;#ZFpBmVokatjWgn}xsRZiI+C*i12?&*M!VH)&ubkK+z@o|H9mk}%H|}x
zJp3>-nmWWoK%5#9pDmaYDxUtpc@di1eEUfRaLCxgI}OBrK8vTbYSUnUGGP@DFKmtb
zvo4OyUxWG??3c#qeAjw&EA-7wPmx@G5Cs5GtlzdGs)y*3nfqRl_>-_g3p#*;O)0os
zLV?Vs%AVdw3lnX@|0^J6+f&eT$;G!Lxy(?5jlCq&F<Vi5zS2L#SKVCjEa0~den41k
z7`SGqX}Gz_P;O3OVZhD3;zM6%?_{?$U0CAjGDwvud(K7(x-=uGH@A_$vsTYGZk@dV
z$;A4+;Kbh&^eo8=5BrH9orj5l8cjcf@C?iW48vu9KHy5ZreIb^5KO8O$#zyn1+RVc
zrMc;suaqo-(-3(Ry#k(mUvU2G*<Yboe?2ir7%umd61)U;G(Rii-RNr;M1GJ8;~S{t
z*{32(rSdTy%nkgN`fvG*Cd-K$;M{wL`xjhrHaiC|LTUGdUbZ3?oQd(&0LNRnf6<0@
zh|me+^tF};&68woPkGE89Ysb26v~IpUIMK*-TV5&6<-0mW|y~7nkn}`8cGsX1#x^=
zjnTPyBn;jkUuFDP+H6>{L(isiO_ACEAeg|$#$QMt=-YmwcHd>&CE7!;x{wtY&_36}
ze~Bvo;D?!4+L2-Vi=92pl!9PY+V=m$^aCegC1Ig9OYw*Qgr*c#!ft*)2DnZ{CGWh7
z%YCX4YV#>)XLSGO)lm54AMvRRdxFRwKtsf4R)(AWavpz^1k%ZaNO0>Sh*r|$t&NnV
zg5~7B4n5W7|1kbE?GNFkh>YrL#hh>77Uv6=Z)l1as*M!sB!7*<k{G-ML{sI&wy&@^
zE`dE2l!C)7tQMP&X2hCW3g^9LlXWh3M$Fer?W+>kQ>DevOG?U2kESQM5@CUdw;;5b
zZ|SX<#UWQ$xGK2vEHQS~nkjvw!zBF$B|zy4N0aJ2{Mt_=l~}pOZ_UQt@V4V;e-MG?
z#rdr;p?IeJ*=2{_JZ!X9bLGK(mZxlHvmLpBet$Dbi57D|0}>K&y=gVrt({u{;U5U|
ziAjP9uXUmo=)!0t#bK_^vWz9BU76#g+KiMoWg0wl{1TZ_0l=RKft!+*!N)!(+2bc3
zBxW3;G;ESnRH(-fcQP_i08l4N$~AGA=*9fkNF(LMT#xB7r&BNQ_RaVU*F)0Ni9-c*
zHvw5J1qrMa*`c$hCW6;UcS2ao4l41Sj|Y3#C2W2*4cDE+!K~VQo5$!5TYLxBd#0&V
zwQk@q%)mBphSaD>J3cPDKz(bTz{q4>-(oiZRdhYru$s|p%WAQhw=8_`d*_%Wjp26^
ztwbzI&r4@sOK)D=omU6&b8cgooBu0J?%P$gq3XdPJYmL>s_x?0eP(fF2@s`P=31}J
z<Gl&!)aaw(w05=!y@@JU>vgUwV34HpllXYQcGnV98QlBMW%kd``+REOf98m8pviao
z9Cf)i#Xuw0)p<_Rzy*jO4kXnlOM96y&RXwlC&{MYK6!eOGF3|euWMh#b!lzTEB_>}
z*z<#}gb&s)+7nsc3j=24=7*Pg*q_oAJCTVIyu{N#wa9-{x~WJXejp-d-5?g>o(!Y7
z!=_zndYJKL?Bq3n50As1TXPdJM=Cy}*5Ur%ZT&WQ@~r9i=K;P;VVNW@X&M~(?0;pl
z!8uQI7MFX;-q{oe_y>`5>3xn1D9Ot+EQzz4s@0OvU@<z5tX9`P)_ygKe2RSg4DtH{
zYAXK43tXrtvBquXM>bY{mu-F0!TgkoUeUtdum(s$+S|2RCnP!%OMtwtW(Z`qBRdRG
z#j=rnrACH_uRP99LPEDg<p!6!W0?)!z%A{whL6MMwhY`iF6bfElEZh`WRH+#bk>Jv
zp7ph#9(lLKIg(4HF@t?Hz_dXhr9_|QW%YD0dc?-8n;SEI)rp=KVKiQ<eP>@t!cs}>
zFUsS=H!vl{PrD>0?NO8v*#TA*;N%2Gu+AT}Cp8<7y`?P%w42+fuLgpU8IEB59Dc?b
zr@8fCvh4&pSAl`jl{U|S@#@Zbm9OKGO62p$bUUDoL`=y7<~MAZ1E|HH^4OiZyjDsG
zPdEjWr>y(Mf+;*sYZE{><%IYMdNJ{(JN`xCe^;OI`W9e=WK{xhYr6c6H4X?COAKLA
z>E0RmH?7P=^<oFd<u?UybX1g1t)^uv$?!6BDqhcqxRpRwTl(Q?X*URd`As8T>r+5%
zqYeoKrvikH{FB92(s2bxDh<V-F6XnW&@*$%sYvJpxoO2#>nt4cHM8pmP^XeGxZynT
z!e=OO%2s6?3~k{WZZ)jUNq@=5q#!mcIn#b$+s)Zf3e?#kdmRWtva=T*QFph9ej`C(
z#Jm#|hx)X)l#T6i6Jor1cNeW`k5-+riRru3kyljSe8un=FtGb4Pwo#+E{<@mR?P$V
zl~z7cP1?7d+TsjrB{0LnN~}-Z<(Y+ls#?8q$^zqnH8+%9M}GTNOem0OtSp%Nh3z7P
zk0jYdW_W6znz^9*Yb6V{*Y@Um)hYGLLeT;u8YNNEgtx4SA4gpLiY2+puTA)H+ufu^
zN#G%(5~&&D%~hivb2y!*qe5>~J2Oz`p1i$F!42STM2tiIBehOPp#=rYum%AR$_L&W
zju0}og_0lZNVK#JG0YbE0U|#N?*SBgh#dXKJwAipndX#)^MehxQfuOHBa7*J>NEu_
z*JV#J1tWks#mc^XzGU62{Yq=fyFKu_d~Na79>X;9!om<gjU_peoT4T`ho)6nMdwXA
zB=EWRPgVqgA5K0{=itHGwKQwoZvu7R95*;@Sp6_NPHaYa$;;!;#i&-Uo+6ut{~wIB
z|35_9_J?L8AA2;9_|PE(XKr#VYU-MyOcQ#GFA)c&I!R>r(OxSAOlB+Wgi~ij&uu_I
zngTgj`GpO<@$);v^>8<PkT3@3!ISU~d6Ub~J)rYD#s~(Ij-Ba^bd2r*`G4o6Jvii$
zUc{?!yjNuHe-Eim>f8g&$^S#`Y4KxmA}DLeL!XWmsUe1W+uCh#jTf}m&x0=$GYr|`
zUlLTH?Q;f~?Td<vo9GAM%;8RRf<Pp?fzdhv_5}4KCd2b!Z*WJRn((<S+kex{^-S49
zy;`p>T|Zgod<W=8kvzcy3Us8>mW?v}*CPyBDy9=))#`n>toyafpAQhwl@cnQYK)Cx
z0_3j$#HI}gRSVGY!SG>yfnPHa@dA!xbpGV#FY^*WB?P-5FjBu!5Laxs3?K3JJX;E8
z=^LCV-~OhVPYAw}iI^2S$H`(8v5AUc?}nDXr{?eo0y~rY_|a9|YPmC={{!eu2^F}F
zZe+ptE~`P#Pi}3oFjX{cHDjLxZY@gu9;u<v7_>t`v{^rD<gk6$QZQ+M0Z3Gd;mN7^
zZ>pKO21ro-hj{tRi`vn;u?295MqO_#EQdfKTz1M97~BGCBe9Rw28bmSyqKm6M6oLW
z>t15&{GQ9>vd}?38wP<r!b%%m6?&qS13(JiO?3`aM|bJt4j9<9%9Mz#zs)X~aFeAB
zV@Tkg5KvhMcL4eX>Y(2gHz}^9*kr{!HTML=P8M3ZbEJAMY#lH9$ihWlYgUq7E??PF
zocl?U;aQ(9H3J+Z^upx`AK}gTM$t5P>7?y}xS@T5CIc)Z+CfK~t9ddlYQ<4Q>c@yE
z@G+^Trlc$>a~>SPp?%!8f7BUWMNUQ!z}HwSJ-gq@?~uekFnZ-Y<HV>^L+{#?MRpf_
z($fJ_iTv)WAWFLdQ}bhO(sQe|P=MWo$!n7p-`{-Fn|$6cHJBVVGr@0QY18Ds-Tm-#
z<q{T6D=v7x4$C-Ih0tx&Ci34D<8@T5X_s;6-V^6x9a59dRn=V9Y-|(7vN9^|9gSPI
z9qULF#TFIm>8F=j5_PVQI=lO4(Hy0bfM$^yviX23ZC2*l2*_a*GZ`<psByR~TkUUN
z9~p^~bNq?`m_|WKJJX?!?gg4$olAu<0sXmBnT?5>&&FbETyZgoWxPk&x3y4|08HfT
zQ=ALnzW{K}uCSnCOHx#Fy!dpq;d-KQtAc)U5f2KDh$uGcnss%&v|bztYiWsS7Lm^0
zJ98fPEz<X$u5<V5*4v&?fHi7tdmn*5_=yMy$2T2-&7$`gnh@8vNDJ+N$$0{6>=xUq
zF(!R6*Jc-{7lsZN7FcCuDxwNR(^!e<7foE8oo{<f0|6BDM$i1Mo;eCs<$NlWn0B->
za_UX~yM;O%=-Z}>-M5qPDG0v501s%cLJHm<b9Wm5sunjwFCi)(1G<Gu5B28?J3x*>
zdpVmo@<D9H8^h-3@COj13zp8Jijpl-GG#frVdFk0M1-TwvA%SLzLO4HiftjJ@6BT;
zzw{dp&6caI+J$laUl{$SlS^e62M{)D>GNNc+4`g#d2#fa^4WnNCnume2IfT;Ka0}R
z%$v8lS*zAS!(Sp@{_O6V5r`FUDA1YV<}sgX(g7S8MR@(9-rliu&=|H-yX^jw0!9so
zlNk+wqWGJ<LBDUc&eexrZKp29YewY!toj|V3y7sMW}G~td8!Xo-Z?%X!`&H7IE!Kc
zh0VPNIfig;<*f;bZe;>PfU@`LF)0;s310b86}frUM7i$V1X>mtK!rFJ%`00wy#dH%
z@C};G9_zFC;_2&jP^TC$iv{FnWDfqkG*JC`oKB1d&FyvjB}}^B^FNGMHOIGI`hWmf
zZvZLXJWlnjqEOfUUxUUKY2#R#o4SUh1RtHdavLtzL!K93nHg2UR+VL}7cW8_E#}~B
zT6{<H?bGVwm_SQXH~6-o9Iz#5I07ukAOi2JQnumlz(e3;0fD8g8h5yYI+d3DvhD-*
zJAU{~p_w_=D;*Uu%2$wyn>0t5nQD*vY$~Xs;Qq$xV|t9P#QEWMgDe&HnS)iY((;Ep
zm7{yNz%a`!s|Z*|%oll_4_}AH;>~RuSXicIr;HScyn6+gA(z>*4U9UJGL<~<ceF2L
z=I969#^N$ox%5-e2n*!{3US|>@G|cpHIVqXR$~eNDK0-e{ND;%%|O2Rk0f=Vn~xZU
z`#%rbMqQRW&h$<?lGVSk7Gk809H`6zBw!&uG0>;_!?05V(eJyp$$Z$e{U8;tXLV>s
z;c=M5dY`nyE5MJFLhbyNLj?878Xs@p`<majXI*jZP~sXN-`|!Rcoozn*jk=<VWDxF
ztFnKziRW>4o6m`gnYuyf@OMx1g72b8&um90J#Fr{alm(LZqPVhCpYI2>*BRNZ0z5c
z%VZE~=j~9WMSwm7M`$i7rz5<4HvQqI;|7eqJWf=fXS3#q!%L?wGc6bKqw3HubzGem
zrbuG|`8}*(hG@AG5aD9E8UbPs>-V5W@7ed&ADu)qU8=fQtIzs(a*UN%uM{dk{47xv
ztMm>(s%|{$J?#}tsB^-+@sZzXeyX^BL=$td^QBeN#i>c7hph?R>F}3kf-fQ|x?81=
zkoBS7uiufaPtwm^s-eDIV?q@L{gqIUhKp(@j)w0)TfQ)2)2UUfmlgZ?tR7^~BX|l?
zb}sI9=Fr;OhF6tjHg=_8(6Fw3{DlP404w`nWlCSCq)(|yQg!`|=o+5e_W>Co1tJb^
z7#IiOF+B~(Z_kDVeO$pOjwZxeu+rB@h3cAW+W5o?`OLu}uimMgFN-Nzr&rB3`l8f{
z3^+xFv=acUsOrVI)oeK#1oU1d&TKV0-8d+(iQ!pob>*IAR32VUqNorOwjiO$%1SDX
zTC9^pEm?=G1az9?>9#-O{K+{TsA@&V8c2FdV71<oeIO9}jsBsRxuiXi1Z?9G-t>Cu
zgAv5!BT5LmkJh?V#Bzez2%xV#WY^!fr0A${A%KV*z*{FCh~d#)81her=1#KF|3|6+
z_5U>ZH?lOn3#s+msuWDZTyRfmBa%y<T9aQ9Dtk|(UJ*FMN85w$11G->7b7h??m<5#
zgH-4e&>_6YVZcG3Ezy7VHdIIUO%3mPNIS2zjeR*X#2!}#FALxCp2>dYN|w|BJThvt
zQYhOq{(_HcYPftHw-1>3tv4sDPAbQ($0RZ1#tZvoWh4&2Cc|0Z997+sA5*w*HvI-!
zm8ekl#G$pkmPP(nSBk2AS=H0kag6SBVtE#(0eU)G4vrD4bi%|Qb|7jCmhp)CoX7%p
zU|^HWNKC^dty3SqTk9$K2>ruv$SU)!@SF4{O4(VpI^fJD2zPZpow7Xutu)}7&T(gA
z8gh?_*!m5>iHQwM?NFi!7X#K0fWs<@wsIeD5s*_>+aH-0`-kU4DYfgtni+?NFZ;A5
zn+hbM;B9ogn@5DHP|~sX*5qQgp|^^NM9B(K%Yq@U;|(BKjn+mFA1*oT85)fhDgZkl
zZ~?G>U{jLu2Zt1dsod-}IJfHqh6V5+eBL1kHJXq7@bYVgS5kPb$?`v9HKj>)`oskq
z2Y$YhbpomflPR5yU1}h402n~wGcG_EvJ6(nxDDQRtY&b|n_GzBw!d>C2$I119${;5
znix4CTus5ZVm0+t33=(I@E<&l66Gr?dSr{<wWkviM`-$L&@0?+l@&&VvJe}^OgNve
zI(v{ga80Z!4cD%mu*PWqTDL@p%<)srKKjX0I!8n}Z_BAy$jS^aKR#5e56KP6*_;{t
zcG2dqGO`2un`kkbvWmKv--uV{vt((2aV6al|6pwc2~tE$*IiUDR;G>Yw>IJBa=J&<
za~@s1FY#7U+`+>?7p^-M$(1zJN-X9g{U{}3^-ls_SIGk3%VudgH}ZHY-5XJBpP%)`
zLKW|M@ZPB#xDL}W=;?-rI3a<@VP7PvlBglj#`?XviFv4HwN}7aR#t}35YJ}YGf-Sy
z{BbA0#8_&0bPx~a7D%dDQ&E1UmB8qf#QBpGjz80#d~ml~i0U?!BI`8YmXM5j4@y=P
zd@Bmol4R}+FKAV1GT@7erkx@8<F<ud*l%ucBG#y>#Y)AnmRlu}(HjnJc(4U@>ymPw
z5J2(Vj)t8F&i#&z*--^rb&51Nm!;<2p^cX_u}d@4aG}~yrCg52b&D>U_!kZClhxPo
zZ|visl_Su;$a$a?U&pPX7JIxoP5)OSC_bac<jxcyb;ZNORTfunGbNBzQ_HKfo;tH*
zJP@8)&K{M6oCg7?3VhJw42g<MuOHahVf_({6#80Vk#j%8@ox_#>@!Ct-OL-kto|ZM
zH94uqLU>TVi~_Nb9IBX?!z1_@*MFiwN(PGeqE{zbDFNfZT5mXGZH)*c=voH(4F+3z
zipL=OTb!c$0B)581+6ZXJXx)-d62@IM1ixbM4|lHe{4#TsJ5+uZD=fyz+2#<9p>KE
z`gfl~*(Bdjx50+OU)-}SfEq+};1XDI*y+C2grFaP$#CF*)#2ROWk|T(-A{e%CSr+j
z{f^}~gG&-x9cODtrdA!C?bmDc%}jWbjX(NiHxic}^w2xU(SPR;E9&0TN22xl>B{+7
z3>Zh_Zog$8muXzblW@x1|B&0WI!jTh;pg!GarM?wQNB^v@SsSEARvvPfS|N=k0K#m
z(%s#iw~B-yp+iUuNSAaBA<{8)55pi`LwA0+zvo%syWV%LS&KiIx#yml>pIstd+)Q4
z%TIaR4O6#iLY9zP=l%Gu(|4V@3A=#j&+nf49+?qgMb<h(Y#v^mL({L|4e8HXL>dOf
zf*6P4eLZpMBG14EvfHyGj3P1KPu}lp>V@?|2HU%;2>+X8ubknD$q4zL;js~L<CX(Y
z<7}f_n8zv!#M3!Bm5%?-WMq%`R)6`zm}?SrxdZ1(Ta4Ou;pl@K?txPuz*}Vk4zeDx
z8z0zaB>2pXW0&LB7I|FVKu5tO);c|>n<T|@UEX~8C2Db#1`=F*io?--YK$!-EnRV1
zRw1KouB4Q~Z?T!$@y*#k+wNpuOdFdcBAfr-JLy~nz1hm<!AmpGs?iS8oZj=>t6zhI
za{+6E=~ipooDhB-&}ZsB;FWhekkW6qaop8E#TIgnTG*M0Dzc~b_qs0{lvR+WXU0w;
zo;Sp}Hs6&RupvpdOXN}zor^mo&wg`ppy`oFa`ElvkBzAyBmqlU`X8qze)KIjGkE_x
zvo$C+qmos^iZ~T<u@$?R-gZy4`R2sMO{pus*P<7=dvRK^ErJ1(_w&b2bLo*2!_(FN
zh*jj+PX}j)vPpYAr97)3;b;}P81|RRN^}%kEeeYHd|?kByRtc<3#)^`SA7jqtsGp-
z5DnT{XhCee2uQp=NU*XI(pj^Dg5%SkShOL_TTcIy`bFIlO&f2%KHQW>2R9cxYq7`I
zwZ0M)or$Fq90n$3D;-qbS?%1XITG|aDeyNu8x;zz_0xmxFYG?Vp*c5q(~kxxwMiFt
zJt`I|-w##QB$ODOztP**>u-&F0;m#CRUWhkuW@h|+X`Gtoc|eXFU>wkv<mQ(Nr<h(
zh4}i{YfoKGEM1$oCFHS)oL@AbANn7E$=JW5UH+XW*amO}$A0fA=uz8Rm(_7+wxCXA
z_1?PGuNoKtxmK$L^RH^mq~E&5?dmMw#~S!s)6Z-Pb214HPc=v3W*}ZLX7;+o>*#1r
z!KwoAeAB}65@U!y@6vDXY{ore@S3v7lCrX4%2s=BAAJ&N93J$2g&^U5H|V*C{W?uN
zRn_^*ZvrUm$ROEm<~>eN%6w|`)zhb<yr8VO%mMO#_9Cx5(Md2FVN`&93R`pbxrc7#
zM)0cSrzf^A@$=U`e0-}i=ZrNgA-DCD4&%gS!p;=%C9}U_uG2Cza_Gt%`T1FyC)a7E
zipvun7gRlaE<2fQqp1AQiZM$-VBjHgl19&>n-YjZ$~$aFq*lFg3evQbc>w95S=LeL
z3zRTwbT_q=K^%`7Kz?XA3>iKrJUU)i2zhOkl#v&O={3BFj=P#-&%lT1>4h1I3BXu9
z0t0PTQPk%Fq8<$;X&-4zYfb8Pza<Af<GYNUQF{K4CVkM<=29ncZeIKCLum`m`;hNS
z(xpJjxwRjrCbcf@vCFBjM`aTDHTFMCu+)h$ZH3=?n47>$Oj#Hnb)@aY<ag@z^RQ%t
z-#+$v>s7xH$CwQI=Fms6%bZsNMfbCo(Vb_|g21(&h&S=EZOxzJiYuN_&MeU*=3B+*
z?08-eP!1f!4Xa^+zeWC$;u7MevJS%=dH^8{BuzA-u<l|h#r=x;^}~FXOs!%8dV1%_
zxvqtKeSe;rq$;sc+OUG^fA>%*0L{Dz>(ZoNQ(_sLm*~yP`mj8B7ng<pt)#-kj;uG`
z?d?*I80Xt_AJ@3m<yC{ldynz&KM?o2FpQGIhx8|wiw5$8ZT*~_@7O}G@I?hM<-oaG
z>&5EY7d|~g93~dFkG-bro{g7%#bj(X{wqb%JI-8pB!~Pjw`VkObt_`l&)^=ux_f1)
zUeR=8mSU*)m8G=qua#0x18>zdo(mTPZ9U{Tb9tjyl|5#%>FUq)&Q}PJryAM?IBTvg
zGtPR4NIu;G(^;$^Cg$9JQHx8R0Ghww;DFoc#(bmFn~d4#ay1-1VXr*<nGfmnjF@4R
z0U}F?X?57m8nYQpMXVx_CoyzF{gn&s>90-d7Q;s?BZbg<N09ts^%$df>Uzz~Q4A}b
zpaA9%cM=z^Xgve<12+#h1u?h0>ZVcKK#gEKx_M{}!aNY1A@j#&s)q(h$^W9Vx%dI~
z=c?7P)~=U$OWRSD$7UAKUHX-j<5^-*Vdiyp7V3?zQrBg<3OW9ceOHiqJNL55wf)R$
zd6LU#ypx^h@K+{2I3X?T@S3Pr6B}yfhqUCLi;g#|&4mns4U1D=0bc%h!x8>weS0eo
zr@{OEdAqmMlGP@$WmmNTH1L&b^ZYOHwG5m_6T{=9rAy~ejM9JBn*T*cCE2XhKpR}(
z_iRt;N?`=V2NY3fyTK=y`OuP6SC4J;O4UxAU^u43T{%D&7r1D@Pz4MD;cM{*UxWlA
zS&)&F>9i_SFz{?562c(VE!G|}8%b~s_ir|D`-a}6T`}V30m2b!LLNtvh+gn>{tYKb
z=0`uC?#z1iw@p%vI79cKy|EKrjv3=)oJQxcKfv)aib{K^xD!bN8;Q0XYk2vRkiq0)
zxi>9;>&x>;5m5w9#@@xXH)Sup>ggzw`WM~x65lo+Gx+np)|D-{^=#Z$e3sAs=;iuR
zeZg<B4XKD$Ibc7!h<%DZ+8P#{U$rtldtqIpy|u&P^(%>o%5&?p$SlTtN`4Z|aZI;1
zEqw&*&UW6Kq{E})rLc%8FGu?tyD3mP2S(31#5{uLQA?WM!_D1y)pk75JwIn<A?b=9
z>t;p0S3~m(kM4w&;Yp<3msv3j=86^3teSD;p^EI^0zkR!^mR*&llm6Y`OD7BUloO)
z1HH3HZ12yf2<@({tu~+Rfcpwz&G-5tKTWAm;Lx!{uwJVfvOB7U1@DiepeD#k!_*Bu
zYf;giokBRonbJfQV1v^;Hm~l<gb@^D#z2$4RzzHX;6mTk-+XkP6Pi6?_E<i`pvwC&
zYq=CC<5EEd5TyuuU1bD?7Zp384fbZY^)y8lG;>B;E@lJt);x4M65;TzDU-nMt*v_y
zTq3$_-;pWN^hw0T%Be}xHxJ{vdi9gu#oT)`Nhrf~bkHTR-|T!E>a70U<QyH4Y*VGg
za#(nD4ZhQDz*0z0#PFJp>b>{LL(QV@9l!$qlI)$|`I$hS)0$+(+x3mVH(QnEeuibe
zmMND9NS(68>FLPJQ^n~P3-ksVE@WYPpX~m;L5FoE-pB9!Zbw%_COgl|xdb~a4<bLc
z<a}4cNl-XGJ-rU>#r<p61{rQ%`yo&a5aAOH+j~ing#{m<cZcAfI0=PX`}H^J%mXhP
z^&NSs@>SCJZp6y<SnM(B!ixjFmWAVGIdgE|&&W+NTl4u&#sm1**38p*`J7&I-5Pz=
zoDN#-oBJPAp0H4yvMa9_GpvilBh^08tEQ&KM77_5%}xJpo$E&K{TH61oX;ywE=Dk4
z|F-!wrdc)}4=#=#D14UY-|e)aYy!?n8?N(LiUGsg%7%t#!ox0Y2Hep!k`Ez`oezSX
zSC@56QoJe_`oJ=J-tRD1$RyR`#ot>_!<1B$xTXNkxte-aBOUj^pc~ej$_vh|M66fF
z!Dis}hcaXFzoss@kRV)D8qtDX_~BZ!<SlHpQh_KbXn7hRCq&Zs)gnWG3&04E+?H@X
zYQDY9Zp_=c+PE9sVyrrdThnICpZdA>8YXto9d`ZoX^TYm$9T2}nWuR4Y|ET%lCf`c
zP)k`xg_AtCo)l59gE7HNFq4+61sS4LnTLA_7Xut-X}Qn~RLgF>JyvXhiG=l$e@OC^
zX^vH<!qM7$^=l$U<NDxpfn1Fp_8C?^o!QSbN(BP5mrgSF(TSaw^Hpu)UoP#Dth|T)
z#r8HzR6jKwz?^i&u0cw5^Hi3h&by@{=&;6p!BkrsyPXs@U1h*$#U{kDO|MB{SpK{f
zUH*|cc&YBR26rdJl3!A^XAIGHz*x5@dtNG9qd&zoYVv%6US%j5;3=W(E&{e<mcP7$
z)~Veh^IdaFSolu+_;M}`xeDuz^(Fk(hCKW_>+ET}2_tjWp1;UHJQw$N{CS(fv=(o#
zZ28Ma_eb}IkzJ7a8wtao`Gb@R+T;3+l#EzD<G*zw_5RJ3Kk5UohK&<NUW2b2DtI4Y
zT{^OPnwv)EDk9npm~F=i*T~i#4pSf8hnzo@c>c8SHCrw7bb{#i-d1=;3rt>C&&?z`
zwfwvNU~<uDgC_S~NLI=C_C`B(x(dl0S1Z?&@)#oMmBj~nRj>6n`uf6lsbS2`jw})6
zX2+WlC*)!}XW}2If0u5(Ei+iGNGWH;mN!{Xo0t^b_xb?*f)Z-N{SjhKnNbM_m=R0+
ziJT8~cgDOYm7-;l_RN2-B`&E6WpfI(2<&UZ+Rf^&DUj2{%oQY1b+mH=n?P!36FR|-
zUidfG>H1ujX0d>v6U9YgVZzL81of8yLw~)Xkn~dJ;>~Ax*%cKtliCM9kLpo$VmA06
zdkh{a;Q&i!v-7aqg^MAIrKQ~BOIFV)f@23q`}3goo2g8OU0aus%%N!&dZ^<2yWAIO
zx&>1?>0zuN_0#p<(f(akbH86Ts^GG!tY4he5UK?A-JxTF`Q7ewgldeji~d4E<ka0{
zoJWqQ3m|fZKU*qR40p6lRP)z)&>t6hdHa5-6#=Jo5=p}n)8O(TRe0XwSG=Gwvv-5i
zQxc_KaP_D}dN0Jc)<v~~?fi2^PNGQxUUS33^x-J=_e&X|BVEm?fsIGmLBn>%o5jdT
zc6S0rupv$U1|javhVC^U<zsuY;wc&1zDcqH*!*NY-o<lOlabsE3i(~|>@Hnc6g1f$
z;GGVsy{SRQ&<|voj2glQqGe{=EgE3lccPCO2wfMLb3oyjP+;vS(r=FCef`>Dsf-+P
zG^PyyAWro=Ax@4{o2Y(Z$Lg-%KrmGx{b}zD!c;_MhHvMek=L^c?Z|Xkf>hS@jnl;Z
zImfSbGW>hDlLpgM{S*H8B7r_y4;DH=LBi+hZIN_GridGltkAFY-%ud~=5&>I_M21q
zb$eAf?saE_I59B|Wc@)$MNXq}^LM3H%^A?AHm6JWB0p`%RUyI@5aKgy@yzAmyCg_z
zXM98GI<*Wp^s#||EVjyU1~^~s?5=F@t~fR$OJ`+sdLM1C$)0E)9$T)Fqn-oBaWyH=
zj#?^lAW+q{)Rh{x8VZO4yTf&}5w=gG<h_e}<0g$+rauf2&{jyXuc#NJDSMhVb`y3P
z%9%S8mTW(SjtQTe?!^l_F3)3XRk5|?zodfvP`LA<i+5^G?eQWc9JJYh1i1bP-)S4s
zwzF%1!I+{tI~s!;xn9~k>;sfgenI}*J%m&V0jL#E4J*)n9^bJT8mUS_a2D7HLx(Jx
ztsjMz5i<w+R|UVPr^ATjja%8p4lSw-RB}8F0Dj?ux-;}A+1&2~R5ML-<Pryc;1J&K
z$RHZ-m-bsrr|91bU{lDE?X~7eG$6Qz`-a5VJ!~fkR2;WH2IZ;1#qRaB>F~HH)8w1A
ze-m1hsK6rD-;plePKS&3ylE2Zqob9KeTN`6+|BQZlAxPj_(YfZKmArirBIU06t&WH
z?A_T*v&_yPBXDsy3GLO^8&W1v5f<Av{IsOn6E%`EtBv#%?>nM4G_1#Y`fm=nXaGky
zu6T(O_$&ZV;;AF1fQ-fU7yV89^F%%C+nX;ph&@G-|1@;}gmu&<Hx&dw#mm~N9?|@-
zpf*GLfP%ciAB`@m)VJnM%}hJ+ERzR&GbW7Y^a@A$1=%xxSG`hwkv_k-Ts~|oNR}|c
zd)6%)Jo<%YEJp!h%lndkiJ(O|WCE=Vd>HSpS-rOC$NTp?J(N;y2@7K(2sO80s+|YJ
zl;v@>6jo+`Cs9}I#9#=k<Fo9MkR=9rdzLD_oRNLMQtri5!14ABk<9pX_hr&r8=Xr3
zx7kQsX6d@wmaT<euuM{t)eOp+Yn#V`bP>k5s2BXtX>#;4{oYlMdQ}~ebS3Jtx?Z3L
z?eC(ss%ts38VfI1J@xboY*dlUovhR)6pfzj#5`^=_TKtkF>t|h{_WmS4ZMA$L~$e8
zj|Dbk%kS4H5<~NdyM|n1R%~B=#MaA%8+|bL?e>~U=TpD+=CQx%+DKZuak)(um2fQW
z)%`q34$lV`>?#_(F*F~b9eU>xjatJiGxPr%=cVeRGY`z&dJ$22a+qyL4qBa3RO3R(
zP|L+pNCUT0z^rQAlZdM*nYPzA1Nmk%O*61?4SLjafK@`xWsGIhOPfDnGrF9^+%L(c
zu;W6Pc<yVjt?cuvo@nqO%`B_(HH>8(e`BXNi50Uv?oplZ0W{`9g&u=i%%r+-56U{9
zGe_yHj?PcpVksj#aMr=q%$|W;w8s)NW6O-vPwVB9d4Jcoeogw4#}ZfRXUwqKz0K6|
zIk`s*YIXuAq>?HUC)}^i?nHl{_-}<utygFi3qZLH8kS-AmH{wts)OF_my5tt^!30T
zg`iT?5HL#1xEiHb=_idka~pZ8Q?BDU?WL5@*Wp9#G;wTtdE;rqodl|NA`QGo%x=cI
ziJ3F!Rnriv66rZYR7=@!WFKs5xgM`xJeEta$8;;|5U-P=SOw=qzowE;glh~<2=(Sj
zU1d<iq;GbN-Wk^J+J=>6iSTy#^iAJ*(jYW40I-Il7kD1rKmV>qR;&pyG&jVC^pF>6
zr4lD<PZkJ>evP9<OE_-F&Aa9gU1jf1=`Rw|ded)_kgxAz65ZJ@UHuc|h8`!5^RX~O
zAYe^naFUl8uYK+-tV%tG9+bs~$V~N}Fi2=JIeZ~H&7WJtcE|pm*j%{g&Lt)?J(v!>
z)L>rF8_bq3GpyKnrKKFC`{Q)H;#$Npai!qUPiK=RMUmZ}D=9t{$5)v_$n|*g&9mIP
zKOs#v%Jfn>8mR{H4z-V4)V=#B<V77u)dIx!hl+h->8RvR-VbjOqOTi*Zsz2bx?pEU
z@!eJ)(*yleeIKvHAwMehC#T03w@u}M7UaqJ;F^)0v%2<_z^Wmew?}QJSP*k&_sbL|
zgVQ{to>n%}gD%32$JC4WAydxU&hs8kS@KzvwvRDRUBp{t)QhR^Y+|4(%ae%U=Iov_
zA>?U3_{s9DmnVh#!dW`OhOV+1Z{7K9n(tJ6!W98<#H-0CXdnJ|Bx*x#Rs`S*m$0~c
z!l1gAse@r_F+R`dNN%?dzFJl4$FH4r=1r~JRc&?MFVg+Zkn)K3@s29aAJ7yZ(MYy_
z<n6P$Z2lOUa5(zqD=7&BNQL#i|70r{KwGL};<_U15mlL0xS}9`{^z`E)~Wefu2!md
zK0p5psXO8}$}}2*IoT8G(<gvz)u5;Z->$2E;*8SK2DPO5D>_JZz-hA5Dk30ujlz)Z
z{y7uw$px-KlJsvU_05!J_s?&S;^YPTRyc5E7_X9Ig<q}T+@Yh4?5m&vah0qx#ZB5)
zb3~$!Ne1R$0uFi<k$wK;DT*4syVz}2JXwOC&sID79DBWwlwr(T0D3COz^9}Nd!Hqt
zxpdgH`0`Z)cQJk-1yG2-Y#jnY^tL7Uu4w9${mXLL&^+|2(jC$0<aPYOzNTwvYAcsA
z4+`B%?$=SE2)enRDVYO1xP^>^%=UguL%#DI=aRgEd2dU8Pt~D9GHupnLT|5%O->$*
zuWoLib$&ZtS^~@=ud?1X-;PkeD9rCP{~IrFVGOK@K+dkVOx8V9WQ&pYes!Q7?fUhU
z93dt%nD;Qcj`Gg$0{kKTvnH}`Z}GoVQe|o*8~nVCJkGiwli*{j>^`!e&U9m$Y`?MB
zGQ0)MHt}%MZ@?nL#v^hu`^^D?B2m5-B2@&OLVwlp0!Z#RJKiA?418s{8u}+0hI8My
zl!3~dB{NOJFXH_Ws`~P*Hpou1n<!3zzZ~s%bpE2<vE$=oT$ODlNfEzyP(?p`D`mOS
zq1)XCH?4_E^yDrv{$6zziPOBtTt8}~bAw4}M>J1}D*SZUj@;@=k;B%lzq6h5i2bp9
zs6Bdw4`66LFVWArv^w6|Gi9JjXbi;62RAc<+sl1(yYnAha<y7@9DM*4+|Cru1K!78
z?vKrM^SN`n!ODa)eXRcMb;P3my)QqIi4mpw2KVvw>oMnB`ZtJx7H<Q!*Bh)uM$8PQ
zF5&0=jn{HRO*~#_^=A03rRdvUq2g{L<?nzvn_cJX@)4ikb%2in91{_hbJS_aq-tek
zShKPaP_A<9?E?xopKv42uh@yazp?T)zNU$vzBb(y;r;E#b3FH><9od3%(8)#s&eVb
z<F~zO{FUekEH^L=?YxzI=`b1>51SFF><T@!ndqTODn}iz;Br^$m6%LnQYGvn;6POS
z8q{T-mXexcJ?QDJz4m;9knwjA@tkrLbF^WKB;0rU#y+@W6znl5-5^!th{zbzqg+#Z
zY{s7)tk*2ofgbCfuXW<%NmlX;eMU#L)jnmDChFq`ekAVsOg<~6TPueXLd8fgAGcqU
zaBZXyo$yl!+nc?bjpJxe@M~}Ym?-LnXOFkYdo4W+X_MwntG@(P;yu`7MD}J?m(;Jv
z*{~AwCJ#78Ie~9zT(dQU9};pkH{}FPN&6<k|6=k&#qm`3lKnu}xOsOy`P_rmZF;~Z
z7`cksq1)aa*+JDg0VyR}=gm5KZ0}M842W;5O8eX8HMCL84vq_M^-2Is)z;n6g~29T
z|7PPt^{V7|#H{!?>ay!)5ILn^Vv~2Ii0|fn!n>aGjE&);Rz}}mttBbW>l6#1ug})j
zqR@H=ow3Vs5Gw?3j)(ezs{zEsdGx*eXn&vmK9i){=Z`j6`Tm`ICc&O;Ok4dfiJhMJ
zY2)Je+PY1wGy3(wk#8EIQUa$5r{Z&IHi++@+h>L4t(RWMyXea4l9yze43f-ti)SR2
z7h(IF#&m+rc58V_F}WH3C!s<y+h{6k`oJaY8TjpKr;ka{)pj-hZqSiT>^u|fqO<&F
z3272+#CP2=RYsYSr%^a0c^lSds(an-^K42HdVXXe8GCsJl-SriSiw)|Q~1r6BTZV3
zEBp@+xtoIopb|X4Pdh2|g7)@x%9{`9s9XH>*B{{IDljb{QZ!vDA^(!2m_nLR>5wNZ
zj6bTgS-3=*`QWbG!`MPLFCgN4qIOGV7I#UrpD|)Z^}5E-Rx1N%?=viIZf1rEuNV5E
z`Cm3NO+1?c9i@o!{QHnEw3BOFD+VQ*aEPgz`Ik~@TXquvMv-`(iJ6%QHs^_GhQyww
z%1c&h7i4DeP<KG{{M(10G;;SnJ+4}(Y}5+l4Qh@JiP)bC(m}$Gq9oh|O(uua!0Q`)
z2Vx7JR5CZ*dv>bj1&&EsR-L<Ef|sI#e`=Mc3|Ip+(SlBMko3Xf%~vkOHkF$4O7(zq
zTg|-0AIK9ywt|vM3dpy`oI8Oiu+e3A$1H#-6Qm@X&7~-SR_BBDU{4y%yUASbiQ}L6
z`=@g)&}(Zyf!O{R4SL{gsCEvlnA&_C$RLsTKI%=cPu;fiz4s7?I(qfjcO;YA&1R7D
zY=Cp`Hm1XqhLfX*7DBqjxI#c4Eh~`};P+=wT8#E<dbI5;DbJHm^U88LsaRJ^IWh3T
zEhHyo6QC+22iZIIW-l%QOKT^-C*@NeB%cXIgVfAVm*cD0Y9<F|rSr!epGo0v7{#`g
z*4kK8a`^|;zWoi0z`jdrKDcIb?CwJYjF!t$ZYgBF^AJ{|skt`0?=6`9nTZtZ$D+0o
z()`dbt$|PW-lZSam#+HnaTcuHzx0&0#9s2jf5B*@hn8AIY(7?nq_^3A0byNZZSw!N
zTvD=8y>FX``BM{ncKVk*&h3L1x4vI;3S~GQH2PAGWtXlIA`1Cq^&EN4-?;&jza^@8
ze;<<n>tV@izFwWf*IaA4={p3s)ZuxPTTZzC9XhNV$xH8&O%k#~4Tn4xdid38jjIiF
ze=M5gz}07COw4;LCP<I+0GIjM7iy6+fP3h~)n{Vk7#zMf&@+%BV4*SJ`G<al#1c2U
zA}8FoT0iT3>xwH|wCwc}3;>NUpYby<=x+8l<HpE_;okk-;nton!AAj6u}VWWIiU|2
zBrU4+q$FF>alKP6@ovJ~)nqpAL-g+6?%Nd9{-w)ZiI~fb%ws~xTjp$+)+;=SxWwGa
zGX}V>Yp&|<v}Cgd)(-$Z?_8#$IzpZ-;kVv}dI2ZO*rccC3HCJyihVd=-j@qVy~^H#
zsOfRiO01u}rJ$697p3@TkJT{DrD1w0r6iLO=7Rh+?<U4!Rczmo(XucwP)c_EEmv|P
zXA?;7**HwXIr%J^Y9!sIEy`L$9!))Z*_|K;0%jt<Sw(p_o5zvoQAzEX87D-gte=*0
z^JV%X)_Vs^jap#Ub1mElx9}53e&_e6%{nd;SCiQ*uUmFta?ff~jz;EH0@p%2=C#fJ
zjC_w-L{yivcPFU`S!kl|`BRSkbEKK~JiVGc&%<(>quWfG->9haR+8anc5hHJSV>^X
zA;GkFXtb-xe%V#G)nytz%xp8f!AX#ypF@s+CJWnGTmfjE2T#srrg}%7g9ixskiw#b
zyocDxi76`UYnA5~bt)v}p{z}rNT(x02}K`6z7sY^OaD+S^fNq>P_1f^k;jUB`@3q6
zC{ay?awZ~FwE1<;gdVZ^1^dTUQ^gkBx@m90#jRW|&|f-F;{^*$@3#xeuLwnpAf<b>
zCjuu1(m7hxdrgNYXpG9g$9eCzurz#>&HWsDC018;ByVd<`jk>G>B*;m{ZdlvnMn`P
zOuXWj`)g1-iD37?;VvU3qEw0<*|8Lyh~DOo)n8uv>21E3S>WalsE5au-@O~SW%&T|
zDrYPYdg`yGC6L;#{X8CjzXCEWA-afUxSa-?PkEvcO3>tnqeEh>A3yf&Wvskjoteb$
z7}M8XnqHjy8yMF&h*r&TfSdgk=e?+2h*TE#`<4(EJ)%c=XNkIm=YLR$<o=Z&%Ll5v
z<oHKkCY1{!dT$Od(z|2Qn_dxh;uddg89?<Tuo0YW2WFKGGA~H*MKiTE=d<12s+oYy
zzH$3>wSPfjDg1b2S!bsfYI_*~2lJ<^@rJ0D46Z6x;)>uXg)EIiutEaKTgVUjGUmF|
zT@>ew7G(5+L2EgB?JqcC318}NlQCe{bX@UFs5ph3tvH+QuO#dECo#?Kx**qdsLwZz
zQjz$S8t3k>;4$sx`EeZ1`j{U`Mikf51=`F%(qS!Baq&HFNB(V{uQ0RWdNhlazvz+?
zKaVbwd$+LjCjSU$iE?+SVXd&Hc@BA!d;Eo9lak>c1mumdAkQDUR@R;SO>kAjF(5e$
z0;D03vjDgXRmS=R%bW$u)<DYzj`)#RR*@t5D1GTrShTr~RKV6*eHMtgcbae~^bS|d
zXz>(#PYbIhm3e!a1(__f{*)5DldH6#cYw?A=!AnP)oY^<feKftY1R^J7*VlYC4(qJ
z{lWg(?YEL<yvfLBx;v6O`9f4*WO*UXF6w_xUVgeMbtN$Tw{Tu__<HQDIt7S0p74>$
z>AT$e_6lLYj(?QF1-uXzxILys2GKBQ=Hh?+es}<H4`<Pew@i4Hwu#z05%L9~E~VP1
zT^~cEBrpF?Bv~s{iP3=}#xUgWbzkI={!QuG@fPw0+V2b;BIHErzjx$%_x)T|I43TJ
zW&WH<oON?xn%7JQmqNm7v}&+=5x<6k+po-UjogN{r&yBC0El8(=0{h5nFBdQ$iqG1
z2MA8g$?{u~bY*8%M30+KjScVm&3xIKJNMQR4y32AxyemOVNC=q?u2$lZm#0Z7@GID
z`-ftjj}3%E?+|IEek>Nk`q5NW)>w-Lalc;{)Eo#>SCaIDTrnEC3YZ;p6LljUqbUfa
z=2+Q;6A3u-rrr%g4O&yan4p2wt9x(B>Io!U>uHrfYdJ9m582vZ_3=Y19iJ|Ja<%`K
zw+Y~cv{|x~VEz6q*4ljcmGrM6MC4|gVrPYVn`$sTd(5`|n>jACCsU3}dZs>{tm7@F
zW0@~d&*}ka5oOe%u6;dUtO-qqdi+Tbmc^3XVFkea+{6Wyl$dPfJM^&zNhmt2_ZyTK
z)Oc2=tK|3v2&aqsd?i!@bJ~}~Q|V74K#WM#Zos|M=;cSZH)MjlBF5<FtQN0&yN5Q9
zaBfij)^!Gs4N}h*+(aBHUO!|VTD{e(74tD)6G}16s;nYWfBvXOHb8RMo;7I{+5Y0#
z6X1e8#GZ4Z1kXQH;{SpS+Ub?XpYdLcZx<)#a}vZR9<a1FQy!|L%7dZ=hdR%1A4hB*
z)t~zsa)F~Q#oSn~Ev;KSj3GRSp+cBkZ)gy_XRIB89*UZ4aLKHXr2wkDmtyQ--Ihi@
zfOS`s7dx<yWZlVFIXXQ&IPf$%17>_oIQ+^R8mzA3DdmW0&;G)1w`>7Q8##!u>vOAt
zo;H=36V=X|g+pN`oDR-&v*uFi0<}VuVDBRdV(NLQGotnl1GkY(j=IycKMiAYcitDn
z#<e*D1NIMkb720`IQqN0TYs<Gk^o+6Pn?jOzLJ-ahwGsKo#@#Z!(^2%Kv<RhM05R9
zdUVgsi1XOa64=l0b&PP*3804Z{~c29l^d;MW_<1Yix~3hp5Gcc2o)@xW*k{kI|)w?
zEi0(Fm8e?+F~(fsoG$7rkH<1)b1wqm$ExeK%a>l_T;a00ClQTC2k5EY)R(~zMU+=V
zlEH!tQQJ;R(psVSG7ACx&Qx)oE(zXO2dQ)RWsh_^N2g~}{T|j}wiT*?Fn^g5nJ077
zy53h<BfwF(mf{rNJMxUAtp)OMdCQqUxpqg9Y2cGaDcGc9Vi~c!hb5uoBv}uV>9Vli
z-g$2&N|p#v?&6gCT273$Bg|#mYkR%-K0}LOa}LHMFZ#?21I&Lp1cgbGqM)p-&Qvet
z3J$FUF89T?1Nvnc-uA{vU{5{}{@v{a0($*ZI|9i{I5{Kzs0ODHySnKQEj!&R#=1u+
zeFz@$0gDA!=}w1=bG2l}UufB!o_m!-&V&qhfRBcqM_!C>t+#5|`JLvrxM{w{S%ktB
zd)RO*Y3?CFl8^Uv{SR}_|4mC{LGlS?*WEz!b8+EA5ZYu<p&0WQh1<gGGdV|@moAbj
zv2;E)VgDc%k#f3Ng}ynHQ??sCF~XfU{8eypagH2{=35mJ5xx3#1X}@049+%uKm-Ia
z(cn|QW3{3sCU{*7F3YJkfE1u0ogU|KaZUuT&%-rYW3k>db*pfkEsPmVczKFCwWV@@
zMZNhyROmej^tRC&6NaJW{f6}_R~zo@qdMO#D9HutE8Hj3>IkADm08BVtA_v=-Y+w|
zgZ_VB6cyv(>vOw-lv(N~y8AvfGq}zlB}fsa1q5z%XnNWWSW6X-&SmufZ~&>U8Kvq=
zys4c*|K^H`pE%ZhAlPM~tTIwo**AME7ITB9<pWRj3GTC_sd8vq|4Oxra?V6epOgy^
zO>~!bK<)F1JM>eHbq`)YBuJ386$r(8{V?_?R3%CZvF27VeyO5RF0}rjOFQ9kBX-LM
zP^MYjWDY8V;?7Fccq1*NG@g;}^=`R>f=a(A`^BCXh->c8z^#^Q)%g@V`C+AppcCv3
zmvXB09?v+<<EYMG9SWj$P;9KnRz;KR(;U`orMXTO3HA>{WOtdj!BUjPMSb5dt@e6q
zmOUe}?FZlb85y?}a7jS;KjfeSkoymJCUgaDTeI?MUq7rXa=<t`=^FVOzN8|o@j4z<
zAxh-N`YM6L?Ys5NeSVlBsr15PrRz`HQsVWN<#DYb>1+@eJ01jqa0i`zRu)Sx_f$)5
z;d`k9;Gj8Aw`#a|l|AyN8UzCl`HArSsXzpAM@jM=jKa4$CR7LI0KGgE8gTHCKGx&v
zowr5RVrXIe{^Tn>P;u)T@y|Hmr~}lGEx(E_17lzrmk)ybImLZd(97b<3$Q`>(Iev;
zC1r)mB*}%%Qu7KtZUpo#^FlLkfYL>>c!Si6rOV-oBJ9=yY=<vM5QwIm-hv`=%o*=^
z`nP8=QTsQy^(&z^W<H1Pw}2eYcH4)4F&O+a+^YL`W$_ex!Fy{?5~>i5p+86IF!)Fq
z{^v{lN#Z|Okt1n5`~!5I1^MLN|EQ7$-U^s;33F085f(1&{s19x4WAI|o1nqmWiU3H
z`XNNcu&w*?{bplWw|Aasb5@IbjLy{yMi=$Mas85TF8}Ye)K5P_bkzTuPYjPaPqo4R
zhjgdk-UFi-5Zvb~WK(Dr)$2HE>lsMDmeJiulLEc8Yp-J%vUo`y`&S9n1R;b?_6D15
zW?LqXdFz0nJCyi-x7*}_3xA;J-t^*T>?G0jbhqdxAy5wV`rksz2rzEZt_@yOr%%dJ
zE6Pk47M>o;nIMWrL^9~?V873^z8BTI;6B5MwOdNbD#;m52b$G{{4+Q6|1&WqWX#@R
z*PL6@WIvVhhWL^$)nosiEQR(iG`FPEyEAVYDBHGkVZHI|b%<pJ&56JYn6gRy{AvGO
zpPZtOqzw7Z_`hNZ5Cs2MNZnvZ-Qc>Lq1I8v89wjtHX2^83|LKm_d>>2qq=1|boqfv
zki}qp69^*F&9*lsT(UwLak4QF{nKpkQ*w3azgjn&`_}u|F%*>6e0(xs?Ga)KJb(;p
zkQm?lM4ulbr(uKe+gf^tE<@E@w67Y~IZqs6$mFurVje@!yO1DUbKMy(e^u;~n4dn7
z#^WtK>7iq3!r@(A=jQeeOm%deM5^tE_8o-SgT&Js=mf#mO6}`P|I@NJ`RvXUq4)g8
zY~MkIgGFtQ6W@R#*>rd#mmClPHC-|vk<dK~!{!G2{x%xDv4*sMeo;jGMAn(?N*@B(
zhdHyLsEqjJ6!ck2EU6K_p6ahV`uqTz=>s}C@-GFpZI*@;L@Bn1G=Xs+VhGp!cNs7R
z72vP&Z4i4&O$ZTo69mBblv6cSbMOSyImqzNUuE|d?qVM&02*hkrOB|oHuz(#JU*U5
z%<m~j4}8J^q*$uiJk;H0{@nnBsFn`;5$S?_t_IRNONb`v>Q{?iSyLQPldVrdvTY$!
zj=3BI*YISJUFzx2`RC;)-ad=&)0H^qc@o`TqU}S)-g04Ql`{iQm!p%8(6oer(C!ss
zvFSU%r+|K;v5g}T)mIQnz--(4<ZMrZw*~S^KJl|}ojU(r0`-C*;UZ}Qu9^XV`)~oX
zGhX{AGlEw9*wD*}N$)#LgZoSh3WQpag1@xAH1s$x-Bt$M?ey%UxrV16LqHT6++V0P
zjIy-{a&xu?YUIM>I2#m*yy4e-<KY_z2!(>37(d?GwcL0qmVXBa6cPO6FEC;$B;=b@
zwfl6?bWL@wwGGhZL`&cp<OVvVvEyF2KwTF%j|sNeFOLrpq!oMM-4WCE#|sGJUfxa!
zf<(#8*T8I-^0#1co=AK{>yvND^}@rWmXg4C*)CCM@}@Qz80=g$1!9+h_$qe6XKUmM
zpRj%1r%OOGhs&ttD~OG_AGTffPdRl+6_)zmR`9)Gt#Wzy&L)j}@7R6CZDz}x&Zzl#
zFX0=n4r@UFV_XPM$Ox+QgZMq7)S9)PjV$?!aWSnC1?M&a5FUa@NkFQb8Np;jl#(WT
zR-H)>?;1rc2Qg(|90hFo6>#hL{x_?X|HXYiT_WOwNR#}#y7Hy(TZu`_t>^VBs{d9u
zT;Pxx#8|=nA{y`H{0OxcBw>_T4vydgEA%xjc-U#|<>EEv0E>sa0t;l>u+f|O`fA%I
ztmSyI<0_j}?@g7LC|D=9<90NNA%{{0L`4T$LFNTGeQ*ha62?a-jx4YW_rup)=?LrW
zyfPBVI1TDUyb=TPS}Z!P*R0B$ITP|8ln#Soj$xX0HAg5@AY}kI#_A3@D5CdobqQr&
zjPF+G=X*LXd1-w+>wC-bO58&EL+F4HvN;*zJ|qx+eItviY>Yu^ABTgjaqHpwCz8($
zEr6s^&ICqDa>kj$Q1BAO)b04eM*JK(qAyjF<tz>6sF<8)csQ5dUK%U}Q@(YQqGS#0
zedoGjJ(#<w2MddkxdK^+9x%uTI$bP}$futCoZ~3Rd9Sah*>(Q$)Hprm5gHTw0C#j~
zxtVV_`9o0l?VRuXC%-LuS196_$>W;<K9|13Awn_#MX8hAMeR^PDg~C5x-_#bb>L-e
z_Bp3n8UCO|E8TJ0&v9<}6R~k>qRBfAeLZl@cc?<)DC8A<VuD%65gI4yZTsh{0T$)*
z4isEhK6*d2<SMe=^oR7I6|646O1%c@s~>M4s^Ikb(YR1gZ+sm_m6-T|J`I>gT{MB@
z2)MEb(uB{Nb@B!IYaNl9Dz(ud0nAT>0ipB(>qT&Z8_{7TgVxU1_uhkGy=}E9tk+X=
zH*&<%SQy9~*FNeTqOI|7XFaqLok2R!!xZv<-A+>zh1XcNd4Ndjb;JJqlGhp2e7wBl
zbvAViepRw!vx@HAMgUBJA2^vm9Qlg{C(f+oB8T<j;qNh<B+Zq$d&Q3yjN`&r3|2<v
z!8MCTq~5?9(ssn0nXgegv3?W_HTn47+lHHuN;&pK7uM^@o1EFW1s=Yt=_{?}0s9Sh
z+>%gb4vLplUp}4DiwRvj+c;RvJUw@{AL>xQG5Z|Vde&A6?58pW$71-{o>!u`4xuA+
z$%?9=r15+(JI?v~l91{a6AOG-@(D6GX;q)J`F-XjMr@jn9xI*o=L%1FNISUZ4g$$q
z4%L-m)*)@eK3xUtt^iI5JtdiY^EL&<(wZ`cVZIxQlDB8i5V3n(+*;*Gp~*=4>pP)b
z;e*)zL2jUto_djze3NzABR>WM<o+}SvqS@k4KDm_Cri-$wMO7OP;Y*2N=Lm&OTEZW
zy2lc|y@lD4UIl;fkEvDf?Ae2@JvCO-^Ve&`w;tdm$SUTH<VDjyWFWIo*D0=>O>FoN
zI**Fh6?WFm+>YwRSijEIp!-QmphlM~Nct7{F|h%Lw4(?DQhdLqFcvDpyvR*a$neI|
zkSaC(_HNscF>t~Xc<AdglAifB5WbBN$pjL_U3E1|q?y;z@Kj?Ls?qZBXx;A*X<tJ|
zhM938AtS;bqYnebDnObK1e>YX?(37^;M=Kyg)~^r6XeoB4hYJ;V(}d7KGYNeWX)}0
z^!*e#|1l}kEq+#)bz0raE0*xU+sEA_u?q~gQ>bj8Q?*Jz+v-O4XDcYCyJGg@n8?p~
zARD#uB%yj1<YLq6!mGx$#V?byKtSjrHsn1Bh%ZJ+yAZE!HsX}3K>c0CL9mgGcIQdL
zBXj{age{cU+t%gt+u=GL0L-N&f^``x;?S)=b(MYkym}Q8&|ux{w>?|*)Kp|7ahhrz
zk6ir>Yu|T+x5u;Y+1yqzu@Nn+DHXd%y@cyEF5q>Vr5QqML4TI$lAyTuFZ~hjwUw(p
zP%KNDO2OxQxUg+H#y1+<ZvAKJyQ3b6jWyPLsQgv_`kt0#eFW&0EcVG$rJIG_uHUq*
zKAPuf(taH?_&9~?*+K=@g1(-zO51~~WS&&SjqxC=J&6857dDgj&8@IP&yEF8?6c{s
zKq~6<7GvX7BiDANhd3c_YEqv<IAhGgRMmGq<4)d{qKrporgihnMgv{XI-Y(hNb7aO
zO}{Es7<jr{RSpElY*0u#x{mrlZyL;xR~ZtyergnE1|5&}mjl06V|O8@;IL&OMfR54
z3o<{&evm{8jg}U_oRN36`4|ftxwD+ar1J-3YhOxeO^ll~8@~kh-4%yTCZE?;k(h9o
z>Q^1}Bq+R09=Ib(2`RF-v<N?9@gc+aUG9o`r`<o71~?Bv6>>Bl|NI6**(Rz<wE_AW
z%%EtX$7H<NeiJ;md!sp6Leg+*D)j~ZhcWWhhIE)B`%V0hwx@e9-}sl$`=6D{^oInZ
zSYs6`GeW9hbv=QqHbx3V15CFL{3$(8RFE8^W-mk_^$pWt2g;?duwuuZgZsuFQQz)7
z>VJM00GX0XAuPx=QXcYNC4c5E_DQWd<cHcTdv@(2en$#ex0RywRqHp2xEo7BR<;CE
z>P4UZgJ@^7;0dqj|3SR!oJ<87Kjf<PPzwp}sLXiny*urBzu!*AS?Hx<lqehl#_-?~
zuPt8b&~vAmq{-}eYsQTfWF)^WhryK$JeHnw6l<;g54`{Ofwg}SR6&9F)DI$IqkZ<t
zA?ebL6vKA>2NwqobO&2?&FRv9`A-`}<vG)bQHI-!&f2woLbV2J@^%y9CZ(QU)wBY_
z^P_|%AjkWNpdQ>U3}=bE3S4+#@izCy-ui=z3zb+sZfY-2@_-(tq6QyuKkRhtgetPd
z4ZR@(yM$H<7@&XFYwJsRS-Q|frvMEc?5#h6^5MReuz|GV99&OI{CfWoH^5#nT_uX(
zB=Eb%{YZ9QrHlBl`w-VX>7AO<lvgfmVb&`%O%4{g-fQl<m0gL|RiUsjGqgBZ66kVr
zDn!eI;&SimkQv9D4FD-)oUs!`=I@NExRo00Gz)=EI!>RoiQR4`O-Id{&2CS<v#&8M
z6At9RK5OH&bnO7~fuhY5)q4GCZxD<EvGbP83yYG&vbYHBEG*;lR-So(3p*KQYwy3=
zbvAC(C5k%EJCdG}b5(j-?%vf*3^!W#%K5zqpeSZiwMY<HJOOZ>k%h*Liw3M^LR86M
zlO?mQb3=N7N0bI5X<P^lN$<==F_<YPUpPspfY7g7>H*K$#sdn!k02CIJzCx^p@^5x
zDV|jw%t>)jstH11qRk(~bF?SS)9)w9I$e&%x7k__Z%p<|CO67q|4i%48?z&6lYB&w
zi^9>?1g30*T0n?KkwTpHzqDk!0!ArI7_lYg<t5CY{yM)~8ryQkSTf1u{JgN;SqLQ<
z9p3u`mSg%4V6R_WNvtdAc^KAfsa@<PB{}84R{LOnqPGlTm0O+ah{W-jI>d<<^jKUd
zw76U&kH2d4-X)GQdB((II?=l#bu-~(0wf>s)QLl?`|d$$N$${P-#Kl#8AC)iwgoZH
zfYrpX?Rdu58}&A0Sr|3s5u38R|6rd}VXvJCK>`j$KR(5Rnv&ay)1-<$=<vfAni<T8
za`K4>VzFrkHB6k>hFLR8kXN!N6SU-BxTEf)gA{jO)s*--93+z?HDWXRgi;3dfpoL6
zmN9Tejopkb6FD6+!cbnzbA6aX*2>79Cv{S}dUco5Ywd6BEfIyu_Y!ZN#lG9|CzmBm
zEE{ntiy73r8*FA+tksCVk$YBW`f@|wEo(W@TF_iluc%n42p)bJiERim<y{X7z&2?y
zo~b1~^(ukAqa*W%(?&$cm8*RN#L$s=M+@${*stF@eWF6W!po97e8Nf6AS`Cwpg%f7
zL`Q_|AG<!e8{4WH6qF-X$W~r|JbM*;-F|Tvew=){84yTcS6y<T(MArzyWf26VKqdL
z>WY2reF+cNR=LUTzYXvc#O&BW#z}lAFC#Y_!4nBmQ0j7FKVuD>;m`pJut5M4!HBoG
zJQLWj30lR@EOVm^ZQKp6F*p#c*s<X`shx)lOWu;Vk@`9J-p_q>P{KjUa%^Algjb2k
z=%>>|z}hdVeC7?y_l#sYmW;%&iYhWQWne!HCkNMxhsevnH;Js%G4qvNd^4z5`Jgkd
z_RdN)Ttn3FQ{G5{I}log0oBQoJ@NnBqDS^hA6nx7zlb&|h-+8C$UeZkpZv@ie1`j%
zUMyLe-pc5VHN3UXz^Z23P(>XKb}=;Hk8l1T>frcUz{2JxN@Cm9pCYRBiI{&i()WKF
z@c2@cAg)|%2NGjSB0)g@zRhwye4209_-+qkCabpPGaUz$L!8Nr7Y=o;8V0%K0#k}E
zSnm}|B|NfthNtdAu*IF<Xx?vV2a8QOak}~N23SBBzAHM}F<Z*7;(Dxr@V6M0c6T;~
z6u89KA$i4GSCFg!lRus;*eXs=n=`E%u!yp>J`+~xd_(|rI<gSut%cpIKaIW5&QU1*
zJwwdTmm4+{SXCL*X{kg*qob?gcXZTg(|z)lecaCGKJE$8n#YWdds#+r!>kyKTH&O%
zrO9W46L+s_fz;2-)!V@mZ;T#0fverP-cv&GkB^#E$H|-IcG8@6Pkp#w&2s@c)s@o?
zlI2BH7?2BWFD4vhs0Y&t@{Oa@U+->TX1CeetJ|04&1#ThuX~2wPb%w{!}TUU74f=p
zmmQqAam&Ia&Rx)cTTm$<DVmiHFn9{#?<0R2T$UKrA(dg6C76o8iF$f<DLOfCzby}r
zFjguM64{7<`+LUitfZu(b6%UDN7Aro&D28<FDo3F;^g%lx?!ryOt<_j8F-92Sp1gC
z4j2*m+>XoN2y-tSf=D+Sxb7|Zd)GkX*_~I)r2{AgHDuHB_`w6j>kloEVeSeYwI65?
zk2P=_R_8<~{?=87u;b)?%`k2gcv8Pvzd^ia_ffuj;r|0fXV!ovqX7Wwmo81N+DwO0
z=@<#4#|F<<HkoV4@1u>I0uR=I(trIRzmJl<cDtL@&YOxTheH1bXT%x77U4nrhq7RQ
zNv;Oi3ifKX#TuCvn^cxPQcz3!cW#48Of>MI;HLnR2t2&ItUIxb_lYnq6Ga0OIU&$%
zGl{59p487Ol|R&;0EIqvq3E*D(FFe1o})(5;sdw+R;jv5VY0=kd`{T0{Vc3Me|_h3
z>L_<OwNB$6-Z%y;6$$t~pInunwb?YFDG$1AWb1*kb4(6SXC0@w_{*GkQg@pV2o$cG
z48`nCCoe&D1j*gS#H(NP+KlfC#<`(l7k`WUQJwSi+G$jjfc#Azs*8+%IcRgP(+7HK
z#P~>B4trdv@2~M;e(>1@0Zw|C>99$%KprBf<9~bL=mZr@M^tFV)a=<=Y(_DLzQ2Y*
z)w8F6h(_)PlAUcDeHW4~bq(sE9KZ&;`5>!4Q2hmJ)F_PD$Lx>sCH|bvwYJ1-&lMTK
zuOooBJ(oMDPRoh%OqbRsY>5%r=^T~F9dbLNq!=0zsdbYmU%aGpoyU^NaxIe^4~l($
zmd<}Y*~-faono_$=7h&u>zx?Fx1>Fyiqy*tYyU=!*fQe%G3Dn(`%34Gfw+eCN>UuW
zmwZz|Yz+USa3Jrl(x8@N-%1^r!tu~33jyq#J(j)gy^m)R?Bxag0#&~&-P-3h{gM>L
zpy^s-qu`lyUh2O!9*p#S=fY#$sNZt9r{}IH<JF#boeyS#b<0jKCT7WzG3@VXK0cY;
zQE>TIT!Ow1>VH|IJ*ED2XKOk&!Hf1Zoi`Q#<C9vJ%$Z+nmR8CkZMFkk^%Z8jFMvDO
zPJ@(*cE?@aSE{8Gpy|e8sMXs2{yowsN5ZIjz17Eb(A{I=LvEw8vO<Fz@8XUZM+;xy
zf!D&!?JhpHnDMySp1L`ml*4}AbkG$Zg!84mFrnsoJa^O8;IEfM-`FL(JBTyS|D+P+
zDzG@Li}{Xb54E!5E!NaYW{6v4^a7SC!kFB%U<+~u@=3p`UUIgB-5;S+xs&$CrQTy3
z57=sIqwG=;*0~CYrYkSOUMuR22VhBq&K<K;2i2#SK~YceV7(=3MGPeaAjj^*l^^jW
zA|MZx=0&q;Qo>5hoX+<8$+2JCdijGo`*J(e(juezY=7nnnaNvt=CukC?6lLg|6D6Y
zg(jra;C_-oe}XJbK6i4CZ>ubc?^<cT5hK@Q{vDA{{-$u$bAL1yK^!d8m~mffeK$Z@
z)I^s>r(j(FdI?bQFQBIrWDK5P(Krx*z0MS9;f6TQ0yGes)C8@XXmH)=iTYGO7YL*`
z_-z4W0%z3}z3&F~l|Zz+mAbsuYd4XG{9Z>Exq4k|9CP0F<zFPAyk9UCIcPfTZ2SO0
zP>3+Oev4ry7W1pr?Sb=c#^z6KV*NmU8{4IKvuBA|vf+{m_l0>RMPfHm<mz)YN#rJL
z+x&opw%Y?Llb52}xg+TVjpEOrrfsXf$se0bb2OrJg#0jw0CZlvH5g{Ggx7(61^!fE
zE-EH?Q@h-s8TKWmY{V8WC&zKVjL8bQ@N(}FG702Aoj7ImC*-C2VwUy6(u9~Gw9*C{
zIm118O0eB&R)zE6ZQ$i`gEsVurp{Gk_3f~Yb?ez=qF29bi2@})Qi;a?+Mwbd>@_Q^
z^g01S=)v#%K%m<5VQ(o<chX3%bd_$PJ~aJCIbY*NDGNgo<WwnZ%cHs7XvvlOHV<dA
zXjZI&>(syqB;za8UsuChb!(BnJH<hx1@HRb#^JUcVH#~-HX5rCthAN)z^dqorSLKu
zpR(1Ow=~H(HK)i|Nuii^upqJh?mo4&$&Z|x0nI2Na(0z0s@tkl=G^E0zWw2OK)_HV
z&Upf@mZoeMAN5hC!Lf};6f$pEu-sk`rf@i=?>t#vs`XB2ubzXJBy)QJ)R%8~(ulZ|
zLp=R+_6KK+-`VRZ22U~MSA{xK@Er{DXOohY%T8|ZINBudzHw)DKH%x5A<Vm5ID?XE
zqQd|kbv_ga-<2AVGuz8Jl%gI=6|iSBzVUH7Z#U&BcxPX6R_^wZtULO<@J_jm>SX!F
z*T6RGs>!l5<Kl_J32^RIg%vKPO?M8iV4uMwIzc2a)lIhxCCcyPN+vYgp(DE+0roKs
zu8x#9by@Q<y$P)FhpXg_9IN`qkDb62S)jmy`z-SFhUb^xjGq?JJiX7OWux&=CEeLF
z4L=P0e|?<=R8?#D^$%eX0tO)nDoTe)hoGQ@h?GdTl%%xeMnXUdl@<<&2uL?bgMffY
zcXy|RG<@smy>Hz2KR$=Up~R81<Jr$zbI#u~r)SqJk(K3VE;!r6$JC%JnI~4h*dSng
zYD2P^zwg3mnYf6%4oil}+sC*WvqL?$eKPc3vLy1Vn%2g1oM94)sXQe?>o)e;Y!yzg
zW6tC!RTL}t$jF*Lel%*1ey-(pFcD^hpyX2vG>Kl<7)g7V?a`mONWuj1vXIWzvMF5A
zHxGUg&XF4RQ_##Q$ZNJUs$hF4Tk)ga=mfi{Pz%u)h+Wf_jr-hKn?{?Mx<;FG^Wu^p
z{R}i+FBwWT>sUBbsISRFaMhcJ?xdF<_3+$R9GWJ<61}VE@FV3mtOn+E=$S;mBZD=&
zZy8v~))@k%Y8RGE{IBghxG4^1MhZGqdD)lDYrct-blsLO(>{H5$C33s74?J#M<lGH
zdK`0<f$R<S-J?x-;I`VU+F85HV527UQaWL=^P1m)s1+Casc4i{gvBYYi*}TvBwpuf
zHCD$=LL7_j9;{!ya#~KsrHPhl9KoWACN|h{5n!mrEo^S;7d=Nam&3D57!7<OCU<RF
zD8--tO4N)Lj*l~pZ6~>1G?gFIyw3$dD?2}ORJK~cocwB_i`@Ntt}2pL+Vu#Y;Emn7
zv}t%``Qr{XpW<v_n>@KqLh!}S<>e*eFgX%k?kLYg&GMn8#pnxAVthl0gWNoxU|rcV
z7rmSJRbHQ&IRzVaHI9puX`s8EzM<Z*=>-=n{jdQi@hX-0ytCD9FzWnfiO)T~dzGgB
ztEOp2Y_mZ=b$xvM!eGmLtmS6=)K04YbRy(y#{wZYWx>V?`GFa6k`LX(1#hnmT<lHm
zq*4z&&GTLc7b}2$^9xdH+!*gg>cA#2qs4B>b@7D=JMpt6;ivX5_t~gQbRaNLbD&9M
zn`D&Nugh^Eq8H~5_>DoX`u$V1g{(cp{VTvJo%pr0+pETNQ1n6q3n-b8?ndACb)04@
zx6r;Iy%@Os>xl`~jSr4af<-RjmsWUc!d0tm?Q@acXrtM$F#Y`Zn}QtIRpz;yYj$D!
zbicXwpyG+G$vx!6%(un-{ofpRXWgwpn*xb_sduLDST0EOprD;21Nrki_CTDwMP4Am
zVD{!XFYHcgh85>~nrHS-xxbDcTKurlf?RNzx>?kA#zc5POe4~=$Ky#f6P#uhdfXgw
z|MgY?2{tBt26m|V0?1~0vhZELujt#E+cK?v(gTPDnM$SxXPUvzC7R54tI)PsQL(}T
z8MyrzZ=Eb`ddsoW>IS%Kb?4s{Y+IQ=317_J81o0`JF4xviu>l)cdr!VK>CoaMajsN
zMswxVqg}*QDWxEIs*HU~N2_3(WXM?NURtN4Ve3aTLxS*w!p+`{4RW?t7S?Jxac|V`
zL24vo4e!g*JF|3I!@ad5as|QRnfYZ$>s|scD!z!Qn1K<FT9}^(^_|&lNNZ_U_A*S7
z$k4g{wG2L>VlI7DFSpzJ@YHt}v&$lAXz?Nh+Oe)Wz7U#9GMo}4rxgVYqBCfkAmr~>
z&ems)I$fY*7CW}i_aPw1Oc3I*Y@8x0{8}HwBuZkGS1g)&5@nonItyEDu99hAKL@f9
zF5FKxV!Pg#y!6x6!T0GH`gmY*Sn;s*5xZ9L`0Vtz$=udiEhc7mP=T|Z7vqty6CG<;
ztms3qFcBnWP%t;f8uugwNUCP7%Y<WsWBKDK$nj7RR_kEkElYUP$!UX(W+PxVIIM5c
zY^bCpovAmv$@aS0Y9yq@xhWoMQvI`|?IRKp-^t~BJo53tei&n30skhiJ{AfrQxFa_
znam7jp)=&wf02&F7fTvkQDsxFw5)IM)*yzu53Wjbyyx|Dvr0<ckeb7Wywf3wfH%)#
z^^?Eeb+ugonHT-*Ql+*-)8MdwlOB#onRtO|Q+y!2#fZ>ifkA>3w@^FIyGH)1J53A2
zAQ641jP^Pd?p7auce#hJDU5tQOIfLj*3->htEd&}R!i-s<Xsj3>ihoS-k|{bYxvrC
zk6JSOLSs~v&Yc?r?Fn@SvOh&z`$4f^K6FwYln<jk(uE&9zLhvo&JLF*<hkhcb_Yj`
zy1V&w8Y;g}TDxmh2D>h=PSQ`=K9V)e8gQQ5nZM+D1rBH<J_wsfxz6NhSx3hlD@Wv%
zhW{K!K1_-=<fMqT3<3cwbHFBBqQ{PXmNQUx<C*=H2Xtm{tOn2@<x>!~^8Kme*SJ_C
zE3&9;H>6}lx6gg7wtJBjI!bkX%qo^5U#{)mdu;EPU3m&ED-`EQmz6!$*GK?*AyZZ=
z!KVE&B&Hvh29Ktu1fTvHugHi%5G##mAY;FSclCa`g7!n+co1Vt)D;y}HJxX~u$&~{
zglF_m8d!n!fVxsNrVg@}F49`aR=rmXiZ3*)z5=*?1hn6(qbJ6SvPPqyKezDfj4e)o
zpUl-5J{|s5o+<Q&n|>{=2qqiN$jrVxDnxmk;_P1iWf-`mjMOH!n}j-$-#mdaR>1nw
z6$`pk&HlEl;|LeT6``Szsv5A6)V!3a<IcfHTkF^z?uGi$Ge`8vVDC9U0ueBfJg@EI
zqM&9v?#r&!$!hSiYM#hdGtMQ*2!V?HeaW|=pp4X%+o9oG-(v6}$-{~&<9G9xsw%n^
zZG&)@O7whrc9hQaWDlCjQVHErGD$F2%2aLAH>=gp|Fmk3z(tgd(Z+g#%cW26>a1E<
zhK0?0s~=^^vTb+pfQ8n0RroSBP4@m86Usy(6^z!qnbo@Km0ZU4u{Fsq_fE3EzdhJk
z?XWu_3^`D9ddR~J*0ry6I>rVQ5vvv=M!^zkIG`7H!X?hdK;*vKopL6SZSYsJZT}K^
za^R=-&l^U8Gy)t%C|LGRdcm|zbZe<TcNBR`98&=)rV7p&S!+CqlKoW(+B<et^ZJ6D
zWa|M0omR^Qr+@f-{Wy_}NWNZ}D`_BQPL!Tp(&clIvH~kPNN~Qm&k=R)!9jnFE986W
z`Zt2}+A+MGldf0-nje*W@~`dIu3=g0iH=Y&KLa)QIF^dfZKw*a6}aO6q2(TDc}B@V
ze8TAj-Rh6%b%-^<&GN=Ag#z_{>J>CW!JTl5!NJM|6WOl-8I-(SIJ(gweF$+aJzTx*
zOwY?aSJRuM(#zw%-n{TxzLHocT3cf@)SW(9M(=+$*cmumLQ-^~SN%YXd@peaQNRYI
z!z{oy{d#6^UPPxF_eCPj%v?F&#VlU~$6xr`wYzRE4g|4$X88%_pOypLzQb`MjeggQ
ztnv%G9b7q(x_A1IlgPX6QL3?Bc3ebSUV>I|LlsCuD5+P$l*0V6ji0txXq1&7KWK59
zU($uZXO{#ke2O{aGnNNjGM0KrfWNpWHu6Q!&HSEcP_BuKxnTioReiI9>Ew+0<)ziD
zDxcGl1pGDYXkn+%9<7k9$VG}ml!o46d5q{r^3y6@A3GzxG{UNq+BKlTvn7buJIKEG
z_D!!aXLjl1(KGKxbh{QdB@&q8C3ga3<Ay%gtj097;U=_eTBl`}WQwMB2Gd+>oweSp
zeF+B#mV-vLB%$BNuV>){uZ(YVZT|4V#`l@H5+?64!C3HiNDEI1-w;`98#(v(gH=`o
zS)%hnwut`KN@Ug2KzPGxh;J4~SY=Ocd{KyZ?`=vwqGn6oSo~_x2I>rTB5#l)6^*Zj
zQ}c&TIOwq)x7u4Irp6aIu3Qz|pIBzB0*_-t&4G`rrKAv{bU;qn=^8J$Tf>*Wr!Dlc
zCf&QPd-EdZ1tKgEbZNCojKEXBa&%wQ@Y4yuT6kDY{fhMSsIY!Zq<G)GeXD__5`x!P
z<Am(Zk3j)6AgLa#5um57Y8>IEAJVx#1;IcgD~6yzeCARvY&!Tvhd1HLN8<Kqbf6z7
zI?~=mivIQ&!Ozvu7SL`|;*h|3tD!U@Tvy;{i&Y>}$aCc{dG9LAuUI~8FVTpBSN*Ir
z(`JS{Z~fYkOVnv7%+5#d27`;nx{p^^(t$GM3x3Rqk7nGYkm086HsPM%l0aqO`Xn$g
z_y&Ci)G26XvCV%Gd?57w<8qFrYzMlL!3;Qs5`YfNc%6XWI)Vrs_#UX<PZ1)5<>K**
zX8F*(mteh~{1kfCyysqsC1$3kINHBcr@dy`((yHodC^Y4^h8*wvfEC#w2EY@g4ZM+
zt-B<hU7p}sKJtB#&IHj$TFm5<PvL^2?W=b-z8cqLbQAsqu{4q6p6mKR7R5oi2;s#w
zjoYYBnI%e}L1Bv+Z^wrqaG3yDQaxdj^!)m&iNbanJ9Q%qEBro-{{@A@<sVH!j86@=
z0IF+X=&5dDIE~=)gmr(o(b$Z>j{TML$7G;a@g)zkMM)$IO3{Hw2BmAo@NzJuNovW0
zF1*)A#j0@BJ9QCSdxLCV;QBS;20u=k8P!3VmYR%&B*Ip$m?~=-nAue&Y=sN%{<IJ~
zlS-OZ_ajNjQDx9_{#LGv4paK!Vtrm|8C<++<k_|u2*}Uj6(4~Ud<3tWT<UQJ`yaIE
zl(}!sWEj_PK2<Pn(J9H4H%$s!aDxxUe2tb>v=-a`Q2BJWBIjyf13YKqD~SW0XYYq1
zHv0rsscff4qxkB&@59zz`*2ONsYZJ-+41cMwfJ0hiF^IlWEsH)d1rYVNp;u<uaDU#
z2i!kLu<AT9P<SK5SV_KehY_{2lzawFcBg+ukiMuAo@lU=#|joA+M<onH$2MTc}(wR
zsiv85KhvaWZJjJpwbr=pX|pm_v<4EIDeDj((9q}mTf^zOo$Y8dp`^ZO-33v6Jdec7
z<@e&{!TZ7ybwrm|GqO=)S35dr53#Qsj>){;Ql-5_U71;GW*n4_Qc-2%PoF*yzi^$_
zJ#7&*E2YQ1qi#$o%WMg@j_1#<3o%K^+`9vzwS|&zk!v2Z>YmfJLX`;5iW-iE6)xw>
zNfexy8)RCSxjylsIHCv{Tn1mxkilLYm;c_ho{9ZS`eNyxu8*Bmmu=?_&#+0#%@$qW
z=Q#hXP)x($<6xh9Y+1(L4u&}1u`<R!jT+02jAierv^T~S4Z^ZuqSWQ+m%fL3M$45I
zBK&VJKk~=SZ{KU%UvhhRxX!)0sr6uVk;~bE!16Htv;6(#T9mxH!Xst1P6b+UeHY{=
zEhZMB?j-ia7R&buM*O!3pq%WOUsUXx5ujPTq1j^C6pK+ds_FyRP1lPY`HX!B_ULWy
z1g49+Cw}_T+vzhTFpb#pilR`k{l;hzQG_SK&aW_y-|hCe;J=*s3zbQD!*KAgSJfZF
z1}xkR;%m<<g;X&(!x^%5&g$Vu0m-o~Cs3XqPZ;tB*&WXRmTd6*xoC^VC__Yx&N@D&
z+3b1P(EQWk=6m&lGtV#%sa<t7<oTOzw*qhW5lYmRF>5xpqVlt>rLbm!*%9h17(Qrv
zRVdpe-#K>_Y_8d->T$kkYfnxaS#d^LDs`RQ9Xc9xO3R$r94RpJ8K@tQm;7?0zwzUm
z`g9$Op^@k5P3s_{pY)}=2AW?K6}6itvp?P~cN?Ncjj4XCYq%np5=ere*mbg?QdOvq
zEe$f-I=wAyKMpWNKfEoxEk~Bh$8ipY@@ZVq$rGe)3#t1AA{r0p{I4I4gkVq<S65Oz
zfuhAyxjy!e>x*EY|J>%Fs16WajC|CS`3~HKo)FxHs*#3)D7yQGi0RL5GauK?5U-4k
zdwoAwmn{#^m$2<3?$p6e@d_!zAF)egAIN+;Zp_;Sq+2KtcV1+Gz#~c3W0PBd9QDf<
zbtsavOM~|nbl%@IoeuW`Crw&sox}+s5~#0oFy1uU9VmwyCSTo6ESN(i;-5YBH?8)N
zr=nfkh~u;AlL=JjGu}IGGl9Hx;*!kji}|6K*G0LUpM#TFSagc%d9lEM_TEoIa!6`n
z*kZiMOh3Uh_9D8gPI~S<)zRd4G^CioSavUayD|mO-d#(O)Add(P$Ag&ECG^alUqbr
zN;=d_q{}n&^<Qy^bn>3J1FuXC0^?juC6FvW_|Je0GFteUq0VuCv;K@GQIk1u<<WsR
zd#rsC$MKB_3;mlHDKjiv@&_L>UgdR#;E|-9_70?@pKaetkS_Sv+5A>h;qxL}{Oh8V
zsCzzphhVn#q^m67{~lV%=V{3I)`QPUsS+@mWCXj?1x5>fN7y2KT%~J}+*(C`M0>{h
zo<2OK;8$2ZzMntax7#OmJE1*P!_HRem;xpLIbVn<ZkdW|Ntfk&iK<va`#F7VE9D+^
z#WO?IQA=)Sp6MTTmRCncEPo~EWi@DY`R7#QC(f)jmgyaq2=u*jpb;P^pI$Y;f#osu
zG1@dxL_|=xJBT|aFx$#p>Tccy0$-VO&Ba#r$3({hNVe}L#QM#Xl+8X{m=LYm6tWM-
zpLeRDA##s}dPiSlq3i8WO`^1THK!eem3#%5`}fn-=}DgFC8_o8<$$AM_6uRYyT!L=
zWSWigs&yIJvrc(L>N=L;L)*e}d$Nrxz?J4yN%lgaSmL}vq(mu5BnV56@jXm#WJ&lP
zv~bkxPW&+XD4uc-Z%0e*N|tyE*&07}Mq;v}*+oJ@xQ$1?>g7T2DeY1ibMx{pbvol?
z%0=hMN|W7stCpz^0YP-E=EGlC8#R<%X?!L2$y+o=ckSmtEl1&f4Dqp9Exs#hx<H93
z;yNAUdgspoH61CrpKsA^8kpIQn~2_dQghTmG78Dx4E3hb_H!$XJ#z;V*@8O2%;^b?
zyW&@0$xkQNu>K!S9}z=g{w_+bJhAEPq|ta2s^7!|Wn1-b!WnWZ9&jlhz`5gUr~A~9
z8l_q6o@N|cnGs2h!kMfIGi5_*mb;sMM;e~9`_|3oUh};5K-%n*xj6MSDd`f^Sk8%C
zh2<GiJ$)0CD^;^O^LFo58*os(Ay>(4a)dGaA-_h0H<fIo=Y7PAM`21T<SqqH^lGA)
zAJT6?+;2(-w+D{XY#xQ`Vj0Tf@}ohwXNihT770|~J>Fmrly<ugJt`7BC*-(Cc@uTU
z%iM*yxJEc<1yXim^UijYu^H3th2HxmJS+W6t1&n7O%E{I{4=7UQ??oDFYhO-DDf$E
zb92t+FB%r0+S)#4hpn;Q6>qR40<D0vL^NpWnRT|pQ@cA@HWHSo?6Vut?n6(}RcsV9
zon23t9R1zP5|%wLiTo-EJKej=UvhZIS>`zgrrD{uj`8r}khi-q=k))8^HF)tQ0In<
z5Y^cp4l&G+@LJ{j=E*1H1^8f(*n&>u%e~T{#pdXhta*k2dM>m?0i@3Fkl^~(aZ@~;
zDg`j?;?6BzfycRqa*67a<>x&U^;yY&Zz)mqUWkZ|ZdP*66tF9*nzlpF5$r;!@Q9j;
zp-xh7ixz{V0w!!i<H3;kr>kzXzMKB8dWy$nJ`#!T#ry-B<xWky99VZi4XfU~gnDM3
zU#z4lO7on3RefbTT8X)?T~^aB0~^X$TZQ|HX$fagQuoTBqmP1|LE|_Z^>{V~BHg`w
zB7f`TlP7uSvKar><m>aAtk7i1_-SpMy_p7`*x1aDce(HV?gX!)f~kF5bJYl8WJIzg
z2ddWFIoXKJ@}WqLZd<YWOx4IZisQ56PJD<H9GHs%^g51`Hm}+muC$gj&GM}X)fsTO
z4p9q6o#<Ak9oy(j1415ME$;gt_Z03=e-Ra4`-mBr{kzlXk@oqPm|*$ax-yoR`kYaC
zSLV3Y(}pPs)zi*0PPry-hf#~7g7ih<%l>XuW`0~ZDR^ZGo>()<g5fhL{_RR<G6}xF
zUJqKE0ugt5uqa?a<Z0x&>m$muVcoewBN<kqX*}xbiO2Md53IP~TXys6qTv-G>4G^$
zbB&+c7b>(X5)&L9sc)%0o2KvSK$`nwJ`z`G{+#@-wd!_MUx&$Lk23017`1k~YXkC1
z8`7MAeLoEU!_JVce7gN}TL-;&l=esm(K~p*j7S3Gs&cYRM7`u()(s$o1qMCF%%hA?
z?)r5&FH2PT`|-aHHtu+=SYY>n%jYEhH$vGZBGfurH$=l>*M3Wrnm%Z5apC$2R7hi)
z)9O#KhUi~KrmD2VyI#F&`bFIgFch%e%U&F;>`wg^e#xy|Q`S%muCP{Fgre)$8*t9o
zCE>u1UGK%nqxxU7*=o=Waw!pr{a&J^t^gYtULdCkQ7M!fhVV3OQ#Y?UI0}Y31U2ck
zQrvE+@4Sdolr_98+j?%jxaOTRI5kms+!9=yM!Md0FoSCwD)hmAKX{uj(e*Ir4{ASp
z!qvqY*1DOWx}T8?_@X5Ac^6SJOBR*;2C>r_ooW%kE(_J@b0!C09$N+L%RfjwP<O8O
zi?OCa^P{7!i`L9UBo68BZ+Gab+R;UbG5x-opEc+BRz!L#9qnAV+s+$rJd&G*1QozR
z6ug}66Z?^J*A2fH<%KH`AEzSR3VQCX0kRznn~*L|Z(q2rT{6(yG!16wOzo_`?8Qh~
zW4~1zLFZ>>_Gc&_CS|yELW7tT&*{m_%^<>`bkU1R!kBXa`&eJPEj!!rSopDqKAM}D
zV*1h0O>$T*C@i)MwHoj4NH1%Go-p09%jVRHljxBw6@$S}M5lOn3@}8*DyP<8edZph
z_8-=OyxS9R3?~jQ|F%a-_cQx!r#3epy)55c`i#RA1sD{*CkG!QVyW#Jw=@k4K%DwV
zE9p-s33@HiC<0ct{lJ$OKoFn}dH0)%WB1jsmRKh)vwZ=uImi-Y{lA+s+i(71mVbN8
z;Q#2kI5Zh?Mgf>7)iCgKg~&B}THU%C1JoN9CFqMft%jxK(VrPE#N;d9%Ru$KErGl5
zy0@|ceIkeqfN|+TFQ#u_zU^xFyb4*VNzS&o#X%qP_QK_YDPQ|j!Es?MN<9%rMowF&
zj-zQth3)E+3^+;FHd3`}_Uqk#9uXLY2nf*Sv9RGDy`Q{W^uOkEA{5jH)Qt=;iTwx&
z)>~Lu1!BUtzIL6pD(BA`TWAImVB7qc0se2JJMte+_ZGuEofzJC5(zEQJkC>9{HVU{
zjlM7Oc$dp~*(yJO%Fq2)q6_H@GlM{a+1B@*NyiYk;Z{fY%N*ny6+yMy=s63pEM+U<
zdnA~)WTIiaNj~6c7Us0gq8~`^?l~1tk%qtVGCA!jC5%2#Io7>0--J*`Z=J+(3YE^V
zc&bp4>R?`jiL(7(a8g3st_{_-v-h>uG&SG61vgrAdv9mm=wL>AZsGsc<iWZEK$Txp
z@roKbMWvm7FRTp&ft27<=e^@x0#9WCyfs#+4k-jd|J-eo7L2wI#O(+bA#-53M8ZQV
zzAGa1T{cocKY9Cx&(g%RS~vA`=Hh2_XD>Z)P{YoVF~=oO6NnmH&eudqq{F@q*Bu>e
z$AO33vb)DtAl<v~nMefJCmo<8h4FANo{`9qg;n&Nvv(^+aHa0;(44#HXJn|YmyNnl
z>10YZHPG=<1|&5i2_euYgBu`BJxxCK%*n~2iwPfV4lfcqYsxfi<!Wd>z1mYtd$gnH
zPkS}X#XuJdSJ~=i>X*cG7pZ4%Oxc1Z9k58xY{R83>fkp1{)4^DIFG@R;^vi>!5TI2
z+8_RC<08jryzt6PNet^%LYD+sIoTejbe!HTJ8|RoB*Ivb!~WPKcyOul?g`h-h|-X9
z^rwmNC1s0p<+RHJ+2sA2zQl7W?WR~&EfU<;_dWvlj$yg@F+25ilL4pxSDcn<GORo8
z1)RVUOUd}0(7Af>t@dO9$=Gi~2`uAp%h9##Uq_T(XA4wQIzSqO4kfEg3BNQ;njuuN
z2siUX)~OIGwz~q*F8bqF_7X}ng7wP5*3Kb&dFstS&CL@VFi?BO+)7}mxvnC$Bvv-L
zfGye!T`R!~=28@xi7l>U`$#V{7F^`|v>nXiXd{pgq&48{s{G5A4c75SR<qE02Lgnd
zDPwOfEi5z0A>m~GgL|&#RK(ZXdWGA1flRZtjaU+I+9spwlxYn(=OD$Zuxx%0KkQrM
z$S>!o-S0DeQ<Ppc8j!6O!)Y?0y{^K*<g>0)!&t1=&+PNvw0}<Yrz54m*5il5q9ka(
zeW5e^4k72)i(z7J{C)NdYw2>&ej!uw5Q<t7e4grJP_;Ae-(zLXpFYaBWM%S>Yi^Uw
zM>?aOw~>@x7UAig<2WvyHXn?==IJ&7KE8@_7w?QgYdhfA1f)NJ3tC9vu*C`(m47oQ
zrMa2w*56B)rkMe*)XGvp{b+FLqn&;3`L$xeIp}h~v&L;ILC&3fs|(%EyL(%6VnJQ9
zL^)^S=0<-~G9yYff|oY{9v-M2%rDEtnaI{J5~>g8sxeq*KxY)(XqKU)dv1p!#43{h
zQY4gPTYChP8q5D<vbAs|I%_BAqw?T^bXvpw)v_Tp7{XXm7lyPht&||#7w}P`k9!~=
z0<;}6-{um#=^21mlyr!F@G^YZ@Y0&$#CtlQ8M3gv1nPdN>$F&~D=zETP^7;`1ay*&
z9=ugto%Cz`|8x!Kl@(a%sJDLp07-S!TE84sg9dnc)a5!vV?o$hAGBz-u${lIa|3Z?
z;1bnjV!Dx$?xeTi7bF|ksH=+Kd0j>Id)rF67YP`Fe}`B%Z;Z_>$!m<legFprSv<&_
z>Bx}_2F@&xhdK+AqfTQtC>)~TdF}jrgaXK7LrqkUi9=k64#a8)hXY?H6rm75zhbp3
zaA+=jc6U$0$^Nl@c`_3Hq}0%iF9NnKpe)LecnACDy-rX{Q7kR(3-QuKeJHG$Pcw{u
zXtePUm#1=amQ|>R+|?H)QnX~BjAx)Hhk^u)RW~pHK+!1AolJSW=b9L}bS?A|w9K#e
zNVAw`MvP#i!qi=6#PmL7Nv2U_yAB~8TpJDA1P~_$Q=-<b*P)&LQwk{;1>n{M3x{Yj
z1T}N-gDHwnWLG?;19FJf?lj>qO$BbGpd(qeF`S4mrTlPL!_A8YU_4~K*)*f&S*uHi
z1v`3{00oJ$%)XdQ<kVt`ih_b}ut?baGzwIP;DEh(4s1kekl$m{_j)I@qc)6!v~vW2
zW|+b=@bt+kSkO=$#tVLiX4?i}H>4s2?ILqH9oOTI&US2jb=*;QY#rFKYQf_ePmn+{
zK*Q;z)B(H!Xa_&Z)BlR5+4(agz`xD_0y6@g5^G<~Q6?INpn??^|BH=){QuzyMA89j
z6%JOgzGW!KwOtEnonGR9CPsTMU;PTsa7dolGCUsPywQ@alS<o*nSUvL?N%B=4~qvV
zjjt;-2vFmqBWE76VOH_4UTzR7j_;%jWqvrStuV#R+yk~xL?dsx4LF?bCQ2Iq*(}ZP
zrlx0h##LA->?plNA<_$MUimBk<;(<F-2-=3E0(j&N(&Kj)D~__*`F{wV|vMod${}9
zsOUOZP|a`i(u`U68RcQPSTMdT%q8P7yDLp{h%45W3YWPTp?P>Y<LH>9D#SZ-^$4(z
zI$2ZMYQtiOLKpKrN%n|8j`;$~ZC*^lDKf6<NlTYGFBRd-iFId`AD%;f8f?(f@~PZY
zniS7^Daq7NddU(g<?Pwfbx~RjqJ<9cSkAs7^LgJo`KD6rI7bgL@Usg3{K4UM`^vY%
zP2e$@Oxg4~PJdJ)c&_;!(eWaM7A7Z!olW>DPt;;j+o7q#=M%0g!i(T1{tZjF)?vd%
z0Y4@}rMo4PLn^VyMu1hiUf^PYL|zoACt9q#2jWe)-EHaPTHEJ0GX`YRJeeL-#(NB|
zXs}6#NmW@rW(-q*@N%}qJ*%KOF~s$Tc7?UzVn<n2!m86Af}f~fHLK4eKG*2VkBvec
zg-&{jx-C7a|7-tw1XF3R<nND3Vz}!i?d?~WMal}IZOHSUjNoYug*}Kqb!*XAF2M5E
zCx;vQLMm^XoIJ=n+8>*#q;Xubvv;O6WoSQ>t4oc(7ABn|bJ|8n+`=UZv+|4r8;o$7
zd=LritjBmxII4bYzMGM|&cy@$e%Ul6`PwKcndD=(^VRQIdPVF>KLSE@>AI*pO&>2f
zQG$sT+D%_rkap0W{+x1CNI+OA_(I~lw#DjiGnbFB#FBA*-eu?2jf(#LAch^)o+FXM
z)zf`NIuYn698p-O*S5hhjMR|fGjc}lcHRgbWh2d1{m_XeIz)uTG;vN%Q_Z&Qrfm<z
zM5w!K(3?A6%_Hc4xsKnN*D18rRb=T!&)3>8E-xeTbr{Y2L{O6P`KF%VM*mAL<IUBw
zW*k&;42eHS$M1KAsbs4wP5poeK^gYyxg%C^eF6nx_Ns?vGos#XmSwZNoKktfc>NTT
zlr(?ZL+`FCQjZrv)3^}bz)d+`B|4ni{hm+TWpnbU^R|9%{cvp0+_8wl!GRaa;F*6F
z>c{U<zS0k;W-eB0Fkji%;h^BKBuv|Re?RL~-o=VT?XB_svcpq$^_`m+@C{;l%67zj
z+kHco5MlI5xARdjy4P?dF5PWj9K)9}A5IdEFw8DW4x+5aC$g-pvJ<=~&dJFIiVpYJ
z8Mc8TS1&ZR{ic+%6o(c)*Xl^x#zq3QR8LNSsJmMf&O6H+7WNaLj-ID#XE97nL?%e)
zHq`W5bxloQ6u$NJe0|=qW=cd>q>arP_zY5^p4wqDmf$0;b9vy$#Y@F8ecAUPxi(LY
zi$-(5SY8l2;gJ=d`Yrg0)zGJlZE;~CW)uRR)AOP@C^S*Uq3G7H=v(yXHK_kS3Y&hy
zU2h`SZSr1ob#s=~n&5`uxt2X8JQ>+6uk{4mqgLd{XDR1a)o&~}tf{F#qvTZ(;}X~D
zEM)4^l~-h9@z+;ay(Jn9jMle`S#bhS#<|w6#?>CU`6R8h{8E;o=MPEQ{*{DN)nlRl
zp=v^I=kBRI<*aUQ-g6S?;kd7_2dq{!yXf)G_TAKS2s(?h*$D6rnwu%Ba$9_;EgFAw
z`U?$w4Dgh@d2|PnmH}EW`6x(To(l{#Vvks#xWpcKGOMhXn#a?Ex2CnJE0aCHm2Bfl
z$xU~)qz)4l%G9h`$l<9Zp|P(|dwH43#fv9%z13#V1Q96(SpMDl5L^4SHD+SU`TAbb
z-RqQRT=V6zP|Tz^w=T-s6%9TS^cKSpelWhy7!*{r&C0@;e5n_)ze$i2Dd>JFTI|Kj
z&43C0N3xmL4IfH9aV3N2TMaK}hD8nyr&v{d!|_<URMV@2KWFFn>eK8@JHhLKiVAKo
zETiTrsoD#uNd6aYdjTRPRKgqS?n4xX(JZ8>BpD;CKFnE5>GV>TqzHV|7JZgXqDZ|R
z|I$**1^hP*ijNJEo&~@51XWZU!;7~eW{ed^0jHC3s{HiQ+eidawe>g2-BM$2`9Dmq
zNg+Js3hC<``@4w~&%j<az9b|3UY}OSmVd2T1sk<v5}&(~P*TsK{*ZH^u_cpTsfl^T
z(lXzS?whhu?Ke(mJL7b%<awGJlGBV2oA15$d_L=joEXx6ifwL@g5stL7L(v>uuF9?
z!TON<{gzSJ@(}}jOMWUdSlL=>0^XgQJaw5#Q_CblGUxilue8s(-=`)HRF28XjZMW9
z{RyA(3k=IXqK$v<+{UiWDJY;Ac=GGu>z8MUeiw6<G9w>9c0RquzK@mkE9)%}fB)c-
zknHSR<Wdl<W&kt)!r!^D@WW<ThoHHqCn_zinfT2GFFfY%WxMy$$I@+rKaGmjXf3sL
z-@ciclA`8$XU{Ee%<JVLH*PaNm~{fyF4rQZwVEPq8>2G??>Q){-c_jHJAv|#>=-gH
zl#UULhx;WjcKTok{cH?1vp(7-am}u)ptb~wX}0+)VN+_}!}6YC)5s{cJFcaTfqr7{
z0%p;QKQ2L^l7pn$%0vqw)Kfa%WEuW#xvRR%#wF+aYw{(ygccZwIE<_Licj>W^Nlc;
z^1$B{!+40F3HD4QI|GoUs^qJx)~)gzPai#23h9)KlzDbVt$wmVTO0|y@qw3{1kEr#
zB~|KLCna&dCAL$e5cpcsnb9Eb(YD02pE_AMibu=u*JAW2*Ot&u@JmTsi_t|?m5F!a
zXsW5{57Zr!XSW{8Rq%&@Bq02Rb4M2?eE2Cg2KPGKLpjT#+=r!R!9mp?mI{Q-r1|P!
z_gtUm58fnq<Wsjm?;0T~cqjwTjcFDMol%GHWM^e7tvf@}W^?^Ge_8yF?f>}rV3uIS
z;~wyW$y5{;oj)#{;voz9$x(b+z&f^Wf%ODsm@^|=lk)?c1p&&yJ>BFdT1UQFXS_)~
zD_x@cU_lpTV?B~-)E9j~&|XTOXKcPm+-&)FGcFuS8Fg3rIfCsjIq&V;E{9I4*r*Vr
zO{%@ewXkUAnC|Cq1dB0G)M=l0bECnem%8*`oFdYt7WueHQ}g`ii4{1JDJjlQuZtaT
zb+*3+u0gnTN<l$VFgeqf;Mb<tvJQ(BA^`=?88fiJQl2rl_&im@=5;DJ{5a`oDOVwZ
z?i}LGwR=!G!E*tBbG3fYASc(D_#0P9|AzKNrfTB24I?wpO*iIxZD|WfrwH#6nZ$Rx
zIoUawEBbWxqnob`CRaiys7PrtiOx%I+S|Vaj7Jk+@a6C?*4sHp<q5!B=UovDx1E2l
zn1SV?dpnp<C#G-cqh{XnT41h5rfi2=2=Wq4*Wg3^U!FKLZRp5;f>mdCD!LnSOIW!)
zn5Xd!(yd^RI`i<=8&oS$7a+u~S~>YyG2`(0`~sHSM{rrW@9!6aXK2I{&+yE;n<N(?
zXNeNglQw-^--y?L+F9Cb^VkRW@2b?FS+qT{LwwQn&oy~{o6B4?SQ}b#P|RtDfe+aL
z!8%o%A>Clm*4XL)nyA0x_Hb_#9nZBQz?|Ae9&i4{A$a{DqiK|Z_n?9(S$<`&eRHb+
zU^3YjG$R$6hPF?tHk1B&yD7=Gpbu!;HGCE=M~%hKU-9OsvL=Sj)wdwMf_#!&G(Lz?
zxBqy=WuGYm7ng<P*OtD#OG^|v!Yi*l4tAqSP$t~ZCwVfZ#h>wCU?zP@q=$89^q$e^
zJ(Nc{nP+RV{2(q#Ec&QdlcwC|CTtB*9;!0CW5Ti053|*fFkk5xQC$3j)bfnFYTv!3
zeP)eq2~ToFSD*8EBgJ^RqV-YA>62cF*vduH`@yfuv=k=4<$en+FHftyyqs6(n)oi8
z$kTN@@WbP)H%KXrZ#PvZy~M1&n^RoT{yNI5L}xag9lm~u@ic4dS=!xcHWn~f&PabM
zx$ZxXGXVvzoWTqaFAEu4B-&+upb%&NhOiJNs>f1jVuI1ldZ6Kv8aY66c1Do2N8K2_
z#}7yy1yYa{8Cop_O`V4Z;#(FaJHbG)7stYUWGE%dWnyFnJV=ljyqz_$wd7qb>b|mA
zc=@4h<E8f(g#LpDu9+A0ImK-0vp0PRQ&zTjjh@@iUcjSSb|}LR>h^8NGMR4q6$}Q;
zP!EopaN27lI9}&UFUtr^p5!M=ilqvrxEn<KRO2f&s~S47JOKN#|6&t>B0%Ut%=-}D
zWJcz$){=v5m*<*xeu+}RANB3bn`ypO^Pv;o&YX$WdD4Xl6;&I4HnWi*H_gc=fk>xG
zWCl#$SvdJHTg2|I{Bsq%$?CP|%lB?J)TSWYYKk;P==E&XHivlSlQ;toSz|vLwKO}r
z1xwnMfAXA1pUliuGB^FLgveF=UlfDuqm&{ajO`*T-?V0Y4j1>`C)gbl5w3Z01!^eN
z^*Tv_IJFvdxHuBCq^0siHKTw+@NdT&lJUiik{~5R)s#iHsbLvN3M=|n92B!H6r|KE
zt-5WK`eK<8!}@uV=iYkM8SqP6q$iKV!Tq16U`E~p!1jzUj4hA5wo;z{xvj+5&DWH+
zxDXA&^esO^+M*&hy)>Ls$&*f{Ld60Pp3q`LL9QN#9J>=2xi5k{G3V|%P4p)s#YTch
zzP5d=sD>ZxmxQ>ho7I>LNN;lqG66$4!4Bk%ptzQtgU)%vzLvAtOVvL&C$gE|zCHdC
z)zkA{GN`JZ>Cch!g~U7<tfnh}hv(Jqfv(FhG^AZ!+uVQjwJr^ujN)}by|{|>pQ<+C
zy|HHrI9kXIN+jIR;=}fUULnndiB*DpipI44{CXge+%BF!i3PP~iMD!y(V`x67${Lt
zrMZQ*Rm<vMBjcR2!-R`}8@39)#TOQ$fl;)BWVO!e)4f6S@7$6FZ%`BNrES*ugsyKk
zxzLx@DBtJsRYAHN08wQ@O+mY;xA|d5C`?!7@gq5sd!_UFjE}+hk^O$}!k~Z{#n|&#
z{&k`LlgClr$>*H8vfut*gN50^;$!=|V|{dnEHN!)7>&no<w#7lW<8iMWC$*cW%Jq_
zvQ+m)xUvRp*3eFm-~bDjk9QLz`9J#m6(qn)fYfA$g8#GgDL0BSE&ZSD(qSt+p~l79
zephg}f{y^(qfv$;@SCH^;qv0KOG?6_%e@njsF$|lP!F~(HpY9ZB%ORdNn~gI+}o;-
zt3HrN>z7Gx2OOjA>+k*TLFu^uQg>vF+Ii8j!=A9Pe=7vn$zR<%sJX3e9Uu-39!h|8
zhw?N4gDUW8-j8}fM$!EWpcpDD4OEqKc-97N6R$>PT5ON=QBGQoCg4B+GN(&SermlE
zKsZ&f&a--6k&SI;;KTpz$bp*LpL38czOhR!%Uc1*<;=<;+7(87ypPh_`5HP7sT<|T
zi%Yr>e(ir*#Cst@6@DR2$?Qu^r88}j#@80Lh+{0GqSKr9a;-l$w(R2Nb+^YmFOk`r
zD4PGCZ>s$!?vxMqpYBng^I14gK-<7P9ajh~j9Q`voIw~Nicah?fl^b7$S<3WiZs;q
zz&t@y;jz~0{LI=A!d1g>u3WkE8DiR`>%}1W6`s?ZEryN_xE~cY6aeLonu}{=V;97j
zxBsK1f*SkJbZi?cOIBK{<@Uf?ve$ZQ)ZtBfa7Jys8&(&$n<;Ml#mMD{K_k#2fzaYX
zpTOd}B<}vu>Npvwbx7v0`*WBg*~j|QqZQ3%kBcH)y<GH<3~dhR&x}*5Jl<_MrSeKN
zGqc#iE<uj}_Ej7-V#Awut__8OZ@n#I&mjT%v+;(G`x-4K&%QHL#0FsZ1hGTZo!=-!
zhu{U%Bn)z}2=^L7lkTl0Nm6^5`O#U2&NbhcDnR0^3`bOeGF7vYXI-tr_-SELAXJU5
zTGs1A42=2LUq^WEa*x82hgiHH?m>DP3m8-3sU6si&#*rj63iJzI8!71bfY-N_l92Y
zu$A4U`-2@5Vk@E0q=dlV$(BDSDc;4I^GS>M-IQ6-^uqjhz^excw`xIP>Q$kB%WvTJ
zB&W*J9r%K!N(|4wPx1PsS0ZjSVv&ZZr&C7UxQcZ$LZlJvB!c_*iJu$wz4D<X6KipN
z{PFJ?42JgiS98O=Z4$^1M_>>Hp5L(JV^c5&m5g%RJ9{Z7AJ@xeBz$esP(mafMvrr}
zQo8c@!!f}W?!G<}u|Lys;D<h<|K%_d7g6?2pL4)%`%ipim9H6ri8p}cMGm?InGZ0y
zyqR~<Q-;lIK;W6Hn{WQXyj%NH+H~%}A|vqDKEp0wyTWp{KZcejVsgnOxqH46)NVQR
z=YvJyj#)IlFRo`jA4PD&-}<dY$kWM{Nk|ej7TYyTux1w_q)n7lFhb(HMrdW`V6=5b
zRdfG{1Zy9%B=fy-iHfuv&_Ax_n&Q|rLo3X*qxnMMbUg+hUZX8J9yVqs0A_Gcd3E+-
zl|N9GA&?;()2vfI-PV4d94sv!!BnW2*3x(ITwR*-u@?#g%KwSIlH&@!<D}twtL`pI
z#Cr$A1<U^zdM*QBE?hLFhjmxaEl<-4CRT`Je6h(D3KftPdFT?PQ>r#UIsRih8+MEE
z&xrqGvi&!b%^?rRBY~lX;hT7_+K<g2WiUJhXkDJNR%-}w^}jgVLLh-BH_28Y;;G$x
z-?Y2`%gl?O`VL#C0rxBAsYxOYtpN3Sa#wuL-wir%8fPOU5&-vGMf1BOEOz?v+7y0w
zMS}5&i{V20{kwqa>ZJ-W;!=3j+qa_e=-Z~_8|iOn9!3heT|k*5!_g9006qNG<}Tc0
zE<Dti{%62OckVY(de5Feo2_pPl<8jq0fbx2{cO)i(%XZ6oqNy&d!(Wd*RwuM!LuP2
zG3tZkoqK~6=T3-bjs@ZjhQzVjmEU`uT<u7~34l5RnlQ?SnF@nsJ4!GH3!I3ng|odD
z0^#@cApEU;u%ZFkY2J9f;X=<c|3InB9E`sb5a>H9vCL{TuzdXdTtu_G^?(#*prBRH
z+*_PU81)Hx3XpU}+_s&7`U7(DyXjkTj&&xSH)3u-GG*DDm<?1f9}n5(LN8hHt=?Z|
z6na1gJBw{<;f>1KZ{^zyp<Lt$a9o>U1~VwWwvL5yd}emA9ZHXPI&4V*6OH@Mo?W1F
z5!dc@)Sp=^Zbu^o+>~2j-|UnB_nQ5g%enmRmD7-nSkXU*M>m*V&}Eo;)SXWY&&7Kw
zVWR{hUd3Gushzb3u%y?)tyixeVBN9ekh%00VLZ2XlFq>@oCR)b`6|HjVbjzrn0BTz
zc>aGq?SQ7~i^sEUQB29$iE6(e)$cP!G(yt?0xg6%fY$+<r(-aOi;%Usl6*h<EF*m4
zuV6tujO0xDSd#g8-0C)!Ji<hzh<Ab!jP(9e&(aEGoAl^vU&8Wt^-#Z?G9x|yBI@&n
z?|t#*bhM(Q+HcvUw|4XZ5#fG3GA!8G^6mtHZ*5y}jZX=Q1XGbNIF_fsYSx#&hfNkT
z&R8&R-T%KLvW#+qbOM;0JHMUr3&yK^iM%2)C3jf)(}kPkP029%@n!^|!j03}dt0w4
z-;iXSdLn71cDe7m3gB*GBCyb|PF_@Y-dQXUc&JO<{5PcEL9%$`i@Cp_T!n*ePL|*s
z*$M}TY#$+lw*fR4;A7VLX{jj;r?F8m1ml^@HxmEyjN0{*HDsZAFhyWc!^RrEDK!(u
zv6UHH!1RN^C{$mD>uW*o9Q4CIm*XLu@K$ZD_!7IXc!hFm*Y*$Ds@WwGyWAZKIxkTb
zGdti%4j4HLE-J$C@?D*T_D_5i^}rByUK}qXV<TR-kGsX}-#V$QA^x{ce>%Qp6Zr?-
zes02~w_U?sn?1Y;*Oe%uW^X1TBBMU0w~MFa^LG0a^^A7t-g907n(Hf{A}{Ljdw=hd
zh*0k}LSd`@qeYOMIdEX)E2H#cZ+NH>!@qI)-;^1|6BSliO3z2_;#PG8YXk2V5qc-5
z8mygTAn2|dclFR&)hhpgWlYSq?r~QMQ^a|bEJ%U>8)lioOyK&O{yGKI`FCyY8rU?+
z@hK-zbKLLKLN+y53{e1P7(FN~km%`CV8^D3xP?C;LmT@??+ZfzAlkIID!2<9Ap{N<
z#yo8}RX7}f4P&*oSN%hg0T+=v`3R+#Y%(BbeDG0_gk(uwOkJe>4`mO>*f?ss7RHan
z%Y*ZFw=B((*&9Q<iH)c%S}Y!Fnkp$%D~{k>k;d})PngY@53Cp?H0C*tz?KV*@p=^7
zEr(bs=k?3*zP`9L`_$=^)jk>O`hSwN-CFX`R%Q;n9M}P2xw}*{GNJ2b3_3ppl19+T
zQqP_$a@2_u3o>{il%V^UGxv`%w}gwbPXGDw7eI-)mD$166|f6JsI$LrV}T5rIiAja
z$Vz`Vp&Q0ndtRb{qV>Ef_5%L(t(C&HK_1BHgE!%?dD=Dt=1#9|79x+dmfmz&I(+&E
zemjKfU&FNJXwY5PIJ1rI){<|h8|P3!rZ#qRO5r}n2IjW|)Lp!q^EvUf-UH&uRo`W>
zSNHjRT<5qQQ6H1iZ_Z0WSU0_eB00Ylq=JRnoq7M3p01PgE$?YObBXkap}8F<+rtVa
zNtr((c6b}sU-ZbGc=^ZxBE+AYBG8DdTA#Bda{V&ZFYu22^21k5<tFBJ5r3`7HfCM=
zW$cMcZb;E*sB9Pt3=rP)rh$ds<81gmarHT|yQEh)aYZg+c~q8CdsTl>O!-3rhJGS)
zE<|*dv7)U}<CCoZWi7kb2Jy54m6DYgvojagi-UQEAmg-~qr{xJJPw0Bs2Idf&;GsN
z^ZyguKMo27`&!1SuLr|4whmzD#k}_A-_1$}U)6><jtQ$MEm|g#1?$*`CoRx?1>@wu
zwrunfN8MPz|4;|>A0g}EsrDRv66XOeM&^3V*iFpK9M&J+9y^2UOKWlK1PXrL7ni-4
JDW>cB{{UM2A~*m5

delta 150646
zcmZs?Wn5L=+C97h0hJV`Q>0V6L%NY}knS$Yg(4sg(jXz-UDDm%-Q8?@OT5eb+~++1
z4==y<VYBy&xn^8rT-O-00rqmU5~Z9m9N=XNxkQ89Rt=v_EH9@{d`;AxTTb(=HBWb+
z*?%}{U^^YLW9YJbW1|H3A-j>V_VA{6jYQcf?c7`FzM_fmVq}Q#bYz78PtW+IHDHjP
zRbpvob$R%8pIX5H;#ZH$%op@58ILeAi2#FiiJG}JO60C?Usd0Cy%|}t)=s-13n;NP
zxBk6zBaV!oPQH@)k#^AcPFh~x^y5?7jJnxqI(105QHAD@wCIxjK0!AJFU>NhRpGls
z3u}E|uc*&d`xDNZ32B|IRZep9VN9t48CfNFHB&+HGgvRgyD3ev<J6WL1DBdy!o<iq
zys#ouzyIX$Y07G@DJ+C`{8qVm83HIzvZm-&S_XCn#xo@6<P?mTDdq?KmcFrjyP|K0
zvqR;NeCbI<IIH{!A;Ss9WlStB%iEkBX_mC;?X7S$VV$4q`Y!Sd4{t9y8IR*Yd|GDx
zvqwF{PrjVgJZo9fXNvB-lf7>Eg!_XgmE~!Arvl$8S+|_-wB~>BnDs=S>W=}llXrrL
zqlwY}nWceM^TkR+LkDv{&(E!$tITct{8sYFnc)58sQ7%YC)U0+S2;mhS)F~;xYVMD
zp_aRxzC&v<=1lAYw9ug4_!0X>`gL4if!_{h=>@?`5@rg!B%-ZJu(8W7jtAkI$Mpat
zy-y3DU%<{HseN1f9=I!SRu6$4EP!NWMjrS1rCY8tO+k`}{cvGKXQ(e;SxG@*ai2_o
z-@|TSfSaA$WbakZcz(*0AT8$idj9q_<Akq1dU=tD2|6F01Yj>9Q&WyyPtMAsYL+t?
z568uFZbaNEsRl<j<|j7h?Pj!>C}@{gE^UM&s19V`TF_TkR@lsjGA4n2WDJt~i&3HA
z9s<R5K{RyqnaN3G)}&NE_tL^bI!4AgDGCH+bX0Woc$pj=9GsUgU*6r_LCE4{ysi#R
z?d{8oi|@DkWBmLe^z`&pG5AD8O9d*_g6WDj`PQ?gR#sLL5)u&+5x;-`M!Wf-rIn<R
zS2b^g_Rk+(933zS^!E0)wF!%gcFxXn@$nHte#FFZaBzr<h|Jm41_X%bDWqonF6Gi|
zbW>AOV&UL$b#WQ$?}zjI`W2p#kPti*yp^KjDA-iiB!*}yF>)nw@qoa<o+ghARW-E=
z8Fr^_*zv%?!MCoh@6H-~E(>W7y^Gu;i>r&XX}qw6XyDgMo3DUcY@C(VArvJ9hDvaH
zLU?dO$a@f^B}bK&TRYM_czmCeqL@y}?+LwM7~TuSAcRCkCED0pO5{y`2Z)b~m6h3U
zz2P95T8aI*RkiHQjPx36N`lqygQWm^(&F9Idk=ka@##9pm#CMnqv<QwMmABYG3lu>
z_EttN!1|D&9&t%ozF>9r%so#`34^?UBP#Ur)RAt3JV3<qnnKWnK*;)pHFM{4-D$TO
z%LNqWKkEfuQ#%ohnPEu&(Z|+ISzUi#`LT<YQ+=oGFfpm=wA1TNL`ezad1ej<*i}Bz
zFa!Skh8sdw!`)TnB5NzS44s5E+Sif_z|V%Z1=>Bp`pLW1(7p8w3;~i$C1I`3B;)Bh
z`O(1s`hHcL*ZP+p9|cv;8=N@)h;S8E6F$BLs%AM_8U`vH=Nq&K>znljZH25Dc-uqi
z@gAAm8eK)Fi<hlAuraAB()?PBKa_h}-u&l(a*o4Ls||8?Yu#oYZ|{Gu);?9+06OY+
z=hYQHaBC|uV(!$3ZEgy=feoUayy~+K6O|VM<k50eo9BoN1ceuQsK<C~=#b#DN+}9x
zn|`|lY~dGiQ}|_#@umvuRW*3*xg@7##RUWlu3-8i<ZC{A?nBMa&fd|{;d!~|c)2$|
znWq?u&qhT}P0h)9y)z7ZyS)#%c&e$z)z-S{>+661To3kDfXKQ7H*_rkoV86C-~BsV
zKiF+>un2{gmNG@>mz1Rb{JGTQGdVL8-<n@kgy5H%NsfSka0d^A!N5_>$q{E)0H<kq
zSeT2WW3)_8e}BJdASxV$kFT+<tu0G3GDM7ALt}Pq>|-%TIFX<mfCS03TTRH*ZNZst
zl-#W=%`eI-C@f?(-|4zaaYx%*)YFnyl9%5$>iY0bv^g+zenHd3Y+EkvF7yYv*W=Ir
zV}unv-|ne78tOXXM|(GgmM<-(U*QoT`SLw|ubzMV^0@L#k5^S){i(rwc{EgmbpC0#
z&JhO{?UG4?Xm80F4~Ucb8?U~!oXo0`YHQ2VMce4t*$l$AF-Qam`Hd>w`P>QVFLJ5J
zS7xk6hJr<r1DdZ~xQ0J!NWO*;aH5d6rj6;Zv}DcS2Yb*HmfpS%5Y3uF-q(ha4J9^r
z^)C9%GYi4Bo%r;k6Z0WJT!~J$g0p;+S>C>5GhfQ)`GcMcB(geA-KYbZr-Cr^)A5HV
z8+Ztkzo73>6fGNIxnB$?Tt<>gKBCt@Fhb0q!F5hyV`PJQvu8E=bDKJcaY6q@Yy6>f
z-O4+fHwRoQqy$=ze|B<7^CdJHa=ksZ?{MX-cB|*Bo+<>>ZXe(wlJD%caAJqjS*znr
zrG%{n9;dkg_Aw~~ujA{iG$u~Z1p-Kv#>eDT1EPdj{U-<6oY;5`9?g^pLM+ddg=Xj3
zla!P_w3F%fAx-A8jO@%pvk@rqnY{+?eK!gM(eqzrA3Z%`&0aSW5k%6cGuykn?)SHj
z<an>Jur}7$#~s!;Ha2wX?1odg6s4u5sbWerD?}cF_<MX|J-z02m#UhY8aXPJmCGA}
z>+*f=gM$N0OG_wFR9LuBp9xM-50AU^&0g#`Z+P8LYzz(IAn;$v-oGyw4MI0HH4VZb
z^*vkr@aYqoI_hsIbReJaM#W%hd}4}BnSntrGC;DHvh4#NZ~kbZ>*7dS;{sQ)PTffR
zA=fdmRB6Zqxwk)_`Pz|LlA<0##5Fj(=(FBbK-CkN+Y=bBURS}Xp{6!}e$(FnS|UU&
zvxd;!<rHUPqBgC&8IR4-Z76&)Ir#tt>-D@5AKBdwVS}5Ec?8v$+d|$19<8vk0c~Td
zA@nnQF83J<MR#*F*P7(y1v5pX*^v)?PlCW)l@~Ro`1NppV=IG>*X}~US%OXS+gEEA
zdR2FIl}!=xX5JmL$b5%4^gqpno~x-%)5*9&K5A(_jJ9NfU<4_@IQ73F6%_DwNco*q
zQ4{AOFTd=r3E0>&l<KznupQV*l?y?1TL`ufY*r_<vc@eyLZRQ_WNc`7eibSS2ei#B
ze0`RErm~BCbxMmBj1>8EftkUjYpmte({~Y^UTLexH!3t+_PK)WypF@Z83c@*7WU5T
z&|ztzu#YBHZpVUC12<At=1=c@!4TIyCrrJgByu=tvWs1J<7j6JC+~`FjBqTt3_qe9
z@dC{<ug}QJDql140ONSFV%<mth@R^oS(@$qRh-FtuRE2tnV>#Im{;)2Dx>JP%?Mu8
zIl@uqS4>#p{@z}b_Z=%GC8E9}zASr0c~w<taPV6sQh90V`Eo;lG4l2E&nB!Oz9O{w
zBV%wADNLdg6A>918P)4DLEgN1W3$|FmBqDCU0bW5s7M{iy?t>vTV`MnY=(dYfSrx)
za58VS+^}<@##)l1r>pB|wbg(Q1Vt+=YwL?U?<BeSs3@{%DH$0V=*7kMlW#i5mTFfw
zq}2`Ds0hIutNRn4p9s!7&YiYTV|nr<jdqg?NpiK0!#^saFC`-tuI=8k+>ks}enNtT
zk+R)BcIJ6q6O#&hHUK%sYjM_fgouUY3ir<UTRi4vBM~I2Q>to@b>6<Riy+Gqw2>k`
z%~*kZ`!HiO*JAN_X@BIBNI*zHu;=4?^((GMy-e4IZX+|uz@01I?zl<UXW=)<HG?qr
z7jslTHu|NdJqnl&>(p8vD-(pz9Q}}Ivl(>cNCD^vM-zGNfOGr9aE8TZgLU>lA2i>)
zA4Ifb+#v-ay5hgju*Wd!f3X=jZpltPI&uu}m6L56LBg`eS1hEROt2p0Hl$zPvCK6!
zU*s%e1kH7o)#0&*^VO%MG@Xgx>B=HVk`wf~KP}<A_Plkib3<ok9eXF?{dx9c@fw84
z_bi;Z@du(=!0Xu~<ic^**F9)i$~10F?RJ8{m=xT^7TanKz6zf7UhqBnvP{h4gmjg3
zac7eDgmxJj``2N(VC@~tWhs{~2O~moy$1hONGI_GU<F@F3{7gu);ZPR7cXVb57wHS
z;9|nPik3o!T&q*%Y^#l9Y*H#)TA8hcbpsSRW(a<PK(dp#n!L8UV9;Q1UZ6ch`dZ0s
z_QM|EH3e;N|G=8iyo-ocOI|Zeb;+yV{upX$iXR}w($F9k^sWby52E|qX&a16s7Rs=
zI2gpdQ&Ur_ba5nnZVZf!;r%8DdwZC+q^PK<>cyHBZpYdlfn4@0-nVDJK$uNcIGxA|
zjRWG;Y;A2jO-Tg36Mz2X2Z1`U@qAS1ss8uxSGE$hHuDoT)*3oGi>`+=SBJBa7FJ5C
zs@2ZBBc_A#uf8N!nUBKz36niXLlf|UT_$r_v$C;uc6Q=2XpUJpyPvKM_x0iNIBj(X
zVJN2ZZf|X=YHMrj=<r#Lk@4~I38n)_b3jE?6TeYVZy3HPd9-?&{@?pZMv_d=%v_%=
zr`&3+bnhIN=-HNGr@u)Ud>tZINH@^c$~p2OFXCa_!X5!4**SUw+x<8-ZDy7ShHA44
zO=vr}_FJ4#*+IHXmzr~{3$-a^2n}<Y>L=DY2K7T~CGzOlI1Nq$Sm``virE~1GraRO
zFZdin7SsRoWoQjM2f?&6dcxrD3wHLYmJ67Ql2T4a+oy`eQ}-D<x<X9`s&mXgD<JNj
zdqUHvf&#T+!W_+yH1zbGA(pidSeN*MX{(|>QT?9|S0>9?of00|C1gc&#v4tsrw2KY
zs_HmXS$T`+rxD@Ds}1Ug9vp%4@PJnkG5uzD0a$;s0Tl~2-fr1ys~fdC875t2QWmnS
zb0tSi|JqSpVo_as6fMQeBz`xC{33r!NLT9+x6_WNnk#XV+{t`@o|hyk`L15jXtP|u
zn{#C{chhbH@D%yJ?F%Ln_g3A4F1Y&kQ1t2IoVbZ7DRa15#h;1%DhHH|CL3RpMD}|2
z=7qYesi<_CRV}WF`gVt43*Ddjr=^iVx_WxRfHd@z=e7Q58#z`mm>76J1&`cyq1?58
zMu5@YBHrNhS&e;j>;%(6=qi_~$qvz6GkzJ#s;!T(CV)AEd`UcmOk!~RhZNb`>bEhn
zyR&okk31oHsbySWKw4bud=~#5KI($kQL7wPQNea0P1R~scbwX+lWH6`;qvPAloR&6
z9Ba~L+{)9tHWqG7k&i-CI7Rb@49Q5Wc&JGJ?Vk^is?vEI;2;A71E<yeDZ?W}LsOHJ
zG5sdp-Q6INL+kcjc*n1D$H)A;LYdz;oHNe<cD(}WnC(5VX-^P-aBx%(h9`#C-!Mh?
z8aq@onA14uKs301Fi(1kYAdf6ET*lmHN1)9@2!V)g=#1JdL-UXhESXf0;Z+~1vH$_
z_61!X&Tx2Z!h1q*<E1E-lf>v^q;hO+Y{ban0_1X|q~EXx%d{(*weW##G&n2_OpmAn
zL|E9_fuq?n()j*_w)yevj-&@o^yhECjopNO$O}JOonIYfp%mbvZpD+LAa(a5M0uz3
zPLF};8Tgph_XVmwuR|!6=Nq|{5Gusz;vtZaeH2uwurG{bW3%E022Z`DK$nv+csooO
zYZBohco_1KwP~r2xr<Q5&zy^&zFM{rBM0K9&&A0r-h{pZPZR;qh9D4;qC_&Uog-@Q
z<-3Yh#8STjhC-;{ps@6O`R4>o5kEcEHPJr=+2-4=1AW5-jPMY!U4+i>P*f0(xc!n#
z81EwqmdVZnjOdaA)zJU%zNf$Pt66zC_$c2glD(m$8Pg+TfCI>Q82Q-pqCVv5q!2D>
zC+%7J{C1YPxD`P}de~GbA&Y@CATyyGTPKETNqO+Yg%$`?#RzsY`S5^qEvR~V4SLIv
zD?)$Ft%-WT#i@c6CxR19$xeq@W_o6OJ^iDpSNOLkeYxPLe<$L%t94m=mdj~mZl)FQ
z#I!g?Dj<eY?$WkIP7bv?*nAMe+<SEYV{7WDE4KLC7AlI0|H<1G+y0L<ZvxUIWfX>A
z1$W2iBKdo|e^fF88Xk6`&z$4!F<v;3&av$YsE^V!EW6)3b-uyI?%p^4lh)$03rn55
zlBKHBdTBdE$5-}wIz1@io?Tm1{!Y|we~>!vLlv-Tmu<SU+;YQCOL<s#_j<-oNLQmb
zuGKWZ>|rwd?F;5f#h;D+>t}NeX00UcrD#+$fk>N<Ql`RpwML>ZQ3(>5Rh3LOYK~I6
zwo#H!1qu0QUKV3$l48z~e!GG*^tqjoLG`(ULl-p2C@Oh1(_J?Ht%m}uf9hlJ)JI90
zH>u5lXXNUR63-)#C(FCMPY$P;SZxKN?lZPRwNCA~igiy6R9Rk<_L78b8>`0V_FzO3
z;Jd4Jbp7%%Hr0SX!#t`X1S`7Z(->S^XMeInR_(-C#&P52akNwlDedM;%rg=Lsirh;
zRyn!?1DmIFS)>MS{+6{*w>eS5ip*S%i#KTiv4GF?$U^M+68i#HL9EDQZpV<-Kyio_
z`ihlz(LfP5_|Hutwr(-@s*%r{(cf_#1N2DGN)b-E&R}P0>13CTE=s?mq+L8i+ZlON
zB`hxzpDPzI&~g-ceUD5CMT123Wv3#Ohsw~q)JzF2Ki(W1Q3I(l2AO3==cPQ{z(OMa
zo)xDY3&+Gmlt&uj$wZwbgQf36tP+CgX>Uv45G@3PpvOqgQkPL*+0e7t`GpxX&<%QV
z<)Zp&%$8C9L@=bRVBNy9kn{CgR9{O)QnXr}rf$povigaSl4#84tBFe+FIkg{GrKyp
zzd*?9>VL>l8UA-R-Vho9`_#{U`253s-%wylM|Te~GsN}#iNRw~AL?1}^!0{?dBkE~
z(EQ4%Uz(Dt(+P3|d4w3uKTq17q-z^DPAi4*&V#p}M;orK|Dw+NfO|90g*u+c^;|*C
zb@}$!vI^S;dRh~wquA(XbRCTewD<*rx*gA4`{?lEu-#qmgDEyJeJ7q%HsS2Ed~C}Y
zeiLXwB9z_8uj;sW$suTP+gVOxFA(LWh-Kfy|KK_!RiRnwJ^9$)%(v7+n(!mK=vVGi
zolZtfDo@2+YS6hmDdn5^*c7}2m>1802DMxN>frf7D)n7J&diR4MkdLuQ+))dSr(Gp
zFQo!VRH}wIKhzAc`#@_z_6(wDdo_;G2=Y4JmaDyyPHqwd3wzszIvu~<hJggPc*-B{
ziHBQ{o45_U1XO_ykg@jFR4KXsK0{XggM)!#<d4~_Yr1qW?Lx#HHLbgCD>{aFcw(=f
zj@i|sm_gil4d*_J%Cz_aui21}iNfNqP8_Di*qWqZU;rN4Vg7<<K5dQY#Tcu*SL<1^
zcpV_CfFOT!y%KVP!G5@UdGjCnEFE)9#co&lf&CbGwQrH1cXc*DD0K5v|GjB`LG;PP
zTvu~1^UX2N`wYpCOM_vl$nS7R2~6|z)U;GI)b!{_e-}2C7H1MbZsC;-rSCvsStep&
zltY668Tr+j5rbJD`w+a4NW<%Y<&}^e?dBHb7UyNXfN0nYrEzECLSofaS3NL=d@XKr
z8y{FX8ncUkd_K0YmdH{*tZ(X=cnOIbFcGK3_KMIuz$KVtX?vI`30lPXsdsZ28Dg^o
z4h^!RJ{sCN$ru|ATixDTf%VyGeF?U!E(rvfnsPGQRI%b|ibiMvlk=bafR0wMK)HF8
z82R$8Mtwrj@ps?UEK*9{$OvM#@|56c1uL^hFhulV9NXpRVf!-u1<KfQLxTma_;$Xq
zC)km=j71-zKwyXr-HCw0-qcE{2vr?>$03)rfox4-ypF1R=j-oXSU)juib%QRf&PpF
z+A6`b1UP|zN93OY`S5=OVjKq!NN=mR0MSv2yuDcOiqB7n>w#r--%`;I5h)7gsb+Iu
z5_G0(9LShJ*B=j~g-&y3`EVEeF8-?vm*;5bND$}OKJNq=zX)H>lw6){>~7kv=AVDB
zO7-a4wr~YFOm}A)85$7l7J&_!rvU;qj_t$oio$^quplAt+(?=tl{f7^QNhYZp{?2E
z`0?Z#?)WFfuivD2$@@KhS>Jfi(af^B;K}ua2m)N&z|coBObPwwS$5}NQtXDBin;L1
z14Cpil=K{I7!aAkqI&)hdBPZaj8}qs2zFgv&}RTVT>v>&C|pKUWlvAX=bhU}k?7l^
z()v-XA30bBd7&lz0fXD87_Aw3C9kmd?udPVfbpg9bB(wrJxHv+T_OJsCZr(46GTKr
zl<+V`YqHJ73U}Y9`IXsqGTZF4I(F?&(nHMaIy^De);UjAm%$DmZ+S#pG>L<#;|2gH
z6q$Ser{kq@8wfna#Qw3^-Y|1DUf|rVj?b9~=ILTnHsZ??iRI~fZe2UwR{wUHFuZ;I
z`{SW|aJQA!Z!prf=7)Xv#2gB{O4iem7uOP8F8)%wlV#2fCoCx|ucx+u*}VrA6-Q$x
z_FV|ZBYRc`OvIi>ly1_}o3XM=egQL8RrXojBeUD!;#RoEDV}8;KfCQ{#gGj7_Cq=g
zrc67hjrA{uc;9w@Zjnz5CRI||6Y($<shrBfWL|5OtlF*kXqEa4;VrO`8ID#hP4OJ+
z_(BL*?W69AIMu#YQJr&5Tx1I^W(W<Kq03E7D>E~e!MK8s;F0_RyNsfKGgf6b=+=IB
zPTUj{aSsinAV~~?gh>7ynO)&g=h@S7OI5NDUiP~;^ps999dBc#d9|$qy0@XRUy;fP
z8RwVeidfaKbIh5Q2k8o3tEYD4NizG4;Dy!XQ~hf!qaslfsJY#bS3tpl$aeU9T?<im
z?Ui!>2t6GQ)8R6}h^b$<Jm>m8v%1(xYL&^ANS`<;udqv9)r2EO=r17yN!KrXth-55
zTT?TdnEoFs&f3~!w3H|io1w)wYwtP7aAYYY$xC;!<7XT_G*0<ny%cv-r-H0)+5yK3
zN1+-?x+G86{`HovHvN6H&mcmIy?huOY0XmG(A&sOeV}C7H*9bd!LJ}%-_-T^YHzME
zxuK|zbQdSS+7!8(Lk+AKQ{-){&N_ULy%uDmAk%BQdtaW)rt$@jw1!RLGV3<~&nSJN
zRa#dwFL12CINR)fs3hU`;Rf@RB-Pu~4azYyOEt0iV*<BqG3IA{XU3$e+8a1OIoL+p
z4Q(vvF)-mz%{(=&$}oIjtsvv6p#LFQm}UXE@5oJ+<T~buvA^9Gg-ZUX8{R&f`zorS
zr`A6)bhZ+MyF=wEpZ@flzrC3{SbZmuZs4dE?NH>-W1$>~(ABKC^HZf$Q8J4pnVVi%
z!i0FbT&|xZ0;DZ%+viCy!@y{Vxv%Hn3_KGV{}Q8d$juKT(3j?~B}1seeo`AnLubxP
z>$`Tp=XBi8oCgOOJrB_@_x3JEqfrQ-c*nD{6g4#f$S1n7#%CUBt-h@)8NI!X4Io)0
zVtN|N+3U<JE261DzD5;vfLamGqMbQ~)Dt<M?}*Z~`5!eIQN^%0djs!$jv>rI-hE~z
z<I_(pSqfBM+s~~E47nW%>cssftWp$X-ebMvvso>j<7<Mc1TEVKCdUUR55C8y|MKwX
zK7>-0iaZr!;%dk1le4O^bB4?Cs<Dq~CaTj@;<^z9n`aW&rxQI8<a@r#+{E73?0T|P
zF>2FO1$6WrRtaP=ALNOFy!DwE-d{e_#Z@GdPC<?K1AUNq3A%LYNK?UNthiJ~MTw$W
zRwWd~JyxfexC+D)<X<!yv}&%(f2GaLwg2jB#44z6$W@RR4;F)AEwX;6P)=KW9pO7*
z^3gIjl63R)kJwEUQ$LNrsny?6{Aynr`Vx{~MCXcPr!lxr3<!DA(^95Ld7sl=eBNS2
zPgrHFUv88DGb@EG&PJSIF=Z7cE7+U@`G?6pBnZv>JyN`75cuh6=nk>A5Yw&9bbmA)
z@JW(esLIGQ=H<pCK)k<1F=KM_d%sL7E-kz_{d+4JDxZc3HWRF1nI0y(|IH=wZ6D1f
zfRK*1vQ$i<;nnLu8)~_7RE)Gm%IYSr#|LFaIge@y%Qbw8#Y3pyd1P9Mi0_vtE1|n3
zO9jP!h1(9c3}KC~XOG$;v0~&b_;1h+?k$t;Keo*Eq5pT;GB<>V{M2OdcmtAtK}5f;
zZKKU?s|&QSz>mG#;{~d`sn>|WiH<yDU1o!Xj_4H%k;P`oH=`E@G<WqLbYrwG2YJbY
zIF0#a|Ms0XH5|H#D`U{JjN+~yC&{yTyr5X-dy8Z4L>Ibn*b4+JFfsi1?QVA(^Vze%
z{z9ALbfHU<$vyvO6nyCq?*OKu(s@4|_t5^mCA>5!M?QP%kFB7ng_oy`k)~k%n@q|q
z&dq%ngQrW9%ZZ|mRpd6I{r8pLwn30Z#&!x6`&1{Wk3W6=?@Y`K7Ek!p1TO`AgMc5O
zPlKs<xc<NG9+MO!k0xk_{1raevI0557_3QNQm{Gg^bEd2lN=Oj@OJ)fw-1pCm?yuT
zEKsGa{Th-9YC%-dQU+3q2w-`?o$K{7=F4tVHP^Trew)UBlTp~4Y~`enbgx1vT=_pZ
zdH~^tm0xoUu~H=-u#AZQ=Ho@wn9^&m>}o1{S}J<@gU|khC71KhyOlQ({UzXtOy0bG
zM#{N?^zR$`j7C!ba~-J*!XVs#&i<xI^Y^R67H<a+cn0ME^xas3-yp7$AHv&br?^Cn
zCB>bY;7b61fAe`UKzI1qDe?FD&s$a?K~glOn=dM8{_QM-uiB-;6j;XpT)N<$71H_7
zrT<*XQ^<4wRQL)Ri5v548CQ=|Z#x`V@Azj>4WhKsNp=4Ap`MPzb1^K2m;Y^tC|T?$
z6!dSHP1a$6Xozzc`G0<B$=`j`_Cey+e~0dw!5@qYze(`tmEVZSIPm{|PpY=&jKq!g
zgDqRx8&CA#`ST6ayBjVdJGS`ey%B@mf9?miqg{hwEx%wpK2|NqeAn3V-T!`QnSe-I
znSpdN+iV-i)Td*`2SHpNXASxc{>xtT#qK#GX{DD@g&0FT#7~U8Wb;h0oNYn}1LxoV
z#e|_N33YN#RH0a?7D~~KFfy>PjCq`Tt3P;v69gWTs=&rFb$;alq8*aoWWtGV>+43}
zeiKgFU-Q^p4?Z2j8qPx*cJ{+s?BYqbX2s@q#rF2L@K;$uCXW?=rY;>HejX34+SkpV
za8t#}0I58zv>bmTm-A-sS*1aS62nsV8n8O7@6N$aE9GS8<zQqx6|Ec?VV;>*KV3WB
zu`o`KO>Va9tyubs1vzu5JXsk}=~lgs`g!HT&U@RKM6ll?Gx}hBQ-H!nf@z<Gcks>4
z!rUr<ap0h+jzro!ZhE4T7-5MI(X;8MMZo(SI@)Z$_2hfoPJXHG-6Bk3)iSO^3<NDg
zgHrv)XLnFG7YAi1u+D{w@8)JT+aF`RTbc*_1u?)-sHW$??FY$d$W>>+;ga8V0O{AI
ziv7cd4dSoBLb{>~Ou>`w4eQkz_cv=&!$ZiBzcm@-2aMAkBfHGg)9tzDtkKcQz+lQB
zy`wR3ZD2yFVJ?KV?|(fxqzR0!4pwNGxAMdwh3~EMY&gl;c)x_u&{x7-L61R~m8E!r
zDoC>0Z0~rw7KcZAmmizmi}SNHvx}7<PbGOYzd^{j%G&0ZhO_j{gT=@dy`wL!#>PmA
z^bnT$MX40i)9>lzAJx0&Lzf#cYTcnXXnQRd=TD&M|J{Wtfy?Uzz|ttgMBepd`h^fl
zBJ{2`n;@m}coB%bz0v&qt>U+iqcklfQM3MLk3+RZ&)O@U<M8Pj#ETj*cCHHq(9+L9
zEyK#@<a*7J0fI`*60Av9E_#YD^zb7&`P=~eU4=%^j$Lj%iJk~@8oy736jz0V{b#Z`
zY&9`h?XlNazAHz-0hGvAHxnp}p27d}z8eOP$o0+5c2Eg<=ErNA{bfHreb_Wg@8MXQ
znOL2{1a-5=j=3d9Uf83C>Y;YwCo~KpKEB?$rDK~dO2`~^*8nZl@w}45c4+tR0=G88
zcha2EYL32qp6-%Fa(r*=Wk99`&ms?OcN-TAC6a)z<P`8@K`RPL&3alheC_t=nqe5&
zW%s(*YkxqV+~-fJ57>MtnSyNGF5m3LbcW@2FmPTuj-Bh?8r{`Ft(eZn>7K%G>znm@
z`K*b3;bh@T=lJJ+>hjmGyn&PyRGY!K@zpMd2^yRmryV(mkf`|hc}kaz7;7&+>Zfh`
znSKPcS-@`T<Q3;qJI`3Rz~_$abg+_2I5QNO(&)rEFt;S{OPs>-XEr0k5c1xxV@QI7
z^T186vuIeSZepVQ*#q?!E+sf7z6iZN)D$%?on&QSx(w1Evvgo0Hk_jpMegXtXO8x7
znGBk@53o0mUL9?bc*BMQ;suG3F#-rv8gsHufIf57tLsBfkAtT82=O%kD#^3#e&_Fm
z)E)u$*YIg68lUWrYizo;jb6*fmsM2TYG__=k64diI*ng5=e9ob%vtoSS=T~@Eh66v
zDJ1Ct$Z;|Bt^QW~6VK+vw>xu8whk-`X=y8qhr)kMIypf@!3<G|Uk4FMPem`MvH=|e
zoCrua;a^<NYQ2M7>n<9a#61PYXPv|YcQj~a6{}^vI>?Sk5Ta}2dwfI@bo%)-QYW)^
z`!Uj}Jh*jm-z1!JJGepnR$vXupv;4;s0UKUsd43-3x~b6)A;11x~DGeB-D;~_Tu`@
zeC)+pHNV%P@_&N91@L<(zj<Oc-UKEJKy|!Nm^0I07nV2h^@l(&)6P}`-oACfvwAOX
zEd*g3Z<(&RMC^;6SA$(t*<!j8ceW>Utr+Qwa{V~Z143ty$ETIkd2<yz{o`az&C9y@
z73GQwHno%RuMbJ`i*nE*U~bUQ%uvJ0)qr(XAK&R(%|gggjuI}@U4}C?2K;tTz(@78
z)S7Sp6N!M}{XMETe_ZA2(v{QxUXKRTZmG$*eY92l=Yk@6wB1rz8i%>#Xqp}lQ({_t
z+C%GfO5B@yA?8F{FuEpQs(5>E-2a{gYpTrp4Hav<tNE$}ZI8`5tDc}vXV8ctpT^x_
zxY2*sj8$-1hkaOBWX)L&7{EbLk(zUeh>mQ0@3!-fikIF=Dx%>F?qBu`Q1wVWsTr1P
z*0wEm9QBQ>RP8c3y1G?Yvm^MecOsz@E~IM;Yl**rJkG&xVBw3s;l!}R(JF&x8J#-E
zl#t2^urVv&EpZaS$RMqy<#=33>4Ic@+VU=|SAoybJ2JHdy8>uydFbu*3}|TN0m4~o
z;^{OG>GioaNU0`2YS_vO;^WU}0f{Hu`z?;kP<2-7!m&TZvYj!qSxPC7$*{qV)tl4#
z1()ue&|Q3jgI+<8TC3rm5GYh!h^q=gHoo-w;!0V`H;c_!hi=rpD6Z&3=Rj6&q0Bws
zr?EMGfrbbY0pQ!PNelX#zS;XdF1wY2l1&=g%GHMMg#H4Zy3<F?ok(K7+9yZoPt(EK
zw3n;?)Ek78M*++I{k~UEIImIg@DC8$8qjpCtqz#<xZSn~O27d2@`WYo-YK!q&3dHD
zPQbH2qiJ`>S{~iG!+b%JKfMpO1jRXvj`_-6&X>~7<bjCq^=CIHqUMUE850(u_kh_T
zw-5L8p?Y$2V#d=<!I=Pd+;j@(G2Tt*5H&^_$AiLKJ3PpztHN%Dh-(O0t1`!fhz+IU
z-GLmEXv<d6s)$t11Y)SKv$Laa^;({qH5aqyrOs?AF{r^!Dh8=CXjOV22guGAmr%pC
zO`4wv0OH-vp2ODLnncI8@yt3=ajA{>b*`a+PL=Bg-5p3J%;cHZBm!anNZ*M0NLZW?
z#30-xBrG--fPh{q^Ysx|v+n1H#_IFX0)zCEmKObeOMEt8m}z$<;t5HqcJje#b%`)w
zkLutZl~6FxtWpJ+QQb7KI`|3_c2$G#;^_&v3BFp(FWJ;<yZ{}bBLmq=6q&B%72KSH
zIUve;edmHqIeG--V1q75SvR8ZHmAq@j`gyaows1wuSE9@;o+*pT%OUrbHss|u|{9-
zex>0B+q>mPMSaXgI=TYPkZy>>+Ljt9$vYgB|NQy`yh<w>|G=ss$QAAOaEyl(!0@7H
z6Gae^FOXALRj%0G6Zf*7)K7f?3tZx^ww>viHvtAGgamVqp{t#F%<jbeT()wg=3Xf1
zkp`;DZw&%_U%!b{?K8o|T4TbJt-J^Ub5Aq6F+vgs$dQoaore*uyoGpL^$qi?XSHwd
zxj35yn1X@A+W$&_!2etO!}Kl42qY(G4!C;h1LJ?R*)k<>bG#cEhK7X5;zk@;Si|`R
z2d__CE8QWA2O@b&Mx<3%vMyE{QU-{;K!5pBLuGhqAX<u|z%q%&oz!mr)@xO88ICN!
z8PN9~Z}E{_C0HAqoSv`tki01+mXizH4!(8+W*`~a*)(rLeiGT}jD8ST<7pe^Ya4CU
zNx)2R8>@;=Fqca?Gr-Ob508tiLst3XxV}+S9mcRBs41yaHLi4Db#n%Wm;}Z&3`i<(
z?G4nasMK<)<pH`)i1^pUsLMV!i{J+V?4L47s1?PT9!=3J{7NIP@6!_u!uYSJ)qvmX
zf0sNbUC+z~EfXyvk6B1T#rVjvwI%z4PSM}hJ{hwZRU2<Mb?o)Zoca32;mWPj(n?S7
zVwUyprvka!o3@I(i(Hiyv2<yQi9)p$jWX@~(zxBm>4E8taZB>YoTz?+WKf9&fz|j#
zFj2^TA=wqs|Ly54+^TQi+6^Q~!wECs@GUIrw%{@0Y+!7zW|%P_$%Gt9#L3Xbfi7TE
z%ABN0>M#P9s9`gNw)IYGFuuCm=tz3EF%HSY(1^UA+BZjtSJ%zLzE3W<KH))*j%|`9
z?pGV)%$TY6TDQ0Nkst*H`_{AeC55F*YD#wdeBDb^*_K9C1_I$wz{d0nqcwnx0RDM^
z5rXLQF;Keg!2Plefks}4_!z;5Nxuc8iP8|zMa5xC*&RU)ufv05ifziQ$i=K!$Mz~=
zLV3mF=b#B4yBAzKr|W&NO7tIe66$DSx;TY9$D;)A>lA$^ZQjyc1G(g60`TY(%_%4t
z*Ex+zX=XR{+XOb>k4;yzvOR;aCYjh}CM3tLwvU1(h#a$RQ0D+8nids1b0%?vddJq>
zcoYbT!9D^+YvC*9$^~NDYAV!mGRT*x2lMlhGQWf$PA%`J7b7gJ^A$+2sT6Gj$WuTC
zjnFk8l<&M-$|DAEoGM&h%d?efRbO_G_q>6Gp}7Fxm81g5Ss>htI$<PpHS<6JxZ9JC
zjl6&q4~K^g(q)|px!2ZNSaLDQqZv)Bgvih*qdN|4qMY_pMGzAm9Gf9Sc6wk{@wPt6
zQ6gbCZ{Gw{p&s_DX6Pj0Q{<ZD_|EN7?=8mM(=pzuEsUa=9UNGlE&`V~*r9l+p57uq
zf`fs#=VQ+yBqvPZ(RFzHEgS4%+A<-&2iP^4KEDqM21HQsDS~zLaI?a25}hP+6^4#V
zH1<bbb*RI@SIE<17MUb8Ft_1%L4PPN^HV1@EIgc^k(ST<D3&~B`(#IqB8}hmaeUJp
zvi8aRVK8%kp69n(-1MXGF(jitoBh5E&@y7-!j+VlNApluOmBV9!a|-&*me9ht9g0S
z`~?&dXC%F1Z+5lrbm{fd%F|(?Yl-T6$Xvb0Zb^P4sO2o)dUDuoMRtW6;11W;RoMxo
zcS<V23zz9He<zI<jPAS8`0+y@t}Qz_i_ot5al+PerpkQRlzz4j<II*883SV$06ARZ
zkK_+sR|GKIyN+O?5p)!kxV-8LXhyDvzeHT#e9eeKz09wVfoR9Th5F@uAHD4h2kyD~
z%cJ@2QQN1V;Z5w`w`~<!fuGg^ujJ-(YN}>Wy#gso^b?5R`KH7@x2^t1Db3x8<2(hD
z-J>H21auU;Jikr|VqVrw#X|*PAPSwnS^Hd6XP2`Na@yTe{YX0cGHy5ij{g3%?{@6X
zhGbZ?_Di{?xi2AvGi6bA4A$4lGd5}Tk9E-&O>7wk%y+hnAn<)Gm`YNiF4e6W?=90=
zZ4t=5=T`T1p1YhJ&vU;?ssf~C2dm59H-Fxjs4FEV?AcEykrfx;2Br^{EG?5F)A@<n
zoE&tnd&h+B*Zj&`pLm4HqXW_R^NO+_DAOOzm~lxDL-(8O0^lNQt!kA5bCT8vr))A4
zWUM4gYjdqyPmWh<7nwe!`KCpH%Y~Z4+~v&K_L9l}L&}}#6PTYC&v{4nn>?#_etEco
zAq?-gRZY|)%+1aKe3QwkHWfwe-j+aGFo6=<rT};go0mCzwtq&xQ!3-~U9=m%rIQ&(
z?qra={I%UK_=q-4aJcOC<N5Fq;-Bki8Bj+sVSPU_>+AFT*Pf-d$?o(GFIYUJ()Pw=
z$(0<{-{5-b`A+@wHF>y%v$M0hlG3B`;VM^_kw|0U$3Bw+Ap5RC^4CWSW$8(m%){3#
zuUMx>Lm8;RIuh&ed2Pm1X5k!V^)l@VdYgLhp$Lq((b6=GE**4qB@9eOR<Ze@XSXQl
z`qkjY+WKoS;6ogCwghcUVD%*}E$HJfr~3Lbe1GiDe%4)yncEc)pky}43H<hq(_11(
zsX#e+YZ$Ky$Tp;YE+CM4=bTrfTO)1I+I`}izMH?QMvsjOk&_Sq9xv9z;~{pV#N%PC
zEiQhobD^Z7QBzd`Grwtni_i(4Av9h=LstnhW{B{wfVb(pBWZ5iGE>mi**aE1O2|jr
z;i*MCJ>G9_Xj<iabuEShkEw5)(BgJw1^=YWXB7b-vIZuLRbJr=2<YyyYfCw_9k>GV
z32GMA3nvNX50M<A$TxhS&u$B+Q$X)mrTtC%?JzXl^17omyU%W_X|;Fp-N8bVsHDP)
zkVDgHTSYJWDHQ6GHJ*>wil3ugph}meWNABJifWQw8(wogQ^M}d^5LllyVZVZWW<ye
zTLDO4qF1!>?u0-f$pi<y4cd^gGmq?fYwaozZJlI7ygfL-($Z_bWs#=o`U+A1g+C{J
zpYK0^?uw(YE7j!(w<=5=<z+eVexg!Y-`GBcdt3oW!LYfp2D*(70e5>$nlWr$Ai_Ng
zqU?-XY(C1Ru%2}FSDCOD#O)9o^l=$i0STdzx7}h(j8T45*S0<}H>l~Zx=6-8wgjok
z@o{;-a&?u}w@<e(OL@w*<UoxMPQc&jwQ}i-FV@WT)35{@JhtieQLsPgZJ5L@07wPx
z?TU8~KD~f|dpkfa4<Hs4vWH?CInAqsS)G8Q+{J~9%@n^F1x_T%Se!zh=`Mi%@cZU+
zTPG6f=0y0}M}hzf8b&TGS{kN=I-P!IrrF7H2!vAw?yrVd!>$Sj&1z`LIl6$YtI>01
zQ2|Dyq>Tv~Be6({1d(sa3l+}H5bnn5r#@$>iHXH5ra5)c<SSe!r;G4#R0!F%<r3)O
zl|U!`lu@>OWOBoO{acCxAYZtb{MnqC6vt=0fMLg^0CAv(t(^Tr`0j~Ed@<JE9@w72
zhUcQj5!cZH%g|9$dXdsS@lnHij@_}Ne*H<OMw$Yav7QR<PGDnm{!`;{BcYo?sNX2m
zt>$&n6NiW>UbS;SVEcYBEWK>D7(Zs~DLE0ZD4#~?^KG`lDoJiG(DUcUCKb%_6Uvkc
zO}BRrK5wX+czVVM1kgfMV>PHKD8lgs%hy@6B+&$Yt~Z`$Y%DDS!BM5wB6T`E$mQXr
zKTYY;(N77uh~HIt)dJ~Coyceecrz8UtvRhFwr+32BFQPZGuHcUOYzC9x9x=@9}EK<
z0+W-Z*&O2=Z%9~xq?b52!|tQHEjAx|M;@+8c^?)2vp6Iti~g<+RRud=-6a%Axoh!h
zi|6CU^tios^f~$d^yJ*`1MKSM<;|mMf1!U+2e`Y!G27o>t_s)9*tk<7?%=FKCAUXn
zGB=Er{r%8j-rzPpS2O>zuI^v|>%iuDk{lxB^BJ%fEJfku?rigTJ=X_;yhI5F9n8UH
zvc~T^YmW?dYA5!LzCJpS*OBis>-wJDt9kk>#D?49JvWxXxH`YKz!FHG=;24kIGA*~
zs$CMPE^R8_=*Y1KCp>*T<Jq-SI;+p)=G?AW*00=jbTIES?!Crk(k&`29iJLIySTD?
z05q4De?}55;V%_nMD}LYdRz*F*#MV@B<R|cxd><8N~xG1>_+xw!6zi#YHgWkqG5Qe
zAhuX{CBMQJC3M)+M<M(Aq59~n#y$_^ld0L6?_E9}eeI1~3(iA!M5jL&RmVDmR^81(
zYA+<CAb06(*9h|bkYLTmzG6E)1}s?s@)yO0rNi_LKA;eDfA#0kJ&<tUnkytNN-8_N
zQQ=6yH@Fu!zkm)j<B~h)!s|s3dt=?uy=(Ma4P-fvlw1Mzo2ueWSVuVWx%7V5GkU5(
zUWmgZthqAe;9CN|J85eaGq|BjU0MC=NZcwbKj;VfV0+JH*WIF})*a}L^a3Ic;`>eP
zBGhk(zpR8L#%<;$38e{n-QLf49wR)IF4ya+=-?6%WM-9c7;Y$<zhh42#^y1e$pq)l
z{^34+Ti-fDRn<kVf`P+v&v7b1oG4&Vo6z~|BMlBtE|?HJ*=`5w0i;d7n<JO$I0C*<
zn~i$ddAd*25(cRNwlDMuD45*6A>m#qP1VVoTUD&00=H9vX4@O?kb#iGL#~sf`@^>U
z3Kh^F3cK828K_H+$UVqwvAQ{!7njtr1}k*X*vyU}_4T-2q%4xN-`5c$0wjy|Z+27n
zyav^a1>D!ICcQ-(-Pk!<iTDg9Zu_ftNA&O?I#F5UcrAqIQf2{VXz~+dX{nX%^T1K(
zsnhJZmovN`EIT{cO&p{z18hw4pEkQ#>M~FC8y)|YsO?P>+xJGbkqGc=#A>w6XY&hg
z9CZh@-uvG6_4mj0RKG!+ogUZc1|&LN7nMC)wyK__Yn(VNR6R11*5k_{ZR-z<!G~{C
zx<kG<Egk)!rNsxj3|!@HUDdA2WHs#PE7|VUw9U+FLqeQ%0;$9eQgd;y7Z!LuataFz
zk^H`Y4;32Lx(8oEGBO<mXgxh*2p*f0l%sS%MvR$3i|66mud}2oT+rkDx$eTImUmuL
zC%>?uSnJPj4n0?$-Kx)1`|DM%bOaqJ2t-~W5dA&}j3piFmmZKK>zq2rdYHS^p>m3&
z6!A9P@AL`n-)grTRjJ?GZ-R}ZY?hOjl6nSNp7r<Sd~ksXr?33_3+L%!N7F^lS!GRT
zkpXg4Pw(A6A5GQ=MW(e3vQgcY9H+H>v+w!Ko}k^&AS=iGn;ZHzOHCKhX`R-xmEz)T
zU~lcy<iEh<WrilJ(wR`e6S=AEQau&-X0_Gdr4D@s^jsOVTv-VFSFpL(OiN-M5%@A4
zY~3xIu+ok#&X4yLfA|L9gMLtZUUnuAq-%1!e$GlVU|#lg*`IlbO<7wIZ5LH03)(+m
zDF~Y}{n`Cloo=Mf@16V8#awa$Ylnx~(G2}|khPU9c$$o4f7oGkS9p7QjB|UlexaKt
ztQ9@o>g8qhOkLhJ4s>AsY{Bz6mCkI5kXRk_^Uo`7PBWe1WMVlk>)ag<bJ<nIUwB{C
zpVa|Aq25rVUXx*bc0BQ_6Owwm$;Erw-WjT|uCDx(*Mlfk0l_Z-#SB;qZgJl}82<9$
zb-MUx_eYMk*{IGy#^eGrY$Q=I`nKaa>g96vW1TJEO<4MSSq(|AF~4%lNh-`QtzfG7
zaF-Cb=zd&KoL^bXY0&6t3DyR`qm}5@xD13LqWJ2=L0SaUQfA9+?m7C69__a?qm5V0
zslJ0)(<`57X=Jpu101kBFMOLxkJ-jORCJ%t9k(!+#L#L!8QmQ<sBhqfZ;Rf{izE`#
zdt!XticfAhxaXM^6B+N1iC%O+0%K?*yW!N#apSLkGWZ}2n?HB6PY(?yaheQ{u8#cW
zyNa0{lA_mcGq0(`$h9}_gCrjmE?r!~vc0`W&mJH2>Qq4#P-oB?i}$8dByfhRZb4UP
zkYRslXx?iVi16T#3NF88HeeN^f_><Wowk1ZRHZpGa^1?5EN~taT~f?vblV2P`*zH;
zx*Vu?zxh*))wb1GK9t>AfZv@3ta^O<^k6~jY^Hc;yY1=mCnJ#8wJ3e_)5C%(!k?Qo
z4&w=-MvM~xwwn=AJ42e{YrnvZ;e(K@KlfU{DORJ9cyZ?H`Ej+?b{U)5!xAvY4FW=z
z*Y3LL9|U1O=DO6y8GEocJF&$RViR8$IlG`Hn~3IF%~7oIw^Alp?hMx1W2i<AD-uEE
zPU7|z({Vd3(XqTX`nuLi+B%czld+oiAW0ntkoFs~q^!KJen6?1=MRoe2OjhuXKG}r
zSFdm~DdloIYK3MQVB0r#0!Z|<l_0q#Cq1s*&qIKGUHk*`2yjc?<^FPWcrR-PaO#@k
zX0uq)+nD;Nm+|iD{vYHD@@9c+OC0yFa&mfv?Lra;*|@lPoGft17aGDBVN|C8zLYKg
z37p{0T191R#Lw3+x*zowP88A$e}6D_Eg?_23#O7NDcMw}d4m&kzQQ9#F>$cK%YnTu
z!F7!lTpclJZK)d>|GgWlML56DYy-Ck*p^m~h>3&qzIIF$Cs&eDz=vq29QZB`dGHGc
zh`j9}4Og9=qNAtf^r4CCH<{)DYM{SL2sWHND6oR(J3b<==2ccYxw_WOq<{Y=5)In^
z?R;8TN>t0ADAMiApc$j0ppimdwZM8!5#>3kV&S=XP6jK0ALbaS0w!|d*1$j+7yD+h
z{>;lB@mJ)ui-NcseruTE#`cD&6vdAPUWLg&XNnaiwNm|b@DOWbc{_se>pS}XU33RX
z+tnU5vx;*M>cRC}Ms7^d{Fa9T%D(@RfxT_v&<}QnKFP9Wg$!ti+5Pu>k$;5diWWCL
zV%$)Y|H`T&XB;D$<fJ8&<1?uL@3&V8!p87q38#&4h%vgwGzn|u@T~Ai+%ZZ+?-GQJ
z;Zb9>htLRNAxag`F<}eCkHL`ve*bwqZ1jQqbva_fcq1GhzMd+kh(QtHMr-``-)1~I
zEB+{i=p;lp!3zRwvT5St<Z<e1v+#a}Ay@%nU$FnD7q@GGcG-RtjC3%XkAhx+0TWgT
zxV>pW#)ePUSP_>HEBM<k<p17+5}6y^a-EZcff6$4Qo}JMe_6w!2A7dtTv%Rz-#(e$
zlv!EYuFrsol!o-bM*!^!_-kuWM9>=*+WkY}3km3og1T5czk`7Ok%kMh$Gs#%(LZkY
z_bljO-We~YDTjFLN5aLQ=GU!C79*W*NB=)9{Oglj)HvaIg;B7Hg{CBVgHrE$H)T#Q
zWlm@}7Q~^PlX#{sONzY3^+t=3P4{Ydy~Jy@&jc9DM;Rh*R4iF>+e*D=gf28=r(pQ@
zjhpUbgZplEe3j;@mtX!@oBy^ZgzC^FH#{=H_!8=-q-2I5tR&sNvYBwg|Gn{o%<d_e
zUK}hwXJmGvL*4rOn4}a2Emh>+wsJGkK6n^eb$0bSmVpw!^M$OoL0x^ZQ-4D<K*U6<
z$n)O^fSU#^vg)&4sAArpCjCe?C@v}Bb#vGQtHP#avfgph*^639?~}rIgDq`G@0M!3
z&g?JHxPfC|oteVoLPiGK1gV_Q1OKxUfV(g<Y}xW+HD)wZ2nSS}mXE*#A{;$DH912A
z=1i@o#brQDavXI`{{m}PNKlNcjmW@77rO?sEaWrRQ(<}b(qK0g6D_emM!4gSk<0xc
zDtdyssU3H@d3j(mbb2weOtKfgE!kGG&jgye-x(Z0Dx}!ru=xS>)HT=aCw|cb&4ge@
z{&Vj;`(~L@kmg;_<obIevhA@O-SJ^;o(js)01UKTEK^rEPO+zPs&sr_lsg_q+VaG+
z14HEoH^QI=Q^IRSxpv;88@$I3PAn8r1Tr?QPAX7tJ=MHx!s@XU_0eegYi1=e^1EKt
z12e<SNVWg7E6Bk`3>0b?s9I&0P15Mm#R<ww^$*dyxL5w5CfKtC?EnR(z&6OhTR6<E
zQQox(e?D0d0AD@{b;O|c)X3h@E|VF<;Yh%ZmaWb~b5((zZW~%6dFW1J0G+fj=R;vq
zbXf242h0E9q~r}pg2YYNutdHNygF9Z)b-u)p4yik2hFd~;Kv(MdoAA#?0s17GU`9?
z)6se4;jo8(!U}fTH3aV4V>CoXo4~s0zz`$v=YwSLvg`Evdwv!l&D97ix{w5W0qxe!
z+f4j-Q)+QrDAlngs&tG0zn0&K(B^J~pi%e3F$Duj1W4(M2YF2YP&iA&7eNBhE`%vf
zp^T3s{th%3eaQMqYr-JM-~HDLGnS{K)d@OdHeZO5S8S!KXDiXlA<65=ORFUX-$boW
z9S6xhS7z#?fTU-BmKM&0Bq37pB5|)YpGi?{Fo?vcquv<D4254U5tR`5iUmuM+730@
zTdWN*B5%e_h+|0`I?jJH6xb5|?BMY=XjET;V0^Gk7#RW@7M>P!5z2rGXI)|jQ0Ikf
zTUk*3|JZu#sH(p9-FqP-79moSN;lHoDcv2?4I-UOMOr{WTDn`hL8ZI9q`SM%<ayrn
zj^8=sjIsau25k0Pd(C;z`@XKvr5R2hRw;uw7~HDzi=D$WE<Q0j4h;eht!F`9Kn9|y
ztNIGU)a(Im<7KR9ybY`Q+N+-S*+zZy*N{fstEUhDcI2NypW1Qe!ej|}IDeR@8QK;I
zSWS*)KcP;1z_)xgqg2UC6V?6F@#*ovsM6jr+do)bhED!<iV_u3AA5XETJfwKv-|t;
zc&%M9zwtkQVj+Tv^L6U7w*@PpgdpYONrbV^=h)Vi$^!)4XGaMF-~xUfkcd&$pvLH&
zpd)9);*Jt_YscpbRG^|OTvQ!DkU1VbAUedax%vJ?Na={$Md%STlceRRv}>DoPX2eF
zL{wohVBL>VQ_*Bw&wK!NNo{-2PUGKO9q8!u0qMe$M#`pVrbVH>x$|<S;>s{EBQZZQ
zH7T0+ceuL71IQyxU&)=YRY6@fub{|^otO>F<l<ow7;nGg^1avYw;0l(8$5>IG7nI=
zhvTkWf+jsuxkE&;t!aToeFr^NcqjZ@QopWIFc*{0CIo06U5&b;R?EQSsG_dQ?Zw3X
zD{=TJ!x0!Z9vXHSE5)29Ev%(q`aPPfzf$=ubawLL_tt|;jfW&pu>WcY=Y+^NX~fQ7
zQ;UPE!vE1RJw=!%(>yP?e(ea~SJ;GEQ^r)x$w|#1GdBqjc-Nj)5i9MQ!BbDDae!{?
zlZ)-2)XY>ZExp;}Lh(Tqh$=T{Xhg*;`})f9nMSEMW1MI_@Z=fP7F9lidahHODr#Op
z9mcQGp9Z2*@4J6Mzp(n~^N8ZG?ZqW`ybe)QWvKL5Ng!?y@S^yy5*Wn~H5`pJExS;T
z&LSsU%sQ>Qe5kpz7G4Og0FM-fvZ|u{DM>{^nwEsL&D`>vpn}V2(_6jJaP>XiKzGkG
zdtqb&4(^a3^@k6M8NYt>-7g7x{OqLw(mGEq6IKwACB<*j5Jv=R&{0ztlhmeozh;pC
zy>M8;I_Cgya`L81&is;~zmx|8-5iyt37PxzyM8i{#4=ah;VHc28X|9h8p~>uC-0O`
zNPooE21#j}h>4*{=*ET2C+Xkp_-{KPg&AY~1X9RqP7UzQ$B;iP1PgdSBb`G<nQL|r
zIOiZAn+pJ=Pjnl8_zM%U=)|bb!GMGdF_TfYpWxWRaDKyRxG!fT%LY{+y)IIm4idMf
z4^fT6a)F8KG*q<0wG~S5T1>nMQH(?gq5YE&0p6IzPIqo%s=blb>TCM)t7#b>AAd3N
z+21;Asd;OPoq$ab+|g!!&O&34i?Q@?+h2gJmXG`5czfCEy7tv$XkerKJ5&WU%Fn*0
zq2AiMatS6&*brvNdEhX}lUyt^_!^ePwl8tOF5P`LOZKUD;$^BTWEgDPBK(UVro>t^
zlO12?&;wgc?L~6r9Y2@KXrFe;(M!P2n8^pC3$OPSpdT@PCdTUCn8*n?FIISX>(+S;
zZZ^s52iY1m%`TV!+;^y&^N<I#QwE);Fx8yNfab4mTf=3~mZ`7)GD--1^AE$LBZX}h
z5dMv{PPb^B-xUrW=FQ)6lA#C9Ikln{_|K;fb#X`kl?XN~!Hms}a*aH)`R?U_e_8o}
zfPGawOT2ciXg<GisiIs)mVWK;$rUz*dx(2!xme8WVm}|94%t_PU<^_J@#s$ttus((
z_u$TlwHia8k}Ad9p)+7#psgaXhF2Ot_bSC6ExktdZ!(@uny(@-WWrjN!IOCtiICzE
z;F2xa&k~b{bA3BrQpN%1#nHuVZYr^XseOLB3j)QLJUqqbV`zxr06Z08^C{*fq*H&f
zFYdT~cgx9Yx6%i+a2Hx&>5F~(9C#Bis^2{J;%1D{t3cbBO*JBRDVBrR7)QcVwN+L5
ztXslv|M2NHa2IJc#7SPy=g9&&lc`z~cmYioLlPnM@79O%P?UwXf7pyc&}Y!s<131Q
z=eEkQ|Inv@b71CV^Ml`M^{=Ycow<oNbDVYOA)D<E_eJF%zxxcU+y3HtVA-x-q9>v-
zk3Xv9yH4|!>f0(yIMP!+q<2<Is=Kk_rTgvm=nZlxn@k+P)!=S}1b=_!6crEUI1sE2
zRVD_T`6sW^_4Rd<4>fq!#%g<LPE~FV)a-#FX5sRHH5Op-JcIQXR$mSERdrWCVd0vQ
zA6h+fK1Ku(7cuGaf1^tRF-fZXWV@qg6W^O+mg+lw1jOJzDeKjsizT%_;=8S$aL^Vj
zIiPmcy3<ynSut-x2~@cZJZy41n=GvB4;VK>_V;r-x$8&M)K)&}$6{GlMoyFWZ^s$5
zATIO)^2fDjq8fRRy`~swzM{ibq-M4R{0{UJ<Go`;IfHfYawkD+V$fpbA3KNqM2)+1
z*#@{V@bVv2q(@$t6OAO`d3Z@fTY~2-{0ak`nT+o1xr<;}3IgAk<-OC*?eY9F;sY&p
z>6@51((3!uk%eOvFf^JAhMh)@I)Org3<LBx;v~%mER@Cl1OI!*x^-b)^3%3ppYB!+
z1LgSt5Qgsq4?&5~mKp3XE7iGrfTa6{w<JET|NZU^xxhC<e#_;5+5L;iC^v61M4;f-
znd>zM6xkCA561Da5#LihJoI(^^*t0wKn}NJeJvUKXT6+B+75aYqBQm&%j?i5dybC&
zh%7kb*-ZTN4jCG^Js<9FCeOLScX5g-o^wA~T=8S;UZIw)a)MX1Ms|44((IB<nB$bQ
z87FG2=IgnXL3`X=^ZF`I8F|~L(D}w;zum&YPLFSP$e#Z4f|8^ke95Tj=*AS(uTJI6
z)#PmT^cG^8=t1B8d?IIxyAMd~s`e)8Oh++DZe}J$P@UO<ToIq!Fd{fIy`sXcET2PL
zOg@R9IQct_>u|-JC`SxrD7QWf$`m0N>k?k9*9EzOgK=ds;{`gR?Gj(^RAOHDgVKV)
zx+nIj9WP6U@iGwZQ`1qq0Cm<}apVJ^xqt1On*p>;sAE|#VvK;dq#!HLk#%wPs6|EA
zX>?BanxH@y;WZn}o_R~iVV4#|SaE*g9B33F!H;e%gu8w<CPM#!{Ud=%-j}4L*k5Fi
z!5i8?cl)R+t84JCb@(eLupzu7b*C<kGYnilpVXFL)XSwR16$*3iW)nl;M|m~G*Mpl
zVDgA84^=%)hwbg&AK!SDNeSH?24AkF(e*x0BPIuhZYbVB<|JZq(E>qWby7sQnUw`R
z!`IR-sW06)IMP!O*e&v}2q_rTDu47>g=GHzRmI*wL^#dX@odgqkAcsgVe{QJttxrz
z0J<HT*_Jr1_$=&wF-DrJGB(#<V@9bDeU~x;c8u1xY;&tT=cmUX9Ll+Yr=~a7jEs51
z+j{8h0-rvaSxz1m@D#BXs<(7DxWQ+dwnBmaktYGSiSJPS5-BZp-ArUZYW0<J8FkU*
zg(Wt`MMnX%lR&w=L>iCkM=iPK(K;aUDMD5AbB_o0l5>%BH^+`XfA;NP*Y%MKXWPoQ
zN8I?%zCf-gs@>;Zc7iUH;Q!cbTv1G$IBZFm(m-e)Pl)_`hhV#{;l717`~iZLKQq<q
zQ#u&kSh)}-a}qn94F-?&T&usT0S)oT0ys{j++$rm?_KBnWZK$^m%fT;vVXI!@5jMc
zPMySM2ZCR9RT4Ii^e0hL7PzzK(xAf3%!*c4?gs5N!490qsy}Xbgj`PgUQ%k8ovl9)
z9H_&1D)z3E8WH&`!lybop{%52A^!&}6c7ea7R$Tfg=7__j+Gc)ef>%X0W8CQNBBvT
z0nxKCT+S2@sDn)Dqr?0dd8P?|<@U8#Ynpg+e7k&7q5y2OQS7kLtG|T9s99lq!i<FU
zD12zUa&hTpozregULJ7&ULB)`$h$s)O8OUh`E(Kqtf?`(I^YGw;o&kG+B_|8hQEhc
zTV35W>~<PL7p`ZozWz;H>{MRkszE}*KUkXe2n%T0<@4X3hFPnXlZhJq=7NGO`22V3
zPLZ6RmpL6Lu(|<1>&^Em(5v4Ww91LJx?)<&R##Jb5tt}~Y-}=$R!)FEQ}-+9eDj1#
zey<O-1i2he;V;=PX5gRtlPJ-j0RYP>;oG)$f#YHrwX3SaWnQuA_b%8pqUrQWy>1*<
zZjj~uo+qy_W3$?f^>fu+h#HEEpH2{)YD`}_ZjRlJY#c!YU6pfz5hQie?Wgj|9JUB^
zecio({!na~e3YhT*A|nN{pPKI5uBIzG`RKn%qj+sOgtMDU<S;kn&5Gcf?F)fjPCI?
zy|6glU10YHOMurGcYJL(MxFY+lwZ|*|DI5c@q0ZAWn{>;qxumZH*7Y5CLX=>K=?9|
z*8u@q#L#oE+M~Zq;4-5wS&p{x@bqc6{^^s|bDf!0Dc2Yn>k-CthHGlM#bLT=y-kV;
zb-_W~?*+yKx(88ScGFrp69#S1%o$zGlsIzRfUlt)Z<Z7pV+2bwMaH*RBeJSu2jJN!
z`?TWF=I3l)wRgS}l&2N<94Otkr|I{rYK%rzqX6zM(Yn{o6Nt0uA)qd;^V}LlYj*ET
z;@oe|mq~*WfX@xSY4i=ejYt+}!Gduq8D}1S+Hx@rmZFXBeZ^8P-wtGN2j^c*(S*pN
zTgWp7<Yjn>-10-49V*M9Pgx%1;Zjw5VFQCoS3ubcF=h|rY@yYZ*0Nvg`~Ysv@z=$s
zXgV}eHnT2m3i4L1_4c5l1CA*X9H#X7Ik#8)zTT;yQ4j^~=#%$S^-i|o^_RdnJ@_Yy
z7p^O>-;8-h`pDn+eszjF61V1H$$opd*|4#6N&l1mcrLOf<A*iG>9pVs3Q%w$zI1%X
z>$&RgghJWTJ~}!$)IRIo75i4#reae|j?jNxsR0~{`0V-fz;X2FJ0E4{Ln2<;FC6Vn
z)s9;)e1%`Jr33@A!ffMR0XR5!AuZ9%qEzk)NdKJIMeawssx6A;&{K``0wz{&RQX4x
ze-}$15!P9rd#0+;kk&>woorXBpuM;pm{trw=b1V7U(($q?W+koS#x;E2?>4{+QV3$
ztP5@;36A>_?Q}8LoUa%bIsEa*1OV9~azAo?i#vZ(tVeha&jP(4Fe`DLRS`OPPZy<T
z4Hf#h+z@_{GXVa)7!H_2@G<|SD>n4on1<ICmliW9_PL(|)dMJ1vgQ3-4E;tLT3R!j
zx1uC3ARsTr2MSX`XE|G8VWl(M!~kppr9k762@6oXMc-D6&r$z7Q%wNUO*De%^NkM0
z^^8xFVaC|H_micWN0UKx7e@jR-Ia~*c+s1k`k5pFScrF&qmI5rvPD6GiiW}MgeLKi
zaX>2xG%%zh|E}|OQopkDFv6!+(+Wo&=zBy&iO1dxUEQ7f>#+GAgXz$Q)zz%CG)6yP
z-y)5gg_B`BF)6LpxP31X|6}b+LtWZ@oR}ZG@I;AOzrJ=7Z@sOB1(DYpzkO(%d@Pso
zhxu-tFj^Yw+gi_)Ep(-t^AmZF%*;%Tz>)dl+1&kE@JqHvsMl4_ca<0FcC5ExBTu53
z>Ye^k_^!g@rp?C0WJR>xyt}dqNPgWf7E7wDTY!%E<+N6f<?sYkv!QLWx-sqUqzfFY
z;dRzX+Sc}{KWS#BeBmsA-1doYnp)+kxKhdTpXQ0+7`uY`a-;Q>+kuR=kzkz8-CYLy
z`EXWcv4-iIx|%V0cc-g9FEq5ZFz=v#-Ri7@jEOfL#q#|O?SDyEd?XsB-s#^q^)@jk
z2sligC&I*s&vsv~kK2xqjk<wx{~A1ACA}%&h!Nb$`|`H`Q{yb9obEXd`D}|M*bM~e
zuTHWjStyK6)-28Q5PlO+pA}91@|p@Ws<hFI+b40GShqNo?a|wx-i~{zMi+<gbafk#
zGJWv$5%j0AXhRbT#eXtLTFS-g*GGqP;Fm+$nr7mn&sO{(^cp>sc&d4B>MJas3A$ph
zhA2hDdmWvAm6tKUlj_VXDg>A%Ip<a2)_ko$zNv+p`KS8q%;@En-y_g<v9QQNee$e^
zIN@<|J0|6-#IpkzAf$f);Xg|+@ezr_)HH2#pNhAvLCU0m$k_twY4GaT%ZPuqh0)~8
zI-CC`jrp_SNR!9+Am(YfdvvUOR4vITJ6QHtaeipDRvEIMf==7oGY_XzWn-3U51zC2
z<>sZMKw|aET|Smy>Tj6>wWqs5)jb#BMsw#87k{&(O2eHvR;B%KFaRIr<-OPsZ$ed8
zth1{pMLA_{iQ`I~x>Qp@7B{6hJ-5TOhD!_Bq7Z-2QZkC8tiyR(Y35)Oztl0O!>_Ly
z*lJ2mRT5XLwaH3zQh3tUJ=!;;(J!grJ>2S-qmE*cm;ZeG6;M9vgFn%b`9VV>mS&GF
zVSNp+w}sm%Xq|FU<^u>RxNM+}(`|NarMqR;6y+YkUwiGj5xVn}aGJ|%Y=m&4|LV}?
z{DY{9nk~$9u-Mm(b9ijDwwqyw6RoB~%<Cn6>$0VHgNFa4bMl2cF@XS%*X7X7#8+05
z2UjHI2^!lP%ZXb|{Z?Dm&<8$>-4CLe*+L%#-f&(0+t8l8xYN@mE#~9Jc9WnBhXhA%
zzWQnNx?ZX|(Vw}?%=nlUYt0|0vM6E|uPw?*_42_E7v4S>Owy=HjabP)$>l9#7bu??
zh(0{%^MCNEfFjbPWjEw1CqjZ*k9xGc5&09@((|*FTq=8<_c&4VU7#`5qJRwLS#C-S
zDqZL_UwdDSfaOg7m6mdMVNTKDm_n4i_A|)OT`M74*2^jq{VP8SY7CF@c}rxw3x|~c
zaW}k|$b-bDd#m9p+P|v{COFXd&gJ?qf3do8^73=#;@I!TdSjFL>M${}#ggiVvR!hr
zv%BYR+A;L%XG)ytA?u0i-nOnZv$H;|l_(JjnXXRPM-YdtxPa&J@#e})=&j4b5LUPM
z>B)h$v-Vfunjj~uC*U!ayy<PoPRNTtgnxw#Twb~+g;xJt+WGT-phibey4}P$174ii
zO;BWN7QY4ugqe2w&Zur248}(&>o>qg5F8}!=v0o7q8`RzxtRx+qO1AM-pLv_3UNOI
z2A9q)A%dQsZ`rc1&>&1^O_FdG6*VBG?M+~*;3tWU7cv@<cup)y65bX<#BBmkJutVY
zdxH%c5VEpS%?oj{xE!9eZ+~m+%d6|lkB_z<%r&$(c(`~F;NxJfTbY=kLJjWDUf0VP
z`v!<PDx1D#Cqf|zH|{-2RmPKx7eLkaeao`OlVQH|kMnpaN(-W3*|g<pb;`xU*+s(L
zgsPHOTkcYA-3<@cS%;!BH75MgM0IpXe+?J^Re6$`w5sFT9H}Q!u}i-#@lEqbI^I$^
zc^8QL;Q3uIWO)GS8X3shTQC2x`vWLnxt$+#x-OR&g^q#c2YO9T@30l>CF*E*u{inJ
zdj}H}mwgOdyK>KM|9o<N0a3Wl5&9IqWLnG3Ll@710-X{*PZsci5BJ}AA^aB9@8{s8
zqvs3mHAVQ{le-kKvM2D(>v)+<uPz{N(C>8PzP5iy>LGN~bC4<Se$w!k%D5CP7T$_+
znYn+O^#9~ZiN-{CZPvzf?|zwgX&_>k%*riFOUs~&mR!^~1qK~32jajxr7ix&S`ggi
z>0W)E#%$=ycmY4wsh!%aAYg#NTt(NvFG^i)IA<hY3pJ+Q&RK^(`hn5?gn=TMzD|D5
z8y$$%CLN1&RDwVYww~{2c%#}PZQs^JkT@-}o}Q*r%Gn;P^I^^0qFz?87=}x>X)SKK
z9zRBIMnPJw5NUy(!>_k4l==6@e#$Y9oBXCQuUU9vOi;aS@L!5lP!CJYE;v~ZnyWC#
z|6AKoP*s*73199F!XNvcrIn`+)}%vste78j=JXf2{fsmoQAs>&RXfEA3zE{bc}Kxr
zc%cS%6Dd|oRvbBnNjGYnZ!XtIMmuzCsmLgU)6*UbFQ~J#8#{Yj*b2pkdoOXZdbpgb
zy@v+^>Lj25`93MnsHG*-^vql(O;wjW%~B1L6X%LYkQjTJ)pz_bMo)}n=d*VotKPe$
z5m98Wx^rnGe9|Csi%Xh*dlYnk*%?BlfG&xHZRGT<G)5{jSJSuC!mWYZ4MDK^6}$Fi
zxeP@eal%Z4kHm2FRa{N$b8dQ;s)@-l__z!!tAJfX?c`}kNF9H`u)Kn-@aH^@yFZML
z5=s@}*t3ZK?{NQ}69CHC0r%*SQjB~He>~8LRc=n}|JG~R%3qz8nmb43bvIWSWIdM0
zrv0z?(Hy0G(sYFp-+|qgU{f{aiBHbi_9*>kUjtZ3ctb+Qhezki4UnLT>B(bwlSP;c
zv(vb=$(cB)#!HVPl8xZNWjd4(C;`-r%i>WHXUw&~a+OgWonHeTO_$5<#6nYFauWqc
zu$#{9NT-pu00V{cpSr|47oIb#@pK{qx7C#krZpOFdzz2)pO*+wks&aeuJ`pV4Z?r`
zq6#~>HFxO&6e4wW>_|R03J(=Dy&D}FIbVsH6zJ6j<h`jnvvIDn?Db7^hZ-Fda<N5i
zHC3^dn@4>rN=gyLjS6%RAfhmrrMAT1s11RX`Tt%ETyPd}q#1&d_$S66cOUo+t~*Az
zZq3)`d;iWDA7+$zT{-$=Up--W(CJlDF(l@>#(_k|^^$mPZf{~QVef}qV{|JA7v0gt
zgop0O(Q1d*l|gfj4rgIDaPpJ+_VWqCH$bmw*UtNvjcLZ^EvW4STNi-@mNJxBuHMSV
zLhbHvmyCM$t>)jhuAjKwYC@mGWAxXFhhmx+hStkBH>bL~F0)&9V8ZINx9pdf)HG3A
z?F**HtDHPzcMO)Wm61^T;NnX?un0q+5<^zD9HpOs=+KPa#9y}%pY>q4dy<-$C3kBJ
zIw9#73V|<L0{xY+BTKvwmc?C4+^06-U9Q5sg7qESwH3po)xDQes%!*ay0Ro@Y*Cku
z`G>qKz|MD3J^7+6_2#xcwTcKS@F6&nOuC7Eo|BV3+k{o!ZB=b_n>+dAiR8+V8KR`P
zbiAA2KmjWax;w593|yBBQ@yy^ry{GO`~S@mHu}4>mD{xoI43i+54=gLcqkmMKt{1U
z5U-XueYRu_ZDHSmm0eD+nm$|-;P8MXA*!px7=!7nMA^x*%}LNm7ZE$>i4*`VvB0kB
z)H+(QskbV9woqa&BE%dhLlIfSi@<~dn>fw#B>v|SMyIA;3>dy1D!pt>^SYurzZj0A
zqbmMB*GRvAl9_GhX);R%@E^o{@`Hm)HpdDg075xn@X<Y~E*)@QQ6Z{Q%nas)b%{VC
zxoAj`0zvxoAEo!Wn-*k^d3)dUI}Ed66Ku}OSU_yBi1THADh8!JTKa;u0bH0Rad9<b
zS$<Oh)AmU?{rfvIbM9L~+5}UkSHh|1CYDJJ6^iN9-w%VkZ)SE3lgOgfM=d>z;wq^x
z5f*#ORDwU-`EgV)76d<ib9e30uXFrq^*nvQbMG}4LY&{dB4M5yFGPwW(hA<<6va%5
zZhpgU#DaxOz@V-w7AKYYakJVHIMlj&b8yK`#9XRO@$OjG9mA^|{ewS$CJN6fE~X8a
ztmaJu$bwGe+Z_+!Ij*bNn)p@xXS+sPhHgfdZf3<Hg|&{}@5=-K=G0*enl7oI+@YSH
z5;pX`_D23=qoZ6rlT~QPR`5zSDlr%JUR+vcuA+*@17fGHp{RWJn+6Awk&}R&trv#}
zqLAQzt#7>`6<Iv_@J4y6&lLs?#ELPDT%MA5u{j+H<8m?TD!a2T<=(N5dN-Ro{K-Pu
z-E00!PacXkVFZf)wf+#ABFlm_Q0wm;)QI)Ui<X&!Cc@m~aQ&cc9gg+KAq^AP4V!2@
znb#El_WY#EMl<nxaksu^82h#~tv0JNDr>fvNS*cz&%<RL%&se@jZKTQ?Kw>m-5tjk
zU+}o*1_3{B@6R&V@ye6cRSM#pqmPRtZV(kUeUm%i<z+7}1a|4;CjI<kf5$iBlExpG
z7IgJ8GZ?i>O}DaOtVwFLh~#<0#w6-}d+QlMhP)~BDr_V=AZP{ixBgCASH3)Hpt_A9
zmTs2)x00WFJ3Bq^r8G}6)%JJYUWYlR9r+W0>TIxDN{1ZfVuGD<44|C?<pjZ;oROx`
z^_Z87wC=+~xq<ZBH(O4c8r~y-q6vJz4I1iT1f>m6Wo~MPMrYAL#w*xBbkT70;O`QE
zPO^;*TRIniLn#lIrX4PO3Vmu`nfHj8VD&den*sD-u#Gq6Jcq#CO?rGUO1|zb7}_o$
z&(wwKmotAg80Ne1rilv8iq8(-0lm{SD$x55xG-!rd<U$6;@OS0(doHG!X)9<ytnYu
zT5*7C&$r_=;?|dgAt7~t1NkYWtkv91dOgPTO<&=g1I7;Er6CI1YpwvL1G!ReVdkLE
zL<Tnl8pK@s47>t4<3pn_0m29R9;vUSp>r!|)<l1T-r%33{lJd+vi78_B{^Au5F+Bk
zNaSzDXN|Qm5W3h5?U+(YZZ(8?y}}2nZr*uL-ApWBm2@iQ7DP9{d@LG|cZd2tw=k71
zvXh3!3Ig^LtQa+uRm^Nt?Deg@rcnNT@PslB9|mL*oT}M9d|i4dCHuS_@DZN|(P|~1
zR-ec!Q!hK)s@XHLSaR6`aRD`z$-qXIIJXuaji}kre!wK!Ch6m!ht2)e?fXn3zTj!L
z`=6_;#n3KcEB0PKh$5#CL$v<$8T~R8k$@GDrH$JAWpD)+!HM|G7ZQAYTIhpwsesq2
z@D(&4A0KbUv3p&!0w1b|67q;VpL^$eN#{Mt*p$pwp-&O1+hp%?K7auITUg+=TQ~%R
zg~Y_|Gh$9t6O$}BFYP%*{SGalf`*3H>w1d^B?)z&mUy95V&a!y-MG0n(C~G`+5#u-
z_A=N<J(Ix<eW8a{rDYDMgq#$~J(-zHwO(s_Qd*abVh%tHmfX??^o-}E*c8d_I8VMl
z$0LN&()XU>d)DYR*|+zOQm^icFvOS{8jdKTJ_+p1mV+f2^jO<L`8hQe(Y)~BQ$>`R
zrkmLDtiLyZk{KxjXXC9+lfzod5l#^|F#Xj!Hcxg6%_)dUNYEb6tW0r-Mi^Q(JV+$4
z0Ut+ASv$KRquS<*=$UjGFp&W1+V@T}l8=r@V@*q`MVfbJpOUMZ^m*htaJWM#&>urT
zrW)yC^9qj<&{hSW1H6^D&fC9q;XPvJ9C>N^!(O$)?V0+6m!{wo0Z9CkvZr2XQh*Mp
z%O(f~34oK^DUn=W#l}bHPWUw!7vw#H*b~U3q{eNg#L8Q83kryM?E5AZeSQ+|bam5G
zs|4i*eGDsllW=!V`FmViMAv38f{mi>5gd9tmT7|J+VEveJm2JGcM(2lLxh0%;^~2l
ze$5JcaOZcaOqO;ubCcF5%^tfG@F{>N$7{(6@=)s1JFzPZ(S;L))sshdZC2L<y({Za
zC{sdW-fJNyx?ox)^*g}vQHHFKD)r5Zc%J&|kBuq(hs3P5TZU6SD^gzg0j^}(`?of>
z4Qyv&q#k?x&WfLf)}B3_v#s<c56KrTLoWKAB2PHH1_ZN{GDv{NlOplmv+b23MK#-W
z=;nrbEdEwSiDzTJ`zUG4m5{Ykb6WM)xvwDA@rTL-`zpI?V?YE0wR@(?>e2ZF9FHTv
z{FyM>AMZ?1*-f!2E}?($s`<%U((sYmw$59pb&nBRa|6daV!zXg#yh&;Tm@Zajskg!
zr*YOcwj)dfUaeV(LDm#Lat=-f#b0kk5byXuE=Y}#vSE>%c?7#$I+kY=rJX4#(<`fb
zEOmzl*ghxz^YLTa*l6dYeAuK(CQ|a>mZ`_Wm=O!9jjPcZ(xa$LSUjWAU`sbw=25Xn
z@&3av6JN^@^R%2)$@Qzo(;L43{xh|#sPoiE?xi$2cGhLsqEetsP<LLnXJbhtb|R>p
zawab_$4oEj_w=k19zlqNC?b5l$o)#s9d8@fO;)0D@y){}-y5bR{)k`NHNSB4wt7vA
z_Z>HWsC3QlRG#Y{8@z`m=sxSY#IM<mltULJ$MbH`t2CMtkZpwLiz}>RWRtk<+WWki
zBdoi#?q2MmX2~bKHQDss`(%p|?mF=c!MjoKQ1R_v%Z&a_lm1G6T^$$LRiErmNKix~
zRh*G~zvp0L*DA9-IDaP)=u1MVTSy3xg%wcSjid;gv0nE!!3!KDthn}NgO%LA<zY2f
zuXB`%nSHlc7dh?!Qe9|E!`d9)+iwj!{M16NIv3r5NY?&n^D)$Pd##-QnTG#+t>0A3
zlXUkJ!qm*nN&bPVg_k^ua$qWK2gvos0(T=_EosrKSv6cpMMQ+S&;7ux1!!*rgn<ou
zrAM>r@k7{?RK!P@XY-juPsbbZZfm=<ogE7BpP7wAnOf&3fxIrGy=8zK9}>!KW<GH3
z5Zt6+M>NZW^zckYRgs;IiHODYG4%BzGJycm3)~rPU6BeS|KEOQZks*6PaXYaDDYX_
zb1I`(d2I4Efs-@3a;L+%w4!3=w9pE_VLIDo9R>z6od)kZtF?co>UNbuZ8KgPI!fFY
zA8!cwfEKz}?)|lQ62G+MyI$OZv-w@FqQ28;>?{fSpNVgsC$!bi99?$jt31pns2=&u
zF--_i{YHj}+S`B|clY{gpsxuHjF=LJd!^gQ3NM`wd&F+vcma-ZaM{gdq(_d*b(byN
z)`6glcRT&3zrrUu-xK>H6k%5<=~J(gd3khE<t1o~<2$F`xLtl=2<uN74&>JaUBJ5X
zGlB_PTnI2aLM7%tI{k8VC?_#(A&Y!>4>qkO>X_z5zNlsG`Oq9e4HkXtomF#H<#t6y
zr62l}c(!=JsWb@}CL;DaZQGQ?>d<>5gX1P&0g%iSH6i2n&u%e6{%<c)H8|HFav5>z
zH1aAoHgm^Y;>XCjWglKtg1ILLD-}9-V&!T~;E5e|3630o+sYH%=UT%_6yPkM@13Ne
z+pK8JvVxRZ(4qC#i7Jdy;r+l$wv4v2Q|q;T%hnr%H;1Xl@niXZl;beK<V^2`93bJ3
zaYMf<SoN6fbYuzD1A8OJs~C3pc#z%EPlWhQ^U4}pqvx}Z&h1np1l0S?mnQ8hiPFNh
z21ylL;x6x*XEYI*SWS)M1bH;p9<)oy{ShWZ@Y3T`HSwPDsxLuwNEAMLDq5MjS=X0s
z#X<KxY8vb)Rhm*5v)130-!n-`K}X1TK)riJ^2$xg)LJ+`zk#dbj~F$1nIMHvWX$f1
z@Zjb08MOxlg?6>K+S8LXhnFIQTg3OMN<|A3@RAbefANZ%I)7+T=|-l1XSJcVW_<as
zYx6Lp6%Cg^e}y_?@oK2lY$pBm^^2~Ds;t=?^J`}QBXD^gkMMdT@4GJhQs(m>{3xkR
zl5i^W?B@{g&iu|ry&tXhM&V|>7M4k77K<Ux+jSea>Ig|P!;*}R@5rKvpTo2tkN}7P
z1_yz2ITk2WWo;6{@GX;v#RU6C<f$?pz#b0yi7l)Qn}7qlTC^$it8$Fl?@I^gK+0y3
z@R$LP89&YeYVXM0{WreU*wT0_zgG@pWqh+%loj=Ivx+XoW(O-9f*RYYZ!s;mIC+WW
ziQarsTVwura3MNOd92B}ZC?z)a6~-S_zAuBF9@|2Rj&XKSA%Zd%7t~&FWS#CUC3c@
zt;w$Zt>tQ;&COJ8pDvb;PELy}!PS|)L?~=HIi-a3pxR3toq%rd=ah!KZC~Bo)5a>b
z-8Ty-bTqd_&Y);I!~v-RGa(WcPP_tW+9u><D>>PSwO35|j{kss!Ylg6?v81Cex{n5
z;?e#jt+X;98f7;Q_2h=8uYs;7C{jTe_mTT#0^WvBSfH{o?RoWNhB0=%WZ&)}JQysL
zO~mV!-%ynvo@9D{VQ%GsXyxDqQBf6no^Pu*Dd@8+FQ~fD1^@VYo9cb|PCh_puGRvQ
z?4@ztKaL`iPPOBh&-gKu9cTgGDj*@nYS7+&%97ufecWhqLPnft{PG|{8|`70>(v_u
zD-&!izdgLtAS8~`X8{)l28;->Am*Ka#(I%(%+ei$b1C7h8C&aHQLXTnrkNNvP9iG$
zW1TEZ?@cLGXsj)s6)!}F!ss4icI_gd&BmevZgpYvk}?(MQ{SN($=aagG;Nd+@vHAk
zmzW--@2!JPiK<LqTV3&2Vg52_&pLWD7!v)oEc0LZ<<^F9BY{nE+CH3lobkS@ga^$>
z=x*I7Bdv1ZvE;>Lu@~yQPkl*Pj2aXX>kQ*k>;U*O>5zkarMD{W*5B;q%gvT|)-PW^
zg&vEQTB##>dpmO9<Xh8$f}=sVu(-XPlk96lMYsxutYlv!aYBzFa{#(X`mTT5Wjv#v
z3Aha%FAIB*@hkeMsNf=WX)^GXwtTXR&U)G($z19njUR$>DF=2_TIHLbpN57%R}1P5
z!ClE5AJ&=D!fm58t8gfJ^r?LNZ~6A+!K|NOMYa;ZkOMvveUM*d#<{&0FWC}iul-b$
zYBslS8*Qe!#{)>S7n|z2#iVj+DC2)1aGve-oCEEae+FTYIux3e#K2$R?UaoRwDgxc
z^qja14CNFdx5iEM`MR|-?-aw2SE~M<qd!Ou5W2IYxIO=w;2nld(98Sy2k+uMZZqDw
zB)`yh-5+d_u4DJaS0+M|sq`Y6<Z|8D!qV~^(iK~h;l1A8>(QO6<5JV?@zopZIA)Rl
zMl(mm5Ab)zuLB&XH$v$jkPPYk$AW>XQJx9t(T^wBH<cswgRmw;;N8Cd7%J-U3F~j&
z>2P@L)bEkDkN*J$2E;XJKF<>*`{PV7FoSmW9M5-Z)#Aagw@nwy-~RKCsk69MX%E$l
z5Aie0CNo};YI16#2;T$uDo!;*(OflR;d}Z1rLehq1oHFuhFq_YKksJ|{BKLaC0cl6
z4GO}2F#`U#Mnm4lw^b>}OLB?;iF^1|x@i<6zi0vdh>_&symYgCkOs+xMol0&242(`
z5yxhZw{2V-4v7*NNB~QC{~OooY4W$Qi)XzKR(-<Gj~_t1jqi8hQ=<W6C6UH|+ObDh
zKnFOUZUkTkd&ttC88E%e(TWwQ073jifbIFCHcrYies$;*(*2(geqU;ReQ8d0Id~Nm
zEb5K}TnCr;Awf*{)o-tA*Ok@$AIE4tWb}Nrm%F6Asl<xTdf_FXPcvRLn2*Tww@voe
z_1n&Roua^)Q-IHDpnG%wuKv;73EgYn1v8wUNtN-7W<)te)AqkTDrVm^<rIcYiKiio
zy^<V}AM^eCkc>v*$7fOGdoCjQXkTwdC@IJq)0C(Iy-!TcV(5I~*{Y1iQmxyCZ)6tz
zvB$^6*2|ReWpCX|+nM!0pf67x(U~Q1SMw4+dcDwj;-W=M&L*NPqN}Tm)fg-O@{WKj
zSzl$<*owcvP9h5gW!VY@)V(@Vp~ARw=LB?SWT-AoZyR&nz%U090^DIvUT-k?|G$(*
z<ZLXAfKX>|k?CLNRLtNV1cp0+PaRTwr$Z6xwC}KmxsCwAfNGAG*hqmMaNR(F&mU*D
zf@L#}g8)g7?Ig06#()we&_PjtQ9qZ4+Rx9`gHyYz9N(&ncxSftZelV42z|k6<F!5x
z1Prhe{c`|ZpsK2QPskIO@B(2}2~7Qx#$a@o0nRR9aLLBE?3cDH(B!!lu0mtAw=`20
z3EP!P3~t+3tn6#kphKMY3|%9V9G8m1YPR7azJs9S$2zJC+~lN1Eu0z&;yR&m9B%tS
z5}QX8)JTNtY9loNgpFKHHZi5NR!dfF1+gqI$2@%G5<-BWccMZnMWzFimR)oN+Bf(@
zX^6g|t<c05L~z3{f3Eh$tNgqvcnvRgwy{a86;3;|Z0?S`V&ad})i~^o)D^KAkBsDV
z?0RxZ*e_gqv5+?0(O-WSelzceiw5<-9A=nzKW_e&R7QykJiU?Yw+dQ{<d}g0s+>CB
zvM9(9O}<rgzZlna8~~%y6c<c7?dz<aCI!QI<k6D-0PY0=0U4ir67Lr5kMPp}toG`>
z6-+N7PRC8Hrh(sLEPh~IVzPqOc_ykaQD#?l4}PaM`U^UZ@<~m)T6!nl-(L7M3x|s8
z^!HF(TW|zP(-w>JCGi){0}MIv8PnwFJo*Imx8TZQ%Mr5I>#q&tq~jAheGkjePtOdi
zyZOOnP&;MWOH>N$n93O}k9vUIMr}@;bpQ!|M?Kj~BsTnmoyc1nN%+S;;Qk`k6R3l{
zr|k5SrQe!?qBP->dSqtzV{4Y2guEa_C;IHr=H~pTmqoGbxr$UnLqQ)I!p?~Jrdlwb
z#I)1qQe`V;P`F!aBt13&G*58#6#&Dmp@}0(3M&w95$(F{t*f6tt900T>(Hk}RO~&|
z(h@`MBO%9Baj-LEq+zJ^G+aYV?OqSGG*LZ=*e08JLJMV>8KdFz&5n!}OZP7T2}6|K
z%2ddD(oI|J^cBc5yaha#kkdDZe=9zH_hyV7#-q3e>0wy;m2|o#e`e<9X;apwLU;m>
zVcKz9G(4t@wnE(Gl({Rk<Qa#5=QCoo2=C8hH?&=LNuxnN-44%5(<>)+ib$Ke+Ue1{
zgqnuC*e7McLT_cc1^)8Bu0HL`k4AOB_1<;nLi@~IHXS*+S(V<Y2BgJ0bvGCNUlhm|
z_s=n(ngDX~ZBi)oL4du)&O9Z&F*+Ld+x-6P`&CI`VZrW(;mhr<y!6adUZ&pBKSQH`
zl*9u0a@2p-ln_C@o~IuL!(M}&u9qT-z@`O8`YqU?9y1X;t?v|ZtQc9*1ORSb8x+tL
z057~KcL8?$k>5qYz@TRO2nbz?+Z!xRIBFldS>{mlOl!yDZ7eUxpi96^ASWl<FR!LV
zufMM`BwAg~utf8zly#P;b|FD2Ny5qSR|KHw2e!$CbX9j}Z}7CTW`_9BD}C;eu1-uy
z3}UX+H&2ly>!hc9lQ(&u$_McCc&95h;0qlRo86+nWrmV!N7|N}*|xmDc_<w;<lr#3
z!Pt}$(40T4W@6w7Bfk0lAKLH$a*(tn_lI*88{JtT`|^3<1p*<V_e;@Dcat8DN3|x#
z%ok^DuuM{o`Mf^9baxjr>eXP|)M7HBRaxoLD&u8hhY($Kz0^D6yQLY>{c+qxSJ2a&
zG#hX=lc+<yvvxl}pFAgC%Oy~JYP)x}e^9nyl-(c84BIZu<RXXt#AC5PO<zBH`t&(T
zq<>hl?9bZwAYRb9G8)CDxVrjS@_aHyFuAF!@SSwOUa28plyD-SgRrcPO;1Dnt2nNk
zzruX8iSlAPfD?iU;h0_B_{+&%**}MLny@0H!*^!;c3L)`-DzK~ozgb}kx+kpmG$YD
zdFR^$xT#g3|0k=H0f?*xF^HG$+~BzfKfOIizdRC7Ts-@Y=%l%Tb`7<Tdm8R@7|hoG
z4W$2OjPtf;7QEFi0VD}=>Kb@snT_dRKNp#LD{9g@#IJ9eqca``cYQmq*b-59)Z*db
zfn1Yf!PiPw6C`oHMg;R22$zTRct36n&Sn(%sF^z6dof~NsmkU=_BxlUWTkHKk~5yW
zc<Djy6kY{^t%(!8uZ*H<(Vn_pM)9co8&(gXgY;swB^O(blXg*JJ~U^giJ{y-ax_1s
ziq9%P*w<!6cgub7Dg3juw?Uk5U}Jn9hH|Ps%XUy69)rAKy=fWdKDSS!8%QmI`)BGN
zzPX1UqYLMheCzqS#gWdXqi3nL8XJ!I>Nz*G&4YQLriLoyeIMuQAC~xM;bZY^KvDh@
z!Bm}ZuOR~D->qG1=);>#O!@66vppvClhdm)E6a9IAAiG9>k8V#2`ok>;v<}yJKHZ|
z*+KO5*5yQmrrc_G1sv0I;Ea)x33O<PrF6VtzVXBE$R9*^wpkG|v9Uk132`#MV9dVB
z`I8Shv_FXp0jk!SOVY*vNoa%cPo+i7a6#zC<9=DmSXS}S&Sx=WJbS*=VOnBcKu;pS
zYq7S`wQ%T%vRmgh?hWk7Eajvj;!aM^>#wF>K%t2N844Y=F?}#;xMV0Q`?&2Km&fg<
z87c^^qUn!g%?a(Ub3D3dt^+GVMpl}NYV(_<wtUOY5tSd{w3jFz*)OK0sVn^^Qa|ic
z?M_%$EPVL=zIv*pOtxZSFADPUV`i2yt7<WA=_SCzjEYt#<aOGaN~CQ0jvdmS+>7~G
zOq8O<7Q7dX@LStu$w~4HIeL(&A=BXR)LOrz==O|NRL$Gnohy6hPXI4S7A^@?iqVo8
z|9fNDLQ>LI9^YqsQDNa&|20b_<o@=7z#~v6rpo8p?b#wb+wnU&jt^hO+)g<x{|g_k
zZ~}>>UtT#xYw%Q5Ia>-?ObLsz)6(+5j2k9-g(2iGW&vx;WzFxR;|_>qEo@BWvd865
z)|SojllL*8MSZe5&dC>nK$ZEo+CbD15eoH721e&^ub5IM`O2#*44JoJ#IxfMecg-&
zd3hAf_8)&)l>Y+x#ys-l0UflSjsF0{K(s|vR&@oos>0KDtGjU2t~2m3fmNM`3+p94
zqY~83mk2}&oV2vmY;FIT@#8evOeM!gWOf+3b8Ej8;hNCE6`O_SSf{F;&f*F)nV@yc
z{3gl1hY*oI`dw+<6LV|2Z^XQ^BounGGM!V6j9(<l+D@SRB$VBDiZOfFvS?cXbS`IA
z*(sFK!sGoSl^UC{E+znfLxxH;FmB#9hSUvyH~|F{7!&%KYQt0|nk!Lk#V(C;BDWj`
z3f+S$>R@;TQVI@^)S-c6s(8MlN`hPMXUl(v$w)vd(c7k9JtLAhjITj$4BZ2;f$JC#
z1%(aYD)=0SQ37SJI5icd3l0I3P}3`(x4ib3_1E(S+whFv9>|<<3s?XP)Zy{Z8P8`9
zFAY!rreV0bUk4kLBJ#1ZVL=+4W?iFz#uJ+CbUC5VidQ%oy0W~=F=3vR7gQP)#60*V
zWx?+1BM7aWy6AsHDWQ!Wj5RZd14S2TFh+I`VHg21O2XZ>*@@rINie&{>`2SN+}Ng`
zN(&6TK7DkCI*H@0DJxczmgfxiIB0!v&_(||lYHw`fyx+AjDYYSK@fyYguuRcway&M
zpBHw`XUm6!DryV@ny&H$&}d8JfECqsUJe>akL*uM$BD6<VT_hME@uN0)%ODyAdRVL
z!c##+wkEnck(Z_*lQ7|J{aWaa*&aXa{RaIh-%lIQnVsoU{JSFlg0;$<7eIIp9tR<Q
z29R_ef(>N!mk#|KZnVw}vE1d8BGFcRJM|`Kx#c~cMEd^>?NFg0Yt!^}^Z22*W;^Fr
zznR1WbvvHFDZ{Rwe}LqElFoOEn?aBJ{y;{<{B^+J?PqK+PLRM6aSUSt00{ER^?3h`
z4atU5`>At|K9M(pgx;L4ZpN90z1W~ouk&07VCLB@(4TVI)K}5bQr13eUcQ*U`WDe?
zY_XxqO<@}xQ=DIr=S`Hn{BKTCteu~-DkbHYhFJTprVdHCnY(ypQSMc(EDsmKF32yf
z&DsSa>fmQ7<&wvl?BU?XD=;x9;36`xUIFq4hRDtt&)S<BBRdO=nskZw+%j*Aa(@<6
zM#aIByB#<oKhG+O4>s7sxL!I=1`agv*F9QII&6);vr}##c+;|VcqoN}xb{2r2K%-)
zNb(8(+ae&^HZ0+!<>?235TSwi;Y8>|c7K0d#7)+KP8ZBZuRK2DHJ|#DBz%4Mh7yRm
zZ9$=z{PV{qUZ^OEO)Lp!;Q0fCbP%J$Rk%hP)ddRdbkWa(9ZS#fvhMi?cyij#-<nr|
z^}=N~<Wc_7R}w{h9NW|HD|vZaEr##5{{Pd(cU@#sVt!fh$t#?6>K$K$0J)<N$1o>T
zU2Syp$}@pGWejIUA@KCf^#b8|&-OI|ANS6bm+NG48S?4Y6KG4F9`u_(T8y`jv~jTU
z9fhGZA$;<!>6~j~7yVghXt^|<KOYPBAaiyR2bQH~k2_As<?_awwQ6F(fnYLN{^bpU
zu+A{CqwKJxeNYr^o$4ar&cNlu%185>G^}i+XnWJ{G>b!70=Kq53=}@eFLq-p<IgiR
z_<7Xw*y)sIoRBK1tM3qC;NFpF@~5?5b15%kL_DXTMsgwKv^;MjG+4c5r3R<nac5nY
zvXAuiGG{jx_RXuhwOK?reloFKHoSwEOGnCThT)xd<uV{$>bd)pA51S5WcR8+O!NVE
z<RDeJTsHOFIoubKG8Cg|4HxVn*KEV}rQQ97rDgqTmf-|W3_pXI6NKMXd1HcZqc-YY
zAyOJZNjQPJe!xu7GSiJrIEOxoY=u+vmFH@RRHjn6<c|pDM^Msfn=3YGH0)nIV2H^s
zDw?8d$f;Hl(S<84^drQjy1UreM(|JW<pfw*s(5%diKrh|e`dC3nzW-@=NIK>4x59-
z%73%duGpB^R+c#|xW{8Lbky{KJDjdSrGcOz!m-EC!ZyOhG1v|g22%Gn7al_eA#4_`
zAmFs^J`E8BA4h$8Ai^JFB~r_+Wdrt3WyE+3H3dOS4@bng^Fh50kx*Yzl2_|h7Lt-6
zvW)j6Cl?*&pnG_~vmt<%oABcXVieg5Qwa>Q`}V_w|JE$)Rwc`8ni`Mq|J5bx!t3<=
zfCrM8zWN7G;Q1emrBWrLL)+S;Yy_w=VPf~c<p1lY9P2K8xS&UR)<^~Z+r<`uM}dGl
zj=G85;3{D1XV*pgpKpQVuxGF3t|q;gm1!n6?{z$j-8V1Mx3-K0UtHC=&e~pVjRsRp
zXyJjM|8FxRp$KG7z>mGwsJf%+o0SCDMKFJ;ZJATSt090Pk*lJm*NX&s(PQyGd+g;8
zcpO74Wq{cf0DGJeC&cJau#_7e$@euC&fkvTg7|d=K_LTs6V;HQprLWS2RcOXPN)&E
z<{D!>f%<fURu3Oe#peMm_b#9F2H1>LvBbb>6@-4l-civBu@O#tox!j5)k{P_p7(?x
zQWo>dN~)@>4vi_;#AXBH0Fj#&z&6;wv!J68k=I6q$doLA=EsYYLBKt_$CT;Bi4}Se
zg0Jx`X|&IhYFv*H62)2AhHR)y3ew#BOQa=8Y%@$(HDlMyVxK}_?l9?bJrvHu0ocAy
zFzYBa=3!7Ta(><x2;S+Ur*kT)ny`O8q@Yg=+E_z{5+Dw%W!L6<>uW{LAgFbKqt!A`
z3Prt>o~o0PhJ$5@Jo<WT-wlP$1bn9J46vnM_Mk~XDXD+c6sX8Bp8P^WzVD08ZFW`U
z7^G))-Zglgw5&RHYiYSI#gn_hMTsPO#hOiCfVDL*_~cjYQ<bOWY@}!q2xSD~XTV4;
znh&I>Db!#$>lxrDJR@pqS$YPfmO1H}V~ngHh63iG57*oD7{9?7Muew)8iXc_soFI2
z%Ij9^swp;@w*`Q_X0+rQIY)@g?baCxpcz@jpQAqG!m#IK$wr6Z|3_EAmK`L!+Rnpc
zt#gJeUk*S_<MdfF`ClsSvqYwmVJ#-RpTM~c4j39wpMthTnnH(i+t-uL?Pm~xpOFBH
zzJ>t%ZImF@gHK-;54$$Cz~=m4uZKAns5G@*l3z$DDyc=qDVrPS_`t;XaW?<03g3)G
z2)Jw??G20%rVsyZ%@3093J?X623EVwJmaV!wYYG$ddcbe;^}uqW%<OKb*zEmzKZ6}
zlM@49gl6w=0rkuuXJo)?Skxd64*oAUKsjk4aAUcJvHfzyqq~ytkY2Cu#cbI;u7k%N
zF-1RoNe5b6?6wzIF_~M3PlKkAPA@HPKSHrrM|*W=#2^Cq6a}^JZlAiuaC`V6IQU0J
zje4LGB-fdfL(hp>Za`?X15Q!Zvu&sSj*VVz7c|_{bWf2r20gSVge2&Xo1z^SHVlt=
znNaQ}C{C=SV4}v3Ee`CdASMT7e3i3}0?;SSHmVAws($f6D2oSyul@g}^0$m#_^$^3
ze@ftqAy6*<pZfV~^_IWD9tuYJi97T%A&wsprQ>Dks2GfxUVWbH3!*ax&@Ir2D+dm#
z>Tmrxz^j_wVG5vj@a|xzKO_3Od2aZpjQq@^u@rk0AEC06w-nBY7r`owIMeXnLPv&Q
zzD7Krq{$GV4?qEKKL_U8SB~y%{lHRnQ<bCf5PZQErfp_x>`rQJw$yIY3NsIyoTk0?
zO5OYWPN27@i`xa;^}Soss^cSlS8kaqG}@dlQs7`bk_caUHokA(Y#nqVF4Sx49iGiq
zmV7U6dRlPN4eP%3I{)5CtA591KlKG4Ck)|t&Ow<d$spKF!5T-eTO$<Sizi^((cIqe
z7naCx)K%^40LC;QEqhuf!_xX)b})X#B|2Pe?vMwYT3A^?f^xQvsi{eMc|p-x;-DsJ
zoZE%q4~IQSvM5e$Y*9m{huhn{Q0#g0{$d0(b}*Oy^#>k&>2S$<>y<We+;{V+LHHfo
zgj!w0`4;!Mc*W6`Q@eQ5*-=uXqYNiEiJ=nMf0&&Kxz+VFWz&_cEV*>%@XJC})W%0g
z>~XFepXs?s4yxQ$#ptWb5&}b_n&FE(t#}x3gz~{Vu|QceymiYi<a3a8K&iKGX*Ke(
zx|iaqSep7qje~c7m<=Fd4+Q~EQ_<(7)h3ArV-!d@ygKuBA9!a#`UA#|5W<<lsG-OE
zA8Uyd%rlB_&fV^5F9*Xx;2!<Aw{AJO>(##2duu=Oj~{>yExb=IZ9c<-8j6}uCzpxf
z`npx~AP71+^@3I#c3<KH2;3Ra-T?ZO9mM*u<ZqtGWJSu7uc5EbPi_si6`-7)f_Nsg
zT;MvQrmu6lnkz$&IX-cm)g@FOW(G%B0&r&*jLfEx&#!AgJc7!P9B1KmQN?$;K8Y1R
ziM@%j{<6rkxbR5Rc<DSxk^Tv7oJ=UE%gUPDFkT}*=D(w=z86@4lo15p++~kvb!X+2
znQLdxXF}F0##<~~L{(E!R*Z?ViHw2T3!oq%bRxIz_TD0&CVc1`Xh_9@oCd%w+Adoo
z6KrNvI!uFF40Bb)DIx<>IRZpKE0AFZZm`n4*n<_+3+)Vq-f#?KR4S&$2SucZO!g38
za>#&0OdHPrd<_x{cG@q%d)9fR2##99B^vtbWl=->Cyp8=8=pda!)r>CB1oPI6oN+p
zs>|{8281h$$UoVH;V&A4E*8MW_v+l_oarebP&e~f)PHH@17g^jaF5Tw#z6np-;2N*
zJX}-QF+ZYyL?b|vx$h0F1v93nG@^e*ck91o+_t7`H3YlrNpOoggg#^Py+YZ;D*N;b
zEs>6n2I12=PA3RhZ~6P*6K__VU*Wd#UQ*)LCa24ufZO@GrkIH;Xc-j}kF*>#llJN6
z=HyH@+-ZDB2@9!c9d}aV)wPBh=Uh|LdMLE?RK`D+v#KJzrmdplDbC?9`ePccJ_bQi
z!eGsJKi?*Y0$L+Zc*1a^)H=%2l&DO_-3P-K1J~Qy{uf(s0hLA6whKQZf`S5)0s;z1
zhtgdlAl)4j(%n5EB_JSO(%s!9Al=<1-Q9IIzVCPb|EzP?n#EEUYtKB-?Adeg>%Kx`
zNu}l!u>YPFq`%VUDiH<ry(ltPqo@*3dvop2+Mn5Bn9&M_Q}*)2k$CtUz!_r=C-M=W
z8G*y*Rf8+!`CTYOmSSaVx_zXPVS@>D6G4Z9E1>|tVayQgpVi;q65|9&i~i44E`HMC
zLQR#&VRxBw!_qP}J~`HZ(!U%XTl0?Ox|}@xvz_`~Gou5?1>2<RtKUs#{Or-@yhYiC
zX|kP#XPNVKiZHbJn8QVtTvuFr@<4mKC@7RQaRnP>or!sx=NI9wm<=o;p(F(D%?*u+
z6uHAL<IlC^6>Y8@j)Nt7fm0L_A@)-kT*}3`7fy}OD(K^A3HP=2kB;&o!&Y$7uWZj4
z24y;sK%iDO7C=KYGoAUhOI&AzBFe>G)Tre!KEgVC=*!=;KJxfA3kPW95-%V-$K&%G
z-vR^*OzSj3ISdk*<Jn?q?G^s9b4=VT^iULm|Jh(iMhPiPE6VPSzq=4$`3kgD1vbS2
z*2`0}cm=Pf-vRG_APjHqkP^JBaO+cYkmdT74|Lfd@-4{!F6_PK0d5)?Hfhz96T+cD
z5Cxh!_NV>fTKYernEz~YLB?l6&MGjo9v*XEo=I{%cQ;KHr?M&jQ1*T(nta~vM&J#m
zGuzBX^-Pu9c?{Bz|C@a!u05C)ym>sabZnaWO`eKikmP#~AEL)k*!frdGpD+#7tfH5
zF#lWv+E20horL7qWd)8W&aWYMn^ur1`0x1vp_D1Urzq0NBbw=J^FeN3wey#kz9h!P
z#fK>vniLY9GpKzIH8Lw)u)OrMGJ1|+_V=eGxbYKv?P_@20I`1L5rA&;B|GG19rLeG
zMQmbHox~@Fxv>~Fdsp9(_{d;iQC0hwFBgIS9k-@U@VlTSRd@o_ghh=l=4@{X^qGlG
zz4h*_+JZ@ZPdHw{O#4nBb8RDTrw$cYff%}!s%_k9qvP?pyGBj0HwcW%ce<q7wO-*j
zp|%l29%<{Du$U`P&8^k%^W9C+;QZOOKQ2Bz-QC+e>NvHJuT-F{te`LgZT!)k<Ge5Z
z;yf@IJmRj(WeQmm@dC*^`2g*Wox)B-Anc1_c67AX$>NY4J~c9P1#4y?Ay@Lm$&^?&
zX16c1Se$w1ARj%|mHSbiEeQ!XOW>yz>Glx9qnTV<Azx<=&L?hm27;erZzrZ}UI?!O
zP$D;HIh%sAn}i*_Cctr|Ny{rm)W3R&Yg^0Jdtw1OiiB2t*^(yIO8%YPL&8rby5lqA
zYvly;Jjp_o&6GJlHI8RL(op?e{{N@l?1%ji@rNfq<Be8^mf@GCLB7AI!&7Oio0@bi
z;5dTteR=T;;b70YV)+~CF4)0_=wE=)2Sa%f<yzcG3Gd&h!v-nia=V2#<9tV#v*Avl
z>9n{r27K{9I)G+h#xfGmRvjK^d~3Q(3PVT`y6LjuF$B&$UGIlS28X0`a#vv<6*cZc
zk|pwFk3D8v7*a%ZjB;n*-v{K@rVi)QdC~!rMQ(RKA3diO`7sBI*4=ijE4AKhBhb5+
z#?QZX3(YHo8l<ExbWQg2cV<C-@<5XDw_Us7ZOh1r3ifPl)|L#eR2!#<){8)ALHuIj
zkUmVp?B*92=gf@Cz%Ld;7{bYJ2|%8QFx-b3tmhiHe<#H&8XD(5=95mA>Oi?`K>QJZ
zd>kO8Vz-3`km*Y}?e(9(Gx6~_jnSTofZ>-Q@_~u0AB6eoo#35X?C_%7HHDQ`FD$oI
zXIpCr<gtUOMkYi1p>ogXfnCY2e3u|bEN)M>b)(&H8QB{(iR{vuZE+p6mj}=NPf8G)
z-qdEl+BOLjNlzUXMHRMTbzy{o;5fwoSs5h-%z!_wE{IIE8WaWDHMZC6S`_6hV~|Z5
ztDKC^BR*3dAyWZge^2a^A5DHi#A0uc+A)w~cl0e3Rb_1MokU&eIbFm)5^7bSj}~aY
zO%!s*W8HgadD)`*mQWBy5GOLdyuPlai0t{^q^%!`1y@ets<BBnT1q&YmT*20<o!Rn
zOF@S;(3_LkXFkM)NekuY!U}dT<oK5!8@$cQ&CMLyq`}6Re<dyo4DK^hQqCw*)`!Q`
zmdX0uE^nf80~iu#i<F!d`Ss1Ufe-Az1i$;G)|W74e3N0r@`3x-F5$gs?Q~#xEyG79
zCP{Bu%#b>gO+(h&JWavFUKgGuH$wEWd=!fGJ4JDf3?+*Gl@O-DRvcdxhlCHKz+`yo
zY&iKTBRhY~`oxA%YeU~c-@@oAO#Df0N}-UkVv1+5vyl1cYkT{kBl2+7z{U4i8-EnD
zF&PvE!FI+>IBR6XR(0eg1pSS)f`U;T0MB@203cntJIm|HXYs?_b(co`lvez-1bY3j
z-M5#yq{#0(d7b~G_DPN6xMk_Fn7<(7M>E)a=27!nS6Nj}yB8hJ-G<T*TIfF+thfEl
z<dR2bcO?9Ip9tL&r2CZgS3e>cm7nBlEN;d=WwaJ!I2KKp&8Z2MOuGRd>w-F;Rld?5
z770=T7L<yr%*UI&oJ>K}mM#Pcf(bvpO=_rn9`bh!RD9#ydwY8VKc4<fZq`7~V9S6j
z9~CnSjD$1u6tHp-utX(gdrKIGcCNRqGO^#``|i)vX?M$ca$c4)MhE@9Sv`aPc^5i?
z{hV(=h<}u;GD5DS@PIKtegFHB6e1-0MBp%OmLWs7D|uvbN^oKK>uMx4SA8!+8p?9$
zZC&%NEjcILD}YpXEJVD}u))77&`y%y={TGVuX4?oq2@+kr?MjUk&n2sTw^fV%&7Fb
ztbnnKg2qRT`}PK5|IH__?ZvXRYSdHa1OL7lkP8Ioy=7HVQz4yW2j1|03gE5$^zCmI
z`B9W#jn81FWOD;^<Gs+vWm(}Fl5O43pQXD8VEg*T!f5Bq+;CB;Kl!Zv1yy+*8Mdk&
zdQEslc!Ubt+WvDGCQ{dQ@0+UZ(%TD6*c-GjU%byF)iw>5!_paQ{5|dUiaBpTXZ_8;
zIm*AW{%xf5{~0}!rWJ`3M}~eTB|d!7ubV1Q^_Ag?4~0OBSTHR7$A5z+(a3P!FtQ_9
z-Cx1OJxarW0E`~c1GFzF(QioLsM#Cr1yVK!L7LcUP?4;NjMda(jE!>azd!pA{<NVr
zG&sp*au=2wR;om~GVhiC1i7iBTQEAY6b=VUS--Lw>Hn$OI_F9f?OIizTPxJS#oJ`~
zd$3C}m>-Z(7Lnm|eX{yB_jvV6BjpY*D36bi0vEe}Mh!G7Z*7f`(^#*>ovN)^vvYAS
ze(g<X7i&}tRtS2yM&OG1z_^+BZn~SV(K+>XD&tkIy7F^Dm2JFo_qi${f-c>l{$9$S
zXxbXL{Uv(pJ9rOowR401YwOViPeh0NPib<(!SP+o$gnTd`94*9q=g!%tsOR5W|Q?M
z=Z(5s0+>i`!Zz4Sii*(jDqOzV!#9(%N1}`MFvI4m%+^!dk_Hmr+rN5{464_=YS2Vw
z&#Rtn?!5I%g)Q#gt{|d9a*q}lL&HBJe3D3fj}BA3J*x177F^E5f4$!A*ZNUseU@Al
z!U>CskBx{_$nDXp)>CoTKWiJgW;ewiXZg>K_(x7~-gR{42c=!KU*MJ!c>CiLNlG_u
zZ|x*IFRgrW;l4w8U>=ZX=_fY5%2Jg~lSM`nOP9rkLDhBaIoJqi2Syrq!E=7=y)mYS
z$$l08$M*-%5}1>fC8sHqai#DEZEXd+nr$l2{axtiTpV~f{?nH3;d;NO^IWY)a}5!D
zNkW*sq7?`&f+feP$*IjO?&xJvLF>FtA@_?wEYE#?vgMBz{O|U}cs+iIRCUHkMHDQ&
zHc^wYidCk$yt<CmazCc_8Q!dVa(gZGngc!l;=Ke_<lXInCSW^XT?rw&;Ja{c??YEX
z9XO+-qd^H=`<?zHTN1=Be(uMs9dZV)iLs}zOz{8B)MCU3u<L{@|7vynGRY196^~$w
zH2mp-O4XIH9TWte0Xem-x-5%z3k@M~S4yi`EsC6;j)S4uIBu86A{Qil!?jgi=sft8
z)N9-@mUWz!WuO<5z_i|7<Ard=rucw&3S_H270p05d6c4b_@-=fZvKRJUp_?|WTgH2
ziw8TfDfyk}F{lQzZheSDGZC`lq2jSwRg#alEIs(~oN>6e9Fd~USAt-s4ssq_!oyIo
zodGWraAi>+(A$lsV9^X)-uL{Z=rh8su;lo|mk-nItvCDsHuS}fo~eh!gXZ5H;nOyV
z{%KN?b8pBc)fzmRjWmnFTk>6d>rCcri>>);G)}zmCv}9ik8GhdMdW}=EFTO#RD>8^
zL=Z04`z_ah#(hAD>$!YnYpN)YMY@*vEW+pwyXiY8Wqy8`o^=n)Kn~^m-Q$HRiWZPz
z?NfRkPZ9YhoLbKs27$4DC(C@FjQDqX;D_b+Zn3Ff(N_XPLF2&@T=T!8zfB-~{)&_+
zeFT2RvV!zZiXyZd^S_J5zvtCaW>sK*D&QN+0@5&ZrLGBgm3JAI&#C~SX5x9QU?!TV
zUQq@`iXd6@tA7wCI0?X|H3uVe|DHj}w6S=|I}Iv&#>I(UO8wk$c0uwz1uA$#w)(8d
z{0H+t#9uaKZuka>5WDyUKeQYFUFV`(Z?jcZW$9_rYlg4j)A@^Z8W+~7E2OKkP4pj2
znq@rkVw~v@7b10w!<=aR*`-KladqQE{0#PfV^oP=^bKbCcR{?MZv|TrvpP=6i9|$K
z>hjn_JLX~Z-!NeZEN)JNfN)=PXE_O<pBAm-re&ETZ}Tt$IeN)eM}z#8qV8*?=#*eE
zPZ5x>1GFdS_GM7Y$GLjeC;_s8c#fU10q0#_Vez1o%;3$Cf-S5ZGV#rW0_sE5e$B>=
zJG;9RnQ?5gEiF_isowfryWRVxn;Ulm2X&M;uJHdX^k5fLDrj9JO_vw_{Tf$=$K1Sg
zoi#T~DbOb*Zj11EORI1)wKNxIVW1>z5~>^)apt&O7+yy9;_TS=&o<Ki!lPix<FBKm
zEY%#U=X;x3S7V*hO1Hp0&1x&HzHog$lp2$i_!(sKKtp|)nJ^p6dUy{1Kct~O-u2gZ
zk+wQwBA=p#941EXCPv57hT5zz#c<4x^haBJC~1D{HlMtV!^@B8<*LuV-(NYBECZ)v
zR*l0QV`j42#yhdA*eH)G`J_{FV!1QMFVpNzNAg-D;(;dm?{vk8!Z^OM(;q}2J-A0a
z<@S*jm^2KluB(g~`LjiNG*~Q6!5S~KF-tk(h0L|5rl=i`0=i$=R(Rd0yZAZgMX@p+
z2LB4^>88$<q2#`u8^hPCKLpOx(-W;re=gy9QT>`_nz<Seq<1O+&WP^6^7jj~z9oE+
z=p$H$EUwF;qU@C}D8<(F<~X509WA5Dr&gn^EcXqZ<6Zqa7ar24+VuS6pHPEqeW{;~
zS;q>HMVlB|^2D+Wd9}iM$VH<wF)MrWn0H8NxzvRH&)otungipj-eq-7qBv<LlO;FP
zX}(IFOCVu|R$pk^3)oxd%vz@Q!f!u@abn+`S@BbP^8FOaz=fuK^w4W8s(Bx<jiMRn
za)<8&2ai$!CLlbZj_5J}c3vP<uWzkY5KjB=0R@te>)Sm|AnC6wdjVr&K9*xRMiQfX
z?D|WCApeif=2jD`j7U0a`$=@yil0tV!Gg2t;ja>SIPHm0<SyJA3}0bmqhh)_k=gR=
zm0=&boYANqC{m*D8#6@2GCDyx%layQqDRJlxKDsM@^c1*19@HO(96@HKFFNgby?Ed
zR$j!Mf3v|4H>v-%@SA$QuKRsLy}uFvlTQs6pwI9gCD_3Z#?-QS)z~z_l;H*LVt(D0
z6T=n_rMThYbMhT;8YbV4jWWx2lE#W_sy0_ZmG3j9J7JcbA3kac=UK!M!7f}lurZ^_
zXT`P&{w74K$*X9bZ-<3|2?hJz+-|xw9CTnSgmoB#%sV(V4D%Qjz659*byIB4Rb-!D
z{$z1e`M12RG`ns7tMZb^E{^PvJThX3ZddZ#^*tL4$zTUhQnB#Qfah*sEJK8Ni#mi_
zgc~VvcbTV>JK=l9VL!f>fu&v|=nUW`dL=}vNLjgwY<U4jEebSX#dLKo$LLOnJ<0Xo
zX?)-gU0${OWxobKm8Q9;<Ksoq-)-UpNnX&>DPcYSy}WjH`$?r>g6V6q4}(#H{EfgW
z;$`J?UKy%L-lB!F?SsoFBam=Zgi^GkC8XIT+<@mV2=6hBL>JDl^obSbA(RpGYBOhI
zXk0I^1s5hQuiB+IIMx&wj|bzEF^ZHXm7(J2Ci4->IN3S0{UxSoULrz+%UjMG`(r3*
zB7`1|Y*ymb-sb(_1Olu?P&7-no2uIGGzc92IkbJ7qdtx$%ELuKku(14zYpc3vqeV@
z5aZ#I?p#=xsi|n=rf9<rd;gu(CHM@!C#r^vHU^Kp$2vYE3@6CET<8rNP2Z2<vZF`8
zJAuVBb{}D$vlvx4C6?%e12NXqPeFaI5-0%9Li&VNC3%Vm6Dhb-k9oEA%sW*-(W6x#
zj_<1-0Sp4vz|BoVI9OF>^QZ{0P(k_%K8Sy4VH5&B%$56fIn$)tS%M~)fqML(*Bd?@
zceZR1-d)KHjY(1AN?fLV%2-u*R_<M$8&5yF?dB{a<R}7$KVq;J(u<Q5dz+1Xz5l)*
zL02^x$F8K*FeWD<FEbG(GI3lwO?9#Z8Wac=Fq!je{n>ug&dir7?V98sNFLreNEa7(
z89B=lE1npx<xIaB+63HIPY$fF+>S%VSP8u^>ad~}ET#zny^fKMYI15`K+dbeNoptN
zZ3Dnpa>T0OTY^7QN!nwp;_a9r4g}**t5HSna#+v*k)CMj{V7OV%c(-dZKDCHg{S2e
zSlvxGsQKgeU_;sSmWEA<v$gG~Y9Vy7y!>+t@C|6_{%^JoYcb$F-<#beyLHeP&RBmJ
zA%(xHeR5I#(jVTzKy3^O&hsg(SK_&X1{VhnZXV8m7xnqi@T>Tpb!==rnWshCSD8o|
z3@Mqj3Ljb37k1RY@;_>Vj0zn7+}4U>AY2<OSee`0igQY3$kwpaSJ-(h%Wo7HIxx9(
z?OQwb)W1S-Ry7YEPeT;W4%3<y>*sJk6Ebtd@E3fJeDI1fJ=)mG=!wI1v(3BJF&Nt7
zZoV{ChU`>*PHS*t4M5(?Zt`%qTBvL6X3mlTGoKXw`x$UWAQJ=`D=`l#164#E(PtD|
zRN+%9u|mQKb!^ITzv-bJX6E5|j?5+y9^=-t<V!Xm=7gaTpNvBs*8NV_X+l@QP<~77
z$KzC45nH59iRX+qRjh7373tCx>9R(WRxiGw{OhEH@8ZVK+LBFqLxuvAIP?Mqf$hfb
z2P|1|aHRnHYFSt+U13?6u--l!k?0H@iKONFiDmReYc8f#xRUS}9SeQQ2;<ufllH?q
zaKc0c5faX3(cuMN`U|FV$C7@MAd3$CgU%A}NqbQd-i;+tvLg}En;c3>O8j3T16V8O
zYhZ|%yF0$0iIoE2*Qt=1DdlxJ#3KE@J`+R2@sm{im&t_z^wEv}x4E*q<sJHVtnY`W
z^j?FOcN)IMQy)Q0jHdw;1kNPrPc4XR|Lr~>X7&8o>(^1@LB#ywR}=Y})0B#I_NKIn
z;>JDWvr$R&r5120Ld5b^k$S{0F^|rC7FV4tK5XhGN?%R){0aC+DtIV$z_$JT$p&5p
ziX~G|I=;0WO)TCr?d$zf#S_L#hOfm%3OKA?>G6bF<wUWmbnx^8E`cI%26IS51@CH+
z(&au2!s);I-($f#kiWB(u&alS=xc{28+{tTCFBsQGVZo<dXej+@k897rKGv%m?tgl
zGYmd-g_(5ui*y%+$$%pH-@+@!VG7@AYb0~HBZkxVV!WYN)Xp{ySuS6_Jjb@4>!7iN
z?fYwlNI}=jL>y9L&(>re+XsI4zuM*TYkGrvAB=E8&*-3#A53K(CSEWPJ{WdFi@x+L
zd4>#^H1VhK$v?k8r;6=MF5bX=9Rnx}52Xks;PFvjvr(P+Q2HR5>gBz@#N}yj*o`73
zJBM!T=u=iE)FH+X>178kZyZ_PA%=?o4u19DD$#pUE0%2hXFr~{J}+FI?mu|q-{ss{
zfHqmmJz1>!+o<kUq<4x>%6n#jsYWL$u_Bq~gE(iSFUJDia@$FuL>{7YDRFvCsfX?*
z^kHz#(CGaE;ZZ{Et+XiLTUf^HMG1NOM^8!L00*@;7^t1+OE!G@Xj+{&eyXQne*Y?t
zR}+u=TRC?B=G}t}yJlTWfOC#~myUHgbB-SR<`avR6%g7n^Tu@L8LfmZ7@45vVdVJ}
zGF1L&qPU&$9_i4bc?a9U8A{4|urgJLsH290ccee`1dKL_Oi5ED*Xi#(%^}XQ{3#6|
zPz6JQ9bsZ+usA<ees+h{fWyk!$G47Rh==3$|90)oYDjN&-_;jVwRHb!f;%CcixEv{
zwhJm!{w_{NUzF=c+d+aBP*Xt<aRGd(Fa?)>y9p{R@gKnXes|g`O_h>bd$wEEdM>RI
z&PPRVXky&xEW;5OC!14R=pT}lxZkqtcVzY?B*OZE3^R|@SC7I&@&qnL{VwTRi6Xqq
zTR=v*YUi7IB95~`{VJKNnwpkMTS5Nc@zK$Sjmj565`Mvn=uf?i9G@G|tM~PHZSTxw
z>O-1ev8ryZ%_Yn}wjy)+&DP&8y6cD<>?8T4eiW7(o4D^mWpN4CRIfVS7$NubU2E&P
zbN_hl{4=cKcCki@COxyzYPmm#WuS_&N%?p#cXy$1`s_3S3Qh`CqN+Q68XBqQdNEoN
z%@g)#^cQ2a#WL?t6cQ9h?E5Gs`9jUo;{)jOqAuq^)$1#9iQwtg<kWWbGRFOB+1fbE
z%~6MDiQrW#exnYjE2`DDlQ_q%U1WPYWA!QUCO4OEwBc+4b7Es5JTaDF+(o2_r`7d_
zL@KFf^yvNgAe;8^&d=|L^!GeHO8Ii2Cvd5XjBjD$!V3;+PA#b>O_=3%|Kn3gz{I6#
znY=$+OpyZ9%U5#N;XwJ?Z#ePg$HIl`DgDcODd5I>DvWb2OBK05udz8t!a!lVh)C40
zgh-D<z`nUmgga`(H|in7&VH%!Yoe%UA{TY6rM)gr?RZaPa3qU<Z`!T+G%SSo)_ErQ
z*1|w*PF`MJM|;_9eYAC?Xu<$OZlb25lc7CF-7#5Sv{)ZaQyM)W>CmYQz_A?_96Q_P
z<!~L9_YpXB2D9xVwvfk-%jLxG<VUg9GnE>B-SaA1+PoNM=rb_&p(bpt;w@~nWo|5U
zP%4;OS;4j1>}I6a<LWMPK)${JT#Tk@2@th3Ym*-Mr7!<dEI_pT4murAR8qcs^X{5<
zhvLtI8K{>nQuR;*OLhWLp*x+csw8pAzFsl$zGkTm2q#vY1I^~sUG2R~wnjs&?XG^<
z)+s16eb10DC#0tMq_zjXB7??)<}IrPMVKsQ5$$8R2iZx6a^6$zFd)5S#HPKvOEbdA
z5+}TVPifbC5dt}%Z-KbB@!J{|C8_oK;Nw1t`bS<J=g(gty?6%mm}1Oyy&W@vSu&i>
z-g$LA;w$_KME6PlyNj1j1M{u&NMBnfU+yM0-<_PFK1X#~E8M$jGuhk>8P8YG)f{%$
z!l7#eejL<yTb~iUKI|{k-_O_E9JV+;dD6Dvdfwx&TL)?U+F`YrV|2Mo&BF<Cu-DXr
zPGfU>SM%<&v$KcChTPBT47CAY%BT&3v{a|#a{R6OxbAWn?xw4aI=WYBLl&|m_W;kl
z-htQXCS4_Q&m0AXg}{7X1w+9HU9o7+@#HrP@!_f85sn+jb{>!&>2v|>-OT=r*@cNR
z2f<DVDtK{Ix;2o^ld`3yls|t^cz3;pzlY;;7?qdC>~+`6_)*f`sQ1!4U`v%%c-x<Z
z7<kX*(dXgo(venkD7XERQsy$quf$&G>m6J9(c#RY`tb^(jzjs;@8xg9k3T3GZ^u6o
z2o3e@@ATBR#XHqj?e|^^g<0N8c8_`cq36&*ofCE<3twQ>Nx#Mh|Kw#Cy2M23n(Mqb
z8UDf&_%^%;HKG3O%{w(YFXntmie9O%aKNW4*~G+JeqfBDrv6rDY@C&V%ZZu1X|#KG
zaHdbQVk}h7%6>fa@O&7Qu5v=By9a;p<1emt>DE`GIi^&e?+_T8rxwj`g3FVOHXnd)
zzhu`2)XMShvydgM{rzIc&QqdQ&C4~?pl-DyKkGGWN{iycw-3`o^<%+rpOfT)b`u3s
zo+F=p4}J~@^AT_YtIMC!*N?diI;FKNSg*mD8WJMJXwRxJ7!AaKNDg#Q4C?`XzWrpO
zJkI%6UwYV)v6h41XOgt1@ZX#rav?<}wS|aCwVUOZ9I#X)N@@1d(g1oME^mHFVldf*
zPfv$ty^3n{sdWV_<M_y8v9lvPy+)nMW=l@4z!_oPXzNT@%cv#TqAt+Hj3(qQXmbh<
z?qa6UhdQJMy1u68c!ume@qOEq4?dS{9R3SH$9@I~5`!>$TyA3u*ahV1qO2VAb$tbn
z&v+~CWh(+m6C=>r<#B5n9%gv-<!GfOoV?1_&*{LjcSGhQjE_<Yjq|F!aBVza<^G($
zr_tQ)BLeK4h%|x6ZPU*Jr@3sQ9Xh`~8l!ekA2G^(N3ciD%$x?v)6>#Q;01A*c6yAK
z3&VcKMEqUfUftUQj=-U0Qm+%Dm6Ww62B(~IXf!HoD>KdK;=ZO&I3%UW%BV0K%<DMp
zA3O`!U#Pc}s<8ZWQk_tTA}EN0&*XShQSDtQ1`@Xo9FtNc&6~^CXiN=FKj*le&$se>
zb=0}|NF>}@-G<Y_WF8A)VPofMp8t3S#<V-M{-wn?+Ac981^wb$#z9-fL5qy|m8l9;
zraBkdIi7DHSDMbH%})d;Ab$IZcy%G{-ej9mTh_YEiP|plYjcl)=YFIpAj$PpQj!+a
zZrT$RI?vEsVM0!KJXr1I1oBd`ircj}x48MtV}S8i<>l$FrRDdt>=gUw0;G0*Q;vLc
zN~NiW_cdM+golmJM;4wj92IfYR50@zjpff&-UK-^B#oNV?HIvmf22;`k(|ws!N6cM
zn)V5<#dlUp9G79M)hWpx8Rm5P34`ZivYWEn;^a?w7Jcry^`@xn$@d%<y0=7qmw&Zo
zXSRa4ZE_6uUxt)g&(NG7SyEEbal0(#ZcRj#3**pfL8$w<*_ul&8QYJ2B`d9w2pNqe
z+tadcpD5lob~PE4mnjtyK`JxO$$xUnqOVb7O;<6w+`Dh;Z&L3^q4zIXsEH@3*KQcO
z6~TkfvL6(LbgWTph!-h3Wxu$?7?NY{<gD1-TK+3X_sYbm6g<pAFy&gyX%9_qdqNIy
z%kv@mmdv@5)@#4Ja>KY_Y;xkxp1Cd|3iP}%MN)&6#3uXwv}Z#}1FsVjHInhP-k=3Y
zX*HUe7#-aj5WU|hPctZd{CgGOKXSH~2*fS$<_`paT=yon^2>S?*#*FvFh*<CHqGTj
zAHx1h*x+6E3Q}9U#s}Z4X<pj6@sWkwizz5duF%4i$CawTbt+S<8uB9tAn*OOQ%kQh
zH1!u1aPS;nb7VDEf@kx7hm%o<&u|+yXtTZUcA@uU4<p8szM!v*klQUmZRViw+h<+B
zvw0$$n&gYvNppUyPdjaDL=c-!*Ue!Sp`P9v=A+*wj1wkXcukt`jg;>P0qvC)VmWMm
z+yDYc;oQ{MBngc5lIJFS*AIOXD)O${*GRIKeNmrku$h=jx^E`<#U7a61p;<Rs7N|x
z+Ew>z03Z@O*G}HutlDx?kAVN=7VfWcXAys^kD^U1%xLCtS|SUfm;Y9pnwvTHyAWXM
zfXYgpw_R&<%4y>Fv|(#E8<IaG+`AfkHt-@GOY6^>*8}&tyx-sv>^Z`1|D2$|V0ZEm
z$hv@uq|4$3MIBPqWoAb4XMN6)g}rBG{J_fi$RqV{Sb2G`=Pii>Hyft)WrWc&_pS5o
z!H8&M^1GMq^gR=`HEg@{Hjc{+oTIv*1&I$+>7koLKYC@;%&SWx2<CocWY^^0;Bw(Y
zPM(#QxWzdeEl!m&v>B-|HZ|qMgdjl{4(HLBC@Cq~xOI7RxXcCnQW}$xfCF1uS+STY
zSpYfa<vXViHj~9hz}IQ4;G*oKABytXaU3~nxgD_6Cr8<T&1?QAq({-A#7TkKVI*^R
zrYaw@JTFa1khp<@W^zrK+}g>P+fjI-Gqm{DJNwN5^0(=#Q{hGC)#`=ng-@UDS?wHD
z9xe+B3i%Ro*6&U(ne|K3E_@)%(lfoVY2#HJzdO73jf+!NC^x+Ih3w7lw{NDrK!7YF
z3Zc^O_WG(xmPEo&%Uh=SHemIbWPA()L)DaH$hfO(?V&z;9D0p#k#vonym(B8%Y-_A
zAaA`i+s!=G6%wcmmD}7@;o(V4SO~Qp6jWF$#xw8xr6Pxn6cD)Z`&B?hdGFkH@Izw_
zwD6WvJi!4wxW0la_t=V0W(FqiE1B4tb^FP+^5AgO$a{gNOO3Sva25`5wC+>;nPL;d
zAy&6DVshcSlp!}0lWo7CSjjiP_X<qXuDm6a8rb&Q&0y6oyheY^Lms<a?9A5!k%nZ#
zWli=N#?jpMXU286%fnfteo3?IC&kLWHH=v_S{3|Q>B@~)MTcpAz=k(xzQJaHX=O7B
z9`R~-sxr7wKj;<b$H=nf^V9pAO7ml3NUr0)!d}H$=&X(0OC8;OE{T1=2Lxpk&fek#
zNfNM|>-%+?-+g+?uj%Bo`YA&}sz^pZF&g-H#5W+svuish<<I_QX?{|o%;0wO1_x0L
zDfZ?)t-);ZyeW1ou#=veXJE`KE{PQ;3!P0c1Gw=Lzb3%NWb^!Q&B^tj6QM!Ipc*L3
zV>UP3pYg}dT_y8%etT!mq52CTzdr9GVT*<)JZ3vElz1aEZPVl|4cY!((%)}EJ^C3O
zqL8VXb~+vzSXsKMO#lGg>A4h#M+4E5gTwBbdtxxSZm`-ABsw}N1c{L1zQzJ1_ZB!V
zgii=apNL^-{_h}Ym+gbIrFUeFO#H{KT6b^au1Igctt8=)!1)F#A*x7*dT7HlhPnV}
zUa~iap*E?KtYdzfiD7jAu1q&=l4i|-Q7HD+R*8x@C_d^_8DQ0yZ```G-KXPBT}(!%
z!u_5K62CwRZ%emPeoo>>0KT4CdypA#s;g~kp1Qxj31u5A6#xJ*I2fg>go&~!SDV2w
z<q@GNSsGLX^OXKmU?$Svd1_y^zqFg5(~S4wy|}Pg8t3}_>DYcMLFz<dzIcfd2{a;f
z*Bx0uSLc0y`*<D)LrGaS!`W)tyw>@$S&sE6005ssF2P!I_v&?HM{Po?iZZ=zoPLsR
zM7$0V=LcFPEKi96O4$PY_h;>^-YfcvFc=+q`c9z#a#eRrRFp#b`b9-*Y1X}lF8v($
zE0>RC(U19Ncgx3JW^Ha%b;}m51-cW`cM2UE&IQ#qNTezx*OtRD)|2#UsHh6&!Jhz@
zhx6xcxCN1?BxLH2&M+87JQDnMLQ+jgZX=Y1Y2BsxShZ#3k{sS8KOHyzkzY2z613jD
zVzpWu`ZzO9bAJ`Dl}g+?Qv@AYil6*$6eoKO`!1+s<kVK0A!b`%vDSb8cY4fwW212u
zE3zbu?m0fg?|}iEjzTY^%@CH`3MAP0O=I)WJd5)eAlbgX_*@on91dIT9=iZR-H;|1
z1P{Zez0{rx(R%Xa%C4F|lAsPHGlM&h#ZJAauOX=_s<Pd?tIP}THn`*0v*!mHL)p3V
z!32rXH8owKUNeR5@5E!6IG3(+Ce*@t=`~WFKj@GCv}nA}D9xSj9E8CTP`C05(wN<6
zzk~W7c>Gr|u`VOSFWeW)Rse4-sO_c(qzVX<cCQ}QUO7`!AGaZ|R|x76uFDyYe#Q{S
zc<PPH`-<1$E;?a1p-r!phPJ$-0>m<8WPIAL5^zC?d4(VQ3g5}8cCOYA>il_kjv?3b
z(Q9Yd4EDv+w&@x*j9l{7C$jK?U#8EDf8c%CIBr|GznH@T7K<;P`rtzOpq0I?a=;WG
zd(7u|y>(EZynJ$<Y6qEu3iH4Tj>y8{^r%a2EmY*sm9H;RqlTfj`LtcES)3urS}UTS
z*qy5Y{4$G~8Z9N^>oO_*hIz4HTGFnU##~x&Tz{#(w>vV#3qpc%o)g|(1%|lzAm+&q
zi2thephr`$MITr`Jl}(q2Xq)7fnVGeo4(*8@MLz{>!pNQu3T(plFbLxHp%5g6em8~
z#GL|yfsm)j(+&rM$^*YGqG@0rgzlPkXM{QVYpN<SkN7m*hq@P7=v0_2cCwoZ2v>SH
zG45xpmq(|1^vQ&x3;&SMbChkJNA1KTq9i=u#=V$RN`mo8dq5$94oSy2MG^^I`s?$p
zfxPkD+iCtVwAUN!e@E(8Q4c!10PTTH>eVw?p8Mr=Ytw$i_2+)c`xN(0L1OKjVjh<e
zjX36-3>H!9>a}*-wD%%{sVR;2Dqn*VB6FNE%xHs+Ma0}liu}nhj-vadh7l-FZJC(a
zO=Hy)uP7E~|3GivG14=PR-NvF0X|+=J{M(R9;VLAmw6KQ{8X*I4i|TW>G%ok_m@GI
zeQpJ{1(CPm@o|@MDI#8d-oXfhu59KW#$<t~Gr^io;eS_+C+@O4^}=FH8f$rf)%d#$
zvD|+){Zti*QB+{Tz&tLu-#^jt4lVYGLW(T%y4t~#vJNUFsu7rX7QmGhCO<_vu&QdZ
zB7eu8mf<J=5hDZ!FM%TFwmCzJxLS-$-apsbMV}$v375h)IZ%<}FZ>3LiH-Jjr1nYW
zgi0O5@PtfNUPN!@l+RdnV}2<aXOZ5L6n>IztBmC~UJsQCjrj9X>i7!0xKW?NB6pl!
zv<7>Q=|51T+op<2X*FAk;1LvsUz+_xO;%IaJat0<@@F=TBPg}j1>R#czvaiyUp@<A
zH}1YGg!$ccnppLhi>ol0DR!Dxb(J)!)6Y1UV}8Z^r$h>zy{_ti_qB`g_Kzuw((RV)
zg6hc<JwOXnaa1)H7xXPCFatV#uvBU?yhv^zc|f90afX?J8q|^9GyW=%T`ns(y`ICK
zyi)+VM#<^jtzBCM3Yn!f%2PjI{HdH$({mE;jC$<RYkt{URQqYrT3&u0ZbIdOF*N8B
z+@?o1Uz47fHKKo6NC1_n^sZ7*w3ZRnhY)gCIE`53YPAY@$q|;5%7hTk^6s@4fE5cB
z!jJ=InB#>i2r%IF>E$N@D2KoixTmt=*@P6hsBwZtR@3RmgJZy)DZ4#+WOkNOdN9H+
z5V|pc>$l~_TW!&^ITD@D5G(yAj@3YQV!iFl;A7_t_>+SgTlT#>FH(qie?mE2IJj+Z
z*6sViItVQzRyZ#n99)6H`~`IwpjcP1+*9ZUBqc>}X}C2+#mjSZ&sj8H-jsdfwXB(a
zJ9LZf&NBhHvTx7~EhlrORA?n6?1*A<T9zzFv*<%VKjNdn)U2^4DW5<a3s(?ye9zU@
z>imw5pDr4h!k^+yFlI_=mRyApzP&Xwqgn5bV{x7Q-ETj-<Yf1~Pn%#Cs(J#`(H$6w
zy>Hv~j<SN!Q@VSD>F=&yYdjmiL#q)nmFd4X<&tiZ^wdEq%Utr)A-XT>=Ka`TCz!OF
z+Ws1jk%=y|tKt3Mup>avx;Ni6K6R+^`IHeGLI~slIjQ)t#r5T(+SjK=IYuF`cg(V-
zhOcYt*a<kCkzleTWmjBK*B*a{tiCH7f5Wb4EBPnl!_m)a9GoH&FZzF=lIJToG<SA>
z0lX^3sI{#s*<qqnXX^sspB@;lAv&F=PuNtQuI?uC9AU1nP3Dw?n}m~{`S_-dZLEli
zsv@~~g%@iP22-QPkkf6bR_mgbGK|~tB}=@T13!YXvrezl$)PS4HdBOf{_EX3cC$U5
zpcl4xv+n9*UIdHFJNug#y~{~tSt<S&I_X(dDxg(19W_d~)Uz~c0<=gC0`-p;qj}GG
z&S{>)TUJ)lP!&9XVQB%$PdUAN(N{kn?pDs5fFh-yB3+*NU7jpDZyfc&8av>fpKehQ
z(Rfy0C|8wxJA|@%%HzrqOf<h9V%9+;{z73uRmUGF3}h%*Q1Hi2XDCHI#uoa3fh*|8
zNB3ZvVt)iZPE1ka&}7l2A#F}4%{pRREAIk2?vB2ptMHJ-O{8cw>G8o{i!psi7#}Gb
zXcO^K=rb7RQnVv$+|o_Ib;e?6FO69yHkas89$JE0H=EzeBVZVBV@?zWdVR}wy1X}N
zrFec)zV~kZ)s{)lo!)3RrtG$DrHWGq@Oc}@_J#e{AI1{xxNyO3+_ML#fQ3uy4jbvW
z*WymmKDM3`7c%FssY`p8Ak;^jo%~Zo=VxU%vLZ-9?bH5%BuZ7#`<y}#9p*1UjQ(_x
z#}6{csRLJs?!Pm%EQ^C^<7khR4qn_}h}OLkV=G?t)ehWYINFGiaesY6-c^~F^upq)
zo{zz1LlsYhL1Fzzt9V+c17wPHzVt;jEU*Ry2)xDc|D#W+h4sX6?O4I91lJbqng@qR
z--LI$CVGgb<*?S^MgJc9a_#6+P9G$c0f~O4B~cfb2vR_n5dX1aUBgEa(X%R=!9Z&I
zGov8HA%v%(1JAW_!$nMu2pp%cDG2rgg|dz>U8y2dbDEcqFSZN>9=kQ5W(BPuIuh>D
zX{R&;9J=vVc#K32sEDYkbC)V4Rj!VYD(-I@$o8zoXIEd@@w|kg@ov5as(na)E-XjB
z`=X>(fj88xWz<CSH7mngy0fi}<qEq~PJ2Sb&*5~YQ|fQfhqC2QZ!Cdshq(}F2^m#2
zNH)gBA4PaRCSERTYu5^t_#UWm%3b5YOUbjeH#Pa#Dq5H2u0pn<v?jL8_msMH*aCPD
zLtU&rc=2&{8`E=O1$djP1PzoPA)T_3k?4ADc*@jrOn2z^+sf$sNyw8$67o39jz!t;
zv!4jv+uPbz5D=IGuCdi54TxQun;FMiot3$-=HOITiNnH*=4m*jqB07<)%?foOF!BC
z718$YYb8t6gF;JD=Ca%^Gt(d^>#IhorMYGDKG+iFBCeH#MAo&4mcPR$6Be{LdivX|
zz_jt*J1GYxd0BH4-5d^|mQ<AB@$O;QwG;mWDYL8aez|)}5=7rQ*TG?u>7nr(chRT^
zfoA$ihdfeES^uRTdRMRVz4<W7*kH=S9glohL0$B(NG<siy*qCrZ1?xZ(ld0X!If)P
zRpAPc%1v0I@LxML9GvOx`i+f=*f7i}dF)6<o_nJ2(kJhCOJYmh{e-`28%wtp3{cY`
zf`~oaZGNF^bPg^nWVzO1By*LofCqC7&wEq(k$blVG3^>KfoJQJ=072|o(Uh_x$@v`
z8C^SZaEtfIDEI_rlo&TE$BGj|tQCD37N%?4n}!hjQ+Q8lTV8gx3jc~4tD6RS;F@>d
z=ck}6&PJne<~AZ$m4~7dgBKw$uOvSK$EP51+x-G@1<5Bo;WFWmcp~3Z*yX3y%THLj
zY;h@#lFs&z9*8_j@?(vIWBZbvg7k0q;@IB&ti57=F(zgC6brUD7f#4a_L?zD+eGZD
zi4!70q{bi%KYP#J)OUoKQ&WXe1~!Hut4|+fKSXV9@<{wNO3ni*WZPTuFg`jZMJs%y
zfILE+i1=5VT>d;JHp)MQYcg^RU(=lpz`sEftBK0I0>`R?oraXl>}g>aAS7B`M+jf`
z-53ZVU`5*)$>&Daq%;<08o%#XL$ZWoP9w1r%o$tr@-MhN3niFLKNn}LL{dD7)Z1R-
z)2A|)1H3TMZCi#RwvA0KEv8_=EZ5C-oSZV!(zs!c)pf6Vt%PWzENhsf3ug~(9b_!5
z4;G&(97#s{ea->tu2@K);5-kGBDZDSh+)4cCYH5jr(4tIW5p{?&iP$jOdycMMiw3#
z?j(F_v%bb|_pAeTUz%PiC}zV{i;$2Ghpv5WY#iAq6@z@h*}0nAO_G{wzUF%Ie1UfB
zsvfkcP6sOI7-DHys}}in0{r}rP4dM-Mgx|ZAtn{<Psc)3`ITjZ>#DD8&JU?-611nZ
zw0)e^Z)r)kJHF<D#U{reD)I74*y3+%p0CWTq`O<ws8M%kSo;yL))TXyoqYhZZ>b`?
zZPp9HC(Y%|eTBEhD=sS2fy}YIw}zQyS(Ouu2*YPF=Y<aOU`#B`fQ+HAvawZ>bt$cM
zcedWAb`Gkoq$=`AftP`8^yTy$){di<yVo?m66~gm+p8m)63}F+odXWR2M*IzEt)&!
zxhOKpSEpomdV<6<Zf?3NPOE1ceqnM9a5oLGFMJE%nYUS#6egICFBsR{*$pocVT06M
z)g?KX*GcXshNhyQUCQgjbHwHIZY#~p_}<jp-;Rea8z7wSKZXrGzIx5;M7K2V<|AOW
zc+k~Mk_p;31kkrm%%i=6ZKOa^o@*T=oWp2~#+!@q%MpUa+jzXuCWoEaKpgr7w5Q(N
ztfuru**|u$a#b6*&Luu~Z3ap7fgBNfCkA%O`^J}k!GFkj#KT21p!>3kX?A4-gG;HU
z;@FRgCkGD2ANC3U9v@#d0N#_$)^LGTro$MzzW9$udx&upyu#hftn<<eYC;=>%MyIV
z>3A_+%x-x*8ddK?oPP?4Jvn=pIzq8fG=H}omoPi+d-&1CLGkGKyeB7Wl2*mx?<Khj
zE{&bq>VZ4+v9o<eGp$PVkjPl=qA&X>Ap!hZeTiIpGtFhZ1#`DOL@sdkoSkliOa3E9
zqfT;uX3&&_^H{qVzJ2=-Jj}vGD_^0E-rFx5Abt5Lkh)fjcYjQHC3*glD&A{5g;}Zo
zE2G^#qVXM2Z9G4*GHTFQ_UQ16*onkP$)9!{9BC73=t}t03kYUK)0V%7##_dR;bHZ2
zJ7veB*!0(Rry@yvU^V%$Q6AEcI$gcJa@2GN70p@e@f8u05)U=E*Gpv&lvdP57tFYw
z^xDx^MG3K4^KCph%oNNJxEyBs1@0o>+Sz6iq(%>pW{(cLXI2GM)qb!-9~lVIF#-60
z)Zx9I5Ih{b6DNQIl*X92I5jYXy3#+yGQp(nP>gT+i=?T>(v-Y)taMb(TfD@PVxiaR
z=0@<AcE!D2^ngzpNx4#~NVa8`XN(6=916U&Qao9F1k4j+($ZSDjVEAVjI&Mj^Bu@H
zW1Z@d#d3l0<QaT16Eg)(fnsBU_D8`=O3%!!?9cA@uH7=FeIl@y@ICx0|Jp=8{jldQ
zozxbOQGn@5!+>JJl~sRzTm0QTltW4}QFN;?w!gT1$+*^kO`L21)yT7Gw`4EAf$Xq*
z@t;*G-CPwo+YniV6c7IX&eIwp`qfeS=N7WP81ivsPg6Y4He;-yv0-}C=0H^8^_Jud
zTdIOnhr0samud#Hre#H)^V-i?_q~NtNW#9)Cz^w{m`u}Yt5jZ=RD7~1G&R`f<aR&z
zSH%X~`TG2khegv>zC>z(QhHh*w@rIQb1V7g_O_1?LWR3dmMmpMs;`o~yxaAdfxL0n
zEyAv8zGy&CgR9GsArmrknL<yKlEU;AGcR<s$*NP*IooS{oEg>qi^FLamAByR*>@&Z
z#!Ks=jxB+!(_I3Wt<)+lh`vVsC6Pn-&S#}K7J+Xr&+%SOF%qka$+dP5>uil$!3H@~
z*Hb=zNO}3u*0$p61j)=Ta^0=eTQY+(vO9<92kYR3ONyIac1q(=e-2`(h^=Mu%*8}5
z%RUM|!<V)#UOLUjd3vhU);><tR6T~+8&Zn}lO$r{ueZLt;DIJbgPx+CvGBTIUv9h{
zf*s5p?d$hx{hdlHlBcq9u$itjVunplEALH~uJu^B-|8--yg<1Q^s#BYE%CxE1I6gI
z{mtPe4)1OKUsN-*z5$%x7%pvi*bh9O?E2IzFWe+%CZ-y;srwrHSk1g<MQ3M@Yx}z~
zivvM5lb!+W-i-rkXua<$`L<<<B(<lT%D}BYy|Hm<xW#s$@)QW>V8vU}7Wyo%Qx=`1
z{({rgT#l1J-E&Vn{-50cg1V@iK(dgnYw>J~$vh>?9_h?Z=>;BcH+X>$fuAkPB0&>)
zK#NCWIW?pCZfn^e`0EN~<U;LwbCSIq_-m}rfW!~FokRf*YpcfVyZS|OFT+Jh0l<)K
zyy00pVB`4HU>k12l^5rMmIxl|ct=2QRJ%<oI4yj{2grY4$6C&^#_zIW;K9F{ct^y1
z2>%-UBe(IFwRD4{Vq3?*_KKNeIFhT#f?GaYk6A`X?r!~R=plK~`IUGv9;b*UkRhw+
zJ~E6b8s4hP0Da@5$Q+{B6^?s_yFqhrEToH()Tfh8E$Y>GV?FQq&w6bvx|dJNWD19<
z^2Uw(nV#)rp{mv_%wiq3Z$Nxhphf^=n^K`syV1sw`mOz8Y`4H7MoT`sD3?3iCeyik
zvhaRWH)R8g6*^iUK(2K<<uvu%IIVS%!m|-z11rj0!gH7@i)Y{6{q~=fj4tbvs_O8F
z40)~~`0B}c#>82q(pX!BAk{9j!I5!C>*WbPQuOkQ$w=l?Q!=+N7EN_s?4Snuqo`Yv
z-}@qr5gC2Nx<TEvv*3<$6*Gc5((+`MR$+yhx(fQ!Je^*qyX`!Y`_7&4tR#A0G|5#3
z*uzoRoJP)G{kmaL&`Yn)Y?jvArsb}hc^(?6E_<K55=oW2HwdSc9o?B{PHh|pkEqT^
zCli2Au}9RD1aZP=$ok*&qd8-tG6c@;N-P{nVj=m+Q}t06K7#Q^<GAoxpo?(0<dx*8
z$U$klUjzuX__AcWR@OT{u3FcKlVuG}lkpiFuNhfR7F8ht`5Um0O|UOVCP-A0V+?84
zx3f3MY))?!{R-S|YSf2nscs%$?@b>@HzZWZKGP6n9R(3!;&c`xY5dIanYSv)KEw!K
zcT|y-;axKkZ_u9NK6k#p%E>F37$3Tlg64+ooBSL9yz|A`n|+J@)SH9D%))^xuNp{$
zF}rQ(xT`W1rIfNHPC*$`TZ;fH{|T3D(Tvi}%0jm=Oiutl1WfNsrbx@%m;^mPT?mAB
zD5r4#?n&X#fVdfTf2n*E!#l&4H#hYk@Apyus1Hqy8HY3BGysW?+A+%BtUILE7PuvR
zenOgeWVJI*8N=nXxgv-ixO8P_CFt#JX{_e-u8rQA`eL}Y+RvN3EZh5nLoF6RSF3Y1
zKu&3o`PjR;Q4;U<+GVw08Ug~N>Wjs`Udqqiy~qdlOv4j}IVQF75oQKocec%=6Xhb5
zls}YPd|{MAvpF=+ZVHU7Sz3j>F<Al$H+Ey>q!SYrn6g87gG3)Nb7hbCnv(gYkwX-g
zOcWL}n6#z>#7gP%$KwsQS7L%vT%sJ8HD9swFowe0fjMRv7adL0@%#9`bku#Kh*-I!
z_aqL63w&c)Cm9!*x{r7HEIN9gQPLn3_(ivd(<^<ax4C|sx2c1Tr3wv-re+qrsif}|
z?0psj<BPlUt3M)Z*dIx$Zb{?L_M{fkZ@{vPO+9Xn)s^!c?dtqmIv;Po0$co&BAg=q
zU6A+;sMVUA&MOoUbHXO`_cA-kLq!POweO}M2y-dYiP!m)r%nz2X~vN=sa_ps?<ne^
z-h?MK96vVeMQzi{pza+S$MoY`qB1Rw^Y{%lzN`^da!r|Sef8wlU->|&b^b!0)01z*
z(m|Xotu;@I6n!Ba1Q1*}aRj^@jzMO9hn`d6a~Lsnd+->p;c<R%5cB*HrNulJtrnM>
zYM4R4j*4m+0J{}5Ybj7rGG%k_qZ7UYk&;Jr>#Db;oIo|i7DF8oP@bO(&_8hm2`n8C
z13x0wn2ihr92Ib%aX6IY%Qq8bG!@9hdo*_X6rN4&<ZpDvUVeHv%c3HnWe7?Fi?1Ng
zAftOkU0HSYi*C1eg{vUPR9uEW*4Y8bfSgSYm`#oHbYJ%K4P6jKl&$6YJfWd!*Yu7s
z4Ephx1-dsHG3u2=sv&*M3wvYC`N%&r+ew7!Iou9NBl>n;jfm*1!Ob>JO+&-N!eYG8
z@Z`3G{-0rarL*NA7x#?&!eFo5-HGloDzEjVX$#bZ*pY`Omd>=*#CX^-GkYp_vbeFx
zpL~_L(JjBW;j;BiN9*~+Eo%@H5&Wj^84C5S%MY0piBnS}=TF{uh&?D&QmPgg0?cpf
z>fG7kgRyjfcSZj&hmqladfK3yM1&dkkAPVlP|R?MP6EiB7D1uUD7Qm@^ci2<IjF?`
zYJFR*{3=>l>g6kh-|v4rdsGoEW}_ckj7Mk{QFY-kaXWm)&lIXoar&O<|2Dw~!a=Bb
z8&17~l%bvyL5-<_nn#QVx*=iT;n73+$d&{<2_#LV^oBcia$a9s@d<0~j8LTSRlUyd
zb-4S_*_%D?%1x~P2I71&iz-w0{v00rV7h*9?eQ^1evh`BOZKSxI(`K??g*K|9#iiJ
zOI4EIrof*j-O*vNagVZx?l)y}-~m-Nyo#&qy&>jK!2FUfJI|u_*9Rf#2Cslp2%9nH
z<87dlJIOTfW?j!{l(tQ)AbA%8{<&De4{TB?9R<3?AXYjh3MT=7`OM#O5285mHQp+{
zoUb8huESWQz&Ywy#H<&6W<ZV9<HKdTw$JV_{x+iCcLxCy@E8B~;en=Yktj_{Nx9xQ
zPq_s|07g&Fn=I{vBwWYT{hz*dybMkvja5e}GDEBSB|xSfVD5-${R?A$+>Z1okV&-^
z%40cHb4gEJ=(_Any>^{tKIN)7;jKKso1C9f`MB<b^dBMFXHB&|p-@3zTy$`G4Kk-e
z_4|;b8K=u>zlp2!BM`D(Z@kQJ$eNQPa#Oi}!()GTwR$1wh`#fiI(Sg*%Ww{Qm&x^V
zqzI`k-V-_7R?eTxzdBvj9>K`Icr1UKD=086`xBRO80#e!5xSZb5<b4pbuv2a@V{7l
z>!_;Ue(iUG3Q7wi(g+Ahcc&s<(ulC6yE`X{fCxwlNC}9vbV)1S-QC@==r}jO=lAS=
zo_Fu}jPpM49)o{y3>PrhT=%^1?{!_DYjEi5&~5;HpUCBCJn7CVy|nuH00L|Rv=68F
ztx)cCZ&12U4a3?R@sIq?noZ<~FR~KMEjHae|I~XwsdV$-=h>ZKK2>~9pI6Gt^_9zv
z)&H`^B)i(3V|}9gM}_D6!4|A16D+_yT0K0u_lfEV_sB^Tx!>XfXFm7?%EVShViwtj
z-EUdM^t*vJ9V06$CEp)NcMph(U%Y@J6G}luqAAEAD?E>V>g<r=X}DO&xp*wey^{kk
zN!T2=A!X_2GAOKfz`UgAO5J?HA3{YUOd5;$rTLdp|1;r$Y}Da|@w?}Fb31~LGlRp<
zwyJv^73B!|1m~pE5^hqSQWulS7Tv1oe<T1-TQOJ?1ky@si1%G0S(>Kt(V%7wlsp?(
zQO$4y*bku&0s9U5WEMj<Pz?XdwQ}4=o#t9n;(qOSaEd(+{&Z@-UsF*7PgjnMj9*{a
z5(O@hciYL@Hq=wn9=3!t7YcaVC&|pYKkZzK<5+93{S@wis(a;p8o@78Mq+jOz!`Yw
zcljL?s+V3&-55v|^SVTEh;D;m2U=21Oe!<GtmS0FJpS_9i=5y~OQK@d!U*8sW9$%j
z8MDLY>^=3Twhcj~fniL5eTV>7d?<5FR!{v{_T}aDkm3bQN%Kvmo(Trbv);Y+XS-i0
zh9gL*d4$L3HS1xok<M+-_l@g;L*hHB*>FGF0<;g`#k}4(_z6NtV5mdF>-OyVRZ$E|
zb+^}jSYnmqruhq8U#VY7U-=C5OM#Acp`u=$oT#QVsidiVMpx0+-S0l|F^e>?XZdlA
z2k)dD>147vwX>!{PDiCXNA{1JiP34jfi^m1U)$>mAtw3q>XL3SwF27yNv_M7R)PZI
za79s2{ch88B6Nu>%hA~1|IoPQd}^ZQEBb?cEOoY3yvMzSxdplYH~cut{VS{qt_$Za
z5?1ov8jLylMG+EDO)Xg2D$WJoi{8V<&qcaUkd~OF!#kixy9YZpBPJ3NK;QBdD0rGt
z?l{o-;Y~RiZ$e^(Kq=G<e$H7le(t2xoF~41P$_^SKwHDrR{VP3YTYZce&zspq;_ut
zhOJ{Fds@6Uxx<cxX3FSEurLPpfw0@P1jrH5;qLNzGLQ9MZ7PcF*_VjeUVhi4^hyQk
z__g|i;!ni=Hga4Q5{S)RhWdKD^(X3`ah(-;-Jy`q0SIi=*zw@QfF}zu@lX0cto53F
zR)Bh$l`ymCM!2MYFp*<=`etPZVZ%V=El{!9jd$`0{RAk76E&-<s$XYalI0`X@iSSb
zQG8IJkDo-A2w#~Fbp`p^%qS}MwB7TmZDkI9f^&{|AM`w~(m!3%BO(6D2IlVUV4JAP
z&QL0d&qyl5S4X%#OWqBPrPiLbzGbG%ht{@ObABPfmJPa`|0qrM9jjS4H{0T_Ph)1j
zodt1BR|2b@_|SgIzEuyuU|(lvH*;UB5qLET6yWM$7u=qq6L#8H_o+DKL8nnu9lhF{
z!~#YPo5ylFIoV;=(NkKX!#v#Ne55>{qH7IW1`Y?ZyMkSJeOio#!&nRl);S<rESiXq
z4w+b_B={gVb2DMrFeJ6R%8~(Yed{qosz*V~|LUPDN~Ii%PcPyQ`Y|^$jP{`+_DMfY
zROh`HdH@6;_oI+=q~%<E%?g!wO&r%x9K|QJ@_7aZ_u{ywM3h|Q!0&FW{7gJ)mUst-
zLp!})9C8R!loU~HeceB=#s&8KRihqz;E+01R=ok=B#H-Dw$b^p<qpZg=W3g9kW6Fc
zVH;X1?3Txb`N&azYKlaP`1A0oaMeV-f^!V8<7P+s{z<|Iyatx}Q8g&<+-q<EKFaqi
z5cLBlpVtl=?6U4U85`7B7I0iF7I<q{5W)_igJ2rZy`pFp+u5}sT1B{Of$jg|VC-C#
z^%mPNWFwE8M68W_H1*?|z$kWFwvk@a-1!~;nmj-<6xnCH8k_0-++_Hi^zqF6e60ty
z@^d&Hs7k_<6c0EBw72c15YUO;Eq{b?Dr>>q_7Y%A3+}!WB&CAh*I*#ZqBy|mXuIa^
zHYeXtHa{u=cSf4C9!Pub*8tRVuvUQ;3s1#C)njSjpU84#fp0P7D0$@}U{Oh+R7srk
zgD+s+a@KDF`@m8zzT=UMh*a+rmEvmNkh*zqKvgGWE>~X(Xf_(oDf!Cn>{FK?6Y6j0
zsH&8JfVg<&9!K@)u?<~poPV)ml)n@t1tQ#)APF!l33>biy}b8a1puqd={2Bm_HaLL
zS)n-x#v=b`iZA)ZDZ#lc0d^M{d#vOYUODA~0OAD8hi?53_gsN?1su=FKAMbi!rtM*
ze#_cV3jO+S3_@PQ6aEk!bmTA`%6x*aL76|RB3YIQP1)E$vZ*HNDSh6VIq|6}@e1c?
zZyCZeJc!S5<E#TY;)QVA7=QAp62rr7W^e<eJ%wVDS~0E7l)YRIKj7WJ%N_Mv{f`>G
zuP6-Io4Xl6h0|TNw}(sq3E0ZTzyTgz*$<500qzs9-+1>=NNT?(X?*WMvNnWL@E*@S
z#9tX5YZCF~XBH^<Dv|z+?@id}&lDokl3SZQwu=fIJ~K!;e^^WkX7u`i&UU`h2<n=6
z?a$q%-O9>oX!}~--X;I$emJs?+6(A<ad>IjsxtpIwS4DyGcmSIM~;^ei9({{-l47O
zEFMA#qTc+G>!1Hwy#Ocq4lOg^Sp4cz^wGvTXwJ9?t9{|A%CNLV!108Wlr)rp{xQh-
zyimhGIc;|^kiZ1RP{Sjns2RPwUy^VMp3Ie4HlM>|z0C}>;M&>{2unmsmJg4NU=wpp
zH+H+7jFh?T(#j{-YC4F}QZfSi@sFTEVO@yzr14qs%Jw*9xzW|T+nk&+XhzlAYwuht
zVCQPl(Cxvo%4Fx_WN%-ZaMs^cP!F$sHxn3u;tu<rm(4^E+Jbw~cK7y5OF3tYa#;ai
zA3T$wI&iK@Y94!9JI*KpGJ&SEF%eW567ELPTsmE5`ubV9?yuFgfXP0^T|Ny`c6SxH
zBWf>UZ7-3J68Hd?au<(E2nO!b-*tGgVacH<C-x+KbTy6o#PP0oDY62)<B8VG*46q0
z=A%S|B7Chm;7YS&a+Hy!oNxGr0pz^#5M{Vr#0YtQJzNgB;%Qk*L2i7wfTI|lf06_i
z@{KH7LB?2@z=MZtK;_2V9Qpx&^9R(=j*Kj@u8oZnr7D<Nu+AQ=;eG)7%A8U<P8KG=
zJIz{xaYFz>ACO*FPZ#_$;|sc5H5vzvcGZ)<xRXtK77hH>L*mg@>h40j-c>GcnP=1J
zw!izlpL&GBue}k+qVQNzasr+0nAV9X0_&D(nQy}0DIl^i7DrqU*$CGhBxu137w7nV
zl`h9a`neFH(C%l<11C((J)BR}^;W`$DVahietHPZZrYw!o-Gj}lMW@d*RSWjfzS;e
z9AShcuV=?R4|UH!`lj-orQ27M!0x{2-;fUkgDSAt=)Cze?X~ni14W=|7W3N?+j#Mb
zqqG}>z@hbZ_7`ZOc*99M>=<jGP?&<VqVRGp4j7CDnyRzok|ROcgEAoy;y2#;hvLHc
zs|nQTqt&MPQ>B{n%mA@mZMY20Kk}41PXaVp=UtdZ=w0VLY@TMhy-g2}Rka<uKkdSP
zcMJ#~ccl*<{p<@TTQP1a%4F$D6y6`I>}-)hc`62ZgLXqR^M&oP1A%Cn2b+Z9-y&*P
zfA4=ROz}ch{D8o?bZ$q6t<A5NS?or1nCD0MUJvXFV`J`!We$>%T8`RGd9Qj8pyEmT
zBQRh-!ViVIyF;|e8;3V}1Q=@?8&&WRnEU$&G<hvB6e$E<5HmYz1dn@&((>BPOc!$B
zKg5LO1+C<<d__}~={C;fH;EI5$?-M_fP1k{^uD4%KpS8X_=S#ViOr8Z?p6I2mDF6^
zOm1&Md`wd9xZdKo)|PTC*=)?#gqxj%Gpx5}Y6qLE3`}j%<7mdsR;5uvc)9L)KD&KT
zM@{XRoi#c8tqM%mBxvQ9a*bok*Nprjg#f4UnARVhNB#(~iZ{znzRM}gH6Kyrql5jH
zetE)yN=_e9nn$5S9gDx8@I*WkD;f*tS@~s;(#!y$48gW0q9S3s`@#&)bORzV_`@z(
zy7|uV9^%~%)AVM&ldXB((Z07jgD@B{lls;%#~26H?O>^|NW6&ns*q;9iVtb1kIEB0
z1RCSAsl^OW7Yo>jx(j3Rhw`T={zgo;%M1Rgv^e3lG%k2&<I2Az#^$oo*G`oNet)n}
z1Z!a!89_FAGtX`)KnuU&^!Qm$g9-xzCMX3#U>**REP*utdDSFH^Q-j2PR6@l_eY3X
z?R-}vHVZr8a6nsCgvhVPx9ko@NC3w7>oJ|8P(eq2qe%#+qetMm-Yb9s!jeSQ9!3W>
z0RV=%JOc82uc=U)6RTh_Hrn1WBDRmB6hAVA><cSiKSR9-bK%MSE8h|SZFzm?=NqZN
zoGpJk8bTB@qhr)Q9FgrT5zdp2)fW|2*3}gS8?60=_OP&br>pM*btpPQrOlZAQjo;e
z^C^sXBEEH6LH$)}!L*!xaS04YbtmcQC-N|=^+p;NKNau9n<=-i+3~JiRGGGmJx_*T
zsOe(EcprIeJL{u_v0NSn*1LKFl{F@~Hr+g|PYhQ$GBn-pa#|G@-oCW&qEhYlB#);)
zKKuuS*6lKO;n%1?GQuOocZ#KOb}xQE*hb-Llr*)z0SEbQrW+J-s2OPfDhma8OfW<~
z?L`9T>zb&Ss*xMH<phSVz&E{~z$4xK?aet@jn>5@O9FPTsyfQ}u#x5rJZzZgw<{!1
z;NQWx+M?-q;ryKj>nZthkF7}H(5r`Hqh6$rffd1kBe_vu%7`6t_d6&ZwX2BaV>H%z
zsq)%vxbRvCDdk5E5lr2h7nWCtwJ;)7o3Mqy<#g8K*H|<PczZM$yJ=*#$S_BKE<UQ0
zWUtJ1P9lG~92-mP^)@sm?O9dr*`boa>MFRjw3`z+*{>oz=FB95GT|iakg3@_2haS8
za|!l1L-U{5unZa$L)`3)x`!}uToJj@Pscs``Mj~6Ix&U#=}}Dho2$mxsB5jCNotP6
z^48<Vd8}u&>$VtRg~gmA_Lm{<-GI2OO)Pu+eQwrIZ=xKjUUnWX;O6way6RX&tvLF8
zA5h<8u*5ce<4DO~nn3<8&aS&(i(b0#3VP~lN9m0A37RYM!Z0@QN)PucK?e<O#7D4$
z0$ddopDd;N*$R?t=V5M?q?N^$KJUIyexX{sILXV<jzP&2aZ0;|Jt^3eM})twevhZu
z??$#Sx1dxto}c`9{T$r*og>@*!y~3E=tEaRlL>5W?t}Tj|Gt|U{0tY4-6~2RyF=14
z*i9>LGluVQ=v^gFkBNQc`BrJd_#W8Oi&T)qYqoY-Rzr99zEtl%<EF()aZyYrAKk*(
zb0*^{J(<D|uokin5X%IBg`mbX0L%adczZW@z&y)^_4iZdHY8DcjmxN5`tVL+mm{VX
z9!$<6@cfU@)m^oGRYxUh5?_{38*n^+@ZLHm5&jl<Q^(E*13+~X&V3xRHMdjMw{B`o
zFiR2Fo}P}QM!P!??*2+RGTpq65fH(ns;!m|>v>z*tq0V#CqIa=^$k;GX(GI@^{eRZ
zpT;u$U?&82BnJ9GTDXe1<h@-!_kJZsfz$RqJSZBRrFeFJT$Y}`9OfOi(GX6;(^Zso
z0LNRAa&izvTOV)KLDXWx7~_T1%ie=ERXFZJ^oQOht4y;1ESqzHpa4Kc|6CVOp(H$&
z5<~mS=(q?`iisN90Bsc!YgafK9F#Yd@iKBJjO!HvT9Hkic3@z_;M6^MHNOC_05pyy
zTCg`~6Ptf+HN6571XH!ij$rSkR`2<jX5MwPRsFyq@E+<p8Na)EdqpRnO;VnXDX>g~
zzGylSaO@(uui6|R{{-pxx<hOr=8lP_Vakk-iGMvynUzHypdQF~BXb9*5)}a=q%aAO
z(qHbeiKx#^=T-5Y_3==D7oP1KFa9piW9d4Vk1k-DO_l00>>HvI0QxuxOrWJlDp*L<
zJ|x_j6le-;CCI5CP&x#>A-f6<2&u&I8n{>F(q0ewaq$a=aEWxO)qi8pvFThP`dJ|I
z4M0l(fY4u#tgm`|j1ugIjNqPG*JW4FbF){H)E?|PW9>oK>zqqFhTA)a(^{cr`6LMS
z#eidV77{iJ$0i@8VG9q7lH~fYJ&Wk$j3|QAllzCUgZuSJxAzqN?|uq=bi?8Z<70PD
zlq7L)CHO0992)J)!~#0Y+BakcMKaWd#rD7&Jx+n|Qeum)awqO>oyf|;kB6_{#BXV1
zvs2?{18nBA+iXv&6l1guNG7Rq)ZQjHi}6+$z<~&yMF5ds&A}GtQ<8KqN_x_1si93w
zk22y`&*!9nMH-;=VBdv-KJUP;#D*h9l``UabYB<VhN%pI5i99Trt~b{gMqy@0N?Bg
zyGL~EyH-vh{*~bY{SEQ(d;TglYFycnwA)qRzzlb~Vl|rhq=1H+eQikW_0w|ojCM1=
zbU?N!+*FdKwlKXZETkytq0tk&pUPv^mGx)#ve0}SJ6QYLMN4~Ya=&#IetC5GNu;!l
zO9akpaPZ+FjMe-!<>1o>wz203FrO|M-mFd-0X-CY^M;5j5SxV65iL|=8}A|ROvy8s
zvY3n(z$`1!tkv5l*LE1l7rAO3lb+v=J}wHtGTE6cjO*S0n)2B?>-D5R#z*lN7edZi
zUS`vLA?gW()$j)eyjtzKy-wdhTi-$nZXUlsz+BQHAt4_;A7%AY@mG#hQX#X_@1}f>
z6}<$VZh~7EJT2~fl?=7S^9QxTTR$pLHam2_v2mq$)EpI97~!^@hB69El~a|>%?kq%
zo7o!-5np3U4*T39G+$)CZpB(J+idd(GlybMj&t{B5s+15K8|^Y51f~RMvnEjg^hHe
zmC$|er}@uMU<-A$f2WLd%<a`O!}SDo1A?b{4t}|oVAv4bNgzl599Q;whBP5U<vt9&
zN)>-RW@tBhMwp=cio3pf&q0AP5LgFC3#L3z&$`&aQ5OtiJ}1|{)}9roeAtLA*n+YC
ziYDSsL5Qlja-}%^F6F)FVYKf`;yw_BXed3W=3hp*#JGiPZCT%xw-Pfvg3z*6<5k|?
zf!%U_jB(EE!MSF5aM+AvOgvk4WSDDhLzrU{&Jo7)2oPlux<$6PlkL=sbunW$*gt?G
z3)+gjSKP=X8@2(t0oD>KdFIl;e6`A?=GyvuOmn8;U($6~{gFxbsD~?+=thR#mDR#6
zO-JTfhi9cg!Vt2a@z^*aUjfAGbX=^&n#lOLiiOR%4f#`KFtAcR5!)69pN$x);lWBF
z4PZ&{)_<4tky&aPEmiY)BG{;}?Gf(7zZ*}%;<o$N$L~}<<5G3Pp%g}umL2ozJFi_S
z(ww`~`c6aFVYGkF53qI3i^VEadcMTnj|roIaPEVrTi%7Xa+_i0+kBaUR3$n<zS(%N
zp{6N!E-MZ&L}HmvB2`GRH$;{p){ddTHwr(A4HrkAmlx*&*W#~H|DWo3zn959bDzE`
zBp#>K$pp(>w4}HCRpop;H%@R+!B}UC@OQP2d*CP3IYL!bw;|@GmheJ%_ch-*q<yqC
zU$jtgMZ&E@9cgM_xFSy)z%(ZkEKPg(VPI67Vub$hp8)_{RlTw*H<4Mt5Rsi~&HGaW
z4`O=S5yKG@F)!jUV8Vs=_-#KP;o9jaeAi4hg|}@A(c?z&8mZ2LspD`Ng5<G^WUycC
zO?}8e2_|o3(o`U6agx}-z=q(By=4UT_l|8StJx*^>-+0ViUmAOYLAk3V+WCpwnvZS
zl%L}|YPPYeRP)$bV(<?S4B@a`-rS>)yDN$#t;<D->L-&CZfA@3_itR=In$<+OeIM>
zP`LOrFq+br9$dz5b~BUy&>57K$BdXYf*&Cn8v7@zxDk8B)6VxvQ1Jf))d_$au6*Q^
z9-AubEERde(bqwK*t*1bna=cmUu6~&K0=9>TW=A?Lq?*bru36B=AdKbzlWLudWJ5t
z{~~Hku(0IKbxdN0sO9El$F?uq+?YnoWM$=hRazMp$B=B?j3C{v4$z)8D(}a;4aYv$
z+E-~ATGbP*)x!jh0oiQb6Hd9%5cv16%t%hGsAzF*DG_`aIVdH$<XC<kfN*0-Sq?NJ
z_heE5k1KmmO2G%tS+T&)^r02cxqNsxA#CaKm)ayMAZiJEcShJ+5PP2)6lfl>kC%aU
zo@Xb-t=Z2l`VMr<`kW)}`IBlaWfIC-Lat{Vh7UNFYtz8ru9!9m5@wrB+`zR4MqmQk
zxf(3=^(kMQ^@)hqvSSl#ZHGrD2KxUTr*}R=dsSq@jM&D@$jdvsu}{wkB^7nWUB9+Q
zl#9eLt@Wrg)O{0k)!yF+Jm)cV9+4zAG#D^hUqf%pefD<!S8fn@{`yTs$o@eeWdlQy
zEdu;~;IuEO7z1HvJd(AF^)NU*J$%^WW~OpgimO6BRS9r7<!|0iEj^%u%}tVPK&OAk
zG#=P;a&mXa*HiB-MBJ$Qqy^D}{q@lIaRa0|FpdJVWtG+=R39tUp5q4yH|UGXkMwqD
zmvXJjc^@U}Gj9ZzfW;t4*CLCGN#6!|<pr;ObdkK=g*oV*2Y1Hi@3==wFO3EBSTTn5
z>Qr|c_R)rISy&j^A8+Vz2S0o~hXkhAHQ>d;eyRNL8UO!l#1HEmYnml@-~+q@fVz9P
zD+)Q_dBNJ47$>0xdn>P!+_d2#wkt3tJ|?Mc!~0kVuccz|stAl7jPDMt*J6DD19c!E
z&#9_9TE+K9k>sIt=IhF`(Cx6yMt-yUycelcE|&w1rLBU#IIy={Od<(<RYh_2U^Cn>
zAmgh90(@xuF64c=fg7+LS`#kLefk_|lPqKTYr>PRc+Rig`mo<+3DN}lvta0s3^TYh
z-D?s$GVpFu<hB-RPZ;B`!Yri|oqAWp=?!vt`Ue|t&9e1mA?T;pn}btpv5~y&C<(8s
z)7GXyvt8SCv%<JCgghct5a#+dCJNA{Xn=wL(~zVa2w8#<CfFJN7=%m|NaQFVt}2l7
z^U_O|0i~^pPbENsm}9Q#>@+9d-PQR=fGT}#=Q7~u;ZIfB2*+)$uKz;(CWIAo^HfEB
zO?|_}M>X0e3d{i4Ws4uOBW8NxawiDesX`8rB4>EiQSbbXm16{6e)`hHqZ3TWo&)e^
z=gpM2r&4mtGTaOL5zf%_whnkC`03c&8k*jL**-X-qxlyXS7E{aYp9(O=IAQ8?euFK
zoXwpuyJZO!6F4b9$)tCEV}Aq#29Kh0)@!GB3@}z_;7Akm0teRrF0(GGWz-Fh^}<PP
z(8fh?2JCm2bbmZa$nAdNmMH_st39BIHktXne>_(stnW{*_v{bdx}5?mU7_>1u~Rd`
z%JY+unesyl*xNcH^2dAw9nUp8+lJdY^k*_>k$-<L@E$MUq<~#kZ4{{0+q^m7<VQW(
z^C^6q*{ky!{~2!3s`o)?sO-m>h+HTp!a{T`eCZ1Y0%UvlSFA3$^DojB3%)t>%lkEc
z<9F-I&$CEy6Le*7F+5LfR#*7rh4Q(xqeq3wa%F!NI?jtS5r20Yjvy}2m92JsChXp%
zN*o&=w&J<Znr-!QsWllQ7j_0G@>7<fny92#)?#MBNF|X5+%*J`G`@V%fD#BdRh~0>
zsRoI^Pp#udx({aQ6Y(U&4M??jj-0r3Nb@Y2<iONcfKiJw8iZ6wmkQ4VE_gT(PLU(h
z@?NRQdvPejVD0N+S3*hjITo+<+riu~=Nl<V-GWivvKklItlFv;n$M@SiKa?XM|T*@
zlPv&eb!s?ZSss4sfYv#4%4q^6(x0qv7JgMcEY37sajTs0s2;Z{jKd2!Y42cq{HckQ
zO!2~C$96IjEx#bp4<&){@fwoMGk-Z`pU8s^9LVKy)C}!VMI4K&M(n4cRNasD2_Rkr
zP7`|4&tPBFZAq=VLyw%mB;hRyBXPnRZ_F+K_AfkHD&*2P6qh_(mGH|N5f&_*R5rh>
z!{9xcg@*SN$R{1}x|#Y-7TA-a`jfSYe!x(|%kUPoKTTOg<=)&}Cn6-g-0RMSDZN!z
z@6NmDlS99gOzgtR#RVD+I{Igf&$nJ-Vur#BJrQsaKf>CXDbyd=fbDG#u)Iwq9YPI{
ziFgKqT!`0{Ho4jn7~bhIc|8UsobJ)dt7J@uW%jc!H+a@#g}7@oz1Qm?4B4B&<#ZKb
zm2=t&!ryqAUL<3UCMUoHfNKY4*RLpxs=6=}T(-x&PDj(>b;pd<EUn`+2X=Z|>bgb1
zS6ouNoYvZ0dCv$?`E+cIEK_pb^|FBfwriJnKI?M~ioYBRjNboeTDRE>`bY8ivAJFw
zX`ZQ4Z(r-IzB5n<Q(`Xn_|2vvDL|Oi2J>t4OUKlL>N`<j5NYb>Zv?-rIjdHiJRz&5
z#`z>5P(FZ`KOV&{{dXEtKCpGL+p1e0gY1Vf5BDL^;D-7~D59ic&^v4Wa9fd3TAUf_
zF4fQ!vu-80HlhJ6C}mU*23K1(ksTXVk@lefL~XO=7V`C%9Ute#ZosFGjo?_Dw|pK-
z_;6E8%X4si1%rH=Oyi?H1bA{`!5RaP2|kGvksJeY>cQQH8ZDJJ!vl@rRjWz2KGFK^
zlJDi^EAbHiERs)jy4zNqZ1%dAp3og&HV?#HA8qW-4NM*dh;Bf-i<U9-!l1^L*3KQg
zOX!Dk^i9A44bVrqdcU5eOHt=%=T$pjsShMM(6mSh>sp679Ac9NB?&uC)%npjxTAPi
z8zKR6;^9QuiIfpntVBBU@Ag50o3TQn<27d!h_?DhYFS`hE3w{Lkv<w|O~iz2O|$a-
z?@G=;oIBUz2T6JImz_F{nl;Z3?t^VcoZNw9(KDR;6aN_{i!1t8PE+l4f)@8yff6@Z
zCKn7K8Fe_L#WK^4@Dq6nX2-oJW3$tmBcu$$2g#+}h<)us@$I$QHnR{ZloyAGnmc1(
z$R>j0@a)<;Cn<WpwCF0?W5=C89z3fVxVKgd;}!!EEnBw`b=Kdv_`O;`<v}tepM>1B
z4Gl1I%-M)Hw+^i@SOu3$AyH5<O=Zz~O807$2R6502^?FHcEvO5HXG17d0qEy8(r1p
zP8lnY9y{S%YbF?Udge|dWY^L=diZ)|@jO66(Is{y!Sxqk`|`n54JB>sXO5tpY7bui
z3HnE$s?GzBLM&k)*90VLu>u=We85y)_~Fx>X8-};5{RdY^awUqYQ*EGfR1(Kf1^x<
z1)LHQI=ptS0Je(zi5f_(95fOYx`8ifqNJKY;)W&=0ez|l-7K?ir!{~FKbwmRnB`B@
zhldDaRNurA0|C0kJ~#jYfHHARSG*xd@ow*dxgEM_{{jT$z-GffGnw>*mZUE+XeMmt
z#PMG`Od1$LxCi+1cM0Zu4f~=7$W@*jk}_ecIftxn*iIJ2+~AR|jk7esC1w4@DUn6x
zA)Q4)7Z_~C20`||fp;z@h3%;-c8@bq$UhTjWu{46;A`FTW&ghJ0zVnMVJW3Q8%A1i
zVW8EGi`P;}hZK;-Bcv|Z7sx|HFjjiM@tdDgz}~U1fjj@xEVt&@gbx9CFAoL@w$Z60
zq&7zHn!251pzUducz0eZ)<ay}>|?c7d7xUer1f2XUY;A{$`%jY`{x^gD#?($DFux5
z_mzV%Q7%>_*wCTR8?E>|q60~X{GioQK@z{m^ug>8leh$;TwR-siwecZS9_fuB5GFx
z*Hk1{-5~X=O1lOY4=tTc_Ymk!;N7+9!PQnSfjc!oyWGB_zo3M0A6P4lw69klkAQ=1
zipr`ttK+6G2L``9#UptVvh;%7d$7X{tjXeC&R{VOx<_d!{v2znv;x5ZLdtmMMF4Z<
zoy=OHWaAha9Ujm;8f+<g=~2!1Cf9(j_NAw{ZhdTf%JWB`6f?ryQ%_|ttiTWMeOswA
zI`&rmwSkd!78;}s7_-|VcFll-T$S+@5YSBP!}Dd24{d+h(JqgT6HiT`5Jj^ayeM^l
zf_}R(Apb6Yzc&7Y@D*jy7Sqjr@yHhA>#LCO;2&Hc;J7C=q)9Mo*XaUezBe$=zDV7}
zB;y6Vo{0%i08E*jf&`Eqz)nkr`nkddUBG320!sV&7MwdLE?eOv=0sH_!p`*1`E)37
za)LvNIOhYCAr1Oybm1HCt)<G1WttIh$*|<?yu48^#1lU6kuu_nVA&1<!9o=imd&rf
zZi?(AU)yP^JMSzMKx{?F3<X($S~uf+bu(4^vh0n!ad}3nEQnFQWj;Y$yV+lz-9NpA
z28uuV6#fw@IDMI|O2+3s(KjG)y&_ckw(dqL#NP`RtE~+P`etj9Un1=`6~2FqTfKhC
zHirAgV&%aE3y|ZjG#1gtDWzS|ROudV^Xz7fOoGqpz1gd$IG?`Aq`ydg3-T#|KhzM}
zVPxTwtB!NO`LIr_l|ax04p|DsL`Fcl?xYUF^FX?(Sp)YuzXxws^6R0oE`pELHaE{7
z{G-o-Wu?L?0h6&tRfN3z>b)pMB5!Hgr_M45bj(jrHg;A@uPf4FtY!@#&8@px7;Z?o
z^kV$IeuLi=6y}L@!aR%DTKSSat>$q~&tgTKOv1pudzIF}0uO~>T|gOq!c>BnY03j+
zWm>fEqRE(>-og((W*Ac7;`MAGK{$D>Yh`KJ=Vo$uA*k`@M}~<OA4>Jbt4dx0Pj-m^
z*6P2u$s&CHuEpehMVFXo_u65bT}X%&p)Q6boC{sK|7jq%p7Hi!5)19tFNKe}TYrfe
z{)$1Ar@bg}|L%(msJl8FQ4V~rQH^!6iNj5JkD}E_xHyRcq1mk1Vl$!GJ~+YcJ)n_{
z$)WfucqpI`4Y+>2{*|8^r#<-<{`Rx91ORYf@jUz@^K1n9MZtoYaZz>cy7mmX^}=P+
z`I@;v09xNy11a_9eLxEhN|Hj_YqffJ#9GDa;W%C^CMx6uwvIOA<t&Ty(V%F6A(nyr
zYM%inC?~Ti^zQA!^kGgvr4AkQ^OL<WnMxNBO;BZyRZJ`ghX0bY0({c^siCekWxAtP
zp<-d7tpLDF0iN&)$GxAq7Jb9bdiQTmHi+VTb!xTS^9Dx@Q7<a9GrqPnF$M!?&R7=@
zci%chyi<^wHtzHkH+$>FRPE(=G&KLM9Ya#0Ip13&OIArB70kA<57f?r@z!k;4-E8T
zOF6l|ovFz#N;FKj&7_J`J{6*x9B6n11OHyoI@|7+Xk(fMiLga0WP<F9aD^czR<Ilm
z{MREM<Dt3u_^O44;x*rhq=HL*j<=Ah6Xyw<ujuc!mTED{U=BO+$q{`MBXbi3a;h7>
zzaTID69zm01BFO#lRH3<`-r&-WoP}|>F1cJU!BWXS%J9ok$ph&!`8uxM9@Ay%A_e`
zF*A&GtU;eWm6+`#srJa$gvSs#8jO7ndyniz;LVQrH*?<hBiaj6fM5N4inK;b^!>fi
zZF%lrGo`0@dBtOWNsxu0qk^aP{R6q;mkC_Uqq#B%_vCwZ#sjh+TAPx6H_?|enfDj7
zYFk39eDPd^ZW-;>s0uOOeNjqW0H+O-qKIPs5cu~?g7HplrV{<hV<WQXZc|tC;Dyfa
z5elHOOC(Gx7CS!0z3=LV1Ec#w@kn+V&4_1IgI<hAqircRf&vL2iY?}2LHK_s&Le&9
zR>Q|~uK*JnmM!-OPo|1|+Vo|<(!mGZY&l=9p#S_?1ZvDnNqKZ@dqBQ55GWsUkmc2W
zt;xJJzwFj4ZHSgCe!Q`K{~7y(mjC#Zf#u*mu(DRbP1}bw-|co&s`w$~>g;zOW?4W-
zxc(Hb$r2eKbtN5NzM_t(wPe8oH^X1oYVX_1+%IkI@pBEVIQHfae^ClUo>85AdS#|W
zi&eMP@!<&q_VJE;1$`c}!18+>BS#a<@Q9QC-Z$ym)JLDF<xuj1k+mGr)EWQ2^tYq7
z?6q+|l|)WQ6=Dne51!gk`HC#TfPZ{dOT9~L6|d&!Cr^%@&E=Ujnx++cI+%JG=uOy7
zfh6pAe%H+Q>)1D4ZA^wQq$|_mQa?}?-^%oMXwZSaz7~~Mj0FIEwgruS77v0z&|X``
zU|`K#eWfKSTDl=5?LXi8Wuu@adzcdPt)H+W{vI^)InStjK&ke65;SLd$FYooJv1YI
zZk0QSG-X6xke`U_!Nz)Lg*MALxx;ePnJW-GyXNi_cytP2ljmJuq$pAUIlf!K^t<1#
zBV@B83al%}a%AW2U3O(op<v>0&*$=c@u9{pMhM2W{k5TxP~J;gmU>g582#fSL$Es}
zy{~8^zEayW7tHG$MLh76r;Ql0LGTn48Cs@Er{*7H$mSR5E)!;ac5$2qelO5MoGo|E
zdbOXxdkst$0U4QuionnY_##H<zkH)4B<`L6l6ykN=OkATw)hDrgM~tWEH<eI?HWR0
z@KF{5x$+7&V0XI%t^w=`F|^@z)&Auh(l?az2@IlpUs&G$^UZqt`zgH+v9Wn8MZ|-<
zr+pJ@-<1m6zMw}l;r)Cv@I;LgDM_3XHh;3!gij_kx+2Ip$5X3x28Qp$T$m-a*z*rQ
z08%7?zr8^fX4Zv(SWEpV2%K8#zKvifLxA{;yOaKGN|pgC$SGsz*_h1@3<ipg<+w*j
z&&1D+{C(X6DzrF~$8&5cE<Rw5sdCnk*D=s~#v@Qb-PURZd{IE&+ff*qu|D1)1>JoR
zh*QO&$WEtG?>O7L8RezN>48X6U@#L%aL`RV91Va$1ZXaZ_}HXq5@K$-Kn~o-Ng8r#
z%Fq-^o}{E?cssRa1bwkW)f>}7Etu`b3r`sdvgj8<_xF)Nv0F>Z;LbCnnVN)-yxe5o
z;+x>dx7|&Dy@Pj1bb{E6J*VC((%`BP{UVEZA7SjSeHEr^L)iB<Do>|kCB3Na3%1qN
z@nhqBk4x4{-;3|nzpf}60k3_kiJ}i`HQK!9z?2tc!sG@ib#-eISL=hUI^c(^#)5<R
z<E7_{DSMFPqV-1Vm<3({0&K|Y6OPt;w_EEI1!g*?K5CDCjZp(aDxXP5-$lDtYj1M`
z(Pp)P7I2#J;y5&qiPBPzY2Q{-14aYoORq^1iSUBpDyTJ|iXZ^7%LnoEQ$F9`571#d
z%nY@4DSjN3jz3&R?2>fkTvk%Xj{m<k3Ry<<MY5IVx||_LC<DdvzNfE}V&=1=V9=HI
zd@1Dv4cX1|r>h$T1zsk}-<L|yXHlLK7E)$gqoN%#@Vo4tom`wHgwU2_H&U^d@l&0m
zz$d5cATrfAkTc<ue&$xwvJ=Y^)xMi)hzMIlg6T4stJ0qV_oDawH7G4mPXD79aL*O?
zJKXyz*z&aK_aRa2s4Ev1<Yt0*9pF&I6C*r$)`3CqA?(S9S=c8mR2YLp8i1jNq00y*
zS_vjv>G!m5LZ%kCJKbX-Y4ZJ4I1JLQj()VY%3tULgN?n32ZNm1Ur`G?hI#HTfaa=3
z9<>xQ1wK{4;hPcOj#Bl;tMT&It$kbKz|Y;WO2i{5ldohsPU>*rdHFs}BKL8?JvaY*
zZb`NF7ftKD<UEo@+d}cI&ArXY+V}ptED(Ti@3O#WPjRCCn#beh%Vs9d5x4-DZ}%g$
zc{xX4ZOc#GvK{taiT;ZW1&mI2kNEhDq#JVTueu<Yr#r%+^K<|ZP;y{_wV{N`ET8z2
z-x=t6&Yyc}%i;l$g%X`?N9D8SsnVaGPEQ5vln@O~Qi_Q8;?zWhYusEeeGh#gIhr`a
zO@der7gs?r9Q;wk-!`gN+cY&ar>h)ut^r<VI2fQ^VVYo!e9i<;T-G{i>CeGBUc9-d
zh4->HYwtE<+|acqc0dLD6(6pts?28P$q6oA+}ldK`k>a)Ofx;FzZW~4ci5jtUz||~
zn<)#8>Zq{fRtiJ8m1M9dKvE0m=^ElLXAHal;emROz`<Z{6SC|6{_|UgKSPcMk|?lH
zsEleV>snds|JEN^Mr&UFApTOwioszKjINPk5mKNWVtsy@lb2po?Y$<YTC3K_Bn1i?
zQ&QKW3T}D1?x4>Y10$B};mWgPHO`&=ZLG6}Fl;I>D5+zEAJGv#?3AInKm!wXk9;@W
zCK@Y8d3D+Bs5XOH`Sxja`x+;Gxs=mvGM0f3fMuU=8!|W;p!j`DydIlsg276;#!QM2
zY(%6=O4#e&c))ldyEU)$)~)uBMFLb3jiq;d*UNCWe&b%H>fRA`NmPs3RhI2o^r8-`
zSnF59(`JwO#Uv8S@VL%&zFSZXuth;y;N=~`Icd~S%_25c2nvHO96vC9NB;d0NzZ+P
z$e8BblICTZLP}Vt|F4UY$1PyN0LEM}B`S68;YB4bVRi=YzUU;4#At0xFp&a?yAhEi
zJF)SqJW14}4LvJ8Fk16kZ@B}-0dcPJ;o2sV$9zU!bP$kHLGT>RvdKfqhw9`^1kh=s
z%7F?S;nyHe*<S8vVy4;wB!{9`FJ!4dg7%1(DBlP%;2=zJX@${s%ZEycOTv6I6JFZ6
z4Yxb&E62%cM;-nd^Sz6lTB2WM{m)VxfYqnUVC0dTErnG35|vbTzNZdO{$7xKbv?Wh
zS?T;uUO5O9kWk|4QUYZQ2(f@ETo9P%{vbkXZGPF4<*a{g?PHeGEZDv)!0Ynz+L@mh
zloxSo?akk(@e|Hc1P|qFlUYK5`AZoD$=yjO&}@i;craCU)3vMp8CY<5OX2tZ6s{aw
zvLLF=h0jTqsqw-iEdz!lOMf1*6N1jnji--gvA)%G5PSr*Wgzn(?>Sq;X%d<>c^$e&
z?wAm;ToA(mU?d}q{9|{~a60w-w=>>+!R=r9jIzWjqZz(n@T+-E2OeVw?@X%D;S`N`
ztv>qaBV$cRT&d1C=ow0DYw7hc1aG|$lesHD^9BVJIH;koPPkcj$rqVew14^3lMx_<
z&%c!(HlJBmJx!7)fq`+y2hdXsVr`NHb8HHeH>1Wmzx?&=z?vVf>o2e{HD+7eKGdR*
z?i-t8PnI41OYCj>^W5rRgx!7lrGC5HMhmqcO3*(mEdWORAGhmeU}OmYZKcJRiko|f
z+7ro`vL(vYyc$|rVyXOgjzgW~heZ6r)-{x9ajLI%XrtR<DM7U143FYTV$OAteN*zz
za)1Eb*T3M%tBvXln+~#u!Gfh**CbG5!^Ej^bq{TEDSh{7zW<{;5CV_UIUUmP`t3t>
zxPqA4hFrtPLmXOLOB$4><wh3P-LkvJPYdiZ(!MuV?1)s)O^U?H5rKsc1L0&>*tB^C
zefVz$T^7;NEGM5dEgGGK!@kIDwwZ=~XZcqm1`H}F7jK;Q9njsP4GJr`wf7-J$iz8~
zuac!@R+>z>?{yf?gS-6E)RAp)Su;oa^)i<S|7`ENyX)*jHPN(UE3J^=|LT1PzSfDy
z+LP&==e^5Zj+x;af*8oYedCU)Yd6Tza>x`PsSDym{KTHAwDI!Zj>T_R`xzsfrEJ9n
z8FGW2zIpAF4f<+4X!@)E@^|_4#bq&7_K3!m$d4@JXJCQ0eWLo8Z1UGb0_4D!Ln>_b
zBkA^v_alHY#?=Z(uzjrKyUG{_8qkIv4N@NX!XDv9h&?MIeDpZ!{T-Em?oUALT4$^*
zH5nS2>a&H}pU>-c)goD3uT`IO%Z1v$Jj8*7@LuwxvtYb;e$MyN5c#<IR;|4K&v$J&
zey4&%(5-grJI(gb*L!;Rrs9^$21Uu`<H#=C`{U*!Pb^!dzLqk?eaL|Kj|}C?5YK~O
z2*FfM`smuRAHI*+gT&IFm^zelK5@l9Q<(OqdzOOZql~pjlM@TU?&9LaiKgg-+QPfL
znvO3iV)TR@rSg@~n%HSVr@B$!{YNCRKu7OYt!j=T8{b5{Dtpk;dmelHAn^t(9PWb;
zF*N+(r9V%Bm!`0Bj|xn=n~t$0FFN2_VL;;Q5!mM;$r$~g4HDoFT=RbvGx~f<91^l3
zrAgZVe(PC?l9EGtsi-ZPL4mJ6w3xXnV1JQ{Q<LuJY9Rnx@F+gaG5LoV;p%GO>lrP;
zk=(<q<(>_IgNp{EI89Wn#&BKC;=}vRQxmZwWMpv7(Y}ya1RU7^SJB09&h_Y`m0s&y
z98b=BWaUd!MB|lmalvcpNaZ2<Y*nq%rrXks`Qw*o<?khB_-+-H-C$!~)Z_?cUnS<7
z-YbSL?S?N>v(mJk#dvzrYdL1@@$&NW3VtrAtJ_(aZ|FKs2DD^=UI{Rc*ANUSA;>pg
zU7Alv^%0T;oj&eI>rpRX9xfO`^{HM$QtdO|ds7ULK>^h-I}<r5VRbSN{__kFPHZ%+
zE`ZAh>>wGUr`<oabubBgZcNCMO9OihNIMlhaC&0*wdk~>=DR&2GAXdPbynVgl!y^8
z=vmHaYmaU{N%CnyGFL_UJOHnN5HZ2@9zOVUKWg_H46GOAa?&LI$!kqWbn!b#ntb>U
zyxm6y(!E^})~3)8jbuIH>xj(Wx8`n7EKCzw&77sgOJkwrWrmUL$JbS!dH$glWwpuR
zD>|tl6V3wr<+bYTo?2EryN_ow^o-%rC$X2bI|8mhuU?w<etZhd+m<DsGqkcX1?OqO
zUI1vZ8=HT$^N{cn_nsg2YOWta;OE4n{V<FTJ_^YEcUEHJC3DZ_=(5Fdpt;_nPIsQ$
z3G>?eAc4!a@R)mhYqEE(RqJ&{Nr5#zJ#$gve!0WO{QBr-iT^CXV`ar$pdOdm?NvBz
z^fQ>BMi><7G^6vIf7dB(8P)&)Q7i%d)ht1FW0wtj=S8I2z0n1LmaQ#lvXwv=*Qn2U
zvCs&7a@X6mQ7RmVz!JMxd|lmUH~?nb_Wlc)(GbFT07%<8qyI>2F2O~NfE`aHmMP`+
zb63PHXR4G;dQCaTeN}oj>KOez$`7}5tzOO2wTrL}`9yZNEvWIw5Zj{2#&j-iRJ-QM
zs<Dnxl7~PK56?ad2H7kJCmkm>3})Q>^#GxfjP$#G%;5r?3>8-SVrOT?lcwBnbydg%
zTjlwe2L_U*T6N~#$v}yi*Xx}cPO5ih61wV-kCq*lo!H%MNdL9TW8DlFYJbPN;&r(^
zo8ZE%%Uh6=0-Yx8dh^*?Rs=^~t>k$a_re_!3;R7io0|o~D$$jm!{qq*Y5-rhJ9CeT
zk@-1O-s$eHtgJQ%7h8T@D;zNiC+6AKti1FXK2V`Osp1!ysZQqf9$-{-;Xy@Bz~b30
z407%#f=|wNW|q{w5maQ1Nvw9Y+6d{r@)Gip{4iG!ML@E%w)JDd6>mxN2#-v@5&l;v
zg0`2|^b?1te}@0iuXr{r@EMeq@uKSI)0ha34E7TZ@Qe-rL4yHw7TL#2W$jr;oKGPb
zjuKcHX@gnVgZ4BSVR!#)S`-w=1<>fea+-!3OGzB?{IsG_O0+QI-g>Vsm4TBjXh77v
z@^G)5aPnf7L(u_%LihZb_T}xcobtN$x%ONj0fXEXIQ-`1fi!4I33q6HY)1N@TZ?8O
z?acpT#Q;tWgaU}3eyeiy*g<_ctTvQ%?pDFJ&Pjlp+X?LlT{T?I$L%bC0y`m~B3jsu
z-El`fb>}S|XWel=II}nbscFp=Nk>C4!g|yJ;)BmJR-UYxy$U#YuO3hS*G#FSyLw#=
zjX>LIS)+4$)h`Vjn&>YY7gYjsM1-#>aE7W?%Bm*LGXUBeQ0?=wEd*T;0H<0nE-$_P
zRL|?kkrRo6p@R2#p&N*tfQ1e8H<ZBP#!k2O2^~N<QNu4j8A~UdQFxpYV8Km(ZT#oQ
z&f6=j$*1qFGw*u^)e!3}ExPtgYxY%3yv4ptsl-)81M>jOwkkEQnX!5gsChv8-8$LW
z(7-4_O8`?=ArF1R9S#9`YR&v)9WN#(<^e2<HY`c7a#^6uFVH|Dj0hPfQ~7?ZKhue;
z!npgq9@08?+9U=j>Klsnqjgyk&+7Z%uDGwOcVi25_o<Q;RG8Ln;n~@QS848MW@ZDX
zLwYY!K!^a@r|HKd5jcyB1}$z7r`y6>O-;jjRX|UVtkHTgG+f5zv^l~^Ra<v~5&fwn
zhwt!lwMU@hSI!IYamew%lh(RD<wQYgKbG<b@Bp7V>NK=;3p8F}IN76r<1*2EX&@`J
z4S35~M1nKZ43-;5VVlX0NFRw<a|#PJ5mhEl;ovocV;3)xzjIqpcrPpw*89-a`(*uC
z;v7a>UdD$SCFL<O2n&ri$q;qUTY@+w{C%w=2N&rK_=<J;HD0TKeg$z%*EX&~=W2G+
zaprp7-u<Ovk9mLHl{hAM+d4Iat?9#AJ~SEwi_|e|r4{xb+4W3*{^z)`V*bg(Mw$sN
z3(sv+PIFBuSe#spjJ9&eO}Vv$=opSkfo?M6r5GgifqwCI&se)d9*N&~6#2F`%QNF|
z+A732+)Lj29UuqUb8(~%YwKi*-}}>gYtu-h{U+%3x;9o;V<AmauFUSinQ0FJcGQHr
z4bYl}Ji=VRL|+Kspbow(p?qJf-y<@Zo?c#Ob~rPZ#X6fFoB^^);2b4<_?133(*$1-
zlIx5EMQ|}R7k%v@9h;7xiMcjxu$p=ZOfWLfEGI|>0H<6rIAh(^4%81!C0Tx;ETT7i
zWiPP<J{iLCI9F#~{p;iRa`r)C)alXkWO)qDEOd<Iry$_I!Vg?55t{9J7k2YQ`;F&Y
zypAAd?Ba^19483i#30e2w8aI1zR-C~bl7&-?ciVv-yo~tYVf-mC?5?=w&Gg`yZy$@
z1u&~P_rGv)T|o0cC`h913PHp&UH6U8*te!SY>2S}U+lkjIGAemdm-cPq?hrHr)3s6
zSP<7~v6^l5&49KTf=42FlT38^A8TDV7qKN7p*WH25x<bGL`oR1^NPE?&f+LK4dy0!
z6$o*+(0IG1#KtD*fK%pF_RCO=Qeg4`4O=D7Y9JT3<TwQiMbS+{yW3f64_WcPbwhSL
z6GGq?H&O*9=S6m-(uxF=$@PiWCPr1@n_<K>$UBRNj}|u%mT_v*vP=P)O9oO>R~;@T
z8XE>a0I<*)IqA6Mdz)<Iq-xZXMt96K>eTbkSLzin1dn;&YPIi2&H$nMPs(g%0$qd@
zA!oce<vm!Cs!UoxJDJhw&=9b@W~-vXR*Y%D7nl;gjf{!mD};XJpa#BRPG+~N%Y+w@
zd%tNXD5Y*VH9C940}*6SdtljIdIY*N21!xt9xaE7T<_fr?p77Kx$`?rByVT5zy%xH
zU0QM+R`CkFh?Gv}<gYEx;TI4HYe{K0REG794z{<qYX~KacqgL5<Q|ul93uOGErpf9
zF)<<GmzdgXYb;{!?ZTp>DtyR!tq-ZwTla9ux15=_Vy<Z(N?L3UJ+&L(VCF8!S+Sld
z^}2{bVDIRbmy`t6+i5$6X7rvKPL0j4_LAv4jLkCZ>{EYGW$-u{#*FQZ?!<rkN9Z%@
z3^#zFx3%pV1Xh6CwR=2!S)gU<O9&>Ee`?Y>G3!06q@t4h>2codUT^+3lqBN8`s~@_
z?>~z<URO1c=XPl}9&UcJamm=E%Z`dwoz<#0I{M%bRE^R6v*m?!3*4a6U@xbr7c}(_
zJo{T`4E1@_oZekhraboaLPDLbttE#7ky!DjCVBf@GSZz>wYy^h-PJ8}@pxoJPsoVw
z!|DreOg2B?k*&Y-yt0u6+n5#4gEIPXHunb0An_{5X)vcK4F%dqux!Xhjq|w;ny`RS
zC^6A=MR~dR*w^*D$e^BqJ4bQtXgnC$A5eU%PoiiPE_e$AdjVchih2RqjDp_?J)Nyh
z=5&~eCGSmI*)lx&c7qpu|Dc0`k%d0b-94235M-chr?<Gqx*jxM02)`t1Llv-k?V`7
zP$jRXa@$g%8Q)?6!nouKNV$QSQXHRuXtyAH(9(`&8ZZ}PADCONM7@#UauHxN06o6o
ziRz`3XZO-$R-sFY2@KQG_gx127ml#@nHjV1!X&j1%?wa&$K))~4ekhS1D6dg5|);}
zxdQkC4Z#-ZRKu*k$C7HgT2zlASxGF6(V=%|9(>>{TXyfzG35RM`_SmlUQ=hTIheW3
zWr4;hV8CRfV^^ZXMe>niJhNyG>i44pP@V}A<xvFHBk6o<LDd^U_qRtoT=f5E)e6wR
z(XH@5S*-y58{G>3lhq2)ztOGmKUu8+{Ttm1|C7}U(7(~G@IP6t@b7dh{F~JZfqDA~
z-G$5d3!NH^XUOx5Q}45*B%wi5RoGbN$=)d3bBaMwGuqvFq4b`o@7zGND_I!OB;6lJ
zJ%D-o?gbiI%&p)5+3sMXfaF8fs>s8&?`(ONB$E!Z#8SO&GY)gE;+lQ`oi%N=qX7eU
za1gA1U2fO@-OWG}vju|xv*ZB!ziK)7-<2Gs-{TsxA>1`KOd0GVfWiF4CTmVqt-PrG
z<*dzD&_7UOa^vw6;q1@<LV|MQ7)NXb+^-Zq#pdc<q)|pm-;xNfZ2^vfaQu?C2!EPc
zp{BeJ2*--G0`QX<QNxZj!8p~O#hE`ie)*e{`Qa7clmZ6(rEBkaPHo#vNlW*bu0I8x
zcT_Ooy-<dqbGM7}S+)c@@PLEW^GC&^bXdm@R;CLN@888#kiCLRt$nwhM)E_BoQAgP
zpOsiS>mkxva(}k>Fle0)w$M)7J_4o1#T`WGcy|yT#(4oWPN|!@v#$ii3z9x_7umqw
z)ngc$6&NEfla~V+=@(<ZjDoO!nU*j$y^lg#mT&<Q1y?RBRW)zl<ZHNMNu95Yz;js|
zjk~UVFjzwK8UeJ!^hlcQ$I6Un_^?QW<S-TodF-jj*c~4^X6TE?K-FHAgf5<<=+h`!
z26KQoe{rev2(5Xs;nUBlfj<$~Fwt~DdCtM+{Aiiw?WUi;wVsnlVkkcEBk75vm6ep2
z=M51f^eW?Te_FPo=ud7j71vN1b|Q%yS6t3(OjDZj(bGdVzMG7H^^UqQ(s1neJOk%%
z?oOBO)8KA>W_Tspx9vHvqqXer1aFlqqQ^vu2Pw~j+>hq2?RczTNuGFp{c3J$Sm@l%
z4zsm$CK0rZ1T6&g(c0zP^1r;_WUH2cd;YF5V;fy0xzU(yQjxsR7*3Bak_6~0JJV2>
z@TuPgRGuj8B~2go;NEvPhYTk#T?`bVlt4vM>}1*4#T^l;gOfw=P%gJ6&8?p4z*A3Q
zm=v|L6E-@gJQgfmikc>>eHFAxzQ{N|bIYC?9<`{H9v&RLT1n^?(LTBp+ewN$Z8N{>
z5Q>3$7ugpjFz@^e$hLS^>OLUBlJq*qje7)xKD?NZX5e|@f%#fU>(vL;#wfv`8Vk69
zp{z;$8nP2IIA6lgy;*xWFgwy>-}BR~F%WahQW6jo1II{4{&;D_D7cR=6VKpN3Z{gT
zh3?DPpuwRvJ-0=ueP-a*ZK2BTr~bMKgM8oyv_!&E%FAcESq4U0%uoBSo1ZPCLyx_0
zrU!;McJ0xFWjM%%ob5|hKu7xT-qtiHz74p_AQ|7-q*C&a6M!w{cRYFo15PD`TjaDK
zu*RR-zIUIz6R7w}d;#PG=5Lts|34}Ts3~7xDRmh3d0$v7Bvfk}+(`n-+tC5&9qK9X
zg$KXz;c4bAI{@Ifvt>p`ma@v#VzZrjkKd$JI27R6z)qLLYI}vyk&zO&nSx~)Uf!9S
zBv*6Rm43-lfG{NAR?KX~11`S*hpV>$s;Uj!a5o^RAR!V;D-8ky64KHQ64Gqx?vh+6
zB3&Qd-Q5i$(%l`>-JR#<`~Lr*bIy#zj5B+)+3#BGjpw=V>n@~z6WO(zcZ$@I;H}#Q
z;tYVm)WnWrpfDL2ksC30O>YkPK(o|P$27-f99t>_I~NL+eC;%uQ?wxa39;bLlKq<i
zr^{NMX3>}Om!Nr*D*u2xK@Gu}={laqO${J7ci8*@!n%{)PNY?8X1|yHH1x=4Z$*N=
z`37vL$b!t_9~DKIwKuk$hA@WmJG;W#i12O9)Z6_rNM$iGQdwf;HL`0ww1{wo`+DyA
z2}N~Mplk=G4;}JwsZ;87(accwY(SKvKeZ_beuGCa_V6NkuJ(nV1BYtx5ePB%1mUu*
ztmA#1majs43|VZ^y61=)KyIhyM`Uk+1*%ZiE|CO1L5zS;@(LyfhTy4%iG!-Rfalo<
z`}#??@Q>l*`XMCIb(}G+<%(n=hz;c$;-u#3EU+*hcRx%16)(iHNlVWuQAK=f{#A&K
zo=0lG@pO~dZk5=7#=Of5F7O)p4e~>b(!3%LYOFW~`|(8{jR0$MF+pHo%E$%cx2P<X
zSn0LnM@j@Tja_3kkAhKVI%d+{P2STf)0w^ct7~dnpl+<IOA!sgMyZ;NK!XUq*7164
z;ojhSV!}JVcr3D@F@2>veU-B=0BQ;Exe^D~6?1W9&@qxbRQO*IY;3!8TJVH)99ug*
zMMK|PY5+O5c_guE#n~EapU{gPx`&gai*MKW*+59Z5@Scsu^-IyLITsdR5)!bN;*@a
zJ%qUE%5UdImbTqeP1sYLQWc1axVSKXq4ZclD$ZV~XALpzfnK}r^TNL^&xX>rHeqOs
z;A6ERYRWSrtXB{N`<=SEpk_hdeiw-AIeh9g&`#o8PgH(b9Jv+Q*C)+h01u1wusck<
zlxk8NpB$YPnb^Y^$VYqL=n@sFlGDNb>J_0dW+2Fa<s-4n3Sg->hSDt5mkHDI^LIDC
z#K+zFwi<43neNY57168*Uv-R4wR8^`<kXyO2C00Kh~GKS!v}#Ol$mnt8K4+gURnAG
zMlV(F-<`e7%Ep`D)U;}LOo_IR^7u+N=`Ppw3kITR7*eYxpYi7NU1Kv3eo84a90UQd
z1*h|#Ra<vs@zXbi3Lqd7Fx?omf=KgL#^<E^yP5J-S)kvTX#6kPaxC!K!EU~0rYrBu
z4ydyNg?}Qkf*vazE{6s~m7)VrV)8wvFpW#h*<`P3b8C9pJ2rrKTgQz;g2Bl^+cw?(
zDREMbcdm{Ja&<u&3JeIHNj+v#lN|qg4c(R<Nm@ela{F(*b*{;sA%e)%q^jiX5l|6S
zR-RNP$X^SH{1@slqj?2H)gU$Xn*i1mk@N6!<#^S2!j1(gWf2aK1vgc;_8<Rp9vbcI
zw?e&hfxpW^#DM{(G&Wj1Yb{VD&p8#lAkn+>^am^yu9O5<O7%~FwY8mL1k$Q(AT<XO
z<z0{<vR5H=g1uDahlH4$4~@v*KJt-ASe)nGJk<NmtoN#_D&xMM)wYC1hs6YQ<ap*S
z1d@TcnYSHvqXbjU*U;K@bCdQ)9>t>65des6QPWe{iY*AhPED!VviVr+7uFxXQO@qu
z_BBEyZ>#&S?!7cDtt7(CB+m*m$%AVvPn=eCXzj;Izd1Xol5>t&=!FdR<!wFyQ9n?N
zZ*80Ap)5CK!hF==YD1gstPS1%11~nFg<A#2iY2xE6yznUNHFxX(%6yTJqE$mycpK<
znu)|1BwPqEr#-5uXcaE5X(Ugd`X10N_@nzYTElL$8(q!`|CH)6CX^&kxv%6L6EO`f
zs;0_QU_D_1tL_*zBFxR5mxL;lS6VW%OTXTcw4%Cte0cN=%c~EuPD=bvmPv}y);9+j
zr?z9he*I^wfB)M4)z#FpXq2bnvN<Zq_KCkLOiNoztj7fFOIp#u_EnI^z4;77c$cjm
z8VN<#*RPz-?cF#}ArXbrAEK#<0&X`J68V@DJt~$ok=++RxIwxBv@>U*siZ~-J20x-
z+}p#TMR?KnYj3<#%c+lTTzjJOvx<tA)5P8$BMvTd7#0>*26BcD*8-*&xq@y%@!<{R
z_LA{D$!@RK=%;J)2OUexX-!l)h2f|oRr2tzz@TTlJLVCX5S?SyxWOv!r*o2S{W8{U
zrka}3Am_c=4<|R?`KaDY!<mGZMg4ifbXQk(A<Hk655KR~)Nu;WxvMJnAbT=sIB7Sz
zpuzIYOo6k7#n%3Kd>cd*6wkQrdprZ-+K2Yp3IJEOk$ChS&qr)`()m~KXiTf&*aDwn
z?_l%&+)NFmII!J5sPw|3jLkz+Ftr5O(+)%q`+3E%u@!IJcwuBb1#?$HGg8`7W46xA
z**Bw&12iyWQUX;i#rm(8b-*I=hgwdhaBf)td-vS9#ccmNn&n&*w6o&9r^SsZ5ONSq
zJ)l|V%Kw=$nv}~W%V=SUMNP|xjK#a*d?DyV?Ipyz#@LF<{FP1q&5|-E1mZ?9K594L
zl-`3TR${&5y^jrpg98XH?kIFUr03X$*IdC}%@mQe7{mx!bEO?ub_)6LJ}^UL{COWy
zCFi(N22CQ`%$yjtn(HeXOvQ^a`Z8w=z3%tYqbJOH?E#$Hi8>x{uN=Q{s@Ax#AD8eP
zQj6KB#yl}EQ+mc_G3@J0?8C&kP~x<j<?fLr)9XIC@(?JHo9=q=zIYQ?=u^GJH`nZ%
zW7_r#i02KIieKRG^9<0Ny5G7f?&i5Z=0|4>&ZE<PF&t$zS+9S~D5hZtF=b!50#+Qa
zq%^#7brAfHxx@k`A0A(+TZ^6+Hb?_wN+Vt^o)Ez^JHW!_^IZZiG)B5Pa^*Nifs%MO
z7rLi$o}hNR-hvL1qFF8c6sDL~i*<Z<re3PE?;iv}R5iPQ6(*isdq3Xi_HbxxZv-?m
zJG(NEY$q`@kV%BeHinAc$KkR~lTO(BlhxggW}JQHqt{FL_^annuogE%p~&mBjDoGc
z)ih&iDiA4v;8|uTe+!-1dJD3-h>&5o@pd&_(?kkVJ<d@l0Gpp))+GEa16=V{mWMJ*
zDW!q3Tk2r1xC&e@T=4Zoa!h*eQe^}i?B%vu{L3w1gVvkdOSp*!Ax4i7V+glbaT=7|
z@*eU8n7?I_Gf925gWS4p%9QzGzw`G9hlDMh$XF$=EcDxk7IrlJQsik4kdRX`4{6v2
z#>OvR7y-W~CANg9_AA&0XX8vX51X6KauBWD2(?^dYvC&W6MuMA-#*FwQ&?V}S(bES
zd|cA&aB&}uU4CfKe(Y_Gg^=rPv)xCP^V6DcxQYd*-JZW7l==kyscNZtQ`!3O!|-)*
zM*Kt<wL!RHInz+}aV0ISVYs#0%N8T}ipya)JI*WJMjO>zchjGZT22eVe3SMVAxrf>
z!?DwQQr<mROs8nlY&rAG22|7lD%qq=O(Oj@%<%R=lHnS`(U{TmqTZnRDzL{DRZ*d)
z;QVr)BoqxX5-~HgpPXV6vR5o@mPh;hORn|B&g*AM0?6m|i8FI)h{^l7*x0T(<p2xw
zw+M?jm-zwFh0pzdWKp%xR2M4uJ0IRS@BOoC7Ot2Ka3#0zudh>nu{$8=ugczfXrFk!
zjFl$Ab?*N&d2mgN57JHo30ZMqqCtt{<zmry?yeBxFQ(=@kCQ)Y=niaXcI6ft<0UcD
zvC`}|M>`cK(hL?s!Mk1|#Qd)3XU?!1$K|sG=bjCvIKkAHoGB9pufpSd@*`!KIhgos
zv>ruDzQ*=*bYyQXQe9lzdIW2_)2Vl|aCEG|M-{ni`I`@E&1Tw-eDq(7GY&62yk)e}
z+x-opP*7yj?Fa3c7yf*<bGlq%(>-NJEgSE&dS&4!ytTDdqBo;%z!WH@Vs%?_Fwt;>
zZ%TAFs}>Gv*PV5xZ|k#k4W+xUjOmeB$`-rO&BcFka+cNpmX&oC@sxbMHzs4Y$z;2T
zziKBZFVDudB$3rlLHN8Mwup<x=Qx^T5-ti+Q)YubwfSD41Z!4Ehum^I4k|L7OqY4H
za4MDwYdA+~HKriHS}))1E0RkUl4nJ41G$kEL+l4sg1%>T(ewo8&Xy-Og*ktZMn9M%
z{&km4^~lwRj;t?<@Vo}y{QD9)Lzv7BEGo(<7O0v8gwsF85t=AywF0UTI-MjL&Jbjx
zBuG#2k$y&5>OQ8%4I@B}pI+IO)BfsbQPodd*;hdShSfAspMJWF#pbkNY%%>Oai)%K
zwqMJ5Zx07V8lBL#gr-WXOjJwLhDIiz7gc}XU#N?#+x^Bt{R;iavEtpBN~5owbJF<|
zWipfLvQBopj&`uyY_kSg`uzRsGB|$&G-2K3SmN*F*`<w(3c%fzV?8dn^>^{U<d^RJ
z`blAkyEjCDOtU$@({SjPXGa$9+_{RzlTe^Z+<TtbfV;G=Ygs^u8y^=APxIHzv5R@0
zcnc%r%_sXnUJU=5Vk#@o9<aA>az9>xEO<Dzjrl?Pr}*2=5jGHwnOI{Fhn$g8+<Y<6
z&PFH3<S8fPxXjPagw)4>Q>0gTjveK_S349^)1k22P=v`_qdm$NdfE8qX+qsmz+PXd
zK{7Hny1s6j2cgTlS0CQ@f@3&`Ev$rf1fVW}sRGb5fa3KYYw@dt#^?N^aqD-lqdT%k
za`ca8vUdP03PcBqnq5FGT8cf&%O(7l=->q9C#()l58=Ic)@G~J#E2i8O`P(1#Ho$`
zGHjw46@FjBTYpzkS*k?iIqlD_0wDd7T?8k_@)+Mt+{O{Vg|?(X;s#**g+hC9iHPDg
zU*kd7P0v>Oo-dz!nkwGdt`J0W6CFhL6Tjhur(|XheQ~vsfO4yVL-i<13a<XSD7|nj
z#RViQiHJm2RZ)4&d(>f`{W+lzE7e1BFerV=k+wvaXWC3SO`MPHzPa_7bI|D3VoH5|
zI06~DP@NG6^hZ3)3rUUQ`%JaS?sP6nwucS^My#~Qo~Sf~3f9K%puQ(L8#zB8ThGAA
zynsr1LE4%Q<W?8tom!nQ12By&-SR!F$xT=9CMUXnE5UIkJ3BqX5~5}r)0u)KKcjF;
zqdNpAg_M=ERF$(Jdg4<?VlIzd|9o8X@?;H>$f}P3mbBXN^?)<6FXMcZAT%!Qo|Cd%
zC8qhP`J^%jXhmfpx$AAG7i!Pc2}9~G<25iIH9L7iUOAS1{Dde9sVu)<OH5PHH;G|#
zAGuU7Tjbm|he>mF(kpmJU%z`yiQspJj>2gTWO9RMLFq79$`<M2=Z7n1svEc=76L?W
z-h$5C<+?rVr|^ip`B^*};U73D#_qB4XsYjDja-Iqh}uO?X&#7gAG`Kimie(y5Zs&D
zb3uh&8008dh3X9{T_4n*K0*}b;A19rat%|pz3S#IRn;{y1X(@!1usr;OWv_5T}wtc
zT&j<{ADUarCcO(Yu#`oFl?vPJ=Fz+Zwj__R2MB*!vd`RUeV^>pzxqaWDxJw0tD+s5
z%&*=X_#(^`c^DgJgeN4K>Esnp8ylJELqO08RpV3QD#Z47jVpcl8yAGk`})+`(!<0{
zO>lwM3|3P4uDhT9Q~yYUqC9Z$^y-Ywk$q5&r^sBbu&D--owI4ZvvuD*gj~Es?*q88
z>KG+vls{u@;A1*_d|zVObr{L*S9l^R;lc+K7`2CC%V?j)<dDKRg^^!BTCm21FiuKc
ztlvk4hZ`9i4+{Dqo;YjkKIpSXFh70DU8Rd+D%2{AXf=GncTYk@Do7FK*11@~M7e#w
z(K7VM>sQaqzd=L22+VoNx(nzJ{C#&Bz~7e+4(qE{8WJm(MnhvQm}L47sK4>z0utf4
zYgTI}MeO+g++&S5oe&OjgW}uC?(Ka_=*1h_aiJdNACZ31FM$T`O8;4)xQSe*`RCT+
zdNecxB8+csziW70f_@Dm{UjMjdXO+>XimjTkOxq(>~tW=xR=VMhjtcfQ^Dwu^PB$w
z9o-;sUq?F9E7+grm9#kG1-x^6^a4Ns;}bA7q(+hS93o)SL%;-uC7Arwf>`(d?pcA4
z)yt1;Jv&hH(8M#V?*Em`BJ_Vbh4KY{XA|&9k?DZXeNgB%CJNB>L!Yi}qI1G~aFIna
z;WnAd69*Ae@5ZSkyR{=C^a2DAa2;<bBn-+zBIA^((nBRUy>Q)-6+NHxk74%<Q$6U+
zfc|n+UWS2V)ubJ&n08Ti=nGq3zi|6Vf8OlM&(2E!7)HV?>tBcOrLumXRu)%p+!q|c
zLF)D=8y^PFqGnYjKScuwP(_yHus}GfSYplBYZoO=FTEbRyy`u^pdeIt_Za&;)tjOD
z2HjFXhICtUo-HAL+@P|64%B_aDTWXtuDGcH*}ajF_!9v#Bnk8<O20n*Yh22(UEgb^
zY`#f~0m^r*_wPr!oSxk6Mqd(anUXRGeE*&1H?oGzSJ$s!Wh#C)N{Wwib!|R#vfYG4
zEh*Xa-D`T$;OfK{&A%`3lnP`2^662XGZP7p{{e=_y$NH$_}*lN?iJ)d3dMZ<`$L75
zrU@SW#QmdvrK&-s8`bi%bal%M)RXs9oTrm2|G~)r3dL`vkMa~CgR#$vEYfaf)t$vG
z_lPM0=ZK#ubzQWZ;gIUVZJ-E9B07ZLj_u}mynNPPJ!P`A;I)nx(4$FQ@bhf5Gi3y}
zc;@vd-ib7Tau{UlK)xjcut}Q@-Rv(`56F}n!s8#*SdLFmc^w&t+lM*n*8F}Fxa!}R
z7)>E(Gc7RC7M?hkZ@<C=L`m2p7;1g{?}Dkuq#IMTlZ3G0@}u+Q1}bcc?`~Qy4o?*#
zDY8?(_Uw(oO1|zE`H{O2Y?u&p<6qLyYI(I{>@R{aq6tWodEA^A=Q*DJMXyYgz+|JI
zfUzex3^@9Qj4c09^N+~uo$nA$E*1bN40LSC^G)10Sc;gxz$Z7%a#``SpNu$taRDtu
zvA>Ko2g_ja2GNSX5e5w07h4kyC%<ydh-X|LU)H@B|JH+FFmEePhQp*?-_t()6?~&I
z|E*Rd$kK2PM?IbpeRJ-Um=rOLKnVoiaZ0NF%*Y;KO<F(SCqab~-t+GLH6LO81tL;!
z&(>Q2K2WQXI6t-D(V-#_GFSBtDU0gYs+UVw@HyYsH!|=~=HH-C>Czdu7Kt1ii`&{F
zjZqSDU<(o)RMG<)xD&2lf0y-tR(cNl{Gx$g3ob<T%{T_VoVMEQ?dpc}&L+x{&V`+<
z(1r{cF~{!yM!Dg!a>>SM0r`Y`t+i+>d^PTPu%bC%^}Fr%gjqKgd>^)EMthqwCI<Tb
zA*bGC!p{Y&r#`uULs3D^89aTe;AK9{hafO>A?Q_Fcj^70M61t9t;=nHdWQt_Culv%
zXua>o#Cdj^!j3hZw3&3GS<VR-!wY3bXZL_j<loaj=tl<h97G>Hg8K~7w-)UB10~?A
zt2NfV)5D|ITO0FY10wUzF{6~D9Iq*lj|yXG(_KbPA|MRyFD%B1-y5aq^ZsD_9bo}Y
zs$vh4XZO~0`udytierZgW~Sl-XsT&{_P`?%z`zHz8=*V(lSOS}63VO&ij3O}Euc=R
zx!y1!W^lkXioc~UI^D%HH!-X+>3Hg7WCl7i24w(i;$Bx3<dMK-V9#VBQ@Olu6&<C*
zkigdfR`+6eql)*OfDJ2ym!45^B&ol1u6K=x7kO8?pHSZD9UOHv1ld(f_T&RNmwL~O
z9X{LI7B!zMS0$w}mW>K5hy(mWDmk@ERyY}#)2_!g*#NFxyCKiO{ray<<Po23)BNa&
z&m_&(^{&}44XN;UTKgwQaqkM&yJfDk0{2AH6#&9<oY!dju}dJyDBIS@VelWkftOP?
z!zgFw@Ov8NSJKck2h8N!sb*JW2ZnuT%P`F%WBkQ14SB)LPykAGU<i?>V%|Kt>hKo^
zz>MjghBV{_Oz42~bioUM{D$W#KQuVeGAqwool{nkmeBSEWI6$5a?!D+Z<}tBr(8C6
zA39qp-*dzSuZKzd`+4l%r#nu*4=F(t`9?|}e*<)(T&1lQ<NSmGa&p%Cte^Qe^wAws
zQUi#dH{a7hZnD!Rk;~bIED}=Voe&ir4uHx<C55qB4x2xAjo0S=E!ork_*o(di@2Ms
zGL*khvcoS>GPvU5b~?L(U%0jWv1x^+EQI<=qb!dOLD%P->^fTwCxLGt<Wz2ISM7m;
zDp1kFeADu;Glu5ETZg|uTDB*`e??d9tNI2w_<(RubwTzcA0rHlIC_|xXL3|rMMXo;
zx)@`~hL(Y7Z`pDIJd|)1*4LCHtyAr-Q=*Bj1e4{7k+H8~Jb}<Os8j?;)q$Le>@WK@
z8P5!YHIoE_`r=rfOTHCF(b3X*n}hnlMM}OwO1{YJ@bqN`QH+hW-2T$a_j@=yFXCh7
z1(|;fx>vA`%_bCpNWf!MINgA5Z;G{+1v))zD@h^}!A^0zPFajSMnGzJ{;J}*ywUkK
zUS3iA(W&);O*NE|kUBfx7~Wi+pGXit#fc2Um5cKwVBf)~XK}5INW2RF2%(+X>9M}j
znz=qi{ylt@*B&{(NCOgN-*Y}fRGK&%W<3@}nx)S-%~Vh`luh*ty4=<n7VVJCDErvR
zm6Kn}h3tBK@mrmdl>htS1kUo{nEt_|+27G^YM0LYCyEzkG1QA&Chr~)^ovA94?6<a
z{Gy`O!%I+2>xK^`)L%g(zu^ceQ9T;BJ>UHn(9Mo$5E0Jyr$-B=TuI>X9De77XEPbB
zudu$fhsC`2_)#{~)<T|Lt2uwC1%Y!iZ1E6T>T`ig=3x7b-Z_6WlBYb4dX=%E^%p{}
zL_;g1+m7)>Ox@+(-2y_R?&U)exnRLiZ0EBW(J|45)2-qx;sQBY)NgmL#`aWkO~;`7
zZ~QW3M)j9;^&Sf%VrCzteamR3^G222-C{N1_Y#XDIq#|&LF91z$a5IB0?P{pmN8Cg
z7z`Oi$-#bsh4itk7QZud_e5(G{CtoqyfE)Cwr5JePOg7yoN&3sRWTwZipz8*kB5N+
zgP-`Yd_JLy6=a$*V@vtoxjRpd0ru;Uyvk{OZmG7R<43O%$Se~VFFMm`bwIsI`7&Rc
zim5QivTQhR`HNl>fI3G-?k^j{dsdBBn>u?LcZiloe!rfMGgU%;1$vZe!BH*@Af8T7
z#qH!2O#4g!g4Z7yE4TN1Vr*j|8$KzE*NkujLW2oCJ|*GGIS)v~HYyHg;LSEM(XPe&
zaN3dVS8SM6Tu=Z`9&Qb@5gH1~e0G2bEy}TFWpzNGC`(WC7IkaTr(;<$Ct_=By1RRe
zigowJ(5Zy&^f@d3Q|~m!L?K9nIl1o&bw8u>{ivY~5jeRr&IL}n-gFoEA+e2pP-cU8
z4Bn;X{mjqpe~tA-300&L%jDnDabqiVpF@*zU@xAJW7GAEkbFI(7JIT!VrpV|vF24b
z<^MrXswe*}vBq(?Kb<5Iks#W?PuKSkw!xcjU1Jk#*kWOu{8CBmn^Is$0tiOqwloTv
zB$oH(1riSED!5#)pGy=<e^g9dhIFkiTb*vVta`g?%{5K>9&`4xl%ti~!k_Jped}4~
zcaMr!QPnlD1PQlX0&e8ezF-Iu{<G}!kyy!1076F3Rw0th&I<C_#N1n|V-Xv_BM0qy
zwABDFG1=s1`{lbr#R0{A;<@HR4^t)6Ik!!`HL6-?<h)%_eYM(w&P;KCodgyj2dLcF
z>WEmjdsY0<c*fOOYkPF@eTtQeSFX|Na5QNp;)Jc)>Y9$J;|SeVfyH)G`e#TyaWpjy
z=4v+5x$$Tfxz>SczNP)y1AOnFkun4UG8{_YKGTHY#>y$Lj@)i<6-5@?2(*Z4jrcid
zP?q`IIi&$6F-<6Gv4aw_bw&hp3blrvLGa)oIwT5uyVe{Z36Me6okl`cS@!Z26BzqQ
zU^uA8W#^B5+TIoyI4fUJ$<{U{+$<F&;CK7+@9|6K^1sXQ#-UlMd&&a9XR1ui8wNu?
zwlEsne9gwyP!QZ#HoQfuoSYt{CjDEHjXhlQHTPr;v=A)&esIk6-Kl_G2f!W*dj3l)
zNDZ-^N{dZ&eHPE--ZCnY&d@8fC(?1(xa^s??j2Bm>o*eprp~7e_Xu(#Rj@25$fJ5L
z@eFhe@o%au&BD8?Fwt+Er>5I_Ci-r41TD4y=2dFM%@&sB5x`X6W@$3Q>vgz87Iq3A
z%|Lhat{a`P`S=(BIT-tr5Y;=a_{jE||3(Q|_hlR$MU)F|!-DsSksL`IE57c^V*BM3
z=4NSDRN9pc>;uTUa~}p^R<G(#d>!-$R(l_^V&!<u618V<!Z-`$s8?}txiPgg&#p;w
zr44hk=jzQg!1R%>_{%@&8cge^&NomOxhtDW$ziLD`HbC~wt1QO+cU><5YAvK!>mop
zSJ4s0o4wyg6+roqJai8B!03(#_N8+T$19*tef!=)JUm-7IX?W<FQ8fkbatqX@i%fc
zMKYVH6v?nsgfxmXx1B&tH^$!B-}={c)q5XW^#}9KYCz5}#dANI&+1<3P>Oaj9(%y1
zu^tM{lqie9XNnU`@qW?~f#kx(3mikWo~vK1`vcu+VcL?Z*|TJ~EFnMPf5KEyU^RHy
zg2}3Gf=5TnkT8GX3se!8I<9RMCiUy<DjlzD*&9n$)9G>#FKQgz=Fy3f*wfY@wP;Ww
zoh&UQE%7`1;gJ(*Ak~A`JN%jp7hDcUwaLld#X`=)R6?9<KG23Y+MkZgp+S8;P-?r*
zKqA}adZt-2Po1Ty?#BNW50N~T=n^k(ZxoFfM~p{<cfXsOIq%LO-*H-Ks)p!%L*SFb
z@4wI)|L33KvR2n>rHN75*rvtqQ*I@?Hc*fKRU}iz4n@JYadUH5f%{<W2^r9IWZKrI
z-3gMwKq;o0$InX;0pyu>rHn1m;7P5ZA}5L#o<A*EJbL6{XIJ6Ngf(OwfkG}nuO8^)
zg9gMswkh2jY|h;<Yi=&);u3w~`*#3_s6Y6mFXYsi(VHVLu4la@=5)lkY#2-<?#oir
z(@^ZDJPpp9FkfIQ0|H<0vk9hKn$eIpEC8=Qe4*FX!{W}Hh(ajU(+%p-1U_@NWo?w1
z)9M5fc<YY}SC4?MB&n!h1C18zNi9!OQ82r9u~ih^uW!m=uHVSVv|hx*1rODRyL>K=
z5K<%6{U|4JlokfEyxiDsav;TsXKK?aR}Uxf`l!-x=-;H~!bPCZ@^t$Fg#X`y4c^-W
z5)6VPJ;7gW4Gcf8$q{*?i#rjXKpSWZYFZj#m<$L0DU-~Vruy&H-S}`i_XJ-Aydia<
zV^xD0b2+)naA2XDw5ONxZGO&t-Szu%!Uv1p%YT`mO`HY>xC1QZ+g4qD^gPa2!;h)1
zH*6F}8($X8GqqWvwS#FwhxdWdl8nUi88EV6pU5(5*Fv>N)qS}p1360m-<m8zRk;VR
z?+vyebI6iWuiALE(}fR3)BZ0%aP1dU*i{D#0WKYIfX^<vSQ+6km~7SBbFJ@Sb_*hz
zRIY7hB0TR)WQmc?)L+9P;c;keC>x)e*FE`Fq=b4oSu0K`wVV?}O<=kccH63uyqZ++
z(p&>o{GRCxhCN#S`~N@f35!x|HsO*-(+l3rx!9w^JS|)Y&YoK3Ps8cL0TPOV@59J%
zrDo{dF-x@WD`2uddHoC2cEsO?femiMFR)AED*_g_AQFDN(Sy4wxqV#y_M6(j(e6I7
z7PqcU<GuH7yBk0Jp}c7WyY^@MGqIAH(gagd6j2c><2jBrE^0;co=Q|R4afTD!3g<l
z5Os7HlV%9Y|D1e)kGAf|Rg|*QedE36wLnNFs~GEM#kCD>cdL{nJ?Ll6H7a`Mrvq&b
zU{szrlg>EJSG+za&CD=dK@>1?jud{QXn=peqGkd)k99jQgTP)nt>E8i4_CV-deSSs
zreN#Os!#U>5ngLwOK<DYlI+gN&P_DAiw~CHBSv`5{%GRaT|dTnd$H9ED;}UFn7;f#
zkBNEcU|-3B<T>mgmyVw<cJ}md$;%lGZJ_WLe)CZ*TrVSgbzev7&2xms$xLHKBw|QT
z1A<}s{^1Up+aerqmzOKg`{}glC@8`Ptm`hEY8SOLQOe^awbsoZCKkQub&u+k8xLuk
zbBJJ|91|NRo0AMOi053d9DR$!%L|{vW`iaAnCM6ehN8sDzGwi;>m!&(^?u?z$H^Zy
ztr5*Ak1IdeSYMYHOz0^yYBtsCj<x$k{#$>AuHPozr`s;q1<iycHUOD9;W+b3HGJ)1
zy9%P+(V_~PTyBG_qC|_6v^)~n0f{qrxXUGp+wga<NqEPzoe8A;#t)Ywne&#8rsjse
z%`-!G)inAF;q@Tz$dCL@f_WdMf{ACyaV2+1#EknanA-sG;WUSnNu{10N(zPzR%?j6
z*=B7`?j_!6?Jyt+Q2f*Ta$!LnF7_tUrEb!26_0BwRw#X61-Lep=+G>e*FfY9{)5By
z>bp<Qvmj%sY=wW4R~G`Ls@X@*9jhdrqmsiESH2iTT)dBNHJns?RcZaz-tA{*E=jzE
zRSEB(iJ@Nc?1HkhkAk9*2wSz7>pmVL2IdP^llR>}S`y2S;o9}l`g(>bg)MiMUmn9I
zovvgFIS5_p$={R~ZTlx?>ZC-wi{PGb%?W=VwgVT@NModfb|BF_(ECl-NbhgQyZ)DR
zz=4}V5#EKJoFVImJ12j1W_x;OtK0;1o6v3fel;BL51*uJtqW8h60K3qNbGUHoD4Y;
zPuDoohKXy|x{R!l;_cjBJHcME+I)7Dz5B@~1={l-SI&`u{vH#C^mptL>FrPHXBOK&
zLqSoo1e?5)l1>g4l6{>+!%E~FFBVfqjMYAP*N13QVLxR7xub@3)r6a7^l%)!=-5}A
zxn~@?92LTqn2=8&r^BXf`!OP_H^7P^x+f4Ct*o!c#46TUpJKc~O7vy?7`J8K@Bo(_
zj3!u2`P2!}*1~Xl6qqL<I3!rekW%wkzZ;ivjv^gy&t3iUEjVg=*C%&w#+9v(DHU{b
zwurJ&e4H<S-*yueeLi-2254R&?HC7@TS`dk1uujhD^7-G4BQ@Ao&r?i5yg=-`q%*<
z^_Y#Xrni(Ud0+>QrIPNSLt|AGwAFeHhjtmzOC!N7s*soa7xj^#mX?LFqvVsztka&i
z487CH*Q6gj_J)=-EVa0H<{|r*+5H(G6gsDu?1o$+1I0x}jc#m5?QN~yi@v#jpLBFe
zS)k{s0+Uvqj~=^jFHF2`=dy}ztlVr-oQSrXOi#~b)=`y%r6_drG{Lr(WWY8Y6;_Mf
z26mi1h9QQ7CUV1Na$0$WJc2H#-ac7eV$OsqN?NVTjbIyB{IivU4mQphCrpMF46gx-
zk@%Y8H({da8!Q!a9Y0ojEnNG}HTi-d={J83z})#`Q7XY}S=9dMQX_;(m=EKmY`J6u
zwz#aT+=`pfcnB8nMmANfo#lfigVplcr8URF;l)t#KVYW8!#=bx15r@*a-yPq(tpuJ
z7<`nzx(x;V)BPvA7MT*)P?QVyOLq`lDUv@%JQ4%PHkDLg&e6eCS8QyW2N4p!%E&Zg
zuSW9vSY45$q1f8eUsq6&7S+?!12Mag>vB(EaZiMTDs8D+Z^G<%>Mj%5;?`2i>{N4*
zN;BVFL~*(v2{oVd)$Iy1g&Vs^d>^;m&#U@@crN?Bm6q;Tyyzzt;3%4JS_3;+v@zBC
zl@`^Z!~Dt~^nPoO$x3Y?E)e02xug)u8p$`{e#ldubI3PV$pdOth~IwUKhb+J9RGG8
zth`!Q%Reo&3-~&O-+ZFMUS|7u$k29MbWBrZQbPeex5wqLxtU~UXza7N@<bB_b<1pl
ziE0!y)o1D{(OOEqBmEY0aZ@6osiz*Swqcr!9%LMU*YJ)RV&EXpHWrwG$vEJ>=XdB_
z%>j`aJDd8O`g&=z8@sxZH*Z1m&41&C{?)lAfzQdHxAR-xM(ft81}jUsleq@ksmmjn
z=TS3>Pv7wP_-u)x1X#w=o3<W%F8!mxsz?s|s;2%~TYGim3leNs2#J{3yhAp@VR=~R
zh2D)EG>Q!p4$(MB05lua)YM|OLWpOB`t*M|9o&OmInY4@i3&O!JB)KOMyvkVcxvAj
z_N#9w@9u4eBuM)q_G<iWKG~zoA}*{;DCg7e?0r#tTe>W4=$I-%W9ww<;t^CLpIqqL
zpTXCIi`v#=p*bauqWus|ydi~dJ*h?jvAlZkN}t}0xd1TVm6brQDfOZ;qe2tyMdNtJ
zqPbbz*^P+3n`k)1KwBKugIlL=+MO$1i}<=>%QuyX2o07Siwqvr{;I6A&!Y9gVtfNk
zho7w+qnONCZyi1Q9}mpoK7m6Wzx4-C9Nybkj+R`bfc+Fo6jRbz?)Bhic@!jlV_B0_
zbe2h9{keF-@ymG@9>!BlvuclJM}D{*RXDTV-Vwe?8@}vrX?bN?WvOO^+gvgs^c?kv
zm#DM_DM3nHg#A#%CT;GfmzZ>;n<amI+aFUO!={rO2Y!zc|NVzM4PpC^D<Ljyc~f^L
z+iYf!_yz~|o-Wg>8f&$`9HK^FIzq<5julNmd5VeR`Lxxw>3RH<!%d<ct)3S-rEryt
zD@sMBVsIOO?jwc&+jH-}>__<0)%&R%zxn1p2JHRV2efR=^+Ru<CY5~sKeuKNaoQUk
zi3`M`kzPS>!IqSf#h_ef^>}etX#FT}`by(M&_;xf<Mt8?$p0kqIqQnR^eyb&@Q7Oy
z{2vWfb>-F&nQkRL)`;?OAd{K*bEm_RGOa<3mG0LaoR3S-4mS`z3s6rw2tw4`1`Exo
zZ>IOuArgd(+q^@-JUf(ro0@L)`7MYr8gKFz8ZT7W*RkB1r|SL9x2X2{49u00x7@O%
zx91|C{Gd#s6cvG*%FN3hQmUrAb7_jZdJB-$NW!X<B~8@|hSG3OVZB5Td)Tz*X7>A%
zf1bKfW8LPb93{zH+Uf|vT?`U6`OtDT6hxJqU#c_|v{n*h{~z<>AoF~Y)BcVGRuXGZ
zs$%v6sqkD%SSoRM)%<irBFeO9PRyj+0Mae&J4NEzi6GS4?V~sQ8of^;ZeYuR?ihkG
zU%W)lsIo`3$LRvLIg@dO(`rECz?H<~JK!tVhjHlehaDUbatxA47^yMu8N$TB@-+SY
zS!a6f*~E)-;@-H?)szU)zy~)gc<(K-P(|FD1f-;dD!od>TE>nagVpqvJ=ZBTHgZ9_
z9Zd_*v6(D&8ql+--sw2JWtwxlpkdZhOyo5cz(?X`D0uPk#Ken$Lk|4pX(ukI;ErFo
zVwVa_f_PNn9iMM^b|DJKnifI)4n6-bby4hJ<^KV3xMN_7!M+$}3H_T2?>5BC$;bQV
z+n_!Zru+_p|HJ0_Ve5&|-x6I~hWH|S?<vBo@Wo!_aE;zq(foRducBuf5UHWQ*HCB6
zKvGxQUO+&=suEpGmtR4)9LqbhGSx=~pHF}}+f%sUI`va2-~ax`rdpVfFe0_=Q>$4V
zdYr+=$BkOtZd}4}5^ux|me6h(Yz6hpV2R}ay*w2rCY$7T&3`i-Z3~OJL+Tlg_;Kpn
zWG~1pp79IPg+2AL`1dabKimlIta-lDd=}-X`#JKi?pqT9%LiXdRrLS93TO)pdy?}C
zIWGTv36qxgCFa&m_ILzW<Hv|4%6~YR{X2nglcw471C}lf_NcOL1LX?U@6WFcNXNh<
zBF+aN<G)uuL|sr{db0qPzZP#oKCDIMgZyg1GU)yM-zyf*qKo&5GQM7xG5*p?2`RTC
z`}HrU{@+izz+PX(Lfz6HwEltmz1VJ7^}o*skpT<^Y2W|%o4<YpKOrL8{{hdXkq*P-
zd9H%r*tpPK_j>40r0I^dp(*ykZ!+kA-}&Tj9|6OgC}|$YVD@?SUFg;uXNRzNt8|mz
z^2FSOPbO<0Rf;qERJ=FwNGeDX_^e8kUsy<}k(MR;j)f{VCRAER0s}+;4LimE{62ss
zX(-M>OWRRBye5vf5qpbA!{ai1c$Bgh5#5DJjJ>kfO>m!^B?^5~B$sieLx$Pe4Trvd
zW<mVS_TfDFFyP>ryC0~*2<>nDRFEzBp%I*~mXg)R6Jb92%YvnDNWiklycNY#I`9!a
z`u~hQAQtY^F=<c#hHnym7vt<BPY_+ln&*Cg(&yjA#OEkYhF$3hg*^!-#uZ+`*Bg6y
z*8}ATYY{8bNg-m~-ds>7d1E-(bXDln-PZ88xKr_euxX2E!#HAn6{+d8Un{}YVsCDo
z|GE-=y=xd84=(W1Q~uw<e)nt0w33N1nE0J78TU{5XBLEpM!Q0#XQ>UHp?r-DwB4aq
z3F7pCOsvi*7u0(9XzYBv0XT~x3kDS-p~MS`wYq}bRolt8h<~>=e~PAhw)#9;GOW|Z
zdLoeRB`|mbZ`0+pRefhb7vL#%^1mYl=sR<<wPACu##>hmyz_)pVL>~c%56s(W@!x>
zPA_AJv+uEDcY<#3Z(V1K=3Jfj=C2R-EYM|6@2_^o3uXpwwa=kF-j}Q%!;Lc&042R`
zHPF)ouQin!4%ZJR$QG&}RAbFjq=~?MEA8MQ6A!X~$$v7$aIEK>7dShYt*y;%3?<^t
zdyA%jbgtFCZoXL`h@WJj7K@6eX62y%J45pSx-8w9w;E}LbOb2E>t_{CsMZ-7e7nR$
z<Qb4fs3}@}+ZMq%SgrESa@@afxi&XsD3~;VYb_{v`}wwvhlw9rwKB`gH~U<udG^iw
zlZr|_i;1AI^})ons@-v1u;t`*sEgPj1_^dnmV^&RR>-R^)ryE2P1OI27!Mcd7p%ke
ztF@p&YNex+r*OvCiIc=cBG;2A#m!LL+}zmQ-06tY!u4w8KSvb>4Q|&}GTKQbumc|M
z^`%UD(o7zHH~v+6%L3;<`vn@Bh`#$+4RyN5uy23}uOa>V<-+OzP7mOzHo`@=g;}Ge
zALZl5Vs3xlwttq2_-lmQp`3Q|;#17lkBod$qr`w^YPtP6r^TIIJ?KqXjaab<|3I?q
z;^0t>SV&+{py9wxs(U>a3@d<=@NUxW@9=6|oH~a}w1JdIRmD3i9SFwhzIM~nD#nsz
zP<42?Ia94NQ6hT^%-#P)XZENRxg3!F6ir9Ix@OS0Vh!jrFZ&S}M*urGF{xwuRjNO9
zBZ3BfS4rd^FIxD@3LVKR8z{%K^Bu4EvokX*;F%Bob~fryYJTO+ebgS=A|xhD#9!o8
zOwye$8WO*<y2<B0z2e)1<bz4fQUZ~}#3d!?D-1Mdm%p0P=l3UaNncn7+FAyS*@RS^
zUvu-l9-5skuqyWbMD9cT;&OYR*e951*|yfg3(=@A#?sLA2)ab(jN6+d2PY*mOw<f}
zW3jOb>f3U!`yyI5uMC!2@i*aJxT?75p}vm@yoITrm$LjPnYmBwCh#z!R3ZCEJY%2z
zn9N&RcaX*<jtHF%WnRcbxtbJ}x$`n56yXMcObUkh)K{8J-X?Z3<X0hU-}t?QGMBeP
zq99!EgATMV=ddm9+8i-5%vz*bpL*l`N$D9(Sy@?apd19%M;jUPCZCRc#~_}zm}~f?
zp<#AZK}ttQhw!D9H2$2F=jQmk^R?r?eCKMbSdf|X{fq4W-Z<`NcjL}}=)SDHJeJ*k
zZKUGl${FET2JOQ7DoFb{4go1cjrg};4*$XJi-e|nd+q-mybg#edda2Ro7yU7R?CB(
zYdQO8rxvYPyS~)8MK1ncbzuG2Cx}Q<v8RxJGT{;kZLcb5O^K?!Yp1|%kYbr2JH5;O
z>EpLMSm-TJeO{iV8bhmCh~l#K-CUEwqNhjv-K@*v;&Yg|tTUJ4tgx7v50b0X>Hdgo
zA9RK8dPV~CoD>UDDZX`YKQVcHwpT#I1OPVE1BVL&22xfID2W18Aa7b;k-Pzpx}aq5
z#q`e-lttCGg4!fb7uofHmn1A9t-FlwbwC&MFlz}rn`<^HIWH2Pm!djlr~9XG=b`X{
zT_3?`Wd!o#_wgGjFdAT5QiITG{(!~;pAi_$-d-1sVie<-uL#~xrpgujwjf<2z<gT$
zHdq(C!dC_d7s34{e6nK+vN5z2SxcbiP1g05l@&mIW~;tWa({evzRTu3{1tX^WbI^c
zy?DH^K}8nc<#FSYSD45U--i9fTZ_x7&h}IttxdaWWgX%6YL6eXwmz*xZ@#N?-25l`
z`gBuSOUrI;_LBepVy<oKDQvAjX((Og-iMjl0tpErMaXAxta%(+1_fh-!|`UN;Rcaa
zF+4oGe^OP$+0}Vm?tUegRXt99d;CU{0=u!1hoQHxySoQradfksii!%zERbPy^$s%P
z(p-*9D>-4U!f&AGFdQ7btINy1n{%db@+WPTKejpACanBj&(qLJyM6s4eT6SRPQMKk
z{uy~NPG`ExaibawzomSrUGUl3FN=6<$__g(oMLrSV8^z6VR?x=Hugaz67OdmppLQ4
zdUReU=V00Lh333myl@L5W)o!VOp^dg<Zk>k$10e-I;4#OQ^+;H3jC0nX`miQ@TT-7
zEH6Jl5+S(#x<|ikbhN^w(KUB?XTDI%OA|OOJwE;gqeGAL%dk8zFW*~Gr-#zX!A8At
z3(QV<w+&yXz->E?f^2BC4*Qkhj8;)u8FBsc)hitQNE*1S%h#M>^rsjsgA?5DYqJp&
z%L7SJ{kyw*W^`;hSqTT*3Y9{cnf3{d%QvT+;He4JzC{_o_N71)m`U-B?1|ptw%#}o
ziU)(*l+0cW5_8~^gc}5+Ad%c^s{OHNpivpgoPbv1#Sx_kFB-!SKt$vF{6Ivjhq()J
zWa&yUL>H%@el)9)$SjLqRTjOPCe<c^ngsqVqd8PAl=A=yz}qlW6YGQSI|#_tIzi1w
z;{F~_DAjXm*j9*lS8f)g`6Diyn_pl``r&g^X(_G7g0i%<pV^u1zweXaH@iMdipU{2
zEJSHX28uy<IaX(K$65(Q%X<5B4URT@1*97D$--~c)YMj1SM#fQWW}WizJ7+F<ln#3
zM5I)DFAlF`HfA`AwRVPU712bdYmMO9jJ)~)`UrOW&s%@O1Pnh%1qI>4c5c>-b2KK>
zEVb(Gj<?$EvVAae(M08QBd$cYCaTYKM~wD`=koK4_GYNlKH{;nk2_x$quuauQ&X{H
zzzPZrZ*JWpH^t`a9CwE=(I6u^L;;(wp2ez<(f!H(A&m=7S{vXR($VMhRZDg0aPXdG
zq$&LUD~o}iwYB}6yCVJQG9|&f;*^#wQk}8b&lSH(U`msp9>`0`u-F}X`mI)-Q;XZF
zEz?$4BSAj|{4+4vpXI2@t6S?lv~z1(MC!3V?Ct|vkA@Ri$v$*37IaSn-IAu}IrjTE
z-=#MIi4O>--9&mp`)@<S-fMm4soeyVdin7>8#ms~*+7@nCsdJqlGnp5$H7VUr}LD4
zQr$pvL=Z0@{@mx#4tR!|<SnM$Pi#k9DK2taSW<I}qAx%ju2`(?c443nxL;PYZr_xy
zXkp&`a)d6>=?Yg^Hc1(h+A>%r=?|&aw^J^*SboDgs3~xKYrsuG*4x=R+pxOpBzSvu
z!e@Unxtc$bpP$F1S;J%8*}1h9cg6kW2O=yduK+uMlEZ3_&-G3aE%(yJ8K@%w6~#<P
zXDA?TiP-h5OidcoiG$c;x9Zzn52O~EbXc$g8Ek$}jz+28?zLEJF&Aj&`%vqg|G9X3
zl21vjUZ;jPO|1GPu$Q0Rs<5EIUrw5U&s0--ha9#s#BlRT^QO7}Oi4v~A;e>2q3V{O
z+Y#YcUwl|%tLtotN2fkZ1h1O!j{!!!FUGScsKuor6ku9;jGj@f*}~37X>l1aF`K9Z
z+0l}LWkCjW6KkkR&x&b5cAaSyy(BL$kA%xjLB5`Zq={JNw(3*u;e;|_ZvhX3g*z~X
zzBO-{bDu^MIPnt83yP}Zqn2y*K<ivR+H3qt%;}bPC}c9@_`G_5)~v*R3-kDM;nb+$
zgFED~Y%Ixw3;BmVA)8|y-B+8H$yX5gL<EagZlCjk&ad;oop0+*z4CGlKPNFs^)xl1
zx!m210gl_m!qIIAn&S@Fg~`$P@uJ%VE5lWj<-zv3?At)K09$xlnEP#O!H$~+(R9WB
z?E0i%IYS#-oN1b*NE>C5_U`ZqzXuMG8$IpUCZ3!5F;!n(Zi}kk=wY@U0x{6MjpMY?
zc5d?#4SldqO!v{;EGl$&J0H?8-@eetS=nYWI!d{JV}KD*s=GG{Ukkpz^m#6kt7aqd
z>Z{s)GeF*@j&SH7-RE&^^tm2Z@3qmxLtf#`=SvOV-$tC;zh^Iwk<CAMAh-emVQjk9
zbabo~5EByi$P72N*vJ>^zE-Q#|0{P4IXa%}l&hhw-@k|cE=8Rub9xjAkg3)fn}~>H
z233xIceYdV;)^gZD5P@ZFuZN=%b&1#$I2GV?!2^C*w-$jsg>wtzEG!s$#jiLgaXsh
z*ak~HZM5c8oxw<;njQJoGq9apGc@GBpUNvL8ef?hU0X9mxPvUxNdNTSn>a2vUww7G
zt=&9VZZ4duF$oB+a*Sq7qzWcQgWY*FH5aQ@uAQUPLt5apkAk_y@4WOC_HwXU?yB5K
zuPGk1U{$5p{4)ba+4$;<eu|3z2|UT-RwnsC$K$98Cej*BksjJb*QO8UMof2>y(MAf
zD7?XP1e`1N5XSBdOKf0Je6`uOaobLvrba9J{)Y?;YXR#}QkXOWzirFSE131#PNtWS
z93o&J*g4oVSXcS2ue)D|D9}cvdR?(kHW}U;!mZ8+Lpk=g7~zeP2{-n)TLyUyLC1Br
z3`b{)*Pl2B-n|UWUARA)IGeLGl<Dj5*QhaG&3)ktB@&re-`86WS4?pfCz<ax;Pob_
zO52Ua$%u$hPOHbk7m)k9dYEWvu5ONp2bJXf0}57;#tW|PwyU)ARmR*2lDW$lriS>a
z*gZNA{Pv0%9UVW*kj!hoK=uTTNOa=aiTU{}e&^;JPMf=g+&5tt!($rh9Rnw)j{Ad*
zPxwWlJ2()M^=mion_G3IG#~bc9yTnVtk#P#^?<gK&*`pk_NQ%kH7)n6ZY?A3fRX6^
z{#YJyMK8OJlfEAjMqKIy&vm}_JL16(-qtS;ZW69WR=Rx~6p+h@S7UJnU0q1D5Ar4c
ze}%mdx?W!y@%+5Mc#Q?n*Bgq~QE{uKgCui2pkgKdV7L8Ax2}#L-)W+Xq@SH387=(d
zgwi@qa(*U@+Ok5V$~Y099qY35H}Bl0?0~|f9KH277H@;nb(4&9O2y7F&5r&6N6=$A
z_`p}~#V>l}g<j3MVMTN!Kq0YSBqH}}40wYJbCZh+!)5Kt%4;AJ+zHB2{P_)SMt(=e
zqfZKTC_cpVEdw)sMJ?aLhMq=SwRNugV?otGNdyyMR3YMZqGzNPk`qf;EUC^8*aew>
zR`VcB?CFqAE<g&1%eoe&_G17ha+ww_(;j#rFPXGm>Zj57Ct~II>1hn|fhbs_r&oi^
z%wA38^e-#K!D@$E*cbHkWG{zEHZm&K>1?a<dzu2Kk;V%lVm6HYAfM$jbl0dpf<kHi
zdp|P^9%2AFo3P@qv%WeQ*Sw_ykiYT%5nA$azG)Rpee6vwe4USQ!cUY~z5;DJx(5=j
z))ZPVcwG-%n#M<GmPTia^@3hu{*joNH<IlP9Q^^czp!@WaI}|PB8Po>w=p%KaCH_e
zkAB$c5jEUwWd++9XM4-M_i?n)taRv;*W<GukEo@+z3Ja~u!H53+z=9B-UjG;deu%(
z6x}KmANKGh+Y0U^#;aIq*K;}#UyNpO!i*;vIj`0H!@_jD1gp&O-LBUnFJi9!Y%q%e
zuV;I04bef5M)lru;h&f1@2IXESAwLv9rOutq*oW4w7?(4Re`B&;rtI4_unx$BCvxF
zY_Op{Yf1DuCx_IkVgz&1y3Ti|7`DbMH|neZd7&H4bgA~?$XhV=twzH;%EO_#&TWZ9
zOyy-=KKgc1hFjLqp48Qib`8agD8IIUMxly8gj-hx&*<#<*jNb{Q7RY(CGYM`J)yVY
z(D3-qB=bsFxDxCov+khpbB6^T5<V9ff%_*g`OcL;S$7)EZy7Z1JK*#xZ^;^_sA<kV
z-CQ0|MBVVzw^Sbn;1#Q1&nR#;TB>DI9ZO0|Zcf)W{`|=WLZ^wJCjk{T>`xo@74+4$
zhKn0yc06xI(KlFC`mDs}q%GO=xqyKwf3n5{+3zHbQ1p{c*GjIPCa;hWMza0BN1&}<
zHHnwg{)f>b#r-{ApIQHg8Cz7)mB!ee>}jF2URqI8F1`xj4RoGuT*p!g2_0H)Ds~$~
zPO<xXpOC<_x?Q#V#@}D6NIT@@5ZZ2VnCS;HnTrdDv%_to<OAW_)&P7F_p6XIOw{}9
z1^2uL$6Y?0m$Q96)gwy=`K!fEMS&g%#s?)&i;_}DJQ9+l;W@Jx!08yXpEdL0(rIgY
z|4-L3Y*0}9z!GUtRfkxJg!=ss!hHM0$kY_ysfl{|y(U;1Vb=6Vmc!xDC}~#Ez1#xl
zdjd9!PM|54qHvIsFP^EHW1{#Citd=@Q8~IJv~sK{K{2{Iq=U8BgAt>3R%<}@ax3^o
zcNv@fDkSl0c>orA%Hy<=v(G?;*y{3(+wLxpF4~ME&E<sHVio6PZlyM4neg-e6xzhJ
z<Hq%ShGUJpM~Zso)5wrZLeq_CbktFI-0t;&BgUaNyX&(^$tmDF@XBooA1Nc{?|R8w
zlK+$Ix-(Yek*7g<`;Tg?@@p_D<f(fjR_*eF{>Q=5lpfH<?jrI4FT*3jPa?_;Fp3O)
z?Izsgxj_<E>SyAz1D}JL7SV*)i^VkJ2^o@@{Xb?CH(L|JfXdj9p0QAs%j_g{p4f@F
zc663#9y|9fGaEh7tOF^YW)f&k5x@wdC8?sV=IqqrDt4DU%ogria@qyltN&@%|5I*&
zmDsj+X<#l}`k8}D@2hQNv!?A%N@bM}U?+euG&cxIH2GmC<5!n>)5;;icTRdq?>VQS
z|C6P=$rochOq>0#<W=#BD)whvxBm}oZvj+gyS9HXP(oTnkPaz9K)OW{knWa{?(V!%
z1f)T_r5mI>1OX}O?(XjXE}m!a|NHKD?{DUN|MShPabV537TnzHx~}s)kK=djb(|(~
zTKv9w{~{N^24=n3vIAZU$ji@m3Ebz0Pc{j(a+>`70s&%mC~}|y?U*g!%ta&ldyS)#
znx@;fyMD_4yxJ2a13o6;J$pKvc(*uM_zX}GOQBdv>bcsrpt^_?h)E#0tmM@!`0nu1
za?Ytp)2kzZdx>pW)u?EC>F^<nEKXG92;sQWbDV$`Tj7K50I=w-PLd0fy7FFbrfhIV
zo%lV`*ktIf3)op}LbtX)))HU<t*+^o99Xj=O|_3)lmHHo?E3f1s9b3ntm;)>FllC|
z&}{@O4YrhIkRsG4SNN6;>)75wy>Wt_o!#=L^_y>2ZM^!E2)BU^HcjHBP}_K($;rH2
zkuBE#v2>12A5rRv;9&HG={vjmbs^?g?sugdTThY_OO~kEI8%IBB2VXa5>;R7^c(8}
z2*)q%N5LWzF7aB*%74BOQDQ%W#l}C2i+=|9#!~Axf+iONb&&k&d|0>s^A1V7Gm|F$
z3)9(r17GE$$@#_QA5L=vh0u<CFx6ue;W9|Q*1l5%HzC*c7Rf8Kd(3fTFg3W?NKml!
zFt@R@J_Ed!G!vssTynCoUVn!CBiQ<;v4K9H%Ig#Xw`hcW0Amg4(FFyq@j4Q-z3Qi@
zy*{6Th$_ve3=9lx1U7YxwHD|-)$TSwRZ=`>y&4{vd53tWS(}y_6$>B(mQ$5>YjY5v
ztMg2IJKd&q`5{3t;a%(eTMtHUzLwP=kk;u`K9+pV@rVj%W@aW!93SnEUjKAnU$ot+
zT!nS;l{C@J!n*7kv7VrAS9EXF&C!{!Llb26f}UPQB=C0purE0Y(rR?(VrE|HUx?_c
z_f)IU=~+*8vPv;38|QT*l_hD^JA2E@x^(`Yle0kE<z$kfM0HS5tB^9Li-a!-Ko8n$
z(Wih{87Wvqnu;dd#ifQ5dOs-iBubPrFuDK(ZC|t2y?0>A=r*uQaxr4K0ZH0?0%|mx
z-|tNQc?%veV8p(=uG{J_O)<JHu~ZY3?*fVu+6VX#e5FBYb!Yj3H3#aeK~>H(jF;^D
zO~7eV>D?ezOriry%?6~9=U5;2nh1HE&`3B<q?eP7Vb0G81<ZTSZY}ChZ|lN^C_<87
zDX8u}y3jGd{*o);Az%=c?hW;F-ja_pHb19d15vr1TV|2*D+}gZ8@l=Jh8R0T%nYo>
zZ>`@_VuunA&UF4s6r>jL{Kj1Egv1fJuwcGqY?d4!uAtdX6(L#_qP%HZ&<_jUR42)u
ztv>^T3Xc|VsbG7D3U<V^O<+?<o3_j-ezLrkmico7YdJ1L8x3|k3T5db`q+(2O0d4;
zC+@w*%j|u~l>tf%@Hpt~d)bQ?+4_(mW>eS(Kz%mG7!);wSGE@Bw-&yO|LmA))b#Re
zEHaFsxlPNEq{RVtsNaUng4ffvPKS8NJ}@#I|GQ}i(>HyNxLN3Usb)2v4+Rf`>q3<T
zWKvc<J%T}q@-ehQ;J$twd`b8}Jq}l^<Fp)s+<NZNa}Q!5L*39#i28sGJ0qbA-JTOx
zNU|_9;WH6>s7<T5^h!;V$FJ>G{|HbsSXrnvl7uK5`T_;r>)q2X$CLJ?<mgK;l2qkY
z5hn4jSTyw?DTE1~>yxvgOjyy;kP20XzH9Ad<$=ATiXL$Bq-Ca##@kt4Y*zJS47^uS
zrJbvcs<NQBIx*dy<^SB*)Qlwkeswv9R(skdwqVlpd^)LMI&Cmu(}Tt;*VA&Q_)2$4
zOnrAFA2TE|kjLc(&#qV&3w%Oic>eUx{siyX9`&&81<d-!a`Dqpc)jZkGzDC!ySy&+
zRr@E|TN7rOm?;g<L2?8c%ca;25wLM9X?8bxavr>OckNc&6L_j7*Q>M}aryFYcx8+g
zcLle8+UZbPUOmKA;^yI91XlZo?9U5pnC!6r5hhQg4e1Gs2stg)hc9D3*(oWDdu3r6
z=18DFWP{HWW~MzlV?703C{#$QU&*R#k@dOL%29nLHC^vLe~d=lb*=aOjGy`mW%$Qm
z$kb5*730_>DFV*pUzXlGvW+)>T<H3fBuEJQC+iy|GcB=_zAU<``)S5)r7ob0r;yd#
z;BaIaN}|IQ5YU%gH^@sd-O=GOmfR}yEyeQ64joo-=MmUY=nx87Cee4%`=O=8p7D{u
zET@B9pB<fVuIRyDxy^oiDzS!ie#I6SGg!p$m%;~n$H()v32vk^=u#D_&#4j4uM&X>
ze6BA+B%LnX*8H$uQYsigUu{?qL5f7g?(FL`8?(b0gQG|$#M4kv${N^oN<8r3hpkWW
zODag{{hn`Zf^I9BIh&fNhre{JF=>^m*OX;uPL#h`f_Vv10_;mbmpDMaa+hU|3hO8H
zXZPm-${HCKG9VSkvFv28+5#WkOFLF6DRdH<kCv9ocQQXMZi3Lz!GmvFb9XK@`0F|W
zVaziEqK{@~2rzy(dw-9}SLVhLOPu?Hq^4{-1kLTTuD#T%HD&|~V<Afh?caES)owml
zsdWMC*VmFt#$)5ZX|!I-+5rs-XN|^~?0nO!ui*;7f@PpI@-4+EE{>oo(a@XPbz?Ai
zu$0BagWrOow_>Xj8KEWo`Rl{_M}1{SMRP%m2M9n&`#$v9n{+w2k7u{(sH>iHui0cF
z?vtJ$%tJ2jw-tnP8jMzVMFNpaST62AzdhYrI6*FWtUw*~&`Xb|Z*17w>E?zvO8k+@
zR!riz#=ZVdM{+nMj1&};t-GW84OoABhhE>UUK^7HLyshkY|CYL)8WHfZ!%8~By)XE
zf&J*6tJ5^JIQi?bLxr5IqN%AWCyKWaL<t~9xVSMBs?YK<28QQp{mK=U?aZpLQ<N<M
zZbddVJ+tVKj)Xxea6L)|A7d+&@gOuYGgf@hDOXXQ`A!LFaln4FQvUt2)?sM|SR71U
z+(98@Jav`=DlHI2#a_YJ_$H^_P*C9kMLPzD3P$a<UdO={CN@aA0@jfGl&5E#d6%s~
z?w6Huq}8Te{(<Y@u!}&ibxb?axo#AJ;z^337!?cC7`5-Sat#5N8ldDN&~j?g^^Dr-
z>K-}$<NfPPWG#uj61xUG)-d<WkxZ*s+_e8D0R(C-pwbIgP!Tx!@KLX~f*z1^l<LGG
zNeiyxu+2fdfBJb&lsJi8OoSbDY~td=lTD2xT;D~g_aBZ}r4pxwN=rmM!xfQ{09kec
zzZRLyEq_n93|`|IWQm|RRRphZzt5J7bP9!qMMg(_OJ3VEDb7#VQfmtik%{P9_9StH
z0S{B{7gv-oi|@ta&PXyHEY_e*bHCiaLysAAxHohW{JmYpDb7H?>D!$h)`=jzf=liC
zwo%%)=2}f!PTlZrpL8PtJJ#PemiZI_8iKusde!Od7m*`u!?l?HoXG8KY)+&=8RfWu
zNj_mE9xTGwJ)&j6ao+l=r^sz7W}3!$ygP8u`$!1Q+FerFGct(R0h)`@xb{Aq^`G}6
zFnz|$O6j=uR=`Q*ya)+=F~-^ah->z9n|?cgbyi{e$j7T>O{i3@M=Af#i<8%xRKU~n
zs?tHW%HHPVVtTFEu-oxAfy<gFSaw2}zM-KX1LztYOgiKgbnx&3sQ|NSkN9eD_I0r=
z?Pf8~4}+;cYOD}VnOaYKHxk=#36s&#2n0bL$!$HQ1x(WOtLqCh>|DiWJn1C9td%3(
zSL>b@_1BZmnsp@jSG2QZ9Y@bcmrI@)IqmVcEFHk!fB;@s)tp?r$b2&9I7yNiOc)MJ
zTSvAfg0W^&ZGs{(@s1Cw(Vti#1S@Atdmp35nhlip2hfE(JI03#ZRK~Gnj`O5ldQRj
zMm7R7v4KeVA*bc^BTLd$_fk_l0_5UVorcFQD%27FUvx+C#_rkJ7CTuSZ#4@GduU{c
zhO(WiR#{9B>*If|{=gtTCxrb;Zs2p7oL;YUSVA5x(xSjZiDCS}dOotvz>qQV-T(Dh
zkLg0QY-oZtn^tD?y3LG~zj=TrZR?s_0q%Q!{a{;mL`9Tvik9Zlp|)g7h4VmZMc$sR
zoh|DBF?+$9JGu)!dGfR)lKDU)p1eZ==#6pNUK4>5I@`gWy$&f#9ACgOXLJ1B`#xl!
zw1L*EC8L;c6+Yo5snW|gUutRC92_Afbd{5_JOWGa6Irq1T6)`YG-~fk%YkJ?rxIUR
z^#rHnVOhN^7w*g2siuST>_54A3;6i!v<jo3B@{}<z6tMgyv+c~bez6ThW)S|@^p67
zma{Hr?_>B2rmB&5TyUMIZh6!8njl3wf`&1s+r?ey<^?SB>dJ)+MQAY{GO_{&>yib$
z2UhthZy)b8`8cv?$aF~YO2^`F(Wg`h>H4cuWXk`R;>epC@JI2g2&8_D{ACHxvRmJl
zBal2?e8m<aTvS$iVL+eP<wKpR$?TbHO!CrS-Z3kCAK+^!$XgjPW7U9>VSg2(2xr2&
z=S|=&B^7z1?qGR*g@VvFHX>REOKVHgJTChmc;}!|N2-A6a$JOmvSrDTPAe@)f6&Ed
zId))=w8DQ%=c5SmOqCbFGvU!ouzJ8gvToS=cqmE+ROO??upTvM48_{V`=>gJyUuuN
za72X1-L#C%CQ7Fp8sf=`Qa%>l>_t^BC{FLxVJ<xiWRN_DfHWB9FGzun-0zGrgIj9I
z0?L--jWT!|UIk~nM;R^O4&N|!)P>4-=bKgtjEGNBrdJMbv+8fbS^09F4<-g4W85`1
z8Zmmlv5BMfEXQ8PCX)xrO7GvTVQmW<lYaZGXGD<XP4AjU{pF#;)k*r0`b^_G+B3G;
z$Jjwhoa%t`6y`6a%Mg<t1V4P}-1T!DjVHKc%`7J$a9~JcWC~UGIG^v?4v%XkTLvqn
z%jII5%pl|G>9wk`))RmcL*pATVZ}iamKAlfGh^!GAl?dPkL7kNsi}wo4^#9=>Z7!Q
z4L*`k@ywij8)uE=%{W;Z6{GD~at+3@-jNrS5Z4c%BOdGhYE%7yq7X-$0g3Y*iRjx>
z(^dhfFtpy2=kRjla%o<u*!6edFI|Hwec(*emnB`1$qpgU<M%_~b>ckS?lq(7rl$j;
zIEtK7wcmHG8)Ze^Mo9g|jF5#WR;sb%B-_6a%-Uqa#H;qD<*NRO%<#Bz9u}1DiAkD6
z?!z;Fczq-R^`5R<Dfvpg3GvS?E|#jwm)-0PWfH2ag&m|UP&Mlk_=<7M&E_iig~LsW
zB0i;Rg<2+6RIte;H}(t0OL55M3hC<VW=#M5HT<K}_iC=esl0+6m|G*hr2tKjg+*@z
zFUP7OpX?16@1$C6!t(0V`bIDXvw8(xH5~f*)R=hw++u%mbchO86S(G<>5QCnhbu{O
z>HLC%t4a6Sf)}4|XP>v<<PgPr!@g@*g}H@px(ZEwNNA_dIzSMFeU<S9h|+|uL>cOE
z(0w3n7f`|=RzDjHUmOgG{ZhVGBYc#FuE}Dic(;pQ_XA+nL_}z4y-UEb0s<Buc9o1x
zb>L7!ge@=Qt>NM{-8>K?bH84W^G~&m$Yfz1rGHV_)8zsO<7?c%O^<AU0ir?xiWz`C
zeA*1|?O04|RT353Eje(SgQbVS6Ib=hM`!7qJ8!VK_WPlZnT3N0Gy^5oI6}Iyz$kG8
zIm`$GjZ5&3A<;aapf~fVUrHWrbiI2ig`TeaEpi|j*pZY%m=}J;u0*l#%@oD!8y3W9
zAD6BhaKj=am5KnXfjS2K)UUrvtQ;Z$mCjk)(KLktk(9OyJvTog><~p8H!8AeXv9j2
zS7?v?F#302O08p3{2|S&uP88P=5G-+4<8^g7Zf(t`!8=pFN0zwCzqDj&?^PRyMjU_
z0z)JKw4?&yBq#?4Jo(>dC07DncTP?L9Eb^#lUE1Hg@-S%e8NAC=C7Ag18`)#+V}0Q
z1^p`#7)AE?;c3;eY1K1fG2!lRlBz`ZI3e>TlZ5kQ7lysy@V72Z;wFlDpmAPQS!?_1
z4-JZSEJ%s7>*G{iP>OeodoxD4c|{K?Ssy*U)-5$4C1YJ#@xK>GF#4SiuQBW9?t8e(
z4{!<9k+~BI_a0(?pPWz#Az3goXfXH@P{D5UTQ;kf2eEq=I2yohM*P~=^tyThlcc@D
zS<c+b3KeEqBn{wf$R>oq4r8~|p41Cn=RrKn`wI$PoxD*b9W)H8)rZ6W{9vQL44!KB
zJw}3ASygc#MT1$5t)0VU+1Zc6!c5;<0+@crYgrN{IkgQ^MNZ@W<pIq+e8##n0`(?m
z^g~-aJM~KUnPD+Ke987)R=gSQ-T_otO^pl4f>CBz9h`QVX|xk~&T2OBS&f?;x(Hpw
z9xG6PNNV@gG*yT)OD+e7_4Fx2(OKWgWiW3tNfFrJmyZxuSF?IE_bI7%evx}<`N3cl
zAnf|BVrN+(ZVw9wOL<w@!ofKZqnc?dYdv<@)A`=i7dM2bp|RP{=d?@YdfTFeM{^|+
zV_99plh2d4zO|Li?^F}rz4QZ8V~89Dx#fMctpIGrj^Wllnl#E0t=T%MGByl+Q3lKF
ztA%4nsYO~<H5T8sWj_*<$~e*a06QCutFRAMort7DZw-!BVF~d?5I(E@m4F)}=C+iv
z;ld_$LQZk<TC@ePAKGrKZV3h{_sY`N#lRfPUo6RZCM=B_M_zJ>*<kZmI1Gzq)bgf%
z$Fnh6l3H(ddIgkiOo@|2ui5t349xJDv^kIb9@V(`<d0gKu)JNd+~TlIVbNJ`9Y5Ej
zVJc9o!GgJdaZ2RS8|Z)A@ZhE)lt_ScZ%xVOY>THR?8S1!ou&Dl!+cOp_wDpPs%OXx
zBypiH2%7Z=FxWO!Aj$jC<>s)%liHg)rW<-TCa)6n56^4+Ob2^KeWis4I-t*>)hbf+
z+MY%W7R?_bcvDP{X~QzzI=p7yGcjn@MF>%tn&n9m&2H1CS`uG7kv0@$7sA1Ir8yX;
zjlk$$VWO%92>d<18%1Qodx<@#a3pFJ&6e|_2!~R#-wky8miSW3fL&6Wc;;&F!I~Oc
ztp?-X9KT}4B3iI`982EVCW9Z^Nd>^1e^3*cQ>@#Z{kiv6!}KPv8ZY4`b|A>lxM@h-
z+{0g7JM9R05;x%kpZa^IGw+rhbYW0xS|(-(C#R8Ne46H*dwkqRZQ24-#D^q1dBB(q
z?fkp__P;y`hRnu_0e%vi&$sbNuKRwXs!-?wWxS>I=-%<J@%{3Wnx&qadeJVxYhbT8
zZk?4+AJ?sfHh9^>^Zdy@MACXexd1q{>Ps|mf+eYQv$zyPkmPQZie#Jf2k7C$X?MjS
zLl>pOXhfRkqY-naht`#>p<+ECAx*xfXR?Ks`XKI*>7O9U81Zyj+U4mMd0vThTtgLe
zax>Vg(J>C@VHd0vor1f|cT6;QnQ<kIpJ1!)uAro-*Dyy;S?2cs%|YF7zijZxDny1`
zx^ffgjq`}d^Z1+{41H>`reLUmD?VrI$f7X{IoQp+YP-(g;b665YxcF&<0g5zSPBMb
ziXukWE5XH0U!f-|c_plIx&EQ)IZEOZD-(SNePtPaWtmY?0V)br*aa^;m6i1+=)Wb;
zUR~4lyLU7i{zE{1P}99)`ww&SYw5jHDj9U`X=lBzq2o?SVa?j?0_F1}XcN@=Il+4Y
zZt4q#wX7_o-;{%?@2>h%cs1Ek4X64^&h|9=3psaoi}N`Wxt)OP<%{pb0#y#}3A=^!
zPCI&NiuS3*F}i(~g;svz*4xbgk9<n#{~l2J{|lcI`o9NM{{O<Kg#H(R$~tNV<5GV*
zoB*osu|z%>pp0>Lsj---7a0+pUBc!ZWi)>yD4%yY`}@zR>F;JO0cpbQM1H5mau=1N
zxoFXhB1R0}%0i{nmg@gzAcy{&gIt<Af{1_ey%zuK!s>Be_FzMtUCi3@Q{d>5iF;)W
z;6hzH36;B-dfg#;c?2{_Q{1dH!uES;FfF(R&=88}FtL}nRgXz-UHucwrg!Oloeh&J
zcwPjiJ};>o*m;i-1PP+@h$0+L9L*ijtw2{478V@`IRQ{E73=%A>2Yttd}HZ#U-0Xq
zr|cTZJbpKxoIg(_PA((-fH(ZvmsJJx-Cv-3p*Ks9qPpNXK%gK99-J19*d!oHXfu|T
z18#KbbZqqjWc7(6^~;W5D|V_qmuk6_tw0`PU%?(}*Y$e^<<q{$EODWgUrx=Hh}jVJ
z?ld%7xZt=eXy=rjlSY^=^T-#?ptiPg1$Cp~y56bbsr%jN$gl-wJ$I*ZSXDYWIcy5M
zcOBK^F<rRJ5n}SPV;tEoFWt_-<DXns0o+jE&(YzwqFtQiHQe_d+2|q2F7a_GQ3}KK
zJ$E{S?SbC{W_3It!Y^FT2m$ounvT<D7xa!%dwxNGW%Fa>-f|(90G^%ROwRal;x)F?
zvS3nc(E2tKY(ov96W`^g<$;pj=TbF$04uCAWWWmO(}I5Mun6gjr4+%re_H>QdDTS-
zTX|=%`Xjrs$d?ZMC^}_Tq=Tin)cBbQ1<@**odKj>D9_{GrNDcA{y@e>+_L^u44NN~
z(zdtqeR=gV%$V%Slar}_UQ+W)Ed8Xr+VBTnNpToHf)~eID%bbfu8l%-hF(h}7HWmA
z=}{ile6N#4s3PWO7bK`7#4=e33Kx*7O1+yq3gP@gr6;;2!#nwzx-UN~x?86#zK-=O
z4Azkk_x$iuX<>`B(r7FNkgrf61lbQZYjjx1_v(h%kKG%;AE==|6h!pCC65B}oCF!o
zYpBoAT$e6$X^V%42hR(3jT6k%fZFY4ba}tvEN?TM)y6dW;t_(nIstkmUQDE^nTaf|
zRn2jx!3xi$I(nW;s;r`-qKTQ=;@VNR8@!lg6E;4tp{xpSpv`l-qBJP)v@Ug~M7=+z
z$kXeAM>HHpZ5=N@jD;n`&GG1ckUkGrm@q}P$A{q};=-EFLxCfhpCq+_)AOuodgNnA
zW0vOd_;Avc_?0yitMB=0%5q1qUeC0*^iPdYb3a$XH^^Bzl+pHhw!Nhfu!<;D`ua_x
z(%n0=12H00^bd%#e0iYveeWmK@Tb)9;hKTH((hoyqxFF*nyVdLNR=Tvtj|`9&pGjr
z;oy}$x@hljDDm3_eUJ8q_NBUFT557uQ})eCo&QV3!eGCd{5JHjcfwx(OKK&Qi4Cxo
zn^J`zrkAVc`j1W7GpJ+4Zr4HTEr1+bc_;&B@NJ;{h_-!=jgTl@z-UZOjhAqQ%r+_Z
zjByc50xG((hiB*nsK9I^#^#&eXAi||cul`)QVPUl<EEki^rm^eoo02(k_lTvTDyh@
zR|1Sw-eatPcKF-~57HV<A?=NCoZ5l4Ov$~yolmGsdwKy}C7QNK^C<$NeC{w)X&IWo
z(DBiaI?t+!7vzcCk}D_|5#`hC)oj$>S!m4739XpDLH6H<>;MHyiE!s-Faer?i<~@&
zW=}Miih5Esq1yjMK4on+h9j2hIH?o}vryBw>#<k(dbts(9F^N4BIOzMZ{8JR^6Jur
zP5^J$!_d`Jm@sD{T8zcAArQ;zQzS9y7!~zvwC!DT%J*tXw;B7qGMvxy-;yz5SnR}J
zLJ=|i)SE~!3^|v4{4!Is8Wfmn{g>9CE^h|L&Z5b@5U-|oetvqbj2Y5yYkP=>j!xiY
z^)}_=F9Gp<1Sa&qWm)#B%y=&)9kFs0p}v2L+qM4$fD{{jezq|%arw>W2B<e>`}p9C
zaPDi~V<}RpZ<^8w@8$~TFhA-2L>4$o9zbtaQk>P-6_=Dig3-E?Lw459j~UnV-6X;q
zZ|ySVMBT%2iXHwl>v9t1-&mKe9gnQPASzhRV0Y_d-MpD@e1L9-<>3&@KPQOg_d6q8
z7!?0S&GZ<-jpNyJqRYx>z`uLF`F9rdqc2XGGf)7IW&@r1kEAvVG}52H+Dx$k42sAX
z@z?H*iBVqw9X(DAV?axtP7s(|#IliLH-(4L3As17b_oFicE6F}2fy(qfd>G~asJEB
z8uljCI^Li8G0bunXJutkk_fpmeuC55_u=1;rhc0DKw0{kiMshMWlPJ&wsca?LkQk{
zwkI&?*Hip{yijQbc3kBL;Id&-U<Dj$M>cL@JM2drl;MC<dp~z<Gp}0_uq2ceTdx=;
z`<F|=vn(}4A5cGAl`qkV(OntOVM!RUbkQWf!N^{}#iS40&n<fX=?h#4wJhx`XPC$C
zOJ!NI6O%msj;8DNtHpws_$hu+djDg<)NJ`C_9h(`frv(A<^x=TtzZTKNboiXtKOmK
z$M7)tRO8;!)?hs(!SM5@py6SIOIl`+wFQZ;;1TwEC-ICLJ<e;7pzfz1z2DAJQzy~k
zLgk#rfae3XJX*F6*uDD!@82Wy6!sDR&(8s(4<Ei2GE~}vYciKs3V{(%p6LfdiIM2(
z`j+YrF%LIC=wsJe8mU|^4ijd~U}=D_Q@f-u!P-uDi-94)_B5ekm>!h`d{KX1^&Lc8
z+$+~o$chur7T=~K@6DfS8v)5C_WDwRdxP;#h!lMm6tDOAQhmd;q>JuCvb`hD5^!(U
zO-gOjT+dNfxgZ+ZPZ@}|uW9vR0eAZPD4!k*QDXtI{JqDq-wdyKTH|7Bb-3IJfN9=n
zbEdhi83Y<W_Wu?8{(yD$<<-7%OJ&m;(97c!tY1{_zyT?}Bt`fuz?gW(Yun#tU^f@v
z;@f*STXQuJkldvCqWkzx@#kmr7hq<hf|Q@?!2^L@NLcj^*}>{ehps<c^AtD5ODvcp
zQSJDP@u_JcQrK=gAK=|-3VMVl1(uhvg#@^yrM8ny2yCl4{@mzx0%Q<S{kZxfl*XaK
zs!5*W;U|H06L19`QBD!PK=<{ArWl;O$+Tm%G(Rg+b-tjTExlrcz0|5RTl|`g=nAQK
z{1JXFE<QH@qm}pErEY><C5Zh4rtlX8;@5T&OjwS4&#(yQF<>ll*ZpyXU?j~pJkHOH
z#KE;?H?})hPbfo%owg+3fw`pvaB1g}TY*8+)$a5nj4EHw>rU2j$YSWDEyl~tM~zps
z&r+&K+lPMs=_>D(9AY^l5$OE7jt!N&c9VaSt#{sG1Sl5(afyTq7Y^@cA<NT@w?OyV
z)c_<m0}txx`pWfw#K_WG?v8I?r<JMfjaj=a?A-8Fp0vn3J>KbGeq~mj*0pIW<#2*2
znU_`@FG6md$82MHQvC1}3T5JBEI_see^DCy)0T=o>b?tu&cshQu0K?v9wg?2`_5W%
zF|WnodT2tpe~FHqBN6Pn>}Wo#kQacBW-s+1?S|OCJ8EB;Mm33ri7A(Z{T@J7?(s=(
zVs9pdeRH``?unFZ*kJ1tKw^4@UoQP~HuI^HuD_5Aawrq9^})R{aM&5J3)h^y04%#0
zl~MCKCrjt1KY%|8fm8wkh`|+*3q!GofF;@Ux=0|DY1-qs6aWhS%6e~~j9ogSR<f~9
zmoI&(E35GF|HPv9+#~6==9GwlbP`K#Ol8*O!BG`puHj0PYJn5LSR<=C0g(i2D|H~~
zSGiEJoL-f9pazQHO*;LVm=%04akF0YA#+9PC<~)-1$yL2S~ERg@a~46E)Tee)xS0+
zRA#A1WEV_w^A@jfk6e{eW9awi0=v1XfuX*Yp1Pv^=_P({o(L_@gEtXzC|}Zm5Q{qL
zwT^0ERKlqg{!E~V#|)`fa4$fS<rb`(=9K{j7r-*f#|6D1qvY=;7!Y_##a~yW2juut
zBook<f!a!?hmi)+%M%B-gE9mU-X3&zyFfY#`Ytsz>L_s_t=Qw)^HqJhigIpGH!zJg
z$BX>)ee7S<%1aK5nMS9Uah)ga=tKRo*|M}h-&#l$P2c0fKUNj2)x3M}VYPtuY*cSN
z?noty(5OeV()C7p#f&j@4-flsN?5@)<j}h}<vw+4eQexhzv3I6owF@qKe%D1l6C##
zhm^I90nd=(wfPeE_AIseL@{Ah$L_S7{^@7!MxSo-Xi;Z)a(^L$(JF<oP*j*uM<%e_
zbFdGNjEp{;&VOgGA&%;IRXtUOy5B!GA}QK=Y+ZR^T`9Nr128^~3=ENB0KWvC?vdoB
zXIfgO&Ak}s1<KaA=P@+0dS$DUB<A0*E^8HD=s)1M0JBQ)K#3zFj$r}JZ7GM4!c3d&
zk16B7j&TDX<8G!G=B}>lTj=DasGQ5Y-~vg>mZ_O)9RBG#QU6DX9V4PG!%h`VNsA$o
zC7~^mxv?p{5hJ1P*uJC}>S8c2dd8p+{7PWL@#qauaSST14c|q02de?rp#yrTNIK8d
z2g9|eD^1QOx;YY=VIR0S>b+Ay3lo4+E8^rl7bLDfzMcCR^iCz>=M!sGZCs<3wT2;?
zg>Kzsul($vzt$1|iH<v?{u>@c#944FV#TCl#WV(8e(36^cf%xFTV1R^n?uLcTk4RC
zPxlNPVx;`OFU(x8l_{8<9Nvb93^#u!aI02ja~05LXI{`-byIfdIP48R#B3_QYZEnP
zYj=Yj%_?d^2!T+b=ecu-wwalk3-IHya<UWf>wYv*bFsAi3Htf2|H74o{u5Y|{G)zG
zaiP1Ms)nIyMz*_Dy8NUw5BwWJaYI3I0AhOt`wn~lfEZwGXs?@dw`iC|E?mdYwn!%R
zOaD29R$?xC-&SFb`ya`Y{{%}u6r9n3ZiqORhBJBb`%r0dShUIHr2^p4k*?}LWYL9G
zuJ+lYtf2U$2giL%J{>Z0kwonM*<P@cj&@S6om6MYfJs9nJVznLzDh%)`5EgTnhgkC
z>Qd+`WLTS<rd9P*y;EnVrqy+~xA$p~<tGx-VslRG`gLJmtEY1fck7Ax5fHT}CmIa?
z#v`$wr##V<&?<E1?po{Y%UoIaSwu%{LfqG1i;m>CXK70!q0i2DG#)dcR{%|+?Zsya
zPQ6o-CKj{BH&PDLO6W59K{<H~rg?VA58<N(7Y=+*l9vId(j(t3HTTcz2;uPaXwh7p
zQb6Ln+f4-v-@c)r4`Aj((a|b9yf!<NN$>f2*lpA%UV;z=IqI~RzR`$CFo17UA%Bzw
z09>M(I4t<;C5~cXWxCwjSr<ZRo)nHie%Nw=T4lh(9sULY@7+HEq|A#oW|vUOEtTH@
zZ-(tZ+&47vMuvV<CygLsq-6FPzOic~|Kb)^?_aK9ayn!PYzo<#xw)3+`eD(@6Ni>!
zGRcz@>T=proB#<EcD!t2$2(^0;&Q=sPugr^d1en9$<ae9J7_RU7L)UF(gLCf{5N%4
zO%7G1d6x;b6y2QLVx7NrSn*$5I%*_?4r`&*^YkZ?NgS3lfhvwvulk3?rMnSfpJXF}
zT+@aJIvq8{B*~`3(~|1^JyCmAZo8D^C)PzAlGyN+IHqOgk*CHXO$<%{$f$KG`x?j4
ziI*gWS{$JWza%^?R}uH*Rc=&U4s_mIcL4h?`zE46fa|59i$QOG3#UyN-M>O-qR0_I
zHt_PXIqWyRyPBf>Y`o+PeTc<hsG!K=*}1G9D^L`OyM_e&l=u>SAj1*pe(}SVm2P;t
z1Z<pGA2IK-aqD+&-K{IfHS~HS7?ch1xRxiEh4^t3_iddWJsr!xSewNz7e1rPtANkL
z92lUT$I*CMo19r#7^h$*BqnXy7?*2<YVdt<Q;-H2g07dL6kp7pGUHjyhw!O@2Rt{q
z@(gD{=WL)mesen@Z}N8L9o+Z-(Pn;uXR$-HeRMVV9?~lFew*!5GtN#@4gvrM$$y)T
ztUfTu^%kYX*cy5S13I`lm-WTcxie7%7U1BU)tnm4i3CmpW%KFm!d&I<B^iihBERNy
zFzKk?R5I(CZiKLINmW8aQ;dRHz`^ByDu3lRw+9o4+RN}SmvsW&mR$3{huR#E{zTX*
zU!M#OlS?I+ihoU+BIT9VH^f8vLg7S1ztZlx@biwS-kOR<1Yk^8^=INGA3a>}A2r*!
zobgN!@pf}?X64gYSJe=qj);WV)vilFAFooNG7trVo6<uP<x9Vxzf|YbfXtM0KPDWN
zu|r)2TRjEa18lP67yNyHDr`~W4_jM6xD>d&yVG_;L;Wj@Q3+sZv+i%#uKXIshhod6
z=#$UbBsz59e4P+}hW4`ll!Oalf<~>br^dTzI2cRvY7K{-ScgxNpxxO}C0d-hK8@x1
z*<G9K2+)6BX|hxta{_N7s1yS2am_Ez$erY8Lt_9&{z5yjP1nP&&w;Rt9wz|2c6pG-
z6?$BbEN%2nZK~e+{H5?^Eig~&v$)(afCCUMHs^R@R`i%Hk8RE84m^%=T5Nv=LAe_S
zmbm&_-?8}5(80N2uH<P^TaHsTuwRzjt^ureW?no!=)EK&#L%2KOM<L{)OO7GB`<2g
z{oE*fy^-?G`YX!)QilQfSRth6`8nqXV_z3SNOmxZ`O9=WxA%XXo}87Gvhn^f8@lzT
z2`+GNmyYMRyF7pV?h3xyNzbpEi`RaW<JUylJIGp=5YfA68tU!xX`J2Fr0`9cx)6{S
z-6bB#jPe23ED-Oy8k`xP)2FxudJ^*MHdndG4Re80e*Z^Fp_>uOg^_7ohU|A_UbgB1
zmpO_kNg_U+F*vyiF2@!?>*#&KuC4$OltWRhy5)JyYz|#?KqZRUK=)M$9=J=JC87J@
zt`8-3rD7dR(CXwr<vHCGSJsCBE{2ap``x<+9}mFRb||kvwvtX))zZq%YR{4-cpZ3n
z0srYuPGR8%3DpZ1HADRz8Op^o-20F2rGNkt+&?>MPSnp*--Bmok$ePAxNG4^VYNI`
z1yzF@$ljg$ui}Ev=>7dm$h98dSFCVFX`dtHdY<3YTF@fYd!9lbj{~%#K|H|O>-z6G
ziqtXCA`3l^>~X2ag*shC1MLf-@&ScHlC%(YghXa(s57Jcr=0To%bSqGA~2t8xl{1~
zAlb{yd6vJ{luP*?UQc#%_6V`;Kq`4D^wa&uBq=n94|emX9&7FB8<wUSSDqJ^=U3y4
z`02wVswvQ+J~-woTTV849^eo}m0tF}lcctAp8Js#n*j*f{(y6IvcFctB(2%_K}}PF
z63d}{n8)XwYa$*xugNf274FDH+n6~BC8mLWFU^Y<$$S-O?|@;p`UQ@G)NOIm!b0i<
zR7tl?C;s5K2h7j=&to?@o|xDZB(z;ucS5rbq-NiX&Gak|7R10uQLiNS(v>HV0hEd5
zm26d2WuAL%2=EKQ<<P?8dk-SBRH00>lQs6L6NEd{O}TEkyFTRBYaFf2&Q33JX|sp_
zM1~aruBg@R3KBe=t0P93_}uInIfzEMx;<L*bEqnLh3Ew+zEh`3YJ7T;1klw|xjqB>
zpHj7SxQ}ZKfne`=+sIhRZ3@Wa@SnU==)fNqFi^n1{n=wyzrQdhP4%X*o-9%Go^<$p
zx_v#xadS!TUof*jw(HTM6&($xG9V<tCLJ;K*(4s!Q>)f-JLfGa_IyrWQ5^6@g7Bym
z9j|x(Z(w>4h~w%l_aR|ZkzK%^1YCT+L<`^J4N>ZF*gO~$hMzsjU{M=$wD?{mBXqJs
z@07IjQd+x_*XWRpK?)2=DM+a@&8){4h_3;a@;}(P80tw_)6UQOh4I`1LG(ns@V74g
zD;bSInLi+=X>YC}31m8$3#vmd22v(2O6Iz?;h!9Z*2rjh?N*Zgq~|0>U9!?MA3w%j
zH#dTVftG}KcCis3ll2egt<j%z01Z!zT|DP$zi_+&g7WYrC?!UB<PCA=mxyK?(P7gr
zVa`jtdNmr4*TEA%i#>IA+bEqZ*7AcaVO|wJ1LXrALKKgFq~3akLl3fxjQILEIR{Al
z)02QYLU}h3(3sPa9F=zWyW2hNveB~SUjW&HU*B|(v(`tQJnbey0<Qm&m(i2h;+<Ut
zsz7kA4k8%`*<jj@Pt#NXSeBlG8;<<%kdaiT0g%(dQKWfE{^F%Zso|8s6-ObY9eua0
z<2ZQ(q+EAgMkdosG};~`D|ii(lD)M@uQr-Hw`O?G>HTcCd2K47(0(5QG(2Qs8pdfj
zuMU}HP5&TbRxWpNxBKVDf%*>yq&ome{a*%~^NT6)G~j-b4(GT292zS-3V_Z3@|iMt
zI)a*oxi`ZOorB}<2s@wBXh+{%w3xxImXttBhk%Q+x>kklESDAMl|oE9>^{G$&N1cZ
z_rh4#O1-c#0i-|lM#WsVtGI9<CkmJscBby*6w>mP8C9-pt|I+YcL6e-*rFGhZ!%=P
zG>T|F)!<-yNKQa)q#$w@4=UWcG6yLJOc*vK&%*S+JqT>pld-QKy@&(th}oP>Jf`3|
zqIx|*&C9>x(V&W<znymI8h^7EQ*+Ni1-XP^Rsp6IE(Yks3DrWWusDrIhdvVz&EA!=
zj`9-+ei!Dv8VLp9m^s$SNJv+Tk=4$XtaMrH1ZZjH-aBc=2<>VTbQsus7$F%it9xM5
z-|eB-c)-oxF(E<BKUwu?w`TRsB5#NAZhB!LD=<7N)b~@F)f5S@BPpWS7H7I3&q<jz
z^6)EbM{6ri0C0!<czPYhdrE}pr9F0i|6jX3XN=bfHu11+ZU@l~<ONfWyD(7;6F;+|
zC9<O>0;?5Bom7PI0lR&N7sGs}x>WC~(w;{uxRr!ocRm^79Ja05Hx25n?zDSJ1kdY8
zm>8X$Ij!2gB9(AZ=IzFN*Z&nny(wlo?uaOcHl~9YZcN}ivvF_5>KxSe++#K7i|M%2
zfG6@{TKdMan8No&jPkNJ9u^iG|8#xHTu-L}sPd~mK%yG*h=0|&TO_&$hB^6#%%&ez
zMt&tyggZ}%?MgeY;;?Y@Fd8g-F~)BaeUMm^{`tDZe*<Q{CwKV!R+DXHqB6QYLPTia
zM{wm6SP(M=`bc>*5^RIo8pf9iok-~+&`SbJ&TtfAU2wRaZnqF>dbJ`)u(|CyBRDdm
z3N?~o08>F|1S^OahzR=GzzcZZm_~#k2zNLr5s%6M02qzd-f#pyUR)am=?e2ojj-><
z>0)G9X!aH0!S&MDb_uwtJZcd^1|twYdvccZdQ0bPOMtqK9iwbTO~r@8rkL?<7tx6W
zJIHfnt62+NWC<5d<3ZKN^uvX|o!C@a;mxNO=L4cCO~}`M$Fg+U-*B)0sMRp-+ua9g
z{DbOj$LiYB1JIJeW--cR!++xL0yT<aIo-N|$lJ_wuF~wvl^|)<t+^URfugOCrGw+x
z`uZN;EgL^qzf=F$Ttq}y3EW#`7&uB(gRYaTyu9mSPv$4+#to3{dYkGnf)m(y`I+V4
zz4I8E6ae~9{(7hGrSoN%K;@fS^P-6Kq&yf1RLzjjt%@<bkv~D+JLefLb?InvnZw*A
zEwMexdZe&6TjL226A8JJqX^%=ygKVCNTg~iFe-~(62bKR+c`6o4K#von~mNyA~Lb~
zPaGhvs6Wv=ZjL+rt{2<4p|4Rp-B6Eh9-&(!c@<3KeQ-+As&W?Bv6+~Or2*F6F5(RN
zI8_RUmyA0@6@|8ez$4<qe)a{BQ{QIOy@Nd@%dy*BtzqNnuOWG=qSQ)-g`C&#W%|`m
zBbCeHqR2MU$5ujE2_2NgjfTt{uz3J*h5iS@750jGSV@XU$Fv|OPE%H`7jzCG^%~8Q
z2+-t85+o-iY)lqzn;MaxfXnc4r3F97&E`X3#{tvW&ASm%?YeUVpHD@&Y)y<oB|o=_
zg3;|!1H?hxOhQ-Ac5vCNK`F5{_Lze3#>zuL7w_(RF%5YvgPS3&bD4<ai2x^9tp85D
zx~vCX>3Wcx6CCIlb>IVt5a4*+m%vX&{vtED$}Q$kDy%<SMdg!hPP@)~0e49<tSo6F
zG3to5zPMVwGaY`-B*aIirg_D87LQ@7u?fiy)(kJW88QmB1$9mLzA{?4^G%*R7u+pb
z0a%G>ru=5iCm{+GQ#RhWB4_&;fB6IA<0lUkAZ!$2ke6F!ITs39cmD2g2Bn(X>QQUQ
zpAbU+^X3Hwa*G=%nUfd>UTu2<DmXWI5iE}2#ky8(IazwNeUKD_!I84y^Mi#ITZ}Sl
zq#}MZ5q#`wE3J-13iIspOkG4EM4qlNq)=^6md`>3TfJR|%zw#qmD*qCnO1|I<9`Wq
zVXzhXEJ`qhC6ff4>b?VdM`h|RS;4+PpV0S8L^I?b)S>}%6*;#ZsJaMaWEB3`!4<F7
z&zt6yaGN7Wy!}vRY<mOpl#|!!$7GbG)>7$=?11nF%6o@{;v>nZ@`o=?UpFHrIcjg=
z`m!adiNwOn!qCj*dehob2_0|q<Q&`>sq(+`0v1t)x-6N%ZvsTf4Q2BcvUEx%cBlcs
z>=fNg0+P{_GYnE{aePRL?@vzm`RM><9+g2O1J~R(p>>g;ANa1byEG=#0F(wGtpt)u
zs&NOh&ELEO;0f6Lvatju_L#*r@1|DIr{~#`goLuah^B_7zw}weCA#67JEnHdb5X<P
zFe`7$ic9k*XGU^w$t@W%SmIu?(pS|8=GD55PXSK*A((+IN7}=T@i_Ybu>bnQuHSdN
zB;3XXNA`ldcV<MchV^eHH{=uNe>i3V?HTl&06}QVf|4xlyqqoph%8Yw0x29I*@g~V
z0!BuCyYVSv46gZS`?iQ;q97d1`pB~$<OdOj{$Sw@a*fRh@)F{gwEe;SJVG=&%U6zB
ztZTh}Zz^<k8E;IJSnme>*})zvPWg>ZEdykFCe`AA5S#{$9q6l2nk*%v*WcL^u;wMy
zJppl>AIvlnqSU^%pqoi|r1_WV6opmq=5yL0m~z0t1UjZ*iprcC?<o>t*?l0!qvTrm
zv&o(JCwG%2g=0%JeaU<tMc3?9&uKOno}emtj9_GmTv8cCb(PUG6iavaRFu5p=pUk^
zrBi|sUz6}jdpIn*Qe{S+^rf-m<<$On^zP%oK9q3xX?uW<#0la&V6w8R`W6NlU?pW5
z<}xR?VBq~gpDKI2l$Z(D*dglR-MMUD*eiT{c8sekhYvlH!Joaal^Ii}xZcV)FwH)a
zJuCF|N*TKpxJ^D?>Vtd{UEQ3_0d~W+3@s}@ev?L8TjPA_OqO%-?Q7fVPz!hdY#ICq
zFnyMd5!2@nN62AVck`vu(IVbMaw0sNEu5VuS?vx>IF8p9yM7ZA%0;sU+j9qTTy8tF
z03GhHnAff&MLHGph75plFWh)<N^MAkMZ&wEKJhzy=mm}=kRwSW7c?@5gEG-0+Sl^y
zyNx_x9*kG6^)!s@hpTSy81C(@WK2E-Uc)f@#2tphUhOe=ud1V?=`;vaGnOUKX=y~d
zRnVhymm65vRA_OKs%#8c@nQ3;`W~SC30DRErbz@>Iu$uNLz|`DrFeC%DUPD9Pm~Jp
z&u*`pT_9X<py0o9!Zhg5Wx$l%82t(Lm2}f{>}C$p5^>mF_miC5<^9o-A{@E`&S}3t
z(?E02qrM3;Iy1wx=a5*|hd~0^joUiBxAYR~m)1*r<x|N=d-Hck@x;EalOY_21g7S&
zkNqHgR%n~cJzP2+MVLZB#xE`Asa1m{28SUuw#%muB0FH#cI9~jPA~3z03}#BC<vqQ
zf~1Rbrpft*2Q+^a8Dk_UzXjE^!1ireTJyd7X@-C@3FM^N8A&VOf=0I}<u`CNbL3El
zELG){G+956Q<5@O?LfDqz}*g}kWyPQK%))1fY|;*FxAtocJzeX3!^R550IIJ8?PCn
zx7OLKX+71CUVVc;te&wI85!l<`?CyPJMGGi38PGAqy)xmxRZ>OA19XwMx$4=sHJ*>
ztZxT{<>q=-FOPaaI@Uw@pCSD3F^G6h)^8EsJ>W0)+Am2*luBSDfXOEtKCIY_Ab^J6
zXpiy!aI+5E%X@m1muGs39tZW8eOU7m@PMv|eN0$!i3O_p`{%9zR_Vx7>#5USnh>4C
zu`#L3N$eZ4pmhPqp-Y2zh^Lo5#gQ671@&cH#m<_}p9*MK+V%U@xx)U=$ap9CQ1CI(
z(Xe6Y)uV?pWyt>S(qXDfe{zH(A##klbl@Y2Soqe|{Zp7o<~K<67os1%(XlZVxL3pI
zH!-zc$B3)>-nNQAk-&kKi}(%Sr~57?ZGP#-lNHq`2>zTx3I0S+|4;t`q#)nNYl0p?
z0f5YC_Vv8GIGTy90g|NQa7aR2!b0QogUJ(H2b*)f85Y>H*X4WNgQZdVoM)sw13jaA
z(0uq1?9~q|OxU^3>0qb8%U5MbDHlVBqsuuUG`7NS{Ukxo44T88E-6m1S_2(2!tJ5w
z^-IygO^G~i6RpJ(b&L;y#@^|=VzmEF@dPi7;sB(Nefu`_a{Ga%2M;gz<jpG!BG~cX
zkO!cwzYk7HHQOw4xSH)HR9;`NPmY6Fn)}Rlicz!r)NPqA2aG)9z6uF?BRSmT)EVA$
z!n``avnTI=ew*F!-u?khRkGHUV(^lXFdJNNLLpAYqo_&}A4yAc=Ye?Q_#8GmpV47*
zQ}flj(MJiL&0tCbYCjSpWUzd}wts%=H!94l^?jQ?WURPSOkz>n6US`=jnBV^?RP{c
zfv#NG;dy&GzCgGBp+$lxf>+0Z49^!#X=i6OZuJZVu-Z+#^U}0yuye9Tcj~vcORA_W
zncp2%Q9BjouE@W@;Yk{u)KyVZ$W^3{I9QFu4G0LJ1MQFc0@8sYqnf8m6`-%6`V_39
zKai0A(fTdROofWF0zgsh>pPiLhY39CQPEK}*%=85_z%2%Yh7){UE9mnM%XJ#Y{Wom
zqM~wD_#)p%6(rqtRs05R#qGrF`g*}5l_wBK1#8_2Q26xs%UWU0z+j+vF%TU3XJC{l
zoe;by)_s5}xJOFOFZ2xL4!Suk+|Da^)D%9bU-gZ$!(Q24I^!8#CEv7jRafyk9$x#u
zgUVthjfK&4$L6-qwgq<QXN%67_u#J^jBZ}RncYXGf`k;%GW2?<cwb@PfBW}d|M%DT
zsZlW>>)}PAFTYh0?w`A~o%z?U047Y|_M*ftJoMWjJJ&Xd>IAtEcvi3V%bt;YTEf85
zbH--9Wn0X<i!Kj@_Ql017+YAfWjMVjW;hu<+#FKb<(X1TY;<?}v-}nZ#Rast`|Px1
zpKXSaJS)mhhlBN%qGBX9%0VCw01p{pxi1}1ZESw<*<Tt8cCivO1OsG`5ie>z?Ozw?
zuTDI2>ZpWhXFU-<tEXzHiQXl^U9{5(Jn;H=oCJL-8@n@BOd8LxH!?sd2N)LZGo6<)
zDeb`W3BExDyOo-)`sor4emaEYI3jDb$L-oS{^qO-;mJ&r1=w+rVJHaZQ*M<qWAmV5
z1`%G92+q|!s(=&}2>W3^8oPgL0cOY=a!P??_aALQ{{4$jTQU3ZmDU5V_3Fs*2erm|
zcIFJhya-pnsI!2JB`Q*B6u7d(ps?$nv6+Rx;_v=7{f-WX<^OBR*WRg=6&NFlKl8ac
zJW7-A1Q-rGR0(}s7Y7EAE>gpz4tU*y5BT!TTqv;*{;fhJs%N~vfPa^0-~!TvieRRq
z@UQ{|iWgOiD4|0!u!jy95;X&$d*G@_6fU}NT`A>yIo&-{xo+T-6xG>!p1q-VQ5J2b
zv<pU=AiuI=m^+?;2r)^$N{&(c^vcp-NQB~XCMbJeDy{thlET5EwJZ@=|6DZ?cS)aL
z!>(~FLtjOY3HEfbFFI@9-;MvkI?HaE<Uw}M?x}|rf~jGhD}csC8U2+?p3Vp0NZB<Q
z&@o`=wNu)m0na1EcBMywmlX^b{<68<Y-THi8G;aHUK$}UrgkE)!B_v(BGH#|mHU`5
zGOT7<88a}j09&g7(|c_vw_HiE9E~!>gED0QFV^xuKNYjy5E%O2$F_n4<L2RvSruux
z*uMsjagWD>PI8pVTe*$aj@(9)Q`pD<V9ptnQF|FJO37j&<p8TDPWnFmEF$cbugZ9~
zJXOLlcyo>)2lkut8|eFh%h|O(dgG8$T@GK2DhP&g56Ax+><i|c)H>|X*=-*N1iNjp
zq4@O@36vwj?mIvKI;MF7?u&<bNZntSB|k_!xj#G1p>Kfp4nDQFmS!vQWL<jRo-eky
zv>EAgje9EzJI9c$_J<D&=rAISo(z@=5W;|Cix9&EW=^vpBNB?60eA#6Qx}V=YJzps
z1qTo}^W~Na8D*u41UdEW|Ft_0y2O-#=~nbz{>2IB;a|dFGV=jd^q4*!<^)1*3S5a_
z*e?>=WN%&nMSJ`Y>2X7sv}n4#809u01SUZ1A0RGx7%wX^ijN>Ab_o*F{esoc`#mh7
zIz@-YxR6^pxYvB4SdlK%b6QB^9RmmXjj#=VU>i_pf>^}d7-C|khv2_F{Cl4jTt8a-
zPvS>#<H7wsFaFZV1=jle<sK6m@&406M;9YU0g|Nt)WI>vSW&<u+-FJ=#28b+qy6hw
z=sfFpUxSpq`eSzGOi7gC|FN>(_suWUF1X@!sQ$sJo}aoseEQ!PTx*ONvgh!WF(l97
z1@2#y6(m-@Yo~j&PDmNm`L|>*&lmsz`e`Xy{J;J)^?FZnbYFtL1|E<+q8f%i;js9>
zO<y;$WgC75P^U^Wp0vNn*1QD~_q7$7;E*ZFSU$aJyC<eMmaZdeQ?|Jpf0Hbl56qAx
zsENXC{x61VZDN|ZKP2>1*OqN07x24?t(Nt5ORCGoWqY5-5}GXVFRR#IrDAy(tTw&;
z438rpHUbmd*$T0l-ys&9Bl-)=T9SuM|77ld<LKw@bde*EdF;Se5o_OGCjyQHk`&DN
zXv9(sxrvbqivD-}P2Z+4x$mAlU5qgJD`o2^4GOs)MCD#U*V6UN2~KeC>!!MvjS0eN
z>j%Io#iLqL#mwRUn>w0Xbh{vClAA9<84y4~a(i}7U@3r;Lg$<jwg9rk`l~>|$<hxs
zbPg~IA_x|DJ+pdtyTmJ+D@0-NY8}1O&c&T0a3cOlP&-&=TBy659-IUZdD)1QoVExd
z4JA#xmC2pt86M_1Qa0;LFi-?1*Hgz)soM&mpI$?Sc?nVjL51gx3N&|+|0p+3l1Gy|
zhH%{keQ!!k;@wVDcSr}`Ajn*stKJ1e9o{D6gCMyRPRr{xu5h8m*OhxQjz<i5$U-2q
z{4_2yzT)iH$UKK-L+wM4kMb!^&?dnwh)*14iaYf5i&0Xvn(?^bp>D=jaQuO9{Ij%M
zdcKR~^^gZmkx5R;3JP~Z+x86A?}5?lA<k#Rp9jSm6FM(cbD1}S2D{W5*y}qlP-q)#
zgJ5o8E4sD%rZDu5N2q*nd<r16E>OodN!s)B0LlwzxX91Xsza&C0#dZRb{IiqrI(TT
zKnfnHgjP-|r!cIW`Eb+p%)-7-1w6$Upici^@GaFDsz9Q_^Nv5x7mg^#gtOfBkVyLx
z?w>8d(Nq*>FFSNsQ$Ib?>_1v7-kpHls&AwBAdMe-V?SjgROnY$R}$1*Cb`OO&P)XK
zM$@M2-B%p7?_SaKY7_c#?C_p(J1&|_9DG*h90<+%k6g=tVl9P7kfIkrKwt4pkm+u*
z*{GGBwbk0{)Wjc#;ZZ96pNk_b6Ev5#5cSf;Q2^%aI;W=t+{SIwB~3lVYrDn`7JU<U
zY{d{pavwddNj+F-fcANN%%bi)C5V)kxL*IwKzngE@6$e&Vz}ynacbgWpYD^<-(h>C
zbzSIo5L{KqqgoWp>$oB_2X2!MfX2FjU&yw4m4g7E`bGT0n3YU6S20!ea|IOe|FHJf
zK~cT&+wcMkN{3P+C?F_Z(kV!Xgmg%EcOH-uk?xiT>24MQr9nWtySrK9x&8j$dEc4$
znR)(tW_E^MHqP0z=iK-Gxjt9?M=<!{{lED`{$H?%^gx~2-Pt22J^sCSyjD~f9g|V2
z*CJb!Yp<(T`hFg05x3VN5>$WIGepMSbgSoJapBaII|fk+zq3JEjQ`#_bRn0_iC7<t
z8AzM>e8nDXUaDDDSWqCQwL^dNm5-Jg{{8#r$&iewvcMarN|2XZwLerc<5Hqqquy{k
zn{+!Ee$HBPBpRgP<my~eRb_E}I1YZb8=outWuWzcPkEGER0oMiWNhv1&1dTTF&%?_
zM)qP#ou-PDCWux-;H2f`=bx-p+h@F300Fy$X*}+SzF!oeUNOp_9aHOo$_Fbq*~tWu
z4Nhv~ctwe8WLe)HS_s#HAfZeS()=K>hlJs#M4neR)6v2&%}q)}Th>6I6*OC7lTLsr
z&*JoZDK$iS1hVunl>I@L9?#XU^YJ{O@Y^vfw4HZnqbgd=7{S2gtr3B+00<t+MGh8!
zbWn@kieE;)A)~_go40JdOUEU|po6x2FrKaKTN!|-F9KR%s~7=ue5e7a^(ew7@=G9q
zs*m0>ZI4kLXBT7|tvUPx7!|pY`|mXj7}VA??)5tW33QtNwa)tARC98Xjx=S19BwTI
zG#KDgy$6EjCtuI~(!oM1g+bK8<Ggi6t-)()xu%IX&@K3~;Y}a3<I@gc6yuiLo0TuW
zADVfEV?_gZcq4o%_hcYc-YA{R;Gm@Bd|C1%NK02ECO)aoX?&9==JuYB5h@e(UMmgH
z(=>9*O0WIhi6>w?7Ye_B{a#PO5%7xven>MTb^An#-2p_At7+;2izxOS1qrqgr(Nxw
z%+_<@GYNJbv^TYP89^MWwob<m+4d;#wS<912GIWyD5Y<inFG-!C<9{S)iPQ<hI;!C
zM@oWaQN2Nn!xF;CzOQf{A6C@Xfx&ld>|I@n-aUHY>dKs3{a2>&s7AO@d3uBpFuC|%
zK7R1%u~-P+a=MjORq4qstG-6G+#@CQJ;ZZtQ#QnEE0?Rw#$3ZiYYb5tt?mFN?&Cs|
zhoPns6?Lo!Oz@VlK;J%_C$(?uzGCKU{(U*;&5>DOJUt8zI&3HUxs0#Z3wFLo11tN7
zFc5ss6yF`5)+GHh##EkocV)?qy{RC#M09e*hkYYFEN-hllU0yBT;L5RGI=~@?9Hh*
zb`SMPwoUuz%eqV}6lA;tehz|ee-uAqC!m+X`1&<po&*Q>@+T5Dwu|dmfKqbR*^LA!
zK0*K0sRFUM9r^;IB<$1v?3Uw(d>8#bpPkiqtUb)v+*!;JJ}%e3?z{utI}FeQ=;ZKb
zKuaTEUPt>1ez63c9y5H-&!%lvfnD6qx8YU?#}f(6=balTW*plA_Ee6xM99M8s`Bb)
zk?=C25V2%FPYZMN_ga>o3M=gzEhg47jynp_&N%<spP=iY-xIoe`xIncmV-qTrTHtg
z5@AUd)`)pOQJQb$eC%(oEDjj0ZVa_%7msv(ZsVJ4i*^1cDe*B1IG#=>-HD(OGI&(&
z&C48TQst|tIJLgs7qZj#7F`JpSS|0)d<M-poL+8$d-_qLRh70Y54X1gf~bM}6r?Z=
z$?=_eThG<j>FpLo9=^;dxl_#_U7}UColRy%JiTA6=bFC)9@>OL8mg)dhadpeD=X+*
zqSs~j8`x%UnZ)M~6Rc<aFWC9&`mVkle$vw$`rMwCPIs>J{vI0~2j4_VwxnWJ*Sy&K
zyL=%^v~MTaq^IYVamSvvawiy}`OuKg_9}^h6X1(~ULFioc9dE5wdZ1Y_$}wYb>@19
z2Fo>$t6GO|t&Z7FCQfxJ==`~GI8y3Ol)}*VGSKze^Y1S%9rav3{dIQ~gB~jVP3SVZ
zNB<>~BHqubhAZ#gqoM<!+nb#XU1$ReCs({hmG2(xxi=i$_dU$?!|S-4g_^bWOa>-)
z)JiormI(;vp?+7P8&ueH11Yc{PvhPewO+oYbg>c{o->7;)JMm!7}-9Ag|*j;<}*i-
z<L@2pMW^XGFul25(=eR(G`5&ebMVS!ilJA~ttThhZCNhiIg=})hcA%sZnT02VFT7Z
z6IDpx<*4WFH{adc!QVoCdX=>tx7J<uC8}JG?Vn^Ef96D0$gDekq~oI1dLA^#SoYBO
zIxl`2RX?)q*`1>M$J-E$i3Kn75eeJ=W*>U^_j>$<L$BijF1=(9(~&>7w9(00?@3F}
z6Bs4Lal-GeR}!2x=e7b=VD+iVbJI+^EnZ8hQlf<_y+tR#Eo&MfkWz_uUGH<WM9D=v
z10Gx$bJscS=a>?;oE*ohnMAa>uru?)I}0#v<ZH8o#rP)G8FW|#|1Na2d97@%>=P3`
zuXh_H&PH~kFignfrDm(BW-m$8EHSsiTQbOylctT5JjugkpWYP;S1oEu(#aX#R%J}F
zwdqA%C(NP8c|dEGSL1|vo)NFkb7)b|qt4TUnPo``>X!F-90HFIx9HvC3^&S{l6khr
z+*jmZ<=nNNbk6p4=%#V)TN!A|wcx_eDHJGS#k#e2tKYv^BZg{fLu)jxU3{ck%AJ4B
zICdZlaP0|T!R!@9M0{)%UxN7GZ*`R{HhIkTT2nOmGmvHyiF}QG@NMH+K}p;c5d{M}
z*5PdVUZQqp=h@QqKy$==;!_HO<Bd{f@XHCQ^BQjY{(-w>w6jF^#L+VAnzEQ##=|+d
zX;#bT@&gzJ=rECw5+kxL2B7jCS_vPQ&w1O(BNRr9!Y^=fR;yqzRDT~TM$ud)b~BDR
zX)G8WRFf>8y+$-|ZeyeW$K0ZZ6t=r(1#bUnLf7YepF!@;A~_jviOYOD7jg$`$<2*c
zVeyH`d0!cHdU7;fankmCp>Eqy>IwQ9f}&Kj<`@OIMC#q6wEY;Gz@{Llz#~shOA9XB
z4m;0PEHZcU5H%c4<ICkhmCIH{@oh+wg6!={S_R>rbx&Z43?>RI$iB<Vl>=HA>KYn<
z{|b6@1!KXjo$c)#(;ZB1E~6}4)q#d<MpIkK=d`UhiJhiIv#K^>J4~*9!Dps&ZRo6S
z1b=o`Td6c>dBSXXxz1EJ!)?FchcoyVKDIE+{<6kwzoiimJy5fRDNnC+2_?l80*YB9
z$ysn0hhlPfZ|rI|DJ=%Rlwf;zebRLRP5zmk{j3!_ZhL8oh}RoRn@Wg@fx9l?HJ35B
z-q|mG)=*>4FsPc;s&!_v<g%SvS^SjZOn=nntfyO_2zt<-TSXC@9MjLtNlXWIuJ5`Q
zOypBA=P2`!kH5ZqhwSM?xdjz{71VLCA=;hvcI%*+$scfMWa6Y_;zWn}sNYZIm3XS%
zAGDk;lno9JKzn-%cA~%kYLxv@*_MNQb9whp;s{<TWdt3{+izv5EnFNsJrgofmywwX
zFb{q7V6tMXE7RYQsHKtrN}3LqGuNNoayU@%CGvTS4+wY0&~;bH`~YqLl59#k>)oMf
zZE(u0OGr`VVa1e@>uYv+%gE1B9wETVi4NVk$AtLSU0u|u&>6Q^C%EqO+?+HHbw!Yz
z|NL6!aPsw#O$dzEdTtkGSPQMqpVk}Cpu6%rX4JIvtu9;k&C?^pVDIxDKF;y@q1|V@
zD(|+pDQcOuZf8nnm!ZH>iDg;|oDlT0i^a;MLXs;2iQm&Ri76?^rr#nI2D-a2>ba)_
z9(rhMB?dioJFG9h!@DCix#|9N(Cdl!THh}n@8>)}ljTUadX1)*&VrFiJAjGukV|tL
zqRv*!>&w{_Y+!9uoz*XIMMF9VB^WqEulASUaK@Wh5wcGXwLsOCs(SM(ZCHo)&Xsk=
zKdhCC-pZ_pV_+SA|Ij_G-<lie4EvzNjEQv!_6{Wr8P)-^aCHpXV?;v3Fh8-AP@%r>
zT}9WIL5K#&#DC;Ac1lfpJTyG$AZcYLZd0L1vdQtow<}Zejp{lL!}=|zgcVIkZ+mC&
zZ0CsVCl%j)Luj|KkSQ_gFfTmB(Y|`iT>JjUpUscO-Uvd9U@zDE5G=;&{ud^gAW#oU
zGJ81Ohh}}R)=Ml)i79!U!Ds##c3a&g{$Nrw>8hR&kg6WKHStbqHSkP%)K9Kho6Iw%
zv%X9pFnDm)=-$Lf_(W}S!CASh^N71x-+pP2GDIbB5pqamph@d6P)|zv(2e6}v@utx
ze%o=5(|T!mGCx|@Pa>16gqh#iTKGOwC5(c+!-N%83{^cD<7=M<FV@jf6f(J~-92uc
zw1B~ffX5jie)J2{_y`R$OfW*gU4<;74;|+i9pkjWpMHPkqd5QLnwrK1PHEs+aC@%R
z6TWx60qHHybw$(vcy{DZZ|;75f{@pJQ&LP+`_+Y9YUEy~asJ9+#YJ(g0)y*3Lzc&Z
z^X-bu;~*s1>QlAlU*~D{(ROdO7^0Ab+s9JD$K;~=snvzjxspr$D1JK6b*m>k<GTD+
zyy&6t>ff0lfqnjHYWzO@()HQy#!=6Srf{0NuMqWxRp6M!P;UEecX3{tM6^RF-Ki<&
zvl}g0;;!Y@d~syhxFXZc%59sYiZU+^QFIzFgs3)_Fy>49dj-MJ6@i8Cqe59u!*lxJ
zbK8A~yO^hX*w67NT5eiVx_*Bn4cY*0w~)8aXO^mv5#=JY_lkc`XOZD=%%UP&Zu{dK
z2rSe(+K~Zu!IiJ<uucz-;_EDAb?D^!oZZ6AQf8)~N9IRwC2Ud2Kw8sdJ<t&iY4J8f
zwN&HG-bp2KxYe!}yb<BD)c%m2mx8t9^A+-baYLE7MBsBC7hXEHSn=#-cfzpnzWMp}
z#nyq49yQYe_p|M_7zI}vxcV)g4+~`7TmLk}XX?+Sk+C@-pGn{lBpw2@xYIE%p^vH)
z+|x5s#+5^=KA}V|E-r3{Ta>UDcp;i4wKXLJJv}~Gl@n)$Sg$#@Q>T<4KWLXZF=g^z
z=}7nZXHF@B=I6^C*ZchWb4;PHdlcq|*2ad`PoHeM-d+#buZYj~cZY<Axj?S2NWK+@
zK?}`s0-obffIH>2TfU-UZ_e-m<Gs~bJ_QUGA{P6_7(J<dVPYp@VH^n-C(SyYFl<lq
zo<{BF^n^mL-K0>A5P!E!NXT`52LOj9E#7PQ@jR0==kq3dDyLgYs=9HJiIj0Y2l27Y
ziF|S5*~o3RI%tAdivuF|(Cy)0_9~**S8+W|y3$dSIZd^tVDDis;(EZ64DEude4WYL
zm>fpN@9-mAwDN3-qClnB_b$r)%GG6GfXz<$bl+P7?KI+gLBbYESWNxTxenU1<N$eW
z7Z5R|dbM})OvvN@Y)kpKO9IQDNo~^tELZ7GTo0`Raf8vYmA)fnsR#0ACD5AQ(kGw@
z%UB|!xdf+cx4Qf)6f0QqW?aboyZf;YPmp1pDGiP%3Ye(ghu`n;3!VDHZx32p-1@tJ
zK0)Vs-R27J3>`NWK>?84ciP~A)$#*c;@S$1UpN-qfq+koiaVv5G{(tcNQ??2H1WF0
z2~28R)}>R$fY?Ru(i~bm?{94}wL+(_O=$UwbUPm%ISP4QJE+dj-S9niq`_ijC~VyL
z-pTE8E^V)Y75FZ`C+@c0>*yqYJ&nYoghBR~5=ojkeM!Mw?LFun{IPJpRNu8`uvwcw
zx^Q{(x|9XauE$8pTJ$7sWZO8ywt2(gJ3;MNa^BS48z>rBH!=l>m?l(Ju(8vLX2fg#
zeqd)`&dK{bI14T-p7NG!?S2LR4OtK^f~K5>pgak<^aWAK?8~XS3fMbW594fGT<@*^
zwQA8IfMl%nX;|vjuQ9q3B-gAdrGmxImlB{^8H2zjR%RM6CYxWNT}gu+u1>e}>-*xe
znSgaaBup1)K+J6DCNVj$41<-|u$2`Op<dT-KLpbV4Kg+pF>sa1^9oVHhJhl{Lr>OI
zD>V9;^mOqQlLZeq7%Q9Tsd;ov9Nid3{IkkRRdt;SD_cWU9Rk|-Bj!(Tw(wwJJUKp4
zdH>KeIpt`2`c<I@SR6C4b)&#08Gawue}Wp`In&pzPM2iip@<$LvKDQe-F*4>o7B`b
zttZ`zBu8FGDR!?WUlY>ug(lijq{+M1WwjRMnCwQ{f!^!u>-H9>Fnx6k@!<lIOdYRC
zV4&C-C7v6r#)ay}BT&`T+4)f&@%)9$z<kyl0ZA9K$3`w238pK~$P3C7cF(;MUO*^l
z$bOe)9R_UdHrgC}we+3mC2(MLSq9g^!QtH}=XE-cSZM9KC&Qg#-cZH&;Wyd+vPwVE
z^^GJxDaz8?_-Li^EeN*W<8f&xi<1u1pUg;c)oJlU?_lvtLQ2!c(TZ=m02Fc#e)DSP
zRO5qY8nxFWwkF$w3w4Mg<$R_e&|A_5*`sSq3{MIof02l9k3zmZYDkRqI#E@1Q$JKr
z?E&E@Rx=fPbaBYO(z)ZF>UQpAuoqF1vNXzcQAn^r*~b_d?Lu$4cD$}R*x7X|mRnpG
z^gteYR~Sj_ZcDCeJR!(f>C<0<S9*~v98jG|0-MX*!;hqIVIZ_eCZQDS#3n_95u>84
zT>ot0PfLg{v#8O`efOTyx%G=~v)MkEB^3UJWNCZ(aymMYfcD#VAyxJY8+uB|bR9wg
z#%;emYia8h>2ZeX<Fi*szlQ$n$JoL^eL_oa0w*FXOCcd-Mck|T#@S2aDZKn;DU&=w
zR|Mdgds<GJW|Zm{LAH>dqK5JZw~4+{tU4Q*uzEKN>-Mz}DBV5kn--Zhk=ho9EblX8
zV38?m9GAK-ICOE9m$@3(jX*c3_Bs}0U6z$DGa_N;V!;cb6)pU8m|V|1%pzcm`{P%g
zz)Yt29t3YS)N^mMA78sQ?4)2}V5y&+U7x$)W!w)vfSoizR?mt`asE&nm~JNdc9|bU
zE<c>+qedo2gGWeqBIJw3@P{W=N%1=j1rz3)h#w&9OIl54G|6K<BQDKQ|5wxbBNgAC
zenj@O+dMV)e&nAC13lr<$mA&a_3cAU-aQw^tKq6Qu*EG4_=Z{ghL8;x`x2bZlR=P7
zNMWN+&j)Io+j4O9Jm@&Gt4Lwv9h~~vIKv=NNn56fG)TL^!7DDHg0A7fOeK{fIjaN9
z9uUOg=dK8l7$E@5Blo|)c>a`)HBy^f2KN8lJI`<P%ScKKNs~1xwxn6NI1F6_e11&r
zp|aJvO70d9e8Y;L^ma^=Xr#i8khZT_pTr9+hZ;`KlenYinS**iy^|^0KQ=aY;;5<K
zeTb1=&a#qkN~D#1QuyT9U+)oh^3Mb#MRU0?8KG7FuV5es`T2TMbUMZM0U!n=vuttD
zq?wpnCqwzt2g<5Sx*G>uz~@V*cjpatH2z;y_n)K;0}sduvzr@#_6&Z0M}rjknwruN
z1_h-FR$Br`4JC8*gYiqZ$qxS}qA||eQ;eflkD~9nI##_K{MiSTDR;@oD@GHAILTZ_
z$zRz|FXb*Md`N9R+~|IsyT*62c%cLfEO>$Y<(>xQR!dTUeWf&u{vuxb$a;g=DOrVP
z<)j`oyXm47%{jc|I#-LxnE0qCCB<1up|~I8PU7{G(=LJvGn4A(HJVA<rDGPXn4u&r
z)5CA6xedzoi+_3^K<k^N%bTQG3n;(L^f-8R=;D+LpO7a|#YvuFJjQUWN+2AJm83?x
z6GSmUoUwt(RqQP)<^BQLXPEq7m&~m+u76Dk-JKyCR|5=t9(SEyiNS>3nd^lMAtmS5
z&}=0W`HV03&)D32TUU2UV#;VTB%9rGa%-%2YFpCGN7mBDjL{#4Nsk@i(5lfL)#I0_
z_OaB9d;7`eeIw<eezhegJrYvXLu<DXbDE;@Ms0L3buuN@&T6G>VH;y+X39$aUQTho
zX6*oeH2n2#7B=f?;@`Q;dJp}@@6cV1^Vu~w4ZUS3Yj#j_@}qDvzB!qci2N)CJY{9S
z{9sEP-Iu`wY;T|LPTnXRA7R}J>Dl7YN;LKUKpgPU(-k!t!Mku$$@YpYw@){Uepu@0
zkRi48441Ypwfd~DKdq?=Ib4Z|XWS!t%IiAJ=k`gS%aD+dlHoOXcUhlmFAlVaS7*Gb
zwi^VIW)1Zt!vN&tMV`>Lvh18*cfh5fh5%FBtX;AbV_)AuX2erlBf>??V^ErdnVP=|
zE%=w2`Oapcv}}Ebf10sZKMJaHl)42dfp8zOH7uLBL<sg%R>XqAeUk&Tqja|Wr@~$3
znxwYMqD0xy^<oW)8zCfxrWLw<op+r_2s5*?LAZ42mdH;8OWD;&k8h#3-it*G%6ENP
zFDGW)d#*lo5E6#|$?02=oQ6i?llhWPf#0KS7>LPTj3X2a6@^om-0I?Yxzb?=^Nk3}
zcY65Z(;6xH#!r{YDHiTq;UbgMC%+8Nv%&=QZ4IX;XH^ve0S0O(R8*A8O^LDAqf=Gk
zidFrK<g1cb??b=PH&DTh?!U>`Bh}me8brG^T*7@=RbY||Y7{&S8JuZL+tMCO;;TzW
z9Y!DzueUK39;X$ZtQecDm@}$xP^ev~l9DuE7onBtz=~;Uy#s@l5L!N|O;CF~&sbJf
zvF)X7Z2fYv93l>U^|qcqI0Au!`sFKWW_C$Kc8R-=VUg0<%pF^cs~im;)#o`!^uE)r
zEI#ONJAi|3tY>~?HZ~Y-g`Wx~c#cJGt&oYY+2Y3_-X?OE@sm4Rn!?{kSVkKm!Y13A
z4zRU<(969(3fixU8N-FUY?vJtV|Hoj&(YE6FytF=D4a~7MCC_7`+8_X>4R&;X3_49
z>l20fkeH-6K7+qb4caebdI*?w$a&pfzyg9$jZEeS`+LXCIA&aT9bH}5PwHi9vg;R7
z?+$*~R9zE>lTH2*ija^!{i`PIJ9LH7Q^IHsqFFYN*!_@vt|LIUVeQ`J#Z>;mg<vVj
z%e}9G+=Iol-@JJPkBcI}UA%oltNc=}AdZeS5FPgBO(C5>#YBLN8VjaOgNG<h3?J|G
z#ozY5o2-wPt)mt-wVdPR<TjVs5cz)T0AtCUiIHl}y(7c?+neUYcG2M9X}sP@9p#|0
z1?=*-pMPXv9AK|<I6eQIet2;r-H<%~G9K0j1%+u1>PRBP6eZB2B-<DzLZmKEGJO!Y
z%m9T30nFu#!gPUIDs&Wu%$sldEl%R+u+MABIQtH7+5@ZZW~)(luBI9e=&qd<Uq7+7
z&YErvVw|}!-B^_fLPKin)<>DRJ(Vz2u2QGeX+G^3CfGn}`(E#pg?(h20WC0XcQ-&f
zmuJ&h;?Fumz3)dUKz7L1@tMDbd;~cwG3@s@GOyLksiFznZKp;Mvk{S2Eev0xPkJ|B
zv6cU|ciUA+{gzmCv#?80Nk<vJzH^p^ZSNv~$7RX&jZE-SUC`u=Caq4ZuHr|3(>8Z<
zVgc@C`E0LRm%bm)GXacy>|I?K6$a23co)~R^WrP>t~`N!!Xa{hi3gqHsJnbomuo{!
z-&6r~KmlhB?Q$0mLlZ-t?QJ;O3u;-go+a8`8BuoCwZR6YsxzD!p?mva!Q>ZglZfN6
z)Rry+p(~S7TfT7mj}`!gIqn~RR!4DvJs}`;=l&0-Y;B&Q5TKUMRVurK^bz@%b=B3*
z0jH@rBZJeku|wYXCt+Jtzhe-jPun($u~N_vU6xKJDSWQFh=lf>ssY+p#oUQgpeQh`
zH(Kx^gV|^L>eqGJMzrm6$^?Jxuc|I;oxbbi4ITQ{xz#NTTVtCM<(^MM7ks&6eG@nH
zvvk`{ZJ4~yTQ^53=jnG4c%hIrFSqCNAHg8xhnMx_f{yM33Vee1_6XksVG5kC*4LO>
z2TosDS{IR?vD(Zf3Ivl7irYI=DP#<~Rfvnd5Oyk8GdI>TJVANmoQO#pBW1{D?jh5-
zgwulEaXL)zkju8>(le&@@Si|ua!0obM2M(st7@reW)GX|q(N4v&d*Y2jL`%A!y0k}
zeSvm@W}Ri*WkO~G_Q}%R!qnP@s_0TgMlZ&{gvSpSUQ77&t=v$5qlD26zL`nm`Yzgv
zGIo>>4GQjlgKZAJ9Ex8*wT8IaGbN<|nU2{Oyz91WCKB$?5uD$AOYV>8XAc$!xCoiO
zZ~eRPsH!20fnp8i>-WJsRiAVllCKBU?wjrdh{#x8a9S)bJ|+$V-eSM?%K3OFA;ejJ
zXnb>#Vj*KmKZM8~b=EuhE1W-qxp4LDj*`@5c6VeV@)Aj{Z0^f5Ha|&9RJ7}sO1Jd8
z?6{0FooYM6^vcWxd++nD<5y*j7}yk;uzSSi91|2mmyS!I{F6R(BP@-(Yj)O3*s6Nz
zD{xJ~B;~DWZ9Rf0;4-=An_Qdg%PKk_iJtI&5zpq~p7g#rGra^tjf-D12gM)go`OtW
z=w_TJ31fXw{pxBuvis$^3nxYEeO_zSQpd7FYBMewr)1GsE_FtARSoB~nk@XwaCXos
z1;iaRw8G27%b?DJ0$WBqUx44M@3z^~<lX%AH^3@8-m!(m@<&)OwOF7$koin?W*mFY
z8I_{;AWHJ|&~D~($5lr#jm2gatkYW~?c6W__=y)?=)BKh+TpU&fa_!U2_M?IYMj9@
z^5jWTU<=SKFg+7Q|3;jrYI$?p%y|#h62i1~$m;GI_B)>H-8S3PCv@C>nzFptGN%4j
z99q?}Um^s*__?9yby6kV=6O)^%h6O0+4l{B#KaiafZmObr)O|P0)knnl$HHaEgL)g
zRLkDPlA&o6FJCKSd|86@or1u5RQ;XeRp2lA^kHzdUPjhawC>F=T->@Qc%4G<GJi^d
zet7iG4P23UxelbU6(f3_=@Uq8C=esx6fMHU^E*!OdM<r(J*eIp+2zNLF7#=@$BL?2
z#!l`1sg(dBgav5R5DgdagM=y6_{;p_0(&MXm<gRFfun@rV&8{$_lqC!`)#KXS^1Yy
z<{Z79Q5D2NuXKj4-3L-IAzrMGMa06z(<f>V5DlIUJjEJ!O2J~k^;wT>`+~89#i*Im
z1;lfec33c7jdr9^*^*8N4XErDK(rXAcAYC87$KTC&IbFGbJ!mG%TwV$rb2t~gg0YW
zb^nB)2_u7y9wUZXP&+3gK=Wcs$-8qPsBC^qN&(XnD*}Up^chVIM1Pvm%4TYHVUFhe
zCVS=dx%bVwRg$(yw$f1#hZQcY_2$sHe&Zg#?w`>3hyri-Io|A;#e(sVxwO63%TJ0#
zbDV$Cyoq4tpt<$0@aWcOjUS|7j(d}cnJoA@k2X+*pJ!`p+fZVyYJ=tWwg==;5KQh8
z4Tbm*83M?3wi}{rce-Fi0@}K7o)Mp|XwpQoIUmgoJec)_FYbv^inN(>anw~Lohlyb
zn@|064l5D!pJbx-4Bh>F{B7oyh#-@Zzuk}JV_r;uQPZ-O_|U9q3mnswbfcXX%NtpB
zUqna%$5~6lN4ADak;(BFR`g6ozZj|H2KM6DhhA&pP8ma~dDmHY3bIPsmdzre*W!@)
zOyUpA!RWm+q!M)HTIHLC8{2ul2bk`0FL4!qmwcv!TxU#Y3+3~bi^hI^9Dw1jpP22O
zU?=^^j}UuqKwf9bk|{=)Jz8MI*1*iSZO)-dT4ITugIy8O=id9X5!ALN<EN}p&al1n
zmsdcw^atv2<VcY6j_&zu#-Uj<Xh+wc9b~<5UDTAq9wfp%jwRsG@Gg7I<;bi}^iyMm
zCX<>|h?v`7@ak$EO&|xuL~TLbRM%ENmc0zvc!Qq_W@6$5V)Cg5(Kj(Ya<U)@iGu@O
zPVVwauP9SXdBd;%zd3!U2E^mj(>4}#mwXR6p=rZ|<`ygC>~i;oa4fJik9+5iKj&$4
z<v7vvLa%Ng<Ckf_sbw8DNY6fZw6)&3G@R(EBa*AFWDyZ+l2k|+NKgg>t!H7=$G8zk
zvzr#St37*&18ULWQ52LOH^K0|86(FH)|TdO=~vpV#bn$cC{m~6Mz()Qct7#7@^BA=
z0z8`vIs-iTrnI(ksx{|&WVQ@Kn)M2Z5<2)3QhAJ3gn~q1wj%b<sv_n_<@s?9-y3SE
z7<a-`Vw?-$TDtbe=I?JW^%V_5b|(X?C+#R`J^KQRc&rEo=q9V`o0-ZA98MSQNaLDM
zBu9KDg*+{*Q1X@dwXFoSL5Hohf{_v08O(_qW<b4_H<#13A6t#OJxxhp4CAl1gw<;)
zx>B8Br$}XRQ#O9D=VgZ*-ITw+;W{yp4zCG(K{v_1WPu$j68h-4o@h(TE42$p&XKvP
z;7=C()v>lQZIGY%&(x2PVB519HCPjy9p?+oF0Vh6o?!u?b3*ewH&+yo0FfjlAjT9k
zaA)%h4Tgip4w#o->-%p1aTk1lTGCS$Mo%)BP!s_RhU}$lg}Fu~7-;lmTK<~vI&+mY
zj+|-lc6f$Te86^5ZN_0S>fZh|Z@6c-$Ia;Yf}tuSptWd|-B&)JghqGR(Aa!FVO!j>
z693VIQMmQA=MXZ2*mWEZp>Ub<bv%E4_hw#$f6dBZx+IkkncVa4?^1W8-|2(92CFC|
zw#Pb0@QgvCq44lkwfJ(f=TZRrG9+St4N@JH3ImAjC8_aQ*}AEgEF#{#^y1%jPTY4<
zG`0}OixKIN!#or|*2x3(-uX0XS_I-*q$l@`)6rmorPY{Ojo?0XUZ0ViLLkuey|_|y
z@|Dacl{3~q_wKciVM<BJFggoT@Kf<zXlFEQ?*S-}5?KKDJ*ToYr;;5$(|?50odaL;
z$xMlny{!r3;@f*^9Q?+|c2@1V;v3K^U}%T=zCJ|8mzzkHs{V$$`qNMN#i9^UIJjw&
zlg$AlRb_20w7oz7*=>-SHH$9;x>dH6K`1Pgy;BCS#8nvc_a`KtJoENf|Lol=-R$r*
zcz}lgo}5hKvr=xJ;(bz>P`dF%#L`cFqnCeTOY5tBdEV;4MRv3O__=W(b;2LxM|~fA
z*|#p5w^^u=7ZZb$JV|tfPt|xb)phV)3T)s}=ja-gQE78ir6WZCAe_K(^{A`b1}4q+
zRrtl7F`VK_v}~cs$sfd%%pS1>;(xpJ#WW}mtFYihhl#WIoQ_t}n%yG?!pc6XebG<q
zunyz_lo$Wt#5UJ+laX%e8p11k-wGlG2YQGsW!C@q5x=|fs&kCi0x`ZaZD>FY?Wqm2
z$d$G)aJ$>UCOkCavmcTt%RT^}9xrf*9_N{KzELJNBfsmwJ=HL|zYD(`_#W)=KhFZc
zB|l+U@29f}xfe?s4~Ot2|N97#UxR$aPq`hr+;nkU^7k)B4e#6umBK-FNT)$aaYW!N
zC3nlFOCGX^%MafJ{6XlRk7L_O9klZASi2OW#f!WFd!Smgmwompk#YI;Gup_@;`3(6
z<as9U)Bm=c4ryvmKYH*v<nh8`j%v|U&N>GkD;feGVj*Shj0P*ZMbIZZQPCXTc5-Nl
z9@zH4gKkb1O%Db)>@|ke)4Nu*l^Pq~K%haGa3V1XY4^Ng7`3P#D4~?WAb=&Z@aKs#
z6#cLUT=vNmPV`HO5|e|nD{HV?{^_%S9b+8ltasmN3Wx=%yT!W2OOnRuq+#!9qORRq
zX{G6R<aK1NZ3s#<?xKg0)kbY;^Gz&kK<w*|k?mU>^=}Pt4z}h)6fhdzUCsUW7AkW;
zp=f|8WqCj5Dn*efm^#tLeU;Dt&Tn(bEQuuk9XSMpm*mqloK`gu_5dF@N%%YEzaRJC
zSs+g{<ds{W!_Rg5IVmaRZZ&=nkpLa9)#-UvuC7fnU&B~2`+67;kIuihKAKr)Ocjhi
zJdHm1IL?vI4eh1<QcfpuPiKk|$4ca|fP@{3%=T;%YRp=`8O^E5CkA258jSD1n8u7?
zVUgt%j7l<_H0Hw3Q%Sk1GeWcFD26WTIVo|oI=mFL>rGBa`?wsK^4FWMMyQb@N=EfV
zCfMrsg{p39k|OdY6ntm}hZ0lDlV^<j^NkiG=~fAmIi&^8nf-(x;y;x`VY7RI3;jD;
zWTSdk!Fo}*%7N!D|6Qhb-Q5s0ut`c9h!U*O*C$zCRpWD)E07R7xKWWU>U|Kadcf<T
zSg6t!fN-`K;C5r18kpid(o}WUQ7(XYrS^y(jUm>a@r0<cf3%QuDmbXuzdhcMJ>Yi|
zp;QL--%cb_CJH4A=Ce0tr9x0j;`l5L`nhuk>q~OzK<9(D`*QnReHqWlvYGx6{~qdS
z-Sh*_{pVZ^CJRSmN!qL)c23$(FJNCfM;JYaRQ_^wuS%0AJSEr{vKNEuH`w9VU3(r)
z9i<&aRG(Y;wRZ`W*alzaJ5Kd09w~xmIqc6Y-LxxzMNZcE*s#fZz)#48h9CC2Ud#Qs
z{R~y#(##ia36G##ABG60%`+y{)JkSb;sZj{Es0^8Xsc<*AGMiN3w_4poj);o<@9z;
zTojdMJl{Ku>PzKj<evay4><Z-N{U2_dzGKAAK^z$&cB>;S=81rPD`t~`fN_c*nbJP
z65w?)<Jd>aRQUm2LOY9<uSN@EH;y!7f90@m{%voHo8J$IeNbk$vfe4L;OG$A6Rb{|
zdcXHP`Z{mCf9BUYC!x&xH{&W|(h`^ZqZ}<BS2ykP0K8j&uQ}MFjr+j7VS?s#CtE{%
zZ@bZP0g_0o&Eq#DJ%v-mL0H>F-<syh_>-)x&6C|2iyA(1ut9<&L!;(1evVn#TYu`y
zm+Y6s$Al*-dF_{yL;cUDa)8;fpzAS<8f}VRE!i8Uk}DavWRZNI^L?*dSX1i6wiB8H
z%|dTW$40rtZ;2pOx5c3Hp#<ifId-Q;ZuJX?3Z`76R$kX)-!4=but%ll{M*|umZ`G#
zG_J-~QgfR3D<u6xl~L=Hil+>n#RZw1nK=Q%gO@RpGpoM1u`g}%R-Ap8m**`4j2ZI5
zSYObI*{Mlk-{!#(Wpi*Oqv7s)rF}k`d3z_ahi{ko9N#!al6vtdy}VF0>WlcxNA>r|
zUr-(_4`Y(mq5t^907m==$iuG7XuqwdYY)OE2sJemA*8nPG&DDUrX<;MPvPQ)f7xXI
z&kc@z6T8oLR8Q(tPl%Xp=iEPScMdNU&%BP31k(NMVT25lFlC(gDZFe@r@7yNjYf|6
zY^uw4#quD-XRg`0%P()8FiCcQfBj~=&ykQZQBhr`^16t^HpkT6v$6H$cV9>FZ=|+Z
zjk0ivgaq2$Oe)^J>He~~09|bt*+K&L>se`GV-uEw;UU;4unMv3qkKJDYTdPy2KIb8
zH^f;2Y!UG4Ud2c`1Ug*IXCosWj7BVwvpd)w$NhDk*Lw(C$!qS^uLAL~r>S}vQR>n(
zF?OMCIf@m7*yBRBf@GUJ7Q_;NXz(fc<Di@4V%8^YS3^3q09zFcz6N=6sWQ@fybyAl
z_?6|5IgS6gP&;%Qx%pS?>Led)qr8!c7(1i2((d{Zc1pv>W-bbCw22%UrIq=D`(=Ap
zQnu`6s%SnFg`l_bb-jp(J87WxMvQIi)kw~?$I=0x0<cX=N;*6zZ(7~`blaN>RWwCt
zs}#P?Mw1{>Cn>-Fy^h$4KL^(DukdBS2zNKtbYkSNR;Cq!dRZU+r4tb3aJGr6KV5%`
zeb(>~)Y+YLA1KKZa!pHpt6!d9)R9|6l2B^AwMXN<Wa2U$J8YlP!ga7%*cU9Xqs!qK
z>+>X^Kq+mnL{E=psjX*~-W+PU9BCZwr&UXDwgV)>Y}&A|x855)aSOI-+-xq_^_Oy<
z3bcAd<g-FX2)~nB)%CJ|@|5WGCgX)9z)V|P{^ZRlfCJ~?a{LO~8$<cdD5mP#mr0!*
zv!I4&wN}?we<zK4r+AUsv)ZftxN!70HYq!`$HGx3;4d;Ka#Aiq(&GN*&SRAivD(MM
zm-9a9p?4zPt9wpMDF1BfljYSIa}%mK+LdPmfWBhVbx!}QG=J5iZ1l^zflJ$((q7YL
zsVOx7Yv%~oOt_BRkPg4)H}Rrd=N&~o99m0^(S3{WV-{5>GQ^nEU+XsVa@K67J+F5n
zh=x*G+&XFvq3mU<=T?kZ5)*4TnaT-)jC=I+$)mH=M~J}{8n19b$@}gjq9UC!Td!gf
zCb%yZk&(|{N(*KuFcECXk>rhSH-?rBTR>9|M)R>t^ZVF**t*<lk-ThzBZu-F9@%qs
z{HkLa^>*G<(dL-EXNU!ydhW?fH*V4v1a_({el1iDonA9ksI*$&H$bXQWF-&d&aB(V
z2?_nBa+MI|uOD0-+Z3qKg=mZC<3BHXxG6#6=hoJSx4z<Qg5>9h9~p-Wy0>`bqy=MU
z(9K$z?YI|1Ob-O8V`>>tIe;WD^U)$w@3x!tI7{zG<_Fi)){5p4hbIH@l0Dqen6ey*
z?n$rnf>*Kw<88_TS3uw;PDsS<YL%_hC>z&(t13f0llv`|glEb_$9$dU*yA}Ixb>~!
z^Dy}o7U$tjyd!1W2t3X@+4QU40=%Q(i)Ig2R^$1;gH)jgzSnK}#m&bZ_ujW1br}OG
z0&Cd{@bFC`PM;6`<3ba+*E6*|%q<_GWC(;L4{Du;YnIGkZ{WPjeM%2k?=oQ}VoV&K
ze9iB0vs?Yfkn8q*4shX!TCVTXQjM4u>eO`8Z+lD^TF<U!>aW({i{z@x<Tx;;)ZEmN
z%yrPW`#0;56(hZ1_*0eD_>%W8*IO!Rxm(@ynIkNbRnX@mDpb@!^dUcXm~;ii#<ewn
zxA{`Bp8dX^gi7dYy)20Ub>m6wImU^zW936%scclQI{S>JMhsZcufQbqdcZA<X)*q2
z9h3C9tg+PmxPY55Mv$BH6kJZhOa~w7u!8jQ3uk-gw;|i1SNM;e!v<tg89CWtFmcSU
z&0bUzlOyTMA4r!E@bGrSWTK%swPQ(TQ$yn*_%b;eLFMh@6;suZu`NmJkzFa#SZU{k
zuT0^b^~zG}z7l|r0myGKT#{WKjnPN2Bi5hkHrQg6nNa<Gg`-*xuMV7LVF;RK^}cz*
z77`on)70lAV0-Do{hU8ZTleFT0h@HMCD8zJE|;AX1u1M&J^5Dv0$R%0=SzPCOD{bK
zL^?9gn4jM@5+DEA2>>h+wvg3>J!F{uun1@(iBaYmKb0qWZferb&c1{df;G_1_}g2+
zfC|~Fq#xW;_euceBXzd~*4FW>wK5N{qkP}OSFfzlaQU^-ae4jW=wq%Nw!oyv5g_*z
zy*_>&hrz!oRRJ34*1NrXM;`oY(LSg%Xs*9uW%m;xlZjDmNHavS606`3yG?#hdThI$
z$PFtfwcKXnO!=kG=9(JOl&zT^f_>8BwnmsH{<fJwnf=%k=vNum!Ds-!TjASe06GIv
z6a|h%wyU0n_}xaI-m>G=dfpAIXtwL~*2{<)?rC1gsGT#UTqk#!Uvp5AEvYj{k@3<B
z3CGy`-HQ)j(EnTRD)b``n3C8mduGa*dEHhyQU;Pad~)X7mbR8WmjA?mDSuHYD`<J$
z83tJedqy$r!1eYvKk<EsR_{b<M{L(HLn6{xTrN|}7@eHTm4B$9po!_o45+iXYP#6?
zh(TsA_P?{*-#lt~_j9fMB29)m>Wf~nw)_j+8!rK78eJZr?ROu1abU7(93JQ2LST^&
zjMfK!1ka%BX!(5msa+AOyoC6VY{aKIeG^qSsWla~=#P(^w3KQO7DL`+n8196+q5nQ
z^8Y!uK!Bw_+nj}TO9l8!4}5>3AZBJXAh@ua(b8#DQv?kePYgc!Dv!I9c7nngCk8<7
zQa>xf3JQtBDaJ{93@nXRXa0OUYrODp347?%X3W0DVIiX>VJ*s@{t-{8Y}o9hMVS86
zK15pb*Ic&ds3I;~oaeY6RN1h)lGE^pH@59x?sm8+K+2=r;k*Br3KReh?$+|^7ZreY
z<x;vE?9)VWJXS^P#q!*Uwr^jdDR`6CMTV#CnYb-i@Yc$56Sa3W%gO>Du6iQ+Y1fr&
z?-74g5i|+VTq)`-@$8R<9LVHdJ%igW`blwtfT#9TPJW2Jo&YW77x5DUt3=;y#Gk{d
z(H&yJFih0F2pw82Xj<$ETZ1S=T+dT}Y_06Eb;9_m8THjCvCG4+r><Usn>IE942JTI
zp8ZyqRJP3L#}&A`3rG_WxdEXFSVX|+0<9<)zvQwJ#@zkUuXUAtB)n*^emx^%+q*?Y
z<5jAZ8&4k_BqDpkXcnJ$>8DsRAbXknv}Wc!1AwKPB~W<B{x-kysrcwKG#;zp!&Pd4
zS^4@&rEKXg(Yod7z9m73lo)<SU#lx$iVzMu%_5tk(_>^mOtSxq-<y-p-(n9QUi#dP
zDG)K~Xw)nVMEm(y_zoeQ&Zhf|XPi)V3P1dKn-;2z>c7AFDU`y~z47g1Ef6tHGvL0p
zH$CkE@%l3n$`}|@BE8_}u$#LUiXaz~$W{h3L+P!>L)hxtLSbp)1!g_m$<<}|^rw@n
z<1oeK%+#MP4%p$L9g;7NeyBPFlCNJ!-WI(Bw^a)xs*qiIojx1MJN>>;&-cx<WaA8w
z)Z|F($>Fb1HJhc(%TJN5tve&1|Kpm3_CV*@A--K(0ws9`q866ML1n#0Y_AeJ@DI6T
zB(OHu7+o)jrpcMkJtK6arTV~tti$acup}Xd93@HJyDClNj|#J<eC*?6cOQ9~7+LwF
zQOG6TuDS}m-6ws}7S2CaZX@Mx-K1{u;>QDW)=ZjNnTiGPrADhBju2TNPFC+ODD$K*
zUUtXaw-YS}+rqh#5i#gh?v$5S)1Z{=WB5M*stn4xKhwG*H2Lf|>^B5gdjG)lxj;&m
zl4a|i+mUGS_^ks4chr-oy8^FihyhydP6We!^vPQPxG$c{i;0h|laK!o0SpvkdEdev
z_f7U$Ri>FnEmg1pN5%6vbMraG8Jek5c&6$Pj>F@O6G=w!ZcAgI{A$t*fu94oP2t+9
zY&3&*Cf~m5D9-)=X*F}UW4bogeT6*4ZPN;Rz(y=sUT@sOS)3UyctGXHUyCqQE?5X}
z&ZZis-(}rrrA5mBpb>5c$hBu4rHjPr`dcAnh&2S&u6ts3NFSHQujVp%BA#X!iFh#r
zD%bLaAejJLYa?|FHFGWmAEb4|aU}wwM1#j4i{Lj~VQNION!+9`Kz;xY(e$CVoA=h&
zdrgD!2aG<C9=y8<BL~kQz1aE9<Nd4oTY%?Nsi2uIlHPNJmr=b78dpVPbX;6(5Tc$>
zI_Ef8^~kA4L4M$O8fSE=v3mm#4EB%PaKN(N6J_@nMJU6K5#%R)mVW73KbdR%l<uPi
zOmc{B)|)!>f;>g*JvcoyIUN7yAM|@#&tEbfG(LV%&cW5wq>K&wSR;29#t4gybG>K^
z^JK+zbgr(bVM~xS#;zqCJClRX<QQRpCTGt<TU9e{uy5c_T-;BL2F<s!x3RL<qj{ir
zTD--3@96TTYwzmUQ!5%OhPG_xD)b9~%fA*i<0@?^zI_+-Ehxg@BP`vWz1R1ayFX=Y
z=#_yCw}Q*=mlZGT#|kepN#t-1ZGLx69LBxHf<>n5sHke(4?n9?WlDjB*3vVgz`{MQ
zTKmTBJ|ySwx0_&e6BR5Ex_*6DP$7EofMio`vJ&MH2m1~&Y0c7v6qF!+fCII>u9Cd*
z4f{0GJ=xO51axh7&;D%5aK+NSMf|j`3j4~4FT=w?<1gRAvfCS$im04xBJhL{iy0Jx
zDOmVL_v+V_DOZmMD3&RFJVXsBLpl}}byUC!@&X6@KbY%o?%&My*8AN}n@=p-$ze@h
z$ZOz1_O7(}$6T|w9y6mEM>2Lr;x8loM*(2+0V4+X*Bvz2iJs3y`|R$9b5R=Ep1^F{
zQ9GFMpzEuP8CQyA0q=L$C8;Ei3Hy^bqismTIC0Qu$K2FZkN#MKkXOrk_W5~u54#=-
zpT*`^oQ2)O=8~|duvFd@7X4j2OZrfvWzBMpZ>*wO6F1ePDs4|?jLQa|-T$Ej#gi?c
z-Fa1wmLzpnp>LDXpgOF)ij!;2apB%;<@D$XPeeCpZH~-Z@M@izE>Jcz64XCPFfce}
zLGQd<FU@Jg#D}+7ngexN*q5f%llFK#dVY>)6*jaWY?xyte&5w>oL;RuAw>`@uAsy2
z=9!Y}4oYu)=+oqLM+*e^<vB>#){?ThY=j1l{=9!4twDeq^F<7Y2=TMxrKQj8PXjhd
zF#|EX{8ea|pA~=!{Br9ntlru;po)0_@w-?yxk=ZxW#|G62Y-Xlpp(y+FaS(--#)cF
z+v%VD0;^CF&sNlZG}eC0e9cz9|LtqUw96tHxekbWL50oRVE@BGLa1efrHqcZR!|>a
zHHMMn*BBopjR{#znAHGr6Tx-li+GWIXEpzH^e(_H;B`1^kJI{B=Zs!KpkIGedwW@v
z;w~LW$I-@4*C{bcdA(HTzayw6&0ec>S{R^$6k%A<23CjwvYV{GtyeAjXvr~%%{lk<
zcfll}AOI6!&D#za*rP+2pVmw|`<-A=LW)8Hvpv(BvN-x!KS8Dz+395sLryCpmpzko
z>5}kJ^kywxf1h8t&==@cz&w>a-lGSnFMA5$O?&M7D*2;@W82F=Okl!=pYgt!_O$6M
z2je`yJUX6eO2v6ZaeW>AP)0Z1`&Rt-?0Z`fhs~Q-dm87yGk!nyA<F%*yU;bEtn^LG
zRD(@w)8Fad<NO+WuDb@qF(RSJ9wSe_l)Kw@`XURQy(@3TJ|t?(thIHpGd9j-VN2wF
zG4@qslor-@6`BAL&G$Oq1WB@*cl$;4o|2NM-3jXo(8?G{-tDuUsXgFz+nF|pMfMui
zGA-pt*hGY27Zv=_D8FpE`D{?4%BMejm@(l!Xu`UnTU)6(*=*YtB;OPyb2+r5s*ui&
z4pa3$>KK0xp@F{J(Ow_(pImSThN#RZ^?kQ3cuSgw&E6QmuBo0o;v{A9eN>;VAxp*q
zJzHg*W1rt?2|DP12y1v(a}&DIs#OutvpJotow+*_C|xpa#-StaB56cMIQnM>wS%QX
zW$>+}zOVkI@=@0oZr>yWYSd-7T%n3ZoaU&pL#sLjcl=q62dK@=rx(7%nIvO9*dei9
z`YRJl?Q1Cj6Z>0%g7m#0#{!H@aR&nvTm>C0ykXa733(}`{EyihqQ$c}tzWfl;sl8(
zq=5;UH*C78)`>`qGDcZ)RkvTaWx*^98yJ9W?!!%F`5y+p%ZnVQ*L|>TyWsb;<L9?`
znGkM>*gthzq#p_iH|`grXP6z^+s_7M<;=X*OAE%ff9IJzvy{0N75>n9xOUL;bpuNW
zuHOep#v7)(BMG+noGHnVBqQoeUcjpBLP4P%6H>X~AykvS_v4_BF^O+{ym!~eea|mO
zN)Kwje2@9a1Ajk$f(&S$v$;%eB`Am?hy7HA)&_v)fLOXWud-`&03bBHISyd%?lz>?
zVh{fVyf+AeQ4^ZS=|kY$Z;BB15fRMrT(g*tyi})*icEkcGLoNkwcoJ1+OD0rZ;ssf
zA95E@5Xnonrh`Gagi&@La=wNJK=TX;H!DODx2DdZG*vECqTqudxm+baKJ}p#Ua~o&
ze`~sby&GY2vVSeOOQIM(^_!#oh1FF;+%KKohu<k$Z;KDs@&6m2aUcEHPy!?Nazoq1
z%t~h_qZ#?X2_Eb*%$gt+e1rda@b3>ey#Kz)|Nal?|M{%{!%I5hDeJ0HvZZdj+hDS!
zt64wVHX#1XRl{EuMfY)gT@|l!nHe_=yHF)h_~eg7`l`4%*pP4&V59!qoZB#u!@6{2
znU+}j#mdKf!;PNz>=H9Gi917P&b$rUP>%^Kxu)9W$Q__NjeFO|is$nCN6q&(IPRIu
zqsf>$-4`6Nx$60y)E7hN=z_I}Lqfqr+MG`hf8#`4+0Lg($C3VbM*fKobftGCZ*4PR
z>%^aGF6{80ectrM%$lfd!HXC+J^c%qj`if6a2H?bCS7N}=0Wy@{df2v&;@gpcXZsD
zi+1Q>kNa375uWBf;%sGN(_7=j(Q^MJ?rm7gdFsB56bAbpv*o-8=QtMZ%i{~JyXjNf
z*anP@(zzRCxl4?$_ARRWD)5|Sb9|f=BL?~Y<3Q^v*Yg&&yb?Fd!5s{mU2eBlPZ9z_
z)3eHlMG1_Lj-At3vhJa6V~lIFIXC%OGCyH{8Ob8ml6O_U!u*e&-$muVxgc@<s-GyI
zZ;1z(3%^r?OOcU}7<e27?SC#`2x?W?AofL@&dCdlEQz^aBn!XLZgyHryHIPnIHy+_
zxvX2Tm2HgXHC{I381jBeRW}KQXXDe&4IitG7p4Tdn1Hm`-WjUaXWIleyNZaN@ob4f
z-I7wv;|rIUQD0zoTNdl%-lojD4Zs2u2(;ea2!K39qGos3-nw1B(HB-SeGJr5QsFM~
zzl`6eT%_|jT{~ENS49L<CCQGsmVEfpI#X{eY}7WeoAr75t0mV-?Y>Zoo;Kd%-n(3-
z|B(84Z_{unUC!Km$IhiZPw6$x?n->{-zK$NU&YW1=<Ff2nVoS)txl9kV5du$TAQ7_
zxPFi9dH?Dom~p^fZXFK;K?xHZ(GxYBdC&FDso1=APCW%$%BaZ}j5zVC_58Fw${x^A
z9y@CX)R^0P>~z`qo~H-}>OFyYb=8jt%bx}yqd$R+S>R~AiQ5JUKi08x_GlrRJhe5S
z8<RlMmtRHzN&vwL&n}{SR>AX9l0D@WZ1hFN2<M$)u<!=5KA;ZK4>cPaeo&!u4vwMP
z2;iG)lNC29TsqqO)8>tF)hxGHhfqJOeZEJuKB4oov0qBA#qM^!V<URR*a6A~>p2)e
zoNaBMg2L0xxp9Bg`Ov6Rx@6w*bOelB?eXU@AmsP+#ds0b3rAS%!C8bTqaMLr`z!%I
zOt`x-uj9_7GXRoI94hOOeW!!g1tbXCk^dKAUjbBQ*M)l!1ZgFtK@m{t25Bj2q#Nn(
z?w1e{k(QPckP@W3ySux)MH;yqzwgic&%HCwSch}YTYImyp5i@<!31ujS*6p5-Ch;8
zKfDLPNOVX6Pr*NbkB{`saRp3=(?(*Epi@*VM=@|gYpzTL0g3~9``DJ|KsBY2^Q-=-
z_^LKwbdZH@1)v|Un$*^bk)YREbG`J{TB<RC;_rG8|D{<Tn{Q(FGjzQC>pcyD;n=SU
ztM#f^GevPHB!To6b5KEc2A~xRLLG44>iM>XWvzjYsUx9D4PZhV>0(U{RfEcWqWArV
zjyW7`?#BnwJhokbVe-?ARj{rdXoL8Mmto@IczI|0z3-OByA_3$)An-Nx9y-Wg(b80
zP+eO5@&~_Hk^R9?2(&N2@)Psx*fzTrKk4SmWm{nI>=z4Am|?*Fmn6Nj))P7d+I4>x
z(fYIQ(J#JOx{@`z-2bIC2R1k>U{nx*@jweqs(=8)^?;zInTuq6a1;f`Ty?A{n46d0
z2LN8<K~vCxA$rG@hk`bgnCr>zi1UVNX*D?Oa8I}!RyE}>drI1C!6(&nuK`esSBXCf
z3g5P{z8QPN5GB@1V_F4!qVhsxrfrUYo4lkj69f&SDzvxeySRsHrtx@OejK8YbGW1_
z>4+3-%|vYvBO$cpEMSjt=}1GpX}JN7cGvXqNd-wqnR=3PULOthK&@7-&h!JmFwf0V
zL!eRpSg|feM%J*QD(I@j3u8r@DVT$LuQo%}j+mZ8`&`i;yjOmiEZ{(I%+Fq;!RIR{
zMyo_7sT?;A#|ImIs<ydMZr@v`Z{~l#y=r0Y`0N=Oe}6wiQ86P^u8!8a!NgK<lxVxx
z@%Zi+-^h;%h`^vM6Dx-p_DM!1QOx5|@fZ-#K(Ea}pH~&3mWt=yr^iTe0s;Bg^#Bcr
z9cYn5sAU6%sbacMVtm&hKbk-GiRyxzr*BzlM(-GVVKHORstaf#WOYn=nPn@DT?U#Q
z{ZyGzVi~Rq0b34}03w-IkM}%k`Z@?308l^|u0+1FJ4=mN`dGd?`@-z!vtJA~xYWP8
z4S#|i`HWPuRfE&@hzs(2tx<BF*#u6&9v`K}qc)NI_b;kM{Lg{Qz<jr0xZ_npVdhOw
z*kgZ07gF9>y%)IA5=Xxrn!_Z!&G)|diVH8V%pGgFZHaV&3O4m&bl_KI^OOx+2?LZW
z`Cq$NZH$ZwbyE35d~?<6`7(K9bv6@s6@@k@`|qNa=vbo$sMv%(WdP)x1GQh^*|n~b
z*;fXeOHDn+Sx(H`%7KR8;?Oa0=lMX)*w1Y;I0GaD2W!JoJ-7#6h0`1chu%-4Ch~6;
z@;n!bYD&M`HHLQ~VWbG!|9-nom>7?yZeajR?80YyAy1|9Kx2B$tS_=^1-Jyhz_D|P
zvo<v(fn`8OtFolLjcrYU`O6PYf1qzDaUfJ`Tp7&9p|Qt)9CbIVUfm(x-RL)DF_tFQ
zRFtPwc>zQK`lgSu_l=u3T00O_6gd`AR{&Y-$vY0xKsL)=0X!u0+Owc%`g@kWebN^!
z?HyV38Y0d=3gq)L?d}635?)g=skju~cUpYg5WRf^<2ztAfz9VUoDD}%)h1f=1PeK4
z{ocKY-+QGIcw}Oifcje$!5vfp;?MNQ%q$%}v0*Qwb3qw#<-#f7xe7XFSA{@S7h-4Q
znWsg%9QON*xNq9tptyW#x)D;O{`KMYBPtJ&a`gmJRWk7bY?QF?+VmN1?>PVi6*{0+
zt(y1=k@F4VBpxji!o-<YECLu%L8D`yFyGzP!vBUWfW<xl{ghQ}>GeE4#`r1wIsnwq
z9VbTkXE9YUs{}!?6fWuNSky5-CGDWSjzf56Rcg-#=vK9W<(~8fs_`e_mx0*=g8}FY
zsIaRzr$G?~z4)Aa)S?f>fZm-jN&DA8UI}}M{66T}6{-u!Y4qiyDDFx}JgnLU$3ksR
zcw}_JbGj;L%R^7Y(@8@+$ing?u1B{x&H*D>*U(DvX%ra33g!%(lomaLvwx1c)5Z1+
zY>T?Kx?!F@&Rdzzly9Cq^p5;=D(ogBZmN`yF#^FMvd2)#z1~OT!c7(_Hl&Pty`#U>
zdu>M=NU*s!DH)$17?l<JNsqs7VWRi?__}7y#bLj*QU@a#1LjOa1cVn3TvAyhuADRP
zkt+Fgwen?RZT3J*D;%h6bgw@gADTVZQXh+pQ2ExvSf<WG%RV@aBf@l78uAond9!ao
zPEC;_CFrsN0q21M=Q|wt&ToDsEqEMt^=VAK^SY8$6>H31I^zF+Yd$hw$DgkyLV?wA
zeY!C*|Jz_Dg&)?~Oxe>-lM7v2WoD<Z0I<mtXso|*pzl+j$MM*UYu<L6Ms=i`LNChD
z`<x~6Vm<5StWSWty!RhNSm@6bHnhd)o`9vF&GLueE=;6>{wcdb32te1j>f;`up&%M
z>9Z|Ooa~GDwB;KjON$ws7P2SUS!ZTc7oVFdq9h}hebeUjQZ<%G)SxMu4lqJ%`J|iz
zO1tr!jd_i_p_xA2%Sx9P;xBa`@6X)XZk+7Q*nek<rniM~&ed!}_v=<+I@acL8VkGI
zCeIe_50Pq5F_7UNT)u$UpkbL!gu!Tg5nuvTQBnxRs0w^AFdww)2J%)1!sxaPRF~bW
zzGMk6zOf)N3ZU}ecpT$@UNgZ_2K4`6Oy;D*h)w#2|G7(h$lM$3&@bZ1n8#muxMUX8
z8AdWI{8ZKARw10vgxwE!59$wu0qr-&@ybdy^?9`5zPPJfVP*WOmths)#EQ0|%U(9K
z{SpM<$WvE?<|jBgnehUR8{y&<*OwrF_4;V0S?Wnume`#}_PN6!jcfw_jc9;Ntm0_F
zxl>6}^i<^%lN%f3s-hruYzrFZvD>ajJwx3SP=6aNx;zNV0pka^<--SD(O~x;wwJ_G
z_$i8s;)?k7fX~+P=%i_2ua~_d=s<aNfN%y#8rN}@zioU*+uu+b8H`MDHNFnFAq~ut
zH<zI@3h&C$A<KH6lc=I8ogQf%8Up9d5?ivb%<57#Sz0P-Ww4OM$@--$6<LEj(rOiw
zCGz+932w(_@vY5pkW+7OKaz~H=}?_Ak?-VWhmTKGc01Um5nq)a&|y8}2y&z6iE$<{
z85rG{H00x@D6mp$!acTn`DQuwtc?{kW-d@vo~i&m^kZz+4(5Vqz<Mpi1DC(Fj>#4-
z#Q=^3SmduORD6f&y|2gV#*o5c<epwmNHjtHd2IJ;9ea<}K{$SaqV#$D0=%<xF5cl}
zKuF#wA+<m4qU|&{m%H^rICw)I&MJ3Duw(*M87uzULhmwEXd{*`empkp5Ke}aO{X>W
zL!iWiI!m6XOg!uMQvq}!E(8d(!m@ix@lORQ9@R7?$eXj`Fi$~+QyWo-0t4?qqcO+h
zY_3Q=dH9K1RY)Ok$))bUX7?ckSaX3}+f1xUf>eR`-M$&)0)`NM0$Z+vW6ev<Xu<Y$
z9T;#H^4eSj+;dy(0Oh=>uFsn6BZW53{uL$cJ5FlIqKSJ2jF{g!#4;`v0tXT}Ik}-9
zs}*}4(B(Dytlm9D8G7LT<8gl3`@CumE>)6Yv*wWx4Cm{;u*zEnSI3b<xYrKU_hDib
zdWzw13d2f7^8h<U(TnSq{ZF6P5%G9EP;GEg90yO>Suf;FJ5jhE<d~y3_cu;#U&gd-
zjFb~gfCR#cEk;;njBVEU>McciBWO6p1D1_fe!%bPIpWib`tlWFzD%0p!7E#(%<<h<
zuDA??bquvr&o)Nb$)sw(XnPY?waH(ErpLNtVwyfIfBtQK>z2ocN-2G8KHs8~{<~Op
zM8k!^a#1h`u7sm(<W8Dg*U^xd3m*$MA5rYKjGCv5H&Iv%0zi#;7@M;SOQCNyXkm&I
z(_hHe7q$@fnhk>~U6!f^7~TMtyKY<+GM*a8-Oag0n{l5<gDCGSHzhBw4&!FO3`P<v
zDdxobx^j`Qx{}t}c<}(wHImCYrs{F~8;i#!UyIkBv>(CFuN><OK7D);&tt2&QR3xh
z)W6rv@lHd`%?90j6B$VVp#RqXJ^%NyG4T!ci98^1taBf^DaS5Y!504r0bSsLFfs9!
z2y@jvSn=_`{7VCDzKR1~3=U>g90^?5DxQkPtP`3w<102IYo0Cj$H^auU!>et@-|fZ
z_8Gjt@3N^<$m?nFf@R+-6;jNBd%~M%a~APlJ7$mqOO7JO>2_1p2yWg^P07>JlO-88
zY*VzoY?2fi6HF8&KWyht@PG&3FWiL<6|=d{g%bXU;fw2^eu2TB(shh<B~N%dOP=3n
zp=J0ti~&FlgxbX&$-qSP_eSK1DJ#nUrmmvvcUmcw14!AdR2?SPL+fFZh^%t(^0rJ0
zNdtA;&m9K3F?RNfr6%UT6pC_C=Dy;82^1f}K<1>R29mZ87>}hJE4(nU`_KSnY>GVi
z>|Sg)r&Fyb&W~l=?BU@7%ds=t=+vvn`5+VT&nC>nS^dmnj}clb`4tp;l!ZWJ&*vjB
zxK+r~rS>}+!!P~jr)2H`g|Rf*oNV4m^aSfr_Gi;)=|3gS=r#M2IBdPeXeFy7_)8&J
zqIg5H>xSEU(r;aDtoUVhQ91BrBt_@Q1SZLJ<KwIu8yiMCJi8s=8}1aS&@J*o8u%9a
z5tS-RT=Z%?yc1%`SVjAASYF23^)k1YF83pflks4V7bymgo%KMlSxC7MIfqyoWfS9D
z>ahx|*!K5s{z#SIW@&3<T#ao?Q{=kPQ^GmVYDLY7H0Y$NV1v|HSJg9HJ%?4a5vt!t
zbX$?6&%y28{NyyFJcq4!;Jz$Z+X^E_Qq5C~y+Xz{^biPnv6w(?4iwMJUC7ACcc$je
zt|KSofz}h2wDd0*u4mL;4wat&wo7g?icdiCy0%)Y91^Pejs=&RCby|$4G#kbc`-3g
z)(jjle4L4anVy?W${zZpIb&n<koD^{#?8`L<Iwra8_uZLc#dL5()d#3SYTzN*RCqN
z4BUf34;S}*f0O~MviahJ-i~*-;%VU|7J$d_y_(g~*wU(dqyF}yeQRaqnQ!f~zF@s-
zLvUB>mP0krAh>?UE!Ogo>YQlUH7dauCbvCped=;BgYo6YV(&3lkO}o7eLPEf*7it8
z8$c&y8ucs6gR}5kx$$qZgL~!D_}*QYMu|e{n+~cBS`QyQT;MkttG0}2ng{hVf9mRQ
z(gll2p>+9Gl(pq4eN`#0<Z!_O@F%Ysuj}bPo=gc`!bJky<&oG|OdM-$4>VK?X1>Yi
z0BTn|dhixK4-bbNwU>7Plq=<azZ37vI9*rvU?wB6lY|tf1e8j>oZT|ll@yO^V#tDy
zR_X#!JkC=@qn|g<P*T#JwJ_X1w0V{0lMG17E~>vraTlz<h69JMi(mJ#tLNT~X8!E3
zo^}T`$gb6oQ`mtCiN{A$)pY<HaXard%#@&u=teq4Jw38P@CFPFFf>uCUq8cqm-331
z-eTo+<-RiwE{c-Hd;Ub%+q6;$P-w22e)7=o1oC4n8h;BRiL<RyZCp7i?kX6f(JPHj
zz8j2Pn>QtUHxEzSs}vvUXG+xldOJKWB;K%B6%JLXPfpvO2v*mxo<576;m*h>?+Vb`
zU?Zdp&@~HjTG{_;mq}fdO3s^wz(9r7Q%)k&&bT`py}J|dd_t!(#s=x*e;YFC$xA#m
zI@)%DOZPOyQ=|Zky6iqza-^2((3K6?HLxVtlpOm4@^9)ld?oU$JhQeBtBB6y!LGvl
z{D&UCk>c^bn88PBB>JFCJG7Q^GI1+xadiG0{RNSD!Ko;*FvW`6Z>DEKI7t{Sj25?B
zJ2jzNIi@CZ=Bxy+kYP<|md=NUki?5<l<0MW+o+d{<V7b&UTb~V5)R0KaWAgsni(wH
zJ6xf%I!piE+GM)ev!QYNp!Y%;tp$Ua&vXat8^bH(B@OHPvzGz7KN?E(Ko^J}(u`5G
zx;DXw&!$USKVq-iyLrLTKocY8-yGx9l9m5^`wd#lyxTzuv}GS_RyLhe@-BpcRgN~|
z>#GB9@*<pD5|CQljf0{Tt0xhyPOWfKB%LJlJffRSmNW@tXFdY-)-RMi31tEm^Tv3$
z-{1$BmT?scpSm#L7X1`fH-Zb$#k71)tzc3*&Bv~>Fj>5uD2*TR@-ua&#LW-6Li!Q<
z?Qp*6t>%qe2;6LqWQp!7qyYN}X5MtQ9t&`a5KbSHFgy-)nsa^?^~3mp(}fgIC~HR=
z4ZNm9^2Z48Z`>_+hPwfg2Ju|)51gP(X8-M}ACbwOel71i`su$nh5^q8-!6DKoq?`A
z*x)pMj-|z%+Y9l7*`cQqC2F8s3Vov;E-s7_45huzRu_r%jZCOrrmoFU&T4t4c@poF
zjl)dJF8Ji31DDnr+BeZFGgG|8#M!fFY}h=e#|C_{jttvjnQyaUjoGWKNY7*(@tw9V
z_ujt4<8gi&)&iE*^V$B-MktvHFa*Rt7n$)lxirx<KQizzg3%jqOgjxC>&kNSGm&BM
z&mpc2T$P|!W}ezVNQ10zNmNVPT*Hrx^^Hd>>z!*K4+k6BXcov`S-fRXs=vJ)p|tkE
z!Do`nA3wixU8*Mq0V0z=(x~s$)_2FkUT2{bVV(V+kwnveg3WPL?sV8mfcnnW8Yrt?
zC})P*)KH?cd8m93lz6&={OA$@1unY~I^P3?&E$t9vVucdODESYeS5z+lEf$+#Q84q
zc}o53H{1e|mTg|%Qr+KS-mBA$eUntMI=b7bV?FGL86z6K5pfbFOtJm!HR;tb(OR0`
ziI&X0rK2C6KTAk3!O#+qUbyY^z+=ZwG-no5yq;-cd6*89DG0RDUlBs@sc;m7g68Ur
zRHf7%3g3MAVPA2u&>tyH_w{S>biBTPHjbU4*3Xdd%lmW=2YK3)RM88-72t3(eEah8
z<0zwM{gr-N3i1dks-=iLSgN8a>)EL`CDs-71w6kD$1$KM4c4)Ky+@k&dU9V!|J%UX
z(@J9w*GM3OJ5|&Z{qUnCnxLTsVvH5Zj6{bpu8NuH?x2%PL7VV}2u~<?%nZcEY%GLf
zf8jFi9Th+0;GL>6<n<EB8Y#EFluLWtZD5CuU0?5=A2Q~zP$NR3hnQ4=8St*b>Q@~u
z?bW(c=^NT*wUu=XW255}XKgT526R;ux2sUi0%GDT){)Z{4Jv-eR}f&t8!#6)0&2!N
z2L%CT#0OnC`V9rULy}Ghu3eDU$+MJQg<Mf3{fUTsx~&-0p$@#OVZ~*vFX?}@#4b3~
zY%^rx2~2#Mp+*Fn-Ebzf<KVmle|l_j;je%~l*7O+IRey)JVYi!_U`G0B(i2>gR@qX
zE(*afDzZ^PkT-Nc>b3r0&OI=c10Ny$v1iAP!0RAVA3wmFi6tYY;kSWztiHCbV;+#`
zqeNetiOOZCpu$)yg2-wL1atV@nC4ohrUzQI-%ZYSRabr|ZJ>9QwnT}Z{v3AN4W6G5
zS;+o^Or=&Qx;}4MO071RY+sGyT_mwDzZ3P4Dhy8VgA}Y|1`K5humitU97vIH7aoXP
zUNwIY5+WVg`sQ3aN21?+Gx!U<)8WA+75nIfNdEXfzbA;e>sgbqR^i4pHouFY5z@cc
zuigJu?xlQ{oxppJA|z`T5Q-p+Hv?}Bic_or-4=bn>c@r5UG(24oiDj`;-ZrLy`nzD
zWILd`tO78+Xbo_6Jm_hcf4I0-d3)l>6#^0nW|Q*a1ZbmE#45{dx}SI^%e`~H0!@ay
ztTvb#q}BJs1hV7=Z#13AWFH+)f|R%K$q=$zEYF#YlCCLTSj(*YHldf%@Zkf#z*mgj
zXMz$KK#`XRVifJmD@?4g-^nn<@$ei&OxyPamP2Y|oQkT2HQvgj!Zg|SEj+T5qJt{(
z_UaWTOcjfj^N4sE;|86r`Tq&l-OUhLA51Dt$4P#BJCyTz-<H_UKi7R6jWK3NF=u$t
zl()WF{>2z@Lpwu%TYcuQoBEc|2CL;$>#vte+w_mp2=gDecn>3m)j)v~7`(fMc?V22
zg}ySGE>+WfqH}>?-{z7jvA3q%<)wBn%$*WA=Z<WRnmO7kvB2J6aHi&Y{}W404s3e_
zbK#5w_6uN2&k%zYNNR+s{Hb0Q1ONy;IjP4u=%KE2e}^DA5hZ$qUp<4`=_#{u`nGFH
zm!SNd807hsbuD~OLjBX_+&zAG6aG8c^$5+TnB`5>zdi{3$F+jEC@2*F@iOpg7{HAG
z`Uld#F-mIbvOAd<8VvZJse}DCwLWJ}EfiSAp=b!-?ouqWvR9avhE>(@@VVbok&L{9
z@Z<s&sTDSV)+<dQA4xd{bUfI63TfKsZCck$p|B2scmD@=+8W#w!J+~Z>rx~X0CqD{
zi~_gV!H+3HVFyO*vHS<}xuXLXv;dt#lA*d$h<dUez8wagujq)o?yZ#h4a_%)cbrVD
z9me;7(LZdED$?U}Zk+`R;sCnar6Yx1#k>*mjN5Bg3B!+B%mqN!QohTL8fJnm2R7Q5
zYBm*i7YPd!zssSi?GV69+|&S_@gG~)KgW-+r`vvO*ryTpdGgACeWWb$SI2@!@njGB
z-oRKiu-FVGBZY?n@)00C0r5;`cvnD&Y|)SIgmy^UUFLR0=(qVmPHsZ`bL;0+v(^{p
zBV;)e%Vpm)%+&^wBnQiHi~(Opcg_9hf+njez$C=v9(}mw%uvcxPE!+jlKh@4t#kPE
z)hF&YMlcF2`(Oam(eD>hfdh3LM^`7^dSQGAgXWAoZBbed<zPpMz>`vEF|P$zy@8?k
zGmwbke*Y;g)eVpmy|!%wG!(%1>|-bZT#_{Tm$0|sxO?hL0OV_Gg$svh@wlaJXdN&U
zK*0(-1R^$|qjJklbfDV-0L@v77?<l2;1_W>{oV&d?1ri9dHo=bv!uERwZ@GiU{m*=
z?yF}9Hel#1I1x8Eu?)<&H$(3S;O+pM{HuX|zR0(V@}|ujU{nsO{YIUU%YTQkd^>ct
zsuR?-W>)Vkn87^JJ(LPerj1q~mrV7J#9HmXa>^+!?r&>K=t_n6&K9Z$C@Yw{p-58i
zS<+S#KZXGs`G3K1GR*#v9Wc9?5s3uXJ9o$5hp(Vvk5kuJzu;~58F7u`{{w}C6R<No
z1$q+AN)O2#c|ePUhw-^z=D56Oa?|Rk%;c!}Sjsh5&5yy#R<Y1s)uP7)&iFn4Q=77l
z;&^ZaYMiFjIj~{3K#X{Ah&-C}d!?Z{xA#(1+>`3~bUM_Fz>jz{zLiK3rLAk8`atFa
zV6}wrEluP7DVV#4`mtgqCdsGmSzpse-@OoU*U;d>&>sf0aB7*#WIT=+GNz7z5ofE`
zw_axq0-iL%cynb*j4H~?2+wdMR<qX5yd&)=;O0SqKLqV^-3e)`1J(uJsgV2F0Qgg?
zU=kuXJt%4|&UMrD_nNX>l@WLJvTggN;d)NuQ=&V=WR9vp8h9TDBv3!*dVe0-Y!@I0
zz{hss{tXR#nd2w<+&RH(cD=|exVzYWQ=x4c&Q*_2n!$WM4ZiuDhaEP`29@LBsG#kW
zeXPfS^a1j)MSy+dp$ZZv$DeD(2}k-%@A%+76F{26NQr+f4HE!9z=ZW0T;nPHhGl+l
z!-au(>W>+4cEE^MC0Rnu(XsSmckTi>pAByH+^Ov@fsp<6jjwWDg|~Q?)<7qR1*kFa
z*q^x?GlL%N(90Vjh~#s3CWX~98>5A_j88~cMh-o(&?>WN>P7YgdO8}F7yrvqT0O~X
z<y1dr-FIN&-6a3)ZD;&vdZC_b&p%v>H^Bhr2}_oQ^Tr60qK#fk$sJ2rcYnnVT<r-T
zt(Lh>37Sie0KJVVRK}Hr0l;iIFuP{pQ^g@%tO6&uN)Y*us{)YZby<?%fT^gi&JE-$
zM#Eb`{v%2LD3%_dA87bse?X=D|7ooKPhahO0{_D^{CFWvj#mpWLKUKp=(eQoqYB-$
zHq<S4XmSDg{Y{ZS!L4$C(#h^uXYJ(U?%g7QDK9Ny{k!e?u!7IeE{;1Nav(YcPrjKI
zF0j1~1(xVK`b7>+=Wn5~D__$xHCIZ|0+Z1uRhhJBqsCer&e9`#vqzi*u?EaK7O4Fo
zI!h98|1miTY;K?7$>)6TbLakbyXwCK8gamoQ&<?SKEBEa+S@z2+~jPG2QQJe?*EOq
z&Vfrs*LNS_pP=XOxA6jk2xe=%l@3!i|4=7oQMM+VMLYlEGA)afaYioqe=`GzfE)Nj
zhlWShZ?%;gOb51-0_l6>dC)v5$sc+P-qA7dc0292Uj;p9llCmW_mcb80vHJH2_Kcq
z^&viW^eq2uLvi_|0aw%iMC4!sz=Hfk!yDm3j<B8tRx@wpun`5kxt;M*R6wi%k2?@+
zc<>O5Kzcb#+|*#42Q~@2NhxC_b5xesj!6$;ie|q?nQVD5%vCjAYQ)H+Uv3j7L`(eo
zC-yYk=nVfRbNt0;>JU*PqDPDs6VVzbjdebsK8=|;j5$gJst`)18TgK1?(l@Uaai-M
zrm`O%DGSAP+fe)L=LVbh&Yg<m2M~g9W|cP#jK8p({GtRX9#VzwGA!C6o}z*-iYkn-
zaibXN46|t?zE7{d#^qy3CP88w+NnK5{`VVa6UBoGe~G6WYH{lEiNL_P5Z~d3$zMvQ
zhx!X}5(JzA6XRDD?5xi!Mo<{t#1yj|kYf9Ga~caP85Q6-8asfGS8*;>9t6TRU5E*z
z^$e|=^@h>iRm@p`W`zLrKS0ZpCBb&yGa~ik`v;)+BrBD*bAoqrAgRZwKY_C{I|GG-
z{QqN6?S?C#R|crYKxxYyZ$Q1Mo`8yG_yF~!Rhoq`1Uj`+llHEVlubw_b2+FGJtJ8B
z+mU$@`)ZKLNAM|d!UnC((wxLe^ap|Kj;FVHh&kgXFAe0+eiG(~3RCa|%}B}8-I5IF
z-k}7u9mneV81SE@$e-c@tPj`#5P_BQx^Z|mBewt<f^WDCv@|P=5hgcdRgac{he4Mj
z3DN$@`v`I~gS$HVY1SS6?X_9-)e~hE?7#w60w4kE>G|1KrDe=4v;#VWzb74wGo^)}
zMsc^w$7?njvPhq6@<_u+3$j15X_Z&A6e<DK`QJ>f^X)vhp`(RKoevKpKTd-QQh5n8
z5eJWGqy8C1T3wUCt|grrQ9_pi6q%+7RE2DR7&<M@n(R?B>E)$Cm56+|0T0fJuhp8H
zr5cTxfw7YpZA3TByTyo@*FCfHdjRMFR=d4)>u)ha+%_Gzf_AU}a*{=cdHeL$T~rjY
z?$vo`R(0{-XBl(f#P@H@*coe_AOCu)XctQlio?_Kqy#Vuguqh^_HvkxZhK(=D)T*5
z1)txXw=z|>xVhF&#U;$te&BdS(=DxV$2iI>YbL=MHktJ`gAzl9=sTmuG!9?z-$2^j
z`T7x=*DvE+n_K$F1mKxPBM$5BYDFXWVRU=j$r7U-s7oCkAhW{+H#yfG&|Ax#gfX(^
zK-$l~1i=*y5~#nFsZyedrg7lv?f$~gI2<cTMZy`CD;rawY);qbl8)qWfU9V*9xeAG
zDaJQm|8k{cs|w@*hj5|k59d5XL}1!H)0d`XZcC0*d3HVL>+z-WiGFjMJx83w^ycfQ
zB8H9}_6N^hW5jS3L`CBhZQLWvvrA8vwF&&C<RSCYqNVvz_9Xs5j^cwDW%h?35SW8-
z)(@8Ttb-ESu?iNf9+qQ2(COYl3r6?YrUDkAU_nYI6Ki#+k-N7z9`c`pi8i+zy&pT<
zNgbwmlIZ1+B2H#SCaR67YQd75i0;m5vEGY(<gpJ=Qvg)6Uw!M4+8_k@Mo>F%E5U+>
zJf*l&hW`Z({Sz6Y_W!=1nJ!JiPF<TV)Vxsy?){pkE+CjlDvPgwHhY>jwr#+ixrBPE
zjVMFm==s#)6&n(~>eW^r7><BlSbeX-z<DxIJ2v_7Uml~Zk)+DrlV`k;`4}O()k|zg
zv6GKk)~_4&ovZe#JY+0AfBMBnnphAeAt`<6*%$d#C@}E7wg!Z0=)xt}nfQ7w)-4cX
zCi(1h`2Hr*21td~>n)%`hXWq9sv2?SrOtOo7@&_?6My?+%#u8(FkdKVm`8uhpN<5t
zVEyF8R9Z;VY(41_JmhN>8WPV%U7cJ1DlhfkttDsD7lPG2R(H+aUE3lD!e1T|7%(X!
zTwdp9*mX)`RJ30R0jc$?45+a-$o8Cnwp#A3{4<NKIKJwIUE7;E;{0KIvdKv53(@+j
zRP*kx@4hIWZk7yqM4oS=0^cwbuqwc1JvRj`2Z9U3s5ingWYC;-^WY)P)_uL4doZi@
z7yx<563tnUPyQCtyZ$jt3#`~ziov|w6&tBH5g!TGw&p0-bJv6&ExgW@&l^)$fWw5*
zXBnNz5C4~T;<Em%_|~A<FTd@0!sz;7uL^`;Xia?7%c&wDgHh)afo;sqtQ7)0d$~zv
zbvY!MeEjld{&hj!7cnk3c7K2|p1T8bu)n;ap{~431=d0p3th?EcgFx5vO0f}m)o&W
z2O#)6hz5@BA10D?+MG*fhyidg3hf?;!ZMIb2pq+Q$$>cdO@i6KJ7b<EK_Mu-C)Fp=
z`@ggoH)WE2ozUn#H%?knNp~c#_{AoimA`cn%h8|q6X#s2rx$u(HuFCF8}af=IZky}
zdg`7h!!*tHiI9`odV#K1gJ5y*SS(?%LjxXQL*MFmzztF#m*buI$8G=t2C9up_+ZVn
z<{M?Ow?DxQg*sA8bDO5-1@p#YlsMdKoPIlvvz28UE?DCAXp+!AyEkj|JovhXtx6=C
z3+<;}8S*bjI2cKQR*jOP{8*>nAQ(V^m%%MAm(4!0er}IV55tKWr~bSRAn<2+!{Eo|
zt$<o)n~`6IAM+}=dOd^a0wvQ8OhtXPWmu`J3ZYUbi|d=-F6Zv;7Wi2gVvrmDa@FS%
z-^P!1gey*^v5HC6IL@hfcvytk2lSuQ9#7;76q(Q>Q(~3b`Uz*qVAI?NQe0()r7?n3
zuV&Q3#e_Yc2wh%a2O*%fT=SBho4%yZH)Pt{MS`cA;mV+lMjvV-trF3C29GLf&if@l
z2mun59R>$Hr53+jTomsh$>L?}s+FB0scX9TK5ePeIRH6~WO+qXQ`^|G|Ln|RFgW9F
zPFJVrA2#zXB|y<r;}(JD6|j@?>7=Fa&n7Qa%wUG1tNmQTcpUYb91FN$T+U0XdUr$<
zy#ih2qw-Q<Hqlnnj$hA8ic40u2Q|LBV^ttrR{kR2&a>~ZoOce8NvHnY-Kq2A@|$wY
zy_V%>Kql0-sgO^5+a`Km68{Mlj-N|sF&nOh8rR+<x-IW;!5(0qTyDqCp>Zh{yroZO
zL6n^>bohNIooCr(1)d%5%Wv&R`k&l4cF+5FECozRyrJ{oPxHntgV9ctnfU6%q8Ohr
z>i}*j<yx7YKl5P6+Cqk4-MiRid|nE(o_Q7^bu1V%1N=4H3g0)>FhnN2Zyx(sDb`>3
z_~vc&N$eH0ftY@++LAhYdTQQmwlHpAodkr(v|VaRAxdYB)YX|tki8*UJ~-+N;AN#2
z0bdqMp34y|ihu(`vs#<AaljC4^m7%ZWUh*;!>vz$yTFzfR)Giu)^NAQYn{hz4G;k5
z@9t^*u$BZqtHBDQ)8i_OAfSI;*1<@OPl!l~jJX1I!Obh6OUD#!tR@O1i_pij7DcQw
zXPy4;du;310u!KBBIa_|*U1RWd<ik|R=gJ`Zwqh*7^ha9604ccgCH@f%4DMD9k2!2
zvZafSJ`D~&c_g{IQD6{8h@)rP&F#TQ$2Hl~E(n9E-Ctv_qNW<P?@6Pu$KG!gTZnNw
zs-l@HX+Jd{%x=T|<=kzyl76%4kSmyGWnp^eP(Fm}bZB8_5myoY>Rn3AGBj|5ENO&R
z7ojDUE-!eq58aaTr938C)zyDFNJL^rq#oFM4&Ml%r5v2%OafVo7}K(9@s?*n!p$*$
z;(lK}6s&N&am|d~gPVrDDwl+)R7fQ&U%9#{TFFuROEn8AGNOfQi|ycT=Zxrq?;7C4
zgO6Af`i_8u^HYcJDTSpaq`wogyZrLmS7e02Z3i%0EU94M!&|Pp&{>Wo5c&o8b?g@%
zfvX{QK)?z#-%CfAXSHe@*P;g>G~i*Kd`k#?J+9|0Q*5)il4SCg@l@F01>(Zst5LuL
z4TpJYn>|X%9t`I>>8L>)eTMZ-_cK7_f`U=d4sGv)yyPEUxZM!F6C6Nv!o^&Po!)u9
z=cZuB2p&?9XUvg$ofeM%(?;A71u;pK0;~GuMMO9EPi}m`LPp=v1w*KmI_{J{qZiTC
z9voB8g-4$PM;40V21aYogNaPMxe;Ae2BI~-QUO_3*0SGVMu0~~4+dl)!_35ty-pd_
zZuH0!?n?uZ)^lLoLhf5vW74ybh8*T#e&Y2EpHD8Bl38f2gYlC$sW<4$tw3K+ieUug
zXJQofI!~#Aot_qL8T-bJdOR3KuK~`%=LuG@{&3EyF%p!<y=9<bA%)>Yj|1ENxZ^1g
zdV3QoScn9oH+QBZxMovQ)xbY(a3&|?D+lzhOo!|_M)1CYxs`4=cDd8r7ZmKlGE`CL
znvattmh9sL0H;5kMlpb&lmZLnuTqa~({I3e%cOVWNZh1cw2krYJDsaAhP4ns!owlk
z<FHjlh?bx)$X3ZKGYeraN%go6KfH)q1~^i8z6{w=M(K6-6K4+-H@lD2z0#G+XOJB?
zfxOlN(E8c@2uaQ;E5ZSB&n2-XR(L8&wV#`ehJgc+U=EmU2Q18J1vI8A^hsAXkB4Fe
z5zp!0HHYUvz&3nYDFYmz!_0u6GBzIv%Yl`7jp`&hbzbgHqydieqc!`h>h~+f@pZKA
zs#0#TA|%1$2YPdj?z>iVFbJ0ZQ-B;R<)b4!4EX3Y3|Aiw?hFU-|FWueG4Tl$OqX{n
zvRYK1bKYqeDqGt!YkoFIShw&1amAm$JM23V;JgwOhjq+#BT~m}YAwjm3<4W^2^u1}
z)J$m$>P@M;PGL6bJNPRwGB;kZf382Ro*=d+@dTC}K?IXJ--XuMZ5cd|s*+yT-`9-M
zJ<$qVC?Qr36gG;Zc@My|km)rZn8Sy)TK9LseU^He>LFKQ4};z#3$@%oyL1GDbhAeh
zox&l?MEeKbE5L(YLMq!>B;+9s;27e<<jGsu`+<brDEs5W_ucWM84s+=e$;3k3<D#T
zqN6nS$G+>zkZoaDR5U?Kk1jBD&y)`dT%33BvVk7J7B_Us$o4iimco-2d`kfaeFtXr
z067%cWI&Tn%o9!gc#(jJ;P9&$Dd8e`ScY&t9;N+3d7w8vR{c((-D7P5m*_1<=<HVj
zqDDa#gs@c<01kwt1oGBjBl^v$c2PiIm&DQF(OU3XbJf$^`0vAVq`HiTjug8tBeCM;
z$#jph(;oi?VcA#@L?8lkdhWwR)qpBS9Emb9a_mE{eEbXNJkQzPrTPBvxNL#|5b>OR
z5F|{2^?(N>%56Z}PmpRQAYixoBM?&jxQRWaB}I6`TJ}MewpxsQ#)%UmfB^z$-iRf4
zWUbDy0Fbjqqf76#=)=3mD(4KBg0h&Xcojz}K$RQ&0Rn04)Fdsyo`zyMmWtpOyZf49
zvPiS|2D;r~T@qFgy&K=Rj)0atjAZ&i<g>?k>(kBSx>UekeW}0vJ2YlR-*@N)AYDM;
z1Pr><$Ld%qA+J{N)JO2X+R5ydLbS2n(dEii&fPnsW^^#ciHa}c{Rl7(ny8t!F_*T|
z-5NFjH4y&U{pp=e1>wSIeriU0e>cLrZIyAhg%SqVU*s@9(FieIH+^CAD|n*X`!286
zaaAflQn*z2<q?Ru%%eZ&w$D^oP*o2mBB9U1J9nL2fo7z0*rp>tB7z#Z?r0g{TaKQn
zR&y_?^Xv=R;bEB1cWSwl^t)&Z07K@!x2;g~y7Z?+7Cxu`b5$~qnz#J1K63Ss;H*%o
z&|76OJ|35qFvs&%|8&g;Uu|wmy@5_yb{H$@eN-%Sh8-neJWvexcjLgCuQdxY@Ib!~
zGl9&uDixH$ZRQ=ed74DMIm?yzXkZK&@cljd`KwAyuGAP>G_%e*%LCkK8K-qnNcm`o
z!X<|W_Rpn`ybvbW6?l(X|3p@*ZvndG@)tB3&Jnsof;ATYhBN+QfEP2K%cjnOM8gv#
z8eTDS^ggjhHskF}92KM<ZKyak0fp1zv1d<O#v~&{J_gN;oOo7R!P}Q9EyVb1?oTO^
zS_IO^E-PnV&1iru9x>uaL~#z!_*ojH^2XFO9$emcpC^*5%a2C(lNoz+67mUErZPtI
zX%x6UD-!eT%3i|WU)BIZ#U59(AjQKtwCN9(PhhDEFVC`~r2whK1xkIgHqS?;NF6Us
zv3!-LgO4+t&ouip^SLSL@-*KM_>4>tpb<t(5#p=`$2vO~19s#d!2hJkAANX#?&U@N
zm;^@dH%p(fy2}><J|G@^0Nm@pI+VLd_HG|E!Ha(WI%n9Ss}iV685?b!kz4d|P;w*@
zJ}%YgL!JmNjV3t3z)_JvmFy&YOdTtJGPV=XUtT&hye5kVC}>BsNIIvZO2Ztq^M`zW
zEboIi{L2XN&m}rnIrw^fW)#1z2Ug$ospuL!cvyS-M(lo<yzVGH42C1|ZsOK~u+8ML
z33bFZhZNyj*TAz8#D9QT5crmVdBoqX=6_%Ie*<>@x)1*K58e&DnU9ne7<RWt{)qAf
zN=_D94~Ic<Ro(uW_4(cL{>uc>gIwiB!%XFmEZMLxRgo%+p+;K`?IFFsvh`D?UOywk
z>MvQKic}mJNNgmkAaNh+pxh4s8Vr<!|H9QkqQpHg#~T=u1UBS5D;!33H^-}%NCW1j
z(@@7CpH>Zl);rJ)9t3>)2K)2%TT#24qPoUoz6DJbgZF*5^6Z8ushouK`F1!)2r3aN
z9tI4^O83)|+YHBmb_`PJKr1a_M}p-mSDc+^f*#w0-hFq_>vA0BBMksIs4Pq|j~x?V
z+1kWv?fv4del_zgV*xN)L8#-7cBVANROyBy7&<k?_IwZWBXF1opDlB${Bo-TDAsti
z_Oil=Kq4Fqbz-521Mt<uL)s}3HwDqN`>VPIGVHMMa46E2{uLPJg?<bJIb{gm>&ip*
zD?yaFWd)(^cOJ(qOQxmMT7e8kYtfuj8ZrdDgY)ggIUOsnDIPMS0gFc%@Orpx>CU_i
zEBLm+2LvS{5=kts9|D7UVV@O8_g^Ip4pW`}a!_ZqM2Hsj$`07nsEOAa9UgybVcHOH
z-_Z_rJIoH^1CJWmxz);iSNbvt(dDd!Or$Co{>wt}^6M$^edjhZX}IaY1|F7$4OgFz
zj!-hUXVBf(P{x2sE;u>;iOjn)roRfF;YCY0g7-LIVhUhM9Wpy3ldX=n59~0M#vkJE
zoIqEZ;O)QyP9wF@EU{?Yo2i+&g<g8IgK%I3j}xt!uU_7`SvOu6n|#^Vpb(L)RcUi6
zc0GWqVg<5@0GLsY3H_XB0Uk;ud$dP1<k2(%9sbVoP8sbF5RQSC_s?_T(qw`S`~w=Q
zP1dtjHbS_g!!NJ;v4JMR-EqFMB*+x7$?t#%=zky&06#_6nC5r$90wLiVPC|X60yol
z4|qIuyW=Wx!7fPiIZ*c9R!#@}^C<XQE%4by`F31S$EM~l^TM>LB0c~K-Vrr7hSnz8
zeudG6B)As=s8%qx{i*xgA1knJ|9qPHWTMBLRi+1!>77jJIlboX<}WqWZy`K30KpnJ
zDXRwH$baOL!V8S=)c`Rb1HU=|NnB4fQHDc00wgkl0OkiU?~j+{0M-ginG8R2Z&&+X
zF)euk)o439T!Y0cW;dIY39^RoBil01GfqW>7QI3-*Sdnix;CA#1~H(AB3}Txm2U6@
z81RY%0y0uwis^+J%Ksr4!&Gvw_5c5ZGP_(Jw!joZc0M6V0SG%sbY7@7M}I=p-N`jX
zHIl)vb-Y!p63iLVZLs1tGlned!6^ccivV_QyUP>>)@I@q!?iD4+^Q$4&xREm_WR2L
z-t6)a_*wx+OYks<V7!~023npYb@}+O=|a<n(-9cY{&H`<yYfeZSVWJ2hspZN{-%XB
z?&99If%V$D!OoK2JGBwjg;BsQ0NP#M5`2K&()L03fqE2nXKVs)F?)r2V7eHWHsr$n
z>V76j7@PZIA$>jzEVv9-AD@lttEO%=Za$H;_Zgz5E>ovg2^Y(liVA3bf3cM({2u}#
z1=-@9(QRNo<w86Ttfv5>j9MXEkr1tgLcR(Nq;BVvB`L7}NTi_u(n$S>ekPq`QnnSS
z)`E>gsx-8(x;PSnImy!VF~U9IDFH$!#VoQFzde*RFe@|anzc=XBL!J(T)h>g#RUw6
zdJj@Ml6j~@I}H7iT>Sw~yzclIbn(=q3w}LD-+=0hn84gx-wLwoPGREXV|#X+W)_AA
z>>d9T9{CqK0vG0Io*+!UQLNVUE)i&b^j<_~<=p_)@hgjOC4Oc8@u}4^suPpn-)6UC
z>;>lS082AF|9k(^8l8L{05Y{45Tu3mcriXk2?hg1%zRo%s#n^T7ro((2>T`DALhkh
zo6xdIYqL};Kj7#taIZ^d90SEiesp|&Mt-!bblqUnxUVq9QI*AY2H)rO^0bS;BG@V`
z%mXCynWoc2GEEtjs6K5rINnyBDO;a7*~jtGgB(hjH;Cb`udd4%0mSZjscrhiOentb
z{Q%%2zyvbGr4fjW6pak6n01A3e<fnF5R`(oCa^VNoSk*yWxn?5g=lSoavn&IBNwU#
zc9|+3HB<fF7PE)=aA6@1E8>TC_TbkG@BkkD@YCMMKzI^|QmKeS0Q3T1<B?@)qct?*
zVw6X%W}r|p3X?J}jKnECbf}4_si=hg`NMr0QE^x4*vEhJ^4ew<u>O+rxT##Zf1Jy)
z`zJ6#9J2(&lOe0RGHH%rdAamDIqFRZfmiE)BO^l~+gE)-Wdh)k`*uzf8v<k#`*kP7
z*0&FCNdoE7f>9e{yxesh-a-s52RH4)f4d+5_528uW1Vye55pJa+#{{26Z(2vQYWNm
zY}u~M5)E$q^rpQBm!6aeJpHS3@W4}UQz)!eJ2&pI3TP{%I#-RcN1Tbd8i2zQFpB%|
zbUXa8$^ylIRExc(9i3p7pMsAn<9qIYSkiOiz3&J-p%AcbonesOm$v}g$`UG!{(hPZ
z%d4XlKB&b6<58<nSA&9_yj*ZrAdqM~IhW@FnQ>v6$KvqA2mdSQ%X8@ArmhCICewbI
zz;MOj{L```=9XyT#+8Q;-p`L|FECr#f^b0Q_(=DGb3KzLwUTRy5|C&5TkwF)oXtqA
z^mqC{fPueofo5yU94Xzn40y8iCb22eUsdi5btgN!I{7VyUn6rrCIrM9hisXiE24-n
zNF|DWk8Rql^8@9}UG~PGdg>aru%gJq!YVJ@3I@{+&IV%SzOEQ4@+wYskP&|mh6cg&
z<dWU_GYuD`L{qcDGK_Hn59Dz0G(`F0-z<NGZn<v2;Mq%4S?L|1G8kAJDzc~78LZ9S
zSgmNIwP=!90>qb6KHe|?KI!T`SV*7cg4JZ+*w!iFr2NM)du*1PS?a0J=CgZz&tI|C
zNJA8eFn@WaiAg;}-B~sPiWoapDa51z-AOR7^c;OC1P0|2G}|x%Y6Z=P=!3QO$xQF8
zJWn7Y+b;|MI}|EitTMr8LZUWiOUE1x16~*~2MM<-36e)QlpL!BDOy=|pV>N((&Tz+
zt{Zu1)^-DBu1#Ut_Z&R%T){)$s^l6MH_HC<H-ql^;Ow5E!hn{TeUF!fWE(7!ZiMv!
z9;|mQ(M;>5qZJ{%D-K<OZ}Q#QJ)dYvRfz2;YcM@9MNFcKqA`*sHnZwR@&@x&i%G9t
zKvR!aC&9yYsi;N#W47}zubo0l`*uOHulUuFN<1IE7x3Q&w|bct&ss8)*M~oeI6#0}
zC0ONhivKtY12$)9Zeq4KAKXwOxxQBe^2{Z&6t-A%!)mZYL|t9iH^FAjLf{}5XfXc1
ziGti#Rdcd^uLE^onHnc|@&UviWefDraA6~cerT;iMMbPhtjwo1Ay?;`<*E=l$ngcI
zgVD_t*a7`R6#zs5!^7i4c<4+NjUB%LWefE0<k6VBc%Kfw>UC~54gEXI|5Sv|7PucO
zd(;F8QpvqooxqcV!S2B=Uj=?wub^X|bZ<XD|1ZxXYgK1Ok5S<Na|m_D3XpNYQb)3X
zFvJ~h>?_bBYGsW`6OeSIDqPw9aNP3m(>obvfVIBAN|LC2L_{#ya~RkjaC5lfbL&|V
z|2oV6-1P*j)E79m`#l_t1^y84XQ{J~ohv-sleQhW%G9+q$IxK9d>EV5;GzjLh-KLE
z;34u92KxI7K3(ylh7cDD;-m^TwJRqW44x@*wKB5@`!x9f{wsdrgN}8&9zO3BNi;~y
zF^NOFgs;1^mWi_ASA_$CAO3>vB|JL#_+IZ_6v0noBwh@@`rNsSgB35D&J!5`Yg`-s
zk~`gAr4Rtdh*W-}n^n)tMAJufS*bI_A{jL5j!K-Njgl#}O!+Yp<LU=g5#3e9--g1t
zDC9{4=R{uQNckjgTzdU*JjjgovPbO!6}C1PbS)If5Yx$NK{YIouzaBj90CIU2>b<~
z^8K7-`llnxyHGh)-ywgp2r(Cm9Z^}OPxSMj%4a+Fv(I`TW1b9K`WRQ93y+69Z-q8R
zSnck|f9e<vPcBH1tBzYr{jp{Gp-z><rpb-)83;3dj^IimR})rxxAM3jb>~O;kzX-;
z7|ek>*ZXf9K44Uj4`K{hut^h;5FF-UA7rU+>4J2QlFZ*#B1d%L#u(kRc7Brqre*hj
zA3enNzqg4<rG@4ffS6PU{la$55Tl5bxKBlOdx-iV6RQ=gw-=`l>Gj{)!hdyzA0Xoo
zC;?4DQQe=U%9N43eFBk8ml3#Pg&v|fzVo2F(4~tNh0nxd{62CW5mV6LKSZnMvEXib
zlt<EFy+}CMxvLydovY4mEfXf=$?eotQp|>i_&TqNm>3eX-(al#l4TuG8J||~rS+@n
ziWXGFjHH-qTz@U0e?9BokkW_l(<HkboGY7G!ENN(V>Zj5?Pi=VG^`ovXg@R*Y%DjW
z1c^(a>5M*@USRS*(l>=)$tFbq!j(Q-tn|BILzbWP2gENS<zTFyew&YTdyI{@g?`Tm
z`nz2Kza9QyvJo>>RW4r-EF+%1^%e9H$2MtmE~CcXbST_^v-L4d?YZnr2FjcV2x4_<
zUTbTl`IyK-)Xd0;?Q(Fb<;u>-rORU~aWHS)!dq{0IxS1x*TftF>nr-2I?M#VelK!z
zs9}R9ItP3r%AwP}pE$i}`z8V*TAb}rQkCkOD48VX;jQ<t;d6wRxhu-6JwzN|%4N#y
z4h@ZhV{!SFRI@fUMfm3V@MxEVJGY*01Uri)uNUp!OqqNYF`pKttvzL5O3y>!CF;Hk
zzI144hN;4)Q@Jqg+$rDTnBsDu_xP!wX}sEYk-mvcC<W{-weFnk@ENpVD3>F)^Y5qH
zrJF}iOiC%be>@;NjDE;OAn(2k9+v+-E|O6W6SyZ<FgDH)#JJ+FH%i~4DIdWS5=#9=
z&Tf}p3AB>Lsrt^%JV3`raXhzGuTBv5jZP^>>QK0yq_D1bu18g;)09=JstkwIxrMv`
zaPepKZUod~s!`FSp}`dLxVU(1YAOM9!MLtA-1g`z^D_l_nA%iA$wqYWJEQtDdK!jz
zQ8wa$ayMm`_V#Rz&`I^dS|`(e*b5w0^Ssb5irV5haq^~}AIu#gX*&*wJ&5s1bXz?G
zQ@T$-zvB>Fvx9lJi_WDz`^c2O_4~JhvGH)3xtS)^e3EEJBS~It_4khb=Qp^4M5H$w
ziJ=`ktP!1Shg;N4FtN<Z?*yL)!~5ef=wlo8u;OTaqm_)ix~a9ADGkYL7JmjsJs(0w
zcz~IXgJ;fC!ul+LSBIj~MlL$0pkCvvqs^20tH-D?X6CU4&z7fAPdPt)iI(nX7=$XT
zB1X+r8B?AvV#9Q{aW2Ppat9yUZKIE6AcN~n4(t6QvrzVi&wx=W=bk^-h{=<3{<eh_
zi^6nVRrQC+2#rYc8hHvYijG!HV2n><BI7gZ>+_J&p1?Q8$+7akV}`W~E2uzE<M~2l
zsD!%N#y*)kWZ3*EP5wGwNPx!~5rc?m*&l(<t5>J-Y{3q;IHD9eZ|)x`S4}~%msyxZ
zC)W^MQ^&hy74%Kgr&CNqnA7kI!_@`fzvXFZnLdf$u3uQ&VATjhTmlxH80}-Y3aiDv
zQBrxBfONi9bEV8Jwg!>BWj;pB6KY?1`L7qN3PnkDrq`Sa-qs!;A+x(2zq6Zn7M35z
z*wkkmbuH(nz6l7}*io#_kE?1tVl(S)i+_)U@poI$@F`me*r}^ZUFv6?T0blYY=__6
z0Y4RU0RVx()AkS-e3n9#3`KRrkcEC!LA~}FzO-ESlW3>%k$JC%*DdWcB3y6{d5t{u
zP17Gat!SY=L0|bSc#OnGgXZc3PX6y}*M%`ZN4PMO)r6>8M$HB*1~wkS2{b-0t=K^$
zd=6&ER4u-)pMLS%1Y)FFU2A<C5|AyR46rK?X2gD-Wf8!g&~cjeZT_uR-M5dyLPIbA
zKGnC57%5d>!Xt+|n$?qJ$fH*}?pk?hJ`?Cqmx9XUJL)wXc4Fz?xG{6kYXA0Bp4V!*
z%i0Kz1^K)qhxjc_pKrU2??C6@+VDvJ_w+?aexFMQWTgz6EsdH|29G)7DX|Am4*UL^
z|6GQfQz+)Afo+wMbFx80T}GLy4hxqk+L=(&)^1OF;!)e>!1eT*f;5#McsxX*YC;$*
zp=yoH^k6DH49!ncocelE&v&>d7!9VKyt+z5&4Vl^ABn<Wb>O|+$wcXY?`abb`6C>Z
zUYlA9`K-RSrsUDd44NN<_q^X`)6foARuM$dF?wq%7xZ<?zY+P9$8xvCwn9mN(ZEMK
zn*Xx2Y7e^$V}QQ91_R42@q-P9g^VFLb01-fWN8Tw9(yjP5MgqFDx<AI$5VIja9&dp
zM8f9#O|fy~orDSN=4RvNS-Pl*)6Fm%GWl)o>(k$X%V9Ak?q<&$Q@+?mpEq^r!KFNW
zEMaQ3@9_NrYUVC~>Yy1@5dsm<hxL`Y^hTk;!Tux_C?HTy+cm!G$XQMAtHfy94w+C{
zG5I*hW^Z3mNXYbnvZSI!?^OJ!8plthA~V%mzqhE7gAl$^341KWED4zsL9w1{*%35_
zlfM<&uj=ap1iYL4OlbIHg+<;PNo6s3Mpu~zf9ZN6W;ppp4Gq=)>(HK--jxC+)+bS+
z?f`IDcljT148k~F|C~tvJ&^PUsT)Z=)K+Ih!G2ePqJfwDe0EGfPql)iFkpQ9p$GNM
zWpzTudyQ4a-CW$}Kktu-s>dB!8{vUmhwVgl7Hd2}PN9uwiRse==1v<wC*_{jgSyr2
zHptD!K=FgDxX4~|Ix?Llr1wrX3;ZxntkQo3gaF6No!^{=Al6Kj5~uuwjArFJ@Y-j8
z8Pb(Hki^qF*7dEY60nF_?DnMy*%pV#NRz05M$}IRP*Aq^_8-6ip>Dh!gGiF)dW0Se
zXka`zhtldnRz=OL87l3b+yZlyUuSVFt|pL|t$*4z7{!q0aQPfIN{#?49$+Umx>X3c
zbzpdV6cuZ|N}=5cA_~A8tOWdm_YN!vEmpYC%2TN?0*RbH<3m10stA!j*eySHs?L4<
z?;iz^C4EC@VUaLsg?}90;I(lN7KCt6+xA(43DHl0qPg=CD-0k14GCZq4Guv*MN<fR
z9PrJxug>gUPY&K}Eri{JdGIYog{jIDh-S^j28wxK*b_(qciYs3?)PHvMgC7)R{{=I
z*T+Y1*|P6h60ay>WE(FD^IEfI36VjG#=b9&aVxT9nUG{JLWl|35)!4C>{J@E4#pU3
zcE)#9@B2LO_kH)d&olSVJ@?#u&pG#h{`Yr&=l4H)%vEvL|1m;?{%{1haOG38IHbtf
z$?)(G&6-)9ifB=fzSgeX;|ovW>MjOikDjnkMJ@he7x6l)@Uk-QwgvMqL$;+`*b+8!
z6B_952>JHFF)btr;jX$4!Y%Om+vL4CU~lI|Y1OL|?2J1-fr=ceQI@<u@>^k&eHP+4
ztXf#v%k4T9Fq2P{>TK7uwt$Ax4<)F%m*wH_nPR>Lom&Pu06Y<Zi{N`q;}*g`ogQXZ
zH&NKcGGv_&Fl8_jpN6<z3)R%OB!u$<WH2EPC#WW-vSvx$MYsGRRbU*Ys8F>o_5>(7
zb-^8FZve<LBk5s1dXa=zM=`NJU3yb3d`=zkF5)c-J4^skP)~joDWKdXR=^y4v?WjP
zm4UL46Ns}712`-z&<F|n#K)MnJ5!bnX6fJA8)ha#19QDkpvIet6{`jyMhrYl{WenE
zYbfY_`&+Ru-D*Ga$G$DjS%r3cj4?oCM9QBu)cpLs{?0D5K|_8&*?jd_`PH#_PGM6s
zp8n`_3jF?~&r*=L7Z$jsc%I;FU-8=@UYUnl8HnG`5@Ijn|2e|Zx@v+ok3|;otDlR6
zI<GQCGrdsY<w_kK69&qq+;fY7Ra!#63*fXXN`4v^FbBT7hKFu#J{ki$InOM70ml+(
z@|GIY!IU041DqAG^+FB3wby<_O97P~Any)lt^Af3F6b^j@IQJ-SvuTH$_kS2+J{?Z
znO#gciU*+oLJ9c-Q|~8@-*6#K+*s{7wzTHWVc<l(v}V*v0hAne&2O7q3mkz(e8;CK
z6Am6;*N*edUN#-+(WdH_dT#atooG(oRuJ^qHvK3nTM^8VrqKYx^8i5vVnN`}j!jM;
zsMNa_KCWHq8#LTg&o_hOzY88n5iU=>eaw014mB-NNonqVg62Ox7o7H|?#f=yKQvj`
zi}Ly5W<ar>uv`#=yi)H>FmlrHZfF7m$-lMGVGd}SHzh#kB|5)C20J1nRq`AS0!#71
zdeATX?tS&x>1Kyw4wqWCIm!#`BMszlGvt7wJ3wL-$)H!hT4d<OgLd_70*s!fnwfPU
z4sQt-K;}LrZk=;$@(BmvT+h;Fm|y%#?3XA)5l&>v<~BWXq|b?3Zn?T(bO%s@<s%(+
z2&DUZK%m*-{x%m0h%Pb-!ev9xJI+l(&KpHvs9aAWr(ZoZobg{^S0J3mr4R!mn(P5H
z3A7_dK1S?=*KIRBq@z(D@cGd$9%U9qqt@l9oXX0=1Tag!>~{tO-Z+V5z5fSH;Upd5
zSi8o=-`&ynjnfEN&zx+$&T2Dn69jEESz#nWWXXW<?)LzC8Rr-BEJ955$>)e7oW0$f
z$yp(@9|Jv39Qto2!Netx=O35!*_M=pU&Sv_wC-+#^~8wIfqv;v!vbIt)_>w#k2!e(
zO)>5i3**`9&NjGhLaX)>7GXZmw=)wgERrc87$cO<7!2F@S~PCSebsk3A*VQZUGiS;
z7j`Wgu%6`Dh!*#W<-f)eKYcd&MrOH7Qg$^a$tClpPQSdG5GE=6X$(pK3g^a+fiL{S
z_qBXzG>>q^^hR^sZ+QIdkZT5OzCsI+_abS3vA+~E_iba?e5M0SmYTR>i3&R8F@$yc
zav!Sw1}6IBrnhMuEb}Z+k9Y=6$5dt~-z<GqT-`<CDdlaSe-UZyVwJ~Ha9(A1S@-yg
zATQ6}{S<RqXx&MqH6@8Ga$CH+7Pr3|c_P{9f>F7(2mhMAj%bi|OIcOfzVwxExsXM$
zjwQ-M>zS5l;KII5sfD4TQA`X|$A|XV_ytHhG5Ys5-yPk%{TQ12V=%C^b{2Ks(_SsW
zzC`0~@?U=CpE<Yn%mu0Cc3Qt2!<zL>>2vA>OPz=#jmmCGHu-|8qUbGE^6P-~F^%NE
zW=8_JY_Ii~_is_f|Lm$06=|(C4Ub|z=6ynbr*q#%B7%>LP*YrBOy7Iv%jnePUI#=(
zcN-hT<4FD5%xYv@pia?)nt7HI(~{Rta@|actcdwAYEj!ca!mEvKrOQ!sXur414{$;
zI449gH$!6ei&*i5YUo`(`O<|tRN>{NVJ?x@DW8^4o+BIN8mkT`v*cdP_^`xm157Nt
z&K2f)InZ(W&Fn=V{O91HA<BC01av_}%U2M(41;+`UFLUJ@t_kJuNzs&fn)b;_O~l+
z^8M@IwO`6;!|^9^2}?)Z@T^7<goIFoBabaJu1pUm#no2v2j&nc3nZChwc_!thT#S8
zT076X$Zyk6JBXH&kGNUR0W}$9bl7;9Z`~Ei6uCRUfikY`R_PD|VH3k4RFLE%;pyh=
zT>7iIuiIm{1Y&WLT)yup4QR5$90BjRv8GVp+t2@PsDogVPns8lHFI$v)RH=B=BV?6
zYN*`K{E<9O#3HFJ{7@*G6UHW{436Gvl4(4@{fGSfeiqo$<HWwh2dBU^epWE-S0eDw
zVTgg{$DtE?-amd}^c;d<<ITRhXU!>Te6En^XjLC$VTZQr-#KIOxy9><{XKp2%7&Ic
zTDQCw(mY8mBb^d&)VZ<Ot5Wj1u58>h0yASmkm9k8(l$=*=yS-cr1^DY^<r<jXBxQi
zr?^*G4E9~1N#1v#%Qn7eN8yOa|9FTQ6)vr8Z(3e&+o%<{Dzn?aF^N(UxJ3}Nt#&_F
z3L8!kKJ)RmxR(z;s^gWNj8)2zWCZ;(V(AR1zCyuWNePd=GENu9D*gby`}Wt&R~P$~
zaK^_58fO~@Rb{Tcwz>GdWqE%0Yzv2w@l2sAYw0KzBBrg5Zf(#0W_X_a(sXA%O9oj=
z`1xqSynmRr-Yq;Xto!yPoxGonowQn@ih8jLJREh#lZpGR*Ko*-#^!BmdRCf5cil*?
zSMUqAtAy-0=XxxGR~H@%DT>If%*Ir@DJ>ePr+ZW>zSD|i5HX&?W>|SIYdEiOQ|x(C
zA8g<t#{H#aHG!bx+vU&Y95tR=hz?atw79wrSL}Q!=w`K-l%WV5e{Ndx)#95uUF=}>
z#0Ybhv%&h%Q7eNp9225vN;*pri-gUsCyO%nvGYQ?rX`Za9|hFaEkY^V#mtzl%rp1M
zpD~NgoWdT%8CJnQ8io-z`SY@wY@&O!Bv260r3>0Rmfwn*>-%xe2t~rq8goaJcgWhb
zdg`Tt%yX;p9}Pa$TRAxPrr;2JAv2Bm_A_p@ty+5def*WgJw?@OY@(@|<uSnL*;vWV
zJH$HQk;wMesprE12rkOkOat1|Fz@ts<Om69yA1ik&&m6c4@#+p=$o2i6=V%5V76;D
zpvkzHJf5yB$%ro%<Y=vE1n>SxYx$p_J%{Y=Y#04iRvBd;T3WzE*0!c19^sTI+{m~P
z<+Eqc&y6?x#G)SYa5=a$Q2bT=R^ih```uLSO8a!h(|b1pyS79{wBqZ+z$G=yvBJWu
z7g5dc_H>Oq!LT136{fQP79xh*6X`{sR~M*}+RT%#roNV|dHMP#sa;Wjxz_-dhH0n}
zpA62PVIkKP;zCb_y~CrJSQM}?!czN5uI3@E@fX%sG9{ekNV&WPYRj{-h5aejo>s^!
zQ?~d9E^hYpYR}Zd?84Q?0A;%lp6*q|G3sQ4i9iO$fVcZ7i>${swCn9MZiBocBQuf}
zwwr^>T;5jiI-hNK(c1r{q^SSOrsKE>4R}N)Cx@nc#b23o^1CzToc}8E^N2Ufp>%Q~
z=hYq!N=R*v+ULNN_2o^n^YRXz_)+Zs`E^6%f%VeN)k{6MAk11wkwu?&Vh+B!!@ybY
zCf&BcT{f34UZ^uYySTrYlTPcM&W4QCwkCbAdyTr<^*BvD*8St3psj^h_1fZlT`g{w
zs(cu&>C`)1-*R>_je#cYJoasPPPW|i7gA{VLA~fko}}FtsPtvb&Qz9^Y8@S&l6SLl
zwKTpxa}<k-5|d~>O!p{>ZcRSeO_xQ8Z)_$xi3>x7rkNgqbD!v!(|S=rBbX1I8SGn8
zN@-g5JdtvETi_&;V`|Y&VHSFgDl$Ezo6ppT9^iamVC@mleW?mbU!=7%)taaiPE8z-
z3E&}{C+qA4li$Y+4r|vwWK$`f&f)#Y#PGczeNdaD_NPrxbL)hoitf{G?YJrySKb|E
zg-njKakI~nC)KX?&1U*(XFI#UP;7Uq0HzbCmr$5@XqGL!9yH=x0=q_$Bu*Xb_++<&
zEAh*?{-iE5nkS*_o{hcrwd#S(&+&WHe|GDpc2H*A*pQps!I%m@#=2Czsr{(KpsPie
z_GecMo$xL{K_32#E83AW%3?iYo}OBe9HpE+d$Q+5Q&Po+8iI5L{n9Es!jkDM?V~v9
zwj;bUqqVkr8U_zu^xR77YmY{0st@s>yq?0_*z_tmB)#_R`_@aQ9_xy;@#k;C(>`({
z3r*byE_9dYH*Y78e^*)S!lr4bmi<LUS=#n5P0>)o!?1IqI+ocpc`f7a)v5(15MP~h
z2i5*{8jk=sb$-Ai%hJgHh{lgTYPP*LG2C32snKG0GD;wDV}YBCf9msPQ~#WvhoTL}
zrKV@B8kbp1XEMQy-0@V6?<}x#LqaSj$kr<^%gc?4^Ec{ZdLQFU-RK!sIFSRNF2~U}
zNL(SGGD~}z7jG(6inCo9R)q32g@yZP2DePA&JRsLc`B!mdn?qbLgtyEAgCzOME6n5
z%eDEGhmTE+_|+Wedp=2Ev9EdIq3^F&QB*@+_txQHCo+LiLst6;sHRy%Pijz;0bwez
z{&!4N1npK0lm6^;J^UrB!2t%5*G?6vW~zi=6FX8_uq&mc`oSg0B8W#DKNwubLE&Ln
z-wh~ZdrRS=lk?lwy<4+|G<32Cg#~JbO*es9y^nM;&OH5nzU5|7?aQYx<wT{P1rTkM
zF(H3BnfYPE*+kDNjJcvi&><;o6F0ASLR6pRe&Q>lw{%J7<`%ygN6g@-V3ozUowTM_
zgP%gOOYBEc5|Cfh@_YwIawEeeNRSID1-aO1_OhzPtAt!sS9);d#7`6I@8RG+DnHX?
z`^q=|LjJ|m+&;bR()jO`*a)^fGg@rLq{dC>^(3olnMd-(@PK+2EViJm(Q&HhwkEYP
zdr+TXa1R&ewU%ICYQ6Tg+Zp3r5uH)#&@Ne=N`=Ba{3;tvta}DBDot$+k0abEpRi3~
zm?}eY#bXV;UD(`=ZpC1SrctU-o|#CEqLTC@`FHY01>nIOPbWqXB!;K%g?U^sn}3cj
zT6HlowyiP9vrHpPbsGtP?xZ;_6uHWmB{$0|3<WOx#*~(y7AeEeIN=?jWZVWkwNOnJ
zk`B0Wbw4VqwP9_6Hs5T)w@$5lbADi;%63D5`M@JeOK$5irSaFBNUNqBdw89fhc%9+
zp-t0HCUwLUE?LHf6l=S?deHyVDH4QOqFO5J&>OL>@o4e*3t$ctd0B&0u`;*uc|Md}
zm71PT;fT=^S^S=(SKl)3TbIHZ0wET63r*I=SfcsUx!lk%M!wE*2k?}jN=Va@xDf`I
zGPfS|pxw))4r29Je!>-$mDeD8u+%E-$P%nkkU?bo?#^FC-y(~4`U5v=EX?dfgGvY7
z-*l>1dm%3)OwO;@c`;?7o>=uqLqNK!K-X9)W!nZAVydrKLu41jEk)>uw?>zKAzx3B
zEda3~I9O;!j*$%_sIkz&?y&#x#ll<KY!QC#c9-o$1GM@YLhoY)Szw2MKR6Q@rk~ax
z2Kz4$4jj63nC?fCpPm=kJp9YqgK7SF!C}DJb3eEOSpH7?zuEnr_WwAKzp`6Ge25i?
kQNM!90b%jLLVdpn|MXp`S$I(F)WN>Kwy{<j(&5g308YU=Z~y=R

diff --git a/sample-reports/security_assessment_multi_account.html b/sample-reports/security_assessment_multi_account.html
index 464f232..ab1ba76 100644
--- a/sample-reports/security_assessment_multi_account.html
+++ b/sample-reports/security_assessment_multi_account.html
@@ -279,15 +279,15 @@ <h2>Security Assessment Overview</h2>
                 <div class="section-title"><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M12 22s8-4 8-10V5l-8-3-8 3v7c0 6 8 10 8 10z"/></svg>All Security Findings</div>
                 <div class="filter-bar">
                     <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="searchInput"></div>
-                    <div class="filter-group"><label>Account</label><select id="accountFilter"><option value="">All Accounts</option><option value="193047247167">193047247167</option><option value="230266523520">230266523520</option><option value="472057511786">472057511786</option></select></div>
+                    <div class="filter-group"><label>Account</label><select id="accountFilter"><option value="">All Accounts</option><option value="111111111111">111111111111</option><option value="222222222222">222222222222</option><option value="333333333333">333333333333</option></select></div>
                     <div class="filter-group"><label for="regionFilter">Region</label><select id="regionFilter" onchange="applyFilters()"><option value="">All Regions</option><option value="ap-southeast-2">ap-southeast-2</option><option value="eu-west-1">eu-west-1</option><option value="us-east-1">us-east-1</option><option value="Global">Global</option></select></div>
                     <div class="filter-group"><label>Assessment Area</label><select id="serviceFilter"><option value="">All Assessment Areas</option><option value="bedrock">Bedrock</option><option value="sagemaker">SageMaker</option><option value="agentcore">AgentCore</option><option value="finserv">Financial Services</option></select></div>
                     <div class="filter-group"><label>Severity</label><select id="severityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
                     <div class="filter-group"><label>Status</label><select id="statusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
                     <button class="btn btn-reset" id="resetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
                 </div>
-                <div class="card"><div class="table-wrap"><table id="findingsTable"><thead><tr><th class="sortable" data-sort="account">Account ID</th><th class="sortable" data-sort="region">Region</th><th class="sortable" data-sort="checkId">Check ID</th><th class="sortable" data-sort="finding">Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th class="sortable" data-sort="severity">Severity</th><th class="sortable" data-sort="status">Status</th></tr></thead><tbody><tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+                <div class="card"><div class="table-wrap"><table id="findingsTable"><thead><tr><th class="sortable" data-sort="account">Account ID</th><th class="sortable" data-sort="region">Region</th><th class="sortable" data-sort="checkId">Check ID</th><th class="sortable" data-sort="finding">Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th class="sortable" data-sort="severity">Severity</th><th class="sortable" data-sort="status">Status</th></tr></thead><tbody><tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -297,8 +297,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -308,8 +308,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -319,8 +319,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -330,8 +330,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -341,8 +341,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -352,8 +352,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -363,8 +363,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -374,8 +374,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -385,8 +385,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -396,8 +396,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -407,8 +407,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -418,8 +418,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -429,8 +429,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -440,8 +440,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -451,8 +451,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -462,8 +462,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -473,8 +473,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -484,8 +484,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -495,8 +495,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -506,8 +506,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -517,8 +517,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -528,8 +528,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -539,8 +539,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -550,8 +550,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -561,8 +561,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -572,8 +572,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -583,8 +583,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -594,8 +594,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -605,8 +605,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -616,8 +616,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -627,8 +627,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -638,8 +638,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -649,8 +649,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -660,8 +660,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -671,8 +671,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -682,8 +682,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -693,8 +693,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>AC-02</code></td>
             <td class="col-domain">AgentCore IAM Full Access Policy</td>
@@ -704,8 +704,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>AC-02</code></td>
             <td class="col-domain">AgentCore IAM Wildcard Permissions</td>
@@ -715,8 +715,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>AC-03</code></td>
             <td class="col-domain">AgentCore Stale Access</td>
@@ -726,8 +726,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>AC-03</code></td>
             <td class="col-domain">AgentCore Unused Permissions</td>
@@ -737,8 +737,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>AC-09</code></td>
             <td class="col-domain">AgentCore Service-Linked Role Missing</td>
@@ -748,8 +748,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore Runtime VPC Configuration</td>
@@ -759,8 +759,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore Runtime VPC Configuration</td>
@@ -770,8 +770,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore Runtime VPC Configuration</td>
@@ -781,8 +781,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore Runtime VPC Configuration</td>
@@ -792,8 +792,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore Runtime VPC Configuration</td>
@@ -803,8 +803,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
@@ -814,8 +814,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
@@ -825,8 +825,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
@@ -836,8 +836,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
@@ -847,8 +847,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
@@ -858,8 +858,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
@@ -869,8 +869,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
@@ -880,8 +880,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
@@ -891,8 +891,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
@@ -902,8 +902,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
@@ -913,8 +913,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="low" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="low" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore ECR Repository AWS-Managed Keys</td>
@@ -924,8 +924,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity low">Low</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="low" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="low" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore ECR Repository AWS-Managed Keys</td>
@@ -935,8 +935,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity low">Low</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Runtime Storage Configuration</td>
@@ -946,8 +946,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Runtime Storage Configuration</td>
@@ -957,8 +957,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Runtime Storage Configuration</td>
@@ -968,8 +968,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Runtime Storage Configuration</td>
@@ -979,8 +979,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Runtime Storage Configuration</td>
@@ -990,8 +990,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Encryption</td>
@@ -1001,8 +1001,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Encryption</td>
@@ -1012,8 +1012,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Encryption</td>
@@ -1023,8 +1023,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -1034,8 +1034,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Missing</td>
@@ -1049,8 +1049,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -1060,8 +1060,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -1071,8 +1071,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -1082,8 +1082,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -1093,8 +1093,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -1104,8 +1104,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -1115,8 +1115,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -1126,8 +1126,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -1137,8 +1137,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -1148,8 +1148,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -1159,8 +1159,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -1170,8 +1170,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -1181,8 +1181,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -1192,8 +1192,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-01</code></td>
             <td class="col-domain">AmazonBedrockFullAccess role check</td>
@@ -1204,8 +1204,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-01</code></td>
             <td class="col-domain">AmazonBedrockFullAccess role check</td>
@@ -1216,8 +1216,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-01</code></td>
             <td class="col-domain">AmazonBedrockFullAccess role check</td>
@@ -1228,8 +1228,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -1239,8 +1239,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -1250,8 +1250,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -1261,8 +1261,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -1272,8 +1272,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -1283,8 +1283,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -1294,8 +1294,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -1305,8 +1305,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -1316,8 +1316,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -1327,8 +1327,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -1338,8 +1338,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -1349,30 +1349,30 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
-            <td class="finding-details">Role '193047247167-us-east-1-kb-bedrock-service-role' last accessed Bedrock on 2025-12-22</td>
+            <td class="finding-details">Role '111111111111-us-east-1-kb-bedrock-service-role' last accessed Bedrock on 2025-12-22</td>
             <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
-            <td class="finding-details">Role '193047247167-us-east-1-kb-setup-function-role' last accessed Bedrock on 2025-12-22</td>
+            <td class="finding-details">Role '111111111111-us-east-1-kb-setup-function-role' last accessed Bedrock on 2025-12-22</td>
             <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1382,8 +1382,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1393,8 +1393,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1404,8 +1404,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1415,8 +1415,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1426,8 +1426,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1437,8 +1437,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1448,8 +1448,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1459,8 +1459,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1470,8 +1470,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1481,8 +1481,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1492,8 +1492,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1503,8 +1503,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1514,8 +1514,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1525,8 +1525,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1536,8 +1536,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1547,8 +1547,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1558,8 +1558,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1569,8 +1569,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1580,8 +1580,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1591,8 +1591,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1602,8 +1602,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1613,8 +1613,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1624,8 +1624,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1635,30 +1635,30 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
-            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-193047247167-us-east-1' last accessed Bedrock on never</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-111111111111-us-east-1' last accessed Bedrock on never</td>
             <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
-            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-193047247167-us-west-2' last accessed Bedrock on never</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-111111111111-us-west-2' last accessed Bedrock on never</td>
             <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1668,8 +1668,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1679,8 +1679,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1690,8 +1690,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1701,8 +1701,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1712,8 +1712,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1723,8 +1723,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1734,8 +1734,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1745,8 +1745,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1756,8 +1756,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1767,8 +1767,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1778,8 +1778,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1789,8 +1789,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1800,8 +1800,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1811,8 +1811,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1822,8 +1822,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1833,8 +1833,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1844,8 +1844,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1855,8 +1855,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1866,8 +1866,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1877,8 +1877,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1888,8 +1888,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1899,8 +1899,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1910,8 +1910,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1921,8 +1921,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1932,8 +1932,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1943,8 +1943,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1954,8 +1954,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1965,8 +1965,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1976,8 +1976,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1987,8 +1987,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -1998,8 +1998,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -2009,8 +2009,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -2020,8 +2020,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -2031,8 +2031,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -2042,8 +2042,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -2053,8 +2053,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -2064,8 +2064,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -2075,8 +2075,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -2090,8 +2090,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -2101,19 +2101,19 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::193047247167:assumed-role/aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX/aiml-security-aiml-security-193047247167-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:193047247167:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::111111111111:assumed-role/aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX/aiml-security-aiml-security-111111111111-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:111111111111:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -2123,8 +2123,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -2134,8 +2134,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -2145,8 +2145,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -2156,8 +2156,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker Full Access Policy Used</td>
@@ -2167,8 +2167,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker Full Access Policy Used</td>
@@ -2178,8 +2178,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker Full Access Policy Used</td>
@@ -2189,8 +2189,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker Full Access Policy Used</td>
@@ -2200,8 +2200,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker Full Access Policy Used</td>
@@ -2211,8 +2211,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker Full Access Policy Used</td>
@@ -2222,8 +2222,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker Full Access Policy Used</td>
@@ -2233,8 +2233,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">Non-VPC Only Network Access</td>
@@ -2244,8 +2244,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SSO Not Properly Configured</td>
@@ -2255,8 +2255,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Missing Encryption Configuration</td>
@@ -2266,8 +2266,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -2277,8 +2277,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -2288,8 +2288,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -2299,8 +2299,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -2310,8 +2310,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -2321,8 +2321,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -2332,8 +2332,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -2343,8 +2343,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -2354,8 +2354,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -2365,8 +2365,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -2376,8 +2376,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -2387,8 +2387,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -2398,8 +2398,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -2409,8 +2409,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -2420,8 +2420,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -2431,8 +2431,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -2442,8 +2442,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -2453,8 +2453,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -2464,8 +2464,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -2475,8 +2475,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -2486,8 +2486,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -2497,8 +2497,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -2508,8 +2508,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -2519,8 +2519,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -2530,8 +2530,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -2541,8 +2541,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -2552,8 +2552,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -2563,8 +2563,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -2574,8 +2574,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -2589,8 +2589,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -2600,19 +2600,19 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::193047247167:assumed-role/aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX/aiml-security-aiml-security-193047247167-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:193047247167:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::111111111111:assumed-role/aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX/aiml-security-aiml-security-111111111111-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:111111111111:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -2622,8 +2622,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -2633,8 +2633,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -2644,8 +2644,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -2655,8 +2655,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -2666,8 +2666,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -2677,8 +2677,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -2688,8 +2688,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -2699,8 +2699,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -2714,8 +2714,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -2725,19 +2725,19 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::193047247167:assumed-role/aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX/aiml-security-aiml-security-193047247167-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:193047247167:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::111111111111:assumed-role/aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX/aiml-security-aiml-security-111111111111-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:111111111111:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -2747,8 +2747,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -2758,8 +2758,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -2769,8 +2769,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -2780,8 +2780,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -2791,8 +2791,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -2802,8 +2802,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -2813,8 +2813,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -2824,8 +2824,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -2835,8 +2835,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -2846,8 +2846,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -2857,8 +2857,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -2868,8 +2868,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -2879,8 +2879,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -2890,8 +2890,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -2901,8 +2901,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -2912,8 +2912,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -2923,8 +2923,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -2934,8 +2934,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -2945,8 +2945,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -2956,8 +2956,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -2967,8 +2967,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -2978,8 +2978,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -2989,8 +2989,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -3000,8 +3000,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -3011,8 +3011,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -3022,8 +3022,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -3033,8 +3033,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -3044,8 +3044,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -3055,8 +3055,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -3066,8 +3066,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -3077,8 +3077,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="low" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="low" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-01</code></td>
             <td class="col-domain">AWS Shield Advanced Not Enabled</td>
@@ -3091,8 +3091,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity low">Low</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-01</code></td>
             <td class="col-domain">No Regional WAF Web ACLs Found</td>
@@ -3104,8 +3104,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-02</code></td>
             <td class="col-domain">API Gateway Usage Plans Missing Throttle</td>
@@ -3115,8 +3115,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-03</code></td>
             <td class="col-domain">Bedrock Token Quotas At Default</td>
@@ -3129,8 +3129,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-04</code></td>
             <td class="col-domain">No Cost Anomaly Detection Monitors</td>
@@ -3142,8 +3142,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-05</code></td>
             <td class="col-domain">No Bedrock CloudWatch Alarms Found</td>
@@ -3156,8 +3156,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-06</code></td>
             <td class="col-domain">No AI/ML Service Budgets Configured</td>
@@ -3169,8 +3169,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-07</code></td>
             <td class="col-domain">Agent Action Boundary Check</td>
@@ -3180,8 +3180,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-08</code></td>
             <td class="col-domain">AgentCore Runtimes Missing Policy Engine</td>
@@ -3191,12 +3191,12 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-09</code></td>
             <td class="col-domain">Agent Lambda Functions Without Concurrency Limits</td>
-            <td class="finding-details">Agent-related Lambda functions without reserved concurrency: aiml-security-aiml-security-193047247167-FinServAssessment, resco-aiml-IAMPermissionCaching, aiml-security-aiml-security-193047247167-SagemakerAssessment, resco-aiml-CleanupBucket, aiml-security-aiml-security-193047247167-BedrockAssessment, resco-aiml-BedrockAssessment, aiml-security-aiml-security-193047247167-CleanupBucket, aiml-security-aiml-security-193047247167-AgentCoreAssessment, e2ebedrockrag-OSSInfraStack-BKBOSSInfraSetupLambda-031La8JAQXtk, e2ebedrockrag-OSSInfraSta-OSSIndexCreationProvider-g56en9UzRjII. Unlimited concurrency allows runaway agent loops to exhaust account limits.</td>
+            <td class="finding-details">Agent-related Lambda functions without reserved concurrency: aiml-security-aiml-security-111111111111-FinServAssessment, resco-aiml-IAMPermissionCaching, aiml-security-aiml-security-111111111111-SagemakerAssessment, resco-aiml-CleanupBucket, aiml-security-aiml-security-111111111111-BedrockAssessment, resco-aiml-BedrockAssessment, aiml-security-aiml-security-111111111111-CleanupBucket, aiml-security-aiml-security-111111111111-AgentCoreAssessment, e2ebedrockrag-OSSInfraStack-BKBOSSInfraSetupLambda-031La8JAQXtk, e2ebedrockrag-OSSInfraSta-OSSIndexCreationProvider-g56en9UzRjII. Unlimited concurrency allows runaway agent loops to exhaust account limits.</td>
             <td class="resolution-text">1. Set reserved concurrency on agent Lambda functions.
 2. Implement maximum iteration counts in agent orchestration logic.
 3. Use Step Functions with MaxConcurrency and timeout states.
@@ -3205,8 +3205,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-10</code></td>
             <td class="col-domain">Human-in-the-Loop Check — No Agent Workflows Found</td>
@@ -3216,8 +3216,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-11</code></td>
             <td class="col-domain">No Agent Rate Alarms Found</td>
@@ -3230,8 +3230,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-12</code></td>
             <td class="col-domain">No Bedrock-Scoped SCPs Found</td>
@@ -3243,8 +3243,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-13</code></td>
             <td class="col-domain">Model Provenance Tags Present</td>
@@ -3254,8 +3254,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-14</code></td>
             <td class="col-domain">Model Governance Config Rules Present</td>
@@ -3265,8 +3265,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-15</code></td>
             <td class="col-domain">No Bedrock Evaluation Jobs Found</td>
@@ -3278,19 +3278,19 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-16</code></td>
             <td class="col-domain">ECR Repositories Without Image Scanning</td>
-            <td class="finding-details">4 ECR repo(s) without scan-on-push: mlexplorationrepo, cdk-hnb659fds-container-assets-193047247167-us-east-1, bedrock-agentcore-customer_support_agent, bedrock-agentcore-origami_expeditions.</td>
+            <td class="finding-details">4 ECR repo(s) without scan-on-push: mlexplorationrepo, cdk-hnb659fds-container-assets-111111111111-us-east-1, bedrock-agentcore-customer_support_agent, bedrock-agentcore-origami_expeditions.</td>
             <td class="resolution-text">Enable scan-on-push for all ECR repositories containing model containers. Consider enabling Enhanced Scanning (Inspector) for CVE detection.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonECR/latest/userguide/image-scanning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-20</code></td>
             <td class="col-domain">No SageMaker Feature Groups Found</td>
@@ -3300,25 +3300,25 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-21</code></td>
             <td class="col-domain">Training Data Buckets Without Versioning</td>
-            <td class="finding-details">13 training data bucket(s) without versioning: ancbedrocklogging, bedrock-agentcore-codebuild-sources-193047247167-us-east-1, bedrock-bda-us-east-1-dda43109-6557-48bb-993d-3f97126b64b4, bedrock-bda-us-east-1-logging-00719114-debd-4487-85d1-09cbc3fc8, bedrock-kb-bucket-f736570b, bedrock-video-generation-us-east-1-h5ltpm, fsi-genai-workshop-bedrock-datasources-193047247167-us-west-2, knowledgebase-bedrock-agent-agasthik, llmevaluationpromptfoo-bedrockkb-cozhbzbrcmd2, sagemaker-studio-193047247167-huo1mvme4t.</td>
+            <td class="finding-details">13 training data bucket(s) without versioning: ancbedrocklogging, bedrock-agentcore-codebuild-sources-111111111111-us-east-1, bedrock-bda-us-east-1-dda43109-6557-48bb-993d-3f97126b64b4, bedrock-bda-us-east-1-logging-00719114-debd-4487-85d1-09cbc3fc8, bedrock-kb-bucket-f736570b, bedrock-video-generation-us-east-1-h5ltpm, fsi-genai-workshop-bedrock-datasources-111111111111-us-west-2, knowledgebase-bedrock-agent-agasthik, llmevaluationpromptfoo-bedrockkb-cozhbzbrcmd2, sagemaker-studio-111111111111-huo1mvme4t.</td>
             <td class="resolution-text">Enable S3 versioning on all training data buckets. Consider enabling MFA Delete for additional protection against poisoning.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/Versioning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-22</code></td>
             <td class="col-domain">Overly Permissive Knowledge Base IAM Roles</td>
             <td class="finding-details">722 role(s) with wildcard KB permissions:
-- Role '193047247167-us-east-1-kb-setup-function-role' allows 'bedrock:CreateKnowledgeBase' on Resource '*' (no ARN scoping to specific Knowledge Bases)
-- Role '193047247167-us-east-1-kb-setup-function-role' allows 'bedrock:CreateDataSource' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role '111111111111-us-east-1-kb-setup-function-role' allows 'bedrock:CreateKnowledgeBase' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role '111111111111-us-east-1-kb-setup-function-role' allows 'bedrock:CreateDataSource' on Resource '*' (no ARN scoping to specific Knowledge Bases)
 - Role 'Admin' allows '*'
 - Role 'agentcore-wildrydes_gateway_role_ab3991f6-role' allows 'bedrock:*'
 - Role 'AgentCoreEvalsSDK-us-east-1-d04ba7b68b' allows 'bedrock:InvokeModel' on Resource '*' (no ARN scoping to specific Knowledge Bases)
@@ -3332,8 +3332,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-24</code></td>
             <td class="col-domain">ADVISORY: Knowledge Base Metadata Filtering — Manual Review Required</td>
@@ -3345,8 +3345,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="passed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-25</code></td>
             <td class="col-domain">OpenSearch Serverless Encryption Policies Present</td>
@@ -3356,8 +3356,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-26</code></td>
             <td class="col-domain">OpenSearch Serverless Collections Not VPC-Restricted</td>
@@ -3367,8 +3367,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-27</code></td>
             <td class="col-domain">No Guardrails — Contextual Grounding Not Applicable</td>
@@ -3378,8 +3378,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-27</code></td>
             <td class="col-domain">Automated Reasoning Policies — Access Check</td>
@@ -3392,8 +3392,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity low">Low</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-28</code></td>
             <td class="col-domain">No Guardrails — Denied Topics Not Applicable</td>
@@ -3403,8 +3403,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-29</code></td>
             <td class="col-domain">ADVISORY: Compliance Disclaimer — Manual Review Required</td>
@@ -3417,8 +3417,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-30</code></td>
             <td class="col-domain">ADVISORY: Compliance Dataset Coverage — Manual Review Required</td>
@@ -3431,14 +3431,14 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-31</code></td>
             <td class="col-domain">Knowledge Base Data Sources Past Review Threshold</td>
             <td class="finding-details">2 data source(s) not synced in >7 days (a configurable review threshold, NOT an AWS-mandated limit):
 - KB 'knowledge-base-semiconductors' source 'knowledge-base-quick-start-qpvuv-data-source' last synced 702 days ago
-- KB '193047247167-us-east-1-kb' source '193047247167-us-east-1-kb-datasource' last synced 180 days ago
+- KB '111111111111-us-east-1-kb' source '111111111111-us-east-1-kb-datasource' last synced 180 days ago
 Confirm this age is acceptable for each data source's currency requirement — slow-changing reference data may legitimately sync infrequently.</td>
             <td class="resolution-text">1. Define the maximum acceptable data age per use case (e.g., intraday for market data, daily for product terms, weekly/monthly for regulatory guidance) and adjust the review threshold to match.
 2. Configure automated sync (EventBridge Scheduler → StartIngestionJob) at that cadence — see FS-61.
@@ -3447,8 +3447,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-32</code></td>
             <td class="col-domain">ADVISORY: Source Attribution — Manual Review Required</td>
@@ -3461,19 +3461,19 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-33</code></td>
             <td class="col-domain">KB Data Source Buckets Without Versioning</td>
-            <td class="finding-details">KB data source S3 buckets without versioning: 193047247167-us-east-1-kb-data-bucket.</td>
+            <td class="finding-details">KB data source S3 buckets without versioning: 111111111111-us-east-1-kb-data-bucket.</td>
             <td class="resolution-text">Enable S3 versioning on all KB data source buckets. Enable S3 Object Integrity (checksum) for tamper detection.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/checking-object-integrity.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-34</code></td>
             <td class="col-domain">Legacy Foundation Models Available in Region</td>
@@ -3486,8 +3486,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-35</code></td>
             <td class="col-domain">ADVISORY: Harmful-Content Test Coverage — Manual Review Required</td>
@@ -3500,8 +3500,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-36</code></td>
             <td class="col-domain">No Guardrails — Content Filters Not Applicable</td>
@@ -3511,8 +3511,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-37</code></td>
             <td class="col-domain">ADVISORY: User Feedback Mechanism — Manual Review Required</td>
@@ -3525,8 +3525,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-38</code></td>
             <td class="col-domain">No Guardrails — Word Filters Not Applicable</td>
@@ -3536,8 +3536,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-39</code></td>
             <td class="col-domain">No SageMaker Clarify Bias Monitoring</td>
@@ -3550,8 +3550,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-40</code></td>
             <td class="col-domain">ADVISORY: Bias Dataset Coverage — Manual Review Required</td>
@@ -3564,8 +3564,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-41</code></td>
             <td class="col-domain">No SageMaker Clarify Explainability Monitoring</td>
@@ -3578,8 +3578,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-42</code></td>
             <td class="col-domain">No SageMaker Model Cards Found</td>
@@ -3592,8 +3592,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-43</code></td>
             <td class="col-domain">No CloudWatch Logs Data Protection Policies</td>
@@ -3606,8 +3606,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="passed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-44</code></td>
             <td class="col-domain">Amazon Macie Enabled</td>
@@ -3617,8 +3617,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-45</code></td>
             <td class="col-domain">No Guardrails — PII Filters Not Applicable</td>
@@ -3628,19 +3628,19 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-46</code></td>
             <td class="col-domain">AI/ML Buckets Without Data Classification Tags</td>
-            <td class="finding-details">18 AI/ML bucket(s) without data-classification tags: 193047247167-us-east-1-kb-data-bucket, ancbedrocklogging, ancknowledgebase, aws-streaming-data-solut-outputaccesslogsbucket8b-1o7m0kb4bafm4, bedrock-agentcore-codebuild-sources-193047247167-us-east-1, bedrock-bda-us-east-1-dda43109-6557-48bb-993d-3f97126b64b4, bedrock-bda-us-east-1-logging-00719114-debd-4487-85d1-09cbc3fc8, bedrock-kb-bucket-f736570b, bedrock-video-generation-us-east-1-h5ltpm, create-customer-resources-kb-bucket-193047247167.</td>
+            <td class="finding-details">18 AI/ML bucket(s) without data-classification tags: 111111111111-us-east-1-kb-data-bucket, ancbedrocklogging, ancknowledgebase, aws-streaming-data-solut-outputaccesslogsbucket8b-1o7m0kb4bafm4, bedrock-agentcore-codebuild-sources-111111111111-us-east-1, bedrock-bda-us-east-1-dda43109-6557-48bb-993d-3f97126b64b4, bedrock-bda-us-east-1-logging-00719114-debd-4487-85d1-09cbc3fc8, bedrock-kb-bucket-f736570b, bedrock-video-generation-us-east-1-h5ltpm, create-customer-resources-kb-bucket-111111111111.</td>
             <td class="resolution-text">Tag all AI/ML data buckets with 'data-classification' key. Values: Public, Internal, Confidential, Restricted. Enforce via SCP or AWS Config rule.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-tagging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-47</code></td>
             <td class="col-domain">No Guardrails — Grounding Threshold Not Applicable</td>
@@ -3650,8 +3650,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-48</code></td>
             <td class="col-domain">Active Knowledge Bases for RAG Present</td>
@@ -3661,8 +3661,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-49</code></td>
             <td class="col-domain">ADVISORY: Hallucination Disclaimer — Manual Review Required</td>
@@ -3674,8 +3674,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-50</code></td>
             <td class="col-domain">No Guardrails With Relevance Grounding Filters</td>
@@ -3685,8 +3685,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-51</code></td>
             <td class="col-domain">No Guardrails — Prompt Attack Filters Not Applicable</td>
@@ -3696,8 +3696,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-52</code></td>
             <td class="col-domain">Bedrock Lambda Functions on Deprecated Runtimes</td>
@@ -3710,8 +3710,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-53</code></td>
             <td class="col-domain">No WAF Web ACLs — Injection Rules Not Applicable</td>
@@ -3721,8 +3721,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-54</code></td>
             <td class="col-domain">ADVISORY: Penetration Testing — Manual Review Required</td>
@@ -3736,8 +3736,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-55</code></td>
             <td class="col-domain">No Output Validation Functions Found</td>
@@ -3750,8 +3750,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-56</code></td>
             <td class="col-domain">No WAF ACLs — XSS Prevention Not Applicable</td>
@@ -3761,8 +3761,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-57</code></td>
             <td class="col-domain">ADVISORY: Output Encoding — Manual Review Required</td>
@@ -3775,8 +3775,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-58</code></td>
             <td class="col-domain">ADVISORY: Output Schema Validation — Manual Review Required</td>
@@ -3789,8 +3789,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-59</code></td>
             <td class="col-domain">No Guardrails — Topic Allowlist Not Applicable</td>
@@ -3800,8 +3800,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-60</code></td>
             <td class="col-domain">ADVISORY: Contextual Grounding for Off-Topic Prevention</td>
@@ -3813,12 +3813,12 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-61</code></td>
             <td class="col-domain">COULD NOT ASSESS: Knowledge Base Sync Schedule Check</td>
-            <td class="finding-details">This check could not be completed (error: An error occurred (AccessDeniedException) when calling the ListSchedules operation: User: arn:aws:sts::193047247167:assumed-role/aiml-security-19304724716-FinServSecurityAssessment-G8d5dEiMJsZB/aiml-security-aiml-security-193047247167-FinServAssessment is not authorized to perform: scheduler:ListSchedules on resource: arn:aws:scheduler:us-east-1:193047247167:schedule/*/* because no identity-based policy allows the scheduler:ListSchedules action). The most common cause is a missing IAM permission for the assessment role; it may also indicate an unsupported region or an outdated botocore. This control was NOT assessed — verify the role's permissions and re-run, and assess this control manually until resolved.</td>
+            <td class="finding-details">This check could not be completed (error: An error occurred (AccessDeniedException) when calling the ListSchedules operation: User: arn:aws:sts::111111111111:assumed-role/aiml-security-19304724716-FinServSecurityAssessment-G8d5dEiMJsZB/aiml-security-aiml-security-111111111111-FinServAssessment is not authorized to perform: scheduler:ListSchedules on resource: arn:aws:scheduler:us-east-1:111111111111:schedule/*/* because no identity-based policy allows the scheduler:ListSchedules action). The most common cause is a missing IAM permission for the assessment role; it may also indicate an unsupported region or an outdated botocore. This control was NOT assessed — verify the role's permissions and re-run, and assess this control manually until resolved.</td>
             <td class="resolution-text">1. Confirm the assessment role grants the actions this check requires (see the documented IAM permission set in the README).
 2. Confirm the service/feature is supported in the assessed region.
 3. Ensure botocore meets the version floor in requirements.txt.
@@ -3827,8 +3827,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity low">Low</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-62</code></td>
             <td class="col-domain">ADVISORY: Data Currency Disclaimer — Manual Review Required</td>
@@ -3840,8 +3840,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-63</code></td>
             <td class="col-domain">Foundation Model Lifecycle Management</td>
@@ -3851,14 +3851,14 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-65</code></td>
             <td class="col-domain">KB Data Source Buckets Missing S3 Event Notifications</td>
             <td class="finding-details">The following KB data-source S3 buckets have no event notifications configured. Unauthorized document modifications will not be detected in real time:
 - semiconductor-demo-9999
-- 193047247167-us-east-1-kb-data-bucket</td>
+- 111111111111-us-east-1-kb-data-bucket</td>
             <td class="resolution-text">1. Enable Amazon EventBridge notifications on each KB data-source S3 bucket.
 2. Create an EventBridge rule to route s3:ObjectCreated, s3:ObjectRemoved, and s3:ObjectModified events to an SNS topic or Lambda for alerting.
 3. Integrate alerts into your security incident response workflow.</td>
@@ -3866,8 +3866,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-66</code></td>
             <td class="col-domain">AgentCore Runtimes Missing End-User Identity Propagation</td>
@@ -3885,16 +3885,16 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-67</code></td>
             <td class="col-domain">Agent Action-Group Lambdas May Lack Transaction Thresholds</td>
             <td class="finding-details">The following agent action-group Lambda functions have no environment variables whose names suggest transaction-value threshold configuration (this is a best-effort heuristic — a threshold enforced in code or in an AgentCore Policy Engine rule would not be detected here, so treat this as a prompt for manual verification rather than a definitive gap). Without explicit limits, agents could initiate unbounded financial transactions:
-- aiml-security-aiml-security-193047247167-FinServAssessment
-- aiml-security-aiml-security-193047247167-BedrockAssessment
+- aiml-security-aiml-security-111111111111-FinServAssessment
+- aiml-security-aiml-security-111111111111-BedrockAssessment
 - resco-aiml-BedrockAssessment
-- aiml-security-aiml-security-193047247167-AgentCoreAssessment
+- aiml-security-aiml-security-111111111111-AgentCoreAssessment
 - e2ebedrockrag-OSSInfraStack-BKBOSSInfraSetupLambda-031La8JAQXtk
 - e2ebedrockrag-OSSInfraSta-OSSIndexCreationProvider-g56en9UzRjII
 - resco-aiml-AgentCoreAssessment</td>
@@ -3906,8 +3906,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-68</code></td>
             <td class="col-domain">API Gateway Request Body Size Limits Not Enforced</td>
@@ -3920,19 +3920,19 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-69</code></td>
             <td class="col-domain">Prompt Input Validation Functions Present</td>
-            <td class="finding-details">Found 3 Lambda function(s) with input validation/sanitization naming patterns: resco-aiml-CleanupBucket, visa-bulletin-tracker-prod-cleanup, aiml-security-aiml-security-193047247167-CleanupBucket.</td>
+            <td class="finding-details">Found 3 Lambda function(s) with input validation/sanitization naming patterns: resco-aiml-CleanupBucket, visa-bulletin-tracker-prod-cleanup, aiml-security-aiml-security-111111111111-CleanupBucket.</td>
             <td class="resolution-text">Review these functions to confirm they cover: special-character stripping, format validation, size limits, and injection-sequence detection.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-injection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>FS-00</code></td>
             <td class="col-domain">FinServ Regional Scope Not Applicable</td>
@@ -3942,8 +3942,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>FS-00</code></td>
             <td class="col-domain">FinServ Regional Scope Not Applicable</td>
@@ -3953,8 +3953,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -3964,8 +3964,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -3975,8 +3975,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -3986,8 +3986,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -3997,8 +3997,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -4008,8 +4008,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -4019,8 +4019,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -4030,8 +4030,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -4041,8 +4041,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -4052,8 +4052,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -4063,8 +4063,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -4074,8 +4074,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -4085,8 +4085,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -4096,8 +4096,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -4107,8 +4107,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -4118,8 +4118,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -4129,8 +4129,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -4140,8 +4140,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -4151,8 +4151,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -4162,8 +4162,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -4173,8 +4173,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -4184,8 +4184,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -4195,8 +4195,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -4206,8 +4206,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -4217,8 +4217,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -4228,8 +4228,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -4239,8 +4239,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -4250,8 +4250,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -4261,8 +4261,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -4272,8 +4272,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -4283,8 +4283,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -4294,8 +4294,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -4305,8 +4305,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -4316,8 +4316,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -4327,8 +4327,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -4338,8 +4338,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -4349,8 +4349,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -4360,8 +4360,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -4371,8 +4371,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -4382,8 +4382,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -4393,8 +4393,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -4404,8 +4404,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -4415,8 +4415,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -4426,8 +4426,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -4437,8 +4437,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -4448,8 +4448,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -4459,8 +4459,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -4470,8 +4470,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker IAM Permissions Check</td>
@@ -4481,8 +4481,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -4492,8 +4492,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -4503,8 +4503,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -4514,8 +4514,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -4525,8 +4525,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -4536,8 +4536,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -4547,8 +4547,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -4558,8 +4558,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -4569,8 +4569,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -4580,8 +4580,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -4591,8 +4591,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -4602,8 +4602,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -4613,8 +4613,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -4624,8 +4624,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -4635,8 +4635,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -4646,8 +4646,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -4657,8 +4657,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -4668,8 +4668,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -4679,8 +4679,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -4690,8 +4690,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -4701,8 +4701,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -4712,8 +4712,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -4723,8 +4723,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -4734,8 +4734,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -4745,8 +4745,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -4756,8 +4756,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -4767,8 +4767,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -4778,8 +4778,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -4789,8 +4789,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -4800,8 +4800,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -4811,8 +4811,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -4822,8 +4822,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -4833,8 +4833,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -4844,8 +4844,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -4855,8 +4855,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -4866,8 +4866,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -4877,8 +4877,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -4888,8 +4888,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -4899,8 +4899,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -4910,8 +4910,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -4921,8 +4921,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -4932,8 +4932,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -4943,8 +4943,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -4954,8 +4954,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -4965,8 +4965,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -4976,8 +4976,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -4987,8 +4987,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -4998,8 +4998,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -5009,8 +5009,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -5020,8 +5020,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -5031,8 +5031,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -5042,8 +5042,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -5053,8 +5053,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -5064,8 +5064,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -5075,8 +5075,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-01</code></td>
             <td class="col-domain">AmazonBedrockFullAccess role check</td>
@@ -5087,8 +5087,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -5098,8 +5098,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -5109,8 +5109,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -5120,8 +5120,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -5131,8 +5131,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -5142,8 +5142,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -5153,8 +5153,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -5164,41 +5164,41 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
-            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-472057511786-us-east-1' last accessed Bedrock on never</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-333333333333-us-east-1' last accessed Bedrock on never</td>
             <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
-            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-472057511786-us-east-2' last accessed Bedrock on never</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-333333333333-us-east-2' last accessed Bedrock on never</td>
             <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
-            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-472057511786-us-west-2' last accessed Bedrock on never</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-333333333333-us-west-2' last accessed Bedrock on never</td>
             <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -5208,8 +5208,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -5219,8 +5219,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -5230,8 +5230,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -5241,8 +5241,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -5252,8 +5252,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -5263,8 +5263,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -5274,8 +5274,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -5285,8 +5285,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -5296,8 +5296,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -5307,8 +5307,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -5318,8 +5318,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -5329,8 +5329,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -5340,8 +5340,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -5351,8 +5351,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -5366,8 +5366,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -5377,19 +5377,19 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::472057511786:assumed-role/aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b/aiml-security-aiml-security-mgmt-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:472057511786:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::333333333333:assumed-role/aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b/aiml-security-aiml-security-mgmt-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:333333333333:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -5399,8 +5399,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -5410,8 +5410,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -5421,8 +5421,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -5432,8 +5432,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="low" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="low" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-01</code></td>
             <td class="col-domain">AWS Shield Advanced Not Enabled</td>
@@ -5446,8 +5446,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity low">Low</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-01</code></td>
             <td class="col-domain">No Regional WAF Web ACLs Found</td>
@@ -5459,8 +5459,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-02</code></td>
             <td class="col-domain">No API Gateway Usage Plans Found</td>
@@ -5470,8 +5470,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-03</code></td>
             <td class="col-domain">Bedrock Token Quotas At Default</td>
@@ -5484,8 +5484,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-04</code></td>
             <td class="col-domain">No Cost Anomaly Detection Monitors</td>
@@ -5497,8 +5497,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-05</code></td>
             <td class="col-domain">No Bedrock CloudWatch Alarms Found</td>
@@ -5511,8 +5511,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-06</code></td>
             <td class="col-domain">No AI/ML Service Budgets Configured</td>
@@ -5524,8 +5524,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-07</code></td>
             <td class="col-domain">Agent Action Boundary Check</td>
@@ -5535,8 +5535,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-08</code></td>
             <td class="col-domain">No AgentCore Runtimes Found</td>
@@ -5546,8 +5546,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-09</code></td>
             <td class="col-domain">Agent Lambda Functions Without Concurrency Limits</td>
@@ -5560,8 +5560,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-10</code></td>
             <td class="col-domain">Human-in-the-Loop Check — No Agent Workflows Found</td>
@@ -5571,8 +5571,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-11</code></td>
             <td class="col-domain">No Agent Rate Alarms Found</td>
@@ -5585,8 +5585,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-12</code></td>
             <td class="col-domain">No Bedrock-Scoped SCPs Found</td>
@@ -5598,8 +5598,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-13</code></td>
             <td class="col-domain">Model Provenance Tags Present</td>
@@ -5609,8 +5609,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-14</code></td>
             <td class="col-domain">Model Governance Config Rules Present</td>
@@ -5620,8 +5620,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-15</code></td>
             <td class="col-domain">No Bedrock Evaluation Jobs Found</td>
@@ -5633,19 +5633,19 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-16</code></td>
             <td class="col-domain">ECR Repositories Without Image Scanning</td>
-            <td class="finding-details">1 ECR repo(s) without scan-on-push: cdk-hnb659fds-container-assets-472057511786-us-east-1.</td>
+            <td class="finding-details">1 ECR repo(s) without scan-on-push: cdk-hnb659fds-container-assets-333333333333-us-east-1.</td>
             <td class="resolution-text">Enable scan-on-push for all ECR repositories containing model containers. Consider enabling Enhanced Scanning (Inspector) for CVE detection.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonECR/latest/userguide/image-scanning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-20</code></td>
             <td class="col-domain">No SageMaker Feature Groups Found</td>
@@ -5655,8 +5655,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-21</code></td>
             <td class="col-domain">No Training Data Buckets Identified</td>
@@ -5666,8 +5666,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-22</code></td>
             <td class="col-domain">Overly Permissive Knowledge Base IAM Roles</td>
@@ -5687,8 +5687,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-24</code></td>
             <td class="col-domain">ADVISORY: Knowledge Base Metadata Filtering — Manual Review Required</td>
@@ -5700,8 +5700,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="high" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-25</code></td>
             <td class="col-domain">OpenSearch Serverless Encryption Policies Present</td>
@@ -5711,8 +5711,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-26</code></td>
             <td class="col-domain">OpenSearch Serverless Collections Not VPC-Restricted</td>
@@ -5722,8 +5722,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-27</code></td>
             <td class="col-domain">No Guardrails — Contextual Grounding Not Applicable</td>
@@ -5733,8 +5733,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-27</code></td>
             <td class="col-domain">Automated Reasoning Policies — Access Check</td>
@@ -5747,8 +5747,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity low">Low</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-28</code></td>
             <td class="col-domain">No Guardrails — Denied Topics Not Applicable</td>
@@ -5758,8 +5758,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-29</code></td>
             <td class="col-domain">ADVISORY: Compliance Disclaimer — Manual Review Required</td>
@@ -5772,8 +5772,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-30</code></td>
             <td class="col-domain">ADVISORY: Compliance Dataset Coverage — Manual Review Required</td>
@@ -5786,8 +5786,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-31</code></td>
             <td class="col-domain">Knowledge Base Data Sources Past Review Threshold</td>
@@ -5801,8 +5801,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-32</code></td>
             <td class="col-domain">ADVISORY: Source Attribution — Manual Review Required</td>
@@ -5815,8 +5815,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-33</code></td>
             <td class="col-domain">KB Data Source Buckets Have Versioning</td>
@@ -5826,8 +5826,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-34</code></td>
             <td class="col-domain">Legacy Foundation Models Available in Region</td>
@@ -5840,8 +5840,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-35</code></td>
             <td class="col-domain">ADVISORY: Harmful-Content Test Coverage — Manual Review Required</td>
@@ -5854,8 +5854,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-36</code></td>
             <td class="col-domain">No Guardrails — Content Filters Not Applicable</td>
@@ -5865,8 +5865,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-37</code></td>
             <td class="col-domain">ADVISORY: User Feedback Mechanism — Manual Review Required</td>
@@ -5879,8 +5879,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-38</code></td>
             <td class="col-domain">No Guardrails — Word Filters Not Applicable</td>
@@ -5890,8 +5890,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-39</code></td>
             <td class="col-domain">No SageMaker Clarify Bias Monitoring</td>
@@ -5904,8 +5904,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-40</code></td>
             <td class="col-domain">ADVISORY: Bias Dataset Coverage — Manual Review Required</td>
@@ -5918,8 +5918,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-41</code></td>
             <td class="col-domain">No SageMaker Clarify Explainability Monitoring</td>
@@ -5932,8 +5932,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-42</code></td>
             <td class="col-domain">No SageMaker Model Cards Found</td>
@@ -5946,8 +5946,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-43</code></td>
             <td class="col-domain">No CloudWatch Logs Data Protection Policies</td>
@@ -5960,8 +5960,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-44</code></td>
             <td class="col-domain">Amazon Macie Not Enabled</td>
@@ -5974,8 +5974,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-45</code></td>
             <td class="col-domain">No Guardrails — PII Filters Not Applicable</td>
@@ -5985,8 +5985,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-46</code></td>
             <td class="col-domain">No AI/ML Data Buckets Identified</td>
@@ -5996,8 +5996,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-47</code></td>
             <td class="col-domain">No Guardrails — Grounding Threshold Not Applicable</td>
@@ -6007,8 +6007,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-48</code></td>
             <td class="col-domain">Active Knowledge Bases for RAG Present</td>
@@ -6018,8 +6018,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-49</code></td>
             <td class="col-domain">ADVISORY: Hallucination Disclaimer — Manual Review Required</td>
@@ -6031,8 +6031,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-50</code></td>
             <td class="col-domain">No Guardrails With Relevance Grounding Filters</td>
@@ -6042,8 +6042,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-51</code></td>
             <td class="col-domain">No Guardrails — Prompt Attack Filters Not Applicable</td>
@@ -6053,8 +6053,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-52</code></td>
             <td class="col-domain">Bedrock Lambda Functions on Current Runtimes</td>
@@ -6064,8 +6064,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-53</code></td>
             <td class="col-domain">No WAF Web ACLs — Injection Rules Not Applicable</td>
@@ -6075,8 +6075,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-54</code></td>
             <td class="col-domain">ADVISORY: Penetration Testing — Manual Review Required</td>
@@ -6090,8 +6090,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-55</code></td>
             <td class="col-domain">No Output Validation Functions Found</td>
@@ -6104,8 +6104,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-56</code></td>
             <td class="col-domain">No WAF ACLs — XSS Prevention Not Applicable</td>
@@ -6115,8 +6115,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-57</code></td>
             <td class="col-domain">ADVISORY: Output Encoding — Manual Review Required</td>
@@ -6129,8 +6129,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-58</code></td>
             <td class="col-domain">ADVISORY: Output Schema Validation — Manual Review Required</td>
@@ -6143,8 +6143,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-59</code></td>
             <td class="col-domain">No Guardrails — Topic Allowlist Not Applicable</td>
@@ -6154,8 +6154,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-60</code></td>
             <td class="col-domain">ADVISORY: Contextual Grounding for Off-Topic Prevention</td>
@@ -6167,12 +6167,12 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-61</code></td>
             <td class="col-domain">COULD NOT ASSESS: Knowledge Base Sync Schedule Check</td>
-            <td class="finding-details">This check could not be completed (error: An error occurred (AccessDeniedException) when calling the ListSchedules operation: User: arn:aws:sts::472057511786:assumed-role/aiml-security-mgmt-FinServSecurityAssessmentFunctio-pwj9by1swQWa/aiml-security-aiml-security-mgmt-FinServAssessment is not authorized to perform: scheduler:ListSchedules on resource: arn:aws:scheduler:us-east-1:472057511786:schedule/*/* because no identity-based policy allows the scheduler:ListSchedules action). The most common cause is a missing IAM permission for the assessment role; it may also indicate an unsupported region or an outdated botocore. This control was NOT assessed — verify the role's permissions and re-run, and assess this control manually until resolved.</td>
+            <td class="finding-details">This check could not be completed (error: An error occurred (AccessDeniedException) when calling the ListSchedules operation: User: arn:aws:sts::333333333333:assumed-role/aiml-security-mgmt-FinServSecurityAssessmentFunctio-pwj9by1swQWa/aiml-security-aiml-security-mgmt-FinServAssessment is not authorized to perform: scheduler:ListSchedules on resource: arn:aws:scheduler:us-east-1:333333333333:schedule/*/* because no identity-based policy allows the scheduler:ListSchedules action). The most common cause is a missing IAM permission for the assessment role; it may also indicate an unsupported region or an outdated botocore. This control was NOT assessed — verify the role's permissions and re-run, and assess this control manually until resolved.</td>
             <td class="resolution-text">1. Confirm the assessment role grants the actions this check requires (see the documented IAM permission set in the README).
 2. Confirm the service/feature is supported in the assessed region.
 3. Ensure botocore meets the version floor in requirements.txt.
@@ -6181,8 +6181,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity low">Low</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-62</code></td>
             <td class="col-domain">ADVISORY: Data Currency Disclaimer — Manual Review Required</td>
@@ -6194,8 +6194,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-63</code></td>
             <td class="col-domain">Foundation Model Lifecycle Management</td>
@@ -6205,8 +6205,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-65</code></td>
             <td class="col-domain">KB Data Source Buckets Missing S3 Event Notifications</td>
@@ -6219,8 +6219,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-66</code></td>
             <td class="col-domain">No AgentCore Runtimes Found</td>
@@ -6230,8 +6230,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-67</code></td>
             <td class="col-domain">Agent Action-Group Lambdas May Lack Transaction Thresholds</td>
@@ -6249,8 +6249,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-68</code></td>
             <td class="col-domain">API Gateway Request Body Size Limits — Not Applicable</td>
@@ -6260,8 +6260,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-69</code></td>
             <td class="col-domain">Prompt Input Validation Functions Present</td>
@@ -6271,8 +6271,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>FS-00</code></td>
             <td class="col-domain">FinServ Regional Scope Not Applicable</td>
@@ -6282,8 +6282,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>FS-00</code></td>
             <td class="col-domain">FinServ Regional Scope Not Applicable</td>
@@ -6293,8 +6293,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -6304,8 +6304,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -6315,8 +6315,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -6326,8 +6326,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -6337,8 +6337,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -6352,8 +6352,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -6363,19 +6363,19 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::472057511786:assumed-role/aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b/aiml-security-aiml-security-mgmt-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:472057511786:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::333333333333:assumed-role/aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b/aiml-security-aiml-security-mgmt-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:333333333333:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -6385,8 +6385,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -6396,8 +6396,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -6407,8 +6407,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -6418,8 +6418,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -6429,8 +6429,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -6440,8 +6440,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -6451,8 +6451,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -6462,8 +6462,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -6477,8 +6477,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -6488,19 +6488,19 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::472057511786:assumed-role/aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b/aiml-security-aiml-security-mgmt-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:472057511786:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::333333333333:assumed-role/aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b/aiml-security-aiml-security-mgmt-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:333333333333:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -6510,8 +6510,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -6521,8 +6521,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -6532,8 +6532,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -6543,8 +6543,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>AC-02</code></td>
             <td class="col-domain">AgentCore IAM Full Access Check</td>
@@ -6554,8 +6554,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>AC-03</code></td>
             <td class="col-domain">AgentCore Stale Access</td>
@@ -6565,8 +6565,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>AC-03</code></td>
             <td class="col-domain">AgentCore Unused Permissions</td>
@@ -6576,8 +6576,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>AC-09</code></td>
             <td class="col-domain">AgentCore Service-Linked Role Missing</td>
@@ -6587,8 +6587,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -6598,8 +6598,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -6609,8 +6609,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -6620,8 +6620,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -6631,8 +6631,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -6642,8 +6642,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -6653,8 +6653,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -6664,8 +6664,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -6675,8 +6675,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -6686,8 +6686,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -6697,8 +6697,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -6708,8 +6708,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -6719,8 +6719,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -6730,8 +6730,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -6741,8 +6741,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -6752,8 +6752,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -6763,8 +6763,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -6774,8 +6774,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -6785,8 +6785,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -6796,8 +6796,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -6807,8 +6807,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -6818,8 +6818,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -6829,8 +6829,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -6840,8 +6840,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -6851,8 +6851,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -6862,8 +6862,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -6873,8 +6873,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -6884,8 +6884,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -6895,8 +6895,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -6906,8 +6906,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -6917,8 +6917,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -6928,8 +6928,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -6939,8 +6939,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -6950,8 +6950,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -6961,8 +6961,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -6972,8 +6972,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -6983,8 +6983,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -6994,8 +6994,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -7005,8 +7005,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -7016,8 +7016,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -7027,8 +7027,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -7038,8 +7038,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -7049,8 +7049,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -7060,8 +7060,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -7071,8 +7071,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -7082,8 +7082,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -7093,8 +7093,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -7104,8 +7104,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker IAM Permissions Check</td>
@@ -7115,8 +7115,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -7126,8 +7126,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -7137,8 +7137,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -7148,8 +7148,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -7159,8 +7159,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -7170,8 +7170,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -7181,8 +7181,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -7192,8 +7192,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -7203,8 +7203,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -7214,8 +7214,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -7225,8 +7225,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -7236,8 +7236,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -7247,8 +7247,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -7258,8 +7258,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -7269,8 +7269,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -7280,8 +7280,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -7291,8 +7291,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -7302,8 +7302,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -7313,8 +7313,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -7324,8 +7324,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -7335,8 +7335,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -7346,8 +7346,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -7357,8 +7357,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -7368,8 +7368,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -7379,8 +7379,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -7390,8 +7390,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -7401,8 +7401,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -7412,8 +7412,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-00</code></td>
             <td class="col-domain">FinServ Regional Scope Not Applicable</td>
@@ -7423,8 +7423,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>FS-00</code></td>
             <td class="col-domain">FinServ Regional Scope Not Applicable</td>
@@ -7434,8 +7434,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>FS-00</code></td>
             <td class="col-domain">FinServ Regional Scope Not Applicable</td>
@@ -7445,8 +7445,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -7456,8 +7456,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -7467,8 +7467,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -7478,8 +7478,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -7489,8 +7489,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -7504,8 +7504,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -7515,19 +7515,19 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::230266523520:assumed-role/aiml-security-23026652352-BedrockSecurityAssessment-UZzmVN1xrMwf/aiml-security-aiml-security-230266523520-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:230266523520:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::222222222222:assumed-role/aiml-security-23026652352-BedrockSecurityAssessment-UZzmVN1xrMwf/aiml-security-aiml-security-222222222222-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:222222222222:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -7537,8 +7537,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -7548,8 +7548,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -7559,8 +7559,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -7570,8 +7570,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -7581,8 +7581,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -7592,8 +7592,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -7603,8 +7603,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -7614,8 +7614,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -7625,8 +7625,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -7636,8 +7636,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -7647,8 +7647,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -7658,8 +7658,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -7669,8 +7669,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -7680,8 +7680,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -7691,8 +7691,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -7702,8 +7702,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -7713,8 +7713,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -7724,8 +7724,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -7735,8 +7735,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -7746,8 +7746,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -7757,8 +7757,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -7768,8 +7768,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -7779,8 +7779,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -7790,8 +7790,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -7801,8 +7801,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -7812,8 +7812,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -7823,8 +7823,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -7834,8 +7834,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -7845,8 +7845,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -7856,8 +7856,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -7867,8 +7867,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-01</code></td>
             <td class="col-domain">AmazonBedrockFullAccess role check</td>
@@ -7879,8 +7879,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -7890,8 +7890,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -7901,8 +7901,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -7912,8 +7912,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -7923,8 +7923,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -7934,8 +7934,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -7945,8 +7945,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -7956,8 +7956,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -7967,8 +7967,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -7978,8 +7978,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -7989,8 +7989,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8000,8 +8000,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8011,8 +8011,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -8022,8 +8022,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -8033,8 +8033,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -8044,8 +8044,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -8055,8 +8055,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -8070,8 +8070,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -8081,19 +8081,19 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::230266523520:assumed-role/aiml-security-23026652352-BedrockSecurityAssessment-UZzmVN1xrMwf/aiml-security-aiml-security-230266523520-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:230266523520:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::222222222222:assumed-role/aiml-security-23026652352-BedrockSecurityAssessment-UZzmVN1xrMwf/aiml-security-aiml-security-222222222222-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:222222222222:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -8103,8 +8103,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -8114,8 +8114,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -8125,8 +8125,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -8136,8 +8136,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>AC-02</code></td>
             <td class="col-domain">AgentCore IAM Full Access Check</td>
@@ -8147,8 +8147,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>AC-03</code></td>
             <td class="col-domain">AgentCore Stale Access</td>
@@ -8158,8 +8158,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>AC-03</code></td>
             <td class="col-domain">AgentCore Unused Permissions</td>
@@ -8169,8 +8169,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>AC-09</code></td>
             <td class="col-domain">AgentCore Service-Linked Role Missing</td>
@@ -8180,8 +8180,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -8191,8 +8191,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -8202,8 +8202,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -8213,8 +8213,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -8224,8 +8224,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -8235,8 +8235,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -8246,8 +8246,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -8257,8 +8257,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -8268,8 +8268,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -8279,8 +8279,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -8290,8 +8290,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -8301,8 +8301,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -8312,8 +8312,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -8323,8 +8323,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -8334,8 +8334,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -8345,8 +8345,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -8356,8 +8356,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -8367,8 +8367,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -8378,8 +8378,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -8389,8 +8389,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -8400,8 +8400,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -8411,8 +8411,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -8422,8 +8422,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -8433,8 +8433,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -8444,8 +8444,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -8459,8 +8459,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -8470,19 +8470,19 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::230266523520:assumed-role/aiml-security-23026652352-BedrockSecurityAssessment-UZzmVN1xrMwf/aiml-security-aiml-security-230266523520-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:230266523520:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::222222222222:assumed-role/aiml-security-23026652352-BedrockSecurityAssessment-UZzmVN1xrMwf/aiml-security-aiml-security-222222222222-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:222222222222:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -8492,8 +8492,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -8503,8 +8503,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -8514,8 +8514,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -8536,7 +8536,7 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
                     <div class="metric"><div class="metric-label">Overall</div><div class="metric-value">21.3%</div><div class="metric-sub">57 of 268 actionable checks</div><div style="margin-top: 8px; height: 4px; background: var(--surface-2); border-radius: 2px; overflow: hidden;"><div style="width: 21.3%; height: 100%; background: var(--text-3);"></div></div></div>
                 </div>
                 <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-bottom: 12px; text-transform: uppercase; letter-spacing: 0.5px;">Risk by Account</h4>
-                <div class="metrics" style="margin-bottom: 32px;"><div class="metric danger" style="border-left: 3px solid var(--danger);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">193047247167</div><div class="metric-value">146</div><div class="metric-sub"><span style="color: var(--danger);">42 High</span> · <span style="color: var(--warning);">101 Med</span> · <span style="color: var(--accent);">3 Low</span></div></div><div class="metric warning" style="border-left: 3px solid var(--warning);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">230266523520</div><div class="metric-value">14</div><div class="metric-sub"><span style="color: var(--danger);">0 High</span> · <span style="color: var(--warning);">14 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div><div class="metric danger" style="border-left: 3px solid var(--danger);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">472057511786</div><div class="metric-value">45</div><div class="metric-sub"><span style="color: var(--danger);">10 High</span> · <span style="color: var(--warning);">34 Med</span> · <span style="color: var(--accent);">1 Low</span></div></div></div>
+                <div class="metrics" style="margin-bottom: 32px;"><div class="metric danger" style="border-left: 3px solid var(--danger);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">111111111111</div><div class="metric-value">146</div><div class="metric-sub"><span style="color: var(--danger);">42 High</span> · <span style="color: var(--warning);">101 Med</span> · <span style="color: var(--accent);">3 Low</span></div></div><div class="metric warning" style="border-left: 3px solid var(--warning);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">222222222222</div><div class="metric-value">14</div><div class="metric-sub"><span style="color: var(--danger);">0 High</span> · <span style="color: var(--warning);">14 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div><div class="metric danger" style="border-left: 3px solid var(--danger);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">333333333333</div><div class="metric-value">45</div><div class="metric-sub"><span style="color: var(--danger);">10 High</span> · <span style="color: var(--warning);">34 Med</span> · <span style="color: var(--accent);">1 Low</span></div></div></div>
                 <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-bottom: 12px; text-transform: uppercase; letter-spacing: 0.5px;">Risk by Region</h4>
                 <div class="metrics" style="margin-bottom: 32px;"><div class="metric " style="border-left: 3px solid var(--success);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">ap-southeast-2</div><div class="metric-value">0</div><div class="metric-sub"><span style="color: var(--danger);">0 High</span> · <span style="color: var(--warning);">0 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div><div class="metric " style="border-left: 3px solid var(--success);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">eu-west-1</div><div class="metric-value">0</div><div class="metric-sub"><span style="color: var(--danger);">0 High</span> · <span style="color: var(--warning);">0 Med</span> · <span style="color: var(--accent);">0 Low</span></div></div><div class="metric danger" style="border-left: 3px solid var(--danger);"><div class="metric-label" style="font-family: 'JetBrains Mono', monospace; font-size: 12px;">us-east-1</div><div class="metric-value">80</div><div class="metric-sub"><span style="color: var(--danger);">28 High</span> · <span style="color: var(--warning);">48 Med</span> · <span style="color: var(--accent);">4 Low</span></div></div></div>
                 <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-bottom: 12px; text-transform: uppercase; letter-spacing: 0.5px;">Findings by Service</h4>
@@ -8551,14 +8551,14 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
                 <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" transform="translate(12,12)" d="M52,26.999C50.897,26.999 50,26.103 50,25 50,23.897 50.897,23 52,23 53.103,23 54,23.897 54,25 54,26.103 53.103,26.999 52,26.999L52,26.999ZM20.113,53.908L16.865,52.014 23.53,47.848 22.47,46.152 14.913,50.875 9,47.426 9,38.535 14.555,34.832 13.445,33.168 7.959,36.825 2,33.42 2,28.58 8.496,24.868 7.504,23.132 2,26.277 2,22.58 8,19.152 14,22.58 14,26.434 9.485,29.143 10.515,30.857 15,28.166 19.485,30.857 20.515,29.143 16,26.434 16,22.535 21.555,18.832C21.833,18.646 22,18.334 22,18L22,11 20,11 20,17.465 14.959,20.825 9,17.42 9,8.574 14,5.658 14,14 16,14 16,4.491 20.113,2.092 28,4.721 28,33.434 13.485,42.143 14.515,43.857 28,35.766 28,51.279 20.113,53.908ZM50,38C50,39.103 49.103,40 48,40 46.897,40 46,39.103 46,38 46,36.897 46.897,36 48,36 49.103,36 50,36.897 50,38L50,38ZM40,48C40,49.103 39.103,50 38,50 36.897,50 36,49.103 36,48 36,46.897 36.897,46 38,46 39.103,46 40,46.897 40,48L40,48ZM39,8C39,6.897 39.897,6 41,6 42.103,6 43,6.897 43,8 43,9.103 42.103,10 41,10 39.897,10 39,9.103 39,8L39,8ZM52,21C50.141,21 48.589,22.28 48.142,24L30,24 30,19 41,19C41.553,19 42,18.552 42,18L42,11.858C43.72,11.411 45,9.858 45,8 45,5.794 43.206,4 41,4 38.794,4 37,5.794 37,8 37,9.858 38.28,11.411 40,11.858L40,17 30,17 30,4C30,3.569 29.725,3.188 29.316,3.051L20.316,0.051C20.042,-0.039 19.744,-0.009 19.496,0.136L7.496,7.136C7.188,7.315 7,7.645 7,8L7,17.42 0.504,21.132C0.192,21.31 0,21.641 0,22L0,34C0,34.359 0.192,34.69 0.504,34.868L7,38.58 7,48C7,48.355 7.188,48.685 7.496,48.864L19.496,55.864C19.65,55.954 19.825,56 20,56 20.106,56 20.213,55.983 20.316,55.949L29.316,52.949C29.725,52.812 30,52.431 30,52L30,40 37,40 37,44.142C35.28,44.589 34,46.142 34,48 34,50.206 35.794,52 38,52 40.206,52 42,50.206 42,48 42,46.142 40.72,44.589 39,44.142L39,39C39,38.448 38.553,38 38,38L30,38 30,33 42.5,33 44.638,35.85C44.239,36.472 44,37.207 44,38 44,40.206 45.794,42 48,42 50.206,42 52,40.206 52,38 52,35.794 50.206,34 48,34 47.316,34 46.682,34.188 46.119,34.492L43.8,31.4C43.611,31.148 43.314,31 43,31L30,31 30,26 48.142,26C48.589,27.72 50.141,29 52,29 54.206,29 56,27.206 56,25 56,22.794 54.206,21 52,21L52,21Z"/></svg></span>Amazon Bedrock Findings</div>
                 <div class="filter-bar">
                     <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="bedrockSearchInput"></div>
-                    <div class="filter-group"><label>Account</label><select id="bedrockAccountFilter"><option value="">All Accounts</option><option value="193047247167">193047247167</option><option value="230266523520">230266523520</option><option value="472057511786">472057511786</option></select></div>
+                    <div class="filter-group"><label>Account</label><select id="bedrockAccountFilter"><option value="">All Accounts</option><option value="111111111111">111111111111</option><option value="222222222222">222222222222</option><option value="333333333333">333333333333</option></select></div>
                     <div class="filter-group"><label for="bedrockRegionFilter">Region</label><select id="bedrockRegionFilter"><option value="">All Regions</option><option value="ap-southeast-2">ap-southeast-2</option><option value="eu-west-1">eu-west-1</option><option value="us-east-1">us-east-1</option><option value="Global">Global</option></select></div>
                     <div class="filter-group"><label>Severity</label><select id="bedrockSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
                     <div class="filter-group"><label>Status</label><select id="bedrockStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
                     <button class="btn btn-reset" id="bedrockResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
                 </div>
-                <div class="card"><div class="table-wrap"><table id="bedrockTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+                <div class="card"><div class="table-wrap"><table id="bedrockTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-01</code></td>
             <td class="col-domain">AmazonBedrockFullAccess role check</td>
@@ -8569,8 +8569,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-01</code></td>
             <td class="col-domain">AmazonBedrockFullAccess role check</td>
@@ -8581,8 +8581,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-01</code></td>
             <td class="col-domain">AmazonBedrockFullAccess role check</td>
@@ -8593,8 +8593,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -8604,8 +8604,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -8615,8 +8615,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -8626,8 +8626,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -8637,8 +8637,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -8648,8 +8648,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -8659,8 +8659,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -8670,8 +8670,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -8681,8 +8681,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -8692,8 +8692,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -8703,8 +8703,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -8714,30 +8714,30 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
-            <td class="finding-details">Role '193047247167-us-east-1-kb-bedrock-service-role' last accessed Bedrock on 2025-12-22</td>
+            <td class="finding-details">Role '111111111111-us-east-1-kb-bedrock-service-role' last accessed Bedrock on 2025-12-22</td>
             <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
-            <td class="finding-details">Role '193047247167-us-east-1-kb-setup-function-role' last accessed Bedrock on 2025-12-22</td>
+            <td class="finding-details">Role '111111111111-us-east-1-kb-setup-function-role' last accessed Bedrock on 2025-12-22</td>
             <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8747,8 +8747,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8758,8 +8758,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8769,8 +8769,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8780,8 +8780,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8791,8 +8791,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8802,8 +8802,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8813,8 +8813,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8824,8 +8824,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8835,8 +8835,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8846,8 +8846,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8857,8 +8857,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8868,8 +8868,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8879,8 +8879,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8890,8 +8890,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8901,8 +8901,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8912,8 +8912,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8923,8 +8923,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8934,8 +8934,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8945,8 +8945,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8956,8 +8956,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8967,8 +8967,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8978,8 +8978,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -8989,8 +8989,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9000,30 +9000,30 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
-            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-193047247167-us-east-1' last accessed Bedrock on never</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-111111111111-us-east-1' last accessed Bedrock on never</td>
             <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
-            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-193047247167-us-west-2' last accessed Bedrock on never</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-111111111111-us-west-2' last accessed Bedrock on never</td>
             <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9033,8 +9033,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9044,8 +9044,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9055,8 +9055,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9066,8 +9066,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9077,8 +9077,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9088,8 +9088,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9099,8 +9099,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9110,8 +9110,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9121,8 +9121,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9132,8 +9132,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9143,8 +9143,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9154,8 +9154,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9165,8 +9165,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9176,8 +9176,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9187,8 +9187,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9198,8 +9198,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9209,8 +9209,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9220,8 +9220,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9231,8 +9231,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9242,8 +9242,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9253,8 +9253,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9264,8 +9264,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9275,8 +9275,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9286,8 +9286,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9297,8 +9297,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9308,8 +9308,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9319,8 +9319,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9330,8 +9330,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9341,8 +9341,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9352,8 +9352,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9363,8 +9363,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9374,8 +9374,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9385,8 +9385,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9396,8 +9396,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -9407,8 +9407,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -9418,8 +9418,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -9429,8 +9429,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -9440,8 +9440,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -9455,8 +9455,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -9466,19 +9466,19 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::193047247167:assumed-role/aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX/aiml-security-aiml-security-193047247167-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:193047247167:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::111111111111:assumed-role/aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX/aiml-security-aiml-security-111111111111-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:111111111111:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -9488,8 +9488,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -9499,8 +9499,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -9510,8 +9510,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -9521,8 +9521,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -9532,8 +9532,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -9543,8 +9543,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -9554,8 +9554,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -9565,8 +9565,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -9580,8 +9580,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -9591,19 +9591,19 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::193047247167:assumed-role/aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX/aiml-security-aiml-security-193047247167-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:193047247167:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::111111111111:assumed-role/aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX/aiml-security-aiml-security-111111111111-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:111111111111:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -9613,8 +9613,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -9624,8 +9624,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -9635,8 +9635,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -9646,8 +9646,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -9657,8 +9657,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -9668,8 +9668,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -9679,8 +9679,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -9690,8 +9690,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -9705,8 +9705,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -9716,19 +9716,19 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::193047247167:assumed-role/aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX/aiml-security-aiml-security-193047247167-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:193047247167:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::111111111111:assumed-role/aiml-security-19304724716-BedrockSecurityAssessment-vv6H0eGD9ESX/aiml-security-aiml-security-111111111111-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:111111111111:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -9738,8 +9738,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -9749,8 +9749,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -9760,8 +9760,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -9771,8 +9771,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-01</code></td>
             <td class="col-domain">AmazonBedrockFullAccess role check</td>
@@ -9783,8 +9783,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -9794,8 +9794,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9805,8 +9805,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9816,8 +9816,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9827,8 +9827,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9838,8 +9838,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9849,8 +9849,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9860,41 +9860,41 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
-            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-472057511786-us-east-1' last accessed Bedrock on never</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-333333333333-us-east-1' last accessed Bedrock on never</td>
             <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
-            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-472057511786-us-east-2' last accessed Bedrock on never</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-333333333333-us-east-2' last accessed Bedrock on never</td>
             <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
-            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-472057511786-us-west-2' last accessed Bedrock on never</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-333333333333-us-west-2' last accessed Bedrock on never</td>
             <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9904,8 +9904,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9915,8 +9915,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9926,8 +9926,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9937,8 +9937,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9948,8 +9948,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9959,8 +9959,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9970,8 +9970,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9981,8 +9981,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -9992,8 +9992,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -10003,8 +10003,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -10014,8 +10014,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -10025,8 +10025,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -10036,8 +10036,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -10047,8 +10047,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -10062,8 +10062,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -10073,19 +10073,19 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::472057511786:assumed-role/aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b/aiml-security-aiml-security-mgmt-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:472057511786:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::333333333333:assumed-role/aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b/aiml-security-aiml-security-mgmt-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:333333333333:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -10095,8 +10095,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -10106,8 +10106,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -10117,8 +10117,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -10128,8 +10128,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -10139,8 +10139,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -10150,8 +10150,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -10161,8 +10161,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -10172,8 +10172,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -10187,8 +10187,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -10198,19 +10198,19 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::472057511786:assumed-role/aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b/aiml-security-aiml-security-mgmt-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:472057511786:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::333333333333:assumed-role/aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b/aiml-security-aiml-security-mgmt-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:333333333333:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -10220,8 +10220,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -10231,8 +10231,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -10242,8 +10242,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -10253,8 +10253,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -10264,8 +10264,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -10275,8 +10275,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -10286,8 +10286,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -10297,8 +10297,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -10312,8 +10312,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -10323,19 +10323,19 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::472057511786:assumed-role/aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b/aiml-security-aiml-security-mgmt-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:472057511786:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::333333333333:assumed-role/aiml-security-mgmt-BedrockSecurityAssessmentFunctio-3SFVOekaDS6b/aiml-security-aiml-security-mgmt-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:333333333333:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -10345,8 +10345,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -10356,8 +10356,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -10367,8 +10367,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -10378,8 +10378,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -10389,8 +10389,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -10400,8 +10400,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -10411,8 +10411,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -10422,8 +10422,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -10437,8 +10437,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -10448,19 +10448,19 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::230266523520:assumed-role/aiml-security-23026652352-BedrockSecurityAssessment-UZzmVN1xrMwf/aiml-security-aiml-security-230266523520-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:230266523520:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::222222222222:assumed-role/aiml-security-23026652352-BedrockSecurityAssessment-UZzmVN1xrMwf/aiml-security-aiml-security-222222222222-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:222222222222:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -10470,8 +10470,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -10481,8 +10481,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -10492,8 +10492,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -10503,8 +10503,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-01</code></td>
             <td class="col-domain">AmazonBedrockFullAccess role check</td>
@@ -10515,8 +10515,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="passed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -10526,8 +10526,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -10537,8 +10537,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -10548,8 +10548,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -10559,8 +10559,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -10570,8 +10570,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -10581,8 +10581,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -10592,8 +10592,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -10603,8 +10603,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -10614,8 +10614,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -10625,8 +10625,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -10636,8 +10636,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -10647,8 +10647,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -10658,8 +10658,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -10669,8 +10669,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -10680,8 +10680,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -10691,8 +10691,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -10706,8 +10706,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -10717,19 +10717,19 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::230266523520:assumed-role/aiml-security-23026652352-BedrockSecurityAssessment-UZzmVN1xrMwf/aiml-security-aiml-security-230266523520-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:230266523520:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::222222222222:assumed-role/aiml-security-23026652352-BedrockSecurityAssessment-UZzmVN1xrMwf/aiml-security-aiml-security-222222222222-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:222222222222:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -10739,8 +10739,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -10750,8 +10750,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -10761,8 +10761,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -10772,8 +10772,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -10783,8 +10783,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -10794,8 +10794,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -10805,8 +10805,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -10816,8 +10816,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -10831,8 +10831,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -10842,19 +10842,19 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::230266523520:assumed-role/aiml-security-23026652352-BedrockSecurityAssessment-UZzmVN1xrMwf/aiml-security-aiml-security-230266523520-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:230266523520:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::222222222222:assumed-role/aiml-security-23026652352-BedrockSecurityAssessment-UZzmVN1xrMwf/aiml-security-aiml-security-222222222222-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:222222222222:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -10864,8 +10864,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -10875,8 +10875,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -10886,8 +10886,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -10902,14 +10902,14 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
                 <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M54.034,26.034C54.034,26.594 53.578,27.05 53.017,27.05 52.458,27.05 52.002,26.594 52.002,26.034 52.002,25.474 52.458,25.018 53.017,25.018 53.578,25.018 54.034,25.474 54.034,26.034L54.034,26.034ZM48.002,36C48.002,35.449 48.45,35 49.002,35 49.554,35 50.002,35.449 50.002,36 50.002,36.551 49.554,37 49.002,37 48.45,37 48.002,36.551 48.002,36L48.002,36ZM48.002,55C48.002,54.449 48.45,54 49.002,54 49.554,54 50.002,54.449 50.002,55 50.002,55.551 49.554,56 49.002,56 48.45,56 48.002,55.551 48.002,55L48.002,55ZM58.002,42C58.002,42.551 57.554,43 57.002,43 56.45,43 56.002,42.551 56.002,42 56.002,41.449 56.45,41 57.002,41 57.554,41 58.002,41.449 58.002,42L58.002,42ZM65,45.272L59.963,42.382C59.979,42.256 60.002,42.131 60.002,42 60.002,40.346 58.656,39 57.002,39 55.347,39 54.002,40.346 54.002,42 54.002,43.654 55.347,45 57.002,45 57.801,45 58.523,44.681 59.061,44.171L63.886,46.939 59.555,49.105C59.216,49.275 59.002,49.621 59.002,50L59.002,58.441 46.983,65.837 41.003,62.42 41.003,56 46.186,56C46.6,57.161 47.7,58 49.002,58 50.656,58 52.002,56.654 52.002,55 52.002,53.345 50.656,52 49.002,52 47.7,52 46.6,52.838 46.186,54L41.003,54 41.003,40C41.003,39.649 40.818,39.323 40.517,39.142L35.516,36.142 34.487,37.857 39.003,40.566 39.003,43.507 33.002,48.123 33.002,44C33.002,43.696 32.864,43.408 32.627,43.219L28.002,39.519 28.002,34.535 33.556,30.832C33.835,30.646 34.002,30.334 34.002,30L34.002,24 32.002,24 32.002,29.465 27.013,32.79 22.002,29.464 22.002,21.575 27.002,18.659 27.002,27 29.002,27 29.002,17.492 33.005,15.157 39.001,18.616 39.002,31C39.002,31.359 39.194,31.69 39.506,31.868L46.042,35.603C46.024,35.734 46.002,35.864 46.002,36 46.002,37.654 47.347,39 49.002,39 50.656,39 52.002,37.654 52.002,36 52.002,34.346 50.656,33 49.002,33 48.208,33 47.49,33.315 46.953,33.82L41.002,30.419 41.001,18.618 46.964,15.177 58.002,22.536 58.002,25 55.851,25C55.429,23.845 54.318,23.018 53.017,23.018 51.354,23.018 50.002,24.371 50.002,26.034 50.002,27.697 51.354,29.05 53.017,29.05 54.343,29.05 55.471,28.191 55.875,27L58.002,27 58.002,30C58.002,30.36 58.194,30.691 58.506,30.869L65,34.58 65,45.272ZM33.02,65.837L29.867,63.897 35.583,59.814 34.421,58.186 28.018,62.759 21.002,58.441 21.002,50.566 25.516,47.857 24.487,46.142 19.958,48.86 15.002,46.383 15.001,40.617 20.449,37.894 19.555,36.105 15.001,38.381 15.002,34.58 20.963,31.175 26.002,34.519 26.002,39.48 20.449,43.167 21.555,44.833 26.958,41.245 31.002,44.48 31.002,49.662 26.392,53.207 27.611,54.792 39.003,46.03 39.003,62.419 33.02,65.837ZM66.496,33.132L60.002,29.42 60.002,22C60.002,21.666 59.835,21.354 59.556,21.169L47.556,13.169C47.24,12.959 46.832,12.945 46.502,13.135L40.004,16.885 33.502,13.135C33.19,12.955 32.807,12.955 32.498,13.137L20.498,20.137C20.19,20.316 20.002,20.645 20.002,21L20.002,29.42 13.506,33.132C13.194,33.31 13.002,33.641 13.002,34L13.002,34.417C13.001,34.438 13,34.458 13,34.479L13,45.363C13,45.383 13.001,45.403 13.002,45.422L13.002,47C13.002,47.379 13.216,47.725 13.555,47.894L19.002,50.618 19.002,59C19.002,59.347 19.181,59.669 19.477,59.851L32.477,67.851C32.638,67.95 32.82,68 33.002,68 33.173,68 33.344,67.956 33.498,67.868L40.003,64.152 46.506,67.868C46.821,68.049 47.213,68.042 47.526,67.851L60.526,59.851C60.822,59.669 61.002,59.347 61.002,59L61.002,50.618 66.447,47.894C66.786,47.725 67,47.379 67,47L67,34C67,33.641 66.807,33.31 66.496,33.132L66.496,33.132Z"/></svg></span>Amazon SageMaker Findings</div>
                 <div class="filter-bar">
                     <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="sagemakerSearchInput"></div>
-                    <div class="filter-group"><label>Account</label><select id="sagemakerAccountFilter"><option value="">All Accounts</option><option value="193047247167">193047247167</option><option value="230266523520">230266523520</option><option value="472057511786">472057511786</option></select></div>
+                    <div class="filter-group"><label>Account</label><select id="sagemakerAccountFilter"><option value="">All Accounts</option><option value="111111111111">111111111111</option><option value="222222222222">222222222222</option><option value="333333333333">333333333333</option></select></div>
                     <div class="filter-group"><label for="sagemakerRegionFilter">Region</label><select id="sagemakerRegionFilter"><option value="">All Regions</option><option value="ap-southeast-2">ap-southeast-2</option><option value="eu-west-1">eu-west-1</option><option value="us-east-1">us-east-1</option><option value="Global">Global</option></select></div>
                     <div class="filter-group"><label>Severity</label><select id="sagemakerSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
                     <div class="filter-group"><label>Status</label><select id="sagemakerStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
                     <button class="btn btn-reset" id="sagemakerResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
                 </div>
-                <div class="card"><div class="table-wrap"><table id="sagemakerTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+                <div class="card"><div class="table-wrap"><table id="sagemakerTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -10919,8 +10919,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -10930,8 +10930,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -10941,8 +10941,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -10952,8 +10952,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -10963,8 +10963,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -10974,8 +10974,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -10985,8 +10985,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -10996,8 +10996,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -11007,8 +11007,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -11018,8 +11018,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -11029,8 +11029,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -11040,8 +11040,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -11051,8 +11051,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -11062,8 +11062,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -11073,8 +11073,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -11084,8 +11084,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -11095,8 +11095,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -11106,8 +11106,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -11117,8 +11117,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -11128,8 +11128,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -11139,8 +11139,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -11150,8 +11150,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -11161,8 +11161,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -11172,8 +11172,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -11183,8 +11183,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -11194,8 +11194,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -11205,8 +11205,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker Full Access Policy Used</td>
@@ -11216,8 +11216,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker Full Access Policy Used</td>
@@ -11227,8 +11227,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker Full Access Policy Used</td>
@@ -11238,8 +11238,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker Full Access Policy Used</td>
@@ -11249,8 +11249,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker Full Access Policy Used</td>
@@ -11260,8 +11260,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker Full Access Policy Used</td>
@@ -11271,8 +11271,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker Full Access Policy Used</td>
@@ -11282,8 +11282,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">Non-VPC Only Network Access</td>
@@ -11293,8 +11293,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SSO Not Properly Configured</td>
@@ -11304,8 +11304,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Missing Encryption Configuration</td>
@@ -11315,8 +11315,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -11326,8 +11326,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -11337,8 +11337,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -11348,8 +11348,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -11359,8 +11359,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -11370,8 +11370,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -11381,8 +11381,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -11392,8 +11392,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -11403,8 +11403,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -11414,8 +11414,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -11425,8 +11425,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -11436,8 +11436,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -11447,8 +11447,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -11458,8 +11458,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -11469,8 +11469,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -11480,8 +11480,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -11491,8 +11491,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -11502,8 +11502,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -11513,8 +11513,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -11524,8 +11524,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -11535,8 +11535,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -11546,8 +11546,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -11557,8 +11557,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -11568,8 +11568,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -11579,8 +11579,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -11590,8 +11590,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -11601,8 +11601,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -11612,8 +11612,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -11623,8 +11623,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -11634,8 +11634,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -11645,8 +11645,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -11656,8 +11656,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -11667,8 +11667,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -11678,8 +11678,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -11689,8 +11689,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -11700,8 +11700,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -11711,8 +11711,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -11722,8 +11722,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -11733,8 +11733,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -11744,8 +11744,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -11755,8 +11755,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -11766,8 +11766,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -11777,8 +11777,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -11788,8 +11788,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -11799,8 +11799,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -11810,8 +11810,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -11821,8 +11821,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -11832,8 +11832,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -11843,8 +11843,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -11854,8 +11854,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -11865,8 +11865,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -11876,8 +11876,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -11887,8 +11887,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -11898,8 +11898,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -11909,8 +11909,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -11920,8 +11920,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -11931,8 +11931,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -11942,8 +11942,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -11953,8 +11953,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -11964,8 +11964,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -11975,8 +11975,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -11986,8 +11986,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -11997,8 +11997,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -12008,8 +12008,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -12019,8 +12019,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -12030,8 +12030,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -12041,8 +12041,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -12052,8 +12052,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -12063,8 +12063,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -12074,8 +12074,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -12085,8 +12085,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -12096,8 +12096,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -12107,8 +12107,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -12118,8 +12118,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -12129,8 +12129,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -12140,8 +12140,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -12151,8 +12151,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -12162,8 +12162,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -12173,8 +12173,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker IAM Permissions Check</td>
@@ -12184,8 +12184,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -12195,8 +12195,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -12206,8 +12206,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -12217,8 +12217,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -12228,8 +12228,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -12239,8 +12239,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -12250,8 +12250,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -12261,8 +12261,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -12272,8 +12272,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -12283,8 +12283,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -12294,8 +12294,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -12305,8 +12305,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -12316,8 +12316,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -12327,8 +12327,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -12338,8 +12338,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -12349,8 +12349,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -12360,8 +12360,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -12371,8 +12371,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -12382,8 +12382,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -12393,8 +12393,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -12404,8 +12404,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -12415,8 +12415,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -12426,8 +12426,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -12437,8 +12437,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -12448,8 +12448,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -12459,8 +12459,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -12470,8 +12470,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -12481,8 +12481,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -12492,8 +12492,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -12503,8 +12503,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -12514,8 +12514,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -12525,8 +12525,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -12536,8 +12536,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -12547,8 +12547,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -12558,8 +12558,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -12569,8 +12569,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -12580,8 +12580,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -12591,8 +12591,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -12602,8 +12602,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -12613,8 +12613,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -12624,8 +12624,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -12635,8 +12635,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -12646,8 +12646,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -12657,8 +12657,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -12668,8 +12668,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -12679,8 +12679,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -12690,8 +12690,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -12701,8 +12701,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -12712,8 +12712,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -12723,8 +12723,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -12734,8 +12734,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -12745,8 +12745,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -12756,8 +12756,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -12767,8 +12767,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -12778,8 +12778,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -12789,8 +12789,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -12800,8 +12800,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -12811,8 +12811,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -12822,8 +12822,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -12833,8 +12833,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -12844,8 +12844,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -12855,8 +12855,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -12866,8 +12866,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -12877,8 +12877,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -12888,8 +12888,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -12899,8 +12899,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -12910,8 +12910,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -12921,8 +12921,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -12932,8 +12932,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -12943,8 +12943,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -12954,8 +12954,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -12965,8 +12965,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -12976,8 +12976,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -12987,8 +12987,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -12998,8 +12998,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -13009,8 +13009,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -13020,8 +13020,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -13031,8 +13031,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -13042,8 +13042,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -13053,8 +13053,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -13064,8 +13064,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -13075,8 +13075,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker IAM Permissions Check</td>
@@ -13086,8 +13086,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -13097,8 +13097,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -13108,8 +13108,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -13119,8 +13119,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -13130,8 +13130,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -13141,8 +13141,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -13152,8 +13152,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -13163,8 +13163,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -13174,8 +13174,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -13185,8 +13185,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -13196,8 +13196,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -13207,8 +13207,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -13218,8 +13218,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -13229,8 +13229,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -13240,8 +13240,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -13251,8 +13251,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -13262,8 +13262,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -13273,8 +13273,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -13284,8 +13284,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -13295,8 +13295,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -13306,8 +13306,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -13317,8 +13317,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -13328,8 +13328,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -13339,8 +13339,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -13350,8 +13350,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -13361,8 +13361,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -13372,8 +13372,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -13383,8 +13383,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -13394,8 +13394,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -13405,8 +13405,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -13416,8 +13416,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -13427,8 +13427,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -13438,8 +13438,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -13449,8 +13449,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -13460,8 +13460,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -13471,8 +13471,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -13482,8 +13482,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -13493,8 +13493,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -13504,8 +13504,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -13515,8 +13515,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -13526,8 +13526,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -13537,8 +13537,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -13548,8 +13548,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -13559,8 +13559,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -13570,8 +13570,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -13581,8 +13581,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -13592,8 +13592,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -13603,8 +13603,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -13614,8 +13614,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -13625,8 +13625,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -13636,8 +13636,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -13647,8 +13647,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -13658,8 +13658,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -13669,8 +13669,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -13685,14 +13685,14 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
                 <div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#01A88D" width="80" height="80"/><path fill="#FFF" d="M67.372,28.073L64.178,26.792 62.933,23.634C62.781,23.252 62.412,23.001 62.002,23.001 61.591,23.001 61.222,23.253 61.071,23.636L59.814,26.838 56.638,28.071C56.253,28.22 55.999,28.592 56,29.005 56.001,29.419 56.257,29.79 56.643,29.937L59.89,31.178 61.063,34.348C61.205,34.735 61.572,34.995 61.985,35.001L62,35.001C62.407,35.001 62.774,34.754 62.928,34.375L64.231,31.142 67.36,29.934C67.743,29.786 67.997,29.418 68,29.007 68.003,28.597 67.754,28.226 67.372,28.073ZM63.106,29.432C62.849,29.532 62.643,29.734 62.539,29.991L62.04,31.228 61.607,30.058C61.508,29.788 61.296,29.574 61.027,29.471L59.782,28.996 60.947,28.543C61.207,28.442 61.414,28.237 61.516,27.977L62.004,26.732 62.435,27.822C62.523,28.142 62.767,28.398 63.079,28.506L64.269,28.983 63.106,29.432ZM64.053,38.6L54.914,34.935 51.351,25.902C51.123,25.325 50.575,24.953 49.955,24.953 49.335,24.954 48.786,25.327 48.56,25.905L44.958,35.083 42,36.23 42,16C42,15.569 41.725,15.188 41.316,15.051L32.316,12.051C32.042,11.961 31.744,11.991 31.496,12.136L19.496,19.136C19.189,19.315 19,19.645 19,20L19,29.42 12.504,33.132C12.192,33.31 12,33.641 12,34L12,46C12,46.359 12.192,46.69 12.504,46.868L19,50.58 19,60C19,60.355 19.189,60.685 19.496,60.864L31.496,67.864C31.65,67.954 31.825,68 32,68 32.106,68 32.213,67.983 32.316,67.949L41.316,64.949C41.725,64.813 42,64.431 42,64L42,43.738 45.2,44.961 48.561,54.046C48.777,54.632 49.32,55.017 49.945,55.026L49.969,55.026C50.584,55.026 51.128,54.66 51.359,54.087L55.089,44.845 64.035,41.392C64.614,41.168 64.991,40.623 64.995,40.001 64.999,39.381 64.629,38.831 64.053,38.6ZM32.113,65.908L28.865,64.014 35.53,59.848 34.47,58.186 26.913,62.759 21,58.441 21,50.566 26.555,46.832 25.445,45.168 19.959,48.825 14,45.42 14,40.58 20.496,36.868 19.504,35.132 14,38.277 14,34.58 20,31.152 26,34.58 26,38.434 21.485,41.143 22.515,42.857 27,40.166 31.485,42.857 32.515,41.143 28,38.434 28,34.535 33.555,30.832C33.833,30.646 34,30.334 34,30L34,24 32,24 32,29.465 26.959,32.825 21,29.42 21,20.574 26,17.658 26,27 28,27 28,16.491 32.113,14.092 40,16.721 40,45.434 25.485,54.143 26.515,55.857 40,47.766 40,63.279 32.113,65.908ZM53.964,43.135C53.706,43.235 53.501,43.438 53.397,43.694L49.988,52.14 46.918,43.842C46.818,43.572 46.607,43.358 46.338,43.255L42,41.597 42,38.375 46.09,36.788C46.351,36.687 46.558,36.481 46.659,36.221L49.957,27.818 53.14,35.886C53.209,36.252 53.486,36.548 53.84,36.659L62.129,39.983 53.964,43.135Z"/></svg></span>Amazon Bedrock AgentCore Findings</div>
                 <div class="filter-bar">
                     <div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="agentcoreSearchInput"></div>
-                    <div class="filter-group"><label>Account</label><select id="agentcoreAccountFilter"><option value="">All Accounts</option><option value="193047247167">193047247167</option><option value="230266523520">230266523520</option><option value="472057511786">472057511786</option></select></div>
+                    <div class="filter-group"><label>Account</label><select id="agentcoreAccountFilter"><option value="">All Accounts</option><option value="111111111111">111111111111</option><option value="222222222222">222222222222</option><option value="333333333333">333333333333</option></select></div>
                     <div class="filter-group"><label for="agentcoreRegionFilter">Region</label><select id="agentcoreRegionFilter"><option value="">All Regions</option><option value="ap-southeast-2">ap-southeast-2</option><option value="eu-west-1">eu-west-1</option><option value="us-east-1">us-east-1</option><option value="Global">Global</option></select></div>
                     <div class="filter-group"><label>Severity</label><select id="agentcoreSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div>
                     <div class="filter-group"><label>Status</label><select id="agentcoreStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
                     <button class="btn btn-reset" id="agentcoreResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
                 </div>
-                <div class="card"><div class="table-wrap"><table id="agentcoreTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+                <div class="card"><div class="table-wrap"><table id="agentcoreTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -13702,8 +13702,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -13713,8 +13713,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -13724,8 +13724,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -13735,8 +13735,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -13746,8 +13746,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -13757,8 +13757,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -13768,8 +13768,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -13779,8 +13779,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -13790,8 +13790,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -13801,8 +13801,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>AC-02</code></td>
             <td class="col-domain">AgentCore IAM Full Access Policy</td>
@@ -13812,8 +13812,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>AC-02</code></td>
             <td class="col-domain">AgentCore IAM Wildcard Permissions</td>
@@ -13823,8 +13823,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>AC-03</code></td>
             <td class="col-domain">AgentCore Stale Access</td>
@@ -13834,8 +13834,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>AC-03</code></td>
             <td class="col-domain">AgentCore Unused Permissions</td>
@@ -13845,8 +13845,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="Global">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>AC-09</code></td>
             <td class="col-domain">AgentCore Service-Linked Role Missing</td>
@@ -13856,8 +13856,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore Runtime VPC Configuration</td>
@@ -13867,8 +13867,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore Runtime VPC Configuration</td>
@@ -13878,8 +13878,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore Runtime VPC Configuration</td>
@@ -13889,8 +13889,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore Runtime VPC Configuration</td>
@@ -13900,8 +13900,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore Runtime VPC Configuration</td>
@@ -13911,8 +13911,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
@@ -13922,8 +13922,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
@@ -13933,8 +13933,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
@@ -13944,8 +13944,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
@@ -13955,8 +13955,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
@@ -13966,8 +13966,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
@@ -13977,8 +13977,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
@@ -13988,8 +13988,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
@@ -13999,8 +13999,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime CloudWatch Logs</td>
@@ -14010,8 +14010,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Runtime X-Ray Tracing</td>
@@ -14021,8 +14021,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="low" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="low" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore ECR Repository AWS-Managed Keys</td>
@@ -14032,8 +14032,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity low">Low</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="low" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="low" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore ECR Repository AWS-Managed Keys</td>
@@ -14043,8 +14043,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity low">Low</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Runtime Storage Configuration</td>
@@ -14054,8 +14054,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Runtime Storage Configuration</td>
@@ -14065,8 +14065,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Runtime Storage Configuration</td>
@@ -14076,8 +14076,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Runtime Storage Configuration</td>
@@ -14087,8 +14087,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Runtime Storage Configuration</td>
@@ -14098,8 +14098,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Encryption</td>
@@ -14109,8 +14109,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Encryption</td>
@@ -14120,8 +14120,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Encryption</td>
@@ -14131,8 +14131,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -14142,8 +14142,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Missing</td>
@@ -14157,8 +14157,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -14168,8 +14168,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -14179,8 +14179,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -14190,8 +14190,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -14201,8 +14201,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -14212,8 +14212,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -14223,8 +14223,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -14234,8 +14234,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -14245,8 +14245,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -14256,8 +14256,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -14267,8 +14267,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -14278,8 +14278,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -14289,8 +14289,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -14300,8 +14300,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -14311,8 +14311,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -14322,8 +14322,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -14333,8 +14333,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -14344,8 +14344,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -14355,8 +14355,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -14366,8 +14366,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -14377,8 +14377,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -14388,8 +14388,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -14399,8 +14399,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -14410,8 +14410,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -14421,8 +14421,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -14432,8 +14432,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -14443,8 +14443,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -14454,8 +14454,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -14465,8 +14465,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -14476,8 +14476,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -14487,8 +14487,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -14498,8 +14498,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -14509,8 +14509,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -14520,8 +14520,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>AC-02</code></td>
             <td class="col-domain">AgentCore IAM Full Access Check</td>
@@ -14531,8 +14531,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>AC-03</code></td>
             <td class="col-domain">AgentCore Stale Access</td>
@@ -14542,8 +14542,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>AC-03</code></td>
             <td class="col-domain">AgentCore Unused Permissions</td>
@@ -14553,8 +14553,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="472057511786" data-region="Global">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="333333333333" data-region="Global">
+            <td><code>333333333333</code></td>
             <td><code>Global</code></td>
             <td><code>AC-09</code></td>
             <td class="col-domain">AgentCore Service-Linked Role Missing</td>
@@ -14564,8 +14564,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -14575,8 +14575,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -14586,8 +14586,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -14597,8 +14597,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -14608,8 +14608,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -14619,8 +14619,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -14630,8 +14630,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -14641,8 +14641,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -14652,8 +14652,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -14663,8 +14663,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -14674,8 +14674,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -14685,8 +14685,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -14696,8 +14696,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -14707,8 +14707,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -14718,8 +14718,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -14729,8 +14729,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -14740,8 +14740,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -14751,8 +14751,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -14762,8 +14762,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -14773,8 +14773,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -14784,8 +14784,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>AC-02</code></td>
             <td class="col-domain">AgentCore IAM Full Access Check</td>
@@ -14795,8 +14795,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>AC-03</code></td>
             <td class="col-domain">AgentCore Stale Access</td>
@@ -14806,8 +14806,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>AC-03</code></td>
             <td class="col-domain">AgentCore Unused Permissions</td>
@@ -14817,8 +14817,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="230266523520" data-region="Global">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="222222222222" data-region="Global">
+            <td><code>222222222222</code></td>
             <td><code>Global</code></td>
             <td><code>AC-09</code></td>
             <td class="col-domain">AgentCore Service-Linked Role Missing</td>
@@ -14828,8 +14828,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -14839,8 +14839,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -14850,8 +14850,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -14861,8 +14861,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -14872,8 +14872,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -14883,8 +14883,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -14894,8 +14894,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -14905,8 +14905,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -14916,8 +14916,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -14927,8 +14927,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -14938,8 +14938,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -14949,8 +14949,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -14960,8 +14960,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -14971,8 +14971,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -14982,8 +14982,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -14993,8 +14993,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -15004,8 +15004,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -15015,8 +15015,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -15026,8 +15026,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -15037,8 +15037,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -15049,8 +15049,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="status warning">N/A</span></td>
         </tr></tbody></table></div></div>
             </section>
-            <section id="finserv" class="section"><div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#7C3AED" width="80" height="80"/><path fill="#FFF" d="M40 14 L66 26 L66 31 L14 31 L14 26 Z M20 35 h6 v23 h-6 z M37 35 h6 v23 h-6 z M54 35 h6 v23 h-6 z M14 62 h52 v5 h-52 z"/></svg></span>Financial Services GenAI Risk Findings</div><div class="muted" style="margin:-6px 0 10px;font-size:13px;">Scope: this assessment records findings against each resolved CloudFormation TargetRegions entry. These checks are based on <a href="https://aws.amazon.com/blogs/security/introducing-the-updated-aws-user-guide-to-governance-risk-and-compliance-for-responsible-ai-adoption/" target="_blank">the AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption</a>. Severities follow a documented Likelihood &times; Impact methodology (see docs).</div><div class="filter-bar"><div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="finservSearchInput"></div><div class="filter-group"><label>Account</label><select id="finservAccountFilter"><option value="">All Accounts</option><option value="193047247167">193047247167</option><option value="230266523520">230266523520</option><option value="472057511786">472057511786</option></select></div><div class="filter-group"><label>Region</label><select id="finservRegionFilter"><option value="">All Regions</option><option value="ap-southeast-2">ap-southeast-2</option><option value="eu-west-1">eu-west-1</option><option value="us-east-1">us-east-1</option></select></div><div class="filter-group"><label>Severity</label><select id="finservSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div><div class="filter-group"><label>Status</label><select id="finservStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div><button class="btn btn-reset" id="finservResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button></div><div class="card"><div class="table-wrap"><table id="finservTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="finserv" data-severity="low" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+            <section id="finserv" class="section"><div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#7C3AED" width="80" height="80"/><path fill="#FFF" d="M40 14 L66 26 L66 31 L14 31 L14 26 Z M20 35 h6 v23 h-6 z M37 35 h6 v23 h-6 z M54 35 h6 v23 h-6 z M14 62 h52 v5 h-52 z"/></svg></span>Financial Services GenAI Risk Findings</div><div class="muted" style="margin:-6px 0 10px;font-size:13px;">Scope: this assessment records findings against each resolved CloudFormation TargetRegions entry. These checks are based on <a href="https://aws.amazon.com/blogs/security/introducing-the-updated-aws-user-guide-to-governance-risk-and-compliance-for-responsible-ai-adoption/" target="_blank">the AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption</a>. Severities follow a documented Likelihood &times; Impact methodology (see docs).</div><div class="filter-bar"><div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="finservSearchInput"></div><div class="filter-group"><label>Account</label><select id="finservAccountFilter"><option value="">All Accounts</option><option value="111111111111">111111111111</option><option value="222222222222">222222222222</option><option value="333333333333">333333333333</option></select></div><div class="filter-group"><label>Region</label><select id="finservRegionFilter"><option value="">All Regions</option><option value="ap-southeast-2">ap-southeast-2</option><option value="eu-west-1">eu-west-1</option><option value="us-east-1">us-east-1</option></select></div><div class="filter-group"><label>Severity</label><select id="finservSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div><div class="filter-group"><label>Status</label><select id="finservStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div><button class="btn btn-reset" id="finservResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button></div><div class="card"><div class="table-wrap"><table id="finservTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="finserv" data-severity="low" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-01</code></td>
             <td class="col-domain">AWS Shield Advanced Not Enabled</td>
@@ -15063,8 +15063,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity low">Low</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-01</code></td>
             <td class="col-domain">No Regional WAF Web ACLs Found</td>
@@ -15076,8 +15076,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-02</code></td>
             <td class="col-domain">API Gateway Usage Plans Missing Throttle</td>
@@ -15087,8 +15087,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-03</code></td>
             <td class="col-domain">Bedrock Token Quotas At Default</td>
@@ -15101,8 +15101,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-04</code></td>
             <td class="col-domain">No Cost Anomaly Detection Monitors</td>
@@ -15114,8 +15114,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-05</code></td>
             <td class="col-domain">No Bedrock CloudWatch Alarms Found</td>
@@ -15128,8 +15128,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-06</code></td>
             <td class="col-domain">No AI/ML Service Budgets Configured</td>
@@ -15141,8 +15141,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-07</code></td>
             <td class="col-domain">Agent Action Boundary Check</td>
@@ -15152,8 +15152,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-08</code></td>
             <td class="col-domain">AgentCore Runtimes Missing Policy Engine</td>
@@ -15163,12 +15163,12 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-09</code></td>
             <td class="col-domain">Agent Lambda Functions Without Concurrency Limits</td>
-            <td class="finding-details">Agent-related Lambda functions without reserved concurrency: aiml-security-aiml-security-193047247167-FinServAssessment, resco-aiml-IAMPermissionCaching, aiml-security-aiml-security-193047247167-SagemakerAssessment, resco-aiml-CleanupBucket, aiml-security-aiml-security-193047247167-BedrockAssessment, resco-aiml-BedrockAssessment, aiml-security-aiml-security-193047247167-CleanupBucket, aiml-security-aiml-security-193047247167-AgentCoreAssessment, e2ebedrockrag-OSSInfraStack-BKBOSSInfraSetupLambda-031La8JAQXtk, e2ebedrockrag-OSSInfraSta-OSSIndexCreationProvider-g56en9UzRjII. Unlimited concurrency allows runaway agent loops to exhaust account limits.</td>
+            <td class="finding-details">Agent-related Lambda functions without reserved concurrency: aiml-security-aiml-security-111111111111-FinServAssessment, resco-aiml-IAMPermissionCaching, aiml-security-aiml-security-111111111111-SagemakerAssessment, resco-aiml-CleanupBucket, aiml-security-aiml-security-111111111111-BedrockAssessment, resco-aiml-BedrockAssessment, aiml-security-aiml-security-111111111111-CleanupBucket, aiml-security-aiml-security-111111111111-AgentCoreAssessment, e2ebedrockrag-OSSInfraStack-BKBOSSInfraSetupLambda-031La8JAQXtk, e2ebedrockrag-OSSInfraSta-OSSIndexCreationProvider-g56en9UzRjII. Unlimited concurrency allows runaway agent loops to exhaust account limits.</td>
             <td class="resolution-text">1. Set reserved concurrency on agent Lambda functions.
 2. Implement maximum iteration counts in agent orchestration logic.
 3. Use Step Functions with MaxConcurrency and timeout states.
@@ -15177,8 +15177,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-10</code></td>
             <td class="col-domain">Human-in-the-Loop Check — No Agent Workflows Found</td>
@@ -15188,8 +15188,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-11</code></td>
             <td class="col-domain">No Agent Rate Alarms Found</td>
@@ -15202,8 +15202,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-12</code></td>
             <td class="col-domain">No Bedrock-Scoped SCPs Found</td>
@@ -15215,8 +15215,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-13</code></td>
             <td class="col-domain">Model Provenance Tags Present</td>
@@ -15226,8 +15226,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-14</code></td>
             <td class="col-domain">Model Governance Config Rules Present</td>
@@ -15237,8 +15237,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-15</code></td>
             <td class="col-domain">No Bedrock Evaluation Jobs Found</td>
@@ -15250,19 +15250,19 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-16</code></td>
             <td class="col-domain">ECR Repositories Without Image Scanning</td>
-            <td class="finding-details">4 ECR repo(s) without scan-on-push: mlexplorationrepo, cdk-hnb659fds-container-assets-193047247167-us-east-1, bedrock-agentcore-customer_support_agent, bedrock-agentcore-origami_expeditions.</td>
+            <td class="finding-details">4 ECR repo(s) without scan-on-push: mlexplorationrepo, cdk-hnb659fds-container-assets-111111111111-us-east-1, bedrock-agentcore-customer_support_agent, bedrock-agentcore-origami_expeditions.</td>
             <td class="resolution-text">Enable scan-on-push for all ECR repositories containing model containers. Consider enabling Enhanced Scanning (Inspector) for CVE detection.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonECR/latest/userguide/image-scanning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-20</code></td>
             <td class="col-domain">No SageMaker Feature Groups Found</td>
@@ -15272,25 +15272,25 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-21</code></td>
             <td class="col-domain">Training Data Buckets Without Versioning</td>
-            <td class="finding-details">13 training data bucket(s) without versioning: ancbedrocklogging, bedrock-agentcore-codebuild-sources-193047247167-us-east-1, bedrock-bda-us-east-1-dda43109-6557-48bb-993d-3f97126b64b4, bedrock-bda-us-east-1-logging-00719114-debd-4487-85d1-09cbc3fc8, bedrock-kb-bucket-f736570b, bedrock-video-generation-us-east-1-h5ltpm, fsi-genai-workshop-bedrock-datasources-193047247167-us-west-2, knowledgebase-bedrock-agent-agasthik, llmevaluationpromptfoo-bedrockkb-cozhbzbrcmd2, sagemaker-studio-193047247167-huo1mvme4t.</td>
+            <td class="finding-details">13 training data bucket(s) without versioning: ancbedrocklogging, bedrock-agentcore-codebuild-sources-111111111111-us-east-1, bedrock-bda-us-east-1-dda43109-6557-48bb-993d-3f97126b64b4, bedrock-bda-us-east-1-logging-00719114-debd-4487-85d1-09cbc3fc8, bedrock-kb-bucket-f736570b, bedrock-video-generation-us-east-1-h5ltpm, fsi-genai-workshop-bedrock-datasources-111111111111-us-west-2, knowledgebase-bedrock-agent-agasthik, llmevaluationpromptfoo-bedrockkb-cozhbzbrcmd2, sagemaker-studio-111111111111-huo1mvme4t.</td>
             <td class="resolution-text">Enable S3 versioning on all training data buckets. Consider enabling MFA Delete for additional protection against poisoning.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/Versioning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-22</code></td>
             <td class="col-domain">Overly Permissive Knowledge Base IAM Roles</td>
             <td class="finding-details">722 role(s) with wildcard KB permissions:
-- Role '193047247167-us-east-1-kb-setup-function-role' allows 'bedrock:CreateKnowledgeBase' on Resource '*' (no ARN scoping to specific Knowledge Bases)
-- Role '193047247167-us-east-1-kb-setup-function-role' allows 'bedrock:CreateDataSource' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role '111111111111-us-east-1-kb-setup-function-role' allows 'bedrock:CreateKnowledgeBase' on Resource '*' (no ARN scoping to specific Knowledge Bases)
+- Role '111111111111-us-east-1-kb-setup-function-role' allows 'bedrock:CreateDataSource' on Resource '*' (no ARN scoping to specific Knowledge Bases)
 - Role 'Admin' allows '*'
 - Role 'agentcore-wildrydes_gateway_role_ab3991f6-role' allows 'bedrock:*'
 - Role 'AgentCoreEvalsSDK-us-east-1-d04ba7b68b' allows 'bedrock:InvokeModel' on Resource '*' (no ARN scoping to specific Knowledge Bases)
@@ -15304,8 +15304,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-24</code></td>
             <td class="col-domain">ADVISORY: Knowledge Base Metadata Filtering — Manual Review Required</td>
@@ -15317,8 +15317,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="passed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-25</code></td>
             <td class="col-domain">OpenSearch Serverless Encryption Policies Present</td>
@@ -15328,8 +15328,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-26</code></td>
             <td class="col-domain">OpenSearch Serverless Collections Not VPC-Restricted</td>
@@ -15339,8 +15339,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-27</code></td>
             <td class="col-domain">No Guardrails — Contextual Grounding Not Applicable</td>
@@ -15350,8 +15350,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-27</code></td>
             <td class="col-domain">Automated Reasoning Policies — Access Check</td>
@@ -15364,8 +15364,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity low">Low</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-28</code></td>
             <td class="col-domain">No Guardrails — Denied Topics Not Applicable</td>
@@ -15375,8 +15375,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-29</code></td>
             <td class="col-domain">ADVISORY: Compliance Disclaimer — Manual Review Required</td>
@@ -15389,8 +15389,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-30</code></td>
             <td class="col-domain">ADVISORY: Compliance Dataset Coverage — Manual Review Required</td>
@@ -15403,14 +15403,14 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-31</code></td>
             <td class="col-domain">Knowledge Base Data Sources Past Review Threshold</td>
             <td class="finding-details">2 data source(s) not synced in >7 days (a configurable review threshold, NOT an AWS-mandated limit):
 - KB 'knowledge-base-semiconductors' source 'knowledge-base-quick-start-qpvuv-data-source' last synced 702 days ago
-- KB '193047247167-us-east-1-kb' source '193047247167-us-east-1-kb-datasource' last synced 180 days ago
+- KB '111111111111-us-east-1-kb' source '111111111111-us-east-1-kb-datasource' last synced 180 days ago
 Confirm this age is acceptable for each data source's currency requirement — slow-changing reference data may legitimately sync infrequently.</td>
             <td class="resolution-text">1. Define the maximum acceptable data age per use case (e.g., intraday for market data, daily for product terms, weekly/monthly for regulatory guidance) and adjust the review threshold to match.
 2. Configure automated sync (EventBridge Scheduler → StartIngestionJob) at that cadence — see FS-61.
@@ -15419,8 +15419,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-32</code></td>
             <td class="col-domain">ADVISORY: Source Attribution — Manual Review Required</td>
@@ -15433,19 +15433,19 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-33</code></td>
             <td class="col-domain">KB Data Source Buckets Without Versioning</td>
-            <td class="finding-details">KB data source S3 buckets without versioning: 193047247167-us-east-1-kb-data-bucket.</td>
+            <td class="finding-details">KB data source S3 buckets without versioning: 111111111111-us-east-1-kb-data-bucket.</td>
             <td class="resolution-text">Enable S3 versioning on all KB data source buckets. Enable S3 Object Integrity (checksum) for tamper detection.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/checking-object-integrity.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-34</code></td>
             <td class="col-domain">Legacy Foundation Models Available in Region</td>
@@ -15458,8 +15458,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-35</code></td>
             <td class="col-domain">ADVISORY: Harmful-Content Test Coverage — Manual Review Required</td>
@@ -15472,8 +15472,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-36</code></td>
             <td class="col-domain">No Guardrails — Content Filters Not Applicable</td>
@@ -15483,8 +15483,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-37</code></td>
             <td class="col-domain">ADVISORY: User Feedback Mechanism — Manual Review Required</td>
@@ -15497,8 +15497,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-38</code></td>
             <td class="col-domain">No Guardrails — Word Filters Not Applicable</td>
@@ -15508,8 +15508,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-39</code></td>
             <td class="col-domain">No SageMaker Clarify Bias Monitoring</td>
@@ -15522,8 +15522,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-40</code></td>
             <td class="col-domain">ADVISORY: Bias Dataset Coverage — Manual Review Required</td>
@@ -15536,8 +15536,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-41</code></td>
             <td class="col-domain">No SageMaker Clarify Explainability Monitoring</td>
@@ -15550,8 +15550,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-42</code></td>
             <td class="col-domain">No SageMaker Model Cards Found</td>
@@ -15564,8 +15564,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-43</code></td>
             <td class="col-domain">No CloudWatch Logs Data Protection Policies</td>
@@ -15578,8 +15578,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="passed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-44</code></td>
             <td class="col-domain">Amazon Macie Enabled</td>
@@ -15589,8 +15589,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-45</code></td>
             <td class="col-domain">No Guardrails — PII Filters Not Applicable</td>
@@ -15600,19 +15600,19 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-46</code></td>
             <td class="col-domain">AI/ML Buckets Without Data Classification Tags</td>
-            <td class="finding-details">18 AI/ML bucket(s) without data-classification tags: 193047247167-us-east-1-kb-data-bucket, ancbedrocklogging, ancknowledgebase, aws-streaming-data-solut-outputaccesslogsbucket8b-1o7m0kb4bafm4, bedrock-agentcore-codebuild-sources-193047247167-us-east-1, bedrock-bda-us-east-1-dda43109-6557-48bb-993d-3f97126b64b4, bedrock-bda-us-east-1-logging-00719114-debd-4487-85d1-09cbc3fc8, bedrock-kb-bucket-f736570b, bedrock-video-generation-us-east-1-h5ltpm, create-customer-resources-kb-bucket-193047247167.</td>
+            <td class="finding-details">18 AI/ML bucket(s) without data-classification tags: 111111111111-us-east-1-kb-data-bucket, ancbedrocklogging, ancknowledgebase, aws-streaming-data-solut-outputaccesslogsbucket8b-1o7m0kb4bafm4, bedrock-agentcore-codebuild-sources-111111111111-us-east-1, bedrock-bda-us-east-1-dda43109-6557-48bb-993d-3f97126b64b4, bedrock-bda-us-east-1-logging-00719114-debd-4487-85d1-09cbc3fc8, bedrock-kb-bucket-f736570b, bedrock-video-generation-us-east-1-h5ltpm, create-customer-resources-kb-bucket-111111111111.</td>
             <td class="resolution-text">Tag all AI/ML data buckets with 'data-classification' key. Values: Public, Internal, Confidential, Restricted. Enforce via SCP or AWS Config rule.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-tagging.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-47</code></td>
             <td class="col-domain">No Guardrails — Grounding Threshold Not Applicable</td>
@@ -15622,8 +15622,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-48</code></td>
             <td class="col-domain">Active Knowledge Bases for RAG Present</td>
@@ -15633,8 +15633,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-49</code></td>
             <td class="col-domain">ADVISORY: Hallucination Disclaimer — Manual Review Required</td>
@@ -15646,8 +15646,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-50</code></td>
             <td class="col-domain">No Guardrails With Relevance Grounding Filters</td>
@@ -15657,8 +15657,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-51</code></td>
             <td class="col-domain">No Guardrails — Prompt Attack Filters Not Applicable</td>
@@ -15668,8 +15668,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-52</code></td>
             <td class="col-domain">Bedrock Lambda Functions on Deprecated Runtimes</td>
@@ -15682,8 +15682,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-53</code></td>
             <td class="col-domain">No WAF Web ACLs — Injection Rules Not Applicable</td>
@@ -15693,8 +15693,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-54</code></td>
             <td class="col-domain">ADVISORY: Penetration Testing — Manual Review Required</td>
@@ -15708,8 +15708,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-55</code></td>
             <td class="col-domain">No Output Validation Functions Found</td>
@@ -15722,8 +15722,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-56</code></td>
             <td class="col-domain">No WAF ACLs — XSS Prevention Not Applicable</td>
@@ -15733,8 +15733,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-57</code></td>
             <td class="col-domain">ADVISORY: Output Encoding — Manual Review Required</td>
@@ -15747,8 +15747,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-58</code></td>
             <td class="col-domain">ADVISORY: Output Schema Validation — Manual Review Required</td>
@@ -15761,8 +15761,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-59</code></td>
             <td class="col-domain">No Guardrails — Topic Allowlist Not Applicable</td>
@@ -15772,8 +15772,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-60</code></td>
             <td class="col-domain">ADVISORY: Contextual Grounding for Off-Topic Prevention</td>
@@ -15785,12 +15785,12 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-61</code></td>
             <td class="col-domain">COULD NOT ASSESS: Knowledge Base Sync Schedule Check</td>
-            <td class="finding-details">This check could not be completed (error: An error occurred (AccessDeniedException) when calling the ListSchedules operation: User: arn:aws:sts::193047247167:assumed-role/aiml-security-19304724716-FinServSecurityAssessment-G8d5dEiMJsZB/aiml-security-aiml-security-193047247167-FinServAssessment is not authorized to perform: scheduler:ListSchedules on resource: arn:aws:scheduler:us-east-1:193047247167:schedule/*/* because no identity-based policy allows the scheduler:ListSchedules action). The most common cause is a missing IAM permission for the assessment role; it may also indicate an unsupported region or an outdated botocore. This control was NOT assessed — verify the role's permissions and re-run, and assess this control manually until resolved.</td>
+            <td class="finding-details">This check could not be completed (error: An error occurred (AccessDeniedException) when calling the ListSchedules operation: User: arn:aws:sts::111111111111:assumed-role/aiml-security-19304724716-FinServSecurityAssessment-G8d5dEiMJsZB/aiml-security-aiml-security-111111111111-FinServAssessment is not authorized to perform: scheduler:ListSchedules on resource: arn:aws:scheduler:us-east-1:111111111111:schedule/*/* because no identity-based policy allows the scheduler:ListSchedules action). The most common cause is a missing IAM permission for the assessment role; it may also indicate an unsupported region or an outdated botocore. This control was NOT assessed — verify the role's permissions and re-run, and assess this control manually until resolved.</td>
             <td class="resolution-text">1. Confirm the assessment role grants the actions this check requires (see the documented IAM permission set in the README).
 2. Confirm the service/feature is supported in the assessed region.
 3. Ensure botocore meets the version floor in requirements.txt.
@@ -15799,8 +15799,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity low">Low</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-62</code></td>
             <td class="col-domain">ADVISORY: Data Currency Disclaimer — Manual Review Required</td>
@@ -15812,8 +15812,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-63</code></td>
             <td class="col-domain">Foundation Model Lifecycle Management</td>
@@ -15823,14 +15823,14 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-65</code></td>
             <td class="col-domain">KB Data Source Buckets Missing S3 Event Notifications</td>
             <td class="finding-details">The following KB data-source S3 buckets have no event notifications configured. Unauthorized document modifications will not be detected in real time:
 - semiconductor-demo-9999
-- 193047247167-us-east-1-kb-data-bucket</td>
+- 111111111111-us-east-1-kb-data-bucket</td>
             <td class="resolution-text">1. Enable Amazon EventBridge notifications on each KB data-source S3 bucket.
 2. Create an EventBridge rule to route s3:ObjectCreated, s3:ObjectRemoved, and s3:ObjectModified events to an SNS topic or Lambda for alerting.
 3. Integrate alerts into your security incident response workflow.</td>
@@ -15838,8 +15838,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-66</code></td>
             <td class="col-domain">AgentCore Runtimes Missing End-User Identity Propagation</td>
@@ -15857,16 +15857,16 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-67</code></td>
             <td class="col-domain">Agent Action-Group Lambdas May Lack Transaction Thresholds</td>
             <td class="finding-details">The following agent action-group Lambda functions have no environment variables whose names suggest transaction-value threshold configuration (this is a best-effort heuristic — a threshold enforced in code or in an AgentCore Policy Engine rule would not be detected here, so treat this as a prompt for manual verification rather than a definitive gap). Without explicit limits, agents could initiate unbounded financial transactions:
-- aiml-security-aiml-security-193047247167-FinServAssessment
-- aiml-security-aiml-security-193047247167-BedrockAssessment
+- aiml-security-aiml-security-111111111111-FinServAssessment
+- aiml-security-aiml-security-111111111111-BedrockAssessment
 - resco-aiml-BedrockAssessment
-- aiml-security-aiml-security-193047247167-AgentCoreAssessment
+- aiml-security-aiml-security-111111111111-AgentCoreAssessment
 - e2ebedrockrag-OSSInfraStack-BKBOSSInfraSetupLambda-031La8JAQXtk
 - e2ebedrockrag-OSSInfraSta-OSSIndexCreationProvider-g56en9UzRjII
 - resco-aiml-AgentCoreAssessment</td>
@@ -15878,8 +15878,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-68</code></td>
             <td class="col-domain">API Gateway Request Body Size Limits Not Enforced</td>
@@ -15892,19 +15892,19 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="193047247167" data-region="us-east-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-69</code></td>
             <td class="col-domain">Prompt Input Validation Functions Present</td>
-            <td class="finding-details">Found 3 Lambda function(s) with input validation/sanitization naming patterns: resco-aiml-CleanupBucket, visa-bulletin-tracker-prod-cleanup, aiml-security-aiml-security-193047247167-CleanupBucket.</td>
+            <td class="finding-details">Found 3 Lambda function(s) with input validation/sanitization naming patterns: resco-aiml-CleanupBucket, visa-bulletin-tracker-prod-cleanup, aiml-security-aiml-security-111111111111-CleanupBucket.</td>
             <td class="resolution-text">Review these functions to confirm they cover: special-character stripping, format validation, size limits, and injection-sequence detection.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/prompt-injection.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="eu-west-1">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>FS-00</code></td>
             <td class="col-domain">FinServ Regional Scope Not Applicable</td>
@@ -15914,8 +15914,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="193047247167" data-region="ap-southeast-2">
-            <td><code>193047247167</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>FS-00</code></td>
             <td class="col-domain">FinServ Regional Scope Not Applicable</td>
@@ -15925,8 +15925,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="low" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="low" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-01</code></td>
             <td class="col-domain">AWS Shield Advanced Not Enabled</td>
@@ -15939,8 +15939,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity low">Low</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-01</code></td>
             <td class="col-domain">No Regional WAF Web ACLs Found</td>
@@ -15952,8 +15952,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-02</code></td>
             <td class="col-domain">No API Gateway Usage Plans Found</td>
@@ -15963,8 +15963,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-03</code></td>
             <td class="col-domain">Bedrock Token Quotas At Default</td>
@@ -15977,8 +15977,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-04</code></td>
             <td class="col-domain">No Cost Anomaly Detection Monitors</td>
@@ -15990,8 +15990,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-05</code></td>
             <td class="col-domain">No Bedrock CloudWatch Alarms Found</td>
@@ -16004,8 +16004,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-06</code></td>
             <td class="col-domain">No AI/ML Service Budgets Configured</td>
@@ -16017,8 +16017,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-07</code></td>
             <td class="col-domain">Agent Action Boundary Check</td>
@@ -16028,8 +16028,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-08</code></td>
             <td class="col-domain">No AgentCore Runtimes Found</td>
@@ -16039,8 +16039,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-09</code></td>
             <td class="col-domain">Agent Lambda Functions Without Concurrency Limits</td>
@@ -16053,8 +16053,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-10</code></td>
             <td class="col-domain">Human-in-the-Loop Check — No Agent Workflows Found</td>
@@ -16064,8 +16064,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-11</code></td>
             <td class="col-domain">No Agent Rate Alarms Found</td>
@@ -16078,8 +16078,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-12</code></td>
             <td class="col-domain">No Bedrock-Scoped SCPs Found</td>
@@ -16091,8 +16091,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-13</code></td>
             <td class="col-domain">Model Provenance Tags Present</td>
@@ -16102,8 +16102,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-14</code></td>
             <td class="col-domain">Model Governance Config Rules Present</td>
@@ -16113,8 +16113,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-15</code></td>
             <td class="col-domain">No Bedrock Evaluation Jobs Found</td>
@@ -16126,19 +16126,19 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-16</code></td>
             <td class="col-domain">ECR Repositories Without Image Scanning</td>
-            <td class="finding-details">1 ECR repo(s) without scan-on-push: cdk-hnb659fds-container-assets-472057511786-us-east-1.</td>
+            <td class="finding-details">1 ECR repo(s) without scan-on-push: cdk-hnb659fds-container-assets-333333333333-us-east-1.</td>
             <td class="resolution-text">Enable scan-on-push for all ECR repositories containing model containers. Consider enabling Enhanced Scanning (Inspector) for CVE detection.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/AmazonECR/latest/userguide/image-scanning.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-20</code></td>
             <td class="col-domain">No SageMaker Feature Groups Found</td>
@@ -16148,8 +16148,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-21</code></td>
             <td class="col-domain">No Training Data Buckets Identified</td>
@@ -16159,8 +16159,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-22</code></td>
             <td class="col-domain">Overly Permissive Knowledge Base IAM Roles</td>
@@ -16180,8 +16180,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-24</code></td>
             <td class="col-domain">ADVISORY: Knowledge Base Metadata Filtering — Manual Review Required</td>
@@ -16193,8 +16193,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="high" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-25</code></td>
             <td class="col-domain">OpenSearch Serverless Encryption Policies Present</td>
@@ -16204,8 +16204,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-26</code></td>
             <td class="col-domain">OpenSearch Serverless Collections Not VPC-Restricted</td>
@@ -16215,8 +16215,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-27</code></td>
             <td class="col-domain">No Guardrails — Contextual Grounding Not Applicable</td>
@@ -16226,8 +16226,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-27</code></td>
             <td class="col-domain">Automated Reasoning Policies — Access Check</td>
@@ -16240,8 +16240,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity low">Low</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-28</code></td>
             <td class="col-domain">No Guardrails — Denied Topics Not Applicable</td>
@@ -16251,8 +16251,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-29</code></td>
             <td class="col-domain">ADVISORY: Compliance Disclaimer — Manual Review Required</td>
@@ -16265,8 +16265,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-30</code></td>
             <td class="col-domain">ADVISORY: Compliance Dataset Coverage — Manual Review Required</td>
@@ -16279,8 +16279,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-31</code></td>
             <td class="col-domain">Knowledge Base Data Sources Past Review Threshold</td>
@@ -16294,8 +16294,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-32</code></td>
             <td class="col-domain">ADVISORY: Source Attribution — Manual Review Required</td>
@@ -16308,8 +16308,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-33</code></td>
             <td class="col-domain">KB Data Source Buckets Have Versioning</td>
@@ -16319,8 +16319,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-34</code></td>
             <td class="col-domain">Legacy Foundation Models Available in Region</td>
@@ -16333,8 +16333,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-35</code></td>
             <td class="col-domain">ADVISORY: Harmful-Content Test Coverage — Manual Review Required</td>
@@ -16347,8 +16347,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-36</code></td>
             <td class="col-domain">No Guardrails — Content Filters Not Applicable</td>
@@ -16358,8 +16358,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-37</code></td>
             <td class="col-domain">ADVISORY: User Feedback Mechanism — Manual Review Required</td>
@@ -16372,8 +16372,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-38</code></td>
             <td class="col-domain">No Guardrails — Word Filters Not Applicable</td>
@@ -16383,8 +16383,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-39</code></td>
             <td class="col-domain">No SageMaker Clarify Bias Monitoring</td>
@@ -16397,8 +16397,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-40</code></td>
             <td class="col-domain">ADVISORY: Bias Dataset Coverage — Manual Review Required</td>
@@ -16411,8 +16411,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-41</code></td>
             <td class="col-domain">No SageMaker Clarify Explainability Monitoring</td>
@@ -16425,8 +16425,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-42</code></td>
             <td class="col-domain">No SageMaker Model Cards Found</td>
@@ -16439,8 +16439,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-43</code></td>
             <td class="col-domain">No CloudWatch Logs Data Protection Policies</td>
@@ -16453,8 +16453,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-44</code></td>
             <td class="col-domain">Amazon Macie Not Enabled</td>
@@ -16467,8 +16467,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-45</code></td>
             <td class="col-domain">No Guardrails — PII Filters Not Applicable</td>
@@ -16478,8 +16478,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-46</code></td>
             <td class="col-domain">No AI/ML Data Buckets Identified</td>
@@ -16489,8 +16489,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-47</code></td>
             <td class="col-domain">No Guardrails — Grounding Threshold Not Applicable</td>
@@ -16500,8 +16500,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-48</code></td>
             <td class="col-domain">Active Knowledge Bases for RAG Present</td>
@@ -16511,8 +16511,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-49</code></td>
             <td class="col-domain">ADVISORY: Hallucination Disclaimer — Manual Review Required</td>
@@ -16524,8 +16524,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-50</code></td>
             <td class="col-domain">No Guardrails With Relevance Grounding Filters</td>
@@ -16535,8 +16535,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-51</code></td>
             <td class="col-domain">No Guardrails — Prompt Attack Filters Not Applicable</td>
@@ -16546,8 +16546,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-52</code></td>
             <td class="col-domain">Bedrock Lambda Functions on Current Runtimes</td>
@@ -16557,8 +16557,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-53</code></td>
             <td class="col-domain">No WAF Web ACLs — Injection Rules Not Applicable</td>
@@ -16568,8 +16568,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-54</code></td>
             <td class="col-domain">ADVISORY: Penetration Testing — Manual Review Required</td>
@@ -16583,8 +16583,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-55</code></td>
             <td class="col-domain">No Output Validation Functions Found</td>
@@ -16597,8 +16597,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-56</code></td>
             <td class="col-domain">No WAF ACLs — XSS Prevention Not Applicable</td>
@@ -16608,8 +16608,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-57</code></td>
             <td class="col-domain">ADVISORY: Output Encoding — Manual Review Required</td>
@@ -16622,8 +16622,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-58</code></td>
             <td class="col-domain">ADVISORY: Output Schema Validation — Manual Review Required</td>
@@ -16636,8 +16636,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-59</code></td>
             <td class="col-domain">No Guardrails — Topic Allowlist Not Applicable</td>
@@ -16647,8 +16647,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-60</code></td>
             <td class="col-domain">ADVISORY: Contextual Grounding for Off-Topic Prevention</td>
@@ -16660,12 +16660,12 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="low" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-61</code></td>
             <td class="col-domain">COULD NOT ASSESS: Knowledge Base Sync Schedule Check</td>
-            <td class="finding-details">This check could not be completed (error: An error occurred (AccessDeniedException) when calling the ListSchedules operation: User: arn:aws:sts::472057511786:assumed-role/aiml-security-mgmt-FinServSecurityAssessmentFunctio-pwj9by1swQWa/aiml-security-aiml-security-mgmt-FinServAssessment is not authorized to perform: scheduler:ListSchedules on resource: arn:aws:scheduler:us-east-1:472057511786:schedule/*/* because no identity-based policy allows the scheduler:ListSchedules action). The most common cause is a missing IAM permission for the assessment role; it may also indicate an unsupported region or an outdated botocore. This control was NOT assessed — verify the role's permissions and re-run, and assess this control manually until resolved.</td>
+            <td class="finding-details">This check could not be completed (error: An error occurred (AccessDeniedException) when calling the ListSchedules operation: User: arn:aws:sts::333333333333:assumed-role/aiml-security-mgmt-FinServSecurityAssessmentFunctio-pwj9by1swQWa/aiml-security-aiml-security-mgmt-FinServAssessment is not authorized to perform: scheduler:ListSchedules on resource: arn:aws:scheduler:us-east-1:333333333333:schedule/*/* because no identity-based policy allows the scheduler:ListSchedules action). The most common cause is a missing IAM permission for the assessment role; it may also indicate an unsupported region or an outdated botocore. This control was NOT assessed — verify the role's permissions and re-run, and assess this control manually until resolved.</td>
             <td class="resolution-text">1. Confirm the assessment role grants the actions this check requires (see the documented IAM permission set in the README).
 2. Confirm the service/feature is supported in the assessed region.
 3. Ensure botocore meets the version floor in requirements.txt.
@@ -16674,8 +16674,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity low">Low</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-62</code></td>
             <td class="col-domain">ADVISORY: Data Currency Disclaimer — Manual Review Required</td>
@@ -16687,8 +16687,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-63</code></td>
             <td class="col-domain">Foundation Model Lifecycle Management</td>
@@ -16698,8 +16698,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-65</code></td>
             <td class="col-domain">KB Data Source Buckets Missing S3 Event Notifications</td>
@@ -16712,8 +16712,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-66</code></td>
             <td class="col-domain">No AgentCore Runtimes Found</td>
@@ -16723,8 +16723,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="high" data-status="failed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="high" data-status="failed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-67</code></td>
             <td class="col-domain">Agent Action-Group Lambdas May Lack Transaction Thresholds</td>
@@ -16742,8 +16742,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-68</code></td>
             <td class="col-domain">API Gateway Request Body Size Limits — Not Applicable</td>
@@ -16753,8 +16753,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="472057511786" data-region="us-east-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="medium" data-status="passed" data-account="333333333333" data-region="us-east-1">
+            <td><code>333333333333</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-69</code></td>
             <td class="col-domain">Prompt Input Validation Functions Present</td>
@@ -16764,8 +16764,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="eu-west-1">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="eu-west-1">
+            <td><code>333333333333</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>FS-00</code></td>
             <td class="col-domain">FinServ Regional Scope Not Applicable</td>
@@ -16775,8 +16775,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="472057511786" data-region="ap-southeast-2">
-            <td><code>472057511786</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="333333333333" data-region="ap-southeast-2">
+            <td><code>333333333333</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>FS-00</code></td>
             <td class="col-domain">FinServ Regional Scope Not Applicable</td>
@@ -16786,8 +16786,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="us-east-1">
-            <td><code>230266523520</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="us-east-1">
+            <td><code>222222222222</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-00</code></td>
             <td class="col-domain">FinServ Regional Scope Not Applicable</td>
@@ -16797,8 +16797,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="eu-west-1">
-            <td><code>230266523520</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="eu-west-1">
+            <td><code>222222222222</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>FS-00</code></td>
             <td class="col-domain">FinServ Regional Scope Not Applicable</td>
@@ -16808,8 +16808,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="230266523520" data-region="ap-southeast-2">
-            <td><code>230266523520</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="222222222222" data-region="ap-southeast-2">
+            <td><code>222222222222</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>FS-00</code></td>
             <td class="col-domain">FinServ Regional Scope Not Applicable</td>
diff --git a/sample-reports/security_assessment_single_account.html b/sample-reports/security_assessment_single_account.html
index 8a65452..4a3fbfd 100644
--- a/sample-reports/security_assessment_single_account.html
+++ b/sample-reports/security_assessment_single_account.html
@@ -214,7 +214,7 @@ <h3>By Service</h3>
 	            <nav class="nav-section industry-nav"><h3>By Industry</h3><a href="#finserv" class="nav-item industry-item"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#7C3AED" width="80" height="80"/><path fill="#FFF" d="M40 14 L66 26 L66 31 L14 31 L14 26 Z M20 35 h6 v23 h-6 z M37 35 h6 v23 h-6 z M54 35 h6 v23 h-6 z M14 62 h52 v5 h-52 z"/></svg></span> Financial Services<span class="count">3</span></a></nav>
 	            <div class="sidebar-footer">
 	                <p>Generated: June 20, 2026</p>
-	                <p>Account: 007564470903</p>
+	                <p>Account: 111111111111</p>
                 <p style="margin-top: 8px;"><a href="https://github.com/aws-samples/sample-aiml-security-assessment">GitHub Repository</a></p>
             </div>
         </aside>
@@ -224,7 +224,7 @@ <h3>By Service</h3>
                     <h2>Security Assessment Overview</h2>
                     <div class="page-header-meta">
                         <span><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><rect x="3" y="4" width="18" height="18" rx="2" ry="2"/><line x1="16" y1="2" x2="16" y2="6"/><line x1="8" y1="2" x2="8" y2="6"/><line x1="3" y1="10" x2="21" y2="10"/></svg>2026-06-20T01:48:33.485086</span>
-                        <span><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M20 21v-2a4 4 0 0 0-4-4H8a4 4 0 0 0-4 4v2"/><circle cx="12" cy="7" r="4"/></svg>Account: 007564470903 · 3 Regions</span>
+                        <span><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M20 21v-2a4 4 0 0 0-4-4H8a4 4 0 0 0-4 4v2"/><circle cx="12" cy="7" r="4"/></svg>Account: 111111111111 · 3 Regions</span>
                     </div>
                 </div>
                 <div class="metrics">
@@ -274,8 +274,8 @@ <h2>Security Assessment Overview</h2>
                     <div class="filter-group"><label>Status</label><select id="statusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
                     <button class="btn btn-reset" id="resetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
                 </div>
-                <div class="card"><div class="table-wrap"><table id="findingsTable"><thead><tr><th class="sortable" data-sort="account">Account ID</th><th class="sortable" data-sort="region">Region</th><th class="sortable" data-sort="checkId">Check ID</th><th class="sortable" data-sort="finding">Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th class="sortable" data-sort="severity">Severity</th><th class="sortable" data-sort="status">Status</th></tr></thead><tbody><tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+                <div class="card"><div class="table-wrap"><table id="findingsTable"><thead><tr><th class="sortable" data-sort="account">Account ID</th><th class="sortable" data-sort="region">Region</th><th class="sortable" data-sort="checkId">Check ID</th><th class="sortable" data-sort="finding">Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th class="sortable" data-sort="severity">Severity</th><th class="sortable" data-sort="status">Status</th></tr></thead><tbody><tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -285,8 +285,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -296,8 +296,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -307,8 +307,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -318,8 +318,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -333,8 +333,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -344,19 +344,19 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::007564470903:assumed-role/aiml-sec-007564470903-BedrockSecurityAssessmentFunc-188U9EAkRKkw/aiml-security-aiml-sec-007564470903-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:007564470903:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::111111111111:assumed-role/aiml-sec-111111111111-BedrockSecurityAssessmentFunc-188U9EAkRKkw/aiml-security-aiml-sec-111111111111-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:111111111111:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -366,8 +366,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -377,8 +377,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -388,8 +388,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -399,8 +399,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -410,8 +410,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -421,8 +421,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -432,8 +432,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -443,8 +443,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -458,8 +458,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -469,19 +469,19 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::007564470903:assumed-role/aiml-sec-007564470903-BedrockSecurityAssessmentFunc-188U9EAkRKkw/aiml-security-aiml-sec-007564470903-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:007564470903:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::111111111111:assumed-role/aiml-sec-111111111111-BedrockSecurityAssessmentFunc-188U9EAkRKkw/aiml-security-aiml-sec-111111111111-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:111111111111:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -491,8 +491,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -502,8 +502,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -513,8 +513,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -524,8 +524,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-01</code></td>
             <td class="col-domain">AmazonBedrockFullAccess role check</td>
@@ -536,8 +536,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -547,8 +547,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -558,8 +558,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -569,8 +569,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -580,8 +580,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -591,8 +591,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -602,8 +602,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -613,8 +613,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -624,8 +624,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -635,19 +635,19 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
-            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-007564470903-us-east-1' last accessed Bedrock on never</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-111111111111-us-east-1' last accessed Bedrock on never</td>
             <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -657,8 +657,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -668,8 +668,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -679,8 +679,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -690,8 +690,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -701,8 +701,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -712,8 +712,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -723,8 +723,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -734,8 +734,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -745,8 +745,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -756,8 +756,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -767,8 +767,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -778,8 +778,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -789,8 +789,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -800,8 +800,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -815,8 +815,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -826,19 +826,19 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::007564470903:assumed-role/aiml-sec-007564470903-BedrockSecurityAssessmentFunc-188U9EAkRKkw/aiml-security-aiml-sec-007564470903-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:007564470903:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::111111111111:assumed-role/aiml-sec-111111111111-BedrockSecurityAssessmentFunc-188U9EAkRKkw/aiml-security-aiml-sec-111111111111-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:111111111111:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -848,8 +848,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -859,8 +859,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -870,8 +870,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -881,8 +881,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -892,8 +892,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -903,8 +903,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -914,8 +914,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -925,8 +925,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -936,8 +936,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -947,8 +947,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -958,8 +958,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -969,8 +969,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -980,8 +980,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -991,8 +991,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -1002,8 +1002,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -1013,8 +1013,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -1024,8 +1024,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -1035,8 +1035,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -1046,8 +1046,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -1057,8 +1057,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -1068,8 +1068,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -1079,8 +1079,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -1090,8 +1090,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -1101,8 +1101,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -1112,8 +1112,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -1123,8 +1123,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -1134,8 +1134,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -1145,8 +1145,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -1156,8 +1156,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -1167,8 +1167,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -1178,8 +1178,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -1189,8 +1189,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -1200,8 +1200,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -1211,8 +1211,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -1222,8 +1222,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -1233,8 +1233,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -1244,8 +1244,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -1255,8 +1255,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -1266,8 +1266,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -1277,8 +1277,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -1288,8 +1288,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -1299,8 +1299,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -1310,8 +1310,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -1321,8 +1321,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -1332,8 +1332,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -1343,8 +1343,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -1354,8 +1354,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -1365,8 +1365,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -1376,8 +1376,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -1387,8 +1387,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -1398,8 +1398,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -1409,8 +1409,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -1420,8 +1420,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -1431,8 +1431,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -1442,8 +1442,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -1453,8 +1453,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -1464,8 +1464,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -1475,8 +1475,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker IAM Permissions Check</td>
@@ -1486,8 +1486,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -1497,8 +1497,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -1508,8 +1508,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -1519,8 +1519,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -1530,8 +1530,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -1541,8 +1541,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -1552,8 +1552,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -1563,8 +1563,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -1574,8 +1574,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -1585,8 +1585,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -1596,8 +1596,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -1607,8 +1607,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -1618,8 +1618,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -1629,8 +1629,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -1640,8 +1640,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -1651,8 +1651,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -1662,8 +1662,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -1673,8 +1673,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -1684,8 +1684,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -1695,8 +1695,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -1706,8 +1706,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -1717,8 +1717,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -1728,8 +1728,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -1739,8 +1739,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -1750,8 +1750,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -1761,8 +1761,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -1772,8 +1772,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -1783,8 +1783,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -1794,8 +1794,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -1805,8 +1805,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -1816,8 +1816,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -1827,8 +1827,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -1838,8 +1838,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -1849,8 +1849,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -1860,8 +1860,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -1871,8 +1871,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -1882,8 +1882,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -1893,8 +1893,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -1904,8 +1904,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -1915,8 +1915,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -1926,8 +1926,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -1937,8 +1937,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -1948,8 +1948,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -1959,8 +1959,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -1970,8 +1970,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -1981,8 +1981,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -1992,8 +1992,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -2003,8 +2003,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>AC-02</code></td>
             <td class="col-domain">AgentCore IAM Full Access Check</td>
@@ -2014,8 +2014,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>AC-03</code></td>
             <td class="col-domain">AgentCore Unused Permissions</td>
@@ -2025,8 +2025,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>AC-09</code></td>
             <td class="col-domain">AgentCore Service-Linked Role Missing</td>
@@ -2036,8 +2036,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -2047,8 +2047,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -2058,8 +2058,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -2069,8 +2069,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -2080,8 +2080,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -2091,8 +2091,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -2102,8 +2102,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -2113,8 +2113,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -2124,8 +2124,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -2135,8 +2135,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -2146,8 +2146,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-00</code></td>
             <td class="col-domain">FinServ Regional Scope Not Applicable</td>
@@ -2157,8 +2157,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>FS-00</code></td>
             <td class="col-domain">FinServ Regional Scope Not Applicable</td>
@@ -2168,8 +2168,8 @@ <h2>Security Assessment Overview</h2>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>FS-00</code></td>
             <td class="col-domain">FinServ Regional Scope Not Applicable</td>
@@ -2210,8 +2210,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
                     <div class="filter-group"><label>Status</label><select id="bedrockStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
                     <button class="btn btn-reset" id="bedrockResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
                 </div>
-                <div class="card"><div class="table-wrap"><table id="bedrockTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+                <div class="card"><div class="table-wrap"><table id="bedrockTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -2221,8 +2221,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -2232,8 +2232,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -2243,8 +2243,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -2254,8 +2254,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -2269,8 +2269,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -2280,19 +2280,19 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::007564470903:assumed-role/aiml-sec-007564470903-BedrockSecurityAssessmentFunc-188U9EAkRKkw/aiml-security-aiml-sec-007564470903-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:007564470903:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::111111111111:assumed-role/aiml-sec-111111111111-BedrockSecurityAssessmentFunc-188U9EAkRKkw/aiml-security-aiml-sec-111111111111-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:ap-southeast-2:111111111111:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -2302,8 +2302,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -2313,8 +2313,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -2324,8 +2324,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -2335,8 +2335,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -2346,8 +2346,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -2357,8 +2357,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -2368,8 +2368,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -2379,8 +2379,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -2394,8 +2394,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -2405,19 +2405,19 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::007564470903:assumed-role/aiml-sec-007564470903-BedrockSecurityAssessmentFunc-188U9EAkRKkw/aiml-security-aiml-sec-007564470903-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:007564470903:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::111111111111:assumed-role/aiml-sec-111111111111-BedrockSecurityAssessmentFunc-188U9EAkRKkw/aiml-security-aiml-sec-111111111111-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:eu-west-1:111111111111:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -2427,8 +2427,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -2438,8 +2438,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -2449,8 +2449,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -2460,8 +2460,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="passed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-01</code></td>
             <td class="col-domain">AmazonBedrockFullAccess role check</td>
@@ -2472,8 +2472,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -2483,8 +2483,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -2494,8 +2494,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="high" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-03</code></td>
             <td class="col-domain">Marketplace Subscription Access Check</td>
@@ -2505,8 +2505,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -2516,8 +2516,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -2527,8 +2527,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -2538,8 +2538,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -2549,8 +2549,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -2560,8 +2560,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -2571,19 +2571,19 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
-            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-007564470903-us-east-1' last accessed Bedrock on never</td>
+            <td class="finding-details">Role 'cdk-hnb659fds-lookup-role-111111111111-us-east-1' last accessed Bedrock on never</td>
             <td class="resolution-text">You can use last accessed information to refine your policies and allow access to only the services and actions that your IAM identities and policies use. This helps you to better adhere to the best practice of least privilege.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -2593,8 +2593,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -2604,8 +2604,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -2615,8 +2615,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -2626,8 +2626,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -2637,8 +2637,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -2648,8 +2648,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -2659,8 +2659,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -2670,8 +2670,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -2681,8 +2681,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>BR-14</code></td>
             <td class="col-domain">Stale Bedrock Access Check</td>
@@ -2692,8 +2692,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-02</code></td>
             <td class="col-domain">Amazon Bedrock private connectivity check</td>
@@ -2703,8 +2703,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-04</code></td>
             <td class="col-domain">Bedrock Model Invocation Logging Check</td>
@@ -2714,8 +2714,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-05</code></td>
             <td class="col-domain">Bedrock Guardrails Check</td>
@@ -2725,8 +2725,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-06</code></td>
             <td class="col-domain">Bedrock CloudTrail Logging Check</td>
@@ -2736,8 +2736,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-07</code></td>
             <td class="col-domain">Bedrock Prompt Management Check</td>
@@ -2751,8 +2751,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-08</code></td>
             <td class="col-domain">Bedrock Agent IAM Roles Check</td>
@@ -2762,19 +2762,19 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-09</code></td>
             <td class="col-domain">Bedrock Knowledge Base Encryption Check</td>
-            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::007564470903:assumed-role/aiml-sec-007564470903-BedrockSecurityAssessmentFunc-188U9EAkRKkw/aiml-security-aiml-sec-007564470903-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:007564470903:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
+            <td class="finding-details">Unable to check Bedrock Knowledge Base API: An error occurred (AccessDeniedException) when calling the ListKnowledgeBases operation: User: arn:aws:sts::111111111111:assumed-role/aiml-sec-111111111111-BedrockSecurityAssessmentFunc-188U9EAkRKkw/aiml-security-aiml-sec-111111111111-BedrockAssessment is not authorized to perform: bedrock:ListKnowledgeBases on resource: arn:aws:bedrock:us-east-1:111111111111:knowledge-base/* because no identity-based policy allows the bedrock:ListKnowledgeBases action</td>
             <td class="resolution-text">Verify your AWS credentials and permissions to access Bedrock Knowledge Bases, then retry the assessment.</td>
             <td class="reference-cell"><a href="https://docs.aws.amazon.com/bedrock/latest/userguide/encryption-kb.html" target="_blank" class="reference-btn" title="View AWS Documentation"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"/><polyline points="15 3 21 3 21 9"/><line x1="10" y1="14" x2="21" y2="3"/></svg></a></td>
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-10</code></td>
             <td class="col-domain">Bedrock Guardrail IAM Enforcement Check</td>
@@ -2784,8 +2784,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-11</code></td>
             <td class="col-domain">Bedrock Custom Model Encryption Check</td>
@@ -2795,8 +2795,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-12</code></td>
             <td class="col-domain">Bedrock Invocation Log Encryption Check</td>
@@ -2806,8 +2806,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="bedrock" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>BR-13</code></td>
             <td class="col-domain">Bedrock Flows Guardrails Check</td>
@@ -2828,8 +2828,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
                     <div class="filter-group"><label>Status</label><select id="sagemakerStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
                     <button class="btn btn-reset" id="sagemakerResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
                 </div>
-                <div class="card"><div class="table-wrap"><table id="sagemakerTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+                <div class="card"><div class="table-wrap"><table id="sagemakerTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -2839,8 +2839,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -2850,8 +2850,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -2861,8 +2861,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -2872,8 +2872,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -2883,8 +2883,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -2894,8 +2894,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -2905,8 +2905,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -2916,8 +2916,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -2927,8 +2927,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -2938,8 +2938,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -2949,8 +2949,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -2960,8 +2960,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -2971,8 +2971,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -2982,8 +2982,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -2993,8 +2993,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -3004,8 +3004,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -3015,8 +3015,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -3026,8 +3026,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -3037,8 +3037,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -3048,8 +3048,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -3059,8 +3059,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -3070,8 +3070,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -3081,8 +3081,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -3092,8 +3092,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -3103,8 +3103,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -3114,8 +3114,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -3125,8 +3125,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -3136,8 +3136,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -3147,8 +3147,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -3158,8 +3158,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -3169,8 +3169,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -3180,8 +3180,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -3191,8 +3191,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -3202,8 +3202,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -3213,8 +3213,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -3224,8 +3224,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -3235,8 +3235,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -3246,8 +3246,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -3257,8 +3257,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -3268,8 +3268,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -3279,8 +3279,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -3290,8 +3290,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -3301,8 +3301,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -3312,8 +3312,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -3323,8 +3323,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -3334,8 +3334,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -3345,8 +3345,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -3356,8 +3356,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -3367,8 +3367,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -3378,8 +3378,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -3389,8 +3389,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -3400,8 +3400,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -3411,8 +3411,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -3422,8 +3422,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="high" data-status="passed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker IAM Permissions Check</td>
@@ -3433,8 +3433,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-01</code></td>
             <td class="col-domain">SageMaker Internet Access Check</td>
@@ -3444,8 +3444,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-02</code></td>
             <td class="col-domain">SageMaker SSO Configuration Check</td>
@@ -3455,8 +3455,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-03</code></td>
             <td class="col-domain">Data Protection Check</td>
@@ -3466,8 +3466,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-04</code></td>
             <td class="col-domain">GuardDuty Enabled</td>
@@ -3477,8 +3477,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Model Registry Issue</td>
@@ -3488,8 +3488,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Feature Store Issue</td>
@@ -3499,8 +3499,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-05</code></td>
             <td class="col-domain">SageMaker Pipelines Issue</td>
@@ -3510,8 +3510,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-06</code></td>
             <td class="col-domain">SageMaker Clarify No Clarify Usage</td>
@@ -3521,8 +3521,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-07</code></td>
             <td class="col-domain">SageMaker Model Monitor No Model Monitoring</td>
@@ -3532,8 +3532,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-08</code></td>
             <td class="col-domain">Model Registry Registry Not Used</td>
@@ -3543,8 +3543,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-09</code></td>
             <td class="col-domain">SageMaker Notebook Root Access Check</td>
@@ -3554,8 +3554,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-10</code></td>
             <td class="col-domain">SageMaker Notebook VPC Deployment Check</td>
@@ -3565,8 +3565,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-11</code></td>
             <td class="col-domain">SageMaker Model Network Isolation Check</td>
@@ -3576,8 +3576,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-12</code></td>
             <td class="col-domain">SageMaker Endpoint Instance Count Check</td>
@@ -3587,8 +3587,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-13</code></td>
             <td class="col-domain">SageMaker Monitoring Network Isolation Check</td>
@@ -3598,8 +3598,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-14</code></td>
             <td class="col-domain">SageMaker Model Repository Access Check</td>
@@ -3609,8 +3609,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-15</code></td>
             <td class="col-domain">SageMaker Feature Store Encryption Check</td>
@@ -3620,8 +3620,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-16</code></td>
             <td class="col-domain">SageMaker Data Quality Job Encryption Check</td>
@@ -3631,8 +3631,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-17</code></td>
             <td class="col-domain">SageMaker Processing Job Encryption Check</td>
@@ -3642,8 +3642,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-18</code></td>
             <td class="col-domain">SageMaker Transform Job Encryption Check</td>
@@ -3653,8 +3653,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-19</code></td>
             <td class="col-domain">SageMaker Hyperparameter Tuning Job Encryption Check</td>
@@ -3664,8 +3664,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-20</code></td>
             <td class="col-domain">SageMaker Compilation Job Encryption Check</td>
@@ -3675,8 +3675,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-21</code></td>
             <td class="col-domain">SageMaker AutoML Job Network Isolation Check</td>
@@ -3686,8 +3686,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-22</code></td>
             <td class="col-domain">Model Approval Workflow Check</td>
@@ -3697,8 +3697,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="medium" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-23</code></td>
             <td class="col-domain">Model Drift Detection Check</td>
@@ -3708,8 +3708,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="low" data-status="passed" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-24</code></td>
             <td class="col-domain">A/B Testing and Shadow Deployment Check</td>
@@ -3719,8 +3719,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity low">Low</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="sagemaker" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>SM-25</code></td>
             <td class="col-domain">ML Lineage Tracking - Experiments Not Used</td>
@@ -3741,8 +3741,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
                     <div class="filter-group"><label>Status</label><select id="agentcoreStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div>
                     <button class="btn btn-reset" id="agentcoreResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button>
                 </div>
-                <div class="card"><div class="table-wrap"><table id="agentcoreTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+                <div class="card"><div class="table-wrap"><table id="agentcoreTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -3752,8 +3752,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -3763,8 +3763,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -3774,8 +3774,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -3785,8 +3785,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -3796,8 +3796,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -3807,8 +3807,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -3818,8 +3818,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -3829,8 +3829,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -3840,8 +3840,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -3851,8 +3851,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -3862,8 +3862,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -3873,8 +3873,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -3884,8 +3884,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -3895,8 +3895,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -3906,8 +3906,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -3917,8 +3917,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -3928,8 +3928,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -3939,8 +3939,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -3950,8 +3950,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -3961,8 +3961,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="high" data-status="passed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>AC-02</code></td>
             <td class="col-domain">AgentCore IAM Full Access Check</td>
@@ -3972,8 +3972,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity high">High</span></td>
             <td><span class="status success">Passed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>AC-03</code></td>
             <td class="col-domain">AgentCore Unused Permissions</td>
@@ -3983,8 +3983,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="007564470903" data-region="Global">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="medium" data-status="failed" data-account="111111111111" data-region="Global">
+            <td><code>111111111111</code></td>
             <td><code>Global</code></td>
             <td><code>AC-09</code></td>
             <td class="col-domain">AgentCore Service-Linked Role Missing</td>
@@ -3994,8 +3994,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity medium">Medium</span></td>
             <td><span class="status error">Failed</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-01</code></td>
             <td class="col-domain">AgentCore VPC Configuration Check</td>
@@ -4005,8 +4005,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-04</code></td>
             <td class="col-domain">AgentCore Observability Check</td>
@@ -4016,8 +4016,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-05</code></td>
             <td class="col-domain">AgentCore Encryption Check</td>
@@ -4027,8 +4027,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-06</code></td>
             <td class="col-domain">AgentCore Browser Tool Recording Check</td>
@@ -4038,8 +4038,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-07</code></td>
             <td class="col-domain">AgentCore Memory Configuration Check</td>
@@ -4049,8 +4049,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-13</code></td>
             <td class="col-domain">AgentCore Gateway Configuration Check</td>
@@ -4060,8 +4060,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-08</code></td>
             <td class="col-domain">AgentCore VPC Endpoints Check</td>
@@ -4071,8 +4071,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-10</code></td>
             <td class="col-domain">AgentCore Resource-Based Policies Check</td>
@@ -4082,8 +4082,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-11</code></td>
             <td class="col-domain">AgentCore Policy Engine Encryption Check</td>
@@ -4093,8 +4093,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+<tr data-service="agentcore" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>AC-12</code></td>
             <td class="col-domain">AgentCore Gateway Encryption Check</td>
@@ -4105,8 +4105,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="status warning">N/A</span></td>
         </tr></tbody></table></div></div>
             </section>
-            <section id="finserv" class="section"><div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#7C3AED" width="80" height="80"/><path fill="#FFF" d="M40 14 L66 26 L66 31 L14 31 L14 26 Z M20 35 h6 v23 h-6 z M37 35 h6 v23 h-6 z M54 35 h6 v23 h-6 z M14 62 h52 v5 h-52 z"/></svg></span>Financial Services GenAI Risk Findings</div><div class="muted" style="margin:-6px 0 10px;font-size:13px;">Scope: this assessment records findings against each resolved CloudFormation TargetRegions entry. These checks are based on <a href="https://aws.amazon.com/blogs/security/introducing-the-updated-aws-user-guide-to-governance-risk-and-compliance-for-responsible-ai-adoption/" target="_blank">the AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption</a>. Severities follow a documented Likelihood &times; Impact methodology (see docs).</div><div class="filter-bar"><div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="finservSearchInput"></div><div class="filter-group"><label>Region</label><select id="finservRegionFilter"><option value="">All Regions</option><option value="ap-southeast-2">ap-southeast-2</option><option value="eu-west-1">eu-west-1</option><option value="us-east-1">us-east-1</option></select></div><div class="filter-group"><label>Severity</label><select id="finservSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div><div class="filter-group"><label>Status</label><select id="finservStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div><button class="btn btn-reset" id="finservResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button></div><div class="card"><div class="table-wrap"><table id="finservTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="us-east-1">
-            <td><code>007564470903</code></td>
+            <section id="finserv" class="section"><div class="section-title"><span class="service-icon"><svg viewBox="0 0 80 80" xmlns="http://www.w3.org/2000/svg"><rect fill="#7C3AED" width="80" height="80"/><path fill="#FFF" d="M40 14 L66 26 L66 31 L14 31 L14 26 Z M20 35 h6 v23 h-6 z M37 35 h6 v23 h-6 z M54 35 h6 v23 h-6 z M14 62 h52 v5 h-52 z"/></svg></span>Financial Services GenAI Risk Findings</div><div class="muted" style="margin:-6px 0 10px;font-size:13px;">Scope: this assessment records findings against each resolved CloudFormation TargetRegions entry. These checks are based on <a href="https://aws.amazon.com/blogs/security/introducing-the-updated-aws-user-guide-to-governance-risk-and-compliance-for-responsible-ai-adoption/" target="_blank">the AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption</a>. Severities follow a documented Likelihood &times; Impact methodology (see docs).</div><div class="filter-bar"><div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="finservSearchInput"></div><div class="filter-group"><label>Region</label><select id="finservRegionFilter"><option value="">All Regions</option><option value="ap-southeast-2">ap-southeast-2</option><option value="eu-west-1">eu-west-1</option><option value="us-east-1">us-east-1</option></select></div><div class="filter-group"><label>Severity</label><select id="finservSeverityFilter"><option value="">All Severities</option><option value="high">High</option><option value="medium">Medium</option><option value="low">Low</option><option value="informational">Informational</option></select></div><div class="filter-group"><label>Status</label><select id="finservStatusFilter"><option value="">All Statuses</option><option value="failed">Failed</option><option value="passed">Passed</option><option value="n/a">N/A</option></select></div><button class="btn btn-reset" id="finservResetFilters"><svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M3 12a9 9 0 1 0 9-9 9.75 9.75 0 0 0-6.74 2.74L3 8"/><path d="M3 3v5h5"/></svg>Reset</button></div><div class="card"><div class="table-wrap"><table id="finservTable"><thead><tr><th>Account ID</th><th>Region</th><th>Check ID</th><th>Finding</th><th>Details</th><th>Resolution</th><th>Reference</th><th>Severity</th><th>Status</th></tr></thead><tbody><tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="us-east-1">
+            <td><code>111111111111</code></td>
             <td><code>us-east-1</code></td>
             <td><code>FS-00</code></td>
             <td class="col-domain">FinServ Regional Scope Not Applicable</td>
@@ -4116,8 +4116,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="eu-west-1">
-            <td><code>007564470903</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="eu-west-1">
+            <td><code>111111111111</code></td>
             <td><code>eu-west-1</code></td>
             <td><code>FS-00</code></td>
             <td class="col-domain">FinServ Regional Scope Not Applicable</td>
@@ -4127,8 +4127,8 @@ <h4 style="font-size: 14px; font-weight: 600; color: var(--text-2); margin-botto
             <td><span class="severity na">Informational</span></td>
             <td><span class="status warning">N/A</span></td>
         </tr>
-<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="007564470903" data-region="ap-southeast-2">
-            <td><code>007564470903</code></td>
+<tr data-service="finserv" data-severity="informational" data-status="n/a" data-account="111111111111" data-region="ap-southeast-2">
+            <td><code>111111111111</code></td>
             <td><code>ap-southeast-2</code></td>
             <td><code>FS-00</code></td>
             <td class="col-domain">FinServ Regional Scope Not Applicable</td>

From 797fb5ff54bd54a91bdd05d7886baa629c2d4b6c Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Fri, 19 Jun 2026 23:09:25 -0400
Subject: [PATCH 21/30] Apply Ruff formatting

---
 .../security/agentcore_assessments/app.py     |  45 ++-
 .../security/agentcore_assessments/schema.py  |  41 ++-
 .../security/bedrock_assessments/app.py       | 146 +++++++---
 .../security/bedrock_assessments/schema.py    |  41 ++-
 .../security/finserv_assessments/schema.py    |   4 +-
 .../report_template.py                        |  27 +-
 .../generate_consolidated_report/schema.py    |  39 ++-
 .../security/iam_permission_caching/app.py    | 212 ++++++++------
 .../security/iam_permission_caching/schema.py |  41 ++-
 .../functions/security/resolve_regions/app.py |   4 +-
 .../security/sagemaker_assessments/app.py     | 272 ++++++++++++------
 .../security/sagemaker_assessments/schema.py  |  41 ++-
 consolidate_html_reports.py                   |   6 +-
 sample-reports/scripts/capture_screenshots.py |  22 +-
 tests/test_agentcore_checks.py                |  20 +-
 tests/test_bedrock_checks.py                  |  85 +++---
 tests/test_consolidated_report.py             |   4 +-
 tests/test_sagemaker_checks.py                |  43 ++-
 tests/test_sagemaker_template_permissions.py  |   4 +-
 19 files changed, 717 insertions(+), 380 deletions(-)

diff --git a/aiml-security-assessment/functions/security/agentcore_assessments/app.py b/aiml-security-assessment/functions/security/agentcore_assessments/app.py
index 1793a40..ec68256 100644
--- a/aiml-security-assessment/functions/security/agentcore_assessments/app.py
+++ b/aiml-security-assessment/functions/security/agentcore_assessments/app.py
@@ -179,7 +179,9 @@ def generate_csv_report(findings: List[Dict[str, Any]]) -> str:
     return csv_content
 
 
-def write_to_s3(execution_id: str, csv_content: str, bucket_name: str, region: str = "") -> str:
+def write_to_s3(
+    execution_id: str, csv_content: str, bucket_name: str, region: str = ""
+) -> str:
     """
     Upload CSV report to S3.
 
@@ -2316,7 +2318,9 @@ def lambda_handler(event, context):
         ecr_client = boto3.client("ecr", config=boto3_config, region_name=region)
         logs_client = boto3.client("logs", config=boto3_config, region_name=region)
         xray_client = boto3.client("xray", config=boto3_config, region_name=region)
-        cloudwatch_client = boto3.client("cloudwatch", config=boto3_config, region_name=region)
+        cloudwatch_client = boto3.client(
+            "cloudwatch", config=boto3_config, region_name=region
+        )
 
         # Collect all findings
         all_findings = []
@@ -2334,8 +2338,14 @@ def lambda_handler(event, context):
         # not available in the primary region.
         if is_primary_region:
             global_checks = [
-                ("IAM Full Access", lambda: check_agentcore_full_access_roles(permission_cache)),
-                ("Stale Access", lambda: check_stale_agentcore_access(permission_cache)),
+                (
+                    "IAM Full Access",
+                    lambda: check_agentcore_full_access_roles(permission_cache),
+                ),
+                (
+                    "Stale Access",
+                    lambda: check_stale_agentcore_access(permission_cache),
+                ),
                 # AC-09 inspects a global IAM service-linked role, so it is also
                 # run once on the primary region rather than per scanned region.
                 ("Service-Linked Role", check_agentcore_service_linked_role),
@@ -2366,12 +2376,16 @@ def lambda_handler(event, context):
         # region's client if creation below fails.
         agentcore_client = None
         try:
-            agentcore_client = boto3.client("bedrock-agentcore-control", config=boto3_config, region_name=region)
+            agentcore_client = boto3.client(
+                "bedrock-agentcore-control", config=boto3_config, region_name=region
+            )
         except Exception as e:
             # The client could not even be constructed (e.g. the SDK in this
             # runtime does not know the service). This is the one case where the
             # region genuinely cannot be assessed.
-            logger.warning(f"Failed to initialize bedrock-agentcore-control client: {e}")
+            logger.warning(
+                f"Failed to initialize bedrock-agentcore-control client: {e}"
+            )
             agentcore_client = None
 
         if agentcore_client is not None:
@@ -2380,17 +2394,23 @@ def lambda_handler(event, context):
                 agentcore_client.list_agent_runtimes(maxResults=1)
                 logger.info("Successfully initialized bedrock-agentcore-control client")
             except EndpointConnectionError:
-                logger.info(f"AgentCore service not available in region {region}, skipping")
+                logger.info(
+                    f"AgentCore service not available in region {region}, skipping"
+                )
                 agentcore_client = None
             except ClientError as e:
                 error_code = e.response.get("Error", {}).get("Code", "")
                 if error_code in REGION_UNAVAILABLE_ERROR_CODES:
-                    logger.info(f"AgentCore not accessible in region {region} ({error_code}), skipping")
+                    logger.info(
+                        f"AgentCore not accessible in region {region} ({error_code}), skipping"
+                    )
                     agentcore_client = None
                 else:
                     # Service is reachable but returned another API error (e.g. access
                     # denied) — proceed; individual checks handle their own errors.
-                    logger.info(f"AgentCore client initialized (probe returned {error_code})")
+                    logger.info(
+                        f"AgentCore client initialized (probe returned {error_code})"
+                    )
             except Exception as e:
                 # An unexpected probe failure (e.g. a boto3/botocore SDK param or
                 # operation mismatch such as ParamValidationError/AttributeError)
@@ -2425,7 +2445,12 @@ def lambda_handler(event, context):
             s3_url = write_to_s3(execution_id, csv_content, BUCKET_NAME, region=region)
             return {
                 "statusCode": 200,
-                "body": json.dumps({"message": f"AgentCore not available in {region}", "s3_url": s3_url}),
+                "body": json.dumps(
+                    {
+                        "message": f"AgentCore not available in {region}",
+                        "s3_url": s3_url,
+                    }
+                ),
             }
 
         logger.info(
diff --git a/aiml-security-assessment/functions/security/agentcore_assessments/schema.py b/aiml-security-assessment/functions/security/agentcore_assessments/schema.py
index c2c4938..16a66d9 100644
--- a/aiml-security-assessment/functions/security/agentcore_assessments/schema.py
+++ b/aiml-security-assessment/functions/security/agentcore_assessments/schema.py
@@ -3,43 +3,59 @@
 from pydantic import BaseModel, Field, field_validator
 import re
 
+
 class SeverityEnum(str, Enum):
     HIGH = "High"
     MEDIUM = "Medium"
     LOW = "Low"
     INFORMATIONAL = "Informational"
 
+
 class StatusEnum(str, Enum):
     FAILED = "Failed"
     PASSED = "Passed"
     NA = "N/A"
 
+
 class Finding(BaseModel):
     """Represents a security finding with required fields and validations"""
-    Check_ID: str = Field(..., min_length=1, description="Unique check identifier (e.g., SM-01, BR-01, AC-01)")
+
+    Check_ID: str = Field(
+        ...,
+        min_length=1,
+        description="Unique check identifier (e.g., SM-01, BR-01, AC-01)",
+    )
     Finding: str = Field(..., min_length=1, description="The name/title of the finding")
-    Finding_Details: str = Field(..., min_length=1, description="Detailed description of the finding")
-    Resolution: str = Field(..., min_length=0, description="Steps to resolve the finding")
+    Finding_Details: str = Field(
+        ..., min_length=1, description="Detailed description of the finding"
+    )
+    Resolution: str = Field(
+        ..., min_length=0, description="Steps to resolve the finding"
+    )
     Reference: str = Field(..., description="Documentation reference URL")
     Severity: SeverityEnum = Field(..., description="Severity level of the finding")
     Status: StatusEnum = Field(..., description="Current status of the finding")
-    Region: str = Field(default="", description="AWS region where the finding was identified")
+    Region: str = Field(
+        default="", description="AWS region where the finding was identified"
+    )
 
     @field_validator("Check_ID")
     @classmethod
     def validate_check_id(cls, v):
         """Validate that Check_ID follows the pattern XX-NN (e.g., SM-01, BR-14, AC-05)"""
-        pattern = r'^[A-Z]{2,3}-\d{2}$'
+        pattern = r"^[A-Z]{2,3}-\d{2}$"
         if not re.match(pattern, v):
-            raise ValueError('Check_ID must follow pattern XX-NN (e.g., SM-01, BR-14, AC-05)')
+            raise ValueError(
+                "Check_ID must follow pattern XX-NN (e.g., SM-01, BR-14, AC-05)"
+            )
         return v
 
     @field_validator("Reference")
     @classmethod
     def validate_reference_url(cls, v):
         """Validate that reference URL starts with https://"""
-        if not str(v).startswith('https://'):
-            raise ValueError('Reference URL must start with https://')
+        if not str(v).startswith("https://"):
+            raise ValueError("Reference URL must start with https://")
         return v
 
     @field_validator("Severity")
@@ -47,7 +63,7 @@ def validate_reference_url(cls, v):
     def validate_severity(cls, v):
         """Validate that severity is one of the allowed values"""
         if v not in SeverityEnum.__members__.values():
-            raise ValueError('Severity must be one of the allowed values')
+            raise ValueError("Severity must be one of the allowed values")
         return v
 
     @field_validator("Status")
@@ -55,9 +71,10 @@ def validate_severity(cls, v):
     def validate_status(cls, v):
         """Validate that status is one of the allowed values"""
         if v not in StatusEnum.__members__.values():
-            raise ValueError('Status must be one of the allowed values')
+            raise ValueError("Status must be one of the allowed values")
         return v
 
+
 def create_finding(
     check_id: str,
     finding_name: str,
@@ -66,7 +83,7 @@ def create_finding(
     reference: str,
     severity: SeverityEnum,
     status: StatusEnum,
-    region: str = ""
+    region: str = "",
 ) -> Dict[str, Any]:
     """
     Create a validated finding object
@@ -95,6 +112,6 @@ def create_finding(
         Reference=reference,
         Severity=severity,
         Status=status,
-        Region=region
+        Region=region,
     )
     return dict(finding.model_dump())  # Convert to regular dictionary
diff --git a/aiml-security-assessment/functions/security/bedrock_assessments/app.py b/aiml-security-assessment/functions/security/bedrock_assessments/app.py
index 70e3430..d30008f 100644
--- a/aiml-security-assessment/functions/security/bedrock_assessments/app.py
+++ b/aiml-security-assessment/functions/security/bedrock_assessments/app.py
@@ -93,7 +93,11 @@ def _probe_bedrock_resource_list(probe_label: str, probe_func) -> Optional[bool]
             )
             return None
 
-        if code == "ValidationException" or "UnknownOperation" in error_text or "Unknown operation" in error_text:
+        if (
+            code == "ValidationException"
+            or "UnknownOperation" in error_text
+            or "Unknown operation" in error_text
+        ):
             logger.info(f"{probe_label} API not available in this region")
             return False
 
@@ -240,7 +244,9 @@ def get_permissions_cache(execution_id: str) -> Optional[Dict[str, Any]]:
         return None
 
 
-def check_marketplace_subscription_access(permission_cache, region: str = "") -> Dict[str, Any]:
+def check_marketplace_subscription_access(
+    permission_cache, region: str = ""
+) -> Dict[str, Any]:
     logger.debug("Starting check for overly permissive Marketplace subscription access")
     try:
         findings = {
@@ -618,7 +624,9 @@ def check_stale_bedrock_access(permission_cache, region: str = "") -> Dict[str,
         }
 
 
-def check_bedrock_full_access_roles(permission_cache, region: str = "") -> Dict[str, Any]:
+def check_bedrock_full_access_roles(
+    permission_cache, region: str = ""
+) -> Dict[str, Any]:
     """
     Check for roles with AmazonBedrockFullAccess policy using cached permissions
     """
@@ -837,7 +845,9 @@ def handle_aws_throttling(func, *args, **kwargs):
                 raise
 
 
-def check_bedrock_access_and_vpc_endpoints(permission_cache, region: str = "") -> Dict[str, Any]:
+def check_bedrock_access_and_vpc_endpoints(
+    permission_cache, region: str = ""
+) -> Dict[str, Any]:
     logger.debug("Starting check for Bedrock access and VPC endpoints")
     try:
         findings = {
@@ -967,7 +977,9 @@ def check_bedrock_guardrails(region: str = "") -> Dict[str, Any]:
             "csv_data": [],
         }
 
-        bedrock_client = boto3.client("bedrock", config=boto3_config, region_name=region)
+        bedrock_client = boto3.client(
+            "bedrock", config=boto3_config, region_name=region
+        )
 
         try:
             # List all guardrails
@@ -993,7 +1005,9 @@ def check_bedrock_guardrails(region: str = "") -> Dict[str, Any]:
                     )
                 )
             else:
-                bedrock_footprint_found = detect_bedrock_regional_footprint(region=region)
+                bedrock_footprint_found = detect_bedrock_regional_footprint(
+                    region=region
+                )
 
                 if bedrock_footprint_found is False:
                     findings["details"] = "No regional Bedrock resources found"
@@ -1100,7 +1114,9 @@ def check_bedrock_logging_configuration(region: str = "") -> Dict[str, Any]:
             )
             return findings
 
-        bedrock_client = boto3.client("bedrock", config=boto3_config, region_name=region)
+        bedrock_client = boto3.client(
+            "bedrock", config=boto3_config, region_name=region
+        )
 
         try:
             # Get current logging configuration
@@ -1232,7 +1248,9 @@ def check_bedrock_cloudtrail_logging(region: str = "") -> Dict[str, Any]:
             )
             return findings
 
-        cloudtrail_client = boto3.client("cloudtrail", config=boto3_config, region_name=region)
+        cloudtrail_client = boto3.client(
+            "cloudtrail", config=boto3_config, region_name=region
+        )
 
         try:
             # Get all trails
@@ -1379,7 +1397,9 @@ def check_bedrock_prompt_management(region: str = "") -> Dict[str, Any]:
             "csv_data": [],
         }
 
-        bedrock_client = boto3.client("bedrock-agent", config=boto3_config, region_name=region)
+        bedrock_client = boto3.client(
+            "bedrock-agent", config=boto3_config, region_name=region
+        )
 
         try:
             # List all prompts
@@ -1514,7 +1534,9 @@ def check_bedrock_knowledge_base_encryption(region: str = "") -> Dict[str, Any]:
             "csv_data": [],
         }
 
-        bedrock_agent_client = boto3.client("bedrock-agent", config=boto3_config, region_name=region)
+        bedrock_agent_client = boto3.client(
+            "bedrock-agent", config=boto3_config, region_name=region
+        )
 
         try:
             # List all knowledge bases
@@ -1643,7 +1665,9 @@ def check_bedrock_knowledge_base_encryption(region: str = "") -> Dict[str, Any]:
         }
 
 
-def check_bedrock_guardrail_iam_enforcement(permission_cache, region: str = "") -> Dict[str, Any]:
+def check_bedrock_guardrail_iam_enforcement(
+    permission_cache, region: str = ""
+) -> Dict[str, Any]:
     """
     Check if IAM policies enforce the use of specific guardrails via
     the bedrock:GuardrailIdentifier condition key
@@ -1657,7 +1681,9 @@ def check_bedrock_guardrail_iam_enforcement(permission_cache, region: str = "")
             "csv_data": [],
         }
 
-        bedrock_client = boto3.client("bedrock", config=boto3_config, region_name=region)
+        bedrock_client = boto3.client(
+            "bedrock", config=boto3_config, region_name=region
+        )
 
         # First check if any guardrails exist
         try:
@@ -1845,7 +1871,9 @@ def check_bedrock_custom_model_encryption(region: str = "") -> Dict[str, Any]:
             "csv_data": [],
         }
 
-        bedrock_client = boto3.client("bedrock", config=boto3_config, region_name=region)
+        bedrock_client = boto3.client(
+            "bedrock", config=boto3_config, region_name=region
+        )
 
         try:
             # List custom models
@@ -2003,7 +2031,9 @@ def check_bedrock_invocation_log_encryption(region: str = "") -> Dict[str, Any]:
             "csv_data": [],
         }
 
-        bedrock_client = boto3.client("bedrock", config=boto3_config, region_name=region)
+        bedrock_client = boto3.client(
+            "bedrock", config=boto3_config, region_name=region
+        )
         s3_client = boto3.client("s3", config=boto3_config, region_name=region)
 
         try:
@@ -2171,7 +2201,9 @@ def check_bedrock_flows_guardrails(region: str = "") -> Dict[str, Any]:
             "csv_data": [],
         }
 
-        bedrock_agent_client = boto3.client("bedrock-agent", config=boto3_config, region_name=region)
+        bedrock_agent_client = boto3.client(
+            "bedrock-agent", config=boto3_config, region_name=region
+        )
 
         try:
             # List all flows
@@ -2362,7 +2394,9 @@ def check_bedrock_agent_roles(permission_cache, region: str = "") -> Dict[str, A
             "csv_data": [],
         }
 
-        bedrock_client = boto3.client("bedrock-agent", config=boto3_config, region_name=region)
+        bedrock_client = boto3.client(
+            "bedrock-agent", config=boto3_config, region_name=region
+        )
 
         try:
             # Get all Bedrock agents
@@ -2571,7 +2605,9 @@ def get_current_utc_date():
     return datetime.now(timezone.utc).strftime("%Y/%m/%d")
 
 
-def write_to_s3(execution_id, csv_content: str, bucket_name: str, region: str = "") -> str:
+def write_to_s3(
+    execution_id, csv_content: str, bucket_name: str, region: str = ""
+) -> str:
     """
     Write CSV report to S3 bucket
     """
@@ -2628,12 +2664,16 @@ def lambda_handler(event, context):
         if is_primary_region:
             logger.info("Running global AmazonBedrockFullAccess check (BR-01)")
             all_findings.append(
-                check_bedrock_full_access_roles(permission_cache, region=GLOBAL_REGION_LABEL)
+                check_bedrock_full_access_roles(
+                    permission_cache, region=GLOBAL_REGION_LABEL
+                )
             )
 
             logger.info("Running global marketplace subscription access check (BR-03)")
             all_findings.append(
-                check_marketplace_subscription_access(permission_cache, region=GLOBAL_REGION_LABEL)
+                check_marketplace_subscription_access(
+                    permission_cache, region=GLOBAL_REGION_LABEL
+                )
             )
 
             logger.info("Running global stale Bedrock access check (BR-14)")
@@ -2648,7 +2688,9 @@ def lambda_handler(event, context):
         bedrock_unavailable = False
         unavailable_detail = ""
         try:
-            test_client = boto3.client("bedrock", config=boto3_config, region_name=region)
+            test_client = boto3.client(
+                "bedrock", config=boto3_config, region_name=region
+            )
             test_client.get_model_invocation_logging_configuration()
         except EndpointConnectionError:
             bedrock_unavailable = True
@@ -2661,31 +2703,41 @@ def lambda_handler(event, context):
             else:
                 # Service is reachable (e.g. ValidationException, AccessDenied) —
                 # proceed; individual checks handle their own errors.
-                logger.info(f"Bedrock availability probe returned {error_code}; proceeding with checks")
+                logger.info(
+                    f"Bedrock availability probe returned {error_code}; proceeding with checks"
+                )
 
         if bedrock_unavailable:
             logger.info(f"Bedrock service not available in region {region}, skipping")
-            all_findings.append({
-                "check_name": "Bedrock Service Availability",
-                "status": "N/A",
-                "details": f"Bedrock is not available in region {region}",
-                "csv_data": [
-                    create_finding(
-                        check_id="BR-00",
-                        finding_name="Bedrock Service Availability",
-                        finding_details=unavailable_detail,
-                        resolution="No action required. Bedrock is not deployed in this region.",
-                        reference="https://docs.aws.amazon.com/bedrock/latest/userguide/bedrock-regions.html",
-                        severity="Informational",
-                        status="N/A",
-                        region=region,
-                    )
-                ],
-            })
+            all_findings.append(
+                {
+                    "check_name": "Bedrock Service Availability",
+                    "status": "N/A",
+                    "details": f"Bedrock is not available in region {region}",
+                    "csv_data": [
+                        create_finding(
+                            check_id="BR-00",
+                            finding_name="Bedrock Service Availability",
+                            finding_details=unavailable_detail,
+                            resolution="No action required. Bedrock is not deployed in this region.",
+                            reference="https://docs.aws.amazon.com/bedrock/latest/userguide/bedrock-regions.html",
+                            severity="Informational",
+                            status="N/A",
+                            region=region,
+                        )
+                    ],
+                }
+            )
             csv_content = generate_csv_report(all_findings)
             bucket_name = os.environ.get("AIML_ASSESSMENT_BUCKET_NAME")
             s3_url = write_to_s3(execution_id, csv_content, bucket_name, region=region)
-            return {"statusCode": 200, "body": {"message": f"Bedrock not available in {region}", "report_url": s3_url}}
+            return {
+                "statusCode": 200,
+                "body": {
+                    "message": f"Bedrock not available in {region}",
+                    "report_url": s3_url,
+                },
+            }
 
         # Run regional checks using the cached permissions
         logger.info("Running Bedrock access and VPC endpoints check")
@@ -2707,11 +2759,15 @@ def lambda_handler(event, context):
         all_findings.append(bedrock_cloudtrail_findings)
 
         logger.info("Running Bedrock Prompt Management check")
-        bedrock_prompt_management_findings = check_bedrock_prompt_management(region=region)
+        bedrock_prompt_management_findings = check_bedrock_prompt_management(
+            region=region
+        )
         all_findings.append(bedrock_prompt_management_findings)
 
         logger.info("Running Bedrock agent IAM roles check")
-        bedrock_agent_roles_findings = check_bedrock_agent_roles(permission_cache, region=region)
+        bedrock_agent_roles_findings = check_bedrock_agent_roles(
+            permission_cache, region=region
+        )
         all_findings.append(bedrock_agent_roles_findings)
 
         logger.info("Running Bedrock Knowledge Base encryption check")
@@ -2725,11 +2781,15 @@ def lambda_handler(event, context):
         all_findings.append(guardrail_iam_findings)
 
         logger.info("Running Bedrock custom model encryption check")
-        custom_model_encryption_findings = check_bedrock_custom_model_encryption(region=region)
+        custom_model_encryption_findings = check_bedrock_custom_model_encryption(
+            region=region
+        )
         all_findings.append(custom_model_encryption_findings)
 
         logger.info("Running Bedrock invocation log encryption check")
-        invocation_log_encryption_findings = check_bedrock_invocation_log_encryption(region=region)
+        invocation_log_encryption_findings = check_bedrock_invocation_log_encryption(
+            region=region
+        )
         all_findings.append(invocation_log_encryption_findings)
 
         logger.info("Running Bedrock Flows guardrails check")
diff --git a/aiml-security-assessment/functions/security/bedrock_assessments/schema.py b/aiml-security-assessment/functions/security/bedrock_assessments/schema.py
index c2c4938..16a66d9 100644
--- a/aiml-security-assessment/functions/security/bedrock_assessments/schema.py
+++ b/aiml-security-assessment/functions/security/bedrock_assessments/schema.py
@@ -3,43 +3,59 @@
 from pydantic import BaseModel, Field, field_validator
 import re
 
+
 class SeverityEnum(str, Enum):
     HIGH = "High"
     MEDIUM = "Medium"
     LOW = "Low"
     INFORMATIONAL = "Informational"
 
+
 class StatusEnum(str, Enum):
     FAILED = "Failed"
     PASSED = "Passed"
     NA = "N/A"
 
+
 class Finding(BaseModel):
     """Represents a security finding with required fields and validations"""
-    Check_ID: str = Field(..., min_length=1, description="Unique check identifier (e.g., SM-01, BR-01, AC-01)")
+
+    Check_ID: str = Field(
+        ...,
+        min_length=1,
+        description="Unique check identifier (e.g., SM-01, BR-01, AC-01)",
+    )
     Finding: str = Field(..., min_length=1, description="The name/title of the finding")
-    Finding_Details: str = Field(..., min_length=1, description="Detailed description of the finding")
-    Resolution: str = Field(..., min_length=0, description="Steps to resolve the finding")
+    Finding_Details: str = Field(
+        ..., min_length=1, description="Detailed description of the finding"
+    )
+    Resolution: str = Field(
+        ..., min_length=0, description="Steps to resolve the finding"
+    )
     Reference: str = Field(..., description="Documentation reference URL")
     Severity: SeverityEnum = Field(..., description="Severity level of the finding")
     Status: StatusEnum = Field(..., description="Current status of the finding")
-    Region: str = Field(default="", description="AWS region where the finding was identified")
+    Region: str = Field(
+        default="", description="AWS region where the finding was identified"
+    )
 
     @field_validator("Check_ID")
     @classmethod
     def validate_check_id(cls, v):
         """Validate that Check_ID follows the pattern XX-NN (e.g., SM-01, BR-14, AC-05)"""
-        pattern = r'^[A-Z]{2,3}-\d{2}$'
+        pattern = r"^[A-Z]{2,3}-\d{2}$"
         if not re.match(pattern, v):
-            raise ValueError('Check_ID must follow pattern XX-NN (e.g., SM-01, BR-14, AC-05)')
+            raise ValueError(
+                "Check_ID must follow pattern XX-NN (e.g., SM-01, BR-14, AC-05)"
+            )
         return v
 
     @field_validator("Reference")
     @classmethod
     def validate_reference_url(cls, v):
         """Validate that reference URL starts with https://"""
-        if not str(v).startswith('https://'):
-            raise ValueError('Reference URL must start with https://')
+        if not str(v).startswith("https://"):
+            raise ValueError("Reference URL must start with https://")
         return v
 
     @field_validator("Severity")
@@ -47,7 +63,7 @@ def validate_reference_url(cls, v):
     def validate_severity(cls, v):
         """Validate that severity is one of the allowed values"""
         if v not in SeverityEnum.__members__.values():
-            raise ValueError('Severity must be one of the allowed values')
+            raise ValueError("Severity must be one of the allowed values")
         return v
 
     @field_validator("Status")
@@ -55,9 +71,10 @@ def validate_severity(cls, v):
     def validate_status(cls, v):
         """Validate that status is one of the allowed values"""
         if v not in StatusEnum.__members__.values():
-            raise ValueError('Status must be one of the allowed values')
+            raise ValueError("Status must be one of the allowed values")
         return v
 
+
 def create_finding(
     check_id: str,
     finding_name: str,
@@ -66,7 +83,7 @@ def create_finding(
     reference: str,
     severity: SeverityEnum,
     status: StatusEnum,
-    region: str = ""
+    region: str = "",
 ) -> Dict[str, Any]:
     """
     Create a validated finding object
@@ -95,6 +112,6 @@ def create_finding(
         Reference=reference,
         Severity=severity,
         Status=status,
-        Region=region
+        Region=region,
     )
     return dict(finding.model_dump())  # Convert to regular dictionary
diff --git a/aiml-security-assessment/functions/security/finserv_assessments/schema.py b/aiml-security-assessment/functions/security/finserv_assessments/schema.py
index d55425e..22a4ed7 100644
--- a/aiml-security-assessment/functions/security/finserv_assessments/schema.py
+++ b/aiml-security-assessment/functions/security/finserv_assessments/schema.py
@@ -40,7 +40,9 @@ class Finding(BaseModel):
     Reference: str = Field(..., description="Documentation reference URL")
     Severity: SeverityEnum = Field(..., description="Severity level of the finding")
     Status: StatusEnum = Field(..., description="Current status of the finding")
-    Region: str = Field(default="", description="AWS region where the finding was identified")
+    Region: str = Field(
+        default="", description="AWS region where the finding was identified"
+    )
     Compliance_Frameworks: str = Field(
         default="",
         description=(
diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py b/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
index fa8523a..27cf527 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/report_template.py
@@ -797,10 +797,7 @@ def generate_html_report(
     num_real_regions = len(regions) if regions else 0
     if num_real_regions + (1 if has_global else 0) > 1:
         region_options = "".join(
-            [
-                f'<option value="{r}">{r}</option>'
-                for r in sorted(regions or [])
-            ]
+            [f'<option value="{r}">{r}</option>' for r in sorted(regions or [])]
         )
         if has_global:
             region_options += '<option value="Global">Global</option>'
@@ -888,7 +885,9 @@ def generate_html_report(
         sidebar_subtitle = "Assessment Report"
         account_info = f"Account: {account_id or 'Unknown'}"
         if num_regions > 1:
-            header_account_info = f"Account: {account_id or 'Unknown'} · {num_regions} Regions"
+            header_account_info = (
+                f"Account: {account_id or 'Unknown'} · {num_regions} Regions"
+            )
             findings_sub = f"Across {num_regions} regions"
             security_checks_sub = f"Evaluated across {num_regions} regions"
         else:
@@ -907,21 +906,23 @@ def generate_html_report(
         region_metrics_html = ""
         for reg in sorted(regions):
             reg_findings = [
-                f for f in all_findings
-                if f.get("region", f.get("Region", "")) == reg
+                f for f in all_findings if f.get("region", f.get("Region", "")) == reg
             ]
             reg_high = sum(
-                1 for f in reg_findings
+                1
+                for f in reg_findings
                 if f.get("severity", f.get("Severity", "")).lower() == "high"
                 and f.get("status", f.get("Status", "")).lower() == "failed"
             )
             reg_medium = sum(
-                1 for f in reg_findings
+                1
+                for f in reg_findings
                 if f.get("severity", f.get("Severity", "")).lower() == "medium"
                 and f.get("status", f.get("Status", "")).lower() == "failed"
             )
             reg_low = sum(
-                1 for f in reg_findings
+                1
+                for f in reg_findings
                 if f.get("severity", f.get("Severity", "")).lower() == "low"
                 and f.get("status", f.get("Status", "")).lower() == "failed"
             )
@@ -997,7 +998,7 @@ def generate_html_report(
             + '<span style="font-size: 13px; font-weight: 500;">Financial Services GenAI Risk</span></div></div></div>'
         )
         finserv_scope_source = (
-            f' Financial Services GenAI Risk checks are based on '
+            f" Financial Services GenAI Risk checks are based on "
             f'<a href="{FINSERV_GUIDE_URL}" target="_blank">the AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption</a>.'
         )
         finserv_section = (
@@ -1007,7 +1008,7 @@ def generate_html_report(
             + "Financial Services GenAI Risk Findings</div>"
             '<div class="muted" style="margin:-6px 0 10px;font-size:13px;">Scope: this assessment records findings against each resolved CloudFormation TargetRegions entry. These checks are based on '
             f'<a href="{FINSERV_GUIDE_URL}" target="_blank">the AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption</a>. '
-            'Severities follow a documented Likelihood &times; Impact methodology (see docs).</div>'
+            "Severities follow a documented Likelihood &times; Impact methodology (see docs).</div>"
             '<div class="filter-bar">'
             '<div class="filter-group"><label>Search</label><input type="text" placeholder="Search findings..." id="finservSearchInput"></div>'
             + finserv_account_filter
@@ -1107,7 +1108,7 @@ def generate_html_report(
             '<span style="font-size: 13px; font-weight: 500;">Amazon Bedrock AgentCore</span></div>'
             + "</div>"
             + finserv_scope_industry_block
-            + '<p style=',
+            + "<p style=",
             1,
         )
         rendered_html = rendered_html.replace(
diff --git a/aiml-security-assessment/functions/security/generate_consolidated_report/schema.py b/aiml-security-assessment/functions/security/generate_consolidated_report/schema.py
index 6234877..4af83ee 100644
--- a/aiml-security-assessment/functions/security/generate_consolidated_report/schema.py
+++ b/aiml-security-assessment/functions/security/generate_consolidated_report/schema.py
@@ -1,46 +1,59 @@
 from enum import Enum
 from pydantic import BaseModel, Field, validator
 
+
 class SeverityEnum(str, Enum):
     HIGH = "High"
     MEDIUM = "Medium"
     LOW = "Low"
     INFORMATIONAL = "Informational"
 
+
 class StatusEnum(str, Enum):
     FAILED = "Failed"
     PASSED = "Passed"
     NA = "N/A"
 
+
 class Finding(BaseModel):
     """Represents a security finding with required fields and validations"""
+
     Finding: str = Field(..., min_length=1, description="The name/title of the finding")
-    Finding_Details: str = Field(..., min_length=1, description="Detailed description of the finding")
-    Resolution: str = Field(..., min_length=0, description="Steps to resolve the finding")
+    Finding_Details: str = Field(
+        ..., min_length=1, description="Detailed description of the finding"
+    )
+    Resolution: str = Field(
+        ..., min_length=0, description="Steps to resolve the finding"
+    )
     Reference: str = Field(..., description="Documentation reference URL")
     Severity: SeverityEnum = Field(..., description="Severity level of the finding")
     Status: StatusEnum = Field(..., description="Current status of the finding")
-    Region: str = Field(default="", description="AWS region where the finding was identified")
+    Region: str = Field(
+        default="", description="AWS region where the finding was identified"
+    )
 
-    @validator('Reference')
+    @validator("Reference")
     def validate_reference_url(cls, v):
         """Validate that reference URL starts with https://"""
-        if not str(v).startswith('https://'):
-            raise ValueError('Reference URL must start with https://')
+        if not str(v).startswith("https://"):
+            raise ValueError("Reference URL must start with https://")
         return v
-    @validator('Severity')
+
+    @validator("Severity")
     def validate_severity(cls, v):
         """Validate that severity is one of the allowed values"""
         if v not in SeverityEnum.__members__.values():
-            raise ValueError('Severity must be one of the allowed values')
+            raise ValueError("Severity must be one of the allowed values")
         return v
-    @validator('Status')
+
+    @validator("Status")
     def validate_status(cls, v):
         """Validate that status is one of the allowed values"""
         if v not in StatusEnum.__members__.values():
-            raise ValueError('Status must be one of the allowed values')
+            raise ValueError("Status must be one of the allowed values")
         return v
 
+
 def create_finding(
     finding_name: str,
     finding_details: str,
@@ -48,7 +61,7 @@ def create_finding(
     reference: str,
     severity: SeverityEnum,
     status: StatusEnum,
-    region: str = ""
+    region: str = "",
 ) -> dict:
     """
     Create a validated finding object
@@ -75,6 +88,6 @@ def create_finding(
         Reference=reference,
         Severity=severity,
         Status=status,
-        Region=region
+        Region=region,
     )
-    return dict(finding.model_dump())  # Convert to regular dictionary
\ No newline at end of file
+    return dict(finding.model_dump())  # Convert to regular dictionary
diff --git a/aiml-security-assessment/functions/security/iam_permission_caching/app.py b/aiml-security-assessment/functions/security/iam_permission_caching/app.py
index 8c1cde5..3359d75 100644
--- a/aiml-security-assessment/functions/security/iam_permission_caching/app.py
+++ b/aiml-security-assessment/functions/security/iam_permission_caching/app.py
@@ -12,9 +12,9 @@ def get_current_utc_date():
 
 # Configure boto3 with retries
 boto3_config = Config(
-    retries = dict(
-        max_attempts = 10,  # Maximum number of retries
-        mode = 'adaptive'  # Exponential backoff with adaptive mode
+    retries=dict(
+        max_attempts=10,  # Maximum number of retries
+        mode="adaptive",  # Exponential backoff with adaptive mode
     )
 )
 
@@ -22,54 +22,55 @@ def get_current_utc_date():
 logger = logging.getLogger()
 logger.setLevel(logging.ERROR)
 
+
 def write_permissions_to_s3(permission_cache, execution_id):
     """
     Write the IAM permissions cache to S3 as a JSON file
-    
+
     Args:
         permission_cache (IAMPermissionCache): The permission cache object
         s3_bucket (str): The name of the S3 bucket to write to
     """
     try:
         # Create S3 client with the same retry configuration
-        s3_client = boto3.client('s3', config=boto3_config)
-        
+        s3_client = boto3.client("s3", config=boto3_config)
+
         # Prepare the data to be written
         cache_data = {
-            'role_permissions': permission_cache.role_permissions,
-            'user_permissions': permission_cache.user_permissions,
-            'generated_at': datetime.now().isoformat()
+            "role_permissions": permission_cache.role_permissions,
+            "user_permissions": permission_cache.user_permissions,
+            "generated_at": datetime.now().isoformat(),
         }
-        
+
         # Convert to JSON string
         json_data = json.dumps(cache_data, default=str, indent=2)
-        
+
         # Define the S3 key (filename) - write to bucket root
-        s3_key = f'permissions_cache_{execution_id}.json'
-        s3_bucket = os.environ.get('AIML_ASSESSMENT_BUCKET_NAME')
+        s3_key = f"permissions_cache_{execution_id}.json"
+        s3_bucket = os.environ.get("AIML_ASSESSMENT_BUCKET_NAME")
 
         # Upload to S3
         s3_client.put_object(
-            Bucket=s3_bucket,
-            Key=s3_key,
-            Body=json_data,
-            ContentType='application/json'
+            Bucket=s3_bucket, Key=s3_key, Body=json_data, ContentType="application/json"
+        )
+
+        logger.info(
+            f"Successfully wrote permissions cache to s3://{s3_bucket}/{s3_key}"
         )
-        
-        logger.info(f"Successfully wrote permissions cache to s3://{s3_bucket}/{s3_key}")
         return s3_key
-        
+
     except Exception as e:
         logger.error(f"Error writing permissions cache to S3: {str(e)}", exc_info=True)
         raise
 
+
 class IAMPermissionCache:
     def __init__(self, iam_client):
         self.iam_client = iam_client
         self.role_permissions = {}
         self.user_permissions = {}
         self.policy_cache = {}
-        
+
     def initialize(self):
         """
         Get all IAM permissions and cache them
@@ -77,7 +78,7 @@ def initialize(self):
         logger.info("Initializing IAM permission cache")
         self._cache_role_permissions()
         self._cache_user_permissions()
-        
+
     def _get_policy_document(self, policy_arn, version_id):
         """
         Get policy document with caching
@@ -86,12 +87,13 @@ def _get_policy_document(self, policy_arn, version_id):
         if cache_key not in self.policy_cache:
             try:
                 response = self.iam_client.get_policy_version(
-                    PolicyArn=policy_arn,
-                    VersionId=version_id
+                    PolicyArn=policy_arn, VersionId=version_id
                 )
-                self.policy_cache[cache_key] = response['PolicyVersion']['Document']
+                self.policy_cache[cache_key] = response["PolicyVersion"]["Document"]
             except Exception as e:
-                logger.error(f"Error getting policy document for {policy_arn}: {str(e)}")
+                logger.error(
+                    f"Error getting policy document for {policy_arn}: {str(e)}"
+                )
                 return None
         return self.policy_cache[cache_key]
 
@@ -100,109 +102,142 @@ def _cache_role_permissions(self):
         Cache all role permissions
         """
         logger.info("Caching role permissions")
-        paginator = self.iam_client.get_paginator('list_roles')
+        paginator = self.iam_client.get_paginator("list_roles")
         for page in paginator.paginate():
-            for role in page['Roles']:
-                role_name = role['RoleName']
+            for role in page["Roles"]:
+                role_name = role["RoleName"]
                 self.role_permissions[role_name] = {
-                    'attached_policies': [],
-                    'inline_policies': []
+                    "attached_policies": [],
+                    "inline_policies": [],
                 }
-                
+
                 # Get attached policies
                 try:
-                    attached_policies = self.iam_client.list_attached_role_policies(RoleName=role_name)
-                    for policy in attached_policies['AttachedPolicies']:
-                        policy_arn = policy['PolicyArn']
+                    attached_policies = self.iam_client.list_attached_role_policies(
+                        RoleName=role_name
+                    )
+                    for policy in attached_policies["AttachedPolicies"]:
+                        policy_arn = policy["PolicyArn"]
                         try:
-                            policy_info = self.iam_client.get_policy(PolicyArn=policy_arn)['Policy']
-                            policy_doc = self._get_policy_document(policy_arn, policy_info['DefaultVersionId'])
+                            policy_info = self.iam_client.get_policy(
+                                PolicyArn=policy_arn
+                            )["Policy"]
+                            policy_doc = self._get_policy_document(
+                                policy_arn, policy_info["DefaultVersionId"]
+                            )
                             if policy_doc:
-                                self.role_permissions[role_name]['attached_policies'].append({
-                                    'name': policy['PolicyName'],
-                                    'arn': policy_arn,
-                                    'document': policy_doc
-                                })
+                                self.role_permissions[role_name][
+                                    "attached_policies"
+                                ].append(
+                                    {
+                                        "name": policy["PolicyName"],
+                                        "arn": policy_arn,
+                                        "document": policy_doc,
+                                    }
+                                )
                         except Exception as e:
                             logger.error(f"Error getting policy {policy_arn}: {str(e)}")
                 except Exception as e:
-                    logger.error(f"Error getting attached policies for role {role_name}: {str(e)}")
+                    logger.error(
+                        f"Error getting attached policies for role {role_name}: {str(e)}"
+                    )
 
                 # Get inline policies
                 try:
-                    inline_policies = self.iam_client.list_role_policies(RoleName=role_name)
-                    for policy_name in inline_policies['PolicyNames']:
+                    inline_policies = self.iam_client.list_role_policies(
+                        RoleName=role_name
+                    )
+                    for policy_name in inline_policies["PolicyNames"]:
                         try:
                             policy_doc = self.iam_client.get_role_policy(
-                                RoleName=role_name,
-                                PolicyName=policy_name
-                            )['PolicyDocument']
-                            self.role_permissions[role_name]['inline_policies'].append({
-                                'name': policy_name,
-                                'document': policy_doc
-                            })
+                                RoleName=role_name, PolicyName=policy_name
+                            )["PolicyDocument"]
+                            self.role_permissions[role_name]["inline_policies"].append(
+                                {"name": policy_name, "document": policy_doc}
+                            )
                         except Exception as e:
-                            logger.error(f"Error getting inline policy {policy_name}: {str(e)}")
+                            logger.error(
+                                f"Error getting inline policy {policy_name}: {str(e)}"
+                            )
                 except Exception as e:
-                    logger.error(f"Error getting inline policies for role {role_name}: {str(e)}")
+                    logger.error(
+                        f"Error getting inline policies for role {role_name}: {str(e)}"
+                    )
 
     def _cache_user_permissions(self):
         """
         Cache all user permissions
         """
         logger.info("Caching user permissions")
-        paginator = self.iam_client.get_paginator('list_users')
+        paginator = self.iam_client.get_paginator("list_users")
         for page in paginator.paginate():
-            for user in page['Users']:
-                user_name = user['UserName']
+            for user in page["Users"]:
+                user_name = user["UserName"]
                 self.user_permissions[user_name] = {
-                    'attached_policies': [],
-                    'inline_policies': []
+                    "attached_policies": [],
+                    "inline_policies": [],
                 }
-                
+
                 # Get attached policies
                 try:
-                    attached_policies = self.iam_client.list_attached_user_policies(UserName=user_name)
-                    for policy in attached_policies['AttachedPolicies']:
-                        policy_arn = policy['PolicyArn']
+                    attached_policies = self.iam_client.list_attached_user_policies(
+                        UserName=user_name
+                    )
+                    for policy in attached_policies["AttachedPolicies"]:
+                        policy_arn = policy["PolicyArn"]
                         try:
-                            policy_info = self.iam_client.get_policy(PolicyArn=policy_arn)['Policy']
-                            policy_doc = self._get_policy_document(policy_arn, policy_info['DefaultVersionId'])
+                            policy_info = self.iam_client.get_policy(
+                                PolicyArn=policy_arn
+                            )["Policy"]
+                            policy_doc = self._get_policy_document(
+                                policy_arn, policy_info["DefaultVersionId"]
+                            )
                             if policy_doc:
-                                self.user_permissions[user_name]['attached_policies'].append({
-                                    'name': policy['PolicyName'],
-                                    'arn': policy_arn,
-                                    'document': policy_doc
-                                })
+                                self.user_permissions[user_name][
+                                    "attached_policies"
+                                ].append(
+                                    {
+                                        "name": policy["PolicyName"],
+                                        "arn": policy_arn,
+                                        "document": policy_doc,
+                                    }
+                                )
                         except Exception as e:
                             logger.error(f"Error getting policy {policy_arn}: {str(e)}")
                 except Exception as e:
-                    logger.error(f"Error getting attached policies for user {user_name}: {str(e)}")
+                    logger.error(
+                        f"Error getting attached policies for user {user_name}: {str(e)}"
+                    )
 
                 # Get inline policies
                 try:
-                    inline_policies = self.iam_client.list_user_policies(UserName=user_name)
-                    for policy_name in inline_policies['PolicyNames']:
+                    inline_policies = self.iam_client.list_user_policies(
+                        UserName=user_name
+                    )
+                    for policy_name in inline_policies["PolicyNames"]:
                         try:
                             policy_doc = self.iam_client.get_user_policy(
-                                UserName=user_name,
-                                PolicyName=policy_name
-                            )['PolicyDocument']
-                            self.user_permissions[user_name]['inline_policies'].append({
-                                'name': policy_name,
-                                'document': policy_doc
-                            })
+                                UserName=user_name, PolicyName=policy_name
+                            )["PolicyDocument"]
+                            self.user_permissions[user_name]["inline_policies"].append(
+                                {"name": policy_name, "document": policy_doc}
+                            )
                         except Exception as e:
-                            logger.error(f"Error getting inline policy {policy_name}: {str(e)}")
+                            logger.error(
+                                f"Error getting inline policy {policy_name}: {str(e)}"
+                            )
                 except Exception as e:
-                    logger.error(f"Error getting inline policies for user {user_name}: {str(e)}")
-    
+                    logger.error(
+                        f"Error getting inline policies for user {user_name}: {str(e)}"
+                    )
+
+
 def lambda_handler(event, context):
     """
     Main Lambda handler
     """
     logger.info("Starting Bedrock security assessment")
-    iam_client = boto3.client('iam', config=boto3_config)
+    iam_client = boto3.client("iam", config=boto3_config)
     logger.info(event, context)
     try:
         # Initialize permission cache
@@ -213,13 +248,10 @@ def lambda_handler(event, context):
         s3_key = write_permissions_to_s3(permission_cache, execution_id)
 
         return {
-            'statusCode': 200,
-            'body': f'Successfully cached IAM permissions to {s3_key}'
+            "statusCode": 200,
+            "body": f"Successfully cached IAM permissions to {s3_key}",
         }
 
     except Exception as e:
         logger.error(f"Error in lambda_handler: {str(e)}", exc_info=True)
-        return {
-            'statusCode': 500,
-            'body': f'Error during security checks: {str(e)}'
-        }
+        return {"statusCode": 500, "body": f"Error during security checks: {str(e)}"}
diff --git a/aiml-security-assessment/functions/security/iam_permission_caching/schema.py b/aiml-security-assessment/functions/security/iam_permission_caching/schema.py
index 6515a38..ed2a321 100644
--- a/aiml-security-assessment/functions/security/iam_permission_caching/schema.py
+++ b/aiml-security-assessment/functions/security/iam_permission_caching/schema.py
@@ -1,45 +1,56 @@
 from enum import Enum
 from pydantic import BaseModel, Field, validator
 
+
 class SeverityEnum(str, Enum):
     HIGH = "High"
     MEDIUM = "Medium"
     LOW = "Low"
     INFORMATIONAL = "Informational"
 
+
 class StatusEnum(str, Enum):
     FAILED = "Failed"
     PASSED = "Passed"
     NA = "N/A"
 
+
 class Finding(BaseModel):
     """Represents a security finding with required fields and validations"""
+
     Finding: str = Field(..., min_length=1, description="The name/title of the finding")
-    Finding_Details: str = Field(..., min_length=1, description="Detailed description of the finding")
-    Resolution: str = Field(..., min_length=0, description="Steps to resolve the finding")
+    Finding_Details: str = Field(
+        ..., min_length=1, description="Detailed description of the finding"
+    )
+    Resolution: str = Field(
+        ..., min_length=0, description="Steps to resolve the finding"
+    )
     Reference: str = Field(..., description="Documentation reference URL")
     Severity: SeverityEnum = Field(..., description="Severity level of the finding")
     Status: StatusEnum = Field(..., description="Current status of the finding")
 
-    @validator('Reference')
+    @validator("Reference")
     def validate_reference_url(cls, v):
         """Validate that reference URL starts with https://"""
-        if not str(v).startswith('https://'):
-            raise ValueError('Reference URL must start with https://')
+        if not str(v).startswith("https://"):
+            raise ValueError("Reference URL must start with https://")
         return v
-    @validator('Severity')
+
+    @validator("Severity")
     def validate_severity(cls, v):
         """Validate that severity is one of the allowed values"""
         if v not in SeverityEnum.__members__.values():
-            raise ValueError('Severity must be one of the allowed values')
+            raise ValueError("Severity must be one of the allowed values")
         return v
-    @validator('Status')
+
+    @validator("Status")
     def validate_status(cls, v):
         """Validate that status is one of the allowed values"""
         if v not in StatusEnum.__members__.values():
-            raise ValueError('Status must be one of the allowed values')
+            raise ValueError("Status must be one of the allowed values")
         return v
 
+
 # Example usage:
 def create_finding(
     finding_name: str,
@@ -47,11 +58,11 @@ def create_finding(
     resolution: str,
     reference: str,
     severity: SeverityEnum,
-    status: StatusEnum
+    status: StatusEnum,
 ) -> Finding:
     """
     Create a validated finding object
-    
+
     Args:
         finding_name: Name of the finding
         finding_details: Detailed description
@@ -59,10 +70,10 @@ def create_finding(
         reference: Documentation URL
         severity: Severity level
         status: Current status
-    
+
     Returns:
         Finding: Validated finding object
-    
+
     Raises:
         ValidationError: If any field fails validation
     """
@@ -72,6 +83,6 @@ def create_finding(
         Resolution=resolution,
         Reference=reference,
         Severity=severity,
-        Status=status
+        Status=status,
     )
-    return dict(finding.model_dump())  # Convert to regular dictionary
\ No newline at end of file
+    return dict(finding.model_dump())  # Convert to regular dictionary
diff --git a/aiml-security-assessment/functions/security/resolve_regions/app.py b/aiml-security-assessment/functions/security/resolve_regions/app.py
index ccd3eb2..027b863 100644
--- a/aiml-security-assessment/functions/security/resolve_regions/app.py
+++ b/aiml-security-assessment/functions/security/resolve_regions/app.py
@@ -36,7 +36,9 @@ def get_available_regions():
 def resolve_regions():
     """Resolve target regions from environment variable."""
     target_regions = os.environ.get("TARGET_REGIONS", "").strip()
-    current_region = os.environ.get("AWS_REGION", os.environ.get("AWS_DEFAULT_REGION", "us-east-1"))
+    current_region = os.environ.get(
+        "AWS_REGION", os.environ.get("AWS_DEFAULT_REGION", "us-east-1")
+    )
 
     if not target_regions:
         return [current_region]
diff --git a/aiml-security-assessment/functions/security/sagemaker_assessments/app.py b/aiml-security-assessment/functions/security/sagemaker_assessments/app.py
index 68dc586..2946b20 100644
--- a/aiml-security-assessment/functions/security/sagemaker_assessments/app.py
+++ b/aiml-security-assessment/functions/security/sagemaker_assessments/app.py
@@ -110,7 +110,9 @@ def check_sagemaker_internet_access(region: str = "") -> Dict[str, Any]:
         total_resources_checked = 0
 
         # Create SageMaker client
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
 
         # Check Notebook Instances
         try:
@@ -270,7 +272,9 @@ def check_guardduty_enabled(region: str = "") -> Dict[str, Any]:
     }
 
     try:
-        guardduty_client = boto3.client("guardduty", config=boto3_config, region_name=region)
+        guardduty_client = boto3.client(
+            "guardduty", config=boto3_config, region_name=region
+        )
 
         # Get list of detectors in the current region
         detectors = guardduty_client.list_detectors()
@@ -333,7 +337,9 @@ def check_guardduty_enabled(region: str = "") -> Dict[str, Any]:
     return findings
 
 
-def check_sagemaker_iam_permissions(permission_cache, region: str = "") -> Dict[str, Any]:
+def check_sagemaker_iam_permissions(
+    permission_cache, region: str = ""
+) -> Dict[str, Any]:
     """
     Check SageMaker IAM permissions and stale access.
 
@@ -477,7 +483,9 @@ def check_sagemaker_sso_configuration(region: str = "") -> Dict[str, Any]:
         findings = {"csv_data": []}
 
         domains_without_sso = []
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
         paginator = sagemaker_client.get_paginator("list_domains")
 
         for page in paginator.paginate():
@@ -614,7 +622,9 @@ def check_sagemaker_data_protection(region: str = "") -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
 
         # Track resources with encryption issues
         resources_with_aws_managed_keys = []
@@ -849,7 +859,9 @@ def check_sagemaker_data_protection(region: str = "") -> Dict[str, Any]:
         }
 
 
-def check_sagemaker_mlops_utilization(permission_cache, region: str = "") -> Dict[str, Any]:
+def check_sagemaker_mlops_utilization(
+    permission_cache, region: str = ""
+) -> Dict[str, Any]:
     """
     Check if SageMaker MLOps features (Model Registry, Feature Store, and Pipelines)
     are being utilized properly
@@ -858,7 +870,9 @@ def check_sagemaker_mlops_utilization(permission_cache, region: str = "") -> Dic
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
         issues_found = []
 
         # Check Model Registry Usage
@@ -1077,7 +1091,9 @@ def check_sagemaker_clarify_usage(permission_cache, region: str = "") -> Dict[st
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
         issues_found = []
 
         try:
@@ -1173,7 +1189,9 @@ def check_sagemaker_clarify_usage(permission_cache, region: str = "") -> Dict[st
         }
 
 
-def check_sagemaker_model_monitor_usage(permission_cache, region: str = "") -> Dict[str, Any]:
+def check_sagemaker_model_monitor_usage(
+    permission_cache, region: str = ""
+) -> Dict[str, Any]:
     """
     Check if SageMaker Model Monitor is configured and actively monitoring models
     """
@@ -1187,7 +1205,9 @@ def check_sagemaker_model_monitor_usage(permission_cache, region: str = "") -> D
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
         issues_found = []
 
         try:
@@ -1287,7 +1307,9 @@ def check_sagemaker_notebook_root_access(region: str = "") -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
 
         notebooks_with_root = []
         notebooks_without_root = []
@@ -1395,7 +1417,9 @@ def check_sagemaker_notebook_vpc_deployment(region: str = "") -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
 
         notebooks_without_vpc = []
         notebooks_with_vpc = []
@@ -1509,7 +1533,9 @@ def check_sagemaker_model_network_isolation(region: str = "") -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
 
         models_without_isolation = []
         models_with_isolation = []
@@ -1640,7 +1666,9 @@ def check_sagemaker_endpoint_instance_count(region: str = "") -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
 
         endpoints_single_instance = []
         endpoints_multi_instance = []
@@ -1768,7 +1796,9 @@ def check_sagemaker_monitoring_network_isolation(region: str = "") -> Dict[str,
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
 
         schedules_without_isolation = []
         schedules_with_isolation = []
@@ -1891,7 +1921,9 @@ def check_sagemaker_model_container_repository(region: str = "") -> Dict[str, An
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
 
         models_platform_mode = []
         models_vpc_mode = []
@@ -2051,7 +2083,9 @@ def check_sagemaker_feature_store_encryption(region: str = "") -> Dict[str, Any]
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
 
         feature_groups_without_encryption = []
         feature_groups_with_encryption = []
@@ -2172,7 +2206,9 @@ def check_sagemaker_data_quality_encryption(region: str = "") -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
 
         jobs_without_encryption = []
         jobs_with_encryption = []
@@ -2286,7 +2322,9 @@ def check_sagemaker_processing_job_encryption(region: str = "") -> Dict[str, Any
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
 
         jobs_without_encryption = []
         jobs_with_encryption = []
@@ -2417,7 +2455,9 @@ def check_sagemaker_transform_job_encryption(region: str = "") -> Dict[str, Any]
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
 
         jobs_without_encryption = []
         jobs_with_encryption = []
@@ -2536,7 +2576,9 @@ def check_sagemaker_transform_job_encryption(region: str = "") -> Dict[str, Any]
         }
 
 
-def check_sagemaker_hyperparameter_tuning_encryption(region: str = "") -> Dict[str, Any]:
+def check_sagemaker_hyperparameter_tuning_encryption(
+    region: str = "",
+) -> Dict[str, Any]:
     """
     Check if SageMaker hyperparameter tuning jobs have volume encryption enabled.
     Aligns with AWS Security Hub control SageMaker.12
@@ -2545,7 +2587,9 @@ def check_sagemaker_hyperparameter_tuning_encryption(region: str = "") -> Dict[s
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
 
         jobs_without_encryption = []
         jobs_with_encryption = []
@@ -2680,7 +2724,9 @@ def check_sagemaker_compilation_job_encryption(region: str = "") -> Dict[str, An
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
 
         jobs_without_encryption = []
         jobs_with_encryption = []
@@ -2806,7 +2852,9 @@ def check_sagemaker_automl_network_isolation(region: str = "") -> Dict[str, Any]
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
 
         jobs_without_isolation = []
         jobs_with_isolation = []
@@ -2946,7 +2994,9 @@ def check_model_approval_workflow(region: str = "") -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
 
         issues_found = []
         groups_checked = 0
@@ -3096,7 +3146,9 @@ def check_model_drift_detection(region: str = "") -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
 
         endpoints_without_monitoring = []
         endpoints_with_monitoring = []
@@ -3279,7 +3331,9 @@ def check_ab_testing_shadow_deployment(region: str = "") -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
 
         single_variant_endpoints = []
         multi_variant_endpoints = []
@@ -3463,7 +3517,9 @@ def check_ml_lineage_tracking(region: str = "") -> Dict[str, Any]:
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
 
         experiments_found = False
         trials_found = False
@@ -3625,7 +3681,9 @@ def check_model_registry_usage(permission_cache, region: str = "") -> Dict[str,
     try:
         findings = {"csv_data": []}
 
-        sagemaker_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+        sagemaker_client = boto3.client(
+            "sagemaker", config=boto3_config, region_name=region
+        )
         issues_found = []
 
         try:
@@ -3834,7 +3892,9 @@ def get_current_utc_date():
     return datetime.now(timezone.utc).strftime("%Y/%m/%d")
 
 
-def write_to_s3(execution_id, csv_content: str, bucket_name: str, region: str = "") -> Dict[str, str]:
+def write_to_s3(
+    execution_id, csv_content: str, bucket_name: str, region: str = ""
+) -> Dict[str, str]:
     """
     Write CSV reports to S3 bucket
     """
@@ -3900,39 +3960,14 @@ def lambda_handler(event, context):
 
         # Verify SageMaker is available in this region
         try:
-            test_client = boto3.client("sagemaker", config=boto3_config, region_name=region)
+            test_client = boto3.client(
+                "sagemaker", config=boto3_config, region_name=region
+            )
             test_client.list_notebook_instances(MaxResults=1)
         except EndpointConnectionError:
             logger.info(f"SageMaker service not available in region {region}, skipping")
-            all_findings.append({
-                "check_name": "SageMaker Service Availability",
-                "status": "N/A",
-                "details": f"SageMaker is not available in region {region}",
-                "csv_data": [
-                    create_finding(
-                        check_id="SM-00",
-                        finding_name="SageMaker Service Availability",
-                        finding_details=f"Amazon SageMaker is not available in region {region}. No checks performed.",
-                        resolution="No action required. SageMaker is not deployed in this region.",
-                        reference="https://docs.aws.amazon.com/general/latest/gr/sagemaker.html",
-                        severity="Informational",
-                        status="N/A",
-                        region=region,
-                    )
-                ],
-            })
-            csv_content = generate_csv_report(all_findings)
-            bucket_name = os.environ.get("AIML_ASSESSMENT_BUCKET_NAME")
-            s3_url = write_to_s3(execution_id, csv_content, bucket_name, region=region)
-            return {"statusCode": 200, "body": {"message": f"SageMaker not available in {region}", "report_url": s3_url}}
-        except ClientError as e:
-            # A region that exists but is not enabled for the account surfaces as
-            # an auth/opt-in error rather than a connection failure. Treat it the
-            # same as "not available" instead of running every check against it.
-            error_code = e.response.get("Error", {}).get("Code", "")
-            if error_code in REGION_UNAVAILABLE_ERROR_CODES:
-                logger.info(f"SageMaker not accessible in region {region} ({error_code}), skipping")
-                all_findings.append({
+            all_findings.append(
+                {
                     "check_name": "SageMaker Service Availability",
                     "status": "N/A",
                     "details": f"SageMaker is not available in region {region}",
@@ -3940,25 +3975,76 @@ def lambda_handler(event, context):
                         create_finding(
                             check_id="SM-00",
                             finding_name="SageMaker Service Availability",
-                            finding_details=f"Amazon SageMaker is not available or not enabled in region {region} ({error_code}). No checks performed.",
-                            resolution="No action required if the region is intentionally disabled. Otherwise enable the region for this account.",
+                            finding_details=f"Amazon SageMaker is not available in region {region}. No checks performed.",
+                            resolution="No action required. SageMaker is not deployed in this region.",
                             reference="https://docs.aws.amazon.com/general/latest/gr/sagemaker.html",
                             severity="Informational",
                             status="N/A",
                             region=region,
                         )
                     ],
-                })
+                }
+            )
+            csv_content = generate_csv_report(all_findings)
+            bucket_name = os.environ.get("AIML_ASSESSMENT_BUCKET_NAME")
+            s3_url = write_to_s3(execution_id, csv_content, bucket_name, region=region)
+            return {
+                "statusCode": 200,
+                "body": {
+                    "message": f"SageMaker not available in {region}",
+                    "report_url": s3_url,
+                },
+            }
+        except ClientError as e:
+            # A region that exists but is not enabled for the account surfaces as
+            # an auth/opt-in error rather than a connection failure. Treat it the
+            # same as "not available" instead of running every check against it.
+            error_code = e.response.get("Error", {}).get("Code", "")
+            if error_code in REGION_UNAVAILABLE_ERROR_CODES:
+                logger.info(
+                    f"SageMaker not accessible in region {region} ({error_code}), skipping"
+                )
+                all_findings.append(
+                    {
+                        "check_name": "SageMaker Service Availability",
+                        "status": "N/A",
+                        "details": f"SageMaker is not available in region {region}",
+                        "csv_data": [
+                            create_finding(
+                                check_id="SM-00",
+                                finding_name="SageMaker Service Availability",
+                                finding_details=f"Amazon SageMaker is not available or not enabled in region {region} ({error_code}). No checks performed.",
+                                resolution="No action required if the region is intentionally disabled. Otherwise enable the region for this account.",
+                                reference="https://docs.aws.amazon.com/general/latest/gr/sagemaker.html",
+                                severity="Informational",
+                                status="N/A",
+                                region=region,
+                            )
+                        ],
+                    }
+                )
                 csv_content = generate_csv_report(all_findings)
                 bucket_name = os.environ.get("AIML_ASSESSMENT_BUCKET_NAME")
-                s3_url = write_to_s3(execution_id, csv_content, bucket_name, region=region)
-                return {"statusCode": 200, "body": {"message": f"SageMaker not available in {region}", "report_url": s3_url}}
+                s3_url = write_to_s3(
+                    execution_id, csv_content, bucket_name, region=region
+                )
+                return {
+                    "statusCode": 200,
+                    "body": {
+                        "message": f"SageMaker not available in {region}",
+                        "report_url": s3_url,
+                    },
+                }
             # Service is reachable but returned another API error (e.g. AccessDenied)
             # — proceed; individual checks handle their own errors.
-            logger.info(f"SageMaker availability probe returned {error_code}; proceeding with checks")
+            logger.info(
+                f"SageMaker availability probe returned {error_code}; proceeding with checks"
+            )
 
         logger.info("Running SageMaker internet access check")
-        sagemaker_internet_access_findings = check_sagemaker_internet_access(region=region)
+        sagemaker_internet_access_findings = check_sagemaker_internet_access(
+            region=region
+        )
         all_findings.append(sagemaker_internet_access_findings)
 
         logger.info("Running SageMaker SSO configuration check")
@@ -3966,7 +4052,9 @@ def lambda_handler(event, context):
         all_findings.append(sagemaker_sso_findings)
 
         logger.info("Running SageMaker data protection check")
-        sagemaker_data_protection_findings = check_sagemaker_data_protection(region=region)
+        sagemaker_data_protection_findings = check_sagemaker_data_protection(
+            region=region
+        )
         all_findings.append(sagemaker_data_protection_findings)
 
         logger.info("Running GuardDuty SageMaker monitoring check")
@@ -3974,15 +4062,21 @@ def lambda_handler(event, context):
         all_findings.append(guardduty_findings)
 
         logger.info("Running SageMaker MLOps features utilization check")
-        mlops_findings = check_sagemaker_mlops_utilization(permission_cache, region=region)
+        mlops_findings = check_sagemaker_mlops_utilization(
+            permission_cache, region=region
+        )
         all_findings.append(mlops_findings)
 
         logger.info("Running SageMaker Clarify usage check")
-        clarify_findings = check_sagemaker_clarify_usage(permission_cache, region=region)
+        clarify_findings = check_sagemaker_clarify_usage(
+            permission_cache, region=region
+        )
         all_findings.append(clarify_findings)
 
         logger.info("Running SageMaker Model Monitor usage check")
-        monitor_findings = check_sagemaker_model_monitor_usage(permission_cache, region=region)
+        monitor_findings = check_sagemaker_model_monitor_usage(
+            permission_cache, region=region
+        )
         all_findings.append(monitor_findings)
 
         logger.info("Running Model Registry usage check")
@@ -3998,36 +4092,52 @@ def lambda_handler(event, context):
         all_findings.append(notebook_vpc_findings)
 
         logger.info("Running SageMaker model network isolation check")
-        model_isolation_findings = check_sagemaker_model_network_isolation(region=region)
+        model_isolation_findings = check_sagemaker_model_network_isolation(
+            region=region
+        )
         all_findings.append(model_isolation_findings)
 
         logger.info("Running SageMaker endpoint instance count check")
-        endpoint_instance_findings = check_sagemaker_endpoint_instance_count(region=region)
+        endpoint_instance_findings = check_sagemaker_endpoint_instance_count(
+            region=region
+        )
         all_findings.append(endpoint_instance_findings)
 
         logger.info("Running SageMaker monitoring network isolation check")
-        monitoring_isolation_findings = check_sagemaker_monitoring_network_isolation(region=region)
+        monitoring_isolation_findings = check_sagemaker_monitoring_network_isolation(
+            region=region
+        )
         all_findings.append(monitoring_isolation_findings)
 
         logger.info("Running SageMaker model container repository check")
-        model_repository_findings = check_sagemaker_model_container_repository(region=region)
+        model_repository_findings = check_sagemaker_model_container_repository(
+            region=region
+        )
         all_findings.append(model_repository_findings)
 
         logger.info("Running SageMaker Feature Store encryption check")
-        feature_store_encryption_findings = check_sagemaker_feature_store_encryption(region=region)
+        feature_store_encryption_findings = check_sagemaker_feature_store_encryption(
+            region=region
+        )
         all_findings.append(feature_store_encryption_findings)
 
         logger.info("Running SageMaker data quality job encryption check")
-        data_quality_encryption_findings = check_sagemaker_data_quality_encryption(region=region)
+        data_quality_encryption_findings = check_sagemaker_data_quality_encryption(
+            region=region
+        )
         all_findings.append(data_quality_encryption_findings)
 
         # Additional AWS Security Hub Controls
         logger.info("Running SageMaker processing job encryption check (SageMaker.10)")
-        processing_job_encryption_findings = check_sagemaker_processing_job_encryption(region=region)
+        processing_job_encryption_findings = check_sagemaker_processing_job_encryption(
+            region=region
+        )
         all_findings.append(processing_job_encryption_findings)
 
         logger.info("Running SageMaker transform job encryption check (SageMaker.11)")
-        transform_job_encryption_findings = check_sagemaker_transform_job_encryption(region=region)
+        transform_job_encryption_findings = check_sagemaker_transform_job_encryption(
+            region=region
+        )
         all_findings.append(transform_job_encryption_findings)
 
         logger.info(
@@ -4047,7 +4157,9 @@ def lambda_handler(event, context):
         logger.info(
             "Running SageMaker AutoML job network isolation check (SageMaker.15)"
         )
-        automl_network_isolation_findings = check_sagemaker_automl_network_isolation(region=region)
+        automl_network_isolation_findings = check_sagemaker_automl_network_isolation(
+            region=region
+        )
         all_findings.append(automl_network_isolation_findings)
 
         # Model Governance Checks
diff --git a/aiml-security-assessment/functions/security/sagemaker_assessments/schema.py b/aiml-security-assessment/functions/security/sagemaker_assessments/schema.py
index c2c4938..16a66d9 100644
--- a/aiml-security-assessment/functions/security/sagemaker_assessments/schema.py
+++ b/aiml-security-assessment/functions/security/sagemaker_assessments/schema.py
@@ -3,43 +3,59 @@
 from pydantic import BaseModel, Field, field_validator
 import re
 
+
 class SeverityEnum(str, Enum):
     HIGH = "High"
     MEDIUM = "Medium"
     LOW = "Low"
     INFORMATIONAL = "Informational"
 
+
 class StatusEnum(str, Enum):
     FAILED = "Failed"
     PASSED = "Passed"
     NA = "N/A"
 
+
 class Finding(BaseModel):
     """Represents a security finding with required fields and validations"""
-    Check_ID: str = Field(..., min_length=1, description="Unique check identifier (e.g., SM-01, BR-01, AC-01)")
+
+    Check_ID: str = Field(
+        ...,
+        min_length=1,
+        description="Unique check identifier (e.g., SM-01, BR-01, AC-01)",
+    )
     Finding: str = Field(..., min_length=1, description="The name/title of the finding")
-    Finding_Details: str = Field(..., min_length=1, description="Detailed description of the finding")
-    Resolution: str = Field(..., min_length=0, description="Steps to resolve the finding")
+    Finding_Details: str = Field(
+        ..., min_length=1, description="Detailed description of the finding"
+    )
+    Resolution: str = Field(
+        ..., min_length=0, description="Steps to resolve the finding"
+    )
     Reference: str = Field(..., description="Documentation reference URL")
     Severity: SeverityEnum = Field(..., description="Severity level of the finding")
     Status: StatusEnum = Field(..., description="Current status of the finding")
-    Region: str = Field(default="", description="AWS region where the finding was identified")
+    Region: str = Field(
+        default="", description="AWS region where the finding was identified"
+    )
 
     @field_validator("Check_ID")
     @classmethod
     def validate_check_id(cls, v):
         """Validate that Check_ID follows the pattern XX-NN (e.g., SM-01, BR-14, AC-05)"""
-        pattern = r'^[A-Z]{2,3}-\d{2}$'
+        pattern = r"^[A-Z]{2,3}-\d{2}$"
         if not re.match(pattern, v):
-            raise ValueError('Check_ID must follow pattern XX-NN (e.g., SM-01, BR-14, AC-05)')
+            raise ValueError(
+                "Check_ID must follow pattern XX-NN (e.g., SM-01, BR-14, AC-05)"
+            )
         return v
 
     @field_validator("Reference")
     @classmethod
     def validate_reference_url(cls, v):
         """Validate that reference URL starts with https://"""
-        if not str(v).startswith('https://'):
-            raise ValueError('Reference URL must start with https://')
+        if not str(v).startswith("https://"):
+            raise ValueError("Reference URL must start with https://")
         return v
 
     @field_validator("Severity")
@@ -47,7 +63,7 @@ def validate_reference_url(cls, v):
     def validate_severity(cls, v):
         """Validate that severity is one of the allowed values"""
         if v not in SeverityEnum.__members__.values():
-            raise ValueError('Severity must be one of the allowed values')
+            raise ValueError("Severity must be one of the allowed values")
         return v
 
     @field_validator("Status")
@@ -55,9 +71,10 @@ def validate_severity(cls, v):
     def validate_status(cls, v):
         """Validate that status is one of the allowed values"""
         if v not in StatusEnum.__members__.values():
-            raise ValueError('Status must be one of the allowed values')
+            raise ValueError("Status must be one of the allowed values")
         return v
 
+
 def create_finding(
     check_id: str,
     finding_name: str,
@@ -66,7 +83,7 @@ def create_finding(
     reference: str,
     severity: SeverityEnum,
     status: StatusEnum,
-    region: str = ""
+    region: str = "",
 ) -> Dict[str, Any]:
     """
     Create a validated finding object
@@ -95,6 +112,6 @@ def create_finding(
         Reference=reference,
         Severity=severity,
         Status=status,
-        Region=region
+        Region=region,
     )
     return dict(finding.model_dump())  # Convert to regular dictionary
diff --git a/consolidate_html_reports.py b/consolidate_html_reports.py
index 1b21607..e0037bf 100644
--- a/consolidate_html_reports.py
+++ b/consolidate_html_reports.py
@@ -110,7 +110,11 @@ def consolidate_html_reports():
                             # Map CSV columns to finding structure
                             region = row.get("Region", "")
                             # "Global" tags IAM-only findings; not a scanned region.
-                            if region and region != GLOBAL_REGION_LABEL and "," not in region:
+                            if (
+                                region
+                                and region != GLOBAL_REGION_LABEL
+                                and "," not in region
+                            ):
                                 regions.add(region)
                             finding = {
                                 "account_id": account_id,
diff --git a/sample-reports/scripts/capture_screenshots.py b/sample-reports/scripts/capture_screenshots.py
index 7e5b080..bb66cea 100755
--- a/sample-reports/scripts/capture_screenshots.py
+++ b/sample-reports/scripts/capture_screenshots.py
@@ -91,23 +91,25 @@ def optimize_png(image_path: Path, max_size_kb: int = 300) -> None:
     img = Image.open(image_path)
 
     # Convert RGBA to RGB if needed (reduces size)
-    if img.mode == 'RGBA':
-        background = Image.new('RGB', img.size, (255, 255, 255))
+    if img.mode == "RGBA":
+        background = Image.new("RGB", img.size, (255, 255, 255))
         background.paste(img, mask=img.split()[3])  # Use alpha channel as mask
         img = background
 
     # Save with optimization
-    img.save(image_path, 'PNG', optimize=True)
+    img.save(image_path, "PNG", optimize=True)
 
     # Check file size
     file_size_kb = image_path.stat().st_size / 1024
 
     # If still too large, reduce quality by converting to JPEG
     if file_size_kb > max_size_kb:
-        jpeg_path = image_path.with_suffix('.jpg')
-        img.save(jpeg_path, 'JPEG', quality=JPEG_QUALITY, optimize=True)
+        jpeg_path = image_path.with_suffix(".jpg")
+        img.save(jpeg_path, "JPEG", quality=JPEG_QUALITY, optimize=True)
         image_path.unlink()  # Remove PNG
-        print(f"  Converted to JPEG: {jpeg_path.name} ({jpeg_path.stat().st_size / 1024:.1f} KB)")
+        print(
+            f"  Converted to JPEG: {jpeg_path.name} ({jpeg_path.stat().st_size / 1024:.1f} KB)"
+        )
         return jpeg_path
 
     print(f"  Optimized PNG: {image_path.name} ({file_size_kb:.1f} KB)")
@@ -135,7 +137,9 @@ def capture_screenshot(browser, screenshot_config: dict) -> Path:
     print(f"  Source: {screenshot_config['file']}")
 
     # Create a new page
-    page = browser.new_page(viewport={"width": VIEWPORT_WIDTH, "height": VIEWPORT_HEIGHT})
+    page = browser.new_page(
+        viewport={"width": VIEWPORT_WIDTH, "height": VIEWPORT_HEIGHT}
+    )
 
     # Navigate to the HTML file
     page.goto(f"file://{html_file.absolute()}")
@@ -143,7 +147,9 @@ def capture_screenshot(browser, screenshot_config: dict) -> Path:
     # Execute actions
     for action in screenshot_config["actions"]:
         if action["type"] == "wait":
-            page.wait_for_selector(action["selector"], timeout=action.get("timeout", 5000))
+            page.wait_for_selector(
+                action["selector"], timeout=action.get("timeout", 5000)
+            )
         elif action["type"] == "click":
             page.click(action["selector"])
         elif action["type"] == "scroll":
diff --git a/tests/test_agentcore_checks.py b/tests/test_agentcore_checks.py
index 24d8f2c..53b9a2a 100644
--- a/tests/test_agentcore_checks.py
+++ b/tests/test_agentcore_checks.py
@@ -669,12 +669,16 @@ def client_dispatch(service, *args, **kwargs):
                 return agentcore_mock
             return MagicMock()
 
-        with patch("agentcore_app.boto3.client", side_effect=client_dispatch), \
-                patch.object(agentcore_app, "get_permissions_cache", return_value={
-                    "role_permissions": {}, "user_permissions": {}
-                }), \
-                patch.object(agentcore_app, "generate_csv_report", side_effect=fake_csv), \
-                patch.object(agentcore_app, "write_to_s3", return_value="s3://b/r.csv"):
+        with (
+            patch("agentcore_app.boto3.client", side_effect=client_dispatch),
+            patch.object(
+                agentcore_app,
+                "get_permissions_cache",
+                return_value={"role_permissions": {}, "user_permissions": {}},
+            ),
+            patch.object(agentcore_app, "generate_csv_report", side_effect=fake_csv),
+            patch.object(agentcore_app, "write_to_s3", return_value="s3://b/r.csv"),
+        ):
             resp = agentcore_app.lambda_handler(event, None)
 
         return resp, captured.get("findings", [])
@@ -746,7 +750,9 @@ def test_unexpected_probe_error_proceeds_with_checks(self):
         try:
             from botocore.exceptions import ParamValidationError
 
-            probe_error = ParamValidationError(report="maxResults is not a valid parameter")
+            probe_error = ParamValidationError(
+                report="maxResults is not a valid parameter"
+            )
         except Exception:
             probe_error = TypeError("unexpected SDK signature")
 
diff --git a/tests/test_bedrock_checks.py b/tests/test_bedrock_checks.py
index 0a4df33..ac8f1f8 100644
--- a/tests/test_bedrock_checks.py
+++ b/tests/test_bedrock_checks.py
@@ -220,9 +220,7 @@ class TestBR04LoggingConfiguration:
 
     @patch("boto3.client")
     @patch("bedrock_app.detect_bedrock_regional_footprint", return_value=True)
-    def test_br04_logging_enabled_s3_returns_passed(
-        self, mock_footprint, mock_client
-    ):
+    def test_br04_logging_enabled_s3_returns_passed(self, mock_footprint, mock_client):
         check = bedrock_app.check_bedrock_logging_configuration
         mock_bedrock = MagicMock()
         mock_client.return_value = mock_bedrock
@@ -240,9 +238,7 @@ def test_br04_logging_enabled_s3_returns_passed(
 
     @patch("boto3.client")
     @patch("bedrock_app.detect_bedrock_regional_footprint", return_value=True)
-    def test_br04_logging_disabled_returns_failed(
-        self, mock_footprint, mock_client
-    ):
+    def test_br04_logging_disabled_returns_failed(self, mock_footprint, mock_client):
         check = bedrock_app.check_bedrock_logging_configuration
         mock_bedrock = MagicMock()
         mock_client.return_value = mock_bedrock
@@ -257,9 +253,7 @@ def test_br04_logging_disabled_returns_failed(
 
     @patch("boto3.client")
     @patch("bedrock_app.detect_bedrock_regional_footprint", return_value=False)
-    def test_br04_no_regional_footprint_returns_na(
-        self, mock_footprint, mock_client
-    ):
+    def test_br04_no_regional_footprint_returns_na(self, mock_footprint, mock_client):
         check = bedrock_app.check_bedrock_logging_configuration
         result = check(region="eu-west-1")
         findings = extract_csv_data(result)
@@ -322,9 +316,7 @@ def test_br05_no_guardrails_returns_failed(self, mock_client):
         mock_bedrock = MagicMock()
         mock_client.return_value = mock_bedrock
         mock_bedrock.list_guardrails.return_value = {"guardrails": []}
-        with patch(
-            "bedrock_app.detect_bedrock_regional_footprint", return_value=True
-        ):
+        with patch("bedrock_app.detect_bedrock_regional_footprint", return_value=True):
             result = check()
         findings = extract_csv_data(result)
         assert len(findings) >= 1
@@ -337,9 +329,7 @@ def test_br05_no_guardrails_and_no_regional_footprint_returns_na(self, mock_clie
         mock_bedrock = MagicMock()
         mock_client.return_value = mock_bedrock
         mock_bedrock.list_guardrails.return_value = {"guardrails": []}
-        with patch(
-            "bedrock_app.detect_bedrock_regional_footprint", return_value=False
-        ):
+        with patch("bedrock_app.detect_bedrock_regional_footprint", return_value=False):
             result = check(region="eu-west-3")
         findings = extract_csv_data(result)
         assert len(findings) >= 1
@@ -363,9 +353,7 @@ def test_br05_schema_valid(self, mock_client):
         mock_bedrock = MagicMock()
         mock_client.return_value = mock_bedrock
         mock_bedrock.list_guardrails.return_value = {"guardrails": []}
-        with patch(
-            "bedrock_app.detect_bedrock_regional_footprint", return_value=True
-        ):
+        with patch("bedrock_app.detect_bedrock_regional_footprint", return_value=True):
             result = check()
         for f in extract_csv_data(result):
             assert_finding_schema(f)
@@ -379,9 +367,7 @@ class TestBR06CloudTrailLogging:
 
     @patch("boto3.client")
     @patch("bedrock_app.detect_bedrock_regional_footprint", return_value=True)
-    def test_br06_trail_is_logging_returns_passed(
-        self, mock_footprint, mock_client
-    ):
+    def test_br06_trail_is_logging_returns_passed(self, mock_footprint, mock_client):
         check = bedrock_app.check_bedrock_cloudtrail_logging
         mock_ct = MagicMock()
         mock_client.return_value = mock_ct
@@ -422,9 +408,7 @@ def test_br06_no_trails_returns_failed(self, mock_footprint, mock_client):
 
     @patch("boto3.client")
     @patch("bedrock_app.detect_bedrock_regional_footprint", return_value=True)
-    def test_br06_trail_not_logging_returns_failed(
-        self, mock_footprint, mock_client
-    ):
+    def test_br06_trail_not_logging_returns_failed(self, mock_footprint, mock_client):
         check = bedrock_app.check_bedrock_cloudtrail_logging
         mock_ct = MagicMock()
         mock_client.return_value = mock_ct
@@ -444,9 +428,7 @@ def test_br06_trail_not_logging_returns_failed(
 
     @patch("boto3.client")
     @patch("bedrock_app.detect_bedrock_regional_footprint", return_value=False)
-    def test_br06_no_regional_footprint_returns_na(
-        self, mock_footprint, mock_client
-    ):
+    def test_br06_no_regional_footprint_returns_na(self, mock_footprint, mock_client):
         check = bedrock_app.check_bedrock_cloudtrail_logging
         result = check(region="eu-west-1")
         findings = extract_csv_data(result)
@@ -528,9 +510,7 @@ def test_br07_list_prompts_api_error_returns_na(self, mock_client):
         check = bedrock_app.check_bedrock_prompt_management
         mock_agent = MagicMock()
         mock_client.return_value = mock_agent
-        mock_agent.list_prompts.side_effect = Exception(
-            "InternalServerErrorException"
-        )
+        mock_agent.list_prompts.side_effect = Exception("InternalServerErrorException")
         result = check()
         findings = extract_csv_data(result)
         assert len(findings) >= 1
@@ -1078,9 +1058,7 @@ def test_br13_unknown_operation_returns_clean_message(self, mock_client):
         check = bedrock_app.check_bedrock_flows_guardrails
         mock_agent = MagicMock()
         mock_client.return_value = mock_agent
-        mock_agent.get_paginator.side_effect = Exception(
-            "UnknownOperationException"
-        )
+        mock_agent.get_paginator.side_effect = Exception("UnknownOperationException")
         result = check(region="us-west-1")
         findings = extract_csv_data(result)
         assert len(findings) >= 1
@@ -1159,10 +1137,17 @@ def fake_csv(findings):
         )
         mock_client.return_value = test_client
 
-        with patch.object(bedrock_app, "get_permissions_cache", return_value={
-            "role_permissions": {}, "user_permissions": {}
-        }), patch.object(bedrock_app, "generate_csv_report", side_effect=fake_csv), \
-                patch.object(bedrock_app, "write_to_s3", return_value="s3://bucket/report.csv"):
+        with (
+            patch.object(
+                bedrock_app,
+                "get_permissions_cache",
+                return_value={"role_permissions": {}, "user_permissions": {}},
+            ),
+            patch.object(bedrock_app, "generate_csv_report", side_effect=fake_csv),
+            patch.object(
+                bedrock_app, "write_to_s3", return_value="s3://bucket/report.csv"
+            ),
+        ):
             resp = bedrock_app.lambda_handler(event, None)
 
         return resp, captured.get("findings", [])
@@ -1220,10 +1205,15 @@ def fake_csv(findings):
         )
         mock_client.return_value = test_client
 
-        with patch.object(bedrock_app, "get_permissions_cache", return_value={
-            "role_permissions": {}, "user_permissions": {}
-        }), patch.object(bedrock_app, "generate_csv_report", side_effect=fake_csv), \
-                patch.object(bedrock_app, "write_to_s3", return_value="s3://b/r.csv"):
+        with (
+            patch.object(
+                bedrock_app,
+                "get_permissions_cache",
+                return_value={"role_permissions": {}, "user_permissions": {}},
+            ),
+            patch.object(bedrock_app, "generate_csv_report", side_effect=fake_csv),
+            patch.object(bedrock_app, "write_to_s3", return_value="s3://b/r.csv"),
+        ):
             resp = bedrock_app.lambda_handler(
                 _bedrock_event(region="me-south-1", region_index=1), None
             )
@@ -1251,10 +1241,15 @@ def fake_csv(findings):
         )
         mock_client.return_value = test_client
 
-        with patch.object(bedrock_app, "get_permissions_cache", return_value={
-            "role_permissions": {}, "user_permissions": {}
-        }), patch.object(bedrock_app, "generate_csv_report", side_effect=fake_csv), \
-                patch.object(bedrock_app, "write_to_s3", return_value="s3://b/r.csv"):
+        with (
+            patch.object(
+                bedrock_app,
+                "get_permissions_cache",
+                return_value={"role_permissions": {}, "user_permissions": {}},
+            ),
+            patch.object(bedrock_app, "generate_csv_report", side_effect=fake_csv),
+            patch.object(bedrock_app, "write_to_s3", return_value="s3://b/r.csv"),
+        ):
             resp = bedrock_app.lambda_handler(
                 _bedrock_event(region="us-east-1", region_index=0), None
             )
diff --git a/tests/test_consolidated_report.py b/tests/test_consolidated_report.py
index 16c8ac3..6d83d40 100644
--- a/tests/test_consolidated_report.py
+++ b/tests/test_consolidated_report.py
@@ -67,7 +67,9 @@ def fake_template(**kwargs):
             captured.update(kwargs)
             return "<html></html>"
 
-        monkeypatch.setattr(consolidated_app, "generate_report_from_template", fake_template)
+        monkeypatch.setattr(
+            consolidated_app, "generate_report_from_template", fake_template
+        )
 
         # Same global BR-01 finding written into two different region files.
         results = _build_results(
diff --git a/tests/test_sagemaker_checks.py b/tests/test_sagemaker_checks.py
index 923428a..09cd414 100644
--- a/tests/test_sagemaker_checks.py
+++ b/tests/test_sagemaker_checks.py
@@ -203,9 +203,7 @@ def test_sso_non_sso_domain_returns_failed(self, mock_client):
         mock_sm = MagicMock()
         mock_client.return_value = mock_sm
         mock_paginator = MagicMock()
-        mock_paginator.paginate.return_value = [
-            {"Domains": [{"DomainId": "d-123"}]}
-        ]
+        mock_paginator.paginate.return_value = [{"Domains": [{"DomainId": "d-123"}]}]
         mock_sm.get_paginator.return_value = mock_paginator
         mock_sm.describe_domain.return_value = {
             "DomainName": "test-domain",
@@ -1428,10 +1426,15 @@ def fake_csv(findings):
         )
         mock_client.return_value = test_client
 
-        with patch.object(sagemaker_app, "get_permissions_cache", return_value={
-            "role_permissions": {}, "user_permissions": {}
-        }), patch.object(sagemaker_app, "generate_csv_report", side_effect=fake_csv), \
-                patch.object(sagemaker_app, "write_to_s3", return_value="s3://b/r.csv"):
+        with (
+            patch.object(
+                sagemaker_app,
+                "get_permissions_cache",
+                return_value={"role_permissions": {}, "user_permissions": {}},
+            ),
+            patch.object(sagemaker_app, "generate_csv_report", side_effect=fake_csv),
+            patch.object(sagemaker_app, "write_to_s3", return_value="s3://b/r.csv"),
+        ):
             resp = sagemaker_app.lambda_handler(event, None)
 
         return resp, captured.get("findings", [])
@@ -1483,10 +1486,15 @@ def fake_csv(findings):
         )
         mock_client.return_value = test_client
 
-        with patch.object(sagemaker_app, "get_permissions_cache", return_value={
-            "role_permissions": {}, "user_permissions": {}
-        }), patch.object(sagemaker_app, "generate_csv_report", side_effect=fake_csv), \
-                patch.object(sagemaker_app, "write_to_s3", return_value="s3://b/r.csv"):
+        with (
+            patch.object(
+                sagemaker_app,
+                "get_permissions_cache",
+                return_value={"role_permissions": {}, "user_permissions": {}},
+            ),
+            patch.object(sagemaker_app, "generate_csv_report", side_effect=fake_csv),
+            patch.object(sagemaker_app, "write_to_s3", return_value="s3://b/r.csv"),
+        ):
             resp = sagemaker_app.lambda_handler(
                 _sagemaker_event(region="ap-east-1", region_index=1), None
             )
@@ -1514,10 +1522,15 @@ def fake_csv(findings):
         )
         mock_client.return_value = test_client
 
-        with patch.object(sagemaker_app, "get_permissions_cache", return_value={
-            "role_permissions": {}, "user_permissions": {}
-        }), patch.object(sagemaker_app, "generate_csv_report", side_effect=fake_csv), \
-                patch.object(sagemaker_app, "write_to_s3", return_value="s3://b/r.csv"):
+        with (
+            patch.object(
+                sagemaker_app,
+                "get_permissions_cache",
+                return_value={"role_permissions": {}, "user_permissions": {}},
+            ),
+            patch.object(sagemaker_app, "generate_csv_report", side_effect=fake_csv),
+            patch.object(sagemaker_app, "write_to_s3", return_value="s3://b/r.csv"),
+        ):
             resp = sagemaker_app.lambda_handler(
                 _sagemaker_event(region="us-east-1", region_index=0), None
             )
diff --git a/tests/test_sagemaker_template_permissions.py b/tests/test_sagemaker_template_permissions.py
index 381b6cf..17cd16f 100644
--- a/tests/test_sagemaker_template_permissions.py
+++ b/tests/test_sagemaker_template_permissions.py
@@ -30,7 +30,9 @@ def test_sagemaker_lambda_templates_include_required_actions():
     for template_path in TEMPLATE_PATHS:
         template_text = template_path.read_text(encoding="utf-8")
         missing_actions = [
-            action for action in REQUIRED_SAGEMAKER_ACTIONS if action not in template_text
+            action
+            for action in REQUIRED_SAGEMAKER_ACTIONS
+            if action not in template_text
         ]
         assert not missing_actions, (
             f"{template_path.name} is missing SageMaker Lambda permissions: "

From 6a35b3f48d408a13f0cd5cf3d8197be072b5cd8c Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Sat, 20 Jun 2026 09:31:59 -0400
Subject: [PATCH 22/30] Update project documentation and remove stale followups

---
 FOLLOWUPS.md            | 196 ----------------------------------------
 docs/CLEANUP.md         | 135 +++++++++++++++++++--------
 docs/DEVELOPER_GUIDE.md | 111 ++++++++++++++++-------
 docs/TROUBLESHOOTING.md | 129 +++++++++++++++++++-------
 4 files changed, 276 insertions(+), 295 deletions(-)
 delete mode 100644 FOLLOWUPS.md

diff --git a/FOLLOWUPS.md b/FOLLOWUPS.md
deleted file mode 100644
index 537ab51..0000000
--- a/FOLLOWUPS.md
+++ /dev/null
@@ -1,196 +0,0 @@
-# Follow-up items (deferred from PR #23 Round 3)
-
-> GitHub Issues are disabled on the fork `mehtadman87/sample-aiml-security-assessment`, so
-> deferred work is tracked here in-repo (task T1b.7). Promote to an upstream issue/PR when ready.
-
-## FU-1 — Evaluate adopting a tool-wide `CRITICAL` severity tier
-
-**Status:** Deferred (intentionally out of scope for Round 3).
-
-**Background.** The FinServ severity methodology
-([`docs/SECURITY_CHECKS_FINSERV_SEVERITY_METHODOLOGY.md`](./SECURITY_CHECKS_FINSERV_SEVERITY_METHODOLOGY.md))
-defines a Likelihood × Impact matrix mapped to the AWS Security Hub ASFF label set, which includes a
-**CRITICAL** band (the Impact=High × Likelihood=High cell). Round 3 **capped that cell at High** and
-did **not** introduce `Critical`, to keep the FinServ checks consistent with the upstream
-Bedrock/SageMaker/AgentCore checks (which have no Critical tier). The drift-guard
-(`tests/test_severity_register.py`) asserts no `Critical` is currently emitted.
-
-**Why it is a separate item.** Adopting `Critical` is a **tool-wide** change. Doing it for FinServ
-alone would make FinServ inconsistent with the other three services. A tool-wide rollout touches:
-- the shared `SeverityEnum` (each package's `schema.py`);
-- all four assessment Lambdas (re-score the I=High × L=High controls);
-- the report template severity filters/colors (`generate_consolidated_report/report_template.py`
-  and `consolidate_html_reports.py`);
-- every service's unit tests plus the FinServ drift-guard.
-
-**Decision needed.**
-1. Do we want a `CRITICAL` tier across the whole assessment?
-2. If yes, which controls qualify (e.g., full guardrail bypass enabling a regulatory breach;
-   unauthorized high-value autonomous financial action)?
-
-**References:** methodology §2 (label scale) and §6 (the deferred decision); ASFF severity —
-https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_Severity.html
-
----
-
-## FU-2 — Report UI design for FinServ / OWASP (REQ-8)
-
-Broader report UI re-design (top-page FinServ summary box placement, OWASP grouping, Risk
-Distribution treatment) is deferred to a separate PR per the reviewer's suggestion. Round 3 delivers
-FinServ as a functionally first-class service (REQ-1, Wave 2); the UI-design discussion is tracked
-here for a follow-up PR.
-
----
----
----
-
-## FU-3 — Shared-inventory refactor for the FinServ assessment Lambda (REQ-13 C3)
-
-**Status:** Deferred from Round 3.1 (Wave 5.5 task T5h.9). Classified **Should-Fix** (performance /
-scalability optimization), not a correctness blocker. Tracked here for a focused follow-up PR.
-
-### Background
-
-The FinServ Lambda (`finserv_assessments/app.py`) runs all 64 checks **sequentially in a single
-invocation** via `build_finserv_checks()`. There is no cross-check caching, so several checks
-independently re-enumerate the **same** account-wide inventories, and many then issue an N+1
-per-resource call on top. The Round-3.1 pre-release audit (the per-check AWS API inventory)
-identified the following duplicate full-account sweeps within one run:
-
-| Inventory (API) | Times enumerated | Checks performing the enumeration | Per-resource N+1 follow-up |
-| --- | --- | --- | --- |
-| `lambda:ListFunctions` | ~6× | FS-09, FS-52, FS-55, FS-58, FS-67, FS-69 | FS-09 `GetFunctionConcurrency` per function |
-| `bedrock:ListGuardrails` | ~9× | FS-27a, FS-28, FS-36, FS-38, FS-45, FS-47, FS-50, FS-51, FS-59 | `GetGuardrail` per guardrail in each check |
-| `bedrock:ListKnowledgeBases` | ~6× | FS-24, FS-31, FS-33, FS-48, FS-61, FS-65 | FS-31/33/65 `ListDataSources`/`GetDataSource` per KB |
-| `s3:ListBuckets` (full account) | ~3–4× | FS-21, FS-46 (full sweep); FS-33, FS-65 (KB data-source buckets) | `GetBucketVersioning`/`GetBucketTagging`/`GetBucketNotification` per bucket |
-| `wafv2:ListWebACLs` | 4× | FS-01, FS-53, FS-56, FS-68 | `GetWebACL` per ACL in each check |
-
-In small/empty accounts this is harmless (it is why the Wave-5 test account ran in ~3 minutes). In
-**large enterprise accounts** — thousands of Lambda functions, hundreds of S3 buckets, many
-guardrails/KBs/ACLs — the repeated full sweeps plus N+1 calls multiply API volume, drive adaptive
-retries/throttling (`Config(retries=adaptive)`), and inflate wall-clock time. This is the most
-likely driver of a slow run, and previously of a `States.Timeout`.
-
-### Why it was deferred (and why that is safe)
-
-1. **It is a large, regression-prone refactor.** It touches ~20 check functions and the way they
-   obtain AWS data, plus every corresponding mocked unit test (the per-check tests patch
-   `app.boto3.client`). Bundling that into a correctness-focused PR that "must be 100% sure"
-   (the reviewer's bar) trades correctness risk for a performance gain.
-2. **The blast-radius risk it is associated with (audit C2) is already mitigated in Round 3.1.**
-   A `Catch [States.ALL] → "FinServ Assessment Incomplete"` was added to the FinServ task in
-   `statemachine/assessments.asl.json`, and the FinServ Lambda `Timeout` was raised 600 → 900 s.
-   So even if the FinServ Lambda is slow or times out in a very large account, the consolidated
-   report is still generated with the other services' findings and a visible incomplete marker —
-   the failure no longer sinks the whole assessment.
-3. **It is purely an optimization** (Should-Fix). The disposition logic and severities are unchanged
-   by this work; nothing about the *correctness* of any finding depends on it.
-
-### Who is affected
-
-Customers running the FinServ assessment (`EnableFinServAssessment=true`) against accounts with large
-resource estates — primarily large enterprises. Symptoms: long FinServ Lambda duration, CloudWatch
-throttling/retry noise, and (pre-mitigation) the risk of a 900 s timeout. Small accounts are
-unaffected.
-
-### Proposed design
-
-Collect each shared inventory **once** at the start of `lambda_handler`, into a read-only context
-object, and pass it to the checks that need it — mirroring the existing `permission_cache` pattern
-(which is already injected via `functools.partial` in `build_finserv_checks()`).
-
-1. **Add a `ResourceInventory` collected once per invocation**, e.g.:
-
-   ```python
-   @dataclass
-   class ResourceInventory:
-       lambda_functions: list          # lambda:ListFunctions (+ concurrency map)
-       guardrails: list                # bedrock:ListGuardrails + GetGuardrail detail, keyed by id
-       knowledge_bases: list           # bedrock:ListKnowledgeBases (+ data sources per KB)
-       buckets: list                   # s3:ListBuckets
-       web_acls: list                  # wafv2:ListWebACLs + GetWebACL detail (REGIONAL)
-   ```
-
-   Each field is populated by one paginated enumeration (reuse `_paginate`). Per-resource detail
-   (e.g., `GetGuardrail`, `GetWebACL`) is fetched once and stored alongside, eliminating the N+1
-   repetition across checks.
-
-2. **Inject it like `permission_cache`.** In `build_finserv_checks(permission_cache, inventory)`,
-   bind the inventory to the relevant checks with `functools.partial`, so every registry entry
-   stays uniformly zero-arg and the handler loop is unchanged.
-
-3. **Make collection resilient.** A failure (e.g., `AccessDenied`) collecting one inventory must not
-   abort the others or the whole run. Per-inventory collection should be wrapped so a failed
-   inventory yields an explicit "unavailable" sentinel; checks that depend on an unavailable
-   inventory then emit `COULD_NOT_ASSESS` (consistent with `_is_access_error` handling today) rather
-   than a false `Failed`/`Passed`. Preserve the existing per-check `try/except` safety net.
-
-4. **Keep region/pagination semantics identical.** Same default-region clients, same `_paginate`
-   token handling; this is a call-site consolidation, not a behavior change.
-
-### Test strategy
-
-- Update the affected per-check unit tests to pass a constructed `ResourceInventory` (or a partial)
-  instead of patching `boto3.client` for the enumeration calls. Checks that still make non-inventory
-  calls keep their existing mocks.
-- Add tests for the collector itself: one enumeration per inventory; pagination; and the
-  per-inventory failure path producing the "unavailable" sentinel (→ `COULD_NOT_ASSESS` downstream).
-- **Behavior-preserving guarantee:** every existing disposition test (Passed/Failed/N/A per check)
-  and the severity drift-guard (`tests/test_severity_register.py`) must remain green with **no**
-  disposition or severity changes. That equivalence is the acceptance bar.
-- Optionally add a counter/assertion (in a unit harness) proving each inventory API is called at
-  most once per handler invocation.
-
-### Acceptance criteria
-
-- Each shared inventory (`ListFunctions`, `ListGuardrails`+`GetGuardrail`, `ListKnowledgeBases`,
-  `ListBuckets`, `ListWebACLs`+`GetWebACL`) is enumerated **at most once** per FinServ run.
-- No change to any finding's status or severity (all existing tests + the drift-guard pass
-  unchanged).
-- A per-inventory collection failure degrades only the dependent checks (to `COULD_NOT_ASSESS`), not
-  the whole run.
-- Workspace `finserv_assessments/` stays byte-identical to the fork copy after sync.
-
-### Risk / considerations
-
-- **Test isolation** if any memoization is module-level: prefer an explicit per-invocation object
-  passed as an argument over a module-global cache, to avoid state leaking across unit tests.
-- **Partial-inventory correctness:** ensure a check that needs two inventories handles one being
-  unavailable independently.
-- **Memory:** holding full inventories (e.g., all guardrail details) in memory is bounded and far
-  smaller than the permission cache already loaded; no concern at 1024 MB.
-
-### Effort estimate
-
-Roughly 1–2 focused days: ~0.5 day for the collector + injection, ~0.5–1 day updating the ~20
-affected checks and their tests, ~0.5 day validation (full suite + a large-account timing check).
-
-### References
-
-- Round-3.1 requirement: **REQ-13 (audit finding C3)** and design section "REQ-13 — Enterprise-scale
-  resilience & scope (audit C)" in `.kiro/specs/pr-review-round3-fixes/design.md`.
-- Deferred task: **T5h.9** in `.kiro/specs/pr-review-round3-fixes/tasks.md`.
-- Related mitigation already shipped in Round 3.1: **T5h.8** (ASL `Catch` on the FinServ task +
-  Lambda `Timeout` 600 → 900 s) addressing audit finding C2.
-- Existing pattern to mirror: the `permission_cache` injection in `get_permissions_cache()` /
-  `build_finserv_checks()` in `finserv_assessments/app.py`.
-
-## FU-4 — Migrate upstream schemas from Pydantic V1 `@validator` to V2 `@field_validator`
-
-**Priority:** Low (tech-debt) — not a blocker.
-
-The upstream `schema.py` files for the Bedrock, SageMaker, AgentCore, consolidated-report,
-and IAM-permission-caching Lambdas still use the deprecated Pydantic V1 `@validator` decorator,
-which emits `PydanticDeprecatedSince20` warnings and will break when Pydantic V3 removes V1-style
-validators. The FinServ `schema.py` already uses the V2 `@field_validator` form.
-
-**Why deferred:** this PR is scoped to `feature/finserv-risk-checks`. The affected files are
-upstream/shared components; migrating them here would exceed the PR's scope and risk merge
-conflicts with upstream. Best handled as a dedicated upstream change.
-
-**Scope:** swap `@validator("X")` → `@field_validator("X")` + `@classmethod`, adjust signatures,
-and re-run each module's tests.
-
-### References
-
-- Identified in the pre-Wave-6 verification pass (`.kiro/specs/pr-review-round3-fixes/tasks.md`).
diff --git a/docs/CLEANUP.md b/docs/CLEANUP.md
index 0f929dc..4fb1c49 100644
--- a/docs/CLEANUP.md
+++ b/docs/CLEANUP.md
@@ -1,15 +1,59 @@
 # Cleanup Guide
 
-This guide provides step-by-step instructions for removing all resources deployed by the AI/ML Security Assessment framework.
+This guide provides step-by-step instructions for removing resources deployed by the AI/ML Security Assessment framework.
+
+Before deleting any stacks, record the S3 bucket names from the stack outputs. After a stack is deleted, its outputs are no longer available.
+
+The deployment creates two kinds of buckets:
+
+- **Infrastructure stack bucket**: The `AssessmentBucket` output from the stack you deployed manually, such as `aiml-security-single-account` or `aiml-security-multi-account`.
+- **Assessment stack buckets**: The `AssessmentBucketName` output from the auto-created SAM stacks, such as `aiml-sec-{account_id}`, `aiml-security-{account_id}`, or `aiml-security-mgmt`. These buckets use `DeletionPolicy: Retain`, so they remain after the SAM assessment stack is deleted and must be deleted manually if you want a full cleanup.
 
 ## Cleanup Order
 
 For a clean removal, delete resources in this order:
 
-1. **Assessment stacks** (auto-created by SAM)
-2. **Infrastructure stack** (the stack you deployed manually)
-3. AWS CloudFormation StackSet member roles (multi-account only)
-4. Any remaining Amazon S3 buckets manually
+1. Record S3 bucket names from stack outputs
+2. **Assessment stacks** (auto-created by SAM)
+3. Manually empty and delete retained assessment buckets
+4. **Infrastructure stack** (the stack you deployed manually)
+5. Manually empty and delete the infrastructure stack bucket if stack deletion fails
+6. AWS CloudFormation StackSet member roles (multi-account only)
+7. Optional: CloudWatch log groups created during assessment runs
+
+---
+
+## Emptying and Deleting Versioned S3 Buckets
+
+The buckets created by this framework are versioned. A recursive `aws s3 rm` removes current objects, but versioned buckets can still contain noncurrent versions and delete markers. Use the following helper to remove current objects, noncurrent versions, delete markers, and then the bucket.
+
+This command requires `jq`.
+
+```bash
+BUCKET_NAME="<bucket-name>"
+
+aws s3 rm "s3://${BUCKET_NAME}" --recursive
+
+while true; do
+  delete_payload=$(aws s3api list-object-versions \
+    --bucket "${BUCKET_NAME}" \
+    --output json \
+    | jq '{Objects: (((.Versions // []) + (.DeleteMarkers // [])) | map({Key, VersionId}) | .[0:1000])}')
+
+  object_count=$(echo "${delete_payload}" | jq '.Objects | length')
+  if [ "${object_count}" -eq 0 ]; then
+    break
+  fi
+
+  aws s3api delete-objects \
+    --bucket "${BUCKET_NAME}" \
+    --delete "${delete_payload}"
+done
+
+aws s3 rb "s3://${BUCKET_NAME}"
+```
+
+Repeat this for each infrastructure and assessment bucket you want to remove.
 
 ---
 
@@ -20,27 +64,20 @@ To remove all resources deployed for single-account assessment:
 1. **Delete the AWS SAM-deployed assessment stack**:
    - Navigate to **AWS CloudFormation** > **Stacks**
    - Select the `aiml-sec-{account_id}` stack (for example, `aiml-sec-123456789012`)
+   - Before deleting it, open **Outputs** and record the `AssessmentBucketName` value
    - Click **Delete**
    - Wait for stack deletion to complete
+   - The assessment bucket is retained by design, so delete it manually using the S3 cleanup helper above if you no longer need the report artifacts
 
 2. **Delete the AWS CodeBuild infrastructure stack**:
    - Select the `aiml-security-single-account` stack (or your custom stack name)
+   - Before deleting it, open **Outputs** and record the `AssessmentBucket` value
    - Click **Delete**
    - Wait for stack deletion to complete
 
-3. **Clean up Amazon S3 buckets** (if stack deletion fails due to non-empty buckets):
-   ```bash
-   # Empty the assessment bucket
-   aws s3 rm s3://<assessment-bucket-name> --recursive
-
-   # If versioning is enabled, delete version markers
-   aws s3api delete-objects --bucket <bucket-name> --delete \
-     "$(aws s3api list-object-versions --bucket <bucket-name> \
-     --query '{Objects: Versions[].{Key:Key,VersionId:VersionId}}')"
-
-   # Delete the bucket
-   aws s3 rb s3://<bucket-name>
-   ```
+3. **Clean up Amazon S3 buckets**:
+   - Delete the retained `AssessmentBucketName` bucket from the SAM assessment stack.
+   - If the infrastructure stack deletion fails because its `AssessmentBucket` is not empty, empty and delete that bucket, then retry stack deletion.
 
 ---
 
@@ -49,46 +86,42 @@ To remove all resources deployed for single-account assessment:
 To remove all resources deployed for multi-account assessment:
 
 1. **Delete AWS SAM-deployed stacks in each member account**:
-   - For each account that was scanned, navigate to **AWS CloudFormation** > **Stacks**
+   - In the deployment region, for each account that was scanned, navigate to **AWS CloudFormation** > **Stacks**
    - Select the `aiml-security-{account_id}` stack (for example, `aiml-security-123456789012`)
    - For the management account, select `aiml-security-mgmt`
+   - Before deleting each stack, open **Outputs** and record the `AssessmentBucketName` value
    - Click **Delete**
    - Alternatively, use the AWS CLI to delete across accounts:
      ```bash
      # Assume role in member account and delete stack
      aws cloudformation delete-stack --stack-name aiml-security-<account_id> \
-       --region <region>
+       --region <deployment-region>
      ```
+   - The assessment buckets are retained by design, so delete them manually using the S3 cleanup helper above if you no longer need the report artifacts
 
 2. **Delete the central AWS CodeBuild infrastructure stack**:
    - In the management account, navigate to **AWS CloudFormation** > **Stacks**
-   - Select the `aiml-security-multi-account` stack
+   - Select the `aiml-security-multi-account` stack, or the custom stack name you chose
+   - Before deleting it, open **Outputs** and record the `AssessmentBucket` value
    - Click **Delete**
    - Wait for stack deletion to complete
 
 3. **Delete the AWS CloudFormation StackSet member roles**:
    - Navigate to **AWS CloudFormation** > **StackSets**
-   - Select the `aiml-security-member-roles` AWS CloudFormation StackSet
+   - Select the StackSet created from `deployment/1-aiml-security-member-roles.yaml` (for example, `aiml-security-member-roles`, or your custom StackSet name)
    - Click **Actions** > **Delete stacks from StackSet**
    - Select all deployment targets (OUs or accounts)
    - Wait for stack instances to be deleted
    - Once all stack instances are removed, delete the AWS CloudFormation StackSet itself
 
-4. **Clean up Amazon S3 buckets** (if stack deletion fails due to non-empty buckets):
-   ```bash
-   # List and identify assessment buckets
-   aws s3 ls | grep aiml-security
+4. **Clean up Amazon S3 buckets**:
+   - Delete each retained `AssessmentBucketName` bucket from the per-account SAM assessment stacks.
+   - If the central infrastructure stack deletion fails because its `AssessmentBucket` is not empty, empty and delete that bucket, then retry stack deletion.
 
-   # Empty each bucket
-   aws s3 rm s3://<bucket-name> --recursive
+   To find likely assessment buckets:
 
-   # Delete version markers if versioning was enabled
-   aws s3api delete-objects --bucket <bucket-name> --delete \
-     "$(aws s3api list-object-versions --bucket <bucket-name> \
-     --query '{Objects: Versions[].{Key:Key,VersionId:VersionId}}')"
-
-   # Delete the bucket
-   aws s3 rb s3://<bucket-name>
+   ```bash
+   aws s3 ls | grep aiml-security
    ```
 
 ---
@@ -99,7 +132,35 @@ The deployment creates multiple AWS CloudFormation stacks. Here's how to identif
 
 | Stack Type | How to Identify | Action |
 |------------|-----------------|--------|
-| **Infrastructure Stack** (yours) | The name you chose (for example, `aiml-security-single-account`) | Delete second |
-| **Assessment Stack** (auto-generated) | `aiml-sec-{account_id}` (single) or `aiml-security-{account_id}` (multi) | Delete first |
+| **Infrastructure Stack** (yours) | The name you chose (for example, `aiml-security-single-account`) | Delete after assessment stacks |
+| **Assessment Stack** (auto-generated) | `aiml-sec-{account_id}` (single) or `aiml-security-{account_id}` (multi) | Delete before the infrastructure stack |
 
 **Quick Check**: If you see a stack name starting with `aiml-sec-` or `aiml-security-` followed by numbers (or `aiml-security-mgmt`), that's an auto-generated assessment stack.
+
+---
+
+## Optional CloudWatch Logs Cleanup
+
+AWS Lambda and AWS CodeBuild create Amazon CloudWatch log groups during assessment runs. These log groups can remain after stack deletion unless you delete them or configure retention.
+
+Common log group name patterns include:
+
+- `/aws/lambda/aiml-security-*`
+- `/aws/codebuild/AIMLSecurityCodeBuild`
+- `/aws/codebuild/AIMLSecurityMultiAccountCodeBuild`
+
+To list likely log groups:
+
+```bash
+aws logs describe-log-groups \
+  --log-group-name-prefix /aws/lambda/aiml-security-
+
+aws logs describe-log-groups \
+  --log-group-name-prefix /aws/codebuild/AIMLSecurity
+```
+
+To delete a log group:
+
+```bash
+aws logs delete-log-group --log-group-name "<log-group-name>"
+```
diff --git a/docs/DEVELOPER_GUIDE.md b/docs/DEVELOPER_GUIDE.md
index 0c270de..330c9ed 100644
--- a/docs/DEVELOPER_GUIDE.md
+++ b/docs/DEVELOPER_GUIDE.md
@@ -48,9 +48,10 @@ The AI/ML Security Assessment Framework is a serverless, multi-account security
 
 ### Security Design Principles
 
-- All roles follow the principle of least privilege
-- Cross-account trust is limited to the specific AWS CodeBuild role
-- Amazon S3 bucket enforces SSL-only access
+- Runtime assessment Lambda roles are read-oriented and scoped to the APIs needed by each assessment
+- AWS CodeBuild and member-account roles require deployment permissions because they create or update the SAM assessment stacks before running checks
+- Cross-account trust is limited to the specific AWS CodeBuild role in the management account
+- Amazon S3 buckets enforce SSL-only access
 - Assessment data is encrypted in transit and at rest
 - No persistent credentials are stored in AWS CodeBuild
 
@@ -72,7 +73,7 @@ The AI/ML Security Assessment Framework is a serverless, multi-account security
 #### Step 1: Member Account Roles (`1-aiml-security-member-roles.yaml`)
 - **AWS CloudFormation StackSets Deployment**: Deploys `AIMLSecurityMemberRole` to all target accounts
 - **Cross-Account Trust**: Establishes trust relationship with central management account
-- **Assessment Permissions**: Grants read-only access to AI/ML services (Amazon Bedrock, Amazon SageMaker AI, Amazon Bedrock AgentCore) for security assessment
+- **Assessment and Deployment Permissions**: Grants read-oriented service permissions for assessment checks and deployment permissions needed for CodeBuild to create or update per-account SAM stacks
 
 #### Step 2: Central Infrastructure (`2-aiml-security-codebuild.yaml`)
 - **AWS CodeBuild Project**: Orchestrates multi-account deployments and assessments
@@ -85,11 +86,11 @@ The AI/ML Security Assessment Framework is a serverless, multi-account security
 ### Phase 2: Assessment Execution (AWS CodeBuild Orchestration)
 
 #### AWS CodeBuild Execution Flow
-1. **Account Discovery**: Lists active accounts from AWS Organizations
-2. **Role Assumption**: Assumes `AIMLSecurityMemberRole` in each target account
-3. **AWS SAM Deployment**: Deploys the AI/ML assessment stack through AWS SAM
-4. **Assessment Execution**: Triggers AWS Step Functions workflow in each account
-5. **Results Consolidation**: Collects and consolidates results from all accounts
+1. **Account Discovery**: In multi-account mode, lists active accounts from AWS Organizations or uses `MultiAccountListOverride`
+2. **Role Assumption**: In multi-account mode, assumes `AIMLSecurityMemberRole` in each target account
+3. **AWS SAM Deployment**: Deploys or updates the AI/ML assessment stack through AWS SAM
+4. **Assessment Execution**: Triggers AWS Step Functions workflow in each account, passing `enableFinServ` from the deployment parameter
+5. **Results Consolidation**: Syncs per-account reports to the infrastructure bucket and creates a consolidated report for multi-account runs
 
 #### Project Structure
 ```
@@ -99,6 +100,8 @@ sample-aiml-security-assessment/
 │   │   ├── bedrock_assessments/      # Bedrock security checks (14)
 │   │   ├── sagemaker_assessments/    # SageMaker security checks (25)
 │   │   ├── agentcore_assessments/    # AgentCore security checks (13)
+│   │   ├── finserv_assessments/      # Optional Financial Services GenAI risk checks (64)
+│   │   ├── finserv_tests/            # FinServ-specific unit and coverage tests
 │   │   ├── iam_permission_caching/   # AWS IAM permissions cache
 │   │   ├── cleanup_bucket/           # Amazon S3 cleanup
 │   │   ├── resolve_regions/          # Multi-region resolution Lambda
@@ -122,6 +125,8 @@ sample-aiml-security-assessment/
 │   ├── *.html                        # Sample HTML reports
 │   └── *.png                         # Report screenshots
 ├── tests/                            # Unit tests for assessment functions
+│   └── requirements.txt              # Test dependencies
+├── .github/workflows/                # PR lint, test, SAM validate, and security scans
 ├── buildspec.yml                     # AWS CodeBuild orchestration
 └── consolidate_html_reports.py       # Multi-account report consolidation
 ```
@@ -129,7 +134,7 @@ sample-aiml-security-assessment/
 #### Member Account Resources (Deployed by AWS SAM)
 - **AWS SAM Application**: AI/ML security assessment stack
 - **AWS Step Functions**: Single workflow orchestrating all assessments
-- **AWS Lambda Functions**: One per service (Amazon Bedrock, Amazon SageMaker AI, Amazon Bedrock AgentCore) plus utilities
+- **AWS Lambda Functions**: One per core service (Amazon Bedrock, Amazon SageMaker AI, Amazon Bedrock AgentCore), one FinServ assessment Lambda invoked only when enabled, plus utilities
 - **Local Amazon S3 Bucket**: Storage for account-specific results
 
 ### Assessment Execution Workflow
@@ -177,7 +182,18 @@ sample-aiml-security-assessment/
             "Branches": [
               {"StartAt": "Bedrock Security Assessment", "States": {...}},
               {"StartAt": "Sagemaker Security Assessment", "States": {...}},
-              {"StartAt": "AgentCore Security Assessment", "States": {...}}
+              {"StartAt": "AgentCore Security Assessment", "States": {...}},
+              {
+                "StartAt": "FinServ Enabled?",
+                "States": {
+                  "FinServ Enabled?": {
+                    "Type": "Choice",
+                    "Comment": "Runs FinServ only when enableFinServ is true and RegionIndex is 0"
+                  },
+                  "FinServ Security Assessment": {"Type": "Task", "Resource": "arn:aws:states:::lambda:invoke", "End": true},
+                  "FinServ Assessment Skipped": {"Type": "Pass", "End": true}
+                }
+              }
             ],
             "End": true
           }
@@ -199,7 +215,7 @@ The framework includes **52 core security checks** across three AI/ML services,
 
 ### AWS Lambda Functions
 
-Each assessment AWS Lambda function:
+Each core service assessment AWS Lambda function:
 1. Receives execution context and target region from AWS Step Functions (via the Map state)
 2. Verifies the service is available in the target region (returns N/A finding if not)
 3. Reads cached AWS IAM permissions from Amazon S3
@@ -209,6 +225,8 @@ Each assessment AWS Lambda function:
 7. Uploads results to Amazon S3 with region-suffixed filename
 8. Returns findings summary to AWS Step Functions
 
+The Financial Services assessment Lambda is different. It is deployed in both SAM templates, but Step Functions invokes it only when the execution input includes `"enableFinServ": "true"` and only from the first region iteration (`RegionIndex == 0`). It receives the full `TargetRegions` list and emits FinServ findings with Region values so the report can display the same regional filters as the core services.
+
 **Additional Functions:**
 - **AWS IAM Permission Caching**: Pre-fetches AWS IAM policies to optimize assessment (global, runs once)
 - **Cleanup Bucket**: Removes old assessment data
@@ -354,13 +372,16 @@ def create_finding(
 
 ### Step 2: Update AWS SAM Template
 
-Add your new function to `aiml-security-assessment/template.yaml`:
+Add your new function to both SAM templates:
+
+- `aiml-security-assessment/template.yaml`
+- `aiml-security-assessment/template-multi-account.yaml`
 
 ```yaml
   ComprehendSecurityAssessmentFunction:
     Type: AWS::Serverless::Function
     Properties:
-      FunctionName: !Sub 'ComprehendSecurityAssessment-${AWS::AccountId}'
+      FunctionName: !Sub 'aiml-security-${AWS::StackName}-ComprehendAssessment'
       CodeUri: functions/security/comprehend_assessments/
       Handler: app.lambda_handler
       Runtime: python3.12
@@ -385,7 +406,7 @@ Add your new function to `aiml-security-assessment/template.yaml`:
 
 ### Step 3: Update AWS Step Functions Definition
 
-Add new service to the parallel execution in `aiml-security-assessment/statemachine/assessments.asl.json`:
+Add the new service to the `Run Security Assessments` parallel branch inside the `Scan Regions` Map state in `aiml-security-assessment/statemachine/assessments.asl.json`. Also add the function ARN substitution and `LambdaInvokePolicy` for the new function in both SAM templates.
 
 ```json
 {
@@ -415,7 +436,7 @@ Add new service to the parallel execution in `aiml-security-assessment/statemach
 
 ### Step 4: Update AWS IAM Permissions
 
-Add required permissions to member role template:
+Add required permissions to every role that may deploy or run the new service assessment:
 
 **In `deployment/1-aiml-security-member-roles.yaml`**:
 ```yaml
@@ -434,13 +455,22 @@ Add required permissions to member role template:
 - comprehend:Get*
 ```
 
+**In `deployment/2-aiml-security-codebuild.yaml`** (for management-account multi-account mode):
+```yaml
+- comprehend:List*
+- comprehend:Describe*
+- comprehend:Get*
+```
+
+Also add runtime permissions to the new Lambda role statements in both SAM templates if the new service function needs service-specific access at execution time.
+
 ### Step 5: Test Locally
 
 Test your new assessment function locally:
 
 ```bash
 cd aiml-security-assessment
-sam build
+sam build --template template.yaml
 sam local invoke ComprehendSecurityAssessmentFunction --event testfile.json
 ```
 
@@ -451,7 +481,7 @@ sam local invoke ComprehendSecurityAssessmentFunction --event testfile.json
 - **Handle Exceptions**: Implement proper error handling and logging
 - **Follow Least Privilege**: Only request necessary permissions
 - **Standardize Findings**: Use the `create_finding()` function for consistent output
-- **Check ID Convention**: Use service prefixes for check IDs (BR-XX for Amazon Bedrock, SM-XX for Amazon SageMaker AI, AC-XX for Amazon Bedrock AgentCore)
+- **Check ID Convention**: Use service prefixes for check IDs (BR-XX for Amazon Bedrock, SM-XX for Amazon SageMaker AI, AC-XX for Amazon Bedrock AgentCore, FS-XX for Financial Services GenAI risk checks)
 - **Status Semantics**: Use correct status values:
   - `Passed`: Resources were checked and met the assessed best practice
   - `Failed`: Resources were checked and found non-compliant
@@ -500,9 +530,9 @@ except Exception as e:
 
 ### 1. Local Testing
 ```bash
-# Test individual function
+# Test an individual SAM function
 cd aiml-security-assessment
-sam build
+sam build --template template.yaml
 sam local invoke NewServiceSecurityAssessmentFunction --event test-event.json
 ```
 
@@ -514,7 +544,7 @@ sam deploy --stack-name aiml-security-test --capabilities CAPABILITY_IAM
 # Execute AWS Step Functions
 aws stepfunctions start-execution \
   --state-machine-arn arn:aws:states:region:account:stateMachine:TestStateMachine \
-  --input '{"accountId":"123456789012"}'
+  --input '{"accountId":"123456789012","enableFinServ":"false"}'
 ```
 
 ### 3. Multi-Account Testing
@@ -541,6 +571,8 @@ For detailed troubleshooting guidance, common issues, and debugging tips, see th
 ### Development Pattern
 - Each AWS AI/ML service gets its own dedicated AWS Lambda function
 - AWS Step Functions orchestrates parallel execution of service assessments
+- Multi-region scans use a Step Functions Map state with configurable `MaxRegionConcurrency`
+- FinServ checks are opt-in through `EnableFinServAssessment`; the Lambda is deployed by default but invoked only when enabled
 - Results are consolidated into a single HTML/CSV report
 - AWS CodeBuild orchestrates deployment and execution across multiple accounts
 
@@ -573,7 +605,7 @@ Both call `generate_html_report()` from `report_template.py` with different para
 To update report styling, layout, or features:
 
 1. Edit `report_template.py` only - changes apply to both single and multi-account reports
-2. Run tests: `python test_generate_report.py`
+2. Run the report generator tests from the report package directory: `python -m pytest test_generate_report.py -v`
 3. Key functions:
    - `get_html_template()` - HTML/CSS/JS structure
    - `generate_table_rows()` - Finding row generation
@@ -587,16 +619,16 @@ When you modify the report template or add new features, update the sample repor
 
 #### 1. Generate New Sample Reports
 
-After making changes to `report_template.py`, regenerate sample reports:
+After making changes to `report_template.py`, regenerate sample reports from a fresh assessment run or from the local report test fixtures. The existing `test_generate_report.py` file is a pytest/unittest test module, not a standalone `--mode/--output` CLI.
 
 ```bash
-# Single-account mode
-python test_generate_report.py --mode single --output sample-reports/security_assessment_single_account.html
-
-# Multi-account mode
-python test_generate_report.py --mode multi --output sample-reports/security_assessment_multi_account.html
+# Generate local viewable reports from fixtures
+cd aiml-security-assessment/functions/security/generate_consolidated_report
+python -m pytest test_generate_report.py -k "generate_viewable_report or generate_multi_account_report" -s
 ```
 
+The fixture reports are written under `aiml-security-assessment/functions/security/generate_consolidated_report/test_reports/`. Use them to validate report rendering before refreshing the canonical files in `sample-reports/`.
+
 #### 2. Capture Screenshots
 
 The repository includes an automated screenshot capture tool:
@@ -707,6 +739,7 @@ GitHub Actions workflows run automatically to validate code quality and security
 | Workflow | File | What It Checks |
 |----------|------|----------------|
 | **Python Code Quality** | `.github/workflows/python-lint.yml` | `ruff check` (lint) and `ruff format --check` (formatting) on changed `.py` files |
+| **Python Tests** | `.github/workflows/python-tests.yml` | Runs upstream tests, FinServ tests, and report-pipeline tests in separate pytest sessions |
 | **CloudFormation Lint** | `.github/workflows/cfn-lint.yml` | Validates deployment and SAM templates with `cfn-lint` |
 | **SAM Validate & Build** | `.github/workflows/sam-validate.yml` | Runs `sam validate --lint` and `sam build` on SAM templates |
 | **ASH Security Scan** | `.github/workflows/ash-security-scan.yml` | Scans changed files for secrets, dependency vulnerabilities, and IaC misconfigurations |
@@ -726,14 +759,28 @@ Before pushing, run these checks locally to catch issues early:
 
 ```bash
 # Install tools (first time only)
-pip install ruff cfn-lint pytest boto3 pydantic
+pip install ruff cfn-lint
+pip install -r tests/requirements.txt
+pip install "pydantic>=2.0.0"
 
 # Python lint and format
 ruff check aiml-security-assessment/functions/security/
 ruff format --check aiml-security-assessment/functions/security/
 
-# Unit tests (213 tests, ~5 seconds, no AWS credentials needed)
-python -m pytest tests/ -v
+# Unit tests. Run these as separate pytest sessions because multiple
+# assessment packages use top-level app.py imports.
+export AIML_ASSESSMENT_BUCKET_NAME=test-assessment-bucket
+export AWS_DEFAULT_REGION=us-east-1
+export AWS_ACCESS_KEY_ID=testing
+export AWS_SECRET_ACCESS_KEY=testing
+
+python -m pytest tests/ -v --tb=short
+python -m pytest aiml-security-assessment/functions/security/finserv_tests/ -v --tb=short
+python -m pytest tests/test_consolidate_finserv.py -v --tb=short
+
+cd aiml-security-assessment/functions/security/generate_consolidated_report
+python -m pytest test_generate_report.py -v --tb=short
+cd -
 
 # CloudFormation lint
 cfn-lint deployment/*.yaml
@@ -743,7 +790,9 @@ cfn-lint aiml-security-assessment/template-multi-account.yaml
 # SAM validate and build
 cd aiml-security-assessment
 sam validate --template template.yaml --lint
+sam validate --template template-multi-account.yaml --lint
 sam build --template template.yaml
+sam build --template template-multi-account.yaml
 ```
 
 ## Support and Resources
diff --git a/docs/TROUBLESHOOTING.md b/docs/TROUBLESHOOTING.md
index 488e7ce..5128e2c 100644
--- a/docs/TROUBLESHOOTING.md
+++ b/docs/TROUBLESHOOTING.md
@@ -43,9 +43,11 @@ This guide covers common issues, debugging tips, and frequently asked questions
 
 **Solutions:**
 - Check CodeBuild logs in CloudWatch for specific errors
-- Verify the S3 bucket for SAM artifacts exists and is accessible
+- Verify the GitHub repository URL and `GitHubBranch` parameter point to a branch, tag, or commit that CodeBuild can clone
+- Verify the S3 bucket for SAM artifacts exists and is accessible. If the `aws-sam-cli-managed-default` stack is stuck in `ROLLBACK_COMPLETE` or `DELETE_FAILED`, delete it and re-run CodeBuild
 - Look for IAM permission errors in the logs
 - Check if a previous deployment left orphaned resources
+- Check whether `TARGET_REGIONS` failed validation. It must be empty, `all`, or a comma-separated list such as `us-east-1,us-west-2`
 
 ### 4. AWS Step Functions Execution Failures
 
@@ -54,8 +56,9 @@ This guide covers common issues, debugging tips, and frequently asked questions
 **Solutions:**
 - Monitor state machine executions in each account
 - Check Lambda function logs for errors
-- Verify Lambda has sufficient timeout (default 10 minutes)
+- Verify Lambda has sufficient timeout. Most assessment Lambdas default to 10 minutes; FinServ has its own timeout in the SAM templates
 - Verify AWS IAM permissions allow Lambda to access required services
+- In multi-region scans, review each region's Map state iteration. A single service branch can be marked incomplete while the state machine still generates a report for the remaining services and regions
 
 ### 5. EarlyValidation::ResourceExistenceCheck Error
 
@@ -64,25 +67,72 @@ This guide covers common issues, debugging tips, and frequently asked questions
 **Cause:** A resource with the same physical name already exists outside of CloudFormation management, typically from a failed deployment.
 
 **Solution:**
+The versioned bucket cleanup command requires `jq`.
+
 ```bash
-# Find the orphaned bucket
+# Find likely orphaned buckets
 aws s3 ls | grep aiml-security
 
-# Empty the bucket
-aws s3 rm s3://<bucket-name> --recursive
+BUCKET_NAME="<bucket-name>"
+
+aws s3 rm "s3://${BUCKET_NAME}" --recursive
+
+while true; do
+  delete_payload=$(aws s3api list-object-versions \
+    --bucket "${BUCKET_NAME}" \
+    --output json \
+    | jq '{Objects: (((.Versions // []) + (.DeleteMarkers // [])) | map({Key, VersionId}) | .[0:1000])}')
 
-# Delete version markers if versioned
-aws s3api delete-objects --bucket <bucket-name> --delete \
-  "$(aws s3api list-object-versions --bucket <bucket-name> \
-  --query '{Objects: Versions[].{Key:Key,VersionId:VersionId}}')"
+  object_count=$(echo "${delete_payload}" | jq '.Objects | length')
+  if [ "${object_count}" -eq 0 ]; then
+    break
+  fi
 
-# Delete the bucket
-aws s3 rb s3://<bucket-name>
+  aws s3api delete-objects \
+    --bucket "${BUCKET_NAME}" \
+    --delete "${delete_payload}"
+done
+
+aws s3 rb "s3://${BUCKET_NAME}"
 
 # Re-run the CodeBuild project
 ```
 
-### 6. CodeBuild Timeout or Out-of-Memory with Many Accounts
+For full bucket cleanup guidance, see [Cleanup Guide](CLEANUP.md#emptying-and-deleting-versioned-s3-buckets).
+
+### 6. Financial Services Checks Do Not Appear in the Report
+
+**Symptoms:** The report does not include the **Financial Services** section or any `FS-` findings.
+
+**Solutions:**
+- Confirm the infrastructure stack parameter `EnableFinServAssessment` is set to `true`
+- Confirm CodeBuild logs show `FinServ assessment enabled is true`
+- If you updated an existing deployment, re-run the CodeBuild project after the CloudFormation update completes. The parameter is passed to the Step Functions execution input when CodeBuild starts the assessment
+- Use the CodeBuild-based deployment templates for normal operation. If you deploy the SAM template directly and start Step Functions manually, include `"enableFinServ": "true"` in the `StartExecution` input
+- Check the Step Functions execution for the `FinServ Enabled?` choice state and `FinServ Security Assessment` task
+
+### 7. TargetRegions Validation or Unexpected Region Coverage
+
+**Symptoms:** CodeBuild fails with a `TARGET_REGIONS` validation error, or the report scans fewer or different regions than expected.
+
+**Solutions:**
+- Leave `TargetRegions` empty to scan only the deployment region
+- Use `all` to scan the union of regions returned by boto3 for Amazon Bedrock, Amazon SageMaker AI, and Amazon Bedrock AgentCore
+- Use a comma-separated list with no spaces, such as `us-east-1,us-west-2,eu-west-1`. CloudFormation validation rejects spaces and trailing commas
+- Confirm the services being assessed are available in each target region. If a service is unavailable or has no resources in a region, the report can show `N/A` or no resource-specific findings for that service and region
+- Confirm the account is opted in to any opt-in regions you include
+
+### 8. CodeBuild Source or GitHub Branch Failures
+
+**Symptoms:** CodeBuild fails before SAM build, or the logs show repository clone/source errors.
+
+**Solutions:**
+- Confirm `GitHubRepoUrl` is reachable by CodeBuild
+- Confirm `GitHubBranch` is a valid branch, tag, or commit
+- If you use a fork or feature branch, make sure the infrastructure stack points at that branch before starting CodeBuild
+- For private repositories, configure CodeBuild source credentials before deployment or use a source location CodeBuild can access
+
+### 9. CodeBuild Timeout or Out-of-Memory with Many Accounts
 
 **Symptoms:** CodeBuild job times out or runs slowly when scanning a large number of accounts concurrently.
 
@@ -100,30 +150,31 @@ aws s3 rb s3://<bucket-name>
 - If builds timeout even at "Twelve," increase the `CodeBuildTimeout` parameter (default is 300 minutes for multi-account)
 - For very large organizations (100+ accounts), consider using `MultiAccountListOverride` to split assessments into batches
 
-### 7. No Reports in S3 Bucket
+### 10. No Reports in S3 Bucket
 
 **Symptoms:** Assessment completes but no HTML/CSV files appear.
 
 **Solutions:**
 1. **Wrong bucket**: Use the bucket from the **Infrastructure Stack** outputs, not the assessment stack
-2. **Still running**: Check CodeBuild console - assessment typically takes 5-10 minutes
-3. **Wrong prefix**: Look under `{account_id}/` for single-account, `consolidated-reports/` for multi-account
-4. **Permissions**: Check CloudWatch Logs for Lambda execution errors
+2. **Still running**: Check CodeBuild console. Multi-region, multi-account, or FinServ-enabled assessments can take longer than a single-region run
+3. **Wrong prefix**: Look under `{account_id}/` for per-account reports and `consolidated-reports/` for the multi-account consolidated HTML report
+4. **Post-build copy failed**: In multi-account mode, CodeBuild copies CSV/HTML files from each account's SAM assessment bucket into the central infrastructure bucket. Search CodeBuild logs for `Copying files from`, `Failed to list bucket contents`, or `No files to copy`
+5. **Permissions**: Check CloudWatch Logs for Lambda execution errors and CodeBuild logs for S3 sync errors
 
-### 8. Confused by Multiple CloudFormation Stacks
+### 11. Confused by Multiple CloudFormation Stacks
 
 **Symptoms:** You see multiple stacks and aren't sure which one has your results.
 
-**Explanation:** The deployment creates TWO stacks. Only the infrastructure stack has the `AssessmentBucket` output.
+**Explanation:** The deployment creates an infrastructure stack and one or more SAM assessment stacks. The infrastructure stack is the user-facing stack for report access.
 
 | Stack Type | How to Identify | What to Do |
 |------------|-----------------|------------|
 | **Infrastructure Stack** (yours) | The name you chose (for example, `aiml-security-single-account`) | Use this — go to Outputs tab, copy `AssessmentBucket` |
-| **Assessment Stack** (auto-generated) | `aiml-sec-{account_id}` (single) or `aiml-security-{account_id}` (multi) | Ignore — internal operations only |
+| **Assessment Stack** (auto-generated) | `aiml-sec-{account_id}` (single), `aiml-security-{account_id}` (multi), or `aiml-security-mgmt` | Internal execution stack. Its `AssessmentBucketName` output is useful for debugging raw per-account reports and retained buckets |
 
 **Quick Check**: If a stack name starts with `aiml-sec-` or `aiml-security-` followed by numbers (or `aiml-security-mgmt`), it's auto-generated. Look for the name you chose during deployment.
 
-### 9. Upgrading an Existing Deployment to Multi-Region
+### 12. Upgrading an Existing Deployment to Multi-Region
 
 **Symptoms:** You have an existing single-region deployment and want to enable multi-region scanning.
 
@@ -137,8 +188,9 @@ aws s3 rb s3://<bucket-name>
 6. The next assessment run will scan the specified regions in parallel
 
 **What happens during the upgrade:**
-- CloudFormation updates the `TARGET_REGIONS` environment variable on the existing Lambdas (the `ResolveRegionsFunction`, state machine, and assessment Lambdas already exist in all deployments — when `TargetRegions` is empty they simply scan a single region)
-- No new resources are created — the value of the environment variable changes from empty to your specified regions
+- CloudFormation updates the `TARGET_REGIONS` environment variable on the CodeBuild project in the infrastructure stack
+- On the next CodeBuild run, SAM deploy updates the assessment stack and passes the new `TargetRegions` value into the assessment Lambdas and state machine
+- The Step Functions `Resolve Target Regions` state resolves the region list, then the Map state scans those regions in parallel
 - No data is lost — the S3 bucket retains all previous reports
 - Fully backward compatible — leaving `TargetRegions` empty preserves single-region behavior
 
@@ -178,12 +230,16 @@ The trust policy should allow the central CodeBuild role:
 
 ### Check S3 Bucket Permissions
 
-Verify the bucket policy allows cross-account writes for multi-account deployments:
+The central infrastructure bucket is the user-facing report bucket. In multi-account mode, member accounts do not write directly to this bucket. CodeBuild assumes into each account, copies report files from that account's SAM assessment bucket, then uploads them to the central infrastructure bucket.
+
+Verify the central bucket policy and CodeBuild S3 permissions if report upload fails:
 
 ```bash
-aws s3api get-bucket-policy --bucket <assessment-bucket-name>
+aws s3api get-bucket-policy --bucket <infrastructure-assessment-bucket-name>
 ```
 
+If per-account reports are missing, also check the SAM assessment stack's `AssessmentBucketName` output for that account and confirm the files were created there.
+
 ### Monitor AWS Step Functions Executions
 
 1. Navigate to **AWS Step Functions** in the target account
@@ -199,7 +255,9 @@ aws s3api get-bucket-policy --bucket <assessment-bucket-name>
 
 **Q: Does this assessment make any changes to my AWS resources?**
 
-A: No. All security checks are **read-only**. The framework only queries your resources to evaluate their configurations. It does not create, modify, or delete any of your AI/ML workloads or data.
+A: The security checks do not modify your AI/ML workloads or data. They query resource configuration and write assessment artifacts to framework-owned S3 buckets.
+
+The framework itself does create and manage its own deployment resources, including CloudFormation stacks, IAM roles, Lambda functions, Step Functions state machines, CodeBuild projects, S3 buckets, EventBridge rules, and optional SNS notifications. At the start of each assessment run, it also cleans old objects from its own SAM assessment bucket before writing the new report artifacts.
 
 **Q: How long does an assessment take to run?**
 
@@ -222,7 +280,7 @@ You can automate regular assessments using Amazon EventBridge scheduled rules.
 
 **Q: What AWS regions are supported?**
 
-A: The framework supports all standard AWS commercial regions where Amazon Bedrock, Amazon SageMaker AI, or Amazon Bedrock AgentCore are available. AWS GovCloud and AWS China regions may require template modifications.
+A: The framework is designed for standard AWS commercial regions where Amazon Bedrock, Amazon SageMaker AI, or Amazon Bedrock AgentCore are available. Leave `TargetRegions` empty for the deployment region, set it to `all` to resolve the union of assessed-service regions, or provide an explicit comma-separated list. AWS GovCloud and AWS China regions may require template modifications.
 
 **Q: Does this work if I don't have any AI/ML resources deployed yet?**
 
@@ -291,9 +349,15 @@ aws events put-rule \
 
 aws events put-targets \
   --rule "WeeklyAIMLAssessment" \
-  --targets "Id"="1","Arn"="arn:aws:codebuild:region:account:project/your-project"
+  --targets '[{
+    "Id": "1",
+    "Arn": "arn:aws:codebuild:<region>:<account-id>:project/<project-name>",
+    "RoleArn": "arn:aws:iam::<account-id>:role/<eventbridge-codebuild-start-role>"
+  }]'
 ```
 
+The target role must trust `events.amazonaws.com` and allow `codebuild:StartBuild` on the assessment CodeBuild project. For new schedules, Amazon EventBridge Scheduler is also a good option.
+
 ---
 
 ### Troubleshooting Questions
@@ -302,9 +366,10 @@ aws events put-targets \
 
 A: Common causes:
 1. **Wrong bucket**: Verify you're looking at the bucket from the **Infrastructure Stack** outputs (not the assessment stack)
-2. **Still running**: Check AWS CodeBuild console - the assessment may still be in progress (typically takes 5-10 minutes)
-3. **Permissions issue**: Check AWS CloudWatch Logs for AWS Lambda execution errors
-4. **Wrong prefix**: Look under `{account_id}/` prefix for single-account, `consolidated-reports/` for multi-account
+2. **Still running**: Check AWS CodeBuild console. Multi-region, multi-account, or FinServ-enabled assessments can take longer than a single-region run
+3. **Wrong prefix**: Look under `{account_id}/` for per-account reports and `consolidated-reports/` for the multi-account consolidated HTML report
+4. **Post-build copy failed**: Search CodeBuild logs for `Copying files from`, `Failed to list bucket contents`, `No files to copy`, or S3 sync errors
+5. **Permissions issue**: Check AWS CloudWatch Logs for Lambda errors and CodeBuild logs for S3 access errors
 
 **Q: I see "Access Denied" errors in the AWS CodeBuild logs.**
 
@@ -321,8 +386,10 @@ A: Performance factors:
 - **Number of resources**: Accounts with hundreds of Amazon SageMaker notebooks or Amazon Bedrock models take longer
 - **API throttling**: AWS API rate limits may slow down assessments in large environments
 - **Concurrent executions**: Multi-account assessments run in parallel (configurable through the `ConcurrentAccountScans` parameter)
+- **Region scope**: Multi-region scans multiply the amount of service inventory collected
+- **Financial Services checks**: Enabling `EnableFinServAssessment` adds the optional `FS-` checks and can increase run time
 
-If assessments consistently timeout, increase the AWS Lambda timeout in the AWS SAM template or reduce concurrent account scans.
+If assessments consistently timeout, increase `CodeBuildTimeout`, reduce `TargetRegions`, reduce the account batch size with `MultiAccountListOverride`, or lower concurrency if throttling is the bottleneck. Lambda timeout changes require editing the SAM templates.
 
 ---
 

From f07d845aa2df37e18e38c9283163d9e839759f75 Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Sat, 20 Jun 2026 20:38:10 -0400
Subject: [PATCH 23/30] Fix README reference links

---
 README.md | 18 +++++++++---------
 1 file changed, 9 insertions(+), 9 deletions(-)

diff --git a/README.md b/README.md
index 6d1cb4c..c8870cf 100644
--- a/README.md
+++ b/README.md
@@ -2,7 +2,7 @@
 
 [![License: MIT-0](https://img.shields.io/badge/License-MIT--0-yellow.svg)](https://opensource.org/licenses/MIT-0) [![Python 3.12+](https://img.shields.io/badge/Python-3.12+-blue.svg)](https://www.python.org/downloads/) [![AWS SAM](https://img.shields.io/badge/AWS-SAM-orange.svg)](https://aws.amazon.com/serverless/sam/) [![Serverless](https://img.shields.io/badge/Architecture-Serverless-green.svg)](https://aws.amazon.com/serverless/)
 
-**Open-source automated security scanner for Amazon Bedrock, Amazon SageMaker AI, Amazon Bedrock AgentCore, and Financial Services GenAI Risk** — Built on the [AWS Well-Architected Framework (Generative AI Lens)](https://docs.aws.amazon.com/wellarchitected/latest/generative-ai-lens/generative-ai-lens.html) and optional Financial Services GenAI risk guidance.
+**Open-source automated security scanner for Amazon Bedrock, Amazon SageMaker AI, Amazon Bedrock AgentCore, and Financial Services GenAI Risk** — Built on the [AWS Well-Architected Framework (Generative AI Lens)](https://docs.aws.amazon.com/wellarchitected/latest/generative-ai-lens/generative-ai-lens.html) and optional [AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption within Financial Services Industries](https://d1.awsstatic.com/onedam/marketing-channels/website/aws/en_US/whitepapers/compliance/AWS-User-Guide-Governance-Risk-Compliance-for-Responsible-AI-Adoption-Financial-Services.pdf) guidance.
 
 Cloud security automation with **[116 security checks](docs/SECURITY_CHECKS.md)** for your generative AI and machine learning workloads. Identify IAM misconfigurations, encryption gaps, network isolation issues, and potential governance or compliance gaps with interactive HTML reports and actionable remediation guidance.
 
@@ -81,7 +81,7 @@ Designed for workloads using [Amazon Bedrock](https://aws.amazon.com/bedrock/),
 | Challenge | How This Framework Helps |
 |-----------|-------------------------|
 | **Manual security audits are time-consuming** | Fully automated scanning with one-click CloudFormation deployment |
-| **Inconsistent security checks across teams** | Standardized 116-check assessment based on AWS Well-Architected best practices and AWS Responsible AI governance, risk, and compliance guidance |
+| **Inconsistent security checks across teams** | Standardized 116-check assessment based on AWS Well-Architected Generative AI Lens best practices and AWS Responsible AI governance, risk, and compliance guidance for financial services |
 | **Difficulty tracking AI/ML security posture** | Interactive HTML dashboards with severity breakdown and per-account visibility |
 | **Multi-account complexity** | Consolidated reporting across AWS Organizations with cross-account role assumption |
 | **Compliance and audit support** | Exportable reports to supplement your compliance program, with remediation guidance linked to AWS documentation |
@@ -91,7 +91,7 @@ Designed for workloads using [Amazon Bedrock](https://aws.amazon.com/bedrock/),
 - **[Amazon Bedrock](docs/SECURITY_CHECKS.md#amazon-bedrock-security-checks-14)** (14 checks) - Guardrails, encryption, Amazon VPC endpoints, AWS IAM permissions, model invocation logging
 - **[Amazon SageMaker AI](docs/SECURITY_CHECKS.md#amazon-sagemaker-ai-security-checks-25)** (25 checks) - AWS Security Hub controls (SageMaker.1-5), encryption, network isolation, AWS IAM, MLOps
 - **[Amazon Bedrock AgentCore](docs/SECURITY_CHECKS.md#amazon-bedrock-agentcore-security-checks-13)** (13 checks) - Amazon VPC configuration, encryption, observability, resource policies
-- **[Financial Services GenAI Risk](docs/SECURITY_CHECKS.md#financial-services-genai-risk-checks-64-additional-5-upstream-extensions)** (64 checks) - Unbounded consumption, excessive agency, supply chain, training data poisoning, hallucination, prompt injection, PII disclosure, and 8 more FinServ-specific risk categories derived from the [AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption](https://aws.amazon.com/blogs/security/introducing-the-updated-aws-user-guide-to-governance-risk-and-compliance-for-responsible-ai-adoption/)
+- **[Financial Services GenAI Risk](docs/SECURITY_CHECKS.md#financial-services-genai-risk-checks-64-additional-5-upstream-extensions)** (64 checks) - Unbounded consumption, excessive agency, supply chain, training data poisoning, hallucination, prompt injection, PII disclosure, and 8 more FinServ-specific risk categories derived from the [AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption within Financial Services Industries](https://d1.awsstatic.com/onedam/marketing-channels/website/aws/en_US/whitepapers/compliance/AWS-User-Guide-Governance-Risk-Compliance-for-Responsible-AI-Adoption-Financial-Services.pdf). See the [AWS Security Blog announcement](https://aws.amazon.com/blogs/security/introducing-the-updated-aws-user-guide-to-governance-risk-and-compliance-for-responsible-ai-adoption/) for context on the updated guide.
 
 **Deployment Options:**
 - **Single-Account**: Assess security in one AWS account
@@ -276,7 +276,7 @@ You can check the AWS CodeBuild console to confirm the assessment completed succ
 2. **Navigate to the Amazon S3 Bucket**:
    - Go to **Amazon S3** in the AWS Console
    - Search for and open your assessment bucket
-   - For single-account deployments, open the `security_assessment_XXXXX.html` report
+   - For single-account deployments, open the `{account_id}/` folder and then open the `security_assessment_single_account_YYYYMMDD_HHMMSS.html` report
    - For multi-account deployments, follow the [Report Structure](#report-structure) guidance below
 
 ### Report Structure
@@ -372,11 +372,11 @@ The deployment uses multiple IAM roles with different trust and permission bound
 
 If you need to reduce scope, review the role policies in:
 
-- [deployment/aiml-security-single-account.yaml](/Users/akothurk/Documents/Code/Github/aws-samples/sample-aiml-security-assessment/deployment/aiml-security-single-account.yaml)
-- [deployment/1-aiml-security-member-roles.yaml](/Users/akothurk/Documents/Code/Github/aws-samples/sample-aiml-security-assessment/deployment/1-aiml-security-member-roles.yaml)
-- [deployment/2-aiml-security-codebuild.yaml](/Users/akothurk/Documents/Code/Github/aws-samples/sample-aiml-security-assessment/deployment/2-aiml-security-codebuild.yaml)
-- [aiml-security-assessment/template.yaml](/Users/akothurk/Documents/Code/Github/aws-samples/sample-aiml-security-assessment/aiml-security-assessment/template.yaml)
-- [aiml-security-assessment/template-multi-account.yaml](/Users/akothurk/Documents/Code/Github/aws-samples/sample-aiml-security-assessment/aiml-security-assessment/template-multi-account.yaml)
+- [deployment/aiml-security-single-account.yaml](deployment/aiml-security-single-account.yaml)
+- [deployment/1-aiml-security-member-roles.yaml](deployment/1-aiml-security-member-roles.yaml)
+- [deployment/2-aiml-security-codebuild.yaml](deployment/2-aiml-security-codebuild.yaml)
+- [aiml-security-assessment/template.yaml](aiml-security-assessment/template.yaml)
+- [aiml-security-assessment/template-multi-account.yaml](aiml-security-assessment/template-multi-account.yaml)
 
 ---
 

From 3e70eed8823f682d6502a04c8fdd3726378d0a9e Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Mon, 22 Jun 2026 20:49:35 -0400
Subject: [PATCH 24/30] Fix duplicate Bedrock test name

---
 tests/test_bedrock_checks.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/tests/test_bedrock_checks.py b/tests/test_bedrock_checks.py
index 4f0695a..31c7242 100644
--- a/tests/test_bedrock_checks.py
+++ b/tests/test_bedrock_checks.py
@@ -693,7 +693,7 @@ def test_br09_kb_exists_returns_findings(self, mock_client):
         assert findings[0]["Check_ID"] == "BR-09"
 
     @patch("boto3.client")
-    def test_br09_access_denied_returns_na(self, mock_client):
+    def test_br09_access_denied_in_region_returns_na(self, mock_client):
         check = bedrock_app.check_bedrock_knowledge_base_encryption
         mock_agent = MagicMock()
         mock_client.return_value = mock_agent

From 61d48db8240f723eded2a844bba910bd2d7b0957 Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Mon, 22 Jun 2026 21:13:35 -0400
Subject: [PATCH 25/30] Fix AgentCore pagination test hang

---
 .../functions/security/agentcore_assessments/app.py  | 12 ++++++++++++
 tests/test_bedrock_checks.py                         |  6 +++++-
 2 files changed, 17 insertions(+), 1 deletion(-)

diff --git a/aiml-security-assessment/functions/security/agentcore_assessments/app.py b/aiml-security-assessment/functions/security/agentcore_assessments/app.py
index 3c3d85b..d670109 100644
--- a/aiml-security-assessment/functions/security/agentcore_assessments/app.py
+++ b/aiml-security-assessment/functions/security/agentcore_assessments/app.py
@@ -140,6 +140,12 @@ def _agentcore_list_all(
             kwargs["nextToken"] = next_token
 
         response = list_method(**kwargs)
+        if not isinstance(response, dict):
+            logger.warning(
+                f"{list_method_name} returned unexpected response type: "
+                f"{type(response).__name__}"
+            )
+            break
 
         for result_key in result_keys:
             page_items = response.get(result_key)
@@ -148,6 +154,12 @@ def _agentcore_list_all(
                 break
 
         next_token = response.get("nextToken")
+        if next_token is not None and not isinstance(next_token, str):
+            logger.warning(
+                f"{list_method_name} returned non-string nextToken: "
+                f"{type(next_token).__name__}"
+            )
+            break
         if not next_token:
             break
 
diff --git a/tests/test_bedrock_checks.py b/tests/test_bedrock_checks.py
index 31c7242..cd909c7 100644
--- a/tests/test_bedrock_checks.py
+++ b/tests/test_bedrock_checks.py
@@ -712,7 +712,11 @@ def test_br09_access_denied_in_region_returns_na(self, mock_client):
         findings = extract_csv_data(result)
         assert len(findings) >= 1
         assert findings[0]["Status"] == "N/A"
-        assert "Bedrock Knowledge Base API" in findings[0]["Finding_Details"]
+        assert (
+            "access to Knowledge Base metadata was denied"
+            in findings[0]["Finding_Details"]
+        )
+        assert findings[0]["Region"] == "eu-west-1"
 
     @patch("boto3.client")
     def test_br09_exception_returns_error_finding(self, mock_client):

From 9b41a7eaf38ea39130c875ec174f6713d5c9cc30 Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Mon, 22 Jun 2026 21:29:35 -0400
Subject: [PATCH 26/30] Fix FinServ test patch targets

---
 .../functions/security/finserv_tests/test_checks.py  | 12 ++++++------
 .../security/finserv_tests/test_lambda_handler.py    | 10 +++++-----
 2 files changed, 11 insertions(+), 11 deletions(-)

diff --git a/aiml-security-assessment/functions/security/finserv_tests/test_checks.py b/aiml-security-assessment/functions/security/finserv_tests/test_checks.py
index bc0e846..3b693d3 100644
--- a/aiml-security-assessment/functions/security/finserv_tests/test_checks.py
+++ b/aiml-security-assessment/functions/security/finserv_tests/test_checks.py
@@ -3507,7 +3507,7 @@ def factory(service_name, **kwargs):
 
         return factory
 
-    @patch("app.boto3.client")
+    @patch("finserv_app.boto3.client")
     def test_detect_returns_true_when_any_genai_resource_exists(self, mock_client):
         bedrock = MagicMock()
         bedrock.list_guardrails.return_value = {"guardrails": [{"id": "gr-1"}]}
@@ -3524,7 +3524,7 @@ def test_detect_returns_true_when_any_genai_resource_exists(self, mock_client):
             "bedrock", config=app.boto3_config, region_name="us-east-1"
         )
 
-    @patch("app.boto3.client")
+    @patch("finserv_app.boto3.client")
     def test_detect_returns_false_when_all_supported_probes_are_empty(
         self, mock_client
     ):
@@ -3550,7 +3550,7 @@ def test_detect_returns_false_when_all_supported_probes_are_empty(
 
         assert app.detect_finserv_regional_footprint("us-west-2") is False
 
-    @patch("app.boto3.client")
+    @patch("finserv_app.boto3.client")
     def test_detect_returns_none_when_footprint_is_indeterminate(self, mock_client):
         bedrock = MagicMock()
         bedrock.list_guardrails.side_effect = _client_error("AccessDeniedException")
@@ -3580,7 +3580,7 @@ def test_detect_returns_none_when_footprint_is_indeterminate(self, mock_client):
 
         assert app.detect_finserv_regional_footprint("eu-west-1") is None
 
-    @patch("app.detect_finserv_regional_footprint")
+    @patch("finserv_app.detect_finserv_regional_footprint")
     def test_partition_keeps_indeterminate_regions_in_scope(self, mock_detect):
         mock_detect.side_effect = [None, False, True]
 
@@ -3694,7 +3694,7 @@ def test_apply_region_scope_does_not_copy_failures_to_empty_regions(self):
         ]
 
         with patch(
-            "app._partition_regions_by_finserv_footprint",
+            "finserv_app._partition_regions_by_finserv_footprint",
             return_value=(["region-with-resources"], ["region-without-resources"]),
         ):
             app._apply_region_scope(
@@ -3729,7 +3729,7 @@ def test_apply_region_scope_suppresses_unscoped_rows_when_all_regions_empty(self
         ]
 
         with patch(
-            "app._partition_regions_by_finserv_footprint",
+            "finserv_app._partition_regions_by_finserv_footprint",
             return_value=([], ["region-a", "region-b"]),
         ):
             app._apply_region_scope(findings, ["region-a", "region-b"])
diff --git a/aiml-security-assessment/functions/security/finserv_tests/test_lambda_handler.py b/aiml-security-assessment/functions/security/finserv_tests/test_lambda_handler.py
index 54b29b0..264904e 100644
--- a/aiml-security-assessment/functions/security/finserv_tests/test_lambda_handler.py
+++ b/aiml-security-assessment/functions/security/finserv_tests/test_lambda_handler.py
@@ -274,11 +274,11 @@ def test_handler_passes_inventory_to_build_finserv_checks(
             "lambda_handler must never pass None as the inventory argument"
         )
 
-    @patch("app.write_to_s3")
-    @patch("app.get_permissions_cache")
-    @patch("app._apply_region_scope")
-    @patch("app.build_finserv_checks")
-    @patch("app.collect_resource_inventory")
+    @patch("finserv_app.write_to_s3")
+    @patch("finserv_app.get_permissions_cache")
+    @patch("finserv_app._apply_region_scope")
+    @patch("finserv_app.build_finserv_checks")
+    @patch("finserv_app.collect_resource_inventory")
     def test_handler_scopes_findings_with_target_regions_from_event(
         self,
         mock_collect,

From 5c36c296b8b858d8994c09129412d5f4d1abc418 Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Tue, 23 Jun 2026 17:47:12 -0400
Subject: [PATCH 27/30] Fix empty TargetRegions SAM deploy override

---
 buildspec.yml | 11 ++++++++---
 1 file changed, 8 insertions(+), 3 deletions(-)

diff --git a/buildspec.yml b/buildspec.yml
index 9e8ac31..417eb4b 100644
--- a/buildspec.yml
+++ b/buildspec.yml
@@ -59,6 +59,11 @@ phases:
           exit 1
         fi
         echo "Using TARGET_REGIONS: '${TARGET_REGIONS:-<deployment region only>}'"
+
+        # Use the long-form SAM parameter syntax so an intentionally empty
+        # TargetRegions value is accepted and clears any previous stack value.
+        SAM_TARGET_REGIONS_PARAMETER="ParameterKey=TargetRegions,ParameterValue=${TARGET_REGIONS}"
+        export SAM_TARGET_REGIONS_PARAMETER
       - echo "Multi-account scan is $MULTI_ACCOUNT_SCAN"
       - cd aiml-security-assessment
       - ls -la
@@ -134,7 +139,7 @@ phases:
             fi
 
             echo "Deploying to account $accountId"
-            if ! sam deploy --template-file .aws-sam/build/template.yaml --stack-name aiml-security-$accountId --capabilities CAPABILITY_IAM --no-confirm-changeset --no-fail-on-empty-changeset --resolve-s3 --region $AWS_DEFAULT_REGION --parameter-overrides TargetRegions="${TARGET_REGIONS:-}"; then
+            if ! sam deploy --template-file .aws-sam/build/template.yaml --stack-name "aiml-security-$accountId" --capabilities CAPABILITY_IAM --no-confirm-changeset --no-fail-on-empty-changeset --resolve-s3 --region "$AWS_DEFAULT_REGION" --parameter-overrides "$SAM_TARGET_REGIONS_PARAMETER"; then
               echo "ERROR: Deploy failed for account $accountId"
               failed_accounts+=($accountId)
               unset AWS_ACCESS_KEY_ID AWS_SECRET_ACCESS_KEY AWS_SESSION_TOKEN
@@ -165,7 +170,7 @@ phases:
             aws cloudformation delete-stack --stack-name aws-sam-cli-managed-default
             aws cloudformation wait stack-delete-complete --stack-name aws-sam-cli-managed-default 2>/dev/null || true
           fi
-          if ! sam deploy --template-file .aws-sam/build/template.yaml --stack-name aiml-security-mgmt --capabilities CAPABILITY_IAM --no-confirm-changeset --no-fail-on-empty-changeset --resolve-s3 --region $AWS_DEFAULT_REGION --parameter-overrides TargetRegions="${TARGET_REGIONS:-}"; then
+          if ! sam deploy --template-file .aws-sam/build/template.yaml --stack-name aiml-security-mgmt --capabilities CAPABILITY_IAM --no-confirm-changeset --no-fail-on-empty-changeset --resolve-s3 --region "$AWS_DEFAULT_REGION" --parameter-overrides "$SAM_TARGET_REGIONS_PARAMETER"; then
             echo "ERROR: Deploy failed for management account"
             failed_accounts+=($AWS_ACCOUNT_ID)
           else
@@ -190,7 +195,7 @@ phases:
         else
           echo "Single account deployment"
           STACK_NAME="aiml-sec-${AWS_ACCOUNT_ID}"
-          if ! sam deploy --template-file .aws-sam/build/template.yaml --stack-name $STACK_NAME --capabilities CAPABILITY_IAM --no-confirm-changeset --no-fail-on-empty-changeset --resolve-s3 --parameter-overrides TargetRegions="${TARGET_REGIONS:-}"; then
+          if ! sam deploy --template-file .aws-sam/build/template.yaml --stack-name "$STACK_NAME" --capabilities CAPABILITY_IAM --no-confirm-changeset --no-fail-on-empty-changeset --resolve-s3 --region "$AWS_DEFAULT_REGION" --parameter-overrides "$SAM_TARGET_REGIONS_PARAMETER"; then
             echo "ERROR: SAM deploy failed for single account"
             exit 1
           fi

From 20d71be7f9ded63c5ea8742aa7fbfd2c76ea06b5 Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Tue, 23 Jun 2026 18:39:09 -0400
Subject: [PATCH 28/30] Normalize multi-value deployment inputs

---
 README.md                                     | 10 +++---
 .../security/finserv_assessments/app.py       |  3 +-
 .../security/finserv_tests/test_checks.py     | 10 ++++++
 .../functions/security/resolve_regions/app.py |  3 +-
 .../template-multi-account.yaml               | 11 +++---
 aiml-security-assessment/template.yaml        | 11 +++---
 buildspec.yml                                 | 35 ++++++++++++++-----
 deployment/1-aiml-security-member-roles.yaml  |  7 ++--
 deployment/2-aiml-security-codebuild.yaml     | 17 ++++-----
 deployment/aiml-security-single-account.yaml  | 11 +++---
 docs/DEVELOPER_GUIDE.md                       |  4 +--
 docs/TROUBLESHOOTING.md                       | 18 +++++-----
 12 files changed, 89 insertions(+), 51 deletions(-)

diff --git a/README.md b/README.md
index c8870cf..3508f66 100644
--- a/README.md
+++ b/README.md
@@ -142,7 +142,7 @@ This tool operates within the [AWS Shared Responsibility Model](https://aws.amaz
 4. Optionally specify your email address to receive notifications.
 5. **(Optional) Multi-Region**: Set `TargetRegions` to scan multiple regions:
    - Leave empty to scan only the deployment region (default)
-   - Comma-separated list (for example, `us-east-1,us-west-2,eu-west-1`)
+   - Comma- or space-separated list (for example, `us-east-1,us-west-2,eu-west-1` or `us-east-1 us-west-2 eu-west-1`)
    - `all` to scan all regions where the services are available
 6. Acknowledge IAM capabilities and click **Submit**.
 7. Once complete, CodeBuild automatically runs the assessment.
@@ -158,14 +158,14 @@ This tool operates within the [AWS Shared Responsibility Model](https://aws.amaz
 
 Deploy [1-aiml-security-member-roles.yaml](deployment/1-aiml-security-member-roles.yaml) to all target accounts using CloudFormation StackSets with service-managed permissions.
 
-1. Navigate to **CloudFormation** > **StackSets** in the management account
-2. Upload the template and set `ManagementAccountID` to your management account
+1. Navigate to **CloudFormation** > **StackSets** in the AWS Organizations management account or delegated administrator account
+2. Upload the template and set `ManagementAccountID` to the account ID where the central multi-account CodeBuild project runs
 3. Select **Service-managed permissions** and target your OUs
 4. Select your target region and submit
 
 ### Step 2: Deploy Central Infrastructure
 
-Deploy [2-aiml-security-codebuild.yaml](deployment/2-aiml-security-codebuild.yaml) in your management account.
+Deploy [2-aiml-security-codebuild.yaml](deployment/2-aiml-security-codebuild.yaml) in your central assessment account. This can be your AWS Organizations management account or a delegated administrator/central tooling account.
 
 1. Upload the template and set `MultiAccountScan` to `true`
 2. Optionally set `TargetRegions` for multi-region scanning
@@ -182,7 +182,7 @@ Both deployment modes support scanning multiple AWS regions in parallel via the
 | Value | Behavior |
 |-------|----------|
 | Empty (default) | Scans deployment region only — fully backward compatible |
-| Comma-separated (for example, `us-east-1,us-west-2`) | Scans those regions in parallel |
+| Comma- or space-separated (for example, `us-east-1,us-west-2` or `us-east-1 us-west-2`) | Scans those regions in parallel |
 | `all` | Discovers and scans all regions where assessed services are available |
 
 Scanning uses a Step Functions Map state, so multiple regions execute in parallel with no additional time cost. Services unavailable in a region produce an informational N/A finding.
diff --git a/aiml-security-assessment/functions/security/finserv_assessments/app.py b/aiml-security-assessment/functions/security/finserv_assessments/app.py
index d7d42ac..abfcd39 100644
--- a/aiml-security-assessment/functions/security/finserv_assessments/app.py
+++ b/aiml-security-assessment/functions/security/finserv_assessments/app.py
@@ -57,6 +57,7 @@
 import json
 import logging
 import os
+import re
 from dataclasses import dataclass
 from datetime import datetime, timezone
 from io import StringIO
@@ -6107,7 +6108,7 @@ def _normalized_target_regions(value: str) -> List[str]:
     value = (value or "").strip()
     if not value or value.lower() == "all":
         return []
-    return [region.strip() for region in value.split(",") if region.strip()]
+    return [region.strip() for region in re.split(r"[,\s]+", value) if region.strip()]
 
 
 def _get_region_scopes(event: Dict[str, Any]) -> List[str]:
diff --git a/aiml-security-assessment/functions/security/finserv_tests/test_checks.py b/aiml-security-assessment/functions/security/finserv_tests/test_checks.py
index 3b693d3..bd5fb37 100644
--- a/aiml-security-assessment/functions/security/finserv_tests/test_checks.py
+++ b/aiml-security-assessment/functions/security/finserv_tests/test_checks.py
@@ -3640,6 +3640,16 @@ def test_region_scopes_use_target_regions_env_when_event_list_absent(
             "region-b",
         ]
 
+    def test_region_scopes_accept_whitespace_delimited_target_regions(
+        self, monkeypatch
+    ):
+        monkeypatch.setenv("TARGET_REGIONS", "region-a region-b")
+
+        assert app._get_region_scopes({"Region": "fallback-region"}) == [
+            "region-a",
+            "region-b",
+        ]
+
     def test_stamp_regions_expands_missing_csv_regions(self):
         findings = [
             {
diff --git a/aiml-security-assessment/functions/security/resolve_regions/app.py b/aiml-security-assessment/functions/security/resolve_regions/app.py
index 027b863..4dd9297 100644
--- a/aiml-security-assessment/functions/security/resolve_regions/app.py
+++ b/aiml-security-assessment/functions/security/resolve_regions/app.py
@@ -8,6 +8,7 @@
 
 import os
 import logging
+import re
 import boto3
 
 logger = logging.getLogger()
@@ -50,7 +51,7 @@ def resolve_regions():
             return [current_region]
         return regions
 
-    return [r.strip() for r in target_regions.split(",") if r.strip()]
+    return [r.strip() for r in re.split(r"[,\s]+", target_regions) if r.strip()]
 
 
 def lambda_handler(event, context):
diff --git a/aiml-security-assessment/template-multi-account.yaml b/aiml-security-assessment/template-multi-account.yaml
index f7f135b..34b054e 100644
--- a/aiml-security-assessment/template-multi-account.yaml
+++ b/aiml-security-assessment/template-multi-account.yaml
@@ -23,13 +23,14 @@ Parameters:
   TargetRegions:
     Type: String
     Default: ""
-    AllowedPattern: "^$|^all$|^[a-z]{2}(-gov)?-[a-z]+-[0-9](,[a-z]{2}(-gov)?-[a-z]+-[0-9])*$"
+    AllowedPattern: "^$|^all$|^[a-z]{2}(-gov)?-[a-z]+-[0-9]([,\\s]+[a-z]{2}(-gov)?-[a-z]+-[0-9])*$"
     ConstraintDescription: >
-      TargetRegions must be empty, 'all', or a comma-separated list of AWS
-      region names with no spaces or trailing commas (for example,
-      us-east-1,us-west-2,eu-west-1).
+      TargetRegions must be empty, 'all', or a comma- or space-separated list of AWS
+      region names (for example, us-east-1,us-west-2,eu-west-1 or
+      us-east-1 us-west-2 eu-west-1).
     Description: >
-      Comma-separated list of AWS regions to scan (e.g., us-east-1,us-west-2,eu-west-1).
+      Comma- or space-separated list of AWS regions to scan (e.g.,
+      us-east-1,us-west-2,eu-west-1 or us-east-1 us-west-2 eu-west-1).
       Use 'all' to scan all regions where the service is available.
       Leave empty to scan only the deployment region.
   MaxRegionConcurrency:
diff --git a/aiml-security-assessment/template.yaml b/aiml-security-assessment/template.yaml
index c6bf1a4..c6bd63d 100644
--- a/aiml-security-assessment/template.yaml
+++ b/aiml-security-assessment/template.yaml
@@ -23,13 +23,14 @@ Parameters:
   TargetRegions:
     Type: String
     Default: ""
-    AllowedPattern: "^$|^all$|^[a-z]{2}(-gov)?-[a-z]+-[0-9](,[a-z]{2}(-gov)?-[a-z]+-[0-9])*$"
+    AllowedPattern: "^$|^all$|^[a-z]{2}(-gov)?-[a-z]+-[0-9]([,\\s]+[a-z]{2}(-gov)?-[a-z]+-[0-9])*$"
     ConstraintDescription: >
-      TargetRegions must be empty, 'all', or a comma-separated list of AWS
-      region names with no spaces or trailing commas (for example,
-      us-east-1,us-west-2,eu-west-1).
+      TargetRegions must be empty, 'all', or a comma- or space-separated list of AWS
+      region names (for example, us-east-1,us-west-2,eu-west-1 or
+      us-east-1 us-west-2 eu-west-1).
     Description: >
-      Comma-separated list of AWS regions to scan (e.g., us-east-1,us-west-2,eu-west-1).
+      Comma- or space-separated list of AWS regions to scan (e.g.,
+      us-east-1,us-west-2,eu-west-1 or us-east-1 us-west-2 eu-west-1).
       Use 'all' to scan all regions where the service is available.
       Leave empty to scan only the deployment region.
   MaxRegionConcurrency:
diff --git a/buildspec.yml b/buildspec.yml
index 417eb4b..5c7eb46 100644
--- a/buildspec.yml
+++ b/buildspec.yml
@@ -46,20 +46,39 @@ phases:
           exit 1
         fi
       - |
-        # Normalize TARGET_REGIONS: strip all whitespace so the comma-separated
-        # value survives 'sam deploy --parameter-overrides', which re-splits its
-        # argument on spaces and would otherwise drop every region after the first.
-        TARGET_REGIONS=$(echo "${TARGET_REGIONS:-}" | tr -d '[:space:]')
+        normalize_delimited_list() {
+          local value="$1"
+          value=$(printf '%s' "$value" | sed -E 's/[[:space:]]*,[[:space:]]*/,/g; s/^[[:space:]]+//; s/[[:space:]]+$//; s/[[:space:]]+/,/g; s/,+/,/g; s/^,//; s/,$//')
+          printf '%s' "$value"
+        }
+
+        # Accept comma- or whitespace-delimited input from CloudFormation, then
+        # normalize to comma-delimited values for SAM and Lambda configuration.
+        TARGET_REGIONS=$(normalize_delimited_list "${TARGET_REGIONS:-}")
+        if [[ "$(printf '%s' "$TARGET_REGIONS" | tr '[:upper:]' '[:lower:]')" == "all" ]]; then
+          TARGET_REGIONS="all"
+        fi
         export TARGET_REGIONS
 
+        MULTI_ACCOUNT_LIST_OVERRIDE=$(normalize_delimited_list "${MULTI_ACCOUNT_LIST_OVERRIDE:-}")
+        export MULTI_ACCOUNT_LIST_OVERRIDE
+
         # Validate the normalized value matches the CloudFormation AllowedPattern.
-        if [[ -n "$TARGET_REGIONS" && ! "$TARGET_REGIONS" =~ ^[a-zA-Z0-9,-]+$ ]]; then
+        region_pattern='^all$|^[a-z]{2}(-gov)?-[a-z]+-[0-9](,[a-z]{2}(-gov)?-[a-z]+-[0-9])*$'
+        if [[ -n "$TARGET_REGIONS" && ! "$TARGET_REGIONS" =~ $region_pattern ]]; then
           echo "ERROR: TARGET_REGIONS contains invalid characters: '$TARGET_REGIONS'"
-          echo "Expected a comma-separated list of region names (e.g., us-east-1,us-west-2), 'all', or empty."
+          echo "Expected a comma- or space-separated list of region names (e.g., us-east-1,us-west-2), 'all', or empty."
           exit 1
         fi
         echo "Using TARGET_REGIONS: '${TARGET_REGIONS:-<deployment region only>}'"
 
+        account_list_pattern='^[0-9]{12}(,[0-9]{12})*$'
+        if [[ -n "$MULTI_ACCOUNT_LIST_OVERRIDE" && ! "$MULTI_ACCOUNT_LIST_OVERRIDE" =~ $account_list_pattern ]]; then
+          echo "ERROR: MULTI_ACCOUNT_LIST_OVERRIDE contains invalid account IDs: '$MULTI_ACCOUNT_LIST_OVERRIDE'"
+          echo "Expected a comma- or space-separated list of 12-digit AWS account IDs, or empty."
+          exit 1
+        fi
+
         # Use the long-form SAM parameter syntax so an intentionally empty
         # TargetRegions value is accepted and clears any previous stack value.
         SAM_TARGET_REGIONS_PARAMETER="ParameterKey=TargetRegions,ParameterValue=${TARGET_REGIONS}"
@@ -88,7 +107,7 @@ phases:
           echo "Getting list of accounts to scan"
           if [[ $MULTI_ACCOUNT_LIST_OVERRIDE != '' ]]; then
             echo "Using account overrides."
-            account_list=$MULTI_ACCOUNT_LIST_OVERRIDE
+            account_list=${MULTI_ACCOUNT_LIST_OVERRIDE//,/ }
           else
             echo "Using accounts from AWS Organizations."
             if ! account_list=$(aws organizations list-accounts --query 'Accounts[?Status==`ACTIVE`].Id' --output text); then
@@ -245,7 +264,7 @@ phases:
         if [[ $MULTI_ACCOUNT_SCAN = 'true' ]]; then
           echo "Getting list of accounts for post-build processing"
           if [[ $MULTI_ACCOUNT_LIST_OVERRIDE != '' ]]; then
-            account_list=$MULTI_ACCOUNT_LIST_OVERRIDE
+            account_list=${MULTI_ACCOUNT_LIST_OVERRIDE//,/ }
           else
             if ! account_list=$(aws organizations list-accounts --query 'Accounts[?Status==`ACTIVE`].Id' --output text); then
               echo "ERROR: Failed to retrieve account list from AWS Organizations"
diff --git a/deployment/1-aiml-security-member-roles.yaml b/deployment/1-aiml-security-member-roles.yaml
index 6d35b87..66b8516 100644
--- a/deployment/1-aiml-security-member-roles.yaml
+++ b/deployment/1-aiml-security-member-roles.yaml
@@ -10,11 +10,14 @@ Metadata:
           - ManagementAccountID
     ParameterLabels:
       ManagementAccountID:
-        default: Management account ID
+        default: Central assessment account ID
 
 Parameters:
   ManagementAccountID:
-    Description: "The 12-digit AWS account ID where the multi-account AIML Security Assessment CodeBuild project runs."
+    Description: >
+      The 12-digit AWS account ID where the multi-account AIML Security
+      Assessment CodeBuild project runs. This can be the AWS Organizations
+      management account or a delegated administrator/central tooling account.
     Type: String
     AllowedPattern: "^\\d{12}$"
     ConstraintDescription: Enter a 12-digit AWS account ID with no spaces.
diff --git a/deployment/2-aiml-security-codebuild.yaml b/deployment/2-aiml-security-codebuild.yaml
index 7ec63dc..f4a1ee8 100644
--- a/deployment/2-aiml-security-codebuild.yaml
+++ b/deployment/2-aiml-security-codebuild.yaml
@@ -77,13 +77,13 @@ Parameters:
 
   MultiAccountListOverride:
     Description: >
-      Optional space-delimited list of 12-digit AWS account IDs to scan. Leave
+      Optional comma- or space-separated list of 12-digit AWS account IDs to scan. Leave
       blank to scan all active accounts in your organization when
       MultiAccountScan is true.
     Type: String
     Default: ""
-    AllowedPattern: "^$|^\\d{12}( \\d{12})*$"
-    ConstraintDescription: Must be empty or a space-delimited list of 12-digit AWS account IDs.
+    AllowedPattern: "^$|^\\d{12}([,\\s]+\\d{12})*$"
+    ConstraintDescription: Must be empty or a comma- or space-separated list of 12-digit AWS account IDs.
 
   EmailAddress:
     Description: "Specify an address if you want to receive an email when the
@@ -106,13 +106,14 @@ Parameters:
 
   TargetRegions:
     Type: String
-    AllowedPattern: "^$|^all$|^[a-z]{2}(-gov)?-[a-z]+-[0-9](,[a-z]{2}(-gov)?-[a-z]+-[0-9])*$"
+    AllowedPattern: "^$|^all$|^[a-z]{2}(-gov)?-[a-z]+-[0-9]([,\\s]+[a-z]{2}(-gov)?-[a-z]+-[0-9])*$"
     ConstraintDescription: >
-      TargetRegions must be empty, 'all', or a comma-separated list of AWS
-      region names with no spaces or trailing commas (for example,
-      us-east-1,us-west-2,eu-west-1).
+      TargetRegions must be empty, 'all', or a comma- or space-separated list of AWS
+      region names (for example, us-east-1,us-west-2,eu-west-1 or
+      us-east-1 us-west-2 eu-west-1).
     Description: >
-      Comma-separated list of AWS regions to scan (e.g., us-east-1,us-west-2,eu-west-1).
+      Comma- or space-separated list of AWS regions to scan (e.g.,
+      us-east-1,us-west-2,eu-west-1 or us-east-1 us-west-2 eu-west-1).
       Use 'all' to scan all regions where the service is available.
       Leave empty to scan only the deployment region.
     Default: ""
diff --git a/deployment/aiml-security-single-account.yaml b/deployment/aiml-security-single-account.yaml
index fd761f7..0997c56 100644
--- a/deployment/aiml-security-single-account.yaml
+++ b/deployment/aiml-security-single-account.yaml
@@ -54,13 +54,14 @@ Parameters:
 
   TargetRegions:
     Type: String
-    AllowedPattern: "^$|^all$|^[a-z]{2}(-gov)?-[a-z]+-[0-9](,[a-z]{2}(-gov)?-[a-z]+-[0-9])*$"
+    AllowedPattern: "^$|^all$|^[a-z]{2}(-gov)?-[a-z]+-[0-9]([,\\s]+[a-z]{2}(-gov)?-[a-z]+-[0-9])*$"
     ConstraintDescription: >
-      TargetRegions must be empty, 'all', or a comma-separated list of AWS
-      region names with no spaces or trailing commas (for example,
-      us-east-1,us-west-2,eu-west-1).
+      TargetRegions must be empty, 'all', or a comma- or space-separated list of AWS
+      region names (for example, us-east-1,us-west-2,eu-west-1 or
+      us-east-1 us-west-2 eu-west-1).
     Description: >
-      Comma-separated list of AWS regions to scan (e.g., us-east-1,us-west-2,eu-west-1).
+      Comma- or space-separated list of AWS regions to scan (e.g.,
+      us-east-1,us-west-2,eu-west-1 or us-east-1 us-west-2 eu-west-1).
       Use 'all' to scan all regions where the service is available.
       Leave empty to scan only the deployment region.
     Default: ""
diff --git a/docs/DEVELOPER_GUIDE.md b/docs/DEVELOPER_GUIDE.md
index 330c9ed..010be26 100644
--- a/docs/DEVELOPER_GUIDE.md
+++ b/docs/DEVELOPER_GUIDE.md
@@ -50,7 +50,7 @@ The AI/ML Security Assessment Framework is a serverless, multi-account security
 
 - Runtime assessment Lambda roles are read-oriented and scoped to the APIs needed by each assessment
 - AWS CodeBuild and member-account roles require deployment permissions because they create or update the SAM assessment stacks before running checks
-- Cross-account trust is limited to the specific AWS CodeBuild role in the management account
+- Cross-account trust is limited to the specific AWS CodeBuild role in the central assessment account
 - Amazon S3 buckets enforce SSL-only access
 - Assessment data is encrypted in transit and at rest
 - No persistent credentials are stored in AWS CodeBuild
@@ -72,7 +72,7 @@ The AI/ML Security Assessment Framework is a serverless, multi-account security
 
 #### Step 1: Member Account Roles (`1-aiml-security-member-roles.yaml`)
 - **AWS CloudFormation StackSets Deployment**: Deploys `AIMLSecurityMemberRole` to all target accounts
-- **Cross-Account Trust**: Establishes trust relationship with central management account
+- **Cross-Account Trust**: Establishes trust relationship with the central assessment account
 - **Assessment and Deployment Permissions**: Grants read-oriented service permissions for assessment checks and deployment permissions needed for CodeBuild to create or update per-account SAM stacks
 
 #### Step 2: Central Infrastructure (`2-aiml-security-codebuild.yaml`)
diff --git a/docs/TROUBLESHOOTING.md b/docs/TROUBLESHOOTING.md
index 5128e2c..09e29bb 100644
--- a/docs/TROUBLESHOOTING.md
+++ b/docs/TROUBLESHOOTING.md
@@ -23,7 +23,7 @@ This guide covers common issues, debugging tips, and frequently asked questions
 
 **Solutions:**
 - Check that service-linked roles exist for AWS CloudFormation StackSets
-- Verify the management account has AWS Organizations permissions
+- Verify the account running the central CodeBuild project has AWS Organizations permissions, if it is discovering accounts automatically
 - Verify target OUs contain active accounts
 - Review the StackSet operation history for specific error messages
 
@@ -34,7 +34,7 @@ This guide covers common issues, debugging tips, and frequently asked questions
 **Solutions:**
 - Verify the `AIMLSecurityMemberRole` exists in target accounts
 - Check the trust relationship allows the central CodeBuild role
-- Confirm the `ManagementAccountID` parameter matches your management account
+- Confirm the `ManagementAccountID` parameter matches the account where the central `MultiAccountCodeBuildRole` runs
 - Verify the StackSet deployment completed successfully in all accounts
 
 ### 3. AWS SAM Deployment Failures
@@ -47,7 +47,7 @@ This guide covers common issues, debugging tips, and frequently asked questions
 - Verify the S3 bucket for SAM artifacts exists and is accessible. If the `aws-sam-cli-managed-default` stack is stuck in `ROLLBACK_COMPLETE` or `DELETE_FAILED`, delete it and re-run CodeBuild
 - Look for IAM permission errors in the logs
 - Check if a previous deployment left orphaned resources
-- Check whether `TARGET_REGIONS` failed validation. It must be empty, `all`, or a comma-separated list such as `us-east-1,us-west-2`
+- Check whether `TARGET_REGIONS` failed validation. It must be empty, `all`, or a comma- or space-separated list such as `us-east-1,us-west-2` or `us-east-1 us-west-2`
 
 ### 4. AWS Step Functions Execution Failures
 
@@ -118,7 +118,7 @@ For full bucket cleanup guidance, see [Cleanup Guide](CLEANUP.md#emptying-and-de
 **Solutions:**
 - Leave `TargetRegions` empty to scan only the deployment region
 - Use `all` to scan the union of regions returned by boto3 for Amazon Bedrock, Amazon SageMaker AI, and Amazon Bedrock AgentCore
-- Use a comma-separated list with no spaces, such as `us-east-1,us-west-2,eu-west-1`. CloudFormation validation rejects spaces and trailing commas
+- Use a comma- or space-separated list, such as `us-east-1,us-west-2,eu-west-1` or `us-east-1 us-west-2 eu-west-1`. The deployment normalizes the value before passing it to SAM
 - Confirm the services being assessed are available in each target region. If a service is unavailable or has no resources in a region, the report can show `N/A` or no resource-specific findings for that service and region
 - Confirm the account is opted in to any opt-in regions you include
 
@@ -148,7 +148,7 @@ For full bucket cleanup guidance, see [Cleanup Guide](CLEANUP.md#emptying-and-de
 - For organizations with fewer than 10 accounts, the default "Three" is usually sufficient
 - If builds timeout, increase `ConcurrentAccountScans` to process more accounts in parallel -- but be aware this also increases the per-minute CodeBuild cost
 - If builds timeout even at "Twelve," increase the `CodeBuildTimeout` parameter (default is 300 minutes for multi-account)
-- For very large organizations (100+ accounts), consider using `MultiAccountListOverride` to split assessments into batches
+- For very large organizations (100+ accounts), consider using `MultiAccountListOverride` to split assessments into batches. It accepts comma- or space-separated account IDs
 
 ### 10. No Reports in S3 Bucket
 
@@ -183,7 +183,7 @@ For full bucket cleanup guidance, see [Cleanup Guide](CLEANUP.md#emptying-and-de
 1. Navigate to **AWS CloudFormation** > **Stacks**
 2. Select your infrastructure stack (for example, `aiml-security-single-account` or `aiml-security-multi-account`)
 3. Click **Update** > **Use current template**
-4. Set the `TargetRegions` parameter (for example, `us-east-1,us-west-2,eu-west-1` or `all`)
+4. Set the `TargetRegions` parameter (for example, `us-east-1,us-west-2,eu-west-1`, `us-east-1 us-west-2 eu-west-1`, or `all`)
 5. Click through to **Submit**
 6. The next assessment run will scan the specified regions in parallel
 
@@ -217,12 +217,12 @@ The trust policy should allow the central CodeBuild role:
 {
   "Effect": "Allow",
   "Principal": {
-    "AWS": "arn:aws:iam::<management-account-id>:root"
+    "AWS": "arn:aws:iam::<central-assessment-account-id>:root"
   },
   "Action": "sts:AssumeRole",
   "Condition": {
     "ArnEquals": {
-      "aws:PrincipalArn": "arn:aws:iam::<management-account-id>:role/service-role/MultiAccountCodeBuildRole"
+      "aws:PrincipalArn": "arn:aws:iam::<central-assessment-account-id>:role/service-role/MultiAccountCodeBuildRole"
     }
   }
 }
@@ -280,7 +280,7 @@ You can automate regular assessments using Amazon EventBridge scheduled rules.
 
 **Q: What AWS regions are supported?**
 
-A: The framework is designed for standard AWS commercial regions where Amazon Bedrock, Amazon SageMaker AI, or Amazon Bedrock AgentCore are available. Leave `TargetRegions` empty for the deployment region, set it to `all` to resolve the union of assessed-service regions, or provide an explicit comma-separated list. AWS GovCloud and AWS China regions may require template modifications.
+A: The framework is designed for standard AWS commercial regions where Amazon Bedrock, Amazon SageMaker AI, or Amazon Bedrock AgentCore are available. Leave `TargetRegions` empty for the deployment region, set it to `all` to resolve the union of assessed-service regions, or provide an explicit comma- or space-separated list. AWS GovCloud and AWS China regions may require template modifications.
 
 **Q: Does this work if I don't have any AI/ML resources deployed yet?**
 

From 0072e0273126c5336a77e4bcc36723427d564bcd Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Wed, 24 Jun 2026 13:44:35 -0400
Subject: [PATCH 29/30] Fix AgentCore gateway lookup parameter

---
 .../security/agentcore_assessments/app.py     |  8 +++++--
 tests/test_agentcore_checks.py                | 24 +++++++++++++++++++
 2 files changed, 30 insertions(+), 2 deletions(-)

diff --git a/aiml-security-assessment/functions/security/agentcore_assessments/app.py b/aiml-security-assessment/functions/security/agentcore_assessments/app.py
index d670109..595f9be 100644
--- a/aiml-security-assessment/functions/security/agentcore_assessments/app.py
+++ b/aiml-security-assessment/functions/security/agentcore_assessments/app.py
@@ -1868,7 +1868,9 @@ def check_agentcore_resource_based_policies() -> List[Dict[str, Any]]:
                 gateway_name = gateway.get("name", gateway_id)
 
                 try:
-                    gateway_details = agentcore_client.get_gateway(gatewayId=gateway_id)
+                    gateway_details = agentcore_client.get_gateway(
+                        gatewayIdentifier=gateway_id
+                    )
                     gateway_arn = gateway_details.get("gatewayArn")
 
                     if not gateway_arn:
@@ -2233,7 +2235,9 @@ def check_agentcore_gateway_encryption() -> List[Dict[str, Any]]:
                 gateway_name = gateway.get("name", gateway_id)
 
                 try:
-                    gateway_details = agentcore_client.get_gateway(gatewayId=gateway_id)
+                    gateway_details = agentcore_client.get_gateway(
+                        gatewayIdentifier=gateway_id
+                    )
 
                     # Check for customer-managed KMS key
                     encryption_key_arn = gateway_details.get(
diff --git a/tests/test_agentcore_checks.py b/tests/test_agentcore_checks.py
index 655fc69..7e42c26 100644
--- a/tests/test_agentcore_checks.py
+++ b/tests/test_agentcore_checks.py
@@ -552,6 +552,29 @@ def test_ac10_uses_generic_resource_policy_api(self, mock_ac):
             resourceArn="arn:aws:bedrock-agentcore:us-east-1:123456789012:runtime/rt-1"
         )
 
+    @patch("agentcore_app.agentcore_client")
+    def test_ac10_gets_gateway_by_gateway_identifier(self, mock_ac):
+        mock_ac.list_agent_runtimes.return_value = {"agentRuntimes": []}
+        mock_ac.list_gateways.return_value = {
+            "items": [{"gatewayId": "gw-1", "name": "TestGateway"}]
+        }
+        mock_ac.get_gateway.return_value = {
+            "gatewayArn": "arn:aws:bedrock-agentcore:us-east-1:123456789012:gateway/gw-1"
+        }
+        mock_ac.get_resource_policy.return_value = {
+            "policy": '{"Version":"2012-10-17"}'
+        }
+
+        result = agentcore_app.check_agentcore_resource_based_policies()
+        findings = extract_csv_data(result)
+
+        assert len(findings) >= 1
+        assert findings[0]["Status"] == "Passed"
+        mock_ac.get_gateway.assert_called_once_with(gatewayIdentifier="gw-1")
+        mock_ac.get_resource_policy.assert_called_once_with(
+            resourceArn="arn:aws:bedrock-agentcore:us-east-1:123456789012:gateway/gw-1"
+        )
+
     @patch("agentcore_app.agentcore_client")
     def test_ac10_access_denied_policy_read_returns_na_finding(self, mock_ac):
         mock_ac.list_agent_runtimes.return_value = {
@@ -688,6 +711,7 @@ def test_ac12_gateway_with_kms_key_returns_passed(self, mock_ac):
         findings = extract_csv_data(result)
         assert len(findings) >= 1
         assert findings[0]["Status"] == "Passed"
+        mock_ac.get_gateway.assert_called_once_with(gatewayIdentifier="gw-1")
 
     @patch("agentcore_app.agentcore_client")
     def test_ac12_exception_returns_error_finding(self, mock_ac):

From 71b591affcd0c1724d1175b2a99824b23db77c90 Mon Sep 17 00:00:00 2001
From: Agasthi Kothurkar <akothurk@amazon.com>
Date: Wed, 24 Jun 2026 14:26:34 -0400
Subject: [PATCH 30/30] Disable stale Bedrock access check

---
 .../functions/security/bedrock_assessments/app.py         | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/aiml-security-assessment/functions/security/bedrock_assessments/app.py b/aiml-security-assessment/functions/security/bedrock_assessments/app.py
index becd597..264dd42 100644
--- a/aiml-security-assessment/functions/security/bedrock_assessments/app.py
+++ b/aiml-security-assessment/functions/security/bedrock_assessments/app.py
@@ -2759,10 +2759,10 @@ def lambda_handler(event, context):
                 )
             )
 
-            logger.info("Running global stale Bedrock access check (BR-14)")
-            all_findings.append(
-                check_stale_bedrock_access(permission_cache, region=GLOBAL_REGION_LABEL)
-            )
+            # logger.info("Running global stale Bedrock access check (BR-14)")
+            # all_findings.append(
+            #     check_stale_bedrock_access(permission_cache, region=GLOBAL_REGION_LABEL)
+            # )
 
         # Verify Bedrock is available in this region. A ValidationException here
         # (logging simply not configured) still means the service is reachable,